From 4a480b4e874cb51058820a4985c2c43881a9b348 Mon Sep 17 00:00:00 2001 From: Justinha Date: Fri, 9 Aug 2024 10:34:19 -0700 Subject: [PATCH 01/25] added note to clear checkbox for Authapp AAGUIDs --- .../how-to-enable-authenticator-passkey.md | 39 +++++++------------ .../how-to-enable-passkey-fido2.md | 18 ++++++--- .../authentication/how-to-register-passkey.md | 6 +-- 3 files changed, 30 insertions(+), 33 deletions(-) diff --git a/docs/identity/authentication/how-to-enable-authenticator-passkey.md b/docs/identity/authentication/how-to-enable-authenticator-passkey.md index 7a8e636e5c7..9d348aa7612 100644 --- a/docs/identity/authentication/how-to-enable-authenticator-passkey.md +++ b/docs/identity/authentication/how-to-enable-authenticator-passkey.md @@ -5,7 +5,7 @@ description: Learn about how to enable passkeys in Microsoft Authenticator for M ms.service: entra-id ms.subservice: authentication ms.topic: how-to -ms.date: 05/07/2024 +ms.date: 08/09/2024 ms.author: justinha author: justinha @@ -36,37 +36,28 @@ The **Microsoft Authenticator** policy doesn't give you the option to enable pas 1. Sign in to the [Microsoft Entra admin center](https://entra.microsoft.com) as at least an [Authentication Policy Administrator](~/identity/role-based-access-control/permissions-reference.md#authentication-policy-administrator). 1. Browse to **Protection** > **Authentication methods** > **Authentication method policy**. -1. Under the method **FIDO2 security key**, select **All users** or **Add groups** to select specific groups. *Only security groups are supported*. +1. Under the method **Passkey (FIDO2)**, select **All users** or **Add groups** to select specific groups. *Only security groups are supported*. 1. On the **Configure** tab, set: - - **Allow self-service set up** to **Yes** - - **Enforce attestation** to **No** - - **Enforce key restrictions** to **Yes** - - **Restrict specific keys** to **Allow** - - Select **Microsoft Authenticator (preview)** if the checkbox is displayed in the admin center. This setting automatically populates the Authenticator app AAGUIDs for you in the key restriction list. Otherwise, you can manually add the following AAGUIDs to enable the Authenticator passkey preview: + - **Allow self-service set up** to **Yes**. If set to **No**, users can't register a passkey by using [Security info](https://aka.ms/mysecurityinfo), even if passkeys are enabled by Authentication methods policy. + - **Enforce attestation** to **No** for preview. Attestation support is planned for General Availability. + - **Enforce key restrictions** to **Yes** only if your organization wants to only allow or disallow certain passkeys, which are identified by their Authenticator Attestation GUID (AAGUID). + - **Restrict specific keys** to **Allow**. + - Select **Microsoft Authenticator (Preview)** to automatically add the Authenticator app AAGUIDs to the key restriction list, or manually add the following Authenticator Attestation GUIDs (AAGUIDs) to enable the Authenticator passkey preview: - **Authenticator for Android:** de1e552d-db1d-4423-a619-566b625cdc84 - **Authenticator for iOS:** 90a3ccdf-635c-4729-a248-9b709135078f + + If you turn off key retrictions, make sure you clear the **Microsoft Authenticator (Preview)** checkbox so that users aren’t prompted to set up a passkey in the Authenticator app in [Security info](https://aka.ms/mysecurityinfo). - :::image type="content" border="true" source="media/how-to-enable-authenticator-passkey/optional-settings.png" alt-text="Screenshot showing Microsoft Authenticator enabled for passkey."lightbox="media/how-to-enable-authenticator-passkey/optional-settings.png"::: - - >[!WARNING] - >Key restrictions set the usability of specific passkeys for both registration and authentication. If you change key restrictions and remove an AAGUID that you previously allowed, users who previously registered an allowed method can no longer use it for sign-in. If your organization doesn't currently enforce key restrictions and already has active passkey usage, you should collect the AAGUIDs of the keys being used today. Add them to the Allow list, along with the Authenticator AAGUIDs, to enable this preview. This task can be done with an automated script that analyzes logs such as registration details and sign-in logs. - -The following list describes other optional settings: - -**General** - -- **Allow self-service set up** should remain set to **Yes**. If set to no, your users aren't able to register a passkey through MySecurityInfo, even if enabled by Authentication Methods policy. -- **Enforce attestation** Should be set to **No** for preview. Attestation support is planned for General Availability. - -**Key Restriction Policy** + >[!NOTE] + >If you don't enforce key restrictions and don't select **Microsoft Authenticator (Preview)**, users won't see an option to set up passkeys in the Authenticator when they go to [Security info](https://aka.ms/mysecurityinfo). Depending upon their operating system and browser, users who continue with passkey (FIDO2) registration might see a WebAuthn flow with a QR code to set up passkey in Authenticator. This is because when no key restrictions are set, any device-bound passkey can be set up by using the WebAuthn flow. To explicitly disable passkeys in the Authenticator app, use the key restrictions to block the Authenticator app AAGUIDs. -- **Enforce key restrictions** should be set to **Yes** only if your organization wants to only allow or disallow certain passkeys, which are identified by their Authenticator Attestation GUID (AAGUID). If you want, you can manually enter the Authenticator app AAGUIDs or specifically restrict only Android or iOS devices. Otherwise, you can manually add the following AAGUIDs to enable the Authenticator passkey preview: + :::image type="content" border="true" source="media/how-to-enable-authenticator-passkey/optional-settings.png" alt-text="Screenshot showing Microsoft Authenticator enabled for passkey."lightbox="media/how-to-enable-authenticator-passkey/optional-settings.png"::: - - **Authenticator for Android:** de1e552d-db1d-4423-a619-566b625cdc84 - - **Authenticator for iOS:** 90a3ccdf-635c-4729-a248-9b709135078f + >[!WARNING] + >Key restrictions set the usability of specific passkeys for both registration and authentication. If you change key restrictions and remove an AAGUID that you previously allowed, users who previously registered an allowed method can no longer use it for sign-in. If your organization doesn't currently enforce key restrictions and already has active passkey usage, you should collect the AAGUIDs of the keys being used today. Add them to the Allow list, along with the Authenticator AAGUIDs, to enable this preview. This task can be done with an automated script that analyzes logs, such as registration details and sign-in logs. -After you finish the configuration, select **Save**. +1. After you finish the configuration, select **Save**. ## Enable passkeys in Authenticator using Graph Explorer diff --git a/docs/identity/authentication/how-to-enable-passkey-fido2.md b/docs/identity/authentication/how-to-enable-passkey-fido2.md index fb5aad1c01c..230a907a1a2 100644 --- a/docs/identity/authentication/how-to-enable-passkey-fido2.md +++ b/docs/identity/authentication/how-to-enable-passkey-fido2.md @@ -5,7 +5,7 @@ description: Enable passwordless sign-in to Microsoft Entra ID using passkeys (F ms.service: entra-id ms.subservice: authentication ms.topic: how-to -ms.date: 08/06/2024 +ms.date: 08/09/2024 ms.author: justinha author: justinha @@ -40,7 +40,7 @@ Passkeys are supported across major scenarios on Windows, macOS, Android, and iO 1. Sign in to the [Microsoft Entra admin center](https://entra.microsoft.com) as at least an [Authentication Policy Administrator](~/identity/role-based-access-control/permissions-reference.md#authentication-policy-administrator). 1. Browse to **Protection** > **Authentication methods** > **Authentication method policy**. -1. Under the method **FIDO2 security key**, set the toggle to **Enable**. Select **All users** or **Add groups** to select specific groups. *Only security groups are supported*. +1. Under the method **Passkey (FIDO2)**, set the toggle to **Enable**. Select **All users** or **Add groups** to select specific groups. *Only security groups are supported*. 1. **Save** the configuration. >[!NOTE] @@ -64,13 +64,19 @@ There are some optional settings on the **Configure** tab to help manage how pas **Key Restriction Policy** - **Enforce key restrictions** should be set to **Yes** only if your organization wants to only allow or disallow certain security key models or passkey providers, which are identified by their Authenticator Attestation GUID (AAGUID). You can work with your security key vendor to determine the AAGUID of the passkey. If the passkey is already registered, you can find the AAGUID by viewing the authentication method details of the passkey for the user. -- When **Enforce key restrictions** is set to **Yes**, you can select **Microsoft Authenticator (preview)** if the checkbox is displayed in the admin center. This will automatically populate the Authenticator app AAGUIDs for you in the key restriction list. Otherwise, you can manually add the following AAGUIDs to enable the Authenticator passkey preview: - - **Authenticator for Android:** de1e552d-db1d-4423-a619-566b625cdc84 - - **Authenticator for iOS:** 90a3ccdf-635c-4729-a248-9b709135078f +- Select **Microsoft Authenticator (Preview)** to automatically add the Authenticator app AAGUIDs to the key restriction list, or manually add the following Authenticator Attestation GUIDs (AAGUIDs) to enable the Authenticator passkey preview: - >[!WARNING] + - **Authenticator for Android:** de1e552d-db1d-4423-a619-566b625cdc84 + - **Authenticator for iOS:** 90a3ccdf-635c-4729-a248-9b709135078f + + >[!WARNING] >Key restrictions set the usability of specific models or providers for both registration and authentication. If you change key restrictions and remove an AAGUID that you previously allowed, users who previously registered an allowed method can no longer use it for sign-in. + If you turn off key retrictions, make sure you clear the **Microsoft Authenticator (Preview)** checkbox so that users aren’t prompted to set up a passkey in the Authenticator app in [Security info](https://aka.ms/mysecurityinfo). + + >[!NOTE] + >If you don't enforce key restrictions and don't select **Microsoft Authenticator (Preview)**, users won't see an option to set up passkeys in the Authenticator when they go to [Security info](https://aka.ms/mysecurityinfo). Depending upon their operating system and browser, users who continue with passkey (FIDO2) registration might see a WebAuthn flow with a QR code to set up passkey in Authenticator. This is because when no key restrictions are set, any device-bound passkey can be set up by using the WebAuthn flow. To explicitly disable passkeys in the Authenticator app, use the key restrictions to block the Authenticator app AAGUIDs. + ## Passkey Authenticator Attestation GUID (AAGUID) The FIDO2 specification requires each security key vendor to provide an Authenticator Attestation GUID (AAGUID) during registration. An AAGUID is a 128-bit identifier indicating the key type, such as the make and model. Passkey providers on desktop and mobile devices are also expected to provide an AAGUID during registration. diff --git a/docs/identity/authentication/how-to-register-passkey.md b/docs/identity/authentication/how-to-register-passkey.md index 29e6d1b8674..19a8e8fc963 100644 --- a/docs/identity/authentication/how-to-register-passkey.md +++ b/docs/identity/authentication/how-to-register-passkey.md @@ -28,7 +28,7 @@ For more information about enabling passkeys in Microsoft Authenticator, see [Ho ## Manual registration -1. Users can register a passkey (FIDO2) as an authentication method by navigating and completing the process from a browser at [My Security info](https://aka.ms/mysecurityinfo). +1. Users can register a passkey (FIDO2) as an authentication method by navigating and completing the process from a browser at [Security info](https://aka.ms/mysecurityinfo). 1. Tap **Add sign-in method** > **Choose a method** > **Passkey (preview)** > **Add**. 1. Sign in with multifactor authentication (MFA) before adding a passkey, then tap **Next**. 1. If you don't have at least one MFA method registered, you must add one. @@ -49,7 +49,7 @@ For more information about enabling passkeys in Microsoft Authenticator, see [Ho 1. You're prompted to create or enter a PIN for your security key, then perform the required gesture for the key. 1. Upon completion, review any additional information from the security dialog, then tap Ok or Continue. -1. After you're redirected to My Security info, you can change the default name for the new sign-in method. +1. After you're redirected to Security info, you can change the default name for the new sign-in method. 1. Tap **Done** to finish registering the new method. From 2265e2b581aeeedf7932703098768c33002947f7 Mon Sep 17 00:00:00 2001 From: Justinha Date: Fri, 9 Aug 2024 10:48:59 -0700 Subject: [PATCH 02/25] fixed syntax error --- docs/identity/authentication/how-to-enable-passkey-fido2.md | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/docs/identity/authentication/how-to-enable-passkey-fido2.md b/docs/identity/authentication/how-to-enable-passkey-fido2.md index 230a907a1a2..7a8e6383839 100644 --- a/docs/identity/authentication/how-to-enable-passkey-fido2.md +++ b/docs/identity/authentication/how-to-enable-passkey-fido2.md @@ -66,10 +66,10 @@ There are some optional settings on the **Configure** tab to help manage how pas - **Enforce key restrictions** should be set to **Yes** only if your organization wants to only allow or disallow certain security key models or passkey providers, which are identified by their Authenticator Attestation GUID (AAGUID). You can work with your security key vendor to determine the AAGUID of the passkey. If the passkey is already registered, you can find the AAGUID by viewing the authentication method details of the passkey for the user. - Select **Microsoft Authenticator (Preview)** to automatically add the Authenticator app AAGUIDs to the key restriction list, or manually add the following Authenticator Attestation GUIDs (AAGUIDs) to enable the Authenticator passkey preview: - - **Authenticator for Android:** de1e552d-db1d-4423-a619-566b625cdc84 - - **Authenticator for iOS:** 90a3ccdf-635c-4729-a248-9b709135078f + - **Authenticator for Android:** de1e552d-db1d-4423-a619-566b625cdc84 + - **Authenticator for iOS:** 90a3ccdf-635c-4729-a248-9b709135078f - >[!WARNING] + >[!WARNING] >Key restrictions set the usability of specific models or providers for both registration and authentication. If you change key restrictions and remove an AAGUID that you previously allowed, users who previously registered an allowed method can no longer use it for sign-in. If you turn off key retrictions, make sure you clear the **Microsoft Authenticator (Preview)** checkbox so that users aren’t prompted to set up a passkey in the Authenticator app in [Security info](https://aka.ms/mysecurityinfo). From 07da0758388251789b6402ba7688b4d98af369cd Mon Sep 17 00:00:00 2001 From: Justinha Date: Mon, 12 Aug 2024 11:29:37 -0700 Subject: [PATCH 03/25] copyedits --- .../authentication/how-to-enable-authenticator-passkey.md | 2 +- docs/identity/authentication/how-to-enable-passkey-fido2.md | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/docs/identity/authentication/how-to-enable-authenticator-passkey.md b/docs/identity/authentication/how-to-enable-authenticator-passkey.md index 9d348aa7612..ee4f1cdf111 100644 --- a/docs/identity/authentication/how-to-enable-authenticator-passkey.md +++ b/docs/identity/authentication/how-to-enable-authenticator-passkey.md @@ -50,7 +50,7 @@ The **Microsoft Authenticator** policy doesn't give you the option to enable pas If you turn off key retrictions, make sure you clear the **Microsoft Authenticator (Preview)** checkbox so that users aren’t prompted to set up a passkey in the Authenticator app in [Security info](https://aka.ms/mysecurityinfo). >[!NOTE] - >If you don't enforce key restrictions and don't select **Microsoft Authenticator (Preview)**, users won't see an option to set up passkeys in the Authenticator when they go to [Security info](https://aka.ms/mysecurityinfo). Depending upon their operating system and browser, users who continue with passkey (FIDO2) registration might see a WebAuthn flow with a QR code to set up passkey in Authenticator. This is because when no key restrictions are set, any device-bound passkey can be set up by using the WebAuthn flow. To explicitly disable passkeys in the Authenticator app, use the key restrictions to block the Authenticator app AAGUIDs. + >If you don't enforce key restrictions and don't select **Microsoft Authenticator (Preview)**, users won't see an option to set up passkeys in Authenticator when they go to [Security info](https://aka.ms/mysecurityinfo). Depending upon their operating system and browser, users who continue with passkey (FIDO2) registration might see a WebAuthn flow with a QR code to set up passkey in Authenticator. This is because when no key restrictions are set, any device-bound passkey can be set up by using the WebAuthn flow. To explicitly disable passkeys in Authenticator, use the key restrictions to block the Authenticator app AAGUIDs. :::image type="content" border="true" source="media/how-to-enable-authenticator-passkey/optional-settings.png" alt-text="Screenshot showing Microsoft Authenticator enabled for passkey."lightbox="media/how-to-enable-authenticator-passkey/optional-settings.png"::: diff --git a/docs/identity/authentication/how-to-enable-passkey-fido2.md b/docs/identity/authentication/how-to-enable-passkey-fido2.md index 7a8e6383839..f998e245262 100644 --- a/docs/identity/authentication/how-to-enable-passkey-fido2.md +++ b/docs/identity/authentication/how-to-enable-passkey-fido2.md @@ -75,7 +75,7 @@ There are some optional settings on the **Configure** tab to help manage how pas If you turn off key retrictions, make sure you clear the **Microsoft Authenticator (Preview)** checkbox so that users aren’t prompted to set up a passkey in the Authenticator app in [Security info](https://aka.ms/mysecurityinfo). >[!NOTE] - >If you don't enforce key restrictions and don't select **Microsoft Authenticator (Preview)**, users won't see an option to set up passkeys in the Authenticator when they go to [Security info](https://aka.ms/mysecurityinfo). Depending upon their operating system and browser, users who continue with passkey (FIDO2) registration might see a WebAuthn flow with a QR code to set up passkey in Authenticator. This is because when no key restrictions are set, any device-bound passkey can be set up by using the WebAuthn flow. To explicitly disable passkeys in the Authenticator app, use the key restrictions to block the Authenticator app AAGUIDs. + >If you don't enforce key restrictions and don't select **Microsoft Authenticator (Preview)**, users won't see an option to set up passkeys in Authenticator when they go to [Security info](https://aka.ms/mysecurityinfo). Depending upon their operating system and browser, users who continue with passkey (FIDO2) registration might see a WebAuthn flow with a QR code to set up passkey in Authenticator. This is because when no key restrictions are set, any device-bound passkey can be set up by using the WebAuthn flow. To explicitly disable passkeys in Authenticator, use the key restrictions to block the Authenticator app AAGUIDs. ## Passkey Authenticator Attestation GUID (AAGUID) From 8d1045f6e31932ef3cf73d04783e034abf337bcf Mon Sep 17 00:00:00 2001 From: Justinha Date: Wed, 21 Aug 2024 10:48:35 -0700 Subject: [PATCH 04/25] revised key restrictions --- .../how-to-enable-authenticator-passkey.md | 27 ++++++++++++------- 1 file changed, 17 insertions(+), 10 deletions(-) diff --git a/docs/identity/authentication/how-to-enable-authenticator-passkey.md b/docs/identity/authentication/how-to-enable-authenticator-passkey.md index ee4f1cdf111..2d9238f0915 100644 --- a/docs/identity/authentication/how-to-enable-authenticator-passkey.md +++ b/docs/identity/authentication/how-to-enable-authenticator-passkey.md @@ -5,7 +5,7 @@ description: Learn about how to enable passkeys in Microsoft Authenticator for M ms.service: entra-id ms.subservice: authentication ms.topic: how-to -ms.date: 08/09/2024 +ms.date: 08/21/2024 ms.author: justinha author: justinha @@ -32,7 +32,7 @@ To learn more about where you can use passkeys in Authenticator to sign in, see ## Enable passkeys in Authenticator in the admin center -The **Microsoft Authenticator** policy doesn't give you the option to enable passkeys in Authenticator. Instead, to enable passkeys in Authenticator, you must edit the **FIDO2 security key** Authentication methods policy. +An Authentication Policy Administrator needs to consent to allow Authenticator in the **Passkey (FIDO2)** options of the Authentication methods policy. They need to explicitly allow the Authenticator Attestation GUIDs (AAGUIDs) for Microsoft Authenticator. There's no option to enable passkeys in **Microsoft Authenticator** settings in the Authentication methods policy. 1. Sign in to the [Microsoft Entra admin center](https://entra.microsoft.com) as at least an [Authentication Policy Administrator](~/identity/role-based-access-control/permissions-reference.md#authentication-policy-administrator). 1. Browse to **Protection** > **Authentication methods** > **Authentication method policy**. @@ -40,22 +40,29 @@ The **Microsoft Authenticator** policy doesn't give you the option to enable pas 1. On the **Configure** tab, set: - **Allow self-service set up** to **Yes**. If set to **No**, users can't register a passkey by using [Security info](https://aka.ms/mysecurityinfo), even if passkeys are enabled by Authentication methods policy. - **Enforce attestation** to **No** for preview. Attestation support is planned for General Availability. - - **Enforce key restrictions** to **Yes** only if your organization wants to only allow or disallow certain passkeys, which are identified by their Authenticator Attestation GUID (AAGUID). + - **Enforce key restrictions** to **Yes** to only allow or block certain passkeys, which are identified by their AAGUIDs. This option must be set to **Yes** to consent to allow passkeys in Microsoft Authenticator. Users can add a passkey in Authenticator only if an Authentication Policy Administrator sets this option to **Yes** and allows Microsoft Authenticator AAGUIDs. + + [Security info](https://mysignins.microsoft.com/security-info) doesn't require this option to be set to **Yes** to add a passkey. Depending upon their operating system and browser, users may see an option in their [Security info](https://mysignins.microsoft.com/security-info) to add **Passkey in Microsoft Authenticator (preview)** as a sign-in method and save it to their **iPhone, iPad, or Android** device if this option is set to **No**. + + Key restrictions set the usability of specific passkeys for both registration and authentication. If you change key restrictions and remove an AAGUID that you previously allowed, users who previously registered an allowed method can no longer use it for sign-in. + + If your organization doesn't currently enforce key restrictions and already has active passkey usage, you should collect the AAGUIDs of the keys being used today. Add them to the Allow list, along with the Authenticator AAGUIDs, to enable this preview. This task can be done with an automated script that analyzes logs, such as registration details and sign-in logs. + - **Restrict specific keys** to **Allow**. - - Select **Microsoft Authenticator (Preview)** to automatically add the Authenticator app AAGUIDs to the key restriction list, or manually add the following Authenticator Attestation GUIDs (AAGUIDs) to enable the Authenticator passkey preview: + - Select **Microsoft Authenticator (Preview)** to automatically add the Authenticator app AAGUIDs to the key restriction list, or manually add the following AAGUIDs to enable the Authenticator passkey preview: - **Authenticator for Android:** de1e552d-db1d-4423-a619-566b625cdc84 - **Authenticator for iOS:** 90a3ccdf-635c-4729-a248-9b709135078f - If you turn off key retrictions, make sure you clear the **Microsoft Authenticator (Preview)** checkbox so that users aren’t prompted to set up a passkey in the Authenticator app in [Security info](https://aka.ms/mysecurityinfo). - >[!NOTE] - >If you don't enforce key restrictions and don't select **Microsoft Authenticator (Preview)**, users won't see an option to set up passkeys in Authenticator when they go to [Security info](https://aka.ms/mysecurityinfo). Depending upon their operating system and browser, users who continue with passkey (FIDO2) registration might see a WebAuthn flow with a QR code to set up passkey in Authenticator. This is because when no key restrictions are set, any device-bound passkey can be set up by using the WebAuthn flow. To explicitly disable passkeys in Authenticator, use the key restrictions to block the Authenticator app AAGUIDs. + >If you turn off key retrictions, make sure you clear the **Microsoft Authenticator (Preview)** checkbox so that users aren’t prompted to set up a passkey in the Authenticator app in [Security info](https://aka.ms/mysecurityinfo). - :::image type="content" border="true" source="media/how-to-enable-authenticator-passkey/optional-settings.png" alt-text="Screenshot showing Microsoft Authenticator enabled for passkey."lightbox="media/how-to-enable-authenticator-passkey/optional-settings.png"::: + Two more AAGUIDs may be listed. + They are `B6879EDC-2A86-4BDE-9C62-C1CAC4A8F8E5` and `257FA02A-18F3-4E34-8174-95D454C2E9AD1`. + These AAGUIDs appear in advance of an upcoming feature. + You can removed them from the list of allowed AAGUIDs. - >[!WARNING] - >Key restrictions set the usability of specific passkeys for both registration and authentication. If you change key restrictions and remove an AAGUID that you previously allowed, users who previously registered an allowed method can no longer use it for sign-in. If your organization doesn't currently enforce key restrictions and already has active passkey usage, you should collect the AAGUIDs of the keys being used today. Add them to the Allow list, along with the Authenticator AAGUIDs, to enable this preview. This task can be done with an automated script that analyzes logs, such as registration details and sign-in logs. + :::image type="content" border="true" source="media/how-to-enable-authenticator-passkey/optional-settings.png" alt-text="Screenshot showing Microsoft Authenticator enabled for passkey."lightbox="media/how-to-enable-authenticator-passkey/optional-settings.png"::: 1. After you finish the configuration, select **Save**. From 4b3b639fdbdcc52ddaf5c9efca0103dfaa939fff Mon Sep 17 00:00:00 2001 From: Justinha Date: Wed, 21 Aug 2024 11:23:14 -0700 Subject: [PATCH 05/25] revised image and links --- .../how-to-enable-authenticator-passkey.md | 14 +++++++------- .../optional-settings.png | Bin 63368 -> 69748 bytes 2 files changed, 7 insertions(+), 7 deletions(-) diff --git a/docs/identity/authentication/how-to-enable-authenticator-passkey.md b/docs/identity/authentication/how-to-enable-authenticator-passkey.md index 2d9238f0915..e0ec66b8b6a 100644 --- a/docs/identity/authentication/how-to-enable-authenticator-passkey.md +++ b/docs/identity/authentication/how-to-enable-authenticator-passkey.md @@ -32,17 +32,17 @@ To learn more about where you can use passkeys in Authenticator to sign in, see ## Enable passkeys in Authenticator in the admin center -An Authentication Policy Administrator needs to consent to allow Authenticator in the **Passkey (FIDO2)** options of the Authentication methods policy. They need to explicitly allow the Authenticator Attestation GUIDs (AAGUIDs) for Microsoft Authenticator. There's no option to enable passkeys in **Microsoft Authenticator** settings in the Authentication methods policy. +An Authentication Policy Administrator needs to consent to allow Authenticator in the **Passkey (FIDO2) settings** of the Authentication methods policy. They need to explicitly allow the Authenticator Attestation GUIDs (AAGUIDs) for Microsoft Authenticator. There's no setting to enable passkeys in **Microsoft Authenticator settings** in the policy. 1. Sign in to the [Microsoft Entra admin center](https://entra.microsoft.com) as at least an [Authentication Policy Administrator](~/identity/role-based-access-control/permissions-reference.md#authentication-policy-administrator). 1. Browse to **Protection** > **Authentication methods** > **Authentication method policy**. 1. Under the method **Passkey (FIDO2)**, select **All users** or **Add groups** to select specific groups. *Only security groups are supported*. 1. On the **Configure** tab, set: - - **Allow self-service set up** to **Yes**. If set to **No**, users can't register a passkey by using [Security info](https://aka.ms/mysecurityinfo), even if passkeys are enabled by Authentication methods policy. + - **Allow self-service set up** to **Yes**. If set to **No**, users can't register a passkey by using [Security info](https://mysignins.microsoft.com/security-info), even if passkeys are enabled by Authentication methods policy. - **Enforce attestation** to **No** for preview. Attestation support is planned for General Availability. - - **Enforce key restrictions** to **Yes** to only allow or block certain passkeys, which are identified by their AAGUIDs. This option must be set to **Yes** to consent to allow passkeys in Microsoft Authenticator. Users can add a passkey in Authenticator only if an Authentication Policy Administrator sets this option to **Yes** and allows Microsoft Authenticator AAGUIDs. + - **Enforce key restrictions** to **Yes** to only allow or block certain passkeys, which are identified by their AAGUIDs. This setting must be **Yes** to consent to allow passkeys in Microsoft Authenticator. Users can add a passkey in Authenticator only if an Authentication Policy Administrator selects **Yes** and allows Microsoft Authenticator AAGUIDs. - [Security info](https://mysignins.microsoft.com/security-info) doesn't require this option to be set to **Yes** to add a passkey. Depending upon their operating system and browser, users may see an option in their [Security info](https://mysignins.microsoft.com/security-info) to add **Passkey in Microsoft Authenticator (preview)** as a sign-in method and save it to their **iPhone, iPad, or Android** device if this option is set to **No**. + [Security info](https://mysignins.microsoft.com/security-info) doesn't require this setting be **Yes** to add a passkey. If you choose **No**, users may see **Passkey in Microsoft Authenticator (preview)** as a sign-in method they can add in [Security info](https://mysignins.microsoft.com/security-info), depending upon their operating system and browser. Key restrictions set the usability of specific passkeys for both registration and authentication. If you change key restrictions and remove an AAGUID that you previously allowed, users who previously registered an allowed method can no longer use it for sign-in. @@ -55,12 +55,12 @@ An Authentication Policy Administrator needs to consent to allow Authenticator i - **Authenticator for iOS:** 90a3ccdf-635c-4729-a248-9b709135078f >[!NOTE] - >If you turn off key retrictions, make sure you clear the **Microsoft Authenticator (Preview)** checkbox so that users aren’t prompted to set up a passkey in the Authenticator app in [Security info](https://aka.ms/mysecurityinfo). + >If you turn off key retrictions, make sure you clear the **Microsoft Authenticator (Preview)** checkbox so that users aren’t prompted to set up a passkey in the Authenticator app in [Security info](https://mysignins.microsoft.com/security-info). Two more AAGUIDs may be listed. - They are `B6879EDC-2A86-4BDE-9C62-C1CAC4A8F8E5` and `257FA02A-18F3-4E34-8174-95D454C2E9AD1`. + They are `b6879edc-2a86-4bde-9c62-c1cac4a8f8e5` and `257fa02a-18f3-4e34-8174-95d454c2e9ad`. These AAGUIDs appear in advance of an upcoming feature. - You can removed them from the list of allowed AAGUIDs. + You can remove them from the list of allowed AAGUIDs. :::image type="content" border="true" source="media/how-to-enable-authenticator-passkey/optional-settings.png" alt-text="Screenshot showing Microsoft Authenticator enabled for passkey."lightbox="media/how-to-enable-authenticator-passkey/optional-settings.png"::: diff --git a/docs/identity/authentication/media/how-to-enable-authenticator-passkey/optional-settings.png b/docs/identity/authentication/media/how-to-enable-authenticator-passkey/optional-settings.png index 7c507b03e0312790bfa438b7c8dcf1282574a096..9f142a525327d4b22ff790c2e9417d88bfc91761 100644 GIT binary patch literal 69748 zcmeFZXH=7G6E2Lp757HO2B7TKsvFbqM#s6N)!YHq?Z6`DlZ~kr3px)BE3XF zI!Q!Iq-Ik?4V_RENJv5wl6+C$^PQjP*ZID6);d`$EBBM+X)|-rJ#)=9PwZU_Gx5Jp z{v{$JB7XD6RVxt@(QhImd(Q6PC;aBX%Vibe$F5*2v&$moy|T-~jXyju-MJ(pQjsjS z^JuSd`_F(I4#6TKQfGg@cipr)vmqiP$h&#<(*1CkHJ;cz=Y@#l99$AqP0!@5g6zE; z#{(4QE-JR{x+Ojm_<5!1KZPgePtELz*GQBh%L3yg~vm&K@_v>3+#K zN+H`^LtOK6&@t7ds1L{VN3?erFJC%vEY2I4o;B!wmyNDwj%oW$c`%*M^gQLkBW%C= zLCXALtByV!a25+rjZ{7?yw0Dm^GO&!XLVDIZTx#%B*AC*^nZt6|JW7q-{FH7BKrRw zYFrYL{XKk^eoExv@8L!BLn5NThab-Ff41lM@ZTeUeB1SV_~g(3^y@eErQ!okOpLI0aqmZh92Drhopc%eNTR)RC@5=OfxccyK8OVP?#FaC$q( z5PCimK5`=46nDzQW#^53CA+?Jogq7_ATeRAtjT5U4P3Pwa7&MxDpCyGt|os9o}8`Q z=~s7KCtYE4;3*#Hc&@2Y?$?dnp$b2foZn$D4x12t)QBy}u-VWO=3<~4+rx%>oZzrJ43naB%> zzdhit`!CURMcoJu^V&rJSmdr3)0ipy!(hsqT+;zFCO%!p|CNR)ZQ(_c9_d6pL9GWo zRjofPDAWO#%iV#DQD14)P9Boe)6pvZHYJ}x!PmBy>A9SUr})DUy|{UFDx2{88qdqW z{~{93rRDSuVE`y(G6uo6e_FquqE-E_o&ChFl=oh%3ZJXk=$C91wkVcSo{$!-L>5cz zPSi!Pqeis9g{;QVoy}&~&Td|0RDey7$k?Idq7}+58WHE26L5DYy&LFdWDoH=zJaV3 zHF$Jf z!w|KB-~vLIvypey!cmXb%5mUmMkIWoA?6l_hA$(H1oiCALo%l#{)vRAqy6T;rQ3&Z znz_z++TmM(6ACe;ULrAYreC~bsmaPQCxrBAY2l zbq)*Vm#(_bDiK)qJr+JW68e7osaK6 za{cNY=xH2oY1Wp!yMfw}i&$HJVJ$r&Eiq-PH+E9azkk9$#CImbVC*Ot)J0am9UG0x z$|fkpiBgKr>HT(`WxmZXqBq;d{SuuU`NkmaI%yD83r+^Zjmn#7o#DhrQW{!rynX)o z^g7utUyd>g_>&V}3Fg)`vB0g-dQi17Iy=zqd#e4mS*b(-lg(%X0$X${Txy5EE;Cn!;$i9{n_ocJNA#5TOh*|V5k+j>Ed{}^gml-R z(ey^iYtxqdNA21_0pThQh%D;Zk2g_$ydRSlYe$1;`^C6G;N08f)&*3Z!7#7}7j|x8 zFaW6c;Yx+)kQpaA?Y6evIz{YnJNoyoxkd2)mo%2{*yXjc|5EyW&qrmwB$P* z9WXzgviZ%ogS*xuy#?d7T)ry$yLEPhelM`LEN_iH3h6zm&Mrm=ONVKzElU)B5xGAc$rdl(D!}_j!|Uv?vSL97g<& zL26Xg7T~(g;91yszoaho_GN+gJu?DW3O@nDou=$q&`h~rh->ojx%#Ch-qFD29V1uj zL*UX)hH>iP>fXMJ@KEEO7GB_&@Lt83PkJ!3Gt{Ipn|cee8FBvt9| z#ArJgDeHK$X`PWD1|D&G+E$ippnI1v6}8#w#+#wm&9>X?w~8>EDP#^rOPS^CZEB>6 z!I^l>S7oB)l2GKTQTuTKnO>x=86W>rb`5n{Tdk7EYW2Bt+Z-NFR={&Edoyd;84~Y< zu)ICIah9oLpLTO(A$^wuoJ2 zdR9pimAvKfV`|rE$gO3Sqk>0RCuihM>!0(*TC__G_<>YMU9@b?S4c}&%5kx&8I+M| zlfG~aS@I%ks{XX0-?;O*I;4M|Keq+dPUlahjqdXn23P86!R3!GN0&pDsIQVFEX~V< zH|}%(J1=tY9ooSI`I~h=HR2?)^P@|~ttToPi8{I{bQi_{_WVaxiw@SiM%L!KQp!pfb~xDP6s*cJR6HX29upV_FEx>nINlfWZRz zqAqBle6D+*Q~exXp4nNHpIo3?&|buT>M@m^3y|kN@IS_JHoG0^Z|#P#%eH@04n?dX z&Z2y;pL~VQs{)?SGFCU2w)xMRPmY$ZN9uUTjOW}ak;XoKoGEm5^>tMvB!c4+iJcAh zNFxJlAIvq`{MK7A+p!LApP(s1zp4+DhEbKc^|3qbDt?)LP#E@~P$pFgrGeQ~xy%BX z+t##&X44k9h}v1RUF-3yMIC@ ztQEMO*wg30b9+C}3o+Zo13HvFGy!r2t3~sf{61`W7&qTOWV2Pj3GMTZImP|KSz3b> zD&r@{!R=L+yi>>1M^aJc zv6zJqGh2?c*ihnCN1Mly{cW|aIf73>XZDOg@EC-%do`nNBI$AjE3BPjczA;(H_lmw z_baTZ}Bdr_YPawhB3LG8!di&3%E7 znZ2uBRIPqM;Gn;~4onj5T=%mwD;11s1kR|kgZyS4h^<)!Y2>u0e3GvyjjiR~S%8(4 zKrk!c^|NkUB-HF>wT}73Gb$A$q!+5{DH>pW5|%67huz_igu89(d%?QnBw4^CUHN47 zlS|8LN*7Qk#DFAQ?p#`|^(R2vKr-d_ZhBFvyOVkklerwoJupTn?0?E(%+pboMQ zno8H$1i;C)a|k{`kcs{ss=ZVbe=!xx;%x6I@E@IXsMJrNq>Tp3?O5apLv&Vyfuso( zz}ZNvm@jFZdwBYk&gQI5MWC0>vjC2}R+ZWl+ZpL`x9b()r9Rhy&l+QKId56MN#aJ? zCp^RJP(Jf_*VrwqZobG12IB9Wx4A5Q)@bPNSTiubWr_kMPE3{GNp>0L`$TJ%BvWEd zqD#9n_=}+(HmN2javF;jr!f_|Rlrxn%%bQ(uPD0CunYz^`AHc+Z30YR(2zj1v@0F_{Wtd{ieDYx(c z@u~>-GQ-{lIbN%Y?zI;baAQoc+*q1`j}!QZ@ands^4^x0mv37NmVs?kyveBrpIZ$L za9I-*lTEr{6G+qj?Fa*IZ%2b(3Du;`XZrJ%vK6T9Ym&El+a?ur{Pt$jD`D<8%^%@z zCxt(3k)9o1(7TF%ZxFZ~ZP(739qHyma*w;dHxOi9Mh`~yMbOU%F5~@^7|9`R&Aa}- z-okS#Q|!aAU)onz1CI}5cix0gbM`f(DV}rn-;;NTox^>YjoBkPP=IwfuDpF$R;~SP z0Yc5MP9J5tHc5Z%{%q}A($Yi*!OYPqg1r%`#PW&PetAp-DdWSZiB=T!ZB@I92=op9 zwa#4JNxhs!2faTgIkVUTlnGB*+!trEI1n;xEx2duNc7@1~+%`8J#7+Ndi zQ+x|!+7hlSgX254Rj`Rc2*Pi_w;wHl^^Ap9(76ctlqoI=D*j6w=kF7CVg!c-G!R^= zd~N9!06H^#&TTa}+4!x$9IE}k2(*8B;8*sTIF3s09VfS^M(+BU8#7zqqlaIR76zok z(5+&rN)Mj{f~m;E*E*IW%JdFO97#ax(|hZvEI{cE3Fx+&k?R0iy0tqV5F1^BJwX_{ zDP}T37z$ta*^Cb5nUpEJ1X@mj=R}&jYSs2^x9FXfa&f$&feD7Jsr=F2AehwS4xm6y zDy9ZEIv4u%w3I9}k653)Q!scY#B?#KX+uGMU=y+3&p)-3Dp1Uqgq+7QokGOxbA#+c zBqNs#+`d^FsiV+gTMt9v%-q09l$4dTG8e!fX1Vgx694{!Z~uafj`B~mGLm;wx}AW_ zARN3obe!f}kh~#}tX82klC$E#i*NQ=wzsTGnc>@{TNm`oljKBSZkhkiRz9@Zh~fqY z$;&tpr$1-Ta6kO}?&kNPLll+1$9JkhnU${)%+@oM->C zZ(msRg#GrWkL#vy?RESK_RD?wE`qY~AmLJDT;TnFA~)s}WK}M35{)?HH))eS98rfV zId7oqb9y-RG2U+OBNF=YPhSPBQe&@2zB$4`aMy2kjjdG+xLBhYwx(w1YG=G@j|dN< z6vUZ8V@ireId#D*Va8ZRl;xeIOa)D5oPV+ymmZ>wOo#y=(Atfq#)hv|Lroc$nh6a& zN;1WAjOX9li5J5IF^a=$&@<`I=eLaMW`CX7`_kt#;rnO$ErO5sz=9`ES#WGmrVh7v zgr1SyDo5;nbyE^3Z+HX)ocIL=5hp=!27cL`i2hBXxVrjJZ3}p4KLz5Yjli^4-jBJG zxnYxqQ`4#M>UXdsbf=U0QztB;tH`=Jrjgrdb=46+9jp z!hcd{G6oD+tkF%lC`94NGSQhz?SnE1JwsYv_c$BZ!gq4}1t+FUzlioav{PGi)iP9K zR#l+0=<=SRd=OZtbV2;Idt~A=Do%!zR4bfG5#_J>O&aBn0S=}>W9tG2$l9N}Efy#b z_b@+~i3kpniZgZRkJW`*3=6+)(V}{-D*-7JK8K zktYC}@#a45P1LwV#Kfq=T@nDCn$X zZ1O_egG_~)E=g|HA8R15QlNv@I;)AJeTSOPcKA=qK{~m}p~D%d41$F9c!V@#?|&o& zF`hBQK8$dEPL+Q6#>0iJ2X<=_8x;Esf){mL)+M>GeT|h|n$#%VTnEWZlutK<{o<a zv<@csB-Ws8(=fdu+x~QkLHhTU3O$ss{^Ittmx6QmA1l1NA`B?Z+&UJO=N{%fTYIC| zFgr6Y-I@cTNlF%z_M%OWIqv%_-_oEufb@!FhLti}N#$*49g#z+m=bToCTM;3>>Hc) z79=l7ZR^`)l59@Y)oqCU_Eo2PeOS7WI{inN(QIr6J-YRC2epU%%YdJybii1?u~R!e z0+4kxwNht4k|OZu_n_L0s7)zC)QyyOY->9;gh+cAXzhtT)Q5$78bjT*&gs_u%tJj$ zwwb$yOSJDM>CeMJ;Gm4?z^T3nxxT>9+J;@bP|GE=v1ZZ>yS@nVTE=_(Mu6iFQ=|1J zF}GQDLK|O?M##8RuXMo=r|sdf{7tCg`wO1xT`Bqvzzfd7?xg^K%dY^$xuR^>7xTaH zF}ItiCBr4Q&cREj!SFcpC%!%!v{Et~5)A8)YQ)BU1{aU_3m=dA8 z=L&#*kuV$#YB*EQy{>9+{N6L*G2!x6%OHZ`U#!x{uD1>6234Zn5%NID+(X&kaStBk z0fef3RM~7?wWG#-_&RaLf!%pO)KNV%{FdYG$VNR)M`wMrAxJTEC(4*`O|+)lMstD_A2^fIgUWx_vmF`s0feA?=5Egppom4!osrXa(lX1 za*n8kUgyMq_hjdk-c?}`I9If^1J!P(4$jwY(UaSd5YrRui4Adf+4>sgjXs`hb(l*V zMt$7Q8$pvqx>E?ecA|XDbrCJDyY1{#NccV|qmUq!u#Gq<;LJf*^&Ed1eDXMI;$bPh zX39xQZm5Ux!L!rN2hzPXM01g*rNVbeQa&$l0Zx6x#FxqO zm~jpsj|;yC4T>}co>7EJ3D-3ry*8vmdUBsYwtz!z%U^;nvbVp-(8Y(8dg64axVF$o z{AjJbjc!ls3%X@b1}D#r0%Vps=FYuv&HN3Mi6IO?#)p+G;;&7Gt0C)rZgy*=`}U`P zE;|>?7)Qm4mZPLLnQ!FdF`%Wm*}9igC!Q-NPs&PbOuYeIJ2&waKsnwS{ySqAQGOnnu{)F@{T+= zngzHo1dLd4z;HM6Js=s|(wL4<(_7fpWU%T=HIdU&9sj<0_nv@U7T4>q5mz*td_;dU z(yePK*wvRm_n$!_Bs_~bdhn-Xj~ja(ew9nZ&(6pcESUekv155|&%~ag{#e=fP5E~G z>IL9&P~FzZUflENgZsY8WSu|j0q67W5$j*iM;iUw<05SLv~ny)=#-^kxjOq;t=9Q% z(RAsy&NkvzuIi}T^dAO6U(}gUuww{iGlbAgt}?OLc+Vh zY5&buPyJ7}z~z%7f@tXPilT@}yYBz|<^KyF!T%TZ z?Q+r)4ErDaFw$ngt-W}X-LGQs<*ZZ<;3o;eU4LIC_!^fsk^)dT+L*3PKAuwpy^XAP zo30!5Q7`sWAB6-&mQJJrYSpORl<$FD|EhaXvb@+R1p12cZ^&dK(?}6WN_hOBZWLit zTe_C1I!V^zu{;uhH)zUP=T9H}1C*D>-h?is)H`n%pt?!ZX`cM{HO@ zfuNtkk43`V$R6nRDQVTwuP~d|27|dze)~ym(iUa#6o9bEMQfuBtpwGQhkg1~U z>IKz6%Li4iJrzrrQookPI9B32wTb~ECymMx)=gwb6a-2O{6)z~sy%ABFMNEW{3p1f8C@$Cs+02)%x13@41FLjxg0;gPy-i2#K!;E42 z@>#iuiOw$n>iraVIz4xX9Y?tT`Qf^y+yl+vHs-F*iIIoo(%jc^6=+%Z;Q2Byn^849 zu(Y`Lwr~B4TqAAAhLMe`5(M)YcBAbp1!<*zF=BdD&FV&_fmsiCbJn_#Xf#bc61~rR z?n)tgXTrQjiS8&(9`9TzG%*V`;8@db<#2aJ^B`aJ4O7^?+1|Ah#m&M0Yy|qCYdP;> z4B*4@uAzDb6LvmaxIcDIa@;mFQ>IDcvXM&$g-g&l3a?< zi9((Y3IMQVR5R0REq%GAjtE6x_0R)wkaw3Yw03yVGsh5p*BZe{vMbmbCDVL*lkW*k zhR|CUDwd4Z&q1ip%2Wzy`Mr3u?p+5O#3r!&{vEkvl!c3o6a^|R)cG*i7QZmcq;R#(by6=M-4}eJsZvAhScYz|A;Qr>O~_`VA^CWKVRQjizr^H#She8WQip{JBU% zF^tYr>vBNzeZ<2RR)35=!EnkVnW83sIXuyYAG{yQZ!n@=)O@9tyuunyQ7;rM^ujl8J>k$8=OUHtv<^W-n^x!tY|$;7kyT|wg-#M?Sg7I0hs6vLZ5xGGi zD_ZHcg7%;BXy{u&Q?T(4n@sXT z!5Ky%$XQS?hT~suF^r((Opf-0nyO~?u*}|)QD_GxjVx7zOv-nCaP+u-lN>@b2`_RW+r<~N>a4d~sSFS$fZ)4!ynFX?Agi3Y2hUWVVni8U1 z{IMWLL_a|?*?AOu%bU1>w*-QoLiYSfdNWb7cZe$yiKZ=F_k|WR(tdPW7061WREd_4 za5R&$!uST?&s(Fj2H9_i+Ab1q^5!lK_+|S*VhvYUT)pGRccYsDc7DV_@qhWoEWNk zOSLPVYNnbOl@8%G6>>umaV(`GT$;^7$?IYN1w#>mD9>f{6xhmHj(A|W3~-`-)ioHio_+8 z?aEP~%Z9xWj846PNm~;@eSX)(W4QxcqgmvJ_J`CoLzYq+sw%{{XM#I6_n2Jd-I7LD zh2<~8Jy`|e*e1&Apl1a|9j$&3OsZY+1wls2 zaz2?BO5K^yL6_edwvnrPP_&lDP3z4@7KAr_hAzWdxO6}PE%?4OgiYtUpMzb{01Gy6 zt$^IzorSi4QQHNwUJbTz5-}F^yM6;4Q^Rhn!cO-+5%fz3B;ra{{m`to8!dof8o=om zxvbW5p`p36ue3A)M()6UDAshecK35xFjy^QEm)UtowX8#W~|h4#2Qv;!`x4$9PBY2 zLqsUIxSqd{VTS>=(DjN1oUBHs)3p=({N}Edqgy|)bnGVm%t6P7z_XKA|wV) z5O8PR&<8xWA>P~_e{O2dBRTDO;kl?G_BZeG$GkB6N&fXBUvV0|gIRqNh`pVp0s+lVIf3tB(Yb!aLuqd31pMOpt{{-RNGC>aqwlfFl0ONe&~+Uxc_o^ zD01{gBv(hxEEm#OXq?8<^S2vX@Vd*qNNM#!RzG#~$ z@6yk-aPZB(Z^>?dZSjx6M?_>L(+P9p-9lcDv-&)R;gy_UyN%1;=3|v z)qsuk+9eiw0r2Xqqvshi{ESpi8v3@}$l)CBTLvmK4gDiWSJxo8m5WJvX6ccnElOCjb{aLjY1z_C&EcXzHqqTyoA0-cwSOd0ILD%j;4 zAQ3j*-Ja%Su44urz{K7+X-2-vdp_%wg85zwub9}detW#+9-=ih$@eD2d{}b)TK*uD zGn9Y5^yXm$-ky#(e`Ph;?Wx^7d1uJZt?hnF-u)&UmOsZvtF~Bkg+zXIoFDww`_tsX zVJ3~+_eF!K^#nHbHD|IfGqo&#@@(ZQ;CP*B))RkSV)m0Q`QwX57a*qj=(s!^>RNyG zRx5u?yQPqL5#Irr$#GYbBo) zRqe=0uA?ziw#B-kpnVZ`k69k8vzM$+5#JOvYfMI2#jQ3AC}p{}oZ0!mQxsG`tb=i$Mrno9?47xPyiZWHcB zzoe$U%0xLxu6H!LT>%-+lScYRCD-MGQ*i(6&E0x>fJ_Zx^N50jC4+-TZa=aR1#J$& zxr#6#&;=^6otoP54`U$A#oI(!6~m?W4bbZ$=*GrH9Mxyc`6ym)BlBj$n*2N>*AToV z0Dmj@y(zQ$%3be*A@wd5KRxE>l>WX#dsv$9mrBAfux`M6^WxP|i4E()Us%C(LRgXC zs)=+59dgZ#cEC4Yu8mXX=cc&hzuJtEPYyA2GGW=}R=z?2dj)x~GNyJE*g+I_24~>; z6ime>DR=X`47+9`q5$=lAbIDN51{k`f+LXfB(kB2Adcu}-vEt0=yi0iX&zN&$>ruP z?86G6R!pYAgztczpr&pwv5&sZ=1-|xeY8`cehWq%1qk}*?L#kN{{{~)BLHlHK)Wcr z{~zI;&{@^r_s#S1E^0Z2c3l%rYTw>Z%WiP!l8vy5`K~NrM`tORY+Y@k zj+KbpE8O{7>yfY_mu;fp^{>7<=utz_M$L)Kn4}+Ce8?NvO&9)0>y!3BNSk>duBhI) zE4g)YB{cbS*?q4S>;YQ&lg7!f#xGp%8E)Q>%P3*M>mPsX75{;Qf52>U#gz)2YCc@sEXkD&rBqHgtewd<1xlAF<`gb92hb-xJ71 zsIR|OO>X9uy+R9C#by~H4emkjbNnfKr+a}WD3g!ylK_EmdA~XIoSQLad~$Q@V4J%n z(5*CF zUEvB(4`yTh22rl`hNp zdg$#wsZQ$lxuw@0hYKku^!r!ky&YAbtY9At9nxpuUq4K%R1GV?-JVm(TXU$^H>?V_ z<-IO@c*DdmMuU1bt2%l%G^618I6lBV)byFhN`V)CJM&~kDYRvq`ugLOnuFIjWOW5D zMcseg&w2jvK82^k%PH?Tnd-yO(b}!pAg$Q9GZk}E66jY*!5F`o8`heIoad&`Q-`NB zB{;IV+XHJ%s@>Z%VHN-a z9s|^(vPz8#ERt6$mQwY(3X4@OAxy8Mf5W|kj2+M}d`3jY=MnXvT!XCh*LP1d+(G&C zbX^a$I^$(gwuKRI_V4vTYvsvDoU;hbsc`1PtstF7ksmu>$T7ycwRGMaqCvnr#{ky%E=At71X?cb3Y9+Rls_>@#tWd zkzd)Hsi=Mlt$q>_asf?%huq7t!1QZ1D8Qa?Pdac*cP?#+kYy_uQR~lFE{xY+irl(> zU4V#BwaNi>c~my`5!$^DbrzrLgeMc_{{y8tv!1Qx*8FlKBE78+9xReAD)qEpkZyF4_ymPNyrL4^_p0|q2Rq%?X%1=QW!Q3} z+U?mvn;?Rn?ba6+Sp7ty^gv-3?nj9%3qWP00K`GsEbr+HF1fLs;y(|%KmSiB;4nlF zAQx%aY0AK+-Y#EWc@F71z<)nzK-oX;o5x}0=4)QR4_W{Wl(gISMplyP^`~)q-XZO8 zUB_>ZwSU)1^9B)Gg_Cm?s1O?$Hu4yAaA^e8HO+87sQEOWC;6PBa~}D%xffXs;CQxW zMFLAZyIjB{iGTIfrk(s5#X?exp>}HyHtbQWyUJc%@y_=cJGI>hZo=#eC_Q)&m&VeK z+QMc=!kJgj2d`@uS&Sp!m(ZNY-{*I}-O;hE`}fJ+1q@5tR|`2Ltymy zO!F6y)rWr&?$Jh@r_|lq0sHmRA|cXyl6y$pUE<4Biy`fFBtR}B^24(y)>PV?Ta-2q z^j&NmIM4;l&UWoN)x0osq7zoCD4=rBIy5%qZA`Hgjs2=UsLdik{tv4fWnW*|o#}d{ zTPTo*OIwvvUa#VaHj5+iR~b|9o5g2F{kGvQuh+77{L>gw2TohlW$*Jb=fo|~zdc}5 z(E7F>0c0y!`?r;@1AB;RP{9;7RWzAS8f<$=%N7`z@}$k^(G|<35uUBSxGmu90OBq- z>8%hG(7|x0lF^=+anXS0q7HI$`#RVTZi-Xt{Dp(`oK)nOsF+ zYQF~skg6(oB}72W$<5A(UG%M3>MIT#!RmOuT5f=59DcImB0kdYBW??VHGg~x;Y7QU z8mj`3?iC*gjl%3XxYX{X4ESlA9QlUwW@L&XUT&t!s%+<=3MqN4;rJt14~3wAkH3?E zM|Td}oScQ^j_uspY&BRF_HX!yUhS8P^Yxskj%=}StTt{#&kQsvn3-M6_Q`h<4R9)V z-{5HOm2UXk>j#hE`A-IH6jh2|cFrWNem-!oiFk9gU~>HN$))`9Th)t{u5Z-1PJ#>8 z&zol9|9(*qgKyg$^8D%_pOh7tME5Mv@AZvZErMB!UkgI&B*N||7BtT6iQ0NqiXN@} zyv#t^%S)~=(Rw8w1Jj?B!;io&eF;JB+O4MO>xj3vMvV7|J>Xd=#0jl)gm5o~n&yGKlWsagVMpacJ|-KWuPj3_;?G`eV~$%I zRik6JfLvT}XH*B9i8g~`D95MWI#eqjv-fT?n4La?EySIHEWMOY44;fxpy1;7($(-{ zLXY>%qiHqgswv^nXA==kYLgoB_=b7ARPaOdbMI?43|}63=kupm@}fcCXrOV_=G;j6 zg2Tr0=g14kB_XzVlFw>wB%6weAhdrbawj8xwjnZw=Ot2vq?pXqsIULI)IRXp%COxP zZ`JHC^2}{k*lvbnY$xUYYz;k+-2Y7C3U!gucVftGQcK7|NE@2_krWPXO|i_1v=Sl( zvN90tKR@iL!as{B8|>ORePaO0N>(I>L+`hjc=frMB&`J=M;{Rp*_V=UVkzK;beNYM z(EV9jJ}=_-KN?NXQ%>ype@h6b|5r_^7FiYnVToZ7RkUR{O^P zTWtGwLl!STt?k;z?3d>K4~$;%Zu4~eJ;MCvZ0lnUmA%l6)_lIFZVqMrM{RN|WohDM zA4y9uON_y2PcJFJFXY%Q?4m<&k>u9d@?`~z7o^a-MXcWJ9s4H_Z4izPde`v7ZOTe> z_(PbYMLq<|nqQl2GBq4HwI(EN zWKFDv;sp(1lX5<+o>!8q(l-0LQ-tK|p#>ukiw%=IE3mnpSCn44m;O&41QGfbp015c z8SR|<-A8O;s2p-&qo!V1j@@d7U;69#(MXq-xOe>L@3H`>8yFLl4gu=qK(Cqxs?@{f z&Awp7`zBSdv9A(e1JZw8qR7Kj$~q!0Wnl*=fg54(w~pJO%Cf!d z7bD|XXK~7OTQhJ-+gQXNS>-gj5{tO$CRxcjISKpZYTu7Dp%S@ptD*IZ8C^z^93b)r z!zrB#5jGgVf|bnC*0ifbhlx^^MR1vt3D1qq&*sg;Llqxm0}EoTfO#-!GtYmfat^}I z|KJz(OFTAo<9%QtkI&1q@=~bd{+A{=03TM@JU4Zvn2AguG_8{49LQ|6s&l_H`G!AM z(M7C>MY5yxoUhcgqZRwGq^uxePs$TC?-l_*6j%jYZ9@FA>u)=<><;b0eW0^HraqBTka0gJ5UB*)EcnV);5?hjtWf&!fx^+(fu0r!F} zS30QHk5C?~^~jYA*&SW?*z8DFQ*VP3!Lhd6CaVZ##gk6H=Ln2at*wp=wkfGEAM*hW zx!X7v4zye41*a423c42{=cgN=eBoM`(3*H^D_RC&?mU}X?v7JSxaF`B0>rbELvNR6 zj9p&P>O!g4RQHFTVSNZMy`NKKUEb0_jr$bI`a;@VDJ}79sV1TZ7drV6TMS~3e!yzc zX^vB_b|n&6!YnDJ8?u_H!D*~hM*LIjhkhA!dlgX#spcFd?tv0%rJ_!F%&MzLjjL^G z#MhwGDIpkRbK?yb*uc6L;&ksgmsNVLLP;T8&pgAJSNzU#X;Uvals%Hxj|?=g`7b97 z#$~mqi{~7s>$PQ#vWq|K#1AXGtFT_>z|2eEktBU^R%>TRWsD3P-x8eDa(q-4RD6Uv z`gen)9ibZLcpl6Pf&KKE``$f`t82ZuE3~!UHOG@E-Nz1x!-RY+PFAE^nx0%nU2w}2 zhIg6n6O-YDnaxqs&Vy%8iuIVVp6KzZI&mkjcrGrA)&c zCK6YKE!b%+sMpXtJfoe^i%*eX!}d5~01cH|sdN%~$RxoG13zg#{=hC0caoVZ_g(un z7O1u|S3KVva*docJCuebGZ$)g!aY*x8p6)34t7J_+-nvl{yOKj?JWr3gIXL^FY3!` zL0G0kCcwg^vF7e&*&+uDBj9R*Fbx-N-mJ?O**OBrKC;GH%)&7%~ z7~urBeH$5JEdE`yl0Yvl8l)RDaDz-uDfK$knbbocR+-QCv|VM^THyoC!Ux);LiFeOJ4$9elnDV{xv zN%K`O_wMpMMMKk+uVvq>kbC0@nOS@9#q1;%o&dqYA^Fc23>gmImOVFCjM$D=Ptjd! zV|U?6dC>~M$G1Xl_#f{vpFVYV((`2(;*MtBk4#!^YANPRrNNv21tpa>b&%7Qh=Y^$ ziU>j~Tvp4sc;k2Pb=kTQp%c3l_q6!nMY7u>=~zWYlcm&#nos<-WJ-J@T_ypYwQsGT zSF72(=Spb%{mELx^ip#O*st(Um9+MRvcLL0t-U5@D_30J>hAjB(RnZLSa;UZ962NI zit@UNLzz-Q-{Z^}b+M2fm8e0th}#oqD~iy)SyU~b@ zXo&VG+v6%^$p0QEVLS6Sge$e0TS=x)ufxw!JFMv9JpkI{$m^O`X`k|%sJ!TlzMWgX>ViV)@MtQ4OZe*>-2xen8!H^)XO z&l3W*)hPE!!N7Vm2d<`I|080}XYsJBW{l+CU*79O+xxm>OOk(iMVIV09je^w_L?q` zEmUDXKF2!N^Ww3M$u;W%ySAfjvUeog-Q-D0)E3VgbXU{BOi0#D#Wq~JHQL;H@2gJ) zNfGw!8%VJyJ>p%Z{F_`2_286~LvznHD$bdsP)|#46&N2&jJ)hY%&AE$=A64zjS0jf zn_?oE#zT!SpQ9=sL}aZu)h@@Dp=vrqsEV+CG#5f1x&HrQ@4cg%+}>_c+-_xCu`At% zh@gm6fq-sBR7zApP)d{t0cp}92?TX3C?zVrD^+SXy$381sgW9L0)!ACga9E4Atam^ z@Ylw_`Y$^xcB7Wz*|?=dggrQoa-)l?8TQsMiKH%@XxtmUWx*1ADC9I8!~wG z7#MNeeA`|9)rcR6CUjQ0c&v=f?2L5oNnQQ>Zm$rX>W68?3}Mm4v{SqMVgrvqvmHbV zB-ArY-Pq(;9(ewe6y^DXit=?babn{!{CwDSQ>Yf3FKnv=ImMVZ*A4d?+;xdwHkf*# z8Z0*Y`RMQX7pHs4TL`h4Y@?UYxy$*jV%y8MpTz~;eqMQX&!@I;ozlBo%?~~K67?M3 zviEbj&h}b@Q7=^Pk$HMtAy#46xawS^)=zKr(FYBM#4_}C;!C)554elnU9LV3J1+7W zhW9)OdLpbvQVKldr0T%2yA}YRB&Yc@&i;P)-~b3b<6xlq+V4b&=A!TQl;XM$zvTgH zu-*OqTf_y&?SDl-zzdqF4holV#5~W4y1#n8jN62F40@t=zoVWeIgp=IqwJW=S8;JqUMS+V zVKbxb5jJKkD-$L1dCI~P*G}!Ij)s3ZL$J9?P8uky%`Gs!-Mv6?2J1v-88c|20ZB8m zE-=-2u|*yMyBf1vCH@L_9F-DlDpB$N-m|hvVU++v;O^AstU>-wQe;UQH1NBi!*-wQ z``)`?uQRyZKhpM6B=4GYh5s;vy20X=7P(`9y5XL=c$cQzvxx60W_%aG>2{8PRyK#Z z1nP87l%_~uDIKXi!N`R86G3@hOLWPiqBIVikBHjV1i3xuIVQX(=bk2iOL64JLvGMe zwTB1ct*ni4iRglA1>1nWt(cFthUCjd>?EUCOJ$(DN^^5YpdwoYxuJpxVEDes~`e&BqT6TP55;rGjH|sgyP`@obsv z*3<&FI&f6R1$u+G&7CR&#Kxpr?=#S;(Kr&w{-hDd*o3`8(2=-ZoAScqD^~PU4|D86 zoZ*pSj0vaF(Ruq%1fT~dD^{X5^FRRmZLs1LhHRj7KoW30g4`ywBn{lO4;kqC>wD>- z&W=ZwJ7_^|?|qhY@0{HQwOvFV?ZBSRnyA@Km1?k1zkvwC0~QgEp1Cij)ZPah54E41 zu}xm@4@O2a)era4LxbI%<>}g4v*-*5@{jjZ{?FXo_$=}94u-ZUNEh@01D4P^1_F$P z$s^oFC9io!EhwY&$z+(!LIV(ta8N7tt>S6?Ko70{Fy2R3TEt4Xp!C${V+-4Q@8h=} zKTEiSQT6=dUEqW9}SD8 zZkY#KR*w;KGH~yfCAedkQ#V`@4dRxIaf^6t$*&e9)#)K~dPl`>Tf$-sUdDvw9Tkxr zQxi2)gCgA^+!JHepz1dW9>?#wt?vwbS*Dfx0W3%nn67kxu7%LsV_6r#G18vC5-WlpXtL{o> zE8BofkVI&!vcFIbFcqDlkN*((`Sk+ksoE|Xg>!?@qPF1Furls~+j;fb#WKi;xk$rU zE5K}}3*^D1&^DjYor{HtAO`90<1vk|u_+~Bh1C7Y>So)}zUR?0cMZpqvsiOsGOXW* zk`16u#UZQ!p6lBPm5UZ`q;rn%IE&sUQ0PL5zmLp)pW#F8~>Y{Z>**wc1^559pX0f_|4gK6}oH}1<6$s)E%>}l5Dx}>7B zj`FG1m*!SmuPqR}Wo4-v2kNxUao*~>Q7lcghUx|WvZ@lNwt3*5VZwgTNXjeedWC_m z1|X0sI<@kYCd%vV0P6O=*Uf+%u)Sy$0*Yr`yr&QN%v?jxPcL+5mPYI(2>N)`Gn7Pe zdXcVAKJU5}H@GHUF-2taslRcT6kv{hGEzOCQk37+PBsAs> zf)21;xxclI@Uohku*Y4V-p?Pvo*U#8MC|c~$8c`FoVDzBZzbrVvPULLIDNX{%qR78 z5(Je;hRdyQ(nUsBw*^8weE`!G#elh*>Yrec6dp>;dixHmw_Ng1~)@9YZlq-czm z*iJ8s?zgPyUAlq6>gNDO#1*7Izq%u~r8poDBU6LU(1c5sMgC#3>U#b0K`Obzo)wTnDq+C{XSCjt5~<+Z#*t=mKLUX5c+Mkt6|Nkq)a z(Zvy3P~Rh4QUSAUz4Cpl_oU~_g>MfxFG^NGOgu$ySKIQX152Wc0|Z(9ydIHakJ%BP z1=8cTT!xN^maRTP7D^T|(Dk~BTSd8kqn0=URD)#^Rf}_)QX?xR5P&-0TeW>D@cm9` z>aE=1iiLzEoS-T~08c@sOh@pt22DwT{$$sdo}SX1KH+{ju+fI8QjzNjkBGUMh!Q3y z_mAtajs$VZW+nL-GiGdUqNox;j0_!(>uAU3UOkSum`R%o%&87qFD)pCV+&<$QQ*Lc zty*cGkn6ZE+h>BWk0QvU55b+VktI4M>HArK=Q8?af4V$ zpL!uDCQibTgNtzi(i;!$mz;C%9eD;6Z=biSNXqhPVhlcSlIT4ZeovrH4U3n9P9OTuxI9P z2TMaO+0=r2N_&@UdpnacicfW64|UA-zkP&nYAoD#Q^r;PiXtB-2N4Xmr6h=T=f0eU z$skGNi&yteBfzp&)r>O|`jk4F7w-{{^z%NUgExoqMDKVg10 zqQY9$ENd6$LpULMyH_YVC>x5P4&gp_p?6H0Mr_sjzBE&&YvYhlCVJGFg3*V%zMzk~ zDA8BDtnewa%!Nwa`yB_#3`)sXxUYcm*`c*b9%2EjUY+Gk@HWqVrB%4W7x&uRdfn*R zt1-&z&5{7q(Q^S?S$pw_vAr=qbb=sEw! zq7*GaZb&|ArWzl_i-0I&R-eedT2`h(+sQAza5|?PAp>om3$y6r_!ru|E5Q6_VxWv` znc&2aa7FYZKBQrqa}o5yvI{PdStT_v!Z*U*(tkG zIr|CX*JbCHZ5{P*sHm=R2ZU_iCLeKqE~?}(T%pSYG3Il)LTppIjik5_MLr=$_+lO+ zmP+;$F_2OzRJZs4Mw5EGU9PXh{b%9_v>UN1oh`i8-`V5oYg2R=*fZvp7dFI;&dR` z7N6yIoizR^P^qeLcCf~_)!gU%nC&S4rki%{*r&(*soytlI;gLAaLc^MMZa$`f-3_+ z0M>fG=ck7-g{tbm-4ar?C7s}cEDL2Vh&g`NvN(#8tbTsowc#B{pton*-e$_%KPedzFAQtdNs4;hp+DXQslUulwRs2`t8FE>D1ZXY^HWi`+6-G) z#~^4Kd|mb;PHOAzLjL50034!G$(pQOx+eXG<|_De7|xU(?=ql%FR0l|Z z-L{?TDQ{)x9v<*ij5`q7MeL1#qck11D;>(svRD~I_GV;AGKNKIn7WHut992pfds52 z>|rI=w@_O?n*qfBL^37O1?4or8LQ}hotF`EO4q36*_3os{*ZL2uxm?qvU%M8R&1Hv z5$lVW&q#p|36nGqp%~-Qo!qsFX;Px9YSo$+72b{ zjj0#FL$j~Ikj+g(srw~8x7Fj)KtKr>EOKc339y8}KUAS6PbH&aSf2V1kooM-=`9`Z zvFu|uN5sz|{Ij7!R5>b3AeFf8dk$ym0HL{lZVAQwDZu1QzEkef(xydzZbZ0wYct8W zVMioe=%^5Nx%K792-o%ju8wC5ScIM{QRkVYFjaA>5ZROg>EM!x(Sy*gfuoJ8>iIxg zMdICKxL@cnLigXye*gWb6^Jr^kKc;x@0h#Bl}NWU=1m|sZzL#kfQG5RAhZ|PjamJ| z1iqxOPyttUHepsnv!RegL)+uw--b{_<-dLN zUl4cvzdfA(8n<^7i4JBH4A+q@LWKys0eIR>>hOTwE#YZh5oM-@eofQ0*Hi&guxdr$ zW!w53Y4&QccyqW5U92n;71CWd#evbST9~)8KzqvEeO=`V8BAqZ^z9eVMl8llrN_Y+sX_%2c~IUFed>}~k)SEzCnv-kX>V4l56hRnsK@?SCPTam3F(ef9NesGWex$QXH4W;RoI*-J!AKqfnDdtl75e&aVDR@Pk?Tgs zkc9FnLqrKAqFB>?A?;oJ@F8qR07n1xA-}eGzda?^<+9o| z4*12lcH0oWUjT^}jIcPAna*oJK=tmBbnc($7kvp0A{06Kw>hK|b*-%>YXNxINS`jv zy^EhIwPR$UHI(69)4=)nw=1XWuO6FCt4yj5W@{5yd z_&Xdev^?wm;Lhdb6bqeGkOw{c#hLVg?is-q&v4+e7IXKH(B`BvINr)QI!RW3sIRf8 z*!W6~FLPze0A&-Cc@;f{v=Z~$d}l%L#VohXudC{(-p=uXJ5=#xWlh~gxT(*|>3F%Q z12M@|eJ^5Z?YX~+8$Cx<9wG|=ri}NY*ODOJtskqc z0xFNa0mDB14(MuWvG|ZVZv!6On={vcWTbZ*-`XG^}R{1d1G7Gq?j^h zDx|;SywA;-zm9g%8LB9haue4zH$yzs-PbM`7HgdlW*NEZOIN-Q@hKh+4N%OXIF1awa*{dM`3tVT4f8_McdH9=OGnLAGq3?lz zCAu2`%g9Rq?3Q1r7P=<$uNm(D5A)dnisyVoC?(QxYcyP)7!nH!ylfM|>h+@)RE*D$ zeOq7;xlt`2FBAE5zPOBAk>fok;BaNUwsMCKZ&ri9)Xgl|812uT*F*IIo>n&WsEyx= zl)#l~h0%byDrystv?kD?mv-AOPBcFlJ#gb3|3u@bYr*5~>ZCAp8-E!a6KaYpY1bjpJ#k0Xh1{zd52A^q~q|XSzQ5n)J$@(uxYIDXxx4wVF!1-4$m3MsUd}<1DDd>n`L4roKC^_O1&Yxp%>x6g+8kyt61ivID@x(yAhweQpQlL;;`?sy2}P!u^U6+z{SYr6+*p~GOVNL;Kte-bT@i? z1L{Po@JGE2Xka$LucweGqny|E%b23^_cmV`S2I|VeI^ef65@`DhC}v)H@eH$eab>Y z8<)`NOu~Z1nKemlZ912a8(K3^1ABI@+@^&?Pq`#IiW?1`+xX+KGh3bo9a;RkOYuAK zYD$!1Os3;Vj)R`BFBDXi3N+NZ)Dp^jOWQXPd4q!}Vaq(ReV6U}IvS~n13H&~2W%L@ z(brT7rsYol#es0Oa4KzUL_v0Hpr+2!ClQLleuzMjh*PC=V^NG3etbykQIg;$HVt@w zbj346C`KF7-`Rk6zM#H{T(;a)cC@i^Z8>cj*)IKNI1hrRZ6DNW%5YJ2DcQK*iw~Q8 zglZ+0tjn|@?jLT`#Cax!4yJ!e&0YBkcFc^C?Lh=LX!T_#toK3+A` z(M`!*KXub@8^iKZY1p*Tatcl>Jzym)q+sYN;(F@!E_leadE;=&;^D9e1!%*Ievjjj z*Y0zaSV)8?9;6O=JGI)0U#uce_xk-!budg>!7h7XvnG0$*}}ww!SKKXsjY;tqq132 z!p|tWX!&sxuFDej4s(purIuK3y>ZjW_CPg+uv(fG9U&2{*0fWa=_Z2=_s5en0iCR= zG>6vM=VWTHIV7A@zsBd@`wpS&CgCL^;%l?81&>q1&iFHgg8oIDKEM6;#3o+K!a3wbQ^?u-WDp}TF%q!?> zEvwJceb5m|?%1zb=bv`Z*PQbkhQzB;vGH3gTRrMnlkqMenVH%;16kF@ATMtd3s_!EVsLyL^)-Nq-E`J_x8j%)HdM ztsQ;Y2dG$%)O0M5Ye%r_CMnEe$-d~S|1x7pp3S&~txoxP}+9+v7 z64Bqp?m{GY{Xr{gOCRl^*!9@;%Vh;rFRDaBnKiXx+cQ-WIq@>DZIm;JKdv zP-mO8a8G0@f-AXSk+qauQf?K!p$c8MamJQhq0M+SRI8UePZ^fGy;UtKIsE1cZ)Lq! z_jW#ZykG0IFx(bpx@{VUq3Kc!YoK&&hH>A~-=>?{wgFM630*~>?zpi~XZO{V%cv6e zw~GCa=Hx$=NOqjZo_wY&-V}e50ZSlfaV&j5!{0Z_ zIz^WiP=wKlSl;20Msq(7vs#OoNaue7lHXrEuRM7sJ%%*vAO%io|P+GXm82Ms_L|n+Im@$3VTqURvK9u zD8s*AF8N3UjD9U5%Rfn?&E&RiIGF=h1Aba*SPl?Oh+Uu8t^Nv@x!;**V#_%QYqw)Y>{-DF31>hp$_B%&i*rFv*(n z6W{|WOM{dgOt5#g3k=XoiW)3>E@dBJg!2_;)&QZI*=rSRKX2>y5Vp!C$fsP{z^ZKT zbj@aXI$?VkZ%-yLgmQr)6pJ%dG=3odqR)FKC%Y-p4I8hhw>nr_bj%bfZ(|gU2&Bn! z`-#2Xq5Ln4!8UCK{%M;){F+n+pXNz!C^MiPw{>{k5{}QW4WIb!$*~-*UGM_ZXqsy}M^<+Ha6jgvrh%Kf#ksJq2B+H${n8 zim1r+l)eA}P=<&9t-WVPvxc!}@Q%5!o#txR6OOCOX_iut=eK=H{*&A;C|2BqEoFGYKUeg;TmGhCu_{|2+S1|hMZiL98xA>orof9=J! z48T$)6|u{<*eGp?$(g3!qbVO0!zBm$M;B5m%QXwQs??@Ar`shEL0t=xXfU`IXc$o+ zYEBdJ4rt3@#rBc=W3&H6xkHvJg0A;zAtA%8A}6x=tK-W~9EiAqbfQ$MHFH|y6vQ_z z!$r-dX0y5z1A?Jz*FkvLx=i!xO;zbU#K)kguLfv1F^vTz_ZYcjbN%o> zxE7>;B}Me_Lgw*+c8#fC@9tUjffo8)*4Kp((DP1FS)eMS?SKLOJV2xr)qR=L0#H>+ zQB+M050$Wv8Xf`xhDsI#oon%F)~zM(X7fk2lFNGk^M9z--)vO74>2-CW3sn;zfTOL0sfBfHg#G>~5JgnPb)i;7m@*Ns)*&KoOCVqu zqB?C1%tueUgqDwqZ&vLMJ+~)YkBs2C+*Tx-RibAsw~$x{E!s@l0-@ zg*1L~4Zo0miA@EaPUjxcU{}}FlsNx>@QmS)rqvksCZL7t2}z8e-hi6jU|q>z5$O$p zL|hYaaE{r@MbR79Y%bPS#+s&+3i3n!2P{H(cc4~x3z!Xr`eh0X( zNp~ZJfI_M{ZnH+9Hdg3^$@WfSdfU9?36Ej={aF$Ae#zHXtU@Sm9v(mYd3vTV=b} z8Jt?U!Sdzb!V0~#Dc^!c^brU|c@osk>Ht!t33r-+a-i`)eTmpsQr)gznzl61Q;wh$vEd?fRu_gX2C5p9{+ zyAI@JaWiqr7>6wbBEQf4jutPFt^#`Lo7C1`y*^&xRp-m^6u07fS{3Uhs3{0n?4eF> zdMd>e*PXZU2;Ui}%?encAdQ*LnR8m)QzcXHY17Ci)N7oNnHY-5ehWvM3m7|mnpm{)66#!N&HX@-O)FuK176x5 z8q5I`QkF;k|C20o7Zt)cy|XFP0vC@Zlp z<~a~0h54));Jb$9uIBH561Xa z?G9|E?jI@J>)jGpd>0=1^Q3E~bTyPD2f+>?HJ=;Er|pc!Dn-Gq{7Tg5zGcV={H_(U z6%_%H1_OSRx-nS=ttaPJ`t=sLO7n|`L(YRf8=ap=Dq$q4QOl#aFu+3J3jK>T1azM! zC%%k4C_3|i^L*3+PKtV z;bGXM8@xcFSCBSW^R74dXSM~hg*(DWdh6;-f|fg%zi>FXCZw76lCAdg{nNZyxPL0h z@z3v;D9b4&!Tr_A)I)69@is7S(5{=@$Z8emOa`)O3(>eN9IT!PRJ?6S>+vu^@36=G zhPI&h4C0;iwf_K8VnT|X!3&1HbF?erEgJ%VV%KcuqsI{-8}HDowfg1~fiBolnxplR(YfI}JCAYLOVhr-XscL1#1P?%r)tMZHNe7PE zQVxb3HpnZlFfu}faJ~z^yeNI(Hsvu|9~Fp1;pbP>82;MarB%D=Evw&qJngT~^4#ww z)LI3ADuN5+-quFFuJan6+`~#~1Gq~wP;+*`@j?B?Yg-)lN1icydo6e`z%)~n)Ra=S z?gmP^3ADM{X|kLg_sNW90cJ7THQ%=7 zo5<-ol+;3hyLWf|8fwiEqNBc@;vHW;P)h&R)Hqfz_cNG$1-$$G4Nah14{Q*Y5?g&T z3w3wSld2;g&j3V)@jRfxgXcT^;SZqP5J4RF!Z)vj?}K=~N&! zC-WR*2vfCC+6qlld?P5OWJWQssZ1b#Q}Ot3XGz8;b_S)Ys^*RlT#I3)NL?wfb5od` z$>${xzQ_eQ$^fIQHe zXsuDX;H&g3B`U{waOuVtHk>x(YIQ`iQ`Df4c<=Isl|o99hq+@pX4vk*&$_skI^!Ts zMwzu00q}n17f3x-8^XwI`tDYF%{@DO@VMv7bT$ks=L_sq<8)GogEtP{QGc;-(WhRl zL@>%)zMA3KzKa}$8m0Tqe?rEpT(Rl*8S1GI6%GYn#>-M7P#mcP!af~@s}5w|$yZz4 zGFA^@Wh|aPnvb!O_y_-&U{)MYGcfO{Z_bYV0(7P-%UV0IDk6_z()`EVEt?o1FZ!SYHG{L>(Oid_^(@Q! zXv~}C$?moD_q8wm6uJ8uMt@PhJRyvdgN$1&4-&9Pq*q6U$*W8}p0F`c8|K$L;DE$o zZ^Msa)Ed8&NR*1T^0qzW|V z<}L*nFF6XWo;G;C_vgxFd*V@GV>Hfq83CxHt{-VLLa3nYyr!T4=63|`2n107kl~QS z;Qe34!t|ECKVPH(1HHcl21c%Qr$zwX>HzLwNXkq7@m3N_St?*In=95*h@FpeZe!$_ zoSAe2j5v#tsox3p0#@8*PkSq`PCf3!jk`H^S?=eShy9Q>76j&)g{hiM&>)8?FP6zT z9xR}3qBLya%$w^SEb`QvroTWU15}s2`qCG7Iol`m{xx%?~%F;}%9;MD6HYtc*NwEaD5c_WMt&WkYwk6u9rDEWoSM7Jh+OznYn z4%09}MNVh=i%1ifnwrYkxL_gN>vjI(EPcOVu~iY5hrx=u)v@j$*$3Vld-2}1h+J0? zCnq~a43^?=zdq~0ksE8}v*ADf5!~|g06+>UPHb)%1w^_O?)cX?fRte4=?gjR04{y= zQ~LYAScm@=S;xPf@c;e8J_gu$An7Yal->#jV~1gc#V7owxT2@N6p!}O zncfkRK+82U;Hc|ddu(2GIYFw1?U%WzR>W8bn_qMg_suYvlop)W)2gS0SQQQ9hZTEh zWvGW$@}L_wI12CXC#yA zCaPDLe~I`dus;-zmKt@OU(V_X;U;d_R_vYvGZj{`x;nJ`RMAxarkYG2=GC{u0icnk zlL6oM3J^@A$|_SNJ#e25X993#n+oT7B%^u<&$Q8M)z<DW z;LbFX-m3mRtz^+Ge!ZJ&_Xts$aNb-j1X5gfC?B)KR+hz@zqz%5D{{E_xEHIai=6$1 zzn<};2}&5E`d&vAyFB=2)A#KzHF)2tv*bIf=A;crPG{ZRTrP2?uE_4%!w$>hQ3XT34Rv^HG*9yJncE z+4GEdN9ArIuq-?fTdw!@dNIeE<+jXBN&OAu=UaHX>3{EImDTm)t7Ldz{&YF+_t&}w z=GF*c7unXQZ`$|Q>R`}JE}313%gn0elo`zS35ccU8`Db9~^ z1Q!ORM|iJ~wRLR$yA0H+-#tp187VryYjv;UJSl8L0$B&0Yw*_M<-V@#H2@80L7SDt zneYia=f0maHPuHeiKNXFT$F&S31M{&q?02SK*dt6nKq+Cwz%i-*@8JnxK1ga>R8!b zI!Nz^+9fMB>u1G#u$m$|3PU`z_A1Yl{>nmB$HMb`>!aqZ3x;{{g{j`|=aQWd1nv!= zql!eYVHh5Y^9p7)|2&z(x>-oniQui*2Dz{5>Qe?N65QZz4vL26=B&~V_;XoafF1W8 z0_BTIG|^xKO?O^eo~s*x#_lOx(>#n&fID5Z>k}_zC$WUesT6 zwj}F@Sc`<$EcLa0V*))>WwQ0PXz85!&c9*{T^s>|1|t=VWqF{ydo(H{(Ab?b&jkQDamVgd3eno)0nDp zvh+G*PE@)HUM&|_2k>V4NKJrOtHwJhLO->iqzpHO5IZa?Uf1k~`fS^O5!Y_- zZ~p=!J~(!B@2Q9a0t96ZRBlfeewEhA+iLM3&amGak0hO)3^X@Wv@h?n`g$`{H$%f~ z>P{_pGI70A{ykI?8@CPE0R8`}`Z`Wus0-k+HQ-AQ$f;}6Z-Fv!4TV_SYNP*vy0+$a z#Pp6_NMG^0CKuc8q~m}87=JNuq)={j6dZbfRfnXf7gopawxU2^B&bP`m|?8zfs_l= z11=RKBMIK_vDVwpwZG3aDmxQhSexN+QcIj>H3dxhIE1bPXbX<&4PdcHx z%SP7RJoWsvZ_+6e(Zn5+Zqml!3+ z1zo&&T%Ck0Ndh*;w$GD9qPRT$Cj@+ovgN1+GuZ6|80-6`XWQ5xtl1KLi=^-H2^NbL z_WQ42myn^{;h?n?|2;xC|4^k?oI@1e2(0j==;%b1J>PMbFzln?zsB(uNi3V@ zP{3B_4np9;NS;{97bq6V^X%iLS~&E<)OuZW`Suat77G$DM7EOr<5#&s0~5Yed%0IW zabU;(^TchHLP#X_q2ztxST#BBS}Nu%qiJsrQSJ20ffH2->sS6;m1FtG8%(wHFaC68 zC8~lhMM@)tvOXk$xv!4eyfZy#R~~`{UWW100VX(*^5F8>>{gi^u6<~0IJH?7CKany z@A1PqZosrAhn@IluAbh#2xY?6OajbU4<Xvi#G+tV$2opx8?lnHCg-|E@(<)yG)^9LFGb}4=x4F)7hM^fGmUtY;= z%hLp7oy+?tTPqYbO(Mc|OT)g3(Bdx@QQr(1of~ydyca@x3yIl8~Tt#VlO69QH4C?CJdH#?cu4`74cI}SIH9Cw{>dJ~Wj#x^n zeayxe)bvvig3$0nBToWlkU;48;xYM!-9vEF$!2`J6P*8(5%2TXne_Q`1D#G}EWhCo zH0^C}`RMHEB`y1O@BF>Fy842b^rLYlDVK5XJ9Da{sO^cczU!~iN!48=9cSlt?|t%l zw8TMj+0+Zsi5-D=1v4h-mTgb{mn#*p+R`ub=6NM%Ycjr?4Aj#<1HIlZBEecI_5u*) zLX?P$;4g*C^M?nP+rRE#M(cXUTLlh9E-oOX-v^_fD%M!)Vc~qcMe5zPyBeZ~mbp54 zE1S|_V9c33W=9B->TG5n>QyIQ{#ubKGgQ^~SG|uYz0SqE&k3gEt{hysS3R~lCPA{0 z+vt1qp`_yJ+P2bi3y3X)8b#^*M138WQE@rdoMe_sGBI_iPAfU5i{_^I?57Ri-ub21 zKlhPunI;$}@YJexk#dc#>nJLqbvR%A1fa}YgojjQz2eX4!09=ODAOUASJb=Gb05U# zAa;e#$n2fp3z(lftZ6y}XC;eI67J6=A?c3RZe{Si;#+g&eXM}b-W^;i$J`$2p09)I zS4btS51lS!f(T}&V=P}&#=F=ZoJ9U!$MN}?@?d%vX6@^8Bf*-N6F6Fhf0`=BJo9X4 z?P80(2jC5eQ+*G!fj8D_9-h5B8mjp4Bwx@;(%gqK3tZywA8=J`wice~NVlcCp%-nC z?CF#GD6*JRps4_7ZpBNzo?R}v%fhe3*|8vctF=pKdX>n?3CntOdFgtNG56=6CG8$# z=Y4N;c-QCFXmO{0WWS#&$z}XwcE5Po-a%+CY|!Vt;BNJ~ejhxec1dmEn3w>*$6580 zhyKffG?gFrhtu|Y->iTwEq!FEj-)i)fAzT_`K9J6v9`y##5A8)$|)f-23-Q26AwPL zJeQb}S72P6T%jM)z$FcE^Vw~7D=*u+DKlH^lx?!U;9&t{%A=w;l;LT!_YDGUX*`osC+UhI7Ck9gP*TPkan`Q!%(t?}E1TFU(ga@Q7n>lakB+?Rzp z&Cg{B&G*cg>6LJ9YKTN7n4LO)Z%QEit8f+)iVG7J3(`t2w+@vpE%ke$pZRBQ@6^!P zUD8dPiooX2&juy?G*8|Do16QS+ZM1k%@3)uKCeiwEBrwp$Avn`-OL*y=#~(zxV^oK ziC@3EwKnk2g}Ltey~#|~`{XsSg?@#CwO#Va$0sX`1^ZZ4L4%>Ebt6VD^~s7Jt|ZMk zVOq|Cz9OEO2I!Y%nAW(=#{{8UN!Tqb5+~;#+`3)IIU%y!6mnWF&!yxPJJ*#nLNgE_ z5HU<&m#{=gYT5T)CoaA=kvu0AdkR;8(mqv1ZT(u(t4sB#a>`@y_mf>2wgZ9+G_81w znR`JalZleg#!Bw0x`BPhOASFXpr0shDDEzr$kguamHe4a?cMrX@@l~Hw>k-Ex@~c5 z+|21rCx7bn-Fm^te!cqCM8;s5^N%>t&Q@m&MNyVeknVh}yQpZn;4Y;)09Q`c^i{bD zFT1JM4U_u)?7r2NUQ>U4MYQ%=EBs`3m5v=@6&eH+_0I0t$gdv znE+sm&trjGk}Z>pk3FRy5vNL%tsC{8>^1Z--J3I=g4S`GWV0287aw!2h1<$ul+k#% zD14yf8{|N(_a*%bS# zA;X?71m8Hi@o|Z>4UD(1VhdC9Mu6jQtUidS#NFI=3}}RC#^HtrU<~9VB)V+jB~uq^!nD>`a}3KWy*u zS-O<@Q)Krotgyw>)cgtV3`@Pa!s^8Gm>co*c~V|9+70{Qg36Hb;s0FE+lqv0|4gVJ zl*w!fLEJb?rH&A-oHLfXj7{c-w5Y7*4mCu;v`cZ({W^yD4(+~EiMFxZ%}*@vy%nnd zJH~?W)QuTCNF<#}WG50HzES`aZmD%=Qs?)!*-8En_TDq9sjclAMl4uC^e8q!1Vp-m zfOHk+LLAdmn70t5&lK;F$cN6&rV-&_7X z@o{-lrf5^Txa6#0rcz}9 z^99?|^F~X8`AcrNM?ADYMqw#_-eg5IF#yw!RZ33lKDEwBePmzOY`%vPWe=xE;85G_dRsc zW1YwyK9+w4RJ$utxt+98Qso@}oUsNh?Sfn{^0#vSAFFx6D-boY$7$tIr(Lc~M72?+ z6V76oWS8cea{Lfsj5V_rPIf(w8yysu;ArvS^p*2`LNEBVazwLQ>n+E?<%B+HJi2KA z({k4omp|~Arp7ol1I26ltZ7{zZJkZxC_MJIR{Z=R zJnhHAb=~<&iZ7X2c8B`VXlyBURe5(+uW~||XC0G79i<={Gw)nv$cR;8EcM}?&HUj9 z<@k2@PrkFA>eG`r^*%otGGmRM_KM8*;|*ps8$(2ixAqZg4K&w{`W${ECZWuvqSyhA zD8x{dnRtn7)^vCWlRXBEpd>_SrB7RueNa}6rT_&0MY5nF&pvB(UVa#x)rx)T+w6@A zf3|t{3CyTR;LxwISwDUM{{8myQ?s5;o1J1U8fM+E@%4#4gM-(oV~`X84L>T(JxN8% z>|znYFAQPq2%Y~4K1tTt=^m54mW>{{)^wu%j+4?1VAZ!;sv?O&H-;S6(J|B-qtK^H zUNc<|EPYBjNro_MpDd;9t&I89_P6At_AAk0?SL8*Kg(V!F zhIjAmJ&4aaPu#jq50lnqv&kwUI!#mUP?q-SUp;x<>u~+P$E+`aWTYJ~S#fnfw{Tt$ zlWo{qv;Tgbi*#--dm@m%@#zG&CjZ9F#{fXu&J(J*5v#D)rLw03ZI0mA{u3jJJSw^k zWXS{^65Zbp9lM4H(l%F`LO3IVV9*R?*7#XiFNN*JzJiLMM=Ljf26kBeYVUnE=4VW? z{=M&({aM&r_b>;LPm()n@`eAp>HM9eXI|h^ltE|3EUpD|h}(bt75yjDc$j`6T;NW8 zua4FuaW#MOj(^_yu`%zz{Rd{?*?(V`*@4FY{>1eD_Af{B-gg=YfCu`0-M#`~m*1b5 zPWk;JbN0RqI}Gpvzpt0~F8>$(WTJP&6RZ79gqHw)W5&v*a4mq9Ga^+zwDp*H&E>+H z)elgPYxwgHi98M|aCG}W{SyO-r|~tv@z7d)Y%K6dFDri*H*rM8P?t2vD1O zLz`=<(mwyjud4ESxd~fKbFxr*%&ZWP`%U*ydX}07488Z`aVA} z{2JG!R$-4H-*&^&>}AO{lr?mdfK|+c>hCiSQ*}Q`hqoF(473rX&a8$U>y$9R-UsA* zO)IBDlk#gG z$7=0yQhdf(qaVLTb|XbD_2@`pmc1trw?nFkF-;G zX%vXnRqjoKb*YjUE0S`xayvubc0Tmd!~bMyPQK*LaGx_Z5cU#uHtn&=fA9t%X*j_> zh|;5vySaR3c`D~~a)BMw0CF>>$7Eyl!073e+!*^(LCrn-Ltd7(4dYgIUksTEmVNKH zmi=)rg8pu9^m&e#p=1l^fIRHX+oVh%zGTk+?x`=^ho3cD><&=A_F}{Ju#7TwkG&Z&8IzF3%dUV7!%?Lm^qq*Tj$czU`?@oMsW2-?qL7KnI)qD6=-62iU>gt`Qs-jzpjO-@*%3Yo zo{sD%Ee@f8P6S6KxRv3B$L`LVc)qWW`K0U_e67y?efc8is;f@iI&F0k_oiLBfNFUK zB%NzuEjLme+o+@DxI?~TTGnM1y1`5H#BWb>Z`wbaTnnrGu1w*jSapRe8_Yg3P+2$a zgZ!SnM@z3VadUH?$*$E)$RVz1F@2Zf~Rc?#kZWN>+= zNcm(&5>%@1Y%6yMhwLqTwZ+}p*zN6#=AW&f1zp2f^Kg*|Q%`$*$>b_Wk!!E%d->h> zZMZ}(z&GDnL76HWoK4K$UFlR_VkKm@u9e%c2P}mJTdI_-ZUFlxdxI=LowgbBcC5ls zd<%{nK^C}I)s1~-{$|>dmg9TZyP9}jhP;)%Ts;FT|C8fER?XZk1-yIzPV0Cdn4pi? z0+d&pc|4yJ!t^w)gST)XghXS*kb}%D8wrm zQ-3^rgk2wC2x*&1j)(b7cC6|+?JkpDqrq{6%@qfwt5k8?>jf;uzJ&}8_MN08e_A(F z+Qu3v8GiRXk**6jUjNJW54?044aZN^8x@f*(Ty8J)!lT^WV?bZHB_#R|SG zK5w>BfiWGZb`D6(N6&kx#gOYP(Z~B*zKad`Gi%Fx#U{^5vmFXr*U0sWeVicET<~bX zblN8{cENpY5>u@hXk`H4tUgUN#T)l-vOR!&nKGR8qVr*}u`x;f1s zP$YTF?S38kRE~@)2m0Efl{;Gh&`vzmqb07e6<5kLQwUGRD$9CXOt(wg7F(67`*0_` zFh;Dta-OD16-FOi&A9{}wn`G}=?P&UrR9o9)}7l+^18sL;G)Fc z>RmZg$DO7rEO*xGjB*4WD^OxPQ(mwvKPp}a?a@3|cZT8rm)jWV*Zbdre(fn43+f#k zG0tp@g0&iju4}5j`HZQ0rJr7+6}rrI-bfEzp5|mUv~)`Q*~LC1)w?cmRxB|4eGrsS ztfoK4!RXh^2dAZh6hb4fkLv_tUH7*0Jg1wp)yjeN5(UwuPJaUQ{ zFBDT45oOC4N#dRAMxEayE;sh?uL5Q1uTAn#`K8^WFO<#<7Tef&Y`G@V%_vSs=emZs zAiK~?TGje0R_22c7Q1-`pE&v^5&3razKGmO2(!0T_XumJ*L63wWSPv)2xt>1hWnn5 zqh*YvV^eIwuCJOB)>Z?%CBx3KZfndMi#o{Zqrc|zGw{P#JPY=UD6o2@l~dAQ<3Icd z8udN02JkY2sc@N!hPH441y5%pYCYmc^`n$tyJk#bh%5_6Jt^&Z{u=X|?AJkYR-*{Z z=<`&Zx>dxVj8F?FZ(Y{vO2`juK++?&E_gj|%3eB)9uu>OU6x;x(gZl%+yKrc8Mc$L zEPSiH*o(HF1-3OiPy$2kR0psf1$L58`tOP5-)gIgmy@%Nnexb#1Yw+Mxj#(ydwOuJ ztqDhjk^*JL)DxlKy=b1NpOYSMOO-6g(>xXrX0{c-w<#Iht&fTe@eU&2HC^+jNVI>B z61gFM%&bD=Y#i!f_Nh4xfeTB0DFdlL_VW@JS+4XF4UP6m1-#g1x$<(zda~io zDo~UMh|1|w#Z4wnwgK(CtHh8+B;8qOX!SEH%u-+0?JfYjqs zde2kwAA_#SRM0Rfrik+l!PQdcc_m4jF%j3 z$`+c43So(Ovhwqr$HZ;y(*-rF%PQZ zk1hVvk@K=_d`*Csv5=_WXw{<#qwY^rU+F1{j`NiF|$^f!KZ?CoukTg!Oy=qWHF3Yg>wr9sS#9=6Q%! zjJX+N<;c)ZkNh!QQ@)xDo_-{};Q4Op08;hr*zUXS9?=5XI*xG>##&Edixv*zd*2rN zq5=WrEeLm)+rU*S8N7%7+$sO-PVG-ZN3vnFv%KVUsTP{pYEB#?pV0Cd33D;tN8FXp z9tlfXH*cxUWPXB6oH%QwH6n>CgQb-1B-to>r~u3qb(Hr(@~PnsED+xn`1_42eEg4o z?#PK(_Dv;~cFGD1G8|4&mC#`}w#F^vF#@)4=sx=gQiHT{@pdJ4&3QuQizN^gNhd_JaJ{(wPi^uzUtyPlT+trc}XUoZOrH;~3v1 z7lN6tcc`f$co=K>U{jlCAnXcDzL8miU zagg2AGUR;EDr0xDQqQ}Rm@sQtl(k%e^5gp>Q=U3%f zu8$#L+ZAgI+w!z#^#Nc$m)qwq4mlwC87thU?K{wqztFmCto^x;?5-iV1AbFvOfNkE zxyvQV_D7+kVL8!q&Xv~0ilJMS<7MW=!Etc^O9O|;A3;FXKPvEQjk}_!cYaRXq0Kb{ zavKFH~+mNTMyz$jLxwW#hvz^o@vTEBHoE?c`(}EwC_4FUsWJI5CgfCmKv+i7fUFrf#3MWMN9}-Z92UHeFaQB}B&ILGI2QN0I_$=cY zmRM9vtW+VsZi1Nx1OS`!Asx_qwksbqNz&-XhF3zM*Z88N#JM8B>&qU5xT6 zRg%d@XGcCa$xY+ujf*>JrNevXBkPh=gk}&*d3^&fX8yLj+sw8X32$O0C9`T}kf(zn z%BFRhTjnGD<<+@)j~SaQQxfDv&vvt}_oo@IR?sBxVMh-@>=*x+XXVd<;SJwcakNgE ziaj>nT+EO#&$#Uq%?hr*LioakAL5T2_SPIY9xwWA(6v-6#zcBA=Sx5k=9A}o-@#35 zh19xS@I4F5?@V>xwa!Eoh>8y)8!zIo0UnH3rh(+WQjgPbIJ6jlOB#V6Ts_6{QhpNB zhH2uXY!-I(XBUmKZb`s-Jmsm{5P*p2Zc86_alhAL>H=nq)0Qdzt}v#TwMZ+mixkkb=y*NM@KuHlXn4c?%4 zLf+u^SygoS@9-c&fgngR-BGZ=P+`I8&|LHh``QDl*d}CBCAD4gi0}%KTg<{oj;Yc3 zA&Kv%hUxT>NO?%PK2KYZ7keGG!H`A~;6je(9Za&{0mc3ZXNR_#XB0U7it0@D7ExJD z+cCoU#A9`2+K{I`srQFncz|5m2zU1)IXdVMagIgZ$&n8a!-HX?o`MN7!S|g5HBdXr zk}RdHi_$?pN*K(8=S&G~n}$!Tt<;7$W;V``#z>P*pEqLw>ZXF|G0rnLMzZ|m>hIFu zWIQw4Q({T(5xi*V2re%iuIlhbr)p@(0Zip50Lsg_mKp}9iGywP#YC-U>3vdVW*r&0 z0kb?(r?(j8ZOZ(Uh14Y?-C0c#R!sarAs`&IQ25Ls>5P$)vGR+%YKwh?1wPci5+nmyJGzdL7!6st?UiVgxPO`a zHpT}gh}hld6ro}D0^dMicds{P2nU}AaDIuVnb8rl8>Hx#nBtgwo2vN+Mw8-pCVrgv z!PTb*^YWvV3v3_Ksujt(A4`R&J)Iufo=GNlY6hSR>P=0D1rr{`$`+NYl;lD-Uy%+C zwTWrIZ(UJn>sq84UP;>Uhb(hk@r~q)VNSk<2-efNiVbNkbv0Qyf zqnBjYo&vO7i}$$L{{FsP_5nZWMxdg_XQB{h$p}TqLaGp_d7Apz?9#lHFP-;V%E0LR z8N>DRU=vhz6N^txFWA=TjlSWKofU3vpXl{(N-S)wZM@3xM=_!xYxM8c>*J-;D@=?8 zwrxM(m91kPW?cb{&5qSKeH`=4^dy$SZZ&W(RH-aC83UNh=nlC>7 z!R2@H_(Vfocbk-vYD1TtCM^Q7-lkcegf{!s|BIGN-$hYYYpJj0==s1)G_e zTBU$KP{Hjy9Iu<=D5=@FRJrrL)#7kL16kA=Kn*HDzDJ?nNWb#wZK8u3AL>r%)8LMF zy`*yDiZO*}gd&2H`CM+X@f1R>8K9}+pvl78mWb-8d#Ezw^bUVwYRs%`jlid;38C6L zxq>#yUZ^jj)^cQr^PV7%&vfuT(7AR(+g5e%{(Hd}aFRRUxm$^6GZhzio);|vd_mLA zFBKQ;xaGQiBiMp0D2(1VkT1b=wM`%;N(ZqmJvZ9T1KDnrnW?S@+DA{|>|QN4pP|z? zG%0V*XBsg#<8*%E1*XRm_5g>ny=qd|$Fo_k-PzBxc>-0dDK{Xd&@zb;HOZ+ge{`E8 z&Hpw-q3On~{ttG$#$(Y&5W-;`E6Ke%;)9T9f&Ul%hV3UuQGlwoqEq9$qI$VOjzW{t z_oyF!#geBsZ3Vjs2WOWDYC@zRPz{u?T`xbn4q`K~=II&WPK=blH;Rws%v0upXKYu> zpTmvfQ`I8^FwuPuPmCakO^hr>Q+5M!&8S_RJuOvuoPRI-JHCrn4YcjaV2Fa|2Srez zU3H&dpo59&D!Bi^#D}9_24=%2C~0(tiJ&VraeH~B|FWp7R|KFw>!KOuk)&r@YCWH` zl?8MREtZrSpbL#>st2?}h3{R$R~pAd1^`l7l8y2x)WxIYQ{u7D&b^N&k2=mfp`wJ& zk1er2pxZ^pd-|-i4q4o659OE*AumJ(^=kS+?~yhMS?K+(td3qd#weF@d`->mA^RnB zVu`Qm3s(!DVVLhE?07NrIFMRoS-wQ;D1sE0j;ZT_g`x^dHZDd72_l!ecHAmtl!ZpWartrG z;P81rUiH|ohN!4Lv*X-9Z%11_Q&OaFRJz>p_kkF|>i1GJ&S+o7YG7(z^u^r`j@6ZF z))r;Pv}x)3bPt6^d*!8AvzQJR?u7_(E58|7xb5+7i`A&xLc#M<;cQ;SV!^5I)^`q_ zi|Z2IXmQYZH9#nKE`^mjjN8IemT8GQc@(gww%fR!&hmT_(KO^jw40|^3uMS|xBH=G z!I&cGg?+kU^b$Lfo|?_R;y=<|B~n9C^vbr2uyo|Qd`(kH*QDu(9ij1FS!L{HG`3OR z0cM%2Ve*)D`5h^FZRfZR?wjSf$|1c5I^1&Vbi~Ha+XZ~gH&BE^R2;?1ml6m8P3N|M zEO68<+5KpKa7v|r<93%TbyA=E+3!hTpY1h#BoL~|Yq6ZI-jO?ZVl~2 z!WYv!wUht&MclmL7W?P#+NA(oMpt{e|JIS`EvrG#RfC;$D*W z|I7E@B!evEP^u_zoh-i%Gsp3ym_<8O*lz(xeYV7u)<@80wz^%_!`Yk8viFbtUATWQ zK4~PLH)Y-l<*5C#g`ay@uM=zYFTgqC>Gy*Z@=D7r9y6b1=6?(usB&s^8gTye4lsq? zmn=9S_dC!rF{Q_c^LPDj2NTn^Jzc}^>%Y4;xzJ_9(0Y^%?TwQQeKsxg6 z4Bh_klN$C~dEJxm8k5YOjZ7}oqI!FV!D4e{_p%@??6Y9w*d8AjB2!fL9K?JDY zCBd5;rKstNgnZAfK5Y+Bv93IUhGcLXGQka}b;P6Ji&vtwXbTBQ0hUaKZDmU(SOU4) zEkPiZQ7Xr#*7(l|$I6~M{gPB9>yrTuihHsz`RjwZKDbg`8tR*JQpOo|#Il z6Z(Si+z_dp(nhuRYj=E4l+pAYkxzsAnI=6vc2={FbrcknU=!^2d(JVvoI`~%`QDX7 zZ06)ut}$l=LE`I0cf~OvDUMvvEwx=t2S<=Tyj{J~$!L!BC>S|6FNfNcLAmz+Rb&220v=KrDn=2nK`ZS`xjnTin8yk zkascWjqH2p+=4w9n_||H0-s?6BhM&)Ht+d_ZZ1%7RH6MOf>8!24ECW=M@-zLNabKvfxr3{t}DNPjOk_MwSD_4 z#9h#{>;tPMqf=b&@M%q2?!w&a(8wtN*S?w|ie0d2siMFL-74lAIeV?W)N*K(wUXD) z_=9`sZ2xB!+8~j;Rc_$nz%?)D%JNxRp

CNw6=Kkk~gcwt< zmkHeyz=JMaI0*le`F){;FyvrIXRl2K3M`iT(s~%cijChVcN??Y!R3_{S`PFOH^c-V zDUks&{F%&1uw60FNA6NE1-Q-w;%zql&?@!9e`X-CI#us~c3Qg7y`wM59GIhlGe(sZ z2i%t5G?(vYUuP{(W5RUeCqeExpB*5*EU(7SQp*p||YxWxSFI9)m|K2#k=6v?Ga@ zmlw&hmaMza?z?$)3;_DtBFmVXF!j)R_-E}`)hctRa3J6WO;G>#e5?gckScW!u)T#Q zphBq9osr+17|7*LeqfB6qXXXm}HM|U3^YkaOL_e>k%Vcno zj1jbkP)AP3IN2SN<=QEAdF@vb2%vYK&F`s9fBvh|k4fd=M5zz!zX$`FE*+TI>&m~b z|2pm8|6zUq^@G69<-bgB_}~2}Q-XF}^-(!}ZGa=td}zxq(kt@0k>%Kq~a_Y=8I=9E@Y+N-DoSf z)}Z^ul)Sp*>87egN;IE@oq~%XyM7`Z-8wJ6ic!rj~M+`l6_ zFEf2u-q;aoQ&Z}9S^FY8{YQ0CRI){3bPQG8a{>^(pwyXHo=zx7aAMzl1CY(s6SE#HTO zZn7{doEa=Yg`?rLoir8WudESMh)~hmjv<`sp2ZMlFd_z1q#xf?mn~3*5~khou#FOx z?*5Uvn5(3a7<*p_l-G%GYkLG9lv8y6kxHqUCJ1DUhvvUK1N-fwfV-lm|EbjnmJwQZXWI8 zC_(|>Zb!fCEBHM^p7%VoKa#+uS;~CdLQGrvA!i| z)~m4OZl%ozBxR)7R!u2| z{XCT``UEZft68xIT)xYAyODvqs|oU0zPRy;!%b67p>4JJF@7Yi5~oFsVFet@NJ;W^ zHXLo%RFS`Kvr1LOUpIHa0(7#^Yw!1|b*YAZy>TY#IRJY?@endJ)+~oQUPNKr_qf%3 zut&Cq*j$M}M0)}zVv{Oy#Vg`y&7_o^!Zm$^8O4;(Tl_XVORa!c)F(jkluX3YBdXGF z29pkDcbjrR^QT^v$$trXh|LJ~YOhHMA>9lp=eBdi; z$C|q0JXGf^Jl`eEhe5_C4m4*8hlF_Mo%E}_v309|&KL@Fry-T^ZjL;WSp22TWjZyN zj;Y#y2TUnJUJjxJ5dE& z5oE99SL*D9t1iwV@z?^hbuQ;-+tPZ0E;xVfg_a3j)-Dx%tdrj=tS=XT5f@G8%O9&^?xs-Hjjy40%kxD`&USO_$tA4b1{>wghTuXtPxVbAi zj$Rq0qzvVOYlK<=!V={snbZv4>}7LMOS^3n z+EFgzmQwUrlbgFEc5S+5Xc$_inNZZ-mKX4NE;jSit)wB>-~3EZ@d1AZb<-k&;sO1m2uzZtqX` zJG?$|r%)r`)GMoNT-JE%bhp!bYJ~d7fE)Wt972{#?x7Y;sJ7sQY3@IUt~-sjh5eYx z$@866?9@Op_PxF9s;5=`%hd5wc5>7c&&R#p)#0Jtqdr40SGvN;O*e8f80Yi&@maNG zYm3^Zu2l6o^`x{b!Qe*VlWjwAX;=040;DOnrKC?*qav3r;Thc`kd<7bps$1}Lp zbklKTli+ucnmkI|j7fU6$xNlqvd)vdp<|x!L#gXpXzyqdwgY8-PdLS1Q$HQEjK>SY zxpQ$aWw7`SEqD62Sru>4GZXfw>~r(12k7GgqQ;sTqn;i=s2Rm7CC12Wb375(^^i9A z&4<}KZV~Z9re3wXb=(J++;{gK(hfqu8~YuL9zU$yns=TacE$?>8Uac3nw(s`*ohP5 zaBZW*|@sjmLX zf_tlY!7%zBcI<$0#=RG&h7|>^eC7j1eViF@qLk6I&;ZWeA0z#zIGNSpI`7`ehVG2+ zD-7UTTu4wK(sd;&JIFVq)x9__e#-^^<^04+ekAJ?RoVx7K1ZL(8lUwH!Fl386bYXZ ziM;OvTB1L9M5yN}k>O7pt$rFSygM}(pumQjmA=GIvTIh@V3lHlHaE|n8swj0;m>ca zN8Nm)e18oeyR77pgp5Nfzxq7#dCmKG9!n$R^}z}6+0$pUhCOF;^s1LWUaR}#(wPfV zIJe_xjGT^dWChJG=ibe6?yZ}VNP(zrsvYXO`m`{+L`jboPrc8<+4VL!EjWWvYdq-+ zsO|)M`*>3V-*{vno=SBZEnOe8FDqib1)&~l zlO=hIf9H0Q(J*@jcwGC^`4(!{5JGGJY~M=2wJegA2d+HNAZsLPV0 z^~PwgY~&mz@@yvCnXJJH>wwNT{*xztu<$d8fc7tz1Y;)_4^-iBX5W=epT=zd9&Co?J?a zG?@k8U&1WXPQ>E9A9sRDT$ruhLs>`n_j{pZ@vfujcRl|!+*9=x^YTyLhwHPGu8s!G zBc?H$-suM2Rd>3jyyr-x^gX@1s9NPLki6!yBFhz&yPP{ASnEPqk>W=$!eRXR#Ep*J zM_4U21)`~NN28Nr2^c|Wy;=#=sn#e6qDlrp^`{+wJ!`v>-EAhTP46p z`*bktGwl^1O0LkuFnsXRM?1Y3ot;)8kbJ_fh1(Dmglrcd@4A)z1ZmR?9;wnvuG_!o z8U-zH8@=(15wJk+@7MlrVx^2Q{{#FxNCKX&veRcN7k&jz01lcuK6!G*8qi<;^BqCt z|8*YGC1~BEf9#yd?NO4+F{pE(PQ}8o2(RJ3_TPHoI>> z9GR0z{svjvrB7l_WC_Xg+CQ8P=mBFUc=z5@8*sfH!6NXNI)UAdHSuw!8P|a2UE?M4 zZ!O5<&RgM!l@*GMy<6V*W^l)^pB7-<8H+!iJ*<;FD?=JKz~3tF9|ljcwfi&^f8JVy zq$sQeXSRP>_17`Omrs8ku9LTwzF#;|J~RNF?L`Hb6pZ23#M}!FQgHM-_n&;0JMY0Y zpd?5QX+6b!!s0>7^2R<2=hDtvdEpAWiEnNLf&>R4Z1FIBr656WHAS=>+(bWdu(OhH z12T<7^5Ct9FIR+CFCL>pszCuM4veeh^;?T`yGs21UJrkg-!nG-oR2#OJQ?_{FuFd# zspPwP?}{2=Pg{t%?^?aE`1HE@J)wTDHUMTnuT(z*UJP59=PZF{4_!V{0yQ_Yg_vlj z!i4+1v;hBxUW|9^M&Fg8`=DorOUKjI5~Rrw+cua}H5{hBmi8PQaRc7~lZNx3ex0-i zmxvtWq3X7Bt06v1S1)7k*^W@}e!O*gFiaV~=wD*zeE!V-&v~Of{sl_rHE??RNLBLn zDzJH-Ux8QWc~n1UYWM9`n~(6?-H@13G7g)(CT+rf(=}|)TkX9(eROI*aHHH#9!w3= zg{bMukfkr)?S;IcSHpw*sbiomxG0_6vMWuxM6#XAe`r235bH$h1lfH2Cv|XAotb&r zeXi~JhhD>(My>q2F_|O_>nC-#fcDg+ido(6Zy(Q94oRau#9Hb%W)HZmwZuMM@=i)^ zv|d!^{IkT!oU42u%y<;2a>V+E;+NYe93y?8v-ERL>lR+`{EbgD^*iUohXe1qdgX$$ z8y=YGDrv6wS8mR2aQZaJC0ypzFC72muUGh|Q(*<~KOe|vXLa^0Rp#b-0+on3XN@d; z1Tp9?pr_7ybInI9c`2_cc}3))@ohiqMuKcD_*=Y`%Z44U%m2}>rYDqE^}VLOctp}@ zilL8LWhBq;mRCt}dxx6Baa);Hts`5dB=B!A8>@LJ<%NYbBSl=3o*_*epkp1-K8sjt zb@%hOj@9=gX48`a$R}t5r!v9n6pX_IwcE+Xi%q)aU8{BQ}a|>n)l#6uYIjf$jBkGHumSD>SuMw~L2J0)G^bIao#-s*}^AG1*XBRUv-yum?)x^k>dv;1eJm|ND6 zcc*rfUp!jupJD41&WG9VOkvM{+c6g=L0EsSQG~Sj?;Aa+miTZNZ{1x=GdpdgZo3rl z>DDDcTtm0lGD{dN_<_O{*pe)C0*}Z8Rl|uRj4R5}**mm#3Qn8BW|?}*p#q@3*e6p| zSv0t;tv@0UJgs}~04To~!nib@La%ZH@-5eJUZm&DSNLQCYrb?AdmGJW(be-CT<)Gl zq58TUnQh5&z&bXgfwHG$LMn|3cN9nro*^w2qepl@8@STflpw^`$Lh@oQ?bjnPv4#Q zPO@KHSz4z}y;i#Z5$hbsT10WZ2h2ll`6(8@Xn=ICPRpCZ5bo;b*5+e5 zz)?uSI-a&?sL?K=?wLAt^X^pCCaWx}C_wQ3Lu*QXjPmkaMmR}&HF*(ti(E^C?m zmq+<|=iH+2Ff4}Uii|ut*eVH!jqk)r7NR+wa%5jCrWy+;*p{-Q7d-Gn3#*9TEu@dP*9Nwr@=McOO0#_{9RfrwSB;Eyw=pDHtu%;9ceib#N%ZTptwG;x@k*jeN0#upW%Ar z%Mhxp=GV25jYsn3R6mE>1lYn;b-gO>1TLEoIg^P;+19svP9@@RsiSz<;#3CpKHi7s zRr-w)!Do>z(`(X@*s;qAnCwbaEsuRM>3FJA>fNpTnA4X>zJQ*~dVsGviqqIJlc~>- zy)*hbw%d7Ti{~J+D~nl|a{HyHlG9hu0U-)je>0IYndNYA^G+A7b}@WY?j3##R$pHg zD*PnKccAakg_JO3qLryOspx1U1t_oHl9XFJ&82^BM&^%mpWNPGo5~;bvndr01#SXBNDk2{jY%H!Kfu>ke5#oi+J z?*VF6#6L+I#u0@V_AL>kzL=y=mF`|17qqdmorV<*zm!oZBb^J+4e{ zc7tU)TTsOUeUVqS9x`z~Zhb7D8j?ylB~97Ma56llm@KZ%b#2}9HF;B2-I26& z?ApdIpP^y)ElH7@(lf`;@QxHSQ4>4)Z+!Z+4yXO7b21fo%2iY^trIEdysZ`@O+C<= zJ~lPT8|Ud)#(70uKXuK>YhNFp*{;IqdJf?R6{ni7_QCvO$Lw=O57|}g4~H}h(Mrk| ztsNeeowrX8uW`cNCZkV&CYXtDJ$rXbHooflHw4?KCp(JnrI-N4!zXD)L5R!gU;k-t z{Uy{WlP_bjF=bt04<+x0NO2|(2xXL9CrU+7A}*;Dg* z@fejB%^P3LCI&M^j~)tjZ_p%O^0am@Piq*)W)wzUJ?4hrNE%Fc0d4@hC`H#a3yxa%gQDDCdOuST= zU|uff8k$aSGznfk5fxGpmT}fd{{Nj)(W@XSn2E-cGfZ;8b|W&BN|oOmg-9rtIaKl_Lw($Zc+m$DRO-X zEcC;A;+P7MP%#!5EFZ?UwTmwf$!rd_lyDorJ1V(&QgTdRWP2k8Rqm$d6oAsE-ryY{ zn|wNfjr*vCSBumg;>&mHTt6``+srcDr$K9AgG^6vC9(Sya-Mhe#)J;Z;31b(nKz3l ztb$PGuBAFL11z>{cI*1Q!p_bET=9}HHyM2FOhuudE5MwN-eh(MtXV^!5HAF2AH4GW z!{M$@Ax4{beuXq9rp=_i!Y4Q@p+Wt9>85A0BZFbv6v2x*3uQ-Rj!S(Ql$Svttv0N; zH}2CI5eqjaZT5{U$VRdZKREBiVYDPCa>>Z^PVP(5CgrV)=1RJ9VJAl0EYH=bMA4+7 z8YG?G-=;BP_TgIh*_DEx-KA|kk#OETf4W+^x%H2MTpaY)E)_PdW~1{3y0zpyfjziX zZBhgxs9M_mz#40`PY|H z0?CE(dvJ#zbpjt~tj{*vU?v`Zt(<^UO;D$iF6+>l5$(H!Df= z|Ks@I1GrZN$X8+ykpp%))3y`xO&#AWT`YY12N(5#th3pEAYE--_h>II%^4|y^~~=} z-h=zU3696w51E#ZrY`dHT{^m86Jzm+bo7}Dhsn##kiJ2lzL7t((U8L2>)@|H#1lrF zPMipY(-U7WKl@l~4A@zOmF8==D_q3i5TAHLw#uX?(U z+pzEc=8h7Nw;ZnbIyWXfr|5l7F%~cfI7@b4x}ebC@_iIx|HC?8pXWifFFDSR?nGMb z%kMVKhD7a^5zsR0)?QrSG`xk`GcLs0m=lFKOBzo157FNp8CWFmc`-<%rnr^P zr@pG$%W%1M+JQ&1`p{U<^Q6f3Fby9&|DnglXuFxn*oI1Om1HT|$(D7-Zj50jx0I|Ah8axR z24iMqn88?nm-~C_{(b*Ck8{rNoX79XpZqiPxjxr*ectca>-BsO%kfu;kF|cyd4zSIiiHA>u%OCKDO-^ zb4*Yw6XQ!&ua%J*>vMH|`km2!XfJ($H@}{Mb@+XaZ=9At&|+ZC9G^aRNUEr;!pznJ8ML%m0y{NiTOWKXQo8k85$z^v#M z{h?eKh0|mE(^+k>!6xTk$xxON7rEKhneq-YhWBmME`_A@=K9s&QuH;9Ke1-uz;nwH z)%L!3lgiHAmYUS-+Qf`fTy-UsLT-;ho)_PCkS1m4sH1Sh>I`M~B686iMqW?M$*9*i zM!NXr=cyuwptbftfOdli2V`llzfkOo1{L8xzxbK;d;5JT0?cYvdm`?`(Jsld#vLA> zU>ysQd$-LiDfuGqg+N+L;>uLx*?&O}!covw&pl@A3l}Q%udC$n10vlOqOO$J`~p|W zrcT*??Sd&rgi0Q}GWIxv^hj9ik zUxPLAC1mo3=|Hp=PzdPd%JWcn+!lp##6Y+bal##T?X>U911y>ahM#&GPQA*@ZDOW^0UOW*jU z55l(A{ZULbdPYuzX|?AE=TKetoy$>e=r<>yM>a&=*};(b+{is?*~%YE;uQ*%Ebs&Y z6k0P;9xPfve8jWFEU2@kml{BPeH{Kv} zOX@~=q#6Z4N9-Cd{&~}3Rg#r`T;l3hL&g9FReUoejGSo=eyDMHm}`o^JKATqmu?r} z&|R}>i`cx?L#zt6%MJSqhZ$hSer;VxL?|G+&r~6!?0~@YtuO5CT@z54o&am3zZc#3 z96(;}IpH04R`kQBets_Ajcco(1`&6-H=YN-bkNw1oM$P30}d_&ara~(KGYxAJ6$NL z7@+ADA#pD1B#^O#c%$oQG#`MjO%lxATSMl;6lW1kpfIjht|CmhCbl26P#dgIs#b1v zh7m7;74^xUTo960574P-{uo#x;cHKHf+2Z2Ac>a~j|_v8kV4ZE90KvOEboSflBXz} z(d=#y{!e;rueWQrp!1sC+n56n>Mc-DU<1WVfv=+0H51qSYP2H9TGa(V{@Lq= zXt!owU@qD}yJo{w>umOgb22|X+s%@Rk|vE09r-zqvf5VM4BM}u616625iK)`E6`0K z;HFNKm|hbWYkv9-8+K)`zRebyC6z9}9hbK=fe?6GOIO5?Sm(J^N``yx)hfv6C<@F0 zm>*v_H@uY6vv2$mT*BeJc@0&-V$?;3FqlHIy&RnU*dOaM^o(#0XN!rIro2I`3AxAA zm%dY_c2YYB8bd6z>{{FTr0+3U4@~wm8N(Z=0)T831gg3F!0Zv}X+*tz5p2W>&e}d8+YlFG+>&5e3e_; z$HU)&m?(a>XGgY+N6k*c+_sRGECzyx+ zqG=AIP~@TT!Z`j_w4nSIz}@hi@j{YVQyJB&nJNWk`{Ms}+im)SROJ)RODq9Jnt5P- zgrMXz9L_BDh(ad8qu)FkfdFsXVLORc>h8W=$MptYaQ?nO`&5|YN?+JCg6hTxSB+5{ zZxcIrJv~zKZ`{*!rLF64n>*}A{T=Q7tTA?3iq|3&y0VvgTUo%azue32%+MXy3&vFF zqLTY8ZlxSc3gV$Q6~EIWLClv1(k53v$11lyteY{EX4Av`2}{F{*Bc4mOLQTM#h{=3 zu>VP`>uvzi7DQ)m#LkBmd%;A!0OnZtW-f$883+W$$+x|8DU#y;Loct;RHenwidH>1 zj<|9)g?FIkp5h35*IPK_;Z!J*TV8U^I(s?HlhDmM!9AT5=(iezfMDC{evcX~KYtTN zw+nRn{XB#Xzq@v0bM0AhbnKs_s@Spg&x3*earZR7|9GQs!I6Dv?x9?9)y8JS;y26& zEq*6zZRgi2?VJ5ymEbS!L+Ul*MHCHXYWQ8XYismgTAMwee()p0H8s~a)MZHH^yne4 z>tGbXg`SIh<&sE;y*{TZr`NFpPDwH5Im)N(a37!r>D0D&6bwc!jN}(Ucih#Q9lR&r zjSP#sDa18MdQ+Yz2o*bt&A3&f6>w58g< z(Zz%1Z&2ixEGSS8mo79F&N>Sk#?9%JdLDltuDu>3{CdG_#Me4eK#Ak($Bpez%Ktc| zLxI;bbZ&NHTCm1yuSf3EZeW;ZwKLw$&PnIJ)M|YxYoTt^|7V)J06AF}Y!Gf!=7ia0 zUGC;T6){G6E7;4M$3OSp^My{akVyM*fkChhZSnipL$AWmu23iCpV&hk`FB|bMtTue z!mKH??7&0xtYcEx9QREdAD8BBKdrf)@7bFwTi5^6{aT^Z?*-Sh*Hc|}YKpF_Ni1&P z0OWI>!{k137XM*EaS3#lGIrq!$IyBdHkqV4{GY_DncLd?1g^_f5pSY>uT|!PLhqY+ zBM)n8!g_>f^VE9gEuib}X(ftMy4!F{3h!dl$oLU}jOEdwm!sl@WM2o4RmJz$`RT07 zQlXf03gHcwVe5}Wm|OT4yk&wW!jUP!18T8$v3F;q7tSL0^uoK0NTh|vll5}(#_BEC zUVBuDi!wV*tVqZ&P>j-{t{2Si_aVO3-bjZWNXxJX_LzsKF+H$~`RaQkHAW!W?oX4b zy4dTTbKV|mCgXuVeGOR~jda{;*}D$M8&iSe_$^7`;qx_?H&Ah_L}!%H?tcD9^tvdK zqQDl~+0w$8V*eUhT%h!FF=e4`;Qc^xW#RQsx9ck-!2<9>{_KOcy$ukG7%HW=+r`kR zv((fSqYOo$I*z6~M-g2XQ2Ef?4d{&3Zgubwf4qLD1^d#;QT}|5S zgek8&YJ30(XX)t~k>*RGQ62*3B2T+72=Tj~rf?y$F_z7o{TmDel_ls8R>ByCRMA{r zZ~BMP*K7iF2OMq_HnrpCe4jM8L9vPthL??tGjBOW_sVU2Z3%Vwrs~~bf5~rmdOK?P z2(+PB)?KjmAD2DkZ>je8-MMdHj{zXg9_8KtTMGb8<=_5$Q&s=Hg#EFnpKrd2SpN|R z#GQVBK0u%V)*;K{o9}}M58Mua|NReucmR07-`r&T=P#H3zk~ntQoLCIL%lD!c^9#ed}-~G#D>u?d)dAZF`VCZ z5&&KUbl!#+G*f<3I`;~+QqSkenAoZH!;CEWkFgni{k28(gZfl%U=;5)1gmJIz_mFEgi$~-0-0HnmYzHI43-(%;Kd@~?C^5ofa@3hu2A)X+azYAp*08S`CQ;$JsUP7j+qkpF8dzR+S$0JHiikm-*_$j;5gv1wqp7}huX6c_h7q`i0hz$&!YrIYh4G)L3b{gz~5AFFKk3n*HWQM zI|M3NQP|dEQ$9s0!ctYw21{<&=?c`wf)i_efr@)@Rv)1 z`$NSQ9y9_c2iqEijmG_f>&5x4 z!LlP^w+Wc#q{;gtZz%VXri;CeU!D!$m4b#IWOy{Yn|kiigeufCe8pIplfWDQN8#*R zt0I80{U4t>Kn1=6IE|-X`b-pR&aEV{a{z)c*AZ!%y&|%_2(KhLQdoOyahqmgomT^t zmpL`bc9UltJs^^!Z$ri=&D|BB)@T7gh6}>7@)kJ1VDq;i3LqyqEWoDopzZ;nR*Gso zdkib1LkP3oly`#F?n%v4Y#;nLmv-!Htj(>DKPC2U6ybfcQkFqJpkcX_uVisd2!QRo zPF@_>{Zq%}`l5y6!Fk21*KbHce~Y{)?iXSK>oZ6n`#YR?#rcH#&nC!@hC>R&$a|%V z3G0Wf;bAmr@xt4z*)zz7&UTL7kC0wa)K(K@dlNU)IFk5<$c$`<DjU&xuW%f;`jEcDj#IJYnxX|UVs2pL$}hqgWc1O zX30@J$ej1tyDgE}$ETxSw_zL+HJifvU*5T>_1kO5tpa=j(Yj`ErrYf(j$ha6?yLV( zh1Ok1-&00tf9Pm77No6M$?;|v{G;3*@k5Ow?AnXFu#yARJ!9Vi`ih@HNEI~Js%<0u zvmW^D`#E}FoPAB7UK|Xw>=&IS8*N9)M27E`S%w*GHz1R9-om|nf5l5A234h+FN9ER zs24_oDb!a(){%wFw!MJ$tDLjePDdAvUie^ssZ~BaYSC7oHX3LNP(|EQ-7%gKh@X*7 z6|CD79g|rO6GFS8gPwxOpK*Hd5yoIX>`n&@qMp9S)||`68zAxpwtpov_ru2Xf7y;v zA;D=P0ROryp@|&RIriW`@khNP~Jz+TJT2sWrxA)YxF8M+j8Lv!soQ%iW`;sig0 zmQ=5z5q$(9pgKD3W3k3EDJIhc)6xic!zcZQnX0f)&2p$fllU`DXu$_HtmMTrxyl`I ztW?&TZvn96RAhN%EA&t_Om8QX3>qRPZN;!L+EsTjZsmeayM4c&LXVW4om`8Dlx70s z>-tm-cN_)g)HO3rJ%fJcttaQQiR zv$6~=WtXRQ6L)V7u-<-q-$5%BFeWQQar4e}$D1|F_t*%HaPm=ECR-1n;xfBu&I9ue0kz%Yz_?_ojN`-g~7I^ zO#UdWO(<3OYDhyT09K-IT{5i%yBk5Xh=G`Y29C=h?@m= zyE_d5-Flfb2L-p1AfCH#%*>>((MJ2!Sr98ULl?ki_`KakVXP3CIbQnRNiYp#t-j5j zmz<>m09JO6J6r?8Du9RMeNX5K)Ih#uPoNxUacg00sv#9Kl_wg?cUpJz_eqPaf z)~TipwwmVbpbKru3nN>Hl_*vcnH*Q`P)U}Tu;z_I%~zY8-A@Z(W`Y0 zXVHu#^(+H9ChR@%>e$}aaOtB0JWIHFnn1$K@xl&ov63KEc&QMhWdU<~WmCyQtgJMw z(Ruf>(XQMT-xgUiE#lpWqs$!7<9GFg4Dx=RLarclfFXPw|QY-K+0AjTui5z0C^`g>hH+dTJ?FjM^0hfi+(kNHnjc5^Ap6FLr2IwTL9S#*H- zuH%|cqjQEHMwsddjcA=Tez86GVE1zT+V1?Ladsw{k70;JSApUYmmT+tU9Gt*zmK@L zleFL5#O33tlaAGOSc|w!cK*hbK$BW~)ci#!O}dMnSIZEFo)4f9cL7H0~Bsh4ruWUr)m#MAaL9&T}IC&4>Hc~N3k6ijt%ENupA{cVJ@=A|W#!2} z9-3=T9+o3Ltkcwc;%fP^bjNS}k=A*>!y;jJcgn~;e^@wNWuaL5(mOl$gB$p%RjUY$ zFF7iFPSXN5FtJP7z|`f)AU06FY8}a#UJ0Zcjaj`QRdh>_KR)AhOP(5+iuUt^ruSEFjK9$>TKA%-*Yt_5jQALJ6dvQ zfe@yIv$v^8l!g8$yy9SEzbVE#wSn;`%9HpkIT<*&ETsm`cY1L>E4xXklq~-kjwq_# z&6dt(dbiP!zFK9cPS2@DbKNAkV!b`h0@La(3FQS<-|nS83t{W`tY7M~_ac;%$Ct>j zy;+xrDL!$+BE!cUJ+@fq(5+npnr&qT#O`{wSwL%jXbw--k=%L^uY!6q`mwaD3{RzGNILWNDo8%@7& zwgwRS8y$v9e+qjqYUF8RzuY8*V-(hviXS>CkmhKHzxRp0!quzEMgKV*e8r+{pDO3S zF(v-@CxJL-UIcoDr!4igZ<+nScW*!acGt3pY)btRC#VRF2>AV}o0v^=@Ub_-K7al^ zgX=$w*Z0}E9+@8a$0YiHZ79mWm+${ow92HH`yzn~_BK2<_iCMb$sT3ay3C8FL_VVM zRsD-1o_IMpurV=Td|Rn=(Rn1Gz0beycPn?F7$KW~zdE4svR4EcUc5j_GdetpdtAaGRuT3-O>xwzb}v2x9k%i!0#IN zfV}RM4+e7lC+F;R4qE^PL3mtPbROh_J?&`rBFHu`SSEt7s15YjT+7Cc4?jluNkc1n zc%M{M`{}r)E(Iez?xBl9(x8}4%N$`oX1cR?1<-~Py5;gNVQ5fdZH{6Bv^P^;hN;z! zi7>O`2y|~ap(NW;WyW%3>f{4ld=nnZT5OZYR@~q}@0%_G&39-9vGtM%%e(;SOW!se zsG=o%F>!34SmB~l9{M0`7<`?WG&nRHt=Csup`Q)<2U0-DKK=nL?gcz!_gC;2ShHp{ zfBuaf8oD1B#LcUtG9m&DLrn4Ue^R!G)W2O049@BUv>Hn^`aSfJ531bSwF+bjOyZK| zTBK2B{IwhTRo~;AfmAib8ZSYxh<9nW6MDxx(cI=q@zz2pO5$ez>U-@8c#T|vD-8^q zq$mIfske;kwwo;ZF=5IiYi`8Peo{8G+k-pj~r?p;Lvh^Tg zC0goV-tZ}A=@M4x_XSFSqkQgBqM?IsY%P-Of}QGKJQv8wWdy@(4a$4F#ltU^MyxXT za;w_q6_GVAdy4B_@AVsCNx&PeIrKtu_;jJXiGibr8^w2f8p|lpRH1jBdswIcHGg`M zU&SSF;SXy6Ay#^Elxy?HxRaZrg_`(rEp8{?BK5DB;goW&FYFcQYu8t4pI(OM@-T0z zof4|`w?P;6yiIwz=L`nQc-HJ=*#Gbm*Zl z8GTBg94K6UON%*a*$ zZRnaSPqPo#-w7w47ul8%+v)wrvofOT}`k^w@U*yId500B*ai zD60nNPXRkwe-yt{GUM+BV5JPTk3hUR$*Zad=qbSLH(+eu(e@{SX|&ftZmp1?{N3zx zcdVAiG37JCVM_yD6)s^^JlF&JvnSsN*#No;Njm3c(^w~p^^VTEMneR~4uyb9ji)Br zxD9f$@EDCLS)_nllcCQ;u7$1~L z`XbR}-F|U<__lL&wZoDVn`zF)R(V}VxRFubpi`AZ7_FW**|>GXV+|D052p6qqIsAG zCa%!E2&}LG*9qLXXy^83F+mO2+AvBlKnsKb-UxGWZM0StVZHC1UGwBlj#8%^IWT-O zx`tG31fU)#0=+9vEeiB!f7`fNW-)m8``L3(79G3s7=U`2{kON~ur5+J)f}q% z-8FY$;2_0L-o(rNP0e@P_P%k#SRaA1Y(z5^<6}0FWUG?i+qIoCNsNTA^&j=NGtC}A zsY_N56_B)hy6^lKf2wjZ6%;B2lvxT6fIBk`tg!`vgxSMnzDa;1rxctx`G7&Eh*<$5E!} zAH^3w_I4!N^o9D&ueIJcSA=V&2G>G1j)nDl*%#ut(aV`P6FaP9aU<65a@7)fB2t@JH; zBfjFjd(;*~TT8DFZVXW8=5{qNvATNGxbOK)?q93h6GqBqUH-cOx5-qO zR3ff$ZaB!mO|k+w+Rj?lKTNK~>};7`<`oWjNF9+_URl8k58%OPIL9{MJ8PG|a*QmS7t}iEy24 z33H3L2wo!;=l@U(_#&FNhXi+S3@;m)#$litdwmZZHw=pNQPx-ZXr}@Hvd*6{u3A;Q zG{NVY&VMbL=ziYReMvT6^wdV2`51OCVzpsXj9sAs1yMPFP2{PFff}jHDJ$^!8J>{E zxRZDMxRv#qjZMMTMwBpIhb$ZA*r~N=PG_V)ZU_J$t+mhM8D51DtH?n)3rQ%qQlQpV3np0&<^ zIR;Iok^|4dt-Z_toTcQ_ym{)^_W5A@wp96p0&J)HTW%JJ`$5L?^=jgd{g)d~PA=kP z(A&bB8+7p<&S{l&!NpX}f!UWL%&VgL^re*f3|4oR;HWw>glOA;bzZS2{)F3vx3_M% zy8=w*RF8rvviHb_xYM4%tal>Iao|i5m3s0Oel7c65MjX)FADsy3!pFr8Y8h!Q(%65wIN9FfBtoW*t$~2Tr5FAP=Jd2)@vEB2W=1>}3{%a~zLqw}D!ketJ9q7vjP=9TX#SufADD2cbe9dN+Ua9piMPt$Io*EYGRU{VB zA2r9__E!6Ad^5&ug77bUY_1mum(qIMU2pwv>TZ z`P6z%6a~EJNlrOhd+|TK&o`$kYGFeg>iu-qoxA{mI83mpP^9-2=dlvfYbU9G1nP00 zKHty`ra*@ewBsp($|ig#3pGsiw5zM~onsu&x~DESM@&kGJ$yI8#0(1#Ka3*n{Fd%6 z()RSua0V|qnQt|62%h2{#OCJ7PEO*?V-Zy8OXbSR2Sw9hENyKcIPHIqR%$5 z*8!PzTNunVM=Nd3^w<(Nl2Y-6+4=@6ba?ar^0o<;=htTWFb4?e6sMHpZY@$A8r-3{7AV@{F2!AnQ{3IPxD&J#cei522@o_$Lilsv z@80*l|E!f{owH8PnKLtc_B?x@9jT@whl5FmiG+lN^Fdx(0}1K5CK3|z0R|f4O!LS@ z3gQR(tA?B;Qq3gA5#j*VQbJh*38_8~3-Zs259o-1+(E*9Tr+^>N7%vZP3p*E|HANzQVcN|$t7 zof%56h+SVkA20tP%`;QZM)(}(l=@|RQ4YLuaWsZK zDV2b$EA`!u=PQ7|z6V-iu(3@^N$LNJI#;^F-v{-4d=Xj!Y#KW3E+-MtPJNDqn#p7V zU4|-PD;>d1B9u<0B*Y1e0_7AyoZ zZhdtd+#v9SJlFx&N=!#bS2z_MXG^wQ?}0mlWggxIxX#e=Q8U}*2Y*ai9w9;HVn6-1nBh6qL zfBP+>+!VI{fz;)6Wqr5lY+=^+37wl4SoV#Kthk~;UGn=-@sVzh>uCx*X~yK5?yW=v z&_~Rx#?XM2E}U(2Us<#jtBD%ny(Rn-Rcy zvc$|iMzMpS=nnT;;)5z77FcWao&oGmP zm0@REbi~mnv1aJF*mn(hd9<({B=y?$4CJ$30&PRtyep&+eZeYb%R{*PV! zQk9@M;Bl2$yr*N4_f#DZS=bBty(|urp;_t#erPo1Uhbdq65{1&PS=Vrt%_QU{b;Q^ zu2K^;I(F(h50#{#u1R3k;WR_^xQxf#VV90Dvw@|!k-FbX6&1A!6Hw8_>3Z4wKZlJB zRnE1-Ps>G@<54;#4YUkCtW{>7PyXD6s*a?;%i^+KHG;5@1ms(Cyldod&t}THSVW+8}wG!^i9N)5R>o z&3!4LKJNu?sK3AWd3yQ9@bQ_5e9fOiqsw^@)r7L{uTcVWKX3fqC2U5M-%y|&KW%l+ zSp2Mig$LSWKmDx+@hQzUt3hv~R&q4lS$vAj6p7qnp<2|>_3BwQi!}n!PU*XJ!l*L1 zdBxhOIK^hU#ZWa4dg@ebe80pAH+0XUYG3)dUZi%o8sDu^!Paa*^$ed{SY`cKO94>$H)Q&v)oRh8?`6-E33ezpPeZPdr5ncYA#Po7nXS#0{ z>tey{ysNxE%6&^8{%Z8FFsX!wLq9BsTg&@qJhhK>!Nt5!)KRsbizg+b(8k{4cqor5 zQ6{b?xxZO1$I>%vB>rgNVEB1}N2#95Ujr~lzkyqmz|J~4CctmgCs`2aK>Ak7ag$|0 zrfUyMc)5$Nn(U+aDXLj`0socc*1I0dR5tIMK;f=>1s1W@cPZ$ikVUJvHWtStJ2Ko! zK0Isp#MsHvL;J(Q#G+g)-Wc!qZiW*@MR@j3ql%agySDCCceim;HdqDoz;RP)_rx80 zzTQPbsXL5i2k8w{9{VD*AI4(ymxarI>!=(OItV$Y?X>2n$0#>Fg1VQd#*NQm-MC}F zl|p?K&@xOxjV6sRcKdfrfaAuVcUd9IKG|T3TNoC4y4NrRr3V;S6VHW2b4CzkHFCkt15)r zWdm4QS!^pSFPr1tpha1cG%6LoTWaf=nqcWC(P819u$oDBfKsl4d+K4d#HeW#=gT5i zE2z`Ldwm5VBjwSIEMM<}Z+yIuL(hvRH5O5Qy?!ZW*`eU?vS5C>(Sol&=%|v~t3H3!#|zP!Ow$Zrwl#yiWvUI+bG+yE;}rf%$Djs=qKekt z8@6~_Kd53)4LV~Hy!=I?!}?8-)*?m1Ls-1l5=Cmk^N?ayl@{JG?mc;_FkW8%53&}e zo#&%AD-YWiD-F3hz?0F~gr%?V;MeviJ(Q3O&n0D%={d?xTtCC-R0}zIPWAE3m$yeP?b8fVUEr?>--xlyU7?fFE$sapm9MY`@&FrgU-V z1eW+}hw!cIm!FRHnmLqVAWr^tMt-Z0_)VFxX?=6h+lGgLhjePA%cw`PxBOd*;|w!h&Tq>{MjuM|1%}Ad%_ba~0I2$E$4^SJy;4)&f3uJ$)={M}&|%I0&X z?Da6v?jq!L4T{p!;$I33|@_YP41FSYEBxQ}3e3>G@7q<1^L zvPGmB7;lQOpsRW^`+$x|xnS`g9KBqjrzv@_2VhwyE#;q)RT=!tQRdOTL`2R-wm}tF zf9=QqEQjAGuS6&|{Z=1UB|$sdUaQwRr z(%B;Y(ro@W#vNv^Nt8Zci{;`z&sJHc!r&Kjdsb3K*9aVeB`TmbNy06zLajlgV+7N_ zKN2&d70I&MRa>A zSb&pCxhl9qVx9G6M&b)*L5)!-wH?_a36`cDy7i2s9x|E|il^25Czilh4!kBfFNX@B zGJ|)9&=rM=In?8O?4fF+0fX}3m5ca-Po{(FI4w`ppY>WEl<(8PMhs7vA|4&~i&~Cv zbIQGM4w+gf-X*~At2_IU5mi@-2&`OIM}xtuSTkNG_;r~Q`Rm&r>bRkoF=CRtd=B|{O%5%SRcP-xU6wt6kbXUS%vfu`%&wjH zQNcl_#tZ%Vl-F4|pi?Q1B_EAkG6h<6jgs+D_rLtLTAEW5aqle*UowGq81}YsA$P>?khldXoOTp@ujw zuR&UYx}Q?(?UCg;i%UxMbrgLFRt)(cCQv=$0?u?^ zN8sJ!fbIFJYY=yy_VS#yR1Pai9QTS|jQlL-L)SrG+}SyC-o||xoBTK2_COO+2egu; z4HI0w%nR{+!UJMw3fJ#Fch}1j7TD~;ZndtEi|JO(iOz5V3T`l0gf*=f{+^WY^Cgr& z#?eO3n?CryGDsvrCT1mcbx}y1i+yS&!`}AQixi4%^iYq4?B7(0Ye3*GWIQ$KzRT=x z)v2}1=!eHW zUDKrNHxz8^;n{R@K)0mQ8biiLOT43nvb-2ksNKlvn*O9Hz#Sj<4X;!d5k&wp{6erl zNmTy)EyvqC8oAOk6%tO;_?gI?i(0Nbo!4wqrf6p2UpP(tCi=WgW69;@c;ww0hJEJc-Zq{;MB2PzqxU8Zj3!$Qj#|AzWE-9)H21*gc+%I z&;(9?mrYBg>D`pv$1Ky{Z>J_%pB#F9DdN6KTKLzV8LsbKL0TVbvy?~|_6>a|P^tZ4 z6)&3XmoGniKB@NH)sT`&fW$v{FDgHEZfyI}1eWhLFU6tu4d&mR-h2NhQ9~9SiJB_*W~IQs)Q*u)@ac|AF7A3%dO+_oL9`luZBl-+i^(p`q}kw zx!?xVwNKQZc2fGiUIQ&k`o^8y2Fwmwo|E%weiY?c>taSyh;oRoKhF31)h|a1814tT zyNR$(`3t3^@>w=1gp9h~00JMp)1J z%K%^cc{bj!U?-J7D*+7EfK=Tm7w^%ahuq7f0tXE}FRjYTb8>)`Bx!~QWQMAuO7u-g z_U63^&_YnGnunoPr>66MLw00*Jo%wgVWrJJjTZn4_&R&Q*yF)5BJ3^yum_3ngi(wf zX0RLjKoU2)8cXD+&SrOE{I%7tA=@)eEa{a&O^YfcTA%i1S55;irnd^va7`tUUVTS0 zl{8_)k+a4F;C5WyrLE!}!c{PSgAoG>%qJI6^}85&%P(hTAp`l4{$L`9|? z^Jl>r*o8iK+Qb3sgK<<}QomDqYeXYiKXn>eJYE!qrJqt%RP(I$J?!(9@uPcM`kNPK zc+4COr3V@o*K^hT{qWh)E6aGKCy8j-X+Fr|`;9t>eQs4+n~S_N&J}_pWb`fjK`ti`|>H<9ua^qn-$)2 z*pn`7O-o1FV=U55ZSfJkI?!*pT9vK;!YYu^t>pCiSeQ6dK82e*MzQEk4lUE`3wI&cj8aGlsBOx=@5Ad3 zY_2la9NTrVUB+BnG}eZNb>Jot`CvrRLom*n8MZ@vXpL7C`J%So$B@1}%By1nfgDBN z(Nj%btoj()!>gljxTa#03V_{|sB*tCKqr-UREwxnJAl{hLJb~7RM6Ig+k~sEfT6R; zhSQL^?9Kg@22c@Zg~%u7g%s_E{RKA-Z9~>jFA?+E^aPj30pii7uY;q2B9$afOw7H! z9*@xRT=#+)s%4!?QLjLQ_i$GLpBC*}Do2VRhX^}$_f_G^N~>yznfY-21KLVgs{y}# zO!oVtPee)sK`rJA{4oPTz(3YbY9Zld5iw|vH5h?^ig&(K_QHo$hfH%ERbmPvO4Qg9>~P?-qWY$uCh z^Jc=6UEsLw7gx@6bgm(?i*yZe&P{408GN7GUA0#A zoBQmoQ%-i{W-3XdZpPc&qKDUuK6Btl9XrqTT;7|1T)yf>&B|$5*^{LFLiH>e<7A=> z{FZPx`ng-!(*4p9#K{2SOkH6Q=adesl{C3X@yOnr^qON+56DO$B6DR+kL#FwH2L{; zzKGo9Rkt^lJe)8qx}Lz#Fj z9bNcLirnimaX%1m758PD>z&YbOcU_k&g~n29S=wrN73n4*xZADJCEeY z;zyv!YJ3QUJ3tm>N%=)40;`#My_AwdISeA2`sDwm83tczHQ!?ekAlEyV-MefC8hi2 zycAVwrjy`NQNITTfdl&%SZ|re*K!RwY|yyGcheu>{zFA{wcfD7+e}f`G->zdnB|GH zT{o8R+iud2B8`?>rQ_QGh8wxK;c`uMd6hWtqfL4#+|%{#Q$WMV=bCd9BDL+vqoD3B zwD&XS)Wr6}#P5RZ0?CDCYy)*2`pHAc8SHVt{4wq~ViU64Xu4nu7H1$M32tt)Ephik zf24uLX%{%=TQ+OP6F5!|`^x}aJ8@1c?Yz6)xRgR9>|uejODS4imLjo{21d@D&0FH{pQv5)6ieVws^S#PXY{N1ivmBZ+_ z-oy8Rno6Y2wt}PIwu*74d~TFr#=~5LY|lph)8igyxUJij&SzG{8obnNaI!qY$B14m z$~_uEt3R-J4AU#V6u`z3bP%&c>61joNuc%JSQ$cZc6Ok9j(xF;C^=%ZlW~Szz)x-c zV#{?s3yyZY<^x_0JhDZ7Ejtsa%|j308Ol#-%W)DWMV@V9)jo#3__f;q?62suia#un zkPTqcwhT3j45aepXDCE{u5|%DII9Q|G*3Hq{dP89E(aB0TAf5sxzP{=%5QYLx9JVR zAER!Je>?wTxNx0ZrrTB;!W{s6V9RaA(IeF$v(2@k*Pvh@NxV{&-7J{3 z9M&ZjI>Soz&?vwrb?$HlujorE(*g{>N;7!GU!QD9iT>_U{n!aF?QC(b623VmZ`gk9 z8QBPd?v04SR7CGxYhU34w8^0R^5#o5vqi?#FU)V_{f1&c*ejP@A0@n9kMm z%k`>hJs1`x?9-yGeI_BrgXEa!;OwC~1tv8n8X!NK0#aL zxD5as6M;X;$sx6b`PlIKj~6mXdTnn!I)_dUdh}8yUstQ#sr7Rr!O|+P3xekJjNJ6z zUtRy4%6r?`%{8DzO#GB{eMTzuK9(knQoi5R3_u6O%LpNFITLjN&|pO7(>^m!FU#9uUAsvi=rOIx7(s`{&cfQ0VV!v{2643N*QvjY8)=k$IUqNxbC-6Hb7Fi z{4SR3rK_p&;{y{R%~1Qfl*q$ajQtleC@WrTdhK4*SQw4%((_>h!n4L(81%5 z{K#NS_--ur>yO}7s#M$3YcES&$9j7axd&ps!YX|EZfP<|AW=KJ^ueKd_Vtgtp{_Z9H<2%rrwe51{-`^x8~$L&yY z(7hKiHt*?+mE0x2ddKL`5J7qdJvYeaukwKFaT%zr9`%aT@Nd(>(}XN*CgDN8^WiXs zB(1PJlu5!GoI>3eic@y;F3i1!K|8MtT|BQH`7mC2;*l{BJz(X2w%Wt^$p4ZwafVUR z`{wxVAp@XJwZP15cPyORk40YJe)!dWzdrdMhklFVRHXu-6DY~eTE$p<7BNp%lX@8y zXMP(FEcsyvq`(;H=KAzk$CR^8UUF6N%$mF7VP{`y_{Xnhd=ekzAT5JV43lSrcH*4) zPf-!`aBA3R)wVIgSUhAA*R`bpy}odO==`ITCgX2Z%pfr!=;_@73YCXW|9b*=Z=Q`d z_0x24_+>%%&UqNvcev01uU2fi5QM(r#OYs^s&flA#zSc?f_C~DNc<)japQs7C9r>* zp2Oa3+v~uXQmi3t8qi?Obz%`9K zjob3pPKarwxYNnTW-VVI{cko*iK1w@gVOtG{GG2~>@*0Ss)Q__#gd>C2636uAH$6H z(L~EKwg?9c=Ifb=T0%|~P)8xum0W!is6VHbDOPGQS2EL-1h3lish@p)x?kgKIL}n< z0&ECd`k^xOiAO1^pdzXBqw?2tB%>h9h|8XaRa1witqeu=UUoe-@^^O8qO8||NuD7~ zXeuptU)IL48T|m|IdXrkW4rCws+2M|b>Y&VNpL(o60qxONdPYd2=QM(F=!c)5nBEPjM& zG{u6t<2K9Md;tE0DQCZ?Epk{R%6g0mgG`)?ohg%WdO$a=4E|VaroyXE*}A14G;>6F zG#q=~VVog3Vt6PM`ctZ&cW_r9mb$p54A6u40lL3`L`h;Q3_j^v%hS!jhBYnRYC zxU1maBRWfBliZ!5eAyLj)UdD0YVNawTOp*uo`UY7s4_=THgS{iE|HNr)O+k3k0^6! zKibGpp8p%6TX0g!nplePfxz-T3Q%Ei+xut%m}X})oDADOP>{%TxRe-hc>9KgMR8O$ zNt?ReULf(Wc{xZd9rI3y#kXzS82vO__!B1)@AB<6RNEq3%?>3<%8p)xQ`?a@6fd3p zW1A!XQqIzpon;@^WXBX3tE{!hP~EmAGDZ!RpKm&vO&b=CnB^%r*B_YywOt!4VX=TH zdpS(CV`o~DD7N3Nw~HA!_79(+y7r%pNrdkZOVQ(y^UtPne9>Fib6J%+0{21O;Gf7A z_c*MqKg|a~rq4B-e|*w;?>^s;=%grZrE0K#zHo=HV+Nju~Udg7B9B5QI)J)6c6ji{m4%9V%ON9S`(HJL^>KgqAf zFm9Yy=|Ur0gsqHqsaG5QBO@XTKXdZ=%X`jjdho**fxE3hAwSLqsxTx4OQMX;p1W#v zdG4QJkYd1EgR*Oj8Od)S)cz&I9-CS~X={zhgf&CKxucy3UQRW9j?%lC&Oc}yWBQ6; z11O$)yw3Q1n}J)XAX-q?;Z|wH?f9`siro>>0y9e0qO?z}6od}iRTEo_;alr9EiE^Y zfy`#N_grSvd5SGnTFfk?40!8Wh3}!}4c1poFU`QI=8Lf1|Mz2>Vqr949>^g z@rpH$^P%^M)f;`Yn3n_uGnSg%Ar6OP(u>vRMdFT~`xUOYT1+J|_{0^2?9S|Y7!Xq7@Lt)wE#^5F!` z;zD0&noV;Om$c6^1?5ErhQH5rLi#@6Zzt`!JbXA)qc8Kk9lc-MC}Ki_&lGsK&j7>( zayE^-?++dB$HLEiUM;SlvZ1gwe$EL%wAEn`4SkoPnm!r5C$tBhlloVY!mZVVsEYO2 z=H)K?Pp3OYrPzXEhkOaX4xrkSgTCt7S6C9c3-p{$_j6Hl)6cl+6Glx75tzo8 zqA)NP_y{LfHjS$WSVnYq-IgESWT^D;%#~#ID1)e_h>yQF&XgGQsWlQH)Q=wj7M^z(G%DM6IGxylzYCr4|;~e8l z_fGTJr2X-=q4AMir@bqp9(JAdd&yKxCudI1!DTVyPbVBp%6sJd!EI8se;2C(8VtvK zA{YyO^dO+QAJr{nS0`DsnC8^X`0+T~nHIs~ofweKq%niguN-9!Z zQDG!`bK|mF+cAosQr};UUHVd83-N_$p7`&P}Pc_Yu+?tq;@}j$kD@PiU*d+y6Y@t8Ev$R zK1IT|yI2~Pj7=?jg1h(o+!7oaL_EiKH0ms?V@SCq-?6vrE_Pm&YH3p^e3gTwjmHU$ zJi+g$T+W@U&2CRv?%TV}U=ee>4BWLVGu~aE)nqBh?9~Go_)Bze@a_%QpaYFH!|L2DPkcV=RrroGk zO8nbqlElQLXpzN-WS$HApHGDBiwe$AxIj?cXYNT4WSmc6R#`fNp;j9hY-kzO-)L11(U zomHm8OaV;5{Gq4tnYG~J8=M=t;_mK`v6Mm#$_2734P~F+`LztMDf<4Gd__kmh)hHO zN+44*%{SC!uW`+0ysbiz+BE$SSH~KZ=OY1XXl?8$S3n3&6;Z9B({`X!JVf7eH1$QV*Cr{$vN%NPZv1=FKSBJ9cpneEB z8;tXNJ`o4W^u#$cWEG?6{?Pr~qlz~)(`+f6h}-+RA~7e4RWHMkfxZZMeU?K{eflmf zI2b-#~U*{xO%}Q-<{R5o-^qK_zzWJyqOmG6Ut)pYrCza$c!r(tr z5ua?r@~rF$yy<|2t|ef%Od|#_qaGkq+xx%C?LV5A^T;c3@-Z{Z!NF4wIOtksDmg5h z-M+F0$l9o?eEBwF|FT7CvD+2Ln>SXi|9Tzu2F4pSE&CVc{Cs>Ffh;_lBjB8X?FHz8OETEwd%1on5Bpdh*-pazJmvx4DeC5_QzV^~?sw zJ7=s(hz`j5_kq1P)U_Jl!rwlN z7YK%+!en>rkM$5=fgk1Z2wK@qZV7dEh*Y!kMk8b*n}KO-`ZN@q##IiSBq9a z1c3ez+0ZA|yGSlBVTkI{uquQd1AG7W@Xx$vLPagG3^%becO-7A$L*B!9{$buii9)^ zBe=EfVuxA22mZK5p=NjvV=m1RY2>;HyeibeP49JU$p4W(kErxU^_Q>(4uI_M9#6yB zgGa93QPAM|RZSxZ3SEcEPz0wAl3NnqVzl#jV9aaG(iz+16j#P#meV%t8H1#zvijeoIJ-o7+zLu236_8Rw@PppaSktjUnSZ&ZnEI%-cW%B{G z`%?cRlOCNVN|e@c7Hn{?&@F`8DBj<=A-JYk==bq}6#~QJDIqY7A6-k)gDSy`_&P0I zK#R#>&oOV;d?ywFpij|%Ztqhz zw?Xg&@8uNa<$B(%z1$}%W&IlGzsIPck*uMiVfg0E2(`T5#Q^c%65hM-Lh-B1%T`RT z7emVxUS6kZ?3fr71yv7|`m*U;Dh!7TqEGjJlY)9iCiMMgwRG_qhsUB%KZ7n2xNovC zzEMR!_u=fVi@OBg+lPUVE7~g*N-J(-@_+>|$`-FUp1s>)-Zf!hzU6!INEcdi=cTeC zh91jOo?74vm2g9WMvZa3z!yD4cT6In%QbSm?T^rGPe6d9gDVCL(R#OXjaY5oIM5_e zpta;VhcDf2r%NxzQ_X0YlOa;DO&Z)m;Ovb>?CHtRTqb(Y%h?>4y*truB~4Vj`n>5W zRe`Dc&bBveIP#19!-)R2(z@t%b)O1O#4G)N?pMULZEItwT+;;=Tuk31aQISaTQz8iQb5y~90 z_gj8@%W%-9#&N|#VX~^PMqanJxJKmWqWU4IajM&b^!P;Z;P+?B)>FP#?I(Dh@_cnF zdXqg}5_xSO1aFeuexDvXk4ibwH$M^B;PlD2s+dz&Gc*rq&bx9ks~#O3H&x0Z;Jr9YdgdvnQ3k zp!c;^c}okwmZm0QWo0F%_Q#K5t7~%sLa)dkqS-eZO@zcmUMB|J>mOE&$aMk=rf*nB zr3Mt;y{9BC?r&IGIxP#PQ=YEW4@bp(cSW!Opfe1S&a?bmwpZT6UNMhnu%^i@LQKC+ zukQ|D;hAw#X|R2%D-zsA{`8)UWJYx;I ze7hvJGKx%k*@|B5w?WgvA_2Cl z)m~kTgz)_-#~Sqc6~>4f+;Y976J-kOU!aG>uT zx^x{bJi6?C^G%Yd*f->yj(M{3*j$KF5QpUV=r^8beAjk)B!))j;6$?tQfeYn!e-5T z8}8X_z%Tt&Pg+}?^}vAlwyB6{Ps`2)S>Wt@@a;^j3cQq*rHsW9n3c$g$~Kj5p`+Td zkoClgE#P}cnl)EAStwBoUU|OWZ@NIIiBI|szK!wc;+U0VtosqVmx$V^;S7&I0*tIN zugcp_rBJU%OET5qGF}Xah3u2?WIxqW!(`mc{6aW|cwT2T4DZIEuQG&D*45 zC%oKO1y=1krO5IP^C=+h5{t~MIFO2$>;kK_`7xHn?rE$;2jR7h21ToGo4?Jf>cX#& zGKgw;%=m%!Ox#a=n_qmMizxYMZ|^v75Z4(7i2M<3DaeM906(2cH$%vn|1T33rV2i; z!ybd?V@Y_3Bwo8F#R|SNw@-S3w0h~|&eew#Q&Rq*+lNai9@C<1nIZPRaEf4D!o%V> z64rXn43Ta~Wx{B%m%HAdnct7Mm`9spZ9sqCav|6HA^aDrjz1EgPl0)^2sphxA0^r^ z@u)+~5FC9br|*HA)7|W2c@dr{6~~EO?WIuue4t2&6?0{Cke27K3iRweYGHMU$s*E? z-k=88SE$qkb@7{TA#kVznjMYo0hjws^Mn3^;HQlW0*d^@~^ zXNhf8Ty{Z*mdlPm1RHC;$Xkf#CkdPeZ@$~!oJg<(Pl|GuoxV2DHjwcc^aT_Dwq;ef z?;8BO6fD<6)L(R-mB?BFsWv`bruc$cerAufj*}PoyBFwT_*N3V42Ofl7vgGiD8&jx z+6zdy+$)?ad&PxD+-Kd~jbh0IQ~}zbb7R>_;~>}#G`*2AViT32pq}N;m7lJg31E?919z5us;4vhZ<*L!izrwZV&-Epik~&~;Ui@} z{bX)9Tu|+5e|P%F=VIC5D+-y=a{Xa5N-36Ov66sTfYaWWgJ!t>pD^Lo$MxK}z*w|p zwby2!Rt@u<8<}0NR2Xcp`tii9+~S{`d;J>yA>E6$H=`s>ff5`F;j+pn>QfSK8LI`+ zV(4}>0%)RZ{zOiH4eG7=e(_eN&u&SJC94ztl(u-OS}^m zIcReaa{u1YB!~Y#wGq>YqBY<&s`g~4e#;a8S1a%+i`>#{$Tavtg}iR_E2nS>yRYGU z``1ezbkOh?gMTU@*G?5`CGEE806EtS9TJ_3vkK-Bk=iqX^<-y{0N6lIGjboE8L>^8 z4;u%&kR3PnPAD*f-Xt1Z)Ah;?%$94}5^Db?Ab*W*UEOs5Gbtqc9^-W(+pxng!@1K2 z;p=M2s}9faR3fFy60a$+&Maadciw?8img|;Y8X2>P1&?X_`9TpxxMlpCf}CA%CS1B z^gIId`Ja6{T#UI#r$^nOlh}GCaqN71#@VMCip1OEQ=+*!@~s9Y5hRXtZX^EE)ci|2 zYBgQ}zD+y372y{azyDIq8Czzyqdrr)2~ zdyJQBbrc@0L$)w{&g)jJCfgHM((8`Q&f590h z^NX#TCvRaZ6eg(^ucRZg@2 zeHb3}_XZ_8I-BUGF{Od|nRVFFuOMfpnLUb~rvIX^W|>c@np_1wV*kRA$t>106V!eG zy#ZaJmO`|NjjXKf9S2I)KR8VKKS)ky$=`(Le~?du(Vkn=?L=!r=Y z^ZDHLoPVLX>7$T}%!JCgjQdhTK~a0_suLke3=3IKE1HVm0kaRN1wVz zjSB%WG5GkR^mv|_>L@*`n`|t_Tb=PvNlZ+vEN-tK2H z1rqVn27c7w)=p(}57D1@$1vDzcPgmZ1bp51{3_F8x8h>(2xS&J{5~YOnTOc6aixl3 z^~aYkUtj{ziqR<>a#O$YX8^AWF=ara?I-gDrj#T|%Z7jc>ONmGiXB>p#E_=7F28&B z;}37Zx`XAnaRbzzB8ll&Lr&T5kCqgF2S#CR8X_pQ8xa0Nae`z6wyl4Dd$IA7E2v4g zk3K5Sf^jleg!#)LI3|NfKN~BDX)xo1jnv>9qiB1&ka^Ksj1D>z(zm*?CI`v_>m<0r zuLbu8-1jGpX#^&6SQ#fFuYw!A?OI$MG0;vtwsSm2qEf2NE)q+&l|I?|Z2t`1ua|6j zw`yvAw7L~&hPm##gQLOiR{0`APDA)e(E-V8?_#A7<8=|0T7Y7%)k23}*fq9GW%o6MhS1 zHWKnUo8S)Uv)}Ke%a1gv!Ng3ZpSD2<5J(Sz>L`=__QzSxf*M7}=V)KIIIMqZF_!{L zp1*?T2zxaE+_AZw4h%g)!%4+omx-KJquGCUW*&>Gsj0Z2l6eghln}{>t2EJK|Glp`MPSn8k4a~`s(#7&$vvUGtNQA zv%JX9Q1(-AaBo_zAmde#}m_^cg_}{ zAXZ~BitOQr4iw>(O48>l#<R_^z{Vu$6QPPNvG#%`>Vz1)kbAN!eIC+|)IRu^Z5$ zPn`5gyeB)W@N$N%#y+th(mGZQpEw{%IH_9-K5zrIzJ-vsj30qg2=~)ua?ig?oQpGX|n- zUip}1R&?F*sB4lMu-BHKQ?(<%^K@M)+RlG@h8=go=|(y@*?BZbK4BWV_4=6<27bFl z!;9^uWn@;=Onm%HNAmUI)0@J+ZeEjbH76J(mH93vYs(zLh6w()hc^(*d%8P~!?D|W z?)r^KgU&LpNlyYdpXTSEzxKJbT0Kc4-M5zJ)hYCvk~+E6K0iL}i`y}jU$N`AWDX5G zEEGJm`@|o!PR4-_G~9>>Pl@R}f9`W*jMc}XTKB;P$-2?Itqt*54DGKyBtLy<>0 z{rt%d#glR$C?JF-N(~3~b*JuhZTu6+roS-DnONg7PpOo;_QBBfiY^+@s6d-a9xa0L z8KG+WExu9EWt<7tvlJ4JtNNh;$H9IB$nwrMn_K{rM&o52PA3}3l*R9YF+=3QrV*PL z!-9%Kk8A@ns(q#$-OyMR#}&DSKZ?!BIH#oJ9?B-cjy|~atJ`f&m-yt7Sk;|}o%S&H zmMlL?VA%>i!n98&(C?uvHva&-#lbBk%N_D%d#i7w=&;FN+)X>>_6@htp@?aikZ5I| z1L481Jatl336qK6zi?`mFS^dzGOi8KFh*o;jdbDy|Q* zXY336IYj7GS6#U-2Ycq*kuTN?tQoc+2TV90k~GvUrrk$l>)5xhwp<9F5Z~ZeoLzsK z0cq3SKtL`#D=}-S}u#<4WhVF93)Lp`);4Yk^F7#oeJ$wgZ|zOoh$4HCbFJC5OOOa`ePpayR8DYFN4*KOWUX4y`6JD+&N>T4AL z&d&;z0pffsL5M=dq>`PKw32N1=dL@B!x?u>FK%$OzbB5v$BrusJdXvmbO zKfl-W*8BPVP|Bh_`FR&l7XQ7(SG9c{xPZg|C7_Kqk&=RY@0#0=;JqZxd@laCxf?zq z!YQ}^$J|>#H2MAS;}S9y2}MP62#SbEN|y)qpk)kez^u4(hj_w8eW zDif(u=3^KPv0r2mE;69-0Cu8i*_bz!Ho@_x(YiQ&g0Zvw9<`~G70Aq;llM69VLqZ@ zopD`5Xbv~~jsm|j?W)9`H7D&%n#1>?-RUeZEHHMU`P;!Ivu4O!v8=MedD8&&?Z5Y| zACoAw@2F>G>^|hlHxUpqper4@Fh7#u(0IipF)%fZpqlGe!$fXL*ZeDfwFtY!Me1<- zw$>mJY z(b+G)de(F_YjSKgzbeZ*rEo)KH*TVwj9hM|SF)?^755n(HB$iEPodrOi%Wg@>?8k2 zOW>7YM_nL;)j(37m*GmhS;RV}WjC2*?m7&O@?34>`+L8|U570{*_m5yYk?k_m%uQ{ zMeEp9CVp0@D_rz7XStz$DasGW zS}$J{Vlmro3`Y8|+|~JUeoM0BbE0^VS15Yv0bpxj<0PjuTPZ(X^|n+_nyys=M^Rb~vqslFWYg2j@CPt+x-W>F5avl?#y69V zmC$H^GWOwz2E){0bd{qyI<+Bb=@w||fsmiN5SM3#GWp~Mv5OsVE~L42krQ z(N$I?$X6jX*|xRttbS#A9bPo-xT8`HsL>_LIQj3zATgk7b0&Kr z#PN5vV?9dk$?*92t=QODt~WEo!*p!sh?e&%Cyl+LkJ&HH=UN$51vFfcy-Pm-pz?J) z4XLESqQo-5xfLRxYe!Lxv&XfVu|{9BlHhm~b}o_Cx?`~N!H>wLEDBe_TOqa|`TTb^ z8}Mpklo2i%>f*}#L<;2`tFT;N{kU?X{CuM(SEB0jXSaZ;%KA_t2a_UYB>e@_HYV}0 zMqNU+y<78-Z#dfgnd@>(&Q4FUE*2^0=Z1S0u5VlwyBm$fN_fUmbvpWU^YJA~Z8grO zGc(Sxp#*2*vW#lM)Ycs0&a^8_a-xBm^Rg#mr;q4nXsW;YBq%`4q`1ROK_Sor)pXmq zp;opx7had|@l4j;aA=rcBS9wMRKzJtqY?S5BZ&8Z%=T;d-Z%p4NuZdid)XXE=^$uZ zVw=ZNG?UtR%z4f_ULneyq1(DsH5{9M%1sV?An*z*c+))WaEb;Jk_Tjl4yPRFBK97< zd7T69wu`;Kt92t@OPJ>}OEnVHIlqDvvLrG&D+ma@K-`6^N=9&#v)b`aQS_a|ls+^P zvN$WU8mH~%d%PsBo0*#~O&XK{>3pf8nt?>J$(^uw0|DCF~dao zIaqFcJi(_>oCZ5~yb^MV ze7WXq7`_tiWx^rgYWCl3*&%-+FRZ=7x>g|~83>e9iz#y*VLYcWZCgjDo921*l_Tew z|D|sW}7VYBpU{B!3h2XVV9Mbe_oZ=FD5^o1HpZN*x49@SRbzu$?hvhAl$i zVT9PkD`!VIC!KMjT&g%yL^kti;QIEQ_7j9vIOk1*<=-v2;g8z44 zh2Ah3{hX-_b-Ccez}R{~HTLWZI1B#wMwI(LrhkwPE*z7} zN$}9I>gizWk{v^^+G&Mw9mqP*ax8> z{bT0?bom)V)CNG7ifKVF^jWw~(-fyB~!@sZ0oJ;qmyEkADvX@YS2(CIJ0Dc<=j4hpG@{SG;!+1$fga z)`^YI^_rc5$*1-3(x&m7X-RkNu5ksC@u*N!Q?K!pmi)m5)2y!BpwJ$^dPQRL#;*b{;R)a1 z^mUBTzN=P|j=K@P;so=5GvxBeN0_kUD{u3tV?Am|Qkl|jRVXP31*kO=EfC?(c$kZv1|N|JH+J(?M)Bw%t>;s>6Yxj z!|~NC$*`El#ztLetDINuQ;09Dt>*mxVXp+EN5|rxSGG^kiCU)f9QsH33U>8QSK#XS zF|W4;DS&IM!b;S9eSH_M{M)wN@Agn&`(B$a$3?EQlko>E{0yP%jaR>ZHdsjaA7Bgg z7r;yFZocW;`H#}WeeG`+(fwQ@8-bo%|*|CzvyP$=}m<2z@%4Q7ta%*}QQ z=I;`OmHlD8Z--X*_p=^HE;(pvy-WRFPFOrX4sgBu-#B~RVo_;v2y}?XY78>f)hLCf z440rEgE8|W?$y35RFeQu9W0X5_Xi>Dw$WFhN=l*?SROotmC`s}Ep1EAGB8*>{2Uba zJu(j^+ECJ{#<7xRY2tq}FfbmYqM@nDmR0iUQ%eJ`&Wi6YRuEu-(r_-QUt0ECsbPReAAuy`8C|zt49P(izU_!(_lTr zJX?e20i8+Bb6ta3;>kIi1ppx4FU31;4IvNl>%Q@p&sX;r4Xb3&MyXMHjhSKgeVI-Y z6YC(G&p!*82gePTWQt{Ex9A&MrQZ3pZRL;ISvRY_+%MHfLz~y@WdbyQ%CK|f(oC%N zrf7Dwey!Of|U=a@Mj~X!aGtlmLSaK&3*9z6)7q zoAu7~-vUzgw`B6{_d@-U3~%lC+U(SQ$I&a%_I9W45$1xeDUZYWvvKa148bl{6B1^u z7MY$g_Eb2M*_pA|Ay;P%RaG5lE)wR`gbJC7b4%{NkJqJb&*TcA+6E_Rm;(Tbk47xr zLD+z-s>-052T1WgCy@Uv5r0|EkyE04)5!OP7=JT0H}JGB(i+T+(kodAlOo;VH)O7@ zL$5c3N#p3d)!(E;(lCQhWt#6S%jnbrKvCH&iUP?tw4aGOW}G%;J;{21=^!R{lJHHY z&7}^L(=#m9d`D4n`~#p7p2*?qmNgLwdK++(xV$D2(}TO$=Cdv$p`nKvlrYVe*Bn&q zO6&{SI6hzB+oyAO?<0S!HK|EeHD|Ha)$7;$-hQNg2B7_7cLaS*j7+mH#mk)frwX{| z?(~$P}UkFlN_VA^! zjKgWyNsKV+K}8)J84+>)TB@&zh{y|L?5TNo8zdKTwCC+Q9=->adaN+t=zp*rInY|E zI?Ts4MO*!Z%_C`+xZQCSe;=^Ba)2Gy&doPLlZmGoSw<0$#0%27G0&5DX_9Zg5V&HX zO)Ga?iLZa~trZGBIocC5**t+3?pcs#w+33uun-mbr*3FxQz~j}Yj^JXH6z-zXv(OX zSeE1d1|RNF?=_l5t;Y26dYVjlLt4*bw!$+$sA>~O*%>Y$j(Z4u`!(CpDyhE{t7 zJ^5@F);M_zHhdU8zQBp=$l6*=GO=~0TE8g&;EdL^nQvwg_aade-(_B|Ph=4C&8&ok4-vI*AUj+@5yw6cAZ5GztYo&d~hFml~FM|HFIYA}>L z6qGPicy>cmEfLgTb?Q{nYP*oUn>JQ$=`SwpZ?q(*W)gupXTW<9Evb}gk!nf|KI}I$ zG@gZ-C}?CZxeiMpoirK5%K=hVn$z7M;wuut@-CAR)w5e453nJ`%_g+-EW|Zuy^pV= z^^Q)W-pkp3e-x2wgS8^~AR#i|X)GbmSSeK{S8w^3R!&9DMjg zBMrtKLth6p+NR>cL*af6bU z`4_}sxEY&`8`%;EaSN4T~bE3%bxw!}`Ykd=adfmZ%QWkGz+>P;@obyHb^ zG&=cyU9y@q&1W0lcUh7VHfMHmo3t(*hMCKPC*Ga2U#e_V6aTz|K5(cynCt`2ezubUl`@2}&=NkbwhLOyob7uK zC}l3+*lqsV0BVsPQF9B-%Q&sZ$e!RX?BZD}!Ndb2Xi(r5!&LHo97kY<=6j{b*INK~ z5vgm$`Tn4tw>_N9iZl}OLwwuU#j~b=@cG-m!*>>!j*!hAs!QSHMa9vWbdD|U&v=G2 z9cv9l4_q!fN)KwBjnEUw>b@W600XshB^y31BC zG+RoEk6H4G>6vwWeF4&d;kC!F)x|s4(*?DSsE9b;?Jv6e;#1P5$L(ZXbQ&*&27Q~w z=WLj!A0BLX2ApU{t>55yh^B?}!w+@@Mv3N+C$k|SaBffBSJ1B`C}t2;??I+xG}s7~ zl`n3Q4TZ69r)9o#nfyY_86Zd!P_%;Fwk%{>L8=Sjx4S4-vmO*ru}~o@%-Ec#^Z?Af zhOP0ZGbpr82zaBC}w@H5<8-_`lK*UDTc+N zFGlF6L~T5?*{|!8{a7@`7lu1nDqLMA9oYiKJlNpu89{QBA$st6> zB)IMipOS#&_~1VzV!cjsPIAjDS)0mLTF9Hl%%u+AmfLg%92Xg`9lO1V&gB191o{|1 zD4N;Wo$TMtCKp#pTLvYr6ll&H-(8z*JeTrcXDKaL%U-itM9m>%1<)EZ{7#%&*Zc!Rr(#18QkW$h5O9gvdL!PleZD!CytCe1}<%pvlaNUlT=C14UM0B zTW0~=W_IEfue>ga8n@Z=pCVo(1V$w&25J_ahOh511#Z2xN5c2jOQUfZ|BxVCD=B&C z7Q=2UotN_t;)C)Q385~b=kP1cZF3Jl5}aYb?h^=&^^e11#%QxOj}9-$6Ysml4V`6D zEMBP2YQv=0O>YC{qCpm1@EvRy90}cz?S8Tv!l+|-J{*H)kbjh*-T3UM_?Ak`@vvipUp_W z4p(+uX1L@SE(hx)v(!|xNu?pjou1w5ExS=0jMW=znJhHT_E{Vy#CcjJo5*PmFKDop zNj>!4#*Ck~o-31SJKc}=X+w8f%>{D2uj5z*uTwnbKgpB=%MTTbMHx#!v3`-zL!0GB zmL9^6q5d?NjW1kls>nWrGq-m(`pPup{4lcuuzQnTt(EFn&}@)>3z22pST$(a0O?EJ z=dK%SB%4UJ088u3)q89@chdvG@a$p3v&?mU@M=3I>ebteKwf9vc=S={1GA|St{EBm zh(Dl~^8wN~&iAY)(8~V#Y7kz3-NG-|*{Z0zTy!_O-c%$w88T;{1agrY_4?kEprNX& z`eXQm!iT=TXEj^a=^~htVOH-sHpA9qMtr^X23ld&pWyR6eclf<^oUm4t<6_@4`W7E zWX>&xH=gg^B2pCR^38BK*<7s@_#(Mr=b9?ve)=;-LA9%3e290)e)yC3litE>J4 z2wM~AdoeLbo{x-h-GoSqF&l`{7YW^Da!vk;|4W!jiHv7 z=%WD^TX1Xfy`;ZrCj0P&Vxq9A4D2^Fht5&kt!ia+%UTG)t8S(G)9g)Ex-=aZ84>H` z-3IWGmI?ps7w>!bS;`@ON2-@@)U{02s_3K5)cedJ%zca}0YQVMWHSWIsBsw1lb+n= zJiVe+g?KVSf~+<&=SaR~3K@bV_sUg=_u2tDTpN20)*JQWN`9Rtx`TT2#t|kta>jejXIB^JEPW#p7 zYA)5-+ID=}xHIPT_%NOX@TMrhVlEvc%{%s9I^CP}e-r3@x<%^8a)611*;i1(PL42a zIQishjYxUqk{n{P_9juXZZ;kOy+X16fWz zrn3DgkzHBLkP4cCQ!mT}8bQ4z|CyGkGs(!LkMUb3f<|YP)r3a-a1~WcAD$DA=`~ zc}IXJ>xan9&HM)Q$|y|EF7}`7g|0l5!V9DGy=gQ}gQsg<98K=AfKAuWsIQJExeuho zi^i^Ka2Ezbu9geBeCmTZof4Sw!d)d&O#y`ca730_lk{e*>vmQb0zamq9P~}5O8O*- zTf2GO|C_izraZDONPla2Z*%3|*^-L-=Xm-0Hhhj)hv2wxf8eJ%f6Ke`moKg^uF1HY zvl8oI234EGYZWRHCTo$Cb;fb%BeWc`b;$#;sZV?G z)UV|U85|JI2COpe*rc}Jq0R=Rk6kV`^slTYj`)9%%XE}eN2F~q;VYsJl7HF6%dnj? zxF1K`J?+&_bw8{hY)j;cIeCetJ&w*j#q59YeP;s%wa}me_^bqShT%G$U`Zu=p2R0& z01lC#uA)Iy&}Ui6B5bPnGS(0D{2q#3R=GV^kjg8D1>T)kw<|Ia&<2UKha+2q(B&I@ z2W|rg3}^#XqhZARd%7v*4MF-0XH2od3D8#al;GIdPHTh@G2}}a)nJge8l)VcELfK- zmJEIU0$Ho9PCm3)yofBvd~2RIiKu0cOOwHrY+Kt=tEBv}-G%oexF3rq7WdrS%nd{ZE!w8MVse-^uuqWX^MIo7F!z!*1GjjuAnU-gS!*QpJSVE|1 z4zX)d87JcgM(w>Wk3L0&z~Xtejq4Futn=2$&hh$qYY=?nB1elDd7VP7jP<1tCV3~8 zpF?-(xl-19*v15<`!hX=H3k4D$)PXDGL!kNt|SAT%VnjEp~79nvlj&ws-{DPOswiO zgNe>m8K86ob%uJPe7~&gsr0&VenZO)ZbUY|YDwk-@@M4X=H6Bo-seN+9govtJ}hRs zqRYS7(-epPc0yK(%Ne>#^dr@n?W1R|p;=YAPIRP6M?5cfw!px0@G3?NgGG;JCVr={ZuXn4$vP91DNGtK6zu4`> z!px8%Wt(Mj=U9Wm=WNn5RArEH;nZbQ#AR<0x^&Vl3m#EC!d^ULqyJfR&-8RlJ7H;R za6KXU=j*MRGf}F250fkl-Mh&h~M>< z^jy1E;OrAWUcDTk&ci3VD8DU9H0<)G$_Q)PZ0sMumcyozY)G53+XUWF4<@rPkEzy z@yBL-jHb139FgCfF>CggFldPx%aH==}+HZ*$V9pFKQDUOvSQu_@8-}x6V*6NI|VYmM-Gi z2MKgThtBt#aNnYD1(lLV!BjiH$%#rGyyXA>LpBN#j(bA&V2zx&rao5EWH|#A@MTi6 zE7^t^@Z=~VvQhV7ho!g$gd>B`ke2%=8iak=p>zcKohW|#l(Qe9jH5IAF&})1TSU%y zhb^4X-Uo6fjt63f+YBG#+xF`Um9y_kqAYUZ8+jtxw-dgvQJ~K+kVQvF zlU3B{mynTGP+nce2S<4ZTKapsW?}9-NR1~X(eAm{_bWreL+kH;)!!rrj?%7o2fO^R zv*Z}2o($z^2!c!R71;`;6pO+pTdJ@;!PS_``PK4U;{b zIV+*g>*uK3A#SUxNRQlJQ{6{3-_PY9^#Z(27P}=S5c~yxeXlG#5RtRUD1YTJCNA>S zibPf&UFI*mjlYV%*rzL9{Q2?pu2fIfFPUXNV#wa*@h&-nga%-hobC4(^&qO1gjIvSX!@>7p_}ma&O>4<3A*iY{uF8 zk+jH&_9)ixU7}EC(Ex+t;N>n!qYN-}!qOgrK`!9wu+=NQ+9PM$1ItK{yTLh9Y~o5q zX2j;7ZKFGhGgM2cn*KhrxYG^AT$$HO6 zcKj(Q--&}M;O1jk+T^>o6Ky@6@ZcqLgZv#u60=s^Np35yl)6l7Zd_6Lac0D+l%zW2ZPWBShaW^@Oez3CIB9lD<1)gzKlAlK& zsYGd;%AFA@rqJ+1dDprRIgJkYGdNkPhFekE`Bv>!dCf3lXQMwsd@GYu&DUjY@$`yC zu7_-N<*x9eN)2vtuU6%rQ6hSjQCP2>zC6j2N_+%s?3 z?jY7eh@BI`G9drqn zbZ-OnX2SN2tdV-QQxvn*s?vd2;D(9bIPUdC3> z)S_^Uj6q!_=sO73pGTK0gOirUx3w;1*BnT9op1u}0~@|?b3SOv$7{$btBj~vK>;3i zYE>3)@u4_`IEC9fv}H#5Q};34ExNFFGCfPtM~4d}-THYtbQKs2G;OOHJG1x;jkXpP z|BnEy6KcZqYc?~}a4b6CVskJJtD+tllk<^6BVj)3(xf%V4GXhrq@l<`i$?G#9LRr^+t>}TY|&pIi{KB$EO<4Ee^a7wWoPVt*YgH003qwF=*g)>~z&=T}2*C&TS(YtucVxSc z6qdCf0A#X3Ou-uRcbL2JCt)g$%t6+z9!WZkn_geQsp+xF(wv2dtaQUP>#K6Gl(kO2 zfNCd}*e@eQvNuEM@V_#XGYKw#oWXGXSpofYpd+d6ywx}>2TU49=&BTQ;r{2X$ zO&Ix6ZVPA$OsmOP>T1RumBCN0aGYH>RdH&i*Su}|+C1J=&PY_LP0jt-C%d)@KD!ur zoNY3a;)HfkN@!jAxt=x8c6sUv9nTB5tFwyTAJfY=A@o~}Jrr?WXA4Y2b_}T0Kv{RT zb2!G?vHcPm-TDomr9f7fUPv}&F2^hDHdiIMxjz}7b3${cH!qZ z+zGKi0@Hm;10Ui$+oH!W_@GS+7IwwxCaY#|L5@CEvJA83veJ^y`pKA|`N+lW%3j`0 zg`Z5dsSiIHsARYdKf*zSNcKKqET+hTvr3wmBZ|(p-|dX8{RF8?;+m8Jx#s72qI({f zS9I_cv3?~Q`P%qrY1pAYdNU}Sx94Gte~A{w`W1Nzf$!(w%_$6uXryY1SKu7>qFZKO zD?leOq=0OHmx=5Ds4mNL8tTw3&_yp@Pyb}E0b-DBfRTYtzuyeI@!+>R!H>AEjpMGjMjbt7XPeR;cG^BqVK#&1Pu|(&92MofAju{-?_CS6 z%#=WZSR3DV)dW2_I#P_|)HGB#gm?)*)6Vzk)+%faKHIVI&%tw+F+?X(+q5&7lkbKp zN>XfZHOcgS1DL&U>@jx?Ta{-W2W59f__6 zeWHw^n9ymSjny3*NwS!wtL0U0UfqeV%g(_)@mC!_Lg@EPJS-1Puk z>ZESgcSHHkel!j( z{yvL>=Ym}U7c*&5k8)jMbF=jSGAc4s)0_ts|7GUnqH@MST6NKFzvTX9g>XEJ0Qer~ zS?|5K`pfC-FG2?3Q1e&-pj5U0$r1~%r7VEkek|Y-uFK7pme$eJ^Y@%p2dH_~fPfA- zE{SZD#z@n2Q^v^wlXTx>{cHF_%>h87kp3o0A1XST2Ao|3YYIA%oNk0hi`{9w9nDZL zPSZ>%NQXS|Zi#)eA6DE_r#H_-OjENv^#m$pRh$d;S3;eh&C)Gw3H(hH`IugNp}-O5 zSR$mgKA3)|ro6FFrR!bmEqvxWjxl4Z8X8?{*0$hJm=0$*u7=A}u3@9-UY3*>CykDF zhRKM>V+;W|eL>Et{Ox8D;{HAFI9CGJz+;74tmhku&FysIhTbq6G6!G)&v~uH3R!il z+~v!1UOTj4#e&cvLd|xZ6hHz2HGjmB$&0h7`?te@HG|r0Z0uPB)Izk}%rVf{;Qq}@FsR;@FFYxKeS&#TFZzll_%^2ymJSUY?RGBe3Ge`7pPiPrV$uTuT0M_ejy zWF+%V-VEQ7t@@3+1*+MQ>bsX;8MOG-U0{k~66tHEh|doAb-~W>#blY$9lH$o0^hP0 zSUK78j+FM~#`eA0FE-0FrcTLbwYlX)|S_xm=G&K#u`r ztAiFJhj30U)o;js{Qpu13O@WFb$|qaT&ZfU&B4y(V8SvBl+cCyX;{R~<4A~|JM2;n z&`)?5O0N%6H56908Qfyz6Q9mlrfj}6(hsF_f66v;**J&UkR7?-SX--Yi)#KVjjUE; z3leY6LXgRkUyEmzvPGpQF$B9eQ(8~2KVLSM+3BROcERY@;EW3c<};wWk}iL5dg%PjidhE!BktU;cpc6%aQrsH2~9oIV{XSfpWRBE!@H`MuGn&j zxw8IbG5uIWZY*=3+nII@xQ)|>?yN$7<7=-B`E||N3dH3^G+%U9N1MdD?(8tY0~ipx z51Oo6jIQN9bz&Q;lDi)t*z$Mq-By^fDS#ybwr7-@zl*g`>TSt|pFJy(h-XL#ABU(Y zkY5l0lRRzr^s1ZK3(INRsRkso`3!E4x|1Py?nogoNi0z?P1gUoxJki;NP~{78t#X# z%hR3fNA-$gv=jAG*e|dv!`r+6Db>=A%QxInJO>m9Ou;pR6dsW-mHJxt8fBHtOIHkvJeWKb&&n?5d3PlwEK z5LR3n3S=br3fC#tjcYhH&5AfPI9Wg&J*W(?Fo$bvf~fZ}J2c^k>&n#GSE=g=`$GA> zE9C3fkgo!BrKidfj5RFC%WftP>D|&;di>=BV?xTTsKw6Pt~I|GNBS5F7q$vy5Kf5m z^Q-;K#)aJJ-!f3E;;hmDPmN149AEp~qNByfI6OG^Xl zT9J?5zkiQ%-TeOlm&(@UfSG9`$?R9N#QtDj%z|@6>vV;uv%H3qVLgBmI&n^X0=7&N z@)GCb-DTgK=n}=lYl^!p`(vrm|aTS<-{SK5^9;A!0xd z>%nZ=*P|&>f(w{`1EX4~a&eu0{o3#X)Ifvz68vQ8po(v%sv1MCfns+3ydd2z6wG=! zTbo3-{^@WB-LXEh=2|!vq#-pSsn}4-g7n7>1+Cq8DR7~15gLVtTUE{8HfJrRnqrt7 zk?e%+8e6rRh=r`6eYulcSk{r{{FRt4+WrDbV%N+4_jSP#2xmh1Pi16OV{QDHtX|a& z&TX6IjlDrrMtyKSZljqS~SWII`nWJ@Nk zz}&4~1_HJ(roYWasO@U^km4GH(2ocH&cD9*3VD22_UvG`)|oNz?76B~fPVY&dB?Po zKjE|YayJ3`)pG!e5YWAumFF+Oj=7}OTk9a?*}ZDJD9@N5f|a!n`7rm{;te&j2pMVh zr28kYoymQ&M&&#s*EeuD=~hDe`-t@)gm|Hu{&UmyX@`^76E-HS$L78AJY$mku?Bjn zAFg60l?pPd`yCY;+)GbA>4v7t&xa2pKkYH{Cn8bb`cWuR;)GPq?7G6NJY7cr?dM>x z4GT!Lig|4>z_Sdm4~4}XMcMRz1F4u;RwI48g02G!t{Az-IR~TV6LDxHR&{>p(R$T9 z3@iCHrAYib3n$7X)>DN*ciwzW3R=OK#8Z^ns&B|tWqPjS%dhF0^&a>vglY(1&-lvA zWH8mUuGg`L@&|_R#i^7IqsYMki z%|w3!$~O@KxA5!yZvg1DpXH8_?aiWcH&v@lWu$?orbYREli;i|SY<5YE38V6d4a*L zbW_B@euifOtm&GfQCRfcdgz}a)%sg`H*r^II}993@0B^p&OrK>@|85emfTeJE)WBq z-_8Sz9j6Ldz%SG;A>~X9N$z-!)HOwO3WT(W!c6phPWs+|`Z{(*?V5Uy9uY2dGbF5i zVjxwxMelQ{F_!cDabzIzW(vIO3d4Yzd7sSUU9DSwrQ%QSlR>_Qv#WA=czWi~FqA56 zKdA@PlA9*7-ip?)pnR=*L+*>jll^0Mc1CJM{3b!vc{bzuqQo}n%iHs-3QMDWv?!%g zX4&N%wnM2_@E0K~hK*hh(Jq~yYIaiSbMTs!Vbrk(qCsp3$RpPI^@nqtKQq3#C7b~( z{i2^JMu}<(Jar)ixv6}%4Flrt(mU45*hyP>`91Pew@meW4iYa(;8{0*ktm!q#~K+g z-Z&x|5}{0am+o(@Av+_IKtCMBIT6Mr{dt&Nd8-jqzAbR6G4M>J40_EgV`^X3a~)B% zXumFKIt9_t(8aX)cvLackdkPR&wl^b3$J>wnS9F5`+v)yrV?iNi}s*mmszGHJ^AxD z29ZnTaHbv&EvE17swH%EW#tYu=WZ^&e0aHf8z|w$^*(#denFo0VfSrP5DZp)awGJ7 zjBr$pev9w>7Fu#8EU(x{j6LF(&;iGns++GYK*&nf`6tbl)QPO}HsQ|V#LZs`aOIGt z+ue2AuvE?oC#a5&c-Y8bw-Ze_yoGvP0`;!#(hc=1Bt6ROIWp`IH)tOy!L2%XX7+A) z#mSQuUKDE>tqMwzh;rw@hDiM(q0_@siy>eAqMxQ=Y#cBLyiGZpRLB zmh(qI3oJ(jchzQWsYHUWV(Ho9d& zQ(Ti@pseJfMooO0vMM|6PL~4|ZQW{}W@OdKb@s$hh!iI1Gg`W+hY}i~#{0)zLAzkk zHUrwh*EhUaEV08n+I5;q7C_W%MgKZ57f5qlqg^OHrbu+8k&-`jKh0LV_P`+{IjJQfOOcyoHV^k9a^%nG z&Iw{9FxomgzR%$|Yv^o7g$A;{KLOtM+~7v$l?a8#OekjI!8GKeSckkX96}y$es$xr zO}EoNc6#N$yQ}t9?TQ|bCwi~}r07Y9o^g z*Ql;&$0wjb)%#pAV7p2A!+PgwUe9J{^$e{!?o0gxFut}quTQSj)?`-1Mlkv1Ess9R zO;)_ZGCu6YK7@~w)RraYIX|CO$;VtI4xikl z^9z?St)I{NBndCgLEnK#UWA4P$5hovNW1E)c=kzIUa# z9J}&Bfz=0n#ndUe&U$0qjh$ir($<}niVmqxr?qQ(DZHka?&S~_lUgV;G+pg!C7VgI zR=9M+C%5TtK)$kh{H?Pp%ClbLQeRk6yO3H0&|GXC0gIR5zZ5i?AW}NYSBDP6J*E*M z>|FF$w@G<-+7WQmupA0fP8hq`LZIS|?Jara7}E%W`IAaQl9HrtCb)Q@D(RjHzx^Wa zJTggnzPse!D;`vXHfmXvflh(m4hSr0!Yhj?zE_Mw#L{trb+b(3g!Wv{_shiTi@TQ6WF?x zn)ZeNu!?5Kxaq$Sc>#FHo^_W{thd2|y9xETWIv~$g^-Xn+f_N( zmauBr2>j>g^tNm)KJ{W+!v6^5-m7f67A7SmEX({mSva1>{&qe{``&S3_>g~-kK)hQTH!(4RRI`%#@ndqx_Q$@9FX;Z)`YjG1lD~$5h+I_W@=`DM+JwNYo79 zKRPe&Lm?nNnGu=5hxPgOVn!bS@~<_^KvY#}0%^)uEmPC1`dhx&`I;2~vz`qZ&v~yg zV@46j#QjpJ?NAoL&{6d)__>e)9EJR;sOZfhp25fSg&kl@Q|&RqbC;WYcP&7a{qx~e zwM}(Emk0gQ006TjpnT1$t&8iQ%)VF2_`OyB?OT$%QX38ULje*JTs`eS6T>kb zHlz~hZdZ0pDC5~Om_2OTD=bNuBQ53{7V%f};o&`YK7TDwUiUUBsu&((x0BEBJ2a#2 z>)S8@(1z*9`FOeCOna{N0Om>~bS)w?5Wr&Ug{CG1(em5U$o-oly>xce?<3d#`e+u8 zYC z6#^We)94hB`)5Eif6M@0%6zB%xDpYq)e$b&%_v%vy@ZBWm%4p{%u48%Ub+7A{c8r* zK2-*=-xyo%+v2qb)fzBVg48F$ylE;Z-(|XzwKUJ>5uu3Zw-paXiOJe%om0z4Nb2xj zz@&~|Dl`{ox6o`f`0HAKa{7mJ8Vqh@v0{j+Hj_J3a(!Vgi-0|pEnAXRAWOQ`VqnXo zR1Gx2gPb&3ia4=Xc{W{BE)+lO*q?OYR>kPjmyjjfTjDe<;0-GJK1=lNIOyrIZvj?6 z4!XyZhpn+26pCLTO1JByJz@$EG;eAQWRaSjVCQC=#c^mZt687vlLgGt-JR{XVM7Q?2m5ig15)^qq8% zm4k%km@03Q4p2_u!B1I%2p)nUU;#qU>q1?7e|$$V2Dy{tEg z6+Jj}RYgWb?)j#F%L`kXld9ApBFvM{_HeCZ@|Z`$NdrJ0E$O6HZO)09QoeK$bFmiU z5HG5265Sk*yWm!HGd#yCRP2F=`l-H^O?*fYE1)_{~uRZ9njSKy=_!V6s5re1O%i7q$Q+lAdS*BknX9dC^hNs z+$ia0B1(*sme>%10Rx5tV+;oTF4o8IZ~uwAyYGGP`=0Zh=bZOBlgCeZ-I_@&MrGZy ze=1CK7rd%<65^eHZ2Qf=mHe4oQK#D!MO=1;*Q1$y6_X1r?xCD7#li~DKAYdx23?jc zdY!7 zoqLNOn>KyanxfCfRi1Cd^o)#*!V!|*tKZGz1J9zDladd<=18IQ*&1DQ$?=uSDChe! zhfY75f&R?vMnb1<&^%SB^Gm-#LUvQ3#Tw&Rg7=@P%bu}$D;0p$_&#uDZRfcqWRjf? zbr`bk>UybD=dSNNLN5@(UcJ2Xr8CM|YZ`>eoyRopQA^mJ7voU4pc^uK$34%4V=rmV zO0AlYCvEMk$hP!F)T_$6XHTn98J{)JpFiLH_h9vWqTi%L;e!&cgiH+_=Zw_e&R41v zFrQ$Tr-a*;SwWM-uW4>r?|h%NWfXNzBEYwvuHLua%?{W;I;=O{AQqsOa!tiv;R4?+ zmDgD;l~NjYK~Cox2QD4&#ljtj`&johZdTFCeLPamPv*Hr&q!Hm542X%NDN$MGb##Z zEIDho3N4zw)kXpfiD2=y>1Nv(h=>RgarBH`tBTkdv&cuMO5pOccg)Ye%kJIo zd;PejH7n~K(13&zBSLr8p5ozDQFLx^#gg_(-~A7gDXt%1zQ1__zFlAbPs+F~0&b>`=`l9y?K~R6nv2y&%9WeLyGr{JE z#*P>+>-HQMdxq7<@KXw>uYQ5feGs^Q)_LY`_#dxo?3ifDjhlw1>a=|*r#kDi=L&7w zb^5M<5)NaQ0j<}T#U8#=mAfO&{`~0@SjMVjfx~2k+R75`I~Qpy4z3gi3KHK}2nn3Q zMlcBFf1F5Y5Nh7^`Ejz%Mwa8&_RIapE%&jMa`&fcmyg>`-MWO^VlCbiivoI%l|a8v z_a+-A;ePl=NvAq4JsIO?r3M{Cpe9%_*R<%URIOMsako}hRIp=S@dDl6`-A;9 z?})-M?^g>&GS%4+-RM2*)NFvqb@tU?Vj!bplmZ7W+s~C^WX9GU!W3n zHt%}Ye|Y+*;%W_`kE;1+@JGkk0TnS86`TLTo&Y^I*`{|!_b>ds1v-+1{3Bco8^4Mf&PB!dXDuRWznB)_WJd=BNbTDQ@Z~~cCfdiDAMu&rweP43}gPE zP&2ozj4xY%AeVA{&ZcCKuJmLaeNEiQ!x_GBYOsOfNH#JsuO)PyK3dl4Bx!$JyI(F3-sGz9K&8k9N>6x@F0 z>ijo!aWuO#`cb4M3%0zzF8^MS(}($3@78IBOA&9dD@oD+jR-aZw{$co$o1=A^+Tm0 z`bS#SYCQ*#(InQ>xRI96$>-IltD&3IB{O~d;R|oxg%tTRQz8E#Qa}_~=Yv?*^Yr+Y z7G-db!$1l1@~k>N(`8|j(OapZi1e^0241XVYzZ=LK^MtRX#ovScJK1@5B%?pkm*s6 zCG@P7YY0JUrtjA-?L2qjIEjCmuGSmaZY1jT;UckpZ!@nF%x`=5u;;BbF#QSqWp3kd zVuLs#_b~rT@J<+y_90*b)&<(Jdk@nPuj55UL|-O~_-#%TlNL!X9|C(L*iO{0PW}_o zjllss+{L!>9EK@B=liXKz}(Z4#q}I+o8cPV{FVs+E5}Qt0|x{XD9JQLRKgIp?o~P{ zB3P7rOaxL&OuCqD^uIes)wlO3KKJwM%*B}%TzKepK+(^{F4crlnRw=fqi~)0s8`Ul z7ch>bSrp+YA0f(=_yiAL_Ps)PO2?~NKV8@7BwWP3C&|e=pU|7+pXqFR_miJCM>u~v zcerR%Rpj7!53;Z<;n6^Ue1%v^TuhT#&zc23f#D0_OA|AaP{7yreb0ScSTs+ZIFsq`ObF91ZJdl zpJQ}5hNQw5Gg@hzDwg`!Tudr{vnr5?Z4iQls8}g<0Z|dFoaSPK5TXq@m-g^gJfI`V z+O(-~@dN3UXIO=9W{{>qRI5rsbwxPo9UF=!NhhUVWaE9ybviS9uZ5XfB?EHgYuVzi zoKI^s)qf4@^>|;g!?#S#qgT036yY=qn%~1Wn+Hv7J0wL`EQ4HwpZjbYa#6#n*uXYf zkDZ4G1;^CA$M+*E?Hl{qcoR{sc2OVPl0EkDI!$}7jXsV$cq{&(_t-LoZrL!=Hf=Ov zF0;%i5Za}vr_K;+<{KShgg5;d^e2L)(fMX90*G4WQO-Vf)Z5WKh@`{`T9=B7Z$>9i zE|CN_FKByVyasx=YcI-p;ydGpo;oH=iDGFRP!VSSnQ^`zro5f%E`FD84ZJSS^(MFi zx?oZmM_{>w+)+#M8?xcDYm7!!j?Nwh@G59=VOgArOaIe<9^LIujm5TQLqLbc{9>XM z=i!qH$HjFifNPO`MQ1CV1h|VujElQ&OE0*gb<2NtLtPsjU%K9;~P; zS~qhy&t(O-Zd-?JA&A*!Jf=TkVX*2|eBXetR>I3RT)A%I+TR2WrZP#MB@KQ<{at4y!%HkoQB;5kQtz8zLB-bNWoGEK9f5zwDiQJ`1V%>98aFhg3xw~bBje*egSpBr z?9sC#XTuKg<&gN%V#Cz0j?KbM@pAvDA>|)w7rn@dTNy7;MC`A*x_2yA0@goN|5O31M=;-V^ta~+~`b8070}IRt)G> zeS9FK8=W22$t?EITgcWB%YswCX*NmZf|M+Cu!%7vV3oUkwhUw9V;$zZfBRM(DUsE1 zCG9$z6_7A02_yakAtNFp-TXc*F$fTQLbT&>iGKQD1NSLA__yjfZ7jj7JoDBtWWwM*(23ruq@D(<4gl-qsJy_{9ePMTSDFaJi}LA%Vzf( zq0I4g(!2NJP!V6X`@zJ9WlkOet%n1gQe9=$CUJrFVJ4t3e*AZFiv8Z{(H#cOn zqM^5ftZi*mDw@bB=&vd&Dhhh9K3pCz&#a64HPBnqfK1!kvbvoQjnSq<4f7;Kn{j1I zEGZ1JgvmSt;McBW@1D&$VsEzBrWOFr)VSI9P&GNZXV!LhLVD7DU#oHp3Y56Hx${a& z)X_l%Gx4?R;k^3#q(5sQ%p|pmc=7}6Mmn$AXHZ_|rkEtZ@)>Hj>qJg`JfB%=NNH)d zRi2|5 z_lWTL&9~4(MePct4O7`~2r4!jSGphRxYEKPj5{uY}!T2tK1Fs7xnxcwb-vm^5jGUCp4 ztjZ41E<+bVXjxB|#qLVg=r&s?nvznf7kpen$o>$#1D(q0I0luGmPPPQY#|*&UZr=#(V1gMO4cvyazaQ`YEmQ z%8YA})_FN587DJPPz5g!knA<9F~ET_}N9Pi&W@nEtxH*cX>`gTTVWo4yL!?e+R%`v0yOr`#j z(480Uw6h~nT`?Om(i2=K$y=p8_tL6eKu}?{Py5q9_qhoql8SV4ds*JjKn{a8b3Fz! zq=2nIi%OYi631^?1Ys9EdGx$Gqga00p<0*JG@xCSp!1hIt`ELRIEfvy5FiR2{bnB1 zbNyfIH=F}x`Iv-^JEDlMZlf`MYAGV_;Z^G<8TgEgUKhJmKFaK*`JnwUM2%u;>FkrR z^PR7)*aa3@U7k+-mVBdq@S$x4ILk@=Mu)hynC21HeKB$oI9(V(NGK_}&Bezjnk*Bv zyY(aCBek5qdi^;Nck=uBq=q3s`TRE~RXeQF0I=)OfW(R4Xik10qzIm=HUb~Q3Bt=r z>mT_Pn4uq{;AwlX{0jnuXOQb**}mV#yq0DnrNw3jyqq%evzBIbGJ075eFaBx(_w$U zkoAWhhK-dqG)2w6T(bC_+{Ch!#_6f_a?f5mY*S4&xiYKn?fR8>{gvxF03H6+H%2YM-g$tJS-v7?@qm$G4)wMHyoy{ zrGM*ztH#b$TGC30GDpOqn)U^`KNZkW5l9A2$T87x#ut2ZTj_6Z3gwDFUBpxirL+^ChZng zyRqTc`4g=|yq<)wnFy6K2b%e5&vozQ=QdjV_gjMozg#)K$TBczS-@N;b4u65c{2w? z9PbXo9jr+>9e>vEbpL}_ar>1W3_n7}Kug(;L4l$qW<{yK3T z`ptCMSD(<{gh`W57LRxQhn@0Vjfb3_J_IpuWVu~$e7ekTZpqB|gk;>?20m7R*LCeSzt|k>e#AWMmv!PhNgD*~gd^nWHFL zoM2d!IfIhc%91v3qZ+oU ziZdWL$6pRy(_t2t#CP@?!GsX8oO99}g8F?Dp$nyHU_rEB{iYG2t8|%BAa{pX5h9sSCf5MZ^OHrq`-ymv$I#Ngsc6I;)$CQUEuPTqDN!4iGABG~SC!Kjdq;KQ zecWi}nLTAUkNV3?lvCGiQbW7n&0*S=jD%bKEZ7NPXPSDD-jzn9;)jKww2!5(M_=SE zT%Lpk9%~G$KW?T9p+9UWDCoE+&CcILTBA4j#&%21m$G!J;?t)2r{iU|HiHENTqINPRQ{mi%H#4kjgGf+^y zj43}pIwE^!p(CLUxlHIP=p%HUd}4i*mG0E-DZbQZSuVl5G;wBC!#&f?!6}5mP{};m ztAwZ>Cb4TpllN>F={-V&DI<*A2FG@=@;*$wugHPW{beZK_k!1E3pBU9sTTYSah|>} zWTQ{CvR8JYsX17{S*LxLp3l8Hkpx#bC9Ksq(Y6Lt_l}Fayxyu9*Kr2GR+led#{8fQ z^>({MnOx|ue?a0~Z?Ib5V|&@O(KMXkR)DRXaS_;5*T#2-Oee3Ev_r+8yZJyMah{9) z3D1Vt`Zsmjjn6!kJT`f3^2Bd^@wS>#NW>-?W?uK>JADqidSfzS?)e!36w1)d%I2*< zYC)v_?&ErjnPy|whifHHmGY>Feli2<%~!Oq3mSS5=aA?CkG&ZRuIYst$|$}@_OAsR zH1*HE?b&D~Q$fEjQYBitdi3r4Mi6-xBv#HCRv4Kb^gXQhPUn0t$;Od8Rxx*w+DBRJ zOfLjdvrQnQ>XcnBC@Sh|NSNMQa7~YPI^gK3BtT!MNvmYs=WwKDnOKmS=$!6d!5u<^ zxlEeH1s6^bu?Yzb#gKz_i?BfAb1LeBod0K2C7*_6IdWI(MH`88e8oHfX9;&i7Jaq} zCgOFk;8Kxz(l-t@u&8QujKWM$DY8N@H*G#q&zW z8R=8alpcCK1P;UY;4Nh%;c1-oI+N}Dfm5#xk;v~AEUw58eY~}PX341);kdo=_=)x_ zr%)nnVkwS%9g`k9h#T=3-fA>S?PS|L}WOWl|br zzEivn8ITH z*43{29CU(>Y!j;4n0cbaZ9bzApJeJyuO7A@XDFUIJJWaAmLr1{bfOrIdg=iceOmjQ zlBT_R#EyEMjP5ut15Qmz$*ZUsyw~wdVN}PxG+EM^mA(~8J~{LT)6JO~2ZR7f;$kNM z3Sk7)JWgut?a856q?6FxMR+R1o(SMH<_F%acFwU%^@}Z_zxfCgPr=&<3`wy>d@mVbbeR`3jcH&j?et zUq3+`Qp9JScm1tDCfP1!mgRTkm2>2)KVOAw0$Rd4$|i{5mJ;I{RSvC;+l%QwtfBPc zZC}}z%>5QF57)3Uz%Fs9fBzFwDs})0tU9O2sF>dZK`sC;nz~Jyr333}X=zowy+uQc z9nQ23r=&2#fbxpUO2JsaKp+8_ETB74^INL-Tf8Wcx|kfz1i1ekYk6(2e}XaKhrW>7 zsq&${z3R)TraB7xJF;P6Vb-f(D*iA4Iv*x^lZ^eU9~d~7MRPCmQ*^I$+fiZp3Nd!c zi!N>d681HsKsgs0#8V#VcE7SpUJ&9^V{L8e!7%jV_E5pw-n%@?2VS}}24tY<$gp#A z`hD8}2Ab?91%x`#LCcmN7ty8Rc5troMu2tqmW~vA9e{1u#uU$NW4U8PZPW-QeC{(V zq4R4kcyzI`a?^-=n*877g6c~HyMlus`;HA*SkO?eT7i&P^e~xsywkuM?|`#3M?2Zp z+w7pq=~aEZ6|yK{WEs+G_a`g=0F&2H+x*E(O~k*PFQE3!o#ek{pF4e+7~;OZ zA~M8N9KPjQ(2O&if3@jh{q5`RiCtJ%?SAA&qFGI)pG7)ziPPH~cn$aZRyp&Gph^Zc z5p(Z5AXoWM|0AOdFa#C|$ILBU%C#GNUa=WQ$+~ZcLBXU?f!#Q?M(ry318Rr2H73xm zP%H_H#HkGbZrr3I8Wnp@a@($Jb%5}8Gt@gC zvMXOkn&DsU`7CY5&LgB}0G4((r=x~^kNdY4?|kXmg0b#JO)LkXuWkF`Zoy7~Zmr5A z%>-*(>$|aCyHNQJQtjJb`b6F;>C785nMpi{LLP6g3Wo_8&b|B!JEOnW`6n?3=!hR3 z2hZ*eQD)4mtsPTW21Mx~G7{Q6d(?HSt%nC_C2`&L)AH%daip@C@hY{S0>=OGKtNU8 z4)_2O)TCNw(qMs09x^GQaG(lnHAkBr)WcFedpzf=yfif2^ICP3D0<_F7TvL{IEIa( zC`P|vlgL27`>x`LBj&a(4=>!SS)Ye?HmAzaun+$~#^Y#{HPh+rc6myt`V(-xC(ls4 z&B?jWAn9GQwKD!U8A6*0yu|wBqsfGzTQY~p2Sar|0>qUv#$;c2{%-7;o@mhYO(q$t z2kT&lp$m>NL7_|wDhjciH^!11g}X8PUV=FmbbgqC(=p>M;dP&ugrCBXgMd@A06BG$ z#*6usj+&a94NzR^4%j8+_u2ORtSs5esw(k$m6SHS2O1iYfZVH!kx_CpphD_?R73FO zi9iVa*F@9S0Yh{9#I}tb8En{C#Tfgogw1|QXxs25 z3Tcxg`*+0Rsi#YTIMkEA0yNLhPgn`S3b2qd&5u$;yZKeAy9TWohJ<+Z8hyIsgfy|- zV(Q4)Cm~I#cq(Ra91rBMA~3LCj(g>8{^TwGJ_$w5z5&6WxmoIh$B%(pJgf>of>haU z+PpQSmjCYE=hVH4+CaS;(rgR2pV#=KiJ&4m#*`r^61Jq5LY$pnt@UnoUEoTDX|gm& zXD>fLe1L0rZL;Yn1yqk<@Rr#gF%wX70$r5wRGvxg?!iMH1T=%Oi1%Zp`y9Q#pN%H{vH~E=kmz-WUJ`bIj%0Zw#Z-bXrd`EGjvrQ5Mb!qyT4}pXb>6V;vbVyl-rJzx$5g z%+a4{@F=8Ulb#M3qY0Z2J=_uT+eWOtU)ChzA?tCF-MZqm{B$zhYKOisLv5`-qGD|7$)T9_>a++)&v2iy3$7r_4~WR(Gzgkr7^e<9k2;8u zcsU4H%lf_2GF9k)U!d6xa^4wT$lqT5GGWhS+(XEv+=RW)Mj>HoE5JIoByI&@Yl4G% z_;wEVQ{B<;bgeg~biefuKcZa4SCgKt>rU zNtbm*snr%nf-i9sXC3|_nG#y-TD6qNeIqC@HS}9hVAF?T4zK%& z^ddB;XHSZPjoIl+GZ^o2tW*uWnOwGi}K`mV6k|k}7iwKOnIVYj3um8uH zawn4;b?OM^S1YX{Q3CQUKnGudD`%IKoC+AzSzXoV=fSh_yI~MlW%fhq=AR$>sg1e1 z6CCE9m!z)lcDkn*nE3JFZe~L)BLl5bfU)v@XOysh>&Hu zh1nP8B4zwHFvOjdVhp55y@bS0M$q%=D4Q`$H!nOa zekk+!f?H^u3oA$a3D>R>!Fs1xmu``tcbOC$NC6W10abGgUhS^I`$`|RHQstJC>En^ z1i*J~8s`J1WX0#arXNEDPlR69GSHvUDt5#blm^+;KBWj*FD$RlWMT@03)=6pKYjlkIuCr`)G>3sol$ zUDq|g7Q@#`hlr{Z*JN*{KD~AGdiZN{oPnI$be^%e!TFyAV`(~I2{(&A$Io1!~4U~)!-WNgZsp`=gimD^ngV>>C&1U}z;MZxf`rQBs$ z=i`N9?R0|LJ`|KQmRplTg6wVK4oscCr|wxyn#KEJ!^vvkCit+?2|B;=>il>9HI72( zaTDm{0dzlyTci zP{Q6SJfdE8n1d;jpIu`Afno7OsS0=D!xf+b&*5un{nS`gF{)~Rdz#QX_*e=CMzZAb^~*AsWt)bJ z4f$6NW8tsFzJv ztrCMC^TCW7T9h6?d1l86F@2>}D$7p#_DE$PS&bLODAeh|6;u@B|FKDD&*dE#xlSY~ z&-m@pf%8V6pF?8S3tbW#l^?mPQnSD+1y}Mt^EBbz<4@-o=I56HI%e1qu?vEKg9>dA z#2lTs5?QMY8xgST*fIHeb&*L`C`=##Z9pm>C#s{b*^?}xx#rLEa;`B_}V8Ux; zN53wt5B&I(!+MR1)GNDcxqhHi@r z&4M0NkrQ#WE>abO9DNJ;l$IJPZ$eRo+Bn*nMt?nM8Mll}BO>47Ii~tb(d4OLUjn|> z{Ro@hbG~LxwjmWdj;QGl_L+T11@$2j~qdU;A~*)7qiDJNPj} z!tyentOikSDqzu^mz2a?CRlUb=Ba!L1hdVxRVzh$6kX@~%mjR!To{B_ezfHOJ<3Vl z+z%rua&Xl;?%E|qu59`248x+F9)~clDR|P2DO$bC(g)8RKWjOD{+L;C@aH1=kw;jT zo^3;FU8yIT`=9p0#V%Q7e^KDS^{9uQ-C0`s+)BUBbX35!w8lC8bJ{;=_t>%OnxgiR zn4O3DW|J0~oIcy*zGTGJ}iT@v+RL0%U>vbdG+q9$P!Py z_T^ubMH1wl-@0(@k@UV z@0El^gVV4X+{OLZr07{Lx!;!nFSf|`AUcC9YPjLeHOjGI_GYi_5m*zlKls7rA1Ksz zpN)XA$4w;**ZXfBpBL=6+1;YeNtXF_zo!P{^LIopR4tT;S?qhno7JjcHq+c17lmHE zPgwx;llk{?8j~R!Pn_65#Lto`QYw_Y>c5xA)7p{Sj~shjMc_*T&*T*#OXUvIB6|dI)iq9o@s2%IjEpE zp%$jyH~zf1eDFEtL5|&Avy-s<3k3Lwx@)j+&GPmqU3BkkiZH(n>E-)Z#1!Gj1skMK z+!~7;~m8}&SXnfJdWQmae+nX zu2NLNqE<0Yt0I_CFyT#0zAPA@8m(7zfYz&iqL5N>Z;>BxZ8S79X1*TAJ8q1y<#19^ zvjcdN8D$_uDy60JDCF6Y_K4fw2wcY4@gx>f6UsKsA$uNr@mNTc>RtVkVCMDd6mR`w z%judPuH`rGma5IKyOk4|G)m6Pn#l$f`}DrvENd`KF*jNASND>EMqUDMj|~ixx@N#X z?yVEi>uB;{ug6n;O|bQ-iHHc9Y=%4?+QX4Z3@MXY zvb-A03^(EturfEHAr+el>Jz#HFJPc+uCzm)b`CDVYlAlEUI!$Cy_4GQq(h2eQ|1gRg8Ja%|N9ms-E2b-UA??N!)EMKXH*0Q%c>2=C~Azei|xh zl|@-F-E!5s;bc&qNRE4TVfuTCnS7*G5=PE#mNk1YcF`QYDc zn1oUd_9D#m^Bf~FXbI)U1>B@UMVbRmke$-0R5>qfZ!%?(YTwuv(yBRcs|$Q8t!oXm z?^<9i6fkbu($N6zZYq4!_5&Pi`?86%$PBKV%1*%ytCkS#8o5^UsdqWWrVpR%f?IzA zdWY0*grIH=VP98-7I5t*?K~W~QKXp;oBCt8@A7#TN$c_IyQCg3ioo+bf?|?usITjn z4vb*qi_0WLI8Bf$GD;xF&*d<@6yu?vy^U&fhQjZd|gJFgrx2%znC;?U_eGK)zy^oQB+^EAhv705!7~hzv(s#n?N7J zPy9lz$2?5|@S#7veHjj5K>Jr4u95Eg+u6%VdR7e~qOeA?*Vb1MHj;RT=u0eT1T+~|%uC^$lt;`{cYUgx5-z3;y@w$KY6KP_uKDexSp zLK(z5yT|gR_rjn3DF>hnks>9^m+~%bMO5kVmwehTy=TAceDC)l@G^-6VJg0j+(VhW zWV+pAXxU924&4jx8_9DV%_bV(5o*K`U}7^Rw~JXzpY)NJ_228TCmi5W63R~dB04{s zOp?rVnNBgy%JiHmfD2q5s}LUF{Pp%_I|s8PzVrPia13ZC!BFZ~5VIqWqtwpA5LE92GCbDLJ<_MmrDK|*tyJ=4LwTr*J;nS$= zfGf&l$&2->`aZ&~+XMKg%AoC~!S=qBzlZ6xd?y~}BDq8R>)%iLo2W#N#b49@YqKRx zGhx5}@7U)nDft8XE5lm=oGEh@E@G|;8>+9rEB2{FRJscA1CeP$*s@vwxa7@q2uwxr2|e zNR5EY7J#N*T-k0WD&HT!-#2OECTo+gJiWd1@f0O)TwyVaKF@VqZRi~Pr^)Ja(>bNI zueHj6&Q*wPJo4WmU^5e3hFmi&%Fh*MW}Pd6!3Nl7}NZypi2UM^!h6 z`|&q@-=){vZ1?h#DldZK{4?{(@Sh1<<1!Ysfc?@h82al5YloH|ZMUB*AsDV73V_Sx zUxq47>e3I@p1iikj~6nYT5?i%WV&=oPy93p{^w;)0$}acr~1Rtxjr{X#<>#%-wREw zG7qF@rE)HvDtb}$`+ER3YagMPVQkrV;&dE@zFL;yOv{SZ`-UeGc6s)8gLlpR`Rjs4 zBWPybMtMatKm|&{zvo-l$?>s`<4Yy{I-G87br`{ihRxV)4MJKfw2ZV?#|*V_-#Eta z&#X<{i_h0D`hAf-xyD(&c1i*yzRDzvd5gD3Mj@X3xpFk}3xTeJO-FSAlLJRMCT9DZ9kA%$-{t|p6LZq;?+ zx;1#*uw~M>Y#o$B{Jpj8Z)h+-MP9m8rd#t>cwV}FxNxrrRpL^0e)O%0V_MgRc-cRD z#l+q-Y4Qfw;GUD>T@?`nacoe%&K?R0cLApp4q44El0+!&`t}sA(GCBZ`BVqbB#9p- z&-|Cj>{hleHGw(`z*)Ca%XMBz_*;rekwU7beR32xgMYu{H97SM4<5`-&Fo3&Ipf^jI1aT6!uB2o&H&25K&*(u}rAWNTKDz@4Jgfcjj(}wC zgMjT-9Uw0gzrmvJ>|7EP6EjlhYC*{$ct2MuQWq#;+%NrkxBG=gA4U>rg*WTEZd=)032!I^t7o9x_RQIt3oIh(71R%E-h{KgSaR2_COSnk6J^wm@tVtyUp%=Z3~Hy zj?RvYqlNs69vBNyp)ih0!BGs6&hi+q%>pvsA3tj7h4x!qeooG({Wu3t9XY4y-~dAh z@42)98J$L;TG(rQ!fx+ZfOxl->T-c@^7$-wUbDuLm#}dQNDGh(TN`un^=Ojzy=Gw| zGoAZE>eKmnuM*pXiXRnNwAh0X&Gq6z3$5YL;W_I~yS`gM1;NT2&J4FlSoTEIZ{B1%x%Gc8GRnb65{Fel0AlMju~J!0n-~T02V%g8&p3*i!h1{4On24 zHf;R|_^|+dT(U*8cqtGy<47Gz@Bdc~B5>ON0l@uE{MqDGo&u}{w%vu|AGoo=h~-7p9F3v^?{ zRfp}$hf^k&4|G|gBs3dsfAkI>1ITgkNHCK#^5O6ShC+APRa{x-q4vJw>SR?_@Wz&y z$c9tMzDVf+z*E%JG$+QEcS1-p-erd$EG}(NV1jmswWdV7s%Oyu5lUL2Fm=l3Beliq zEC47TYtSCi7|;O05epBM@H{I9HRfu!_9r}FK}+PI_WPm zIoE5kY3(8o=BX|7Mn@=*L6vJX2F*%!uhh?foA-vuw*+R_Dd+sAEccWRl)LX?LyCda zt={f<+X>Mr8RmJL1>0MaUu14Hrp_d4+^d>0a!1@-YRt#KC6D6TMW!FEH=%-+MTYC%ZyKyK>~(gxF2wmqU9x}gQFnEFf#<_ii`8=L)CW0d zm+{CsWQJ702vD#ihQPN=;i?*1YAxgaGp7}DheDSsx$Lm-7e5)dez&Syd!dKOG08~J zb3NEC-o>z3jA~^x7)xm`VQcp-4^9QSf*T3xRajF3bXR!ga!LWB9Y1|%nA0bhpw2&jX zUQV&E+i7S2u~AFksdW6CUrI4UqvZ8fwM;<;WM45BBC=_#agMIrZzDdDM@{l#9EMk_a=1B;Inn*kld0BqVDzNYA zkRi}wt)Z-14;##<+&wgsdt&fib7EDzm+Ren5g2;&u5I(g+eNUP^M$xZy9y=rjn^BE zgEW`v=y=4%C;I4cT;7>|eJR5bQirIS_oh)9a%&V&%Q(E9y0cE#VEF^lA(P)EbWpM} z*DEikcmy8^7XQd54?A17qIng;%~--=*RS&^rwSZZ3AEHeU3@HJ>FY|D6?ND>QRY}P|CNT4d35S@xF}?ycT;#5DSUZNYQELu zUOhIE&S5WQ0B^p{d64pscYVzpbu}%4l{JY+R8)!1Tuj%*V6ALy;1{lO$p^fm+*3yV zCpA5`2ZKc=J6kSYh6msEu;(n>M{|_P#T=+Vp!`#_?9k;64jyr!DukA6P|bRPUcI}B zhF(D)H^FAzxbzJ~$v=c_3QlM&5pU%+xyvv}aPlO*7c=q}AQ<9si{$2kN4kwzScot}%!Y&)8urYdN(_Mv{l_bhqH4<4b&XLt-*9|JLg{KX zPjkbo;?2hEN=P;>Em+c&_ymk=3TwKt1I)<|xS1f(rx z2IM!EF?B{>Q+Q?H{_6Y8y<7zP^P$`4Ks0IC(QKDLHy$5OF0!p`SO2U)$s!pZJAf;M zX{m43re{A9OJ9Zym9CFs#;y>YR|nizm_{3g&ZY(0%H(H^TR_!~N^H;`-A%3y=6;s> z9a>Ct>x1sAEbn}NVxgzIALHWUgt;#UwcH#7J&ar#snp;%V^0(V^k^FfHa6VzkEqqb zmaa@Z4JPr_Lp;|NJJMBG;>Qkz< zOkdWydQOy{F3Q&K(zud0$@$2U=gS?7Sa2c^Sihbcv(KoO_#wn_&AYRw%>0-0!B30G zT)PY&=)e&8oe?f^9Wkkdd~;4O0+3DG-(QCSM;4p5($@n!Eq+EMvTHeDOeSrv+g0rT z3??8zc_;9YW?#^!T-VNZEJ?cUmkw?q%!s$QGG8@!Dd0iN%nch z0q&gY@frI6|_J556RT>02l@W81yY_u}#Ab{9&fZWWK#ZNj@76rt`lgIP}$f5Q_K;-n5 z*Hh!Q;bQ&6PsT}D7alI^Qh1~M~+mwTv3dWtAjq}3Ugm2VRPn+ zG2%lfJ|!vF$UWwsW5dEXLhjAj*itbJb8eVzzc+n8eLlaxz2EbGKi}{7>-Bs-j^}f= znQxu6F@9WlUe>Cx#Et#T$LD7)(GgGbjWOnL^vJ?Zbal&_BOZO*FA9_k2ezW3cTH8( z2sD_@#%eeKijqJd1-n;NM?GoDjM5HOx*tRMAd z6+t?rk0{cA2U*q*TUn^xrMFzE43tIAgiu;W0pEqXkNme{zdzwuTV;}cvH6@7XSjy& zHjWcjs48ou&3inj>1Q)DBHL^{CiFd7OdI9phq-VgWYNkxr!=T>?;N|8#Sq@4^yCaw+*3Y_@AvMhB5{Ee z3pPO}Y2ctXO{D+ zcf0SCUn%~Srz!OOj%R4>^Mp5am#eWDMAC=XX0bz!m0CD6zFNzOphDiQC%~47y4EJ*nLi8D4lvyq;o8YD9P(yf<7+(H`ke5bVt)eI zxzGhxA&~s!jhJ)xC-sB)sUw<2!&(;AjsX8BzVcpNb-keXU##p-M82H`PgLO3v`VBI z{ndWqQVpK7GYJ)sNUrNs(YR<}(QDdos&w$^9ab z`bfYN8*-24u8m;o%Lq z?Vv_Y1wB$lPhzQn-qqK#H*ZeP&& zcH}=+9LnDnMFZwB4rb}cI1DnDWG2EEGefGw$HOA&ixcU8v<6P}_F6bxO~*}kbzuUB zF+s&Xb>n*@`M1vxay^~QgtUemi~GlmcrB!mt5S(GZ=XPO?NbWKjli%!Hd(wSA`)N# zZ)D}6fJqjBD%)QlX}iXV)b)w6bY(qY{a*k7b|nGP{I>u7Z!G{N>&#bLcqi!s}EW44H}$2V$R8v69ueIrR&CZe2=Sep-7+b^Wi-;E-Vig zDgBnf@&320V5}#3rq{B8QI0z^`##d~!<=*kpfq3rWoOv^&KGj>iY%h4;FgZ#SE^+8 zp5!6}is;uw*-B(i=6CmdFE4St3uV1;rt0pi_66p1JPTva76G~rqzB_9r}5aXwiQpB z$AGUA0e}J4p)Ie&0?iYTv_u4)%?li`Ht`}qPMmd`%S`JkO~my{pTia6IKl5TH%8=B zBR&m=v3sGLsDTX5$cgX@7L6${0LJAy*q&1gonL_e&s)5`)uo zCb~;D60}NjJ_8L6Pa)*gvHjOGi<`XRV6O>uoV;5B4gb(LxxLV7Lc+mfY?C9;C}TqT zs1`pePW8a>zB??p6x{~#;uDiwSzCgnT)=WXAyVkd+Dlbcqvl|dduzKCW#a|!LDUsKsu@I+L!*V4)- zt}+G*HeQZtyfUT(B-zQrD1hkY_zsaIjioQRjnPpsA7o4XW1@!-SJ(#^t4=)Vq9B%j zc7z+8enaJr70n-M^HIx@#io_QN71bAqzCKmSaoo~xxFWIVpCqxI?a40YDlFr=3Bh* zSmXmo;{Em>OP{!)oi6Ql&d0cKF+aM$;73&%$44t>n$$#nXp`VQoiCitgD1OFFICr2 zcNA8-whO2)ycsF?N@IIHuPW8NVJMI?oxINqV@7Bp#7$|Gr3ym#}o;HT7-loC3 z*lA>y@Yz2w!NGM()~+&(&bsd56Np#<5ApbhbN(?Yk)r|B=n;Dh&Z}Lpx`^IPYU8#J zKj(35A~V;K$9WyM=R=bXej6Eb`zX(Ayqd^UwT@i>Bt#6-Gah2m`Kl;BZy)gf6-z~I zakiEpNbbt$cu=a=#X_Hk?me%@;d&gGpj%)+8!$Q*Sv?MY6It@@wtH^AX_3riK=W4) zn3Di-db0deF{(jNLvBzypv5*){#|2WPK8OG?cfu4`Cg=vXz!pycOSkpAWz-iUH95ZRZJfy6Po51TR9Z*jU#?HRB7Mc5LMjH zrk4PWO-p^0rY*s$@68um?!FtQOFPoYyV`Vh;$#M>f|8IZ#ph74IW0#d&ZI@!q2d|y zc%rYCv#3*KDsxU@puFOo=f}?!AL?M45uxvespU*4XKbmSDn8jlZi6Ji5{_yL4Hzo< z4v|gaxuf+AIoGy&G}o})nhVS0au?X*>*%B)ZivBDQf&>r2!Z=nlMHKLLqvA;zZGOo zwLlGL@V89@$051Gy%8lTlMTgpj$J#75TliOU-?f-y@gqmt@5l^-)pJ|#7|x*q}Yst zpn|Edsi|{M-dPoe;(qu-XZ7w#sC(m|R;LCP@GIY~sZ@EG>_)U?MA>@YivOZY?A{;Q zZakE%clo8)O3-ghfZ$P;;lRDesRXffJU2?j38)~4v^`bR@8Ks(u1rkammP~O?OvAn zy5=TRe-7aM)(2wp=Bq09Cd}kGoeLp8QSyGsfx+L@+PaqN5U6(QL5R2WExlvZc zatxHf$kd?sA<|l_>yw;~sR?7v zYTR{dTH1W{cNG;=f5c-@nb*(@*5)-LmkZUL{sQNc@+I$D=R; z;?!HlGY0|YejSGV$HWaH7+oDut^;4!-@UVq$+Sp-PD zNL`m++8&F16;W@MR2IK3lPvNZ@;%sb_iq+v@uXpTp`~HoY=5O{tsQH3Q&_2DMCZW? z-0a+(oJZMHj~?n3+|C5k{rmUJDe~`o{>-s88{(Rg9Q2&EFFA0%+kHAN)Y_x(SOgww z7Q(ODn20l+3tOQh#}G#?iKIrbuQjvxYM9>#fT02))LatuAw7_VC|GQ+zy|p(rBrD z)zE8?S+g6m*#QkWG=?@Ge(k%DrbQ7gt~ekq=0AuBpwI%_cU8kpLm!dmOu0+#u&a~; zV=!H=b{~7gLN)pjI$|XSG63p|ZX%;dDuAS9iAEn>o1EO%Te#bS!4q-oc8A7Ubjv4n08r0GPEmZ4huD;f{;|v&}U=c4ia+!Uyq5^?5 zXy+8uxSr-(0e69|m=1~B^Kn3TGqAC{9f}?JZEyuo1mDQ5%RAy_Wt&JfsZC+6({{{Z zh&7t*@SknxIzZ%}I>(?=Wm3B2<=z}p3YrtLk4USf7*iTJ^0@9T@)}Tgs6R%osvtE= zNrOmTTK)|+UBT2Oa+ERHc)o}aK=YQ9kiGUO;15@$ka0d^hfz%$Ahi2~zAyvsv0 z4?k@g-{eVygTDjVy~P`vZx==hbk831;6`Rw{@39kC&O#Du~VE|SfxQ-rs{-X5pT!* z$b$z^jKq6fCNw}{m{K?!t}7Niv%w!#4hTU#=tF*P?)NR0JmQ-!5y0k?n?!OLXPhNp zAlzFTLjEQ+!~H&#T3c}N=FknQ#Kc=z2Huet;r=Id-bcr&rW=HiUhcL?2KEPGFRiTI zu;-4f9qT*~Qq~_pG)Xq)_G`8kO$()q@$EYJ%*|b*8wR)LlXJJ2w%e>GI?{hm>-O<* zQ`y}~1a(w_L>+xF8N1T_Vw|^h_ih!4C-{=ne@vXSYRQ={sNe9iSY8Q$FrpfN%AN4% z0L{c{7*O9_}LGy2M%ytyHBD<9L!yvUAr!ZeM2O* zzTh`=aw;`D|Kn_0L0F+DfKL%OtJ5JlY-uG0y(Z%j=@eGn+X^@*tZ{uZ4YSxL0j_5K zHR;r7W_ZdV+4nq@l=<#W))Sx4OyZxm%9=nXvO)Gusb4>0%E&P+P#Cg~^uzS<3Jzmv zowz!V!c8e&QdQot*r%|;_S>}(U1pwq4N90bKFwc2)(HZJncrU-^>TFpG zWVzFEBjpKhzGW)^(T`V#f&Di`J%`Kha>cjP_bp5;Y*ofe>ZrhVnF#vQQT{pWMqE81 zb|Ort-8b%7`X?SKK%Mz}uVf53$L=WvpGymL6X7&nvm?K+!b_{%*O3KGwzY4 zUoy0;c`K&8Tp+`ROv^}50olxky?qM*Rk!YW6t!>QTU%lu)y$c_ID+}n*3UI3m*;bs zG+4@f#wG|{a&HyLt!GA2NkUjWB@z-a+!TQYnrwL*BXk`7{r&$%@l<%%3_HONBIXtB zm9vcHzgWj+-e);daBS(KzYbg*px(+&X^50Xd;7=1d+{s+5pr1o~6>88TR*n-1JY?IK-V)1dS z$t3vRteN2f_cE<{r1@OtDMRMI4;LSN5mSH7E-q`Dd3%o2o~P+Put**y1H$mb5C0#X z+;5$42S)N4#F+YOnwQ>Z+>AMrOIaM~plnW1XwNQkxrSa;KTz?WqEBx9){eF}^gJ*NZJwz0Mxpr|9=0@jZd){`1~V);%KMle6NE2l#p*$R{a!_Z)3b3PYc;b+H)-K z=YFfxGm(QjCNmjX_NB80l(BEB3XzfA*k%>aS!;9Eue6#yM|9>Xp>Y`>HIz+Rpj#b6jRK8vsC$bod`fs*_l!IMXWg*xel68RznnnBxM|pn`urOU4dl1<(b6b8BZq#^f_|B=_gTFWD-^9W- zh7rZihw@41a@KbPdUYnS@4EpzBqt0&(QX6%&Mh83ti0!%GcUEr`!o0b9ZSnxfU1Bp zD2-dav@bNR-2+ewB6S<*jf#7rX*9=8i>Ek4;durlo_Qw>;zz0WOs?}O-Iv8=p4)fELi3uLS7# z#J=5MmCsRK{)s~G0Q6XZ@bT@vo!&sW8zO}A|G|H}yMa{VcFr$Y%ex4m*k0{Kg8z{& z>Dha*?n1iZHbo}Cz%)%G72Xb+jejIRd{S~od2+v?scAD{&B_z{=LbCa0CZ3)z9xZ&cJs{N2h9EP z#B;x&TmCfZBqv5axz*0MvpLQ17@tU{^YJb4G$HH6oD%s@%qa4_`72A8N24VAa#sODa z;~=H(F1UyYhUWG^)Ps5sDX;pC?Bw*qELLVQ*iDeJsO@|4_0Wd$=KP*n>WDL>PHP?* z%k9W^j4aaRGp)L$;^^V2&{yeFtZh?quRb$u>5s8cnxnYNq@?I;(CJZ!B@%Q#^8-IY z;mXT{D{o;mYX7dsAI7YIphrTzAPQPT?Q|mhcK7$@J$%(uz9`ml)zxFaVS?!ST8*s6 zdc@DyM6Wtk(FlEFH5;t%>Dv5Iky?L~k4TyJ^-RqYLQm2bKStw^iLwSJqh)|cfET`g z!A98`00kFPaxc=-bM{Gx4Ld{ZyBg_edIi1euURzFX>fU@mu*k4acSNae@rF+(g~mQ zd>LsneOe;erq#oDsg5BW18YZ6zw>j->_`Y5eO@jk@l2sf=A|GcE`I{Fdh9x89z$<% zzeINa`3`wV_~SMRWvS_5m=i%0#w7o*uKd#Jg%nx;4HvrjoK}N{4EyCW3zD8C1Uh=4 z-gK}&U?n*nHC}41vrJ1+{M}p$=268;M+#~N(bk%{4r7^-+)%gs4&ypysW!qkwjRvB z7{0)nq5`BfgQ5xag&Wm`n(G2x=xP&V%lSmPgftP1U%=3T!!YC z*bFOw&z%o^d`j6)eg}`#8w(G7Jvsh;cwM0ny{bkfYvpUb4Y`1Ivabzc(Bzg9+}U1~ z>Jdf3mEA+B3b|jpBK}Zur%aa4?Ng^r`7V|=YvqG8_m2Df`4%8_NRH&RF3L)eMQ(SR zdcFJI-ex9Rt{rg2FBQU`H!weY2OnqmOm?TOPPryxXb)&p_#z8J==0|egkn_fEf-k8 zoVqe|%kDoXd0u_q1Hy!nDcwS|V6HSwJi1d3oXb9`Y!$Q1pF3#I;f7H;>k4{TIb7=>7QVqko?C>=q z0?xD{&EVj4?gUwM`h8-mQ#L>$N})m{Z_#XgpD(8%ioAASBJPN! z?CM;l__``cZjSWAt=5eMj>chkm$S=5?cHhBwEJGTueN*IYpCC7y1e(;NHTR-$JbhA zQ=P>>Md}V|OGXp#kC%A!4RfugHCFHz@(fU&G|ai=cGS5Bm>^}3eP#q}wlids1jW%a z(Z(-MZG1<6R9%ZWh0tHPFv4n&$9~ZkB$xHEo4~7kXOCyDMCva8urRfv^wxE?fsYGr zKZqzBiOI9PeZ_TAHi<#@+tzW8rE7zm7vE=btD{F;%==x}URP0Nu3eoZtkj^)<+=2dRGXnC85_a~IH34!muR_@$podeZ zP;_0FC_eIh-SUN61X!H1%%)-&hU9K2eyLJc9aigMtBPDUd9Qhc=or#yue)4Bb~xdY zoKPSjF=<=?`S|hiykyN-%dpExk8PT8m-SSo|M>Sr4R<5-0!k;?d-q-eKWfGIeI>gF zQ?carxpmuNPle0qpk_6gh`utkByA_mr)KUf;~1{#{xf^$piCs~kS9~Ss#rUTUW%ij zY9nF-Ml|`(Dt@m1z9QX6)t1Nl@EuXKtPa@Q+nw5H-|^snxfju$979!kJ?3f_Dqik) zX^k`AKre-`AjEsL!YeqI7o5T2*5DddT-)OV2&KWMBZnE(Qw+}Yk~ac2H^tX40IOV3 zsl;yknvl*OcLsu^55SVlPPbww0SX`AdtL6DtNPC;(kHU*HPhr}bdZ{S8?R0XBYy`^ z^^O0P@CICWmij~>blI@M)|Z1Ni%d@oN=O$P%$yfS^04`40n|}@MKkYtAg6xkMu-y8 zu{DF}gB`PTD;|6o`9Np`Uo{9PMr&(1o#wl)xLJAV3r46;PJS@fFBo3s%4R}@|7wfY z7kvYYhEC3Lepqoll9PfnPlQ7i_^fvWEhY=EyxkKdvhg64b$?JQgmPyNgAHQL_r@Z? z*KEJqE^CPMT}Fwok{EDnbz|-;Tum@qsx>q6hl?FLBS+^I+rAId+YAo?z}R7xa_^)@ zD1T=Bo{pNH%xh+fUS0CmC4R{TppizqzT@FkIY*TJpI_NEV+nV6RvGKZ7RS~+_Q=%u zxpCh1uzUy6pJ}K)M}Kim0R|g#wTY_CJ>>IZ-NNm(uaL=YN&xFo9Kn|{M5V2io}{Sa4Jcy*ui1p z>$TEbt2ABqdmOklRr$4|y4vqm`QNM>#mj*e9VJ((rY|-uHe^Ia>Q+?+$Q207Td&(o zl$FA2^XG|@rhp zkE0Pj*tljs`^j-6le0BL)f?zynvC2tV)fW7snMcF^4OQ5Rm#u3ulj9a>(;vYXxWhD zSnWi6Isd^V<6f)&OqTD|%pIOJ!xy7hR-)70z3(v+#Hx+Z4SWm<6h>M-6Ss{g^&2b; z?jlI1k5!Gt;G@6=c6rpOot#8Sr{kc8Yma|-rFUPxYsGVYEuW9O)Y(pEpFB#Y(R=>V zf9h%6Aj58`W|TPd{M}SI9>XCh%|)7uJLYRCB=y^dFGys-R(;3g&!K~g8Y2iTHJDnj z(gDG?qrYEmi#soe)Sj)HxkXP>JtRrZv|WJN`iX@)VaqRK}$`XwvLW5B#4$6eu1gY&M1+O#Xyv>p6-z6TH#8jxU`Pd9%%=*e z$4k5#_onCH?q$r(Nfa;l7!7pJy;z~K#DSe>+|!WH3|gtTTEbqoKYbG<(hx79UOLny z2d(6)mNhapiFi`#J8}Vd=TO^5zXJ}Q0qykNEnvGkt_3Y*xB_$Tan|pEuk3en zjq84vw3Y!el#OvudT%>|n5lRvq1D4raf`W5xX&rE)6II-+cg?Ec(m4w_yG49+_qOC zyk`E0S6XbA$SK3)t(nE(;2~n(wbR%#q7$s!`9PIB7y!}77?z@RC15JpdNP|DYDl2A zGTFa%FVYVz&pB2ulS9TXHUSF!0}uG1@vDcSvyaqHSa-XQoUnTZ?%e+TcAyluQKHM2w%3F-QI*^A5Po$6^Wpi1aRv+BU!x^f<|1%7`yKMa2^ywX( z&LXM2!csyld1^H2>?@_LL9hMRjy;VvdKc-L>`??_P|4j`!%5_LybO!9>35to6124bMaki30e{)aRX? zyG7uF(!nCnjB3`4hjWVO2alagAnGDQ5KeX$-HB>!92M8~t_)j_4W{;mU772*uZ&^xk1ktxio>VoQY_>?+n?UH=w9sqiHP7;64f2OK$ZZTDN)? z<`bw7n1t-2AP6@%w>iuuG|iEoI{GHkulF}^Oa}a9|D}?aLF82}J3xe0)o;1~XN^|< zr$PKA^-OjeT$358n#J~u_4*%N9TFK!>5MdSmK>dDj$lIKYfS(rbAXdfv?b6R%B{UN zlumkn;oA#pkWmfjw-|bri#l7jR@}HlRA47^xMz!H%r^Y(hc&}Y-E zfq%^A+h1Vk>}85gBF$iD5L3Rd_O42fBh7nt>lgJQCkjo_y)MUpzKlEUERy6bc3Wj@ z(k7&5%tm&Otr2*=DALrb5JZ$`WoylvMl)Z zD}d@V{-Ei<7Mx^(L3c>huK Date: Wed, 21 Aug 2024 15:04:31 -0700 Subject: [PATCH 06/25] Update how-to-enable-authenticator-passkey.md --- .../authentication/how-to-enable-authenticator-passkey.md | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/docs/identity/authentication/how-to-enable-authenticator-passkey.md b/docs/identity/authentication/how-to-enable-authenticator-passkey.md index e0ec66b8b6a..2d427379de7 100644 --- a/docs/identity/authentication/how-to-enable-authenticator-passkey.md +++ b/docs/identity/authentication/how-to-enable-authenticator-passkey.md @@ -32,7 +32,7 @@ To learn more about where you can use passkeys in Authenticator to sign in, see ## Enable passkeys in Authenticator in the admin center -An Authentication Policy Administrator needs to consent to allow Authenticator in the **Passkey (FIDO2) settings** of the Authentication methods policy. They need to explicitly allow the Authenticator Attestation GUIDs (AAGUIDs) for Microsoft Authenticator. There's no setting to enable passkeys in **Microsoft Authenticator settings** in the policy. +An Authentication Policy Administrator needs to consent to allow Authenticator in the **Passkey (FIDO2) settings** of the Authentication methods policy. They need to explicitly allow the Authenticator Attestation GUIDs (AAGUIDs) for Microsoft Authenticator to enable users to register passkeys in the Authenticator app. There's no setting to enable passkeys in **Microsoft Authenticator settings** in the policy. 1. Sign in to the [Microsoft Entra admin center](https://entra.microsoft.com) as at least an [Authentication Policy Administrator](~/identity/role-based-access-control/permissions-reference.md#authentication-policy-administrator). 1. Browse to **Protection** > **Authentication methods** > **Authentication method policy**. @@ -40,16 +40,16 @@ An Authentication Policy Administrator needs to consent to allow Authenticator i 1. On the **Configure** tab, set: - **Allow self-service set up** to **Yes**. If set to **No**, users can't register a passkey by using [Security info](https://mysignins.microsoft.com/security-info), even if passkeys are enabled by Authentication methods policy. - **Enforce attestation** to **No** for preview. Attestation support is planned for General Availability. - - **Enforce key restrictions** to **Yes** to only allow or block certain passkeys, which are identified by their AAGUIDs. This setting must be **Yes** to consent to allow passkeys in Microsoft Authenticator. Users can add a passkey in Authenticator only if an Authentication Policy Administrator selects **Yes** and allows Microsoft Authenticator AAGUIDs. + - **Enforce key restrictions** to **Yes** to only allow or block certain passkeys, which are identified by their AAGUIDs. This setting must be **Yes** and add the Microsoft Authenticator AAGUIDs listed below to allow users to register passkeys in the Authenticator by signing into the Authenticator app or by going through a guided flow on the Security info page. - [Security info](https://mysignins.microsoft.com/security-info) doesn't require this setting be **Yes** to add a passkey. If you choose **No**, users may see **Passkey in Microsoft Authenticator (preview)** as a sign-in method they can add in [Security info](https://mysignins.microsoft.com/security-info), depending upon their operating system and browser. + [Security info](https://mysignins.microsoft.com/security-info) doesn't require this setting be **Yes** to add a passkey in Authenticator. If you choose **No**, users may still be able to add a passkey in Microsoft Authenticator by going through the security key/passkey WebAuthn registration flow depending upon their operating system and browser. However, this is a flow we don't expect most users to stumble on and users will not be provided any instructions on how to set up the Authenticator app through this flow. Key restrictions set the usability of specific passkeys for both registration and authentication. If you change key restrictions and remove an AAGUID that you previously allowed, users who previously registered an allowed method can no longer use it for sign-in. If your organization doesn't currently enforce key restrictions and already has active passkey usage, you should collect the AAGUIDs of the keys being used today. Add them to the Allow list, along with the Authenticator AAGUIDs, to enable this preview. This task can be done with an automated script that analyzes logs, such as registration details and sign-in logs. - **Restrict specific keys** to **Allow**. - - Select **Microsoft Authenticator (Preview)** to automatically add the Authenticator app AAGUIDs to the key restriction list, or manually add the following AAGUIDs to enable the Authenticator passkey preview: + - Select **Microsoft Authenticator (Preview)** to automatically add the Authenticator app AAGUIDs to the key restriction list, or manually add the following AAGUIDs to allow users to register passkeys in the Authenticator by signing into the Authenticator app or by going through a guided flow on the Security info page: - **Authenticator for Android:** de1e552d-db1d-4423-a619-566b625cdc84 - **Authenticator for iOS:** 90a3ccdf-635c-4729-a248-9b709135078f From 269423b2ac111b4bdce1baa755630a95b3c34eef Mon Sep 17 00:00:00 2001 From: Justinha Date: Fri, 23 Aug 2024 10:28:23 -0700 Subject: [PATCH 07/25] revised FIDO2 topic to match language in authapp --- .../how-to-enable-authenticator-passkey.md | 6 +- .../how-to-enable-passkey-fido2.md | 101 +++++++++--------- 2 files changed, 55 insertions(+), 52 deletions(-) diff --git a/docs/identity/authentication/how-to-enable-authenticator-passkey.md b/docs/identity/authentication/how-to-enable-authenticator-passkey.md index 2d427379de7..5b0c54debcc 100644 --- a/docs/identity/authentication/how-to-enable-authenticator-passkey.md +++ b/docs/identity/authentication/how-to-enable-authenticator-passkey.md @@ -38,7 +38,7 @@ An Authentication Policy Administrator needs to consent to allow Authenticator i 1. Browse to **Protection** > **Authentication methods** > **Authentication method policy**. 1. Under the method **Passkey (FIDO2)**, select **All users** or **Add groups** to select specific groups. *Only security groups are supported*. 1. On the **Configure** tab, set: - - **Allow self-service set up** to **Yes**. If set to **No**, users can't register a passkey by using [Security info](https://mysignins.microsoft.com/security-info), even if passkeys are enabled by Authentication methods policy. + - **Allow self-service set up** to **Yes**. If set to **No**, users can't register a passkey by using [Security info](https://mysignins.microsoft.com/security-info), even if passkeys (FIDO2) are enabled by the Authentication methods policy. - **Enforce attestation** to **No** for preview. Attestation support is planned for General Availability. - **Enforce key restrictions** to **Yes** to only allow or block certain passkeys, which are identified by their AAGUIDs. This setting must be **Yes** and add the Microsoft Authenticator AAGUIDs listed below to allow users to register passkeys in the Authenticator by signing into the Authenticator app or by going through a guided flow on the Security info page. @@ -66,6 +66,10 @@ An Authentication Policy Administrator needs to consent to allow Authenticator i 1. After you finish the configuration, select **Save**. + >[!NOTE] + >If you see an error when you try to save, replace multiple groups with a single group in one operation, and then click **Save** again. + + ## Enable passkeys in Authenticator using Graph Explorer In addition to using the Microsoft Entra admin center, you can also enable passkeys in Authenticator by using Graph Explorer. Those assigned at least the [Authentication Policy Administrator](../role-based-access-control/permissions-reference.md#authentication-policy-administrator) role can update the Authentication methods policy to allow the AAGUIDs for Authenticator. diff --git a/docs/identity/authentication/how-to-enable-passkey-fido2.md b/docs/identity/authentication/how-to-enable-passkey-fido2.md index f998e245262..fc44dfe522d 100644 --- a/docs/identity/authentication/how-to-enable-passkey-fido2.md +++ b/docs/identity/authentication/how-to-enable-passkey-fido2.md @@ -5,7 +5,7 @@ description: Enable passwordless sign-in to Microsoft Entra ID using passkeys (F ms.service: entra-id ms.subservice: authentication ms.topic: how-to -ms.date: 08/09/2024 +ms.date: 08/23/2024 ms.author: justinha author: justinha @@ -17,7 +17,7 @@ ms.reviewer: calui, tilarso --- # Enable passkeys (FIDO2) for your organization -For enterprises that use passwords today, passkeys (FIDO2) provide a seamless way for workers to authenticate without entering a username or password. Passkeys provide improved productivity for workers, and have better security. +For enterprises that use passwords today, passkeys (FIDO2) provide a seamless way for workers to authenticate without entering a username or password. Passkeys (FIDO2) provide improved productivity for workers, and have better security. This article lists requirements and steps to enable passkeys in your organization. After completing these steps, users in your organization can then register and sign in to their Microsoft Entra account using a passkey stored on a FIDO2 security key or in Microsoft Authenticator. @@ -34,59 +34,62 @@ For more information about passkey authentication, see [Support for FIDO2 authen - [FIDO2 security keys eligible for attestation with Microsoft Entra ID](/entra/identity/authentication/concept-fido2-hardware-vendor) or Microsoft Authenticator. - Devices that support passkey (FIDO2) authentication. For Windows devices that are joined to Microsoft Entra ID, the best experience is on Windows 10 version 1903 or higher. Hybrid-joined devices must run Windows 10 version 2004 or higher. -Passkeys are supported across major scenarios on Windows, macOS, Android, and iOS. For more information on supported scenarios, see [Support for FIDO2 authentication in Microsoft Entra ID](fido2-compatibility.md). +Passkeys (FIDO2) are supported across major scenarios on Windows, macOS, Android, and iOS. For more information on supported scenarios, see [Support for FIDO2 authentication in Microsoft Entra ID](fido2-compatibility.md). -## Enable passkey authentication method +## Passkey (FIDO2) Authenticator Attestation GUID (AAGUID) -1. Sign in to the [Microsoft Entra admin center](https://entra.microsoft.com) as at least an [Authentication Policy Administrator](~/identity/role-based-access-control/permissions-reference.md#authentication-policy-administrator). -1. Browse to **Protection** > **Authentication methods** > **Authentication method policy**. -1. Under the method **Passkey (FIDO2)**, set the toggle to **Enable**. Select **All users** or **Add groups** to select specific groups. *Only security groups are supported*. -1. **Save** the configuration. - - >[!NOTE] - >If you see an error when you try to save, the cause might be due to the number of users or groups being added. As a workaround, replace the users and groups you are trying to add with a single group, in the same operation, and then click **Save** again. +The FIDO2 specification requires each security key vendor to provide an Authenticator Attestation GUID (AAGUID) during registration. An AAGUID is a 128-bit identifier indicating the key type, such as the make and model. Passkey (FIDO2) providers on desktop and mobile devices are also expected to provide an AAGUID during registration. +>[!NOTE] +>The vendor must ensure that the AAGUID is identical across all substantially identical security keys or passkey (FIDO2) providers made by that vendor, and different (with high probability) from the AAGUIDs of all other types of security keys or passkey (FIDO2) providers. To ensure this, the AAGUID for a given security key model or passkey (FIDO2) provider should be randomly generated. For more information, see [Web Authentication: An API for accessing Public Key Credentials - Level 2 (w3.org)](https://w3c.github.io/webauthn/). -### Passkey optional settings +You can work with your security key vendor to determine the AAGUID of the passkey (FIDO2), or see [FIDO2 security keys eligible for attestation with Microsoft Entra ID](~/identity/authentication/concept-fido2-hardware-vendor.md#fido2-security-keys-eligible-for-attestation-with-microsoft-entra-id). If the passkey (FIDO2) is already registered, you can find the AAGUID by viewing the authentication method details of the passkey (FIDO2) for the user. -There are some optional settings on the **Configure** tab to help manage how passkeys can be used for sign-in. +![Screenshot of View AAGUID for passkey.](media/howto-authentication-passwordless-deployment/security-key-aaguid-details.png) -:::image type="content" border="true" source="media/howto-authentication-passwordless-security-key/optional-settings-with-aaguid.png" alt-text="Screenshot of FIDO2 security key options."::: +## Enable passkey (FIDO2) authentication method -- **Allow self-service set up** should remain set to **Yes**. If set to no, your users can't register a passkey through MySecurityInfo, even if enabled by Authentication Methods policy. -- **Enforce attestation** should be set to **Yes** if your organization wants to be assured that a FIDO2 security key model or passkey provider is genuine and comes from the legitimate vendor. - - For FIDO2 security keys, we require security key metadata to be published and verified with the FIDO Alliance Metadata Service, and also pass Microsoft's another set of validation testing. For more information, see [Become a Microsoft-compatible FIDO2 security key vendor](/entra/identity/authentication/concept-fido2-hardware-vendor). - - For passkeys in Microsoft Authenticator, we don't currently support attestation. +1. Sign in to the [Microsoft Entra admin center](https://entra.microsoft.com) as at least an [Authentication Policy Administrator](~/identity/role-based-access-control/permissions-reference.md#authentication-policy-administrator). +1. Browse to **Protection** > **Authentication methods** > **Authentication method policy**. +1. Under the method **Passkey (FIDO2)**, set the toggle to **Enable**. Select **All users** or **Add groups** to select specific groups. *Only security groups are supported*. +1. On the **Configure** tab, set: - >[!WARNING] - >Attestation enforcement governs whether a passkey is allowed during registration only. Users who are able to register a passkey without attestation will not be blocked during sign-in if **Enforce attestation** is set to **Yes** at a later time. + - **Allow self-service set up** to **Yes**. If set to **No**, users can't register a passkey by using [Security info](https://mysignins.microsoft.com/security-info), even if passkeys (FIDO2) are enabled by the Authentication methods policy. + - **Enforce attestation** should be set to **Yes** if your organization wants to be assured that a FIDO2 security key model or passkey provider is genuine and comes from the legitimate vendor. + - For FIDO2 security keys, we require security key metadata to be published and verified with the FIDO Alliance Metadata Service, and also pass Microsoft's another set of validation testing. For more information, see [Become a Microsoft-compatible FIDO2 security key vendor](/entra/identity/authentication/concept-fido2-hardware-vendor). + - For passkeys in Microsoft Authenticator, attestation support is planned for General Availability. -**Key Restriction Policy** + >[!WARNING] + >Attestation enforcement governs whether a passkey (FIDO2) is allowed only during registration. Users who register a passkey (FIDO2) without attestation aren't blocked from sign-in if **Enforce attestation** is set to **Yes** later. -- **Enforce key restrictions** should be set to **Yes** only if your organization wants to only allow or disallow certain security key models or passkey providers, which are identified by their Authenticator Attestation GUID (AAGUID). You can work with your security key vendor to determine the AAGUID of the passkey. If the passkey is already registered, you can find the AAGUID by viewing the authentication method details of the passkey for the user. -- Select **Microsoft Authenticator (Preview)** to automatically add the Authenticator app AAGUIDs to the key restriction list, or manually add the following Authenticator Attestation GUIDs (AAGUIDs) to enable the Authenticator passkey preview: + - **Enforce key restrictions** to **Yes** to only allow or block certain passkeys (FIDO2), which are identified by their AAGUIDs. This setting must be **Yes** and add the Microsoft Authenticator AAGUIDs listed below to allow users to register passkeys in the Authenticator by signing into the Authenticator app or by going through a guided flow on the Security info page. - - **Authenticator for Android:** de1e552d-db1d-4423-a619-566b625cdc84 - - **Authenticator for iOS:** 90a3ccdf-635c-4729-a248-9b709135078f - - >[!WARNING] - >Key restrictions set the usability of specific models or providers for both registration and authentication. If you change key restrictions and remove an AAGUID that you previously allowed, users who previously registered an allowed method can no longer use it for sign-in. + [Security info](https://mysignins.microsoft.com/security-info) doesn't require this setting be **Yes** to add a passkey in Authenticator. If you choose **No**, users may still be able to add a passkey in Microsoft Authenticator by going through the security key/passkey WebAuthn registration flow depending upon their operating system and browser. However, this is a flow we don't expect most users to stumble on and users will not be provided any instructions on how to set up the Authenticator app through this flow. - If you turn off key retrictions, make sure you clear the **Microsoft Authenticator (Preview)** checkbox so that users aren’t prompted to set up a passkey in the Authenticator app in [Security info](https://aka.ms/mysecurityinfo). + Key restrictions set the usability of specific passkeys (FIDO2) for both registration and authentication. If you change key restrictions and remove an AAGUID that you previously allowed, users who previously registered an allowed method can no longer use it for sign-in. + + If your organization doesn't currently enforce key restrictions and already has active passkey (FIDO2) usage, you should collect the AAGUIDs of the keys being used today. Add them to the Allow list, along with the Authenticator AAGUIDs, to enable this preview. This task can be done with an automated script that analyzes logs, such as registration details and sign-in logs. - >[!NOTE] - >If you don't enforce key restrictions and don't select **Microsoft Authenticator (Preview)**, users won't see an option to set up passkeys in Authenticator when they go to [Security info](https://aka.ms/mysecurityinfo). Depending upon their operating system and browser, users who continue with passkey (FIDO2) registration might see a WebAuthn flow with a QR code to set up passkey in Authenticator. This is because when no key restrictions are set, any device-bound passkey can be set up by using the WebAuthn flow. To explicitly disable passkeys in Authenticator, use the key restrictions to block the Authenticator app AAGUIDs. + - **Restrict specific keys** to **Allow** if you plan to allow passkeys in Microsoft Authenticator. + - Select **Microsoft Authenticator (Preview)** to automatically add the Authenticator app AAGUIDs to the key restriction list, or manually add the following AAGUIDs to allow users to register passkeys in the Authenticator by signing into the Authenticator app or by going through a guided flow on the Security info page: -## Passkey Authenticator Attestation GUID (AAGUID) + - **Authenticator for Android:** de1e552d-db1d-4423-a619-566b625cdc84 + - **Authenticator for iOS:** 90a3ccdf-635c-4729-a248-9b709135078f + + >[!NOTE] + >If you turn off key retrictions, make sure you clear the **Microsoft Authenticator (Preview)** checkbox so that users aren’t prompted to set up a passkey in the Authenticator app in [Security info](https://mysignins.microsoft.com/security-info). -The FIDO2 specification requires each security key vendor to provide an Authenticator Attestation GUID (AAGUID) during registration. An AAGUID is a 128-bit identifier indicating the key type, such as the make and model. Passkey providers on desktop and mobile devices are also expected to provide an AAGUID during registration. + Two more AAGUIDs may be listed. + They are `b6879edc-2a86-4bde-9c62-c1cac4a8f8e5` and `257fa02a-18f3-4e34-8174-95d454c2e9ad`. + These AAGUIDs appear in advance of an upcoming feature. + You can remove them from the list of allowed AAGUIDs. ->[!NOTE] ->The vendor must ensure that the AAGUID is identical across all substantially identical security keys or passkey providers made by that vendor, and different (with high probability) from the AAGUIDs of all other types of security keys or passkey providers. To ensure this, the AAGUID for a given security key model or passkey provider should be randomly generated. For more information, see [Web Authentication: An API for accessing Public Key Credentials - Level 2 (w3.org)](https://w3c.github.io/webauthn/). + :::image type="content" border="true" source="media/how-to-enable-authenticator-passkey/optional-settings.png" alt-text="Screenshot showing Microsoft Authenticator enabled for passkey."lightbox="media/how-to-enable-authenticator-passkey/optional-settings.png"::: -There are two ways to get your AAGUID. You can either ask your security key or passkey provider vendor, or view the authentication method details of the key per user. +1. After you finish the configuration, select **Save**. -![Screenshot of View AAGUID for passkey.](media/howto-authentication-passwordless-deployment/security-key-aaguid-details.png) + >[!NOTE] + >If you see an error when you try to save, replace multiple groups with a single group in one operation, and then click **Save** again. ## Provision FIDO2 security keys using Microsoft Graph API (preview) @@ -104,9 +107,9 @@ With these new APIs, organizations can build their own clients to provision pass :::image type="content" border="true" source="media/how-to-enable-passkey-fido2/provision.png" alt-text="Conceptual diagram that shows the steps required to provision passkeys (FIDO2)." ::: -## Enable passkeys using Microsoft Graph API +## Enable passkeys (FIDO2) using Microsoft Graph API -In addition to using the Microsoft Entra admin center, you can also enable passkeys by using the Microsoft Graph API. To enable passkeys, you need to update the Authentication methods policy as at least an [Authentication Policy Administrator](../role-based-access-control/permissions-reference.md#authentication-policy-administrator). +In addition to using the Microsoft Entra admin center, you can also enable passkeys (FIDO2) by using the Microsoft Graph API. To enable passkeys (FIDO2), you need to update the Authentication methods policy as at least an [Authentication Policy Administrator](../role-based-access-control/permissions-reference.md#authentication-policy-administrator). To configure the policy using Graph Explorer: @@ -146,18 +149,18 @@ To configure the policy using Graph Explorer: ``` -## Delete a passkey +## Delete a passkey (FIDO2) -To remove a passkey associated with a user account, delete the key from the user's authentication method. +To remove a passkey (FIDO2) associated with a user account, delete it from the user's authentication method. -1. Sign in to the [Microsoft Entra admin center](https://entra.microsoft.com) and search for the user whose passkey needs to be removed. +1. Sign in to the [Microsoft Entra admin center](https://entra.microsoft.com) and search for the user whose passkey (FIDO2) needs to be removed. 1. Select **Authentication methods** > right-click **Passkey (device-bound)** and select **Delete**. ![Screenshot of View Authentication Method details.](media/howto-authentication-passwordless-deployment/security-key-view-details.png) -## Enforce passkey sign-in +## Enforce passkey (FIDO2) sign-in -To make users sign in with a passkey when they access a sensitive resource, you can: +To make users sign in with a passkey (FIDO2) when they access a sensitive resource, you can: - Use a built-in phishing-resistant authentication strength @@ -165,7 +168,7 @@ To make users sign in with a passkey when they access a sensitive resource, you - Create a custom authentication strength -The following steps show how to create a custom authentication strength Conditional Access policy that allows passkey sign-in for only a specific security key model or passkey provider. For a list of FIDO2 providers, see [FIDO2 security keys eligible for attestation with Microsoft Entra ID](/entra/identity/authentication/concept-fido2-hardware-vendor). +The following steps show how to create a custom authentication strength Conditional Access policy that allows passkey (FIDO2) sign-in for only a specific security key model or passkey (FIDO2) provider. For a list of FIDO2 providers, see [FIDO2 security keys eligible for attestation with Microsoft Entra ID](/entra/identity/authentication/concept-fido2-hardware-vendor). 1. Sign in to the [Microsoft Entra admin center](https://entra.microsoft.com) as at least a [Conditional Access Administrator](../role-based-access-control/permissions-reference.md#conditional-access-administrator). 1. Browse to **Protection** > **Authentication methods** > **Authentication strengths**. @@ -180,15 +183,11 @@ The following steps show how to create a custom authentication strength Conditio ### B2B collaboration users -Registration of FIDO2 credentials isn't supported for B2B collaboration users in the resource tenant. - -### Security key provisioning - -Administrator provisioning and deprovisioning of security keys isn't available. +Registration of passkey (FIDO2) credentials isn't supported for B2B collaboration users in the resource tenant. ### UPN changes -If a user's UPN changes, you can no longer modify passkeys to account for the change. If the user has a passkey, they need to sign in to [My Security info](https://aka.ms/mysecurityinfo), delete the old passkey, and add a new one. +If a user's UPN changes, you can no longer modify passkeys (FIDO2) to account for the change. If the user has a passkey (FIDO2), they need to sign in to [Security info](https://mysignins.microsoft.com/security-info), delete the old passkey (FIDO2), and add a new one. ## Next steps From 94cc8550afeb6f59afdf209496b8d947fcab1f99 Mon Sep 17 00:00:00 2001 From: Justinha Date: Tue, 3 Sep 2024 07:33:09 -0700 Subject: [PATCH 08/25] removed include --- docs/includes/passkeys-with-chrome-browser.md | 13 ------------- 1 file changed, 13 deletions(-) delete mode 100644 docs/includes/passkeys-with-chrome-browser.md diff --git a/docs/includes/passkeys-with-chrome-browser.md b/docs/includes/passkeys-with-chrome-browser.md deleted file mode 100644 index 6f80c5448d2..00000000000 --- a/docs/includes/passkeys-with-chrome-browser.md +++ /dev/null @@ -1,13 +0,0 @@ ---- -title: include file -description: include file - -author: justinha -ms.service: entra-id -ms.topic: include -ms.date: 04/12/2024 -ms.author: justinha -ms.custom: include file ---- -> [!NOTE] -> Passkeys in Authenticator don't work with browsers like Google Chrome or Microsoft Edge on Android devices. Support to create and sign in using Authenticator passkeys from browsers depends upon API updates to be made available by the Android platform. From c8f94ce348df5b949098add51b1aa7c2b72d73b8 Mon Sep 17 00:00:00 2001 From: Justinha Date: Tue, 3 Sep 2024 07:55:21 -0700 Subject: [PATCH 09/25] removed include about Google and replaced withnote about support for EdgeAPIs and added --- .../authentication/concept-fido2-compatibility.md | 6 +++--- .../how-to-register-passkey-authenticator.md | 10 +++++----- .../how-to-sign-in-passkey-authenticator.md | 13 ++++++------- 3 files changed, 14 insertions(+), 15 deletions(-) diff --git a/docs/identity/authentication/concept-fido2-compatibility.md b/docs/identity/authentication/concept-fido2-compatibility.md index 1281969dc82..ee7bba6f83d 100644 --- a/docs/identity/authentication/concept-fido2-compatibility.md +++ b/docs/identity/authentication/concept-fido2-compatibility.md @@ -32,7 +32,7 @@ The following tables lists which authentication brokers are supported for differ | OS | Authentication broker | Supports FIDO2 | |------------------|---------------------------------|----------------| | **iOS** | Microsoft Authenticator | ✅ | -| **macOS** | Microsoft Intune Company Portal 1 | ✅ | +| **macOS** | Microsoft Intune Company Portal1 | ✅ | | **Android**2 | Authenticator or Company Portal | ❌ | 1On macOS, the [Microsoft Enterprise Single Sign On (SSO) plug-in](~/identity-platform/apple-sso-plugin.md) is required to enable Company Portal as an authentication broker. Devices that run macOS must meet SSO plug-in requirements, including enrollment in mobile device management. For FIDO2 authentication, make sure that you run the latest version of native applications. @@ -64,9 +64,9 @@ This table shows browser support for authenticating Microsoft Entra ID and Micro | **ChromeOS** | ✅ | N/A | N/A | N/A | | **Linux** | ✅ | ❌ | ❌ | N/A | | **iOS** | ✅ | ✅ | ✅ | ✅ | -| **Android** | ✅ | ✅ | ❌ | N/A | +| **Android** | ✅ | ✅1 | ❌ | N/A | -[!INCLUDE [Need APIs to support browsers](~/includes/passkeys-with-chrome-browser.md)] +1Support for same-device registration in Edge on Android is coming soon. ## Web browser support for each platform diff --git a/docs/identity/authentication/how-to-register-passkey-authenticator.md b/docs/identity/authentication/how-to-register-passkey-authenticator.md index f98107ea2d5..d0b67a7f9e1 100644 --- a/docs/identity/authentication/how-to-register-passkey-authenticator.md +++ b/docs/identity/authentication/how-to-register-passkey-authenticator.md @@ -5,7 +5,7 @@ description: Registration and management of passkey with Authenticator on iOS in ms.service: entra-id ms.subservice: authentication ms.topic: how-to -ms.date: 05/20/2024 +ms.date: 09/03/2024 ms.author: justinha author: justinha @@ -30,7 +30,7 @@ Alternatively, you can add a passkey from your mobile device browser, or through | **Same-device registration in a browser** | ✅ | ❌1 | | **Cross-device registration** | ✅ | ✅ | -1 Support for same-device registration in a browser on Android is coming soon. +1Support for same-device registration in Edge on Android is coming soon. ## [**iOS**](#tab/iOS) @@ -263,10 +263,11 @@ You can sign in to Authenticator to create a passkey in the app and get seamless ## Same-device registration from a browser (Android) -[!INCLUDE [Need APIs to support browsers](~/includes/passkeys-with-chrome-browser.md)] - ## Cross-device registration (Android) diff --git a/docs/identity/authentication/how-to-sign-in-passkey-authenticator.md b/docs/identity/authentication/how-to-sign-in-passkey-authenticator.md index 63250f62f06..cd071c751f3 100644 --- a/docs/identity/authentication/how-to-sign-in-passkey-authenticator.md +++ b/docs/identity/authentication/how-to-sign-in-passkey-authenticator.md @@ -6,7 +6,7 @@ services: active-directory ms.service: entra-id ms.subservice: authentication ms.topic: how-to -ms.date: 05/13/2024 +ms.date: 09/03/2024 ms.author: justinha author: justinha @@ -25,9 +25,9 @@ This article covers the sign-in experience when using passkeys in Microsoft Auth | **Same-device authentication in native Microsoft applications**1 | ✅ | ❌2 | | **Cross-device authentication** | ✅ | ✅ | -1 For native app sign-in (preview), the user must have an authentication broker installed. Microsoft Authenticator is an authentication broker. +1For native app sign-in (preview), the user must have an authentication broker installed. Microsoft Authenticator is an authentication broker. -2 Support for same-device Android scenarios is coming soon. +2Support for same-device registration in Edge on Android is coming soon. ## [**iOS**](#tab/iOS) @@ -109,13 +109,12 @@ You can use Authenticator on your iOS device to seamlessly sign in with a passke To sign in with a passkey in Microsoft Authenticator, your Android device needs to run Android 14 or later. ### Same-device authentication in a browser (Android) -[!INCLUDE [Need APIs to support browsers](~/includes/passkeys-with-chrome-browser.md)] - - + ### Cross-device authentication (Android) From b01f636b5ac06b1b8f8bda9952af685cebba5307 Mon Sep 17 00:00:00 2001 From: cyibarra Date: Tue, 24 Sep 2024 08:37:01 -0700 Subject: [PATCH 14/25] Update workload-identity-federation-considerations.md Add spain central to regions where FIC is not supported and order list. --- .../workload-identity-federation-considerations.md | 7 ++++--- 1 file changed, 4 insertions(+), 3 deletions(-) diff --git a/docs/workload-id/workload-identity-federation-considerations.md b/docs/workload-id/workload-identity-federation-considerations.md index 5bd7b2a1497..eef7d639cfc 100644 --- a/docs/workload-id/workload-identity-federation-considerations.md +++ b/docs/workload-id/workload-identity-federation-considerations.md @@ -37,11 +37,12 @@ Federated identity credentials don't consume the Microsoft Entra tenant service Creation of federated identity credentials is currently **not supported** on user-assigned managed identities created in the following regions: - East Asia -- Qatar Central -- Malaysia South -- Italy North - Israel Central +- Italy North +- Malaysia South - Mexico Central +- Qatar Central +- Spain Central Support for creating federated identity credentials on user assigned identities in these regions will be gradually rolled out. Resources in this region which need to use federated identity credentials, can do so by leveraging a user assigned managed identity created in a supported region. From 56158bf7df0e8480eaf61556ab1701bd544cf51a Mon Sep 17 00:00:00 2001 From: "Keith Brewer (MSFT)" <70251685+KeithBrewer-MSFT@users.noreply.github.com> Date: Tue, 1 Oct 2024 14:10:18 -0400 Subject: [PATCH 15/25] Update concept-mandatory-multifactor-authentication.md Adding guidance tip for phase 2 --- .../concept-mandatory-multifactor-authentication.md | 13 +++++++++++++ 1 file changed, 13 insertions(+) diff --git a/docs/identity/authentication/concept-mandatory-multifactor-authentication.md b/docs/identity/authentication/concept-mandatory-multifactor-authentication.md index c75d84c78e3..75e49abef38 100644 --- a/docs/identity/authentication/concept-mandatory-multifactor-authentication.md +++ b/docs/identity/authentication/concept-mandatory-multifactor-authentication.md @@ -56,6 +56,19 @@ The enforcement of MFA rolls out in two phases: - **Phase 2**: Beginning in early 2025, MFA enforcement gradually begins for sign in to Azure CLI, Azure PowerShell, Azure mobile app, and IaC tools. Some customers may use a user account in Microsoft Entra ID as a service account. It's recommended to migrate these user-based service accounts to [secure cloud based service accounts](/entra/architecture/secure-service-accounts) with [workload identities](~/workload-id/workload-identities-overview.md). +> [!Tip] +> We recommend customers currently using user accounts as service accounts begin the process of discovery and migration to workload identities. This will often require updating scripts and automation processes to use workload identities. +> +> Review [Prepare for multifactor authentication](#prepare-for-multifactor-authentication) to identify all user accounts (including user accounts being used as service accounts) signing into the phase 2 applications. +> +> For guidance on migrating authentication with these applications from user based service accounts to workload identities see: +> +>- [Sign into Azure with a managed identity using the Azure CLI](/cli/azure/authenticate-azure-cli-managed-identity) +>- [Sign into Azure with a service principal using the Azure CLI](/cli/azure/authenticate-azure-cli-service-principal) +>- [Sign in to Azure PowerShell non-interactively for automation scenarios](/powershell/azure/authenticate-noninteractive) (Includes guidance for both managed identity and service principal use cases) +> +> Customers applying conditional access policies to the user based service accounts can reclaim this user based license and apply [workload identities](~/workload-id/workload-identities-overview.md) license to apply [Conditional Access for workload identities](~/identity/conditional-access/workload-identity.md). + ## Notification channels Microsoft will notify all Microsoft Entra Global Administrators through the following channels: From bf32d84f6cac88d497bcf4531d9d656e00bbad3f Mon Sep 17 00:00:00 2001 From: "Keith Brewer (MSFT)" <70251685+KeithBrewer-MSFT@users.noreply.github.com> Date: Thu, 3 Oct 2024 11:15:09 -0400 Subject: [PATCH 16/25] Update concept-mandatory-multifactor-authentication.md Moving guidance to account section --- ...pt-mandatory-multifactor-authentication.md | 28 +++++++++---------- 1 file changed, 14 insertions(+), 14 deletions(-) diff --git a/docs/identity/authentication/concept-mandatory-multifactor-authentication.md b/docs/identity/authentication/concept-mandatory-multifactor-authentication.md index 75e49abef38..95cea0f1930 100644 --- a/docs/identity/authentication/concept-mandatory-multifactor-authentication.md +++ b/docs/identity/authentication/concept-mandatory-multifactor-authentication.md @@ -38,7 +38,20 @@ The scope of enforcement includes which applications plan to enforce MFA, when e All users who sign into the [applications](#applications) listed previously to perform any Create, Read, Update, or Delete (CRUD) operation will require MFA when the enforcement begins. End users who access application, websites, or services hosted on Azure, but don't sign into the listed applications, aren't required to use MFA. The authentication requirements for end users are controlled by the application, website, or service owner. -Workload identities, such as managed identities and service principals, aren't impacted by [Phase 1](#enforcement-phases) of the MFA enforcement. If user identities sign in as a service account to run automation (including scripts or other automated tasks), those user identities need to sign in with MFA once enforcement begins. User identities aren't recommended for automation. You should migrate those user identities to [workload identities](~/workload-id/workload-identities-overview.md). +Workload identities, such as managed identities and service principals, aren't impacted by [either phase](#enforcement-phases) of this Azure MFA enforcement. If user identities are used to sign in as a service account to run automation (including scripts or other automated tasks), those user identities need to sign in with MFA once enforcement begins. User identities aren't recommended for automation. You should migrate those user identities to [workload identities](~/workload-id/workload-identities-overview.md). + +> [!Tip] +> We recommend customers currently using user accounts as service accounts begin the process of discovery and migration to workload identities. This will often require updating scripts and automation processes to use workload identities. +> +> Review [Prepare for multifactor authentication](#prepare-for-multifactor-authentication) to identify all user accounts (including user accounts being used as service accounts) signing into the phase 2 applications. +> +> For guidance on migrating authentication with these applications from user based service accounts to workload identities see: +> +>- [Sign into Azure with a managed identity using the Azure CLI](/cli/azure/authenticate-azure-cli-managed-identity) +>- [Sign into Azure with a service principal using the Azure CLI](/cli/azure/authenticate-azure-cli-service-principal) +>- [Sign in to Azure PowerShell non-interactively for automation scenarios](/powershell/azure/authenticate-noninteractive) (Includes guidance for both managed identity and service principal use cases) +> +> Customers applying conditional access policies to the user based service accounts can reclaim this user based license and apply [workload identities](~/workload-id/workload-identities-overview.md) license to apply [Conditional Access for workload identities](~/identity/conditional-access/workload-identity.md). Break glass or emergency access accounts are also required to sign in with MFA once enforcement begins. We recommend updating these accounts to use [passkey (FIDO2)](~/identity/authentication/how-to-enable-passkey-fido2.md) or configure [certificate-based authentication](~/identity/authentication/how-to-certificate-based-authentication.md) for MFA. Both methods satisfy the MFA requirement. @@ -56,19 +69,6 @@ The enforcement of MFA rolls out in two phases: - **Phase 2**: Beginning in early 2025, MFA enforcement gradually begins for sign in to Azure CLI, Azure PowerShell, Azure mobile app, and IaC tools. Some customers may use a user account in Microsoft Entra ID as a service account. It's recommended to migrate these user-based service accounts to [secure cloud based service accounts](/entra/architecture/secure-service-accounts) with [workload identities](~/workload-id/workload-identities-overview.md). -> [!Tip] -> We recommend customers currently using user accounts as service accounts begin the process of discovery and migration to workload identities. This will often require updating scripts and automation processes to use workload identities. -> -> Review [Prepare for multifactor authentication](#prepare-for-multifactor-authentication) to identify all user accounts (including user accounts being used as service accounts) signing into the phase 2 applications. -> -> For guidance on migrating authentication with these applications from user based service accounts to workload identities see: -> ->- [Sign into Azure with a managed identity using the Azure CLI](/cli/azure/authenticate-azure-cli-managed-identity) ->- [Sign into Azure with a service principal using the Azure CLI](/cli/azure/authenticate-azure-cli-service-principal) ->- [Sign in to Azure PowerShell non-interactively for automation scenarios](/powershell/azure/authenticate-noninteractive) (Includes guidance for both managed identity and service principal use cases) -> -> Customers applying conditional access policies to the user based service accounts can reclaim this user based license and apply [workload identities](~/workload-id/workload-identities-overview.md) license to apply [Conditional Access for workload identities](~/identity/conditional-access/workload-identity.md). - ## Notification channels Microsoft will notify all Microsoft Entra Global Administrators through the following channels: From 5738e5befc698407c2b4c1e48c763b3005e40746 Mon Sep 17 00:00:00 2001 From: "Keith Brewer (MSFT)" <70251685+KeithBrewer-MSFT@users.noreply.github.com> Date: Thu, 3 Oct 2024 13:23:25 -0400 Subject: [PATCH 17/25] Update concept-mandatory-multifactor-authentication.md Move tip to bottom of the Account Section --- .../concept-mandatory-multifactor-authentication.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/docs/identity/authentication/concept-mandatory-multifactor-authentication.md b/docs/identity/authentication/concept-mandatory-multifactor-authentication.md index 95cea0f1930..e3a8fe7f0dd 100644 --- a/docs/identity/authentication/concept-mandatory-multifactor-authentication.md +++ b/docs/identity/authentication/concept-mandatory-multifactor-authentication.md @@ -40,6 +40,8 @@ All users who sign into the [applications](#applications) listed previously to Workload identities, such as managed identities and service principals, aren't impacted by [either phase](#enforcement-phases) of this Azure MFA enforcement. If user identities are used to sign in as a service account to run automation (including scripts or other automated tasks), those user identities need to sign in with MFA once enforcement begins. User identities aren't recommended for automation. You should migrate those user identities to [workload identities](~/workload-id/workload-identities-overview.md). +Break glass or emergency access accounts are also required to sign in with MFA once enforcement begins. We recommend updating these accounts to use [passkey (FIDO2)](~/identity/authentication/how-to-enable-passkey-fido2.md) or configure [certificate-based authentication](~/identity/authentication/how-to-certificate-based-authentication.md) for MFA. Both methods satisfy the MFA requirement. + > [!Tip] > We recommend customers currently using user accounts as service accounts begin the process of discovery and migration to workload identities. This will often require updating scripts and automation processes to use workload identities. > @@ -53,8 +55,6 @@ Workload identities, such as managed identities and service principals, aren > > Customers applying conditional access policies to the user based service accounts can reclaim this user based license and apply [workload identities](~/workload-id/workload-identities-overview.md) license to apply [Conditional Access for workload identities](~/identity/conditional-access/workload-identity.md). -Break glass or emergency access accounts are also required to sign in with MFA once enforcement begins. We recommend updating these accounts to use [passkey (FIDO2)](~/identity/authentication/how-to-enable-passkey-fido2.md) or configure [certificate-based authentication](~/identity/authentication/how-to-certificate-based-authentication.md) for MFA. Both methods satisfy the MFA requirement. - ## Implementation This requirement for MFA at sign-in is implemented for admin portals. Microsoft Entra ID [sign-in logs](~/identity/monitoring-health/concept-sign-ins.md) shows it as the source of the MFA requirement. From d370a3f6e0e737c57b1c35b61ee4f733c5ac1da2 Mon Sep 17 00:00:00 2001 From: Mayur Santani <6283407+mjsantani@users.noreply.github.com> Date: Thu, 3 Oct 2024 10:34:30 -0700 Subject: [PATCH 18/25] Update how-to-enable-authenticator-passkey.md --- .../authentication/how-to-enable-authenticator-passkey.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/identity/authentication/how-to-enable-authenticator-passkey.md b/docs/identity/authentication/how-to-enable-authenticator-passkey.md index 982a4678582..e497b5f0320 100644 --- a/docs/identity/authentication/how-to-enable-authenticator-passkey.md +++ b/docs/identity/authentication/how-to-enable-authenticator-passkey.md @@ -32,7 +32,7 @@ To learn more about where you can use passkeys in Authenticator to sign in, see ## Enable passkeys in Authenticator in the admin center -An Authentication Policy Administrator needs to consent to allow Authenticator in the **Passkey (FIDO2) settings** of the Authentication methods policy. They need to explicitly allow the Authenticator Attestation GUIDs (AAGUIDs) for Microsoft Authenticator to enable users to register passkeys in the Authenticator app. There's no setting to enable passkeys in **Microsoft Authenticator settings** in the policy. +An Authentication Policy Administrator needs to consent to allow Authenticator in the **Passkey (FIDO2) settings** of the Authentication methods policy. They need to explicitly allow the Authenticator Attestation GUIDs (AAGUIDs) for Microsoft Authenticator to enable users to register passkeys in the Authenticator app. There's no setting to enable passkeys in the **Microsoft Authenticator app** section of the Authentication Methods policy. 1. Sign in to the [Microsoft Entra admin center](https://entra.microsoft.com) as at least an [Authentication Policy Administrator](~/identity/role-based-access-control/permissions-reference.md#authentication-policy-administrator). 1. Browse to **Protection** > **Authentication methods** > **Authentication method policy**. From 24dcdc72da6c0c2168d9d9fcbbfa3fb215593321 Mon Sep 17 00:00:00 2001 From: Mayur Santani <6283407+mjsantani@users.noreply.github.com> Date: Thu, 3 Oct 2024 10:39:19 -0700 Subject: [PATCH 19/25] Update how-to-enable-authenticator-passkey.md --- .../authentication/how-to-enable-authenticator-passkey.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/identity/authentication/how-to-enable-authenticator-passkey.md b/docs/identity/authentication/how-to-enable-authenticator-passkey.md index e497b5f0320..9b4256da9a6 100644 --- a/docs/identity/authentication/how-to-enable-authenticator-passkey.md +++ b/docs/identity/authentication/how-to-enable-authenticator-passkey.md @@ -44,7 +44,7 @@ An Authentication Policy Administrator needs to consent to allow Authenticator i This setting must be **Yes** and you need to add the Microsoft Authenticator AAGUIDs to allow users to register passkeys in the Authenticator, either by signing into the Authenticator app, or by adding **Passkey in Microsoft Authenticator** from their Security info. - [Security info](https://mysignins.microsoft.com/security-info) doesn't require this setting be **Yes** to add a passkey in Authenticator. If you choose **No**, users may still be able to add a passkey in Microsoft Authenticator by choosing the **Passkey** method, depending upon their operating system and browser. + [Security info](https://mysignins.microsoft.com/security-info) requires this setting to be set to **Yes** for users to be able to choose **Passkey in Authenticator** and go through a dedicated Authenticator passkey registration flow. If you choose **No**, users may still be able to add a passkey in Microsoft Authenticator by choosing the **Passkey** method, depending upon their operating system and browser. However, we do not expect this avenue to be discoverable and used by most users. If your organization doesn't currently enforce key restrictions and already has active passkey usage, you should collect the AAGUIDs of the keys being used today. Add them to the Allow list, along with the Authenticator AAGUIDs, to enable this preview. This task can be done with an automated script that analyzes logs, such as registration details and sign-in logs. From ad0c113b6357d738e9169d39afc550e92861dd6f Mon Sep 17 00:00:00 2001 From: Mayur Santani <6283407+mjsantani@users.noreply.github.com> Date: Thu, 3 Oct 2024 10:50:07 -0700 Subject: [PATCH 20/25] Update how-to-enable-passkey-fido2.md --- docs/identity/authentication/how-to-enable-passkey-fido2.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/identity/authentication/how-to-enable-passkey-fido2.md b/docs/identity/authentication/how-to-enable-passkey-fido2.md index 35c26061620..6f17933e702 100644 --- a/docs/identity/authentication/how-to-enable-passkey-fido2.md +++ b/docs/identity/authentication/how-to-enable-passkey-fido2.md @@ -69,7 +69,7 @@ You can work with your security key vendor to determine the AAGUID of the passke This setting must be **Yes** and you need to add the Microsoft Authenticator AAGUIDs to allow users to register passkeys in the Authenticator, either by signing into the Authenticator app, or by adding **Passkey in Microsoft Authenticator** from their Security info. - [Security info](https://mysignins.microsoft.com/security-info) doesn't require this setting be **Yes** to add a passkey in Authenticator. If you choose **No**, users may still be able to add a passkey in Microsoft Authenticator by choosing the **Passkey** method, depending upon their operating system and browser. + [Security info](https://mysignins.microsoft.com/security-info) requires this setting to be set to **Yes** for users to be able to choose **Passkey in Authenticator** and go through a dedicated Authenticator passkey registration flow. If you choose **No**, users may still be able to add a passkey in Microsoft Authenticator by choosing the **Passkey** method, depending upon their operating system and browser. However, we do not expect this avenue to be discoverable and used by most users. If your organization doesn't currently enforce key restrictions and already has active passkey usage, you should collect the AAGUIDs of the keys being used today. Add them to the Allow list, along with the Authenticator AAGUIDs, to enable this preview. This task can be done with an automated script that analyzes logs, such as registration details and sign-in logs. From 5068a9d1d50004b5efd24c5ccbb0842d82857b65 Mon Sep 17 00:00:00 2001 From: "Keith Brewer (MSFT)" <70251685+KeithBrewer-MSFT@users.noreply.github.com> Date: Thu, 3 Oct 2024 14:05:35 -0400 Subject: [PATCH 21/25] Update concept-mandatory-multifactor-authentication.md Reorder Account paragraphs --- .../concept-mandatory-multifactor-authentication.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/docs/identity/authentication/concept-mandatory-multifactor-authentication.md b/docs/identity/authentication/concept-mandatory-multifactor-authentication.md index e3a8fe7f0dd..d3e484bc185 100644 --- a/docs/identity/authentication/concept-mandatory-multifactor-authentication.md +++ b/docs/identity/authentication/concept-mandatory-multifactor-authentication.md @@ -38,10 +38,10 @@ The scope of enforcement includes which applications plan to enforce MFA, when e All users who sign into the [applications](#applications) listed previously to perform any Create, Read, Update, or Delete (CRUD) operation will require MFA when the enforcement begins. End users who access application, websites, or services hosted on Azure, but don't sign into the listed applications, aren't required to use MFA. The authentication requirements for end users are controlled by the application, website, or service owner. -Workload identities, such as managed identities and service principals, aren't impacted by [either phase](#enforcement-phases) of this Azure MFA enforcement. If user identities are used to sign in as a service account to run automation (including scripts or other automated tasks), those user identities need to sign in with MFA once enforcement begins. User identities aren't recommended for automation. You should migrate those user identities to [workload identities](~/workload-id/workload-identities-overview.md). - Break glass or emergency access accounts are also required to sign in with MFA once enforcement begins. We recommend updating these accounts to use [passkey (FIDO2)](~/identity/authentication/how-to-enable-passkey-fido2.md) or configure [certificate-based authentication](~/identity/authentication/how-to-certificate-based-authentication.md) for MFA. Both methods satisfy the MFA requirement. +Workload identities, such as managed identities and service principals, aren't impacted by [either phase](#enforcement-phases) of this Azure MFA enforcement. If user identities are used to sign in as a service account to run automation (including scripts or other automated tasks), those user identities need to sign in with MFA once enforcement begins. User identities aren't recommended for automation. You should migrate those user identities to [workload identities](~/workload-id/workload-identities-overview.md). + > [!Tip] > We recommend customers currently using user accounts as service accounts begin the process of discovery and migration to workload identities. This will often require updating scripts and automation processes to use workload identities. > From d7ef8ef1f16cf8d052486c37cfdabbb5d5ee0655 Mon Sep 17 00:00:00 2001 From: Mayur Santani <6283407+mjsantani@users.noreply.github.com> Date: Thu, 3 Oct 2024 11:44:55 -0700 Subject: [PATCH 22/25] Update how-to-sign-in-passkey-authenticator.md --- .../authentication/how-to-sign-in-passkey-authenticator.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/identity/authentication/how-to-sign-in-passkey-authenticator.md b/docs/identity/authentication/how-to-sign-in-passkey-authenticator.md index 10f495c8803..b552daebdd9 100644 --- a/docs/identity/authentication/how-to-sign-in-passkey-authenticator.md +++ b/docs/identity/authentication/how-to-sign-in-passkey-authenticator.md @@ -27,7 +27,7 @@ This article covers the sign-in experience when using passkeys in Microsoft Auth 1Support for same-device registration in Edge on Android is coming soon. -2For native app sign-in (preview), the user must have an authentication broker installed. Microsoft Authenticator is an authentication broker. +2Native app sign-in support is coming soon. ## [**iOS**](#tab/iOS) From 299c3f4bf197b4a62377cba168593e743679fa9f Mon Sep 17 00:00:00 2001 From: Justinha Date: Thu, 3 Oct 2024 12:22:58 -0700 Subject: [PATCH 23/25] reverted to version without authapp --- .../how-to-enable-passkey-fido2.md | 33 ++++++++----------- 1 file changed, 14 insertions(+), 19 deletions(-) diff --git a/docs/identity/authentication/how-to-enable-passkey-fido2.md b/docs/identity/authentication/how-to-enable-passkey-fido2.md index 6f17933e702..45c6a485409 100644 --- a/docs/identity/authentication/how-to-enable-passkey-fido2.md +++ b/docs/identity/authentication/how-to-enable-passkey-fido2.md @@ -5,7 +5,7 @@ description: Enable passwordless sign-in to Microsoft Entra ID using passkeys (F ms.service: entra-id ms.subservice: authentication ms.topic: how-to -ms.date: 09/03/2024 +ms.date: 10/03/2024 ms.author: justinha author: justinha @@ -65,29 +65,24 @@ You can work with your security key vendor to determine the AAGUID of the passke >[!WARNING] >Attestation enforcement governs whether a passkey (FIDO2) is allowed only during registration. Users who register a passkey (FIDO2) without attestation aren't blocked from sign-in if **Enforce attestation** is set to **Yes** later. - - Key restrictions set the usability of specific passkeys for both registration and authentication. Set **Enforce key restrictions** to **Yes** to only allow or block certain passkeys (FIDO2), which are identified by their AAGUIDs. - - This setting must be **Yes** and you need to add the Microsoft Authenticator AAGUIDs to allow users to register passkeys in the Authenticator, either by signing into the Authenticator app, or by adding **Passkey in Microsoft Authenticator** from their Security info. + **Key Restriction Policy** - [Security info](https://mysignins.microsoft.com/security-info) requires this setting to be set to **Yes** for users to be able to choose **Passkey in Authenticator** and go through a dedicated Authenticator passkey registration flow. If you choose **No**, users may still be able to add a passkey in Microsoft Authenticator by choosing the **Passkey** method, depending upon their operating system and browser. However, we do not expect this avenue to be discoverable and used by most users. - - If your organization doesn't currently enforce key restrictions and already has active passkey usage, you should collect the AAGUIDs of the keys being used today. Add them to the Allow list, along with the Authenticator AAGUIDs, to enable this preview. This task can be done with an automated script that analyzes logs, such as registration details and sign-in logs. + - **Enforce key restrictions** should be set to **Yes** only if your organization wants to only allow or disallow certain security key models or passkey providers, which are identified by their AAGUID. You can work with your security key vendor to determine the AAGUID of the passkey. If the passkey is already registered, you can find the AAGUID by viewing the authentication method details of the passkey for the user. - If you change key restrictions and remove an AAGUID that you previously allowed, users who previously registered an allowed method can no longer use it for sign-in. + When Enforce key restrictions is set to Yes, you can select Microsoft Authenticator (preview) to automatically add the Authenticator app AAGUIDs for you in the key restriction list. For more information, see [Enable passkeys in Microsoft Authenticator (preview)](how-to-enable-authenticator-passkey.md). - - Set **Restrict specific keys** to **Allow** if you plan to allow passkeys in Microsoft Authenticator. - - Select **Microsoft Authenticator (Preview)** to automatically add the Authenticator app AAGUIDs to the key restriction list, or manually add the following AAGUIDs to allow users to register passkeys in the Authenticator by signing into the Authenticator app or by going through a guided flow on the Security info page: + >[!WARNING] + >Key restrictions set the usability of specific models or providers for both registration and authentication. If you change key restrictions and remove an AAGUID that you previously allowed, users who previously registered an allowed method can no longer use it for sign-in. - - **Authenticator for Android:** de1e552d-db1d-4423-a619-566b625cdc84 - - **Authenticator for iOS:** 90a3ccdf-635c-4729-a248-9b709135078f - - >[!NOTE] - >If you turn off key retrictions, make sure you clear the **Microsoft Authenticator (Preview)** checkbox so that users aren’t prompted to set up a passkey in the Authenticator app in [Security info](https://mysignins.microsoft.com/security-info). + If your organization doesn't currently enforce key restrictions and already has active passkey usage, you should collect the AAGUIDs of the keys being used today. Add them to the Allow list, along with the Authenticator AAGUIDs, to enable this preview. This task can be done with an automated script that analyzes logs, such as registration details and sign-in logs. + + >[!NOTE] + >If you turn off key retrictions, make sure you clear the **Microsoft Authenticator (Preview)** checkbox so that users aren’t prompted to set up a passkey in the Authenticator app in [Security info](https://mysignins.microsoft.com/security-info). - Two more AAGUIDs may be listed. - They are `b6879edc-2a86-4bde-9c62-c1cac4a8f8e5` and `257fa02a-18f3-4e34-8174-95d454c2e9ad`. - These AAGUIDs appear in advance of an upcoming feature. - You can remove them from the list of allowed AAGUIDs. + Two more AAGUIDs may be listed. + They are `b6879edc-2a86-4bde-9c62-c1cac4a8f8e5` and `257fa02a-18f3-4e34-8174-95d454c2e9ad`. + These AAGUIDs appear in advance of an upcoming feature. + You can remove them from the list of allowed AAGUIDs. :::image type="content" border="true" source="media/how-to-enable-authenticator-passkey/optional-settings.png" alt-text="Screenshot showing Microsoft Authenticator enabled for passkey."lightbox="media/how-to-enable-authenticator-passkey/optional-settings.png"::: From 1bad5d4d0b9269a9f648c879bb02a4062da3f340 Mon Sep 17 00:00:00 2001 From: Justinha Date: Thu, 3 Oct 2024 12:51:10 -0700 Subject: [PATCH 24/25] reverted image --- .../optional-settings.png | Bin 69748 -> 63368 bytes 1 file changed, 0 insertions(+), 0 deletions(-) diff --git a/docs/identity/authentication/media/how-to-enable-authenticator-passkey/optional-settings.png b/docs/identity/authentication/media/how-to-enable-authenticator-passkey/optional-settings.png index 9f142a525327d4b22ff790c2e9417d88bfc91761..7c507b03e0312790bfa438b7c8dcf1282574a096 100644 GIT binary patch literal 63368 zcmY&<1yoyG(>4?e6sMHpZY@$A8r-3{7AV@{F2!AnQ{3IPxD&J#cei522@o_$Lilsv z@80*l|E!f{owH8PnKLtc_B?x@9jT@whl5FmiG+lN^Fdx(0}1K5CK3|z0R|f4O!LS@ z3gQR(tA?B;Qq3gA5#j*VQbJh*38_8~3-Zs259o-1+(E*9Tr+^>N7%vZP3p*E|HANzQVcN|$t7 zof%56h+SVkA20tP%`;QZM)(}(l=@|RQ4YLuaWsZK zDV2b$EA`!u=PQ7|z6V-iu(3@^N$LNJI#;^F-v{-4d=Xj!Y#KW3E+-MtPJNDqn#p7V zU4|-PD;>d1B9u<0B*Y1e0_7AyoZ zZhdtd+#v9SJlFx&N=!#bS2z_MXG^wQ?}0mlWggxIxX#e=Q8U}*2Y*ai9w9;HVn6-1nBh6qL zfBP+>+!VI{fz;)6Wqr5lY+=^+37wl4SoV#Kthk~;UGn=-@sVzh>uCx*X~yK5?yW=v z&_~Rx#?XM2E}U(2Us<#jtBD%ny(Rn-Rcy zvc$|iMzMpS=nnT;;)5z77FcWao&oGmP zm0@REbi~mnv1aJF*mn(hd9<({B=y?$4CJ$30&PRtyep&+eZeYb%R{*PV! zQk9@M;Bl2$yr*N4_f#DZS=bBty(|urp;_t#erPo1Uhbdq65{1&PS=Vrt%_QU{b;Q^ zu2K^;I(F(h50#{#u1R3k;WR_^xQxf#VV90Dvw@|!k-FbX6&1A!6Hw8_>3Z4wKZlJB zRnE1-Ps>G@<54;#4YUkCtW{>7PyXD6s*a?;%i^+KHG;5@1ms(Cyldod&t}THSVW+8}wG!^i9N)5R>o z&3!4LKJNu?sK3AWd3yQ9@bQ_5e9fOiqsw^@)r7L{uTcVWKX3fqC2U5M-%y|&KW%l+ zSp2Mig$LSWKmDx+@hQzUt3hv~R&q4lS$vAj6p7qnp<2|>_3BwQi!}n!PU*XJ!l*L1 zdBxhOIK^hU#ZWa4dg@ebe80pAH+0XUYG3)dUZi%o8sDu^!Paa*^$ed{SY`cKO94>$H)Q&v)oRh8?`6-E33ezpPeZPdr5ncYA#Po7nXS#0{ z>tey{ysNxE%6&^8{%Z8FFsX!wLq9BsTg&@qJhhK>!Nt5!)KRsbizg+b(8k{4cqor5 zQ6{b?xxZO1$I>%vB>rgNVEB1}N2#95Ujr~lzkyqmz|J~4CctmgCs`2aK>Ak7ag$|0 zrfUyMc)5$Nn(U+aDXLj`0socc*1I0dR5tIMK;f=>1s1W@cPZ$ikVUJvHWtStJ2Ko! zK0Isp#MsHvL;J(Q#G+g)-Wc!qZiW*@MR@j3ql%agySDCCceim;HdqDoz;RP)_rx80 zzTQPbsXL5i2k8w{9{VD*AI4(ymxarI>!=(OItV$Y?X>2n$0#>Fg1VQd#*NQm-MC}F zl|p?K&@xOxjV6sRcKdfrfaAuVcUd9IKG|T3TNoC4y4NrRr3V;S6VHW2b4CzkHFCkt15)r zWdm4QS!^pSFPr1tpha1cG%6LoTWaf=nqcWC(P819u$oDBfKsl4d+K4d#HeW#=gT5i zE2z`Ldwm5VBjwSIEMM<}Z+yIuL(hvRH5O5Qy?!ZW*`eU?vS5C>(Sol&=%|v~t3H3!#|zP!Ow$Zrwl#yiWvUI+bG+yE;}rf%$Djs=qKekt z8@6~_Kd53)4LV~Hy!=I?!}?8-)*?m1Ls-1l5=Cmk^N?ayl@{JG?mc;_FkW8%53&}e zo#&%AD-YWiD-F3hz?0F~gr%?V;MeviJ(Q3O&n0D%={d?xTtCC-R0}zIPWAE3m$yeP?b8fVUEr?>--xlyU7?fFE$sapm9MY`@&FrgU-V z1eW+}hw!cIm!FRHnmLqVAWr^tMt-Z0_)VFxX?=6h+lGgLhjePA%cw`PxBOd*;|w!h&Tq>{MjuM|1%}Ad%_ba~0I2$E$4^SJy;4)&f3uJ$)={M}&|%I0&X z?Da6v?jq!L4T{p!;$I33|@_YP41FSYEBxQ}3e3>G@7q<1^L zvPGmB7;lQOpsRW^`+$x|xnS`g9KBqjrzv@_2VhwyE#;q)RT=!tQRdOTL`2R-wm}tF zf9=QqEQjAGuS6&|{Z=1UB|$sdUaQwRr z(%B;Y(ro@W#vNv^Nt8Zci{;`z&sJHc!r&Kjdsb3K*9aVeB`TmbNy06zLajlgV+7N_ zKN2&d70I&MRa>A zSb&pCxhl9qVx9G6M&b)*L5)!-wH?_a36`cDy7i2s9x|E|il^25Czilh4!kBfFNX@B zGJ|)9&=rM=In?8O?4fF+0fX}3m5ca-Po{(FI4w`ppY>WEl<(8PMhs7vA|4&~i&~Cv zbIQGM4w+gf-X*~At2_IU5mi@-2&`OIM}xtuSTkNG_;r~Q`Rm&r>bRkoF=CRtd=B|{O%5%SRcP-xU6wt6kbXUS%vfu`%&wjH zQNcl_#tZ%Vl-F4|pi?Q1B_EAkG6h<6jgs+D_rLtLTAEW5aqle*UowGq81}YsA$P>?khldXoOTp@ujw zuR&UYx}Q?(?UCg;i%UxMbrgLFRt)(cCQv=$0?u?^ zN8sJ!fbIFJYY=yy_VS#yR1Pai9QTS|jQlL-L)SrG+}SyC-o||xoBTK2_COO+2egu; z4HI0w%nR{+!UJMw3fJ#Fch}1j7TD~;ZndtEi|JO(iOz5V3T`l0gf*=f{+^WY^Cgr& z#?eO3n?CryGDsvrCT1mcbx}y1i+yS&!`}AQixi4%^iYq4?B7(0Ye3*GWIQ$KzRT=x z)v2}1=!eHW zUDKrNHxz8^;n{R@K)0mQ8biiLOT43nvb-2ksNKlvn*O9Hz#Sj<4X;!d5k&wp{6erl zNmTy)EyvqC8oAOk6%tO;_?gI?i(0Nbo!4wqrf6p2UpP(tCi=WgW69;@c;ww0hJEJc-Zq{;MB2PzqxU8Zj3!$Qj#|AzWE-9)H21*gc+%I z&;(9?mrYBg>D`pv$1Ky{Z>J_%pB#F9DdN6KTKLzV8LsbKL0TVbvy?~|_6>a|P^tZ4 z6)&3XmoGniKB@NH)sT`&fW$v{FDgHEZfyI}1eWhLFU6tu4d&mR-h2NhQ9~9SiJB_*W~IQs)Q*u)@ac|AF7A3%dO+_oL9`luZBl-+i^(p`q}kw zx!?xVwNKQZc2fGiUIQ&k`o^8y2Fwmwo|E%weiY?c>taSyh;oRoKhF31)h|a1814tT zyNR$(`3t3^@>w=1gp9h~00JMp)1J z%K%^cc{bj!U?-J7D*+7EfK=Tm7w^%ahuq7f0tXE}FRjYTb8>)`Bx!~QWQMAuO7u-g z_U63^&_YnGnunoPr>66MLw00*Jo%wgVWrJJjTZn4_&R&Q*yF)5BJ3^yum_3ngi(wf zX0RLjKoU2)8cXD+&SrOE{I%7tA=@)eEa{a&O^YfcTA%i1S55;irnd^va7`tUUVTS0 zl{8_)k+a4F;C5WyrLE!}!c{PSgAoG>%qJI6^}85&%P(hTAp`l4{$L`9|? z^Jl>r*o8iK+Qb3sgK<<}QomDqYeXYiKXn>eJYE!qrJqt%RP(I$J?!(9@uPcM`kNPK zc+4COr3V@o*K^hT{qWh)E6aGKCy8j-X+Fr|`;9t>eQs4+n~S_N&J}_pWb`fjK`ti`|>H<9ua^qn-$)2 z*pn`7O-o1FV=U55ZSfJkI?!*pT9vK;!YYu^t>pCiSeQ6dK82e*MzQEk4lUE`3wI&cj8aGlsBOx=@5Ad3 zY_2la9NTrVUB+BnG}eZNb>Jot`CvrRLom*n8MZ@vXpL7C`J%So$B@1}%By1nfgDBN z(Nj%btoj()!>gljxTa#03V_{|sB*tCKqr-UREwxnJAl{hLJb~7RM6Ig+k~sEfT6R; zhSQL^?9Kg@22c@Zg~%u7g%s_E{RKA-Z9~>jFA?+E^aPj30pii7uY;q2B9$afOw7H! z9*@xRT=#+)s%4!?QLjLQ_i$GLpBC*}Do2VRhX^}$_f_G^N~>yznfY-21KLVgs{y}# zO!oVtPee)sK`rJA{4oPTz(3YbY9Zld5iw|vH5h?^ig&(K_QHo$hfH%ERbmPvO4Qg9>~P?-qWY$uCh z^Jc=6UEsLw7gx@6bgm(?i*yZe&P{408GN7GUA0#A zoBQmoQ%-i{W-3XdZpPc&qKDUuK6Btl9XrqTT;7|1T)yf>&B|$5*^{LFLiH>e<7A=> z{FZPx`ng-!(*4p9#K{2SOkH6Q=adesl{C3X@yOnr^qON+56DO$B6DR+kL#FwH2L{; zzKGo9Rkt^lJe)8qx}Lz#Fj z9bNcLirnimaX%1m758PD>z&YbOcU_k&g~n29S=wrN73n4*xZADJCEeY z;zyv!YJ3QUJ3tm>N%=)40;`#My_AwdISeA2`sDwm83tczHQ!?ekAlEyV-MefC8hi2 zycAVwrjy`NQNITTfdl&%SZ|re*K!RwY|yyGcheu>{zFA{wcfD7+e}f`G->zdnB|GH zT{o8R+iud2B8`?>rQ_QGh8wxK;c`uMd6hWtqfL4#+|%{#Q$WMV=bCd9BDL+vqoD3B zwD&XS)Wr6}#P5RZ0?CDCYy)*2`pHAc8SHVt{4wq~ViU64Xu4nu7H1$M32tt)Ephik zf24uLX%{%=TQ+OP6F5!|`^x}aJ8@1c?Yz6)xRgR9>|uejODS4imLjo{21d@D&0FH{pQv5)6ieVws^S#PXY{N1ivmBZ+_ z-oy8Rno6Y2wt}PIwu*74d~TFr#=~5LY|lph)8igyxUJij&SzG{8obnNaI!qY$B14m z$~_uEt3R-J4AU#V6u`z3bP%&c>61joNuc%JSQ$cZc6Ok9j(xF;C^=%ZlW~Szz)x-c zV#{?s3yyZY<^x_0JhDZ7Ejtsa%|j308Ol#-%W)DWMV@V9)jo#3__f;q?62suia#un zkPTqcwhT3j45aepXDCE{u5|%DII9Q|G*3Hq{dP89E(aB0TAf5sxzP{=%5QYLx9JVR zAER!Je>?wTxNx0ZrrTB;!W{s6V9RaA(IeF$v(2@k*Pvh@NxV{&-7J{3 z9M&ZjI>Soz&?vwrb?$HlujorE(*g{>N;7!GU!QD9iT>_U{n!aF?QC(b623VmZ`gk9 z8QBPd?v04SR7CGxYhU34w8^0R^5#o5vqi?#FU)V_{f1&c*ejP@A0@n9kMm z%k`>hJs1`x?9-yGeI_BrgXEa!;OwC~1tv8n8X!NK0#aL zxD5as6M;X;$sx6b`PlIKj~6mXdTnn!I)_dUdh}8yUstQ#sr7Rr!O|+P3xekJjNJ6z zUtRy4%6r?`%{8DzO#GB{eMTzuK9(knQoi5R3_u6O%LpNFITLjN&|pO7(>^m!FU#9uUAsvi=rOIx7(s`{&cfQ0VV!v{2643N*QvjY8)=k$IUqNxbC-6Hb7Fi z{4SR3rK_p&;{y{R%~1Qfl*q$ajQtleC@WrTdhK4*SQw4%((_>h!n4L(81%5 z{K#NS_--ur>yO}7s#M$3YcES&$9j7axd&ps!YX|EZfP<|AW=KJ^ueKd_Vtgtp{_Z9H<2%rrwe51{-`^x8~$L&yY z(7hKiHt*?+mE0x2ddKL`5J7qdJvYeaukwKFaT%zr9`%aT@Nd(>(}XN*CgDN8^WiXs zB(1PJlu5!GoI>3eic@y;F3i1!K|8MtT|BQH`7mC2;*l{BJz(X2w%Wt^$p4ZwafVUR z`{wxVAp@XJwZP15cPyORk40YJe)!dWzdrdMhklFVRHXu-6DY~eTE$p<7BNp%lX@8y zXMP(FEcsyvq`(;H=KAzk$CR^8UUF6N%$mF7VP{`y_{Xnhd=ekzAT5JV43lSrcH*4) zPf-!`aBA3R)wVIgSUhAA*R`bpy}odO==`ITCgX2Z%pfr!=;_@73YCXW|9b*=Z=Q`d z_0x24_+>%%&UqNvcev01uU2fi5QM(r#OYs^s&flA#zSc?f_C~DNc<)japQs7C9r>* zp2Oa3+v~uXQmi3t8qi?Obz%`9K zjob3pPKarwxYNnTW-VVI{cko*iK1w@gVOtG{GG2~>@*0Ss)Q__#gd>C2636uAH$6H z(L~EKwg?9c=Ifb=T0%|~P)8xum0W!is6VHbDOPGQS2EL-1h3lish@p)x?kgKIL}n< z0&ECd`k^xOiAO1^pdzXBqw?2tB%>h9h|8XaRa1witqeu=UUoe-@^^O8qO8||NuD7~ zXeuptU)IL48T|m|IdXrkW4rCws+2M|b>Y&VNpL(o60qxONdPYd2=QM(F=!c)5nBEPjM& zG{u6t<2K9Md;tE0DQCZ?Epk{R%6g0mgG`)?ohg%WdO$a=4E|VaroyXE*}A14G;>6F zG#q=~VVog3Vt6PM`ctZ&cW_r9mb$p54A6u40lL3`L`h;Q3_j^v%hS!jhBYnRYC zxU1maBRWfBliZ!5eAyLj)UdD0YVNawTOp*uo`UY7s4_=THgS{iE|HNr)O+k3k0^6! zKibGpp8p%6TX0g!nplePfxz-T3Q%Ei+xut%m}X})oDADOP>{%TxRe-hc>9KgMR8O$ zNt?ReULf(Wc{xZd9rI3y#kXzS82vO__!B1)@AB<6RNEq3%?>3<%8p)xQ`?a@6fd3p zW1A!XQqIzpon;@^WXBX3tE{!hP~EmAGDZ!RpKm&vO&b=CnB^%r*B_YywOt!4VX=TH zdpS(CV`o~DD7N3Nw~HA!_79(+y7r%pNrdkZOVQ(y^UtPne9>Fib6J%+0{21O;Gf7A z_c*MqKg|a~rq4B-e|*w;?>^s;=%grZrE0K#zHo=HV+Nju~Udg7B9B5QI)J)6c6ji{m4%9V%ON9S`(HJL^>KgqAf zFm9Yy=|Ur0gsqHqsaG5QBO@XTKXdZ=%X`jjdho**fxE3hAwSLqsxTx4OQMX;p1W#v zdG4QJkYd1EgR*Oj8Od)S)cz&I9-CS~X={zhgf&CKxucy3UQRW9j?%lC&Oc}yWBQ6; z11O$)yw3Q1n}J)XAX-q?;Z|wH?f9`siro>>0y9e0qO?z}6od}iRTEo_;alr9EiE^Y zfy`#N_grSvd5SGnTFfk?40!8Wh3}!}4c1poFU`QI=8Lf1|Mz2>Vqr949>^g z@rpH$^P%^M)f;`Yn3n_uGnSg%Ar6OP(u>vRMdFT~`xUOYT1+J|_{0^2?9S|Y7!Xq7@Lt)wE#^5F!` z;zD0&noV;Om$c6^1?5ErhQH5rLi#@6Zzt`!JbXA)qc8Kk9lc-MC}Ki_&lGsK&j7>( zayE^-?++dB$HLEiUM;SlvZ1gwe$EL%wAEn`4SkoPnm!r5C$tBhlloVY!mZVVsEYO2 z=H)K?Pp3OYrPzXEhkOaX4xrkSgTCt7S6C9c3-p{$_j6Hl)6cl+6Glx75tzo8 zqA)NP_y{LfHjS$WSVnYq-IgESWT^D;%#~#ID1)e_h>yQF&XgGQsWlQH)Q=wj7M^z(G%DM6IGxylzYCr4|;~e8l z_fGTJr2X-=q4AMir@bqp9(JAdd&yKxCudI1!DTVyPbVBp%6sJd!EI8se;2C(8VtvK zA{YyO^dO+QAJr{nS0`DsnC8^X`0+T~nHIs~ofweKq%niguN-9!Z zQDG!`bK|mF+cAosQr};UUHVd83-N_$p7`&P}Pc_Yu+?tq;@}j$kD@PiU*d+y6Y@t8Ev$R zK1IT|yI2~Pj7=?jg1h(o+!7oaL_EiKH0ms?V@SCq-?6vrE_Pm&YH3p^e3gTwjmHU$ zJi+g$T+W@U&2CRv?%TV}U=ee>4BWLVGu~aE)nqBh?9~Go_)Bze@a_%QpaYFH!|L2DPkcV=RrroGk zO8nbqlElQLXpzN-WS$HApHGDBiwe$AxIj?cXYNT4WSmc6R#`fNp;j9hY-kzO-)L11(U zomHm8OaV;5{Gq4tnYG~J8=M=t;_mK`v6Mm#$_2734P~F+`LztMDf<4Gd__kmh)hHO zN+44*%{SC!uW`+0ysbiz+BE$SSH~KZ=OY1XXl?8$S3n3&6;Z9B({`X!JVf7eH1$QV*Cr{$vN%NPZv1=FKSBJ9cpneEB z8;tXNJ`o4W^u#$cWEG?6{?Pr~qlz~)(`+f6h}-+RA~7e4RWHMkfxZZMeU?K{eflmf zI2b-#~U*{xO%}Q-<{R5o-^qK_zzWJyqOmG6Ut)pYrCza$c!r(tr z5ua?r@~rF$yy<|2t|ef%Od|#_qaGkq+xx%C?LV5A^T;c3@-Z{Z!NF4wIOtksDmg5h z-M+F0$l9o?eEBwF|FT7CvD+2Ln>SXi|9Tzu2F4pSE&CVc{Cs>Ffh;_lBjB8X?FHz8OETEwd%1on5Bpdh*-pazJmvx4DeC5_QzV^~?sw zJ7=s(hz`j5_kq1P)U_Jl!rwlN z7YK%+!en>rkM$5=fgk1Z2wK@qZV7dEh*Y!kMk8b*n}KO-`ZN@q##IiSBq9a z1c3ez+0ZA|yGSlBVTkI{uquQd1AG7W@Xx$vLPagG3^%becO-7A$L*B!9{$buii9)^ zBe=EfVuxA22mZK5p=NjvV=m1RY2>;HyeibeP49JU$p4W(kErxU^_Q>(4uI_M9#6yB zgGa93QPAM|RZSxZ3SEcEPz0wAl3NnqVzl#jV9aaG(iz+16j#P#meV%t8H1#zvijeoIJ-o7+zLu236_8Rw@PppaSktjUnSZ&ZnEI%-cW%B{G z`%?cRlOCNVN|e@c7Hn{?&@F`8DBj<=A-JYk==bq}6#~QJDIqY7A6-k)gDSy`_&P0I zK#R#>&oOV;d?ywFpij|%Ztqhz zw?Xg&@8uNa<$B(%z1$}%W&IlGzsIPck*uMiVfg0E2(`T5#Q^c%65hM-Lh-B1%T`RT z7emVxUS6kZ?3fr71yv7|`m*U;Dh!7TqEGjJlY)9iCiMMgwRG_qhsUB%KZ7n2xNovC zzEMR!_u=fVi@OBg+lPUVE7~g*N-J(-@_+>|$`-FUp1s>)-Zf!hzU6!INEcdi=cTeC zh91jOo?74vm2g9WMvZa3z!yD4cT6In%QbSm?T^rGPe6d9gDVCL(R#OXjaY5oIM5_e zpta;VhcDf2r%NxzQ_X0YlOa;DO&Z)m;Ovb>?CHtRTqb(Y%h?>4y*truB~4Vj`n>5W zRe`Dc&bBveIP#19!-)R2(z@t%b)O1O#4G)N?pMULZEItwT+;;=Tuk31aQISaTQz8iQb5y~90 z_gj8@%W%-9#&N|#VX~^PMqanJxJKmWqWU4IajM&b^!P;Z;P+?B)>FP#?I(Dh@_cnF zdXqg}5_xSO1aFeuexDvXk4ibwH$M^B;PlD2s+dz&Gc*rq&bx9ks~#O3H&x0Z;Jr9YdgdvnQ3k zp!c;^c}okwmZm0QWo0F%_Q#K5t7~%sLa)dkqS-eZO@zcmUMB|J>mOE&$aMk=rf*nB zr3Mt;y{9BC?r&IGIxP#PQ=YEW4@bp(cSW!Opfe1S&a?bmwpZT6UNMhnu%^i@LQKC+ zukQ|D;hAw#X|R2%D-zsA{`8)UWJYx;I ze7hvJGKx%k*@|B5w?WgvA_2Cl z)m~kTgz)_-#~Sqc6~>4f+;Y976J-kOU!aG>uT zx^x{bJi6?C^G%Yd*f->yj(M{3*j$KF5QpUV=r^8beAjk)B!))j;6$?tQfeYn!e-5T z8}8X_z%Tt&Pg+}?^}vAlwyB6{Ps`2)S>Wt@@a;^j3cQq*rHsW9n3c$g$~Kj5p`+Td zkoClgE#P}cnl)EAStwBoUU|OWZ@NIIiBI|szK!wc;+U0VtosqVmx$V^;S7&I0*tIN zugcp_rBJU%OET5qGF}Xah3u2?WIxqW!(`mc{6aW|cwT2T4DZIEuQG&D*45 zC%oKO1y=1krO5IP^C=+h5{t~MIFO2$>;kK_`7xHn?rE$;2jR7h21ToGo4?Jf>cX#& zGKgw;%=m%!Ox#a=n_qmMizxYMZ|^v75Z4(7i2M<3DaeM906(2cH$%vn|1T33rV2i; z!ybd?V@Y_3Bwo8F#R|SNw@-S3w0h~|&eew#Q&Rq*+lNai9@C<1nIZPRaEf4D!o%V> z64rXn43Ta~Wx{B%m%HAdnct7Mm`9spZ9sqCav|6HA^aDrjz1EgPl0)^2sphxA0^r^ z@u)+~5FC9br|*HA)7|W2c@dr{6~~EO?WIuue4t2&6?0{Cke27K3iRweYGHMU$s*E? z-k=88SE$qkb@7{TA#kVznjMYo0hjws^Mn3^;HQlW0*d^@~^ zXNhf8Ty{Z*mdlPm1RHC;$Xkf#CkdPeZ@$~!oJg<(Pl|GuoxV2DHjwcc^aT_Dwq;ef z?;8BO6fD<6)L(R-mB?BFsWv`bruc$cerAufj*}PoyBFwT_*N3V42Ofl7vgGiD8&jx z+6zdy+$)?ad&PxD+-Kd~jbh0IQ~}zbb7R>_;~>}#G`*2AViT32pq}N;m7lJg31E?919z5us;4vhZ<*L!izrwZV&-Epik~&~;Ui@} z{bX)9Tu|+5e|P%F=VIC5D+-y=a{Xa5N-36Ov66sTfYaWWgJ!t>pD^Lo$MxK}z*w|p zwby2!Rt@u<8<}0NR2Xcp`tii9+~S{`d;J>yA>E6$H=`s>ff5`F;j+pn>QfSK8LI`+ zV(4}>0%)RZ{zOiH4eG7=e(_eN&u&SJC94ztl(u-OS}^m zIcReaa{u1YB!~Y#wGq>YqBY<&s`g~4e#;a8S1a%+i`>#{$Tavtg}iR_E2nS>yRYGU z``1ezbkOh?gMTU@*G?5`CGEE806EtS9TJ_3vkK-Bk=iqX^<-y{0N6lIGjboE8L>^8 z4;u%&kR3PnPAD*f-Xt1Z)Ah;?%$94}5^Db?Ab*W*UEOs5Gbtqc9^-W(+pxng!@1K2 z;p=M2s}9faR3fFy60a$+&Maadciw?8img|;Y8X2>P1&?X_`9TpxxMlpCf}CA%CS1B z^gIId`Ja6{T#UI#r$^nOlh}GCaqN71#@VMCip1OEQ=+*!@~s9Y5hRXtZX^EE)ci|2 zYBgQ}zD+y372y{azyDIq8Czzyqdrr)2~ zdyJQBbrc@0L$)w{&g)jJCfgHM((8`Q&f590h z^NX#TCvRaZ6eg(^ucRZg@2 zeHb3}_XZ_8I-BUGF{Od|nRVFFuOMfpnLUb~rvIX^W|>c@np_1wV*kRA$t>106V!eG zy#ZaJmO`|NjjXKf9S2I)KR8VKKS)ky$=`(Le~?du(Vkn=?L=!r=Y z^ZDHLoPVLX>7$T}%!JCgjQdhTK~a0_suLke3=3IKE1HVm0kaRN1wVz zjSB%WG5GkR^mv|_>L@*`n`|t_Tb=PvNlZ+vEN-tK2H z1rqVn27c7w)=p(}57D1@$1vDzcPgmZ1bp51{3_F8x8h>(2xS&J{5~YOnTOc6aixl3 z^~aYkUtj{ziqR<>a#O$YX8^AWF=ara?I-gDrj#T|%Z7jc>ONmGiXB>p#E_=7F28&B z;}37Zx`XAnaRbzzB8ll&Lr&T5kCqgF2S#CR8X_pQ8xa0Nae`z6wyl4Dd$IA7E2v4g zk3K5Sf^jleg!#)LI3|NfKN~BDX)xo1jnv>9qiB1&ka^Ksj1D>z(zm*?CI`v_>m<0r zuLbu8-1jGpX#^&6SQ#fFuYw!A?OI$MG0;vtwsSm2qEf2NE)q+&l|I?|Z2t`1ua|6j zw`yvAw7L~&hPm##gQLOiR{0`APDA)e(E-V8?_#A7<8=|0T7Y7%)k23}*fq9GW%o6MhS1 zHWKnUo8S)Uv)}Ke%a1gv!Ng3ZpSD2<5J(Sz>L`=__QzSxf*M7}=V)KIIIMqZF_!{L zp1*?T2zxaE+_AZw4h%g)!%4+omx-KJquGCUW*&>Gsj0Z2l6eghln}{>t2EJK|Glp`MPSn8k4a~`s(#7&$vvUGtNQA zv%JX9Q1(-AaBo_zAmde#}m_^cg_}{ zAXZ~BitOQr4iw>(O48>l#<R_^z{Vu$6QPPNvG#%`>Vz1)kbAN!eIC+|)IRu^Z5$ zPn`5gyeB)W@N$N%#y+th(mGZQpEw{%IH_9-K5zrIzJ-vsj30qg2=~)ua?ig?oQpGX|n- zUip}1R&?F*sB4lMu-BHKQ?(<%^K@M)+RlG@h8=go=|(y@*?BZbK4BWV_4=6<27bFl z!;9^uWn@;=Onm%HNAmUI)0@J+ZeEjbH76J(mH93vYs(zLh6w()hc^(*d%8P~!?D|W z?)r^KgU&LpNlyYdpXTSEzxKJbT0Kc4-M5zJ)hYCvk~+E6K0iL}i`y}jU$N`AWDX5G zEEGJm`@|o!PR4-_G~9>>Pl@R}f9`W*jMc}XTKB;P$-2?Itqt*54DGKyBtLy<>0 z{rt%d#glR$C?JF-N(~3~b*JuhZTu6+roS-DnONg7PpOo;_QBBfiY^+@s6d-a9xa0L z8KG+WExu9EWt<7tvlJ4JtNNh;$H9IB$nwrMn_K{rM&o52PA3}3l*R9YF+=3QrV*PL z!-9%Kk8A@ns(q#$-OyMR#}&DSKZ?!BIH#oJ9?B-cjy|~atJ`f&m-yt7Sk;|}o%S&H zmMlL?VA%>i!n98&(C?uvHva&-#lbBk%N_D%d#i7w=&;FN+)X>>_6@htp@?aikZ5I| z1L481Jatl336qK6zi?`mFS^dzGOi8KFh*o;jdbDy|Q* zXY336IYj7GS6#U-2Ycq*kuTN?tQoc+2TV90k~GvUrrk$l>)5xhwp<9F5Z~ZeoLzsK z0cq3SKtL`#D=}-S}u#<4WhVF93)Lp`);4Yk^F7#oeJ$wgZ|zOoh$4HCbFJC5OOOa`ePpayR8DYFN4*KOWUX4y`6JD+&N>T4AL z&d&;z0pffsL5M=dq>`PKw32N1=dL@B!x?u>FK%$OzbB5v$BrusJdXvmbO zKfl-W*8BPVP|Bh_`FR&l7XQ7(SG9c{xPZg|C7_Kqk&=RY@0#0=;JqZxd@laCxf?zq z!YQ}^$J|>#H2MAS;}S9y2}MP62#SbEN|y)qpk)kez^u4(hj_w8eW zDif(u=3^KPv0r2mE;69-0Cu8i*_bz!Ho@_x(YiQ&g0Zvw9<`~G70Aq;llM69VLqZ@ zopD`5Xbv~~jsm|j?W)9`H7D&%n#1>?-RUeZEHHMU`P;!Ivu4O!v8=MedD8&&?Z5Y| zACoAw@2F>G>^|hlHxUpqper4@Fh7#u(0IipF)%fZpqlGe!$fXL*ZeDfwFtY!Me1<- zw$>mJY z(b+G)de(F_YjSKgzbeZ*rEo)KH*TVwj9hM|SF)?^755n(HB$iEPodrOi%Wg@>?8k2 zOW>7YM_nL;)j(37m*GmhS;RV}WjC2*?m7&O@?34>`+L8|U570{*_m5yYk?k_m%uQ{ zMeEp9CVp0@D_rz7XStz$DasGW zS}$J{Vlmro3`Y8|+|~JUeoM0BbE0^VS15Yv0bpxj<0PjuTPZ(X^|n+_nyys=M^Rb~vqslFWYg2j@CPt+x-W>F5avl?#y69V zmC$H^GWOwz2E){0bd{qyI<+Bb=@w||fsmiN5SM3#GWp~Mv5OsVE~L42krQ z(N$I?$X6jX*|xRttbS#A9bPo-xT8`HsL>_LIQj3zATgk7b0&Kr z#PN5vV?9dk$?*92t=QODt~WEo!*p!sh?e&%Cyl+LkJ&HH=UN$51vFfcy-Pm-pz?J) z4XLESqQo-5xfLRxYe!Lxv&XfVu|{9BlHhm~b}o_Cx?`~N!H>wLEDBe_TOqa|`TTb^ z8}Mpklo2i%>f*}#L<;2`tFT;N{kU?X{CuM(SEB0jXSaZ;%KA_t2a_UYB>e@_HYV}0 zMqNU+y<78-Z#dfgnd@>(&Q4FUE*2^0=Z1S0u5VlwyBm$fN_fUmbvpWU^YJA~Z8grO zGc(Sxp#*2*vW#lM)Ycs0&a^8_a-xBm^Rg#mr;q4nXsW;YBq%`4q`1ROK_Sor)pXmq zp;opx7had|@l4j;aA=rcBS9wMRKzJtqY?S5BZ&8Z%=T;d-Z%p4NuZdid)XXE=^$uZ zVw=ZNG?UtR%z4f_ULneyq1(DsH5{9M%1sV?An*z*c+))WaEb;Jk_Tjl4yPRFBK97< zd7T69wu`;Kt92t@OPJ>}OEnVHIlqDvvLrG&D+ma@K-`6^N=9&#v)b`aQS_a|ls+^P zvN$WU8mH~%d%PsBo0*#~O&XK{>3pf8nt?>J$(^uw0|DCF~dao zIaqFcJi(_>oCZ5~yb^MV ze7WXq7`_tiWx^rgYWCl3*&%-+FRZ=7x>g|~83>e9iz#y*VLYcWZCgjDo921*l_Tew z|D|sW}7VYBpU{B!3h2XVV9Mbe_oZ=FD5^o1HpZN*x49@SRbzu$?hvhAl$i zVT9PkD`!VIC!KMjT&g%yL^kti;QIEQ_7j9vIOk1*<=-v2;g8z44 zh2Ah3{hX-_b-Ccez}R{~HTLWZI1B#wMwI(LrhkwPE*z7} zN$}9I>gizWk{v^^+G&Mw9mqP*ax8> z{bT0?bom)V)CNG7ifKVF^jWw~(-fyB~!@sZ0oJ;qmyEkADvX@YS2(CIJ0Dc<=j4hpG@{SG;!+1$fga z)`^YI^_rc5$*1-3(x&m7X-RkNu5ksC@u*N!Q?K!pmi)m5)2y!BpwJ$^dPQRL#;*b{;R)a1 z^mUBTzN=P|j=K@P;so=5GvxBeN0_kUD{u3tV?Am|Qkl|jRVXP31*kO=EfC?(c$kZv1|N|JH+J(?M)Bw%t>;s>6Yxj z!|~NC$*`El#ztLetDINuQ;09Dt>*mxVXp+EN5|rxSGG^kiCU)f9QsH33U>8QSK#XS zF|W4;DS&IM!b;S9eSH_M{M)wN@Agn&`(B$a$3?EQlko>E{0yP%jaR>ZHdsjaA7Bgg z7r;yFZocW;`H#}WeeG`+(fwQ@8-bo%|*|CzvyP$=}m<2z@%4Q7ta%*}QQ z=I;`OmHlD8Z--X*_p=^HE;(pvy-WRFPFOrX4sgBu-#B~RVo_;v2y}?XY78>f)hLCf z440rEgE8|W?$y35RFeQu9W0X5_Xi>Dw$WFhN=l*?SROotmC`s}Ep1EAGB8*>{2Uba zJu(j^+ECJ{#<7xRY2tq}FfbmYqM@nDmR0iUQ%eJ`&Wi6YRuEu-(r_-QUt0ECsbPReAAuy`8C|zt49P(izU_!(_lTr zJX?e20i8+Bb6ta3;>kIi1ppx4FU31;4IvNl>%Q@p&sX;r4Xb3&MyXMHjhSKgeVI-Y z6YC(G&p!*82gePTWQt{Ex9A&MrQZ3pZRL;ISvRY_+%MHfLz~y@WdbyQ%CK|f(oC%N zrf7Dwey!Of|U=a@Mj~X!aGtlmLSaK&3*9z6)7q zoAu7~-vUzgw`B6{_d@-U3~%lC+U(SQ$I&a%_I9W45$1xeDUZYWvvKa148bl{6B1^u z7MY$g_Eb2M*_pA|Ay;P%RaG5lE)wR`gbJC7b4%{NkJqJb&*TcA+6E_Rm;(Tbk47xr zLD+z-s>-052T1WgCy@Uv5r0|EkyE04)5!OP7=JT0H}JGB(i+T+(kodAlOo;VH)O7@ zL$5c3N#p3d)!(E;(lCQhWt#6S%jnbrKvCH&iUP?tw4aGOW}G%;J;{21=^!R{lJHHY z&7}^L(=#m9d`D4n`~#p7p2*?qmNgLwdK++(xV$D2(}TO$=Cdv$p`nKvlrYVe*Bn&q zO6&{SI6hzB+oyAO?<0S!HK|EeHD|Ha)$7;$-hQNg2B7_7cLaS*j7+mH#mk)frwX{| z?(~$P}UkFlN_VA^! zjKgWyNsKV+K}8)J84+>)TB@&zh{y|L?5TNo8zdKTwCC+Q9=->adaN+t=zp*rInY|E zI?Ts4MO*!Z%_C`+xZQCSe;=^Ba)2Gy&doPLlZmGoSw<0$#0%27G0&5DX_9Zg5V&HX zO)Ga?iLZa~trZGBIocC5**t+3?pcs#w+33uun-mbr*3FxQz~j}Yj^JXH6z-zXv(OX zSeE1d1|RNF?=_l5t;Y26dYVjlLt4*bw!$+$sA>~O*%>Y$j(Z4u`!(CpDyhE{t7 zJ^5@F);M_zHhdU8zQBp=$l6*=GO=~0TE8g&;EdL^nQvwg_aade-(_B|Ph=4C&8&ok4-vI*AUj+@5yw6cAZ5GztYo&d~hFml~FM|HFIYA}>L z6qGPicy>cmEfLgTb?Q{nYP*oUn>JQ$=`SwpZ?q(*W)gupXTW<9Evb}gk!nf|KI}I$ zG@gZ-C}?CZxeiMpoirK5%K=hVn$z7M;wuut@-CAR)w5e453nJ`%_g+-EW|Zuy^pV= z^^Q)W-pkp3e-x2wgS8^~AR#i|X)GbmSSeK{S8w^3R!&9DMjg zBMrtKLth6p+NR>cL*af6bU z`4_}sxEY&`8`%;EaSN4T~bE3%bxw!}`Ykd=adfmZ%QWkGz+>P;@obyHb^ zG&=cyU9y@q&1W0lcUh7VHfMHmo3t(*hMCKPC*Ga2U#e_V6aTz|K5(cynCt`2ezubUl`@2}&=NkbwhLOyob7uK zC}l3+*lqsV0BVsPQF9B-%Q&sZ$e!RX?BZD}!Ndb2Xi(r5!&LHo97kY<=6j{b*INK~ z5vgm$`Tn4tw>_N9iZl}OLwwuU#j~b=@cG-m!*>>!j*!hAs!QSHMa9vWbdD|U&v=G2 z9cv9l4_q!fN)KwBjnEUw>b@W600XshB^y31BC zG+RoEk6H4G>6vwWeF4&d;kC!F)x|s4(*?DSsE9b;?Jv6e;#1P5$L(ZXbQ&*&27Q~w z=WLj!A0BLX2ApU{t>55yh^B?}!w+@@Mv3N+C$k|SaBffBSJ1B`C}t2;??I+xG}s7~ zl`n3Q4TZ69r)9o#nfyY_86Zd!P_%;Fwk%{>L8=Sjx4S4-vmO*ru}~o@%-Ec#^Z?Af zhOP0ZGbpr82zaBC}w@H5<8-_`lK*UDTc+N zFGlF6L~T5?*{|!8{a7@`7lu1nDqLMA9oYiKJlNpu89{QBA$st6> zB)IMipOS#&_~1VzV!cjsPIAjDS)0mLTF9Hl%%u+AmfLg%92Xg`9lO1V&gB191o{|1 zD4N;Wo$TMtCKp#pTLvYr6ll&H-(8z*JeTrcXDKaL%U-itM9m>%1<)EZ{7#%&*Zc!Rr(#18QkW$h5O9gvdL!PleZD!CytCe1}<%pvlaNUlT=C14UM0B zTW0~=W_IEfue>ga8n@Z=pCVo(1V$w&25J_ahOh511#Z2xN5c2jOQUfZ|BxVCD=B&C z7Q=2UotN_t;)C)Q385~b=kP1cZF3Jl5}aYb?h^=&^^e11#%QxOj}9-$6Ysml4V`6D zEMBP2YQv=0O>YC{qCpm1@EvRy90}cz?S8Tv!l+|-J{*H)kbjh*-T3UM_?Ak`@vvipUp_W z4p(+uX1L@SE(hx)v(!|xNu?pjou1w5ExS=0jMW=znJhHT_E{Vy#CcjJo5*PmFKDop zNj>!4#*Ck~o-31SJKc}=X+w8f%>{D2uj5z*uTwnbKgpB=%MTTbMHx#!v3`-zL!0GB zmL9^6q5d?NjW1kls>nWrGq-m(`pPup{4lcuuzQnTt(EFn&}@)>3z22pST$(a0O?EJ z=dK%SB%4UJ088u3)q89@chdvG@a$p3v&?mU@M=3I>ebteKwf9vc=S={1GA|St{EBm zh(Dl~^8wN~&iAY)(8~V#Y7kz3-NG-|*{Z0zTy!_O-c%$w88T;{1agrY_4?kEprNX& z`eXQm!iT=TXEj^a=^~htVOH-sHpA9qMtr^X23ld&pWyR6eclf<^oUm4t<6_@4`W7E zWX>&xH=gg^B2pCR^38BK*<7s@_#(Mr=b9?ve)=;-LA9%3e290)e)yC3litE>J4 z2wM~AdoeLbo{x-h-GoSqF&l`{7YW^Da!vk;|4W!jiHv7 z=%WD^TX1Xfy`;ZrCj0P&Vxq9A4D2^Fht5&kt!ia+%UTG)t8S(G)9g)Ex-=aZ84>H` z-3IWGmI?ps7w>!bS;`@ON2-@@)U{02s_3K5)cedJ%zca}0YQVMWHSWIsBsw1lb+n= zJiVe+g?KVSf~+<&=SaR~3K@bV_sUg=_u2tDTpN20)*JQWN`9Rtx`TT2#t|kta>jejXIB^JEPW#p7 zYA)5-+ID=}xHIPT_%NOX@TMrhVlEvc%{%s9I^CP}e-r3@x<%^8a)611*;i1(PL42a zIQishjYxUqk{n{P_9juXZZ;kOy+X16fWz zrn3DgkzHBLkP4cCQ!mT}8bQ4z|CyGkGs(!LkMUb3f<|YP)r3a-a1~WcAD$DA=`~ zc}IXJ>xan9&HM)Q$|y|EF7}`7g|0l5!V9DGy=gQ}gQsg<98K=AfKAuWsIQJExeuho zi^i^Ka2Ezbu9geBeCmTZof4Sw!d)d&O#y`ca730_lk{e*>vmQb0zamq9P~}5O8O*- zTf2GO|C_izraZDONPla2Z*%3|*^-L-=Xm-0Hhhj)hv2wxf8eJ%f6Ke`moKg^uF1HY zvl8oI234EGYZWRHCTo$Cb;fb%BeWc`b;$#;sZV?G z)UV|U85|JI2COpe*rc}Jq0R=Rk6kV`^slTYj`)9%%XE}eN2F~q;VYsJl7HF6%dnj? zxF1K`J?+&_bw8{hY)j;cIeCetJ&w*j#q59YeP;s%wa}me_^bqShT%G$U`Zu=p2R0& z01lC#uA)Iy&}Ui6B5bPnGS(0D{2q#3R=GV^kjg8D1>T)kw<|Ia&<2UKha+2q(B&I@ z2W|rg3}^#XqhZARd%7v*4MF-0XH2od3D8#al;GIdPHTh@G2}}a)nJge8l)VcELfK- zmJEIU0$Ho9PCm3)yofBvd~2RIiKu0cOOwHrY+Kt=tEBv}-G%oexF3rq7WdrS%nd{ZE!w8MVse-^uuqWX^MIo7F!z!*1GjjuAnU-gS!*QpJSVE|1 z4zX)d87JcgM(w>Wk3L0&z~Xtejq4Futn=2$&hh$qYY=?nB1elDd7VP7jP<1tCV3~8 zpF?-(xl-19*v15<`!hX=H3k4D$)PXDGL!kNt|SAT%VnjEp~79nvlj&ws-{DPOswiO zgNe>m8K86ob%uJPe7~&gsr0&VenZO)ZbUY|YDwk-@@M4X=H6Bo-seN+9govtJ}hRs zqRYS7(-epPc0yK(%Ne>#^dr@n?W1R|p;=YAPIRP6M?5cfw!px0@G3?NgGG;JCVr={ZuXn4$vP91DNGtK6zu4`> z!px8%Wt(Mj=U9Wm=WNn5RArEH;nZbQ#AR<0x^&Vl3m#EC!d^ULqyJfR&-8RlJ7H;R za6KXU=j*MRGf}F250fkl-Mh&h~M>< z^jy1E;OrAWUcDTk&ci3VD8DU9H0<)G$_Q)PZ0sMumcyozY)G53+XUWF4<@rPkEzy z@yBL-jHb139FgCfF>CggFldPx%aH==}+HZ*$V9pFKQDUOvSQu_@8-}x6V*6NI|VYmM-Gi z2MKgThtBt#aNnYD1(lLV!BjiH$%#rGyyXA>LpBN#j(bA&V2zx&rao5EWH|#A@MTi6 zE7^t^@Z=~VvQhV7ho!g$gd>B`ke2%=8iak=p>zcKohW|#l(Qe9jH5IAF&})1TSU%y zhb^4X-Uo6fjt63f+YBG#+xF`Um9y_kqAYUZ8+jtxw-dgvQJ~K+kVQvF zlU3B{mynTGP+nce2S<4ZTKapsW?}9-NR1~X(eAm{_bWreL+kH;)!!rrj?%7o2fO^R zv*Z}2o($z^2!c!R71;`;6pO+pTdJ@;!PS_``PK4U;{b zIV+*g>*uK3A#SUxNRQlJQ{6{3-_PY9^#Z(27P}=S5c~yxeXlG#5RtRUD1YTJCNA>S zibPf&UFI*mjlYV%*rzL9{Q2?pu2fIfFPUXNV#wa*@h&-nga%-hobC4(^&qO1gjIvSX!@>7p_}ma&O>4<3A*iY{uF8 zk+jH&_9)ixU7}EC(Ex+t;N>n!qYN-}!qOgrK`!9wu+=NQ+9PM$1ItK{yTLh9Y~o5q zX2j;7ZKFGhGgM2cn*KhrxYG^AT$$HO6 zcKj(Q--&}M;O1jk+T^>o6Ky@6@ZcqLgZv#u60=s^Np35yl)6l7Zd_6Lac0D+l%zW2ZPWBShaW^@Oez3CIB9lD<1)gzKlAlK& zsYGd;%AFA@rqJ+1dDprRIgJkYGdNkPhFekE`Bv>!dCf3lXQMwsd@GYu&DUjY@$`yC zu7_-N<*x9eN)2vtuU6%rQ6hSjQCP2>zC6j2N_+%s?3 z?jY7eh@BI`G9drqn zbZ-OnX2SN2tdV-QQxvn*s?vd2;D(9bIPUdC3> z)S_^Uj6q!_=sO73pGTK0gOirUx3w;1*BnT9op1u}0~@|?b3SOv$7{$btBj~vK>;3i zYE>3)@u4_`IEC9fv}H#5Q};34ExNFFGCfPtM~4d}-THYtbQKs2G;OOHJG1x;jkXpP z|BnEy6KcZqYc?~}a4b6CVskJJtD+tllk<^6BVj)3(xf%V4GXhrq@l<`i$?G#9LRr^+t>}TY|&pIi{KB$EO<4Ee^a7wWoPVt*YgH003qwF=*g)>~z&=T}2*C&TS(YtucVxSc z6qdCf0A#X3Ou-uRcbL2JCt)g$%t6+z9!WZkn_geQsp+xF(wv2dtaQUP>#K6Gl(kO2 zfNCd}*e@eQvNuEM@V_#XGYKw#oWXGXSpofYpd+d6ywx}>2TU49=&BTQ;r{2X$ zO&Ix6ZVPA$OsmOP>T1RumBCN0aGYH>RdH&i*Su}|+C1J=&PY_LP0jt-C%d)@KD!ur zoNY3a;)HfkN@!jAxt=x8c6sUv9nTB5tFwyTAJfY=A@o~}Jrr?WXA4Y2b_}T0Kv{RT zb2!G?vHcPm-TDomr9f7fUPv}&F2^hDHdiIMxjz}7b3${cH!qZ z+zGKi0@Hm;10Ui$+oH!W_@GS+7IwwxCaY#|L5@CEvJA83veJ^y`pKA|`N+lW%3j`0 zg`Z5dsSiIHsARYdKf*zSNcKKqET+hTvr3wmBZ|(p-|dX8{RF8?;+m8Jx#s72qI({f zS9I_cv3?~Q`P%qrY1pAYdNU}Sx94Gte~A{w`W1Nzf$!(w%_$6uXryY1SKu7>qFZKO zD?leOq=0OHmx=5Ds4mNL8tTw3&_yp@Pyb}E0b-DBfRTYtzuyeI@!+>R!H>AEjpMGjMjbt7XPeR;cG^BqVK#&1Pu|(&92MofAju{-?_CS6 z%#=WZSR3DV)dW2_I#P_|)HGB#gm?)*)6Vzk)+%faKHIVI&%tw+F+?X(+q5&7lkbKp zN>XfZHOcgS1DL&U>@jx?Ta{-W2W59f__6 zeWHw^n9ymSjny3*NwS!wtL0U0UfqeV%g(_)@mC!_Lg@EPJS-1Puk z>ZESgcSHHkel!j( z{yvL>=Ym}U7c*&5k8)jMbF=jSGAc4s)0_ts|7GUnqH@MST6NKFzvTX9g>XEJ0Qer~ zS?|5K`pfC-FG2?3Q1e&-pj5U0$r1~%r7VEkek|Y-uFK7pme$eJ^Y@%p2dH_~fPfA- zE{SZD#z@n2Q^v^wlXTx>{cHF_%>h87kp3o0A1XST2Ao|3YYIA%oNk0hi`{9w9nDZL zPSZ>%NQXS|Zi#)eA6DE_r#H_-OjENv^#m$pRh$d;S3;eh&C)Gw3H(hH`IugNp}-O5 zSR$mgKA3)|ro6FFrR!bmEqvxWjxl4Z8X8?{*0$hJm=0$*u7=A}u3@9-UY3*>CykDF zhRKM>V+;W|eL>Et{Ox8D;{HAFI9CGJz+;74tmhku&FysIhTbq6G6!G)&v~uH3R!il z+~v!1UOTj4#e&cvLd|xZ6hHz2HGjmB$&0h7`?te@HG|r0Z0uPB)Izk}%rVf{;Qq}@FsR;@FFYxKeS&#TFZzll_%^2ymJSUY?RGBe3Ge`7pPiPrV$uTuT0M_ejy zWF+%V-VEQ7t@@3+1*+MQ>bsX;8MOG-U0{k~66tHEh|doAb-~W>#blY$9lH$o0^hP0 zSUK78j+FM~#`eA0FE-0FrcTLbwYlX)|S_xm=G&K#u`r ztAiFJhj30U)o;js{Qpu13O@WFb$|qaT&ZfU&B4y(V8SvBl+cCyX;{R~<4A~|JM2;n z&`)?5O0N%6H56908Qfyz6Q9mlrfj}6(hsF_f66v;**J&UkR7?-SX--Yi)#KVjjUE; z3leY6LXgRkUyEmzvPGpQF$B9eQ(8~2KVLSM+3BROcERY@;EW3c<};wWk}iL5dg%PjidhE!BktU;cpc6%aQrsH2~9oIV{XSfpWRBE!@H`MuGn&j zxw8IbG5uIWZY*=3+nII@xQ)|>?yN$7<7=-B`E||N3dH3^G+%U9N1MdD?(8tY0~ipx z51Oo6jIQN9bz&Q;lDi)t*z$Mq-By^fDS#ybwr7-@zl*g`>TSt|pFJy(h-XL#ABU(Y zkY5l0lRRzr^s1ZK3(INRsRkso`3!E4x|1Py?nogoNi0z?P1gUoxJki;NP~{78t#X# z%hR3fNA-$gv=jAG*e|dv!`r+6Db>=A%QxInJO>m9Ou;pR6dsW-mHJxt8fBHtOIHkvJeWKb&&n?5d3PlwEK z5LR3n3S=br3fC#tjcYhH&5AfPI9Wg&J*W(?Fo$bvf~fZ}J2c^k>&n#GSE=g=`$GA> zE9C3fkgo!BrKidfj5RFC%WftP>D|&;di>=BV?xTTsKw6Pt~I|GNBS5F7q$vy5Kf5m z^Q-;K#)aJJ-!f3E;;hmDPmN149AEp~qNByfI6OG^Xl zT9J?5zkiQ%-TeOlm&(@UfSG9`$?R9N#QtDj%z|@6>vV;uv%H3qVLgBmI&n^X0=7&N z@)GCb-DTgK=n}=lYl^!p`(vrm|aTS<-{SK5^9;A!0xd z>%nZ=*P|&>f(w{`1EX4~a&eu0{o3#X)Ifvz68vQ8po(v%sv1MCfns+3ydd2z6wG=! zTbo3-{^@WB-LXEh=2|!vq#-pSsn}4-g7n7>1+Cq8DR7~15gLVtTUE{8HfJrRnqrt7 zk?e%+8e6rRh=r`6eYulcSk{r{{FRt4+WrDbV%N+4_jSP#2xmh1Pi16OV{QDHtX|a& z&TX6IjlDrrMtyKSZljqS~SWII`nWJ@Nk zz}&4~1_HJ(roYWasO@U^km4GH(2ocH&cD9*3VD22_UvG`)|oNz?76B~fPVY&dB?Po zKjE|YayJ3`)pG!e5YWAumFF+Oj=7}OTk9a?*}ZDJD9@N5f|a!n`7rm{;te&j2pMVh zr28kYoymQ&M&&#s*EeuD=~hDe`-t@)gm|Hu{&UmyX@`^76E-HS$L78AJY$mku?Bjn zAFg60l?pPd`yCY;+)GbA>4v7t&xa2pKkYH{Cn8bb`cWuR;)GPq?7G6NJY7cr?dM>x z4GT!Lig|4>z_Sdm4~4}XMcMRz1F4u;RwI48g02G!t{Az-IR~TV6LDxHR&{>p(R$T9 z3@iCHrAYib3n$7X)>DN*ciwzW3R=OK#8Z^ns&B|tWqPjS%dhF0^&a>vglY(1&-lvA zWH8mUuGg`L@&|_R#i^7IqsYMki z%|w3!$~O@KxA5!yZvg1DpXH8_?aiWcH&v@lWu$?orbYREli;i|SY<5YE38V6d4a*L zbW_B@euifOtm&GfQCRfcdgz}a)%sg`H*r^II}993@0B^p&OrK>@|85emfTeJE)WBq z-_8Sz9j6Ldz%SG;A>~X9N$z-!)HOwO3WT(W!c6phPWs+|`Z{(*?V5Uy9uY2dGbF5i zVjxwxMelQ{F_!cDabzIzW(vIO3d4Yzd7sSUU9DSwrQ%QSlR>_Qv#WA=czWi~FqA56 zKdA@PlA9*7-ip?)pnR=*L+*>jll^0Mc1CJM{3b!vc{bzuqQo}n%iHs-3QMDWv?!%g zX4&N%wnM2_@E0K~hK*hh(Jq~yYIaiSbMTs!Vbrk(qCsp3$RpPI^@nqtKQq3#C7b~( z{i2^JMu}<(Jar)ixv6}%4Flrt(mU45*hyP>`91Pew@meW4iYa(;8{0*ktm!q#~K+g z-Z&x|5}{0am+o(@Av+_IKtCMBIT6Mr{dt&Nd8-jqzAbR6G4M>J40_EgV`^X3a~)B% zXumFKIt9_t(8aX)cvLackdkPR&wl^b3$J>wnS9F5`+v)yrV?iNi}s*mmszGHJ^AxD z29ZnTaHbv&EvE17swH%EW#tYu=WZ^&e0aHf8z|w$^*(#denFo0VfSrP5DZp)awGJ7 zjBr$pev9w>7Fu#8EU(x{j6LF(&;iGns++GYK*&nf`6tbl)QPO}HsQ|V#LZs`aOIGt z+ue2AuvE?oC#a5&c-Y8bw-Ze_yoGvP0`;!#(hc=1Bt6ROIWp`IH)tOy!L2%XX7+A) z#mSQuUKDE>tqMwzh;rw@hDiM(q0_@siy>eAqMxQ=Y#cBLyiGZpRLB zmh(qI3oJ(jchzQWsYHUWV(Ho9d& zQ(Ti@pseJfMooO0vMM|6PL~4|ZQW{}W@OdKb@s$hh!iI1Gg`W+hY}i~#{0)zLAzkk zHUrwh*EhUaEV08n+I5;q7C_W%MgKZ57f5qlqg^OHrbu+8k&-`jKh0LV_P`+{IjJQfOOcyoHV^k9a^%nG z&Iw{9FxomgzR%$|Yv^o7g$A;{KLOtM+~7v$l?a8#OekjI!8GKeSckkX96}y$es$xr zO}EoNc6#N$yQ}t9?TQ|bCwi~}r07Y9o^g z*Ql;&$0wjb)%#pAV7p2A!+PgwUe9J{^$e{!?o0gxFut}quTQSj)?`-1Mlkv1Ess9R zO;)_ZGCu6YK7@~w)RraYIX|CO$;VtI4xikl z^9z?St)I{NBndCgLEnK#UWA4P$5hovNW1E)c=kzIUa# z9J}&Bfz=0n#ndUe&U$0qjh$ir($<}niVmqxr?qQ(DZHka?&S~_lUgV;G+pg!C7VgI zR=9M+C%5TtK)$kh{H?Pp%ClbLQeRk6yO3H0&|GXC0gIR5zZ5i?AW}NYSBDP6J*E*M z>|FF$w@G<-+7WQmupA0fP8hq`LZIS|?Jara7}E%W`IAaQl9HrtCb)Q@D(RjHzx^Wa zJTggnzPse!D;`vXHfmXvflh(m4hSr0!Yhj?zE_Mw#L{trb+b(3g!Wv{_shiTi@TQ6WF?x zn)ZeNu!?5Kxaq$Sc>#FHo^_W{thd2|y9xETWIv~$g^-Xn+f_N( zmauBr2>j>g^tNm)KJ{W+!v6^5-m7f67A7SmEX({mSva1>{&qe{``&S3_>g~-kK)hQTH!(4RRI`%#@ndqx_Q$@9FX;Z)`YjG1lD~$5h+I_W@=`DM+JwNYo79 zKRPe&Lm?nNnGu=5hxPgOVn!bS@~<_^KvY#}0%^)uEmPC1`dhx&`I;2~vz`qZ&v~yg zV@46j#QjpJ?NAoL&{6d)__>e)9EJR;sOZfhp25fSg&kl@Q|&RqbC;WYcP&7a{qx~e zwM}(Emk0gQ006TjpnT1$t&8iQ%)VF2_`OyB?OT$%QX38ULje*JTs`eS6T>kb zHlz~hZdZ0pDC5~Om_2OTD=bNuBQ53{7V%f};o&`YK7TDwUiUUBsu&((x0BEBJ2a#2 z>)S8@(1z*9`FOeCOna{N0Om>~bS)w?5Wr&Ug{CG1(em5U$o-oly>xce?<3d#`e+u8 zYC z6#^We)94hB`)5Eif6M@0%6zB%xDpYq)e$b&%_v%vy@ZBWm%4p{%u48%Ub+7A{c8r* zK2-*=-xyo%+v2qb)fzBVg48F$ylE;Z-(|XzwKUJ>5uu3Zw-paXiOJe%om0z4Nb2xj zz@&~|Dl`{ox6o`f`0HAKa{7mJ8Vqh@v0{j+Hj_J3a(!Vgi-0|pEnAXRAWOQ`VqnXo zR1Gx2gPb&3ia4=Xc{W{BE)+lO*q?OYR>kPjmyjjfTjDe<;0-GJK1=lNIOyrIZvj?6 z4!XyZhpn+26pCLTO1JByJz@$EG;eAQWRaSjVCQC=#c^mZt687vlLgGt-JR{XVM7Q?2m5ig15)^qq8% zm4k%km@03Q4p2_u!B1I%2p)nUU;#qU>q1?7e|$$V2Dy{tEg z6+Jj}RYgWb?)j#F%L`kXld9ApBFvM{_HeCZ@|Z`$NdrJ0E$O6HZO)09QoeK$bFmiU z5HG5265Sk*yWm!HGd#yCRP2F=`l-H^O?*fYE1)_{~uRZ9njSKy=_!V6s5re1O%i7q$Q+lAdS*BknX9dC^hNs z+$ia0B1(*sme>%10Rx5tV+;oTF4o8IZ~uwAyYGGP`=0Zh=bZOBlgCeZ-I_@&MrGZy ze=1CK7rd%<65^eHZ2Qf=mHe4oQK#D!MO=1;*Q1$y6_X1r?xCD7#li~DKAYdx23?jc zdY!7 zoqLNOn>KyanxfCfRi1Cd^o)#*!V!|*tKZGz1J9zDladd<=18IQ*&1DQ$?=uSDChe! zhfY75f&R?vMnb1<&^%SB^Gm-#LUvQ3#Tw&Rg7=@P%bu}$D;0p$_&#uDZRfcqWRjf? zbr`bk>UybD=dSNNLN5@(UcJ2Xr8CM|YZ`>eoyRopQA^mJ7voU4pc^uK$34%4V=rmV zO0AlYCvEMk$hP!F)T_$6XHTn98J{)JpFiLH_h9vWqTi%L;e!&cgiH+_=Zw_e&R41v zFrQ$Tr-a*;SwWM-uW4>r?|h%NWfXNzBEYwvuHLua%?{W;I;=O{AQqsOa!tiv;R4?+ zmDgD;l~NjYK~Cox2QD4&#ljtj`&johZdTFCeLPamPv*Hr&q!Hm542X%NDN$MGb##Z zEIDho3N4zw)kXpfiD2=y>1Nv(h=>RgarBH`tBTkdv&cuMO5pOccg)Ye%kJIo zd;PejH7n~K(13&zBSLr8p5ozDQFLx^#gg_(-~A7gDXt%1zQ1__zFlAbPs+F~0&b>`=`l9y?K~R6nv2y&%9WeLyGr{JE z#*P>+>-HQMdxq7<@KXw>uYQ5feGs^Q)_LY`_#dxo?3ifDjhlw1>a=|*r#kDi=L&7w zb^5M<5)NaQ0j<}T#U8#=mAfO&{`~0@SjMVjfx~2k+R75`I~Qpy4z3gi3KHK}2nn3Q zMlcBFf1F5Y5Nh7^`Ejz%Mwa8&_RIapE%&jMa`&fcmyg>`-MWO^VlCbiivoI%l|a8v z_a+-A;ePl=NvAq4JsIO?r3M{Cpe9%_*R<%URIOMsako}hRIp=S@dDl6`-A;9 z?})-M?^g>&GS%4+-RM2*)NFvqb@tU?Vj!bplmZ7W+s~C^WX9GU!W3n zHt%}Ye|Y+*;%W_`kE;1+@JGkk0TnS86`TLTo&Y^I*`{|!_b>ds1v-+1{3Bco8^4Mf&PB!dXDuRWznB)_WJd=BNbTDQ@Z~~cCfdiDAMu&rweP43}gPE zP&2ozj4xY%AeVA{&ZcCKuJmLaeNEiQ!x_GBYOsOfNH#JsuO)PyK3dl4Bx!$JyI(F3-sGz9K&8k9N>6x@F0 z>ijo!aWuO#`cb4M3%0zzF8^MS(}($3@78IBOA&9dD@oD+jR-aZw{$co$o1=A^+Tm0 z`bS#SYCQ*#(InQ>xRI96$>-IltD&3IB{O~d;R|oxg%tTRQz8E#Qa}_~=Yv?*^Yr+Y z7G-db!$1l1@~k>N(`8|j(OapZi1e^0241XVYzZ=LK^MtRX#ovScJK1@5B%?pkm*s6 zCG@P7YY0JUrtjA-?L2qjIEjCmuGSmaZY1jT;UckpZ!@nF%x`=5u;;BbF#QSqWp3kd zVuLs#_b~rT@J<+y_90*b)&<(Jdk@nPuj55UL|-O~_-#%TlNL!X9|C(L*iO{0PW}_o zjllss+{L!>9EK@B=liXKz}(Z4#q}I+o8cPV{FVs+E5}Qt0|x{XD9JQLRKgIp?o~P{ zB3P7rOaxL&OuCqD^uIes)wlO3KKJwM%*B}%TzKepK+(^{F4crlnRw=fqi~)0s8`Ul z7ch>bSrp+YA0f(=_yiAL_Ps)PO2?~NKV8@7BwWP3C&|e=pU|7+pXqFR_miJCM>u~v zcerR%Rpj7!53;Z<;n6^Ue1%v^TuhT#&zc23f#D0_OA|AaP{7yreb0ScSTs+ZIFsq`ObF91ZJdl zpJQ}5hNQw5Gg@hzDwg`!Tudr{vnr5?Z4iQls8}g<0Z|dFoaSPK5TXq@m-g^gJfI`V z+O(-~@dN3UXIO=9W{{>qRI5rsbwxPo9UF=!NhhUVWaE9ybviS9uZ5XfB?EHgYuVzi zoKI^s)qf4@^>|;g!?#S#qgT036yY=qn%~1Wn+Hv7J0wL`EQ4HwpZjbYa#6#n*uXYf zkDZ4G1;^CA$M+*E?Hl{qcoR{sc2OVPl0EkDI!$}7jXsV$cq{&(_t-LoZrL!=Hf=Ov zF0;%i5Za}vr_K;+<{KShgg5;d^e2L)(fMX90*G4WQO-Vf)Z5WKh@`{`T9=B7Z$>9i zE|CN_FKByVyasx=YcI-p;ydGpo;oH=iDGFRP!VSSnQ^`zro5f%E`FD84ZJSS^(MFi zx?oZmM_{>w+)+#M8?xcDYm7!!j?Nwh@G59=VOgArOaIe<9^LIujm5TQLqLbc{9>XM z=i!qH$HjFifNPO`MQ1CV1h|VujElQ&OE0*gb<2NtLtPsjU%K9;~P; zS~qhy&t(O-Zd-?JA&A*!Jf=TkVX*2|eBXetR>I3RT)A%I+TR2WrZP#MB@KQ<{at4y!%HkoQB;5kQtz8zLB-bNWoGEK9f5zwDiQJ`1V%>98aFhg3xw~bBje*egSpBr z?9sC#XTuKg<&gN%V#Cz0j?KbM@pAvDA>|)w7rn@dTNy7;MC`A*x_2yA0@goN|5O31M=;-V^ta~+~`b8070}IRt)G> zeS9FK8=W22$t?EITgcWB%YswCX*NmZf|M+Cu!%7vV3oUkwhUw9V;$zZfBRM(DUsE1 zCG9$z6_7A02_yakAtNFp-TXc*F$fTQLbT&>iGKQD1NSLA__yjfZ7jj7JoDBtWWwM*(23ruq@D(<4gl-qsJy_{9ePMTSDFaJi}LA%Vzf( zq0I4g(!2NJP!V6X`@zJ9WlkOet%n1gQe9=$CUJrFVJ4t3e*AZFiv8Z{(H#cOn zqM^5ftZi*mDw@bB=&vd&Dhhh9K3pCz&#a64HPBnqfK1!kvbvoQjnSq<4f7;Kn{j1I zEGZ1JgvmSt;McBW@1D&$VsEzBrWOFr)VSI9P&GNZXV!LhLVD7DU#oHp3Y56Hx${a& z)X_l%Gx4?R;k^3#q(5sQ%p|pmc=7}6Mmn$AXHZ_|rkEtZ@)>Hj>qJg`JfB%=NNH)d zRi2|5 z_lWTL&9~4(MePct4O7`~2r4!jSGphRxYEKPj5{uY}!T2tK1Fs7xnxcwb-vm^5jGUCp4 ztjZ41E<+bVXjxB|#qLVg=r&s?nvznf7kpen$o>$#1D(q0I0luGmPPPQY#|*&UZr=#(V1gMO4cvyazaQ`YEmQ z%8YA})_FN587DJPPz5g!knA<9F~ET_}N9Pi&W@nEtxH*cX>`gTTVWo4yL!?e+R%`v0yOr`#j z(480Uw6h~nT`?Om(i2=K$y=p8_tL6eKu}?{Py5q9_qhoql8SV4ds*JjKn{a8b3Fz! zq=2nIi%OYi631^?1Ys9EdGx$Gqga00p<0*JG@xCSp!1hIt`ELRIEfvy5FiR2{bnB1 zbNyfIH=F}x`Iv-^JEDlMZlf`MYAGV_;Z^G<8TgEgUKhJmKFaK*`JnwUM2%u;>FkrR z^PR7)*aa3@U7k+-mVBdq@S$x4ILk@=Mu)hynC21HeKB$oI9(V(NGK_}&Bezjnk*Bv zyY(aCBek5qdi^;Nck=uBq=q3s`TRE~RXeQF0I=)OfW(R4Xik10qzIm=HUb~Q3Bt=r z>mT_Pn4uq{;AwlX{0jnuXOQb**}mV#yq0DnrNw3jyqq%evzBIbGJ075eFaBx(_w$U zkoAWhhK-dqG)2w6T(bC_+{Ch!#_6f_a?f5mY*S4&xiYKn?fR8>{gvxF03H6+H%2YM-g$tJS-v7?@qm$G4)wMHyoy{ zrGM*ztH#b$TGC30GDpOqn)U^`KNZkW5l9A2$T87x#ut2ZTj_6Z3gwDFUBpxirL+^ChZng zyRqTc`4g=|yq<)wnFy6K2b%e5&vozQ=QdjV_gjMozg#)K$TBczS-@N;b4u65c{2w? z9PbXo9jr+>9e>vEbpL}_ar>1W3_n7}Kug(;L4l$qW<{yK3T z`ptCMSD(<{gh`W57LRxQhn@0Vjfb3_J_IpuWVu~$e7ekTZpqB|gk;>?20m7R*LCeSzt|k>e#AWMmv!PhNgD*~gd^nWHFL zoM2d!IfIhc%91v3qZ+oU ziZdWL$6pRy(_t2t#CP@?!GsX8oO99}g8F?Dp$nyHU_rEB{iYG2t8|%BAa{pX5h9sSCf5MZ^OHrq`-ymv$I#Ngsc6I;)$CQUEuPTqDN!4iGABG~SC!Kjdq;KQ zecWi}nLTAUkNV3?lvCGiQbW7n&0*S=jD%bKEZ7NPXPSDD-jzn9;)jKww2!5(M_=SE zT%Lpk9%~G$KW?T9p+9UWDCoE+&CcILTBA4j#&%21m$G!J;?t)2r{iU|HiHENTqINPRQ{mi%H#4kjgGf+^y zj43}pIwE^!p(CLUxlHIP=p%HUd}4i*mG0E-DZbQZSuVl5G;wBC!#&f?!6}5mP{};m ztAwZ>Cb4TpllN>F={-V&DI<*A2FG@=@;*$wugHPW{beZK_k!1E3pBU9sTTYSah|>} zWTQ{CvR8JYsX17{S*LxLp3l8Hkpx#bC9Ksq(Y6Lt_l}Fayxyu9*Kr2GR+led#{8fQ z^>({MnOx|ue?a0~Z?Ib5V|&@O(KMXkR)DRXaS_;5*T#2-Oee3Ev_r+8yZJyMah{9) z3D1Vt`Zsmjjn6!kJT`f3^2Bd^@wS>#NW>-?W?uK>JADqidSfzS?)e!36w1)d%I2*< zYC)v_?&ErjnPy|whifHHmGY>Feli2<%~!Oq3mSS5=aA?CkG&ZRuIYst$|$}@_OAsR zH1*HE?b&D~Q$fEjQYBitdi3r4Mi6-xBv#HCRv4Kb^gXQhPUn0t$;Od8Rxx*w+DBRJ zOfLjdvrQnQ>XcnBC@Sh|NSNMQa7~YPI^gK3BtT!MNvmYs=WwKDnOKmS=$!6d!5u<^ zxlEeH1s6^bu?Yzb#gKz_i?BfAb1LeBod0K2C7*_6IdWI(MH`88e8oHfX9;&i7Jaq} zCgOFk;8Kxz(l-t@u&8QujKWM$DY8N@H*G#q&zW z8R=8alpcCK1P;UY;4Nh%;c1-oI+N}Dfm5#xk;v~AEUw58eY~}PX341);kdo=_=)x_ zr%)nnVkwS%9g`k9h#T=3-fA>S?PS|L}WOWl|br zzEivn8ITH z*43{29CU(>Y!j;4n0cbaZ9bzApJeJyuO7A@XDFUIJJWaAmLr1{bfOrIdg=iceOmjQ zlBT_R#EyEMjP5ut15Qmz$*ZUsyw~wdVN}PxG+EM^mA(~8J~{LT)6JO~2ZR7f;$kNM z3Sk7)JWgut?a856q?6FxMR+R1o(SMH<_F%acFwU%^@}Z_zxfCgPr=&<3`wy>d@mVbbeR`3jcH&j?et zUq3+`Qp9JScm1tDCfP1!mgRTkm2>2)KVOAw0$Rd4$|i{5mJ;I{RSvC;+l%QwtfBPc zZC}}z%>5QF57)3Uz%Fs9fBzFwDs})0tU9O2sF>dZK`sC;nz~Jyr333}X=zowy+uQc z9nQ23r=&2#fbxpUO2JsaKp+8_ETB74^INL-Tf8Wcx|kfz1i1ekYk6(2e}XaKhrW>7 zsq&${z3R)TraB7xJF;P6Vb-f(D*iA4Iv*x^lZ^eU9~d~7MRPCmQ*^I$+fiZp3Nd!c zi!N>d681HsKsgs0#8V#VcE7SpUJ&9^V{L8e!7%jV_E5pw-n%@?2VS}}24tY<$gp#A z`hD8}2Ab?91%x`#LCcmN7ty8Rc5troMu2tqmW~vA9e{1u#uU$NW4U8PZPW-QeC{(V zq4R4kcyzI`a?^-=n*877g6c~HyMlus`;HA*SkO?eT7i&P^e~xsywkuM?|`#3M?2Zp z+w7pq=~aEZ6|yK{WEs+G_a`g=0F&2H+x*E(O~k*PFQE3!o#ek{pF4e+7~;OZ zA~M8N9KPjQ(2O&if3@jh{q5`RiCtJ%?SAA&qFGI)pG7)ziPPH~cn$aZRyp&Gph^Zc z5p(Z5AXoWM|0AOdFa#C|$ILBU%C#GNUa=WQ$+~ZcLBXU?f!#Q?M(ry318Rr2H73xm zP%H_H#HkGbZrr3I8Wnp@a@($Jb%5}8Gt@gC zvMXOkn&DsU`7CY5&LgB}0G4((r=x~^kNdY4?|kXmg0b#JO)LkXuWkF`Zoy7~Zmr5A z%>-*(>$|aCyHNQJQtjJb`b6F;>C785nMpi{LLP6g3Wo_8&b|B!JEOnW`6n?3=!hR3 z2hZ*eQD)4mtsPTW21Mx~G7{Q6d(?HSt%nC_C2`&L)AH%daip@C@hY{S0>=OGKtNU8 z4)_2O)TCNw(qMs09x^GQaG(lnHAkBr)WcFedpzf=yfif2^ICP3D0<_F7TvL{IEIa( zC`P|vlgL27`>x`LBj&a(4=>!SS)Ye?HmAzaun+$~#^Y#{HPh+rc6myt`V(-xC(ls4 z&B?jWAn9GQwKD!U8A6*0yu|wBqsfGzTQY~p2Sar|0>qUv#$;c2{%-7;o@mhYO(q$t z2kT&lp$m>NL7_|wDhjciH^!11g}X8PUV=FmbbgqC(=p>M;dP&ugrCBXgMd@A06BG$ z#*6usj+&a94NzR^4%j8+_u2ORtSs5esw(k$m6SHS2O1iYfZVH!kx_CpphD_?R73FO zi9iVa*F@9S0Yh{9#I}tb8En{C#Tfgogw1|QXxs25 z3Tcxg`*+0Rsi#YTIMkEA0yNLhPgn`S3b2qd&5u$;yZKeAy9TWohJ<+Z8hyIsgfy|- zV(Q4)Cm~I#cq(Ra91rBMA~3LCj(g>8{^TwGJ_$w5z5&6WxmoIh$B%(pJgf>of>haU z+PpQSmjCYE=hVH4+CaS;(rgR2pV#=KiJ&4m#*`r^61Jq5LY$pnt@UnoUEoTDX|gm& zXD>fLe1L0rZL;Yn1yqk<@Rr#gF%wX70$r5wRGvxg?!iMH1T=%Oi1%Zp`y9Q#pN%H{vH~E=kmz-WUJ`bIj%0Zw#Z-bXrd`EGjvrQ5Mb!qyT4}pXb>6V;vbVyl-rJzx$5g z%+a4{@F=8Ulb#M3qY0Z2J=_uT+eWOtU)ChzA?tCF-MZqm{B$zhYKOisLv5`-qGD|7$)T9_>a++)&v2iy3$7r_4~WR(Gzgkr7^e<9k2;8u zcsU4H%lf_2GF9k)U!d6xa^4wT$lqT5GGWhS+(XEv+=RW)Mj>HoE5JIoByI&@Yl4G% z_;wEVQ{B<;bgeg~biefuKcZa4SCgKt>rU zNtbm*snr%nf-i9sXC3|_nG#y-TD6qNeIqC@HS}9hVAF?T4zK%& z^ddB;XHSZPjoIl+GZ^o2tW*uWnOwGi}K`mV6k|k}7iwKOnIVYj3um8uH zawn4;b?OM^S1YX{Q3CQUKnGudD`%IKoC+AzSzXoV=fSh_yI~MlW%fhq=AR$>sg1e1 z6CCE9m!z)lcDkn*nE3JFZe~L)BLl5bfU)v@XOysh>&Hu zh1nP8B4zwHFvOjdVhp55y@bS0M$q%=D4Q`$H!nOa zekk+!f?H^u3oA$a3D>R>!Fs1xmu``tcbOC$NC6W10abGgUhS^I`$`|RHQstJC>En^ z1i*J~8s`J1WX0#arXNEDPlR69GSHvUDt5#blm^+;KBWj*FD$RlWMT@03)=6pKYjlkIuCr`)G>3sol$ zUDq|g7Q@#`hlr{Z*JN*{KD~AGdiZN{oPnI$be^%e!TFyAV`(~I2{(&A$Io1!~4U~)!-WNgZsp`=gimD^ngV>>C&1U}z;MZxf`rQBs$ z=i`N9?R0|LJ`|KQmRplTg6wVK4oscCr|wxyn#KEJ!^vvkCit+?2|B;=>il>9HI72( zaTDm{0dzlyTci zP{Q6SJfdE8n1d;jpIu`Afno7OsS0=D!xf+b&*5un{nS`gF{)~Rdz#QX_*e=CMzZAb^~*AsWt)bJ z4f$6NW8tsFzJv ztrCMC^TCW7T9h6?d1l86F@2>}D$7p#_DE$PS&bLODAeh|6;u@B|FKDD&*dE#xlSY~ z&-m@pf%8V6pF?8S3tbW#l^?mPQnSD+1y}Mt^EBbz<4@-o=I56HI%e1qu?vEKg9>dA z#2lTs5?QMY8xgST*fIHeb&*L`C`=##Z9pm>C#s{b*^?}xx#rLEa;`B_}V8Ux; zN53wt5B&I(!+MR1)GNDcxqhHi@r z&4M0NkrQ#WE>abO9DNJ;l$IJPZ$eRo+Bn*nMt?nM8Mll}BO>47Ii~tb(d4OLUjn|> z{Ro@hbG~LxwjmWdj;QGl_L+T11@$2j~qdU;A~*)7qiDJNPj} z!tyentOikSDqzu^mz2a?CRlUb=Ba!L1hdVxRVzh$6kX@~%mjR!To{B_ezfHOJ<3Vl z+z%rua&Xl;?%E|qu59`248x+F9)~clDR|P2DO$bC(g)8RKWjOD{+L;C@aH1=kw;jT zo^3;FU8yIT`=9p0#V%Q7e^KDS^{9uQ-C0`s+)BUBbX35!w8lC8bJ{;=_t>%OnxgiR zn4O3DW|J0~oIcy*zGTGJ}iT@v+RL0%U>vbdG+q9$P!Py z_T^ubMH1wl-@0(@k@UV z@0El^gVV4X+{OLZr07{Lx!;!nFSf|`AUcC9YPjLeHOjGI_GYi_5m*zlKls7rA1Ksz zpN)XA$4w;**ZXfBpBL=6+1;YeNtXF_zo!P{^LIopR4tT;S?qhno7JjcHq+c17lmHE zPgwx;llk{?8j~R!Pn_65#Lto`QYw_Y>c5xA)7p{Sj~shjMc_*T&*T*#OXUvIB6|dI)iq9o@s2%IjEpE zp%$jyH~zf1eDFEtL5|&Avy-s<3k3Lwx@)j+&GPmqU3BkkiZH(n>E-)Z#1!Gj1skMK z+!~7;~m8}&SXnfJdWQmae+nX zu2NLNqE<0Yt0I_CFyT#0zAPA@8m(7zfYz&iqL5N>Z;>BxZ8S79X1*TAJ8q1y<#19^ zvjcdN8D$_uDy60JDCF6Y_K4fw2wcY4@gx>f6UsKsA$uNr@mNTc>RtVkVCMDd6mR`w z%judPuH`rGma5IKyOk4|G)m6Pn#l$f`}DrvENd`KF*jNASND>EMqUDMj|~ixx@N#X z?yVEi>uB;{ug6n;O|bQ-iHHc9Y=%4?+QX4Z3@MXY zvb-A03^(EturfEHAr+el>Jz#HFJPc+uCzm)b`CDVYlAlEUI!$Cy_4GQq(h2eQ|1gRg8Ja%|N9ms-E2b-UA??N!)EMKXH*0Q%c>2=C~Azei|xh zl|@-F-E!5s;bc&qNRE4TVfuTCnS7*G5=PE#mNk1YcF`QYDc zn1oUd_9D#m^Bf~FXbI)U1>B@UMVbRmke$-0R5>qfZ!%?(YTwuv(yBRcs|$Q8t!oXm z?^<9i6fkbu($N6zZYq4!_5&Pi`?86%$PBKV%1*%ytCkS#8o5^UsdqWWrVpR%f?IzA zdWY0*grIH=VP98-7I5t*?K~W~QKXp;oBCt8@A7#TN$c_IyQCg3ioo+bf?|?usITjn z4vb*qi_0WLI8Bf$GD;xF&*d<@6yu?vy^U&fhQjZd|gJFgrx2%znC;?U_eGK)zy^oQB+^EAhv705!7~hzv(s#n?N7J zPy9lz$2?5|@S#7veHjj5K>Jr4u95Eg+u6%VdR7e~qOeA?*Vb1MHj;RT=u0eT1T+~|%uC^$lt;`{cYUgx5-z3;y@w$KY6KP_uKDexSp zLK(z5yT|gR_rjn3DF>hnks>9^m+~%bMO5kVmwehTy=TAceDC)l@G^-6VJg0j+(VhW zWV+pAXxU924&4jx8_9DV%_bV(5o*K`U}7^Rw~JXzpY)NJ_228TCmi5W63R~dB04{s zOp?rVnNBgy%JiHmfD2q5s}LUF{Pp%_I|s8PzVrPia13ZC!BFZ~5VIqWqtwpA5LE92GCbDLJ<_MmrDK|*tyJ=4LwTr*J;nS$= zfGf&l$&2->`aZ&~+XMKg%AoC~!S=qBzlZ6xd?y~}BDq8R>)%iLo2W#N#b49@YqKRx zGhx5}@7U)nDft8XE5lm=oGEh@E@G|;8>+9rEB2{FRJscA1CeP$*s@vwxa7@q2uwxr2|e zNR5EY7J#N*T-k0WD&HT!-#2OECTo+gJiWd1@f0O)TwyVaKF@VqZRi~Pr^)Ja(>bNI zueHj6&Q*wPJo4WmU^5e3hFmi&%Fh*MW}Pd6!3Nl7}NZypi2UM^!h6 z`|&q@-=){vZ1?h#DldZK{4?{(@Sh1<<1!Ysfc?@h82al5YloH|ZMUB*AsDV73V_Sx zUxq47>e3I@p1iikj~6nYT5?i%WV&=oPy93p{^w;)0$}acr~1Rtxjr{X#<>#%-wREw zG7qF@rE)HvDtb}$`+ER3YagMPVQkrV;&dE@zFL;yOv{SZ`-UeGc6s)8gLlpR`Rjs4 zBWPybMtMatKm|&{zvo-l$?>s`<4Yy{I-G87br`{ihRxV)4MJKfw2ZV?#|*V_-#Eta z&#X<{i_h0D`hAf-xyD(&c1i*yzRDzvd5gD3Mj@X3xpFk}3xTeJO-FSAlLJRMCT9DZ9kA%$-{t|p6LZq;?+ zx;1#*uw~M>Y#o$B{Jpj8Z)h+-MP9m8rd#t>cwV}FxNxrrRpL^0e)O%0V_MgRc-cRD z#l+q-Y4Qfw;GUD>T@?`nacoe%&K?R0cLApp4q44El0+!&`t}sA(GCBZ`BVqbB#9p- z&-|Cj>{hleHGw(`z*)Ca%XMBz_*;rekwU7beR32xgMYu{H97SM4<5`-&Fo3&Ipf^jI1aT6!uB2o&H&25K&*(u}rAWNTKDz@4Jgfcjj(}wC zgMjT-9Uw0gzrmvJ>|7EP6EjlhYC*{$ct2MuQWq#;+%NrkxBG=gA4U>rg*WTEZd=)032!I^t7o9x_RQIt3oIh(71R%E-h{KgSaR2_COSnk6J^wm@tVtyUp%=Z3~Hy zj?RvYqlNs69vBNyp)ih0!BGs6&hi+q%>pvsA3tj7h4x!qeooG({Wu3t9XY4y-~dAh z@42)98J$L;TG(rQ!fx+ZfOxl->T-c@^7$-wUbDuLm#}dQNDGh(TN`un^=Ojzy=Gw| zGoAZE>eKmnuM*pXiXRnNwAh0X&Gq6z3$5YL;W_I~yS`gM1;NT2&J4FlSoTEIZ{B1%x%Gc8GRnb65{Fel0AlMju~J!0n-~T02V%g8&p3*i!h1{4On24 zHf;R|_^|+dT(U*8cqtGy<47Gz@Bdc~B5>ON0l@uE{MqDGo&u}{w%vu|AGoo=h~-7p9F3v^?{ zRfp}$hf^k&4|G|gBs3dsfAkI>1ITgkNHCK#^5O6ShC+APRa{x-q4vJw>SR?_@Wz&y z$c9tMzDVf+z*E%JG$+QEcS1-p-erd$EG}(NV1jmswWdV7s%Oyu5lUL2Fm=l3Beliq zEC47TYtSCi7|;O05epBM@H{I9HRfu!_9r}FK}+PI_WPm zIoE5kY3(8o=BX|7Mn@=*L6vJX2F*%!uhh?foA-vuw*+R_Dd+sAEccWRl)LX?LyCda zt={f<+X>Mr8RmJL1>0MaUu14Hrp_d4+^d>0a!1@-YRt#KC6D6TMW!FEH=%-+MTYC%ZyKyK>~(gxF2wmqU9x}gQFnEFf#<_ii`8=L)CW0d zm+{CsWQJ702vD#ihQPN=;i?*1YAxgaGp7}DheDSsx$Lm-7e5)dez&Syd!dKOG08~J zb3NEC-o>z3jA~^x7)xm`VQcp-4^9QSf*T3xRajF3bXR!ga!LWB9Y1|%nA0bhpw2&jX zUQV&E+i7S2u~AFksdW6CUrI4UqvZ8fwM;<;WM45BBC=_#agMIrZzDdDM@{l#9EMk_a=1B;Inn*kld0BqVDzNYA zkRi}wt)Z-14;##<+&wgsdt&fib7EDzm+Ren5g2;&u5I(g+eNUP^M$xZy9y=rjn^BE zgEW`v=y=4%C;I4cT;7>|eJR5bQirIS_oh)9a%&V&%Q(E9y0cE#VEF^lA(P)EbWpM} z*DEikcmy8^7XQd54?A17qIng;%~--=*RS&^rwSZZ3AEHeU3@HJ>FY|D6?ND>QRY}P|CNT4d35S@xF}?ycT;#5DSUZNYQELu zUOhIE&S5WQ0B^p{d64pscYVzpbu}%4l{JY+R8)!1Tuj%*V6ALy;1{lO$p^fm+*3yV zCpA5`2ZKc=J6kSYh6msEu;(n>M{|_P#T=+Vp!`#_?9k;64jyr!DukA6P|bRPUcI}B zhF(D)H^FAzxbzJ~$v=c_3QlM&5pU%+xyvv}aPlO*7c=q}AQ<9si{$2kN4kwzScot}%!Y&)8urYdN(_Mv{l_bhqH4<4b&XLt-*9|JLg{KX zPjkbo;?2hEN=P;>Em+c&_ymk=3TwKt1I)<|xS1f(rx z2IM!EF?B{>Q+Q?H{_6Y8y<7zP^P$`4Ks0IC(QKDLHy$5OF0!p`SO2U)$s!pZJAf;M zX{m43re{A9OJ9Zym9CFs#;y>YR|nizm_{3g&ZY(0%H(H^TR_!~N^H;`-A%3y=6;s> z9a>Ct>x1sAEbn}NVxgzIALHWUgt;#UwcH#7J&ar#snp;%V^0(V^k^FfHa6VzkEqqb zmaa@Z4JPr_Lp;|NJJMBG;>Qkz< zOkdWydQOy{F3Q&K(zud0$@$2U=gS?7Sa2c^Sihbcv(KoO_#wn_&AYRw%>0-0!B30G zT)PY&=)e&8oe?f^9Wkkdd~;4O0+3DG-(QCSM;4p5($@n!Eq+EMvTHeDOeSrv+g0rT z3??8zc_;9YW?#^!T-VNZEJ?cUmkw?q%!s$QGG8@!Dd0iN%nch z0q&gY@frI6|_J556RT>02l@W81yY_u}#Ab{9&fZWWK#ZNj@76rt`lgIP}$f5Q_K;-n5 z*Hh!Q;bQ&6PsT}D7alI^Qh1~M~+mwTv3dWtAjq}3Ugm2VRPn+ zG2%lfJ|!vF$UWwsW5dEXLhjAj*itbJb8eVzzc+n8eLlaxz2EbGKi}{7>-Bs-j^}f= znQxu6F@9WlUe>Cx#Et#T$LD7)(GgGbjWOnL^vJ?Zbal&_BOZO*FA9_k2ezW3cTH8( z2sD_@#%eeKijqJd1-n;NM?GoDjM5HOx*tRMAd z6+t?rk0{cA2U*q*TUn^xrMFzE43tIAgiu;W0pEqXkNme{zdzwuTV;}cvH6@7XSjy& zHjWcjs48ou&3inj>1Q)DBHL^{CiFd7OdI9phq-VgWYNkxr!=T>?;N|8#Sq@4^yCaw+*3Y_@AvMhB5{Ee z3pPO}Y2ctXO{D+ zcf0SCUn%~Srz!OOj%R4>^Mp5am#eWDMAC=XX0bz!m0CD6zFNzOphDiQC%~47y4EJ*nLi8D4lvyq;o8YD9P(yf<7+(H`ke5bVt)eI zxzGhxA&~s!jhJ)xC-sB)sUw<2!&(;AjsX8BzVcpNb-keXU##p-M82H`PgLO3v`VBI z{ndWqQVpK7GYJ)sNUrNs(YR<}(QDdos&w$^9ab z`bfYN8*-24u8m;o%Lq z?Vv_Y1wB$lPhzQn-qqK#H*ZeP&& zcH}=+9LnDnMFZwB4rb}cI1DnDWG2EEGefGw$HOA&ixcU8v<6P}_F6bxO~*}kbzuUB zF+s&Xb>n*@`M1vxay^~QgtUemi~GlmcrB!mt5S(GZ=XPO?NbWKjli%!Hd(wSA`)N# zZ)D}6fJqjBD%)QlX}iXV)b)w6bY(qY{a*k7b|nGP{I>u7Z!G{N>&#bLcqi!s}EW44H}$2V$R8v69ueIrR&CZe2=Sep-7+b^Wi-;E-Vig zDgBnf@&320V5}#3rq{B8QI0z^`##d~!<=*kpfq3rWoOv^&KGj>iY%h4;FgZ#SE^+8 zp5!6}is;uw*-B(i=6CmdFE4St3uV1;rt0pi_66p1JPTva76G~rqzB_9r}5aXwiQpB z$AGUA0e}J4p)Ie&0?iYTv_u4)%?li`Ht`}qPMmd`%S`JkO~my{pTia6IKl5TH%8=B zBR&m=v3sGLsDTX5$cgX@7L6${0LJAy*q&1gonL_e&s)5`)uo zCb~;D60}NjJ_8L6Pa)*gvHjOGi<`XRV6O>uoV;5B4gb(LxxLV7Lc+mfY?C9;C}TqT zs1`pePW8a>zB??p6x{~#;uDiwSzCgnT)=WXAyVkd+Dlbcqvl|dduzKCW#a|!LDUsKsu@I+L!*V4)- zt}+G*HeQZtyfUT(B-zQrD1hkY_zsaIjioQRjnPpsA7o4XW1@!-SJ(#^t4=)Vq9B%j zc7z+8enaJr70n-M^HIx@#io_QN71bAqzCKmSaoo~xxFWIVpCqxI?a40YDlFr=3Bh* zSmXmo;{Em>OP{!)oi6Ql&d0cKF+aM$;73&%$44t>n$$#nXp`VQoiCitgD1OFFICr2 zcNA8-whO2)ycsF?N@IIHuPW8NVJMI?oxINqV@7Bp#7$|Gr3ym#}o;HT7-loC3 z*lA>y@Yz2w!NGM()~+&(&bsd56Np#<5ApbhbN(?Yk)r|B=n;Dh&Z}Lpx`^IPYU8#J zKj(35A~V;K$9WyM=R=bXej6Eb`zX(Ayqd^UwT@i>Bt#6-Gah2m`Kl;BZy)gf6-z~I zakiEpNbbt$cu=a=#X_Hk?me%@;d&gGpj%)+8!$Q*Sv?MY6It@@wtH^AX_3riK=W4) zn3Di-db0deF{(jNLvBzypv5*){#|2WPK8OG?cfu4`Cg=vXz!pycOSkpAWz-iUH95ZRZJfy6Po51TR9Z*jU#?HRB7Mc5LMjH zrk4PWO-p^0rY*s$@68um?!FtQOFPoYyV`Vh;$#M>f|8IZ#ph74IW0#d&ZI@!q2d|y zc%rYCv#3*KDsxU@puFOo=f}?!AL?M45uxvespU*4XKbmSDn8jlZi6Ji5{_yL4Hzo< z4v|gaxuf+AIoGy&G}o})nhVS0au?X*>*%B)ZivBDQf&>r2!Z=nlMHKLLqvA;zZGOo zwLlGL@V89@$051Gy%8lTlMTgpj$J#75TliOU-?f-y@gqmt@5l^-)pJ|#7|x*q}Yst zpn|Edsi|{M-dPoe;(qu-XZ7w#sC(m|R;LCP@GIY~sZ@EG>_)U?MA>@YivOZY?A{;Q zZakE%clo8)O3-ghfZ$P;;lRDesRXffJU2?j38)~4v^`bR@8Ks(u1rkammP~O?OvAn zy5=TRe-7aM)(2wp=Bq09Cd}kGoeLp8QSyGsfx+L@+PaqN5U6(QL5R2WExlvZc zatxHf$kd?sA<|l_>yw;~sR?7v zYTR{dTH1W{cNG;=f5c-@nb*(@*5)-LmkZUL{sQNc@+I$D=R; z;?!HlGY0|YejSGV$HWaH7+oDut^;4!-@UVq$+Sp-PD zNL`m++8&F16;W@MR2IK3lPvNZ@;%sb_iq+v@uXpTp`~HoY=5O{tsQH3Q&_2DMCZW? z-0a+(oJZMHj~?n3+|C5k{rmUJDe~`o{>-s88{(Rg9Q2&EFFA0%+kHAN)Y_x(SOgww z7Q(ODn20l+3tOQh#}G#?iKIrbuQjvxYM9>#fT02))LatuAw7_VC|GQ+zy|p(rBrD z)zE8?S+g6m*#QkWG=?@Ge(k%DrbQ7gt~ekq=0AuBpwI%_cU8kpLm!dmOu0+#u&a~; zV=!H=b{~7gLN)pjI$|XSG63p|ZX%;dDuAS9iAEn>o1EO%Te#bS!4q-oc8A7Ubjv4n08r0GPEmZ4huD;f{;|v&}U=c4ia+!Uyq5^?5 zXy+8uxSr-(0e69|m=1~B^Kn3TGqAC{9f}?JZEyuo1mDQ5%RAy_Wt&JfsZC+6({{{Z zh&7t*@SknxIzZ%}I>(?=Wm3B2<=z}p3YrtLk4USf7*iTJ^0@9T@)}Tgs6R%osvtE= zNrOmTTK)|+UBT2Oa+ERHc)o}aK=YQ9kiGUO;15@$ka0d^hfz%$Ahi2~zAyvsv0 z4?k@g-{eVygTDjVy~P`vZx==hbk831;6`Rw{@39kC&O#Du~VE|SfxQ-rs{-X5pT!* z$b$z^jKq6fCNw}{m{K?!t}7Niv%w!#4hTU#=tF*P?)NR0JmQ-!5y0k?n?!OLXPhNp zAlzFTLjEQ+!~H&#T3c}N=FknQ#Kc=z2Huet;r=Id-bcr&rW=HiUhcL?2KEPGFRiTI zu;-4f9qT*~Qq~_pG)Xq)_G`8kO$()q@$EYJ%*|b*8wR)LlXJJ2w%e>GI?{hm>-O<* zQ`y}~1a(w_L>+xF8N1T_Vw|^h_ih!4C-{=ne@vXSYRQ={sNe9iSY8Q$FrpfN%AN4% z0L{c{7*O9_}LGy2M%ytyHBD<9L!yvUAr!ZeM2O* zzTh`=aw;`D|Kn_0L0F+DfKL%OtJ5JlY-uG0y(Z%j=@eGn+X^@*tZ{uZ4YSxL0j_5K zHR;r7W_ZdV+4nq@l=<#W))Sx4OyZxm%9=nXvO)Gusb4>0%E&P+P#Cg~^uzS<3Jzmv zowz!V!c8e&QdQot*r%|;_S>}(U1pwq4N90bKFwc2)(HZJncrU-^>TFpG zWVzFEBjpKhzGW)^(T`V#f&Di`J%`Kha>cjP_bp5;Y*ofe>ZrhVnF#vQQT{pWMqE81 zb|Ort-8b%7`X?SKK%Mz}uVf53$L=WvpGymL6X7&nvm?K+!b_{%*O3KGwzY4 zUoy0;c`K&8Tp+`ROv^}50olxky?qM*Rk!YW6t!>QTU%lu)y$c_ID+}n*3UI3m*;bs zG+4@f#wG|{a&HyLt!GA2NkUjWB@z-a+!TQYnrwL*BXk`7{r&$%@l<%%3_HONBIXtB zm9vcHzgWj+-e);daBS(KzYbg*px(+&X^50Xd;7=1d+{s+5pr1o~6>88TR*n-1JY?IK-V)1dS z$t3vRteN2f_cE<{r1@OtDMRMI4;LSN5mSH7E-q`Dd3%o2o~P+Put**y1H$mb5C0#X z+;5$42S)N4#F+YOnwQ>Z+>AMrOIaM~plnW1XwNQkxrSa;KTz?WqEBx9){eF}^gJ*NZJwz0Mxpr|9=0@jZd){`1~V);%KMle6NE2l#p*$R{a!_Z)3b3PYc;b+H)-K z=YFfxGm(QjCNmjX_NB80l(BEB3XzfA*k%>aS!;9Eue6#yM|9>Xp>Y`>HIz+Rpj#b6jRK8vsC$bod`fs*_l!IMXWg*xel68RznnnBxM|pn`urOU4dl1<(b6b8BZq#^f_|B=_gTFWD-^9W- zh7rZihw@41a@KbPdUYnS@4EpzBqt0&(QX6%&Mh83ti0!%GcUEr`!o0b9ZSnxfU1Bp zD2-dav@bNR-2+ewB6S<*jf#7rX*9=8i>Ek4;durlo_Qw>;zz0WOs?}O-Iv8=p4)fELi3uLS7# z#J=5MmCsRK{)s~G0Q6XZ@bT@vo!&sW8zO}A|G|H}yMa{VcFr$Y%ex4m*k0{Kg8z{& z>Dha*?n1iZHbo}Cz%)%G72Xb+jejIRd{S~od2+v?scAD{&B_z{=LbCa0CZ3)z9xZ&cJs{N2h9EP z#B;x&TmCfZBqv5axz*0MvpLQ17@tU{^YJb4G$HH6oD%s@%qa4_`72A8N24VAa#sODa z;~=H(F1UyYhUWG^)Ps5sDX;pC?Bw*qELLVQ*iDeJsO@|4_0Wd$=KP*n>WDL>PHP?* z%k9W^j4aaRGp)L$;^^V2&{yeFtZh?quRb$u>5s8cnxnYNq@?I;(CJZ!B@%Q#^8-IY z;mXT{D{o;mYX7dsAI7YIphrTzAPQPT?Q|mhcK7$@J$%(uz9`ml)zxFaVS?!ST8*s6 zdc@DyM6Wtk(FlEFH5;t%>Dv5Iky?L~k4TyJ^-RqYLQm2bKStw^iLwSJqh)|cfET`g z!A98`00kFPaxc=-bM{Gx4Ld{ZyBg_edIi1euURzFX>fU@mu*k4acSNae@rF+(g~mQ zd>LsneOe;erq#oDsg5BW18YZ6zw>j->_`Y5eO@jk@l2sf=A|GcE`I{Fdh9x89z$<% zzeINa`3`wV_~SMRWvS_5m=i%0#w7o*uKd#Jg%nx;4HvrjoK}N{4EyCW3zD8C1Uh=4 z-gK}&U?n*nHC}41vrJ1+{M}p$=268;M+#~N(bk%{4r7^-+)%gs4&ypysW!qkwjRvB z7{0)nq5`BfgQ5xag&Wm`n(G2x=xP&V%lSmPgftP1U%=3T!!YC z*bFOw&z%o^d`j6)eg}`#8w(G7Jvsh;cwM0ny{bkfYvpUb4Y`1Ivabzc(Bzg9+}U1~ z>Jdf3mEA+B3b|jpBK}Zur%aa4?Ng^r`7V|=YvqG8_m2Df`4%8_NRH&RF3L)eMQ(SR zdcFJI-ex9Rt{rg2FBQU`H!weY2OnqmOm?TOPPryxXb)&p_#z8J==0|egkn_fEf-k8 zoVqe|%kDoXd0u_q1Hy!nDcwS|V6HSwJi1d3oXb9`Y!$Q1pF3#I;f7H;>k4{TIb7=>7QVqko?C>=q z0?xD{&EVj4?gUwM`h8-mQ#L>$N})m{Z_#XgpD(8%ioAASBJPN! z?CM;l__``cZjSWAt=5eMj>chkm$S=5?cHhBwEJGTueN*IYpCC7y1e(;NHTR-$JbhA zQ=P>>Md}V|OGXp#kC%A!4RfugHCFHz@(fU&G|ai=cGS5Bm>^}3eP#q}wlids1jW%a z(Z(-MZG1<6R9%ZWh0tHPFv4n&$9~ZkB$xHEo4~7kXOCyDMCva8urRfv^wxE?fsYGr zKZqzBiOI9PeZ_TAHi<#@+tzW8rE7zm7vE=btD{F;%==x}URP0Nu3eoZtkj^)<+=2dRGXnC85_a~IH34!muR_@$podeZ zP;_0FC_eIh-SUN61X!H1%%)-&hU9K2eyLJc9aigMtBPDUd9Qhc=or#yue)4Bb~xdY zoKPSjF=<=?`S|hiykyN-%dpExk8PT8m-SSo|M>Sr4R<5-0!k;?d-q-eKWfGIeI>gF zQ?carxpmuNPle0qpk_6gh`utkByA_mr)KUf;~1{#{xf^$piCs~kS9~Ss#rUTUW%ij zY9nF-Ml|`(Dt@m1z9QX6)t1Nl@EuXKtPa@Q+nw5H-|^snxfju$979!kJ?3f_Dqik) zX^k`AKre-`AjEsL!YeqI7o5T2*5DddT-)OV2&KWMBZnE(Qw+}Yk~ac2H^tX40IOV3 zsl;yknvl*OcLsu^55SVlPPbww0SX`AdtL6DtNPC;(kHU*HPhr}bdZ{S8?R0XBYy`^ z^^O0P@CICWmij~>blI@M)|Z1Ni%d@oN=O$P%$yfS^04`40n|}@MKkYtAg6xkMu-y8 zu{DF}gB`PTD;|6o`9Np`Uo{9PMr&(1o#wl)xLJAV3r46;PJS@fFBo3s%4R}@|7wfY z7kvYYhEC3Lepqoll9PfnPlQ7i_^fvWEhY=EyxkKdvhg64b$?JQgmPyNgAHQL_r@Z? z*KEJqE^CPMT}Fwok{EDnbz|-;Tum@qsx>q6hl?FLBS+^I+rAId+YAo?z}R7xa_^)@ zD1T=Bo{pNH%xh+fUS0CmC4R{TppizqzT@FkIY*TJpI_NEV+nV6RvGKZ7RS~+_Q=%u zxpCh1uzUy6pJ}K)M}Kim0R|g#wTY_CJ>>IZ-NNm(uaL=YN&xFo9Kn|{M5V2io}{Sa4Jcy*ui1p z>$TEbt2ABqdmOklRr$4|y4vqm`QNM>#mj*e9VJ((rY|-uHe^Ia>Q+?+$Q207Td&(o zl$FA2^XG|@rhp zkE0Pj*tljs`^j-6le0BL)f?zynvC2tV)fW7snMcF^4OQ5Rm#u3ulj9a>(;vYXxWhD zSnWi6Isd^V<6f)&OqTD|%pIOJ!xy7hR-)70z3(v+#Hx+Z4SWm<6h>M-6Ss{g^&2b; z?jlI1k5!Gt;G@6=c6rpOot#8Sr{kc8Yma|-rFUPxYsGVYEuW9O)Y(pEpFB#Y(R=>V zf9h%6Aj58`W|TPd{M}SI9>XCh%|)7uJLYRCB=y^dFGys-R(;3g&!K~g8Y2iTHJDnj z(gDG?qrYEmi#soe)Sj)HxkXP>JtRrZv|WJN`iX@)VaqRK}$`XwvLW5B#4$6eu1gY&M1+O#Xyv>p6-z6TH#8jxU`Pd9%%=*e z$4k5#_onCH?q$r(Nfa;l7!7pJy;z~K#DSe>+|!WH3|gtTTEbqoKYbG<(hx79UOLny z2d(6)mNhapiFi`#J8}Vd=TO^5zXJ}Q0qykNEnvGkt_3Y*xB_$Tan|pEuk3en zjq84vw3Y!el#OvudT%>|n5lRvq1D4raf`W5xX&rE)6II-+cg?Ec(m4w_yG49+_qOC zyk`E0S6XbA$SK3)t(nE(;2~n(wbR%#q7$s!`9PIB7y!}77?z@RC15JpdNP|DYDl2A zGTFa%FVYVz&pB2ulS9TXHUSF!0}uG1@vDcSvyaqHSa-XQoUnTZ?%e+TcAyluQKHM2w%3F-QI*^A5Po$6^Wpi1aRv+BU!x^f<|1%7`yKMa2^ywX( z&LXM2!csyld1^H2>?@_LL9hMRjy;VvdKc-L>`??_P|4j`!%5_LybO!9>35to6124bMaki30e{)aRX? zyG7uF(!nCnjB3`4hjWVO2alagAnGDQ5KeX$-HB>!92M8~t_)j_4W{;mU772*uZ&^xk1ktxio>VoQY_>?+n?UH=w9sqiHP7;64f2OK$ZZTDN)? z<`bw7n1t-2AP6@%w>iuuG|iEoI{GHkulF}^Oa}a9|D}?aLF82}J3xe0)o;1~XN^|< zr$PKA^-OjeT$358n#J~u_4*%N9TFK!>5MdSmK>dDj$lIKYfS(rbAXdfv?b6R%B{UN zlumkn;oA#pkWmfjw-|bri#l7jR@}HlRA47^xMz!H%r^Y(hc&}Y-E zfq%^A+h1Vk>}85gBF$iD5L3Rd_O42fBh7nt>lgJQCkjo_y)MUpzKlEUERy6bc3Wj@ z(k7&5%tm&Otr2*=DALrb5JZ$`WoylvMl)Z zD}d@V{-Ei<7Mx^(L3c>huK7TKsvFbqM#s6N)!YHq?Z6`DlZ~kr3px)BE3XF zI!Q!Iq-Ik?4V_RENJv5wl6+C$^PQjP*ZID6);d`$EBBM+X)|-rJ#)=9PwZU_Gx5Jp z{v{$JB7XD6RVxt@(QhImd(Q6PC;aBX%Vibe$F5*2v&$moy|T-~jXyju-MJ(pQjsjS z^JuSd`_F(I4#6TKQfGg@cipr)vmqiP$h&#<(*1CkHJ;cz=Y@#l99$AqP0!@5g6zE; z#{(4QE-JR{x+Ojm_<5!1KZPgePtELz*GQBh%L3yg~vm&K@_v>3+#K zN+H`^LtOK6&@t7ds1L{VN3?erFJC%vEY2I4o;B!wmyNDwj%oW$c`%*M^gQLkBW%C= zLCXALtByV!a25+rjZ{7?yw0Dm^GO&!XLVDIZTx#%B*AC*^nZt6|JW7q-{FH7BKrRw zYFrYL{XKk^eoExv@8L!BLn5NThab-Ff41lM@ZTeUeB1SV_~g(3^y@eErQ!okOpLI0aqmZh92Drhopc%eNTR)RC@5=OfxccyK8OVP?#FaC$q( z5PCimK5`=46nDzQW#^53CA+?Jogq7_ATeRAtjT5U4P3Pwa7&MxDpCyGt|os9o}8`Q z=~s7KCtYE4;3*#Hc&@2Y?$?dnp$b2foZn$D4x12t)QBy}u-VWO=3<~4+rx%>oZzrJ43naB%> zzdhit`!CURMcoJu^V&rJSmdr3)0ipy!(hsqT+;zFCO%!p|CNR)ZQ(_c9_d6pL9GWo zRjofPDAWO#%iV#DQD14)P9Boe)6pvZHYJ}x!PmBy>A9SUr})DUy|{UFDx2{88qdqW z{~{93rRDSuVE`y(G6uo6e_FquqE-E_o&ChFl=oh%3ZJXk=$C91wkVcSo{$!-L>5cz zPSi!Pqeis9g{;QVoy}&~&Td|0RDey7$k?Idq7}+58WHE26L5DYy&LFdWDoH=zJaV3 zHF$Jf z!w|KB-~vLIvypey!cmXb%5mUmMkIWoA?6l_hA$(H1oiCALo%l#{)vRAqy6T;rQ3&Z znz_z++TmM(6ACe;ULrAYreC~bsmaPQCxrBAY2l zbq)*Vm#(_bDiK)qJr+JW68e7osaK6 za{cNY=xH2oY1Wp!yMfw}i&$HJVJ$r&Eiq-PH+E9azkk9$#CImbVC*Ot)J0am9UG0x z$|fkpiBgKr>HT(`WxmZXqBq;d{SuuU`NkmaI%yD83r+^Zjmn#7o#DhrQW{!rynX)o z^g7utUyd>g_>&V}3Fg)`vB0g-dQi17Iy=zqd#e4mS*b(-lg(%X0$X${Txy5EE;Cn!;$i9{n_ocJNA#5TOh*|V5k+j>Ed{}^gml-R z(ey^iYtxqdNA21_0pThQh%D;Zk2g_$ydRSlYe$1;`^C6G;N08f)&*3Z!7#7}7j|x8 zFaW6c;Yx+)kQpaA?Y6evIz{YnJNoyoxkd2)mo%2{*yXjc|5EyW&qrmwB$P* z9WXzgviZ%ogS*xuy#?d7T)ry$yLEPhelM`LEN_iH3h6zm&Mrm=ONVKzElU)B5xGAc$rdl(D!}_j!|Uv?vSL97g<& zL26Xg7T~(g;91yszoaho_GN+gJu?DW3O@nDou=$q&`h~rh->ojx%#Ch-qFD29V1uj zL*UX)hH>iP>fXMJ@KEEO7GB_&@Lt83PkJ!3Gt{Ipn|cee8FBvt9| z#ArJgDeHK$X`PWD1|D&G+E$ippnI1v6}8#w#+#wm&9>X?w~8>EDP#^rOPS^CZEB>6 z!I^l>S7oB)l2GKTQTuTKnO>x=86W>rb`5n{Tdk7EYW2Bt+Z-NFR={&Edoyd;84~Y< zu)ICIah9oLpLTO(A$^wuoJ2 zdR9pimAvKfV`|rE$gO3Sqk>0RCuihM>!0(*TC__G_<>YMU9@b?S4c}&%5kx&8I+M| zlfG~aS@I%ks{XX0-?;O*I;4M|Keq+dPUlahjqdXn23P86!R3!GN0&pDsIQVFEX~V< zH|}%(J1=tY9ooSI`I~h=HR2?)^P@|~ttToPi8{I{bQi_{_WVaxiw@SiM%L!KQp!pfb~xDP6s*cJR6HX29upV_FEx>nINlfWZRz zqAqBle6D+*Q~exXp4nNHpIo3?&|buT>M@m^3y|kN@IS_JHoG0^Z|#P#%eH@04n?dX z&Z2y;pL~VQs{)?SGFCU2w)xMRPmY$ZN9uUTjOW}ak;XoKoGEm5^>tMvB!c4+iJcAh zNFxJlAIvq`{MK7A+p!LApP(s1zp4+DhEbKc^|3qbDt?)LP#E@~P$pFgrGeQ~xy%BX z+t##&X44k9h}v1RUF-3yMIC@ ztQEMO*wg30b9+C}3o+Zo13HvFGy!r2t3~sf{61`W7&qTOWV2Pj3GMTZImP|KSz3b> zD&r@{!R=L+yi>>1M^aJc zv6zJqGh2?c*ihnCN1Mly{cW|aIf73>XZDOg@EC-%do`nNBI$AjE3BPjczA;(H_lmw z_baTZ}Bdr_YPawhB3LG8!di&3%E7 znZ2uBRIPqM;Gn;~4onj5T=%mwD;11s1kR|kgZyS4h^<)!Y2>u0e3GvyjjiR~S%8(4 zKrk!c^|NkUB-HF>wT}73Gb$A$q!+5{DH>pW5|%67huz_igu89(d%?QnBw4^CUHN47 zlS|8LN*7Qk#DFAQ?p#`|^(R2vKr-d_ZhBFvyOVkklerwoJupTn?0?E(%+pboMQ zno8H$1i;C)a|k{`kcs{ss=ZVbe=!xx;%x6I@E@IXsMJrNq>Tp3?O5apLv&Vyfuso( zz}ZNvm@jFZdwBYk&gQI5MWC0>vjC2}R+ZWl+ZpL`x9b()r9Rhy&l+QKId56MN#aJ? zCp^RJP(Jf_*VrwqZobG12IB9Wx4A5Q)@bPNSTiubWr_kMPE3{GNp>0L`$TJ%BvWEd zqD#9n_=}+(HmN2javF;jr!f_|Rlrxn%%bQ(uPD0CunYz^`AHc+Z30YR(2zj1v@0F_{Wtd{ieDYx(c z@u~>-GQ-{lIbN%Y?zI;baAQoc+*q1`j}!QZ@ands^4^x0mv37NmVs?kyveBrpIZ$L za9I-*lTEr{6G+qj?Fa*IZ%2b(3Du;`XZrJ%vK6T9Ym&El+a?ur{Pt$jD`D<8%^%@z zCxt(3k)9o1(7TF%ZxFZ~ZP(739qHyma*w;dHxOi9Mh`~yMbOU%F5~@^7|9`R&Aa}- z-okS#Q|!aAU)onz1CI}5cix0gbM`f(DV}rn-;;NTox^>YjoBkPP=IwfuDpF$R;~SP z0Yc5MP9J5tHc5Z%{%q}A($Yi*!OYPqg1r%`#PW&PetAp-DdWSZiB=T!ZB@I92=op9 zwa#4JNxhs!2faTgIkVUTlnGB*+!trEI1n;xEx2duNc7@1~+%`8J#7+Ndi zQ+x|!+7hlSgX254Rj`Rc2*Pi_w;wHl^^Ap9(76ctlqoI=D*j6w=kF7CVg!c-G!R^= zd~N9!06H^#&TTa}+4!x$9IE}k2(*8B;8*sTIF3s09VfS^M(+BU8#7zqqlaIR76zok z(5+&rN)Mj{f~m;E*E*IW%JdFO97#ax(|hZvEI{cE3Fx+&k?R0iy0tqV5F1^BJwX_{ zDP}T37z$ta*^Cb5nUpEJ1X@mj=R}&jYSs2^x9FXfa&f$&feD7Jsr=F2AehwS4xm6y zDy9ZEIv4u%w3I9}k653)Q!scY#B?#KX+uGMU=y+3&p)-3Dp1Uqgq+7QokGOxbA#+c zBqNs#+`d^FsiV+gTMt9v%-q09l$4dTG8e!fX1Vgx694{!Z~uafj`B~mGLm;wx}AW_ zARN3obe!f}kh~#}tX82klC$E#i*NQ=wzsTGnc>@{TNm`oljKBSZkhkiRz9@Zh~fqY z$;&tpr$1-Ta6kO}?&kNPLll+1$9JkhnU${)%+@oM->C zZ(msRg#GrWkL#vy?RESK_RD?wE`qY~AmLJDT;TnFA~)s}WK}M35{)?HH))eS98rfV zId7oqb9y-RG2U+OBNF=YPhSPBQe&@2zB$4`aMy2kjjdG+xLBhYwx(w1YG=G@j|dN< z6vUZ8V@ireId#D*Va8ZRl;xeIOa)D5oPV+ymmZ>wOo#y=(Atfq#)hv|Lroc$nh6a& zN;1WAjOX9li5J5IF^a=$&@<`I=eLaMW`CX7`_kt#;rnO$ErO5sz=9`ES#WGmrVh7v zgr1SyDo5;nbyE^3Z+HX)ocIL=5hp=!27cL`i2hBXxVrjJZ3}p4KLz5Yjli^4-jBJG zxnYxqQ`4#M>UXdsbf=U0QztB;tH`=Jrjgrdb=46+9jp z!hcd{G6oD+tkF%lC`94NGSQhz?SnE1JwsYv_c$BZ!gq4}1t+FUzlioav{PGi)iP9K zR#l+0=<=SRd=OZtbV2;Idt~A=Do%!zR4bfG5#_J>O&aBn0S=}>W9tG2$l9N}Efy#b z_b@+~i3kpniZgZRkJW`*3=6+)(V}{-D*-7JK8K zktYC}@#a45P1LwV#Kfq=T@nDCn$X zZ1O_egG_~)E=g|HA8R15QlNv@I;)AJeTSOPcKA=qK{~m}p~D%d41$F9c!V@#?|&o& zF`hBQK8$dEPL+Q6#>0iJ2X<=_8x;Esf){mL)+M>GeT|h|n$#%VTnEWZlutK<{o<a zv<@csB-Ws8(=fdu+x~QkLHhTU3O$ss{^Ittmx6QmA1l1NA`B?Z+&UJO=N{%fTYIC| zFgr6Y-I@cTNlF%z_M%OWIqv%_-_oEufb@!FhLti}N#$*49g#z+m=bToCTM;3>>Hc) z79=l7ZR^`)l59@Y)oqCU_Eo2PeOS7WI{inN(QIr6J-YRC2epU%%YdJybii1?u~R!e z0+4kxwNht4k|OZu_n_L0s7)zC)QyyOY->9;gh+cAXzhtT)Q5$78bjT*&gs_u%tJj$ zwwb$yOSJDM>CeMJ;Gm4?z^T3nxxT>9+J;@bP|GE=v1ZZ>yS@nVTE=_(Mu6iFQ=|1J zF}GQDLK|O?M##8RuXMo=r|sdf{7tCg`wO1xT`Bqvzzfd7?xg^K%dY^$xuR^>7xTaH zF}ItiCBr4Q&cREj!SFcpC%!%!v{Et~5)A8)YQ)BU1{aU_3m=dA8 z=L&#*kuV$#YB*EQy{>9+{N6L*G2!x6%OHZ`U#!x{uD1>6234Zn5%NID+(X&kaStBk z0fef3RM~7?wWG#-_&RaLf!%pO)KNV%{FdYG$VNR)M`wMrAxJTEC(4*`O|+)lMstD_A2^fIgUWx_vmF`s0feA?=5Egppom4!osrXa(lX1 za*n8kUgyMq_hjdk-c?}`I9If^1J!P(4$jwY(UaSd5YrRui4Adf+4>sgjXs`hb(l*V zMt$7Q8$pvqx>E?ecA|XDbrCJDyY1{#NccV|qmUq!u#Gq<;LJf*^&Ed1eDXMI;$bPh zX39xQZm5Ux!L!rN2hzPXM01g*rNVbeQa&$l0Zx6x#FxqO zm~jpsj|;yC4T>}co>7EJ3D-3ry*8vmdUBsYwtz!z%U^;nvbVp-(8Y(8dg64axVF$o z{AjJbjc!ls3%X@b1}D#r0%Vps=FYuv&HN3Mi6IO?#)p+G;;&7Gt0C)rZgy*=`}U`P zE;|>?7)Qm4mZPLLnQ!FdF`%Wm*}9igC!Q-NPs&PbOuYeIJ2&waKsnwS{ySqAQGOnnu{)F@{T+= zngzHo1dLd4z;HM6Js=s|(wL4<(_7fpWU%T=HIdU&9sj<0_nv@U7T4>q5mz*td_;dU z(yePK*wvRm_n$!_Bs_~bdhn-Xj~ja(ew9nZ&(6pcESUekv155|&%~ag{#e=fP5E~G z>IL9&P~FzZUflENgZsY8WSu|j0q67W5$j*iM;iUw<05SLv~ny)=#-^kxjOq;t=9Q% z(RAsy&NkvzuIi}T^dAO6U(}gUuww{iGlbAgt}?OLc+Vh zY5&buPyJ7}z~z%7f@tXPilT@}yYBz|<^KyF!T%TZ z?Q+r)4ErDaFw$ngt-W}X-LGQs<*ZZ<;3o;eU4LIC_!^fsk^)dT+L*3PKAuwpy^XAP zo30!5Q7`sWAB6-&mQJJrYSpORl<$FD|EhaXvb@+R1p12cZ^&dK(?}6WN_hOBZWLit zTe_C1I!V^zu{;uhH)zUP=T9H}1C*D>-h?is)H`n%pt?!ZX`cM{HO@ zfuNtkk43`V$R6nRDQVTwuP~d|27|dze)~ym(iUa#6o9bEMQfuBtpwGQhkg1~U z>IKz6%Li4iJrzrrQookPI9B32wTb~ECymMx)=gwb6a-2O{6)z~sy%ABFMNEW{3p1f8C@$Cs+02)%x13@41FLjxg0;gPy-i2#K!;E42 z@>#iuiOw$n>iraVIz4xX9Y?tT`Qf^y+yl+vHs-F*iIIoo(%jc^6=+%Z;Q2Byn^849 zu(Y`Lwr~B4TqAAAhLMe`5(M)YcBAbp1!<*zF=BdD&FV&_fmsiCbJn_#Xf#bc61~rR z?n)tgXTrQjiS8&(9`9TzG%*V`;8@db<#2aJ^B`aJ4O7^?+1|Ah#m&M0Yy|qCYdP;> z4B*4@uAzDb6LvmaxIcDIa@;mFQ>IDcvXM&$g-g&l3a?< zi9((Y3IMQVR5R0REq%GAjtE6x_0R)wkaw3Yw03yVGsh5p*BZe{vMbmbCDVL*lkW*k zhR|CUDwd4Z&q1ip%2Wzy`Mr3u?p+5O#3r!&{vEkvl!c3o6a^|R)cG*i7QZmcq;R#(by6=M-4}eJsZvAhScYz|A;Qr>O~_`VA^CWKVRQjizr^H#She8WQip{JBU% zF^tYr>vBNzeZ<2RR)35=!EnkVnW83sIXuyYAG{yQZ!n@=)O@9tyuunyQ7;rM^ujl8J>k$8=OUHtv<^W-n^x!tY|$;7kyT|wg-#M?Sg7I0hs6vLZ5xGGi zD_ZHcg7%;BXy{u&Q?T(4n@sXT z!5Ky%$XQS?hT~suF^r((Opf-0nyO~?u*}|)QD_GxjVx7zOv-nCaP+u-lN>@b2`_RW+r<~N>a4d~sSFS$fZ)4!ynFX?Agi3Y2hUWVVni8U1 z{IMWLL_a|?*?AOu%bU1>w*-QoLiYSfdNWb7cZe$yiKZ=F_k|WR(tdPW7061WREd_4 za5R&$!uST?&s(Fj2H9_i+Ab1q^5!lK_+|S*VhvYUT)pGRccYsDc7DV_@qhWoEWNk zOSLPVYNnbOl@8%G6>>umaV(`GT$;^7$?IYN1w#>mD9>f{6xhmHj(A|W3~-`-)ioHio_+8 z?aEP~%Z9xWj846PNm~;@eSX)(W4QxcqgmvJ_J`CoLzYq+sw%{{XM#I6_n2Jd-I7LD zh2<~8Jy`|e*e1&Apl1a|9j$&3OsZY+1wls2 zaz2?BO5K^yL6_edwvnrPP_&lDP3z4@7KAr_hAzWdxO6}PE%?4OgiYtUpMzb{01Gy6 zt$^IzorSi4QQHNwUJbTz5-}F^yM6;4Q^Rhn!cO-+5%fz3B;ra{{m`to8!dof8o=om zxvbW5p`p36ue3A)M()6UDAshecK35xFjy^QEm)UtowX8#W~|h4#2Qv;!`x4$9PBY2 zLqsUIxSqd{VTS>=(DjN1oUBHs)3p=({N}Edqgy|)bnGVm%t6P7z_XKA|wV) z5O8PR&<8xWA>P~_e{O2dBRTDO;kl?G_BZeG$GkB6N&fXBUvV0|gIRqNh`pVp0s+lVIf3tB(Yb!aLuqd31pMOpt{{-RNGC>aqwlfFl0ONe&~+Uxc_o^ zD01{gBv(hxEEm#OXq?8<^S2vX@Vd*qNNM#!RzG#~$ z@6yk-aPZB(Z^>?dZSjx6M?_>L(+P9p-9lcDv-&)R;gy_UyN%1;=3|v z)qsuk+9eiw0r2Xqqvshi{ESpi8v3@}$l)CBTLvmK4gDiWSJxo8m5WJvX6ccnElOCjb{aLjY1z_C&EcXzHqqTyoA0-cwSOd0ILD%j;4 zAQ3j*-Ja%Su44urz{K7+X-2-vdp_%wg85zwub9}detW#+9-=ih$@eD2d{}b)TK*uD zGn9Y5^yXm$-ky#(e`Ph;?Wx^7d1uJZt?hnF-u)&UmOsZvtF~Bkg+zXIoFDww`_tsX zVJ3~+_eF!K^#nHbHD|IfGqo&#@@(ZQ;CP*B))RkSV)m0Q`QwX57a*qj=(s!^>RNyG zRx5u?yQPqL5#Irr$#GYbBo) zRqe=0uA?ziw#B-kpnVZ`k69k8vzM$+5#JOvYfMI2#jQ3AC}p{}oZ0!mQxsG`tb=i$Mrno9?47xPyiZWHcB zzoe$U%0xLxu6H!LT>%-+lScYRCD-MGQ*i(6&E0x>fJ_Zx^N50jC4+-TZa=aR1#J$& zxr#6#&;=^6otoP54`U$A#oI(!6~m?W4bbZ$=*GrH9Mxyc`6ym)BlBj$n*2N>*AToV z0Dmj@y(zQ$%3be*A@wd5KRxE>l>WX#dsv$9mrBAfux`M6^WxP|i4E()Us%C(LRgXC zs)=+59dgZ#cEC4Yu8mXX=cc&hzuJtEPYyA2GGW=}R=z?2dj)x~GNyJE*g+I_24~>; z6ime>DR=X`47+9`q5$=lAbIDN51{k`f+LXfB(kB2Adcu}-vEt0=yi0iX&zN&$>ruP z?86G6R!pYAgztczpr&pwv5&sZ=1-|xeY8`cehWq%1qk}*?L#kN{{{~)BLHlHK)Wcr z{~zI;&{@^r_s#S1E^0Z2c3l%rYTw>Z%WiP!l8vy5`K~NrM`tORY+Y@k zj+KbpE8O{7>yfY_mu;fp^{>7<=utz_M$L)Kn4}+Ce8?NvO&9)0>y!3BNSk>duBhI) zE4g)YB{cbS*?q4S>;YQ&lg7!f#xGp%8E)Q>%P3*M>mPsX75{;Qf52>U#gz)2YCc@sEXkD&rBqHgtewd<1xlAF<`gb92hb-xJ71 zsIR|OO>X9uy+R9C#by~H4emkjbNnfKr+a}WD3g!ylK_EmdA~XIoSQLad~$Q@V4J%n z(5*CF zUEvB(4`yTh22rl`hNp zdg$#wsZQ$lxuw@0hYKku^!r!ky&YAbtY9At9nxpuUq4K%R1GV?-JVm(TXU$^H>?V_ z<-IO@c*DdmMuU1bt2%l%G^618I6lBV)byFhN`V)CJM&~kDYRvq`ugLOnuFIjWOW5D zMcseg&w2jvK82^k%PH?Tnd-yO(b}!pAg$Q9GZk}E66jY*!5F`o8`heIoad&`Q-`NB zB{;IV+XHJ%s@>Z%VHN-a z9s|^(vPz8#ERt6$mQwY(3X4@OAxy8Mf5W|kj2+M}d`3jY=MnXvT!XCh*LP1d+(G&C zbX^a$I^$(gwuKRI_V4vTYvsvDoU;hbsc`1PtstF7ksmu>$T7ycwRGMaqCvnr#{ky%E=At71X?cb3Y9+Rls_>@#tWd zkzd)Hsi=Mlt$q>_asf?%huq7t!1QZ1D8Qa?Pdac*cP?#+kYy_uQR~lFE{xY+irl(> zU4V#BwaNi>c~my`5!$^DbrzrLgeMc_{{y8tv!1Qx*8FlKBE78+9xReAD)qEpkZyF4_ymPNyrL4^_p0|q2Rq%?X%1=QW!Q3} z+U?mvn;?Rn?ba6+Sp7ty^gv-3?nj9%3qWP00K`GsEbr+HF1fLs;y(|%KmSiB;4nlF zAQx%aY0AK+-Y#EWc@F71z<)nzK-oX;o5x}0=4)QR4_W{Wl(gISMplyP^`~)q-XZO8 zUB_>ZwSU)1^9B)Gg_Cm?s1O?$Hu4yAaA^e8HO+87sQEOWC;6PBa~}D%xffXs;CQxW zMFLAZyIjB{iGTIfrk(s5#X?exp>}HyHtbQWyUJc%@y_=cJGI>hZo=#eC_Q)&m&VeK z+QMc=!kJgj2d`@uS&Sp!m(ZNY-{*I}-O;hE`}fJ+1q@5tR|`2Ltymy zO!F6y)rWr&?$Jh@r_|lq0sHmRA|cXyl6y$pUE<4Biy`fFBtR}B^24(y)>PV?Ta-2q z^j&NmIM4;l&UWoN)x0osq7zoCD4=rBIy5%qZA`Hgjs2=UsLdik{tv4fWnW*|o#}d{ zTPTo*OIwvvUa#VaHj5+iR~b|9o5g2F{kGvQuh+77{L>gw2TohlW$*Jb=fo|~zdc}5 z(E7F>0c0y!`?r;@1AB;RP{9;7RWzAS8f<$=%N7`z@}$k^(G|<35uUBSxGmu90OBq- z>8%hG(7|x0lF^=+anXS0q7HI$`#RVTZi-Xt{Dp(`oK)nOsF+ zYQF~skg6(oB}72W$<5A(UG%M3>MIT#!RmOuT5f=59DcImB0kdYBW??VHGg~x;Y7QU z8mj`3?iC*gjl%3XxYX{X4ESlA9QlUwW@L&XUT&t!s%+<=3MqN4;rJt14~3wAkH3?E zM|Td}oScQ^j_uspY&BRF_HX!yUhS8P^Yxskj%=}StTt{#&kQsvn3-M6_Q`h<4R9)V z-{5HOm2UXk>j#hE`A-IH6jh2|cFrWNem-!oiFk9gU~>HN$))`9Th)t{u5Z-1PJ#>8 z&zol9|9(*qgKyg$^8D%_pOh7tME5Mv@AZvZErMB!UkgI&B*N||7BtT6iQ0NqiXN@} zyv#t^%S)~=(Rw8w1Jj?B!;io&eF;JB+O4MO>xj3vMvV7|J>Xd=#0jl)gm5o~n&yGKlWsagVMpacJ|-KWuPj3_;?G`eV~$%I zRik6JfLvT}XH*B9i8g~`D95MWI#eqjv-fT?n4La?EySIHEWMOY44;fxpy1;7($(-{ zLXY>%qiHqgswv^nXA==kYLgoB_=b7ARPaOdbMI?43|}63=kupm@}fcCXrOV_=G;j6 zg2Tr0=g14kB_XzVlFw>wB%6weAhdrbawj8xwjnZw=Ot2vq?pXqsIULI)IRXp%COxP zZ`JHC^2}{k*lvbnY$xUYYz;k+-2Y7C3U!gucVftGQcK7|NE@2_krWPXO|i_1v=Sl( zvN90tKR@iL!as{B8|>ORePaO0N>(I>L+`hjc=frMB&`J=M;{Rp*_V=UVkzK;beNYM z(EV9jJ}=_-KN?NXQ%>ype@h6b|5r_^7FiYnVToZ7RkUR{O^P zTWtGwLl!STt?k;z?3d>K4~$;%Zu4~eJ;MCvZ0lnUmA%l6)_lIFZVqMrM{RN|WohDM zA4y9uON_y2PcJFJFXY%Q?4m<&k>u9d@?`~z7o^a-MXcWJ9s4H_Z4izPde`v7ZOTe> z_(PbYMLq<|nqQl2GBq4HwI(EN zWKFDv;sp(1lX5<+o>!8q(l-0LQ-tK|p#>ukiw%=IE3mnpSCn44m;O&41QGfbp015c z8SR|<-A8O;s2p-&qo!V1j@@d7U;69#(MXq-xOe>L@3H`>8yFLl4gu=qK(Cqxs?@{f z&Awp7`zBSdv9A(e1JZw8qR7Kj$~q!0Wnl*=fg54(w~pJO%Cf!d z7bD|XXK~7OTQhJ-+gQXNS>-gj5{tO$CRxcjISKpZYTu7Dp%S@ptD*IZ8C^z^93b)r z!zrB#5jGgVf|bnC*0ifbhlx^^MR1vt3D1qq&*sg;Llqxm0}EoTfO#-!GtYmfat^}I z|KJz(OFTAo<9%QtkI&1q@=~bd{+A{=03TM@JU4Zvn2AguG_8{49LQ|6s&l_H`G!AM z(M7C>MY5yxoUhcgqZRwGq^uxePs$TC?-l_*6j%jYZ9@FA>u)=<><;b0eW0^HraqBTka0gJ5UB*)EcnV);5?hjtWf&!fx^+(fu0r!F} zS30QHk5C?~^~jYA*&SW?*z8DFQ*VP3!Lhd6CaVZ##gk6H=Ln2at*wp=wkfGEAM*hW zx!X7v4zye41*a423c42{=cgN=eBoM`(3*H^D_RC&?mU}X?v7JSxaF`B0>rbELvNR6 zj9p&P>O!g4RQHFTVSNZMy`NKKUEb0_jr$bI`a;@VDJ}79sV1TZ7drV6TMS~3e!yzc zX^vB_b|n&6!YnDJ8?u_H!D*~hM*LIjhkhA!dlgX#spcFd?tv0%rJ_!F%&MzLjjL^G z#MhwGDIpkRbK?yb*uc6L;&ksgmsNVLLP;T8&pgAJSNzU#X;Uvals%Hxj|?=g`7b97 z#$~mqi{~7s>$PQ#vWq|K#1AXGtFT_>z|2eEktBU^R%>TRWsD3P-x8eDa(q-4RD6Uv z`gen)9ibZLcpl6Pf&KKE``$f`t82ZuE3~!UHOG@E-Nz1x!-RY+PFAE^nx0%nU2w}2 zhIg6n6O-YDnaxqs&Vy%8iuIVVp6KzZI&mkjcrGrA)&c zCK6YKE!b%+sMpXtJfoe^i%*eX!}d5~01cH|sdN%~$RxoG13zg#{=hC0caoVZ_g(un z7O1u|S3KVva*docJCuebGZ$)g!aY*x8p6)34t7J_+-nvl{yOKj?JWr3gIXL^FY3!` zL0G0kCcwg^vF7e&*&+uDBj9R*Fbx-N-mJ?O**OBrKC;GH%)&7%~ z7~urBeH$5JEdE`yl0Yvl8l)RDaDz-uDfK$knbbocR+-QCv|VM^THyoC!Ux);LiFeOJ4$9elnDV{xv zN%K`O_wMpMMMKk+uVvq>kbC0@nOS@9#q1;%o&dqYA^Fc23>gmImOVFCjM$D=Ptjd! zV|U?6dC>~M$G1Xl_#f{vpFVYV((`2(;*MtBk4#!^YANPRrNNv21tpa>b&%7Qh=Y^$ ziU>j~Tvp4sc;k2Pb=kTQp%c3l_q6!nMY7u>=~zWYlcm&#nos<-WJ-J@T_ypYwQsGT zSF72(=Spb%{mELx^ip#O*st(Um9+MRvcLL0t-U5@D_30J>hAjB(RnZLSa;UZ962NI zit@UNLzz-Q-{Z^}b+M2fm8e0th}#oqD~iy)SyU~b@ zXo&VG+v6%^$p0QEVLS6Sge$e0TS=x)ufxw!JFMv9JpkI{$m^O`X`k|%sJ!TlzMWgX>ViV)@MtQ4OZe*>-2xen8!H^)XO z&l3W*)hPE!!N7Vm2d<`I|080}XYsJBW{l+CU*79O+xxm>OOk(iMVIV09je^w_L?q` zEmUDXKF2!N^Ww3M$u;W%ySAfjvUeog-Q-D0)E3VgbXU{BOi0#D#Wq~JHQL;H@2gJ) zNfGw!8%VJyJ>p%Z{F_`2_286~LvznHD$bdsP)|#46&N2&jJ)hY%&AE$=A64zjS0jf zn_?oE#zT!SpQ9=sL}aZu)h@@Dp=vrqsEV+CG#5f1x&HrQ@4cg%+}>_c+-_xCu`At% zh@gm6fq-sBR7zApP)d{t0cp}92?TX3C?zVrD^+SXy$381sgW9L0)!ACga9E4Atam^ z@Ylw_`Y$^xcB7Wz*|?=dggrQoa-)l?8TQsMiKH%@XxtmUWx*1ADC9I8!~wG z7#MNeeA`|9)rcR6CUjQ0c&v=f?2L5oNnQQ>Zm$rX>W68?3}Mm4v{SqMVgrvqvmHbV zB-ArY-Pq(;9(ewe6y^DXit=?babn{!{CwDSQ>Yf3FKnv=ImMVZ*A4d?+;xdwHkf*# z8Z0*Y`RMQX7pHs4TL`h4Y@?UYxy$*jV%y8MpTz~;eqMQX&!@I;ozlBo%?~~K67?M3 zviEbj&h}b@Q7=^Pk$HMtAy#46xawS^)=zKr(FYBM#4_}C;!C)554elnU9LV3J1+7W zhW9)OdLpbvQVKldr0T%2yA}YRB&Yc@&i;P)-~b3b<6xlq+V4b&=A!TQl;XM$zvTgH zu-*OqTf_y&?SDl-zzdqF4holV#5~W4y1#n8jN62F40@t=zoVWeIgp=IqwJW=S8;JqUMS+V zVKbxb5jJKkD-$L1dCI~P*G}!Ij)s3ZL$J9?P8uky%`Gs!-Mv6?2J1v-88c|20ZB8m zE-=-2u|*yMyBf1vCH@L_9F-DlDpB$N-m|hvVU++v;O^AstU>-wQe;UQH1NBi!*-wQ z``)`?uQRyZKhpM6B=4GYh5s;vy20X=7P(`9y5XL=c$cQzvxx60W_%aG>2{8PRyK#Z z1nP87l%_~uDIKXi!N`R86G3@hOLWPiqBIVikBHjV1i3xuIVQX(=bk2iOL64JLvGMe zwTB1ct*ni4iRglA1>1nWt(cFthUCjd>?EUCOJ$(DN^^5YpdwoYxuJpxVEDes~`e&BqT6TP55;rGjH|sgyP`@obsv z*3<&FI&f6R1$u+G&7CR&#Kxpr?=#S;(Kr&w{-hDd*o3`8(2=-ZoAScqD^~PU4|D86 zoZ*pSj0vaF(Ruq%1fT~dD^{X5^FRRmZLs1LhHRj7KoW30g4`ywBn{lO4;kqC>wD>- z&W=ZwJ7_^|?|qhY@0{HQwOvFV?ZBSRnyA@Km1?k1zkvwC0~QgEp1Cij)ZPah54E41 zu}xm@4@O2a)era4LxbI%<>}g4v*-*5@{jjZ{?FXo_$=}94u-ZUNEh@01D4P^1_F$P z$s^oFC9io!EhwY&$z+(!LIV(ta8N7tt>S6?Ko70{Fy2R3TEt4Xp!C${V+-4Q@8h=} zKTEiSQT6=dUEqW9}SD8 zZkY#KR*w;KGH~yfCAedkQ#V`@4dRxIaf^6t$*&e9)#)K~dPl`>Tf$-sUdDvw9Tkxr zQxi2)gCgA^+!JHepz1dW9>?#wt?vwbS*Dfx0W3%nn67kxu7%LsV_6r#G18vC5-WlpXtL{o> zE8BofkVI&!vcFIbFcqDlkN*((`Sk+ksoE|Xg>!?@qPF1Furls~+j;fb#WKi;xk$rU zE5K}}3*^D1&^DjYor{HtAO`90<1vk|u_+~Bh1C7Y>So)}zUR?0cMZpqvsiOsGOXW* zk`16u#UZQ!p6lBPm5UZ`q;rn%IE&sUQ0PL5zmLp)pW#F8~>Y{Z>**wc1^559pX0f_|4gK6}oH}1<6$s)E%>}l5Dx}>7B zj`FG1m*!SmuPqR}Wo4-v2kNxUao*~>Q7lcghUx|WvZ@lNwt3*5VZwgTNXjeedWC_m z1|X0sI<@kYCd%vV0P6O=*Uf+%u)Sy$0*Yr`yr&QN%v?jxPcL+5mPYI(2>N)`Gn7Pe zdXcVAKJU5}H@GHUF-2taslRcT6kv{hGEzOCQk37+PBsAs> zf)21;xxclI@Uohku*Y4V-p?Pvo*U#8MC|c~$8c`FoVDzBZzbrVvPULLIDNX{%qR78 z5(Je;hRdyQ(nUsBw*^8weE`!G#elh*>Yrec6dp>;dixHmw_Ng1~)@9YZlq-czm z*iJ8s?zgPyUAlq6>gNDO#1*7Izq%u~r8poDBU6LU(1c5sMgC#3>U#b0K`Obzo)wTnDq+C{XSCjt5~<+Z#*t=mKLUX5c+Mkt6|Nkq)a z(Zvy3P~Rh4QUSAUz4Cpl_oU~_g>MfxFG^NGOgu$ySKIQX152Wc0|Z(9ydIHakJ%BP z1=8cTT!xN^maRTP7D^T|(Dk~BTSd8kqn0=URD)#^Rf}_)QX?xR5P&-0TeW>D@cm9` z>aE=1iiLzEoS-T~08c@sOh@pt22DwT{$$sdo}SX1KH+{ju+fI8QjzNjkBGUMh!Q3y z_mAtajs$VZW+nL-GiGdUqNox;j0_!(>uAU3UOkSum`R%o%&87qFD)pCV+&<$QQ*Lc zty*cGkn6ZE+h>BWk0QvU55b+VktI4M>HArK=Q8?af4V$ zpL!uDCQibTgNtzi(i;!$mz;C%9eD;6Z=biSNXqhPVhlcSlIT4ZeovrH4U3n9P9OTuxI9P z2TMaO+0=r2N_&@UdpnacicfW64|UA-zkP&nYAoD#Q^r;PiXtB-2N4Xmr6h=T=f0eU z$skGNi&yteBfzp&)r>O|`jk4F7w-{{^z%NUgExoqMDKVg10 zqQY9$ENd6$LpULMyH_YVC>x5P4&gp_p?6H0Mr_sjzBE&&YvYhlCVJGFg3*V%zMzk~ zDA8BDtnewa%!Nwa`yB_#3`)sXxUYcm*`c*b9%2EjUY+Gk@HWqVrB%4W7x&uRdfn*R zt1-&z&5{7q(Q^S?S$pw_vAr=qbb=sEw! zq7*GaZb&|ArWzl_i-0I&R-eedT2`h(+sQAza5|?PAp>om3$y6r_!ru|E5Q6_VxWv` znc&2aa7FYZKBQrqa}o5yvI{PdStT_v!Z*U*(tkG zIr|CX*JbCHZ5{P*sHm=R2ZU_iCLeKqE~?}(T%pSYG3Il)LTppIjik5_MLr=$_+lO+ zmP+;$F_2OzRJZs4Mw5EGU9PXh{b%9_v>UN1oh`i8-`V5oYg2R=*fZvp7dFI;&dR` z7N6yIoizR^P^qeLcCf~_)!gU%nC&S4rki%{*r&(*soytlI;gLAaLc^MMZa$`f-3_+ z0M>fG=ck7-g{tbm-4ar?C7s}cEDL2Vh&g`NvN(#8tbTsowc#B{pton*-e$_%KPedzFAQtdNs4;hp+DXQslUulwRs2`t8FE>D1ZXY^HWi`+6-G) z#~^4Kd|mb;PHOAzLjL50034!G$(pQOx+eXG<|_De7|xU(?=ql%FR0l|Z z-L{?TDQ{)x9v<*ij5`q7MeL1#qck11D;>(svRD~I_GV;AGKNKIn7WHut992pfds52 z>|rI=w@_O?n*qfBL^37O1?4or8LQ}hotF`EO4q36*_3os{*ZL2uxm?qvU%M8R&1Hv z5$lVW&q#p|36nGqp%~-Qo!qsFX;Px9YSo$+72b{ zjj0#FL$j~Ikj+g(srw~8x7Fj)KtKr>EOKc339y8}KUAS6PbH&aSf2V1kooM-=`9`Z zvFu|uN5sz|{Ij7!R5>b3AeFf8dk$ym0HL{lZVAQwDZu1QzEkef(xydzZbZ0wYct8W zVMioe=%^5Nx%K792-o%ju8wC5ScIM{QRkVYFjaA>5ZROg>EM!x(Sy*gfuoJ8>iIxg zMdICKxL@cnLigXye*gWb6^Jr^kKc;x@0h#Bl}NWU=1m|sZzL#kfQG5RAhZ|PjamJ| z1iqxOPyttUHepsnv!RegL)+uw--b{_<-dLN zUl4cvzdfA(8n<^7i4JBH4A+q@LWKys0eIR>>hOTwE#YZh5oM-@eofQ0*Hi&guxdr$ zW!w53Y4&QccyqW5U92n;71CWd#evbST9~)8KzqvEeO=`V8BAqZ^z9eVMl8llrN_Y+sX_%2c~IUFed>}~k)SEzCnv-kX>V4l56hRnsK@?SCPTam3F(ef9NesGWex$QXH4W;RoI*-J!AKqfnDdtl75e&aVDR@Pk?Tgs zkc9FnLqrKAqFB>?A?;oJ@F8qR07n1xA-}eGzda?^<+9o| z4*12lcH0oWUjT^}jIcPAna*oJK=tmBbnc($7kvp0A{06Kw>hK|b*-%>YXNxINS`jv zy^EhIwPR$UHI(69)4=)nw=1XWuO6FCt4yj5W@{5yd z_&Xdev^?wm;Lhdb6bqeGkOw{c#hLVg?is-q&v4+e7IXKH(B`BvINr)QI!RW3sIRf8 z*!W6~FLPze0A&-Cc@;f{v=Z~$d}l%L#VohXudC{(-p=uXJ5=#xWlh~gxT(*|>3F%Q z12M@|eJ^5Z?YX~+8$Cx<9wG|=ri}NY*ODOJtskqc z0xFNa0mDB14(MuWvG|ZVZv!6On={vcWTbZ*-`XG^}R{1d1G7Gq?j^h zDx|;SywA;-zm9g%8LB9haue4zH$yzs-PbM`7HgdlW*NEZOIN-Q@hKh+4N%OXIF1awa*{dM`3tVT4f8_McdH9=OGnLAGq3?lz zCAu2`%g9Rq?3Q1r7P=<$uNm(D5A)dnisyVoC?(QxYcyP)7!nH!ylfM|>h+@)RE*D$ zeOq7;xlt`2FBAE5zPOBAk>fok;BaNUwsMCKZ&ri9)Xgl|812uT*F*IIo>n&WsEyx= zl)#l~h0%byDrystv?kD?mv-AOPBcFlJ#gb3|3u@bYr*5~>ZCAp8-E!a6KaYpY1bjpJ#k0Xh1{zd52A^q~q|XSzQ5n)J$@(uxYIDXxx4wVF!1-4$m3MsUd}<1DDd>n`L4roKC^_O1&Yxp%>x6g+8kyt61ivID@x(yAhweQpQlL;;`?sy2}P!u^U6+z{SYr6+*p~GOVNL;Kte-bT@i? z1L{Po@JGE2Xka$LucweGqny|E%b23^_cmV`S2I|VeI^ef65@`DhC}v)H@eH$eab>Y z8<)`NOu~Z1nKemlZ912a8(K3^1ABI@+@^&?Pq`#IiW?1`+xX+KGh3bo9a;RkOYuAK zYD$!1Os3;Vj)R`BFBDXi3N+NZ)Dp^jOWQXPd4q!}Vaq(ReV6U}IvS~n13H&~2W%L@ z(brT7rsYol#es0Oa4KzUL_v0Hpr+2!ClQLleuzMjh*PC=V^NG3etbykQIg;$HVt@w zbj346C`KF7-`Rk6zM#H{T(;a)cC@i^Z8>cj*)IKNI1hrRZ6DNW%5YJ2DcQK*iw~Q8 zglZ+0tjn|@?jLT`#Cax!4yJ!e&0YBkcFc^C?Lh=LX!T_#toK3+A` z(M`!*KXub@8^iKZY1p*Tatcl>Jzym)q+sYN;(F@!E_leadE;=&;^D9e1!%*Ievjjj z*Y0zaSV)8?9;6O=JGI)0U#uce_xk-!budg>!7h7XvnG0$*}}ww!SKKXsjY;tqq132 z!p|tWX!&sxuFDej4s(purIuK3y>ZjW_CPg+uv(fG9U&2{*0fWa=_Z2=_s5en0iCR= zG>6vM=VWTHIV7A@zsBd@`wpS&CgCL^;%l?81&>q1&iFHgg8oIDKEM6;#3o+K!a3wbQ^?u-WDp}TF%q!?> zEvwJceb5m|?%1zb=bv`Z*PQbkhQzB;vGH3gTRrMnlkqMenVH%;16kF@ATMtd3s_!EVsLyL^)-Nq-E`J_x8j%)HdM ztsQ;Y2dG$%)O0M5Ye%r_CMnEe$-d~S|1x7pp3S&~txoxP}+9+v7 z64Bqp?m{GY{Xr{gOCRl^*!9@;%Vh;rFRDaBnKiXx+cQ-WIq@>DZIm;JKdv zP-mO8a8G0@f-AXSk+qauQf?K!p$c8MamJQhq0M+SRI8UePZ^fGy;UtKIsE1cZ)Lq! z_jW#ZykG0IFx(bpx@{VUq3Kc!YoK&&hH>A~-=>?{wgFM630*~>?zpi~XZO{V%cv6e zw~GCa=Hx$=NOqjZo_wY&-V}e50ZSlfaV&j5!{0Z_ zIz^WiP=wKlSl;20Msq(7vs#OoNaue7lHXrEuRM7sJ%%*vAO%io|P+GXm82Ms_L|n+Im@$3VTqURvK9u zD8s*AF8N3UjD9U5%Rfn?&E&RiIGF=h1Aba*SPl?Oh+Uu8t^Nv@x!;**V#_%QYqw)Y>{-DF31>hp$_B%&i*rFv*(n z6W{|WOM{dgOt5#g3k=XoiW)3>E@dBJg!2_;)&QZI*=rSRKX2>y5Vp!C$fsP{z^ZKT zbj@aXI$?VkZ%-yLgmQr)6pJ%dG=3odqR)FKC%Y-p4I8hhw>nr_bj%bfZ(|gU2&Bn! z`-#2Xq5Ln4!8UCK{%M;){F+n+pXNz!C^MiPw{>{k5{}QW4WIb!$*~-*UGM_ZXqsy}M^<+Ha6jgvrh%Kf#ksJq2B+H${n8 zim1r+l)eA}P=<&9t-WVPvxc!}@Q%5!o#txR6OOCOX_iut=eK=H{*&A;C|2BqEoFGYKUeg;TmGhCu_{|2+S1|hMZiL98xA>orof9=J! z48T$)6|u{<*eGp?$(g3!qbVO0!zBm$M;B5m%QXwQs??@Ar`shEL0t=xXfU`IXc$o+ zYEBdJ4rt3@#rBc=W3&H6xkHvJg0A;zAtA%8A}6x=tK-W~9EiAqbfQ$MHFH|y6vQ_z z!$r-dX0y5z1A?Jz*FkvLx=i!xO;zbU#K)kguLfv1F^vTz_ZYcjbN%o> zxE7>;B}Me_Lgw*+c8#fC@9tUjffo8)*4Kp((DP1FS)eMS?SKLOJV2xr)qR=L0#H>+ zQB+M050$Wv8Xf`xhDsI#oon%F)~zM(X7fk2lFNGk^M9z--)vO74>2-CW3sn;zfTOL0sfBfHg#G>~5JgnPb)i;7m@*Ns)*&KoOCVqu zqB?C1%tueUgqDwqZ&vLMJ+~)YkBs2C+*Tx-RibAsw~$x{E!s@l0-@ zg*1L~4Zo0miA@EaPUjxcU{}}FlsNx>@QmS)rqvksCZL7t2}z8e-hi6jU|q>z5$O$p zL|hYaaE{r@MbR79Y%bPS#+s&+3i3n!2P{H(cc4~x3z!Xr`eh0X( zNp~ZJfI_M{ZnH+9Hdg3^$@WfSdfU9?36Ej={aF$Ae#zHXtU@Sm9v(mYd3vTV=b} z8Jt?U!Sdzb!V0~#Dc^!c^brU|c@osk>Ht!t33r-+a-i`)eTmpsQr)gznzl61Q;wh$vEd?fRu_gX2C5p9{+ zyAI@JaWiqr7>6wbBEQf4jutPFt^#`Lo7C1`y*^&xRp-m^6u07fS{3Uhs3{0n?4eF> zdMd>e*PXZU2;Ui}%?encAdQ*LnR8m)QzcXHY17Ci)N7oNnHY-5ehWvM3m7|mnpm{)66#!N&HX@-O)FuK176x5 z8q5I`QkF;k|C20o7Zt)cy|XFP0vC@Zlp z<~a~0h54));Jb$9uIBH561Xa z?G9|E?jI@J>)jGpd>0=1^Q3E~bTyPD2f+>?HJ=;Er|pc!Dn-Gq{7Tg5zGcV={H_(U z6%_%H1_OSRx-nS=ttaPJ`t=sLO7n|`L(YRf8=ap=Dq$q4QOl#aFu+3J3jK>T1azM! zC%%k4C_3|i^L*3+PKtV z;bGXM8@xcFSCBSW^R74dXSM~hg*(DWdh6;-f|fg%zi>FXCZw76lCAdg{nNZyxPL0h z@z3v;D9b4&!Tr_A)I)69@is7S(5{=@$Z8emOa`)O3(>eN9IT!PRJ?6S>+vu^@36=G zhPI&h4C0;iwf_K8VnT|X!3&1HbF?erEgJ%VV%KcuqsI{-8}HDowfg1~fiBolnxplR(YfI}JCAYLOVhr-XscL1#1P?%r)tMZHNe7PE zQVxb3HpnZlFfu}faJ~z^yeNI(Hsvu|9~Fp1;pbP>82;MarB%D=Evw&qJngT~^4#ww z)LI3ADuN5+-quFFuJan6+`~#~1Gq~wP;+*`@j?B?Yg-)lN1icydo6e`z%)~n)Ra=S z?gmP^3ADM{X|kLg_sNW90cJ7THQ%=7 zo5<-ol+;3hyLWf|8fwiEqNBc@;vHW;P)h&R)Hqfz_cNG$1-$$G4Nah14{Q*Y5?g&T z3w3wSld2;g&j3V)@jRfxgXcT^;SZqP5J4RF!Z)vj?}K=~N&! zC-WR*2vfCC+6qlld?P5OWJWQssZ1b#Q}Ot3XGz8;b_S)Ys^*RlT#I3)NL?wfb5od` z$>${xzQ_eQ$^fIQHe zXsuDX;H&g3B`U{waOuVtHk>x(YIQ`iQ`Df4c<=Isl|o99hq+@pX4vk*&$_skI^!Ts zMwzu00q}n17f3x-8^XwI`tDYF%{@DO@VMv7bT$ks=L_sq<8)GogEtP{QGc;-(WhRl zL@>%)zMA3KzKa}$8m0Tqe?rEpT(Rl*8S1GI6%GYn#>-M7P#mcP!af~@s}5w|$yZz4 zGFA^@Wh|aPnvb!O_y_-&U{)MYGcfO{Z_bYV0(7P-%UV0IDk6_z()`EVEt?o1FZ!SYHG{L>(Oid_^(@Q! zXv~}C$?moD_q8wm6uJ8uMt@PhJRyvdgN$1&4-&9Pq*q6U$*W8}p0F`c8|K$L;DE$o zZ^Msa)Ed8&NR*1T^0qzW|V z<}L*nFF6XWo;G;C_vgxFd*V@GV>Hfq83CxHt{-VLLa3nYyr!T4=63|`2n107kl~QS z;Qe34!t|ECKVPH(1HHcl21c%Qr$zwX>HzLwNXkq7@m3N_St?*In=95*h@FpeZe!$_ zoSAe2j5v#tsox3p0#@8*PkSq`PCf3!jk`H^S?=eShy9Q>76j&)g{hiM&>)8?FP6zT z9xR}3qBLya%$w^SEb`QvroTWU15}s2`qCG7Iol`m{xx%?~%F;}%9;MD6HYtc*NwEaD5c_WMt&WkYwk6u9rDEWoSM7Jh+OznYn z4%09}MNVh=i%1ifnwrYkxL_gN>vjI(EPcOVu~iY5hrx=u)v@j$*$3Vld-2}1h+J0? zCnq~a43^?=zdq~0ksE8}v*ADf5!~|g06+>UPHb)%1w^_O?)cX?fRte4=?gjR04{y= zQ~LYAScm@=S;xPf@c;e8J_gu$An7Yal->#jV~1gc#V7owxT2@N6p!}O zncfkRK+82U;Hc|ddu(2GIYFw1?U%WzR>W8bn_qMg_suYvlop)W)2gS0SQQQ9hZTEh zWvGW$@}L_wI12CXC#yA zCaPDLe~I`dus;-zmKt@OU(V_X;U;d_R_vYvGZj{`x;nJ`RMAxarkYG2=GC{u0icnk zlL6oM3J^@A$|_SNJ#e25X993#n+oT7B%^u<&$Q8M)z<DW z;LbFX-m3mRtz^+Ge!ZJ&_Xts$aNb-j1X5gfC?B)KR+hz@zqz%5D{{E_xEHIai=6$1 zzn<};2}&5E`d&vAyFB=2)A#KzHF)2tv*bIf=A;crPG{ZRTrP2?uE_4%!w$>hQ3XT34Rv^HG*9yJncE z+4GEdN9ArIuq-?fTdw!@dNIeE<+jXBN&OAu=UaHX>3{EImDTm)t7Ldz{&YF+_t&}w z=GF*c7unXQZ`$|Q>R`}JE}313%gn0elo`zS35ccU8`Db9~^ z1Q!ORM|iJ~wRLR$yA0H+-#tp187VryYjv;UJSl8L0$B&0Yw*_M<-V@#H2@80L7SDt zneYia=f0maHPuHeiKNXFT$F&S31M{&q?02SK*dt6nKq+Cwz%i-*@8JnxK1ga>R8!b zI!Nz^+9fMB>u1G#u$m$|3PU`z_A1Yl{>nmB$HMb`>!aqZ3x;{{g{j`|=aQWd1nv!= zql!eYVHh5Y^9p7)|2&z(x>-oniQui*2Dz{5>Qe?N65QZz4vL26=B&~V_;XoafF1W8 z0_BTIG|^xKO?O^eo~s*x#_lOx(>#n&fID5Z>k}_zC$WUesT6 zwj}F@Sc`<$EcLa0V*))>WwQ0PXz85!&c9*{T^s>|1|t=VWqF{ydo(H{(Ab?b&jkQDamVgd3eno)0nDp zvh+G*PE@)HUM&|_2k>V4NKJrOtHwJhLO->iqzpHO5IZa?Uf1k~`fS^O5!Y_- zZ~p=!J~(!B@2Q9a0t96ZRBlfeewEhA+iLM3&amGak0hO)3^X@Wv@h?n`g$`{H$%f~ z>P{_pGI70A{ykI?8@CPE0R8`}`Z`Wus0-k+HQ-AQ$f;}6Z-Fv!4TV_SYNP*vy0+$a z#Pp6_NMG^0CKuc8q~m}87=JNuq)={j6dZbfRfnXf7gopawxU2^B&bP`m|?8zfs_l= z11=RKBMIK_vDVwpwZG3aDmxQhSexN+QcIj>H3dxhIE1bPXbX<&4PdcHx z%SP7RJoWsvZ_+6e(Zn5+Zqml!3+ z1zo&&T%Ck0Ndh*;w$GD9qPRT$Cj@+ovgN1+GuZ6|80-6`XWQ5xtl1KLi=^-H2^NbL z_WQ42myn^{;h?n?|2;xC|4^k?oI@1e2(0j==;%b1J>PMbFzln?zsB(uNi3V@ zP{3B_4np9;NS;{97bq6V^X%iLS~&E<)OuZW`Suat77G$DM7EOr<5#&s0~5Yed%0IW zabU;(^TchHLP#X_q2ztxST#BBS}Nu%qiJsrQSJ20ffH2->sS6;m1FtG8%(wHFaC68 zC8~lhMM@)tvOXk$xv!4eyfZy#R~~`{UWW100VX(*^5F8>>{gi^u6<~0IJH?7CKany z@A1PqZosrAhn@IluAbh#2xY?6OajbU4<Xvi#G+tV$2opx8?lnHCg-|E@(<)yG)^9LFGb}4=x4F)7hM^fGmUtY;= z%hLp7oy+?tTPqYbO(Mc|OT)g3(Bdx@QQr(1of~ydyca@x3yIl8~Tt#VlO69QH4C?CJdH#?cu4`74cI}SIH9Cw{>dJ~Wj#x^n zeayxe)bvvig3$0nBToWlkU;48;xYM!-9vEF$!2`J6P*8(5%2TXne_Q`1D#G}EWhCo zH0^C}`RMHEB`y1O@BF>Fy842b^rLYlDVK5XJ9Da{sO^cczU!~iN!48=9cSlt?|t%l zw8TMj+0+Zsi5-D=1v4h-mTgb{mn#*p+R`ub=6NM%Ycjr?4Aj#<1HIlZBEecI_5u*) zLX?P$;4g*C^M?nP+rRE#M(cXUTLlh9E-oOX-v^_fD%M!)Vc~qcMe5zPyBeZ~mbp54 zE1S|_V9c33W=9B->TG5n>QyIQ{#ubKGgQ^~SG|uYz0SqE&k3gEt{hysS3R~lCPA{0 z+vt1qp`_yJ+P2bi3y3X)8b#^*M138WQE@rdoMe_sGBI_iPAfU5i{_^I?57Ri-ub21 zKlhPunI;$}@YJexk#dc#>nJLqbvR%A1fa}YgojjQz2eX4!09=ODAOUASJb=Gb05U# zAa;e#$n2fp3z(lftZ6y}XC;eI67J6=A?c3RZe{Si;#+g&eXM}b-W^;i$J`$2p09)I zS4btS51lS!f(T}&V=P}&#=F=ZoJ9U!$MN}?@?d%vX6@^8Bf*-N6F6Fhf0`=BJo9X4 z?P80(2jC5eQ+*G!fj8D_9-h5B8mjp4Bwx@;(%gqK3tZywA8=J`wice~NVlcCp%-nC z?CF#GD6*JRps4_7ZpBNzo?R}v%fhe3*|8vctF=pKdX>n?3CntOdFgtNG56=6CG8$# z=Y4N;c-QCFXmO{0WWS#&$z}XwcE5Po-a%+CY|!Vt;BNJ~ejhxec1dmEn3w>*$6580 zhyKffG?gFrhtu|Y->iTwEq!FEj-)i)fAzT_`K9J6v9`y##5A8)$|)f-23-Q26AwPL zJeQb}S72P6T%jM)z$FcE^Vw~7D=*u+DKlH^lx?!U;9&t{%A=w;l;LT!_YDGUX*`osC+UhI7Ck9gP*TPkan`Q!%(t?}E1TFU(ga@Q7n>lakB+?Rzp z&Cg{B&G*cg>6LJ9YKTN7n4LO)Z%QEit8f+)iVG7J3(`t2w+@vpE%ke$pZRBQ@6^!P zUD8dPiooX2&juy?G*8|Do16QS+ZM1k%@3)uKCeiwEBrwp$Avn`-OL*y=#~(zxV^oK ziC@3EwKnk2g}Ltey~#|~`{XsSg?@#CwO#Va$0sX`1^ZZ4L4%>Ebt6VD^~s7Jt|ZMk zVOq|Cz9OEO2I!Y%nAW(=#{{8UN!Tqb5+~;#+`3)IIU%y!6mnWF&!yxPJJ*#nLNgE_ z5HU<&m#{=gYT5T)CoaA=kvu0AdkR;8(mqv1ZT(u(t4sB#a>`@y_mf>2wgZ9+G_81w znR`JalZleg#!Bw0x`BPhOASFXpr0shDDEzr$kguamHe4a?cMrX@@l~Hw>k-Ex@~c5 z+|21rCx7bn-Fm^te!cqCM8;s5^N%>t&Q@m&MNyVeknVh}yQpZn;4Y;)09Q`c^i{bD zFT1JM4U_u)?7r2NUQ>U4MYQ%=EBs`3m5v=@6&eH+_0I0t$gdv znE+sm&trjGk}Z>pk3FRy5vNL%tsC{8>^1Z--J3I=g4S`GWV0287aw!2h1<$ul+k#% zD14yf8{|N(_a*%bS# zA;X?71m8Hi@o|Z>4UD(1VhdC9Mu6jQtUidS#NFI=3}}RC#^HtrU<~9VB)V+jB~uq^!nD>`a}3KWy*u zS-O<@Q)Krotgyw>)cgtV3`@Pa!s^8Gm>co*c~V|9+70{Qg36Hb;s0FE+lqv0|4gVJ zl*w!fLEJb?rH&A-oHLfXj7{c-w5Y7*4mCu;v`cZ({W^yD4(+~EiMFxZ%}*@vy%nnd zJH~?W)QuTCNF<#}WG50HzES`aZmD%=Qs?)!*-8En_TDq9sjclAMl4uC^e8q!1Vp-m zfOHk+LLAdmn70t5&lK;F$cN6&rV-&_7X z@o{-lrf5^Txa6#0rcz}9 z^99?|^F~X8`AcrNM?ADYMqw#_-eg5IF#yw!RZ33lKDEwBePmzOY`%vPWe=xE;85G_dRsc zW1YwyK9+w4RJ$utxt+98Qso@}oUsNh?Sfn{^0#vSAFFx6D-boY$7$tIr(Lc~M72?+ z6V76oWS8cea{Lfsj5V_rPIf(w8yysu;ArvS^p*2`LNEBVazwLQ>n+E?<%B+HJi2KA z({k4omp|~Arp7ol1I26ltZ7{zZJkZxC_MJIR{Z=R zJnhHAb=~<&iZ7X2c8B`VXlyBURe5(+uW~||XC0G79i<={Gw)nv$cR;8EcM}?&HUj9 z<@k2@PrkFA>eG`r^*%otGGmRM_KM8*;|*ps8$(2ixAqZg4K&w{`W${ECZWuvqSyhA zD8x{dnRtn7)^vCWlRXBEpd>_SrB7RueNa}6rT_&0MY5nF&pvB(UVa#x)rx)T+w6@A zf3|t{3CyTR;LxwISwDUM{{8myQ?s5;o1J1U8fM+E@%4#4gM-(oV~`X84L>T(JxN8% z>|znYFAQPq2%Y~4K1tTt=^m54mW>{{)^wu%j+4?1VAZ!;sv?O&H-;S6(J|B-qtK^H zUNc<|EPYBjNro_MpDd;9t&I89_P6At_AAk0?SL8*Kg(V!F zhIjAmJ&4aaPu#jq50lnqv&kwUI!#mUP?q-SUp;x<>u~+P$E+`aWTYJ~S#fnfw{Tt$ zlWo{qv;Tgbi*#--dm@m%@#zG&CjZ9F#{fXu&J(J*5v#D)rLw03ZI0mA{u3jJJSw^k zWXS{^65Zbp9lM4H(l%F`LO3IVV9*R?*7#XiFNN*JzJiLMM=Ljf26kBeYVUnE=4VW? z{=M&({aM&r_b>;LPm()n@`eAp>HM9eXI|h^ltE|3EUpD|h}(bt75yjDc$j`6T;NW8 zua4FuaW#MOj(^_yu`%zz{Rd{?*?(V`*@4FY{>1eD_Af{B-gg=YfCu`0-M#`~m*1b5 zPWk;JbN0RqI}Gpvzpt0~F8>$(WTJP&6RZ79gqHw)W5&v*a4mq9Ga^+zwDp*H&E>+H z)elgPYxwgHi98M|aCG}W{SyO-r|~tv@z7d)Y%K6dFDri*H*rM8P?t2vD1O zLz`=<(mwyjud4ESxd~fKbFxr*%&ZWP`%U*ydX}07488Z`aVA} z{2JG!R$-4H-*&^&>}AO{lr?mdfK|+c>hCiSQ*}Q`hqoF(473rX&a8$U>y$9R-UsA* zO)IBDlk#gG z$7=0yQhdf(qaVLTb|XbD_2@`pmc1trw?nFkF-;G zX%vXnRqjoKb*YjUE0S`xayvubc0Tmd!~bMyPQK*LaGx_Z5cU#uHtn&=fA9t%X*j_> zh|;5vySaR3c`D~~a)BMw0CF>>$7Eyl!073e+!*^(LCrn-Ltd7(4dYgIUksTEmVNKH zmi=)rg8pu9^m&e#p=1l^fIRHX+oVh%zGTk+?x`=^ho3cD><&=A_F}{Ju#7TwkG&Z&8IzF3%dUV7!%?Lm^qq*Tj$czU`?@oMsW2-?qL7KnI)qD6=-62iU>gt`Qs-jzpjO-@*%3Yo zo{sD%Ee@f8P6S6KxRv3B$L`LVc)qWW`K0U_e67y?efc8is;f@iI&F0k_oiLBfNFUK zB%NzuEjLme+o+@DxI?~TTGnM1y1`5H#BWb>Z`wbaTnnrGu1w*jSapRe8_Yg3P+2$a zgZ!SnM@z3VadUH?$*$E)$RVz1F@2Zf~Rc?#kZWN>+= zNcm(&5>%@1Y%6yMhwLqTwZ+}p*zN6#=AW&f1zp2f^Kg*|Q%`$*$>b_Wk!!E%d->h> zZMZ}(z&GDnL76HWoK4K$UFlR_VkKm@u9e%c2P}mJTdI_-ZUFlxdxI=LowgbBcC5ls zd<%{nK^C}I)s1~-{$|>dmg9TZyP9}jhP;)%Ts;FT|C8fER?XZk1-yIzPV0Cdn4pi? z0+d&pc|4yJ!t^w)gST)XghXS*kb}%D8wrm zQ-3^rgk2wC2x*&1j)(b7cC6|+?JkpDqrq{6%@qfwt5k8?>jf;uzJ&}8_MN08e_A(F z+Qu3v8GiRXk**6jUjNJW54?044aZN^8x@f*(Ty8J)!lT^WV?bZHB_#R|SG zK5w>BfiWGZb`D6(N6&kx#gOYP(Z~B*zKad`Gi%Fx#U{^5vmFXr*U0sWeVicET<~bX zblN8{cENpY5>u@hXk`H4tUgUN#T)l-vOR!&nKGR8qVr*}u`x;f1s zP$YTF?S38kRE~@)2m0Efl{;Gh&`vzmqb07e6<5kLQwUGRD$9CXOt(wg7F(67`*0_` zFh;Dta-OD16-FOi&A9{}wn`G}=?P&UrR9o9)}7l+^18sL;G)Fc z>RmZg$DO7rEO*xGjB*4WD^OxPQ(mwvKPp}a?a@3|cZT8rm)jWV*Zbdre(fn43+f#k zG0tp@g0&iju4}5j`HZQ0rJr7+6}rrI-bfEzp5|mUv~)`Q*~LC1)w?cmRxB|4eGrsS ztfoK4!RXh^2dAZh6hb4fkLv_tUH7*0Jg1wp)yjeN5(UwuPJaUQ{ zFBDT45oOC4N#dRAMxEayE;sh?uL5Q1uTAn#`K8^WFO<#<7Tef&Y`G@V%_vSs=emZs zAiK~?TGje0R_22c7Q1-`pE&v^5&3razKGmO2(!0T_XumJ*L63wWSPv)2xt>1hWnn5 zqh*YvV^eIwuCJOB)>Z?%CBx3KZfndMi#o{Zqrc|zGw{P#JPY=UD6o2@l~dAQ<3Icd z8udN02JkY2sc@N!hPH441y5%pYCYmc^`n$tyJk#bh%5_6Jt^&Z{u=X|?AJkYR-*{Z z=<`&Zx>dxVj8F?FZ(Y{vO2`juK++?&E_gj|%3eB)9uu>OU6x;x(gZl%+yKrc8Mc$L zEPSiH*o(HF1-3OiPy$2kR0psf1$L58`tOP5-)gIgmy@%Nnexb#1Yw+Mxj#(ydwOuJ ztqDhjk^*JL)DxlKy=b1NpOYSMOO-6g(>xXrX0{c-w<#Iht&fTe@eU&2HC^+jNVI>B z61gFM%&bD=Y#i!f_Nh4xfeTB0DFdlL_VW@JS+4XF4UP6m1-#g1x$<(zda~io zDo~UMh|1|w#Z4wnwgK(CtHh8+B;8qOX!SEH%u-+0?JfYjqs zde2kwAA_#SRM0Rfrik+l!PQdcc_m4jF%j3 z$`+c43So(Ovhwqr$HZ;y(*-rF%PQZ zk1hVvk@K=_d`*Csv5=_WXw{<#qwY^rU+F1{j`NiF|$^f!KZ?CoukTg!Oy=qWHF3Yg>wr9sS#9=6Q%! zjJX+N<;c)ZkNh!QQ@)xDo_-{};Q4Op08;hr*zUXS9?=5XI*xG>##&Edixv*zd*2rN zq5=WrEeLm)+rU*S8N7%7+$sO-PVG-ZN3vnFv%KVUsTP{pYEB#?pV0Cd33D;tN8FXp z9tlfXH*cxUWPXB6oH%QwH6n>CgQb-1B-to>r~u3qb(Hr(@~PnsED+xn`1_42eEg4o z?#PK(_Dv;~cFGD1G8|4&mC#`}w#F^vF#@)4=sx=gQiHT{@pdJ4&3QuQizN^gNhd_JaJ{(wPi^uzUtyPlT+trc}XUoZOrH;~3v1 z7lN6tcc`f$co=K>U{jlCAnXcDzL8miU zagg2AGUR;EDr0xDQqQ}Rm@sQtl(k%e^5gp>Q=U3%f zu8$#L+ZAgI+w!z#^#Nc$m)qwq4mlwC87thU?K{wqztFmCto^x;?5-iV1AbFvOfNkE zxyvQV_D7+kVL8!q&Xv~0ilJMS<7MW=!Etc^O9O|;A3;FXKPvEQjk}_!cYaRXq0Kb{ zavKFH~+mNTMyz$jLxwW#hvz^o@vTEBHoE?c`(}EwC_4FUsWJI5CgfCmKv+i7fUFrf#3MWMN9}-Z92UHeFaQB}B&ILGI2QN0I_$=cY zmRM9vtW+VsZi1Nx1OS`!Asx_qwksbqNz&-XhF3zM*Z88N#JM8B>&qU5xT6 zRg%d@XGcCa$xY+ujf*>JrNevXBkPh=gk}&*d3^&fX8yLj+sw8X32$O0C9`T}kf(zn z%BFRhTjnGD<<+@)j~SaQQxfDv&vvt}_oo@IR?sBxVMh-@>=*x+XXVd<;SJwcakNgE ziaj>nT+EO#&$#Uq%?hr*LioakAL5T2_SPIY9xwWA(6v-6#zcBA=Sx5k=9A}o-@#35 zh19xS@I4F5?@V>xwa!Eoh>8y)8!zIo0UnH3rh(+WQjgPbIJ6jlOB#V6Ts_6{QhpNB zhH2uXY!-I(XBUmKZb`s-Jmsm{5P*p2Zc86_alhAL>H=nq)0Qdzt}v#TwMZ+mixkkb=y*NM@KuHlXn4c?%4 zLf+u^SygoS@9-c&fgngR-BGZ=P+`I8&|LHh``QDl*d}CBCAD4gi0}%KTg<{oj;Yc3 zA&Kv%hUxT>NO?%PK2KYZ7keGG!H`A~;6je(9Za&{0mc3ZXNR_#XB0U7it0@D7ExJD z+cCoU#A9`2+K{I`srQFncz|5m2zU1)IXdVMagIgZ$&n8a!-HX?o`MN7!S|g5HBdXr zk}RdHi_$?pN*K(8=S&G~n}$!Tt<;7$W;V``#z>P*pEqLw>ZXF|G0rnLMzZ|m>hIFu zWIQw4Q({T(5xi*V2re%iuIlhbr)p@(0Zip50Lsg_mKp}9iGywP#YC-U>3vdVW*r&0 z0kb?(r?(j8ZOZ(Uh14Y?-C0c#R!sarAs`&IQ25Ls>5P$)vGR+%YKwh?1wPci5+nmyJGzdL7!6st?UiVgxPO`a zHpT}gh}hld6ro}D0^dMicds{P2nU}AaDIuVnb8rl8>Hx#nBtgwo2vN+Mw8-pCVrgv z!PTb*^YWvV3v3_Ksujt(A4`R&J)Iufo=GNlY6hSR>P=0D1rr{`$`+NYl;lD-Uy%+C zwTWrIZ(UJn>sq84UP;>Uhb(hk@r~q)VNSk<2-efNiVbNkbv0Qyf zqnBjYo&vO7i}$$L{{FsP_5nZWMxdg_XQB{h$p}TqLaGp_d7Apz?9#lHFP-;V%E0LR z8N>DRU=vhz6N^txFWA=TjlSWKofU3vpXl{(N-S)wZM@3xM=_!xYxM8c>*J-;D@=?8 zwrxM(m91kPW?cb{&5qSKeH`=4^dy$SZZ&W(RH-aC83UNh=nlC>7 z!R2@H_(Vfocbk-vYD1TtCM^Q7-lkcegf{!s|BIGN-$hYYYpJj0==s1)G_e zTBU$KP{Hjy9Iu<=D5=@FRJrrL)#7kL16kA=Kn*HDzDJ?nNWb#wZK8u3AL>r%)8LMF zy`*yDiZO*}gd&2H`CM+X@f1R>8K9}+pvl78mWb-8d#Ezw^bUVwYRs%`jlid;38C6L zxq>#yUZ^jj)^cQr^PV7%&vfuT(7AR(+g5e%{(Hd}aFRRUxm$^6GZhzio);|vd_mLA zFBKQ;xaGQiBiMp0D2(1VkT1b=wM`%;N(ZqmJvZ9T1KDnrnW?S@+DA{|>|QN4pP|z? zG%0V*XBsg#<8*%E1*XRm_5g>ny=qd|$Fo_k-PzBxc>-0dDK{Xd&@zb;HOZ+ge{`E8 z&Hpw-q3On~{ttG$#$(Y&5W-;`E6Ke%;)9T9f&Ul%hV3UuQGlwoqEq9$qI$VOjzW{t z_oyF!#geBsZ3Vjs2WOWDYC@zRPz{u?T`xbn4q`K~=II&WPK=blH;Rws%v0upXKYu> zpTmvfQ`I8^FwuPuPmCakO^hr>Q+5M!&8S_RJuOvuoPRI-JHCrn4YcjaV2Fa|2Srez zU3H&dpo59&D!Bi^#D}9_24=%2C~0(tiJ&VraeH~B|FWp7R|KFw>!KOuk)&r@YCWH` zl?8MREtZrSpbL#>st2?}h3{R$R~pAd1^`l7l8y2x)WxIYQ{u7D&b^N&k2=mfp`wJ& zk1er2pxZ^pd-|-i4q4o659OE*AumJ(^=kS+?~yhMS?K+(td3qd#weF@d`->mA^RnB zVu`Qm3s(!DVVLhE?07NrIFMRoS-wQ;D1sE0j;ZT_g`x^dHZDd72_l!ecHAmtl!ZpWartrG z;P81rUiH|ohN!4Lv*X-9Z%11_Q&OaFRJz>p_kkF|>i1GJ&S+o7YG7(z^u^r`j@6ZF z))r;Pv}x)3bPt6^d*!8AvzQJR?u7_(E58|7xb5+7i`A&xLc#M<;cQ;SV!^5I)^`q_ zi|Z2IXmQYZH9#nKE`^mjjN8IemT8GQc@(gww%fR!&hmT_(KO^jw40|^3uMS|xBH=G z!I&cGg?+kU^b$Lfo|?_R;y=<|B~n9C^vbr2uyo|Qd`(kH*QDu(9ij1FS!L{HG`3OR z0cM%2Ve*)D`5h^FZRfZR?wjSf$|1c5I^1&Vbi~Ha+XZ~gH&BE^R2;?1ml6m8P3N|M zEO68<+5KpKa7v|r<93%TbyA=E+3!hTpY1h#BoL~|Yq6ZI-jO?ZVl~2 z!WYv!wUht&MclmL7W?P#+NA(oMpt{e|JIS`EvrG#RfC;$D*W z|I7E@B!evEP^u_zoh-i%Gsp3ym_<8O*lz(xeYV7u)<@80wz^%_!`Yk8viFbtUATWQ zK4~PLH)Y-l<*5C#g`ay@uM=zYFTgqC>Gy*Z@=D7r9y6b1=6?(usB&s^8gTye4lsq? zmn=9S_dC!rF{Q_c^LPDj2NTn^Jzc}^>%Y4;xzJ_9(0Y^%?TwQQeKsxg6 z4Bh_klN$C~dEJxm8k5YOjZ7}oqI!FV!D4e{_p%@??6Y9w*d8AjB2!fL9K?JDY zCBd5;rKstNgnZAfK5Y+Bv93IUhGcLXGQka}b;P6Ji&vtwXbTBQ0hUaKZDmU(SOU4) zEkPiZQ7Xr#*7(l|$I6~M{gPB9>yrTuihHsz`RjwZKDbg`8tR*JQpOo|#Il z6Z(Si+z_dp(nhuRYj=E4l+pAYkxzsAnI=6vc2={FbrcknU=!^2d(JVvoI`~%`QDX7 zZ06)ut}$l=LE`I0cf~OvDUMvvEwx=t2S<=Tyj{J~$!L!BC>S|6FNfNcLAmz+Rb&220v=KrDn=2nK`ZS`xjnTin8yk zkascWjqH2p+=4w9n_||H0-s?6BhM&)Ht+d_ZZ1%7RH6MOf>8!24ECW=M@-zLNabKvfxr3{t}DNPjOk_MwSD_4 z#9h#{>;tPMqf=b&@M%q2?!w&a(8wtN*S?w|ie0d2siMFL-74lAIeV?W)N*K(wUXD) z_=9`sZ2xB!+8~j;Rc_$nz%?)D%JNxRp

CNw6=Kkk~gcwt< zmkHeyz=JMaI0*le`F){;FyvrIXRl2K3M`iT(s~%cijChVcN??Y!R3_{S`PFOH^c-V zDUks&{F%&1uw60FNA6NE1-Q-w;%zql&?@!9e`X-CI#us~c3Qg7y`wM59GIhlGe(sZ z2i%t5G?(vYUuP{(W5RUeCqeExpB*5*EU(7SQp*p||YxWxSFI9)m|K2#k=6v?Ga@ zmlw&hmaMza?z?$)3;_DtBFmVXF!j)R_-E}`)hctRa3J6WO;G>#e5?gckScW!u)T#Q zphBq9osr+17|7*LeqfB6qXXXm}HM|U3^YkaOL_e>k%Vcno zj1jbkP)AP3IN2SN<=QEAdF@vb2%vYK&F`s9fBvh|k4fd=M5zz!zX$`FE*+TI>&m~b z|2pm8|6zUq^@G69<-bgB_}~2}Q-XF}^-(!}ZGa=td}zxq(kt@0k>%Kq~a_Y=8I=9E@Y+N-DoSf z)}Z^ul)Sp*>87egN;IE@oq~%XyM7`Z-8wJ6ic!rj~M+`l6_ zFEf2u-q;aoQ&Z}9S^FY8{YQ0CRI){3bPQG8a{>^(pwyXHo=zx7aAMzl1CY(s6SE#HTO zZn7{doEa=Yg`?rLoir8WudESMh)~hmjv<`sp2ZMlFd_z1q#xf?mn~3*5~khou#FOx z?*5Uvn5(3a7<*p_l-G%GYkLG9lv8y6kxHqUCJ1DUhvvUK1N-fwfV-lm|EbjnmJwQZXWI8 zC_(|>Zb!fCEBHM^p7%VoKa#+uS;~CdLQGrvA!i| z)~m4OZl%ozBxR)7R!u2| z{XCT``UEZft68xIT)xYAyODvqs|oU0zPRy;!%b67p>4JJF@7Yi5~oFsVFet@NJ;W^ zHXLo%RFS`Kvr1LOUpIHa0(7#^Yw!1|b*YAZy>TY#IRJY?@endJ)+~oQUPNKr_qf%3 zut&Cq*j$M}M0)}zVv{Oy#Vg`y&7_o^!Zm$^8O4;(Tl_XVORa!c)F(jkluX3YBdXGF z29pkDcbjrR^QT^v$$trXh|LJ~YOhHMA>9lp=eBdi; z$C|q0JXGf^Jl`eEhe5_C4m4*8hlF_Mo%E}_v309|&KL@Fry-T^ZjL;WSp22TWjZyN zj;Y#y2TUnJUJjxJ5dE& z5oE99SL*D9t1iwV@z?^hbuQ;-+tPZ0E;xVfg_a3j)-Dx%tdrj=tS=XT5f@G8%O9&^?xs-Hjjy40%kxD`&USO_$tA4b1{>wghTuXtPxVbAi zj$Rq0qzvVOYlK<=!V={snbZv4>}7LMOS^3n z+EFgzmQwUrlbgFEc5S+5Xc$_inNZZ-mKX4NE;jSit)wB>-~3EZ@d1AZb<-k&;sO1m2uzZtqX` zJG?$|r%)r`)GMoNT-JE%bhp!bYJ~d7fE)Wt972{#?x7Y;sJ7sQY3@IUt~-sjh5eYx z$@866?9@Op_PxF9s;5=`%hd5wc5>7c&&R#p)#0Jtqdr40SGvN;O*e8f80Yi&@maNG zYm3^Zu2l6o^`x{b!Qe*VlWjwAX;=040;DOnrKC?*qav3r;Thc`kd<7bps$1}Lp zbklKTli+ucnmkI|j7fU6$xNlqvd)vdp<|x!L#gXpXzyqdwgY8-PdLS1Q$HQEjK>SY zxpQ$aWw7`SEqD62Sru>4GZXfw>~r(12k7GgqQ;sTqn;i=s2Rm7CC12Wb375(^^i9A z&4<}KZV~Z9re3wXb=(J++;{gK(hfqu8~YuL9zU$yns=TacE$?>8Uac3nw(s`*ohP5 zaBZW*|@sjmLX zf_tlY!7%zBcI<$0#=RG&h7|>^eC7j1eViF@qLk6I&;ZWeA0z#zIGNSpI`7`ehVG2+ zD-7UTTu4wK(sd;&JIFVq)x9__e#-^^<^04+ekAJ?RoVx7K1ZL(8lUwH!Fl386bYXZ ziM;OvTB1L9M5yN}k>O7pt$rFSygM}(pumQjmA=GIvTIh@V3lHlHaE|n8swj0;m>ca zN8Nm)e18oeyR77pgp5Nfzxq7#dCmKG9!n$R^}z}6+0$pUhCOF;^s1LWUaR}#(wPfV zIJe_xjGT^dWChJG=ibe6?yZ}VNP(zrsvYXO`m`{+L`jboPrc8<+4VL!EjWWvYdq-+ zsO|)M`*>3V-*{vno=SBZEnOe8FDqib1)&~l zlO=hIf9H0Q(J*@jcwGC^`4(!{5JGGJY~M=2wJegA2d+HNAZsLPV0 z^~PwgY~&mz@@yvCnXJJH>wwNT{*xztu<$d8fc7tz1Y;)_4^-iBX5W=epT=zd9&Co?J?a zG?@k8U&1WXPQ>E9A9sRDT$ruhLs>`n_j{pZ@vfujcRl|!+*9=x^YTyLhwHPGu8s!G zBc?H$-suM2Rd>3jyyr-x^gX@1s9NPLki6!yBFhz&yPP{ASnEPqk>W=$!eRXR#Ep*J zM_4U21)`~NN28Nr2^c|Wy;=#=sn#e6qDlrp^`{+wJ!`v>-EAhTP46p z`*bktGwl^1O0LkuFnsXRM?1Y3ot;)8kbJ_fh1(Dmglrcd@4A)z1ZmR?9;wnvuG_!o z8U-zH8@=(15wJk+@7MlrVx^2Q{{#FxNCKX&veRcN7k&jz01lcuK6!G*8qi<;^BqCt z|8*YGC1~BEf9#yd?NO4+F{pE(PQ}8o2(RJ3_TPHoI>> z9GR0z{svjvrB7l_WC_Xg+CQ8P=mBFUc=z5@8*sfH!6NXNI)UAdHSuw!8P|a2UE?M4 zZ!O5<&RgM!l@*GMy<6V*W^l)^pB7-<8H+!iJ*<;FD?=JKz~3tF9|ljcwfi&^f8JVy zq$sQeXSRP>_17`Omrs8ku9LTwzF#;|J~RNF?L`Hb6pZ23#M}!FQgHM-_n&;0JMY0Y zpd?5QX+6b!!s0>7^2R<2=hDtvdEpAWiEnNLf&>R4Z1FIBr656WHAS=>+(bWdu(OhH z12T<7^5Ct9FIR+CFCL>pszCuM4veeh^;?T`yGs21UJrkg-!nG-oR2#OJQ?_{FuFd# zspPwP?}{2=Pg{t%?^?aE`1HE@J)wTDHUMTnuT(z*UJP59=PZF{4_!V{0yQ_Yg_vlj z!i4+1v;hBxUW|9^M&Fg8`=DorOUKjI5~Rrw+cua}H5{hBmi8PQaRc7~lZNx3ex0-i zmxvtWq3X7Bt06v1S1)7k*^W@}e!O*gFiaV~=wD*zeE!V-&v~Of{sl_rHE??RNLBLn zDzJH-Ux8QWc~n1UYWM9`n~(6?-H@13G7g)(CT+rf(=}|)TkX9(eROI*aHHH#9!w3= zg{bMukfkr)?S;IcSHpw*sbiomxG0_6vMWuxM6#XAe`r235bH$h1lfH2Cv|XAotb&r zeXi~JhhD>(My>q2F_|O_>nC-#fcDg+ido(6Zy(Q94oRau#9Hb%W)HZmwZuMM@=i)^ zv|d!^{IkT!oU42u%y<;2a>V+E;+NYe93y?8v-ERL>lR+`{EbgD^*iUohXe1qdgX$$ z8y=YGDrv6wS8mR2aQZaJC0ypzFC72muUGh|Q(*<~KOe|vXLa^0Rp#b-0+on3XN@d; z1Tp9?pr_7ybInI9c`2_cc}3))@ohiqMuKcD_*=Y`%Z44U%m2}>rYDqE^}VLOctp}@ zilL8LWhBq;mRCt}dxx6Baa);Hts`5dB=B!A8>@LJ<%NYbBSl=3o*_*epkp1-K8sjt zb@%hOj@9=gX48`a$R}t5r!v9n6pX_IwcE+Xi%q)aU8{BQ}a|>n)l#6uYIjf$jBkGHumSD>SuMw~L2J0)G^bIao#-s*}^AG1*XBRUv-yum?)x^k>dv;1eJm|ND6 zcc*rfUp!jupJD41&WG9VOkvM{+c6g=L0EsSQG~Sj?;Aa+miTZNZ{1x=GdpdgZo3rl z>DDDcTtm0lGD{dN_<_O{*pe)C0*}Z8Rl|uRj4R5}**mm#3Qn8BW|?}*p#q@3*e6p| zSv0t;tv@0UJgs}~04To~!nib@La%ZH@-5eJUZm&DSNLQCYrb?AdmGJW(be-CT<)Gl zq58TUnQh5&z&bXgfwHG$LMn|3cN9nro*^w2qepl@8@STflpw^`$Lh@oQ?bjnPv4#Q zPO@KHSz4z}y;i#Z5$hbsT10WZ2h2ll`6(8@Xn=ICPRpCZ5bo;b*5+e5 zz)?uSI-a&?sL?K=?wLAt^X^pCCaWx}C_wQ3Lu*QXjPmkaMmR}&HF*(ti(E^C?m zmq+<|=iH+2Ff4}Uii|ut*eVH!jqk)r7NR+wa%5jCrWy+;*p{-Q7d-Gn3#*9TEu@dP*9Nwr@=McOO0#_{9RfrwSB;Eyw=pDHtu%;9ceib#N%ZTptwG;x@k*jeN0#upW%Ar z%Mhxp=GV25jYsn3R6mE>1lYn;b-gO>1TLEoIg^P;+19svP9@@RsiSz<;#3CpKHi7s zRr-w)!Do>z(`(X@*s;qAnCwbaEsuRM>3FJA>fNpTnA4X>zJQ*~dVsGviqqIJlc~>- zy)*hbw%d7Ti{~J+D~nl|a{HyHlG9hu0U-)je>0IYndNYA^G+A7b}@WY?j3##R$pHg zD*PnKccAakg_JO3qLryOspx1U1t_oHl9XFJ&82^BM&^%mpWNPGo5~;bvndr01#SXBNDk2{jY%H!Kfu>ke5#oi+J z?*VF6#6L+I#u0@V_AL>kzL=y=mF`|17qqdmorV<*zm!oZBb^J+4e{ zc7tU)TTsOUeUVqS9x`z~Zhb7D8j?ylB~97Ma56llm@KZ%b#2}9HF;B2-I26& z?ApdIpP^y)ElH7@(lf`;@QxHSQ4>4)Z+!Z+4yXO7b21fo%2iY^trIEdysZ`@O+C<= zJ~lPT8|Ud)#(70uKXuK>YhNFp*{;IqdJf?R6{ni7_QCvO$Lw=O57|}g4~H}h(Mrk| ztsNeeowrX8uW`cNCZkV&CYXtDJ$rXbHooflHw4?KCp(JnrI-N4!zXD)L5R!gU;k-t z{Uy{WlP_bjF=bt04<+x0NO2|(2xXL9CrU+7A}*;Dg* z@fejB%^P3LCI&M^j~)tjZ_p%O^0am@Piq*)W)wzUJ?4hrNE%Fc0d4@hC`H#a3yxa%gQDDCdOuST= zU|uff8k$aSGznfk5fxGpmT}fd{{Nj)(W@XSn2E-cGfZ;8b|W&BN|oOmg-9rtIaKl_Lw($Zc+m$DRO-X zEcC;A;+P7MP%#!5EFZ?UwTmwf$!rd_lyDorJ1V(&QgTdRWP2k8Rqm$d6oAsE-ryY{ zn|wNfjr*vCSBumg;>&mHTt6``+srcDr$K9AgG^6vC9(Sya-Mhe#)J;Z;31b(nKz3l ztb$PGuBAFL11z>{cI*1Q!p_bET=9}HHyM2FOhuudE5MwN-eh(MtXV^!5HAF2AH4GW z!{M$@Ax4{beuXq9rp=_i!Y4Q@p+Wt9>85A0BZFbv6v2x*3uQ-Rj!S(Ql$Svttv0N; zH}2CI5eqjaZT5{U$VRdZKREBiVYDPCa>>Z^PVP(5CgrV)=1RJ9VJAl0EYH=bMA4+7 z8YG?G-=;BP_TgIh*_DEx-KA|kk#OETf4W+^x%H2MTpaY)E)_PdW~1{3y0zpyfjziX zZBhgxs9M_mz#40`PY|H z0?CE(dvJ#zbpjt~tj{*vU?v`Zt(<^UO;D$iF6+>l5$(H!Df= z|Ks@I1GrZN$X8+ykpp%))3y`xO&#AWT`YY12N(5#th3pEAYE--_h>II%^4|y^~~=} z-h=zU3696w51E#ZrY`dHT{^m86Jzm+bo7}Dhsn##kiJ2lzL7t((U8L2>)@|H#1lrF zPMipY(-U7WKl@l~4A@zOmF8==D_q3i5TAHLw#uX?(U z+pzEc=8h7Nw;ZnbIyWXfr|5l7F%~cfI7@b4x}ebC@_iIx|HC?8pXWifFFDSR?nGMb z%kMVKhD7a^5zsR0)?QrSG`xk`GcLs0m=lFKOBzo157FNp8CWFmc`-<%rnr^P zr@pG$%W%1M+JQ&1`p{U<^Q6f3Fby9&|DnglXuFxn*oI1Om1HT|$(D7-Zj50jx0I|Ah8axR z24iMqn88?nm-~C_{(b*Ck8{rNoX79XpZqiPxjxr*ectca>-BsO%kfu;kF|cyd4zSIiiHA>u%OCKDO-^ zb4*Yw6XQ!&ua%J*>vMH|`km2!XfJ($H@}{Mb@+XaZ=9At&|+ZC9G^aRNUEr;!pznJ8ML%m0y{NiTOWKXQo8k85$z^v#M z{h?eKh0|mE(^+k>!6xTk$xxON7rEKhneq-YhWBmME`_A@=K9s&QuH;9Ke1-uz;nwH z)%L!3lgiHAmYUS-+Qf`fTy-UsLT-;ho)_PCkS1m4sH1Sh>I`M~B686iMqW?M$*9*i zM!NXr=cyuwptbftfOdli2V`llzfkOo1{L8xzxbK;d;5JT0?cYvdm`?`(Jsld#vLA> zU>ysQd$-LiDfuGqg+N+L;>uLx*?&O}!covw&pl@A3l}Q%udC$n10vlOqOO$J`~p|W zrcT*??Sd&rgi0Q}GWIxv^hj9ik zUxPLAC1mo3=|Hp=PzdPd%JWcn+!lp##6Y+bal##T?X>U911y>ahM#&GPQA*@ZDOW^0UOW*jU z55l(A{ZULbdPYuzX|?AE=TKetoy$>e=r<>yM>a&=*};(b+{is?*~%YE;uQ*%Ebs&Y z6k0P;9xPfve8jWFEU2@kml{BPeH{Kv} zOX@~=q#6Z4N9-Cd{&~}3Rg#r`T;l3hL&g9FReUoejGSo=eyDMHm}`o^JKATqmu?r} z&|R}>i`cx?L#zt6%MJSqhZ$hSer;VxL?|G+&r~6!?0~@YtuO5CT@z54o&am3zZc#3 z96(;}IpH04R`kQBets_Ajcco(1`&6-H=YN-bkNw1oM$P30}d_&ara~(KGYxAJ6$NL z7@+ADA#pD1B#^O#c%$oQG#`MjO%lxATSMl;6lW1kpfIjht|CmhCbl26P#dgIs#b1v zh7m7;74^xUTo960574P-{uo#x;cHKHf+2Z2Ac>a~j|_v8kV4ZE90KvOEboSflBXz} z(d=#y{!e;rueWQrp!1sC+n56n>Mc-DU<1WVfv=+0H51qSYP2H9TGa(V{@Lq= zXt!owU@qD}yJo{w>umOgb22|X+s%@Rk|vE09r-zqvf5VM4BM}u616625iK)`E6`0K z;HFNKm|hbWYkv9-8+K)`zRebyC6z9}9hbK=fe?6GOIO5?Sm(J^N``yx)hfv6C<@F0 zm>*v_H@uY6vv2$mT*BeJc@0&-V$?;3FqlHIy&RnU*dOaM^o(#0XN!rIro2I`3AxAA zm%dY_c2YYB8bd6z>{{FTr0+3U4@~wm8N(Z=0)T831gg3F!0Zv}X+*tz5p2W>&e}d8+YlFG+>&5e3e_; z$HU)&m?(a>XGgY+N6k*c+_sRGECzyx+ zqG=AIP~@TT!Z`j_w4nSIz}@hi@j{YVQyJB&nJNWk`{Ms}+im)SROJ)RODq9Jnt5P- zgrMXz9L_BDh(ad8qu)FkfdFsXVLORc>h8W=$MptYaQ?nO`&5|YN?+JCg6hTxSB+5{ zZxcIrJv~zKZ`{*!rLF64n>*}A{T=Q7tTA?3iq|3&y0VvgTUo%azue32%+MXy3&vFF zqLTY8ZlxSc3gV$Q6~EIWLClv1(k53v$11lyteY{EX4Av`2}{F{*Bc4mOLQTM#h{=3 zu>VP`>uvzi7DQ)m#LkBmd%;A!0OnZtW-f$883+W$$+x|8DU#y;Loct;RHenwidH>1 zj<|9)g?FIkp5h35*IPK_;Z!J*TV8U^I(s?HlhDmM!9AT5=(iezfMDC{evcX~KYtTN zw+nRn{XB#Xzq@v0bM0AhbnKs_s@Spg&x3*earZR7|9GQs!I6Dv?x9?9)y8JS;y26& zEq*6zZRgi2?VJ5ymEbS!L+Ul*MHCHXYWQ8XYismgTAMwee()p0H8s~a)MZHH^yne4 z>tGbXg`SIh<&sE;y*{TZr`NFpPDwH5Im)N(a37!r>D0D&6bwc!jN}(Ucih#Q9lR&r zjSP#sDa18MdQ+Yz2o*bt&A3&f6>w58g< z(Zz%1Z&2ixEGSS8mo79F&N>Sk#?9%JdLDltuDu>3{CdG_#Me4eK#Ak($Bpez%Ktc| zLxI;bbZ&NHTCm1yuSf3EZeW;ZwKLw$&PnIJ)M|YxYoTt^|7V)J06AF}Y!Gf!=7ia0 zUGC;T6){G6E7;4M$3OSp^My{akVyM*fkChhZSnipL$AWmu23iCpV&hk`FB|bMtTue z!mKH??7&0xtYcEx9QREdAD8BBKdrf)@7bFwTi5^6{aT^Z?*-Sh*Hc|}YKpF_Ni1&P z0OWI>!{k137XM*EaS3#lGIrq!$IyBdHkqV4{GY_DncLd?1g^_f5pSY>uT|!PLhqY+ zBM)n8!g_>f^VE9gEuib}X(ftMy4!F{3h!dl$oLU}jOEdwm!sl@WM2o4RmJz$`RT07 zQlXf03gHcwVe5}Wm|OT4yk&wW!jUP!18T8$v3F;q7tSL0^uoK0NTh|vll5}(#_BEC zUVBuDi!wV*tVqZ&P>j-{t{2Si_aVO3-bjZWNXxJX_LzsKF+H$~`RaQkHAW!W?oX4b zy4dTTbKV|mCgXuVeGOR~jda{;*}D$M8&iSe_$^7`;qx_?H&Ah_L}!%H?tcD9^tvdK zqQDl~+0w$8V*eUhT%h!FF=e4`;Qc^xW#RQsx9ck-!2<9>{_KOcy$ukG7%HW=+r`kR zv((fSqYOo$I*z6~M-g2XQ2Ef?4d{&3Zgubwf4qLD1^d#;QT}|5S zgek8&YJ30(XX)t~k>*RGQ62*3B2T+72=Tj~rf?y$F_z7o{TmDel_ls8R>ByCRMA{r zZ~BMP*K7iF2OMq_HnrpCe4jM8L9vPthL??tGjBOW_sVU2Z3%Vwrs~~bf5~rmdOK?P z2(+PB)?KjmAD2DkZ>je8-MMdHj{zXg9_8KtTMGb8<=_5$Q&s=Hg#EFnpKrd2SpN|R z#GQVBK0u%V)*;K{o9}}M58Mua|NReucmR07-`r&T=P#H3zk~ntQoLCIL%lD!c^9#ed}-~G#D>u?d)dAZF`VCZ z5&&KUbl!#+G*f<3I`;~+QqSkenAoZH!;CEWkFgni{k28(gZfl%U=;5)1gmJIz_mFEgi$~-0-0HnmYzHI43-(%;Kd@~?C^5ofa@3hu2A)X+azYAp*08S`CQ;$JsUP7j+qkpF8dzR+S$0JHiikm-*_$j;5gv1wqp7}huX6c_h7q`i0hz$&!YrIYh4G)L3b{gz~5AFFKk3n*HWQM zI|M3NQP|dEQ$9s0!ctYw21{<&=?c`wf)i_efr@)@Rv)1 z`$NSQ9y9_c2iqEijmG_f>&5x4 z!LlP^w+Wc#q{;gtZz%VXri;CeU!D!$m4b#IWOy{Yn|kiigeufCe8pIplfWDQN8#*R zt0I80{U4t>Kn1=6IE|-X`b-pR&aEV{a{z)c*AZ!%y&|%_2(KhLQdoOyahqmgomT^t zmpL`bc9UltJs^^!Z$ri=&D|BB)@T7gh6}>7@)kJ1VDq;i3LqyqEWoDopzZ;nR*Gso zdkib1LkP3oly`#F?n%v4Y#;nLmv-!Htj(>DKPC2U6ybfcQkFqJpkcX_uVisd2!QRo zPF@_>{Zq%}`l5y6!Fk21*KbHce~Y{)?iXSK>oZ6n`#YR?#rcH#&nC!@hC>R&$a|%V z3G0Wf;bAmr@xt4z*)zz7&UTL7kC0wa)K(K@dlNU)IFk5<$c$`<DjU&xuW%f;`jEcDj#IJYnxX|UVs2pL$}hqgWc1O zX30@J$ej1tyDgE}$ETxSw_zL+HJifvU*5T>_1kO5tpa=j(Yj`ErrYf(j$ha6?yLV( zh1Ok1-&00tf9Pm77No6M$?;|v{G;3*@k5Ow?AnXFu#yARJ!9Vi`ih@HNEI~Js%<0u zvmW^D`#E}FoPAB7UK|Xw>=&IS8*N9)M27E`S%w*GHz1R9-om|nf5l5A234h+FN9ER zs24_oDb!a(){%wFw!MJ$tDLjePDdAvUie^ssZ~BaYSC7oHX3LNP(|EQ-7%gKh@X*7 z6|CD79g|rO6GFS8gPwxOpK*Hd5yoIX>`n&@qMp9S)||`68zAxpwtpov_ru2Xf7y;v zA;D=P0ROryp@|&RIriW`@khNP~Jz+TJT2sWrxA)YxF8M+j8Lv!soQ%iW`;sig0 zmQ=5z5q$(9pgKD3W3k3EDJIhc)6xic!zcZQnX0f)&2p$fllU`DXu$_HtmMTrxyl`I ztW?&TZvn96RAhN%EA&t_Om8QX3>qRPZN;!L+EsTjZsmeayM4c&LXVW4om`8Dlx70s z>-tm-cN_)g)HO3rJ%fJcttaQQiR zv$6~=WtXRQ6L)V7u-<-q-$5%BFeWQQar4e}$D1|F_t*%HaPm=ECR-1n;xfBu&I9ue0kz%Yz_?_ojN`-g~7I^ zO#UdWO(<3OYDhyT09K-IT{5i%yBk5Xh=G`Y29C=h?@m= zyE_d5-Flfb2L-p1AfCH#%*>>((MJ2!Sr98ULl?ki_`KakVXP3CIbQnRNiYp#t-j5j zmz<>m09JO6J6r?8Du9RMeNX5K)Ih#uPoNxUacg00sv#9Kl_wg?cUpJz_eqPaf z)~TipwwmVbpbKru3nN>Hl_*vcnH*Q`P)U}Tu;z_I%~zY8-A@Z(W`Y0 zXVHu#^(+H9ChR@%>e$}aaOtB0JWIHFnn1$K@xl&ov63KEc&QMhWdU<~WmCyQtgJMw z(Ruf>(XQMT-xgUiE#lpWqs$!7<9GFg4Dx=RLarclfFXPw|QY-K+0AjTui5z0C^`g>hH+dTJ?FjM^0hfi+(kNHnjc5^Ap6FLr2IwTL9S#*H- zuH%|cqjQEHMwsddjcA=Tez86GVE1zT+V1?Ladsw{k70;JSApUYmmT+tU9Gt*zmK@L zleFL5#O33tlaAGOSc|w!cK*hbK$BW~)ci#!O}dMnSIZEFo)4f9cL7H0~Bsh4ruWUr)m#MAaL9&T}IC&4>Hc~N3k6ijt%ENupA{cVJ@=A|W#!2} z9-3=T9+o3Ltkcwc;%fP^bjNS}k=A*>!y;jJcgn~;e^@wNWuaL5(mOl$gB$p%RjUY$ zFF7iFPSXN5FtJP7z|`f)AU06FY8}a#UJ0Zcjaj`QRdh>_KR)AhOP(5+iuUt^ruSEFjK9$>TKA%-*Yt_5jQALJ6dvQ zfe@yIv$v^8l!g8$yy9SEzbVE#wSn;`%9HpkIT<*&ETsm`cY1L>E4xXklq~-kjwq_# z&6dt(dbiP!zFK9cPS2@DbKNAkV!b`h0@La(3FQS<-|nS83t{W`tY7M~_ac;%$Ct>j zy;+xrDL!$+BE!cUJ+@fq(5+npnr&qT#O`{wSwL%jXbw--k=%L^uY!6q`mwaD3{RzGNILWNDo8%@7& zwgwRS8y$v9e+qjqYUF8RzuY8*V-(hviXS>CkmhKHzxRp0!quzEMgKV*e8r+{pDO3S zF(v-@CxJL-UIcoDr!4igZ<+nScW*!acGt3pY)btRC#VRF2>AV}o0v^=@Ub_-K7al^ zgX=$w*Z0}E9+@8a$0YiHZ79mWm+${ow92HH`yzn~_BK2<_iCMb$sT3ay3C8FL_VVM zRsD-1o_IMpurV=Td|Rn=(Rn1Gz0beycPn?F7$KW~zdE4svR4EcUc5j_GdetpdtAaGRuT3-O>xwzb}v2x9k%i!0#IN zfV}RM4+e7lC+F;R4qE^PL3mtPbROh_J?&`rBFHu`SSEt7s15YjT+7Cc4?jluNkc1n zc%M{M`{}r)E(Iez?xBl9(x8}4%N$`oX1cR?1<-~Py5;gNVQ5fdZH{6Bv^P^;hN;z! zi7>O`2y|~ap(NW;WyW%3>f{4ld=nnZT5OZYR@~q}@0%_G&39-9vGtM%%e(;SOW!se zsG=o%F>!34SmB~l9{M0`7<`?WG&nRHt=Csup`Q)<2U0-DKK=nL?gcz!_gC;2ShHp{ zfBuaf8oD1B#LcUtG9m&DLrn4Ue^R!G)W2O049@BUv>Hn^`aSfJ531bSwF+bjOyZK| zTBK2B{IwhTRo~;AfmAib8ZSYxh<9nW6MDxx(cI=q@zz2pO5$ez>U-@8c#T|vD-8^q zq$mIfske;kwwo;ZF=5IiYi`8Peo{8G+k-pj~r?p;Lvh^Tg zC0goV-tZ}A=@M4x_XSFSqkQgBqM?IsY%P-Of}QGKJQv8wWdy@(4a$4F#ltU^MyxXT za;w_q6_GVAdy4B_@AVsCNx&PeIrKtu_;jJXiGibr8^w2f8p|lpRH1jBdswIcHGg`M zU&SSF;SXy6Ay#^Elxy?HxRaZrg_`(rEp8{?BK5DB;goW&FYFcQYu8t4pI(OM@-T0z zof4|`w?P;6yiIwz=L`nQc-HJ=*#Gbm*Zl z8GTBg94K6UON%*a*$ zZRnaSPqPo#-w7w47ul8%+v)wrvofOT}`k^w@U*yId500B*ai zD60nNPXRkwe-yt{GUM+BV5JPTk3hUR$*Zad=qbSLH(+eu(e@{SX|&ftZmp1?{N3zx zcdVAiG37JCVM_yD6)s^^JlF&JvnSsN*#No;Njm3c(^w~p^^VTEMneR~4uyb9ji)Br zxD9f$@EDCLS)_nllcCQ;u7$1~L z`XbR}-F|U<__lL&wZoDVn`zF)R(V}VxRFubpi`AZ7_FW**|>GXV+|D052p6qqIsAG zCa%!E2&}LG*9qLXXy^83F+mO2+AvBlKnsKb-UxGWZM0StVZHC1UGwBlj#8%^IWT-O zx`tG31fU)#0=+9vEeiB!f7`fNW-)m8``L3(79G3s7=U`2{kON~ur5+J)f}q% z-8FY$;2_0L-o(rNP0e@P_P%k#SRaA1Y(z5^<6}0FWUG?i+qIoCNsNTA^&j=NGtC}A zsY_N56_B)hy6^lKf2wjZ6%;B2lvxT6fIBk`tg!`vgxSMnzDa;1rxctx`G7&Eh*<$5E!} zAH^3w_I4!N^o9D&ueIJcSA=V&2G>G1j)nDl*%#ut(aV`P6FaP9aU<65a@7)fB2t@JH; zBfjFjd(;*~TT8DFZVXW8=5{qNvATNGxbOK)?q93h6GqBqUH-cOx5-qO zR3ff$ZaB!mO|k+w+Rj?lKTNK~>};7`<`oWjNF9+_URl8k58%OPIL9{MJ8PG|a*QmS7t}iEy24 z33H3L2wo!;=l@U(_#&FNhXi+S3@;m)#$litdwmZZHw=pNQPx-ZXr}@Hvd*6{u3A;Q zG{NVY&VMbL=ziYReMvT6^wdV2`51OCVzpsXj9sAs1yMPFP2{PFff}jHDJ$^!8J>{E zxRZDMxRv#qjZMMTMwBpIhb$ZA*r~N=PG_V)ZU_J$t+mhM8D51DtH?n)3rQ%qQlQpV3np0&<^ zIR;Iok^|4dt-Z_toTcQ_ym{)^_W5A@wp96p0&J)HTW%JJ`$5L?^=jgd{g)d~PA=kP z(A&bB8+7p<&S{l&!NpX}f!UWL%&VgL^re*f3|4oR;HWw>glOA;bzZS2{)F3vx3_M% zy8=w*RF8rvviHb_xYM4%tal>Iao|i5m3s0Oel7c65MjX)FADsy3!pFr8Y8h!Q(%65wIN9FfBtoW*t$~2Tr5FAP=Jd2)@vEB2W=1>}3{%a~zLqw}D!ketJ9q7vjP=9TX#SufADD2cbe9dN+Ua9piMPt$Io*EYGRU{VB zA2r9__E!6Ad^5&ug77bUY_1mum(qIMU2pwv>TZ z`P6z%6a~EJNlrOhd+|TK&o`$kYGFeg>iu-qoxA{mI83mpP^9-2=dlvfYbU9G1nP00 zKHty`ra*@ewBsp($|ig#3pGsiw5zM~onsu&x~DESM@&kGJ$yI8#0(1#Ka3*n{Fd%6 z()RSua0V|qnQt|62%h2{#OCJ7PEO*?V-Zy8OXbSR2Sw9hENyKcIPHIqR%$5 z*8!PzTNunVM=Nd3^w<(Nl2Y-6+4=@6ba?ar^0o<;=htTWFb Date: Thu, 3 Oct 2024 13:46:18 -0700 Subject: [PATCH 25/25] HR inbound API not yet avialable in gov clou --- docs/identity/authentication/feature-availability.md | 1 + 1 file changed, 1 insertion(+) diff --git a/docs/identity/authentication/feature-availability.md b/docs/identity/authentication/feature-availability.md index 01cdbc2165c..335ed4a211f 100644 --- a/docs/identity/authentication/feature-availability.md +++ b/docs/identity/authentication/feature-availability.md @@ -109,6 +109,7 @@ This following tables list Microsoft Entra feature availability in Azure Governm |Workday Writeback | ✅ | |SuccessFactors to Microsoft Entra user provisioning | ✅ | |SuccessFactors to Writeback | ✅ | +|API-driven inbound provisioning | ❌ | |Provisioning agent configuration and registration with Gov cloud tenant| Works with special undocumented command-line invocation:
`AADConnectProvisioningAgent.Installer.exe ENVIRONMENTNAME=AzureUSGovernment` | ## Other Microsoft Entra products