From 6fcfee53b263a4a26ae58739c62bb818e99ca7b5 Mon Sep 17 00:00:00 2001 From: janvi-elastic Date: Fri, 5 Dec 2025 15:43:16 +0530 Subject: [PATCH 1/3] Initial release --- .github/CODEOWNERS | 1 + packages/jupiter_one/_dev/build/build.yml | 4 + .../jupiter_one/_dev/build/docs/README.md | 121 + packages/jupiter_one/changelog.yml | 6 + .../asset/_dev/test/pipeline/test-asset.log | 3 + .../pipeline/test-asset.log-expected.json | 349 +++ .../_dev/test/pipeline/test-common-config.yml | 3 + .../asset/agent/stream/cel.yml.hbs | 120 + .../elasticsearch/ingest_pipeline/default.yml | 377 +++ .../pipeline_risks_and_alerts.yml | 502 ++++ .../data_stream/asset/fields/base-fields.yml | 16 + .../data_stream/asset/fields/beats.yml | 6 + .../data_stream/asset/fields/ecs.yml | 5 + .../data_stream/asset/fields/fields.yml | 290 ++ .../asset/fields/is-transform-source-true.yml | 4 + .../data_stream/asset/manifest.yml | 100 + .../data_stream/asset/routing_rules.yml | 7 + .../elasticsearch/ilm/default_policy.json | 20 + .../risks_and_alerts/fields/base-fields.yml | 16 + .../risks_and_alerts/fields/beats.yml | 18 + .../risks_and_alerts/fields/ecs.yml | 5 + .../risks_and_alerts/fields/fields.yml | 290 ++ .../fields/is-transform-source-true.yml | 4 + .../risks_and_alerts/lifecycle.yml | 1 + .../data_stream/risks_and_alerts/manifest.yml | 10 + packages/jupiter_one/docs/README.md | 247 ++ .../fields/base-fields.yml | 16 + .../latest_risks_and_alerts/fields/beats.yml | 6 + .../latest_risks_and_alerts/fields/ecs.yml | 90 + .../latest_risks_and_alerts/fields/fields.yml | 290 ++ .../fields/is-transform-source-false.yml | 4 + .../latest_risks_and_alerts/manifest.yml | 11 + .../latest_risks_and_alerts/transform.yml | 37 + packages/jupiter_one/img/jupiter_one-logo.svg | 26 + .../img/jupiter_one-overview-dashboard.png | Bin 0 -> 417267 bytes .../jupiter_one-risk_and_alert-dashboard.png | Bin 0 -> 670922 bytes ...-b38d47b8-40d8-4aac-bde8-bf14f1ed64c2.json | 2590 +++++++++++++++++ ...-eb28c687-3b1c-43d4-acb3-6e1eb7b7b46e.json | 1091 +++++++ packages/jupiter_one/manifest.yml | 109 + packages/jupiter_one/validation.yml | 3 + 40 files changed, 6798 insertions(+) create mode 100644 packages/jupiter_one/_dev/build/build.yml create mode 100644 packages/jupiter_one/_dev/build/docs/README.md create mode 100644 packages/jupiter_one/changelog.yml create mode 100644 packages/jupiter_one/data_stream/asset/_dev/test/pipeline/test-asset.log create mode 100644 packages/jupiter_one/data_stream/asset/_dev/test/pipeline/test-asset.log-expected.json create mode 100644 packages/jupiter_one/data_stream/asset/_dev/test/pipeline/test-common-config.yml create mode 100644 packages/jupiter_one/data_stream/asset/agent/stream/cel.yml.hbs create mode 100644 packages/jupiter_one/data_stream/asset/elasticsearch/ingest_pipeline/default.yml create mode 100644 packages/jupiter_one/data_stream/asset/elasticsearch/ingest_pipeline/pipeline_risks_and_alerts.yml create mode 100644 packages/jupiter_one/data_stream/asset/fields/base-fields.yml create mode 100644 packages/jupiter_one/data_stream/asset/fields/beats.yml create mode 100644 packages/jupiter_one/data_stream/asset/fields/ecs.yml create mode 100644 packages/jupiter_one/data_stream/asset/fields/fields.yml create mode 100644 packages/jupiter_one/data_stream/asset/fields/is-transform-source-true.yml create mode 100644 packages/jupiter_one/data_stream/asset/manifest.yml create mode 100644 packages/jupiter_one/data_stream/asset/routing_rules.yml create mode 100644 packages/jupiter_one/data_stream/risks_and_alerts/elasticsearch/ilm/default_policy.json create mode 100644 packages/jupiter_one/data_stream/risks_and_alerts/fields/base-fields.yml create mode 100644 packages/jupiter_one/data_stream/risks_and_alerts/fields/beats.yml create mode 100644 packages/jupiter_one/data_stream/risks_and_alerts/fields/ecs.yml create mode 100644 packages/jupiter_one/data_stream/risks_and_alerts/fields/fields.yml create mode 100644 packages/jupiter_one/data_stream/risks_and_alerts/fields/is-transform-source-true.yml create mode 100644 packages/jupiter_one/data_stream/risks_and_alerts/lifecycle.yml create mode 100644 packages/jupiter_one/data_stream/risks_and_alerts/manifest.yml create mode 100644 packages/jupiter_one/docs/README.md create mode 100644 packages/jupiter_one/elasticsearch/transform/latest_risks_and_alerts/fields/base-fields.yml create mode 100644 packages/jupiter_one/elasticsearch/transform/latest_risks_and_alerts/fields/beats.yml create mode 100644 packages/jupiter_one/elasticsearch/transform/latest_risks_and_alerts/fields/ecs.yml create mode 100644 packages/jupiter_one/elasticsearch/transform/latest_risks_and_alerts/fields/fields.yml create mode 100644 packages/jupiter_one/elasticsearch/transform/latest_risks_and_alerts/fields/is-transform-source-false.yml create mode 100644 packages/jupiter_one/elasticsearch/transform/latest_risks_and_alerts/manifest.yml create mode 100644 packages/jupiter_one/elasticsearch/transform/latest_risks_and_alerts/transform.yml create mode 100644 packages/jupiter_one/img/jupiter_one-logo.svg create mode 100644 packages/jupiter_one/img/jupiter_one-overview-dashboard.png create mode 100644 packages/jupiter_one/img/jupiter_one-risk_and_alert-dashboard.png create mode 100644 packages/jupiter_one/kibana/dashboard/jupiter_one-b38d47b8-40d8-4aac-bde8-bf14f1ed64c2.json create mode 100644 packages/jupiter_one/kibana/dashboard/jupiter_one-eb28c687-3b1c-43d4-acb3-6e1eb7b7b46e.json create mode 100644 packages/jupiter_one/manifest.yml create mode 100644 packages/jupiter_one/validation.yml diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS index f0f219510bf..0074fad68d8 100644 --- a/.github/CODEOWNERS +++ b/.github/CODEOWNERS @@ -301,6 +301,7 @@ /packages/juniper_junos @elastic/integration-experience /packages/juniper_netscreen @elastic/integration-experience /packages/juniper_srx @elastic/integration-experience +/packages/jupiter_one @elastic/security-service-integrations /packages/kafka @elastic/obs-infraobs-integrations /packages/kafka_log @elastic/obs-infraobs-integrations /packages/keeper_security_siem_integration @elastic/security-service-integrations diff --git a/packages/jupiter_one/_dev/build/build.yml b/packages/jupiter_one/_dev/build/build.yml new file mode 100644 index 00000000000..d49b5aa886c --- /dev/null +++ b/packages/jupiter_one/_dev/build/build.yml @@ -0,0 +1,4 @@ +dependencies: + ecs: + reference: git@v9.2.0 + import_mappings: true diff --git a/packages/jupiter_one/_dev/build/docs/README.md b/packages/jupiter_one/_dev/build/docs/README.md new file mode 100644 index 00000000000..d34458bca9b --- /dev/null +++ b/packages/jupiter_one/_dev/build/docs/README.md @@ -0,0 +1,121 @@ +# JupiterOne Integration for Elastic + +## Overview + +[JupiterOne](https://www.jupiterone.com/) provides continuous monitoring to surface problems impacting critical assets and infrastructure. Secure your attack surface with continuous asset discovery and attack path analysis. Reduce risk, triage incidents, and prioritize vulnerability findings with greater clarity and 85% fewer SecOps resources. + +The JupiterOne integration for Elastic allows you to collect logs using [JupiterOne API](https://docs.jupiterone.io/reference), then visualise the data in Kibana. + +### Compatibility + +The JupiterOne integration uses the GraphQL endpoint to collect assests. + +### How it works + +This integration periodically queries the JupiterOne API to retrieve details for assets of class alert, vulnerability, and finding. + +## What data does this integration collect? + +This integration collects assets of the following classes: + +- [`Alert`](https://docs.jupiterone.io/data-model/schemas/Alert). +- [`Vulnerability`](https://docs.jupiterone.io/data-model/schemas/Vulnerability). +- [`Finding`](https://docs.jupiterone.io/data-model/schemas/Finding). + +### Supported use cases + +Integrating JupiterOne Alert, Finding, and Vulnerability data with SIEM dashboards delivers unified visibility into risk signals, asset classifications, and security posture across the environment. Dashboards summarize asset class, type, and source distributions, highlight classification and status trends, and surface key risk attributes such as category, level, and severity. Time-based severity trends, MITRE mappings, and product or device-based breakdowns help analysts understand threat patterns and prioritize response. Metrics for open alerts, closed alerts, open vulnerabilities, and affected entities provide quick operational insight, while tables of top device IPs and product versions add valuable investigative context. Together, these visualizations enable teams to track risks, monitor asset health, and strengthen overall detection and remediation efforts. + +## What do I need to use this integration? + +### From Elastic + +This integration installs [Elastic latest transforms](https://www.elastic.co/docs/explore-analyze/transforms/transform-overview#latest-transform-overview). For more details, check the [Transform](https://www.elastic.co/docs/explore-analyze/transforms/transform-setup) setup and requirements. + +### From JupiterOne + +To collect data from JupiterOne, Authentication is handled using a `API Token` and `Account ID`, which serve as the required credentials. + +#### Generate an `API Token`: + +1. Log in to the account you want to manage. +2. Go to **Settings > Account Management**. +3. In the left panel, click the **Key Icon**. +4. In the User API Keys page, click **Add**. +5. In the API Keys modal, enter the name of the key and the number of days before it expires, and click **Create**. + +For more details, check [Documentation](https://docs.jupiterone.io/api/authentication#create-account-level-api-keys). + + +## How do I deploy this integration? + +This integration supports both Elastic Agentless-based and Agent-based installations. + +### Agentless-based installation + +Agentless integrations allow you to collect data without having to manage Elastic Agent in your cloud. They make manual agent deployment unnecessary, so you can focus on your data instead of the agent that collects it. For more information, refer to [Agentless integrations](https://www.elastic.co/guide/en/serverless/current/security-agentless-integrations.html) and the [Agentless integrations FAQ](https://www.elastic.co/guide/en/serverless/current/agentless-integration-troubleshooting.html). + +Agentless deployments are only supported in Elastic Serverless and Elastic Cloud environments. This functionality is in beta and is subject to change. Beta features are not subject to the support SLA of official GA features. + +### Agent-based installation + +Elastic Agent must be installed. For more details, check the Elastic Agent [installation instructions](docs-content://reference/fleet/install-elastic-agents.md). You can install only one Elastic Agent per host. + +## Setup + +1. In the top search bar in Kibana, search for **Integrations**. +2. In the search bar, type **JupiterOne**. +3. Select the **JupiterOne** integration from the search results. +4. Select **Add JupiterOne** to add the integration. +5. Enable and configure only the collection methods which you will use. + + * To **Collect assets from JupiterOne API**, you'll need to: + + - Configure **URL**, **Account ID** and **API Token**. + - Enable the dataset. + - Adjust the integration configuration parameters if required, including the Interval, etc. to enable data collection. + +6. Select **Save and continue** to save the integration. + +### Validation + +#### Dashboards populated + +1. In the top search bar in Kibana, search for **Dashboards**. +2. In the search bar, type **jupiter_one**. +3. Select a dashboard for the dataset you are collecting, and verify the dashboard information is populated. + +#### Transforms healthy + +1. In the top search bar in Kibana, search for **Transforms**. +2. Select the **Data / Transforms** from the search results. +3. In the search bar, type **jupiter_one**. +4. All transforms from the search results should indicate **Healthy** under the **Health** column. + +## Performance and scaling + +For more information on architectures that can be used for scaling this integration, check the [Ingest Architectures](https://www.elastic.co/docs/manage-data/ingest/ingest-reference-architectures) documentation. + +## Reference + +### ECS field reference + +#### Risks and Alerts + +{{fields "risks_and_alerts"}} + +### Inputs used + +These inputs can be used in this integration: + +- [cel](https://www.elastic.co/docs/reference/beats/filebeat/filebeat-input-cel) + +### API usage + +This integration dataset uses the following API: + +- `Asset`: [JupiterOne API](https://docs.jupiterone.io/api/entity-relationship-queries). + +#### ILM Policy + +To facilitate user and device data, source data stream-backed indices `.ds-logs-jupiter_one.risks_and_alerts-*` are allowed to contain duplicates from each polling interval. ILM policy `logs-jupiter_one.risks_and_alerts-default_policy` is added to these source indices, so it doesn't lead to unbounded growth. This means that in these source indices data will be deleted after `30 days` from ingested date. diff --git a/packages/jupiter_one/changelog.yml b/packages/jupiter_one/changelog.yml new file mode 100644 index 00000000000..35fb1d2c290 --- /dev/null +++ b/packages/jupiter_one/changelog.yml @@ -0,0 +1,6 @@ +# newer versions go on top +- version: 0.1.0 + changes: + - description: Initial release. + type: enhancement + link: https://github.com/elastic/integrations/pull/1 diff --git a/packages/jupiter_one/data_stream/asset/_dev/test/pipeline/test-asset.log b/packages/jupiter_one/data_stream/asset/_dev/test/pipeline/test-asset.log new file mode 100644 index 00000000000..a2f006902ce --- /dev/null +++ b/packages/jupiter_one/data_stream/asset/_dev/test/pipeline/test-asset.log @@ -0,0 +1,3 @@ +{"id": "2afb2aaf-f3c5-51ad-8012-c74e107e9102", "entity": {"_beginOn": "2025-11-04T06:48:22.119Z", "_endOn": "2025-11-06T06:48:22.119Z", "_createdOn": "2025-11-03T10:55:37.188Z", "displayName": "Jira Alerts", "_scope": "jupiterone", "_key": "alert:ruleAlert:c9700500-8af3-4bd8-bbef-6721d3538582", "_integrationDefinitionId": "fc64977a-3fcb-4b72-99ad-9290c43a1021", "_integrationName": "J1J1", "_version": 1, "_deleted": false, "_integrationClass": ["Device Management", "Endpoint Security", "IT Service Management"], "_type": "jupiterone_rule_alert", "_integrationType": "jupiterone", "_accountId": "fd932a04-5401-49ce-9f4b-b674387085d8", "_source": "system-internal", "_id": "2afb2aaf-f3c5-51ad-8012-c74e107e9102", "_class": ["Alert"], "_integrationInstanceId": "9bf230c5-eff4-42f6-9a7d-d6542497c8ed"}, "properties": {"numericSeverity": 0, "awsAccountId": [], "tag.AccountName": ["test", "Falcon_Ingestlogs", "J1J1", "JupiterOne"], "webLink": "https://apps.us.jupiterone.io/alerts?alertId=ruleAlert:c9700500-8af3-4bd8-bbef-6721d3538582", "gcpProjectId": [], "description": "Jira Alerts", "createdOn": "2025-11-03T10:54:49.341Z", "azureAccountId": [], "id": "ruleAlert:c9700500-8af3-4bd8-bbef-6721d3538582", "severity": "INFO", "level": "INFO", "active": true, "updatedOn": "2025-11-03T10:55:21.737Z", "totalNumberOfAffectedEntities": 11131, "name": "Jira Alerts", "category": "alert", "open": true, "status": "ACTIVE"}} +{"id": "b04ecca8-0b6e-5cfd-b1f5-df9b780da074", "entity": {"_createdOn": "2025-11-03T10:43:45.691Z", "_key": "29cbd8a5953943228e7cba331554f1d7_09502aabde923b2cbff94c77dfa49881", "_version": 1, "_deleted": false, "_integrationClass": ["EPP", "EDR", "EndpointSecurity"], "_source": "integration-managed", "_id": "b04ecca8-0b6e-5cfd-b1f5-df9b780da074", "_class": ["Finding", "Vulnerability"], "_integrationInstanceId": "89d2c2ca-2162-4858-bdc8-89d5d72ed9e5", "_beginOn": "2025-11-03T10:43:45.691Z", "displayName": "CVE-2025-49693", "_scope": "89d2c2ca-2162-4858-bdc8-89d5d72ed9e5", "_integrationDefinitionId": "5e650485-6df0-419d-a5c5-f76e564519d6", "_integrationName": "test", "_type": "crowdstrike_vulnerability", "_integrationType": "crowdstrike", "_accountId": "fd932a04-5401-49ce-9f4b-b674387085d8"}, "properties": {"publishedOn": "2025-07-08T07:00:00.000Z", "score": 7.8, "tag.Jira": "IS60896", "id": "29cbd8a5953943228e7cba331554f1d7_09502aabde923b2cbff94c77dfa49881", "cveId": "CVE-2025-49693", "impact": 5.9, "tag.Production": true, "updatedOn": "2025-11-03T01:35:08.000Z", "exprtRating": "MEDIUM", "name": "CVE-2025-49693", "aid": "29cbd8a5953943228e7cba331554f1d7", "exploitability": 1.8, "status": "reopen", "cid": "2cc98db1a47b4c98b913c94d43bfab70", "numericSeverity": 7, "productNameVersion": "Windows 11 23h2", "tag.AccountName": "test", "description": "Summary\n\n\n\nCVE-2025-49693 is a Double Free vulnerability affecting Microsoft Brokering File System.", "createdOn": "2025-09-12T05:06:36.000Z", "exploitStatus": 0, "public": true, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "raw_severity": "High", "severity": "high", "category": "Host", "vendorAdvisory": ["https://msrc.microsoft.com/update-guide/en-us/vulnerability/CVE-2025-49693", "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49693"], "open": true}} +{"id":"ab576c5e-505e-5405-a6b1-4fa1f7bceab7","entity":{"_version":1,"_deleted":false,"_integrationClass":["EPP","EDR","EndpointSecurity"],"_source":"integration-managed","displayName":"ProcRansomware","_integrationDefinitionId":"5e650485-6df0-419d-a5c5-f76e564519d6","_type":"crowdstrike_alert","_integrationType":"crowdstrike","_createdOn":"2025-11-03T09:42:05.322Z","_key":"ind:baaeadf647d24b9e83c51ccf2f73b2a8:485359820702-10251-202153488","_id":"ab576c5e-505e-5405-a6b1-4fa1f7bceab7","_class":["Finding"],"_integrationInstanceId":"c4d8b528-b3b8-4f09-9c20-320684dcb13e","_beginOn":"2025-11-03T09:42:05.322Z","_scope":"c4d8b528-b3b8-4f09-9c20-320684dcb13e","_integrationName":"test","_accountId":"fd932a04-5401-49ce-9f4b-b674387085d8"},"properties":{"deviceId":"baaeadf647d24b9e83c51ccf2f73b2a8","detectedOn":"2025-11-03T07:00:56.621Z","objective":"Follow Through","tag.Jira":"IS60896","aggregateId":"ac39abcd0f5b59cfcd16d19511cbed1cabb835ae451ca67899cbb527c5c8e48a","dataDomains":"Endpoint","id":"ind:baaeadf647d24b9e83c51ccf2f73b2a8:485359820702-10251-202153488","falconHostLink":"https://falcon.us-2.crowdstrike.com/automated-leads/2cc98db1a47b4c98b913c94d43bfab70:ind:baaeadf647d24b9e83c51ccf2f73b2a8:485359820702-10251-202153488?_cid=g04000alcejocicbgp7infyokz7bajkq","updatedOn":"2025-11-03T08:01:00.649Z","filename":"python.exe","deviceLocalIp":"198.51.100.1","status":"new","createdOn":"2025-11-03T07:02:00.991Z","tactic":"Impact","deviceStatus":"normal","scenario":"ransomware","product":"automated-lead-context","userId":"S-1-5-18","parentFilename":"rundll32.exe","sourceProducts":"Automated Leads","severityName":"High","open":true,"mitreAttack":"Impact (TA0040) - Data Encrypted for Impact (T1486)","cmdline":"\"C:\\Program Files\\MySQL\\MySQL Workbench 8.0 CE\\python.exe\" -mcompileall ..","filepath":"\\Device\\HarddiskVolume3\\Program Files\\MySQL\\MySQL Workbench 8.0 CE\\python.exe","techniqueId":"T1486","name":"ProcRansomware","tacticId":"TA0040","deviceExternalIp":"81.2.69.192","cid":"2cc98db1a47b4c98b913c94d43bfab70","deviceMacAddress":"42-53-45-41-56-43","numericSeverity":70,"tag.AccountName":"test","sourceVendors":"CrowdStrike","description":"A process associated with a known ransomware campaign launched. Investigate the host for signs of a ransomware attack.","technique":"Data Encrypted for Impact","deviceOsVersion":"Windows Server 2022","deviceHostname":"WIN-9L94MPLCTI5","devicePlatformName":"Windows","severity":"High","userName":"WIN-9L94MPLCTI5$","childProcessIds":"pid:baaeadf647d24b9e83c51ccf2f73b2a8:485362198808","category":"Endpoint","compositeId":"2cc98db1a47b4c98b913c94d43bfab70:ind:baaeadf647d24b9e83c51ccf2f73b2a8:485359820702-10251-202153488","parentCmdline":"rundll32.exe \"C:\\Windows\\Installer\\MSI9B63.tmp\",zzzzInvokeManagedCustomActionOutOfProc SfxCA_937663500 15 MySQLCA!MySQLCA.CustomActions.PrecompilePythonFiles"}} diff --git a/packages/jupiter_one/data_stream/asset/_dev/test/pipeline/test-asset.log-expected.json b/packages/jupiter_one/data_stream/asset/_dev/test/pipeline/test-asset.log-expected.json new file mode 100644 index 00000000000..afe10a6b731 --- /dev/null +++ b/packages/jupiter_one/data_stream/asset/_dev/test/pipeline/test-asset.log-expected.json @@ -0,0 +1,349 @@ +{ + "expected": [ + { + "data_stream": { + "dataset": "jupiter_one.risks_and_alerts", + "namespace": "default", + "type": "logs" + }, + "ecs": { + "version": "9.2.0" + }, + "event": { + "created": "2025-11-03T10:55:37.188Z", + "duration": 172800000000000, + "end": "2025-11-06T06:48:22.119Z", + "id": "2afb2aaf-f3c5-51ad-8012-c74e107e9102", + "kind": "alert", + "original": "{\"id\": \"2afb2aaf-f3c5-51ad-8012-c74e107e9102\", \"entity\": {\"_beginOn\": \"2025-11-04T06:48:22.119Z\", \"_endOn\": \"2025-11-06T06:48:22.119Z\", \"_createdOn\": \"2025-11-03T10:55:37.188Z\", \"displayName\": \"Jira Alerts\", \"_scope\": \"jupiterone\", \"_key\": \"alert:ruleAlert:c9700500-8af3-4bd8-bbef-6721d3538582\", \"_integrationDefinitionId\": \"fc64977a-3fcb-4b72-99ad-9290c43a1021\", \"_integrationName\": \"J1J1\", \"_version\": 1, \"_deleted\": false, \"_integrationClass\": [\"Device Management\", \"Endpoint Security\", \"IT Service Management\"], \"_type\": \"jupiterone_rule_alert\", \"_integrationType\": \"jupiterone\", \"_accountId\": \"fd932a04-5401-49ce-9f4b-b674387085d8\", \"_source\": \"system-internal\", \"_id\": \"2afb2aaf-f3c5-51ad-8012-c74e107e9102\", \"_class\": [\"Alert\"], \"_integrationInstanceId\": \"9bf230c5-eff4-42f6-9a7d-d6542497c8ed\"}, \"properties\": {\"numericSeverity\": 0, \"awsAccountId\": [], \"tag.AccountName\": [\"test\", \"Falcon_Ingestlogs\", \"J1J1\", \"JupiterOne\"], \"webLink\": \"https://apps.us.jupiterone.io/alerts?alertId=ruleAlert:c9700500-8af3-4bd8-bbef-6721d3538582\", \"gcpProjectId\": [], \"description\": \"Jira Alerts\", \"createdOn\": \"2025-11-03T10:54:49.341Z\", \"azureAccountId\": [], \"id\": \"ruleAlert:c9700500-8af3-4bd8-bbef-6721d3538582\", \"severity\": \"INFO\", \"level\": \"INFO\", \"active\": true, \"updatedOn\": \"2025-11-03T10:55:21.737Z\", \"totalNumberOfAffectedEntities\": 11131, \"name\": \"Jira Alerts\", \"category\": \"alert\", \"open\": true, \"status\": \"ACTIVE\"}}", + "start": "2025-11-04T06:48:22.119Z" + }, + "jupiter_one": { + "asset": { + "entity": { + "_account_id": "fd932a04-5401-49ce-9f4b-b674387085d8", + "_begin_on": "2025-11-04T06:48:22.119Z", + "_class": [ + "Alert" + ], + "_created_on": "2025-11-03T10:55:37.188Z", + "_deleted": false, + "_end_on": "2025-11-06T06:48:22.119Z", + "_id": "2afb2aaf-f3c5-51ad-8012-c74e107e9102", + "_integration_class": [ + "Device Management", + "Endpoint Security", + "IT Service Management" + ], + "_integration_definition_id": "fc64977a-3fcb-4b72-99ad-9290c43a1021", + "_integration_instance_id": "9bf230c5-eff4-42f6-9a7d-d6542497c8ed", + "_integration_name": "J1J1", + "_integration_type": "jupiterone", + "_key": "alert:ruleAlert:c9700500-8af3-4bd8-bbef-6721d3538582", + "_scope": "jupiterone", + "_source": "system-internal", + "_type": "jupiterone_rule_alert", + "_version": "1", + "display_name": "Jira Alerts" + }, + "id": "2afb2aaf-f3c5-51ad-8012-c74e107e9102", + "properties": { + "active": true, + "category": "alert", + "created_on": "2025-11-03T10:54:49.341Z", + "description": "Jira Alerts", + "id": "ruleAlert:c9700500-8af3-4bd8-bbef-6721d3538582", + "level": "INFO", + "name": "Jira Alerts", + "numeric_severity": 0, + "open": true, + "severity": "INFO", + "status": "ACTIVE", + "tag": { + "account_name": [ + "test", + "Falcon_Ingestlogs", + "J1J1", + "JupiterOne" + ] + }, + "total_number_of_affected_entities": 11131, + "updated_on": "2025-11-03T10:55:21.737Z", + "web_link": "https://apps.us.jupiterone.io/alerts?alertId=ruleAlert:c9700500-8af3-4bd8-bbef-6721d3538582" + } + } + }, + "log": { + "level": "info" + }, + "message": "Jira Alerts", + "tags": [ + "preserve_duplicate_custom_fields" + ], + "url": { + "domain": "apps.us.jupiterone.io", + "original": "https://apps.us.jupiterone.io/alerts?alertId=ruleAlert:c9700500-8af3-4bd8-bbef-6721d3538582", + "path": "/alerts", + "query": "alertId=ruleAlert:c9700500-8af3-4bd8-bbef-6721d3538582", + "scheme": "https" + } + }, + { + "data_stream": { + "dataset": "jupiter_one.risks_and_alerts", + "namespace": "default", + "type": "logs" + }, + "ecs": { + "version": "9.2.0" + }, + "event": { + "category": [ + "vulnerability" + ], + "created": "2025-11-03T10:43:45.691Z", + "id": "b04ecca8-0b6e-5cfd-b1f5-df9b780da074", + "kind": "alert", + "original": "{\"id\": \"b04ecca8-0b6e-5cfd-b1f5-df9b780da074\", \"entity\": {\"_createdOn\": \"2025-11-03T10:43:45.691Z\", \"_key\": \"29cbd8a5953943228e7cba331554f1d7_09502aabde923b2cbff94c77dfa49881\", \"_version\": 1, \"_deleted\": false, \"_integrationClass\": [\"EPP\", \"EDR\", \"EndpointSecurity\"], \"_source\": \"integration-managed\", \"_id\": \"b04ecca8-0b6e-5cfd-b1f5-df9b780da074\", \"_class\": [\"Finding\", \"Vulnerability\"], \"_integrationInstanceId\": \"89d2c2ca-2162-4858-bdc8-89d5d72ed9e5\", \"_beginOn\": \"2025-11-03T10:43:45.691Z\", \"displayName\": \"CVE-2025-49693\", \"_scope\": \"89d2c2ca-2162-4858-bdc8-89d5d72ed9e5\", \"_integrationDefinitionId\": \"5e650485-6df0-419d-a5c5-f76e564519d6\", \"_integrationName\": \"test\", \"_type\": \"crowdstrike_vulnerability\", \"_integrationType\": \"crowdstrike\", \"_accountId\": \"fd932a04-5401-49ce-9f4b-b674387085d8\"}, \"properties\": {\"publishedOn\": \"2025-07-08T07:00:00.000Z\", \"score\": 7.8, \"tag.Jira\": \"IS60896\", \"id\": \"29cbd8a5953943228e7cba331554f1d7_09502aabde923b2cbff94c77dfa49881\", \"cveId\": \"CVE-2025-49693\", \"impact\": 5.9, \"tag.Production\": true, \"updatedOn\": \"2025-11-03T01:35:08.000Z\", \"exprtRating\": \"MEDIUM\", \"name\": \"CVE-2025-49693\", \"aid\": \"29cbd8a5953943228e7cba331554f1d7\", \"exploitability\": 1.8, \"status\": \"reopen\", \"cid\": \"2cc98db1a47b4c98b913c94d43bfab70\", \"numericSeverity\": 7, \"productNameVersion\": \"Windows 11 23h2\", \"tag.AccountName\": \"test\", \"description\": \"Summary\\n\\n\\n\\nCVE-2025-49693 is a Double Free vulnerability affecting Microsoft Brokering File System.\", \"createdOn\": \"2025-09-12T05:06:36.000Z\", \"exploitStatus\": 0, \"public\": true, \"vector\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\", \"raw_severity\": \"High\", \"severity\": \"high\", \"category\": \"Host\", \"vendorAdvisory\": [\"https://msrc.microsoft.com/update-guide/en-us/vulnerability/CVE-2025-49693\", \"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49693\"], \"open\": true}}", + "start": "2025-11-03T10:43:45.691Z", + "type": [ + "info" + ] + }, + "jupiter_one": { + "asset": { + "entity": { + "_account_id": "fd932a04-5401-49ce-9f4b-b674387085d8", + "_begin_on": "2025-11-03T10:43:45.691Z", + "_class": [ + "Finding", + "Vulnerability" + ], + "_created_on": "2025-11-03T10:43:45.691Z", + "_deleted": false, + "_id": "b04ecca8-0b6e-5cfd-b1f5-df9b780da074", + "_integration_class": [ + "EPP", + "EDR", + "EndpointSecurity" + ], + "_integration_definition_id": "5e650485-6df0-419d-a5c5-f76e564519d6", + "_integration_instance_id": "89d2c2ca-2162-4858-bdc8-89d5d72ed9e5", + "_integration_name": "test", + "_integration_type": "crowdstrike", + "_key": "29cbd8a5953943228e7cba331554f1d7_09502aabde923b2cbff94c77dfa49881", + "_scope": "89d2c2ca-2162-4858-bdc8-89d5d72ed9e5", + "_source": "integration-managed", + "_type": "crowdstrike_vulnerability", + "_version": "1", + "display_name": "CVE-2025-49693" + }, + "id": "b04ecca8-0b6e-5cfd-b1f5-df9b780da074", + "properties": { + "aid": "29cbd8a5953943228e7cba331554f1d7", + "category": "Host", + "cid": "2cc98db1a47b4c98b913c94d43bfab70", + "created_on": "2025-09-12T05:06:36.000Z", + "cve_id": "CVE-2025-49693", + "description": "Summary\n\n\n\nCVE-2025-49693 is a Double Free vulnerability affecting Microsoft Brokering File System.", + "exploit_status": 0, + "exploitability": 1.8, + "exprt_rating": "MEDIUM", + "id": "29cbd8a5953943228e7cba331554f1d7_09502aabde923b2cbff94c77dfa49881", + "impact": 5.9, + "name": "CVE-2025-49693", + "numeric_severity": 7, + "open": true, + "product_name_version": "Windows 11 23h2", + "public": true, + "published_on": "2025-07-08T07:00:00.000Z", + "raw_severity": "High", + "score": 7.8, + "severity": "high", + "status": "reopen", + "tag": { + "account_name": "test", + "jira": "IS60896", + "production": true + }, + "updated_on": "2025-11-03T01:35:08.000Z", + "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "vendor_advisory": [ + "https://msrc.microsoft.com/update-guide/en-us/vulnerability/CVE-2025-49693", + "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49693" + ] + } + } + }, + "message": "Summary\n\n\n\nCVE-2025-49693 is a Double Free vulnerability affecting Microsoft Brokering File System.", + "tags": [ + "preserve_duplicate_custom_fields" + ], + "vulnerability": { + "category": [ + "Host" + ], + "description": "Summary\n\n\n\nCVE-2025-49693 is a Double Free vulnerability affecting Microsoft Brokering File System.", + "enumeration": "CVE", + "id": "CVE-2025-49693", + "score": { + "base": 7.8 + }, + "severity": "high" + } + }, + { + "data_stream": { + "dataset": "jupiter_one.risks_and_alerts", + "namespace": "default", + "type": "logs" + }, + "ecs": { + "version": "9.2.0" + }, + "event": { + "created": "2025-11-03T09:42:05.322Z", + "id": "ab576c5e-505e-5405-a6b1-4fa1f7bceab7", + "kind": "alert", + "original": "{\"id\":\"ab576c5e-505e-5405-a6b1-4fa1f7bceab7\",\"entity\":{\"_version\":1,\"_deleted\":false,\"_integrationClass\":[\"EPP\",\"EDR\",\"EndpointSecurity\"],\"_source\":\"integration-managed\",\"displayName\":\"ProcRansomware\",\"_integrationDefinitionId\":\"5e650485-6df0-419d-a5c5-f76e564519d6\",\"_type\":\"crowdstrike_alert\",\"_integrationType\":\"crowdstrike\",\"_createdOn\":\"2025-11-03T09:42:05.322Z\",\"_key\":\"ind:baaeadf647d24b9e83c51ccf2f73b2a8:485359820702-10251-202153488\",\"_id\":\"ab576c5e-505e-5405-a6b1-4fa1f7bceab7\",\"_class\":[\"Finding\"],\"_integrationInstanceId\":\"c4d8b528-b3b8-4f09-9c20-320684dcb13e\",\"_beginOn\":\"2025-11-03T09:42:05.322Z\",\"_scope\":\"c4d8b528-b3b8-4f09-9c20-320684dcb13e\",\"_integrationName\":\"test\",\"_accountId\":\"fd932a04-5401-49ce-9f4b-b674387085d8\"},\"properties\":{\"deviceId\":\"baaeadf647d24b9e83c51ccf2f73b2a8\",\"detectedOn\":\"2025-11-03T07:00:56.621Z\",\"objective\":\"Follow Through\",\"tag.Jira\":\"IS60896\",\"aggregateId\":\"ac39abcd0f5b59cfcd16d19511cbed1cabb835ae451ca67899cbb527c5c8e48a\",\"dataDomains\":\"Endpoint\",\"id\":\"ind:baaeadf647d24b9e83c51ccf2f73b2a8:485359820702-10251-202153488\",\"falconHostLink\":\"https://falcon.us-2.crowdstrike.com/automated-leads/2cc98db1a47b4c98b913c94d43bfab70:ind:baaeadf647d24b9e83c51ccf2f73b2a8:485359820702-10251-202153488?_cid=g04000alcejocicbgp7infyokz7bajkq\",\"updatedOn\":\"2025-11-03T08:01:00.649Z\",\"filename\":\"python.exe\",\"deviceLocalIp\":\"198.51.100.1\",\"status\":\"new\",\"createdOn\":\"2025-11-03T07:02:00.991Z\",\"tactic\":\"Impact\",\"deviceStatus\":\"normal\",\"scenario\":\"ransomware\",\"product\":\"automated-lead-context\",\"userId\":\"S-1-5-18\",\"parentFilename\":\"rundll32.exe\",\"sourceProducts\":\"Automated Leads\",\"severityName\":\"High\",\"open\":true,\"mitreAttack\":\"Impact (TA0040) - Data Encrypted for Impact (T1486)\",\"cmdline\":\"\\\"C:\\\\Program Files\\\\MySQL\\\\MySQL Workbench 8.0 CE\\\\python.exe\\\" -mcompileall ..\",\"filepath\":\"\\\\Device\\\\HarddiskVolume3\\\\Program Files\\\\MySQL\\\\MySQL Workbench 8.0 CE\\\\python.exe\",\"techniqueId\":\"T1486\",\"name\":\"ProcRansomware\",\"tacticId\":\"TA0040\",\"deviceExternalIp\":\"81.2.69.192\",\"cid\":\"2cc98db1a47b4c98b913c94d43bfab70\",\"deviceMacAddress\":\"42-53-45-41-56-43\",\"numericSeverity\":70,\"tag.AccountName\":\"test\",\"sourceVendors\":\"CrowdStrike\",\"description\":\"A process associated with a known ransomware campaign launched. Investigate the host for signs of a ransomware attack.\",\"technique\":\"Data Encrypted for Impact\",\"deviceOsVersion\":\"Windows Server 2022\",\"deviceHostname\":\"WIN-9L94MPLCTI5\",\"devicePlatformName\":\"Windows\",\"severity\":\"High\",\"userName\":\"WIN-9L94MPLCTI5$\",\"childProcessIds\":\"pid:baaeadf647d24b9e83c51ccf2f73b2a8:485362198808\",\"category\":\"Endpoint\",\"compositeId\":\"2cc98db1a47b4c98b913c94d43bfab70:ind:baaeadf647d24b9e83c51ccf2f73b2a8:485359820702-10251-202153488\",\"parentCmdline\":\"rundll32.exe \\\"C:\\\\Windows\\\\Installer\\\\MSI9B63.tmp\\\",zzzzInvokeManagedCustomActionOutOfProc SfxCA_937663500 15 MySQLCA!MySQLCA.CustomActions.PrecompilePythonFiles\"}}", + "start": "2025-11-03T09:42:05.322Z" + }, + "host": { + "hostname": "WIN-9L94MPLCTI5", + "id": "baaeadf647d24b9e83c51ccf2f73b2a8", + "mac": [ + "42-53-45-41-56-43" + ], + "os": { + "platform": "Windows", + "version": "Windows Server 2022" + } + }, + "jupiter_one": { + "asset": { + "entity": { + "_account_id": "fd932a04-5401-49ce-9f4b-b674387085d8", + "_begin_on": "2025-11-03T09:42:05.322Z", + "_class": [ + "Finding" + ], + "_created_on": "2025-11-03T09:42:05.322Z", + "_deleted": false, + "_id": "ab576c5e-505e-5405-a6b1-4fa1f7bceab7", + "_integration_class": [ + "EPP", + "EDR", + "EndpointSecurity" + ], + "_integration_definition_id": "5e650485-6df0-419d-a5c5-f76e564519d6", + "_integration_instance_id": "c4d8b528-b3b8-4f09-9c20-320684dcb13e", + "_integration_name": "test", + "_integration_type": "crowdstrike", + "_key": "ind:baaeadf647d24b9e83c51ccf2f73b2a8:485359820702-10251-202153488", + "_scope": "c4d8b528-b3b8-4f09-9c20-320684dcb13e", + "_source": "integration-managed", + "_type": "crowdstrike_alert", + "_version": "1", + "display_name": "ProcRansomware" + }, + "id": "ab576c5e-505e-5405-a6b1-4fa1f7bceab7", + "properties": { + "aggregate_id": "ac39abcd0f5b59cfcd16d19511cbed1cabb835ae451ca67899cbb527c5c8e48a", + "category": "Endpoint", + "child_process_ids": "pid:baaeadf647d24b9e83c51ccf2f73b2a8:485362198808", + "cid": "2cc98db1a47b4c98b913c94d43bfab70", + "cmdline": "\"C:\\Program Files\\MySQL\\MySQL Workbench 8.0 CE\\python.exe\" -mcompileall ..", + "composite_id": "2cc98db1a47b4c98b913c94d43bfab70:ind:baaeadf647d24b9e83c51ccf2f73b2a8:485359820702-10251-202153488", + "created_on": "2025-11-03T07:02:00.991Z", + "data_domains": "Endpoint", + "description": "A process associated with a known ransomware campaign launched. Investigate the host for signs of a ransomware attack.", + "detected_on": "2025-11-03T07:00:56.621Z", + "device_external_ip": "81.2.69.192", + "device_hostname": "WIN-9L94MPLCTI5", + "device_id": "baaeadf647d24b9e83c51ccf2f73b2a8", + "device_local_ip": "198.51.100.1", + "device_mac_address": "42-53-45-41-56-43", + "device_os_version": "Windows Server 2022", + "device_platform_name": "Windows", + "device_status": "normal", + "falcon_host_link": "https://falcon.us-2.crowdstrike.com/automated-leads/2cc98db1a47b4c98b913c94d43bfab70:ind:baaeadf647d24b9e83c51ccf2f73b2a8:485359820702-10251-202153488?_cid=g04000alcejocicbgp7infyokz7bajkq", + "filename": "python.exe", + "filepath": "\\Device\\HarddiskVolume3\\Program Files\\MySQL\\MySQL Workbench 8.0 CE\\python.exe", + "id": "ind:baaeadf647d24b9e83c51ccf2f73b2a8:485359820702-10251-202153488", + "mitre_attack": "Impact (TA0040) - Data Encrypted for Impact (T1486)", + "name": "ProcRansomware", + "numeric_severity": 70, + "objective": "Follow Through", + "open": true, + "parent_cmdline": "rundll32.exe \"C:\\Windows\\Installer\\MSI9B63.tmp\",zzzzInvokeManagedCustomActionOutOfProc SfxCA_937663500 15 MySQLCA!MySQLCA.CustomActions.PrecompilePythonFiles", + "parent_filename": "rundll32.exe", + "product": "automated-lead-context", + "scenario": "ransomware", + "severity": "High", + "severity_name": "High", + "source_products": "Automated Leads", + "source_vendors": "CrowdStrike", + "status": "new", + "tactic": "Impact", + "tactic_id": "TA0040", + "tag": { + "account_name": "test", + "jira": "IS60896" + }, + "technique": "Data Encrypted for Impact", + "technique_id": "T1486", + "updated_on": "2025-11-03T08:01:00.649Z", + "user_id": "S-1-5-18", + "user_name": "WIN-9L94MPLCTI5$" + } + } + }, + "message": "A process associated with a known ransomware campaign launched. Investigate the host for signs of a ransomware attack.", + "related": { + "hosts": [ + "WIN-9L94MPLCTI5" + ], + "ip": [ + "198.51.100.1", + "81.2.69.192" + ], + "user": [ + "S-1-5-18", + "WIN-9L94MPLCTI5$" + ] + }, + "tags": [ + "preserve_duplicate_custom_fields" + ], + "threat": { + "indicator": { + "file": { + "name": "python.exe", + "path": "\\Device\\HarddiskVolume3\\Program Files\\MySQL\\MySQL Workbench 8.0 CE\\python.exe" + }, + "ip": "81.2.69.192" + }, + "tactic": { + "id": [ + "TA0040" + ], + "name": [ + "Impact" + ] + }, + "technique": { + "id": [ + "T1486" + ], + "name": [ + "Data Encrypted for Impact" + ] + } + }, + "user": { + "id": "S-1-5-18", + "name": "WIN-9L94MPLCTI5$" + } + } + ] +} diff --git a/packages/jupiter_one/data_stream/asset/_dev/test/pipeline/test-common-config.yml b/packages/jupiter_one/data_stream/asset/_dev/test/pipeline/test-common-config.yml new file mode 100644 index 00000000000..37e8fa225fd --- /dev/null +++ b/packages/jupiter_one/data_stream/asset/_dev/test/pipeline/test-common-config.yml @@ -0,0 +1,3 @@ +fields: + tags: + - preserve_duplicate_custom_fields diff --git a/packages/jupiter_one/data_stream/asset/agent/stream/cel.yml.hbs b/packages/jupiter_one/data_stream/asset/agent/stream/cel.yml.hbs new file mode 100644 index 00000000000..2772de0a7db --- /dev/null +++ b/packages/jupiter_one/data_stream/asset/agent/stream/cel.yml.hbs @@ -0,0 +1,120 @@ +config_version: 2 +interval: {{interval}} +resource.tracer: + enabled: {{enable_request_tracer}} + filename: "../../logs/cel/http-request-trace-*.ndjson" + maxbackups: 5 +{{#if proxy_url}} +resource.proxy_url: {{proxy_url}} +{{/if}} +{{#if ssl}} +resource.ssl: {{ssl}} +{{/if}} +{{#if http_client_timeout}} +resource.timeout: {{http_client_timeout}} +{{/if}} +{{#if resource_rate_limit_limit}} +resource.rate_limit.limit: {{resource_rate_limit_limit}} +{{/if}} +{{#if resource_rate_limit_burst}} +resource.rate_limit.burst: {{resource_rate_limit_burst}} +{{/if}} +{{#if max_executions}} +max_executions: {{max_executions}} +{{/if}} +resource.url: {{url}} +state: + api_token: {{api_token}} + account_id: {{account_id}} + query: >- + query J1QL( + $query: String! + $variables: JSON + $cursor: String + ) { + queryV1( + query: $query + variables: $variables + cursor: $cursor + ) { + data + cursor + } + } +redact: + fields: + - api_token +program: | + state.url.trim_right("/").as(base_url, state.with( + post_request( + base_url, + "application/json", + { + "query": state.query, + "variables": { + "query": "FIND (Finding | Alert | Vulnerability)", + ?"cursor": state.?next.page + } + }.encode_json() + ).with( + { + "Header": { + "Authorization": ["Bearer " + state.api_token], + "Content-Type": ["application/json"], + "Jupiterone-Account": [state.account_id], + }, + } + ).do_request().as(resp, resp.StatusCode == 200 ? + resp.Body.decode_json().as(body, body.?data.queryV1.data.orValue(null) != null ? + { + "events": body.data.queryV1.data.map(e, { + "message": e.encode_json(), + }), + "want_more": has(body.data.queryV1.cursor) && body.data.queryV1.cursor != null, + "next":{ + ?"page": body.?data.queryV1.cursor, + } + } + : + { + "events": [], + "want_more": false, + "next": {}, + } + ) + : + { + "events": { + "error": { + "code": string(resp.StatusCode), + "id": string(resp.Status), + "message": "POST assets: " + ( + size(resp.Body) != 0 ? + string(resp.Body) + : + string(resp.Status) + ' (' + string(resp.StatusCode) + ')' + ), + }, + }, + "want_more": false, + "next": {}, + } + ) + )) +tags: +{{#if preserve_original_event}} + - preserve_original_event +{{/if}} +{{#if preserve_duplicate_custom_fields}} + - preserve_duplicate_custom_fields +{{/if}} +{{#each tags as |tag|}} + - {{tag}} +{{/each}} +{{#contains "forwarded" tags}} +publisher_pipeline.disable_host: true +{{/contains}} +{{#if processors}} +processors: +{{processors}} +{{/if}} diff --git a/packages/jupiter_one/data_stream/asset/elasticsearch/ingest_pipeline/default.yml b/packages/jupiter_one/data_stream/asset/elasticsearch/ingest_pipeline/default.yml new file mode 100644 index 00000000000..c2511c8ea88 --- /dev/null +++ b/packages/jupiter_one/data_stream/asset/elasticsearch/ingest_pipeline/default.yml @@ -0,0 +1,377 @@ +--- +description: Pipeline for processing assets. +processors: + - set: + tag: set_ecs_version + field: ecs.version + value: 9.2.0 + - terminate: + description: error message set and no data to process. + tag: terminate_data_collection_error + if: ctx.error?.message != null && ctx.message == null && ctx.event?.original == null + + # remove agentless metadata + - remove: + description: Removes the fields added by Agentless as metadata, as they can collide with ECS fields. + tag: remove_agentless_tags + if: ctx.organization instanceof String && ctx.division instanceof String && ctx.team instanceof String + field: + - organization + - division + - team + ignore_missing: true + + # parse the event JSON + - rename: + description: Renames the original `message` field to `event.original` to store a copy of the original message. The `event.original` field is not touched if the document already has one; it may happen when Logstash sends the document. + tag: rename_message_to_event_original + if: ctx.event?.original == null + field: message + target_field: event.original + ignore_missing: true + - remove: + description: The `message` field is no longer required if the document has an `event.original` field. + tag: remove_message + if: ctx.event?.original != null + field: message + ignore_missing: true + - json: + tag: json_event_original_into_json + field: event.original + target_field: json + + # rename to snake case + - script: + description: Convert camelCase to snake_case. + tag: script_convert_camelcase_to_snake_case + lang: painless + source: |- + // Helper function to convert camelCase to snake_case + String camelToSnake(String str) { + def result = ""; + for (int i = 0; i < str.length(); i++) { + char c = str.charAt(i); + if (Character.isUpperCase(c)) { + if (i > 0 && Character.isLowerCase(str.charAt(i - 1))) { + result += "_"; + } + result += Character.toLowerCase(c); + } else { + result += c; + } + } + return result; + } + // Recursive function to handle nested fields + def convertToSnakeCase(def obj) { + if (obj instanceof Map) { + // Convert each key in the map + def newObj = [:]; + for (entry in obj.entrySet()) { + String newKey = camelToSnake(entry.getKey()); + newObj[newKey] = convertToSnakeCase(entry.getValue()); + } + return newObj; + } else if (obj instanceof List) { + // If it's a list, process each item recursively + def newList = []; + for (item in obj) { + newList.add(convertToSnakeCase(item)); + } + return newList; + } else { + return obj; + } + } + // Apply the conversion + ctx.jupiter_one = ctx.jupiter_one ?: [:]; + if (ctx.json != null) { + ctx.jupiter_one.asset = convertToSnakeCase(ctx.json); + } + // Remove json field + ctx.remove('json'); + + # Date processors + - date: + tag: date_jupiter_one_asset_entity__created_on_into_jupiter_one_asset_entity__created_on + if: ctx.jupiter_one?.asset?.entity?._created_on != null && ctx.jupiter_one.asset.entity._created_on != '' + field: jupiter_one.asset.entity._created_on + target_field: jupiter_one.asset.entity._created_on + formats: + - ISO8601 + on_failure: + - remove: + tag: remove_01 + field: + - jupiter_one.asset.entity._created_on + - append: + tag: append_error_message_01 + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - date: + tag: date_jupiter_one_asset_entity__end_on_into_jupiter_one_asset_entity__end_on + if: ctx.jupiter_one?.asset?.entity?._end_on != null && ctx.jupiter_one.asset.entity._end_on != '' + field: jupiter_one.asset.entity._end_on + target_field: jupiter_one.asset.entity._end_on + formats: + - ISO8601 + on_failure: + - remove: + tag: remove_02 + field: + - jupiter_one.asset.entity._end_on + - append: + tag: append_error_message_02 + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - date: + tag: date_jupiter_one_asset_entity__begin_on_into_jupiter_one_asset_entity__begin_on + if: ctx.jupiter_one?.asset?.entity?._begin_on != null && ctx.jupiter_one.asset.entity._begin_on != '' + field: jupiter_one.asset.entity._begin_on + target_field: jupiter_one.asset.entity._begin_on + formats: + - ISO8601 + on_failure: + - remove: + tag: remove_03 + field: + - jupiter_one.asset.entity._begin_on + - append: + tag: append_error_message_03 + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - date: + tag: date_jupiter_one_asset_properties_created_on_into_jupiter_one_asset_properties_created_on + if: ctx.jupiter_one?.asset?.properties?.created_on != null && ctx.jupiter_one.asset.properties.created_on != '' + field: jupiter_one.asset.properties.created_on + target_field: jupiter_one.asset.properties.created_on + formats: + - ISO8601 + on_failure: + - remove: + tag: remove_04 + field: + - jupiter_one.asset.properties.created_on + - append: + tag: append_error_message_04 + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - date: + tag: date_jupiter_one_asset_properties_updated_on_into_jupiter_one_asset_properties_updated_on + if: ctx.jupiter_one?.asset?.properties?.updated_on != null && ctx.jupiter_one.asset.properties.updated_on != '' + field: jupiter_one.asset.properties.updated_on + target_field: jupiter_one.asset.properties.updated_on + formats: + - ISO8601 + on_failure: + - remove: + tag: remove_05 + field: + - jupiter_one.asset.properties.updated_on + - append: + tag: append_error_message_05 + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + + # Convert to Boolean Processors + - convert: + tag: convert_jupiter_one_asset_entity__deleted_to_boolean + field: jupiter_one.asset.entity._deleted + type: boolean + ignore_missing: true + on_failure: + - remove: + tag: remove_06 + field: + - jupiter_one.asset.entity._deleted + - append: + tag: append_error_message_06 + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - convert: + tag: convert_jupiter_one_asset_properties_active_to_boolean + field: jupiter_one.asset.properties.active + type: boolean + ignore_missing: true + on_failure: + - remove: + tag: remove_07 + field: + - jupiter_one.asset.properties.active + - append: + tag: append_error_message_07 + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - convert: + tag: convert_jupiter_one_asset_properties_public_to_boolean + field: jupiter_one.asset.properties.public + type: boolean + ignore_missing: true + on_failure: + - remove: + tag: remove_08 + field: + - jupiter_one.asset.properties.public + - append: + tag: append_error_message_08 + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - convert: + tag: convert_jupiter_one_asset_properties_validated_to_boolean + field: jupiter_one.asset.properties.validated + type: boolean + ignore_missing: true + on_failure: + - remove: + tag: remove_09 + field: + - jupiter_one.asset.properties.validated + - append: + tag: append_error_message_09 + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + + # Convert to String Processors + - convert: + tag: convert_jupiter_one_asset_entity__version_to_string + field: jupiter_one.asset.entity._version + type: string + ignore_missing: true + + # Map custom fields to corresponding ECS and related fields. + - set: + tag: set_event_id + field: event.id + copy_from: jupiter_one.asset.id + ignore_empty_value: true + - set: + tag: set_event_created + field: event.created + copy_from: jupiter_one.asset.entity._created_on + ignore_empty_value: true + - set: + tag: set_event_end + field: event.end + copy_from: jupiter_one.asset.entity._end_on + ignore_empty_value: true + - set: + tag: set_event_start + field: event.start + copy_from: jupiter_one.asset.entity._begin_on + ignore_empty_value: true + - set: + tag: set_message + field: message + copy_from: jupiter_one.asset.properties.description + ignore_empty_value: true + - set: + tag: set_url_original + field: url.original + copy_from: jupiter_one.asset.properties.web_link + ignore_empty_value: true + - set: + tag: set_vulnerability_description + if: ctx.jupiter_one?.asset?.entity?._class?.contains('Vulnerability') == true + field: vulnerability.description + copy_from: jupiter_one.asset.properties.description + ignore_empty_value: true + - script: + description: Calculate event.duration. + tag: script_to_calculate_event_duration + if: ctx.event?.start != null && ctx.event.end != null + lang: painless + source: |- + Instant eventstart = ZonedDateTime.parse(ctx.event?.start).toInstant(); + Instant eventend = ZonedDateTime.parse(ctx.event?.end).toInstant(); + ctx.event['duration'] = ChronoUnit.NANOS.between(eventstart, eventend); + - uri_parts: + tag: uri_parts_url_original + field: url.original + ignore_missing: true + on_failure: + - remove: + tag: remove_10 + field: + - url.original + - append: + tag: append_error_message_10 + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - pipeline: + tag: pipeline_pipeline_risks_and_alerts + if: ctx.jupiter_one.asset.entity._class.contains('Vulnerability') || ctx.jupiter_one.asset.entity._class.contains('Alert') || ctx.jupiter_one.asset.entity._class.contains('Finding') + name: '{{ IngestPipeline "pipeline_risks_and_alerts" }}' + ignore_missing_pipeline: true + + # Remove Duplicate Custom Field if preserve_duplicate_custom_fields are not enabled + - remove: + tag: remove_custom_duplicate_fields + if: ctx.tags == null || !ctx.tags.contains('preserve_duplicate_custom_fields') + field: + - jupiter_one.asset.id + - jupiter_one.asset.entity._created_on + - jupiter_one.asset.entity._end_on + - jupiter_one.asset.entity._begin_on + - jupiter_one.asset.properties.web_link + - jupiter_one.asset.properties.level + - jupiter_one.asset.properties.device_id + - jupiter_one.asset.properties.user_id + - jupiter_one.asset.properties.device_mac_address + - jupiter_one.asset.properties.device_os_version + - jupiter_one.asset.properties.device_hostname + - jupiter_one.asset.properties.device_platform_name + - jupiter_one.asset.properties.user_name + ignore_missing: true + + # Cleanup + - script: + description: This script processor iterates over the whole document to remove fields with null values. + tag: script_to_drop_null_values + lang: painless + source: |- + void handleMap(Map map) { + map.values().removeIf(v -> { + if (v instanceof Map) { + handleMap(v); + } else if (v instanceof List) { + handleList(v); + } + return v == null || v == '' || (v instanceof Map && v.size() == 0) || (v instanceof List && v.size() == 0) + }); + } + void handleList(List list) { + list.removeIf(v -> { + if (v instanceof Map) { + handleMap(v); + } else if (v instanceof List) { + handleList(v); + } + return v == null || v == '' || (v instanceof Map && v.size() == 0) || (v instanceof List && v.size() == 0) + }); + } + handleMap(ctx); + - set: + tag: set_event_kind_1 + if: ctx.error?.message != null + field: event.kind + value: pipeline_error + - append: + tag: append_tags_1 + if: ctx.error?.message != null + field: tags + value: preserve_original_event + allow_duplicates: false +on_failure: + - append: + tag: append_error_message_11 + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - set: + tag: set_event_kind_2 + field: event.kind + value: pipeline_error + - append: + tag: append_tags_2 + field: tags + value: preserve_original_event + allow_duplicates: false diff --git a/packages/jupiter_one/data_stream/asset/elasticsearch/ingest_pipeline/pipeline_risks_and_alerts.yml b/packages/jupiter_one/data_stream/asset/elasticsearch/ingest_pipeline/pipeline_risks_and_alerts.yml new file mode 100644 index 00000000000..8618bc4252c --- /dev/null +++ b/packages/jupiter_one/data_stream/asset/elasticsearch/ingest_pipeline/pipeline_risks_and_alerts.yml @@ -0,0 +1,502 @@ +--- +description: Pipeline for processing risks and alerts type. +processors: + + # Set event.* fields. + - set: + tag: set_event_kind_1 + field: event.kind + value: alert + - append: + tag: append_event_category + if: ctx.jupiter_one.asset.entity._class.contains('Vulnerability') + field: event.category + value: vulnerability + - append: + tag: append_event_type + if: ctx.jupiter_one.asset.entity._class.contains('Vulnerability') + field: event.type + value: info + # Dot expander + - dot_expander: + tag: dot_expander_from_* + field: '*' + path: jupiter_one.asset.properties + # Date processors + - date: + tag: date_jupiter_one_asset_properties_approved_on_into_jupiter_one_asset_properties_approved_on + if: ctx.jupiter_one?.asset?.properties?.approved_on != null && ctx.jupiter_one.asset.properties.approved_on != '' + field: jupiter_one.asset.properties.approved_on + target_field: jupiter_one.asset.properties.approved_on + formats: + - ISO8601 + on_failure: + - remove: + tag: remove_01 + field: + - jupiter_one.asset.properties.approved_on + - append: + tag: append_error_message_01 + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - date: + tag: date_jupiter_one_asset_properties_reported_on_into_jupiter_one_asset_properties_reported_on + if: ctx.jupiter_one?.asset?.properties?.reported_on != null && ctx.jupiter_one.asset.properties.reported_on != '' + field: jupiter_one.asset.properties.reported_on + target_field: jupiter_one.asset.properties.reported_on + formats: + - ISO8601 + on_failure: + - remove: + tag: remove_02 + field: + - jupiter_one.asset.properties.reported_on + - append: + tag: append_error_message_02 + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - date: + tag: date_jupiter_one_asset_properties_detected_on_into_jupiter_one_asset_properties_detected_on + if: ctx.jupiter_one?.asset?.properties?.detected_on != null && ctx.jupiter_one.asset.properties.detected_on != '' + field: jupiter_one.asset.properties.detected_on + target_field: jupiter_one.asset.properties.detected_on + formats: + - ISO8601 + on_failure: + - remove: + tag: remove_03 + field: + - jupiter_one.asset.properties.detected_on + - append: + tag: append_error_message_03 + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - date: + tag: date_jupiter_one_asset_properties_published_on_into_jupiter_one_asset_properties_published_on + if: ctx.jupiter_one?.asset?.properties?.published_on != null && ctx.jupiter_one.asset.properties.published_on != '' + field: jupiter_one.asset.properties.published_on + target_field: jupiter_one.asset.properties.published_on + formats: + - ISO8601 + on_failure: + - remove: + tag: remove_04 + field: + - jupiter_one.asset.properties.published_on + - append: + tag: append_error_message_04 + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + + # Convert to Long Processors + - convert: + tag: convert_jupiter_one_asset_properties_total_number_of_affected_entities_to_long + field: jupiter_one.asset.properties.total_number_of_affected_entities + type: long + ignore_missing: true + on_failure: + - remove: + tag: remove_05 + field: + - jupiter_one.asset.properties.total_number_of_affected_entities + - append: + tag: append_error_message_05 + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - convert: + tag: convert_jupiter_one_asset_properties_numeric_severity_to_long + field: jupiter_one.asset.properties.numeric_severity + type: long + ignore_missing: true + on_failure: + - remove: + tag: remove_06 + field: + - jupiter_one.asset.properties.numeric_severity + - append: + tag: append_error_message_06 + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - convert: + tag: convert_jupiter_one_asset_properties_remediation_sla_to_long + field: jupiter_one.asset.properties.remediation_sla + type: long + ignore_missing: true + on_failure: + - remove: + tag: remove_07 + field: + - jupiter_one.asset.properties.remediation_sla + - append: + tag: append_error_message_07 + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - convert: + tag: convert_jupiter_one_asset_properties_exploit_status_to_long + field: jupiter_one.asset.properties.exploit_status + type: long + ignore_missing: true + on_failure: + - remove: + tag: remove_08 + field: + - jupiter_one.asset.properties.exploit_status + - append: + tag: append_error_message_08 + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + + # Convert to Double Processors + - convert: + tag: convert_jupiter_one_asset_properties_exploitability_to_double + field: jupiter_one.asset.properties.exploitability + type: double + ignore_missing: true + on_failure: + - remove: + tag: remove_09 + field: + - jupiter_one.asset.properties.exploitability + - append: + tag: append_error_message_09 + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - convert: + tag: convert_jupiter_one_asset_properties_impact_to_double + field: jupiter_one.asset.properties.impact + type: double + ignore_missing: true + on_failure: + - remove: + tag: remove_10 + field: + - jupiter_one.asset.properties.impact + - append: + tag: append_error_message_10 + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - convert: + tag: convert_jupiter_one_asset_properties_score_to_double + field: jupiter_one.asset.properties.score + type: double + ignore_missing: true + on_failure: + - remove: + tag: remove_11 + field: + - jupiter_one.asset.properties.score + - append: + tag: append_error_message_11 + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + + # Convert to Boolean Processors + - convert: + tag: convert_jupiter_one_asset_properties_open_to_boolean + field: jupiter_one.asset.properties.open + type: boolean + ignore_missing: true + on_failure: + - remove: + tag: remove_12 + field: + - jupiter_one.asset.properties.open + - append: + tag: append_error_message_12 + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - convert: + tag: convert_jupiter_one_asset_properties_approved_to_boolean + field: jupiter_one.asset.properties.approved + type: boolean + ignore_missing: true + on_failure: + - remove: + tag: remove_13 + field: + - jupiter_one.asset.properties.approved + - append: + tag: append_error_message_13 + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - convert: + tag: convert_jupiter_one_asset_properties_exception_to_boolean + field: jupiter_one.asset.properties.exception + type: boolean + ignore_missing: true + on_failure: + - remove: + tag: remove_14 + field: + - jupiter_one.asset.properties.exception + - append: + tag: append_error_message_14 + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - convert: + tag: convert_jupiter_one_asset_properties_production_to_boolean + field: jupiter_one.asset.properties.production + type: boolean + ignore_missing: true + on_failure: + - remove: + tag: remove_15 + field: + - jupiter_one.asset.properties.production + - append: + tag: append_error_message_15 + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - convert: + tag: convert_jupiter_one_asset_properties_blocks_production_to_boolean + field: jupiter_one.asset.properties.blocks_production + type: boolean + ignore_missing: true + on_failure: + - remove: + tag: remove_16 + field: + - jupiter_one.asset.properties.blocks_production + - append: + tag: append_error_message_16 + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - convert: + tag: convert_jupiter_one_asset_properties_tag_production_to_boolean + field: jupiter_one.asset.properties.tag.production + type: boolean + ignore_missing: true + on_failure: + - remove: + tag: remove_17 + field: + - jupiter_one.asset.properties.tag.production + - append: + tag: append_error_message_17 + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - convert: + tag: convert_jupiter_one_asset_properties_blocking_to_boolean + field: jupiter_one.asset.properties.blocking + type: boolean + ignore_missing: true + on_failure: + - remove: + tag: remove_18 + field: + - jupiter_one.asset.properties.blocking + - append: + tag: append_error_message_18 + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + + # Convert to IP + - convert: + tag: convert_jupiter_one_asset_properties_device_local_ip_to_ip + if: ctx.jupiter_one?.asset?.properties?.device_local_ip != '' + field: jupiter_one.asset.properties.device_local_ip + type: ip + ignore_missing: true + on_failure: + - remove: + tag: remove_19 + field: + - jupiter_one.asset.properties.device_local_ip + - append: + tag: append_error_message_19 + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - convert: + tag: convert_jupiter_one_asset_properties_device_external_ip_to_ip + if: ctx.jupiter_one?.asset?.properties?.device_external_ip != '' + field: jupiter_one.asset.properties.device_external_ip + type: ip + ignore_missing: true + on_failure: + - remove: + tag: remove_20 + field: + - jupiter_one.asset.properties.device_external_ip + - append: + tag: append_error_message_20 + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + + - append: + tag: append_related_user_1 + if: ctx.jupiter_one?.asset?.properties?.reporter != null + field: related.user + value: '{{{jupiter_one.asset.properties.reporter}}}' + allow_duplicates: false + - append: + tag: append_related_ip_1 + if: ctx.jupiter_one?.asset?.properties?.device_local_ip != null + field: related.ip + value: '{{{jupiter_one.asset.properties.device_local_ip}}}' + allow_duplicates: false + - append: + tag: append_related_user_2 + if: ctx.jupiter_one?.asset?.properties?.user_id != null + field: related.user + value: '{{{jupiter_one.asset.properties.user_id}}}' + allow_duplicates: false + - append: + tag: append_related_ip_2 + if: ctx.jupiter_one?.asset?.properties?.device_external_ip != null + field: related.ip + value: '{{{jupiter_one.asset.properties.device_external_ip}}}' + allow_duplicates: false + - append: + tag: append_related_hosts + if: ctx.jupiter_one?.asset?.properties?.device_hostname != null + field: related.hosts + value: '{{{jupiter_one.asset.properties.device_hostname}}}' + allow_duplicates: false + - append: + tag: append_related_user_3 + if: ctx.jupiter_one?.asset?.properties?.user_name != null + field: related.user + value: '{{{jupiter_one.asset.properties.user_name}}}' + allow_duplicates: false + - foreach: + tag: foreach_of_jupiter_one_asset_properties_approvers + if: ctx.jupiter_one?.asset?.properties?.approvers instanceof List + field: jupiter_one.asset.properties.approvers + processor: + append: + tag: append_related_user_4 + field: related.user + value: '{{{_ingest._value}}}' + allow_duplicates: false + + # Map custom fields to corresponding ECS and related fields. + - set: + tag: set_log_level + field: log.level + copy_from: jupiter_one.asset.properties.level + ignore_empty_value: true + - lowercase: + field: log.level + tag: lowercase_log_level + ignore_missing: true + - set: + tag: set_vulnerability_id + field: vulnerability.id + copy_from: jupiter_one.asset.properties.cve_id + ignore_empty_value: true + if: ctx.jupiter_one?.asset?.entity?._class?.contains('Vulnerability') == true + - set: + tag: set_vulnerability_score_base + field: vulnerability.score.base + copy_from: jupiter_one.asset.properties.score + ignore_empty_value: true + if: ctx.jupiter_one?.asset?.entity?._class?.contains('Vulnerability') == true + - set: + tag: set_vulnerability_severity + field: vulnerability.severity + copy_from: jupiter_one.asset.properties.severity + ignore_empty_value: true + if: ctx.jupiter_one?.asset?.entity?._class?.contains('Vulnerability') == true + - set: + tag: set_host_id + field: host.id + copy_from: jupiter_one.asset.properties.device_id + ignore_empty_value: true + - set: + tag: set_threat_indicator_file_name + field: threat.indicator.file.name + copy_from: jupiter_one.asset.properties.filename + ignore_empty_value: true + if: ctx.jupiter_one?.asset?.entity?._class?.contains('Finding') == true + - set: + tag: set_user_id + field: user.id + copy_from: jupiter_one.asset.properties.user_id + ignore_empty_value: true + - set: + tag: set_threat_indicator_file_path + field: threat.indicator.file.path + copy_from: jupiter_one.asset.properties.filepath + ignore_empty_value: true + if: ctx.jupiter_one?.asset?.entity?._class?.contains('Finding') == true + - set: + tag: set_threat_indicator_ip + field: threat.indicator.ip + copy_from: jupiter_one.asset.properties.device_external_ip + ignore_empty_value: true + if: ctx.jupiter_one?.asset?.entity?._class?.contains('Finding') == true + - set: + tag: set_host_os_version + field: host.os.version + copy_from: jupiter_one.asset.properties.device_os_version + ignore_empty_value: true + - set: + tag: set_host_hostname + field: host.hostname + copy_from: jupiter_one.asset.properties.device_hostname + ignore_empty_value: true + - set: + tag: set_host_os_platform + field: host.os.platform + copy_from: jupiter_one.asset.properties.device_platform_name + ignore_empty_value: true + - set: + tag: set_user_name + field: user.name + copy_from: jupiter_one.asset.properties.user_name + ignore_empty_value: true + - append: + tag: append_vulnerability_category + if: ctx.jupiter_one?.asset?.properties?.category != null && ctx.jupiter_one?.asset?.entity?._class?.contains('Vulnerability') == true + field: vulnerability.category + value: '{{{jupiter_one.asset.properties.category}}}' + allow_duplicates: false + - append: + tag: append_threat_technique_name + if: ctx.jupiter_one?.asset?.properties?.technique != null && ctx.jupiter_one?.asset?.entity?._class?.contains('Finding') == true + field: threat.technique.name + value: '{{{jupiter_one.asset.properties.technique}}}' + allow_duplicates: false + - append: + tag: append_host_mac + if: ctx.jupiter_one?.asset?.properties?.device_mac_address != null + field: host.mac + value: '{{{jupiter_one.asset.properties.device_mac_address}}}' + allow_duplicates: false + - append: + tag: append_threat_technique_id + if: ctx.jupiter_one?.asset?.properties?.technique_id != null && ctx.jupiter_one?.asset?.entity?._class?.contains('Finding') == true + field: threat.technique.id + value: '{{{jupiter_one.asset.properties.technique_id}}}' + allow_duplicates: false + - append: + tag: append_threat_tactic_id + if: ctx.jupiter_one?.asset?.properties?.tactic_id != null && ctx.jupiter_one?.asset?.entity?._class?.contains('Finding') == true + field: threat.tactic.id + value: '{{{jupiter_one.asset.properties.tactic_id}}}' + allow_duplicates: false + - append: + tag: append_threat_tactic_name + if: ctx.jupiter_one?.asset?.properties?.tactic != null && ctx.jupiter_one?.asset?.entity?._class?.contains('Finding') == true + field: threat.tactic.name + value: '{{{jupiter_one.asset.properties.tactic}}}' + allow_duplicates: false + - set: + tag: set_vulnerability_enumeration + if: ctx.jupiter_one?.asset?.properties?.cve_id != null + field: vulnerability.enumeration + value: CVE +on_failure: + - append: + tag: append_error_message_21 + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - set: + tag: set_event_kind_2 + field: event.kind + value: pipeline_error + - append: + tag: append_tags + field: tags + value: preserve_original_event + allow_duplicates: false diff --git a/packages/jupiter_one/data_stream/asset/fields/base-fields.yml b/packages/jupiter_one/data_stream/asset/fields/base-fields.yml new file mode 100644 index 00000000000..3713db6a776 --- /dev/null +++ b/packages/jupiter_one/data_stream/asset/fields/base-fields.yml @@ -0,0 +1,16 @@ +- name: data_stream.type + external: ecs +- name: data_stream.dataset + external: ecs +- name: data_stream.namespace + external: ecs +- name: event.module + type: constant_keyword + external: ecs + value: jupiter_one +- name: event.dataset + type: constant_keyword + external: ecs + value: jupiter_one.asset +- name: '@timestamp' + external: ecs diff --git a/packages/jupiter_one/data_stream/asset/fields/beats.yml b/packages/jupiter_one/data_stream/asset/fields/beats.yml new file mode 100644 index 00000000000..d5fd38748ba --- /dev/null +++ b/packages/jupiter_one/data_stream/asset/fields/beats.yml @@ -0,0 +1,6 @@ +- name: input.type + type: keyword + description: Type of Filebeat input. +- name: log.offset + type: long + description: Log offset. diff --git a/packages/jupiter_one/data_stream/asset/fields/ecs.yml b/packages/jupiter_one/data_stream/asset/fields/ecs.yml new file mode 100644 index 00000000000..38c48286d37 --- /dev/null +++ b/packages/jupiter_one/data_stream/asset/fields/ecs.yml @@ -0,0 +1,5 @@ +# Define ECS constant fields as constant_keyword +- name: observer.vendor + external: ecs + type: constant_keyword + value: JupiterOne diff --git a/packages/jupiter_one/data_stream/asset/fields/fields.yml b/packages/jupiter_one/data_stream/asset/fields/fields.yml new file mode 100644 index 00000000000..86b50cf0cc9 --- /dev/null +++ b/packages/jupiter_one/data_stream/asset/fields/fields.yml @@ -0,0 +1,290 @@ +- name: jupiter_one + type: group + fields: + - name: asset + type: group + fields: + - name: entity + type: group + fields: + - name: _account_id + type: keyword + - name: _begin_on + type: date + description: The timestamp when the latest version of entity/relationship was created. + - name: _class + type: keyword + description: One or more classes conforming to a standard, abstract security data model. + - name: _created_on + type: date + description: The timestamp the entity/relationship was first created in JupiterOne. + - name: _deleted + type: boolean + description: Indicates whether a resource was deleted from JupiterOne graph/CMDB. + - name: _end_on + type: date + description: The timestamp a version of the entity/relationship was deleted in JupiterOne. + - name: _id + type: keyword + description: A globally unique identifier of the resource within JupiterOne. + - name: _integration_class + type: keyword + - name: _integration_definition_id + type: keyword + description: Internal UUID that identifies the definition for this integration. + - name: _integration_instance_id + type: keyword + description: Internal UUID that identifies the integration instance. + - name: _integration_name + type: keyword + description: User-provided friendly name of the integration instance. + - name: _integration_type + type: keyword + description: Type of the integration. + - name: _key + type: keyword + description: An identifier of the resource unique within an integration instance or data source scope. + - name: _scope + type: keyword + - name: _source + type: keyword + description: The source from where the resource was created. + - name: _type + type: keyword + description: The specific type of the resource. + - name: _version + type: keyword + description: The version number, which increments every time a change to the resource configuration/attribute is captured. + - name: display_name + type: keyword + description: Display name. + - name: id + type: keyword + description: Identifiers of this entity assigned by the providers. + - name: properties + type: group + fields: + - name: active + type: boolean + description: Indicates if this entity is currently active. + - name: aggregate_id + type: keyword + - name: aid + type: keyword + - name: approved + type: boolean + description: If this is record has been reviewed and approved. + - name: approved_on + type: date + description: The timestamp (in milliseconds since epoch) when this record was approved. + - name: approvers + type: keyword + description: The list of approvers on the record. + - name: assessment + type: keyword + description: The name/id of the assessment that produced this finding. + - name: aws_account_id + type: keyword + - name: blocking + type: boolean + description: Indicates whether this vulnerability finding is a blocking issue. + - name: blocks_production + type: boolean + description: Indicates whether this vulnerability finding is a blocking issue. + - name: category + type: keyword + description: The category of the finding. + - name: child_process_ids + type: keyword + - name: cid + type: keyword + - name: classification + type: keyword + description: The sensitivity of the data; should match company data classification scheme. + - name: cmdline + type: keyword + - name: composite_id + type: keyword + - name: content + type: keyword + description: Text content of the record/documentation. + - name: created_on + type: date + description: The timestamp (in milliseconds since epoch) when the entity was created at the source. + - name: cve_id + type: keyword + description: The Common Vulnerabilities and Exposures (CVE) identifier of the vulnerability as a string, formatted exactly as CVE-YYYY-NNNN (where YYYY is the 4-digit year and NNNN is a sequence of at least 4 digits). + - name: data_domains + type: keyword + - name: description + type: keyword + description: An extended description of this entity. + - name: detected_on + type: date + - name: device_external_ip + type: ip + - name: device_hostname + type: keyword + - name: device_id + type: keyword + - name: device_local_ip + type: ip + - name: device_mac_address + type: keyword + - name: device_os_version + type: keyword + - name: device_platform_name + type: keyword + - name: device_status + type: keyword + - name: exception + type: boolean + description: Indicates if this record has an applied exception. + - name: exception_reason + type: keyword + description: Reason / description of the exception. + - name: exploit_status + type: long + - name: exploitability + type: double + description: The exploitability score/rating. + - name: exprt_rating + type: keyword + - name: falcon_host_link + type: keyword + - name: filename + type: keyword + - name: filepath + type: keyword + - name: gcp_project_id + type: keyword + - name: id + type: keyword + description: Identifiers of this entity assigned by the providers. + - name: impact + type: double + description: The impact description or rating. + - name: impacts + type: keyword + description: The target listing of projects, applications, repos or systems this vulnerability impacts. + - name: level + type: keyword + - name: mitre_attack + type: keyword + - name: name + type: keyword + description: Name of this entity. + - name: numeric_severity + type: long + - name: objective + type: keyword + - name: open + type: boolean + description: Indicates if this is an open vulnerability. + - name: parent_cmdline + type: keyword + - name: parent_filename + type: keyword + - name: priority + type: keyword + description: Priority level mapping to Severity rating. + - name: product + type: keyword + description: A product developed by the organization, such as a software product. + - name: product_name_version + type: keyword + - name: production + type: boolean + description: If this is a production record. + - name: public + type: boolean + description: Indicates if this is a publicly disclosed vulnerability. + - name: published_on + type: date + - name: raw_severity + type: keyword + - name: recommendation + type: keyword + description: Recommendation on how to remediate/fix this finding. + - name: references + type: keyword + description: The array of links to references. + - name: remediation_actions + type: keyword + description: Recommended remediation actions or steps to address a finding, vulnerability or weakness. + - name: remediation_sla + type: long + description: The number of days that the Vulnerability must be remediated within, based on SLA set by the organization's internal vulnerability management program policy. + - name: reported_on + type: date + description: The timestamp (in milliseconds since epoch) when this record was reported/opened. + - name: reporter + type: keyword + description: The person or system that reported or created this record. + - name: scenario + type: keyword + - name: score + type: double + description: The overall vulnerability score. + - name: severity + type: keyword + description: Severity rating based on impact and exploitability. + - name: severity_name + type: keyword + - name: source_products + type: keyword + - name: source_vendors + type: keyword + - name: status + type: keyword + description: Indicates if this record is currently open. + - name: steps_to_reproduce + type: keyword + description: Steps to reproduce this finding. + - name: summary + type: keyword + description: A summary / short description of this entity. + - name: tactic + type: keyword + - name: tactic_id + type: keyword + - name: tag + type: group + fields: + - name: account_name + type: keyword + - name: jira + type: keyword + - name: production + type: boolean + description: Indicates if this vulnerability is in production. + - name: target_details + type: keyword + description: Additional details about the targets. + - name: targets + type: keyword + description: The target listing of projects, applications, repos or systems this vulnerability impacts. + - name: technique + type: keyword + - name: technique_id + type: keyword + - name: total_number_of_affected_entities + type: long + - name: updated_on + type: date + description: The timestamp (in milliseconds since epoch) when the entity was last updated at the source. + - name: user_id + type: keyword + - name: user_name + type: keyword + - name: validated + type: boolean + description: Indicates if this Vulnerability finding has been validated by the security team. + - name: vector + type: keyword + description: The vulnerability attack vector. + - name: vendor_advisory + type: keyword + - name: web_link + type: keyword + description: Hyperlink to the location of this record. diff --git a/packages/jupiter_one/data_stream/asset/fields/is-transform-source-true.yml b/packages/jupiter_one/data_stream/asset/fields/is-transform-source-true.yml new file mode 100644 index 00000000000..fd4766eacd5 --- /dev/null +++ b/packages/jupiter_one/data_stream/asset/fields/is-transform-source-true.yml @@ -0,0 +1,4 @@ +- name: labels.is_transform_source + type: constant_keyword + description: Distinguishes between documents that are a source for a transform and documents that are an output of a transform, to facilitate easier filtering. + value: "true" diff --git a/packages/jupiter_one/data_stream/asset/manifest.yml b/packages/jupiter_one/data_stream/asset/manifest.yml new file mode 100644 index 00000000000..220a9c5cc01 --- /dev/null +++ b/packages/jupiter_one/data_stream/asset/manifest.yml @@ -0,0 +1,100 @@ +title: Collect Assets from JupiterOne. +type: logs +dataset: jupiter_one.asset +streams: + - input: cel + title: JupiterOne Assets + description: Collect JupiterOne Assets. + template_path: cel.yml.hbs + vars: + - name: interval + type: text + title: Interval + description: Duration between requests to the JupiterOne API. Supported units for this parameter are h/m/s. + multi: false + required: true + show_user: true + default: 24h + - name: resource_rate_limit_limit + type: text + title: Resource Rate Limit + description: In requests per second. This controls polling frequency. + show_user: false + multi: false + required: false + - name: resource_rate_limit_burst + type: integer + title: Resource Rate Limit Burst + description: In requests. The maximum number of requests that can be immediately made following an idle period. + show_user: false + multi: false + required: false + - name: max_executions + type: integer + title: Maximum Pages Per Interval + description: Maximum Pages Per Interval is the maximum number of pages that can be collected at each interval. + multi: false + required: false + show_user: false + default: 1000 + - name: enable_request_tracer + type: bool + title: Enable request tracing + multi: false + default: false + required: false + show_user: false + description: >- + The request tracer logs requests and responses to the agent's local file-system for debugging configurations. + Enabling this request tracing compromises security and should only be used for debugging. Disabling the request + tracer will delete any stored traces. + See [documentation](https://www.elastic.co/guide/en/beats/filebeat/current/filebeat-input-cel.html#_resource_tracer_enable) + for details. + - name: preserve_original_event + type: bool + title: Preserve original event + description: Preserves a raw copy of the original event, added to the field event.original. + multi: false + required: false + show_user: true + default: false + - name: tags + type: text + title: Tags + description: Tags for the data-stream. + multi: true + required: true + show_user: false + default: + - forwarded + - jupiter_one-asset + - name: http_client_timeout + type: text + title: HTTP Client Timeout + description: Duration before declaring that the HTTP client connection has timed out. Supported time units are ns, us, ms, s, m, h. + multi: false + required: true + show_user: false + default: 30s + - name: preserve_duplicate_custom_fields + required: false + title: Preserve duplicate custom fields + description: Preserve jupiter_one.asset fields that were copied to Elastic Common Schema (ECS) fields. + type: bool + multi: false + show_user: false + default: false + - name: processors + type: yaml + title: Processors + multi: false + required: false + show_user: false + description: >- + Processors are used to reduce the number of fields in the exported event or to enhance the event with metadata. This executes in the agent before the logs are parsed. +elasticsearch: + dynamic_dataset: true + dynamic_namespace: true + index_template: + mappings: + dynamic: true diff --git a/packages/jupiter_one/data_stream/asset/routing_rules.yml b/packages/jupiter_one/data_stream/asset/routing_rules.yml new file mode 100644 index 00000000000..0f03a6a7c6e --- /dev/null +++ b/packages/jupiter_one/data_stream/asset/routing_rules.yml @@ -0,0 +1,7 @@ +- source_dataset: jupiter_one.asset + rules: + - target_dataset: jupiter_one.risks_and_alerts + if: "ctx.jupiter_one.asset.entity._class.contains('Vulnerability') || ctx.jupiter_one.asset.entity._class.contains('Alert') || ctx.jupiter_one.asset.entity._class.contains('Finding')" + namespace: + - '{{data_stream.namespace}}' + - default diff --git a/packages/jupiter_one/data_stream/risks_and_alerts/elasticsearch/ilm/default_policy.json b/packages/jupiter_one/data_stream/risks_and_alerts/elasticsearch/ilm/default_policy.json new file mode 100644 index 00000000000..24bbfc79405 --- /dev/null +++ b/packages/jupiter_one/data_stream/risks_and_alerts/elasticsearch/ilm/default_policy.json @@ -0,0 +1,20 @@ +{ + "policy": { + "phases": { + "hot": { + "actions": { + "rollover": { + "max_age": "30d", + "max_primary_shard_size": "50gb" + } + } + }, + "delete": { + "min_age": "30d", + "actions": { + "delete": {} + } + } + } + } +} diff --git a/packages/jupiter_one/data_stream/risks_and_alerts/fields/base-fields.yml b/packages/jupiter_one/data_stream/risks_and_alerts/fields/base-fields.yml new file mode 100644 index 00000000000..0a70ed04bc3 --- /dev/null +++ b/packages/jupiter_one/data_stream/risks_and_alerts/fields/base-fields.yml @@ -0,0 +1,16 @@ +- name: data_stream.type + external: ecs +- name: data_stream.dataset + external: ecs +- name: data_stream.namespace + external: ecs +- name: event.module + type: constant_keyword + external: ecs + value: jupiter_one +- name: event.dataset + type: constant_keyword + external: ecs + value: jupiter_one.risks_and_alerts +- name: '@timestamp' + external: ecs diff --git a/packages/jupiter_one/data_stream/risks_and_alerts/fields/beats.yml b/packages/jupiter_one/data_stream/risks_and_alerts/fields/beats.yml new file mode 100644 index 00000000000..8a3c11cc459 --- /dev/null +++ b/packages/jupiter_one/data_stream/risks_and_alerts/fields/beats.yml @@ -0,0 +1,18 @@ +- description: Log message optimized for viewing in a log viewer. + name: event.message + type: text +- description: Type of Filebeat input. + name: input.type + type: keyword +- description: Path to the log file. + name: log.file.path + type: keyword +- description: Flags for the log file. + name: log.flags + type: keyword +- description: Offset of the entry in the log file. + name: log.offset + type: long +- name: tags + type: keyword + description: User defined tags. diff --git a/packages/jupiter_one/data_stream/risks_and_alerts/fields/ecs.yml b/packages/jupiter_one/data_stream/risks_and_alerts/fields/ecs.yml new file mode 100644 index 00000000000..38c48286d37 --- /dev/null +++ b/packages/jupiter_one/data_stream/risks_and_alerts/fields/ecs.yml @@ -0,0 +1,5 @@ +# Define ECS constant fields as constant_keyword +- name: observer.vendor + external: ecs + type: constant_keyword + value: JupiterOne diff --git a/packages/jupiter_one/data_stream/risks_and_alerts/fields/fields.yml b/packages/jupiter_one/data_stream/risks_and_alerts/fields/fields.yml new file mode 100644 index 00000000000..86b50cf0cc9 --- /dev/null +++ b/packages/jupiter_one/data_stream/risks_and_alerts/fields/fields.yml @@ -0,0 +1,290 @@ +- name: jupiter_one + type: group + fields: + - name: asset + type: group + fields: + - name: entity + type: group + fields: + - name: _account_id + type: keyword + - name: _begin_on + type: date + description: The timestamp when the latest version of entity/relationship was created. + - name: _class + type: keyword + description: One or more classes conforming to a standard, abstract security data model. + - name: _created_on + type: date + description: The timestamp the entity/relationship was first created in JupiterOne. + - name: _deleted + type: boolean + description: Indicates whether a resource was deleted from JupiterOne graph/CMDB. + - name: _end_on + type: date + description: The timestamp a version of the entity/relationship was deleted in JupiterOne. + - name: _id + type: keyword + description: A globally unique identifier of the resource within JupiterOne. + - name: _integration_class + type: keyword + - name: _integration_definition_id + type: keyword + description: Internal UUID that identifies the definition for this integration. + - name: _integration_instance_id + type: keyword + description: Internal UUID that identifies the integration instance. + - name: _integration_name + type: keyword + description: User-provided friendly name of the integration instance. + - name: _integration_type + type: keyword + description: Type of the integration. + - name: _key + type: keyword + description: An identifier of the resource unique within an integration instance or data source scope. + - name: _scope + type: keyword + - name: _source + type: keyword + description: The source from where the resource was created. + - name: _type + type: keyword + description: The specific type of the resource. + - name: _version + type: keyword + description: The version number, which increments every time a change to the resource configuration/attribute is captured. + - name: display_name + type: keyword + description: Display name. + - name: id + type: keyword + description: Identifiers of this entity assigned by the providers. + - name: properties + type: group + fields: + - name: active + type: boolean + description: Indicates if this entity is currently active. + - name: aggregate_id + type: keyword + - name: aid + type: keyword + - name: approved + type: boolean + description: If this is record has been reviewed and approved. + - name: approved_on + type: date + description: The timestamp (in milliseconds since epoch) when this record was approved. + - name: approvers + type: keyword + description: The list of approvers on the record. + - name: assessment + type: keyword + description: The name/id of the assessment that produced this finding. + - name: aws_account_id + type: keyword + - name: blocking + type: boolean + description: Indicates whether this vulnerability finding is a blocking issue. + - name: blocks_production + type: boolean + description: Indicates whether this vulnerability finding is a blocking issue. + - name: category + type: keyword + description: The category of the finding. + - name: child_process_ids + type: keyword + - name: cid + type: keyword + - name: classification + type: keyword + description: The sensitivity of the data; should match company data classification scheme. + - name: cmdline + type: keyword + - name: composite_id + type: keyword + - name: content + type: keyword + description: Text content of the record/documentation. + - name: created_on + type: date + description: The timestamp (in milliseconds since epoch) when the entity was created at the source. + - name: cve_id + type: keyword + description: The Common Vulnerabilities and Exposures (CVE) identifier of the vulnerability as a string, formatted exactly as CVE-YYYY-NNNN (where YYYY is the 4-digit year and NNNN is a sequence of at least 4 digits). + - name: data_domains + type: keyword + - name: description + type: keyword + description: An extended description of this entity. + - name: detected_on + type: date + - name: device_external_ip + type: ip + - name: device_hostname + type: keyword + - name: device_id + type: keyword + - name: device_local_ip + type: ip + - name: device_mac_address + type: keyword + - name: device_os_version + type: keyword + - name: device_platform_name + type: keyword + - name: device_status + type: keyword + - name: exception + type: boolean + description: Indicates if this record has an applied exception. + - name: exception_reason + type: keyword + description: Reason / description of the exception. + - name: exploit_status + type: long + - name: exploitability + type: double + description: The exploitability score/rating. + - name: exprt_rating + type: keyword + - name: falcon_host_link + type: keyword + - name: filename + type: keyword + - name: filepath + type: keyword + - name: gcp_project_id + type: keyword + - name: id + type: keyword + description: Identifiers of this entity assigned by the providers. + - name: impact + type: double + description: The impact description or rating. + - name: impacts + type: keyword + description: The target listing of projects, applications, repos or systems this vulnerability impacts. + - name: level + type: keyword + - name: mitre_attack + type: keyword + - name: name + type: keyword + description: Name of this entity. + - name: numeric_severity + type: long + - name: objective + type: keyword + - name: open + type: boolean + description: Indicates if this is an open vulnerability. + - name: parent_cmdline + type: keyword + - name: parent_filename + type: keyword + - name: priority + type: keyword + description: Priority level mapping to Severity rating. + - name: product + type: keyword + description: A product developed by the organization, such as a software product. + - name: product_name_version + type: keyword + - name: production + type: boolean + description: If this is a production record. + - name: public + type: boolean + description: Indicates if this is a publicly disclosed vulnerability. + - name: published_on + type: date + - name: raw_severity + type: keyword + - name: recommendation + type: keyword + description: Recommendation on how to remediate/fix this finding. + - name: references + type: keyword + description: The array of links to references. + - name: remediation_actions + type: keyword + description: Recommended remediation actions or steps to address a finding, vulnerability or weakness. + - name: remediation_sla + type: long + description: The number of days that the Vulnerability must be remediated within, based on SLA set by the organization's internal vulnerability management program policy. + - name: reported_on + type: date + description: The timestamp (in milliseconds since epoch) when this record was reported/opened. + - name: reporter + type: keyword + description: The person or system that reported or created this record. + - name: scenario + type: keyword + - name: score + type: double + description: The overall vulnerability score. + - name: severity + type: keyword + description: Severity rating based on impact and exploitability. + - name: severity_name + type: keyword + - name: source_products + type: keyword + - name: source_vendors + type: keyword + - name: status + type: keyword + description: Indicates if this record is currently open. + - name: steps_to_reproduce + type: keyword + description: Steps to reproduce this finding. + - name: summary + type: keyword + description: A summary / short description of this entity. + - name: tactic + type: keyword + - name: tactic_id + type: keyword + - name: tag + type: group + fields: + - name: account_name + type: keyword + - name: jira + type: keyword + - name: production + type: boolean + description: Indicates if this vulnerability is in production. + - name: target_details + type: keyword + description: Additional details about the targets. + - name: targets + type: keyword + description: The target listing of projects, applications, repos or systems this vulnerability impacts. + - name: technique + type: keyword + - name: technique_id + type: keyword + - name: total_number_of_affected_entities + type: long + - name: updated_on + type: date + description: The timestamp (in milliseconds since epoch) when the entity was last updated at the source. + - name: user_id + type: keyword + - name: user_name + type: keyword + - name: validated + type: boolean + description: Indicates if this Vulnerability finding has been validated by the security team. + - name: vector + type: keyword + description: The vulnerability attack vector. + - name: vendor_advisory + type: keyword + - name: web_link + type: keyword + description: Hyperlink to the location of this record. diff --git a/packages/jupiter_one/data_stream/risks_and_alerts/fields/is-transform-source-true.yml b/packages/jupiter_one/data_stream/risks_and_alerts/fields/is-transform-source-true.yml new file mode 100644 index 00000000000..fd4766eacd5 --- /dev/null +++ b/packages/jupiter_one/data_stream/risks_and_alerts/fields/is-transform-source-true.yml @@ -0,0 +1,4 @@ +- name: labels.is_transform_source + type: constant_keyword + description: Distinguishes between documents that are a source for a transform and documents that are an output of a transform, to facilitate easier filtering. + value: "true" diff --git a/packages/jupiter_one/data_stream/risks_and_alerts/lifecycle.yml b/packages/jupiter_one/data_stream/risks_and_alerts/lifecycle.yml new file mode 100644 index 00000000000..b56a81e81d7 --- /dev/null +++ b/packages/jupiter_one/data_stream/risks_and_alerts/lifecycle.yml @@ -0,0 +1 @@ +data_retention: "30d" diff --git a/packages/jupiter_one/data_stream/risks_and_alerts/manifest.yml b/packages/jupiter_one/data_stream/risks_and_alerts/manifest.yml new file mode 100644 index 00000000000..d2af1e1e2fa --- /dev/null +++ b/packages/jupiter_one/data_stream/risks_and_alerts/manifest.yml @@ -0,0 +1,10 @@ +title: JupiterOne Risks and Alerts +dataset: jupiter_one.risks_and_alerts +ilm_policy: logs-jupiter_one.risks_and_alerts-default_policy +type: logs +elasticsearch: + dynamic_dataset: true + dynamic_namespace: true + index_template: + mappings: + dynamic: true diff --git a/packages/jupiter_one/docs/README.md b/packages/jupiter_one/docs/README.md new file mode 100644 index 00000000000..33d726f7d76 --- /dev/null +++ b/packages/jupiter_one/docs/README.md @@ -0,0 +1,247 @@ +# JupiterOne Integration for Elastic + +## Overview + +[JupiterOne](https://www.jupiterone.com/) provides continuous monitoring to surface problems impacting critical assets and infrastructure. Secure your attack surface with continuous asset discovery and attack path analysis. Reduce risk, triage incidents, and prioritize vulnerability findings with greater clarity and 85% fewer SecOps resources. + +The JupiterOne integration for Elastic allows you to collect logs using [JupiterOne API](https://docs.jupiterone.io/reference), then visualise the data in Kibana. + +### Compatibility + +The JupiterOne integration uses the GraphQL endpoint to collect assests. + +### How it works + +This integration periodically queries the JupiterOne API to retrieve details for assets of class alert, vulnerability, and finding. + +## What data does this integration collect? + +This integration collects assets of the following classes: + +- [`Alert`](https://docs.jupiterone.io/data-model/schemas/Alert). +- [`Vulnerability`](https://docs.jupiterone.io/data-model/schemas/Vulnerability). +- [`Finding`](https://docs.jupiterone.io/data-model/schemas/Finding). + +### Supported use cases + +Integrating JupiterOne Alert, Finding, and Vulnerability data with SIEM dashboards delivers unified visibility into risk signals, asset classifications, and security posture across the environment. Dashboards summarize asset class, type, and source distributions, highlight classification and status trends, and surface key risk attributes such as category, level, and severity. Time-based severity trends, MITRE mappings, and product or device-based breakdowns help analysts understand threat patterns and prioritize response. Metrics for open alerts, closed alerts, open vulnerabilities, and affected entities provide quick operational insight, while tables of top device IPs and product versions add valuable investigative context. Together, these visualizations enable teams to track risks, monitor asset health, and strengthen overall detection and remediation efforts. + +## What do I need to use this integration? + +### From Elastic + +This integration installs [Elastic latest transforms](https://www.elastic.co/docs/explore-analyze/transforms/transform-overview#latest-transform-overview). For more details, check the [Transform](https://www.elastic.co/docs/explore-analyze/transforms/transform-setup) setup and requirements. + +### From JupiterOne + +To collect data from JupiterOne, Authentication is handled using a `API Token` and `Account ID`, which serve as the required credentials. + +#### Generate an `API Token`: + +1. Log in to the account you want to manage. +2. Go to **Settings > Account Management**. +3. In the left panel, click the **Key Icon**. +4. In the User API Keys page, click **Add**. +5. In the API Keys modal, enter the name of the key and the number of days before it expires, and click **Create**. + +For more details, check [Documentation](https://docs.jupiterone.io/api/authentication#create-account-level-api-keys). + + +## How do I deploy this integration? + +This integration supports both Elastic Agentless-based and Agent-based installations. + +### Agentless-based installation + +Agentless integrations allow you to collect data without having to manage Elastic Agent in your cloud. They make manual agent deployment unnecessary, so you can focus on your data instead of the agent that collects it. For more information, refer to [Agentless integrations](https://www.elastic.co/guide/en/serverless/current/security-agentless-integrations.html) and the [Agentless integrations FAQ](https://www.elastic.co/guide/en/serverless/current/agentless-integration-troubleshooting.html). + +Agentless deployments are only supported in Elastic Serverless and Elastic Cloud environments. This functionality is in beta and is subject to change. Beta features are not subject to the support SLA of official GA features. + +### Agent-based installation + +Elastic Agent must be installed. For more details, check the Elastic Agent [installation instructions](docs-content://reference/fleet/install-elastic-agents.md). You can install only one Elastic Agent per host. + +## Setup + +1. In the top search bar in Kibana, search for **Integrations**. +2. In the search bar, type **JupiterOne**. +3. Select the **JupiterOne** integration from the search results. +4. Select **Add JupiterOne** to add the integration. +5. Enable and configure only the collection methods which you will use. + + * To **Collect assets from JupiterOne API**, you'll need to: + + - Configure **URL**, **Account ID** and **API Token**. + - Enable the dataset. + - Adjust the integration configuration parameters if required, including the Interval, etc. to enable data collection. + +6. Select **Save and continue** to save the integration. + +### Validation + +#### Dashboards populated + +1. In the top search bar in Kibana, search for **Dashboards**. +2. In the search bar, type **jupiter_one**. +3. Select a dashboard for the dataset you are collecting, and verify the dashboard information is populated. + +#### Transforms healthy + +1. In the top search bar in Kibana, search for **Transforms**. +2. Select the **Data / Transforms** from the search results. +3. In the search bar, type **jupiter_one**. +4. All transforms from the search results should indicate **Healthy** under the **Health** column. + +## Performance and scaling + +For more information on architectures that can be used for scaling this integration, check the [Ingest Architectures](https://www.elastic.co/docs/manage-data/ingest/ingest-reference-architectures) documentation. + +## Reference + +### ECS field reference + +#### Risks and Alerts + +**Exported fields** + +| Field | Description | Type | +|---|---|---| +| @timestamp | Date/time when the event originated. This is the date/time extracted from the event, typically representing when the event was generated by the source. If the event source has no original timestamp, this value is typically populated by the first time the event was received by the pipeline. Required field for all events. | date | +| data_stream.dataset | The field can contain anything that makes sense to signify the source of the data. Examples include `nginx.access`, `prometheus`, `endpoint` etc. For data streams that otherwise fit, but that do not have dataset set we use the value "generic" for the dataset value. `event.dataset` should have the same value as `data_stream.dataset`. Beyond the Elasticsearch data stream naming criteria noted above, the `dataset` value has additional restrictions: \* Must not contain `-` \* No longer than 100 characters | constant_keyword | +| data_stream.namespace | A user defined namespace. Namespaces are useful to allow grouping of data. Many users already organize their indices this way, and the data stream naming scheme now provides this best practice as a default. Many users will populate this field with `default`. If no value is used, it falls back to `default`. Beyond the Elasticsearch index naming criteria noted above, `namespace` value has the additional restrictions: \* Must not contain `-` \* No longer than 100 characters | constant_keyword | +| data_stream.type | An overarching type for the data stream. Currently allowed values are "logs" and "metrics". We expect to also add "traces" and "synthetics" in the near future. | constant_keyword | +| event.dataset | Name of the dataset. If an event source publishes more than one type of log or events (e.g. access log, error log), the dataset is used to specify which one the event comes from. It's recommended but not required to start the dataset name with the module name, followed by a dot, then the dataset name. | constant_keyword | +| event.message | Log message optimized for viewing in a log viewer. | text | +| event.module | Name of the module this data is coming from. If your monitoring agent supports the concept of modules or plugins to process events of a given source (e.g. Apache logs), `event.module` should contain the name of this module. | constant_keyword | +| input.type | Type of Filebeat input. | keyword | +| jupiter_one.asset.entity._account_id | | keyword | +| jupiter_one.asset.entity._begin_on | The timestamp when the latest version of entity/relationship was created. | date | +| jupiter_one.asset.entity._class | One or more classes conforming to a standard, abstract security data model. | keyword | +| jupiter_one.asset.entity._created_on | The timestamp the entity/relationship was first created in JupiterOne. | date | +| jupiter_one.asset.entity._deleted | Indicates whether a resource was deleted from JupiterOne graph/CMDB. | boolean | +| jupiter_one.asset.entity._end_on | The timestamp a version of the entity/relationship was deleted in JupiterOne. | date | +| jupiter_one.asset.entity._id | A globally unique identifier of the resource within JupiterOne. | keyword | +| jupiter_one.asset.entity._integration_class | | keyword | +| jupiter_one.asset.entity._integration_definition_id | Internal UUID that identifies the definition for this integration. | keyword | +| jupiter_one.asset.entity._integration_instance_id | Internal UUID that identifies the integration instance. | keyword | +| jupiter_one.asset.entity._integration_name | User-provided friendly name of the integration instance. | keyword | +| jupiter_one.asset.entity._integration_type | Type of the integration. | keyword | +| jupiter_one.asset.entity._key | An identifier of the resource unique within an integration instance or data source scope. | keyword | +| jupiter_one.asset.entity._scope | | keyword | +| jupiter_one.asset.entity._source | The source from where the resource was created. | keyword | +| jupiter_one.asset.entity._type | The specific type of the resource. | keyword | +| jupiter_one.asset.entity._version | The version number, which increments every time a change to the resource configuration/attribute is captured. | keyword | +| jupiter_one.asset.entity.display_name | Display name. | keyword | +| jupiter_one.asset.id | Identifiers of this entity assigned by the providers. | keyword | +| jupiter_one.asset.properties.active | Indicates if this entity is currently active. | boolean | +| jupiter_one.asset.properties.aggregate_id | | keyword | +| jupiter_one.asset.properties.aid | | keyword | +| jupiter_one.asset.properties.approved | If this is record has been reviewed and approved. | boolean | +| jupiter_one.asset.properties.approved_on | The timestamp (in milliseconds since epoch) when this record was approved. | date | +| jupiter_one.asset.properties.approvers | The list of approvers on the record. | keyword | +| jupiter_one.asset.properties.assessment | The name/id of the assessment that produced this finding. | keyword | +| jupiter_one.asset.properties.aws_account_id | | keyword | +| jupiter_one.asset.properties.blocking | Indicates whether this vulnerability finding is a blocking issue. | boolean | +| jupiter_one.asset.properties.blocks_production | Indicates whether this vulnerability finding is a blocking issue. | boolean | +| jupiter_one.asset.properties.category | The category of the finding. | keyword | +| jupiter_one.asset.properties.child_process_ids | | keyword | +| jupiter_one.asset.properties.cid | | keyword | +| jupiter_one.asset.properties.classification | The sensitivity of the data; should match company data classification scheme. | keyword | +| jupiter_one.asset.properties.cmdline | | keyword | +| jupiter_one.asset.properties.composite_id | | keyword | +| jupiter_one.asset.properties.content | Text content of the record/documentation. | keyword | +| jupiter_one.asset.properties.created_on | The timestamp (in milliseconds since epoch) when the entity was created at the source. | date | +| jupiter_one.asset.properties.cve_id | The Common Vulnerabilities and Exposures (CVE) identifier of the vulnerability as a string, formatted exactly as CVE-YYYY-NNNN (where YYYY is the 4-digit year and NNNN is a sequence of at least 4 digits). | keyword | +| jupiter_one.asset.properties.data_domains | | keyword | +| jupiter_one.asset.properties.description | An extended description of this entity. | keyword | +| jupiter_one.asset.properties.detected_on | | date | +| jupiter_one.asset.properties.device_external_ip | | ip | +| jupiter_one.asset.properties.device_hostname | | keyword | +| jupiter_one.asset.properties.device_id | | keyword | +| jupiter_one.asset.properties.device_local_ip | | ip | +| jupiter_one.asset.properties.device_mac_address | | keyword | +| jupiter_one.asset.properties.device_os_version | | keyword | +| jupiter_one.asset.properties.device_platform_name | | keyword | +| jupiter_one.asset.properties.device_status | | keyword | +| jupiter_one.asset.properties.exception | Indicates if this record has an applied exception. | boolean | +| jupiter_one.asset.properties.exception_reason | Reason / description of the exception. | keyword | +| jupiter_one.asset.properties.exploit_status | | long | +| jupiter_one.asset.properties.exploitability | The exploitability score/rating. | double | +| jupiter_one.asset.properties.exprt_rating | | keyword | +| jupiter_one.asset.properties.falcon_host_link | | keyword | +| jupiter_one.asset.properties.filename | | keyword | +| jupiter_one.asset.properties.filepath | | keyword | +| jupiter_one.asset.properties.gcp_project_id | | keyword | +| jupiter_one.asset.properties.id | Identifiers of this entity assigned by the providers. | keyword | +| jupiter_one.asset.properties.impact | The impact description or rating. | double | +| jupiter_one.asset.properties.impacts | The target listing of projects, applications, repos or systems this vulnerability impacts. | keyword | +| jupiter_one.asset.properties.level | | keyword | +| jupiter_one.asset.properties.mitre_attack | | keyword | +| jupiter_one.asset.properties.name | Name of this entity. | keyword | +| jupiter_one.asset.properties.numeric_severity | | long | +| jupiter_one.asset.properties.objective | | keyword | +| jupiter_one.asset.properties.open | Indicates if this is an open vulnerability. | boolean | +| jupiter_one.asset.properties.parent_cmdline | | keyword | +| jupiter_one.asset.properties.parent_filename | | keyword | +| jupiter_one.asset.properties.priority | Priority level mapping to Severity rating. | keyword | +| jupiter_one.asset.properties.product | A product developed by the organization, such as a software product. | keyword | +| jupiter_one.asset.properties.product_name_version | | keyword | +| jupiter_one.asset.properties.production | If this is a production record. | boolean | +| jupiter_one.asset.properties.public | Indicates if this is a publicly disclosed vulnerability. | boolean | +| jupiter_one.asset.properties.published_on | | date | +| jupiter_one.asset.properties.raw_severity | | keyword | +| jupiter_one.asset.properties.recommendation | Recommendation on how to remediate/fix this finding. | keyword | +| jupiter_one.asset.properties.references | The array of links to references. | keyword | +| jupiter_one.asset.properties.remediation_actions | Recommended remediation actions or steps to address a finding, vulnerability or weakness. | keyword | +| jupiter_one.asset.properties.remediation_sla | The number of days that the Vulnerability must be remediated within, based on SLA set by the organization's internal vulnerability management program policy. | long | +| jupiter_one.asset.properties.reported_on | The timestamp (in milliseconds since epoch) when this record was reported/opened. | date | +| jupiter_one.asset.properties.reporter | The person or system that reported or created this record. | keyword | +| jupiter_one.asset.properties.scenario | | keyword | +| jupiter_one.asset.properties.score | The overall vulnerability score. | double | +| jupiter_one.asset.properties.severity | Severity rating based on impact and exploitability. | keyword | +| jupiter_one.asset.properties.severity_name | | keyword | +| jupiter_one.asset.properties.source_products | | keyword | +| jupiter_one.asset.properties.source_vendors | | keyword | +| jupiter_one.asset.properties.status | Indicates if this record is currently open. | keyword | +| jupiter_one.asset.properties.steps_to_reproduce | Steps to reproduce this finding. | keyword | +| jupiter_one.asset.properties.summary | A summary / short description of this entity. | keyword | +| jupiter_one.asset.properties.tactic | | keyword | +| jupiter_one.asset.properties.tactic_id | | keyword | +| jupiter_one.asset.properties.tag.account_name | | keyword | +| jupiter_one.asset.properties.tag.jira | | keyword | +| jupiter_one.asset.properties.tag.production | Indicates if this vulnerability is in production. | boolean | +| jupiter_one.asset.properties.target_details | Additional details about the targets. | keyword | +| jupiter_one.asset.properties.targets | The target listing of projects, applications, repos or systems this vulnerability impacts. | keyword | +| jupiter_one.asset.properties.technique | | keyword | +| jupiter_one.asset.properties.technique_id | | keyword | +| jupiter_one.asset.properties.total_number_of_affected_entities | | long | +| jupiter_one.asset.properties.updated_on | The timestamp (in milliseconds since epoch) when the entity was last updated at the source. | date | +| jupiter_one.asset.properties.user_id | | keyword | +| jupiter_one.asset.properties.user_name | | keyword | +| jupiter_one.asset.properties.validated | Indicates if this Vulnerability finding has been validated by the security team. | boolean | +| jupiter_one.asset.properties.vector | The vulnerability attack vector. | keyword | +| jupiter_one.asset.properties.vendor_advisory | | keyword | +| jupiter_one.asset.properties.web_link | Hyperlink to the location of this record. | keyword | +| labels.is_transform_source | Distinguishes between documents that are a source for a transform and documents that are an output of a transform, to facilitate easier filtering. | constant_keyword | +| log.file.path | Path to the log file. | keyword | +| log.flags | Flags for the log file. | keyword | +| log.offset | Offset of the entry in the log file. | long | +| observer.vendor | Vendor name of the observer. | constant_keyword | +| tags | User defined tags. | keyword | + + +### Inputs used + +These inputs can be used in this integration: + +- [cel](https://www.elastic.co/docs/reference/beats/filebeat/filebeat-input-cel) + +### API usage + +This integration dataset uses the following API: + +- `Asset`: [JupiterOne API](https://docs.jupiterone.io/api/entity-relationship-queries). + +#### ILM Policy + +To facilitate user and device data, source data stream-backed indices `.ds-logs-jupiter_one.risks_and_alerts-*` are allowed to contain duplicates from each polling interval. ILM policy `logs-jupiter_one.risks_and_alerts-default_policy` is added to these source indices, so it doesn't lead to unbounded growth. This means that in these source indices data will be deleted after `30 days` from ingested date. diff --git a/packages/jupiter_one/elasticsearch/transform/latest_risks_and_alerts/fields/base-fields.yml b/packages/jupiter_one/elasticsearch/transform/latest_risks_and_alerts/fields/base-fields.yml new file mode 100644 index 00000000000..0a70ed04bc3 --- /dev/null +++ b/packages/jupiter_one/elasticsearch/transform/latest_risks_and_alerts/fields/base-fields.yml @@ -0,0 +1,16 @@ +- name: data_stream.type + external: ecs +- name: data_stream.dataset + external: ecs +- name: data_stream.namespace + external: ecs +- name: event.module + type: constant_keyword + external: ecs + value: jupiter_one +- name: event.dataset + type: constant_keyword + external: ecs + value: jupiter_one.risks_and_alerts +- name: '@timestamp' + external: ecs diff --git a/packages/jupiter_one/elasticsearch/transform/latest_risks_and_alerts/fields/beats.yml b/packages/jupiter_one/elasticsearch/transform/latest_risks_and_alerts/fields/beats.yml new file mode 100644 index 00000000000..d5fd38748ba --- /dev/null +++ b/packages/jupiter_one/elasticsearch/transform/latest_risks_and_alerts/fields/beats.yml @@ -0,0 +1,6 @@ +- name: input.type + type: keyword + description: Type of Filebeat input. +- name: log.offset + type: long + description: Log offset. diff --git a/packages/jupiter_one/elasticsearch/transform/latest_risks_and_alerts/fields/ecs.yml b/packages/jupiter_one/elasticsearch/transform/latest_risks_and_alerts/fields/ecs.yml new file mode 100644 index 00000000000..bf9b96c5f97 --- /dev/null +++ b/packages/jupiter_one/elasticsearch/transform/latest_risks_and_alerts/fields/ecs.yml @@ -0,0 +1,90 @@ +- name: agent.ephemeral_id + external: ecs +- name: agent.id + external: ecs +- name: agent.name + external: ecs +- name: agent.type + external: ecs +- name: agent.version + external: ecs +- name: ecs.version + external: ecs +- name: error.message + external: ecs +- name: event.category + external: ecs +- name: event.created + external: ecs +- name: event.duration + external: ecs +- name: event.end + external: ecs +- name: event.id + external: ecs +- name: event.ingested + external: ecs +- name: event.kind + external: ecs +- name: event.start + external: ecs +- name: event.type + external: ecs +- name: host.hostname + external: ecs +- name: host.id + external: ecs +- name: host.mac + external: ecs +- name: host.os.platform + external: ecs +- name: host.os.version + external: ecs +- name: log.level + external: ecs +- name: message + external: ecs +- name: message + external: ecs +- name: observer.vendor + external: ecs + type: constant_keyword + value: JupiterOne +- name: threat.indicator.file.name + external: ecs +- name: threat.indicator.file.path + external: ecs +- name: threat.indicator.ip + external: ecs +- name: threat.tactic.id + external: ecs +- name: threat.tactic.name + external: ecs +- name: threat.technique.id + external: ecs +- name: threat.technique.name + external: ecs +- name: url.domain + external: ecs +- name: url.extension + external: ecs +- name: url.original + external: ecs +- name: url.path + external: ecs +- name: url.query + external: ecs +- name: user.id + external: ecs +- name: user.name + external: ecs +- name: vulnerability.category + external: ecs +- name: vulnerability.description + external: ecs +- name: vulnerability.id + external: ecs +- name: vulnerability.score.base + external: ecs +- name: vulnerability.severity + external: ecs diff --git a/packages/jupiter_one/elasticsearch/transform/latest_risks_and_alerts/fields/fields.yml b/packages/jupiter_one/elasticsearch/transform/latest_risks_and_alerts/fields/fields.yml new file mode 100644 index 00000000000..86b50cf0cc9 --- /dev/null +++ b/packages/jupiter_one/elasticsearch/transform/latest_risks_and_alerts/fields/fields.yml @@ -0,0 +1,290 @@ +- name: jupiter_one + type: group + fields: + - name: asset + type: group + fields: + - name: entity + type: group + fields: + - name: _account_id + type: keyword + - name: _begin_on + type: date + description: The timestamp when the latest version of entity/relationship was created. + - name: _class + type: keyword + description: One or more classes conforming to a standard, abstract security data model. + - name: _created_on + type: date + description: The timestamp the entity/relationship was first created in JupiterOne. + - name: _deleted + type: boolean + description: Indicates whether a resource was deleted from JupiterOne graph/CMDB. + - name: _end_on + type: date + description: The timestamp a version of the entity/relationship was deleted in JupiterOne. + - name: _id + type: keyword + description: A globally unique identifier of the resource within JupiterOne. + - name: _integration_class + type: keyword + - name: _integration_definition_id + type: keyword + description: Internal UUID that identifies the definition for this integration. + - name: _integration_instance_id + type: keyword + description: Internal UUID that identifies the integration instance. + - name: _integration_name + type: keyword + description: User-provided friendly name of the integration instance. + - name: _integration_type + type: keyword + description: Type of the integration. + - name: _key + type: keyword + description: An identifier of the resource unique within an integration instance or data source scope. + - name: _scope + type: keyword + - name: _source + type: keyword + description: The source from where the resource was created. + - name: _type + type: keyword + description: The specific type of the resource. + - name: _version + type: keyword + description: The version number, which increments every time a change to the resource configuration/attribute is captured. + - name: display_name + type: keyword + description: Display name. + - name: id + type: keyword + description: Identifiers of this entity assigned by the providers. + - name: properties + type: group + fields: + - name: active + type: boolean + description: Indicates if this entity is currently active. + - name: aggregate_id + type: keyword + - name: aid + type: keyword + - name: approved + type: boolean + description: If this is record has been reviewed and approved. + - name: approved_on + type: date + description: The timestamp (in milliseconds since epoch) when this record was approved. + - name: approvers + type: keyword + description: The list of approvers on the record. + - name: assessment + type: keyword + description: The name/id of the assessment that produced this finding. + - name: aws_account_id + type: keyword + - name: blocking + type: boolean + description: Indicates whether this vulnerability finding is a blocking issue. + - name: blocks_production + type: boolean + description: Indicates whether this vulnerability finding is a blocking issue. + - name: category + type: keyword + description: The category of the finding. + - name: child_process_ids + type: keyword + - name: cid + type: keyword + - name: classification + type: keyword + description: The sensitivity of the data; should match company data classification scheme. + - name: cmdline + type: keyword + - name: composite_id + type: keyword + - name: content + type: keyword + description: Text content of the record/documentation. + - name: created_on + type: date + description: The timestamp (in milliseconds since epoch) when the entity was created at the source. + - name: cve_id + type: keyword + description: The Common Vulnerabilities and Exposures (CVE) identifier of the vulnerability as a string, formatted exactly as CVE-YYYY-NNNN (where YYYY is the 4-digit year and NNNN is a sequence of at least 4 digits). + - name: data_domains + type: keyword + - name: description + type: keyword + description: An extended description of this entity. + - name: detected_on + type: date + - name: device_external_ip + type: ip + - name: device_hostname + type: keyword + - name: device_id + type: keyword + - name: device_local_ip + type: ip + - name: device_mac_address + type: keyword + - name: device_os_version + type: keyword + - name: device_platform_name + type: keyword + - name: device_status + type: keyword + - name: exception + type: boolean + description: Indicates if this record has an applied exception. + - name: exception_reason + type: keyword + description: Reason / description of the exception. + - name: exploit_status + type: long + - name: exploitability + type: double + description: The exploitability score/rating. + - name: exprt_rating + type: keyword + - name: falcon_host_link + type: keyword + - name: filename + type: keyword + - name: filepath + type: keyword + - name: gcp_project_id + type: keyword + - name: id + type: keyword + description: Identifiers of this entity assigned by the providers. + - name: impact + type: double + description: The impact description or rating. + - name: impacts + type: keyword + description: The target listing of projects, applications, repos or systems this vulnerability impacts. + - name: level + type: keyword + - name: mitre_attack + type: keyword + - name: name + type: keyword + description: Name of this entity. + - name: numeric_severity + type: long + - name: objective + type: keyword + - name: open + type: boolean + description: Indicates if this is an open vulnerability. + - name: parent_cmdline + type: keyword + - name: parent_filename + type: keyword + - name: priority + type: keyword + description: Priority level mapping to Severity rating. + - name: product + type: keyword + description: A product developed by the organization, such as a software product. + - name: product_name_version + type: keyword + - name: production + type: boolean + description: If this is a production record. + - name: public + type: boolean + description: Indicates if this is a publicly disclosed vulnerability. + - name: published_on + type: date + - name: raw_severity + type: keyword + - name: recommendation + type: keyword + description: Recommendation on how to remediate/fix this finding. + - name: references + type: keyword + description: The array of links to references. + - name: remediation_actions + type: keyword + description: Recommended remediation actions or steps to address a finding, vulnerability or weakness. + - name: remediation_sla + type: long + description: The number of days that the Vulnerability must be remediated within, based on SLA set by the organization's internal vulnerability management program policy. + - name: reported_on + type: date + description: The timestamp (in milliseconds since epoch) when this record was reported/opened. + - name: reporter + type: keyword + description: The person or system that reported or created this record. + - name: scenario + type: keyword + - name: score + type: double + description: The overall vulnerability score. + - name: severity + type: keyword + description: Severity rating based on impact and exploitability. + - name: severity_name + type: keyword + - name: source_products + type: keyword + - name: source_vendors + type: keyword + - name: status + type: keyword + description: Indicates if this record is currently open. + - name: steps_to_reproduce + type: keyword + description: Steps to reproduce this finding. + - name: summary + type: keyword + description: A summary / short description of this entity. + - name: tactic + type: keyword + - name: tactic_id + type: keyword + - name: tag + type: group + fields: + - name: account_name + type: keyword + - name: jira + type: keyword + - name: production + type: boolean + description: Indicates if this vulnerability is in production. + - name: target_details + type: keyword + description: Additional details about the targets. + - name: targets + type: keyword + description: The target listing of projects, applications, repos or systems this vulnerability impacts. + - name: technique + type: keyword + - name: technique_id + type: keyword + - name: total_number_of_affected_entities + type: long + - name: updated_on + type: date + description: The timestamp (in milliseconds since epoch) when the entity was last updated at the source. + - name: user_id + type: keyword + - name: user_name + type: keyword + - name: validated + type: boolean + description: Indicates if this Vulnerability finding has been validated by the security team. + - name: vector + type: keyword + description: The vulnerability attack vector. + - name: vendor_advisory + type: keyword + - name: web_link + type: keyword + description: Hyperlink to the location of this record. diff --git a/packages/jupiter_one/elasticsearch/transform/latest_risks_and_alerts/fields/is-transform-source-false.yml b/packages/jupiter_one/elasticsearch/transform/latest_risks_and_alerts/fields/is-transform-source-false.yml new file mode 100644 index 00000000000..490a079e7a7 --- /dev/null +++ b/packages/jupiter_one/elasticsearch/transform/latest_risks_and_alerts/fields/is-transform-source-false.yml @@ -0,0 +1,4 @@ +- name: labels.is_transform_source + type: constant_keyword + description: Distinguishes between documents that are a source for a transform and documents that are an output of a transform, to facilitate easier filtering. + value: "false" diff --git a/packages/jupiter_one/elasticsearch/transform/latest_risks_and_alerts/manifest.yml b/packages/jupiter_one/elasticsearch/transform/latest_risks_and_alerts/manifest.yml new file mode 100644 index 00000000000..24e9e926793 --- /dev/null +++ b/packages/jupiter_one/elasticsearch/transform/latest_risks_and_alerts/manifest.yml @@ -0,0 +1,11 @@ +start: true +destination_index_template: + mappings: + dynamic: true + dynamic_templates: + - strings_as_keyword: + match_mapping_type: string + mapping: + ignore_above: 1024 + type: keyword + date_detection: true diff --git a/packages/jupiter_one/elasticsearch/transform/latest_risks_and_alerts/transform.yml b/packages/jupiter_one/elasticsearch/transform/latest_risks_and_alerts/transform.yml new file mode 100644 index 00000000000..3d81c9efde9 --- /dev/null +++ b/packages/jupiter_one/elasticsearch/transform/latest_risks_and_alerts/transform.yml @@ -0,0 +1,37 @@ +# Use of "*" to use all namespaces defined. +source: + index: + - "logs-jupiter_one.risks_and_alerts-*" +dest: + index: "logs-jupiter_one_latest.dest_risks_and_alerts-1" + aliases: + - alias: "logs-jupiter_one_latest.risks_and_alerts" + move_on_creation: true +latest: + unique_key: + - event.dataset + - event.id + sort: "@timestamp" +description: >- + Latest risks and alerts from Jupiter One. As risks and alerts get updated, this transform stores only the latest state of each risk and alert inside the destination index. Thus the transform's destination index contains only the latest state of the risk and alert. +frequency: 30s +settings: + # This is required to prevent the transform from clobbering the Fleet-managed mappings. + deduce_mappings: false + unattended: true +sync: + time: + field: "event.ingested" + # Updated to 120s because of refresh delay in Serverless. With default 60s, + # sometimes transform wouldn't process all documents. + delay: 120s +retention_policy: + time: + field: "event.ingested" + max_age: 24h +_meta: + managed: false + # Bump this version to delete, reinstall, and restart the transform during + # package installation. + fleet_transform_version: 0.1.0 + run_as_kibana_system: false diff --git a/packages/jupiter_one/img/jupiter_one-logo.svg b/packages/jupiter_one/img/jupiter_one-logo.svg new file mode 100644 index 00000000000..9afbff57b0c --- /dev/null +++ b/packages/jupiter_one/img/jupiter_one-logo.svg @@ -0,0 +1,26 @@ + + + + + + + + + + + + + + + + + + + + + + + + + + diff --git a/packages/jupiter_one/img/jupiter_one-overview-dashboard.png b/packages/jupiter_one/img/jupiter_one-overview-dashboard.png new file mode 100644 index 0000000000000000000000000000000000000000..6ec0458005d73fb67d588e098998c2da2934ae47 GIT binary patch literal 417267 zcmafbbyQVb7cY%;2}pM!lEO?^E(JBpk(8nQR!6i)8_D8h8kZeOP$etUxb#_`r{!1i)iS;g!GyguwR* z_E^8lya%w7kdu(aS}s#Ms@+kLlfZfQ9gd7NIiGK{18kDr*=@1(2Na#VKEPan-+{S% z@$wU8pp3!pLjJz(o8oP2eYm~%`R~6nQ1o<(%D|qY`2A5c(9wy(|8sdSN_&x!|MPht zA_U^R0gU`U==n!J@S1=9`%fx;4^SNM|3=Q+3F=ije`D2KW2g^nk!8`Rn%g z^GN<I8i^DA zT@*4<@K~?COymnQL^u46rmNm!;QT{Pp0y?|8l{h?eldBFr=dZ92L(S#mflY%Ev?RG3-@uM93#2bOk7ci%jWw(H82B(yZ$%f#lmDq zMQNI6)#&4dI1GBGmIeb3W1bFUfAxF&BlV#+Cx9R&@6PNDu--XV{~*$mg#mb$-s4_|`%9VU;=qu|KsgVHx!41%79NTkmP=9iZA&LQPcWxhViZBAvoDIxLq7CK!s5C#O=qy z3B3zib;zOc-k3*SLkSzqrEy5&iu?CfV;5DzpIj0DZ3F+#=ttsfjMW!^t|84H0-A18 z;Buxn!{`$Gg1ESzn>>)tJgaz@v34nDKwot1Ds{QJ%(;`+?S5INNu?O=QR#+xd*l|m zmEjS`um<@9>&)#*A4b%n679fMfh}oeUy0cMH$&&!uf3vh=1AF zz9=ZY!i}9I2l3BkY-{`!PIR0f6gwJ*>P9Xyj`~mnwEG$#%IcpGKU_W%+_v%r;-wmp zc=99CJ+LcMGG=Mk0N7TB_%zVJbJ-Z52k&{lrx^J-rkl(PMq-Y@cw=CnHpAJ;6;qy0dwOwwL$hv z^GN0bqB%BYJAAk@!sskCe4;QH=RjO!v++>VD{C=i&dk z!QS}7Ufa=sGm3v6T|F|0?qKKjYazakg+0yALLKK6PJ7(+@Z`WufM;NL>y!6-H;??% zONvS`p%AQo;W#R`Y?12{r`s)uo5S<|o7GNf;t*Wyq2yxN6w~QEWMvkkd6Ut!2c?t2 z_Y>b<4-OX0y6G1fI(dHkY-d=fgW+cYV=k$ZMRKqukER%YmuchW{!Jk}Nx`SEJNv^{ zJ|;&%aTmgyWI^84$Rsm^Nz)_)xkBTJ^PY~^BXSo7UYeedpQLMQYLpkb8lUaTKd(M@ zC=T3zKJ=!d7;9F=zCWJ%-}d3UA9CUhpVo*9FGLzXO_FZb&H>l278_!XI!7UQ82LNX=0;v5_PPstjyLz zS(}@gTRq-G>nbbgZvqYV<;@H(sT#5)hQ`zL1ytY8v#|(EosM57pmH?SXE?RAIc;sL zeeEL(SCi6qXP=sQ zdUbzOXleXWJb%*&!dFMvj^Om^%kW&uRhA59y3kOIya5R!K|bw0$O$AM?{^8s!T&6{ zJ_!h2k%+EqkomIUl>R1seVChcg61Dgsb71o6VRAW?b;g-=PgR85D=aPc`Zjh0;sj&<3D*LopW@6)_$F_jbqY z$u_ynBJh`eJmVfpa=!;$7c>~}&Szs76d1~o;-R5=qjfG1DyUKnR))*dJ$8Lt+19=s z(9ct-4(26@O)vGW+!@imPIGs%>}!1Wa2nuJkDoJ|kY7q2=cbTDDxcgrKz|FE8>Uvx zLfNDHev!D}|23o7Or86zQ#*m(lU~@I1AHaz&8N+4$IM}8Ol(ff0M~exI#=h)d;;Tv zg*mQV(X?MaJ`xceD~6vG!UyI`aJk8OtjgKc-7y#zMTgIcl6|E0vF6pVN|SG+k>ch?62@tVhx zd%`mX${0Q{%^?QENd_*Ohrd1h>KqxP#bGbUmg`5)yu;muvrg&Tl9mZ7WZm_hbY9mC zj`freUNz75h(8CTtgNhU<}>A5ss2;OQzL+clT%pJ9C&M}i;98a6JF{d5~hN5N$xBz zE*?t6j*I>Za}L~RxtDKHalNoVU2vjGqIM<)S*3Xv!otG&Q=x?}K92*wt-&z=sZQE# znKiRZ(l%L`(2Rnr<@(0rv2op-q?-CGA*kZ@`>`WkfCvH z3rzzWX0(B?8AtIkR2fdg!g&oB^l`iezM~fLzB9pAlMg$%ltMf0Q?lJB)Z0-(INOHT zOYWG+BhYWH_%&ZrN3Pua_kWCgHs}qGQ>i;Ux3(t>41C(Vk=`dK)CqbB*8GCqWS6AO zn+VuvV+&%yta0p^p6_B?J4oxIY5MQ(pOz23MKOA`AEhh9?lx5jiN&L_eOTh8nfos3 z2s`ii$-e{Uk!0Qjj ziIR^({8DI1s5Cltc=IXO9nq*Ia^}GW-r)(*x0`J5ENoBMN;QkFA2Bm=LU~7$InFxl32}) z`09}0k$aALTw~C+ah@afO(qC@WH@r^43jBZYWV{4mgHNX7S)AKhTQ!QzIzU$2N=Y5 z>lKX1YYEY4&)gN_q2#9!dS>nM_}LbB*p>&68kcQ3wkfCRWoiUuhL$mO)fx*CtyOnK zLMD8WP3x4lHSCz0!n{6)-ggjlGdrj`+MO(iG#E_@Cl!L%{nIOTye?y`K>)>r6HNm( zR=2p+s-@;ln+kPyMICbC74r&r5<;(sr*H_Xia+OK6-=21rooz_?wO&>RhMba|? zBUU9I;9avnnDlq^RDbelE_WZ~Y+}Dz@|9fIOm-V@UvAg1q&tccD{Wdt_I!PdId14i zQLb35THTd%S$J~Vht{AwD5&K_Xni37xbn$b-|taYkt^OW)(p|8k0W;o2_Fz3VdnV3eGAU!pU|8?5wS~Mp(a3Hfk)C7W z)!Mr$it(et-c-HkLMGS2-0fKp2q-#+A$UbClls?b%i*m;2pnvSmxp zp)&Jj%W{=++|;jH01@ZQG@%gOg;$3$Z{mU12O*Y*Lu0@s7GsDcwy@Uy&v%5(cNmjJ z${4ymq0?I}KnECMj~f!P*w@CBG&r|%#O(|&GBy~5GzB%q>fqUjHyO~6&8^d_6hJcSm3*ACQXjv zvE}6gWNnY;?ah`ecxce#etNk!W*{5Chw9I(yhkPJC9;^EVDe<&Tw>g@Qa+cp! zn(LnHx!;i?!s|_`xuie^<5agQ8D2= z84V5|o@rk|`(}^g{?_XmR@15XiA?%dHz(TooQIIEuC9I8D@ib7sx@ZbgtRhS>xV^~ zZe^ZN9(DEgg<2*taB4KILW~)no^l?K z&S(=8s?9F%?O^hff#wUfoij7o6k=axyvH21UWD#{F~Dzd*bA*O*Bm!TUkE4U$pMUw zpL<#sobo)LB=t34$l`T<=+5JdbZGD030&XGfz|cPw$nG(2IuOY@9Y$OAUPu~(P;US z+UU3@unTDqkV7hU1kmenIPbr73&$7IlVh=1Y4B@yz22XZr4bmbUD?l$U^wx}XqZ{_ zt~4B>_MrG74c!ugNk^%}=vb1S9z!L)C&8drmv>F^a3D6sZFhWMa29)PWoOetvh}%f zGJ&w0d%PYL1t`qu7;7)j3e}lR6$CFVP-j78Mb@izqY{<1sU-X} zc^!rDrj4c3UU`JPlhHSvQebHDO03-3pXn#i({7VK_fQyh(ilre2wZFz4EVGKhxIx* zJoFX_+zv(_;@WZAr)g$X#Eb#lE^&elb}z@q);c3Hk96T==$V zfCKYnsGubDK~Fe+4{jb8NsM-5OP)|f_l!dRvQ7e;t8=omT;<5K?MDEh6JU_mYY%55 zkf~6Y=t+p|D<_iNU5jS1q4V_ykV*Bp?27dOykv_@jGB#s>`&qU;Q6V!6( z255o2V*=F1b{5||hH3CwY4JUzY_{uV7rS-v&r`)>Jw3uUG+j|bKmra-G>%b$#1gGC zuybk3sb#h^g!iS2nnP*lWNemmFh2DC;)%1)7rWMI@+dRms|x^w4S=V@?u<<&cI#K1 zaeQW{l$gTG|YBSqlD($KrUf$T#jLdsv^lL-X$*-oc9W*JNF zN?_oNhvp>>Xv*Oz_P&q&Q-wN02{}7yuE^-K%zfnc(-~`xfY#o7XugerdfQV#!BjyQ z3`1#fLmjtPp=vHNDH++xIYa9{6DgPV8M*rbfpTm<0;O$aMiIBsLWMpZrBsryUkKL5 zf@NzbFXqkg!M4Ac^}|P7Iy$=9*;(A9D32DP1?BNlV*oCz3I7)(QmX#BIk@-|wVtk^ za!y0HYaWFnHE_6HT!;~&U@W2X^=_+;J64Iubp-c=UFFIht%p0LNMeg+ZfBub<$RY* zlf2K3$R&BJ`!}Ohublgxd<6!v-q`WL)SJ%8rE9teX?m*XF(;pQs<~&|e}_Q|^)@lq z%H4K8YPduN3OQV*5KTHk+BbH4%q_dDEH?*+hj*xBGJbti#%?xCEJ@<-;_SROTmBu6 zqv%5#xAVz50>iG2zo3cj8yEd#^V`njU>!Pl(I@|_{8V#ubM4~o6Hsj?fz2Jp;|uY&rTKZ`bXCajqdgJ5TXc%VkEBfb6u10s!CO!J=frL^ z#hS2tT%4S^D-!7?z^t19w^!qmw|YVA-S)AiP4^We*4+cKclUj2A+7yH^+G%$-;`r= z8dBC!3DLrhCvpxRc`P5@xDioAxG*>4T{=xgww)@@5Kd7}_s+Hk#91-mxI>^g3_zt# z!%#0XKehKu@%;mHtfuU%t0Y8y%}VDvVHiEz~=`l~$Kp_S~Xlx(vy6GP=}3z$~0c4)RP) zvR3A?jp9(5phVI(HAH}$6w^|C^uT_nh>hKc)gL`tpa+O%7*-eZg&}+0_hb#<67cF$ ztyfKGZ;zRE2^7^1Z|nyfi6?IY!-CsfM?CV*QwUPx-gJ~L2xZgbm19;*vOm63F;tf#ycv4BW#>shVZ05= zcZuRwGM_AKNt3o?WM%uLfB$7{Oy+RDS%l$2PC%Cj!!hz`k-YJ#P2gQNO@C(t3+u=C zbwMuLqUGFLDevgEq}>D6dMJKZ*$;*ImlY9`>j_GW;oa)%8z~yBC5=CzH-U^bCJYMU zONQo41qP>=uM=cHr|`I9#WQHK4Ww{5%R=k=Txi92mmrQYtMp+w&exT3F$=ijoqs=i~k9fON`5m|?{1w(aJNl++ZN{PB&9 zbhDsJMQCPS9i7l4cJukrWOmCuyc<&LPZdz#NXe!otq~6i2xLgox6^q6oO~0v@ z42xpYDR{+JV_qGvz~VG!4!8Tjo)*KuVo+}Qz`)dZ^rWx-ABLq$bd;^Q} zsN-Y2)%9$B+1Ib>#IfHz5@5&?tM_P+*&bZI@%8g>7locjz^2uso~~sRGd^Sr5DI?z zV@Ga#dQ4_pO~G{#79UZcCiUR~(rR|6>=XIx*AfrrCodc=R@g?ecfayi7bRWFl*$XP z%#>>O=13-onhRMR)R@1J-=I+}Nhw!j%9TnF-f8ro3BO1^skWW%g+=F}H(W>f=JQ7% z<0Ek~6m|ON7k#dWcVWq=gQX#p4}*}eHBTAh9v&h*_#&+kSql^=01qV^jp3}cZOLV6 zGe2uqCq-zH=3mH2NiVfUM1&3uP4P@0QpQOrIj@x4$+~zO(RkwG;%Hd=FF5B;#Tup~6~tz>3Fi@nck!K(F~aA}MjY zp2U?qp8yd^pV~p80s7Y*HyZXOQ~6bko={8er0wD4h~!#}>{$-#U5}$?|g5)Vc@0=m)BpQrmVbY1n^QdIqa1io1N;$BojvL?Sf1H zt~mNc!c&Nsnwmm#t-x-%$TCliv-kN+W;}g2OiN4*#+*1UM~N}+W~0KEitL9EAHD^| zzBNJ4qOacE-Gx%N=C(UQl>ly=>Z12R!@nHck>rKa8jG1%!`n=|c)e16ex+);79-8u zGxIrDYupzu(mVrWU(y_;@=WnexgB#=53HCHNC>V*Dqqcb#ZJFYE%(Ede~OY_*%?U{ z9DCreYiQ_79t?mxv<`DUnk-Nr2r`jV}3ndh%;bU$M)ir=q0;IHx;ys5 zbBQP3{K=9^*n=BugAXsvA8CJ2|4h3iLL{OyL7J~Ogn^|OC4Mjz2tQQo2-yWjL$Ip3_|tY&EG9CxjbNpz zM_w(E#VuG`cu#TUJ5WvY-r>8~C;I%*7%aawpn#}6g{nesaZg& z+(zC+Cura2i_e$xAFw^31o%o4@dS%1ech~Hq!;yi*Dn^+u@e8f8-?%Q>vOJDXU{xLwaHY6s~}8% zGB7hzt0KrK$57uaDW`p$bi*R{`!`Z+;E4I6!gYMk-hOOh-M8o>4`l$P` z19od==sUpTC3~&v!0+r_fS<4f>+FOdRNXpU7!?8=?aJDz5U}BRHj$AyP*Q1EKJkjs z>eW!%GeznVEr6zMO)AGR7Nq8tN1{jdYGIVK;FNgydoeJjGikc!n=fWzO-L08aqa#a zEmRj%)kG2Z{Lp%;yWOBn7JZ^MHOMko`iJ9dp!pi$E}+#z^Nb2qnuF8;EX&6a9tzqy zDJ3Y)B#hgJIyjX;>^1d{KMD}ps)BVAFyW&syTgL>fVyXd) z?deF~N9t27TPg9uo4s7xj&D6CC^yR^S_?Y!#>gkyCg6J`fJtAo(qdzg zNvE=`$=qpbU++lKVxCb`>sT==zxjquZX5Z~1B0UbhSfz&j?g? zyV|45QyAvzk6Up&C!kkv`8H#}KMVfcD!rGw)0!g+IRRCY$EwAt`ryITi7}9o!;u@N z$Dj(4FW&!ZkFMg7mRURqyW`abrF+89;nLS<4pPA%nVE06*ER(me(o0*5!$08P*YRG zxYV4iq?TO>&vhtHDyyyS)bxDvLE*he)pR?h@Oa#c|4=9{RA00ki;^q4%<}FXr@#cu zhc0tya{CH&Ce0SN=&<;dloWYJ4qP;AuJDi9qfy@zcy(d?Jx{=eBXB|{4DV0W_GI%E zb4%osV>{%%RBBKMV%VjF&uIE_dK{#Ad?h{wCB~w&pdcXhc65hazRA`Ym zCFk=F>*x=D6-unox8B;9553#e1y$voQh`a;rkN?!!*}1l>!N=DcFvRwhd208<>P+X zY|zmVT8H%%6dWup>yAyM@-lp%_gdS?D41?eAHfptB<+kVb`umNn=du6k_}}e|FVRv zP@wF#uys_U&It`P>M+Qpjd{MG};Ox>QKnLu*1o&nZG#G^KE1izYBI1u>N5@aWk;9p&OSoFy24sV};J(P?`#E%|Q#b z?9|#HOv9ipHoIas5Mn|(SX;Bj<;J}`a#RU2>cPy~fB!^N{G~PBolQ!!o({Udzn??T zjAZ|Dl)-}iWt6md^xNct^mnc>QnXG=Tekx_-H}=jD~`+U;^y;Rbe?WeE+bOV^Pl5` z8MKX!!4bOUYnYLd;n@@vJX+Atwueod*w}5i_A#NB8*@kVhl-840JQSNo`;EX`g$7o zBKIHfX|z`=2E#%s5k^v5!QcicXG(A89)Q=MuIicYQW6HLjebBp+_gZSexivl?=zJc zu^ImGt2{#LjZP5^YH>rmvyPG2Yu>+RT21&lzCla_k<4Z}u|l+R^n|<#)DrRFP{Td| z4WJa=IwrR8ms*jaTrT!}j(GT}Jj(702F81PL&jpFMC1dD%)jfy_|Zzv^8O`qg=>+Y zA2g^_7EbDipnba{KGw3dVTkQ{f64A~W6it$c)}wVPY(wt3%pGgh$8h1n-=53@l;r% z^IdGwIb2vADn9SE`eCTrWVbUeYMV^PqaenIRx+dTm`$itP_j z3Q;bZ_HyBXVt(QQ#iCgRswavwq)zR(xMu+?URTufv-8YnxKa_uUSW7_InH=koi@jo zt?6Oxk273T7oc!F^no%yN?NRs3P!K{5TSVfyLrIKD@H47UZ7jWaTA?FNzdg0d$eiz z>MClV$Ld)|ooJ;(o^m7F-339Q^SNg`!R6TaR5vsL$pf3A$}FuY{6fK(C-fohtt(gK zMS&LAUzXy%pdbmLm+!F(j40fR2yeQit*W#&kezo0gX+{F9sI`RY^SG`FOcfwCH^J!{5+=A0)h0_~mWsExJEzBukTRL? zoiR^bUX~WSQH4~-FvDB`N(aUGqOV`8ysVfy&!33kL!w=HRJbe&W?yj<k|XHUGH2$r3y+8u(n8h+WfkHNt$$BusZmJinaX;R*?; zr`3I;4ft-EzD%<}nf~VVtj#(-@n+E6Q3ZKD&sC0ThjpurXxedX` z6PrUr3^W1^pRL;=O#t094g1{t35kbIz{aFe9nXu`$D>Xw%#0E`Irg}Pq0Mc z_gz&%%D0h`unmi0clZv}MAo6(9A-W@-nm zvv|$#!{P+i2h-;2?`zV3FylBe7M1mB5^KVkWYhjSH*-*%T<B`_%&#_I^GUEI zU{FbC&MZ7I9wjqe0uDctpS*;ByfejluJvyYALPJ_0x#WRg+g9-&)Xjm7aDzLGTz9M z3}zr#tHo!R*ZJb@E3{ijFicOFKp2%Xob*XXM+64$xgZ_DJ>~_sl&d}*UGB0t^!um zHQUX+K!Gp$;RU0st6C47`94sm+YC22hLc2sm;>=MN3NftL(jK|eL#eDK>a8e=BVU{ zPL#U@3Vy1MSYq8rh}&}KbFA0OcLDVAaXy~>UdswK@Fm3%ZNo`ye&4@;Z!vM&KAek8 zRWg|=%7pFAE`9HZaBxnsvXdO=@j(G%4%D*x(wqv3J89`fDTyokHn^azzK9;l9koD{ z%07~KtM#d5+_}~q7(LSXxi_4{_UbjcQ@UL80doefS>MLp4 zR^1)s*J^dI0>QH^;hNYiX2Bef7rUkThMDPZ=pR8X1Cym(id8yJkg@pE)&{)Un$Zm7 zBqi+tzhoCPQksoP7^)$U)P)bze8AmmTo(?eA%mE;J7N0TfMX zpcD_V?2DV%W2%P_@d|(z0jfZ*FeIL<#s8|*PGGB``ceq;xfAdRXvrNM2-u_Yd@KLp z?m;iLF!64xP!$%B&4S6{5j3SVb!ot3)wsRVdI>7QB#fr=MRbcl@;`wKuBtbeG_Wh_ znN_-V(>8JKx<3F+bhRlB?iuifCOc%iC>cb3`R zn9;<^8kt?Pgyd|cBLnZvE?FS&p5{m=dS88^Yf0dVm0F!udzJCGCMXL1`)|@_7|4Rl zu0)=Xm+=kk?rs31SCzAADQdDQNCfcGYx}P2zL_snYc0Bg0F+MOpcqE^VQ;HwvD>oM zcujXdG?P%!>;u&~`8mZoC6jTYX_RKop(Ua-fX80?9@=0e<&6-?Tgbod7OAs)w}pZR z4~P&B8{biO8dQ6{*^qAF3)1YbqYz!5?7fhhB*`y-YBa&rv+%181$0IT>s;=$2HnfC zMqJ0J@xc&|#~VYQ3OP%DY|d2cAv=HLLAG&w6Z7N7?0$#Ca-EKp;V7#)Gj&h-FutC7 z_vWzj^u}(HBZb>}oSMz_3P13eNS<+4sSojwiU+?6oD6ROhSJqFyxYkdRRYgWFFr4N zlJw6=EKzWEM-xkDk}CZ@Z`Wd`yXwm~Djxv+NnstoY5^Y|ykmvH&}ZFm7}Xf)G=?xh zx%3ZxKEekaEP9QCc)npl87s#5Di1W!RGXi^Cw<3{PS+o00z8Myl_+$I#ljKn%L)SX zE_cp%p^3BAt_+A9&Pfg{7fXryONI)XiMUmD)#BfNRTiTh?SF2HZYUYEJo zEwhYaI|MY8@~J2xx175;v6ENig7Qqq+RAF|e2=rs{Mu~>H1)^r+2YpYW`iTn+&VK; z)!f*a?16)h{w*CTAhJ%r)8^GiJGiCxuSzIw4{(_hYJlxvQ+w&I8$4y z3~#k*;z|fMJ+3`wUpi4{rZ$J`v6+eFC0I=v+AL<2-BQ z?QW!&4fmEcHcmIK6oK^bS;9TaHvgYDk?wH!w=;aZCpOqGX*a!*OcmFA->qoRjtSf; zYJui2F#VhPUhxg52HBg&b$-_pP``@ci`NeUMJ`2h!=Pits>u0U%U=68bV zaXXhNAB=8zI2x#yU5466gfs;r%fjks4yG+9g(y((K$E#7hRwvq0U{BKXqqx8gIUf2 z$mUyLspZcK0)sK>cDJI5*spY*y4A(OI4STz17zsK$*eyXj^`?+`S6fI6Gg0gKTczj zd)!o*@Yu}X29L_Oa%{#B^gtLqi*Qw$qRl!63{H;@!VdxSOH3uk=5lYD3#%$lf@Ela z?w6X1aV3cQxi0dgf1*3)lEI4qsM<=9T0QhgHqBL{%vT)*g1kd#XD8%$;qbN-Z9y4O z6jh{Ni&m`RA{37{C&5HEY!X4l=M4(q@!WwZJ&WmBt7W5~vJ7VySRC(tk-m`HP+m-snFwH8+W=TL{oO5hX9q$dLDTeF5a3gm%)o51ESXDCP0xUvG}Y|8E86n zw#Ill?*E!h=UYI*{?Vw&ogo6vnszjMx#lAu%}*7&M9M47<H7YMvq!lgEBLZCwDlHyS-dPYzPslpSI|?Zc7J&HBxwQzUcebn(g_z zGZ2MOIL4s(d1CUR5JpeGxXUowwD+tEqt4z2#R7jN>dN1s26bsXAaUIoYY;SzXs|ctVXxCvNJ?SH^?|yJXkSH9VucXo&F~^yxagFkw)-`+>X?Gg~oe zDwNPFw$cm@9}COhbjGsnx=XZ8PpG)uTTfzuBB24~t7*Dzv&A#77oG%n6uG`>EX_x@ z?Gt%Egpmk}Xsvytn5})vNDC+6%N*2fc2IAPv!RK^tV6$#l`D`F4Se%dqT*BQavi__ zVefPIM$d4vOFdMAK4OJPLvt#@&|HZ!t_R-%Y$ySHdmW&z-5-=>2q-KEYlw)5py~ev zynv%S`NQ=&)_B}by~O8q&SHPvy^B%qDS= zIpxmdK>sXk{2mMa;}0euFneAS@AHMHwk2lRbQ$sWZP0W$RY`vxdPwN!*s2^;TH@OU z%aHPBsn4@8e&lbyW>g)e5+mkoASkTqGuEvkO_n|3uolIyHe=;7I*#bP26E}fv5!6& zgAXX2NHNLhD=0oyb<(9ata->p{&&FKaxe^uC__r74E^*l>IcGy4i|`jJ1~l@>0#OzJGno1NZrHGUPvCj< zk73qUbST&vuvLd5%~R?gVQaek;I&Yd-`=WFTOC-VzRj!?a)Nqv0u@0w zxsqtYqF6v`to054yI@c?;D_Q&QVDJ>XU?Ly7ukOY^PeZX{{?~rJ$Vgr_D~7y2}D#x zDUtqs!X^gok{wosNsy?o`Mwzo4uR=_6V$#xTPnQ7t7*%wPCj*h{5GrE3O!PD6uPBP zw=w(zN!Q=Q3ltu=gKB0>gNXZ}=^3Y*7gkmOUh*Gsr22F)k&l0!dQtSiV5dNFS4C|= z(c z-+H=<4>41+!XJd*O_IJk`c7d&7X4!)*x#^C#O$b%u6Ff`@vc{kjD+FdzcT(LuuC3Q z5RT8iW;^-&uh}KT@U~*rT5G^Ek6fV&=I!~G?#Wf+IT&&Rs5}e}QS=K%m;0XoOSO$9 z{q?R*DgE`KbT_Jl*k9tA3*@JSF|YhVZ4CcQv)h;@R}bsY>)f{Bxp_h|w0-XWh210W zbn^lfHq}1k_r|v&ZKUb1w{0TmulGkUi0JUSf6)Ph>q65SV?&0Lo=X6e{Hd+ph{VL{ z%Y1e>FKR4+D4>$IE-B8WJL17js2=OJa^oFUw=TchAy80nwOu4!2b;!;@^j& z{@c?3qIq)hLQj6|YA-C3=U-;<&$Z}bf?o;#CF7qj{?Z|UkBsg}Xm zRn)f*s7P=SdebHh<>Yc`<={8e_ut6h2i~@K+xQcIp@AdcxbaI0((++>K0Yu=OpNQ( zMRF9&=}U;mM?Dk#12xR=MnsHq_AgSuZ~2d}!AIWiB>V&urwzfP_i9RRR7Th4skKl` z#5nrtX#Goxl=mTJ(358?mw@*S;l(qI)&1?jf6CUIilnXPf4-+Iwwe!RUTNoh82Zmo{ki3< z`KVgC|9x>AbdaXGrM?cNK^bBG|1|ff{+3X+Wtf+w>mY-$y~OqqU;k3O-}?6-chT4K ztcxwSf`fmaDjQtzdGY@!(z9**J7ya0`6Z}4x!+J)ehBIJUgrNW#J@D^H)K-+w0EXr zKF)tT4j^`Tpg8{TpztAz=MPa}^lSfhWPdJp8#P1WAC!IxVuc%#3c^l=xIv6LjTq0m+q{?;flch=zlJ`AI}NL9;PR<4rVze06Zi7}9UlLk zm489L^!%$gmV~1IJIwO8&i)eF zD5>{5R{(cN=XS!x7sZ~+U$p=M;x{cF8Rnc|m2f{de`;fH>}aQm^EN8krhyFmIM#s=3oq*!PVFB}O! zthw=XgfAg>wwq>3%q4gOipxHn6Jlb9(J7X!ooy9L=PEwwDVEc#7YCPNxfkf5r zyd=Ocr$_rnwiJuto48%D#U9zEf;1)COTsYm>kjL8j1boy-$=k0sV4fS6D3!*C&|?6 ziO@>%=;*{Z`!{e)L!W^i(h*)o6=9*F@0Df+p`f5TR`|eBhD2sp(`OYD&Hlv{FQxG;&x|{IXkw-Fl2cUGKy?WKvWcDVk-vyGW7h!Ha5H&b$^o@CS=&wAhi)Xiv zk6|Py$Ol0!zR2Mhpt&JpYU%`43d2h0%y)kmLH$>-0HJ@Fi+W$s_xdHW+*XQ;zDVY9 zc7|j#>@k1Gg!L8jp)+GnGMV1rVCz>N8HMDCG*EYnS0)x8tUnZT^mh|S$SG*yGNMY7=UK5wHLA8y<2=&!kup( zeZB=^`ke)-@d>jaF%#2SA`TsFQY_Rg2(13ktmOIj=g&P%qvfg0fvk?*v_xzXef$?G36I&mu-V%OR2gZtT|t^)CY`L4tbEh(2@dw@35( z%P0&Jv<)R)7)a3Rk6Zx^3h7`wj4|4u-M2A5W(SxE;g=O#Dm!tg>RL5J+|=6!nPJx* z$-G5zxL^nXaJ}@YEY_zb8~?c{_A-F8XgV?fji)}?c=P?2DkoU(PzA$o2Ew(Zt`11 zj1g@+bncnW)f{u=m)pj{vHQG+*k?^Zsw?%A8H6~3rf&yQg@ny-QE=X`ZiW$061Hj# z4{B0#9uo1qL%D%0b-N}if%V4$uBzdD+Vws{CsWvMF}=Gha|1el#k*v{I;w|)%iy($ zdROmjYjbEq%zMA_f>*=gWwO-r&{rvaHFf}BSL&)&UT5ChY}+?Y^q(<=qzu`_#g zpQ}Id7b&+&qKt?~J`PkL2y;ab=w+LWURp{i%bx2=aSiR^{pQ}+3G|V3^#T#LfLYEv8kuU<4-xacLO)ek}j(dwLE>E-1^PrLY!0fXD~A9-a{9-sxaJ_0ze*QC$h3 zn9(RYdxP^*k`g`DJxSe2FY50Pc4`*9~+n*`ax zT0l?60?{~J$XM7+#SHb6NA)cf-haMDy5N#J%>B-mo8Sz{G zf*|8$3z;X^E7OT*1SB0Rc()pdeY545G1J&Kcb?BSd<`py}z#;7&&rb>ntp+bb%h!dSLC&8Z)+BpdHGn#4ey3|=EjOCi z;U*H(r~Bv{de!D|K=y0Sd}pRwbBibhBm}|q7Qr%e;K(8qdAQF%V%~94ui=lxK#W(j zO^DmA>Rg{p0P5sGJZXd&3P#gG9QU^YP`7LmM&TZkX`PXATUIv{3QqMZpYC@YVL|6q ztmdIo<5NvWCA{6tm?n1XMG3;n=t7&Ntf~|CpwBJW$i~5CZpF)}uvlmq7COj8X)4vi z*GF8rb_Uv+?S*P^O=DU9Y4bHjK5=0M?IY7Ljt~&mYiD68OkWMhrRLC`E1}FvdD_I! zN7uFG5H;L+OItc>fB@_l;p@m?k8NJ1D$Lcj0ya&85Gr5;uPZfraB*zmQnT*<0zt%W{%GMUa;fx4abKF@*gzCNJm+`!n`h|esIx! zVtAk~noTM{`BFT{blbRu1%-yn3iN0}K?e}m15UnT76=Hm?^B$jR-~Hu`N;5C&gXuL zh>mG8R#!QD`}S?*R9Pl1v5Ar4?&rJMrdgV+V0Hhds;C-&wxpa)oq8tf%}@Lc=H+0(__q3H77T=jL;5Nm#xE<+ z@V==%wi=RLQ=1U4m=bT?Kn}eGaqmV24?uFR)aY7L#N7T<-XJx`aF$fQ*K7}x%u_L# z==M9KjmB~TQ(AbF5B8US+UzxY`h5Az6z%-gFXU=?%Rw~dwInT^%Uzwql26-Zu1~Lk zvdTSQOBWH=<($FyM9tC~GAlw4Aq1p$)uUy5O~B0Fwx|2IZ}9ILR%M&yp7d9}b}`G7 zNKO7dUqXTyiCm5AB%79($c#e%OE8zz>U7d*f^?p%VpyW)?s<+ z4(K?8BAVRgeH>TJCrkPfJzCdl4VnZH;>Bu-Uuz_rYUL)3)w0U?VnWRMUG!YYO+Yit zqkGFFTCW&wP0w9>gm3oSZ6O3w>$v%;pLGbWbJmn7lA zXP!aUcy=&-7%YwMl2sQcukO+Ux$gaLmD{|_dpJIJA-U2bgTf!NbdfktfROvmR&?HC zu3!C%UF?>;m|)J5Vua(8W)Ilm0|&t4HQ|>wO%$2^>x!T_ti;j-g`U>S=5)`2*zBV& zVZMQZ_;=Y!49KluuF5AyyB;$Qg`L?%Z0G9$BHKng!`luD&FMIr>}Su8z%O)dyJkKd_@33k**1qXkR<$s!q z+X8BJ1gP=TfA277H@K1w%U}< zpiw^?jLc!>G6ig6HJ8YgCba9nJvy9$qGy_# ztM*AjDfcVsIyR5`We?pBh5C=u=|{|<(pgKUMJrrTY=^R-q2Vi7*pqjxD~P)i4&~!| zb{-PhPLm{n(|%Ct+xoCyKR@g;3E!S(J(bC^CoswT_lU_*d);8ERIE$`Kioy5-=RQj zOtK!_1J`w}8Pxtms)txGd)7VG7zUi>TRk#Aaq*f~gf7r=()tLEqfuM5=Oguqb_sBV>iumC zC^w@5^5ryy$f5UW2%_0;+(Tv%rxq~0NorJ|I(Cj2WXe$&w(p>LK8)T?RaRGiwwDvl0n0MXB#!nbUJ3C0*Z@M9{ zcj|Y`kl>dnNar(FPE0%tba*^RwOICi+3)~6Qv={`+_n{+@3A4|a(vNpbzcIaiu!u{ zASPpwHU6H*9oNU*ivDhP7)^*|qr;=$=4?n>OElBtn9oKi36m&yc(O|d?X~s7w%xh!du_fhwpq>%EwWasRnydRth0K2j$8FemB<;tIRtUfUr)Wp%O?C6(Q2Va38 zQlyGG(csAU#v!6ZDnBCu{^P0~ylGbDk_CtdqGLR~XpIX0w2)cS)rqtXg|+tmHY_k! z)85gkR#**9CB1{lpVVQ>L2V^mBD%)$C(Qiapwv8PAsyEYtq=UtuW4zKL#OF6h1&z4 zoSOn2gTtpXSW1U-A6T5@HGc4mFHo5H=n--3Fb*j*@3aN%f!(SOH%MFDUs0Luv`b-H z;+m(Y?{6zDjR-q1peBLGIB!e8Qk8S~o(|ytD!E%^t)~-hz2srL)$WhdkS%40=_GV3 zAW>tb-R*@<+bFfFQ=DMOH%KD#E%>50y;3c&_sfIykuZ#|I6~=?Pr?-!{IZ&%wfGez zpBG}hF;kB>z1^f56M*qoDs^7>%kf~!mPKo9Y}DOeq-(Ti7dV+aIfOr4b$VGKh24Me zx7s)1^Q^?eHJmKZ9BkVhTxlIHoWKH+j850@J(%>xN#4*#qd^ul$y$7stq;r@yiSNS zt$_8s>-+UOm8Ft2Uz;-dD=A$DJ$@~&b~rWkgTt-hw+~MUP1tz$9Kq>uLfgytURo2Z z6~Jf&J!;J&C<{x=d>U;Uh#=Jw69ZL~BLp*cuGNrh@VSHi?Gh34=CFzZhzF?I=0msS zm?w0*d&!Bu(;JFC+0lP>H@ftKwK&tyPgu9YQs1qqy1+&jUe$WFJ?|iKrVOLi$z$gbAJHJaKF5Hf4JiH(fS<%UKU&p$oa^q_2COnW7D>XS#v># zX>5~JF@u{M_ZxuvOK4~x8Yq$y_O`FLsdsIs;t_9O=Inp@Yy~y0(+X1s628r)j~78u z(;~ECV4PVcSLIz>(X0I25r$hSjiq9Ry*B?J!j>Jb50UZl+I3sfM!~bt;;r)q%_zY& zld=@6V_zQ29AxdQ<2u)yDXT5u$9!x1^BC6OU+kx&d-E?`a>ly_!1(60e|_^|)mgb* zvo~g;H3zB=RuStw4Rkf-Hqyq}Wn?2y0qi1=4z9v%W_K}xVDuGVR()S?JJ@D@_-ar4 z8wd7rQ!u!l{c@*T>(si1Av*`jA|v%CmY(Xo+T&8hXnaeFY6f)BT;v(uIk({nwmCXT z0$%KZIaEqq%Me|xj@@iXxdO|S^24TT2+?*t3;KaKh28|mn zlUZ}&FeuTNSr4Y;8Us7%kvF3UPh6^52i=7CHIh45 zD{hT0+)&v2c)FhKD&S9y@;Y(^SVR%KfcWpj<@ z8?UTcoL|k%5Y(5~QD~Pd$)g<~U$z8rcj=ur5qfW`9OpPqRTq6GN3$rSJ(C>WFi~BF zO^XD1KlueQ_G=e;-KHNh<{n+_7f!2zLVHejJg`nZUduY&oArJ!HaTR#pZWO2WL(y~ zhDmIgw&hQgo{=$4V6f9(YZQ<>UWI8hd=M%MHZSI^4s1cHtTR!^iHSi!<#iEdKbZb` zQCU+b5>^Oa+tUSpD~#ALsqPn)M4TQpQ*v|DP*qd!9vf4B8k=!)b(rx>Y|j0}_2z;$ ze37-JQ~lN`COB)?>aP3sGNOy@TvXjEbdz3=69jLb@J#67wV zbF|4*3*YjPEvp(8xHp;RaSddRqq=BneFi!@JOpla`OUB8mA$HKXb_7FtOIk#@CCFL znw}{O5MWWpF^z;Y)$^*9aBRWCdK&BVx7x_UG&UR;t(oXGQhT-9{4CkP_lB53@&r8D z9eNCl?HQD78D%m!gCOLI6%0HO@+g7OPVd5k-1X-4*8^1PS38$V)gPI7P@+0VHJoN5 zG~p^hji@PJh{>z19yn-cFJm_s%KVwpg6Zpr1N*t{qju|38OroKcywV2@S%0rk^^I&o5PlE@Suikc9qvu|4~7^Y~HS}WwG8&%mG;_RuHiJhfvQqqD(R3 zpm}4FA394kBB$e&q>ijw{6L>H7dYO-v_tlm0hjSB) zl5rasH4G%4?l?H=u_TL)3!1aJw(P5CT*AhA!o!s*s`wFig(OGyXze)P!Uq;IFfs_9 z$guKk-kulLW4(n|UN;z`LuHk}m$?5~opITxX!Nun=gs01Jj3(`ik}4PIT9_SDCl$=kO}HZ zeq=RmI}Q8A_96+kFDYXOZaFy2c06I*K53>CeJ&Fh{3s$K>|1BsyRT-7a{L1B=Qwvk z*)RJ{=Q_)Gif--Unlx%&A4NrSzJ_#DM>7DmDT88rdDcoY1&4+-e<}q5yGz&(vqCQ$`izG=z*r(RtH9Q$#uK0DpqAd2U?4}mv8QuDB{GJ+;-+5 zis<0ZmvmQf7_u`Q2d7c`m_@DxpB8yX@=+O`Zh=)r_Tx$`Nhqg=%=+lU(rGu2`PtbI zzmm%{**Pu>rPu5j867L(NgWHpgMg?FcVAiY5PI&keyjIBdeU#*%P81(bF2pR?I%Ds zQd>@8-r7#r#308!dW@GGpRXt#?O0L-(>*p+qFv1OUDKj?f6 zPBxBR+tzi*R8gyC?daDo=h^&-)hO`ttPWA;Qfyzj-Mofm{S;?g5{v6jOa!^D^3af) zmjd$>1k#_{+-w|d18d^)1mWoEBWZXu(;%5)LNNAjSGQ}WKl$}nfnIB!>zl#B;Vkuo zW#MIeb)VbyCQjrky)z-9&!70eIWh+M2?kvn7(6()TUeCo75h#PjwV?2kOBBuM=!y; zKF(b6e3JkVTxWzJ|Fv&fNka9>iI*3-9q3n#%Z+zxh6+-qb>#w{PH*J9_DbihaQ(8^ zXFRh6yINMm&-bpG0R(1>u9&Z>h-0T7em=sBKay;D9T(<4XaeVUDGCoq;|>WXquX&ektLbx_}`0P#`>^j}XJE&Ceg3 zN6{!m{GXvA*?568E#B6~?t|Xt&?w{oSV|WBpvwQ{`4>;3K63+gipa`g^GZa-Pl9{A@nqQL?{GP&ocjVF`CboT~EN(aP`WRtzcE!yV2?@f(a`Tt( zMb5EZp{cB{{{E1S;Ht~UNDb#zekc26rFQG7Ch={&m+v|>I2@8EgDUBat$5_K`Hf!p zj6bc)Y*YK@CUYvwd>?C{^r0B@nfgpVN#_wP9YaZC_*#u}%@oceprtI?!~Q1(as)9X ze?Jj}$;S^!F9+9vR)X#pZ07B6p)25f>Cc(sd8KyyC%r!rI)KeqoqrfE@?lDks?Jc! z!pcnwgy`dyvJ;rZ&6HH{Pfx8N(!ZMJu;qOX9A6Biqq53&NXWhUHM5U3oN1iDi7qU^RlVGDi zO}VQvDRTo*Gb`8%zX&t3?7PJ+iZ?lI$Js!21Ds8r;=b{1^C;isXcIWb9W6+YU|7p#C-I=>lfWhgRI0v?CA1ZRL8+4Fml9XuBnHIL!BI>V4o2DjKWk#b_i17x8tBIwpv%2CtGeR_|XSX`~J4YtGNg4klLFkF^#UdX^zodr4j4iBNK!E zk5Z-6bfncGr#wmB;>#ew+b#|8O9Z+7rU>_Fp0>V^0E%;qUL|-tf&@D6FWbD~#o&v8 zvoCG2CW;kM`DlpZLyhL~HXnw9-7k=c_mo@U3?1^zWIh4uWJ@zb+k{}29#VON^0Mjz zEk*&LIxgdb1(uXI5PvXmY}w}ylU?`t%HDP9YE^`>UYMe>$U9Fvy1PrW?|qT;zEaE( ziBXuznIFcn4BnTh0N1ubfQ<4|C`n=A{MuacU`Sg}BB4-$tny|W_?rzox#kn`3Sve{ zc6OMS*{J>WflwxxwFu0!>Rdg%hzI1qD(vdfjA*nzIZ#;MB} zjoG>olkWjOH&BTtQFQ8Vl{%T9ftHT;^=n*z1FCU@+eNMDlU^*|7aoyUj*K%DE(?)r zmz*5)zE8xM&g#$_Rit|m;}P!`2?O0ZVrR%wm7x0V1B0DJ!D&(dnScJiy?u&^74fnH z(Ngbl=gF|QB$oHCB(IVJbF;n6g<9BDBIT)fU&>zWM#EaFikszB;UfZ@N(zjlW9#*Z5>Y?o@dOiZp$aSp^Y&N3bt*jw z(eIf>Ns6qzF7Pc8qwn?9?@^@e2qQvj;v!{rE0C5iE^6j{85P`B1-K5MS&y0I@YrlW zjDo&DPvnW9ROAuoxar}eeK5x$bmZUw*9N;`n;>_>@% z#%WJ02>s2QQsG5}gRHGkteUDipS(QS?ssGfvZ4n8)s}&p2RM{L=ImB@M)@~Cw#{7y zMtT?2=oO@QY{X?k^89!uu^9phAW=Er2XEMq^k`ID+(3F*@ioFt%oK47=)h%&H*tk< zTjZ-Ei)11-(#bAhuUM#Q_j8G}oO20h$Q)@v*ya3{=HSNbs~~rGTdfF*dV+ct_Rl{e z#JYYp>ohlW9k7L1CbSI|pWz6ani^Zu=?@mhf2Fc8l+l5BnG_La;g(y_vJ9x?NIP22 z@mNVHLf0#vcnLW@F^-R2z)Bm4VB?v(w>AKP6@?AK8$y&97B!)K_YeT~zjnd_3OEiF zjDadR@?b;fV+z0MwKVcUep5T8uJ))!#qVclmZ!RoIJ6|oFRODM`(E&;w_t{MyBvbO z*N)bLLh5Z3NH^--^g@QDEot&IM~#{p7}Y{*L;e}*qte{t%QFqJo>lU1 zm(#D1t|C0;blL!O7&f1zqng4MrY=|xu615^)=xFaEw7+MjGMU9G2gPzQD#-MndJr# zd8kVbdz})3&&1jZl$G7N7u1WP^!8a$Jw2#62+!-BMMY>ZvC&aeG=6Sgj_N*Jhg(A% zH%7J`?+z?hHR{gP%Qq@(>J@*yf8yAlm~0A5dG!9za!B$(S+6FW|?UaxuVq+0KK}+2N``75fjc-3$?Kw_YJuW zKHfns6@+OZ>w#0GH;kh57~1Gm!s<_PQU+l(nQynM{%CvS`pXkKkS->vLk*ubj4M~- zg+)j@_A$G!zSH7mu!gOvO2kyT8{jIGcT|*R0O~2D2T%{#dr7eK*r+N1H zYf>Jy%>tH9-!xJMI3vJQXJEG!oa54ES@R?)+4jx%QX~98jgeXx~@KO*sNDnH{mWT zW^=H*#ntq-BoolM?94a-<#_U+-j_xdpS{3OGrUxd2$g1rPcK{3H#e1sfh&asiZX6u z@vZmzRWcG@@RlRglQ&ZQ9BD#sp2eTZ6tfY3sSI2ygsJg?L~3)fSuMa*iHRxFKBdzu zj4nyRTU%DT&xl%pnn(!h4?AfntaD%K$}d_agQvCZ@@tGGNJAdwxjdF#jzam!>rh}oQ-D-G0f5~3VoW)jQ*5%Hqn za+7E^;1QjXzHwe)9~hV~7SWS)WL9d~&CQg!zLkWxR4HF6X}Csvsd!O?2O57sH6GWI ztWb;HHm#FZ24Y{+hC%|2_SoVXG!}~*@{#b}-q2>d>ypT1@|7YiqY?8(F7VU!HA_GJ zgx1Ql!AOCu8gJMefVm<(*=i;)KZlchmzv@u6|YqPBy{xdX%^x(B>NryDuG^m7oY`F^}9g!#}tsOD6 z(C-Q6P*ss@@;2P-gP(m9@cqDEdcI0U57zf8P)5jHn>ntTka>ntong(1W_-xI8^yaz z;+3ooqwpNC)XJw8U@%9_k050d7gS0F@!a(1NI|<+j@EiEbOH9b%&C;`H2v^t7M0)o zMhD5MR$jo6f3}Qnvtfth^_&j~dAfs0-G>P0s16Hfvq!S3uIsnLHR>I^#wPjEAduLU#2IJ2MRCC?w1^A$UD>!HaPjb9oR6=LVfTiQ@i|Pp{J!F~NxChAx;OMC||b zsNsmumo%=Iw*+Z2)G{9FM)FZjYEuKdugTk{mF21Ij)(*nasF|!j=Z_l`zQ-y0tD#+ zpqH9^()GX}iJel1cEs>L*OcAfLM1KsF;~!)j`jDAmEDPEJGo0Mc^NN*xOUMF zd8}%Yv!Jl+&4Tv_Ogiv3Ad^!<*J(hx6T~0f{22oQ!NHHELP5#7nNz=Z9_P%sqtw+D-#}al>^?1U^gT#oLv@O<=^m_tN z?OK$m>8CMZZD3g{R?Ee%eb0f`(z`4-ZNf{=z%Uxzd->AB=#%yYSBYw}8qW;;Q%+Y5 z(AXoqJr1p)sw(wjy;Y)N=a2haq$2eKGMOw+;PCOni63);RIWrGSMDq9{RoZvmC=*q zLWGxd){kfy1ArWupl0vEuKU~2yCKOc9p4};my2AFv>n&Z`Hv&X<%M^nS>r@*Xg9h` zkse>{8EM3$s~Q@Fug8w$iiOnD6$F(KSFM(+a3I)2=Q?3?MVEGWU+nifLuQLfOLZUD z9`3ma@RC3&VJ3a4bb`YB+JQ~d$RpJ1O z5PmY5uzPUdJyny`Bv=p`jTd4zOwUE#y)wR7=gpZKA1b`SN9pp1^A?V zrRv%VjAP54lXaVMcFODSFD32zc&k10G!x}vMP|1{j+iaACVTTq8QKZ9KkA9ABy-Sg zr^uT#d{jPuPzXa6d}qiS8l_tC4MsRI$7h2YpvrG`5J2oe%HTij_(aebj;^_Wed2=-jL5w>ZNo6FSr)7$9+ATt%nb)Z&lL3 zbH+0pE|ZO#(D6ej`I!XVx+`Y{xDeaGK>A=1h4z!4Q|_)#WPKvdYfI#;VV^s5yZvT` zDqsuYT{DCTXC&p;y*Px_aJ<^n3usu|GKqp12?Tu$A&y@C`^-F!4YyYW^+exOkmp{% z!9X&ma%<$^+|YA|vjU-hFC+@Gxw%n0yygrL?jI}4Hb>z>+EVJ$A&95mhj@i6UZNm% zrHA9Tx>>;!)Dyz3oTw5zN6enEUyq|+@& za-C!uN{Lr#`Dm~MXVK!;^428XDYw>I_wd7s&a1o4jkcF>Y^uA*wIp>NfV-98jB4B; z*-*Yc3QwJ5D+qEgBfG5pvgVIa zfoL%2yKZ+^ygu+4*}tlsUbP%86i39GVPss24PP)o})RI=#oGj8j)!eRGIPkt7w&jecB?QniaF9adg zg)ZIO;;il=&S~W}dt8NWA%|(uObP_|WKWCKY?gR1T>gp0adz9)VhX_9g z?ZsZ@_Opbb5-rwy&%Y-$;_t%Vxu@H~yLXMX8$=G0#2SXwJ{gLq z_Yr(}49bB8`R);%X_HI?6?il0wI;&-n(FZsm8h=?`G}dI+TJLromo&P)s%)|YI~K# zilY4VgSfZ9jW3x4+u;yXB|YRJ$$Y|+G7XGa_1*KNY3e#;R97Jx8y&>9e1P`(JoBKB z=^~G&h3Gvm3|5yaAdZi}GsywRcK^~OIXg$YxtoLXJPc#iu- zMB)3ncgN=P3X@BzZ^kXh73v_OspV}c){+XHZ!*k-c07u>zcE7Gu|5_Cw4evTdzu||E~RUKcZ7?^ zq^zi2`*IqrZk&uZ2d@>6V=D{q%Yx9oLfHxAb#D<@GpZ9w3;_H=`G zsSf(Z17f!R5TGZ zK!rM>Bq37)S`k^Z*%et#HgnFeIg+MPy+f3O_ocbHdBhznpo`Wj94%}q67Xh2;G$)8q%~X673JT~o7`?O=X;fem zv9TqMUsq^%lqT^@1&NteRwFqmjWe6b58?Gvk@)EaJbQMFbt^Da$G|-~<~fqgn_h?I zbZZvoDb$=L*IYl3z8?kQR^8FafLvZuDa|&gms(Bj)O2y!z5Dc0{*$>3sK1QY>2*F# zYwyKkcD=EM4Og!yXZ8;=fW_g|y%)q&g2h%7b%}0MStoBTwP7l-m$Je8F{g|6NdgaE%gN`#ol(o0AJFEPPLdnmj9r?KfW{+iAFjMuT#A>T330YvJjo?L`ZiOI{?V^6tzU z8|myUe&l?%kPJY>nUMXF$s$1c`X)aEhj{cLFp}nVLaeJS*5Sg%Ao9!9+mcLj1^^6$ z=L~Ud=vD;ktVHMg(|Z-U()^YRnafbmpJEK+8@hSE<>wyt&>+X|2y5-GnPP@_&R>jw z@mA(MYSjl)?pMKR%lU}LH1W3O$sO;mI;iu7If{bP)<)u$a6Ii3by`m{`!Vc}PogX!)poSSxoGnjJ3JM`Ms^E{uWQ{V{e6 zbz63mc0~L1+&f%uN2ZT8Z98uJv&zf^4&@*4OogY=hwEuymc?#e zN}OR~n3~*o>*fNp2KGB6z{{s}ZU>KsU@t8t6=vKd)IS z=GJ@fOjgPgtA42s&#RlN-YesYul*HfW?_zF|8bMk^K{UkE=J?m9>P(c-ykIr=n??L6Te%F9aGw7&4NOw^=K77d;)`br& zxCC!JX|}5Ne&}qF3?Otj8X zi6npmSDb6E`rB;N)b!+kMj@@?QFQA4D~p;35gHL+!WDyPu&%Cl;__rE-aAFl!BW2Z z+}P67SR_ zm`*=#4^J0pXW#8xhvq#8KyQoO3uat9!OXWsyk^K}5EmTGIo*qLuL;*4493moI1H%1us zgLHFxF-(1Eyz?dV-OUZdy2IQ?a$@inX^(43@1d72tCzgM&=3PT8s|5$en@)B)CwE# zgVC3?tv0?7ZXWV0Y7?uY`-5IC-)2Te_NMw`1^sHrgdG#EM-1WyYQyKTIb(jH&_Y80 z>C#v`gWsOu!Un`99Yqw-!?sAq(e%`JS5sK0;_uk#=^bwz!Xb`H4Ta8Ba1t(HrZBKa z$>w`U{Fw?2#r!WT>_1M#KltErTN`BPyspnco1HqAdh3jP`%+r5ldY!yqfAYVMRYJE zi7+JkJNER~$c}z@3)3Cq4|%d~<}$XDHHixQ%mx};WrQto2o&Pf66b0Q?Du3o-$XhW zxeoY$UDWmsdH#8KancsdY>$747US4H?lSd|2rxMO1i+~UYI+`p4+o67QfK{4>j&3p zWth5H!vp;n7MoB;Q<(2u2S0sEf(eK#9&Fu!4AKmwc%a*8Ys_bRQH+5y%a{*8ME7CP zqaj5A@tS6w$+l_#qnD76&iHWikV?t|uik#9>A?KbE(Z(o&LBMg1u04w`YWGtzg#G@ zXgk)S)bcq`63_mJ*5MaxL>vtn`)24beu12}8e10L5tNWJz!bX1#>j4NEnnw5DgQ%K z`p3sVIUFH~jHyYCsuajaRMI;-CQFztVO{mulQ4y@-!qabn-f;;? z%^H0lcsV%W*4NR`hMXY;f@qJIkV+_fAOc#@+jNhzT#9i*=x5Bt@1*X(Pkz_AwZnoG zK~_kXv8KYYIIl=623Q#dlwZE}D9|0kR2sw{6wxeKIvw8#xvaFE#aM&HQ4OcH#R!N( z@;~cc&Ko<&B14JpFtz`EpJ%7qGvuKL0b2A-J_P}>@VI;yia(*$7w2MU zJUXGFx?1^bhz!KDny=r7snRm9o*SP=G_>0wZ0e-(MoDm4XiQmms2#;H6GO(`&@jK< zcYJ0B{yFE^`HnA|DhjZ?d`_mr=k$hF73%h4*PxSaoq=Ba_c9^y;(v~K@#_J2!6ik} zWWgD0tn=@SGh>j9INz(`cMwb zru`|B)gS?uFU;{O3(*YUk=WSU2FAs`BP2Z3GdG8oo`MwQaQP#_o;=zXuIL{XAbyWd zH3GB-fDd7W_(RM?IV266JQB(1>1`pvr$KQnDzZ>ueNq{q2z{#2&#axvUL0u-UCf55V_$IW;gW1HK{{3%W`*SvJB)LG| zzrE1E+wx2nU@S%aD>=M>yr9EILE28r_qP2lUo7?qyjp2wx}kqV zZFJU1dT;*EQp6Cni?W>6fyOH|eqf+jTi#qu|LdHbGJ46kK16Kb|G+sA_1^r`QT4ov_-Kki76(n%48l)+=-L0B3h?|d z%d+0@{!Wj6{^n2+@}om0wA$y`vIdN`#{X_4={mh@Jw1kkinP!w`bt< zP0G9N_Z#|Gz6U_adM$sc;hLS79V2+?0JcrO-Bqyz$5qj#pQebv1r%ez4@$90ccf zmg4e#hCq8V1iNQ~$;dTyH5uUl_Ex85_ug*{%{U002kN%AX>HX8m->3m=*r55x6pOFgTLQ2C+4<;gzUA*9b;Sd3bw0@pplqQWH6L%wEoic9^7w z_M0slyp>jfFA?^OPFIl3^$+QA|F3KRb-}ek4{wyg=>I)NcJ*laZ&VVvQgnLMrt~+f zQ?YSMXKLqRio8;>HHxb5kTj&j+GcC#YvR)=rNijvY6)!$BP7O(3vG{CB2fOX4!R(w z?6zO`S^wPtXGuO?e6fVqLW)PXp<2yzjDZ;zRP5k;W9kVOy4CY9(r#s+43q5~{j)Bv zw=Tp24aNT)d+)z5=(BtRn{F`1^v9!zbiFg~&byF;$QaTeyUD0VuREtjv(!Qzv(zu) ztq1V?*``s$EDH41>&g?0`bsrfyUfWaz1jHpK+>^)SeyU*OCC{`=re^ZBm#d`AvQNhuvu0G{xVT2*N2FkXTo%uL`)Yt+=P z)n>fpF8%H1#*7;$84-^wo!I<)o`8d&7fx$Vk8BkyD3ToTKbs>%LIh1zagSFzqP*R% zAvq>Qlz+Y=Pz?j#z<9B}4Gxfs-MVTphLX2sxG2wZ3t2A0QGI za}4w!j}+1+fxug+69yMA>HnOC;vHxMA2eJX0pm8?Y855%B#++~NYYapz5?ICTofKKa?A{CLZOUe^;H=<|V30{_AtSGh_(oP?@2pfp03nLR zlsV_?7MS}ARLSI)a@em*q96(BuJgO z;eljr^`VmG`ZYS9&ssD>WhK<|%F5c|Asob#tE!>#;Xg;=d3}vuareHOp!#DQa;EeU z$Xpnz(QpX_jN5IeRPZcGAHc2`6;UrEx1u3Sne+C3hk`iVYWH(^5Fyo1v1!`%^^6cz zRE#;exb}evE?W5xJZO3Pm)@2p`L5^%bxhk?YA_oN7>!s@5=g#Ar2-XSP8C>M9#*1hsKAmRm9P(?3Z|dC*So z6Wt1$G&T=b2@$KPsH&?M7Pl1^tOgaziB1g&{9hfJFJP~V|9-jt@uG1C`SA247&pz% zDn}c)oQJDSjWp=^wz1V;d4K6L?n=E~W{IdyO>DtcEt>N#FONW4ZQe&-Vv&}bGT%_Q zVbLcpPLju8GF4x^n`9X>S3lM#^?V0eHbVLX3?J3V6*7xd+ZASd7qHp(rOD(dkgLPJ zTP3);)HmAV6i6m8%)EClW z(h_0c69fJE{M#}pXlWta1aTG;G^nB!PuB$Rri7e@~KIFwzW%3b?Qh^+!Wf~1>DfOztD$Ob8ET4n|ibIPs@ZfCi z^nF-}3ml+y-n*r+fF5WXKgq&8@gGO6aRhXK>3`0xKbP`_0eAnf_2q|E7cd<_7&G+XlX_9C%HqDD-bArGJcP z%13Xr{~=71Hel*bU=JMGkDUF_*#KquFAmu6lZ8ZxsK4N7W}-UwP9W@mT=Tz_1Bi;i zoC*06-grFz^Z&06zO4M;Jk(>VPV~RK=Zy$421x5N{$^7(g+TTHufF|Bm22{Y+^ETb zm=o#mR}Mllo&J4|f6cDvlizx*Y|3-%7@_A*g4TCek{G`hqosP)5K)Mgi{76&>0jFE zlyTS*p}oudkezgxx3MNj@+pH0w#^kRHuc5w)D9A=a@N(adNnQyhY(~)B5e8_g!Zhw z39yj~DEx;CWryUW^5v*o|+l8ZX z+NC2_Wdgz?>~JK>L7$v=dke+?%Zb>-lQ;NUc(<(W1_VcrY5D9E^4hXw{+niQhY20|8|(kvUeX@K zG9FjhHtfS7I75m-`(x0x4y(3Q3OR)SFenwvRvHBwv2iPcC}N%NFjCj)kf0-{QEP!g z2<1+22~NS_czZNE$k}C9#{Ke|iRZK6V*H{O;!EKc$be3R`qA--;$lte%Qf2dvF^YG zzRX6F20vqUm>fr_ThH#yi&TJYi*=R}f_`^;$IB;-j)&B=T6anGkf_Xb%YNa%8126m z_|K4)yLzNHSWDm zyw{9U>U#%yOo14Uo(yjYB6WIlwRTUJ#_Z?aH@J>@gM;V#ML`4{HV`C>^Jlv~c)$9e z$sB5WOVkNgd2j`Ns@}6OU$hvY{oCCA>vbH&(1m~Q^OiFVK(Vt<>}Ugbp_xat^|Op@Ilv{` zTw0dbnmVo~ULs?QB0}D>d4?vi!=qx``4#6EDD<~4PtiWVhbu0l8fFsC%?UyL_))}Q zwlHpw!xFRa>Bw&zfkE$R5^!VqQ?NFpnHW^TpR>bHY1?C=h+*50*74AWCA?$Vd$Uc| z73G-E#|eSujZw#ZPe0m?MV)tb+v%!6OQSS1puTaGG5qmzC&K5@%?QJ z2tPSG=nL_5sR5en8UQ8SrFTR8)*0>tR)^Crv4k3J@nSMHZ)Y;EUszJr zdB2frwFx@giulmY2p|l+{a!WYV@D1Gj;{X(ul_OgjTm43+w&{vkqpKcC!UOm@A~^7 zZsmU6k!2!|tcjRS_tn!>=Q4_xo!r+nK6|H!W+X@dN$z~!&qv4wR>&cY)d87Unfk;t zl$%yR9PQF|Jm4q#{7?Jj*5WRNWw!jZ>pkyy*=EKsJZBpIkny$Hcz?mi~Y-4uVonUC?V*0Ji!7OAihymkm4wRD1it` zu@9G-VmCMlA-LJ7!=LB7qoBo`M(F@s`w|%}Zp08euVNmV;Rwu!%p~9a6gor;Nf=EL)1m$B$!sM2 z$_-~!qS6%bd&&5{k^Z%2A5%q-q06kS1^M=<6au8xPLjs77Y^4h=}p)#(Q07w*%QMB zK=4U&#V2omHMzf6rq2opVSrg`$Mv=47LE1brP<{aUIM#Vn#fbv}1yJ`5Z znJ!Q``mts)b_?Kl?6&H40L{`Dufk8fVOJ!-Eqm8-`Ou;*uA(A}HIQ6yB&fBFNRk08 zzna%{=}oo|%M#iobe@d;KXiQqbe&7raGW-_)!4Svs7V^zYHZtT+%~pt+qQXP+vb0I z?|a|(-n+hkt+UR`^JLDag?WL3>0A-jFgKr_iPDdekDRe)VdV_*{=&{!`*rY% z+zyD=dlq5QV)cOqn;edb3>a_D5JHbQdW!|%Q#nTJu6uUD;U?;}NBl^rA*{aQg}>B2 zA-K#__D?!f*?~)(n*@UUd!_&R+2IG%F80_uf4iNIYbLKE=D0_8UnaTg%7!%Ac)2P_ zoL*caPJ2GgZmW%XWJAu1F3SxXY7)61YmlJiB17d zya1iT@3~u*Qg^8XJOZZ?37!>D+0_NlsMuOfGQtsOI0(A~=9 zUIKC9n4wmt`q&Jr~rh9Vq`_&g{cWlM8KvmmTzh~I0! z$v&iiF8W0_Gv^hGLPnJF#Od>9(7Y@lpOZ7fXn$jADQQ2I4r3je9#{m}wL0OAFZLu} zA`&P~r0i#l+`cDI7EW1XBwlCM@@?0KVBa*7&TCByf>y9GY zpAp}Rd(WdK%w^E-$D%1j>z}nbjbOxjZ{yHR=2*KXtSpnu9qF#5c(=E=G|ZvWDSLRe&M&@8 zp`UyB(ht$&vI-XQ?i%sN?Qxz%mDqX!VvXan8tQ+3KEr6Q)jij*fAMGqBNp|F42VhO znZx(_k7_{xdiSr?xIZF4xHd1P+_v%;?LSSk(+Mwm9l!6=TdSi7dc3O zj;CrNVdDohY04Oy(lBr?s*!P_xlm}%Qtn!Rt&`mESyXM6Z`+B1v_f?Maig zxZM>?IFXhUE(W~mzT>v!T|LYlyx-etF}CKOb<@l4*7I|W~u6ZtIx*8z(KG!RPb)t*lm(M!@dxiAy!!9SM3n}BK?XR(nM@=`X%_J zPLTHPQ=pAb-ZjtBZg5W%9LyWejnVw0jvkR@Jnc{VTMP`GFieK1&gc7?xwlXpQK;Yf zT(TtE?_jcw0r93f%j!<@AZyg?-mu?TH@940<=ba!u6 z+Xb;Fqf@75qPf}^aKW8s#KZt_H;wJrD#^0|1WHFw{-?Wi@D5Y5jiX3w@TV**x3~#i z*fu5aN#8xnBKnw@Aw}5tXIrc{)d4!8TWma@{4ieFB9nk4%O?j%1oCo-<;at8$@qM9 zk0tPmAZ>frCyX-ro&@>tJeqJgC< z_GuIb4f2d&n{S|vb^`Lfn8^3aO+H^zh3xD@_Vg|ay(+C1!F!-sg+KBr3&LwEMzMnx6ahIGTmA$ATX%V z!$_e=GsTU3Z;e#`JmBV=7CxW#dZoGe-U)L{)0EY20e45p9WuWD5|S3&X$6xe9w^o= zK#J!>%M)ytV6btb7wP%*nT*A0Knqyp)OjmF7!fIUL3w?;sa=?p-R55Cd41wjR>G-n z4Zbh}pGadQ+e%sXrq44ye_|ah4`IIEj$&!GYnYeGdwERd#Zeohp&9T(PAUF0Qa(V; z6IeyJf`cyRr2`!IU^h6Rh(K7~nO9R?y-R?I9xMR?{CuSeTvHR^So^gpl;8u5l91vI zS}f=Hgjx)a*fMSKHPIaoznJt2RRC=I9Wj2ec1JJdgxD~9?QgA2@#aB~(_JYd@cbA0 zMI>@lW3ImEETE`)mQ=bYy8Vxsc% z#Oed&iu0dXa;pR!9CSVTjxs?VqUdnA97tZv?4m8~I_^lyPKgKmFU@lo@C?2x!Xbu& z0Pd&776k0jE~9QFTs#)mk17jp8|rm5{a&-ekjCf*VsuP;A|A0}O;Oq&1_5?wMoMnG z#7NWhzZRNc4=5q{YC}Ad@*hks1stu4b{xm~GfPncIcAg=1Zni3TbxLYaAxv?#_n7bN%WR3V>4uquRq@D`o zEMH$+h*N97H|6cw(kM$k%8$C8L}S(|gYNb0`|+|(7G_J>ED&U${21V$+YSI;&4ZM; zITHXu4+|1TX4tjJbLyy_zaAzW?p^hTf&znt>3JU8#9FP%6jxD5R?=7R4Q9^@ zXzY$XxvSrviU|1W#H432Co~s_*;|6v*a!9b^lMPl_g5KhW8?c`v)S~dE#wPCC$XV^ zud0g$D%bs8W7CyV7O3&m@74sL)as2hs;*a$*-0{$5Ivto8Coa54%Hn6QL%(%X|r*N zd|{kv=PWL{Ito%o-DfT=xr$6t4oqqOIx^8Gs=K{!A#?Cx&a#-u9>E_#NKPyMZDiB6 zL8cW)v1sRdU$*n^)Gd*zum;D_!tr^BV$>}MsnQC*9)|!eBPn{5Wg^pZU0v-#0?{j# z!SNjp7V}p0wsS1;AxHM=NwJvACIIt?p|sdvz5tAuFl@p*!GSYAIaLhFQ_aY@x4z49 z*1op5t))`7wIpVI!n*5V2N7<<5)_P*<2;goF*5J zT`$~Kc3CQ?%X(?e>1%>~NWq)Br1Wa;8_`o%x6SI(FkpKJ@p}~ITO8h%lbI9o0B{&JT3n6HN~GWNrF67^#I4tti(C#@d) z^uW|VnIa$2wImXPcW@x}o<}9HxY&h~(_Pt2?Qwq5A@caY7Wh@4Hj{ryU&_%L!Lj{# z-}k0SUZ!1~83$9C97~!M)CTjph)Cr}G~zfe8NK1V{4IiZKknLHF;EG;7qgOMNcT|d zD)CZuE#6prb1cuM1>_2~o;oYrNW4&bi1>)2FVdlOG|$4q1HBo8*g973TRG{<8+saN zav%isonsapU!`IOHM?@G#XVUojXYauVY(F0zLx6_jFD>O)eUw@*16i^s(uBp4Z_Kc zhIw<_m3JC?Q|oHck90M3C{+Jw6!$X5(=dnpfjf7PIiE2Z7;G;HiKwZR5am>*gdntd z+as$+L)~Mu@sKw_2;;VLfnc3{`l`ZSPkR+T1X6u)%8Tv$g zm*G)EZ>mfLl7eyG`Itsid1nn;>s~^}Yf$3$k1(0v{+_QCod|z;N;!}k+4As7BVDsn z+l{Js$cD~-DUiEK9O9Rhw6VQm%OL_a%}KjE>lc^3a{0M@#fGWJkkvx1S>*&|b;Di7 ziN#F08lgm{EEY+%WGq8$Y}nP2uUjb1lA7) z-Uw@4$N{9L+%25nHc2nP8JZmu4d^$i=w^fr|c31Gya0WcSL{`U97uF-{eTRRt z(h0zgAG?sb-zr|&8OW)DG3EKB_v*uGtzhX~FXZ7!9WS`70ygp1=*r%io6WiG#R<2% z!<8dpCNsXQp-#lB04X}d`TgTNo*&TWU8GHanBsfafBDtOYD1!vS_wUKM)~ta^g;(- zGY&M0pe;mCZMzJCO>P=XyEf1vlG#sGVO}z1$nd82D5`NY8n)lb z)B4~-1@~pD1ByDl1goW?cLbiMYgMl#2$kEl<*3f3hu~=c#F;ViN$KQhq0q5axwx8m z?nmxf5muaJLEKiofQ%^Z+|jV8mO|VR0@$2|>vqI?lVg(o@;R-Rwzgc==SRmn+4i5f zIPh4Z65A-bpQJN*IZ?6TeC95L;(*3qEeuRbeg*>32l)?dktIuuJwih%*NQdP=xWf9 z1|6TwJ=UQ4{ZtBTB&D6TgvU`_hvb)J4C5+FzbRjub zVbLYEQVOsnn@Q=TTK7Uu-|2f+faNzM4A`~;2&<$HztAQ*N_^{dd$3gVYl8Leb!~ff zrIlz5a-5bPqrSDy^Ca#^gcXklIt2s_HanmrWZ6{JPm%F)jgiH%x6kPmU zk`r9fkFviF86268%cA+uMy4#JyiQKBz_oYK^*Z-h6ZP*sZX!SP6O&Qp;x=ZV*=TE_ z;-r6$`Bpr-tpajujt(`BH{jQ}Aad}D@SzV)Y&-vB|M^iVSm`B?)J#a9LALGg13{@) zEfPz?SNV#uOV@KAH@^Obk7$A|4YR4bnvq35=^^6R^rotmz$ym+$6*i=05#K(^g`+5 zU^l5m2VtZC_QKgQjlr%4P`J5C$QtAVeTi?b1@uP=&c8ia24&~czt381#sMM06T36V zB6|`~gQfMzZxof!8IOrCeUvv|%6vZNugv7;!Z^-){C?`a5W#4-9!UcJa~UzB_)ztmut@ zSpNtji5^YZ8CCW<&wNer;v=5a#4w(RNpE;d=y)<8W2HUBeDtAzzSXngYy)i7=`6fR zE?+yb#_Sa(DKVhmb)_!lE0+rH93u;Oy4aHsG2t~y|yce&u%#x zO+sH7DBBiTt&81FGDviL@cWH&Us0f_@*dd(CcS3WifU_{8OC9gIp)`vF zUTdyo?>6L&(yOjF+|6RfP1$a5C9iC{3}topC%0lD0PynvjqK5^Vn-q>dC`biYDB)$ zaHgKcZZ`If9Zrr>QjFPpIlQNAYGCxl6sr>wDr$hPw|byVnoe-OnVGpoRAoRoi`EtC z7kYBS5k_$d80I_3@GPZ6h@!7tuBx}6n{wC76eclLm5Zobtpch%5;Amb-+USTE!*U3 zvb~dryI|(8%$2)Jlpt7&G;RqIZLsd%bHPk>={u|O6OheQFn7&4M5EjJrYJMq$hFk@ z;7R&lzc=A}ZW3A}BA#=*?vD8#m}4MbKMDSf$Kul`a<9J;lV9#U75hJ=_v`d@?E>`NM2;EN&$s6 zr~JFy%8G?YkD_{=)VqHeBi@g)pW&1lGQ>Zu#404h1M#}F&>b^)UD)b%5dxgr6$%%s zNuX|u0!Vek#@#lp%ar=my7+u_;x=WcA=LhVaj>~Ifx#xXeOKI_b8Aq+7QkzUo7`T@ zgbmeI)twABbDxhT2_Dv8UJtI1g=*c}f9Q}qMU&OYo^AblbFJ#pgUhJFULb7F`BpNH z#lJ}rVU^U`Z;-}hGAEnJoXJ+a39MgfN9^uo8Q@GvKOh?FL53tdv%9;C#c#_0GJMnB zK!V%JrL!%i#_NpmB6-_A=xlvyUVYO&Eap^@?Jdi#k|+9JMH^+k{uU6V=$@sB-f6S? zIpXLQD%qJJDlWk(RLjoRsZyv2Z2Y1r7i`NoYH+_=z_N_)*4da{LZMW7AAyrmM?sUe zlnhbL&jLAq(8LHyHKxcLL@Ji{Bm#=;YYdHss-tj-WH}=Xubv!^i%QsBw0big%+{^n zSk*;dccE@4&IfPbIuH7+_t836yPt%kus8!wDe$rwOMUsm3E-coS{7qc@zaVif?8r; zx+P?YZ|&U_N6Li`1LrYm_CgV;ZF%f>)K=QbJQ~SkzdX4=-6S=7Uz0aG9jDd`I@8rf zYjYjTmykT&oc#P|u0!0`pCFpEJpP^69jpDK=MKEfwn!dRCs0B;b)1BS^};j{Iye9feET*_H?Zgp{6_0!^A4eu4+rYr7@W!K$^$D~?bcKidd(1@glOW7Z(cQt#T<3n`oP4kiIA47j;l1)TCq)%Qh?hSxW%2Fh5Rc zMZRb76u#uAs~2-x0B$hFf25CGW&$fr+NTjmjj+%VhkZRNTd@8=*d@>p@LC%4BG{E0nu zvQDhj&{|xM5JG;?RmX60_1?@~vyM294$l}5fsI*@&>5R0(e5P+-^6Pzc7m$iVyV$4R3uQ=Mp>I73nhkIG;xfNar?Keu||Ps5erp_9TU9ZfcOl9(_~#H!xKi&*%lTY zRT>09E_V$>RP!pd{#I(9T8kUo+e;+|v5R*&VSSOFvBK3}EaZ7-qtLp6%Nv0jXASh0 z)eP-v#cAi0BDI4tzmC-;*lpyYVySAMH_Q6`NdKu4rrD#!=lP|nkB!)w=@R7St*&pW z)Hfpfh)&Ee2SQvuqTJ*0?3D5a&`>goK?3jEk#tf}S$2tt!vM4HF!0gcqmdL-EfQR6-xjyHq+%@|@idk|kPF7Q2Bd;RM?$*K&jzfK1lsVU6YcdZM6Ct4u;u`=ad}S;Vuloit83+>+hRVzo7iyjH z`4C0GlU^Ju)YbKHUEy=_Io#M*&Tmi&msi=3GB79!>qh}`YdDB^3nIC94Oa&^>^q-7 zP5u?R^w>~*@fl=-t?r4gJCMDMUz97K*wr+)SDd^cs-i&f3%fiQ3dXXu7NbSQ-BW_N zKy;qFzI@+|^Abk^-~+lN45?h>{9vfhCD9J9*1bTgjsv!53)g2*m~Sa@Ok}l~tRK25 z+9iTFS11t8dQs283H#%9dQKRO*YFjW*+MhSH*@!EdS$QBY+ zRmO8XpIb3Zg8T;H_7 zTldp#N=)n!LJ&b7uYTmUT8$~J^C=(VJ66>&eA%*!Ur*dz;>#G!Ne4TX?BU1HX9%N-?V#-qdFOx&KqZLb zJ1=60q}Aj&k!~(ZtCH>6@bWp+Z3W-(8=o4N3rs#iSYWukt_I6p;k~4ytH_i7rYdZe z6k*Ge&-3T6OK5p7^CG%kTa+2MOQ`Xg|$h) z>MPId&>OmJbuRqXD zq6M@h%=Jkl{#-x<@AFdab|mjqqSfK2TeRm; zg|87w20-lGm$aN*&IxRld9A!_AZg6j2^aEfP-gUI&p-R1SfPs=#N@5k+>4o&Zgt`A zWfbUzesdxRlQp2Kx4EgNO+G#P-&nF888E!R7eEz+LSp1CA-w#|HCX=hKWZCz^RP3u z|HMg8{a6ZWf#MZy8F6|A+yh-wfKh=pQKtY1=st(x6@bN-NC@QiDVF7bZ-JPTI)q^zkr;9H#7(Vj1RI8HWF@;gjLj9*Z5X^G1u1@Wu5Q zGuC1Yw&m7SA)pcisTHcnL%NT7^Le5H>!pK>a}R~$$MWH_PN^0%a?jqwMzHODM;6$2 z&c!KvrsW6}Wvs?Co)QC%F$J)^!eAnnV|o?jJ3+huLE=DFq6Z?e(&P=WbbK4Ai$8(E zOUc|%Y(i(-3RN8K6ST(Tgv+rh+c;3mVr5^?49knD98(Sl#CQVk&@qoY!@--FhtqDa z)M`8b8v3NWfTm`tW^kSgfleE#2EAqHxsGc6!*xx@w}_(|dP45PgxKNTMM9Qt5-w*; zY)e;9Ctc^_2z|Pd?%~hjx<5yib;NPKEJ6}WioYl`GcPr%fmOwjNAwK-?74j25}3>z zNiki^ru!W*7M?&)#@r_SoS?LE=N0kp$;@uGoLtDSiKb*3&0n{Q_B^3cW?QDe zy+Lme;?M&pzk(kz0cig{ol@I=M+FbdI?lYiun+5fJf(?!rK#krg@J0-A@L>}p|mm1 zmy?3SokYva_NKjU>-aYM z_ZeIlXkf!#bLgtztV|x2MO`?zM#Qa4&tONtxWoJ7bVRC3mK-U0;~m{~{tyfD^HocO zT}TV@cy5?1FEkV8U_D>JEt3T1ZdhsLC#UUP#vLzQs9{((>f~uMNx8pJUyr}2M(llb zNU(cLN5#4KLe!Q@T>d%Vy10t2Q{PbKyatmR9buuHOC}b5T-1+R1omh?zE9sdDyq4G zX@m%U%$Y~;ga{6;KC%ErZf{F(`Cc} z*48S01hL4ZM9x>Y&r1ivQ5oK0QRV!J%g^w&$CILvawgl>4Hb;7`NiySjajRK*jQ=< zgaU|BF&<8w?blA?4OF^WDH7j1%f=WzmDZtJFu(Q{ZeCaMj24o5@9iNR00_3BRJ?x% zdKvB!tpx{MYMM;P;p}sC7#Q&2mg3F`#1EuoY%%!Qz@-S_uZHoR&F3#sjvlHb*C)*D z6Zsu5JNJ)-C&SSb>ziN zBSqF7BWycH3=iKAAryvA?OJX6Y-6;)01ydFo1@Z@=S}AaacfdAl|CQ7FsZsEaX(zg zc~W9tgLGKQz0%;e^WK1LK3;E*ygA7|hHh~j*7AX;?Al(l{1CxWR@c^DXz3JllSK-edWi z%m}6}#aHe?IfK$e{{t-L;y?;Sj~+P3lQVlKG?0V?7hZrz6qMOQksMs^9`CRHLz(=qyGtUxDY^EJAiXcvs>{kpFLLB!Ni_v!NWzMB~LZi#E zC)=dSjY%Q~$9P3MUZnmQOisGG)~S5`jG)(9I|`IyurSy~=rT8zM{vYEc4%ab$lb{O zWKMBSVqSsBwHlw_`GJCcp+D$w2)_mHyP+vPdP?@h#bzSu_Cq0sMqCx9e%#51-e7S_ zpa9iVbBasZOaUoEO5=CV=9%=sW369WN%>$BPXS+gqdF+ehl4($o9TJ3O5@5=oC(9+Q3C1- zdj;SO)7hIzT2UU{i|9!%Updan9#%Jk_j-VivSPxRh4L((^nZKzh!j7{asAeWcaXr? zq;~qwpBW6dk`*7!Uk_RHLQ7-~fB|TQy32ea5$xD3;WwQx__$RpO*aw&i@}hy*Co0t zh9ezPRrZexrK^=_ip%KY+p$;X|)!=Bxe-#-}U@xA&8Tc6IKGC^sRZ^v*X8HE92M1HKvy8KOOchTc z)X-`fuh{FJO07w~PIX0<{$2dG3FjJm&cDWpw@b@GADBrGVJ_ToszsWq&V#PDSPKH* zBEIv*1;=2faNd1VWlKqxd!w69bF=dS;i1*uKzh6``Pd0sY*vU%*t5Hsk^9Cp2z*;Z zf8;y48b>yybEH)OgC<6F!!SEn+pUMA9Jl7??L+jEArFUC1KCQ++(7q~Rn@WZVaLb% zFW$CZtPUP0a6@;BO<6}B;BThtjP(TsN4y`aPdIQkXRZeP#qpoAPUO2HL z;V_U)xo+4mD<$LzKGR^~?hC;!G1BAMO4RWhnwnWkMZZiZGwGXM&cQG-_rGb@TCbuQ z4n!#V0X{BP8M;*4%hq*w!_dp9NF?i>?!YDRQZJFKr`>fY9;>xH^2&|lvikmqJM3wxw#c824aFV1hNEm`ld5 zAhi7nJ{1`|M!&6)iE>>wQgaZrln)6G)5a#z^K3IT;>UtEu}^h>68z zA1~s&YjBy~UAf97rUVS zM5Ep*o`X~=cl^uQcrPDE;wmprHL&KIc{SYJGHnT-@dVl_@CCy$q?w*#q8SbQODUA& z0st8UzwBZd?Po15VJLl7@XdS6h)27G-RGrM{bnYgT{dbCXd)i1gWgt~0q@$uhp6q{ zzgX@rj+O~@)Ca$SrO{J&CQ~jZsk1|zb=^$GFmBZtUDQ#AM=@ZGl%^MQTz{;D{#!r` z@c8S`5AY5*(GoIu@qubbf8OPYX5EF$yStg>biPfFLS@4^pHR#h|U ze*P7JBvlgs>!SllG9AbJ#J)$37stBQ`WXAV*S*%l?W@lE@zV-_dGv9!b6ZP02{hOT zB43cde?hc^@QHxN~4yxbyN_vcC;+d!CkF%+lOL&P&hqyH@kVD zNb{MwQ%CK^pVwZ{MbXIi*p=EI;W)GGufd+Vcbr#_^BNMufj|-j0fq2HBf|dsK!1$; zdo*4t-^^2W($e3J{%HB<7v&*XE#W`j2!i?g z-`D+>?86Rer~BW#{$r#Mo}ljE|2K8PGcaJ0;d^}=AdGU%5T<1RC#)iW!szFVPGpK( z*%BZ1>5tX>;R9;_&vmrcyr%lg7XXA+a07Ny_zw`?Q7^bmJ&tD0(zqP@-`(Y4G{3p@ z9L}7CD>NP-GXFU!nW(Qb@jtf(En6^&*$AeJHSBZdBn0ILPzV_L&i%|&LUL1&FhTuK z)0nM=iUqPXr_nL|m~!P>>Pwj|6WCw=HbGzA50fAMz6zE1&Li=+e5RW9mg;d#@1H_I zz|TOenkEk>If2*fMom!i>&=-$OpfjpDuf}w$J0Epk&AJ_HNT)9!iFG zVy8__84eh|dp#`ghEt=|-OhzMa>4GH;638imZ`Q>N9E^I@e%5dq&T21DaiQ=M7&>a z`xIK24fA6nu>R=F@5uY%0H(7{&D4)cV6ipTxyM$5Xx6VWHuPb<#1L$6Q1$P#)`(hap+SYxLSOjizjK zl@__75E;r{*JKh`kE>ZTu*OH^3GrnXa%O8Us~^0(YRz|qUzEoxVU=&Q!yYO7l4iZV z#7y&Gr8`w5W%vtYV-30Oh{rA)tWVcP^xnY31sFHhK@EMGeptcTYHh4^V(Gy#LScbN zfcAp`-~RW}&j26%F1@VH#o~N3xv}hz^4XLKl!}-Gb;i*0lRbl%J11%F!1y}F%4S-DZXCS^HGRAGAFK8 z+x?o&EAzWNrpNT9Ktwn9G=mq_Qc+A`FU*%ZQl&$_t{Xd!`|hkEd+eUaWbJ7tJy)W= zB<&+}ZZs0lMsXNc>^>!0On{NE!Dhi|_}}gMb0%^q{UBD~Qknm`e-JNNmG_pXZ2(wm zmDsif4;hXC?WEK7i&BleFmt7SZ^ru`DOujmC>Nfy(+8JVMb3SW=LU(M5|v41HtIt4 zGNiq17RsOX&RUC?`U4U|(3(sB#-xP*X5M77z8EC`yaTx@bA_i{uF|L zmnJaszL{2^3>477f~W-5|H0;dll#A=4~^jDJT>F*5&dWcC;leY{^V3Zx5MaOO*j3hx#Q zr9!?K!~MY@1V7?}i#h@G?m>EZSMGoGXuoh)sXIP(P8rW_KV&G>Ye9i8F9;+^*-;GbU|-fPS*#t6rkXCBh(EmV^RwIhm44&2Xzns{YEYV zj33%6Iv-CpvNAlZ%1kNfkGInhCvM&846Sv5@&-Vgl_5UZhgcQR^=GSS!n@x|l@_SOd`JsNaqLMooVprKacA>^~>?yUAZd@W1%u z=Lw5cJH~;Hjl{VQHXHq~p8ov<$runJz;tcH;cvBUgR1jC3ew+3{~M|Lp?m^rhaxBB zIH7-Z>-!Ef$^74e|3aMq>V0yxK>81#PniCn`rwI5g#OQ|0XzDSMvMmmBqfj@^S^gU z846bWf6*S%h5MID_KQ0zzR&+84^CCktAFz$;PwOIKnB!M$HU5R?AU~bze`iVRDBVb zrxKt#+eaH9W}t|}BCP0*`2tiV)4@VeYd2d0+{kIBJ}S7F^$f>p)X@u36-YYDN?LEr z63p&d9oM;%4D9`CK{ez0JsUwYFsH1IJYVqHsUq-6LjYVSP`DXN*l%DJ3$q^l;lq%Txj1)iI&D`75{2NogPn0s}Sy@vyk_`e5B|VN+_$8L_uNxWW!H( zpCghodq31sI5ZG6d$DdXmy0yQ^Yd4B+W;(sz4yiBrq=28a=OKy!&;-p_Oe*fT;Lpk z!Vd4+?lstrF_U_1>RmuV6(n{ej>kFr_m}Yj>39L)1=vSAN9+yi3`%W)|79Mw34-x;x zN1_jZF*G1=)XH=XsE6!&F%NEb_7H)E+1_iYxCJhgmz5?{E}-TB*^pltH!Q3CL>Vpj z>_GEuHqqI|d`o#riYH+rtNC@$G_t8G0czehu7*#{DSvd5)&*&yu34#7+c{^i_Bd0t zft3b*^>#w$EnmGNN;OS12$fh$f-65Hgty$rg}kvj<#w#x=V2mxB!8qiNVW-9Nny4# zgiUYO_O>v_Lo%cOY4g!^!epfGT1gn*O+W^BK1%-Cp8qybB#5fgp=~eq!!%zT#o_2q z6^?ufBdoxE^@&};_DBDZFU1vqVw%}63~IE-zvf{y!@+@w+e)y8T0ww%IyMp4V^c5qM2WWL~=MGlX& z%x%)?cqfO_`I9sLjRjaiV zmp3&I%JZrNiu(0h+vYs6P9@ul%`MUCXU5?9uy9x{5mxonBhv; zUP?#3lNdU2vwGwj9dFe+iYeh2Pth9DdD@_7&%qOSzt^xiFR!-bR?SF#KcS{MdIDzg zNM@52Yg%fnA$Rbu4$hApze+9HDemF#N;PV;a45HF+I5=ST`VZyO-+|`y8pC(Yr;Bi zWc(Dbh>tC?3QJ(+QajbQ*2)9e#_LGh?whw$3OP|+qwwL_<`E6y3&}jDvJJ`EcURPr zQ8YCr;}h7m!C`Z6-RgLym#Vf}Kbee?m7cumkd2j2Fxq~6`(YQsGLUFF@Pk&`0k3AP ziW0y?OCl}CwTIw?A7tfOKxic|n_-sqRPvS8?OgT#1 zxV*u+-xPoCLFKQN2-OUb<@k&E}?b5$UC@CE=FhHp4V^A463q{3el50uHl@;)z+l4L%dE`XpQ( z#>eJYZ3ms>k~{6wYO@)uev5l^>DIAT8N&y`uWCb`b$|H+;_a>0Xs^r3+)F*?Z+Q5Y zH@|q8C&Wjcq%G;(x7)1*CRl1hwYH6rYFF4fuea&Fjt%f$C80@baevlkxyw83fk!m$ z?>BUgaahAFv1^NrYl-g9nur*)S57lr9eO9ox;yo-IO0B+-{@6lQ5x9(xY#JVJ+_b4 z$7SKvYAju&EL@PtO4w`uBqdu^tj+GwcR68k5?vH^bJtgcC;s-Hpr=AOo7+TwUh*!V z{rIh*O}D+Adt2NsmPMXqyC&f}KDdoX3_W8cd13FKn^1OgQ9Vb=4tVKgS!KUTp89&) zpp55CCe48`pQ33d@&07@D_$OVg?GLy?h8xGM0!29)mr2fkzzreS;G;B*}Ko|cx_LW zB}>|yvV#uWt6hUln0oqM`xf)E398$uL`Kobx0wX4k~p*-Eg#M|FSbkD5^nv7X0Nvr z2Sb7ilU=sm+GkRh3PYbHCZ@ZX1|<{!qJ`SFs8f$oa{Tyb3S~RkeiJNJd;u}9hL^Lo z13=56Du-gZQ}K3PR82V5qU)0R-H4?$_qSmwHOu~cSNK)y_%XEi#}VU~NW0P+t3vKi z#}6zL_NmVltwXs|TtW9|dA&d+>a+PngCDzVzyhickvF?&QCpK7wovr{DKqt5tC43ZdVK@CeFaCin#U-AL;2_Ya6OlNmllE zPxiaZ_tXSj%j=C|TXYnqSG6f#wH0j~(hGuVm&uv{H_=TvPAL`{Nv*F2D6tRe&z=BH z`Mnip>&St}-ddIdDp?y{z!CpD7xnV)frqM#Pn@vN=?FImw~!s4`YDZ5+(Stgjy`nbRjr#gkR5EVjIkA!2?d zqkOv1Ma4AWbib6pxc$rs-p#CrWn?qX{qB;Cd)e-ru~%DntyTXzS`8qn_pw=n20@?{ zJ)>eWOr39z(=CtSm`^opJ92%01dS#4Cz^n2jcPtmjEN5$hg-qhqfwbMZlu?GtI;WA>PBH+h%X z>r=E+Zo7(CD6d{u#>xjw>UI{=?GyVJvurJBEKYvT+>(qVBn4)oO{Q%(KTEs}Nt|xl zklhUqg~Y>BkLHV5^D?*#`G(q8D_zj`Mx?rN=wN&VB_`T4XMegJrDv|Q9-dR&_{?GyLcq@ z%IWUke&Bg`Z+)hH%>e&I^+otunsFC6hYk^%qe*x8r;~yjSe|wXFI~<2#z~pwOVe87 z;bqcGoac($unPP#!pQd|3DnwZvmXYk^fOx#MA6dwMl$L-e&^+?3a%BStz$Ii+AAqb zZ^36m((5|v*YC{AMTQ}!8m~mBtL;iN-p=t&_t&bkMh;=b0Dj5=EUY=%&64;-?R{fH z9iQn%js&VZe}t#4BFu;$rB_!&K1K0}VC$hz9)1H-uwxl7f%!p6_9Rb9%{r4Wd&ZB0 zCOGvk6fAFN3t18j2ctEzrp8t?=Xn`}P7utY_8Bi~cEJ8MI*XjKcUScdd zso7FE?1OxUb~d+N0$Z;!bx zMBFECN~1N~DnS|E8T%CU9tBZ2GW*zo%i)Z0K3`YT67nyPk!;_tH9cDS(i8 znKaNesq({kI{$pF;G$6nV|< z3Dv}Qr*phseoIQ&k3e?%Au*cM6C28ulKjd_Nf?=^xtHC6S;q~mRXfqj zA#7T}gxzZ~m787Z$IN79qmtHVvb5`m2^2F z%{uzOw5CK|)H*gK%~uLSxKorp?#Pl<8D==h4=m2koC)}a_;8ZLh9PNQ<~z(c=G14{ zy$5e@uT|M{-Pi_#H=e8ic9ZJ9?dCrHA5{-;WG@F^*n>m zE|xCD=OsUDldUox$=4w|G}!nP9Ftn9U73|Th1@0<)n$}UN;Pl;EW>GHxoXSyZobQ% z5>b(sM(*94W&OBu9ed)Q+uvGvy=UozZkWVv)8rhMx8;Lx-Nz8kcvG%N$14s$IhNdDl6zS4I4;B;<={>a2gLDYh0!XhR z5K2@^AR+V`+P6Va^qlAY{&0nBuf6I$v(}oqXSSb(4C;gyvEy>^lF^0W9Q5L9Xx0!( z8T=*#e)edl%inyhcJy4EW!jF*+zYraeZd+-ajla=mN8hwtH>De@zAl0tOy4Lp-)Ac zFW)&v5FRIzEA9NG*}X0%RYVy+7;GD)x+;?dpDNTygF{m0v#21Q`TVK%ln~3O&m~?+e|c1sA3S4C1gJjlqxq^S0*$_#<-n6v$*#@7v&dlzSP zSIi>h^h`)w~KHtHv(Jl)mBAG;v>2*VKKRnI0nR1kJ{k;*}~7RksM#KVeS)6s+{6eTJKN8+&f>QwB>JTk6QTpe{MsA36p$m0 zAy&o$x)cbwwsb<*EO#p9>xZVn_5;Jlu=u1-62XMAb*|Sb`JwdE#r5~1iI}7_+M-)y zQQ-;Q`Hr{D`yARpH9VgN;)tG)-i^A&30Y2QmSXQY+9FcE28<6ntUMl4lf#6Lk{UwM z`GXhUdbz}(iXYR~c)!+e&s*6}z0t4Ev-F6#_#VFeT65^Vl>?&$Lz@4}dNwI~!Q%Z8 zb7_fv4%7##;;$o^hMG$DUS3TM%Q+InQ(iUtEk3biTszQ1KVplaXMRPSD@~a>kpBGS zMdJ?-Lg?l4eW9HQud=Z?LS;53S%(C6iAf4!Smx^BO^gW8q zb4eMmmFm4bs*E(ooEcU&pP1smm~x$Kh%~^ovjG;I%No9{2MswpcGCdu+Tn4&4Z7+9 z1SP!33``%5ZpqXld}%ool;*_hLz~?nn%Ltz;GRtgRHIvBZg_s%h$5!_!hqV5=OFba zA2yNd>h}#Wb`XnM@p4~mri&xOG2?Fh%H8-(gU!J;j5PiMW+veUp9DudN$(Yc9yQr0 zR^-$s7)aNnFOGE8%I<7Shs68ebGS~4!(z7;p8 zO0#V-z(f?sDmvh*#Laf`h(=yFo(a79(R!Qr1A)@Ckky3Z^wN}0J>F42!{e2;FHg$b zSw(77iEB*x-^>f&;ud3pi=4V>xt14EX9SZcQL=EV+4M+qtj~ID%0HL2PR^}H4Sa8x z6sg9D;NK}0qy|{1Vm-IOvDTxF*G1qIv`@${ac2eKF58C}+AjTt$|pLscE+lwcGqwY z3#<}2T1HqE%b5sw{!*UG z=|~+dbESSg-MX_{;p^;bgdCGiMe0c-Q!IG4Aku5aS$SJ4Kd~~ex{!@-gr94n;N*8) zROyL&#oV@-3uCvPZ7?DHJeMr;~hCTme^}~BSm17@s8^a-CuLYdfGR2dF><-jt`a{y+_!nL%|{@}E9ltY~+y<({AzYhb zBRnIln=4^&OgRmq>C4)QA&NzX5A~^Du4bFnNNPwUX77D>?u_&d@A2NaTi2S1FrTR~ zirlEyh_7E4d&cD!x#}P$zEdB zF*=Dac~Ht_G%R1ZHRHXxdjCbvHj8g*GKF)crsiT5m6OH9GhpY8{ zCv3C)Q(=kSo=uSrqD$utWuMscm~p9;lz8~&yboqf`8)HBzuWcPe%T}9LDIpL^oUoX z^%hp`Iol~A6(czJwp-|pX_wKh1f$v!k7ac)kqGnl5#z+y4eJIZgWMBs{+R(@u9Y#@ zb+h@Nvb2ayy3~n_{!R7C!7`n%Vb1ZkQFzpdBCnG5Piy&xmaoe%#{+qSR42I&LAWEl z-ioLb+X@{o8Y2*+nTr(do2gQ{Nt0=uN1Ws$d99rFShZ&Fee=qPtr?`HF>5$DJOy~9 zm=!vhxp6{XnLOLem`ZhSA!OGo$)!%q%Cw8^xUi~uxA%%C5d`kZaZX*xjA@U6;xeBD z+sz}&Nt8^yzEIP4w*Wk-68>Hhp_;*OSU3l}>2unOfKEt6L+iRsy1<{7nnE{wiWTWW z2*;!_o{rdPY}KfAwdP1nSn47&1do|f1ACc7KYT72_C1o@wp6pUQHug~Cryhm@c^ZU z77FYsCdP2I7;0Uqe1Xm|Q;^qsC-?U8%$#Hk(z<(^Ja^&A)w$2Ea{&VKSE1;edDTkA zJ&5X88;p{fSvtjPc@c=UEH*1wH!2z9hXdafMf$r0kp`V+sPC&eKCUi9XO5{aQ9Hlt zpJ?v+dcGm_lSebU$vW23q$e#hV<;R16boH||(OBY#gJO<}* z*$fwSvgqo9O+1D&*SzdhAGuc|tLUyWu%a$4=s0R72h|dr;;M{ooLh)6*j0_l#E2JM${G1z_z zW+OE1>}o>p#Oj6oE{u-F!`yoNxAO1t7?PEn=Z)fe@sTLL?|fe z-8M?OFw>DRdd=qLrKDHe$}1U&AiSZq1e*=|Idc#v>sZwJ?akB#W6NGQ<*}(3hLAbi z9Br>+#mRAah02<>kln&J6%b*))#-6BQJOXtW|eI*h?zy%vh z`bOI5Wi|ZDFt0gcTwL%gh2_8^JIEy7M)9dOm?^1W@4I)g7FuFs?UR|!JyA1EXewo4 zVs~6(oXn%jh*LmRQt=`&975yMaee*mOhq}~W8etgROxQZHkku1{#avN?)}b=%_~OeqoZig3Fj7(C^5I?tAS zL;jgrO`0A(8ru622YNivSV+ZeoM&X`mDReg5q6O|+cy8C`n^+>j`fH(W#eAiV`r?| zvOti^O`Yf`@rZQ|b{Vca(%3gzahwguuF~?w!9_LT7O9-mQ+GXesk-i%uyEu5Dev@I zr>%+kY8LQaxH7GpUPE&%iypOdmAUD?Jg-&CIUOy{?~!&^9mmW?N)k(JHY)Lz#j+kY zG2L@?B6ECP3s2Wp?n|!UvNMv9iEQ&Uq#E&YEaKz$uDZa;AD!(V?UOV<A);Bcq2~&t)?k~l^XikV z(=$dX1Ci#JCdx-$>?pLbr_WKyV^asj>!l*klr~N4xMmq(v!8PgUhCVCt~_rew%h=n zT8B%T87g;+1Vc#c*56emZj!1zy~6907gL8)>os$Z`m;{FrHY!ST8w$gy(aR%nqlv(gg? zzq~rGB1H>bR52O9*`rHX+R)%1zxAYp;dM*?e41QO@qoDdBz@@R^)Q^s2rNQkSSuF^ z?t)MWG$$CkjZ1RN_0o(@$+bJeHm7V5#DTdXeeHH}Xm2$?X7I$S(99`VJ^T2DC!QMqmMRDhkpFoVCUF@$pklfA5y6+NoA9|z(m1Q^%#m=>^sfBZDFYj~IHrcpwUcjT0M%SZ{&vn5Z5GlBFIll}LOBofo%l02P> zc7@|!py|hwfyhR!e+ap@?Jq!I3!HLe#N|`WyltPhON>Id-kSvn^pH`-%{(x)qfaVt z458b?Uvx%ToGKy40-qVE5H!g+X%#EzRiC2`X^;c0=iiI11|&=RpG$HiahagY2*YomJPq@Xg9<;Wf!%R#a_hWa=7I0%24Q^D)+~0!?5={u3o;ig z+Ktt)Jele!Wr&jwJxbmnhi!R=jK1{FD;m)ImB(P~w;o6CLVzthu$kLs%}Fc%maLYs zVYW-DlltG&{cRY!t_?C9xXo?7oZd8+$GYMv5(&d8}eXxB`n1*Uf0S>@ho zqD$^+%G^|+%Ed~A_28FcHiG`&f16Y-esnCDEU*=kO!SnD5bAkbQ=~RHGJeZ(;0D;x zO)2+SOHWxWmk7O4O|V&wsFcpu4K%~?c$}|Vb6T6qmUK#tSm-0S+$LE{)?XYJG zYvPK^xZ}q2VjAu~OKYAzU(!b^Rupdcj=No7xkt$FTjY1-ouYvkQxVtFOBotgVr8wi zGK9u+h#~JYXuW3JDsn&IZ@VK&hHR|7Tj{dm;yPj#8(@{9<)pb*X4D2}=Q!O+BHmTs zZt2O_M2LR=>jW=TUplb@VL==|+AZN!_msWJ8cbwc^yb>E!>jsXlsuYI&#q0zq$PjO zZ3$eiW_OEwDMqq=WL1PAZ^}NUBbd*~f`6HqY3miotn$ zo@+H1J*=b1jo;3I42jCpS9@w~;w!9j`(@gBUw30@PQ_aq5mVY$sw}(SsCnp|&rEXf zbC3`=&3U2;CXx&ma(l~4)U3vw6H<%Wd?uWOtv=wQmuy!zz=3$p25Wm2bF^M*qD`dS zz>s`1N)4xGXGO%p6PbB52eWR~Rauhg@XD&-_(XdV&mtwLPF0q7{4tL4=3C+eAEM!# zt7V0x!5PNF>3Ht~mFFTF&OL=}DoQoa+k(gIXDJrk>fW-owJ#Sd&{HPb#Yyld0Ommo zs<^i4OAP!{j)A6emIR8}@x~zh1Hwv9_QTZYQ4T^mH%(jdlYdFzqWN^cRl%Wk7#fGj zst5f}OBEOzj*zvJHp$*D#u)ww_+SB|uGQ0lZ$a#hEiPhinPNE&N+X4L`Gy`I&KCkF zILgQ@F=Y#c!nv0EX~RSXA?J9Qd!idnKv$cEnT=r+-l0xrAIVw8L0aYsbjf~9pDvSz zX_XR=)5NP8^H4HacS(wAWsa;*ilRwek+Ou8d_ImPPK~w+d3f7Nh?AE%T6=QJA+^tS zEBU61d*Zq+zh1MpMxKWfb3%M-YA2P`m!4=RyW=QcXo(2?LX70v(fIOG|B=x3IyLkc ziv}uKkaK@?^nJ`)q!?hoFv->wx+~BS>rg*Di4R_JFtr_?xv@kn>pyzY>D6=5>ulwi zm8b8H$q__#%D)N6mYB~8k&Su;4voskU4d{wtzHaC_O_BF#kB4E?pFw9+MO0M zP4G0#&w_hQ3!CBC@i?qfz~3c3eXx<;c)>p-S=X;I!$HMPFqv zg9Z`D7EnX94wKc@>@iz|3DoA|yY)en;O4}3bPp54BwIdgGb(OfBqheZ{;f*Or$QRb3C4a(`h(|$3_LB$`*!n8`cF;&kQ)Q5j z5LnsKs3Ewr1gFVMIJZROq_uAg_%CAEPSikH4^srs{Bxb0)c0H;%C)Hs(jWr zhXzPM#y1Gjo0~rM?d7peDuygfQuQ?_8XD@~$9Vf*$(drlmTC!)wnM8^x4c&!u2Tv% zWDj;99dHa5=WQ-!mLuJ6GcOMx<=GDRau78RRIA~>t+3#5da)0mf6DuAzvHtCA_9xv^b>gt;sjANlM)yIW=`NZ0sx~l#N?^hY+c@Ts5Q+D(W_~j*v^Pn0 zXu+qH8%Z8Gj)^P*ZtKIiFIm;6$jzFp0$M)6b(&?f4By0?Nz$;maOQGdznZ?FMGIQ? z6fF!R#SPiC&6&r(Kek6*R6rc!`JHZi^QeMq6nA0g^($YgGt$nn7@Z9UyQn5*^+D-GkrW z*bxjE)A=HvJ7TZlf2_-DJo=0 zy#Ga<{C9a+Dg{7p_84!8euq)P1nv}2y?EFyEClU#HIL{<-EKyHmZR=4gQUV-TRP#_ zDC+p6_KCNuQ#<@$?iWTGn~ib-ReqYgQ9G&*`~2U&AN*g#Nh(;wiBX+eCdn!LYc*^4 z{vgjj-XhP~wH4I5k|jPXp+)CruFm-MRv&p$7kaw-Na%TBsW~VQFIV1gKeK%MK|Ad* z$r?RC6p9DW@K6$Vh|E)mm!CWcre9ut5X{nFvT$w>cL#`&JFIe5E^^P)nCDu#IrWjC z4utUvr!5f;DK`@USlvIE{$DR1InYWQ%%uvTcK0vF$=wRxVgFaZ`IC12c=~YIKGc3q zksseztoWjc1+?OUU6`RGY7ALzpk=~v|V?Ppa^m^@uf1eWf zTX>rdK-0jj?^j%xsyev^`=7)6!CAhn3b6l=;SS9N&{M;>~Prg-N`-p2f*|h@oN@@Gai0Ie@rTQ!67f{eI2xi#mhQ?YA&A- z3kxiw`fq7Gh*B7!nJIh36>H9NygcOg3(otM9f&#sIN;cmXN#694DUVz9{armg4O=d z7pM~e1BOkxp(gWwCA5a@raD{U$X&($Z_-oTZH2BR?5Hw7&uEfjBAE9uwGm1Od>x2{(kvw{JNs0O3~XMvZjmaV2j%%6Cj;3J6wv*x%Vurx$%8?w)wk{GAWvP_LsbKp+YL9}Qm}U_UwU zcatkrZQ7q!GptIxSvRENDbR=^(>?2-iZVb8_NFaryD18K8$k@9NobcFZ0#& zR9vU!(eM$>wCBumyc}@0;Fcl+os+tJf_ikf;%EW$Crv_UWlwtTg+}@Lo`0`m62_@f zZ;&28S8kjJbikbb{Le!~9iOT!S97u9T!jY9u4X($(ZNdIRw#98Y-P7bx9Ll$Um+Z$ z*S>mG3Z{APddzZ^-2*QyXK7W#Kxi}G68cIO``9(I^4p@`?G zSTygC-oLFlq<=*2>tARWze0h@lY7c4%*yXav#3x0Z7g345B*2D>~D&p)@>)mEa7YB z1po&e@rM`be&S(YJN<|*+m%i!@0}1coi~fS@_FL&WP45jQgHhRPKA)2qg7Gi zB-hU(2jZ-LiTjUuX@#di>38oVEp}I8|LJPsA)B8N-q%?`)EP$?(*>K3H79FwdQPp# zO;)dXQ~m`o{cgp>0>zX?OQyE4W}D->^Ur8weronnec00l(Ke&zXc56LT2dM1B?5_z z=qFm-W!lGT>CyIN@2Mtt137#zOI?=pqt3mAm0qc`m_~EnWwfmUmlkE=Dvi-KFW}Z~ z{3e+Lj~|;?d$d#qwboPmI;RwP4Z3<1!5%=v+Iat`$b`NO(OjS7oU0~2&K7$fLY%A#u zSy~%4IFvxeTuBCqwXQQFdGu$>5G>%#x*MCxWlQp1G`XlNN|?EtRt28tkj(w~LxobQ zb4P7TCpJr`LW^2Kq_pESOmVLmJlCGlxtDs~9MP|{Yc-fD58K+TS-hvoZOBZMMo%0} z3b$n-C7lhsMIhn+^+(gtM!rj5^ z3NqU=eC$Q0&}8b~yNngW8leRZMW)?+mxvC0)?Pj_^;Pr!-ioi#HE@+qUQgI~Bq2I2&FE=$jhASHb!;9;27ARd)NSWBNulpMfA)lhpZ{ygE=LV> zt8KqWiR+f#nA^;}>wUP}-XXK2R^S_G6X9V&!-PmzedB3-nRaYJeaSpGxWw{URZ6(s zP^J)L9NGYL2hTw@v+hI@yC2o-nS zv7he>Al7b96Z@gn3GNS`H3TBUcw+i%!ZA(`M#95=nc-L0x25YG^i~&yY(%bu%7q|| zu{z<^*ess@l#=zDj=vnMR`TqWx#qe{ms+~1mimm@@r{!UOO0pP88#z>EL-C&>4Y~W zZ@Qi`Bn;ZEFEvWGl!(;X*K`@;+&t2E<3!2GH)LxQ^9TWK78N+CjlA&IH*~f$&q9I? z{sw04QN1z7Y~a3R!eBD(w2w0M9g7n#hm~~A_Eo){7TOOq0=io7d~S79a`ENKTDY-y zqLDsRx=KV%k{|fAMXSKbQuQY9cdU-p$623AseWF%nlIL_Vdt_wy9GmgkLk;wYkMJV z+3Kpk31!jBw$^aAU`h?!_DW;y&)OJSF;Nhy1TVn(P}3x$(>h}(lHUNcS(8RuuYA%^ zsO^B#0WKr&&6yn73?HOwi#E-G8Zn;KPcgoymeZ7LCB-~DWs)$Z+rDNkG1*l$#P-4v z51#?tJ?MggX1RL8Em-Rm-p=;+7r1d6zF4DexV(yqJxnv7Mif<$zNG+0eyehunukORV{Y6h`7+egN6pX zYEJZ`ow0qoG)t!6g7}0u)1Fr4v7@Z$GfC-G#b%rQ>4ED@JtrA~puZt*+(h{H(af>d zAty8sSZnRxQwevQAPEeVN?W~|4HQ=3nk{7J!!d%RByHeKkP`)L-nF4MSHLdJIw|1!#Go!<`eSBeUH5((r3Oxr}S) zsl1&kp)+J6A4`)^TBYvJT6qJIPvbc#Qs9D<#jZkGUoJQ;4ySwWB(1FEEX%Q;Nhr#XH?bJAv(C&7fy4Yy?FVFPuhzoq1Acqz5V zPRR1L7pCN)Kyl?=h5l+D!ge5zRI^D}Z1X|JP+M&;-ukQXVPThYqamd1WMBRW+eI-s zk9Q2NiIpYowuK)IW0y;&fvB&{Dzwv9MZr_#U{9Ukj1JGH;BaNEWdjZpZ98m7Ow;GR zF>^`7F)%^kj%$fkuC^E31oIh`fWA_-ZY)sR2Q3laDWg)o`cl-u$Z!cVlpbwj-Os)B z&F6Gfk&H0o^%lY{!<>j#rCITHjZ2y1$PV%h>DFT7&}0Gy>)z>4>dGndwqir^B_Epv zS*&|z*hY9n5N5-f`z4SFpB zx}sJ1HaL^C$%iL~xQZYy<^APoynyPijbzI(4|S)Qxp8+pY7XW;Y>S{g6aCa@?cPk^ zaX!(&o|Ys=8YXR(+-aXXDlRt%B=mE_8^^0M;N2%NtF7|kc3n!~src?JFsc$!!=vF0Yzy$P-I9WGd@JQmAXGEoyncVle@uR zXMMfNvZi;l-QX?CE~`Y#a4G6kr5TMfz_2=rpkcD3x!Us$b2gafiq*jFK~D+TsMk1n ze4#i{>8$$;AvR2VTfdhYx**!z2q$E;PmS>*pOU#hV>A>N<9?T~=B7@~)Uc!Wh&O4C zwxNWIz3Wl;R;I~7VOQ8cG#`ABT0%wcUu%p-ws7Tkl7S%Mg}ct??JaqIj*Bbfg$Ez7EHl3B!%g%As!zKRZ4XlehsG&!_yuX+&w;AzH#*MIEJ^Vd^)b^?^xj+R1G#Zt#ea9 z_Wo2JWbL7kxL~^k+g$efn&R~vcU$w8SL?&r&>7)|RS&8dVu=O8jut396Xy`xv(>qE zEIK>e)&1|0!~|G^PK>kUXEEmcs}Ez4(S$o5;3p$saZta#p2c)5&6w%8h`b_xo_np3 zC=UlXr@B^gU=9oM6}nzJh(^x{Uuu(1N^sRB#9YoR=X>%vv8oy*&n=skJE_s6-TvaH zcV|7ZA+-$f6VKl zuS&Tqu@XJf@zXv3psUp};hl7gi>KV}-c%i(=&Xb(qI`yr@pzALQdU;I=0ycV1niJZ zvix`S})|Aml{3z@O+yos4SAVjqVnbZLnXOs<-TLg^=EZc1gRA$VT=v1! zZzc-%EzUia@-Mgg=KZUSux?X&=4n|J3mevv&Hc2&eR^a*KbRXY*|tcghDBw_ZuCy*0r@hp)fr61^hk z<59z&1?}#M855e7<~+=-vEwJcvRLHbG0q9yom5Q=RykJCAu)$k*$P~Gx&;Pn+|xne z@`%tZYnHKR)Dcrhqr%UZSUYb_o|^ne$W}QFU!tw~?4ylD+7(|ZDT)qG;1(}U=24}c zoJaIl>GT^tqOdmf_1KFnqtGCv<0w68v~^wSt2W7{G5w~FebZ(G%iCCwkB-B1n91rE z=v_yfTi)}p$C0z=ireSGyf}kEIWqRevF-Dz0c`gT2fXas$#wGHsCuzZE^H%b+D*+e zJ=M~7NbZ-9npTWp3cwoSDsxXbSnOj<7*4AG%LV@93>Iiwq zr77cf>Jphk_-A~reBngGd8`oGz?tGlA?4&bc%#WVrWzyqmWEk5Y{!5GQ)j%eb5A&m zI|{_qJ#&1K7zqvQ`pQe`L6WJWE!DQe+7Vu(UvPuVCpi@c-^*f;m1=K?Xe?sh6_YkD zt%o&`@#t-Z%iZy>n0Ruym%4m?M2}9`5>kKLb>ZZsQ?igPXvWN=8eS0CGmpQVW=&EE zvePZ0b>_Tdebr5Q=yKvqeLrpn&9zbYjxyItG7+U`Sa&#wuvi2V;bqo zA|-|c$(Ht@^e_0yjs@PM+(y~Bn%pxrkx%Vr;M#ZkvlN3+=|QjQa3s4@Tl?$(2qSwc zjk8Xy7u6*lp|Bm6S>}#pbX>q^sctJ2SEnN7H3T(63>wN4n^qqbR^PV9#3Qxzz2D-6 zZL+M!S*U(ogX>tNc>H-(-{ldzw%3bn-vo3~w&#SQXHrg;K$dzcwKDWxqIIxOQZer# z+^vveq^u6c6&?2wF=X&sVdF|?RaCRbKakRb*wTsY+~pw=_O{8H)rfG~YQaRl*Kap@ zkzrLdJsa>A!pHIAXIeA(UZh}4DrZ3BQu_5UB-l}Wniv?%ls*KnF5LPjS`XJfy2@5< z0;w4${|Eg1bE{aG`jxvp;#XST_l+|gMr1w}2<~K9uG1JSy{FqiD(!P%Zy?f} zka#@5cc z`?Ts{-jCZ(6ytNoXs%OSuraTf?WeS?@r% zT$PYhY~mtjsR^w&SF{GW)IUbXRvMqhbw;rfAsjthh6YDUO{zFqiu^?d8(FAg&vEdQ z;deblv+`eK#=(NK)fG;pMax!qqD_@3yR3OzT<5bhgDe%T>3288)kZ0it%DN-v%@uE z8SZ#&Re9uv?JSW`B!d4@?xn4wEq9ByJT@?N$U{+l!AM1%`IUA?iA7UwXUxh>IAqPv zk>`nrkGR9i<*Ln4dG%`=orVqmC6>9erlCc11QP|l8oiSgIs?mEuTyEM_j8BUvER?b zDts?CoK1AkG|vdD-mo8fj2kJy{v-Tg@$yjLwoO0ZLe)*uvHt7=GcV?Mf$WG&L&j7s z&I3(HyPdHk+v>>jmEMIdiv=zev=d`cDt~;KF4gE$1N7r;0+P_W8MN+RKJyA6P`xb_ zx}wv%UbujKyq1&XJ~754`Z%K;A}mnOH=S0~C+StPBr>#(E-l`WTJ%;Xn~G2|0`=C+f{>Y+48-Z+_U=U{lsE;~=Q>9HVi4G>3m$K! zm6_Uc-I2xFR!s|21vX~ll8UE{$#M%1#UMGg>1#wXJAklxcWT(Zf}OMV7MqmEjuTDC z7^N$H9Gi_Pw#qOX!jKB}g39LSYbV`Rp)yz|{FKU&g){WKK?{j4x6>y#eJqp-9p2ULiVoL9j)?-2=UE3xK+{dEyo! zKtMPROHbF-_n}xxbc6o8RPLBe(>g~hp6LA}j|#cMXmNa%ap@NW55r4Yi*`Czjmc+B zYr?0cRK=b7S6Yn-cG4xsR==+=Vk*z!&n~A#L=j3tLWg^`(N(2$j0V`3=&38Mo*BhY z!{MLXl|(8;t;V@m8nvEsUc+&geImz!jPVy*V;9R3+--_a_u!K|XTYj2PFYv0I!C>) z9n`7Rtl2V0CXliPz?g7XON@T-MAH;@{9$3-g6BPBTOl;`0Z&i4e46#jGFN8r5>HR+ zl)R%4Z;}+qztrNpCx=OX)eBwu*1W1RsWI}qY@{FNFW;JztAIhd|Em8}eB98(rk!eq7Tm*C5lOF&6hAct4-rP{kzt0l$7$O<`&{Qhb; zb-CEu78+{rmDi+4Bigy!En(}?oUSA9u8%!;xtO#f6h(x#xahY<+}a%38h03y6*Q%u zF0$Vg+EgnEfw+6XK5J@a+oa;T<@JRwT(k1XPsa3gGRM|*)fb5(w^R&zE~)Qn$I6qd zo5*I~s=rg@PNR&OeRL!Jg%{VC&Ft>?5=y4@(~y*W&N(@*1WJ)D6|*JV=!b}rmZc;D z-85fN9@g=ZW2I)WyTWVnyoE{wNzwBcx)eK&8vHYC*5O<=IPTnj#?M$D?o=;X{vY<% z)z?z5Doe6aG9y@H0&>M{I#vYH7y*TpteYjZPIpUwH(2Rqu#Dg!h*znC=t<8c!*WvEqONFe=II?N(pDmY6avZ2TB{l7wV0wvR7= zp<7yY(^h3=%hQB0=)lbfboyTkh%D6ZLbC6jt+zp=@VmeM+h}k=$iNkt*R*)_QthjoJX@nY-NRF!HjaS5z}7t~CzroB(!g za|}Y;GqEO)IL9HZ;bzMY;Whf>eoa^REYxwXWDQlqj@avY(3>81JZM20YR@|#JVwgK zn~4cYRXbB7-JW#X7!tWU#>S}0XoxP64Qhyd9h-ZDRt zQMlb+^`+WPCHb99e;?zKT=QHL&g&Z?+--{d^!)dMPs+Ogeh&PuA+jv zy3N*-zDx~eC)uX7det0{F~hz5gQTgpPyJROBf#M<+v#{Cej=gMoXE{6p z52?Q$B!iXhdUTR~yHe+y_S2c#>9IW}7QA?h;#TTkZpX`MIbH+yj4O-BPf}Pp6e2-V zM|UT}Z-H0p$XO{^-_i5Mv*ng_E2Sb3=ZxpJQx_&zg{mIf9i!QE5BXw&i1$GX7>D_t;^l{mgoChuMpTL7(jz(ew4y?)Yl>V4UN}+5MfK z?1~h-=Y>8WU3PkdoLO$j1R~@aDi_f%BERq1Pg4RssKzt1bXEiF%9InX>F%YON%P)A z+H^pk))Umphh%mxEv!bD?*-aEHfk7hmS*vHKpB2t;b7eJbOEN_YpN{juF)PIM@TZ+ zHi59iH0L^^Cm8mC{piHwb&h9GkN$wd*%N|fr2lfb?j|wylR66|yglI&BJs&1H=RY?&fctO29bc|p@E!aEBt)d>l?GTVKwiC& zXbSC9<-eW=D18MSh=ih>5|PGmrAwj1xY297d3a}q$uK~V$#@=*13oXZs%Mk?LkpwZ z@p%DhTq!BI@*GUPl#Q%vkL0H;?n{Y6L~Um152t7`SRZj6?Og31a{31rq-bEqTbz&a z)M%Hja&wEHDNNobPCCBlj6@bHOz!{8iTm#mqD>7erGwZ96nlxSO9YHCOzFrEZUu}!j)m5_q3Gt zky3{eP$_KmRL2qEI>>gv=KR`dW~iv=XhzfVqnw`&vKt$iV{2UaLBPv~3KDu=Ym!eDkLjwLP&Fk^o<%s)=2DBGtaWOr-ru+^M~I z;w}H#`?#ee>!INei)CC<_j3Ukb~`8@3|;8^Y6CMu&&@>mlpe^x8kWjmTWr`lWO7}8 z#J9v@@Zn$7T^CQh$8KMueRHZ_s*&yp&cQG;50+c?!Q5_IE7Kt)OD7LO2eSGjKj_!n z04s>cEU$5@IJ!!f`-}Ag=BBlt0ea2b@HLJ0fd;9UFTO{cEF)Wt5@`S*?|8nO&83o@ zkG9NX{NsBR5tv{Q8L6d=?+Z}!;c`riQEWf7XrpEAG-f>gao0~*?+{H2?CJ?xAiU**lv2>DD0MJ7D6nCE0LUd5S^|G$yv6~^LI1B8(v$%I;n zAnpCyuOA?o0koVrFB!#OHEw`?mw!q4Z!!(YEzE}hvc}Op_3`83+t@<`|J8y6;ep@N zl5~~C&Lox^=*qA(X%4rkusSLH8!6{^)`oY(p{>;))QF#?ie0{r-@=V!)|EZ=V4IDe zdNs#WZR15e*gFF$4eCqX(?__>9gGaJ3lNn>aD=Vqi*n72?-MT(4j|??&d-Sr{#pq$ z=6^LaFL0mXPt}Yo$hvjZgj~zK4oavp*RUM%yx{o1P>WL2J{eSko_CJYg)Y-m) z*_hR=z(SIGzRH~e7S2qHZ1oU!Yp-*xls}hOijxL5aByh5C-NU;Ei8~0x>TszY9yz6 zbe7Y?<2DFPt3@%Fc6-+Yap0x6*N5DG!D}CZm&vU?QT2LNE^Gq|iBEz2((GE*o@>^6 zYx}$3uNtUZSX-WNU>@dHHec>e)A&WpYPx>f)~@j9!+(f2AU(U=(Si3lV7{9H zkLb;pSSwWS=o?d9-5Iay4Kjyc(Z;`_e*aa!K|ol>;h%PStbXrUqz(wp{-}PjD9E^^ zI)tQLuMh1Jp!}Yme0%DDDhA+E+0lz#K0*9NTRlNews!&ART+DKc3HR_f;$HuS^3{- zdQuNg{bwFy-@iLb1gA_%e@v_@^5}&4&z0V--q(2dY%`?cKqvQq4(`X=PzM5Ae6oES za6;pVI&@&W{`YJEF94L5rzQPTtGnF*)a4@C|C|j#o!;6}r{>08RC@^KuqJEzFUAM# z1yHpw^9kTg_AFkCYJaVOgq`}n!~bJJ+hl;R4U|uW{LG)ctEV|6$gF;m)%H}k-yxb= zfY@hoX7a-CQw7Y|lN0a%n9{FyK(9A#g30fCOzhEsexZ0TiR`aI``z7Plv;#Q1I|f* z9x1m2MStLLj}&Rz)ET~S3)mZ<)K!aSj@>Sva3Uk^>Wv?F<%1~sF{)0WONxurDRX<( zt9l;(-#L2y7FeV@mN&{Yc5?0hs8Pz228P}LXRrEwuC^yYHf&|T*!a72`<#VQ{`-Yn zhed#7!s#y-$$!nj-Yy%ab24DcT3i#vR{3S)0Ff46JWwr=|zd96;V% zL*MrQ9)e%x4sXilZy;au9^7^&1R%d!{5&-NT-7iOGC)hRB47MuD*bxL^Zey=Ki6w_ ziE7u*0p|#8)HZ*`cpwBcdWItmWE07lBe_XkM zyTaR@`Mb$ccL0AtC_>l{vv5zI_kQi}BaZ=f@2oicdoFMCghPL(tlqhQUw#~PXW)E? zbj%+*4?qNtL(1hh2m{}ap$1f27&46bzZdU7hn@hZVM4fnIIs=>=i=>C2X`TVct;{( zM719`)&FC3yD~LP59~VLh1@^+|NlL_olju^9jYw{W<=aoTH$~^!Yqz*{K$KAP;u>? z=p(Fvy3^cOy4?j=B?tYoWS`sYIa8vlQMPQd>NJroQ^HN8~o$8bvEF9VI-wh8EAyCKSkpj{9VbNN%egrqh1|R#NHcy3|cw zIDMaATR|&L-BJa%t0Qu+@x5*PxMM8s6>9 zrPt+6N*U2G8A)g!wse_+zD!JZ6G+t^9w~zNn}d*~-DQt9DyCb0_sEZ#`)pwIMVIjD zV~l*z{CeHg{FQtkc0I8VmLS`}V4{*?rW!HcEg5dRoRE3Kt4rfFm&jUF*XDL&yeob0 z)yF}HAN?Nn1Wdz$j|{}AkkwFPn1;{i&C;$w+q^$fLGG*wR!JR+ea^w9iCO=2uGqu7 z0zNZ0b3$DcO-I+gc(--RNWT~?tWc*ZsV?sRcg1*+73zjA=Ug^uZdh(KsQ9@vBSOtp z4q7YVh04-|#d)xI>-c18A-*LPIQeO(C3r-yaX$ETstQ#+zyf(2mS~W=OTGTWRx5W9 z47)hm4-TQeS1b9fB(nnK)Hwru!Xw9hsZz86Cahn`vrW27= zdvz4=!f#3eg}w61>*;9by$+|?gvG$cLCcLH2)Cz3Za)4O{(@eMSLk@tpYL$njvn*3 z>tD>7SK{$6nT^R$TTLb}u|1G>p4M#DMWE;T7~YvN?ztLIgh`P7M|jnaN>GgTH9lrT zB`FDW1uJo-y7BN>>9Y<O3 z--$Cck=E-E1mx!ut(|+k)@eE0XoAqxRbmZcHciYWJOa5z#-U1j&TJx9PN|Efk+TCH z8HF}I_*Tq)Y-q$pK9Ihx;my*rMtxj?sb4)MK9^%1R7ZIxLn7N4~0mxx*8hag?B}Vuq?$Db}AQ|YVzq*$PWG9{t z$pbkV-Xn)Cx?+}>-JB4;OeLJRaZW@%5%3YDtFvdZV^6#a*LbW+!pV7~;g!q?JN`z* zL~_G)#T}Q4JkqGf7^{iHt@KZ^OCQK}#0Fv{DCzQ|^4`S_801~@3cw~sb$T(b*Uo`@ zv1QO8zxaCC+FonFZ6LiF0(>~+S16_dV!xiL7IW@^uJ`@ z7kh$QucPFvxRRQ|Q%Z#h)JuZ(lO}z6TFd(ciXh6@uG0cDDC(h%H_Px;%U<;HR`Xy> z+__d!Cx{2sI3weJ;nu1xWsLRH>}^GjhiPXUba>@b;g+O=M4GK-Thq^j$_e~q@xAaR z`2dLXUHP%*tYv@G)UToe2x!y)BkVcgq5S`kXpmG$nWgNNY_ck3%gkQc&K}uRD1_|2 zH)rpiGO{@wXO=w<8D|{s|4^j9-|z3=>t4N{bIBk zwJHH~R_>)Ja^>6avsUI;Xz_x^^0F<+2CKj7_viIuR%O`V1_cNtGeOD?UB+ylzR@P- zm|>9S(#5ip%DTud@M+Ll)#f`WL1W3CH+i={YKzdTLTTrlnq_9JbNfJn>>w)}}Gv+2~1_%cF=>K(7m+m*^kB7JG&lj6_2Yt2WPGy}S3oNq6EhoL#I@&1aEkgRFil zu|=6GL2eY9#iKL0ZK5iFmnY4R91e}0l6yJlElz3`Hbo!7c>r`iHc?mdnc6lrtHHSy zb0yDsHK~XQIcFeFN|==@pp|YJCU3ihEv3>|tyN9VS@J&6s23s7@tAweMha(RMW1K0 z*c<%Nm`*b>Fuq2Fp8Q?Uz7CXTt2@b;>%d2ZX%@7W(z`IV-JPM{eg2Ns#P&*+YKJ2Gin{=Vkr_Cw^q~R zv+Acd^K+|U-{j9tH`wUHY%hh>7)n=ff`%-cz%Me>$eH?m2`o%n2@FivZ!lV}mbhYX zE_YzimZYS+l|07Qj8Dw6V1W3}5zjX`P=RISUxzad>&tPlph3N7YdK2Wbx}w~n7m<%P$ospj`AW41u)q&ooo24e zYsJMoePs|BX-YTEM9Yt~=8w(eU5xD3YNBhN#)Y$M&>KiS(7eZPcUVm{k`+xyO=)Ck zAUS^D;BQA5*o4M$CbA-%jk*88h(3*nOp-C@8j$yL63?yf%XJNE=7hYeO zDB&8%zv+_Xt!bL@bSz_cBC8+^}Nu5H!VX7k6}@Am0Y7&B~Z(I&HFxalAX zHmh|u=zi)l6n#6&7(HT!$ap8nNTn=RZMV2=W$n^a4)+(>{4R=m)kBwb2G!rQ++&-B zV|Zz7XBv!nfOWn`H*Ocj?$TuqtSOh;Hsug$>xOmN&9dhPEJkrsQZ9M8c1KFx*+ej5 z*+JFvlB&k1J0f>NaEip8mGb&ILh4pX4}g}yDwa}7q~1o_Hc+3M@j5jyLA6x!ER;Sw z-H}s%N?PNk&t6%efMU^Z>{RG}CI7flnZ47CA>g>-lUTqMkHSOjJlcwndt0V@{L4Mr zc4Xt(sk~&wiEG-$wB+*Q`v#N-7)Ci+Eumgif@3mL8!FQL*$mopMW;I9gzL{Z9Doz? z5-W78-XKC=QM6#LL^|@EVF27l;F?-tEFI4cjnt9+EbVY<<6h2y){Ia~1sll+wD*&X zlFekcQF+WAhNLpjH}B6)_<*O}5+W#&p-Y$XFgUzkN`508e#pwtL)bQ`IFTdenIS`C zpHY0*xje0nU)ym^aX@h-YB3ioRozFjq$?2Mu-^&uucB@;&Aiv;Am<}9bbkhaUx61l3uNh4_hQN0S6=Jy|@2r zmZigF|3@ZweeR-HHL0txTwKkVbgMxAM6&WNrT(p{(ndY!S>4D*Z+*A*vd|s**Lrrv zR3AuIqnHQ!J6i4_yTS^KP|Si;9Lf@3FNT@T6+9DGX=iLN9lc=7irrPUIcCp&=)FdW z>L*QSE)!VU4Iqr|HX)b#v0wewahp~G6O1%|^;QLsJcS?XV7GrTVU^F=GJI(-e$(kxh!B34fS_K3~OhJg|yge zj9?R(Cv+UZ_}8P81IyB*NC?>0V16CWS3}-c!x+D@7Y%@5R?cs;s*Ndyhc3RBN)DP$ z^5t0laapuv8#uPjS|7b~0N+|H(;PSa@=fv}H}PHyJaTMf{Oo5TgUsn_R7Rg8th#nP z`HR*U#Eh}7vVQ1F^GqUbHX3fcOf;VIzLA~`Qq~=A)Eud^==52;i3=ST6(x@#RjBnw zER2vwa~XV9k%^hj$nB7Wl!8RGO6zUjrq>;0aopF+GyvyAJq-7=b ztT8LWTNBO{W}4|{!JyDF-sRu(uJXF<`fD;^_UxhQ@OMU@*a~n~57I zjCSg?oosksQ*3z4o4Bj^}gqnblaBtJQyz&W7%)`}6A;mG9kG2$tncuIH z_Ec9(-NZY$WI7l{nJ@neXYO7Sw6w0#dCZkrxrEof$z)LxIM!h9?RPh>q*s6z)+5%= zS=e8kCJ!*~>Y6BpUP$A^k-S+SMRCEXpOGpuqDW4DqK&d*-o(=KAYgHOT9WZa*<)gU ztxV+=)B9=EM$OAF9GeA}5RtjutNe2=Z8lTwMDcvtrfnOg3?cp8lr1I*XEC`0quL@} zFQtxzEW-pBg@Y=#U_}S2wh7Z6eT3DE1!cUKUD2!>yi>)($;DKbZm z6?yo~?rKPIM3=0j%O^j|ldbYQ41$mUm5W|rVH|0<0dr-k^Yqak^IZqNzGL}#@x0${ zeQ$Onh4n%@+x8UMI2vzXVo&J6Pj=3$ZKy#d?XFU{yRlopf@J%$nUcs4M=uVxGLVY* z=I#Kd%&hIJ_VPu9K@AnC_<2#s7B}-iPs7dhl}!aHcL8B5DxLh<(rG8zK^Gop--y;dJ&ccZbBR9v4VA*;ohO$q_3Ljd3yc%m0#oVbJEm0 zs>`!!24~UO;O#>H%I7NEJ$otCcSCs;E)YM75NS^6N$y|A;siMuVh0uojYD{1 z=^WiKt)G4I@_o1!U+|-B4I5wI*LLnl^>#ELd#W2_Ryx^J}z~l%PJ;FqN0|eI2e?@1^P$ zwV!YxpQ7nEKsVyu1nHmaeUY}ye_s-f3_{?_mKw5K;7c@x4NnbQ%Hy%JG{tRZjZJJzOP~9w)4bC zs)nP;80UbC>Txfj(}K-#)uMB0j+)(*fpVoXw)9bEvb=QX?D)Yd6zL!wdpl>9&=}^d z^DZ5yM)F=!Mt3-0drLMudk_CtBPD=`tV(iJH&}cY9t&^RtCN?~=fixYji!qZ(homJ z+dM0B^<7odQfaKiVd~?{^U%p}W@l}$nWqr;;T8~K&kJV{v?+Wo56CCq39ps3hVv2o{lw%pnl7>vtTILHclrnqUCjG04t4)$| zsaD11IV*|&mrsaQ@~W>7J=K)@H%sUxX2H*jO=h5Dpiq)VCq?4mGqqrG&u}4 zVwaY&-0X~&a%C1;2q+>~lrQdzR~ElbW+LAq+OZImc=14Xp8ET%W{C)<*mDHDTx3lH8@zLr_QOnKHSQX zwnbziRGd@7sRFFR1?npeF><3th7d7M%9;tzYu&}%!d2?^3A%Ou5bqzP-FZ~~7?+^Y zAgwNF(52#GHCPYTBBy@cpj#b4`l?2=`UZ}5=?K$gf3oOv@C)*yk^*?C>`fIJYsm3X zjrwn$Zdm1#b)hp|%e&(R8Jem$GfL^zxAL9jKdVLC*XoU!qsQizz*|PTEwU5nwO3Wa zRR^)~*1oz)k*d!rT2?tX7t_da2v)?AW)~e+a#ufTQ1K$!viz)FZgS*iXtIzI^WR?B z!7`bd#B&-uSF4NMdJl&_ZUXztkH*{^s5CH$Nd!!|UtW*3UCdd<-0~ZjHtenYES7 zXudccZEth9oW~!v_e8u^v(^pEp;&*V!J=P@r4 z-mGO|Kh0rOVi){%LM=dcCsj6;KsLA&(?{xz(G_|h4R%s^_xsOB5zq5Lf(4|#qU>~% zVEOqozJiC#?;C$z$#$U6-8E9{;7k2yj)w~uUE$}Mqo+3BBv1mUrj_<=?q3zw$!t%? z#yTp+c^xN7cwO+016tV`Z~JEw@DCrYApuDA>}`xEfsP-i6!Z9>5BNR>7WuJ2j^-o{ zBrA)y{-0hTaCExRNG_Sn8IgSF0ml5FRX<0QI?BsjxrJ7b4LgK~@aZx|3N`qP^Bh;U z{+#nUbhmqgPyW)>fQLDc+2zoK$R(405p{p|_3c=%uYcx1j}j(NJWh&BPXIbiG3fxb zK7zGTVOU?+J_%-@(!?2p`I*9afVt0PBq%*>xPerN56KQQ4& z1-wK}U?Yk9Ct~oQc}V_3(aD;ArN57d@N5J+WvIOf4n3`##IHL?`Jc!W!~osKI5QkZ z%{kKJLdG)*r=OV(N)-TQV&l#wf99TOq|p|C;pJ&ln94~k;P-MoDXy>O0Lb19di<9L z1yalT7)Do4NZ=P$DFHbw6}}z(Tj-l7jSYU|>kr5P%YJZFm0_UV2Y8=A(XIHu&-`S0 z4ZDOu68dl(jqzs|L+6#6G(#qhS5KX8b90vbpeE(%Q} zd%}gTt)bf<_h>#I_T<06fF~Oaux$8rt?0;g!T+_iU(`N#RHWjllOcCBWzRm~2=RZQ z^Gun-E>KDmBfuOi$|?LWz#@mIlg@=V!ptbyNFy-PZ}n9WnT(J8<`5 zeW20FY2`nmF}aFfg8L6>cL^oF#Q=3D`Mf+%hy6j-Hz)*I|5$@(A1#pOv|ZWm8!>hI zGYNh4j^h;d?-6Kpjw)G(uBKE1E&w@t$^S#GO_adc6{%SlkLT!FjQQe}Lr>B9`wgu} zS|I-E{nOX&Yj`03OF#mRtX`LS);KJj9!n0)7O1#j{FAkQ3CK+e;BL1{H6#2#ewMYy zG&(+-`2^O-vznGkyng|-0e$itlPByXD2AWddGh7>A;B!5%0tb>o}H9W&4c}qpN@V% z2{D|k2?em@5(@e5CWVJbJ$4WO8RY+@ls~Kh{3JjLP<%-<`gz;>Jwes~@qh;>u*h+R z7pJ92q3UR=|Ao>!4S=ep)`@cT`G)Dt!^p?boe~$a#%lipcb%3}vuGO59+`q5xXL(_$%TX=ROk4QC z0whDi&0^t?W=p?1NS)5=Sk51_e(>?`Y z;)GsG{Yjy0ar~~$5f8=Q2)-vwJb&`+>8$?(zGw1{0xLygtx_u`two^ZQ?1PGwqm}L zShYLvvP4wsan+-vNN`Y9W)M{X#?Y@?fnp(k!OImXERc+ze zgX3?q_Es{^?@`@-fBXEO<NKx8q{ zaGmxdeOQrS)j?=?{q<(SJN{^U4P2*9JAW=>&GqagG7mKR52d3MxV3~v-uMJAto2R| z6qvJXs3R%7G;bwa&#Wsxb%Ti)o6r+G_pG5fVBUR$;6$yQ)bRJpaS-8 zt#ATjYkcrPL$=VxZShp!<9|HY^wZ+MHV?d22I-u6;M#wvxoGMRQjKYuE!E$N4zxYN zwub;#&vCE>C?VH&zgSxD2b&Osucp_PjsC9X*X*Qwq_UL5uyCTVPV3Fb$7{RNR@YOWLHiU%3Ft^Ou4CYV3@V7j$Bm*Fy zel%P*g4QS|-c641Ee29f^Zm0Y_kIh}V}OXqdmPmEAG$>=w}XgcIPz`Ha8KIfp0M&I zpePJkopnGu5WxXRdOo{7Huv^HLaDw`4z#^LL`4&gHi|0f;D9Zk?$=;PwPr5(cYae7 z(7W+QL46Et;<@YBW%-`Lh}X}Kt;zrCMjxxbJB9$WbB`4K+GQ9_DQNm@Et9dBH_{Kp zwwUVrxp7~lm)I~BdSJ#%LV6F7r532(*X7?bIQzf$Mzr87HyBKZGQu+g*^5TlrKv?p zq4TpXv&K`;14-t3d`eQvR*`m_6{3y|zueBBeK`T?;Q?4I#6i_z(x+wxCgGi<^oOhy zW|`@aWUYtQsIS&d@%f40RvZ_{lRr?XJpz|TF|G%ufgyG_Eq9$Paz6AZDRmNsNmU0d z#t2Uh9ISALTK2h=K)5$`;E=LaP`_(@%VB~3!`~EwAAJtH=3)LSqVx?OY< zcuI`}OyI1XS>rQMn!X>YX2inkx09s1b3=H&I{KQ8YZX`9Ox2Cm^>eM$cJ_^h5tf)D zTZP`k*72H#*vgI7=kaephZs?x!~)2YE>(ARDGSrAk7Gv3l=H~N9RwF>d*oS_4wq#B zEiZX*92gAp!iG)bNnFcK1DPR-vt{m_i@S{WUUU0?H%P9l73Z1b3}8K6waKIt)^($Mz!$)N% zM5-7%489KPkv@!nhG?4j81k!o%r9yHLJ>d!YhWeu*CzH;VK67EU465DX`gN!!N)_t zn7)#2OuXKN-b6KwIagx^yH>mB8f_~^E)~tE#_HoBHxn|kG{BqChW%s;x!-x;|$kRbWG3U0d% zR?d2@63V26bl#g^8DvjAz-F6$-z|Bq(i?{BE|%XNpIFWO5dkIwJ8Qx6V%@_RqB884 zROP!sU`cLqNVDOdNymjOAt;&2OV$rd9ud6He#Zn&2tzKQo79r#jnA?qxsc#qPe)#NE;2nc7_Be`y7DorfH8oG!9uUZa zmv0VLJw{n$Fy=!*oY4&i#d%fjHDWO(ue|i$q}YfCL{FxwWcSp>C0o>}lz)f?Z^aCn zZluo`t3qvgIaSp&>gCPi z6w4sYp#l?}pP)H=Mld|S{)W_GimkN`c{Vs19u1#cKZY5+Eqc+iz0MWa}GWbwjZX#$H8oP_dl#Gyo1r1hv86J^nG^#Y47RctiaVRAO>;tIWwPa zO1W7yV+5je#6DXL4wUVcz@4_nQIHMZ;`FX{+RWE+wjO)7Fo6FnIWp#GR}=w+fL4XIm&E(}~pWpK#27@!x77Y~?x}1Z)J)zB>gvS>wf?;u^V#?akh?+r>+l?NAD8L*gS(vcg^WGlUWEP3)on4(`U$rMD3acAFe1or`MF{2m zy5$$3P%YhC4$J4RQz0edh72(d8#*+w!!zuBH43E#pbJT2HiRY{h*x0ZDHkHdeE8~? z8p8i}Lc~IC;4-Axpy?}oZxe6MTFUTADvySp18*@SC@Vf;Gioa9`-N@WfdPYoVF*SJ>E^}C(1jZVzX zV?lTvSqIW2gKic5w_VIewIJ~c-&wi`ZMGHc+4yw6wd|=7l&q#uOEy@)GhZ20?(R@a zS59~(P0oYI1SuGF?|b8ih=G-xW-}t=QIO8S+9cdL zz6_mw&_jLkuo$g8)c{Hh=CD#k){@=EImikfvni)uo+M%d>t*^MkA0lOQ zq+MHx7~}FjZt!#P2QGApl}XPn`a`X|(%vrA5)3<5aYP3yJ1nPS&1zH|F3i$P)hd_v zCc5*|m70>;j2{NPtU1-nM+)TnWm&UNm~A&7(Vr23Kh-&nl4oQ7@-$BqlO;a|EOWcl zBna#sj)H!^O*6_ZvkK2m%$y@MkyFMC9j%wn=iiEqSJ|vpNC}D8Sr-t8c z)?nZYEdN7(AhbZNJ=C(uJGq&m{~~U*OZt8rpJt!o3Y!Gsd~MoN3G=+Ja7>Zm`1~aa z@hzn39$r_55d?usenBi*`!XoJmi3vk@-z8H3cLc>MI6wmme7ZlC@_kD70W1ky*r-A zxNpfdv}{q&HN>C{mapR0GOW4rm1SVrDkGUhVzvn*f7RS<+$NHU?-8I_ZqbkQmmI(% zN+zyv=2*W~! zngZKCFx*SPVJjz2a>UhKku+KY4{L42FHP?+J8d;hgoSecVLk#j5l~lT+U2bGCn+D* zklnacB^^?SdR~9Hp2F`ubX%db52b{+nKF!6Vnz+%aRjM+vmQh3xo?^3)_ms#EAN+6 zt)^EJjV2e-t6{P`X_s+OA7+x5=R#*0f21#OMQ>YTSIS5BtPC69K;=MJtuXJCQY!Wg ze7+f7lO7LG_h0Cmd^yu4v!DkVCohjF;&cVUZUSadxsa}CdM-0nD>5nt&b+W2nSsC@YxS zwxUdyE4lKxmZmjk9DOVZDPiwE!f)^=4C{~VO6XxCJ0MsE&bS_ecM33H(`8zJAj)=0 zvfj^<1$&z)ZCuffk7HY9BT%SZAJ$jMG;7OyKD>)x;IeO3!tET-))cT4LJ_k)kb?wq zbDHk(X}*TqheQkyU!AhF$K#Vz=BmaeRO*6=AX-v$uDv9DWH1t_J~~FbQD&DhP3mcL z?auFgv_O#I{?VSUJG4h<&Cp<>wVeqTB|gLKk3lGxX1(A{p8@MV_T06WEAvUY3aPwR$^r$q_@9e%;p zut5LPt($6{+=`*=W8zI6xAFzH;b5|IoWabmHd~*X@2Aa$dTyPa`LR75q=nXZy1?UK z=QJ8{-;~jc?=vV#L`3fvW26xf_i7$&#^n@gAr?JMpNsd%5et@W^u6^j6|M>@dQyBb z=G=O12-{Tc0Br5E5L`^WCp(QLnx`Zm=0KiLfb=cF#MjJ3Khs<2#1cOnc09HiJ;;HC z;&_xz`>;sLIC%=118xs}{uS9N|3<{3JBNqaT>iE}E@P2b|5h~2A#&E-icf}ET}+Bs zIHyHQ3ZHB-+it?-gY%>qdO6e8@oO~f=(fjuZ%-19$5ehM+bEcIl&L5jd9&ou8}#j< zKRdmpO;>Xi(RSZ;(#e-&Kj5pcTB)Q>hJXK%p@GRKYWfmwh15o~m|&>s=vzv+AM9Oa z+&=^1l%gKtzk&+CmFsDI-!qs}*7|jsDOHx@2o0-1V&vFxP%UVLG{r4o^Epwui1?vd z^xl}!Moguv@>WchoU=M^F^|MZTBLI)M~q>kNlP{#3vT3Ivng;wqN57`xC@8z%7zAuP9sIOCpb?B94 zk>kP8?D84@v}|Po>)vuWAm;!_8vTuT${iFj$XM>P?rIZHKKX^%?d?E5UF5 z-+q-4T`HVGd>t2Ge1wn!YY-d4>K{wAlzlwFnw_4R+FEYg^xym|nCM0?`1!2tKjIXc zPv~hBMmf@fCe2SiV&%|a`f$hv8cNER*4gC4RqEt;o&L9zwr! z=CEJzL%tKRqK0ank&hntW_Z2H zcQ6jY@-w{Ls&eVU;#xZHGO#KMy(l4R!mHo?Kz_;m0?he8y8~GAW3Gd^AWZmN(N;jsV|d z6{rZ$hUU(y@}!5VkA&uh;w$%64JeG2M*bLNlanGvdjXBM#_8Vy`sgDW?W)V%=JsXz zxP(plM$E(Ad1kQ$-D@=_ctU=ta-oO*QT%hvLVroa)(F9@OE7P*$~Q?-96F`Tgy%-O zo$V4m0)xqh=CC@_%?FoRLfGiqYXnEke%SNR%+PzkS@zDgF(Pn?xdCjn7zC;Cr$xh8 zxYmSqti6<3Ltb4lV}%-Mi1X8I<5j(v$j~=M-j_NE%(2KQGMEA~Fgt$d;HSRT2~nKc zJbXu16$AaAk#nB}aK;jD`hgn)5$Z3hXqr>StF-vBC8DV1GWg@WD{Rv{( z5dp_>rIohJe{XvTRwwQE9k|RrD~8f7RjMqrH+MwfRp&`n)+^?ww&mf2MQXALxXaut zR4e;_9Czuu=7DZ|(uC|}I=^ezF74C`4sQ%JZn8uAr^?0+$Z~H%p_@D-!7a)tlZdjF zR-(6Kh)#RMK@v^n1BcS0*=Mq&;?R)PBs+zC-K)1ZUW`>ND0bn06)^6mMQ-cy&52_% zDT^U!CuFtS1Lu?Tw&H|W9G#u1k*em{7h?1Jx_({j51NLSD z4?B>+5@_bihXaRTR!ir_#Inx#^vdeEtVZ)%A*nb&?wSiZuaQgM+soEvkgc#!pGYla z4O_}cqgfq2Z;-kcG^Nu2fQ#Y}l;)_G!t=7!mU*;hMTj2eWsu+=#smAMot>5np-S{D zyNN0Jyr_es3#06s^uclZr9>Q0;jTEBc#B`vaLDyDc4dOv`i!Hix<0S1nS59p(|8UQ z%^K*Tv{sz^7$JPd?gZ-V{#k8xWS%7vdT!h-QG5yJ7B&nH? zUkwy>lC3`PWa6IN>#a&jvw8k?iM`Om!VV6&lkriBO64V1ptZxn!}Mnd7P?xc7N)O* z;LfHEBYF8`SC^8l&PTuM4lU%6gY#DMn?)^|&3zf@A|Q}DoU5kka1qzsmf2buRn)Lx zg;y2k>~+`=Ubk=8Vo$9Un_TMOf8Oc#u4VpB(bbU~kvYy+h7>;DDX|ZKg;}SVgg?@GE z8!BaCOHL7~t&(MV5jYA+)E1oZet*!TVYkU%0yeaH;=r(`Pq=q#ZK(TO|06i z@NGM}+pGkgyZkR7k14!Fpuz?H^wTMmi20_hQN{4OZCoYMN0x8zMr+8v#cx5O9+)aqhGJ#Ct(>$ z!?nKdwygSwApfdJsfTU3;9EL-5#3J@REiNzX)(;{Olm1>J%uWPtr~qRySE$y#U^2y z$-L;M#q~@RPc0o&m)~f3^IwD0xXga8&+vQB>+sA2<5?mQb0GNtA;59XXgCqvD@$16 zSn>JuX96awVx8wB34ZjCc-ZeG(k#8VA0^u3Ef7C|fo!cp_*;cr`wgnWyIo9994nTl z9_3G~yw}eDw9?vmA6z zisD}$yJ6{qz8QqE9DD9fnfI;*^VZH0En)9cpCcx zX!=0s(l7BF`KNb(5cg<1oyh40><(HB4y^1`S4o#XaQ522K$8n-2l4FB@p_^!Jun)H zcJeC=_Tamo$awmWvljs}9%R9124urVy8w#8WF@|P41mlJ=QhrQ=5$6R3Fr9k|Adie zIMv$HtmP}5A1q7{$ND&;%DNN5v^XmvC&QK~p_jz`39Fx=ZuoJz=gARzDk#vq`H)w> zBSapX=RbRnr(n=ib~#aw^2|a7O(_Md|9vX&8xA)XUM+3gT^c1yX0S#Hc16)!KTqks z!>R05vyZL-{DatKrDB-avCz@eKbMuwY!%xzdA#?wqdc`mRyn-ADcD~Vlau2{>(@$; zo%0v(mUAe9tgQezkgyQ{ML$M181oO#OzRh^`QZ({`hJJsf5NkP(IwQRJxq87Wr(r| z`e?KoAYVSPJCM=Y*_bz6`~Ft!)nb(3Bc#i(LCzdgH;t>x|FlhIO}S;D^e-s+WUvl%|2 zmcq-5qBsv9pXwXWQ2TxspEcsP$<6bhA9G&YDxc6>5M9-4XEwcF2)gIuO4hiK`Kc{e z?a5ecrbflgO&PP1DztAgP`xf^$d3hIX3Iw^grj4G4vEq6AT{?!kLtZ|0utduUH$Cy z!@EfH-2KfbX<$2n+~#3_o1rqkKG_cN2Mq74j^}ce++M1`gozMH(RC$)LcW(e&#(pk zPYU{pCICBw8DCN)bHD=@w=2RPmSRN`7%IW@tkozCep7gMP_3GFy(J)x#yHQ6I#F(hHeVz>Uo_kgz(U%BNr@@X zK))pV{T};EJ@Wq)M!;WAIMn1+RaGtG`s6-5Oc_)tn3j8Qd?V#>|I+wQOHQ*sEL7}8iT2f%YoEqU zUQ4pkc>*WAej8BMd_BsM{ar-1IT3VEFcs?*AV>;9)4vGv=htIV<5_iS)G5wcqe)!F zffHBXv@?5ZKzV95#^Uk!kM|XnlrWt)Ha0$nxso}I_KsvyvCC>UviIETTB9PxGn4VM4(Gbn^S62`XDyne+oRK0 zYcm99JKTuL4;{EK0D{VejPy-xEOz9^_!V_XVaoGIxE4~*q$oF3y>Gk@?$YZ|D9&w-QCoRJVegz~>YfZ4=9z)k^{rOx zj|d@!hPg&< ze@VD7lq!M6%gwE`Q;>9NqKK>>H0F`{PHS!07nLj#L9AbB^)a8{Z8weZTBTkHMfr~m z*;iu%JugC2X<~u`92co^bH&9c#D#)~V zAJ7{^#SY|D(oT?y){+l&(F(CbBUDWzRiO~oQ{p~*afaKE7@qO^{37hK#Z@Pa9CGLD zT6}xT`dYIZm*3dKVV@4Xr3Vb4s(sXN^5vx4)aV?ntsiGdLqB(R4#=@=5Jh>2hh?m} zZLKoXszsSkQ{_D)eN(3VHZTm(lML6iZ~jA10on?%JB>=ol$6j32*P@Ng(@76x^3f(7Br=b<;rNrr)zIpEn1Gg6?O--iI`*ae5FajfJ*X1tV>*QSApV9?x zPlHRcE_f|bHOL)}XUTxhe7MD3*EkeVz3D^l{u+9XycJv<^%dwny>$tGihd(?^nQ^) z6v6F4%C)5>Z;g*{ z;f=rBL(4bEZSwn;^J96Id2KYD`G;~L%HboYN@(Y`hbUe$zgP(h59g#?6C!E4E89O_ z&5gK5-YmM9pYQvLK0)N(e8|L)MPH+uAHrAC^T++RA8&s{xxH(thf-^QZT`ITa^rgL z9{g5afMheuKCVH=xvv1Oec@_sN0W*oi@12Z=~mw39VWx|LAnO?8+Sa@?+SvCcvcqI zlbUS%$>{jADGJDzg7Kg(V2u!P65l&xmKuREj5yDr*kcPLHr5uRJi{>5;fKj(d-ptV z7s==CmZ<`UyEkm~ICQ=Tu)m_+H*M8ksz;bN`#!0k@|ix^nd#RtlM(RNn3KC6x6icFGYKoXUG8JXzsH_)Nwj-* zs)3dOkv=`SoiaS+Hc#R<=6+#9G~o-iT7Yi+C3Mu(#x2R4epfc#=+@mvU2lB!>HfB6 zOi;AJEF_-?9={|1Q$~Tk&*4ydhEp^of+Ri~R{tfqKp)S!QvF)H55*nB{@HN+DeW$m z{ctz@q!!&Dy`H46m<{e7)*bNH?2kYriAt5C7^@d8**IdK32s*6am6QmsA(sBuBp;% z;;7ERsEl5Vl$oV?boczkfg3vcfi*@kblK<1qBL?5mq9%uv12HV)y`cYIt}Bk4Hk2X zB>m@R@SxpqHjx!Ti=hN$?Csn1XZ7Q+Ye5M-ZRF7kdiF8e=u29wUc3`{D5Lw~QWw)u z_3iw34a=$TP&&PJ;GKso7j&p`->=I*>+BX1GQM0A24dw>xjV{Kqu?DfEZpX=!7abN z)QUed(7x(I>_@BhMf(%%{Ep7H*s_45P!!x0mQqxwF1b-5bHWLeLm0P8?3NEf6%M&# zCx1M)_y9sWd?S6_IinYgRSue6G%q>w8ePOAOQ9=;b%0wg7@nd6$iVoA}u$9XO}!{`CqBHs%Qw5aOHiLqNdcxI zv`z6LmzeTF%gi;TW5X zCBm;Kwj9&w-jSQQx95NJtjSlxhE{e;Q-bLB&k}DuRLEe>ttomO#e#gY?lxoB0&&;! z>At%9*bHHOcols0d5#vb8=(U-$>s&q>xvC`|CYItfT_T#xsMrj{`M3vnB#IYGoMzz znC2(^xkTd2vauM^9|3Q=^HPk|-*$-yE!v3-DX4dYrb7KSz(YDSNg9ziOK;lPTYQnp zx)?eM*9ST3aR_Sw6P!%G;2hjNH9B0#EvXcgdL?;HC6LX!<{mwO%p5}89Buync9VtqP|-|yUEB7r!7TSPC~-&tR_ znhwnrHYUb=Ql7*_``J^za>v||?q;r3L+}Tmf~|(zFQ+x%hR7?PQ@&vJ-tWYDY2XK- zZAyNiJ*U+3=nqVvSTslGf!cY`wl?utnhFo{fF(`mNAynj>iDZJBD)hjRc$KSD+GyS zq8ifrtVw`PW2G#{JKK9042QI6#CkGQFYT|lwQ(<%MODA)JOZhQB1ZqBt`Qqi&P&>9 zt|QqHTbD|GUmJyCboU>Ge{}x<#x%pT&-wkcnsWEPcUbN7GLc{d>OzM4D$S=6IcFDm z;Q*OjLFMI8-#hTHX6%iKw0o~U-(^sDI4AHl;i;|@8IvZHskzM%+41NenCOOGFDHlR zs3!#^_zPv7W>hBJw$E!OJR*${7td2yp@;kq9)M(+0N}{f3aR}>NG^ro-M?XEgpEN* zM{oIvnfR`#?gNKzDi`}#gjZ){o6@YiYK*ZDCi?lql@%zS*j=tC?Pw6KzfV{H1_@Hg zzR^&dTNpSYXl`<$|Cq25&l1(j^LDnA-6?2jddNCWw>bE=ms#J95MQn=> z?-yeVqIU{=!2b~S9%I*nSWRXqaM}P>2{slj)Ly;G;5+sjoDoP-KAp_){V}@K<3u?U z7eZgAdyCJg_=jEaB^qxON@3V^6ROL>Lh@(A{emZbF;vOXR3*_rNDJ0gah*miZf&&> z=gc|+K0#}HyRxPOgFZGE*4>ROJTGCk{&v>ZjqovxH$F%lUrkzS{SsBihh6#7el7Tc`{3V!RU>@vQLKvn{501ne^eg!(GA&8nvi0>MIDm zl7ZQ~+!Xi{DDK;6G9SE9^u+~h8>R2sjSf7eJL83KZOp&ed9S~4-FeXs_V`bwtIdgF zbm^EC1Y_>XzR#Xi_U0icmLd6qg6|T1vKqPO$Z>l&t!nrK=)xt^QZ@8lLiQoY``GOq z)Zaf#`CPZ+!Xw0zz;~W`&hX~C_-pzjR29gh$4qrkLcpR{OshB8W>ob*BHPPJng-7s zg36q()VwA%{C2Nz z%wT7!iA?`_*4Op(io9QMhW9PY**R>5>x8<F37Bf*yzNBph1!fXxLl0 zvZzb{6}~!tqg(cpZkqf4VII%djmMVn))#N53BJ_QHC6}ycaQ$3cDKjBx(3>wgAD$P zymu99W~y$4;Lmm27{wf|h-9#InZ<$@&pi`AS;aG}i@|?wzeT=tr$o15e_u-${Y@?S zEtZjKobV1aOfDK<4!>d10Sm{(Li55Pyt;oBxD zlnDhPxB$&#yjlvD$q0q3EYB@uY0DLM@k%+&ipMykK*491`ibh1(g{y>SMjIa*v=s&q_DIPTX+y%uFMa(j}lKj?Ng zPiHYOqGDqQK8kbrhJ})R|BDNN#rPBoJY@=|Om9B!vp(pC1yT%-6pp8MflZ*7rkc2d z6r5?IF^w@EK?zU63>EgIp2$_S3BMqKZ+pYNx>d|1RbvIyGZH!ahS$-x#B7O0mqE~& zHzbpzh<;`!mnGTym-5#C9?HM*(F+SS3kg{XGCZVb!%{k$O|X0%`VBew!S(LPiF9tYH7*&E2bbO(np3fj z&`p`f&sFh-=pMw4ga_%l9unBBeNyKf-qw^W1b7A#?Z^9po0aG35W)jj?&n2Sb`A~- zBYVfoDHWmNzJ&Y0%~}ncfI&KiB6zi_+B8lr#3Tfz(+?D6I_LMxi{4m=(N`YT4j+co z27Y#jVGwz*PcJ>bUbOAJ6xEWEk*WV7iDA%Ka(FP;ggC(WCj8Ia)x+tS*JEy7U&;heim_D7E#ZlCl=ZgcR05LBw}}VgCt5}{ewj*BnK;9_xVNaE7)^}fzmuEXNlvvh~CnynI|$n z2VNX0)v=a=aw2pgp4v~#m<=Mb7Vf|UfC)OWE$y{_3r&X76rDk-;baCu2hOw0RJ~LR zBTN|jUFrlt!dR{X`J)=lRdMU6VJpXaM> zg`S-#Bif#molYKi>6xAuo{OwD`t_5TC^`7$=4WRN66;;a8=Y%kjnS_M5_+bbQ9TX@pu3qNSM<&deB2SnhImq^x3NJt>!c`ROJ zp*0yv_pcQU8y0M1sESP6FZ1&?qmbcEzF7c<=>k zAX%08hC26G@`Xy2x)PLhR>pP;4{}NDGv*FfNXDRN_6c_RuFe8#><3W0b&s&Jk6$!ig+ijxu=*Hw}ziwB34z2&i3Ge9P@2XmHJ z8IcwL{I_VK8}jP>UjQ8>0sWQtf=52uKbnL=wb_R1rwqQJwfJd5fw2~fDGMZRVxoc0 z9+XET3k+2qe&-ldAc&@Y)~aY%G>9!8p%xE(iF1E>Lp`atPL0T*;P~Jm9N=0yw@MaH z?vELOK9=9ijG|Q?FEq)IboJpD7hsq559i_QujVZnuCTnNTwJ-=5OKQ*+^?`E$;%|3 zSTEk-%5WEM{CahChNjbg-_fzN*f3lWOH8Mdp3Y`)0^xu1qrmy9*xD(}@_A_Yc-0@2 z+h4rI>*ASLJSonNEOT~R|C~L#T?h>p}5O3xUZ5?CD`vb!%KY<16 z4eY$WtAj}V;TqIkH+MQuJWuW!s}STSDZc{Z7K1nOUrWw)!?BODQ7fwxne25C1uEfQuVDG0rF0^bS-pKm5^xTE zJO7C~jkdp=Rv0v8QNVjb>0j|df;1WkcuE*FI(+i*vlc6kyCmb{hJyGZyKyS?4}>(j z0Xh4p=?1>@d#blmPk0oUmijICn}dYw}flq}yRM)A!7m7!6F z%6u#^;_kv(B*=s0po$K1H685nbiRx5LuL{5RF%EGy~4)*iX&MM51WAN!v5EMZJ(xl zco&1SqG&K%jHUV8yU|Q{KH6%#eeYLX6|RTS2;DmO1S+E zg`xo~pCglsh1tc`(M}Pa1Xqbv4bl+uZP( zL1!PeTPMU)DF2vk(U?IHjDp9*b*KA z&Gp{dr_}%TzW=0{o$83Rn2>0k#?h>>yY;E_$Da>^%9BHZ1t{jOs8Cs3k079jHNPv>mJZyY31 z5YiR0ikk(K4?naWj8>N@aseAfgKYGf)tQ^=`DZqYyV1FpzqHK06 zx>a9)_Ph=ltpbbTV%58HpRkh_(~=XnR-t}I>I{NU$nICpGir^^()o39QAcWUeXMc1 zkeGqg@)`E2#g?|TNhSo7LP4u>F?fVeqi~ku@NuWp+u))=Oiw&Rp`$~^{pzT*OWXz< zBiY(DsffD3^}BKc@JSUzJ9|HDvV|iGG4A)yrP%iLch<{y=DX#7aEbEF$&wi{-ZQ&y zBaoxIqoTFb`Hf|KO8!t<#mqJ`DN#pH4V_>twfBk>SJ;o)Cx@E=6T33ew29D#$Dy5Ixls!FuFaqH4hAQl9 zE3MUO@hIZkaO<7|UbEJ*RB5q1-gC~nLjPfdS)sdjGiu`JXuTB&ve+9tf`Yo>(~7A z4KmX7V|oen#hy2;iUe!7VA>0+_`kkh3>(VG^_tp&Eox>ry3aN@HsB}>2jgAszDEu7Mh@A8i)zg7skDpl}5 zT^VWTkmtuLi}4Th;ybLgL~FP+wE}LW^b@ystzHr;?3g>1r#(ig8RF49_hMcH`lB|L zHYzq^+r2VG31G-7Bi0zS%0>Opkr~6lA1OGC-?=pzj&d%cS2PDIsb4v^=BbV8sWx<) zIPhudZ)KWtwvx7(Y$GxNh7ov!%i+{KbvRD#0_@@J?1rLPGx{Zo~AyK16_>K#J8WKt1lgj9)X(>Li- zTRSHuONade)HsWz)lSF5RdUvVF3PH)rci!s75N=vh-&??B|iO4u%+X@D?Cml;&iId z4KHskKMoN;+yAyAnWr${x3+b=J62B3e#+p=8wo1vtr97(vq?t02c1ANZ=$_$I&{vs zy}fPt0*fKA1qJ0>0lyHU0ulZ=hnT_sAy!F`O8G0*nvSA-`jy+JdiCs9AVG4o;89(F z7i<+$Pe}Muo{P$0EeiQ*oM+qXE2kOzU}qt1Cqc(Yjv^&U8UG|Qad8Jvw|B3}-S3pd zkh?CY4#~V~p!a2zTPj6AGeQb@8GsHCAuceLi>vgK;+{%{FLAWI`uliVnTm1cmVP6zWY^~9z=)Uto{tA zmLp-*3$@I9m)xol)VI&skKx%}yDTfFGx*q!5i0J^E7bmxZ?)>=UY-xKSW2nTJ=_f^ zt`N#+X_aO2J<>im=JF$&e8nDZ|3z5}Iz>It7d_{GJlcO2CmMhr{o6-Y%?r*b{7E@W zWUvACX5`80hJgbgL&Cv^#lmxWR3F7u>o-J~l|bNymHkO~KOR#y?J1uf+p#b`6;quE z3Ao)F0YX$DQ_Fz7ff#RiY4v%`?F)??iuTgr));3~=5fIcQl%>z>E+BDCktj$@JeDi z^TDGn*bLsDPg9W#w$!TUM0t@X?}#+{)8c{#aXDJ1ptJ~}yLv5*I~PhM7Uy}AkaJeI zEu+!F){(cs420B%N*2oJRO=|ANpe@z;XkRl%KZpP4I^vzLpNATU8QIHv7gy-ry>E{ zunMudNnLvCj?b?Hy}F?EDA{bLg2XF~a?V5C3i`_UsEGXiKZ zKZSY^&2pyzo)RR;PsFNC477L|p`b&r+kV5>R#0eOe}EHi8b4P%zUDh$#T5$G3SL}0 z`4ps9*A`V)B2rS^taEVsOhq0*q02wTo80#|&)A(eBLrX3@&Bq7$U048ufqN_5vpUM zI>Oo)da7;0t)tv+-U+<}^!4N8ec6m|Y_3nmSnCw@fwES{0*@~=x>v7d67PV>O^XG* zax*8UH7S^yK?#?R(AVYK`fD*NFjIp$9z`TG@)WkkuR{R!@DC08&!1oQ0Y-*)6tGUX zRyarAR>}DyNK1pN2{{FAWARj1V4DmHXJ%)km;w4BCnFRQG6nk&Z==f9R4Y=ZS-Af+ z;>t=04c8Krz$d0)u+y{m;b!79E7OEWOuOc4`z}lCpv)Pgb)Id-P`#bR5A!4*rn1{yrW?X9T??RAo}j z&3t&b81Q9MPH@jVQ2)6SOz2si(P>?*I^e>s5?|qw{a^PB==7u@NHPHEboag?KCv3t zHq@fF+#~(568zsjYs_$J zZ%2d>=%k-NNYVD9k96Mi;C97a(sZ0_3NCq@|B!eN@q3@E}Dv)%ETyP8;WB+~OzUnYv-&k3o8G`*UP4se#`g9^?lDr3v0@^;M zoV;4di;BMY5w2A-RAjnaFz70In1#+)!p;NDFhlg_4R2AuUG}8 z21A|#ZqRN}4)WF0%E`jnZXbu^r(a1$*{N^`2#>FD(4WwLxYvOc^k}ba)B{Qe^43nS zSZ1-#yl<@U44~6igMvp)NT@CeDJiQfDJ3RvgP%8Hv)G`?uB;T#7~`%<&IUMUn~n?) zwC))MSMUQeFj~kRYyxVV;f!)We8i}=)Z&C%k-F@tv*Gm{dVYK}jv!328H(~)D4fbB zMlz%S_^^#OM?=u&`*{twaB^>cCTwnrw5n zh~6fJ!Ddl31T%#+**$F#Ewbun9xw=k=M-pj zWx}IvSvzKPyndF(&)?bUaDu$<5nwa~ZI>dJ=x>tQ-r)=3<16u41z-dW{Ixt3ldSDXiHY-S8S_um?}TaE<+{dh_J)OtNEp=qP$j)jt55 zvmk8Nae3qXd|OuUJtzzZ^Y!)imCEYDDyAli6;8mA6Qv0K+~ag>y)2~RF|y-5_YI`= z&O9oH3_%B$9j`-^1+>RgD^jIpJITm;7RELx(aS%8j*G}@BDD7Ncx0&Vncf9HBQ|0S z^BZUGi+9cGcR>Z`#FRCg1xR6PRZhv=I&yvl&KX_LPPxQP$JzP@MjuG(-$IwZY@AGZ z)Emdo?9G8Um>2*bj|(?HuV^!h{^vC%CE@S>Pg(t|Q36!`xgU54+s5Q=T1~f~h~G*` z;x6d9%`id=gUSf^ncr4Uj5ge-)&JODGM$lOlbpV##8{loA>edu!3&t%B_AG8wrqaN zTd=+NBzf0Bve2etJf4_jF=`Nv$mzOV+J~uZ&F0iya_tiKfG?4#*yMClUlV1zjsGs4 z&wsIsLZUS{A+CIVUWV=G)Vi@j#a1kKArnQxJFq2R) zrI(W_sr~Z^uRoCe0GhQNU`PGS99M1vUj5I)*d7Vp=la=R-h$R(Jw!;=ksTZG)5w)( zI9iD1jlX+ClsT2SZf^(1{GpqihE`Zv0$hgRVX59QY`y$KA6bG9jiQZ*YRL)3cP7Ps zS39m4-FGn?7OTGG*}tD!1&c6&F)%kLg-g>0*lRLH_zR7io-~?EHiEhArF2`{lbj1v z4W91xn(Lugv?@50SyGCA0~oOK+RCBXu-k+>b{^_B$H^oNeIpX6t(xy@w^sF6p+4B| z+n1z_r^|=T+U@RyT3GLZn`{>e7hZa7+}LgjGPEuv`;~j<%e%;5WA99_gV9(CfLqS{ zLKh(Bt#zf+#W352RQ7pZW}(8LohXRI02YY&q@?x99}|83yf%|0fG%=IgwbF_O+Png z%G@`kLu!izPx>l#zA32&bB1+Sc%ur=Q+XXkN-obmSmwwI?Al2 zwlX8`GuY`H1VQV=q3yz=wiY!}_m}PZ_gA|f%qYWOr=V{SA?SVl_YD&Rz`t@s!GhmF z98FqzL*z?JLa2l2(ZEiS6nYlFlDmX=XLA6TY@&Hp`UsuedoA?&HdfW4Y%`&!ue}H; zPIjJ2*7ft3ZuO3>P%4f)N&$AMbd25bb&eMFzm6OI5Fw|C-9!0{{8l;{OP>G^<`~mq3c@rE!uJrL&$%jB3 zZ0JntNh|x`S~eB-Y;GuW~UH^bfS3 z6)~T<@35NL^-$8?NRdW(3BGK^e@gRFm0Tit*fyYk0+ED!UVRAnK2_r0yJlv!nai8R zAnwm^t^JN~wywcsyncJ?-N^(-xB4r;cYU_PFxN{%+tsB$haa+w?|BX9h4kt27tnCu zga2Puo*%pxDUc7CZ=#_EbGzdXpgIvBJ(vL`L7g79LrVj6pHG2@)rn(TlRjwO zyYuFQ#_3sQ8cSmS@;$b9<4CWm@>l@e_YcAX2{Dx51<4=zF1XH^WU&U|xxN8_iS0!eA^F6i&+XQ@7;B1?uRozyQPS_%ts{^DqpZ$ zP9yf&jJ#&>kX={k5cbHGs9^q@k6d5F9D;x|G@So5MzJ2L7AIj-y$Xfgb=!M6VD0+^ zOaIQV?Y%OvtFQVR)pRUn#3GsX782KjK0h;tsgde~plmA9J5~|$yEhGzk zt4~kIqIM5&Vf^2?uZESiifClmas5}{k4PkAa8rE|&8!FP#;W;c7t#wN96f~d`2W~0YvDmz=lqI=q@+Q%rqSpM#mltm) zLAxfU4@dj`!|HHQdJm8H6IH0aFcKTDf@?%2@pqkH$rVXcx5VEFbqV`O#L~adf!Xo(Zqyi^10|*r^q2#6oAi@5`>Ra46$!`mY$S9kywDN%W@Z^RM011^})J6?0_f{v*1EwGG0HNB&^v3_ihLPqN;k`2Va^rW!Xlxu19jZn*HqoZ-8q1Xjru%P){{fX#S*H890J zGtLB2lid?;TNYO^z$?*N%`D{1eB%K1jolEumhB-tTUKQ@__i!w&#ph0-J^6}){HLS z1?EQBaNV_#=s12wS9Z3bg9u_Ki znq^|!3rBKYOtJa_Pf|t%2?^wl(Y{P#*Zi&hw~fPf?MkzYx3#SW@1BQ439HmU_%#cv zYiI{9GX3h43c;Z0z0stk={+)-yRmm?jQqaM5vX|K2LOxLV7J&C*vZCNNh8|y13&m& zA1`M*y1To{U4SIb)j`BdWm)@W(nB?%qvHlo@q^56t&1YwoSB@O`sbtn>z}`V{ZcJ6 z=#8{>ZUf7g&G20n}9k!^4MmpO4*%76y>O<_pT6LWJ5pgSvtVkj@{yZDkU~!@4CwwD$#A!YTaP#@pid77i}v{#cWzO>Rp&~kO5VztDOz%Vm+mrp_gQeJ zRM=!L1|n7O0D8pqHMolNzJd)Eo^_E<9`6T0kj`mt#yv~;1=M>XS`sn1-ccg$9Xoet zhvqx;MUQjokKD0eB;p9|yu5fTD@WENx!iD4`Ud+;uimcz2~$arkp%2nNcP+QNb&K& zyWH0Cf@mnwsJxW~(o$YqmN9=l=yn0c zn=*QOGMqrpH`ag#RJ*K+p*n+;*&i;}c9`1QwWxH>&#?F&PgaYzlCpiELbzxImkn1) zYSkbju!+%APG`)gQl}Pen8erA58{wAIzmAf4g!i~`A$0?3wW5w7v4AfK?^58-?Ztg zf|_iPr(uz-1Rs789%QyX;5{7&X3juFh2RGJ96g?-Jm_$rO!5iqPAmOl($bpBB57RV z!Oh8|?Ua-xIXxRE=e}K@kswr_H>2DiA46+-9i`B(gYLysw`0;>mNn8EFlIxm0zRF0 z7Fk}VkhGRm&vdgJrAXfR-3~HoM~DP9vvFEHa{$wZy~eq8>c)xoaLj11Tz#N~#zh#? zTv0(*cj=D)gNp``4%6|1@16BYvOREl`w~V>A`^WPs)2B%gsaGDcUaQN+_uhoVrlx6 zu}3eYMDbn71dw`Btl9PQNF_aYrLTo9M=s^ep}p zlNaE+3`E2!9IQ{$Zeo1v}chd+9~g%X3zVp7ysZt!)J1Z^t6{X zM!!VO21W!`00~Nz$I8xRWZCm8`>r%#oxJMmxXUczQIr0UL;An{#_z`CTi~mjSRXv3 zU=C*#o%cP2B_EC6OpihW%Ty~0a*$zY4UrId_yub< zF!u=vp0NZ}SzDLxOzyfFlutKD{5OR5ZJ@6@)st%Td$W{=`kuvrLRxKlJ`i<%Jl|W< zQK)6Kl9d8z&HQCklG;(}f9$aTlBd07qjHEdxm^aAV|>xB6`5I-s!@>Yc)mat1U)gJ zu3qrt4$B>= z`4{6A5_s`HEhT@L01!W9D05PU;j`02{5Ky#=@1B4QI*nYA0ef-XfHS}UUv)~Su8!x zT91da539np7#|vp;j|&(JAuv?Xta6-2v|D;rT61x|H8;2tcL zUma2|t)zl;yPdk@az0Bm<`3ouUOi(xH|xEKF|HnM z3}vl&CAGL}6fhsTkbK`(=wx_kZ2~--9pe=na`4jkU?pW!J6a0#5abnDuCN5|2FhWs zsKtwQ+m=;Qha<0`!Ak#JJyO$tDx}W`+)qsu$QW;L17ZW^4QXC3yc`i+mis6OATD}D z@(w#0)6n4N_tveE5Zm3 zg5qAi<53}`kZg~Yf9epW@cv^epDU(V&UE(9PmZw4bbyOFty3nyYNob~9S9>hY!A-7 ztv~9qwl&{|i?VJ>m|@kS92C*sg3+Y%s}KTT?&@o!X=h2Z7M34Y>t+jX1K15To!k+& z>sE}Jl}W9Q+9z2FW1>VW-q5a#=ILWNo_a>`;@>wcE$jn?MZqO&{sqDRxudN@+DC|k zFE?W_Q>kc8C9NlBSU+ZxlR?~W%TR!g;xt`%O7k2mllSQsm}K0K4mY$wdl(ZQFT(WA z5Mvl-1gb--m7#&jUu(F%&`Z6JTGk@@DKs_MmdaJ{O7xMsf%J2Lha9y_Dkl2{jEo)9c zeplH4DYzfok6=dmQB1MHS4a;#BAI&SG?nL>;Q^hu8U?)Db&kAGLMWgX7q7Gh0dHxM zMxEAVWh+&p>ozVVT3~6vX^|4V4G5aDj2tXJ%D`ctQ(8B8`Er<#-bUnIBE+iLV>>Ns#mS zz9^2oOtvD?Jw(%7GP# zIF8;x7W|Dm|6U}(7vkY)$d)}!x~|}w{D>n7dl>7JgZTlXR*b}3czpP>pIQS8uB9Of zI(pef5*|a6?uXqEa@k)h#*68^p^Fy=5{V4<~c0D;4{iloBFxeasp6??hBFLn9{Da8NeuCT1Vd=5-uUF=u$#VpL(1Z{da+;kV zn8uqO$wnZY+ArMB%3+L(@O+g9U5ifDZ;c0vxKDS1Vsp8Y8>eY#)YN>{Sro$+tb52p zY-e9#6Q2-A1+AG@C;bzZw%chgIChm2)IfX{|snlAbj{3H)TDD0h_EX5#sy z8kZ}|Sa0a~2Z-Q>z?_xxLHo#$q&uq25Bh@<{(c7lsWkZ&5W5BLB$4<;T=1R#aN3tV z!3713&e$$q=*7!JQK_ zAgWPW%{Eff$me{QgWA5LtyiA~jgQr6qoENa6}3i({5)`|Z(Iq-v9`X&>b%5W>H`0E z_V&T?sAkKtzXl_bBi0=By8AtW;t;3hfCoUV3~Js9w^uPFlt z8%s;_=S)YDe2`v1sQK^PLF0?K?yM`Tj136O)XZJfD5ma^q4tc?-be9crvP}nvAWgh zx12A_50|UuqjQ5HyS5R#N5HdNcx3}9qC}qnSZ2Rsqsm72s*N@|xJv9v&bZX6&7IwP z&y@{(U-q?*WEiZxTSXsf!Uqx8K3+Sdd3*TA<=a=9Jl3N3MV$P@;MOyxEsRVz3VNlL zR@;l(vq!#8hg`Fhq89IHCzJ_UFTs^9dFHW)@_)y8K;@8LOSlMSM7%FZ?$;bT+#Jf>HQEzTVx;^#g66Bpg$xcaFNvv z8=Tg)@nkJTEq7=pXnySZd3;)N^30yqiXEwCeeS9S8_C+sQZ`q%P!nx4ZYg>F7Qxv{ z5qjRGWjv3>vPad0uMkJfBd>&I`I%x*{kA{-PSr&6e6fsj$yjWLTUr!++OrjsNe6kR zFrQR^YYpiO-ayqEzSL>p?*JZP3xj?zd1gHrknyjL1=FCimEVwnu8wU4^mXz+PI$*7 zjv^YT{Y5nYjP&p~=}&JoIUBL|mjF5l4(FNn?wT(I2^{#sx@yhb1x#r3ytETfh%}2g!SdAnZ0pI`w2<@x- z8pL@Wr8;eq5Qt(R6hG@tj3MdGv-WCv^mn}778m^Qxmt%qMZf|X8+gy6e^IMCkP28$ zLa;~d=M;;vK>KBxDub*?FHIRcqOPH_0Dr~#*tsA^45t!I% zr;n^7D;_0HCTF7crCmuX*PAMM%6h8^NP8JjJ#KpBcj6M3d7U9+`0VA3$k9036NGQR zAQ7gMjw*;E@#^U>W7bO4g6MPted*i=%355t88eC19P~5luB^|F3n;gF!&MGtqX#p! z@e$EFsj!k}5;m9DZpzwav2AXMu+H0ALC+TYxXBS9Hhf<(#cwn38WqjA=MOwJgS#>af zJp(KA5aovOh^@;gLsZ1bXd!@qM7%w`T?vmflyJYwWz}EjMfj&;3dv*=e@AU&weHt*6mACP}!}ZyZd(utxLdWfR`5;Aeb z4A#xeIx-J!sgYtVv4&Ww_2QbS(r;-(K4mWkKGfSlj44r6I8GrddN02WARNRpx6ta3 z<3C3_aaj`rVsT;{g+8zGw}%YKG|UXaAM5Eemch(Y~eV;Ex$KGys(k-nybC}()RqB?eL@11iH>eOD%XX~hiBmBVpEsuQ2(B9$u4Cwi%+;37E67SQ7dMTfJtTcA)?@aR{ z$0N1dzai?E>u(_dS={_MTIRm_%l*z1?`Jmxo1w1}+r7{5BaqEs$TIMw40>ZD?n1-p z^oRK{^e=RJRyW%oA-wS)nV)LtF#}&6T;a*Pm`rmUG?te`m&v9_x}Ia;K(sT?-tT=k zV|NJFxuf^9`htgu==?7D)$O*9M~o zBpg$2Q`H+RvQ_RBTh=szy#=?b*YbqTjb9fX91kL6m{dp{>}^1*(0QKe^KL{F_Ah6j zsUG-QLSGOa^Ms9JO?jDR`U_!U`9ZFz%D0%(hx>UC-o1Y<2J1fg$hk`-dx3UZgOwW^)zu3Da zGa67@N5bUX04r9%jj;oUO^q$G1M|y9m0Q=SUBEq>Jzp}5h!MSmqwl|t_=YCa^#@W5 zO0j5ne_W(T6!7wDY|L&Qsj5P9`(FR;lNOA$D5Reb7KDwwO6@UEZTcM)j4GQqu?K$a zRbMwEZ`oicr=*p{%I~Y93szJ*i-PZB~_G+9)9!hO4_e8q=mDsf=fig%3WQ5E-czU85h1YR+a^%Lm`(zvM zAqZ}y3jBRdn|jDd-uY&Gg9}Y$@e(^kuRrNw9MTChFPoUC+efv$W#e&djS{eJ)-KX+Rp+YgOKs7`!o)3UmQX|2P=D_| zu|B>p@2dTtzodpR4K>2t^D_D*7yogp8X8?0Z-Vsc$2Bz*$MFN`+1k|6X$reMn%;y_ z_$v4I^lRiOMmNLx4oa8WnTCz*<X4tKcql61Eh8Vrrk z=2=LFx9z?E=oz^GZRCqla2$rxugME+l2R;5nif*^Gv=mRw|i;krq;=k3DYS3reB3% zPv$bEEtUJh7r*u_GP(1HdSia6HZl!#g}gpcKjUHtPu@zR7pY-k-H8gqLY9a)!CG@k z+%BoV0)~qvD6L0pqi>}a*K1=H_Lm$jo^(`~FrxXI0kY}f63v7@14qXAPvZ_9Z#pAt z4C2HC&!uq}{cOpa&mpJk#~(&I>6g3%2amBHR6Ne5q(s(CWq0OH|DLzNY}GBHESe+bm>>o;bqa8C_WTI0A*v{){UcC(<} zoRFt;>sRrg38_^tu)*Dp3^u!*ktubM3o)3iC)YYAZ+4-VzeNrszNWOI{mPA*rkIV) zZO18C1f_h2MCzB$)W!z}7uOiz$t1RZRZR2scGB?66!hYJzhHlxF9?-QcX9&@Ivp!G zMynDD-_~@O>Mt&U8*3dsOgDGTw1UL1DXR=tdB6Y|-N&3aoDz{N;BOb?!A_<+w4_D- zMT*yrHtRIEem#V+L!|G`g`oU{=wK=#K48>)#WZADb-rcpIMkwg^0EgJr zQb2qw%EhD~z2F!Z!CNm$R(7d9^r8kDn+Z=c2mYxgFcZ0s=<|XJw42OL{`CGHEB4d% ztG#lX;IX~)@RUzqtlsq&ERbNb^nEqc%g1DZ)e()>%~-Ia_cIP%_ZTOsx4z~Mf2K#z zMK?DU=BJh8pydITm~5@&e@exeSiNp^0a=<$4vRKFO>%$1e|JC@vd*9ShAHDzI1jr1 zMtTl90qSw8(vmaJk%dK!R|v#aQGd6}PmQ#l`b?-|cmyXf`eh{A(mX|`d24=ez2bLR z&!HXNa$ZqU`Yf^JV<6ST6StgBfxy~0%t=NI)GvGp$Kvj<_F^HJsHCCmE8}1FPcbWM zv{WCe8VS1XRu5qek3vfDxd($qq!K@+Me?nkZ$#ROFIGU9Uv&0m9rbXBaVb~5=3JqQ zbbemlp^`ua;3AfB{CCq@E9erwzWNjAz zy59tPqyZjmO%qz18A35g5O*Pt;iwZ5730hjlds$V5v%cYvAG8hd5;kXYqL*4&*>06 zk0>;Or@N4yJRj{%)Xow}tvg7i)i-%erDJ;vYpPVomlW*AtwEg&KY7%*dwrUaaF)gm zHp?7&63G*pIh#u&D#T8|-$a$ey}5pQIWUt$UkYQ!2S1nC=X?uCHCexas_u?KQd0wd zJEpnz&gDDROj4o6X9!o;t`$F;uS`Uc$vog)vvj={yKy@!`Nl+x^xBdW78=y)Z_Y50 zXO6IE_*b9TFuE98x(#t%QLgLwvLJs-`(M|vm@x1ez~+VA2bs^Lz2S*&)Bb+>StL;n9+pdjc#yyMigWlPV9SJTq7#?0q{4lQE z8&z~}x!faV;#vK0h&u47W!Pvwc5sVG3Psj_D3CT3Xzw~g-*a$>!QKZI)a9~vEm6=t zv(#^)Fv=H|-787Dy}HIme|`P|I<+3TyVF139dW5E1S(hVFZbDO%xQ z_xHV`ow5iUobs^yN0^u4_1>eQ`#S>X`V68^isA0tHi}QjM8`qy!4-0^?M$qxN@*8g zH5F0m0t1IIz|cMFuZkR0oVq#lqv#){<@&)W~`mwu(`Y@beRFX1msLIZHn6+04nM zvOCg5r`2u_w%~N?YPnvHsDFGzsFUo$eoFrI@D=f>#pKo6nu9CgaOwaO^R`Y-rPBzg zDx$i8)~Wimi$QGb{&BAVBEifO7_p13qV?HKk{@?j^yXXl*NbYp2XGVJ?r*pK{$Dqu z>EBNq1+rpW%!C9{kr?YP0{aSB>z!`Jqa8eS2V(K#%r9^3hbMlGu5_zi{C9n^5|{4w~LN=j%nfwUjO zE=~n0{?6SvnJSm;9{Lpz4-^pY_A$&`2PD6l z;@;jI&8)Zgh|2x{hpn@Ks$y;bwuA`MAdRF5(%qfX-6ajern|dKk#3Og?rx+zr9-+q zzS(-tdC&X)Ki6KYk+qqbC+42#x#M>QX$TfQRVeb;#=o@|7R44^sS5RtH|e}!70dd~KFRm!OG%A6T4!oB2aKz1 zRCaTY&Y3nCy6^hG?C0Z+8`mx4<-2!k+qW%%)Imp6fP<7%367@!B1|* zc%*npzVh^cnzIQSHN739gIwDd5JJsI9z}WNvU~%Rz+#@n>=B_mx7VZGcRN~yYHbLg zB^9vM$_hc)R)=cFlP=tE%w!znCS&tJ0AAJ64X-Zj* zqkwHmB5K__PD$flf0Cg@H3l;^$R^OvSc%BcD=^&dCF6|#GH;9ATRhE3v8W(I)JJ%K zG2vu0DUnUqHLW`G*!D&Rin-=T56n9l+A`i;*crv+DI%L&llOfM3Q*(`V5X2{4ymZLh43?F_dR%pVI+#~qZsS^puCDGQFAMMkP zE)(4h+(hkIOQG)!rKk&>U>+v#71x%D3*L-S*DvGv*YNH4kuXHcJYJYX^KDc1W*wJL zcjx7&vkGo;W5dr-_f6&XB0hY#e2R92^8X5zB^Tnbb`NrLAq1SfU|;W zaA<5pv-@u3I%@WH*0zK6rx37=HbVg;Deq}vOp5*p$A#qQ6J z66&YO#o;t!GTdo6*kN3$^AP;P7?h^zE1`x&i(Yy}?-10%g8F8z(Jz^$7*!$yYaDE6 z(E5Z+gk9pSP~MNWqgq&6sAX~}sP+|xAbT5LeK~4!nLv=&rEU$C4l1vGr;S>f$57W>PN zl_yz_+?e<_6UX=4h-C&X(dd|HCO*+AA(<*#$|Im4>a}IeU z$3y=V%Q1N{_bs*1>T{<^`ksZ#U_c8MmKguE_!3is)^jf9wbA;MQ0vhZ6}pUTfZ6&P zy?Fl*^9);p(nOyxBU!paXsg#bt2`|HUdN{_+Xxu3B#uNAo$;f>Ay10Psx9BRXV*V1 z^Aulhe3N%MKNhy=So5CNKcHVCrxo3WVaRnrr!HD1PfAuHq{EBy67gu+okVd6w{w^@}MM{`VWm&xT!wdU3Ksk}$QpKjFq@Xyu zKs6-MyC|7T$J2)UkNEa>_y=cAYRfFCP(DB|W@2)bgyR-^(_%EuYtN_YxD}pUCQb13 zp19G>k@u66xIAry)PEA_B8u-qr)!$@5oxkAxFDb36Lcrm95NchhW3u(t>TACimQ&_V+0)VP1PP<~4iV5xgp_7? z`=uW4SA0q+mo>(YJ8BshIw*pdhKcmm-wfquJ11m6B=Cn`=%rFbM5}w zzE;=^?N!*>JrZq5dS#e*jDSN*?UDrHbtm(AtHgY8v~$M(xuW^a&IHp(=&$}y!RZk` z@1y$CIzQ@}+^7f2!|F3CH7rSUhP`_FeAvEtk1 zA;B=Rk_>H1QU|Kw8SG!PF}0<>>eRi8zk;4%EH>@vJ?+nz$H!vnWi`;_gMO(*7=MQ} z_VQBnj+-QsDVu1_i|7b*KnfKW6>quEj@j1>LF}eE$v|Z#O;ET*uvEnY@60T}%|qCG z(t`RLTu%QQ@2jFru!A;XmkWw_0}JivE(XxN1+*+KEZf%9B+=&*Y%zM2m?7PkJ;1LO z)58!-U3}kT?NL&s9m8njp+R2C1@*oK@tOAht^O=%ZZUxsvR|uC`B{X;57CcdxYL2u zxu@qyLFZe#8faM5h$vsbhf+shn z@LLnl+YI;l(S!|0tfRQT!X4|IC9@$6uF@0SDQ%0YFGb-Z`q!bnGe7HU4%m%q!bbc~ z>s}1>eGgpZmr7>FMwuNg86OnaS1{cw1=fTDc}2jYFkfl?C;YBWQ(|i1=UmNGLX#~W zesjyZ0MC6!T!X-{!9ImA?^y@)1RSYY8o*I>9~E(Mu>T=0&Hq8c+>%ivCycpq8a1Qi z-IyzE{!|WF>(@=uRwHV>`WrNUEWeRawyWc#gJu0*;nnWXN0pm9ZVN52em{7^gr zbt=S#E5RsBmX_;!@#}J3?O7?VKOA|TA7Zh#!Y(HO z^6#z-lGay$9e;8TvtR1S z)(2goA~#MIDs_v%^0E1UI$DpASfx0;z+n>Y6sB`C6 zsro*HUzZ7$Ikd_Wv&-dN4lBG#%s^J=DvpJmketJjT4;TWJ5|`7=M3;pP9IA76OcO zmLDag{8zUcG7L(b0|}1o8=`$g=S|c#1J1ZsdI&qAI-(;(24=+9`D!*&KVW+FZ34sA z)?zA0O#k);GikPrC|Vn(8-KF-t@#jxrwE<_DF6Q|LN9fnL7pdt4gWcjqNCtSxtXkXGE%n-&j z;?y6V;8~t%tLF4B7|*aU&&A0rAWRQHZ`EsG-*QuHQK{#V9u^Bka0T+bAK?N)=kl=N zNV0X4a7f~p1?o?h)NGi9u=gpvh#JAgFLf;49Z63>K-7{8pUfNXg_*3yZC-inVO6F+ zKP+u;IBXHdfved^>KCUGrTJkM&W4b}=`;1)(h7Ra+33Q-vHbIB7iyJ@Uzq;1sR22I zi>M>3DcDbi--}nw%iDOGW*>Y7#n}4o8h_42?D${@(ZISbeK2uH7FK;J%^67!mkCJY z{7_&^($x*fXCaiHkheLs7ulJB?oe>DP>GNq@27TvnEG%>SBPVQ9o)n@ulnn!@EriEm4ths2;XhcqJ(oyBvc&+%ib{UxCa#eif(|vo+;cR#3 zc0=U+p;}|v??xuIw2uess8bftvtwC*e|_C|zpM>u+45It%|5ICE(%>g_eq&N+}~nm zyWcbuRnQzOKj#Q6Qf2NSJx9$D-TXQl!(R$sWh3u;mgjTk;e_ZwRnLEYtY(?5@2EOLcLKtwb~Y@%?M^w1;g_7r`_=@(iRQfBQ>X;&bu7?! z&kU%%q#mn0j+lbTEP^jG^T->M>I!6=*!P__Mac*n!$2#VR+#4Sgo^4y6`bO?%iLBy zqan^7wI}BWsO2qF0?=ZJf|pidp<8d77RS0KzZOeIyfVz+DVup!MR4>Q{x99c z(v1Ao$fB;g;JqbW`Or{1I%u)+xYRuK+haV|=;g9tMXOE!Yg(612BNE+5vf`jBe&%=P+97_=tNm@) zWVI2j=@DwEoeoo8Dya=J+9Sz3YNJaWJzf%3 z?mg~4(27neJUSb)^Ik5-x@~rN$v^j$-huM#1X{d78_|ceR31zbwd3=ei#$+c9S!42 zpLIm;491T73Km)s*4H3z-$H1XrssNtxSpiVHRjq{xb8v^>=ISDVY$A98WJzog!LrL z$tzsv$sd+BeTe%lWe|qOo;%pNu=&{EY&z^kpgE<)`kRvBC`-h2j5c#DF7#O?b9qq$ z3Pj$HOC#I9Uy)|I(t1U&c3+fo+HTU+;xB+Zf{Kjnhp@Y_QRJ2rQR4AyGB5t@v*E3)VMBj4 z&#lt^_-9!a)><0cG;9t#780ibQU&ObSW*OtW&2g-mRHWu0fR5Z4iO!#n^fKu$}QRv z*1(3tLBvGCFm#|Z*a>lR@}1(U6axUa{Eyu|{-h5-h?YPkW=n_6C_cw!0z;+JgH|TP z2)N+{0TpVTr$$4uZQ^EcEZRo~sHd*X;iio>LfZ!%1UCWQ9mq^J-p#9)~0{0y|4P|Tm8ti@`1_p8LnW&6GRP4#aXt>k5`MB{?qGvRYQ)f z$n}Fmdy*cHI@%iPjkBsQm-NkZyMAq%z^+&sv8g}#)HpFLZW}DaXJWbi zJcvH~lEz}{@>}OOt|Bk2HnZ2&7$1-_c}zd<&y#LVLqad`p(*k8^Xt*F)w00VM>!%tP#qW?3FEr)KsTyE$Iws z-b*70C=F=CYE)~LulR%I7U6UwR@?gf9=1PgjZHhj2-Zm^DyuQj!9MwMN7n*QN%BAv z>FX_KZ8Gy-*_J4R4a`}a*5bZF6Cif6FyAP!A&-8aF<%9{v9j!I=%hRJV2{z+1!ykb zG22d3N|jt^6fM?co~n9T=0luajUS1dH;#*fEt|52bQ8$NsSsaxQ{Na zy;2u|#~CyRr!i(=p!Ne=3lV^jo{U2UhPt$(c!mSYuBVs@f=e@73JtWS(N8&f$D%Vk z(9He$x^8+GfYebcqIaK@dw5XHKa(&}2N!}QJk1y$Jb6%gE}o%hIazkJVU6@S%!WK? zNI*QE0kp0PrghaNH`!?@=EORl2a_ciF~XKN^&nx$e+ljhU#b=tf?z<1bHe2#B|H2# zFGt!#37^CGPgj|4lj$j#W)K*SHKP{q+Yx)%Q%pb9CkJ)C8h+mR>Yc9}=HsT*HK-18 zviHmKQA!?5)xO1!zPF_jI}^{iU9%eR=@Cf{VY6eQ?H#^M1yPYi`%?@_n~9S>2A(tU z0@Ht>Z>3e=PNeONTrdBKr|Xi85q4tWy*PP(dRo-FyZ_7I>{82}xva>^$g`Q# zClh88Ni>vN0erkxS-o#L32&sH{Rub-2)RQyayuyeK7RdVFgI)EFf>AR*xYpX_TTNKh zJi6Wpo-wuO_99^y-Gd{;#Nz;A#G$fVDt*T|Bt>34BK2;uL|$aT^dny*H#OjfS8Uv#8cVdpTU_%uMxtUw>ieNK&vz&> z?)RBRK}9_VRiYwa)+P$rnnhpgk5sbUP|ICxRn(|C3BO73+Qa3$BsBJ9#M^+m3=|_@97${}J~xH)y6pQ1n&rQJZ5mss z_N?LZ$gZ%MP~tUAgD|VAcD<8%eeaC9M=%>pXEI|V#Gq8j4Opf32@mtENYj(00sFDy ziV>AXRjOK8Jv<+!190(qNk;5;bZVMgvW*d&2F3~fRGDRBzf9wl0XH+<8V3tr>3b3(q1r(5gWeEdi?SW^m_1O6qD z#zK-&lHWaWAox%TXdCt9s7z;~0FpJA&_{SSTsqG80vD~<#`ewIl=k)x@>fPb+k=uF zCq#jA)mWTb_u-1m$LXoBXE^ErWol!(tqr;%_E)auB<7y+41fA>T5n-)J=KjeM0M;;+{d= zDz`Ayr(q4l&{r2vQNLcXU}0(HO%*jrJQx}T<><~|zjKL94m+9)I zY8=d+p+25fG$8Mp7C-Q6bHjN-XWwaNN^!U2%}QU~UuUwIWER$~7RjMfqcdjvhZoeg zwl-$0Ei`1pVmU@#;6!pp(dASEdy^UDG0{&(5s51#-WMr^BZDRpIS8T*qI-I<@io&qM&qb*>b2+ zYN^S$=U|Tyc`U%cU6xMF{1W>ERLvbpynx?YfSP-=^Q);5-yS&+fz)J}%2Gv>%TA>A z?R?ir-W+L>IZ+#(y_i8!^st-_U?t~S{dA*j8yg#jP5uHaSP%7V6mUWxXXjK1P)O)- zK=77P3x0!*3o)#Tq8*c`DY`}1FE;CUp86K3L+-nYc^P&}Zjs!BMm9;AMzdb_g#Bff z|C}g_U8XIG9@BF)fM{O5F_TbiGXbQBFaG2j0jtxXzl7eEQ+^rt^SHZAWv2NE7Eh&> z9Yz42Gy|_s+9Ka(8D;k1b{*gKAwBrbY$h(uH`UP!5Wa2Qt*dfN4VCP#1B`0~UG@5> zx9}Zz5wHj%6&{Cn3qlrhpO=Q05hA2m~y0U-B>Q&6Z7l6((H-6~JwO@zzGqutAdM z2Rs~?1#s*sZb(KLajg{_V@H#}E3`~)A#=7cK1z-D0bmB=>*QtuR(?oOcsrtYX-|Iq zQO63_?dmbSDCIq4S%h9jlPe@xI#%F%8NOlKWPUhz_$5di2BCL(#0A#Nio}=g9g%cw zQ1uOs+U>UemXFekxBTF-&h&!N2o!@^936KzR9WIik6(I;VBY|=f6#~!upqsegxW^V zgVFz%PG!BzB&E@eX+wUVfp)eZS04vK`L{1Xrn^2z%$)np-d+1A`_^xvIc4z6sN(%f zM#L_o8r1GCA!lQ=E6=F)Q=d~XUZ(lkJkJB+eo|<_qY`?Y`HUacZq+?mFCdV>S`4r@ z+GINFX?tM3c8sL%-NVYYO@2(M>a=T}qEsJm)`>KaDCZ-zr2+G$LA`z*Gfw{u^CP zVr$Q0(~xH=8z9DBID)-(-jh9DtSCxtWw*;ZO)~RJ6Gb42t6|^weW8B-m@Krlw8bT$ zTY3M&R+K0ZS*aC4FJF1KRt)HNwJz|g? zf`Bz(o=jQg)rpcXo>_WZkXd>ViM?jw*JZ|{pNM!-Nn>*mQQRcGZSSDlDq#1!Ile1| zRH)z(@^!7rVB*$>nEbdg=NA3x0UWK6 zUB;lhp7NMxlSNKPmq)ZELVO*!0ISZH^zkYnNJ7Wyy}_?QH5(9yR$Zu_$U?M2c+o2a zVbvB^Gryxo1_+2}1QwkQ)e&d)24lDId%Oo}Qh9Ce*v7Tz#NdF;OxPHv%N$y~KH}su z)yjxot?w<9u3aKplL*%ciR-+Q4RmfsG>km%6`#IhSmBsbCx6~pc=71b?I#23 zhgQgD*CeXhykng3(v@aC$4IH}2?PEWajUMjFrCs`>5^vGFq@Ity^S{3%U<`oHMR0} z7Ms!d(C850MWTlp7kV!^VDPI6ef9i?+kXp)fXuWphgpf(QE}#ix?0eu zSf^K2aYTBWQS=Ui_&fj!wK=uvjN)!Y)3=T=A14i;9)y7ze%9SkK6-NJe0n0;|4OW0 ze-$IXr3i>;3GkZo5dH)v1a8YYn!_Xn8JZ2-n+eNE#; z*892enxWOaWx5Ei{?ZFka_3TTN#a+Ra5F8W9mC6Ij5PSbkf6lr@8+`g2&p~}SyrNr z_|up7iZKi{&ZJ+-@~rp-Snx$zmKpX2JS7GX<#o68^1tR=Z7sd^DFV840GJzhJuwYK8*fe{BzfkTOp-`$CHr16anl3 zT+a~P##&y#C{f+0DRfyHh!wAv&h&|>$FH4ux9>-q1d8@=BMquIziu^B;bJUtw{P7krOXtt$MYh;11 zQ^QC0U{GCfmyW~U5G=Phg8mxdKyzthHs(C#Kl796rTNoVSgAS?5bhJc;i2taKz3Sd zRORd7LRK?XgAD7= zba>I(Pkl50*BXiuTxLcgM6O2od5dgQ9lDTU+SdJhLk!xa&* zX)Ul!Tch9_tqvs41xo>`i3`*hHnI5|LqM{)ngG7Ieym zI(ssCbag*iS=Lw9WW-yx)WpsEEp^2V0Rd=yS;$BVZzdW7s-A2D@Jiy4(xTp>;u*?l z6qFyjjyC3jx8E}5Vcs~{fB<6sY0gW?Hg2R50LwaN*b$@p5Vu|fqUMv@VQ}+~c)~hF z%1cyjAdTigMcGuo^@sJ47J6jDApnz5r%gtwl7t39-m5>#O@nsd_*){2eOK_}A<3RG z=rBmz&AgFYhGBQ>wEBtLEetCBEX&P&cFcDQ>TcxJv%owPqf{BQ2X_;MSOAEkv7wd zcZTF1pF5T3-c}jEZuaNPoEUZKx}1TCJ7B`3H%wE20Y9XFnu)$LOeSljhNjOR^fUmoM;WuV9md{U%u9gi&;(5+e73-weU;I0 zVzN0j9lhiGA?k$82Yc06?p@s_A*q6d`W~pxQG4b(djc(E2mAV0%ygSGap=8_Mj5_W zN7S@u`0I)!!elikvDG?#i?|I*X=zNmrMp*p0qkCd&S5sDd;B(98uduK_vFU$dI%T> zrRj~TxTofex!Op)+@-N7RNttp{kjLL*-OorsB~>@im=BcC4^}9iCt0Yc_Zd`4_gajLtv6CY5s}6+EFLsc;Fd<1fUcM$ z+u}f2+iFkPkzZWP2(ucW*dvPH<3)}Y_^lZ`delsKY zH@s<3*D}D0D0S4nF28dnSpc&%4CFq z(Whzn4f}Ye|K4|DKA2K}2~jZk*W&`MWS`dIjt;2Vz7Z-j+^#dN(CsRz&#UC&JKAK< zB>z@x?ZTyJJhzH}`m&Z3S;W1=r6$PeYc`7`9^M+#?^;a;pH!R=b6*{yUE=8$Dq@*` zYcwW(iJ<{QpMlX~_~n8gS!ye>-atc&(bjeBBhvtyZ4#J8ZY?}#q(rJ}#$}~Loe#)V z!*wb{J=Q7Hvr#jY7QtGI6)F}snl&6Vrq)FTQken6=U5O5Pe@&&Hj%J99T^I4v`J=bM-}*J?2RTrl(tV@Ecxo9>CT z>2ELS>81V^R&RxNZET6ykekWythKlKTJt&FL*x0zM84*9$-ZXKl_rWU89QmuYV0vd zGPU_T&!CId@F_CYQ}`8YbRLHE$1kFFnv`3=8GOSZSDkfOJ$YQPIpU{==P1FV+d!F0 zH1r6TR;Lw-b&AsWl|t5rG4{6p*eTa$H;2LksGx&$C6h!Z`Z zky(gK3eWU(_9{tggN-CVqzW3vqzVa35sJJRqr5ttQAH(X4{$>Klo!i(7C?nJr{nVk z*Z-Ec0u}jNz?T--ea=E(D+TYi1L6TTO0kI20ksk6nSbcPw$PzKor0Auk|UW>=Rm>M z!KWX8t~e}~fdinzcHU@$K?Wslnt9)B|KTNpSAIm0HP50Tzo`m91}Xi9a+k!k-}<8Y6S9Y;2zn;wI$RNz z{H}T52WrC2d8j0S5DPmtMC1R}ZOI^&Q`7JTc$(231s~%(Sm4-EAQ}ZBOA-OZI9lFF z5o%&WL33v-%e~;@pHlff051$$c31mb^yd=w6UTquYPAOB!k~oG>;1Ys!mck%Qr|xR z5D6vxGam5J8r1s=W*h+hfryd;UVly{4wESm@lQ!EGY$km-A16n_@_cQ+M5QNLh?WA zLc_A{^8@0yZx>U69^C|*@Aax&1bpW5ulzbTA4rhWg#Zdi_ZY~CCUl-0LgV)s#eusZ z5#H|4?E`ZF{K;@Y%b5N%xbHqe`Aj|F`=_!8pT|$JPG$X$+(z?DqC~e@HEjW4*=_C5 zA=~rsfuU_d&EP>21I8(6UxD*)uFsl0K(60&slG z8ww>qzqmUQzNeJCt?zGNK(G{d5F_X%rN{yVpz!+VM6QrD7}e8kqlo|2tA9-fZz%K( zbH|VTyccC}96^$@oonzra)mTlAO2FZ*MRati@-c3w-Z@qMF*6SN;(YxCIOKFy;}k; z!r(^6-}F~6{OOCoe_9X&a#Wko8%uD)sUYb#1M{$;Z)D(SxbMB3wY=X-lp*n{RGI;o z#PP@W5jcyRTP$v7TV^BziE2|b0O2J#TilZ_#)AmdCu6TaQs}rn(tOX!!2`%^jc6%2%N zw6`BhKVay!#j51B6t;;7#u33Z1VjF-Yi$M!Iyy1o?qim4I@;D?C*w!L87tT>FlgvJ zm+|GDtF3iCnm0kI zV?(nww`yfFHMims{7cSOg9QTjUm$2;N?b|sw_>U*X7*fNyi3_Ro?9?y8>a=Q6A5PI z3{y|4tO~0T>qn+rnJLck!p-sc_$tn`pMjv)lI=iV>v$}b|>?&FzN2d2|WAp(!EYu3|Fs{BHw~Di7NX) z727pA)*o@QkFMr$V{#l#<1y)1sJ*>?`SBxr_!rW^uK9WO0XthrPKU;y z`HFk7VZc9ypED{P99Sq`t3&`M&)sS~1GGL-adJiww#qZz2KUJ-T4O3Lg(l%D8o8Og zRKz$8x3l-3XBEIz|MeaLOBDEsk`w8MJ-CU!M%qd1GJ1*xWuNB=f+vEhCFB{)K-1UC zX!p{LhGb*62r=)Zqy&Byt=BRSxM66@sFZ_)v4Dc^4H@SAy&~RHqkE0@^`fORWTi$4 zCQ#PMwAZMl;2YeZ>b!o+N5y0k@lrnzEEx9GVDjz75ugMoEYroy<7yv-a7OTvT}j%f zTBvsAxsu8)f=ORPkN48=7ob{s zk>KDv;(xUp@Y+Vb-~nD=rT`n;{7Vkh_>RmfBvdWh%io+BYi!6IBaDxO6zzlqjjAmw zoZ%++{$Oq|*%{?1PRL^~jXXREdrvnC`bTD7 zIvcjDwBFSNNZFZu^YUpWa{ek?DjXXfiB2CfQamn0;YpJgO2+xi!H4b1k{14uSx)#~9oaa zFwW~P0CtJsx6+(vwdoiulf7^7o-DtqD8|=>TgC|>+@GXW?B>Mn-fW~n9VNqmGEz(_ z@SXHRO=AO(`r$10`@@07GnU^Ub#;+Q0(bvwSONY#Z3Eg!PgB--9 zbcMdpGLZ@vVDSpkQC(2tjK$+kHflA@7zz{J#4?=3IreXjpE`S(F)L}PYt&$K9VyG@_pjtoHM3fFh+1VWDg#x9 zk^%ymuqQ`;?!%Qiw&v$rT3V~uCb|bJUN00(rbbK=aMlC%mzD|(qGK$LJ~h~xAY)?! zWs{lOO_+$NDpeI6=#Tf;T}5Th&<&sw#}cz2GH&mX^`70Ks76-;Z6-|&jK@A*P)Mu# z)-%=NK&DylGUziu0Ci*po|aBXL2YdxqjnKD{LjN_5?DPs<3!`vBguWsKaHEix{g5& z;9+)n9guVmeDXbhi96J(t6%;gae$sbp(PtBy z7Tu14w(GocdHK1%_ce|p8Qd%6jlCkS)jAqJVoR&xGh#~XQ^6JOdRs$v>eh&!a_pgw6-}giOp+aDl}DHzzGyr zt)0`g`7A9YZ>V|-Glz)5u`k)McB;_ze$Vq@IGXNJYx=tiVb^4$G3?V8!cZbJzIFhj zwuc|RN!-V<7iB>op-4`eoZak&wyiX$JsuN-nD=WS-LgGOz@c zMS@GNP%l@IJK1%0fvk-G)Lfyz;mBZn$XSMX{C2Sn!Ssg5?!k@9EQ|^SsX~ic>xfos zsROEZD7*lTTh{~O!Rj(8cg1htN%tNo{GaOa?I6YAHH|;@fJX%SKX>oXs&Rp;tzr6!)F2v1cPvL;w9m#|?|FD}RNdS^Y zGGl+W)w+oaMM2F+$s@GGQdJhr8=0*#iVWviZ&Wy_AVId-z=UwKcy zv}}&O$&)KW4?cc_#S7;=^ZR@xhN}DE6*;Pahxujpa?xL;JA6L zI@4Y4%Q9s=tz<{KW2^k7<0Z*J$4}+5$2!=Y7Z3qomIkZ8md7Y_aaD8;g&)B_B*XG1 zZ9C#bFm#FZRw#WBk#0#3r%}T~Mo73|eP~jOcf`A5&5d}$I13WVYW;}b0wu5U>31oF zbb7(ch4T|jIMa_wEC@eedQd_UgW23KP6_Cwy0SjV^Ga~F25bR*SWlxK;qXX}S{`IG zxpawMQSz~pRAXMFRiMhl6J{_0z(V@iGGw%}2T&)e;S%z_EDc*K@wcVoH?T z$^lPGcniO||Lr>L#gP~xZKqHdVX;bECLG`o<-QAsb%uLs>u42()ax`JiocwvrXBua z@~6Dc7WZC=P4D5|r5>jbYxU88CF3<%jH!=D&dBku_hXx$~-Ge7&x9qqcg4LdFk z{RHVK`f~i+7$FIITmIRaRii>;*m4G(D7RvAaPZ+Jy)OCq7kPIK6Bew9?xWZ+XV-j3 zrM~EUeDMXE8nxa<&g$a1h|Y4?4t~MOzC-yf7X^Uc%)NJ2FH|ts0T$QgE|XE%oWg91 zlUmkGbL6Me{Ssgv=jKYytd8F=E9u_S{NWqWKFkAcEno5N>ubbjG0a&tPN%E(QN92T z_ny;Kr;Co>^cjB3VJZo?r{JG398Ida#!DY>gAet3XW5fmCvJP%cul^UQ*r$#d#jdw z<&fFbZ7bN;ZnNn=47J7{)p(?|p?E19HA2f@gYUj6U(IuW3Vl5V<#wA8D;csk+UtMv zg#!@bg(_IEcBy}qeHs`ZK(Db9LYA$lIQjL7GkHdkqw1eI`qx3m8njvrU;uu?RomGL zN&qs2>~;u%&u+e{p*rf%hW!g%ekd*J`U!{O_9^aIziB~fEL!~?jOvB!0|bKmq0Q3$ zf+<)~H=gTop~mkXF%@^qp?}z@D!Votkj)jiRDFK>S{VzFf2W^(Ya@j7{1$5jW2kyP zstMMT%{6%iym?PtQj3bB`TVM>D+*4>vHhA@LaB{SQP8*Ba$k zkg=W32h@oLNPqhRe9^k`6kowSSTXtvM9|bJoG94QB>G{+x_e>ABbhgn0t=0thFFk3CP$92+VJNuCl}s5qb``4vydEKdyABNs#}lb7v9c}<5* z4*RBA=4Fe*W@uN0=*hT*h)9IuuTtEmInnDxFZgp7Ao9l0Rl|jyW4(o)OxWeP!n}DrujC_mWM$~w zi1hFrJYf_@DsY|z!*vfE%GbXm=FBOt^e5WVgrj`bhTd+xN>?@3TWdmJ+hN0Gl701Q z!T?6VycUXKa1?|60_Q!APFQ`6i(INydn1_J`Aa@{&RUvGn;S#3^O*@1UPuVFR_w_V zB+WpUmra)|y^n~6nt|wU12=OhE|@z;NWh5 zpjXQ;?E#^%+ojZj1zQ}|8G zVFh`~e7~Fvp?J=qZ~WBt!+1J!6<_WJjlC&eejql!yB0Kwg*|z1ev(ISOe(c|Oak3DQkPp*yBaf856C*~Y8Iews@(!AKQ@3@uP)20#422qD5k7*9 z!$W7*rl|baRRw)fm2QL{sVb;&yA5O`6gjf8iXyW1gDa+BV1 z>VPZhPX}b^K)(6ct5O5@-F8}6>%k-iEmet#@BE*q0TjXiB!c+#kvHl=Uk6V^d*!!^ zG^<#Kh+nNXlq#v^@n>kqqV*#lI)%-U3|Vu<=n zWZ{!L>uw8hQnl^8e}Z-qgPng~$hQH@JRfW}bB>v(W&%CFvfj`FlIT5s1 zO3nlE>V(<{4L#%7B1us!sXffk98eg7aE}UXBKxHoG zG+#*G5MThIFU8em@iMu#if(mXXh|b*V7xxzqyH#waa{+|FwMX0mv=Tw2H~G(M~Z!t zo%yh--MZ@>IZpb=0KlN<=jRKn{3P4D2H_R^V*sl+u;XgQ6&Bbk)>bey03uk)v=iz= zHDSqI+}xY%8s8K@h>LOrWGcz+L;YgKngglV$aC zXcxE2Ah{p6@VDdhuU+9^7x!Tm_Ab?dgTTp;7~mXGuT_Qo^1E6XShn`Jg8)!(XuR!J zNo5zt?|$^wMg^3Y$KC?@Vh+Q$Qg63?6QW&Uo!zM)y4U&i;AW=J@ah8#muev)ng6ev zF5pD|*8a0t@#FBQfO^1;08e!XP3RxjfZDqZ+7Dg4sMS1Ql!F})Q>X{&fj1}E02_fF z-GeJ7gpl#YVkr-A7t-T5He^+awVqlnwA*~lH2}R=en=!)@4q<0|A{Yn^PtMbzS+38 zD*!}|Wm5$;@qJ&U5$XMmIg1Ys-NYiUYwumkYpeNuf*7aO-Br$K-=c|JZ8 zQUy9Jv@=BjcO5Jc!+8z+@Soe`-+#wn^v_8b7<~W&WH4v4@56*72nWjJ&rZJFhrgpo zp*ywT2MAoGSeQfAV`Ak%01XED09wqT%=llV|C--GX_kohU%;f2uihy}KfFOj2b{RS zRl;dRGpd^*`$jQB+Yet_SAxPEpzz-N#F4hg9VP+ia$M$N{vW;x&@adk8bC;7%pE#% z$4CeUG@bNgc$NZ)7lG%HH7ulUEy&``C0}w7|BpI1KV+m}2Fpv(+W?Noe-d1R0-Ll!DMRuHUVCLsJIG0ua$)zAsc)H-E*o zUV&AYh3Lj${@4yyY44H$M0miVks9cye$J40%I_s=wq{f^fop<)n~GA-#xxZ_h~l*e zc{Y`EWsH0Hd+xA`0~+qE^N02TSM*N{+ach_$o_d&Uy;ixlnO{~i;q+~oOtHCfp2g-+&Rhaln-1fz0n`StXtDir+JgG7ybBy0HQFc_Dd6@Uc=Hz_E-XNB zB>~O&zn`&g=zJZq)sL3%foZo(@J@>zo<%oe>5l6g0r)SyQ_-WVK-bB{TYZRlQtxN92pfY zsBK1ckx~6KbQ)j18-@LD6dNd-)fT=QmxI8kFpU8k42oHn$ulQycmMyKv>Xc(SXtZi z2>cc+=7)@fQ&NI#5Q(>8=NYYh@mKgYDI74M(t&ZIz?By0AsT;|`2D*FRfUO!Qlp?a zOysnB6J=DPzs8DZn8C?$!Lh&d$@no$;*tT_pdvJFM?he77;O_437Tg2DLvVMO#@(IZ?(Xgu;5EtK=brn<8*dDLHQiOU z)|&dwS>IfrV)>udO(1Xl$IJlV@-0G37+$P{!5kARZ=zNF*F_0jqsk}#+`O<@rTIZa zvpZY-Xak(MMbt?RTv++L$0%=pHs|?Y-iMVCr2Ze;_8agt5mYEA<`@m_4>l&j|Dp!K zDc*7d?KoUqHAr8~t~Yl+RmzUqfoTCJEt_+JS~r;h1!b9eWs&-ST^1;?wJM;07D@mb z)`XpAqJ>EM&uBANUXbaP^K>G!(Ljk7)9G&G}$^fyxzcTc{;TF45Qtu9fg`49Cd*6cWOZkkWIdP)ddFO-w-k!Jn28$ z4>YA4o#1K9bv>7@w0W2%@~YV``f`Ujf9@v03w~1a;Fyd-r4c+h++nQdI*Ij1LPXvr z#ISOT;(sKhDEdKAItvZDkef;v}x%EV2~SadZ0Cnk6GVkunrg* z*4N!)o&K*N(~j=A_wQA4A_cw%W038daFz^ri?-u5O*Seb|9#4BV26U0 zCrPQq*T|0goE(Rria?(xa7-*9l^O|@y3vpng#YE&{_JBCsyeq z*T%<-{ORBUimR(=R;_e6>Y^yn6$JrnzOE*?k$;?qILXEVX&LD)y7ynN{%#S-K~n;F zij=>~Tcs2WvK!%o$N;AJOF&&?Y&IzW1X3SmvSzv6XrpVawY({&{)R&O@1c;TX*QUr z#QggTvvy%>ttV9fsgF{e4@)c*Q8*l`yMK)qy~qgRKTtY_>FVwy4pq=F^Ke{1A?`pP zg1r2ndT{~q_?``QH+V;|K{5Nh^>5faW2tRVDDCXA|FD{4MSsSPUZ$z-^eN?Lgwh&- zc|OgXGuP00psx>X-qe14{#7%QrKYvNjM1cpO$r^RD-laWl5K z{y&kVwbDMQaOnNgX4SfxJia(2QD*J-R*Cdv%dW48?uoiAe*kiJpnSJ5>L;;xg%)Zc zBc`K4w0O=zZuTMoCBP21FgRpuo|*Hh%=W{6_Z}0_;J~11vymD%n8bbrlavEgzJv(G zlURToSX6)pjz)^fP>Q&L>oY%JsWyOs5|;Xdl6OjU@`=x<<&tzZK|JsNg2^q8tlR$h zMh48GTVaUDJ=qf!mv3(}17w!xNgW5Q-IsM+HrY~s+VqT8m!`NdS#AVMM^o^LNH-pw ztAHFVMT{+t2THI_x!MXYj4A(Q&waBVmW7#diCQckx-(BGXRljupXhX$R(-<}=Y!iH zgO%aU?43~)H_AIVcXz?G@HzP=Ae(R%g3|G&hG}eG?FLBEAaSgD)Gk>++Q$c-_swvs z7pWJ`z1w$^TIB4z$ck=L5UJO#)y4Io@Gl_op_?1PdqIlkU8w}*I+5~b+i)~;$9MmV znICuw^ulxo^D=u}r9^!pUp5_Z-=ai2`GD?tbYT&~mY~93aOAbAv8kurXk@8#E;ZUu ziehq|&U=C_v&H&v?#BS)kU5ckt7%udTdvgZEmQMVPbKcl^3WIYgB7Gtxf}(rb_jb9 zcOj{l86yw`Zjkz2DUT%fS`inIQpidpr9YNGGI#)!Bz-mD)X7+H0JOM@Mx*jrR=LhC z!e1+cQY5&cXn`#onpOULDz-kLQlbK65ZEAt543AEMEYie%jUoEx4Y+%vlDWx}@e%!^eZjLYY$mso0+de*&x3A<1Gg7&!qH-TTDeEr@@(ri)mF zkSU!ZLgu{kapWU0qY?NyQ&I~{ zWl6$d;)-Q$yunkZ^5us!QG2CK{337%qnkZ4!)k zT`Q{|MmL8RS|*=Cr+Y7H#$k+_euY3LBTFIesJW~>@X$o13X{L&4IZk#vo+rXtK@UX zS02i~KEPq$I=EvE`BXxm$iQDEz2WvVDOCx9uS0l@=_T1qz?FW!m-e0pR@N7O&CMrj zax%y`hwYX6-oVS;QiG0umZhZo9)D5_aZ^eNBkS$$NL8fjnppk;e=n=Z;} z(F`$CaN>8Jgz|{cG?^xcZ8$*M$+5f-P%5d(pmofd$AH-^JsxJcA35u)Qm46|ak&z2 zq<;}aof&V$17cYYfzTcGG=QcszJsN7u3_rf{@C@lDi6maijO-kqmer%>PtJ%OK`w8 z<4HF;GQ{N7!-MMUwQjP>@SZd9KNJi@5EC2G@%x85{0}}VSHG3P7&87{oi32#BB`BmD zh!5B!8`A1Pp%V{HJRL_V_Ek+~O4Y5Cs@_&+e>W%v*vlkgYmPM86d6~uRq9<6jEJb8 zeZMw8M60=+F7XuB(4bYFtz6ZcKF*s^JvBO$@}5U2tr+RYusj>QD*+(g4}m0{IT)*y z{!R$MNO*98M!v_^0W%}2s$aac?O{5#d+C)?1Ml9ZJ19yZi&iq)rGrqIjiJKdauC{J0tK-vzA^3v5 z5=vD~?5!zq5Gu|q;(@N#$}I?hVfuc}8XZhVl9Ifw9l0+M6!6|RfHR4oKTxl~2Y&eh z&~7(l)z`BdMgm<&jBk4%)j#vKhKc2ZJ?+(tncO>`nxIgVo%pfz(A}mSN4IiJ;Nq7+ zM5_+?O>f}dWf!1s4p8Bo$jOK$X>7EFAS5vN3U3w#GZ+;> z<2|*#v0+5m&r9V4$B~RcYZ8R#@OjJ$f=zOX*501LshfM*=(t6ADDr792grEdsK~Gn zY1NZpS6n<_3&d%|wOC&2JNsRwj^viyakvHzXqOYO>kuAcJc}Pk z%5cI34J!McK2R*|5A2u#5)3y7?%{h#s`gCI%a}VKN5*!4^aYX^8?cXPZ|e6vmM&fs zN~3^yHb9B;L#IQo?{Km1EsClqZh_dnaG||(>b7S>b*Kr&7NEPb-b@Q^i)bF;=2Wti zRODg)rWhBf!deG?{z)SHz`8aJ=tsfyZHvOuo|-2y|K&^@N#BPrH+U%!Rrn8yv~4W( zp!x^(DhMa?Afg&^KhA-?R-fPAmKfc$kdIIO#BJLDuu|FY z438s!>_}?sn;{;`6N_gQ#z0&n0gUMy()RQp0&!qyr&Nchm)=*W7bQ~{sluNA&9Tf~ z=Rtn^GmxgP`&(20aa!$KKVL_{rFuPNsx_*2+XDpCYmzQaM(@k1oPbYp?h+<7+ODI@ zvde@Re?IkezLDKSC}3^QQzUW&-P~0s#z=4G>hQwT+va6H=tdqK_@04%bcZbu{7HOd zJnFh=kym_uaik-^8L6(XC4mrPbEj4mS$OZu4ok)$+I@(R61xzY$&qG7tq*>)P4h=+ z-g@0c(fA`m-j<06#g{sfD(HjY9CwFk(lf2nQP(!14pg@@lx=6Xh-azuBle_xo($cJ zR_3o=j5VM&c{2Mgz?WcJ#D}eZd)lzH;FEt52Nv~^i;8|;|Mc7by6+GRgxzMYo&Tha znjHS&z(jDA+Im%X;?F3iDkad=M`)#M-2Yx|Zz;MX3fMr^$Z4<2>Z*QkbRbh`I=0ARqez_9ub zHBHoJM1_Lzldo?ehla~0}2dV!t zN^GNS7br)ZE49VYk4%EdAV&tN?Z{SJ{uK<~0d?1(`1Ll&(SpjLdp|TVeO zM)c?teo1Bnt@ooo;a8{h!saqV=;kjUTdIt6&$_+T{B)dp>HdK19`8&3kPrU zqAa?jxM~76bnx-4d3~opCJ{5z?XGqViK%5pO&g3d7lOHB)jZpXq&~t3=OBTV;d7vGmc+j^W21xpCC2V`k%{06SPWp;@2O11 zl_iue`TARBw!(LO>k{JTHqqz{ol$(`e)iG)oBknjWFxQ-=KAx#YJ`2gv9VS=5qE$Fk|8?jhim2}{thEYoO& zHwWvP&&Q5*%7ZTqDb6Z@`A+5xA+oC2@`UBKt146Xc37w9k)~hot1ou@AlRnCA*A3o zyNwmrR&55fW*rXPPFr?mV`f@2EDgnNh}NM3-Wc8|dnTLlA!?axFs zoqNaC6$u7(XJqvvq}M5H4r^WsOR|LX<^RqB=T60iB7>JO8 z&;}5{5ZFdCpXanZ5g9S^XVVRv+lKKaJ8=6g;(;$#K;l^H{(X)P$!T=G*wj5r^}9JvqV2&jl} zk=TCAp%j}GJF|sT<#12vXryX0ZlzBkjIk)0XM)f$dcj=n%v7N9)f`ka z4QOZzjgIBMbn^PU@58X92i&d{2l_`uLbLqJyTYO)SP1u6u2+U5AtA%r#1@zz2+6Ia ztT>)_nK3L|Z6|>Hg_Z4TcY}mJ8+;|0xd3=o`ew{8ok9z`=OQsfiF1jwH&;c6r1T=1 z*?-D2bth3EDzmJaZ_(9uX(Np-2jgjCtFHGS?pdB1fNTVCOv3k&8S0(y zR>=!i3xxs@@nwsX2)2$^>b-1+T~BQ4mx}z_lQBkz56ra+%X0b?l_EXvT1TMSsM0V>X_=^P@tlLrz!d&Y zY(rg_-E475t5CV&8`WRcVFBGGQBO_Q3;6j9bdZ548J*=X?r9GJjz?|2+^}!Mrr_=_ z5W+Uo*T*&j&sCBegZgDPDi&}2`TdjyF4*%3)e~%==$Lg$ne)&Y zF^gS(p}U4Jt|mQw!wM@GOHQdQZEr3+`yOj<7p29$2U!uO#b^Zr^ra&7#l;B5q1Z{s zFn?FIgO>U3K1DqJ8QP0A6I75@P>9Yu7 z6p;M!ae*UdI_KvjgIdq&DXx}h&s;KnE1{Ea8CNM1Ey-H^Zjh7@D)20u0vg!VX?G>4 z2P>23ldTcPb7-=XpQDZ~$E^0jzBdP#!!7&D#_)212AJJg~J zA25466%f(lczb6rr44nY-(wI&OY9ZNN&UDPr} z6M}HMQQ7NCzaHSboC_VNx{ClXg}N#$JH>?z=%YX!Mm{6L@b#n(MiG;|WL2ITJAdvt zMy&R8gbu+Hd1|iqz^W+xd=$lfDQA%|Du17RLHk+Jx=gU$DQD46vl^~&kV?sXWihmM zUr-!Xsdo=-@bt^zPkgU`d_O*6% z!NKaI^Ou%Xtxlmm_8c9D&C#_XaY+JFmqqm!8k~L$dvH$B45Y@TaX!p|dL7QWrX_@p zTL<8Wcpy=oej*#K7xkx$Ad9YR=20KS{YWR$p>ImF%GU)ZgW!)1djkYOWfH?&i0eiW z&4N3t7mO)NB_Y2OHJ>vO!E$NMlXzBx>LpGEElp!fgvtq=lm$aGH_U?Zk!1O45mRHHfBb4$js(wRg?X7EBP)jDIbGhW=ngrPo7M*L`4!~T zLi?no$g0ihXwjgIxR5mp3V~$c(PI3dMz-jog?>^C^J*Nuq{~bw92!u{$u5% zFRTE+VKZ)kh%_XPWYBKssqaCS{3}c!O&s#1E7sCVuskm_J|L)&x&dCM&D>}6hN_^n z!B9DrQ$ScEx;Ilo;#82|;J0*mn#PyVsLZIm+Q)#^vSkN6GqAu5`Z5L&l_(C` z;YsbX;}+&@Jg8JP#5M1)cgOA_jj*m+cH-3eiS1`>_;&Ng>!~iL!Jv9F*yMR7yn6#{ zvZVDSJ~u(8Fjw=3s1!cJgj|hl#d5R27s$Dh+%M8n5`KE|WyEhX8BOrXnvQ>v7O2M8 zd}<2Svi%|d?VS1iC;#2IhFD@~muZw_b1t+h_WhRU9-zGRM1m znTES%h;6QBmvhA3vC3&h+lb8Y92v`AM7t1rUxdB9Dv?h zlGkIrWrtW0M-*u%@ITH7pgiUy_IaHHk3Cmi)g z>CDjmt5UJWCU&4p8K4+t=v1Xyo^CD6Z5x;d_`#rCjOhp2C*D76h8jstCXmH0JCZ;| z#pyZJ$dz|ZiOj@FLwI>`aqDfxzlw5MmN-we74+-aO6rX6grG)l&FUOgn48CZUF`QX z%UuYBckT!WY)geq^g>Lut3^?-l3S~ngg6F(B5v zKht&LcgR6X#>P>uT?M%v_WH3%uk78sQw7n)e{Ty?cG|wdEaC%(&XiR=qNheuoxaeV zS*gmwH@D?!(^Y(SL-o2~N+EDtQ)F>2nb#%{>TOTrsJjTBF8eJddRU>|3bmT_<Rff0f!eVIw>;B!7Nbd-m)s`ULL<^zr<$0Cfl%{X67%&n**ocN z1{@;{`b_dCVZX83=ew50Bcxf%2CewMFyiae*mQM(B?2p=up$PK8l1)^bO2%QlfZGsj0$_Y%4_Bu9A?P6FuEN7-tTOC~A=n(;QyTE*J|! z_sje7M;D;q09`{8c7X$qqDP!9#SKoj-Cyc{v2_@9o3gab~fe0gm zw=tUT7;CQ@yg|V@S$_JfWv(%O*dErf*A8bp!I3T`?EX2f5_0`eNC>G%3T*hiU7wf= zqkSHdXeNMyx8vJde}V-6iRl*$)Q?_b9+>v2BdKCPfRm2-CzUlIy*-f>eL66b!?ux1 zpaalG8xljrwS!D(w9Kvn-x*($VA{Ibr$FFA8U6$pX`?fDg1kvvG4X+|ybCVT1w z_D*hYOrEA6g53)Y^-<|D}UIhtoKqLF1Y?2^@v5BFjezQBCrV zSm8>3K6w|sY2gQLV{7n{{f~^F;j{M&zH+)&q!U1UdKuq&4@_P}erq2Klv8oP;iluf zDBkaEl_m%X4J#hhZiDE9%Qe4H3Mt>s80kEdQ+#A6{k67Sku?~NFsj~oNSOWv!Y%o# z$F3&q1|Bo69pWNKMndul%Qgg^-bKQ)L5ZqwMjVOogK}%d?S(KiY6&bGC4EI-aJHZ< z+Gktu>ia0e?s(}VtYQ`;n{0BQKjsV$*j9&g!Hc+bhv{(T`tDcp{MRA{IPC9vUk2`I zp5AOYV)j09{dKIOS#D4^3_5hcGS}^;gTS@y@6FjB#w8W2&m~<~^Qotb&F6{n#SnKJg}joWf90&v)Vxjj zIs0THp(x*Z|M+;|&O{A6jF#fEUfK6Kw!!Td;!wifk&HTxn2;ZViqxF>>>LiDF%K)9 z5wIYDc)Lt6MAWk8x@~W;q63;P{CzqSRqRgALfX)Gx#^g>9G?$Eu^;8P3sjwxGzm)4 zs?brW{R+Vc);6Vshk_^o#<6ZWMs+Bmbi#(;tp#JjXaq=6RI5#eKiBqIu*8E22J183 zbZ3F(PQHxzRJCMcn1QEd^zy%0!1YuT^AIW^D{K?)pq>9XuiUm~Fz*x@0rqYJyqXys z5R}^)ESGc_k%{H_QU_W}|Lx8L?c6y&Q;JWrYV)cD5<%9dSG^t$2643ehvO8-FkE=~ zVS@$!Z3HiA`eIqWAJ}fP>8w=3+4)&lzqW*8`Y$MFLcMazVYk^-$ZkRLBvCo<4?7uQ zbjfdg!IGY9UbQmgy(>H}cTl#~UnSaO0}yhezwm!|3+F>d$$yfW9ypFo5&8U>-3JAe ze~4sX-oy_}f;~aEEF``zR)~RysoLFs&VHuFu)xiG@?(^PyY|M(CAc@RucAylX4O_U zGdNGrA`A0(Of>U(E&p9$!yPkP=neW)hqWj~K+KhW+QjE^D8l8#|VLc&?u+8ymzVf$Jt*0v7oX`TRRFlS;((}T`%%4F8 z{m%k}{TO!bgnQLVG&CZ*#Xf5_xaKIxA1HQU!wFF26IM+f{YqZ)%uT&|^8G1vei7k* zhGr{5%ZQwuyeW{5k<1Vu>ebv86oL;2X#HvJ=!m0iR1}dqO5u4Aw7_0vry;%>zkp8r z1_7L2r#<3)nPD@W<*n;0LG3B7(6;uwaRvsGesG}cde#GKg^Ok;+60$DJ`o@6aNeWI zHt3tNtkVmmss?sv-(Q`uycqKZKa`k5St@)*`#`zeKJwF5c16js5h z79u3Kj&gWJKyr;ZDUeatrKw9|FrR2OFYGQvO|Q3At#0D10`mvAQ>b(+OmK&+_*s#6FhpxMj@q+-O;0RUk%iK8WWpnutk&`A$b>yZdFsRI8o?R z>cFVjLWMM|?UO#cRF49R<*UPt3Y+omgzc~CemW|L?`O^;F__4r*58!Tu&30fb1>jB z!%md=)If@QBIbteluy%(9>oQlD}FNkYWfp6uFqfz)klcQ0X7GW^5Eh}x{YF%?~u`W zR%7H%R|T6b12(v2 zMx0GE#(mP(7@<4urz=LsVYDA_20MH;D55*u@F5;E&^}hAAK}rdHgea0iuP|*_+cFA z{vzs-Xtp#*ehLjR+ZUdO7s->&_32X_ZyV~4PKO6(dsjD#XcI}q=fTdOMtMV02ehu7 zyN1-bYj2$xcp&R0#%JNYEzj&S{P)0-(({G#f*CT6*C1XO)YcsPN3zBX+XH_4#@BWD zgaznUatJe>av953vG$G(6}oz4lRW}v?_s>V6>H9G9%{HOX2vs^40l$ySE4Bv8m$dT z(E25J@-%)EU#FMJB`ZZ{uHc^ZNrK2O zPGS#ydcE`5nZzQYi0=PXN#B8xaJ5DH1l*f#sS*vJT_;XBXqoa(_ojoIT)>Fa-_l?^yIT z1*B{Z7$H^I3ssbh#Xe47k0<|Vzc-GRZzIa&J()mVWLic%lh59JP>&8e4^IGpmvEX4 zXVWP3_N21yZuG|nd=S^~B+_qo#vXW^{%$w!vQL8p1}VEHAJr)!?AI`l02;WOcW-@# z#m3qpCsG6;=zGK|qkM%fINPHnf*$fkvzl`Ef-E?wQPqRp<6snSz{@hbp{@sxVy13j>y+sV zj}x}@v6;Mp-xZe)GRx0U@RuP%f#0jn35}v-%R#%-LKiNVVz9mALMSq=dkGN4PCZVc z7`dAtNfQ#uc@tx3b1Ln`;>7}6K~qAF57QUyGU{O=t^*a?U5S+~G?EfqP@ybxIG^h{ zVz<$p^=*dIu^|_WdnN!+aL33`%6zXE=Ao2O$Z}=KOSZquz`s5oE3}SVeld`5t4D8Q z5w`befRxG@^JDfVc5J|hBrnN+T-Fv@x{(Q4NRts-t8{bLZxnHY7A99(yDf%BFJI+T z2zkJ~%FZAX?$M>YRP?(dy&G>i`^;*B>RK+_U!+7f=$+u4ywmon1Ep}_S7&p1IMOkv z5_~4(DGWc87vyWF^O&(&YIyC$dIzkpmohPS)BL!PXNbR@!q?)3%wo)4kS9W@UpPrRd`aL;bx{(8a4GYS2H!RfVzj=TenT5xH@Q zGkcx2gB3tP;kx|~Bjor*Damd(!fhn;Eygf6=LnO4UOy@`yu2*hmR^|tF)9z3nVOwK zHC`4cUjA+)QTDn`%`*#cpcNjb8>Jj3)A2S>m=HI=8$!;Ej}8z&MT_w=`8dL@3E9&w zX>R^2ix)5AmrQBw-YQcV<1sl<;f-w`aBrRBb|>Iov>}ye3NgIVg}ject+P56#bw$D zTj72KqFeK=7f2r7rf0q_JsmTHkr3zv=kz()I~L=QIyPP9r_%?&$W}eID-_bUk8h1z zA_ZH=`ph+vJm!f~K3&6$)W#y3zQ#O`1qg?#H$#rE9xpvjh|defp+m^)B?@n+e#&lV zJ_`I1+Y z>UfTcvLEv&VYdfwC9&T$kM)(qrqA`w>^%+)vmv802WzpwOsm0@Mxt-6aDyFmd+UN$8X-&EZc^RyK zRD~F4kzx;)`y)Pb7OC2a&O){Pa#8T!{dC@)#z|TB_18%=p0F7;@+n!gaJC=PC%XJ* z>N1yD*;7q8lcZoXLPkU9UAGdzCNGQZuH9&T+vP5`QNnU{_+b%QE(n z{@HXAI|W6pEvNddl3_z!m1Te|TNJ2NxI_n@i)>Ny6`YM3C+g}-vFmq{aV)wJPp-{z zV_jW^kE=N7B^YySv466hD{SD3Mxyd7F>G)( zJ}8DHB)q7VisKrpY1sw;)$gKgsU4OI4KH`VHMK8lu>BN;F7Yfg?3wufkq&&4%}b-0 zD?K^N_Q;%N8dt$f!VJ8{uvz*k-{=Kxv8+h$GOzM11KHc6{t%zx8wQGwza6IUMp%@) z9?4*3w=TsHCRGm-!;MSDOR2^;otFYI-#d<;?Uko+Q%nH6mC2nlu`tXKCUZ#ew_EFuFn42#L`&fFaypNqSnUdA9A$&Jk4PZkZ>mIrECvKW+^a`B+cnBR6Bxnu$Wb@#%LTv6QKWU zOWu4xt{k1ynr{EPMp`;^aVg%dSdlBX)VA6~;M`-oQYz>_*q}S98(xA~+|6WwC0aOU z$K0?m90Dnvo#kBwzxql6$2>23JJhCJ_~yyZeC6k+HI>SF}Pv~{uGBS zyXIbCZOf4erAnK(K|sWE4H@PeQP15BO80{!PB078BjV$((bJ~eax&g;`jcS(Zv)KT z5{4}TzMvlkGhA}TUxI!$+;y&I{-XHIJmo}gC)zL=afz~%7@g=ss;9c-Xm{7?tWoui zXxsyg{|!9-M(|s{YR}0+I)990;BL+Sc=(&?;vzk1(_@Y#b5qj`EIWoiIM1mxK|9jD z$jB*6vfLfm-N3_-5{kPdk7<5#aerIJ-?sG(t&2x+S0kp_X!Wa!u1l~kuR>x^6b~#N zH+pl#o>Wh3i|kLz8J8G4f!gXmH8x*woeq9yjz;BgoGG>NUhgTj<>VRTGvAv=XYr>- zx;K1D7T2-vO4O?dMKwgC%hxSQ`E!KpLL0;A8)b){c)ZtyUh6&pJErlbTU-#`zlQWi z4ZNL0ryHOoR`q(yeCzO1m)@!aJo*pf8R3ksww96>z-jWOloIrEJIS;(4LnD-g6zL`07)EN+ zl_gUx-ix%v^{2c5FW6!w2Uy&67LJn&_C~w|xHa?*EWg2aziSu6KatxX%!~tiW_zPh zz<3KR<`p@}XWD%Y30NTz@bez8k7bDDAu=At9YQ{U1n2w`B~U56Vfc*B>g!2R*lyLc zA=nnhJBIWZdUFCoZ{?!K-@nbLbObJHhoGO}8Y7N^J|EFo9WN;f zpj9{Qk$V1sS4qj2KzC1qFnPiW^@XamDm{;%kyXwiazk)zm<2mo{t^CTv(?eAawnB# zmI3(y-6uznWCVAX8)-xPuRn?shz8a*p}jfL<)l&GM5Lmx2eAJ@h2S7Scb3>W81~Qi z{MMnJZMxtv83Gw%SL%`+E#FHaouYnFHmAnp?O#Vc;O_L){#i!2#ZkwD ziV$ix3wM6&}aAU_Z@#j#=-%+?OqJUKjVkd{qYW1zCh3Tdcy8ABzy4Z zrV0Pi?{}!+52buA%#uF}REAP9dNF?nHtf!9|4mwwhOhF0^jnUVRwDT4` ziS{<5H^wuh2oj!Z_}y!M!TOHTry|ANe&h#v{R_$iZ}0ya{=p9W?_t?NYd1MU6fSE{ zdYy4=x2~+MrwlCj{DJQ|LBY`c>)}q#ANrx^#ud~!1Qa$#-&26kfgc!_{XZZsx$1XS z{+9s#8yCFa)R(wZs|Wdj4H_PY723;UN0;>D81$c80`Y%j&_pW5XPaXP*19w(7Z)9o z__)nKF$EYZ2oP8Jx$@QEKO6ARk-e9u-uDBTfbfIrOm{Pkr3vBc;WSxw?kNBB2wC$) z7cYITtQoeaY`^Wr{(LH+_kOC+B|Dt!FK{4hIREd<9^3;r{~6&e!=@v#IuY_};EzgX z5t2-pHh-dxT|rFkPwoA4^9pKU>B3WGa}TIR?>l)W>Zi2-PdM~n*Y=l?i2OnVG%6vaLb=% z``e29sr_B`KWhXcDt*v1*ZHw6SPHU#t0_Pz{DVI|sl#hG8Q#9sCpYYjw0A{hWJKN& zT=u7OTeJMH2jc`)0|C*6_|Il?f~tbIKir{>>9v}-?VA1Pn>RGzK@Bz?T+5Y9y|~+O zpgat~pG=?wHQPolYw%A^@y{OpdnlZstKU8p{(bN#5YW;6_Q1ode4h!FHSqsjvytSY z?GUB?cmKhYU*X?l)kDJC`1*Ci)sNIm)u>tBP}E`Hnx*XR}O zdt6y)+N|=n7c{kQmb~{JSPVb1nQ> zlQ`o3k)!t$86(!WMDPC?!s2x?!A11d;_pwbkS>yA_paABg}8l3=FB$S-wpI13#kMR z)I?ml%Lbe0pA(!l@2XfSlm!)7e@m%b2T7B6l46PFfo|;`ge}a*8dPa&7w#OgjH8gR z6HVqco$d7r-$_>!@pMfrX(>PMpn)s0Zcs`}$a;$Q6E7>=uuI+Q%uK1Y>zl`?K5`?nedFZBPyX;|>Gr9`#{{8+7002d`DX=kDi0lXS(3s&Ih9eR9&Ghz z`BU;dgkLVFg8{;dQ|I!|!`^GQ-i{?G5UljtfbzMH*LJPs7R_GI1;{0>EQV>4^L*Mo zK4!RLr$iDtt*{Vwz};itx@qzTi4a;gP!d8fao$2bg3hbjfW*9RBF}nZ+AuTfFp=Oou&`I4<lAx^Nc|9pnWJ=yKoEdSGhce)mf8t+p@KpgM z$ZHhdDhc8Hm^e&6V|aZngD|)2@;6EdZPW|O$7F^&bQ3yP&YL&f>oprV{eoATE6`9( z@KpI(vE_7F)Ky1Y$!+=^twoIWgi6ps4`1z;wcdrh%g0(>dp{8Ah&8F91S14FY*3>q zv>(wahH>TFl}?gMhZ8Alncg6SNW6JW6&%g+Cn~qs@;KvS_whx)OBT94nM{aT5`@|o z#N6yA2n0ekq0|nvVkJ`pT?f)jvkr~d%A3P4&mumfK$~%604|%sJ+fYV+HSr^bc!jbRDZDf8cA>X+`=KpgcU$)(;1qZoIW;%iEVJRiL zUVtrt_u$2IeR5o%a{fU6^^D$}0HKMxGXo>w=9{*U^(20hi(Ozp@$;$9#G$h~55UuE zYlaInU1(#5xQejbYilI6x-caeprp7*lJ|*x>cIdHE#0ttz5AAOeH9*D{_)Nd?bJ3q ze66MF+O93ph#`&5GB!C|a5fo)LYg4e=PFp}>dxZ4Cg zLVRk3(K6M)$%@jn+;uD{SjgP&ObW|68^Q)y784Tc%lJH_+{M* zxirS*0*k1p=$o3s<1eBO394Z^XC9mwwV;6*p9TBH3H`y--ZjM3!PJ>=$OkM>Uw{LC zp@r-i$u#t8EHseNggwC=y%*%4AdkTkN31*=51*xicL#EvDBWqHEG5_WGYOh3Ni2d~ z!yr9^NS{Z`)zh$SIre@CGO?qNG|=aE+R!+UTzR}`O{gKT>mrK-J=w)*Qw^hz?fEyl zZJDiq9hLwTsP)$!3{pLo8n9Rp&pzBSpcFlX31q@7snSUa+<0qjt%F!q_Wn@!$WSm( z^<&=G3oE%ZRo*Ee_2=z~zT!y=!Ly-@I5iASo=~obJj(l25`Lxl8l*=bF2rEa2Kf4%~$K)9_82}%d6yceaL#X}>X<`z}6=pb2g z89=KI^)Zr?{0VTw^ThX~P{$&~;w*03z( zaVl0#yy=Kl9=0_m;sk8L@TSkc%F0UkQizi7O6Q7r@~)bzfx{K!aL=r~%D`lMfTPS{ zAdVEy@Gd5}m3K61ab-36DEkXVQ?IFjlQQVUDII5#PUs9&afF`(3QC6dcM{87DRjOa zwh=qBlF&?&sr-+6F;Uvz>L>D!?267btPRm8_F1&@p4ZJcFG8A<%F>7yzTWU5dJJAIpPH`Wdk1Q~ zNnnDfyYezPRC}B5e>^4OYP>-wtjO~r0lAjc*fmKq%eKkg{m3HGV8ODkcoK5i={l8( zFQxM=$MkHnnC`0OU4Qd&F*yo@WIyqXP-<>*Im}_6m8^GRQ_{^{^0gaYpRt+u(QxW+ z*wB2tS_J>qc6$U<(ka&_Ug}SOGVYZKMB1|N84*Ayc;3n8s+yqnM*oGO7zH;fGSc?h zc9^_6%wRi%P|S~xEtRD-(6_;Zc(&m5q`%I${$M+RS(VKhj<%kby#U#9qDzQj$q4)K z^o~$#E4V(zw_VO#7T91T6Xa;hC?L3^xZLQ^%xTTHQ1eO8npn2l9-C$Fb7WuZBZt`c z$kXfUw0^j=-=H)bruUX$2@YL>R`S#ILOmo#ZZFB@z3n9CK%UbQ%@6S{Dw;bEN%y^+ zo$8S3b#FDu_RSYVh|Y1e>FQezKy%<{2411v6cD#RzSX@emBDgV_{T>4i5#GyYxUX# z&c{+GOf8{~!JY-<+)>{n5CT#C4V5*sfO-HTg>Y04<=W~23E6Z8%7HmE+2^mYc!_CN zqO(izJ6`T!D9o5d9OA(b$dJlAB!Y!fp~=(PBN?7dgvGfhYYT*fh$nR#pnWb2Whu zBeI`0t=C*9wyJJ;Bs(Gs1X1q(iJTFzd7kx;{(%eX_DjHYt+s%U&C6FMIE63YU5Rx^^k8Se=%Av zku1la6V+7&7pX6}lD0aR550@Umb}xo=9lew1#pmO){y)7?ex^LxEW30RF@eH)`;x& zqQu+&#|c{lk_;NN$qjKZu8(;gF$hhF{3ah=g$Z=0IxqfI31lpBl)_~?@j+j>r${vGOS)w=;;W@- zjk6zPlD;6EF)fg)=S80EM$`{rv@X(t2~YPtr3qOlJ}|w3R%HjD#AwcV2~Cn2@8q5L z+UzRGUqILf;cQGeNetMN$&G_pNs^0#xXm=~XnG#~`ulSRRo9j?LW)>E%Ic!L+((iL z8p?mMfSzE|JgaEhpt0;|WGlks91x7bzNg>Jj(bE5DhAX_zXq=I|(%ylbz zlDVQQ>2YvUua7MS> zR{2j-oVAb42*fZ#1Op*&d05iG{>It^NLVXo59u+XpI}oC-PF1_%Q=$dRdf-+dx=ae ztCXBd6mAyb(c06a`$~*^$CXLlMqI6vut9|n6=@l2JZY@o#CRIYv5`x>4(cm}_M}VX z>OSDEtp%I_SQk?|kkM^qcX(G^d2*`BdarLc2Yup>bc=)(4M`NMuN7*UKROCy*Ef5q zl_8_AO9$T3v8;aqCA5kaLOvw7AujnGnrpG_OL`8C6k7+=cZ?~(7HQ632OE4&AGp=V z%(}39>s;*qz-1hrC|EfvgyOkuD$aIOcyi%DB^_tlgzHeX+OAVP_}iP$wJlo+yv}Ov zi1|m9lprArj)D^(dT=w{pibk5aLh4*|HIc?2gSWKalgUcg1ZHGcNTXiSP1U!65QQg zf;)lW5Zv9}-QC^pl5@`U)_d#L{fpXNwrXdlr++=)?oSUm&8l{|pNbJ9ylhXC%i*GO zNk~><*Opp+9wQ4pXRcr;0nK^OekofqbFc2@vg(U+Y@-{Tqs8YOPL-e)tJ{duWj>)s zpCeV$(9zkT9=*(taGWYw)qsO%U*YZ|%p5mms8e$>cMyo5*mN%L2L07;-m75n$&)sKrhep09^ z2RF|89HGuONXmkk^Htt7H*H7m9&H0%1R<`Dp^4Rt{w?J*xbUQ#DJ==}*&5}7#f!r@ zapnuQ3Rtg*YBbNQKG*L)Il(LgyNRXeAr7oepPYvZN;by}UCK97)f0#Vpjt)yO8fcrA>JM(yAAuL-m-k~+0c8GoMOCQL<0rz|h zr!01$r|7jVhKC4%4gcml2&Zr}^c{p_FFqNVRFWj!;k-N4Q|Dvey|Y?&hZcS_;dzuI zN2*z0u8TR8XRAF&4pBAFJ!QGy)b>nD3_>!=dS3gDWx(p~v(-%w)lR!%S*6lihy_(p zziCQlE=FJdD00nd5N_0RE#BObjO1qat68z-yq?dc=|b2U!Kgp>X8siMH7Duzo%ODg zQ2Ehddh6AJGht**N%B7AwOMJjzD50z7`iCLcS#w0(%HR6lCX+Qd(rsS&fvvgnaBXf zU~7QgmmEj=c(L{M%%4yCzL$PlGXg);l6OLG3Lhs`tkM;KR89>n){|>AQ7b+OlecIQ;)gCf~Kd zA$3-dxRo{05~zp;w5Y;PDUz0{6`O(&IacJNcFu<#&N2{$4kJaP}=|U__SE+a`WE&h%=ztJ6=o zXdFummV$4y$3*}w0SOB1R43cl4`&bbmh#P=lu;;ZT2I01dGm1nM zieVveo?hK?7ld0gA>W>Bj06+(0q*P7r5^K=1#>+c0<)(F&Dx& z?P3csye*fC-WHXj&nYaLJ?kWOD(mcxs$c)uExig2BoPD%bNN3_ppv{TLAfWLgufmD zLM1OxWoYE4Q5#p5Fq-rsMp0sd1UoRWzbU5 z2!a=yjefI1iYaoFoj-%_aljwhZ74S(#dit_`iE6BbDoH6G6fJU%Y#pqpKCS)Q6WBa ztXF&-T8%p8;&vcdLh+3iglCE>)Oy!G_|Ue)7P<=#0`<&iAwcmU0IMq;R%+Gsir;>Z z*>s&oeD=4;&eV?84HA4Y)f)7zaE)&JNy(u)-vZv(8*q#nyKGaq!E;$( zg=?B9L^PbEl$UNhwfq#zZsd%VkcTR?jY6fu?qKL`BKT&7V@hRm|7s~#tr(C#ZVxIE zykei|^mfjGw}p|cgd=#TtkkL~G&n;=cM7Q@vI72Wlq}`%hz5DKYS|Vr8tU*{sAh3f z8tkY2IYuDMqc^gvhBSxluxXjuxKr3ne5w&-Kgh+16GR|1*RVt&6|nbD&#-!w zzKs?IADFg>wr-O6f6w={z1~lzhv*|pr}J--_dnsn&EWwchI@+(qTKXk6>;}^MhSJ2 zw`=OvzWvTWMMj(f3DYCTL$)j)>HJ+PmqH{=6NO&`>9I0{jTLMbf4G==uQ)4aqW4Su zhZzf_aauCRxGxa@$tL0(b*IIbt|cobCbT-5;$qzUm7cRMeM&P+at?togdN?F)A>Ts zd}Cn(Fjucec{<*XY1W45Cq!FROjuD{NW64iG_5+s65(+o6{^}~N)ZtRY`+Q1oyMDT zgh5@@z=)JMQpIIzN9VQ%Pa4)D^-r^SH%#jNepS!LE0aGXGPBBx=KtmIW244@->L=Z zW5m`3<`mOTfc23rfde!KvYb&Bg8>VP^PVI4xo`N^o|K9SWyxEf9E!+`FY#JE2bx-D zRA@Vx#nLubPM(m5?5EQ2v`Vo(U;b{Tz=J;n1_eQ%(U@L!0nX4T1K8Y7I3$BQ$8U!> z1_*>F8l?<(zur%DXD^S&IKNPR^7MjKN;b<`Rzu1wC$t+mx|FL%7(h-(2CG%eyV1e- zlGW)`J;Z{Vg|Dhgl^7kRyKpF`5*qorGmGTtPdmzXO$wCjH;_O_Ptxm8J$@K^S8f}9 zBv8DOH-LZn!aI8JXiT~0nY_+4tX)t49@4XIh$o8t>apTO5|}DA$3_F}>shN`Kzi2c zAU&XisCuUSnJhUAl)r4zX86RL>Z4|4o%Y0u(!_4JR8XR<^{|A=fy09H5=I2)coHL2 zRY^*?Qi3^Py*lya007|n*ZY~Fi+olV5Zi#Qr1X=|r}VpmUen14gu$-$wAaq~rS%K~ zyqb46kC>Lyb1H_EcKDNvz(vM;GkE-6p7c&QXefvMKeRbOCmzJ zFMitk>5c03wKdi2e#^GgHOkyxCs>*>%ihJhW}$lkIp9e^LZ=e#hf|pVsX70xp81qO zClvLbYV={M)pe2@ZHxuYN+VoNnddy&Y{wkA8DbDxbz9IQgw?#6+#RKZEOJK+e|eaHyIpy5V5$rA$XRt9~tah5RAz7gKw~ zwS2XJ7|`^qqVmp;!1CK(_$epjsI_0t%eCsx7`*@CbjE-uJKPXdJo2k9xBYNhr=#EQ zQQImYYnKB6v|5a}Cfx|Vg&N3GC{*O<4O+@+%sBktzJ(D_BJ72i1%jlaew$@2DFlw` z+SRahz;;%$NyF!@npR6Tzl*c)on6MrOJIkMAKLE~h39jM_&dUYwfc9XI~7zR7PRz& ziQUoK9+f7cZ42vf@e9tYpt&(MPIT22G#5@KA7yz0LcEJTANU)ErY#+DCbLo#!T>o1 zX{cphZp+lx_>tn6>N@uOr_U`*+E`+dxT62-)IVov_Xl?iy*)6FKGXz;6t?ykk&_CY11 zG_kR*Z;ig<6F875xUiB^)2nZS=}R3sWCbyxM>W(ozFu3T^m5^GJiA-(O{sZyvIy-9fY>F`nLL$0BKze>Z(SW?hXkIG~jR zUF$-d$_b>EV%f3>gBS4758_VyvWar1Bc?wev0q~cBmmrFj++@sRfImJP&+M-+%#iC z**IafLJoXixQo-R3RZ@c@cH9EcOkOVcFDwP_@5Tg46$ec;@QcfewDMZEQh~nrM7mn zkQ7VrF(|#*Y|k>>>7vDaI;(qa(gX9D9%S|HE7oCCg*CXotRD>uN@g z{Q^}sJac^C5=|cAe^u1EHmrpBK`$*vORX)#o@SW{^KpUqNg>Rb(I^__!}Htx{}5pO z(+;!~wO0IliS;BT$42wJ$$@373u+zm=@<`jt}%f`{3dX>Hrxry0!EFMO2RB*7zKjm zRtXY4>y~Oco_A#$CjxHk7Mm6E2Jq8si4yKP;7=POJ1x~P+!=^$go$|`^W=u&ODvR| zORJjOh@CuQMLf5k1saZw@0VDG``=e{QQPin_|+CdrZR$kKVj3e&gSlIN1xoeVFeGE zTB-$Y@yP+oFFG>|9`wDRh;LJC^fRnM34<6ha} zMpQ!_@;ks#gqMWTbb^RA%S4*=y1|kUw3qN-1VEr&$Opoz-RhMw895R|FVqn1xeZMyCIRcLus7J&XRq`-LA_dDX`Iq|8(70M3>thC zmN2Gx)b?>sr@{wgwLYFpqTR4(eh~HPDs{N>tVBd40KA)!Iro;bi%|*j551Y$m=&kK zw(7jc{-Fe_R`iIUy)`j}?8;7_Py8z?ka~*ALx)0S7dnymu1typa@uincbe%aa?1WQ zpVs|`a~f8q(2&9zT4`z57eM`u%;W+C$H&tpT~-EFP{6&{O{=Evv7sd1mDQJsw8h~N zJ&wpt&pGD4a2O+H5p?a-qdt5B;?0b;9iU8PDGecC(YJzw1na!8$mQ!B2ihHv5L_lHL7rU?mYG}AKwfF>a?ByqUK zKx2pig*RIGCRclMB@jn9le>kVMo9?3g@98=;rph~b8>9wvRW)E=f%h9%x}I@B01>uDHO;m% zA6yoMDFuUK6cSyTP>?q=k4AewSJ3i1*^Hi$N)BXiZ`~h8RtX6do`+MYCW$0{-ph|l znGPOMig8cz_vB4M&2x!MynogE2_0l$)j^^AGX2)gB0D_JjLx^-<&Oyb1{53;9L|&8 z6z(I~_btT7t!fD%sV4m#+W{(*yJaq_*mevK=xL~6zJ4v@v)k_H@ zmdiUzBYle|wK>P8-|m#NxeZEN`8S6yq;~_-DHTi%jo7tvR5SlJB77M6-y)(lwNE6U z7nKHPDZl3iM%_^H6CTM zgYQaY}_6r`T z?sPAT>kFw&eUWI{_PX6}!j9oCnl@iDmw#0)=CBy=4g^~-!;p5xur6*1zs^aE$q!j~ z_N~A58KCF8tm;jdjY*$Oq^|y6UDb_O9UEEKLJ*U(PhcCo#N&jRHkFC2ZcsF51jJd7 z^FQbVp5);;=-r`=lk2eQXl}cj&`r=8uS87In)_=PuDm(#eI?l^$zC8AH9Fk1_dhU7|M9vy zrn(HLZ;mOXO*zG@aHZDsUw&m&+EEC|$guk^tO6Ms%8L@4!i|GiW>Xz0|0n#s+EB96 zu~m%68Hc?F985mB8)*fHS^~C$Z?r!w`Afy3{g*%af_3Ur?kmR7WurGi)Qp@m&N*i#{p>)Ol9uEjtY4OXl(;G1dx<_`-@)c1Z(@!u+| zM!ue!L!%shcH*|bszrm=ma3ip%k)&yD!HV+q$L|=zDRjmQq`87<<(8Ja_hvPqp`%8 z#nWxGpumD{v%vk}Db2B|*S$$M$u6q9X7V0b8jhnq1q@6ZW0nLuv+!u< z%37BSBr^VijYP7q)t66v{cKAZQcrXAbYNgHc%#VNB`}pTeUvu8mcLr1z(RNvWy0K( zeO{xDe7OCdEB0D)Mdi55AdNcnzbjqnj(SH|6P4VAy8OpOhM=6$K z<`4+BR168Lqz9JS!gh`}O!O+!WqPZEmDj_&H5sLEW+Z33Ig{<>+w=$~O?2~g>rk~w zzH;tCSDQmlBb-({7VFpq*bU(S3D>`fTfmDCLA#=Y0+a2O3q-BJy*{M9i-L}>DT-t6#^U3I0w#7W z_oy)7G_?B0q|9@#U~zggdAuq4COW{9QY$Q>C^=W)m*^VYp+uTHJV&(4ZuflKd>>)A z&Jb32os@`Ns*sy2R^xb?2uh?PJmk@E0KdyWL>!fw2fPrRSqtfb-{Sf=&teiI`mb|@ z-yd_5GfUCkjk|%aLoA{=W)6X!k5>eX;ovRB7d@Y}*IhFp?S-q-*(F&v?Xjv%7nvCX z#$c4{w>WkH6B}aQ!~2L;tTizCwPm~hB(Fb{;SJZy0ogq^Pili0$v2FcH>gVhR_5w~ z5XtAC{Z-C4AroB5%Ey(-<^!qZck!kxjS!SbO{FX+aL|iTD(~e6=4Om6vVX<}aWR-F zh-{zaswL}>l^sfqmIo4BLbB6J1+6HFo$LT5G6Ib-yWZ&!e}M`9^K)BHc6mwbbo+x{ z?vTx2-1=|hl4g`Y3tkW=-?Y4{7MfG{R{p8b)b zyNv^iS#tZ~uWg~tW$`KSDBImL0g%brM+JGt94Vk})x+C8{R`x{x*iYVbL~6cscz4y zC`6i(Jy|eP(1AH5nJJ)FeM)=0|MBy|j!0CHeN;0%MhMj%ps3!sSPAH zyCgpu3bjkgj+6cF^U=s-7*Vjsl3$5%u&ZSyV*;v=Xg@M}vjw(Ts1YZvjFNH*SFuXg zpI4SmPX1d^IoCbcgww|GsO&*rdbVapL`agYTk0_;END z2Lg5E=~F}%*`z+y8p#s6E$#a>tXTn+yYC7wZfI)Ce*hS5oPA*CR#~xW6E<&B40o(Gb}sJX8S0U_Y*3Tr;X3DgaR-yf zgg!57SZg3NbMOY6Hmtb1+2Xl{z<-DS!Sg+^d8zufyxdZ* z?GFxh#Z>EsH%8~(jgqc_Hzr~uUmj4S(M26kD8q@z$;(jG|4X$Mv~A>Q_{o{x#mdID zQ@XOsFjKv=1Zg~7Fur@J3ZU7m3AiIbOe3wf%pBi!gK((b#y4@rcg^_Yy8X+LcZe(Um=0#$8rb$f$P`IeyFS zCzSoGba6T0z*F>jnz! zoPQU7W-CGqQLFGf8*L16#-HMv+X8wCat&_gp7RecK?Tj4#RG( z@okIfD7YJbxcgc3Bdl$OdyMCws$PC@Hs z=YzG?sH-shgSld4Dt4;R$U=fye><$$4;@pr=ai(TM0D~gky~LQRUjjsr~a5YJaD6t z9a$;yOIp&bVU03P3{Yi_r%8!fVe?liRE%nZa@7OLM7cuESp6FPHr zmii*c#@?bv{}6fAU`*QeyG(X2(~-*O#t3d!GZCpEK3X4jp1ayzOD=(we5O$53YD$w z^}IE7q-swp@I^($BAgI#RXNbN)}K<+<$Pso5sv|L<#0LJ^NWavN2l|pPj67;>=ASpJezQENmJEcrTq#;Wq_wX&c1O+*X)mbu2qpL9ldJ>%5zl}; zpE_Pr{0QEOP5^@%E#0oVhD&qCJJjZoWA;#~CczUd2n|iU3}OO@OR0>+-DsiHgmJ&X z*%uC%`c7(OPj+5JF3l2#%B!);Hy_KXMIA;^l4crNIOn^Eg`vhDVy->=3WQ^p5(nL$ zHyTOoDOL)>IB~5G&Sel9VTS_LGSC|&v#K&GKke?ggk`~+ur;oOL37OYFGSnW*6Uu2 zTAwa%=|J$7acdyj>A*`I0m^@VX7@Y!`HIVD;y8E8d_Q?-pkijg4Y2e%s$CZ{p(cAD z7-+*Qo=1}X{t4mH0=M2#tJ`B&nMnbha}QF2{fqEE|Mv;O5-(lXpCaog>9iSKyZ0Z3 zaqi&swK_e4!>50?_~E>}{^qora6#mqPin$7}B$2C!OuH5p-uD*+1ITlT=7D|`NjwL#W zmWQxb)=09i60K8967p!~DF3KvTjFnzu%wVkqhrK|_WZQlKl@&Dm^9PoHz;VXJ%^XH zzSJgnj6u3kwd{IMPPnWXAN*^qK6-F{5t2{EB8X$ z{e?f1T-djhZ4oNiT=QCD)d|L6Pwl|IJV4RyfD9S&+?ySKrFN7C!hMA70YuYNi&nbA z;|l&`?js7}{)h-_BK{vlUfI4PHjh-(04`FoC7_Ls?M*Uizjj@VraYn!q!L@jo)83CUObG}-Rye6i~;`)Q8$6%P}`T`#Li4h`_0>UK- zmSOm>0scLH{>K$L5`$_<9f^>^+RqcYX!0>iB8=u54m8(-%0&Qw^1(UuPZq_AyP@5; zHJLU3zg1SifpkEF4}l^R*pm{p92>u|^W%+={(*bX3+sD&cL89Gh6yQb)PZ5)uQ>w0 zkj;Z~P*M9VH!=4#S`KX3Ri|>&92iAn|H_}aeJ!_&5b5i-Y1xB#j)tzCLOMYP{qT~} zOka|S`VScOpAHq2Q68(;s2#{5ex{qu5S z9fi{+w%u%b-Du>$UU1Z){!k!c*~B3@1syl;-HgvB234G7uoeW-IRcin?10x#Z!TkC z>aiG+6a+2!lJ9JwF3M|~K@gjL9TrRvelY9auY_1gc%s8l&vxc&=xtuY!F?^KoJ}VT z6ATMJK`R_~hcXsAfg#r)B!n%v8~6uFhO+RZ0604WKEUM4|7zy`53_{ls~z6a7*75s zyR1!>m66epaMwiN|j8 zie@o&-n|lh-b2bnio#;dDYouN>PHpB6L8e@kj27z|7iE~@qkh8xODQRf!U+33QOnr zRIbzI4ZcQ@<$ONp z#u|E$w0V2;=B#?u!qa@lXmd4Vxw*bpeD4xtebJ+lv!w1DY#7pe*zbS%{lqvn?+Gzo zVq^E{2ebC}`+Hl&u+_Tza9`FxP9w?(AIQ&HKtZ;Dq!Rx9cZdh9p#G2`!ZtCRzhgTk-YPUNz#+7< zvbfgjEiWw`wmRBKo28r>n5ooxUe{tn3O7#Wy*%2BU2*VPhr=X+r7E2Fv1ja&96*dL762&NM1uoz9e;4OJU-)-reEFk4+5C&W>4A@Fv2I@N4)cvbRAl}; z;NKXa^TWS8Qzi(Bh?&vMkRtldy$C|lqgVZT>n-i}zF2xa6+P6rkz^L!BrIgD7@UhNmRHWF|N7-LWl#I5!Pm%YBotfBqC zZ0Wyw{|3&<7Uk0pow8ordSYXz{U1K*h5~xRQ{C`J30>9jj#YC;7+6#k*)84v!f;*P zi(Tb3(tmeLb{4Vi<`h}V5<{o8-Hz9s&>G&~0Zw=$Lu2tm1DYNpx!o*uh5aX+9K$E%->Xf6(t&?nonW=s6fPd7({h z9ufDC+PYGYx;bCRqbFZfQ;in4%J+=Iy_2IEFkTsO=Gy`*INFzigKR&ZxGVUvxJ8rv zd#buuP112M`}FbGSKNxAzs7Nc^f3-jE393)&t`2lO zF6KVWu8m0G^6LOtMK6BC8#18T9o&nB3-3BHRz1}@+G=s@Jp(m(Wxa3XaEIqYVuW(V z`&qV&xxd>RIpnwkp(D}3%9O|Xvx&vA9_2en+u|jNoatI`6`(cni7Y**$j5Tk0m4+h zpf@zKm-DfK8OxDSGl`CW?Kp|<4x(Ld*Qz~YxP0I4af@sN_8gTbkc{CY^A3*%4vCZk zyxHpC7{bSe*KvYiH7gZXn-VT zeSjoR!L=>HFN~)%<(tvfu7Akz&N-}j7XkW%%j1cCGy%XnI-XWNME|^vI1AtNIH1(F z@aoeyB(G373b~vN1`v1`?_>t0jk_0!wyOXhA6M?b{>oNJw{rTmqm}Kea1F5Mrn}}7 z0%TAtPMLavU}8=KYY9Pbz-8Fh6Jn5DqV5_POvosuh_bl(z0Rplbp8VPmt9pC8RNTr z#2Ylk)o9j=PH}L=y-^{@6WX1#-RTp4q5c{d3=pRF1(-BGm9IK2K~HTN6ZdFfd@2>= zSEz^a6`<#>UH!L)-rnepzy^BJGY?vzG`OfKMtP{ng720XuI?3vMC#hLiR9Gr z23_~G)Tn>3*~K5mU|0cvtzpP}>s7O}99A5@+hp}ig{?R2br4La(Mpx#w&s7Nk-v1qdx;= zYbzwe`;?XYxArIXLaL0F6bb{U*)h>45 zU(j{X(bALY-b~nZ>i;OmU6)^=OHa%-DDmEZ67}Io2Rb4m@M4!d10-t?lDznh`)Y08PRAq` z?KT%8WcXb|XTke3`W=3}6(04Yy6+Dr&#SX|4fU&9=+0oPnOEVf6A2)aQyDLA$<}ev znt8%pkDQ}<#9&HtLV3*&C&s2?$~=tJPV~%0WF%hS;Kd-I>$GqEz2sAWprex+lV z1AZS981pHd%B8v%CjmaHCZ0Gz_ZQOZJ$~%G(HX9B11-FR6jV_7cjp3%Fq6^C=))~A zWUm3VqYitqfmjf>%e(R$z@O=6GKba(u5~29QB{OWodQYp8eB=Fyjwj}k|C}v- z0zSj~!M3f1%unPmZffn+d1<78_Ja=G*9_BK`>~f2?i=i1R-9PQa7sGL0kA@q9?*vV zzIW#lobSE!55M;uu$<>Nb~JY%%$1pN-YU_Z7_7VY$A62zcFA%kH6u`HyF;x5XKVOw z^Q4Wt7T>B%6c~Q>-nBul`fMiyolspSq3!7&!bfuqPS7_J0j>OYQ67!6?!=Hb1|Um` zoxwbkXW`twBka6hl`fY+d_Q;?QpX$Z#fac=MIBgR#bf`YjoC{zgiMarzBX9TQF-Jc z6@#lL4*U&E9_G+OftY*JP)KWvxhhr4OqP?Ym*HF$0vaua*ANE7R+w#4C$ zr3Tq52!1dI8bJ0C>34r;lt|GpF;j2hAI4@KZOcXD@*LAokr=XaT)wJ!GxPyhAVcG} z5wd>N^9VtwbV6%0P;@`erG>iUEfnm!c7$fF{8$j=Z*x9NW66(U)pF#KFu>7!EDYvI z4ln(TYT@3>mjffqbI{?gr8vlBKX$M(APv)zs5zLB`Z~$-b3#b;QDsTYdB3{mytCwl zQDIDrAs5Wr)nw-9q5G`MeXY!AtL(g1x?*56O+S@2r2NkKHWp`mm%{mDru}4mx6{e9 zpSyGiBT8tVdw*Ig77?Mn4d||>=xXtA5@(NBGc8*(OGVaJSikgqbG-FER0uz;1J|ma zbZk6`3HR60<<3xp>kLLFY@EA`kt55m5TC`y6w7auEUH^ClZyx;K)N@TQ6U2;{aF|l#U?N zOcSji@^jOSd(0((h-M_5pKM5-KK$d&_jzD{gsOfaI54POC%!mc1cu1H{@$RfMxrg3 zoqETabKwQyx~}mMpFg$FLZ91uT2PXItp75&7zw2T!h#gfgJ<(lwJ#qaI(%|6C97is zXfvfe!*WmUZ;1TdXI;)oxoGlDvvUkX>zbJ!?ON2Kr*GEzX=e#hH7nUu2itK+Z98#L zLP}1I5;4!!C2v_M?iF&Hg<)G*lWfeHYG6d8s7aZeU2X*P^ln?R`WR}u$}o8QU3}y& zA&{i`@^>R6{<37BxBX9LN6C9>jMotfLOZADNjI z`9A0!nnl0sVrFLf@@3@mfpC^@z+ImNc(B7|*1w!$c!xU-MM=5SY1qhI_6nFJ=70sB zGqicI{Fh`N-g>D13J00;c1NdD9<2r7{ckV-9An#ugT3A$JsPhNJnA;BSZ&-1i=1X3 z&holH4(};)^&8BS2jy6HZTX}fe)TW1nuo5JKmSTGy0+1Rj4z0kW+W7D;M+vtla8Zj z=h$Osqs_78ct!8_WMM~WAu8iyXG&~eQ4JT`t$?-HGr2jdKgYLY$=Q@MSD;r*G-K0h zpc`p0iQGvPVzUAh>gwo4Wu3kmjxC1H!BErcZ~;54>;19K2j@COv$Th9s?Rl_HBg|Z z_SHs#V4Kv=WCOeZejSL6Tq&Cd8j^`6+;9H%G%tQtwWeXo<6e&rF|A@myc_C)VmA?h z6)fQpHlP@#7$2V_10Vb|bEv-$#+8~P*Z_KU+2(2VnyGmrfLnpGvATGAm5ygH+5ldD4^nKSr{W8Y@d8{oe%A(6CFtzUxg~|9kbJ0d0 zQZk8^6&t;y;f?LApFV8guH`dmNle7*q|h?rJdN~iWa3ZAi0n+o zU;FeDrZt=2hdd!^?go*6eQ8N>(M<_XTO<{P%A^C4fU-|%qqOM`^yHz6$pYbE(pDY0 zrWaiAg?=yqgM!Tzl-sS7a5V=>G9e>%qlEC0SXZI%{8WYG3wg?tKhL8$?TnkCkNfC^l65WU3prAHTilvNEk$L!G7r;! zY{7(=l>Mk7Z`|)U5^&l4c}WMCu8u2c_wX-TpR3)te^PZ`aqVDk&ET^GD@2*$*h%(d z6CVuo!)|7d7@YOj;`a!Z7bMutbI5fHS6x6F0G4xy9|U&NVPd#VRpQYf1@6u0#oi~M(g993p^)g<(7_$SUZ4UR#*Lq!@Esj%s?pbL- z(wou-a&lpgX^~;}?z9AMJ~B{2J}bIK>KC4b@jXp8!z%P`#X!HZkKjN*qS9rI?lSpN z@YgTi&uuc2>?*MULP-Z${AXtJ;|SKB6Vref>u^HV)i8q!V`2w~*7$Mbh$mB?GU(H( z*IdU&WDTFCv@PK*nuJ)}i$R9aN!0k)9nHyFO_95~E5rNnX*N@wM5!j}CVhM)-f9JC zF^w9KFJLaOYhg&b6{`3~KYtguM<9TtnSS56=>CPu>TGKK1NXARGiigix!`r<`5g7s zE+h*}#)Tvud=*V9NXcFSk1^f!+sqcDLf+#ZJh%4*{T_W%w36x3D^p_d z%{rn_l_5{_SU7}=I?2RQ@gMkjswUjy>)-*_`cP}sYW}l~1x?w0x@~ma(G?^8jfo8L z8lpwU*|^GiLd=Rm3^D~+A2~^A-}6(3kuHGMk&0~5=3%NxdbZ>&A=Fb^Gh6c#-oE{T zxUi}Uy(V^ZbYj<-*hnQfvWNdCd}I2j1~YjW$5R2vD>TXz$!iN>V3!Tlsle)6Rasvn znbruReB`0wb65VAh=eL{FCUm5R&OL;-X>ull%G6-hZ$Ux{!MQ$PX^}rKEWU75;74F zOxEo`D22RS!K_=fgM5aQ?JfZ(0UJlDt-%*rajmAt!04`}8yL0hkGDlIBw31WXTeS0 zxKYWSJ|VArRT7p%we{TVWC%51@^+|^5}CpKl(*uamRo^k=d^_Wla#RlQpIeBFWJn- zkQfZ#eQG6Co$;m)(pG8uE8UltEfgzD;e&EQ)$h+RcK8#+9?Yl>E7m|)hd2kKO&O!f zE2)b5%eT(aI$%ONugV_>GE+kydJK!b+F=@}g=`JBiSZmGzUAheaK^ng;p1YI#w4VK z0mgjUdGEj+MQ3#7A7`SfOM<_mTw?evy&f%G9uf1Zx?zeIY*(=7= zkcvN(^}3ynhXby!X%sh^-<8kfYKs6W{Wpz=JH$wv`Sls zycW?z)Jau<-kX>vZoy)kgYaPRu60kRvpZLcQK6=+C+r}xOZqLHc&U8pNXsJo;$;)2 zORnAxyy?kPb#Fz?nqgqK$SM7TfiTF^C<95fBL#^CYS=u_)21S!T5e~f2LDo2;~yli z*oSy(OtIy8{^Z2Vrssp??}v@CujkiQ#|Y>o5_i|C$xa8kiJxTo;j3;TjI|c)Z1E-yk;J$r@FM$D8Pz$&FE&Ik; z#Jo}(k9daQ(;GVRxlYSkz`&vz5Fh4gWl=nkA6>KBEJkaVLG+BxQa)LViMMz5;b_(y zbdMloNhRz5&SN;ch7dL=8IxcQ!iMDBtSoOF}ofBIa+f-2Ev+fVv34g&>3vcLFEqM^t#13Q?!We@??j>#ckkgU_-=t zq((>s>o<_k=dis7c6pa0!Y&&HGn6lv4NR`PCF(6tj(BhRnIR_L1XQ#ZFVj52$k-SW zA9aRc3x-ee~U zuz=C#`y5bmVE@^h7@quuTie3tMMBhK2F#0k<@SevBxk^Yx3Pw~o7BjD0L7@uRjG?1 z1%q(z^t+*p19(WR=!spM2rADqT~2UgpAm?luZ{!3hl!ytr5kc>TVZ3FrQ>c{RUlMS zZu>k4ZYw`eIzB#PMmid%!=MM!x?%#aLzpxKNLQbIu(Kphz-xT~wDB3ftR>taj9%)p z@fArC;-!j4@Iq5vi)a&8ot;flKDG$y0tJ$(;M4|#t0l@)s2}xhq$tRcy9}mV*!?*G zJy{!(!*wLEZ57uyy)^Y2@*3cU3DVUDKBzp3mKk6559ym>cFz+!C0YPk+Y!=OGxB6j z3COaX(_zy$0`xAQ<^F|U9k-&dn%4bdn8!)B z9EYB=pU2*o1meP5^0GZr{6K(Q_hta5mk|)9j0ap0IQ2wjuu^AY?Q4G&xkm7$-aw&;cfi$X8 z3^xY8H^}B6nz+?IBI2kUKdo%kbl)a=)X}C4Lq@)|tu60tY3?)x`oA7*-C)a~ zZ)w#M^d0qF+e(RpD{zB9a$#-s9|V*{S%-1#G}>l_#ORLNZ=zv0nsbm?f*b~kTUc8_PTGKR>*HVj(mE%_|%h&l*U(TtO z;&B{a9PoqG>&uhq`p#C)xYPW88updP4KN&wsUCWpw8X?sh*TwYCttK(T&{dai5D>X zAg7-|duI%fYN)c6?gL{W@|kweQ^Bb8Uo)x0Pp0Fhm#MbipgPtne=V8J35hiuGdwQ9 znA7Uh2g@9+rWSR%*@uT|#%0U0Nu6RE@ARhCXb1&y@r{mUNDf(UwY zycmU0fctIjxw2kr;KcSI?J~HLFtn35_A=P~k$UHiA3J9spBl2T^t)r1(+E_6oMvFx zeZ4_rJU8eRs!d=SFc}iE7bIRK-KlPIDLjY%b zbhJcf5cEQ1q}58j1mQ2~v*~7`B3gLoR2jdVF}u3h1(`eVAk~AlhLGgeDTf=#SW4S)DzK{cpegZJs`66wLgW; z?u+reB`pRp=~MQ0+p7M)^Z(HGR$+0h>)Lg2ckAHp4gmte-8HxdcL?t8?gWBsLU4!R zF2UX1-JP$xH%4u$z z+0apQLM%f=RE8p$k;OBR46dx;!gGke?oRBT1UX+?iK5|py}90pH0p-;Jm-AfN_KU< zH_)=BXV8or8%<_Pl!$0#8Sf!6;nPrs=ptv-6&FeHvj<3em@$wOlX5!E%ef8wBQJ<} zW;UdTlZDuC#{Z;Ji$G4yyQQNBx$d%8KJskFiufL0vc)#ZAS}1KgBH74r6iS!6U`(C z%>Q86?-ER@9_sXce9*;?*f;k!~t65*3pyTz>=jM-S)ay*ys9IOVws->CloAk`nG zoMkb(Bh$K8J~y#19YNrmA#e)DM(j78$!v|;_>U{Z;F{?1u&Y;D6rl#1b2)31S5piG zJ0Oxm(3{^BH5;Nz-+ss<%*}hoCiSmvcTJ3Jdvi!W;Yp>C?(bhy=e|=(P(0#y zx#l{fIme(3Fp&S2?SRY|y2TSn=<;M2Y~#5k(|6GEWPi21PD&Ag7ANt*O@fGgF!)uf zJ;2zZ9?(UG-Jv3~gw~Y&A`CwKVYF<|yrRzqSr_Z;NqVm!<-CGvcq&pXoO@bl$jCU& z^gx@UpY^EC#?Ob}a!-M##4#@qqPoDeJ6seG`M56I1F@~&B%ziJ0O=LpF-K>NEPBi~ z_$QTHSMFb4!nK{C9@nvlmUN?jN)h{Ckt9Po9;K}B#(((r`2@o#6FigIWM04)noLI|7w=Vw!p@-ajHmprwLTB3fPFZrfW@!nNG@L7H5g~Q7X@2S$0ZBIa1i4Hk|6CO@o2Vp!wJh_?? z|B=zjEO!dWART;|_dH^bRcKT*dG&7gzi3*R%_N<^}{zznoi|X+L78)g`X+ z^YC}qzt$5SEmp7kIKig?YlxJ_(*q>#@hn#md&6un@dL*2a~Z>LL3}^IaDnpcRG|NG zZLJj4Ly07s&n80eN)j)h^MnzuMoE@?%nSs!bKH%%zZfQD4>AZRs2>Rg23t-@vVTxM z=toUc$*JxKit**`PrX6~$X+Ns6Uv}Ic+kAV#tGW<)fbURgrK$jlc3&-*T5bo)3H>- zO=D;VhJXtiWbfCgnQ-!{#YQZvuA?rO$Q!pn25;`_F|N{zgf4&*Au&DFG?G_cJ5)kS z{*>Vtcn8@%q6vHKU5JxdgjcUfCPDb+s=VV$H8;U14FrcY8mL>&q*ZggKwgFCMF z<+k|Jp|%4gL%shhHT~sT*i6R#MxDRFb@jUGDU#A7ES-0~cc9UWE|Sm4KQaKhA!OuR zwXUuEWzI(*=6FeVmosVxY~-n=J{@Rq`+>(F;U6&0k)eE@z(KG%@njr#Jc*zl2>B!Q z%C`S?Ka(#7oLA{NUgGfgV5@TL^2BN5qd~}&cg(r$3#~J{j;DG=fMcg=ZLtN4*b(GG z!b$#`sQ|*yoAEh6dU00>wU>94VNibR^Chhz4fk;p%)v-hCcn7lQW(>F`kZW@48}jB z)U7F%Gr|2MLj{i_!g!ORYE^0kZXzA z@Jf_;b`U)Q_H>PxKNOqi*(X*4Eo2i8&9YUi#CUP+e2In1XP*jdS?5Gq-xK&N&`B0m zM`RJc)gK5YH7ZJt$2djHNLNy4f0^b>4|oA}?3(Zr$U9jFuz zviz1x;j0ia!CH5^p8!t3!B7&L2UG-}zBMy)C0Cr@DJGvR;L24<+M^w$sLyGVx1`56 zjX-5oZ0yBm%@7Ak_W-Gn^ONsOT{U0`RpUah+LM{&%s|Tb7{}|=w05~Tr`@ud z%{gc(9eZ)(m`V`V|1~9$QHTCnOp7BM#%W+!^#2Mtf%@J-Md2o$22Wg}Ki`&!nh{NJ zKfi0eq<-(C0SlN)6w;ljSDUbhs^ig~157X(qyjW8Yd=IFFY%;1jEpAC{YzJ^Q){XsQWfgh!lFj@>!&#v^@2XCBJss(5CXCBTG2R1j=huSAiz zTb9-L9?5YuW^Wr??gF+U)dX z@MEwo0q%3-`~LayPy>|F-r&-$F1r2@wf$@l*{J3xvV+z{@~r*VhGr@gy(z3s3zrY6 zlj+VW@ci7d^;sf+`iMRrx#uCW4i?fe1Z;*5!nBbT$e*HTkcyRRsr7G}v59y=P8)o^ zZ<7EO{sF;!rxyIEwOnxQm3RsUB&5-f2a-dvSKYzEbg9JKdBN$8JbIoDUjpBjo8qwA z{9Cw7&XZBDYtiYkxQ`galDHwF)hE3~z$j0*j$Z3&mx}UB>jmQ{Tu$6Dm*vRwJWNON^+Luk=nPej=ML+A6|gA)PnEY^BN0j}puv*%tGkOE_TM2K#C za(Rm!T{U~0FSqe^HIhX!f2d#knhy6ALpJt^nq7RXzu-Y+_?_%;Y+{TK4YWkpNLnal z+nf}AlAQZtz1@_3p2#kJkrTSOVu%tCH+s*UmR`3F3-2=~Ca+Q`DSTp+(N!91a41XS zKA`YiGR_T}U>K@0a0GFKv#v`>AVS}$Tc<{=(5lChDbX zAc_yzZk-XozZP%xonyXTYt?j@vc{LBdW@pn*12egR69bDXg)#4J5zN~HhzC~EGTjR ztZ76UEnG|r%jyzD&uv)40CAE!Ze#_N!NboENc4FUYn?4;a+~#Uk%XqEh7V6`Dg0&* zPi#Qc8WIH`;LVl>Px&)FHlAPNxx@O)gBA^qq$9Q&>NEAa>zO}WG=3)-ElJZbRe|&Z zcSoMl6NFK0OtetE1sKQgYpP-)>UY=fmCTK{lYV4<=hq6iFXHPMc6N8lk@yfF?_(ff z2KqYgW5A`MCuZ5OrB5IUM-u-yd*UOlx|*d-k6^kG$J=$hd21)?_vq->x%TB>%n+yd zl=VdJDQvMHyaz>RM7?Yhn7k$Pt>I&;sCY4xD+=qP1BrZG*2>^ijwC)1 zaTT~VB`pJ0Gc^MBMS;B#TYZ$G9k{7cnG#^jUMeV1HYF1LUkv+K-AJ83XT=e5(<|jr zv`03dwjYzm1d&I?9L}7JYtdbcGob2Z=;(J&<^XQn8u0(PZN*`P3HNAxaCk5G*u2WS zjv|no@4EwhHZ9Z`4-|hVc>eN)zHoliJe57h52#p-J{F@RT|lt@@a|I1TA|<;_2jnA zh#xSh7>(sh2+YCGs=&g*e;Iv8?ad7}?$1;lV&DQti|U`>&8UvN90Zp6mbG-G0`E+( zQ!A4w@!x&RNw_nBS6M=Dn)F=jOQX>lcAmWwMz&wZMD`8VnElEVpx3HPg)+e@5Fz0u z0iS$1#1;v8g{=>Ide;>KO-g;H2^q`OF!dFC_dtHFIVNW9il1NXa&^$ovr7(N=N|fM zw8ejPcY8fT^fkiJ@+BAuz(xEG?A}gwHoPKu`aI#)WbvY$o%-Ks@~%g^3FxEpZVGCF z`@QL4-iZs~f(H~BAD(DarnE0_Z9kOp1J})bGOp&= z1O+S=#^8V_LT3BJTUCJhMNJDL)S}tf!8EInhp$yhlxly~p%guy;rgrj!XMx-e)`3N zL}HkWAl6gaX<%hfpU|KleM5iP@4?<^Ub^ymphUVcqKF876B_q_*8GLxmhc(qpbn%` z%gvp~$k1QBMMSW&9n-k1&sJ9kkNaqC3BB0(Uosrnb>6@g=q;nRBQrI9Y*`LOxVg<} zWSr~_@-l>bY0AR_+L9pCmuvv_=+ELRQ0K1hzS7*^UIEy?weYjiTvtPju@H3iswb=xEZB>-MP|`cu0bNc=rhNWwvzzWBu{3Kcdj&Zp2kPy~ zDEUuPeXCdJ?)j8}Cl*CE`Uvtbg&+TIv|{hwyhdiI{D%|W&_F#C!Rpm8AFA8OX0bmajlUH=?RI!AIph?8v#$K zmnZ(%Zww#T>xzIjc7kdB`@=sw7FOa2HhedtbsM@&^jBf>l3(`=`DQuW$S0^vjsRKh zYNx5j4{M;40l(nWqy)cuylpe0WXy;!crCTM4mbpqvi0_;%9s1B;6+LZZ;es$#|N&Muw}ydn-7wa%t7$ih0}dT0LZa z%$18SY5DAtkJyAEus3X8M})_P9Y?a>0rK^~7i}ImnG+^@3cli7_Q^Ql`=+q^qcpG@ z{s19DA%GaZADs~q<*-abOp0`@#t;x9;zNs#-8n>FlkmUAi@l)y=rHs5>3)CZdqe^M zP0>oy{zVeN0UA8=g<$Jm0Cu7+oiOYzn_9ciG8c5S1nj@&gPU;ldUhQy73%dNa9?)I z?|$l2$tktZ2>2~le-IzL>6vXX2cr3f@VIPVEd zNRUD{YSNu>FRocFkD{?x5Gym<-b1y@h}_^s}k9IOjTme2|h(0dGF6itKdHPNF$=4L8gMl2Fo zq<6TwUTBxP(?ZS7E7D-MF=XDnI8souHhiyKJ6l+tGljdVuh& zVM@5I9@R~rFB%JM6Lo;qZC>~^s-xoax<8$b2+Ek;MYvkPuxHa!K@dYrY8z8JI|S`7 zntxx6J<4A~LO>gkX~R=3O1To)saHhi0<`mrqvToixflD0I#qKj?3Rq7DWI@0>4}34 zej3b55Wj0{!gL^%?Ap1p2T^neYI)%dM3hy4u{04*U}6*zbNf=R>Q!|C{h`u?9?(73 zf{YZ_+?PP>00OsRvde!}tnuUyt4B1DmAAC|s((ao&Af%anNxz4`<`IjPKGQ_$`e@uR&#~L0DbzY_ zg#r8@f+;+FLx1hYvM$lRzkQ#7ZbrjI;Gfcq(9&Appx47q7Q2rL9YFg?c&J?@gWZDG=_wusV)afy+`tV+78_P)P* z{uVdi1T#16N%^Ln!7E(eHMP;+a&b7ix)W?dZQ3?jNK1+f_MwT;VPYnGBNC15l+g6j zd^m(L69oBusDZhZ?Rz3EO|$CQU3A=CJp7*H_i!yZB4^eksigs&shD1sw&#&Udd>b@ z+Kld|b2F>ldmssv;Khn*I>^iv<(Zy=2)P<BOme* z^r7GFD>gczW_YmpXNh>Ro_M;sr%ftcDiAYrCB~7XE?UrI-XKg`fN`lt% zmC{Ik-zMtorjU`zFPvUWB=LS{z;H8I#4@1%A=86vj_l*kCO6MZ#lD3gx02ojJYQhc z5KuV5cqb`3h{4`_-XEMEqL`YD33;>{I{cZyZ~(x-^0x>saOqbY-#e^zeyPSjAo;0q*aL-8iNS^*7g3THX}Y&J$m5AbN! z48z2&uXu^tr^JJ)cxBV~$GxPSpKp4Xj#vrD;#-OR`O&Yx&!pkbhXjxREwR^v>*ox= zpu0bf|8)o0!-4QSGy((33(kvgiXp5<=)|J~eXUCoPXN@#@#kCMQlDY$^CeG^aTL|+ z`|$n>{iTOIVn`UB5P>=?7AR#|Dy=d1J5XyWkg)uH$;AGAon@xoMxggp5B&g~RiF3b zDKF^G+bu)9&XPv3%L?c#PPYd`n&$zJXwxK3z0G2({pf-_0xcg(k> z<0`O7pG1mu{elD_=zizb=v&+6;^(c=elli*lt-Ewk%~o9v5!{RiR|-D|J&&LVL=ds z@MC%`P-mcbIwyg#S{>VMW`=CgZ}frvP#Nuj^PPdje1&MXSCcE*PC?Nd&fibRM!Yfp znOYMcM(rjSl_%^oC@`NUdF@@Z@nax$ceO)5CV8YW4!TQPpjMS+(B5IXV!=27=?}kV z8|x!tzcLWb+Y49tr0b+h{Rg!-wZ(8-rz1xEDVrY4ra_|5$HWWq)08upSs$96&L=Fr z1rvubMnbfM^1~NJgg>P5kHY5QQ5)Eup4XK0nP&Wz6v9sk_X?BU&Vb2wU%~JGQ4gHt z6`50BE6D%8gIcc{^=A$J@X&Ht0GMLG_pvPe6wibTwVE&>TNU*nqpd@G`L9hiV3?)E z4rg6(H3(5IWMt77L(sOq%XAGzCQHV7j%h;3=au&9Trn;-__HbHP!5h`Fa2q5xlnAC zI~@l#ul$rtg>cn%N2U;w4&54Zyc_bo?gW{PobeXko5MT8)k1 zLtK=S{(YQ=LSeZ`$2jQMV}J;e2-mLFheeYp6Qq0AYFV?xtxzhWBE=x5c*|8_sLX%f z;yT2dzcdkW1K0Jn={_@29WHHKlA3a-_=5=86HiZ-9Vh}m0>uMMI!0wYC z(f{tzDCFKTQ@^SBvOZ&k?s(wQ%@tMtmNDkL^AXjoki;g4P-!jKL$2_e1;M*-HiE~L=Rk=WxOcCm z*lNy^=t8GI<^$=qD68<|O~+1q+d+rM5k%e-_&D704NjSPpyN20#64F7W&@)z^o9i- ztSEqL*>P|oY!Q_jr!<(g{gbY=EY;%jIP5)n)iO}i@wGxH&O%~fxnup`Spaedp-=nI z5(6$BlN%B%?ZSD4?)WyEG$IP6%9{LsxAefugIV^K^aKuRko3Ru=47!>mXzj7ye`42 zQAcu`?J})C%;Q?>=~{5Ic-|PpAIF0~x{qI!5;L>e%&UM6Z0W3#iYsFoX-@`&O`_d% z_Pj|f*0@zaw?j1pO^2MZHkRe#MeBBIlugU|EtP!O*Kco~ufuhtsGDzH17j|z`nC%f z+19IZIJ-5kq^N`!5Ko^TRApK`ASojWgR_<#$-J)u1eWZUYa4bhuxflPyYKV#Hk;E% z?cH6Fovgjy)+={wcQ}M-ao$P6g;gm&&+H-_S)L* zAAQs|Z(H&K+hW*+b%Y1gA0u9XxpjpF2ZjJ|&rw%cknSsn(1FC}`>HBl6$n5bVWYA! z@*E8%lkW}ho5vTK;CLHrn|hTMr&5@psw6aHxlhz5!l65FN~`BZ9y4i>rFpe~58 z!eP-7nq`~P@q(_Qf{n6Q^v%|sijb*vm%@zSFKvegd zB9l#TJSTYib|t+Z-*Ttl@UdshTGB8zQmHH`dfX6%`ud@HM##xD_FF|43v3+ipjMA# z;+DKASP3)dg9tZS+35yX#ZOFh>vm-iUS30|xlPAGbGE8{w&lyyzhs4++7aiN(=%7A!nGY_q)N8HaSASeV^D+^ia7~Qn5AGu| zEkWjJ^7lqv{b^suZ&i8Vo1pDv`TeOj$pK+>q|Vlh-r1y;!iDEt_(kaq@V}^7J5A%M zn=Rf^@~Cxr#CV$Rwl?h9I6??%Bqmv)*e%vtOj~Ufv;}z%FHP*D_QsDF;(0N zq>4j_4yJbA0rtsk~aQy-2AW;m(wm&qP;*JJJc`gr3w2#Lnv8VYZUR4 z#B(=rtiF3>yJSEyhS3qU2M=19qO(H|Czm+unKjQNI}SKp-qnMl4X(V`}4N+FML z(fxU`e;$OTU&%DusHhg7i~FJ6{*EE8zCbS62Q?V-WZb>Qmw`HNInZc!**4zyW>+vA z8s;JYs@31mV68L1fx*FR@I%k5G}!$0*r*SbUYRR|p0z6;Reej$WRr!bniu5mq5Rs$ z{^=b6)9HNu-RT|nE@J6sDEM4V=L4jxDA3a%C@>0RU8+Ci4>TN9uYAlf29&=!**b)< zuP-1kTBb2OwJ4uNFuY^pe()!XiTkfrIUTVspBJsH4

t#M5*wm1?)tf2$1}7;dqd z8`r;fdjC#jHr$W=#W+7taAJGZOga}~C@XT$WdeF_C~Nrk0rVoX0^bRiac4NEzVBLH z^zNGxpRo~9yc68=B~?PY@t$N>lo;7(x!|L+W1S$jY0^5$^>Nh^oTpOjlw2adF)UYu z)H}0B4zDw%5vorhHW?q@xw=wa7dM$}>cPdZU}v#mdrr@%xQh7B;cwpXC+S*( z<}dL~UU3moI4)iiWLHkUo=TCk@8n^8SO;#9QG7VwyT-M^phw3nXenI(?7jAAq@QiI zP#OOSY_$b%OO>aP-5fCb_QhDUT8V@YEpAq>#4 zm4-iUOzsgmW~xc=qZ8rQmKNjRa!t-eS#7ensu3_{Dy@$Q3Q7E71Ae^b^LIwoP6&p9 ze8Py?3n5QmQg|*vo0&>qJ=$LG!3qAIC)yVRJjJbj1`Nd;(7D1v^1a@W*X>)Lo!Ul| ztpy)4A9Vo1VOq4=<&7E3{thOwqt4<4!pJar>rQ*k*b>;r?ud9`}gZs30y{#WL?)>i46aHfqrY@%rv5A6@ zyC`XIpDzC5$ods~WRJ50_VLsT+g2k8NvmG?HWT@?77lT1)@!KVo$ju91ggh}tKiv= zwAwY<48e)ERH#0B2r+lUP7;v7^QX!dUK2K@6-2#NUpGUn;3S?CDdsUG_*giAaWFrdJZAC1bJNBYBFyk_S0wRjF#hfY2rN+4nqiiHhwMf%`$BTYWLY_$;FbX9Aj$}s$a0Z-_yt_T`-;dj-4UX14Mpc&j zP4?7VC_N;ugS@Z}em+@+mT0?E(Cpy!x;&{N#LzX!XT5+6ln%Tlk?DlRYu;K$p4?$j6iF6NwaL; z02(-!ghp`1vrozFPU7KStv&^|&Ccdp_fsqt!*(~GmcKLXTkDJA3vFK%yLuM8zy{|2 zxPHEZAbc*!|Ey<$o@o+5i#=ht(Fh1^P{CHn|L$)6pL&MBXAv3lF1>EqkG5!^AN+Sd z&s#T<(Ea(SqRK5?<=YELL_#j1EvsR@2-Qu{AL>! zw&4DA28pAA6C1wSsr=vO#eWX)ffD@t8_V#|b#=uB?l;?y${Z@+c-2761%VGngm$-; zE(X8k9cj3$#mvEtDeU72f$VjG)QZvq#V?iNk7t8&8Am!gf(Dv{1@6vB-@_0@D^%CR zW(+X7bh5Ei)IEaN0OneO*Jx-u-G1K-;IX=`0vhTRKe%J+^y~x=iS=Kc-E;T0U+!0S zm0L5O7t^Ailp{2M8*{NZi@}K9ZIk6sgR>H3-C{blF`RM|o_V;Iq`e>L!yd$7mG6Vh zstT{W-TrG}eqMM+PISHrL_X(UCe@!SA!(k?4(Bnb2Wb#B+)31A-_4VY@W=Y)V$5i_ zJTG~;&7A6cjk)hV^-i#!P?x0uPP?I+qO-&WkyVyBp>K~!G}PyxfKRaq0b)JE##{Ih zhhDTZ|MsHSkABtJ3wFGjX|vVH#ynCF&$CPSi?I)Asn7h57 zw9ESnK9;6x>plC9OyB_R9>1)Xn^Wp>xQ}+A^JGYYLll<4rP}x1i1$kGS_0v@cnWD$ zCo*X?vNp-!Qga68SVS=FD!asxH`%_gh>9SAcPYd9`GyG+G~r4Qt9r{ zzD;r0o1QEv^kriB-&uf9W*;(`_eWwh;CUN)2l$bgzZAPgfke)<>8u;&?g)aB`Bj;v^p?4 z$Gy_M5$hC2r)BivA+xzs;(V^k7FpvM^6CwfIWIGE@}M(QKosaNQ2(lKj$gI90+k^b z(t}Yh715N9&iToOM>SJ}^ZC$ArAC<$x8ws>(gv~4&F~H#pUuTB;w40ps$MTE1Ps=S zQnarTBmkX*1vK5H*TvKAz6UP3w|XgwA<5tOZb%mLUO|d3h~iUQaa?Xkh&NtWNM$Wl z=$y~2Xnth22k}i@Xm8)i`e($D74=qbKCpjdIlw0~=~$kimNEs@4WfYO4Q+m8-26Fx zz?V*|tv^ICpuy}#)7wzJ8%;>W=GDTmcH(^cj0m$Dq1({~-61;DVJNW7u`byDt&Uij z8)giZ7Axv=gVSi5QhpnVf{bTH=ijmrm|$<(=U@A*G;xJl65B#XSxlGhz~h8(H{U|yaSCwXvBB< zZyS)SNVa%D9gr|1-|=TTz>c^q>4k%u>KVVW1xBwEhfaCZ2^q)jD?15$8g*twbh3QeUYoh_Pcb0mQbu+^sZU4V_CN_5#jCEUKk9 z_H(;qaSDJUk2A(xE79B9yib#vL0lOv#4zqpw^Y-!LRZ=?6AzkP^pIU}>?9>v=*3pq zHYV=q^tggB?;j@&26-@l$RkzzqFer}F8lWuGip5I_LPxK79uD@TA^oU2bEzlJb))z zC?iqCGrdygZd=Gq)X41V7pipT_h|L_AmUS)<@&Joq{H}nY%vc$K5d$*kL8Ihs=;p9 zO~_yQKJSO}Bska-h;x64$6LLhakkY~WsCqiL(o7f@`z|)2NFQns8K2uX3estp- zlt>&Mc|b=nK^P2`7N~FkwK|R{Od@)uPh*(Xmy0({^!~Q2zB-AVT5l};5kD1BRrfO5 zfCfcNMb* zU*^FaT)b3yt{>ereWOiV94KQ zd;mrCb0X3YOJ1tNM(HUxw!W)8H5yxLk~i3I()9xe4TQ9F!+R}+YY8sqCiGV(!$L7H zqV4*ZRq}-$x!po3wMB7GPY~4_ z2T+u_3i>ic4Ig(RNIbFpU5wa?=vQnWPq!dMMf&42P`kHuJ22C?N0&RNO?|rrP2Ep( z@ld{>m&PFxCkR+H?__;rg13Zc+e>xKB~uDpd_*Xr#E6(O9_~nG?m_}V5en$IKnOK!qEBgn&gWtu7_{4W1_8KismM3JvvT?FG zFW6kkUf@Qq#c&|hfIlu`?KWW)U_4K`j6h`{&)1n)%3!Yeg6^!Gf&FbX`5lJJl-P!r z8y+L`{GY+>wWgqU*on$>_5m8)wKDPZ5itQis7Xro3zrU>n{}gpdr(hvSRDrMoA4U8 zXm5)~VUC~eGa08B&0u-fm+Hnb?0B`_O;Qf=1Rn%Km#T4U#1gt3xQV`s&h#kv1e9~* z{DI?rxhhrJScBKP0tt7eMH0)wLuW${=8&t3A+G`1264%+Eu137+*i6yCburD!8`+fMoHMkZGYq&$jFHS1*1tjda(92;EXX8J3VnRk=6b5Ej5k3?Wj&4> zlHMg^GATU|*#q^t=C@*feEp_v8zFxWcu-fT#$+KSL0#4?S)dVE3!Y1l zX0N4d#j$2R7~ncYHjPn3+B-PcbEDVSv=z%mpG#eG2|6uGVjBH^cdQnz!Ml9ly-D-K z3%l0vKlb7;zZJ965&(JeRyxsu&^e7qbpAmgejX*2@Hdd$GdywqUclF{T)}e*7>y=P zS@Ai7qSCM%3|`Ki*F@uYCP+{NqVQZ4_X{cac|89>{Nw7r_jcO^Aj-2fglHkKp$-I9 zjD$EL6GuB!xHNhSt0E3u`QyT7IOSMW1U?n^N)$`adSd^&wK4C1;bU!xgS+FVG~Llhpj>Rf zB5$~#SkrHo6R1~in?|>{3$8s_mi6ejl5e%6aoL);iLEtMLitSk_@lJFfambvlTh+u zM&sGw`^UHt^{kIZfzUa@x=gzTIi5nEabZ@tqJ5d(o?`+n%i2af&@%s#sMx`L0> zV?P#RHSMZ3ee+~ZN%?AZcSWjVdyuWu0_ctzeZL~oP5W;wMRCm$Mjvt38+Hj{#iIjG zVvc6M<#B{cEK6SI_k zw%*AlLb*ds#gh$bq5h&$Jt>lW`i*90P@;aA$!BnMU2OQr;SAd+ORa0$V~+*Dssr8Q zVQglXdvvU-rv%R{1e;(-QgZY{0|ee^2kCUS=XJw6Nz?W+f4>tg9~PDRLb_4(qvEO7 zSOS-%uTmamaZu$c!#^L4MZNU{(L5WC-WOJtw$;ETbCQP2b5vx_q=FXgL*1pY;BmHW zHy4DjSyEVLjNZmP@YS6L3vFmnGw&`^-}`G%lD;q5j1^-&iDes8(2PvGK`rLA?)cit zl6faRuoCD$Y}e0(-|1(fI`X(u(Ttl17=icW(iS8D5zh%DY;ulNlq#$m*CYb*@jR3?aiu?uzmeYvBB%4KOex zotYotPM;^Ojv~Vy&RfeSQ=Dx+xujTEVAS^Q`9ZGs^QKG%`0$ddwpNIj*Ag~HP-!^7q9EqJEf*#@xSiSWH99A?00cg8yd3WI|K{sMKV+QrjvqS}PT+Y{zZA z$4hPBU)vXy*q#U3{%Gw=N1pF6Xhx^J$NTaIsk$6p#9Q(GnP z%-TWky}Xy(4V@3#mKF62ofOi@wuL>h9onx?g`Y%UtRA&Rs`+fvy?jg27ATIQChd&0 ztdq?UHUpF3_rmcq;38HZ`}4N=O6;lXP9TJQ9$Dd2s#p-Of3WQeRSO15+>7FWnzPyz zZ<2!~Qw8oBwoO#20%444e?I!c_B#KQWgBbE@0zO60sc>S(G1aE&IcrzNsSEi=j|b_ zk=J;whjL^VBSpCi;!i9@t#;6)>c@O*{Z%eUx)t!Doi*ea$4W;zFWG~93A2_%C>>(tWCrv@^uks`h*A7M6(5)m^}`F&UET@g!I|ToTEzPg-I^7gjMdJM|;{{3IUJAeo+5CyU9M74o>?DwqM^T{UF=G$F%smy_ zq=Y#;k5<3jnYD0PqU2Z`Gzqd>f`h)eJuqMlu9jeXlV5m7v+d+pYYaqx)u(n0 z%1Vh6-mz>}XcdJDX+;+d1$A{s?&?+Vb$Qm!ND$Fa^zx}*M78C#Yi>;JPwsvTHCOW}p4!bZ|tR5}`qm*w^K108T{G@OY zeLbr8ZZ&MLRVpg~9ZjI;-q6!T266td!wklTG;4I?Y#+nLE?a*+XKr!+N|{j~%Fn{( zQ*xeWZC$2Pe#ms(5LjuG`7I+b%h_|Z`CT4kW~EgoldOXxbOuarIUTY|WcT>81Lw59 z9rWkisGU?5Bkp^qpbBkvs4s`D6~@96tY23r1nZ|vUUy8V%EclJrSrgwXj0|W_^g2Z z{!dr_MsKvQY$R+fN3EI84Z$|LzA8!=^16v6wb;bYssJmPZ(@xwL}-pV5M?KOKxl6{aZzI)s?i(3vQ8c9XG zU#@Q~=pX`ew20tBW6u4)=8U$~z+>2$E$ZHQ@Ri+Ia;;AASa;)Gg-*!NTMh%^X!!Fy zphjLi;=9IVPMx0nF97Xz{mls-_XWeDqUuhKTJF9-BJ<3;G=y<-RV`4_I+YhZzL3)q z|CuL@Z_MtfL3tk#g*!^+YBesA1VVt21zmGYItl8+cm_=tg{Zp6@^g-79(!JtFvkNG zyCX$l-0KPuUdwypf&u2&3Y;Q|QFLPRP_gEgIW1DITKNhD+nfJmlX^`%*e%A0#1;s} z{@Jko0wBHmQn10G!S81#x7W-S*|q@F`yM`@7oW69#t;0BPHx#ew#}m2_6_AZ^_9ub z-1EqzzGmk8C`45U)oXwYby2zNr81vPoiD(J;2ot#>V!BnRqFxxzT@oy?3J4`7=T{$ za(UmNSDkyx#U{G3B$)RF;>s6PFeu}3b#=mA3NX~c-|T$%OD1)lIz?);|KBt_9CpPjSA_}t~s`aKlk|orlqzUki zf8fmZI;S%%6#UpL)UB6JP)5veou~+##ljNc1{-vTyJD&Yh~woNvSG&S4Db;-y(Q(9XjYVUyC>ws^6 zNbsUI+nz=7+s)(IM$RQy@Ivvo#ZTzS0?q)AGHxf&4UlIyc?dmv{# z8F6qsG5iAbne9TjVAo$USG2Ddq`Tl)T>$5|Px#|j1LX|dQ+qQ)f0D0;J)rAszvG&9 z23CnLZR{+@e(}>DT*X@4SEdS+0g0^$Q8A@|w56lHP$e~uJJhY16~P<{lTV(&STy-W z?+F|o2OJ!Vu|9HMZ8Uh@ZU`5Y6+K0MrWyJj{kBs?p0q$HtH+$h%ROIY_I$x;c*U3L zwCI+r)b?G#Mr8Jtnh0?_tDe-w1SFGnB63m<7>H5>_h2UDv}O>4qdznY-BV$f%ZQ2K z8N>l0Qt`ro^_(}bTBmoiNFB9;a3Mwed_W^p8cQ^JLPl^^-QHwGx>(7u1JR zTb~5PL?$!)v&h}t8+q}l?6n*(|LX_b&OvvE@5Z4;1I9IKF7%47fF?T)HuC8`0x`n3 zrWp6&nf+d!DQykG{^O^3fsFIoa*MGm+$f0Wnel&w> z@31S0T46so-C^t9C!g>HK9Cd9dqyG(7N@gT*^I&2Hd&2^H|m{_!Gzr>eH+j(k)KQE zt9?j%zr$Gz^?2IonMh^MS+0U#xqrWagMFy4p_= zocx855j3i(c+2|r9t>;Sx&FR8Z;Fo&2v}*&l6q8u>!nz{Y1GKOsfe9tgv@TM`KCH$ z)eZxLem(F18Z&LU++R3~`^UXQk2ql8+Nlahfv)KZBtJkiMY4j`M$MD9}woyJ;~vR>v!QJ{V_bbKd_ zj)wA${81l;J^#~zDo!=(l{W&B>0eJuF2xd#S` zh$MgrWz*NQ6lp7;(MM&B#N~O%(|^*8$N9Wb1VZQjCGNJJ1nk8lzHM9&2h{x=z`=op zevH5WxkG>(G`wvg0w^YL=d}`5cw~!LB#H`c&8h-N)EwTx+n;RNlAVi{JHG+8@eQiT)j_rQ8D%stxiUw za-p)bn_E@0*H1u^B?+^tMYfz)7%i~iO)OXs^x~oJXws>Q;Lw`;2Gy3k zUU}7)yz*Wt<#I!m&G}bxwmston=uc9Q2vmg+Yrt( z6^ZBP{*$j2o~T0L=)(=;EtoJX1hR!_qQSn`2&UyIwb5%T_l(lQ<8&&B6o`3xl@(>s z!WUw>?ZTKj9%HR|22hf_=EEeI$S4+PuD#mPT@30<$YVhK1bA$=09fLBLA0JH=Yz< zVOM6;Zz(5#pbyDJz2ni4%%;!02`P4DV9xJH>hz7At|P(xk+co+YBdE_`6zc-q}e8#)axc~i}ZJqT*HI-hw7cjcF ztoFic>%kGs|4LLH)4K2({`ayFp{Os=HbxwLXyxxLWp^|`g7+<;qk480_yMVfyfJjg zZz5zO2WiDX{X#rjo&4GOi(%kA8mXlN5h|z^F+@DJbhJWf+7L2C_V74EqLMGSegOu4 z9Qnq-{C41ATR;{&a@gmZNU&gLc%cZk*3GMfqy5eP%TxS?+41^m3N|{J^pKpOD3<+# z$}f5!llPP1TX9eQUA0zDxIEj-uNJtPuR8H{e;u-wVQY7)_yy60P(x}k_i}|P?xHMz zapVKFE!PiKOJ#-W9SP!aK4yN{&M0{An1UT#7uN>I-t|nKTLlV4!Tx?_qv}on-5>?u zJYdhU7Fp5~;R~oqle)0q+n0>kHnURd{@YYI1X@Vzr>~twgI^k zd8Bqxb&{3Zb})1(LB;%y`mo1`OYX=IGSfG*o%B^jLCl#w+5_4)<5E&?hpu1!G$IKYlKeX*;lVkD;7em+}Pn0 zM&P8OuABObJ~n#;6XS*SBBLMXYCa_4_#UUHFbU^;O9M17_p+QdfYmW*;Cs;e+qT?) z8fQKqdOuL?qY^Kdf8?BjT{HReQv3r(y3TmpryCK*#aAZeuM?s7ZIBVy{ z$@TLL4p^VjY9I*>4H6xcsZ3w0`>Nw?9XEF(?uf(c>;y{x{vR!%4AnZ_BKcq^dJ1g$ z$fBffo$n27YAM`oBs9cOFZtHtwB{l_?d&Y`ayjm-^*+#0oPMi1SPmJqQKnr|4W4{? zz+0X*YS6Dsp>E7d2wY1K8?AA(4S#Zv#aXXsP}$k$33OjdJ!f~4k^tCnw9rF8fu+P1 zrL)r6cUd5fKkDA9;M&N^?u|VAY5tfPCxc|oz#udlX!|XAv=GxdWzIkkI10cL+aw?l zouaO57+=PsO^$C_vlMo6LmyJ72ZIuL|Bns|uALrg2?61l?%b9Sc*)4mT44K~9Cec) zz!`q}8Fj~mdMSw)RGJgKqnUoseJhFjXvq)PmvnX$aKb+jHPhnq6|ytfs9PU6a%)aq zStHN`@QR}QoQt%j!*Mm+Od3qVlji{+=i@fh{CP@Pv)$vx?#nXeGU&9URewDxqR07tRE}|Kp+lo_t0aByKtIj68$@_JMM(K|2fSD))K># zSN0nW{Bf(QNq-@{T&?M6_iOjjB{yx^-@#rYxz$MEi|j(Qay=AydJKiWJsjUkoI3{C z&Ea4vRD|E2#I$6c^_Sxy;lWi_nhL$%SqdY++}Bvh@9_Nb6#2R!+z?y;5}TGte)VSp zyxPXNd8uHVeJ)Q|L98RaA%eh|Y5m))uj{jTnQuhK5K259h*0oew(8LPMbmP}ORZu0 z8uwqdp}2%Gl`jeOtK&g^l#B?<&Z4riIc$GApKi>2p@#Zxo{|Lfw&pOFA5q$iWx1H{ zsv{X)MWB+bRF9SktPxEypZ~M3D%ydCmCaV~t0}FZtRl`~hxc+2!nXlCgG!BOMnR!A z44K8-UM4zP@(PX%|{i7`PiX z16-K6UMD%o6a=&#GX5_GOsH$#vbvNF$~1K`^;P51@d?qf8i%)e8}kn2r)=8p*!gAb&mEWf#^mP#4_ z0NdCTMy$ep;nBAQ_Fpw(JUMs8`N!qE4Ig1#VR(@c&lu=gzV9$W)C~Qf?t1rnMCg9J zhUfhN{0R3>2b?j-Bz)JZ6jLCH{R-yo*qI5qI*n0y3K+bj0E#zApcF7|7cW0ztX^?4 zu{{YC62uLJdL_U%ZRxtoZ3Gv%oj4Xfk(c;g`GcoI`&ju|Vmcs^M7)a2Ol7Q|w=H;o z;39rE7o_YS^`^9g?tVk}j!4`=Q+5N`je9hKv5IHpZE1yeP!jgV^9leB&F?#eOY_3!0>cEo zydf0z)Df#x1IXp(0*6hA+#SXFuGDs14ZKOv27m0oQ-A$y%g*nPrNX^P#9DwPgVs6< za7qk{1RA{o?cnRj-7?M;l*$Ln&^2}1>4|6kMg*;6~U?k7iV161|g8ep652mxV+{-93f_A^#s7XWVF zEvS@BkzrZ;(qz1su}=e$-hUax(-e|+x6|0Y$XipK zx$VTpMJjh|1mt&y%=F(2wWF2EVdP83g&w4-Y8Ad)vkjWIyvFYk`$szYjQ7A)VGMXk znr>XrqL0+~uM88wLUmcEVYGQY{NhrK%I}~pjJ?Fs8X|g~yj-MWiVMl<+YJ+(?#>Ph zgq-_+R8(XXFo&Gej9S2?<1~)hMgE2Wn``Yfe7g?le}4Wv&w>_EUV8ZK{{FqPV3-Jo zJ`|=EED4Jx90$ZOmNr#c64gvo62Mq2HX$c$xbWI=I+d8NXJ~GC&M?4+p8!#boIu11 zA{|>wJctj@5(-<2tleXU_L1{u0$~z_jrGXf_0Z)o#rx#Ya>Tv<6dyds`d->SQqaus zNq6N%%{OGn-C+agYlsn2XixJ@kXbRQWk@13~``5?k)5L$tcJIF(Bk7 z8c73Nt6LM3@QMzmziG3V$HGRRU|tIPLyY=ocA1`Y5Wi6M)7k zYD7_;&xKTX?~k@4_=V5~s|%H4)$1}TmQuS9gDijd7$HiTe7>eHBQ;e*I8kNj=#DiV zqU&RwF~YhJVpUHDR&VZiZUt}UOR@IJr=OW%sn=C%1&{evUbSqRo!qcbOfuGx4-})A zX#zte+k1!5rs6nc+^WqS?9#r_sl@UQpM1BYvIcW?SGIM*5rguN8We0V*7_nb5X`AS4`+YNAWU>P3_N!SaN8YaKMpQS$a8QzOyLa~ z+t)%kUqpXqJ>wyC)S~!!oRh=dpZd*~!+0vTVwQ{`Tc9nRn>D>+c(b82rhcILX30;OCLBT0K#mgU$>>(F4Xs z0y3mJk!Zl9YUz%9NAa3xzNJdWpc_P1M^O>$AQpDrzcB2{plk0rzk0%kBbl+Nzv+s( zUs6eI+5<<{0pL>>g%P2!68IssL90cDz$^0F7c3(3T&_^>K(kn_MEo||C$aeqF*r&F zUBQ0K7!mg1(G{8+FVIova}C$0w`fM$H+}al zY&)H;!33M`q?c7r5_n}|x-gt@IoZLjX%)4A{a+n-kfaojorxDF-_&>VG)2F_D#!B$?eZdvmlLcu}93h2}x-NGV148XJ%(ZnExgf38Cq zb)iS}MEq87&%EcO8#Sd_!3uUG^b9QANo?Lkx!uL7Ocipvl7Luarq;asop+wyG(t=RiPJh* zA|zbA0NL8`BavjaHBK%vrK<=Q?oXoK!@T6DI_<}t^7hu1Az)lXF++;`APh=DchE{U z@v57}>VA7j$U9iM%c3QvV2ODw?&VV19cr~UFL_kF|30S+WUa7%QsDN?0g3W-piP^) zpv=`2H7Sl2J@wpjv5SlYnW{S`*hhtNcB$y6@hibE^VDHMhe{BM=bxw|9={t&!KHk7 zBVHp#B>=5ou!Ni6E$D@S)?|VhzODRLVz1?3A`t6?zx%}PCh6er*x&JKDAFqo*_LID zO?0;McC_^HXC;npzJCAcjKc9gxl-a?T3oAy3FK+PF_Rk9T3|S}XgpM3vI$Z?G=Bvm ztI}fz9rH_SkVL@^t)e#?mAjWVv7O}W_0)Ik@bvqyEL%0js1YA919}D_Y_P6t9M*0m zo_{EeY+S+ZNE1uHtq1gG@FG9G$*?3t#tjq$5w+=~BMf4z?71%(EU@B<)R^%BKW2`% z-vAwEsCtkvhuO|8L&WBr0AuteDu4x@m|e2_8>vF}SqzEM3Qh;(XnJ&*V(pAr#Zcwu zjk??eC8$vb{Z&nO%>C$>Hii{na>M<^R_D4V*;pmVvh7n{*(WqA^>#kkAWfBIXFq5k zF>@5o_^Ds7H_vJFdLOuB(8 zG)`YdxR2i!rkI|A4h=c}!H&qm$>n@sX%9&Kf;x>d+$|q2Gt}Leww7|!v&@I}vHZpH z#<_38oE5>_0q2FYsCBIb(X&{*&*4`t8^)DpMvokOd7&B-rPl|;2(iUvcKg$1UdJm; zv})oX(ZfK&O#s#b`xhp0ak%SSQO6$nb<(2`QTuv=8d~;}ULt7@qk+n0x#+99W3uYs zK8R}b?6xN+Nr}ZZ8NHPSDjaDH3Ix_0Dt&7UUpF?|1tR%L{@g9q2#wcvdLOYpCImdI z8)FlkVu$|uq4l{(-l);d#WAvdz5$L{DG~nUT|cmn20C0fJ!>&%gbQ{$ zkwTjA?^pUoipL{Epvx10~|!(qwkMTsfzSxFurX6JYOnp`5s6(qX8r+ZL+qQsn#*rT@E#A}VB7J7aNR zZcB@nFeqL>4M7P4g;;kgq zc>d{}_^4hL0V@W5{t2rQ*@~BGjZmXaY+S@+BzboJULpU|q?&O{*F0efKXs;}Op5K1 zE>Y?8ScJ@{7JJtt?1YeZ=zixAuX#1ls%~wyOSqJx(`2nR%@f8hwxfS4m(NIu)uwSo zeV&6}k(vV6!D&S?Z6TVbjW7E3qGO_h(aX2`lSu(lM=vW2&BR>+Gv5LhzFC9WNu@;i zTr#F2m!pb)P_zmn78k0hgdx-yFVJZ@fi7DK~{`#odO!ohMPXn{H< zh&XHz@XmV%x7n=dq2uw>YNM>i3sz;(zR{@Rp;C<0J3OsRiQ}Uy*KR)p-sI{nFe*Li zl9DY}d(&K`%}j{aiq(y+@-r4PPS^+a*3pY(A%(~OJtUm}otdD4Y~YbfNy?M1DLX)8*cCm%Zo53FEu+9_ZB2&>su!Z-EXKDMoc;S@hMevF ztj2nY50}S)-OB@w>*r540+~1As&iaDpGaZ;tU+FTE|`_}C-Yc`S1c0~0HNx+?9dxz zJ#yA7M(~FhWA^%O_w(_xwQ`va%*?7v2Zrm?icrUWPPhIuKL+V}AGzyegVVCJJ^wtb zi^T!Lha<#iQUmnJi{8(nvcBg5%&UaWtzG^47n%Cs$G2|v&)!uXH-E}1Qm#v`TJ}B> zE?ByZZ0P}COdCJHcyc)rbbSt7#k~(V9G~u56B&+$Z8u-+^P%Z={bWoZF0ma{EwlNv zwt!0N@!0ZhZ5mvm*dW=eB{|dhY_5s8;h75vg(x7K-~G5itF9UsR!9>fX8t1o711P#zu<6HcW+BPwAvM@rifSac`Z{c8e+)z#>b}9}oaHTE+zt}zP zIi#XdHrw(QH=Rz$LXZwsZn(;>>-1Lk#m4agg^RX6Vd)W9hPuGyLMkvy_0~VjyXipW zVnEg_dm*_jBCgq)=7+hop|WR-c)AznGDFXOK2+Tw>xwsoyp~NaGO$QhVmT*Os#kK0 z)87jBgIS|ichTWjjY}COr;F)cM4R>)~Ghi?+HsMHZ0=2_=}B(TB|YD0QJ7fK`!FafnswFiNd%Q(C0rD1YMLAqyk=oap1SA!`m9bOC$?OzI!$Q^v(L#$7rlw)>LVXkT z+u4t1jZza5bzJ3)oZ^QFlZ3fC^t~tzzd`Wy`#(`i1(;H@Ug;$(Y}74E9-yD80+1Bb z8yl#T@8SCh+P#^q6hE_jcBGE3XKt=+-$zBkf*wTr_x{K~&P#veaM@*gG|KELV`5z= z5ib~;BJk^IPjM5Sz;bUcNBN|GML=&Uzt&tX2t~w>0_gH_*gb%5zFsB_;}i25ufh|XBq9DHEcN$ba|q-E>`_7 z_zB`Od)h3uyPWWIFnnSr5-&-;AoK;F(HvdWwl@f!w>P}FZ66llCGTM_KAk)nHlJTn zwaFlFY5EGj`xwD#pKP96*|Wexo>jG*OR8G-(<;U-=J-6Ld>uY4GAt&kpZaN(gt6`O zXek``$Xz3}ID2}$?W^GZQ5Sei+U|Um)(o4rLGZeGfaiQ zdl8}shi&0piNySiCM<0kcCmZdRnI;$=Kb0wHKnRIX$?o$AoGSex?0vA%55jNs?|*= zRk+!4pwr_?(=oY9VtHl-da_EsMs&4<>2DFX%IrtMX|?7sxZ+GPZ32}!A-ejgT$$A* z@S3c#KX#)!E^i+GV2-yL7cRZP)Y0n6FwITCAe+c8N<3r?+5|@J+!5o#=Z$$YRU`CT zXRoZRJgX@^`5Qd-#u+3xGyIvcY1eZ)4H{2De}G>(_45u~y}Ld2G^~{7;M=<={I1@V zK$0a?v0U@^HY6}EhDdYyBqmocsA;{-;O))dV^fiIJ_#G0c)&7A|Gp~+2wROEnCCjr z4y{F5ccWQm6kY`McfUhoc>&qqF|gfzJEKhZgo|GdbD+eYHq(~|b-G;f-&~UOw{5{Q zdxLY2?h>{ax4PZn>T;V70bYSGkHU)2d#Tu5AaamVi6+sPTv~y9=m)Nh_sAW*H*W8q z(|z#{P7AGOwswxahrOPe#35J4_AuUVr%;@~rnc3DhYTN{T}N)-xH#25JfuLE7l{jfE@*MrgIIcA%*YxWxE7KOPa}Z|%cCzU)n?%f+vdK3q|H zMwYR7I|dZjp_g97`!Vm1s_sqpsW!fi>bUrs!ldFB=;l{N5zSe)heh1-f-n5yN2 z$Jrcq%(l8ZL0@?~tyBtWqNvn+9Q*6BCL5(CD_Ri{6aMnlnHI5#%P z0jiDRnpPbY?Nsk*8Z*+}GmECFzW1p2PiYcG04rvm_7;~$Rc-9Xjze5CF*0)fhlHCK z#saE>nhBANlZTLBn^tst`ZAPg$ZE>B8YLiO!5nX#H>y)F zc{_O)b8|{Wh|wU|v5K6nT6Xfd=omupiN0whOzn~2`j=n9n*J>IxeQlaf;M3jV@U3z8$Z zr8lEGj=(DC?BqP$TgP+zl6I)7-Nlh2_5980;m>+p!pIJ;zI|2RmmTGg)XW-O1QV%z zzWF1$V{*&KxXB4C>X8we%*lLNxZB6RK7in1KiSa(>w}E)dUYqHt4N#`1({Nn%3<@P}NUUBVlPRAg)g+ypJSmpC+tq5_s zur9s>WNZyhNSHRhBKm zCurichCwQcHb```bRi*o;(D((+e0i|taqXpAvPY0FQf3A=@StdnO)7NB_hf#hLZ`) z_&hb-!9LnwcZ2fwrju^1=>5lMkP+h(-nZ-=>aK#e_T&_pw-0s^;=~z+H92ZTIq@qv z#1HJjfhBO{^+m*l+{D0+-Up&H;JxM9r;k)YQg$nI4jhTcVE8xv?CaW2P0ki++3c;&7BoH~Ia~qI;mROlmnN3pu`zZ=NoG0&2YPKG?qQOy~L2|7Zc5*MvMcJ6}8UlvzIe!Z0TACL;fY z6xIGa+6+F`XRkgNr6o#RyrD{9n%02yp%tZfPm&fp5-tZ^-^hr$Y<1pucKg;h4|j#^ zODX2~n%KK_Z9Jz59kb*Mdiz#Lm%F}D0+3;1$V(5%uK4~dC1@DR=e3u$BKs83i#lS+ z`h;HmXlr`gTtkmiBYfame)pRc>ZxlmO1vBS-}U|OmrT)f@}C{_Z^?7p+d=KqPy_yc z%>+~qB`540w9CFF({Lh_)#xyIp`M>Pn$)}8Es$OG19ieF+uvERcyoNvE{VO&YuKOs zfI+9Dt)1tnv|Z+>KOF6&lwL<=Vs%=>IR(IAK+J%`w8!I$Rp_On#;bN*-nOqeL||$7 z#ma0W3bw=1A&#IG%LIf(M<=HgOV^$fc7Tn2z6LG=z#bjIbdoYl6BiVntR2+nyf*To zE*w3{y?=~>pv8Fh;9^*uZ(rqSFh#yF;Wxa~{IpA}TnK%DxoAV>U(isg)P=Kxf{0-HH!zole6yOHrwugzV$c5x*6$z`)3;z8qW}5p*U&$f zbN4}n6L!MCS0 zts=Lty}M1F#tTWa;~Kz>7HgsR$8&GeYSs(B*R3Lej4|d0eOKg8iQ&CQJJ9l+4OrY@E#oejNK{w!v0& zgCx~f%)do!T+TZp!1?%0la>8yGp-AhcJ|5E*)JtR>wvrT705^*~_V0F4FcnS7fZmGC@=NX6_DBGSc_MqpD7yIbG4O9QUqJN>? zl(^@`2pEv8P>wE2wR6p^Jr3#8xlt&s5|dMOl#iqZ``_B`9sBx}APlxcvzr#fuhua> zhMh(oC6~lS&HGA#kB^LLT6*p7PP-0-d;rD3Sk)6=#2XbiN>aOF%LqG91Uf-QAuj{9R-|C4O;q$$nNX$P! z-`40#yBuKaK0>7Gxwr=`b#LGoS{}WlUAjII0p4VoQugemNB4|W8zCQ%JtGRiI~#Ai zVIZWjK3!lA4JztBM6iSe6Mgj^a&>$2$boMUL%BkJfF|1Mj!jJ&-kbi3u7D)A_qqi+m`I-m)sEY5bK$PyJykCx76zzmFGJE z1F?%E$)gt|ol&ABN-v16`vr<~B0;h)G2N&n)Nd}%0!+?Bn>f-ZX%+JFd3L)K)u#J$ z3m-WfVuO^0KVg~8KN#AN4aon4+hRbl$*SsK6ZBpY`Tu{7f9QiBlz6_( zN>~{Q?Pvn3X1ygMHiGQweoHhx0D>q7-8&uP5x^5S{XwtS5&cy!W%t=HqLu$U60bKO zG=cEz3H_QELuM}VruXy3G3Cu^=(l&*0}|DX6|u?XtMAhlklt_C39j}6SVqy&M#Ta9 z%I`HH24q9Kc@d_y1}9)G8)Cwq7tT1x=(?6SVT>gbUDL6@{4;#Ie5xIw$dAQgi( zUXKn+Fi9VJ&K-z%o6ujj?@G9T5dyxWM5Nn93%;tqcf1RCWDUdp%K-g9yF$FjasS*C zj$`P5zSb#mPs)EK5a=CeNRUpci@}<1-5GR`#a} z4z(vYE5}Ps?SjSqxww5{=waUZ>$L# z-6Zb$f1&BLCzv|(f4J`7I5dNn*lKdBbm(!^M9Q=SZuM~#`K=1U%ijin>soXK_V2rK zU0AGCNY$5<5Vr><)!T39D4Eoq2uE>w*PjE1wy-Sk7}bJceEOht(mipR&69jOS{w^( zsdyRvf3xZ@G7#rgHWWN@Ls0y9fhZgm^rX_#(%?2>lUU}3bg+3fk&SW@bhYY5S_s*U zzpyUQqlhuDvg-X)E|^gp+&L3_jmVL`A9Kao}mvUTa zRim#$0lEEyOIJ0@v zL}{-WQ2FOAqdH=_i6lM;S{Fsw^(i)+VuxVlvszo)whB?}O%$Zc2-DqSAB1 z#aLWCj2f&?e;wY`ojiF|sV=RVxYemh=LVoaouBr}t|4ePXVOvpv;lo%$o4y3cH!_k zV+!V3hcz^W5SW=*Ai}=MS|bEf^Ucppk*0N2f|w}b7U({Zq2`y;C1Cy=?g}WnItI#F z@Iaa!@O~{hM7(`W9ik;L6`epl3H`5V3xeiglXHKZb|=^>F(vxwdEqj~l-q8_ktd`Q zlhpaufUmO2SJoOCuCq#TcGV zFjU9M-_Z3Xw41R;8f6JVUNvG%XeJtzNf?ZQF>%i7zN{TaD5nC-n#AE)&PpiUg3e7l z-K`O6dCJ}(r>cSUE9xh!{if!Z1xZd46igDg1)=wymDDNs2=qe7OmNxTeYEvpIhC|&Kk-mz*mb4-bE7z`MlAoUY3jeT&J0z zn&kkjl6^a?EB?@~S8BIDytz?K_?()KJ9U36)3Ge$g|4NyfVw}+53ER7$5BYu|4X~J zr;8fo@wXy&%OjwmuY&4gAoDC-T)r|rU2Y2B0Pdb2BMjb^od~OABK^0f3bw}^@ZdRa zB*#!}9pn0%YHY?RM$7({bzDdwL(WMlkcS3qDH(Ae3kD*MG<_F_mOGQQ6L5yuu?^&X z!)3-fEa$}ox`?e8Ci1B03yDIkE(nX4)y0tc5pl1^6t_=CQWl$-XR$0RxajSh1LsL5 z1o`ZYW^ZDI{%$$e!X_pZ$&oX2+6vK3_8gFdQv>HzGohJGIDX1gUtn+D6)rr~gW|KW zCAKso*C4_>kz4+0Kf(2kwrdvoBK27pNP-E2@ueh(d-Ldlao0Lvqp`(4Tj9&D( zP3h;GBlB#FF$upZX|jk%K8Y8$iI29qI-WD0N5*9!6HAqyDIG5a>*S9!1JHS*VtNHSRKo;Br|pmEV8a;gB6t@N#(hEj z3hpZp3--41wtsN?_qvn#PQkGv?UU3)o0%Vw4P@6`%k`|L2bLOx)mxEh1f z{SZhu#$855uyP!9iRj(#|Ch3&$fmn8n-eAfopo^?JC1o5mdt$p9p_NDi!JwaOKsSC z1e-rAxIVYyrMMN}LLK>)y+vx<~SQBaG{iiemdn@DMst zG41ZEvbP^U&XF2=7?xVnGAI3eycXy-HnTlt4Qe%j&~98Bgoe!CS99Gc-2PC46jqZ3KR@_t@PmZW@lU z#?|hE>Dg`wKiAiqYSughm1Yg}m6XCA>r3cknCl!P^a(B$5m*zie2~t7cZOaw zi>UmwLsPSS<&{a9BQo(Yq!+=o)IwP5_bKZfG|W>gg|ZWUn>&h&1U%b++ipn9w7Uv| zXOZ^E>xLJuq*fq~DcLO-#%rW(F(pZOP%L7^z2>9!hq>QfOP5a0a?-V(wK>4d(hhos z&I3}2FC>}{+culo7)}ie6*kJM#$qN#ZYS+|CC5Sz&uc?;sYK&a=*D8Pl$N?h`p22d zmf|hH;@(8<28uUb#H995crBI6%~RD@dj>jM@l`w;R#hV|RL}^C`78`;(JM(Vp1K!S zRm`UxAJGYlS|y+@Bui06L5?t6yp@HTMa0sFDN7m3tb@@dKr_cS7GXhbV4fh?Z1ZXR zU_((I&o(IQkrOv$h+Q}5b(K$<5Np(2VZNxPnZcUKFe7w4qt8Bp0H&k`$M@Am6hD(6 z-Ky)9H#noJERJwukb?~i#8O9lL+e-&GMbdGH4UdJ$TSKV*V1om-L>bj%d zS?QKB$md9l#&3S8&r9!l@DuAz{rHeuz10X!&%MAbt%-CWd4JZIm8!DZ?GmfmLVgO8 zEdMAiXN)YWC@F6U-cjr>@L`}`5p?6Um=(qr4Qyrz_aC@LVeDTv$lvnhv$!*=&RL>) z3(vBU=N=3ND9_F0pN7In&N&*Y!|iTLi-t+ERaQiB={7$#kjy2k3F8*X>vbyNK9nVo zF0wSOw|zFqZ~dD1k}&>Rtdn|LBNK}Fmt6{iehizPQ9D@wLF1$X zvR5upKU6jP-M!u`;8~f{F?%65Nj8ii@Jxn6BcaP7Ly6k!=&>z%qP)N2_hO zA?R4!m*o05-~C45)!0FGTA(8FS6+Js(_Asrit0$}7TRs=Y@PRDK}oFC64d7x`@)eduXm&m-of&QsYqFSjLxnHP$PctPjJLeEZ#0f)Z z%y@(svYhk)JK0ebi2dTkpZk`lGw9WxOG}8uDRtkb-z|*C(0^Xg$)Z*AZO5qlWeP&d znxfmXT|@E4>#*=D@UqslYkq=@MeI>T+jVP1| z9=h&KQ|vk7X*kD)i)95v$2(XROKo@*`)LwVqEck(tSYO772glPNlDgO7tqxl6P4Ha z8eF@|xXHi?bvBSlDaAb}roGmFc##3LyZOE>9xfUCN_g-Hp&4b6NW6XxYHhuNs;bV9pUh+4zSi2{>@x3oPqH8oO59s!QKV!HbxCc+?Bf54j+wYfIov|epSkzEY zFIQV5q&Ui#$EJ7)85u)CE}~63Z5pwV*MBLYSJZzz!|oXdBdgL3b+h|w=dq>g9?J)- zNoZ+laV*Beuh?a91GfYaPD?~t{3zJ4qC+K0MAvRSrsPrYG&Ony7w{tX3SYN9C zz7u*eMX=zMCe4id>PMlLmY$S~gr_t5Y&aSgL5jrQ4vhqsE5Vs*C-egLkM+SK%Me%m zdUk`-$Q?FlrF_Xh(Qy0gg`GF{b~L(P?%2wZ`=P0wv4djfTKspy*qo+@ht{G&+3!0o zWfO|L47f;A4+(>o z*ShLZJrV+IjDC)cqa}h5D)Huf#D{^jdP%Rp(Zvq}o%;5C%e85X-qQCkimtI~UVqH6 zM+VC&(8rt7m3{;e@BJ!1nz!lTg_UgQK_WlxY9&0;5q#2y{k~ByN0CV4m3OH7ta-tK zA?7Tvo9#tF%d`^UEG?gh><7!XfJ?zKj>`(I6hdYzb>&#q&A^1 z?4c45*0jcDe_MOu+f6Z5u%Iw(ifH=CrLcL3B-Zq5J}F}m5f5CV!!#sSA=1ke<;_f`0k|&V^95oRMx~f z>V+8p%_mKb%&G&(zH`x`*V}yvJJEG*o$ReeX*kS)Shh;z7hi$?TzKu_spX8~6>tLB zANl!=cx)1%g>&Iz{bb4SC$)6>$89{|+5@1_`b;Hb#0fkn$nY(Qz@zVM-{XsNdtBV; zdZ>H&Cs&+7b7(S{`$#@iH>tOE;*3&_#dX=Sn((7Wr3MDMUd=^?@(UpbS4q}8(y(28 zefN1WEu@zckalDt$w`Yyd_qAgZw=@R8G~;!GTxSd7c&AF6QdN17`~2G*9q~gCEFHQ3`DlqzA0fSW`0hbNE%6yHbM`$Z zHQYvm;@$gee93d3)QJM#;>))mEt(_InGh9AL~^`1QhXbcPZ-dXH>n>OcG{@$2LrTZ zKH8P6WKeby7zUE>NGG1^JopiJtwbkyswHK}Egc&%<4QO3Uiow(rpF*V#S^i*3Yh@$ z$|c_C7Gcg(hQx$EJg9S1v*apc8ky>4#gK3HA7k-}IJB#`>AVC0v`fOQQ1bi^6!E^> z3!a6L{U^It3aC3irgB7^sE~Z28ouRNy#uT`XA*-_^FAA%Ls)JMa+2P9;?n2$7pgi%#}tY zWHjcZv6|D_+B`TMCB2z%n~RGTilxcn*mr`dPg63%ANSPcOic~j-^Ntw2PC#MVeX?v z=YJvxW!5S5*PAdj`&cMa@3%^edq)wXuv_-Sm{~>+-n-$}dOIVbwZ!bo|DG1KkfB$c zEB6b7jeAV_t;}yWj`8pwa1eS@)l>Er-08sX+Nl~vqYuarcb=*P6X2(v)?AYwsw(X>2Jh5$~V{~lWwr%G;dEfn= zz4tjklZ=tI##*cHs+#wlSLu66u1C&@G3=M&L8-htb&!?Pz$@x=`{mLYX3aqyHJG2V z{U*r@73R^x3H2bMJ3F45FUg=AFZwQ>Qaib$6rE!L{@YA&c=NNmC2Rx;OM76?2h zN+w$7sIcqWUcH~wK9yEj_d=zse@oxbG+ZHWc_?0jn>%QMHThP?nr*292|KqQqE?Gl zqM#%GU)+ANP`D#-NuwSJp^uh8}1mlK12{uHPH8j(ahZER+aod zS5rQRBu=tqYGRXq`@I~1aTj-ypDV}rd#d`^Ly4!cDn(U4Anxwr=6iGJDg6&CE%Uh9 zERkW;QR$_qWJHRKn{8zAGk2IZ0(vY#NE5F>ORcr~96IxB;}tK^0_6*ZSSM`84^o`F zb0ekNqxZ=EP-!lzlkNG_0j`dE6lAxCcAbOu}eD zLg_^pG8SAM3$T+8TLg#}%FQtTqXiUItbdCRi68x{`t7U;Lo7IcJ^V_9jWUd3G^@f3 zGectn9Piwpxo!Ml;zGN$R4BX5bdFwboE^P=YR7a?qYoAw?ZuEc{A$|5)3GDwzZN}dhlHty1~0xbN`jT zqW8(Is>?4a#05Bzj*>^fl||X!PqB0ixGy}dvNJx=)RYMP-Qgl$kv24$*s>T=Xn6t7 z0FBh*PybbxA+bYBjMXf`^hcF%DXeB`^>j^WmF^L{tl*X}#AtZlA1@ufq*>9)J&^>& zJAa1=OHw6P`WE-wRqi-(yUBB?_vUCHoe;y=BwjWii9JxHOrB z-OJ3wxN-qV17HM$qop+0@8}-JDQ-n6G*_>f9|l%9u%NNb%9toO$1+RtL&eUUg~S?AZAfzhE`6Bp35Qcgjn@a|v>(u?(t&jOCWXh&IKF8G z3IBv6u0Em-(SrXCR49?(_}Mj(wNtA@)4NY@B7TzD_#RePG@ha=cb%na>EjkknimH| zJjvSb6iJ|{Ie@aboNqqvOL@KvC{#qgo$z(vg`?GP3lv^%d~_Xjl*dgK6m(2zT;bDM z40OOjMG_qV48={JCv-&Zo>iJWPMj-b>};<#?RH7ukli|Tf`@Yzi9;5Y32iH%Vc#}v z2x?>qf^~G+A^=}SI=Xm`X^}UY-}DYBQP26JunWFvWv2U9A|f(UkN8Ptmq6fZ?b+^J zEU}`I4E!Snbyk1DR2AE%Ksd{j?9zi~JZQzm3KDBs-MsE}?TzlJvt6Uf}-5}sKr%Nf`VVaCs~fR0Ez4*j7adOz{R~eLF2u(NYSnG4Lqy8S*thBQ78N7L?xKY+r5T`qfRB zLh4bm?owW_j<)k*z|^EwRg2gAQXX5h;jOg+ACUh(Eae#9@Jyx0;r9KNR`bVG4?eTm zF%(NZ{H;?8PeW>>(_LxqA+%5y2EKWv79`=Su1JkqI6N4lPea1(7hU)AOx`6|?gFP* z6P+JOqKEn7zvv27UtXnXl#B>JNC8}s264*T9H3F53-8uCLCHEDaEu;x<-@DcN)duk z6f(ZJXk4|$w3rq78-a8<>}rRrulj;I=Gs544jF1a+pZ>6?WL5?2D)n1r*vD`a=Z&I zMd<)p%YV{z^tkGcgf+Q|E6!|MyBWNeL=1i6LPr7NjP#MXi+f+hWVL;Zi&TiJB+6D2 zGv=Ho&_M^Lb*fxRgS4%evHHMM?F=7`8?@K(SyJviGOp z36f9*!^}=gpgeounoDja!emL8ecX9qI7mShcJQHh&G~wmWzJ1&t@)rlK(VOYBg7(G zBmIYa`fXWb*2BdXZCzR=tZWb8ABF@5c(bXNVsTDGew{JD_e6YMs-xD@mehvSg3CXT zJA8aizf6a_|5%2}Z^_sT7ZE*can`g>whc0{&5YQ?A{ObEy>I9lY0<~OBO2uJ4hQKc zA9_$qYbW!=A#IXk6HbaweXW#{`6_m`cQ3H{94NW?GJt4%s-v@cpU{$4TkH0c|EElS z;4I@9=W(ko%69WZ!LIF<-2XJ=kp>5fPpk*+h_4AU30~%0v%{~4@}vJsmdWf^T#K@Ne_YF6Agga|m|E`k z%HP8U?g2dZhfQi)=M&DtpXNs>!%R*vBZ4peyvPxLJ)=INxBc}ii%CjgS1r3Ik(IXL z?wD&?5x#lB77l4c&p>0cC@j|3MU^UAClYvUFx485VvK1Dt&6ri5<`c?HS4)+R*BbM_Z~ohM;#z&D*Tyo6Ya)R{W3kNpBn*(6IsTT5s63rp(R@oK1tVqlNT?d~Q3m<1NNW(JibScGNt_;D_etw@j& zx?65PdslNHuPk#FY1yZMZE`n&d*o^q^n+S^V@O~c9i!|;Aso9m5ClT~@Ih1RIqfso z>RkMQ1@2@`XTKSmYfIwSu`ct#POY@)4Rcv7o{{whs))@~XhWLq?*h%yOr!yt z8s+SU;&Z>#Th&Ves~x~mRYBgSN!dpOhg_qKZhmC=aJwM<$9*nl=|&1=QlCY%cPz17 zvnq{73k|LGt50x#&+r(_(2->c@9^2>fY~MiaGrK1o-7Jy(=-})o}Q1Hs{;m)u^I}N zJml<7Nx6YRFXy2$SA}}WHv=+$k@4{G;K;n1VhEPTxh5f|mK|+m#O*1*4+L2owcs2W zJKMYC-!&Hqv2nK`);f7Fws2~EjUIgCAGWA0yJC2+HvA^a|s`5jjVm(H`c#l;N~w$3x8<_S5sD|U~=0*|8H z9=TaWF34_Om6#crnm*Q@eq0m&cw~#LiHeVEgQWS_3G_ofsj~o>Z@BFR^}OHt>FVgx z_37N36yvKEnOkiO-UdIYX1f6%&{yJzl2HEv7u8i?RN*XSUybA zGvB?yE04h1mo}2LlW4CIg^5@Z0`p_RKquxXtMRI@#?5X5uWZ$)zg_>B3vv@JL#o`J zDj2-UtIYWMRWMa z-JTMxh(CU+d_Q5_6iB@`l))ba_sqlz=wF_C}SIU9P0gE;#LceY4i#HTnQDI`UmJd z?VRfQ=_bLg50>RYSji&$lL28#Dmn8@)~{aGD`YzefV;RNLe#y%Q7SU|`u(VeSA8?? z!WlB!_#|>=gCkUhnv1fQg^Zb!z5=Y1%)TEM^wDke>v6OFX6N86*RduI&xr6g{eoWw;_Ki>fLQ-p!fkKWI90!`$gj?;1<& zYLrg&+v?!yoUc%QA~+z#(@L_cT`#y~Tljv2n0g8TkuunBEZ zmsAP6{O~iW{T=#kj`{FqkfL)6R7EDUe=LkTnwopkpcl#Y(J440z07+n=kVKR)QgLS z?cFSgIHa+6cc}Z`F4k&!D=ebU_ZG<8-?hP9Er@VG8~s3SZ5`vMo4nu2Ri6{iczkc3 zf(sV#AF$ZIz2^n@{M-*&QK{TI2WaeuoWZIT0PVql`N>>@o|m0wS6jX^j@);@gJ}}I z2)S#&y{Jm$S_Qf2meFmr_)Yk5N8H9iZJnM4OfiBpIL3GM;U;CZgk98n_a4Qm*wSay zdjj2snLUuI@dt2Hoj?oJ_T1px8=->}C@yX%-@k4~Q*O|Keo-s)QIG(LxJYnOyVcPi znV*gi^Z(HTP*FEMS}bRX9|Ar$r;^{V&5Ijogdj>|o~~4iCsk^yK%mA78g2OO#ppak z*2@TwG<_&X3W8@@GJ$RJMn*1o=+}hI=o7eP4rN}ZQ2fJR5>;ZAi!ndV9*M}7?XiQX z!eZJJ@O7yR_0Jl{#6D&nwK!w+PhVl(*vxEDflk z!`@wTNFzJ9NMa?oK~D*)i_bnX7Q=9f-e1^%8Sbn1d3*ZAc0)n%f3Vhz?`22y-I`9P z6bMxC`N;qv(=ued%PXIkE0=d-*v?6pkr9hDPT~Z-ZaMjSbb}`NY6O6t+=u75hf|j6n z%af+zb_PrR#_-E7`I*D_dEGnp(wLS&`Wt%Vu=@#ewi}C4Mun-Lj=^vzdTnZ4V~utu z&`Z;~%x5h}V&Z`gQX0NH$i#MDj$shG4zKWyRdpAZFCZdx;IxsI*h?N$E+$ZV$#^oQQs1bqGi$Rgy_{ir-hFw_+o%5pnZqtfOMZt=Y>#+TT zcNbja2c6F?=WBeGLCRq|;yl?VC=6T%LA(|Tkq9}|zn{5W5T75Jxv~Im)nn_3PR8UP zN=IAg)xGkTW9t=M6&EF8PaBq^(kF)Ix2kmCa$N%uFRi<2gs?4OM=_OaG2EI_dG#qE zr^Zin@dl{EiqmP=by&JsE8ZJ^$gqlP{TOKo^?L_@iG{TH)z0?r*I#mFef$9VvGsvx z=qoKLb|@E1-~aGZY&{dxWzUSUl*@|^as6qJsu0hv5&&A?4(5O4NaxeyMvE#PJ?ihL zExyjucygYxoQl8m{X$RL#^+!RjL~O3+3K+AS_oecdK^E_x z8+<&8a^FpTC%w+|(B z&n`pqSW{2%t0%xIP*H@P+o%CqLgH4QaQV<&rF|_bEmYmnoGZxbSm1meZfK1{!@B)d z(P%N7!wIiZ&t<}to-jL5j99m_ey z7x2dQ<6E2vZt*EZ8?1^&6%cM+nI*qB=EXXvT~qf>TAR;C8)uu!j$M3;n%tzqC8{>u zdH8dKucB1L3=np4;G?28202>0nftW4ywqO7Pm<_@V{d+-M^6Xn?$J0>UP$#O$cr&#*tJZPp&T$LdG?sb0^rSs=vr z_f?`j8&C`wg~bny6Qd7RAN`*ZW*O~`eGKFP<^0#svGZU{d zcH%kHv8d5_bU1sa{TTjw@-_V3&Myq9e#_Xh!Z)gB%?~oKzJ5L5FXAllwdS&8|3*+VBXc{HG zw*$w?m!I%VDl#GlHajPo*vHrsqCQ7>0Y90tPj7zpG-%WlT)a9}wUd60oZpDU6tO&K zE;TvdpDA9B@sqj%9ullfVwC|4X~Re~^zC?sDO8Jn4$eVXh`7#lfYChfB00iGZ&X)Xg&veiJy;(+%nD0n zF2+Vw#4bAIGkxUjYY;r_I9KDf*`FsIQRA%Gs#LwP-p9g5VrS-;#?Tt6s)%i#IERk@ zJ`JfMv93ObzRTuG4tBp^hbm}xs1j*8-JHWV7X_xFis!xqZ0FaBJ)CH63;N0c!s@n; z{83x}Q}sIZM>V5MSaiDqPWDCIn(bj4Xet!+3x|oR={>t4&e21J#!K3?v~k9F*EAY+ zLmPKo=7t$`z5BUdO-J?^TTuv|gM;3-`PZx_mjDZM&#H$EjfK#>NdtG%^cMG2lmiB` zNkZWM-lQo^g@lb_2n+-h3|OkAvbDh?@3gJ5YHptvqP=IP0RUWN`R%S7@7*cE zo5_PB;@${rho8aBOmdJH?gZDv12O`nJltawlj9VL!CN^{zF}u&(fm?3vdX#JyWWQH zPN4g5{_i~u?D%%Qn)yIKJz;ATA@*<>&1e=QlttsIu$~*^bz|9|+rWirgCdzux-Kd7=)FMOe@WtM2;4mNAK&{pi9)5Z@xKxw$Eqyt%7?B(MR4`SQ% zWS2Oa_l-O3uTmP+>5_u)yBH3PYe~3u9ZzWcA1vTcb<&uG5#k(@s@hF$a*6x)?PlUu7Mc(#v4ag>NG*S$K8@1oG~)^>*%2bEuF_dFhrMPUVBrjG430CSvIwwJ!}&(l1--76caVWsm>^PCv z2HY8_p#8GIAbP+0!aipZLMs2a8s|kF;LHi#6OTFE)AhjU;Y0<%OZ6zItFLA7I+MqF z$sh_jjR{+-T^C+H2a6BkOyx#_ISKRY3U%EHeO}4L9N3OewL4WhTCdYIM=9N7j(Lny z_|**G#~_cYe6T7fcW5KIlRv%hVbqGyH_`)>lg-39 z(V~{(a1=ThKFcg6*n=HGx7o?@?yQ1%L$hOmgZ!v{n|lkq;J3oO*thMwE?z{4oi2_J{=qs*=(oKY=qx@I>$R5c)$=#(frGaf zr1ACeVAv^}YxW5B=#cD^IELM3a-cR-wS~3_^<8IwYdFfp?juv=BI7s>sAdj?B>6=C zbfm|Yx<-8G1YO@1Yq!6y+wF~qXIKuw`rAmS<3AYQa?B~?U5%0;{JmbGZ>7fe&?XH? z?Q33U*zu?4%j`s<|&g?H@QALB`tc@?#fa;J3^)NtWL3Hvz^b) zZki8a4W_3LPObbEmod_EZ?(Y(YcxOCJy_EB{FNM4R-@s{P)Z;odyZ%_29FRY&C`fW1MnMJw7`+7e-zcAD`UqG_2{kK{=Kn+GQ&f+j z&ccj3g0*vlE{rJq*vg2GolkvR%vAgOkL7`~_caKgs!zI55~|VQMQvFyG9>@2n0LRd z{_}CfC&O{{|1ul_RZfeYkk0=BQtpxeE7+QB&FxVRa_@+yvu(Ap=XrinRR3QT#Nt3V z)_lrd+RCt;?ZA9PG^UO+--%v`)`uf9Qo!wOxZeIGu))l2WY$lW=5K!DuTfISJDTkO zG=#;zKn`pTSC+l(Kmiw#qtPVSV?YWfrRb0~+I*!()TsgSYWMN~WO8R1{?-esj36$)bCAZX!fMx^W7F#A+YDOM;4aX!( z8NEOLDEW|C617r}=$VMouAo5j4M1cS-&rcaqg2o#U~@o@%J&5QlyTT~Fi#cO|dR_e$ z+aL#Q#}?$=u*o$;@OxK-q)<|-rm4e!BrR+qPGEUpob_o-%va*XK*e-899_&TGD^3o zNQ__io<6MeH%U`I5m{epgv1#UKHYJIU^qESQljn@N4BT=@~eRl3#C0K8RK$2UcETd za|@cId{RACcpiRyHLdt7^}I66Zswp>H(M!;KCv?^z6=FL6zzPk{hGDnJKCs^?8=B? zA)Mx;&MdOmGwNzic?C3<^u&(4ccYOU5Z{G2#-Oqx@oq57Jbhh@6mJN=}HTsMi4K;_To`a0bB$l=rB$HjB>s@bK%%oze z!X9UFQB|iN4ud*OGn~5cMj{ zb&<7)?+7DTvY6yE{=Mtj=6cw)J2+QRK=1*}VTo8^nW%jMw1`sDuL=5ZP4_9Lr>Ow-(lSZ@@lHY98uE5X5gjc+MRbdNg&(vf;Nd2_e>lH9(tRK zQ*sE{gkM7IAbA;)-w_c-_w1(Whs_W9DWD#LNjPl26Rp>YgSni~ZLZYB$>F^q@U8ug z+}e2oM(3V;`o@NG+YV&4e!i>l<<>nio!_3qT$strabsG_XVNo(8h}O8joY3qpfDk- zbasKh{+rhJD@3-nRCio4Nb8M;5|`;{O}83+)n{g6W{wd>yb}C0R>-nmCjl11_37Z{ zxTAet8jMKj`yq!Oluu9jHWmua z*k+EDTkQbEN?Q0EdGG#N7JHgzD)2N0c2{p3zag2&i)$>xEbWf{;?*(dkUXVvP?pgK z9udfT>6NI>+eNbxM3E9cR ziX+UMg5liC5H@J`UAQB)=ofn(}&JgC?rH9YeNf9j9$&UaDgQX^$BvEB4A5_#R?qUB4~>qjytz8SBqKuwy+n%Y(|oLsDM}4niAO- z`se69Fu9K=uU&~D&!cvC$X*&uUvhysE(9FlqrmAls}g!0$9}W`_icU%mM51lS1G=z z{#5$J-OKBz*TNwBTi|KzbrH2Bqq7_z7Do1*Ue3g{io6HS@fu{?3o;dngVV1WYayOe zKnX|o<21W*?_jA1HUKi*px#lfNQbWqfJsifL7jXdE4;jaZ7In|;pltHwlbj{pH~if zNq`3FBmO57&{xghJC)en^}!*;o}FH7<=^6gXAZaDuQ=mg8cN?l+yQv;2{!uc>t5*= zsP~-fB=!bOoAIrMJnRei=u|zyrhTTo#C>OKq<~Z>oJuB>5iq>R;XAk_+k<{u`}pVX zrL{4_qH$}w%hMzO7nX;7wMv#_u4yMWBetd(=DDfn@h4J4opQkM8ZbWB4WL92<5gBQltu&h3=5WJ$ z9zz>z%afK#Lg2gL+irVQ>Z|j}08L&ATwGQrByQc;oBJpCBWN@iL4oD=XKTpufphG{ zo%cYBn?bM07<&TF=-<)*Cbm&?1Obek4qPfXdY`;Rhaw#=4=dww>xg;QoYvY0Lb^g; z4Zan6HGtZEJfr;HCi}TauMLQJ;dim82(RI6z1mpB=2LP1dRw`7LUE?ZiPmaE0&%|9 z5%mgJbg9>cpRT0S18(r5I~osatD@RY)a1Fvd2f`E?fT)i`fwlgl4r1m_e8h}^3Lc7 z3B%qpytVw-!{46fzhcz$$hLJdwIm?`orNsN*qlpb97-!NA$T z`t4(->>SN(`m2V;LzUGw9lM!M@n&#EjLZzF&Vuf&tY_Q^hU;~= z#lE}|WVc}t;}*qBpp8>p#0UAhSJX_YZ8mDLKholb>{thT1J9fZ7})uGUuM5D0(JkU zrV@3URw!%*pahryD6g!#Hr}r&>L_u7W_`b1VqxH2{*kzttx~h7;C8qSafhaik(57a zN^%>AU?eC}$`qX_gLsrnPE-ntFG7i#K3|>d-9^P?UuuwP+)s{d-LnY(3}c-5j8vjY zf%nbA7TFzwSskZ)KAX-1_HcL_!5~vR#T<}(2wVd($&KNjFr@jrY2p>T}5k@<=erDKN zp&=$e%Cs`lSArO6Edy-_!_>;VpAI*56I7t>1A~9~&&Q;f^zW~CxMbm$vBbt*(Q!}) z=G_hkXX#I9;K0ul3{ANKWo>io7?MQXHi4*!^v-UqBZ|0CMgP0ZXS!aC6r$EdNELWl z+;qcemn&bXN=jKaBNcWJQ|o1G1@~?{*fUx7$SAMtFW#J*q=6w#;8|e;RUuGYy9ys; ze}k*Ok@)a{gX3pGldE7*w!4TCa(EI16?Igh?jO&6=|-m2${)kCSJ-H=2c*xsOcqoT z4Bh#XEJ-F|Yxb5KnTgy^`XM14&2V_wKA&9JCgCm-Uq4+S?hK6D$Z5UDvG3Ibkbz-F z8eZ-OD8BXb-sq`+AXTo;4)vyccNUFTz)`B>BCf)9Zo0qvvVt-PuPXMxqv@57UwMB|R&tZ0TY|h3i6?_>LZcBC1jxRG(mLG2TjA4+7PV`M-dQ(``zy){^aL6 z&(>DCUF(!tkvgv7Ek#&*{lmo?$wo!?ls1S@eW$%ykpc1f0@vO*Z=PG<1$RWDSdSYJ{e0HX@P1gVh zH#j?+)44jyQW;ym8X%Wf-oFc2~>acr%u*@tJ(5RSq&?4RtU;c$Q;b8y;M@H-9( z;TNz~Wofq<_Bb%ZboB%$F6MLYl>Vw;bc?6Ki1UcP_i#R@u^W9y2${LtTZx0)SC&0D zx3G13L^oE4CZnaNB3PDeKTL(U@zx0yV~y0HOE%Gx=QHSt*Dqxk>sK5 z{nD7@_|)i%$9%$9RgpmMdA#J7DLDzSQZ<)^Yra>!{e z)@H}KCOrN}h<|?{>>*p*HopzE6X(A=)J&iQWEQ4uu*XmLiVnL!MUM82fQNa_w_L2T z1S6NDXd-CB{1a4^$_|7vZMPAB0NGG|Klkt=yQ;tc$*(vbjy%OXdS>|UC~@2lEmw6dvy%S%c8hrCccloG<3TUnmeK-TKD3h$SZyKhHC>#2SvZ`!Ou1&jt+T3G zAM~uAK|&f=Zv<`Ql=e;|$t#ch#9Qe~WutId0cyt&{%uA6*UCaFyXV_xgp)Fub*9|& z*Pp$EgcJ#xukQEb>WJ(cR+*h%HFEaL&fO^u`o^ce10+-RReZ3&G_HC)(k^%IZEPv_ zHXh$)KYX8;zd{HB{A@$O^tG8lprFhOj}d+3b12@Z#aTZxI(F9Aux|mlU$^+3qB(LO z9)mY=uz$zm{k>fKuokj&M~CHohu^4p;3qWHK^F$YsK5Zj|KWTBBTS#R+69Eyu!i%rF<;zYF$6t}E z2nUBu@7h42QRPV{#r0v{nzw^J)WS#90syM*kj{WTP zi+^sRW)M1pVk0->g zW!{abL{GwLbAO~_yk1~t*t`lwiu{!$md}zrjm1I!)BZ4wVa@&E`Ri(ndLZ^4-XPj} zvPn%qun&3*%_xT``Mpi#f}0y18f}RiXh6NzNBbsYC2Zv%0GLiP*aQ^V z319$&ix>20Zji`}Fz;RXRZn_gg7F~wbC66jL8vd7tuVRm{`$Ah{jbLl{K0RYw9_o@ zJJRkRoC`Td?E$Y@^W5(I?y%-^R4jY z)E0DEn|EgX_py;n{6)k_CPC5sxNzJzGC*H`efU*v#f9Fo2@b9xB|{sSBDQ9oOPeZ=$>oShuYoXsn@i-uFiyn6IZhwnXG5 z(I~aP12pbm_#}1cmxv8VD-6)bVsZ1v@z0@225x4|E{KhLE~dD)yVUWwmqU`W`hK;L zIfm2)k@fy$FB4XOF5}{G6Gfqqv7TKC2fDCy-$sn1?o5`R;bBUh5W*LJJ*1)f0oTL7 zU4?5yR&R3ThG5Q*7PQi@mt~;SE7~JwbG-&R6a%!uTl8KPyPz@iEhnFEiYmpJttT>? zB0MB)DDVjot3oCrcdGdZzHc6$gRwD=H0&71IQ+vyHAMsR5v|Zp(~H|+{_y@gEB!yC z;4IYlHq7t>|MD%fmd^{B*P0w+xJsvQf7@$OUL9nkU5oKPR2Lrp&T8^`1Otd8#3Pq~>~YK1P-&9F z4LnyI=$Wc;c;6ED@8oRq9qmB_4ptA@2xC0%+H{`Jd*g@u1{|w!-TV2Ua{mp)BLDw) z$Nb?)NL6CzN9$kwTRohIRY)754P^pgRLLewsx({W18MtSuH1(7T%X)@r7V#k0jEoZ zaVHDb20F?x*B=hw8qY^Ie_Vs!N_gT{dSN?1vlgd+S^f&TRr~;b1V>H}w0GyMEsh2K zvn*Z)2OYTAC0!Z(7bYN;?S-ss0c;EXkLTy>1o8XtQ}>#;@foZt^zUCw*7;fSrL_~c*OK~%1``_W58Zf^9wY)$qd=aC_HURKX@?2IRA_pOhj zP|!DniRygk#t-*(F;v}w-%>pb^WFDo*xfu}BUx!&{ij4q`9lAhNhG}N{-1XPWHm5> zj(=8AU|p@#0(-~TLKcYBP)TuEVTq*$N{hhBuvlTEJE>qGTKN^+`tOD)JBPI>@AN|H zt9H9Bo<~DgXZ6L%=3#;FO;gO_(~aq1i>oSHR^T!Ls3;o;_wN^h^BJ^FHWGgyschPB zx@pU7KoVKQ#kIl7|9%gj4~SOScjhyOodOLJH#6^Vvcig@r91-ss01ObSCvQ(q=uyoQ#u|`av5j*_ep&IMGeNb9RLGe zL<@X3$*@_#bI&GYA*>fx`zjsC{~Rs46!%I8NW=FgCxhDBTR&c1X*qp`^`RJO%)-do zE;?zNS;JT>6wNy+{z;qiMW*Zvw5c{=74G5U=5LG!2;1j3!B0*)d0D&ylj9gdL*R+Q zh%6r>z8)^}1WI*JY;=d6e_CmY8BAOA)xx4hD2@e{B;&fBsjX=!m9zAB_brQRvpY2` zmpP;ci4F!cgO30zv2j7}XzHz1LZgTY4-=WudiT+SfqJ+m(@;mjud&jbV(WOo+PK@0PUpa1!whjog8G0j?GLpd z*Ms?=qE?6x_6D4T3nhcaruL8!JdozJIHjX>`nIq&EOOiTTP5~~TR)3gOjo|=XeB$f z;xiOm$AlgOe)^_IXMcZxw3$CE-ieC>pI75gBbhvw(I_JbXykCTTFDM$E+{SrrHV}0 zRxpriQ;Rsgg*VJ9H)n77=V^d{JGkQ6;{hVdSasnh(N_iwz_G++`Iehn=E#cGSp~8h zjY^E0?5`jq<78#M@-e?ZABQ)@`g?wz4!;FIT8!n^GLP)bAEhnOG3;93XDI#Rl)Ag2 zuuS%*_uZRY31;@!_GAfco2vP4YduJ5oV^e!ozQh@;A2m%p8LYeRE~J2M$f&(Zb5n1 zaD3Zj(JF-`rzxH_DqQ40q`iL!5`~|xjgIRjb*x4_2M}xR2;r(Dy2*QP@X^QoI54%w zUeW$L$KY8Xm&1CEd+*P_%Tu@0>3b{Y7mo>n{XLiiM#S!qBt~0h=V~&}kvcsvCN_+w zn3;yJX@iCTl&EDMKV_F?^*6%SwLI%3c#14n9JiFTm^LE(*95;rBb$raCct8v>D#k9 z-~rsB`b^TiR)2awABU!E6WRt^VnVoM9l``^V>J&`|J1+l4i zrokx3!5mmnR7q{~bKwclPk&zBNn&!Bvi0*YB4ui6(F~vHOad7&fARPPye2>~Q6V~d z$+z&QMRm$a@LdkMIa>a9dlB-PolgdirhFEmIT-eamM@n4waC#PZi0Gi1YIm?U(102 zTF?`iL9|)pwN%-4_py2LW%DX0b*}7qDTKgj6yv`JEyim;Ze4t2AihNZsklH8WD4-i zdo~ESr*0+VH48B=Cb)kJpp}1T_3#Z)7x4dWfq}#{O|X*%3)BTp@HK%H!%wbo>qMCC zUeQVM)s@IXNz5ho3;)U>u7(~8C=}3xbobyNo)sm1rP@>t!Hy5CA{hz%CmdET6+j}D zd~%0Y_C&WQC;EY;OXy9Dk{2u75Is*I^x55|s0pEXJ%JL76H^Nb(O>6tcp+gS@s=JE zeI&jItzFD9IcmkR{1fIJDq2yQ>rwTmPd1V^Rh`n#C+~{P^iC@KMO= zHv@gKED_e@C1E+d64vO_3!%mGEIvK|5FLx1rItmv5n=4IXcdfn9;(3OFD>`KVe2=# zxyuB=7$xPzv8IPZGl2LjiwMh1|9Y;GzP=z8Cq@Nh1$E@wX#45-kbM3$=U+8X7tH3@ z_o%TC;?wACfH9l7bC$JJd7W>u4h0JmX)*Hbtc^xuuXGWWZ#n)1o=4(y^To<`lOLY|4Asq#KFX5~3exf_`Y%a>(V6_v92we`oX z@g*(NRzBHh6D%~w`c}w8s0D;Fi%$%97|SQ9u&RnC-+zwvr!p<%TS#JsJXecU@c{&8 zYgr>Oewe35vi%UjFQ3J<8fysZKdN_-Tao3%^)F6>f1$zK2y!i?%?hMgYoa?+3;N-I zrLJK@GrOhkU`2_e@m#VD@d%u$K|p1G|GS7-rty=@(!PxU+o1Nc$N;RSoCJQkBN)}d z8H!!b4goyquJ@5#aIzvec#g2w#rlSqzCUngVRL>2iVj6I=LN-JlQ2%L!vBj#mTz1U z4mZ?;g_qzW81VmCl5|d=MSgz7Uctn4bm&`cUzqsLZkF56dwEUxGB@`u7gW@X+Xy3$@>n~U#d16A)%FszDy$LJNR>JaAc4_`n ziep(KROp0!hk7Bl8xj}|#{m<5(k}OOLYpU_5YRVA%iX8%592V*Q{munG0_uG%rQB? zT$zaLp~El&*N>^O!T4{MPi{R&g_z%#T{qCe%5cd& zKjDr-b+s&YQ=N*W4rra5AhEWCgiX*BlbYVOnH&QfLZ-wOFTNnhZKyTY^O8q0_IWfR zMTkyII>!rd+SO^Qn4iGfz+`^g3?7PLUO7fdOBfWQdb&3;kipJtW=JRSsk$XA{q{#F&Mduc zEf)Jz5lt?9MSs*XK2Ia_NsH>t5?){tr!DFZe^1x%AatX7!-gTot1IK~ zFwBV%4H^~SJ;1nG?s$-ww0h)Z_KTFtBpofH>6pcWT^hQ>bjw{RqCOig0d%x1IDt&8 z?V=O--jmYYJiFLfmyUVTf&xV6e76gYS-$ENYm)=%6y5r%e|N7kqeJq3`W~Ta1Z5Pr zBSbVeH)tq|?uHIAS=Ud^`kl%x{Kua{gZiybCc>8|Mg3hedyO%*3GIevV3+PX2iS1w zKh=mwR6yj5E1RC!sR6>%Ikl=E>Cv(0{;xOUC&;oc;BcEwXnnlDrf+h^ySUha7Jm2c zp3>0#r8?nFipUD+kGQENMjX?neSVhG6c2>)mZUpPSJ{u%_~oRYZ0)Ldt<37|%!kH} z)2tEd*Cfock6I?T53qQ8H8rAh;z5EN6`82(vf969M?IvgvnF#e--Ag2<{Y8CGA&4h z(Q?)Z7_@B=ldJW#6$`;WuY8eP9inK>aN&(uaO&FugREhwZ+ENrN-eV6Y(E1!FgG~u z5!#y~nAe*Hp#p=#0WO#Q$Qlz))c4A>Rhcq{O0`si@CNv{6E?)+L4xgs(dx`t_;azx z-GE99`=Bc+7CjWq>2i)=V1^N!ric7?XI`J6i3-z4Yl88oPv{dAT-qza2=PQYwP3mM zsFQs%Y7^P01=$qj;ByZnUsY1p>F*yUo;} zxR(OwI-9K??|bRj7vrOgDE#`d0*Z+b!t!PbTZzs8GMmhegP>iqHlqMcPAu45As+qSEJ^^C7VeHC7NNflSr38kX zM%1@RM}jrf$0BhaiAIPWon?~M;|HKIsv@~?IL1{y}czwHdR z^F40eP03kk$XRqhZXJNEDv7GMY~v^-$6e^>M$&k$?h5d(p?T6C7$Rq9SSm^La3jt zp_Y$PDnMIxPH9DQ_Y>fVe~Ywf@gRn3Vy$g$pwRU&?G4vL=-9$djjq-7A1_hQlNm#Y+5DB8?5wiI6o>` z@b3rUL?A!L%EQ8b<9VyzAS0;y=x4`6X5ca9N8t|}mum8~0RkO0<;PEtitu*AS($`( zOhTnZ&S>00mY3kI5lir?Qn@qA^8F@aZ}n#b$DSIZV#te+EZ^#UW5I!w`?cree{cj#3;?b`R_;zj00{>2Jv2eC2fLd5igi{Ia- znX3Du9}V(hJ|HsCi=@tbrlo3iqCkdayGe`oNXCyVQ2*uUL4NFp4e3nC^ov|`iQgk) zL*O%P@n+TR5DT`p)Or%Ifz2{!v59ukxqAQyM}Fsn@wJ$PUEiZzh#7Ck?!Y(6D-a`pus=AR>4x6N7(e;yF2>_^K zWHt&46%_2S2fFt>g3VR|)}?MmigG<8^>LPCZm=enaSF`|;^e zz0S?`b$4Cvw=v5|Cx0#Ve#c%_RiF&FVL{V5CB|aa(un+BlJlEIL}-}=s8}^LDA`)o zhxt1zo5G@ z>wauLP%1z=1rf5~Bu*eq>fqtmG(Xqa)w`?#4;#VnR_0x`B*6!9!8Db9!f1!JN)8|O z2JMB!r2~wp1JO83P~9qaFN(~~;+RDi&sN$&6<+TBS`YMNpy;`MQINeb&)cQ)h5}^$ zo~vkcOsQgZ-|BJk*$GzRI{Q!K9=sqA*>9S|Qov|ka(|bdoJh~V)t*J{NB@9Hy>SqZ zVTq_S^~HyIzLmsooS0lXxO!xyQ$`-*Oj5z;=>F@0ky?FH-WYh|5_5_A?ez(BVR61U ziJ(pmOPp$6l8tSq2MIe?l+RF>dnML;vTNDLKE8R)1a19-n>PV6v8l!dg8rxcq(ZWf zRKi;l+PPcF?AKHqlTJE!3}ca|--_m$mD250RLY0<#mn?9P1CBY2leP5E|ce6?P0`QPObkd=aabNrW zl!4>d*q3uiS>(>}c8>2sj-tQwm-p0kMR`rS3BK~L*V5$crQMDX?6HB8ez6vTGj${F z<8`V&=_mwb8Pp{*d85aBV?mzP!ik>I%u@7jZp={cA4~gTx^AcKyM?pW#gM>&qIY8p z%f>n`Uqm_=n6To}b*OUnRefd(3}*m%J57e6X-fMpP&5NBByYW$_p6%i%A=t(01kv= zzHyy(d$@7Q@y!BCwam0Cx%a%6Td)EGo%nmF%1-i~&W2RbmUS3x2gJr4W=%-fxnD&* zNI~}As75{9;dF9g`2d$@LbgI2xOz)VMRhW4u+dV4!$E53bqZetJu?{gh)-*+``hnO za@Dzlp=aniRE!nWD9#WtoQU^>NND?z*hsMQ=0XlvOpI{`_(` zCkdGkw=5RPgfEc~NiuXt+A*YUz=5_Mwn%(dw#vb-QHPtn5Q09d~o@!lX{XjGIB}u9VUBO6~JCxwQD|@lGj;(NTGDMuN)Yh^<*(m zmm6%sVxf$1XO*~xDLGIp{Xu8*e)N6e^ zEwQ!is5xU*k=XG!R;#ihn0ZR8AHdp@?Zi`)fa6!24u;SJp?%`RW%fzsnWJ`Coof|? z8MRr{1De*|%ob!J)(8g1(RZVhS~cPa=RgfnEXlSvkWF8G&KP1hZ*+prZ9^nBUk)9l zqb@#2q_w8?GdaR3T2l5q>FknnZ@`>e(Ia|JF&9y%e_O*!L1I5`vEdOYJ}+XdPnd#B zU7Cmza#FG>qRROus9@Zsx{jQ4$K`E5_08u(;!?t(S@Tn0zR&%%3axz6c4LFTvBNg# zn01!5GOQj=l^VoY&j)*xV6ad^c4KpnR9pQxTKF(uHLR07wtlmyD!rk$P*|&xo=-kI z>%8DmE(jrf7zt$A-(Zv>l}M3t6tF8Va4c;PWnqxo`4E=XV#W(l=L78eM6L@EgD~%r z!!(%=OL4|k1HVq@728R~hz%vAif` z13(NJBHcsnmLH(!I6$8bevL3iN7;ky6^uXF6suhwYEFwN z4!f2ynsha004Cd5fp|5BKR7;dA|E_X*D2OKHl1CjytH%>CB3%Xv5JTr7-2J58Fu=UW_?E>(*L@N7S<0oaS~2<8L>13(-ot(Y z)gkGj{p_!_i4ctQLfCb^?>!(fQ6lCn%?0j$e#{_*NvX&$iDK*DqGZ|efSV+NITS@- zSiZj-2%CqiK7}?Xq8k|E`{6`$dc4woutRX7XmT&>imjg|dD~0un;-l^4EtyEM5C#WYRp{&EtTz-9#O>f@(3q zOY`5n4qTE@7qaCG=B0QWEg zN!Q$VQ50x|D~6ZyaD|)3)viuFYk84_uO%IhLmv8Gq{im(xOD|`3C&^DnTO5VxeEPUp- zwnoFC#=!>elC?iFYjp-xvLYFzdzCbr={J+cc)y}er#PwiVKzQcbaFm%=wUDXl+DA4 zcz;Yn2;QZ1zgIAy6xuKlfAvFB!jA_SM$3mz%HsHB;`XR^fyzYF;u0(l-%M|DhL~t5 z{Q|O&%=a(%mu$OOZe43BW*Kt*NlxG#xT7 zgH2W`tv=1CQ@JlURxkJ$Y@T^qIn6utc`p8KptBtsa9Q83Rwd)5mFV3Cs01FXh2T0^ zNO}nzXVCLFN&sy5V1w)g(K@@C?A+|Aq;&sY<$Y9TBZhqUHHTdo`m0AZ612YbmbDzg ze!uTqQd?TnavUmpos`hx0aKh}iE`c}ABVmMg~k-(W(Og{`w?KoOiBQd-Zx&d_KVSW zWG1kr_HaVBU`FueSk+3Sge-&rbytqg!l>hwMoYT5qQAXifQt?2h~e?@e4U0&Kp3%j-L{o+jh_5~eja_Dy!)dv$tO<^m_F6snqbk`gMrq&8FUf& z$;caujnyKu_sSRsbiw`=l;~d=(6pL+SNa}%q ze~C58lwHhBAfB_}yYX@v8`Je=YL5Ndaw7fhnaj8JODAjy#?vpG19bBO9Z7LTRr(Eb z*%QK;l!Bi2E}rez4=M9@unukONc`8v0gi{lz!}DbvI&u}&tYuhu|HAl_8X1{MkgsX zxaogkxRKc)>1anc+@C_(lp6KvrYdzdEETnPVM+vj9f!7H1}&IOt9l*JNiifO<5 zyDyiN=Mj}@DTW8;jZJDF3on1hzqrl6ypD4TT98S<_^Ir; z!!bo`zueHd7Xw{UTw4BPa9_r}?qxTau7{kO)EhKW#N0))$*30d?6OnQoX z&KoeZWYz0(Fdm9@%w2dHL znjcUX!5+<~yO5HFc(>M|y8^wfcGuwE2|u0x$Qj$1eJQ*G&A_UL3FeJ1CMEhV1bN|4 zWe!UKz)q3ny!*KxuGftU%^Tge+~F3i6QJWfkEtb0$88^efi6z5hXePFX?EgpIU+hg z92QAQAh!o}B5fF#Z~2=xPRekD;-W1w%k|c6#E)getMn=kPmKegUwZVi_%_4rMV_=7 zp9O=hL!z$8Y?KxkBT%DwY?f)&Jy8h;rdPwH4b+A<dpPIM3JDg@B+0F`(;3R?yJh;4MazrkLJ_(zzP}z}5O*|86qX-{&eTKTe$wq zIL=(t{O-2_Kvf6V^+py}G6n`byDf#LOugmN-=I8&P7>QBr}pu_FzWIE0Lo{$PID(1 zhKFJq&{-Ye+Vha^icMkL?zKcoJe2BS|q+AYuPw)nL-dZ?;(3ZMRD&m~{8mb%GX zoxsgVA)#JF2QJ|y%ccE=M|&vJCbO6MTLACO+S^!tvT|Ux%#m|CgdV}g{^IgFN&}PE z{Rn~@Q+B)JZM`MYikk2>s7F=9a z5KEBg7pG+dfVSQKJ%#1XH5#c?`${d8=SKp$lm35)aO_yY09i+aT=R9&I9*`NjJAVY zEXxyJtI@Mrv~Svz4U*EYj_cj>~m@KJOY(#pqy9CUIe?M$@Y1C-^QY#^IZbMHJ@0B z&S6x(ka{jGh&Z+GwB_hP8a$JrIBQ0SD$rU^sQL0lf=mH&?sV96XH>;cP}or|hD69& z0a-GU1{118g`$w7sWTS4Yv%!3>mA@XGyY@V$48xiFuaDaqk?SV6 zAy@aaJyiq__>bT6qeAvVc}Rt2WX_e=NtVRhrE8iG%0;?-K}zQN9C8Nn^MN*JI$7Ho z)9H@C!4T_1_X9c~b_TB0Kq|b-P^tD;XW#!D(Q{L3jX;qtwVCM^m8r3@_IA*w9bNi7qrOpdQFzB0MMFawyg zhiCA!+E9SIz5ac2^>E6r<>2)@P?3);B}P!Qa)uP)Iy(ZUP340|5W@zj2 z^$kWwa!X08_+id>*C3k7SM@Tmhwi+;b|zXLAS>UA{m5$`L0oIFjyNLv4OV5}>138` zB*PVRFl}jT=Z&Tv!?X^fWzHjLuT6A0=e(e`6PVNK^v}o?P|#uWPQJfJoGj+RmAdN~ z>Z_NnTpeWao+fIgSm0ZA7*ao=y+?ZHtU*UVUTHlM2BYV80MYyOPIYp1_z(;Ah^lAU z6OVr?PSxsg^Ucf-{YlcNc~UOwMb=kfE8Zv!u1{!s6fiLMI%+yP2(GeXTsV-ih$2c? ze>A8^cYWqB^Tm|w6JfO4=T8c~P|B{w)y9-u)x)T&Oang{o?RkGCaw&Z> z(W13p{?$bwDXCJLw6^}KHD0sWqhKYhn5vq+N&D-E+T@U58dUQ>Q!a1u#G1O8#0mq6 z_M-F9!}RsPuw2qYr(E>!?+G@W6~+04@vvoE{u-9k&lX(~40p3b-h{4sz8F~Q=bp$B zFu6>rT_IJ6gJQ8-%3&8{H0_CY8Neyae?7jPW$rCoX~kGK6qetJoC>B}lw=~UHC$0Z zF;_*Y7IkE#PwDHLKOHU`Mn=8hul_bh4wJnG+mPTd=&ArYHP2Yn#$gz2Kvw)5*7r zMRcK4BD_lqiFa*hWh)2ur7r{j5hy~@qJ{~J;P5ooPeR#35-zwvgxE)HxZr1|PK z@iJPZivkR+_Ry{<45-fyqY~43;uYxH2n;F*WXFVQ7%rK_Tek!2tAh3h%KzEi+Pe*E zsr%?58`m121B>LTcbkH2FzuErwo@5^?4ykM&)ZbdgN1M8y)PAlKR@iKG+$7fD`Nxx z38VO`(x&r6rWQhQ0iBMN6J4M6{@m2K@EZ00g!{IGqY%Bx(Q*eDKy;oX)NZPlw<+S5 zEe)Q^xs-vy4I-g|3&LiFo$X8XViH`)vM}>l5DxPNqqf9n2pw#u=}={?`^u>FTFhf& zSkRWLPFP}i9k8?@FEdVs4e9hUGHmA*G{W(2%Q**9xuJMPS|0=cf#5&qL~A0*%X}lC zFZzSKc~o$?RHTMQak>X^n{yQM1~*V(f~za4a2x3&1CO-xZDz>$(3USi{W0`~s`Zkp zc5N(|Lya`_+p+9AfO9w*;Re_HesqGfh)_3DX?DmTTm9;tW<;Y;sWmm55!rv9`MSCP zI_--CcwdQlnU|1^4otuhxnB6?Rvt1;n#7%ezF0IP4l=dr4uu)OY(2(pkMdN#BTR?? ze610d^4ogtLVm-Hwsp5%?Brx0x+egaH+{}J@_J`lw0@tpkG-LhkKPR*NF7_ltxh6d z`}dUKv&IXQvutBEyk6%2c;Ek631D6gNZ;ElK}Gc1D;zjuQh-S0B)>F@%!-*|_O_e3#*r#8A| z4EVGqqb$EpB`5M0A_6{FsI~plt=ZuPXZ_2C_dnL)Z9w+1w~?&f^=XDzrkY^dG*7;yYY1`dFi}PBOp$v zW(#)&r}Ds-o@ey7ol=ZcsY94EgkD>ifzeHe{VbIynQ4Z$QqT3|&Q`(A{jFetWo=Fs zDmO4{2NUnDaJ_A&U5$8FO+v7&q9mZ+W93!LwLeSvdYj%RXq8wPmYq%oAT570q6`Ma zRn9+ldYK9S5YKB>i_5uC(-BW=2*{h`f^A!>b+m+dwuZ~TmAZ3mOYHHX-}t;D^rp^g z3(IDlaiv}!7{>_E_8Hxtk?g2;ycXI&5J%F-wEzedV6UH=S65d@lPZ><&imP3Jgegc zTM|GeGmQA(uWrN+I{kM^<}s~#-yc^ue=jqK=@!10FBOpM0H$G8iG!YP9$X44cs zogu9Nao?AT=(Gwgv41P0|3>oTkC&tTA3*JA(wO>il~hiL|xKpIH3Q$M|QH^6n$9%3VVFUa!v8+;QFjgO}b{ zVypd!*uCUz)XlVW(rcknV~?k!zRO|5qiG9Ftbi;0dbs&m@?iHSSVNRG3>UNo9oJ{D zqk7DR!$bhUH;5^HJeoP7UI|( zz(bkMGE-}D!CoCsv$6u=1an)%;(}O8$Cw~)b_iXhEXY!>*=TY&TzCU?TjYbi zP+qN`NYW~yTB*ePTGRUL2OqpaURp7KzsF85c)KgaiP=K9T5Bo`=_nLb-tm;y@vZDl znHJ0NN@Mtsb+D6OlsBuZBDji-N4dAd=9o{J?4iMDCgcx|ZKpr9cOIX=`^F>~uE*A# zE9u0WD?Y`WbI=Lup1*R(g!8tR6X|_B|Noqj0a=0P(E`0#(!4S*39R)Qj;?<=Z=cQYiGaU5V%lz*x%9~5j ziV0W^K%pJ2a|6NJC!w&>{e30#>uRV_>LhpZ^2vq!$2e1)l!Mwb@3nLmdFxzQC*r#4 z6ls@ROMr=DyAfr(ONTcNR6hbkzRlEWhbhhv>##ds3M7=_FP7#T8^%}Gzr3_}xMT(q zn>mMvu{HeveS(6LW{?1^I~US+9jwowJ9~V?@61_`UswFWk9TY{g zqU}Vcfr-L(rgT~8DS<4ixgMmQ?O<-^-5J!{iMtD5%tcK=uY@}1sQh5X;nWBCiku-e z3xr#J?AM1MhP~t-szK$=G`wCh|Mwxv4G9_0LEgga)aX)$;Ij}LX9f#+@}YNYP$AD+ z$G2uyyKEfq4i_CAHAFX8XXZY;%VI2?5xNdfxd18WA6U?ybgcexf-5r~5cQ>sF?O|^ zy+97MbEbu8B^ioqJ||NX_8JA*pnxr78_%(w3>YaMzt#93KmE_Dl9RmN>|S5*1Pi;o z{gD#Fk#-7zV0c4NR>4!!c>AiwUclhTRKpq9TAJccpCFsxG%~X-!DK5&rKxyL^iXA- zoVI@O^t^f4gK~m}GpjhN$$3G7FGnG?ca6NWvNJN>D(Cv+n7lx40fdKt?n0U(bPZwdAmbcA{xm;; z@D=is>7a@EnFI4B|3ojZN2oHPe`6Y;Fdxar%1hw*SuS1crq0=6RL$n40jCAlI=4r4 zleOdOChLK`bnmQtfItJ=I zT4l1p@I6Q4?5pX!%>F>Gh4K0TVuC@Sl~uJf)c5OZHE&_pTAu(u)8Iz1&Ce zs}xgZiaLB1Z0;Wk>NYlyd*&O*tU+`q$2lq|C7b<$Rf2lUr}3T6K+%*X>Q z93CDZ73=iX_zWb5x7N1M;;pct@FvD!ik2&#S9l2Pnmy;B2xOswSY82{ce7ovmxow5 z_rGADZ?_5LzLyFm;Hq2El9tvQ z)@b79UIY0|J?mqVi{&c;*;&^I>d^7?e)#a$0dlW;S_b5apV%aZou^IF(s)?_A;8tJ zcz@q!I{2o}GlFyYN~)iIo(Yus`%Bu#-&+2d*dPC&4E@i7M!O+j@3=31;Sc3h-#}Dw zjek?;Qlm{Z$M|9ruSdwmg8C540ng4Am|ud~9p;?8;R{f*cXKqLyBxKePl2ViI6j2| z3=J1Y5Is>HqlQ;j80Rg7yn`dLAk@BQ^k3iX-ye862wQWo5J&6Dy05VUkB*>yOx<3= znLvVNa`VyRaQUYuUR@ zLpsMsWe1=zzTtUG^y}#YLyaqStlE)mxp zuYHs))4!%M0Dxu61FyK5KifJ36wEE@zt^QC+&U-izr#&%vN=Pn`Yts4#WGUhq9yXH z9pAWEovLw~11pOPxpR=f+5W?WFiP>l5#rr*AMlf-g|uEamc=j{SUo>j_64V?y%|uoAI>n0q{9uz z^aAy1g7r(bA|=EF~hp`+*~2gUJcz+In~@jIW^z$hKSx*^>qoOCDgOoKP67XUHo?T@OR=iV1BXqaNq+~plT!H@H94oWjdcG+e9b40gW&3@jY@V4+#}-BU5SS#oj>_Wf#OU{D~R_?ZTyXX%6;?A1iaY9Ao_{S#s;kwYnAoZC9CHEG6UG*~Mmb6bZYdzE) z);dft??MMA?audcx|D}AO?^IL&5Y*d4iy;LCIt<@a>t>Qt;<}PeYeVFK;D8@Ujlg(2z(|q{MIjw z2%tS%(xze4=Qn`h$L@3yM~L+TRvZnr?kzz$v*o+t+A=|AQpJ&uiUl&;d@~#A@gqY% zh2K50alBti;L}Vj5USkAE7IIa&SZL_rb(abK8K~&qVd|xga>x|iD*Mo*(9eMr;dgWU06YHza zeE38V{uN>1;9JrA*#C)XO=f$H7Z>B9k|&@0B2mVC+5@-A>gaEV{qg;|M!2A!9d$d? zP%@ae*yd&xUc}s&Q#%^0C}#;R+^sbkK1-CGW(G_V65&xKnz$#+wI%r04{BwHPXL zB4GsM9;s6YS-n=kGx$;Jtk$uf)F0kF+1_C^+}R5{i9-s7o>iNEpQ<&nGMd43i?ZPz z-`^qj*>C0EVJ1QgMtYN7mSeW@Ybhi30x=c!=&N*x^`A5<0}jbZFxMRWXKRj~85qEa zCo0*iy`9cxPm>g1f3YBnVQp1z6oO-u)D`094P^%jWUyy#gzuMDnszGH6ih9G|&y_mDtN3-svFYirC*7RthkUw*}p ze6wr7#LZ<5q8W?h|Fe-yh#M_5O4oIssq{L(h0FN{jQb&74fTjFV6hA8`=d*%{uwJd z9`@8uRcf4iMk)?`L?n0EbQ{v&_c#PdOXGHt3UAZpNf{t#Vg<;DAhLLugt!TH;uFk)9Vd%^VSbV>KIotibO~}wXF8Yf zNw(Q2N_&H%Oo@$xVm4-qjG4D-Uvs2mep?t4B?OyESjEi4j?%|5un%q;5!ey0FA|zh zHIQfcbzodgB^sJ(lf@bBryUO2Aa8U5h`gb^2!07vfy|ddD}H0Z%AtF8<(Ope6&_B1-lm-0YbW;~BZsJpu9^T^%V8vs~cweP_l^3}+fxQV9Q zr0$^-Z?fZR)Jm5{%uO)IL+=rrUF4!QW;BMbzOXOp&?RC|?FS|*D>eA-<>1Q)ksK_dO7Gt6qg1`<@4)wA#4Q4p2C5&!@;Kt}WNmLn z0C;fH(Ih^c_0JEP$hC683^DQ(3fuT!7gkK>bG2It1d%U&?(kzg<})N`!pS6C=)%Zk zI1h8I9vQI;e`?J$UlS=;EofT$G0_#*`qz^pNMBylt2CN8sz_X3iLq-_a=1opvQOo> zF5FQT-a9o$G|pGl?rF3$CXf=yZJQq+7dW&OvM_hyAAOCx{WV)hJL5=4gsBkLA>^J} zPp^sWM_%gRBl4w&-kI|!-#Ft^voP1SJR#_~<@od5tR?Z`$2~m@1N<+c^+>>&E)jCR zD%JS56t*XH-#aGlWCx|0gq`7`C3GX5N%KP3Gt9S3k1lDx%}3i8Ou_4FLtI_$)Yjhy z{pRmKH}ph;U9kLwBN>_8@2I}ExdVj#a$@}?-W|VgjUjQ~CbT&K{v_?r|50uip?)ww zNmlO?INcz@nrgVf;%ZBX9ybWg*vj!NG%O%f7!fncW}nj{6g?We)m33m`6Zw__oJJ^ z+*Vmlz#mZX0y0C)Juhj_?f7Q`0@_{MPio%9()_6!c#|R-DM~C*y0qR+Ru)DoWC;lT zrV`PJ5A=<)!Fh1P)X|Xnk<}gP7n#ltsOZIc1Wxt~*B^f#AC&KH(jliBo_yB_s+Yy{ zA9S$&-9Lb0LF&JN;u|5Pw| zPf7&glOgeOc2DeGbhe1*4Ha?8LWpTwd19>@eKc~%s;mIQ{dadzj*+gd8kr|Q9#tMV9AL9>hmQ0mAf6(R7AzlIcf`>AFK`B-I zD;lc+N|`7sl?p&9=TrA-6u2T~RJiTl&IiPyO%(rlw@|s$wj3`*E@U)Ee9@KPGTe61 z@*dl|XhH|hH39VJK{t^AWiP%!w=`RKm~h4sLUz7{r01@?p2k7Q4RM9)WCwi)JJ-93 zm1WI@#I8(}jbaa6>ktO1JXn6hT_t)$N?aRu0yf&qGL*dTQfclQ!sjjC&LQQ%4f#@h?|Db=OT3)Rxo^qia>U%#Af~pK zx}zvRkA8jYEEh$!@C4@NH2s<=VNR>sn5)kV)Tq z6UhqA>4yipik&WZ0Yb+NZr7ST&&lnFK?MED^zK0>8w~(%?MCSu<5Hvl{&&ul>Ih?g zcu<#}34B1ULE;m^@DO#@F@AYe45B`#fwa|Y~1rFC=~IOghdi6XIbq*A%`cOK^#p4%MwB`!P_W zpLlwuu{e!Bg{#W56=M-Y{|U{<0xdB#%19h{Bx{YOQjV4BBX072ueX%QwR~yYhGlc| zyk#gXKk+7y;kCy69?ks~k#Oqtf#5Qdb%rWcxv4N{Mxs~mJ3DQE*RPF5+qi;MCA2cy zSB0w5T+#i}-CF`nvwYX1&Meh@mq(OQ7MqW$`N`j%L>4*1&SGe9BZ8+EQ6hFI(q_yl z0V-;=c$@=@C593JNMTiKv+H3}bLuoVS&=6e`==s8!`^2DCngY zzzn5U@BT*f!3iTB)g2+Xgcbvh4MdmFb#7_)rDX{)fK0n@*R&w3_i%b?oUgB8jdm1V z01U5Ic(X9vUlX%U<@u=p5~~#RwU*1vn2Y~px-a*zN26@|c{+@a9ra+tNtjElwXBLA zRSy7~dt^SQ<7ibE?6zG5uS7OQZ`4lq(UD4hditjp@B)tJcEn0*G$mnrm-YM)e0pqx zu5aWY%=Er78#_iL|I$3TNEfS;g zRi?UegwH~pG7J=!08G2@XFg@ByU4#)4D?fOZ)nCF<$OM%0l2fH0fF($~tPw)ohDu~_$op?c$IV%b?V7b=&J5F{ktZj<%I07}s99yls#+ULz7azl<%P%EHJ?fWGi;6xC+ zWf7s1!j3K8kySKWaMBiKho6BqMR36L8+bM&ef%jovEjb(lK_NkP|;nZ{d>ue8a2N2%JCl~b=vwSy?7Wf5jVgotu^OgQj=7rN+eWa@5 z42l(8A8wgEL>9}Cs02JkAD1tjvCBLh5K(I*eoN7C7Z?`KMC!US#=AAlm3@B&ufMqz zC#Hb`^m!yR$YJIn!sU1$4;6a}0u(kF%B7%{VG3!?Kk5A@zR5&gIVvogP$PfJuwqATo zh>bH++??>SKQn1U=+d!1F7avPYceyRZp99|OpdHOM@n$j@gB1Du}VnxLSgnV36|v^ zV(Ly;0Gsj<1-mgBWD;(Mc|H^#g|+lsBmV{B4?snPHt8R+$rX3IL5AG*?zR*W!*z<( zGn`d}yNx(5uq|Q`nWCx==Mf%%J)bN$d$ps8Dl?t^n!;YUIQqQI9gWAL(qQ?MC`NFC zc4!41P)^lL6B^`!yXT18Sl}k~%R@^LLNv*jWT}H- zelk4j^PHXfFE=B`os%{o$btB;XMgDD<5A{*E!|Zidbcfe(fi@la$7LQ*GMI&zBI1H zGm4Swa(?+e$KrMf_ncXesQZrwJt85|49x6MNrrUk5Y7e9?U8V2EGbjxw=5B$yZV#OqR*AR0BohCPtk3@o80;mr&*t zi`JJaiGVPdFS+JoAjlfThAAGzD@vS9-@(G)XZkvf+hp^}Dp){EjeYq%?tfOJb57cH zJwOmC2D-)kiuJvaXdMT)`Lr7%^>9lE9e?L--!ola8pFa>(8*-N;6(;|yv~VKZ-yeX z@|8Dlkx@ZC5Q{BeRoeUG;1eB@#3xIE;U72T!t;j7DT578HMmR_sluc>zohRg5-Z#w z4Lr->=CH%|7|Nlb&`JvT^YUsiRBeA4QOWFpR`XoGBNb$`#+@!z3B4uSEZcckTb_3R z4`SOI_sus%5j1&qCMKoRL8^~6VFE*R|6tog2be(!-jIvRzonfT)$pXB$fY3b;Ts&L zq-K|<${!wzG>{QW-uFa7Mj|SFUwq9wb1Xc}FcH!7%(6_hCHqi~W4C#}$cX}R1{#!j z9ZD8?ncs$&A`+yULUxFu7e^DV)A98(8yY&2UwbqN#JgqD>i_|bXdEGVMHwq3@4Mfy z#~W)Q2JQFj%dHPV{<>+T(YwqSefcNC6yu*RQmLhg=u&V#0%AFzYJPQF>Zagus$dzO zJ0AZ)Wvt2b%S4+zLhEYB+lZwd_w_N0HdwvFEp=D*qg}KsrSdfGahHX2fToufK46K* zo-+cH7=FAJgKqWA2NOvkf6=!2_C*yT?ENJit4D=gp>o*4NTrmZ{S(WV9C!8K17j*| z&1qA*zf?Gc!n@rV8c-C9gwBrpzGGu8h4t$m=ZhqYxF-nt8SG<6IJacM``iT|=qBTj zTC2p|!?CsZz=9V1YNJilK-HZoF(KDkZgp#5q2#cMJp#&&CWfm*(Gv>TIv$2!^O7oH z-3Z~=P_J*G)Ro7By1M%B*+Nc>>$OPXx|}*gcp~#D+arF4pqm`Xpz$GcdhQdVai2Yc#U1dJEs_E@rwP04y4=*Qe`i zK&!k!4fT)*p}r6W_0eq&=k{X*52iLf*Dgm*1UGnuR>kgQ_ynQdF#-Cas?hoZqL(Bke|+}+(N-l8pDT!XuN zaVI#G;_ePFbY||Gci+E|gfCzA*|PRp`<&!PyQ#B6L+u*XRn_u5?r9O1lsM{m7du)q zZUAQ(Eb8?j#O}W_XfQ~?l_;s@x4EfYi0JR-_ETcJX$=BO!$@X%T}za)Hv-QhD3_4u zN5vkUa5-*pbEN^;5>(kMizOPwqxUN!FxTA4$>JMuJz3y={@7Qh4;;OZ_j-9pEFxM- z67%Us%aOSl*x|Uw-58%dB=}X({5oYxF;mJ+Sl=^OtP=2iBkPC5M^-28+bcZ}*#}3b-zqqhW(}QtWL>u2iezz#F6~!Y5 zBOLAEwELc}| zj(LYVkAW-P1$elCzk9L^Q^_}IQfCqs?GoszVsi8+KI>)H`&R&if*R2s_=l27DyU)a zVGMl|$xS#Oge5z?_TZcv$OgdjB>3>XYmymk@YqtY5KumJ!~qV@$jp;~#Qk}BDMg_REph$)N(ZDRCc z@sfL6PW9LFH4f9$71MhONy=CH5G~RvIS)eT$|`rke((LB)}O1-pS-ZcC@bZxXG(YCIuQ>X*cWz>Om$W5=YFKZ z3t$(ouymd1z4`fd^)V>cc_z>h#kMe3CwK1jL_iauLCeY?wG=D=u|c8Z=6-f~KNCL^ zSBa4v>b|0tSsAKRPd3s$VVLQa{o^xJP=1%>JvK!n0Fk!1OK%#z3z z{1C`y*CJFmG6)&`n7)7mKYVB*r2gl$ai`sTNBD!nqRppe>q%bOHHMDHaVVH^Cz@6b zB2xZhi0eC7glU5d3RF4exOXLaO07OqZ9a z$(cB|q|>I2C_pD>kuK_pA)B!+a-yPBB1ZevF>yc_1!~WY2?h2%844%66B&>0*I}eO zHAAi;%MQLSXQ>Q2WU?qEQeKwG<)#$KZx1I3&87=AExc$V8;9r}BaCEhC)lZ%B%0td z-SoGWPKb*r2{bb~GX8jlZ+9Qu$#Lje<*z+}bqCsUHC2zR4 z_M;SThym#Di1?9>h{Z7rpvJPU>=Cn;Qz{KT%r6n<48D9SQ}!i~%}fZ$`U0cmZrErD z-dp1WGJzlO7sqI&LD|URWVcmChnaEcDVEs8m|!F*ywvC;1P&sOaj16?6}Nd>3&`=? z%o6ACK7O>U+u6xg08*577+?za%SjBL=Oe7q(A2PPY~lpy|HB2S<9_PUoz6NLy_HZ~noWpuldwf`vk?pdb=nvi+@?Tw zH=Mv-YOLSC^Cm243+nFy1M59^CZ_M7GjbtdM|4FBKG-QXqBt#`CGeT~6@dhhOcEi6 zXORVb&Itg(%&xeHp4q{Bp`jW2*pxKf(1e6?A&L8yUIC8~-wpFBrVmeT<&kxxM#1US zNN?t?W4;vnnS#8x#h>S{3=h&(j<(QYU%gqgS|k~9(JPsuB(^7Kr?6gCCy?L}kPT(d zo&O1V$e`2oV-Y*h-+doCU|;EQ{7DXB3FqNMOD^LJlf0f|XqwKaDD1=9nZ1^wk>=@q zT04EZf*|iN12gO&X2xc3XIEE}B z?(0qwKL?7l9mN4LcOglhxL_V)-p+D2sl7K%f_t$U@S}p9%1z@Itq_`?GCLh&QLwzN zMd+nn8|#Y}(O5tAVd9Nf&DW0C=sf%-vp3{+Z}sk|8MKddGttY_ByL8@RV?ZO1|qKEy&do3JRNF-06p%?_c%8mT>fW=@K^VcYo&qbSv0z%Kloq0;$UWPzV_Vkb%qfp8o3eMQf5 zC9yU)kFRj7uChX)-N#nEZ%#=q57xUA7>$kE882TLD_x-17usRJ#{4YYcAuKW_iJx% z7E|lo`5_yuhuG}T)jEj~j?wOn-OW=fch#0)A1s}m$Cv59qM^lcB{jcV`$YOBd4~a@ zlC?Q{?8-xxbux3}L+Gmg_L|@AgP=n3%ID{|ci*#Q7j8}{l-pQ#Gk+-04@7ypi9dML zi9)juoe-oe<_A3n=43KPCIz+%onPr+V4WuFl6ft;3}mx zl&+aJLCqt(S~t>I5Ry0NZ&pFPC_489F4RLJ^Ktl_CTw1Wt+R(akX$qTF2Mp6ub zVij5c>?JRN;Rz{xxD+xSXP2ug$J%;$66$k@<)?%*^*DYi*ia+97P9Hh+Oyh)*A&&# zGdB+(+T0LwEm&_^u_b}m+59IvQ*c4e75_{m^j!X4CrU+3ak;a;14I)b3EA5pwb%(r zE-IY*@Nh`vF5-Q~qH=rbh|mVs(}p*RHHD3k=4cVb_J%rwVO3%h$?KrRp8&Zh!0=O_ z4>WM>h(lBJCg*bd2i#4OZ?OyNo&tEF7QG?7gV`4xl5En6;^a@zIx;sa^F+9!z5>(c^O$|o0P za>W~vI`gS-&%?zh3}g%QqxmpH#{JszRuocZHwk)MKGB&03S8_^UnbKs0rsxbL`$Md zRA>Gb7L)aOryisQMG zMIO2tZf~qH<^}}gt2G4SVcVzBj{Jq_;-Xo=p5G9xC!gC#VReNRLbR6jqnw4o!T4RU zS39zntxMcb;+6e(fpIZj?a!15g;)Z@k}MB|$XNH(%GF~d9(+m%l3fbl;t*PLhi!R< zE`p4K+OtQB*0Y6K!D@=C`Ib4cIg4L^W#QCqHBGS^b$K7H&kGVD3g;Qwn-}K0Ik`;P zc^|N_h%vI6z-66_CXIk*R$NT4Ut?tXRg9c=U-Rt$$(q* zUKP?^&W}+ZD{@b3Sj9f=GWP-dH_bo%IIoD9fX3sak&e)mqKv=VSY&9X4K6lYC51Gu zNkd}QfgQl;_o@6lfvVS&pfxq6G#B7cJGqJO)2@h1pH(^oh_1pmVlKlio} z37w%iU&66{_eajF8rJJ%mM>-`z7Ej(s}hPpPj(MH`QI_bc}Hub);G1q zU)}dQcIrhe-Fb0TPFf1eHMa{y=5P&%>ElOXs%0neVq@4X6fHp?9r6y|Gl9Gi@D&av zEl%lNcKOKhSBN%igjUDVvSN7dqdigk?Cl03=AIcWcu|an_hJ2UeTco9p~0mpS+#|B z>xLE8Vk=JUbZCXwbq}K(-#4l~gZ9(YC>>6zx@g-`LH?ZjoxpEcXYBSvF3hej84SBa zCj@3wj#AZ`49(B@!7V+7_2m6_66Y_=0_&F0>GvDPDEE{EU8SZ-qrYniWt8fNAz&I; zM0dkiCftX7Lde@gQ~(+j9xm>ew^t}X4jF$$Iuws&a#>TZwIRsv0SKn&i#G{85v3Z& z20(U0gz^Xo7FY-AU!Bw@3D1o+n(#_M%Obl2ZEQwg_*viBTll6uuNuM>r&=$dF)MO^ z{=TB^8=$byyRi#=QiG6yeUXY)-chxFx8DlW_t2VbvideMre+vAG_ok1Ht1}_8(gz= z!*lm34_nW^dWrKmZSlg$r^b=e+EFO`nfnn$2X>S|sNbO>(6J(78yphd^iPzy@$%Q< z^A~Y^iaQt_Lr{e@Z@?qZjzj8ys~=?P&2i6r5ES8FX=sw}Y^TR2>EeY?d6OY){Z@Lj zyenp-V3m#hzC%B?+5!-p8NUKLzW`}n(e=16T z<>SRf5O}|Hpc397zPRQIwXVWt_v`I3@rWuPDgRzp%GHj;!{icV!~8^HQfWH`pAhqg zn=>h#tNH-nn6pRR%TH$+OO(gP;QbmQPicGQndFdA?`(ZJp7+J`DP-cR69$69l2$<0 zeRq`uDPx%1#XZiC!ZV(D^iR7$z&J~>agA~YP;X6Qq6*+pbcm|pyZ_tnkf=VSW0W++ zUI<1NRV19_=hnm#Yg*8biyoRQ?>dpLfslEG zr?mbJD(c6La=y0Y!rdkY*zvPW!n@|Q?G9>=>pOY93@krzu+hi?J;UKl1ZM8maxaYsyE(9G3jjgdt9eI>pm z3{VlcaV~%nBAOvZ`ECmFxyLKJ`kq)`8h+}+Q+!SR&ezqC@G2>z0!w>8pNC4knqM#YcLA1Ex~q5KGlgYsbH>kc(I3$+!so==ott+K z&{o2Yy0b(&M_4BoF0`6|9}|uYt%CBr_2rjo=}IPY{bZ+P#lhLpL9Y`%VA z$N$LuC1>1ypNrRFTNcH3x1bFVZGROx@B}>QkT#F;?idv((w~3#`IzmFYYjP2cvKDe zMZd9~1%YbDx%lx2yB4>o@L5Qc4Fssa94hvZcdwWsR*_8Vj@`qawQdwZhoO2bNbw?5 z1fpNLcFcz%f#W~dsr>bP(&zS~vXyC|ja5!2aM_*fti<=Db;{rxUG;c$GKV0>JIOX0 zNeK!QD~$dy8*!_b5`}SNBS|qE>2oMqQOGEqBK>SSC~5W3mfRYN>$r>`5U_Od%7HaX zJZujW+=tDcn6Sfm@5>ANl$v#q6Y-3dy$S`;=#(Z`@@i$@gAqjlR5F#Jx~R^0rxvJ+ z86|60fdo{(fdK&K7pBXMB%X{FT+J5 zJ^!BP-I(fofzR_fSTp2ykGy;uBJ22G=&m-kn>FmJuy#HhX1V8mca9Y}5kF;IucZ0U zma5E>y;NpD^r$G>r89gwAv%z0Q`#r6Q3?DCQXM}gSlKy_%5fIQY?t)cXEG>>ZSl(G zu7vu9W)L%*&$xh=8RKo(t>8pfvPFvvQ$ZwLlp_QGRzFPoONejQ$!t@zenynFpLo_e zL-}KobM54WR!O;)ce*jwxda6RKn4mM&zI0hxn4c&QV^#L+PaIc%MrE}ORyuKCbzy? z94{fxS-HbNIsQz-y<))kSaD}t#9ozq!;{wTv(vG>X3-dIk8_BZ5K! zO6^W1%uajN4#8H1U`Ma3#vWAbrRjh#8a+vb;Z-^|$u4d~@y}IvYi<(CgU#+AJdC5n=+$Wtbf4L6?`Sp5_ef-U*oI*WWH$IWS z=F9499>-lDw%WX%YbN5U{3aVdF&VZO#@rl1D3T5J{f$0{(zn8(I~lP$uH&DL?u z&7h1Y*EU2I=ZhrdY3{dT81-6$^U^x+053+z8%H3wCzSIP7pa*3KBac2RToABq@knj zh?MV%A~|38bSe@@L&0PvnBvjtEDNeHP+90&7{#@-a+LqHj8VshFdgGFz(95aCR-s) zTNQOz2p+12a~ao|<1(sN&Kef@y7FAkoT=~WBwPm=w@_lqpwkcLBT?J?moj>xi#hjB zc;wzVckBJiiH&jdIm9}Se$m`da-q4)&tAT*%Uh!Ym_K=LY@2wkQ_?^o7chx-pIj%Z zOFY-er42QDR3*YLy#-G8DP=_Uqve6VdB{d5GZGsQEBZEkK_#s1o!dk**88Ya?nWc% z-WlTW7Pb?i%FV&;?=;TtBwJ^^V{*@DF7{xY00Ieee%!vnExyCoX}9wKK1SSPekA+L zlle)_RS<{+NH% zWTXXAU+J1#h)X}mM(EUkl0K%DIFhfZyj*7WRhUNnni=!4j0tenk}|>`viCA_t(m$C zTaX7%tO12XA{F)JCt65NHVJp);`v)~-w-MZ!7Cqzq}%F^d=dK`C8r_(#-PfF!9fQ~ zt#xH8e@wUONU6zBDY4w{cXzT&abPGo=i+1s@FAN_W|t%8F|ZN86Cw~5=Qo-_Pjg^6 zhkG;Ybasj)yUUM)`~xCuUPs8it`w0v&Hk$lCJ28E<|S-(d#T?BR6RJ$$>zD*usdN% zBKEt5Y1Wf&jhyJY$IvCy1>w9copj$soWPB57^!mO)tmm1AFm%Qa*YvhuT)!IEoRua zc*>%P!&jDY@1lIoX2eP#p8*4!?}e>cZi%@YaQn0pYCNa{!d;bp)hDs)`tvl=QY*JybY$xpwmdxp4JX!}P2OMKpQGlyuDsJqv zAgwCmZeW0wR!-GIVT@fljpzf*w#)&Wdi$_)M)>(tPH<4PKdbrm7b69FkwEadBge0R z_U{`v!Gt8%%rVv?#~IJ44|tEa$CCE(m1%z)Xnm7=YTnCICg6?00(()^X=`~quh#EOACur#RPxI~MyFe*fEa&X|UPKTA)c73fp}d*)Sa zbvl>?Sg4hKl`1G&5FYV;(TC-a2ZD?N8}Y(CCADP{+Cl}w3eBGUJ*C<#BhSWY?YB-G zb74;zdb=QnSHSR%%CNsqJI!$k^zQY~e-`P_Ly=@GLt}cwJt$WJnIBCWo{jv!q5iOY z*#YwF>Lb2o0fWg|`)&u9+lj7dtGdo(;&+Twmui%^2RX1nb&xDZ!t>cGwkr|N6z`xBuc(;YsH9);ceW_8Czfvzw#Xgx z0stFH$)l6NlO<67k%7<66MCbcpt76k@YZpgw`Th%TpHO&mdR&f&vTf<@$^2PgpL6j zR<(h-(NcEHZcQe=dMtqZk!Um$$ZnyTbh_Xv1V|IzRe#Er`grBR^khx_ywU`(xp@J7LUS{!z$1Egc*Ha7~(=&iW-?t-Z(CFzs zBUMV2V95+?B*RstRUCE&3CW>ShrTU}Ux#poep}ebHJ`Wy+VQut$vJUAy_Q%)PVF1&e^!P>ne`znd3w&CVkvIk`PEuxhp^ zJkH^I8CJjp1NCJ)#>m+^-fk)I;pSv>cM>6y)c_8cF*!UY1~n3g1+1M~ ziv~5hpRD$j>on9}HaTs-&lG5KJbr{-ZYK>D#(&D6nhnbh4z4O`iUFHVq#0SW(EBq} z{C`ZCrx@^){x#VDiqz_YPTD%{AKK5|S~X`jT;RwGM8S&iJVyYqWcA0vcVk*UU~Ca3 zhS^WQ8B74cGtAOQ6Z!Qelr0PmA(=|2^me*?TSE4nVYg2PWq&l2-pOdNU+Z6}**Sa8 z_CwIA!N~yBtB8)|^Lp;Ti!Bj392XuJ4ZpUnG}a;59=lU&`Qf_S8hU!lgun`X)97*b z6=_i@RF>W6?p#f`1rHGsw5lRHl|U<>D_i{4p|U}tcGk|$?$%+K0%kn(^AxoV&G)g@ zRWwwegJ0o(QNd+(d!y&Bm8SM&I*sE*10n{5Rf|B{^5< z@~M4a*7jC7&7((Ml5lJmZ|LA4F`Yp>)AcbR0N{QiQb0VGGOh;eYFyj;veNoFDupHYQ>c@+ zzA>YY4lxe>j~1dike~4q%9{0q{7E3e>8ezbej9_8D)3r&Dm9gWgx}?T%lCSTC^PWF z@<3@f^p+U}P10A=rl&jQ_&xE1PH)WKomnI3n?8`_G}(abhT#_|ltt~|My7@TK@YFl zHgE=+jrNb7@>Bx?ml7k{1;IThDNLq-Z>0E_6gJ~E$#fqF?0NFFF7yk(zH9$yuBM0M zyNiwTW4#G&SUi8E?=j?lkJJ)TKJKMIlfK2X@$vh*h~#Z42N2yzO0UwLn5GgEL(qlMHcgK-pnD9hOAE z{s^5e?2m~~F8JOK-@Ntex}`|10g?X^*n*cB%N*?v{`$z6Y(P6U3v2y>;PRaRECHmf{2|M$mGWTEL4Y6XUBBqk8X#14F~Q=UJWS$Z56U4*&0 zIbN?r-U=znAG%FbU=Ks7w|jt}ME{YHLBv-c<5KCa=$hOW8kIsh{Z7U+Ea0eNZLBj* z5AdrlK*PkjRia|9&FhF?Oamyo>iJ7fuL_OWHfj2m`+iVpaqaR!;I)pZ@?4 zu1C|5>@|^wZU4XCf&qz$`u@hLHnSqLFm!{~UTRf2IQjG=e(0>1sFJqOS=1@bb1D9M zYdF}VJyJGB_YW69;c(tCjoECKQNNOy1S6fsWg9{`-7Y`LaogrsfMf4ObceR^cy}Qh zl!ksR+!8sf7yx6vvaDNolCn|`HF8c`pD&#hP!q*jq1zS)4UbOC$5ov}qGErt(h^5a zIXv0$Vz}JuIc&lG@nXJO(TD3y$4B7MHy2XpCjlvGxm*U53XL}|^ABGhJHHzr2S+!t z$v2^I5%FJ>BOya)cKNRr;e1k`{kooza`t^pf4cZ17?9CFsq;TUAkvJ;=8$HWxTl9P z42FUF*&^Kml#o$b?Kv?{K? z&8-{Du(>_H4t?Kap7n?&+aDW~ss6_-+V1r+JTZe@R?cr?GgrlnpBxLq-l*aZE%Ssn914 z6KHZS4e)XVEiIL9szBni>PdE5lU5lIu%P$>g-J+Bre@sC3cvv#pBUh(45%3p(twdg z0dryb2>ZKV1e?>z+FHFZz+mt6WcHFS+Vt=G@C)JeHR%5?vjGwaKDwo_1dVkO;y>lV zZ=uKdz+z}kSMuSDm`B42ph%|y&oASN*e?^;29&hd!13g`CSDKMTeETRDSB=F2fT&3gABX)bCjb}-6p7Kq&q$9@%uWNNuYwl z$4H;M<G5afqvpr+>gY#Rb?PqmRa&cwmFD z%6HCyV@3jN@bF6Bz1FLb9PGm(;HuD98Px#JBuFr+iBQRJ4BOX z>m^MSVY}^f?~}PpoqDbqYYoid))A{TA1uvr5#XB^))QE}`^$b_LSrVy&{20fnwzrk zMwoTWnoPrRr63Sr+B>KKPx#TdU{YIF*mc8*r>Sap9Iw53EI9noNMN1IzGUv&pPm|* zW50VaGn5%|byiU@TS!_hU&`bXajvnK*R}}v*I?M+t&*V@)FJ9$q0mLD z^AwkNe>;XuJbbg}nOW)h*-dtD7Ey3JqwC_uj>6=3OR8T!-6A?!Y>uE+j>jb-a|FQU zid65sn;BCPHv&m3@N}SAZhQ_CLF>nmt6dQIR1jM(zZ0x&zjp)|xzb(2B1sFC?+z(n zz-Zp55a!4am34tksuGC?9hVaxa&p!P9iq8H|lPL+?_yuY~$53+=&v2dFI}7?y5SB@c0_ZE> zs@%%4n0zg-#*>keaq6`+=izT?z@+_%U*N+-rMAU}{m1GiwvY$1w$H1Cw}z|KiKyw3 z6HS|wg|^1G@MvANeKl;Atw{Xx8G%JVf=@!dI?yEt31UC+)MUu0GJ%7eS`aEB@1cVhVRedax3>)5yyZVB(bgHN>v zQ5)+NA3iM!LSUP{gdvWmJGkr*r25HX_3O!6x~E_2jQ_YD2~Fj$geIy}3tU=Q%aJm| zZG3VSVzZ*$jzbFZ-$dKJ=wli|aDg2IihwqF?^KLit|$(L4I& zBIl*mWZuQl1Hir0_ zG@@3WiLFndo%*zrBCFG;(`X%e5A*nW-6UHal_K$y1gh*y`u&-^!5u`^YeHkM7VRKe zsg#Fx6I@@LNTe`^z1+*nW>H(bzbjcemCU-qKCE$+$bAkhik8tl)#xt%CTHEy{!Jw2 zdRI~C8q-jPNUfI6nfdmPzi$CjwPL#*T*Uf5xaPhfD#X|lg2{UF4x0uu=E)C9o|hoU zx@`qF3`6pN^+JCqDne?Cz$F@q;jYzw?%Wc?CK@C*La;I10v}_?EOds5fr%5VjdIR` z;K_?3l_hv%DgU6P(z*5dg^MX&8stCeEwGF#{h=LihFrw%M?gI9CVpn@GIz}d#cTsYheMknG0tMcm_pm(oU318Q8WMb!^mE*gK;T zTvEzs3dHPj2CoN=OYD_N=8%mX1>#F1F#X$$m4dU6z#7Hr}r# z&l=8h=s8+ay0zO!*Cuq`=b9aQI_XG5Ot6e27xs&$l8W7!o#(gOBj!Qw{2}3Q`C#ID zF~{t4c~-dC?#24Bxv9{<{u~TnjeK*wqVe>gwKQLJR{Dy@>Yw(e3mcuTh$LeO<02xk z7rDW?I`EM3bv1_@i+&aIR>Dw)#q~^t41;hN)oQ@RM&9`@C`V~2*}<=sl(AtKSSQ$u zmQyk|1g!HB;QzIVgF_)v=iAWlFY&JMZfHcPdI<4WsO{ws-PVz0yfD-vaJ;zgti zorE05Ef2BJl0nATpP_In-v)}wdrsv0$h~7yrV(#8wY7~&u~Hp)2);L7I9I#1*0Knj zF_zB3iWhX=CW$495m5qmYt~tjlD(H2FpG(7&V?G5IlW6UFg`TTG90L9vstW!YFpcj zJ=>%;GTqfqWKqNFfRUTNF4sPzUENzi6qY~#U&9d^qYNPg&%K`n>!W=m%8T-7u~Tj&*za2 zK~>0Dl}Vk~b=F_vg(`GNgWy=_2h14|d~a3-b(>uX;Z+4|{J#aV_WMWX5383LUVjwu zxkU(9eLZ(3ZYp1fsAQ8F9JO+=9PAbcFy?nHt!DNiOa>7Xy~#J$`Og!o)+qjJ1NY#e zAfu&R;<;aM7$~v>t@npR+E+BFFu#Qs(Iqmb&xK+ZT%%CI^c$0Iwrb|1M}s!i%sJhc9KpJ(s<3gH)!mg+_~Z~Km9C`` z#O2kF7l@rP1CcLpLMJLkebYNUlwc`<7QQI~6}q0yj?;M21kaGIrD~J)0AAi~{gv;# z6FJOtWm<6|ff~$8Sd8A@0323z93>?sP@|=_&5%?aS!pxt=3^6bky?%9;q}b&7mCAK z>-j3b9-7++9?{iS&v?#4DxZV-E--K8xY3>O(I;6da+N9gfa$tZfkZd|N-!beU%wAd zIWSVWRo88DLfsiRP#q`*=;~dF-77XZ!S?p{ikwTV-lBuM&cUp4R6DDeY1#nYE}xBV ziI58I;C?^UU$X=7mKcWWNG3*svM7sQIW~mU?zc=Vzh8%c-$d19NGA@F6Whboy28$2 z+k>7~5VTyNEtcV!qsIX@pQ!KMPWU3I;$lpi{4pM4i;t+=){E^pcBIz&qiaXgW2@Bv z6)H$3B@m3SFi9lv68F@NHBw*AM~TDz`I0#`|Ihp=M4+@?Cc(Y3bE0bC5(?dO(;I3w zy1=D|W_KmgB{eJ0v%n>t2D=R~$A&9XQK5&pzq=j*X5_4FlLC(Sz%1bIZgxpGeaI7exNKiVN&P-YB zGxb-?w38x;GTBhwMh8mfZ!l`kd|Ojc)ekr1Gxdb(ab$wseKILZ*&=?tMbATSmga#_ z$DocE47;^BjQI*FF{noMxrw0OG;aIZisK{^VB$}(EXYP4 zIAZbH%W5#%Dqmis)e^+#&pIPnH1+X25 zAZdX!F*uIzM$bTL^vSn{9N6PRbtH5@tXme2z1VOrmwE;(G}pi$Y+HvWI5l^s&c5Sr z{4|H~o)Fn;K;|d>f1=^96jq%N0g!`4>cyl>Xn?p^^(8c&wM`#wl>q~_P8*m*Tbs#B z2ST6SX%bITr}hcAt-&wi53x%u8EYcDC3|=$Q2%fNuB`7I7^mUMRUsFV@mX^|^_|ll z?iB|$tZKHnLEEji=Ico?Xhb!)>_nlOyvcax1glCW`>>Y%*=MCn`${5AB*g;0@sRhC3C4AM5)Uhme|_TP!pdq{YBp%Y}q5n2jDD z06f{fxa-^os(pFFTh;0Ww*o)A}8 z?&1ta41sD+DE~H?*GWKyMKg27y1cC&SWvTfks&X}y&7vYDw^cr9PvHeN&oNTVD`&4 z{ac4`MrnTd_W$a?{(1O83UZi!Xt)pc#EVC4G^j7WXR+UjzdsX=mE zNMET;^|B(o#6(6L6#=^B%A>fsrPa&>A?>} zjtkXlXHyrD;AQcJ;o!3<&9)Vou-Ih^v3=!J{+TV3M|r;m^JUyCw|fSA)nP_u0qgl~ z-FW$tY7#4ok$6l;qZizm@`E{Ljwc6T1 z-HZa@D6~_n|;i)!K}?Ll08^|E@SST`>&N`lj!VQ#UvfR%U1h5G-#bQoya6B z4weGG1WFtgn zpAp%?s^9&VZ17#LT8ZjR#VM*z2jWu0OO$qgrveY;*lgt*uM-uDrK~>Oc^6Fa|)~CZvyyTe}HXJj(swYIam1ZsEYFuhf>a z>@8c1nJvM0Zo3d#h0I_5{yZC7Y6S94PF*X4Dxa(^oKU%mVw9F!Y({VPeVbI#|4 z2efe*T#!IY%@Fy#d^b_!#px+s zgu%{;_?I7{b@T~!8J4kp1^z4eohetr=CNPt29uG!zv-tbH4gRL+(P3cCnpHo8s^3m9 zLY{=jky&zs#kvsdRRIPOKQi~@)ll6!lC)H?mJnz|YbYeTWFs|>_AehZiG{HKL-BxZ zM8Sw~i(eY?lH`d<#+L<)TrJkJAPIi@012e6m236fy{l3OIn?51(bZ74ls41w`26$$ zYIvb|ZLGkJLX<{4jPgZGQ;q|rLK*Ud4zhl|?KBdY84SBweIWpMXzNRr)Mk%t$XT)X z2q%|^c&z@?}RIhA0r*PH?2?y&e&?2Fzg6D!41g!lJLZB zwCCnh5w+@~gO$qp_Tc(&{=|uBpNHYMWkB%y1LZYw;uP z7}W{bmV2Vmzyk2|XFDc@rLuE=*aD{>HN$4#mH?1IYl1rDcA>}|)}QGB*8iFgV8e&3 z5B?*Ca_DA@e&N{FFJ_V6aSX5X>JjK+G=T*(jrF*Lme%2Lp~LG(Lsv>8eR9r~)zwpW zHA_QEu$(&e7Lf+#a#CElbaEj7JF=xfXs^wK&zrTS4yKFS+oMFr;-G4fWgxs09}3RMl+b>ude$B$k=t89%KN7X_6_ z7DTKzdvd*!y~=j2vWR4jjl7#H&nFf~t3>T^oP`Q==O7R$+vl$OmfC{INB?}z=_hwn z^(~P4qW1DYJv`fXNu$meY~_fDjQVr6$gDWhVpy{}7%Nj#>cF+2)XQ1TnakpwdI*jq zr=#zzlr~4o;BF8rcq6#10^Jiw}%o!L`Z}kxx-g>}2{2Ee6&ivst9Mi953f z9{oKk^KTlj^Bk6`Ih?G?X|r7VYNA+Iu5rhuez(2a`E_6eH-0CPXK1#Q*wl(b1I>@^ zci(;u_n%H6g0VB(Ru^>@oJ_uAth4;PJNR>Tk!?hfrdBR^57}kOVU&|6a%Vq-x4h2x zGbyl=OW}j!32yv1-6(AY?G?54E1A#4io;+i%K~ZWpVZdg0lm zsj>WHig;8Qg4$6y_-}fzpYnR?9}o|Jjo$wCx-YCr^KUZTgCEX!-|0F}vPRlzp}ge- zRS`V4hhlgb=jQO-=6R$7leF*pruDhy;ID=b3 zJd87HvpP>YJ%vHQrjSiKm1>B051faOkkv4=B`d1q(0*osz$i3*+M_l z3>|k8l$LU~2zd01=_FUrNM~jN_dEy9FP=(ySqMYqruMwR3x&WeR9QtQ7n& zlS~;MI8!W-*Zdx?OJ&Rd0ha;ks%*@&{kq%Z(-3eZ9R* zH6o#y-6(CO;b*{LlVAWVl3;v1vZR?sLcOpnZfKi)6Kf>O6RYpOFo@2Mp@ks9ZfqLR zEacBX4H#N4z=WAW%;B?e$G zP*94C8NMqh+{m>>2?E&~7_1c2U%ipQ-H+rtK_6^!TxIf#1VDRfBT$&*FM*BMLK*WI zAg{DaX1&607t@2!;B zZd7C(Xj;Nf2J2d>(;jR6F&;M~VNfH^5qw*zkd6mY6M_Kr7Q^USj}kXb8RBS!#MBB7 z(7Kf3xhcxlf#7J*gt>g3s<9G(G8gPjM|3DDO#p)GBkW`C=uEp}d?E)EFAXakNeFbOcv-sPq zgu1^s`@V@%>BE@yCxy<#mW^*^iIHI*4kSYdC|~un_8nX%U9tWe&XpSK8Uj~e{8I>E z4g{r)sjN?Cap|waeyKv8r?WIT_Twi2Fq#%U$W>Xa z*$uRr1<($MdW-|ugANt2Ujh)y00Gp8gUql0kWh;$%o@Yh=#&z{VPTk-^SOfRoxzZ_ zXA!fzW>9{M&Za@oIRM!Ti~*AwDo4Q}{Yb6|Qs@EFgb<0zY z54Lg|uxC3|AnE@h&|mL#>;DcO2hx~kWoB;8wPLJ`j)phVXurzBTG||c094#LAs(|dhIHz)tM_DS}74|9fL1T~C2 zM+nJ?p~tMZwMcGM*o0Oq*6;Lp_U+CPK$Q)t-yM-|GML^PiSD!N#4o|qiBUd@%__LduUUL3#`vLaAw=WU1Kr7d;iJJH#vx$k0?-Tm@G7_=M@Uo3(qR5kTHC&N z@utK~)Z{)zQNM0?o?sX(0ABmYrUDAz($|_VQk#(qOi=i4H;gu^vUBMo+l4X&cs^H7|v8zA;2 z;FYEmGvD*Dl0tjDJ*g){EMdBQRHYeuHul)0Z=Dm)UYIYyKBh-(r&P}=%E~Hx` zywKs-!Sk?sZCjgY#frj{IZ;UYb~+*I0!Oxl1*Uya;KSfY^W40!aW%><0k|D5&IFq; z={VUiMVo^LFmWFnrwoh_1x9PzZd4yQ0jDAfAhr0KchMH!SPT-u%gO!RJ1JC;r#*>5-nTJ<0*<(84TK z7~?c1#x=VkL!D)_H4Y+(#+u>*Vzh$h(04)#`w2Gkd#(Xz1TSyq3vBlr z?i>B8JT@V`ZW!X2er4+~x}zzLqVgEw=HY%GdyeKNVH4oIa!hLelT*$2MTqHSh;kg09tHBDwj0OhoQEMF!8@QQ>! zK4?@r_vFkrZQcvuVmK42+lJL^IsS9t0Q}%w8I+mJ_@X zBuL+sz2CqnyQt^|J&CtoLxKb(K%uQ3Y2n{>41o31<%Kp@GQ3P$EF*X#-CO`Wv2Xe* zZ(k+BE-YeO2ATm#3q(NHTMRfu@GUc~8lHRQ`Id(n{zIvfefg<@UnCLX1CaH~l7p!V z0$!50eA_0>fFUf3v7UzjNGYa%3o!dr*`u=E0*%z6*-v`|K#By*r zI`u(}cDb(e5BHWbKW2FDB*ipSrw(Vl@TBK-Pi@ZUr<2ytol4M%%q3ff(wmD*=(5v@ zaiXR%zxSiQ;z#o*32MG4s$7q35V#i7s;w2F^#!?APUJFwr}EiFYd?^2n;&8&y)O-~ zpk=c77ANo6e_LSFtl{(TgxsmE0$U*h4Ywa=l|*LgGm%*VG7wozYxT5t4*7b z&S!wlI^W_{>?^w@9>vkTbsJH>FJoeL%dUr$b`PJ^COw z0b)w?KZBLwL4!GC{t-N1zjVzbp>f(hz$;spx1+B;(}adrMkR1CYx_}$X3jy{`83l0yij)icZPwqM=A8j-Eq84q4njbroZG) zSbhxUxzHz9ExW<_6tCJo%b&>GC-yEO_&C+rGeJm6vCJyj{23XY+2&(s?bip2He#ng zn~nu4YWH3}chSHmr3y09ER;h~2(Z%;&~%;}{Dm*5pK*}R`7=UNAYdo>07ZcJj1oYo z6dSdB+6+m{?n^sGbT&}rgqyi5I2|5|h3Eaezb1G8MYph~OUoW`DmbuT zl+_v2=F#O!0NG3RAW6$_s7?C(5p%#z$o|4gr5BOEkoyQ0BiAFJJo&L6A@3catX8l? z@Elb3+eA2ZV$A|J`JqCx4Eq&i_{uK@`a;>=I%_^4ITDx_k~JfzF~q?D* zAB=$bTGJur(kCWX4R2a2!l?s0>kuTo!<)MzqI5oPu0j&JE2(@S!gJ;k1qF*v95H#V z8i*R``a+2%@x4Y;(zk{)q?&xOg(Pkuk7sI{ZB8?cj^W8NfNh6>owKq@Ze?X*^T4(x zEc3S?<4j06yV_7`>Z$^QsU_$*o{%kN z!8ajCGnp{HyI#ewlu-?H;K!aBo=;ORRmj18bFH8APx>Jml4Wi>2D@MADCOKenC2Q2 zADu;$%V*5hwRFC1p!r(SJr;5502k|lB$YUvHg+bf<#KAX@sTL*V{FZmo(DL)&}X1$ z?nb>y?d4pb1wyCO6-weMgM@2_vzZ;lRlTJ!8^#&Aq!a^OBHpkC=sdD{hmrg+5{Jvr zIw4uYn#bcFTBSuAld3nIyK$ZJBzZ-!-!$;elg13sgQS_r#;6b4Q~FiYv&k<63C;G7 z^Vz7yFc%|;b#un9&UW1TVK?ljwW2pmYneK5bOLSS*oQdRiOx3z8~lc$1d^MGw+OP_ z>IlPURTx-SAwqK8h8duSTHRRkEhi+~e(y1Yli|NRh&-C0h^cw>c<-anc|k^2RwhoS z^S1EktK=N8zI+j%m3L=ea%RY+37mOi@Ajx0;<_562fWMO1oJ2@n+B|^4rrg3v$wZW z8YouGJUVFa|8_`fz7m|xzQ|c5r9ed62eSAm84J7Kz5ZE!Fk_j(k#~YXn4)w(PjK(c zxXL+_OXO#?^JHRXjrcxp_Hx$}9v!-){(g9(eO0L@>Gy+I{DTbRZ!rd%KR%KIoL_$5u9xPb z^aED4{;_w=ubKUOUAW|n5tCnQa(^4I|Fw7V~STR2n4u&yI$z>U=a)6*ujJ-t0H< zRUk|MZZZL5K8M-=-tlbc`So}CEMeXg6ncOxe@U8NlBw0CN?N^xYeFIN`e70ACR%HV zfKGAt^~7iAHRW3Qxb0!T=x8386BF4p$EK0fBlH2uC6t;7G7%1?3|E0J#7`THu<*0k zK|R8QIe2XrA9t->HAm})am!t?&8EsXCJJoE!0QEBo#PoVm$;l{G#AmVUcjs_!liw; zVmM;iao0RFLvz_Jqa`=XZI{Kn5Twwqqo_WCD%Y)YKd-BQMEo9fq7%sZo-~=Bzs2*# z=Ql$Oa!(4B3Qj8+)x!ujV{mwgPLmMwU%JqD(5aUF3D0l#H$Z@`3Fa;|fQF#7Eq^0j z&R{amB_&4=lwvdunz{SyIZL(v!r%bSI^|BplXX;Bp|EmDG1<8QH6}3sgiB=n$Ms2O zlYnYK{l6;0*_V~_!;~$IBNhAK?mT7TI=BpsjTq1+7SCu6lndAd!WljtoR_{f^%{`# zC@uRbJKoaSNaLxM`m%>ED2S?NXJ@HX5JL0#in~~F8;g5um`zrmD;ywzFgRNEmgpU6 zY<&~Qd!G^Aet?&0tijaE_G6W{j;I-^^3ih(lAnVeLR)NA-K5{Ks273T&k1ep5$^9Z zZ=Y(m@A0)1KOeV4Sv9K{)SoFRo_G#qT_k*z*-*HXO`C-z@?^Z>

Je`m*gATv0PTt*Kd_0dxWNN&JMB z!k>HOvCorDjrUTOuqAxLg*kw&MVoe9dJ|K~GE7-$9_+8tuxx)xqv8g+n#*aVNmly| z8RtG4ImBZtyzJlC)OL`>mzEpM0M<|nySk-NnP_%-vsdSg0HNae;cPlz+yQslhZrq= zir%eqf$DNB|0L-#!HAbetF}-4uwkp*2~<&+ZKEoA+zF!h-6r1GGrGzVpRLM)Q=-$^ z$Pv5ABSP$d=7-U&*ljfVbDvarMrVxX9e>(z(@*j??;V%u=Uf1Y1V3k|_ak{9Doh<)`NS_>phnmZJe@YP3)DLbHV6BY_>BCOGnMBI z)tq9cVghw^5_l=TRag#7Q9*)4;M#E6yP?X}7C9CU*pBT`OO3|clU2$#V#lRHZDcN( z&3KW!;V7SCS`Wfoks-U6Q8nA;<_SqJR*v-bfkfp6f!#wO$xyS!#4qJe=2n@CB#i&$RyrLB72(2Kz8st&+u?_ypEuLTLwRV08Yn^ z=YBTfimQxE$C^|0_aIv}lR9hK9;_U!S! zjFouLAXWD+#iV`LBy3N5tDm(z)hZ6XiiBInYe{0&Hc!vaEidiW?51&fB(bZqRGd^MmcIDIvTbUhIIy^6q2&c^Wy~Jht_@sIowI--SI|VLv zwuHB_S$yBHA;OQPpe5@?*N-6HGx@l)=#zx{y$4z5S1>F2b^5D(#g)Wst)Z_-AFic8 zEJYl^6KPz^#AXVxB*iK+c8#K%DWv*=gXO!wn;Xjg(!>#pRiA#h2!&6RK}#1-<3#`z zng>tzYw~&QYhGiBJ007=vTS-U`*CT%T36gsn0I&-oxUM71$aT$0aoSmPLr2cGYv%y z1INTy%XzP@=habL6dWZ%KitZ$prEuKExJolGd!-XysFNL0IgAdBtF?W#mDgG*yK$n12sTk z8|6{^vopAzdokTDGWYr8X=6Ep_WtPu`luVNk>S3%4}E zy5KLq6VUR|b&uYEomQTh15h(j`AOL332qmMJSt~=tlfjn@eN;JTgwmeOUXDnT(h|5 zrPX^CZY#$1SQYc)Zi<=f<4w0V3xHG6)P_U$NY5SJo>1egt^^{HSuP6u!3cE&cmg`9 z6NRLck-a*dRXDBm$;(G$@$eV+^Pmpn<8WKoVpq1ao-+y9wA#%8iF-x0n}toWg@uzW z4);(OQyGhoD{d=~4;-z`4;ImA>t}r5R+CSL4NOUOLIKcB|06ODqJd#)J;zEYMhrRpt~ouS2uQj1KiHJ>RJR1gAEt) zq#HhZ`J2O*6?bQs+Y}ZF0-P7- zK;Dq>G$ydt%te@@MZOHqYTh$NmhiE~ZzKk6Hq1xAy<|R&6=m4AS2%o+G3Ez3EL5U! z6y;}TW@@eQzA*$6wz5{w3H~^o=MuFeg}TFJVFYbh&<6yiZmIQRU4j6Kh!ZoKj_`pn z{G}~U1^=Q{u_W=zFp#K=9fo=N{;M-=Pm;?`hWu8DSE>M>M~ak2C4(~2(L*-I1nWH* z@I`qTeRIC6r3vOMR$;%yZblrdV)E}_b7TikQUS7hmlZdM4I{A*g0;z97?KRs=}! ze2TcqLBL2xobT^+6EfYvVyY09Pe_m8)|_{WG610bX)vn?_}HPIJMEA9XLQhpWi!tljoVu*``R62S7OB=3K z=&I8ISP&SqO#p!^gg6)?N`MJR%lZHD9bybfy%*LR!fjPD(X_<=LuYQ)z19Z+7aTOQ7hv7(3=Z~`!rg!02>)8f zOfckdAW&x3_R)5TuJ;UZ1=v5AMGLLlnpBRj7$`G@sA)vW>R~j&Z}@|tzk-824lYBA ziROoU+;X}*#ntEGuS zg~1eMg=3Oe8vCBUcHvJH=|)RUtRr*XPx{Emg+;~10z8ToYNZY#lOSVn>fS3k@`a;m z3EmpQ=dRGlD8#q{ZKZNeDXm3HJt8Wtq#r`WI&bg=H`e5Ob=U{NFkyu;rujs*MYuhKE%gBe#Fr1lbU!RF)%T5_NtDTbXP6N8;@}CE0F0f|xrVPkY~~v~bg#yp zYiZ2jJa4dH*SgUo1ctE8JtdA43Exik<wwLUlrayLbH`&m*jeeM$tIzA{aOTBP{$>OG;J?e3!uR%{E* zPZXz$)=~1G{_tNfLRuo`?u5oQZi|#{`UVkzfoO9s70QSx9MhrY#2ANksg_14WfW18 z59XA>z1t7|PY*;QtoZ(XKB&o6#xs;mPjvW6eH4#p3TD=S_IipV@Qj04M*`QXZAiB1 zdm3(2GPOZ;ly{^T%xl=ve`3?Fb@EPFajnsAx)7sy|8oW87y)rD>%VLx(6{)tKl%e`+#Rz6#sw_9u_wHT#BJG@*cd5y|L%giSua=44|tiF z8v^%|lnB3zXm#7e(0cQKeMth$uj=PU^Dk=?PF?HrXN6s_gR22;z!;*AL^+}k|Cf>N zp|3^19qdiVq=@TbWiSh!cjl-rDr`^}87{p-^m9mN_Au$0MRqxAcR$w%|EFTLa1hUm zm?_D` zUz@}8`nzDEn0roDoijOyXWVm}B)1DfsppPbLF|U1X!v6|kl9$JdvwWWU3)L45aNQT z6+QgWP-5!m&_X}M8>94 zu4YuL6=n_pIKab4Tk<(d+h=vj)MzoGf?EGJakh$s0jpqnopHWIQhz#4o_-)}79eso9` zBb5P-6@zAt1-!@D?pE7~?whawa9qm_wderhB-|WE`>j1M2xNvB#EH2cE5J?s_0qtf z5FSHXK|Y8*3cGR^%VBT$M^&W{r$gJ_6o;aowlV)1!1ZT36p7o5#d*?buiVcd!W&XU zGD%CrvO6*3O@9K>U~XHbnoRt@K7QKWGHYTc@Im}$Z*r@&!1F+8iW|{(#9Y<`@sIQb zhbcnf54ZDk`y4UHm49R@v(5+F1BrK#&ROS%>;c8`cd$zTFw{UK2MfbQAGU4y@mD8z zD0A>Z8NoF;6iW3DL>!=>!n*d6%kjXln*4`+;a}uD?P!6Uu)*7gmfXS2 z!K`K0H?A?9v=(yM??y&eHy+n8`VGITEaE$$9msEBIHX+Te~A$?4Yy_lGJa+^U*wSq zb&nFCP(BinA(-J%PlXrF`4lf(qr!94PIl6>;Dtv2zFwDSA9gUYzRB09pgQUcP(AJ< z`rOP-+ys=Mlc7|By&CY<1^P#fd2Xg-6gq{3Vra3-$S#llMvWdi?vJeZl}ztR8c?27 zGCj~<9t&9N&3HZ+X4IMKEho6kZHybe*-64x}Tab1N2UE#NSs3o6b{kwtiGHor;4#0!Q{#nSi3HL>|@)u0Qqbai} zybmrYDjAHKcKbmOBxU(=13yeYV?JDW|8V+DU=`-@j6OYhlznTFvT)-F<0)a9*V!%l z^jgvo!r!MblHC)o z(?82X%Jq7iDe3T~(MZ{rOVXS(IN1#p5hx0STpBgFpE#>VyuPF|5sX8x%0DuV*~?oW zq=p>*xK&rkw35TDy@zp2_@QK}Q9SSE(?F7kxGRv|>bZzjA4${AXtahyH+}T{t@Iba z_Gg=ZswbbiOUY)(N_F%wnz~LpwoM;`{JGvT`_hCwF>9iMdw_I8h?bwVre(rj1Ycpd zUgzQZI^mni=pn~@(_k(OtmS|`emaW^5~_zFZ$(!V2Nv5wGH>3AusqkXk2CfS>(RP? z>gWaj617}+I|=lcNs)N=W3e5ZmQbqoZ#V*q0DiGDe1eZcTywt*$Yx3ix9Bwp=ZhpC z4Suw1+}YaTyd0*mGBaz8d_6B6A3u_kl;(+^6s_HXb^I!)I%c$DOAjn6D<79^^x?75 z9>-79mJ6$+Btg18P4Yvx&uQyZ>QygXg4{}}^j7o9l!%%u-!iO@(ykkNeQhTD!hJ!I zVk~$(ZILWB!G?)kSbSLbG)p3QU~j(7N$=V5=%%xb4&RND80E;IW*ma-l8ehQ#r44|Gd{y^fIZ_GsAcGCE<%?EYTJv zr8u4+UVC&x11cVB|B4SigU6j1$XB5`UTNuB8LMLgigB?7I@U%7aI5=&0gqPK%>e}bp z2IfDQo-Z!qxTKX+r?42Mrf(TwH^KV;{4ETgq{*^rjmQe9NRmZbKo+hgHUtAWKVLE7Q_Yj-4oBK_@O~Im2fAjP${CR5$eW-0<>z`qW=k9RDxaxeIyRG zEDcE5s{q>LHW$#sm81)AI<9b!*QT@DNFDPC=k<%h-GEx>lj} zJ8C&Srd6q2gg0q>{Soa*mJFN2z41i#Zv0%^IET#piPNh#&<40i746BP^o=lGS>?JT z-k7TK^C-5aJ?gE-ImbrPdl^r0w%P^6&v%f-&t*9b>Q=0doWB%K6Tg=T{a%JteqQ>B zwBob=qlG<&_#MIqU*2baO6gFi{|L+*U=KWI?C5?g!h@pHp>;4_&m_m8Dsn01 zMt{tU11o+v91%Y~@c>h*vxY>ang_?KxDCgai<~8>E*@bv-<#n1c0JT%`9`RTrK~19 z46Zc3Gz1+3x^^oXmisYPcvf;8ve;>PTFP(Ck#{df;1UfgsgC8oAFh`vaaR7IPjxn= zS@6UEgd&mt<5ij>Be^YBihCrRI$KjF<9m9SwQ;=h*YpjN>S}T%=^MBtCx`d?1Vdc= z?Cp*TGZCYFj|J0p8e@(F?H;aGz-rgeeOqFA_JAZLs(w7-!BZ5GadM?-H8u=jQ=}{k z_WQg2RF)#v`B*$C@Z8MLU?@S)@9BtL=a>w?;`%8lUNCotXgDSOCvtb5cX=bf)3PR^ zhqs)&T?S8N-Uam&%Qh`6`{l5KKoWK97GnDdYBvGQ=pTTrpOhM-I;s+%^jVDaF*u-b zK2|*SY1yH!t|FiRR$oSAY3%eS+hn$^Z$QCMs#9USO)`(u;0N-Y+3cDSrc_audpJR2 z<6^F5JIBZh!T?->rgQzfJ6zE79>-6Ld?C^ z2N*8w-`#$6Gy_6diOewhhGxzaES^}RtP@O0$&W_FWOI6IW z)ADRV9hAvI8{$S_nnteSsPt>irI6q?|L&55-H*a@JM-aj)qsnX1$NyMd_o5Qp96Lr#9^^sboOeQD~SRb{l=%1GUxzRzM0 zs}}XP>6-*U&atg=A59q1K}qLyZCqS}j~N$;Q`6DWQ9kgb70B8IO#8V4B$Ai)ebtSQ|kZj z9@3@OlxwuiBz)ROlS}i=)_YF3Ifx#a(PnTm@%Pxs?PIDFa`Ulb~Ev@%J8XV`aN!z_!Bx1hrx8b z24ZZ0CI8`r5smutN9s}o)$gpV*ZQW1XH;Jq%k9PRK1#mt+nrMKPH0IXX8%EL>35GI z=dI_(D1+)84vw1^YIUF|N(G3kD6bMGMnf1~&uwE~5`JPWmg(SM3y>;l^x=zUT2W!P ztf7^qZI^*h!axday00cdsfuZ~N1=;=)$WmM*DKggUc_d@OL(!Qq^ReIQWr7HY7n&{{i>BL+IuvO{23Ot?a7kR5bhS=orH*RWod<~NX7!#;A8e$Ehef)4@pD@?%;B418~?sRHTeCM&Rkkqd{@3k;6$v>W8QR~MOqpdCMD- z`7)KYr4y8?lzf^_RH-J2-`OVDln*~@Hv@Kv<9qLksG994$v^sSNz|`SY}wY+BU48B zwcTZH1hSOK`>B+x!slw<$_@^^gTLw$>s)z8vA1L zWq6RcE^TA{KA0Qjod6Nb(CQv_6zU0r&!Ut61@Br<)SOJwW5ilQ#R%8b`|i$NXJNl_ zUg%T3cRAv~GQL;lovNlnMt92U$tqu>Wp&~XyXSo(haQrN z_J6edr9vs4hl*u9p6PCy<((=(6W^ISkp8Q7IBmTv*UL2X!uInk+ua0JqVa0cYUCnj z_Dk-l2w6S(OpkBvg&*Z`-<%I6{Hi$r?)=&D7qQ&#ru&5%GoRJ^s_Ra|>?*SS`~Lg> zZejPX4eRwD0N9{r5^Kdy_*LTJ#lytQ7#SCWo|TjfsV} z-O7W9=9&&(Z|2orWN{4LU?y;NrMk!Fc;sC6X!fihyg8!Kac2Lh>FmRkmdQt?f(!AA zj8yG#pyV8XiGrh&W2MSjys7Rd7=je_3=xUYXP)B1?Pn_&38SSBPWLXj&CCRbsjKqh z6o_V1vb!IsT1m0xGW26uEgbeCW9=^+7p}tCojX@v+#gvQ)gB6sQauE-P3gC!PKYll z4Qvr_fCPP`*8(z(6{f+yR(dCyyvYd(Ui5xqwYnxay-zlZ2XkNO@+^3mG|G=YHAss| zVeNN5QH=<`vm&li2g7_*-3pnJ3~sN!TURV>H`(-@;^o|5`sgjZs5Q|&*Bo>pQPV(O zAGz8ry~Jxu^^_0@0k=Gqwu?XY3yfem(ITzF->%#n}mG68adfG%U>LMG{I5F4kv) z2Wj)o3nR6IN!`s#HfPV?5{~(gR~$^umDLYz=~-dQ^(_`Lc$o5D_#vgB%x-0`vpc<- zAIJQp(Lbw(X+-;rms%=~=+Kbt19Njgh1>*by1%UJ4@K>wex+)4gf@lNhrB|Lmq{l{ zZINTp`>(T`;N-)_mz}iFo42f35_=}GXyPUIp9PFmzMBEdBG6WaiRkA?ltnL?Nqh7dP9>y(d7nglNvs=~Xw5hFk%I3267+Wl& zM|{u(>t7qBJ&fEecMBtN>e(UWDjWWOdyi9Jg;_Zkl$VEWJfWz+$+`TQnHD%p2&^0w zn+t-z1~I3g`?s%2r`7o8^eY{G$19QO@uLYL5NrlHt>IWPaSoj0;6Fvluqbkg8Cp^{ zE~F**XDcd9r(kiAY*v_0#&6HaD<4CR_4U_Vw|TQ?Y2k5$f{f5{Y!Se?1;w zvmHmF>D0(cJ*QrGeCTvccN{(~qd)mPQrPnRlKrCg^v^17w2A z;X$$)`kTQ-8^`K}eA(ShChOC|yu50bB-^gZiLFU1A~@o#WN~>a^2!_Z+wh6C{7(2? zP!s*U0+Dl6W2ja5t+9o)-Aat509BxEQ-`t4TdRj_x^ur^hxL>SdD5!!2=U8`?Bo}+ z5k}3Pk+4bEK7|{ix|_mJ=QFPZ4K^8%)uUQf6vydkH4-n}V|2@8|iws?W zF!COm9z*4W(><(pPOpq^>MUU^@t7AlVd(e2^k+Xle`QuXbDZ8W+HIt(fmU^KgbqS? zqU02sXJot*RAL;I*lkGz*dQnqN6r4qbUGTcy&8hO8%*X+G!|F~l-rZp%+p-DBrKfJ zvC-dl$BdM(Mb8R@Ms($q#mO+u%5|K7yb;GvlDvUZ0ugoxz(RDBxz_atQ_cPoH^ia& zy9EiSs?~txE=0tEDsY2tY3$t$nX)994#EolkEHZXRR-xXa9|t;mAc{|8C#(00)pwd zPICTZMc4W~Zi)H6?z2X+`ggE@o*=e@RigR#cOstw>fZKHjOi+>WArT`W`~Syqul0%V1OlnJNT&T; zX-<>?m;E~x4#@Mi_RaSMsB_I~-Q`IK3h-~h&i_oBUWxds+SUFD=o6DaspAc7=3UXD z|7|YdHa|w30IPI|c>T`|;nG5=!yj&t`21H1{~;`J+W$`|aW&#U)6Tt$klXlYI&OXM zKa$|rAHO^8|DT~>cPlakz#}YJGY?%C|8t)~AKV^|yzatvyLT#z%TIx0=H<`xAN}cU zpfn8aKd;BR`;yxlJ@A4p@4X?{KW_k75t3SsyV`LxCP)=hI~;PWQad3hYs_73hhRmp zwfz1=3W+t~GB{9gjn|!d|0_r<3@yihFA-vYVAK}R?FWNlhyI?L`n!()g&z72;KG3F zCT??36)-X;QSki#rRyYr7Dmad2Y@2{@kX;S;L!<_6~1^goK1Vqkc{&_BGijJeIV;UJ1CfDR&>A z@yK1$d}}J`@u1cAj9$mtG&bxdEAMb6DiKdZvV>}Pyu2giwvuRDH>Ilg&hf|enq}VG znl1@RS(CLyL@vyTC8py8J-h%vvTDh>dw3S7!RfsbYk}0A9^3T(GAr!oOXu1n)wX7p zUjSCo)GYAaXn{U2&*eLG2>m5!_IC66M?Gi-!4R=PWSpn~n5n)t#%ugiWEB`-p4waM z#w2>^f(ju4FVbGF*u0 z4!>WYKmP+D5Sy~{3z=GTz!a}Oo|MQ`FM@TYk92=3ggDzA=OWY>%QdvUNiQCK@nWO| zsn#E)eY63PY!uklV3k(6Uh?=8`hb0WUSOp;5sVbo#c?1gC42mo_&bOq3pn~^-Yr9ylXxuH&%4vxX)!%R28z}u|2%1h&hMsEm2=r{tkxE7UNrWbFWX~+cco{vMDj*?#W2)AzJ~zKuAS;R`kW?52 z^Am%cC}ulwft7RcGut567;Za_3eMs@&3kjd*I@=LKTOTas&l)ELFI7Xn;^g3DA3yK}xHG7(br_*+x0HBcT2QUrNeJnQX0-z{K*`s=Vl}OctC*XO^nDouNYc(v4jQs!9dkjaH7eCsiwr-z zyU}XyOVrQhG|%QEj-40LK6ZvDq*{rz#+sht#aJt$yWDy71D&9XIL+~x7>fv z@sP0ApP-@;yc--iA86<@n4_Mq4owX@alUw}R%xxA!I0MP*K)a~IVVwhuAumd_5?Yn z1QaW`Gvtik5c+*}XFj9*G?s8AEJ?Qd7zViIO!%{rq=^8j-Lp-4%unZ_2^fI)%_H1y z`=^#%mJEVeM0P{jF7`VsZkHV##{+`eI9Jap;C`f{!rtn*&-g2)Esy(yx1!Q_2eL+w zv`=(1kBoUdo%gD3g=|XLxU{>#Jh>$WA-bJ(miw!a>(nmJj;E%UzOP5jK5ahUn%2qd zC2aQxC>)7J;mS5AsscX3A+?YLL~_ItvTs2SvjAbb;eKfaFO3-b8%?wH;_)&^?BCQ% zj*Gw5$E53KRN2hx-@<(%;&p({Gx+|S6yDLX^(Vwv@eN>Ut^S9P7r}-uKp9CELsfoo zZI)|axxH)jj#uvW1n#*i#Tv>`Ns15OUHe)vl9ks#Y=vEzK{1cm(UTKOQMdyXVaye_H z`)%+_pdvkEbO$mD9UjbDhgzV|phCbiH60alV_Oh?FzoJVDsovRbjJSu=Vh2BX zm@JH~9uq4M)hSOy?S;57|2tN-g6P96@A|-yC`_v5e4;qx8o;a^eNqB2J$A%!AfXbz z;*AhW?f_O2;n+^u&$q5ZsqR(x#^i{*>guM;_AJ<5y6nNST~>G$8DG9$%-%Gxc@t}9 zz4ikRX*OA6^VCkBSSDHPg2Mo1rDiRsU%iGO2^2L0TzE#VXty?GvF8k&NM|wh`+`wZ zf9`lVJ71Mz;-CKgU~P)`-D*%;x|a((dQi|8A}@Q7N-#Y7S++`2KGw_2nfBJG=GsHg zADM^)i|uiez_pUyr_){hBmF;-E{_0+4ff9s^;4-T70ed-ddsz_bgOv^y>z`Pz|TTp zg*qRdaw$}8qGBP2De#($>BigYrh>@==4s2!a2;e4b*6#c2PwG^5Wdr@gU`iKp}*R) znw-C`WINK?+c>RmZI5qsO%mS6mGM+V;52IRQZY9LSoqg%1p)3{wp0edcqTcnvaIs5xN3Sa#bVrsqlbycA3n7UG%Q18_GJdYK zxMxY@0lB4tO-|}UBh}%x#&)R_49k80p49iQVkFUNQul(;hl`FP6M?K6%V$Hu002Wy8_MYylK> zAX1U&+~eK1C$XbfB-E7U$(T9Tren2o?@qKm%*U6_6Sk=lM&%qqe?iB3M8Thv7;X{g z$M-`Q#@%qff&epV;^m+^%ZU`+uIYGr66W$klwt)-v89Cte|8K<5ub*oS&x{@@wZ+z zYUjCq{5-Q2-p?*jUs(_9+~I?tbvHH*;Gwe@{nGX^9?YhQq9?T#$z?2A$>_t!AP9-4 zZkX?xr=gsae#CpZ$9;0>jDKLu;Ts+#J1o+5P`>kp)iNo+Tb$g~+S(dmjIE3scR%G^ zJzYUv;G%v+(<{B`k73ZCEMRN#I$O=ZG;;)He-pS(tkiLlP*+q>rx(9nzOUIoR_cT0 z&$@2@`L1)3N5UtrM_Y`{CQBJ%+aho#x+?D}^eN^#7t_UB0J^@wdAK=2Vzd3Vfc48Y z@q7l$q6_dv6*19KYc!i=u;DM~#mfnMbw|1gRVy=^(ZA4CjZ!EY076eIO3b2DcDiz2 z9l(q0?tvuO(IzlLx*mM+re3C(tu+D@8@HzIw9C@ibX~t|V9fu)D1`8%_9xu4=Ty)y zzM?CAG+;=t@TdN~5K4m$Vf`-9?@S|Jl~@}q!lrl|;|==hffTXT>91buG@p(&#AW#m z=ELqBf1~%jPVciy*+LPL#|#@DX?#>ew*nL%+b z{=cS2(dR@ienhs&bv64F3Wp-9#BtdXMzezWf6_>jrAqw}P@X>^Qt-^~M)dcsbW^VB zXw=uCNUgLh1bxYRCPFo-h;MVs`s{PX|KaH?1DgE5x1~f{K}uQ#q`Om5LQ1L81L+tj zodZNcr5l`pN=fJFQlv||yJHMSj2e4x{QiH>o4wrb-Jdwuxz0J)6?CcH|3w^Kza7u< z#-sumyoqTbYv-DObmw6TfK%HMrVT|FR7G3`2uh(c;0Ro-70|ql=LWA`dQdRRks_T8 zR&0}zRs1G7LWPC}@4c*om1hJ%Lx`7~s+n{3Y&er8v)8{G@xq_BM4q(}<08*|XaVO{ zh5?v(cvy3gi{Fjs>Yqa@9v$W+zE`C6U)_O7yO0a^0TAIA;+I{V+RIFw`AT*~R{`s! z3)lc0T+nUD$hk$Y6PGVv*jWMrPgqp_Ce`_I*=s!paH+4; zL;O-!t@f_3uLrC<1&xf2)#Hcw6Lfmx8c1c=ss8GQkMSeKTy*vfN7Vd#XeG5?&#vYP zpR_cU?$5zh1A@fGDMtUVyF?%4$nZZdpz@2-@5zzk31|(F8Fydc?md~oAMqe%@ZsZH zm7w?N@zv=x7BNih3ZEo{v_9YhJbLw!@OkCm!Ue}KIs+4QTmjwl=e=xUG@^@MKX|_+{(nMo1W8A6gQ%4+o@^cP7j5h!jo{ ziumRWd%5p2Q(wZJ)~5=OHU`Lu?sT^RLdeQ%(F}kGh*lGK3(Z&2tXb@zC8(`tvpg*8Il8SfF)(A6QWnDa`+#fcMF`sCE$Z=S8W^7t}h zIpz@X=&iu>@!GhyH@}M_IX-fSYGLiP?uzjm?b^e<&EH&K5s*HZqNThmZrI{dRaF({ zb5eNYY`U;FOiP9_Sq3aUmro{5ok#DhGRm^`RCjdF+)g%#yBas-7vegjD9H?|$zc06 zPH~$eMB{6b6`a&*JzPY5O9+Yb#pgf&nU+UP?fwxAnK8(HmUT zqs?6fMD}Vilu?RpALzS58^aX*(wHF_Ykg0psB&GI5p{V{j7wRdzl2@eIjx3T_QyO4YGmJ-<^d6Lg2I3%wG{j(t55%AZza zkH=Zis;Dqq!^q-h@$L!3M)u?vOHXrY66>*=uy|U7f{?l1RRO0<`iABtuFBH{xNYWk+s#LQgV6!Sl#uiOQve#CGgYA}(jmUu?S z#@8N!*oy~^bLi30qK?}Rtisqv!F;9{gbEDujDYrc1kC`<0TEZ=$MLs;(^L4jWVq9) zAr0SBDZFZa7w61#E#k33A%1TP_lL3;#;^}Z!3H?38*wc+nXk)S`BUD24)D=1ybsIz zs~50dS_%7wTp18xf_Lf0+I-@mG25g6gN0j_Pk~09o+-+}+mF%`Mh$;Hny#o$N1J3XZv#MfzM9$FxA1h6oqE zKdxM)+(PIB5CvNkaH_Qca|{O7rbD306(mjrNY{^kT|4YuCxIWsl6KRES(E`+4CVt@ zK~jJy*fS6^>P;#7FxxUgT%=5E1vqIby(_7lpGr_B7!C^BwOp?xFqw{|y`615s$!zs zGg)9Q8z_7|Iwe9}xT?6?8*}t*goAHjlVkuXjs0>M2N0`iAb16e{NHWEl(vK@%QnX)v8!uwlgb zyqqRA_5Av8$U>l60bVNDdB?Z2QJ)30#xJ!JqN`cA7B^#;W3#ab`dt41bMj z^FljeMbIZ%UaiZ`t+Y$42OK5`UcXz54(BsZ&bHg^@L8r~K6Lq5b!_7qmGw?}pC_Hx zs{R=$s(Z7^>H2K39n(d@hGVIWw{`^5MdQISig4`8ys6aN-3FR|40?y&rNNicd62nt zB=Pc~t0MTY?|VsFg&TXzG@LvOTSduU!`BfP9sC14C3kEj%D`kG+gNfz-LC)bYO@dHQwH)@SeG2^XVVFX0#L0$og2@D+J5|G7DXWM4p%d&Rpkc?V0D68Vu*Kab$w zyAW_R|Ii!N&f!I!%U29#3;^=!`M@{g&8<4}0`utvdDB z3phmvE+XdgicrKwQ_ycB`R0dWO&lAP9@h z`2oX&+!0BY!`IK@1uKBo>&v1Ijj8&8GH-&PffwlC9euv}_L7X!?wXCC(KB$h8^3Rn z$PiK$P#IA>FF&l{m*?{WU6Qq4LO+|h639zldNElknKldT15TXrEa;iUbUOJO9=n@2 z2JFIO@Jc1v<}ZVsk3veBSqXtl$5TpXLx_UU^*i^S9Joe}L4nyTXJiULwp%$nGEq-p z0OD~babiMOl6#I`obN7r*CPUNtzjeMO;^##Q<309Ns)C3^Acnd9RPBaakd1^a{eDl zUSX{^lSPf*?%c9tntLbc{eGpH?1(LN&}ZVd^OL^?0TPy0e*^%%kI-za`7bSM&1l)i z=l*zdTAR2WQUPWJpCt<{5rHS@;rrB07>Ci<$1i`)Wjb#-1bwaX!J}bWjE1CYuk<6- z<^t{~4whKH{m0ep8I18-c6u9O>Rh&|J50{bq^dOLbFhV03Sp1 z16&m7u_rIBSA)Ix-ZusN1ErL?7N!rbZVC*9hNb#A(GMmjdxeUlq9tvMo0ek1FH2n< z`P0qxUpD9ynY9EyhvB@MP3zwQc+;sG3>e=VIw4vA0={VqvP4>jv((tP@ z_{3AZ(pcy>vYB(DYws>TDv4Vr~U6<`1!6~HhSu2Z@&-KqQLM!-56?UU>#z3; zn1xsnc<#dXLFx&EL~cMcA212;dx$GS=I##9G;kZ^OzkYk*7$2z*4C;5zTu>>YSa3M z<}`>&vUh%QH@^1BL=lO&fucD+o= zNnuw?XB(Nvv=w!3Jurv6U=H$!D+OL2y{RH{Xt`EH299q3%mA*pc#ug z-&Z708AdppNZ}Bb4zglS$xv{l?dA!K_#GrWq+|=*uh)CK^ zJzq(MxP0%J>LbH(;Mtn+;IrpX^Y~JVH1i8@?RE2O3~LbBG!}i!HRHJKh%qo}^Zr0Q zx8LMWvx%Jh6V^pBTK0td@iuqPNo5YJ9#7&6{@Nc%XAo7Hq7P{+(=^Vx2~oXnZCBy+ zRpe*W{J>ZMy<-2!2&^GNVxu=%gWy|aSKrFU&SzDCn(|*Gg9Nx^Qh6h6d$;N$ z`}1;b2j3@0nGX0d_I-nJe!X7|=t`8|!SQ~Wj7z~R7jm_1iL}h>rPS;*Y@E=zv1eH$ zew>wB$OS8~8+b6|+0B0iK*i)Fyd2VXcG9_0U&*)tSL9JSY+u2|p#t7-w zL8a{5Ek+gYWHO$6F<}ugTa-C(Gq`+Q@x7g5xfcg~OEv2YYbR&t4_sS)Ueo$n1Q)5& z(&a@;8V22?zKiBDdA3_-W*lftP+SxM5>F8`nB_4j4Ds=AA*$Ch!0G?5`@v3-b$a5L+SCPc4jX}D-JC0aT?m`M~cw(Z^MCiHpB ziuxhJbhOt#d$8VGB;?Q@cx)!F3ga|+*A!5ip{(B@HYHP0kUndCzAaTD#x} zx@7fORFD@AnD7MZKkY^%k7{$ho0w}~`nBpVutYTibpR^K9+FnURgec$mx#mVZyiFz z8@mM70FrKo6_G7Z&o})GcPpAVnf_rA)o&joohzeH+`TmA(NP^^m(vJO5hN#Pk z>v}+-%`h{aF}2`EE`i0mct^Quo`8bij+jlu<7qoAE8K`TLH0x7zb>XW|BIy6)!1M1;E3f`?KHGyXU*-q8#=nS-lJNW>sMe#upry(fsZo zD$R@=r2~0y02%Id$7kw)OH2N^3ILka?yy4Kf8(7%`;4|yo|MA(ch!9cao)dU#a%ZZTWDmveQj~?2KWoIY9AH%C;m{ zSj@}7S-}*KMAg^(Hp6%08{%C?XnAmnVWX{4Ge$vO zUT;T3bX=MQs*HOkZ}$*JMz8k~&)Qr$m984yhE)Bg|MPD)yPOqBolZZUX4IV0jPZJZ z0Q@1^IB(=$s(HCYxB|X{%FJ@EKq274PI3jP7aB?(pya3P(IjXSk5_TWktn)og zIGvg*e8mp_YPcN?tGz4Yki3ML^CNkKy$%{H1IbE6*7{I?mG!}yEPMVGx1=%~uydLM zD*gKljS;#W8r_`yX|p@j!SBOM+h@EOs@qBeeg4KO4uuC+8f)Yj0*H&~hB{!t0)m5p ziEP{UsQs(Lq*6xN0NJ&kLy*3#YJi zWInbynU_F?QSp<&ygxf2ChnKErd#mZ&#V=y3>&O}r3@}^(U3=Tbf!9?ZEYwlq3Zp64GIDNg> zpW9Lxckg4*&Dx9CuSgNCEB_WzUg*)wX9J(GTN_ctz5{G-Z?|NfW~$)x+#|TGZiIZn(<~$Mz50iOmNw$qse>n z(=U(rLo2d$o({-FAMQ9a4HrAI>lc|AS2{*&KL4uN%3#toLOwDPlM(O(ikXSyHRcG_ zgkRZB#-yRUvbN^dAz!5fv?cO=;~mo?g5~gm;&s;*fyPa@0OWH3y$i$6KFUrI@p(>C zrdquw&`h$@lbO)n&DGU|yJ~UXv$=Y8^qYl)nl5%<3R9HwzK7JI$!05O5JA*Nsl0E2oA7i! z#vsmG!o5$oU%rV6YoQR0{ekT8R=?oY*t`9&ycriw0H6cdgBJ|q(ESHzihyG{1r9{E zV79ruawPi0I$jL|J88}Uu5lezXQ*wN#WEoP?F_fSZ3-*fgMvdb*UQ0`VxucY{{#aAwXg}t_TJ`6Wy(agH`XbM8L0Sh?a=%s@3 zhg)~;&M)pngp=*AMxXY?D(8}VnAyzntb*Df#tsx@0CGU1!j(FnvQ@RXj#h7cb{6yvP)Hoq^6|-cga_cg0m*czBEf>@LlQg-B8Wx>bDs8 zVzZiC?z63nvvIuIxuoaUuvhE~NsWgo#MHg7uaQ;dH~h^6UkB17SOutQtmej7=4)lV z2gn7-FpFu&DG5~K_ZcPQnx5A{fZ< zV8pmU@me|0?b`h+f2!K*!$iwKaM}Cs`_mrK$=m0YYT9)!Gff7&n}lJ6mczfLyR#It z?q><~O+c{UKv`%2XE5elF8tSqDSGcC^y)6Wi%Eb^oY0s`ck~x)=ild}QcJ`lhr2^@54Zz`Z+w0iW}w zEeFdIWKrN&@D3Y$$a}g-+3d9Zc9{lE?>z@ zQPZBf@vmJK#$pc6cB<(E|JCjj3D#oCXlZFJ9GxraZl>k#3n}9049EQ2hm;2rHQh<3;hx(;4D^1=N5Pv2$(syd!K+-3_?8%O!2yI^TMl2s_3~<$ z)ajzZ74#S!H3eL3Zsy@j?X!nN>!UPpIZBR)$2u%uJ6#l~?eDkKF-A4L@9081jB*E; zAL?iVtOrbxu`8O;2QKibJu$y>g4z9M&XLuWsM}W@U^Tc2sw*qsWoNg0Oxw6{S>PD5?!Q#-ZX_FAHnkJfrhg5oBppwpbzAo})R z%pV#@SoN!!FGgRAE6qDgUcde?!1t#A@wWS?o-T3squ-Um%&c8zL66z%#)Qg-t7+$l93a|=Eak`}w*y!pd&Q!CHPMiL7Bu>n53?yYfoKka zsFqpk{GmR(koeuDOy~q+aU}Tn8gAM!mA>HHlnXquv5q7y9o6?0NnfX$6E6fsO7eS& z7}wp1Bms&{Mh+#E?-HLkaJg+|Hh3|SuzOpLO|%NB5IAA=(YCYgT(KPLr)K)!bX#7t z%6eJk)hz@b;^*y=w|Bu(EjL=Cr@Yol_vND|=+?ek-2!FbbUSplc`t!rGNsYpm0v zZT0EgJ(qe9MQhh@{cSuLhBOufB&Ai>-aWe^}>d3Y*%XTg_I6vXn2qVIHdQQrP7b|I)(KEUV_ z|A69B((2V8*Q+1}T*6ZDpY_JtyCpkOC2@fN>Oao#zL06?BKAxV_QlwBpeEkspCc6s zmG9Nsrw7^UQ(BW1RkdyoAfuRt8q#clw_{PoJ_ne2$;$D0y8hQ_$2!<} zWp5o6G0mP@j5n(y_9U{f(M-;BqawcaOiYT5Cys1lmQ}Vuh;Mc>@mvSANtFd9V z|COZzIuE9k-Jt3o>zw|Mr5{%Xs^%b)9*D|#{ERz&HDE!0bQ4N}zIT!F;qBS@vrQED zmDg()=v*tkb!}N&qg8A6Y$149&?S>5Dx(1R8!AI$R{y|2L5qLUBXNH~pIzo8vG6ry z97f_T?Q+-JnZVE5YI3~FC>wX+C}zKHOn#TmO{A&un&Q|5&0r&wPb6!|wq;pIqrc#P zm_y779?tXjw^`F$(a{@!SOplS{9o<0GD@ikbX8$(YP9z-wn}q#`sKd_NOOrOvk=>$ zGHYbI`a1(QGxf4GkEs9`jxx_fG38S*+b=4WXh-b+!Czx+@I}+4WX|OelyiWr1*K|8 zPz#}K-TbRg#+1Bav!ezfA8vk1NL?vUz1(bP6Th%VplHRjXD%Xd2&rE7-!OZfk6E5;YTsm$52EQF8SlUpI-M|FWniPus1 zLZX%HGq(hivwrh$*+l&IV|s%;RGu5x>9Z*=snmHlCR_UTSFau++o)u4vvbL5!IA}V z3pAqWs;yci{w67%p!6>99WGKM3N5YI-!c$XX59+-kB0uopji^(&YWp@{dr&*SJq_g zw-X{k{-A;bUqnLguHQX+l$E(be(sf8ohgmRwvPX?@`9?=+oJ~?ESI!dt{9Rmh-r*1 z7kc&en3h*wt|}QH;9cwc7PlDC*8#f4oi%nyFK;AiSb2%&g71eV)|OgD6SqNI?eT7x zV)23|FyV)?PvP8=lIBvST8>__8#tMNpm{P!0gn$&+8GGBA<@?4&Qdc*tD(d*3p(xh zyHVS3&u!{8*ZK6GV%^^q(fp-u)v4tl&BL4ZIAL512wbTVh9hE3ZzFHSTY(O#J-+`n zU8nP~f?29Aj@beab$&{05Xsa%zkI=v9?h-CV7HO%v1fmQlTcBQj}4ZurbbzX5MfJy zH+ZPBg4=EUxi$aO7c{mAVG<$%TDJ#Qgv##$S5hvC+^cwP`U96%Phx;83LTzJ$woH# zoxK@-eN`STD)CkEc6#2{tFOoyad2Y(%XxK!BS!tUiC=~U5El90&0_cvs-g-+QS$$| z0JGA+^1hgdG%9<)>w*n`1gFsn{ubPcjy{OwdULW5k?W!C{B#ocKMh}Fy^xZBy+)xq z1k6Qmd#Nx=yN1U>E;1~kpRlE!T+3`{hi!IyP5v}K327ydw@0eb7FNj|0laAwmyf+- z5OsmKMNeJ-92{_*xuX4D^pMuw(vBuXn*W>ZS2DrpV{?F|T#Me=w}pD%^DR^fsiY%L zTv}dcNG;!6QxNYa3e#MdwZyQb)p?NJP_%fHf;N3PwHSo#n4P)egt9 zEU%U98bNn%aUxA3LK!xStSfH0+a48;MvS#M<4Q8z}bu*Im2EeV5vcP*_-4MOJXu zwskmT4&X2zakXLYmrI2L)e^u;5AeFE3q(sijX`##LHdNfkhfi010RSSC3JXwVd|yC z74aDFB)ONCv(ObsLD4-aW&W|D0FL4I#KH;xzt~5d>&-+C0|!Yj(0_qLpv%dsd|#QI zUJV;?!UvVEqh_z=d)`{^w{t3Zbf+1X8z+BRs>7hC_7;^YW^8V;%0ofqXb{JE}3C-sK!~#`O3V~;L+Erto*VbOF zbVg&VF_oB&0n?9{%YqQX|4Vm6anr%o_)hEfi=8tMP*3#eHJ~*R`ggG|UDH1qOjsq4 zOdaX@<0=~YQifsu+a2oxweYgH7cQ6XCoNqxU+ess40l?;wpZF{7yaKTPm@|GfQBVu z73YzA=*ZH@C$qHtgBL&~ioEx+DVP=}@XT^2^MtO!F`nkk6zZf%zE~I4ND&P-w~9)oZyzH+0NKN{g(kmh3<+)c(yC79(sdZ&jCJY1un0IL zcNZ&(tXD+ID=fC)ilj7MFS(v>U6E|%j+6XUE_w(nc{nc3BWfItwdb(eu{mF=3Y3z8 z370qiyZZnMB`RQ?q}{<-2uN@~;i8(Wt$5P7@OG_Ww5zi~9S(hdXYM5)t;Sy2p+c_6 z>muUOcQxeRz6WRb_7$OrpqWC>N0%PF8wxcRGM^j+u$|>vk?>okj2_abJ$Blg_pnolNhZT%bwMSX(9%RBjgfzz4S60u;%CE~Q`5Sl5+{lkR8v4^uoV!LDTI>xQTo z&9Th#@8+20Jn`MZr#%n1IkNT=C3b76)=%{+9Bnm2WqHv-SsaJsL+hJys8(;L3?s7%f z=I|hQUTY&j`YrBMEgfaF6Nd?ZeyaZEPjCEjrA}wFZa5o@o2X%%jCG{__RaECwuETr zGx+bYww!U@XMvc!-v-v^iG2N2(OtB_x_lgtky96V!du!B;ub+iU7gIa4sV@e3*{u*4A7p!c6<2zk9j`X z{FS!+8<8flYF|x!#-czkOe69!8ip+Kxy`DSJX?eeFtId3(Wj8m3bGvxSj>!UoG5wj zpd_?26tWT8#X2+E@Ptzh?3no#qZlCxEq_OR_Ps4d%g2VLW<~I~=m1O|4~F(NMD?=pd?P3!Er zWk?gb9e3`z25?(bK?ue**|aVQ_|xA}LN*pnz?g3&?+kkOezWeJk-z2<>`pmMP)VuN zQ-qW0>KE5cTD5J_>CBm!=eP-kbQ*5zR{e686N+JCR-BNh;FO#Yi+YtmMEX<-rY)3o z(`Zt`B9zj$J%$W^Ho5`%+ib6RGnmpeTtOIfU;WOyz+kAV|g<)MVHnA zgm%Et_Vxsd>8Xa!Ub}<%w`-tUcoitbDB?w}h(p$G1d7u2u<-)TY^Z5XXb!RC%mI}{ zrzZhKOVDPIXyPU2UvS_8EXuteS_rz;`O2JxMX~C6N6H+8lui?=uJ--5t{T?|d`hRM z8q7pQJ*pQZ6eG-n8Slxz<3D9p+8Php9w1v?2#DwF*@1veTcz0z)hc^WGf;%F)v_L& z3m#B*NA!M1y&mco(JdVOy9aS05a$rC#Q|ihVD<0Z}Hd8 zbMx~%nd<;@Ma}E0ROb?$NgM)IKlg2HqtPJd zA|17WX5>UKc)-4T@6g(sdBGWd=7v!h3?8}p`CWxijz%_FE~h?;SpD{OW&+<;0-k?Q z@LQQWFU-4pF|~yUD~ojWYh$b)4+xu41O)M=&Z=jA4P|6~Zx;EO9#*w$%CL62?qlIRZna$>K5)DK8q&JL0L4P-|2S5T1)Vv0E2{Uf+};+ zi+wCwac!H6C2sNhf)=&o?AAL0ndL9`y!bMsYToRhG0qY+Q@onTP?|sshH5QXRR1Yl z9gsd+PX;Z<&AK&fXZjv16e$KSgiLO`91U(+@6x`Sg1^T!4=B zOU9n)W$#vR)zC%Z+<7d6?M!vS#n_BQ`y6OUq{gu6Xq}1$`%(I@f8B}Ztm5TfS#J!} zNu@W!-`TtrtSz@JHC&bEb<22nrlv$i0y6WkD?M!V;wu5Lca_>QaeI7zj}%dyydP3* zKKXj}_E#0EX&U5!*oNBkE`H{ZlM(1}oh(8)ww_(X-Hf?-<|TGdc?RtoS&c#9u*>$ z-rOrY8Grlt31Rp3C4zl-(yemmtou_}A0B##CqG0L#>d4! zl3!d;)(#?ylvgi$Q(G;`c6PM=*OA$=^4#EymCf77jzfw_7e@#r5n;EecL|sEk@!?P zdR@AY&SWP~)PbU`FXD3Ba5q%92wX#V?g2ZWfn>}Z-jlsc3&VrQ_E5Vi2%yW1S)EOH za=DnR-j3yxX${c~<-rUbALTYwYCePl?YRL9LlO+rHEKp16TpINfDsIBL5{Nzrs;RO z^JGq+0H+D{XldUmPdnow5WVpdH2+ZjK+icMx5{N;spf~K=P1X`WB%aA4bFmsX*P3n z^9d+5^}4S4yzEcs5~0?uYmF3v)J5!}n|tRpZLhr|)*$_)zpcn+;I;eNa>Q0`i!EwR z{RgORCw(}G*Tc7bu|?FjGc%x@!ELb0X;`!fy$}%2==t}0!lQ*X1UQOQ8m!_}@e5rZ zRv5$KM42-1RppkoHf~K<#fuqsQl00+jQa`slIh5z4Mp}zet&gCapc`Bx&$@ON3H^y zzgdm(@4m@sJ3Cy>DK6$iG>vRK8yZ9>f1={r)6Lh8Eap8CHI`3DJ5{+AjdEpOb&RfW znC{=bH_!7U$co8k-Wt8#%)4+d6LjHOGS4$&PRJ@>G;m*&8NNf|RBp=33%48y~y5QKs~iz)KTpcvZCm0rOw3&oal4 zY^_bRx5jHuqoyogIoeCY(xZ6>Kwm4KWW7&#yB&2r#akfveDr$o)_$~x#k~x}%bDkb zy$PL&E0^`2R43rx3-u%@EG$~P@)(Lo1|xs8tlKM|hi)Zlk8jj`-x)>|PMQZtUhQqR zR+m~0D|+wI90I0t^2V&4DC@JplyzATRN@8oyS%P$2%;TP9at2%v> zf)_2~WGElO>y$aKE-m-NT0zE_`eixMDypq?+a6ixHej&vc z7X9OJ(}e4i{pAas8I?9I+yc<;EWjkMcKZBs1XO}kAnD_hRQkAfvZB30;x<9Nj9r-F zQT0b$e;8W^&()CIKuU1QSKe7!lVZoj#NSJhdlYzDY#~ZS_#)fRG50eEiBHBywc}Z^ zTa?nLX%wGM6)({m`I?!J?i~enkJ$EI77inL4U2aIEG!H;W%QD?O9Dr_6h|h(6N%yQ zp@J$CEjmRD&%(6~J4HaFS7PLUTmU?q{C1gXE89sDlHmRUb-8Py$~Pn2>aeztxL)Q6 z)Su2=)UIS!oHK1RD+xmlv7Uakn#76<;-#%eg1c>7TyMw_V|lbm-^b`Whir0P!C7N= zNdc(wwa>mDD(AfFC;Dvo{z({K&{0mT@lBi;B#tU5PQsvPLCgUwj>DlZnXa17k=Qu+ zZY7d*zva?XdSi>CmrQbjXSN1XYvgtJEJCqG^ZG2`xwtB!Bsr`F{|Z|0^Jg3|2lLTF z9H#bYEjJaM2m%LKzf_N(w8&x~YCWjjT71(?d3wR%nv8e4sN-p}YEB$m`Ff_Bd*Z(S zgCcUH{LeaB3R>g}XSeDP^JdpV@J^|NGG{t{ZURv|ZjG8bA%3m5Sl@inMi00j=P}dA z5gcw)eAT;+cN|)sQyMf!hY@ zvdEGaf8Uo_t$8~Cv*BlKq=qMu~#r?pOkV9>hD zZ~!V0n-KX-wm^Bj1kHYN`h2qwNH^Br$3nGZq^}cEXH-?iysm_)*um$ty?7MzoT@Bn zqVxVuZR#rZ^NyilsXc?HFf#~2&bWk4qx_&!v_EN&}Yu3eD*Yo_E5#&Xa z8#~26B>95#<>I^m1q@Fs*yNyCuEy$<*oOdQvIVd@zG|VNK@&M!SUeI`@fa@IJd^w4 z7XnlS!BDp-45X$}H!G+8kf;i2wln3x0<2_r{=b!+8E^3rdl0V^cyYf-@FGIdoWF}H z;5fv5P-a!^9GPX#1K_>)W~i{N7xtjkK(y>4<4YC$Zx_S4i^+?aQHy-FcrW;9d^| z#VQHGd@A#g*747|c$Op|IS4EpjbT7DF|SKAMk6K#Q?M|}zJ~mvFDd>1k(l(ZqmZedB(UF}eI2>#pBU z-!DR@$Jlx#c{-+_9ksI8wZ7AOZBcr0l$_wCvpa62EqfA)LNj0|K>HWYSU#DKq=`hH zY~gJWOzGv8e~^OIbzxzJAwyZyS(3PTRf;;l%)k-OCDNHpDSzUS=>{8q6T>ap2pJLG zXd6KeKsTBv$1B3JR+|i~1{-n{YPQpU znUbXd08@@bs7@z8NFH&teR2Q2w)tG^khBTdljQd2P2X7L$#G zv27Q6mM=e1!xFT`?EKBEKkY?HshcpV^6{S~dwcn@$^4+DYuWYkcJh5*(YlgW^AlO= zbC0YCe+|J_%xeZAIvQ% z)l4J}XQ#Y_Ho~i!-)Mv6T{cz(YUtE%={xz`9U9mXdWD{QF#PU}j*!{?I&}|6kVs!Y zDRL-vasSgozG_+dxF~ECE=H=%sYxd|K5oFi|C&z4WL>2=XR-78T=n5SXP%-)q@R+u z+@bF-&ocD6-^Uv;@bX#cOTLF?BvbhOLfAu&r@<*>&k6=ZFX-L-YS^n#fTBS z?s;GA42d&MY2geOR~+?gv@-n?pi7E_z7zN9l7N(5F-Q$j+g@7H&JSi;Hto zaLE^5P}6zcT+0>N^xqo2W~}oaW%H>CJ&UX0YGOtBsL>T*#wU%zTqFNbGfn z!<&;Iv}-;`_B|w~AX7c%dTD!iS#H@~)j zS1m0}%}vrpoG{Kph%mtdemiN)S>|ZUZZz1-E^jclfr~kjL$PgYQ^N%i!=MyK-?+i$L*Q|aV7I-tf|mBhSZYp1#VaT(TjNn;VtV9#kpWV+wr_~L zkBgt)!nq_Vb}dcZrD=Wy8Vq{DyjZS({KE8774hRv)z-<*x014^{)Q2WKjS&d*Fw)$ z-VSFWS_Oj)prUAXKO4+zAg5)h^Q5&_G&L>78d zLgwC{0O}9TPPI84giuNlCN#y@2UIfpB3|hp2cvB^uQeNf$fN8Kx6fyv$~&%z8!tAD zV$>7aZeSc?Xb?J`8@&(&lRFv<`!UL;h~3McKz#IUSe4V)p?-e1eCQkGUP3MrfWBMW zHcmO~tvg^pM%SB6sG<<~a%jkD znaE@9R}4he&!36}?DCw?&JOh@GNh`jzMr+6-a5ET48U;xHX(oDcwVmU9Cu2PC6w}0WjnX)~rR4_+$^6hQ$p; z!)(vnKifj|Q9}qMQZQ+EdTS%twBhAE`D#&>-r{Zb$s~ zCnQQU|J&k_I1@3R>oy=jVYGY;2gA3F2rrrFq1JIR<3Ys7QG4z9O#A<){cmj;0g0rN zb_&*I_9eqmH91ZXAD0A0L0|2Cqr>nqPk4j4LDzaN(+|zdM(aTJ0v-yrDK-B$pDV7I zR}dNe8^}K}6z!3Zb>_J&rOummcj$)#vVU*j=A(@SSLSDJafJ%-em-B>Bc3|m@$zMZ z46XgdOkDSnLl=S>Vlz0twHBev{4`vJf_*?@6Q8dIX1VYl-ej}Du8{=LjmMF-8-T7t z+D0+R0 zeqsSh$9+OZxfMK)SY=323(!%c+=!qKgo@qyoIgm->JD&k#ekGkru^}vm=Fy91bnP7 z+Ajb6%X7i*cNYU2w^&AXr;(4Fsa}OQFBEx$Bjk?~I_oDJ?ZE24n)SJT4$V0*6~;56@e z56hw(f?V2PJML~bPeL4jd^h;-yWFYDx4%JL)hi@%??@?sW*_Jn(U9JIIA?A@% zB}#5a^C~4BuVx*Hj#A9j84sl+d8RnXaGG_O?o}lgw(99XOaw~g=Nv0jmgU`-e>viWQryE&xu zaS!(Rlw4}=|9#S!T3eQkg`umjoY&yl4xINqY1QfV{40?cR%7Pa zSmXko97}K213)%=YZf-D$)YN==nkq+1MeY%I78ROe5eTzx0f&p3*)#5Ln z%8Dr`StnoOU!YA-Dg^fX5~6OCJX;Yq9xESsP!|-qs=IB;S^MkRKiqw{ydKzJ5{gRi zBSL2J4aLWMfFPAHo6;;`D)WWI@f!J_@sluzrMK5WaDn|clmh>X^5BxghHOS-Et>M z?VId_czemR>Ot?oB5356yy}bl!~+|w-?;MZN5@Y(R#!Csqotk# zKFCIlrb1f@m({l@A`u8UMG?gyP8+`d7L-|EP;O3pvyxg*008wZV2|PHs621jIL?xA4 zEjZmAv6qW6lto+9SFhUx`=3~#yfoLsRbuhcV%3*|IFcCiq}w9M{fpkP9~yI4LZ*t( zxL>4+i70)mDbl*GU(wq2c~#b+WgaT@?XC{vBc-2rSS?j?m_jfcwF2>eN3=0?7D9A! zEM_RkIRL^_0b(o4XkwpXNN!ckSP1=m80j6Gdu2%~0uOr(oKtY8GH( zLm^hoi!G$>R;b!TS8_ThiT`l{83Vq+!rBhTL{E&>;SnGFd5b$UG|n;F=GA7{8cY~ffj3xCmkaUX@kDbe2YE#48mlZo*6acuP1W39>Z&WKGu|-?EF~wY=nX<+~HfRJ&9aBEtmcG z+l4&Q<}~vuNd6oz((R?l$zGyCqYSpKx{=9V*I=8IHx3tH`D z-~v5eot3xi6@a}JZc=vXxL6wOhu|e2FVh^)J#q2_9znBY5(yCfkeSpmBnA-Qa`W)e z04o~w1^5kL7nxsHC(kwpK5m9$Ga}dmBq7Z@uuPgQwzH8`66P(8*uQeYi+U>6J~ai4eqA52S2W| zZ_O!Mzo~Jo34Rr@55kzbUl`LG#d>A9j>!m~|I#TDxiCxR%JMgCdDBaeI{m?MF=ldu zv(KZAeZ(HXZ|l0XuDYJDDOm?zFrpWMrL6VfLUCpO~t5~%+5TQ?NzKh-gI9bsD&Z2xKqJza~%jx zjxKh`CDY*h7do=jKJ!7X;MlOhm`^d3MI6r?xlh!hb*C-kDI^bVnfqVx_15=sbsE57HPalSk5{ns%t+1YEa zHRtpE=Ck)^1$4BY1~GJX#$Cy|UYKoUE`9a!W_s|o5WT0A_L6nd9>KUTgC zTZzNk&j_Afj&-?zpOtzW^1=&M-ZC=&=xd*Sa zurVTb12f*JX7GA==xNekCRXNdO|Jiwwxc<>9@cZOx(Nx8p_tVIe3tIl#BQbrKL!R5 zUe^b(w%5I?s?(Ahj85ZA!fUGc1O@ANd9eE&+T8=<=L1nTh$JdiUqe+Vh_BHKx-Zjn zH9dR(8j4lqR~Jj0%5LkL&vdn2CZ8W9fvNHW>MOvI#$y$^IYW!E>_4i%WV3nm&EH_h?n#IYU*B%E!{Wt$&m9THcEiM@R zS0==5aS<`k+h6rAt6kQjFMohd&J=e`(GJ<?H{rFjq6Oag1ovD$^E=G4XtL)QY$@GBg0y zkqto=ue9z-m}OEkcgq}n(8FG_@Gi`uG1oD^vqDFAs_zy0T&i{E9{l;$1FoA_d;QmP zrqh;$ewLM_?zOGSp~lPB$_PyBhO0~aKi0ccJjfn|FOGVH+mBt%JU~0Dr4|+0kK8NN zjg}QuV|y5Ni7@BJ)cgp$@5jr6ab=dAn$5Gtqe+~cbJ}dvdk?5+Zt@M^+)a)|@C#o= zwA`x;f{K2OTqA8zXIlt1`nln-7r(iApX|!zQ+-OgZR*A)4CC_eaLQ!7&b45GEtDMo zN<1F`NqCy|NC7kFTeKcBeaJhuL%S>D>4sOoO@bHS({gvq+OryCV*__Y6%X5S{m@!W zVPHUjVC^WctM}KH^XQ!4Wp;B-4(*~7krR8Tvs#TAte=thm|lQY$U}ZJ;*O`2c<+Q; zJKK<(IX|;b8dblAFFE#bkLJ zkoq|VKel&Dy6EfNE&_G+t1Njz);{iQn;-9AXYqR!elk4|mchujw?7QaX zbGnubY`~YVmK+y3n$`$lr*VWp(iEvAx@W}EN=RlA`=^^F-uAT?GT1`FTrP(5NiL6t z5EeLQi&v;WJSxhgMsGptuFO*!NS)TFvm?{JWY2bJQNa~w?{JF}Q@t8RfwpBH)XLc4 zhUuX?GGoRBLT%DV7nm;M+h!Kh30v*hxxUpbE9i5z7PNx%H;iVCIK+VpV^LzvduoBm zB)82j56y8X*JxTHNnUynA(k8%Dz}({|2j3TZmB{@`U~7i51#*H!gO7+Ly7QYxAXqM z^ve)UCnw+TVmaT8br*ko8IeHw-0jXTRt_Y@$!@8L9|807x^z^Nd-7)DVjPE#LO#W& zY+%TEfQDzcvWLm8YfYeUbs1V~+ZWwvUw>-Iv9omOGUHa~DVM5XT72<_Mvjn+epuxC zp3&c;f0`L0{oLyv7iH#Z&5hw*jbDZ{SAulu4o&qqBJ)T1Onuf|efqv0eML5Uj4c}4 z2J;%u&FmagQxR&>3{OTqeKAoI{duInxQOCyCx=)K(sj(XJ@_SvF5!Jr{6zK#Q+)OV z8>)0Mm#8x1n!yao6Ghg5_79~{Um;O%?!#AfTgGD{xW0>?_H+N5ptH|By<;`@eH$;$ z*?6Cqv$&>xKxhNgsm&F7>D7R@_@3_C?wD_q+r{Jw3b$uIUVpZ@CYS7HaeQs$UWKsJ z-MF`Lj~0a**G<>nLx*hY^xuN+{3`E$FT4(MRU2ZmspK{!;;bNsmt{Va{urQo^c;vX z{CyTllTL{D+8=Z<-B6K0_Rvu9KCPWjr-kiuDc8hIw+3}escq_$F6N`|69%ZE&-jF? z+HT!sjvH^9Zc%&T zGzl#mnm}=abwW({(X!sS+~V+c|4gmf4Ev|oaHSP78X>8N>B_o}lrztXu8wRZD7u%| z4vbe!t)QJ8Kx@&YB-m4moTO{^pXt*IZKb}O(edG)!Do1#?`=EXl=W8V;`;{YIXHh^ z?`a!2eMf!<2>(a}0-fWv77VNH#JwUh*BQRO2P8D!4DAboD#7cQQKy-nc7GG?P@kw+ z?v;4gMw8zwYG3?x%h=Q9}ZpkVTr= zmUYMx`S!X~63_$FE^|h+Z(4{9liNHTMP6v{~uhz6wu4#orjzS@I=ScLUH%D+>nG7%Fx%w%Ks%&cH7WU+2bcTa65g)g?2kniw&q3ku+-@KLzDQUsYF- z>bcK=X0@HhUdPT%-PTH4`)T$#Vpo+8xq|JIgXTMn^<7}+Neb&bksL>}*w8nR?@0XV z?82mkTwoV?k?;xCr9tlLNv8FQYco|AEq>`<-oAZcmn<$V`!*{WbY6q%7ZL0}5NvV2 zHVd!!?S=u1aOO@udAg-*!(Xw+LzVXU)zta0Sr;V4_Fxs}(LvCPUVo@B$vm++0f7n6 zB#8U=ty{8D|7$GM#k`}=&Z$D`il!yk^Kf>n{jJLpnXdJl6XcVyg}V!nE~Gq;WG+UE zxr`|#_b*B8HhhM`(ao~;Is14%r@N-32(Danagrfj=bm0GoR|30Tu{Hb)yTXho>#)2 zcX)IRh&LwO^%Z`KVwoYH)v!n$Xjm=&-P?lkD%q9!be3tRh5=j4-qh#vAziss4f^Me z9_7w1Zt&MVhsUN;f58=*alHC5pR`cdRU*a zdx=MLFWn@Le_ys8Etqfc+Skiv^;!QW?7sM>ty+Z@P0)BO#n7A5-mD%gyGx7u368b^ zpW1mTaRb$2_8dv?>Y&{NOS%|znP(dpPu8olb=>>f4_b9W^NlZiT94#7*MgSXZNZ#i zljM?8ao=ffAC&!?6yu54iSD?QnLl~ql$Axw z2**ONk+tV@LHMQ!b+^*_Wz1~tvO#*YP12i7>jjPftpzO2x^l(UmY4Ugr)6v1EYxT> zkbYvNN+2_RHZT+8(R$K2iA0-5@^z|%`XCkGBL&dyXhXf;dnf)?kvsP<-SgXs6HGc7 zltN|@-z%)a?vAZ=b1ZP^6+gXIY0-ZHD&EwzG-S25L(x)0$c)>>ImBsX%}4#kq_*ky zjXCP7N^$}sb)J3Yfh&!{Cye<=*mpd%g%od6nYpO1p2AA2AFqbOv|6{m{3d&T*s#$W z>}qoQm2bMy{A#B>-tZIHpFSFjU&sOX@HDhU*MKH@vo{ZIG#Px_ee2d1oiIw<9Zy2|Wc;2plyi&@{ue&{NVzdL5hV?m}K?{`kM zzjK%qw+Kl&JHLQV_}Y6q%?S!#Ooz5RMp$QB)i{xXAcQ-zV zml&R7Jp4D_@|?byD1A|PIos*jhE+x(Cj_J8zx=HkRvL(QTKq3>HBX;rEAXO4_d(&z z2w^}w`@lw!C-v0Y!F#O*(9B$zSOlIp^0rM{rrVh(l)5aSE3jn>w#=$5EiIT+CRjOJ zUsmJ63X-muYoIcd-q5tt2&|cH^oRwPX`6$~ zC^h&uEl|czIgS>wcSiy0cKWIBibo* zZEAQy{3g|~Z-cLQ+)6^VDy->RF z&Ow{!uC>zKe{zXnh- zmKGOH$)ESaFA<6{44*rJXJUqmc~)F6A~sgbAM)pg|I&azYFazQqoe10lT4j0vV!TW z_Q$VDd!H#B+70AXDj{+R@c{B<(0~b2)S}-k=kl(0heH_DZN7~4-RNB2t(q`C^a_^k z4Dw`8+_0+XvSm&v_c6I>4QQLK4+vXdxS~R&84q;bP!b~D>|p$2aENS+CkjYCA(4Bv z9O_s?G0o!55gIB^WbbBd*Sa=-lsn)3k?(-t>gtzgQq@gYjnaS8`uxq1H}`FpuH1F; zhi=`kCN!QZpR=F@d@>?tE=uI;mEbzTL$ z-&uq$<*!URnh)Jl%j-1Uc#AS547(fBosnVOzSi#J1nz_&xpbp@iL?V{;=?zREgxki z*3|MsDh$A#DE?aV%LWg0p!S=TP}{31Cw*BN;0UTC40sIFk}IpPk=W`V`yq5CM|pYX z2XpF2j3pZJ_;k+olZXSPp5w7J>C_V|fG0Lu|LsFP$I)LwI(t0brjGFO5@F6gNC&UY z7S4UMq$5=zf7PFQ*ydz4HpXKq(a`q6QR6_k1GF?x4EPTKoU%MVdua!1M=X7?MH$?Y z1lYIt_J23MMXg70jWX?eynJnIaGRi%!!)DFae|ppN--O?eyW5zEVA2GeaC0UAxdBVnx_2f@LT7o(EmU4RXEgsA}1B+yVWzNs9O z*!B1lhPG1c8A8x8LTr$!azd%1|LV_%Q87(16}r+r*R;S%K5Ah1K(y;Wzu+;#n=@fA zNQbY0+bY!5;nHVOU&OMr{A6gP>TW`+{FOOG?dE4{!uxr_^IhV634zZC()@%!l^XrW zH0~}9ts!waP*(s@#jDBQM#Qb~fFbpV)HiiIHcw0}BW9)jR^FgOpME7(zf1ps;ff0h zwqeB|qOEEV?4f%8Kt(aQSQ8gN3OrcS$i#{J#xmcwfyOdE2#k5xjG`so;u* zBX1&95bpJ0tXhQVa5)h;8S%)0^NRCpp337-{=t;LZvZPY+oRxJO&*~|MT^8N7r>0N zq+KYRyfVWf7DsFse~8P}3We8qV)+mHKIUnEulgwAz<8_e1^kf(8&h0QOOqz*$gZLn z^~eY)$d+W&ee9JFoFXl0ryn2WS%?w!V%?VW8T=HR;v#h# zyXEB-cN{T610jxU#wbPifk5~ zD$C***shj0shOslIQl?V9@ZZbA1q8gJQ-{* zJjIorpZvE$o-ZL@93tLrK=Cp<=gp!!<)})B2;qps)AO}7!`_pHv+{@H^#v*QZC4!S z^s%2Ecb>g@T+u44(iYeg_fzWu-5nQ|hu`vG9F(*Q?9Xn7ok)rG#Y9^scmp@k+9dCJ zJ=uCFtZhV9yuzwO&~EiR2z&n%GAPhi_}SR22@Pm?Nhz9qa3Paq(#OATJf>ILQ=UEA zZkkmk1t+(Gk=xhiyT^Jqs$-v8X2+`cZ5^FEI++L1d-BoOlz%nHdmc9YlXG+Y399-T85v`)#UXRj%J`Mt zttn69>}H0FDswFvg0W+it!@zPI!cjKXCBlMPN!AU5L=83pJ@BKTfBg+sK>at)ST9s zy!`4`y5nFxm$Rv&!rnZeT7Ka(hyNPziqN69Pc*kc6`}sSZGvJsOq8PV!MO1k?k|&t zgz58R;1v?^u+TRzbjUKJHH=juH^Z3cTs$sj-lAq#Q#zBaM1d8olo#(_ZrrRj_-N~~ z1g`&J<+WR|wk$fmqB}->LEx`nP`AC5RP!{;_W=S5-0j6J1HTXjBh5i z_NfGLjRsu|S`vB!?ThM=eGDe#OoJup*xk6*J{!;J^^_S8Q5nnqhp!>$7@nt11bV3e zzF%L)}e(VD0&X=I|1*XDq!Rl@LX2|^E zQAqbaO9?!aD1~Yi4AMM5T!RFVm?CFZ@D|Gi)x`Na_&RRWErmy^FQzdrb-}O$6}b~u ziLETRUdQ5G9!ps?lX0C>3|$hmr#2UcEue2p!@t33^mI&;P>G>olBqJ-weSAMJ7IpS zk-z4nR@~<1mcxSQc|%<3Ny=j22w_GIgChixy3^Z(vS7J-5Xg)j7iC`D>0%A3#lt*; zpB}rDL&-;NYeJ1jImqQ&z4njy2aguXhOZNn`sw4XUkH8c-2l-H6*AT4ZbBRuc50Ny z9x3n1a>HnHhOJ&8SaY)(Df3b09tW`Dc0xeJy%x*qkU8owiK<&u+>A@G?JT3E)#3fq zj7JLP=SbEv=ogI2Ufb55N5?r24Kze4QK6V zh7hMl+Z@01wMTct)j3J048Zg7Qp5@}*}3$tA<F?%V1dZD(+S{0mf3~u`)@X$Rg@l|gv?mMZ`o!Xi-U7H!SG-Q0uh+ZzzO`yzC?sV9)pWL#ky%h=AL-@o zZHzV0PuB4E-pebmdoB2{>foYn@IKk920f;Py*-*+oxUsnTFq!3AueR*uu7m@Gxdiv zPi4Miq*?Q_9a)!8YgfU}Yc4jhlNslIbt(e_xpi8=m4#+_NEol>kOP#$cna^6Ch9DRcRim5m~IyPv+g#RBAj#aM}ID@D=w`b1wCU)gnN`z z7(d~VM1c?TO_MWPOL7Qb$Y)a62oWKU*w2|K3{@?B3mBTtv$e)PyUsVV#Uv)%c2rO7W`5cVSShUD;?}9lO9)6eDNV2>RwyD7FDr`Iq zoX!g;n71B3{zUdp4z|e0N@6%qMhyp3)snb-j|3Z4&!89a*uv*I`yeXV>EJASr6|)? z8@4L-uSjDdK3s0W*VNgc2Bi_|2Bfxv;78v|48FGgULHdjaJ?B5e9`Iz#iUg7fWy~B z9$T^o#Xa>89MP2kR{p@A#t$KnEo3aw3$(w;`pY=|w92Y=5NSZ4oppugZj1b0=+1rX z4){L80&*vP_Z^H(1l})b(;I{s@BVXBFF&30jFB^sr&+LUfgR9TXLIRxuEwR>t;cy_Fk*1c8H zUybqKSt(xeHMF?1^vht&K3&+Zde(bwz+?RmiSZCNq~z;uUPIi8y8nt&O}0imGK4lx zgH1jOoQtwy;!cRZ&MgMDVBbh=A_s>GnS*7g4gqahDe>V!BSU>f0`T-aymL4sLk$6# zr4zXs;*^X2wN-JQKTTNTa5x+W-K7|k5dadN0;DdrugI+wjoIUX*v*7M@znfzrS*sT zAq497=U;i)nkkhISU4O*!+o77iZA|l<<2rWlD#jmxY0|heT5)*{d%lQp%guuk~-a< zlUkd5WhcVrDML!a?YA_qa^=CHQ=SSeH4UjoXN;Ob`Iyp4kk?yXmLQdmKZI}GE)&Q! zdd|njpmOUd>{JXhud%ZeRZ!f-U879&au2 zJ`4pwDd8U~YO8pkOC;LP?87(klYabZ4DfQe+LJeU4T{YQ&vx$kJb6a~VA(PPB<$*x zeUIVsoZ0AO-TsTQZQN#_O9xZKwXXct4*oHY=4F*UE5};Qo8_M{$npt)DLLW_-T!<# z>9VEO#^4TWZ-T-$@FnD&w^*47b!Rvb<1Xu@UO}mTN9eV@;ul4hxk{t?FVjMg?}_2* zFj7AQunkwR_@jJME?tI~OJ>2fl(9`4SJn@(KyOr)PLF@WEmedJRq1P#aM@{*t#eH8 zuRw0EKJ57)$n{lB$L6Z!$>dl6>blRXS9(wD)VWE{jA%wdnPrqgndg3Bz@70f&f?>B z(iV<9Lx=U&;Z$*i5o8qWSQCZf5+P9kpG%h@8_x`&&R zYVz2&qjC#2-VCP$eU1q*4tR+XNFxe_t6dwEQK`>pY1A#LK2*<^b5 zB%mz^jk`{s6bk&45QxkKF=4Qlsowtrh!E5}(7oPz1 zf?Mu7H^WBBy;L~r=wRMZ%L3p^7SoUD&?sETp&~;%+}=9#h%}H_viG7j!OKA znYuj-rmR>geU!gdEnHbeW@l2LjeLN#mdX8NS-CqsVN? z5>J+*u#wFoA?f5#ZhP-{!kpLd3t&Z{rXsiieIt`7>iF-W!hZ=2&H8(ll?}~4J57z& zABkjGB4tker$iIMec`=jntit2w5jIFJSG3W@l`=Ew6QPdtkChCFhKcWF~a4#+7D+s zhHriv9g=bqF*?ZJJWDUKF81qD4;;2&xryIxku+p|8pz3BTE;Z`B7(R{_0#{p_zqRV zA!n0&2R_a(=(7{zr|fyd&T0EMZFQQa?#sVcup$iugR9X#u1Ra~^6R*Du0b_n#k*Da z4GAzns0ai?0%UJV(TmiG@L)@1m`FQ(o`p!?lgRF>~FP$oE5)onKz!46zbzSP*tt7b(i9l%Ykw>!bXQI zz3+?EvrAzQi8led+7qK;=WhcFnuJx08(`eGncR7<$sF|ggeM1<<$b2_{ts!$2<;R3 zcywmQK6~F9w!fc-pYL2~UGB=~ZWNY285i*wui`=TpGr?k1|F^Pf)h^3%Gf4Gy4t#G z+_xUd#knZY#!s-*TtvQUW3D@N5*s>4yg2~f`^=cy{dJYuhYC;C;$1Ml->nKr>C3vz z;5qsN(jlREJNdtDIz?ad|PEfxu zAsqkNkgVjwZi!&x7jO%LE8i*FbLxMCs{8DBqFY}@`EeuYX1;wr`bNT<)F*HOd-L6T zOTrSx^J?{0anI{U!6@jEC2ahSd=AkUZl18)HFBq5&(uXur|QXUe~`aNq+9IEJ-|{X zQ1~uPjHX-33Y_`URn{dBBP2abB7*)_J!YlO^*$J*IwX>$uSi0tEpYR; z;}{?#UCbJY;(E_^UC@oniX5f(BypQSyiJzA8UFb7;=$Ja=_mO|qDmFi6D4upQC|GW zsj1q&!`>tw?L<7kV4hH6*WBDZAgtr)2a=qR)8y=~w7nxr=~ln@2}m z6Z8wt%aXrh$0^vPB6SSa;Q&GvgU@HFkWPAcXyfxcr}#f(Db0wasl+N&*s!b*ndR644_HKKnXPdA(HVMq?|W z$5JN4ZC3L65vp$p>PEgyo?AO+iTXal7fTDvr7yF1*0KT+EMm572INZgrKQkh~WUt*oZ*Kk84@XG}X^XZV*Gu{|wltn5^1Uoxlb|HZ}0ysd5P zcLU}11&=K`SeSQkPDN7*US!}E0#!qLy-kvrXKB(X3#rMFamQxos+q?8{XBMnU#`Ey zbZ;Ri`#duZqlSd!Y659g#1B7x-^)*e z_fLQIDxYoXg9lak{Vg=K8P8kTg2a3_2aR62a(Jcg3Eh-uwTWasy*OU})j@ zo%gOVJE)iI9@9SSD%-l_KlCTEC-=f*Cp2u#&>~RJwHYnxZ;i3RcPl-RilJMT3!tO8 zpZjQo1C@D!OIkOmd%m*Dz|4s|>&b;L1_DmiqyK?Q51#%A_zBB#@aS{#RoBqSltv$i zEcbNnCSmtl6;msWxFl~vc5@JNE=$RR*?b3UEo@-Qx4#zC^YYVDtc=MybZp_2J~(IS zw1fiu^c;As3f~fs&d}c1yi^+nHiMh+0bZUII`g~-v-h;!ECfJdgob2Bf|G6kDkk^8 zwSY^6u5?zz2$)K03lnc%I2AB-f64GN1rp7%_?`M*9(9B$j=V!EbXWW!tTT5(b)PC# zm)CvzkUHDj+op()(L?4mJLg6l&bK(zO;&3#6}v&g6|u^*e;bF*X}0C0!nAPN%N2# zIWr@fE_K9z0!Glg8{8*M%xYsOhU8RM1&!{0dNySuK9lx2?lkmPUnERSnb-8)j^tde zR!o-3q5qwkPrx|1o71rh=k^a6^Ke|>y=(Eg_KiFNk?tgChTzcYb@NdAFW18s$<}c$ ztjNkIPEw}PlXv<36+`)G!F;OBv!Gk>oO-)}b z$e3@)0RF^oZSYr{H;2sn|HPiS|0n!q;bfi)k0a_X?7LC|Wo@JMe%(T(?D09l<-(Md z6k*5FC(|wdr3L3>IKW})YQy&4`#rw?{!Oi~mr-~p2$4ay!9`=+%{`OG$G79l%MZ_U zVp!$0dV71znl%2}4bGl;;I7s8ey>k6T0r~XTg=l0s-8L9$zbN0Aq1fw{6*%7yo7*& zk?f|j6X~R~0u4FgEz)(Ivv|FziHN3MC8H8J)57w}hM%3|Uy7c~C3+`5sRNF&_kXqX zczS+1@!z?4hZqcEp~D7W?K~|f?M{B6K-QIiT{!JeZxu^e5ZROK?#A=_yfxzOfp1OQ zHj7xmS9mOM$yYtapJW~oz>YAez#Wl!zm$zxTa!IdJ2^iR*fbTufsHfdBCwI^1?8oq ziopG)oSd9*rNU4PJ4(sikX?yjmym@IOZc3YvvIRiD%F=}?g_q+7T%3MXF$qAY3J^toM?cr&QNn+WMdiegM^gZ4)HKIp5Nn}>UOw*?lK zSjd#>ksmD-`>13eT23;P_e8{G+Aaj!V+6&vmw@DzF72PVKK_d*_>2SfK1tSzpB2{~ zxpKS|OVg_E^Cg>?_rC4v;T#?>%s(pBOmTE{Oknm#dvxC+DS94r9DLT`1kmSv!>h$J zh`kxOmVcQcWt`DBQpO3T0bQkWT}{2A1DtvBo3<5r2<6Ayk_#@+SP4&P@=_Cs;BfK2 zGELrs9LEHe7cVlyi9YC;Nd}Z^Y)UN9ysGTbI&eD#DGl8iN`d27`_`OZc*E`q=%ZAY ztvLuC$(N0`LHTQ^(Na<&HGSFs@{F(Px+JmE#>=DnswT# zTbs#1i4eKSX_Jz1Tu^2KKbZwlQSe6R3!<}5#0oD(cdcNy&^Bg7tp8(Grb3EozC5oUM&b4hVoGCSPkt(AB%E2XqVv6IeoJ)T>etU&Y z40z*bs74(q#U9BpEDo7>?20;&D9DZ9x;Kal)xIANwGLQLNS=Crmtdzuwi;TsKEeLh zDLjB?zgm8R2HWFW9IPMotwZ2ylUBU}Gkiz@Ici=t)ZYp!=r)0)jPT0bi_u#i1KuHN zB3g0=_wVm7In1r)gjCIX zjqN-)4^Y~Q6Tp?9?NWuL*u-8GWbKd4f19$j{JT(%bnUd{4_d~?#`j&U6?;rr0*g~> zL(lR$vsK$!b#C{^UiH%5k+%Pr1PkAd#^N*tt~2Yiz+ykaw{R})!6PT5#khW z99J7yJyw&f(x*(~(ibjE_A?(LY~l}Rc+ydmvN^#HGGLac`FXkeQ|5DU5^R6JlRrJ# zeo%ekCYbE5!g~Mwt2&u}Toub!Q%~-0>!vW0^lE2(MUGEY%i-A)YNoGdxh>E&Z7BE5 zv2klK)2=tUCwSrtA%Vn2OASz3XKQL$QdL-+Ok+=nu~>L67#3PFG(2nB^Ea3s98=nI{v@OI#dVFx7Rw7xhxY#FvVEWu8xn31L-2s);AGN zFLR*7vq#o=aBg{(@#6kik)|eH!nd8RE3h>hkwJYH$qwuit2ui`yRb%1@aY|qh5yLI z0d?D7Cm<`dxspF`_fHVao%i9vW|O&im-Q>mc@xqW!5fbL(;s#YD}tw^w2_lLr{)Kv z7_`4Yv;`S%CpzSAiBj&GE-MyTaes;7-nAejCRIbxSLH8bu@X@fyH&SC{qa5Zn-58Sx_YKOD=T)F$xnjX%*)G}pZ(6}k=%dexJWdD+AF*L*HlUAM8NJ^ zXFM70FJR0~yu(t?gL)i!yYsh8y7VN$I&cu8EVwdf_Bt+OYOch;1SsTH3#iw|k?v3B zGYezmI}z3&jJPLb0+cFd%nvOAm_NDJi0C;73zsSEiLiBBg?2A55)n11FFX@?w)jMe z_urLoka8xfO(RD5N*ohU7;|E8+bJ{T5rO_(0o3hMOvEqt3oebZ2cjyaWF2cPtzu_l zXPNg&a4(Lpz0YJNl908&{;EtK2p=ug!7$*Kx;s-6#fFv=MX0TI$+eor%3Z5d`AWB1o)S_Mi)Tm$B;?7;6miXh`-44fCI*J z(dH!>1%CHq3560XQX15XYgNCOXKoJp?em81P&UZDrfb;dJS*H@qNg7jfN7*y)l^0my*b_xipUxhK9ZK$TG()bl^E;p-veAJ`YOd zBx!1g0L}RDTzW2f2{Az?nZv?_{T&)gLVpHuV#QA*pR0K`@a}o*;WIo!`n507d^UY!r<7WfBZg3HR*%GaY-4|u zE>;H2V$}V)b7-rIo@2J>@yT8vD&!$hy^a5CyoT+kl2_hro-^H|>!m*6`}{A^^tajM zuaYjaRgP^R;B_!BT*$XkBR4@@B)V&1(dYO*Uq z5kxrI4YeOP*%-eU>zB67yFOy68e{#hP8JpaUh3wdk-7%Jra^wK84;_@YN zibKsfK6?@|^p63uq|9Ps_V*1SK_)E?UP0ISn`C}W?kYZ&B$fd*UwL{L^ZIT|;m5tloHa+%-8?b?TcjwIp~N4$-FQFoBI7<$FX-c(&hV?zRKyPHa5c zUYU|nUnK<1GyeL&jg{3Cd8rQq1D6KWMW*RVFh*kK45ycm?VfS#U+E`6e)LiSG=5Ci zLXU)~m+w0Zmr}#j^~GhgcgzGYDQ*a!{`$o&adfuV4Yp}d*N6WZ@CRCD)>b|txHWlG zgg|Zs#%$v1E5oYHA{ioe_Kvy;F6-iv>lEwbN0OgkLn)0HpEEuEVnI$(@ zXu2Q&#+QPB2Y2%IyzHx_n%S%v!$!28u^7_CyRUY@EF4RtT?l!oiJpc5FCBO?Raabt zpWd>I+6N&B!ZZ%9t_g0?t?TLHA=cc@I`DYHaqx3FQuM>-?n+{5S(l47l@%f>3Qo&U z%^4z#6^}^^xbi}l3?J^qPeKsI204%a-D3>M{Py{1^WBLE#g)fw1D57{k&FW+b(z8& zs@&*U`A+3$G=~~W9Xy}>^qU6krd~VC=RG03_K7kbP-M=IZUQ<)52NuJFM#cfvba^c z5Xmbtd%F9qd&aQh%>?g@NZvFP*65#4NUXg_x=PTe=3ApTy>P!`GVMT)?fOz`>ht$J z*GK2)?`*(7qpN`ajU%3Au?F!a^HWt}rOtEEydJlk1kBYFb{_}IlsoJQ2R;e-xB9fM zd-Vut#CYMK4Q&8dY`yP%npk)p?0)%Ui9%BskAMHS7QpXO5_@T9)l?q5Qm0|3a^eb3 z_8y41>a6;*E{vbldiFRhV%NvN&OUoxf8jliw&Gpu_=hoIR!H*y#cy3_mS&DoAknL6 z|MUE0{AC+EL(o>B$7%Xn->sMCceliynS3V2*ZR|v+Fvzgq0w$V_+c~4Q z3Tx2*gA=sd1>66YqIy>OO~G`|dF#W6+sTlMi{`V%>IGGZY2bpaH2(45<`b%Lt#NjR zBpR_>uL;djGfGUUf-R4Jr+pJOsMmJqcL2f862hytH&c|+ESHxIzXiD70MB8JN=lY9 z$NngMqWX@DmmSz7x}Z#+7?>Hp=uV28<2hOgjO4SdQuo^TddR>W8Vm-A zmocUlNjxmA+ByE43KIJrxRr$?S%>V85Bx$}JuuoKjmr43Y*V}3Omt-y^t1%ER$86{ zaxdE!C5ch@EG3Oshx`==alg{>FjbHDFIRBS)DW`4Fu8YTs4Wsq{FIM?9~)`3SPPPXK^Z0IwMc7zDXPcVpyT{{P9t zyzlNeEKtMVU zl9fR7TE>5^va##@HIR6^xBgj{4d2DWgiE}G@T1*Xobi$a9w02KWN+8Xm4=5|`o%!0 z{OH-nBv(a>?kz$}Y6nX1o~(=*%6G}s|HSoEaKIrg!@EeAb*zAdI6Xa=-gUc#JZzL= zolb{C>5sS^UtD?xUxJZy!3$@_yk)`wu4ByLb4bQ=BFWP5B~r$)AX1>6r~-!8%;%@u zN?&pISpENkr(&i)v!(SHRq| zj+l*`UBk;PFLonMmb&7Ss;jH5x2*C08($at~=f%Z?;cr2}!RJXX+JizFDVlY$gW^)r#my?a$%xv6dzhr#c=mQZui?OeWd?n!26I}|E2N+5GJJb1?;6JWLMCj%Ad zrXZ%Sf#%4D16;@N8)1IzcTU@aE#~Ztlze&>I0j#nt?#`SAcllS(NtE+gP_JH(fAle z&WFH&PQ5f;gtwD#tKLvx(<8`!9p#uHV(__zgQ$Og*FjGM{ljLoGX);|D2wP`zMeAw z7vziJ%3IppYzn|2qxkTD355N{WQGe(PD_isIg(h|w^CZ1%`SI7!sW63fHe^e|55o1 zBK5hN_hijqtU{8tg0r0VzyO<0tQ6+%v~O;D$%`Q0f=db3_GY5(Z4!4W`?@Z1G_o ziP=cIPbU$o3pf9%Vz1tWPAp6aay%&whyU^OdUM_Rafd9SdDT0rZ%B45 z(=GPDQK6LiES`rXc-=b11qnBGoSYQz{%^&=$Z*(%H}WL^DBry5MO|&ZuTglNMj9+W zk~R3n$5Hm&ha?e`<)(sE(#Ib~{qQ-f?|E_)DsrGXWhSjYQ#db0WB>H0AB8NQXRZK( zPU&a@%?ECrFhOK-lIo@bTrJ(OUMC|^Ip@XvpOWjcgpOpK12m@QqxYZQAu_u=3<94U zy)(@|-nxg!FLrPI9#ivWF|5A-spG6^KzP;w&UH1qh^9L_bYALJL)87gGvOj>D|5Tj z%k`ZpHZp`hv<~Fn@6UI%IFs_n$Y%Iu7Zo}N@U*0FTkt0)_v25fIuXJ6&#^LUZHFl} zb|BRmg>Tc_7vx@?E*ziUx*nsvOq(kU79kkF`|mtY@TAo*$fElCLb&mHo=m>qi&s7_ z$vINqT;Og$-ec{#L&ExK8`@+I;_S10ca1&va8x}K3&(=f)!v!q_V{@^XD-lhRF6w0 z_?3F4hp@WPWp%y21CrO}K~eq5NI&(Va~kpLT8huR$eaHvPi4>|`q;9<+2a#Bz*s+EPC8}{aiQV)P0kAT{HsX9i%x3T7`pvk1G0V>*z1y zE{8P8RU`>}kdl%=#@K$|`=7-7y0qNX1#|zm9~ce!eQ{f|5H>>+PZB{qUSFh{c^~LX zF)fdxpQ!3i=Yq`PtEdKkhMS3hBIsxN&w^1IIO}e@>960UMe(=GK z)X!8tMDTF=DG4tqF(oK!54}tck-z5CWA3bxm*Dp(JOCLaY%FAQACnkr5&XrFeh@at z8SpbT&4b6#jm#m^FcC3nem(aYP5k>51+t&Oj#u%S9wY~RyPkSShOkqY@<{H&v5?$S zNj2Ey!@iS(b7G4e3AV?!D{ZF}dbS{DmGWW1LsMcEp??(}7wzy6pP}eZyhI)251|V|W44F* zU~o2}ui%0Gd|l^K*a$IDO&V7taUj5*EAd?%KsKpgeF=@VyC!4Ht82g#@8tPgj43+( zvZa~h*0AFCbS2vDs44Xdr1x(7iTGR%^)&Y&l=Oxwn|EEA#RDn74Y>x>ywwtV@B_U9 z;U0J8id~ax-!wDPiGO2%rW(e1RLjpP=q;s+k56+Oca9%aja&c8LrI?fY=>K38uaPU z2rLyK#U4b`Y`pQ=LnRTNA}iI2$SA2KWHdx* z{I2`x{rNr~zkmF}aqjzm-Pe3x*Y&&}U%HphgW&fsyAhBHqMHuoi|orKGH^830w_P> z!;mgqb9G84j-uBzyrFLmTBHuW?=c)*x4{El#dLOK`(xo<%mJIGU;t3ElkZczO8s~z zdTn=)mW}w z19M-T9?)hyo!I;Iol%IZq|rrGHJk{Y=Y^J@P(TNGp>Ue-@ZyPgT<8S= zIoGc>d}scZvFnIKXx_-R##*uz`O*+LL*QA>DJ7C#Cf@n?-P#8mABUDJ!siJ*FhupkJjo8;;ToGj-1w95%sKY3 zr6Yyo9{a^6h^W^7@TOZ?zaz41(($cVE^o4v@Wd#f<~xQ?-Fb4pS@Ay-eI#oP=cliH zO5Wah=&58{SW?DR)Nv^X0(Zj$@;<-AJ}Zpv!}M zyt(NJSNDE*k1@+L*CEE&Bi*Vb7vj5Ph$>Zdl;XCs2cOw~?(mb`!JE8QO>)$Lu!vSX zF1gM}Hd+ zthe_`ZQ%l&cW>?;%>0d1a-tx9%0Fo{`#lQ`-P2+_-v~M1j32jYrjDa>=EFjDTe`&8 z(jK2d8@{$8{%!mm{cf%1Jps?>a-}u8ZprdnE@Er{*r1h2^&VAr<3z{KnpInN?3z!kK9&L{(6g+e#ec5|E z+7j=R9E+5M54|0ohz%rdm3YTU&H-6b!7Q!a7<~EzXmbXvWxet zMK#HZ?}xm7mphIf&cdR)*mlLY#8#1n&k2~(de9vy8-|2zd8yB#@w%!F?Fst0v_`J- zgVQ7A*IWVyL@Rr@=8$!~vlBv$kwqj+tpoToe|-Xlo?%mf_F8x;K^h@zo>`&EL{+Ux zMN*X-NSxn}#fhTsvchcq<-2`t6>Z)@ z{wb5l*Mr&uOR(IN?fzb*1JOqXsRtQHUX6)5H2>IA7S$GM?+)2@f3IGQZp2b+VPnzN zfRwR?^UxdY5PRq6JSN0}MjWaF9H!#tHbPnvnZv2ZpM-C{N;O~g$uCP{&h(LeWKvL zLe-lmGN&W??tYy56V+XpgEqUxQ*}UPtV9t|6}kwE^Ic3OOfbf-w!F`3O5_2d3cLlz zIjP?@=```_zVXilw!Y*CBReEWxRO|IeSB&b)ee#dZ z)A-$%|6u`V6Aq9z0j);A>Hb~mU+!};E%4BJxI+D+T3@AFv9IiK8oqdgLFWy(@J)ew z_r!4jxI(?;V(WMF17S+Mrb)}k!h((lm&6i9Fvq4oX*!SPBc#Sl;om1_zRH;b()W!p z@noN{J%ucdS(>fSukK2H-#%(wnM|{I~bKvQ~#zMS{>d*{xg4M)X5`y z^19kiOARFdnt`_3fs2@OgK`{27D%)hy_V`Fm#M@Y;C zQR7^Y;yZbZeBRcr{r!POQxg_#+XZ>t=%6u z!>{>xW(f{oB!^%}BOWzm-AXNtWJ(m;uz|X)z&B;IWvrxC+P-qimmkH0>N zMWPKhbTf17U6RfAQWb_;yMiHkb0L-w$IeUNy%O<&3Iw>xZocY){`y5Wvgl<#WfRhm zQ^#&F{RlYc8aLXhjd@L=il(&zS01R>n=}rse^!&+jv3N;^`xOwa3&?_0C&7_bNVAM zX9~7YDS+ZkjljGXqjSxtUpRj5ZrQCtVU~0(ayZr?VZsp;xR%rCIDvy*PK%4y_YeBA zK*BuvfMfm(hq_)vBX43?PML+6lZ$*>TFI`^Q{AeyjbZaDQjGgYAe_3g(juP3`6zP2 z(?;}Y>K#(x8Mcc_&~kv7&4v)?1wI=_hbnOhz~bW;T`6w(gdN<)F?XQLWxsQ*?2Y?@ zeLX>*lu5iqW471X3Wb&YO^r7G+wN^{)V3v4p_TiNyRXNkAG$^6PH$Hkt+NP<%WF$y zE?A20%Db!$ozg58Z)$n#n(NjMO!m&1vQmDrPLtkkRS)=ZtMFHY?RI$B|JrSb{n4na zR+rTWO<~ktvij7T8xP?KCY(>;SCw+3xQxRTcS@IJpFOGNe0`?_S{wUw^m4?Z=8%@3 zTgHvOA_8Rr31(Q+TsDCzrKa&@pnMUQXiwMK$XS~=3k}M zo~T`^Lsxt{K#l;N)$Up~eAWQlZOK*va z*A$s#Xuv+2;%AEb#5O(Bbs$H4WR*FCy+DD8bW)Q)VTN)C2 z@6_)_FYr$%85>&Jho39+1loBHt}iY*?4uD2X_>; zsN)!pw{FYTceiR!_s__MjrO87j0SN{w$xL8lMh>+9Lx6G;wFs`3=9CPOxl&o zNS&7BH}4)H>4(rYfWm57`O@jVd?L-DJ+{L`FT^3(R!zZUA#VD`(RNy!^Xa_w6^JNqM+G}^}>=PY�&iIcJvOTG1`(mk-7=3ndp zJsQ|wd##>j@#n4)#+`sU1Rtz=YiIU5emdr3hox0bZ&I{3&h3p*t|R27<1?JLOAMk z@0BTG7|>ZIsOQH#g`rwR*&)rN6b9DH-B;~4bZmO3zBzy~Ii z!sg&FG*3Hw`i!Zd7+)zXBNaGkA937 z&~^K)X7~#_8gFk2DJ7|Jph&~!#Bx(NXv_kKCb{|V`C)~Fj~HLi(5}hxxVCaS&yF7* z%6j?=D}vA@w#X`3x^ixjHBAdW!WL>0>8U6!>&@9+1aF176*1?OP9<=WH|-?40dVF(rO7(MP-OGA2{|b*pF$`qw zkhLhBtj=B#xH~T!TQ4yyX$mS!?SRAer{`VXoGA64`;+8HZqY4y03qK*v?*J{qR5wR z$?}qUmnKP>Roj*@M*X4JtQ9bJw*`3M95GOWJAB~nW)Z@K7^)R*d^7f|H4H%hv)x!; z`T%XI^+H>hjJulsB_ymV@Nm^lpHnt#5TpcPk0r*=O$TI$LA~lN-LX8t|JYuJw+@9_ z2@A)h;97qA?yu@=#wB6pFi|PCiU4%J-9PU_m}tSTm3nejEt z#xn9*YV-Yi5a3_-o6Q7o%myKv+ zXds?d_mLMLk0V4PM`8+RzLh2KIIL{^luS})4ww-b`|HGYbOy7T)AUjmuJ>mzc{-8f zXvjokX!;9PsC&>OM{9j+`P=D^nf;yb`-T$#E4{)hhbWi~vN)I*)3_$${0gd6FqCL^ z^rc3m-m)RFM1DxZ|M2G>m(5LIyC~}uPNDojNYXJ;5+u*NgaW* z-SoLql2`7L^ZHkT7s4_>(@ZbR2=;Ila@~>`vt2C9>c*nHS@A$IK$r+bwO>4UN6Y<5 zPlpudFTOjI%rQ1qAy=snz{1)gD+`n4>bqs8$7LRd>}8U?NG`;>2yQ>;>l)#1Ca;Ey z-t^#B%f5s8qD`l|#B=A(eKER{)Ccm%3M*dchaRHujN2)j?o@pWdxY!D4RTv}bwFkI z+CupE-6bo#A7AG!K`O6J24qRROesxpGwDE&)tC~`MB%+B95ORmhSVp&szYm5bA8PO z%WdGaX&%UF|0NF;Z-HHAQ$Nfv1++`-Glgl5s(|%V5lG10CvtYdzw+*g8iC+uMj<2Dlsa zs-fokA&483&vIZkm_^<}K&n`vsIFs3NH;fyPLS$jta9-}Dv$bFh@1Hi3y{bt~s0NerUeW5=W>@h6%!!v^q4U8nYBzoR@OB zE&2@Oa{z@w^zmVT4F^MTU0;aA8(B2LTqcp3bnnw;y%elX7BIvlI}I3T@8LEvA%5Ao zz-dc3h5fFM`2mYQcgn6U2{ExqSSwRtjTN@4D2eM!0#Q>W`>C)+KWX_)=9K?slYXhE zkJ#vFpwHw6d>N0kYTZFSsj3ZV$s3oG9HYkfvvo(r)22+n8H{gM8d+98@qMmC8e!SOPzgtOU>y1jBX_%39#4#2Bugcg8 z3A!}?fK*9sOMCO^K`ZvzF&eUNhY9tG6|aRh;vOD-As(^AEkCjVR-q zFFg;PrW8576uM1PirRM@IoQ)qv`_C|lhU>Iv)tT6oHIjBwDN%;@jR|TN_j}APS_tt zkv?#-JYE$J9{nmY{)h!OHad?vcPMMFHwE@GRy#r{`yFGPeENXNt?BiI7rph6s`m4n z9+sZYm$*B#Xkdn@2O;3>@~zfeVL3I`8+<6E^Z;V@x)nR8NO$s+!GCSEKGlcc14 zO;v`c>+&H{g|F{yU#$AlJJIi)I-2{3I>k0XOt|Y|Q{tlc7(fI%%}rNpE^#Cm?h|Wd z#|kt&#b11nW0#;_{XNZMyr%QG&$gXVj~L8u7<(8KLXEt+hhE!!{Z9GVFZWiXrJ{mo zPh-2eU{%>#7#QE~VburfKHC$!`roE!;F?^BIt^otB@v>#`LC28i1<%tuan20hr=*o zYz|7!#4Oyz9mqQ8ykFg^p5dF2hw8($nX%$ECI2MPc4gJE+ZE z#n820C<!B7J%DNkSSQQ4)l%Jn0Qy`(G&YJUK>ij7Ew|AC*NJg z*dlTT(Qq^pE)4ag%`ED}`I;V}MeTj2M;gc|#zVPiI^Y8ALS(-D5y)h~DU5?fc)EQD zpOy_Wb`|UKI(Z3Urm?2u!Q~{gPI&bDyy<8;YN8`qK^VTUp6=l6SaS>ATRl1ZAHmR+MtA zA9R;L14Q*4&UBAI>KtvSjhSge)!;1+Pm>ka*r#ukffZ)KBCQV}Sj5DI1h=p|BoeK0 zp#`=GxfUljDSAlCU<#CIX*C0>gs)>}1kbZ6%_DQ4zeReLUpIhynX)PEg%yyNF1?fZ z>4E{hfTp=)9GWnknk=y%0Tq+f(65c?5sA7gFmdWfJRnVXh*O70A`f5_L?OR~#?NoR!{S2a;IgUdKF5|_7qr=4q6ZQCKMqxtAw;F^7yO9hjSf6VUYRjXZlCa{g+}Y@l0QN2JD}Z8T6mr!pTJ>96@XA zH7KoCra~@Blmter<&>>543o=B09S#suIS%})+Uv@v3$Jfqn4b}kK;W+?TWfydvYjw zP-GtAQ?lMA?mU{;q0BCQ!J>NO6%njGQLR^NEO#H8Jns8!2f9QhiTvzcB@CPn186hD z2H+m-?a2DWkp)C>ATG|J47V#}rZp(@!ZpPwRX3i)gmSd1Uq$BXsu84q+ZqYm@n7oT z?9welJ@tO^5N9{8by0!(!4#?kzSAf83r_@3_6Ha-Q35baE9O@MmVXTIDM2a~qp#ld zKbt4_Z@x|d5lo|ivTt*@dFhH)FI0Rq(zl>p=4q!(sZ65UJ75f%1Hxq8p4^@^N1Zel zPBQY6k7*p&{pq>UWd#_MHh-6~zu%;fV5#f|ctF;}K!+FXRod@;+dF~G0Cgeif{Wan zuD|Jlg-*aysOcn1esb1cCUBoN!&dg`kNJhX0Pc+ag6x+h-0e`UH%T5h>;&5jA5~ct zac~cAxT6VG%J}+-s?X0KEK$s z_~SP0yG(RLeGFs%W+RZ(6Qdr+1|p>I`oNJQdd``Q+^9>3hs^^m{{rqhPzyB)-QluKg# zJ`OsYRG3LK0-vy%`*mfN+f)f3`bu>~)X!aMQl(|?#Yh%jCd!np+##7)DO_NPm5?-% z2KgjD<#CDZYej7x6HC5&Sa8U`6Iw@Adq%(L2I#|0*Nwb-(?=yWM$I9CEj!da=IeHq zjuY1}@Inr&AQnr2qLk!ZZyY)nR5-H))U^Kbloz?0NX)F zPw+uSdq2W<=A3%c>{~Gs`cV_m?@rt2h~G}!h;&~#OF$`vrXr-6xKHU)fRyP zplS5)0~pAh%?u1&e8;X{=)$qfQXT2L;zr|NcOnojBXg^zJqs*{J#&j_$fAt!6WU{Q zX(McuP)zZZe~#t%tCoj)8PZcC4H_I_nH8K)8(KcTInO0j*R0eK9p~n?JsXDUc4#xD zoEQpu_?d4PDAcK8GbBZ2)M5npxpG@5`{>B=V)5NZWScRUrD1*w7j{X#TI;pC?Y2gS zdGeHjua9%*J=I3E@Rr|X@oeu!PxnozLcx2|VERdcGPs9RXfD0=;a}E6Q%ALxbqyGv zmPi{xw+=|C`Fx(cZn^|ju*lKbV=J18oJjGIN&x#D^#ik*9*U>c5*4_vG@6>i(z|!8w9rABcw#tuZ6;M|Wd5le zxPc5LfPAbXk$n^a3CYCcNLD-LP}zSwUz$>8eZ}y-%eEY8%gV1eh-c{1eEJXIp>y6! zr~cth3zvc>N%K5|R>x5(EngWP?cR-$e_}s{{QP9w?rFh=vyHWVxg~g+LNdq5tZg&S zXB*UfB>Vo5yl=;k(eM3W%H)TFk|EgBjJg4z3QQgt8lTrsR@mjTb?2MSsFmU}%}X7{ z#mV`>68soeG3qUyP#+Tw5xzZ2a)O{tl*Z_rz3F#*Z|h zf&wN_A91Cp?-qVJnqPtkB%44E`(v82;y0>z^x5&{*?Q^4Un~~~VUHjgiowm3H;?-n z&|1+EkF4!(9Egg0H!j)3&X6<+%eMOLf-(!samxPf7a`-7bx#>NeowmP2g?^G3K!<~ z&9T=5S_Ui|ydIw7Aa7EKv%>BZ?X0dCazoMm=O#1s4!#?z%mH0_2V_LDtrZUUJNdj` zMZ5J7_hyk)_ZIxv-!{phdIY_cU|ZrC?cXhYD6s}NX+oxq{nE5$gKbiVPoE#k-{-oI zH0mWR&(JYrFaqJB68oD>fl^E{VslQitvDYN3%04sWP9y__TVCO-qvVALs}wQ`}fh1 zoRk1ms<6XGVQNB#BK18Q6>VoCta?7|2C=_cpQXK#LoX_Jo(bhoANqBF5Os~aI1`0s#3?1Q$GEH}4`kpb_rc)}^2C3$;SXaN5=|l* z&jkqCUiyg{7BkIfB;z=-W9sNLe9B$v9nHfUH}6279bEqy#1gA#s*Vc$sw}nsi4;L6 zq0V#kNVsA;)6?V9bnb=AGIsZl$9K8mmUxsej#mZjv)SV_+x2K4#+Wyu^Fx0?xTlFi z2l8-;p$lv!Kabk^Mqt)-y-}~0Sxg_6b*1fM&S)BHoaoy%aR}s4%wo#BmX&%lXswV@ zNhU->T6XKMhgCca1Wh}*Q?(Rk&&M73i1SpWXC|0+xHQy~g}J`u5P=1z(KO+eSgP=; zejqV|E4s^2Iu|UDZoYBN)5(#DdVcU}V2wAYULwB@!SC#NuUW4Vrd$?o>JAvC+CBFr zUmXG2u;^;qi%aF|)~8Bu<#COuf^ZvGB7slrDov~+4O}ZmD)u0GwOi>co7UQBgJu~* zP$PAp(74JR(+u1UL@UE%^l(Rhm>6I}k03RoOM>f~w$zI9WZ4@+XC`r@DQLZ*5c-hI zoWOP!EhpN?YyKvUvM)b=Q!qnzydmdg%;UozR66ft9AEefEyvtG{H?l zEhdvLWZPc zAyi*#*@}W=zy|m_q-YwxN4sN6o8oDkG4;OrJ}_@?XIWYf)6yR?j_Z~iLh}Z-Z$^Z!i zSrJB|$ss*#dZ{gxPbT({xmq~I5ZeGeYnpznx>|c>4RKH6tixrpn@OY)8C(e+t*H0L zJk`a=bM{m#Z8!xca`VM$D49~a*0fr%68C&FC{3kysL>g?9OZ8 zE`Vz74G%a&d{lp9Dd&muV<(6U_aQ?vEMFtlV%e)UWEXZ#K_Y)zJl*vX5*KV^ldO48 z`Kch|p&3pjY(fd&CUKndu46_fV}TAEX)f2?Hq^48dgx|@Md04CbPl;Oys62=msaWC zhiaXL0AMz7~-)ro~5HtUrM`^L&qo9-x(ris0^w1UcD`Y_$}Mng;7<30Yseb_=8U5j^;Oj4A7N2+lT-m!vKjvH&$Woii`g ztX#nhG>J+S&&BI~Jvwo?NQ_M8!6YEvMBVW)<9h`&An_?CLz^K50g}|4Bt7%gfa?+l zK)allOq5;mqBmx(-FDqYamq*udQs=w{R2+*#`OC&Lo+-OD8Vii->{@fw7msV>tI4Z z!xQ$WvQ0COYF{Yn+GZ*W>Y8)%fzg#>b<=%7(@7J&eJRAsIaTCrzcCX<7nzwb>Faki z!nCtMfM~{XH~j}(H=XR}Rdv8v#|9!i1xl=&@AlNgssAf{j>9n2v0^*ZsUj_PIN%8M zns1uYOm-Qt`FKiGZG0lk{=)*KC1?Cy!Xy9xH-SGOnR8w)Q^NcZ#u!hBoW@w@5x5)y zW3oIco^licY2iskxacb{Sd`YkcfSZX%~RsEi}w!;I+IrtPwc^RXYdwU6i-s{h(H6N z3q|C!Oe}l#AU0Eq=yZ%Il?5G=U|E9ud}8WlJBIj{P1vP2lEuw-p? z?JP}aTc#{PNk(MdRz-LNTxBN9%bchYi2U3T=z&cld)Sq5+#8~^_zdYBG=bMtGJ;Q0*!8dw~>@I$0O~^=4(F=|{ z&T9hB%1K=5O?|=_<0u*7Au;79qAjGC^(nJ!y0~b zF%Xar>5)Es?F%mkc!V&4p@?^NQ%UI$eQS52>kZGJ2=blw9rQvp@iNN!im-jZY$X{) zCMm>fthjhU0RG3_17+~Nh-@ibVP_h#Gep%G*1EF~U+yeC*eZ>j_geF~&KFNOjx!KP zX)KmBR-_TvSf+`YZD*$MCIJgY+6AJOZl^=zp{9B^v@CSZHO5DdmT59V2C&ngFiXEf z#s3aSL_SN8$<{*G%f&|I^^0l5IxegQ{uA_ zi_+b&x0D?cV-Ps)=1v|_QbHq5HU$U`&p?X6*W)|z7C=HnIv6|`OC!Scoqg!GCXJ`w z2=h^*bjBm9;$9r%?cq*45+1QU9@qQn>86V63^+iv$}HlcZ{v^v`Zc{%6G)Qv4VE*L z#?30|DUceBe!YRu#6 z;%ODc{=BeDN5{(Aw?So=K(8oV}jyt%JN!bx@zy@D9DalUcWN^&%$CblyVl zX?~ig=%mB!_Y4SqveH%~Crb-R1@hN6EU$GaDjEjl-*WP{9)+N`9nC%x@pB?G;suz} z8tI4GjYgZwubE?IQpp~mKw*8?#OW@W;+`h@&Syqx(OlDfbk5w+ndnYOu!8mkS+f@- zqN;CFzk#H9qmIE50sfjWQxn<0)6xt+VFT2z0DTGrlT;`j-pW8nF-VoB6ZH!a_&cBW zI9x{|pC#6w6bZnyiV-H9DDzu%y!N>&I*w{DRDQk7QV$BV+yM>034$!9~lePNW6WD zNz z$=oA{dv3d}xO!ATmFeI{L}AU2YPC3@sxo%WdH`7_Kqhiwf5nMq_sKaJ2Ich{k)yf( z7k6IX4g3$Uz1z-oJ72H|g+@NT6{ZB7q`AH7 zG5~&Kx%!q31(*{lA9yd}hKL8H4|MT{?!@x|>HlaV$^IBH@VVGt^{#;fiD{5}An3z# znEbDY=}C1AGE2f1cm)H*;)L%=*=sfE)Sq<8O;=dcwxWx;=qUl)?2OM$oz6shyWzQF zu;+&qtYcn%L;B9XTx3dYwx@ajED@(Ibt~!JF98>9#Ouyml`y=^L7SrbeN*sn>itkI zx+>#kyu;4DJ>Rx9dwsfl^sgz`zkc5fT)4HU;zedwJDofKUb-MEnpDNk`+fgd|D;(J za(>qUKv2A`{A0|3`kKGQBOqBqACDa0UF_1_2i3BR4SzXNT>t)?0J^s`ZuK0cvK#>| zL2LGlQ)3#zfpSL(K6N1f=BmpD?bgsC#M%i^#%IzmJ+il~VLTqLM3yRiDB5EGEzQSp z^gz9ez~byknR6zOAfhw;B+E=vHaw0@dqU*vow*wh%VgiL7I<6Oxoniz;%%u z_QwK&@lpEF9p+*A#B|^YhN=Z|y_t{FpznW%(aVrl0jHOnWHX+QUPIlp9C+6~!6JxC zWl2*4tQ90C_xa)!Zx2JZ;OfSBIJ{h}A4Uuy8uArP_n;nn&sVbxd#8(H0o?#oi%?ST zIA1>U9%hEhmMmhYsjkVu_?jr5>Y))AmD2hOo4 zP-$RXOwSMqXRqF*Dca~E#|PuPY?x?Nu8T_ePjmpZxtwB46NW#yvtHbCd0@A?@J1KL zgb1KK8u(Bv15czpFe#VT{^#PckL0e}XIwIBdu4X#Ty584zG#ZPO@7v_)!*!+&0m@_ zfUTZj9e^4QX{2TK%E^9bE-1vj*g%x%Ry66hHhI!|&C~`}z(%Lc)O%N#!qF_1LGGnh z*FuRNhK(6^Bp!*8$`yS%y4ye;alMG`Fks8djqaCg9UYQc#bjKt%wF3NCGm-sZMHqx zjUrm3B@kU*Kv*v5k6xbKPLbvFFuEDsU_q?qh@E5{*Jd`%@3Svn6+irZ20?a^;~3}8 zaZ!omNoo!2b}dqz0TFnGUBY~n&3?_={dq6*BWUx+~ zxvZg1nZ;0pHWcd{+Vb@L>e zk3u$=5zV~2cH@R58rdof2LPo0YY!XG(h5V2?EfhkHpo-(-od|A)oa zV>5b6%&V%mM)TOrHTrI#Hx$*YN2G$X8POwM8mXCoX`po^sesdNH771GPFaZ?2hZbW zo}H`;ASB$)Rdnv)V@BUy_zg1nQz<8@K`*}dYNBj^|G61M)Nl9jV6Bx~isD)p$nVDS zgachH08+dd+kuH@AJtx%;8I4O0jfUG!71f%k?X;`%tIP4Qe5`CDM2EoOnKPd=(fm;PlU+3X9GKKX!Vq!}RYkUt!s= zuSm?BO|7HX%H00?273LG1ScfIBl8^_%af%SPB-I626(^%A`#39w6>3PXLe(_jzUKa zF%QkV54!2}uO5Mbb>XW-@W0oth}cV`3ON4PJBS*V;Gcf0mYzRUS`d6c0TQ}7Ads#3 zoyx^EW#c}ZBPZ)Y*GMh4hpXZ=t*IEX&(!&n{k69hQF^c_6M0DY10Xb{Gfp@L#0DMq z^PgvpRJSc0y#M|-Vt6#oA$yA#R(|xgA=f(0-gE2{n)vqt{EuTc2shtPK zy4ODxI>GofY`a|Q^C&Y`D%!1xOe7&i7fx35N&$I&QPG~$U+9^Lzn+kzP_IUgHqVkX z0HWkQ?EZ3XM(pB#L+Dc%Sd=Wb3&-3WT^8Qb#(0ywhl$U1i(Gp2)U7uS{D%dcWt}(w z&5%#n@j9>4=VV=HH`CSl}U{TE&Sm?HecdzhH_ilbN_t0)0 za995X8rBmbwk0>uitkh~`cCxCNvea{w)ceih`7C4-Ns!zraM2VwUZ(WBNOPg?b*+0VyO;oY3H-zpCq*^3Szs zmr#Jar=`QqYJaQa3WZv0cHL%IIg zMa=Igg%3AkjO!R51+>klioa{ArtbG9G!nzl?IbSJ{&XeazAI2qO7%v)9?*DRZO`Zk zRE|Y-@J(k*X8pr&VvP;G4roc(X@?wK96D1Tc6{wqO=38iVN=5Nike=-r4;6Cyf)-A zybKjwH@2hHFOqed`IB~-39T#jfnF-!29b#ct{dzauj4-?S0oLkz;6Yj5NExJ>l502 zNDl2aZkA)t5ONm@_nch&wHVcF$1biWoMYVo2#);@=kEdid6gCV1g!As-}+`9fuq)giiHo$VN#v)0AvdwZ?> zHH}Xc{EHChj2v6T#qOg-X{TI8Y2{{OQiJ$Wg5O! z8IYnO$FPM25iyrD1SD|WL@ zs^3i_S})fYWxdj__^%B2S|ZI{%ByT-=imzaLQj%8<7%&!@Lym*Mvh;uwMu7C1vi2% z{Lk7|3ZU2X;LSaBSIH~h!uW1Z)@cVdwJxC5ez*w02+bsQ%N`HCtOm#u!#({TR zlix3I%{ioZXsI=(^}3|?#*2u+h90bF&2^~ckGYAcQV~|5rdRC-b5)3EZ``&!N|6p$ z+|k#M?)mty!~P5pozuET!;#S&^DR7PyIBrgno)#-5JJjJmshZ ztDkTG$&~9n-Yox-p+)_WQfq9HOlop;-x)%06sPg_ENeb8L|k=~2~`!(8+|Fr%9s&t zBHwWVBtok!Rd}bJd{xJD1?vlhGD~MxJm9&S4iN3HU%EQ`@=M}&Lb=;Uj)x9J#{CT+qInAp^$A5ZTzU5L=qD$Jxvnc@ zLh-pm>*LC{y%p2*{UF4I2|kd+R#+Vq!cQ?27mGY-k@iNe>fX(HCGBd4GmV`nM3zpi^(7+*F~$*Q-!V!J3ql42XCDgzSDb8P>u+31iaFWBw}s|4`Cya zaAvXJj8?rKalYo5xBys!7$%sTB0FP4-BO}EEz(&&dcaKiDgUBLBy=E51W;6_K9$4C zzn_y#Kq!vt?hzNMHBVzCbup~6b&fv_D<&^a8F1U}Mm{Y|VLg{S%^P2|KhKjP00k1n zl13ioz68ikBb}q|%1kx1Hj)kZeW*eQznej?pAW^w$EAUfF#;dcJncRz##jEBx+3^` zEb5j@wD}zj`&r?F@LvfKG2!d-iMh{rMr6-JqS11}Sa;*i65K;5+n_FZFUC@)QA_$A z!}m`fqKf0wTC1d{?j5XTq!ZISX)+GywunSp(v+79j;FU)N(bGkX-(Pl0y)eSUI8A3 zE5AFf!aV0N8y!`0YghPklaJlTf@sh|WR zUAxcp!VQZ|DC7Fh3;y{gwv`4Owjl^xdEP6S-r@V0lr^-WokSWRI?~Z9LuD$G#Zht} zVpoVSus(HZ5Uo?8=kP*6Of%#73t3y7qfl_%+-=K_}3ql{K7{)T*QpU>(PnbH9Kwf#VfHXG54dpI(tZuW!il>QF+^|uRAZ((@eUCXPTsH`-jOiy8aC71`XrV%+-!wL|1fZebI~PoN_YuC!gH%jeB) z-TsxKGpFs`&FjpUuPP7b_hcd!9_aWxl0J4_YbT4Q%&S;QFXKVXiz?E+b7?UgLe~%- z*5JCqdO825Sj(Xo$|?DXko$at?aV72j*(JTZ+Mf+^K~Ny zaX$q^{2wRG2D}u0+qQ_xy_Zj8f;LKWD<;%$GWUa24`u1pg}-n`s09B^dVwP$bTyl# z7o;4_)913O%GnN|+;^OQ1C!l`C&gnJWQsD11s(Q}$wFNKm{G@6=r4R5cn<{~SZ7_ZU<2dB~VkmnRnq1Ar=|CSoJV~w}p4m%wY zn+oM9mRmpB!J_ePShTbhqC=evM?qb_!%J`ar8|V5j3&zod(`{JT$=tA^GA=ToPDIN zTi^LwV)zhFSyza$=@U(e~V7J@I)fWIAV?Mn&>^zT|s%uMh$8y+iZ|`R|?xz zoTH!0c(LF9&pg3&^QsOezbP1_NF^_wrLs*k6-Ue=W$f#v8 zu;}pfQ^*^j^kIi3LMWB)xvPS^6u%3PY(nf9;Xf`+=mvP2Qa@EX;HqlWu)mIRrtCYc z`4p~flD6FL$MgB$GcZvKu%X)fTYG&C4wVXMy)p*ITSR(Fq^;j^_UiMT%G@@XnIm|H zuh0l z%WBI@)jQa0qir?=_X|vK1c7Dvj9HSbuh)m5_>{XD0=w5$(1sgSwNCek<{O(h!DEnH zu&RQ$!**jw#OkVOk!5pYAD+mEzo8*^5qR_1F3MM>N%XzKSxKbnGK^vs*7TVOTKjsu zWxDRYV;6sF+VqJqUtsi2^RwA+J|EoOF{2tice>0t{A-YuI$UyNnQCq_Rw(_jYHrqw zMWI-vy#@Zk!<$JG9D@3YWE$aN3}|oN*f>bsr1))Po`0`(!V6XS;(Bwn0mrQ}Q>74b ztO_Gx(*)$UMO(e$Xy=^TQq?MXBe^o-ahI(0dAVzH7YeLoIW^+%%T~|(BWB@;e~l+x zL2zcud$x-^Z)UAn=Gy#<^ZkzoMOU6GO7;Ky@)nb13YiFZ^BB@>!NSWA1V}F!wHaD1 z#1#vEj|4HBare7^x%26w&i@Y!C|HH+OtvlpiL#_^0se0LpE1GHB{RW4C*SNSGA+5s z4~RSCT{BT$V>ndao--HKNjXFf_CV|hk%);oitWVoPAcEJ*^<8+p%x&f!4NK9dw>ki zf3v-}9dq2?Dvi@}%(*h=;|bGvA;#AQ<4s+?VA}I%bW7VM?mz#~PJo06)?B#W_44^0 zA9ApjOwINT(?>;n#CSb&Xp~DIH;{#^Qt{}hQ74?kY-l08^95PxrEYHDZ-D5LF&fn_ ztyU@ByI%G*tz`9_u?`dy`Yc;j(1QWUWw^A%+)ea)kz*-xDuejmj^ob_7N?PeRUK zizl#v^~t0aIq*#G8#u1YmX*&TcMmxZ4K8}FP|7GtG}q;jS7rhZQRFXW#ARrbT@v@_ zWV?TAwy0QiI5LO)5(#^(*rxqyk>&F-lLU!ybyngm$}At-D*ci zx$h_3v}BG)%*Wu#tk$N{p|48}#gKJ(&W4E(5r*2aHSlRQ0 z`FFMGgK8-q=H)pp5&qd<2eZ0g*`64P@e!2ic6p@Z97}Vg+3HQ3mFdX%87}nAU-x`O zD+8GPL6ebP#mxDjy{mEaD-~sKyQOV}F@*(M0qs_OZyLcXs9f~*X2PW3srhbMPxa#~ zO_7X`x7h#wR>sH&{Gyd2@w%U1U*Q_!x_4(?=Our8`|*B*E5(T345+=-v80#8BCMYV z+LXl*>lGk zrw?RptR8v`wjjWRwB0&nU%i+$4)wSM7kHdSb z@HH#`W(%aw$pF5+6iM0cxQFK4$F{tZ-0c3E1$l%^1X=fo7!R=({TG$5^$*jFi!_aY zO{7rA><)igGjz#X%yov9-AE6;S556#w&=`4Q`U8VvAGKCC;a5L;KVR`SW})77-VA# zj&9B>W>~FYg`4$lPg3>5M@K~XS~GL4av^WYa^<$=I}z>*0dC{g&e7(Swn^<#TlLlg zPRkDrZI^pE8X)I#MmHmkfAd4Q%j~I_X)im-_EVkHAh;Br*w;_WNlC2sx&3wQHiN4G zzo0_`TD;K(m_?m+o!a)$VQTa8QPkc2MVLINO7kB%d#+~ z;Qe%(^26tRJPZathequj!wilJqZS_pt!k%SOG@`H%(YBO70~$kA0*37Vsf%-mg8FQ^QVM=}B5te2Qr9I3CwWObUdIw-Ko% zu*ahfCIf>+D+ak!mqzottMTZ|_avN4TwO7@!X{qgqFc?RK~)fQX9Q*VVajtlEYjqj zxXgN|yszIjeHP?BB~-Ml)%vq-T^XtOKy_;b7a(~95=Y`kUZppccWL>%t&(`e)M*MF zOCn=(FS7T2h`aTwnY~K!Huou;tf`&3ul0l*%UlIo9fh0tFKIx0gnAvIH}D|04Zrit ziKN<0ahj&(6-j9*if=o>pt9}2l~Na#k5k;b#!0;}x}urg(D;0TYvI&2Wl)KEdt;MM z$36~H?cX8RTEQDB9iM!d7fSXUA0+ZmJ#b8V`+oUuA*al_!{X(-yZTs<~Ehc|(NB&?J3BYx{A5g46uoCAJTNeL3 zVwEicGjjkc^C8>zlFF@r9x}A0Pd1GQ;{;>@!1#+S~8>J`XdJi9h1j z&7*-_jo3Dm%M=J#!kjwNdEFZH+127qX}z~#|)o=xCeiLN|P3yJ^t0YDSkms5Oc z^f%`q=3nlN=tl_z1cp~|(ONr2EH|cKV!KEiN!(`lD{i3TtPpa3|1Fj@AXJ~Cus9`l z)e0i@p)&4`XMo%Ki_zSEkhCzAZ0i@2fBoa87`k<5oyjTvkbOy4>?ijB!OkEWEN)aY zfpMWeF7y>IJk?4Kwb#g1H^&Vtelvr`R~U#&abLGeWy5X8?)qxF`2ykVHh#VmVQg6P z-dlC#J>LL6?^AhX>{LXuxkAf8`fz^SjRO zff-TU1thPNe^>4&&hP&*+%ZQHLeGF=15z_(h}zQqKc4``t?=o}9)>&DR|eTHZ%gj~ zcmj4Z0ZHeWO(o6xMKJV}#{5CqS$|~q#lreOqola$<}2kMIBYDYtqjpD#bXtUo$XJt z`(ye4ctpmJ?K87aQ9|G9b|ysM3g2^HCD355gWVgU2UW%#sWyZI#h@J4CvZzsc33IhAli zx-dWO@0qS`O=hjC0AY9=QBms%UO3wTERu$YX4K)?dqE4dek&zEyM)mQzuxyqZ`%~z zFTu$n!Cgrr+_|-Sdo7 zIeRmcuRcy8Zs4mcQ|Q?t#lm6g&h|7fMEGPW4K?F9ic1^8+Fd(;*=g2n+S$ zKxVtjUvcq>inMC(}t585feQq5Ue4As?a1FcI5HDp^McrUyw7{EdFiEBJC6o!u zDkd44ze>w$lU$bCgD2YDgMs_ZKQG2Dx%`8oc8D##*Vml1Z)q)N5&CNG-vCX<#)V$>hAEEIgHO)A&oP>zYa4UM+09)Z?w3G| zTYY<1ju4^QN3dokG5+zll4ksC^;^<9mt#ix6PMLb>*MxPa{RISc0Aq%z5<9EX$UtV zF;xZSZmhcI;%prB;vzZdB^PB6o_3BSS#mV$ zxgf=?_4IjNURRtS-E@aUA?}N_+P2+mSimiZzSx0)6OMTO29XZU1_oCU9_0{Hm+l-z zOOQD=2~zyoObv_TozXJi+x2#6`w4-7=G9q9Vk+2pg*d3KTAu;P_s$TQ1vHYZ~fQ)C{(sUx1mc zX4U^i0gD}Nym;|Qf>JeBTZRx`_a>WZ*)e;6lI`2?z{0tr^Nn4{5y z4_OpSgvW{(o>A{hjh9XQ;>;9v`>n+Emk^Fbs88P*YeT=&8kdfp2sE^{(gIP9%NapH zMbHTfY|wC}_2cj5%J?=+ZiJF73l(s7$Th>>NGzJtvJ;&p!I1;+gB_Bf*I7Df#+cBK0!t>f!WR2Oq<;4 zC2i+4c?5IMzdh#Q3f@Q(da>aI9K^IkkEdsqi&u*C1KU#Eevp48Mr=^88CF|LlbQP6*m*!e?sg3=qaWK@Q@sA?^u8gO9hLVhe zUL09?w}Td61>C=iEQ+JB$}DV9z$?jPuyP}vn?fnf?4jW=w=_C&zdoO5txJO@=L5=jNFX1l0ZdqjLdq~sbXmDpUV17j(pZ0gqJ zelk(Wl-HF7oMXlPPi4$iv9K$EW=oDvHKq*Hhe@+0X#vUMr!g$536Vpp8W%DmoHGVX z0oQ*E_K{Vf?yBmD_y0#hy!{Dx2iS5ODJ~Wq)I`KVh zm=nbQ986MB7yDBCC%}e}5bZ|M5p`>wAq19DvexA3m=?9h^IQSqy@R ze$od}SYsxLb?l+x8vOe0y=kGA(NouLY0fVUD_L)!ot!swZ~>7b}(zeEV8pC{+9Xu@RP2xKXa{GrZ0lGW5Ef@N39>maj0nRceZ zrtvc=nK@B9mPOly*K#TWUe`Z}b>caAKCf&p6t@h>#67tgZ#?MNey>4TaQ?oALTXpB zLw;{xNvJciK>F7NZ5Z#Thu`!RL>FGc^WJvh#feiHLijG{h2v?q-6tB4Nzh28hRs!d?I_WKYJiJG=$c6A!~+w;%Tuea2!^X;X>OJjqmZjXigoB=iS;Kjj}YXVv)< zAdXn!ay4b}Z*3XfPRZ!eOHPqT$LrGJec$_aIoO6=mDi~ZRRTH0M$g{U!p&G>b@A8r zXTZj0(kS6mhA3Kzp*?O-9>@($r+X*lCWfo=va@ignAy)#Q;2l`yH`hZ1fzHnwmb+? zwU1Ci8T335cuATkFU}iIrL9q<{RTubq975llIV>y>2O&upS|L1mbf{z4|lT-;m`ht z9~gG-f{;OZ0Z(s!f%bZeIy4T*CTUv$(@=`bCTqIoMj-QBZ*|uiy2%5fT@MQ(-MCXG zF^Lwq^D8fA7G5SMzxIE>u$qN_NZ#^hg*dd2omhiIpE>(2y3(}KB%H5+RI(c0bycs} zVm;|y`yV=U`CZHyCl!z_DtZW3uu0IoJ{GrSQcs7Pqhx86oS-nHzV18G`7E1*oO1aj z1&{ij%!g2Z8*J9Cw)L#q>^*S|Cph~{t7R|20Sj)9?oeqPW4^!ZJk5wov4dP2S>RT3 zO64rZ%uqgiX+(1oDHecAAmXHWr#X4G(!^;jM)2*c?D7G^&`PbTM71qp#^-!PHj9?B zdv>M$O3KR6M)4KVpa7ea6vBAvBcDW|(L=0sU#ywyf^X-CU_n;_ozK2yCdoExHnajx ziV#Rs4Du=!g41J_?w(yGnOu+tNcAbd->A|nuJ9lj89!>ZQjxdHU#;LV%DRKH8GM;ld+~l0L3?rzwb&}m* z?WvwYA1r_MirD*(2m`CeU<)Lzl!^wlC<|inRc#a(QX09gjn{Q zleT5+$>8K`rr-NWH1=keD9^q>-a9GH_CHjeD7y0Tk7#jI$2`&1cHjk&c}jZvYor?GHUEm85E zE+ZeiQ{68)Rh4X(2xhTE))mDdMij|oXGrZA>+RsY-k03|7lxLHAO$*HjaJc5hoDDW zxIT#Wjw;pj=Zf9ntHJ`N&q+PGr=dN=&Dr?JU`E+e;E10@W2_Ok(sEdFAs`9DL>Yb) zONR05i<&amI3NVJJ=R}5PLFhOzkCHoW+(Oc_zTk>$Z^yDt>5xM==hEt!#3GR;r7xr zT&9+8$~ektoZz))ZpWo2>c9A+Utq?x7h3nEv#Hnx#MVS`M2L9*{ZqGoT;Vbk0ZBXs zZxsCritO`#0Lg@mbHvxhf(BV=LwG3-(t;w{dM;^i)ioQ~|K4``CqzZ+bi6l~2lGMc zZ?wK$plpy;aenZ}_%RYC>_8nI<^8@}O^^;7j1F^5fyrnRV$t2V|J+FE8yU`TOWZnk zVdOzt5g_p&$sriAFR_GcsJSXLZ{CT}m1{a^!nD%Lo5HFgp*2?5XEqqElG3TGv!R(6 zIArC5pYK>#&s9wi>_2ywZv4`GHEJ=1)e&X0ykw$g?IoBRtG6Ku+2Zzz6qYyCJe$B2 zaVVsKfOn_*91_Q^?s%n{+cV#N+TFo=EY4m%VldgjU#%NTUZTn1m2ynne`3t$Vcs!! zW&@|UR2yH9NWiv@0;vdCl(ApimhLl@EocInNmRR28IBc^P1i8jW#Zc!yvBnf9y~yu z;o>`eB_-Xeq|u;0=4FkG_ChF!i8L0Xz(m^pLyv?Oclxdh0&n=X&EWeE1U|cKzR!RZ zHe25e(jOa^#46&qpBWou=>C2U^2rk1fu@% z@z(E;Q%gLsTzg27cO(%oTmj;l5J>a}@AsTdqQ1Y~Mt;X7?=%?Na(p9AvM$TY{?XIO zFu3#fiM8{tp^+fR5jpaN=9KZ?|9z(`7jqp1(9SkE9VEe& z@6#zLZ%Ps@4rvPhx#j@vcVlb@XkC2x!EM^jzjgbyFA^Zk%_-XlSvd90SU+{1|C-|U z;uORRWKeaHBq4uu>iB<6F``GmdW2gH(xu8oPdkJV@&9d#H{tgTSCB6B9V~BF2SG@c ztaYWlz5c|)WUnvl$FM!@nchH*0W-U=L?PUbA780{2(`j>?+Ljoes%5Ikk2qIlYRQP zdQ8uElyBrnx#0H3wZ*l16hjA@KK*K-xIT;nNPF$x&>uOT|22CXz7uc?Q0li=H8@22 zAG5cyJK6UGG9sBB#zn`Tew{#wZUHJslOoMWzlZ22iZnj6V0U*_?0i|5KuVv24( z08N>wN?z4e@y6uaB<`Z6r=RW6bY}{j!CARk_txSI@?9!}U=SSA8&qJmYtE zu&Uv`+Ve0MzLF=a5Ok*pd2hQe*_@Fc0@N%~Z!BIdqNZB|y{gqMW-!u^UDXv&s*_Ar zBc!Q6(mleb9l);p>s6#l%+>PWGwf!5FcK+$ls?%3oMRL?=H-7ZSu9LTm%D0KvK$4b znqpVUXB3(xvXUyaq=p{tq<7zD$`Ql2$)Uq7e`kim><*-2QoOMHcILh7oEGn}!OMM& zd+1sf03TF+FY^4Qx8F3XnKTtBYC$6xbf@+O;g>AZne0YGhuY#Xd5Z;25sk%I?>unW zPBuy_Q1(Cl!fJ4Ve=fiOb67gkbqey|mV*Zto`XfeM#x7(fixVt5pI+bb z;d6>W0&6l&D|_b*o{%k)Rv zK7-QEqtJ&9ihHraEpiIb$oOM&PIxE+fpRB#@V2M%DD?q>`_Yn#i;&b5CKja?r@b95 z##FSGj$#s<3Cr$0wk4vrK{H5)A))}hK!2a}EN#n|Ff=DnwYfovxVxa*xvSh$=hz7c zYPRLdzHwYSX0TvD!`8las%FgfQe~&TX@h5*%SFS^o;b_Atl{J3n2WyEMsMsadR=F1 z6l&VN)s*Dp0!O6YZ=zo___mV9-Uz%M(p;k^bTNPUK)Dy%<#TxP0%>x#4*D9K3a4Co zHOscC#fG9u(v#V7HKH7z~PHR?-PJ6T>t-QnWpkC&DT zzjO1~FS&F&w~S=*meD)J#4pNNElt*no6JnOj7-~cnsuQNmsP~di8E2gXyHYeLx!Ui zn^M;2k%cK4{=iQ3zHwjFm+({^Wf7gA%e&-mTW`8aKX~@jyZF&KX!LA>&Tl)CZavYG zGia^FaZ!3{Lym5jC2}J$8FO>^0>vcCnV+${)qfS3MTimy&%|a2-JIW)Mzp_YP(Qev)RGbL(%T`&I>%q6;X!SuCA* z+?%E{Slnt|eL=6rs^OeUWQ$7RPuHF8r+6-t9rtzGmcX>(kzrEn0qX{ExXy)k8CsTI zSPlRp5I=b8UnY@=i1=&=E&}deyxUk0` ze?k$KT}AcSd2(dD3i#=U>UJh#?b!CtD8G}>l5uL3RrO8+I>Dnw3s+`}I*?)ktI~P* z7^xHvpn^&STO#j)02ZO@wZOtnn?=)3w<2}|tkB0FzMZ}*GC;*{od~E^8o=MXDzgmy zMUGLEK}TvInY^pqWQdvcudwfc>`CLAYpg$F7XVS4RwpcloYUG4G)ZU8AzhmNq3|kE zcojHj#>@mNW6bh78C=GTGi_*SdmbcxkFqnQmzHA5hR$O+`-$eJ2_hT69LURw`@Y%pneSPR20j$^kXw4Bje*RAnQLPCqV5hg}-? zp~JP+@~54;AMs)S=2x!F7^dHX9SjCLZc`wE2^FbQwr-u^X+m9`WQbO#0_mygxd0v; z<}f}R>GAQ?SD#KngU=1QWCyuV_fFW+G^W$WYnnSXdhxAnF~s;QUz6ng4hoWx{@Ev) z>4u$!-4`7i_o>Oh?YNA+hzJTV_oGdTrp4QJ87IcHx$C|_>-}hPyjKVSldu=+1UxYZ~FzDmdB`vKfK{c;@ZX-85_= zmn-M5GY^Zz@H-nn6i`O+I3D@MmK!1^cYPQL% zrz?_mZuvVh5b6cw2^NQb&8V%I7>0p_qPAH?w1gfmm0sI^-Y%o$7NYvTfUDiQlxl`~ zlXmRUJX9ZwmbE>X;bE?;WLoi@124!c4_H^0T)sZCg}x-a+7K%d)MN8&&IxI12FK|A z9MMM6$r)s^R{fvCd-|>^2;kOVruy3y5wMBz^@G}=OG~M*xrnK;*cvAq5ZI@roI5vd ze#j0;Oi6vGfQNT#N$c94wbLP=18J7q|C*z3Gd>0##2-#>T%p7(zjs1t{oS+jM7sqb zJTe_xJLNS7$=aIQls*$b%)U(#sNKg>=;Oq~vAd8DEkq{!g#4 zo+7|{Y9+3bu0B;_L!^!WouGe1lK)U2c9S*G2}(Bq4T*?L!&v+AvC6K$>XDK4OW$(w z55^ghFXzz>IFh%9)IW^X7+kh}+8~EWoPu%$vpDC@V|i8Sf8O5801hHh*?fh^k>kFN zWC{Ps_WuwZ6BB{~-030FOdP<>{S2G9VZ>~B0|x4r0QtN~>^q*d0W2YHJo@j;2_A{N zr(gg-?>$rV8>{o6C$WV1GT>Oof4KMgTGo=h;I9y19}p6rdJPfuW9ALb9LV($cKr(e zK*r9YCdB&pih$fd|NhW_)FUd{u`C&ofwRXBuP61Z>kc#&er!UA;lcOsZ^7*>Lc!K0=X43a%D(aB#BcZq*y;BS zt|P{hF@bzzqsGd1L0t1If_$s@R7wUnS*$61ekEMfCz<%SXKKy#JVqOqG}GMA2HTZO zlzz1(^*^UnC<}ZlLs%(k0)J<@`9MkE#55t^4-wfHQ$_Y0oTR~~TP($p7RCMT1`1h& zNbptZe_G~dNN@C8(HC@0fNmjjw~#sTG%E$qAZC1Yi1gdovin|ITLa3YmlA-q8p`c# zd{9;2@tz9Z;D+sY2RR9jLNTIremg#dM*yphSs0nY^qDNV&3@)(O#d6fd#|1$>HuuG zo)}gVidn=!uXgv5{Y)Mx#~HfZ!dU+!+$Pb$+`0bHelC!^DaW2SRc!(NRB)jvd`R#b zu9>i(NljJZxue;`A#UR|x#Sk+G<((OOP@<`CabGRQIx3tt#gRAl?NZ&BA0&U!T>hG zf(5dUJ6=JoUgw=Z1loSn=}##rOdL!_Oz(p#rfougLfAe8f%JZVBhYvoYFjWsG~QxO z?rTXP#8sCC6G^f5$v0TC7=TJ-0h*$0t8Mljwm;hpK{_RwN6)?b}MxINDkuL)F@urDODoi=sYNaXbVGnD3SE z!o4LQy))xJCNn5~Qn)@ghJ%XL`46`|ok=#2xo?jvgI6`t5SNAEOW#ZmF{$2mUf9zZ zoQsR<;J6=4_Gp8>owYsR1}5w=lKZ^!RNA>t6=2KAPBzu>P#bM4NHtIc+A-d? z3M}UkbdWT>Ela0icII>y>DxP_!>Kt2zJd!*Nz@D+iKa81v7~d81$?FkovJ29I{m}; z?HIy?powk_m8wRealt4Cl?*ayHIR@g8Wm?x`yKNQ-IhRXOhWcf^KYaYE^~qBwLd3_(v{Rs@3b8F z5)0jTKbIE@4MCAoo#dO_UXdZ zUSjW`>Gc)2wXC`%_Oi?B%&T16Bb~RU5~Z)ZGTnpDTASIgcQ2M?zI77NV5o4Kn@GA9 z7OV`q5j34gTlbZ_Bii)YAv7!!uRgn_LRmRTP5u^_cQAi?73P>qo$9-8PB%hkV$vT7KoC`-$w+JcROR zRGB|`fH}kd^*-2}P0x-WY|nE>i@b2S18O)8TKsfhX~VF%AP}rzDl|@F$JSM4zl@do zZ+kPMWuuG~rA5PeN zu04@}ISk4>&(>)N5un?(GHx#p+|AlL#~y9>3E+2cKKZP_{9%;t;hO$Z!(>r#{Lnt3 zy_KcbC4&z?+?kw;&5KYwI9DUWWjAb|9L$Yo(vF^Eoilhd@#9OMNY^~~D+E_{@V=j^ z3obA1`4;|=o%c!|iMOk65ouDsTz0rszdIM#jNZQ$E_p}Sx&ge09!b_!*lw6KF@qzh z;-!z2re(k&w|5T7VZP0v@ypQegznAxqr64k^VlMRaxkm}d97O!=VU;NE3jBagAH-E z3pl4G*5x^k6f`#U96k`bwCn3Bz{;#ha48xt_GF027OKy|5;-uBj4kb_ZW5)(v?dF^pB(3EjS&1O}1OC-(Z(l;$TZU@jI zLOjQo!`MC62 z_JBGsP-0EdYQHRJ$1s7wWaKWqd{5Wb-MO99K*x4JDr^ibX~E_Ek@ccM{iiYQ8GhQBFFROzC7q*hvXT^K(%zMJ_e6NhaKYsC)P?st z-P9oA8f4t7Ll08n@5D}R2yBRzvJ5k6stn!?yOFM5n<2Y=!}cAG!ektBWe>@;?JR-& zy@8<%aBAln)ri`GdeLb=@N3{uRM7zL$4=vtiD%V;r={rHrmFJl1?9}EsU)w~w-KGc z3}8k!XjLhHJFj!2k~Br4h=P*5_+N~_5Y0F?a3c*G5a5W+2k$R6aM=X&FOCR~z?3i0 z0<>#qu)53$Gqw5N@MntR!#--Qhk2ZGhA##86(s4&2>F02L&-GX7zSnZDM1xmOZt)0 zW-Jl9kFF^zch-wzST*ieMyauC8p$ZS_K?-_+L@+%oG_2>e7R@Cz{Hr7I5t*heA5cJ zY^B?lA_zpa7ycgJas1{zksphGJwxiJiompikepMTo%dw~6O+h+p% zuV8k5&6dN-qpXl3wAN=WHi zF2fEhr6)clEnf5Fk{qN7{UU&!R2u2T4C5bG5hb2j-z+7Qj)BTkVy7d%Do!nL&64Zo z`;973h)7l*(lL&(tVR-tQ?s8N@9J(&4YuEovu>zCC1D@=Ale4PaWZ+<;wEiiv`gn) zl%6aCk6p416o?So` zW;J_uaAKmD>$CVf>+ z@Ji<*of+=mW}jV`ey*mKT{v{rE(@*bY&Y7GiWK6Sk}g)ggpRYinQLf&%`3;U%>T8ZxRKqz;CD6mRKdY-G1p=%r?V9go zyjHCW99z_GKnqP>y$1><+ zcl?NQ^}yuy&l3+zR7&$IqMc=9Z=B?xD&>F4zE|yb|M2roovA{hWUQLJ_kK_W^Dod$ z;}$-UksGHT2Yt2XRlBj)7T(+#F`W zl4vezZb5d2C`Qc?yR)@dLLl_4(uI=X*wYJqNx>~@G#uOTif=#_&9Hgc-gNsh*Esnu z?n#W*Qi)~XjRl3%L%dh8*ZShluBMe@ex$1qpxfk*)-$pc4($Q&fM*Fy(M~*!CpSr5 z?K+n*=bth+#X{d#Wo~@={cRy^K62hVpgvZT#?LOWO2NS((~;S!qD*5_ zXoKU*HNq;(OJOTPW8)ThMloUP@7v6@vrk(Xwb zxPx0KP<18I6-6nFa}xzZc@p>CIFLdaD$n38=wnunCUh6gNwF>7ed&Nd92qV80?Ny} z14qfgv$O!^f@nhk(Sk?vmW5*vgtGQ!Y#D;Q z&TzOo9h9MYKrjF1r!oD7RFD>pyOdi#f4x~S%ccHNr(@yr(`jCH=MfWr!uRB?ig$_x z_FHc>dTu4Mo4eX>M2Fn6NsHjjv%6+R->#C5B|zU57k40UKMJ}izT@+qP+mJJ1@8MO zbD2dcs5^rfZLVBA@2K3jcVtZkGH72`lSbTyt@A(QKJHP|%mqoTp|5kU?GPV_(_G}N z=e&1P;xFj;DL9l_0?m-GytPwTImhQM9U}fzf$94IW#ainb*MaV_2l?<70bmo4TXr# zurWkM(7kZRFYp3rrv#q4GaOog{i}{>_+$-+PcI$p%ep+Ohc4ns?H8vSYO`Ke}lQLFiW*8_aL{Sh_b8NX#-S<{hM?SKS4vnFzp(h`j2)x8l5l-)}%r)tID8O3@8W z3JWxc1{>n1`x*~}sOSSROe{64;@<-|RH4fbY?1`u&(k!I{SC#TT;MtvJMteG%O3lX z69s)M%-7ct;1zIz!D8E)lRJ^tS^lP(oi!1>l3ev%_YPGDu|&6B5Nx^4kzr8Q+%tj@ zgP^d&B=hmPsZDBdlNy*1rCwUNS5_}|+J|!Ir*;7!{QXiEyCkH-W2NW%)}6kn#k)Oc z;^CynYuhiMnS#MmDQiDk&ud2!SiK5qxCk7Rb~b5D4b(CLEmF5B{9EAsIN-c9vz*wx zi$#Mlu|B4mJSv?v$CAJcF6ItWg#nq%sir9@Rr_;n6=wOf?w6mL?qqLy*j*Q!JzZ8& zQ?Fc{x_qYzyU12dYeukTsh;pO&FnR?!EY3-2Snw^{4G3|r?4CPdtD+#^>i?8BPjF| zoe#VBw0}y(IJkPw8@6lLOwKEV?~|2|C`yVng|gBw(qsquCQJ(fXT%&xxoES=W?0YO zFKM4^(5(sXa}w{(;RmG?Q_i&F3Z_SYj|MQyF}LmLe$0OQY16Sy_BxN>KA6rl&SON| zPu=780p6bgX=Q=a(EsEn6CojnG6coGbdC%H>$z>M|JMOgppHOOyhnuyDES3#$^B1I z6@Zb)h!{WyUkc}1IpjNg=_bvTO}Ma_GNAAN&Et_=zoXi3$Ax$|U{|XPjfe}6GeTh@ zoS}02dY(ZX#T_IQ>wV&DM*?&YSG`>E`VWbU-`}(Llh6SwK!P7r-kL}{@;`5F1(f#P z2bX+MIFJttwWFlNn?w(Yr`*56h3SHFy* zUA;E=t{?yT1#VvKptcc3Ps&Uj(oN&~8~Q_jB9{5~*#UxWfzn!I`K~>{WM|e3uIop= zlV)Jlr+LK|b7yUk5Xfug8;+O$QN(bIISI33K+57)x(1YU6`^2vUf{m$nh(VRg$MQjd4Tyjm=pEg zHdVh@m{=ug&f2lRk6RgJ78vBr@5j%r4cE$D$Zmsr$Dc#_*h^^Y3fA1<*dK!ir{tpd z?q9qJp|#q_hB5m`&E-3+6RuHPWT|?x2yL!lAoIHE0I`>_ zyk&mejYld)LN}-)NB+F-4W9?-7fx+Y%VD@y;1$3Az+uC+5O04?21tnEC5+{%1Dxd> zKCv%w3-0$IuKu(#TLVy8auhh0_xlZo94D^v;K+Kwx^`_s=czpIe&srh@=eay|Btsk0m@TB42QN9#=io;KBl#Wi zL!dyyW7U6i_`H~KqR&zOB!spC3={DLd0D9K9uR&2n+9XJ##F=Ey74($a4OH(qIC!Im^_d`wFA zkqBEO)MPH2wu|gBGftF8S=Y}{P(RsbhJ@bJG+Zsv40$j`VEpAcN}V6Ey8#Q;(*jvu zD8A1%iyw=*k9AGlOnE-Mm^0b(8JU#^bB*~lOYje6rK^MxWPz9{y z>7GG)1N+5H_kfE=uNbjTX!CJ^fiB|vT5OzCk05HfNCD*tPd+9~-A@iMYiatMvzHjn zL$qlQ%4P;%OimV^F&(mWBp+X=p^5R4+z{U4_TjHqQ0hQ52~UWWM223@5>=Uk(%dxS zq-*}|9ulcY5+(?3Xv%yV9Kok|%!&q8oIT+`d_(CNo6h4;V#+ZwcexT0#B@*QG-A5b zIRg&dIdekAQ@XA4#!ghR-8WYOjW2@&C`WX~pu>FIau%b>R26z=xasX9ck3~JyRZutICBF3v(Ld79mY8qZq{?vBn<9Y-=>I* zgF%+;*&!APn{lB^QNz7hPf4`_ZaafU-TZXlpf~1EYo6fj3^Uep~wJy7sUTpLtVK+uY>NJwVQi zp8xp>1uB3Im#(T7JES67HDAK$ZuAxfgZt6fRZn+vp=O38bo$&;$WqD?( zpY^?mD(dufOM}hG#ax@-JuQ{Ji0@oDTVN#)vPjS$MP3kYQirNLRo^@l)8E=yOw*)@#6=^O7P_d&Trl61a0PNYTB1l)RaA6avpD**DFAfF3D6X&?suo^WMN9ans!YX;?C}%WkZ59>eWE z_}z=+nVn)cyJCWq{p8R*&X7ESMI-IGVRK3x5RJ$?ChkL%_~;Mp@Z~JB0I4w!Mw13d z%CCZ?iKm6CH?ADtr=)kVdC4*@biv$aZta~`@eYCw?@!W4IJ*40?1_=XEXR@4yL>n) zjJ9zW>!in}Tr_Gn`t-GBs->Te$7wdh^@mlzOR^|>Mmq14SWEvS%8uj+7v(5ZpXq?< zL5{zB-_yIA);A}Z7&c~vp9jQV3-=~nr%E+tQ08?0c(~FDrFY|DcA^I5RT|UzcB;+Y zV;I6)QM$3gkGg#+pP}e}(QKJ?53PW(LQC3Pa-JL+uvW4D`StF!Q(^jWfeb3I==#&ylFQ;_JEuEGmWM*J^1?^wUZYe`DrL1C=;okwejj#{pzR~7 ztyefR$SVds#=NBYg)!H^`n+q}GY*xE4-1-?mTYIu`_hhrNguc_xE#~cbzh|>q%$Qg zjNY$&=31@5(1>If79TDpkQ8#Hj=~>dC zQj{LW!hx(w%#!*{N6VcMl(8I&owCq56SaNM&s6+O zZk>XLWJ~Flt4puW)r?dbF1S?bpe`r5J^D6~Q|LndPMIizi?H)G?v65HH`=KGi}6 zCIPh=1H$rFQx~1n0`20_@1OekhA|qRPM@cUeNXO}H~8RI5c1;H-+A^oBg{>!;zhOT z+e22KF1fuw(&G%kbHhPrRuhU8%^|F*AQ>P#^Au;@(}PhkYWLYi|6*R&9{hY&%=R|W zrm7VF_~y~#eg+5=S=l8vcz}ZMbp815s;2VZeXr%1{Br94t7^x`d+Q?R4qECZ&vx&n zUFS@OYGao(J|!`s>p728fH zFEKR!iYq)ahvBwXN$zKNkpP1unH#_$vFQXM=xd1M%KWrxfOmyyU1xt__VGd+n#GE6?`~7~rLT`hbSgYf#-@gjP^0JbB;v^zEd=VP?@rs}#YfuEEzdGw z-kwr1++RVpgr#~S{7)CVQqx=QRFRna_`Ec&KG$Ai>T+8ghS&)*^h=Ywm{6uKIsHYZ zP;fk@UGQs@Yn0(<+xqX0*OaY=>DRW72MntT$73?qx~6;sqjFUNf>V@NmCF{z{9mGK zRyA^kQ+~Tl!;0_o(OooFtmT)fEWu`#hj^%EPAKH!PYpdg#C9*ah?N-gRK>O3E>CQb-30ELQ z^p8yamROUTPIExb--6Sn<3X>JedCKEyR*H?D5!4N9e*+st@8g0`x0;{zxRDarBy^l zMG9p}_9RS7wk#z}#!{AK8Ixo;mNu0v*<~$D_I-?9DSOB^ma#>4W8WG6=f#9ReSiPU zb-8Ak_nq^e^PF>@bKm##Jfp+X96J0O#aP5dp{9C%_P(R%y9rPGi$G5M91aH&D_c!2 z4K$@Xs{_wHsR9{TULQWF-X*2vEg_idP&@S+X0$aO1oF41(WUd%Ml=%!Qf9n{S zm-KlFAy4~p!An`R5$&oK)Y0$Xzn|lg4+!j4FdgV+yLBhUaEXF*E>dCUMLgQTa2jVn z(?^Ev5mpRqPe%>IkrnDVPr~l}D3P&39rq9I{mHy@2uze!0z7yKBQWxGnhTR4hhY;i zuRq$#6@oHw=*KGj(EIMekauMT#P1|$Yn5naK6=pi&i{PYK`Tj#*7Run*+2OXsQAea zkh?TerP7>FP|a!Yz{lE5>L%~^EQ@SYYf{1_A2u3Fr`5=_Du9P$p*>b3WR=*>P=_-e zCqKT6OoqDLpQ~Pr3tk><<5u{)JWTYf6|cR|2mhmTsrOG(B#y_cu;&d3xAKKL$aOHJ zs1fWedmKuEQYdF;UfgMPn}d1`)^aBHR;tr*++fj~y$+kg3O@O=<6_BbI-FGsIa11y+|Z)f)gX!( zf2?)|Y+eTgzMPuu7kL|&ib)7WmAx7-m{SpG8uc&j)VD3BYy|@+IqqLeocX}reDT7$ z8Z#PoOXOOe^^-?4F39$U&rfUzZc^<3?OAvQTMJUv`G>00Pe=Vw-~YK-);lZCS=MLU z_0YNRgk<-vkRwNqye&U^X8B|Hj}J~d^J5(#(?aA52Pb8)0B-`w?>?q8u$*eqeDT!f z$6w}Etd?;g@NMYVp7930g52{ebbajO%|yqQH1u^eI~?)2*5V#aCB2x;^-@frL;KPqv&?o7?w#u-I0aDEoXT z&oci&QB$Elq1&fV+^ad`M=qPCQEUzyu#idg1?vvU~w4lStC}C!(;RC;Ie1El0cNQ);(2d0b zY3ATV=dkv?)MI%nL_em3ciykL)0@Q$nLn8u*yJ&!4tf4Mkp|LAg<>UbBI`nlyZ<;~&v6x->d`7vB%Zhn3A zm~pRiC%HwOn`~}W0>=QV70?twWtcSI5VQt-?N}gAQnGT(;xqZ3oCpF#UYY21trDh! z%0?S1k)7!(j1CKL))o?ON5%^h(2{N-)rH`4fOvuUW5`Wf3q8Ee5MOwIv21R{f^cMh zJ#4$PZLRTm7gl_A!EJO*pfK-T>ll-i;X`c8=3l5E>nN;f z=!vgMfYg^$)@HSj@jnZbIPAw!q58Far!L#XLdTWm0-4-FwHp76TCxX+yO`vXHKuC3 z^Rx0rp7_2xfYM@EYl(XOdao0XN1PvtRmbonqK+U7BBdC|qfhV+Jeus$nQ6`Dep*{_ z*xtv5V|F1jbT*v&SZU&i#PQRfQb`(u4RvRw2#4lwH9=v{t(^peH~0jTW?5C-qzc$7 zFP_LZ?+v%>i4*%Eh>CGbEAuI!#c|d5m~gOU8B}{qKG!+UYES2X3Y-o2Z)Vlf3niw= zaVK>rdtAJi{(@B@>{GbYJ$Alyz5bxiU70|+x<<7sY^C4tcQs%Xjo zE!~ArQ+<`$;vxI9HqOD7FE|K!JgqaAI*E3^D-2;Y=~tgLujpJ9-EDZVgl%Dt$a zXKQGEQxiT39@}tzzN(iHez>)Fa`1if;e_7n_}NLe-p0fdEwi-RtYmyg zQs1PFLrJYI21h$@H_S8Zw0Z)Zmv8%jA8E%^9(3xH@2d@0Jgd#v6Bcc!P%^Fl;7vcK z%T996^n%5s_DuAAnfJAL?Si+v4?8GWQB2tKGa9PcmyUls-0>Myf{9h^`bsZ6brxNe z;%Dj~F+%b$zak<_9zJQ5Fw z3;Km#YE4&x3$dlroN_&Qf@wMLirpovK17$8BDAeH{`zW`n<2l)`dPB5V}G&;yhNnz zZKr~)6RS~h{ijS~q|6(th`k$b)5kMPu}araJga(K+WaC|1MIsuxly{dPM3glg>B&( zH!02J=0^>a%O9VAAFrCDiF7|6Q;4!#s%qUMmn}N`{Vct>m9NR^8xbOI=B8S=X=M9d)HJ~{!bVoEw0Am;+ZeFlTmX zpPi2GoMFG9g2}hMR)Qhjd{?t7HUJSUW|>dlSX9R%gh<4`0%2cEkNs*27uquPM_N_J zs@pJGrg`x9U)=mMru<=JZGG3O=f?P^vv@$6u_hLIlzd=axpn8`vbTOgJcwtb@0{dH z+m0g=Rk4+l82$#HNU2;7D}YZ-`UMZ5v*r>*nlfeqM4_E}pR{16c=`jMNxBH#LwnB$ zB6Fj{IXoRnS2w+;0X7%{@_h`*N0GA&tJ>(I@H}y>q(y<#KwC(~YA0$r>DMaF@kr0& z-pTBo;$|N)3nx!pJEDJvy9u0i(rqPY(v22_q7WL!4aYV{53Jd+%6&iS!8@uKWMBaU zIu1)i3wSYqKNbF-%>H9sSO(^0^MuLUZHwdXY8M{O9MBhwf?dZy=WYEE)Y`c0zyGBT~Za$7o4DAp`Z zjZ^#6-2E(xn+EI?#rfATW(v+BV++>hyvrZiPuB(&l_A0mreD9P{5)p`oE@%P%fyeb zV{!k51TJy#fj(i7_m{1jj0saL@4AH$E}30}Zt%-Q5pzbIfzJ1oeA4XJzSXrA*n8&r zAwA3T&MnKf-8k(0Y&amvgnhuka^m9`%l(1tad~`9! zogS;Kudko|Li%I{T?F%=0RhhjmR#?w69`Y5|Kz$^|3W~Wz1aHZGiSk<>RZw7g80T~ ziq1#=a#z3*FYKo}vw8ohLJ}EVqfpGA&11`J9p`OXmp1PTsE!*@2}33-Pw;7*$1PjQ zfv9B3-qCKIc{X1GR%h=Kko&|t>sOA>8zQH|`wPCcKzoxC_5H-Hp8dNwzzD}NgL|u}8xhk({g0>HY|-AMOhycY+iD7c z94|~;2~LRJ2!flKZ-7GK(rvG*lh09Ye?n8FYxL;d@|AAghY@ug-m3cll=Ni>QJ z+%UHtcVD+kqIoiTXPqS9`u78FnDf@V%~$Kqhn=- zQy;~nf2Ae@)9BAEsn-FYUK-zZ6YBUEc_fqn=fn17i?ygmpg$=DtxGP0onuuz(`**t{4OjIPYUcPJz&u?K1&b&+ok_fz~xN zZ|<=h$|LFE^6iMVFJ~Zc1>c&Xmf!?Wusir6VKE7jX=!rTRAptPFo*|^2GP{W<<;VA zOJ6mA#Fna9(stDY|7ZT2jI3)N@{8OVd_el?%x%Oc=!lkuvhdu2P7mXsvC$wbEGhTk zhoRLyxuAe!wfU!$AldY|$H{2Gnou2`-shcVKE^Hx?A)1TyKbfYKACX3VY9oC=4TzX zl)6{540`Tj?8d>4s|G>wY6(DGHoaJ-UTpOh1gIC4t=tzs;9G5>jA~yKlZqn$0ZhlYnmP! zupFE?bI>*|9P*Ca=XgfNnvtfdSfs51;~yVl8M>0AvmL;Dq$%Y>6hsKASFKzIv?)ZQ}fQGw^Y0dFjMi$n7HJm2KB?1cDDdW zXKjF@)j{Fc8UgFIG&B&MyBxNs10Te-8)v3Qs0k5hPQu`x3m93s-ppV0IK(KX8?3DV zrd5jYii>}xNvL+{TTezB`~aO>N#o~nCZJ(H`_)`M=oDrp1?U8FUv=LBE7_gh>dC%mUn3(i3It_yw-+RyJBXEcAJwvM| zae%D!HO>f?1kI1>1{bluaeVp}9fJ&b|H>||g=?0`d~N7Vj)Y1VLSX1iH^-Tj44f_3 z(u1@Soa3VjL<@*Qn|F0(NsoF0w1NU_xN*x`)G4%Wm8#{)R0QD8u7eV@!Y+wSAPNKc#4oAg=x%Ak7s6n#vxCy898Y*xl>K{!ka|zpb4qm7rOFros5Uo z`(IDHGCBeBNg*~&Xpuhk>vD-B`6EE}Ij&3^5+=)7$3Hl&!6yiZuUO3t3eS$xX{*F* zj>#*m4u=)!3yj9s#m3^Ub03;CW;uUFb`@SvP$k4%cRg%U8&*Jy^Cqy+a(HLTOKN`j z6DPQ_*z84-%Ef?U&DY(Ww0pt_;q{L@S197u)AD6~&!0B&YSz?}Yt0vD`tgCUtEeN) z+@v-aq$|n=DW->Xkc?MPdx9f=49L#TZafmi$N*J*04#hQC|$0BaeQty){c-wJ1nw8 zh1U(Le60*!;oj)l48`4=lO}3wbQd($;aO(0Y%WPpa?+zM`}|b!kxq+NUnSjVIp}$Db=~H!P)O@M=mBf z+D2FTvY4p0P9yME#a1SIatE4YwdGYEzl}2#$W+jb#p9|jCd7i|VsHVBDHvIr!oWnw zUE1EFyD+zXaQc`NRt%8^>eQF*cpC-r?KxG!M_0Ax+i|x6Q8LM$WQP2_S#5l#w!%l1 zztwH__Bs(^&S7Mds)4SAqB-&qtsbZH^f3;F5lYu^M^o=6Drq~d5iq!8qzpBVIXzQV znoqD{INSK3M9vmbXpA5 zB$;WQe&VTB5z3+V(;j%9OIqJaj_kcjTDo zCEn5?gvx&u@l+W#AJPiSOXS%#6b222T{o#{ZDH4beC^u&t=1B8!Y2?Ynf*Og3uRKF zkT+}zfXPe)6JJ$(no=v46qYAkIU-99=3`QC)>g++$UE~$kZvqMXLQ^wDDlQ>m5)e3 zyuHt70h7CGGbLtu4wiTgP>EWZ87^zbBgY(m#a5P0G4w4aovk>s;j=>cbjW=jmb_e> zK`+v=tjYi_jcZ*$0+W^*2jlbFt}^Kqcc}S;4MO@Ii2>35b@@q^J@+Aj-?sjE!DJg% z!R73fQqNP-AfCE>%*vNrN87;t2mOo-v1@>HcZrUPpXl!~-5}>YpRkSJQNidwcZ4NhCR#2X)Z_cYlIiW~NyOKGX4xQNK19J*S%x2&PV}=Rpt*+RQEI z4@LLJD}4;ftIR6(YihUnFggrRFd4z4K;*{QK6swp{78jfM}{$@VQYp zete(Z`qHFChJv&^YVWmW zpKJBpe~ga1U$$*YE6;kwM^QXL%W?$n1nU2^s>DZMWFHD^`n}Iy2jrC-N^YEWyfsmj zkdhn+?IKMH&AWX?$K=C27ESa0Iq#iL6%*D;^yGqLDw3H!w7bIemhsm6wW!;};PAz_ zvYj>x#+@tU25Lu^E8Dm{@UjDLa$4t>NlP(eOUs`a9qaSXN>!BN;W{xtO28@{lJ{gW zdtQp6%Wkv$4~%Js{5Yf&r3(J?xl>p!0gIo(ecZ3J3WyF*oA?cegSErgooqAPt*hU2PF(6Cg=C z@IK)~qF-3pYY(06#2Bk^B-o+Z?fP3+m!9-Ar@t5n>D>fI{e%R1lB^9XdTbb^zuz2* zEcH{F?U73v9=Xs}UYcWtx0|)=w?zP0*1EHYZ$ED~k4QD2waHJI>aU0d60-#J2CQKxLsPS5bJHBH+k8hGC?s@3sPLF;emtZw zOTgib#@fdlF}2FTQ+Q=F!uC*aMr`*1yH@uM`8-zuA37HBj#6k@8A&$33ng8XZgy>& z{5W@UahSo4C2G&X!AJ&Vc8#AKKH4^;bhv(q6t&b!e(ZS@ngcnWPf+bJx36l6-xhug zj;<1#5dh(%U#cge1+JIk>~O+EuCaQ+Irvo{9zAktZm(Y>C657|#V9yEZ2K{B{Rmu2 z1_`Cyj#aCAj%n$+PkF!X6EG>g(aNWSqTr-l1cIm;0;Ve#m<}qT!@f&QbQb&i!GI=d zTaMnI>To_utLP*So4JxD^juPSMnZdV$3>gpBFIM&WImf<-Z@X1o1|hPx~7@pJl8v1 zOP{8nhF2qR@NwdYGhtV620Z-(?%LsB{}8`cI!0fZSGYB*Y`R@?}& z^;y;U53|()>1pbkI*Lm_az1=cx&Nb37n_j_O4F(~Up!ptU0P_jBi}yEhO#AOu)tdC zQJ8h|ui!mTof4~rEs|P3c?hSxPP(O$c-APGuJT&jo^LxLRjR#=q;e1Ys{+)l43NMz z@;MdA0yG~zAmPLXW@bxA!PLpt%XnE6Ssg>#QT|L*n`m z#)bE-bLczz_-W_HAe4cxsA9-oru$@^L@WX7{dG8MCphKxmh2ot`A9&_I*8)U4BMH^ z1VSp-5seMV!leb^8l^FRvNi41BE7lOEr-5i6KsVALO52&DcQ?gZMbk2#suMZaDqZivtkmFXnK>wjez>&`!W&d9#=1wRpCBid@liMa3A+p-Spx;Z zzAfj8YI5So|1@^1dwfBMJb!`#$3Y1-=l6e9Y{Vr z@=ka1ul|+>J$SI9qcmb0o~Y;?w)Jk)FxN3kmrPm!yJmIHY{S98{X&j({|oA8dVd6* ztj--R*>2nGbL+n?qFMq5c-@IH#)>@iuash2b8EBd0D-jH% ze?Ks6qxbF}0}UDe{*?I9jf>8m`?8r~Yujaj_{av6odL5MC${}xT%aa4 zV4}MshE8mPTw7PHlP-VIVz9g*0H_<2Bvf$5`O67X?SBvTpSv)<2lu9-lw7w$m-|QW z-y%LMtZhB_yf`8ME)WfPp%iePK3Lq>=dMug9y|^seot?G9C zUQ#qeA!%0Ez%hvtz_HC}L;R9ZRK07|ce7p|Lxym7KEGEtGQd~Bb{}JM*sy$Rx>Vs0 z)lQ@17R$k6AL-}j^9ZMqeTpHM-z!bt?NX>0Y@mfuH5TfYNGyo7B3+l=m$w4T$V7t-KsK-aq-7E$cmJIx%(7r zXfH!%$|}gA!VmBrHK)=+*mYvwS^Rj~w+VEX07W5Wv*geALr!}KMVHH!zI zhRaNs;mCA{FA)JM30Oafqi0YIHwO)?dEo7J0YG1U z8|?Wi;Ha%8m>dAcouIMiQ~04@^mK0aWj54e9DV0qMeakkCE>q46S%Qkll4UwN#x;+ zq`?C%4g)`bU8kSY6&FIL+IkV(*MKSeKVoMSWSv02ms}nq>JZIT7dJ*M$b<|%#uJeYHV>-X7BU$A9ANLx8 z6IpJr2YeR)OcEpZs4H4q8lgu6*jY`h0amTinPeXB6bCZqm-%HJOVG1S@<7dV z0f8wN1gZp#x2CMk&)JXJ&t!bXyS@ZbRq*+au6s@^ITdOG-5r%bf|iq#<1M2v#;I%9 z7X{;GTg~;v?}CgoYg#9&*hKgUEopk`z$jdBQ&&>jax*-=-|lkY{RA)yGVdH;`~>&LX!H9@NBpOZ{Btg0|) zhixtq(*X)oM*#Q9S~r<4J~1F;2Ju6I}CMxj75zJ9IL5OWYMz%B~` zuxqA`eH@NW-z$`#$~BY%V7MYfU{@FC?QE-#-N@psXL5A7q?h=h1OT*+mYRx7w;*2Z zGNEwHU=+BR-A#skVu>z7a-==P?@odjT|=kDKhWvb0-hcbg9t==`D6-E57MaSQ6)y1dCU8#D zqXJI@J;uf2Y7B@dU|+@Q+q&)a(OeVnL5np~||!*zgZs{kx~wtjzYLcEZi7fVq z8kQLy5@iFlK9#zUa3nkVAI)N9X6BWQ1)Rd{Oa?)~u+y5Jcg7N(OVCD%_60lNFg3*= z<<`ChVd^ZwjHvtoz@A-@Td{KLIU!)Gqz3pAu`J_NOV@nLM|tc*{eEexU(A|9SS;w~ zcfCPjI8;EQxTHY0Bn&>Q9W{VpS6*VuXrAA zcw`m@e-Uc=Q0tp$LB%whM~L3ZUN&E0W!Ao$P#g&15q{DSRZ*eN|E2_sKDq*omx9M= zUGc%BMKSn?j+7R10ksb=EG1=g#;GMdoOR~Q_2IoNSEGF=EnjS5f<}It6$xq@ zefJY0*ZfVnv~urCsQ6?O09~Tm8 zpq!A;n#1yp5q;%BTFNmFy_Mf*)4@h>Il7V!Rota61jqxnc)alTfWj$IUvaJBvtB8i z4cbf-QKpHM!N=*iEB`3L!ds!3zozEZT9)MSvBhl11;-fEt2z#=?-fE8;EFS&k$^W& z8WgUoH{h70lTrndRjTP&5A#qkrukh(6#@0SOW-1$~DK~gOap}M8aNG zQV4JR#jFHqqS+yWFE$Am(T~Zx?Vd24Yn}HY3m)L=%f)*q$D(iF(qoyn-Gqy}+e8{? zE_{JbC@#}S%Y8&JYjZ`CZgl=-y>Bp*9O0r;R$8_OD)*>`?HF zOyO7~0MC9wWSqlv@Cx_qjwF47;&aAUD25jv+e6~XBS#D!i&JsO#aknT=f-gzr9~)LL0t=Emtb>pMm5o0^xu{e(95CCsE2h&nwz_)`H;b`80+MQ+=IM^C_gMg5*QA}NVb17!7O zL%2rbWxie+x3Ixoe?0beSD2}S?CxG}7citUpB34T`)Wlm)|B5)Zf`=H4B^)b#tD;5 z6N|UZ^fCk5ZJ!K1lb|T5_-^6kkSdlm4n+PJDeLHQmq+o32@$ z4Mo!c3f2nW8JWGRWpz(-euYggyOc8n*k)ybP|C&Zi2Fa}(;T}%;+#=e-%pZmAsHRs z^}{X7k4YjP0vi$XB?am zUj!*^9fQ_i@#Z>*CJ|hPDjpe{Epv`0j*lN(9b6uE!dL<~tZCPL*V(*ye%ME5I1vj_ zzQJ0s_KPiDKeLqGU-bN;|Rx3W^TR3%b@ zN00SjvpW8q4S;x%ow%2k<_->UxTNOMvXHQXrOHyhS}Ynsl+dmbua@Fb>Bn{IQr5(x z#JO!fLmuE<{oK@X0yK{whzHC%C&tQe4-4IYy^PDZLszbn8dmzsAaL!;*Y_OGv90uu z=4jXKeHox_J{^cn(uf7cJ6ETS7F~!c+;f~TN+J#fCV27Ph&$18GmSK!#`9sK7b%5T znlN{ZIu9Cy)5Gd(yli!v9^0e&CIcQ=t|oNV^K_1v@QzLe&#Ty~4u8`@FBf*LTwhw5 zMqTlknZZt#j$Es&wXSRJi-dm7$9nbgeyXSb$mp@orFQun#bX;lp$rVMfEXLxhEC4kJooU8vQ)J z=NvnM;uGq;YGQ1sqe*sQsEDL;5&dUKjNa{nx;rt7a7Rhv+M6_{A38;=Vmf=^eVzDL z#qrf~OD94rAFB~ix*OXlYX$tae3{Q}-h|PQMg$8JWm9M=ZBFW0)*EI^f8>3x@>C*FQoKkjD5Je0 zfg8<9%&{1Fn~>X+fSiQ3qRA%Dj9xJ&TrEzZ> z?sMw`_&-u$d~-rlX^_1GIYEkVeDThlo6jMHh6Q?=7V1vZ1s9!*aWM9m={TWl>=BZ+ z4GY_Qf^_#^x=tbzc@7d>PT^yB<`RlZA_0inAB=M26-<2}`8mWlUWsShkl+oh%7uh< zBW?25v4uPUXfwOp7=Q87_iUj$o3FM*>g#_3mhPQ(fn0_U0HX9{nLAqp-E^n^`y4`e z_xc|AHy*g*FZ|Jk%?8U82mJ#+@Bd_^0#1-LSu-A}cpdLnkn zI#BL)4m4S&=hLMfx1-`Dd-s?70xfZpOk+`q>>JW2x2>uheMN;K*+`$YwY%4AficM) ze>TCm6OUj2`knLz_|vu#G~$2}nTf5z+d&uUOM^zAc!Htf2d(ycPx1Pn*@`v=xqG?5 zhd-i=juR_Ekh_ue{?D;wat8o%%n|;MEgJv?Hk87L3AKYQ*iI6h+!cp9@YB)elwKT< z49$|Jer{<`)Twu~<;smqso%O|!>nqSXdFT57HkPP{2eAwg=~G%zOe89p zd?}9qj~NT@eSsa^TT<9)TeUYAU+Rdzo(??7I%nGb4y<8(hw`_RVqht{0K5C&7R`_i zgaXmi-V;p!8SD@Y$-%8>U4Io72JYOL5#1L>sYL&$--zA#_o~K32PR@#L@IzBBWbCE`o+Wm7;C_VrUtFHe9i@ZV$i$C{v-nGbI5)%B7bnx;%%OJp^H;XA;yu$MZocG-uN0 zgz9!$pBO1oCA9T~Ow#0cc#Ig%9pNR8;?{sjOOkGhs5a*HWgTEn102$X#$yr0n5eA_ zwy6am!(`e8SnTRABH=%e{GSg8^_Da2JTx0i3Q7al4WwS#xp14MY<$Po;^4v$QLr)X zPybM`3*M2m8}^e1hWue7 zK_0O9-89|**KP~!lnPp|nMK|{SRZoo&m@umb0&hpzXJzug7N-_KWYiDR1%iIR&FqU zo6gW{Wv1ZQ4(uc(*N~Zq|=ZPC%`XdFo z(TheBXW%C|Of0F{t3dnqQj+f8=7Yk@fjFpfy^TM*Y5X$XUr)p;xoEbf>oL}5$-iR< z5>Te^Z&Nghq|u~)$k2u6@?f#aa3cddPU=EBM1ckp@$TW}-DHruyy_UKO4hz=|%J;2cj~ zb$G{tJh)lI5X?L2Yos3_V)0-Lds{Rc`a=ZgGlgTTB@qfAeE0hJW};tloz;xLamJt`L`G!pB(_c5%D6B0 z{B{KhQTp+0t}D39ut1RUa&TEF{WAsu^KnMVu(iE`xf%S7H#bf z{Sg&GrK}uA!66#!#}_=41-DkhAKJYx7@`s*yRl(Y#JfSO-L_o~@_T&EqiBgYWwIoH z^e:@:. Please ensure your username and password are in URL encoded format. + multi: false + required: false + show_user: false + - name: ssl + type: yaml + title: SSL Configuration + description: SSL configuration options. See [documentation](https://www.elastic.co/guide/en/beats/filebeat/current/configuration-ssl.html#ssl-common-config) for details. + multi: false + required: false + show_user: false + default: | + #certificate_authorities: + # - | + # -----BEGIN CERTIFICATE----- + # MIIDCjCCAfKgAwIBAgITJ706Mu2wJlKckpIvkWxEHvEyijANBgkqhkiG9w0BAQsF + # ADAUMRIwEAYDVQQDDAlsb2NhbGhvc3QwIBcNMTkwNzIyMTkyOTA0WhgPMjExOTA2 + # MjgxOTI5MDRaMBQxEjAQBgNVBAMMCWxvY2FsaG9zdDCCASIwDQYJKoZIhvcNAQEB + # BQADggEPADCCAQoCggEBANce58Y/JykI58iyOXpxGfw0/gMvF0hUQAcUrSMxEO6n + # fZRA49b4OV4SwWmA3395uL2eB2NB8y8qdQ9muXUdPBWE4l9rMZ6gmfu90N5B5uEl + # 94NcfBfYOKi1fJQ9i7WKhTjlRkMCgBkWPkUokvBZFRt8RtF7zI77BSEorHGQCk9t + # /D7BS0GJyfVEhftbWcFEAG3VRcoMhF7kUzYwp+qESoriFRYLeDWv68ZOvG7eoWnP + # PsvZStEVEimjvK5NSESEQa9xWyJOmlOKXhkdymtcUd/nXnx6UTCFgnkgzSdTWV41 + # CI6B6aJ9svCTI2QuoIq2HxX/ix7OvW1huVmcyHVxyUECAwEAAaNTMFEwHQYDVR0O + # BBYEFPwN1OceFGm9v6ux8G+DZ3TUDYxqMB8GA1UdIwQYMBaAFPwN1OceFGm9v6ux + # 8G+DZ3TUDYxqMA8GA1UdEwEB/wQFMAMBAf8wDQYJKoZIhvcNAQELBQADggEBAG5D + # 874A4YI7YUwOVsVAdbWtgp1d0zKcPRR+r2OdSbTAV5/gcS3jgBJ3i1BN34JuDVFw + # 3DeJSYT3nxy2Y56lLnxDeF8CUTUtVQx3CuGkRg1ouGAHpO/6OqOhwLLorEmxi7tA + # H2O8mtT0poX5AnOAhzVy7QW0D/k4WaoLyckM5hUa6RtvgvLxOwA0U+VGurCDoctu + # 8F4QOgTAWyh8EZIwaKCliFRSynDpv3JTUwtfZkxo6K6nce1RhCWFAsMvDZL8Dgc0 + # yvgJ38BRsFOtkRuAGSf6ZUwTO8JJRRIFnpUzXflAnGivK9M13D5GEQMmIl6U9Pvk + # sxSmbIUfc2SGJGCJD4I= + # -----END CERTIFICATE----- +owner: + github: elastic/security-service-integrations + type: elastic diff --git a/packages/jupiter_one/validation.yml b/packages/jupiter_one/validation.yml new file mode 100644 index 00000000000..1189aa63c89 --- /dev/null +++ b/packages/jupiter_one/validation.yml @@ -0,0 +1,3 @@ +errors: + exclude_checks: + - SVR00004 # References in dashboards. From 68417e866e19b7588c490145ca6c3a9c3d7cb9c9 Mon Sep 17 00:00:00 2001 From: janvi-elastic Date: Fri, 5 Dec 2025 16:06:08 +0530 Subject: [PATCH 2/3] Update changelog --- packages/jupiter_one/changelog.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/packages/jupiter_one/changelog.yml b/packages/jupiter_one/changelog.yml index 35fb1d2c290..f1f46cc9a2d 100644 --- a/packages/jupiter_one/changelog.yml +++ b/packages/jupiter_one/changelog.yml @@ -3,4 +3,4 @@ changes: - description: Initial release. type: enhancement - link: https://github.com/elastic/integrations/pull/1 + link: https://github.com/elastic/integrations/pull/16327 From a3a526f2c8e005ccf46e50d717969de7cb905174 Mon Sep 17 00:00:00 2001 From: janvi-elastic Date: Mon, 8 Dec 2025 17:40:22 +0530 Subject: [PATCH 3/3] Update tags using latest dispear code --- .../elasticsearch/ingest_pipeline/default.yml | 108 +++---- .../pipeline_risks_and_alerts.yml | 273 +++++++++--------- packages/jupiter_one/manifest.yml | 4 - 3 files changed, 190 insertions(+), 195 deletions(-) diff --git a/packages/jupiter_one/data_stream/asset/elasticsearch/ingest_pipeline/default.yml b/packages/jupiter_one/data_stream/asset/elasticsearch/ingest_pipeline/default.yml index c2511c8ea88..581b8017ea7 100644 --- a/packages/jupiter_one/data_stream/asset/elasticsearch/ingest_pipeline/default.yml +++ b/packages/jupiter_one/data_stream/asset/elasticsearch/ingest_pipeline/default.yml @@ -2,18 +2,18 @@ description: Pipeline for processing assets. processors: - set: - tag: set_ecs_version + tag: set_ecs_version_3273339c field: ecs.version value: 9.2.0 - terminate: description: error message set and no data to process. - tag: terminate_data_collection_error + tag: terminate_data_collection_error_4c75f12b if: ctx.error?.message != null && ctx.message == null && ctx.event?.original == null # remove agentless metadata - remove: description: Removes the fields added by Agentless as metadata, as they can collide with ECS fields. - tag: remove_agentless_tags + tag: remove_agentless_tags_44eed408 if: ctx.organization instanceof String && ctx.division instanceof String && ctx.team instanceof String field: - organization @@ -24,26 +24,26 @@ processors: # parse the event JSON - rename: description: Renames the original `message` field to `event.original` to store a copy of the original message. The `event.original` field is not touched if the document already has one; it may happen when Logstash sends the document. - tag: rename_message_to_event_original + tag: rename_message_to_event_original_c74b1d7e if: ctx.event?.original == null field: message target_field: event.original ignore_missing: true - remove: description: The `message` field is no longer required if the document has an `event.original` field. - tag: remove_message + tag: remove_message_84808ee4 if: ctx.event?.original != null field: message ignore_missing: true - json: - tag: json_event_original_into_json + tag: json_event_original_into_json_5e54dc16 field: event.original target_field: json # rename to snake case - script: description: Convert camelCase to snake_case. - tag: script_convert_camelcase_to_snake_case + tag: script_convert_camelcase_to_snake_case_b18deb28 lang: painless source: |- // Helper function to convert camelCase to snake_case @@ -93,7 +93,7 @@ processors: # Date processors - date: - tag: date_jupiter_one_asset_entity__created_on_into_jupiter_one_asset_entity__created_on + tag: date_jupiter_one_asset_entity__created_on_into_jupiter_one_asset_entity__created_on_53197dce if: ctx.jupiter_one?.asset?.entity?._created_on != null && ctx.jupiter_one.asset.entity._created_on != '' field: jupiter_one.asset.entity._created_on target_field: jupiter_one.asset.entity._created_on @@ -101,15 +101,15 @@ processors: - ISO8601 on_failure: - remove: - tag: remove_01 + tag: remove_jupiter_one_asset_entity__created_on_dc1039bc field: - jupiter_one.asset.entity._created_on - append: - tag: append_error_message_01 + tag: append_error_message_80e23ffe field: error.message value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' - date: - tag: date_jupiter_one_asset_entity__end_on_into_jupiter_one_asset_entity__end_on + tag: date_jupiter_one_asset_entity__end_on_into_jupiter_one_asset_entity__end_on_51f5d600 if: ctx.jupiter_one?.asset?.entity?._end_on != null && ctx.jupiter_one.asset.entity._end_on != '' field: jupiter_one.asset.entity._end_on target_field: jupiter_one.asset.entity._end_on @@ -117,15 +117,15 @@ processors: - ISO8601 on_failure: - remove: - tag: remove_02 + tag: remove_jupiter_one_asset_entity__end_on_495c02e5 field: - jupiter_one.asset.entity._end_on - append: - tag: append_error_message_02 + tag: append_error_message_b7ecd770 field: error.message value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' - date: - tag: date_jupiter_one_asset_entity__begin_on_into_jupiter_one_asset_entity__begin_on + tag: date_jupiter_one_asset_entity__begin_on_into_jupiter_one_asset_entity__begin_on_c4ed2adc if: ctx.jupiter_one?.asset?.entity?._begin_on != null && ctx.jupiter_one.asset.entity._begin_on != '' field: jupiter_one.asset.entity._begin_on target_field: jupiter_one.asset.entity._begin_on @@ -133,15 +133,15 @@ processors: - ISO8601 on_failure: - remove: - tag: remove_03 + tag: remove_jupiter_one_asset_entity__begin_on_a440af85 field: - jupiter_one.asset.entity._begin_on - append: - tag: append_error_message_03 + tag: append_error_message_f7cb4bfc field: error.message value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' - date: - tag: date_jupiter_one_asset_properties_created_on_into_jupiter_one_asset_properties_created_on + tag: date_jupiter_one_asset_properties_created_on_into_jupiter_one_asset_properties_created_on_1c9e1b12 if: ctx.jupiter_one?.asset?.properties?.created_on != null && ctx.jupiter_one.asset.properties.created_on != '' field: jupiter_one.asset.properties.created_on target_field: jupiter_one.asset.properties.created_on @@ -149,15 +149,15 @@ processors: - ISO8601 on_failure: - remove: - tag: remove_04 + tag: remove_jupiter_one_asset_properties_created_on_fa9a5533 field: - jupiter_one.asset.properties.created_on - append: - tag: append_error_message_04 + tag: append_error_message_d3f00382 field: error.message value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' - date: - tag: date_jupiter_one_asset_properties_updated_on_into_jupiter_one_asset_properties_updated_on + tag: date_jupiter_one_asset_properties_updated_on_into_jupiter_one_asset_properties_updated_on_b6181b48 if: ctx.jupiter_one?.asset?.properties?.updated_on != null && ctx.jupiter_one.asset.properties.updated_on != '' field: jupiter_one.asset.properties.updated_on target_field: jupiter_one.asset.properties.updated_on @@ -165,119 +165,119 @@ processors: - ISO8601 on_failure: - remove: - tag: remove_05 + tag: remove_jupiter_one_asset_properties_updated_on_e6c06ec8 field: - jupiter_one.asset.properties.updated_on - append: - tag: append_error_message_05 + tag: append_error_message_fe04bba8 field: error.message value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' # Convert to Boolean Processors - convert: - tag: convert_jupiter_one_asset_entity__deleted_to_boolean + tag: convert_jupiter_one_asset_entity__deleted_to_boolean_25c54b2e field: jupiter_one.asset.entity._deleted type: boolean ignore_missing: true on_failure: - remove: - tag: remove_06 + tag: remove_jupiter_one_asset_entity__deleted_69bdf3e7 field: - jupiter_one.asset.entity._deleted - append: - tag: append_error_message_06 + tag: append_error_message_7b30e3de field: error.message value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' - convert: - tag: convert_jupiter_one_asset_properties_active_to_boolean + tag: convert_jupiter_one_asset_properties_active_to_boolean_5564b08c field: jupiter_one.asset.properties.active type: boolean ignore_missing: true on_failure: - remove: - tag: remove_07 + tag: remove_jupiter_one_asset_properties_active_4ca7ccbf field: - jupiter_one.asset.properties.active - append: - tag: append_error_message_07 + tag: append_error_message_54998f2c field: error.message value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' - convert: - tag: convert_jupiter_one_asset_properties_public_to_boolean + tag: convert_jupiter_one_asset_properties_public_to_boolean_18047c63 field: jupiter_one.asset.properties.public type: boolean ignore_missing: true on_failure: - remove: - tag: remove_08 + tag: remove_jupiter_one_asset_properties_public_ae85e045 field: - jupiter_one.asset.properties.public - append: - tag: append_error_message_08 + tag: append_error_message_e18b7891 field: error.message value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' - convert: - tag: convert_jupiter_one_asset_properties_validated_to_boolean + tag: convert_jupiter_one_asset_properties_validated_to_boolean_b2fb2a7a field: jupiter_one.asset.properties.validated type: boolean ignore_missing: true on_failure: - remove: - tag: remove_09 + tag: remove_jupiter_one_asset_properties_validated_69173e4d field: - jupiter_one.asset.properties.validated - append: - tag: append_error_message_09 + tag: append_error_message_407dc25a field: error.message value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' # Convert to String Processors - convert: - tag: convert_jupiter_one_asset_entity__version_to_string + tag: convert_jupiter_one_asset_entity__version_to_string_27b58204 field: jupiter_one.asset.entity._version type: string ignore_missing: true # Map custom fields to corresponding ECS and related fields. - set: - tag: set_event_id + tag: set_event_id_from_jupiter_one_asset_id_93ed03bd field: event.id copy_from: jupiter_one.asset.id ignore_empty_value: true - set: - tag: set_event_created + tag: set_event_created_from_jupiter_one_asset_entity__created_on_8f3911a5 field: event.created copy_from: jupiter_one.asset.entity._created_on ignore_empty_value: true - set: - tag: set_event_end + tag: set_event_end_from_jupiter_one_asset_entity__end_on_094d551b field: event.end copy_from: jupiter_one.asset.entity._end_on ignore_empty_value: true - set: - tag: set_event_start + tag: set_event_start_from_jupiter_one_asset_entity__begin_on_5af9a100 field: event.start copy_from: jupiter_one.asset.entity._begin_on ignore_empty_value: true - set: - tag: set_message + tag: set_message_from_jupiter_one_asset_properties_description_4aec05ad field: message copy_from: jupiter_one.asset.properties.description ignore_empty_value: true - set: - tag: set_url_original + tag: set_url_original_from_jupiter_one_asset_properties_web_link_ecced037 field: url.original copy_from: jupiter_one.asset.properties.web_link ignore_empty_value: true - set: - tag: set_vulnerability_description + tag: set_vulnerability_description_from_jupiter_one_asset_properties_description_a164bed8 if: ctx.jupiter_one?.asset?.entity?._class?.contains('Vulnerability') == true field: vulnerability.description copy_from: jupiter_one.asset.properties.description ignore_empty_value: true - script: description: Calculate event.duration. - tag: script_to_calculate_event_duration + tag: script_to_calculate_event_duration_02392f12 if: ctx.event?.start != null && ctx.event.end != null lang: painless source: |- @@ -285,27 +285,27 @@ processors: Instant eventend = ZonedDateTime.parse(ctx.event?.end).toInstant(); ctx.event['duration'] = ChronoUnit.NANOS.between(eventstart, eventend); - uri_parts: - tag: uri_parts_url_original + tag: uri_parts_url_original_868d78a3 field: url.original ignore_missing: true on_failure: - remove: - tag: remove_10 + tag: remove_url_original_bb962785 field: - url.original - append: - tag: append_error_message_10 + tag: append_error_message_3c4d3bd1 field: error.message value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' - pipeline: - tag: pipeline_pipeline_risks_and_alerts + tag: pipeline_pipeline_risks_and_alerts_59feaa44 if: ctx.jupiter_one.asset.entity._class.contains('Vulnerability') || ctx.jupiter_one.asset.entity._class.contains('Alert') || ctx.jupiter_one.asset.entity._class.contains('Finding') name: '{{ IngestPipeline "pipeline_risks_and_alerts" }}' ignore_missing_pipeline: true # Remove Duplicate Custom Field if preserve_duplicate_custom_fields are not enabled - remove: - tag: remove_custom_duplicate_fields + tag: remove_custom_duplicate_fields_4ed959ed if: ctx.tags == null || !ctx.tags.contains('preserve_duplicate_custom_fields') field: - jupiter_one.asset.id @@ -326,7 +326,7 @@ processors: # Cleanup - script: description: This script processor iterates over the whole document to remove fields with null values. - tag: script_to_drop_null_values + tag: script_to_drop_null_values_e26d02f6 lang: painless source: |- void handleMap(Map map) { @@ -351,27 +351,27 @@ processors: } handleMap(ctx); - set: - tag: set_event_kind_1 + tag: set_event_kind_to_pipeline_error_92954dfa if: ctx.error?.message != null field: event.kind value: pipeline_error - append: - tag: append_tags_1 + tag: append_tags_9fe66b2c if: ctx.error?.message != null field: tags value: preserve_original_event allow_duplicates: false on_failure: - append: - tag: append_error_message_11 + tag: append_error_message_e0c9bd63 field: error.message value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' - set: - tag: set_event_kind_2 + tag: set_event_kind_to_pipeline_error_f51b77ad field: event.kind value: pipeline_error - append: - tag: append_tags_2 + tag: append_tags_d762b9c5 field: tags value: preserve_original_event allow_duplicates: false diff --git a/packages/jupiter_one/data_stream/asset/elasticsearch/ingest_pipeline/pipeline_risks_and_alerts.yml b/packages/jupiter_one/data_stream/asset/elasticsearch/ingest_pipeline/pipeline_risks_and_alerts.yml index 8618bc4252c..b47fe4150f6 100644 --- a/packages/jupiter_one/data_stream/asset/elasticsearch/ingest_pipeline/pipeline_risks_and_alerts.yml +++ b/packages/jupiter_one/data_stream/asset/elasticsearch/ingest_pipeline/pipeline_risks_and_alerts.yml @@ -4,27 +4,27 @@ processors: # Set event.* fields. - set: - tag: set_event_kind_1 + tag: set_event_kind_alert_39295792 field: event.kind value: alert - append: - tag: append_event_category + tag: append_event_category_vulnerability_e63c862e if: ctx.jupiter_one.asset.entity._class.contains('Vulnerability') field: event.category value: vulnerability - append: - tag: append_event_type + tag: append_event_type_info_5e69fdec if: ctx.jupiter_one.asset.entity._class.contains('Vulnerability') field: event.type value: info # Dot expander - dot_expander: - tag: dot_expander_from_* + tag: dot_expander_jupiter_one_asset_properties_08bd56d2 field: '*' path: jupiter_one.asset.properties # Date processors - date: - tag: date_jupiter_one_asset_properties_approved_on_into_jupiter_one_asset_properties_approved_on + tag: date_jupiter_one_asset_properties_approved_on_into_jupiter_one_asset_properties_approved_on_6c305ad2 if: ctx.jupiter_one?.asset?.properties?.approved_on != null && ctx.jupiter_one.asset.properties.approved_on != '' field: jupiter_one.asset.properties.approved_on target_field: jupiter_one.asset.properties.approved_on @@ -32,15 +32,15 @@ processors: - ISO8601 on_failure: - remove: - tag: remove_01 + tag: remove_jupiter_one_asset_properties_approved_on_c9414312 field: - jupiter_one.asset.properties.approved_on - append: - tag: append_error_message_01 + tag: append_error_message_1c991242 field: error.message value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' - date: - tag: date_jupiter_one_asset_properties_reported_on_into_jupiter_one_asset_properties_reported_on + tag: date_jupiter_one_asset_properties_reported_on_into_jupiter_one_asset_properties_reported_on_cc7dfab6 if: ctx.jupiter_one?.asset?.properties?.reported_on != null && ctx.jupiter_one.asset.properties.reported_on != '' field: jupiter_one.asset.properties.reported_on target_field: jupiter_one.asset.properties.reported_on @@ -48,15 +48,15 @@ processors: - ISO8601 on_failure: - remove: - tag: remove_02 + tag: remove_jupiter_one_asset_properties_reported_on_fd3b9b8a field: - jupiter_one.asset.properties.reported_on - append: - tag: append_error_message_02 + tag: append_error_message_08774876 field: error.message value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' - date: - tag: date_jupiter_one_asset_properties_detected_on_into_jupiter_one_asset_properties_detected_on + tag: date_jupiter_one_asset_properties_detected_on_into_jupiter_one_asset_properties_detected_on_2b57c1b8 if: ctx.jupiter_one?.asset?.properties?.detected_on != null && ctx.jupiter_one.asset.properties.detected_on != '' field: jupiter_one.asset.properties.detected_on target_field: jupiter_one.asset.properties.detected_on @@ -64,15 +64,15 @@ processors: - ISO8601 on_failure: - remove: - tag: remove_03 + tag: remove_jupiter_one_asset_properties_detected_on_9d6df77b field: - jupiter_one.asset.properties.detected_on - append: - tag: append_error_message_03 + tag: append_error_message_ae479998 field: error.message value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' - date: - tag: date_jupiter_one_asset_properties_published_on_into_jupiter_one_asset_properties_published_on + tag: date_jupiter_one_asset_properties_published_on_into_jupiter_one_asset_properties_published_on_1d9721a2 if: ctx.jupiter_one?.asset?.properties?.published_on != null && ctx.jupiter_one.asset.properties.published_on != '' field: jupiter_one.asset.properties.published_on target_field: jupiter_one.asset.properties.published_on @@ -80,423 +80,422 @@ processors: - ISO8601 on_failure: - remove: - tag: remove_04 + tag: remove_jupiter_one_asset_properties_published_on_e9ecc831 field: - jupiter_one.asset.properties.published_on - append: - tag: append_error_message_04 + tag: append_error_message_893984d2 field: error.message value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' # Convert to Long Processors - convert: - tag: convert_jupiter_one_asset_properties_total_number_of_affected_entities_to_long + tag: convert_jupiter_one_asset_properties_total_number_of_affected_entities_to_long_cf15bf27 field: jupiter_one.asset.properties.total_number_of_affected_entities type: long ignore_missing: true on_failure: - remove: - tag: remove_05 + tag: remove_jupiter_one_asset_properties_total_number_of_affected_entities_d561bfc1 field: - jupiter_one.asset.properties.total_number_of_affected_entities - append: - tag: append_error_message_05 + tag: append_error_message_69388695 field: error.message value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' - convert: - tag: convert_jupiter_one_asset_properties_numeric_severity_to_long + tag: convert_jupiter_one_asset_properties_numeric_severity_to_long_5fa6bfd5 field: jupiter_one.asset.properties.numeric_severity type: long ignore_missing: true on_failure: - remove: - tag: remove_06 + tag: remove_jupiter_one_asset_properties_numeric_severity_ef9fa361 field: - jupiter_one.asset.properties.numeric_severity - append: - tag: append_error_message_06 + tag: append_error_message_1ea792bb field: error.message value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' - convert: - tag: convert_jupiter_one_asset_properties_remediation_sla_to_long + tag: convert_jupiter_one_asset_properties_remediation_sla_to_long_231e4476 field: jupiter_one.asset.properties.remediation_sla type: long ignore_missing: true on_failure: - remove: - tag: remove_07 + tag: remove_jupiter_one_asset_properties_remediation_sla_f18fd9a3 field: - jupiter_one.asset.properties.remediation_sla - append: - tag: append_error_message_07 + tag: append_error_message_eda5f236 field: error.message value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' - convert: - tag: convert_jupiter_one_asset_properties_exploit_status_to_long + tag: convert_jupiter_one_asset_properties_exploit_status_to_long_155fdf22 field: jupiter_one.asset.properties.exploit_status type: long ignore_missing: true on_failure: - remove: - tag: remove_08 + tag: remove_jupiter_one_asset_properties_exploit_status_ff55b7d9 field: - jupiter_one.asset.properties.exploit_status - append: - tag: append_error_message_08 + tag: append_error_message_20c33d52 field: error.message value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' # Convert to Double Processors - convert: - tag: convert_jupiter_one_asset_properties_exploitability_to_double + tag: convert_jupiter_one_asset_properties_exploitability_to_double_f4e14120 field: jupiter_one.asset.properties.exploitability type: double ignore_missing: true on_failure: - remove: - tag: remove_09 + tag: remove_jupiter_one_asset_properties_exploitability_e984773a field: - jupiter_one.asset.properties.exploitability - append: - tag: append_error_message_09 + tag: append_error_message_a3890c90 field: error.message value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' - convert: - tag: convert_jupiter_one_asset_properties_impact_to_double + tag: convert_jupiter_one_asset_properties_impact_to_double_2d857527 field: jupiter_one.asset.properties.impact type: double ignore_missing: true on_failure: - remove: - tag: remove_10 + tag: remove_jupiter_one_asset_properties_impact_384bc8e6 field: - jupiter_one.asset.properties.impact - append: - tag: append_error_message_10 + tag: append_error_message_b305a895 field: error.message value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' - convert: - tag: convert_jupiter_one_asset_properties_score_to_double + tag: convert_jupiter_one_asset_properties_score_to_double_4eba43d9 field: jupiter_one.asset.properties.score type: double ignore_missing: true on_failure: - remove: - tag: remove_11 + tag: remove_jupiter_one_asset_properties_score_ac2594e2 field: - jupiter_one.asset.properties.score - append: - tag: append_error_message_11 + tag: append_error_message_6cc3718f field: error.message value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' # Convert to Boolean Processors - convert: - tag: convert_jupiter_one_asset_properties_open_to_boolean + tag: convert_jupiter_one_asset_properties_open_to_boolean_1597bca6 field: jupiter_one.asset.properties.open type: boolean ignore_missing: true on_failure: - remove: - tag: remove_12 + tag: remove_jupiter_one_asset_properties_open_db2baa37 field: - jupiter_one.asset.properties.open - append: - tag: append_error_message_12 + tag: append_error_message_206eb266 field: error.message value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' - convert: - tag: convert_jupiter_one_asset_properties_approved_to_boolean + tag: convert_jupiter_one_asset_properties_approved_to_boolean_154e80e1 field: jupiter_one.asset.properties.approved type: boolean ignore_missing: true on_failure: - remove: - tag: remove_13 + tag: remove_jupiter_one_asset_properties_approved_eb14685d field: - jupiter_one.asset.properties.approved - append: - tag: append_error_message_13 + tag: append_error_message_ddfcc967 field: error.message value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' - convert: - tag: convert_jupiter_one_asset_properties_exception_to_boolean + tag: convert_jupiter_one_asset_properties_exception_to_boolean_7c919b89 field: jupiter_one.asset.properties.exception type: boolean ignore_missing: true on_failure: - remove: - tag: remove_14 + tag: remove_jupiter_one_asset_properties_exception_671c47b9 field: - jupiter_one.asset.properties.exception - append: - tag: append_error_message_14 + tag: append_error_message_7f5ac7ff field: error.message value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' - convert: - tag: convert_jupiter_one_asset_properties_production_to_boolean + tag: convert_jupiter_one_asset_properties_production_to_boolean_65f41341 field: jupiter_one.asset.properties.production type: boolean ignore_missing: true on_failure: - remove: - tag: remove_15 + tag: remove_jupiter_one_asset_properties_production_c90660ed field: - jupiter_one.asset.properties.production - append: - tag: append_error_message_15 + tag: append_error_message_78fd9cc7 field: error.message value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' - convert: - tag: convert_jupiter_one_asset_properties_blocks_production_to_boolean + tag: convert_jupiter_one_asset_properties_blocks_production_to_boolean_b3238d5c field: jupiter_one.asset.properties.blocks_production type: boolean ignore_missing: true on_failure: - remove: - tag: remove_16 + tag: remove_jupiter_one_asset_properties_blocks_production_9cf505a5 field: - jupiter_one.asset.properties.blocks_production - append: - tag: append_error_message_16 + tag: append_error_message_52def37c field: error.message value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' - convert: - tag: convert_jupiter_one_asset_properties_tag_production_to_boolean + tag: convert_jupiter_one_asset_properties_tag_production_to_boolean_b22c5127 field: jupiter_one.asset.properties.tag.production type: boolean ignore_missing: true on_failure: - remove: - tag: remove_17 + tag: remove_jupiter_one_asset_properties_tag_production_49c01565 field: - jupiter_one.asset.properties.tag.production - append: - tag: append_error_message_17 + tag: append_error_message_38a63c95 field: error.message value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' - convert: - tag: convert_jupiter_one_asset_properties_blocking_to_boolean + tag: convert_jupiter_one_asset_properties_blocking_to_boolean_ac1cebd9 field: jupiter_one.asset.properties.blocking type: boolean ignore_missing: true on_failure: - remove: - tag: remove_18 + tag: remove_jupiter_one_asset_properties_blocking_2f321ac1 field: - jupiter_one.asset.properties.blocking - append: - tag: append_error_message_18 + tag: append_error_message_8e73698f field: error.message value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' # Convert to IP - convert: - tag: convert_jupiter_one_asset_properties_device_local_ip_to_ip + tag: convert_jupiter_one_asset_properties_device_local_ip_to_ip_3375672f if: ctx.jupiter_one?.asset?.properties?.device_local_ip != '' field: jupiter_one.asset.properties.device_local_ip type: ip ignore_missing: true on_failure: - remove: - tag: remove_19 + tag: remove_jupiter_one_asset_properties_device_local_ip_152e26e4 field: - jupiter_one.asset.properties.device_local_ip - append: - tag: append_error_message_19 + tag: append_error_message_0500fc2d field: error.message value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' - convert: - tag: convert_jupiter_one_asset_properties_device_external_ip_to_ip + tag: convert_jupiter_one_asset_properties_device_external_ip_to_ip_b86c1d0b if: ctx.jupiter_one?.asset?.properties?.device_external_ip != '' field: jupiter_one.asset.properties.device_external_ip type: ip ignore_missing: true on_failure: - remove: - tag: remove_20 + tag: remove_jupiter_one_asset_properties_device_external_ip_07833d38 field: - jupiter_one.asset.properties.device_external_ip - append: - tag: append_error_message_20 + tag: append_error_message_56b2c609 field: error.message value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' - - append: - tag: append_related_user_1 + tag: append_related_user_dd3c6ce9 if: ctx.jupiter_one?.asset?.properties?.reporter != null field: related.user value: '{{{jupiter_one.asset.properties.reporter}}}' allow_duplicates: false - append: - tag: append_related_ip_1 + tag: append_related_ip_f0bf4b75 if: ctx.jupiter_one?.asset?.properties?.device_local_ip != null field: related.ip value: '{{{jupiter_one.asset.properties.device_local_ip}}}' allow_duplicates: false - append: - tag: append_related_user_2 + tag: append_related_user_be2ad59b if: ctx.jupiter_one?.asset?.properties?.user_id != null field: related.user value: '{{{jupiter_one.asset.properties.user_id}}}' allow_duplicates: false - append: - tag: append_related_ip_2 + tag: append_related_ip_7811a945 if: ctx.jupiter_one?.asset?.properties?.device_external_ip != null field: related.ip value: '{{{jupiter_one.asset.properties.device_external_ip}}}' allow_duplicates: false - append: - tag: append_related_hosts + tag: append_related_hosts_94e09e9d if: ctx.jupiter_one?.asset?.properties?.device_hostname != null field: related.hosts value: '{{{jupiter_one.asset.properties.device_hostname}}}' allow_duplicates: false - append: - tag: append_related_user_3 + tag: append_related_user_a55d0743 if: ctx.jupiter_one?.asset?.properties?.user_name != null field: related.user value: '{{{jupiter_one.asset.properties.user_name}}}' allow_duplicates: false - foreach: - tag: foreach_of_jupiter_one_asset_properties_approvers + tag: foreach_of_jupiter_one_asset_properties_approvers_f5e7fcae if: ctx.jupiter_one?.asset?.properties?.approvers instanceof List field: jupiter_one.asset.properties.approvers processor: append: - tag: append_related_user_4 + tag: append_related_user_6e4b7c4f field: related.user value: '{{{_ingest._value}}}' allow_duplicates: false # Map custom fields to corresponding ECS and related fields. - set: - tag: set_log_level + tag: set_log_level_from_jupiter_one_asset_properties_level_dce4174e field: log.level copy_from: jupiter_one.asset.properties.level ignore_empty_value: true + - set: + tag: set_host_id_from_jupiter_one_asset_properties_device_id_f3851313 + field: host.id + copy_from: jupiter_one.asset.properties.device_id + ignore_empty_value: true + - set: + tag: set_user_id_from_jupiter_one_asset_properties_user_id_6b4f8a37 + field: user.id + copy_from: jupiter_one.asset.properties.user_id + ignore_empty_value: true + - set: + tag: set_host_os_version_from_jupiter_one_asset_properties_device_os_version_8c5bc0cc + field: host.os.version + copy_from: jupiter_one.asset.properties.device_os_version + ignore_empty_value: true + - set: + tag: set_host_hostname_from_jupiter_one_asset_properties_device_hostname_fc3b025f + field: host.hostname + copy_from: jupiter_one.asset.properties.device_hostname + ignore_empty_value: true + - set: + tag: set_host_os_platform_from_jupiter_one_asset_properties_device_platform_name_098c9485 + field: host.os.platform + copy_from: jupiter_one.asset.properties.device_platform_name + ignore_empty_value: true + - set: + tag: set_user_name_from_jupiter_one_asset_properties_user_name_1f2f0b23 + field: user.name + copy_from: jupiter_one.asset.properties.user_name + ignore_empty_value: true - lowercase: + tag: lowecase_log_level_67daca2b field: log.level - tag: lowercase_log_level ignore_missing: true - set: - tag: set_vulnerability_id + tag: set_vulnerability_id_from_jupiter_one_asset_properties_cve_id_fca34da9 + if: ctx.jupiter_one?.asset?.entity?._class?.contains('Vulnerability') == true field: vulnerability.id copy_from: jupiter_one.asset.properties.cve_id ignore_empty_value: true - if: ctx.jupiter_one?.asset?.entity?._class?.contains('Vulnerability') == true - set: - tag: set_vulnerability_score_base + tag: set_vulnerability_score_base_from_jupiter_one_asset_properties_score_17869dbf + if: ctx.jupiter_one?.asset?.entity?._class?.contains('Vulnerability') == true field: vulnerability.score.base copy_from: jupiter_one.asset.properties.score ignore_empty_value: true - if: ctx.jupiter_one?.asset?.entity?._class?.contains('Vulnerability') == true - set: - tag: set_vulnerability_severity + tag: set_vulnerability_severity_from_jupiter_one_asset_properties_severity_ac555e7a + if: ctx.jupiter_one?.asset?.entity?._class?.contains('Vulnerability') == true field: vulnerability.severity copy_from: jupiter_one.asset.properties.severity ignore_empty_value: true - if: ctx.jupiter_one?.asset?.entity?._class?.contains('Vulnerability') == true - - set: - tag: set_host_id - field: host.id - copy_from: jupiter_one.asset.properties.device_id - ignore_empty_value: true - set: - tag: set_threat_indicator_file_name + tag: set_threat_indicator_file_name_from_jupiter_one_asset_properties_filename_4b0f2440 + if: ctx.jupiter_one?.asset?.entity?._class?.contains('Finding') == true field: threat.indicator.file.name copy_from: jupiter_one.asset.properties.filename ignore_empty_value: true - if: ctx.jupiter_one?.asset?.entity?._class?.contains('Finding') == true - - set: - tag: set_user_id - field: user.id - copy_from: jupiter_one.asset.properties.user_id - ignore_empty_value: true - set: - tag: set_threat_indicator_file_path + tag: set_threat_indicator_file_path_from_jupiter_one_asset_properties_filepath_33e20bec + if: ctx.jupiter_one?.asset?.entity?._class?.contains('Finding') == true field: threat.indicator.file.path copy_from: jupiter_one.asset.properties.filepath ignore_empty_value: true - if: ctx.jupiter_one?.asset?.entity?._class?.contains('Finding') == true - set: - tag: set_threat_indicator_ip + tag: set_threat_indicator_ip_from_jupiter_one_asset_properties_device_external_ip_989d8aab + if: ctx.jupiter_one?.asset?.entity?._class?.contains('Finding') == true field: threat.indicator.ip copy_from: jupiter_one.asset.properties.device_external_ip ignore_empty_value: true - if: ctx.jupiter_one?.asset?.entity?._class?.contains('Finding') == true - - set: - tag: set_host_os_version - field: host.os.version - copy_from: jupiter_one.asset.properties.device_os_version - ignore_empty_value: true - - set: - tag: set_host_hostname - field: host.hostname - copy_from: jupiter_one.asset.properties.device_hostname - ignore_empty_value: true - - set: - tag: set_host_os_platform - field: host.os.platform - copy_from: jupiter_one.asset.properties.device_platform_name - ignore_empty_value: true - - set: - tag: set_user_name - field: user.name - copy_from: jupiter_one.asset.properties.user_name - ignore_empty_value: true - append: - tag: append_vulnerability_category - if: ctx.jupiter_one?.asset?.properties?.category != null && ctx.jupiter_one?.asset?.entity?._class?.contains('Vulnerability') == true - field: vulnerability.category - value: '{{{jupiter_one.asset.properties.category}}}' - allow_duplicates: false - - append: - tag: append_threat_technique_name - if: ctx.jupiter_one?.asset?.properties?.technique != null && ctx.jupiter_one?.asset?.entity?._class?.contains('Finding') == true - field: threat.technique.name - value: '{{{jupiter_one.asset.properties.technique}}}' - allow_duplicates: false - - append: - tag: append_host_mac + tag: append_host_mac_from_jupiter_one_asset_properties_device_mac_address_ed83a520 if: ctx.jupiter_one?.asset?.properties?.device_mac_address != null field: host.mac value: '{{{jupiter_one.asset.properties.device_mac_address}}}' allow_duplicates: false - append: - tag: append_threat_technique_id + tag: append_vulnerability_category_from_jupiter_one_asset_properties_category_f8a52b48 + if: ctx.jupiter_one?.asset?.properties?.category != null && ctx.jupiter_one?.asset?.entity?._class?.contains('Vulnerability') == true + field: vulnerability.category + value: '{{{jupiter_one.asset.properties.category}}}' + allow_duplicates: false + - append: + tag: append_threat_technique_id_from_jupiter_one_asset_properties_technique_id_921087da if: ctx.jupiter_one?.asset?.properties?.technique_id != null && ctx.jupiter_one?.asset?.entity?._class?.contains('Finding') == true field: threat.technique.id value: '{{{jupiter_one.asset.properties.technique_id}}}' allow_duplicates: false - append: - tag: append_threat_tactic_id + tag: append_threat_tactic_id_from_jupiter_one_asset_properties_tactic_id_90f7d444 if: ctx.jupiter_one?.asset?.properties?.tactic_id != null && ctx.jupiter_one?.asset?.entity?._class?.contains('Finding') == true field: threat.tactic.id value: '{{{jupiter_one.asset.properties.tactic_id}}}' allow_duplicates: false - append: - tag: append_threat_tactic_name + tag: append_threat_tactic_name_from_jupiter_one_asset_properties_tactic_b86a19f6 if: ctx.jupiter_one?.asset?.properties?.tactic != null && ctx.jupiter_one?.asset?.entity?._class?.contains('Finding') == true field: threat.tactic.name value: '{{{jupiter_one.asset.properties.tactic}}}' allow_duplicates: false + - append: + tag: append_threat_technique_name_from_jupiter_one_asset_properties_technique_f7c7526c + if: ctx.jupiter_one?.asset?.properties?.technique != null && ctx.jupiter_one?.asset?.entity?._class?.contains('Finding') == true + field: threat.technique.name + value: '{{{jupiter_one.asset.properties.technique}}}' + allow_duplicates: false - set: - tag: set_vulnerability_enumeration + tag: set_vulnerability_enumeration_from_cve_id_b4107840 if: ctx.jupiter_one?.asset?.properties?.cve_id != null field: vulnerability.enumeration value: CVE on_failure: - append: - tag: append_error_message_21 + tag: append_error_message_e0c9bd63 field: error.message value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' - set: - tag: set_event_kind_2 + tag: set_event_kind_f51b77ad field: event.kind value: pipeline_error - append: - tag: append_tags + tag: append_tags_d762b9c5 field: tags value: preserve_original_event allow_duplicates: false diff --git a/packages/jupiter_one/manifest.yml b/packages/jupiter_one/manifest.yml index 9a659ab92fc..b410795198f 100644 --- a/packages/jupiter_one/manifest.yml +++ b/packages/jupiter_one/manifest.yml @@ -17,10 +17,6 @@ icons: size: 32x32 type: image/svg+xml screenshots: - - src: /img/jupiter_one-alert-dashboard.png - title: Alert Dashboard - size: 600x600 - type: image/png - src: /img/jupiter_one-overview-dashboard.png title: Overview Dashboard size: 600x600