From 3728c000398b1ef13bfb7821f05d9f8dd53a3a1d Mon Sep 17 00:00:00 2001
From: dorota <114921900+wojcik-dorota@users.noreply.github.com>
Date: Tue, 17 Dec 2024 18:19:23 +0100
Subject: [PATCH] update(BYOC): AWS (CLI & Console flows) + Google (Console
flow) (#606)
---
docs/platform/concepts/byoc.md | 99 ++--
.../byoc/add-customer-info-custom-cloud.md | 6 +-
.../howto/byoc/assign-project-custom-cloud.md | 6 +-
.../create-aws-custom-cloud.md} | 387 ++++----------
.../create-custom-cloud.md | 47 ++
.../create-google-custom-cloud.md | 491 ++++++++++++++++++
.../howto/byoc/delete-custom-cloud.md | 10 +-
.../byoc/download-infrastructure-template.md | 13 +-
docs/platform/howto/byoc/enable-byoc.md | 24 +-
.../howto/byoc/manage-byoc-service.md | 61 +++
.../howto/byoc/networking-security.md | 8 +-
.../howto/byoc/rename-custom-cloud.md | 4 +-
.../howto/byoc/tag-custom-cloud-resources.md | 10 +-
.../howto/byoc/view-custom-cloud-status.md | 32 ++
docs/tools/cli/byoc.md | 4 +-
sidebars.ts | 15 +-
static/_redirects | 2 +-
.../content/figma/byoc-how-it-works.png | Bin 0 -> 63099 bytes
18 files changed, 850 insertions(+), 369 deletions(-)
rename docs/platform/howto/byoc/{create-custom-cloud.md => create-custom-cloud/create-aws-custom-cloud.md} (63%)
create mode 100644 docs/platform/howto/byoc/create-custom-cloud/create-custom-cloud.md
create mode 100644 docs/platform/howto/byoc/create-custom-cloud/create-google-custom-cloud.md
create mode 100644 docs/platform/howto/byoc/manage-byoc-service.md
create mode 100644 docs/platform/howto/byoc/view-custom-cloud-status.md
create mode 100644 static/images/content/figma/byoc-how-it-works.png
diff --git a/docs/platform/concepts/byoc.md b/docs/platform/concepts/byoc.md
index cc285ad3e..0564f76dc 100644
--- a/docs/platform/concepts/byoc.md
+++ b/docs/platform/concepts/byoc.md
@@ -1,7 +1,7 @@
---
title: Bring your own cloud (BYOC)
sidebar_label: Bring your own cloud
-keywords: [AWS, Amazon Web Services, GCP, Google Cloud Platform, private deployment, public deployment, byoc, bring your own cloud, custom cloud]
+keywords: [AWS, Amazon Web Services, GCP, Google Cloud Platform, private deployment, public deployment, byoc, bring your own cloud, custom cloud, backup]
---
import Tabs from '@theme/Tabs';
@@ -10,22 +10,42 @@ import byocAwsPrivate from "@site/static/images/content/figma/byoc-aws-private.p
import byocAwsPublic from "@site/static/images/content/figma/byoc-aws-public.png";
import byocGcpPrivate from "@site/static/images/content/figma/byoc-gcp-private.png";
import byocGcpPublic from "@site/static/images/content/figma/byoc-gcp-public.png";
+import byocHowItWorks from "@site/static/images/content/figma/byoc-how-it-works.png";
-_Bring your own cloud_ (BYOC) allows you to use your own cloud infrastructure instead of relying on the Aiven-managed infrastructure.
+Bring your own cloud (BYOC) allows you to use your own cloud infrastructure instead of relying on the Aiven-managed infrastructure.
Aiven services are usually deployed on Aiven-managed infrastructure, using
Aiven-managed security protocols, and backed by Aiven-managed storage and
backups. This provides a straightforward and safe approach to deploying Aiven
services. However, you might need a different configuration if your business,
project, or organization has specific requirements. With BYOC, your Aiven
-organization gets connected with your cloud provider account by creating _custom
-clouds_ in your Aiven organization.
+organization gets connected with your cloud provider account by creating custom
+clouds in your Aiven organization.
+
+## How it works
A custom cloud is a secure environment within your cloud provider account to run
Aiven-managed data services. By enabling BYOC, creating custom clouds, and
setting up Aiven services within the custom clouds, you can manage your
infrastructure on the Aiven platform while keeping your data in your own cloud.
+
+
+1. [Enable BYOC](/docs/platform/howto/byoc/enable-byoc) in your Aiven organization by
+ setting up a call with the Aiven sales team to share your use case and its requirements.
+1. [Create a custom cloud](/docs/platform/howto/byoc/create-custom-cloud) in the Aiven
+ Console or CLI by providing cloud setup details essential to generate your custom cloud
+ infrastructure template.
+1. **Integrate your cloud account with Aiven** by applying the infrastructure template for
+ [AWS](/docs/platform/howto/byoc/create-custom-cloud/create-aws-custom-cloud#deploy-the-template)
+ or
+ [Google Cloud](/docs/platform/howto/byoc/create-custom-cloud/create-google-custom-cloud#deploy-the-template).
+1. [Deploy services](/docs/platform/howto/byoc/manage-byoc-service) by creating new
+ Aiven-managed services in the custom cloud or migrating existing Aiven-managed services
+ to the custom cloud.
+1. **View Aiven-managed assets in your cloud account**: You can preview Aiven-managed
+ services and infrastructure in your cloud account.
+
## Why use BYOC
Consider using BYOC and custom clouds if you have specific business
@@ -49,7 +69,7 @@ needs or project requirements, such as:
strategies to save on compute and storage infrastructure costs
related to Aiven services.
-## Who is eligible for BYOC {#eligible-for-byoc}
+## Who is eligible for BYOC
The BYOC setup is a bespoke service offered on a case-by-case basis, and
not all cloud providers support it yet. You're eligible for BYOC if:
@@ -95,7 +115,7 @@ may have and potentially leverage enterprise discounts in certain cases.
For a cost estimate and analysis, contact your account team.
:::
-## BYOC architecture {#byoc-deployment}
+## BYOC architecture
@@ -106,17 +126,17 @@ In the AWS private deployment model, a Virtual Private Cloud (**BYOC VPC**) for
services is created within a particular cloud region in your remote cloud account.
Aiven accesses this VPC from a static IP address and routes
traffic through a proxy for additional security. To accomplish this, Aiven
-utilizes a bastion host (**Bastion node**) physically separated from the Aiven services
+utilizes a bastion host (**Bastion node**) logically separated from the Aiven services
you deploy. The service VMs reside in a privately addressed subnet (**Private subnet**)
and are accessed by the Aiven management plane via the bastion. They are not
-accessible through the Internet.
+accessible through the internet.
:::note
Although the bastion host and the service nodes reside in the VPC under
your management (**BYOC VPC**), they are not accessible (for example, via SSH) to anyone
outside Aiven.
-The bastion and workload nodes require outbound access to the Internet
+The bastion and workload nodes require outbound access to the internet
to work properly (supporting HA signaling to the Aiven management node and RPM download
from Aiven repositories).
:::
@@ -128,18 +148,19 @@ from Aiven repositories).
In the AWS public deployment model, a Virtual Private Cloud (**BYOC VPC**) for your Aiven
services is created within a particular cloud region in your remote cloud account.
-Aiven accesses this VPC through an Internet gateway. Service VMs reside in a publicly
+Aiven accesses this VPC through an internet gateway. Service VMs reside in a publicly
addressed subnet (**Public subnet**), and Aiven services can be accessed
-through the public Internet: the Aiven control plane connects to the nodes
+through the public internet: the Aiven control plane connects to the nodes
using the public address, and the Aiven management plane can access the service VMs
-directly.
+directly. To restrict access to your service, you can use the
+[IP filter](/docs/platform/howto/restrict-access).
-
+
-
+
-In the GCP private deployment model, a Virtual Private Cloud (**BYOC VPC**) for your Aiven
-services is created within a particular cloud region in your remote cloud account.
+In the Google Cloud private deployment model, a Virtual Private Cloud (**BYOC VPC**) for
+your Aiven services is created within a particular cloud region in your remote cloud account.
Within the **BYOC VPC**, there are:
- **Public subnet** for the bastion node
@@ -147,33 +168,34 @@ Within the **BYOC VPC**, there are:
Aiven accesses the **BYOC VPC** from a static IP address and routes
traffic through a proxy for additional security. To accomplish this, Aiven
-utilizes a bastion host (**Bastion note**) physically separated from the Aiven services
+utilizes a bastion host (**Bastion note**) logically separated from the Aiven services
you deploy. The service VMs reside in a privately addressed subnet (**Private subnet**)
and are accessed by the Aiven management plane via the bastion. They are not
-accessible through the Internet.
+accessible through the internet.
:::note
Although the bastion host and the service nodes reside in the VPC under
your management (**BYOC VPC**), they are not accessible (for example, via SSH) to anyone
outside Aiven.
-The bastion and workload nodes require outbound access to the Internet
+The bastion and workload nodes require outbound access to the internet
to work properly (supporting HA signaling to the Aiven management node and RPM download
from Aiven repositories).
:::
-
+
-
+
-In the GCP public deployment model, a Virtual Private Cloud (**Workload VPC**) for your
-Aiven services is created within a particular cloud region in your remote cloud account.
-Aiven accesses this VPC through an Internet gateway. Service VMs reside in a publicly
-addressed subnet (**Public subnet**), and Aiven services can be accessed
-through the public Internet: the Aiven control plane connects to the nodes
+In the Google Cloud public deployment model, a Virtual Private Cloud (**Workload VPC**)
+for your Aiven services is created within a particular cloud region in your remote cloud
+account. Aiven accesses this VPC through an internet gateway. Service VMs reside in a
+publicly addressed subnet (**Public subnet**), and Aiven services can be accessed
+through the public internet: the Aiven control plane connects to the nodes
using the public address, and the Aiven management plane can access the service VMs
-directly.
+directly. To restrict access to your service, you can use the
+[IP filter](/docs/platform/howto/restrict-access).
@@ -181,18 +203,21 @@ Firewall rules are enforced on the subnet level.
You can integrate your services using standard VPC peering techniques.
All Aiven communication is encrypted.
-## BYOC and backups
+## BYOC service backups
-Depending on the service used, Aiven takes regular backups to enable
-forking, point in time recovery (PITR), and disaster recovery. These
-backups by default do not reside in your cloud. If there is a
+Depending on the BYOC service, Aiven takes
+[regular service backups](/docs/platform/concepts/service_backups) to enable forking, point
+in time recovery (PITR), and disaster recovery.
+These backups by default do not reside in your cloud. If there is a
requirement to have all backups in your own cloud account, it's still possible.
To accomplish this, Aiven needs read-write permissions to access the object storage on
your cloud account.
:::important
-All backups are encrypted using Aiven-managed keys, and you are
-responsible for managing object storage configurations.
+
+- All backups are encrypted using Aiven-managed keys.
+- You are responsible for managing object storage configuration.
+
:::
## Dev tools for BYOC
@@ -204,9 +229,7 @@ Aiven deployment model.
## Related pages
-- [Enable the BYOC feature](/docs/platform/howto/byoc/enable-byoc)
+- [Bring your own cloud networking and security](/docs/platform/howto/byoc/networking-security)
+- [Enable bring your own cloud (BYOC)](/docs/platform/howto/byoc/enable-byoc)
- [Create a custom cloud in Aiven](/docs/platform/howto/byoc/create-custom-cloud)
-- [Assign a project to your custom cloud](/docs/platform/howto/byoc/assign-project-custom-cloud)
-- [Add customer's contact information for your custom cloud](/docs/platform/howto/byoc/add-customer-info-custom-cloud)
-- [Tag custom cloud resources](/docs/platform/howto/byoc/tag-custom-cloud-resources)
-- [Rename your custom cloud](/docs/platform/howto/byoc/rename-custom-cloud)
+- [Manage services hosted in custom clouds](/docs/platform/howto/byoc/manage-byoc-service)
diff --git a/docs/platform/howto/byoc/add-customer-info-custom-cloud.md b/docs/platform/howto/byoc/add-customer-info-custom-cloud.md
index 6f4f3456d..976abe908 100644
--- a/docs/platform/howto/byoc/add-customer-info-custom-cloud.md
+++ b/docs/platform/howto/byoc/add-customer-info-custom-cloud.md
@@ -86,9 +86,7 @@ team if needed.
## Related pages
-- [About bring your own cloud (BYOC)](/docs/platform/concepts/byoc)
-- [Enable the bring your own cloud (BYOC) feature](/docs/platform/howto/byoc/enable-byoc)
-- [Create a custom cloud in Aiven](/docs/platform/howto/byoc/create-custom-cloud)
+- [View the status of a custom cloud](/docs/platform/howto/byoc/view-custom-cloud-status)
- [Assign a project to your custom cloud](/docs/platform/howto/byoc/assign-project-custom-cloud)
+- [Rename a custom cloud](/docs/platform/howto/byoc/rename-custom-cloud)
- [Tag custom cloud resources](/docs/platform/howto/byoc/tag-custom-cloud-resources)
-- [Rename your custom cloud](/docs/platform/howto/byoc/rename-custom-cloud)
diff --git a/docs/platform/howto/byoc/assign-project-custom-cloud.md b/docs/platform/howto/byoc/assign-project-custom-cloud.md
index e1f33e4aa..7ddea34b1 100644
--- a/docs/platform/howto/byoc/assign-project-custom-cloud.md
+++ b/docs/platform/howto/byoc/assign-project-custom-cloud.md
@@ -105,9 +105,7 @@ custom cloud, you can:
## Related pages
-- [About bring your own cloud (BYOC)](/docs/platform/concepts/byoc)
-- [Enable the bring your own cloud (BYOC) feature](/docs/platform/howto/byoc/enable-byoc)
-- [Create a custom cloud in Aiven](/docs/platform/howto/byoc/create-custom-cloud)
+- [View the status of a custom cloud](/docs/platform/howto/byoc/view-custom-cloud-status)
- [Add customer's contact information for your custom cloud](/docs/platform/howto/byoc/add-customer-info-custom-cloud)
+- [Rename a custom cloud](/docs/platform/howto/byoc/rename-custom-cloud)
- [Tag custom cloud resources](/docs/platform/howto/byoc/tag-custom-cloud-resources)
-- [Rename your custom cloud](/docs/platform/howto/byoc/rename-custom-cloud)
diff --git a/docs/platform/howto/byoc/create-custom-cloud.md b/docs/platform/howto/byoc/create-custom-cloud/create-aws-custom-cloud.md
similarity index 63%
rename from docs/platform/howto/byoc/create-custom-cloud.md
rename to docs/platform/howto/byoc/create-custom-cloud/create-aws-custom-cloud.md
index c4dc03eb5..8d4468965 100644
--- a/docs/platform/howto/byoc/create-custom-cloud.md
+++ b/docs/platform/howto/byoc/create-custom-cloud/create-aws-custom-cloud.md
@@ -1,7 +1,7 @@
---
-title: Create a custom cloud
-sidebar_label: Create custom clouds
-keywords: [AWS, Amazon Web Services, GCP, Google Cloud Platform, byoc, bring your own cloud, custom cloud]
+title: Create an AWS-integrated custom cloud
+sidebar_label: Amazon Web Services
+keywords: [AWS, Amazon Web Services, byoc, bring your own cloud, custom cloud]
---
import ConsoleLabel from "@site/src/components/ConsoleIcons";
@@ -10,114 +10,45 @@ import TabItem from '@theme/TabItem';
Create a [custom cloud](/docs/platform/concepts/byoc) for BYOC in your Aiven organization to better address your specific business needs or project requirements.
-:::note
-
-- Creating and using custom clouds in your Aiven organization requires
- enabling
- [the _bring your own cloud (BYOC)_ feature](/docs/platform/concepts/byoc). Check
- [who is eligible for BYOC](/docs/platform/concepts/byoc#eligible-for-byoc). To
- use the feature,
- [enable BYOC in your Aiven organization](/docs/platform/howto/byoc/enable-byoc).
-- Enabling
- [the BYOC feature](/docs/platform/concepts/byoc) or creating custom clouds in your
- Aiven environment does not affect the configuration of your existing organizations,
- projects, or services. This only makes the new BYOC capabilities available in your
- environment.
+To configure a custom cloud in your Aiven organization and prepare your AWS
+account so that Aiven can access it:
-:::
+1. In the Aiven Console or with the Aiven CLI client, you specify new cloud details to
+ generate a Terraform infrastructure-as-code template.
+1. You download the generated template and deploy it in your AWS account to acquire IAM
+ Role ARN (Amazon Resource Name).
+1. You deploy your custom cloud resources supplying the acquired IAM Role ARN to the Aiven
+ platform, which gives Aiven the permissions to securely access your AWS account, create
+ resources, and manage them onward.
+1. You select projects that can use your new custom clouds for creating services.
+1. You add contact details for individuals from your organization that Aiven can reach out
+ to in case of technical issues with the new cloud.
-The process of creating a custom cloud in Aiven differs depending on the
-cloud provider to integrate with:
-
-
-
-You configure your custom cloud setup in the [Aiven
-Console](https://console.aiven.io/) and prepare your own AWS account so
-that Aiven can access it. In the [Aiven Console](https://console.aiven.io/),
-you follow the **Create custom cloud** workflow to generate a Terraform
-infrastructure-as-code (IaC) template. Next, you deploy this template in
-your AWS account to acquire IAM Role ARN (Amazon Resource Name). You
-supply your IAM Role ARN into the **Create custom cloud** wizard, which
-gives Aiven the permissions to securely access your AWS account, create
-resources, and manage them onward. Finally, you select projects that can
-use your new custom clouds for creating services, and you add customer
-contacts for your custom cloud.
-
-
-You create and configure a custom cloud via CLI, and you prepare your remote GCP account so
-that Aiven can access it. Using the Aiven CLI, you generate an infrastructure-as-code
-(IaC) template in the Terraform format. You download the template and deploy it in your
-remote GCP cloud account to generate a privilege-bearing service account (SA), which Aiven
-needs for accessing your GCP account only with permissions that are required.
+## Before you start
-:::note
-Privilege-bearing service account (SA) is an
-[identifier](https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/google_service_account)
-of the [service account](https://cloud.google.com/iam/docs/service-account-types#user-managed)
-created when running the IaC template in your Google account. Aiven [impersonates this
-service account](https://cloud.google.com/iam/docs/create-short-lived-credentials-direct)
-and runs operations, such as creating VMs for service nodes, in your BYOC account.
-:::
+### Prerequisites
-Next, you deploy your custom cloud resources supplying the generated privilege-bearing SA
-as a parameter. Finally, you select in which Aiven projects to use your custom cloud, and
-you assign a contact person for your custom cloud.
-
-
-
-## Limitations {#byoc-limitations}
-
-- You need at least the Advanced tier of Aiven support services to be
- eligible for activating BYOC.
-
- :::note
- See [Aiven support tiers](https://aiven.io/support-services) and
- [Aiven responsibility matrix](https://aiven.io/responsibility-matrix) for BYOC.
- Contact your account team to learn more or upgrade your support tier.
- :::
-
-- Only [organization admin](/docs/platform/concepts/permissions#organization-roles-and-permissions)
- can create custom clouds.
-
-## Prerequisites {#byoc-prerequisites}
-
-
-
- You have [enabled the BYOC feature](/docs/platform/howto/byoc/enable-byoc).
- You have an active account with your cloud provider.
-- Depending on the dev tool to use for creating a custom cloud, you have:
- - Access to the [Aiven Console](https://console.aiven.io/) or
- - [Aiven CLI](/docs/tools/cli) installed
+- Depending on the tool to use for creating a custom cloud:
+ - Console: Access to the [Aiven Console](https://console.aiven.io/) or
+ - CLI:
+ - [Aiven CLI client](/docs/tools/cli) installed
+ - Aiven organization ID from the output of the `avn organization list` command or
+ from the [Aiven Console](https://console.aiven.io/) >
+ \> .
- You have the [organization admin](/docs/platform/concepts/permissions#organization-roles-and-permissions)
role in your Aiven organization.
- You have Terraform installed.
-- You have required [IAM permissions](#iam-permissions)
-
-
-- You have [enabled the BYOC feature](/docs/platform/howto/byoc/enable-byoc).
-- You have an active account with your cloud provider.
-- You have the [Aiven CLI client](/docs/tools/cli) installed.
-- You have the [organization admin](/docs/platform/concepts/permissions#organization-roles-and-permissions)
- role in your Aiven organization.
-- You have [Terraform](/docs/tools/terraform) installed.
-- You have required [IAM permissions](#iam-permissions).
-- You have your Aiven organization ID from:
-
- - Output of the `avn organization list` command
- - [Aiven Console](https://console.aiven.io/) >
- \> .
-
-
-
+- You have required
+ [IAM permissions](/docs/platform/howto/byoc/create-custom-cloud/create-aws-custom-cloud#iam-permissions).
### IAM permissions
You need cloud account credentials set up on your machine so that your user or role has
required Terraform permissions
-[to integrate with your cloud provider](/docs/platform/howto/byoc/create-custom-cloud#create-cloud).
+[to integrate with your cloud provider](/docs/platform/howto/byoc/create-custom-cloud/create-aws-custom-cloud#create-a-custom-cloud).
-
-
Show permissions required for creating resources for bastion and workload networks
@@ -468,62 +399,49 @@ Show permissions required for creating resources for bastion and workload networ
```
-Show permissions needed by your service account that will run the Terraform script in your
-Google project
-
-- `roles/iam.serviceAccountAdmin` (sets up impersonation to the privilege-bearing service account)
-- `roles/resourcemanager.projectIamAdmin` (provides permissions to the privilege-bearing
- service account to use your project)
-- `roles/compute.instanceAdmin.v1` (manages networks and instances)
-- `roles/compute.securityAdmin` (creates firewall rules)
-- Enable [Identity and Access Management (IAM) API](https://cloud.google.com/iam/docs/reference/rest)
- to create the privilege-bearing service account
-- Enable
- [Cloud Resource Manager (CRM) API](https://cloud.google.com/resource-manager/reference/rest)
- to set IAM policies to the privilege-bearing service account
-- Enable
- [Compute Engine API](https://console.cloud.google.com/marketplace/product/google/compute.googleapis.com).
-
+Show permissions needed by your service account that will run the Terraform script in your
+Google project
+
+- `roles/iam.serviceAccountAdmin` (sets up impersonation to the privilege-bearing service account)
+- `roles/resourcemanager.projectIamAdmin` (provides permissions to the privilege-bearing
+ service account to use your project)
+- `roles/compute.instanceAdmin.v1` (manages networks and instances)
+- `roles/compute.securityAdmin` (creates firewall rules)
+- Enable [Identity and Access Management (IAM) API](https://cloud.google.com/iam/docs/reference/rest)
+ to create the privilege-bearing service account
+- Enable
+ [Cloud Resource Manager (CRM) API](https://cloud.google.com/resource-manager/reference/rest)
+ to set IAM policies to the privilege-bearing service account
+- Enable
+ [Compute Engine API](https://console.cloud.google.com/marketplace/product/google/compute.googleapis.com).
+
+ Show sample output
+
+
+ ```json
+ {
+ "custom_cloud_environment": {
+ "cloud_provider": "google",
+ "cloud_region": "europe-north1",
+ "contact_emails": [
+ {
+ "email": "firstname.secondname@domain.com",
+ "real_name": "Test User",
+ "role": "Admin"
+ }
+ ],
+ "custom_cloud_environment_id": "018b6442-c602-42bc-b63d-438026133f60",
+ "deployment_model": "standard",
+ "display_name": "My BYOC Cloud on Google",
+ "errors": [],
+ "reserved_cidr": "10.0.0.0/16",
+ "state": "draft",
+ "tags": {},
+ "update_time": "2024-05-07T14:24:18Z"
+ }
+ }
+ ```
+
+ ;9j*^N=T@jFw5yntk>?g-i9EcsC8Z+
zz#AvR|F3HlU|XfWTjl*Nt54=#wTefp6(r2Oz*^@QSQ-`PfJk*OFvd1ZCOiu0mt#Ai
zJotRx!b?p$dP@$*q+scV&-lV68!BJfG#h7?{w%zXPxweB&UhK>8%BQGj!%>>HB$yf
z7-uuNq6fhl@Z76CePdSMET!VUUV4B<8ispzGyb9k8Uk^ph2eo@lH1M*HQ)(5==OH@AQcv36DQU+Q0qWSc?f6v6vX5sn~mBk@7YnUe3Zh
z@(tt~h`csK<&m`U--Vq=tj?jQXe3(LyeZ(}4x2|&9zY7$)?Tv@*cu))$9fRGcI_ji
zo}5xPTAzAT&z#i8^e@-EQ)!~v^vsg}T`1`?fT!=O*G*+qViDZ)6(^b3gbd6tnKrBi
zParV4t4tE3V8-jil{Bu4oP*jv*>TDj493u$P+lhl2eU~aiStVxPY)tSnd(j)-EXWD
zu@hF}?Q=*3^jtQedEP}-4Z!>0qAkRvC^~Ek=kUTBqSr!vSgzDSS5hx624Y|fo1o25
zYZ}k1{TrmDl=-3IL%N+)AB6qwno!i4v(JWl)WWC=Fmo&K*|F9>k2xN$+HDC~%IT8Y
zwSdIK%(ifhK4`>H`g7h1BNUz7U4~Q!OXQzPKh7Or>>v>|*9M5DGvWwUqazQ;tyJ}N
z%wFaNBd>?X?lGj|PNY;9I_*zUYf2;tKdc7Iyqj*AA3
z?dwTBV`-#|>I=U$r9U4<@9HB3K%>pn4Dyl^C!oGe41O|vF>kFDpPo4Np2tt995
zU`isd4y_G&SPfC1X|9#PvlzPiMCR<9?0+TGd?RewFMJ=!2B0GD7{b^y-ee5aX^7UU
zh)j_4H~*^x#;!slv0$C5sZeF^EDqm^sns+$K<8KaFfLVOLo9cpKd3k#Z%s-Z*N{_F
z@BhFwyk)yqYAb@shH_TAhrMFQ#CtGyJS{_7)LCU`+uZ@l!=2zLqY^-iRt71U{CB&J
z)}3%S5q(99l5kbRM~ViZqkO~vV|W)f43D$I!7ET2&y=92-)O2Ee%re(t!PZSl$~F>
zjN+mXtfoeViS_aWMK&l0TzKbm1G|wq*)@9ssNI`T9PXP8Z_4WfS0mp`^6axCxnk)UKQI)wRN_5BXvnttl;l3DA<^Kl
z`KN{irt9Qbf6@4(4hk?-SQ9(_y`(aiOzaWtv^utAXq6u2b0^F5uwjR)v(>K0+FZH*
zX2m8(>l=HBQqe;&VYOt#Kmli{VGd&GJ{r
zNeOV4zs7Cns2?Fd?=Kjst22V{uyf9@yf_D0tDrI@Tv+y0qR$DSXb;*%L;oZqQ}s?6
zhIOzeHVW?eONuG*1u6s^s?uF_v=<`2E5iFbzI|g1sMR}P3hUM
z=lF4Nifl~_5EDSW^f4-eBVLxG3#rU6)xcgr!*rd}S}seI+RO=V&HG?*yr}hM9`x<|
zI?)rGN#0sgvagrk?RQQbV*n=DIzM+jp#H4kxHdPq>)t=Y5y+4S;>BRf0`)!brLBK`
zh{|_E8iaioqp_YX0cWgrkb;BH&nM&tqjFz%w*1tuXok=&cLZv~T-NG%1d#|;*NF!d
zWIB8q8~lkfOYTWE)9TI$x_Vlo#Y}89k3C&;2M!0&mjxaiaewZf%6d{Ib{&-WXZDl)
z+09GX#i9igHC#-IO_g+7t_e3X8#aXNX
zZe`{DDcJQX)eZrULiBa_L-N7jcyarAZ
zp7nBl_%=!1si_pb+i#k|>_+&TLD}CTyr;Z)&}=>SJI&BBT4Guj8%ZeyGz+U4fnDgq
zsl+>oxSy0Je|Z5IL{QP116`~TnY44<0RwT0WWI7akrz1&!pmMJ5U
zaV9#UK`uH$pjmCcH`=+u{IG#uHJ9!Je=Zxf^hvN8k|-`g9jx|)4tXJ>6J^3fwtZ`m
zfYVHRI)8eqK_l<0oZ?g>5YW+SRh;#pKRf!QFckL~jr8Igou%Ef3O=%!G0-1Z<+XWI
z95j+`%TB|+l>o$o#X%y(PN-r7ilz)J&QspMpQrh>kSiY058%Zsc%yT0zZbjWKv7>G
z^mLB3-r
zz)jXl)q;_{BfWWxsF3X@HQSYAi$*KQHVd>?>N6r1_CHvP0dW^PaG@*2DAhe$nlu3-&{Pb7Xw=)uZF)V5`D%9@MmkBl@vt9RUub-Q+1MD
zCPEsO`C
zme8R~%)_#x21~6Iw|hllOR+1HilA?&XEVjHV*o{a-eq`Ma=cDwdM6IHs*xD6OMrCY
z|Jd5cG_;AAU4+Ad6qA^#Bh^#o=4q*~manQrYEXa0_6UTnJvlj+f^EZnbSO8LLPL5&
zXqM>GD4g{wqYmdCJ=#s_AD_b2L`{DmDeEL3S0-II%IqAlAvnlb&?}Cggm+=RN<|{@
z9MHQc-kDc<)7!C|q&`>V(UVt_y$nj;3D6oThEH$G@@*?wF50haAPu&XKar*UFr;Nn
zAXy_iq3c=GB>~sxVOS%Sr^^uoy@m@RVcrItPsx>=!&!Jlo-AZ+yEis99{((F^qB+C$eg|MT9fm(G0CeCu^Q|>VZtb^D;nwlaQJTp)sE^O_4~7~eUp`z|o2R{B8@lh9h*RD&rlAVq
zJ_sgByr#HBoTqJS{@kAMQjS*}u_U7yJdzD#>++Qg%o@r-2;KA>u5M&v)N};89yGO0
znebK0r@;X+@KH1l1hloZ5L-tauzvpm1mas&Pz?u6tDlA0I
zP=S0;zYoY-e5fP6l1*pKVT^z~Ed(XuD7(!gc#Ta9&q2q@_s37WEu1NF5-C`7Jg}UX
zw<8t|woL@8l=KZPcf{IZk*sV@ZKG#XUgpS*>rmYfnbs{tVx4|L0Gsk0HkXn@hU;!p
zvsbqLaKis5eW?|sw7VI&Kn`_BZ*0c}*iNR2oL_YhNyn^tXUx<&mx<+kRWX5^A`Mo+
zb}+Y>fqo|?n976ZgJ;L1Ei5yDElyHkM&r3XCwxn4v;
zHF;sY3PV=R$j94UUGN#Qp9=6%&A|aM+68e=ZwA`(UIlxz?h$UN17r`XlwD|Z�A^MAv!
zSuOzE<`-eB*X@IbJL;Z>S?@r_waD@M!{5#zIZ@^UQF_qlo0ev>G3H)Js54qemOl6}
z(HNVeXk_+4jWps*HZGDXY!yi_55|wfN1paEFd#-fFUaHSF#HcV%=nnTLtwDPoY3f9
zc!SZ_?Qv#-nn|&+QiYgj!zKvE=}RW?^&$Ygg7U(+Ef_F<9iwIrqLY&t7C`WoPJ>@j
zUS!_SMw3u|Z5S@C8);D)@qFNoc|QoGPD3)iK2p0v)@o*^aZh#-BIw8lNxnU{`BK|LQ{_bhO1L0uapaBOzH?zOe6wDCCM9
z5ODr^Wo)389&;F_`bFY!I#8&(14Dhd!sJmOOq|7oqb(xmnKW{v_Q`mx$7~%>t6+fR
zW*Ko5VP~4OQX_}w%dyD8yyydQ
zFJ2X;+=X>iFz#(@fzQ+hqY`Gv;Ix`s=_?6!fq(L-y?kb@p>9UeD0CV`#a*&I9TiE0
zKa-6f&b-q)_KX)|WgpS{$a`6iSHG4$Gwbp3-QgzMyYRQzG`(X5iVNwo@X@+<+`Iio
zlAA?6t0-5Q(2s}03MRtO3OY;gMeKM0?m<(u!QMt!5$uZRrL1dLhvocX7Cth>l_Z?`
z3_ZYfMgrw)yPF4BHJfQkd%H36-@dpMrXkXV+cfj7
zhGPS$qmlQ7muR6Ocj9>^84kC}Mz7yX$!N8%_&bbx7wvVwp2=&AWxP$d3or%Oj+OnK
z9Z$o|hU0rPn}QbU&!#-;mk*?ybkXn{Y41C6@7FNkJ8nzc7r`?i#PdER_hqm3>b)SE=JfGm9l-WQdpzY>vknqXGSsljNBgv$^~Su
z`@dlMW+$ICsH9~DXMw?QbNvj6UP7
z40tb7FxKc$vam~fAp-5QXc#KdJZ!TI(S2c}A7co`Jcq57O*5nEMbBYNswEQL_moq?
zIMD)ZunW`is(zRz2q2J9tg7jMdC8b#{A=SA2CN*!6|3#CPHcEP(dj!gynZb{p)={Y
z-u6$$xDxgp$ft>X1qx7u2Fm6o5$B^HE!K~PIqyIpT!D2KJ>P9`qJYO-tfMBLgM>QH
zcA&y)HCkC;s_&dII23vJsv_d$Kh`YJ@u^c#U{78xZXT|P35Q-4*SNAYGn-WCwRwU%
z*&XUhU0?a$4L^PdfnXD4DkzccUp2^mX^{44IN~@g#Dzq~c`v*0jujyM!87B2-sEbz
z0u#C67po&4X&s~;N`@SAP5`WrpkzoQXQyr1?a%$dxW7
zKoXq?oy2-iU>SuoNF(HwLLq~v-L5eI!GMS2vGP~)(uzAJTVc+VXI?~Oz7$tO$sAdRZq!W
zhWT+~?F+nK2|yYsJYboHbw1-sZuJK&R9lECJj~eA^W7k=f-OI^cu}N&rD%Hgi?PUK
zhh<5U#2}wHw{At<|3l~|Z}6{qGts+E#YK(F8utF(yWE$CnQxq-di1{FM3a*S0D6wQ
z(C*!yBKbA}$n1b71LR-OWoIRG&C81i)(cjKDd3r{CY4-Hrl^^B|LpT7<`+$AL2!D}
zv~en$%C2Di3B9B{04s1i+XjQY15djY}&hR&KyHofM)(g
zldXzElAIGf2Z(;T^r$9|3
zS4!ahB9AhUPjfXQfXL?FW#j#2oo%edS#p`S+lKIE^L_#ncL98=SIL$CQBNR|Fy&KZ
z_accG@%fnO;A{dp=7r)Np3;0!zmoUFCurZ_p_G~%tQHfm3uE};G@-}5WwRTsR**OV
zh5zT(F$5Um*Yk0oLzD
z^BvNdYyyufigYgVpLdiOX#~2c@%5qDw+g8`ALbZ97vu}$=6cqx%;<@}*9&F6gr)5>
z89A75%OhkE?|q&TZ#pNy?@*vqcJ&CKju4+Cmd~YLQEXad{w4d=cr1i8g}A1zIc*m@
zG&P|w3mbH6zdsYR=`vPthd}aG*hn3BvgYlx0nD*YW%n-0eS5r%+{=|!^ige??`v~i
zHu|FDpW0;W8qrx(Fq-J+zt2mT{Ur0P!ftrNgs{_-&DsIcb4nGM;Q;ki_XDY(x@|Ze
zi_|IRlhy{1=(L7RrQ2yg#@DO%RtQtGg;ihb8?i2s7=zrO
z@s!8_NNbM6vV5!k<>hFn+m1ixF^FiHukIw^7?M=inDdl!xDZgM>+ilHU*7=Dy%Q%<
zZi(lH7JUZsAEnm}Mw&zldDVWytegyufCT0JB%glgQhP`Ea*l)EQBuW(&w$&@m4w)W
z+4BxM3zgv^GTSiYk5O-hK}&!A>|k5~+8@&fH>FKn9leQF^*;2ZLvwMKp5nRkSQ>M~
z!2PA;m7T4gxqQP3moa_6$Gx|BEBIgN;b$;uqf~NvFFXK-T#iQ??r?)K*
z2B`N=Z2r4GIK)!us_Aa2>e^o)4pt^b-}Q}s)1!V$o4~Bfhz{PD)5RBseRGnch33ME9J@k3v>SH@#59cb4k(%haZj5wWEv=M`;6??^O13QM-_d>c08Z
z%ky6pF~^)>YmTqZw4{Ga(7*dAElJh8@oM$_VQ14ggZv9u1Y6c6?A(n>pfGgn-FK2U
zR=v74bAgeiFBNM>mUq=We|Y3c=yEP5_zt#VTZnt^q1@VY#r5DFLF#)1)b#B3rzb8V
zIEJa@#}OZsofK2=6^D=d*iMF=*(oqc@8q6+BYPdQ@bFR751Eb|tj1JSaoVnyGoan)kR8JL`#fJ^!&8`_F-K5&!bM*yu
z-Szmyv(S`AEx1_gQ_2X)nTGB*9hVyF+
ztYq_GxCWf#QgqN^+s0#Hl^^}BB-g;u;OLYki1kcy!^s-73<*l$l*+FVP+3~v%13)Y
zrNlm%-E=W%~_r{nk0|
zY!cAm5~icAwfma#&%`%%K2^(wm4)ri$*BdpNSu3G{htLVJpTu3DZ1k{cx_rz*
zJgCsasFZ35;?;qxqE)Y}{y^5N)rM{)C9L4lP+>&;lXJ|BhQ*UCfMfq;7G&W%_hWrj
zMLOe!4jjT9S5;E64aLg4ewPPd?>TS@s&HSpb#V2Pj=G#}t_~UUQ&HvgkfG)1>R>4L
z1iCC~G;8Zh@kDQXtcpTVDqkRp!kcVS&iz?r)$m@aEF>TkEx+Ma8JP;DdD-LQ%|hvJ
zp9j|_w;#=PL4f51SLIRG~3Gix;nxGhFNSA7c_WK
z-RV1Y;pe_E(aqyPOMfod`GLZ2|2JnAFDyIUYU_V4tqnUvpXj_CPm%mM+hA$v`g%)2
zJ;V5-(S^K-SlAJDG!f@7ypQPF`jcGfe5rlRU=RG$R`|`4`|mPkpa*+
zfe}BK6OY7~%Dx@PV?6ot2=gnmc
z5&sWK=N``V`~PtrRYE6+a!dymhRPwrMi(wAG_5EF!zjwK=`+ncA*Zq7wp3nPQoQT%GXOBGxIzC&VL_&Dq
zY0iI;hY7}Ozp)KhWzg7G`;oTQ*CPSHzhjD0IV_|tn?O^mD4a$B3r3@crF$(oLu~v^u{XtpWvJ{;$cY`W6P0DKC}FA@HgjV64qf
z4u&yJ
z@5Ymk!}zTpQjT28*L^2u2OqFMi|WjN4x8LL_ov8
zR+Tw|ecrn(XW%&DCGI^#+3Sy8WR@#<>n7<*{L=`N9m~`3u+p|u;wn4KY+H>ggsAYu
z^wfa|b3xkVZ=;Hhc#LUVRgZ^^AbphF*#;M;52bijUI5t4ufT)rh=i&2nh$J4c<-Vn
z`SSQqv*PC`IhsDs0|~(%J~St)o;jt6yy*eM{T?i%hG7XQp8UE&hw|1
zg9g3_`ZNnmN6MI&($HuqL&h@HPR~Q&-%X!6q1sR}&Bv|L`q@bojijVunb%QisPVY=
z^-3#HGm7%IRlNw^g{c^f1U?G$bqyzFLi$ntbB4^4vxy4G@nr10NvTlcbFvQgTszNkabf!;fxKP>?;YzuC?MR`qmY9sE!m8I+;F)^
zCE2*Ncu0cPT{}K0cHGS4_civ5Re`u3s?leg`yP}M8777tsU1H{|HDjOyIGg2F|yRB
zB^Y~Fq8}y0*nwfJLWDIJnQxso9a?8p=2Dh&u@VF-&9$r%a7?k??Q@3ZCmw7MCaKkI
zc#}BYiURI5BSE#T1a{ni!6agygki$R0mZsQwfqoLL6tnqg}T&U+YLFk8Q*%)C!3KI
z*OKCr93pKob#+5a5ZJEOCsW7T_kuGEApB|9aQa}@+!R!MQ&#sm7_FOHW4QF<3Ddvy
zFY<@1T!+Pp_R(Ony8c~G1dh`>%UB_g$;jmk5%TqXC$Q1kfERsBQ3k06+Wx|PXxd4sM^2;&$c1HDh0UR;lWikS4kE?UJp89tvb%!VuM
zg&-;CHDG2XXS7n3C1`hhNUB=;*UMcPXw8=&%X1e-t
z3Oh_sK%4AG1*b~2Va_<|;yV&$UM6=t
z&OIeUj|3#Ld#yHjA$l!&PjachX_@2gnbrfzSH6TI)P;f^x?0Oks!P}-E3
zBm`lQjXO@k@HF+E@M7U_@@KZM`N#za_(Tm`o3@Ms>^s9-Y?SUy_WuA8Eza*m4M>Jr
z_{a_TM;sHpUS`oI9O5rG6+sEkiJ&o$$gO+ja<-nzCQfA1%2gUe@@L#&(kR3pTmQ=U
zyihuKAHxikI$63mVA<+u7YH)
z2cmb*SyT>MNP}O(Z(`YRP5Yff2c3@ZHKI*eY;TvB=KUPj4S2&)FNDTPk=WxVueNp;uT>Ztvcu(kM2}EAvd37xO><_=*H|m
zHu$>@fCu^3o4p(UB|njF}0#d}*uR0kihorU!=XoHs+K_{R!=NFypoD1(B
z9&F6fH4}PS_I;`*lj@=tSaHy+lQqFKX%oB=Ftu+IH7?fL5Yyv77)ZROT4$2l)OC$l
zOpWl#pZxyhfJK40O_M0zAFF=TRZFt!jm%?y#bV*&Mzf&|ZGJh$f8hH^EN1*|`_H?y
ziP}!?JwTwCFqeWe4Qpp6E$COi1zA<{sp^3b$MjHB?ZMdcj}B1+8Se$#2ZpW
zgGe}|ks8vezaOi<^Vi}u?dtGXdp$HfWvBkYSgHQV&8~sjl)?)L2l;#aLE4edZxua-
zp6DCfWbXwA(-@NjzjLJ*JYLxT5}Sbsomxr9vx<%GH64ynu+l_kc)jH9gH8;Ci11_!
zETzo$oMzsfE={YKFmo=0ac0rY^Z0p2{T9C1LOB=Vy@yDM+k1QA{g#iUValjh+m!ew
zTg2O$nkVnC+UB8&zBLd}{Ig3*acu`Q5@n+LB~gJY8}kLy(%5KAV`8ZH*+O3nkT9qisrO>4GU#lRKa}`@r6f&vI{So*-HVGS{?UAQ}4D}b(x)L
zKjs8>B7YN}OEvC9Y_rOG?v}(;oYB}DmS5Cy^b|rT8r&J-eN{%F40#E+lz$2NT0u$v
zqCE9Zw!4#gY=rET#Z>w5(#HNR}ag_{J==z$~%t)+S#Sgc}X4Ql1
zMl0t8D&`LAg|wNPTIX(==ySV*viM=#i0d;C*wv#n5z;+`YFmXIZUW1x;OWx03bHmG
z$DDL~Ld>EUu-+bryk1)k20xOS{cf0bapS4Gy4+y^6E-&2XkEXMw1BPp0g=;=l>@y8
zwt3hetYMzrosr~&VKJn<5qD3NbOy;t;Buc(6ccsH%E*yxQ$Jb@k350z=shFDM_IMz
zCw&z?%t!%nPQ8&w2CgY62g5ecIl+$~sic6VP6`0ns3K!0O5cW76p&7U9X}3Jx@DUY
zxliW8Z{&TJHPh{p_KH%SHQUcb?-mg_aFz{iuG>h%ae`hp1=qCT!`zANx8S&YsC*z}
zaOG{%Q21L3dJ7wvK`HC(C1tRAD9Y>T-wNjEM;O39jgH7v;a*xt!b8=L+6T4pDD`S#
zmt_lI2VcHQI_g;WED`fJk#g5w7i_j~;Y->RDdj3wM}<&CW4r03O{
z7t}6@2+BW>D<}1ctRq
zU`{ze#omAox47x8tPzFuSoSaVgGwyhUJ~wT2TY1&j1QytRqz;yQ1BtH2|jFw=_Pw
z4I&VhSLU@Pph;_RtP!TkA~CxErl5dIvp|DE_OZvu@8+L6LHfiT^Pk8y9spOg8B16?
z39p#ss&U-F;umal{M@LIhhxL}9**o_L$&*1!SF2qe(s$EBI<3n3WDw};r$a-PmFpG
zwRAMvn@nVMKNX`kwE~)fdVTHsKrpsO6HFb`&rD9gGmP968r1**o7C+rP>QM5)y_XY
z8yH%BP`4B|Fl{P`Vk?-058s;3ETdOVU_ejxy&O{`&SxgfMVAHc>fj5BelFZ|qjfP1
ze^10<{Snh(9mCGF>7xjbH5XFCmy7Y+GEqzA1+=`2CHGuh-kTp_}C;Dsma?e=4Xh2XLHwPT>R0LtaIkcPnu
zP?9XsYOuf{*OYQVdm+2p_E4G3VQ?iN8j51qwnr5gM_qwLXN7iE^$}%DW7ZQeTu)EE
zjN1`)+3YXbE5dlKX}}i*jeqD#q#!-3ffSF4fyjoGdhPVLy5bhn&PbIU+bFjn2q
zKSkDwSFbowuiQI~&q6{J2?{Ij@faqcXR#4k_XDM7T#6HCl~hTA!6Dt;9LQGJ^O!w8
zhOKIS!?U0i9MWL}_%JUKif;J|vZsu3uf;Hfj|(z@u`)dMey)6u`+~!8b(z^;GkASI
z3+th2ToVp;ry3LVOCvi=XOa1~dD}r`uo}5>?hg%^kHD_orJ
zgAW>y&u00}$aN}Yx->xo>8m9{HJOZK*YN&I(*pH|-jBlA2>-*PbtmCZh5jw`S{QV|(Aqai?1)GpwRZZjfI;xSEq|j?kUG2>Np--rD*o}X!$S~G+GtkS6=M^i
zlFT^=>xan|?FH3$2b#X8zaxRJPD_WcT}@6mHg}udE%bdkCkjQm;u8e!JpN|J44u$wGkHIt!1x6YiNvqiUrCuRT#^OaC#Y#QF`d>Xg?U>c
zK)IPe>-^4yva6SsKu@!=usSsu#BJ1w-`+&Oa_o^?|Tp>AQ_OH6>A+?nzo-
zZv@Src5<+!@%jz1^vu4PJ?neokk3zLQoZCoZk*c?25HmojRt6UtiPkRXqF%>1>mNs
z&QKU%#q*YmvK>g1`td)hdN>2b?90)3GFfs@JKA7)s)+*56vT}B4K*So6dvj^$9vH0
zTy9hF`EmQD2>hnw?(=(Fv}ypJdJ8Cu1t5>MJyOm_eqM`mesRAdbY*TfH-LzIrJc*X
zyr8<^+D2rz;Zv?23Y$ssV3(&H@v0l?ms{)%gR#Fj*T@)nU?%dNXM5RnCx{s_!7evq%K2;!(wgN@!oinO@
z@UQvDHHOFzHV5XzZKwsjoA1R48~;W*!CrAd{D&te
zO@wE7lpW%EQtdcF*~nhv-(fnTmLbz5ug+qqwd{sEQ;@fG>}?h`S=Y`v
z)PYjez?e{@_)XtZ*Wbfz%s9-hKf--RXLB+fe5elcP4bpz^DoIj>reI>qEl=7{1CCv
zF~89s^lxP`<5zuUODpnSaXYnuJ)0fZy0>7PyTlX(k`^di=tAfz%Q_pu*>N#qe#}ik
zjlF64J!}o9#7N4NHaDs?3z{n;`WEQk98MVn1sLwJm?r1;4g9(LXmpl^Z^vG>g@MGYgW)+iHhrEx^l_)5({80Ql=Isx~6%;sA
zOQ^)A^Q?wCY7M`q+vJIqU$E{GZ_m&{hOu`79q3DD##=H@08i%&Tu@jqCyDv|&D+sf
z&EjReSdDyXYD23B`BC@mpc;pSNfbNCn|eZ#IZk3~t*iJr
zQ`Mt2INxSrz4(|BtX-w*8o`)7bnjg-gj7hvn1ZFJ}mqgJbk%QKHGJbKR{rvC+lY@v`x-0&z_Iuq-201n^b2~Y>
z3sJ2N)+l0}*pflQCZgu#ST;adVZMCkAoy>M8h3Dy!d7u53&4!wO-i;bldr2v_U-X`Hoh3#*ow{=eZAVSnir43#BRZ
zykp&%sUjU+Mv3JIJGBp5Aa3=a?0CW8<)6~O#|P(
z;8ER!vcwIQIBtXdw?Y*_^+Ivd!tGR2CGpGwE
z_B6s@CKFlZpx3Z}%*+GU_}v-!gUnvCvR%7qsM@x~T@gBH@b*kmqfKZkk7A@HQ5MTLNk?LIfSP)7LVrxFJEd
z{)nMzXRJZK4}rqAV6IO{uUkd;2uL`pD49AB7M?Nz9yxqg=T=qLrklHmMa^dTfHWJf
z1jP2Hc^luL1ua+?nP|@tq9q$uPKCf%5eTcbaVtrHrs0HH0i&Yf$QZGUmXYiGwHd%ve0+d&|#ur-T?n=Z=}!
zkUq9xfR$P~2r^;*R_(^kTb{F?hTq$Rzo2_zjTO;q*OLF#E$A!vsCxT&!ta#L!2obX
z-Ahv|n-#T^&oYUWHaN;&GSYj?Y-YNqdUN`}jL#VE(Zx>o>nKJqV(@)d>YxF}Dede*
zAb*U~#3@6%Pu9xP^>>I-nvniZR*Nvh99pKvN>=NO!`Bdj7&|?uyl&PEa}Egc5`^53
z@MIyAqOp=~5qU-QeN=0nGlwx6WrJu;0X~0G
ze9tTH(ibqv>v1f<-9eO^QTb=^@Dv@5a=I$c0cyoCrWy9dkmD#Lh^1OF%+{NOz$
z)vA3Oa&TnMK5qj)zXhvdpP9SYR!TdH!e0xy&t@C0U>2o?ts$f1qx9!Cu6FWEOH`rG
zU)&-Y6at@ioAqyWu0iC7Xg@F}nmc@N
zAe@7iOA($ywZ87rqB>?P+M`Yen;-)bIVFP#V&rz~j};=WCJ70j%pabAUYk?TUO$X%
zK(D{zV5FI1z5LFibB}&pBvcZMDTX^nsPonChRVbrby?4Ii%kW~;rIQRBg0jEYW~fW
zE2Yp$e2$@*1ARuXr;Y!}=NLPCPnVE3YkhDk(Qvo#6}*9P7}xp>B)hq-2MDH(o+}|$
z|6s*5)R3BVph4`u8H=R<^fgAR*^3oZcGOhld74!PtuLQ&Qm^vPhv6>N;bW|s7tYj-
z7z?Q48!4s2ME-X@$XH8t#+JGC0es`1Lm=
zGS4ZF=|GM7LmJpfnu(A^j-Y#wn^6K#Kh~4P+EgV~UU(^1UtUmZ1@^kAdN`hXJlr4IkG*265PZI2iUr7<^D{Cj?4JQVHKntE
zxI-sP@;#l2GW8n2Gf(cR=6c$eF0mN+jzI2HccP3d{52;haY|xdLZvwJ9Ye|quS3-Q
zD4?H=f@pFP)bHpcEWlOShs9)q0?it)bqz>u5aSsyq1wz*gu!_$D`6o6ypaC-tn(E_
z4ZmMy#m+1I5aMK+=?cw3SgSo=UZh2ZGIN?+9(rU!1P1PZbFEph6n>fuwT(HtXC*6%
z>XFVbfV(by%rc}>g9BH_$t#nNsfgB<_gjlDZUk&M?5qjIc#&bkTbVnzD67|lmyB`F
zUnGQpBaZMI^0&5S`)y^!%XiwMnYt(YUJQEQRZ{hpWlZ(!8WLUj;Ed;~q8@7x(d0A7mGB
zxbofmcZX^P^UHvpYo_p;XWTKq0-=e{*KoZV!m96-uww{@trSk8e~b2qf{(MSros<9
zX=yG$H4tg9f0MR(z44O%LAxSRPCyELdc&Gv$Z{rYg#x5
zERA^?)e6kc!VcbaINz`sk=r^o@nntOE;ikpGmDI^=Y8s_O?21zkZ*WqB<5G#m2Ga*
zQrUP6G*Ty7JQF*p@V~3LM%v}ILY#w
zz=EWSkt)LyIv;*=ZDTEXqhjWGyT4xL)i;qHhuiV-WoQ)OHAXF1n~BFQhZlVLt`q7M
z7^<$wi*nu!U%NO4lCI33S`MF#taG3Ac^^R~r3roLNt#=$HvG*vUmk<|b~?ZPM3=kk
zO|p_nk0*EPR2~4|vn8C4w7M`^!;4^F@7qa7cd|xW)t52k3PXzm=ADH(Z0`i_fe;5t
zGSAJG?@DOhjfliT;`14qw`v#svcdGznnU0YgH&UjmRFYLVI+w<0iokin&
zWp56D1rEj7tfR3AS6*9HJCPcgE0Sb>1?`Ggjwnj~TSN7`B30!B9_RQU+?q7(M)9vNyQdiOyu7298
zXsO9Dl)02F@`tcF@_7?NKII&YEPe+sT}t8=$#`&=#%M|K5qy78gnGK@!g~3_WL2}y
z=649%72rJyTzw{4n&K4s@ljMKg4&*@U&%54O-KV%niQ^IQFQ5rUwbi7F;!CLf*ki}
zUr!TGk?lzwD4*tazZX7*-2Q2h;^Vxj#94T>xuDC_G?x7&;xRJU$!i&yhdTo>rC)9+=$3DI8vdmwcIML?5aD~
zx_U1TlhK(Z#?yQo;r`o_i}#^t#F#ty8tFxO47$N{rT1CK-NHiT|O}yr!K|h1B~X
z+70{_#hSo|0&n~g)=%Zoc~VxmxlCOT4BEcwFi`>?
zmkh!Ei!KxLR$g1UlZt-4EBN&aWPHhnD(H
z=Vpw;=)2j=X$l^0)bJ@$*r30
zhx#hyv8xMv)Eg_vqH3?SOIm^TAdp+fY`d6IVuL7&d5BERKU}6rWJ$6ij-IO2n{Xfva
z$n#4SEXX3dhw>`=grc>pc-
zol^@(>e}(YUt7qu9vN2lZU@{LCXP)&_062geV>|F?PZY6VZk6<=youU>k
z&xh=Yf$i@nu1Px|h((xZ7YBVOh;{6h9QnOt(6ouwn(Bd-nWcZOEdv-alRg*jvun_t
zmUqI}ZfCy5D`jPTED~|Hm+_d}7(SU-1m0s-NOH>et}Y?b*I%$B;+5RxrTfbTK|<}f6)^CC3C>)
ztL9u!X*a=h<8akyCX6*(QO)q8Yi)aPkU!W`!q)P!8;Z0`>%VXr{8nl(Pw!^96Ltf9
zmR<2$PYm|G(NG$9%ZqXdpzF3+P2e)U-IZX{i?B;<>b@9kpy7ynrL36_p1RV(eN6R0
z)~yuQGqv8ucoKh-wYqFAvxuu3r9Y2zuGX{Wk8l$FKjxN-S&$w)Hxp*XM%gTA;l_5{
zEWH&Z>k|hZ^UVU32N?fl@M*m2%+whDeWT7Tpb5KIv`lSqxKtONS2=-SF?VYS*Uc%Dw{4`<)q`4ql;m?MaFv|
zCT-jAHjh|%xMe$mtf^zOgjSC_mR>3Z**KAGS(#b<&~i
z4t$puM9j?Za1DZr^?A8}(Ctm4PFL`7NAJ{Cc7e*han=3}_1-7U_k4@QP1+m{+WFM|
zWX-5MSKEu@kiC;
zb?;~sntxnW)JB8-lPz9!Esk^9DxZL=*F0TML_x@+Io7=5ahb92wbB(w@bqd3Hj<3<
z{Plii9KS64;0^l=VQ#Qme==d-)oLbtvaZrhU#HJwNFk)-Z(7^Bvm!d=#g@FHRJGJkbuQP5oINwG7sCAXx&n;*{TVt~pCcOGW|8sjj1r{1}Zroq4
z4;>LD?2~epD#0WiXi!`w_R0c2bclU4j@?04q#e1MCRWQu+D+ax-uRRC0hnw-ob+D(
z&*yE8*mKRB(tt#}j#DEkuHe>2XFu<48Xz0EDENm!!;BO+C5p~%jCT^;dqG25DdD*P
zh`YbszYKkf_L!FzU15YGI(xNl_>BT1mfM!n_Kwv;=!V22e>=b-@BcTHpg&l)yLvuL
zsX4>xu0*|8rUw+!u~U5EpB{9@mbk>V7Kgn}SPq$?hp^_R%;g>32KEjmE!Tukebui?
zU)!S!eSf(pwafyrwMytqpT016&-(sr>_Un^l!go;nr8=`Pi1tDvFE)BMRvAs@${yA
zk>qrpu_ZWyUu*l#(BssbA2qgT~6
zUPdG^Lcir}MgLi~k@AUZchtZz<4eVc862QX#~4O-pSBQ|cv
zAP}Dx|G1Af1xaHc#a_F1{9ua^rtQP;yELAfrMHg4pTBX8^s9N&^vZLiVR-QFbPQ`q
zNDJcV%cW?8T$}sDOou9&o5>&Dvpq!c+rk*4pEKx-@`@)hhbURio+qz8TZ1npU+Po8
z;LbFUoy=gll!|%k0+-4&`G3O?BWk$bVoX)~Gk~09kevZ`)O#?hN1=
z7O2Ce0dJ;wVK1_YP*dlI>pojf{LQ6pak;*`!uRW54JAd&o*Wr&YS$M`j3+7cKtt~i
z^S9H+YfHoq{;M2z;*Bw*JG!cdq(h1nou>cJ^clJu{)#=k)AfHPA++?UJc2<&TKvH?
zumk($;=)*YbCX5Z1vT|r2Dedk}gyk@Mk0v6Y@%{P+N@R2N|4THbN4Rx#
zc;f|0M1>O%qB1;`n;!0SV9YKjQOC9~x9Ct*D~%pat=vIXmmJK<;Nlx{bC<^!@Azu{
z{s-vq8=oanyVRKdR}^yD{oRPDRa_UMin&4RPZD=|+aQ-T2IwVcnWk!(pKOX6kWnJ}
z00(qRNZyl12QqUAA3<&+_Y!B8113M@2nnCYhpz-9!D}mogTah$BD+a2%)kh?T)`mZ
zwy>IhuuTN{v~e!1u*k?dMtAqeU!Y@>@^rI1!-h9sWDAGRv=lv56@3{twc$3IdA}#r
z$JG*X@@ux0Ei%GMG`DE;=*%Hf&|et_sQ0VxL7(H55~upF>Tnz{MhWWSAb2vA%w=uQ
zUuHu9ix(Oi#uL;vcTTClBebhnS*?VdMO<#)JHXi=zfnQ-dco!P$GdiG6bG0UH5lPF
ze%V#INDU8FOdsg+(g`Rs06SEQiBZEp0zN1@rHWtQy`Lwh6bn`R%zj|Ivf)Ik!qYP#a9{M9!@%gA%y~edB4f{!Gn7d*)=i0r+BLK76GV3Rpo@O@kM7+H3ZHVfEEFMMO22aNE+XI7*qg_mBtY
zroqvz#uEKqq1u3sZvu4BRA((F^m8g__&Z{5mTEJ*GRz*oh|h`KUi$~@mimVLkayEd
zd|s91ZU7dpnre&!O6
z;wY3~^cppYntqw^AsY%;V7I6rQ+%5E_;mFLg(v7_P`Ho0#PHmT`I@fq
zd5pQPGI0Nh70Mx!$WE|btik%t3|i};4YA4QwW3eyHH%>_G#g7j0WC6Y>UB~C(RZeE
zEQW}`W+GFo33uQTKsr51hvUvmmc5ax;0lGcilUaIhPhgcW+?M|D^)XwLkLs*!|VKm
z?me;4+@m}_aDl5apyk1z<*Q0HgrELcrj;eu5Zs#;H(I@7cM?FX3RQ(shEM=_{2|p(
z%HDFQr889^T+D%b^$ecwCRh(cVdB_O6K<2Mt^3EcFIU!9m+cf9sWFH(cNd&d|3&rI
zz3-WA5OiTFEy77+Bsd5dqBy-Z1
z`uTz++X;ZCh}Nxa;^JaR`@xx!1cHUbnC5G~>R)avx2XVcF@zQ@Rz)?@47;TSTZ-fH
zh=NpG@lz1qNMk4q0B{zz6z^lT-Q6rdpWFYU{?RNtY;?p`s%N7KwHdE)w?=dldQFdZ
zNRpN5tD3j^PIyJwRYJ$+a3SK5;b_9X$C=R#Z-D
z^}lVYr$wgnyz+`1=C5L5@9lKHMF^PY$!Kvp$NaWG6MQ4<46VG}IzdvrU8SaE;R&%l
zg<$>ucB=Y4I<&Imk6?dO)cZQ5;i6Q{c|cwQ+nxHYfME2a9|fsXJN{d>tk7t{`q1f;
zZ?Cpjd=*NqiH?4Q%WYMy?hf**bosEIS^=$pcm3|BLcg@qX6V?qw<)-!Oqtg;43D{)RlnR!9nbj$)W)M-vq%L*%&Yww4H6nFGo5j_etYYr&@uu80@8%Z6^TOWd=CE}7KO>1D{HAQS2F*kf#7S6JuD
zqErff>9wM!U0+giC9w6vj!nb0-y>q4g`@uo_Z|?SqGS&os>q)f)!y=@xdioxx70R|
z#~l%TB)t4`*!;;Pq{cP0cVW8-blD`=XnYd|6jA=YmIoAP?OX!WPYzvtl4DIuuTR1n
z9ETGpn;+!fEYH%t-B9HHP9bz6FcDTyzNUn6(r|0JI>M8^*_$tWv!-Ah#2c4cZtoS`
z7mVF>5Nt)kcPINa*E7%(4y}us>o0>6|>nl38V}VeA$spWYl@<~gKcCM6jgMB$B6Sq~Hy=X|4%
zPd5rt?Jiy83&q_l)z#xZiZ|vOrx|B-WCCDCU>cS5nD^4T29!SP*O8E;KdM&R-*s|g
zs^Ic=6OZZymdAQZip-pnR9gAj^p!JuOt1~yl`hw3j9oo0*my*FVgO8?X+xN1Nk%qf
zB-S4B-LJl=_`La5tuJWo=cYzmk@#b;e3`2?d3q4M646#k3S+
znI0*pRr%N*c(|H8leDjp&O;XXLWH{2tawO)PhmC(CZnNwTGD+voZOluxVpG&RQITE
zMWEabuQ>1pyKdc}A3R+d;AkY0$N=@QA7YtJIqj9k@Ayf};aMGC$uwM+lJK>f-t+)v
zy$T1w%};;|Y*az8t*>VHxhy|+*CR}WTJ{@j-lO)v<1)uNn@f=ippnLvw)9Kfv=-nMGAn&ZS-OoV6PF?uV`sW^=
z@3X`)1?)xLzU)sC+8=gxUHUqoDthr(rJwZamwW?>oo_PqZogRi;CEO0xqf5mH1gQ~n7gX!AAAlwO2iJ2Wm-N>__8DPjE`nJK&0`3>+K+o
zv@{)Ayt=hSDlO&4*TR&0<_^=33;F`+GMVem^Ul-fj<5#5@$Wk7&6fn2VNp)6%hb?i
zfBq~Qkyd=u1>4GbA@pWou1rxPOWeZc2NV)LjN+=C74O0ny$idNNy
zIV&BLQ`zj)lETw<+6o#rx}Z@#X3_D6M08~+4s){2a2|_+kJ-9onp*pgd^!HMVy_4K
zm)VBfU=B)i+nrJHgH>>%{zu`It#k^(RC6l*EPr;_TicexuK(N?vYse4)qM;hjKnFr
z+$yw^6Eh5TyZq8uEbe@&?RY_a+(rZqujNxmuIuS9F1zJ)ShlhPFkx}|Yt(#fn!13$
zD$q{ys#dzCbBEaVfYNIAwSXY%>yx!*pq14$q(L^
z!-;p71c++^=#F7YcVZ=I7(iEAKz2Hqi#`
zKi=2;2YFXNXya7Q6DhhgkqHN4mQa`r$=Le_&Gy**dks^hca?ueEOP4|Hj{v4+X2lx
zs!zM19N3~m>q>JeobnKwe@^HL=wpL1i}YxMQ8jO_yK?xnoafcfR_(?6(CzqDmsh)8
zrTL$5KB`bj{8Vi5w^42IJ*>hw+n8!Up%($FmsLFhr<75Ce*?1nz%@1b&{t2qf%54e
zZ5!J$T?VX%=o$ID>D^A@->KfOU|5IY)Z=D*mcdPD96SdD9~_G*su+(MfGi9H7Me_)
z0%S_|Z^9_1ojU1fWnmP@;hsyd?re-$*m>zam{&FMm-d}jf`uZ2OlZ!*d#c2fTT#QK
zw&78(w}tlrN5A5i8Tsk$v^4)hct_;klSXGFPWG!N{7h?yGm1!=%ak0^*z(YWyk{yplxo!b
zl72SBsrzB`G{q6rGgIgMfq=u0X;=vCQd3bnHTLvW;XRkOljeV>zx4?s_;}5}raZF$
zAw`cPUIn3J(gpTb@Rp5Nx_NbG;KG7h2Jot0Z
zizS0-wY#0D1kr#i@kc4CXN)U=9t%18suh{%<$r$~y5o(X--Y2a3#szq4J4H=+Uqr2(77RC8$V^tOV*6MYK*0pAy;GB?I)JbwFyxmu=UB3ULw
zQAJixis=2aE$nVcNF49&SL%uUPJuk5OSdw^fc(2j4DeM=ziI8=#GY
zU*;Mok`IBN%Kj)1*!4kMXzUf~d=EsJnCIwa_Nc2S(QLG#7u78z31ZQ#0>
zF{VSM+|SLIf0!^6zC(ebhDzQdnDVf+I;KsB{7-n8ecssE7_bFG{E1M6#u`8i$|Bz_
zk_tIT7}hOFc_HIxxWq5QJxFJo1)g7V{TtE)t;|?~xSfJ3I^Dfd-wO~5yyC5$yGpq1OwL{V#_I=)?!+gAoMUsOK)>`oPMtSW
z&|Jj2XXi7}5!MKTaLtK6M1QX5{akas%-63R6C3+GS0fm$@W6W~lwJ&5_;~pixqL5F
zUo?Y8ou@@5)fH8Yx=diE88gR$u>42C#6G7lbAK;k7B^w9F;3wtrMK&%Gx-VWy1nlc
zuhP>$EE+5!7kFW5?cvhWN2PG+tW8V1bBV<%K5h`%pDSJjnyhsy(pFEV8cZmzxSP@R
zZ4kO5490dJq>lfFPW)`Mu{<3Qk_eECX|A50IG5%mLt#p9bDFAfnCeopC!)8|Ii}QVck=3oZ)6x&fhke3JQJG+
zIQX*Uk|2lBrUHF@tm0w4t`7KHcPA?)q?Xyr@iswFe-a&Z2
z=i#?!qm}yJ2?cb6LkV~y*YdZZuUIx#bc4Z
zBfN>(FF3hDv2$B1`tHHMT4>b`uRgmIyI+WiZy6
zY%>@$^LzVzzQ5;>=X(Bp=8vvxTyx&N&pG!w=RU9de%&v>dUv;Uy3c|2YKh0vXrcQ9
zafqM=1lK3l?NuN}(9yB2spzF8c)9+Jtb-0}qov#C@5bOUUd^ZuA=8bhZIR!dk9yPx
zhm;70hi~3yn(^W%M|;m-2q64{8dfMsU5ZDK#cOe-QV-iASUhKzpUO{va%~6zlVM5K
z+H8UWV*HotAipY~8>KcnrUr(j`LOSxAiQ<~ZHV5mPrV_mg_#elarGk_zE|VCwU+Qc
zJ-$e1S3~UxX+wt#-`%fpL3Zx%2ANxb5=+S^2`V)%f2Z^w4~&u_IKHW~Xz1Y!*yB<7cAnaOX&XtRiw&-K7xJlQNqyqVLxB(MxyQ!sIq
zPvz*AuTo^5UGNSd>C8ww31Seq01)S$bvMa~5|U%RbD@xS=sfqL!uerxlWdGJnVoL`
z#nNu_ku%p4+G20Y8I4(Nb|k>K-vsc)Kau%1w)jeb<=eDRi>t%Mf^!Qc2DZCX;dgza
z)V0LG7Bl-4*4(He8X?jdI4Gz*L_b@wuhpDT8#%A_{s_@4X-8>}QgG6ib)}aM&cFC>
zAy~UJ(&f2jn|`AxCB*#7!d}lyyyluZ~*dNy49CC1g}}&pqd@tB1EFs(mw%ZTOL|h@vnJ^(2ybnL{3ReS
zERd!dEq@?D*BHY?`7=JdH!XOrc%$bv0&9r6vp$JbyEOm$DeYn<;$ci02V}r$TidRN
z?!@qgfMngAFP(Nz{oKbPlN(O*#oUM*1A`6e5@_`7^agF*|0}X_@GxyYp8%PQh=ofT
zo!OPh|K~**vl9~c$V=X5)R^KUKlGtF7O$sCLFNaBh>I?RsNrUT0wv+okZa*$hgSnq
zPsYLLjM@Ht?p9n6HO?S?`^@fCD9FC~JACSGfb;y@{Ym>ZzwPI#v_Ve-s0+!&Yy<+)
zO{$)~j}7c{Qyt0^RhD(tnXeNBk!ivn?TM`^zK6coGtY5x#`QDWE#5MWuC`8aN_NV(
zP&YPL)pz8>g?=~Xxb8kOemkWjn-E!8{nI$R)ra!c66(u=`_rZF`C*G5-Xj?cpYK*X
zar5c5oc9v1O%G~0)vqdaY5Dz3c-h$0W9k_+H`X@tcqZQY9(kKp>OH3-ZQ|KRc73x&
zTI>0r0TxLvw~*nvs;b$sU?64*D2f~!$
zj(V&{uw)t-6cg&>Q?(O6Q@b#KlbqrFr7JDvA6y8p!AMmp+Scq_Vp8xpaX#XXJs1{F
zv&7RO|5!N3xe85>2ue>e=v24@$sj_`OkL1bRF=6}$|^E<#kt1;ESX`A^!FC0%`Iiv
zqe>x}6X7AZMxX28=grIYZG0|6%iZIA0c}7DumxmdKGKv~VO$wIj<`6#sbLjvH!T&-
znNbC{eTVw;!W(51Ax{D^`&<-uyhbPspcr2O;j4(0wiBae+!4`~?)0!2LPx{UxaUl%
z-f4n-y17|3Z?~tvojtaV{40_7Qtc+s&|Koz)XwKwk;>~|
zT@#qLeqN~)CPi=!AhJV^W5~5xG^??;h@QkvWCR+q5Nd`LC=H$~C9gGe{#cLI{g+y@b0&Zsh%n~
z4q`ONU&7P5PL;DZw*2k9u+7l>mGe}~PLH6dT*%+&esiqg^=xP>%Kgp{ewEgJ->t(z
z^`NJ;=R05Bqm+`0)~pUJyP&atA!c}}__GTBthgl+7U{g{y4)Snt6~tPhO?{E^zGH7
z9h>>X^!P2((T;BIb=^c4w|wg1MvmWHvSA7oEsCRY9ouL|7mWKCTnbfF9V|K|XtPhL
z%dV}&Lj>03s+AO=(wf!mzp~Udk|(sc_-;0cJ=nzxmGenUTD*rlHEJ%(zvqV#HzO}o#8PUU?|GO(
zUcQ)b)EihU%eAZ@>VpiSx*j;O{ejI>cH-u*Fx@{jZCH$j3Zz_{ttUZowsjva
zGNxV9RjV+s+M?d@ZY;3n%jlex#jtm?_}{N)$mvcYT-jSEZzP|W6ly7CDj&#A(H)*&
z<*N1><=*#lZYkL0uW?|EaC9Pm8staHyG4d~|i}TmH
zv+?rog*yg_sxR+-98yb;NWXmPo28tdyfU-tiN|7*N~t=6IUayyxm`XL`sIbc*#)ce
z8?Sis?y~km8AW3(rx!1K@v;Q4bt?ZUqjz-~h#Pkow<15^xmdwpgXtAcKgST?S1v8%aESnnd
zFAHpL0Bh0>c+@v0w$5X@s!UG`N&Vxd6o^kUr89^aUXLeskL-nQbraF2w{D5V}hPpo1H_?N*Uc5?=5
z5;z-xbqSgaAuphH7JSW^(L~zW?Ki2FHVSyUK#bTH{n8KqL4j#XFbUHxmO*dJy`s+{
z;1^Oz2U$pqUgcL;L2tMLiF3=$3@L!nB4qP|CW_}1dkZzSe9>nw%
zplTe@r(Y7{p&6;2-)YpdwbQtX#~w+oko`XMrQffRS*x`uX3NV(768U2WM;nr#tW
z4cq9=n;+q;o+Yi>~A#HO`;%pw~TfQTMrKdcc!~V
zjw(#JBLp|_&N~Z|^KrGlOS*UY693?|qg*cW`iZ0246t_q7x2<6_aFRQ?OP-k^Y?26
z{nf_GQCQ&0&(7LCorOVfyw;1qF0taj0ZCPqbC1r!*$cuaj!-tfy+F&C%m10;xAQ2U
z+1kHdC}!Y~z{lFn?q3ns|Gs^*{BMx|`vwS-{@3V#U*rF0ng9Fh{OG@z`Crq_|KFQ3
z{~SIz*dR?4|DjE4M(EO@K*3SBdR@N!Y@fqS+`qH;4P%)P%tQP?z{2}D>p%J9`uj+lb
z8Y$SUF%6&vT||IJw)q;$slNv!YqalE2f9CQ%ni+?LN>y{2?(5=oLs6Mw2LAO^!w#l
z^LAf(omSK`7n=U7EYQ`a!Kc?UH=ni|mk~zSji?tp_51Yka{i{rpQXym&<{?PVbDzy
zu&cFC8Wikjc!}J>w3nq*r`uyAc}b_}LY?*Oa5F&5iS`J=14nKJ@gX+;8NWf!nO
zn(Gm;C;7^B82vl$ch0fqTdDZSwaa8FSjl#u`zCw5*e%(I9p|Y(V-R5`w+=@Pq=C8T
z)|?770NksV;`3&iA18nAkO?jHS888co*yg`Z35&spvWL1K3z0YP%#>_sic`Cp#F7n
z{+TNMU&HwM(0BtTJ59#K6kb0z=a%QwXLvs71I2+<&nGp%{!D$^gy>wuCV@Nswvm~9H26eKu6(jWzcdBX6Cait11
zErKRc4K{R34CY|Hszr3&g874z#&H9N$87&?qYS6GKxNg9M{u4Wn=mI2+2D=-7fZXd
zESk-TH-8s=RsQ$u*Z`h?o7H1-gJ$a%DK@@s%ErH?v|sE$;=~;9c?=FydO)XvPXXug
zrK|XAu*hrs#?99oBSH4Hi}>Rm?!T2Jd2Et*p6KH7b!`zxP2RML8gJT47|mCX*R2-V
z7TvCZgYS=)w|Yjg8REaeyoVu=cVLpB#XIyppTDNX4e6JK<{AgCN*mW
z3$3V&7@_C4W5exz!7_hi#LfmX$6~Qwngl>h5au-h)BqLo2eqS0@h})d3!*9hZh}KU
z_yzu1=P!1O;HthoFzC}axXwpWAwnz};gy_I&wp@6h`}Qu6U2M4lA)B#kFU}36
z1}k9H>ss4HA(739scTSQ^@g3fcQuvpt#%dSEjS8;I&8|1GSRf@n=U_`^dZ*yw3MvL
zU#x>zxXM%R!Z*vQR3GA(L9dD_-8LHClk7Ow=ERNlK@-r#hKw*YWV(~Oer%P5)^$Qx
zM1(uJXcCD9rve8{>$)uUr;_-lf?OC_c2GO&2k;#WH2t
z2F=PN!yAH)DJ*>dB#Pcg)UNynLk}q1A_+c)-$Q}55k#j`SR`T9e}KK&YKxe@IY-sQ
zI}d$Jx=%Yy!A7i>5Z78!**n!Re#(mfER3k0Hr)aosw!w$5SGe|=IyBNyt!(Y-!Zw&@2C(KLB?Rz)^9E%+LvxBoZ8cbMRO+xGp*O3M
zN>bgXn!CTa6s1B=X_;`uAM)$`A~;3NF;cz
zy`lBRb2ruUN%LHoZ?pmixVDTd-BIr&*&a&9QQ0?>kLUrURlA_MT(ObBrwyAjv8dTc
z;Uv72%?mIF*81G04YwULSf?_3HsTN+(N6ld0LmrvpVEAbAe%K9vQnOx6#qrQZGEB?
zSRqTQs`!IP({b?Nb%OYL4}dm)xxG
z_VP@5yl?3?u-u*P13qfEm?^Ze_b=I>S;|$yeP!!h?>=*u)du1;Q8S#a(o=DimknU)
z-d{ZiTymUP0;)TN1CdiZ#RSq}0>}d5#et{a?AfBk{E=@G9if1g!S-(X;|U$5xRYOk
zOF!gGye%a|Mf;lpCkGUB=^)JloEsz?8jxN%N_tXOw==2ZV)d0$}ZSingbV;
zrsCXg%~8D}
zf)ra?T}`D5P$Y686XREptt)beh5e1hHXN!G{*7EEZNk;cB@C4YBj`0fbt(&d5@L~2
zkmZq5X
z`7Lv^o9h8{m?qMkQFg15pj$Fzd%|b<%I8tz7_5>HSqqrz=4a2IrQbNM5Oe>-rlAwd
z`+JQk{sRt~GPOu9_S*GsJYz|3=Hr`A%Tf%UdTT(Bv*Y7h2`JBnIb@88tg$8KGhOz*
zNsw>k8v=s*BuxZ-Bi-nB-2Fc&3!5gnFZayXg9yzqL(#kvtg~606wKI^6*2gG!V@D~
zwfc=t&>;1HXOX7n=BlEqgXcKlIi;Jeg@$v!nsx4eicJ<6ucIe!*}%4(DxRA&V;m7e
ze-)V^dY-KMEZOykvy0blu$u@qF*JLaNC=Yj&rB_%@E0X;_bTy`qpdJoKDG3R@(-<1
zS&cLg%a6gl`W$RQh}XHUiMU`3xM#Jf=)`@3h~qWHc2~;N
z8ttbwA~vl_aAPUS5VNWj?%cuKHVV=(V|;FdYwyV8vn0U*4e%OAmx52DV~B9a_-&h7
zpKa$S!yUI1I|faYr4sL(K_;@z_~Wsva&@2THj`Wo2ZB%`lr51j6Jj;CcBhHLHP>nO
z{@z4-<=G5Sa=iFE3Q8S0vGpS(2)&!4c1vV1V}CZ-9;R9?Z>SI>^sTdLj6Py7aSPE@
z>I5UU?=E!R=rIpXXoy%y^j;6iK6`jI+tzDqYJt0F{ZW!%W58S2^H|f<#v=}Tq2RX*
zGtG5=vz$cf*N?XRzU@XAIDx*BVh7uV2yxJ%o9S2MVGl#+&kZw92L3rf60pMxpC4%?
zE!hVV!g`$c<`x9fq$o-et>?*Z5#)|MgO+ZX!SuB))%P6Mtqt3#5pvquY0Y3b36>9k
z-nGdQ>A6~WgBCvXbTn|r77T9)wIPQu=Y6_urFw1)?5w}AfDD3F^*{|$p}2#ObnmVZ
z*?5#4`&L*y6i)3aqTE^=MKNw{72^ID`}H`n9#@vKC{Xcll7cJ!VZOXQGK<|O*yh&0p{iWp<{)UWC@fdBg;GbhaAO9~XzTqyX<
zg>R8Y35WHP+e9-XKC}C+1q}#cu&fjWdy5FQ_*Z9Oy!alVA+%MF@gz?LeKCWZb
zVr525R=8B91mmKiTs6JavzHdDI_wV-}{
zf3}9GiEZRGWTRM|kr%7IK|$<@(A2x3=T}3x==71|mk-@x
zC)nQ^0GEP$`95ekww4j*A6E5QZy??%$lqr>G1wHYeDy#z!V~7Dvg}cCZO#}JC8cuX
zy^w(5`_s00ZPsH@D^$f?P%7G@W&nHB8kN$N0B#z
z>Uk9wT-EEq1wG^-{8n4HlIBQkQB4GWg@x=A`C>Fd5!*fKLU(nx}%D|YOmK3(lRWjx#8*3`Bzsr`sI7`c_F=yoreMoTU_m*BL@P-6W>w$u+&
ztwBp}eV3?
zzt_$pq#k00gy{j=f8w|rlhvG&xH{HZ=o$p(uWI~m8096550*XBGG%m@k
z24-%yaPLbuAQ$F_U4Coka_|v7N_IpyahRc=Hor;IBdm|4T;3e6==PCr?)(?kzxmQ$
zVMk<%>8X;xq;i;Lu@kVAElC0#HYLx87
zc0Dc}ygLhcb)+hW4CB9=v;Ztw$)P4`1T*b3E!E9+T_5G?4Nca`K{yo!bjOYagTrT3
zah`2#k-Cs;gRQ&rV=*BZq$$Uf=*-@mGZFKr(sU3AC$BB|5qdv*=O!ZTN~{PTyp^IP
zmQk674VhOA+r4f#)cY3tv!td~NfSp&BS;(K7Ieb3M6xyQntj%C=pfvF8g5V>HCEjC
z!}?aNtv`SHsvKkX75c3%U9x)3u9fMA;!T^36AV8sK_}g?r^iwdrxEUp#BlfB{u+xI
zk-8URcffABr^{B7(^Yw^Lk!dTm41e;mWeKK7xRy=Xq(@N%vkCvU_Y&|s%x^@vbyav
z46S?|EfKRAk4UtHN>y-7#4hgbQ)}y+e-{*YBrLS;JxWO$^z!%aUm$8f7#G4ojZWnU
zR3Xp(>|TFlPtPq87l6EH{I(EwUH6YXjAKX
zmQ_EW&Vj2>k0D@Yj|Z$gV5`(Sgg;vYReqX}BiAHuSMo%%tkRRP)@47Q?zJ!YCVXdW
zofZ9&212SYsOeAJLf)I7nX+*HIQpVRSiOOy34gvc4`1kYjcLX`f!xS{V~MkF-W<0{
zN7_V6u54EC`
zT;Bm<`|?UVkxv<%sp7z4Eow5Qo3My(cD}eeVY4gOvKLYwE635BMUCgth896r$~kMA
z9K|9nHs@8Q2UFEFkrL92W?XMM7|G4)JrCF8Id#;k#R=KwHiwF#q@i(97#7RzPOXpkWpAxy_3lieWrYI-)o~4S_FhHdJB|wK(nO
z%=vCQ(ZZXv1IGJHq;~7U5*(??dZ5_P(i85|)r}A~g>*cda
zho6a?lS+DG#LC5~^>otHLZ|VYqN4!&pzWFSnS61X=XoUgku{~rbV5dyCy93f{DHQ?
z3EaK*@S`Z-R9F~Db-VrD=A0<``^p9RTr&WvxKkzd*xVtOHb={P`(D7P+urA*voQFmcIFm
z*w>5KQiut$rClhpN!zH)hu@*J4eG`ZbII&Ck3eVdw&z)I%I7BrRh!M=s$ylZqWFlb
zL672uK9t}FWfJX!W|UEB=FWmHGPRCPRUOK?-B)o`WMu&l?%%^o>ph^BH)^2j>+w2B
zdblIhc-5JWO(m}Qw@GV8pXYgXad0W(_1Pr(ikFr_*)}L|Fv%By*9O<3u^&aPnN@DJ
zivRp2vZ|t8@FmQMrO^6WXpYvX*X_ZCU8SVj5m)KejROd0Z&q9J{ZkIxU2x$kHW{Y!
zUYF0wqLzgDdG!!!{)*=MBnss?0JnJX6C!J-GFhen_b!I2adKw~(pI{FM=%OzJ;vMu
z5*tv;4$~sgCQHVqib~GT(Y_yT;v8j=wnl-#jfwVsc=i2Oz_T<|F_QSuF#Pu7G}kIa
zP$uvFGe`cWIyrR`ZG`^R;x)=UwLjIKztKi-k^T;nb59#Os+BbRvDPzw*>kwK8?o8#
zgAYbe?AL34FuDUENtq(6mfs(ZLHkFTHZs7W(9Qf!F%y*pn~UNeA(m3;u)8tsk-v!~?%rD&@~_^}B)&L!)<
zNNkwK9Q`kV|jRO|ULB!h$Q2E>cm>wC04ndxFREw(ydRJ5H
zyf`CWRgQswcNe0d^kzLNm5=jKU*jrD@doj_%1V^Vt0F%)i~Jc?J&-}bo*%Pt@DuR6
z@^i6cOgFWK9OU(f0^IIL=>=YW_LWf6qk&$egrAHD$$htw031OHna|m~O1dTe=d_uH
zJ>c>PHvcR}`vVRY$uZW3
z2-j3Mrl)zhuHL;>|JaMBy=QA(d!b33
zV^f#Wk8szifFrr!Kt`(FYJ7yLL=f0PCjLcGeCIwC$!rzhyt=j?6dgqcycJbI_ieY;6
z?~V}s?M=&)o`&oMxy^NNl7!(SpR9ATlKpI*yykk6#ba9KG?KMms^Im%BfcqzA{DX>
z%=XMuzuM?JY1nP;)HK9Y)%dH$ra9xk^;PwTqrSYt#c5D7vUtHrJTKCajBmpG^mXfK
zaNBHaXZWcZuFTaq!)VG7d$n=b)nWgiF4LK6FiKPUGlh6m?lkdbQ0T?+%7O9fdf_82
z^>lEeA0a8@;>!S{YUvn~!hhMAqG*T+tR`t_YDP!`VSr3CP`T`$bx7dk`7ntJwQSP7
zxg0H%;lo^Zi#%T|>^iN*~Y=SVVH6
zTl~}arUdc+tJRe@hY=BVb-2{Vv&{B0xY(qortb&3VY4nVKbsacln2Hhj4;W5uQ>m~
zNZiISSsgBgL|z>3j=dH6!8|rG?H)qBOS1g6pW6G@OeJ$$L6a}dh>;&c;yfm|`T43<
zneH&M^n*UFnLV>fsPD9{Ml2diNSAP~;A{y!7AdgdnGbuufLHMD)?uN?(q@{de3^t(
zcR8hbe&`M>)?qKq9$fQ6lQ0
z;t8pX4_S7s?nZd8wtt+Qh*(P8ZTj`jt-tr?#*MH2_(##P+p~r}QOs
zdKe6|!ff(3GR#Ojn+wN;=7=9|L-jj!6T)xmC&~)6qg`E`u_+Cm`66x{g14Y?uW?Q-N6PH`!sPR=^*w
zU9V~rH4dI=Ab#PD)Y+m7sO;*IdUAi89}V6~y#oYmbQZjt*oGeo|GpZ@Yci&g^33_A
zX9<)2FU1J&X3_V^$q<_c$&VY!ERA!aI}7w73G#=jTGb$L`)!Ix$tpbee%=chsfMv%
zb##Cbiy=k@YNqUYmGpT>CSN-05&A_tbv7NuG*8Biyz0zVmF@$2mdR|ww;Cg1P_7Gl
zY?Me_(9&o20S=bQ&zb*RD)+-B2=)hR+Da!1Y?0q`GAZI^_OpGOCqqDpD=;A0Ug=M+-k4aiR;yUk%s%g!dB45y{EG}5PAVUR7z%$uO!NTcq7Ab>s#_Y4WpsZ-W!>9REX%`=4
zTQC5cSKPX*m|a9~Z-03t8V~_`cu2=P9eLV}XWXwwsm7RH1@i`&S8qHs>yca_f_i^L
z69_<30m^lKIqb|@WiG5^;N8bpOH2cT{BxG}GpG8T*J`A7-_L)|!r66s_W%4BhdP-syd7EcK!XsM5tR2M
zgWgGDoD$F%)2mz-7=zgu*ay{1*Lo{)W;%ZZ#GGS#eOMcbJu;k~Hm*I1L6V|xqTt4A
zppTcqW~Yqp8aI!+-u!*>AVlQ0CKZS?=f~}I39UI4gX+(^5}lJ+!VxtY#2N_bPSwII<}Gg3+gkW>pxBbmbja@H9=8uA(f
zddbGjf2k)@Z>8rO5{Hiw#EoXJYM%YY`ulT5p*~*g%Qxm(cJdUmAD^@4c32%^*O&D=
z)L_)_Dx4G6Z>VrroeAtL8Y-9^V3^*m54Jn>dtov$9QX)V5$vmC5d#Gw%;}+
zMOB5`u@r3we**9pj4~G)-+8=o9UN>ARqZPF!*iUz0?yjYz*x{>UmvwouU^vFx?0Wz
z5YyoDc;U;wO1xC3XVlE*YjaUnN=eUSt6&WCkgVAj(M!f(gi3l>b;N$}?+#$uZ6N9b
zEB;ThY;Y^-I3+~uW25FjUhNsTZBn?8M!!#w7bFJhS)k^CQ_$%z1gyiGl?-fPKc8f2
zo0_rlrIq$J7wK^%EGE2Iio7#`sexRPRA;0dKHk@p(0J!4>W3T~zin{pQjtbki+++$
zmhDrEtaDr=3^s~Xk%eCuy^BvwAh60SkdwIE@Mk(so})}se)4DCQGq8ht8YFz-mvsB
zc)bdwx;ei~JJ+-^X?nH7OPo3jxyX2CY9fy}==~ELfy`S7g);U&lwELm<-Bybbma9r48YM^F`IBayMX)_q4&Oo6z`{8&68_=PD&-o5f7D
zQQl8g%NVL%pq|#r@@CJJq*es}bUCRXniLvL&a3#+cs3)S1(ce&(4J%7-A1P^OC(@S
z^OhhWLvDled%DRD`6yGfv&N?|v*N~4NY5d|Y{Z%^jMr>YT=0A0tjQc%0(s4S`9BzX
z^<7Hi|9$b~mhc`~*Lx4Tmi)1!+=UI6a%53kv=BBI?kjhx(pRILDW-6`xw
z!#ypKq(=!8VYLy+e0ltA#`6iZLsb=Lzr?-hnW{HB;l3iKaJ5G`A!@_@`Ajy~yr(Jm
zMyJT~@KB>qE80Y4t1JdnCx78F=LqPAh3sc9jf6Oh1h3L^f$qS=FVVTnie~&h`B#4`
z(d>ex_`QtC7L)%TG#XX?qSJg`E~mITkCQ7d>bT)rcZ@_{YvU_Cw!K82YnUBce(}2k
zBBs-PsF;`aMfE8wyE;)@eG=7!|EBPeKCyuFD<6uqC=820KOrJ#?kcen$%8Eft8HJC
zwC7jb@FNE48$&B1^Fj7?R2~XC%&1HbMUjaH?)BxnN9G_Cd5
zU4~Kr>~D+iDhG(w(<%0iN3}QRd#G)zrU>#p{dWppOL3LKx?VqvF=o_lI7lMA)KhlQ
zE=U2L6b?kl(!-8}?bbD>kF5`aEH|4Jtm2A)`8!-UzjBMkXb@eLsoCPqNyjSBCyhr}(n%Ka4_hx7iV(`KcZwwaDG@T6_0sQg8d3Gxx~B3baU#~rt
zdxWwRqs)1NZGPbt!kls($#%Ybz6dO?CXoe?-%2I
zN_yIDQUVmAMswj5e)XYV#Lk~mUf;p2XczK!Agz%-2oW3O%llI)Jayl(S={e)%MV1(
zE2xY#LH7(Wk9Xd-AI=y|mWA*5)()xdFCBShwE+DS)tk)_6WYta+g$mqr1SEtVwK+J
z3nyX@a|aW02Oa&n`+?OfA|zSfsn)U`zdAPf%P`VO<~q7}y^Tt;GkDE8%nF7G_cg|T
zyEjIw$llE`7S$WVHf6x%|eq-J~LU}y=br!3TQ6xt2=m`~OHb$+RR##&DIYMzv
zJyE?I-Z=8I2Z_C1*~d}6HOQ!s-KsMd8~O*FmN)VW>4?OSk9bZ8Mkbq^O;INB={Z-f
zklardr(VL5`=#1;7rcLEnWYL|F_hTAvTjcL_fCY1!tTB&@jIpE)|-wc0;QsXq?pAJ
z8&ro&$3ifu%<@yP22k_d#IT)}HoP3d!*0b`5c>>XNbUGoz=c(!{wGO*nZCFPK({h<+*SftM`kUAt{*
z)^PKw_xj+wu55&p0F>}6!3r}ptNb!8W?c{0Xt*G5*mLLmQm?vj6