From 4dd16e03e9df4a26f992aaaf6c29cca77e84df95 Mon Sep 17 00:00:00 2001
From: Hardik Singh Behl <hardik.behl7444@gmail.com>
Date: Thu, 2 May 2024 02:54:00 +0530
Subject: [PATCH 01/25] adding stock image

---
 .../0139-stamped-envelope-1200x628-branded.jpg | Bin 0 -> 121314 bytes
 1 file changed, 0 insertions(+), 0 deletions(-)
 create mode 100644 assets/images/stock/0139-stamped-envelope-1200x628-branded.jpg

diff --git a/assets/images/stock/0139-stamped-envelope-1200x628-branded.jpg b/assets/images/stock/0139-stamped-envelope-1200x628-branded.jpg
new file mode 100644
index 0000000000000000000000000000000000000000..625d67601cd29861a3f96592b45e3d304246b4a9
GIT binary patch
literal 121314
zcmbTdWmH>Tx4#|S-HJQKg1Z%Wcc-{RkwDSnQrz7M9^AdSyK8YR6oM3K`*J_eea<)^
z{-55NjFGX|8kyIcd$0YQ*=x=GUHkhTfUPL2APazj0RUj$UVy)U0F+X$&Y#?^Jv^+f
zs4RS_96njw0^O}G|84xc2?ztg|F0n;A|N6nBfS|iI?6wWj)#tk{`SVh!N<nJ#>b%`
zA|N25pdlwEr(ve2XXfGJk(M@w`QPuu|NnFFcL0Ec4C@JB4+ld7fW?7<!-4rb1Rw_h
z07x+Z#PYue0}BU_fQW>Q@^=G({NJAKcImwu0jp-*ZOwCmFNH9$Znlb>v*Hcy&MY$y
zgShB)3+O>O3;^YEd5#s@FM?(A3uN&6vJd{rn^lt0u=w(Ve|$9J)0S(YpY}L{<;JRK
zKGk`fTm%+TD}hcm8S%b^Y$4+0w>KP{2(f)J4(AO$1>I+KKe|ce&9|Rr8*2t3My6U%
zuzOc1Cbz^c%DH>`PL-&vRT3cZLD{>;6)Gcv(}ZH9Cdq-GsoI<GMM2?L4GLD^O7ZU<
zM&Cr4qv|b2qcQ7HV!~D0&h>rQk_?o(p#>aAJ)XSV-Y&a6i5<ol#Y=+b<If@^#N&d+
z$G?5sV3ssXp@B*H6&sdy$EzMHb)2W^ds`SYg=zT-RbzJZ$6s`D=ur)GHFJ&aU4V3{
z94$!|bgB43RBNpg^@H;Z=Yp%+iD?iAE;`zR=^g19l&JZ&nD9e_l^4_HpfQO^;`SLg
z-x07d0WK&o@p{78cxE+c^U9~J_$-2v`jXS={m&j4M8O1w@Z9x%SC(5fy9S|`Fwrb;
zS<HwM+n}BILB3RQ_DY6=n;xu{Kdg+qTe&)40}iz4P8js*)tyyNA21hoi`XG-tPS<P
z!~!kENz}axYeqIa`ZpwTBr!1>T6dJ{hnxner<YoC6(<eRw;rvRX8{h0IIK5a8@g9C
za<yfvdweB03z~9K%Y9S60Y-#dB@!Mwwp6*`gc8(giFGT_2LIi&GdcysEp>y6^-o8|
z=u8}G<VXD$JNY9m`r8CRuLbe49BYzFt#hNow9PHvOd3^+KuE=ujDs+aJv7T-ht_lh
zJaOpGTeG;{G;+Qn>=L(D<+IyVv!0bdr}WMB`>Lr-#Eep*xo2B$btSfmUC#6)2$UV@
z=w?6Dx+<|Xm<_mMii^i8vh6@BC6)jjM2((pL+0k~&e-%cFMkH34&W~(4Ok!=3Dg#~
z3IIbm2Fne;b?qd^jyEXG`tj(N$Xb^b%a#mTRFrgG{4%(VS4^jsmwlh#==WpatmbSd
zO1Wm;(MNYn`$zGJNB*5%Ow+OO<MeqEf85>Z&2QL(_kPpf-l!rIymUvnkkdO}k=<(2
z5eI&w$%V6mFYFaF9c1}F6JI+zjT_61mTmNBwAH;`CV{^)-N=sR+q8TF&CX<~=-*G@
zXGFyjqkNsx|5@EGi>V8pcbv6y*HPwJpmF=W!as}u8y?H_lFq91+`~|oYI`UKDewMr
z+f1?~NgzIkdZC__fwKqeL(n!9ddfy&Z73}oOKKS7-zRi&ORla}r4gR#wp_~f5ml)^
zIR-NZEo;=l@1fy@@L0vIsL$@El1E^s#RA&^{aTG7Q^`Jdl7pqexHF;d$Pd`+N1XzZ
zVzd`|q*%~=eHnlL3$X1`km^1m^~?9`6gp}2-LGDl=M79<nsff-ox;^M)%M{u&7p<=
z6H%M>dr_U1+J<rUJ7Uc2&=_9XlZ~$!+{&h!eFgKq!E}gR*q?|W{4%t(zWS^KZOa(o
z`>Q%!7jEmM!)P;|*{~;YmBE?wAAi<*_?*WhEb$uD1X{qc7GVs{9J`HaPf{cWoKobF
zl6MY_ZF|J05Pn_6s8ZDepJ<dw7FzLVWxt%8gzK`)h2%A1>M%_0)P@GcEZyd*Zsl>b
zsYr~eaDJSOWr|YF)38tI5UHiaGg#{SQ3)CDZ6i5eo~y0ciEK&B1NT2r<dMfKti7`f
zK>@aerkM{3j+TP_wT$MV>tqm1R$T?Bi>s$qE~)H?y5H1m6oYr!y0t!STEUaPwX%O?
z9i65~BXsjE7n#iMeP*t@GCXr-^T(B@+NvbaJObcQAP3tn^K2DDE&Vf&<Uw7ElVK~l
z59t!wmkFXH(|3gPvfn{UXo*Z4h}l^lq>fo02^vbrq#dXBXbQLnaT$|0<g<Q`@#B}C
zS+QVvfwkYH7S7Xc1s&(x=YOgl&Hb{Lzd4vnsbIz!Wu<{n@^CWwoy(f?L8v4>E=We!
zvuqt#=i`nOs_mMm_WbWK;st+<8RmVODd5G3<~VHO^FQW(xV0FZnX_#AUDqYhf)}jB
zOWJ5>f3asgHEqYj{L8;j2U5vo9R?_NW%rFY`S#mhv{y%I*P+sb*!SHs=dL8ACGMw0
z%!<J!@MVWzaEF`pH7`CP_TFKm$5!MNkK-k*i1+pa`og?Sn{~yJ9pg<9-_-q{nY<us
z0}8>68-|R^Zy{r`GOkD`2OX<reZ2mS0RA-nk>p#^D1FZiRSUDJTaOysUSQhAN8*rJ
zX>$Qa7dMKWWo-XdxU)=x)b*{}FYHY6Qk@t(c<I)aopSse=UKIvJs*mWSb0P?T~ov7
zxgV1|X6_GpLsr&q^XnwHPlOhrJ#kednx^5HHV(W3s*%&J-d{bpK(+=(3f4ZVl-Zly
z)u6QYK=b^o9*(8G@Z|I$n-=9X#54wJym0~7W*a!b0-U{$Oo$*m(S1X>g+KyiZ?LWc
zJniwzMGn`~&mmvGCX&6tpS>=C$aS8X#f!|g*vRJo?h{Y$VkHR;)Fd#HysmWAGafkq
z^k-m>o#=yX#*O^S?Vp6`_GQu;q}V-~k47ipHj5v4KWm<@S+~8j&bjq9DhMPYspVEF
z*u^0VgV3}{@U%P!E((L-QqPB+7qOaXpKA_3iF6vtV7<6WoqnbVT^-{K&YGi|^|96G
z0{gVxhSaTF@|qpjb?(b^4kISCxRl<!X(1keB-sO_SBB2D#fXAh1$U(j!Hq3?c1eE1
zi(q>lH=`=N8KFbv1g6TXXQ*N9v`w)L*RejU$k)oIGh|$keEqv}S#BD5Tm|@arjGaC
zc8urU8JB{}tr`a>O=r_{Is;zh@cLvc&IyHnzcIV=?}b@gb1*(AO+VWhQmp1*uqohY
z<^6FKpCK)BV+%!`ACBEyl_PqP@Df<z9chCPDoxh}vM_mGIy7yaG(3PRNMg6)ohpYt
zcD|O#_!cx&RV0=@=@CC9FCoL1&Y=Kw41moF#D4*d&n1!zq!K!N{P*|Gf{LF7qPF&X
zC)Z8VF+d~SM&2n)HWqgEJ@`-MYJ=<cn>waOplLoX%S|W{>BG9w%E_q<FAKM3nlO8@
zM$JkaY-q5o&5UJCNzbkTY@BpCjQEU0**kp~WUbkT=*n6%^10`5b9pN9sAPp083>AV
zd*bWzmbY``Iv%=6Y8x^BJM<5v3x2L9Bu(jFBq$H<KYDD4ip_b6w*CT&wB<8{Ml6lu
z8~Tp(h`!z#3oTpvV=Ec7gC{U5Q9tKuUO1eCmO#3T^|=R)p7@bV=s<DVBFHwx$|ln}
zk|Krv>*q96-Fw;beHyADD`eVqkX5q5NB+UP-#Vo{!9<xL!f}kKC2k)i^D|%@8fWwL
zhtd<$fys*|w!V}z0{xj->D<8H>>S$}Z!$|cF{Su$o^o>D>{5Am8jO86cH5j_P(kmv
zTa&*4H&7a6z!M>Pe#Tcb57E44+Xdnx0!{Qe%D@?a5w($5RA2@~3sj48Ccon;&p+vM
zL<cwX8xL0puO8df)HJ@x4%`TLZa6cTs*KS3$(VRg3;m#%?GE!L$HRd*<U%8z6v9bV
zY)<*%8h=zo%eDa3ty*6xEOUO4;OIq^NjLdCnt0RN*Q8$D(p4eave)-$4(LN_W^Q^D
zHqzxKN#X6`ZDV&3fOOy%wF$pF{RRW;UQl~qfkm}kgLiuOi*H7W$4=0-=&4{jugE4?
zLuTHxnQ)DK9MAaV%lo{$?lifnI_C#HbYhaF76c?K6Ri=gqPZ2m(H!M|5N7{6stbSO
z;)A3VOJOvLwF>X0EjvlDW1K)j3eG_vTU~~?(dZ5!5!XQiRTu?kE{rMS;wjR(E^Hu;
zhPSu#{7P!!Cx80uV>uvul*OmqA|iaw9%uHMLRRI3_gr4dvvzXm?kmZc^w}4WCXy%-
z3<qw^+V##wjghGPra-f`hb{mHzG*=J58=yle5%$Lx@y=0>UFLTB`=(dYL4ZN>h%zr
zlEqZ%EtG{6-9hweL(M5_R9cMhLZq{7ttuh4>_FfTvJ9!bZJXvvg+tW+92FCZ>S5!Z
z?~mF9*<1IMXQ~FmVnz$@^?_#56#JJffbAK{-ZnJu#ysVBUpw9|B{`)<qN9e!6ExpJ
z6#foe#aX13#_J)OI%3i2%p*^H%)`eW_JV{wZEya>95kh8nyhGF9IvRw=aK5~bv0F5
z>sa)Jc-#k5-{AzE<ITNxss%0F>S+}#SA~OSTfE^7!1gz**B*7*0L4dk3l!e6RJ$b%
z4<IxN%vkNyGpa3t(7B&e`dwsE?NmlVUqa|2*;?r{e1A>Q63O%Vd!W<N+M52**Y%oB
zG-GM5a#K%gRHu+MW(7Uyky@_Du|i_o_;0Y#B{tQex4sE5L--WGV|$x?8q>1KN=-XF
z8`0gQjq#}!kap!V;Gl`(nuw{`5{xf*(kvP>%>Wj8PM(&-IGlYpKVwD(otUNGjT#yo
z{=&(QGcqxz=*;kN<*TjbDrKT()vee9jZU+`OG77;NMdNV&Rn;rQ|P8Xv`(xzlQP@+
zsybIV#Q4c+H5Aro&G=G~jH;&CX5Y<x@h&NO5(nV+%&$%1Mc`)`8$aP^<vY$jPPLYk
z`zpY5>h*UZT$flWNzHV((aWds#6>O7)1W?|x|NKzwRW`xwidTU<LZ8oDTs(>pANJz
zQP;>!j^NH3!z-WYE8u)g)qKEjpMH@ruCAIt6p|HsmPINuXJ>!<plMNdkD>$Y(cB$=
z9RR>^Z|B)BbrzZ*<);1g3v5?`4V1cOYA!7NbR{S}w?e({j^UVmcV^GnK->ROZ;5Mx
zz}(r-{Z7b17e`PteVB)2Bqxt+VA|>@)j<RG+=94CUfzA|6BgsiIkm=C<LS}1SbnH;
z!rb(6-un+|Qn73C0rSWSSWT1PwyXm60RX&!ljZ4+Dp8qid{CCCYCH>*c2*;7VrEuU
z4u!!<i!X!Yt<@N>*vn#RM6qlFN@J+{z?Ox|@KMd!(o$NYl|c^^L2+jzPV%*_AiXoV
ze#!9b`RR%;+F8@#xYh&zQtk=3(l&TgZut6U0VL=wqv~xLxu|qPPM0V+b8ieSISe!a
z0ARoLJP@d}vDbyGBEHEoGpn?Gn&>bUHxa^uD!(AqQ7o|`U=`fj!9Am$IOrs8p6*z=
zuM&W@Wu!l$q66eLET74ztzs4Wg<aAE&SG*JuFL#-sMlZFv}88j%sY|g>P(t>=e45E
z$L%vJGhhe#MB3{15(uhJk}H>2WtXy_?Zl)#>IVQ2654#X2VDn`Z~Wkgs*1W$7V#zU
z)%4C`4F{egh)SH(4?9%xv#`2v@Z1syF?1GW3S3Ey&sy<}tI8_N!`b$SM<mzkf+aAr
zgxcsw3-LB%B^x`YF_TxuWw<~?sUP{+v+G;4O_f%-@ao(Qg_XVfQe4@5GNfU;!+Q$E
z&hQJ~i@%K_qtDljdq8*-6y=P;Y5DP|qG4tEYA<rm$dgU=g6=J<@=;3ij@EICdBjEn
zVlDnUE<^WgbnWWWaCxOk+9V`5^QP*YyT#?qmBFS8JT09z8cq-cR5^<7V$eCX*C)4*
z2{)3c9d+0ox;oA48NO`7GCMrck2w3Zt%TL$eTe<GGJ*TsK`6tJr#Uj-I4vypIFzXg
z-j1PTHBGJzXjM7x5<c$ssJUOlGhs1O70sqxi79f}CNNuIXXViOUaljV!i!F5%)tLg
zY@E5)l1iXaI;f_(a&@IuRqXKM^&z?PNy!x`bWIGho%D@&U|Y;}*&23v8Yx?D)?9Ep
zwchX#`DblJ;qfoPLV>PS;j=(u$%w--ZZ!Oe!e0Qh#GUito-5LB;!Wjp`vMI(iU5I4
zYC&N%>$?b-wq0Cb<+a~n>Y>2$vS9aiC_gn0C0?1~po?WX?8Ls&<(j>@>P(3&oS=ye
z+QVy1opep_faCr_r>KfcT5v>U&q-&OYhutF9me^Ns1$tWQZw$hXWOR8k%FOjMA~}`
zwk@eSOi_#GrUTAJ8cVKOe;rd5W;#HMfc99^DWPUK*%R%&IF+x5B6hK7)`z$z`n2&7
z_Lol>qhSyv?<*}H@C%+#Cy{hq{RObaF>o8Myf0i>pExl=twoICXCB*}S~K`>^#AZH
zdT)ZNg!26ANYGK0A#9@tiMK-^q_&k9z>xcK5Z#$T8?g<Ke7w-bq^t0e&@rBA7ix_E
zu$=V0Y=~W`nvMb@Bs7D#GI%loPM6DSq%NnV)0m%U{Rfj}8`a{puP)opZr(*16tgnd
zTW;2ymcHuvc@ooknd<oNFMzuL?HmBm3W~`&KXS+IXqrJ3Xf4@ZFFreYh+);98s;$I
z0GB&orr|(#sIi%+2BcupP@l!pJ%$Zi)@timoARZcGh7-So#mAi!#p8Kv!d6kg3YZS
zYOQRYY`RWKRe@RTc@?9eNv%t0Kx|J#X&0n&2^yEzMt-iX+nT%UW)OcyN%fyGz<}<w
zO2so6$V0UEQk;&?y|wK2bsW0$Y<G-W1Bpcr%6{7AOHPZ2c~F&p6oF)(>$C7XSgO^E
zKxV<hT5QrP&I~TC(nE4};g*~~h8H!y^Qu2oo0j%?8~)B^!owbs)4gUr*9LX=+Rx*J
zo%uiNSWkM7moHmhLY@*-fBpIAEC65veq7C4G6D$Q&Mxgerw%K;SC;d+Rv$AMgs}@i
zXPO1h>6TGZcG&XLtd!&@xW1G;Ys-<@aapCk*MA}f8nmaK{q1hd<r0(`PM;M?63kHJ
z+q4#}Ak{ZWQd6zo3c7|$OQb@qI}^zhRViQ{z1@$kmbso=o?U;u=fyq*{bvYhyUyNc
zVJWEL(|6A|aJ)Xg+Rb7{tB=;*v}EP^sdvTZWrMPl(e~icnqx9=G;WAHDKY1zns9#Y
z!h@@lp`3VpN~Gz~=W+YgvqNcf<|^=PxlvJ9&m3EwQuM-Fl5L6o+uE07o@W)&l|7r?
zsaN-fHE7yb21jMoF;M2eBY-J>mg<4muK)Dh(>};z{L<cb^_o}lgW;LB^D^4CcmJIt
z?qqC{Q>X<4Z6x%3W_(s5jk-b*?A#?+1l*gHG;~4NHNdrouxb};-6m^{dlZml35t%2
zESu01Kj#G!nY_=sJ6Ha5L0coj@W}BVdIh1#hq9hb{3AwhhL~~s=d5O%Fk;6Vo@LW5
z&EeLOLU_}QxUpz7@nvBr(e7*dTv)PpYBq7@akp#673edFh8IL^=hd^?A~HA*YIWR~
z{Hj&(IYp1q<9f_KeOZ8A^K4yPe6cy*q1Mei-G8v$^61Q+Xr((6vNDt*RSKSQ;bMP<
z{Fe^Ect2;PqWxIHtye3Mi6-jTvUMHenO}S{ZhpotOn=vci>r(n&8!tyCCWz>yw97U
zr88i$a12%1^|g41rtd%|zXZ{raKjp^4zw^+!l|+5`qTJD=p3IX$EviWTxo){`b7Bo
zEBT|?lF99F-t-TCqctfq9c9tbx7_?6dkeo#N+d_9nr4`@!&?70^^=+7V%%^8{i-$N
zpax5E#X&2X&xzD1ZgxtlyFN61DMu+_Rr|EUIW3&2{Zc9pT_uove!tZPSA)WHFr~5k
zxa(JYe%Pcd^v466%h&j$sooNd!p;FFz1VdRRh^z6E}6eJ{zU^E#KJZ%E)y81e-yi~
zs~l~)l7UP^4&qR-+Aqee+vgn*ih?c@6cSw`^v#h+t)O$w-JREK5A)epd4_uA#gPOk
zM)gay(&h__IW8+Q=?k+c)h56nv}*f8+WM_oL@n<yLnO#%-E1d?zPyM2Nmy0Q{Pq2R
z&}h5h%_;|$oWUAq=UAav?*gHnn**mK1t)nar=gH!We-iO?)}t=F@eLfx&4kBvC~&C
zBV1UNR0bXfshbV>2xbkAZw>aJd%|1UzIP-TgTWibI_5&AzJ2C1&uIOPzD)4jYPs%W
zecc-Vp8#gl060W|MLZP%ruLZtuh6(DqjJq?sTiRz-8XQJOz)_3aAcmkRo}V9DaYvI
zy`+jO<c@kt9CFHDABGbmg-kbK6~~EPt{7Lo<u<095xr(4r{sSfKm@mtr^ziuh;pFL
z5rk6F>vxjB{^|We5Zu{y<vZTai`vfmqR72oBPcuovEbBONrYgg3?l&JPjDYSNHnW;
zD^iMUQ_4;fSBbtbnQ%SjN^F1Ix}_4=RzXWa5>`F6wSrT#bp~!>(ZJM^Hp@~}n3PX_
z**ZunULZXxm^c&#1F%cCPqC$t5cd(Qf}(4hqs=T4I#a{QX#U6l2?gLJy4bfYtd!Td
zFeVkKa!#tl1^z%Btr8+1-xe2*G2#@RH7oQIU#W}@Vp9niVk(8FN|bkKX^UDzRv=Kq
zT%QOu<Rgqtq2hy^<y)u2sgw>1t3g#`eL=X#iVMOj-|2UxC4a)T>V2t3MTMK%Wn&ay
z{mry;bn43;CY|v9F78xb5Qj!gf+_@d;ns17OJOXF{(xf~d~9mGoV}rl8;KoZXu&L1
z_JXW<FdRqiQOe@X#|5j7TmWh=4UsBSfrVk%%@L*KlsfnfcaBsS`q{>6GJ`?t>McA>
z-dn;TjL~jT=TR1u#%uUOr%;d}P9dz~)Jka)JI`QHaR-g@I@KC2N2F=;S!HY1r;vS~
zR8E|AG%h8^7+AXK^aSA+FD?}nP5c)4(m3j6>Jq9{ps`;41h2m<AVB>7Cpz>_DThlt
za$8?rox<~pp`Wy_<e`mvJ}YnkYHxv35?`aFIhBcRjLS|Sl#VLoa3cK{yLCyroGjJR
zIz5dF@nA$kpqWVmXU!$AQp<T)cTU!6fiQ(bf?4rf2qGDL>5W+DMd;f+c?&EE9a=h_
z$7TE<7NvlQIAG&9(N2vOS=Y^|&2I0SCKWh+T*(s%jFg}c6J;`AHB(1JMsafw*>9!f
zC>^y*{^i0GmV(}7yc{03T6(b-zaGL-449VxG$oLT9*2BnM4Ey1F9{~!Me9U4gZfby
zAD=Oh@}!>}>5Lmhw81<};0tF@wLttetSC|{+JK4L&M?dE0N41vf`cJ8xncL-nD7UG
zpGDpj&VeASZ5r`7c;!^+<hq=7TE(|eE?zi|cO2%-eAGUDeMSiWF8?`$07Sw1`u_>*
zX?(9AaB3#WAN3{u$#F3|T6)t?35aVb9iooa9#vb3)h_X9Dy|hDv81N`dbf1(+sNTL
zmCS<KM2ba2ND&z&S&@MsqdqbS4IUf+Ags`tTc}a-)S-Qs>mg-mca#cg3Cj!sz-bR>
zos5s;`)7(!;{MtJz!m*w6eY)s7bW__v_fpfwGb@pFBCcbV9pcm0yJMo^#nTbg=|yc
z*PWZ@fkst^8wZd#e5e;d#mUcu$|D<ya8b0M6Ze%r5Qk?Aw#mfAZ)NbVKfUDp)xL8)
zNQ66ktbhCU5cGsFD<}T!ylEwNJ`ie#<PZdK>5aMG`&_=@H6yTPR}-0o#<&M{JGr2g
z+~J`grTDb+%MGwp&LSv#pzi3ljMKUf#7S*ooW`XO1))3S#P5|(NIF!tFiKiLfv-D0
z^{u5|uD~s0XdREArZ3X}#0vN*CgCyP@WKiD=VFR+xKjb(z`v<xo<f&2r#J~ap0HZw
zsT4S=wltW<t<!oBiryAt0sJWSN(R91C@C}_Q(f`wazx^eO60QJ6JomB6{3{aGu1@A
z?Tv_}l(6JTG8AL46MM=TiAKed7V9kDG#edhjLlc9(Obct5@c>h-Teyyz&M$&<Mh>)
z#2xm-n)G2pER4|In?QAQR6-ZJ1Pi42NQbw!U~`mKo?xK&hDc_5lA=#HN{H-x5<lJj
zGL2)xB)~WylR3^&asl<F%rqM+hrb?5-oA$%!~XgS*b4AF`v?HQ!Q7(d|8~7-q8|%b
zPDu2Je`_jzDA43eBE*{jNuO)KU~-Y!KW=^6c1|P^<34Var)T)CfjAZVosmhR2^HDA
z;ZuscgxPUTVcEAL3hrBS?n0Av>uoj{hCxAzK03~$FDf$%ub%-JqpQ8?Z&7kk3iSrB
z&1A7jUDfT|3cR(D>=rexON=I$P`L_y7w36<0x$8WUKVP_P;D<wv2tY^G|#{VXN9+i
zF)m;V5x0ZX;O51L<3gpYa-Exd&}&p&#lu5RnT|!RtnTgk4xSd9?1TM%00KJ)7rRPt
z?r}Og)>Pkc_a9K-o|6G^B`?`p@%68fq}ClSBDd(+K8*0s+fwmicrln%^zuG)IK<`T
zk}GYxL8Z8x_N>#{m1smQWP`=iPLvFrhtw{-^A+q*SFMX^&c&ls^Emis^uBk=b@4%1
zQa4*G{}-9VCYRN#`$hyH$v+ZQIG?P9QO`5E)Fe7Omz(mA(G#aQGBJD$;n!9smbEd5
z4AVm;lOqpOnDQ*z$cT(L0^?YS9oln8%*-|++AZGq#1x@ONS)~tKp(B8TTL+`fT%{#
z&4a7k{WUlU06>2Ie)(P{?RItQ?EnA}GV8QuW#mcAk<?BT!f>0rI0GHHStZJFwvL75
zyJVzZJ|ZB4MM{jy62sclV<Cq~1Bd;|VS+LETZ?&*syi;I3e|&#yYpj>62$x`l+wK^
zzfJ-7avx_tKMJ-#KQ8nG0PulcmC&cY(N^()c$j%tIoL{ZxSFKymRH%j&7|?vk8m-3
zAw={m*vP9I2O@IH_a>X_%RB-OpMoQi`I*L5g@|+vYOF1hcZCo0x;n!VP>9DK4Zg-L
zNUES5kZTU5-7LYJ$M<swip{u)_1wJ)0bm41vsd@i_kVZ*%<`)o#6bf0+@RmFZG&ti
zDs7sVj~IioDNJZi2y{|6UX+#3@m{pWONyyYyfw*f<K-rTt|ItTsnj}8x$N(*@=CE`
zmghI;_k_5k)g?-1ME__`9@N7vlLw*iCU|ru)CI7<QMe<1wtW@<hX(+h_g)2{gp;36
z&lU)fpyvcEwZDeL($PE6wL99|7C_?@x+W{<7x<YCvP4iE)IGP-%cUOFEh^kIMdW(#
z4-4t0hjU*4fYub~7O_IS?QQzv3$e7l0EmvG>)Zd{8H|A((7FG@kn|qO8X3W4g0`$A
z$t{(0l>mX}h**+T2YYuE>_lj7i}r9>ic&3)8foFK{|?rMZgUm79>z7feqsnbxJ)Xm
zgWE_EdHs0Nsd<KS^dnN0FaTiVACUilZ~37Al7vP(=;%|KrTDN!>em8}7^B-vjI7W@
zmg>PkCmHJ_d5l#WgYeEY;`WyAmhQvodOW1Bw|@aro~dBOP+G*Z_DlUSC&6?*-re*5
zU+4eK5dci)%^$yir{#Yn?Y|(vMeixbsPS@p`5_ad&w`<P3&}W>QqgdDq_*>j0`R~d
zC}&6~AWnKs8U~G5$-t<!9}p#&QvkvNsKuFFYvC|z`QM*YxLpf*^1n@u)A-D{kVJa0
z-0pEN-vA!FncCm~3&I?~Qcoj`rgnjdZ}GI2!<sPkb8F<3-i|ja;8n#Iy-Re#p<kXv
z!wp?Ll9}?6S`zjIGiih+u?A_?=2<EoZz`DT-38{A`g;K2-m=fXga7XblFg%Zp{j_4
zst}n5NAs8yQ~#n10Dpfa93Y#P;w&I<m5gHVuJ5L4>h51P%jTWuJ6&1>3z>1&EQDQp
zW~pc-^)dB63m|9wbquJN3cqstkUTDb*==Y}DScvrkc*)TQWyW1hq-<=s$1x&GzkN5
zu4Dkm7rjVj?kJfKfT3IXRupQ@EVV$mKcnCHB^VSyOlr?tI-hN+Kov_28Qrrg(=VCs
zNpT2ygFM>4zyAv;V9>s=@-OGT_8(Q!n|=oWJoekA|4}kAWFGWCw3Dk2>awl3#A26x
z(4Tys+Rsaph%sOg)H-g@M}{Jmw4tc$BKF-!xBJBYvw0&e7f+f=a&V|dEk0c8+}<Wz
z5b3Wgz{6}_*Ixkn`LpsP^~LKW`1t;5hV#rEi)EqvMZdCpmEm6)0Q2VhF;fBDg21P&
zV1$WRn1dmPp6K#Ub6i>I8GB8mnba;vG0!v3#iWn75rg<0l|7<tI3r@U^b<DT=z9=C
z#^|SiJ&_bB`LHp*C9Ho<6zPs>E20_57Ih3LteCp9R#MR>H5R?!gw&Ra2tVP3ts2--
zv-5;9Y*|Q67cr+e`cK+pfE8ir%$eB&I{o>{6Au?dkAb6R+;8FhKg^eZ6PEzjG;X*Q
zzG8oQ$Hsl*Mc0-yugp({*}+4{=OrLDwf+W9B2fc^zQ@nTop5Tgj*+a6-cMzx`H7p4
z*_siBUZL_Pqk`{@J^uUu!$088Yz~EZ;@mIKKRuTN+X8;82QGk0$cNATJbVxqLDqNG
znSk4f9tj^t4klk^-4?#6$(b22pqng<OYx+myVpWDmUI+&(5@LM^#Ae>@I%|MLmPd|
zBTMqQ;)=#N(6!B-5bSO*o%}QhGK=({ydHwiXjO<f;$);(hXee45hh)n6)YO+&Xa&r
z*AgrWgJKiWVy^3385Z$d3D!UMe=z?k!}?DN7A*E#^G%TDr{=;SR0%wh*B&36-h?*N
zTpU*399|Oh90FuJb$NALMO#f<5rz&Mujf2k5!9~?U{eqvT2a3u7ql`w<EuRbWpF#b
z_W!k7eYW@6CR%#O*`i;bz#?oEZC7&2)x}SNdsOhp@l>Cy)9s1+lD&J4K6*Gl@yTSJ
zOyS5iTLYW_w!l5qMzlc6;N~e{m`GQ~z0j&kiBL^=zKGE+FO~b`$MKzykAs@p+`&)o
zM^GoPBhSf4Izz?xn5OwbaFe?q-8-Sa9Zyfkrdw@`v#UG2MFbQ5QFC8sGs=Anlgm@q
z;L@*i7CmMY&<|D<v>#5m&LlY|VCMu6YGce1+(2+bB0Z1j9tQ!U-rY71A)|tTxirDf
z7+EK6s4rvG{K$P8;iipYRSb*Bo<cDj=korbmLo)gH}?P{xqoKe=<2toxKOMEIvAIA
z&hj{GetLCzI=@zSOPXHPbq;Sdxqi3vVsyH}7BV5!4n>al1{?npI8e<f(?5yLYnx`B
zRAFm58F}n{76KMYEFDad-7IX>Va1zvb_#loklvdLbd9ojca?osxnHU4(rj){6^eh?
zXsK&xuy?Bha#TJc(<(1Mh}$GP+JU|oy$JBGvrb>eCznbPu?5e>5RL9n|1j)Gna#UD
z>-G0obuk8&xo5AMW}jU&X*(FDmtJDAd7>d<<*}>q*tq5KgZSf(EaTU?JTJOd*IKOB
zR20@Q-vR1A%%)#$WKB8=<rie_eCjfux&WVf{{UBlLre<=%s-Z6<v@(&30>pc0w}p#
zj`;Hoc)E6aR(RCeT-7l}hSO)vxNT~ikUu><HTNkUUVKg#l4xq{t^x=J2|&RygU8q8
zzz%Ha%OCH?XFq>6)tVWP`B_iUGmAAs*s3^OJTUsR|2Cw?%EUIK7Bm|CBlRRcnsw$S
zfIz)*eA2reaP&2jJ*zBw7EX8C!FrRgH1wU&v*<GbZ}!v+fcaS}VP<K`R-h8RGw&&@
zZi{<&=l263hxu3m5VU5;DyR@VDi(4n-lS2GK7l+up2E-yuZjZ%Z3I3uakDik)TYy1
z&?srT_xQbd!Vm&a0dVQISO{sc7X}OVRrIUm^X8loU(r<9*v+}OE`iTZvP617U^QE}
zSan4z>-A-&wT_BU*LDy<;K`rQQr6~9zZH_zLO`S!5I|!{AP8Cs0$?Epb9Q#LXf7{h
zE1@NyU$^<<8`$vnylqw;`joZg1-q0k+iG|ij`P;$`PmJfIaRvv6i9so0BjGQ?kk-U
zTj*;Rj95u7YJ2PteymmNcP?I89`pl<pG5Q>B{!IxR!{tBT3Gy6O-HkzQRgNN17`Ii
z55?d5{W<eIzjgw;+iLwt+PvHJ(6)f3*^5`c`IJd-&X3&E-v&gr2s{x=F<dlx@yMe`
zk{LAgeemh{r}x%@v0lZVkQ-yOPxknzSgC7PPaMu08>S#<Oht(v&l4r98noGZAfDn4
zv;#Qm2f;&+>FC13W0P{!^gQQKcx{^Blt<M~0yQ{EVb*BL&g5fKSK(U{&-WV8ZcMJl
zlPb_O<mC+pz9|^le+BISirD`YlKw};;QkS@`#Ex-rHOGAPuyxWBvU`{XM-FO3egk6
zA`}!0P%AISgvB^~n{;ruybE9NwOoN|gqRsnnZSxmd^@eebGm~;y!9d1ioci8WUou~
zgVN~W=BlY{Mz2p}sG#xuJVN#s4i(A8MZTDuYIjLF*ZK2rf!h~h=bKN9Ny$^iDV1>G
zuqebHu>^h;YRfv(#U!I=F;}^q%}wub(3U=#pIjCF<gE2?dr~lco<ENX&`x*L#V@XY
zzH|rnX<yXk9o+x^3t;~?i%SPrg|MEfO;M*8GlQ0GR<d`Dc7BrJ9U54tX5*iKHd~%^
z$YuaDM`AZrxZ75cLXXUQ*Q-x*=Qi8bziOsd9U$`CzdKOpj2Lji1_}9C(&oy~6+5l5
zYifmY_~;|J(zZIknJ^1I@U2L;&jYO#a>OZK3yc-T=$d_rfM03!<vwXVXAtD?UPqr+
za@9Plj%r!-w_RA89?G0)&go5{({|2mOJ6&g;pRz79LW&8m`AH<y+0bSYpL~F%5B^&
zS~Z#_%gX7<&=Ps9@i>Z1=f*|kb;In!Fg!oVa$VcxemB(Pd)-A57~o{WoowN~;xQxU
zG-U%{b0~DlyI9V|nP*mgK6R7}b*xj}X2+tt?mjUA#d~l$_I6mNvro6z;0}Ah)t;?#
zonWsnJsgM}`|$VXJ)b0GkayOvI(v*b_izik&jk9h1haOGVQyad@Xk^P7R;RpG-N>>
z7Z(%Q^mmJ)lL5yJ=M9tTZqSAA=?1BQ`^IG0mp|zY+*vU_-rc_nyjMq0esM2$kF>B_
zW{COxWTR#+bFatjN<?@JU{#o*TdWzne(a>6C_pl~GOrYDw-tjQOCz)a2-#uSyoePr
zWw93a$z6F&J^cl!L5Y7ju~DDoz6!uFBwGQ_iY#W$7KgGjw=w(zzF5Yto_vsb$~Ww+
z*-F7nm<gf}n-0RvZk6%<Q^1mY?8Md+@WJ5w5%iU^;x*yj&J{UlOpV)9y<$v`jXL1M
znRfN=seyhahPzL#@65+_{)w_6h4ieOmwr`@k`Ius@^B;w!0ejVD>>VTk~bS4)!g0P
z&5kX_8S$*w2D)a#Sebc8VgvYBg+xC{a&+z-(#_DTda<3AI8H`R0f_Ve0^k8~wPoei
zr~4`<hSQvr{0hmA+AQ7~l$n5!*8>2+1t`IGZop-om%jZ7qlskFo3nbw4f+dUd`vn8
z0Brm9ylyyvC-#*Y+6r`_mdr}EnJ1$Ih*lWK004i$&ZWH}H_w1VcwcEj{x?+lqdh!E
zq_&~AuIq;rqlnUR9PYG>+%Y&-_uE);EVX<90ITFj9&c*;u}o5Cs+9(Vz!TJ949P_u
z0C2o`*6<mYv~eX=%CW%D8l@EE^*O}s-g~Wk{-O>bc@f>?Mtd*J<N@+oOCR|J{rSEt
zf$SJbS?YD~ZSSw!697|Jw_WxLFH4Ei@+{Cix0?0%(|6zU%uEccFS#FpFS}R2|6x2V
zyW>QuU!2~Yl;NZf&JLgY6qm`o`FOIu?(6!;31nA4cVkKex#oPU^xN^lVxZGksWSJ#
z_a_B4FX8}_=RAF8?TSPUl&pdeq8>v4(1<wPiH}&@N5tL)oj7S6cNnMGp9isrfV12n
zq?EyXp&+8xGKfxdGtf}+_LBvGG`ICl<9G`JxD^KTu_siiLYDdcZ`<d~iY%nT+>L{6
zc$p|NnQvODfenCt6GsGuw^DvYWJFjPgtsFA4m>V3HXaS91OgS8hB-cmTQDuRq-IhP
zqPT^7!#6q}Ded_^0$wf8kmQs`LUkRF;-8iSH+<4oq5J<9>cf11y)x{4S<j`xbwnGE
z=~H?su+!wW^6$auSg^44Pwyji{4%H%9eed7kkd_LpC+xbXl0qFtE2uow_LQp&OQi1
z_}dU0QzlKiW#LL&(!~f5(FZuAwccMxU(#H0FGhHeE{q=g)Gmbk(rip)nIBFJ+Jnv<
zcmCXO$;Q#TYj|v<L;TB=+Ge{I9lc0ADw7I@PrvL}Sm8;>iyku=Wegs3=CQ5_{RO1S
zMWUCTCBMIsd6BAE-(XWbjJk2GOY>6Zh~h5_On>ka##~^$Ow^8nkXW3bjJ4Pbrji3^
z>dB5MLQ3(yC=MH7OSNE2Lz^|=KJry?Vvr)rHlcp=Dz*TUy>j{7@ve50T%NgN^ogc4
zM-j{wQaTFO*KlVMjHekNzmT<xB%_eklGnDWE5JB!XJ96`106RuVwM!TWRzFiOp?YD
zyJ{tR?19Haz6(`_jWMW6k9KBEVj(%W9zg&?&FP%{JmEZy?kd*JF^^Gvn_b^a+0pUA
zf?37TPdaTBWE-zu7Q{)@H^|Y|Fxf-dBvl29$?xfU|Hv49)?JSLXtVfPwuGDaFF>=$
zE38`(!OP#k99=JKaVwU$WIKA7@kk*IC51IIJTp%0-tXNwE-^+*diE0bl^%m%#SxfC
z2CTsSSqjbHL4-KA60<y#sq;xYy8EmA^}Z&{dYK?JbH;8NSf}`4KU{M@>N)0mA&2o{
z9utk>`Y#~Pg|3~Ca>cv*S(k*0MDDmF#~XU0-@X3xNsqJ3{<dOILD5>ObF16t_1c$1
zC7HoIt8N7Ujs#WSfIg~<tVAlua0t=LI4HM~X>m-erh~pw^l>=VlO}G+rhk{6dZymz
znh#_?7Q1?TU#YW+o#k<a)5d1dsY!@q3w)~>nRIDxRLQ_{f9#m*+%32TC%YE!J3Ts|
z-@(?`F?{A88x<kW{sW4#l~KTbz!*YOcaY26yP?slV$wQS;b|;yHZ-~#;8!(qV4cd!
z{MAAc0v=MrkMABxeC=zxFj|L(p$8q#4xc;7dS=pD!6cPBv-{~%DA2>~GUyt`XgA8!
zA!o_WH=T=A>=)3*7X`-Cdjz&s(EFJBZ89eUE++1y3*6bb^4Kk>mi_|%0>1o=D8N=D
zlt`THy6-V>@Qal!Il~VNePKURc5=R2Cx`+r#L2st__LrzK6DrxACb)(B3Ez~)~|Wx
zMSNYFlrxX|T_Ak1(#4qaHIbub0j%mdu;kZ$SEFs_*v_@4W#lmKFyPhPQ2XOoc(bUC
z6n)J+8_h?bl*uDsO+_Z_2{kofwV6V17rGMmo4&8@(Gm8A_X)*QQ#j()6{uvceP<id
zBaYfbJh>$x?sj`c0+Y9c%}Q+SVUSdIx%DNv1k}IVyx9DJ2z8;+WnnyR+_R${aZO!f
zWtxagSLgSFc-u5hJkYzVG02pk3_g`dCX<bxY$HpDmjpxdhu4FSj?S9!i;DQ$Ak)ni
zwlPf3o6L6HMv-d3%%F}a{q4NSH8{1bia!t-!o}KAi!5hi{@XKs1G=QfwsjRy&$L1@
zUyqRPeP55tUw~pE-B4JASa}EYG<oKJ0sZ~nk-nq>Sq2;TseGH;jd}^b4L?Oh{X(R1
zN39;DRiSq`Z&Vm9`STZ4%}3@7C|R6Rz~*MYmO2V2-Y6x`Dg={2hg|f6tB`eMuoq~a
zzH(O<N3ov%a3nbxrtj-_qI>|nWUs5Z-Oy2~g=x#vH{%U|J=4&A(nfpIm0>uN`Qe)8
zQoMLNl9nVzh&JSt{kb^h0-GFY6cu-s`{PTROY+n0h2QIi2hLLAjqTHt+5C;>@t?&X
zBxK^0J{!0$-^DuhY$Q5@xIY&d3S)i#I`p%IKe2?GLfE0B8FI$ASfGelPq}h%-(E>r
zswm_nELF*eWccZw{$i~xtsM_YSiDC99x|MI1g)J+OB+JeN`D4+?8L7CYHPGj9}$;n
z%?}XLT|P98C@^%_>5mn}#yuepA$Ry+pbBiBTAA>2i8*JMF>x7ck*{W#Svc!^d`{d>
zsJ8RV%!yKhsi3K!A}-q=wQ65k>9}b0vODy8$SgrG8DjIS$PsaCcUmQTJqs2>fT!@T
zh*C)MFb_UT=dAOxTT;BWiecmzT-z#8B#BunzG){sS}8Pm%t%^as^k8MH0Cr+OB5S*
z=w?~WXEsuVV4=f#_&aB(L5$$}I!v3EU+zH=A!<L_>_}bmrU6K%RK8a3pVYMRK)@3=
zO*(Y`*~g|u9P@~qcecO-mn>=^lIHoXuuH?r+?LGDY3q@bXuBo&{oF=<a(5B5o{qvq
zc6@_=h|gz-JMpvclGipkZaCs?n~Ah8JG-CKX6R~Njxd|_CE2MafSKu#f!7C_h&l)S
zn^8^Jx;rZ{dNU(wp{GpSD7|M-?`SMVg>^nWajZ7{$6%e9_U$Aaq46_8V{3sUFCT-n
z_t$gP8*RLDPTyS%xNxUzS>sJp*}`N4L>si!3YsNb%FDyQfW)~hg;u?%qVl8>8b)zK
zYt}#=_?M_vp`YAJ6?ZE|Nk_{?%sjL!_Yo;ye~=&f(4ht(psQO1$!;9?l^H&?Oqh8+
zIe&6Cnm%~vPHx%rhZnDsf!d>MkM3zM)%AU{_+Nk=m4?I6WWOXXF+-f%)DqqCu#Jmm
zjz3T(I)Rq!_rT=KTMa34SnYHL{O;^RNlpS@Zf@0g7+1yJVJoK{4(IYTGHEJAE;O8+
zBcornM4#EE@L-5=V{{)r^a|QM`K)-h8}FZhUHgZW@EU_)t)G@xo?O_E3^KIxJWn9D
zMw=Wxb&iiW`T?i+1QGeF$f&_C<%>H?zxfH<zg(v17IFpk8v2DcYG{eKEvgBjRSU<n
zA4xQk_L*T+qwX$z`tf3ssRdCW=V)`IM!x(Gt+cQOQLX7Rvtj@C%UEdPb+~-RcS>NR
zA~lL!T1@GXz9rGcxZOXvH(wcSAFBnwGg0GI!sj$erc+Y~%3sh#NVzGqm10_H<KQP6
zq0<5!)@zNd8j)*MEj<b~JT#Pg;g4AAOasPc4g$$WCmt#ehN~Lvb${b!QVQMnShz8!
zAg_4Jwh<wEs0TF^V&xhQpJ-+^Z&l$PkEY4eg=>k-F-N?xR9@}#n@>(+dOWaZfID=i
z_gkBNaL)9FvkY3ykGnY&(#NehA-9Bg1ZZRD-c@i|%ttc~ED;O}q&S3*TQ-h=bWm6!
zUwQ}42m4hmQO))gs|uN8Fb^BD#9^XVjYxF~`J>-`5ZUp*vIzg~rZ2T0E5t#rZe&Bd
zA;CafNa^)hQP-KkFH&6gliO-aoUgiSmNbgX|D11@qzB@5Rl__urVc;@0HxukP`8VE
z=0PW5<O7m0BG{#dk$iZ#z2=eFi9<JbTGMGP<niL2ji&|Kh8X%EH$@RqFzNeK`lL?_
zdk4C@L~}U57WM{e#ji68`<UekP}APaOu7o`>sZ^nc;Gk)eAKm`2~2A8#~=efW~Aoc
zvPP<PDG-|cn0|~^cv@}zS(Wj#NM>;+pX`R!r$!H$aJAYr?SuKtWR0`_w&LeBWz$V)
zC%Rz3xhE%=To$IhlZ*TD%3ai!rorc5zapxfCmMOgW~7+xQtOI(SltmOVmpWCbDndS
zK8<(BD^)axJ5qQNu#s<<w;DHA)eS7Q+vuhQQ)=pDKI=8j+BY#CjLB+^L6GS&Xt@xl
zQERgu1eaj-huk_nrahK?OtWFvB5ak<-O~gi=}T({lFE2R&mV&Mc`u)`(Zu)o!`dy+
z9JX4YL1qY{3A-(oB{}b5>xCoq?tMQWlWuSH8aI6T3()x*H5_RZ=@TH|Cv-V}1*8q&
zbaq|xt8t-q&(a&&sz!*|lJYokR_oxUMV`;S)zJ5vC7$_w?S%wB2bDN5J$f!IBQr7c
zm9U^`l;K~fGDU3Fb@%)dX~oIJ(PWdQZO7WK;Uo4;HXDeIT0!+ZI?|6o8VH<aW|(>B
zSz&EZqCk{_%EPEjHJOFWhgP7JpN8%BZg%!#)?+bLuG)GVrgjv?JZGkegX|^7V`aw=
zbDZ1Csr>5(p86zp8m>X|lRqQYv6ozQJco`&TK);2_JzK?fpO-B7_GI7ADImPh|)k9
zIT3KZtByvRoi?1JtR#uv_$H?=zyFq+^LLp4)Kf&vPq4LHmX9tA-|6A(l<|9EUEE!T
zbehm*Xo@C0<A54Q3pfLwJl4&`{deZI{uj8w7Y*WIB!~*GwCmkW>kIozeSZzkZeCX;
zQ3MIGjQQctHR)$!S8zCFYsf+}GLGB!Xs_qvZOEQMRGapsCSa^T2TeT!cw=Ulyv}}~
z8U(M7(GO=hlHBftd|Nv?P&&Fns$ABOy0C%uNmX6pka2&Nk2vj5T$7m^^RA4w^Y<oq
za5}%Oj$>n<jD_`Qi<$J^kG%K1V~!dsdF5Sf+J11ig#q>_s2?Y^BmLWo{e?__dr2`o
z@TLIk7QzaY=dBNe>zZ?5Rbb!23X&*DW#Pm1ud9w78o;p3rM(JQ(+JS3(a7y7F?U8v
zfkfg&Lb84Bndnyvoi;E%5pY&}@zIXRrXR*S!mDKbdAf#c=yv8Yp+~ycvy9PbBm+`E
z5`Jj@P8krLue2}_$C%s67Q}%H<JKrR6(p8ti=#IFl9_%=V4lLjlV@{165rN-3RY25
zQ<3Y6QB@Vr{M_F}GM!a}nEIZjJdLH=8fhszdB=pM;l{vdy&%P*k37_dy}ykP*2%rr
z=1G@`g>m~DM|)#-)oSx6G%Rki{;hTeYo~_e<GXhgjP=CTc&s?J206pya#629edD1M
zY?u9Ut5uUoC&r8PU&3x%9j>!h$u1@Aj(@b1tGlB*k6Qc4Gt>VhN{NI_a9tgAyxL>T
zt9ExjQqUz<nopD@cy)N--K>8_PL}5%1NUB9=k65ADi0q{8JX%<%34|Xah^B~WIlo|
z<rA%cmYDu2+oa29%w$bQXkWO;zhFrWI)W>Ja7AcB#+H6c)>OdTgRg!&pt)GqFKkb#
zB<YOAV&?MKP|w7#_H3E}x17W^CzGXq8h$mWrlm#0Y6eOp>S~RhnNEgNt}%4F7s3XW
zB-Ti}Ql+VF^RBxTqn8vF1`MK4OdbQ3BHb=umF^VvZc0K6Jd;px`?1D$l9?>+*Q^fw
z2O2ne8V;4rxbgxpEN~7bl2_45Mw8kUvDJFGQq3T<$**@U5_q!lSQ|Ecw>=Exw;$(*
z?_IqsijqXr&%P&11|p@&pcM_0uea~mejpj3Ye>T#@fV`(I@6C@FTj@MeWaqM0KH3`
z^zqJWf))D#(GR!D^7rvpn|OWJbk+IN+%d4V^GC?XNT@_rD+H*}(tQzUl`g~jp|q|a
zQjOx@XyXO!cHAv%LF2Iz<F?ILmjkoW*o&5UQ}4-u+9`$XkGs7SW$DoS>yHjuaIX@J
zaP^PHRrqMcjgOI7i(of1p%piT-R2?NWlp<dI`~f<oN33j<-_u>6EF3<+@|xNV|LXs
zT+1!+(T5<z)hO$?r@wNr*71w94aDK>@qZ;lm=DP~o8tVt&uwhJO-un8XudGVe?hk=
z<uk4t@@LuT-!<jF`$#F~*_56}yA4%->~WEW`ej0qer`C}Nrf;IWi*|1EMt8Lhb5P)
zY#04Ar+%|W?ua<?sp06ht&3+=F`3OLZY`$`!j($Y+V=MUTon$T{guH3O@`B}*J?};
z^SuxCOqG>qT{9g^5FAJ=<Ap)=YGILBxTENkW=Hi_pw4%y%BK}HLe5WSFEaBH>-k@h
z2bqjFIQ?`<xw=mWs9Z=-?@w;lphDb*gJTbea?DC;nm!w)U-=t6;h*j+_HdGtHrcls
z4lJEgKEQ~pYPlC~+%?G0nAEG}h+e(zx-(zs=SpkPmdI!Q7;ky4M%3bFbw7spOrW{U
z21RV(jt(GcY4qN}8E#K0@wgpJB9`bLBKS!OA3v)A>QUWO0y3+U$0}S_pm0kI6bOr8
z`K(|;INqrLkEgc`YV-TLK%o>$ad(Fz!Cgy{;_kscMFJFe`4x8!5GWLPcc;bON$?g4
z?rx=*|2y~IIbU*~nM`JK_Bnf>wbot_X_dqv;=P>?x1f&KvWOKaJ!Y*$>x*FIZQv7@
z2+3$UC2z)tyxT4bB13S}lF98B{J1+4{|?fbSu#@Js(KT)j!5<1oSvRaSWa4B6?nY^
zis_RMJ*tgAsij<n{zLi-9vC{U(FbWIoyYvd8}IYAmt8l(@j$;?9$#<5n55@``Gcsj
zE7NoORTYf9q+BfhlJZGLTJCkk%Ie-MxOqqe1KzeJ=Z(^C2uA$+6=wXo<HmZr^VxCP
zl2p_WfBH--TGhWWAiY&GjV@Y=4nN56s+pOD^%-?2#Qn0kzW~CPX~^e(pv+fMJz96P
z)~tkQSyr~2`o{FLLEMp+<fT9`@A{BNTU4vjFPSgqc0Y82D3A^0Nbcn0t@ePLxlYcy
zC+>cN%b6B2u2`b?!9(@tCjXEqer9hnUbmH$mX;K54D=5|{otG#l`sc0`Nox@9=&e^
zk~DhBL2rFy-tl0G;s>URRWBBWz3E+{X$~E!8c7-Y8M`7__iVTSzLY?NZaP%dZNHWd
z<(wFWGt7j323U3=pAPaxT6b|H9QaNbBym6{($+hb4W5jew4pc1wRY)C+trgy8!sdp
zV`9vaZ~Hzrubht37i#k~pQOO7VQhZ?D#Zhya9){Q{X^o~L8Oxc6ovM=95LXam-_MV
z1-~OEKq@ttCKbMAZ&O{uEl2Da8U7)C1Q-%9O+9xD3Sx{rHSlpLyKFWF+*(z)GbIU9
z<m!dBTvVCC=6Uz(OX8`uvL@ClL{qe7eyhBgjw0;&$`ZbE56HkMKfBPzp2YiS)|NXn
zbTt!)i9%P!Te3)6ITMQGf*at=@tOVaJ@<ej$wXr2aVXWe9v4;LCTBM4r9$2+EA}t9
zzp54P%b5c%s-zWt#@8No8=+sX!nFd2K)uxxB~%jXBrm9~!^&jYIm;SF8$`|5GiKe5
zQ=fX_CoIYlmOLHte4)XK%E@C^(PKa?$(Fx|WNqJTq$UJ*B#v-dt#cr)Ra5VNY7WXP
zBay8UjzgMY1p^BF#44BFSgH!F?OT)cr&qQ1VGT7-YQ18<g>gwI<2na^zZC-7I}i^K
zI?6Felr#)ntZJ0|wSnBSM4ijq$v>OY&HH{3Q;+SE*4j_Ahpf>{KP=4SX|EeCQm8}+
zBx4QV>ytKY$4q~seDI(?(j@9D4qVc4b|$@8p(3YYr!0GSaVjudW6Ppf&$zAlYsmJ7
zHeyK6;wPRT#cg?=oAGhrMw%efqqn%McW0w}6}{yfcFv~x1^>p+`eJm92<W)Ox}zu;
z3;_fhlSbnwzB$}&defg&^#v~IW#2=V$Rc2Wa8R*+fC_71$`UC*uf>}Z)R6omw)mh=
zLeCF!Px(NlYJU-BA{Q2~|6%uJvJ!U%f8540W5I1n%M%=%yLJL}w|A>l{v9mRkoX!l
zXW<jcrs`&r8TX!5fW4+z5t|Ldf|cEP9tP95LndoNkDXv=-D>aVHn-n`M>!e<XnH_;
z>(oKs8H|t(CJBk2VQz?Ouahl){boC9S@Cu}4$p`zFg&4u*UMTUQgFs`a_|Hw<t<hf
zdN)<twwX{dVCSnVUN0Ee0ByK8`3++EgmxnBUOZaYS}o1NTeH*g4h@DK=%D*WZ<JXE
z`^*vEP*2wa0KsQ)$1OX>>5+;fx3wl3_?9p;uL6XuZah)^13Gp{=j!Tg&>wy$Z#rk3
zstE0%ImE~U)@rn|tJjhtni&W!6(VSB;71`<Tf<m+%((BhV}(7RC!F14PJGd&X=Ger
zHz5;WXER7Xjc?efbKwt8!@}?}4behb@3s1V%C!daT^-0X+3H&MalQgL4DCX2A^+di
z&I}D$xg-;kf^Bl6otqelrXxQez2B0ccU(Fy0249B-FPT!$e5_TECwmFfyD?gv~;DY
zuK-V4@=Y(*+96rihtX~hv~Pde&b1oF9o;s2XoBN8KG=BcZ(6&x9O(oD(?U8J&a*F!
zy1%co3nQocJGbsRWbs|Tn=Fx+{f9)1%A2WD_sBHD2`kpO=4l%{rG+bd(D9w$G<p`y
z?Sha@LO1|8V<`cNpWbZT9y+jE{m1v(g}>Iu5${5rU>>gwo#QS@c^bJg`^)Nr5^l-7
z=l2rO5l}9C`zGLlPtw@E`?}lGJA02Wfpg9K9_D-XDXzw|^JP?0FG~l&<-P7Q^6u72
z-W$IUtJHMAms5d#qW}YV5g8Eet|N3v>Oq6ALEptr!mi+NE;|=@`6Wf-5B9CePSB+F
zQkM?<SbMTT#%iz8@r3;C$5oy`%{`QAG9OEcrh=+9egIh3RT$rAL=}X%T>L{4Q<bTw
zI~YvEFJsPz9FaWh7amO2k(t|uussef-dYdO!EI>^GktkVN{F_iPT%PpzkKY+?;e!*
z6J`WX(3~Au(JDNPCx=PrI-8j~n5d?Nd@rO*bE{&a+|#WWZAX@E_<>gSA?4*;-R}8t
zFd*G@u_u1xHN%<ZD@;=gQJBCNH#86pUhBh9<&uti(q>C@p5PLD!CjpXipzK{@-A|F
zh97)sWWRk#49^+H#*ukG(LtJR$o;I34gC&c0n`BR`9k%3(q=3ykaL-+1xW=l<wvho
zY<nRU3W^J)h+y{FVQe?cT{;?Hu#oZ*1!<5>!2rjE3|bux1NzIyrSYMQiUI(?V;aHm
zmX~^69p!nk%Wc=;hrYF_6!F?5N?wi&ajNm57V=!!gSJCu_4S_iz*&`B=IRu@isZyJ
zMcANYEvaRhZ_hSx0zQ6gw1|_;92RsZxyu;tnI-KtL)Tu#)*)2m)3a26YQ^2*&ng)S
zu@uf;{v3lELdDPz`miL5PdYI^Xfvs0Ph@?oAa>$<11dn04+)$-wGCWz-ad|nH+2j&
zDv^yyF%LtI_8OG<1Q_5`%RxkQMs@|QalF0#HhgEYR4t8=XQ5HR0J7tu%)zdGv98^=
zaOdS2!8?8jP&so;+I&PiwuZ3E0-523!aiKR%2%Hf1&2~=kYz*i{Ak0cv7yHwk8@A)
zo1m_ltbKF4KJWI<KJHK&tHp(+j#4(mo`gOe^zrxpmU^jqxGa@D#pzI(f2*D=Bz%yH
z6_a9UP=;T)rYY)NMmXM)J1qDvM<TlqNO8O-bSW!-uahzCVu!5@x5*XFxRowo3m2QO
z#;>~+py&I`)MJD^--eBZjoK1lCYaFYOvx8$h&X5%E@ovqQX`?|a6)}>HJ|Ead50lm
zv-5lgtIte1j`P@e0eb02yXES^S}!A#1EG^ya0*N?1hYgBT=FN>aV14qMn!e{2{wOT
z!o-fp6;NI@xPqXI3R+#@&Se7ssu8UP3@C8K+GNum_4~!*=;qt6UtXfYo?EO&b>(pk
z5;IMP5kSyH^&lJkdnns-ltD5SpUHv)_yr>(lK#9z+gFsrqbP*&%ZB0*Y|HVE31Ve3
z9pp7*7AoH2rK+_xV+>dYec<o=S@zMBw2J)=P=Q3Z?n%_Ayw*C+WL8xxgI|dHy*Y!&
z!vc$dgL}jcRf`;(J1A@@&^}s^iE|pF)B`=eH{{Gn^4F!+p-G=lhPN%Lu6$SB$Xeh%
z{m<lh<;r=N<<LB1VoCq~c;RkRbK*z<u4yXbHq@6|GUg83S&wv4KG?>+W-d;Wy4}PP
z$OZ#4j=5MM-#>kqY3v8kb@C;#dkbWG^b?Kup%4UgRVdna<y&<?tu0(;bT*;62J7wv
z?6~Vk#_3qx?|I{71$%8`*0ywOGz0h$f4{GVJFhusaxC*>Z)N?*r21d-fcU5q3LL_q
zZY1$=%HSAu^Ln%`RqQ1fGlh^VUkb**9j1u=>)>`jUt^+<2c_-`c(ga0Wx3844^+49
z-KZ_vu$*5pj>e?XBUA_ZEXNmGyO-o$R()>ZNDa?mO`yB2+tY|ind4zN9D5UZw2+yx
zu5P%n640)=!>w%%tV#h<ko>vVv9j63(uvxalg*XVLjz5$VDxz@J&N*1n)$xF%6k)6
z!6DIoMZba8Uia2`DsDEy6CPsPgfN3+*A8w@Z%WdN4NS;bxhYi)klF8<&7xaGNM}J{
zauX4CZ4e*p4W;2!-UAuCC?-V#p$8a^JOspa30bh8(G^K%;!St$8g~blryGbG-PTOU
z`p0N=bSc;)T_HU+Mq}7ca6~%=NtE%`b!5+0c|i3yJnEpux*GU`L@HR06qj19P4Y30
z4b#`zzWD{LF}9^fHU&ZgQMt?y+Cr{wE%3II<l3pCII#wvj;w({6qv49)#Fpe=t)Hm
zAJs5HRU>ij8n{Njy!hWAvL-8jh^fy6n9xi{TX0q=A%LnL70+VVjQK?;=!vj5r5D7p
zLqpm9l=gJ>EI-B~9jvHlHpV2U?`M*%co5qGt!BYqb*HL*S4u3nx+9&uGF&JOyVhTk
zOor-O*O6p#g6ORuv=D|)^iJbnrmF_qq?SLvx;F$mO>IEJpA4;&8UG<&QY$U<TT*CL
z@=y4<)m|NFnR`Jq*jl+cp?7m7b{?i&E)x&l-qD#g&U9P~#qJBbg#y~R%YtNf8yr`i
z>88l7mrLjU^k|BZs4Jp)@{S<|oOEL5+kVfKe@M+h8;hN^H2W#pz*N-R|GYgr+_4=(
z*&-yms^RT%=Y!TYUjqSHx1ba_s5>Iho0&IEeATws2q$bup8_YFMIS8J@cEe(`B9rd
zi`!Wi;#DRd8`EdYBd_OnP?HY7@h}OwFiCZ@OV%DKH01&q$hv7d9;hF=xy8aL8_fy0
zbeV!|^l35Ch@CKuCvHBK8EqB!?IjmYTj|zvMI;a<_4`j@Pe)#r_VJ$urMV8&-v^yw
ziB~G6%QZSyti75SSjH7UX8U5?DoKSg6<iF=Zftn8DM4DZ2RXY5JTIH2DTh8xXGAYI
z-ISkCw##{=c*W%<v{v<44d1GHeHOK}PZSoSMLx?V;m?cbE4awMv=YUI7;ZvVl)zP(
z%^j`m+FQU_CF+Jed&&_Qz?E&HG_u&sjFKs6=7j}ue(DwSC=UOUZOw4gRv?70+H|Cz
zCMSWMIf9*)A=vhChx&oJ>!=CI)1+g^$!=i&^`bjh9O?xYom+FSl9(N(ZB&O*ZA&UV
z158E`xV%6g1n_U+vDv~>bBnHNFkrk}c+yMKgPYRmub(~&X?sBRA7_uSrlj%o4^-hR
zXEhT*$ItS?G@ZS~mP2~Z?@7&1D0!E@wt<h$b++qW5Hj`r3>=k$eZ-q}Oj-RBPOKxY
z*q#?k0i9?hOpl$z@US^FOb~c@+R~oU{rUg{v@<L&JYLKd=)UrjGXa!xo&>Br{krW2
z&{iZya((Y=ks4z`@%C-R^N?V_T8`qX-%WU=26H)SD$eb>wQE0<?lrL4c+(e*a4sAV
z@tqM<Z)>GLt7PR1$MApk*hTHkteYq+&rI=UYd*qyQzA`s#x2<Wl-Y?+RcDsVr58Gy
zrJ6`+|2J!;)GApV$3i!SBPI3v;(NM~%2io)r)q19mLuHJMVLf)^Uwtt$PgDaa>qB?
zsp;gVsQFQiya>B<9eY<BHd!1_<&9$#)^IuyX$Cp5_%e;J&9~&<<E)zkl0lF=1>zR_
z1J_;Rv{74}zgH+-)vyr*Z4w@O7_KwZ(D`@YGEn<%L;x7mu;5lwB$rjHP^|ZZ*NM)w
z0F%$W!_+(AYJZaJ!srk@%%y{ASlmNtKa*46@>xm5DtWc`)H^_Wu+isiq6Y@!e@Ga8
zw>Fx~i0$B!pdz;6w&78m)*M@|Uj|U2vKcuF`K~nMbz=wR6wLCy;Bgl_E+8|yQ<r12
z#rbsXAl?c?b}OWE#_iNv|3c8xn2Q<Z$tvC`s(`hcPiIi)i%dSr&Rll9T-2`6%C|Yr
z58+nX``4txSIsgc6Mg#FLEkIA+K;CL)-`g}BK%2Ew$;8mEDxRyKHFneg!6yRwW`)?
zsSMJMW~MvcQh8=aT^_~J|Gt-cNfgWM&-{jI`(n*)If^vug19;UXL}Wwf6w)J=0BvS
z*2@x$3g9Kx;g_kwKO5^2I@hL>o}`PzeG2IRGj_Wi8UIUF_4ytedA=->T|AwM?YBVi
zbv-|sU)a=s-CFx>tjNyX&pH7N?;h}bVg9e}ojvJW9ZLfhOU$FcMJ08Q@+4!Nt~SCb
zUmEI@MAIJvByO$nx;XOP-8Q>x6<v|XWU=rM{!G76@>mMTGcY;ut^QZrNC*XCQ?`M>
zL-_5r0<~Su)dMFCu?Tn!cqOik79$!;Ou2AcgnQlW7sv^NDogdc<1Nj_N3Z)-aH7*Q
z-=H&W71>1B*bcg~A~bnCOj;#AIyO_M6Xem89In7fg?2ffPfpDQA#Ngbt@!&sH3Ho?
zu<mq9zNHWy7Rj_FyR5rOH`3a5grNuqiM6X^uE#y=hCp2BvH|y4cUmB4kxP+g_2pbP
zdX-C;BSMb`>gcw-m0aAex-Pnr%W;Mo(Q=$>Hl)fx$Q6=~fJIQ>#qG+8o@5;@_-b1s
z;`1Iqvy)f|z>WBbwZ6x#JLy<`wBO|bH%A<|rc6hR8l2vgZ7XIlIS>ba+?i*>Z))(7
zljhSPOZljKht>zHoX5GM)E85oGal<?=G<iwrI6>oy4x7Cwzb#;4E_AkT;7w`2-!H}
zPDVPYo>rc8^&6h<O7-eksq?Xn2w_<j>mBZlB8~4M-uxO6@4o8LOkARzPRdctIkItc
zd`uoK+*{0tuV1N|2dlc_h|=6UzbVZDE+e=0wXVeQ^KF!DInI53wxiAjQ#HojGVsFS
zESo^$c>EL*DBq73j$vynp!kZSzQEJkN+cfkF1NO^*Bu({^?Ec)7cf;C?c2HQ5+3fm
zQ00mfw<KyLNR=5z`dS<8(r2wrWlTDxd`SNV{YmRttwN@x!%X^fr4jVe51jiTLN2?8
zpShBkyqseO%v?<i6ta5Tu<A{9YdHwgdv?+KYh>>v>LhsV<LpG@vcWXRAm6U_CQ&Ul
z^DeP#kQK8`<)&CzGY}v}P9@Cl2y~jsIxinHDDpM9SPlz35{OU2<FqB2p9XP8xhChB
z)Ij|fNY)iB=i4P%^Syn1YK*fvkKP3?cZ6^4phnC|?de!2)8bW_^g!KW=QJdG4I&tC
ze<-i3{zEbprEM=}!Y`$F-(AT{%<+m-)EZ~7!zukS*7<QmQQFlxbbXXHZU`eary<sN
z27-BdgX_5T;6%Wdy!E8w_<Uev!1ZoPRAVRyCiuk#om9|2M8Pz?!bGkDtWhl+Ibe-F
zV<>rn0D_4`Om#uQU4h4EOs@QcG~TqJnCPuHx)(U|$y$=}NF@8>-=NiXS_|H#0cC26
z%bCqyCdO3^t%f4qPX!~zR3<c@(Gg1Yy#37bb3=7x<fH_bRvg|zwECwjC6BL&sJkHf
zB$3l@VW-2mHeMJ?U_kgjPjZBwBc3P2T6uoSw=8Djv0B6OX0+=9e(Swr36w#di5R|8
zv2GOEtD5QK2!E9r5{=G<1(>3`ww7F%7*HRpd;^ct)cGVcSv8hn$JO%?;50#ipv*)w
z4(*&6$_HNz!MlgWntu@`ThiH}<C`bJV{I-tYuh#))Dk+f`VPp=a0qWv!*3PIltc)I
zVg^7UvBYqX^13DO4aEyKM|Xzj3e0GqR`y@EivN(JD^2j90bsh#&z<#09PtkQ#%_7W
zY9gMLYHF^8c$-eus}PGFeJ+x~(~#8KkMUS>F5MW4Z~*4-Jt-iP+F!fmg22PD4UOuY
zS#^`4W$w%6aJS1Ad+I3jCaA+7%v4KxyHBeu+fv{1%G*xWBzI~&MKv_Jm13ep1&`6P
z4iv~r71P?UE4P_0<AOYRLjHo|uK$m!Zewqzd=#v9ThYf6N+2@$_zBlL`f-B1zAk-F
z-AK1$UW2mugg~;#=DMsn39%J?Sn?RyA^xZI0P#}&<3$V<a5d6EoZ*eHbr<iFLt(}N
z-P>~EqR2Af-C{`bw~fM6SnU>KmLjWkh>IaS!vKSS*#vH_23S-01Ui7h<tS8R<`eq=
zkO)ObY4KT9upQqodyO;m?7FmxYR({`Ms_jT*GldH8EJSg#9{SR9p3L-zfvR><N$Hw
z$x#>Hl$=;szmow|E8W9v#n5QuznIEfx=x$vC8RlDOB}M^%`4zNsX5dk0WK+m^4Zgn
z4Tc`M@8{^`FvPq$8v=D>0?A^2Q7x&8{>^=!?u;)U59od;)<4Op$S9)3C^I>*m>#1Q
zbG_s^Zz($4FH#kckYyP8eikT8jcNtz#kefsZXhdy4!E*`KB9UBTbGb>v?Z_wbYQ1Y
zRTz($rC6-iJCYi&ycqKuE+%h#VaZiRk^LB|yIbd6jy}o+9+Q1GP*7pRcDLPYB;dxs
zFfTFlt^%B1(Z_m$MVxWZ%Tf67B8D2&m}*W!VoPfJ(jN?j#XSl~ewzYl-shv>Vp-O1
zF1A=9LMjGqLiOR2Eme$caTUr`Z2Rr<^V*n0+jDgji2`9?CQuVv)lxOOZP%aFrKi1G
zUa5`8JifM9bv&^WSrRavwgc?wNx;B5OIUm>dpu-_WyZtd@N-|zDom3Pq3Eo@Y(B00
zZ8fUOne!F;mQZEgg1!_mY&0!_RZA|dFy6S>3S_b}?m?$dC`hy{IDZqz8ds@Gjwepv
zFgh2MKne4@HKKJ~Eo+q{8%qYuHUg>i&?u+?i2pcu{hnqS8k?-MuCA+8!G=^Co%>wv
z%|(;R{0Z!i8@+yZtuspahaCZq%WM8ZAswT+vX}X<O7$4lae)-xURj_VhQ%}`h&L&|
zxO%Fje>6Y|Lu5yRCeNcv>Cteq;hRf(CmPn&eY!dNSTEsYD32W1u=G^jucDq054|D2
z++I)URaOXSWh2GC9F3|%z~c<v(O3T>eJ!2Mf@Gh9N#~4aNfIXOYad<X8)v|<#T}<h
zgD(XmTeHQJB-n9<*XD2-Vo^sHK;#we)6r@q&g8RA>aF!Ov>0aBTGnUht~AN0vDZkL
z$-2I`L1;Vv;u(QzJqDk`C7yhk-y6U7bq|6Acz=>5+S`DaWA<MA22=j(th<x~`XPO(
zCj_4<r2Y5W=S!LcMxlajZKVNL_}xEn308BWUj!rEna~l9?pw{Zbx^%jiBYG$@Fo{X
zi_j_Y7yN%nW1=%(jk!(o?kF|oEYEitbAFh&Wzju=2M9|P(rg{6qWw4OeujhlR9>}m
z&}ShPWWG++E{k38C1pUkJ8{@2)q`XMK;SD^24zgp+<<qAI)U5Ec?ksUJL6hUXeidF
zSzu}|az*`py;ge@N2k>?P<M9jVjQU--0n=@=rcnvi3J|MR!anXZSQHRG6tx-J)p>=
zIbJb@mB}_=o7p_-X12|-nR?o)!Wi<Ci*pt4F29B`s<`g~;}r3&yfudLE(@b0*~EX9
zie*zlmE`BA(kA1<b(jyi-|E(LNND3<QZ&qDom&y59ULgAz4$xq_~C>Ir{k#cO@OaH
z=?d|lQiL;i^$vP#ZwhSs9xeu)l|X;j_rH9jyc|mitHZ;RBw%VO0)6_lz+@di;4k)9
z)o&!=@5gETQi5hL=|^&f)K}8z$pQO8muH%Z?JvKyGhSXm=NW-=yNz)oU^HAw*guIf
zH`)-5i(Sm7W7n*i*19Y1L>Qx%{;m?EEHRzTCZ6voJ7e6wAPUA2vO1xy5VQGe1xN8L
zF;b~xiNDm8GA4HhzC}4NL!;&|VlszrO?X)~MEewLqElhhIL;;MDI%QHe&R_ZU`ZCC
zQF9_!_`%q26#7iUDDUE>#Lh(ZsjmtH0ZP`6d3EJ4wc2?mKJ8kmxP&!6jFa>;!vpH0
z%i1iQ)};(ie!q4M(GBT^sghEH3D<9<-;eP$_*A<W9Opij(3vEzj6c9|<UIoBGUy)c
zB;VCcn5q4lvM}Y&(l{@hvXRFQ6opY=OlAvM;6U49h~G!HpHS!0S>Y*|4>xyPP|n|Q
z5Cir-W*6Y27`)LOi)VF`1N8)<)88*L=`N(nA&M`L%0nhb+<b8EL<hc%TkT#FI#424
z`jAw&jrk90sGdG#kj|rNfHvF;bDZ61px&7K6Sie1{daTHzE8{53`{C1A215@Dq)re
zG@h;o%Rx84cI=>E?>lYzn7U-k-+JViQC~{EO|?L!l8Jzr7_&}vyK@(luLh^`6|kZ<
zx(i>PnH7yQxe(q1feVd0CaT~cx-lNk7O*Fg3_x6^C-Y0%eF4vmlr}u(&qiJJ3E9%-
zc<~kQ^{H8{LFMA%jbHcwKETBBEF&X_*4TlnB7J>?CpjjMPq{OyGpPvE1kap6<TJBc
zdAo(AIaZ<W+PMPgmv|d91>1_n^lvaDC^wy4g1k_BBf|8ReS5<YF%BAcA#v2<3iF+l
z6Y^=~bKc$|g`OG}WdVzLcVnZ@zc@LaFEhNyPr4MuA-D9hse9|A=hR5pV=UnYG)^~J
z3=^%ppjB}jR||^uQ!F7ck)x>b&t*_rjv7tnXA`m<F{>Nm1Fd%tMVjTNmj_j-2$_mr
zHNQHt%l@oJ7lRrfnLo4Y*2#TX&zBEqArF^n{Fd>JHOYOv{9_*%r~73|pVUbXoZsv*
zwSLi5xvnGEs<EPBFzs?*fRegEU6eCVY^BhZAwpB?hNNcvL@SOG8edBL+^b26Q+{f=
zNFgY(wxnhI_Kl}R`3`U~XZp2BoV&gRyir2vSi?DI4(19%3FAd0-v;}@Xy4<I1yWpi
zT2DLbCP?oY!>?-X7@^fq@TO*ety%}c6VKP77c-=SpNLn=hfOZ|(Gfci`K@8VM+E>`
zajk>VEu_|7L+m!}s`}Cw_8_ruRbX}Nf?QvYK&ts5IKt6?MqiHG1d0=Kq`DZLXLr|e
zh__aE`hLw_-9y}MF18W#zwsM`U;pukCyzzn9m(E=7O*W7MBaWuF|afBAGeK3K_>%G
z=dtwe8bd3js~X|L?r%J{0lWNvC%&%}ZQ&*>@4dsV*-!pc|M&Py)lF_A%x_v}dE52C
zGz~T=_K;t&nANE7H^nYe{imG7+aAIgO7HAuc7x0yfDP`?DWh%=@l>Jwp(Zp<o<V=B
zx<erHgHwucI0H}}J*)P!fVJxo!B^iIOKB+c?6Bz2EXrCO(p>>oWl&h(vLp{_XB6Ia
zkinqWaZNKyWIQiZsY+redOw&l>Gs4cCzB8Uem&7zMOC60%~2Hb^ifEX`IRjLiy`?o
z9=U|OmtWbspc$L(J|AKYLbH5+Yc#YJj%1s4m*P!Ac(}(;c#QsAQS28%ZhnjHh4pz$
z8nei|m!Gb?hq_NDw!V(~l`_5LQ;5ZAd1BAZQq#gdD>afxXeqOGI@TgJec!$T;%p=b
zC$9~41+nY^sLZISXCT1cC&ruuU_MsKfCGBX*ooW_YlJDw|00N}w3z0JuQqC>M5!Jd
zIWmONocG>Ww|)E8Ok$<QN}*WbN+o=NfAm)yqBJIhV&sfa>HAw5TmV>|g;+EKIromF
z74Yj;yRX8P#iu{zZ}Pe|FuH2tOBG5quN|&Rvrw&}LQ+*l&`9-K@K>#PPVl!lbU&@W
z;iG$aeg3ZTMPayl+-tjqzi?W-{QJhQ6Tui{_McW>bS-`qg`O9O65h?9*M7<PoA=CC
zm&gDCkqG>SG9LB9x%B6A{7IOw4RIj$M24C`5474(Pux>+nIR%ycV7h(1ggG$Hz!yf
zWHz;q)Ycg<Mj!LhcbWbnrAOLrPOrE;IIhxt0>5T!JFCs7e@MyY^@_k9gtOO?8Z`bm
z7$ZD|wNPqXT1NV=QsikdtM=&sJCbS~Zv3DteS#N~-%|Hy7%qu3Vb+F6qSc%KH!iAg
z1XlEEOgDri=_h6fW(O$vvo@N)2)Y~1YY=^5Z__!_9BX_t;>_(}M8wWOf@2WnCg5%g
z_Bd+r%yMMw$I9<nT@u~|da_nUh|C)!Wc`w3IQvMhiL8B%6avVY?<hw_gNPAp98vqP
z&6;*>CL$dV$@jWLnrJ86rk-5fTH&giF7_X4(<=Hc?~jugN%`H{iaq?pzB)}UNLlE{
z#<)jDrQ47<QE*P@<;fx`09-Hw*xwOG+ADvpyBNKRd}VBY0t&|6oV>s-&+PAuL{a43
zvIA)WUZajTLZx<Bb?>mZ7e}{G@o*xFtVt=V2dgclUW-|#zV;}V>i9!NtMt{Seq+c1
zSKJTj$ixJAPcLU`gw5ugmqK9#F!0=0U!MgM|1B|n5G0RPG9mcZ!1lIao79u7Y5N~i
zM(rV{y5MPJg-_yG52XDou9-(Y!_mY;PMiT_xlo$`!pgSCxNN+yrFSUr_<(u)$Nv2I
z2}KNRo=GyD*0cYdKKGz}C(kPBKO_{reOlK!$m@<pu^?j2VVfIRtmLF-UAexklCcAb
zTo*;z7r&*^OY+q;OCz~)7(Zy}Tac<M9E;(GkPV{4$6D<X@&cEI1dp(NKiIKv7G6yN
zTo_?od?naU>jT^I%~}gubPjfC)!1csdvR2w%7t{Kjsyu<XZ%n4>w>#y_A82@vLg0N
zw{!7RL>R%3<4I>GS_{~gMw_G9;|sB8PwO+Q?bUN76V~$58>a>B)AZZA?spnptbBo+
z(ivyCL!sOowDCr_jjNlDL@_hp$JDB%ursczXfem}q6w4htoC;8lJe4pP^u+KM5)^C
zMI!P<--I9`iQ???n39J1w5N}d?y|qLB+;~Lc>VD~#Rh!4HMU+pZsX`^ILYm`rjTlT
zf#(=bj@%Ir+!0-wRm~ad(_$t2C2p9=w#w(VNfJ_t9XQ~9dD${~%jlOEHu{4b{X>sG
z?<a#ByT`vhvaq^pHvad-a@Bu~Iq}fzDfH^<zKAlaVCK97$WK*lCzGC9ecQnr#jk%^
zcvW0McqR4YE`mWEg&;-_7sjZ}T*KIq!kRSfpOTPh@3H-QMUM+i<a-zi=PJpq(-LFu
zmEdh9ACHHSWf?;!cQYwPXS=|6_rJATzq9e`x)h~5voVH-1(J<%9*kbAn7j@21(j{8
zr@m~xcg_})0`9HHiBk|_U)<bfS2j{3?C7E9d=m2>UwztFf;M)TdqXhj`Fkb#R-tLm
zUvSWoL0`oD2KA-=;Njw2x7~H2M)iRLz!aP7Co5O8^F#i+z{kZFqmbglDQLryN}rR-
ziEPab+EiC1>qkIeLrmRL8J3W<d})N{p*C2ye(o2<<9>nSb7l2V#O_{ujOuJ)0s&=W
zf3YPkk3ZQ-kYf0!gwbF2P&W-0q|G>l)<w~IN%}lQk()9$Ie$T)ykJ8i-4J0Vxp>@(
z!)?q=<8^~sx~C;BmU59MyyHdESm7J`08Uq15npOC3(b)eR~~R?l0(UkbyN!|<&G^r
zIB!rrWFF*wGGQ&K+aXJzFoKgx=1k}(gEnU)YRiZt0v=wzD~+chP;7>|?gUit%&02;
zRF?@q#q?dv{d!kcCJdN$-$>D49ye}Fm~H3~%zVug<F9$5=H&XjJ55kwx8(vhJ7Lr<
z@GhJmqhIZWr>Na2=sbTU1_bNZ(YKyh-IPKeaq`s@&B~yd^8Q-R;fE307%h4c@eir)
zQw}C8vRq__->O;t_k+sD-s;-Z*5FbfZ#9Z$_ilW1P}GtBTnEORC#gKZLg3)xP0*QX
zWV=(#l90Jk((IlA!pvB(+RNCsGxRXMINpZDF;P!Qkb=p9QC+tEL!49Q(rYk;TiPV=
zSTno#=kx9ugLAyYja|jvsW_7Y4)N`hY{#85x?8v`d0y&Fa+F?WLf_5!hjiUpgiIv`
zzl~rWro3CAjNrV_NwH_9dYPq-TIP^z+({c!TnNFoMCbrmbA1J#RBV@HP4+AB)mBf;
zAM|mBj@U76tvE<oPk-CYJDW)ipilETkZ#D+tew@{Dk6M^<K}kjKPQ%Mt}ECrn^OFL
z2cCg9b83S1nP0*c(xF~E1qlW622oSru)T%o!u_JUd_ljJYovH8RZyUs>|3DiIKlH{
zR&R&HP>jRzP>%p;546OpS<@*$yCGnAOuQ$b@KYdPCY&`-NRZ~Hh0w5Cx>Bh7*XbiT
zZ5GjTjnl;H)H18^*=Ug2=M~Lwqx(x6Q}<ueNG)ag%ta6A<ET}Nx=sUUl@!Xuf=}RT
z#P6}c94D>~UMW_2mdt>n-%%f4B`y7Iz+=mG2OoD(m3Br<ALkz4pI30cZGhY=f($+`
zDzqH^7>$#KdEqwq+L`9)FEiRdO31o&x%sj-n%^6fJg0|CX{uowrS4N3=3i+nDuz1^
zV%GdQP|mxxHPS697}1^SoGb7|KRNyN5dFH0kK^#$+gRBe$Bbo(J{1M>Ecn)XNpEzO
zaA;bg`AL8=Egn%CaL0@4GQo7mD;_di)vqb%W$wT%$|w2yuTC%c&uV*!e;6ph@$CLV
z_CRO+cugF6e4oFacE<D^Zocu+I@&uKxlYA=+Q<a{)#!G|@hxYZ{Gp5NItKN8-N{G0
z<7SWInw};$JFtVeG~8lEj>dDWQPW}Cu;TX4yTJb7s2YQs)m|pjZ537cLwQg2!{xpc
zP;b4H9lcSc7n$i`FKFL0!6VeCg<y9ROYN^8IA`K@$8T&8fLXVRx(7Pmp2y2luG+N4
zPe7e=ZyUH1(xoQT2aVwMC2uQ{Ct~`oKKOpt5Mb`t40*-m^t)AvMBFLmh**bJ8V>GZ
zl!radCTqLwV^6$<Hi18roxbxn)Vq94SjNv9SaK`d(05dfDp;rGJ*~nopWycY{Ud!;
zYX?bzO9ofmtT5I)6KXhmxbUYTsW$ClHj$&90<7{zkZvi+^x8Wbrnpqel^1i|Gq37q
z8_1$nc6CE@uAA`I=0W$q&zQmeBdYXrE%%(&O8+TNu$X3Ync@QA0i(CuVR&=fy1SLQ
zgMwiN8EAf_6<|kQ_(j9Zi@GGM+7z&gia{hq;ULak>oH3)OC&$OxGyY*eOha<r#6)c
z@$6<3n-jz!V%0pw@mObFU`OhdDzBC3hI=X5nqF7%n{&9D1c|eJuuP8R5sQV9Ux_{%
z(ng*rB!M%6m`#VybQeCA_7zSid#6vsxjAD_x)rbZ<*Q48)%PtE8jHWZ5~QC3BC9Qp
zWP1nz-->+n`+o51bXrhO#KI2!$NzFh>OhDvWTASITI&3awV4ccqn*jpu~?CuZ4_tg
z87usv8>sPud(+zo4R$oD6D(=I07`vwDM&+A%Q$$h`Sg`*u$mhAjDCA~mgXO|<C9|(
z-_US~UNdpRG+dmBbtsZCz2N;e1DekO(}Z8;$6zddKgpzjYkZoeFrB$7<#ch{RZiB)
zQ+2g1t!Thx`YP)M^lw`B`=I`=%=K{i`xCH!JVy56KHmCm{@eQIKFWqbL>V=tVGx<8
zeIgDgM61drWL}^0ap6<<YxL6W&#uTBD;p6t3E|6UCH(Zlj)=!M^sLk}^)jnfym7B{
z>L#f?FesEy%pISjNfVvPmx**0tsTlPR^j*>V&jM#{(6AY%d&bIuBBSY5a|)+mDO7X
zeVkBFF-`HBkMthjQwb<|KGDd|49G(X1d!v6Q`e`c8keNgMoehu<EMv>xa3Wy*M+No
z1^~jX_{zIm{COudnkK>UaaX5QbFV*wi9?Ghf&8IS2|5|a_pjxIY!nKbXY0pZjiG$u
zXzq;hNC;nfi!+2o&X$daf;VgJ{;5%p<nQRurlO@a>`!7ko;r^9V^JMR0Tl$FFNQO1
z<mLen5643c9VOsUbHdpFPOZ`vZ49lzHC^#uU+kGB#c9YFT)D4^xd0-KaaDt;EB#63
zyy~r}ZiiX%K9tqA=?Y9#e@GHVo~k}U6tI@Jeff~;PnWRWG5YBeh&78|2?jWXP+wqa
z^n(+OoL^9Od0UBBEvM&fxpuSV$w{^|Z((jE<%^zJE$;}-u<pKq5p_H1%T=RZjUX*&
zM7?#$`~oe^^6%k0Wt!(ZHKBDcP7F#^3I~RGig!8KIjkqm|KoO#(H6ptEtX-?ZyNQk
zYao6{pS6za#kAqd)Iu>tY!Whw%lF{44v7$+rUa21C0gY5WKg>uABbVilYngdGxH9P
zzvK^}NFPN4!!%nxN@kH)t<<m12@a#XGJV_09#1Eav34)jhBF|e>d(V5=&L(}va}u}
zq<q%s?#+W@cP-GcH9?aBfieh=d@=o@0OA{d8x!{1RAICd=Ryh3&H&)C*{p=6W9;`|
zbxjlLd-7BcMLq|Z*(oc?Lx)$TCPY%rftZcR0oFz>xD1(-{u!0uEfRgyh#wsb)Hf49
zvYiNA&>npo%b^B=Cs(0yam{V_D1G*2(%{`?qyIc^=|;*qojzXOmrg1XF`R6WqmkGW
zJyq~aBYJy)_w(hUgUEKc+rWSFtMh^w&B*$vP`KoQ$d58=R1J)2O8MW6JB}D17=6Wz
zRBTzM*4GTe=C1^CZ=!nr+r$gksjJnR<vjC*FetGp1ng!6ura7twTR?+wwC=2#^lWY
zTN+xKbyCCV_MNF|vRiCFP*IYFaC>Nb-s{~rJg_c{JZk?O=n{jzhrQ@V^3hX8ohtLn
z4AwhR+_2N$!|+n^ndO5RK@4z8>MeqC@&P8t?<B^qG@UHp><t^XV&wf$(enQ*0D*Fq
zxFk0wj2a=jXgdz>J0v${lGPFt)qT!F43>ZVyP(Ag=rl<;+NhNwFYYzSm;1IU;nPJK
zqfaVFDmiZL<#H^3v<tHpc27K|{)6U@z^S#YfCF-%T0`E2pDrVlU0h7W2C=|To_d5j
zkqSMK=g4|1>4MfYRgoCz^494t)BbcTU6JYk-x3Omi3JlqA6~5IAhWfQU#;T0_uoc2
zpl&TR=J8gpa|D)?P+7C>imd;5Me5#Kgi(O}`v2tjU*NDj4R<&!kW{aO&@pMpjlP-Q
zZ(!Pp)&7{O7qMnaQXxrUcRcKA%KsKJ>Atry;G?FJ@6ew;O?sx8|C>^wLtyQ2RnFLM
zWx-)#9JV0;)6P3#h-gLcQNJm1uTH1sr(KTxl$6$<g5{Dx@n!KTcCzQa)~7izsoG3?
zGvyLu&xu<DYhH|_LC)X&u=d%3&}W#$itGKo_XjNfu>s%J@jak9(NWiQ*^_VL131`m
znl9RE%$MIif5bdTC@;jRSeEh3Dk_PiG<%m5(E!X#tNBZ`n(h$Nr}HRjlJO+bB1FLV
zG(`-4XtX7L_EKU>{vw_c=rIOhGn1$LIf8VkaJkH<YJ-hwySbOXn?Kp13ZHaxnQo8L
zo;}Ex4I;GGing@|Fz{}gto~G9wOR6|0C~jXz)=iQCovJEdoF$nvn@74f}tn)f<@$d
z1HMe=;+`eeQE8_$ovl2g`jicQ%NJrl+C=q3r8qan_0Oo3jnsaV%Mc|PWx<sr(HYVW
ziI1xu8WLUOHumdlC7Yw$Kva#MH&tw1GY8H9qV9_|N>2U4x)XtQ@$}P;8g|N+<jqs$
zPG5}FCf-yxtI)ZgwEJS0p|Di$h%dBaiA}CbTb6WxD<YfdQWYNgAGBvygmNN^=D$GD
z8Zju246m2nVgFUm9ho{7QxI1hU6VvAQ=-jk-ITPpqGXyVjO|?>G$_JU(0WIf<^V(a
zc!mn@cx}=A^2tLwYNqWAtcU8Bcx?!><>>DNBc1z&Z_Q4*H6?wL8~6U!7%UMNB+-H_
zBD97saU&))DN{W-_i@ap>JoqxSeEFmIF73zCWS81##WR6xVZclKo|MfM17l)nN<?1
zDZzS*y4Z@2>C0S?AdP(vP4huIqyLnL(}v1x!_|h}tZDQWJZQT-s`w+4BkZ^{`tf^m
zJ3rWKCBM2v4jmTcZ#cvKM7l2<>9I<NIw{G+2c*-P-m_lRn#Y@WI<&TBy#ImMSd(S=
z>&eVqOb(Do!m|B)qW#<NsLKb<Y~~LI9Lk@<uCebNWU43zDD9kpA^gqHM>yP3v3F&f
zXSf0O9hyYqh()xLPL<|rpRXI-Vt7BQAnh}@Pj9Z3DvyaHhg2dQQTp%vbjhA2hTyEh
zjy>x_A4dwO!rh8eGLIZ4i_O)-W+ci#dI@p^#-;o;iN}?R*t}xYbr0B8aju;Q+uV-s
zj|VXG>Qr_~rpHp)@Qhb5g-zBv<2RlBbor*Xo+?W>BshX}acr@zxM!})$GJ{mdu$7s
zj+%`P1V>iDB~KJMh+bxF4xO>1H$K|>9&GidUZO&DI~l4OJUFuo;vKL7Aveag3vRs{
zRiK%4_ykm#zGTP$uJM1ZNt8<Y!+m|E>&Nj&{~-yDLX+Ri<UO>~Ybs9WQ0OMruBaQ!
zSq-66EkR5M!Cc%x6M3T3IkIEeUMlO-z0ZHDOVNT(LFtP~(V9ifhqyU^pZS#{A)xSv
z4mjvGEij*S9TH&wLX$0(zcJC?U>-YGVrV3U*JIEE`Icj&Vl#3lnz7&y{Q%71f04PK
zWUA&co?ITI;5JefNcf?6D-V9)9H5+;uLv2y@r-_iR|(%lC7v8pUz}l6Fzi-uAb@e2
z30pTY!-~)7>P<;iY~2|KF6b{FJI!aB%~=b#opf)0CG<cTIzsQY8Y&)cN;GGyqQqSN
zC^%;pT!2&{V>z}z2M2Xd0)9Hax@kW*u6^II&go5!AB)W#sEl>L-WH70`=`>wu_MB{
zHFB)T&S)+t41~jVkzdz~%Z`bh-+uF|iZhf)m9mfTKD*Y7rCv^CVYWI2_6a*Pud`}k
zm91@Fs28JeEs{In*jd`7llhA*14G6aQYu+xbBwj$($&IY2Xpzq-&<jW!!^E1<OSTS
zk=y~G7zufSwaTA?i&`XOV&K3(S^a(%I$kZt!3m>b5kmNg$tRNvvK^H@o8~Uw>X2oD
z6h>Pzw?l&o<c9@{z6^|yq)C+q!(SRK8~HQw>V=tN=T6ho;#eg{Xv?G}+I;oxjM=Nb
zT<nHd@XgaIw>4g_@5rLF&~x?TdW@#Kbq8bwC?Y;N&ZVuPq$SEqp^|7hKR`csrhau>
zBOEJ$w5D3#h3#&|$igQADi1y=uxFm0>P_oOEWoHpwm~>Z4c}W@`)yLWd>NgoDzo;=
zs%)2+iY=29Xq2QDnR+)B$9{_J$l=_y;Ccm4F>6tfl<#tSSp!)I60Vf~NV{u~*k*`d
z_9B!rgy;5O3peV;ALWjm{Cj$uf@U5uI211OI;K<!GQV@onf#m2f9vepmr+uLw^Q{0
z1=5)It4+o8bQ8lm;6`T6j<fkAGs|NOX@EsbhXa|~X{))JLiuoR-lygmL+Tt7`n08V
zhHZ^KnOjm4p~5mcN=jY(6c1*VHGELO(BEYra;QaEAWJOQmt_vZk-bNK-L{4>+M&Wo
zFT=Q+<Dh>?58%N_0_JU@oByZ)I6uT9S)++vEI4aFCi7!y%BY(eGKfY#dm|c2B%^3J
z$!G{OuF8ZBAdFV9dZrd<e_qxpgqA3h(WR}9N=0pdvG6OwU^5{2k{FsFNcBQg%J)q-
zHbK5L6ziMtIy;v$gY!)U-H;oz?u6Tc6F_kw<juq<kCj}cqJq9D_&af>ue}MwlgY2-
z<7+zX${HHua{wBhd<MOx=`sJ`ireek8BH}WcNde|$+;H&--@56TBy}Je~W8)QdMGk
z!_(z;7!XgR7ujDz&Zpq-m-}GR_1Zi#GOL(kvV)-8M}E?ajtr*B72MK@CmSeW<a6aF
zj+8YiFVgdn4U&AN5JsSWyQ0pb=3^y{#OUjzzBlvZ6S^b&$JDjYm2Wx21_LzCi`B-;
zwXSXDhLiKH$Er&M{8#llOQlWoC9OMY#UPD6S{i?8Q7LZHe($h`x(4?_W!XEZkx`6X
z(DaV_B&pRz#|gq`E(Mt*w+f=1V4mlx)~eDG?Cx(D+Ev34dx*JA-~w7*e87)Rr;J+8
z_|ICUh=v8^{IRHJ4*{G-0Z~m;R17gq0gaELnZ*L)vC}X3K<I=Uz{M&KPu>0#<n!{j
z{1okNBqK2Md<t)?I*pp25~E*fxjfl={fr+Eo#N{1RFSICd1Z1YYu(ClnU-uVG8}1H
zfZ2G(-auX1NwdTdzK@_{B7xKfNA!nVxl3|c`P$pQ5EEH_7%BP@-M-uv^YIS5!Br@m
zWx728>hfe#iBn5y>yEKzmyA0Fl`Yp9ncqAYanAx~&{M6PR7<&Fec>_{^#hyCwkduc
z@9iG7mjac=g$F^TT<BcXA{^r~p?EmTNM(iVyIl!)pBzE#;o0m<-DzdUspmy>1<7NJ
z{2g)Sn9ak2b*<Y#yGt=zTixE(jonY>mKOw@wubrOn%9UZe2oaGN0QI{_;ZUAKqh?0
zk+s;?6RYIUvCo`p=U^M!AHTcNH+|0snXH}E0I>XVjjLUD*xwVsg|Dja>(?zRIqtQx
zT0`{=1#aday<VGkL`^CKvppqsIpg~O!k!lgnW=YleuR92ai8Ee^%#^OaY5oA_o~=l
zLZj~&n;!I~C+uaa8=iu6B|QVPd>4mvK(A!<F1v;#qT-d2Gq$ZPw%S{#FW(WehSeQ;
zcY9?dpi(81#NQP?<a#LbjWL{$+7iv77w3@bjdwl+VEQDJK?-9L7bAKLmz80$9uhZ_
z9{XBjxoLOC<~hyRCBlNpu)31{mR&M1qwW4YhO;LN010M<lD;nIxdNas>7UAN*Kw;{
z%IeMe?2+Frx3UoN`X(^IAntqaB$M?MHvmeO_*z|iBfevdt-)*>ZM+Kuc?Mrx!H%!C
z*a!;uE@yLuExW&oQ3M+I2@`Z0n)Lc*O?*9rB$B1rNY&5AEvUch>6M;u)fhkLhp9fU
zj8D})LTOz)+K;wAQD+uov(0fLwWr7+KWJxH<cNBdV(cG|f0Zw&t4LPlJic=s`-FFY
zEdHQu`I3aWVJI39E;o|Ej$)ae)1q>%#&ToRX~Lf?7VBSgla>pWs|c<L<Sxyr5Ex|T
zu+<4tng|l-6|LbIX(gFZY`ZtB+Y?X$P0sy8!cP299FM}!@QE({S>w<LtlFlO?qf9Z
zNlYCM)~B}VQ}Fee`r-XthP|T?@lBvteiK5PbcYNHU;K~8vorp;umAJ)Tn@=+8_TZ&
zha5~=2vKR<?rup+?6L19Ln{=wE%=QBEc@3PGY>O{wyy=-F}mpVvL)Osq9Bs~3nz4S
zz!$gQCJdG774{#`@>;KhS6lo;TD&B@Ekdz7i*F&e)Thyd1XMD>P68^unmdV87hpPf
z)7yr|XRX`%!ME`y!2xjE-vUF@fAh;P2+QVl?lIC0Z7<pdqYr=%!}nW~uGO?;#CV^<
z;#cCoH|1Ab8IOb`h5HK5#ogY82MJO-BRiT<{S1yLyR4rcVP%9xx7$-)nB86#tTf-s
zPSvp}kis(`G`I9DM`CAB@ztpJe~rZnAygsbwiO#5zA-(`ei3|oM$J{P0IjYZMKCcx
zaDl*gE~jEc57!)G#qWGQy+t~@)oeK!dOjxjGP8C(05~&_TZ@G#HVS8mMR0sKT&}4=
zeMDZ%QSve5+k3ktc!Wcy@WsM}chW^HO<8Jf1n)PLw5We957*JzyG|2rLMA;zO7z+3
z0fzsEq=lLh3wbjDUZUq|W9cbz@YP2S5s|ptT9zwpUT_{SYE-X{KFiG;tpcng6?}W~
zhEE2Oxis1_9vr>Qo;fd~4cix8z-2cNXpwjbGG@`6I!qQ<?0ZJCzY@qrZEMM~ADkV|
zuVRaouno*>t{%=Td$seEDJTbSUicKBzXEoRjDbupgMWWS+B}2*aM0`h*Odt0l!g35
z(&^v&&^Oj71G7|Fsg3I^v?RDRc~4mJ59xW1Ku>AUB{E0>9rYpALSnRJGX0Q`W3T_t
zhIU(taz{GD9a2O5iuO~U_`X?}uXPMRw721u(8$azQb*odcTs!O1RWKN<=OvD-Jlws
ziEV<5t@M`}rPGmzu~ZA#^ysVdpPQds)u$VQn*r{NQ`&{+r+8p~e<R_fBaS1HaHgFN
zt#ue&=W{%VNUa~8B%8Dl_Tc^e2slQxkdjk151HTx<9WC0;oL4&2+DbZle^=*d(Vg?
zI(VzDcX7to#A*D%(2=eZ7cj!kTJ^2fDo%E+J4ZwLR<ZZd?vK^wr}+PevbPS3EBLxa
zao6AwT!Om<cXx;2?(V@Mz~B}<xDCPGb#My~g9dkZ&7I%(s@`{B)w}QBH-DX~Q#IAy
zXZP;id#|;2aPiK2?QnM}qRyM0RyiZH14p%sp_T{PPaVZ$d*8BSdq)wPT+X>N1_6fW
zxj(Ux7K)<8`Wz-_8P^2~TY6iR4VVW^SRxVkRIBT#xr`){yIH>)tas`@NN6eQtkTW0
z{A9Y$)!sFH+XH(EAlK9@BT4*T3{8vRTr<4c&vFqe4kzH~o=F)GrtotmW@f5cTQa=4
zRm~9X(0zN*`egiFT%nv~D&v~vaKP+EgM+KbX5o}I#&!;G3x3PUV3l&Zn$E$v-)1<I
zec64?OB6rYsd_mtEy5Nxca!$OylZ7k!BioMc=_{?2&sitr+Jz6XNUsBn-&2!1-;Iy
zUQTYLknuB(ol%BJWf2f8<U|$H?u<mu-UdvOp6ap`(br`WV2)8A>Mu(~hYmhEb?oA|
zXa`<)N=PRd$)02yYPIqIm+OH&a%g;&Ae)KuBa0KVTOd2m)$si*>i7v0R4PJa)pmtX
zKeb3w_7i^a=<1WNWL^fj!#9vL)jr!VEF}JfsK2~pf}`c&5lOd)CZP(`O%5+RT-&jn
z>{es1&vv9Y3D$eh+1`2!ojI5SH1y1V(BIST^hr~=I_nWOMFAx-V*AO<-Vb!UvHQ{z
zl+6}B-KVHEBxs^<@1S)O#IE~`WX)2Ac4c#!7<(KGwJ}fIKXiD^*1SvMdND})Rs8Yx
zZ?<ga-xs61E6;i*nhcafv>fcu?z+P2USw~DK@DpdpeF5CkZGlky8VO>p1n~UM1;vq
z0~wRfFnv)kSOCOLGNNa`wA!{9L;z-`;a3I^S}nb{{ka8-)DG+d-fd#r1)}0-i>6z8
z1$D4>c+=q2WyiNoIG)djWKa=P&`;LHGf~NNrSIi|0-np3M2!?o(X`4n!xK+_j)Qij
zPqh&Gc<*$b<vY76xYpe;Om(}yQ5KLqkDLqmECG6&c?CNTI><cm9;$yfe&C``m%yYM
zN0?MVK=N_t?+GPgF>BH_noXG6X30F&q)6s$#3ShLZ+5Puzag?}*FgG1d*o2fF;2La
zMssq&Gj~?9LbAHX!H6EKq%Imv*ZkupVn@?FfNuBRkdD<6cR~o=nmm+Drc<<u@*K%0
z`3N+eD-L#ZFE|m<fv}-c7>I~?=F@s`rBZ*TjF@AkB?s^wNwa?DDftCU3Hy}{CJ5Io
zQRJ$YU__bmjW#1znPn+kFHg^W!reFAlPEZs_1%qDIZN-heI^)%BmPDX#{kP<-e#aQ
zOG3y!ttYfA#JM?YpAPS702T38^X=rTkD}8qZ#q#2iuU;L*6s+A82LRW!U1_2j#d$w
zx{y~9n77AH1kekJ<rEu!q*@U_uB=(7S?X>nNpBWjIo^7IU#j*=CrAl%I8QMao%dU@
zvdmA!G*eyg#4n{0RA9V7!9Dd#UFG5qZ<JQgGZNQ-P#=rj$h?M+b+3FgZ*~yQD2)|*
zs){a{H<a+(c2j#D53GrQ*3TY?q_S;)2tJEU8yA^03t8yCSMVMj6W7_FM&&Wc!p8VR
zU?gn-26>j>F<Hv}z_uqj`}H6Y3e0KlL;;Z5j(-{h>bOqMRZ;D}ii#R#rc_Y%d`NYy
z&ek}r7Elc4u{}M%JxIw7?H`Fuei46trIXv_q~TSuG0;+%#9~5%dAaQtr~;@DE!^Uz
z!jo8TNK^&F8@gBI1(Ei}Jwsr%jG$;|niqJ)L28pj{Rj&hlzI`{rKz1%H8wrFw8d&p
z`PvmC*^?DRtrh-sTjEJk7@>GGj(<?c^x9XD%*hhNLHQe_ul_a4b&ou!?*}O(U0TMm
zCX@T&bh0)9RV>QQeR;BGUdfGdSpi38KS1AWessAZ?tD)05Xu96Y4NzO!Nl9i<H0Uc
z>`6ys!hANdOQ=U17vmIr(D$doW5z>;wzfO4?uLXGLOPyAubpu(w;9?L*4eI-0XjP1
zRyEYQ7SH<Wpaqg4K4yLxfwo8|7EfN;{(}a3MVMD=<|Pz1zpD9KEw@zqU0_y~kz%RY
zLV^)HMjJRkUFVvbE`zVWO?EbKC)u@z9}N!taYiC=7Jl||{ej1vQ#zHrWh}>PTbTvx
zOuKP_FgXe(I$}*JDYYDLyb5mD!If)}ivz-k{#B}6zs18i_c7G4-n4{<;4{)EO*M%R
z)WjT4<Ua5s*x%_vz>Ub61X;^*zIj)(XV`3)eFf*=&itMgaBni7OX^-_mVg|e<XL4>
zSokB*|Ll14(n)|`(4qi9J}6>P7<Hp`=Z=60?--qLw(ru*7QGhV{`7sMyCkY`L|4G&
zQhCdP!Oeu8PF(MO{HbMK!wMArvK;~?6ie+2Z2sUKFqV;mkw8WATawDNl*S(4!s<O4
zhG+fPELFU7C&oXI$|?<+3EF(~XPb*KlSJt^0&9b(E{j*06?GoWSIvMoq#K@);q6xm
zo?Ib^Ld_}fUFzxN;~F<7Cx;~^$@s}lnnoJXbP8>JZWP~Qi+lNCy3AL%9F;)7(^9Fd
zZ2m&`povCQYw~^Lrb$FD=bv&AQ8b1!KO#I5??hL!Ek{pa78ti<-&smWoj57h?2p1Z
zd9D3`uPZsCXojzUs{Zf$KqlU_>{{KqT3zs57x3;sggX-%Vjb$nPb%~(Iyc7};v%0{
zwWya%5h~Bd=~>`_^Za!Lz*kY6FSJm8scPPiZf*+TwTbdhL8K~3z5Q6$>b_Pv>-Vcr
zg(~YFxy?>+<fLMnbu@|0;y|G_!ISm{^lb%?EPl_gN<`|W6sGq1vjkd`r>=)cbbl;I
zM{oPKurcDNs=2SIPh_2RzJ=~<4;Wjf4#7_j7%P!zHt|}4`J#CvU)`uKVQhqAQ9ehs
zJL*}ZW&Co^NQtNiv$b?$6HDM3|E(AJz{6~E^B0%gPqn5K`jb_Zt=gV+gwArq>g>Ig
zNUhd1;@xh*xW$#i9E_fMj~32pBj&90P$fbs(Wd^>M7sN2Z7OTw`^>uwVr&jP=O5%{
z;E`-{6`Os3Yz%LRvCaoXcAaZfpQtTeF&6sXQGj@?OB;v&wq?mD5vv`tzop;PA=rUI
z>MUwA{Oj-4=e4=aiaCKv$Z|_-*0v>6Q8f6x^W*QfGzry2)_%|%<7|bbgj#Oc_qE*u
z-*);8EZl46vXm|})W_f1^h^*C|3TSx4peV(+g6`a-WCy8d83?4uJ7Y@BIdI(W;9$i
zoMuqIXFCs>H1a>kIFAltLd!hQoUOaOvVBNoG`IySSsd!M<Y2s}y2P9E<t$*Qy4z!0
zEl)11`g*TMkcQiV1M>{L3dJ0wAl&F7<$~Tc;XTKrrwDkj(fnO`$5`v0Uq}0}fR*oa
z6Ol^ECCLe);>DVR!&x)1E*aNAzL2j;8?`~XL3kp`96P)%v6HjuKAZb}lahfCFbhIV
zS5<(|6F;q+Ymev^qP~a-u72cj1SADAz^%~)tQLsDB;!c_Oip<h_BK|V4+TJD9S9K!
zyyR^YK;)Yoc}dAQSgB;-$Z?x7&SZ+HJ&Dm>>a|{t`u_Y}3lG)Yh3M8$52_Gzpjfso
z=Hv=-4ji(JVXjvZz4&^)n$&Dxe=;l8H+R5tXuS4ybfoj;{xU2Oc@OTM;5{D-M=gBv
zz@1m5LdJqu+|qO$h<R1QPg6KJ-WStzOtIY|@ILm}AU*kfy~3w>3sF};*x51Sgq?EQ
z^OmO?j97gjleja!gr(jf<YVp7<jw?yhw&fiecZQ)8<m8w((u-~BAa{*my9s^2Q_j*
z8osev+pzifwQ8V#X4^)MgTRFDrV7)hFEQ86f3h1t>g0_65&l~uBQC-yKiiuDUuNU>
z0Py{ok%m50Z=;#!B|C+_wB?4!-@UDyOByaVO7j!Y)mQ7_$#Ia*SKld^wHcP)j%%7&
z(^R@)bu)L2Slnry{}LhyyX%!kM_*vwx<t?nK{vu=-f#LgZRC(FecDne;#C&kbsVug
z`ld@Z#f6HAs;@d6aZ_Vv;p86<8?K?+NGVcu2Ly5!MUY9V?8c153QG)G%BW%qXpw-3
zxm%`XRo%!)a5xX5FsZB0y)?XPO-F(~@;`EP>nwWP|NMheTK-=?C|9m<Y^|67gDP7*
zBfPxO{0B8}|A6N6$N)L`n*9+3Uw{6Cx?AlICw(6eesMDHPx#muedjF>8)l0|W`8Oy
zO6Z}b-Vq)~CE-PI<NmTEz<yK3W=AK$<H-4IkSy4$dOU3~`U}b7Buk(>`;#Z|ZvvMq
z&s&cHGL&I1;<waKl@25<3pRJoP00#38T=%_9D`o8TuTIKKdfKTvaIx0Y(Wvd4&%i+
zzEf!`>JJ^djnItpIF?Ww8HI(P?e)`n(EO5^ntQ9rBP8!<U(7}h*M+A$+3K=;-52d!
zCY+8XHw@Zo%(cf?V+Kr32Rgfac8)Lpv<rijc)$*ezZXYmOGr%jL=ZdqH#$S(7y{iH
z4QCc$HBgHa!91{i&lFn9T8F4}3*1mX#4vh+T+Sftv9bYZe5#!=U^@!5(0kx^&HQHt
z2aLk9cvY$e_^7sbRD!cA+1L5t)h5r%*D-&#Mw_YbJ~5YNir!tl{F#sO^w)42#4^pS
z;Ab7aJISW2Wk(T1g`ny9C*l--D(?g>ORt$qRP2ob^ZovD+UP{!EgpDYGVX`!=gH;k
z!lTXREDx(*0zvJeK<4VSSemeXKis!U%m_W%3N@mjKNA*haWLY|=T{XR$V3k7`z`)~
zInT3J`9iY14=;YG?q=%ZsT#`9Ntoyl53Tp%S3r^Ocgi>)S)<l>J)e$`LKjzW^ir?x
zZxP0!#nsS~j>4jz5csn2NVM@|PuH1~7(BEr1xr&<kyi`Is2JaNjFbue-JE=j?C_51
zU03wKW-UF$&S?M2cFED56LyX}77MC;=A$ErHL8B0jTx}cfenxn^?4Ql5MIX@2!LB#
zF?fuU!3!A?kCSUvPCKVc@{2vyvr3lEqv-Xk4H&M1A0<B1#X-gjEBRdF1uT)1G;>3D
z?D@21$3QvNnH=ASQujJBcNYUJ#L~k!v=7!7Wdxl9hR7+x+x&CAJs-c=2~Ua57`|>_
zb{#EtMpo-w;1!iM%-}hn35)tX&%V2BO_u1K4aLT*ZsB_J7H++xKtyK$eB5n4)C|C)
z5?j$b+TRBUu9+0;1<g%~kj<LEeN24Zo3r1V(WPPn;z|Hsi0xs+6QQ{_i3T2;OLcmq
zZZpw^qSy=M)b-`kFP0D*xyeJIle!BU;OK|^xWSX2-&XHx@DhZb-}h@OPV_@{e_c?u
zgLL)+(e*Lvq-D*%WvQ^vhw3UZ>a?s=0&*Aq2W7udpy!`BQ+p4=<Xl38+3nA*(3tHO
z3hN<p-^XK%KR(7%c+3Pq{mwm@`dIH5_lo=;Xa}nV;3(?>otWQv@M*yFRdF_gm2J&D
z7CVA6>1Z}*ot%YHhzl`!-vvKQmP*(biW^qt*1cxd)h$5aX5T2I>Qn2l^7g}~*ImPw
zwKjVH`j>d1Q?o&b-#O`M7wq=Sqy3k8(?68?xtMM*cpsJd@5jC8#=G=h_2rsGkYPQT
zYz8HJQ=BXDKH!lpWBq+Ed<-4{P$WqME=)OYy#sdi67uc7vsbb5Va9@9m0bEE>tXpa
z*V&k4(U5SOO6{D(>F2%!6SFFm%VIwyqvJyqA3Apr4qoVgZ+SPr4@_U>%@1DQShLA+
zJ-aPCl!!nfvADvFAYWwBc_jVKm-2V_*2Uw$2X;!~W?e2xR9|3Aj1c;mU;3Wf{?q#x
zYCl6$%h5-$$OR%P9fINMV0>}m-h>{S)>k0zz<vm+ESu!%dg>=;pJ1=54c2Z(R>8?A
zp6Lu>Oo7xi3y}`hcyE_``ktV@*Pa}|#||Iaw$s*cA}6bm$4oWi8PbLS3}~VH;`;b5
z)2?UN!9#ttfu89?RHAp$;~!Kv-+SezrLJMMN<4`k1P}r%_S&UG%xq2U$P5aTW^}-d
zN<{|bpwsWh$K+@DG<M23Pv`iN0R!x2Vg_~!hb0>OmNlQk_w33y<f*zx8`5B}xQ(sT
zeufukjvDKjO&5nB70Zitkh0W67_k=U*PJZ(2%Vxzxa6=GfJfdMqfG;N@*vNe+4Cq_
zcC&cE!2$<iI)AoL@1+iAQz;xB#eqrpf`9m?@PAM$-$Dx4yV*hldJVaUC%zA>xM>W*
zw4!3G57yI5f9@VR(tW83ek_BixcHxi4(pW5#I1b%XFf9`mv_tXsn}5?1#{}j|DgQ*
zf{ZSv&xtw(oc6vKUYAQS(t#dQ`ePy`O_Am$(BWa9^95|Q2rTp?4L4Z6dn+EwyAQF&
zGF-Jv-d5aRX5|mEV*V%B`g{8ylt<_C*0+0mYUNf4Aa@<(gJM5Yf`7kqQ|3$Vu><BV
z9$^FY`tijGgdX3p*h0*m2Q7OqSvp0H5GN-vvxm-IU-_F0${>wn+-bVjK3lTH?x!F+
zmzE1p&8mUo_a#vr&U&?j!EbfzdR?43PcLf3|Bt=*8YQ;Nq{D<0*)MX5BOs$v%+Y-0
z-D@2j6!l>bIc2>~9-o2_O3sa^g7n@*-^Inkpb=HQUSuO4YDR`)-DLPG|3M*&PV|B|
ziur7myAriTxR0dGIMjA2_5V6lyoulNRH}&YD6^DDL_M8xP)x3mRT(!<UGqfDqelIM
zS|dT2-{{%!jxRQ=ysLKjMhd~!I+-F-EZdrqBS$-ZCEQS^HPyMP#xS~FZ#J;KL}{6q
zHTOjvPwZ^|76Q&u-&f_fWgXtsq9Le1)bD249Q7<r#rtv}zhj{GRpEt1ZN}>JZ+U!f
z=1Hjg+LELTTCwU~8nkiHyxAOJOF_NKV{lf1`>CSPF>LIopRQfuByrv9AN2M^+`#|I
z3IhMwc{`Idvrk10VrmEd4jA&zu-*}5`?L}u@p0;DcEJ1BUzG%Wo`cQ-`<qnjt+M{r
znrsoU7Up?feoL0OpJt>_XvkhqPMpmJH#e|8JD#7O`-UN6h|^+Bzpg+3=j{}3*4*`V
zFmsG#b@_m0=FD093qDow(<ufE9P9&u?TRg#SJ2<f7!r(T`~SeSJRfgBxW_4$Xife&
zm_f)!vKa!PZAws}9^dOo{z;VS#kXpGJLwFkmT!P<x+uo^>81*mD8mAKWjY4SsU$=9
z`!_}iToF?0QP`Zli>Xdc=~8wVVUjDwVsOYSPaj*CA4>Hn&T%D?t5#zwQJ`_?)$lv}
zB(pzLlV_6*+)iM+SXwUjC-G?JbujocTYoj_sEARpfW5B<UO#{xcFCBFH}4x=HaM1h
zZBG#sV)57VKu-FqV{qs4-+tA^Yt<+x@?43_>>75_<aa)YQ7O1BVPdd_9ILlugU~O&
z?XzVjnwB20y>P)Vp{Ov;I)Pv9sv{Dz*Zsc>FFSh2K&rp7!GDI{-bbvxe{JOOS}t+z
zs*2tMIeY_@P@|(SAePlqaV<-~;bn@K7||`v$W}dQZQwdqDtqttadgq__xSc;VEc$)
z>0kJgVe-BE<L62hXQ$LWyxGjL*oxnrYodVNA;}28MBxNz=(btPilfk{(Q7`J)IUCb
zDM)JdhowACM2$+giex9V3#7kh{b&8*Y8S?Vh@`A1`Tbnh!YGhs%0;Akm8@aW1DPi^
zNJSH?P%lA=S6PT1y4&A40~5iF`J0I`IjW=kc**Yr=dg!@>m4?nLX31;LiaU+4WyF!
zPa%ot2tS2Kjx^a`_&#Mtnnlwjw2TXH{cnu%BcVNLq#s|HFbGW=_Ci!4c)4xsAJp<c
zDAUKUXaOt8=~8?KkVvzNJ88%Dz!zYZbofN9!ccG0cGto9hUoeD{qg&G%g}{EoBisU
zpir-V%Vx9l)!`<00B?6wF#&FX5wrL*Pm3abG^=t~Q#XyfQhzEH`NM2Z)E$$2SL+-E
z8X?qKd6(Gr%24$7J@1rVO+P-QINKtZATEz+N5Eh#6xdpTm#nKI{r#;)j*j!)prk8Z
zYRABj2Tsic10u6iden3fFj|Vr@>4ht5=T~IEE|F2lQS}fdJH(QGu#4r?~!inHPvgR
z)cn>on}^e=*2wq+O-mmM(SoQO-B6=JJeeM(gnq<lJqsZ3n$N1xjp(ET6_0@s6LVew
z@seW+Yrj<7;z2ABaMq=0c8&U4JsXt?UP<~TYW26s*^diiS7I~5|Dfi=Fr6U@-^5qM
zj<e0VjK;lry`16v_ftK6d`UnuMuccIc-h4$#6Q;OyV|PYKy_o;bkEyszNjZg_pOFx
zm+zP}-f`m>qJXKZWBE_g`BZCM)}my)8RPD#%}rIujK3Pt1L9HXQ97VE>~?hNFDkFO
zDW%i)VWT4w#!5N?8g8F^SY+al)l{b46^Ufu5`kdBJi;aIxbAzi;50KT#&9l@*yHTe
z8!#YQ{cALAjS1dwhEiD0gFK9Q2hrz8bPLTdwz5G=6O!wHIi3=x23fzLEtySvn(a9>
zylSGawz&x*Omcgkly5v_SZ{Y~qOAmo-Rqu|PwJ4|x!~rOw-1%i$aoOEvI<2FheE;(
z#O~Fb%TCQEn(mL>^DBhSOXOHbraa&#rMfB^6;C={M{Y*tYx1SbI{CBM{-z)Y7d%Nl
zgYKbgd-XN&8jVmEpvZC6a1y_f26q3^;teT+X}KXLZ^~h@3w%75mnt$*Dzfwoyl9Mx
zLAV|r@&kQ&1~t7T3l0Hq8w7b)O~vyIj^3kHeTHk|hw|@CAv^fCYnlVBX&C^X>99V}
z3KFVxVG*rJA;p^GW{bPzu|W~)Hz2BAgCn~+O2Oo}{X`BI*5jH*ug#&-6=Kk3jIjg4
z4cRGl;-I%PrQ28QMhuH$OlqTy)lBC_Q1oA3v*L1Xk@K0a;|oW#&565WGu)UyIA1|#
zhl70d#Ww$-ei}zJE0Wom_(2XmIvCZjIfKo(W84nR%2}$^7hMmY7Y3%6C}g{}KDDP~
z+m}3oa2g{?rGsO4;2qQQSEXN3zZa}fDB~iHfA|<SUCg#OTEAo={J{7v`)!th@uob`
z?pyJ9;)Pf*el?Ef>H{V;3r1~4YZI(sEHGEqlxdNcYMT>PzCeV&1@ublLZ1JZBo1Dw
zEb8m>Rk9}bYXSRg6V5xPt6GIY&iu~?qq-wMPs+FTTu|}y{fLAFHbET@#G>VH<V{TD
zo4buyvpaR1)QRWliRo$4Ao<9o5sD{r;mrT<z2y8~QBizVFeLaalyo_^W;T0eC`3%e
z>KBpJyzCTgGJ*MU<BJZ?1eVAb>svS!?q6J9U`)&$UI+x0e<u;<#n^sCNX_un)M1q8
zg2X>qr&P&>PhKT<a9P%|fFl}JWb*M4STVs=1xci0uTQs)H!cc}+E1KTzk;n_O#a&2
zIWimoOS;W=SqA-lXacvu)_3aPH$Wl>ra}T0d)`XVSZhNwUe8(#Xy^GN&oYI81#*^@
zM#fLE-bakIG2X8RL)ZDxB609Y#kzJdP=k7F-K!26gi+HAdC)FyE4_=5lnSIefHJsU
zJS3Z<ntW5GLZ-wW$&c9geAZ`iO_~ERR3WMYWgdY>m#rSkNSa-De9<#)j~7)t|EKsD
zy|+~F(&3yMg}fLPmwz2t8w}nkdLpRb`SFzT9FriG$CE;b7C+J9?R5bwnTzQvJfiXs
z%J}|7em7B9K=a`MmxNJJhlD(8@T!9GL%HdUbc@Z)Vdf&iyfm4bDK})&kxi9YxG_QI
zeO+lf0Y(ni&hquHK{iGsMIzt~bc^RSb;;mG2DQF?s5w=Q-)+h+70SFx7JImnO_$0f
z%OtZ4TvpH?FF?<PbPjlFxx+3*|5*skz$O~KAZ3|+f`n?e+k+Uiy?ge!mT^p@h6&}p
zYe+sbSPTKw+ZTcaFOZ<`f_%FXCo&O_O!k?aanNiJBxjKnoHvOeiVbdy7~IaD<WGnb
ziidEA%sO>3zJ!1y6LPg)Th(@%Gz;TaAoPe%izeMhSI$4dB|;pSYogmyDe^*pPDpcB
zHB4z<XIlSbKBfOLAIEVoI3JZij6C0Qg-0JpdMWF=z0+y;Ok3xQU^bg0uTdgm%LxFs
z-q>aR<-MfalRA{U<}=);?Vl;{(64yVoJcO_9B1hl4K&Kf-`AzenG{li+B3H3YoiPH
zbt8dZ%bF82I#l0%m>r<O>*a%(8>-ijI3&4K8;XIY$7)1!f#>nr;~*u_A8RV57JwY^
za)OU7Lj04=cDC@^NlTC87VQ3oppIb~(#NX@a5h<j%eqzbzgMUgF9Nbc=g)U8|Hn(z
zBJEXQCJDJiRrQNo^TKK<dq3I-mt1E^-eF&jd_ZJ9I=PziVQCZU{%eW$<kc<X!x<LH
zAbdWf7+Ye}{+5s1vbD!`!*89M7&D{jZT5_y1X^Gp+*+ETrNQc5ZbhV@4hHkc9AHK8
zac#asusE}-foPxAg)9p(`M(-lT*x!48+_k(IaEb6+f5fi^_Y05#1R$nnRYVD2e-3`
zP`CxA-8^!d?It&#KsYnJJPxQRcDu40^^Mr&)kdY>O6#h-kyiUBO~0}62$Jy0cANIL
zgd|mv;oBqMPI<;2Nn_u&|3N)sUR{{i)$bIKzP<dP+fR$y&TtkA3GqA4dDnBNAj)d6
z<L<}Sq99k(7R<9MF3XMyo4PtgfWJWooE8ZoICk6GiOpP+hPMeW9bSx9)Xh#u@@t&f
z8-oT1N8IcPu6QEP*0nDo97bn5F*RJzO5KL-+h`xfUtZuebw_>-1H=HI5ih^l1KUTm
zwPRFC_G#%>N7nQYnNrUPKDUtKxzeQ3B|PwZZhO;w?8HpqmS2o*=7m0A`a*gBK;6lB
z<nwtDUXZ=uAp}^-U<=k-N!HuTyJ7|_L>aIfSUu?&mL&eS!@;;<LM3AqO8irJQzi3%
zd7S^P!x`*9XII3yP8CQZ^{XA|RBUt;&WLstp$zuwV812*{a|C)1Ao&}#|QBH9-}Ld
zXUscU#fo&{=Xffmb|~3?D0%O;E<DE&S~(-~*T3|j$!~UzyOwDCM;jRvskA&G;-@0f
zZL31IOx6uWI}iB%7yGV1Yh&=*r3qSt@LDuxv}%6l4RF`CUz5^po{wY8v<k@;<z<1{
z!fBlg#zSx5AC%3uQCWLkt+V-XVUip)!pClX@bBJ_?GMs39eg1}Kk|I=|GhCB-n>o!
ze?=;~kVu%i;hH6CknN&XhRovLc=DXDuSa$#v^|kcUGA8XIk}F0HB4}+fZpf(M~(1o
z5q(fe52f<txeo+=fQ4ACGFRzJnP9QwHiQ#nSDFb(XX2wEs5TW8b}bhArAa=qxn(0D
zd^~M>+_nk4j$7i1k|@l~+3F9JGl}=E0^?}~7FV0$!7+4x78V{chh*7;-$8GJPgTsm
zZ8xH#4V&6RpUg@)MtMF2*$Lldt#=4;A|2QdAjxDNa9~B`x#8D5SZiVdFU^Zr#YWeS
zibzKhitm;8ng>ixoqX6}-*nIp!J|PjCdW&y)kDr-6Y5h~4>IGT<a8-rNiQdH2=RvG
z`x*IfOfMHV7hm4H)x7`AY-k5*^9Kj%O1ta{<HdP<*j}e0TbijW!w;ey{Y0)0@=7@{
zcFw3S>O>djIjYk)Y8%)E49}XH(9{7xUHkS;c%hIgBx+=QiwEiM5i9e$t8K7V62qVG
z|Dfdl_I6=T_s)G~yM(>1y-PrS?Rz_Yrw;qL5*7Ggyv5_QG2b1%t^SzMJ67VXC+G!&
zLq>K4`LNo4ap^~K%tj?w@g0j={(+IFqmeiqjGrX_2Q_E}f#d+c{9XJ91?Yr`4XCO1
zLyj73Z?=zu{BYe5sxy;!aZ!ZYH|dq$m#`polc(7F;Cr|?;@)cl$QL+4e&Pw<VIBGh
zwSaR4NnZTF{aaI~<ef(|`v@jr<jYxi{K9iQqwNv{M3T}{&C_cySo^GI!4b!KZwW!*
z;}5XZGFh_NNUn|A`dhO>MqBHtWcO0j;}_FQua!JX*(`8Ora0=Thux#!lHK(@qwjj)
z9@G*hT&C1*(o@bo*LvDxYBivP3^&PY>ZGh#DHaIbu^R6UY<j%K3l*KY`Ulk}dh0xX
zuG7zZV(?2a`1&4F5vTX0s368}*tp0&eY|{WH9pL5Bij+hDqhM8i_Ol*1`O{g={bVi
zaa}M>1p5CL_m8A`dF;4&F<s2&E!S0H&|a(C_{NZ{UjSDAP-4_aOk>gs4apRlo8~Eo
zjuRO0?JgzrIizy&T{@n-wn{E_GD<sAMZD5&{*|RP9N?v%UQi#1qIb`eStZ6+7&o#o
zFV2EhNZ?Cb;wG>#DrUvJ3m6IqJxFn_QdnkNb&u6-MIrffHPp|T?uK3yFjMc3rx8tS
zX-w_$l<7!9l6QM{*n9lyisTe*N>x!z42Yx4FZil=sxO-SJ-2kHbiKrP<uP*SUGeE}
zji?$U)KA!neL5FP?T=3B58X}O<{U`=qNot!qzs@WzODRK^~kgMbBHxZbJw{tE&wl&
z7wU$_W5p~@Au_sOsOeD3KvGW@TfWOt<lbp?-hOa(^`<J(5v<(x4@&PWZ_yD4$(j!Y
z5x-)qW?}+*nQEON{ev0{=$u5aLhoE!;Z1ZS0BGhIW)JRs8B$?yQ#3ip8ASn^SqzkE
zFZRs)y>@Y@%2ip%QldFB;lzX^6pT6|e{ffkN@B=vkSh#|HCQ>VHnQcXIh!{?y1!m+
zm2ECfS}HR&CJjYMSv7h+k{9W<XEO)k%lwH-fEf@?6i~AMau-Vueqz>F$GDXiPY2ar
zRVf9Ra9Cjbb0W<*?$qgBgtMPccbbxoy;H>~A<kT;5r!bH@$$SFtr9j5_1Z-D7IWJw
z==p7Sx<Kk$TeFuNq62k$Xx;>MS5qsqY%S(uepdX>xTj{{&#UNIjr$(*7UN|EkfEko
z220jT&D}V?5iPwfeNpMC@pHgdbu5Q2)AhMcxusx<&-RBSCBHuH!-hpUJOJJaAGV`E
zl6%MU>GzGIQ&GVi6>HO>hw%;4neG<Lw>87(@~`%O{%p;FJceTP5+J;u-?v`rvO%*>
zW0mR6cl5pKmIF<NbK})vg&Wgl8ed<Vzgoun=-x|Ij=D!%mgXFod9ptbMB_~bRU!Ir
zksO&>H<K%V$y6BJ_!BMzozzVn!tD@uNp8pf6Un1+96|G@b{0^mdY5RgOcrbr#R>b^
z4#B~kiENHoyy~EdaM1wvW3ECwDdp!nRo|^v$uBwoL2VetGlvCEJHsHiR-2m1yESr$
zoswBY0LC6;(Wta>N?><`!kU>M;xWktpvi#$7)-*_S30bzn$P*q^mtx6nqC57jEgQo
z{QiwiLG^(d7m~Yp+$rXk?ESaG@Md+h+ZLnQsg)cDs@>^?2ZjwbE}m0{7w9r6P~a_*
z4!i1Z|J=G>soFh<MsnUyRFLFi8^~;D=#QwanZ?$i1=1YU?hd*n<ypc)j5v*lGYulQ
zvX|MB139>jbzyL9^{dG8zzA-abEAlk<Q4Er&*koSKc=0SSt66m9zX6{X6>Bs-=W>Y
zA+zfzU3pIFl7h5*2hW<7SoAOEf7!3S^U(MDD<<Iz4(87mG|U8D8eB7p+>*EJGnH|^
zJJ$3Pk32Y&!$OH3%h?R#w_K1>AP(35INzM;Gn?jQ7U4tU^Ueet`FT9++M4-)fetei
z@~B}VGd`!W+>^e!shN5Rnt3P7XqaZD|DxX*e_Th^`2{Cj&tJ9fdj9tim#c~p(Q++F
z;p~ZBwD=F3t+}8qrcfbL<W~}&%cWi!CCMi8rh2_~A<2YO>V0#Q@%vR@FO`{OO+2_t
zrbA4U4H=JxWm{0BXz`O0v3D7A>A*p9NapADJCkqy+gG4Ff4mUq#lEVQD1GUJ&muS$
zr=>x0HRLF5WA&uPKa}sBur%q>A&X+69MNYksMv7bmN`k7`RISNdK{cM-HFq{-bS_r
z8u!;h-b(aL%1QM)*pyg2bG7KSX)4MmA;a@&<n`I#-JjI8gp)_R<hDmhx3Ewf&t&$n
zNjBz(ZkG)5%oO6*L|!8zidHd&-l?+um<Ob&kKR0CF8Px;Pow|9$=QZfs!`NPC8=Rb
z46*f@yd8Y>nP@F}l9n`ec<h_80)UtTGxjQJStti+NVnY>+n0Iy6?erKmks2Ez#TbV
zMoi6@3{Yoa5#Y47CHVJN>1jjo?=Po%d?4BA`0J!BQ!*Na!3E*k6{BnuY;Y#>JFxoa
zq^HT`e5c&mh4ZAmD9+2H`NO=ao;ZIGVg56No<NiaO0GDra>SH$tgb-=$^Nv{Y`_!@
zI$+N~y;A!>pnt3K0r4*}BCYcZjsh~b=Ej4*_hb@9!8QXzDaFi*KKqO9TK2C^n<o!D
z%|@&;PU7`d&FQVm-E3VDCB<f}96$b_`p%q~ssdDfxyoJbOCQpqSrK~#^XcK|8h=n-
z;?IC$?We(v246dJmcBJxRsDlfZ9{$FN>#d{Y9vGtxh)@J?4*!b8fWD<>d@?vbv#c$
zSbd(k#q&SF7x0ULi7<5U4T6jk(pMfBR3EI#(vf0kS|1l^AN-1<g9eKsyACVmRcutj
zy;dHkp2>tNCz@F^vgwR}4QBCw{s(m!7`-M7CqwedCF+ahqv&{<&S07JsF~~6+UjnG
zx^a&m=AjFetw|OAO59-_V~#BIr7|~y3RI@Er9Z7tHoSoK@^l7qRpK;$R=f~}r*UUY
z^$Vj<()2qg_O?Eq^*IrS9Aw^L0J$b5K?0{ykE8;|wOQ<CPv-TWz*9R5^3$xor>jC5
z1pbvgC#FDhYOgD6hwWF`=;$erTU_0b&;2AdmCJvqTfaZRqKv!Dl-853b~Z5zJ)@;L
z`Z4KAr!iQ&0h1y&ENzxt+~V*u_vw+Jxf?V0TeUI?_tn)qG0fJrdxeJx9j^9dJ^C){
zy#UHGQs4Nq7ITUoDe@PP@jSEj*G-}G4vc61*x7Lwclc-HYJHcvDp_G^JyHi2Na4VN
z#R~E{8<y1d;o0lDUCO4D_c!Fevv<_pQ8g?n1OT{*!*m7}G`>C|@^(A-+NX2Y5Q?%b
zl%yR@CIcrN!c?Ld7RVVBF%op-*-s)oja<qnHemIl@#!b(>uzgiM3qNaO=S~AWOt3S
zGFHqWe8)U*HmA=-gpTq(pKnAx-hfzroH^k@LFy11Gn43Mnw!Pnh8$Gl*eIlUB2a!>
zvu$=8k_<0ji(0Qshq&MZ!lpRlFgm=7PFg1WOq9J1$)x<FEj|s;*7G`hSJQ8+IS{~l
z@^q#U`6On`P5T7&`j;~fG>){#?8Xr|+)gc!r{SYk2x!!q5-Ine@V>J9mHFXXS)s5z
zWe0qLgWTN~j=r}l&Sxb^>E#;fLz#NE8Z69RSlF=ytHv|WwwU@7DFd9+iF54jm+^Tz
z3}2@_?3TyN<t=U1Sazq0rtY_ais8BYW0|e6unw)1>bua}o;#fw7_w|eSpiKvL5YQz
z->MrH?Jafi&D`|8dcQSu!D$TFve_zVb4LUys}Cnr$PI<O%Oye6tY|evtDjj)WUmhL
z72e~rUx2M_mpQH}W+4M&mD0K?vl92F@GME*VuO!t?-4OR%!{mla<TE>#}6vd)3x3w
zq<4pyes3}1*hCL{_BFIyQ0_dj|MwjC=$r%PTD{P`02*1)@D@9Rg;tzI&*zpZY)+;A
z-Z~=PxA*;sTRoHM`cDGR4Log$S5;V(*C#=xCG%6+bt}>2;I!uHYL8`w+Y9sNRHTe~
zewSxyg<-nXa~HKn>o+D;noyEs%-JFcouKnONX|Nf#@W(DWm|2Py{#C=g-WQw9%^5&
zKhtc!SP3G>LhNVEEH1WewCNPYEe)e1POczwwj?5JR}}V!w!{nZhHA3JVA&HF$^e@N
zfp8pIAWsC*s@R)B6yuNEmX+yO>{xjjE5icV@xpj>J8D(*{<pw|WSZ+H4b%!eu*qWe
z-jt-vzd<NQENCbg$PXG84i*|38VU*u8VZ||LtGup%#9*6xv;+fihcHaTTJcWDijjr
zJ+vrg)Sno$)a|V>uIT=~v|mpr+)<l`085P%7ZHb}=LKkdRLn3l)H<A80C6w8p^*V@
zbNv$5FclG1NoVnb;mIqadsc)^k%vTV+sp)Ok53dAQF`aiiLUPXOMiv*N$!G*l88n1
z*tWW%;+M;jxToI~zOS-VtD{8a%d_3EY(G@Xk&D)J*Jlr|VoAaIneTW+#*A7(S}r9C
z-;P3i`*nJ|o__k@=(b_7X{j;FElZGV_i`v<PBfhSJpC1?2BvTtspfch$Cv%fC3RP+
zE32vP1?$Z1<6pEgXw&C8vbzJFggGSUibwqM!E=MPIK2e5M0M^ypCOu4Yv+<?t>}RS
zZG*MkGL80A;T!feyTcO~Ft3IazfaabzVN}^g}@|Qe-)0EZF}7Ny|Si}vxbSP&6HK=
zFXTqzU|=s8>(qGn*O!Q3z51H8?5xG((f3V}g5&yiMB<FSNrt=eCgnKhbCGk*ayyt&
z_ft8JvA~bVokKDtU-N;^^%8$+I(yxDubm&Vzm#acw;`OaV-eX#tw(^I)K(ua7|<Dj
zQLULaboD;W%^2T@%sr=EN8bkeejqy5oK<b=1r9E@fzr032T0f=&BWd$MHiVHW{yXS
z)drzIQ*qV}!ZVY1L0vKbbslLC46|OcX3WeZ76|0rmhYaI>cc2)^s`yTEy$BQ59d9{
zX5fDfP>K(!VjAiR(pVkqVjnKWha^bfsm-GdN?)Wd?1-(>9>VN`@!R8cdF5#hio8x)
zRo6N9GSS_N&r~#)N_sPYQh-P6JI8WLzlb?&dVbH0DK|_|x95jVsUz>&B7f<-$;mnD
zog9M2_?8{ka(F@)t<gms>yPSi;UOp?i{HNaV_FugJrFxa1b#5ge4$bVUDeczpEemq
zw|krt_gRMKahHfz?|sLY$ZNO|LkL|->BP{9ZjC<e<Mm8o4%HB+!BXL@mVV+i#e5$q
z2z0o}GH6@+`IpvO9dXhA9Z8AgpsId3l4(GO-Fvvy9pQq(d%&r}l<|~{_w|?9ej$*e
z95oAN@KD$IDI9^9r{%^5`zC79ba&>eP6}H^MW0f|d*A?Zz&W$>!sG`bu38vX({q5+
za5a>Fn-8>fOrvkiP}~}RQjB%XSB4<@;V&Xg_+Yg;175Ddighj?fbmL_%Sv?Zrrf};
z2S6`I$T4bGjR=?NZ_t;G={svEc$f-E8el7XLNLH$Y`2Q=t70h2dMYY3s3PlxtF{Q7
zUwoi#i-!plWdrQ+P%sKmyjL>I&f%*rm07K7aNl7`CnekkqDGDLaQ)6A%iPvo|AYFJ
zwsZRr%FBlovR_)vFGuD2_^&m3I^y;p6Ig%~0$;BJ2uB7C`;p42>5reF(U5JMR{S$y
z*TwzI4}^rSR=I4aWN1rt+Y_o(@g~_eDcFBjaWPaF*H-AoY@3;7gj@*;puzX~Cl(hR
z#k3G8+E1=%N{p_Z)0-O325L7mGOq2WX3uNZvyzC&-ST+2!7Ot(UjULb(EmZLl1|A1
zw@}#`pxTzlaSeAqs1SvZyWg4I9*)^NsEX^|5Wd|ja-1OQZvi@mG#1f~9_l$lHkd#M
zc#j*rZ!ck{c&WxW5h}yud>7UcW$_Kk=*v2$c8sHrq0xV0XQqraie74VsJYEK)&}V7
zdk*OLRTunzsWy0<6wyq?7+7mDM>+s57~NOX>u<Ma^B7Y-6!yB{(~omRmx<P2Q;~g)
zu}-5MLLgP0TM^oqr=GdW1V){`RcD1(Xbc+<gFFh{<vB^M<pOCRE1jDv1-*6jl#8T&
zIfZqWl6JJU{E!$xM3QxxjfI9S)zSflUn@QP4r4I?4{679Q>@)fmh%2x*<*DbfP(<+
zT}WNmwb&{B3IDq5Bb%Z{1M31d)2g&aS2H`i2I|~9PCDDY>utShsSV!)WhGDgIJ<&g
zqw*$=$jjtsI6Ov+160Kmggny(DOF9<tek4qt_me4haw|A+*?vwH>>-dE^<wHuXfEg
zn4|E&iIE(WR^mjy(Y_(#E9GW`HEsFzP!G$au$iVLqV6sk;E_;Gz{mhaTOm=`1ziN6
z`mOIobOQem*tq<q(k^v?0~bFx!yDjocoZ$%=m#j|8!=o%#dNQ4Gy~K<z;kn5bn}f&
z2nKnw+CihY+3$cqs*ayLvrpCRil4os-z)n94M(c(Xt>k{0E0lH7DSR+5M#Nlb4y<E
zRf?~b&AOsoiBHeTMWccK%dW)Q1!w7<bRgk{5s77UP`$W)!iEBU*>E0kq}A&I_AAv;
zr!-nBbS+|d+pkcnKX%mpgl>P6;D+yPTn0a7$zpxC0j5BILp^VQgz7oLL6j94HM2^u
zCCO)us|b=HqgN;@FUU`*7LV|(5>JNxDYxJ1I;ln%icYHdEAQA?FemLN{oxLjmy!IY
zZsDwQfMKDMc+%zbFO;CGtk(0`S2v6K9oWke=&lJIYSx;MTh)keyxKucM{(t=cZySA
zJUcC=)pAkjO8>!w70v0)bWNv0NEQ}a&#{qs0RCukYT~B_h-NP|1A|YNEz8j`EUit#
z1q$7kJs+YVI@*4*(C)~`><Sm*)f}==WzNCBn4=f4juL$gTZ}&#Q$T+tFQ?DQ-JH1N
zDrS0Fk&XpTGAH)L$K6A9vs$xj{_uBAC1cXIQq46`tNk@keGu80>15AP0{@Ur>k#nd
zL-=H|J^s}~pQP2$W^l5Z6?>t&)nz{JI|`fWbdc>WeH?IGH6(2w&v?i81WIiJ;Vgdx
z<TJ0xGbkt>SmvIbxI?{yxm63#o4Feg+6!+%I?Ok5lJSaT)p@-j$(2-i-qDp=D(TsL
zt7KQF+JqVsA8TmDm$U?@Idyt3g6z%lRGSWbR$KC1w(z#E*B@1Xhp?_7))H{h%6V#X
z-Z7q)--kjuOR5%3U!$dnvWUBS5NIhm(;73ss-D08_#LXi18aoGqJhqG<`VQqBILbq
zxJf++Itw6L_kzu8k4Z>jS8~|ZtG;FtQg;SsPsew5#Lz=Edh{3#!(jZifkMQ7>4=Je
z>4h6A=vrq^JEgkxfnp)hBuwqME25u3SsPrIpuPzSgY)~WG$ia~796dhKoTDQ>1DFF
zrKOvP<w4^7cUrFp4?y=fe9*kQ*nJyWf=5R$L9l}UL|NcRtO6k5oSxH>pMu2!2ar{r
zX@)A&r@w&X{-jEfSa2;@yL!93(0LBCD_z!14@3g?bTLhLX{k0zZ3m;T8}y=CI98~~
zkw=^UwCrM7@3p<!7ih~!X?PgH%+8d{Vr>tdV8$=rIKA<;O&Ty#QGa2BKaT#3S7d6n
z#f2^Txb#=j$tT#Z$x3JS1cS8Cf3hhcA5m_7ZQ;Pe0jr0}h&JTFe%>&l7)$X}KbjWZ
zF-r5WNpus2@)MB?%8pa)*hqf6q>+MfoEE`v{H@3t`PltQZ<KE&!a@jAlAW7XXOs`G
zBO_QLET^zh2k^|zt<C{f-MB|o6SihEjK3|m!AZ~AwqnYdebMFu*4ji?_BO_fOxqAF
zuBsaH+x!(5k6QuHLmJM2FVQ9V7mhD))%U+?FDf?LtV{e_Z++kUC!Qo#21Y7=P}_^+
zh(VuxQuv%}Zi#4RmY(tvbNiF=Gyvqh&XuhNdT!be18eJb!*GFD9I{bBf6d^p*w$$o
zwx|XEj-}g{l=LoXr#FTZ44GtSd^4=+e>>3q<F?!_)*6#}fD~z{di#~7=kIb9yCaX4
z=mp-bS7M5Lqce5YDopqAaXeyK8bQcT-snVl%a8ri0I4Lxc+q1-&MXea40fN;@l|%O
zF6&b%%dq7O<%;<vHF!zwnjPpk$*f#a#<xETN0f-|DFx#BNnYyWbs$UEi5*nitWTpj
zXdd5c%*5SFVNNfJxecL*@mR6+)mOxzY7&FbB!4h5ZOt3AH;`1W1GRO?{-9Z8X%xxO
z1Q0K_N$WS^_pAsS<P+^vIYo_`oS-1w_iQmF7<<zMaBU8XGpL~)Gr=N}PyT**j;CzK
z++jHS-BZA+J$sc^f<v)MsZ!p&wF$fY0|-sO#qGw3M4@7oXUr4{w}07eUVMg2!b%0j
z(f^pK75SUsc2`c>cMhFw$I0x(hS2M;8WYB$t5B4E_--#=N$ogebmzffXGt0+{@MZU
zo{^Zu-vlPsFYJ7s5>P8Y>RlTFu(7wSwBg&VvS+%n*L8YUeZoIbIv;nc91?i4@4x<}
zt4j<ABU@_2SO0xg#67QM1ADZ(ZiTsC7g)v6Hbe?SDyQy4CMz~@By@cw5!`cme_;QJ
zif<R1J_F!zPuHJg;J;xUb`R*rByt70WXVaeUr`p!DE=DOs6bE`qplC(I3Q;A80{$A
zM-d>7H`3Ij(%7rL`#exO$cuGbA(`2P$uwbr{Y>lU@LFnFpuUJ}*fec=J;#>5z^nXm
zD+kr=aLY8#pBN%<e`--1J;E}!c+GTl9*GomFxXZLpvCT>KIkd|CW+_76my`y^pwd@
zy4O{MPV+lZ!e6jeV-mM=)YF0tt>UB4+XL2nYO&%B1ab%l>76Sw9fhMZ$ryqgDC|N4
z*dr}I1r?m2E~Be=pSx+GO3b#f)N7pipmo{`3d?wAyww<XYXS<xh@^1Aa6+VkQDSo&
zjT(DjABi}_xUSu20B{jqm473yHBl3-oYFJ4^?MNr&!1r1a{O68Aw_?^#sL+s4-+Sq
z)}IJ;hM*FJ&`vpsS1vYRxS>?Up+~jQB&ziN^wHGpee&S_Vfj;l2ZQoOLW3_Li=VaX
zThOM!mC`W5q_qKGg%&T^n0S2PgAq=dF-dMTFq1Zr=MIrKL{p#Qqto}>@da-g`g_td
zf~NK?GO7<#oG?u(2`Af*)~fA?*z*oT@Bw+7*i;|EewM30@5`<`XuG)e<P=B7!ILR4
z*+PEg2O#Yy!8;y$Sl<_ZSf;*kn0c7f_Ne+w^ni`YZg$P$thfop#>O^#LSh}x3eCk%
zfr|KwA7}lmXR@e=)d5*%=vy24C0WjJ`&FDPz1RNPSI%{pm{qTewMdO}(gjD>#@c&K
zU!~fOLkqT#Ggur-++!JhS^O?&n|=|n@^XoLu!<^6MZ*nsq!nV7qaJ8x0T#@GJp`Ii
z^z;}2692pqto}A<BoNU<8e>2`Q;>Xn6CZ|1KpylD7s~jM=q`+8h$zxK3^6s1BNgh2
zBL;6%VAS8M6>%`GNnNa_Vk=DhE{Kb62=zlq_pdV})&i9CyF!r<fOSOT>j5~QEFbd>
zpjI%H<7qkREQUe`$63SUeRKh3XngU2h*(=N91p<n^_%c@15FVM!Rz9W+Wn$LZ8oZ{
zocvm0hx9~LNU`|dhlxwzjbHghxi3~h9u<P~t+X*GCdZya^G|p`oVq4C`J{K}fD6Fy
zI84;{Ntg{4&0^ue=m%UXtG=?cICp<P{0<Thx4KhP+FeSQZkVn{)qYH+?Y0{#^@;2V
zHt_dQ=aP|4fVA&oDg*Mz8hRF-ful$fYNUr#N0t_{;)zlJrYq4|fK&r~ylJ%}7B80C
zE=hEH^pkDS5t?|z6JDh8)!)<onDw@>MA`aVbg`0KL%_E8-2S?p%^^lIW=D6~Ej!7D
zQp!vDJAPqNP0L%?Q-wx>A7yM+l-3|N0*OcCKd44xmbMo10A|H;5$Gv<)Q;gw^9u^T
zaNRgi(f6Ootmcp1hM#3A62=3u_Z8YUjK3$QutTq<>rGf0>RVua@teUDf2+b%P<RVp
z@Nt9PBuA;%D`C5U?fVB6`a_#)h5lzxQyO(d#HXVtKwmVNtzu!yAw!m3$*MEQ_f_hr
z-C$#fC=HoYJ0qQy)Q%0Q-Et~W?g_Oo?$4;>B~Cvtawe<N8%g{5dEDuuBQu5bj~N;N
zR@A2~5*^rkb$=FAf@$}*xToG+4zCIPSG((9gxP~jOzPz`zZV2PE2eXsOnTT!+$jyH
zn7+2UL4T9V62(=|U$lCUhYp^b@bA~!cq5<}Al&|N=`-@`=rLDZkysl}DHq|@s#O{P
z(%|tmkPJWDd!i!f56nC(qyIpQwrWPZdYLVXKjBwRnBEiY>?QLWze!x~rmBFaKk?O4
z#N3Jq-fvP1Zj+Dnp7s@OdiWEzy+N?lvzsDBYH(2ef&1^~AN9Zb_m*dT%?7Fsjg)%p
ztb`+x=e{?vINF#f=J+%_4CkM9Zq|a3I*=8Qvf{@ytLlG^j7)y&`&_L;uY+NVpQYN)
zW!r^~pC~3iaR2S;>rJ2~W$FI_#Xvg0^Af(689!PAKRm#qhP-2<W>|jEq46Q8jKe3W
zK-)#V%*^7Mz9~x}TMWN3p1!?!Qa9oCJEYY}?r$+04(;v=(iT(<`1k(+nU>a6u1)WM
zfcUsPKO~|gxQ6MRdb~J2&tFAFh(RjUj*?+(e7|E78Buk=P+h+<Zd(qoPg2U&^4V;b
z6ckwK?V0AKJ>Q1FII7m1u`?C-5P|8J3&7F#MIhqKRlPy`81L*7=ypw%-AaO`F}L$7
ze{~vH2ufBUYa`NRDfzJA#wMovL`2SSGh(<+3*6IhIiCYrKOR_G$j~!if?h|S2W(@Q
z?hSL{jwdzDUdMBd<z32aDQH?2DBrEnKMBIdlBAtah=8=Zrcbm%#8`I18m<M(_lPJj
z+*teg=fZ6QxN&h@-E4j%0_s#8FJCd-;*bh}-9qY|l<&f3B}XROh!#0spyFE<!W!^+
zG4xPmMb=U^XQz%f!eiK!9lPcvuC}u31W`g^s=z3MEI;Rz-t(T&a2#IZ6mn+r&8{Zo
zn<PCqH7*pHZQRVx>lT5N9LO7CR`dukw{&s_uyF-rs_M#CH7-sHI(!&lmoD7g5am14
zx&39EltT%?>S36*XfB2&;;lirpk%cEbUHC87!Rtxp_eMM>I-xBj{NKk7+lJ+1D40^
zg5+1(7Tx=g$uZqrQ(&w#oO_fhb!njGiI7|QaW6}8!=fiTXRSMw)OtiKpTLs*V196h
zgY7CLuc;y)_Pw++u9=Ay{yj64v9@4Ws@8t&;67h(EORTuDqRnP?=!o=^A55f%kdpq
zm<M$#R-uWe1%)Vt>Hh$69OQ*4IeUo$@pCrZZ3yGsIz%QNgDn35b6=w)PjDl*RH}KV
z598)g)jAyi0JO<1Yj*Z}g7;_;4t-tt1<pg~IO?Tu;lRHZlPDeJEmLFX^zo#a>FoJI
zSoW&tuv+3V{SwJjAA(YJgiq-3C1w8rJAIw~3_-sm4$wj+iDWbs9R;%Tq*WNsyfKUc
zx?quzC?=zmInaHe9WlvoL~|;AYM70J?=5f9dw>MH7s^3=zPm%Kfm5FY8K8J>T{W_n
zkF=?X5E9Kc#0;6ZeWpayHZnBX+sQBLsLIR_8Tx)EW@b>Y2G~vry~-GCGqnlBFSz2`
z+fe1#*nSC0)`_`a;U(qpLO5K_McT8bsq8qEg+cHiC?+MxLzd=5pDYS#y+T=S0BtmS
zfpOiOyT8(5tqtJS;|!IzynXXG9~bWWhg+J$<y`QG)UEg?;&jS>pO|kbxO9+bdXcIy
zH_`crRnZpBC&bUkB(g3m@&5q78I^`R=t=Vz<UCd9cH(x&8F2!$SEvKAo0I5K=2S*#
zD!@HU#q2SaO`!FO>_$$@+xX8YiK!_kJ!QA1P<s`C4;Ho`@Qo}XOICfEdwP^VnZ3_@
zToR?!r$IP)jwf@mzj=-cv)gB(?hu&NpmABlo)RD;xG;LU%t69Rtz`v8ywiv&b~$2m
z2&fl4yeg!{O->$Xa=fD7!Nt4Q=CgpA-@@Wt*)v6Zcc+ce6O<02OQtL-%AOgZ-vY1O
z#*2#IyQpS*u>5%L6VnW3UBtFZxef2jFF<tO+hbHEZ$~`NRM&jL6%dPJC@?+3y~nt;
z_WGzX$v|6}eFXRC(<3W@{e%08>zH;RZlxxwWA<D=%@y3syWu`@H{{$qR(MOL5AO20
zri6@<f-c_iMdYcP7RIz8GPl8&hcpzNE?$bBkl~A2hss_HGi}+ILiu=nvjRNzL&5c4
zCmu+6bDvt&Cg%o+A@a?0KkzOf&qu{tL){Q?<xi5hLQB5?05bF|!-s?BPykS%Iy}^=
zedU{?{{YN6j9KBf=kCid6Lhm}07Y#2wp6H|QEnirg}4J>zd3^{(DZjNO5@ynK?I|O
z#AJY79yyF7Qw#})<jfMMng)*61B@&BZexONvW~zm{9Era6@$RX#3BUX>RQ?hUWtQj
zQLE_EddxUgjLg(d5DJIFzKqJNcfnlDtk&XJ^&&unp?C2wRg+A28oQ8VDrU5@tZ9ZC
zcFDENy~DQD_zL`3C75s))y`ML3A=+1^?gmNX4Lma9Csa^RI_&o+d_!9ZMfBP?@GV4
z)I2Rd8qqh1S_~4VyS9HatnqOr3SXHh7|%m92O+W{CdC1xrr|!Zv7f)Vr%2$pq6^Hu
z+K19(#bz|L(cL0)B)fq*cyL&~NZ4@k6?jt2j$_#akfKY<S+Rz)yT;<B9|+-;cEC6W
z+Zb4b41@5;w?dV7Wk+T7GrMEH7$S}yS}OWn!xPEa?+Dxsg%=&L!chfWQ7=)mP5%JY
z9&yL={{R-eT!0F-6Z$x6q4WvB+%D6pO8D>SsLX#+v7eY={{SWU7vT#lK=BttpVt01
zZyS`RC#Pii<PO-X;cwaYiNvW_<L~4jN56(H-R5E;7-t*`W0+_tyfHIyYMPu3eIej3
zP%x7-k?|@B4@2!1m$(QU2-fDX<lo9uQSMzYsSD6NvYfa(4=mQ%g6F&5E5$gB8;kPH
z%rG@NI*It$U~ZZSv@D=rBakN0^OSX9flN!mWX{N8FY{9iMqsw!U-f5l@kGUJFh$Ue
zwD)r0^>{0vQFms!o!6`Lw7H<WNA+e^jnJa}2XL`n&U2dJfF05t$LgB5sAx?)w0pOO
z!xL@$E)ZUVS>H|d+_BI*x1XOKGUdT5JcPyP{+%?;!fgk&jh1n3LyEdPaVlJK{F8Ea
zAH5I=^@XFus0K9Aq=(RW)9b_G@pu{SFMbo%_B--wx?ULTE<W_VE+KVj-XJsqXWzgC
zB7>Q><9-Hlf9ia)cm2Bm04K!9>Q<Krstt(JlU`Y2Ql)tSYjWH17WPLUO~uq+>6U?-
z{{S3+oFt70rdaGOba8UOM@Vno_Kru*eta?cQz7}D@_(db;UyyjZZ@n~_<%c8e^L|1
z=JX|rQMle(VKl77#8(>LY7eC(S5nNeOKigdirQNC<M)sYLa#UQMr^e$(wEnwKDR=J
zs;GN4)j$z}$gB5J3~3TS0`n5_oW~NZm+M2@4<@CfwSqX8N-oZ9VUUf9h7gIfF`Lii
ziM|NsNn%>3JxbY(wBY!6DLj|Wr=^S^7RL7#hjqle;0MXQ>)@HqOeesUhc{@?h$&pl
ziE0p|^<@Gj-3v;sykFu>6wI;^ZD*u>VQyU}ryfAb$7-L5rM{(X{h0T~i10nk!gi-u
zMExv@p9FBe5ku(Ufy2o;nSm?CTjLuItW7==vHGo1phd56w_1NOGy`4u@vqWiG62OI
zu4N1&l`O~mu-H)mb~*kbekr-0v)*GX0+B<r949ryzupuk66L<r8Mg5sZ!iFXpum5S
z2z?&m4;Fw8ciyY$`?<J7#eTWYRS5VSh?ZaGY*=6yh&^347Gr7G;kU|T4fJKV$b1f9
zRH6as{{SQO5VqBSS|+DCcJlq=M1iI7)OGzqY1=-^e+@^==Oq}vL3~Bl4jQJ=h-HHg
z*dYyWKMATOdy|GCI0foso-;AL#EE1v0|0M7r!!8VQ7x1?sJ&$|6!xggccp7@;1ccg
zwr|-jxUe%ozg3QN4SG{nOk(4V^puoh{kxgqqt(|Rc-jd7_Pz#d0Y#b*s6<5+SAL?f
zh+^u});+>r4bbc8=2amhP;?#-401QgtdMb6S`BoZvq$RyHd&UJ+Z}OIo&C{&y8fX9
z6`M3!-*Jf|$hpxH(nn*c&|3bd2&m7J6n;Es&G(jqeTpY<JQLLKs_y7$A<$GjSFa`}
z1V<VCD8#MLn0$CThl=uexHsYbC7M3urf^JpnX5LY{$gf*ag_8*p)bh!f5A}m^2?!1
zU0aKUJsb;>T`au_VyAyo4fEuLBAIXC{bCGAYgXXY$1w*TjK)F_FHHUAovs!bcK&KB
zkKtn!dY>6x?7tN&=&!D`;<-m^R9e8F-#%GnWmaNN=gTMd>d%MitvFXVscHe)lH=pl
zp@OkZz<WC}+wF%OL3N(J%WT||b$m=L9<p%_&$R0*DYclOKbTNYyqtVuW~ac(#@^c%
zDLJ`Ku2*E?RgIFLXz8jF^zTu*TX0)OukQdi5z)yeW^B58mJO}Ub&)OyeFS$<?kBI2
z13z*Ym3g~Cw9owTUo03wu_@Gllq>$2`|!IbQFf1WC4z35zd_?tT5@-X5I{{O#IQU9
z?C(9oD2E&;Fo8PLN8L-Bzuz*JhsdG&eIei_N^Ss$S!%1~$ucsOSs$5D@_D|gPA+kn
zc4p2W&Q*^g3H+vD70{F%qmI!KSn1Cb6@pdBSaGR?OwNzq4RzGMDP<tAdh^TrjIQ}#
z&=ULcbetQ$VHi)39B1fRlGl-_jgq_?_>Rv(KsY6KM8DtYJY7e@;DHE5$N`n=U~0y7
z{{UD*^bvV+nAZEp%H{do=lmI8Wllt3z*T(?rt#l|xk!1${^iU+Ll^;U9maz9E7*2p
zm3(*MfXaouZP^F0!qyr0!ztLaX@iUZ0C4!Q(Yk*Vh}7brOJRtY;Obqe2CgTENThYZ
zO|DuaGQJiO^tc$hGOOSvstQN;&BjDfr%$v5#S|W(>re&p?Wh0(fWSwL`yIPF?jB^;
z5293VKsM#-TJupey5EDet*n5ouW_Gf<LKN8wa8@`yI&kc2w=Z_Con<$F9P$SBGrD%
z)H4E{3Lj*#ImaCLTaLm$1f#|rKXl5<@qRg!%y_A<AG9XqvtxId=N>9nJl7}2#74}3
zl}v2voZ6H{O1jc0V$E(oS>^*+5L7K|y~gaLK~+kdjRAK+zuG?EkQ*YYfLvVZ{KNXJ
z6&<Iu#P>?~EX1U_aB(l(%r4N@F)Ogmr7E)EipH$EX8hgxG*$|_B9O_Ao@p*<p3y(c
z=pf2s4B-C&jgPBIV_eS+y^VBdW>}acBU;0=iNz?f!!pTo{3+q`jMu`x74fV?&7kd!
zZ2a;60I6iMSr$3Zj{IV7)B4rKd+~{6Qd7i%OAr&aPGS1|_{sVplW|?@V%@@9ro{?y
zECref{ot5@)O1mIIGn~7V`y?E`~o@rLwu&QnMcwn8|941+*g&|Z}BpP<dUpB3_`M0
z66+nqSvOaVf6o{;m>2I_hfK{oanMw_iiXs+IjMbt`#5lCOIq$OYp@T-<wZl5$Ji^u
zelOS$Dwu`13)K40fnTt566;(v-rhVrisWp8?kqvYgY624Ujgj*>Tx>peR!z-2b}76
z;Bd?jQS-g{Jgjt_J8IyaFpJ%FC@E<4K@c>TC@c$N_M+EwY8O2J0260Dl9%IIL?Vc3
z;k<p})Yrs2r*DW@#Q0B)LKf4mpJaL=8Z*4!X4f$6hip0!=uc8$(gYp+3mYqRJ&(ra
zJP)x;V2sn7Xuqm>@G$OsXBGGi<|DXQXjLMH>k{q5gaxX!?qv>0yh8X_#BNqryi+OP
zjVH^^@}D_g=V?e!m*bvaWX@N)Nm*H0S2roEl<p+1Am8GC8}K3~Be?cQx^2vM3sohL
zTtWN=a9^o!FkoD8j@_6(SQU8i&q$^n<6{t2ar)r_H62V<UPj=JuDmZZ%C4ZY`4p{x
z;V$^t?CuK-t67*Q^}o#E@uRgZ8&6t^&jv~k3un2HYj%H96-3hxJr3nX=;AxhoLxP+
zSgOK<gKw!rl(+rqXVij%HMx#qojzf{!{m<$3sXS~3>BY8Sgdj>eo6KNo~8jsLDDGk
zrOIKtbFSlFNiI;A-XTblK@avPC%(_1JTr-2YtN`fnPt;t6zAyY$d&`#WG-vxG{kV#
zK*hPA5Q^DkTHRL=p-~{RWW-DYz{3t$am0T^GesEsD!FtKdzloWe1xlF<?r!FbMegI
z!xKm0i#VSVH>2r8d4eWz(G)+gm?{Ti48Pl&O0MN-exv=$wfR%l{0=28Hwf|S;Eg9s
zAy@jaWdg1EF@m3CQ0?P%kyH2*SD1q19^-*N=s^d~@%^;}ZF1!MH802KPE3Q^?rewi
zEaCZrd6tX!GB-P1`O9*~EfW6#*{mOM$maMCSzQ&c7rGDVf~ft;ZsW9N@Un#Fl6zvV
zFTWM?_%w<~0nV@D93gigLSCk^DiNgP;snMA6uUo<7B<%&35!QUlu`rUrKk2)cK&5B
z&W9S{wL>E87@l`IQT^67Obz)|#!+x%ZB-<}tD>g$(2nO)MfGh(nCX;i{vi@Vk<w3Y
z+FQU)=Zs6>QNB%)t^9}kY8dIc2Aq4!6ENPN=a?ak4YVHEb78m7uy@yoz$u8~9ZIC@
zYk!1&%XEfyey79ET}o4;S9<6h@Wfb0jqL3^hQ&vr;Rm$9B0@qx<J0{?#J_$6!Bbv8
zZy52J#3QWAy(coIc&x&@8-CLCy}5o73?H9-YY~T~<^%@Nf9M$ab{e1Xp9*7tC+Twr
z8SU_|SN;&mmU&rQo6O;ka<ZxnHJC+wXjH-BLxJ)q=-j3zU^fUF%*d4m4}CxeF>wb3
z>FeSrte}2fPxU2mdx)(ddV^$K=@749#OP(y74a&E{-L>_`m*C&dz2V|D2MwZ)~7E~
z#Vk<GM4LbB6o2A%e!Teayb#sv-A}_u-QMD>8un#|vh$W*{{WO%AEz%<`cjYl*bYB(
z1(1EwS1a<ID66ygk0WyNiT?n$pZocT`)JG`g%mkax;N`R_{yW&1JgvU5Q}WQr|AHu
zLa+p{_$>+WLVAD$p!zAJt`ET519uW;K61RzwAUZTB{v+<U$o{|NpLFu81*2JC(xA&
z5!RS`?1?>Z3?aS-9ZX?7Uk2cKJB$Vm`<skiR1@qj;vgu<mNDr|$_mp+Urcr9y^gBS
z-ckvCd;qvg$OW$^Uv%~$g0$JFzUES%_k5kpO@NZ?hr@yWF)CE4@!%up;X1!?@M)Lp
z2p8-sn#W#v@OzFJ4~GeU2IhtSv}AI2%Lj8%=JJT1E^rU`EE#5B<2ad1`YJrlkVBg<
z_9E6}Ey5d{M3sresaFIu#HbWRgw*5kFvk-%t|Q9(ODt2U{Z!2Hu{I@M=Pc?<%Edr~
ziHjxi9R6kzOStKZOTUTQV0)B9i=S=IXHt#K=P@Y1a0}>!QA{+VXqrrnpz|QIpWBwK
zrju2bm=L*{0Id)VqQa&J!48;csp>k-XrC~}Eer#elOPJARQq}QGI}|l9jb9+RRiSx
z@s&*|eaKmsS!JqPZ6P&dxG}`Dr%N=eE`oD1GP=S2LI#yf#jf$=8*X2PAiyqsy-ePh
zdC(wYf{lfjF~oF2p4(+`4{EBY`K|Qb1LY*O+`mM3<26A8Y~lX^*>y_7^up7Se)6^|
z%wRdKeF@q8fXp2~p#K0&OnEAEY`qjY7HS$hkT*Eh=jL&K4+oBH`G8P;P~pzM+F&S;
zfYyn@^K62ywl+TLLZP5hGvj_M!lN}|uM)5AVs{1(Lg3<FW##qYWsee|O%Oz>%}<Eq
z=t%lzD2eSbWpxs)e89;u0D-s|X1B)3jwch3nR9V2Y4zaQjit^ip_W{@++9uh<G~C{
zoIGg^6V(Qocj9eN)(U>;=J7Is4M1vb3N8W!tiy~<J&Y9HNiVq#n)cgoE%M6pa3PYe
zwz`R%x^-`RUjuF`og?f^CmA}fE`JcwWh`s!$Bfvt7MJLimu3OQT65!2l;RG$MFG6T
zLf<?-^mujNi^P8X#29J{0O(~-d?cnzJ^0!z&d0?^#fMB)mxu2;iz{Wk%hkVMr8_^6
z7=45K2lU6$Q{oBMRFGl-a7Uxb;|Q~!cP#_M!wIzstdrb<et|L6^7HaB_LuYouPoJ>
zu3oXeqv;7J8kaPfMJ<ZlIq>FJGnCv4Cj{ndI=J;6v)6+E0HotL4k8!sb|xtfS$T6)
ze5e`9E}+4>i<!h?r5UM{KB22A19zFsys=%r=kGTwbH5vo97@-ziu?IE%(mww+Ci-I
z4&DO%SAlYiCnykx*eS)r)q@26;vHqAU0Yi6L_<0sckD9#a3k~win5?f*H)D|Mh1tQ
zj(LYedS0eNZJ&ryUMc?oR10I`?63-Z@q7b`V95-P${NICiu)9ab{4tIDouj%hXSZY
zY)`qIwK(y?E;CAtjTu=(_}|ZrI8P$g&{V~kk84-);)e;gTes>?&*TJ{27f{FUyq*$
znumu4`y$p>GTDu!?fa%Udz<=1VVj4F;sGn@+_&0rp{CAXiJ{b4?hgPD(rE}X_$6ta
z+#&Jc(K<oP4ShFqli!+=M&D7=R!6DA4SbWlKdc_2cxcBrF1eW!;_$ea61hvKxrRu_
z_YC(DUwVL`ZVl#N9xuNfOinyv5Lt@tJwzA!L8LjU#{SbL(VKgjhsS};Gl^NB!WA|#
zH9xwPZ^HbK$*Iee1)LSUb2;!8*A7<;P3Oj+0jU=@$_50}#MfVl$HlWq{GO^HX5jew
zF&QdAKG|<3EGm76?GO<xN>7->sWi2`$927@S)<Y5D$Zj!3}XCPIW;!Nxf&NgI{F<k
zURWizlphC#v3rB<rZvm+N9Yk_HxN_v0gWU<yk>{i;0ur$h5rB*;eHN&iuzPW^OWIm
z85U71k8|Y&7=srU5FkMMSoh%ZGZLX;+yj75*N@U}FA&sPCp(v9&xYz5@No%PiBXpp
z<B78>ROZ2$&^{)|b3*1Ybu#<Isr=^%!^|8^Be+0+cshgh1}0uv#I|C$q8N|3m+3D|
z;u^mWU}C&nx}D3^R%Y2v{ZuY}B~i8}Q|}R^;sL9T)N>2O#AjX(A;YQrtkHuTHW0s>
z@yt9_apIGl)0w==g|e6*j%7xcxLomr!_BLRO}0{PEFUx1iju1g2VE3;oxq?F)o=Ba
zK*=_~FL02HR0rD=niO7)d$t101sLXUX<H&cB}*TlrrSB-E!G$xtg!^<dIQ2x_R<xc
z7s6(Nm_H%E@F(?h12K>K0N0A}cF2{%{{T=j<%dK3cRQ4p@8v32m%>zRV8`&>!|(5f
z6k+-Uyb0*=_+5@lJ|mP5jvFExgpH#}>KHr~U(u<qWxIKmdx4e)Cs2ej1Hn`kmlk%!
z%zKHOolY36V<DShT}w-p+lW6CjN>>;mt58iW^$J(yum+6rf|UqR$#i1Hlw_y{7l!b
z<}4YQ&MpbLYD-kPd#zl5ROsqzV}|AzPKj%U{3FXTT+0e`78G#-U3g*PvJ57dr2bg(
zk)o1*)|cpVi1VwPO<H!YqvZjO>d?Og{b#`I`GTDgj~L%kun9d@+F~-sEEO3!Y?#|5
z9$W9mifVx7>ss++D(pb8@p9*|^ug<h#!N2|Us+_1#d_OjxF1r^Osu)B&sCXq`F?^>
z5{=7yRYY?1KAxdyiXVvJWL1FTH=kZDr~Z6iU+|)oSWI&H3-}`}DqD_o1|5vGPvFH+
z3<Ep(-J$PcW77D5F`=**n6TBbG-SP`>xpBM`aj&f08qdai;EushbSh#g%tofW7!g_
zLjGcv`i?=2u7*;r##GeT!R*XZ;7jHrV=#3G1Yxhd!3k5Cd_$XzVK$Faw<=>(3oZa0
zZMlB%!itqdl?I44;zi`*hcz&lQ?{b#m^g->32b#ymKnMG5oE;s&CB8_XE5qGUCviC
zk^H6tEu#3Et@?wJ%}j~zc5w_VxshndIklO*RNEd|wD@xm+Ruc;ZNE&+(49*hnvas~
z^OaHYFblV{;1BD#0j$+dW*>}|N17m}-q-`}n9A9+fClomT#gF8!k!o`1Gv7z@%YK8
zaW=RrnRjq?tEcRcf+L}&zz4{JSKbtt-;+=T<gp0&n))26`FG$`N8*dM=^mi56#>Zf
zRbTj=dMqYXRqfxQ3&k^)rx3wGiBX05GSseMIpPX)aPBOBQr@S=A?M~Wh|J4G7Y_sz
zQ|4S@bt+t2J7+8>vw<Q}IkB#-d-2Y^aNHg_tLY4YK)_8+NNS*X_u;Y(BFl{8bK`0A
z9}DZaW^BI=c;OZq!WD=-bcL(Ajgp5kzSFeQYRGQoZdb1YFXjcenW@n*m&7o)6LNqv
z?k4@h<-DTgIE!ARfZKBUL4&KDrz?jH!o&>4nt5Xx(Pd!w2w{f&IlZIKGV7e);|~z`
zz~BV0Y!X;0@$_yS=4-A{bUV56V-cL}OnJe*F@uAKac8z56pV^1st*>O#Bm&Lb4rC^
zsIH#^46et}a7u$U6f05J%4dSD;2ymqZd#JZ>i%cmA)y#B?DMI#JOO=+qB-Zn;2(KR
z?+10L$Z^%=p*Qz{>H!h^f5z+4VKVv|iZgDkx`G0AD`e*#Bu!DOf=<0ntNmz|Vc);)
z)LC(5#Ouy0<)3(Dv=>6(f?i?84xh?b%~H{|Df&VM&I-S$xGs7P$4XO7OVG@sXD~AL
zImEmZQ$7P&i#CK=xtiQ@n8&%e<_p9)LXWA`$(z*5-eHt6LE$7K?28@>tVRcA#>Bi_
zy1J;V6LX&~VBF=N?^2g9GjbfWF$PTM?-tnKiEFuY^N39yOKSlKW0{4H<!k0SfQA<w
z%-<7$>%*vXKK=w8r7h@<o4`EIF`J_O%I8#tWqWgLu|lm?$BsO1YZSrlm}r8G+ErPv
z(H<d2G-PnC1h5LgTiXL{6;D#6oAeFa{{Vb6*`K|*S4B`LJ}Ha`=o@$wkjZP_X7oU2
zddcu{9tka3t934aa1F1TocXZ4HCu;ED0>SsGp|y!>TK9Xba4n8V7k@Iq3isE8XTVE
z)!W!;VO<h!E4gh>Eiazn2q0)RIhW)ov?RxtadQ6v`V<+MQMUQ0sA{^0pR?DR^2R#f
z8*wSq^E3Npme)^-y)bTaR&=OlaS6nIOfXD-lQR)bv-M7w;i<xUj|3QDjk1pQ2xU{K
z@hTL+VD~5$<HaB%-eFqO{Gwy`45d1V&*nQ?z31|o(_$crn5|}JE_SKh?&o2NS(VS?
zR595<(j^Y!u2R`vV@mu=1^%uMPG&4e;R~d!na|WW%mn5ZYaXUgQx$Pj2j(6=>K+<D
zP_yF-w6MVN`w=VoiKgfepbVT?_RukO@X0gncNujLwz4_`pb~Cm6kXJ-!=`3c3#W!U
z=$*u_Yz|u);6)9lxK&x}#%W-!D5y{EJ(k(tq8QbO=3uOViQ`|-hn{W(H_8(ZYN`P%
z$1xWIutNFu5W%ZRcDz(o1uFgGPeyii>Gu!vyCCLNbDhselfvf``jo?zKB3=$cxX#0
zx5K!E+uT>wg78#&hDO}x9_=z78y8Pe0xqpS(@woGV#s_>XC5!{DBK}Z^$y{j%gnfH
z<<Tpz4&yK%aN0ieBoH+V#3s)HFiZ)Qt#7P-=Vffrz>dzMrS%tZ)r;kAGx+G!^BbsU
z8f9XmsKIc*ytv06E*pzs;v!e`5}YO<qGjzdGlx({ZNAd@;sr4UcqqZ}m@^fE%TpqJ
zC1dX#RCD?N0BKa$RLIvh@YaT?p>cSH@*$wZ&}8$eYzS>nQutNl`Q~dVx+r|c#9Wjf
zGyF!Z&3*|^d{K}vf3WM+_Y4~*O1Ow9Qv%(q;u4*8!*963_k;{hXgBb(V>LXk{6*z3
z9G<Mc9)UpRxn+o1VOepvJ{h3#0XpTsM_ZOEl|u?UL&dpl3Wj|Q9BFGB=YQvYD6v0h
z)V35a{X83%LBy{-c%Y+V`&V!^Z&LHr%lZozw_m^Tv`1I5N5rhG565=DxhZdP_Ag0t
zv`ugAC<nRtq542OfGV{D9Zc(=6%Ev-6Ez9M#Y>*&2a3R4?mL(sG#;T9P?T}RJTE9n
zXBfypigG`d>Ry$@2GMk<Omrzjnza-w0$A0#f~~TCsGw*ETR)kD@G&l<*j`6}`GRh3
z5+)`oiCgVGJC-<@Hyn2m^BMfZ$KF`Ge-TEP{{UtFA!Yf8EG|*vDunJVaOxWS)O4A9
zN1BU|sHVOtHt~2qoC$^)=bB~Qy4LDg(>02Mt`>`9t-nV^x^UR5O<L9Qa5M`1Pi9(v
zGfYuNaT%`3(5Y75XqLDZVW%6G!WCF_{K8?0pLC`WiuS~V@_(p2i$L+lsz5I4+>Ykv
zRMQ*3nCc3lcX#i?U94m}Z5ws!t-81pAx4Wd%$LL5scSV@m-mENfI9op5A&jwSf8`%
zRTcJ!vMLam`YIwV2S+T&T52gS!P6bvCGsCKm<8TD@6WHGNTK4DZoQJ|N=d-r?iG_b
z-x2MMQ4Y`K^_{@v0CaPw#7t&$o=D{D`}T_Mi9YhP+{Ev=5H1;b(p5{G!}Ofgy!gb_
zW|5R;RtZz7QmS(;Hi+coYbWA3`@tIq!$(47*}Cw4i9}gI^krX(oS=SLlmosOIkOUl
zj3O1aF$B$c4ANUVpNCLo;}I-8;Z)vWQuu~i@f=X$i<rTiYT(l;uTfC*E1s%6aoj5>
zxl)bX7BbCLB%;>|Z^USNM=^4qqQukf;iTM)@_$x8#*hQ5y_l`w7Ih0`3ZA{n`AR3!
z59U8cxgzaL&EV#DGD6X!SF~a642%arBN%j1AA6-i`WtJxyg~977#`Pv91=rn7`X-<
zhi`^pmM-^UxU6F%)9nSArdc+8OQt}`KGM;CP(ZoE6t=I{aZ!D}suN1@D}LlIh_%J-
z6~`+s7h3^&l;VIb`Un={m1>{<2U^TO!|9lwL(%N^htTJ`uaWqSA2lnde{NAm?EU8~
z1=+ri52L>&4>6_Xg5?KovH479;M*zuFj-mzv*qy0IVD>hUu<A5SjZ12iFINi(D8nT
zGn8=W;e5-T?kBp?4b`*L9cssdw<{#5V4M&plAL@`m|Q<;M(46D_u+FGl9c#Yi=D+}
ztXvt2?E?n`clv*<7yiUuHB)Sp9i(0rkM1*;<4-*@p;_59wH;;qi8Cz#VmtYd3<mlt
zm=<RV&h364FbT38uwvNE$|L7-b6m!bw+QMwN6uyChauox8Jpr(g+e%T%5Xt~ad!o%
zH45BSM^fOa);YxH8=QaHU}LtS9Sb3waM4t95#lPgS^Pw?Tc?sdoIt{J0>Suz&;~Pi
z^Kj9d#ChpuJ@<%f5+ZJR&5ogQ0qLKF4hUBB4{wYBj!8kjZ<uy-JqP=I+-_}J!+FYF
zJv7r#<du4%SL?2PNh?*u6Ov-WV#B)2OtRhGC2^RW61pkzWK4;5vi{W>vdRN*vYbl+
z!&kV08|DwWM92C$roZ@-`Y`aFKADBzemgz96yjxI4jqZe!d8H`YMjdIdiqdcDvNg)
z)D`;2t!EhkKN2@=cYsguB(UnJwWg;!6S#7H(`kC2>S385Uj}<fDhCyOzccl5wDSHT
zLGYCFy-HOwwJNTBBbq1KpL9oGgr_(7jd%Jo>Dp+*dUGH1OXz|;&SgxlZ{RN!nnwx>
zIpSU}U(C%VPP6`U%PrY|!WVgf<2SfrTSL*x1wtzz#3mkzU6&?psBJJV@($fh#G+a5
zzgmfGPG#VVXop9LBDm(&%UZ?5wmgRpqsa4`j$Gm#rJDTsd3u;jDq*DJj4u8U;AeF#
z@bbn`Kp@r!*@e~geFDa=J_H4qy0HWVjexS|Nbcec-AhZP8bzN^hGk`o8!jsFx}?Wi
z%_U)N;FWfFEM%^CjqrPpW-(n2)47*44rX1nUjb#`gel!j(yTY8xR#FJVF5J&8aI-+
z;-LnauydWum4kUf^Wx{Wx~^V=5+~J^1MhGOxGh`j-x8rx*hBZQymt=Yj8VM2j1`D3
zgnDt~QZ{~9S#d<H{{ZoRgswV$Gc!Cs)$aRB<K0SP`GOS%2VOPgnDM;BgN#a@`qiwq
zLQX2JAuORh)ws3dJ&+S-tS*_6hESgn<mNn3aQMS+qFLQOQ99u}h3E{dq9AR1oJ_Ed
z58NY<D=Ia0#OJ}dO`#~~!1YJQm>dy->YqR6FID~68;{C`j2{8>D~9;v&-R03@DZC3
z?fx{22KL-J`@r0a$Q(k|Z1zRw(6!pszgpSN_Xh?aCs20S2<GG_WN5RO{y<ZgafWa`
z2hR-9lmdu{dWCjetnOuBag@09m=s_fYcng}=Be&EVo{?kTq%<hk-1J9m@6BICBY2t
zQ)dv~9K;%k<<#iX%MXP7%?Iw7jKZ@X=0*JA)7kxI<Lfyt2<6wi>~X&ZBfLU3>FQLz
zAR$9o=00tpqX6SNn$$#~P0{KPY^^_{$hX6p>u$O5Rjn?J;j^R`-PO%)jSo<2`62tJ
zTO0sG?QtKf1GHh7z4>%r>O3U03kyf02Uf5GD*d*eD9SCr!u_$WqOF@BFqte$zS5%D
z+t>@k#lLH4%d_&$^$RA4uLZFPk81>1Mr<GcKhysJ)1>Nrx!(^DPz*N6O};+0%OE0O
z12WXKk7LboT*vBWK>f?}Kr_nFA2RsKK~-rh3CDCAkJ@pGdb1Q2#`V-#O6;H>=^WD)
zp<<lG75&8~*j^{h!lLG1j$l<!h)eLXWyQv(svLFV{F%qZW@O3;o1dqgUgrM*E%=<1
zJE%%v1B?Ul3}VmRsX((taJIsOoUh80hPA&+xZ;TYqcL-t%sGutD@QNXmApsd0@zPd
zt|6K&;x{pB-X@9oDB*JVE;Rj=Py2GsL|y8GDwKMbQy+<bDqC2MDF^_=FN}Fc-ts~g
z{MoI{#V_?S30&1a*Z!h6ci1671mz}ceF&^qftBI>0)qPacsHFHc{x)Pk{nOy-<ypM
z8Yx)!g+!`tue?*i;DSwBURceEQpaRO=__T~s)t$6E8v#%0cG(~62)mc8J%NNlZ>bz
zX_!4QZn*iJaXOT>^EOOO0C>PeSm-w%;REwnqrL<yOgL)0d4}NjixNA=$=vlbs(U8v
zl}g9&IY^^X!6nE~T*j?n^m_jQ<mj|`KVlnfAs_g?{UmKJI$zv{7}2;!6Vl*QTr7<R
z-FhP!(kH5oe8!3wf2`Jef|fQVnAc7*r~ppjc!27|cAK1>%3-@+<GZkZ5}v>5hj};U
zEKQjgOc*=PTUq*;J)!;MUwKX?PB5SDd`+$fPXo&iW;vI?1#8DX9_KT-<c%yMtiPhy
zggzCSQ2eGJgwx9^ukndnCA9Upu<B{<JzS|-cYH;RvY|Z~E&zSE>pPm_W2wSdf_ND4
zvJdZG1`7*k8i|O#_d54BM`wU0p><=B&Jz|$R{S}*YH0<PxN*<fsesT1xcEQY#f(eK
z9x^o*@pwOT=*A7zB}Z2<mlj(6k=;bnRI2x6ZacLY+NbB3=2q{h0&31)3l|vIlOB@5
zHf}YKP%3c}1=)G=Y7(wW_xr=4!J*gQXk5biZQsX=*{ri?w#-g?KaeeRDaH(+9^gnO
zRUG2jsnITORW7@m&WJuoiq1oIM@xB(KnO3A?ce_ZFC_qf#6Zu4BmV#wPm9PTC~{nO
zr`Wk)D8AO7)rX+^i&zZWT)dc*s13as)Nu>s7wC*9a~jQogkz^I;=~7D`|!EOTCK3n
zD$eG0E<SFy>N|PpA+c{rRB2yV=qCUHebiz=*szKwhjOK{U+Xl?qrp1D^Kjw>Aqnw2
zoky8`OS`G}n1tpVXEPNz$8)p8E4ECr7hvudmJ!U+n7Q$$ek3FUmreIAy%9lj!OQrS
z#1Gyq8y}IFH&ANt1Kjm=cPkR%m%@02v~h12l2Uq?i2TdDnBgVZPQ=O>mR!BW)L8q%
zcAB3vL;KW6KKro#RHF~j2Ux_Q(isU=ah=(@fr9(To~FmfUZ$)CYgyW!XCof567OpO
za{&&HAH~jy-vodbK5y+gfzi&@>Z!yRDQMa|JMe>5i=elrqcPmz>F`h$M6mm<i|~uX
zAocAaWGM1Y^K7ntuE<ruV5vwQ3IbRgjOY+#*|=5kG-5PT9d{3DH>CT2^K;|}{6q{L
z3GIE<9u;4^O*tEgljvCXIw1N^iDlUbLFN`4u(G`b%FxPFc0`tBu;F>-(+pvw!$YBa
zS?*C82mNgCHG8iH00`(P@nYNyXUX*}lPUOeHb&#oxA#j6pV3B`Ok>BnP+?ev8T_K|
zUlDN_q{1!2IMmt_+NIoEoDtL<OYsBun5uF&?k*D?LCo(##xLSKxNapd7URDpa`!a8
zIjB3t_Cj?S^B!Tc54v8D))4Mq{YNmUbjqo1dz2Ri=fdV<S$gojO|KZhtjYod2b)Sx
z!-r9toPch_x;lWUn(W^@UnENtP9^rR;nHrH@VrB?2X_ms8<Zw@)Hr4J1-)lghfvQ!
zE$IA1wRlt5a#g}hfyp0CPus;qPxUPwGhezm&o?`Vg3nIhz}%_W=2FA7x~|378RlBc
zr~d#`&_=v3wpZ{a6rf*2?+E)GABHeWX~&!5f6a$EOuJhS$&E;ISJ8w20H2i-KjI-a
zRmv~>@5yd~EUOU`4FQVyr)Pb@uQi-4R=Dt{PNivusnUbkB4K9L%lyVK0{CSbVL@$L
z@f^C@9!0Lpv3xNb>{_$0Obtt#U|YG5#zR)j+!=jKvUlOGU|)k9mp_?t`HrTW=05oG
z8KEQjmbd8-%fN8U!^15m$<GI2(m4COX<jGf`^WLaEOk0bg68o(N=EC#l~pd3U*=rS
zWzDw(6NzlRMmekS<z<%?I>hNRNS+0ZqgaMWw*#rRI*a^EHy1I5Fh&hOdDTIQOyGLQ
zx@nr`6d@=%+#HCutMze05&rz&g|n()H&0CF2GG>9_}$=;ujjwRDQ5?X$I!v!7JC_^
zi(mi-7_E2%V&BA;--^^Fy-!d{c2g5U_wl9RR<CO&X7zP_(#RV|qfc{+UMd-DNed_K
z4*+$165Oz*`~Lvyr<uY;WNVD+0?~hHo^guwjy=j+s}O9nK5+6b)f_`)F$B`qWdn5*
z{r>=e3_CCtggURpvoO^c@Cw`zyfhpJ4q~e?T}+P;w($d>Vtzsb)CiIButJR26Vwk2
zn~N0A8pV@JX*4EA8{FHezXf8Ul4_;uUvc})F(#;jvRsQIug+uoKwf-RX?;`okK_G4
z&)p~bl7I)N{>O$${LQPA^@)@Wc-%ReoJyX&)#3>9{iS7`Dq%IgYIAd>aS|H%mzsz2
zhBc_S9^>CIX&${zpO_Q%zqTtnFYz%czyt4Q;!4Jaw%2~+LLS9T!U!vWZw$-~idy~C
zm_+pw10z2Ut|qS`>@-YPd<Egav8|h>$CM3Rz}8cOtoUq|NKd%BCp{Dk;f2f8X{j}U
z$t?Y*HflV0%=KY^GhqSnv*92s<i`iU4ZA9V_Zc#xLuuF0P62S!^^TRG{{ZZ40yuY2
z=@<Ru^Wk-BS<fTfBa8+A006R}g-|GRjz&-!$9a4*0ZX!oyVfmlZ{7(hGm%%xQ@?Bh
zUdxy1I50*=!c@`|IT|=g5(DW|`KT4BVqDrDBQG$QhIJgoSlwnXaAq;KXK)PFuz7ya
zs{6sHV|#-iBdPX=pg`QB+m*VU5`vT;nRE%q0>#t=p7Oz1oMwBKnN`FIx`~MHbM!gH
zda2wwhGT~_5bT^nU}A6dnK5v#XK)96%#Uy&?s`l_<HI>(Z@+%E1V48KQDx)Q<+<T5
zIh9wpvjT~^k}C)UFNbqEsW^HE(C)={3G=yl-p}!k9tqV@rMkxPi2Bqmc(*Nh>d_zH
znXD;L(E0xWa^RzDclCw(WvAfrek>TF9}2pv^YJas0@9E0ILyG_RcAB$NAW+T{{R#E
zPw_vb{{R#ENAW+Pe-rzs@jtqM6Z@y}Ke~St`={{<vVA||e!Ic`44d@-0C1GkyNwO4
z16!`m@tbtCMW4P}Ug+z?u>oq)2(rw@0KkkERLUH&$0RGGS?U}Y$Bb^fCdc|pW|VU`
zNf$zf@2bB{)7d~+KMrJH_q=e+<|h}naa_X(hAZ6CF1&@gS9el}jYRHRH<Z>TwG$x=
zhSRguyguVMiMd*o;}9Zh5ZZG-(e9-)7h+7Q%_+0R*%Eg+@x*$UpP{>tGP5~}nV99w
zG;R)ISv+MlJ<U6YK!sr#2o{b%p9ciwCa<^kkCtU&;`1HTxc1oxGiSCGH0l)o`IgvP
z`-X!?K8!jFf|fVE)%a9o*u~xw!A(2=022=3!zqI2Xbno^qx=PCaa}$aE)2PUR`&@D
z@B3>q_wsUlS^Z`r-?#qSxQRm0u94T$6r2-Yse^R1VE(>m1Ht$XWsc8v5oUdWX%mOc
z^)wCK=*kMC@f<-Enzt{gRyWM+$_BCOIaZBSI^J8ReWBr>p~YwYMseeq@#I)p%)K5x
z$IAzqwlU&&;-yL|G#Z#l^WZ;8q{OVlP}IJBlTxz?ZV{RB#JTei4AK*05~nANl}s4<
ziJw!qxR>Cq!Z|B2Dt?HWxsra26%9^hO2M>zGgm?uH0K=6WP$KTe_y2d@BDv(;6>cC
zmZUTM^H(ZjW9qC`GNk>V0fY<~KjA4!EA*S0WOskj{xK5|&;!<Auwn8l75ffj#&x2D
z0#q0Xw$@lj_iI!yNS%`QAes%Ym$=phra$y0E*%G>!x^ROKe#aQg8P+Q@HEee`_xhf
za)zb1Oylo6jH;`jd8!%960v@~ZO&p`sMUR<vBYZXT;c=>7^(3nx!fl=;<e^GVZq>?
zc*UPX3=_G>fu>>4%pq5EDvTA2`b(%mW_5DGN4Zg^UZFai&R>6|Hb=?KJik#7t(;GP
z5W~KHD&tZ;zr)$UPs9hm0tO5iGXDU=e%e~*^f~t{h0Xr}{T?5pr)=sU?=s)xhlslP
zmWTnFp#hb({v>ksC|sBPeH9%|w=_Pgejzb8el~$q+}3THi}fROmBn!zhfr|>+RVo@
zneKB4aWwE@oz76pGBW3WTbHT0W>!4?=W?s_7?PmMiHPm$UEDU*si%s+12~Mu5}2sB
z^Dl3?!e*suiBo&~%wrFzyN8bcmye;3)yLioAr?ZRJGp>f2z&nk6=(kdl70?7!U!N>
z!I%CT@KxS^^x3rU_xN~zi`pzd<bSwEnERPs{$V6*e~6ar)C3?3172%Vyjb>+6mzRn
zWtWH&u)~Dnq0P>b#n$EEzZ^xmaqd>LIQj7Al5a1Lkb_k!{(L#8EWRSaDEQq?3pkY<
zsFn0^msp$f%a`lV9vhmMnBqB(7D0km2$-)WPGfoThFr^R_c*U{=2j+Z0@UPxR~W<T
z=5-J7@%|FvF&pI}fmnx*Kf_t!{{ZCtHG6~*FoA<F{4FvWYv2B}5i%(pBk$<HGsFJ?
zL+%1L9Zy7OwToMO61aR<hj4)^u2kODuy3j}-eYo|kah75b|h*QTA0nwZgD+Et}^2F
z;~JgAuN=N#Q$8qJt<JNAuMo|_t<I9^-r)Z8q#?F?C2@X6T--f<3xnoe_;VgHIgb%1
zFr}3$*~`Mk+}(PPQdVCPF&knm#2L6V1g*;a&ZiIO=^kIBud1gLsOjNSrAn16#<2FV
zswkqN{z}bD{gZ?IJU>VP!I%CXHEuqis`NSK$Inb9&ES88@yCN1wRHBdnU1U^#YsLH
zOUG{ly^H-}R85{aoI<mid1ox)In3svzjBA|Jx;xNzGgoVc!OVbVchK#7?oyb$QXpI
zJUmPBK(8FmXEUz`;R8CUrkJBShNn^R)MaI7B(3<<9Wl5^9xD>PM_%BT&521XC&cO*
zm06#meM<WG0#vV|U*KiNLtD@QMoPz%Q2zieW<mGloJ-;1`alK@zwlfmz6<2`Y?Oxn
zc^;lVkSU;#{a)wyV^P^NAqM83<dlMUq))a~ss`6)E%}rM1sz0~8&A0e2WG?hf{$tX
z%)(Z8<GjyN{iS!}!s1bwOYyq#e0X8g5uL(S(Qz#TVdO%VIr~SyrnMd;xK3gM%~_XU
zqF?X5rxX6)soWlS<dod%B*=#|)F)Bg;VT60BuT<xnqzyPniiYx1=Os~M=AP9XFhAi
zN|h>9sn42~^wh64Ds+|)RKJN)jKyBzJORN_Kh0VAWAz!p{y0BK0Ku334xes(r|0&4
zM))c}^?REGthT0;vRu|wJ1LCJLUe6@4reRe^*W5J+VpF*D;SIQ<{yrqti3}u2<|OK
z=3_B*9mav~W{75H>G5*^05H3R#ms@@L{~R1h~P(87cfZe1n_i2QEo0Fsin$<<H4(h
zLD;01+{)&J%F^>aL{ae$;f%ugoSxw;Gv+v#IDTPr`IRqmTT$^^m8ZoK#2%p-u^?&;
z&(od^2uJ)6ij^5&D;F41z*{spZkR3Hml<hc3WnA8lwP6lq-|-hh^yjD-){PV#M&CD
z?i5CyN`<TQ;=j#VIAiq~EOEjfu7Be2{{X?xTYEp<h5<#1$p#F+tf|gz#^1Pock>iS
z{;zYF2K<j<JCXeb_>33~5n4{bU@~eZd;2dC;wpw?;qDZXZlcFRq0t@3ElV^{ei+LS
z;#%b-SqtJk8Mxt}3sy<NInRtC1`i$*^(wp`HdN^=6%Hmugo2KHgpplOyCBoY6$!_M
zf+mQS8^ly8h><H0W+sVPhcdAaAhCuFtV+xbwMOUZKWBpv4}<8hDj0Whz^veWrtFx(
z%NUOW@MH5X#kVG!4ZetNiQ0=tp^r?(z%U-5B3La&xF7)u`>~j(!=k7D`hv+pZlQ`=
zf`S!;DyAXErNz38*Z%+$x1buF_C`NE2Yr6w{{T#{Gz<R#s{;mK)I^kKlL`9rZ2q?*
z6SN-w95Kb`XswnxCHOFR-}H#4&)SJDqpOR|Q1Im3%TT+O>TxmDGt5ezvzvzrKJj<p
zyujzEQ^NQ~9!S(K2JgV!*<K0Ed=r|6vl;bU$HdL{#YLrug>DZO2yPMZZJU*;&BW#x
zR`|t{mE=v>9u3AD)Y+83Z`veGLksbj#Kw4n!#QCuv=Y71^)D6ZGUWRho9LXxxs*ku
zU0r&J#|zKT#Z1luS~6cymf-v|D<X{Ihvi*PrWeXE=fx6_+ZLz6dMC|F`I}2-Jf*1D
zs9Dwm!09xa)F7`KYUZ6y#sw6S{{Z2w=mw`fk&n+B%p9LP^DVsp0NB|E48N<}zu;rp
zFX(nh>yu;H?mG}WqSJ0rv{^T`Fb=<NG2GqF8H*T&4=aIsf#01%Ry)ek9H*#adqWYm
z#)ue>3AwKnjWHf2@iD}@pS0Z)sXSceJw%Q?8}Zb29ZeN6Dr(`3_;FK+L$+5FTk%(j
z8@b8l!%=@oYr?$o<iX6UonLF_d)E^%R?6qxDYsH?Uf-uvH>T@Ad^)*7pDz%zMIb!A
zLT{>5(D(E)CkD1KXeQ>_n&CG+iPRvnzgUM;{@iodUgHoCiwpZh;N(O03Pyd>a(&qQ
zVZNL<&zu#+8Q1~)qq~<MsoT)qmA`-S`T?oWWMlKo=q7(gex3n?FX<oQdzuoTgY%hf
zJE+AvuE;I_07aO-gY=BKd_|8iy4N{`JMiflQxi5$bG%M25sl2Qa~+Vx>EqOM4j~V`
z7fcLIVG}+=5#zxH&yM9vop`#byI{eNd}}jlIU|;(O-i_OmHJL)ZY9{lKL&FzUNnaC
zEV69GCdSoN=`XT(8X-7CtKA(%Y#B%WO747;-e0@v+jD#W0H8jeU(JBFxJI|xAv19?
z!TTj<UIp^D-$Mn30XQq$Q9&&kW}YCb<CC3heap6zdXz<5r)8MvEQ4~Vzd11jW1Ee`
zMrHkf-pDJdje=YM06$Oo{Q%VGvN8DQXAjkyeXqz28GlBVZ2k}YN!#M~dp#wHF}}=r
ziw_?VV*ZJo#3rG7h9+)ezVnG!0aq%?vQty0AF3L}sfvpep9JNd!MsCwaVnt9xU74I
zu{M$JItj<p>Qt)Ye?Aq&JBN#R>Rcvn4lOv0H9B7yjC+nVDz|fp&S5n+GlbkBZFZjc
zkGNqo6yJXSWzZ8ZYI=`=DFz3Y0Pq!p&;5k*l?S3<j{GjbLlJA8ZdW|iV8`<rL1KX*
zh%8f+IecQ}Qn9a*721HrRxj7aX2dVUxmk}w#T^fks(l&DM$xZvu3rz={p^CenAj!1
z^Ys4!kI)THY2SUL{nuYe0Ku2%Qc14pzi;uR8V7hck8r=9$M}7c$)q|<mp3XrW@nzG
zxU=-k6$lubsl7xRB4X}VrCaui3YOf<P~tj|ea?~G0_Doo=4R&*_?z>+#&65Tcta8D
zUgr~>&U|WBHQ<Ebk6s(p-F&@OP+MQz_Z!^Z-HN-G;tquZ!5xA_aEIdVS{#bIyE{RO
z6n7}@?#}<^JoC<(Gtb4j%4OE<wes6L`zxQs6Yc{+)b*t}uvRn<P`X-pPO919z5V!p
zJEa$|y1*XFtK3+4iE+a{z(MmrfGgZMqF984HZqoG4;}$M(FI&P-ANP#EUpZi*n*Ql
z6&P_6YS>~=XOH1vw5&84O0zLOdnbgF2o~Qa9=In@&GlywnxN72oq#f(CinH_jlTZ>
zUVzxoy8+Q~55K4w3_M0a$I9<?tUpa^=bxF=`4;~R??8wNmZNv5#=Nf^A-~QXbNUI`
z#X4IynW`fB(^^iNhbv{@EkEHaQJs!9Wp$#$Od#CDuWiraLJXm+9n6elb3tk^pCFat
zy1L&5|J6RavM6C6vg{WD9dKNosCztmzDiiPz^)p-^UXM{;*XLBWi~Q+z#yTdnvzRj
zH^wl7^O@QuHxBpHh7Beq@q}fR)L4WG2;aZjKl+!33gO?!3{8FzV$|0ZatZ1<yOQ;X
zDur6SfZ^b^VFW{ZSpfS-68aH;|5k1u@L&7!`q70UTusmvs}Nl?A5ZD6RLB$dg4{hn
z9>fiP*kW%!zxWSlbH2oE8Ig4bMWGVKPzi4OQydhuT%NhW7~5f&g$EC9MVI|G_4nLm
z+da|mQasQKxY%Xo3K$e96Y}I0%&>Re(NO<%+T^`t)ruUtL}zoPWyR%2G+g->s$@yG
zduGJ<hF<8E|BU85?7w6CK1Q5_=(VL-EJhC!z7Idgb33yD<dMNiPyP0L*!tN$N#MBF
z>N?~+_MBb?7#Ud?NMo>nTo?YWm0Ytcouw`^_|e70RUFpe;iBSKD1Vt$b@%jLV@6~1
zA7TeOv&LOa2UZMQPv*ur4eiQv^0CTcZs}`W;)<%zh57CSf@S=r8Q%PG|K~)@Eq${M
zCcB&JYwe}X>koD+yWe>8?VZYrd=gC}>uVBADWB@!wf0K&DOGDfp&}mW>?M93pMfE{
zx@895`iW4wpo(~=5U|zu$0ISr{MmYB)VV+m!P$RjprIeYdsA{D3LzbGiW4PA;GA$F
z&K}>4qkH>;hsc1@bh;FOzk839gu7rn1}RUTTJs|_A&0seM_WG(2zm*qPu%}7d7-2J
zSIEtYuMMOg_bXir9wSuCYuF}aVc&F!-bV-Etc^f8OP8}s<C7ObS~GeWmh=;iAP*nk
z!rt8C9r~X(_hI4r9~c(`o_<~;9?ZZ@PqG}*?gTA064=%czufCuRHqeDjDMpAQL00J
z2l0ClY1M_*{{UA&64}RZfvAoGAtxqX1iT0o6_n-5s31$s`4b~xv>{aBluJlXzF<g&
zk3brkC!v>jE@Vgvj7~T{t4(%pvU&r-|F%gg$$pXR;@p3tp%3KdI2<7t$a%Y}d&=DL
z;7x-k_XjGyuG!qvW_-}0Jjn?E?Ls9;f%8XVh@u<#W=Z#%R_v-hn0vgs|9_M!4w-;1
z-NUcf2n_)uVpl>%r2_l6xP#MexmR8y$qS3dzl3B=>JI!qNBX+!O}3TK)VuryUC#gB
z<9M=rQQUt!5e2l!fPM4E#(3XPfmFx+GWeN_OMvt*Q43bu@BXC;y`QPIt2)<gLcBY5
zo`PxVa|bB)AgKu!ISZ`oAqn5zzL2&eAE%xAtvR-Ny}b?}d$w7gdjdR#ytb6QW@n6y
zR5R;!l@+uduoFAiAv=T~kNqs{TNVUq;uyxyLsVTdxg;#6u)R7d+U~7>GgrY@l<qJ0
z+@Rphv2w=!yK-;A$1kz^tp3Y()p<O`gW@Z;a4l?NVQqxE@Gyeq-@ayGsn^VB%uvYV
zy}#4kk&>&3$44>uFJ+j<k;ew)6H`#?e}JjE4}r`0RX=v&K9YB5=J?O1(m!bxAHj~D
ztFXt}!_ILGv`$QwD=fdFvwBR|SRp;2sYkX=%pgq<7+X}|1Iz<`;ip<S!YlobV37|r
zh4=h&Gy2?gZyK1bRfGdXU~Bl1f>Hk8eZtO_vue?zZSPQMV(feTMzkp(g~}}B2?+jQ
z%a@Sz>#1;Zc5)t{cc6R9SI%t+^VXVf^gPzj4XEZIxs{Rs0JRu1{z@O9#uW!7#Z7Aj
zOfQt9^{FV45NZH^6+6HApBIVw8|k!S8zWBm*5CgDf?wlu<+<~3d+!;9{`WCHaH;2>
z@P?uI)Qq^v65-zzp%vn~Kr!pmO?w%~u+_3bBq4UBMU?V^h?XPVB4k656OV_?>$nmO
z0<W@XO&8*}Qu?^!<-RhDKgMi2hByx?Njl`)drrK&>57Av**(@Bc79SCi{oc;`?cS=
zl}H4`Fr#2>U<kv|MelcZM;81gU?tXcx4L?0*B$W4j5wF(-{Em&;B~!CeI8)XU_~Zy
z_){}d_+NV4j_)}IC_eQp)j*j4y=9_eyx-1Z{NK99V7<4f|MY#4@itdCu<(%qXGykM
zV3%S*ISP4aLKX&Gw&E@agPf4s<PV6AaX8GfA#2;*%p8ni3Xj0+<kPEmuP~j7iGwcE
z1O3h5+z843%<RVd90V0(9KvSlj<mDX+=Kw^wN4T8JmSE#c(u2*z3mIcr(WJ8!na@q
z&gbwapnLpBjyYb=+91=<|5<Z;pNQ;7vFY&t{z>@-fL&GyKY6NN*)@-C=q`>(IQLl^
ziUlPV-YFF+Mp9t^cA$`b>6b^M33Cnk_^kC_atmIvz6-(Y3C~E>VvVO^p<bM_NR2Jy
z_JyZ^h0(!U2;=Sj1c)M{Dxw<O;dAgaaRQ-~5jN6W-9PBqM@|PLFGTm+_8RDC&N<(H
z;D4YFQ@)#!84uLs&LlGbVqhwZkN20aW<WcMD}DQ1Rxrht=?AKRfBX~Yf1k<%z#Hx(
zKTK{3=6d&a1<nom{rm$f$=~&Z{!w}7|L?<HF4?nuwrXz0|E;Ba_?yujX0CmJ3}<tr
zk1Q-^Aj6f9Bv;8?IglZ))bI@_<Cb4Yji~H&a(tpopHN}KgQ!Wt#EDr1@gU@Uo7%$V
zTXdwUnu@N{!R+=_FA2158P?^{yBTOFFcY!Ih4ei(l$6hj(BHdo>GQ;AgRoC%MeLeo
zKg#yy3i(?f)@K>+j2T#+Wkf%U*VX7*KT_Blssd@%?U?a+V3Et$_(RaVEI7Ayrs7n6
zyPO=icgs%556d%|`!C%4uD~L085i7Y^GLvKMVyTEDiOvqam!WjtB%(})$JhSP*1hZ
zz40ZfGUg$xbEKUNzPF!&yYaQm=REdEi}RtcFMqe;O&io9%GbiZo*7MYq6;g`{cy#)
zWS-@8`z;7<@80hGOe1ZgHBnUp7Kc1#&!)k004cEVg}Vj`kzs_vtwiaWG_^M}h+u=!
zFA*_kAj$9Z$(v2<P2K_Zp2yT6i@XN0AiMBYd|KRY6Yi01JeJq)O7KGUmNdn3eM9_A
zgkY-xEhT=iEfV<$4I}inrl<wSN%G6jNIZ`c(HGqCN!IPt20$@pJ<)o(mg19;x<FuV
z(*XzQc`3|V2!CRS-{(O#!gEd_^si+Z_orn2rp1{-VEOU4l!X&*&~0nCfBoy0kOWay
zSOljJXV*|2d|g}WZkGF7{mXAt=M;{Hv+d+~9GG#Z!n(%Xt5|!D2{R{^i+>=DK4w~<
z`j`S<rg-PZRB6rE_$B9qzN%hVfefvvE0JaSu8W9g$9AK!<j@ifH{$2s*A=ai0M4`6
zup+vzioT7Pfu#nRwrxv_%3VcuV+$(_8tSE@2gtXREmGF5m@REIO&2H^I4G>lQ|&Hr
zvjiGDAo|LZ7{!gYl%FFnOunTfYL#gDpZ{Q1V|bs+-!VM5%qhgVqmXAex%pGoWDrFc
z;scC6`<$lhdwEKKEtv`J*VU7o5?g%X6kdNm0HcF_cT2~vB<w-GaDVA&cen}5IOcW^
zct!>W(f*n{jBicFZpcb`hDS{f`jMW%kXv#ntmCHJ8z8tS1OuJe%rU3<)(Tt9DK4OV
z(f<Ps8Wv>skWV=WzzlyBm=$~yvEhqbq2?Nyx)#ws&i18M-(*jl=iGyPzN}|K4f_oe
zWb9|OHM#2PHW?h2M`xdjMqXl1D(BR)j5!K^#Y!K|YBtIqAz$W{58t784s8_CwdZuo
zd~_aRoBwW={Oq$KE}9^B9*3nn7P&<FeL~~6IO%(ayaIZkZyfKFT96<HgRn?*qsD9Z
z-x;iw0C8vV+3(LcE;7xwTP9Y<ItZ`71mr_C!TE7TgEO-K0ptaY#&VPm68IQVu=Y~R
z25x5GF8>NUH*(FcrCyUA6$FqC@?D5YUUGmZyi-!juq)VvOybioO6mn-7MTe6A#;&l
z+Sl+dYzF1%NZOgy7nUk+>;kD4hEh^Hc_(};-%{e6K2wrh*Kk)o_AD+$i{)e8{{em(
z0V9?bO^=P&X=F@_d`vA-H|x80us<#41WNpEDdF>u>KRklDDWuftUjNH2wlGCVxgQ)
zN(GhAH3meA>GqStI28PS2`K23t&itG%t1;Cysj#uESO5@oU}J*U!w-2j!|DYp5R63
z!3iR>8R;WWn6v*L88)X`==-;mvY=0^^t+K9=*WhA*^bQKD)ltyub5DYWgSPJK1e-5
zKGvYy5`4*>LKkhf$Q<cztG;r2wFV~z=+ISxZ48-b=d{j5*kNojZZkYPp|fz?rm}%?
zNefJ-k^j~n>MK9=RP{W>G5<dAKQ$FyRa2l_R6N%H?C)jTq+>1`J~{Fy<|+ESb@nKF
z`Gy>pYsJpzI9M|zt80CMD7bcZQlz0GrvHm2S)|6tIz*RtLx=P{#k5NX+c}O}mieGr
zhznu&<a@Nqw~Zy8mOXhFzE07cLq{L%Z(!8qElkW<*CjO>vtjWo(Ij*nWVQpPwJ=l@
z%Ptwq{3uzYa>Ab3@u2+=0Ixgr*-*I9!!H?;L5GH?k=L0&EXJ?X!gp{ok&6g+Fe?T-
zGBS^d@Ze<HEvhPi<`Tvh%>D<U{8Z`sEPUu1y5-&Wil~1}@*&AcXwS(MN7t)$lftH?
z%=6)v+u}`${RgnEMY-lX1GnB?i0;rGY;ovWMbOCMsC84I(>_`De!IRpckJld*??N(
ze7PF2M(6${ql%`uvj#nIphetr8}4RF7_6{Hqa$YNd=9=rkAjz}?r@e*xxJn#wGtFT
zCuc;ORq~N_;~%O^oDzmg7>u6+JnB^LQc`6Qb{#8AhRcxt-sG5|rqF~g(@6R3O}M%d
z|Ia{L`<Q7kxV&wU0M8x|E!zsNSObck6^}nk=Q*Yv6Qnz?f(I=~_M-wWh0;?8)h|12
z!Ej|NgBs_KIbw3}-)IW;hZ{DZ#(w}MW6hfIF#0$jjc4Z3h||FnHGb9O=PPL^w#=zF
zW#{6`mtHN3ZJ{8_)xJ6QK17L6kVk2mMz3mD1t}P@fv2V68prjJL~KEHurQzYW8x5%
zu((8W(*IR^UaNV7ys+(dYq*$JAE_wU83liFY2bao4les3Nwr5ES!Fou_q))@l%dEU
z$EgFFIs$m``o!`#`NMH^ZO#?m{dR9aeP>%{H1Wk8%vOdu<3fg)SQC1iFC6WWDTc9e
zz=8sv<DeqNQ<_<dOHmCIw5s+s)MR7!(nvUWZDB6^_3rlwtQ*Eajy4Py|Ni;YBOhXm
z1PiE68~5xUtJ%z&$e*c<VkmA(Y(&2YPj-xKDMI!#FM}yEnsx-~|1TuulMVuahJuBL
z{vS-p|AmAYJ7NA0BZQJeZ02ekc>VuELNINX!`|gF(Y*zIt&t&}Stjp<+71m3d556u
zK(LDVBWiDfdwdd4CIc~XxV_WJ0SP}Uf*D(-Qqlk-o@_nN)w-2D+cLV=(N;x3<rUVz
z*SZCUuRd*Va#)SkEIN+1U&8|ium_e^$D$3TUFM+oID)tYR<XAIIRaaE$#j7Dz0A|T
z9LyR#s*qw|EVwvohx~`Od8_6(JOA_yyqjKHv9iY~7{3+ypo%C;MvvAN>0_BrOdE0g
zNFBGs1OY2LBWd|q>9WyMCcu9H?6)`Ct`y+n*Pt!@r5Og4+1zl;*+=^7q?(>r$F$*}
zS}MKM1)FW@X;R0)Bkx-z!(ybD`|%8rEj-OVMO$@u?e{zCXD2Y!vdPLk#w83(WgOgm
zGMi5%$S|zf7B4ibt*jGY0HatQ{s#ge*jzU8hqC52iFe)KnQNr@6`ru-H!~ScZ^xUf
z{fUze^Fp-h{>=yq!a3lTj6uyoDS}+h;rCZn-Km%d!U-(he^}SB==Js%`hn0XKd?h$
zIw|*-=U-2Rs{?r@t3t8bpz1gxG>jxvNtP(@_8Qsi>S})nUZ2$`g4?85uuqTOFovHf
zt6}U$$e}2wORw&;z}@lgC-}N{6*qV}GvMJVsyTnouX5MMJ~xHdX^e%Yhsq$doruaF
zPyoK>nat8!O_%s)1QlgCtL}iR+EM^UcXG6mQo)c6PM`8W&n%zF@+^I<d`(mX3NqrT
z0%N~*Qx0%Wh{Lkd5ELBA%Hk`PZ|Ij;EfXl?%L%+`eGP-8S2~isHPc4#WMBS9fY(hp
zN}30Ne=HI$lQQ{cTkA~{C@_XN=XXPwpn=Cfnu$L6=b}5O#2siK)4(b|Z&jVKi?v!?
zwt8!B`U0#2l;W&J*~+@Z5zGwJaRco0=47)t6U^-k@Whs9HUN&zUl2>$Etg>+<tCL$
z1nwH@Xm}|zb9bpr>0Y{RZPL@&r@i<LK}eV#eU7H=gN?ZT$SV|d4S9xm%u0PGzDB^{
zHzY|ntB#Y_u-ew7P*j~fJ`AZd=qz&jLW)GhG%r)>d*oRu^dk3j5tl#q!?DGMBs{fY
zy61nuBc|tlHoe>GYIF1G`QT+$Q)uM(!a!+}e^eS|fn^O=u18r6OzxG)1qr3gHHBfw
zc%kK>on+~&+W8oVjYyda7$h!}6?5l=aMqB;*vi#2$*3D1<8lh4WuIV@yVv+%=`%BE
zJmUNqE}8U0{*J@rSgQ<>VZ&rPJz+NF%D|8vN_T=sj<<S3V$ZK-(oUhGT=|hEsJxbg
zJFLDxgM`1ik-=6^pDTd4cXr)0pz~V(-1)`j5qtx~@tx&Y`1UU>7g~MYR+(&@%Yqel
z<nY0B7{^5=jk^p{&ioS?zN(71uOXpEkShwS<qjiSnN-r!oj>qF4Uqt^C_6*=J9E;7
zLu0%Uh6X~NsPm-Jg=v?PT2vB=s;kXezRb}`kJXn{8MKIkcYMMJ*&lR>m5O+u;<y%A
zjZhfom|==E*<l-W;z*HHW>gsUPuYVNr->l-uEU1I($Il$SYPE}ZF;^b96RT^H#^>6
zy(x=h86TRfG*tOEpKEU?7MiK4-z_{Tyi4T%M2)^B6z;D*JcAWBMzKQJrmDeAaWn95
z5P_w|Wu-6)6&rwWhYRKnwLO)cXuAjD)#9YsO@#PDZ)wu|3xr}yDTtz?C(7o{$oZ(Z
zk`?z)$sYLNVWM~X^{Kx{KpQRSQ3M}wTtb1gB<JImO?y9at|1*iZ+o!IBt1nys$Zqg
zd`H7Kv)Q`Z#wgVYw=<mPa0VLSB1(%@&Hv?N1gBmqM>@isBXUE#>i;xqK;m}mtVfv%
zl|vE5z)~^RFK>u)e2P=ApQAnbNDixaH_@u|FP9(V>UGytKgSG3UWa$H+qT1El>OsA
zYVC6MgTkdP$UqGaJz+LwTLt%6cO2RJn`303j#w^Jq{aK5P-&eVLK@nPMk4!Y#9JEt
zV6(`vgBF_}YmPpD&>w3&G2M<_c%N)^`A^(eo$XUh30~CuUwN~T5ay%aNV5Y3%Zp;K
zpR~TB@Sc3RRC8Cf+;!CDDo*`%P_4RVEU)iNJuT>0ti<gayEoAcmAI|EulsBz&rrN^
z8nd_Z0i;xw@fwUEAMAGL9@8uAUhxmaW}ao=0baqt5iIcE(nn)^CYt-`=H3W@2?Nsv
zSpD3D<wDBjqb`T~=1w+0zCU5b@Y!-UlFx9)h2{gORwGXIN^Wi1WK6uZOgm>YX*c?o
z$PC2mA$;iaS<!VlX~MJ(p^5$8c$)g}D@?$3XoZAuS-qg%pAxL(B;;@61|s`!D<K3T
zFoFqoxq&NAK&B`k#v(QIIsP(1a6mQ_)9Q67u{!nX^172)yX!XuWYsr(%@o{3rm%;d
z)-un8N~@!M?RFv)iD?zd16Kw(YG`!@9wx0Hr~IB?j=cF+EEa0+pH9Km^X;d^yyeTY
zzf?Tn{20|<VudRg6BQutQv-9bJp9Q*to)iH2}JTOqWKZXn-rltjuf}8k%w=v76sh^
zv^?KKM(T>zYFQp)X5nLKvPrK^+$L8a8O-Y8DEMO^s!t&S@LooC*>9gobJ?zSv(a(l
zR7>Z7+#$xjZ-0%-rda39tNV>0ByH<drHqP*@W9%)2=^1kZ$7EtWSBSl;nP!39)m6l
z&0U#Fk}gNVzC+@&fNXC4gFU2EXvIy|=7f%oZgf`>-#`o+ud=4JzFfQXFTni;eg~OW
zo<WGfKtceZl;<#Aq(hb&T^qWOX^XillMh==#r|zknED^qW;u)ORnpu}2>res@g4`1
zydMbHo_mE6LRn|K<@q9)!F~AyIUP`@vg*#fb}k=Z^<#07LNuZ|2Kl5^>p_M<wOoSO
z;4;>hgzgGkm8@l=X=u$gL8%xcZFM`80$TUr?-r|35yH3=gN}?&UzEF@^iL?ehLsc&
zx&;&_ya#8r#qb|3JOWA4L)Pr6nOK5*um<2Gf&QK2ux6mfXbCPp{ee2b#JIkDPm_cl
z=kSkW9z4ZB-08IV%^PLKp*o#!qJ*{(iUQnGeT6;l`L{JDq{~CgB{#q{j-MBaM^Wnm
zX&dx^051Zvg5zYS0-wJ7l=qL=8%_BkONTpI?5W%wmc43GC~*qE;?FwmCfXVR3pCx7
z7K^q|Cny~b?K(i@T!stMMN7<C7#(uru3+0mA<8W>CQ4`CTzNh=UhlZHi)eMt{&Bbx
zQTQje)fMVN-5-tJVv`p~9FAKG*;dYXEWmO?DT^)cv+eOQz$d;hgv3vX;_MZ*UydcK
zzErXq&AihaJG!dP0G=618>`PgUlX@x`bZfyC$<;NNu8Kpl7=E#LUKSRY&6{iu}A@9
zFkzk=7NnSjo_vvYSmsrxwaY92Wo)QO_)GNXn#jHdr;5%^d0yYbJux)B51dR^$2S7c
zQb-G4lOu9VU;f1eJQQh2rH<A5rT#O5!+~H&?L=zAX@X62wqKt0-M`>nk!u%?1h(g9
z{5qILeMZ;-ScUwHw)*SWatXl-rlO<j9IQ2}v@vn${^F?q<U-VY0{(Lxx%0yvjriT9
zV-56v0}(-X535xGo}c-z##rk_z0xj|K_m}Vey=%1nj;ooag%}ad%|hEzIk7AEG)$2
zC|?%Zt{!tcq}Ks(BQ)?PwSeiWyCZn*GGVn>gTGx1fQZpJJa!4GvfHYPf@{<mOe%i3
za@m3YvJH5{+O2~k*bl)Lm(t$f1ao#_;T^sF{&5jnIR5Ziy&_a0PI)$C3V4u$b#ijQ
zz~{&-ono<~gr+{-ulT3;UE6MQy=A`~0h9WB*b&Xo3VV__U1=&?S0lPA#ylhZIDVEN
zabPxHVZ=7%Keu`0oGOmp48bo95v@i@_Q!>=Dvc)#^0|__3Pb^jskbJ(oB5z90t2e)
z9Z54dih9<ozPAR1keVS2nWNC4Jaaa2#ROZnQdaW65Q&k*vYD$P;?-9(P3i*|f;d_*
zUmOqT^^K~$S2A4tR?-F`E*1+PD%ec)EBYq82ix`^Rn4OP-R%fDc{*I~&><5n%0UVV
zh)w%ey===OYd^|TMKk;DN-VE&SKa{3&n1PhW~>We<pH%}Pq1oNxe5(7lg8kA>$0`r
zzu#-uFvRxsNGY4Wk+)QfyM@4TFUMaL5NDO}Q+<r)QT+LD2r?pwBgu7<QIj*Nbmri?
z=Dkn0Bx>a|h+yX!Ej4O`t3~wR_!-ZcFDeqvVhWg*7bOd}48aAvghRTCbPRDh3h~Kz
z#DN%<GG7K0&G0MU;Q=NtjJ1u-W@q60u$RGmj8HA1rd`^P9WM=NeAUIst1M{h(HT7k
zUW?Eruv#zHh|{q>{_61(6RagfLbElcdx43|A`AOO;&5Pez1z7f2Uh(4IxzZ931Zr^
z60;vd<Nt?5`(dQHoG39JrsSlLJM}euH*3&lrv3+8zpQ)uGZ1++1)g{npnlcU7Zw6b
zqNau38*v91L@%A`D|5((WiKiaJ4$Chm!$-FPI71#7w+hWR^c@|s@1Q>EPn|Pbzrj|
z59zAE5v&Apy%=F5_0v_S>iTkArDJ%LmJ~ZOB<dP}W0>evo6Zelf#QQW{P2K=+MOSB
zCefq}as_loe-pVn^-};LBS<H&+so2Mm^7Ax-WX|Eq6mJk)@cCxaFsbsjN~LPuZ8{&
z>0`k+`a{`*ZM>Y(@towjw~+HwQd2wgKmjy(`Cdx;*xM~Oug*x$Q?L@v;GuxPD(Lt>
z=qe*^C<W&0+E4PhsjcoG1^l5(sGAsz_NO9r4;0C@V*mpIP3=5qWT=zWKzpoYU=;t1
z>8K`>_Po7T@`(JJ?q`e0NHA3k{x0d+o$)nLqOE+S@Kxej1yL+yEgHUfzDdj8&_FNH
zj$CZItE)5QWEu2X(e60Kr*757v@qa$>6!*dLREK0u$XF>=4e|m|D>%U-`%9eqPG0J
zRPQjS-!=d)24dHUDwZ$$<~^|0w!k&hb{QDDrs2wW1eK~;GHJxxmh1mnm%3FS^A2K&
zO}PtF+O&p33rXfSlFu;uRifTVFif_Gk5~=8&_{dvtVr$FTT1lLWom*iTt78VzwRxM
z1r{&F{%b4GOD-dpRYGDVvu|?M;nI4AHsP88XD+O*R$`R4E*cFIR1V6QyTxbZ_J-QS
z_c==&lAw`PkRzHDi<P`)K8ZzLX{B2gZp|7sWd(90I-J9(EQ7hJnu7`qRwey^fKdo1
z=Z1omW2@UYM_?c4RT?yS__1NQhBay^QImi_e`Rul2(FnO+AYdlmgT3qbOmkL0U2#W
z#TyQQPi%3Df^*ukp<zG`j~H1`kxHhJc}>xzg8?8!Y3sJ3i`=}*JZj!plti6+InjIu
zt%@EW$Y~m5|EC`gnsEDz>`WRO@-O)Y=Nv2Bj<>h*>4PnGwvBaGtuGx}8q90ut3E;9
zhfLamDa+6IoWCTJlie!<e(C-@0e-;#M6kx}mNYg#K<-Ej`cj5A*{pdcz|6d`(y`sN
zx<u7Q)CGshWRSYE#Q37QfOQwy&&Kq@=A*B_ill`sc@XI-GA?jtzQDBQ;yI7S!dt!u
zpIXhzDSYd+9log0#|s3CV1U^Ie`$28>6_Hs1w^k@+|lYwh9wOQU=g;y#<bN?ag0#)
zI)~hgt(Gq)u3$yh=Xacpt`t1sFR&#NYYybI+}h{VC2z9kL|?E~$6;($cDy7Yo9G<7
zV@!ZrcNryb%6uU~f8^ox9OZ^~Ko`bZU=p&t8f0+UbewC78vCw7=83S_!tM1~wUqD9
zWSqwa2{Uz?5<oSy+HhT<psG>pyAESYY~Sy2Yq*^!{A0|usZQDmg9qQB=-f#!QA}fs
zv;$!_?Y!a9{e*#BID-JfdMN%{gN_jQE*#^J7nu4Cn`1i>S>Ta)t6|5hlzP^$lDJoI
z*0pFRxJri|S5FnxC?(UMVjV;p2Q5^iSuo4NNi9Y+RT4&h%8@+U^Ff^%giHf0=I1Is
zQ##lW@ZW5w65H#fDpFaS#;#gR^o;^3axogn{Gd4gGQ-RtCVau$#3&S*`})8{Uj^dh
zON++u&CrX=UKWbTdC&=Y_L$R`1JCmE%oAW3Iel^-7Z-?*1HHSeb56JqRom341qAA>
zL0u2&y^v1*8cb%wetG_dKEJ%hrYzY>@dEFaE>km{E!IGXhJ`<xTv@VkXie&<!f0F}
zb|Og;d^LejJPE2{`8UDk3Po3lmEEu*?Bb5PB-0`abuWFqR--{w^1DdrPoov%sx1Z1
zlo^th&=UxcK^RbgW{LwtSPED;CpmhF4n+<cpuPxo-82Y2tgr}WI{)j@>^ilE`5?Rc
z=}04kyB$l4JKp3nrVV1OpCM<3zY3fR5X0S0_80RQI0pLu_YCtIyeNaFgGGz#zmxao
zGvJ~oSTU$-EJ*N?#E#w4TJMn}Q>3(Yb|P|V6QI%yHQKmWi0PQtcY{<`Gh=(aX-wm$
zYt$e09{^fEEzEcHnN`lCj;-upXVF1LJdoFt)Q&UtWb6SulP0C1oDz?DFu|<K7*Qrr
zT@Sn2T1Vl;DWEoA1MqWfODy$EV=kuVyW%^`4ngGWt0;?xPT)KY5E;yvi&}<;h!GGc
z=sZ^)@KR9_5x)i7z>U{epZbs=BLYu1P|4BpVUAyj$nc1mC})KNPx6qF7w?<gFOIkL
zxP2$p`7>cm7_{=oGcCcS`WZ3pYxZJCZFD_-aYUlVX`-@}ay`jn!#*uvwTEGt3R%8t
zR%1Z}e+UBC{m&^WSii26G@`qx_nWN*wm~a_0u~jbP8%a&$=GYoyZU8<7(4xWs00GF
ze4CqdlT~Y#CH2g5+A><C;l>b>@gwP4(y55DMRMofV%(Or6)|#LX+qqqw4kQs`lz2v
zirUq4EV>74&xd9m!x(<Ve4L=_xW;o(`cvy2hs@omiF%tz;4b#E_>Qzq$#6A4cptWI
zZO3TcPjv`C=@vQ2dq{gav3r$Um}<W_+q%IdI&NE5+(q@6UGo=-G~KYCjm`$#%)>-u
z5#nlM3nBpV)G5$a3|Nyh?~M$1OZWzh3`+b`B%`tz_1ojX?$A<Zap{aKYYAEayeXmG
zr8L4*uVA4K#;Te{ztaHwQA!%3HwX6l)IHnjHll$<5b?|R;FS|kSr@5`bR4R`v4)(q
zumf=9>sm7x1WV2h)Bz%xQopV7ei`SYSygdp(N*Ul)B!V}gTyyr@@xmxkaiuhp+qv&
z3yD;%|5R(}Th~Cj|1_Li=KB7qr1Z7E<`o`By_?M}$_8HzP^PEi?1_j~nIwx-y{}*e
z0W6esTc(oW)>n-qez@!FZ4)Ub^tVw_-JoeMIEKt9{>b;%0<yuKn?2;0z}ATcz&*21
zjPAtBP1Ob3NATad;>Y6{l)*~$XkiFdgEx>?#L|{LOy<U8-0|5)I4gZ*0wbeuOy+Ho
z)pX_IKfR=%hZ_zS4GMo=tn(Dw;Q`H}c{6*S1D1LXrKEc8n|*)24X=U($GtX-+MgZ{
zQ<Hp5zr^n$<Hgc3y!Jot*~sy(YKKJ=o<?}-@SGmw^BHZF*k>68TLR|xjkCV%EIE>S
zW8rxpGe-~>H!CEN{>H$_5odsa4Cd|t@K9o6ER<>qx+rUzW1y<-kc%Sf_`<6}?`l=t
z3Y!7d>=u&Ux6jszY0bhXS*Cet+h>awO{wW0np-dJ4vfZ*3W$A*He|$O=pJ{RE<aKS
z7R(6{>*o2JS~Re(XtH(14}9Jz(o<u8B8?osb2|(Y@3}4C?nerm%alx*e`mAj8vi2B
zG}S;<9d74AuBpNV5sR&+7<3AXSKALhk5vAZZibl)9Qv7i5tzaEBh*$sG7b8qW!vCQ
z{zby<B`j6Je2)P7sgA%nOvXMO<S^}p?aYeg+4&UM9{wx@x@8YoCAhgtVI7-h_4q**
zTzehZmHq8*d{Tf@25+?ul2Wy>4I<fNpCyu7P-h}3lpwJ7w@$D9lWp)jb!JHKTFIuh
z5=Daw4Tz!yQ2aSas{vzkLEnO>roCH4NZ;~rM#{*npwrD@K{bk|Tvr<&KZc=%vCt;Y
zc-EBaY-h#pNpjqck>E4xnU79&CQM7<+=1FH9+8tH^;If&7GI);brpWG(P0M1OW)d|
zV%Mw+08K{%S_9b1ZGI<>JoI%hiNh3m3nI`eSLju_6p1^ucZYY?3yiJR2APqlld$y1
z4-eY9Qsf}%_BZ^-&smZ~=!$14Td6fi`HHQ*TApHVRn0PY$HCEgMjp~sgLZp?*+kb=
z{XNjhodS1^GbaJ}+bxn>u49(l>8Sh4Yve<yS+NQL?m@6KaFUDmn9(RZ=&ngr=#mhz
z|M%v&$>=NoGi_(5HMP8*6oQGNPNIcGx8}P;rPDxiosFMF+mSsrTF}Td)q*^xbO38O
zMDZ3oxRoh+LTS?m@vW-53VHqeRp6$)F!IwE=tF=^=o1yO_S_~C|H5R7oc)k4I}`OF
z7R_Wiq)cBTh9`9MXj_0`>>5<jQhZ6)?~`cCjN9<00!s#YGwKVegZlcwSN?-%eQ=ab
zzu<;~{-~YTc9AY$zJ>mXr1|_O?E+&Pkt=wKK@e|tuyRv?b4L*ZRq|AP)>7AG<64+a
z0Fe_G4(p(D;50s5`_`gf&zxIA&47rg#e~3<h4)>2wKLYe6UdfM+)ogbz+qLJFcK+%
zsVn))MOe5_?B6D_Ymw!6B1T+IgsPSwsywpZ_@-WXAibQF=`VjKmtcp--jx7Gl9DcJ
zwCa$tlewBqSKy(|Q508A!H_nFnw9U^e;Qi0X=uMQpID{Xao5dYr!mz1r}z<`MH+Sp
z>ILhls-UG8(AT#s_s6udop>-}pUK~4VYw_kQIrLf(4JLWYI}MN*$kdXf%PUGE_^50
zLd)By`UyrlEB%(UVYE~h{yy@3skIG6PF|rA&(HQ!qX?<1&UlIVN5w$GTW5r)9p{V&
z=T(IpS1~Lf`faiAJLRWZ2E1*6O9qdxP!b3ilc;0|8nm+#%e(GTHlDH<oGD-m*a-t9
z^vM&v4npO*K9PXxe-(;qT~i-e(BfdB_8PY>RD%_`QFnB1nIPKnPw^W?o~;vF8gbOy
zWYUIIQqDv5(L1D!Ps=pO2D>AQzT(aFLoPSZ$*9VGnIg4n&R%|%e}1jgY<#(enW&Ci
zjq1)AI%UBr_J-3tg+3;G5SaOu#G`(oKN2NKLJpOXr_(Smhxf{<c2*}Y4qPm8^=IHz
zo>--ytRsd+7sOiupd{d0UGL)7n|)9geL?!GSo6v&#)a7uf6aBwlwq`jlEv%}yD%kh
zUjwuVwU~t-cqpA^VNnJ}FSsJ>FIhGYwr)}-YS5=}b$7<m2eSn2sZIsn@^x}8{Z6x;
zF&V>q7^p41Rz!A=5L8gzDSo#lD>tvJ4*<<h>oIovb5erpu^0!x1Ojm+_g_NfzP>sv
znwf1VJQbvA$WiFPVIc?lo}q;2vwt`73peW#G9{xKjV(v9b1&{?#r_xl^)k{-vwg%g
zHGk8f(^!4%`j-VJ5NTf0=?9}`(GvkK%qPwg5kl5Zz*^vPk6W=!CLp2T4y8cx3w;{r
zeECgc`AcCdle!J0th~?Ay~;01waqG08YT0A=d9{nwIdhUR<8bucGIth6@8^@>~DFg
zhd97ttMq*&g`g>(KQ<gDu*1qK{!VRqMV7`Fo*rdr4i>>G)zM~^NW0)gu&v7d*laoo
z)vS}M;w>EJ?xrv3PQo#sv0|ZchVT}voL9IsouG<f=P}Y3%*IDvmk5Y8KFQGnm9E#E
zdeWDp2IYBZ-y<bz6q@c}8X8ez*(sr9^T=W+oubwo$K(D3ydnjC^(kp6_NTgc(GwjA
zNSz+D{0TI`>3m?dC{K!1s8T~mvE^V2&96M9b)cHwqU^CV<*U;LE?dGIX)j{rJ09<K
zkm}y8_i@#wcsQC%Tw!;5qA*ClU9`A~oxv5lorvO+LmcVP4bgBBQ<-v!po67&%UHK(
zL$Gxz|CEal(72ZSrl6bI_?jNw#hA-O=b&Id{3dUz5uccUD5dyOX}1sQS4(4dq=Zq8
zc{0y`QO!mp$7D2Z#bh1@H6o%dILJ*3d}EC$Sd$!TQi5|Q{tb0b%wj9KxTDvrJb{;_
zc+$^bz>8}oJ-?P*`C)F9pncG1U!u@ghFb~b1osa^)(Zk#n$yrT^V0#d<kauF$1Vu5
z-(bw<B%UqVM?I}wc_ea(sm#XboJSg;F<AqZ9)lG@7q+z_;o&H4GR271SXs3{%FD)5
z%pJi68ulqcUzZQ2@VX&9(Di#>jw%i869y0E>ZB8jE%sG-_|zzJvZtd=u4|n`QfZQt
zVpJFXHx;a%t&LS;?qpW}D%^A(s&C5UO5%qvNMgTPp<z+8nPB?B2$GF2n2Udm(cTe^
z%F^{k(soHxJSHRZ1{BRO{5t|U3yQV90(cDfuZ$vpP;$*<FFWA&SI63Kw6YBV8hF`G
zs`5B6AM#2{RRHpWRx8L}J9a$E<;i)H(wIJY{G^&SaEcAL5Pz20p8mj(QNk!VD9NLU
za|PD&XhV7XeX$6xVgg%ea6z(Mutq`tt%*(9k-!%%D~Y3muTEiB-glUXc^nRn4-JcD
ztMMDD>f@0%xmL5Hd5i_n7@H6_HIH7E`$q<F1^llk8mBY((k<-EX)+9g2Z)p;=!{8m
zi};KtMbY_51e>$6V4b9BS`R@hb%czN@K^`9*+HbUq^sC$F1B(anxml)MhF0M-I7k>
zJflUDI(8BwreEJ^@}cWK{H;*g!P2ICPbjaVao+y^l>GG;n;V5aRUs<PmKvjep>yvm
zG<I6@I*f6Vcb=1s1(Lhn^-CxmVI!|GuiV}QD*bd`l7Pq!S%`HtE?xpusksR{g@mhB
z6PNKqX1tjdX6DwjNMR+OlNa2plHLs_bIkDaK(}*%W$>c#67368*=N=VoixIDy}d)D
z9%mq6sx0=;Mf?O>)u2wSIq5%z_}}3Gj?c0r8br6iBVi*GyIzixi{h2NzY?r4Ho-T0
zy+9HZps+aVY_Qa7iT2M_T_DWsu!*oUvlLc&YU*MXsj&bHhWg<w<3h;?W6FnBSfC<C
zx<D=})8U=Ab%nFRJS-h62Nw5=ZdLV)ke@NwP^>|7-ZpGY%<*6in`xoZPNo!1e8u4s
z3+YW{2wBW|3Eh)WVMsPMoRR`V-j9OjmGA<gauJ7WCQFt#A|kYyY)~cNKO?XNH!pb|
z{`>*XV632qbbz`VQsApOVKCm}7|vuMpZQ+w@XO3#)UmiA@(fil;k22z*A!V*qt;3M
z)?TQ3qR8=1^@ON?9lb(B!A=b4GYq5AC?w8+j@z>Iz!g>b6=pn6@j@{A0W<#?e+iW(
z%;x%@`{&bR+C$&zxjJ9lpGA6TdfN2wb{|8K4)p@q(y7_-=t&yPQVT9w6n!}X;RU=F
zxFvN|);fg3*1aWKdaa0AX`PbX{SQ-c0UL2Aa_}`i%*t1aR}tEg7M|z0AxFjX8A!FB
z)QEgUz}wb<MzCbtWUP`j_OcuPa~e{hIj!u?M?uNo@ggLXE`=p}nKN0}8SIm7c?{`$
zLt*MDhr*;xZew%T#IK2)#&6zFF$Hym>(y4&D7$T!l0_YWa>F*sj_J6XJPwNLGNubg
zb!nBhPZ##La4<usECsM7(Szj_{JNkI$X8E+yo4nd1KGu}_6OGB%yAcJ9x!nub_AU>
z?N>>E%Wr>?OGtDcq+N*9r%6&UMOmaWlZmjI#30z=xh>k7y5&~`s>~E*_bvSRh8Maa
zhM4LjWO34#?+Nkxoik75NQ$WouVEsI-$vRRjAeT;W<b^}3A>lyAsp2$e7A=|JKV1c
zn79&~NdJ%-jAl*9!!sGW%JTBHiv5gW^prq44A;xWcd@i8%FdE~6;a9--^Zhc0XkO(
z<P8sy6_C74Zkrqc9*z4Z<<KLN6-f10;({8srf&b=I(iPy5M9NxxRzJE$r&@=rHU)c
zHmPlZaoVyr9v|0^wz{HJIIRw7@{?=|Me<##^%)}uz-sH6x<(OP)t7)<uc8>k9}bja
z&^(W127$Vsj4a!BrMjYKOcmEONX(Aa^(ijrWx1|Fd#;X$)=h5`6qb}Hb0|S8dUf1b
zBT?F-LXjzcL3Ve-7NtueRa6SHL<$W)>qJkvDkPsTS_LQyT5;)Gh&hvO%WVb-E0Mry
z-ghJAPD|f5|B=|<$Kelm1+eK0GvSYU+~kSN2Y)E_b~0}TO20`Mn^k|MC;X}3kTSq)
zY!orOh9q~!gkJX_VD-3D><;_e0pueqnt<FMOqWc9Bo!sp^9K<+FaU&AYK*>VAEc6_
z58a{S%aa+;ngx`EP(-}CnVX#VHk7WjVH2i!ziZ2P{8BERiH)K~!&K~>(bknQYvoiL
zaVED``MRYLF={sTOL>f!pS17ecU$hFwfm-6*yr4}&9@PMd`NY$VvY3=!>!KSX7xdQ
za#;w<_G$Og4@|xijd_;5Lu3ohp#C|J8$jU|GX~j+{-gU>xk0=3gw?7^u`|W`PzdY^
z%^o<iO5%Z*YL}0wP5-lRu>>RX%9FVTlqTD#GM!rRY>X9&U+D=z?mPZWFw73nQN4=c
zhPu?G@xz4!XHa<2e&fU}P{_mNC36<=;upFCw`8LC58jIjyO6Z7Tp>p+twU#J_^QJm
zl&NBO1ZcAgI=X8WQDMY=-=IwTrHpmaJA8fos9bBt(8oX9Y3w)~X6#2!412WH<16&+
zeDeZda|9;?r>DAD9U~HtmVRuGqqI#Wm3}H;sH4@^2y!3Ohv}kbbWWNz&vE04;r$(o
zG6STK-pKoA@J}-w&+WBqXD6+H)Vsv3Vxg$_z;=G4c9h$rSMB0t9|#(TEP<#{Kf_W_
z@<=W(!z)zl!)OxGc8Frdm6M|K4;|_;-l$d4RVzxF<0yn@ix(6%+PZJ@LBu$7kNNDX
zq!IHTnu@s6X-8jyTxi}z?Pd72eX=)!<F8kL#ri5fma58d_9`<hCq$w~eU<3ft9z$~
z6gX<fDW*+L1`&3i367$edGmd1<V7RIG%?C3GiPI>DjUi$w+3@(1vJhaPPFWi<B`nu
ztx;p&vRXA7S{o{~z+bNE4We~8I>$2#@uP_TnD@g^fEw3W*ARO2ovJ%(oBQ#NP23^i
zu&kKYP_<8I2f}64;SMb+5sK~=mC2G`pcZPgDYDjofTgXZHjF*}nnLK}0}tcEv?K_X
z%4h-;Vp1|Kw7rCe<zQhdgiL*<S@g@)kKadxX;3%6*s}CJi;HJ#VTk!wB1yGLBkpcV
z>Ex3OXPzR(H|4}&oMynuMr>o7_vk@?cvxT-zy-70o0tu114Ktqe$YwTYd4kty*rrR
zPEC0LYui>>MEvF^sqXZP^!^T-Vns}}ugKW5^@6#7D}lxVE)wA4>TS04YON<x8@E(G
zS+Uusje*cp%_hA>`PrCoL9Cj2uni`Xv9^1U=_6;}8Bb%qp5D(8c-_BOr>fm#**(Da
z2o?kk3q;H)6?Qq=DcTtY`>wQKslhK_{UVz&Py`{)k*0eZZxWuwedtG&t^*3<<}ZSN
z)elBJ4V8Nqj6XT8mqT#%KEJyfszaSEymOHrCIOt`xMjAAc{D0!O*lQA+6!e%jgB+2
z(4z6LWBz^Tjww@41ErgzvzOEQi)1<^s4UG&=muY`GEH?NbPYaeT)L<_dhi6@KzvS2
zme7t#5N5$?Yy;|Caq0qrj$_SQ!T2$;P(vm~8Y3ygi5M{Lfq2cRccg=h(p?q_lJFOi
zS<L>vO+Q9q#HeM)t^Fc|W6Mlv#*%_Lu%)ecCT(9j^JgO^>AH}Ob-J{UFvY!|`rr5l
zbW;Onv~~n`C`M)&w3@w&>DUd5UxZa2s9XEl_Qm)RLZCdiqT-jw!>JGU{vts3A3&MT
zaoMqfIjNzTSIt?-VxRNouwGDQz(b41gcGfpYoNm#%R1TsrBZ=w-`VWD!~&n%+Q*ij
zNLMI3zj1E)>R5`*+C**dLx~&F@)Sme38ZV!y7=|pIr<i*Jx`*pfECtNUmd!J0Zal}
zTMNRgUo4)p&nzg8kG|>KG(NX}!msl!GP2x|I(I5p2|EFjI6&$Ld!~YqB**c^5KR@C
zt8|%c1<E99L7K-apgBK@(^gDfW1!k(q#M(C8bA<eBvqDeYG+z7VL)F>&(rJy9AGp?
zDx89X=2eo-?u;46S*%NMhL|wqtIZmsaDr?L2YD!I6~pYw5o-~ZZuhJ;yG-mte{beh
zE1Y!Xj3}EZd?l>6RE-?+e%_FNT}HL9AAJf2aab4czmEh=uYHAtN^gOM{g#8=F#&uN
zXvrb`87xd<`(rjR3ApRihZb&;)5HLzsHtsRibgkE-yfg})3SBRf>qQF7?MVYd8K5|
z{o*0{0PT*{BT=|MvJK6pqa2xg6o0>Q1It!##?v~X<b}gm?cV`JEd1;6Vf!#H`%Izn
ze7FX{z3H~u3-gD49#V4}g_aw-hlJ6BRb$(3k&~RZQ-kozf+LsXFU#QOlGA6g+=;W4
z5}uaKy;cYa8}6J?-==Q0b4C_jUH?Rjigm*Vn;02AZmZfPbs;tuVZ2C8#!Av4WK?40
ztc+AvHvbBi>2T`UI~2R&)I7JVwHdloWRX4LIhartuQ+suH>Bk6zIY!Ik2dWp)G%gU
zXRgPnNk?S0=6f!~F=@*AfOIJHajoACye6|$|HU_K9f8X%gwcEAAdFFko<PogccGZl
z4V|wBdtw>}9@8I4_aH80TCIi#t>Zx1BfK+H6#DoHf>F=EyDTeD;tGbfr8+g+mDQCG
zEo6t2AGGdIh6<$E$zykW&jN+%6%5saAG(}Ow7rEVh6`i-Z=rdJexSdzlA&%yI@fg<
z&bsk(xAS<G`wVu@U!;|z!mQQc;jV4=^v63=941`x?}d=GwV;=WXxaTA2eqf8I_u|(
z2?#&%6zWaaL6suQjLevamY4#glpB2EK@!6=OvqoFH`Zic5_NvjPj-%~hHm;q#>lGq
z@|2cvGTrb~*~faeo8@wOt~Gw~5*W3<OS_lck@t74us9Xd5>uf($GT_uDrVz3oI>Re
z`viIJo#uU{Y<Cn37jHSqADo<J-G44rumhCTA{t<R5cg+1W&Jtj^lZ2fnQ-1$7V{h%
zdP>kESn%ic;Q)A7y`}eZmXSeO{ru9v^l)tskE~sG&^k202)cPNdRi@*A`*WOjl{w~
z7${fAo--V|01A&uKzU^j2h~0$a}@NFpi9|YK)L9*C(!D+F{kUJtW2!@{kBYROyrs3
z+{ss)YNRK!zfp#}3)9R(fiSTUPFqi)Q#tUas+tt)nol^Y>j{&fFoqsYp`4I9jZ}Oi
zoEekAD>!lTVWQi8tXvMWOxX84pdr4Dd*iem)s%eMo3}Vr4KwheT@nGb-}cGehN_=u
zwJh@FuD@;s3D4{ychF*<6&7vDFXMpml*Gad_w;Euk$fbpd?5C+tL|-lH4(xx*c$Ll
z|3=`!fIGXy6ZZJu>96rysV>?k$6A3Fa+<Mrc8_4pCalrejHKQlGMeho@kfh+95mTf
z*DhmF7`mHh%9m>_y~F-Em_1c!R19p@+UF`M&~TR^HvVNQSiD3*ii7QwDLmfJz_;OH
zOB?gyz+!=CTYl_22H!+o%UOAnT9eRVnr&MA3RG&Ql?|e>cxZECg38Nb3arc?-}jvU
zG;_ais=W_&v_s<2lLqAOJZ)~t1(VJs9n|<LvL4id_;tsz!FGUhFhnW%!In~n<M~&f
z-J^4r&`~Q~1ZQ4J+<G~ZaBOJ6x1PzR+vjT=>3#9DcBTEJ>wq8m6F!lw4Q~*!C!AmV
z+X}cu{Lj+7(xliZt;<SRiyoV-e%i^&R{OVXy*L;2ESwQ-Hdue7nR3g2tmaj`VXUjf
zcA*qCGOPOx+|+wW=EoP{tB;4}h;C`E^Il;LNSdFfz!dl$zs1wEqz2K}%9NnJi<I#h
zNobv072Gj>D5e7n`^>DS+80+00)rFe5u-iF<e4&@&N#`^qFZ^}f<EhVmuV!DebAh-
z*dyL)*<S;a=|O6mSgrTM|CHwSc~Y79UXW>J&L&l%D6|+NeNIZU3J|2?5TD6Im<n|E
zF$t`iWCF?h{Gp;_Pe$*aN{PxPdB}o9dSp{tv_joUv1iLD7swavn7;^9QnH>dx8R9}
zNyA`75EtO;m6*#r8$k%CgTq#-m2viw&q{dtOevvB9}4nj`{fCCyiuI!p08g(z3t=A
z5y+kFRj)cn#y9=`k)s*z9H#gH42?+f{{yN(Rlf%3L}mUR6peR22m^3!-XsPuLHY6w
zGY9Yg07Nnw{1dK69EbHU@lm)+75Xsl^YpJG@_4Y5((^b!e83PC2LRz80VRAn9#Q0=
zpQ|Fc8i0x5?5Gvnf^v(tSpNW%_9!FwE^Ylv4$W^Reo;88Pi|V11$Iq6^I2pKyPH-{
zMYdP(Fk!NV(>+7=uM4Oo>SF4Im4;j{lp_OE==dc*{(}Dihr^rP3V7jtiRxtdT!^j^
zDyH<IPo-G)ATX_NLWy970wU%>e~v5yDRTS}3kk%w2;#tc%<GRi5pBS(YY&kpybMuD
z!^kpv@k$rv_5ia0P#;9q_-Iuf7x0RLicsi6w~?M(l>ql)fd`a-G0;Df4hH`DF{vT5
z;a*DL-}&KKj|q7zDkie53>19#jUA42Cgr;-Cw1P+uu2mr8Bgzg{M@U!PL1gM;DJ8T
zd}+DXhl2=Pi)Bw3DJ+VYAMe&C%0YHtm2B!(>IB}(r)I47;&B$(iyCggSCl|`<oVnd
zD$s+`g_}CxnZTBn@O+5}5kBFDa6PYJZMSm04T3jm@IsoG`BdV{11dp}>?F(ji=%6f
z^A>})%CYNf^}egIEEC9K2TGy&NkaRDySP|IYiI$iPY|{XQIS6GGJ>mF_MG#(1pL1&
zrBa$0FEI`5UCT=9b6@5!K$R;)a=fxxraP)jOvvI|$9^J36ea%o-iw5_MxO#-jJqJq
z=FiJMNp~zgi=GAmI=AGcE9CzGc@gOf>WN#^@-dKj-Xyxfx`X5a3t2^;LzM~*HPcbm
zS`ezh0#&el?L~H_TL(3PrJVOvlopSs;-_SGqK*}n00a!Bk+7*v*-o)Tkh_$%D|9t9
zsamgyq5D8I-bJ6ptIB?ZoK61#)Ti;pvtNm_-wd3Qg;{pQ1aN=>eR|H~E!A`VN+QYx
z@4NgJQ`}rzBOALlH^MZGp%Nm=z`Yx&)w*s|LIw)CESnmCFaV)U<6CT|ps1OXVRKOO
zqTIn$R=HJuPRr(gXrWMuenneXPzOR9OVV0W=9W?mnKB^s1R2I%(y%|k*|8ff0ZeSO
z(=?8AytKBdt@u2QCBPb}KN>2jk5b(zK%#}}2m;JPMDD&mB`J|vbeIJkHWJE5Nm2ZG
z-^07?xt{8QD6Ce!m5{cm(mf<=P~xN3{QE={834YYx9%*g3T)AYHV)RbP$&Rm^`0+`
z_!+?=R1182c*L_U3Qgsq`T=F2ST5<Cp^J3zqdtTJp<_}#V&guKW!!+h^_9uo=CHn>
zpE%?=ij_%kW5q9KEGd67=2l7o0uBDtm2mCGmf%2KPZWC{H)}Qyx|TAy%y%PWL*7a#
z<7Qow*RX7Ab0e`C76B`K!X&s=MT<e~vh7q_=+O~-0C|aI844rdYQo2Uu`;|i0!kkr
zWm?X$uj%mmB9;9bG+0?i*JE)LGJ|2iR|D=3QL(Be$18Bk!LP7u!3-(6Y*mA+w{D?A
zlvHkZa)@XvRZ8`#XWA%=yq0+>S5(yKKuTC`$&<BLV*=A4*MtJWA88$JBIQNx`S%GE
z0&Ocb#pMwgS;yQ}SHTZ3WdZpV5M{kExSYTSz0UM@SUU#DbDC!}Ha1sc>Es9kW7t5Z
zp2{tnYX$DM2TtYlc;MZUArfb>9cGp5kOM;$_CGpAo}W^+7Fzx=Ea7j{C2oz8*<MP;
zLT>*6YJ@9W_xYB!)dyhy)yuN_(H46Sw_87@41N+9mD7Y13PW=gX^*mi&Gu{AcNxP^
zwsTe$E)oTLY$+=k1>oYcQCPU96tVFvWL<37{1KMDxEEFOLr3H><WnPyZOVIrz?c63
zb<nGKX7VqE*%|tXAHBpbj2wUxfbB|7fp!WDe@4LX)5Awax#}b<(o<Cn^ADGbd1qx0
z0Sl7FrXN-8N?e7ZT|Dp|{&IzD`*Q_ig{lu%2+A|O(!{lO^C@c~ACW9zQtJYi0{Ec8
z$yozssQfbIxT_jVpwVnp`nSp&;LhOQ^N@OhVB^^B(PF7kS9Lj)muy=Q&jkSWSPb%P
z?`cFT8RhY0?}EVKZbLv--G#qovW*XaYRslqPVm(l5?ZW_x7M)Td1rduY83$`h@45k
zI`}61a#E`erUO-6lpXq<w2MV8U|k^ZUyPrco1b$M@rKcHth6<IlE9`OM7xVm$v=8j
zUxQd=y2ssvh7`D0+`4Hy6@2iu{1L;o8p3YxeU$DUVYI);$hiumr$p~lmnxegj_076
z04<57tRXK3FWlM&0H6v0@FljDH=8(0iSiS#YwmOSfw{bGG#HgYFu6#qhr(N2JQB;P
znYB_3I8O|!Lv>h&3adgW-4TMCLI8B?-W=e&xc>mDkvS@L--vZx4|+p3?y1-LiRx6h
znfpaeACN!HqGF{Yjy;2j-w--PO(2>iC3LS1hpr(+1NQwmCy0$y;_4zdOZv7Nk|NSo
z{utk*txIR~2R7_eza5`Ly@}0np?~zs(W=XvJRusVNcf7tm+1ch5~Gs6r&J=6Aly;)
z>JYE?nJiy*bMrS=JNFhX`Pp>TmrxbxITYu<Twkoh4bAvLG#}dF=wFszN9UqH`a&0~
zC|`b8?SbvxunhP+0FTp=3wI3PVZz_I5ccmbX78;{l%lp$bX-d4C(bu3jIH`sRN2+b
zNV((*4F$m{sYtt*3cE^_*9n+VYJT08A7NObc0mK@8=k|+40|e9)U>U?NUSi}t8i?!
z%H(yx`FXHXdJMSo$S1Zm)XBzCT-TteJ5AaERy8W+Or*eUY`lRFe@2a78!LXITp&~8
zv6G=rmB>047!Nw3tAw|x%zvB+v{6B|MfeX{Zw(KHFYQrf7;8sHJp(AX`Hg7d7>g3B
zv+)Z&)3R14*#ldkza@&kB5)BN1|?})mHa}(0J5KI(!VKe78U}FW9C7!<4A0!S`1eW
zs@n$TtB|-tT8vQmjIOf5w?m=zEXK+Q+m}&`9cx+j5`{HqccA({<?Ee-`?6zulE;v|
zuwAmtf4csTx*)PxiRm?IGl2K)`Ghb^WzsvOquBKNV5JhF{^|pEwHo6Jci7N?_p!3P
zE}@!ZV58oC0vdg?Rjh}@pQF)((fKp+33oo#Tlg44Ee@vt09VK_Yw;E0!l@`1=?Eeb
zSIectYfuOuhv5eLoizFEvg)6>H*cOw_7?{bGw`x!ah!tqG#|V*mET~Lt-YKLnTYiE
z0pEy&;c&ZK?s_d;Rd8Ic8I^P7gKEk<_^3CBZW^t5l9S>AL)>Ai_Mm<>N_RGdrBil-
zoHTHZdq_en^sORcprkjJn4#469aOUKxs@@c0cRQbP;Wq3(Q=kB(+RpAf}o^}V#e=~
zR4LC1gjJqPxv|QcB_-rkN{jf`F@=QEWAiU_p8Oyx!Yy9ZO<s?LKhz1JXx>y$eof!l
z;9X>9ol-`v!pT@sZu5|&1i7IQSy`bE2YKa!wPvU@>_yS9NEWWaZE(R>xT|&hF~>*Y
z{{Z3%z^D{bB2iAkO4EUqK)c_{f2LbB8*M+##Ah$ze>(^3TfqMSWTO5HCy>hg-?Y}E
zcOHJxQ0N?D?<o$df&~_;>Mnx%x{FnkDVVu{tdQl23y}|MgKO48Yp2dd;oUa17Kcq`
zysuzHr!h1`ttucLRgb<X_9#~+X~no257UokTX9L)P{Mm2RX}4-UK;CN+OZl?QJQ!s
zQMNlHy*8MTe>1dwjKP{!P2805mAMHCJg87R5o})cSbjuaCTJ~YgdH{UaTa*FZOII&
zs}RRlKR*nz`?KIG0b~Q;fwGVV<wo={KE@4(FJA+O!>A03dKN_m21nn-p`9x=ca5J3
zM@jF!2Qa^x_Toeng^A!=)8vJ)!%9G$)5*j$y1mAk)FYUR4ST^GuhsY5)TM~Qc4x#N
z{4vs`p~4uiiDv~=+#puP#-t?&$>9>?4c*>nkm#KB_zZN5b#SYgO^tR2#aHQlFjM&;
z-G$vpH*{>jViE<1Yg6;WcSEbu{H#hT8U@fXNRVk3qf3MOeMGG#IHLa4JzlbkOr{Ui
zIaLdEpGVBI_#BnFR@ABkiIA4*M`LNSwW#+CNbdaOC=8C}!j+W&04d33-jk3Vh8B<-
z;uog1Wo2}hTo3aLUlEbLl)_4zaBkY$-)=9#3vaVXEip0E7y_}L*K+#Qz(E6_9zr(7
z?R-jlv+xi*QG5Kx#}zj<x%&~j;Yy!I9A@b7y^mJ;0{&AAH^*fgiU%PB2sgd1!&a!i
z+`VO64R0&4?%Y)<Si|&MIWFGU;(Sw*!LVF6s_>3D{ot?2;pP0qqSMYnM_LS>&<+q=
zYl@LVVPQZR0GN!+B<<|6IAq>QYPHd{Y+W}M6HREoKw9PND8Q<t@X8CSs@H^ds`ryv
zIC+;ZGOcnh-@<3aYPGge5UwOT(V+_$$z^O&@i!Dz8#iq(7x`hRb@(oWkkvEpISG*c
z8XI1rGe9mIx*PHZtM?ya7L~D9)QwK7B-a$`K_;KZ^<ml5G<of2=Bibu6?Gp@8flRf
zeBvt=(_&>-#rr?~rhg1QlxFc=Y{UxYiL=zMP7w7El?1XKz^P5h3IOi~g|w-R;R#+q
zDxm`&>Y9C(D{Df>xO44`fI*^WC9c!P_Tkm{-Zbf-68w_ms41zGP`YlDPHum|>uqWm
zq#C~)#ozWufxMg=`IHV-yAW$v=6FJ)-ld?c<Y89JZnAVKxML(Wb3Le-T!wGH5jT?P
z=dl*WTL*aHiM9;?0C$96FPq=q52RM#m-8q&$<EOXl^|s$7T58@S)X~2zhneYqJTb#
zs?;5po7N%<!r)D71j|h61;zJURt$RVFl9jKmWhXE1FeGIqTE0pfVL~*_BMoq=wF06
z&4`s%3Lrd#MZ9Au)jp6mxU8F3T7!4y;as9Cm4kChUN7o6f-*+9fLN^m05jR#6Fgyu
zn7x)cv_lo~pTuR4tbS!0)oT}gY-M3vWUAt&{4x51>9XltsF*{ab4NImf@I$eAG;a=
znQJTnqXJoI*sE7*mv`&t3##yn2DiptviY)wpBGF}*3H9t60PpdJ{-BKTkXq2za(mf
z6bz<2vCXKOiB@)g(qp7j1E;@G$LLUdY*^iMRT&jm()^L}6j(46s<s#fT3@RbM!>iu
zMs^X!9hQ}@${WLBaa=VaZq_aYCN}>7Y(uc@^V)IQs~pnPRcxuY%13LPledukRc~MJ
z6<m}<(jZ!aFICS%11^SBu-JTwWRd4AUgCjj0JU<6R#w@;-trs`n`~jY;rRl1mNVW4
zXy~fpDp#Uh{V)3?ej!>}Vig|(5sIKet*Do+Wa0O6yk4oi=N95Q`^|#3q4LEI`BJDp
z40$aQg!pz0f+hhP{RZe~aaD%{?&5uHDGDfb2FylBlQTr9ErdP)0Ep{tY8Mfga^C>|
z0Pw?&2?DJ<P%p_+;x*!5Fzs|<jV!<kKsZtS$LbxH_oOMf?Q8u^#*7c95E?JcC%5$}
zr-Z0Ljzvt0l=K{>R4wxt%r;KEE_e>lYp^f&AYUTfDN4kvV&~`doqnNvYCtg`n;@-$
z^E#@A0`W1FL)$0JUdKC{)yrC?WkQf~SLRbFt)^#)U`)spGBtv15e<9nLAm70EY!cm
zOWz3p0Lzil9>AFM{Koj%QB@i5UO=UBc`b{+hsK~-(_M(C%~S4H3U=xc@2u2$v(OGr
z4ipi}2H*IaDeL|vEk6?Uw!3h)tc7ZFrC6zE-Bj9HFbz`6(x|AgcW8$7x4HK(e#IY9
zSB#=8MZ2gPGvzNIVYK{Cw~b1$x|3dCC3N50Q1Dw@1Z~(vcb14NW>hJPq<rkKE|2O8
zv&#I$bOmd3h?aTvQn37wsCvG+9W88sY0{6zN38aeQ)b4EASK_7J-EYe8FTg@{6SPe
zUNVP1$}XC!v0(uXtBFrywfwP()~NZe2qAxmL*N?{?Inte_Tsw%9UQ<$mb+^b)$t^B
zj6PB7QA!83i`U{1!PaSIKp#W3C^4ZOVk^G#Rkh@>^vPhpE;>dX>r+q)4-%8}41C%-
z7LW%l$k<hdGenzx(P;0;z;=mmHL5=>yQHYRAYKp_s>-|aqOQ#_@IzF)a9<!~>|>*V
z0Jv4pNh}8X$?_3(Kn|g0sDH@oZEE5qA-&H9-}exzwWuK*P!mc6IRnT8ZH3w~-JAic
zmJiy%&c6_KqV{sAKzKj01%L!CsQ5+|c8>$*KxiAUPr4_pRg%Pf)j)88YRpiVuY{#r
zFJi|<is*v$R&DvesDZ#Uq@`a3Wxu`{v{T}HUhURjBN})bc?PDG)Eg-ImOwOhf<!3T
z4_@OJZVCo8tHNy{EFTba<cK@$%nxQ;M8~Ueh1sy$B^G<dp7*7nMDl{gf}1`M?>k#V
z&*l?FQYLJpAzcO7_?otupOzKCpiY7s8vsP;h;lGt<w6SWX)F*OJ1f*!4k;U4#qY2~
zAru$@{a+!mH}mijcAR??P<S6q5qd@fp->`?Eh5ndTs^*95oNO_*DtjIHLD@kmZ5Yr
zZY{iMt%a!eC<pq64&4*U>Fi;D8)q~R@SG+h{{W;DX9;zw%g2Psclmvl)T`BhSv@<&
z(HOM=lyG6qA$@!^)g4e29Va2Jf~#}=2n;AXGuF|yzGGfGebK5-#QiGm{6i@o)G!-N
zBjt3q=g$0*s94Pc3(N^aH$<vKX3r1@kiCLESDYWpq!{6PEY*mu_-E4Ccrk+CDrHu3
zo{$!lW{HGg`i~TN6plw=H(1@;wdo$Q;4p%L<4S#8Be(alfkYMC@La|DF@v-U5NV^>
zg;e;S1ImTXzjl9+7)6CmRpbvuI4iX^MNvQ{ep-f?v|>21`)-#>{{S-<Rj3lt9HRir
zzscnIC*4csK}aa5iz=fRqFkV=ErG@cw=Zg|?lH;8aBu0Ct(BI(D2R8GDEy<75`qXH
zzsoeE!r<R-m?vHK7gMqS0EzU?YME3NOQ5*0R-a{_LYjlN<f&FPc>;D6A@C+>!Tv&l
zp{rzdr|V;%%tfrB$WpUv0@rE)x!8>y0u`He4i_HM6=;{C=@1gcK=vk{-1#e$M^&0l
zSK_1M`D^$gKpQqKTdzawgrGL97zofXd||O^e@Iy(id+g?1z9W&y|x_+-Xd%AN#?8Z
zF8#?B90QOxIrZ@<Z>1m169w{6JCKj%aJbezj?0QK334MLzNA7fvJ0+LM6ZAi{l+X5
zST5Eh>R<C09oEi6b(Y@pm{Cj!BXn>-%%v$5ojV*uSCg-V(8}_obog9JUBRO+P=4av
z1vmJqbgqT`E(Av9pKN7jm{Fa8zpzRUt2-Lf!B5DVj2D1&WyM_)-4nml2!m9ce5lr!
zzYi37_faG5`T$5x;=8-wTP#%fPs2Lb=ql>`N0AYDAdUxR?#~Dna7Wd;3s)~EfUT3u
zZA7pt?;xpGy>CNnHUT*Gj=J)Ra?~vPiHg8edba-nIZaNw-L@M*Ocb_f!{#H<TMAJw
z*k|J_r3RdhV}n~)Rtqy?@;7WvgOvbQ`;AJgFnVhiTEHT5ow)BLMf0VFtM<a|Cr~XR
zfz~d@fdtc?0l)N31y-Ozw8P>CZ`JAKt*@`pXEly7auoDy@-{V#EAY0wX2aB=#E=6@
z^Jd#ph-g+*Kw!%)2zAiq$7mXQz5J1U?|`=Y_$U6^#wOPLIYc(@CDitSFKRDvC&qA{
z7RPNNrV77OFfe8JFKjd-l|@-4rFFDQPF*tf4f&c~sc^ji0A&hXUDpX+=-~Q|fH7cf
z-cA!}Vx|tym60!5-m@cY9b<j6U@;!cRdlF={1SyYRechL9Dj6Z`~LvN#$9DZsH3H)
zm!Qj~Xb3DF>>&+eORY>)xfbYA0vm@F^;T84-oo}CR>1isX=DcW)_ljXVQ#rhZjb)}
zBI>uVvMrpWbM9eJiFbRo9R{rxEjUq(#A4L9+9fF(+l#WwZ-Xe(v``L8blPqFM+ZW4
z?xp70d+fF1zqnlA)iHoyIM0UcYgN>bdD=v@U;d!b6?W`p)iU3RkkHkEwJxgb(Tu}l
zsx>%SvgD;LQSgueD_gk2bsz!T121Rzip_j6a^T>3Gg_2_)0YJE@c#goYS4F;bOM~7
zM6WP99=8D@8kUWi?M$We;qt}@9}6E|;`@r1=kePyx^@(qMN;|?5W?G0cA#ZG*=GL$
z5cl7n;cz!tL4e6NDvJATw!e6_(nk4k7h@6oZU*}S=nAao+zqTMQP?*(Rz<*+`4#Jq
z+#jx(&qbqct}8f~q8*h2l*EvZfu)41f>MkMwk^h{!d}ZzM#4iJGefS=hs0^A@bMc3
z@+{WV<qQ$LU@aN~1vMxi3;zJ508RQw{f`mG9-<oI=KX)v#xOQr4MtCi!_6Bz!w!|?
zH<xHcWMM$nWI{b*H@1iDojxjIU`G;`h3phq*Hrml1P2e2w*9~XK%k&L317F2I6`k2
zD%E|<(5r;7A`5J;9>%JAA09;|b=uN`Gc<^(tWXU;Gl_mz>?-<&lsN^UhFvp?;Z>Lu
zyflA2APwAJ$HY-Bh0&w(5kjbg3oKi#m?O-aA90SF%+T9_OziCWg$I4?YM&PvHR>v8
ztd#O>{hWfz%lUv^V{l&;OrizWIH=(ybOC%{xrL2>78P-$scVQGQ&t~R+IDlXsPHfO
zi&kyGC~K@CTbN3`du;R_sb<^q3o5SIVB3Vk4{lMQ)pk|Vz<)BF8vg(n3{E~_6@cDb
zEYtkKtMPKOCq0G*3++u;U7{)VR($LcIZSF-L3POZEWs41ps!h96zp(5{qixS_F1l2
z-s{i96(2)E^AtNoIWnVhuu#w047%7iFA&!^en8N4Tk{<WW1`1RXx{7w(`Gl-m!NPE
z*)Qe<KX_dxQxq%9+laIGWJ+Cv3*@8x3!MJ|_t?1lO1#n3-36zipzM8u1Z7l)lTgSB
zR0*jRM*jdhN=o%QJ1BTUuGrjv_u{a<m|d)DgkUh5cmu;0E)bKN(^hZT^NxH<Cb=CL
zs?=~}LYjO^t^17FMCf>@qv-%FU`l=(&$bZieqnvn_SNw%e&S1p)PCGCeIqPwqlIX8
zQf1NiYyou;OMpcCn_re>sH>&NpL+m$jlMz8Nq!DinD!ds6-vEluC@aYSxaf`x6$|N
zOH2Nxo+tW0?0Anz?K$aUdoGXaSwhagl7J(Cti$$>)G`NCN3=r8;TGkXLGvz|TB&LJ
zBCc9nFT24Dm{r$)%c~W|N~{U1C6wqrh(q6I{Je=-0ag)g)Vqomlcv3nejCu6C-6%n
z2d2Sq+87j#fws~(TJ~MrRl%;oRSc~(zv5f?*i+=T1qaP=(I~LlMIR$pzg&q+<KkNf
zY9Vyxb^?lFD?ZbH;Xf))S<)@fU<>F)Ddo;bw~@;cS|@HM)f)vU*yHgtZBnp(YU}GX
zp?z=7L7NMIs1yQN9J<RsyBC1-GcA=he$1W!0OmC*RTULxTJi^b30avh!Q$MY3)`q#
z24Bv``C44NX;ja{DT{#}k-FN7Sm~016x1w@j>qze)iUB(DAs+zTh~6K0BDO-NyMeW
zPm%tot`~dvH6`33HAti4<7sWyutQ8}`G`uFUre>9Mcg6RHU)0)QY%MM!oFpj5CLlD
z;R(M~aQ0N(T`m1WE{Yj4Qj1@-y8(#jK4#E%Va}*MGJB4fH~ea1jFqsR?%fD;Ya_!l
zdX{w8&5|XOy27jnmqIeH$k|{+Jb>O*9{Lc0`6_bO_Q22-w<8LK_$nD@rKh!VTW`(6
zz?toXT9+MdQ8up4OP)6eeSN#t;H`ca7Wduq?JsI3Lu+Ckn1}d@@@no1nTNNMfa`f|
zHiW_g@Vj3vScM@=u0<DhUD?_ZAXNgaIG!Y`e@k&!b5+P2CE$JS#(@|2deZ!{UEx4l
zR%uc5HN0XN{@WDL*f05x+NN1cwx9L?0G^CwPe+L365LC570tS(E<{B)#<?nspK;nM
zkssRzHlxL;900IE{{Spk1;=*wyb{LSR$Q>C=eu#a6jo^FtQr8{VbNK@3Hzkt8FypI
zfi6o>IB3LQL2nBX`Ds>aN~rLQPQd^diq>Y+5tJT#JtLTvI@&+tONbO)<<6H<KXF?#
z=U&PMxpJQ=Jix&64Q%wtHh%;`f!M<w7?^}jg`;Jgw5SD-RxJwhpjv96z^j4}jwDS(
zhufH!RoEe>8h&a}{Xdom0Yg;|O;(DBMkH!iXV)S!JcWQ<5bSgp@)JIR8EI5x@Ew;0
zF0^HmU}pAGCEY9$fk8~QbZ9DOwFEBDuoB8_>s|!6e-L195+*cTxqCOiSY;cEy80n|
z1zY>vsWb~E*ylfZS&VhEo0sG1qAR#`erHSRq-%Z(U_bRhfQ!XhOzDHk`5$2yp<!R*
z5|rlEKqU^GeYtZT;36zuKf8@E79YWUmj_zfE?V`&$lN@XU%a`&$n~el3hk(-C2$3F
z+v^R#661d`bIfgDW7xRKP&E2xkd8*Gvjt1bC0rC#N|xqR!C*xZHc8MZTCyp2iU!-5
z>3WmPV5qXDs5P%HQ!O7UI~J}#3V>}DcAeOw6P*GsgN_g>Rdj=B$lY7yF!^Daw!Lk5
zljrS+Yqs3D6=2`nES1Z%e-$(4b-3aqz229~*CKtX7=aqOe?)E(<bEY|O}d?wf>>L?
zA}LF+LDp)+_&^;3^i@<aiH!lqgKO$HP1tWQ5Bmv2C6!>LenjaXDqObNLO`ruAw0v@
zQ7s2GemDu2L!f;GSFekYsMR$#%k4`ETXoy01AkWlEXC~b`HO8FBD}qsqd_Sx6efVP
z@_`qSw-*j10x(coyBmP-+aBYDI3rp_4o(DtOPGL_5Mq8%9)ziEc4$9-D9T(4e5wMh
zMT{{?M7`?^e#-`%kOF~m6dEck55&`w?N^1EspS)HA9DuE4<kaKGKg=cqN<W8T6-$Z
zUngIc1P_;z^cQ6Gr+wbHaS>{>DhvZ<Y#cm=UsGzO{{VtjN5`@Ca)B%d!(&vzEkLam
zuF?I=2Tguw=M_oP2NSIGmUthHG2r@z-u@hj)Zpl!B1#h~M$4j^=~{`1tH`&tH${Cx
zoena^j9S)is9WpBffBX*W9-!ikxFLjuc(N(<pO~aT=_O3dAZB`kAU74@3$<4fE5A>
zwQ|Cb3b*~sYfEun#-8%%BYaD%@=flkAya|21${+GDGm9lx!|@Tr@{~Afvgl8kKkB#
zgwWp84E`w9=0#OMIgjaL$_Dn7e3w_T3lbGmsC2VIMxTjKirHT3t7^SgA9IjxxR7ec
zltgo~n}@oBf?vQ*1SVY+YcDu9<{xEn8b^X5P;hUQ!S%R+aSqnuR>R?gOZKvb9e|x>
zs4yT3Rs<Xf7Ek!O@K_jJm}+Jr*9~RHY{zb?6?R3hBk+~<^>r&Hvs0OP6IP|0`{`RL
zLuMB`N~R*i8OkdwVPw^8uMJ~O6$18xJz=|uEOBfn)j~m9yj|iML$fU|f7+!_1nQpE
zuP$oFyI-_Wi;FC=*rdM@b!Fd>KtD3RSaFs*oMyJ1gWyeJx>Gz(kv?F#w!wLX*N|x%
z;dSBre6y}b_wy<Bj#tXcqRFNmV1p=2y%~74Q-hsDnnLQ?3NxzX1(~I0St#qj;uuOP
zPwbGaTLGuSsum=fM%yLrUWEE*+7?fImMaKoyD6^h($UeVz#)be(kR$CLZ!Df*oe0N
z)d+sbHD8J&5OrAxz)v2}-&I@`P};U<VELjFuPVOf>d{cSx;tboJ%LGeaH4^2uttOn
zmxAk7TU(l%?BC)p(E1FcPt1NvZ5Uoey;a&5webCrL4S1a{0Acm`EiX@7@Et6epF~6
zI(}J0uxwm87#?)7Fsi+NE()%TQpuJ5RYnBu<1TK2X&24nmNt{9_mN(l*VXJ$t=nZM
z<C4D+w*JV`>Q#O9itnON-Y-^*8jOz)GdiDtYGZ<v>L^+1Zd@VRyflrEv=nI#xut&x
zW1+cf$_aZN3jC$vX>GCiI{yG!ZHG5aT3l=47%TviOIk6q@-oLYfx3AfTFR{b*+T<R
z_=KgZx*pW*Bh_i~)AH1(2mB=mjKr;95#wjlyNod-6+VIb18Z#(h$35)VxJ;?+{O=z
zViuO6LKZgauai=dQ0cFQpnSohf(apm2BE%LY5;jeLw$2|%ij!n7B$qCt2(gwp5e21
zxCK6$SY#dgw&fBd(2a=4+duvwhKrUt^fO{5D=v|F0gV)>6ev(Y?K6{5(+-dQ-{+GS
z4_6Xdu-a+n-BHI^lTC$GLAS6&=_pw~HX25)8?r4;M79r6;Sl+Bp*+_wmk1oZ8l}$@
zE9I5!?OeTE!e?1`HS;57sYE}pRYmI6u=Rt)QvU#XDZ!16rJGHvenFQvK#uO~Lc`%E
zg7`K2R1rYONKJ~1xvk!^fac(YL2k-R`DK(}+EAd}fLU<0rKxO-LaQoRP)M|63oer^
z`nvrOz#v!S8y`2$L65BafWPX0J#KtL>v;y%$_n92Z`=)?*aF~?I&I{&hYi`%p{}Q+
z=f~z>D}CS}L}Ul)IWQXwpO#-hCd)k9g*WV-!3TJ}74--g*jj`31hMx&KjDHcw)nyH
zS5iwl5iCs+iBNMfoPqWi<qg8k)j&1TTlWpn2p$tLg0LYIXtDS^5R9r%K^Q5b8vJCl
zYRk?RQW#n{j5#Q+aG5VIqsF6DD5_PRhYEbz)cJ{VF3!?RE|}EV?6ALf#dflf<Yi)b
zEkf@etNg-#RJDkJ*#pCTueE`!H0LT1iz)alToV~vI{yHSMS81Dg7msN>~@>SN{4#&
zDh#1&<(NT>#09eY$07O}(T*?+@*8+{SdLs`<UwZ80x9K3MRi4ZUEp@%YP|_b@^xDv
zfZJfpl$PmfW9fn6VtQ5|Mgx%*yWxtbg%>Rovz{_t7KUsV{PP3!tx~6+<v^VTx(MP~
z_i-H{2y|#q5*$iVCAP|{dldm%oZ3_|BG3g}aa@L@-H9l)9@IcqF}NpH@I=A$?7w_2
znL49_qp)Zl{{X+_Lk2w$R}wC9g5T}+K;)qPN_GV|tZMga19FP&%8B^WzDA9rcE7AW
z@;(ClC}`MAyrt6^B&G_r)$*}6i`dX-RyxH8vdUw4lBcTGz7x>a9jynqRsa`@hqkvN
z#R%i!7BLhqdyA<?&zHm|RDgXG^TdO3k`z-z>c|zr?Yd|}G@3j$QjFsb6;u!xIZy=G
z(pjvvguJ{Zg4X>-W;7OKEv>r-!{oM&dW!VQibsG;EItS{3zwtsWhp*({{VQbiQK7N
z%&B76&min<Y@RFT)_A^lHs4ksxh$(2KZEl-M^;>X&ilaqtdzmxKtHquLBuqAHiQ*6
zdCH%r5S>A=vevmxb<qwHD)!2zimQQa6(+;FzoTk0gCbjeVQ#X)CCCjk?{zSgL#g;Q
z7Mb-8SnDWQX!qFaZG*oIL|rTKOQp&%W+%|goXTmAqpUv_6ifH^h^TE%{VdKprLLFV
zm<ObO_b=B~j?3=#Nc`L&O_fvF<Ge8Z!RLd&81@Q)1>5&7WyJ_?qfL}VFDdfDpvLI<
zs<>;23QG!I^I;klV7W^Bg2hFu`a(nDVyl$L=E=N<85}Jsc&kFbB~kwX?$UwyifFQG
zKAmO8pjQ5#z>6gZ2%yRG$_5v}@{ilsZX!EM?A;JGgwMoh?n<+ZQCo(gC3(3|y~+ZM
z5~X`khvvuN5XKo0_=k<5qL^>5i$&>4T1vK~m<VOH0$w(6+fA<ZwmL+8Q$7>FVqKN*
z+>)StEksf6mohZN`k?vas&y9}K_2`rs91TO+=8jnq7|DC*sQCZio`9OR1En8iw%<T
z8T`l{@+<_61V0JK{{RB}NG>DL_kv1JF>SA(d<6Zc04L@<Npe(bTi7luIC=_oSP=sN
zg(Zk9exO_W2n$+r`U!dK<Op=4I9v2zYBLB0OHBn3y}X6#4}|OL64K*7m_9t%d^lwa
zpav3(0bc<rM9f(3{yYfwMLZRP=}JE5h}L`2fm=3IQ>lt8z%la)3tZnJkZx9z!{2Bj
zDlAQfLK{^S7a>%9bRm<s2$_{V2TNtg-E16@O1=gqE7JlV5jI)2h-h|LSJ*+bHfwZ&
z!k|#C<UYO`1<H94N~<y)6|#imb*4&o0>Yp_d6lb-WouFUV4T=|{0Hw8EeaKQbiauF
zN0-jm=_(47H2~hv+P{bd1$W_Y$#{J`KpXtG*w|7E^Zx)Kly~wSq9Q+fg6jG(ombVy
zXgTl_rfb%HuE^aNeTVKDFVo3YyX3qjRoBhN4}|_I6A!iL#4x-FBh&VN?tAVTU{{SU
zMYL=zxp$I<FfCoRgiq{WwaCC&m1S2dSk!3Y^%Ij+9D-3$>6cP~9uz@wPnP~5Qk-);
zDdS@4K5{Uv8_V>Jw_Es(!Xi=i<8!D`)M2C3dmYt0)@+D~4&({W+!X!;{jutlOF#`Q
zu|<vOkw*v>a7LqwHsl{$3UmiNPq|l+$cO;k?&n-yM^fBixZ7`#CEOZ&Ud{<a%=$&Q
z5&eG%AvaZ8gzk-A4PLMm1hpw>Ce(U`-tTIft2<NXH5Y9dvFt(#U=#O+1;l0VVwD_7
z_lEXic9!i;u3P$_iV`oNl1BVh<|Wj-vy}QQrlFoy?6E5BDylaG483xO{2;g<$z!*o
zR$yKy0u@vML3>^@=Q6eaYe+S4gUzF0&?{5e6@eEn77Aj|Vu!vTYz_Ut@NZTC-$DE6
zKximkzuI^(TV>J2$Z*ll1<#Zm2O}K6WH<mE0(BHJtb^IlVZKU3`vG4C^_M=v=~Yw!
zby!BHj;wRVX@-l9=>jc@t9uYG?$Ug$z^o`6-r5*FI7pNiG}V8#g{mD1v(P70w#$@9
z%36o1)tGn49t<)1VyadGeh9kDn|!~LF;n*-t%<u4<oO}LxRfSUc2<Df^$WaLzDtPF
z@d7nXed5}_dj|GiIK#SQ73<3;z_ETYzt*hMXoAnO1*YQh{1Vnu5a@g{($1uJ24Od1
zlqSPUEsR9D<|x8npTBS*rXy_cepj(Q%F5uMe+0AmAW;gb_Y0UPwP9!NNHy_WRvWUr
ze5N<(4_d#)Ma6K1^;JXRGL^~=kECOg0wZIq_8Sr)gD4b3@f7(8eH>w3HljF7ECoqn
zUesV5meKbMK3JoIm9L@+Z-ZGy@+=axXsr%R(X}t>a@JDx{2>KvCt{$u?_k24y&nS<
zOv=isQCI=~ek1rx##XDtYwjQfZ6sEScR^7FH}~<DUel_ckyg~V6);u${osM&lKJyQ
z>%1Bu(D~Le9?{96rFVz~XerjORwZAirfrKNIKlW`7b>^OkSghg{Q#%~?oda<u%L7_
z4L_y)i+4oMm09*j+v9apaE(QobdkW{W8C;>c6*2(H`J}lqDD2O@<YOqn$6or!BoCn
zr4)mXnp)a;nr+WOyxYFMkZT)U%a(l2hKf5FP!2dpgf(ZOx@)=jI6-BKwV<VRm&=`+
zMHfw0>OVnoZE98Xh}Ff0Gu6(*wfm=-Fmm$s`Ixdo!C|GqAe$_uLZN}eQ)<yDx=1h0
zLs0pEdpa_>)>rupWB&jNrLXedpT5KwL3Za?o5+I51q^g5+?Dy`aC{IeCDIQzVY(NQ
zEtHb}QKpaLTyjMw&Yk+36NpNpbOf&@>i#QD*uv(~`!ICH?7!Ji-wvQJ6o!Lph)qt@
z40p&_?-UD?8?yCLXhldd#S->HRR`|DE+KUKxlCyR5&YaGsSU>ac?AP*-F;NjFIbZC
zAm#X~BkL76O8Jk6w*yG6NNr82?NHSAMqP`j64>9VT0Ooa`Vc-Mn+f4rH!FAJhRxl{
zIIH!RP1P0Z@^|$)IGsNsqxhPXwZH!WiD|TWulk4SMxXl#BAvki{en|$s;*>i7Hdl{
z;1XLZ-HBsCx*AY#8;LMa**E>}TnaFCcv0{NSY0iptF7PJc_{SN%4hz>rr@Yp?w>%7
zQrSyfcC#brBI5?dT3Snns6UwPHutbigr~1y;bDG}2y2yF6JC0<wq-`#W0v&|#-U1=
z5grHdxP^DSGOneozZW*H!N0VMniZ|$IWLvfr?9w<4q5Cfdm3M5<*3<Vv6WE}o*K4U
zX}m%VSd1<4a>jbFuCp(@1;ROLVzTW4xx_Np1xj1@8qVt&SBl$eS~FEgpUE-^2vNj|
zDkEnL>k}kEotj#@A5z>Q?cd$%QMzZTM@7@Q$R919Bj(D<@@{Y%veREAsN=3<UD^&!
z07Jb003mXWBzl>ml|Pxwd|Ro4;cUTQ1nUW6h3hmeh8GEvH&XuqWFKYnFXrqW#6SZm
z13oJ!Fk&(!9;@v_!a;Sh{K7KeI)B-#tTMwSd$O9HOu2m{z7wAx5Fo0E6jfH$#p@Lc
zKxuEovF)wjF9AGJQujJQP)tBeUu=%#$nF5syEn1GMJ~uJQV1bLPH+Aj@<-?0?oj$J
z-qG8O<S@-aa*t)cAZz%KrEEIcI|TJ^FCer&#~@e>uVn#vTj9{qR+us6!HcW3!SRRn
zJ>;RfzI3(3T#Krl=+&++60J(;DRiUBLq|Lw5|l+SxLgEUgLG{TmuuUc!Z;vp?D~P|
zw8ufySJ5Y7Fj;e7+G#+mi3W;XfPPFBicx%z$0`MYHYdos!t4hlRVeHjMF4}c&&^Ib
ztjI-_KZaV>Sh;m+maMId@lvY^ZHZy*wD$)Bm|k8~bxE<RgJ8w~0GU&7Eh^Qk{q_N-
z@_}x?PO$k}gOv`W=ge(ic`UbpQ%wCNOf)T&&z7>```=k8$sEW6+uhkK7U|KO8ew?(
zfC02j?vc9!@99OUEndRVwv0q8up*?i%9ar^&HMiVQ6jKyQ&fIfO|^!-iX*=18dxzj
zX7U8B{1gf>s<1=ppfj)eh%|D_aE-H6*p?+wa{`YZ^g{quV_$N+lKwV{<1JAlRbpdt
zM}@eIP!zX<eXv_QzuGSHZxX*SWtkfP0Od#89?*WoQxCe4e*It{%fdF#G5-KDm`ErP
zaIDN*`*d+BxVum`IlAwXmaUFNx3NH0Gmp@jq(E=P9<csX^c3yK)>c_MC>)@ROa+M5
z=;;XA*vj$x$}#&TKnz9ER<hUWb&)nyR%Jp8oB<ZA8e2+$Vp|rpOEeG*ZI@z~OdI?*
z(mH>L={Z(fz6VATPzrDbjgj=MwmB3Au>^1dbmGLa1REchYY}5B2BU>g4cey`p~^T{
zxB+c=cHmSq;`pxWl)Pn3maw@^muOH7ZrYpaOe%u2)apZ5%bas$t5*Fh{{Rx{-&U`o
z>YX>&KihsoLIy_mUC>9)(Tgsdyr!z3Xv*xTL?YpFVIGvKXtD)0R}CmV0ob4jsteUz
zBGE%Zur5<v*qAQWl^%(FiUU=2ast%i`=wZ10=3H&T8UNHbYW^h>lIaM;AnlVfYLXR
z9Z(>Fsabb&)m4L>*tM|ztp>MFLe1efLho*CM=qh={oq|~CsDP&GFTMbsrC(d4P)dw
zHH6>6*tmyffxlCcwT??$h@#IJ(y^;KOBU{>+WgrCZD+((AC&E3T|D`g8z%+s?7v@!
zS)Jp0M)A>p^AaJ#B6h2ZAJ~@Hg!ze9Th7@kzY$V4Hq~g|!7veS7OM{=O}ehImJ+C|
zmvn_g0|7o2QukRxBEI#BbQD@rr2}Wo4qU#$O=^m`TC2pfgEC#11(l_5%<kR&3@^j!
z5-;)*z|!FOHAloN1;hqWc0HcCEOzBF0>uqB73c=+)`k&4uT}+7WDl@LIR#_|tAS7u
zzdeO@94qDzVA2_OMzpuFTfWi#F~iG6*IPV&G4Jb`T=r|>0sYu6N7Sc*tLo}kP=jTw
zZrAUS=^r9p+<dHnx2=TvzDkR?4YnqZ8Qu@Ww$W_@{i3iyT0yEl4qP@*5kHx+;VF*D
zhnWxVc(T}hpzwXT^yuZr)4~D`2<G=<6pKA+<X~H;8;23vh^&!x+QaEC3pK4&jFl!m
zhaw56A_l(_ov64np+NNtud}Q1T0xkDXSxb?vH*s~{G(c~l7<djC@FX&K$P=w{R2OA
zwzUO63b}o^bvD;$y8i&;@DpEA(DgwuYYAWFK~tvF0ft0X!kq>mSn2R~%uMR5MAP4y
zLo5Y&@z@f~hlrr0-pS)pipYX~0&-Cas_A{`^dpY5L0wYJ9BH;5o=_@+K24b%X#r^P
zAqb2J8xzD}JROLTFJSBQC`sL!pkNIoK)#b^zykjOEYX(MQ$<}tjtYtZBkL!mra<Q{
z`v_KzWoW#p#)1`Sxv^4;R%8!v;w7NV*v_HgnA|H%e8R|5sCzMEAzD$p3N)8uF?Oqp
z^Ns8}2L>|E?QBs%{{ZMEiY#bi+f0I#7oI_WT|+V7kRFPXg*sCFkeRf?cQIjbw3kJq
z#c=wLAUz|`t^CD3wk^8uOcqdCcacRR?z*2>+3>NxT(cY(cmvi|Xk4O|e1fHoYIpf{
zm7v=2pWQx(kWgD!a<!;d8Fi5guYxrvYBV%(1-?Sqexlk3TVfhK?7(y-@I8hvt8iF`
zvQ!Sy3t-z$%3O4N291eJ>}-srTE_*5QGLlp7g!~I!!DLTdkqplE8B<Lq%~2M{+kxs
z=utcfl|C3s7yzPcoIgbvzW6nOYdMmu;=I%ft6F9f^Cyt3BEW0%AE;0=gL44W644dS
zv_4IsYB-JphPD6<t%d&pw1V&g1sPJA+Z^c(POG`AG@N9-WSVlUCm*9L_#0Bq;JBu+
z1sa0K%RPG<tdo7!IeiJw=2AO`q4Hu9rKrk38mdFlU^oWpfCklGvn<(?LV(~LA#JgL
z!<9vDFt>}mvs<+NLb|h9{rC)!zco}&z^iF4wBP<RmB{*zhpGrhECHc~WX36~Gj_ii
zi$e?^Rm)|4PX=?6L0|JLCj?+9@cF4?=^6xDs=SP`%b*_!j02^5Efg<3NB}E9YPT9Y
ze{pNHty8o(eqi>`txA6A*}6bZhtp=`1pI_ddw@THhl_BVIACp=@cPPXg=hfuyrg01
zG&&zG(N=i^C*dR2p^l26#tJCgFqUOQU*$X<r?9H3^RbaW5AMOM__j6?3%^OW@=>aI
z+zT}{cksbPe6}KvK(%Ih3ZIII(lzAneY3lH1q__4wz9KyGbl2iMk+F6$Z4VbM43ca
z_Zd1ooJ4+%`B8C3<BGZT$Mj+1m^Ot87|EQ-LbQRfmfd;ZntXglsA0ksR&UD`5SjcF
zEwDLLo8C(mz7g6m^n7G4s<)7KDy#x1&#@8;aEEmAb$N?dO+=!hqhB!8Yci{17*?TE
z0X$#ax(AWKePtV|QobmZv3&54a!OWKngCpzMifDz_^4god2;~z-^6WD8Z!EdWC#lO
zLlh{rmY7&<#fczmMw>(n$TyVe*(7#e!AbdrVxeDzh0f~^z+<3&WO(FK!^Cw-A?83G
zM$J8=)54OUkf~o)?(Z*!P_a7LlfOnPz%WHZklWa0)*J%3D|-R8b+DLa2aSkOwO+)*
zNE^Ca+RVSgU$9>G@ts^ZMxv$BdqISos?@*0j?#8r)n639Fe>7wK}D+i2;XDf?-=|A
z*hqymZC)5$33@tZf(xcM;vF{|U6FbX8k!uHmCTPSnjiT5eJ9j(Jy0Q9<@e9UGt~S*
z-^9K5Wdz+-O))$i0QrvJ#2CgITnY?Wy;=reHWal3X1-pkYCSB`5zubsim+6{fptJ4
znjZrPZeXnF7uAAz_TM(DP+13VVPx=5${AEjPK)yFMwx3`Hml2=FJQF@{{VU~7v!NW
zFnbVF^o>pJ!Fc>j4*W_jR&Et7;c>x!r$uinTts5$+$dD|Wz1+jifD0i0C)L5pwI#8
zUd89Xv=fFGorvQ@>+vyGBT!X_8O-p1bA#yo#JCGK1J_-bLSd~sHdL$IhiLciSq(lN
zhv_zM#O$U10TIR*CG-YbDS>&Bwjy6s09ymM!i_8FwsK7%qJ4HSHB=NHK%!q`QtXJ(
zX=%8leAZh`fCOxu<gJw3G+r(ds|#9yuJXxmhWBDR5{xRALJI1oLVUxhRlqAHvwIDx
zS5WlRlyY0p(QF&gV+$%>QDLd9ray6S6RhxG+F8&|iXpiJ?6C#EN{C!&@7+c3Gb71F
z%7JUcj}V6e13*jD=40CXGV8;inb(b{>9;BIameZUj8hm2pJ?JsxS~Sjqs7uT75TWx
z^@7h^9agZwpkjYJ$@DSGm6T|STR~@e4S-M@q47}e@$7V4E{Gt#h4>dXh6;uc_W3mu
zTJl=jJ*;8^5u@%ks@rU_2ycy<+F*GC6TwWl?RPdngtpuEiNsDB9?fR0f%4`VE@+%l
zOI@j-HNNClyuu0fG<!C+fAT(7b(hfeViK^UdoL^1>_{qbYWo%OQDk@iFG_JiB7gA%
zcG!7aR0lJzhl}h`l0zYOx5{c4vnpv2qv9*F%)OY%y%4hmE7k5t`F@yoG!=*};-9>R
zf0Vc`5gxi~^I=wkgC3cA+f&?7KsC0-X=~zgtB+_INF#R&gEH8?rXcu1RErI%qjTmw
zpKm@Ul;#jn7QniSN*Lq?z|}Cw7O}Vy^38)QZp5e>edi%|u2elQYu><9#Z}xG+!_O7
zZr=oI7JaE(HDMN&hO1Y(oT+hRZH_9rVnguDNPkM-+Oi720oU}(X&lo2#yjRTtW>Qh
z<ZJmN4M;_7y2cJQly<s|Lv0_-SxC_q+NkVpdej{+oFh~csMq0~-;8LK$G)hETYW}q
zJ;E#>3vN?wLI^jc7PF09s(dZMdux)IU4c_C_z_~QEl3u9_<1y-<5OF<DmaC}zr-xe
zrM;#L)zuUN-L->mvi9J?6oe+>g;gE6g{iSoH&04mWm|nN=Xw7Cz#*+@j0;d)TmJwl
z(~CmBAQ@!(_3`;i%~Vho`DG)n-q(Qt07b^5Ur>Qy3|tU$^R{Swn6$wy>f2Cms@5J$
zw-8faw_+)#<I$}mOsUc~G(Qp56a|+=M@ES21=NSbtE$zVq??;UO<D*srK^yOgsLtY
zhrT0X%UXSm6%|(s<AGvQtb#wKZ9+9I!QDaKC9digBuJcNTjZnamhp-fHMDN8H3eKQ
z=o2=CN&{2+WdJ^*#GUK456%Ao<gUqO09Q;lIbN`7Uj1;wjRsy=ZMHAydLI#OvRRKi
z4&pGMyK@#&Da#lDv=wbn%Id?J6vd_%cA*fFhq(o2khJfnQGO5US<zvmUa)c<iVxxm
z67gD#R(qU}QtAeJ&DWm{zI8v!bxgQGUz&V`K&z!+upxdw%P@yv4k`TkK5E}CP+BgE
zmRgEa9;ofkm1Yx>X-}~luiB;I!l;znt=XEcdnqq%9?U>(<VIQJ`^Kx)m8_t?Ra8TS
ztws$AVq&5niiK(|ij@GWcvtNnnOHG$KDYI7f%x3I!E7`S?pr+<cZ5)4g)My9SPdm?
zsIY3V+3-Ym_!cSu03<}v8jr?MB3Be2;yTRx1F5Tn*N6FzN<ARDN)o)N8LwcZ1Z~wu
z%dxGNQ$#&$DgZi`T4^roQ(_>#m2ihl3}aE^fRqF6jc7YMmE#KC`sPilZ59JGpjxGp
z><8vh-Ule`8d%WtHW_p{N7a_oqpT<jw54_E(UP0{HkFhlLHM8eAgjxZn@a+K-Y2!~
zTuvs*DnWQIh@-loK?-r00Gf?awS8BS8-8GH3Yk|NihM#Uz;rgjSGwB?fqq;{s)vJg
z{u`uC{Sl4(eV9OpQm3)=bfusbY4WxSsgPGCsPR=?Ht&!N(#2BfjnZtY>Kg8bgYZXX
ze-Nu5K?DoI(RTZRf~pi(wS@U%12b)wY3*4l!7X<+AXzC$hn71XR;Iy!Ob!#Ok^caQ
zGzhH#ke~!>{>OudUit7SQl(1$@=?FIxc>m<4xjW_uu{(581P0&Q2XEEs$gcLroFJ7
z9+AEqH+|b7ex>zYVyt462UUhODw7S1D$2GJw;CXWH?^3@qe=(D*V+>eiZXMTe0^0=
zTv4}X<L>SjLesbt+#$HT6A11Sf=lBPoFKv7-Q6`fjk~)$x%@RVHC1zGW<Q*#Q|IAq
zS$nPZiRoYRa5bNJHPKs%nA<`WJcNxB2y(Oo#vToK3)CL1Z;9U=pvcRSU)Zt0^qNhq
zPsXxnB&qDgIOq1-y1g`3Ur9b<D)7r_%-XZR$lH!6*6(c5_@VjHlMS1r-xNWFyh0>Q
z4Id~>XUDd^_p4<*KURY#Mql&uX9X%htfEU3W1P#LWg!rOrx)@VM*t?l*e@P0NW{!A
z^67)N5#?F*<wPvUK=u-;ql$Q^DE4@A?F&<q$jfj9?!Asoit-c=RXL=na_Gtri$T5H
z4`KY4u4goH<Im}l@8&8c^6M$w&koaUWgF{b0DFY^LlpgFFo)`9sYX5t6InZurosd|
z$7`}it>F$4a6C(f5yF$^so6z;4a+J(JJS)aa@7^UV8>=nfu*{Lk4Lo3vple%#`{;T
z;D~uv2JsO`3S?VsAbHl683-K(w~k|EF3obo;j5M;vbd*S(0V%Ni9AU2f+3PSWX+L8
z5d4^)UrHaHL@_n*bE>o}9iM3WDW`_cVXprWK;W;$uDYhQ@=mMj>w9%2Ecy_7^pzeS
z?H`~A;4hJ1h7HdsCHNCl$2T#%;QE7OZKa?U?)_m5JjbgdiT)>w;a$M7@^6^}OaBa)
zC+-kXL|w2oxT@}qN3|?7aA0mq%P2MBiP4UZJ9KlRMCp)8ONM7y4U-Vs|B;GG-G0J{
zl^#z7ogqOOle$HuGBGy1ZE5odsqn^H#2RMU%C4-E1@8RYoO1RlPwZ+Zy5nnaL9JT_
z2)d#PKHVzp*tYmuu8CaE;WCS1G&0du$3Z4SZN@;Mr!+ijNIrWcjr1u5mE~g{f75B`
zVuZ)|9uu-nxt$}y|I0gubxS(<Z^JeKWj;XsSjfAqD-0d2Jm^c4JU&`uDW!5`({%2)
zbBa%P277Z2+?{zdy#PT<t1cZa+tLQ>-VF9_g4<NFowE&Rt&V%Ewb$_oUn*rwgXZ%f
z1a(KEA#_oS0rp&?AzF<ozu(b<{Qy1jcVmP;qt$zg;38JQg(>piiq3(he(c``U1urQ
zL&2^rDw;~g>O%E3e~2`<nuLRk&Vuq~tBP)|+=<Xm(F1m%WZ5)C@(jm$_)1dhLC4Ii
z<fE<Ob#lV&wb*6nynR%SlLfASYF>v_X+<5h^_b(7$5K@8xZPn&RB|eNi@)e-IYvu-
zhzPRSV35-}>}E<II??S3E!`_MngN5ZK9uD5FD*)g+OwZ`py*dBvX=605-}yLC>}L_
z9-r7}Ju1-XPelVia$%nQGG%0t2DS|xX%mDQY>mFLX1vW|LMbV);Sb*FL6~P|o^DVU
zJgw?A)P0RVGpoefF4`tJw@KyxyRH$U?3Co$>WpIGJ&Nn8`TpI);8fT`o+b`f<%nS+
z+49c{_N+sE36Ih;@MIqy?~fWv>>jX*N&}Mw9vqHre6Tui5Ll*!D1zZ1E~$E-r;cNW
z$TKJEg-~|o@R{v1J#uR@9t!fSufIEZS4X`RZ{`c4g$SO~hXvmZS;SB%jhJ_n%e=Kf
zkP-DbM6TYGYb2BLBXFaj$E~964xw2n7~|nJo;mA$A5D6RPr8R?M5Q>_U(jx5xm19$
z*(ebaNBnA0hj%tszC5QP?9dT$Go41W+z{dp9+j*P7k}`J2TZ3M`6OvW2LtVA6D9Sz
z<T<-SUni4Ukj#Kf-LHyyyo+^MBhUOMOA1fn;i?5|LquM16v`TJaf7)-x1OMhL|T);
z$uM!pJp4mHnMA8M<cp!#iFL#unH2FnC}ik}K1CZs{{WA?-jo|}XfOWs^ZFP&z{=6=
zTZwA45V}|PdSNH&t;Z{Y==!IvZ3#QE<PT4v*9!BYv8sN2FEOm!VE5X%Pgce&$3Ay~
z>gu#<49p)DWV?#E^P#_`l+NL~Ye{2U$|!$P%;l#Y%n?ID@Hsc64p%6!8hUR9iMDsI
z`V9=AqAa(#!}b29QOea)s+V4ly~qzdh}@_bz4@J4Y}*kZT}J!NmuL{Ek{8EHT9aiH
za%IR$-trB35fQ*JM&0Ub`L;)oHZ95sAwq|ymkT$q4L@s>z&luN9O4We@M6lDNKrH&
zdn@Ismt=2`m7ax8(!qeKmd*M6+E_`{R-Ean*<&5QEGnBN@D!4JGYo2!L|7g8yG#)s
zErYijE_u7lrC#E&R~(5N38SH<Z07=nI$fPYP`L}`5S^Ug*$<=1*Z0A)d~aP2Ic+Tn
zs~8<RcF(>&eGEM`C=})@$7?@zc_vcUvm~$UyS-B#DI$ClNHTjC46vA>A?LsUTF45W
zL|ajT*CZT>_)c|p@J8Ov&xb)#qIfm6`9{%p+xZVLdrNg0<af)>*X{Fo!j_QmG$oY$
zF*mFqy#Ff5O@F?Zrs5Ga@eOHkZiA;?5hWT>7HaE`p0UK8zlkecM~)E@iOC;3n&-iB
z`AF_YM9$44t~B{#+nBtvC&z1-S2dcqEE204G*-9EG!^H`f>az_pq1o_X$4_5$fSvk
zE|&8rDHu%=*^&Pn?Hx8nCZAHIu64mALf5FzQsMBc=;FX$gP|!aEWd4>CO4+0(uf8b
z{<CoGHr4k^S=_Do`-(Ax1nT>dkUuF{1SUy_V{%GimUWzbJt^{DU%oO|tx#X*8H-01
zCmk;U!(OhSs&l)V8>~B$B=sx*wkM)nijR!8hIy?8<7r_U#?~l&p+EHQ$p=lmlsNxN
z0qvN`l-$$uZ^=qJSr?uCLTgf2_^HnoxnZ1;t^-h;q4Aa_RMz|lxJXj@BRc{P<@Pi}
z70OYNkd-Yk93vkqXc}=D8I3MCH}}Hs=7$DX1A^B6$hN-;j~CUZ2N)d^v2c$zK~|`L
z#IVWgw)hGkJ={;?l%1T@GP<`@ygUgj9&gOPbSX`R_I`x5DW0!`p_=b!!+x-WQ2FR#
zw|-lHkng;;Ha)jVyBd*ZuPF81Xj#8fWAG`+@+*Jw1iZ@f?$$|pX~F?<4=62qKIJfU
zG{==8Y@j88%*i%3(;D`arNZ}@tk*lK%$?XTR=tqaz0H{%tbb6M^Zu<$-Y!hL7qnlM
zZIz*tO!)?!0;hVtZ)vIM$dcNs*f0jBpN$(bg_jzXk*-vux5$i{xvnklBseT9W7JD|
zSK@g~ZTy6^8Rn@#Mx!6%8v9lv)pFW6;y~FdejMj%NlXT#spaN!L*^UJl5*>^hxfQm
zqaf(IY=L{qobW@<Kd7ax55FQ~K(`@bqh>7{pg_}A#q?fMT(CHcF|=q^w|-MM^}L+g
z&OVfi&hQy?-&2&hW)_O-ylr#ASP1FJ*_eqmiV2!Q)xB6zT#@gwPiC?^Vv=fcTIpv3
z7qH^MaHo(2kmVLM1Ap3IgT%muGgN(rFtS>Lb)jRltqh3$szg?z94hs>Kmx`ePc`Y=
z^3uk0$G+1v-(!|jvF`HKKfuPw!Qtf})UB?fL-DPTKy(Nyhg@I`y>psqjGhVyY`~Lq
zFv0bBDsucr?Wz%3h;G_0po2a`UsNq&mQ=Z1(?X@i#V7Y7S*sxg?{BQewlkp9ptTuW
zcCEW$P%nifk=cT)@JeH8QU<oz8^1tQkGabt7?O=~V}E;eDche5_So5(A?)?4!s%lO
zxm!#vz8Ar9fHX@UPyy?hjzV2nN9nAM<Qo^va4(z=rcU>^peTd(rW&B!w(D+b-kF^|
z>1KQF=cSjhjMD;+taDHStt_(F-*Nk)!ctnU<vmW3mM62XKI{N=abaHi_5069k5M$f
zbG1C6wN&v)EWZqNyEzSvT7djBZH}_`1eGR6>=n}#8;v#EN)w*Qog4Z^Nq}zfnnG=C
zSoi#C1D^7s5;H-$#g9#Wt`Aht3YXy5Gf!NIN@j%W!FZuRH{2?zQ8E@E1$%K{#}WM%
zaaViMwnma#?D3D+?x!sVcJ<PdljqNKxV8g6*jXlw4ii1G=XP4w$fa4o_YU5C&#_&}
z1f=(=R|ZXPo}L6U8XcE5CrO@tgM~01-o3k5D9G-OzHZA3tmortCKi;<zB8p&xV+Kq
z!f#m~WDCTD*q98CG_hJb%`CQ_XscPhnPWnd?nSUdp+sM>R*w*)jej38C!r%NN)9?)
zqmv4=LTN!6;|bA56I!0=`*)SI;>k6sFja+VGr<=~_vwb5Ro^2aMAXSv-bEVIc}L3N
z;n_KpT<EA(%^|b)55<hF7_+uWyE75&Ayh%@c|X$*Ob}h`lT?S58W1wNqgaSAPl%n4
zM(gPzyIkr!b?z%2qFGcex;s9%tm4pnI+^!Em*G|@*#)RzRW}jFb5;3ig`46cnOer?
zkBPx08nQ0y4DwJn>@eejZJ9pvIC7P?=)M}0|Aavm@uL4ek&eqx;uFZVKK)p{BW+2y
z;&#QDvvUgH6G}K0N$B)C8t2<TDav|3Jo+Z1_TU=>_(D?kp}ux5*t9L{UoiAqpbqpA
zkL~A6Y)f1cZRzgLO2#jdO;j&Y28TFd3-!%e*}&NGeS=SZ%g1iN2KzJKKsQv7wn%yp
zhKFsu{W))v!@0zIis@a5iye8m_WW|XRo9cjbNhz)aXEM$4bU^S-N-ur2S}o}QWKsL
zl8l~mP_{1Oo%}<~j|@B^3Oj?*>u&I+L@gr3v-u&(US^F)V|^)PGLft^T(w~a?!H>M
zF2EnHI`r54?O)kMj4s4Jt++l2&>aZ8y*8j=YA$I|U6%SYjdt@C05zQMOCkz~^7psG
z^HVgqV17Vn_FFA=X8I5TBFULY{2Q-0)g?FDvXfAOh}c@CFHK`R*kC{@S20CP0vd1F
zzj?qr>O!eG<RMs{t^uc#Ksk3sIlZUCp6a3&vJnT(H~sCkykKfNNB-+<V9upur0s2M
z3Pnp89F=Pu0{nep!WE11w~DwEWYDWV$74KL7x=DIrgHF84*E9A|9Y=jd&+90szF^+
zFGRLg^<HR1b!hD12DW{eQZZPcsqxF~r9@j!+)CHmFEvDi*Rf3h^2Fx9dGQ6Ftl!`B
zaJl0_TVeDewC>w5aN0)ORITBJ-(aCspS36DIW)7p{Ur_yJEvJm%2h*g%_s4e^awKo
zBZL;?Zi;hfBifOHD3B(o<BC{oss+2Mx6aXydZljZebe28&Z?R07nU_)s_;_9cmI&z
za){utOq`AXad)^DN-wfo^=atZr;^Qsd&l^t)F;|QDBzzyU7H9-(?wf_Du#nKnHx6+
zW;@+2eJHBAipsS4SqQ)+h@X#!jv*&E9S*}(jx~@LUmC3Dm;DxsEC#N*!w9qiV8O^5
zHvkd*x8+16!}(PdN#JFWA`!zvr69rjkonp~wUxMy)@>nyH@6-`LazXaxrUIavUfvD
zp<`5skhF&p$NptmX1@4ic$72V1CUZ<X<yDA_sha?n7H+Q_18a<a4051Qb1dboP*s&
z59rNe$CX6a8RF|yrZae<J@x#uWBs<}BPZ;>YV5biQ0wo9vFKb`zik<|_swC1M&if>
z5}odxw+*1?gWQrJZIMCDK9pxc<_<FKzjIKl$}5Z<6XZv*Y=u8nI-`|_R==E9j?D~J
zuj!X*hfT>gn5?SBPat>-Ez%tX=Bkxc{KQJ{ofr1Ed<laNB!YQmM$b<%{QFI|;`n`t
z3ZYjD&Wa(^q&_dF+ZemtGQ9)kekd+PN}0Q?-TYay9~~M02g`yNjAivwQDTqE5iEQN
zn5SCGV7XvN>@dqiA-IeePq0@=+V7mF$^f?~>>uEJ-LAh)X|P{i(McZj_bnlZ5#<FQ
zb5~v-t^c_rrB{y3w0+}>-E!)}=7fh{muzdZaJBflQD5dSffYBWa;yBOoH_k|$S6b!
z;@>L<V?H$YJCe(3eeC-=3o%<W-M951;2HyoqlhHCNFUGP1^867SIKaCMqP|^TAO()
z<c>yXre3=y2ml3Wze!Hu2_uS+w)U+$))G=+ft{y~o>yb2Suo+i{eGbS1vw8=&?*ZK
zmef*^vt!yt+o08W_AhBorPaneEz*i_kz10G`P%B{T^aTHuDbLYmvY{*hXM|Oy_dya
zLIMVb<l67CF2D8EIJh6v&VT4GW>C95U^(5pMt+Y72Qn>gD-)*^Jo?uNxElvgdRGi6
zwqE0>gSuLZ`wN7fiKD7kT8t>17Z%N>Po9ygH)yP@X@`z*SeAcdg6+~#PKyQ2GqFhn
zpCT7)vthjMDDZxuY?(-}#Ld#r1ir-gt(i7fiixZ_8}Kdm%XQS6M${*CSSx4c^___Z
zZxktQBXn&C?pw2#YvWb~j$YO{O8#t3u%BpBRO5g|QSu@Q1;Qv%bbn*|9JnrqZiuR5
zO^80?0Tm1#Px}?Vl%vm8^@}iTGQy)_oN`fn47l7w_~PNeP4V&bc}&oO6k&7*d)#t+
z&6}_o1tQNs0NMLLz+l%QEc>OTpEfybutlry4?B!}lR_k`Le6)xSkugzm6VTm{~O~P
z%mX~Zcrw7nF<CitDn<z3F!F2DsbFS?2!8s9-IOe{0N5oC{JPo@y+Y;EGfdciE|RnB
z1D3h4HXH+?`RY^{UYmo^UTc>hKOB2T9dze8IK56`QO+dLs6VHrIL<nC$|j{*nm*KS
zzKMqd{WwOj?V5KotTk6SWR_pBpTxO0r@X7(kVj9Ly6icLX0{>xo{uqL5$6+zO;xQ6
zY{>mVZ2yn5{=#t>n`#=tnp9YR*0Lm^V1q@!&TS$T_Ts93g!-N|)_Ap2M+SaFK++9k
zav1Xa(eN22fo};KJ<h?l`7~z9;9dr5aba!pk=r}cG+yYaDpWH@n!&r!X6*#rOhKrf
zO)L_<v`RCj?3&HepKep!ZmP>Ujj$1)bAF-KU|G>dKHBE!iYK)`$X$j{8-x2aLS2CU
z=7qeHjC;yhWaGoH=1fMFp8DqqK_>D)KZVh$wOD1?(?dqdl#9u0pKNwuHc`&vlYX^P
zqssZ(mbhM$iJNrSVe|X_k>$KDNaaF;_1Fj8)Ry|pyr@Mxn2tWB9NxUsrdewv4-HT}
z-<{;9vQeDgd;danQ;xlNeN&yd+Kj!&33<=T!3h4SqJWJ)dH{-U1+!tx?a+lx=h1V}
z$x*gWnqxPIfgjlAen}D^67-T?=2;8apWbV8%?Ro$4Uhi-swwYN8+H4v&q&uG$n6g{
zxS0)OmA4tn;;DZCBG3b=?8S(hJ(u5a>!Bd$w8HXMm`jBm_NQ8Ww)W6|CSvhdVjVLt
z#vOK*nBqj}SZB%)>pv`L&e}d78d+BEp0Z$O8(YFIcpSU-FrX)#!9%cVaznVfnj-~d
zP{rdS4nF4B^+D}D6IS?1z1+%^Y15CvI#1{F6LV$mcXI;L;o)|PM^7NaNE|EGD|@6y
z;HS?sqd3Tx!!pPl#|6J1A$QN$*6ZJzmN#8Pzp@omrE%6?$VAye{5i?EN3080TAW5&
zP1Y)0d&<2<w|~BDu@?p^P;Qg3Y}3;>M46FQMjlWsfnR-t9B55n`*w0dF-jXu*7H6W
z784W6tim{pRh%{a`8Dl;8j=Bc`^>9SDc4V`Q?9&M0vVkGJ`xW`#~U}571g$f;JVv<
zFB;7d@x-&4jCLSkd*V!~oVQHsEJDp}9kF<kW6ErO<ZI-@5WhDC9UGiB(f@rcdA+bs
zmpKVE^BlQ)^7#j-T&#>R?)R%(x)$M@7ZYBZy)_e<z_aOc`X0pVaP*A%DB88CfpG!(
z&=>q(s27^0kIsRA5B|D?2pEO7pokee*kWTNEAEDhiPM_h$MW!8po3!cT}_SM*JpLG
zo+^U3t>u82EwH+h7%_^_2T-4unz=T9Z0iZtz8iev!fh}&*B*Apo2{(VTxk-p&RWfA
z<3aFx)x6j?{m~69l5rcY!Bl+Z-7;${AGnYlRdk)HDO%9BB%<L#O2A8zG-I^!>%|Ko
z)!{#HsnI*10*b&o6IAi&`&^+#Rk*(E%4ZZe{iJ<KhIQ1*mMo&(a}8XtE<TH5$J+>0
zZZr^4gNzEho9S=(=C<`LJ<>PVoYa{Q3%#hOXnCM4_8=gSn7SJijXax?oWAUe#jZ3l
zc^ngJ^uMCcCo<IR1nZ1A9n6}iKY@3@yK4G-#&=5EP4rj6V&|mpL&5YEx@VOq**C>q
z5}FTj4g=O%+C$VDOv=P5>W}*_MY%~>8s}L~NdoFe=jWz{LuFoj8xqZ)sqv#MNF;6#
zS3GUhT=Y|#N|v;fiUq$)#K|~V%{<Wu5<L^I(hem7duF$5hip&O>W(lzOfTcJChtq?
zW12tnWMomKY&@U+JS;?&ei4j~RJ_o58&x?ag9;ew``;5f6H)XJfN!+(UL!5NivJG)
zrJ}-XASC`*jE_Z(dzJC(igU%yc}zodmrcKO2vZa9%D=dPO&^1OPus`+2Qe1C)~a9^
z*q_gBcaG0{6b6}fLBGKpm*9%MEKs903iMYvtPj56k$r?dOfs2Qfo_H2ln`KLomv$y
z!nl`V>~9y1qvMH;cs9pZn_f~Xp8k?r^GXSY-hDAXYB(qRd9pjVVI6BpQN7TcAO)xi
zntWmLL7)5w079lG2TQ&a88cle%NypA0J;Kmm2ce<VLUVk=b@Z!^PxdCystyLXCgy%
zmY&du#MZDV?&sfvmyk{312j^gr&khn-;H(MplOR)9p>P@XTO+@Dk0cqSm}03L^#q`
zrf{`cUS^@Zijw(ELU${yD2VlVZgHGG=_xu7S=}?;;_a6kX*~mJue4mGKKY4EjRUWC
zpfp0JlhmOo!39BIWwfxljLUHqU=}HvzWUf+0(V>!A0(9ELFXUBQk&nSe=&ux)|T9&
z9LFhVPl#k=03w}M1UN{=rmx5}HnTEPgfdGa!|ZEJ9?^b`9^6KBq8TeQp5^ELsCryZ
zw2^zmefMZk$am{uYu|l*{V1+2;(1wS`Nxh+5KKEg3B7;)`yK5M>Oof}>eO%&kn*)b
zXbb+U%|C#}r!5cfjS#=@a<GcwhZAtE;xanYH~b5_${Z!weHq27KR-z_KLJ9n!?k^y
zb(TOYV};Hyk~-rpHZwaSuHW!*p251hJWceHpM!K`M4EFnMvc4HG!P2k_sY0+xGH>U
zD^7;ZT^h>DQ6wN5#rVkLzVuk4+pCsYnc)%%sNB6vh6@v4*|*o(c}x}@^({57oX5D6
zt(?nYaPEa()pNXM1Fl@<vfA-8MbTRvmwk$XVd`QN6DVE$>|zJTM}XlT4AX*K^P)XK
zg_oL#(YR?DdHr2PjZ-h*1dD`7@7r>~1x~+EuYuBdZwONlhnD}mh0zmqgj}w5HR(7E
zf|%C_BQ<`YWr104z~)T7N1?_fgSIiP!&X}(7V*~YeQ&$ji=ns&QU)@;C>pzh?}+t>
zx+0a5osT+2aXc@{>&+FSmeZ0PjnZa)YObCnq+J&@RhIctho^O-`bSx;LPfK)y3NOr
z3_<x3;?YZ-TGrvqsn`RnmlayG+x9SEJpglMNui!H4Rtz1L+}qkyn@gEa&xkqWY5Xf
zuB0?=bl|1FEUk}2GN}|hcJbz<)foPW_&OwNW8HV{^ZG~8i`U`sYGXE+RQA=9>hXu)
zTJPGk_iTs`i;vme?Vn$KsRSHeyRfJ$;DZzwM+~zm?^TfWIAEonW-}6@#FVu(Kte&a
z=xt!$utpMtUR!*{htjz{RS5AH$^xF9$eU_1i>Fh$Bocuso|~fqtxB|`KkASSmx(fE
zr|E5@Tm*ME$PuNsTed7q7|VmG>HAlM*8$5f^iub^`Q&R-=|AJR^{GOwOw+!gkRTK6
zZQ)|Jw47DfjqBzLFzcX+78*!464nk8Kr`Af)ooDXCZcJixBw+hSADcyjw>QJ=PcXI
z(=1R$7dL}`YnF>wRU?wyVlbE~`?28<YU@9kn23Ro7?Oa<?a%M&)C@YJC~lU?ADC`=
z8uUb-?5pNrlFQxcg`m?!>%dJ2Te9V8KH~Mgu98vK2YOk|Us*%WmKA(;yBH-jP_Dln
zH9P>A9sT<Wp;VKB#LWPC+U?Lz<a;}T6$O8<D`K;*JWD}O@vE*ksSFc0iXB>DZ6C`y
zgOu3(N>WFLZ!RgV7-4r#skGaV7;}l%(2-qDu-~v@0=D_<?9pvv3^DOKUEVYO{~1<0
z6l}>ZrT6(51jdDhvl2$W)fN#wyeD*TXr}x9HS&AevT5_J^!fhsM@7!+;WFk^V=Qg|
z)QJ;-ETA3_f@XxcsYRP}?Dd#zWDujHWIR8s7jeGP?_v*^ptjjlz2T1D`K#u*yQvp$
z_ZF;6s7K-I$=T=`W2>R}7_4vwuD+%p()K4vsqXkzoYMdV-M5OGUk?*9=^99~&_(`v
zpK6nCW1dJQ*_-P<A&NAa7p1fgES;xdlXV`vdu$%&qKrHqOy$NKRAGAU85?U$Y6oEt
zc7IM>87^+f-o^830BW=W=eHP`rZq4^ompa$=DV<iVyRoMbAC{Qd=d!gioJU%w~%_>
zSgxW3_6JBU1lfKK>|{6D5r9MzP*fvplnVJe33gpuy(z1o49qs=Btqqjfhu=jux~7P
z$!o{^$Ulh%wz^65?jJL?K1V$2I~IIZ>f4M&1^{x~Q%`A+pu6*LD*pOPajPP?;@de#
zo3ng%crM6Cq;BgFxqaSH!}T3BRtq4qWNxt85DFl6`Dxuqw?RPvB$`a({BXE2ex_x1
z#!7HWooYRN_sjVd@d3#rAuH8;<8^+ab9d~yODX?EpS&sj@IAthf4OjmZ!>k>+1uC1
z?<6QePg)7<DN%LE=I`4ET|&$xM-*p}o~(hIyQ(4{3W!AGXV)W9Ohtxg6UKu8k3Pj4
zUEc69|GntNs=QynCF7zeOwPI_LZB=9$|WtqXx$Aq6etXSBcL?^t$^S8U@Iggh2W`%
z<{AR->X-bz<Qm}NL_iEvNaYl$hRT?i1c-bZF<vXt6Ge+HCS=ND-1KJJ{ruJzZZj#_
z?1{hdI0PhNo5@Y^HBP=$O@FcyfG`6@;l>KXjiZgPJCcnt)n=}Qc5aS^Vtlt%aK+9S
z5yZc=Nk1^*Hw7_y5u68=iuFDT4PNh9j<*JE7_m1Hw<VpNdSX-9jfe}uc9fmEa_B=q
zZtcMr`%sWdsX<#oFg>R&Gi%r*x0Y<Tg?U?5!(6ul=VK`J+u-s2rV^E;ih^92D4k-U
zWAn0O7QcHgn6pLYrJd(7&f|g9Ot2%G8<n6osc81xt{6c9{MhVhAC%XBb3f?aTfN2k
zQyw8+kFl`^t+W_bRMr3Vg*H5Lr0ysvzooTikmmx8U^7?nMGjZ%^UG7Xr_n9Ll(I}$
zns?RLSw6w*qW{Z=toC6fGo-npfXl2xSlk$Srf%EDXdndWwo_00td?oTHoU|91E6sI
z11xzz4?Un*&Q`NBf*hZj(&R={hQ?x0!`=-712-ZK<>lh+_i2R=c*?ca4Hh^8?q8#i
zU;hEv7k$d9mxX_%w-mls+ed$PsZLv~Z`jq)0Nq@ncXu?qF?tbDz%tPWDr`Z%>o5H*
zq6b3<rAeL*`e?YZe(%TB{w9k0L*!u2?lo`5iAYAQ#CMH7#gy(^T0`b$VSDQL*Lemc
zsc~h9lcr)?)b=a9FIs||r}zEl57>OTp5n9*i>y+|zKR*H$PaLp#$eA^zfX;wF`t1x
zEmpAGktA>|!LeWY%PU%MLyXtbmGVoG(M2Nd6=p{ep;)v+Yp&#LE;T7SOb3m;$iH6!
z9&Q*)O`p5CE?-O&>>)^jCJzuwdMWR<(dXPL=+a9{b#>R+*uNO|S~VNfXSECX;A;w1
z|7Qz3+H$TPkSSr7MD_@juinh_khJ3r^4C&~`lRl5JaIC+EO@<^1)g9`e1oP3qXK5k
z*8S|X!hr9#v1a2bCV#5!V>aGE_u4qZoG(8W$DJ;cgoGu9Gtbnl$Q<Pzz6c4kblr{F
z&h#HYQKS~z9$m^ckthl+ZhmB#TWKA56HnKIAA0l;kgTJ28H;oh$9wapKVq-kjiU@f
z^AS1D0f_7HkeW;6j^ca$G9UTb!CF|o5?eN%B7QhKu^df|V5F1=>AjGD01ddleTd~1
z5Nm!I|0PoY&Xh3U!I(^|TIwyhGA$<zs;g>UMQ1rC3CHA2n!<F$$}|{NNxZh#C?eMA
z!y#TCKtB@>ruTNh=}*?+eJy7V-x)|O+q69ZB{$r^)eM*TVuxbtV(9DN{cMq;7v1tW
zm25q2P?C40&of)-nPYrZ=kwA~G4=v&F=6dE<@0=}Q@>8o_JmQs|7a1MY&APiVs`iW
zM8mK^U@ou^4xO~Idz!KiV}0Cc=fxdV_hxJLZCO?7vZVlI+AjkPqI|CtdR8ve&R3}f
z>{ex9=goEX)_b(PU6*`Kw5B=Kou6o9$`G^apC0us#4hob+ZboeXR*jzq`>4iM`bJ*
z5ss<}Fh%kE$}k$uHCxoolX%b#%U_!P1L0$>&fwpEoKJ=co%mjRO47G#PwVsCaf`5n
zHwin}A0!_GwfStMisl4yUAa!M-<8Ak$Dh5qdHpkBBd$wF!wD~>Mc)xo%oJ&948z6+
zB62(8{QL!2aMOU-6~@FYw>%mW*1>N#KM0wXL1wQ{j2-3d4e+`BV|P!0;V~@8y(K+I
z1`}#Q143`#V=re=X$!aNGuHkw%CQM+BiXo(C!>)oet7vg{7j9d(NKg$?H|B9u$qao
z6@$jz`vnutdEdWn(RV*{#1-(RS`>KgLH-LjVmZRkx!>H@F^_H+NmgB|>Qol>^>pxl
z0Y;D}F8x&jQ;3;QgIBR+P&@rN{^-LQTv|!z6!o+oUJgntZKx+@*Rl!KM9Cg5P<Kf%
zj4S){hqdoq<=u9TJCkRbT&UXC(PPQaj?a->H|W&M_cW%%o-EbZTGe(f`pux#O)O7?
zB#LGuDcg<!3USr4>5bA;LFxTkZ?=k-76zMP+H^9y!M)sg;xt#3ATyRb!wz~#xzvs%
zTA+2O=N&_KYR2E^`KU-sg7@RwO#aIa&`;sq|3^-k^$Es6o#ri5_{s}Cuk;__`cH2!
zxB|Oyeo4r3e^hm%{B^W=>FyqGo56%C&&kfOX;mcnS`Wu90EkS9B~EFTw@nLu30`ie
z#NyDFHZ^l|u5bFK9zs{=JfJx-t04iki;Hq&E>8<dW;pQ+NFk+s1!wL4sy@x0Wpisw
ztEXf>SxP^EKnI-`K{1JLVINPJk7YvU7Ybzu_{1Vd<%DRRhwEvkOLk`^yg))V3u5;w
zPBIIT_k0YC)r{+s-8aY7uPXO5#tMN1xwQp%WNW)e8d4~}G*){HA`-s#2r^pG=j64=
zRmnW1Z$<e&-cX-K4fR;KWy8`gi2I@xi{C}diuTY^npFI{_M-HXCnnw~Vw7ljg|Vx_
zmqC;rfoZIW*TNw=Yq5m0M*XXTS;sCkgUE$H`DciPxp6&Y7#=-g28-t{1eNuOX?xV=
zcBuXiy+!moFT?!<w06)u`h+~GP5<{)&1O-O)l_)t^of%AIEUi&=pP`0zSD)~gPjrN
z$D)fK-+HHk4lTEo=*zBu<VTDpiS0V9yH0V8$<j|QB+n@H*}tDS?>d@%wa3pCwlE;y
ztY8aenat+gVAe4I5&;noqvV>hauW7AZZu};4uzWjqP%gvYEYfteeZQL3nc-_&r&Ss
zl&r083$S7#4FZ?fXpP${)h7hV-QlV3ncM)UlWqDuUL=~RxTw~vC+UqG#%;upBKjQz
zQf_tVabx1gS*(%eY2`i(a43!YY)~F>X0^8-8rUkBR~X(q*(JW!&%E+SI>Ff*{3gGU
zO$M7p{Rn_PAS)(|@I9b?p+QR1J{Aid|H1%yk8Oe~d3;l%tZ9}yI$fqzT+(qNI80<K
zd}-}l`u66=d^LNt%bu-X^n{*7Wa@vv<PAvN-!U*|Zv&ZrobrBSJhoLI>fU=@bN~Mb
z-*L_xidMee4ZfyeHRu1j!|iMJrnc%)+->;2y*ylObop+yw6u;<9VqQ(P}63T3qKZJ
zsFl9ldiRj;bjx9-G$7vvd<Wa+7*h!E^9)ld9*Qb(^BAZ>t9HUtB5m){Yk;LQJmG(9
z>8ED75AuvbnFZYG-+5~Hx%>1B+CHPoDebFCS<7<Sl{}hZ8M!eI<cR*l=lWvg21}67
zsZ(8AcD_UA<(&MOyUj+5=a39f5nc`x6g-o8DrRTbV@`I0jMjOs5i&8#81a}rBI-xz
z`s$p`;K>hX!X)zJZ(~op1d^w6GQq2G7<Y)(M_NP+owR!xZBRL=@>EIk`bb}r?Sgit
z8lr$3PL5V|K{##FDEvWy#AwcYq`p!y{~`Z9Zt<9j!)RP#b}7zA$mALA8+)Z)oakav
z|2InCG*^oOJx>in4`&pwVn**FyN)eJ=s5Q6Wex##fYFnFi}T)C3eyMrs#nPJJ!Sp|
zN^nB&FdRE*l-+*Ro@C}^NnKDbQ4Q;>7lRj9Wh6G30I$w>EApvD`n;4_-gRG75)(!K
z=5rP(8xR^v{Rb~WXq3o&(K1Uod{%u%te&+~QhdH=%$-|AWyWC~ANg28@fT}Vt+IA{
zyuS_P2y!I@lIoES_{DwU7H;CUt0grW@<%qjStNnswP$E1kb1U(#out?%aL04kl68<
ziOvm?&Dg1@dYufFJ7jPMu`QQRbAk0v21Rv1t9FZ~>5h?~@ioq~C(LpIx3Tavmf52A
z-2cKT((wtVjVmKE=4P14jsMx5ZO^<9A!YFxKym4S*|I_N?CqPP+K~wYC4NG{`w!K#
zfp{_?Z-*-UAc&{P7e0*iNA&W%M|+p@l_}Dl>h(hKbK*70<dM{uYiW$fR=nCPK1)q6
z)X6A!czPvkKW%e4WNMBT^a?$Flm$JK1Qqq1lA}{_#D}5js}*!jj?ZTY$c$qCQ|u=4
z5U%T(5LSLrO~13#KR^Nc^_q88lG^JK<uMA)!KhShZwN|RK+sMB$~Hf}Px7pskle2~
z^q}8;rcJ|0LfsC@P_(kV%~vb*rgRV4)HE_1*eZ`YB%Oy#AUu)lCPim7SyR(j;U|*R
zoQ{u0{SyhMT;gzWn(4GDqxemnvhC-qcqHh&O%G1W^NSj!w~J~%m2I$fol#c0Ufs1#
zZ(D9}gH|U<OpiVbZWK;Oxie&CxE-_yY}VQbq$ms3eE;>>_2Y~9@D=(7?Y!a!^(BRT
zGfN6q@%8os${So8x<t=rP4#Ypx2%doF?T<ZLOa~97xy8V%2;z{^>-O!@(12lpNRm*
z=GtauEP#N?PkYxShk@nTG>fISca^p-2yYDzr-nq*S1$shVm~ao@rxi?V;}+k6B2QF
zid9-;w%QThKS1Imt+i~6+_^;4GeVr#7m&VsE2qz(z_C9w5));0s7(;L3)14Y&+2@N
z+IeALlu!<;?r7TL8lkS5NzPB)X+ANEIlOd>6sAUBI*e_y_r*QOa=kgj&@)`jGBcyA
zLgV%}ev}dhrjrz<tKOu%-my$3bscQ8asyF;J3kn$t`A>;TOl@~#Kh+W3!gd)t;}@g
z!i5=nqEuyZyHk3@-v)7xyT2bMdeJY$Px}I7l*)!(at0HqZ)2pr*QjEaQ%u%Nd3Kkn
zC~Ub{jBwJMty$Qlz2Q^y6Esk`p1?94N0n*A*DG&~+1H`z(~e#wVjyt)O49fqgEsrM
zK?lXAx=@AD6NML_n-PCNP-;Lj?BT%S6Cm2CPR9<f1q#>g2nALzjQ%1cB2u)C$rf|^
zc{EX=`Rk#ge_7sV1g=DU|GOVU#`k#2Awnm{uw5ZIl*FKA8O@D}cXkx%VBq~}YT>hb
zjmuo({BtprZEMAC%uLit*B>!3X>;<voWY)~-K)ADP2r+uwwpkbL>YwLJrF;o|FV-u
zNNoWQ(Y}yHKbqi9>!nBX&T&!c7nzYlbmNnGg)z_?_^YI`OHG6~S@=gHvY~>)$vbrb
zMrmZg>7?;vojfPtPDpEZGj`EL+TDn{Ye}F*Ygl3A3h4x!O0tinQxPK-vluWu$5mVO
zeHA5GLb?aG8Cc-@J`Uh^z-<oEIpq_K9V1^>b~$HfY<R@dW@xt4C%~KQ?t1zrq(~8`
zDl&9zrT^Sd1<XdTEU5G6X3AaYiWF4ZAu%_8OIz7@DS)e~{cet<O3+s-%O?0y_vQmV
z3^di#p3piy!-nUXO8-=xq)scrfE(#$sgXP=Ut@nh{7X`;`?+-vx^=(mJQdlu>Jv@l
z=67kEJdFNm7LH@N*^MOH5Y;X$^)@-dv{ME-R-)%iemho{@ql`EYwmJhmnn!5FZ5)T
zgox)A^hNzg)0K|d)8ol~Qv+!1g?ZRLO;%<o>-?AY`>zI#e*iH~VB;$Nqm7PT*&eE;
zWar%dWlA$#HZ5{$wHwrvHVyPVl!Q8yM8soACDc!1)v;X>EV=LzV^YFPjp3xhVBNmq
zN1hTJKVX=rkAHTjJ}Hch?K;}HNl!BHa#t2%$VAq%jV9_Yg~Yobx&xfuVVB7>7EN$y
zyj6qm5MOH^n7H-?K&b1EU3G|0BzO#0SU?Qm#26I`x*aWumi9VpsonS~r!HwQc-Az-
z2}5R9g5o>>ZQcjxT()b@RynUsw|Mu|P=)^5EvDN~_l+Ip19!j4MF9)aNH+D&43fat
zFn)qw2}0vS6Y>@?ssG-+NXu12NLgd9lGq5|eN-sz=z4V~lp8TklcXWLcE2uxQLywf
zX4o^&Z`AuZQuf|vZQFeP9C_t9^r@x;DkL1CKa$FIMg#eXuda=Fxg`EIK~_LG5lU*=
zs(2NTVTMF!VJuD;bID%(Rg|6l#_enClUOOB96R~8>R+wp0WfEuR+$ZlNFy%c@@_eN
zpi&ruG{$eW$b1~cF|IT9hlwoV52Lr+Wiffgd99uk4Cdg|!kN%4Hc5t5;M9pn78`xM
z9-=E5k)l=?dwQ<A(rrHqi~_pWIicP`2V`nVWVr#aw@psOSM(MK8_cn3gg9BLTY=Fl
zht6g??X`nFcn%q4kV%t$#tNJnkx|id0%DjC=klxi+wX8Y1`Y7`!DX;>mwg_ZwZ&M1
z5khmIq$UdEOc*gT3K3wbD|@It;(rWMK0bw$cA=*DIIEDN?*$+W8;5Hc<CZOozF^;*
zZMAeEI*oLK1bsz`2&e*GXeeDLTwz8&DZw@_CFbDdGr8z68V_h4@zk4hP<hGMzXQF5
zMD>PcZa$yS8+Tg?%zG~mgZQof0qzB*F7LjN-IIz@X>kG~cv&M!1ItTh8uS^HJ*Ix*
zyK~n+am%wz$&yQz<rXEgc_EYGVs3xxOemhg!-@04?#S{$;+<Xc>z6gK<6cglSkmlD
zJzjmbJ0z}gP00m{v(=-hBe#)rN+2tN&f!I(1=;B(*gnz11Y(eyJ0z*7L(r=jA)(w8
z)*MsdLx+XT1w1{?^4>55O+UW+DoCBwT&Y?F;^!)P4FOJXed(Wj3q#g6pzUSFaM9FP
zu#{CFl>!;o&siM$39w#j#IH<TVluS85D6$cxH~XEoH8fmIxEg!YP6K$MqCp5I+q}(
zzrM<xNit&P!W0v#S54M5RzGN>tHrnQ9{}gIKsC&Xhrl?=^vvy%WuNn`2roAYNR?Oh
z7YMGPm>7VDdukwCPw?R@R>v*-lFZ2IopGuHIUyEaL2ZZ(%F1q~OM2Ef%PN>6fB%z=
zeAqdr6SOl$x8-~qpNh_$CAr$Pz(>JWm(@P`H_<((u!vj^SFveC(}XkSketkHDY?xz
zR7W7vDf+Bt=r;x3&PUV!bgJ*fxA@8T*QjgGM~E0Dl*KnpL9<D>>Cd-{*7`mh{u9{b
zJ9u1pOFh+WxJqQX)JOBXv{Jkq<Znnq28DuELm0{=6+0o<*6cw8`RN<Ma?7}CK`B*1
z>J!0j8;?vH3p#SZ68K{5$5wg#aT9wA2`)|k6WyqeBVF45PFvcaC=^cuS7f%IvR#PC
zm0y6uBw1xz<)3aE04*V4Te)h3dx+LLrpY(Te7rr4fED2XAR<YMawa8k3icfzf?@I8
z{U~<q!&23tG>fyiPsmk3|4<7AP@ZrV<=8HQ1`YYWG=+mNP=x!0j}r0pmcvEfXF^z+
zn|t@1p{{c|)4OQ4xpys^=^>?qAYCY_Pz_jXuV6w-CZm#|55Ct{^QWY4Hy<TUX1NrC
zs{V%ha0M>{L}LBM7yg&O?pRC8c=_h#>;cx<LT0yj+}5NnN2nfA$!HA^<#;NJ)l98I
zu~gmAVFH2A-FxI3pYk>|xoth@w4+57VjXU~<&v#IpJbsExmT;OO?F_HVyhczgD8|(
z{sGS5T|E9Ic{?h9_H%V@$yYW?R72cn-(vrgWMp(0=-`O-gwe)hOu_RkgP8P8<_9a6
z)C9eF*c9jXs?R+=rbNi2%6oHlocq&)UJ^!n#*l^kljY%MIUVDTM5~6%{*e0Bh={&6
zZ;K)AmxiXbB*)hkvv}E3bj<7D+R*+FiuV9S|72h0gRY_)&rephlfv;j0SvIU8p(Wy
zJ;VasAvno>s{-u5HKa<w<7B#$nhof4SBf}?;X`xB0?qYVzuiWLgqX=NPnFJ!#Udj7
zo3<GiX@sfOfqz2hpR}3gbde+Js&Yc=AeFYBfcK&l^qS45Mo;p;v9mZMj`q%J<h=o{
zcTu-rjrNVcDx^r@C)YSE=_mX72G;4oSAKDb4E926`AEUvD8gO@s^fgR<#75_TC<W4
zoxVJ01cWC1>j$u70ia<1Ghm@$U||3s0}23*1%t^(NhONSssf9{PAy{Mgv%+W3KtMp
z^T{;l-!cFZ3K|MZ7;w6`?5@Yu#;Oh!(Z$6>gy9<{fh<i(e<Pg*ge~JN!A}L=&hOp|
zK+akT6Lm?2f%T31eLTaW&QVSlIf*LW;)r=BiOzPt_+Ms`IR}G$ZY6s-5RaUpVYPF^
zBseLGsi!W&dd+AH@cVNEp>j4uMWD@9e-w9%N;uk4<K%<6M}On5+w~IZ7wI%Qzt7F)
zVvT}HsLbvKl{5AHOWNBQe3(fKg^PdJYoC59JU1ufBARbgKDGjXeUm8i536DCpjAw{
z&G>?QN=d+)!S@w^3k?c2H<sXw<Tt8FEJ_>TfjopVzeK;Jy-3|sDw~6ftwZ&vrwCNV
z#QRp_qQdHtAQcn<))n`9KYM#q!oK))8)sTVn~*XFkFGHfCUD6%!$WCRVK9JK6pw@w
zmpTSh6tCV2pZ_RkaN!eFi=vm(1Mt`#qL2@-?k;B>h{@3`(Q9$etd<{qFgXD4&n>@P
zqSOog74q0rSW0q>LyqaXbb#FU)@nY<+QCwa_vcxSwvni&3;5I`)!U!6-Ma%nRD)%?
zj%zxVVIshLE^CJ^pYge#hpcsy2|2jO+3}Zuw2~_qTh8E*Mo{h&(gYQ5?-o^_a~S0>
zJE<BHY_P@cSOj_Ay4mWK2zHsu9Uh`(8RZDnYt`+u#v9K1g|d17n<RGw4-z^Ycb>is
z{1QIm-j6A%gn(s&*xr8tI}MN{CWfbivE}%Kb$h}zeNaKRJ4n1Sals!@*RNq6ydRjQ
zz$ri$_j|pEt@{lpGa<D2w!fXIkQb?Q@i~awmDe6|nCfS8%bcD<jHRpp5fP#)?h2}U
z+JgXo>@owD81kok*&T^WOa}XvKg6FBk7GPT3RU-p0o=q}W^z%`Y6u2jH{EsDM!3Ox
z-=Ra`!V;}waE`EAnP|9=Lt%a7_~b}un+-!}U+mqKAxSE=-%4FG&SHAFqK!j>FPlYO
zvaNv2>cM`*dFmy5d}VsQfcCFQ<u;C-=xat1`IF(NINj6w#)bBS@AZU=W{P5*x@sMq
z8AU%GQ4GKJ7QXXtVSN$*u$Sc>7KL@#QIR+gzpxF5!X~SewWH*@fVER65H5g1gHkBG
z4);&vPRK1zPLdddkIxbFcMbw{w>bY6=ZlG2I*lGoRVkN%v^hiHkFan1!$9HcAF-+w
zUj=rI{!uPd8+};sia+cn&%W;ZrCjMvW#~-MMTEF$G;DYi1MQ~uXn6Ch3_ae%Xc%R~
z@cAL)Ar^eW;>p)Y>vghW_-ObjRZWdUP6z=mT0eZWbJm3jTDRG1trD40EfLKX--c>G
z#dOz0ez6x^4EAsZG<}eu*|X{r4ECq#K<Jn#1t=P;RK|yt!3P9D5qko8`@p{pe)J_9
z4RhWVe}Sjr!L(nKSX(m=|KQTK6(GlhwZ!Z^ejs&be-!lIzy1T@y~e(&8BmfM1!JCF
zdDQX{o)Jt=AabPGD@Vf#@0Z4;3~kS(n`A>a=%Xcz!^9vG2~M5PMWe_9zz%U*?g<#~
zNLC*vu~jNxt}U!u`_PXMEIhbYrU-l3Vge9}BT7X+fr?IWwtJwUd*G0UOQeI%WlgQ=
zhZ*fLSLx94x7S4FgW0TV=!aY-E-Y5RQ3bf?*kdkek$lc%`DV|WU5x(;ZccGRv^^uw
znA3!8-suk1MfF^#T-_pxe?h-gk6MT%)~~DPm_dsf7Oeb<Qa#r!k<>fac2%blDbJ~v
z0G}b4D+6|2&B9HvCQ4^AEPBd{zXc`W$4zeYs)&X=&7DaiBPK|tMuIxqgi}OpQc(@5
za4G|u3gx#*?`K;KeCs{fzrUuiBppKn8oGa_wJd6;7m6;y2dtJF2O+nl1Vck9nXDED
zFRT&?(txz-icSO)g85>0VV~`2F#V88$9G2IZFim1{FB<Vb5$^7G5r&#0*Um%O1lKn
z@O?G@X)#_H-|X3nh)w5vSW9E8?iy<Sc@i0I^=Ms}vEs#bGcZ(g`v6FuM0CAyohuLt
zwCuw8?ip!TF(-D&Usc@Ydpz2tj=D&!T6Y{-B54qG@P76jTp(hpAC-xVNwyW@2gQOU
z$~{L*Sk^Ix|2~b%^@!L+R8f#h6)MW-yAxR4o#6V2)<+87%n=#WI6C_`Eu!y`r4!9H
zK~ZMA*j;yR8z};iIs+3~?2D)v5Dm()<kWBDYjsy5Cu&a38h`!16z9ObvW5&mR+tWJ
zL=*?nw0B5CJAnjO-;;jl9{|H%?A9JW<yZ`dKcPPBQA$y2lH<Kc4c%1<tdI@RsuET&
zwa}h@tg)?3)K$j}hP)@P0-V+HciiT@K}M{M1R#DPreP^sQup=YRjaV}QV8N}>=`Oe
zBAW?>z8AF=9S_)=MFqG}(EbMqiaF*^MhzxD3nO(dQO#Waq5*>EJTL89{gK#%X8CH!
zxVwVuDQ@CoEzH_1D%pjSerfMey8`BycA8+?h=g)!$kF6ymW3l-#RH}qn7Dx#f_^!}
ztEHtLsQz$KaRcqxWo`kEzkg#G)GhrvOk$gLOrf$yNu+McUsjp(hQ=C}2upUVB98wF
z7OnWTmn;r{nNfvRUGb#I_CX&~?>VcExb~rY>og;5Z6Xh0HTTiy&6{%;gNpv)(jUAK
zr1Cd%X#e0LKbNv%irXHKA{EgCN|GX;@FEU{&*oLl7I(E3iz9u|A4#;7sn_2b6U*|{
z#gtZp?38B-3ORP1YMq+Q@}gNP?H>SkI=_gr#uOS#HU?8A8-fSC_fQTC3?SA0&s&Z?
z;-~tMH)a-H6c3=)XDs>}#NJ3iXA(Y2WIEcZZ2ERLP{qTXlM)Z=j*|aZ4rb^QuUMoO
z3DsmgyB0W7Ix;z?pBWc(JujG?R0h!|QY?B35kx^9YKk1qyoFKcNOR|)Y*K8fzSPSI
z7zXMgV%rgqR+?8tiRIFsI}>mNb?p$j=Y$Musi4fNrGAzRO-z7~eR1qnBobGFYh=AB
zuE_kwbC`VWJPMYU5Xn603z=RbWjstMI+bd~M{&Cal~<}J{2$K&;%7d3GPbLU$^$uK
zlz50{T9Ihxieul9{XJ$dMO8;;f!cOSiQh3pdNmb?w;8usLzi1}HXC|H4RaHUvzT}p
zO6=9toeQtB^<h1#YwEMBo9ii=NDl2C<Pw>oU2+f<l_k!rG1su0pzV+j(a>&ts|wAQ
zZeZS3V6hQ{?pe$XXBLs*v~JIHFPM0N(Eh=8Kyt{8P|1-hIwOzN)713OpGf|Hj@(Dn
z6&0gkIa>MCThN7d1u1TC7fWw*i%%^6esoYo|0{zKeD4H;Adj(gTK1N>NL8qsPV&=(
zVun+baDpp^n+-z692h`F4V5BIXF*a9#bHhNMRKyZ0T0co-wLHdb_$(8?skB(up>c3
zN2C6poxNA36-Qe>WB&lCf(Zmc`xiB@X={XqT8X6ZEjTEm*idH)x?x50VQeF5F#znF
zO|5Zo$xsmzu!ezQn@Xk4>eT+wsnh=FY7i98hirzANBuoJ`mahVj<yf4{?P;y2;6;(
zn%9EY2@16rQg@b|9Z-PK7bu~k5f&D5-$3zU<pXMXv)u!1rZfAFZwfR_Tm<5VG*k7J
zDKV^Q5Et|7cxwKAZw+71t>LPzQ&rtXpdZKCIic+>aM@O(X}UN#DiCVf0cr52#?Yl=
z`|3J|EZb7Tlp7{am^U^C#XUD2>R>tTY{ZlpAQw6$kTygXlGDNMy{&soTsBo{I-8@8
z6dglZ7M{c+EDidT9Sz$gpgB3XxQX8y4S}<hao%H#92^9~55%+(41`RQPET>o4iG{#
zn$v~tFz~&WcwWO7@!GwH{#UTo><=sW<I46wE7<(6<DV<oa`qg(hoeR4QmNs4Pw=`Q
z;RYDOEq5V9ycGw+gW(WYO6grNFF+2S$P;s5QBC{OB@jm4q7+^fUKA*_1=6}lh0;7C
z#{U3_P7NCd$wHH3aDzj37AR=~Q7|@8bV4q|Za(?gHyJ|*UkjalE>Y4`GJ8Yfg7f;)
zaGQh||HJ?`5dZ-L0|NpC1p@*H0RaF2009635d#o01Rx<2K?N`}Q4<s*VQ~gPQbK_j
zBQ{iWk+L&l|Jncu0RsU6KLGMu^st|Og>t#Eyj&?$vQSbic^jn(B|P-BG-Y?NFqr%*
zZjg&yIR;l)CKTUMLO!-)%^h4UA^}n4oriGBkckLfpqzHir^t{uV+v6y6hJMJx}Im*
zILRe<K@<rDDo$}66dqe0M=HCbpd;B+snvh0pn};avZ}*P@In#{g_L;8>gu?S(iS#_
z-*Dkgi9?bCbYjD4+0V7VvYQ1Gn?RiKs#EC3(3)Z;Ri_Z<;Myz!CIWHk`Um&7duG%h
z1WEy}9IZ<OO9)LccvQ`rA!{jzFgy-LnZYWc>P>6{FWT~o?Rbsx<P47>qq0<?9?BCb
zm!?qes#I$@223YByvaoklA8VtU4&X%XR@0#K<g;-X5mUJPSEW3Pl{j}<JoEtQy5Un
zr;7|C1AzwxRAHv)G^tWkTPU(tE=njOv$%O|9HX6*j@~vkvYABpYL?S%yD9pIJBIKS
zsS0fqi^2(}Wu-Z#u8Tj0wVOe;7Ie3&VN|H+KPl#DwEHHM!^NZy4YhQf=zB-y2Xh9@
z?x{24JPylQrT9!`QR#KgQ9)%9%q{{s^MYptUR0svwUSjfHL)tDs4znZDbI6^lBdaq
zr)OJ&)xdCQO?OF@OqtzG7dQZ`KcRtxE4t2|G{UCz45tQ|E<6O%2n1Ta0C@wH*0{T%
z4pGy5C$K!uBp_&(7d3&UupQCNEqBA!(_<*{)9DD%sM7_6C(?Z|3&#Z<ql_W!v18;N
z;S7UwVQJa~s#FWPI8JpcEshCQD>>)bZwQ^bW<yOvs=U4KcacIE3&>A-dyAB+T+nb*
zgP?^@s_JWpDWm`qGKzCcUDgIUOsl2ULmbj79_YTWhdN-nhl4%B(>a2(>b<TkAeKSF
zMdj`#%ToGHrdsp(M9S=dHa<^n(4hgyxjxn#n%6kM36vVospVAE<+Q{ETuG9Aj36hS
zj1uToPr=iM`}qPTJ;SA}ZY?WJWseEM96|*LCe$HQ)O)7XYp_t|d@x#5G_DR0X~A0k
zOJ3H|nT)DV0k9Q)Q&}OrxjpWCi=1Sp;SMc3XLtnQE`!|w6vi$yVt0utluQ1|y|j35
zB|f8{ljIY5*`{p1R;sCcfcEkL<EW`BR4pNbTB?Ys@%Py&uW(J&J-yR)qzEBW)^$rU
zD^SL?b<gEKw-C~uiL-5vS7Wf0GkN=35DHH7&hXMq0EID6m#5crxNif>C<}$&+IVF*
zJf|L~5^t3SL9<#(0Xx`WSPN<06&kf7D!XV>rAf$DD%7a~#==SsjIPL{c#Wqv1$~ra
z%y(j?N|h>9ln&6LLTxh=cnH;N1Tb^%i;KB&P0D33T0WKVS>348rTkH&PH?_ii{)7>
z<yyX3sOg(IM@|RzA*Tlge6smebl_yB>DvqC#Nj@W_<aov<%;=#y7&v=1@Hp+0eldf
zLyx-oW%A{Gx%Xcz;+v;%a4Nkb_sBy`<?`p<d=I)bnhsNd2<F8Wg1QH~03v`zcH5f;
z2uEa1nC`~d*)}<}SOVk19W?oL6YQ#0bN>JrW>p_RL;{O_uPC_}UXX)u*$6NTIr&A~
z96rgYG<$5~<bb-2rVhD9fFntzJ5JIvQPPj(zEpoT^56cGggCZwe#%k6@&wpyYx^C*
zqj5?Eyue1JeKf=bRNQ4yKjja?2dGMg2%?FAje;2g1P37jXFIZcyCCjR*f_Ztm{N(G
zQxFrZ;-+mW-nV{iOdvhi3Q62$MT4w%HPgZ0O@-*Wl=yEhM3)&R#Hp~hno9vtAjOI$
z6mYn(P0Eza-O191Qw@rg3J`L-2V_AAjfDoLjwKXCCj?9dB^PjysH0((*zU|IvB!|t
zPa6Q7E{>m4FEImvg^7hTd?}TrKTIKm7IxS`p~4B7xA#vuPD3fCE>JLmO>!_oB5wf}
z$7BK+%5;QG!A`=+v#?k76m5h~(tB9(Vtkgmcq$VqPcGmh_P2%)?xd5H0wf~o*bG=L
z8Q`X1lu<|Taw5&J%4R}wg(=2Uxm>0M$($%pw8CjXN|;2+vqT9{fP^v=xg`+*1mtEH
z6Dp^qqm)8~M;oHVPnkxm0D{?abKLBk&$6B1Eg+tt3T%eLCeX2C$}@xsuuMFJ<0;34
zNwX<A<^V9X{v83PztJK?dz5I<90nt&qW&TkeH+^)gQzGYD5j?JoPvOXM2~w85h#@8
zaIjTRN^<O05zWFj8MIgrEv}vl!Y9d<qcBPaLMS5SO^6Bt0s;soyM$eOECyWcEgdFO
zrrkrD3y+`?f$pjo8r0qlo@ekA;-^ptu^^@i>IMUPRZT;v)nu;_(y`QAs-_^HPzdEU
z$-e2>8$naZM5&bQCuMd|<RXCrQ8TpUT$ouIut$UChfaKqLdt-&ezh<Haa~B0W57em
zXzMT)8h;X{EjxRWDyWBaL^ZGimd`vB!A4m*G6zWZgh6N3l3D|Yv0fq2M9<YSw18Le
z_pqK}JV7Japn+0O!D3-|yTltm1y7I>Fr2$sW&%0$8fR>K*iDMk$#)3hp%ell#=>_r
z3Bshtz%aBC^XpdA*ZFdAgCGt_Zy$6I)zdOsAbv`z($MJlT9=nUq?{Guteq@lg{f~v
zYOVHhLxdc<&>-4jN}sxdq7<T09ZRF#%BKx-Cv@DxI6(w*i0|fyO@L5{<wE5S3OUNr
z`pP&6lo7L#-W4a{6xSL$mR1-l8LQK_2<rkubWcn8gM{a>6V&iT_V!whU~ICPo+4EW
z53f*gVo_kz>4<OPS9e`nj{DkSbs$r5v$A!Cimm7<?T9zY2>Yo`QObltDhh+<HP!|S
z9_y$nSwU$J`G}$rM#N2kmC(K#=v@n@%qTcHy)If!Q>gtV+#>pQ#FbM;*XVkq;Y^u-
z)P+4Zm4WYbS{I1;t12_#>4z9Dxe_c60tOArX+%j;C^Zqng<H|&_eRYKm?&f}o+cMp
z*>y)T=CFhLM1{#+E9{4~BDCJK1so!IQjW%rr4WEvMeYYFnyReBxJ~go&Fm9=PgL+(
z*Awi#M^-9Rr%9&+ln)3Hi3_PWc;{o4e@BvgTp|SJ1IR;~f7xJ^eCd=R1tkE9gam-J
zzx`9Pp&fuG+El4iX@p#*PHY@_AgYdYpt#P_l{<mFr*c()LGwwQG1Ew+lluk`e=0dB
zOrp?MKMP6CRP*&)wc^2leUoP*S14E+L`uS&;Diq8QiY1HeuL$c8z{adsO0{|q#T|?
z2boe4GPGd)PB~A>QjNumo5~WTCn7n%1<3o_30)|lVGeE77gY9LMFWcr1W_=npQFkp
z6FV4wq;h{`4Bth=)AP1(8zmEe!Xhl&IZ)A5)Nlw3QKYM+AXFS28yiVdZTPhD!VX<r
zB5hyO<aH_Bz)43Z_F&sZ>nYhb7LBEHvWNjfi$^Q-eh@H1@W%o;UNuvSRL*jUoGG!f
z+dZXCtNJ#RVtj@*qM0Ed+5;;^>L}#c1qj?55T+EORHJec9rjYMR*y8^TB=p4RmJrl
zN&BfH)8rdUtWQmei;*5x6ZE(vllxr>1;lqpHf^HBsX(bjY?!d-#Pb&Syo(#1#>G~^
zv>CP$Gv!h-)Q*2@*Ex<3X@V6B&8$6~G89;;vAn6-ArmMVlBbKC8xJU{7OmT1DUFhz
z&fyW{QXG<<ot1x9)bL-`UL&H_xVu97jr`Lj4nm_^mZFm@QFwhffLh>W5PxFFxsDEL
zf)x!zYd6`$BE<n{1rZwsjy6s=Hk;jsl~R>TMk+A0{m{yYv~DK#u22$HI&jrh!eCg9
z^o%(i?EPu}rSU)cxBmbkevtiNSHbGHMXhmuh3E2VliVsbsaK@R)LtJ=;1;+U1RvP7
z&SQg`V1+`stl7hcMS?bT?jvMjVC)bGS}v1ay~HmWV?J4(L+ThQtb6?;R#0j0u;1L<
zm0Pv)sZ#!@D%F3XnAqe*ZEjK7`qTYO;(zmR{zbn?ey^+G^;@FWxW7X8eoZoakFup!
zm3mCAMd9?`0c(MfLH&zd<~TW~2vln}vwfU0ED8wownw@qFO|;fHQzzO%vz0geOPO1
zyN2Kd9OmJ~Am~{~I}X~}7o$pkqlH?qKT9yBbuOd|22-}TDCcMEPxUW}{{YRu`4{~m
z`o5=xRBne{^8E|X2PT<4$JtV=PQ5l(qVW1}0nKnS2tTo7+{Xtr!BlICt^16G3OG|@
zOz=>5x+f8^1QD^kpr+u$CP>_GTO!P1ag&8otd53YBf56d66EZio+<hl!u(fVUteCm
zcGRjtA*4e801Z4B{m!fY!v6pbJQw}WtNz0O01Z4B{no4g!th@PXM#{VS~{xLXw0>>
zNIgG~*)i^8gPM6%tBQ@D{le-}zX%J??0G>>!l4{mx2Pc5&J&-<OGh4UFH(1?`Q9yE
z+HVik*A&CU7)fbyY=M{|RPj3fZ>6Kswx__L%C&l*(*eRmM+Qs<rmoFao{plQqN4-H
z;Eye?EFsNQ>WYGU_X>QW=T6vF8!r0*oax|V#QBtrJvw@f`P%&;*J&$h4MM?Hy(Pd&
zf}i0empYcRr8ho{Xw@JOt*zi6u~aCtPezprLK#h=t^5x$t}Qasg=hP(jZ@ux!@~K8
z!uf}<n0on#doP$j#eB*BE9O4S<_Ga#FyCUnVZOzD!zFxneb>gP?!GlYb@5s5zAHbH
zH5={_bA7_<Z@67U-AjGck98}lOy0Trqt9okC;Ey%y^>J<ffki2N|L0hKIL^g+@kl4
zII3mmmpp)tR};Zbad#%pK5Z{jeqH<Eg^D>taLV@BY*&9F{)S!NPjR$lC*<4z*}cwn
A4gdfE

literal 0
HcmV?d00001


From b89368d7b62bb52d3c3e077dfc57b1363b222dda Mon Sep 17 00:00:00 2001
From: Hardik Singh Behl <hardik.behl7444@gmail.com>
Date: Thu, 2 May 2024 12:54:31 +0530
Subject: [PATCH 02/25] initial incomplete draft

---
 .../2024/2024-05-03-aws-s3-presigned-urls.md  | 136 ++++++++++++++++++
 1 file changed, 136 insertions(+)
 create mode 100644 content/blog/2024/2024-05-03-aws-s3-presigned-urls.md

diff --git a/content/blog/2024/2024-05-03-aws-s3-presigned-urls.md b/content/blog/2024/2024-05-03-aws-s3-presigned-urls.md
new file mode 100644
index 000000000..070901542
--- /dev/null
+++ b/content/blog/2024/2024-05-03-aws-s3-presigned-urls.md
@@ -0,0 +1,136 @@
+---
+title: "Using AWS S3 Presigned URLs in Spring Boot"
+categories: [ "AWS", "Spring Boot", "Java" ]
+date: 2024-05-02 00:00:00 +0530
+modified: 2024-05-02 00:00:00 +0530
+authors: [ "hardik" ]
+description: "In this article, we demonstrate how to use AWS S3 Presigned URLs in a Spring Boot application to offload file transfers, reducing server load and improving performance. We cover required dependencies, configuration, IAM policy, generation of Presigned URLs and integration testing with LocalStack and Testcontainers."
+image: images/stock/0139-stamped-envelope-1200x628-branded.jpg
+url: "aws-s3-presigned-urls-spring-boot"
+---
+
+When building web applications that involve file uploads or downloads, a common approach is to have the files pass through the application server. However, this can lead to **increased load on the server, consuming valuable computing resources, and potentially impacting performance**. A more efficient solution is to **offload file transfers to the client (web browsers, desktop/mobile applications) using Presigned URLs**.
+
+Presigned URLs are time-limited URLs that **allow clients temporary access to upload or download objects directly to or from the storage solution being used**. These URLs are generated with a specified expiration time, after which they are no longer accessible.
+
+The storage solution we will be using in this article is <a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide" target="_blank">Amazon S3 (Simple Storage Service)</a>, provided by AWS. However, it's worth noting that **the concept of Presigned URLs is not limited to AWS**. It can also be implemented with other cloud storage services like Google Cloud Storage, DigitalOcean Spaces, etc.
+
+In this article, we will explore how to generate S3 Presigned URLs in a Spring Boot application using Spring Cloud AWS. We'll go through the necessary configurations and create a service class that exposes methods to generate Presigned URLs for uploading objects to and downloading objects from the specified S3 bucket.
+
+We will also test our developed Presigned URL functionality using LocalStack and Testcontainers.
+
+## Use Cases and Benefits of Presigned URLs
+
+Before diving into the implementation, let's further discuss the use cases and advantages of using S3 Presigned URLs to offload file transfers from your application server:
+
+* **Large File Downloads**: When having an entertainment or an e-learning platform that serves video courses to users, instead of serving the large video files directly from our application server, we can generate Presigned URLs for each video file and offload the responsibility of downloading/streaming the video directly from S3 to the client. 
+
+  Before generating the Presigned URL, our server can validate/authenticate the user requesting the video content. In addition to this, we can also restrict access to the video content to a specific IP address from which the request originated. 
+
+  By implementing Presigned URLs on applications that serve high volume of content from S3, we **reduce the load on our server(s), improve performance and make our architecture scalable**.
+
+* **Uploading User-Generated Content**: complete this point
+
+Now that we understand the use cases for which we can implement Presigned URls and it's benefits, let's proceed with the implementation.
+
+{{% github "https://github.com/thombergs/code-examples/tree/master/aws/spring-cloud-aws-s3" %}}
+
+## Configurations
+
+We will be using <a href="https://awspring.io/" target="_blank">Spring Cloud AWS</a> to connect to and interact with our provisioned S3 bucket. While interacting with S3 directly through the <a href="https://mvnrepository.com/artifact/software.amazon.awssdk/s3" target="_blank">AWS SDK for Java</a> is possible, it often leads to verbose configuration classes and boilerplate code.
+
+Spring Cloud AWS simplifies this integration by providing a layer of abstraction over the official SDK, making it easier to interact with services like S3.
+
+The main dependency that we will need is `spring-cloud-aws-starter-s3`, which contains all S3 related classes needed by our application.
+
+We will also make use of <a href="https://mvnrepository.com/artifact/io.awspring.cloud/spring-cloud-aws-dependencies" target="_blank">Spring Cloud AWS BOM</a> (Bill of Materials) to manage the version of S3 starter in our project. The BOM ensures version compatibility between the declared dependencies, avoids conflicts and makes it easier to update versions in the future.
+
+Here is how our `pom.xml` file would look like:
+
+```xml
+  <properties>
+    <spring.cloud.version>3.1.1</spring.cloud.version>
+  </properties>
+
+  <dependencies>
+    <!-- Other project dependencies... -->
+    <dependency>
+      <groupId>io.awspring.cloud</groupId>
+      <artifactId>spring-cloud-aws-starter-s3</artifactId>
+    </dependency>
+  </dependencies>
+
+  <dependencyManagement>
+    <dependencies>
+      <dependency>
+        <groupId>io.awspring.cloud</groupId>
+        <artifactId>spring-cloud-aws</artifactId>
+        <version>${spring.cloud.version}</version>
+        <type>pom</type>
+        <scope>import</scope>
+      </dependency>
+    </dependencies>
+  </dependencyManagement>
+```
+
+Now, the only thing left in order to allow Spring Cloud AWS to establish connection with the AWS S3 service, is to define the necessary configuration properties in our `application.yaml` file:
+
+```yaml
+spring:
+  cloud:
+    aws:
+      credentials:
+        access-key: ${AWS_ACCESS_KEY}
+        secret-key: ${AWS_SECRET_KEY}
+      s3:
+        region: ${AWS_S3_REGION}
+```
+Spring Cloud AWS will automatically create the necessary configuration beans using the above defined properties, allowing us to interact with the S3 service in our application.
+
+### S3 Bucket Name and Presigned URL Validity
+
+write what two properties are needed
+
+```java
+@Getter
+@Setter
+@Validated
+@ConfigurationProperties(prefix = "io.reflectoring.aws.s3")
+public class AwsS3BucketProperties {
+
+  @NotBlank(message = "S3 bucket name must be configured")
+  private String bucketName;
+
+  @Valid
+  private PresignedUrl presignedUrl = new PresignedUrl();
+
+  @Getter
+  @Setter
+  @Validated
+  public class PresignedUrl {
+
+    @NotNull(message = "S3 presigned URL validity must be specified")
+    @Positive(message = "S3 presigned URL validity must be a positive value")
+    private Integer validity;
+
+  }
+
+}
+```
+explain validations in place
+
+Below is a snippet of our `application.yaml` file where we have defined the required properties which will be automatically mapped to our above defined class:
+
+```yaml
+io:
+  reflectoring:
+    aws:
+      s3:
+        bucket-name: ${AWS_S3_BUCKET_NAME}
+        presigned-url:
+          validity: ${AWS_S3_PRESIGNED_URL_VALIDITY}
+```
+
+This setup allows us to externalize the bucket name and the validity duration of the Presigned URLs attributes and easily access it in our code.
+
+This configuration, assumes that the application will be operating against a single S3 bucket and the defined validity will be applicable for both PUT and GET Presigned URls. If that is not the case for your application, then the `AwsS3BucketProperties` can be modified as per requirement. 
\ No newline at end of file

From 22f6765589d3db42789a7cd1d48663dd5461e085 Mon Sep 17 00:00:00 2001
From: Hardik Singh Behl <hardik.behl7444@gmail.com>
Date: Fri, 3 May 2024 15:45:18 +0530
Subject: [PATCH 03/25] fix article url

---
 .../2024/2024-05-03-aws-s3-presigned-urls.md  | 38 ++++++++++++++++++-
 1 file changed, 36 insertions(+), 2 deletions(-)

diff --git a/content/blog/2024/2024-05-03-aws-s3-presigned-urls.md b/content/blog/2024/2024-05-03-aws-s3-presigned-urls.md
index 070901542..036323edc 100644
--- a/content/blog/2024/2024-05-03-aws-s3-presigned-urls.md
+++ b/content/blog/2024/2024-05-03-aws-s3-presigned-urls.md
@@ -6,7 +6,7 @@ modified: 2024-05-02 00:00:00 +0530
 authors: [ "hardik" ]
 description: "In this article, we demonstrate how to use AWS S3 Presigned URLs in a Spring Boot application to offload file transfers, reducing server load and improving performance. We cover required dependencies, configuration, IAM policy, generation of Presigned URLs and integration testing with LocalStack and Testcontainers."
 image: images/stock/0139-stamped-envelope-1200x628-branded.jpg
-url: "aws-s3-presigned-urls-spring-boot"
+url: "aws-s3-presigned-url-spring-boot"
 ---
 
 When building web applications that involve file uploads or downloads, a common approach is to have the files pass through the application server. However, this can lead to **increased load on the server, consuming valuable computing resources, and potentially impacting performance**. A more efficient solution is to **offload file transfers to the client (web browsers, desktop/mobile applications) using Presigned URLs**.
@@ -133,4 +133,38 @@ io:
 
 This setup allows us to externalize the bucket name and the validity duration of the Presigned URLs attributes and easily access it in our code.
 
-This configuration, assumes that the application will be operating against a single S3 bucket and the defined validity will be applicable for both PUT and GET Presigned URls. If that is not the case for your application, then the `AwsS3BucketProperties` can be modified as per requirement. 
\ No newline at end of file
+This configuration, assumes that the application will be operating against a single S3 bucket and the defined validity will be applicable for both PUT and GET Presigned URls. If that is not the case for your application, then the `AwsS3BucketProperties` can be modified as per requirement. 
+
+## Generating Presigned URLs
+
+```java
+@Service
+@RequiredArgsConstructor
+@EnableConfigurationProperties(AwsS3BucketProperties.class)
+public class StorageService {
+
+  private final S3Template s3Template;
+  private final AwsS3BucketProperties awsS3BucketProperties;
+
+  public URL generateViewablePresignedUrl(String objectKey) {
+    var bucketName = awsS3BucketProperties.getBucketName();
+    var urlValidity = awsS3BucketProperties.getPresignedUrl().getValidity();
+    var urlValidityDuration = Duration.ofSeconds(urlValidity);
+
+    return s3Template.createSignedGetURL(bucketName, objectKey, urlValidityDuration);
+  }
+
+  public URL generateUploadablePresignedUrl(String objectKey) {
+    var bucketName = awsS3BucketProperties.getBucketName();
+    var urlValidity = awsS3BucketProperties.getPresignedUrl().getValidity();
+    var urlValidityDuration = Duration.ofSeconds(urlValidity);
+
+    return s3Template.createSignedPutURL(bucketName, objectKey, urlValidityDuration);
+  }
+
+}
+```
+
+## Required IAM Permissions
+
+## Conclusion
\ No newline at end of file

From 7b48cd35cc3fe2190f976e7fce20adc6abeb650b Mon Sep 17 00:00:00 2001
From: Hardik Singh Behl <hardik.behl7444@gmail.com>
Date: Thu, 9 May 2024 21:07:36 +0530
Subject: [PATCH 04/25] updating blog date

---
 ...-presigned-urls.md => 2024-05-12-aws-s3-presigned-urls.md} | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)
 rename content/blog/2024/{2024-05-03-aws-s3-presigned-urls.md => 2024-05-12-aws-s3-presigned-urls.md} (99%)

diff --git a/content/blog/2024/2024-05-03-aws-s3-presigned-urls.md b/content/blog/2024/2024-05-12-aws-s3-presigned-urls.md
similarity index 99%
rename from content/blog/2024/2024-05-03-aws-s3-presigned-urls.md
rename to content/blog/2024/2024-05-12-aws-s3-presigned-urls.md
index 036323edc..011dd000b 100644
--- a/content/blog/2024/2024-05-03-aws-s3-presigned-urls.md
+++ b/content/blog/2024/2024-05-12-aws-s3-presigned-urls.md
@@ -1,8 +1,8 @@
 ---
 title: "Using AWS S3 Presigned URLs in Spring Boot"
 categories: [ "AWS", "Spring Boot", "Java" ]
-date: 2024-05-02 00:00:00 +0530
-modified: 2024-05-02 00:00:00 +0530
+date: 2024-05-12 00:00:00 +0530
+modified: 2024-05-12 00:00:00 +0530
 authors: [ "hardik" ]
 description: "In this article, we demonstrate how to use AWS S3 Presigned URLs in a Spring Boot application to offload file transfers, reducing server load and improving performance. We cover required dependencies, configuration, IAM policy, generation of Presigned URLs and integration testing with LocalStack and Testcontainers."
 image: images/stock/0139-stamped-envelope-1200x628-branded.jpg

From 545a30c18473731c2447e4472d7eed95e9647e6b Mon Sep 17 00:00:00 2001
From: Hardik Singh Behl <hardik.behl7444@gmail.com>
Date: Thu, 9 May 2024 21:43:40 +0530
Subject: [PATCH 05/25] fix: description

---
 content/blog/2024/2024-05-12-aws-s3-presigned-urls.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/content/blog/2024/2024-05-12-aws-s3-presigned-urls.md b/content/blog/2024/2024-05-12-aws-s3-presigned-urls.md
index 011dd000b..6520eb515 100644
--- a/content/blog/2024/2024-05-12-aws-s3-presigned-urls.md
+++ b/content/blog/2024/2024-05-12-aws-s3-presigned-urls.md
@@ -4,7 +4,7 @@ categories: [ "AWS", "Spring Boot", "Java" ]
 date: 2024-05-12 00:00:00 +0530
 modified: 2024-05-12 00:00:00 +0530
 authors: [ "hardik" ]
-description: "In this article, we demonstrate how to use AWS S3 Presigned URLs in a Spring Boot application to offload file transfers, reducing server load and improving performance. We cover required dependencies, configuration, IAM policy, generation of Presigned URLs and integration testing with LocalStack and Testcontainers."
+description: "In this article, we demonstrate how to use AWS S3 Presigned URLs in a Spring Boot application to offload file transfers, reduce server load and improve performance. We cover required dependencies, configuration, IAM policy, generation of Presigned URLs and integration testing with LocalStack and Testcontainers."
 image: images/stock/0139-stamped-envelope-1200x628-branded.jpg
 url: "aws-s3-presigned-url-spring-boot"
 ---

From 288f508b090d643e3f851a2e1e86a09b2608c3e9 Mon Sep 17 00:00:00 2001
From: Hardik Singh Behl <hardik.behl7444@gmail.com>
Date: Fri, 10 May 2024 18:28:07 +0530
Subject: [PATCH 06/25] finalizing initial complete draft

---
 .../2024/2024-05-12-aws-s3-presigned-urls.md  | 269 +++++++++++++++++-
 1 file changed, 254 insertions(+), 15 deletions(-)

diff --git a/content/blog/2024/2024-05-12-aws-s3-presigned-urls.md b/content/blog/2024/2024-05-12-aws-s3-presigned-urls.md
index 6520eb515..c0af9d1c3 100644
--- a/content/blog/2024/2024-05-12-aws-s3-presigned-urls.md
+++ b/content/blog/2024/2024-05-12-aws-s3-presigned-urls.md
@@ -15,13 +15,13 @@ Presigned URLs are time-limited URLs that **allow clients temporary access to up
 
 The storage solution we will be using in this article is <a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide" target="_blank">Amazon S3 (Simple Storage Service)</a>, provided by AWS. However, it's worth noting that **the concept of Presigned URLs is not limited to AWS**. It can also be implemented with other cloud storage services like Google Cloud Storage, DigitalOcean Spaces, etc.
 
-In this article, we will explore how to generate S3 Presigned URLs in a Spring Boot application using Spring Cloud AWS. We'll go through the necessary configurations and create a service class that exposes methods to generate Presigned URLs for uploading objects to and downloading objects from the specified S3 bucket.
+In this article, we will explore how to generate Presigned URLs in a Spring Boot application using **Spring Cloud AWS**. We will walk through the required configurations and develop a service class that provides methods for generating Presigned URLs. These URLs will allow the client applications to securely upload and download objects to/from a provisioned S3 bucket.
 
-We will also test our developed Presigned URL functionality using LocalStack and Testcontainers.
+We will also test our developed Presigned URL functionality using **LocalStack and Testcontainers**.
 
 ## Use Cases and Benefits of Presigned URLs
 
-Before diving into the implementation, let's further discuss the use cases and advantages of using S3 Presigned URLs to offload file transfers from your application server:
+Before diving into the implementation, let's further discuss the use cases and advantages of using S3 Presigned URLs to offload file transfers from our application servers:
 
 * **Large File Downloads**: When having an entertainment or an e-learning platform that serves video courses to users, instead of serving the large video files directly from our application server, we can generate Presigned URLs for each video file and offload the responsibility of downloading/streaming the video directly from S3 to the client. 
 
@@ -29,9 +29,11 @@ Before diving into the implementation, let's further discuss the use cases and a
 
   By implementing Presigned URLs on applications that serve high volume of content from S3, we **reduce the load on our server(s), improve performance and make our architecture scalable**.
 
-* **Uploading User-Generated Content**: complete this point
+* **Uploading User Generated Content**: In scenarios where our application requires the users to upload files such as profile pictures, KYC documents, or other media content, instead of having the files pass through our application server, we can generate a Presigned URL with the necessary permissions and provide it to the client.
 
-Now that we understand the use cases for which we can implement Presigned URls and it's benefits, let's proceed with the implementation.
+  This approach not only reduces the load on our application server but also simplifies the upload process. The client can initiate the file upload directly to S3, eliminating the need for temporary storage on our server and the additional step of forwarding the file to S3.
+
+Now that we understand the use cases for which we can implement Presigned URLs and their benefits, let's proceed with the implementation.
 
 {{% github "https://github.com/thombergs/code-examples/tree/master/aws/spring-cloud-aws-s3" %}}
 
@@ -89,7 +91,7 @@ Spring Cloud AWS will automatically create the necessary configuration beans usi
 
 ### S3 Bucket Name and Presigned URL Validity
 
-write what two properties are needed
+To perform operations against a provisioned S3 bucket, we need to provide it’s name. And to generate Presigned URLs, we need to provide a validity duration. We will store these properties in our project's `application.yaml` file and make use of `@ConfigurationProperties` to map the values to a POJO:
 
 ```java
 @Getter
@@ -115,9 +117,17 @@ public class AwsS3BucketProperties {
 
   }
 
+  public Duration getPresignedUrlValidity() {
+    var urlValidity = this.presignedUrl.validity;
+    return Duration.ofSeconds(urlValidity);
+  }
+
 }
 ```
-explain validations in place
+
+We have added validation annotations to ensure that both the bucket name and Presigned URL validity are configured correctly. If any of the validations fail, it will result in the Spring Application Context failing to start up.
+
+When generating Presigned URLs, the validity duration needs to be provided as an instance of the `Duration` class. To facilitate this, we have also added a `getPresignedUrlValidity()` method in our class.
 
 Below is a snippet of our `application.yaml` file where we have defined the required properties which will be automatically mapped to our above defined class:
 
@@ -133,10 +143,12 @@ io:
 
 This setup allows us to externalize the bucket name and the validity duration of the Presigned URLs attributes and easily access it in our code.
 
-This configuration, assumes that the application will be operating against a single S3 bucket and the defined validity will be applicable for both PUT and GET Presigned URls. If that is not the case for your application, then the `AwsS3BucketProperties` can be modified as per requirement. 
+This configuration **assumes that the application will be operating against a single S3 bucket and the defined validity will be applicable for both PUT and GET Presigned URls**. If that is not the case for your application, then the `AwsS3BucketProperties` can be modified as per requirement. 
 
 ## Generating Presigned URLs
 
+Now that we have our configurations set up, we'll proceed to develop our service class that generates Presigned URLs for uploading and downloading objects:
+
 ```java
 @Service
 @RequiredArgsConstructor
@@ -148,23 +160,250 @@ public class StorageService {
 
   public URL generateViewablePresignedUrl(String objectKey) {
     var bucketName = awsS3BucketProperties.getBucketName();
-    var urlValidity = awsS3BucketProperties.getPresignedUrl().getValidity();
-    var urlValidityDuration = Duration.ofSeconds(urlValidity);
+    var urlValidity = awsS3BucketProperties.getPresignedUrlValidity();
 
-    return s3Template.createSignedGetURL(bucketName, objectKey, urlValidityDuration);
+    return s3Template.createSignedGetURL(bucketName, objectKey, urlValidity);
   }
 
   public URL generateUploadablePresignedUrl(String objectKey) {
     var bucketName = awsS3BucketProperties.getBucketName();
-    var urlValidity = awsS3BucketProperties.getPresignedUrl().getValidity();
-    var urlValidityDuration = Duration.ofSeconds(urlValidity);
+    var urlValidity = awsS3BucketProperties.getPresignedUrlValidity();
 
-    return s3Template.createSignedPutURL(bucketName, objectKey, urlValidityDuration);
+    return s3Template.createSignedPutURL(bucketName, objectKey, urlValidity);
   }
 
 }
 ```
+We have used the `S3Template` class provided by Spring Cloud AWS in our service layer which offers a high level abstraction over the `S3Presigner` class from the official AWS SDK.
+
+While it is possible to use the `S3Presigner` class directly, `S3Template` reduces boilerplate code and simplifies the generation of Presigned URLs by offering convenient, Spring-friendly methods.
+
+We also make use of our custom `AwsS3BucketProperties` class to reference the S3 bucket name and the Presigned URL validity duration defined in our `application.yaml` file.
 
 ## Required IAM Permissions
 
-## Conclusion
\ No newline at end of file
+To have our service layer generate Presigned URLs correctly, the IAM user whose security credentials we have configured must have the necessary permissions of `s3:GetObject` and `s3:PutObject`.
+
+Here is what our policy should look like:
+
+```json
+{
+  "Version": "2012-10-17",
+  "Statement": [
+    {
+      "Effect": "Allow",
+      "Action": [
+        "s3:GetObject",
+        "s3:PutObject"
+      ],
+      "Resource": "arn:aws:s3:::bucket-name/*"
+    }
+  ]
+}
+```
+
+The above IAM policy conforms to the least privilege principle, by granting only the necessary permissions required for our service layer to generate Presigned URLs. We also specify the bucket ARN in the `Resource` field, further limiting the scope of the IAM policy to work with a single bucket that is provisioned for our application.
+
+## Integration Testing with LocalStack and Testcontainers
+
+We cannot conclude this article without testing the code we have written so far. We need to ensure that our configurations and service layer work correctly. We will be making use of LocalStack and Testcontainers, but first let’s look at what these two tools are:
+
+* <a href="https://www.localstack.cloud/" target="_blank">LocalStack</a> : is a **cloud service emulator** that enables local development and testing of AWS services, without the need for connecting to a remote cloud provider. We'll be provisioning the required S3 bucket inside this emulator.
+* <a href="https://java.testcontainers.org/modules/localstack/" target="_blank">Testcontainers</a> : is a library that **provides lightweight, throwaway instances of Docker containers** for integration testing. We will be starting a LocalStack container via this library.
+
+The prerequisite for running the LocalStack emulator via Testcontainers is, as you’ve guessed it, **an up-and-running Docker instance**. We need to ensure this prerequisite is met when running the test suite either locally or when using a CI/CD pipeline.
+
+Let’s start by declaring the required test dependencies in our `pom.xml`:
+
+```xml
+<!-- Test dependencies -->
+<dependency>
+  <groupId>org.springframework.boot</groupId>
+  <artifactId>spring-boot-starter-test</artifactId>
+  <scope>test</scope>
+</dependency>
+<dependency>
+  <groupId>org.testcontainers</groupId>
+  <artifactId>localstack</artifactId>
+  <scope>test</scope>
+</dependency>
+```
+
+The declared `spring-boot-starter-test` gives us the basic testing toolbox as it transitively includes JUnit, AssertJ and other utility libraries, that we will be needing for writing assertions and running our tests.
+
+And `org.testcontainers:localstack` dependency will allow us to run the LocalStack emulator inside a disposable Docker container, ensuring an isolated environment for our integration test.
+
+### Provisioning S3 Bucket using Init Hooks
+
+In order to upload and download objects from an S3 bucket via Presigned URLs, we need.. an S3 bucket. (big brain stuff 🧠) 
+
+Localstack gives us the ability to create required AWS resources when the container is started via <a href="https://docs.localstack.cloud/references/init-hooks/" target="_blank">Initialization Hooks</a>. We will be creating a bash script `init-s3-bucket.sh` for this purpose inside our `src/test/resources` folder:
+
+```bash
+#!/bin/bash
+bucket_name="reflectoring-bucket"
+
+awslocal s3api create-bucket --bucket $bucket_name
+
+echo "S3 bucket '$bucket_name' created successfully"
+echo "Executed init-s3-bucket.sh"
+```
+
+The script creates an S3 bucket with name `reflectoring-bucket`. We will copy this script to the path `/etc/localstack/init/ready.d` inside the LocalStack container for execution in our integration test class.
+
+### Starting LocalStack via Testcontainers
+
+At the time of this writing, the latest version of the LocalStack image is `3.4`, we will be using this version in our integration test class:
+
+```java
+@SpringBootTest
+class StorageServiceIT {
+
+  private static final LocalStackContainer localStackContainer;
+
+  // Bucket name as configured in src/test/resources/init-s3-bucket.sh
+  private static final String BUCKET_NAME = "reflectoring-bucket";
+  private static final Integer PRESIGNED_URL_VALIDITY = randomValiditySeconds();
+
+  static {
+    localStackContainer = new LocalStackContainer(DockerImageName.parse("localstack/localstack:3.4"))
+        .withCopyFileToContainer(MountableFile.forClasspathResource("init-s3-bucket.sh", 0744), "/etc/localstack/init/ready.d/init-s3-bucket.sh")
+        .withServices(Service.S3)
+        .waitingFor(Wait.forLogMessage(".*Executed init-s3-bucket.sh.*", 1));
+    localStackContainer.start();
+  }
+
+  @DynamicPropertySource
+  static void properties(DynamicPropertyRegistry registry) {
+    // spring cloud aws properties
+    registry.add("spring.cloud.aws.credentials.access-key", localStackContainer::getAccessKey);
+    registry.add("spring.cloud.aws.credentials.secret-key", localStackContainer::getSecretKey);
+    registry.add("spring.cloud.aws.s3.region", localStackContainer::getRegion);
+    registry.add("spring.cloud.aws.s3.endpoint", localStackContainer::getEndpoint);
+
+    // custom properties
+    registry.add("io.reflectoring.aws.s3.bucket-name", () -> BUCKET_NAME);
+    registry.add("io.reflectoring.aws.s3.presigned-url.validity", () -> PRESIGNED_URL_VALIDITY);
+  }
+
+  private static int randomValiditySeconds() {
+    return ThreadLocalRandom.current().nextInt(5, 11);
+  }
+
+}
+```
+In our integration test class `StorageServiceIT`, we do the following:
+
+* Start a new instance of the LocalStack container and enable the **`S3`** service.
+* Copy our bash script **`init-s3-bucket.sh`** into the container to ensure bucket creation.
+* Configure a strategy to wait for the log **`"Executed init-s3-bucket.sh"`** to be printed, as defined in our init script.
+* Configure a small random Presigned URL validity through **`randomValiditySeconds()`**.
+* Dynamically define the AWS configuration properties needed by our applications in order to create the required S3 related beans using **`@DynamicPropertySource`**.
+
+Our `@DynamicPropertySource` code block declares an additional `spring.cloud.aws.s3.endpoint` property, which is not present in the main `application.yaml` file.
+
+This property is necessary when connecting to the LocalStack container's S3 bucket, `reflectoring-bucket`, as it requires a specific endpoint URL. However, when connecting to an actual AWS S3 bucket, specifying an endpoint URL is not required. AWS automatically uses the default endpoint for each service in the configured region.
+
+The LocalStack container will be automatically destroyed post test suite execution, hence we do not need to worry about manual cleanups.
+
+With this setup, our applications will use the started LocalStack container for all interactions with AWS cloud during the execution of our integration test, providing an **isolated and ephemeral testing environment**.
+
+### Testing the Service Layer
+
+With the LocalStack container set up successfully via Testcontainers, we can now write test cases to ensure our service layer generates legitimate Presigned URLs that can be used to upload and download objects to/from the provisioned S3 bucket:
+
+```java
+@SpringBootTest
+class StorageServiceIT {
+
+  @Autowired
+  private S3Template s3Template;
+
+  @Autowired
+  private StorageService storageService;
+
+  // LocalStack setup as seen above
+
+  @Test
+  void shouldGeneratePresignedUrlToFetchStoredObjectFromBucket() {
+    // Prepare test file and upload to S3 Bucket
+    var key = RandomString.make(10) + ".txt";
+    var fileContent = RandomString.make(50);
+    var fileToUpload = createTextFile(key, fileContent);
+    storageService.save(fileToUpload);
+
+    // Invoke method under test
+    var presignedUrl = storageService.generateViewablePresignedUrl(key);
+
+    // Perform a GET request to the presigned URL
+    var restClient = RestClient.builder().build();
+    var responseBody = restClient.method(HttpMethod.GET)
+        .uri(URI.create(presignedUrl.toExternalForm()))
+        .retrieve()
+        .body(byte[].class);
+
+    // verify the retrieved content matches the expected file content.
+    var retrievedContent = new String(responseBody, StandardCharsets.UTF_8);
+    assertThat(fileContent).isEqualTo(retrievedContent);
+  }
+
+  private MultipartFile createTextFile(String fileName, String content) {
+    var fileContentBytes = content.getBytes();
+    var inputStream = new ByteArrayInputStream(fileContentBytes);
+    return new MockMultipartFile(fileName, fileName, "text/plain", inputStream);
+  }
+
+}
+```
+
+In our initial test case, we verify that the `StorageService` class can successfully generate a Presigned URL that can be used to download/view an object from the provisioned S3 bucket.
+
+We begin by preparing a file with random content and name and save it to our S3 bucket. Then we invoke the `generateViewablePresignedUrl` method exposed by our service layer with the corresponding random file key.
+
+Finally, we perform an HTTP GET request on the generated Presigned URL and assert that the API response matches with the saved file's content.
+
+Now, to validate the functionality of uploading an object through the generated Presigned URL:
+
+```java
+@Test
+void shouldGeneratePresignedUrlForUploadingObjectToBucket() {
+  // Prepare test file to upload
+  var key = RandomString.make(10) + ".txt";
+  var fileContent = RandomString.make(50);
+  var fileToUpload = createTextFile(key, fileContent);
+
+  // Invoke method under test
+  var presignedUrl = storageService.generateUploadablePresignedUrl(key);
+
+  // Upload the test file using the presigned URL
+  var restClient = RestClient.builder().build();
+  var response = restClient.method(HttpMethod.PUT)
+    .uri(URI.create(presignedUrl.toExternalForm()))
+    .body(fileToUpload.getBytes())
+    .retrieve()
+    .toBodilessEntity();
+  assertThat(response.getStatusCode()).isEqualTo(HttpStatus.OK);
+
+  // Verify that the file is saved successfully in S3 bucket
+  var isFileSaved = s3Template.objectExists(BUCKET_NAME, key);
+  assertThat(isFileSaved).isTrue();
+}
+```
+
+In the above test case, we again create a test file with random key and content. We invoke the `generateUploadablePresignedUrl` method of our service layer with the corresponding random file key to generate the Presigned URL.
+
+We perform an HTTP POST request on the generated Presigned URL and send the contents of the test file in the request body.
+
+Finally, we make use of `S3Template` to assert that the file is indeed saved in our S3 bucket successfully.
+
+By executing the above integration test cases, we successfully validate that our service layer generates valid Presigned URLs for both uploading and downloading objects to/from the provisioned S3 bucket.
+
+## Conclusion
+
+In this article, we explored how to **generate S3 Presigned URLs in a Spring Boot application using Spring Cloud AWS to offload file transfers from the application server to the client.**
+
+We discussed the benefits and use cases of using Presigned URLs, such as handling large file downloads and user generated content uploads. We walked through the necessary configurations and developed a service class that generates Presigned URLs for uploading and downloading objects to/from an S3 bucket.
+
+We also covered the required IAM permissions and tested our implementation using LocalStack and Testcontainers to ensure the functionality works as expected.
+
+The source code demonstrated throughout this article is available on <a href="https://github.com/thombergs/code-examples/tree/master/aws/spring-cloud-aws-s3" target="_blank">Github</a>. I would highly encourage you to explore the codebase and set it up locally.
\ No newline at end of file

From 176b2a011e202d841e7e0aab8250abd2780e0da1 Mon Sep 17 00:00:00 2001
From: Hardik Singh Behl <hardik.behl7444@gmail.com>
Date: Fri, 10 May 2024 18:30:52 +0530
Subject: [PATCH 07/25] fix: publish date to enable rendering

---
 content/blog/2024/2024-05-12-aws-s3-presigned-urls.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/content/blog/2024/2024-05-12-aws-s3-presigned-urls.md b/content/blog/2024/2024-05-12-aws-s3-presigned-urls.md
index c0af9d1c3..395704ef3 100644
--- a/content/blog/2024/2024-05-12-aws-s3-presigned-urls.md
+++ b/content/blog/2024/2024-05-12-aws-s3-presigned-urls.md
@@ -1,8 +1,8 @@
 ---
 title: "Using AWS S3 Presigned URLs in Spring Boot"
 categories: [ "AWS", "Spring Boot", "Java" ]
-date: 2024-05-12 00:00:00 +0530
-modified: 2024-05-12 00:00:00 +0530
+date: 2024-05-10 00:00:00 +0530
+modified: 2024-05-10 00:00:00 +0530
 authors: [ "hardik" ]
 description: "In this article, we demonstrate how to use AWS S3 Presigned URLs in a Spring Boot application to offload file transfers, reduce server load and improve performance. We cover required dependencies, configuration, IAM policy, generation of Presigned URLs and integration testing with LocalStack and Testcontainers."
 image: images/stock/0139-stamped-envelope-1200x628-branded.jpg

From 894cfcd1d8b9a76caaf0d695314dc3d22a79b699 Mon Sep 17 00:00:00 2001
From: Hardik Singh Behl <hardik.behl7444@gmail.com>
Date: Sat, 11 May 2024 12:06:22 +0530
Subject: [PATCH 08/25] fix: http method

---
 content/blog/2024/2024-05-12-aws-s3-presigned-urls.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/content/blog/2024/2024-05-12-aws-s3-presigned-urls.md b/content/blog/2024/2024-05-12-aws-s3-presigned-urls.md
index 395704ef3..954a2b13e 100644
--- a/content/blog/2024/2024-05-12-aws-s3-presigned-urls.md
+++ b/content/blog/2024/2024-05-12-aws-s3-presigned-urls.md
@@ -392,7 +392,7 @@ void shouldGeneratePresignedUrlForUploadingObjectToBucket() {
 
 In the above test case, we again create a test file with random key and content. We invoke the `generateUploadablePresignedUrl` method of our service layer with the corresponding random file key to generate the Presigned URL.
 
-We perform an HTTP POST request on the generated Presigned URL and send the contents of the test file in the request body.
+We perform an HTTP PUT request on the generated Presigned URL and send the contents of the test file in the request body.
 
 Finally, we make use of `S3Template` to assert that the file is indeed saved in our S3 bucket successfully.
 

From 1e5ccbad09da850dc858b9f334f49f62b3831314 Mon Sep 17 00:00:00 2001
From: Hardik Singh Behl <hardik.behl7444@gmail.com>
Date: Sat, 11 May 2024 12:14:26 +0530
Subject: [PATCH 09/25] improving grammar

---
 content/blog/2024/2024-05-12-aws-s3-presigned-urls.md | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/content/blog/2024/2024-05-12-aws-s3-presigned-urls.md b/content/blog/2024/2024-05-12-aws-s3-presigned-urls.md
index 954a2b13e..be57e0bc5 100644
--- a/content/blog/2024/2024-05-12-aws-s3-presigned-urls.md
+++ b/content/blog/2024/2024-05-12-aws-s3-presigned-urls.md
@@ -1,8 +1,8 @@
 ---
 title: "Using AWS S3 Presigned URLs in Spring Boot"
 categories: [ "AWS", "Spring Boot", "Java" ]
-date: 2024-05-10 00:00:00 +0530
-modified: 2024-05-10 00:00:00 +0530
+date: 2024-05-11 00:00:00 +0530
+modified: 2024-05-11 00:00:00 +0530
 authors: [ "hardik" ]
 description: "In this article, we demonstrate how to use AWS S3 Presigned URLs in a Spring Boot application to offload file transfers, reduce server load and improve performance. We cover required dependencies, configuration, IAM policy, generation of Presigned URLs and integration testing with LocalStack and Testcontainers."
 image: images/stock/0139-stamped-envelope-1200x628-branded.jpg
@@ -206,7 +206,7 @@ The above IAM policy conforms to the least privilege principle, by granting only
 
 ## Integration Testing with LocalStack and Testcontainers
 
-We cannot conclude this article without testing the code we have written so far. We need to ensure that our configurations and service layer work correctly. We will be making use of LocalStack and Testcontainers, but first let’s look at what these two tools are:
+Before concluding this article, we need to ensure that our configurations and service layer work correctly and are able to generate legitimate Presigned URLs. We will be making use of LocalStack and Testcontainers to do this, but first let's look at what these two tools are:
 
 * <a href="https://www.localstack.cloud/" target="_blank">LocalStack</a> : is a **cloud service emulator** that enables local development and testing of AWS services, without the need for connecting to a remote cloud provider. We'll be provisioning the required S3 bucket inside this emulator.
 * <a href="https://java.testcontainers.org/modules/localstack/" target="_blank">Testcontainers</a> : is a library that **provides lightweight, throwaway instances of Docker containers** for integration testing. We will be starting a LocalStack container via this library.
@@ -356,7 +356,7 @@ class StorageServiceIT {
 }
 ```
 
-In our initial test case, we verify that the `StorageService` class can successfully generate a Presigned URL that can be used to download/view an object from the provisioned S3 bucket.
+In our initial test case, we verify that our `StorageService` class can successfully generate a Presigned URL that can be used to download an object from the provisioned S3 bucket.
 
 We begin by preparing a file with random content and name and save it to our S3 bucket. Then we invoke the `generateViewablePresignedUrl` method exposed by our service layer with the corresponding random file key.
 

From 7db62ec86dff85849a26d219437c25e65a2d0f77 Mon Sep 17 00:00:00 2001
From: Hardik Singh Behl <hardik.behl7444@gmail.com>
Date: Sat, 11 May 2024 12:17:58 +0530
Subject: [PATCH 10/25] minor fix

---
 content/blog/2024/2024-05-12-aws-s3-presigned-urls.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/content/blog/2024/2024-05-12-aws-s3-presigned-urls.md b/content/blog/2024/2024-05-12-aws-s3-presigned-urls.md
index be57e0bc5..d9345717d 100644
--- a/content/blog/2024/2024-05-12-aws-s3-presigned-urls.md
+++ b/content/blog/2024/2024-05-12-aws-s3-presigned-urls.md
@@ -306,7 +306,7 @@ This property is necessary when connecting to the LocalStack container's S3 buck
 
 The LocalStack container will be automatically destroyed post test suite execution, hence we do not need to worry about manual cleanups.
 
-With this setup, our applications will use the started LocalStack container for all interactions with AWS cloud during the execution of our integration test, providing an **isolated and ephemeral testing environment**.
+With this setup, our application will use the started LocalStack container for all interactions with AWS cloud during the execution of our integration test, providing an **isolated and ephemeral testing environment**.
 
 ### Testing the Service Layer
 

From 9c39246338cd2765ec27cf5f4c545af66dde2cd2 Mon Sep 17 00:00:00 2001
From: Hardik Singh Behl <hardik.behl7444@gmail.com>
Date: Sat, 11 May 2024 12:27:19 +0530
Subject: [PATCH 11/25] grammatical fix

---
 content/blog/2024/2024-05-12-aws-s3-presigned-urls.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/content/blog/2024/2024-05-12-aws-s3-presigned-urls.md b/content/blog/2024/2024-05-12-aws-s3-presigned-urls.md
index d9345717d..0e0e9a280 100644
--- a/content/blog/2024/2024-05-12-aws-s3-presigned-urls.md
+++ b/content/blog/2024/2024-05-12-aws-s3-presigned-urls.md
@@ -91,7 +91,7 @@ Spring Cloud AWS will automatically create the necessary configuration beans usi
 
 ### S3 Bucket Name and Presigned URL Validity
 
-To perform operations against a provisioned S3 bucket, we need to provide it’s name. And to generate Presigned URLs, we need to provide a validity duration. We will store these properties in our project's `application.yaml` file and make use of `@ConfigurationProperties` to map the values to a POJO:
+To perform operations against a provisioned S3 bucket, we need to provide its name. And to generate Presigned URLs, we need to provide a validity duration. We will store these properties in our project's `application.yaml` file and make use of `@ConfigurationProperties` to map the values to a POJO:
 
 ```java
 @Getter

From 8bef1dc5305d718f1458f3ef5cf9df6fe3629f84 Mon Sep 17 00:00:00 2001
From: Hardik Singh Behl <hardik.behl7444@gmail.com>
Date: Sat, 25 May 2024 17:04:23 +0530
Subject: [PATCH 12/25] updating article date

---
 ...-presigned-urls.md => 2024-05-25-aws-s3-presigned-urls.md} | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)
 rename content/blog/2024/{2024-05-12-aws-s3-presigned-urls.md => 2024-05-25-aws-s3-presigned-urls.md} (99%)

diff --git a/content/blog/2024/2024-05-12-aws-s3-presigned-urls.md b/content/blog/2024/2024-05-25-aws-s3-presigned-urls.md
similarity index 99%
rename from content/blog/2024/2024-05-12-aws-s3-presigned-urls.md
rename to content/blog/2024/2024-05-25-aws-s3-presigned-urls.md
index 0e0e9a280..49bbefc2e 100644
--- a/content/blog/2024/2024-05-12-aws-s3-presigned-urls.md
+++ b/content/blog/2024/2024-05-25-aws-s3-presigned-urls.md
@@ -1,8 +1,8 @@
 ---
 title: "Using AWS S3 Presigned URLs in Spring Boot"
 categories: [ "AWS", "Spring Boot", "Java" ]
-date: 2024-05-11 00:00:00 +0530
-modified: 2024-05-11 00:00:00 +0530
+date: 2024-05-25 00:00:00 +0530
+modified: 2024-05-25 00:00:00 +0530
 authors: [ "hardik" ]
 description: "In this article, we demonstrate how to use AWS S3 Presigned URLs in a Spring Boot application to offload file transfers, reduce server load and improve performance. We cover required dependencies, configuration, IAM policy, generation of Presigned URLs and integration testing with LocalStack and Testcontainers."
 image: images/stock/0139-stamped-envelope-1200x628-branded.jpg

From 7e0d8d78226fc63e16bfdfab4285bd4374d91175 Mon Sep 17 00:00:00 2001
From: Hardik Singh Behl <hardik.behl7444@gmail.com>
Date: Tue, 28 May 2024 10:14:58 +0530
Subject: [PATCH 13/25] updating title case

---
 ...resigned-urls.md => 2024-05-28-aws-s3-presigned-urls.md} | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)
 rename content/blog/2024/{2024-05-25-aws-s3-presigned-urls.md => 2024-05-28-aws-s3-presigned-urls.md} (99%)

diff --git a/content/blog/2024/2024-05-25-aws-s3-presigned-urls.md b/content/blog/2024/2024-05-28-aws-s3-presigned-urls.md
similarity index 99%
rename from content/blog/2024/2024-05-25-aws-s3-presigned-urls.md
rename to content/blog/2024/2024-05-28-aws-s3-presigned-urls.md
index 49bbefc2e..edd3cfc1b 100644
--- a/content/blog/2024/2024-05-25-aws-s3-presigned-urls.md
+++ b/content/blog/2024/2024-05-28-aws-s3-presigned-urls.md
@@ -1,8 +1,8 @@
 ---
 title: "Using AWS S3 Presigned URLs in Spring Boot"
 categories: [ "AWS", "Spring Boot", "Java" ]
-date: 2024-05-25 00:00:00 +0530
-modified: 2024-05-25 00:00:00 +0530
+date: 2024-05-28 00:00:00 +0530
+modified: 2024-05-28 00:00:00 +0530
 authors: [ "hardik" ]
 description: "In this article, we demonstrate how to use AWS S3 Presigned URLs in a Spring Boot application to offload file transfers, reduce server load and improve performance. We cover required dependencies, configuration, IAM policy, generation of Presigned URLs and integration testing with LocalStack and Testcontainers."
 image: images/stock/0139-stamped-envelope-1200x628-branded.jpg
@@ -233,7 +233,7 @@ The declared `spring-boot-starter-test` gives us the basic testing toolbox as it
 
 And `org.testcontainers:localstack` dependency will allow us to run the LocalStack emulator inside a disposable Docker container, ensuring an isolated environment for our integration test.
 
-### Provisioning S3 Bucket using Init Hooks
+### Provisioning S3 Bucket Using Init Hooks
 
 In order to upload and download objects from an S3 bucket via Presigned URLs, we need.. an S3 bucket. (big brain stuff 🧠) 
 

From 3d9e910d41c70d5a1a5850355fa0630a53131389 Mon Sep 17 00:00:00 2001
From: Hardik Singh Behl <hardik.behl7444@gmail.com>
Date: Tue, 28 May 2024 10:28:39 +0530
Subject: [PATCH 14/25] updating order of sections

---
 content/blog/2024/2024-05-28-aws-s3-presigned-urls.md | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/content/blog/2024/2024-05-28-aws-s3-presigned-urls.md b/content/blog/2024/2024-05-28-aws-s3-presigned-urls.md
index edd3cfc1b..8215a9578 100644
--- a/content/blog/2024/2024-05-28-aws-s3-presigned-urls.md
+++ b/content/blog/2024/2024-05-28-aws-s3-presigned-urls.md
@@ -9,9 +9,9 @@ image: images/stock/0139-stamped-envelope-1200x628-branded.jpg
 url: "aws-s3-presigned-url-spring-boot"
 ---
 
-When building web applications that involve file uploads or downloads, a common approach is to have the files pass through the application server. However, this can lead to **increased load on the server, consuming valuable computing resources, and potentially impacting performance**. A more efficient solution is to **offload file transfers to the client (web browsers, desktop/mobile applications) using Presigned URLs**.
+When building web applications that involve file uploads or downloads, a common approach is to have the files pass through an application server. However, this can lead to **increased load on the server, consuming valuable computing resources, and potentially impacting performance**. A more efficient solution is to **offload file transfers to the client (web browsers, desktop/mobile applications) using Presigned URLs**.
 
-Presigned URLs are time-limited URLs that **allow clients temporary access to upload or download objects directly to or from the storage solution being used**. These URLs are generated with a specified expiration time, after which they are no longer accessible.
+Presigned URLs are **time-limited URLs that allow clients temporary access to upload or download objects directly to or from the storage solution being used**. These URLs are generated with a specified expiration time, after which they are no longer accessible.
 
 The storage solution we will be using in this article is <a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide" target="_blank">Amazon S3 (Simple Storage Service)</a>, provided by AWS. However, it's worth noting that **the concept of Presigned URLs is not limited to AWS**. It can also be implemented with other cloud storage services like Google Cloud Storage, DigitalOcean Spaces, etc.
 
@@ -19,6 +19,8 @@ In this article, we will explore how to generate Presigned URLs in a Spring Boot
 
 We will also test our developed Presigned URL functionality using **LocalStack and Testcontainers**.
 
+{{% github "https://github.com/thombergs/code-examples/tree/master/aws/spring-cloud-aws-s3" %}}
+
 ## Use Cases and Benefits of Presigned URLs
 
 Before diving into the implementation, let's further discuss the use cases and advantages of using S3 Presigned URLs to offload file transfers from our application servers:
@@ -35,8 +37,6 @@ Before diving into the implementation, let's further discuss the use cases and a
 
 Now that we understand the use cases for which we can implement Presigned URLs and their benefits, let's proceed with the implementation.
 
-{{% github "https://github.com/thombergs/code-examples/tree/master/aws/spring-cloud-aws-s3" %}}
-
 ## Configurations
 
 We will be using <a href="https://awspring.io/" target="_blank">Spring Cloud AWS</a> to connect to and interact with our provisioned S3 bucket. While interacting with S3 directly through the <a href="https://mvnrepository.com/artifact/software.amazon.awssdk/s3" target="_blank">AWS SDK for Java</a> is possible, it often leads to verbose configuration classes and boilerplate code.

From 9a3e46d1cb523107cba181e008136bcb53d93f94 Mon Sep 17 00:00:00 2001
From: Hardik Singh Behl <hardik.behl7444@gmail.com>
Date: Tue, 28 May 2024 11:48:06 +0530
Subject: [PATCH 15/25] minor improvements

---
 .../2024/2024-05-28-aws-s3-presigned-urls.md  | 58 ++++++++++---------
 1 file changed, 30 insertions(+), 28 deletions(-)

diff --git a/content/blog/2024/2024-05-28-aws-s3-presigned-urls.md b/content/blog/2024/2024-05-28-aws-s3-presigned-urls.md
index 8215a9578..769286a35 100644
--- a/content/blog/2024/2024-05-28-aws-s3-presigned-urls.md
+++ b/content/blog/2024/2024-05-28-aws-s3-presigned-urls.md
@@ -13,21 +13,21 @@ When building web applications that involve file uploads or downloads, a common
 
 Presigned URLs are **time-limited URLs that allow clients temporary access to upload or download objects directly to or from the storage solution being used**. These URLs are generated with a specified expiration time, after which they are no longer accessible.
 
-The storage solution we will be using in this article is <a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide" target="_blank">Amazon S3 (Simple Storage Service)</a>, provided by AWS. However, it's worth noting that **the concept of Presigned URLs is not limited to AWS**. It can also be implemented with other cloud storage services like Google Cloud Storage, DigitalOcean Spaces, etc.
+The storage solution we'll be using in this article is <a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide" target="_blank">Amazon S3 (Simple Storage Service)</a>, provided by AWS. However, it's worth noting that **the concept of Presigned URLs is not limited to AWS**. It can also be implemented with other cloud storage services like Google Cloud Storage, DigitalOcean Spaces, etc.
 
-In this article, we will explore how to generate Presigned URLs in a Spring Boot application using **Spring Cloud AWS**. We will walk through the required configurations and develop a service class that provides methods for generating Presigned URLs. These URLs will allow the client applications to securely upload and download objects to/from a provisioned S3 bucket.
+In this article, we'll discuss how to generate Presigned URLs in a Spring Boot application to delegate the responsibility of uploading/downloading files to the client. We'll be using **Spring Cloud AWS** to communicate with Amazon S3 and develop a service class that provides methods for generating Presigned URLs. 
 
-We will also test our developed Presigned URL functionality using **LocalStack and Testcontainers**.
+These URLs will allow the client applications to securely upload and download objects to/from a provisioned S3 bucket. We'll also test our developed Presigned URL functionality using **LocalStack and Testcontainers**.
 
 {{% github "https://github.com/thombergs/code-examples/tree/master/aws/spring-cloud-aws-s3" %}}
 
 ## Use Cases and Benefits of Presigned URLs
 
-Before diving into the implementation, let's further discuss the use cases and advantages of using S3 Presigned URLs to offload file transfers from our application servers:
+Before diving into the implementation, let's further discuss the use cases and advantages of using Presigned URLs to offload file transfers from our application servers:
 
-* **Large File Downloads**: When having an entertainment or an e-learning platform that serves video courses to users, instead of serving the large video files directly from our application server, we can generate Presigned URLs for each video file and offload the responsibility of downloading/streaming the video directly from S3 to the client. 
+* **Large File Downloads**: When having an entertainment or an e-learning platform that serves video courses to users, instead of serving the large video files from our application server, we can generate Presigned URLs for each video file and offload the responsibility of downloading/streaming the video directly from S3 to the client. 
 
-  Before generating the Presigned URL, our server can validate/authenticate the user requesting the video content. In addition to this, we can also restrict access to the video content to a specific IP address from which the request originated. 
+  To secure this architecture, before we generate the Presigned URLs, our server can validate/authenticate the user requesting the video content. Additionally, we can restrict access to the video content to the specific IP address that originated the request. 
 
   By implementing Presigned URLs on applications that serve high volume of content from S3, we **reduce the load on our server(s), improve performance and make our architecture scalable**.
 
@@ -39,13 +39,13 @@ Now that we understand the use cases for which we can implement Presigned URLs a
 
 ## Configurations
 
-We will be using <a href="https://awspring.io/" target="_blank">Spring Cloud AWS</a> to connect to and interact with our provisioned S3 bucket. While interacting with S3 directly through the <a href="https://mvnrepository.com/artifact/software.amazon.awssdk/s3" target="_blank">AWS SDK for Java</a> is possible, it often leads to verbose configuration classes and boilerplate code.
+We'll be using <a href="https://awspring.io/" target="_blank">Spring Cloud AWS</a> to connect to and interact with our provisioned S3 bucket. While interacting with S3 directly through the <a href="https://mvnrepository.com/artifact/software.amazon.awssdk/s3" target="_blank">AWS SDK for Java</a> is possible, it often leads to verbose configuration classes and boilerplate code.
 
 Spring Cloud AWS simplifies this integration by providing a layer of abstraction over the official SDK, making it easier to interact with services like S3.
 
-The main dependency that we will need is `spring-cloud-aws-starter-s3`, which contains all S3 related classes needed by our application.
+The main dependency that we need is `spring-cloud-aws-starter-s3`, which contains all S3 related classes needed by our application.
 
-We will also make use of <a href="https://mvnrepository.com/artifact/io.awspring.cloud/spring-cloud-aws-dependencies" target="_blank">Spring Cloud AWS BOM</a> (Bill of Materials) to manage the version of S3 starter in our project. The BOM ensures version compatibility between the declared dependencies, avoids conflicts and makes it easier to update versions in the future.
+We will also make use of <a href="https://mvnrepository.com/artifact/io.awspring.cloud/spring-cloud-aws-dependencies" target="_blank">Spring Cloud AWS BOM</a> (Bill of Materials) to manage the version of the S3 starter in our project. The BOM ensures version compatibility between the declared dependencies, avoids conflicts and makes it easier to update versions in the future.
 
 Here is how our `pom.xml` file would look like:
 
@@ -75,7 +75,7 @@ Here is how our `pom.xml` file would look like:
   </dependencyManagement>
 ```
 
-Now, the only thing left in order to allow Spring Cloud AWS to establish connection with the AWS S3 service, is to define the necessary configuration properties in our `application.yaml` file:
+Now, the only thing left in order to allow Spring Cloud AWS to establish a connection with the Amazon S3 service, is to define the necessary configuration properties in our `application.yaml` file:
 
 ```yaml
 spring:
@@ -91,7 +91,7 @@ Spring Cloud AWS will automatically create the necessary configuration beans usi
 
 ### S3 Bucket Name and Presigned URL Validity
 
-To perform operations against a provisioned S3 bucket, we need to provide its name. And to generate Presigned URLs, we need to provide a validity duration. We will store these properties in our project's `application.yaml` file and make use of `@ConfigurationProperties` to map the values to a POJO:
+To perform operations against a provisioned S3 bucket, we need to provide its name. And to generate Presigned URLs, we need to provide a validity duration. We'll store these properties in our `application.yaml` file and make use of `@ConfigurationProperties` to map the values to a POJO:
 
 ```java
 @Getter
@@ -125,11 +125,11 @@ public class AwsS3BucketProperties {
 }
 ```
 
-We have added validation annotations to ensure that both the bucket name and Presigned URL validity are configured correctly. If any of the validations fail, it will result in the Spring Application Context failing to start up.
+We've added validation annotations to ensure that both the bucket name and Presigned URL validity are configured correctly. If any of the validations fail, it will result in the Spring Application Context failing to start up. This allows us to conform to the <a href="https://www.codereliant.io/fail-fast-pattern/" target="_blank">fail fast principle</a>.
 
-When generating Presigned URLs, the validity duration needs to be provided as an instance of the `Duration` class. To facilitate this, we have also added a `getPresignedUrlValidity()` method in our class.
+When generating Presigned URLs, the validity duration needs to be provided as an instance of the `Duration` class. To facilitate this, we've also added a `getPresignedUrlValidity()` method in our class that'll be invoked by our service layer.
 
-Below is a snippet of our `application.yaml` file where we have defined the required properties which will be automatically mapped to our above defined class:
+Below is a snippet of our `application.yaml` file, which defines the required properties that will be automatically mapped to our `AwsS3BucketProperties` class defined above:
 
 ```yaml
 io:
@@ -143,7 +143,7 @@ io:
 
 This setup allows us to externalize the bucket name and the validity duration of the Presigned URLs attributes and easily access it in our code.
 
-This configuration **assumes that the application will be operating against a single S3 bucket and the defined validity will be applicable for both PUT and GET Presigned URls**. If that is not the case for your application, then the `AwsS3BucketProperties` can be modified as per requirement. 
+This configuration **assumes that the application will be operating against a single S3 bucket and the defined validity will be applicable for both PUT and GET Presigned URLs**. If that is not the case for your application, then the `AwsS3BucketProperties` class can be modified as per requirement. 
 
 ## Generating Presigned URLs
 
@@ -176,7 +176,7 @@ public class StorageService {
 ```
 We have used the `S3Template` class provided by Spring Cloud AWS in our service layer which offers a high level abstraction over the `S3Presigner` class from the official AWS SDK.
 
-While it is possible to use the `S3Presigner` class directly, `S3Template` reduces boilerplate code and simplifies the generation of Presigned URLs by offering convenient, Spring-friendly methods.
+While it's possible to use the `S3Presigner` class directly, `S3Template` reduces boilerplate code and simplifies the generation of Presigned URLs by offering convenient, Spring-friendly methods.
 
 We also make use of our custom `AwsS3BucketProperties` class to reference the S3 bucket name and the Presigned URL validity duration defined in our `application.yaml` file.
 
@@ -202,14 +202,14 @@ Here is what our policy should look like:
 }
 ```
 
-The above IAM policy conforms to the least privilege principle, by granting only the necessary permissions required for our service layer to generate Presigned URLs. We also specify the bucket ARN in the `Resource` field, further limiting the scope of the IAM policy to work with a single bucket that is provisioned for our application.
+The above IAM policy **conforms to the least privilege principle**, by granting only the necessary permissions required for our service layer to generate Presigned URLs. We also specify the bucket ARN in the `Resource` field, further limiting the scope of the IAM policy to work with a single bucket that is provisioned for our application.
 
 ## Integration Testing with LocalStack and Testcontainers
 
-Before concluding this article, we need to ensure that our configurations and service layer work correctly and are able to generate legitimate Presigned URLs. We will be making use of LocalStack and Testcontainers to do this, but first let's look at what these two tools are:
+Before concluding this article, we need to ensure that our configurations and service layer work correctly and are able to generate legitimate Presigned URLs. We'll be making use of LocalStack and Testcontainers to do this, but first let's look at what these two tools are:
 
 * <a href="https://www.localstack.cloud/" target="_blank">LocalStack</a> : is a **cloud service emulator** that enables local development and testing of AWS services, without the need for connecting to a remote cloud provider. We'll be provisioning the required S3 bucket inside this emulator.
-* <a href="https://java.testcontainers.org/modules/localstack/" target="_blank">Testcontainers</a> : is a library that **provides lightweight, throwaway instances of Docker containers** for integration testing. We will be starting a LocalStack container via this library.
+* <a href="https://java.testcontainers.org/modules/localstack/" target="_blank">Testcontainers</a> : is a library that **provides lightweight, throwaway instances of Docker containers** for integration testing. We'll be starting a LocalStack container via this library.
 
 The prerequisite for running the LocalStack emulator via Testcontainers is, as you’ve guessed it, **an up-and-running Docker instance**. We need to ensure this prerequisite is met when running the test suite either locally or when using a CI/CD pipeline.
 
@@ -235,9 +235,9 @@ And `org.testcontainers:localstack` dependency will allow us to run the LocalSta
 
 ### Provisioning S3 Bucket Using Init Hooks
 
-In order to upload and download objects from an S3 bucket via Presigned URLs, we need.. an S3 bucket. (big brain stuff 🧠) 
+In order to upload and download objects from an S3 bucket via Presigned URLs, we need... **an S3 bucket**. (big brain stuff 🧠) 
 
-Localstack gives us the ability to create required AWS resources when the container is started via <a href="https://docs.localstack.cloud/references/init-hooks/" target="_blank">Initialization Hooks</a>. We will be creating a bash script `init-s3-bucket.sh` for this purpose inside our `src/test/resources` folder:
+Localstack gives us the ability to create required AWS resources when the container is started via <a href="https://docs.localstack.cloud/references/init-hooks/" target="_blank">Initialization Hooks</a>. We'll be creating a bash script `init-s3-bucket.sh` for this purpose inside our `src/test/resources` folder:
 
 ```bash
 #!/bin/bash
@@ -249,11 +249,11 @@ echo "S3 bucket '$bucket_name' created successfully"
 echo "Executed init-s3-bucket.sh"
 ```
 
-The script creates an S3 bucket with name `reflectoring-bucket`. We will copy this script to the path `/etc/localstack/init/ready.d` inside the LocalStack container for execution in our integration test class.
+The script creates an S3 bucket with name `reflectoring-bucket`. We'll copy this script to the path `/etc/localstack/init/ready.d` inside the LocalStack container for execution in our integration test class.
 
 ### Starting LocalStack via Testcontainers
 
-At the time of this writing, the latest version of the LocalStack image is `3.4`, we will be using this version in our integration test class:
+At the time of this writing, the latest version of the LocalStack image is `3.4`, we'll be using this version in our integration test class:
 
 ```java
 @SpringBootTest
@@ -292,17 +292,17 @@ class StorageServiceIT {
 
 }
 ```
-In our integration test class `StorageServiceIT`, we do the following:
+That's a lot of setup code 😥, let's break it down. In our integration test class `StorageServiceIT`, we do the following:
 
 * Start a new instance of the LocalStack container and enable the **`S3`** service.
 * Copy our bash script **`init-s3-bucket.sh`** into the container to ensure bucket creation.
 * Configure a strategy to wait for the log **`"Executed init-s3-bucket.sh"`** to be printed, as defined in our init script.
-* Configure a small random Presigned URL validity through **`randomValiditySeconds()`**.
+* Configure a small random Presigned URL validity using **`randomValiditySeconds()`**.
 * Dynamically define the AWS configuration properties needed by our applications in order to create the required S3 related beans using **`@DynamicPropertySource`**.
 
 Our `@DynamicPropertySource` code block declares an additional `spring.cloud.aws.s3.endpoint` property, which is not present in the main `application.yaml` file.
 
-This property is necessary when connecting to the LocalStack container's S3 bucket, `reflectoring-bucket`, as it requires a specific endpoint URL. However, when connecting to an actual AWS S3 bucket, specifying an endpoint URL is not required. AWS automatically uses the default endpoint for each service in the configured region.
+**This property is necessary when connecting to the LocalStack container's S3 bucket**, `reflectoring-bucket`, as it requires a specific endpoint URL. However, when connecting to an actual AWS S3 bucket, specifying an endpoint URL is not required. AWS automatically uses the default endpoint for each service in the configured region.
 
 The LocalStack container will be automatically destroyed post test suite execution, hence we do not need to worry about manual cleanups.
 
@@ -356,7 +356,7 @@ class StorageServiceIT {
 }
 ```
 
-In our initial test case, we verify that our `StorageService` class can successfully generate a Presigned URL that can be used to download an object from the provisioned S3 bucket.
+In our initial test case, we verify that our `StorageService` class successfully generates a Presigned URL that can be used to download an object from the provisioned S3 bucket.
 
 We begin by preparing a file with random content and name and save it to our S3 bucket. Then we invoke the `generateViewablePresignedUrl` method exposed by our service layer with the corresponding random file key.
 
@@ -400,7 +400,9 @@ By executing the above integration test cases, we successfully validate that our
 
 ## Conclusion
 
-In this article, we explored how to **generate S3 Presigned URLs in a Spring Boot application using Spring Cloud AWS to offload file transfers from the application server to the client.**
+In this article, we explored how to **generate Presigned URLs in a Spring Boot application to offload file transfers from the application server to the client.**
+
+We used **Spring Cloud AWS** to communicate with our Amazon S3 bucket and reduced boilerplate configuration code.
 
 We discussed the benefits and use cases of using Presigned URLs, such as handling large file downloads and user generated content uploads. We walked through the necessary configurations and developed a service class that generates Presigned URLs for uploading and downloading objects to/from an S3 bucket.
 

From 57e3a5c3b21d73eee669bb5ff55c0d812988be65 Mon Sep 17 00:00:00 2001
From: Hardik Singh Behl <hardik.behl7444@gmail.com>
Date: Tue, 28 May 2024 12:06:09 +0530
Subject: [PATCH 16/25] updating title

---
 content/blog/2024/2024-05-28-aws-s3-presigned-urls.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/content/blog/2024/2024-05-28-aws-s3-presigned-urls.md b/content/blog/2024/2024-05-28-aws-s3-presigned-urls.md
index 769286a35..883e985dd 100644
--- a/content/blog/2024/2024-05-28-aws-s3-presigned-urls.md
+++ b/content/blog/2024/2024-05-28-aws-s3-presigned-urls.md
@@ -1,5 +1,5 @@
 ---
-title: "Using AWS S3 Presigned URLs in Spring Boot"
+title: "Offloading File Transfers with Amazon S3 Presigned URLs in Spring Boot"
 categories: [ "AWS", "Spring Boot", "Java" ]
 date: 2024-05-28 00:00:00 +0530
 modified: 2024-05-28 00:00:00 +0530

From 9ec2630bc6f17e177da7b7b74711115072db3d5f Mon Sep 17 00:00:00 2001
From: Hardik Singh Behl <hardik.behl7444@gmail.com>
Date: Tue, 28 May 2024 12:06:44 +0530
Subject: [PATCH 17/25] updating title

---
 content/blog/2024/2024-05-27-spring-cloud-aws-s3.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/content/blog/2024/2024-05-27-spring-cloud-aws-s3.md b/content/blog/2024/2024-05-27-spring-cloud-aws-s3.md
index 76e323d06..b6aafaaed 100644
--- a/content/blog/2024/2024-05-27-spring-cloud-aws-s3.md
+++ b/content/blog/2024/2024-05-27-spring-cloud-aws-s3.md
@@ -1,5 +1,5 @@
 ---
-title: "Using Amazon S3 with Spring Cloud AWS"
+title: "Integrating Amazon S3 with Spring Boot using Spring Cloud AWS"
 categories: [ "AWS", "Spring Boot", "Java" ]
 date: 2024-05-27 00:00:00 +0530
 modified: 2024-05-27 00:00:00 +0530

From 883e4ff9c6e616611301c3e3fee88ee8009aad7c Mon Sep 17 00:00:00 2001
From: Hardik Singh Behl <hardik.behl7444@gmail.com>
Date: Tue, 28 May 2024 12:16:51 +0530
Subject: [PATCH 18/25] updating article URLs

---
 content/blog/2024/2024-05-27-spring-cloud-aws-s3.md   | 2 +-
 content/blog/2024/2024-05-28-aws-s3-presigned-urls.md | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/content/blog/2024/2024-05-27-spring-cloud-aws-s3.md b/content/blog/2024/2024-05-27-spring-cloud-aws-s3.md
index b6aafaaed..b29473b3a 100644
--- a/content/blog/2024/2024-05-27-spring-cloud-aws-s3.md
+++ b/content/blog/2024/2024-05-27-spring-cloud-aws-s3.md
@@ -6,7 +6,7 @@ modified: 2024-05-27 00:00:00 +0530
 authors: [ "hardik" ]
 description: "In this article, we learn how AWS S3 can be integrated in a Spring Boot application using Spring Cloud AWS. The article details the necessary configurations, best practices, IAM policy and integration testing with LocalStack and Testcontainers."
 image: images/stock/0138-bucket-alternative-1200x628-branded.jpg
-url: "spring-cloud-aws-s3"
+url: "integrating-amazon-s3-with-spring-boot-using-spring-cloud-aws"
 ---
 
 In modern web applications, storing and retrieving files has become a common requirement. Whether it is user uploaded content like images and documents or application generated logs and reports, having a reliable and scalable storage solution is crucial.
diff --git a/content/blog/2024/2024-05-28-aws-s3-presigned-urls.md b/content/blog/2024/2024-05-28-aws-s3-presigned-urls.md
index 883e985dd..21c39762e 100644
--- a/content/blog/2024/2024-05-28-aws-s3-presigned-urls.md
+++ b/content/blog/2024/2024-05-28-aws-s3-presigned-urls.md
@@ -6,7 +6,7 @@ modified: 2024-05-28 00:00:00 +0530
 authors: [ "hardik" ]
 description: "In this article, we demonstrate how to use AWS S3 Presigned URLs in a Spring Boot application to offload file transfers, reduce server load and improve performance. We cover required dependencies, configuration, IAM policy, generation of Presigned URLs and integration testing with LocalStack and Testcontainers."
 image: images/stock/0139-stamped-envelope-1200x628-branded.jpg
-url: "aws-s3-presigned-url-spring-boot"
+url: "offloading-file-transfers-with-amazon-s3-presigned-urls-in-spring-boot"
 ---
 
 When building web applications that involve file uploads or downloads, a common approach is to have the files pass through an application server. However, this can lead to **increased load on the server, consuming valuable computing resources, and potentially impacting performance**. A more efficient solution is to **offload file transfers to the client (web browsers, desktop/mobile applications) using Presigned URLs**.

From 15768312c3e680e0323ede56636c7a3d6af1dc98 Mon Sep 17 00:00:00 2001
From: Hardik Singh Behl <hardik.behl7444@gmail.com>
Date: Tue, 28 May 2024 12:19:35 +0530
Subject: [PATCH 19/25] fix: artile title case

---
 content/blog/2024/2024-05-27-spring-cloud-aws-s3.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/content/blog/2024/2024-05-27-spring-cloud-aws-s3.md b/content/blog/2024/2024-05-27-spring-cloud-aws-s3.md
index b29473b3a..f9a82ac48 100644
--- a/content/blog/2024/2024-05-27-spring-cloud-aws-s3.md
+++ b/content/blog/2024/2024-05-27-spring-cloud-aws-s3.md
@@ -1,5 +1,5 @@
 ---
-title: "Integrating Amazon S3 with Spring Boot using Spring Cloud AWS"
+title: "Integrating Amazon S3 with Spring Boot Using Spring Cloud AWS"
 categories: [ "AWS", "Spring Boot", "Java" ]
 date: 2024-05-27 00:00:00 +0530
 modified: 2024-05-27 00:00:00 +0530

From 837209f964fe147faa0631ded191647385388b20 Mon Sep 17 00:00:00 2001
From: Hardik Singh Behl <hardik.behl7444@gmail.com>
Date: Mon, 3 Jun 2024 19:25:45 +0530
Subject: [PATCH 20/25] updating date

---
 ...-presigned-urls.md => 2024-06-03-aws-s3-presigned-urls.md} | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)
 rename content/blog/2024/{2024-05-28-aws-s3-presigned-urls.md => 2024-06-03-aws-s3-presigned-urls.md} (99%)

diff --git a/content/blog/2024/2024-05-28-aws-s3-presigned-urls.md b/content/blog/2024/2024-06-03-aws-s3-presigned-urls.md
similarity index 99%
rename from content/blog/2024/2024-05-28-aws-s3-presigned-urls.md
rename to content/blog/2024/2024-06-03-aws-s3-presigned-urls.md
index 21c39762e..4f201c680 100644
--- a/content/blog/2024/2024-05-28-aws-s3-presigned-urls.md
+++ b/content/blog/2024/2024-06-03-aws-s3-presigned-urls.md
@@ -1,8 +1,8 @@
 ---
 title: "Offloading File Transfers with Amazon S3 Presigned URLs in Spring Boot"
 categories: [ "AWS", "Spring Boot", "Java" ]
-date: 2024-05-28 00:00:00 +0530
-modified: 2024-05-28 00:00:00 +0530
+date: 2024-06-03 00:00:00 +0530
+modified: 2024-06-03 00:00:00 +0530
 authors: [ "hardik" ]
 description: "In this article, we demonstrate how to use AWS S3 Presigned URLs in a Spring Boot application to offload file transfers, reduce server load and improve performance. We cover required dependencies, configuration, IAM policy, generation of Presigned URLs and integration testing with LocalStack and Testcontainers."
 image: images/stock/0139-stamped-envelope-1200x628-branded.jpg

From 302a0c0bba41357e5c4a3a0ddbbf4cd7361aa15a Mon Sep 17 00:00:00 2001
From: michaelk <michael.krimgen@postcodeloterij.nl>
Date: Wed, 5 Jun 2024 11:31:04 +0200
Subject: [PATCH 21/25] Some minor edits

---
 ...ls.md => 2024-06-05-aws-s3-presigned-urls.md} | 16 ++++++++--------
 1 file changed, 8 insertions(+), 8 deletions(-)
 rename content/blog/2024/{2024-06-03-aws-s3-presigned-urls.md => 2024-06-05-aws-s3-presigned-urls.md} (94%)

diff --git a/content/blog/2024/2024-06-03-aws-s3-presigned-urls.md b/content/blog/2024/2024-06-05-aws-s3-presigned-urls.md
similarity index 94%
rename from content/blog/2024/2024-06-03-aws-s3-presigned-urls.md
rename to content/blog/2024/2024-06-05-aws-s3-presigned-urls.md
index 4f201c680..79c00c41c 100644
--- a/content/blog/2024/2024-06-03-aws-s3-presigned-urls.md
+++ b/content/blog/2024/2024-06-05-aws-s3-presigned-urls.md
@@ -1,8 +1,8 @@
 ---
 title: "Offloading File Transfers with Amazon S3 Presigned URLs in Spring Boot"
 categories: [ "AWS", "Spring Boot", "Java" ]
-date: 2024-06-03 00:00:00 +0530
-modified: 2024-06-03 00:00:00 +0530
+date: 2024-06-05 00:00:00 +0530
+modified: 2024-06-05 00:00:00 +0530
 authors: [ "hardik" ]
 description: "In this article, we demonstrate how to use AWS S3 Presigned URLs in a Spring Boot application to offload file transfers, reduce server load and improve performance. We cover required dependencies, configuration, IAM policy, generation of Presigned URLs and integration testing with LocalStack and Testcontainers."
 image: images/stock/0139-stamped-envelope-1200x628-branded.jpg
@@ -13,7 +13,7 @@ When building web applications that involve file uploads or downloads, a common
 
 Presigned URLs are **time-limited URLs that allow clients temporary access to upload or download objects directly to or from the storage solution being used**. These URLs are generated with a specified expiration time, after which they are no longer accessible.
 
-The storage solution we'll be using in this article is <a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide" target="_blank">Amazon S3 (Simple Storage Service)</a>, provided by AWS. However, it's worth noting that **the concept of Presigned URLs is not limited to AWS**. It can also be implemented with other cloud storage services like Google Cloud Storage, DigitalOcean Spaces, etc.
+The storage solution we'll use in this article is <a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide" target="_blank">Amazon S3 (Simple Storage Service)</a>, provided by AWS. However, it's worth noting that **the concept of Presigned URLs is not limited to AWS**. It can also be implemented with other cloud storage services like Google Cloud Storage, DigitalOcean Spaces, etc.
 
 In this article, we'll discuss how to generate Presigned URLs in a Spring Boot application to delegate the responsibility of uploading/downloading files to the client. We'll be using **Spring Cloud AWS** to communicate with Amazon S3 and develop a service class that provides methods for generating Presigned URLs. 
 
@@ -31,7 +31,7 @@ Before diving into the implementation, let's further discuss the use cases and a
 
   By implementing Presigned URLs on applications that serve high volume of content from S3, we **reduce the load on our server(s), improve performance and make our architecture scalable**.
 
-* **Uploading User Generated Content**: In scenarios where our application requires the users to upload files such as profile pictures, KYC documents, or other media content, instead of having the files pass through our application server, we can generate a Presigned URL with the necessary permissions and provide it to the client.
+* **Uploading User-Generated Content**: In scenarios where our application requires the users to upload files such as profile pictures, documents, or other media content, instead of having the files pass through our application server, we can generate a Presigned URL with the necessary permissions and provide it to the client.
 
   This approach not only reduces the load on our application server but also simplifies the upload process. The client can initiate the file upload directly to S3, eliminating the need for temporary storage on our server and the additional step of forwarding the file to S3.
 
@@ -229,7 +229,7 @@ Let’s start by declaring the required test dependencies in our `pom.xml`:
 </dependency>
 ```
 
-The declared `spring-boot-starter-test` gives us the basic testing toolbox as it transitively includes JUnit, AssertJ and other utility libraries, that we will be needing for writing assertions and running our tests.
+The declared `spring-boot-starter-test` gives us the basic testing toolbox as it transitively includes JUnit, AssertJ, and other utility libraries, that we will be needing for writing assertions and running our tests.
 
 And `org.testcontainers:localstack` dependency will allow us to run the LocalStack emulator inside a disposable Docker container, ensuring an isolated environment for our integration test.
 
@@ -298,7 +298,7 @@ That's a lot of setup code 😥, let's break it down. In our integration test cl
 * Copy our bash script **`init-s3-bucket.sh`** into the container to ensure bucket creation.
 * Configure a strategy to wait for the log **`"Executed init-s3-bucket.sh"`** to be printed, as defined in our init script.
 * Configure a small random Presigned URL validity using **`randomValiditySeconds()`**.
-* Dynamically define the AWS configuration properties needed by our applications in order to create the required S3 related beans using **`@DynamicPropertySource`**.
+* Dynamically define the AWS configuration properties needed by our applications to create the required S3-related beans using **`@DynamicPropertySource`**.
 
 Our `@DynamicPropertySource` code block declares an additional `spring.cloud.aws.s3.endpoint` property, which is not present in the main `application.yaml` file.
 
@@ -360,7 +360,7 @@ In our initial test case, we verify that our `StorageService` class successfully
 
 We begin by preparing a file with random content and name and save it to our S3 bucket. Then we invoke the `generateViewablePresignedUrl` method exposed by our service layer with the corresponding random file key.
 
-Finally, we perform an HTTP GET request on the generated Presigned URL and assert that the API response matches with the saved file's content.
+Finally, we perform an HTTP GET request on the generated Presigned URL and assert that the API response matches the saved file's content.
 
 Now, to validate the functionality of uploading an object through the generated Presigned URL:
 
@@ -404,7 +404,7 @@ In this article, we explored how to **generate Presigned URLs in a Spring Boot a
 
 We used **Spring Cloud AWS** to communicate with our Amazon S3 bucket and reduced boilerplate configuration code.
 
-We discussed the benefits and use cases of using Presigned URLs, such as handling large file downloads and user generated content uploads. We walked through the necessary configurations and developed a service class that generates Presigned URLs for uploading and downloading objects to/from an S3 bucket.
+We discussed the benefits and use cases of using Presigned URLs, such as handling large file downloads and user-generated content uploads. We walked through the necessary configurations and developed a service class that generates Presigned URLs for uploading and downloading objects to/from an S3 bucket.
 
 We also covered the required IAM permissions and tested our implementation using LocalStack and Testcontainers to ensure the functionality works as expected.
 

From a8e96da3af9b3364847d08e9d4e41f7c8e8167c0 Mon Sep 17 00:00:00 2001
From: Hardik Singh Behl <hardik.behl7444@gmail.com>
Date: Fri, 7 Jun 2024 11:13:10 +0530
Subject: [PATCH 22/25] adding security details

---
 .../2024/2024-06-05-aws-s3-presigned-urls.md  | 69 +++++++++++++++++--
 1 file changed, 63 insertions(+), 6 deletions(-)

diff --git a/content/blog/2024/2024-06-05-aws-s3-presigned-urls.md b/content/blog/2024/2024-06-05-aws-s3-presigned-urls.md
index 79c00c41c..600f84535 100644
--- a/content/blog/2024/2024-06-05-aws-s3-presigned-urls.md
+++ b/content/blog/2024/2024-06-05-aws-s3-presigned-urls.md
@@ -1,15 +1,17 @@
 ---
 title: "Offloading File Transfers with Amazon S3 Presigned URLs in Spring Boot"
 categories: [ "AWS", "Spring Boot", "Java" ]
-date: 2024-06-05 00:00:00 +0530
-modified: 2024-06-05 00:00:00 +0530
+date: 2024-06-07 00:00:00 +0530
+modified: 2024-06-07 00:00:00 +0530
 authors: [ "hardik" ]
 description: "In this article, we demonstrate how to use AWS S3 Presigned URLs in a Spring Boot application to offload file transfers, reduce server load and improve performance. We cover required dependencies, configuration, IAM policy, generation of Presigned URLs and integration testing with LocalStack and Testcontainers."
 image: images/stock/0139-stamped-envelope-1200x628-branded.jpg
 url: "offloading-file-transfers-with-amazon-s3-presigned-urls-in-spring-boot"
 ---
 
-When building web applications that involve file uploads or downloads, a common approach is to have the files pass through an application server. However, this can lead to **increased load on the server, consuming valuable computing resources, and potentially impacting performance**. A more efficient solution is to **offload file transfers to the client (web browsers, desktop/mobile applications) using Presigned URLs**.
+When building web applications that involve file uploads or downloads, a common approach is to have the files pass through an application server. However, this can lead to **increased load on the server, consuming valuable computing resources, and potentially impacting performance**. A more efficient solution is to **offload file transfers to the client using Presigned URLs**.
+
+In the context of this article, the client refers to the single page application (SPA), desktop, or mobile application that the user is interacting with, and not the end user themselves.
 
 Presigned URLs are **time-limited URLs that allow clients temporary access to upload or download objects directly to or from the storage solution being used**. These URLs are generated with a specified expiration time, after which they are no longer accessible.
 
@@ -27,7 +29,7 @@ Before diving into the implementation, let's further discuss the use cases and a
 
 * **Large File Downloads**: When having an entertainment or an e-learning platform that serves video courses to users, instead of serving the large video files from our application server, we can generate Presigned URLs for each video file and offload the responsibility of downloading/streaming the video directly from S3 to the client. 
 
-  To secure this architecture, before we generate the Presigned URLs, our server can validate/authenticate the user requesting the video content. Additionally, we can restrict access to the video content to the specific IP address that originated the request. 
+  To secure this architecture, before we generate the Presigned URLs, our server can validate/authenticate the user requesting the video content. Additionally, we can restrict access to the video content to the specific IP address that originated the request via IAM policy. 
 
   By implementing Presigned URLs on applications that serve high volume of content from S3, we **reduce the load on our server(s), improve performance and make our architecture scalable**.
 
@@ -143,7 +145,9 @@ io:
 
 This setup allows us to externalize the bucket name and the validity duration of the Presigned URLs attributes and easily access it in our code.
 
-This configuration **assumes that the application will be operating against a single S3 bucket and the defined validity will be applicable for both PUT and GET Presigned URLs**. If that is not the case for your application, then the `AwsS3BucketProperties` class can be modified as per requirement. 
+For the sake of demonstration, the defined configuration **assumes that the application will be operating against a single S3 bucket and the defined validity will be applicable for both PUT and GET Presigned URLs**. Should this not align with your application's requirements, then the `AwsS3BucketProperties` class can be modified accordingly.
+
+I'd recommend keeping the validity of both PUT and GET Presigned URLs separate to enjoy more flexibility, and also would like to emphasize that the **validity duration of the Presigned URLs should be kept as short as possible, especially for upload operations**, to protect against unauthorized access.
 
 ## Generating Presigned URLs
 
@@ -180,6 +184,8 @@ While it's possible to use the `S3Presigner` class directly, `S3Template` reduce
 
 We also make use of our custom `AwsS3BucketProperties` class to reference the S3 bucket name and the Presigned URL validity duration defined in our `application.yaml` file.
 
+It's important to ensure that the **controller API endpoints that'll consumes the service class we've created, should be secured and preferably rate limited**. Before our application generates a Presigned URL, the requesting user's identity and authority should be validated to prevent unauthorized access.
+
 ## Required IAM Permissions
 
 To have our service layer generate Presigned URLs correctly, the IAM user whose security credentials we have configured must have the necessary permissions of `s3:GetObject` and `s3:PutObject`.
@@ -204,6 +210,55 @@ Here is what our policy should look like:
 
 The above IAM policy **conforms to the least privilege principle**, by granting only the necessary permissions required for our service layer to generate Presigned URLs. We also specify the bucket ARN in the `Resource` field, further limiting the scope of the IAM policy to work with a single bucket that is provisioned for our application.
 
+Additionally, we can further restrict access to our S3 bucket by allowing requests only from a specific IP address or IP address blocks where our client application is hosted.
+
+To achieve this, we can modify our IAM policy statement to include a condition that checks the source IP address of the request using <a href="https://aws.amazon.com/what-is/cidr/" target="_blank">CIDR notation</a>:
+
+```json
+"Condition": {
+  "IpAddress": {
+    "aws:SourceIp": "01.02.03.04/32"
+  }
+}
+```
+
+## Enabling Cross-Origin Resource Sharing (CORS)
+
+There's one last thing we need to configure before our Presigned URLs can be invoked from our client applications. 
+
+When invoking Presigned URLs from a client such as a single page application (SPA), we'll encounter an error in our browser console:
+
+```console
+Access to XMLHttpRequest at 'https://..presigned-url' from origin 'http://ourdomain.com' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource.
+```
+
+Ah, the infamous CORS error! 😩
+
+We encounter this error because web browsers implement the **Same-Origin Policy** mechanism by default, which restricts our client application to interact with a resource from another origin (S3 bucket in this context).
+
+In order to solve this, we'll need to add a CORS configuration to our provisioned S3 bucket:
+
+```json
+[
+  {
+    "AllowedMethods": [
+      "GET",
+      "PUT"
+    ],
+    "AllowedOrigins": [
+      "http://localhost:8081"
+    ],
+    "AllowedHeaders": [],
+    "ExposeHeaders": [],
+    "MaxAgeSeconds": 3000
+  }
+]
+```
+
+The above configuration allows our client application, hosted at `http://ourdomain.com`, to send HTTP GET and PUT requests to access our provisioned S3 bucket.
+
+In our configuration, we follow the least privilege principle similar to our IAM policy and grant access only to the necessary origin and methods required by our application. **An overly permissive CORS configuration that uses a wildcard `*` for all properties should be avoided**, as it can introduce security vulnerabilities.
+
 ## Integration Testing with LocalStack and Testcontainers
 
 Before concluding this article, we need to ensure that our configurations and service layer work correctly and are able to generate legitimate Presigned URLs. We'll be making use of LocalStack and Testcontainers to do this, but first let's look at what these two tools are:
@@ -406,6 +461,8 @@ We used **Spring Cloud AWS** to communicate with our Amazon S3 bucket and reduce
 
 We discussed the benefits and use cases of using Presigned URLs, such as handling large file downloads and user-generated content uploads. We walked through the necessary configurations and developed a service class that generates Presigned URLs for uploading and downloading objects to/from an S3 bucket.
 
-We also covered the required IAM permissions and tested our implementation using LocalStack and Testcontainers to ensure the functionality works as expected.
+Throughout the article, we've discussed various security considerations and best practices to strengthen our architecture's security and mitigate risks, such as keeping the validity of the Presigned URL short, securing the controller API endpoints that generate Presigned URLs, and following the least privilege principle when defining the IAM policy and CORS configuration.
+
+We also tested our implementation using LocalStack and Testcontainers to ensure the developed functionality works as expected.
 
 The source code demonstrated throughout this article is available on <a href="https://github.com/thombergs/code-examples/tree/master/aws/spring-cloud-aws-s3" target="_blank">Github</a>. I would highly encourage you to explore the codebase and set it up locally.
\ No newline at end of file

From 19a30ce210a79475c9527b976d9c6fe8cc671c6e Mon Sep 17 00:00:00 2001
From: Hardik Singh Behl <hardik.behl7444@gmail.com>
Date: Fri, 7 Jun 2024 17:52:43 +0530
Subject: [PATCH 23/25] covering mobile application IP based restriction issue

---
 .../blog/2024/2024-06-05-aws-s3-presigned-urls.md | 15 +++++++++++----
 1 file changed, 11 insertions(+), 4 deletions(-)

diff --git a/content/blog/2024/2024-06-05-aws-s3-presigned-urls.md b/content/blog/2024/2024-06-05-aws-s3-presigned-urls.md
index 600f84535..9124572ed 100644
--- a/content/blog/2024/2024-06-05-aws-s3-presigned-urls.md
+++ b/content/blog/2024/2024-06-05-aws-s3-presigned-urls.md
@@ -9,9 +9,7 @@ image: images/stock/0139-stamped-envelope-1200x628-branded.jpg
 url: "offloading-file-transfers-with-amazon-s3-presigned-urls-in-spring-boot"
 ---
 
-When building web applications that involve file uploads or downloads, a common approach is to have the files pass through an application server. However, this can lead to **increased load on the server, consuming valuable computing resources, and potentially impacting performance**. A more efficient solution is to **offload file transfers to the client using Presigned URLs**.
-
-In the context of this article, the client refers to the single page application (SPA), desktop, or mobile application that the user is interacting with, and not the end user themselves.
+When building web applications that involve file uploads or downloads, a common approach is to have the files pass through an application server. However, this can lead to **increased load on the server, consuming valuable computing resources, and potentially impacting performance**. A more efficient solution is to **offload file transfers to the client (web browsers, desktop/mobile applications) using Presigned URLs**.
 
 Presigned URLs are **time-limited URLs that allow clients temporary access to upload or download objects directly to or from the storage solution being used**. These URLs are generated with a specified expiration time, after which they are no longer accessible.
 
@@ -217,10 +215,19 @@ To achieve this, we can modify our IAM policy statement to include a condition t
 ```json
 "Condition": {
   "IpAddress": {
-    "aws:SourceIp": "01.02.03.04/32"
+    "aws:SourceIp": [
+      "01.02.03.04/32"
+    ]
   }
 }
 ```
+While the above condition will work for a Single Page Application (SPA), hosted on a server with a static IP address, it'll not be a suitable solution if our client is a mobile application. 
+
+A mobile device often switches between different networks and can be assigned different IP addresses by its carrier or Wi-Fi network. This makes it difficult to apply an IP-based restriction in our IAM policy.
+
+While it's possible to update the IAM policy configuration per session by our Spring Boot application, it's not recommended at all. 🚫
+
+Updating IAM policies programmatically for each client session would be an administrative overhead, and would require granting our backend application permission to modify IAM policies, which goes against the principle of least privilege. **It is generally recommended to keep IAM permissions separate from application-level permissions**.
 
 ## Enabling Cross-Origin Resource Sharing (CORS)
 

From 5d8fc243857b2775236829a9ae7d28aa3b303c38 Mon Sep 17 00:00:00 2001
From: Hardik Singh Behl <hardik.behl7444@gmail.com>
Date: Wed, 12 Jun 2024 03:53:46 +0530
Subject: [PATCH 24/25] removing IP address restriction details

---
 .../2024/2024-06-05-aws-s3-presigned-urls.md  | 27 +++----------------
 1 file changed, 3 insertions(+), 24 deletions(-)

diff --git a/content/blog/2024/2024-06-05-aws-s3-presigned-urls.md b/content/blog/2024/2024-06-05-aws-s3-presigned-urls.md
index 9124572ed..c50c5e82a 100644
--- a/content/blog/2024/2024-06-05-aws-s3-presigned-urls.md
+++ b/content/blog/2024/2024-06-05-aws-s3-presigned-urls.md
@@ -1,8 +1,8 @@
 ---
 title: "Offloading File Transfers with Amazon S3 Presigned URLs in Spring Boot"
 categories: [ "AWS", "Spring Boot", "Java" ]
-date: 2024-06-07 00:00:00 +0530
-modified: 2024-06-07 00:00:00 +0530
+date: 2024-06-12 00:00:00 +0530
+modified: 2024-06-12 00:00:00 +0530
 authors: [ "hardik" ]
 description: "In this article, we demonstrate how to use AWS S3 Presigned URLs in a Spring Boot application to offload file transfers, reduce server load and improve performance. We cover required dependencies, configuration, IAM policy, generation of Presigned URLs and integration testing with LocalStack and Testcontainers."
 image: images/stock/0139-stamped-envelope-1200x628-branded.jpg
@@ -27,7 +27,7 @@ Before diving into the implementation, let's further discuss the use cases and a
 
 * **Large File Downloads**: When having an entertainment or an e-learning platform that serves video courses to users, instead of serving the large video files from our application server, we can generate Presigned URLs for each video file and offload the responsibility of downloading/streaming the video directly from S3 to the client. 
 
-  To secure this architecture, before we generate the Presigned URLs, our server can validate/authenticate the user requesting the video content. Additionally, we can restrict access to the video content to the specific IP address that originated the request via IAM policy. 
+  To secure this architecture, before we generate the Presigned URLs, our server can validate/authenticate the user requesting the video content. 
 
   By implementing Presigned URLs on applications that serve high volume of content from S3, we **reduce the load on our server(s), improve performance and make our architecture scalable**.
 
@@ -208,27 +208,6 @@ Here is what our policy should look like:
 
 The above IAM policy **conforms to the least privilege principle**, by granting only the necessary permissions required for our service layer to generate Presigned URLs. We also specify the bucket ARN in the `Resource` field, further limiting the scope of the IAM policy to work with a single bucket that is provisioned for our application.
 
-Additionally, we can further restrict access to our S3 bucket by allowing requests only from a specific IP address or IP address blocks where our client application is hosted.
-
-To achieve this, we can modify our IAM policy statement to include a condition that checks the source IP address of the request using <a href="https://aws.amazon.com/what-is/cidr/" target="_blank">CIDR notation</a>:
-
-```json
-"Condition": {
-  "IpAddress": {
-    "aws:SourceIp": [
-      "01.02.03.04/32"
-    ]
-  }
-}
-```
-While the above condition will work for a Single Page Application (SPA), hosted on a server with a static IP address, it'll not be a suitable solution if our client is a mobile application. 
-
-A mobile device often switches between different networks and can be assigned different IP addresses by its carrier or Wi-Fi network. This makes it difficult to apply an IP-based restriction in our IAM policy.
-
-While it's possible to update the IAM policy configuration per session by our Spring Boot application, it's not recommended at all. 🚫
-
-Updating IAM policies programmatically for each client session would be an administrative overhead, and would require granting our backend application permission to modify IAM policies, which goes against the principle of least privilege. **It is generally recommended to keep IAM permissions separate from application-level permissions**.
-
 ## Enabling Cross-Origin Resource Sharing (CORS)
 
 There's one last thing we need to configure before our Presigned URLs can be invoked from our client applications. 

From 04364a0834a6dd63d06ba8808d4b3db934b95864 Mon Sep 17 00:00:00 2001
From: michaelk <michael.krimgen@postcodeloterij.nl>
Date: Sat, 15 Jun 2024 13:54:55 +0200
Subject: [PATCH 25/25] Final edit and prepare for publishing

---
 ...md => 2024-06-15-aws-s3-presigned-urls.md} | 30 +++++++++----------
 1 file changed, 15 insertions(+), 15 deletions(-)
 rename content/blog/2024/{2024-06-05-aws-s3-presigned-urls.md => 2024-06-15-aws-s3-presigned-urls.md} (92%)

diff --git a/content/blog/2024/2024-06-05-aws-s3-presigned-urls.md b/content/blog/2024/2024-06-15-aws-s3-presigned-urls.md
similarity index 92%
rename from content/blog/2024/2024-06-05-aws-s3-presigned-urls.md
rename to content/blog/2024/2024-06-15-aws-s3-presigned-urls.md
index c50c5e82a..9266b94bd 100644
--- a/content/blog/2024/2024-06-05-aws-s3-presigned-urls.md
+++ b/content/blog/2024/2024-06-15-aws-s3-presigned-urls.md
@@ -1,8 +1,8 @@
 ---
 title: "Offloading File Transfers with Amazon S3 Presigned URLs in Spring Boot"
 categories: [ "AWS", "Spring Boot", "Java" ]
-date: 2024-06-12 00:00:00 +0530
-modified: 2024-06-12 00:00:00 +0530
+date: 2024-06-15 00:00:00 +0530
+modified: 2024-06-15 00:00:00 +0530
 authors: [ "hardik" ]
 description: "In this article, we demonstrate how to use AWS S3 Presigned URLs in a Spring Boot application to offload file transfers, reduce server load and improve performance. We cover required dependencies, configuration, IAM policy, generation of Presigned URLs and integration testing with LocalStack and Testcontainers."
 image: images/stock/0139-stamped-envelope-1200x628-branded.jpg
@@ -11,7 +11,7 @@ url: "offloading-file-transfers-with-amazon-s3-presigned-urls-in-spring-boot"
 
 When building web applications that involve file uploads or downloads, a common approach is to have the files pass through an application server. However, this can lead to **increased load on the server, consuming valuable computing resources, and potentially impacting performance**. A more efficient solution is to **offload file transfers to the client (web browsers, desktop/mobile applications) using Presigned URLs**.
 
-Presigned URLs are **time-limited URLs that allow clients temporary access to upload or download objects directly to or from the storage solution being used**. These URLs are generated with a specified expiration time, after which they are no longer accessible.
+Presigned URLs are **time-limited URLs that allow clients temporary access to upload or download objects directly to or from the storage solution**. These URLs are generated with a specified expiration time, after which they are no longer accessible.
 
 The storage solution we'll use in this article is <a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide" target="_blank">Amazon S3 (Simple Storage Service)</a>, provided by AWS. However, it's worth noting that **the concept of Presigned URLs is not limited to AWS**. It can also be implemented with other cloud storage services like Google Cloud Storage, DigitalOcean Spaces, etc.
 
@@ -29,7 +29,7 @@ Before diving into the implementation, let's further discuss the use cases and a
 
   To secure this architecture, before we generate the Presigned URLs, our server can validate/authenticate the user requesting the video content. 
 
-  By implementing Presigned URLs on applications that serve high volume of content from S3, we **reduce the load on our server(s), improve performance and make our architecture scalable**.
+  By implementing Presigned URLs on applications that serve a high volume of content from S3, we **reduce the load on our server(s), improve performance, and make our architecture scalable**.
 
 * **Uploading User-Generated Content**: In scenarios where our application requires the users to upload files such as profile pictures, documents, or other media content, instead of having the files pass through our application server, we can generate a Presigned URL with the necessary permissions and provide it to the client.
 
@@ -43,9 +43,9 @@ We'll be using <a href="https://awspring.io/" target="_blank">Spring Cloud AWS</
 
 Spring Cloud AWS simplifies this integration by providing a layer of abstraction over the official SDK, making it easier to interact with services like S3.
 
-The main dependency that we need is `spring-cloud-aws-starter-s3`, which contains all S3 related classes needed by our application.
+The main dependency that we need is `spring-cloud-aws-starter-s3`, which contains all S3-related classes needed by our application.
 
-We will also make use of <a href="https://mvnrepository.com/artifact/io.awspring.cloud/spring-cloud-aws-dependencies" target="_blank">Spring Cloud AWS BOM</a> (Bill of Materials) to manage the version of the S3 starter in our project. The BOM ensures version compatibility between the declared dependencies, avoids conflicts and makes it easier to update versions in the future.
+We will also make use of <a href="https://mvnrepository.com/artifact/io.awspring.cloud/spring-cloud-aws-dependencies" target="_blank">Spring Cloud AWS BOM</a> (Bill of Materials) to manage the version of the S3 starter in our project. The BOM ensures version compatibility between the declared dependencies, avoids conflicts, and makes it easier to update versions in the future.
 
 Here is how our `pom.xml` file would look like:
 
@@ -75,7 +75,7 @@ Here is how our `pom.xml` file would look like:
   </dependencyManagement>
 ```
 
-Now, the only thing left in order to allow Spring Cloud AWS to establish a connection with the Amazon S3 service, is to define the necessary configuration properties in our `application.yaml` file:
+Now, the only thing left in order to allow Spring Cloud AWS to establish a connection with the Amazon S3 service is to define the necessary configuration properties in our `application.yaml` file:
 
 ```yaml
 spring:
@@ -87,11 +87,11 @@ spring:
       s3:
         region: ${AWS_S3_REGION}
 ```
-Spring Cloud AWS will automatically create the necessary configuration beans using the above defined properties, allowing us to interact with the S3 service in our application.
+Spring Cloud AWS will automatically create the necessary configuration beans using the above-defined properties, allowing us to interact with the S3 service in our application.
 
 ### S3 Bucket Name and Presigned URL Validity
 
-To perform operations against a provisioned S3 bucket, we need to provide its name. And to generate Presigned URLs, we need to provide a validity duration. We'll store these properties in our `application.yaml` file and make use of `@ConfigurationProperties` to map the values to a POJO:
+To perform operations against a provisioned S3 bucket, we need to provide its name. To generate Presigned URLs, we need to provide a validity duration. We'll store these properties in our `application.yaml` file and make use of `@ConfigurationProperties` to map the values to a POJO:
 
 ```java
 @Getter
@@ -141,7 +141,7 @@ io:
           validity: ${AWS_S3_PRESIGNED_URL_VALIDITY}
 ```
 
-This setup allows us to externalize the bucket name and the validity duration of the Presigned URLs attributes and easily access it in our code.
+This setup allows us to externalize the bucket name and the validity duration of the Presigned URL attributes and easily access it in our code.
 
 For the sake of demonstration, the defined configuration **assumes that the application will be operating against a single S3 bucket and the defined validity will be applicable for both PUT and GET Presigned URLs**. Should this not align with your application's requirements, then the `AwsS3BucketProperties` class can be modified accordingly.
 
@@ -176,13 +176,13 @@ public class StorageService {
 
 }
 ```
-We have used the `S3Template` class provided by Spring Cloud AWS in our service layer which offers a high level abstraction over the `S3Presigner` class from the official AWS SDK.
+We have used the `S3Template` class provided by Spring Cloud AWS in our service layer which offers a high-level abstraction over the `S3Presigner` class from the official AWS SDK.
 
 While it's possible to use the `S3Presigner` class directly, `S3Template` reduces boilerplate code and simplifies the generation of Presigned URLs by offering convenient, Spring-friendly methods.
 
 We also make use of our custom `AwsS3BucketProperties` class to reference the S3 bucket name and the Presigned URL validity duration defined in our `application.yaml` file.
 
-It's important to ensure that the **controller API endpoints that'll consumes the service class we've created, should be secured and preferably rate limited**. Before our application generates a Presigned URL, the requesting user's identity and authority should be validated to prevent unauthorized access.
+It's important to ensure that the **controller API endpoints that'll consume the service class we've created, should be secured and preferably rate-limited**. Before our application generates a Presigned URL, the requesting user's identity and authority should be validated to prevent unauthorized access.
 
 ## Required IAM Permissions
 
@@ -220,7 +220,7 @@ Access to XMLHttpRequest at 'https://..presigned-url' from origin 'http://ourdom
 
 Ah, the infamous CORS error! 😩
 
-We encounter this error because web browsers implement the **Same-Origin Policy** mechanism by default, which restricts our client application to interact with a resource from another origin (S3 bucket in this context).
+We encounter this error because web browsers implement the **Same-Origin Policy** mechanism by default, which restricts our client application from interacting with a resource from another origin (S3 bucket in this context).
 
 In order to solve this, we'll need to add a CORS configuration to our provisioned S3 bucket:
 
@@ -290,7 +290,7 @@ echo "S3 bucket '$bucket_name' created successfully"
 echo "Executed init-s3-bucket.sh"
 ```
 
-The script creates an S3 bucket with name `reflectoring-bucket`. We'll copy this script to the path `/etc/localstack/init/ready.d` inside the LocalStack container for execution in our integration test class.
+The script creates an S3 bucket with name the `reflectoring-bucket`. We'll copy this script to the path `/etc/localstack/init/ready.d` inside the LocalStack container for execution in our integration test class.
 
 ### Starting LocalStack via Testcontainers
 
@@ -431,7 +431,7 @@ void shouldGeneratePresignedUrlForUploadingObjectToBucket() {
 }
 ```
 
-In the above test case, we again create a test file with random key and content. We invoke the `generateUploadablePresignedUrl` method of our service layer with the corresponding random file key to generate the Presigned URL.
+In the above test case, we again create a test file with a random key and content. We invoke the `generateUploadablePresignedUrl` method of our service layer with the corresponding random file key to generate the Presigned URL.
 
 We perform an HTTP PUT request on the generated Presigned URL and send the contents of the test file in the request body.