From a72700b489aa0e66ee554997334609bc83cc092e Mon Sep 17 00:00:00 2001
From: "github-actions[bot]" <github-actions[bot]@users.noreply.github.com>
Date: Wed, 26 Feb 2025 00:05:58 +0000
Subject: [PATCH] Added chart versions:   codefresh/cf-runtime:     - 7.5.5  
 instana/instana-agent:     - 2.0.13   jfrog/artifactory-ha:     - 107.104.10 
  jfrog/artifactory-jcr:     - 107.104.10   kasten/k10:     - 7.5.4

---
 assets/codefresh/cf-runtime-7.5.5.tgz         |  Bin 0 -> 48972 bytes
 assets/instana/instana-agent-2.0.13.tgz       |  Bin 0 -> 134699 bytes
 assets/jfrog/artifactory-ha-107.104.10.tgz    |  Bin 0 -> 224816 bytes
 assets/jfrog/artifactory-ha-107.104.9.tgz     |  Bin 224821 -> 224810 bytes
 assets/jfrog/artifactory-jcr-107.104.10.tgz   |  Bin 0 -> 470909 bytes
 assets/kasten/k10-7.5.301.tgz                 |  Bin 186290 -> 186286 bytes
 assets/kasten/k10-7.5.401.tgz                 |  Bin 0 -> 186353 bytes
 charts/codefresh/cf-runtime/7.5.5/.helmignore |    3 +
 charts/codefresh/cf-runtime/7.5.5/Chart.yaml  |   28 +
 charts/codefresh/cf-runtime/7.5.5/README.md   | 1296 ++++
 .../cf-runtime/7.5.5/README.md.gotmpl         | 1071 +++
 .../cf-runtime/7.5.5/files/cleanup-runtime.sh |   37 +
 .../7.5.5/files/configure-dind-certs.sh       |  132 +
 .../cf-runtime/7.5.5/files/init-runtime.sh    |   80 +
 .../7.5.5/files/reconcile-runtime.sh          |   38 +
 .../_components/app-proxy/_deployment.yaml    |   70 +
 .../_components/app-proxy/_env-vars.yaml      |   19 +
 .../_components/app-proxy/_helpers.tpl        |   43 +
 .../_components/app-proxy/_ingress.yaml       |   32 +
 .../_components/app-proxy/_rbac.yaml          |   47 +
 .../_components/app-proxy/_service.yaml       |   17 +
 .../event-exporter/_deployment.yaml           |   62 +
 .../_components/event-exporter/_env-vars.yaml |   14 +
 .../_components/event-exporter/_helpers.tpl   |   43 +
 .../_components/event-exporter/_rbac.yaml     |   47 +
 .../_components/event-exporter/_service.yaml  |   17 +
 .../event-exporter/_serviceMontor.yaml        |   14 +
 .../_components/monitor/_deployment.yaml      |   70 +
 .../_components/monitor/_env-vars.yaml        |   26 +
 .../_components/monitor/_helpers.tpl          |   42 +
 .../templates/_components/monitor/_rbac.yaml  |   56 +
 .../_components/monitor/_service.yaml         |   17 +
 .../_components/runner/_deployment.yaml       |  103 +
 .../templates/_components/runner/_helpers.tpl |   42 +
 .../templates/_components/runner/_rbac.yaml   |   53 +
 .../_init-container.yaml                      |   30 +
 .../_main-container.yaml                      |   29 +
 .../_sidecar-container.yaml                   |   22 +
 .../volume-provisioner/_cronjob.yaml          |   58 +
 .../volume-provisioner/_daemonset.yaml        |   98 +
 .../volume-provisioner/_deployment.yaml       |   67 +
 .../volume-provisioner/_env-vars.yaml         |   88 +
 .../volume-provisioner/_helpers.tpl           |   93 +
 .../_components/volume-provisioner/_rbac.yaml |   71 +
 .../volume-provisioner/_secret.yaml           |   22 +
 .../volume-provisioner/_storageclass.yaml     |   47 +
 .../cf-runtime/7.5.5/templates/_helpers.tpl   |   51 +
 .../7.5.5/templates/app-proxy/deployment.yaml |    9 +
 .../7.5.5/templates/app-proxy/ingress.yaml    |    9 +
 .../7.5.5/templates/app-proxy/rbac.yaml       |    9 +
 .../7.5.5/templates/app-proxy/service.yaml    |    9 +
 .../templates/event-exporter/deployment.yaml  |    9 +
 .../7.5.5/templates/event-exporter/rbac.yaml  |    9 +
 .../templates/event-exporter/service.yaml     |   11 +
 .../templates/extra/extra-resources.yaml      |    6 +
 .../templates/extra/runtime-images-cm.yaml    |   19 +
 .../hooks/post-install/cm-update-runtime.yaml |   18 +
 .../hooks/post-install/job-gencerts-dind.yaml |   68 +
 .../post-install/job-update-runtime.yaml      |   77 +
 .../post-install/rbac-gencerts-dind.yaml      |   37 +
 .../pre-delete/job-cleanup-resources.yaml     |   73 +
 .../pre-delete/rbac-cleanup-resources.yaml    |   46 +
 .../7.5.5/templates/monitor/deployment.yaml   |    9 +
 .../7.5.5/templates/monitor/rbac.yaml         |    9 +
 .../7.5.5/templates/monitor/service.yaml      |    9 +
 .../templates/other/external-secrets.yaml     |    2 +
 .../7.5.5/templates/other/podMonitor.yaml     |    2 +
 .../7.5.5/templates/other/serviceMonitor.yaml |    2 +
 .../7.5.5/templates/runner/deployment.yaml    |    9 +
 .../7.5.5/templates/runner/rbac.yaml          |    9 +
 .../7.5.5/templates/runtime/_helpers.tpl      |  123 +
 .../templates/runtime/cm-dind-daemon.yaml     |   10 +
 .../7.5.5/templates/runtime/rbac.yaml         |   48 +
 .../runtime/runtime-env-spec-tmpl.yaml        |  235 +
 .../7.5.5/templates/runtime/secret.yaml       |   11 +
 .../7.5.5/templates/runtime/svc-dind.yaml     |   16 +
 .../templates/volume-provisioner/cronjob.yaml |   11 +
 .../volume-provisioner/daemonset.yaml         |   11 +
 .../volume-provisioner/deployment.yaml        |   10 +
 .../templates/volume-provisioner/rbac.yaml    |    9 +
 .../templates/volume-provisioner/secret.yaml  |   10 +
 .../volume-provisioner/storageclass.yaml      |   10 +
 .../cf-runtime/7.5.5/values-rootless.yaml     |   38 +
 charts/codefresh/cf-runtime/7.5.5/values.yaml |  916 +++
 .../instana/instana-agent/2.0.13/.helmignore  |   23 +
 .../instana/instana-agent/2.0.13/Chart.yaml   |   39 +
 .../instana-agent/2.0.13/DEPLOYMENT.md        |   54 +
 charts/instana/instana-agent/2.0.13/README.md |  810 +++
 .../instana-agent/2.0.13/app-readme.md        |    5 +
 ...omresourcedefinition_agents_instana_io.yml | 6195 ++++++++++++++++
 .../2.0.13/kubernetes.deployment.enabled.png  |  Bin 0 -> 71985 bytes
 .../kubernetes_deployment_mode_diagram.py     |   20 +
 .../instana-agent/2.0.13/questions.yml        |  236 +
 .../instana-agent/2.0.13/templates/NOTES.txt  |   73 +
 .../instana-agent/2.0.13/templates/agent.yml  |  309 +
 ..._clusterrole_instana-agent-clusterrole.yml |  187 +
 ...rator_clusterrole_leader-election-role.yml |   27 +
 ...nding_instana-agent-clusterrolebinding.yml |   13 +
 ...olebinding_leader-election-rolebinding.yml |   13 +
 .../operator_configmap_manager-config.yml     |   17 +
 ...yment_instana-agent-controller-manager.yml |   66 +
 ..._serviceaccount_instana-agent-operator.yml |    6 +
 .../instana/instana-agent/2.0.13/values.yaml  |  282 +
 .../artifactory-ha/107.104.10/.helmignore     |   24 +
 .../artifactory-ha/107.104.10/CHANGELOG.md    | 1515 ++++
 .../artifactory-ha/107.104.10/Chart.lock      |    6 +
 .../artifactory-ha/107.104.10/Chart.yaml      |   33 +
 .../jfrog/artifactory-ha/107.104.10/LICENSE   |  201 +
 .../jfrog/artifactory-ha/107.104.10/README.md |   69 +
 .../artifactory-ha/107.104.10/app-readme.md   |   16 +
 .../107.104.10/charts/postgresql/.helmignore  |   21 +
 .../107.104.10/charts/postgresql/Chart.lock   |    6 +
 .../107.104.10/charts/postgresql/Chart.yaml   |   29 +
 .../107.104.10/charts/postgresql/README.md    |  770 ++
 .../postgresql/charts/common/.helmignore      |   22 +
 .../postgresql/charts/common/Chart.yaml       |   23 +
 .../charts/postgresql/charts/common/README.md |  322 +
 .../charts/common/templates/_affinities.tpl   |   94 +
 .../charts/common/templates/_capabilities.tpl |   95 +
 .../charts/common/templates/_errors.tpl       |   23 +
 .../charts/common/templates/_images.tpl       |   47 +
 .../charts/common/templates/_ingress.tpl      |   42 +
 .../charts/common/templates/_labels.tpl       |   18 +
 .../charts/common/templates/_names.tpl        |   32 +
 .../charts/common/templates/_secrets.tpl      |  129 +
 .../charts/common/templates/_storage.tpl      |   23 +
 .../charts/common/templates/_tplvalues.tpl    |   13 +
 .../charts/common/templates/_utils.tpl        |   62 +
 .../charts/common/templates/_warnings.tpl     |   14 +
 .../templates/validations/_cassandra.tpl      |   72 +
 .../common/templates/validations/_mariadb.tpl |  103 +
 .../common/templates/validations/_mongodb.tpl |  108 +
 .../templates/validations/_postgresql.tpl     |  131 +
 .../common/templates/validations/_redis.tpl   |   72 +
 .../templates/validations/_validations.tpl    |   46 +
 .../postgresql/charts/common/values.yaml      |    3 +
 .../postgresql/ci/commonAnnotations.yaml      |    3 +
 .../charts/postgresql/ci/default-values.yaml  |    1 +
 .../ci/shmvolume-disabled-values.yaml         |    2 +
 .../charts/postgresql/files/README.md         |    1 +
 .../charts/postgresql/files/conf.d/README.md  |    4 +
 .../docker-entrypoint-initdb.d/README.md      |    3 +
 .../charts/postgresql/templates/NOTES.txt     |   59 +
 .../charts/postgresql/templates/_helpers.tpl  |  337 +
 .../postgresql/templates/configmap.yaml       |   31 +
 .../templates/extended-config-configmap.yaml  |   26 +
 .../postgresql/templates/extra-list.yaml      |    4 +
 .../templates/initialization-configmap.yaml   |   25 +
 .../templates/metrics-configmap.yaml          |   14 +
 .../postgresql/templates/metrics-svc.yaml     |   26 +
 .../postgresql/templates/networkpolicy.yaml   |   39 +
 .../templates/podsecuritypolicy.yaml          |   38 +
 .../postgresql/templates/prometheusrule.yaml  |   23 +
 .../charts/postgresql/templates/role.yaml     |   20 +
 .../postgresql/templates/rolebinding.yaml     |   20 +
 .../charts/postgresql/templates/secrets.yaml  |   24 +
 .../postgresql/templates/serviceaccount.yaml  |   12 +
 .../postgresql/templates/servicemonitor.yaml  |   33 +
 .../templates/statefulset-readreplicas.yaml   |  411 ++
 .../postgresql/templates/statefulset.yaml     |  609 ++
 .../postgresql/templates/svc-headless.yaml    |   28 +
 .../charts/postgresql/templates/svc-read.yaml |   43 +
 .../charts/postgresql/templates/svc.yaml      |   41 +
 .../charts/postgresql/values.schema.json      |  103 +
 .../107.104.10/charts/postgresql/values.yaml  |  824 +++
 .../107.104.10/ci/access-tls-values.yaml      |   34 +
 .../107.104.10/ci/default-values.yaml         |   32 +
 .../107.104.10/ci/global-values.yaml          |  255 +
 .../107.104.10/ci/large-values.yaml           |   85 +
 .../107.104.10/ci/loggers-values.yaml         |   43 +
 .../107.104.10/ci/medium-values.yaml          |   85 +
 .../ci/migration-disabled-values.yaml         |   31 +
 .../ci/nginx-autoreload-values.yaml           |   53 +
 .../ci/rtsplit-access-tls-values.yaml         |  106 +
 .../107.104.10/ci/rtsplit-values.yaml         |  155 +
 .../107.104.10/ci/small-values.yaml           |   90 +
 .../107.104.10/ci/test-values.yaml            |   85 +
 .../107.104.10/files/binarystore.xml          |  442 ++
 .../107.104.10/files/installer-info.json      |   32 +
 .../107.104.10/files/migrate.sh               | 4311 +++++++++++
 .../107.104.10/files/migrationHelmInfo.yaml   |   27 +
 .../107.104.10/files/migrationStatus.sh       |   44 +
 .../files/nginx-artifactory-conf.yaml         |  114 +
 .../107.104.10/files/nginx-main-conf.yaml     |   83 +
 .../107.104.10/files/system.yaml              |  192 +
 .../107.104.10/logo/artifactory-logo.png      |  Bin 0 -> 82419 bytes
 .../artifactory-ha/107.104.10/questions.yml   |  424 ++
 .../sizing/artifactory-2xlarge.yaml           |  185 +
 .../107.104.10/sizing/artifactory-large.yaml  |  185 +
 .../107.104.10/sizing/artifactory-medium.yaml |  185 +
 .../107.104.10/sizing/artifactory-small.yaml  |  184 +
 .../107.104.10/sizing/artifactory-xlarge.yaml |  184 +
 .../107.104.10/sizing/artifactory-xsmall.yaml |  186 +
 .../107.104.10/templates/NOTES.txt            |  149 +
 .../107.104.10/templates/_helpers.tpl         |  682 ++
 .../templates/_system-yaml-render.tpl         |    5 +
 .../templates/additional-resources.yaml       |    3 +
 .../templates/admin-bootstrap-creds.yaml      |   15 +
 .../templates/artifactory-access-config.yaml  |   15 +
 .../artifactory-binarystore-secret.yaml       |   18 +
 .../templates/artifactory-configmaps.yaml     |   13 +
 .../templates/artifactory-custom-secrets.yaml |   19 +
 .../artifactory-database-secrets.yaml         |   24 +
 .../artifactory-gcp-credentials-secret.yaml   |   16 +
 .../templates/artifactory-installer-info.yaml |   16 +
 .../templates/artifactory-license-secret.yaml |   16 +
 .../artifactory-migration-scripts.yaml        |   18 +
 .../templates/artifactory-networkpolicy.yaml  |   34 +
 .../templates/artifactory-nfs-pvc.yaml        |  101 +
 .../templates/artifactory-node-pdb.yaml       |   26 +
 .../artifactory-node-statefulset.yaml         | 1695 +++++
 .../templates/artifactory-primary-pdb.yaml    |   24 +
 .../artifactory-primary-service.yaml          |   61 +
 .../artifactory-primary-statefulset.yaml      | 1884 +++++
 .../templates/artifactory-priority-class.yaml |    9 +
 .../templates/artifactory-role.yaml           |   14 +
 .../templates/artifactory-rolebinding.yaml    |   19 +
 .../templates/artifactory-secrets.yaml        |   30 +
 .../templates/artifactory-service-grpc.yaml   |   49 +
 .../templates/artifactory-service.yaml        |   68 +
 .../templates/artifactory-serviceaccount.yaml |   17 +
 .../templates/artifactory-storage-pvc.yaml    |   27 +
 .../templates/artifactory-system-yaml.yaml    |   16 +
 .../templates/artifactory-unified-secret.yaml |   96 +
 .../templates/filebeat-configmap.yaml         |   15 +
 .../107.104.10/templates/ingress-grpc.yaml    |   80 +
 .../107.104.10/templates/ingress.yaml         |  107 +
 .../templates/logger-configmap.yaml           |   63 +
 .../templates/nginx-artifactory-conf.yaml     |   18 +
 .../templates/nginx-certificate-secret.yaml   |   14 +
 .../107.104.10/templates/nginx-conf.yaml      |   18 +
 .../templates/nginx-deployment.yaml           |  221 +
 .../107.104.10/templates/nginx-pdb.yaml       |   23 +
 .../107.104.10/templates/nginx-pvc.yaml       |   26 +
 .../templates/nginx-scripts-conf.yaml         |   52 +
 .../107.104.10/templates/nginx-service.yaml   |   94 +
 .../107.104.10/templates/rtfs-deployment.yaml |  349 +
 .../107.104.10/templates/rtfs-hpa.yaml        |   32 +
 .../templates/rtfs-properties-configmap.yaml  |   17 +
 .../107.104.10/templates/rtfs-service.yaml    |   41 +
 .../artifactory-ha/107.104.10/values.yaml     | 2133 ++++++
 .../jfrog/artifactory-ha/107.104.9/Chart.yaml |    1 -
 .../artifactory-jcr/107.104.10/CHANGELOG.md   |  213 +
 .../artifactory-jcr/107.104.10/Chart.yaml     |   30 +
 .../jfrog/artifactory-jcr/107.104.10/LICENSE  |  201 +
 .../artifactory-jcr/107.104.10/README.md      |  125 +
 .../artifactory-jcr/107.104.10/app-readme.md  |   18 +
 .../107.104.10/charts/artifactory/.helmignore |   24 +
 .../charts/artifactory/CHANGELOG.md           | 1411 ++++
 .../107.104.10/charts/artifactory/Chart.lock  |    6 +
 .../107.104.10/charts/artifactory/Chart.yaml  |   24 +
 .../107.104.10/charts/artifactory/LICENSE     |  201 +
 .../107.104.10/charts/artifactory/README.md   |   60 +
 .../artifactory/charts/postgresql/.helmignore |   21 +
 .../artifactory/charts/postgresql/Chart.lock  |    6 +
 .../artifactory/charts/postgresql/Chart.yaml  |   29 +
 .../artifactory/charts/postgresql/README.md   |  770 ++
 .../postgresql/charts/common/.helmignore      |   22 +
 .../postgresql/charts/common/Chart.yaml       |   23 +
 .../charts/postgresql/charts/common/README.md |  322 +
 .../charts/common/templates/_affinities.tpl   |   94 +
 .../charts/common/templates/_capabilities.tpl |   95 +
 .../charts/common/templates/_errors.tpl       |   23 +
 .../charts/common/templates/_images.tpl       |   47 +
 .../charts/common/templates/_ingress.tpl      |   42 +
 .../charts/common/templates/_labels.tpl       |   18 +
 .../charts/common/templates/_names.tpl        |   32 +
 .../charts/common/templates/_secrets.tpl      |  129 +
 .../charts/common/templates/_storage.tpl      |   23 +
 .../charts/common/templates/_tplvalues.tpl    |   13 +
 .../charts/common/templates/_utils.tpl        |   62 +
 .../charts/common/templates/_warnings.tpl     |   14 +
 .../templates/validations/_cassandra.tpl      |   72 +
 .../common/templates/validations/_mariadb.tpl |  103 +
 .../common/templates/validations/_mongodb.tpl |  108 +
 .../templates/validations/_postgresql.tpl     |  131 +
 .../common/templates/validations/_redis.tpl   |   72 +
 .../templates/validations/_validations.tpl    |   46 +
 .../postgresql/charts/common/values.yaml      |    3 +
 .../postgresql/ci/commonAnnotations.yaml      |    3 +
 .../charts/postgresql/ci/default-values.yaml  |    1 +
 .../ci/shmvolume-disabled-values.yaml         |    2 +
 .../charts/postgresql/files/README.md         |    1 +
 .../charts/postgresql/files/conf.d/README.md  |    4 +
 .../docker-entrypoint-initdb.d/README.md      |    3 +
 .../charts/postgresql/templates/NOTES.txt     |   59 +
 .../charts/postgresql/templates/_helpers.tpl  |  337 +
 .../postgresql/templates/configmap.yaml       |   31 +
 .../templates/extended-config-configmap.yaml  |   26 +
 .../postgresql/templates/extra-list.yaml      |    4 +
 .../templates/initialization-configmap.yaml   |   25 +
 .../templates/metrics-configmap.yaml          |   14 +
 .../postgresql/templates/metrics-svc.yaml     |   26 +
 .../postgresql/templates/networkpolicy.yaml   |   39 +
 .../templates/podsecuritypolicy.yaml          |   38 +
 .../postgresql/templates/prometheusrule.yaml  |   23 +
 .../charts/postgresql/templates/role.yaml     |   20 +
 .../postgresql/templates/rolebinding.yaml     |   20 +
 .../charts/postgresql/templates/secrets.yaml  |   24 +
 .../postgresql/templates/serviceaccount.yaml  |   12 +
 .../postgresql/templates/servicemonitor.yaml  |   33 +
 .../templates/statefulset-readreplicas.yaml   |  411 ++
 .../postgresql/templates/statefulset.yaml     |  609 ++
 .../postgresql/templates/svc-headless.yaml    |   28 +
 .../charts/postgresql/templates/svc-read.yaml |   43 +
 .../charts/postgresql/templates/svc.yaml      |   41 +
 .../charts/postgresql/values.schema.json      |  103 +
 .../artifactory/charts/postgresql/values.yaml |  824 +++
 .../artifactory/ci/access-tls-values.yaml     |   24 +
 .../charts/artifactory/ci/default-values.yaml |   21 +
 .../artifactory/ci/derby-test-values.yaml     |   19 +
 .../charts/artifactory/ci/global-values.yaml  |  247 +
 .../charts/artifactory/ci/large-values.yaml   |   82 +
 .../charts/artifactory/ci/loggers-values.yaml |   43 +
 .../charts/artifactory/ci/medium-values.yaml  |   82 +
 .../ci/migration-disabled-values.yaml         |   21 +
 .../ci/nginx-autoreload-values.yaml           |   42 +
 .../ci/rtsplit-values-access-tls-values.yaml  |   96 +
 .../charts/artifactory/ci/rtsplit-values.yaml |  151 +
 .../charts/artifactory/ci/small-values.yaml   |   85 +
 .../charts/artifactory/ci/test-values.yaml    |   84 +
 .../charts/artifactory/files/binarystore.xml  |  429 ++
 .../artifactory/files/installer-info.json     |   32 +
 .../charts/artifactory/files/migrate.sh       | 4311 +++++++++++
 .../artifactory/files/migrationHelmInfo.yaml  |   27 +
 .../artifactory/files/migrationStatus.sh      |   44 +
 .../files/nginx-artifactory-conf.yaml         |  114 +
 .../artifactory/files/nginx-main-conf.yaml    |   83 +
 .../charts/artifactory/files/system.yaml      |  186 +
 .../artifactory/logo/artifactory-logo.png     |  Bin 0 -> 82419 bytes
 .../sizing/artifactory-2xlarge.yaml           |  182 +
 .../artifactory/sizing/artifactory-large.yaml |  184 +
 .../sizing/artifactory-medium.yaml            |  183 +
 .../artifactory/sizing/artifactory-small.yaml |  183 +
 .../sizing/artifactory-xlarge.yaml            |  184 +
 .../sizing/artifactory-xsmall.yaml            |  185 +
 .../charts/artifactory/templates/NOTES.txt    |  106 +
 .../charts/artifactory/templates/_helpers.tpl |  647 ++
 .../templates/_system-yaml-render.tpl         |    5 +
 .../templates/additional-resources.yaml       |    3 +
 .../templates/admin-bootstrap-creds.yaml      |   15 +
 .../templates/artifactory-access-config.yaml  |   15 +
 .../artifactory-binarystore-secret.yaml       |   18 +
 .../templates/artifactory-configmaps.yaml     |   13 +
 .../templates/artifactory-custom-secrets.yaml |   19 +
 .../artifactory-database-secrets.yaml         |   24 +
 .../artifactory-gcp-credentials-secret.yaml   |   16 +
 .../templates/artifactory-hpa.yaml            |   29 +
 .../templates/artifactory-installer-info.yaml |   16 +
 .../templates/artifactory-license-secret.yaml |   16 +
 .../artifactory-migration-scripts.yaml        |   18 +
 .../templates/artifactory-networkpolicy.yaml  |   34 +
 .../templates/artifactory-nfs-pvc.yaml        |  101 +
 .../templates/artifactory-pdb.yaml            |   24 +
 .../templates/artifactory-priority-class.yaml |    9 +
 .../templates/artifactory-role.yaml           |   14 +
 .../templates/artifactory-rolebinding.yaml    |   19 +
 .../templates/artifactory-secrets.yaml        |   30 +
 .../templates/artifactory-service-grpc.yaml   |   44 +
 .../templates/artifactory-service.yaml        |   59 +
 .../templates/artifactory-serviceaccount.yaml |   17 +
 .../templates/artifactory-statefulset.yaml    | 1789 +++++
 .../templates/artifactory-system-yaml.yaml    |   16 +
 .../templates/artifactory-unified-secret.yaml |   94 +
 .../templates/filebeat-configmap.yaml         |   15 +
 .../artifactory/templates/ingress-grpc.yaml   |   80 +
 .../charts/artifactory/templates/ingress.yaml |  110 +
 .../templates/logger-configmap.yaml           |   63 +
 .../templates/nginx-artifactory-conf.yaml     |   18 +
 .../templates/nginx-certificate-secret.yaml   |   14 +
 .../artifactory/templates/nginx-conf.yaml     |   18 +
 .../templates/nginx-deployment.yaml           |  223 +
 .../artifactory/templates/nginx-pdb.yaml      |   23 +
 .../artifactory/templates/nginx-pvc.yaml      |   26 +
 .../templates/nginx-scripts-conf.yaml         |   52 +
 .../artifactory/templates/nginx-service.yaml  |   88 +
 .../templates/rtfs-deployment.yaml            |  350 +
 .../artifactory/templates/rtfs-hpa.yaml       |   32 +
 .../templates/rtfs-properties-configmap.yaml  |   17 +
 .../artifactory/templates/rtfs-service.yaml   |   42 +
 .../107.104.10/charts/artifactory/values.yaml | 2049 ++++++
 .../107.104.10/ci/default-values.yaml         |    7 +
 .../107.104.10/logo/jcr-logo.png              |  Bin 0 -> 77047 bytes
 .../artifactory-jcr/107.104.10/questions.yml  |  271 +
 .../107.104.10/templates/NOTES.txt            |    1 +
 .../artifactory-jcr/107.104.10/values.yaml    |   80 +
 charts/kasten/k10/7.5.301/Chart.yaml          |    1 -
 charts/kasten/k10/7.5.401/Chart.lock          |    6 +
 charts/kasten/k10/7.5.401/Chart.yaml          |   22 +
 charts/kasten/k10/7.5.401/README.md           |  342 +
 charts/kasten/k10/7.5.401/app-readme.md       |    5 +
 .../k10/7.5.401/charts/prometheus/.helmignore |   23 +
 .../k10/7.5.401/charts/prometheus/Chart.lock  |   15 +
 .../k10/7.5.401/charts/prometheus/Chart.yaml  |   53 +
 .../k10/7.5.401/charts/prometheus/OWNERS      |    6 +
 .../k10/7.5.401/charts/prometheus/README.md   |  387 +
 .../charts/alertmanager/.helmignore           |   25 +
 .../prometheus/charts/alertmanager/Chart.yaml |   24 +
 .../prometheus/charts/alertmanager/README.md  |   62 +
 .../alertmanager/ci/config-reload-values.yaml |    2 +
 .../charts/alertmanager/templates/NOTES.txt   |   21 +
 .../alertmanager/templates/_helpers.tpl       |   92 +
 .../alertmanager/templates/configmap.yaml     |   21 +
 .../alertmanager/templates/ingress.yaml       |   44 +
 .../templates/ingressperreplica.yaml          |   56 +
 .../charts/alertmanager/templates/pdb.yaml    |   14 +
 .../templates/serviceaccount.yaml             |   14 +
 .../templates/serviceperreplica.yaml          |   44 +
 .../alertmanager/templates/services.yaml      |   75 +
 .../alertmanager/templates/statefulset.yaml   |  256 +
 .../templates/tests/test-connection.yaml      |   20 +
 .../charts/alertmanager/templates/vpa.yaml    |   26 +
 .../charts/alertmanager/values.schema.json    |  946 +++
 .../charts/alertmanager/values.yaml           |  404 ++
 .../charts/kube-state-metrics/.helmignore     |   21 +
 .../charts/kube-state-metrics/Chart.yaml      |   26 +
 .../charts/kube-state-metrics/README.md       |   85 +
 .../kube-state-metrics/templates/NOTES.txt    |   23 +
 .../kube-state-metrics/templates/_helpers.tpl |  156 +
 .../templates/ciliumnetworkpolicy.yaml        |   33 +
 .../templates/clusterrolebinding.yaml         |   20 +
 .../templates/crs-configmap.yaml              |   16 +
 .../templates/deployment.yaml                 |  344 +
 .../templates/extra-manifests.yaml            |    4 +
 .../templates/kubeconfig-secret.yaml          |   12 +
 .../templates/networkpolicy.yaml              |   43 +
 .../kube-state-metrics/templates/pdb.yaml     |   18 +
 .../templates/podsecuritypolicy.yaml          |   39 +
 .../templates/psp-clusterrole.yaml            |   19 +
 .../templates/psp-clusterrolebinding.yaml     |   16 +
 .../templates/rbac-configmap.yaml             |   22 +
 .../kube-state-metrics/templates/role.yaml    |  212 +
 .../templates/rolebinding.yaml                |   24 +
 .../kube-state-metrics/templates/service.yaml |   53 +
 .../templates/serviceaccount.yaml             |   18 +
 .../templates/servicemonitor.yaml             |  120 +
 .../templates/stsdiscovery-role.yaml          |   26 +
 .../templates/stsdiscovery-rolebinding.yaml   |   17 +
 .../templates/verticalpodautoscaler.yaml      |   44 +
 .../charts/kube-state-metrics/values.yaml     |  549 ++
 .../prometheus-node-exporter/.helmignore      |   21 +
 .../prometheus-node-exporter/Chart.yaml       |   25 +
 .../charts/prometheus-node-exporter/README.md |   96 +
 .../templates/NOTES.txt                       |   29 +
 .../templates/_helpers.tpl                    |  237 +
 .../templates/clusterrole.yaml                |   19 +
 .../templates/clusterrolebinding.yaml         |   20 +
 .../templates/daemonset.yaml                  |  348 +
 .../templates/endpoints.yaml                  |   18 +
 .../templates/extra-manifests.yaml            |    4 +
 .../templates/networkpolicy.yaml              |   27 +
 .../templates/podmonitor.yaml                 |   91 +
 .../templates/psp-clusterrole.yaml            |   14 +
 .../templates/psp-clusterrolebinding.yaml     |   16 +
 .../templates/psp.yaml                        |   49 +
 .../templates/rbac-configmap.yaml             |   16 +
 .../templates/service.yaml                    |   38 +
 .../templates/serviceaccount.yaml             |   18 +
 .../templates/servicemonitor.yaml             |   65 +
 .../templates/verticalpodautoscaler.yaml      |   40 +
 .../prometheus-node-exporter/values.yaml      |  618 ++
 .../charts/prometheus-pushgateway/.helmignore |   24 +
 .../charts/prometheus-pushgateway/Chart.yaml  |   24 +
 .../charts/prometheus-pushgateway/README.md   |   88 +
 .../templates/NOTES.txt                       |   19 +
 .../templates/_helpers.tpl                    |  307 +
 .../templates/deployment.yaml                 |   31 +
 .../templates/extra-manifests.yaml            |    8 +
 .../templates/ingress.yaml                    |   50 +
 .../templates/networkpolicy.yaml              |   26 +
 .../prometheus-pushgateway/templates/pdb.yaml |   14 +
 .../templates/pushgateway-pvc.yaml            |   29 +
 .../templates/secret.yaml                     |   10 +
 .../templates/service.yaml                    |   45 +
 .../templates/serviceaccount.yaml             |   17 +
 .../templates/servicemonitor.yaml             |   51 +
 .../templates/statefulset.yaml                |   49 +
 .../charts/prometheus-pushgateway/values.yaml |  377 +
 .../charts/prometheus/templates/NOTES.txt     |  113 +
 .../charts/prometheus/templates/_helpers.tpl  |  237 +
 .../prometheus/templates/clusterrole.yaml     |   56 +
 .../templates/clusterrolebinding.yaml         |   16 +
 .../charts/prometheus/templates/cm.yaml       |  103 +
 .../charts/prometheus/templates/deploy.yaml   |  412 ++
 .../prometheus/templates/extra-manifests.yaml |    4 +
 .../prometheus/templates/headless-svc.yaml    |   35 +
 .../charts/prometheus/templates/ingress.yaml  |   57 +
 .../prometheus/templates/network-policy.yaml  |   16 +
 .../charts/prometheus/templates/pdb.yaml      |   26 +
 .../charts/prometheus/templates/psp.yaml      |   53 +
 .../charts/prometheus/templates/pvc.yaml      |   43 +
 .../prometheus/templates/rolebinding.yaml     |   18 +
 .../charts/prometheus/templates/service.yaml  |   63 +
 .../prometheus/templates/serviceaccount.yaml  |   16 +
 .../charts/prometheus/templates/sts.yaml      |  436 ++
 .../charts/prometheus/templates/vpa.yaml      |   26 +
 .../charts/prometheus/values.schema.json      |  752 ++
 .../k10/7.5.401/charts/prometheus/values.yaml | 1315 ++++
 charts/kasten/k10/7.5.401/config.json         |    0
 charts/kasten/k10/7.5.401/eula.txt            |  459 ++
 charts/kasten/k10/7.5.401/files/favicon.png   |  Bin 0 -> 1802 bytes
 .../kasten/k10/7.5.401/files/kasten-logo.svg  |   24 +
 charts/kasten/k10/7.5.401/files/styles.css    |  113 +
 .../grafana/dashboards/default/default.json   | 6337 +++++++++++++++++
 charts/kasten/k10/7.5.401/license             |    1 +
 charts/kasten/k10/7.5.401/questions.yaml      |  295 +
 charts/kasten/k10/7.5.401/templates/NOTES.txt |  215 +
 .../k10/7.5.401/templates/_definitions.tpl    |  259 +
 .../kasten/k10/7.5.401/templates/_helpers.tpl | 1563 ++++
 .../k10/7.5.401/templates/_k10_container.tpl  | 1161 +++
 .../k10/7.5.401/templates/_k10_image_tag.tpl  |    1 +
 .../k10/7.5.401/templates/_k10_metering.tpl   |  352 +
 .../7.5.401/templates/_k10_serviceimage.tpl   |   50 +
 .../k10/7.5.401/templates/_k10_template.tpl   |  249 +
 .../k10/7.5.401/templates/_prometheus.tpl     |   29 +
 .../templates/aggregatedaudit-policy.yaml     |   34 +
 .../k10/7.5.401/templates/apiservice.yaml     |   25 +
 .../k10/7.5.401/templates/daemonsets.yaml     |   26 +
 .../k10/7.5.401/templates/deployments.yaml    |   41 +
 .../templates/fluentbit-configmap.yaml        |   34 +
 .../templates/frontend-nginx-configmap.yaml   |   50 +
 .../k10/7.5.401/templates/gateway-ext.yaml    |   36 +
 .../kasten/k10/7.5.401/templates/gateway.yaml |  107 +
 .../kasten/k10/7.5.401/templates/ingress.yaml |   73 +
 .../k10/7.5.401/templates/k10-config.yaml     |  365 +
 .../k10/7.5.401/templates/k10-eula.yaml       |   21 +
 .../kasten/k10/7.5.401/templates/k10-scc.yaml |   46 +
 .../7.5.401/templates/kopia-tls-certs.yaml    |   33 +
 .../kasten/k10/7.5.401/templates/license.yaml |   25 +
 charts/kasten/k10/7.5.401/templates/mc.yaml   |    6 +
 .../7.5.401/templates/mutatingwebhook.yaml    |   78 +
 .../k10/7.5.401/templates/networkpolicy.yaml  |  273 +
 .../templates/ocp-ca-cert-extract-hook.yaml   |  218 +
 .../7.5.401/templates/ocp-consoleplugin.yaml  |   27 +
 .../templates/ocp-plugin-configmap.yaml       |   28 +
 .../templates/ocp-plugin-deployment.yaml      |   74 +
 .../templates/ocp-plugin-proxy-configmap.yaml |   36 +
 .../ocp-plugin-proxy-deployment.yaml          |   67 +
 .../templates/ocp-plugin-proxy-service.yaml   |   25 +
 .../7.5.401/templates/ocp-plugin-service.yaml |   23 +
 .../templates/prometheus-configmap.yaml       |   75 +
 .../k10/7.5.401/templates/prometheus-scc.yaml |   41 +
 .../7.5.401/templates/prometheus-service.yaml |   25 +
 charts/kasten/k10/7.5.401/templates/rbac.yaml |  386 +
 .../kasten/k10/7.5.401/templates/route.yaml   |   36 +
 .../kasten/k10/7.5.401/templates/secrets.yaml |  257 +
 .../7.5.401/templates/secure_deployment.tpl   |   16 +
 .../k10/7.5.401/templates/serviceaccount.yaml |   48 +
 .../k10/7.5.401/templates/v0services.yaml     |  120 +
 charts/kasten/k10/7.5.401/templates/vap.yaml  |  151 +
 .../templates/workloadIdentityFederation.tpl  |   10 +
 .../{charts}/values/prometheus_values.tpl     |  186 +
 charts/kasten/k10/7.5.401/triallicense        |    1 +
 charts/kasten/k10/7.5.401/values.schema.json  | 3124 ++++++++
 charts/kasten/k10/7.5.401/values.yaml         |  600 ++
 index.yaml                                    |  178 +-
 556 files changed, 89209 insertions(+), 6 deletions(-)
 create mode 100644 assets/codefresh/cf-runtime-7.5.5.tgz
 create mode 100644 assets/instana/instana-agent-2.0.13.tgz
 create mode 100644 assets/jfrog/artifactory-ha-107.104.10.tgz
 create mode 100644 assets/jfrog/artifactory-jcr-107.104.10.tgz
 create mode 100644 assets/kasten/k10-7.5.401.tgz
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/.helmignore
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/Chart.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/README.md
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/README.md.gotmpl
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/files/cleanup-runtime.sh
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/files/configure-dind-certs.sh
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/files/init-runtime.sh
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/files/reconcile-runtime.sh
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/_components/app-proxy/_deployment.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/_components/app-proxy/_env-vars.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/_components/app-proxy/_helpers.tpl
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/_components/app-proxy/_ingress.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/_components/app-proxy/_rbac.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/_components/app-proxy/_service.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/_components/event-exporter/_deployment.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/_components/event-exporter/_env-vars.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/_components/event-exporter/_helpers.tpl
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/_components/event-exporter/_rbac.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/_components/event-exporter/_service.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/_components/event-exporter/_serviceMontor.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/_components/monitor/_deployment.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/_components/monitor/_env-vars.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/_components/monitor/_helpers.tpl
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/_components/monitor/_rbac.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/_components/monitor/_service.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/_components/runner/_deployment.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/_components/runner/_helpers.tpl
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/_components/runner/_rbac.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/_components/runner/environment-variables/_init-container.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/_components/runner/environment-variables/_main-container.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/_components/runner/environment-variables/_sidecar-container.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/_components/volume-provisioner/_cronjob.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/_components/volume-provisioner/_daemonset.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/_components/volume-provisioner/_deployment.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/_components/volume-provisioner/_env-vars.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/_components/volume-provisioner/_helpers.tpl
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/_components/volume-provisioner/_rbac.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/_components/volume-provisioner/_secret.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/_components/volume-provisioner/_storageclass.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/_helpers.tpl
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/app-proxy/deployment.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/app-proxy/ingress.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/app-proxy/rbac.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/app-proxy/service.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/event-exporter/deployment.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/event-exporter/rbac.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/event-exporter/service.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/extra/extra-resources.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/extra/runtime-images-cm.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/hooks/post-install/cm-update-runtime.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/hooks/post-install/job-gencerts-dind.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/hooks/post-install/job-update-runtime.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/hooks/post-install/rbac-gencerts-dind.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/hooks/pre-delete/job-cleanup-resources.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/hooks/pre-delete/rbac-cleanup-resources.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/monitor/deployment.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/monitor/rbac.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/monitor/service.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/other/external-secrets.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/other/podMonitor.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/other/serviceMonitor.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/runner/deployment.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/runner/rbac.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/runtime/_helpers.tpl
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/runtime/cm-dind-daemon.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/runtime/rbac.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/runtime/runtime-env-spec-tmpl.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/runtime/secret.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/runtime/svc-dind.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/volume-provisioner/cronjob.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/volume-provisioner/daemonset.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/volume-provisioner/deployment.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/volume-provisioner/rbac.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/volume-provisioner/secret.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/templates/volume-provisioner/storageclass.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/values-rootless.yaml
 create mode 100644 charts/codefresh/cf-runtime/7.5.5/values.yaml
 create mode 100644 charts/instana/instana-agent/2.0.13/.helmignore
 create mode 100644 charts/instana/instana-agent/2.0.13/Chart.yaml
 create mode 100644 charts/instana/instana-agent/2.0.13/DEPLOYMENT.md
 create mode 100644 charts/instana/instana-agent/2.0.13/README.md
 create mode 100644 charts/instana/instana-agent/2.0.13/app-readme.md
 create mode 100644 charts/instana/instana-agent/2.0.13/crds/operator_customresourcedefinition_agents_instana_io.yml
 create mode 100644 charts/instana/instana-agent/2.0.13/kubernetes.deployment.enabled.png
 create mode 100644 charts/instana/instana-agent/2.0.13/kubernetes_deployment_mode_diagram.py
 create mode 100644 charts/instana/instana-agent/2.0.13/questions.yml
 create mode 100644 charts/instana/instana-agent/2.0.13/templates/NOTES.txt
 create mode 100644 charts/instana/instana-agent/2.0.13/templates/agent.yml
 create mode 100644 charts/instana/instana-agent/2.0.13/templates/operator_clusterrole_instana-agent-clusterrole.yml
 create mode 100644 charts/instana/instana-agent/2.0.13/templates/operator_clusterrole_leader-election-role.yml
 create mode 100644 charts/instana/instana-agent/2.0.13/templates/operator_clusterrolebinding_instana-agent-clusterrolebinding.yml
 create mode 100644 charts/instana/instana-agent/2.0.13/templates/operator_clusterrolebinding_leader-election-rolebinding.yml
 create mode 100644 charts/instana/instana-agent/2.0.13/templates/operator_configmap_manager-config.yml
 create mode 100644 charts/instana/instana-agent/2.0.13/templates/operator_deployment_instana-agent-controller-manager.yml
 create mode 100644 charts/instana/instana-agent/2.0.13/templates/operator_serviceaccount_instana-agent-operator.yml
 create mode 100644 charts/instana/instana-agent/2.0.13/values.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/.helmignore
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/CHANGELOG.md
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/Chart.lock
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/Chart.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/LICENSE
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/README.md
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/app-readme.md
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/.helmignore
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/Chart.lock
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/Chart.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/README.md
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/.helmignore
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/Chart.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/README.md
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_affinities.tpl
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_capabilities.tpl
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_errors.tpl
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_images.tpl
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_ingress.tpl
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_labels.tpl
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_names.tpl
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_secrets.tpl
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_storage.tpl
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_tplvalues.tpl
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_utils.tpl
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_warnings.tpl
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/validations/_cassandra.tpl
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/validations/_mariadb.tpl
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/validations/_mongodb.tpl
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/validations/_postgresql.tpl
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/validations/_redis.tpl
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/validations/_validations.tpl
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/values.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/ci/commonAnnotations.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/ci/default-values.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/ci/shmvolume-disabled-values.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/files/README.md
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/files/conf.d/README.md
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/files/docker-entrypoint-initdb.d/README.md
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/NOTES.txt
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/_helpers.tpl
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/configmap.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/extended-config-configmap.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/extra-list.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/initialization-configmap.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/metrics-configmap.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/metrics-svc.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/networkpolicy.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/podsecuritypolicy.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/prometheusrule.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/role.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/rolebinding.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/secrets.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/serviceaccount.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/servicemonitor.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/statefulset-readreplicas.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/statefulset.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/svc-headless.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/svc-read.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/svc.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/values.schema.json
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/values.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/ci/access-tls-values.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/ci/default-values.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/ci/global-values.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/ci/large-values.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/ci/loggers-values.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/ci/medium-values.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/ci/migration-disabled-values.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/ci/nginx-autoreload-values.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/ci/rtsplit-access-tls-values.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/ci/rtsplit-values.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/ci/small-values.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/ci/test-values.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/files/binarystore.xml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/files/installer-info.json
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/files/migrate.sh
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/files/migrationHelmInfo.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/files/migrationStatus.sh
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/files/nginx-artifactory-conf.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/files/nginx-main-conf.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/files/system.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/logo/artifactory-logo.png
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/questions.yml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/sizing/artifactory-2xlarge.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/sizing/artifactory-large.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/sizing/artifactory-medium.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/sizing/artifactory-small.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/sizing/artifactory-xlarge.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/sizing/artifactory-xsmall.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/NOTES.txt
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/_helpers.tpl
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/_system-yaml-render.tpl
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/additional-resources.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/admin-bootstrap-creds.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-access-config.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-binarystore-secret.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-configmaps.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-custom-secrets.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-database-secrets.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-gcp-credentials-secret.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-installer-info.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-license-secret.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-migration-scripts.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-networkpolicy.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-nfs-pvc.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-node-pdb.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-node-statefulset.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-primary-pdb.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-primary-service.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-primary-statefulset.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-priority-class.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-role.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-rolebinding.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-secrets.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-service-grpc.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-service.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-serviceaccount.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-storage-pvc.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-system-yaml.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-unified-secret.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/filebeat-configmap.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/ingress-grpc.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/ingress.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/logger-configmap.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/nginx-artifactory-conf.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/nginx-certificate-secret.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/nginx-conf.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/nginx-deployment.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/nginx-pdb.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/nginx-pvc.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/nginx-scripts-conf.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/nginx-service.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/rtfs-deployment.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/rtfs-hpa.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/rtfs-properties-configmap.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/templates/rtfs-service.yaml
 create mode 100644 charts/jfrog/artifactory-ha/107.104.10/values.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/CHANGELOG.md
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/Chart.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/LICENSE
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/README.md
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/app-readme.md
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/.helmignore
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/CHANGELOG.md
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/Chart.lock
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/Chart.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/LICENSE
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/README.md
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/.helmignore
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/Chart.lock
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/Chart.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/README.md
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/.helmignore
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/Chart.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/README.md
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_affinities.tpl
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_capabilities.tpl
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_errors.tpl
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_images.tpl
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_ingress.tpl
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_labels.tpl
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_names.tpl
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_secrets.tpl
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_storage.tpl
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_tplvalues.tpl
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_utils.tpl
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_warnings.tpl
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/validations/_cassandra.tpl
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/validations/_mariadb.tpl
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/validations/_mongodb.tpl
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/validations/_postgresql.tpl
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/validations/_redis.tpl
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/validations/_validations.tpl
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/values.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/ci/commonAnnotations.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/ci/default-values.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/ci/shmvolume-disabled-values.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/files/README.md
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/files/conf.d/README.md
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/files/docker-entrypoint-initdb.d/README.md
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/NOTES.txt
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/_helpers.tpl
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/configmap.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/extended-config-configmap.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/extra-list.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/initialization-configmap.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/metrics-configmap.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/metrics-svc.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/networkpolicy.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/podsecuritypolicy.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/prometheusrule.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/role.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/rolebinding.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/secrets.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/serviceaccount.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/servicemonitor.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/statefulset-readreplicas.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/statefulset.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/svc-headless.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/svc-read.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/svc.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/values.schema.json
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/values.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/access-tls-values.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/default-values.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/derby-test-values.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/global-values.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/large-values.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/loggers-values.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/medium-values.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/migration-disabled-values.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/nginx-autoreload-values.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/rtsplit-values-access-tls-values.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/rtsplit-values.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/small-values.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/test-values.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/files/binarystore.xml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/files/installer-info.json
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/files/migrate.sh
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/files/migrationHelmInfo.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/files/migrationStatus.sh
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/files/nginx-artifactory-conf.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/files/nginx-main-conf.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/files/system.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/logo/artifactory-logo.png
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/sizing/artifactory-2xlarge.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/sizing/artifactory-large.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/sizing/artifactory-medium.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/sizing/artifactory-small.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/sizing/artifactory-xlarge.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/sizing/artifactory-xsmall.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/NOTES.txt
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/_helpers.tpl
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/_system-yaml-render.tpl
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/additional-resources.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/admin-bootstrap-creds.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-access-config.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-binarystore-secret.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-configmaps.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-custom-secrets.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-database-secrets.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-gcp-credentials-secret.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-hpa.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-installer-info.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-license-secret.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-migration-scripts.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-networkpolicy.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-nfs-pvc.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-pdb.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-priority-class.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-role.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-rolebinding.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-secrets.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-service-grpc.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-service.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-serviceaccount.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-statefulset.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-system-yaml.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-unified-secret.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/filebeat-configmap.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/ingress-grpc.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/ingress.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/logger-configmap.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/nginx-artifactory-conf.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/nginx-certificate-secret.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/nginx-conf.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/nginx-deployment.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/nginx-pdb.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/nginx-pvc.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/nginx-scripts-conf.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/nginx-service.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/rtfs-deployment.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/rtfs-hpa.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/rtfs-properties-configmap.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/rtfs-service.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/values.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/ci/default-values.yaml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/logo/jcr-logo.png
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/questions.yml
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/templates/NOTES.txt
 create mode 100644 charts/jfrog/artifactory-jcr/107.104.10/values.yaml
 create mode 100644 charts/kasten/k10/7.5.401/Chart.lock
 create mode 100644 charts/kasten/k10/7.5.401/Chart.yaml
 create mode 100644 charts/kasten/k10/7.5.401/README.md
 create mode 100644 charts/kasten/k10/7.5.401/app-readme.md
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/.helmignore
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/Chart.lock
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/Chart.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/OWNERS
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/README.md
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/.helmignore
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/Chart.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/README.md
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/ci/config-reload-values.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/NOTES.txt
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/_helpers.tpl
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/configmap.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/ingress.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/ingressperreplica.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/pdb.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/serviceaccount.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/serviceperreplica.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/services.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/statefulset.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/tests/test-connection.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/vpa.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/values.schema.json
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/values.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/.helmignore
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/Chart.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/README.md
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/NOTES.txt
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/_helpers.tpl
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/ciliumnetworkpolicy.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/clusterrolebinding.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/crs-configmap.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/deployment.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/extra-manifests.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/kubeconfig-secret.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/networkpolicy.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/pdb.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/podsecuritypolicy.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/psp-clusterrole.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/psp-clusterrolebinding.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/rbac-configmap.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/role.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/rolebinding.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/service.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/serviceaccount.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/servicemonitor.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/stsdiscovery-role.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/stsdiscovery-rolebinding.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/verticalpodautoscaler.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/values.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/.helmignore
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/Chart.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/README.md
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/NOTES.txt
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/_helpers.tpl
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/clusterrole.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/clusterrolebinding.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/daemonset.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/endpoints.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/extra-manifests.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/networkpolicy.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/podmonitor.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/psp-clusterrole.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/psp-clusterrolebinding.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/psp.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/rbac-configmap.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/service.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/serviceaccount.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/servicemonitor.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/verticalpodautoscaler.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/values.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/.helmignore
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/Chart.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/README.md
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/NOTES.txt
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/_helpers.tpl
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/deployment.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/extra-manifests.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/ingress.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/networkpolicy.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/pdb.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/pushgateway-pvc.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/secret.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/service.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/serviceaccount.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/servicemonitor.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/statefulset.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/values.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/templates/NOTES.txt
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/templates/_helpers.tpl
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/templates/clusterrole.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/templates/clusterrolebinding.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/templates/cm.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/templates/deploy.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/templates/extra-manifests.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/templates/headless-svc.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/templates/ingress.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/templates/network-policy.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/templates/pdb.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/templates/psp.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/templates/pvc.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/templates/rolebinding.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/templates/service.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/templates/serviceaccount.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/templates/sts.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/templates/vpa.yaml
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/values.schema.json
 create mode 100644 charts/kasten/k10/7.5.401/charts/prometheus/values.yaml
 create mode 100644 charts/kasten/k10/7.5.401/config.json
 create mode 100644 charts/kasten/k10/7.5.401/eula.txt
 create mode 100644 charts/kasten/k10/7.5.401/files/favicon.png
 create mode 100644 charts/kasten/k10/7.5.401/files/kasten-logo.svg
 create mode 100644 charts/kasten/k10/7.5.401/files/styles.css
 create mode 100644 charts/kasten/k10/7.5.401/grafana/dashboards/default/default.json
 create mode 100644 charts/kasten/k10/7.5.401/license
 create mode 100644 charts/kasten/k10/7.5.401/questions.yaml
 create mode 100644 charts/kasten/k10/7.5.401/templates/NOTES.txt
 create mode 100644 charts/kasten/k10/7.5.401/templates/_definitions.tpl
 create mode 100644 charts/kasten/k10/7.5.401/templates/_helpers.tpl
 create mode 100644 charts/kasten/k10/7.5.401/templates/_k10_container.tpl
 create mode 100644 charts/kasten/k10/7.5.401/templates/_k10_image_tag.tpl
 create mode 100644 charts/kasten/k10/7.5.401/templates/_k10_metering.tpl
 create mode 100644 charts/kasten/k10/7.5.401/templates/_k10_serviceimage.tpl
 create mode 100644 charts/kasten/k10/7.5.401/templates/_k10_template.tpl
 create mode 100644 charts/kasten/k10/7.5.401/templates/_prometheus.tpl
 create mode 100644 charts/kasten/k10/7.5.401/templates/aggregatedaudit-policy.yaml
 create mode 100644 charts/kasten/k10/7.5.401/templates/apiservice.yaml
 create mode 100644 charts/kasten/k10/7.5.401/templates/daemonsets.yaml
 create mode 100644 charts/kasten/k10/7.5.401/templates/deployments.yaml
 create mode 100644 charts/kasten/k10/7.5.401/templates/fluentbit-configmap.yaml
 create mode 100644 charts/kasten/k10/7.5.401/templates/frontend-nginx-configmap.yaml
 create mode 100644 charts/kasten/k10/7.5.401/templates/gateway-ext.yaml
 create mode 100644 charts/kasten/k10/7.5.401/templates/gateway.yaml
 create mode 100644 charts/kasten/k10/7.5.401/templates/ingress.yaml
 create mode 100644 charts/kasten/k10/7.5.401/templates/k10-config.yaml
 create mode 100644 charts/kasten/k10/7.5.401/templates/k10-eula.yaml
 create mode 100644 charts/kasten/k10/7.5.401/templates/k10-scc.yaml
 create mode 100644 charts/kasten/k10/7.5.401/templates/kopia-tls-certs.yaml
 create mode 100644 charts/kasten/k10/7.5.401/templates/license.yaml
 create mode 100644 charts/kasten/k10/7.5.401/templates/mc.yaml
 create mode 100644 charts/kasten/k10/7.5.401/templates/mutatingwebhook.yaml
 create mode 100644 charts/kasten/k10/7.5.401/templates/networkpolicy.yaml
 create mode 100644 charts/kasten/k10/7.5.401/templates/ocp-ca-cert-extract-hook.yaml
 create mode 100644 charts/kasten/k10/7.5.401/templates/ocp-consoleplugin.yaml
 create mode 100644 charts/kasten/k10/7.5.401/templates/ocp-plugin-configmap.yaml
 create mode 100644 charts/kasten/k10/7.5.401/templates/ocp-plugin-deployment.yaml
 create mode 100644 charts/kasten/k10/7.5.401/templates/ocp-plugin-proxy-configmap.yaml
 create mode 100644 charts/kasten/k10/7.5.401/templates/ocp-plugin-proxy-deployment.yaml
 create mode 100644 charts/kasten/k10/7.5.401/templates/ocp-plugin-proxy-service.yaml
 create mode 100644 charts/kasten/k10/7.5.401/templates/ocp-plugin-service.yaml
 create mode 100644 charts/kasten/k10/7.5.401/templates/prometheus-configmap.yaml
 create mode 100644 charts/kasten/k10/7.5.401/templates/prometheus-scc.yaml
 create mode 100644 charts/kasten/k10/7.5.401/templates/prometheus-service.yaml
 create mode 100644 charts/kasten/k10/7.5.401/templates/rbac.yaml
 create mode 100644 charts/kasten/k10/7.5.401/templates/route.yaml
 create mode 100644 charts/kasten/k10/7.5.401/templates/secrets.yaml
 create mode 100644 charts/kasten/k10/7.5.401/templates/secure_deployment.tpl
 create mode 100644 charts/kasten/k10/7.5.401/templates/serviceaccount.yaml
 create mode 100644 charts/kasten/k10/7.5.401/templates/v0services.yaml
 create mode 100644 charts/kasten/k10/7.5.401/templates/vap.yaml
 create mode 100644 charts/kasten/k10/7.5.401/templates/workloadIdentityFederation.tpl
 create mode 100644 charts/kasten/k10/7.5.401/templates/{values}/prometheus/charts/{charts}/values/prometheus_values.tpl
 create mode 100644 charts/kasten/k10/7.5.401/triallicense
 create mode 100644 charts/kasten/k10/7.5.401/values.schema.json
 create mode 100644 charts/kasten/k10/7.5.401/values.yaml

diff --git a/assets/codefresh/cf-runtime-7.5.5.tgz b/assets/codefresh/cf-runtime-7.5.5.tgz
new file mode 100644
index 0000000000000000000000000000000000000000..66ee89a4d47210c5a1b70e3b05fa024056e2ce7e
GIT binary patch
literal 48972
zcmV*XKv=&YiwG0|00000|0w_~VMtOiV@ORlOnEsqVl!4SWK%V1T2nbTPgYhoO;>Dc
zVQyr3R8em|NM&qo0PMZ%a^pC%FnE6JDKM)3qHLd{M2foaH?zlWt6ZA$?Xz4x(_cr2
z43VIOF-5Wo%2n#>ia2kuKX!j@>_+Tk?DL!#*jL!Vg(P^BDA|^)x`c_Twn#9MNC0^O
z5}Agj_zNe%b5uW>K|iQ1;oSbWr!A_gs_kZz{a01h^nbOc+WI%G*=co}t!AgK|C_4m
zjgI<nKz(97a?64Q(Em5}(QTzW_l*?jIBoy~>^h`h0RZ{|wxAKr7Lyuw>&6T^Q$+gU
zj|u<)DBvDDW*-n_EPNa+*+T$KL<}E$6i6Rb7oG_NWCDvQu1CN}9L%B*fQ3IHQq5_|
zbpnVTG7=R(Fd(E4s)4^i^aBG1&~~Ra0|tSO*f)s6z{u<a5Bh<F{M>3LCY}wKiUa4U
z4^CVYSw14O+`9LR2~r-APgqx8|Lw0@P3tP^>)gsdvJoUm0FD<@1$y|W5XM8JVj>SY
zCUOjnNWY?hsJ`LO=dM!$z(<}-aNzpOK5z}(uh)NDz$K@PK$i}MACL+F5qfH^q1Dt%
zg8Ikc9kS<uRR)&p$NdF23x|?u=F-+@LEw>oJ%&#kt6+n|u&|B#^*SU31*A@&k$T*_
zn&(U__h|Xi^-b2D2t-8zK5v7P@uwUr&LL*QjC`38(ugd4I|nxfyR|6}r%EM5Z{jX|
zgVQ$rR#Z3Kc>+xR0XeP%D-jJlwN|ZFdFe&?f<@y0571s9@(coCHUIBu?Y5rg|E;FJ
z=l{DXuYjU}QQ%`|3IdlgQVeZ-3ET(d``AR%LaSK|+or1z1ZeKrFhJnoBerc2u4@p?
z5D;vUt?om%Sg!=AKB!hJsRk*?l8sfuCs}xBwmX3~#U9R4fP7MU1^&ZC7F^f?YY!nX
zLALv`GG#TXsFOcDb&Y%E13ZUQ+JPx1fls9ydvGIuv*vQY3%{Up&PM_3IsuRX==(5&
zbG@+b5vxG@;Fn)RP#<p2fon;O`r3wp<@$4Q;G^Fb*hl7H4ygbNE4*__&<E9s)zxGs
z9%1-_ARh$oJ#qkcfM>JeL7##cD!>-F<MfC@+|n;NmhaK>23dCi6X4Eq5C}Y8fg5DS
zTsql&eL;|4CnyN8GbP}FAOw!Dhu}S068`Z8cJLh9?CCvP0%Eux74%#@DMN<@(6*UI
za^NFq{`*HC2k7t(IG!RW$azHMXEL2wSL8vHND|Co0DNR2A2|jcD+i!Ym{6?4K@=(p
zeG=kYf^->j6;rkkK7V1T4QkUG`(s62_8th4IbSNVRD&K?Sf@mld$g2<s`NS}!?9tw
z3nu`>)6@)m1x}y?CJ49_CZ$a<Lp~}R=|)YhLk>y_2RwR!9Xf;AC{ksQKOLI#XuR(d
zMq@fB**Z^8clIj!LL!oQ;rXtqERYs*3`L8(NGArkWKdnE8bMohacG6Z^M<i2%e8Iy
zBOPUqF<=~Rg1~|x6Wo3N3~E1d!5ED<$N9^bF@1T%*<Fn`Mm%UB@a4-L?K4H;k_}h7
z2hyt*eYoLI1Z|$L7xh)W5NPH1Bk?lZle!ZEi~4jrxV{;j9N!L3#SrB%C=UBCfB6fz
z_%ON!KMpA92W;|HH^);SvSn)d?i~Dg(5`(F>aI}gLfU7Re?jA0v4ST>ay3&ZsJDV4
z&<_-jdI3*hH8@vzCDVm7NpP2%ED14q2e3l|1kH-cq+dcju7oCLMhw75th?cKcaUF3
zgmWV!65#^}PHe<g4{m+{fY>v$52*DRRvb~uyqHgrPvx!WnuMEPHZ~wRp$w`Iv`AKX
zQy-cLkidrlno=Ro4cn1;&}YVPu=G$L+_<)lohdh3<>oxs1d@ea0rbhSWO9e2E$TBu
zhx!6<!H>u*Y(nugwisg@QCK$&F*xmmMoq1$?5ByRh-wXF1{<w*e_|MI)M@rwTDNU!
zR?pB;x7&gi?DjOMPfVz3la}6T!d9nasqLPnH%-&%w6tbJZ#Iw>;yiS4v^p5!v4aDS
zx73BAP84;+u(5d0dZE_3-C9%eT{o~1A>pP&sz;4h+tgaBWp!a&Z+BaoX&Rc@vL<S?
zr)pZ$Y^i$NFj^DK(pwz_jW+Ccdp!%mZl~352&zV=ByYsVa~wp!0GOjW!?mR~E^zeJ
z@D_dWT6-OJ>bC_Vd7m{}?aXItt?@dV0@y?b^b-`N>XzX;2DT9iIW8a`GB|IE)keyh
zsKsyk*b0D&0%QpBOE_4LPqZ{FXcP3<p`w<)5!mu@X*FG|HS$LZ>MHDZHPtjxquDc6
zt=F~MoldWT%wD_K*4w(JwT!NTj0rS)trkMPiP>m(Caq?xiBL!M;2}izW^i(Kc``g7
zjE9%EgPWg@&-*}E)zn~0i|p7m0W?j_g((FE9-vPu9BPL5il!(F{m0eK`?u#;{}|I2
zKiu35E>C{$gO&<jf!i697|Tc3zqf4nBQSi#Rylx<2?FHLvBQ4{klYi-umsaHpaW*m
zF>S;|A@rebBfADpIr}5jP->}_m{a%<*g%mYC-F=G2!AQwaYC`LPAEDkd>`s$>^;L2
zMch(+5Sm%(PngVM)tp!@i0K>BHvLtS4+8nOJVG}=9-kz8<WHcH?FXwDjq!?Z&>=S#
zByi`zUr<5ea#`Wpyb^twFvut)jy5bqJ&CR?`kCjNtX{roV*EYa!#oj+YI4~{$oUKB
zm{60X4>VO(wfNzg?=C#~sg-`jDTSbk9YhG#Jtl~vYT@a^54G-MB>nKqYx*Ha(1O@r
z_~>><*R^Y#ebC~}!NCEB_9?RAazr_iNy1ki@-geK{E#dR0}&#@;eDWd%UuMC+7Y=!
zmdTb1XS$Vw70jf#%VwpGjKHNllKvivpXs`RYa>6JcG9o(kVDI&eWj8<{4>^0esb-_
z9D!@9<Wc>toTl=?zLGvlD=oZ&;>9&yKzTuY-MpaQVq(Wsa%mCEl$MYwDT#ti)VA7f
z-RNlzsCFkEQ`cLQ7BX5bt!o%Yqurh~I!061Otsr;nvF)Uqp51E*K0u2Xqk@}47cxY
z2FItv%fV>W2hEH)xc=!Rp5By$6m*se0nc~o;whE_%|E>mkjTvGo8Oo8$I@c}&^@Wa
zIsDyq;77s^0Vuaupik{V`Y-%Q`WVjp{r`S^a&q<I@^(Bt{ac?_s{i-l@x}P&>U=Q1
zJiZwGt@=I7C0z}5DM>6v53SUbt=O|nsX~7LXdW)A+_AN1KPYq8p-kuwoI*5r9mewH
zp?w7oY}bIcV9*2@Hi8cF4_DGS1-*#Ck5IQ|-mwU<O;U<?Xzpd$WJ_)Lw3cB^+Iq9A
z8D@LZX!cM~ZFd`bOH)+@8xZL|vuSiS&CpS^*KKJ=Lp3I-g;3k#@;*-n6i=;OTO*_Q
zh^Gk^hp(E@2ucGF+l?7>cIxC#y5!Um4J&+e<aLtBuOlnX_2?HA#_Pc+Oac<WLY9S$
zpbuVOx+7zT%!Q5kOCk5E%1?;gSS~>l^Ff{we19dL6UkWtZ4Wyrdc~%IUemhKlhhP2
zk%}hjM7J8S*_l8MO}ah3+v~P^us1Qg-ASX1x(%z<ZL}xtUb_d)w%Y7<dL2zS8fMdq
zCT5z_AmU1?;ZKY;HI(2YaM=pFlP5A;TMO?FocONucXyImis(~-d}piGm~7&iSEOhq
zxh5M$OHzZDj&x)g-Oj{nphkNF)ebU{)$UrYCNwowH9JV3v@F9?J59CMv)YZ0Wwy+o
z*3sL&%o;FU$5{A2a*XA*Yhz>C2X9?}f=#ZMiy7Jn)uXzmf+POFs;snI3;XZxguKIq
zcT<ln17s#%XyPm4Aty1Lw`UR2U}ObLp#;hoR=F!bB@VJu<P{hNt`Db3ntn{W=IEtG
zla6o*eOV+;pmC2JQ-EPQH#oRs(&esxhbDyos~7~|)$gVTGBLTotKY%j7e4=+PICdJ
z57>t?d<)x%EJ=XoA#C(1Xx`QDK3Rl)YLQ!}=U3@-uFj-->JxxI!MSH6*5Rb&bNQ+6
z`|gMlmdFhr;2NrdJJIc$K=QA=b9{A%he!8|3Gy8jAi{idT!Yl<d_`VB>f-ylXtMq)
z?qt#8W;G<`i&8>R*n`0=#CqlunL;vihCXtFQ|$La{Q>%Q8&B%FtD59d45dg0KN5f@
z1kmv!MP%V)o%589eUe;MZ{->+Q(w`9)D!O$Cvl9L>>n(ho=T1{d|$l&3VtMtXgA_n
zr8f=Ggro>Q_;Hk))>E%RC$XpB)$g#Y-5th<dWRD6#e|%CjcO4@0^kG0Hk@Fas=L3t
z4obt4EBsH_p%52DL68KB1|`74)<%xuFWD(te42JBm?(Qgxlom{vJ_VDFGlj$_h`w^
zPLn|H=j1(FMn{~|=g0pTjgL=G2BXpV{ov>E@U(!fq#>pb+P53>0&7$8V&#MrlL>&F
z9t>8Tg{3=IOM}We*-F`WMU^9aj+vLyFRH6mvg92NPHqOb5;9*Si8%p}!wzpm=1d3k
zAg-tOst;CCJh}J58NsX6a-Mp+c$!_9(YiE56=}(Z$^(6jU61rZwWX?RRXlnHhV?6<
zg;P=j5Banou4C4~m18fN8Xn*W1U}A?L(xbuB}~|933C*!MKHyl3Sd5OKw-*5{PqHV
z0t(RDZ$iTsfMDjki|Nc;1RTE@z1!#wzz(>;Kh}wanDJQ5v_>m~ScGihP&Bq0ifF?z
z!OpaX-h>mwRI~=1D0<T{l~x;B3Vq&cce*_lPC{}d*~rDu?*~5*Ps5kl1#s~*pV99J
zKUXVd1nty7T*xM+q3tfr+SGNYHWEIcb8itKv4&~=SDs0UO`brCPVbSz+frh!MnTRL
zJ7|0HDm1^8h&?;G4(Cj$ND5KwnF=B1U7h_AK*xl>d6y$(dA({O*o>H6AzMEp5@-rc
z17oxRqhs**(bXjrkL9>;a%b=F#C1yZMCs2bY<@ihO^s5L)|}MQtK79`ASdvlttm#q
z1}7)OA4+0F69Diz{Qy+yOsMujRR9=^P1fq0Y*o*9|AmZTj7|DMtyasggdbpl#`kDh
zy5fpjhK-REjL{rodwsQ)4Z=k*8!vpkq6+h7SyP9B5so_k_)|;mjSb`n<Aq-W!QASZ
z+F#0Wv14l6fzvD>+ln8F*Gl@0;yMbmB4suu=86JE(?#qkGCxxcNtiDo7rOS*953eM
z^P7=iKIDGE9m1qne0u^KGwe(+Tod)dWyok=<t!7&^@AB&_^yW(P1Fjvo%j}jct|NY
zyt*FUAZY%>#{uetme>T~FE4)di1bopFXwcTup!`UjVmDWj<oQxDCdbpt0wII_)vlx
zp<F7Y4{Nesv;`v%%{g{3JH{&-d%CQ#GgYW<2YpBJT^kVvJAtbNGo%>yf&}a+E$<v9
zb29PmoX3bgd*s9;7PtUAGvs68LpYkb3)=*a8-NJ{;x1DSTqnQ6+zr)tZ5x?sry7Dy
zREzx}2cH7un4)(I;JXTSF*oY7<;2Hk{k}`aw)=4$ont55Ii>45mGsrAogX%d=~;Z{
zbU@kFm7}o5Ob~D#dwCdI)Xa@A^khsPSLc7nj*6WVJ|#n%GOsc5tPGH2Lh#fHPZZgy
zXgHJyHYNdZt?0NBo6PGxtSk5II=Rbtik(w%z<1mg>?r)NLv|8=0Pi8FibksR(P2$&
zFsHa9eZ+T@YfrJUEbk;Y+BL1#RJ2;7TkC>XU_lVLvtfWp5V^+HqdyY0qxW|d6z^~N
zNRis{7PcMk91pEaH@Nl@LE?BgvwyAYhThaoQ`JxxHky_?X~J%&F`1xtquXuj4Yi~7
zte)93jYenEfn5ukJ*$IymeE0773EMan#r})p-x08;aLZqg&jJbrG506TU}FC=h2hU
z{jRI3!u>8jS(Mzeram-~aBATQNN>;R%j=}Wi>}7Nu73iC4e^}2=7mdFbi{iwA_TcB
zvXCaM*VjL#);cG4IJu-IPPj9;=OYV$s!4C(BjoWzl{)|l5De)r;M8?q2ZHncC92O)
z?4^O18VKdPVM9V#O}U*D1_@kUp8pK61(xmtI0%_^4bu6T{P^<fHqA~8d_0)mz`s4A
zpK=A__2<t3JBGb55vUeyveeR_RY47W`SLoaWB7NeD;&}Y|4y}n_8Css2R>pQ62}NK
z4W3}fNc4lXp?GY?Nk@DOg1Ea;e25`m=kVTOSGtKIc-v*@j**7p`oWcNQr7BW582p3
zW1JaxS#-yJ%~J+Iq!7rnGb8zdkp2n!MBNUM!zEtFOfJV951d+b&Lse!UY)!j+>8g8
z$3LDA#<9Ek`1-^7`FM2lZg6ot*2cq&<Fi3p4CeSY)mEKbB|fs@1le)@bM`Y^HR1hG
zD?X9Rb6Utbr^<7JsO6quC2Fs76p6Y}bg~{niO%3N@HmXMXY?^X;`q^*cuMr_GUGzT
zyO8u9qCJSPPidjj3gJ3U42ttcIu8=OkyTg_<n#TgJcS8;3VaCSV<29iudB3r94Z2G
zjYtRf(bNcRp;IW49w6z+oF(VildAEJkfd^r12j+R+mTm8jf3L5Q2!!K<xJYE9t>uE
z;W}E&)Zp!1mO~DJaDQbTF}VqrCh3LH(bmvaRC{{jGNi5<J?b-ej_T0!*mXuh#ky42
zN6@@-?4{Jxz0*gCZ-LWCR_Pva^CQ-=LlIR4u5Zi`Gkjg2Y1@2Rr}XWoQMDzG5xH$>
zoldQ}m0oOE6BQY#(^geow|Xs0@4%*NK&{i(nr2TkdX4U+scPMh+Ja`YZJByc?=?(l
zwL0C2(Jtb^hC81_#|#-S`w=@aIo>?_+g~`*-z0#3kOWy;%TB7)TAoU+HM-G_mRv<#
zQ}aG+sLk$^s^VH#O$iTXnjcIcL5H!aPv-~;w=#0~bOcTK2SZjr?9s{9#r4%_5NZ}V
zAv)Z-=MvO^Xw>vZt)XbOR;}?LVp{aHPDgDu+gj6Vn-f)SL%pS{W@FNubj^kVEod~=
zj&7iCPwO>$W=}_&*6C<X%P=Npa}ptOd3!v(9Ndi0ug=Z}H!HBQlxXrOwmY37zpvG_
zMvT%#Hzuf|cDq*BGF7A5g{lSHrqwojaMFcl&(uua=r&c@>R1h<+iNvc*lx8@19lBf
zYbO=5A3qGwPuCzMnD1nPZIhwXjIrsOR$DhaO$~K=y-rVUSg?Um2dYN9JJAi@GJC43
zHygdlMD6KNhrL!?pEL}!fsBUMGm_X)Ww0DFbaf-Y->s=Nt@|I5bC%XJbcobmt6}QB
zZreniZo3V26IoqobdZkpp4D!5E!6E;X0vUyb+g-T8&GW<ZL^a`X7sKsGGvDQew!lG
z4v|q?$TBo&btjtEYg^i+H_<J%)72(T(=ap$8-{7BmSt#qvx88}f?aK*wN16rLq^MJ
zB$2s2KHC7H08T@sw3=SiS|L(8)KO10Oik^on$baqYU+licWJw(Vf55)uW7bSHiesA
zqp4f%PD5*%J=KIQWI%z`+tK*ydQ^-Fk0R99YK>YnIHsYty4|kXZNgrw*Xed(NADUC
zSv{?3b#(|kdaq$w&7PsPJM9i?YYo`wA+4)+8*NK(iKfqnx8sxZtIJg@+ES)CPz;-0
z-q6%qqo)2xbe9bo-Bz>P&@HWFs+QT+I%coaZD>8M(Ln8HbE3hC*)}JgPS-NKdaK>-
zTE?VpcDqJP3$b|r;YVi0oL~K1G!n?O-KDgN-`CnTt)^+wI&M#N%V--$%Yvppfjy+R
z)mE#~=^CilgPkVqw!5A71Zi5k)oHd=-Dq2rNz>3KO$a;TI=&uW56*{|6q_GEtmQ2x
znk)oQ(QBP(R_Hyg+h|NW(Cl^fmSHrY4pjrSAcU<}r_(f`rl}O4hS_UrjfUDX5o|QA
zrrzyn-Edai4lb_Gk8cO#!R6WTG8Y98-@CTkS8JNYL+E5^LSz}u_N3J{pw*i6Ocj}i
zWj4%qr`a$kjb;b6J6f~RZ0fq+)}f}iJ8DCPUDyuC<m6`D);gW>+u=V4H=)wiN9Gho
z{6TAV`0ARd&E5pI^;XZ&;Y3wi(C9Q9s@5=jjmZSU)}%WzG}!HQEe&<8cEeDONvN-#
zos?pmQzK%TYOPh%V`@XAr!`S~(rq?-YR}TTUD!~&hSgJ1tKHKX4Im|cTeX_KZnJAO
zduFdUF`(7$MBTj_4bLt)24ni?TCqa#)KQo;Rp_6{?>B1AnyMI9JQgja_Ii3l?LgR7
zdq$&$%#LbU-5#`>&8FGwG}LadVNIH_(KFGc+b}21R$J>%R0E<W>}|d?Ag&|_$bWz~
z2wY&yka5p9x<4U<>O#SSU9O>z(!#Mwzz+U7I2oV38=Sn4E}4!mMhWM2*6=OA;08X<
zu#JG}VrME{{NelUB3_KiZXG1q^3C9Xd>D*w$G5|a!PSRb)`YI6+8A0QAle(il?_G{
zq1Qw)ADBcl0ilgMJe*I+ZLe-l2IEkX84YfR$LCB`CXEx;);W4WHgGLK$s;05fP|_n
z2y{O9X>i^Lj3LMX#3=!LuGkD(2+Fm9y9lO?M(=KKuj}-mQADm7{`l&{?b+4v@@!0N
zghU$Upc{Jm%`po_0_G_2u|fC_WCHDr!R^iPWHi3Mxw;tKz8icPiOr<bgcq_5)kafj
zEJK*<;Ec})XU8W$k41%IWDVE0`SD$J^J{GrCs*g^gOgkOi1~sQH}Z}-zq&rS_T4!O
zW@r(CXWJ*yl+S79-PP!pT~25Jdo6>#cKxlvUSHkZ_CZfet(+MOuZMzw&SB|j>LbJf
zNjDd`Y>u;f{0Jn%V1g{ykG>|eML>Y*essVAcEB9lHs-!#<ggga(aFv6^&nh{eehaq
zscMo4xBh|z$OQjmaPc8rek{}qyMfPFIb+!bDBSzYMpghOHgxXUITm;wxDF-(##3CM
zV8@yVuK^}>0#d-?ChYCahtciebWGdfJbBayuU{v5V|3%3TVVX#@ZovFDr4VVz)yI-
zm@}FKXxr{bzJ)K5J#ZQ2<6T1^DI`E15r+DZ-wMXR)46-i=Wg|oe#Wj6AoG6_K6=r1
z^2PB#hZi3%#>eO9SN|BCGU|?h9K5}{8H}%Q2IJA~;CeJ3ePI4zeb7!$kp#*Vsi@DC
zvo9zYT-#!FgP)2y(emx!=3;nxd^^0l?1OH*xuR8xP*LNwzaDZ-DpRU#gBO`qCTCC~
zIs>|V2dCrFEmd$RE&{<m=;b%>qrhJR7zAkU1tda5CPTWBo5AhP&*S4;sz}|A;uac@
z=wD=lJ5$j|K+R;EB4VJ(LSHfV5w$PRHt7D=*nPyojPexQoe}_z06*Yh`J_0H|1rFM
zN2T?L>(k@gK^%NS(g^^;j)4TPA_15oXa_T)oA}71>=ar7@~P%v%;N4*ZcvOLTR&Vq
z9uF^%Pi}`l4aOfXZ-?i}N&N&ENqm7jOAu@#ADLj`@K2YUVE5tj-Qf8A_TA5Pk*`B7
zW^IWv+?HOe2-WDQsXe6c<fQ1uPG%@5ek>qex92AU1Lxr<=*!qjK1gzf5SrNJKO5e@
z`|#uV_UirMGTN?ZuGDXRcP<|akX+w)5FHor2(nRRz4$ddScwDfWp}mj!U$*{42;<w
z@LUoo3m%doJQ)Tv*S%kTVVi#Z3>Ow(F1S+U!IamdytC%a49{I1E6y>q#};`jAqZ@-
zk9<to%3JJUGNZ_ao63@j`R?js&<FKk?iCIG6gdX+1MXO}?cj$%o?-l7B4X3GI`rIE
z2Ro;Xt8=SeoRzM<ddwpW@Ltbc={Q9J3kQGd*X!)wp}%nI;>eG<#(h*LFuZ=fF6^(q
z7E1BJCJ)HRmVEFS*d+POfOPWoK^+A~oe-Pt*)S*Ox&dpRxCcoqrmNMt0jJOxaz)1T
za_ZfqWmFA2>_iZSN2?e~UDkSyn%3^tdcB&as{K~DuOZAf1)8Q$nGx@9PjB$6$LN!X
zd^|@^5FIMN0>_@GT>I{)Wzt3W3H)-P=P4eAtjHA$-G8CyF+9>yeIhWGoWtMej^^`~
zgd#L7MJ7WeZPZ#THzJ{7wA5A;8LdtO>iT4&x0)?uqPAN`L+v(@VfDIQP1BKOS*Y94
zTd37RW=}U8ok_Q?!S-fxe3&v7q6e@u^;sCLWZZ$G)h(*0j-uJMWA2&91VIS&;2t3l
zP|J<qO9_GA)$iChd>?}Tb<IA`YFi;B=2gdDvA?nvPcKJ|)$pj<GZcNvHU<}BcWB1L
zN2k8M?-IJu!>cx--5)}5C;vi55V8Y)PbLe5D|6B;OHe|BvDVEzMdK8K60<A5gAtO2
zs+phS$D+gYrRmNgW*4gCmvV0cn=sCo2fM(xoi$Yx*w&Jl+&|86fNV?xg^MD^ht3rB
zf!5G#(*Nt4u6_eSojwpmnF~6gpbqQ8VLN^jea0gGnmH~&Ut3_n$M@*T<2My5G@Jta
zfPcFQ_;<krIF-2qB*l7?RRHn0^hKYNSG)vR>`WDQ{^M{jr0-bCxbG4ryoVB-Gqr}6
zr)21c(V6IGQ?t5Ft*tgSUDtXY*lb#=);1^2UeD4|PeYA%v)MJF-ZoH2??H8<X&uc}
zTbn5vUpGJBGvq%3KV2;^zRp;D(O8LTCzx$<P^CmQN^7dcNz+WQ+;A2P9?6w$?3f|v
z%XP#}rjv=T#DoM34cIvhjG5TR6^{TlAf!)_V|p%jWILbxR@ak9x|B)zQxsgg)b^H+
zLMhGJ#xZuLQY#b?H28H1_IeII=_O;B=u;nz$8!|Gajb%lJ=YwwFUAM8e?N@r?zv_t
z;11$5eMY9k!cmAnDjosK{blM)fXmTe+8{1J0`WCMwjM4xwFi$GjyS`>>JIuMXMt;$
z>tB?gpk)6N$^!J5<mNL$g7nxvcU896mAzZFzW<r{#^p&-a1-p2WGR69BqZX5ct8%d
zb3NA&%Ef?2^a~~YBCRJT-@b$@_uSE+llK`4_N2Q+$xuRQbKJipcgx6XHPmL;()3Q(
znzY-ko@rU8ruUj=yK9+NLx&v%J8G}hZJCDFoU~N6W9g^`wMnPdZSJ+X?<wwnc0GNi
znvw6rC0*rwGmUSWF_$Oq2h0<yN{RL=tl~|K6$@s`_R?N~)H~V)kkgaWF|NTyFmrwU
zJHxhi-(|a34_bxAfno_?B~_d~rK*Mr1K6*~H>@PPHLS=7S=3@pvj83xOHe(k{#tnz
zX)!VWi5CyZpRk8h6ja}Us*MTz??);b=pTIc(Z4vCqknnfOB2~BKnz^6<B9H#5^J|q
z4;O^R0R^%}(g)R|Tw2v9p!|>6F|jk<3_Us$?1Wo{=nw<2qJ2>_f8bXPHCgbf%9~P(
zN&5`MOpPYXeDx}lamj7jC<2a1RTrkgDo0eQdU<5iY&V+RD>17HHlIYG`n1_<rTnj9
zo=s98N1IEe9_@wK$D9Gpk+Wfz@HP3rn;kus|Fxm3dV8P$br<FHX9bwZqIOy}8tPhn
zMKB)oDp0<BseJwnelV;Pmbv=YvqxzDfPB#ZEAV{m1Qw`9d99WIMylWdJ0|)BYNN%3
zC$N?(R1a%B<-AzN;LDdp>TKwFgfc_Es!t<CD)BlE*QgvRBJM?)FP6uIr~u)Y#T5hE
z@tkjX75c>=z@f-H0cg^%iHDdr6l&e9(I~T>tcvrtNRF~CeUa42Yb=}=|1Mzx<=8(3
zh=<>u=X9XWL5B;xA0E9&RHVgDSy@}O)8*}iUo%Z5>~PYAh%4rXj-X!$?$2;;uY!*p
zGkg$^P8#upa9aL1!m}9Gyf_PQHE${(7PXjE@Gn=)yKK#921fW<GGS7hYfUJva@*-m
zzRwCv0J;JSs0uJu@JC3@GNhEEI!IPBUuVf9eGqvf$%M#~oUg%LS|6C$2tbw9t45vS
zd6=uh2B?DCVT_!VOgX%hEiJ2fjQLCOM|9v`J+?o>C8^4wB+stG36Goy?7I%-Jjw&~
zF{Nqoyr-6kFW-U=NjD1udEYLgG2da3LfYr=E{m?`?IkDpko;vWr@D-3W&^qyQlerK
zMtWbm7)Y{a5=wU0yBJQoZW2;<AHEn;x^5B@9kMeN^b^~yV!MbtJ}2L>kxYzp=59Sm
zF}DaUQBRswS_8=FJY<4jfIK$K3_dwfMzTxm8EXzd$TT9G%5k-X0lhsd&uK5Tk|n7T
z+Rabej%2gPwQ_RC6t>o0(b|I?6=wCwk@RqsZYunfs%oY5zfJUi<UA<s;^ju#|62WD
zYw3-Y{@-Y7+Ft+PMakFyb7fvlNK!6B`Bgq9x1{-3*#w>eZDT=aoXH@bT%8Wy-V8?X
z#O*^_xe{|UOd+kv0IBX52Sih5E(wIbm04q<qgL!qMynlP569QXx9`T+H-opse{z8V
z{s6x%+yKd|D*5LoeXWMyKBw`-;D>`m!5)-VXQZK}9k+aUP8rT&jCC|ro57WbI3Kbr
zcDotE5ifKeq6%~5Pm#%A&^qk*)dTWB`Zz$~fc=*GE#Z17gBS4f)YOo%<teF=j><8p
zrVvUisqy@H>6KlsY{LI%$o7y=YJs;2_g~BZ8x1YJ|I^T#%{~9$Mfv=>epDHJ@>q`Q
z8R7v(U5iIZU<{^mR2TC)%j>vhrwC1i)`?eD$if7th$ou(s&*(rVm7M3a17Aa*`Ihm
zT3D1nSCwj(@79kh;y4OM_MNq`?Irka0d1C1gW9U%M%zCSht28-v<2ET0w&0SEXt=l
zN8o+570YR0VPu;GKp%1c#PEtVCg5PQ<k1{1N3<@>P~aisuvQsb;i(J<BCI^ZNy(q#
zAPUsLZj3_$AVXeYyMo;DhSsJem$t$lNp{8^#b(heT*Hktv1yoxRJ_;r<x8dbP(R*u
z$Y2v0A?xu;?^~_FE4#(D1%8QHnqFDyGg=-$cQyLiJtZX+Y4K)KvRaLwje!^{TPb<s
zJ262Dps^l=lfot$xK;5-wG@DiKK0V9@VhLV$p27#-q8G8YyWk0EiM1`hQ62oyD00<
zf5ez`W+R`@I4Jn&`uEtGO6S)6sAkB&dGtBW#%DA+yDH(Fh3T`0%(+9sK8plc@Tu^u
zL9kw`Ii*|U0niT!vmj2~xkuHA>fipV)wHgnRzd9qdOYO`Mx;hn4?)-384kpsV$WNE
zl;Wbx+ue!w(uih`8p7()r6+MNWJeh-5;s-pgPg`#Qcd}2A_@_lQ#sXC0z2Ux61SWS
zA=%t42)r0SYR9L1W%>SW4jjqmmktH$)#L^#hspCf4d<SX*yU3?O-4Ldn~|s-=4DMh
zjLwSEk2hQf$-=gmGf#o=3+#igy7}(kX8fPIjBLvMOW1!cO-=ECt<~Dwe>*Ab_&*)<
z%{0xFUrw$YP+7^a;w1GkXZbmDBGsKI6c^H;ilU^+$ktR$JWeh7z>2<)@4QeW4fziA
zm!Nv%+NcVul8aU~P5+fnW-sDK5%K)AGhh|`Dm;W^M?g>|;YmGz89D<3<_!pb&F=8B
z9<xTmfyf)BMzIwljgc(b^QZe0jiT`EOAcoA@T(uw*z>Q@?{A&#Tj??(x!DzY*;OJx
z$IuJ#hWi<BM1(Tlk&iiS`wGh@@?Q+nQ`>)PtKH7nf7;&vZzpA){1;=Mwg1wh{bjxK
zxPP7Cp2O>k<c5=R!12VL9{$631J`ivKDa%(7Pn5~i$B6GC+U;7g=1VZ#V%fY)Z?;t
z{U`6`Y~=*J&i_|ywo>cAskZm~KRYS%`cDq^H|+$R>PmT@llt%*a|cdg|GYlI8#MM^
zI|gUy^k?-B&bh(~zIhj6=ufG|sjyfq*qJKW36m=SHSibc*AmXesTuG@9>wV!%NeKQ
zo~AbTuBdxg)E9R}eQ70UUkb~{`u`SA!0XO`bv1MUuc^28`u{G<3jM!?6L66?Y$-@7
z_ut3BdTICC4Jo&okL||9+&kLtOWCq9|KGw1c&-0$Bg6l-&Yu78q-^8=n_@_hbplR;
z+j{~Rdjc2kYCX;!_|XHf+9$YRORcP9FbndQ+FID$5qQmJ)u!IS>yUa9@81#|M~`;_
zF5W5K`vHFkWn=ljg%j91`QL1$&wm>2{r%6~lv3wEFX04Me%JibXE|THJD41V>xn#p
zp8b5Rz|X5%&3bt;kR<8gHATT2U}F-z0W8ql*X`+*6Qu218K<p%w>CM|+RA}Tp7q<1
z<~wxe+M;YM|F>`gTj&4PZlvQs=(^t7%l}=JQu6<)oWOSGl~KYSOg=sJlE<a82Uwz7
z%2#ZKTi6D^5ijc-w(a`AaGk*Q%W;9V>t9XZ|7f=K#(w?pqHMDMMFM~<8;H}=)C|{0
zE~y#ryq;zbVWNkxghwP2HYkDz#LIn+<JF_wuD+t9@wMw;jP3T(UrWS))tYJhzt!IF
z|L>&8>t77@H|_Wt_MtrA2*3EoTs=dypV!B;Oe^2Db7xGTKdV<~oXU=uZ`+--*hw=S
z$(_V|?Wv7@yw`6j-YfKQ-NVi_`7UoP_ina(H(PlCziv0%^7{X_(O*mW|1>l4f3*Gn
z-)>5t{$IlJb2Pa5X?QXiUmjl!N-5wxTr6Xi?*``=y2uuFd38D%UtQl0uP#S@P*s#U
z{4{oLbIi^K#svS4{@PS~?P{TW=xU@>KBmXl!}0Ca`@v;?bXhqIFHiKMh*_^Z&?Q^V
z9xa`me;C~kZpOpYjRV#)RY#F%M6vsDbN&R8Z<)Bd?~*WKFyF-^mE)6>s}GmAA+{kS
zn%eFJ+BM;iGGs)iBRjf2J{hbyv&lQWl%gDb`BJ&LIv<RG9A2IdFVDn~=O4zEAJdoi
z^)0(fHgobVKaKa^z5DWXrM&##Hu~>+`LDIp{y$nr-S7YJq-^8=8}h2hI{wbX^Mt*}
zZ;{7uR-1a9tMB$CU+v?Y-b8(T)ZcL1X>(WKqCLx}i}+iJ+an!*S8XOf-qSZnGk+l$
z-<M{3`x2G%@_*atk89<>-pI;-UE9Zh+(}t|{`V4&za>sowm-}J+FgCWhRBc4aD=*H
z)W@Uzc#o^IKZ{h)?8|b^c&=FxS+Yz^hHF!$0lQ9qo9I)396A`}ah=Qs4n6PjV83RU
z>aQ<&=5u%!Z0meo>eP8Fuj@xKppD43_s{+sN_qWn+vuMq;(xX}>GL18xsU(3ld@X>
zdn(88XY|T?rpTY-P=AGscNy2Hv~Ty<$GO(7e}CaPTgLqi%bNAy(bdfT&!)Ox|2rx2
z`sYLaO}l@JE|ljp;)8F@`BPy1yuP0$8u_kWKO_2l+n%4;!NEzP_a}Y(%&wmf4j$wG
z8GT;h1Uj@X-Qe0sgt0LRDrH1a&fTMc`UE@m2_$i1cNYFrs-Yl5`t=9H<Sn)lshyz!
zR4w{vo#GUqEzGL2kDpr38<kHkh4pSzkJQXkWKd#{L#gUocf};?E1d?5U5I&SzC{n>
z!pXC4<aXmm+*P}KH{x%}jd+Hj9n5l^h!f+S-I#mswY#ZbalUWzBfO2}vjuD-1NvFH
z7_k#N6AWylkjFkRX9@Ayp2H*{d_7_+L&wL-s(9QUDXv05&pzw-e(%rX_g>P`J>?$1
zz2E!Sx2y8)l+yb@+q?gj@c&Eaf6`iw{r%salx_U~goZ2oqiyc|$ARp9|B8M8GJ9E@
zkvi%4w>7y}`~9W1&mQmgCrri7z5WVztDes3uL!e8`uwffMT*C}jOR@#AG3~s*-g>4
zet$yL3eUeZ=+fSQMeZ;!&Gq&rET!fD_U?ac<$t@CzW=9b`riL<CuQaN&r7)ft>0DO
z`Yh*bcm8|I0H05O5VoNUAM>qy1FF<!z$8FUz|B3whIn4=b(eAHdjmWe7_$w$`V7~x
z@N^D6*8a)_(uoH7(cH=gi@omRlhSW9SM@W5E`9o=*loS#${f@^ZI0=pzJGl_Z)N3w
z?xtRS%uc$ZLx}?YV4eK$=;{0)o#sCO>uyR`{;xQ5OvV6scXcu7gL*Lc3NLc6hnT*g
ze>S+h&50_o_7*&x(mzv|>EB(AZlB;by};_^>U8k-W-xjuLI_j<U{L|y`tF>wGcIi2
zqov>yE7?(oInZ*CmVLnc5@W(55r_(|M|lOb#bx@zKZm2+;pN#lAI03hbMWQD8@&JU
z<6wMpb$L7Z=jN2m1UO*O$^;g;`p4zqCVv{_knZNg<?ZkyFBrvIB*PaHw9(+?W>7E(
za~l6J8r+nl`xen9wq94&SRZ{(k1f$cexQU+*hwa+L5O=nxP;9ZOA+){K@&ukCk&fV
z?5OlCffLGU43CumbBLWs%YR)@+y9-WzW4v!Ny)MQONf3hZ7!}(2YoPfg!6S}G&p}d
zJ{?@2U;TU$iSewIWIODVgk-<3nSVrRQLqifHQa9#g<|9AJQ;N&=I~FYRKyU6m*X&u
zkPu~$mtrrhtejq*yr<n6oDD~}H$Ue^8)D87H)x7U;4ft{e)8`4=63wk;AS+u;-WM^
zKF_98<D~-!m0Vt%#SJRG7QVBvLHi?ya^;coU%2Y5Rsq(^e=U{&LszxN-u~Z7$+0R{
z`f+W$1+W@uPME%@60^^0pM8hs@yXTY+u_;8@pTNZ&>JD&6@fxtnen@vKjBwn;Feu4
zTiUqgSI$Oet_1cwGI#eSRo2RXer%_BzWadbsz82yZ1}G8FLzSb9bk?8Z?^PI{-4G^
z|IcoU%y&)fm`ZlMC5Hep@H@E;Dh@UsHvk9dx0r7Qt`DcEHi5=HUHMhpHK1KROnV<p
zU|`JR8>A<`>-^oFtU0rkDPY(LIty=u1I)ay*Iq0&T*p}WK5~p@&dq_$TaE%TX2@LF
z$-AZDL+}UqZQ+JaVdB<{wXpy0PRKh<>9;(`a~vc;&a1{DSP<LDT={jTN|C$8f_Rau
zxcI>VW&9@q_?J7mP266U?|dfjwSt_xtsv)qYpEeyb>UTOfJ}7#Qny|~(aqNtP9=Gb
zrEcxWBuRJfu~%V}*FV<Zhb>|sYc9xw?JmiJXSpa_g5=EgBY=L8vs@Ez<l8-$=mGiF
zB$(`dNg!Qv%9)voIr9RSD8bXFVgcz(MXM(8MmnRsk(KC7@j%CfzrMNpX*e2QT@Fsi
zKmMGkBKA<rO?&?6I)0Kn^9wFCmCqT{T*Hv^Z!m$vTTJP;H(eYht~7z%YfVqyaPA!^
zP;}2}RrBhK=D+bPNn7dvCPZ`BA*f_1m^J!;r`gHo|J?ik?51p{|3?GABMSihz_fdQ
zb?_Sc$O%rdpV-C_<^Zb~^4zGRWJjzwAwrMJ6=7&t_eW@*4>KdA{h(|f_A345TJvGE
zxG`z)&l^Bylh(fLNHSY$&Rb~ByA3UqLQt$u<j*l-fl;&gtqw*Lk|>7oyf^=|2yY()
zpa52RbvY9UAPfXh7zQ8}2LLGG4_VzYX6{D^C^xD722T6*O!61bG5J6c)gk-R2RW0@
zBFx7beE9+jIr!R85(=2pC)_Qh3>c7OH<{Q^awaAQ4nW|J0v|h5aIj){NFfCd4?z_!
z0yi-{>sQv=CfJrgZzJD0P3WQN3wnh}lyARWn@PpHY{J8A>$&EPx`Le)2N+68n&;&T
zJIhs?VxNU;GiPsP{cJ3Pwq}21-E_!uDaxj1?i|(SmAMG8O&IrL>smY}3iBq4zD?~8
z>}+o!W$%Tvj3ukPJiZttjK-8(Rb0}3ZmBn%wXtJXYKc?np3~+}SLYut2IK4Fo5AJn
z_;h%aZMz(Qd{kmmwM1glEjYH1pn2uk%RaE6P0&WXe4hjLsoL3P4%EEeO?hNzF5xps
z8a=P%j9N7-9-m+J8{OYoSGL>#*(?_Dy7S+*-c0ZRboTo{yD1y)|9o=+fs6XI-Knk&
z;TsDXT)fBd>{~z^wz}U6`V(#it+Cy*J^qu}aQXJog81C<VJ6Tz3b2iwhrc$H4-_Af
zrDG^O#_C^ND#^E-O0CD2h*tXud!$jq9x2st`O}OqWw~gTd)wn1u{}1J5XEz$y(@b|
z*-e_vt@QtJ!=<DH=o<aM-PF?gf0}x8AOCSDrHuYx;vz_qEB|I7Q`bPYxkMOy@8n&O
z*v3~UJV18+%mFf*kQ!uulkd@TXs&xdl5Sj5$jAQ}jgL=G2BXpV{ov>E@U)*3?ysOJ
z#yYmT(OKFe0?`%Ek7Uf-9^a$o7@Kl<!1cJMyS)}~`Ou;a%p6s;UFe*%endGs$6;e-
z>g0{Ah$9gX@S4$0H@oW*=CGxKE-}h$$guTDuY&u8qdhf{iOGG+xcWPBoeip{JAHO_
zb#^`&A75Xe4^NJ7hgX;5lbgZm;PQ5Od_GECn5v_|DANAxhL33HFtkaXZJun0Qtcik
zY?P_%PHm)!j}#G}wDvFJI@R=*n%v-GqII^}fBgHxM~q%{(*Ms7Hv_4!<F~`}K_9SA
z-bYb(>yUoK+N+$LUwt^`7s|%$>y@?Bh&@`~y!3_eZRPD|H^jFW!Qb1J@p4ls&q9c=
zyJh+03MTXAOC_|NrPW>u`J~J<%kLEBaQRfwsMUPEJg3_j_boYC98I{WE3z|gPM5O0
zDny;J7lpBx^x>1p*iy`oK(t%?7TajG{3$o7a`qwQZtY5f<&SH8SSu(m9ru=&WYwn~
zvGq9R4qbI0m^v(5+5a2nf>>k!w;FoJ{@2v~{m-40ZSp@9F)=wy!8R!&vLN^AA&S#O
zte5|rjzls{!=pzdAJy!&+9yF%fQ?aXH8w{v*Jb~4=*1v6pUcvIl$d<34}^pSh7Czh
z8jKBhxN`cI$beA*P7$#wC=v2Qlw=pCoJfTAB<-}B-<O=r5RcC?BDI=9G?i&&J5--9
z4aq9h3uv5kv{-uHJRQw*uqaRa$8_QO#-dD@R*y+|vv*}@(y;^{KNj9Y)bev8{Ct#O
z*@4F;<k`dnW0TYvpL28bl(6F0ChPeu-30i&O`4uZ7_LGbolt2Mi4<9!aL$-;^4>sr
zytI1!r!QOCe;eikTIc_%w_7RuPj6{^|IeM2&HO)KA|cQg9&u0S%lWmZ3=*N2pE7gM
z3wX?Knp-H9Q>Zw*kBtfY??)IIvx59WRhI9kx<Q7a4Rac0kccu3g-GPK9d3p4am&X<
z)M2(@X)<ikQ}mFZ(P#x-<IZhN*LAs?SgRYrb6oQ|h{94^?RLf?$MjrWm|SXgyXB^v
z;kv$w9hq0;<HGc{4H9a7<(aP}4*J9iuwLTo!L})~wsJe)Drc4~u^vUWuP>L@w^+8)
z|2d;BZ2_#&|219Bod2lp{rS&M%4YgMANYg?u%%n%Iw!l;UK0gY1qE5*NAg!5{B420
zLJrLWPn-&rvc^TJ?gOyGi>nX*U}Lk|)>zSYuB&Or2edG3=SsM_PL8?WhXwHW9Q|p_
zcKly5J4#4_b^AYBC!PPX)#&W^e|Azf<p0vZb15KLue1xCV9rS+Hmx&%{#-u-Ge|(-
zf(ZiX6Ep&Q34$360Na<}NL9`3L_az6mMT5|UV#UFI7b1y5&3zO7<J*rrXTsMK47n+
z$5CX2T$j82IC=6R!Wuk;WXi`Rr@`<;ev>$Txj8NGIK11Xhh(2+&r}Ero#B3W9S*}s
zzb&wjOi(R?1|J}{;RM?_SpHAfK>(BJt7;(*nXg#07P&1#p1+b2MxTOaHBD95UmeIC
zO-S`{Z572JxO%t^@qdbFn_HKP=X~-{JzdcLI7ON@<G?hDjm9ANi$~BO0OT0{(hE>N
zfoOYC4H*IpNK;LQQeUar+|OloDf}h0m<*V5+7fm>u|Y!rdK|1^=DUmO%v*@41M%-Q
za5tI4%*B$ihcy#9s<{1h=8|U)9XLg11psotD0DQAnyZOg@=#y<XpR^2@%hcD`nb7f
zKx2lT>4j^qLqn>W2ovr)sJdn_V<7npCH-{!X%n{;Y5-wize>C*DE461PoWpN-nuVq
zO1}QTp@Z+5vPS=JbegI7&swY9-sgYaN!iB#H{-mkq#RGgEhxrlqX-6Y&MpD@n6bRQ
zS8u*oZ>}S0&VhUQG9sy{Quw|M$t5469~k=mzm^}<7{`bZ97y6|Ai^{8a6{x$Zn#NU
zywUPAtkC%>o_ErK(slA6ZuddL2UW}vUW*xzs|S`<j7K%y8=26_>x6%>m{QO{p!)As
zP#tgK9xprhtwd6GHk=`QUL&(QLp*8uX1i4b8+!SLGn@DI*z*z*z`R;~g@<h+gj)-7
zUSR1HNduAko`oXRMrE>0o?VH<vRvAwoKsg)FVFKai$!*GBYQ6*AAgps(#bn{+wekD
zuKb6dr+B{mX<6Se(qDdABmdP-CjOtQx75A--$h}(9(vw29qus77i0U#J8`{byhMK(
z)8_;Q+4|8{+k+{J!iRxsSS`L+UJN7phzIsagAz|S0VE5jG`PgOO@OAwY8r6n{UMO<
z(HDS~W3weTD5G^)5P~r?5Sw3ST(kbMGxbraP5u>S{rcBZ`hTabclPUl7iGWxzp?c%
zR^*c`{`KpBLr?GgvUdG9+UfPLseAdqld@m`-`M)+F8EKg_}8z0;b5|R`QO;b|JzB~
zum5js{fia(tn#0^{VV8`=lTKiAH4~%X8mibmXiMsP4DdeKX+2tyl3M*5W`)T3FLlM
zzzLEQDtE=@f!m%btc3O`&ae{l<Jbdq%$4v9`9zYuMVke=1NNPVKl<)V8UFuRBXB+c
zPv`$twf+6y-IP85|1<M{VJz-B|GpHIGW`Fsn*i(hzos|R{J-7O_WXYrWzYY=9{&Hd
zyg%M3C}RK7CF-)UF2YE5dx`RADf#^WQ{Y4XuM$s!tu26c`@eciOY{HMKK|=&$}?wh
zWDLQF&J-oHB;7<=y&^u88|XdoY#%u$^2_CRmZH1=kc#g9(uDp>%Zl|co+~WJ4pEHx
zwj5xs{ohL8|5V%i{omb`XI}pl{6mxpA_~MJTpW=z#SRL84%s{l8G?uw;yM<dUO+E>
z<v)3iQ~~uPU@qqKWt6NG{A)p2kVhMn0Ei}dW=B$dxilw;FZl9BEP+*bNwWbsGq>+^
z1B0=PH-bdjSYqqLhb8XWgaqN}_Q4-f1<rzhxJS!3tTj3s;lKzuah^?9Aq)Mbr|P~u
zL&@d;GuOQ*b<ZV%!W@llyKc-C9?vQAPkyrakDA&@^M75}_vimRDKE<ZSsXO!3P8vQ
zC0lnxQBazr6Au~R3_q8bT+G$8$c7r5oZ5+Yv=%PybU*l=k-g#m{g$%)|6lGznIgwP
zen1oxJLVI{|82I@`@g!b?)m>t%8T;<a6(BUfSrNmivgMKPpIUmN1?y|?oPH71Bog9
z)bb#_Hb<9JAIQt;4g0b1ram-Lrmpf4;pr^sgQ{N5zT`nX6;Gt5pCHTik-}cF*p}FJ
z-mqU}VHgOREI7h52q!975;4p|z(HV-kl{KeIkp1izr_wFGZaRE$$z;%npg;Z0*!mu
zvd-}wi%1solPC}Yc7hyeA&cYVBhQ%pu$U!h4K4D_*=Y7e`O-szMqkGY5%a*1mIJSp
z4bI81k1XI#(EprHo=%Xl@Np1&7v?5n57F~nbCj%}pATMK3}zvZ_>(ZJTOLZXNt(Ae
z$li);k~usq+8t!|su8m6XC@6~qRH!pZC{J^6>~7rpclQABX=CzAK{WzWl)qWLdT3L
zr+{jGf}Q#Vl36u+3jHaO>nKby4S)T?CiGiuBT_p<0jOH^&$_{s;f0SF!4yWj8ktok
zx@)S8400aiMmW_kk1qzJ>*JF_^hRXtT@lbV4dZ5TJ~$qgfROj`$=mVq^>F;|YIK_m
zpuC0~r3z7IE(sDDjx){OUcDb&O6}z?Rl%tlgH!_d9yyB0I;t@Is)Ef3T1%}Z0dAkR
zG?Ic3$=RB_v@(3saZME6SdOa6Pji=aE@#SN4_R?yS=hnBGOiLndD?aY*G7I?Y)KE-
zw$@(JnvbY97=&y8%6SX1z3|bW*E|5)KqbH0ME~D*189x@-^%)b>n&{`|79oTTiE}3
z4#l4}{q-sQt-ZqkH7fk!YynTM=<im|X8i~m_+HJ9fBhk8Z;>hq;3Aj-o-jfY9RZ30
zJ*?cLCHR5rlJ5sU14UW*HvgH@WDOXA`hxg%GJ`(i=jx;`3((wlrzikI>5vluiO=8^
zg>yaoDQBrZ0*bY+WjU%+F(|SmN_lXyGF4!72&z4w{w+83+?K_Q==x!(Or9=2OJQyt
zN;pbc(M!)pvY7BMa^CNajb}AB<T1{$@YLWM;i*_(8oSL-!Tz+i&AzNJW$izI0*!4C
zfY#W54Yip$|8MI1`(HaL-{|?zcBv#w?uVDjYn4W5Wu7pODoc5_GX!&UDn_!TT1{nk
zi{6MNe9><%VCK*xiF|Jx<(>1wmm&e(uiKI@%+R(wD#q!{%H$ghqmmb9H!FqO)>+(2
zpZApM`sdGk&*?vZStb8{B=(-z?ytzVzQu)*wfn!#^!*RLz4!mvP5G+!e|PNsA!hV5
z?*d1wXzk7}Nbcgk$=m7OZ|y$u)^0orz_;bakwpB3{Wp@x?6;Ixcy5GZG>jC!snf>s
z+2Hbae0hA4?{iUpW0UP8D^4<}uiVnjhs)dH#o#I03SX>fZI_N9JMaQY3|GE)OzysZ
zB8N`i$d3jmH-nNBAUBz566oph@^m%Kn4;W@pbQK7dv}*V@ecHUOZa;!<?KJU`@6LP
zxNiTq*-6L$(mTz){kN0yE!uxiy7?Pxu4OjGa?HJ|Y|>RT24A(<;;Z({SbW^K$AZ{K
z=5Dv0zb(?N+3-Fp-0==y@vZH|<CoZ`{>G@jn+@`iC{MjLF59i&<)(P9{GanUPfwHm
zsZ9QdO#C;svzPxnDJ;5~81J%?-%`~JV!nx5xk1#D5VjBVRsiQw0p1E=J~FghF4V%H
zZlZQkB<IusJm&iL%Ju&w*<VVme=U{&O>6J-KkTUN*Z;S%{zW9;CtUfwtX%(3lKrL3
z`tPLkzv%6K{MVh7{rdkl)_)w$^=Vl^?)rCw8S?AsQ-FL2+KO-qd#?D;YD3G$|I_#J
z|8`P7e+EB<1Ai$}e&=od)zY(Jo4vqzh9}#svHZv{O^WZbtXTh^Yl?u+k5mBGu79<a
zmjBJY{lA-1di}?<VZZYKL}kVLPX>K|#{BOMEffEHpZ|SFrS$qwrvTXVfImgaUH{y3
z=&82<*W3T;`(Ik8)7b0(J1NZg<>Ot}{7=>{u>N_aTmw7t{r0whKA1<D{`nxEAgNa#
z;K=wdyx*VpNOX#GJ0{0ugFS&&>;H+i|4Zb5PV4{eW^2FxcT)E2|65)E;zVHUmCsAj
z`e#qZGh}<nXK7d-F~`=d|F+)D*#CNKAOCA7<@4wIQDyMSqti5)A?5@FT#Nn9^!i$b
zCCi|*%0w1+BwrftN25sBiDKt(W*~^E8_zNEN$n7@(Blio0Bv1FAs;O)3x5JtrJ9<>
z6^7#pyH^Zgba8_&yCwK-0c~tyWCG}U4EtK;ABe+d^#j@h?Fj)BWWWVMfVgu6-Y+J|
zcTj)`@3V!GZ4v-|1Z+IV0Wv}0f?$RTIG8LMJx(u2v@Uk0?3T}AtunNL&)tML5OG0<
zaMJN-H~=59ZG#B{3qtWE05aqSwuR)4U6nQ>vE<=&xH*-X{U)wK6{8m3fKs?iR2~}f
zC8;l8D$x~!8g}c@^K5J|x3DO>Ocs;KnSUKFL{vOqk5jtpwz%D(VBtH-q%z>ZupuGX
z2p=DEM}E)84|F2>Xo^YTFM;PH3x6u^kDLwXQX2j+8dL;Go)tgfusRiH;D8SGHERe|
ze_OyM?OPS_dr)r|woPju7R;+Uomz1-66hEa7B{MBS|*#3zj915Jn`S0qJ#Jv4|sq+
zrjn80KcUR%B#KET-^T&$K29+q*WcYq5>|*|u5!fph;HeZbnMwjZ+&;(uK*Dy;XPUk
z=f_n(hdGGw&(qhT?$J`dZUa5ctII@Rhv`T{46H?)f-Mj3kMM#?<~FIcL^7+T?AUU>
zXU(AUOKTgCCi^TJ$;^Z;tQ_??IrCRF@aO?30JR<QuW2_WA|GE5If(@(Y}#(Lh7wa(
zCMKxHQ+Gj-&+F&QnKW86mjr8B;`+;e$*TkhjvExt?sqN;4rBUR5Zj<SxVgEy>4V(L
z02AP&-xk<MX56VLeqKg4%hI-<nPXWz){kNi8P*J6$@`e=$tLP^v60i?dd@NmBPJGk
zQm>+3ar5O!#d*n=#E~z?t|twvT}YVm^AaX%yc}6X%Ui89_GM|Ri2CbS7$?PMYpZ~s
zg(P@sBkL<JEA4+{&eIE+5Y1iZ+5CT+jZXUfui5VG?f+er+<SF#s<oUnn=?qLWjvv_
zxZzU$zzLEGHDjsFlT(BdE4Pob5~3g`;=c$*_YZ3387{ODG2-;XKC01HPg%{(-kS7^
z>QmP~3WDX|3HvEG_|n6&v$Asi@5cYXp?1>#zkC1xU6qv=bU~Dyo5_0Dk8bBCgVxk|
z&_7yz(|fvGFcqFP_>obYGJzISJ<3E>%FXsz99}735s`?Q2nrO_Pr4pi`r>K!n(2nb
za*$t4tK56F;1^J>f?rctYU$I+J@nT^yhy+TMuJ}}8N#!!u|`75<&m{ftlddOl`oLz
zPtmnx5AW`NCDh;O!fU2s>2_|;z1ti-%iQ6WZHt#?U;FaNvReMf)*!P2m0<4Kn=1sX
z<$pu(XzBPL4Yj>L|JzB~XcHh#BOIQcKUe6G@RZ<(`^5xt1L7^V(KQTaw1tDMBaa=%
zpdE2q@+81G2bEkX(v}CW5Pv`|krmbH>$oyIP`L?DWTfh12PFBPepW8@#Afl@*k;p;
z&}B?nU=K#d44DfXv7lSQ(nEdey!F~O<9+%h;Y5f(*4opC5X@^P6=sY`f!99Ep|Wx#
z3+4cn0}Q5=%w%m5UyxS{gAJBfC|O{@pCFIISkwk`9)NT{=R;?Tzz_Fm`G)C0Y!by4
z*c<TWOB6LRMUR|Fo>C;SldFsCtI=RQyf{7^tek1msiqj9@SL%lp5@iVDPm>_Wq_oX
zz#u)C6v4~e<KgAtW_*5ib~d<qQB3nt$)bFEb@G02Gyd_z@ci^e5za%T5Z&t!=jUGo
zwlW?okR84II*^U=C`9)5`0T4eIE_md>9?ct)%EBFF_jU>qIWjD9iN<EUA`pCO5u=2
z^8JS&2jkPh_4(D$FM^=deipgw;q~Brcu6b#_~C_FY5^`;q;Cfo*XPH#gYn?<Y<T%H
z$fj_}kySV2w$|y4-wyvdxOo{7C1a4Ycuu|osgy<{Pv(z?XP5l#nEv^~V!r^JEaG9<
z<&$^EH@D-T1~;SO)g@QEGq<XW^}hu{{(!5AyrT4=zrpThaSI<^|K76Qk1SZbXe9Y;
zBc0Z;7bHM_zjQ1%kO`iir<o^f$lC0>)QSS3Yu|mqCW_(*Lk?+ZCM==wJU)C0q(JN<
z{_v)8tmOmuT0#v^ByB9{3U*F7{$b7NK_3MEg2w{PTGxHxENnT?pWIkvNOIdb^jgaS
z^7(VL3s6UaQIG2|Pmw&cz9>v_&d<Erm=^##5&n5?faFq>J{k8piuwE`3n~-qS&sAk
zBrSNZd0gsX;~CAx6}WM~TwYD=m~Yza?3Mxv_aZK%Ih%Nt%QUjzBw9*D5zTKlsuF!2
zCS53~x9y}s{v11O{LXx6pljq~md?R-%y1g5s#1`x!*q>%<nyEQoZXyL?3hJ6I?~RT
zyq`lK51({TC)?1Yc62h}R_y1<b*W%IHVi~0LCb%a$b=#TineT|?VV>|j!!0b<(}+?
z?w?iY%A@>jB3EwYX$7tfd9}EGH2AMe)}}CfB1xNA^QGkMnlIM2;yoAwZTeRzegz5H
z3DX<!gZE%iA{KlY=RTnbc@IWSURYGPF9`aHWnY$OGOwERGBX}Y5Uw9w`IMFA!U*3=
ztSfMRI7KHmB;+!EaubWohg#s-K5|Utm&>n0TTa841m+J?G9{jRdW3(MXcRw7G7Ubx
zXpP(?Wb%v;^Lb_NF%)G)DgGfY0a7*OCasHQCw#19$@7YNE&J%V1tLL&v7KYM@@IMc
zEBrcQ;90-r4OY}Te)T+>-YT``Cn?W-tlY>?pMX)uATw=j#g#HH=?O*S5QKUUMow^o
z{4g;-m6(Lsb;GJx@-pn_r$I{Qn_HPGNzTF_Hx_XWXkIz?vJWh16I4m%e}8o2+$}54
z7Q}yFuKuu`EJ>%1<J>v({0U}Clz%R_$)dN9mTY_^uIbt$gmSWE5<jYtoFp>ih4O`e
zsCe<0Tq%4uD=3R;an8K8Hc$bua%uEZDfAS;^5>Bm`z<HVlhfuY;E!m68Z-B!1C*N#
zT1CT5m-#XIK$tA;r@zY1$C^c$s~h<81=MHm9Myf-4Qxb6y=J=xwCiLBeN^X`a3z+D
zGE-0ztGXPNaJ@#^n8ln!zkve~xTC<w&J-N18w^s|{li00g^R$g#^zeif^g?J*su*|
zLGebad2+m6WH99-uwmP4+l$SWOp+IQ`(<^jdD}7V44*)s0wg4A%vn;>M*MfctEOF9
z3r$E95yQt`AU61=pShklsp?76Cq9-nl-P$h=O(LcO_#U3vv3PVumpHD3ByWj{D7rC
zK+n7O-A_xILx<1kWC)|!4zK&*Z%Sxkh1_=*1Rm+v>;H|&x6C4#*qQo>klM^80XQgp
z?ZIFs?%qrMv0lx)<++YbWJv-vf47|Y*c4j`pP%%K+e-gWt|UDA2FTj`U#(31mxj8J
z|GtwV>C9^bAQar~pmU_cw}r1f_}ijvwy~075w^eOL6{^x6^P`-Rmfv%*>1<H?4<|m
z8OrMQ|6s5ye9s*Jx!KS%@t?Kke*N#Fth%q2SjUgKYy|-Hyh!2w{JGSHFIGFurtZ0Z
zkT9*P>}n}}%#-)gzxqJaRh9qr-M}?myAN(puH#b<D)uj3cGHC<(gMf$z4U<Wxa6+?
z&~EkJ2TZ31^6Q50I{$JfTXBLl>tAcO)A66RR&#&<dnbh%V!{lHhr4Vj$ifeEqe9j)
z)x|Ov^GzgU%ni+0)KV0MF?r;;zTs5;t=il;X65=`@D2Jj$nf!2Fdr2Xb1n2Ih>p3Y
zjZC1-O#Q+<I`Zt2xS141Q}DIwin;u!jwMo-|MSQTWGicME&p$&<A1P_0DJzwgYs4I
zfBQjMl`U+~`}e&6Ie34>)4p5ozXAV$L@tPR{J){L)BL~D+2?=RN!ca;2h~jdJ@0)P
z-dmdQZoyUMycFLnTm5EAS^oc+P+;r$zuIc1_kYyJp8xNp?D_xq%&SEXkv*6GZcADI
z{}@+*_4<D!&Hwez{``L@WzYZj`v23)6wWF3QsvtyrTIT!2`tCWrcz)n|Ifz%Ywh!Y
z@22ee|DOLpG5?o1#a;@0?M34MwHdPKc<Q)5dfGPD@PAd+Q~Y1koBQ~$yD0%80jXDN
z2Ci4=-#nQXslPN{`?8xNt^b?B@#)2&HaDNTjg{+P>$DqcI{$m4t?T>szl-wfm6V0;
zh6SUqRQ~cy<P+SfwQ8+j55k)<cs{L>8B3K~!)|>7%_*vj$_lHiV8?R(IrHj=_Ww$P
zrH%e-*)UMZZwu(7!%F2Hvgaa0s^$8C9~fb03VunW5;vU4(rLN|;s3~Y2;w@5NML>l
z0#^z=T&q-Gy#lu^{~*ge=mf|KDisC%a_u9Qe~RD$kzWs9dGhZ=TH_1_fQ4TJL&tJ|
zJ$N-mfx<e$dd%t!IX1lBuLrLLcDx#^!6EScItw0a;@5*$9E>49Wwk$eQy-crg16wm
zLwEov;FtgUKmVWq@BjVZz<bC2=m1Q}g5l4fD);oM!k>!zw=QVZKK**|DsYvC@+p3*
zhfj6+X)}D<l%KZ3r!DzuJAB%fpLW8h9p%#@pxrw5jTsJ*5iET4>%l81{p3VSlP5_S
z26*t}2uz@HPt`}RVuD09fE{rBkI}COuh4`jqGsf1ngj6o_l1wZDJJ)1J>d5gFr;57
zCjFvJ17|0LlHkwY59s_d$^cieqfGCSXyar-0(Tw)W>-_`Y%tj4@O%C^`31L~0Ln?#
zDFNWM5@B<qS^^%wx6cD$0FT`g{`KIMXqi1#_|s&4=K70#64wo%h<Z2TRxLQi&griQ
zufkil?0!l(gf|y#I?cuJD-StjhAp~u-0<)4ouha@nqxv|pd0--WGo`V4Jdz*l0_dK
zX*I3)??*=!1u#Z-bfnk1HI+W8@MS0eTlpIpVaGt=K?H4V*BZ4?g8N|tyakyd6C546
zj=elOq73WmWEf`)h5@*94cxES!!*7Tm#fFJ`>s;?8xU-m0MEy+Pa*NPppO6vux$hQ
z0I|*3A9grXxmXain6p+Wr=^URKAyA3wFJ{mwD#&1NHWAq<?imza2?{>s6q`1KxXbo
zK)K<1^y#;i5klaX4+PQvD-%eN8Bzh$IT#883cE&Toc#x`hYeDX>(%)HCKz$0a&$DD
zd#)cqC+Hs?0ZM8>;plV($ik!VkVyx6<RJrFJl(hD+P3?V%B4AUOc=QSlBcaDmCBt+
zBeR5a`;MYd|ERnIiUQ8~Qu3e==O{ovsk{RJ5ncmT6hQkqLALv`!k1IO0s#Av-QDK7
zS+N5=8)64AOZgy7jYuu`yR~V0?`W^wISvA3{^gKCzd=?XgcO`6$8|y2@lFt6XG*{U
zL5L-ZeUFxee|&)*Jcl-WdXJWX7_Ns%Ux;XBD2d<$A3^iqKl(U8hi|~~6gff8BO*VO
zZ|2?dOL^654oQL;41kX;<RiyG1V9I%PnZNO8#_;BD<T8XCn2sSNS7g3F=hMU^B0EN
zpf;_sKUUOb@59SX^QDrX*ZI||w9g?K!Z>Qf)3`%oWKW<2CJ49_78Ah)GvuS9k#5w~
zy0}uUgaaNukkqzHBHmiH8sYK2OTrYQJhy!k8za2kF9uMel6c|yuBj}L7A|~6i~Go~
zJhPxg2d>ApN72Wj6^_rF)WYN_C-dvS&b!kYZaIyM!rHwK^IPzcDCr(ZuU7QoMx;%1
zp1BwGRlSgM<!1Ylc$w`<JqiHGSaL;)IH|!oX`0CkjT9&f4l71ny#(V2iUlN23KWH>
z<WeF$fFk`Jf#BFt+a;?{SGXkMiVgmq5}1;k*ZdJ#u8+cAVP{$(Sg;fLlr>^!I;Jn`
zLIq;*lwc-waAm^ag`LOF^pG1F3C*28c?EJ5^-ATMjUg~*$hc3<ihHRd;Oz)<hh1VQ
z^yw&_@Ps-?N1d8h)Bfu}|MyO<S<{b>zzjYh0KsH21ruaIs+74F_&CGHEIkPkqzX7N
zT|`(+f{(6$-v__^*MI(BoUMUTKvDRw|NK8Bbw~-PJg@U#|M`EHFxdh$6=C*-TY)0>
zjO(wY--z<4g{N4qucR$IMYj7m$zK6(*;FdGGfco7{>$}&&({d>5t~HJ<=jM`j|><f
z6A<)(d}xa)NTqH>)*85QNkEB3A5mJ^E;K=OM#d>SLCB#(2^th(vsS4bTNW}XY!0(u
zQNSIK{Sw9vXYwXSq6Th|XF~&-JmAq?UP_-k3dTowJWn$1i%IpnyGS8Zz@4BWk2({E
z=wg>D#Ak_CvVQcbn-~mcwpQ}0-Ug6UA5!S7i+3UQN#HM-4an{WGs-SJlapxV**IW5
z<{^muh?da<&m|P?_)!3-v=z@aUlVXA#i7ekF&U}xE}Bg`olQ9^J$-#MI6egdooQle
z(rF^N;a_s+AT&(^e#r?v`p8X=S4GiGv4su3Kmh#-uoJk#@Q9{yt#V8CsyTuV0hn7P
zE+LrO2!YFvqC!QMu+5q~I+%BCA>Hvn#CMd$1Uz5}evx?juLrfd^ph^qqobh(mhJ+~
zpb4O}1g<!nBH#emP)!cNS(gKe)^qLBItq+KN>-}fIiYCdeP!50qyi`B!yGCr*sV=*
zFk4KRe6n%<5FF4>qEB${+2{>J*2E?i$>5hM${VUIkeu-#^(hLJ+!u$8mcMu~FlO6>
zhn{CIiy9EIxY&jJxod{@O-}7Y-sOuAqgzT?T8$uS;=Cp+$C%HMyi{g)!1WKHV;+Lq
zU2bBuJ8C{39ldpZwmtF@`X<HOg8`mk8wX2{nE@SOV!~`##vQ2W%IQcn3yzMm2r*iR
zC!Bv}@%HX=IX9nMM@NzUN1^2#5%n^5+0oI@?gGpggyTmC0ta~vgzYZer6@!fC&Ng7
z$B8Sy5qN~g5!0(<L&wh*HZZD`KsX27DR#^g<OhUTTmjQe)@1NP&e|-H(~L(R9Wiv+
zZch|H`RFKG;B(hxmWPcVpc8Owo=!Yz_xQ?DuK9)zNpA13*plQhUrr~YFWrH9{3Jpn
z@iYuim3Sz{+`401FMMFap0^5mZn(|^B^J0#tQ!`#_6}ISI|oNcHYNezBRV=Vu@TTU
z^EXP&Xmtu%Di~Nl+L;hA`yviI4|)+s(3L~tMnUQFL($Hcp{}N|1AeBQNA=~nv3lbS
zM=x?i>b{muUhfTdC2LiXmNxo27fKve*TWvNv4h6g<YvL&D3Kpek@#s&$i8ovI(ZX6
zZ_0@YiOf}#PfY6elPXG)ZcKpZqX+CRh`j{SM$TO<*0~160&oIFnIea34@jW~n>fc-
zENr8@e7*eWDAc@}kPv!rEesW7-U)t|vcK;DBq^D|VE%=HJdG541~kK88L!AbPP1K#
z+uVJ~fig4;-`}GpNx;uz!3E#uiHkb8D`NW@Fget#OOJ!N@8P2mv@lY5n`}zG0vDKC
zh<vWdr-gJTh8yX0kq2V#o#6+zMTiNNNAxQjO`)*_cj2Tk$MTMCGz%(!TT?UQ7oXWe
ztA^43s(tV|T6$HXOH@Vl-Z$*c7yh5>|IgmLF1L*&3xo5UPf@1*g(ZFh2=GpxcF)ih
zEpx2fAtm?e&&NR)fdYvU2yg&Uvf5U}yutq1{k3sU#6HG8&%D6C!bW9XPyoS;WP7H2
zzV?r98?4I8s>;gB%*u-hZQtDkevvC!?4aV}UgQ5}Nzs&cu%xt&S*h0Qjb^KD6jS4J
zf4J1J(w0IyCjU@}7pLoO5XH1rzA;hll8`ZNZ?s#@M!i<8m}_m=oZzpTYin~7lC?Ha
zOKW}R<Hfy}i?6g)@=ns8X{)UiyH^hI@+RPEVJ@@SN;`V;QVT7<(k>eP^SXaBI7h=#
z7hMhq@4Huh^sfIi{G#i+0*VbAg_(}M{_tw>X3(P@hy8!Q?vJiEcE+3gZtBA_KGOrf
zM_<{MrS^I#Jg}SP8nktkdKv-2%qMsJ0Q0j8=k5(CTHJ!Ks<_Z6UkONL`85t&-oQ*L
ztEK|?l%ORmDq=q?m0<Mrpp>^nR!DUN#z|lvl%Mzk@&bQGLU{@4bOPKuf%4yilE<C3
z=Z*A%RZZ<_`c0YCvz$QKs|8Ty*ukSs_x!kfbus)I-OY)Q7Qj%!&PV6@17(}(JweYh
z7VxbH5Isl2yuD^}-g>yyj$B$RmCl2h>OAOb9;{|_<Wjkfy;!Qo2)5q2+8(I;zj^)q
zh|N4C^aJs2W}ad<1&UmoSU60woYUWyE6+<CK45zjMW}l@pzUlD6DtOriygX7j9fqM
zcAytj!PsZ1<>5_ZlpU8pC|ZGUxgLpj4i7FqFet-<Juva<FaeuihCIP7x9x*u+02(L
zQK|HL*zdj@oS&fH+wS>Ezf?jw0%)PB8@iEJFIh%(+nqt#hd6*YYWN5iVDVDR4)qaI
z>_MGEp7y}B^Ny0)U8eMBM#>K2PayKUuvIFreq{!RH;M7AgG}9Q)^xMZzb%zi?E~jL
zh%ZAD5kHpd3Y|~~MRQ!KH#&B`*0d@{t!A0ER*SSv({Y-WMy*k?teV-xwo|cf+^m`w
zcI;-gQEOMNnoVkC+9uU{bINw%CwM4e*1@#FjxI}#XA!y!{FkwOwxVZc<=Z6mz@ba=
zn-F9IuUtU4R7_)=F=YlRHU*tO;9Sx+*iV|UpV5K4Sgc~^#b6UZb{&_5hsn{j11r**
z$z8XCMOnTX!|7x{lmTd&qEUWM|EpnNgKygOUSk7kavV(=2VQqn2c|+{&1((el!MdP
zS$Ef-KGN<|@Cf#6d;WTkcDZL23X=_y1QQg^gOz8q2NtDt0zInib+C-%7+dqQP5A#j
z5);b7VOU-_qfiij3xn<%_e4r8*m(oP>HbR;_#o>SxjPLNh$@Cz(M&@#n;<w9M=_2G
zWVq;{4=f`pKZV6U=$W)r*YkoqDQFeD!1-hcrUY1(P8a6F^mbLGq`&oGx+5Piqj?bL
z|9XXIQT{LaFppuiHo;`S=D}pYY=RkCp*tl&SH4AZI<p31*o_VHM`pkAk}&H(D+|bf
z`Y4xOR0pCvQsVki0ilmVXuSf52@H0LkPt4MP|eWP>2cmnE@&CpC}2;9eqa-LvCw8v
zQUVMIl<va7Bgw77jYG-ZO5*G(iSL&L9ZcX6Z&IF+X~h1kS&=&_Pi7Xe-RNdgo`Clu
z{Qa<i1e6ZqO$+p5nsQqfcl!bf`hNvJmC;s_MsO5sCN35VYcF;w1nIP7w%o#6g|`Q_
zt@41At*7?kBU|u_jxKRT<vSd^7Cq6xT(JkYuaxh_YbKdSI)-A3@5ueYE-Qaei}~;(
zmDig+DR)J`a^~M@%ge8Qt7sdEPxq(MxZCUXN2Bq({?FsVG4Qu_QcYY@4%r~d8gdU2
z4z$0;p(;C;o&}ZTD5bcbfD_Gz#{6e)WR?HAA@`k}8IStCVgE`&X3tq?_We;aUmG(I
z;_e05)?wQsz`?2Ns2fG@%$JM>9<MiFqb$jx&@X@Wq`i#`v6%=rIK{PctrTgprR)-1
zTL$_&6C;$8oXi8wwp~Ur*-mN|J2sbW9Y=)7O{C)m{w477UBm>>z#|$Csd7&Li|?Y2
zix-{F58Ynx;`;n*JUITbLmQQU7<A9Z!;91Y_`G}8|FM{;KzR<`g~HGLB^28>x(`+%
z3hsO%_W&bIwHJOZLIPK`&m$BC%(IdzLE^0dMKM`MOj2hKM69}P8~~gMQ*DocbBw5`
zf*h&~>bVM1@{pnyc1x5bEA})dmTOXF%DlVex5^YV>nJuYHztdylQME?%+Hdm222_S
zX%D6TETNPW`&rNYt`<$(ffABt4u#CtisyaHMOZ6Dg_le4?d3BrD=$T&)*N7#P}{yS
z5ML*~EAqNBV4*OiEX^iR;8mCbw+ZVTe$wcXf}NYB1$trpmFn8D>)Y?wBGN&^KTck8
zX_re9IzhO|nE^y-us(x`oz@~-SNO)H{zwt~i)XGC22tR|dM{WkR}>tDQKq|+s0*7~
zfz$NvW(-3R7(OyY;Od~-><HYqDMrO|w3^C!M&%!VzPKKaN7t`Mz2V^UYH)E*SyWNV
z%0JDC&z6ARix}cyL}djCi-FyYL89i*FzgV3^)4a^qYn%0;~BBJ>K@-G3aCeL=<5qP
zA<9CDudSjoTry>R6O~sH(KrN6KsaO!%#9F+IWnsm9sFiBrOTircw`jq^I9q<3lMjg
zLEs6tsZNseR?2u|x)Q?XA*~nrk?|>~S@LNagfRkMf82jFI3HXM&c|;Cr~Owu$ys#H
zY|yJ02ly9xQ$f^)ru}tA!h2M7?IQYuKH+c{A!5w~bSN?Ck1no<z5e)QcyWFCifw)R
zBfE@5hwi%(eBe#RKjrVI7ridUh@*28aa3mLMH(#9eDp$em#9)v14u<hS7Lj9aoite
z(0g^(8^8FR{`N3_@mYYTe-}tSsDQ?!{_y>v*B@UF2j{)PW%u-nI17rp3<G-o>73rg
zXFZtyg;?>x&djNRe_`UA!s{4gK^p9~ru^`y7oT&8<w3$=lnh3234>ENK`-*Bi!=>l
zI8f&NzsOKlStNCUI*C#FMcy`WoY8i!${5HoM0%<(x}Yeh9g*eJZ2r4Su9%opZ8XQQ
z40oR>VAw%M@&P6&zBtK0RasdIw^HUUpycnHWL!T8<2hM{!IEeudM<pW*u+70`z7FJ
z-_&Y@Gl}@ZtP0GVq`+@_V77mb0$<$Xxe`}OSr^9TU>SJ9>>lWqN5;BA`ImKk6UpFF
z!HfHf2NQm0^}+P5kJwsw?S<=4RN3LXTWK;1#y?b5;tlA&^1pV{I`2vEQj8^r=3_2x
zEsE?(8U7Mu-^QUmVahJ+a0Nx#iptN$jj&bHO=vP-X|sqQhuAYU>mO)6D#&(1kx}$O
zh4`V_rThuR$Ya+(Mh9GSc6}~GA5!8-9hZEx^`{-B)IvSU_{9lAPwTk!&`;2T>r-9r
z5UDP=yE~?hW(V+ICsjzM-yHs{(f{PT9)L8wAeeasjk@U1ql<G0LEP6mmEEb1QVdz~
z;GuJ;Dhcl}=7OJU6<>w{6+Ff+_{5~$J&McFy~QyZ-;n#A4RU^EWz)xGfn9I&&$)o{
zDxQy5p_}s)_%dzy4Z3mHjd1*_ZnVc13FGl9+=4)Evy9`)F2kSl*KfG3Tdaf~X(rs-
zDQzjFr$*yFG}Xu@BTF+sGF{?dft&u8ETX@8Huqb%&$@V_&u$1MsF}6Qo|q2$;bhch
z8ttEcxEx;mx!(f=tq%QoYjJ|CVDT?;fD{Y!wgey>49>Z2g+(RD*sP=Ox{*1@zRXdP
zAoH!ts@u&fB4OXZeUC#~mY?y)lfl*7>(}F}i+BBVzDA%_z6paxCu2TVxhwm_`73yL
z$$)+F2UsinDAzJ4`AMOW`Zy(XeCx8LM^F}?t0rkR3M`*FQ2~=JrhM?f+GT*>8S$a(
zx?(2&2ZkkFrECCPzhm(;B54VW(fJyrCP+h<?}3sP<6Zas=Y%Tx0`vGuVoMftz#YR5
z^}=i76UU7^=nc6eA-a4Y9Z}_d<#AV5<OTG*6-05Q^Yky+zt0((eicKrtN_B&=o7*N
z_OJ_LNI4|nrHdRfC>_a-BMKJmm6U3v6-F-{2X}tt+N8rVpwRchfI_wsB^^f*iP@`?
z>pKDS@UvY9oT_5k7nZ<YS;F6F83t2v%LERxur()o;cIvBC=qQpZRY7|f)iaKU{@T(
z(VF2G-m*B*Z-HJy)_M3rs2W{#6uCYXC`EgPrp|&efAzpz5v*eL_rLvDw8V?Q|Lwoo
zW(4t^gvq4Uod;laLlr`Ttpp=I_=3&d*<2FqH(h~rqiKkJYd-cjoI|lRnT0{!^JDRi
zLHNcv#-Tf#k?@Hq@!ooh{fo?1g+k&On2;oQA%}+}#L`+g>;^BP50_$$(Hw`w<`8$f
z5K8FGanD{^yr#aAI3a2CJeuQB`0?EZ;SFG+O-X!5h_6jou15t)vWyPV!9>a1!6d-R
z5powx5B%RKe~i!vCckhAbF(L=$nwBns>_FmFzaL1TRIp=M`#+vEV_$5G}$PMgXNOg
zYJ2Xo%bsMcIkAz4?=#CDP&O5z_%4uF3Y-L=xd6)@pg@)(xuqN}SjAf4XzT|Ph5;2S
zO6WRDu3fRi^!8rIMmQjr&<C(;%?Vn#zPng0)FGG3nMJVXYwNdjx79r*vBpP%tZ@u~
zNS=Y^-m|?uEEKK+x`$!F-e@8J480<z_XvDG<(ANOJyQI+CwXcWJu~uy8nOqc2;L)^
zsdas+<N^ri1z>1u)ZfZyixY_?ANNZVQJyIF;x>EeHf{(KaUiTMn1wM4$!z7}5KVF9
z(m_h-!{A&y9-JQwn8}84M}JDoY5+i)icsY^B&58+^!6_Eo`)U8+$JMLKE)x<BXy44
z5xZff8+xe(C@cfJRMII@ec@@5p74IiWwLK5c&&WcrBX?Fa+FGNVI1^dkB-nuuU}@b
zy0DFhfXOM<fxilkRqT3EdFlmIv0$KAYl1O&w<7(Y9?cbGOC@MmD#<N%9i|&82g{9+
z<pmKDSA0CDC<LC(DJZkMg+i%xxeAv-L^`DsVlj<$U8n>`SH@o7Gqz1~?@Gvp`&M;#
zS3Piue1Q;qN(X%#+#wgV$A}I*U?2##=CT=OuIzn|cDQ1f4ahmP$7pbJ)gPV#;b1Qc
zki80p_(jhR1pdIntRl+qenf5Kf1m@YYD_(HNZ|_iaS0gp6}95M)a+Q+Abvwe1cFFJ
z`k#JA5mDhX&-T+`=2{f`2bpL1=?Ck1NU*)2=!^9B`DrI~;@?hyNC?$1ad?jo(yxtF
z!zh)wY#)_MhxtJsi3&yhTcJVqPW#>S@nwHFxHuk<`n`+u<535_te6eMc!{1P53hW>
zViaeJgomS;|LYD%Xu+bPv7ZZwYNY|y5b-R?8}Ie?;1q_d?>kgZcg|a>IAamk3BK?F
z2WQ=r{&?8G>JCK54ti<UYHWUX0EwcQuL-hKeAk7<N%u^LfQwa(Vy!}|IgIJjMloJ2
zk(M_QN8$a&>Gc^rIzI*pg*`k1i`=m|9>;^xyYcmiqIvap*dM*UIHhP9dTVX@S?<cf
z7h|YrFb|AaZ1%eT#4%jT1|vR7KB&Y_k-1BvoxG6U5jR=(#;(_pcn}AfwwOkx940qh
zQKddg+h}Djsa_cPe-5U)h)-d8eJmU?<&_85tRhHI=4+mE4@K*5U;>?IuMo4^=J8NI
zB&Ch;9+}3%^|x?H;AEXrsZgMT-6SQS$rQIS@mcZ@2z+yWJ9>#O-}j<jjAe7~3Dqc*
zW7!0Y={8h4sL8D?7oiN{+F-t0bGnneV}*hLmtd+)BiACF(|3(=4*OUAb8s>_?*2UL
zpeEQl8D)$81gEY$5^}Z#6qs<#NgBjNnrG<sUpoY*DarjbMJV~SE<}tpQNb0uw}7#e
z;FauZ=opHRk4U@^x$jBpueOo;aWVtOB_INt&W-&O7My&tnBhsxDcb8eT<l9!>I%s6
z>wA$@(sPZR-o0Munhk@Jlpu<hfew}=w1^+$897ur?(VJ$A*GT~7Ybm;r(#+NyNo8w
z(7km%cSh`q5~mBgPpK3JLF}wND!p=@81yhIse$_-ySdn+P?Di6j`jiTHacJc=;);q
zq(C}6V(D<<&5LI{5lxuS)UI`vOE?&fhZh%Dr~T1LKDxl$!-enNgE*0*KPoe^XwSqQ
zh?62ZU<G7s7B@SM%KVLtD-fG@GZi??qhG6rZpax)#+Zt7ZJHHQueC{ov})C<QERkn
zjat(&o5W~0t4_<PHHl$24BB8?ZQ(|{N^qlQTh02^s5RT{wMpz$t_xYpWy~}T<|DSr
z;Y{%!lWo@$FsEN<SR!j2-9%+^(ulSUY)#@-j`&a-PX|zbp0pGixpbG(uy1R@9o1Ck
z?ozYn*q@1{>tGL926mK2wg+uQaB=a%r-XjyMhhHUb2UoF=gGs}xTl7pQyRABi-7HV
z`4)#|&z&lkBjr*6qscso*rQgYJY!xa9$zx3Liq1Nl9UZTZtJvDY3Qb2(@ee6(#>5o
zRBzjkWf(OwtyFN!G1^uOSM7SMUTK=xsMoR6ww+qNZQ^OmtWPamGh0@rhAT$1>C~;(
zR?q&ONu<`i_64$KmdLXl&2dP0*z#WF%9s$DrQ9BWr{YIbacVc{%`DhGhxF{(GxU?|
zc_{LNJ7foUKI|-92vLl~c(vS<xYJn=y2G<V;V0o2n~g0`(jZcFeH^>Dgm!7vZd-|^
zOi8Ly_!05fTdF33JuQgm2rukLjhPO@MWZIvHhNcyCop&#5f2ooOAoGM1*a%1@RC`{
z;{bl-$1{y1ap8S}4H$%cyp01D3YW~+2Tjx`ZV2!^2*N`&Q5*vkAsdpAZgd*n+cy@6
z*1W?|gfFTSB7a$ihhN%`cL|oXMG$sS|F0`Zhl0d2vkD0z0-@m@bRLYXIk8usvgxu^
z1+&eH@&(z%0)Y=LN3<nGRHTg=>C`(sYeimWkDdO~oZmjp*_w4$<crJU;QipVf6_l5
z_b$$<a@`+F=9DWB>|%23j@=s=-=3$BeT(u3+sIQ>Totcku5+A(*pG!YNI)7K^?D$u
zC8^JOItL!OtbE_Yb16y(l>`>T_Cn-1z_zVLmZimk29jff28!;Zm@GPJZ<da{raNoc
z6}}7X^%*J$LFVc#6lAvGTe2~^r?`!97`qO(L?WIgwr(gxgR~ZkO)>B(^yI@KuRcZW
zglTO&ePEWCxk<Sg4tb4#5)nu;aVh=jk5n~cbqx;i4Mw-b4}5$`8*+$Nuvi8@ZNQAH
zA&HiO&oUlS&StT!8tVytl6MjI0LFZ&z+B24V^~sVcw@P>5Q{{KbY5kF&XT=ulGKa1
ze3zE*<?(zKiG_I?BM?SZR*$e126VbBFLsxnLZRqwa7S+Gg~j!s?832RM{0s67Sc#B
zW5vY<k}WdgDwQ;FiIW+J0+BF@^-JvROAp5ou;-Cm;>oZrWx7nRvNz)|w-xi8m8p_o
ze}oLZKMU%_^0D%}(JAGKVc=;?5Bn)SJB>${Qf`RPHb5>(sRR)grBW(969R(R5qulm
zv7Av5tdo$m%-}O8K3jOc+N17SAKkQ~Bup++C%+l>KNbp791|(S*p8{F!9j2|ymZmQ
zX0Y-o9a8aUJqg`++n6MpNnW&;gO@J7J(%TAl{$GI;bGvBvhw%Wu5Y{ktbkBB#TJ)O
zMA9^QrSh5_;#D~tGX?YHoJGN^kWHGGO7Zwg*Yyed&&`b>!Q7@+O6Ip$?2wkTEmK*Q
zdA9Am-(`;FSM-LR?A*m{g}^;GkmprOuA@UJ1(n&sY-y(9DXSQmLqh11pDZ=iA6;1`
zcjn@r(TyGj3t|Tg?E1PDEb{6crAt4-(S`G>90`6{zh~hj{a0BB>6oFta-n8gs8rj5
z7LdC?*%`Rv{w*oq_3RLx$xM*MaX*QS<;8?@i)+~o`ERmT4&A{_CdNm(0`ErhnCG{L
z10#|$CQ|hlC^Gf{kdX&Uq9u&v9W;S6#tIWnGA9o?9-cvEG!iprFJ5`+J-V3#(~FYI
zC4r*W@rBBc!@0m$3>5f^6CxiaDxhT2X+!3&_2O{^;`Zkv7F#sWWrbjbC#Y*j|Av(3
z2C`Vj_iQP<qJKu($a+P)zQRkc2gt*8o1#F<pf_Z>L~hJr>q(YS77C|$hA%O!fB+m*
z<#A3zH`WtM?thAjZ!0;NlCn;+-pxO~v{SkmU_nFgNtmfr!Co6zlr=_)=V_sE63}^n
z5X_bZs9&644*O^0<BPNI;C%eHKkWZl#*~rfC+K9yJh@H20ti%{O)5Hx`%TaoD`W$|
zh?M4ha}T0J7R{QPA0>6Volld^jt6hv^oRZPtCWBSZ)p39Xak;E+rkl%DM~r!P*G&1
z5Fj7nWrQa0u3z_i7w2yVClgjeL>+L#B)SQo%7Pc-<v}43txGK7voU<#?aA=y=$|VY
zfFqa4D#xmXEL~YHnM!XuUd8hubbn!)Rc~5gAiXsU2;I28-9c2~D<HHWF}87x6KPMq
z{X*7A5d%A{DBR|{Zyu3GD!g=A(0&JfC>B2o8?ZzheJD}|v3P`vONx6G6F+8px#eMZ
zk^4&|0o{^t3P31tq)qR@#(IQ`GXno+XB~iuUwBHAk9inIJTIVp(PWF3k2pt0rV{)n
zNTs(?*{o42erfl%alWvMxVe76?Rz2>C2GTW!3sf8os5bRTeby3XqTe$jg%d&m{Fnw
z1$j3t_IFy~)c#Ug^-(LR!~*TRj=7E-=@*o2nC6a&#}M?l6@;dQCoySZwah4v8)LY*
zMG2?bxZ`qrax^ENS2*vU^+%W8UjLPHefLhUM_2tJOBS<PY%cV!hxA?oi*Wxxu3o)3
zpp&s;j|W2u*Cz2?bXX`{kNQIv%r$=BJ-zNLeKcPcPi7?Mx=nf879uTpH48LR4eiy-
z&!2Tl0<2uc!^2DT1w5@9HKb`ap`Z>EyxBb0@xFD*9n!QA-{rs$u|Fe7)Dnpv9zK6|
z9Yp?$V82oE<;#~ZK4+HZ;pNMhMcNX%zD+*K-m+Fi5z$|XZ_EF^Je2#;>pl@hE>!P8
zk&VJpEPnnB8kNA4iyK9Y&@0%rsQky-MtrZ)rDmw>67k~a&xrUoeC2;p<}&IJ-#>ZD
zpD-VKq<KG`)ksiRI>Aq*7t)p}OQR^WnJ6<7O7;n*r-{^)Bu;TpoJ&{%HhXz0h5T;e
z82#`A>R-G;KcW{Z7%k~m$S_344w-LHA#?UR=*4Fh%tJvCFcp9pr^>cSiWjgK9if)3
zw`0%e`!e|#pC#LQD2PqniUuE<p|Oz?)vmqngACtK<IJ|^p#XKnwv7r?;%|sxoO$s%
zOBxS_{>2-yv8B@J&W)|PEU=srm^0Q+Q58)W6hXy%Zq7Nlbuk3?#X;a9&%Gh&Lw|IU
z2*kqIUt=AZWMSwvy;eRvLKA+tCP#?G7CKbTLtDiBlL@~xz>Q7Ba6p)^o_}Y^YQFL`
zi;!@b1{CCRE%rbtC_-#F(ljRw7Es^mRf@!4Z6bI`;w6U{>wd=4rmY#mw$GH6L}W&3
zcbh6D3?Tnln{<xe!jMgj(zj|JPFUjPENy-vWl~2ZWF~Pmh5uhCf3xIEc`73&-GCoC
z9&8sTWfEKEWXD)xLoX!QzLz1=+)a|Ly^=~yuzVez2M|6B1x#g`MSWk(xw3Zu6h-ql
zXRa3oG)twyg5HAIkDrxFYhzP7nV<t<P%UyJEZt)6Gx+RKqz7B@Dm+R&G?Y}oA@`6d
zDVNG7@)UD6l*Ex8{%+X+-LTIw{oSJfo3-daYQcV!CjEo-hW~Ee|8-jTBSM~F+lOL3
zL-qrJEEK+=p{xdlz94!rqc4c7W#~)ci>CbflKLP0Tj9&*y`uXbp)YjptzfZ$)VhXV
zF?9od0ZiESOmTQe=-^lPOFH;5KL+$~GC8b7WgQ1Cg<|0g5+yQq>_8e@3Y$3~p)Y9i
z`C)>-0C6WjtDU&iiN2sI)n2}!31=-|gbM{;F100Xo9%d;Gf>yI5l#|E(MGp8jM80M
ziK$fQBJ&b2c8c6h+_LIMy+*8hvx2MD>9ks})vc+~s9P1IRUwwsZnaFaN*u=_txB~{
z>P=#|t9GS1Z8c2XC>|9>%JyQX$oC6Aiv2Hkim9U}=UF@|#&}lj6b;?b>qb$oAjdm3
z6@M0zDAE;k<A&vD5$S3>2O@%?zwD6*8)_S)FDQy3-uMfe6pIoi-k-P0>kiKU`Mr<N
zM-UqT(jL?Y<KUnc!7AD?*(HwWmrR<>hf5m>c~hO`!3`lx#*vvPF{k}Wc>;Y7^T&%l
zUI%x>a8wtMJ*kgFtu$pad26dWBX8KSR1&as?`2?jcWyWYl&h^W5HhZ|8=wduS!t&b
zv!mcsAj2uPGKY%4z;qx#eo}wd7GK~EtJwMQ5r%_jzeMm_hpuyjLBcDTxbsCAMbZz4
zIRFwAa)4Y%1YR)?=!ZkqU5kCmfd>;nUl0fwU(n>kN5O<x0X2A~lXpbmWeA#Tx~@;6
z=rRnZDULKE1Wkz-+|hLrtsqZOHhEYE;L>v~9Q8oV`GQ>d@5GcewOUL`NJSy=7tQpQ
z>y}Fi^ooNTiuB_4+=Uxw0Hjm@Wk^Ax#A4_3!%+@x6g$P@I+gJ8H>DihhQbc6xL<<7
ztpn^L$SmA#uzV&AWEqT%wamg|?RNnDM#QefMXXVKCY5u#BP-%MibEWeSw=G8xowNX
z0KA@AJz;j+U2}0Yk{t_Qc*x|C->NxF1+5_LUt<P(5^g$EeaQVITV?1e4dYRQO{VK^
z@g|FJ9*oCIIvD_a$vaNHV$@oWS#7qQX`@kZ+m2(K)ppHpv>e;1RB@BwrqQmq>b7Op
zrgg(;I#p7~=CoOF)zb0~k9gfC@!Yf`Esdv?d#ElI#d&g1W@1meMKds-e3!1n*>a<*
zw71u_nt{Iaa@~EE=0JSPg_;NEY1d#D(&O*0H3++Iuq_k$7Pr?vch%Nmzuk?seVC`*
zTiYQ%`S!|yee6w>>Au%}L-_7(zG~85U+a_|hWMV>LkqD8w^2OxWStXHikbp-R-UK6
zp5$p0?B8(!jgtb*ibX{iVB`x30OwhBH?W)&_G^X|MNxfGkv<0@LBxY&bRcXT&kj+K
z8OMStMD5uK>UGHMPI@XmNkuox!b2q@aqRlDNPcjA$VMk6S+&mpc|J+8m?rp9n$Mmc
zqJe{gg&W7jKFYlLuo0L}DUv--K7U4QPb!QPKRk>#x%N!fa0D}X4wA?H%VEFQz3Lxx
zd~+TJbciWFyB=Mk*L}oO-rLA^_9@?=i->Bk&tV@Mkb2s~!Z$)b_0p1F$b5Q&<z0Kn
z5pOpsD$N^a(}rz)xsd?r+$Oo;(nU7hND$()!*mFJ=3qdzK5-(@K|}~F?mKcH9U@W9
znlCqdDvCP%4N@B@Rm2ad8u>q=QrzJY+u58?k@{`(((E9iuYHf&XE`%Vm_k(uR@v=)
z*NUVl#oi9{=>SB@%a!M`d9Jf|&MA53Mj_IQ34uz5aD*`209n9Wbdxk(Cecdh3LNFh
zHV4X3c`Ex}+^@Wy`|-H#M=3?3&u(pqw@ja#r&ZGDKZ`(f*Pm%g{B0Vm$Ld$2=RS&6
z)v}t?s$DakR?Tb}HM3eZ+f7`nIfmJ=r?qz5sgkxyDvesLW#ekYBF$<W8&lJ4nzm7Y
zydjxtR&Xash04^cdd19BsKiX3q)Ca+PgbE60K2V`sUF|O*r)=3ifWYV|Mk|F6u76U
zSQ5lHGBhUe9<8e-T_2;QiC+IG?JR%1Z>N@Rfd3SIYy+q#D`EoPV>K|*?^~Ms_EwXY
zIE-Dqzp8Wq_n^#;uc~OYAv<`>z&_*m(1w#j&z;f=d=r#J3|TNbI125){V0zVH(&;2
z79zXlo&b||ly)WsWKJ>L$Ae!>AtOf$$tI@GQQE|nIKt_J%IE(WDP-f4iNnUH#9#V-
zZjF`Q9xEmAj{67+Q_E_QX02T}TMfr_+E$gcT6OH;R@=nYsf|r@TCX;1xZZ3!Mx*Ui
zYqo7Q>t?M|tyPHgNFjk`CXwPnMK|=^XJ#=2-_5dIXjAOu%%oCp*k;{uoEC0W8?Cx&
z+m>n9ovBf48>U&a>qfO<S@o&oRO?NGtp;wl+HHs6R<quyJXYNCT;;jE)zWJ+{af*Y
z_TrZbMU}l-(Z5;C6_tvLN5utMFpzb#a^|uw?3pWRXXq8RWu@MrEkPbe1G+Rx?nh<O
zo+MH6zE2jYlK$V)7R{l40~@pg=_vx1+Wlz)k$~`x<RJ;}(c+No`Lst@-u)jX7Ud52
z?WCf7@J|tn@*zE0CKBLWn^-t=jEnptDR$saJSr0ZmNJcDzjtxo8=UsXgY&EY@O}5R
z*r^)E!_j7@iK_-~wM@gdNu}1d4YS>H8qH?ALhN><-KaLIj#;-_7O|$-YS-(8w5N8Z
z(VW(6^%^0~M>0(wf1#>}re4YNOUB?veCi308xkw<Etj4?nVD%xEN1OX=OY3io6vP)
zWRsX!*<<rqNt1W`mV&03!4~$o?h>r_)TP5|b_RJ4tB-b5Jxq@UR@?Ohkw291pPP~7
zaIjJds-xdV8<U-O2SjS2g)FDxVispJ8<P34U->CHzUaN{56AuU?rSJ_FD%pJ%j?tA
z@u>H<f7TtFW2h9s9YMAnpla2s)~dE`n52a(HOH9NaI0CFPD!KEYSpS0qiMFCw%xX^
zN^{!8Er-}`r%Bq5)g&#06pxC_mFKZ!qQy>e;G75XWk@1sMS0BOqRW#=R!U~t7Cm69
zRKV6Feb>uxr+7-d<e#}qxxBR^wi>=o|G&oYIg95g<rL9UG2dE5E7M(6_A7RZN_DN`
zQIQAq_dFa$=WKL{W3{}MP0)W9Hxz5tv;F?Fh;;PuP(0${|0DMo3d?MqP|<6LU{^DY
zg(|VN3?nPs`76(RI4VXwGiP`%{g2XDM{0qXIz~5_gbUY)l|BivMJ`F`!X5>_9Z_z7
zR8)8um57dttB8bMNO2)9;A|3Mwr9y#{$VYpC7o#Y?%8-UY+{h9F|9fkTx(9TNv5rK
zwbgFb+qgZoTdirOMOqc7-l{aFjdr7r?S@fnH``6KYE|r-v!`DN_O;z*Y@|WBC1%@W
z#xXN9Gcz-L%#34(F*CGz%*<?$nVFfHnVFg0@x7bXUS*S2B5kDp(^5;H)M~Y=>OD`L
zWN%BVO%0d&q)z#hF>}ins(VWeUdWVx&(&FDb#xftb?tMCp>H_lo)r<P&Km>693V1w
zBNakfK?~^|uV^7uB{fz4NARsFwQtS6l7j=gG=Uz66VJ7<nuuW~Cq}P^SiIX{y+M$#
zS>0QzoJd!d=#|R-K=Wtln~Y~@l^rHxb!d-PUPo*3*12gQ#W=fizPKSa!}c-t3pZSo
zsA`9I_c@5P(0Mvu1xwJJNd)enkL6ijkz_ho=RgOt%+H*>{T@GT(q!YW)uvu2R|fv4
z?2M7)5g8H6izD0)$FVuVaw*gCZH~MP*Ak2SUudMRLTHdipv2CC&I2ru1(EmjIdS9h
ze3AaPnsI6=_mSllG_BD?P0|#J8QBCsYsKb2$*-qY45K~j0BLRi$Zj$NR0B^!m{3<k
z7|(fPE7+-0)LPLpba5@$p*q>`?EhA(*c(5V;i&j2^5klbl;^g+);x1U96TtPp5q;+
z)`C7UCLtV%C?DP;9QhvImtc5L82Ln?bwj1PfK=!%P}Bn|#0JKpZULAyKfjzC^b`%~
zm^yC-(LTw^j~x#C^#c1_UX-oQSb~8s4|@lIh=0J@>nJb#_fEIDK6U|IblzekEJ=}Q
z{3qaNn_wG`0m9T9=Ca02u9Z+ECuaY5K%t$hy#woUxZulSh981j!-~~AcmC`Bi@H;4
z)R~>O@A&q+8gF!P=fm{l>FiA9FH1cC^qWS%usvHBo_^+I_106h<o?#+sb#mDxZvYk
z!E7q$>QXSw?y!jR`iimln&9b^?-ta-dgLrR(kZKRLF)R^ow56`iw5~NDQ>|S&;Bbj
zg9@t7<ns_=VLgOuNj24%=dV?E)t?fEE1UTk+EWWe7?vFH1==oaE+uON?EQV_^+rn<
zO_q(cm6nrCI`Re4m)iZc<(F3N#wI0OHu9B2oZsyPmFc*oljf?`{HvOEpQFPgOji-g
z*0!F{%&fMPuxvhDC^W|)5&vpf`@+(!Ee11RHVi=<kL_qZ8}l{TRIAUE1aCKgXG|6=
zSF=x~&)1ZM%=Rp{8LcE)dac#bVz}1)Vom=Q*|28bKG(GV%lNxZOzRJwwbgR*V8Nqm
z8w5IK>0E(FuZ=`sbZJHsc#h>_dVIvJ6*v7bM};;VE~4FvLci6%CEU90dPBK-x%rOg
ze5q!oYp3y!M5h8xi&>iaj~i?Rg(++dlegtfs_#hBvcEBVSSu1QdS@|i`XO2BV)(3`
zDm&VK@@x~0i!mp{xMgFlYWd=YYrS#98oGsce^Qftab*O5<sz=RwUuV-f<uNe2Oj5y
z`JWH-8^X^#Ha+Jseo|w!`3g>2TjTHDj<U6)V}Z84&M!XpzdTLpjS)ub7p`VJgDnEK
z^7N?Rtv<tK^d-u*@YZWIG91t@8gBAgI-I#ZKQ6@S(;UWKaelRHu}ar(+BHQ*1knQ6
zYK_>n=gWS%Tr?S}StmU?TQ!uoM65qbxM<g2z}C{3ugfUq;khcxoy<}gl@#H&t;R<N
zPPY9T9QeIV>)N<!wNkih#pbX`p#Y~NuR^}qH2=E+Z_bLxwbF>a%(Z;6re?MV$5nOE
z^ug6$E}t8Q7a>Ag)X;b#+$3$qQeM7((_zBWOWWnI`FQ4%%{U8lm1dJISG1YBwY<m~
zqFtJ5y%DaBA}tJs#%98>A?kiw&&Wb~n-(V4FUO<?gmI3jWFu{PV{F$&r!sn;f3{k-
z1&dXyF1S-Rm1c`&3I$rs=dSBDj#-*5?rPqwI0m}WO}V>b+BJW9iuGp?vsaRp?HjdS
z%R|;5UF#PICauQ%1}rn!OMVTuXxVDul`J()NYu}gA=C$cfAvj&)r)r3&Ib$jr0oSs
zvb5rb5IU<g4j0N-tTNc=Qk$$An`T`nz6T$FlMfpZRO}ndA2G}fUH&@uJ6K(+R~{~`
zxwi8+*34Uh!3LE(UO()4(*m6v(r~Slq0GYNM5|ARat`jXYqcM>%T-(^ify@E$8FXw
z&C89OCS`)ztQt$hOI-W2IWp*n?S7p{sgKtdBeXBpol%JIZa!KwwPoplbi_dtHHgZp
zIJi!P*qs$qx0;)1yHtdjE#li~l(fi~Ar$CWv*}=1Hapgb=tQa4Gm{su{^PWEDX?PC
zJZ&&fo5vZFA7f{PO8K1c<rY7De6-_044nO|YQnl2*R)!uRxEGRth3l=_R9es7b8zc
zshTr`9WJ9-IIeW%vQ4WL%Ozt+X0r5`j(oj%_-&b=tH)aBS<L$}WzhY{ZOWDW4g|g^
zC%UV+Wlc!9$s&&G%FA1WE$%=QUb`{p_s^KWav{BNmd!dzyHdN7qim&uBVA&!hkoN9
zW_O12mW^%Q*z@Q5GuHv(Rp8CgZD6}9HFu`Vca@y0564w@w*JS0Ampp{M;q|Sc;!1X
z^}av*3+Ti~p!fXGS?hvL$aDPR_0;&~YVveY(Zmz?u1n){cXg-3i@k-5(N#MteXUxN
zeCg}f-C3M7z;!P+BCBc5ZlxRNi|<N*_OlI#Jc>pJmwW1URKZ<mJ=zaPx3j43<MGh(
zxeV#<Lm4?aC~nl<Ve3*4Ve5H#`B)=p{sG>Ny-UDv{W@E}^D~Ws*uE7(zsM4+l@ZeC
zlx>(08c<ph7C4iR>JCKcn@|NMEuiGbxT(_3QdwN)>$Li8^>>>XwD`>0adWw7E{neW
z)J?eP?E3!O6OarsVj6Bp1vIb7Vp0<2gazkg4bxIN!oU=;l=V=^aiGLoz3v7Xw8EiO
z<c_6D#^MVF%I}U2=+#B5Ld0^yx5aVX^Qk}~(x|{v6V#q5Ay+u5oW(=*_}f?)gyrx5
z+1^DcD0j|b=IKYy4ayezEb9?=esu4Mx>?_ZckORo-Lrrry|dCX{?{YiOOxGur^03S
zmZMxZhdZ<lRI=+GhUF_uozF`#0x52W2p3)UoT&LQw09jOhr{gKC$p)6w>Q}GS?y0A
z^)L;oe5aHPt4m@lf<_e06AdFRiWz6pjCEH~AI-mYo_|LYZ&h`Aph^jBXM*nD{Ar1p
zQd|6^KB!-SlIjRbz|{kXr%T*zC8~f<z!4<$=US~A63QU8W1!Mg^iesNagi&ME+M_{
z^dC}+X?(kM3B>zJ<`RS8aw-ar{7Ud3{}HYmO_R*<Wt|00W6>Bc=5)`MZlfYJgQ0+H
ziQ4n2jk|@%Eb$MNR^$lm9bMlp1Dt4sPCbT0ifrE5YA=stp{}n>e$a=)Ww$M#ZOS}*
zV{Kiyz%fZ_cEO`A<dZ!|C?_leIY%+XgoUITM$Efq0Z|yH?Mvbaq?%*Z#8uA&okS4e
z!ZOvC!7R<6_xk1>o0>3K;>r+nscW~Whvo9P2zm_Mk*udbqhy_<Zv{>4#CMSGuhTb_
zZnfG($vTVof$e0L^xca4APffs%v5CBXbENm=!XH<Dgi5>!P$$l6pQFuU<*lR$i_h2
zz2$4w;`*Syco@*bO8IaSdd#FVW?Ij$Y{0C9w)#QoWh4!<5%;mrh_V6T{O^kROwCAw
z(zu`ijD8ZDHgR~r7hpe?F4>U`SuN#^Imn*h+Mtyq9{9%EB@niEplnJ{vU-nddBLnp
zQdI4m5WdlRn<>++&lLHy$@qCG>biUI;c4I08nrDj6@IxHI;FM%YZB&ZkDC)hDV*^y
zva2!5oyvhzom$xE(aN_as;ex?FLPkStn(GCLRjq45IFY)x;H#)>5Xl3?q=4!qapBl
z1X~O=OJN<$x}9@OhySi-c562KIfyg;O7A@~!v}4r5=8cT_>4e3IxSP(2T<{PH>SU{
z6D{$n{o*hRLs>xG|C#U=11ommTs}m~B2{{DMUBf+ZP4?XJa+$Xd9rqxq0aUc*v_mW
zTKKz_JD3lr))?0pqzE+?Xi_*Yuk6*rqSY-~9p6Anz;9_O;^PT!Y>bptsk9S`J_bp4
zwND2#x}jHdZ7&0Jk7-^%ccWLhI}^GGh&y_7%pLrrg#l(hV$mc?;cqkEIQ2dRghQ7?
z_y@HtjLks<YrbcoPW&C-mT0bFcl%t`ik(b!AaFRe5*<D<Z>&1(bu^$KD(P3wPjv)N
zy!cAb^om)saLe^(8=r@~q_H{a8yYG0p~$zq<3YjLQXImhNnCWNqqip9nVN%^CESVS
zXJN<7k>Up(Z}U3kWb{Tye{Wyet^!y1e3yY9d|c`(=!F|HNuKcAJ-lu~NR`QI{^3pX
z=8`m3U&*FAtFLG0`y0l~{i@4<_TPc%FW4-a;yAs^6=|APM!-iYPujAqS;mHDx#q?$
z{(<JccQZMbj2{gKYPOvf_+~%GI85_4>6)${+Uw(BPeL|C&-x~BR`y&5%j}7BmAg4F
z45-iF&dKv93cI3XmyWaWqm72orK!d_b<~|kB=O!>>qKH+>UgLXH+nMh>_|u`wV~t%
z2H9cO9r^q0q(L*j_^1^HxRpZ;9HQ$oKCY$EGPFg$C_7~XfIN@KQL$ZEK)l1DHL!#K
zlGY?z-2^mlhbeBmA69R}cgvgBH8fJy-K%SFV0de2_5b%^Y1XPii}Z_>Tn)D?t1#}N
z4qh_9o3_Gmx@G=JV^7dNNF$lMI2n~$o>B%6i+iBkDf{5F=Vg58(fO+*2Q<cn7hVy|
zX<^X{yHd=ZzUDPT`Oanpz$4>lhUuF8&p+zNb0s}DAWb6r*vXPLihcbECf9Of^~8{5
zNOLCl4;B3@$3-D4g}ZDxzshaZYi83qF0C2`DpAYzIdziFe&Iw}7FjNq727tPvA3&O
za?1DrYhFjU(Q$c)*^T91_D}E6tJ1iOf2mNsmM*ni>gD5>m1p>8pH^e;<8PnKcJ#w1
z;;jXAZk}cB0L06iBb|>ZMtZ(^3rLuhX1+YK%^*EF6_*`fZB98uSyH7H`my3nd;YUa
z+VxTJ<Lfx*nNm7hli;a+*uuxh=)9gtpRUuMBg6<xqCh<eh#M03)oqC*QSb&;zf{3#
z{it29{264lG$C_|H1cAOW%F7eVT||H`*K!Wm+&6-;qirMc8-k+n<GdG!x9-=s&|~W
zW?<qap$V{8Aobj9ZtfXBd}o&m4pbRROES{&?BzeS*NLDPl=cc49(S8F$w@Np01H5w
z8-8cL-4_uSC1el<TeCPAB71Yc@h<&(k8R>2W<CR*`mqfoK){z1rx_$Ig#P0<DUG8@
zdkho{6gyiG2E2&kB-!)r4)>3QF-E9Lh<CJ`7DwG4Q7KWvuP;BKAaEP_?w9N4>u^lU
z8KLek_+GX-Q;qXJwr&9NFW>L`L41e}5l_^w+UN%5XUpj?+N#}4gUfAijl^9X3)S+s
zjio+3VqsI|xY~a>Dbzb)M~8!sHD4)piZ0#?H6V$e4Pxq!2Al&0mL)fHBnXkR6D$jF
zlSKeiKcL5Od0Y!Jesk`)p)qNavzKjLvG+(<cT>J3xcSH!E(!FoFE5*O0%B%O@{MWu
z(in)mF+Nw1ossl~#Ha&g*vV3|(IG&ri!fvsO=%HhXshVfLC2+UZiyIGh1>Wweijr~
zzVxjlc<3vJ`F^?I=pMWRC>d*m`&o%fAb`(<@h`I*E+?xn1KWf4T}`GjIuDYsF`_%j
z)UHC<VtrytrKV@*?|#WL5K-ubj7eplvYaO=V7zW;esF^M$b1+PXP5|`B(%mY$btSW
zxJfbr*PAIai6(jvkkXDIcm<<Zu$>7ayOPRM93ta0MKsDi!+pd_J-XAVO|&uSOvO~0
zl_YiAJyeN{DhjfKj5~kY48^S)j;EE=NvkmNqmO#=^Di7Y-;^j*&pZgLNJWmT<sHRr
zYGE0QgdI_pR(O7eQv+jyimb&C3-!`$4I@xXA{O0b$dCG@ch&MdAFW^xgKXMn3&?B5
zO7{vQ0_m<N$B8guQHu!f#FjEb%ciUsU16tZbHpl@so16-R~zphwu_))g#4_CQBFR5
zBICT5!Cqn*x$ep<QgaMKVSGOc8dKw)4u9afitf}_PQlXQeUNb~X_0>g(e*QKeNCE1
zw+3hJEDtAfdc3~gC&2OX^L3!1zfT)&*Rd-5uCb)Z2Wxi?+ccrs7}YCVja5ujKJLH$
z9jl8LZ(94PE|}{8>8&X^n{4yfGvtIrbxw67)pK3CV~6A3sdxHZ4T&6j+>fo3S<Z<%
zMKWVR0p&a50}<haGy0j}_KD31o`Z6DnsQ7f>BNY}pv4|YW=@+Ija!rlon$ypUkpy=
ze8TXk$^W8KTAI=J`W;Emk?$<lkR@juZU#4E)0>=0)J%o73@C6{ryh`ELLZ64kA?1#
z_+F3~2MK(9+5-p2jbe-=`nG{je$;z$6jC{jukYJmUP$;16s&e0G^`3$w-!lve-5_+
zcNL2&e*%@p%RJM|pzFx}qEpLMsdOhdq3Lf70+rOgpkb;H57yOy@ZrHG&~WYK#7|r>
zV_4iu=CfKoclUFO&h#B1>nev)D`N^Ux2NR6^bs|cn6P@opv_8%^{O*7WO`#5S2^G?
z_z0tOL1WBHk`D12##SP|0PwcDR{!ZeG1%WY>4gM?V&<e@=07%73NE~Vf~B5Us#*Fp
zdV?RxNy6e6b0L=#4(`G_i?9tN>u8w=G`O&7d)mRXnmbbE>B_zecNB~$GH1^!CkK48
zh@cL3wKqkamPCaY7Sj|J<00pK@m;vZD9cet5z5O@Wa0{p7YW;}Bfk-8R_3ev6fN$1
zAWG4LwJtTTfEukL>JjFPQsX9?R$x~B%WNcCiHRL&`;ItnP<wfWC29y<4GyzjymF*7
z9aqA5X?_pA-*Rv6VxT;=UMcwti{|_fgECBTjRZ^gQ1X6gP_|hmFqBWLAL{Zq${C->
zGSGq=Y^r%W^++(FpJgFBscZfD;d3-}zle54IZaP^x5tokV|*G%DzxNkE2aBvByrbd
zg)cSbD|Uz--nc=CXhbjQuX-@wyMH*>zRd=L#2u>HA#MogLs{}joWX+TInX4ZAudLo
znKHY?Z;nPHhRNQ)3J$Rg`gAE;sK_GthbI5bx%7box>wgJR1|m5)A5338!jX**vGUT
z`J|x-pJ>J1ha?_WrpN_gSUE`gK>K8zGv11An<S$`SU7W+6mciusa^W;r$!|5*T78y
z?(UEWJa`2{!UXJWKMYoBckSRWzg>4|vr^jg;3MYqN^x;Y?wx48?W;JZXw80lrb}m8
ze@ZTE+kSoozB)B9=bksx%@|p7j~>hbg!C{;yIMll%WRZvV+94>w1S4#(Ch;yo{8=f
z)$nJ^f0^EKzYDt}8oo+nWJo??QjJ%J!qS#GCpKU|bR0l)POQ@yC?}Yk)$TT^%sC2F
zMqMjYv(pGqjmPFkuT`dcc;-}kja0~!0*io>VSVO)qEh=2w4X_SB2*b)s1Mp-%0b}S
zM497H(kxSmW$FsLuc8Wei-?}B1|o|otx94}8;B}S`z(z+l5Haf-6W$LWQ%Wp0gI!g
zAAIrq;M5&`_u(<9F8dj<GAbO=Gc07yb~O<lUStTo2?yH8F73I-NyU?4ibYWQ%E9s`
z^YeJiqzT@w9cn1?oVqCab@<P)ge$01(=0q(2k7$KFd+BX{(Q-S{2+S!)jhOJf)=X`
zgSN;UM?%;uxPITk0%cfV0=TUi&g(X+f>Da5Zb%A?$FZ?vuC#W#fidAf<iSxeWRG}R
z!oMsfXwUA6i^PmHOG5dM8r=4_0!L?}h_=ib5_sgml~+s_18GZhZ}y{;;|;t+g474b
z56!T=+ZbJEEIc0K!4Sg8^8ySAR)7)SeO?d#1_!Vhy#HESFqL6@WFusFHC5JzD%7kW
zCF&PBB1#=sr;0<9n$XsmUqg91wDU8X)|66pPX8B7nhs%QZDKgmiyqU!vh^UV&}Uv<
zhuXCoZ|6|HXTDF@yf(@8;h+dZ+q+1Q?d{kFXzCChQozuLhq&cd{dS@Uw0IF;c7Z^{
z<$z_y_xjvj+?mXk<h}b~#^v3g^x=Fo8WlMK-7cuUc<ULdyy>ySQ1^u?%9asgx*yeR
zBjd|#=gj@>7}-^}Cz9h$P84^z%=O#j2WwG9I_!oj$@$WM(b3SzwmtttM?<3bt&$hc
z!#JFSkNM%s5O^(R^Ugu3vv-!9a+(=WJAoNBV+bXgK*exv-tS*64&GQK&zQ!rd``0@
z|DPm!;(tY=4ga4=Gzp)!O(k2#NJV`)gAU$JppD@lBlNXz0Uh$60-7?<yGWN7W|$DG
zyO>TFH2lAzXMD6!S`wRgA}x-4a#=N+&hKU7cXuA;_dLkUcaAYhDH=rk_gRQt;iBvj
z?Id1DFIgbJqA7%vPaJc$EVQIlEtCta$J&qisZ}wMze+fOxVoSh)UXc*o1`&XBE_Em
zi~;v0;bJ=u>o%?9?RYss{6dPixc}tN;kvbt-{+ZFjp=4f+VpcA^23(uIE@m6bynu6
z>k5NSj`ddBE43Mm5|w(5Rve{qmKkd2lho_MIXij&T2S+lybgUs_0XHbJ_xto;?rYe
z&C(|Up(%Tk#3SJP?WPh`P1vgDvBs)1$bP-8g;6y*4MyDsKiq0H2PZ0fDSR(@7+{bR
z>Mfzv3-8x{sn<}AOPX?JUxc!N(5v!|O`rO))72>}UbAz=QVh=~I>JJ@?<o7E!v?b}
zasX5X6b&qP^t?W$yp(!*SE?@|F1XhYYkyJ6aR9jGlm-G*cB8}*d?J4g5I~P}Mc1-3
zt^<J6q|AA8x>34xXaL&&T(6<51Qb%&tsaLSAPR&)*t__Zk*Hbz_X#oE{LBQ!h{B-q
zUlS2*_u3$V9%QsWgIc6Aipzz^jva+D?Lh`6!PS6MQ1znu;8vzZy(F4b`-u$igMBkL
zq`eP=>KnQ-AUWX?bHx%x>cui&>P3n?6Dh583HZravy_6xk`R1*t?<{#1*bBN{iTH&
z=&K^(VI7jk4cKNJibfnPv=5roIr@u|A(K1+;P48d2`yHLxi@zT_=!e9e+0!5APHxS
z0a;F7kFV4Q_alZ36RH`BeEGZ?CV_znv?$1Z9;`E?cq20@%Kw6h{j6C@)2l(2I5h%^
zhN!S>Qi>3JOWmWNn&{C0|KY#OWi(*{^yPfYHS<yKU9e=5uMnZryO3PVFRG+vUQ}Y8
zEfi+n*F}4DThdz(kqTa1GA+?7vc3QTnkhawnqfDYTLDnNbcCqa>5VBGpo{1gFE^{N
zhyw@6=*4@1c^8K{!N4Y5O=W+RxPOr9qPVzGujbCD=RJEmBIes-!V?EW12x0nGn7)I
zGKIRL*F4ReZ-m@3M9h1ENi=j6|Dgl@aX>M53kF1ad0{Zlx7a~O2vrj-0S>w;4-ZBv
z9EaLfyE*#!vJ>C|SMs991mW8(_IC#@{k*sM&w-k94Y_=T*CM+XUsw^gxSLSrKOx+F
z<7<gmCG_he+MA$>b(Mu;l+c(gWXqt!kHH351_NrQyu&nm=?P-6jLL41Z(@jZj8W#$
zgOn`!H6&%WR1#IRBC<^fv;VabHx^IK%leidFhe4$NHSZuGHZ!tC1%N*RHf*08_rQl
zc~L!DgztNV!j*d-xp7Rr3Q!SSo+^#d>9}5GFo4-SksBIhL&2#Gjgz;$-(jaD4U^ay
zyln9g)8#e!^pkWccxoKDnDvMlVF}$?L+gGsI@`XtVrT3Jsop91Ik3(epp47q%H!p;
zR#iXQ$Nm9vifb!b9x5O*6I*Bo@|-nn#ge|xCD>l>EC#K%+x<w}=qH3i#dF}GlX$N(
zmRTEZcw0>=`it_l-4GLaz%HpMcokyVbaYQahOru*WO-?(h1%Edapd`~yYr{#0xlv$
zH6-S7qBwd{#m9W+iw(?4XBaUXWH_Hp)wCNcWO#b_K#eHTn4s~4QGgF0DTl_^{<|3H
zBQ&Cq4>6^f7S(OzFSQWa;=lI!cQhn8p}8>7p??Efk^7j2$uN&5tz=S!C2yvv){Yz1
zDlmwy7=n6GZB(<!4l5IHhn&d)tD-necjLc{Kg>rdM;xI#zFL6a7wEU(WX5d6E4){`
z#@C-@uI6emBHl3G6$c8z%fFvT0G|JytcgEB`1I}4i43GeohTX45bEh7d41lF-t4{I
zp|8I^NV;N&BW}8pzVu{7_>FBVGJ3{}#r*$)kh6m2M8Qa16d*p}P`A<ahkuN*uh`1J
z?kX}09RC~-0`yX0U+kbjme>XAA1Gp4;s9K7Ctm&H@+#`WJ_Pe*Y}I_@ni23U8nVh+
zAf4c6bIuAFsKzV}Oka62fDQ4q6jhW-BlYzCo0MZSZn1IR{xA`Y3U`XX)RX%v6FuOl
zUf(IOmy!Cu&y0;~$kM~J;oPV>9Ah_qVOkD38`pLeNxGQI!TwND-(=_?<sdh^R}Cbo
zECu^;YeMQXwJ#^Uskh-K`e_Yw#=#SyPq$RNGwr%z(C!!ful=z}0-5kN8K^20dQwg#
zu2FSS+gg5u)<BHtMOykJQUd|HDR15gm1nNV#|&M9FIw3Nfy3zPV=KImR5+=N?%nKC
zj%%U{+#}ik@{zLvs`Jj9ng*{}+4AN79YB5tly6lUJ^qw46lnDz_*w-;gm4Xmz0g8W
z-L8uNAZ}$7fr>QV87P+3!HoH#R{p{Q|8IxcwU?ga@>W?l<cdCe^d)5D+9vkC{IGQ(
z=6{yOEv)}3i?9D@S$zF1i?=l>hSqETZ)tIm{Qm}8ocZ5qvDsXki%ETS+quLM-aCt=
zc;G}cO?ft_3^Ku!FgRN#eASkIH-Uj($9c{@J6O@3JQf`f_I>S`-YVggL2s|@&`qRZ
zkM^o$Yclt%5^V6oFm>9#P71k5;KOwQ-Q>T2%5)}Qo`yZ9k<^5`HLln@Zje4FZB?n^
zz<@Xy4QgDF<!epos1cLCKIbmTQkc1!L$6%ZLHA{TAa|ZjR}UW`ekFbo&tbbpwDTtY
zWx#PC(NpwFDvV)UQc}&sz+)o=-J=&D%`0k8>KNOo#xIAJ?UN?N90m+fG)oB>zA(ZZ
zh;@?cQO4vpR^o}rl|-Xkp`~7wqW!DSg?N>#D-miUly@Bj8f-%@!xK${Qm;Y2>;`sp
zV9}1)@@ue;kuIRK4$wXO9m3p8hQTv6vQ~KLTfW*+CRwvvo0y*mr)(4Hsp1MNVDD$_
zFmue^2I~Y=+}{NKW^X&8a`K^3ig<#R&w?=eIvZVM^#iW^iOY7pd~d-sY$bk9OQ*_d
zZ+d`8aH<iLt;jIV1u?E{WKELS`p%<Eai)i?G#{Dx^>d@iCTL+T@C#yWV*%{{n&7q7
zW5eWxp<Gv%taMA6|Dqy`4uFw%Vsvun5}~UP?zg)^d2^s1!uqybHi(WTaCv|!yypw_
z4jxO#+ye!vHNKc5E;L_nH(~c5n!i<1wvqSh=YSQOE5tmhRHeMB;9T4ySH`CSK-|L^
z<hP#j-&^K2lW)cmVn`oFZQkzC^+$&RMKO-ffMVeZu#Oecgs6NjO@{Ewrepo~3+bVB
zR9uf2f%*$jGgah>YcP+Z9_gDj%$f~QSX1nHow3=#UlkD1L%u{tSW0>MfU1InHFRD%
z`)d~)zz<^>ACU5;%-rB}(M@Wzks>E^Ezr5f$Mx3rv+Q`y{Q@Bp?hwI)=^m%+)hz-H
zSPjt4ekMcvhS-P@edKvBaDf~r*^@Q`YKF}OzQ%}b>{sEawIEgS>$r)9wk|a%P{2JH
z6C3-D{o(yt1<CaAXS`S<WkhGoBtcsgZlD+yv^AW$(O(f39S<%sRlHW`Sd=#=uH|T`
z<6$uKI^vDxoVhxjA0XK6<Bn2N9s#G9dKlC*ykV{K5*>)9h^2oHqE`@T`DbOxg^aLQ
zisBXG&fpXy9{|sy3<>_Cz1D~Q3`sJ52?c6_aQnGHPiKIF=O>HTVz4bAxST?g&9$Pa
z33|J}TDE7e8XeZjA_=44YCAeM=;QAyA{`pxb`@#6(sQOwDQ-<W03BnP>Dz_7f-*E;
zhN_ae8(gr;sS`RwP?)m}`9L4eX`2$v->SczT^2SO2U|(8aL<)zw^g1yKVQL!pAr$@
zI9fy*e#ao=yY~qFw3#$x9n)QX$GdbGWWbI6^E>9dlD15c??+#+J{pl1I_zy^Hg4Ew
zK(Lm0;`V3Q+7M6(N@X$C^B}el{c0bD>5SHD(5rN{c0l+e<Zmuts+{lQG!+Sr?$N3*
z&V+8H2#}~AS@6@49|@)j6U`?LpO^C<pzyH{^AjcyhXV0>R`{(k&I+ptCFQa}<&;Tq
zic~o-%#W7s-<D;!mq6DA5)|g}zVde_&-Yukrl8jwVKL7BIoM57)cCt67w3QHcwyki
zB?5=>GwM@UC|?t=ub#-hV|h796|1W2T8Vp8{Lor`50R%AQ-BC<kpSskV>94nMVN6?
zJ8E(okw^pWo*lWd0Rk>)<9`b!<{AJ0K#5`huaubQzfj`R|3QgIl#i@W%Sf&N-$~+%
z|B%FANXm2c|HBc#{m+j0@816|M_kP(AF>o27DqwTBJzyE<ci{LN1o*~;-jeI*BG@B
zlYq^{04hA=Y<H1UvvZIz2(M_YFsnbjYiy9OqR|tA9wya+DNWA5JaW2u?ozeNL?sQA
z{~P<nP+BDNg*iJ;G-?0pD*dMl4WmmQh`BdSad6G}?>hKRo#j6k1KCu0ZMpA>GDbfK
zrp5~9XqUr<kqY8*T9E28BI#ktvB&m)6V})j{DAb2)~6B1DC{RqCdS<AaPLE%1-!~#
zYHPFtf@a;_9UWcP2%`=P;5ztqzZb<}sMK!-EU0iVavK3+ha*4Sj-ZIE<>ZT%)4Jmv
zA&lqkij6HiKx`Ig5V%Q4u~Y-9<m*Mw8aXUu)hl_}t)kQ`m92Tq6R<AL7cH?HDVQ%p
zgmLA{={J6Bz}PL=lxyYSG@560a)f7%xe&{?{!I(%^&a5h&ZOQlsk_uxIC?mTAGeJv
z$oNO6fHRvMP$}IpmJb_0#0r*}LrEVj!LV7xcCoJQAjzK8+P<K9tMPrM!3F4ePxRc#
zQ*KlkBZK}+;>`5M?*J3)Dv8k-zMK}^=LIQenf@hj<QlzgWtS)!dL=ysGK@p)dzRam
zcwzKDKcu@tn;S=+k}Mff&c}4~v!rCZtNc9AbyvFne{q&YfjZH%P1-G1%Q}xT^8*r{
z(OFHG3um^diaO>#R=eq|bu{d{%<1wac8yJ*PuCNqjYo})vGn!2*@wTQMf-lFJd<b)
z0Y>N!pI&&;1=Ax`+lB4Td#|_)EvB>ca&)If<1jafd0XzyKn>6ax&CU5^M~_hz2x%p
z(W3dH_|~qj+>xP@h%XP<dddDyk+^J1(i}_dzzHTq_UkONLRpy)bdSF2vs*|#CDLWH
z60t3COL7MbDnY&#3TS)Sp;32;=mTR+OX5S^k@V%8=R(2UqFnJ89vNQeQp$4}_4b(&
z^VtglnGPc26GI(jc8IUa=$N&1x8K&p)4oR(Meh2i5cXk)P2g+EyG5=!hatQo{MlVa
zL<);CJwZbTfChxP&3G_<kBIa=#)`+!&?h)(X>d$Y;lKqN@Me>LD#vk{7uH|j44`|A
z^1Hst{_%Zhv#?&$ieqF54SEim|B?o}e@6&Q#$5cU(p0PXY9dD~d0p)dy}hypp6JI2
zZAca69e;I1v`#sq7z<*|5rJAdESv{qCYuT#pW?ai)ZO_YO&3w&tD$H@ufxUdgRD1U
zXeDDn;YdZp;Djx*To!g}@!X|fRTyc!Fw`tt{KErJtEyLug$c4B9s0=L<LEQG;8{Uw
zbx&St%Y#Rl)28AW>?xT^Knm?3L9azEZoGX6(9$oaJT&Gi<oJ>nBO2W(dMFW8Sqw|!
z;p*YU+C&k&xh1w8A=d6S#(rr4WvvP!(}om~^%UdI_&(mLIDU}c5?}d&bzcPbhq}59
z$s=ty>Tqdq@SP+JQ$M%fv^s<Ak%VEp=+Mi9&p_PRNPh?#fSj~QY7-2abu|{bSyZA#
z<%zoyr{ihl_(|FBK(`&2z8@aU7SD9J2lk4A?U*Ek(=sqxC>k)5Ht<I7`cxEZ0=;rS
zLVs(zlFXt<p|P5Ao3b9^u{NfbRwF19zm)^wV*IN4x_Of5G{AJzP!#%^n4L95Dof2d
zV1Y}NQm7UP9jQW%o(%&k4B-m74e3T_k0y3b#ztTNG7&zlp3V6D&udANvyv)2A#!2W
ze&{nMI52ToY>lbOjK<CZ1rLEy&$$M>f=@P7?Mq8h?0M6b0>&bqv+{7KNVXcuyiIjb
zAzRiR%e}DT<FoO6y-JXl2u-1O5CScZOMa`ggCW#ieF{?kdnjzJTtj1udR#Qe*EQ$j
z6ZrM#52+MOb7@li=OsFC(V@+_nz>oFBk#3an#C)+n(Ah2<Z4}jmmQH}MdF5Js1gB9
zebB0te7~x?1XCzrhFnnF>N~$$C-XHi$X|fV4~sE?h_UkMLaTYOC?Jy(6j%=jrOu7=
z(cn96Eb~@f$1%q&>UAiB->6jD@q?bo&##WvVfa%=W#)X9m?vSCD16@+MQc0~<`83<
z1?O(tv=gr_D9z??%pJs5)B*FfBNCJZnYrA+8NE_`*@qIAE*@2Qa!tIO`=GIU;qQ2E
zkCEFO__Ct7RA#T+30cOuNxampL^UQDw9aToHCMbTh%V#Y9*vHluT;vQ<OvEoEN+#U
zNMt{k1ygEQ@`XPSdg7{btMET@Rkm<PjIp=ti!LI*upLRyF)rU=8Cwa6kmhY8z^DOR
zv4<$F%t4iuX(C#5nR_^012te^4swmd+%TJ(id3yYYKpE(G9wuo-qCbU;KQB5DOdmm
zLMNqBu{MO4ov!i{7I{@kaG$i$@ux784o04@qc8VGPE-uzR9n#f?fO>@&;(mmB0Z-t
z0ssDh;}w=jDT1T)jO>b2*yQ`>lMj-)^!rKvFhngbYb)Qxg;Q4nWiDQV4v%@lr|D`H
z6r7IyOWFbicTZb5NwFj9!+)Y$aY-Tp-hdS3^p1Al&1=2PZtP4sO?+gR9vIY93U3-X
z{p^&`V4)6%TEMbITf>*21{;V5L!3r*60BAmpN=8a04IL+p2yF&?wW@(PI{)et#k;0
zo$mG(5zQ_7PwiN&b*`cCmJ)qGV(Y?@0Q`SHH8#}1tEeJ-JjBw=Z|2N)-|-*vG(V^+
zdQp5H@}zzZ?jh4KoZ{uDzA(?v&?B`+ZWxfjoFoHOK}6EXY(1ftmPpkykzY6&kre~J
z-LTVtbHk#!-s`53DgWVyDbWAZ4Xds;DAUASK0i4^)<(4KemSnch?U7agk4AA2RiU#
zGm<trz~#>{h=1Zz3urU{5r-;!w$uE$?${~yDe1c?P*)4b@Vsa{YI85#)~*B1;>92d
zx#_7SVk3_Y4@WOIljz^Tx*W7s<eI#~PtnOP;J)qX^LVZhY`b`Rt4{Rla`WVGJ44da
zPMf@Q$#df`e8yafeg`@}o(+O#{YCfUvytHv4i7Er7uoe(AgrsYzJ0$sbul<CcrC+Y
zC1utK99wTfvFt6^$_<~htadL_$cq0_Zr^L|kk7c2vG|Wzz8(g`BXwu`s6853DSH)L
z9Q<O}&qe%X0Ul05HrwBSJY5wuVt{<XPt)c7dN+7H!NT9+{aOcI^rp8>kz;DFWttBi
z{P7=dxECJru<N1CAb=)i#4UGBV(%Y@pdX}*+|IaoQoi`f<E6Hm`#}YH*Ye3+J@ttb
z*n>0jc1ZOHV;XnVTmQ2`BZOiqCjVVW&Qt{bKiZrjRWh3YaKrsn^}STAI5JNNMJ167
z2^0z*ikUi^Fio&`3$WrneavsWPz&AeLB3*)YE0U5m9a*de{ES9^F)qpTxTMuX;MQ2
ziL7X(m=%(3<J3e9?L|epb?k=;_MSV@^u3d9PV<O3TxoH<O+$tx%GBDQ+K^a~g>WpI
z*pVQpWSVT%Qc?V(z-gx=r?uwXsU8@&!lLMtB;4%2w;hj1e|NH&Ga^u|+j61HC>+{n
zdMhJ|#h4JmkUXvsgbCjYBE@Pjlz-ry_mH88R-ZQB?INe&h;nd?kTuQZSy`;*Gi1uW
z6oDZ+lHh=Yg*<-niYG%RmuQ2h^t0u*#aP#tNC+bv_s11;8`bz5D_5(KeOaOQit;dV
zcW6GdCi~k?<~R8iS9Foo+qJK&u^36e4&yZcc_0k2G2ZO@#p>CILTO=nuS1(4Lqe<*
zUO>$U!~2>+zP+K^%6<y@F>-6z&P1KCLPN<rR7U1W-22oC-*kkSVsn{PXd3u<e!}N3
zr28*~#+u{oJ$)ys@x6qqqMN(D``?fj4Fbjk#(?ifg_<^Q#@r}4KJ>UvoX($9j6c`?
z7NI1wD}gBw$|U7^3hxN5p^37sY8-JTsr7keB$qeOn1R~{&|Jmcf(RexIgkX6hTWsh
z0sjGqzvOPty(z+=J^Dz6^KM@2(NvX?T_uhYjKYx18-I!Mc)E|+PA>6nULkb@UzcAK
zG80+Ijv4QN)7}1xIWpk?FA<^7?$zH5K*Oc<NApU3YmPEMril<OW}yFHdzOBDKlShH
zT?DZV_|;vVy5j_=bCODcf?kU2SwnUYZl4k19f~zM5*@3Z&4Vco;MFDyHWxq0<gIn5
zAOW3^b+LLi`#n$1&nGU8jE0n)oUO+MPpDF)mTd771!-|ZkFtcBH;}|%FU?_>;fFax
z;?@pMTbGMOUlm0%QEV&L?VI~hJLxdRs_cfxw(ZM2^{BZ^b8_-amQA?JX;vDL`f)C0
zu2E_TehXHFMLoUR-ydutgK)yQ&)DSu>M_UDPA8XHH8`#GcQ8u8#|4jTc_IfB!3eOJ
zLlB3C_}IG;Vqnwi<PDMS!MFwu@x*6J_{XG+e|LOPv|cYFyk&v-J3XXEyVQgYokdQe
z_J)`YH!@o9ha!WRc^FaoUfL+~^5eiSsmGWKF-xNsNBJxw<0R{fKTvz*)m3d>Gn9^&
zsOmc#+ah_J9$H#cU@5!GyELv}nQsKK*l5X`X=V<#;lowe?pGE#fR-ahKE?=Gp_b*}
zJ|aQZR<S}x1yU5X6B9MVk%g3L(u5pID)+>~PiUasyKmEXem?6GRF=P)ko*oQYSMrj
zE0D2!K*5yqLwX>PV0)^5js*UNK<JZq=e-9}gctCW&Gjgn60;l{KHyT}xI^_vd7r(^
ztl||OjSZM$pEV>^E;PhONy_`8bh(c=A|N)!@YmZz9ba$gPhuQ!t(~!fE9dwc2WZeN
zMleE}3M}JEgrfk~AK{5D4rd7GE1rud+3@Md78X%Y$RUQB&0obWrReaxTKHoy1Y=GN
z0WbcQSEaTF@KftQwz%OnDDbc}-=w8nuE=H{sj_Y*e-$&i3Wh)DE{OIKj|0?b`Rp%f
z2*!EQ-KKrF&xi*Yb!qQp-?|YV=_ShHQwBnlJZ@S8WkmqU0oA%J53JG~%)x+YLj59V
zvX3sas<i?2SzGb;fzWqL2i~XR=UBpb{IaCaAQ=~6uDjA^^@u^zS+Br*@K5tU=1@4j
zE@4;px-oUVH8e^<#t*NQi?{NOPITh-HiL509QD^vtxYBSre-J&jo)nIx(I5`G*bHY
zWjenGniwbx4Pgee9q3!Nko#oM-gz?b-Ux9qUypB;&~7y#XZM|ID?xQSCSRB>9c^i~
zWUUJKJOQ&7GY!0*!u6l%NrP;o)eFAc=WLLh67BDRG0PM9IJr>#RPJ58%pK3(sE>Ie
zCCsSei<=7Y%(ljg1?Z;q;U7r=(n9k5@3%Osd<c@zwdAj9;euuGx_Z6$$9I<j$I}7z
zWIYykSTf`V{<4W^i~K5y(>8y>$2OPFpLX(Rc}wB2<$=}67ZV%tVb;7#+W9EF-fk{J
zAF+7^F`Y(C709Ir;Yz~-jktQrw0?_H9nTWb_>DX+)@}!oy7x9o&q~)9f#k_Y32Aw#
z!gN_N#wk!9*dOIC%FW<5mR!lWPZn<GJy|PJr0t|TtTkf#l=%lCJft{)!PgRQ6bNn=
z6ajeth06}y2Zi<^^Ppwj=42cO8icI9zY1&<xbHcm-rU0Wr=nn0tCt6T%m)$uOktp`
z^y#q`V@J1!{5KAA9KFX+zvWCzD4Iz*4dV+7AvJN}^EmyGFVp7qY-|(NFl<RpIEmA$
zue*x{l9XSHka{-Y<Vl^N2aS=LM5qaj=o4Vr10ORYn01DbwZ|coU%8PbczJpM{!y@4
zKoX@$eHT6fNn<!N#4bR9I_&-$DAaD9i^g9@^&GdJr7bHryuif$1^GZ4>u|d(=r7Bi
z70&cCXDf(HGfkc%?zb!N4I6lfQ4g}aZS$o<fkkAnN(u^JPJBBtzHr_VUK3KK1z~1?
z&BC+nXO}@6gMTAi`rjuk7rDO>;yRd(GD(stjOzM$jqU6dO8107#%z36ez>I~%>MSg
zM(_KlB>Kk?*!amwWk;^8f50QA0)T(Lt7$^MLNU~6V8=*gV-hj-G&Hx_>M-c%3Oa))
zLQMC+wPE&?{Y;tn7l?;jCU`V(QY%7Hz%IF_Z0#P&lrt3QCzU8F2skRyJ}+oo|7pHh
z^j;D&A>Gh+d#A*;ZL{4a;_7bZ1{h3xiIBw2GrKJqH|T`@=i48W?0GkH)@gL+Q5ksf
zKdB+7tD3U^z`*@KEr%FAOis>yQsnM$A)FfWA`b{)fz75OEB=%I{|v3LWlA^czyy8`
z{&d;2&MA+gPI*i9=F|wONYK9)nX{PT6RbN=7Or)7O)Hffs7fBEKIL|_`W>+h(Q>qA
zYN_%R%j((@0#99wN8x4-@<%mNmqNoVbn3&ANg!)qHCj&dC1(>GmyRWHz#P<iW^`XN
zKOS5sM-g?=@ro@I)TndfN;R(cK`dfcK`3;gv!H+-I;!}?lFhafLD<IWTw9L)*?N7<
zre6-)%T&jv%po3fG|?D>)RfD12$9pe!>giWQ=6e55Tlshg)6k8&`=6l|3c+%sA8Z8
z$TdO@$8Av8wjIzM`|*>dvj8+^e>53fYhH5tRj3oZMun69{ter9rl8W2xHM~=Twl8v
zQW^nQcW<Q<%RpS&$XeuW(;NFU=e+&i-txm^<Li&o7LdCL_<rB}we)qb*TvWj<QsiU
zuzufFsc@F9l4fG1hruGuH|f!2P|rOE{+68{Z#m_%4O+E~nx!_w-Sf|&6E#ji*7hvT
zKBnRAM<l|2!-D>}i}dmRyEDs6)^~a9edMiM(GHp{Mtk0nnU4vz(;ocPJh2IDHMc{C
zo){5%ZV|;sdJOY%S{dyM!)ljsdc|F@MO8%@(6vTN(t-1p*?918G&7htf_1AYTGNvY
zNf-Dgg&Ksq<p421HI2S|`IiLX4Dnd#BE1zY$Cl+lI;s?ByDT@6!+oFOX{4q0Lshq>
z;9m{p@zA3)169H$s6^O#VGfLKk}kR2fWXztCaRAVliB6~AQDxM6T`@N-_fD)nI;B)
z0?Hn+ywEqW#)8vMop|wFX;;1I%kR!(M}p_?3VE>N0OV(Kj^w6=sF;j8+@r2J=(;oz
zZw^-j8RD1-esZLXSO)e(7}WV>USF;aUsS~N-Wvy`sG6Xj(ssxya#9{YaShk~brt%V
zAlfs~*|l30v4L~}(bDCc&tJGRwY&Amm&_<f?^t-3x9{=K<o-vUgbKHPI82GDc3zzv
zmftT79s4p~SccyFgxHLwY%nx{A4`jvmREeK^Wh)zIGME`bS3xmsfOxeXe+@-mnu*C
zP&uD#Bc!|yY29YmLGT@;5mI>CR9*(mdfIdosn101Q9qW=4>j7?_NY4Xk`#q4bAj|X
zwj=nX${&+rD(~wt7>Z5X_8(>kK!3!NubIb_W?pbU5}-yol;tb1B<S-@{p))*u>9h8
zm<?Lj_lXJfa$_d)g$ezJ3-ED7c&%`Z;}Ig8-*3A-@@QY>X@shDoxbX@&WtFK=HUM$
z_rmanY(PT@(Tfxp;;XtV>5f`MIzj9}=`Zb$&_bGqb8hKbp7LGILz?lhID$we!_`^a
zFDle{m2DGGEL8ro07U2W2K0q_wh!_;%6Nj_N{e(D@p(SRN+rfiPG`+@f^~q~p{c{C
z8?dn;X2N&wlJUm0nloNY70j|K&D)kYvu&9<>a`Sfis;5}aTB1u*gnhJkc3v}B5o~U
zBlLOHM6!;U=*d1!(BZ-PvSobq`wo5OVB+s&G~BLy0q2F;3xKrt&%o<DTTua<|9l-x
o<=KveUebNx1H4~mc?X`>eb=vJ-aZ*YK!8A@`>+xaCvcGe0~e9Ar~m)}

literal 0
HcmV?d00001

diff --git a/assets/instana/instana-agent-2.0.13.tgz b/assets/instana/instana-agent-2.0.13.tgz
new file mode 100644
index 0000000000000000000000000000000000000000..72f6262dcd1066997ed8c8b03c51d209372e1500
GIT binary patch
literal 134699
zcmV)oK%BoHiwG0|00000|0w_~VMtOiV@ORlOnEsqVl!4SWK%V1T2nbTPgYhoO;>Dc
zVQyr3R8em|NM&qo0POwib{n^nD30edp8`kPYixPM*2VHA%4GgWmX#fkqsx)x<YYWq
zBG?U*h?+oe04<t{@?YmQ&bK^E9_2jAZ=ni6qnk~NvK?EQt^Qz(-MAD`K%s7^;zAoL
zXqOI|FdO?Ls!TGa<NS+{_-t-&Za&@Ff&Vu*H=F-&Z#~)iVr%EwlV>|mcAh<b{Ke+h
z<7Ye1z95?)6Nq_FsSQ<MY<_TG&B6Ue9x8-1)Nm>EZif)63?I<cjLLq(<wnlMrQRji
z9YP4{5<$mom%PFyLnf@Rxnb~)kW%HlWMoXCcQ-aBlS#t+<0O^ijY7$+OpV@fORcr7
zZ&^Mjsa<`#t-T=!h-`DNm5mY0$K6mPrH1Bmn55L0oLSIQW{1LAwo3}Cj9{v@SjKgc
z(`mO3&Ys;3t>rJvKI>jFrMVQl<iWpxy_IZlbvGZh7FH~0R5RCjZL4)?!N2#-Ty1w~
zQG}mc$@Z6<$z~^GI#s+d@UjLP8AwH5mwl!LGfa0z(sodreJl=B*5RpbVZd{?yRkvF
zW)>T%6agm)Q&Naw#}4rOmhp`#7lv}dl-})h2^&+M?~(z_`MYFH)w}=c@ZBK}wcprJ
zhg7|L_2RIqFk(V*F-(kN<xG{4eOr~iltR%gk)yHxpBYP<rC-D6?(t}>BY+gk6u(S{
zrO24lOw7WCCH71WuAkX}PwDvQnd1KeAG(MCQI#F@oToHNuhgY9bf(53eD3b!=WeZ=
zBRZst{+zs~B9l_h)D`%>dx_txir;g=m>DH!a!hB(bcJ8F{kZwKs&z{BXv~wd2^~*o
zDk=D=?Kj>ZciI-ImZeG=Abi1AtkvmeGQDJ~6ZXh<vYBi>?tE@ScmK3L_4EIV<|We~
zn*msS{y*N_*?QVI|97^xw(rmXPw}h*F(6zMGhzhrPbMRtj>v@PIq5S}YL*d--}_WE
zq8O3|tZ7f8E2_9Gb@-wQ)mo;U8kUg>HzTNwXG~|6v{9N4{AXE^RabB<Gk^>FH<D;(
z@C$)2RAhu3l2T!T+&ej3C$EmaIo&%uKYg=*{^s<6NJaL3ID-~#ja^%)6LoOOrheR-
zrHUD1<Rues_)}Rb*I%ibwh++LjF>PyrH0wx?nr*1iDt^uyQD+NC7bRNQRaEnQzj=O
zmo$5gJzlcuI?-~>3?DO1E`^*3JHsoQ<_tcstP?Y$hR{5h6K!F!{rP6rp=m7#W<nJs
z10}~EmIOXU{W)0R^(i$YrfkcC=z^tuFy&%c;l}n1^D2Sopm{!pkG?qs+yY}~eWkB#
zZ97lUx*Y`0;|fU?qsD&ahHwFmSfuNMrp&$wQ;e%1&!I@Kwj_EM6dWnSO1RN(wPKUK
zOE%SK&}EMdILotyoLATcKrJAQj7x1uDuIE~h#0IuQkv&1gQj}Tu}i_i_h?Fc>kfX`
z;JRJ+1xpRTV)+!26E+hd??FbSo%#va4AwChq?d$Mh#mK4)=CetS&cGACYH{*Hcaeg
znPOV|)%@y&Q1_<7?YHOWCvKhM*2b#DNbIH7(k@wfv=aBjL{>;H%(qe--_1yB1L%+g
z?ACFpu9Ip5Y3wkSLa@|?9^*DGIT+fWyNYF9O{oqXESD{CoJbYmDD2;&9QT<b52+@U
zoEf_`*FF?5+sQ83*?EjJaXw<25xe7PmT_Dqq)*dJCNf>?2xlDHRt&&1lJuG88Pj2T
z!0M7>z=x$`8M)#V7xnCf_tu+lEo8M-1FJ|gV>ca6R{-&agK(F;{Rw2NRnl#r`}&mI
zf}~|G{1+f}{|4P(T(arEyGi=)42}dQvaXR`CNjcAs;023NS~PrW1=xpb{uKW0U<O^
znbtM3l=#_iRLdmOL`XxX%u!0h#6YUl*0yj|9VY=cu89=+lrTa2c4JFHs9yjU!pVpU
zqS!x5rtRU?M+%70VJjvFN!kASN)V|sOH!q4(Dt!Ts3$>o0Zt1>E`z9M#X^&7q)2_{
zXd7o);@ZTTN711i?=gQ+*~4Mv4rME4UQsI)@|@|}cEWLFUmtrqv`%njC?>;^X7K<U
zO7ScE+a3oV&O*s6o*^e-xqzoTc6w!20Uotf>+!OF2=Or;GCzTcUwD;>IYV|-mMN^-
z+|*%-*!CP}kt#dQUOb^rm~VEN@gb|InfvvSCYK3K$SdgU)yqIcaLqM<`HJvCg~D}v
z+*zy?ic7`Klt@c&;yw)>t~dBAJ`_?_(}-}iO^~5O53Kz&o}>A|wGTJ~*^IaaSQbnf
z;7%Iw7&_b~IW<hT&0$gI`H9SVIt^`V+(SkZ`w_rH#0Btt(^chNvX@WjRL|)FPe0vY
zhwS7ko-srp8_+U0*k`;;xOPlHhH%X+Im`dUNnl1~CBPUH!xabC8PeCe;1!Bp0TF{`
z3oMWn9z`C&sEe-Wceq?}FvnBln%xZ)*DKA&(+fIbmVvy$S{Jq<Ml(;A1~5evOA~~|
z**}Tkgu|#>1D>72MO4VF;_-gAyT71X6DkNB7iLPRQgjO3aQiH@48R^dfrgK{;Nx=a
z4{SNGBbW9BwZ{f-4N3%?<kNt-6PXb`l4YJ*z!js}6!0ZWdw5K3BbGO;W|pLi>Jb;i
zb!e5l1K5_Zhp;_w=@sR<CD|w-aB*szJwsS_$tFTv78y0{%qVKuaEjsy0h+!`PGz2R
zF?<6>+!qzU^Ti1n(|2z~=y8{9Ve5s=>Kna~SrTbvo6JW12?s>845gzQ0>dE?Yj?@7
zzjbCh%W0qGGyS-?OLc)|+gmp>XDS*>{M$&v#UL-4NTX)0;K+w!9MN<VR8RF&G?S^`
zNTo<wVc-woq@eW;y9`X10uSQ5-0%dg0>ZD%1_A~HE;uZ8M%)k1ZUOPfh1Y}AKE?j1
z+0UugZCr!hxbL_I!gUfCM)Fu~D=U}C1|`rRfP+G2T@PKiP|T8#Xjn6VS4={EghFQQ
zjO8pfQUOY|`_aJ2WW-bqdOWmr#IiE44z;+=ioWJDrKoIwQ0i{Vgi$o#>ZT8{M6J>s
zU>)bEftQN586R5$MKeoKJ=f;6DAoEw5@<iZq--q3nb&v(2o)PrmE~5lbH_@AkBk+$
zoQ_dWK<>7Z2yA^1+^#dRv;m%s*;uNe7^yg6_ud}CI7{}}IOHz^%uUh&WECpyl4nn!
zAM!=LrbUSqqSojB$s1A%?oNK!?V|qDqTD5$$rDeTVA|V;i(mX;H82aTWsDASA7QAj
zM>|l>+!|;dpX>6*VQwW)X4l`9%*!!rE<b#GC`*vA>a;$tQ7dNwC^b`E$0($A`QjTZ
z<h`TgB4<|MiRFkfof5(D(C9NVw(YSD8l;W^Bbo^<L2#<1Z^VHV+*k&b7^;TsRzy`B
zspybxxG{NB<9=4_pkk!D$Ut?mh$~QuPrKnwQ>3cfJTBR^))!9UtvZBRI-zE?OE$D)
zr6R>gq2#+MXkWtWd3AJlzIU{DvG@0bqw|ZC)8qgB<HfhfXXk{8E3PDv6j04tT7a@^
zXk|u4312{~vatP=<I@}4M^(Y|&6(DfG%}U>4LzJ5pC9iZe|KXquC-mzY&H9OqnTRV
z&zrM@)0_IRt<0Gzs`W&w?1r)Iot^z~eERanvAEXS`+B3<%cHX!M{{8d-8`U|M`yca
zKy%F;hpQRNfL_I3k%qR$D#FBL0UVkdR3u^7DblVy4_pWOeDCjPyCh>*p_pTCYAnRX
zl#X-neXvRnsVFTI?6``0*@W!JKZA4)${sKwpi~Mv6ia$sqg)f3niBNAP8VINeQLUe
zbI?VM?QF1&Skc3c)hl`xD-_dqviye{gh-PWBSQKEU9gmCO%>0lUOv<bdFlRw!lg#o
z9?-sR`T>!OSP-}raK0DRiYEEgL%BbqV#u)WNE)J8E~#bUOMz@d&_jn-5`T=m0%^IB
zTJwGm77nLA2g2`F;SXw~>e7A+_QD5Vc2lh5Pee7W>_1#XGxjKj|MgTGHb(tfLe6Bf
z-85sa-BgZQ&<qR=Q*%K`$gxGYK<+^sRi>s?ZZ;5{b&stIPI<-DL~&!7u!z@XUt10Y
z6)IIXI?PjD(mj`UKnCcI(A@AVMlxzB+GSFi=T5a4FRFEW;=7foz5T!oC?iG&GSB72
z^6c&`Xs-5G142PT=Q_YeOZ~YzrY0R#vnGgTW~T^}Z9nJQtVbq4Zh^?CZO5&oRE~oR
zL^m`M*t*&UM1W1Di&~>@N;P{xR_A<Juio3g6&td54}7B*q>2|OUGm_PO&`==6pl{T
z-y(DmJa+8yHamnOFNa(tBN=sK=up>t%-B`EZCVst58`teXQ^_%@j8_m>iqi6i-Xgn
zgY$#4i_?Rbd;8}XX9xSI2j`1u^qj_L%|3P*iDHG+mRFi$?-VRDq@Z@c)i^I28-m94
z3RK*o@<U6vGuAJML%ZPM#}&(E0T33YDx_w5twTsPdsX#W;51WLJY|PWk77XtVK_M2
zd-2_YI|j~<_g^2(=O?0uJepj4yTquHbvkKYYQq#BGVTXz^#U=Dq+t+v{lS1@m)C4?
z?W<b?^(uI(iAXSAC9+^bkNCjUm7UJ2%0d%LS^|gSCl_g6W-O{(Fg4~{qgF&X(;zVu
zMlZGJf`8mQ{4VLZLuW*lgWK+5G(^j8#*Af~`JmP{*W|ch;>`B6PP9Z#AlmybnI(?W
z5N20^=g?93;hL~_Mb1-h>|qj()z9@RQGJ@?RG-ZZ|MbP)eq{fzWN)X#Lkz*+RfDz<
z!*VueMom4-;1CQfik0Emkfu{F$*$vAA`=c7sv=zv$EO_;ayPa$`^|G8wWR}!?Mnta
z+mvOXKmcWZy*o{4UtY0#^H84;$O^Q+0%s<!wT>55=Jn|m*p<1+77jKxJ*OXNvDQxq
z__?v2`cm(9P&F`?hW((pVfcc~&gH8CGzxYKm`9pxNoY~zQ_^$0EkPuGZ435nNACSz
znp$cy5C4>$)ygfi0z6k0TQVB07-^X|q>ir!uy}z<6&dMaTRl)!z^G{OWf?NT6sV5N
zU`rg7d5&a&jf>o?Y}<TM?EAgCs+DFz1?uL5Pz15ls%Hh=?iou<#m&^&IOfjWNwa7)
zd9*YmsrWBWevU0)do|6#Dmi8UD7oc!dUm5GetPgI=m9?MNibm+@ggIypKId0^hlrO
zazd`QlI<r+v=4Wqy>vcLsW<~YkQ^9*r8(Yn21aq?Aeu-<IBH0q?a<ToVCb<dr&|q6
zErldn3rOsLk-`Zv_OF_8GA*@{V|b583Q}TAO<6h;GM7WZ@9aS{bD&&4*B8jK;hwD-
zN2`y2wuSWac}*so>G)1sO6!Kw8JO>iwR8rsk8d(vC6(&e&&MpCkqUNJb@qUwIaEaJ
zf2jnK1DvLc5A{-oGZY5xbSqPa@7{n~K{4ROa-LFm>gm#HdB5HB0+BoOlAxu=^1I~m
z>=Z^iZm_*9t58RjbCI!viHr%8PyK3W=-Lq#?OnQoejSZ7nDE*Z><fYaQ&jG;CVFeT
z(nK!_$wyJcR~qW=&2gBUx-Nb(JRe&-AJ5A6=FYOy^6^ymVM?BCMpF_jdr_%EW_!Z$
zy_rw2spY`#Q^UK#Mp-ywU?l^$y}h-IjLY2cB9DzkUAL3LK<2D{+LA^gGnUjkdo^(0
zbwH}PMm$KeqL9zXUY3fB;TiVE#qbr9LVSJjj-{oYoR#&ah%%zO*3p1Xm;wMa`liAh
zg6wMdXvVbdEzpH^(i^dS?6q|pWieDVW2D=iP;Pp7S_n{mS#nk%RH4{_silFhPk)z8
z7$1(zF4@}LtbHMXH;0pRrpCLC&jjt{b(>@S*(p^H-dPr3`|DWEGF|khs(Chb$1-Cr
zWr-E96a{1DE74j2Rbjj2Evd8><foaUMi!Q-nSwj<O5FhCoj_M2E$Q8K@gQwZ9&XFM
z<XV+ro_<kgL$=f@s+lPZLcs?h3-w7K8VIz&vsTd&-8?m&G9Ecil;&20HXHo!?daj7
zlZR@K6qRc}D)EEsJ)tC+?lL&!><%uNBH(VoGT3vZkTSP@dK;Df-QC<m88UX3=&VLd
zaK#o|ae`*F(pC=sQPS!ItT0!)ySWwKv%!F+W|yoSN!)B~Wfq3*KLdvCMKFBs+Zdnz
zso($c@{ry*IzB%*OUyg-5&F2{{_nG$?d`_>pC>y{?(hG8lIPc7yY_s3Xu1D~ma;vR
ziX`9TJ+SJY%*-37n<i^(QC(juh|FvC_pyd{ZEcPG_FHH5qdw4_-P;GJr^lze<VRVO
zjAy7)aJNXn{oi?rhHEbgX+HCs1C?2`O^Vt8dpP(zQL#=riJJR}gYBH#KAbarCCCMF
zS)_7Y<jgQq3d3{I%V@k9qZ&7U7J|QvrWN42Jh%1huOvCe>&*$co&EM3>2?(>HS0PH
z+kXW{!hR@ZaN)qa7m<T4T;{Ho50|~{TKoEM4}Uy<bLtEz&UWzn;K#L@Dq-RID*t(W
zbZ~LBcX+VYyl=Lb8>R$xmv&%o#&jBC)U&HFCEhh2=E+ZR(EET{&2bw%w`@6-<6<Dy
z*m(hqaA)SPGoA5%^|kiDdvkVvaN0hpUDDdJzojSpz`SLZ9rBP0I%KeHPoy#we7C*Z
zG^|sv#d7REnm>I<0lg9L7|?V(-CSrh9$=$cr}^``B!JJ)QKz$Kh((}*n>~(WL!F&e
zb>kFRTTzHg$a!ph@_^yBq4@S>tiXcdIfFiI>efY@bUK#0vs|+}iN770CZC5)-%L{L
zWcnjQ_r7%1fqX~E=RGZ)KR547*zW1g^7Q6?n908cL--M)`#2oj-DM~~7kf}G#O`mu
zbq<`>K@wF8(vvBn+1M*KX_j?$ns$xsmYONJ{K#`QWEtuHQXc^63evcu&Ih(l0e&-r
z9Pgj3M;><3U4)>NjBg{5R4T<%aJcBaGC*?;y<~)v0h^GqY_VaWgF~5v$Dmy>39M;5
zgPJiifv5pkkSZ2{>rcVI%Klk7X*hFEbE)7h{oj78uI#%7c3Ji<v}B0)ZS8c-tJ~>#
zsD@5^pUWW*#ny}saqj9}&$n(1_8L7x<!(-BQ6zQ!BT(?x#XcW6(oLHy6V{8!EaabC
zBLB3{JpB)D?&(K~1G8BFv;Aai`*BnM^K|FQz5eG@Jl$@$7K$t)`d3?>OD?hydJKc2
zjhUetHFP&PGc=uNDzedxCRMO>x8pQUu@GXn9U<Q3!nbR;Z&OmSC8NFC(w43o)7Y7j
zKhkkd{#Gw_O#}x^FxhD|N=W2Z*aA$AwSw|4c1;7CD2xr1A}$O~)KtC5{DD=xlWPg|
z-!l!l0yni2hof=r)gs2swA-k#1e~6utH2E*OxmE1ir>_DJ>rRLzY)A-ri+<MHFT3k
zIE<O<wdg0ViUW@QgFH0Tf*m*Ej00z^krfRgNmiO2;$4}!9m0j2s6$|B-lK_Y@{dv)
zR%>d(9J_6McqL9*A>XLnSDg9K(s66$+x7Sjqu{rHLd~eX>$t>?Ff^OH9WZAjs#rE3
zl<ND9fYh712@Lqx@h`UaAy-PO2pe+?v;eZOvG;^TGgZ;Rx!|}`%fl2k`+k6h%UKHn
zt1ewF30U0hl1m5?-io~WCFU=qInBK<Fb(|OQ0x|9-2#JinrNc%hGNUZb{izl#!w0?
zYBstOG@+;%vWnBVshMURCOe3>v!?a5S$x2>oeyoN%IvvvW6j24Qaes+(8df)#In@h
zHgM4X=L}{{uA^@=N+y%*B#NU1n(x^X@s;J-ua|7P=D~!JPxAnYdkVvfuL{pB&Dlyz
zjJF1E=%*HRskNg<wPkv0N87w&?}tJ3Z(V@H$mO~1gY(X9`()^_^?l@cJMXi<&E=^M
zx?|5DKq6{bpGPKZMVFcxKfchk^LC!scvXD4=ItDXw!vw6PQ$L?a;-))92$>3mgn?Q
zueN+w4Q!Em)TB1iZ(a+PF!=QSmvqCuEC_u~ud`YCZ?@u1ebwU<`L3GLik7IFKzzDt
zDL`bS83^apxgC^AEjZG9RZ8lClq$Gq;x6ISjJtHxz-F6&zok&fY!Pj1hIyL(>LM`B
zeuzE)S{n6k!Ly%c0|m{N3DIj>074h%*$=hwJhPu`Aw_0CkMV=UV{oRQH>tH*3&?Ne
zFz^kuZ~kU0)z*LBA|5XU#vv)d;X+|81%j*l0lmj7q1wN(ujDdt#I1Y)Fk#_UNNISm
z-+&Qc{{vu{UE$TiFdJ-Yh7>GpVp$l%4hmg|!mZn*c?V=ciL@vqdN*^^WGS$GHxYFH
zUPSABEU4GY_%91aZ7c+@Ml1%v)|e4I=0eeeuBA3K61gRDSHGn)_j_%u&08=_fOA`%
z&8@Xyt`>E_G_IoZEttAZ&$Tn9;;v_cw%tTkYVEX8mgSbpGApNc%!St5f<Y~YxYo`G
z&_W;8s{zWbptuQu+wemndX+!vt3Xt<Ybh=~+wxqEdk8)?s||_bQnh#IRU%Dg$Z{2<
z<-XKRgh*JmUP3^tIXy*{mg)s!V8uOPIIH&7ec|QcZ)oQlL9FJ$e+$i99QUd*0*GHV
zcMPt=P3<#rMS>aSs;0Yx90z~Hs5rY{&#y;XwQ^XoO&w=TL+j+X-(Uc)k0vRqY2xNp
zT1;PWu`y@kZDCRJx7jZjIHuWIX>SA$i?(oH-5c7!CSDeA9l)$I55nHezKR3nIC!c6
zHuVrTGwZ3P{!LREMXOn&NQjK%Ae)JG6NT@Xfo@JaOX0m1bEPh%K7_e_IHLM><fT`y
z06|Yy))tpaY$3AZKwDW`TdwJmF~yBdL&TK0X_&x9B$;Tb{0YPHIP=kE<{@jgkp<XV
z4&3*dqOkZ~V4CH?wWXI^T<z<uichofV-m%!S-N0-^Td&GNHY@7{Ndi*^lgV+kCfA{
z0IHX9L0aa0ozZqQWAQ8mz&Gw`u?xKuO~Ksq%Z{<8|DMr)&ndff<1NabdZ3-TUA3x-
z+IZdt^*&H1JQM$?eLc(+a|>`mfojfMVhr5`g>OD^KQoHaMOAJw+{H^{e(~GRa}~a!
zeS(|uSK2;AuGcMJTkePBxZ>zNbD^p%U1Y9BsXfxqe6!Nr^2<!q@&={_b#BqoLQ~Vc
z(zj^;7DlHV>fUm_#mmOK(KX`mw2_?l1{PDB_WtKCOfo;F!3_|#HF;Y?__<wL@1I*d
z^ZdVkG=&T2?W$zXF6u$gqc4jc#c#O(|K!=ThX42W)9tOzd;jlG@ihIvA#|V**N3-h
zE}!d~JNQ20{Z!`cCU5X~jdWC*qXM!^gcPUl8p@l~?}ApcOEyM~=4SLu^}<RcJk>KV
zHd2~haUZk}zGy>@-q7WEOx3h{?P46liz}x3QFlX#Vb&$I;D1-LETT`e;Ow1Y0%GyF
zIdI}d$cpUC;ype8A!C>_MhZQ@Py9RQy81DpCLPTOr_l4d55ZlkS*lK!Rv3`ek4on(
z`Z*WE!a<0?N}u@X&j;VW^YNeJau(xkQ0C#~N1N*;#J^pD_X<qZW_?T;N+WejbDzDX
zrFYn(QW%;SGV|q``iMaE1HRi9y^`W**{_fheteX^S61eB40AoEMb&kPpj*AUsx6*y
zCnb6%v*xcEVuNpiu2h@Ak`ry1FlZ)8bIQl_KSy7DJ|+KSBbUSG^0s6nmBJ{Q2VCN3
zoQHpu($HuFp#1u|=3PgT@FQ?sXx!z%{N%K#BI`Hr>uLxtM=G07kUq-vH&U>+00#%_
z-I&Q`f!!EzL394g9O4wZ{IE{!HZ5;N#hlT$b}g8hNOj4@@CF8;zBoS0Lcr_E^E$NT
z!|6|;AaC!w)N{wy(mvdgotb!_;wX+0{HH)Pm-U=WkSgY~&qc<?P`7<+g~L|(d>hBl
z)O;?Zfs5)^`n<{TP1?hQy|WC7Hj45&q{5;B`2SnUe>tNWQ(fjVnsjd#{ouJl{@Z-I
zv(=FQo@_pQdN2Qdisz%te{E|d7X9Y49LQrxm2t7u?w@5x;KJ7X(co4>(Ad)T{T`^q
zE!n7uGhKXsV|RZt{%^DY9g&@{266?OB;lt0zw_)_eg8k++I+TszyCkQ^I`k{1tR=5
zY9O~pI`;2VHn27P_F2$-hmcv~bF<1xm;IkvY8>go7U~&BV7Ik3<2OJk&>GU<bEEHr
zpZD4SZ6toq)`#cD{r~hy<NSa2?Ag8k_mez-*8X3xMn2}&Z{;@bcm49u&HLZ8Sr=mn
z#-+OW<`%JmZsh;BpEmaY<Ht`Q-|zoV@ih1U)mF!E<Vp?cQGel4ALV6@D_1qTsuYHg
zS)%z+R}_Ti#fWY}J-4Sr4Gi_BFz!8+KvR%skMY-ul6{~$A=b<8^UdejqEp`b3jMg$
z*7mbxGuceGY;nxpfTZKVQ4U`#dK=}lsmtZN<oVW@^vmrpx1tz%oiLyQA0E=8g(lWF
z(4t65pAP>w?*B>`+T{ByWV?aQBMCR`|HnH!o6Ylod*`12|0GXy|I?z-)lpxihpH{-
z_@ZNbNWKN<YAeq^vzBg-BSxZ3QCr{}8D9;8Y%1T?E@a*sQokE^J$VTeKxS@xzDM(f
z_<@j?`;vIysVxuC?eg!`@0!IoqRyEbH?E>terZu2nyM6pg{Ti#>Xwpov(QwJ%R<xo
z4fQpmeE0Fdq$((JJ~E(moITx{`?V<2r#m^D`&~c&a<e(isBJY4ZC6QfDp+iZVFR`<
z>2_lVIr^B&@tBINS$?D1ef~j@#b(C9_C>wBoopprUp8x>v?Z<cPtLEHU|Pe;UWaF7
zO!0SSniF0?sI7*lNcaeMwE|BN;1Jw!n!jW@tpYJ@J*kx`nBw4;ieI<m6i>ASytWr<
z#@`EkNOANb&@TjjYqJJqLka0;e)cY^yWhE8r781|zjOL@b2CbxM&{l{zPY9CMoZp;
zv5yvvdUKFD_rzO44s=Q})^CkTt9x@F-9&yZg;!&zZT`EWDLa{&#m{{{|Jl!t{9oOq
zf6+djALReHx%FhH>HoL&_}>2WNuCz@uT^1klZLm!;Qe=3oBX$V>ia(#v3!gvZ9ifk
zH|_r?Pnz+ccebA1>wiDVvr0~=F-&2ab3{F+!0nej&$t+pf~J>r$aK<K#pDsXEG(m<
zi5{^$C&OI!ksXI@jEd!uNdy?3=sgu#XO##x#3UdO3&jTfoliOOKh_d*Eb=KNvnUWG
z$W@qg!IDn$^6cWwNX0s<WM7WQQjqWW&q&6V?j%EQHsD_bzmxQTQ5*2De=!<v*nj*_
zeI+)khWa$UEDJK=In$j-iJlalM@gSvb{-{WTy!4&|2wPXd#boBHF@>&KzEWt$)7Dh
zo$!p&4J@bR&z)6r{KL_~=^3;I!S3yT>fp<}N&f2l|K-8ScgH^-9vqz~<LsmLal`(9
zy4}?OZtZM7zSsYLl4mte^BrXaKa?3G4-HF4q)_aNv&mYg<CATSs3sHyIl@H7=#^BE
z(}s-cC1$Q+@2o(=L<%`%F!O%MN3V%ybPU;Ks3wKfn)mH~fy_arkzKneRcYZsT4AIm
z3*8*EwPU6aose@$Ad;NjXpkBQ-0+!l86~2DIU{DsA8WxGOGtE01=(8P+}tEg7;ZS^
zAm*A(s22b4|NLLfU6E4F5=d=3n-kqmMVz~ZYoCv2OvRLF!wO9%?En3r|7*LWm$qw5
zX)VRLYMU(Nq~ZzVBI?&A@Zq-G7(HYpC+vzTGGSyyuNa|Z#D^o2v7utnFsPj~=!Ux-
zGZU#U$;1+IE-;@;p=4HKiWU1Ymo(Ej^g$^y3OLD0I)Y#sV|m5&oLuoChf9@TT`^rq
z;gBsA8B4*9gqRP|_eg4^;TC+MWD5S2gbO=aMiV&^Bx4x_GR@+ZIvFtqBg!PxkYfd0
z;6w&}RM}2oO+a!M2ck~Mo*?qdGP-PnIZ3!~;IhwhIoa)W{>R%$i!>)C{7(-TmPraR
zTyrUZ+yvS+z%!;@#+O3zF;!F2XMzndvw51A_7L9fbRLoK<is9`l4d@IRy6Ij;9V=L
zF<6q^5N73jVTCz3M_sPpESmM?)@>@5m8nCy_qj(GD!Zn)o%MwHkV~3pcJnA*_2iSd
z3rs5?;-$G<G*L2s=#X2Cl3a=*Q;XJ5v_CqJ$blQWOB4j@XJ#Qwsanvjw9JTCwT2u#
zGwa-T_kvk=#m+M1ICJ~BeOrX~xt2K%3Daup5@x4$HQOn(A8{6=zTH(3(q|)j#UVQs
zrs_(mAT;~A)b$+t(e!i0#y+u-o6%aPF&*-7+pPjC){2U@x6<&OYn<mQqgcigyUJNu
z&Y7YU%VdQuHkKL7{oL1x7%q4Q%l#A<Tjs5b0JQAe_2@Ipwal_lcn!%)!m@&2B%^xN
zmsDkT;?Crlkx~d|35|tv;Iafj-Xv`-dGxU$_{`35*nG&6VM2_eDI=PTOATx;5VB}>
zt|grgbO#zY7hXWIG3A1k0!cxX^a|#}GMoNxdFPS$eQ;FFk@hOTdN{ifph9MPJ-)@T
zPMAs8U}QPJWck!08%_x!MK@!p2jklCG+IJg2}!eJs3**xTv9VjEyi}{hIZt?#OG2e
zsy_Ph=>`*7TU9RiKb*o(HaGDEu-LK7r>=ppEo%toPWsGDn3YhZ%T*U`Ur{?7#*D&3
z71C2&hf1$&wA_cqdP06+q{u1o8Z^rYY#Sf9-76M}(}IOru`eteV<hIYs^}%KEOriB
z*G&at(&?<O;z{qamvuVd$j0WwjQaN6#jQ|nZO07FZlsXMZy@trPV6Ln%kpuk5DWmF
zUa!}I{BB<P*GPJXY2R*>BCgvFDxf)Sp{Hw9%ztR)mHRd1i2JRjNE|Bv>%aZ_VsHQT
z!O_c$H>ck%Dt#iA`FdyPaji%_A>^-dPR4p$QC7`gLpI2Ik((I>SG=wrvv}yds%Lp5
z7A113$%)K}512tt-2Dnz1(;cmv8;jZX!Q<qI&_Fe2<L_P0N`RkfMVbvY@5K0Q9+Ii
zCeB8DV8~ALF2MS}(1be>RrjA;D*ESn>hk~T!QRWmgO4fue{qxizrFeF*^`F<$JXP=
zTle|jKFPD{rOY7R|M5H5fBa6xAHTodJ30L0cP(>pB>3r}C;pSkBvAfTjyKjoS7`qD
zeIV5zzmIvUq`&a_$M0rD%^$xbebImX{_6aX-;WFXUjFers2KnFofhHhtN!En0kzb`
zLXiFOd&Y8pWq(<Q$NvA1l3Ld9kKd~v`qMvtr=^i&kedJay<)u9|M=bVX7Co8Q&O5g
zeotwsnSDd^spdLCk<5=1nE%4?G5^Ie{%@-TeEuYO2-0pv|GO0^8*51=`YB@xB8pL7
z$VV2{($_rqDMBIa65K%!^0_CrSDX?WCoAm*Ca4EokY!cI1r^hJ&QHslk=}kBeDRPL
zJ-tqPm<*wZ;>YQWy?vsYu~Vv%NjXsr<OR(Q)0QcX_?oR`d+T4x@oDX7c>b@QN62+N
zZsBsyWe5+6YLGaEYhZ8~N6E<L>b2!$fxM`bR~;t<iejf}vacUKg45;EBcdnVq@#6$
zat*ecaYG(GLWd4;XMFT1>2$u~N}F|e4~Njok`?5?M%vI`uh*w~)cIS;RO;%^VSw;#
zee@{I((a>2<cARx#85TF*`9mAt`mldYzrj|lsCs5oL@+v4WtS)=%)Z!GFWbLR@#tw
zb=l0c)ga$Hb1shiT-Nwi+z5eDRhVxJ6HoUVd3G&=waX;y(igX(UzK7v26z;+yiHbg
z5u3U!yW8YgUmcyD?;Y($xsB^(YAoxw$7ko^d&O8*Nyh!R8h5%9Gp8%$zd9{5y}C-?
zU?OOg#H*FyxH(N|ynT<I_11EDObMEU<U$QmER`bVxzqXJ^i<TOPc;L@krkKV+dk-E
zeQ+1@aQ}1-Te6f7_C{9K3X9ZjM6!q71aQ0|$muC8)b$QthFB}MtCwp|<}4J`pulr$
z#1T!mO)x+U?6fJ_Kh^6{X#eyjsY17aiUyStLH@61F(Jpod*#&VmX21opK0H?>s^=q
zF~^;b%U+w14_O&Lps5vsJ3u!_RFg{~C!!{VQzc80kr5SH*z2}~oDWz!O>;)5CbBd+
zB-2LVxgu{fnN~{m>LjznO7v(Wld0YS&@cK-n~Orx)Yv0-0~PBR9`6@Xgq!MI%Nfmr
zBwQ%j&)Ik#ac_acyOgM10m<0S0~!us2o6h9kVlW&Cil^!b<!^_;XXP(C%`qZjD&+1
zR&55}k3J2$2D1JNRv*o^BonF3$dWrSNqXQk8JF5%9{jPqVi_4zQ9^rs5Mi{+&hN{)
z{OtL39nx=)ad{ca^PqcrTM9RbpB}D;zhOXYKAm|2#L<y=>Ipnf**c7L8nEmq(k&;S
z;oE+8qmG68qRjIph4*f^6o#rgE&M8+YzRenQ2)M>s!V@X&plr!rn4G=#rlEeH4XKA
z_U?>vN+<>#1EO$TNM$IR3IrMRp|h`m#;w}anp|z!wRp9?ZZ}Xgp?F9RD9_{U?tW*7
zZEINzcal0%2aMAyIrVDfGsjTD>s8{}Fpoda3%WdkmL(@rWvEWFv!d_>%&4J+8<NUA
zXQ>Ih&e!i_eN4CRxZL$x37l?N^_ISn$%v<;P%r9DqDB+Hr;24v*nJ6ImKyYfv@|38
zHigBC<ceytf_+@F=}OY+>}irQohsh92LP_-w~iqsZvxi_RBzv6V?L)1bV@T*78g`x
z?rzG)NNRI|OHzuBiU(hH8?FniVb_dU*P^@&C|@Hrnz&x+Fa}(p4ny(b$atQ^vw@Xj
zW58LS*}V?7j$pAfn&kt~-1cS<{@(2C6RG0Ymu%YWbS{phVY?S0!GD0sbHEmGE-NBW
z-qxb3d+LHlte+mP*1mQX8!*L0%GN5q6Ye&Tebo05I~M1cpM@cof*bM>h-!s$DY}JX
z<CV2&CZPzbgkp}Lk`<p;8rI0VTVvqp8FL#(k^wX62&{mX-bw*527S4Qs0!Df0MipU
z587j9Ky0cb5HK5KDoS?UbNlo^rC?|?!6T}&gxhh!UVvRRk`wzkaIi3)vnFWU%(_FM
zrB3U<(oo5=z*@CU3g^gM<a#ix`3LNb+5*^E#dEz2t*%9~Q*(La^aKtS7HZ6s_Bx#d
zl+&U@R^F<Yg0tV7)Do{^lw)oh1=lM+-?Bz=qp+m<R?xFYe>JTz=Tw6+yU}!28`}lz
z45Xd+jWt*ZXAY?dmCFc+MklDr1(^C^cR3?&Mb?~u6tn9^mYFZ0ZjHIrR`(vbh(f)F
z!uXpSBLVC~;4L;VGz9?D6r`M#6-h~Wbc=Q=sVf>U{^ef+Ljdt9NZTPlQ>$B$2fwa(
zAJUcGUstM#P%FEl%=6!VdqBEfGcDNHW2T0T{L8;|d`E6Lsmf-#fgtbHR2t;e(>9cU
zss(L8r;>AR9INiD+1CYCbj-l);y7}@6`j%s=`UASP@rY*&xNGZxh5yRGFkq)CNJSo
z1afeTdjIr~ojAn6=YFm`*Q9&<hrCy<`{xc#9H728F9l9-!IE)G4CmTm0$Yj1vep(T
zC()nu{<$VS!SfzDV~o7@Ol`P9T20!Ta}SDy@sABjh58z2fAa|H`hG8Q1!pQ?PVS$X
z=h|{I5M;5dSk~2)##}&;JbZJ8c8lX5))Mk+V7calQptj?lL8gX@`@?NL7F$Cs=0n%
zvf1_)Kr)MZklt<{!40Sfk?a1Md9F!sXXo*a^ZO|vsZehv^yTYW5neU$Z>7@vXYu0+
z{*SUmWt9`9P)?Q;0kc>N@FlM>qn#-eq<-`WWZ4HoQlUOp5G*l*8tPxhI*I#d!Q)Z?
zMx!ELNK?7vep*OsyFRR~o9mH14TiBCY-(^P%1Cd@w!&ykOJ?*!Evs$4=J&^FR<nzP
z3dG5+7?|6u1!Hx)Q?uEIVq<JwF${*0lq$t*hCjP#(Kq=|UB!z~k9L-~FREJumI}OP
zQ|-q5)5F!i{n)i1yK*AB7HM7lcw5FWLVe}I=Ct#AA&37RN3&k!_~s6LT~n`rMYz+$
z$EfVpnMyn7Jy<2Ek3*e&wOFe1OK~E1__-#%w?DOG{wu_MY%|%bCf6e+(sJ8HP)&c=
zPk*!qxEM&7O7@P9i=4%)Aws>$b%N{X2y~D)jNrU|FWO(zf{|W59Er(w&zo29auV*i
z^Y6|;S$9RjbKOwjYQsL~I_MqOV>nZ$3?G0k#;u#`8>}F&^TfN5S@LINbm_<M`p^F~
zP+yzUh4ldSQE@cXF_Fp)wbgy9+0&hb`~di_>9UQC{EpaUiB)rVQ1_wFokji9Tt1?{
zQ2feb&>oBTs9);2lc=wfDlWz5S=3{eM<C5cqSwX!v-r6V#;FZwoce5#G*OR<E|*a0
zRH%2kF&*;1B79JZp6lSOK}*eay&pq|J?FCK&f`xr;LrWs;av|XS)yKqdP9d5-r<5H
zI&c|qJMf6*gZ4G{@pKe_iRYU1Ai~t=7gJ_XUuA<`2-`Jz1!xB%?|h-}pCz7a(!=n7
zcN6uf*jWf%4fQVh8IXD_s8+l9p>q#dBjC-^##U$p9*1a(r~*31Hi-2QreVfK1zh1J
z>An4xtl0KecF9WBNY^`GaJfQ$`>BVKIpC81hy~XL$7On_Y)}<(?P6Vg^a;O<1V4v7
zeJ)1yO|aEeI+*MWuL0XOh!k+YWaZHcI$eSzjbUm)Q})q~kAJP_PNIG+vt@XDSI=2&
zY^8*p1@A8B6iO8%y}gse-a6^MI{M~x@9g~a&HnkD(*yfv?}xLyF!s;#T;sfaZZH}I
zABp4Pl{jUEe4`dF&1-V(t;XI-<B(o45jmTZH>cmBXL%KABDjU7QV5pfy*`plq~5_{
zaHgpTg_7^44?f|<{8`VPG~d)w|BVayaYD_gWeqHY`Vcb&V%^>2AD+Je>dzpM$Q;Bk
zhk6%_1Q36}``vRVQ4jx~qTjPc{vlUNs(FMT1$#@={iQs>Y1ruzzQ)i{LcWRZNzN;L
zeb!nPU!V+axLZWnRKq{KKdyYknFul0YcY^E(o!iV%>U2Gf~Q}je{|Pf-0qfz3(p&R
z<V<(7si0$?c1Kd1nzhV~ShM`JOEtVl2-p6~n&;2LiQc>rHB)m{&A1v%R|I8?>bez|
zqTxGwzfA9!>HBqh(=t7wT2G|P7A(`k6}exg_sjIp>U4&qLsss+&vnPf-LJ#H>~mMw
z;m0}F>vZ#ewcfAR_v!S;)%uZ6_xsg)zgj=M(`vP1tdldNsA0otVy49ct^GB5TLpr}
znnb&*;7L_2mbyn3EEhxdrFQwxx*4>yfsMFdc8P4PeMPQl&g;7WWAPGhC_9JCQwbrs
z-azHMp!~k+xxO<n&quwA0Zhj9-5cR<<>#zNuF1D@f&urV&}JzW;A01MGC~cJB4y4+
z1EUMH`e(GRI<85^2XL$0V8G(LGHD<3T$A3`-GDqc&T(<dXy#MhE#q_x0g}sc6cSrw
zWjK;tWDz3RB%cP0_leAE5uIo@4WZ8MN|FN?a>U!!Nvf#EWHz={Zk+2@Dk1udT|{9`
zezJLc@8_EIHt!tj3z;PlL<vKk-Gut+0zgy?^z9fk%S9uT{|ug0%Rkqo_v>$W0{0En
zV@}=W?p9T($67O3-}5KIrx?gz<+-z{FBF%M{WGUpFS=)QO^)2<8Y;*Id&jk9+%L#U
z+yLHStEfA~85hmir~h2fopi(jljl;Q6JP|kq@ZKA;heBw84zgX6TtnKeeN#mm%Xrf
zO>D_~bl>{9!>Cu%$W-14+ch}>gcq)S?1G0&!AfXO7Pk_9k36*eIi!dA_Wb+=#B%$`
z8I<QtudS1wmg%M5>G{8&{5QH(<(|8X`Zt=X<#xSSqkF3jBAk|H^a;TJ>ppiE^$Ru4
zaXsQo-lP6j&)r4+8_ixGE#VD)O<qWuGb#ulc&z7IVoJQ1M`xb|_`l+FH&JipdOqex
zCuvdM7(HR%tJ_Fglo<9NLg3n8sZ{^$w<+d5*QB?VJh{85$HbG1UF|E>yEK&*_7C}s
zPdJ3X)^kmI&z?R%<ewk;4b=POt~c)c=B|&k!rt%u1<y6<ZQjXUA5eeOzHiy}G4}8G
z{k-SS?s_A0rj|3`oL5D`qE^U^P_6k;K=#)Ar~Pq3vhKjswA>9KFVM{~bFRsrD|(Oj
zTRnHyd~+r9a?EZv-G$iKu0q`#w~#Kt-vURSREm@pMsH{%6&<n-*V4wP8TViFxw9k#
zk#{IdaZ}`l+PWcQsByn~KFM<@SC31Ja>(?^C)ZxYX6~g1gR|A6F#pH*hf${fkm!BP
z^oY1TE^tJ>(uPYSRg{|ZtODSZ&cP>ru1U|R@-BF{)#9#S-6r^U<SN3%6;~43j4P@*
zWF>C6E#E)*+(}+Tv5cms%B!_7XwNk{0KyPQ;dN1a2sY%M*EP#oYFHL$?5fh7{?k3R
zL>tkRxXG&=sqL8>=Vn|wE#JnfYil+nbIlG5sIO-cTXF<1xh`@#t%c%sl%8cFZ`l3Q
zc&^F!ZF$!|2P78tm(TTuW<pDqU_RY39smo@`)l$_%N*jcKF6vUW{Z-lg-<@1zrwR%
z!WX(^-@9PH=W~Z#usxgCTm#F7!o@WZHr#zU+-09@(i^7Ao}E4zuAjtDy)xQSe{(3@
z_lkl$)6YL)DBL?{u5U-l;(G5D1$XWm`{xOTd&i>SwjcTnJvXk&{>d9}s|ylzuOeRm
zgdX-wJ=dhS^VzWu&vK}rwcuWp!<wbm`)S-Sf*YP|(tEnKvvUWGwl|=DuIC2sdcgNR
zx^MH`G5@S3P~Y75Vb|Yd|8|c>{pR+a+4Y6Y&RAM1Zl)OQ-f2@7rZf9t#2~*vwIX}H
zdL+Qp(u}0yzpyMUkGi$Ru8@SBVnj$yda6&;1eF1v`FC=tOXUw&H@LB!VI|j>!tgxS
z)Lt>AxfJATE7^W>m#%SKliq;lnmJAC%-nqxMXH@t*D7WsXj7@qLH&(_{oLD@Gt0op
z3jYhy{|dw9hd8JZG-Lj%<l3!?_14wr1LS*^lI?ja%g??F?wD{_+i6SI3%maG#om5o
z4yiW0pY;1De(spfR2EDama{Q4YMKmHk=|%8uTYOsj3M3;i)^HJv!^L53<)ihfs$h|
zkDrHEv?y{HBTADiPRa1}WIrM2Bd%TgO1#;@$3@QVf#B@#Zl!+h_r1t`7-1dL{jFqs
z>tEOHS-}la44ROF^dR+up!vC?g8@%nPM1$X67DqW?OF5rQ2*`u`N=)%KgEM*y^>>#
z$5JPXjiq5fC~nw7^xp#Y7RNl*kW(K_G!~7_3K19(&e>ag*!9K4_T3{V0j7}k{=dbF
zsMx&E{Q&Cg^R^UFb=3Q0l-?T(f@!dKh1796X#F5U=z4Sei;PHUaPQ=mCLGLjP}dvt
zD>2{$ka%tvnRCQ?)mp~K8YV+KrVyIH&xqR!AzRa~e{-9VeRpivJB;n6sVs$AY6Zl?
z-C3>rJ)^hqx!b5;#%-e#?(D{FAm2z*>c4;y{c}83>eB9ANL|`M{W1a6uE|~_U|N>>
zz*(N`Q@0ZCpXj+`UXkzNqIFIFQwn#eXUw4AqhaYt$XpKXi5rp*!krw<P<{UdmClc{
zB;!&C6&7I}&d(SbQZ?KbU3g>KmsjkkhpRw7@*MUb>g$}UZaGLi>Tj7!^O_u%x#3+~
zm0(y~%}n6+0h-UQIlGIGM?K)M&vH5W>EY_w&SjA^m`;6rEWRHk4f9PQvzJ_}5(KCh
zWj18(?vZUAezPKsAoy@WcFQq0a3)k<eW?^Kf;P!Q{r|>xpF1Yp&9~gmy?uEd8|fk+
zSQ_2I9Mk)Ae&#`w$(}HLFU)Pm23%mi+#Uu2Po{MIXDj-zJDt_lRcA&ylo`{V4*p1~
zAR~HJ9YT<C(;h#KT%<|orOW)wHQ75kMAO=UOl3(X6d8W$)81L;V4X0bt>kP=*kb~Q
zyW8nJs%25_blRf%TdAFftf_jPC^kUaW2wp8Z>2WzXc}?+ogFO1@?T&LTeW|>82r%H
z8p&i@231rN&)j}|&~-X5nC6*NX}AOc8Z-K41P<zT`$;hfEeFxXVVI#Puuv|_IOscB
z;GuEsSDa$wvYXO8XBk;(0fc<RbGEWh<iIee1B2O8*c{c6Av!vtals9E&XUfa0IXec
zHt~YoLio@x4=ryTBci^Y2h;mwWupf0Dx#<Mu4}=c!PR-I;&C08pkO#3p6dc-QVnK5
z-EMi-K3?FY6;#nNGfdgRzl}EVPY<IXYYExYki{8wSbj#=qrk%TuDK>7Dl&`W{uD|b
z7fewj73?#Ow@$c-m0fsuDKe~iEmuBuYS9Uut`l~}1SxWAvBln*kca~#9t!DIbI`n9
zqzKuV7K9G$NTYM2(}8yDuzPmD)Xsit2VS$>f)dWY6?TUu<a@3iU+|W;Ohyf<?`Pv)
zuw<IXZ3|nyf7B-Hq|>=Ll7{VG;B0=&@-f*TQDrcc7$j|XcRZt{9^~zzW9(YC#0OBS
z#-0e=<LnsqT8(O*$c&uvU$_`r^s%`icGed~U|F9Rj|<H2bK^AyT0-+&PGBEe{&7Ub
z5O<&kz=FcRp%wv)f9DmRGIqI^+9!5-TiXf1alQ--^{0ocm5W0cd6#arj@QVb6e-^5
z<7SHVVN9n$==wQaI#4VtQ&vlPPvO?Mg*EIsv?nldJBE~{IPi5CZwfk3N74O;K;1Xe
zR(GGwcCTs{ucWh=nv&*zdNOL@`VkWuxT{RbxJ*ZO<&J#f3OiNn@l_WKSj~zCr;xwF
zhJZtD+mca`Y2J+3lnj}$q=&5&Ey;x0695yj#`$LnC92Gw@~<5CgUbd&>=xh)*bp#0
zIT7SFoBB(Doz5#kQmT<X01kwfM!M4<Pacpm!mUB?ngRC!EV3+6eTyB<6<`fP@H;hy
zom#g?0Ks%~<QI}#yq9cRTg;i9h+NX_HJkPl3oNv3A;#rm&qcdh8O@y6Inr%W`Mc0u
zF`9L~*NgAp9h<hGE@*1`9(TXVw(BJO*)`*jW2Ja(Mj@9B%_SaS`y#=e?m7ep%z-%P
z^~Jc<=EC8D3^>a(;#iKJotbq9;RH1LZUzAeOoRelAbf)pZ^AVOO*b;0UtDw-V>-PE
zZ8Up}=l#Qbtz!|^WSk)?y4u}Bt2>>Fl-Ey)!KWkT;JZdrTDbgEo>aE14WO~w9dKEh
zQ)SC@;V;2eZEGBXTPEyX!4!uRH*aNr61z1a$Og{RfiQLv2K>OCoEk}u-0ir){rEW9
z`d8=W1=}3cS?5w-lCppyF>Kb4(39Qfp@1+P(gK$g5@o7M8!G|B^gFKEP#~716d7~=
zs2j2{;Vu<oi<#8F>5+^pmSQHcJg;C0z{6e9OH1gG#8Z=EYWF%5-hJfQaGj3Wm?fRg
zqerg}PmWK|_m0kYA3Y*RU}~&p4sDuTlYYtbkd2^c=dUb!VfLHN9M}c!C|w0C%`*EE
zzzoK4N_r#PU0Dnj&CsLL&`U<xV8BwdaQD2R>7_lKI-MWgQR-zvASrMHG)_RpfO9gE
z`1Mcvu9XCq<$x<~{5#Z`_N$F(Wi0R|n}{HYG?Tyi9vyT)J)B9t=2wL4W$i1=E~{zi
z6**wzp;;#p_ghIoKJ#su4?i6}5C;Q%bL9m)l!1ipyW8pXdOiEL1Fi0M2$^lzzFj4F
zoz?@}A*34|BdmnHOUBb~V3-5rOjbiFVrkM>geAjdy}fXU5E6=?NM&}(&dy`98g?hw
z_66_?a6;x>SR^^auN-q@SO%?Jvgt0_d$IrW;G4gb)#&sJ=XN!aRm*a#MMI+kX#Srt
zzO9{|o%bYMV{|4>w~ft-ZQHgdwr$(C?M!Svv2Al=V`AI5`QF<<>J+-rRqIsOs(sET
z*mVz=7^V0=cew@f?#|^Y0B3+PQ_xia(CR*CRkTE9j&Wj(`3_o4dhMD$S|aFn%7w`*
zbJ081NYKI#*inxfON$$7sAuoLEfme{Kq-LE#=9hLK_4{U(n$Tf(`SU$9W%uYqTI8K
zKV-L9PH!H44EEeOzC4nbig~QnR(#ogiq#bL?{2(*L04s1d$4ZxNCz}81^9g>`NpFg
zLb+9J7uMhfYv=W-!AG~z(-fprNjg%{qN!t5-UoZt)GR;K%-?mpE)UW7)CB+xOvD>-
z<DiO8$7=Y!?=V|Yo2BOqocVFr$jm(5;dzICPKdl$x9C#Tq4c9-#f8z40<K&HKj<JP
ziY-WnEsfu0YiTk&+MZE<IeVo{|2L!uZaOa*8PM_eep9x?`ie?UU*z!H47H~01A-IA
zs|>mAwQp8*ntcLf0U!=BX-Dt)a9$Jf$R;&gGbzy7G;+~0g~GM}15@6Hv4eZ1n3We1
zgM-jnoKr|Fd%*R_=uIlIXzT&#0ToflTF4X$`rU(lU0(>eb%V&Q`OS4FW3QIrV<SjM
z;QK4Uz?K7gs>RBIxDEECX;B5LP?@}ZUnv>dCLPYCdyy5=IMkk<-ia&Lu661UNrqs$
zb#d(NJc5DB0~4n)XPe<rbp7+$$%W6g#r6Kf?!n8&((CPMJO)MC==b|*bZ}8O#tvSW
zXu4z@`?O$dI6V)2Z^^z&hU>s~eG_Z7A0|+;wuFoeH8?JpSt$#o7%byMzFK%>)xk(V
zZ(UKlShs!r?2LUt|A3zbmqE4)XM{6NJwvtHG=dn}%orNEQeru;0#^B7;eLfWZX+||
zr4qY#xPRq{8920jxzcUoD(bi`H}Kp%DayXU&5tlnDoab433ISee0Fd$$>C;NoI(f?
zu}19}{REH8Mt9+{7lx*r-Um}K;|Cv|EKY<<Y;?k+bhrnBJQv(}+99f9yb{T#xv80w
zy=Ja|xde^T(TXd4Zl!eDCV}usO($-E<%Psdo{6bY#orn`sp)f7gTyZU5;>{wAj(yX
zdgaXR(IIGde!Q-|9)Xg{SGwB<i=8j1Oc1S&^mycvg7C}`3?h>BVi_3Q<tkfxzFG<5
zce3@e@h<Z4v-NQ=@$f(1gL5%@2pe*ejPrQG-<?GAE%cEoeS=9+wQD}IvpG!-os){F
zu3X}7ecVca<<>u%&Ig_3MPu;9f%An&UMNrJUacOIvG80*LmM)bhIBuZgd(#O1L1K$
zA<E6_``%mmUw`cG4{xvaFXa5J+~>b^NQUpvejDG(1;g&-1@)Z`?pj2@Yyf20R#ie#
zTMxnqR$UzDWwWsQLR?3#cO8<B1A@e`UIR_qB#17Us5tZgoaGemigdwA38p`04Fr@_
z>V3{y%q;u<X(LFYH$&nx7qko6_Uk4m8)RFr@98t=P{$P;a|LtVE?=F`u${IDm|Uf|
z%d3*b{kA}iC^iD}qE{xOD%aI+P;yii^^~d2h`3)@$AHMG_fPaKULYDfOwOK<sh}TX
za2Xky<TM~qX_CZGNt-aQR)D+2ZYkdi7yi#!qOUln*o-)^F=`$TJ~wq%YFaHrCm#;i
z@_esRPJ))^+z{hWN0Cy%*Vn*Z0><3<IaYZfv{DJsCjlAOB&RTbd!vf-uN@`}YM9_k
zd`lQJ$l7YCdMSz2LL(b<!v+?thqLBC*HXujtKP6A%dgV3_co@6Muq(<eqNcR7{Xc6
zS>)a7`oM{5i`MS#HE?(cY?`($S)f8R#-O}}__32;UI#PCDdgDHR*V`|^>IU!HAY<d
zb&3x}KfZrKa`(2;Ud073RlhyD^Ypau4H&SNj6T_gkkHX{nM&#LluDdvH2!vQ2UAK@
z1V#S)0c7L?t)JN}==<5`-|u+B8E8@hBvDKB9hxfS*(QiotTUa=-3BvcESrA8mPY8B
zpr;C(xk-=n5<#-!38hOy3A*YCXt7vP-ld#Syw6$IHnRO4&U*4Sf(>v-_KYZlo3;hk
zQ<hl;IUte_gZ?>?>rl9cm$?qebU@Il<~lYn+h}8{vIRj`Ky~TkPUWXR4(t|;Yo$e(
zXaTIIY%#D}8P#=2KxIbJI|XwLv~u`dHi*(;gkiUrWOSJhJ?Lmi7{S4beOXg>z;&y0
z4t3RKf{Djxj%sqoPP~`wREqhhZ~A9f?I7j#J4v6guOm2AOc)F?@`$MRjb32Z5Pf`s
zbg<J4E5k2yxIo<Pq<(+Q2f?ak1-pl)%FxQ4?bO3rxZ6tWk~ya>db&%qrcQN=$$|f=
zkcn{F=IuP_g8}6<ohR-?(50Zc_rg-P&Coh!-O%Y5|AbTlzD`OdIW>y}xO8;{`&=_q
zXvmE2-B;zrHyBFR&(WStWA#C<OxvcZ*WWS!MofjTJ6eKpd@|e++t#q05z^GS{j=`m
zO(lL=>v)SvHsB!!PnJ4Z4^l!L3-X9v8CJ)E;6QK@B#Qnjrt-u9YgloLH2qv-T}r)n
zZ0;o{<N)MOdv_zCmj_tW>%WdF9T|-Tcrm2NWG>sa)#~9U4Su7ku&+ktP}fnn(>SSc
ze1Lth0U=3mZnO1A^<Kp&d(PdZi_uqrb4ZdS<A4yGTixZxi`5dL`^uMgcaZf-W^SMq
zuADzs;JfPZAqIdV>xg+^i!Tg6>(05kbgKD)u{^Dei?be%&!&5g<OaaH?7UlX4ta}F
z&sOCV)_;Iswx3=a=GaXG&`&g<8dD$6C?dD&2@8uWRMMQs%A}%C0SQ=F(;kp7TQEMa
z&}>Dz%%e7&n9XJOf_VNti@Fy5-Akqf8&*{Z>_yj}a<Gi=Xt$N5U0Z6XTs$c*^nUX-
zZkuh|f(Tf1OJ36(B|V=NcB#HarYZ}>%XE_8OYO0j<r}e|=4KleDFJGNemC|%lq)Vh
zZEYqC{{D>0)n*lrhcxlAu-~3Svi2%bFhlAdK1Eksp}y+YbUNR+WS7xe^}w0B`!^+~
z6l}(|vyPQrvT-O6Iih^A#xwz3?p&(Wtx^V}U1m^Ec5T1V+e5*CiE&}M8(KM3Y}{o0
zNpfN8-Dv@c9q%*z#T#VpdTuQAno~L1CIl~MItaJ8TXO8lfYCIJ&#+#SsK^+qQ5%k5
zi@_g}EsUFz+rEre78~pjrDL>@_mG`@+BGf70F(1cU5W~|oeMpZ^}lqzz<*cm=iQNU
zCJL`w(A}PW(l3anrw$X!OpM5sEpR?e&f;hv35n`R_pAb1w>){g+Avkdcp;sm6HTm@
zB@}GwL(VEfsY%}3{N+q%*b9609f0o$vPYTtEc7J6X`pHQsYgQ1iL4NoqYXS8&eKGE
zh)R#!`m!tN-+ZW!?;wy9ysq#Z+~k&{^&cI<x;>yIt(6xASxwIDtlg)XIYkuHoqONE
zXhM9}Iy$Q8-eG^o^t?E0Zx)V){$u>xm}JRkxdJDlIh(IER&Di=84mpM4-cxD4P(6D
zN6^b{B1udry4Z?N1<_tawa&Qj5g-=5=LmkO40}lh`emN5VCZa-IAAxGniM;&!uBvU
zdkERwfMQEYLNkYaCA+DB{=5nrvCq#AyUml2z~lF<W()ZjgWatOZ6K&(0yOkJtuiJs
zY=Rv-FS}g6x*i2wwPSf`dGj#>3h?*6x|4&>opaeblqtwX@u*!MT-g=!;KXzod+GFd
zhD<GPGAPIfV>uXfvl6Uqteal&j|mxD-du$nL>TqaXUDxK+}n~S8*PUXr)gEEXCLz&
z(giBz<vR_b9CQ=@{g+)8PiQCmlm2lAay17$%CpunvZte0-SgYh{Lc7StG9%|z$zJo
zG&;RI_hURR;SSVYUWq9G)_R3Nm>%;Yo|F*&RbGz{30d`Tce0UoT=9ksFnY{m-|q)g
z)5xfo1r;H;h|OH79}vFl^$z~W*8e0Z+`ZSi`{Ti3>9g64>tHO@gl0`Hw?Ef0(m!st
zmxt)HLSV2^$?);GY1T<&nvb5Zs>6`V7%_fIXhsQ@AGOG{*!zt4&K%0&ubU)x3l9SN
z<vND9zW^t9FDK8ozpsNGj?K9C5oKs5`VWKF!&k-V1hlevQhGiqw=o1XGom3*c5i?>
z0PI?gMkjcU8T+n<LMqk<e<pCF5N<@R;#DxE5*uoRLvoFNTY&VI);a&Gj>uI7)@@I(
zPKu-E3{KLXyj?O!Lv1&ot+FBTg+ABsR6<P>(0<<-*4~m@$%(NSC&FhSzNo|rqF5!@
zrCWl~yrr93f+vnxe>M1oD2j^>FOe_L6_yUS+2Hr7(;9zP@rRQimCgTbP(0U!1iBam
zVGtH$aSj0~{u<g2L4y_L=n57U-3xquyYbWa0KJ<C#6+^69H?}`O5*Zz*OMzv9WIl!
z%W_}M*#FD{N_J-Rq@I=GU)GamTAL-}7yBM{B~O<RTCG*JBej}Fs-_D;&Vx0^dgtvL
zq=Uedhg&@zULSDT50g(=#n#O+6^bT?91os6kWHn!LAL=@_AQ_X`{^QaO8M^J_MZE#
zSzOkplPvMO?MsFsKkj6*^PuHd(xD4C;)b1$;E%Z+P%tJ_)}foA-JwLct@uHM;e|Cx
zwtSE1NlX%9SxV41sE)Wpk&k&rg<Dsj2W_bLe4o*Vm;W7ZymdA?$+6gH)a-d~V(8SN
z!&{at-d=e<`n-t*%SZ8gf+>B*9R~|;DK@z(p@r&Uj-X9YJBXYzr?^=>5<N8tIva>_
z^FwwdjWl|MyR+Bl(QyCieE)0z+VE-rWcR1@@s^`_40Wby0tWd&qxM7&wVQPJJS~_Y
z4;N4WLS%H*VKf*ctM`Ch4m8z;9JPazGFdcxAHvjO#gwxI+ASrj$hGf&FpJ1u8Ik@%
zTYlKHP~&cjN?TmKam~~@V&PQ)<+@?FAAjTT%Lo$RvFg{Q<a9w@R!xhV$HVW%3LnuK
zi3xm?l;ajh{&JNSe!M8Rs|XLS!}hX4|F2(_<X@3_FB5b<f1O(+kQ}%0dQJCJD(Ax8
zKd_`0RN-oR*KD`kcJNX$CpT&CU>T9v9}wqAlTS$ED@~&N^s1q%pShDDh`1wcpXbYW
z;XD=NqSc~+_YckPNY}i6<8vb;*at8tI+d;zrnPJwL9#x&`32n*tiNAiJEXt>uIN*V
zyfz^InGO!%6d6ytW6*eKVmq_uCWi0iUH~AMzx`AHD#RYC@RSFfOFkmCB0x?Md39-U
znO4H%yoXGeJE}M2iv(C>;F``H`oT8daVo4A89%&MyAnuM8H5|D6E>)p&h-%j<DIea
z@cmAk&)Ht}MDg;uLWHPswOl*f)CcDG@I{x*j7|rEWv<@;=bZNbkIn8*vs>zc`H9<v
zQ@Bk$j|y9qR{`7jeexyQLwN4}2aY>{E2}(iG3Aw&Oqe_5fmuTS2nU^#C#jhU1-HR%
z-ZP_E5*6w<a|y2cxuxeJDm!t6?b_`E<!h@@SvMtgiCu2_Vhg*K%20O{bH=a1POJ+I
zu+BjqAb0~uwe1@PfSrxJh42zf078vg7udZT!IVf&(#Tll?TA_9H=tv8ywxty=}}rx
z4?Z4u^pSrpZEO9C%fZ<L!gf?T(#sx!Fv#oia+G{>)-)rX19O@P)4^dQL-gcR$6wTw
z9!n&xn4+EmJ;>rW4vMjaFu(X^ARrE@47+qmRKd{=CTYmr0-9M=D4zJ4T938jNO0SN
z0gZGngkKK1uL{IyGUC(h-V_eF;@$Q_7eN}+OV(gjx^}`~9i*_79@9+y7@Uwzi}LiQ
zEsy`XWa?!V%x$N2<tOtcV^Cb=O!T-$==d8(&3QFJ3~{Mh3~W1g0PM>rxI?bz5jyAQ
zL@Y@^KaEO{H!lrw3i%1WGfR^8V}~%>_v&u$XH8l>eBXKG%fAE5OEgLi(^NNyv97E{
zKnLtp-0_u!GjfGUN)nk9#2|FM=k_!{?q?e#M1%+V4zyQ&{Li18PN2tD-zzOA7JExG
zj+pnE6#vkKXAHTh9m{nAS(>59VpnekJ}&kn3cB?1$Jb^#I5p{aNd|o}6vQ{sM3U$o
zmIl}hPc)ciM%^9jYv)u2W|AM*19N^AZgcPDbA;hPVu=}<vId7^)~lfm?elP&r2=@0
zH6FCug?#ayKw2-|vjIci*eL@!9Eu3PkHaG#9Yd=Rmoh7lbFQ^Mfu3riU0(PSC?=5x
z$t5W2sQgwymk&uq>;5IQqg8gb$gT~fyok%xDV2DmaiY9?<m8PqY78|gB_*m{amPa%
z_&@kLFjaat6})}=g9GI}iKZl+^UeI!lAykPEGiJzC}cCwyrzy%U9OW5L-3$EbPcG~
zVZC+kk1xueKMzL_oqA+uQ8*8d+VWN}lpg&zUd;H|4pA2TsDgYpI9H60-p&vd>T?!0
zY*r7KFE=5(&6HdtO_RDv8bqf_Xi4~OlcH(<?lC-!CJLxQucLRuAli*E<ObRk4N#$s
z`Z($;wkC^n5j%}Jg!r_P#hVQa>N-+PX7#F$v--v`LceUn%bnmwfx^Eyu{$~~u~nkB
z<IxBoY+D&Uj%o3rwPUhZm7`^s_wfx7^MsOufLZm>=P;x68x?Q%@~hyMVpE{@3cX#`
z8xos~8Z3l!i*f#PtCXsM3&q0q8a+~hz}%e7PZ7Ek3|sN>hV~7rAp|k6(sizJIX9Re
z6cNyXKo$2g6W~6KV|iCX86={jAkIhYblRozK#QZ7PKM6X&;7bTFw`B<6v^Aj(gArN
zg5jQ>9aC#~ywLyWm-j|8fKQ6a2S$GcTt6^vwlcaFfhfb_q54CSQ-<Rl7ox+do+Bhz
zYf{noTYXx8^ESCd&h5#q-%dnTY0x0$pkFNCG43SnC>^j@%WDYw8JrN918%S>#M@MM
zLC@u3p0NRr^in)2HYvn3oI;{L<9<>i!;ne5{$)-~>?AkLU<&uKgEpHTR=`fwCWS|V
zdX#-ZdhG`NGOPg-TA1-5mqO_Fx|fDs=&p+JHo)wIIch^WZs!h9dT^FzHqAE~t%_|Y
zQ>yGPlwl^f5MyR(Pqi+_-NQG^|AD5Yl&(h*b(PZv(?y_?l~8p_nB*+od^zAgP0bGU
z^P9V>PVH{UYNR{vb~aPDoC%GLxlcysIH|;_#zN~gXb&k*WiXBpMJ6eO^kzW(Auel0
zomvJh&5)e`t}ct+(!q%pgOQMnwRm?%i>(h8&0PNt6wQa=Efu{AyAKeX8b4?04O_-r
ziCdgvCRG_%QsL;?Nek+xVKnpdO%-ly%d*~1_@lTM9-vf#MgrMF#&+qHnC5F$yxvCp
z-cY46Q*MTnPw*EfzO`2;dLCrx0!}BE#EeV>DN(_j3lQyujq>!6iIQBaluR83Tp*zW
z1_?P^yC-X~BN}bx`Q6E3ehgXWaNcxWSk(pvqxRb<Ga6|PY;_R?%Mm#THS6FbDe)SS
zB2CtM=YoHEox8z(=Jy;N=0SN%8HN3)_r0N_Y{_aHw)QT447eS<y}tRc3=O24L00Y^
zdU<)X>h0+YXvJTHLt=&vgmPJ1%U@CMBTi=P*Bya4rMfkn78*Da<6gAo9)WzZ7xy0W
z<%=?|RWcW8@xPRr%~aB1Tu)1OJ>m_7hQ@~z$>`K~i4|4SXXxl?MrGD6<KoEPmzsqu
zUAZ8rwhyoS&++Ne?};St^HMv=Rr<jNnwWrxo56PbLZw_83tn8!Xt8kQP-rGs4D5W=
zf2Cn1wV254bR!4SmA}+@80EQeKZVrsv_ioCVwcFi)k0h<M-NocQ1BcbO@!}3FQwC2
z<u2H}{>{Cgi#C=`M(y$gJN)K;Pl`@4M`EDQtNF)wniv|$wD-%mly)|g5knMYm^Re8
z0!p^id-16p2t0@u4Op!D{`0O7ZfFHnb7hR45hOn`-h8*}N{iL9Trt4fPg%3FCL5~O
zCvcK@`=!{OBn?Z_;0E12tU4ftdfQk#d-RMt40bM}P)Ryu<Z;(FAbG@!2&cDFSf@9K
zfc^dl>iS&Y?Lap;Uf4-$Yd+kJvb%j%uJB{1Nzi0Lb>idqF<IiJf@dym?=nioS<7|y
zd2hL(&`DxqS&XvN2M(Mm(=!BPOGF{q2u_aGHEHXL%AU|o;~X5N-Nx%9$Cv8MX{<VP
zHJPafgE~Xo_z-n;gpNBS6V<CrK8u^8+_%_d?l4gSx=dmbA3ga(nl2JR$&ME+j#%yl
zySn49AXngeU>hP~FQ;LW6hUic+voE-k2Q#7NtD@=-LG_mvKTeBC!e!S0v-)CAD`8N
zA@y|Tk$CaONRV6m<*IS-Y*hTKqVF5M*sIgh%2Cx7iU%Ir=U@KqUNH{W8X5PVf+aY$
ztN)f1^~38p9aU{hDWAL7y$<(Ef%`RH+$f1f*=8VGQliLGa(U^!t@CadT#ZTEuj=Hp
z<@!U7k<iRvm8dyM+Z%aaOT)fI|A<ap-;HEq`8p^_w9E^GPdq0IJM{qJO)K(-3G`>p
zj%rsZfvijPysESz=1)w_zKSaBvb*Ow0-kD2$c}{R=w<6?#-@R7H`p>5=QDrNhC!m}
zrcNUoX^u}0KQ2CuY-3g@e6GCk6s*77{V)tgAImY?FNmb@72%b57-1wmXM48J?bZ;B
z`ec^uQ-Y(mqj(!Ao#Vq8aiq$kYVki{&Umwwn*ltAgEY#-v`b;0gPb?}^pA3b^RZYa
zW}96NQ$i508GVh^*^^j9eJ71E3L@KfpQ8Bdc+&9oO-NVBg$+gnbFB>KD$r9V3fKeF
zS}8K!3R9Sq#S^$DYgWMaGf1;720)5q;mD8d(TQX$i<^`&MBrA5NnLc)X=jC6jYKG4
zh}n4Z-=5X|<7FYAMF;Av?&|~FY7LpZ+oynFaH|2yUfe<P`hC_<EPEgm8Oc`e3(PLm
z<Mv-p*rZExqjGN>XfY_L<77MBv!{iNMVb_-@8Fz)zvoNTmoMYEiX3o`oAbfnqi~hP
zaskPg(*On<XfcsQX>Aa*F~6-<AKb0Cvwf4-gzt{?j#yN4FJr*{aCRAcH%`UGL)de4
zub^{+y1Z(sIBM8KXq9)rDKp;jz1Pcr^z_eD#=~>-eRO1Y`3)$OZ^0MvdmCP!X{4BS
z%e~<BetU_YzATF;5cmqRnX$k7$5+BP*1P(#+mjXi9{oR_7ZKPmKI-J%5dm-W48h^A
zLuW=yJzH1$_A$4u5}<2L6<z2P4+!L-Ej5Id&KV1g8ZP+E0Giv+q+={l(6`j<H!GI4
zbt!h9FRx3u#}f@~n?JbJn&_Ry=wRsd8tq@zeGv3FU*xtc`lm-mn0nyD`YVl(-vr*@
z+goF{hp_qIvt@lsN3>GVQq2^ZqzlP^XxqtnxUa(FNH?B0W#q6cLBvGG@^u8Irelsf
zcS5^?QKJx%Dfx@9P`~Q5Nvm$wS663u#E~>ID$o%6?|}#~bWX3)d%Pym{B+S>#b7xs
zUL<8rz}q|f899e*+uEvNwbpjNVTI)Pt;<KD!&*M{BN}g}58(uS4wFI~q5u3P*Ib=C
zez@BY*Vmu*6}nhbEUah36%ZxLI!DE~gxsca^72IP0{f)n)=;wnew_lQ_&Jh!wgFWc
zh+6|PGR)0n<zKKSFHvv9AY1HNzv{+V(L}eu@ZhlT8G6GA84n$vn5pnJN~XnVuE7L#
z_cyv(rX`^R9&K`dT!{onjXPyeV^pRdq^*#<=1U*xKfZFD)w;<0n~&qv$;*`IYLP>O
zc9yl&&cGZR<xqQZ{!;&OnC_eN5til;8Hb8F|8vxPgCEi!$5bGC8gNk$97|!BM&y^G
zd>guK^Y3{G+E4v>g+um<`pmyhY+63OI$?vZu|X#Q-!}JQ+x(hBq!Y_Pw*1X)q8SE-
z2wndJB3d7)MmP>+`9q!_%u}SS+Cv0w<9$1mPf4VaXucDJd1DyTp<Y{`tEb(mQzXqn
zx1rh<w}2mVP)C?uzdPSBK~{U1Qs%x5?jFFF3!dKNo)*a68se9Gh32If)!$PM;DN3o
zg2|olOA}P1W0DYnfc7SQ6nU&qt>s`yC=A8nF<*ivLd*gYFjO*|%!khEYW<|WPO)Z>
zuSsqgTh$W0mjAed#@7E5?sMN6fxTX{fxULL6p`<)g!d+R6k(ZMQmH>nnEeKW!<v*2
zDhQ)dDX7t)+7W_j7|f32Mq82D*u@#M>*DtJ_Ve<^AL;MvZ0mS)cx;_qI6o&4(8&o6
z#N&s*8ow2&f10GY@l~~Pzu3|5-Wsg~=-N#h_wx68`M+KHRH0}z;S9rfgvsohn%)CF
zo8um+2Ng_?fEWghDVY(lZT5AvgR9BUWUavWu>xLGsGJxMNC=N{DYY_s*Deg|XtM@*
zU{i3dZybzL>X(ehLSZr5P3akbPo|Ps>0sgBGF_q_7`v=i-wzDmTrW@LKq7Lc76MP(
zNyD*ofl8Ma<OYr~QGt<aF(B{%8vR^kt9RLix(oUjcD}YO#tE{q%=X~XwGzo&jqU%_
zp7`c4@`}a<^2>G>y#Vv=O}!LW_(g^IhvtYKwt%X%)lh`%k-?VQ<NJ_S#t|_}0?~H1
zpZ90h!NuNqs{j5|_D~XULI?9j#()U^`E!eqT%lpW+0SL*P7&4NfH*Nk{+KE(V|#U#
z5_M^udJL5~q4k@O6%mP~>E&7AJDJrhKWl23CQ?q+7qNbXi|5B{r7>C~I+VuEBKJ@(
z<iZTn*KS1Il|)$Z;0eP_+y*6&^8zSjR(wr>RRl_<q^2V@u;VVBZTkRg_dBPD6QR%n
z24TPsME-VFUeqtAyd+ul<#Rr;*K%;k_YVYys=(G;$;l2%#w<p!uJo@&!lmT`)4<u<
zTO)|u4Q<SFR|UK1U!Zx%*{ei@$wx}&pzfv5IPGl<qd>xb{r_SMaO4pV4Jvrv3`|1Q
z>wW=TehA3qnitbAM*Qj)wf%OL&D7#;Vx9hU9EEhHV$tyf2|V}}k_Uu9mnWl^YFSCa
zXt$$GPG)5SPKQQ+AI&773tk(7*@4=BEk^IBxc_oIs$YZmltn-w_WRRNQ`(KV8m=2e
z!Lh>TfK=!)kP7b}Oz2TtQzXDRn%{<YYZOw;KE*nH*tHhWWLaTOGP%gC4!PhksA<Wf
z<(mPFEwAhNT3%BsK2g`9$V3vKs$)B1NjDbWhzNxmws+8M^smDqt*OsP0I2gOV3GG*
zdB{5*Q#=o($VK%`-X?2yj&=-*N-GBlI`0GI3xlt$@poE=pZTX$EuEBBT|mn}=qSJU
zMRezLdawM!4^Y1{xghuVm(88;QTr7J?_xaaiQM4J1xC!xlr$0Rqj{%^#%7McR@O)#
zVcTN*q8tx)Yw*1)i?8xP53p-|6Z#sp#mIrXDH=~;sdX(RUDfI8w{ITLgg>g;Td!yV
zwExE>Rx=UyY5Mha`uS(S^6%vBe!c(MA1(v+<t>Kq0Pyc`vt{bX=AHO1)$Lc2llvkO
z$fo2?`NqEfk1dhcLh!<Zx_U9%jb7XZ4mglY^Y_E*c<Wh4RS?cv0Xs-WAx)$N{gn2|
zkvAZ%R7yTE>6&w5<|2W*N~8g@w(W7a7hl)o8J$Kj<I9`PMLR8A?n`|<YtAe2ei#s2
z6q|$qLqGF#6o`VqNYz(W+ns$jG83WLdnn|rrCrvisNEu_0JE*w4q2b)(#?O=V}A9^
zD#wFgGie9*`#)r@S_Z&wfmM*L{Hxxk>as}hLZIh^zM%m~(A}EKh>bn8*-n}&LDn;@
zaL|N8%hRLRL8~4}-*qX0TS^&7Vb#Kh&8pyEOoVOS+)kGBa5h)%jH|1`_yz=*HcLXu
zXdqe_1*tj&?G2X1K|Z*l^W&2wSv(6GRdai#CQs}>nLJ_`=|adOM|N-b)6*r5G{H=x
zE4H|a&*G7yzYmuGez<FYBhWK23gi2JobC8=c(Hl0y`BBLwMtHGneQ_7)xLof2UV3Z
z4+K(Q627M*X+@hQ+E#6}l3^(ok6>HWBfXREIxl_L#v{&Fs=7O{B0))OhVwq{@N~8)
zRNQb!A=O|fOH2)xNKK7yArInv<NU%6%1V_GtdMEVKPJ*6G1<)&S;eH4R8wRNyz!Em
zzw_|O|0|;Cldke`0Fn{fVLZu&kaD_~U{#ApiQQ#u5U3hmdO`qLZK#wMRXcbXJx8`=
z2H%2dXT%+LQs~2rDH>e&uIqQ4Tpy({{G=@wHBY)_6JD-PPv=N%GJMuG_#MowfFrDE
zh<VT_RB3=+2fw^N6vL<QV0k&WlA(j%7{XXnBE=T8SnH@599cEaQuzCphe_A^Ph>q(
zlg=Q8f}V{ek@Hl+Y7XzbM7686r)^~f8E@n5GmPQ#r!bZNSd@zE$tCk-dugyoa`r1=
zo`id8HY!U$MHNAJuO=qHyX1G?>yflT$09_dN=rjwVOG_x6^ZC-U*Rr#2AgX)b`fx?
z1h+Cl)<av^OTP_qNmP9W^5C4QT|FXx8*QCUYQXQ=gcUOYPCt@@nH7FCGb(mzwM%2D
z973OxCpyq00&+g9;^U&r$Joo3Xch2Y5nGz>N?*b6Mk&TFsz!R?ymQP18f;M}%j+==
zw#d`*5gi0IbXV;TUm#*GFJVS#ZSpeH*fpoeMH`NlJ_y0C^1h}T<O*nt-D&_Oz-X)7
zC+Bs#8C2&26ocQe<A;4$LnZLc#>li89coGVwEa7V@zj`wfnRA99$4mOYv{6<rh2XP
z4<>WOjZ@q5;Ri~e7$}LG$PBQerJC%g6Yy3+Bt{u@8yD6}+K(Ci7=Qc}7NHJ-a6=;Q
z#GQwzTx2=lyQdYV@SEZ)MrHxkS{IEKCe`LT-(EIHz5JBK0P!oAhi%4ke#HzHYNWL?
z8NK~xQ-^G<Anr#;Lo_r>Xk~^IFUKBwd`C`yYxo3=%I!UgC8Y5%VNtx~!Vw2!Mtp4P
zv-ZXWzr>@vAf*vlq2G~p8Yv>EH4aPHF6%PG5HmlG5_+!P))@H4`s&7^t&pL}kShyf
z1}=7)4%Wqw?V^=z4wjVTHm!9}<#DO=g`iET?kg>9agNBJc>9^-kaUYHh}|N`(dp4A
z(15FswL)PJB8Y?T#Up=>c^APMQswKCFae1J?bzZE_CPi^+allocK(%`Y?wcq2x8D#
zA6RTol$5eu#A5Uz$byb!Jgyj+b9EaPY-rF_VKegGs|<Eor#zc2bclwo&pTENkJ@<H
zKs=9lE)i&QIt6?*v@Q7!b^yn!>J0exM%Rq1T!cr>EkZEh(Ev^Bh=3ep4;E4d#px>#
z@zUxJ<6_noi}V`qEsIrlZfQro!zIAsB>S^pHH)`q^!R|rcD{~tcp3Nhz<kZuAz~@R
z({dWtL6<$Dfr&ry_L)lU5&+}Y3z?zvk@$!2POK|sIohK;VkO$6=8<^&m~`J2+kGWs
zv92Jep~&$;qKRl$TSQ39RT0Xzu^f4^1_0&=TB?GBqYPZWqCQxw*BvELg1Le?^P>N)
zy{{#3*q3KtaUcM9F*6^(D>vkM{I{GewuPhkMD?rulUwR?`q<Zi4$V9i5oL&mh%J*@
z)?!mG1Obu1dDVkV@DeRFy3IjuEn71DIx^#u=Z{oasx%W;(y(l(7NJszXFWzmCXDkR
zu{c8AO>#R0LuB1J$K{A!yyIv#VJ-0Q;4>05pe*4t<o)9YNIPl%Kfr=n>|hIGHCmNt
zth1?w*YD_-dYTgi0F|a@PmZ_Ry*xojf|~u!C{kU_Q+ieH+1%>tGDk;zX&-OSM)bf5
zN8vKBfw^n1w=Y^h*@)Q4w)zs1f!Lub0)D!j_^e;5J6h9I2`lgIKlA`@hUWmTZZ?X_
z$K~vZWo>6AE&J)y|K*G}Z)e?eX*zp_Z!P>x`;j)oKES3s;@RY9;#dEh_-B`&sNT@V
zVO#57opj#w2#Xv^>0Tih-?{`^ckZ8R6BqT8DGnKx5V+}7&!`i*@q;;$L`R>HS=DE}
z1b@kXM$gF`qnic73>B(-64x$v|I%4!o$WW?QU2Lmu|qD9UsUL2ECZ`&O``!^SorU2
zW_;Mhtzb~#rr00@?Z@mBA&2RgSlZ6vRo{J1N)1*KU{vE78->Tt$Ne+>R@r!e;WtDs
zPAcH>#sN47rep*`fc~v}9F6v*=22zqqn8S^)X?+C^-c-*x<oOZ#2D%)QoGwqH>Qyg
zbw!NO;juquLhk&ABq6Lj6mAP!R!x}<nN#+IALnzwj^Ps8_ND0(q&L5EvR_uYtL(Mw
zC3%@<;c1g^{>g!^=ej1@SQL<M0a8r-+^=vr8@I4%$B$q>&BCM`$O_>`kr!{)0c6QT
zS}cL2+7Q#n>s41HG7ZBy4M%(k=#9Qv9OILWj{ID3JRug^2FJ)Y79ym7){w{9$2^t2
ziPu_W6Kzb?NpozYO;Fy6*M>$U**8M~^a5k%_C!$(zK;u)%hh%`ijPOM>>8k`qoqx(
z7mvNMi{QA&{*qFjB{63vKfZVF%XR2or3-|=1zYTwI!Xtypr$;IOizJ5vn4}`v%^OO
z98xQdoWTar8?J+49Rrw;LH<30RH6>Y;P$ygZlJAlH0`>3IN+GM{4FfKUbRW)j5X2n
zTRB^^L>J^1-+LCWAApe;$8UikYJ$I|$mdOO)fQ*%Hs2je#=rV?AWjN-GMx}ev#BrX
zsh=K~twXdrWY<1+ut@gH0IH$D!y7$JBeXw|MGfxS)_Ub-m6_3pR0a46z%?XsvwJ(L
zVxFuo!x}t+-3H0>Hx92jOaHh`jlSMHTpE*pf=KHlzI^UuRohD(>;y!mP$x<x*4X7^
zvYU`iaQIs2-$66yw;)JOAM90>p(9}p*^|>hUJSKKoXNAaW3IG^+l97Ndc|rkh_K-1
zC*J1s1>y1j4{a9xfYoe9pdx!$VNTQ%1^M(EO@8Go@Xx~Rxjtf>%qn3A)y9=e5`Q8P
z>0emJd!SAduEoIH&2qw4$I>6KgJ*4C;-!2$p0lmVFD(fj=3Dx3=X#uQ8~fX^3|Ck$
zKJPwQZM97|!XM%m_9IBv9IQ(jg+%l9omlH+ULdjk+D^yM05Jtkh7;_}O`laEqh2|*
zlprcvpah1Ljyij}oTR>i&>3NdyI0Zqqt9LLEM{s{E{6iT@XFU=A?9F*w$`5SqVKP~
zf9T7$3%=K(=iLt77<M&}dTraVKPvpcRL%1MT~Fcjz@y#|73yC8k67_y*gVo}6F1!`
zqa##lw=EZ-M9;FyWwTuAVI=)H=Yj_<!0v@_6tu9=sGD$UfT?Z*_Mqt(7SLuz{7A<7
z+a%WcMz4ysd9k|LhFVg3RyeCaF`md0M1W(2q}1ArnuYjB|7F#+ZiQ!RY!TjN!rB<F
zrCpidzpOxf@LO{Un@OG2+?bwmw7D{rv7r`~-H^hO)uTHfemmD-vD&aEUyox0{lHDZ
zfL%o+o9#4eZv9u<se7`(W?jqXEbXIC-k>J}<TTm^4IRvDhL^l6x2>+pmLccC$uak4
z2u?v6IbP4GN%>N{P6{gD9qh1)EraBPGauu5)G}yekBq@GAv%$$MXWZ5pyL*oFb$D_
z9Hv8Nlp&Ciu7w`E1uBetwP5n<>d|uxS2h;%G`Zr|G@joH3KBi4PD;i*3_Yo+nQIHP
z4EYg5@!dbHG3v{56tTFN2++{+*q8Z^Us?@{CKMLqeg<+R?f(#ESdA7Fx%u6q=DHX$
z*9OUnjW77psL!UM?Gw9ck#E0{#_;`h7!JhTLc-Te)FA)tK)E{}6RzDXGEF<9T<mR?
zxnJ=%->>Zj>Iaa#X4W0*CEUME0;g|8H@-BEWNdUgd-%ug&0-o~t>N}F^g(}gA?)Ih
z0Ky%keQ(+my*fEvTKA?dWh(yEkC?mf@^{`pnR43k<YbwP;9q2UF65{^{~>>ct6*oK
z;Jd@Rx6Wm0HGB4Cn@vGzA5|GMpDC0=N9ED&&^<^2j8Wng^V;=!Jm;Lfgx+k=P{r}R
z`vPCMcT&Z^%bH(g-bA&ak#`BL@2h<hc1o-J#HkG9l~D1kNA1V`Me&wbx|TZQlZpg9
zla@4XC!=n8|9?9EIkz}v**nQgUg<B8m;7JzW2v*GyOkWdJccFvZ%e;Usax-(haQH_
zwneJc+IL3}DJmZZ3g2t7;wxJcTYGOR@9{E9J~A3M+3Uk2buu(G)GYg=Is*?(bybXF
z#H8cm>SloXvO1>C`WH1^i(4fF%Zp|jmQHiHFQ9)3P|LQug1zZcSo~k)LQ&2;Wnp!>
zDEo=BOuiNWut|dJQc(^=fBwImVhOI$r;8fdyI-4s4u;z}$IWA%)>p7UXsy*A!K->Q
zf>eLn>`_tGx4x-(0>8cNS>8<_>Uh@*<^#R9hUedU(+d81;SumWFx~v4nI=D)S@Dw)
zYu$!j@!tE<$9)<v2A%6rl5PwHt?N+dpR&hhh@bkixiOMouW**W03n?)jO1!bz25`G
zr`GUK|CQeVe8o$l6?_ZxGyiu`@ae*76+*|dI^IPU!jmfGdu4Dmpq6{pc=$=9-Wf0&
zrMu!)y^2rcrh3h%W)qM0=f&eE`1@ZTyCo2x+J$*I+J-vb2Q9V!qiOB0H$P3&+PBJJ
z-~OuCpGH4oJnZ#dZ=B6~eV6)kp&9IdM9<mo`v3allj^3h)I8^t%6Yryle+x>Mg4D;
z<@r|sTj6V|^*xcF8ZWs&!}^gCaX)f4Z|s>k>E)*nMG>#aOtnOk=r=4*D1}LXE2@Rz
zkuf~mTXe6{5d2hT0`Nhn!&aN`y$D+;l;xv_bi6KO+ZeyabrbMId3^|~>|6M*X)~<X
zKOXe+eU6y)0d%pO>Mu77Fl>xa*DWq#PBd^0Ru2r{cL)EZ^m1Igj%>(JQq0xeUdq57
z6iLFGeEE?@?u=OS<g8`wVcCf>vP@L+eXMh|jWyYveVwjJYF^rnEc@}1%I`-+&7^6W
z3uq#O+f!bf*XoyRS60XNr;EbWmK!@BqTl#(m|5%k*#4dVO)$0gI#Qr77;C#AyI+>h
z+~84dbz4HBu{lZE?$n-n6gmMt3|+g6kmGDChK8r|yX-Tn%~?G+gQ~*l$0TWg?szx3
z#b>hm`?)?B+x$<*RY=yd{jS0Yz-P3xB8jAgyh-@9u%(9&p6AqkIGk_vWZ0DprmVCT
zerujztkw9ti~Rfgq}T89{^mtqLc-sZ?IXVT>+Gag{3c!>|NHdC{CTuCE<Qf)>u#&l
z-kyH;dm`TdE4sYw`DJBR!r$=NKh|gb_BQY9aon((G8L9DWeLgrKI^2?FKSHr<xqQ7
z{(TJa7$<v5!4D`4ku!~jAXGnF+BtP>xZ#238Zds%l4+t}I!{hEQzN05cgn0tmWhf<
z#r|SCa%UUa$(E_ecegp|#AScp9WOPpVU5iY49Us4C|68FOGjI2<N#Ma`^@TOHeJC{
zYnTglrtLUSiXsm=WB#ZI;9s&CI21;5`Q0B-{*@|Bd7X>(&`^t!HS9SbH=OocjT-0E
ze>ZwrPu-gLoEaI`nmGz7EYsW=ZaWR8AuiLgP7ChBAF~1-Xol?%u3Ed(F4utvpMZW>
zLFfI~k-<j(r;Lr5()4=_89W$fpo}c*Y%c*WrvW@ILy_e-4%;ZdY0RM;VII}{azmYB
z)~%P#;C)b8y`B3_Yns`Bn5{}dSUhqiYA=deY->djV9C^umJ{j(ox?99f7VL2V4^kg
z_6En9CK`(=y4p6-leGcB(j|jAk0u!Y(a)0xVZ&>d`9)HZDl%|Whq-Nd5BXdxU?)v7
zq~~6Mk~{bZ8iQ-r2N$UZ&CN>fS1D%$x*%(J5d?G{d4GJ-fGALY3D=^WnboFNOjkO(
zLInI68RgzIg+Z|g1F{w+aT06)Iwo3ZO3%m+TcA{%2B5F_C_8i}p8{i}+=q$AHkiZ4
z0F_e{0zR`t0XF9NMc!N}YuhPsuzzOjOXS-wUKGK91fJ9oa-XF5Z|k0j@I$hD;|T42
z17#Uu)9FW97CMO&`lkDf;?(WX3N2?LfoGz5)4(4zE)>PTTHt|PW~}6DJGWzDZGDnb
zQc^V2jUD-DOg?*ZYRL1q&^TKPpKO!GV<ejnr#yZvJ5p_ryLv`wttT8l6G!p?kiB#+
zxFS#F<M0+9J}i+Y$ZTOLj!1AJpHq&JNbVk|pe30CRdsmGV~o5E_{6SW*759CXEoF=
z0#y$v({JDe?eOBqzT;KJouV9JVco)in01I=ni8V|zhkKHqHu}QF!JOyXDZBwFEHtr
zrV0ZAW#vF$*R8#g#l4(4zz{vKh41|(DXg$@+r3<8cQrkfKgz<{B{WzC(!6l%CGYLe
zAu1y^e6=g{4{K{ba=WnLUI_g$rJJQvvJ2OH+Qs5=&>d;cJY`n&F6o?oc!?lu55fv<
zxJQVd^#j!(Tuz^U|8n`3nApW#>d^#))pq-QByKL>?IEP&fHz+_+e9RckuohF%2T}x
zbCh}nyl--R?|cxT$JHjBN_&bIJ6J5EU;fH3Im2328UWx(jE^IX4N+LvuivD=N{Wop
zB9obL=Gi57p3<a<cM-QBvqnCQhg96u$GJX&_|}6t>SkwJu|4<eG|l=&Kc-$(TX>^q
zNUKg;MKesWidOUrsTi<Zi8;oL@lUz}wU-W)=~y$#S;!u?NN5UiGrENlR5MY_!<WQ}
z^l2Lr9`#6URJ&vZL5^QzhwFRG+dQEO*R0C8`hxsozqm_e8ORr|zjbod;0$|LA|7pp
zwyiI2q)Fla4^}-{F`37pw9(3m+C&flt*FW~X=~VuE;pKd|Hg4(_k@GSvR!5{oI>S5
z4E6GT4Ykn~!P~~*)_R7T_J$DEm10q{lrUC!s%Px;7S63f*<6x-3`k_z7;6MeJxwSe
z2g1&RhFsoK1xdXQd-^V}nzf~PG)!#zv0cg^)R|dfK;2byVxmku48zg1IF`y90%Lyb
z<AzT}7xVot@ikEFq1o@mR@D-^p`rA~Cp%0S+)$N_rZ#Jn2{=k2Zds<uorsaE=y#L_
zj85Zym>8fp^QJx{AKp0>Z`|sti<8WLoNUPwn-GkZLBa{PiK{U?7F;;)b8r1DwCHTZ
zH?mGm4Sc>T(ST18zjEoX&3=xvgJ9f^Zg`Z6(%B`<FSqF#fmELQtQ>#piZM;OiEjGc
z6&qoK4B{wxPoXLhgMnJd%7d2WkVr^9DF^-pNG(T^7{jjRUi?o7ugBKsvg?_6p-nS8
z{MbYOAGD~$_kzLEnP~%pBjXQ_Q5p~9gS@69PR%>*ysTb{&ikbAh|r#ry#>~4v~0eu
z1-o@hCkrq;(1T&12n;cfWg3&|AXh~OI7cy`leKuJ5q*CASy%q=`-^j7v*#5pHJ<t~
zy7RJT`k?GD4_mwBck*9zT!A9?_^~G!Jw2x23*j)Rmdqt<A+SfRCWamXDzZSU>xV;W
zC)cW4Y7cQa8p7}3zAA9)yUW!9uU_4h8EMi2Y8*$qq8|;`evnVQ)mg@RjM}sP*&699
z29`K(_T<)glJlCtKBVk?yJ6|I<LwHr!`K9CKH-z1hO16Z@z@Xq)`lZ)Uy*W?K@}?p
z0lt5GxiAxg<&90hC>}KMV#bCSM@bx*%v3{7TqZ9-#Zm1lSR6n3A#K-OzZ{<S*j9_3
zr0}t*Xeb8)g&Uo4DKtFVPFT3;Xt)jopK)e1RLUYf33h{`=<pX(>wGEVT7nUWp32{h
zE{qHn+MQmMbzar6xLbTPtB7-)dJ|K<`=w^^<y7Q)vHKDdY0aJQi=uFS&~oV9FTv`C
z+Nh^DrhLyjLQ|I1A@f@@zF4Rw`%i+G&J$Xv=cJIyXk9BnQ?)>;w^zlumH(U%dWKYH
z75H(dd0f{YQAAl9nCOJihglHD9q-dpm9p#)w?{YX(s!PN#;gT>tFSmZ9@znsRHJBY
zJ@mJeggK+gCCZfF5UIvqS5}_H5=q}Ty^+Q(l#|ZG{HRDC6U$?`-{L!r#6e_G1wWnd
zK}ue;vlV3(Ynl{e3z1P`L_H?O?0SDELN1Ut!qtp+x-(xB=i))ccfOy_ntj;cI5V?d
zgLlpX!4(~VuEOr+38?8b&hOFNnK{cXgX`61BzZ5&j=nPNDzWlFn9u2Tw}y6+J*iw+
z;qU0{x@3<$t7F)qALTi9eM4U;-+Y_NLCB*8Zfj0b=q4Ps(oMuaQ4dkrt?^+bdQRD@
z8RW9S&>lHL)+eo?Shcw;pCClcC=@We{~-|&ZiLIg<1)5*pV8;pMg1PSgWMLHa<aps
z??*b~&3__sfq?o>l|B3i4!J1o%WH*Ii3aCMQEgePv>9Zch?{vW*XQoZYvrSw0J8?=
zmH3%a<j{=f$S6xGoeYI55&w1jGfwSvd^qPbV!n*ywBLv~!)#Uf9wWKR0jo58$NJ=a
zD1{noOk0X3miTTf-SVJ=wMPovi2*fq7<|n-sJR>_$q-V=(=P#KZaD?s%d$vVd_FS7
zvrlr(ab~dlepg40vi!;QPRw%f%It`~&RcF^U51AtKF-}CRjZpqT0%fX``BncQ>^hB
zzp?c*fA=?6yJ@K`KN^;wO<Zz#V)*=)B99I-T{lwe|Jyd&L9;fsJ|zC!3(2-Yy-3j(
zN}+ySW_~>*vG9R`^2)jBq(Q@e;3#P-m7q8-$Wfu7h%+dfs<`deKo}dul0kD<AlkZa
zeb+r82u#2|;N%d7ASp(~D<xmvOtm5w$OE7mfheGRIJi%T){eeggNk_P7vG}4;iQUp
z*&ZrQe`42b<(Hu8$jy-LHfI4*XfoE!BvEJ{&pd@wJ1<tN#@;*EzwsM_#bHdQX<?7Y
z*&y$993GiuAN0Eb<>xJz08q$S*a1gW2ei1jC;j%jaOe43u=sBvQn#_{CJPsrly?CQ
zld<V`4PKf-XrE+>ad1M6xKM>DAR)gCg1N0^?UMxHBxy!lakPwpj8=M*CH-6MJ^^$P
z{kO7caKo*$K`#iYz*!V)zBME!ckI)MQMxh-m{~Qmm+1dMQJLTqk-RI*+zpcet$Ih@
z-M<yc1!UiWs!`HRKrD;@;i3cYD4$q&{U@^*w+D)9&pMm%(?8^@t7;Sh5pH*|FZy@5
zv(%bN@ul}0Sr}YZdfGq4YN7Tq%xYNk4cOaELQdoPPq7BH6guzoJC1x6_7a)d5GYvG
z{{g0X4kcEla(<uh-!GR4iU`Sy&KzP>Z0UdLvD!QZ@&!YLjSg$(qK=gI?BU>>G+3s~
zcv}`1VS6YSQZ_BRDa0%fiR0G}9^gkfTG_PUGh^Xz=Cv2s#x?8~b#Y3T5dNNFMzHlR
zEM&e_VD58<nQq%WrY#*G$F+I2&!l6ZNHp{PC1lV!{IHp7@!lv?8FtFcl5xgK`*nkE
zQ;(;hl2E~;&5SBrjF!VZO?^nCVx|<~Vd6_S9-b6wE!+6sW_#8gU-!5!aUuK@)cOut
z6L`aaI9Deh%UEE*Y#bQv+TIV)*UyssAtGOG&oeJ^9p(O6ApRI7N;9LH?C6V;y;7QN
zp<Ub%*<{jS$f69kTfggD^l_SWbzYz;l^U<4Y6WL5A<Uc}2jkivyLfUP&k7)9URV_N
zO4KeTz(P4#s#32NH1vM#-1&?HvN4`v=GXlo`avms->6&ueS5!M(G_#1Y8mR9T<mm}
zE`?$zeEWXx`GSh>e4)p*`&AfuBl0oT`n~_z5fvDv2^b6&eJ6jdcd77F00K1$0t(xK
z8K0+O2srP%Ca+_{y^442XNh&^*)EkNN7ql&vf!`65`Q;#W+w#iH8-j50hs8rvz1Vn
zo`D2D+2f^2ip0;e6}c0X=IsVty73kSbFsMyVos9_y*?#5<)uOfj!+V|3{TO*IQBPj
z<Q}%$JT@fxOB4oSU-Y|*r7rE;T4K!)*@`|LO>|*14X0(>-dv3hbIO2)d$DP7!%!b?
z+=@LlnV`!8<2#3;DjCqBzx5S=pZM)Q1@tS2yRSZkoQ|_kZhb9Z=IXz#f}|16Aulv<
zF%Myvi}j~8tlcYXZ8dJ*KO-0CSAlVI?N8j_LBio>{ndme8izY{VC5EdBc%zE6s$4i
zkLPKWB7z67JpLa5pg>>0j+R*P3|ydC%LuRon@n+P*D975b}1s9SUh-D(O^4%OS37O
zPp7hA(`Yec$*>daDNe1d@gYstun-YNLcM<SoFWFc=M^-tU5w`uH3GH~3V@E^$6{<X
zZC_FYwmrxW*wQ5kY^ibtw)prbY?~ZH7c+%RX4yJ&?y=t#gxf6xhLm{r>=l8>kKQU-
z)Ec|#_M-5vfx)^0sPPxf{40Z73M2x&K2qP;f$65#Do(3WJcJdBl_OFOE_)9SjJN8h
zT6DV|qfIQi`?lil*@C;7^>&w*+vm30eijznL|*1iM(KymJ?b$59C~0&7cx?rxw}Cf
zbC6}Wg2oQqa7nCi6T5S!c&d$3adPy=1M#@5jtik#HKrLm4sDmLoUkdY%<9_TIV2kk
zz({Uq?u-)lNwdoA#GC62l2`nJRf-&a%`|mo6C?7>6Ahfu%T8^Z(8GMSB%m!nOI#FO
z5fz$qW7*XkDL~)^zB!Y1h4Dfj(kYWwWdvR5o+?tYJFYaVT={E8vZ6L0?BsCnEi}Z(
zfIN}%8u>=6u9TI0;JMRQ!t01DQc@LQCsCzj#=#QZ>}+IjXpRBR$HODHP*K7d6$w=_
zBI9%uw@S#IUDme+SCi{~!~rbp57S^4;+R*(14Kt02*p9cFjue9sJPMRCG4W>BRrB4
z1f7CeNX$3a>vJ@*y>I4ZQO~eGOU}L*W$W{d7Dcog-Imwft%W+L!%IT~<%V|Mdhwu8
zmBq|YiqV)`a7CsPai|1TNW~vP$r|@S067S#-f&9#IEy~cVr7?ooJH&$U%1pxK8rYu
zy@nz-sN^(&iEfp^^I}?>(6=U)ZU<V43m-Yvy5hIBj%Cy7B{Anmm_SaO#Kkld1AT=l
zD-8_oE@r_E)fAj>%YpHN0=|3XrFRhA@xwz!a+%e>SR;@~6PS$V_>?V<JYI=F7jZIf
z!U%HtD9jypdKrO1)W#obo(vUG_c1Y_(_2|<kEH%(#?mZvXlZG##3y5A8W+_D{q#XP
zeUMHcq_ebj4br*5*c&4~6kI`_ffh@1nDepA**&!3tYNUIzRn{B&FR&6;u|+!5W(*_
zFbL>741<98M_VwK%=xeZ>A))R7-<v)HkC4eO+ciBs>xU~b3h7u%L+BHd3+%2mo!65
zK+SVFgZ?^?ge2^~4yH9qP}+0zIPUlkH+_{&*p$LQzcI^lX+63|2GtA^gIP5-isPV_
zm2>bA547uAr=Swz=pe3)#uHP&Y&oV44Zu}bV71`6P%b!|xK?|bX1XhvfDq>wC)v}S
zpt51xRB^+$&oH5`;XwoMBWepQNuBrML4A18`t})x2L;!uyC{~#{)9d<7XWn2oCaYv
z6&KOt!g*xXjsZO!jSeviv{7wpJs$p^Fp<gJyyphqUnvbjQDdkL$1-(&g>j_t?vy*b
z6GwNb+uv*|#3Zu3M$qxN-*#zy^%X1exbGDy_>|k)-i9|YrBh6sgdE`uMp;=8?8`<|
zHkH+E;9qFIZ1rG&fyIonx~iDa#Vio3_8?XHC5guwY+CzlG%j`UY54mb3z{Qd!=Q;)
zFrPB<KptqNQfQHEB1q-@fvcEW^zBB)>_Za$VjFhkQS;AtnCN`PByYrpy0Wz{Yi${?
zI~=Z(jz1K0^6pph9w%%i)tXh}HTi!>|Mjb%hsS?9I{M42;eY(~S4aOff`9z-_)o__
zyFY$)e0+5Dm+#(vdvkgISAP8SUqn5<$G?6)`U^Y%YvfCgkN@<qi34p(bzJD7tcJMc
zuc4kp((ByvZFZKLd#0(N<Ye_d9hR=*xEt{2A&qy5AN_(NLKDUZPSP{J6XY59?snFw
zX46tuw3?CJS_5ZK;;HVT@)ry==j&N{B6KUuc|F}Ja4Yl>uJ0pM;<B~ATyUHHnXB(e
zvwKtt{RYI_R$CR34i0RH(3DZ(?fDQ;CUbVE{BLmp9gOPe!?%IwNA`8cMy!4ZQr4ad
zyhIZS=>XBl|H0lG*)q~;nIg1w6ID70C>`Ne+|*qhqL!fGTfpTpDP$JJXtqR8AmDSy
zVbWaGhKx<$DAR)(yHFUv#xtl-3MK=futeIufl_Oq__UsqTA5Kx(SB1i=toy>6`**z
zfQMS9li2%c!pOB>%f{M=Q7=}zS2ZY;b}Uvkl4A&w^7?}E1ur|Y1i_0oPjHn1{ZiM$
z#wWkTv-`rO+l^(~6v@EFNbf{6@B!E@*&r<8*AB*}E)>{v0~@9g(b<hR*;%n7n`IUu
zn74|IV#i3HkQ_WT|8b^0=PSNtV~jP#XTSubVv>^4a9J=7na<3Yip5~aseFj7uK&HV
z5dl2vCZNYH6cvSL62VxGDc40anW`31Q@K5MvG2e`gwZ*hlD%MFteDv;fLyNRlqf+<
zHIW)jVzi_g*OB>Jx}w>=c@KDqVbn20%#Ll+T1YPKbaOqaWPLY*%xL^oR#1hh?lGYg
zOM9?}9!2t*pi`dt3XGL};EGG@YJ{HS7J!mVU-}MxoNo%sr{qX6M$X+y!f&ootwfV|
zY`kOWBDG}>EOeRq#F_Df7!=?mk%Jfc^5I7oz&EtMeEPD2P+wQmmWf<85m6CuKE1q9
zp%n{HzpXL|UldZ@g@E{;cSOA1+^m9dk@E+h*R;SpHFm~tt}k!|{BEL$j||)cC=E5N
z(~X-iByMm8*RLj8#vEp5okwQ=k8}ogJZzwUE85GIf5T43GUiU5y4%|lSlk+%0yoO2
z0F45iKZfLh*(@$V+;I)+NBRd*Hc`}&bd;`{rU5=Q<a)!VWkK~$gRFiGoKQimgJEw}
z<U?AR^K$va8;hQR?5IPC=Z(9!gq8JB7+=bX0Kff~<#5;7@x=%G%SXW~M|YP$ycrNa
zVk7sLf1$fowY<Y5IhV5>8^s~>5l$=g@`OEn{DYaW`Sy>)KLpi({|FJz(ShY3=bjDo
zui%<Ae|@}^`E|*%5iX?qm|!^~gb7{EM&wdLJSNZa=)ycI_IKwvgzfYGlZ<L6K)4aH
zMTCfhX@O3FSy5QABX9vA%-VoxDS?efa(mNG1!14K0`yYc0@zDx^TeERX!<tf;qh=w
z85^_%i}6b#^)LNtak0)I1xi96B+p3=)w2x~65xM}h6%Epd^;mkt~9-8BXVuT#4yST
zw_Xq^8Ow4~3(boJh0l)(7AX)R0T`&xj961vZ0N*R{8hAJ$rjIc>(i|9z@Lo?MVn8V
zLkBkRBI#r=q*Ixdks@m(QXmC2BJV-OEMiXqMh>FE%Q|HR%a~HMnqhhh*DgKD=4BX>
zJa&1gsLfzV#WE?BuIdc-mXg~_-ZRnUEyfakJE^9L$T#AXkR+Q>amPHW6PeN+$m=_=
z4#uvF^xH?rMxEjs_VLz8c+Qs{J?bl;@G}j(-+~vr%Bz|(O>?SgN^VtGpYuC9^Uiw=
zoP*s60_v>9<n%*X@(@7l@`pDGy<wh=*#JOo)`sG33<f3)f%@a}pv*vAzsS{DPVzd@
z8Pwblsd+R>UL7No?_<Mmnozf_ox!qHfxu7;CN!^D0I`<Pq22LX;PGtlJrc(q)2fLw
z#~VJW4{hZ}94$zyjvlPBZt3I_dO*5T(%$4onu#ZeZV?JJGpzWX%u@p!Hi;l<b=xG4
zVm`A1!!rH=f}T_hKMpUF34KUJ*y?P(Y?PIuuQCsV8^Yj*UnLDADZJXX&QS`f-cHvx
z#=&vT+z{6t{PmkrSJSJ#$Za5<56rYc9*i5Vp1K>qY{|t|#qu^aOol#kMz)b9BZqR_
z{`v7nU4x9j+@h2C-U}P6?le)O=~dwMbBG&F-Y6`lHLcCXG(&l7j82G!hIGwYcfF!4
z*rONTslqZSF2)RO)Gok$S?{T=;YVi!J{2=u#<PHg(7a0S%)pEiE$D4wB&~qV{HW$c
z5G{jWU9oZMvVfsFd_i1KD8sZK95p!xR%J`B7~-0xmevc~ak+DShw!9J$D1~SuCaKK
z;{cJi>7izuF(iUUPUzcN8t&i^Cl~oJq+4c=b_0i-x;X?lDC})X+;nqlzJrq7*3a*-
zUd&B-dU=6k>@tFHfPKuY*sLeK%7-Pb^bC!MgVy*w{6um`8-(xObCDQ&Mdrx>md^Rh
zZJ@`>ecb2V(l9SvYt1bzZS5>^FJNxng605}kVl!O+Ycq!;IMU!wA)tZ3u*J+=aIP#
z!&mKiSQLst>9S^O8D>;_=^hMM=1l{_$3_T{VhB+KiGyhztX7{G+2js1GXZA`#uRka
zusw1lWULj+HDH|h=3~smS>Z6dO~p$ljg%6arvkR_ge5L=b2{P51;dr9vkc%p#v!Ll
zRY6*phF!cV)!Bq8q9oJ=QJNM7%e|WwH&}u!X<e|1y#@kl>S6_EJZo_;3u>*I<62}G
zCC~ND`_kr>1~4%xFyN*Nvtx9W1?D18U~vD=@WwS-Y~%K_VDjeb^hiC)^cUdz3{VOT
z#WZmk1|@N^nQ$7;@hDin1)=rW3#*E057(8-TZxUxqP3P&s(A)>Up@|e&r@Hd*auso
z1Oif!-GNTWZn?0#@e&5BW_PE(KyJ!`jMixmHx71*=t;#G;Zvi&QK3oB#~zK##TPua
zm+9K_j}X@qyc5moMIj#*(T~zw3LD3=g+dy%yG|A}Y#)Z*o81q%^T3?!M^+T(|4;Gg
z#4N?7^W}E}p<=jlR%4qFd6ZYOEUhnUdc5g;A%3fRU<yJBT}Gza!aF8dMKyTnZQ%vD
zVCRRFW_88ZS&v*p8W?1;oD|$|?6=8d<^rk0o$BOm2Gr4G^1Z^%^LLHUe2uauSP(Td
zC?pTzv?wRR7($KQLlCrAtu?wgl~n4zdt_$=?X~qat=HDqw_aPHZ=Zv<P8yE%9B24_
zD6_Ts<5t&)koQvCa2OD|=}Oxu1$O#KXCuM1MSpazfh#wHZ!061Ssg1laqhr7sL-Gn
zE%8QdqI2N$LuI2o%=dubKw8DNM&#Ot7tVFQh%J{hO?f;RZP?sJb+h7{+|xxwdc)H~
z^U28jG!-?l071$@n0eFuU^|}Qi!r%knS5Xs64&{sk_yG8_=fVrkd`B{#=Apm#j19s
zN8mX0yu*@(IV!0_s7Hr1Z?~b%WyK!2td+|>sx@BrN?ZMT!tW;T$1ZjsLZ7PK^M}N7
zC{1;(+Mrb#L}fgif8Fo@o&-%y!AifPHi0c|y{8-e0oeis0@)M>fxP@&t#;cg8Ufjg
zpz;<|0P#h)mhHLR#U=+clhd-+EMSk8HFdd^6HjXkkN9Lt1-)ZKKagRQws_L<PVV3{
zAs*?aKf3+VeV(IxWhrp}@LEacsl(e{k+u?z?U^egr(A31V*mYN91yNsATyTHfF}rJ
z_t~ei;2GBe5P4Ki-+Tkp!6R3wiU`7|B^JE{hB35>#?Hs#$DTn9FJYg+LxscpC*@`x
zA4JTWRLG?k;k#E@6j^%93i4CUsu?jNbCZ-O4P_~wW5${DH15k92+qdyPex$?IK>Su
z3iGdPL+Iin_=O3@d<_2$KLIKJ^!-_vquePTbYU``SQjCuPs|h7!+!((!bj?Q*8;g`
zvw;o9CuV1<`*EiMVIECWTiCof1<JnNy3-oA#3IRITU9U_*Bh#oIyeTu!~l8$=d8<Q
z$!3N+Y;Fg)GVP8;8IGfkNpR0*hsxqFN}(pa#NyeC!I|w&DA<00pnKOfp6UxRAn&C%
z|2v2DCm_i)$<%wP;ge_EE1d3g@04|9a&Rm{pgF=F0o;Jy5f?D(ca<x0A&9K((su4#
zyAu4$cI`YPjjw-M-*zWu)!N7%48slq?4I}ySaTr|#U%-0F?g!kU2=3x)26Jt13=O&
zv1D=6I$uQCHYVrp$qG%|TH1nZU9G;@(kdahpLF!v;qeXh>CHA_tIH4a*;`2Vdp_-c
zBdXq<#RhAD;@FgyhQ0o`k-C86{0}K9uhfW~62-+`!CK#0e^Kz7PJ;lquQ>@1v|yNw
zOocCMF2@V9^ng50q(TwShbkW2v)RF*gMpfa0)ctag*a%SvRjPT3#brBasb~QY*%34
zw|=+1&|qtDe^XHOw(Zm9GvD{Ja<|vPZyKMcO?Q80j|89*C8qjyWFGT{#-3%rRt_S_
z)b}+G%>Mka?12EVfU9m>crl(2h6%uR!i+IlS@?s6cyg${+th7Ksma~6Cf256s+1UG
zy>!x6-kVSb@pWVCt1s)Sl*$%Hoj(p8vgK?_qsw<j2myam%=z+o_@{H|o#<Q)PyvNp
zK9$5#xgcLuWIdc44hVrB4l%wdaH$&gPKOb6TDC_E7!(Ltm{|CLApO*$iJx+}#`2I)
zz(l;2wXme-&=j}1IA*pE!ov^3l53D;$;W2S7IGtf&aEId2=}OL&DPoSvkjF%3EE<f
zGK4#_e3|T2Qm+7vY^LOr;ptJDYBs=X<KrTzG{(qO=6q~pC$9tl^Z>D0ET~FYf*^4)
z-4=Eu{L5j(gNAUOuw?7<e8lJSaGK?;cw1348{KO0wGCa{#x(|IVH}oZ3zoUb6WWTr
z@dGecIVRsU)!4ZLUkG<dljewVkrlNK*g)=RIMg2ZVMB4Ed5M$bT-MP7iqJd<fz%dH
zy&YD$)4Y>q?^MNq2s;?{<D{`9{CFIJ?9$rBan?4ke#37oM&3-Q5UdF5B3Mr$)tY7#
zyhSK6e6L{UKA%XX$&_XjE<D7s@YOCFFsW@L`i<3%S)8af@5V*22S?)L=1c?o(2{_2
zHyKNP;Z051Udw!7Nm1p6ixPet+t2x@5jkL=^luIZ<lxg-ng0nrRtF<;G4;+~E&`c=
z*$0f&5lBnXAcRnPd?Fu7F3BT<C^jSVLY|3oqH{27NV?4Aw5;Tm`|JfvLkWi{nhO+l
zWKqL*m5`zqX7`&KZ{NHjnpSsAn>P|sPj6WjS1x4t1w{8+w7j({YwC=XEB6#6p@H-`
zmhmzhh9|pf=~#l+5Y-R%a<4_KB$ryu9QXRiAK!N=%zD^7y^4q)WmV*lJhzeQ<jDN^
zIF6u_?DZW>?(eNk3L%e=Jnyo~(WDC<w0FT73Cu1K*an_6p$+e=6gh$?Vv%&tIij6H
zFHmc4ddo!v*4xm6xgrhsa84q{G{PVPK8n;6qWH8fG!;zNs)$VW{G!MqMd~ToCu9V>
z0LO3M-WHW0ow5NGpO=*)-rQui=O<pW@+hb56U!{@QCZY?JOULkvDQ2o&^nyA2G)As
zd~3h4rDuF$kQ6-QM7r!Hz~$`;2{5b?5)2||B@;PRsQsoPd0erbY@My58d+#(18?4D
z^>Yqgwb#}K9vEIGvd9%-pL9hH%byzN?w=VGDrS+jyAw6k=M(nwFICu6EUTD~MmXqL
zXUTQaUewmd3pNz|)+GcsW%8r@6pBN|+PMP!B~{8R=y1*0Bd=O;Ig#C<(VmZqkaHsr
zQy_gnPU|O;U3mBI6wAI)0oWh-ssVr=;J?wsYvvc2AYg{EYi8FW>gVZkhG{9k_Q<^^
z2k|9ByW36Q2Y0&5G)*zlwehnVRLJHJ3?RB4Mzs-l^BV2Y4(g^2UXuny5%`muu&WE9
zGzDA}n2ou_&0TB3(Jj5AFU+B%By~A8cXY-oLz2aeJXSI-7#htcr+IGk?k)H^0_uzi
zE%^_uG9uyta!3cH=J}rz-k<2LkPobS;Oz0lrX>%}LJcjz#tA5>C%=IICC~A!k|p_Q
zI=`)Xk+bTxCFzeAY}@<2hIdSWD@q({s4xVm=yvpXTu<uTQ6{IsM23prsgvN{CtRtT
zsgqy-{y%=33Z|W`5+$&&&B8cR4AMg@i*HxYlG%NX#?Uq~<5P2XX8WO4o?`6E_C5;4
zRKuOzi!AvNWeB)Q=&wc8C7Gx=QB4)o@eY)3j5z4VaM6$_+pi#ofB{08gW@N{KU$4U
zw0>!HF}qf=*WbhyM06P+*i&xyF^ew0k$9-=c)$Pt;;f5i+C1$PHu!gY*(@c2r=R~+
zhbA8=6y=G^{(k%OOgMCR8EgD!XI$Oy!p5=CN&B>Z`{tb3PoHuKMRc?am(j*GDep4Y
zgkj`d-G9bjs(Gt|tH&0Ua-7MUJlcXXNw$j{UcM&hLe&*(Qdj0XG=lz?Eg4X}NWI>(
zM{DmyWf%FyJJL#8X|ToYlA?Vlj*kZ)i0zT|#n|P|wxhkc@~>*brQl*sC);m)QA2W)
zvxgIv)2{|FWCtbEo*z}@;H!h!ey;hH7qlu6RMg|H`nQ>j-*pR-)2|N5k*uKqj0#dP
z2S93>+6=X#;}?BScJE3p^Igk#*h3(Ow5r{mHJ2?H<^~>-@9oWK#TBF*vt;fUFL}oj
znao~|n{#H$EgB%nqGS9s*riy5X_`Wc^uATunCmN6%AH8W`06>AAJ^ssskoNaj8IJ|
za@wpesL^oIofosiXXlq!=WkAL&d*+xZ*5;ZRIWzkCM*jYAUas<l^@N(-cwN)ZeQ*m
ziephhE(F(a{Hrm=yO6@hk(&2gm*gGSwyp<uXTElCi|Dv1#wGJZ)y!t=UQJ#>D)mk|
zhwsFLNn$WZ^LdJ>@Xl51bM@_Hg>}qvrw>P?!x4xohoeI$Ul%?X!ru5z*Xea#+jKo5
z<by-<01W=Q<O`oyQ51f}0FT-}9np4n@C4Mi;RI~P#vOmKu-iLvKsJNzKr7))t)=1W
z?QTYiETGdEE%&e^%;a>66(%Ph#<t0eNMT=zvq-xrnx)<9Wr0ON#}Qnl!*$_aK4&=b
zA6pC{(dfg#YSn~R%>1$hu2}Ffi>rLSR6ekEew9NLwX(p8AKl5-`RUoa^U-v@?JkY$
zGLe^(i&zw{Zd})Q;^^6Z5R@Xe5T(J&Ygx)d-bKUZZ?>+#z>KRQ9mW<wPS(ElWVed9
zp1AdG7SXGfIvQNyg|FkYD;Nuli#97@6s~@AQ+c>#)s$mq^>b(*d)T?%C>@?>#HlD$
zudnlxaOW6Ce;IXP(+SMIyM5!76&w2EkYipzQfwny1s7067tTEIto`_&Vm5E4Z-ja8
zS;1lxaTUUS$#-kfq<2`{v9eC_vf>ZCV0Wg&2^V*&!OgW!|A<Z?Pnk8>ulFjx0~fwW
zd&6V;{=*Hrp7n%B9k>m(bu*+W;v-}@jG>O34`&~a{%-WRyf`L5GCLc{wbd2RG<lpz
zFaXxdu1G^Az=JSK+5YOp{8Gp$q5(;#^+wJVrg*v-v281Td$|;y6LHyLO0YMhu@^5{
zO4MvxaB)BI#ZSl5Vz@J6zHmpZVzk)w`rQ#hCSSdJ$KEjTLm7VZXU8JZaM$79jE=T?
zvCExkqucTY$W^BJE^a?~aqH?6<l_3x^~LArs9q&m!31}vuVoWjp4NJD#uZ@VcM*dZ
z-Vx+iGq|{2g=p?J#{TZjpHD9dt<6Geo<S_?4g|$!me+_$w80$h8`jLw{c2zHd+y|i
zKDgkSf(w8-d@%t9TyV{)mesC3uC0!|QM6WCPVEW4aKC_Xy9B9j;nj^@6*PI+u?t~z
zWty?M^u7U9y2lZ4_nXMR|6pAYP|LCS<Lf^Ju?l}|3dAE0khl6~QV0h1Pj_Nj=Rb8}
zw)`hC=TE^U`9C!+a4F+AC3V29?b#^}wh6(`*Y7%pc>)8h6_#qmMbH%$%4~8M^UtA;
zYdIuGIx8bXJNA-aU(_O$;&84vxchH?etq14_Yf2Uhis=tZrg<?jBr6N;XCq{D~)M<
z_+!Yiz}#aa1z!?b5nld{=6UrRr4y@l$|^R?hAUqPkP06ab);vdExCL1<`Ukg$nSsq
z3dG`H|J!e0MN-xmm8kpzOv%q2tFq55yH=JQKmi(A`x+C;%<X2mB_0?<m;Pq%B9ZrL
zU196fx?&fqPwVQ_y5cVo<W_jQ@6<3F^aG%Di^2uU6_=l<T(LvLDE}$u!WbHPHtKib
zR&3MY8h8DqlTR3%91rKwpk183zy90X)349p!k*fIXTyf9{b4tmK3imb3A8146JsRi
zqKgE1|IKw`VA1Y9nPR+tEnlE>FQ|pqvM!n>R;+r6)j{{Ne&jO@cQFfzi~FJjU3Rxs
zDf&^>4VWnbf}{!%oDA1M{$80|-rVm@DaY-<j1#Z}Hz**!!oqCx0xy@rZSUebS=y0>
z+jf}YL10k}ktW82x&mGuFDgZ+K`H(n2G}gA<1i1o4gkd4zO>+_yY^@JPUf-LXv*pn
zs+<UBQ$3PF+g`x-kQaU@{<u?<-R{hFX^hiT<W^bYL~1EELP1#eiZ*|{gkQXAsxLHj
zh&h%%g2X5=PI!^RMT)coMYhaMp4-v?8KNBS#BrY*tDkp5F)@$1owzu&s)>UrQI=B4
zYEpf6=_$WB+v@q3m41{}H;mWz!*jvX_PYfbqA&A^U&9d(R^X|l{?bqS%Q)eC6(PP@
z*iAfsop_~t)S46xEi{~xf+0IN;m^$(-DtPU9V_{FD4dka7~ON|jtA!{Eef;aQZ#th
z%E4(42v*FW(o$jR#aup$M_T3N^zvfM+|ZJGe6664dE8AmkWOOjPBC)JwQAM33(QjH
zM)2`ehUpmwXWx`8APFKfO$+O+yk+{4F+pCvdWFu9SHJt+?}*tLlCz9Y7k>!9`uDHC
zitYISp1ylaXa-ssBF$s}u%BTUYC!(?^@sOOS*iB7KrVi%qP3MEAtW^ZQ$2z8hq`d!
zRt{<gT2>StND8R6{B8mZ%)tdYE+FHDo9Tl4$>B3&A`$fHZ^Oub%;X28;P;G-)wh+b
z%cdY{#gtLXY<)iLvZ1T!5_Y=}XtHO#OCW~j4z8#@S30PsWtodv<EU3BMFh3Rap`-)
z&9t>C8}3F6Del6(Zv+z;xI8PPJ>Tg8A%tX@BzaTSN`GC8yhy6MwMq4}Hw!&uJcV@(
zfhjM`n8H2$ID!&ny7~1-3|UC(Q;wH)Ykh9!JW@eut>q9(b-Fag(ZBplQZG;iZvd6-
zynwmbZ9p7h?Yq>@o|un0;?_qFbv&9HhJsGn!0>JyT~dd0l|vN26Rbk(o?$VR6!exA
zwmVs+&gVPSXUwH$Sd1d{?hfiUKNuEVO=-dZ(UdKjFmieR4k9@~YcS%bX0hlV*gX1+
zp}Iy>7!h)=q=q^grVqPG$`^NpxY*%sA+uQgJimap%CpD`JWeKz=Bz?ga3kE6CCf*I
zyfLSF%rmMPewVYnHi`v+@FaD5GhswlIm42rV+bJfuMVy|NXzA>w_C0&TFvm{u)C7f
zrQvp1{uSN~y%PyFI3i&rT<gNvOan^1wuG2kUwzZ^=-4lat&3+=xeGyO6O<(8P7NWb
zEz$In=otG3;5cwLebhhGBO~4Enij=u$UYg~Z;ln*KY(Q8>d`WtTJe|QaVRUM5sLQ!
z=O!eiMIYd+p}1_VF$iw3{E_teKCo(Ldr5q_D`62={5~iu-=%(ki^k?(h)K9kcxlr|
zt6cnc3&<x5JWouh!=b@;`owH)YO?zVLBU+z1*aWQa?dR1GFpr)&ToF)aYz*_fK?h!
zcF$(;YV57c3U5Yv*zQ@RWoKDy?UR|06P01z%?Ccu%`Y{U%~nLqZc`@RtHOrO?dFyy
z-<e3mv9wLM_iT2kkYda^p70W};|=#SYRCp;gY5@e@Z5Kfr~N_<$a|^H|IVR!G?3_-
zWa_=t@X5388czBp?3uL@aEMZaObifXgVOWL7lHBn%N4l*>^ofI4Z4RQMH~Wl?&|Cb
zDTXeDe6e@Cr?P5o=}rb>2LZMU{055tlm*RLPVyQSikcOpn%zYO5wB`fR^5S#C5y(6
zSZo_ySJ<{d-szb=%i6}-K8r22Q1pBo8gAD4Sx3R0UXUE>zU=X?8?xoC0NL)Xxm-I@
z>LwND+HFHx-v%2F)&hmODJ=~P{%<3*0Y~~DQc_;25jiD_i@SogzO$NY@S2XpC?Tl!
zr<y;|f*~vb6@(QiXUg${L_Q#o6RA)D^r=P%_iT1BNH(Lm7BcyR3vtjGYFo_Ni?|So
zdH~-YY+LZ(;KXh4=%yJeO-svf!?rCo-%;ukd))2JRhqL(_M#4++%4$rfqoBFdqZ<a
z>i&0T4ANBz-1EX4A*rg_faFpfYHLU<WsdN~b?GvId~j&KWN(h53n({@R?KurA1E*A
zZQ-mY5S@sIRY2i!F^|i-O-nPh-P&YBA%Rl?kY3nzLkz(H+Q!=CKA$2m;N49EB$|8v
z!77>D%M$ZgH|mY|>NhPugQICJ(!Byb@4<Qs0iYxRo~a~m7sNrp7q>9Oy&cbH3tzYa
zG;k!O-(730nl}~*60sY{wh|}$L$*P#9?PT_2nK>K>#oN7&fDEh+K<jDXpb)Ovd0LG
zceL#6VDxWj6^f;|vephb#(odg=CpL4);+iyIw_%>o-hoKX@`;x2&37=h^Rvh$1tL_
zlbO%Vx}fAL=WoaKbKsZTQGXD&<9uo^dQsUZJS#zqCNUtnUuS-`2iln~VYXm9nX3t4
zv^SQU$NV`>?sLh^8W1IOdTiKHEf#t+_jRWp!JY^cqRvDc05?r|1~8rG_4c=Jm;J`1
zn}>oeQ_KiaFa?0)GIL`}5e_RprPV#lz3?|8mu3;14Jo<b%3Y!m-AZSzk`rc7hojM<
zg*sg<K#|y8M}tx8w7#RILL-=wy})2Dq2h|3ICm;dOjBvvX3l}mj)7H90XsW;2D%yQ
zHnclTql4|{+jb1c5Fphmi5?Y-XDjiii+ip;TP)sud*0Z*`F1e|2C=;OOBgum<ucXH
zB0}~Uv^U@O5X3j%(u4ZuTWXNseCwi)VcX6@4@*o`EzQmfOd!O7zFP*&vGe)1R~;U4
zdaGnn>$F-Ht6mx2o-hGt*z9s;&c8gkfk76+Yq0y9H@Y4+@o{wZZzStX*fzGXcJXIy
z(U;N9!kUgF=APW_NN<WMhV40!#jrgCzL@KHQ<O1myT%&B_7V`s!ufs%xMSF!*XHkD
z;!6!X;PRFZ3&37lp+fCK6cFk>)nw7tNZgTWZ^y6Y5}8gfFFG5}f_JPiorS;n9F1oe
zXbB4gCeNBF+5FlLviLSk1q%cD#)yz1uyC*?TH5@rM%c81oC7<@DD~9L2ePqQ0s4#v
zMxAf16*;_e5}S1rpmi`XOO`T!jjnDggwz;FH$VrJ8dx`5fD$5db9G?+yi1`O9X?ZJ
zW^=7=Dc;S#%`J|~CTvRKpWm28yR<rsO@06~AgiWEKp3<Va}OTkYqu}9Erdyp-Eg<G
zFqbXG%+L?mVZiU?@MOHn)bO?kT*+r#gv|r8{31R_RMj@aHLyLmX|JnEZ{VeowsEfG
zFnW_-Z_?{cdhNDKXmA(a5-VMZ1?x<8O^uOJQ_tL-TW4;QRomBeI2s+Iw`t@p@U<Qf
ze@~dmWDW)J;r*4;AR;zKhHxxX*H`GTf_Hb5Og6lG9BRTh+Y{tEGu=k)^VQJo68dVF
zR{m?S9tu9?Hm$*MBBr7Wr!H$p_^MG>)&u+6(UeVPH5>R>n=e~^*<T!kkeSt0#e^<q
zfw=ih(xzXqE-^k$YoE0@?xkq)^HK}&dW(iPXf$~9DH9LmfmW&;ZIkT?m^pvoYLna`
zDrO%#o(ycmjrryLn>I{LXl?AZy<XA5A!}XM+FlXv0J`dd{@~5&5MQNQahq0Btyv{r
zlmB=0U%&c!c>JfMqrbcw{>NW`b@X2&_{T4g|8)Gb`{P%~$45th`R?7fH<#ys<;Oq&
zMby)K{OjkVzp(SaM!w|u_)q`ZdB`nkmkT|V)etx2HH4pbe6d^HZJpQVZfvScI!)*q
z59H>`j+@SxpzCbrr}`)KH+334LPB-6mEz+o%%t|q&(T8q*@YL{x=DR(;fsnb#9iqF
z3zxP&uyA?n0}G$*zYi?zt&qJHa!q?7R>(fEun#PZYJFf~A6U4i^?`+bU}4gH`@q6g
zZFyiJo~>o!h1R&x#1{TDh88MAt{FScGFc0KBkx&Kz|x%AY~fu{#dU=lZSlwZx2e%O
z=S-yA;5WTIT))1IzR*nMEN{NBH;Xn4Ga{#?Vi_;F1*M_*d2+Wv;I;t4%#b}R#-6$R
z!UR=d2eLBW+_2I`6Ej@YFo0P<a>a<6$hyc$#s2OT8avyYu*cBx)TQfST6Rro$<qo3
z`dM^kY3x(UD>wnyER!PNyBT+30F4>~o^1qm^O(vHwBWgsD_pc89@ca+$J6bpST(y$
zXjxX0W)r4@(V?zw>)E6f#Rywj)OTE<dJcU!iAri0RBI<RKfs%ybMts|*QmPaY6g+I
zGVBs(&Bx&%ib!+KVzuetzak~8GCblP4D|{yl})dO(JRfpwz{)_`wf}Mx>BRCIO$jL
zS^6%EyorO;q+nEO^3^Lc<)YT<I4*&m;J3f&bV9pW2sXxm>2NATdjR~~8wIQn0E;J=
zk_$a=BCvO4cWw-xhJSiYlH^BHHRTQU<Am}3RLk3$POU#?pK7Dm{vZ3{mWy|%NojYL
ztRsP9x*bI5z?s{eBhi+dh()k+^)10uhHp$DqnBC7Ygu`0M-i?h$;&8_ovLzG?2ap4
z?RXinkM@bO$bhmU)4I^SESe>~at~OcB-S#}2<bHN7E-JN_!=sigJb^4_sE2X(ngRX
z!%A9Fzk8XSPH8j{9(so<L~r8tWyF?>7R~H~Ai-T62+af)kr5u<_7Qs^^3i8q-SGz|
z=1+oEkiMqbJrl7egYT7F_k1SklxMUs=cbYm+#DO0&-J1P*64;M99%&e6m)m7ytUeG
zfp_!%?QmX&-qDIbWXwtP=Iy&!m50azpJaIzKwGu|&naA_J~Re_$P2?mXTEsb9HrTs
zJv*oqnN}pw9r36iN2+iMVor6NT1ha9Dy!SP&9Sd&E*1G2AVtp@Xp3p$P{*qA>=T`q
z1yiH@--CVGa)6WSHb1#KKRtVQKANuQGcT^V>y!1Ht#0Fl3$v&*S(8VKh|Ec~oo{&g
znw$$&SF9;uG2fx#qg$^3io5oDul1fg*R^-W?5o?@D+|336ZuGTNgf#~EB3&I#_%mg
zg3?iTodE?klhd-2Q?A?{8e5#0q;qFJrFT1}Vd%gc&VW7OM=5xvT~GWkCh~Ep<*-(4
z$Wv6+==Hm2Gl*&5;R@O=S~d?Y!S@268=>*)>$C4wylpm6z)qOXPBK<bPHaD)|DH^x
z;96E)3SdTWit7W#lS~$cElDWH<P9q){s%8`Ig_F-lZ{t<w)GHFN*U?)?6%eB{cQ#Y
zpQP}w;Jj70n_N>b<b*xDWo0`h%{!Y=o?&m|?KPNd5uK;nZFhVpV8jcedT6aDOlY2=
zU(6<cgm)CV7^BvnM@I|D2Ub-)XNn|VQlX`h7cX#g(|z!10bgB0y}Em7HVyB3j=-*G
z2<h59m}}QzTrVMj>$3^n>L?;5_|G;CTiT0dvLzzHCmls3nooH&($Gs4lG4nBpb|&@
z(&-i3v<|9_7VP3fqJ_{t)iwZL+Yd{_eiWnvI#adQG@IBGAI=FT1ysmJ$|geQF_90S
zmzgfr6z3C+7T&aN<J)M3*)9FV!t*<@u@k85|46$i8um%IEwENJ&nu>s6Hy$oo?c#%
zZ}I0lnM7Ghjpl(fIi)-@ShO{p`B%7Ug`&5c&ZYk?u|FQmDk$_)S1c#isJWB*?o~Zp
zP~pgt`R)V?M;(tERdG&_jJ1DkP1}6odR*XEbIH_=?&e4fu5}-f8r_Fb93r%WsAgNN
zm#ZdU8dbspc`NU@D?V<B8260E>TkVD6}Dcbie0E)rRr6xc$G@2;#|<%A~rs=Ejs&$
z$u|YPBMkmH$+<HBC)d|+A-1R%&Wr}9#EK{$Rtm4X-P}DW9lVQ9^6z;2G~Ey`awz$y
zTKPuy7jOwt4}^g^5Vy>5x9t8h2mz9n`Ah^Kbr5Gey&;ig?Zhs-IWK~zoh0b4=xe)T
z@Eui3X1s}50|#Ow9_An(?q+_VjC7eAYCKEiTSp7_7gUAvEEjGCb}}8Lym+L*Zs(!t
zWq$si_UGfB9K4L(eO#Mp*_NWgWr0e#@@EZD#GXBV%4%~_zx6V0+^^$SEXAA>38a-y
zBUU1B2g%}RHmC|1V=2qJz!Vz4ksSl8QsQE8BwIG$1lS?FJb58RNjj>GJB(nlA-6O4
zx@4QrzCmTS1tJq`DQiK^v{d(3zx~Z`qOWRRK_zVt1%v_G$w$V}ih(+bh%e4oh9ST@
z!E?ATjF~-P%A{k+q-KOAM3i)lA_GLdi@hT1?GZ<Bf9QGp!pz$nQr>>?@%Dg<mlU0~
zYXrP55CMs3ciYFf>y&Sqif6Y;8tZ<s>z*00?j_*V?E#%`znFA;L!#@7Ki4g%JT;$u
zlS8-{T)C~G$?X6`Zo9~F9hh!<f_oY^Tv96hOV4Rfg?QQ+*r{95$Zk%~UE9@~UY6Pw
z9dfy=pm(T(5_wvh+h9+rMUf^Hl6v4$tXDWB86oj4Gf98Ao(l-_ANO%UpIIExZqn~w
zax6*S$C5zXG?qlQs^vHfH84^T<K=Bwn6+UMr<WIzePtB`h%#EJ(K7koxk#<<;N*I$
zHJg^vMW^~ulCbrmB(V$Chm!Q6B=Lg%bNQAh^^}UCx!@q`q!mg!C$)`;y`&P@AVTH<
zxKS<mPc>_dkY2jpv9BKb*w3P(vM_h?WpV+h!LET{V0U|^EG%@@vZrfv*i0{%bJ|PG
zpk-M&@YEFdL@1gYA~Ex_SdF)gOnFtw%Ek_aQ^T-hemBvqLQ@b1bjF_DYo;yL0o7_r
zs6aRu^KX|E2-9}g{Vki&2QKUAO!#XQOb+Y|K%||?+Pe{J0AcX!sTTJyvZMFSE5Q1f
zOXvF-vQJ#;#np3L=Sr|Xt5*1+N^_O|5DDhf2J#7?ZEJ@Q*YMRk-O$2|B1%^@9LCGl
z4}0BkdFvWOSMY3hakfbu9lpWcjLOH*na|1BRI!}Aqk`U{vGwTs^6PiUhQPo`d~vok
z(C#{X`TO0VP|YnuM<HV29UT{9M^Ibtp1q8A4=e!^yPU_3#ppK&bgkxj(Ze*q-~Lq6
zqTZU3Z;zM9j$jD8`Q(ox`&@4+U;Co6lAmUOmTF~G-F&hX{+cLrX_y_qcz=C!`u_B9
zr{A8xzxmtc)rbG@|NYyaKV07sCLVYt1yJ(?t+)||SCR1AoraDtsZx)!TDicBLv>F)
zJ>1LF>+2ssT%GM=$g)aUS@Y{PL;Y~Ila;Ncmf7ln=_Nz8Ppld4)rXr8Z$7-;!H~aK
z?Ckw@{DATIPY?I|>+`>vAEl4>DTATwer2Ng(!o}1hkCW$RjpV~Gu>z;=(k!a;k5>R
zwfxz|DSY?+*XLL7&u`AJ|8{kLcKYV#Z`bE<uFh||toajjvDmfmm|A(QwTqB9zi-BT
z{{Hmqx94`%uRpx`?mX@2#Yo9)eWpu{MS3lp*G1e$J|S}7yuG$n_4A>YLnd;<L{`n<
zNgvAsn+;Y(N>1<0GC}xV!BH;(R8?o5hVNHPH8%^d$|b|Vwi(l?Y!fENvdYXG&G?!D
z4RC4A7gKuAAXcrEO7YtQE#+=VT9QLq>LC|Tc;&Apyq+txy4YPa3KS)o6vAeGfMu?!
zVPO>o>}eA!$;=PNki_#8rL=Z3c!nHld4~>Z5TWnc?AQrxw9u>)9_F740!p)4H$226
zuM^!;#eVx6v&J%iTJLbNEw?lMl$;YK->nIHTL^NSn`^KPpU<4*eD_O=gs*YLgJ3?P
zJ~W3tP@z%NeQIhEV_wUE>N2OAUF(W!cDHgzTT^<2CT>9a)Y878VI1U)vZ)l;E4}(L
zC##Z$;St}%yQ3F-jbY*nU+PATxm2X26`iUPxwJvKz)AQRtqcDja&Q$6Wew)TaQO5H
z(1-B7TQQD)R|y<b)|DC3gHg{UA{a=)K8y$CaY8kFFeisWh+xjh8UPotON_`h#bE6-
zRu*ywm*Yoew|dlC;*U?y>zc8rT^Hd$ozvpqfBl<(f8wpN#;Pg(bX`~LF<YsaeTeY(
z4ih8whAHZ9s+sHtux>x`X+0&Pp59{hDToGXoO_N3(g(^5a9sEkMoO6j_gLFgMg^Hr
zh~u{OpU=G}uOST1{?Gqxy>;UU@H^V*%P{EA&gh7JdQJZQ7$a?M?IL;yJTPa<Xy&GW
zg}?ji)&DwP-z8Y}O^-Iz@Rd2R@93xRMYBj;kyq>AbUHU!cyEzGHd&77#KDknXQYy~
z$dQX+wE2_^*grWY5rM*Ip_@K(j21QeHOes#LPDV-|JSen*MLw>z=iwkSO2Ri38!f>
zPgLuTDnU}+EhAMee9%G;)B>b(#7AsIl%~2?BfE$1p{MI?!t%Oc`T80Wo+9;xaYGt{
zJ;K{vZrLpx%L*?R2|0dwkkvpH$yvdo+yv&7S)LD}pOCOt&{|{@@O5Cn5OHo75aY4P
z2a$ybX1)C#huF~I(G{ewLN2!}c{Sw%KD8y*j{O8%$8l|65FSr83^iC6w<riU(yZJq
z%jA?PQU@mlh9%Yqb5@KhDcodqMFHIe!n$qL&;a5i9(bl%K7f!)Me>Sr!Sdq{3&^Ka
zmV<4%X!3qr6E@6I)({=6c+P-jDRWDZf={EO<xkC}+dRgnW#PP-sE=UmhR24l7$yco
z4z{YNUXNJs8iIW_$JOX1VrDCZz&y+$$Yl-u%EhVBoC~HD$tEnj2N)PkQCi!Pl75s}
zDpDCq+IO$q!PfMiVK$U6Y-eXVBh!fB-i+3Y;dTQRxSNBksxD*vovru*F7!}VL%d&K
z6J6C$FX^<!=Kp!5f);zQK2>|^hKJg2Mhs!v3x1Oe9B!Gl9j%;%JzE%%Z!a#(sT*m)
z-_f!Cq}<{0vc{aKagA(4kyq(=euSLxPjTl14Ja+k((Du5MsEA54p=4BNeQm;^_<XO
z^YC^MXy=zpDz-q5!UmSynlrS1<?0fIhq<?4SiPBEK{IBh2+;hUpg}9v2np-+KDowG
zm6gmG13^Vg8)?_>dqDK0R)h&vH|2wz<gvD&-{I28ir;b3BBc3s3davyRTQvE?k<R+
zITop3Y;adZdF%9=7>E}0zOiL!?71+<(J|3C$Uf)H1%_uHd=O_Kl^u*i%$?Q`cWdT(
z+5<WyOyp2K^v`kyl{7!Ol-07IJUM`@sFhysW{J5P!zf<+ssU2A4{}zD-wBMz09I*#
zW{#q@RFB9xhXZ3%fgFcBv_BmQI%S7uyAJ;$1;am=4hLjyky9<JrQn(C>>5u6Ot0DM
zCs+CY_v&wo2_=^<^tw^y-bA!&Y<qN@ka;C3{(u_M$tvUx`%<==wYg$!Q9{Fv1LfjU
z=HV3xijLDU%snK>kR@i55m}{3R#9ct#{s;RYa0vX6cVGNIu5yZHP%U;rF?QpTPyIv
zMG2Zq+p7bX15ClS;=oaZD939c9N_Lxv7%U;9UYIk;CgKiOR8i{!829LeB^q-y9oc_
zh~&w|xTv8hJp3FM0y)GqD*itv!rb9-L3rnhp$R>t;D9SEi08?geo|ufj2w3wxuj%%
zS<m2)TbpI(w}vPb+YBSD>Vh?7VU{<dlhjm^5;8C<mY;!$aP7OlxD(QUeEx}LH4HrJ
zrQNebZXjG4CD+PTfj1)rECTz5Rkfrw$)co8HCN;Kq+IZ9xkYE6%8FTlgC>~SA@)GN
z1g4a54QLzLM9N6SL(?ekF^uzp%L32^rND}^vhvqxFbtHdo5vE8RY0Eh+v@yVraK=I
zcnADdX`;|V`pEd*M5_TY+C+3m;NGU$BpBwDF%5y;-jx=RbI9zD91o1{%{qz)UTm5t
z*rnS!AWUbY<5(0I0y#oP$)>P2w==@Ei&@o^O4fI{f;Qc~$^5~5B%`X(JWm1qIKag}
z@My>N)ES*%U8huM6Kev?WK}U$N>r2KoAYL_|Cta<kKF4>9XCWV;dc{96VzIG+q4u*
z8cEPGn`Dxmx+JTH+yjEsteX1e1DeECBb+j~fy0*gBMb&jL#><ZLj`AhD9hs!IVGa@
z?CPnZ2<b;+Uu1@-Wb>}*p>)B;aXjDL#c4JDTN`zX<f&Kz7-%rX!P5BSHr3*Cr$Iz?
zn<fFXWc!SyKEE*Of-CKeIL+i+yzO=d-ySMb&|6j{V#JX21GHkWi9jT-&2MZlH(LbR
zZ#ft{QTSFKJO^O55C(=i_;eYMy%IKCXBjU{hkasRjD4jq>?WjyEfG~JYzrz8kO$(q
zIDdv;TUuJrM<UWo(>lRVh0Sf<R_5E07)`qhGj;CS>`+;t94XX<TYoP&a>g4F2DTq)
z!E--zw5eT)0eLUA`QP~`u8f>?CYgFKHT*du-)bcHw~1`6X&dhq&ilD{>QrEOJ!toc
z-(xq#J3j5o8cuQ{i~x))+qp}RPpE9y4lPDVF?4y_i+$rpn*PJB+`%wb58+!txp}Jx
z!NZ;V4?4wo5~8@cE4-jOuof0)o8v;Ws;rnsr#%(U+R^>!U`{8DgPRiyc6J}Y0(gK_
zvpb%VDXZ=v`6Ww4pK4m?8xq^b=Pey~X|ZjL#5CX1fvm!o25QxQa)VnwIn90X;clC-
z)#V2{^BVwG*sq9b!5n%KvllUY5wjODSGQio?Am27VnXXh%%s+fn2W6!F*`4R=Q(VO
z3gsHwZ8tC&|A=<>c?&T}&MxkwZ7McG;<c4lZos^3u~923?il%M_|>b3IQ_77g^}(G
zB;Dn>3<LXo(qp(o@gC50ib_8VTQ~u${C&^kptiTH_cgZEvK78#kK#0CnnYv;xfVK*
z_>>J?96(qH!#l-uj6ZaK!}xR2X+{~NiaFq|NTguXs3uBI%`CXk?&3C6Vr~P;5gXl&
z9C)J-Jw3+RC)E`r;H;OGuaKcDsO7*On9wyXiW!E>`*nq&WUf`x3U*QV<~duEoH2(b
zfTv@$(r}>7`!SvX{t49h;VP}LKnG!HGl}1NQ)Oj6yo+;M;!nj{wg_0pR9_35o-p)(
zpT0j!Exv&9D>t%~g}j@E8;p6Yd|JA=0ZLSTYc)zke(&cfqIZx!)q3j{w%&TxTd#WS
zRZQ!xSH1PBw_ZiJ-g>pzdh1p1AWa=?FJdlfy@(mzdJ(f1G1FQvV)i0tFJi{FUc@9{
zh=}>@4$^Mxu$2|)Qo(e=1(D<fOj_qnS2(H5Qs!Go%7yIYl{vZSqRQm3keSDf1e7fF
zPb)e_FWi9qLkfmTh=#|5?+YP9N|_(2<EUJ(KBqUX^*OzLPVchz;&OT?R3W{iK)5=^
zH(+LlM}H9+zUB~E;xsEA5EiaOZX<<Qe%YSAHRT|-M4q#pl&l&ep-M95w(k7gS+T1S
zJ=TsXwe6v9;3*Fs`mI~&WhU5y{lv);8(Q`{X}zb`g!5C)su@&cYb+5S9nwaQ0c4zF
zYXMbOwTm$(eT%v%2Kc^t8g*wGHb+SFeTS|#vyg4>(<k#=Gyh7oLOMe%?!Zz@?2?d-
z&cPMfHc~scW@UL|&Kp>0<4~hlwe4DI$rdcNWHW0mSyr;Z3O~Cw+>-4WC^k3Xk}VQ#
zIG%R>!yQ|6Nvu^DNVa9zeeV6+%&1GYynEKX$-!E<Z!<4>Ii}txhhm2jZ42FK6kD*P
zlFe<YWLxCE4Vx<2g<X|wY+EH8*;mP?HdeB!ot121bGE)MAQ!%cD9&!XVl->R8fkI4
zv8=K23D^#+4%P%k!6_{boBnSj@d3yBA5v0YDWl?97g6|~H6jMD={%4UDggXc^9NcO
z$<)?wLPLic)4W_iAddjSY~(65e{e+(?%C{MkYsykx9}=BxDW>ehw0pA;9f|EVm}A)
z-NE)1h%I<KIzGHDR|9EL*>`NVX-rKgT7TCXfzx_`tV)?T0y>y=Q8u>*FSLE}Vm(Iv
zV!LHfDM4VV1PAPj1>J#EphrU@wL<LSLdyHPbfgA39^FWpi%d>k!U~424=iN)J(~>?
zNFG0j0f1~^?KB@-hLVqjD)JGu89|QVOuch>Wxe;nTidp6b86eRZQIuA)V4jv)VAHJ
z+o|p8)c3se{oUu@KhBetWM@6e&PlTKNwP9<kYqsM6=<>m!C<$?(aWP^Z2oBXxeVut
z6FNkVh<$?6Ln@_i9eBy8O%CR6IyD<7mT=(yKHF0$C!D;SG}@6^k3<pUPjpT!F^nXz
z&2y8uB0lz`^T=lw;t;drY)dxd*DnI(p*vlU`Lefv)@5^Y=wOZ?MJz%!rNZf(f5mz%
zmOI)fgO@mC9EC$^x=f{NsD1k}gT^FoOh|4f>0!X?imlOW+v|Y^;6{TpjCRTa&}uOU
z@6RC@pS<LG_X6$9z8NuW8u3tU9=^jf-(-EMT}>H(hAL*!*^C-y79cuY<HX)XR^qvR
zqd0T4jP;V45)Qj9-+EcL8z^(mKPdDwkAEm4B7F6vtHzKIsfc^|n_tN9?Uzv{;_G(M
zg!1A)=(YsizFr;=CxN72xlm*q*i`<0b${H{{DG7B`4*I@=e<6I;)`r~GjJ)8NvQYF
z+1CB%^guUn+W8_MFIM;=AM0NT06W`f<Jq4(VKELlMAMQz{z!h3)@+Suq=k>x)jq4j
z2<=AuefgX1sM(}#78@{#RPgELv*`(Go(N87+NX9?REa^ZB}HvC?z<i;hTKAi+)R}9
zRlDa8N3O1ix!}sZhSJ-gs@8(`f%^{x{TchWrd{^6YMuB8?K5i+FD8hs*?!>~bt-NW
zu3X1p53L3gp0xIC+EJ+c8WEqcej5vPAZ}1g!p#XH`6!Ub;t?Yfse_pFBgO68*SvEu
zjfS1TEjUEZNLE4w-?SR%T4)Z<GW;4IsxIl=kcalE1vc*@w{c8(UkU}O#MtJJc+1ZF
zz9|0ATuI3Kwn4jGi{$q4pq!9!QHZ-G8i@%9?7(NU|Fbk(6>B0a^`E6#8YVceMq#(T
zU&l2+J4$geXQ&noW?2zVvFA-N^v5%Y5Se(zojpB8<pC$mjchl#<1$yLBtT2E-Wt>P
z@A4PfHWL=GgheA?A-pqZi9#$3(JoTwe}B<BJb>AVGUr6s(|Va#kMmLsQ$4nbFTabC
z+`PN=G-l1?vVlMoqo9bBn~xTxDN42>E~aviu<k1P-W#f>7$Hpmg?Bj?VwXIGciRif
zB1!gh`xV5hojmuuaJRwj6Mi7pU(@Ox-ep**54|_aG<;Qz^*b{}tczI1Ya7A&KfBa_
zBzP8#!ofd|c;@&E>aC=(Kfap1@?2E(jr<f$<vDD3hSA=BiI|8$sxu6S#!4qwFA{i0
zSr~g+Zs$P`WCy`DNvTI;($ho}!bcC|bXljClbAB72vf#J2mgM{X@d;O+m;|bHWY%n
zoZa%g?l{Rm$$!8>`>@Dl==);Xm4th?)!pw&AUIh0b!Tux-ByD-<g@EW<Aff4xHu)f
z;)lMrhGombKi&^808jHY3qKDO_T4N*F(~ZJ$vk)b3)p%lPK3wc8Cx`l+v;!Jgc?iO
zacFlii`eKLV%Z!;XbOnhZv}~1VgQLyV+M%;ry+n)=23(!bOwnqgBRYf1XJdLDRf2=
z-Uoq$R&M_p*GpOxIpJ~;S<R)GdEN!D;sCZ^^~EZcy;D>f$(U1)6}r(fsFWjrY9khr
z$7MfWWmu!o=PVL1DE~$162yo8(-dMu`LOOBzMTn5iw8m~0-!F!q7MijX}!J=)Y0d(
zL{{zyL{YEzn4#TsJJJLxpx<)~sK|@_CqS+Pav<X2L+r;%@P8m(fvy8OFad}<B^;=K
zf9{kA{}=2^2x%?`wGOzTCBbJKk9=n$hVriu-bB9b_|%I20BR|G1oy8OJ^>e8`%2w_
z28u7>f?EA2)ny=pYrb&8EFB(jB$*pP0W=gAMLyV=4qlkW4kOrjRTm^wM-LR{SPzmU
z6J!7ahHB4kr32(&T9yCh&cEIRqyI!#57fV&03I0Y4{_VE8jttsEN$R%gJtYlR|jIL
zWdS-}FAw|$uVb=wh2}1D!j03`844@f0Mzinc*}S(0cxF9!uJWtV_~_A>Y%)3r2mT$
z`R|F>E3iz1uQY^^V4~ZwB4`Mp8XOdsu2n5Tk{-lN10f3FmPmsTFzD&}C+z-9xJ-jq
z?BKx_8jy&ZpCA~DYrwjk{a3T#G+UbuAT$KR`y|1GD!?FnP#OYbPsr(d1v2F)p<`+A
z>H0?&jw<10D)exm8qnq%BqPjd6ZNk9WevCZlATF$4_dEgJQ2Lhb1_!iiTm}W)2LSB
zz^ajwa3P%vUNdJ>w!o=$U85p&xM2&%MC2i3SUP8uPBuw-8+=#2wc!{ZE(M$FVzijh
z;Exd);veKBpz#ZTD8S<(_t-T0T3>T`95Xm!FjtPDioHou<@=S}$Z$wYu8(;RM73P0
zID2OXzRGg+Qd21%=|uVv=TOs0T86?^mt<ckN3=@1RQ1OjBwRbB5|f=gM<b?p#I2`!
zXqT7G<@Ss{D~vBf_E2yzQ-1e1k)?+Ak!lBcINKI7+3I0?ILIbc{-La|89gXY+Fczw
zM5W4HN<&k;s+U`kGq&kbidBJ?wRQmB*#&_E?*_NW#oj6Tl5<W)rJ6~Cf@_KRg6D&r
zYiDb3W`1bl$hT!xn9N=9Y7*R(aHsz#BV=?`QqmBJ*0ysU0+bIr3^PU1<iEJq#^IZu
z_Wz=pndJ!T=9II#&`4(fW>f3bT16pMv(E7{See1F?adl{#|6lM%}G+i!9vJ6Ljp(0
ztc)~0YA^I@&<fE4aA!Lj07<E<9Xq=Q@(Yb4)i9(hJ7^*-3a!WoN^mU3BPT99Z2SP(
zu)0oNm2DiW9nC`+hi}IY^t{ro2S8!AE`3s2KN8L4V7O8LdfbHn_ZCd#0zM7Uk|>(9
ziDh>=o-k{jZSb~p>jh{Rh=xEV!5}4#2ob7Gm&yzkONer4kD{c3nK=f=NT(v|wb;0Q
z6%J-$IFG!?^r~akfj9{nyu{fh4hvKf8tqke8AbxFA4;L(oWBOpda%*BJ!mLQ)~G)S
zUsC_bw1W8dtU)8p0F0oGdv#C9aiP{*UjM{w9A>GHqL3(i;nYzj4Efl*0Rb}4`l_Qm
z8S3P$hZ<KFUl1yUeA6mA&nB*G&d?x<>n*JAJ5B{`MwlxJ7%Cgx%(yh=U*k{+2of+;
zj#5Cg4qGZMd+O|a@}*J<{_C>n+9%T-W1Bi6N-V5O$o(vwK%o24;i;;@G5ZeT2Bchp
zYo$Alt<kZ+Lx}8cu_{!pOL3?O$~dakcT7?$0K12``bPwxJ^yd_4YEXT8jnXRmtM}2
z-S*8IrlooCN|!9jR<0G1FkkB6Z?VpV0mp2hZbeb9gE^JMSrH#+Z;<5L$T7pjBd1gg
zh{i{uw&46unSj?cKQs4S%x%X%r`(*1d|MkTqF(w@y=|Mkwpy<CR=}lbV!Vd7g2kZU
zow;XPJ&^8^#im6d=?h)lb?YR&v))5Ako3VFJ1$lpb+UhHs0k5dOmIWsFif?9yBfs9
zr+9W~)>L5BYlbjU_c8(G@g)Tu?JKqN1`ISjV97=DmW1k|%lf^NEmrwDY6KU<;Mzwu
z%Pv&se*onfNxf@MwQbOJt#HJ6_@j7M`pi&85Em^O<l(Sk42^R6Sw3kSaQzn2Fl1rz
z;XF?WX`fS>$TPy`r7NSDuEQv(d7`l@6qC*fxT5<^jRb5_@uyp+mExf=Dw)E=CZjFT
z*d{+xTvE7N)gv{r_{OQ9-4It|yl7L2?0-etl38O^MLyD!lFvrF<vmZ!t9L3QPMbX=
zmDxijha!owiHo0s`YQB+GtTcR3Mw+Ek{-%H)oblrPgl}g{GMlvrKR|cjvr+|U85Na
zzf7}29LF3ud;&k$FIBN~Qif%yRuk{QsS;HWAHU#K@Ibw~Tizrg&m^9XdI1ow^8qi%
zV}*}fv_d=Th;<b7pjVxV7Kf!lNv9`dbRQm-e}xbi67Da~db$wN-Bvk|B5_b}?We6%
zE0%C?6+yu}kl2T<)CZR;Oc}IA0DZIKmsjk^0Uqc>aHvuz#o|9ORab6+tz9s*IwH4y
zHmm$a4_2`wCDp9ra2!tUY)b<g$MbU@5o?93uvK;y1_p6Hl|XmP>bsM23ePJMT#xSH
zGM5=Rf4Rq#tjoT)I+L2R0e%fiEPzj|_!wu8EIE@EC3h@I<E+4>_BX3AxpJn}hcwbQ
zYY+i8xkq-6E}zlO7+ryaL)~66U=#qYqRU!xn2i><z8TVbZnMaeOs<;wBet|1fb6r#
z&8psTCj|qRoZQutiGheoL=E(eh_}8`#Z$1v#!L+5Lu4d-A}K=9RoEe16eZK&SodtR
z{oriv*4>ncL#@I=Cg*n;zn&NV0V0Bi;U;2if&(pQq_()SRaBjzHJf>RD9om1NrC{2
z86^TXI`6*PUPD1%Q|@@M2N&977=~tx4Rr_*hMEFbkvA8GM;xGduqcU=IY<M)otzm?
z{r!YgH44KMLBfVhSGsK_TeQ?Jq+9V)#Q8y~#f{|`P*ZdhTe+1z={|KRll>C$Cj;kn
zG5qlsLan@=HXc?%L$aL<yOD`V1Oc1Oj0cHU-A#Lpz6tDnHPdx(S=D?B<M6saR)P?3
z7=SdtD+Pw4lOiLd2-(CQD1qznvcOpC3e$)rCA*HslVY2FpEI9T;L*;ERmpW4tvhZ>
z*fF3$5(FtihXG3f1q<e)Kl`CeoRXbsYXuX#v>(kAsoc@!lC}7%Vh0t_r~iaA`H|iO
zk%3-qV^PQOgYT$J0kzEN2!cXOdVKQC{>_!Ij_V{=dP3Y-q)?Zg5=L~ssoUPsjMGI^
z%Tuxz=};d(tR{OoORR78j3Wd^w4eK!C~CyiorRO@(*#9UxjJkR-@IK^Jc%UdE%&;D
zj#-eZG}wT!UiwclbRYIbKShlMc&g3K3RCtfMNuU#DXVBjSNY*o!l5m<54eg72|YRn
zg@oe<-jC(O@745XlN!J46<G`O53;_?Oe$L33zVSYL0hZ~O?y<XMav2)m1R(^wb3$h
z9*dcs+TCyDgzitKvoMq8P>*Tc{NBR&C{8Y$+zf)+5+oLjtDwuoPnMD2`K|1uXM48)
znE~}TNd+>)+TBp>=gSiJz}r+-Df3q+$S2>MrSN;Np@K=hd|>q5n<I&Hft`zu?cFO?
z_Q31BcqrC0?blQP2P=twU!wDeZZ=CYNlk%hr3vrr{gCK+8q^?Z>WggDHCtqLOegbp
z0qIimBns4Q80+e0(bwXBZZe2DRw4X214w{&79<tGs{h&ERP{vB*c1#sg|2^ixd8-S
z%@34{iiI^KW}*WG{ox8sUcM))Z-M;-M}F$6ihZih*P2wK`NN2GR`d15!xzEXvQKLE
z5;=*f%ZAOu3=d*`dd2lx`>!9#`07c!mRj?fxz)1t#eg^fxM8di=f}%rt;J)=(1gU#
zcOhRKvB+}2hUE0iI>D9Diq-FFO4LZ!(Ok`xuP6897hYzI*i}j_WqcYc&8bOZ`*XQ8
zGIwsZq^KYybqydlm<GYmaNZ5U&#`i#JM?=!U_11)klqbDO#Ob4AgTuV@bc5Ta4f96
z*#8wy?I*At|4L~GEZt*BW@Z8s;G7!?kqxX9KJRQ3C0r4wQ1QV26y`#`Onv0iPFR@<
zGf&@2o(WNfHj9QN9aLh%2vp7*V-^B#j5QodwDbr19$NV9oLJztwBt1GD*W)HD?Ld$
z_VDAXX12aOa~h7!h>ww1bVD{9xyK_k>b@Kkm?Te?d<5M<@tDZ?7KUi}Y<7>8KCinY
zY!M2osH(W7EIb_&WTE_h8lGJQF66Ak3VW$$a}^ZH(Rpz1DAO_rxIO3J9E8WqGmrDS
z2yDZ%80C^`ld3g{MuLTG<+6HHY+>jCGq|SA32qHF$@Nxw1*FK7f(w;26C$=D)_}?w
zwj8lYB7Xeosl{dO*&-+_z9_tYHF(_Px(K|4Cjwg>=!ktFN&t<(vSq+>KkZ>J5<}z+
zisbbug39law2+L-POJgWN4mKq-78JB7fFW#s+7fI{KWpM7kTY#MIijC6NP%wA{7g$
z1r!BpR)PXg<5rB2NP1L)>Z}w+YJ(z{ROdhp@hz)suNF~_v><UJY!sagAwqHr<EdKC
z#XL7!vg)rAa_IKw`_eRh|1FvpqS)bKvzhDSz0k|7&ahgd83aMLXB-YD=VD>1HR)I;
z5mBuoLnpTfz!?j}RMlLr#6kWL#~p!a4@cB4YN$`C3DsdPcjpUyy-^3J*$lp0nqGEJ
zoenqV<w)V1F$SPM72e4Q1oI#DFESbHi`d|Wx724wPTD2<1dvxsq5pa>Jr7$dkQAd?
zbT%u4jzd;)6(w8?=UFW%+?+V){{#7|Pop{;1*dQ28l*-x0B~dphh>;b6x<j}knqY(
zu?As!kctrHYwrBPuO4VU11W3s4H0*~;+55u*HQIh24Mnkh(f;1r(vL)i5glj@zf)G
zF~(R&jq;a??M@Tk<3uNym=pLqNl9Uh@g@p|$dQ8Z{+d0+{EP3IKLT~|#+UKRr(Rqs
zDd(3SGxTI%@4X345JEbMD=ov`bo0BX4>b?|m0Lx_?`DP6nmZ~owwRE5Z!YVs?;__4
zqF8EL#x#jd<4w9xEvB_TD`H8V>*REaq^@vhqN&e*%he@2^-61%x0aZuA+UB(-)hba
zjk&TP>#+S+DuJDNf}t-h2A5ac4@60~V_dt#DNRn$|4kmt^Z(5vfxQR>`hOwIH=G~?
zwNEy{c_t0WfPWVVM6)F*43z;M+JHJCGyYIP(KVa0>*04lI{88{jabk>dXGv8S6j+n
zVjQV<V%sM7=@l|gbCP+12xS!qb)9&>M(&8c@X+M3`1}Hp8X}pQxw$A5M|P{@GtfmP
z8F-B4;ou_Cvx!Y1Y^z@**=9oq*?##qy~;EAooe!qWqAu&_-D%MP6R+C+qB@NiHTBx
zjGTHqWPuGy^An6^8nX!KiaTj=2oBVGZqN%qWw|0&ma8x-!T@*I#k2aLy2Mk?m&v$1
zZJwmY2IE<&uZsn^2Q#+*S;0@5tnw*u&wN^cel$#b-PkHWpIJN85%AIuV`sSNRu=P6
zoX{tqm05eZ38DyUJ|;PPWRU)i@SP{fStfVoI<nHr?N~5Uef8w|`wVXAH*i#0xe1h4
z(I`>*LRAecY+ivd(+xtL{^1%sTbUmkjU)iKG)@dC4dygLNkxZocLZ+8i3QwT9U)Re
zk|Zt>%bmN_yiy;2X(Zg_<20W54xy5!8S7sbeCpzU?_wx_4k<*%P~<H}aVHWI*2VM`
z!qlU55m*g8*2z6MdF^ljzy=yu#j85AgIl-#Yq^L`7qsyVd>KO2!raw}-j{bB0Y;6B
zBkAQ0Rw<CVXhMN%#v2{<0iRdO93A{tXqqDV2C?zW*j0iHPWUTu;02jN%e*A?P5~m?
z$sdKN)U*^%dITnbqzVTSVg(;gnOnLVQL9M-Oxy_##CHjF?#a*~A>UvbaLPPn{_+v^
z!ll}-wFGzLaEQ||nt0<Y)MSu=Gy9e==942#kzpuVy_3`4+ol}0E&>&KiC5WzPp<w9
zzPJe$aSFDwJ*@6E6m{79<*Z-W&zlaVwg(lt&Bf#R=s4tnPrv+!Fmj#CGWv=ip#hR6
z*AkQ_*B1y2{*eP0x_`h(4+KsMGk8!0BqHoTNW>F7*kkaBsKY6rh|jIw>N2RlYY=UV
z4x{vu#Jl*2B*AIF&e4jpT#gyIVJ@nKPj}g3BBuDH>+l)@e~xbXdK3M&l+}(&J|9Wu
zq+!(W!P-7Z%0m}k3KzN`3c*nCk?}nByPDN6c=9Q%(6!D^5ww8*C)i(o;2oa)R~!)k
z3H0NUTNK9nF#kZ1hc)te<a8Yn4&jx>^!Gh+{U0Bq`NxO!m4FaQgzM1jg=NnTaw{-+
z?x|1o5*nzbj2IZeM-1df70ZG^aS|wk32HGy0-25)Na#eJ8nD%Bg8UB>fkCM00P#=>
zu-UGHp-lgWk9O()K_VbWDyW$SCIY5S_?Jx}(5fo|!ln&4AmGvlDX2Ln51wnaT)vGG
zJFoWp3DRum0Ljut2XE|Y0rwBd07=ndYP|{&5j}yq$^xkn$~f&zRdDX20_1lme;%U4
z)N&w0LJavAf%xwUCm{WKZ7_#{cnl^+5Fi1n84eC!Z|%JYJ#zrYkXAVY=@14F5J~j`
zkyQU>bq@$ey(B1&eh-iZbz%h%x-k8#S>gSiK*)dS4-_L2SlRy(L6By8V^0UPkZK_H
z!!!0Qiz<?VEau80QU3>=JpNV-Bb02URn%vj5j<&9Rm*kctiUW9YZ1q)$feH(iVM|#
z+{!T$QNB;`&EST?C*SF{Ex*F$DU&eSx%lHi$tj1xFQu`X%5DNSJE;_hn`~s&Fw>+l
zATF6D{{jd>VU6S4sBw)MKr*Uc>sEG$UAk&TDl56TQAXfnjKLy*U=G0GdT@{7Vt0OL
zuex(U`efeTDlTPkQG<PT@J?)mC?cdv&DNY`rtQVsPWvqy$oPFqz%|~#nVre}50$9d
zs7z5gl^z&$Ge4vrGDK8=WhMr6B4!cBJL153O_&<EhstJWrJb6scq_Au0Vff5z<V1J
zRT9fUZhfk=t(QTpA(-4nfNH#~vZx*T;{!#%cBUH0&#VQ`$z64B*5pBmkZ~5f@wIWk
zJ$*GZd~$MTx21hS@PzJ{Wn}Pphxn5peFz*}Tx|D0fM#2d?JvUc=AH&Iz8k;(?2t5!
zu0tNnz`@^qT-e}9h!JBQ#K_26?D-K1lO?*@eNpXLuKY0b?RYL&9?hGJPDPqTJCxqq
z2x_Xkc8jkg#~6tR^OYc2Pb>t2G)*rjtIBs=%7vYj36KNpEFUZldmaU%URu~Nktt)0
zfJIt9X{(^27q26hMO?Zt^&}V^7}^kK@9GGgl>cT+g~6weJaUyn+C)8(WQpGqhJCk6
z4Tfhw;9LQTwb1~-jI1$0{smciE^>szBm#RMExnOo%M}6}j&|w6c8*70Qb@Dv5$jAW
zYAH8T2|_t+Qf=1eDMv^RhN?p&Yc&?k3X>*nqs3TeEx#TH;^BK-qdU3vDQXFiB0kP>
z3_kAz!DQ)3cJ6r{Dgh&TD^sF&g~$QjvvC8V=xJC>GUN7&nhk2eBqf2vdwlcTyMLn1
z(+n*}*|R?9$HekW9EovkYkvRwEMSuW3o1EGY5w;Zk3u^^DmZF1K*dH<l5PMRoq_}e
z6{UnUB6sF{k$hH>`*D(a5Z?BD1y<)DFCWLIGTUHf`DnOQFU`}t5_)Q>jB~bvyX$!-
z?blSXGBK4mwi7#e^-%0IHsb_zOoUM3M4psd7}k*7s-co|=4F#j)QTl6mu``&67HCX
zI^2)ZZ9|W&NFw2cDURyaDkQvRe$Yde@QYLS4A@NIF(C9EamrbSOQl_AoB>~HiccCz
z?ifc9dTe$4Up_<O%MDxjB?q;qp3PEyRW6JBtBGix2YipM+p{WN-_7{tK;vHKy<0z0
zKhf8Y<onJU3)wL+;UOF2cY17Qpe9^K@g-@sL8qS*`D^Sn2Bmn<jHThGVAKmyhS;K)
zDarIl?<6}CMGJKa>!U%&!U;?WK1v7bEG^DWMFvo#5iHm)3eifB?>UPF9;UN@Yf}^T
z(;1Z|va9@z;^^^z><Kh$6;Q6y_&fiLWtHc^mlcLmyP}7HR367X#Nd8<x(3*LGKq<z
z;F?nmS6Nj)8jbo}Ly?i!an%FJBco3-RO881BF)B8;JiYP0KDenCs<;XXyVa>5M)T~
z<pS+6DS7cZEmdV~EkEW(1Um}sDiwjp-X4vIxYW@_N~AeUm0)pQBy%sitt^WdJ#3AM
zy1ZyC*rPGralVt1$s*6&y%Ji7KzZG}_!c3MDzQ2Dz)6`&8qlIgrK`x3-btBr<csu4
z;!>G6e6tg-hoNd9Rz4w1(DhZj8EeNNef}A&d!@*9e;%vsH!IJb1(qdKz-WE({k$e6
z+xmsPl$24t)bv|Cl!x)X+jLqj5n42+D_HU!sTD3!C|nghc1US$Gk?a^FV+K+a1>$d
zD=0xfd9iSJS7A_6qyw@1QpXV3&{TtS`zjJ=HBwP!PiK(Q{_|*rV(1y-u@PxTKT2L(
z2#>62z=|!eZM=Sv9>O1N_Ui1*Cj2)V3Rf2*Xwpo;>}B-Q?IX@Pj#Ql@ZiiP1L>-w)
z6G4UiFpG6LL2^VPSU7W`JJpp}=ERMWoLUQ^D9vNFV}bt%xCmCVJYD654HGp9BjVmF
z43b^;w+rqM&(*gkj1d-b9wwA@RHA5kLn$OJ#i{gFjZ5COmpbgF3JzVnC+Z6cR+XUh
zt`w9eh~nPr$eL=#Cy?{vh}_^21{zs8_qr<}|3O>aAo~j-@6d=F;oKRO4x}NVvf7o!
zopU!-TV<#aWr2ArkC@-CH2B%sqY*}ef(oI=oZdeGL!qUNYhCmSCtnYcb-@jRd9&-y
zx))sdOBYa3?8vD)#zj36Q6DW#Di*_Hr5_K+V~yq+7eY&+abR-vX)2Y72DKEXNKHuL
z0ZZOX_sh3@niz`%5>k~|zh*?SGN^Uj8CDd6ELIoa@Mo;2rr_FmwN9k8GuT~fk$B$0
z1G9>LX{Ajbgw~P4)V#3kyTxOEgR51|HhoDFTq`551NoqQT>hf26LVG;w>)*tb3uRB
zG28zB@*r1PKpVTk*@orf-I}U?qO#URCcmSsU+l8Sv=(iG1O!>?MzK5hV8f81Ra(r3
zZeiI1M=FL?3ZCb*c!tYt^@wP-%6TeCf=gS?5cgqpirr9zhNP|J9m!{55xBy*8j0)`
zi|Z4-UTbgNU4?(Va4<c~mE_~58bWi*Q1@>K(x~`fAfH*Obgbpf-{o972%fCk<j()V
zhNKLY&4H+}$bJNeIeL>t9pq{H%{1!xd2Pb6A0b75YiwKVJGlC>Qyy`U>3MZ9zNJof
z6zL!QEoLE+_?|hWJ(uM>K7AgWs5%qokcoPyKNMQ>Jt;LUBRmzLFSJlYHc0aTaIj;P
z#+LW=c0rzTV+%LoXvYm_sqD3nOP@4TNM^;zf_j7@&Z;r^>il}$tsakt!T{KJ<)sh@
zuZ(ksNNF=v<6T<}_HE?6(i89t>b&--S`e~`grifG%Hookuql+RAW@6HfLA+$a!(dx
zk+ehKwLSKxyi_m<u5b346p)Lx1MTiOa8-qivlW&^{18@2Zw}?Hov$k{O&%Gq?An5u
zjmAA<DVl(5-x4T4W%y+xv3w7|EMhLw;G0^QNeU6d!*ufd(vs~|%>iD-h0ivBS*RW1
z`yN}FqN*K;Lr*19&CpYc4n=#evI4;c4<)^-BxZDForI#WYeaZ$dU;s#Qa3U|H3=nR
z2xN$@LJA3tNJW<M(sfNtg)cz{s@<GxWmLzdnJRUYT-}l-7-@L0(=;TwaYKCnvh?4m
z<X0&u^v4c^NP6){?<REu_g!@k#!SEucpgyRo>P(Q5u)`8xCIc(uUOq-F$J#D>>^)s
z9w-4oL)lL@%Z>l|9RI~~9gHjg5&-KeWsWyhn%Jt3Eha|Re}&g!Sq73uro@vw(ikLd
z9@|N~lh#d<6Hi5+8Y2a?Lr}q`3b?W$CS`8p1QAKU+21WaOAxW{<zgLPPs?07Id$ZV
zijz<@qL4-j@gJlkJMq<nJ2N?gt2<2@8v@v~a&}h6t1O>ZM-tsvfXBX0Wo?;s0tYix
zB`a&say~y(;YDmh{DG}Tr%ZR|S8Cq{`jNQN+peCWS|+IQf{TKQk=sV#2mbe#2(?Zu
z^cj7||2W<jt?!`&t1;K(%!=t>{dk`O9UVLY;<z?>hE{dKWD@#((aM3xS92NV8YUE^
zqIh9GVsNwTre~2<8A?{LWEl$>H!1K@ZGBxKUCTsRO9VNLhk|nI)q)g_X9^bI@}LFw
zq3}TPEnzXabsO|?^m#w_g~|skmW389<6;+@e({<L5cC8&P%1o@h2R({d5*dy&e)i8
zsW?O>ZOJ$2Cs!HYMWW4YL21NZO9iV^U-cIJqyFWB2P5LPAOq%!3##LCTS3D_WM`_!
zH5o4VWRoz8pG7fm9=rQGnr~iHOJDW4uTSR@*DddS==WxL-`?dR;ISDV^4M-KGBqk9
zXBVi^rXmof8y-O9QLi7;WKe9tw<aR&_*nDeVFRxASUKJBdRM}9QGV#E`ko7uC_#{+
z1*isp_vmC@J6WbqQgx_i@jLggzqL|SD&^r_&2#|q7wNA7>!$O--qWb60BL~B0DAs~
z^w$(Wv4Z%o82nex7CtzZg>%||@dMR=#WpSmMOU~m`y$+vTl>WOrAC+%z2>g#Htf%n
zSoB#k)`V9TE3MlA;H7J}%0qSIkS;3y7NT8ENT~wHP}GEtPS>7{#6b2$9}zfDx}&OZ
zO~Jj2b_Pmz%>f_X4vy-TK;(iAGi5_-x%jz)8(dKyE=~B#9N$MCk&VhrH>^X+;ocB2
zO^6_VTDz__3M#^hjRl8FN+Drh-h%R58Dz4td_@~nevY?A^<<BG=J+hay*jKB?@eq8
zHe#vpYH@R|^Z+)g46C3_*xUq#NYvuQcy`6MR-9ofA0&OLE7&o;&j5tbF@|>76#Z3!
z(<0FzX8G2PCvQk5O7`(-7e`iW_i_CE>6<BMa6zHX!ZJ67Opgi1lP~%*H<Un62*N_7
z$`Uuiwh#IIVxN+#FSyk>is)-(R)Hi%iIe-YX-|T;lK3Ok(mcMns1plhPZ7i;qP&n3
z%u9Fg@&gpg9KJAr!&g7|9spmMXP3qO0cyOV=)4&gWriCx`=wlz%?Z$;e=>#_X=up#
z^e4BHP-6sT-DAEoO#ohbP?Tsi?U><6zm!pDR7C8}R=G*L;`JRhIyej!4rNG21W+Ox
z$rg+SQq4pu#}p!FN`R~>tpi$ooq9o+O+(dBd0FQDn$1YN8-JLyI1To=TUA|Uka@>F
zz0C7I_YVO6cxD}s_MP`GcVtO)#j%m1NI6C#t-~shxz8ro->p1T=gmn`3=n=@0$vII
zu%&$#urHSSO*smOH1Uc06zhj?Y(R)3Hg9T41DLE0H=n?hz3Bo<x@jm^r+f8K!U$|8
zyUzdkA4JK+BAdbO*m^Kk+G$F*tXaKBjd#3uV$QNZ^$^V1JW&)BnYIF)H!p9ChxtcC
zLk8ciupN^Nzx+&}TG&yRANV5+`_on~{&OrYofAc?ezR#|7O$NpkN~=VuF;?T#1bAl
zJ^5(}uijGqj<3N1C5O_1f#qCop~;LGKR3T)_{zt+$<Tq<N=BA)dIe!AhC-WFyhCc9
ztPUCZ8z+vWT4P!@#5(kuZ)K8bw^D!ckb-n_6UP=)<z}UhUwyoIl06X!09mVd6hk;T
z;PsjR$Vvxwoa6Vnt3%jps##q91Ayji8X8E>Ou=rTx$t}XuWg`v`mLD%=L0zb<H7Fl
z0GWLv9_mn!s(JQM)e=IZ$DJD&K%i0%p##bM!1_=-AlzI@T8|{&Sjhu%dXatPX<qXY
z)ym)Btu7lty7@xQNXHx4d($Ozw69FS+a<=2A`g$(9&2Xh{lHPQ4va>vtUAY^)Z0jn
z%ALWh+$?Q^mQO=Zj{#8~EvYO`TE2>wFX^cyKqCXCk(4r;#K16M2{)66iB)tc;zruI
zn5orxy_9=O;RC5Dmt(XAEl-7uXMJgRPG3oUhyNhT%P!I%U9K#iG(2kyb*M_K*)djE
zoS~LzsNDp15R;4Bikuow3}Y4UJKG53X;njP@GHD^mI<eD*H%5q3~%MfEYALLrF+XX
zB#>51vIA9-`!y%O57|uB+h)CT<Iw-{zPND|JZ~!-iFIXR-}2!WHM-y!{*`4Tb3bDd
zlBh{r2A66{x~S0HjmOh=dARJNW@oxH{VJ3-zEge9DSnGdd?g+HY;KN20IE%?a_V>~
zY*EoEXDz;>#=PMHO1OYP^gIfLT9$~UtC`uKan+^NgU3LzX#q$6lzK~D#HBbj!q!YH
z@)d^Yg$+aw#g+M~48%u`9M?3HQHgU8chED;$jTtibuYrezlmbV_?%C6B}0t~0I%8!
z;Ra&S-%ZaTt)FraNj+B9PXPnfUz6`<2@oY*eBm3Jx3tptkl+1RKDEt`O;!kzI0@iZ
z)Tj_u{1Om?xY!=oF^rW2G^I-pi<X!j#f{ee3rzfP1e8mw!f!Zr-K7sCBD*gt0g|w5
zeojTc33%YeB~=w;mepM=3m{lgJET6oHLK6~vCksbS^{FX!J!W7kedKfuN(F)q{?-?
zGSKDP9TN}4XzuPB=gwzh*=NPUQ#|VM>%8ze&{`;CPLLYlFi{&R2dbU0nhmN6-iU{U
z3|=eg2lOLB{uk{dm4uVHa!T~Qyg{E!lV;-$Nz4zM)H(q#@J~pm&m#=ylGbC6VziDL
zEVCV0kws)w8mGE+RwBLR8VT9<;CQyFJOBy90Vf1cajCrb@cg%Jn3%IVj0`5k5Dw(u
zjU8g6oY8lXMXoCi4${T8&SNB&pDUUmZaIH6!H(N>;f)=^ryWR2D95d<G=(MQdf>*b
zb&No98AT-J01Ig5EfD`F-V3EKpt1b?sQDWL!aLuWPXNR66I8eG6{z41+t#vw>klc7
zRsR;0I!6Xr<|a_T;{z1XorQE}N`&0g_XRf86|H~X|6hw;3qm*nn|289Km=w=kJs4I
z4zI{Vc?qT=48#rpU(SL%>Qpi}If|!0w;vrky&#?2L6Nxo_n~;U&KZJ-5S`ms7!=?E
zkUk<JhRTePhmc3A!iLIqoMGLCB+N8XQNYkEVCYIw@P7fP{Js#t6b6DY>7>G}!&MxV
zv7|s<;}IZHn|-2PU`X8coZOU<@H|_=*%t77&fo-&tysVZ8u5ZxKx!o`Izcsuu>KPx
z%|Nvg`)yPI)gP#~LLD$)Hq8Iak1p-Mguz2~e?~d#PDvCUe&15UGKrrPaUv}V*CU1*
z3h$Xh6;?@=*lM(Qo|1A?!9{L>ZKbZLb&-nnW4xes5H1z~^w@xa#S?YFIbgxA;q!&`
zr#3DoIlHQjL^cU1Xml_RBJH95X%rihxJ^+4kgpi*n(m+P7uzkjF}bh&Zd=wP#Xv6x
zD;r8ABJC7)eXp#)!%Y*u>0B;29VcvMcDub+zLS!Tupg{OPkV|5G8S~ws7&EmjGMG`
z=2U^b=%prC-2sBx$*8bq<+bEiEg$4F(#2b%>eblJZLJ#=XmS&R(TuwemR`BZayFG1
ziVO0hZ5HxO9Ay39Nv7^*r`7Ac6}DDZQ0S_Ct~O97E+^;1%O1CR?#{||bBY_#Ke?nz
zv!53{)4{MFitaet<Pga}sIR5~ffITslgjE082xOd5#~$T(BBVQa25t+!L<1aX3vGv
zSQg|x02t}0mBOTv7APIB67BNz5Hmiu8fe$CFwXLoE0e1piQBfCg@Ws;m@(tZRJrhJ
zB%B#}s6+D74KQ`B`=CGzZnnhe*$o^RY2@cB<(0V+Km*sFL}f&KVrE0ye~r3!(J8gN
z<PuS+7;?y(rL%N2sxm?JBg0A9#-*dx=9HU?|6!IP8Q2wFLLg?b7PnlWcQRG}mXm5=
zkA%BGTKWHN#^DHzWf7^}FqdXz+MWze>2`^cs>t4&7d;->nNvn&bNICepen<h+rKre
z(AyF(i(6Jyt3}e9)J38F!9pP>zC2mBW(r=XM_9Yi$!NyNT=jO>Sr?=RgGH)6^K(Tf
zIX4(~L=Ue*P%Unm#5%9dPC&CJQv3;TtXJ|V1f2{bKDLUU55tF1URMahj}3#yoK1B-
zg;6p!zSb=FiUgYqFXbj7D?8iQY*|E4aU26omKq=jhEDdlN+ND?$dBoI|3pU;&B|rn
zLlF@p9IcduU<7P85DNVkC~WxY(j(C^+>#&U<3$lvd+qd30p&Zqht%d3Gt(s43Kns1
zQ>Z#HJxz-_av+J%8Fqh?8vb+(L`IpmwnkOsrjxD$yc$?ZS?D4^Mxwo#(Z{<onh~&7
z6gA`zXS@Y_{1T+Z*|ei!di<(-0!Scdc}Un$O_RbC$aY^=E9yDGFt}nv-Ij%@l$;$+
zRLxT%(pTTRz!~aZB#%m`NSTRYMf*v^{?dtL;!=#U+T9pdGiC3gsTP)sXL>P9m(Z^6
z^qh{e1X=MLUv0-#H)7KcL0mV$H2%3hB9<g^O%b7D6Soy5+L5fXy}jm4$&)U>;%McX
z;gS3FF>KH+(|NNIN0@@;#*Lq-0#@ZKQo>g2)uxk%$c?LLYY2T84C<s4xjY_(tINV~
z@vg%vrnL&}Gt4semLhpu2<Z@5)GVI(Z_`!h=n#XMFsS#qABgna$HuAv+LeSVLg*?i
z`d#UID=KKn54`heIusJs(A4Wr{0YZ2(M)0a2`@ZX;S3U2UItshi>aXmI7<i|Y`h2?
z1lIRFl>kX%x(QSh50c9y`b=<u>ubv_00N1;0$OuNdGW`-%-*^hio7_4u9z4Uax0$Y
zIAFmR5mix~#j?gJdcp6lj?+O)uu3wV1@u9p`i4d+iLMGE;%NB;E=W5OhBTt(b3a%3
zMf?aN9u@^12C=dSPra&j#ALp3fJ5fnO6AYg)-`+LK*l_gqj~2PJVuEl6y9fV5Xz}1
zj_>#1CsBMe%xA4yFTY3spx)3@`iLxt7*UQ9HAT#_OHO^QQ^p0G!k7GZ%3Z|(lc_#M
zhRcww?2JYy&H{!gjGFa|R^lqYfc#@EKP_z6Xtq*CF>Y2T5*`ywT=ME5zDBaJ-e;&3
zriaePi#L2aeR0Q<Qw!8bQiL@**9O6luli<KOb`n%S{XkLsxXG8At*%(MY=TDf<=-f
z8n9gRRFm{`#s&uuS`OuoM?2A(C2w2(gpZ3d={^<~8<Jz(-?=BW;@vRM===Y>^k5f%
zhVYAHYb^R@V9UL|Af|N=q}3=O-r*Ie_}cboj)sI-WL8f)r@77xOA(jpHxSnpS`>6^
zFotw;DgeLaRf-2PUMTH(SuS^kZ!&Z3w!KPVM0MTg4GSad_>w|k87LN?#rbd0b6qqw
zbS1n2xPBKwv%Ck$_F?%Kp8!`oTV10bBo-{Fs%0Jr*EM}d*U;tmM&Zb*qv~ZA01l!g
zNtuD76VhiiNck)gTTm)s;0H_V0R}~I(<>nZ94}fSikPG;M95!tqMDz7aQWh}Al^z$
zQ$x#0NXhz}Kv*XUA}Lh$CHu8|GCohIkjc!s!s!gY4u>Q~<pr(h_eksEf=HP{RO~~;
zS=ifHv&(`<QZqJyTZhpp!da=~%mA2CW%h>>%-Y1{%xcFKpqB-}C7JG*r$EPV!S?yt
zc(-?K8fPHAb0B8;t#k2+^DrBGJWIL=&wPE8zal&W6>khZ0_EW)@`zIcY_y#q)ae_k
zL(0krJVq;4))PBXL}3}~X0TC%V<{S2+W0tH;4jD<hrpa^P_W^TP-ttHHP0Qn^Yv-m
zMVt7#8m{`ai0LXd{4uQazLy-Wze3KX+G-LK)6Q?a=RV1T3hcRxlZe?${OZr-e$RwA
z5f3$UW!by2>z7fuQamcHtrKKQjP&gymoz4gjTwzbiFY2gyF!1yC`bJErT?xAWfW8?
zg@k8bQKyD?o(`RuV?;>o_7GsrZ?@*wS^uS<5Enrd9p5P`2k%%{BGxzb4?1hp#Qk7l
zuD*h#Yi1Z89rv$aBLOa6?F@pB?!0#fvHxh|;$-{Lr1@b}{}aHrFq%2b@^r_>O*s20
zAF!S?_cS#M9-rVaP7Q@u6~qGYjTtqnbXv9CTA{c1=%PIjsJ%`p8r3aJ7mDlcQr*Ej
zcP?^wqBX#re&Rz+LV9X}>z0D$B}1y5DQ&2z@`!e43@R_%#3M6@^E8=&)rX2hndzf_
zPpcr-_{zEqKAyIl0GE&}67XoGjo8nsLNMt?Nshf^fel6Vr~8hNdS8|)-M}|JGc!}i
zz)<-GbUD9>zl{$L+M+lCMwF+Du+p)_>LPEap>y=KvmQtupl%!(B}l1_ap$)7I&D3#
zja0FC`4#QAf3SC`>TW9F-3%TCY{ibfnZH{V+<Sk!Xq!sE^X^vqxS~!x=^_1cP)yJp
zIS~2Qb!WC^>ExYC%(toFa&o%_t!8>zcwCV1`fa7zir*~5)2E|O@LZTierXaz?oZ2C
zUmWz00E~)l;+Y&<*PZ}3^RfP>?m@v#tq&BNk5><;2j-}+&j~G~?fO60IE?Rp9x@d-
zT=CHtj~VWnu<N~f+RKUP=o1B8Lp^+euP?Yy@UM`s{-C|S=f~ZUTGySyE~Mk#_UR}s
zLH<S7zXK@^tKxo!r*~N@Yh1iXLHCZt5h>-c$j25)&Do8oXSIc`SqDNvoj_v)ExVR^
zAD6~)N$h$|!CV=2#QrdMx}OVPIUilxzVdh10l*i>1bfC|vJ=bfGv$}-p3gxwb0Zjf
zSU!1>*r0>HTtCGX$el4gbX}IV-6fawWotK>W4+uu(@#pCi{?r}BxxX!t}Vmnwb|CW
z;NWBNJll<Uj7_CvNZ7;ba`7d2{x+tZgkx{kMa0XmB+hZ8`|kFznPS-MXvr7w72i!s
z%0GnmEmX4(AJBMdjOp|cv$CK94uSiz`fYOi&fIK=$!Fz!^4ds7!PiUMdvbfoYbps_
zfXV%xVdqKqc_i-oxnT5d>4k_4k7n*PgJR-7kdWxd{o_rEKUO}Q(c(c@5?R}&pkP}I
zxe#C9yoH1Z9U33-tx)U?u0?@8SluRhdrYi1A5VtmZq^LW?e?-;KV-T6o)PM)HvAQG
zW0Cv42|P#Z#X@eUU^oAImszlV*eiIU&ft1Lta+*o9@6OQ#3GQt*3Q#>y7jG2aDtD@
zmOsGD^W+f{JL3pLz=-$y<$$2?`s**BrJe%;<6Fm28IIDM!;DXmHsqD#K?(r{GLOGD
z4nVB80`Vn37@!cvpWZ&=fY<uIKi8Lmw0>xcZ)w;04!<L0XjJ#pz0dpa`yuyuHE7jO
zx~`weif8L4MJf+T*_4V(IgWe><EM3UtG<*)oBopF-}H~qx*i@^EW5dykW!GpxyHA*
z?M3Phv|COk^f(2v63rxi6u<EBOt}0F=??l%K+xd0<9hDnAu9v4l~@cBQw!sDc|Sru
z*B}U|K$hP&lc3vWH&=Pv@8s5}&sF@mz#BLJeoL7lC79_aB&?qK^ErGI<L-KD%<(M)
z6YDQxRXxu+>a*qZpFRaf`tNbgsuGkZ#~WT8Gyadq!-?D9TP1?7bv<5wT{TSlX66Xx
z2<>_;#b^!Rqq81O9VaHjGSkOjgyuDFKVGzO+7-k5nGXwg|LL&WTWPC9640NQ&Eybs
zDL-^wZA$Fj+02*B4OOc#bgyFIJ3ZtYvbZS9KfsX46YrwBCKT|H@H5O=dMmdWeVtC0
zm&;q2p`5Ecxo=k?HtGquE@2MJwdvjFP)hGuG5LsZJnGwhew5?!b@zOo%I#w066F0L
z+1vj}T-oHy^u-*-zKQA8&ir`FS)aXc$)E~bI@sLA*x>2$e9C#V|EgdmuQ((;``buy
zFtLJjS!pKmz;ZE`0q035z&C;EmvY;elJkavm9u_WJL?C$Kb*udX8l#r1(*NWSffU<
z+owtJ)8#@bx;aq$5BqSw_iLEJ$^L#<$#l1;)bP$LpZ&nguHUyl0cMWBrk89N-*+?2
z9Z(;Y3O?*LZC{R_((`up&kxnR4@89boPPRI!QZsZZF37fP1Kk!!JlPdLth;SWc`(@
z6?<!VpsFKw<tSaBBc$@wwsvnYgFavuiYw?X6<Z8RroV4n-}3)F_Tkkf^1j#5wyLqZ
zVuNe&>D}o$tW`Vy^I)?OknTaeugx>RWWDo2pBME_2WUYqQJ&y8{`I^`%vF1g96O<F
zcftYFHBT4q7P;$Ft3cIulAv`MiFCJvjr!kOcHBJZ2<CwM8iqQh{YcGsJK`?Em*!s#
z4i83~R0srQ(f~pp{q}mCKF`nP;fdrl2Wkt590MJLTjPmqa?cvmwH|F3&GsO?WWv>j
z)2VdiC4rA0Q9`#DDXzAw9TkK(0yN(|4hkinnjwC>YbHj8ee=o`yB9Jr%23x(KaTRa
zWZIl@``nmao{~1iYotx%4qV{aSv6Wzt++B;eff=UV|l$7GsREIv#uWGcjS>~bYc?n
z2FJKli+_mc)6i||Auk^)b~oRDPyI5d+dUcEdc*eXch=BO<6`Cbm4MO*#~oI0U|7s{
zup2h}A9wuy>#LrRh8-)fYe7f0U;8s&yVNtaMC-j~QV02O*jH`3H~e1{kHkWF%`P75
zm#1rrOsp#(S7gu#(tAckgq}`T${{>tmbc-H&=2TNJC_^Wj(%S2HG|<VM15(8@37C;
z9;~;=EK(KpZVrS8mvJXb1#XT(eSw;BbWttZe}5DVksdBrTovf=HudbDSd?@+3a)nz
ziIzyMZU6lAeLO|zqehZ4>_C3X_qqhmZm#iD;59#)S8S7vw%ortC_OBqUjv7pqiwe?
z){(onEl5=EcdrN`cf;Swr-0@^dtoOzy2Cr+^d}{rabyMt3{!35shF*us@|?zr#@dF
z{1TMZ-@%O%b{9I;PFkay|5zF&Xqg|y!vq{M<mfLy*vn5>?^H}{IYsA^;tEpN;nlTs
zIlg4ud^>5_9PZ#7?I;hgefhES^D590snvcraK^mpCYtB8Y5lhMnlQk^&S|E`wvMJF
z8NhE9_fQ&7P3@o0<mzo0$TfPzuzRvo%PVf9qx+anR*|1BqFVCar9>?usB`POnm9B7
zA6S!(?prL8GppD4_E{m^&?g|@gQReuqt_wyM^k&Sys>ZVO;-l$mq3m5>0L&0)!n3E
z`kxeR=pI}2lh=$#Yi0d`CbT56@qk0&lgd0Ry?cf)U(e-jv-8JLweF(=r(fHq?-N7?
z7KVRW1qutE3(u4a0(<L=DVPMG#JyM3Ku_w;wV8PMI9tz0s+*H4vV&eu_RG!~p=Wyx
z3A%UmSUDW4&R!W(3{0L~V^<Mcy8S*G*k;T}oA^HnRpkT%2{zd$23Tvzd~IgC<B6^%
zuj=z?>4ATSXJrrfd5PU0i|O1%5!%1CpvQy~{2pIKpF{EwO3Gh-hmAP!xthj~6t0@f
zIX4NqHqAb2T4dWHl?1u#Usjnn#ajYmW;3Sw(v5top#?n#vnrQEYF;mY1$t|I8U-0P
zxAJPK+I}0OZ+q*!B_CV+8(AjV{o)%W&3#dPwOf?-+}3K)<JtFC2cL4HVd&6wZF9U9
zmq%46cqQ~ydoX(9g?tIa{B6~yKRD;Th2F(mx9nNzcGkxwkv{n`HY<w%*61}c(WMh-
zrjM`U@Nc5(=iMD)`eQ<n?#@BRuW5ke9DL-fk146joNR$WpZStm+WJ*)z!x_6&SKb4
zxB03I4aIW!vF*0g=8ko4O|OmC{ACMn)7^np?smJe9wn`-iQKRXM_TN%Y^I6WpC=8w
zy*7pxCK1+Z$CL}@c9ef>x|~g8){{dWB90WbF!Ogl(0=?b8}hW$C$cPXlk;tyduixX
z{JZ5Q>lwN}-hQuVQm;uXsFzFa^ExXtgBZ{*AVj&$bbsGiU0+gbIA_#Mbv}r0v)2(2
zM7gV@MPRPtu;nQ`Tg0n9+cU>+__*7r7I-Lge?hI0HG!6uQ^=cC!SkjAf#<*ZvYI1h
z7+Y*#AmMp7MW3R!R@>ox{kjSmTRkYqb$Q6Q#PH&}!>^G0vf?v6g?T&1#1zqKnp%Bo
zZRz-Uon3AE9+#2s`!&xws>6EvC*>XEw||V8VxZ(xK4S$HRC>M*VX6m@3xy}7p^2H<
zG47ARRQqM`sAfhVEw^V#hORSKqyWNvo$Kyf>Uj0T0z;<MtM5`~I=vb(+p(*V+tP+y
z2P~SMy`_DacwbU|Sb+<N;)Z{+j9&R}?FU>o<9hg!5AQr@H*b~biISf6x<0yRtRzk8
z^J{CiatTy_>#@}1CRP09J-{|RZaCAP6;k_&IrkDdw%P5U-nc%SL~P&aNy~fZJJ{Vu
z{NVjF=o8ohZ1>_4ws8D3()V20Ykyx8dnkx)OiVLmK2g<pf0Q})GNi=UhZ_Zc%A0%!
z`5$immeJK1XS-l4_Q+@)34nX{-q*^JQhH(M?~&8#tT1|Ct=l<$Mn!h(+EdXHv3uPL
za_+k=UJ8rSFo8TFO1-|1&nkFd+ckW~Vx0VO#u}u$FFXf&rHi#M<>*-OQ2u&?NQzpr
z*0X~?(m<5L?JcdjINVl8?Xk`$*HWeT{{Ub>pTDPx7R9YU{V2kF`P#q-a~5QeSXW*a
zElb|edH#iO`u4H9Y8HI0tg1`3+2HhRwyi9y(s1KouUKoMXuF($bo}cUUn~tDacOjq
zgQC$q-okY~J1n%`M?4*?D84c9Sy_C08{?t<z1pO>#>LEAKKKZh-J+!0^Xb#iJ1?kk
zZ~5s*$#>0$Cd~5Qz~5wUH+}8e%AzGsWq)SQdH!2(r=1f^M$bqIPkPlX=F>La2dvME
z?HIFu%L<zfiG$*nXZ)IRC37)y@%bM%-B+gvW&Ju!G(O4KZmQ|oDHf&a8=fAzwV=G)
zvf+vioh_GVT)dM0OU8YdvHq*h$xc*1laG4wr-h;<%d4ZGm0g18>)oV*fu)IN-0M{|
zP7-nB!N)w_@~#C_zuWdl(Eh^n4}4b(uDC88av00XwJeO>erajqh4Z<w!F$r|`nT<2
zY*%ChIqXdx={i5gDQ?sJs1E#>j_vQaC-(q5m&*7U#nYFI)>%}PM{d6=IBPube#;$u
zUmeSJtUj6Twd($>+%10(Ja;9dMagT=Xuo-hXPl0YjU)=U4<yomus>9O^69M$lT(M?
zMVEauYC`CgV}6mu<>nm=zcUVfSQhQKGvw@!@0IP{&+FRvlw+s%H?FSPzB<!w$KF@d
zBUk@&eZ0qd2Q!=U-DAJo>^RxpHKw}%E~huE=F7us-^i!#9lGxRy}yOUarZC2NRNq(
z@19!KRd(XJyUoDc<-yOdXY?wy!n($h>+n>vB67PTZMXZZSu1~9(RJH_X9vy^uUoXq
z{$E9@o45D&KSoXL*(RwQkGJ{7|F!yU>b0X&?*{qhJql?)uBV;L+_C?Q9sPWt@4UZ;
zj~Z6SpKj8j>`}gF$7L})5A_`95Pf9UYwPszDuwB<<%$10xjDCA+=YM<|LlE!GP_H<
z%xaHUT>l;$yH`{`D&@PaxHYfMaKACWn;x}^SZ8G)f4KUGehz)zPmgsBiRwcR)vuTU
zwX^HfL9H$R)7s3ByF>1Vw>S69jXLIjv4iQgjxqCh?+U#YFY=x3zU%P_xAj)-TB5o6
zM+T1Gzo@$UrEAgk9ZN=HE3gyQ<%5OeQ*Q-E4GDaBK3tOBVrAG(%*n0vm^aq^)%-P4
zk38-keR=Lx#j)Wl3+9Y;@7S~8%|CZ1OLD3gKJEJ?RB~#|Xd52Sx$5PURu;U0p0Bo(
zl{y=3KYV_d^_$42$#~_qmOqZoJvu+XS;k)9vV$$3l@jSaFt?HuukX#8)9#B;4w(uL
z{@!vT*@C-LYibYm6mOd_H9aR@(dEZeaN?`NxO0`SM#p4t-@ABjzSVHs$kqE1d6Htc
z?=hDlo91r#mdD$?>FLIA0(sUUMcaEsn`YTxNq3(5S4hRY(etXZ9t{3s+~X07$Udjf
zSh+a9u(}^0+9i=Ke$*x+ieEWqevH$NyuoFEW~SUve14%gacOv}@vg^hf`?zd6zY--
zk^A<ND_8yuEx4Q&+q(GqKjX@GN#~3a4u5P-WZHe4@%;S69!5h13CGv0seHbzt;OA4
z{oBR-Vr1XiAAWPC{~v{RJYHr?|7L-_k%RWHlb#lm_IvWHJEg>5H{uG*Jbg3Q<oND=
z(JkH|{^Q~P_?<g5$xSHeAo^<iz_P-KlH%hT6N@Vo%shjt+9ba?v%V~?qST^vZQRxw
z_}!x~Pt9<&D4m|@;V|!EkD%N`Yh#_(Z?(yP-lEfBizk;3-hc6E&ZocoVQCZ7*I8yL
zJiTLEUGAC?7c+bOILGd>!T8P_8NZglnS0^F<X{Uk9?x9#L;0;!U;c)Nzd49!?eYrk
z+s`r~qpV%W_Ca0&v0t2WmQ9Yo^YvHpsXe~<<WP$6$X8!|)z>{g+@iN&Np4axRJCbD
z^Y$G(TqvA1@XXg=mxZ?t9e(xlgVJ#1U>>r6n#JpC<Hd^>W%YP7*DDDjX8^MCOUykq
z_2Blur>>Z{Agy{X@3%`oSq9%b+<9_w&bAW~A6XCwhaKQqK#LsK#XF@{7v&!*Xto8i
z^H`slyL?~9eU}IP{9Yr9B3EBOgf1KV*Q6-<zKUn1GR0*y?%@(Ao2XNTq($TC5fx?X
zyM6h_l&<@BM<wR%bb7O@&4_l}Kep+?<4J`_yL`3K`s#68`(<4%J)B<M9g`mR#^?0e
z{(+Lp0cG~~8K`K3Pr<2=dAzAm2VUmdw41Yz^m8~d!G`a(^}@53J|U;wi*i%rc6$WR
zYulQ~8~@!jo^#x~BZ0eyTpoSoL_{+lug%9fl!M&d_MQKSB$PDc@gTd=dp$=iUVLcI
zgEni{L=CuII`Eq>vdi~L+jaV>XF^uL=saU5aqrW8`wbY~b83fyHhG^Ewc5|)?ex5l
z?6{Dd>^@@2Vr2g}i&w0ex@7wVnYHA=fmO4|ejc&oTWIIv$uW~d9$$NLeB|`q9W3!1
zlM`Jck)#88A9a<yO8l6Yx#Zj5_U<<Ia{pz0!u4;WlS3ps{`h0UfoV%CyLayVS(@4A
z<F7VexP1BQi{m4cBn7?>>xV|e|A;;rHsj~!yx*pJCeMk^-s@{R4ptOpx}>i^n^peH
zpS&C0tdb;oZl+%S2J{xB9Nz7>ckBN?QWV|t@#vCb{@c~xp8D{9o9gc7ygA8cuiLh1
z(Vu=1=wx*J7qQh6Ya(#ZiFvN>(|zN!Y^sfLTibbUTMg^^Wh>soZL!c$&n`K8+%I}O
zExMJOL`~o4XMedqExPiB!^-r2iPei{@|J(<-;5`9dvxoVYo{(&M#GQo$~|)TxV&rk
zh*NuRrLMX!yOD%t4QT%Hca`10l6v3$!G`zk#!?Trz}H2DC7L_U*f>3C<eP4xQ!?(@
zUQ9@hTAk_UlR{j3`FY2k!8w<cEHgj7|GM1fs=e8XE!VCcI2Y`b5^~MqP3W@l=MOzr
z^iJ^Wu*5b$<w*A8_MLL~g(oFHf8sFrBgGHXc)ZMGiCwJD-9L~Ze-IUsy7Y%1X8V*!
z4D4ff@>}P%c?Zf~hb|#5zDaQn%`fZNy2qgHhkwe0OuUbdcN$f(VZw?|TLuXx7+EGI
zT8VFN?eu2;)X;*8&70O&m{|sA_bIyXaO^=(cemMP=eCt+{k3xi+0`fcd4Z=FCl0uD
z#q(eX)1o<(ew($3Y{jl_KicLV6GViUI}YEPxAn{)vn{ZjzXt7f*f4t$mZDhPeZixG
z&gT1KZelqr+Z;Lh@>RyMpj*e+J~>|MbYNQi<<8iR13#{_lx$s(9d}>S(JbeND8}Q;
zw%vaF_w$p)Yc@;P4;{E4b$#;7Cz;KvJ(}@~rVQ)qaVB=z<jIR&y*I>VM;Gjzy0o9u
zrp<YHOsv_7mlGar42|t${N-m4zc07RitKxF&Dym)u>2Gw)5NsP!vx}_ijHP8_JkI^
zo|JbO*(Esp!n)+uL5rE+7M!a(@>&u<zdR*l&8m$F$Na8%PMNZlfAqGvtT4yk$);k%
zwTv7iV`IA<-_Wq6jQ<6s4V@S>|3#8a{%m#RHIG&NwDIF2V%@!-obI?W&UF2eqT*wv
z?o)ktjrrc`TI-=xmU}->P2D$%A6>do@+3R);GW~M<LmlcE(`bSKJOly=$+*8m$UPN
ziqib#Hz!l>%}QDEPX_*tOXPZV&Po1#VL-g3>P6Y8uD6e#YJQow(E8xPqtk9(n7m`V
z#i-|hM4-R@Hvhm4aqgj6_V<$34)M!qWp-ju2h&I*y~Hf~V&S#kZEbd#rM<KooF46W
zIb&n!EwjB>670|VL2((oMqn|q6{Xc3*9P2QOpGdhK4spE!ko_577lqwIu=$}^~mah
zCp&~yG`D`e)YaYl__)wpv(o-|a%NU?%mRlY0mrv*8JF?=fla~Ad#kOItM;_8EHAFe
zimJMowkfNl-`s5(XP0@T%^zi1l{!4UD)GijG?^&ezI3U{>*AOzK^d{8EhA2?EZ=jy
zXmIN(#XZUnKQGF6SoHbRpqoecU;A`ppS)Sm`v}*kZ_Q5pnp7pu=57V2nk^r3_DWg@
z-oj7gc0ztnpAM28>#8{1X36QTu?}CmIXizDCds;B*?B=>Me?)wi+$__XP0MQSd)+x
zl+}5o6}I~L8sAanG0}<(JK^L9o6;snUbcB-l0T<}NPTu8uXEUi^DB{K`B?hgzx)nN
zGwEzK_vbw+FFFkOaU4}~kFawIN)bA29PE>KK-TW=)4=SM9z_=ho(;ZsKYCK+nWf!!
zEnYl1{nw|F6IOKkzhhtK1SJKXIk@8dU;FGM4`cbUmciM!*;Q4=e9s9JV*kEWF;@Qf
z+$~364l66n^65RHP1esV$02$03l0`}gRz_6yv9%ZySvR+6z+JCbN)?4W#-nf<AVpc
zOp;IB|JC|zpI<-f-^;%l&sh}Gq2s{5$DV}V5?iI*xqG*_-<ztn6Z_cBkMRquXr6l%
zJ~(;u<aVEV<Oj$fn{{#XK0YpP>B#BG{rf8`K5g@8Z%LZh&O3LyO`bC4mp-k#kA!6D
z-<JMu7rA|vQ}=dj`yZ18+qsPK{VwD&e`UdgoQ2<2IU>0Wjx}%oW6-VRMVNE%32m1B
z@V`DgVh?A<y9f93J3D)1_^U-Nk`Vb%Q6{ga4qV`yXlox;oKn&;zVM(~;rY1O1luKl
zTjoaHU6T*HZku)_r2W^ezLoUuz~d=?_nNw8CbaX+vf>vvXUAOG`}jv&>p0hlbHQD*
z@$9^kOWC2N3!Kfrag)i`2X##Q``*3Dkxx=XlM4siPrlG=#PzC@z!LP+Br!Vw!N%h^
z=ML{0qIfjz_05Xx#Q0b<lL3qW7<+fZvUmr<k-YX6!<WVSRJBVAj@fE&Hp&mVf4}n1
z!DHc-g=@oKtc|u%<US@_IDOk0{^MMq83m_!%SZh25pT1jTX<?@pXih)j$<OX+qR0n
z;8p1UfbYKl%a%V{AQ#3>o;2yt-YXnkAMm@~o0X!t+xp1lzv5jNj@%T#aP8=Mi(T?|
zblrF9k3Z&3G!Bxr=pTKtZ<@{K1J?$hK7H2K_sY3Tk$o&Bk>6y=<nmG?FR{Gv%=$gq
zzx4dL_ujL!M<(C?y`V4;?-2O<r*z9(QFqtoJ$9a7{iL${r_!5$eI(+2yYYIJ&}V(p
zlM`9u0^jYPzF}U8UPoMV_#6A!6&41siAnRx@eTd4^2HZdo6lnJ0z5Wek(c-_w0Y^$
zDd%@4Pa1Yi(#7stRN~snlY=@}tT_?1Y}5RrW9QI`mTNZLobZ=)n$4Tz$+^X8uMYSw
zyW2To`oV{eE79CTyPlP{dY&I@^XhMlIV+qqvkrF+7F*fh>m}zUMf7gPTbTTR@wtQc
zCiX9miuQb%u=j7f$ltf@YuT!m<(wD&<9F}OOcRY95OJ{Rvk5_yy>4_1F`a(gd(<4l
zeg4UiQEy^A@0C@$O`onfv~6C5TkEdZJ>{b-$9~_Ut=p2n)1Tk>EPZ}w2_E>zKPMwn
zzaM3u7!$cF@8PncqFwT6$H|j}wj%Zmt{ula2LArXl5M_w^05rtjvKcfDcF?QZ_y%a
z$xWlAz)jmX+#EUY<w?<u)W19C%Py8#=0;t=K237-==9;kj|E-bS~08R|NXQyD0JyZ
z&Lc?6WYCtQvm>gj|NMI8-n_$-#Ff1xiZU}M828=baIfsltYwz7?wqbH$tx+&54DLr
z9ds4BYvx=sdX%N$%#zA02h9rG<~U_bj=Z)R_42l0-P|mP12Ym^Mx3&K{d`bz^-l?H
z=Pd28#J1cq)uG&B-n6gzRjH5Kq`VrPc6n6!6o+4>@Uke&uxFqAc&camy0Y(X%`MG8
zS3K+Ktjbems}z@yiN^ab3GkY*taEIS4*aa`i*ky;UvbO%?u7jjsT+BYT_^ndMT<6t
zudkeNkHhlU{F=G@M8rp3hb(S&IQUeqW#`ey^S1Qg^YN|8dk+VQU8_Qj50o4$cAg6F
z_wF9;KeDR(m(i<MCA>QRI4D1MO=M)y14rvE&Xd;W9Y~s!gCzw=$4^-1-)7GA9XpWR
z!=_#%LZ7%CjCEKYxy~dd|CMN7L~hi#(B{ZUm%e?vF31_w4l77ZN)rbEd2VIIhLBV1
zEM;D;ca#;+YB%B2t{DNdgw1$TZ&~t&qH8+@Njd8*97fJe_DGx&@178ql#DGoy)|?7
z;iLn*uV4R0QJg(I9&MXsYPJ6H(Jz|w6c1in!~e(Q@xD#$`4%MF`b^<n{<RS$$NdUU
z@pzBMnDBU=m%2`9?JAS4ALlgfW7j8Pla5rE-J0R^_tPJ)wD|3$bZ8&mx8KjIdVD0a
z{7W9Mswef5)bdw80;f^7rzU=}vQPetBfFAcZY@28lzPk?6?$U8g@KlV|JWt}_0#zS
zGZG`WA3y%M^3}n;77ME1+$*chigR*$UC?9i)G1Sz*0$g8%PTus6%%wm^8STOmt2lK
z@mU>}?I+qW$ZGKN!0axcebVMw*CAIgm)}Z}TZBHDd(7K$**9Sa*7fNZn7&R?d8*9Q
zHg@{)z+<=OmG_q9MeSJLEwA`^>6L2>o6XyHtIfeHXYYpexcX)s?`%i^X1qUVn)n{@
z&Yu&qY;LN|Hd%JC^qzDWkv%;ws5pB{`h0x(S9k7O%(`~E<tHB{m+f_J*D+_(U9*&L
z^9IYGpN=jF%sn)*Y{i0`3BIW*X!<(Ev#QsVyAY9LkM#kU=Q{M5|8lKkw-GLJo2(|=
z@cnj8>^^_8#}fCrWnJ25h4-~h>N@1=rSce&U-q1m^sCqR_s$x&XQl7#YRln1j(z(*
znKR*c(mt_?ed9VRJS1z!T{Gv(_@v~!FVN(wCuxEAjQdYa>J|{wmiK7Ig7!RK>vdT{
zSxZGdRtc`S{(6MoVeKLZ4>_=U<Hl{pd(y_8ifA3xXCvX#BlXn<uV+=SIuFH`Rv($U
zf53p_$<MEq_O(m!*mL!z{gs?Go<9BTI*$n1?y<)^(LEvCE$_U|_3+>W8~jFO&aJ4(
zvz+sytIzO?!44awEBh24_`GA`1-qPqUH8oR>BzN&2i2tq96MP~DZg3jX?LySLClUh
zB^&p6`i718s#Qd8n}b(c@Lo(LCGODw^^TYjLi9DZOiJ`foYC8k+;-CgGFn|pi*<%}
zHv70L-tWz=qMWpHoL^FKWn?eAXH~B*Tr~UhOzZXTE-qWYHUF|KeA{$K4BHfC=64LQ
zUVXUeMnYcC2VO}*%U)G4JhQx0r?o@(%<8>yq<CNU-hw`MGpa6r+P-7SpT@nNJf??*
z36sD3xT?6Sq(l7C*%4oT{q@$|HoRfqkRq|!63g6~n-h}ab8_aS$aXPb#<l2v)Ya_7
z^Piril)%$XI+PV<`9v?b@%z3-TXUaVKb5U7doki*S^ldY?Y{Vw+#x*jzAI?c_VBI1
zsDtzK`;Dr;p4QthX3mqfbOQ&TGy5eU_B<Hi5T9tX-)`)^^5MgeMQ)!{vJp#O*0(RR
za@w%W5Z-Sm$s^gP>HdS-RL;-cylS=8!#+qr0DAsTkFpygzv3q;-7`zCym5V;8%KMv
zF077N{mU<#CwAW$d)deO+})7kGhMJXzh~vh_mxdJxS{8`Pm3Oh`u=?BZb-_ubyx1o
zjBmHyd1$-avb&up{(a@*z@J~;y1Og+v#`qN#*-zU^SbnPPdWUTb4(9j*DtP2=kdB8
z^w>QqCqH!5PG_U-_wHFGKfEJ<etTTGQM;D5jyG=jg;&nF{{YWP%JJE9V&0q!cS8n#
z`I%Ag-mZgxr#y|rHni#6*K*mbpiHBF@f9<YuwBw&yW0=E*1Nd0>eXbwB&%l%Szf$o
zs`$pb>5^`R3E2+|<2J22{riznUefmq9C*C5yB#;?qBowkUsv%ecz}sXRKbIsn|mLe
zH~&KMDAO^rU6(Eij~<Ed-@7;9m?W6lJm<&wO`kqI`OS%m)ZSUREIf6Wv7~MA@T-@G
zN@v>i?SJHI>6NtDu+k2JcYjI`e^}zQbKgFr0~=m+bFq}p^h>XJ*a{H}&wCYSZ5ZzN
za95mYK+m2hChXt$=E2u3XN7;Yu!!0Q2lneX!P9&GqUx%Gwieabf}f|z`#sF^EXdAE
zi`m|$Tf9G<xf33+_n)9^e-tD8Z&=K_b9!Cr)d$w4m+TekmO~SKs@mmCPi0kBr~F86
zjJ8R)&dgdyHByu`qwKfuLwBJW<3~x~2rAQTsvUm%V&kkc-yF-|bM63^^7xIh@vcSv
z{1mG$kFFX_o+66wZ9&QXGx&L@CvPfNN3H1*{wc42yWU;fOk8lY{jf2qZ*CkZ%1li8
zYSp@|a_5DD3A0XyNT#JsI293^P^xI(zWu-<L%e>1jVyO0-ue1Yd}@!+K5=t#iT~k;
zczH$Y8ed8J_1G7WU4#YlxXoLC_dhn0e|q-Fse8+%(O*BFJ9@8^Rf<E0CAMux{`0H9
zU}W-rr=f0M9*&NCo|PU>P^|YLt*Nr><>kd!9!zsPI`2q!b!6h0-V?jaa$5&ypOaXw
z&fa@=>NlOFQ`VneNsjDZyH(@MigWDeRlOJqwd->};Glcn|Ao-|p>U#4<T?w7-BXRa
zo|m<;@|!>ZJ4c(>{_|ek$dL`}c3_&xh0B+-uJyf`wM!oHaa2~kyM0-4LDjx-W32xv
zZMHD=XqT^eyw;OS|F-L_xF8+%>>t<4+uu92>(OJcWntRG?cdE)R2B+~=FH|fn*Z?;
zkJtKA0hTu1)1mub<f6yUt;b!W{pK%9Rur2gWX&iT_p$VU<dzt?aNSU+Ytuy=Jqk|o
zr2o6St~t5o#{LZcYl8oY%SQ2dJV(N6iH~E7eMrJMk5m0RxeV*-0zHf#dV7tT^R9ir
zmyMdj>ks)i<1GyLKbU*}@Y!>);)40opps5Mxwl#G-e$f1N$1@IUL)~exDDvqCMzSb
z*@mCV*DoKOlGQUhU(osUfZZJu{5LGSf8gxSYkquu^VptS|DQ&yjEVDm*0dCtQrsz0
zWN~*WTHF_RcUZJ|ad)@kwy?OnySux)Q~ZYC&HwA0H<RbgnRz5RpE?zP(m_GlW8$*h
z6G~nV+M**AV3FDk-j^0r6f3AZaMK-6PJ>ltPnUU3fNX4WBj>6G9m4BB3xu~er#5h*
zsE|JZ@i-Mr4AP?>&J>tDJyBIuhx-9a%bGd53?;^P=#OI!7YfLYW?AP*gCWQ56sqAi
zdTd_+yGSYkTrzy9S%Lp5pvh8rw&rVR(L)sW@3Xr*n!UL(lN?+F5?XpnN#>st=KIR8
z$c^S|GDU2ky{9(KDU!#??Xrav-w>nNpo)PXYf)#eN6|ZI>#PzUV6Q&B@@;ZJdieG#
z7tsVu%ymtuiL=a&)=RU|B^cJ#+5AN!+P%(k_-v5?Mb(Y4%3*o+8g>|XbZ|=nRp+k`
z1(l6`N`iozE;8LN0Uuc4m-)%7u~@|s+bvPc^EdCcu8;bSnp>ScM9sgM$7zYC>Ud_H
zCOOYi2RJn;A@>33#|NNa-_a4Gz*^bojD$&uuFvdNLQMkN>N(vyb&hc4dOx28+Kwf9
z{>X925@O}~>hM)-m9B4i<QrTBPKrYR=@I+5mlQ(PqSYwyOr$rYku96Eoo41)Fu_Vq
zV~tON9u3)QiqV^1w?X=qC*k;b2H!$Kt%1%1)lxm8ZEAA~1I1+30qbWZ8WI%LY)sF7
z+yF6o`kZ&CM_>!IyR&VHDPyrh;Kd=IGdCgX$w1_%*G5pVdmZi6UY-$qZnCtC)f_tt
zb`M!Jxwvi1uS8!5;J;z+X{hgjkCQ1f@78kfy+uk40<Nv*T?^dpg!UA}zp$3pe{nh(
zX_+l>4yBBWnj2iVZMt9OA7VmoI%9TN0^2re9x)yyl|rG0sY5|+en;*p=2;sgCNG_%
z6q&oQO;FsNX?dqzD3S)$m6jP~Y-7L&)$y<vmsDJ+4yc->F#*K$+*|e>P9tH%SMPDT
zZEPPuCxS1NX>k!}Z;C&$iGDz%MDD4kLgy=ttz;f3eekAUSj_?ewUvB+p`-TWz+1_h
z{+wA~ge>f<iuD`{*t%sr%gH+|@jEPPU&8=^M->X+cPkDQq0J>eR_ETaQUX4(XE{d4
znZn==P!VQ%bS~~Zh68V<qx$oqqe;uoOREqe&xoxxSUQp)*dR}a5A}j=_z4OMc*ewQ
zE!SjCyi~>k^pF##E{o(AXuI)B-LJT|`~}S)XHV^`uijw{!**AvbDX4IE-l{3Ue=;@
zRb@K02`uQyFo%+}@BIw58KBCK4%TZVgb%9YUMPC^)+=lh^r&lzvh{VZ4eXviM(#NG
z;Lm2T8Ft>XkCr>yQx&c=w;!=^93}`2`jfw7^!!OQS{({1BL=yLtZ0lTd5t{1z@6eB
zw1Lgg%@O3$B&{V^$t3ZPZIA~WF}Th}>*v?jCas#~gp=GY;>hzIRZkfp8?Gp{eK$Ea
z6ckm0S1cNNdcjjemwxea_a5g#qQ$xVx_cYU@l-tnZ8qEnxVdmEE|!_c=+7@^hH&IF
z5)_6<zeMmQ$Q|82_xneQFFj1VwN0fA+HXLLfSzea4c)dk+0^#eCEAMj-p~NOl?<HO
zTUVEpL`G@n$3@&sUM_LDfpzoZC*%j+8HFuca{NC#gjG;bT;+H{q{(CC$!p}LeeRvl
zrS+=Ei51f9J_YhQ7!BW0V_L}bgUu2T_bP_jKq?XAB=~u_3x5yT24iOS!93Gw#VXuW
zP=pO1rU_(mQNn85@(Vl9og$#y0J6G0W3`cR>{IG>4Obknp;XD5@8hMA%XyG^H2sbF
zY3+LhI>FhBm;Iu4^-9JyoG17)d5Gk8ZpZx7EQjGoO0L4i=Jp{+|D02qWLG?^wUK18
z)c*(2I?(Tkeyl}Jw|4=5bQCRhJML=IY@hP0L;8lArrnaWJBBoPjHYFd)F;LqDvIjk
z_8ax<)b}czcB_egH^(xfO;6t?K3%x(J%RG{_H?5t2&3AjE>8yvo;HIWGI@LRYT(>w
z$w2aKxE)bJ*ZfnR2PlN4|GC1km~Y&1mnTTcZN4!{kcZ<lw*t*7?w=I1aSH0gG>8`c
z0|ig^ih<)qr}L@Me3o;&o#vM?ZGeYFYFxzmo8nJ|s2}GVWkD7p{#B;!5*_jSw^4fw
z>8MCnw@siyhL+=5{;-8$t}dfH+tgDV%pDGJn*W|WPKcH_FKf*b(dH`eFl1U)lJ9_n
zBLqG0{l8)kD@MEZ9{Kz^XvmU+b|te&S;^){?j3&GarU#uSg?0l^8c}SCT}kUNiHgq
z@7uCvRY@$ZTniu!3-Lw}hAZhKk{HFU9T#IGzWtQ28)KXsosf=Rp<*CGsty-+-``=O
zU)h{FOYWupQF45=s2VOy{EIx%-F5B;{?lwgK|352ROgoc3O`E(*v=@Y@^<{8!2KzY
zML5S-y?VUjd3`Y_ckQ_xXuqrjr>*um+khM!Y8GE4ZY;*oI%u0P2t5P%9$AG~tyQ~$
zx7Qh4rCC<3MHE}HVCv3(bE5>~2G;byzS;lt_tAJGHlXdRBeebLcWfv^W|6oxvOaEP
zc1H~|-_3gbSbOv1YU(bFK@0W}SVHFXK4NY#8glU6wORpyrs6=TYj!oO_34Mz1}n~~
zYVbcbC@vQ?B&ev6HL|{o&`;50F;@i7P(c*Qa|#$mIik6rehr$|{qoL=C7B$C@IjU3
z07~Fbo^QQ=nAI&Bzsw6_Lg5n{e(E#;spo$&15z~Fz@7ht>xmOozuVArd;{SBNvqbl
z@9UoT>_Bt{Jt>ORfA`WG)j$rX>u@(G{u2~l8UZyMGGj?SPsuG4g?!5J^`u8^FRh_k
z_(;nOF&G6;TwP~{$4SaAd0gs-nr2+dMnkT27YPq=7rciO<Tg%=I>dy$bl)Pu!SA1k
zh_W{Cmp$Aj<dy-9)o<X!gufnz*;M~Y2Ne=FV@cglIWrTC=o)-GmFv)Uqmvru3Ric5
zKLg&#x4W~D4brRdQU=#duQnU2M=W!!JWNci=V89Z<goatCyGL&<{rBT@=pNagYS04
z4RdmCVDj~<Uye6&0NB>5Euyqg178e3b=tA0IDgq{AR{f}Dwa=HF~9F-vDv8dp&+Ej
zM72`0P`C3|F8uhu3Kh-3vy^vFZ~Z)P5_{^AM~bFu^2fZ>7c3_Pewt}Ca#i4!{--=W
z`S@Z0Sw2;MM+LeHS8JBBAcuGJWuus1hQL6<aj8%k+kQQqDZqOAEg5(n4h<Lig_T!Y
z#NAA{r2VZ#*yy?0X*~wl+0rE5;1mZ1Rm58h$oAWR3%>$-pyHL$c0C0{p{snyDtN|(
zbGMQJPy$cmN%-2dk<f4fA2Vkd-&aX3K?j9GTm|*Ld$N5dk}&Dml>;%jz-9&d$sE+w
z{;x`@NlYj(+FriUTutF(lyPPiD-nNgrQjw=Rm^|xy3`#08_J^Ddw4o4lGpW9^qC-L
z5UE>6P}+c2;(T8T=~_lubd|Y|>QBKkh{}^{hf8Ac?pMN<m8QewKi%M`7MtSZ=6HQ-
zg^ixi_VB%*q40usYfnQ1^oS(k1AB&PkdIyi_nx)~5cja>-Z&q+b%e&A+GX@AiYJTL
zZFRUt^P(W9)v2N)ZrR6au(?~k#>{lp=dM(ldjwHq7#k4mp);o0k~*Cp_r}?dJQ1Dc
z#l6~#=amK4xg4ZmHx(81=`dLVdR?`WK&v*uI#C=an!tV(4`y<JO6y7mWn`)0glXLf
z!6s<sr^qilD5^@!U+AbIUuasGiofC{9>o`60T#cN-CUhgBUs$OgL4g>NRs=bBY-XY
zs!R6~V+OH=s3HQnTLC637bRouKP678qcXE(w2)~S`g46VGkKbVm7#gL=lHfJ8_;Z~
z2XmRdbns^ue)xPZV^8&_*FBi?o706%+|#1*adeXsCMDV3p47g17<L&ZlZt4keqpoj
z{cQhv`CX#BBFhmCIWVz>JpTbZ;b^CC55U0vbbxumfOO<fGJN+~jTm`$Fpp(qm>8#m
zg)-f49-<8|%a*}(`kd*P0K`?06zdT<SYyh+r?<wR9xKRM%RF9LS3Elul3lV1da89T
zmiGuQ=WmO>c7?s`!LPtBhs?&^=_abOop!(<;R$5UZ;(q?<9aYUls}V*LUDP1;9Bya
zAf2}zyej?064aw~9+kbGrdG%;Jq%P*edjeuY_Am1)h@5_E(;498R#wcLTV}V=x={G
zn)2nJQW#&0kFpAiu*Bi47`wG{)#!N^JO`<sO@2K;o~<NisI#?99J^kT=M>ZqBCV6C
zJoby{=dla<mG}l;8Dvn`DJeK<8>TCM9D_Svekuc#lX8@jmi7Tk`@jk@>QMMBhM%}T
z;l^pJiZD~gewTdY^>a6|EfLUEDMz$}UTKNhy$ik@igWOKGz#p$b+(#5#C5i6u`8M~
zjol^$uBh!(;YVo&f%zlo^Ex-ay9Ch(&4NRLZ7bYt`RURYnM9VSRfC`}ztAlCV5Nci
z$R}H~leTief8E2>@a9vR6-hRimd-))1&Md>29QO<m<5t3!XLF7r`K?9a<G#z-;g>%
zqcOYHcwu#T)#;+$_1)RJnOb1(@ZsoCUdTUa1F!ZnZM}DuoGt#$G&UYpuayhl;5Abf
zF_F`C^Ud4*ov=B>c!Set|5kgO*E8d0q9C5y+R}@6vy1YbT|fnF)cZM6mPWMQDu2vR
zKMGO`t}c3soWLZqg5On2*$T<YWb_Gz>NGa7xskDG6fr*o;6cf<F634_tZM6m=jW#~
zE=H9s4((a;nlAg}nY=Z;j#-Xbj(=wsh89T~o)USeF9D%K_F787%O<R#TYIL)V1HV<
z`>KhG8YiQO2~{zTHu~|XHqG=ev!F5K=XG5FW{p?ueC~9#BY8g<((0JczfTbbTH@3d
zi~m}57dk}xc%d8jCzEzpjS|ROH4m+teA}-GV=;}vVv9IFkZF}m{|qAsleHA{mqJKn
z-?13QH%G8cS$D3v#No#yK*XI3m%p>`@DoFG!s6gV@z`J8*$m9i9i_wl>KRB|W{tSV
zl3Hnvw^@c8ZJuWxbN~J|mnN<0XL@xa`7cNub3x!@+-W<ZklG(zerOt^z~kx2G-Pxc
zRlDe${#G;+hVad=CT~OB=$wznVgX_&xe=!eXl#oo3<4{d)b`ZB&*qOM4aP*1vq_DX
zY*32I>Ug&UmcN^n%bUT8xN}*k#k~0nD_a9F_ez{>%*@o~<Hz>!A^d%nAT`3Z%Ba4=
zMFp(%FG#}q%m~;4gP-A$(2+6P*YOYT<Uf1X1Egf}F&Q`;6lQm862G-C;~E+3Q6<Y?
zf@FNC7(8@zYrml2$t$W@TRMOoBP3`i!hlaGx_>b?H%Q=)rl!Ux|DyJzf|wgy;_m|i
zavtvDsD%h`l|oAbnPMlobm|x;J>y)@mXREiVwx@da$Kfy2dc;36&!3L4zU3eYUp(E
zv0W-Kd>mG2tv)f?>6dp&xD{UL#&2oV?7pW+==V5bxSsVa-Ek<2;&+bBdlV!Cx2{{|
z1V&PmF-<CBk{12-<z;s#Sk{0;*j~1H6y6={MZAMG7*Zb0W!%-Zt`uK}D1zNwqa2h9
z-a0!;s~M;Gv>4}%EJ#GPlX664%XZ{vI$#wgwq}idPa&dz+8^=1T4^;1u?Q6EXk^eo
z;1Hg17zR*IhSy3Rp+~i_NK^Jt${Pag*JOIO?>-Q*m<SW+J@H&NmvPc^o5L@_px`NN
zWX>ED{Pvv#zJ%97Rw879o6R#fB?$PQ?L5Ql`2161ZmxCX=a!k#YNGbsn6S>S_SQaD
zz})r%msSS$s#QDbFbhg{A^*S=L(g_Vcl8*v3-CDd^QUw~;^g5!<t}o>Tl<g+Ve4}9
zwuc!u+4-}GsX8waM-Ecar#O9~5M+nS@1)?=GRB$T&bEJ|)kHP<#mI@o3@NiJ!m7=6
zB4S@N=8q-4GJj{H97#S(vZ9ctT1aROy<*+Z_9E2Zvt%Pi5O40LyfGN24Glw7arWd@
zMHg$OMOe!^N%1)~>S_9`WtrauX5=kGBaPr1xj-S|%+T7q9xAh@h=ej2Y(2&U#F_GH
z;{O~Vz{=HGGd*DEfg*Q(R(yO=3m)sF*g^C8lw(r;8}JpTbSHyv^%yG$pxObm7UPX1
zoKOBSpHO!~!d|k%)hV`E9_>##SQMf=EX!+pGOUk=vI&7!d4w|?ee6a1%+(bb@;a0H
z(unxoX_5+lLAANmQp0lxVkc~dHve4DYiT1+PmGQAs5mnc<(C8^Csf5#8vxzgcU1`!
zo8wZMt~dd|U4`HqW-RA9TtdPz;98E>9@8`Z$eH5{(hWn$$I@wQp$oq`+nDVHblLW!
zR;k)wH%{l38=4h}%dmpDF;#$KK<h(^%I~5)AB|@#1Z>vP{3b$tUXZhFc6Pp*i}v$u
zC6j4&u3=$`GwAMiR>Ur^@e3-Ydc<X&3>=w4W83{P#wIZtLyS3_;2wC#Yh+P_S)Ti|
z;ohZCrqc1~H%V7W*9*I%z$;I8?j7^J%1J2Mw!|o+W`{Px-jM6d?V-NW3lrx6iW75g
z!%a5yqfR0Z(t_BdXWiXzpT$n|T;w5J|E{%6Lcztpe>t{Ku5~+=>^={Nc2;xsT)<D6
z<9#lrtPN~t7-Tk*mET42m9Q@7?<CFJeM5!*_Z9#=Fr${f-FoYrHK8UpHDfZHV1Qi_
zUH#iD;agj#wxcF76^b*}^)L_te_HA_(X3L*F3C=ALZ|>N+^)8Ft4J)zy)43HSZS%1
z;pR;1Y_n)_$I2v2ySSlJURAQHsZ%mo<RIfiWfa_qx4t6O;z>Z@(y!4<+FzviOT9yx
zoREDo9UcwQ6VT(qgUdhJH`KG{L|wb(kgxYAri@3wx<NJ1v5FlzcHde!pAi8&K!O}`
z(@~u$dG1y2HV7enUd+u~^-tePo`s_c`waaC;m-L10B>=u%T<2FXj;*h(D|FD*W_l6
z*4WzT=~aj<1*cKC6_1{s<hv7AIwFj2;tpIBF6*QilXaz0#orV>^%`=y@79qod7$_(
z%S;QTo>5KooXOHn2kO}%S--9Rk#sO(LVXQuYqCEEYzyApgrsD9S_<h1rk+g%Ynho2
zmDyZWE_Di|i7p;(yYgdh(kf{bPL)9CYVp}emHM&?YWuJn^~_Q-NoN+{tXzBD4)-i|
zj|~sNp#pLQdy-}86|*oX4C%toqu>9&mQEHX?r!hPVqHa~%PM18^&8lKP3+<))CN^Y
zUjs@Hx(-V7%4oxDS~TTHxlV65y}cNMg(u`(qRw}WSJ7}@n>A~`x@cj@r;w^zN9Cnc
zauk$r_!<6UHE|aTaU$>XL$mk^%<e5HEVIX4kQLA)+DqjAq-tZ;D$s21on~9@@+;$)
z9%Mi9tG_cV3UP+>Mgl5USSBEm8Cv#pkZKN~<PH%@)$C1w`b6n)W=Sq<+=YSgq@Yzv
zKA+aBiKBmA(`vuBuzQkNt{>S6w5@={&$CE#ZKAty2))$A7$s<~kYHB&%)e5=osMQ9
z;Ri!H{nMA+nP#?)okzZ1Yb1DtEFce^qLxE8*x3X`>{gJ57v8<<3?f}y(SlZOv3zX@
z=bENFb&RpkW0{?_Euh4YVJ)$zI4xo}yH?J$`Df0EyZzqx5}cU0hK{*VblWaOM{I>m
z=I5YT12~I|r)Y*tpRJb&MeFPdND|QueU=_kC`4gF;7v)*<6;*5%Sl0SYC991uP{Nl
z6=jw;(N<S7V5zFepou0~wrfpgugTm+m7&EM9A;H%t?Z7?$q5G}We$f?eM)zHH<_%K
zV6&}u)DyWpi1`@Z9|+h1=0?OGUV567vLC3B79>A8@;tgrXB4g9V1SX<F*|8*sv%@e
zx;d2jHD2;A2R?ht18?E%C|y}#%_9lnkXy1WDbnQ_@E=->r92Y?qfvFtxSymbUae%^
ze(Y1d6R34ZCN^S@Qa1hdmR7glS4@Ln1)rAQfR&)+B=uS$MNDg!mhYm=vHC(G9Qndh
zzxFM{yF*JC$l7|@;~NCO=HT5y6I5Pwv_s5Q>+|0bq4dhf%H0Dg_ta|@6iq6N`T>Wk
z3Y9Cy!*c&WIyQr`P8OQ1G6EXkEPC?31y>gc=jBdI`73@epw?j%1XksM=hF!z2~HQ2
zUu}jT>{w&=sy_45I=h_4Hp7rkr)C@nn2QYYV-4RQ1>`PeMrR(m04=R00Z!{3R6*vt
zE^|U&V)8bN5-a0lV?%tMK4!Et0kV52UBV8LVQ6IhgC%ky9J$o0>mF@lC%K{p$-<hf
z_XLYvKTt}<etac-P_g>rpbs1q*O1`8Ok@%)aSigDvlD`k6`)W@%Z)7lc?}Lpr*)#S
z9*4@R2&06xSM6M=ABcxwiuL_vGuLipcs9fOBR(a};Q2#E#o|l1von&ErD6+O?wRC2
z22p~lQp6#gLL7)yYNGB_GSA`6-lf3t2<N~eu!Q9DZ3niQdUzya>Z)9-O>A2AUghKq
z8Ra8!LAk9EDTAVJO$|-Gs1M8<lX@Hd^9dHzsJIvsWy~6@dW#iG{rNoJvhs&JiTV#H
zg<dSGm@LPcWon|X9KqiH^33&Ds}(rCaznK}U-@Z4KHjWvZ5d<E=Jb~ParWU~kUXqV
z>Q&5<FHCe^6H)_{45T$3H%K^^syN|Pg$+AWzp!$eVq5xCuH5(HF3&vKf+W`b&@9B{
z9EEFRcefYWdAD)tRaVNVv%$d+7YYlEbL5L^>F-uK;Z<)jUGs<~TILo*cZi8~ummoW
zS3VqCb&xGq6Xi4NFwgP;2^@4f_$gQw7;7m@kRyY(&?t6kJ!gLJq81a=kjaqS$;y3y
zh*i@Sf&~i_4IG^&$uG_m-hAmbKeQuJKN!;GKe86){e=XS>9h{yB)nR5x+Fpsj1H8}
zK-#Obk}#C?<;e(}H}I;2kl*S_jY0*7ab*J~4Scc+1?hCq7bM}@Pc2{yCGTx~I^7MH
zzOh`B*&vzwc{WTx={4b->Jko2{In{Yl}vJ4(z5}X7y0`YHLGe4lYY4m;t9m$LYjh&
zJHZ0@!#-PTF_3tu6^u{I26HZg5eZ+o<}V`5Mz71YH0|pP0s58hE#gIFC&vvn<?G}k
z>uI%SYDA$KcWrgBD-XMJZNlaGL}!fUsn#1faD0D&yJgw>!$ndd98_I?Xb|i7+Qb3^
z&3o{Xk08?3#)R-#b%ow*OQFVn{LyyWP(44W6K3{Zz(iq2J5E^v0A?F5bv$Sr>npUr
z!!8eXm>Zh+DGfsb0;eLO8TaS{%!yds7({7nXy!ZI^=wARFvDdU>}`53#tQ$)w#%mX
zz4bv(h7BV<z8cpMLNuTjE2XLMt>95lElufW=tS$|XVTFiqlJJ_eNsZ!rDk5&FwUBx
zW+LWX$yB-O0LvSR^9rcTzU9>?Pc}qU2Wm}tapd|_+kXm@9WbQR{vSQB-ZfnO*}HiH
zsYX|#MC_BPPvAs0E*NZbTZ}u#vJ~NIDRrbp`JtvJ@)<tB0H{=Cn{N4Q==yw4*!VMd
z8^Y9ZTzLA({jsP~lX7dSESVx}fk>@LqJgYq<qE#kk;~~E%}TOX*X<ijTN5T7E~Rz3
z`9GPZ|MWu04~A4T7W{|*X!oHHUxS5RSpzyfzknFaVtk&EP}1$#<eBYdOga7iEOqm1
zL-#TtM0<-cG}U76(zfe3Xo*Kmv8tpRH5|=G_P;{(7C%eyDh<?Zb=b!^hPwWO)n8eA
zIg6;JhBxgW_iqsjQ83;vO;IX*(0fU2o0fh$c93XV;#Lq;ntEhpwQ2V~Wggw|tLPRe
zW5j*XJqE&3pt%?-Q1T1XTTIvf^(tU}lw%LbQ%4&Ax#CXR8H_dt!F)C~xl^lr(_%$V
zvXROXqEqLW_I`Fpx$ye7|5S6$We|fD+~x+|yBivi1dl0`J#2T`4d=c7#wSXhCQyT@
z&t9Tk$3BkW57`Q>V@aZur4!YPONAlTRCM@eU9h2Vg~Wl1K`%dJuvfp^43lrWrDcwb
z+ue?zdHmB|T(`8oukpk#arHqM>tr~MbJK2!E<eTey1(_i+KVY?#W+f#PBzp$bNO<T
zW<$2rnje~tlqq(Ax!BOyB1e*$IHz&6a+fXd?a=ZUVMXX2C_MbI&$`LemQ-(zw&<aC
zrvzn3lp`E{Tm~_78Dr(t)M2U0k+o^c4#Pu14v}l@N6+H;u%5Mi-G1zf<NV_z&Stw)
zRg?E;uB)F*NiBFrweYqoW?sgKS8D@g_nsjk`NjIf!f3*^SRX3-<38Winv%)K`DxdP
zBxEG#GW{eBk8{>*(1x5j{^AY9NZ`W3k9(wIY;=5fcBC|o3=QsKas;Ko>6Teu9V}I{
zMp<Zf#mLrq52T`fDa_k7wSJ3<RSj%_Ll4zZI}z0VwgnCqVBnhyo_HOD-rhg0(Kj6P
zd+`$gGokj2b^A47R{vAk63kkRhC1nT*vAf_Ybmt}Q`lBJR%E<XcfHIhB6kKQ{@hW(
z+D51MB<H9jm1m4^=18YJEuVM0&eVK+FiAO?7&hy+$EmkdxLns}Y_YBw?+`#_@={DW
z);HBj-0(psZIaAF%f0*X?6i{OW*f>7&SrN?7G(<4>Qbp9t+j|y<v=HmGuD|DHc#<Z
z1_BPC&_s5pG^f5!YF+o_mA|&<MJ->@y?rimm-@rXJl#JL*bDD(+kzx;OBy9+#!}i1
zs1Vj?>Hsdj56+f~ORoZ|5U4z{o>*paRl=0!X|v2DsgD$a!)Qt*HvSmkE~;2%FBa8A
zq6Px?fJYj;o=mYRL%&AI>DDlJPL0~MUE-2$&&~){o5nfIG(!4ivCBfQA5y*Nt)uhI
zE*C~RZO0R`P)gL$a%KNJQn9>z$-`aJEh7tNu$`BN(wd(kJ!^7lPx`W^V3zkS!Yk~3
z5w+lZ2yrRim1yN;U1nz2nhhQv-E1i;ZtIicp9xj5MyJ;3ny5R41lLQ8Ao56Nh&KYW
zZW@OE`hsHa)o7Gb8$)7zP!qafdSNK#9inh8&ByG(+~;FbtOfiaAhU7j3m##E)CPIg
z1rtAs?@%^-Z~BHAX!=u`u~ta?e5YUHvhpdd?+-bllxy*mtvXh&^>4+|7-L&(b|zS<
zw-r$YBHr9kpQ%bz5NB2`p$aHOS$xxWDNWG@0t;mZjkcZupSMQ685_>$f4@NRP3aLF
z$7tL#m=*(9mTnL9-vyB1q{vxhN-ug&vS8gV!qMh@N59Hri5YamQ$e?|e?bC~2N{^!
zc2bLS#OMo!sK%^DKq&Pqizr#;PC;wCM-MN*1>p%Dv}OXTz2F2&)SjG)f0rP7&=!z4
z>_a)8MREC7N=mk~nU$J-E;LZk**SPULaJO*dAdIu{`0nWIG2ZEi4pq3Odn?2i&08O
zG_%oHK;`CUp~|!~)9eJDWETZ`4+mzjjrKiE3>N8?`1fDMyTxSDy;XKah#9<H8T_ek
zTe=CJuWK6~i&r+wBfC-%$7(@}jr?#eSQMN_v@1n5Uh<|grRkJoNwB#`l{T)Xt>@$g
z1eHy~c@!JNbuNS3^azxcDQF8$^LC3}%g!tIJVeNc8<Abm9@7QVExl#wp^{9;MV&ek
zx$6Af?H*DBRt*D>p1{-WiFlgrw4scGZ~GNd4pZtR8@%+<xqNk7{1U`C>G`5aX{bo^
zqA5J&oeNq<cp9yq-(hqEpBZSgYjt|An-u9~WJaPkTF_EuKA7K^wL~|^I%|G=tXuRX
zy#vr)+%AXNXE|=FEaSkAarE=HIm&BFJtMKSq1tfI)Ki!9_1W3zF#E65p@OJ(^tUj$
zOKu45=p%6=Tp^~z%uJ&7Mm)dTl!#)yngBAB5h#TuBX;0%zyrjS&|gYA_xhfM7)iBW
zzE=Z`jbPBV4Fh+w7d>$q#883KZOy;rdZ!i9XQFMdd|WwpAwX56-aUN2$cL2!v|E2M
zH-(H53@Nu2%2BLjvg)VfDBD=%fJ-rrXznD%4Xbo|giT`D`1yP<mf^I`<nDA4pi{R~
zt>r(!@B@{&xjJU$FN6$pth{Sy9Y1rURkbHQE3ok~!}IoaJIAYz=lzYV^Cas_sF{3O
z!gj{as;8Nf$WyEZ{;W8d*#wJ%blUHO>X?GT6yWro=ApE+YIG$I%_ep^CPSrN<+3Fh
zAZfi`?yKUj=xn=<b{nSv2stL=)e+SVs+ATH$b=m4_nA=y_TG5&4>2ar-Y2w(Cq*n?
z)bzw8mg<W16~@s6wfAzHDkD4TlacM!=ZD#}zxutK^JV}9(TFlBZYhq|WdHODnoa{N
z32`LR*Xb&a5H_+dKQ#K$)LQiEa;Z!(oqC-pTYafg9zb7Vw+0bA&2oIc#L<k$+4j}Q
zO16%j-ScV4_o87*#c8c`2gFk8^A+~?BuS}3VS)+8Z%Px9Ppmi$Ma=gm>ZZzFE22SQ
zB4VyLN=1e>^habYN{zGHouv&?n96w@TNY{{ib$+IpQs8_!<Hff>HUYXqo-?Hbe3-F
zKS$Q()FoUEgMi#!tJ_tHz<!2_5Bq#TATu&_aF5)^dI6lyH=0z_UIg*i-6ljuOqgJu
zt$U;}^)?$uE0@8<1DSmgcoifh;NRSW(a?8GowJyuri&q5%kV*8219*gTK9)|9bfXf
zD*H}yGkBN%bJgnr99XrdZA_jDVTM>IVCvh8l|&)vmYF=QB9VK|MLn5tbXAexnF3JP
ze1K?eok4n^5@Wka&lHxq1O#F^?&ah|O9%meSFv7_Bo-OU2R|cKm&RbyR_Z&u6w1So
zjC<kdr1(x0%wyHlnsakCWP>@HT`#08k{JS^*)#YI4msD8LnXP0d&`$W%MeqYS81J9
zZ=p{eFRt`kbhN+6VRnMKo9=60M7@G6@V@|IK%T!CDHVMeZI1gG@C3fn&94NfWeJ%1
z*7fx=MtTt63jaFWc9B4dsMp~(0g{EcO?+(z&cv37O7FUNt&16anR!Fy@T!t|i<40!
zPwT~!t7z`7GA${#^u&7Q$DzK!UAJSi6dB>G@658Qp%`R3|D8svTy0UiTshOAZw$4i
zTQ>d%Z+*mV(8efjsNzk>tCL~;$0OiDTT`OtW!_@zWv`jqC;jaV4*ZJ@mtzrFFq7wh
zH+MYRwQudxLe$dsC{N#<gAp=MiC<5H==mPu$#EWbbF?tsNQ=>!i5RV`Bf4-u6uCeq
zy8X-u^F2U<>O)|KF_p})IT8o1f>~(Q6|fFh`o@dBgHf@`m@%TIVbV~sGh6}<_%oeo
zEHd>C<Yia1r}e4@hC$F}PIxWgY(U{`30r(4F*)YVjw2S-rn81xNyAx*v6Wbq?3OWZ
zi|kfVjaS6!io#^s5vW8NjSPBs)0vS}Gq`TvyJzBLn1X~8r)<6OM_3w`62Wz--GruQ
zP0oFhl?U8|p6bsW`Sn95jw5p_HThxb7wZ&QUvv5(HeC#|v;Ue`l{8+9OX*o99+vLd
zRSw8J&Sr;FI!UVu-Ny=<&&ER;L;3af(!OWOZE?3vPP)f^*=@6$470#s@LR-u;R|XY
z+L81J&q_G7KecOSF4NhTQ{Y>#5t*r(^w23W%+uGh&9EVeS~86W&E_Eu?1QG%AB2d1
zEDJviCq5Tp#$4D)2qF*o(bR|thul&YF_UWke3jz5Q?(A=`6{Vv%P{G@Sl?oRc9KxK
zMlZZ#r{i5DyY*CajW?$zbu}G00dZImlV#Hlm)>C~WeN2xMV$JK*(W6eZfFuFFE`Px
zL|c&6O(W7@?!F{#m_wl!lyE&h&hENcFYem0&g{A==g=;^ze)T?8GR4sJhp^6$$GJn
zb)T#GrRBI&d7%=b)1K+UNV}V423}OoTw!(Vco#w-LIe_fmZTARXm#jH0XO5Wh$)Ho
zWLFCbczh)wm~2R~1|J#;Gy4_ognlh0)hdJlmTqa1Z$wGlkTR=mFml$v+KXqaICP+Z
z;`1+^+(7JaVQ^I?92qVr$Icr{I1f6SgV2ns7?B6(9=e)_d5)ndW(1jgRLHIlXC-cn
zC++ZKqCz!gnm<GfW7#N3HGeuBOUkfn)X5?~It-0VMd~=$&^;IBhwhuOTO(!9Illw{
zT=np2JAxlJzhcrC+Trjv{MAb-R%SZEujsoQZ8awoEss}DL8JffX5VPiAkLQ5qQ>Q@
zSg;`>`5HrZkW{cR$2iN_W1+m&JadD`c{}+kBziOaP`v64`ozz}!KNE-@r{hxqLos#
zFitrIZOr=JJ#dd;hdUEBHe3c{{@gr8R!Ub~tu~^O_y;BulrzkPOJbI;uIK|QWadld
z-=6Zxl0oqtc`;zNm+vshUpqr!xM%V&YHK<4`;SGHLv`bw03n8PuKu1BUxsBY^=IxF
z&*<SPuZ)lXs$O+4f6s9|Yt<}adOMXzPeG@dw+4B_A;y;En+k=P7RD`ySQ&|F^ZeV-
zW?T?^e8YPzmJ;!A|82XlTHk2S7op?4>7w4ZM-+a_=LsZreW^qAX>=9{@NeP$y)}M6
z`UdDWD<ylmEc4{S1XG9I6;#^mBy6<l_RO!9hz$@YcR$FD?QDYt!aM=Z1~6X}y))GW
zkgtz_eX7lO@`1sfp6TLG#$>52V!a}&@rv%h(5(=%@DJG<HPX)T5!NMZWR}VNDT7~u
z5PS47GO0_zAA3@pxz2G#>EVD^*gDd9vMlz}O%<$dboP2`jClRgXq`Hv1`P`)^5^Cz
zkOQ%gJMSczHV)<de6yF7!PEz9zXqt7;gZ7FKXT=-{c^l)=>4x(*YDfOZ%i0l-i|-v
z1CPbU({7e>^t|_$x96vu*9Zc(E!j{lvRi#$UqZ99tvq-;8Vgg(&(1s>>AK<cG-#7#
ziO;qU)Nr=U_vW|!TUHt$riC+{C#($7BVZ?;N*2(`W<F?yRk~a)<ivD1?U~GVHb}-r
z?F93&tU`mv!Ir4dVl#SP;gCiMa)QgZM?rGp+VA#!Gp`j{YUM%TlfHFeH}iVvj59B&
zNxX%#L2vrP#EBDqcXdrzy3twO&OjM`Ro$X_P;d571yXx06A7456;E;Z@F*8#jsDt>
zSmPD#ya9~&ygf8O7;_WyzR{E=3rTqers!!akERZ|qi6PNY5x7SwXlG_<H(usDP~BT
zyPT7(jV+un$nAwNH5$iwXu%U#lAf0fidU#Ls5Fhw4OGn|!1pzm-8K_bY`SX|jyk*G
z8q7;mlbzhWllKe#`RO|*`{OU2KlaCiL9K7`K`ocfn1%GnH5O`??$gUeAX5g^9VcoT
zo?&+x$@byHHwM5ftlcP5K|XgHWh)Ek&+J5=e%@2WuRcXF=S28nLq?hb3Ve%z3B~|(
zw+}TLjdKhna_Qso2+!DY`T4hKi&oVloZ^}gd*&GFFMXf@fvb+T#6jFV_ZegZj|$D=
zWoe^I&CD)RE^9nW^sC<|9msdnp&;|TaHJpvJ(~!Fw8@5W=yXIPL>tV#5|t<C`ZL>A
zdz&6P2+)$vnj_Fk?urHU+hK=2Qhzj>#u-uA7)4S9Jva4--d;^9Q+9g%+)7$e)e<Mj
z+6U*?9e3*w3PDX`gPn5d1Kcc+jN~XWNK5l5XI%;3_^OG`!k2RD3GsvNpoig@?5epy
zBcW3;bkQ12=bv)9^XB3|S?@JLKasu`T8U7KW9;lTnxey}WA6Db6etj|&|GSMk^yEP
zeR6p{6KL?01={msWw->|k5WwcN?C!%C~%oC8#V81+`GTSZSe97f_(GauhMKKjtkJ1
zMEzh$)0W<7*E9IK*9yD3LH-%quI_IJHd^&+yylhmQ|gT5?q>bVcdR(UD{Shx^D{z!
zTMRga;*lVb@m>lvNPz-<f1zekOMH-9lVxuIMj@Q0QzA>Uj)j9584#wZC(S-$4oiE1
z5pwFn!T+q{<Dt#UEHmkZvBm^i#Iy#`l*s8j$GGxnx=@ztm1KG_()Xs%ic;Vrp)IVO
zx5&Xyu~48$hL~crjwX!e4dwA;?hXB-PsaSGGA@`y%HH#Zta+5K7N%zwL6jirqIP8y
zEa{fvP+KaN)$r>V!8oN91)>*#2+`)WWC~*p|0F!=WF|I_=I6T-Z`fyET4$%Ve1JY0
zycR1u5hB3^u@j&^_QIm+B4e8`aD{QOs8*-vN_^WO7er%@O-3*TFCJoANKgXZ!|;Qn
z-BpwLespmC+eTb2b%sxCat=Q}tP)7XovyZ^k(itii2~pMQ5(>pqag8KPS4r24r$9Y
zdTvoN#jyrtxJAGfi5R>c2R#Ka&WnehP!>hqDjZ7l)8p)yWOzrw^#s5;M=$9>Y7Epe
zqQp4*QJgs~yIqbY<jLwvnz)G&Hw4L}ci=qG8!W_E!OAgvgaLz6|1E&bcZFmIg^TGc
z0ZQUMi+FL#TxTM|MIa8LW`}jp7a#2)MH`!U+6^74(^bKOKYXqu8L)Yv_!UO#&3{4+
zVb?0lds;QJ%5v9=7)<{z%yN3`v%HB+#_qX(J%Aie++c1G&5Nkz3tY{3zv}9WMx(l5
zmqk@u*CcM|9bN9XqD?gpJxmN5Z7bS_-Kd1!sC=jo5X0+`KE|j3fEYi}*kqo;_$?c^
zQ0Ti7EzFp(F>{FqS}sg4N^xX5CJ!V?+cvnH2nV~;sG|SaW;&l*%lSnA;2sH)8r;HT
z{aI*?0ze~SGu}&qiKMT5#$~O#HWspOd)~S@z^Hr2>G9f~Y?X&g`EvDyem{r5XfqEG
zf2-_@znHHsFWd6yB;ois*J1VVaZW75wKaJr`bvR_iF!y4w1}l@8+kM0qef*(0EJx^
zdi_EtD9FW{wc*_n5C$kMZuIgU_7OmE=+@^vLrmjD!(Z;{AB#t_UpjefmyOq-jW!*0
zO+#DyFEmR?u!4#=ORZWbO9uPp8EAIb4@wu6*W613%NS=;n*Longt`KWUK-og2~5;X
zOv{{<e6Z^4erqGT>S;@KFres_ep{oM?6qXiwZSbE`Uv^T0pLZ2KQ~b$W=H*87Yyd>
zhX0C9uNO<_GT27PK>pg8zk#Oo2&_hmDRV0XU&|K~`<k|fyfPeW)AOErXl}uDns$}H
zMIyc?1t@=psSL}|`%9$%xQ|;DeLY#SC~gAj`bA6T*$(Iq%ET9F5H9F&EC1(8t>Sh$
zEG%^$k6&Ri{aZFf`};?bE9NlWR=_&OLFNWG#1o8<A3Rhnu<<-LBxp!?k7`cyQQexo
zAJ`?m8WRA0PsRt$PGf>{ml_RT-+rh_Fs6N@Lc5E<U=Z!ntUC0i>9c0o=n12b^uYEc
znBtPr!!&)$?RkEg3qoFh;_KDQ3Px>XRt;N;Lt##`HYddGc<9?Y+p%9%3G`s3&DOK%
z*?4&Kq6<J<lD5PSFc+d!AYzvo7v_H8VoZ*Bkc=;<WASbbzL2@inSYf+!LT$e>2Qq|
zFw_jNpZ>XEp!P8WPJkq3LuK2H)4hCyXHMPHzJzsB;oUEfrkJ^b7L>CTItKNn_yTM_
z|9cBy|C;(3K^%kkirCwAcX+rtRT^$TUyz=veg|MKd62Q%`W;d{ALBk-lNay7NZ)x9
z_g!E~vL{2^%|W2PdCKo2H9SaEeix+;IW!#(<9Z|xgsY&-welGHGHNW)FkI2DmN4x}
zpPw4Q-n5-|ejM)ToJV?hm~Wul?g7RL*7*$k=bXs;<ur_Jb^OWCOZmh4_<vZR#4kIP
zvH3#A3+M!bZLMh0+C!rf48h&<4D`nK4?*6DQ?Gu)vFpgn10)d1{26LQZD!`^Q1bT2
zvW=%|u8qev;=k@i^<qhkHuNyMfx+c;`T5yfe&Q-0_2d7m&zAU?rMV+MeS*fk#t3~Q
z0^IpX<<9-Q7}T%QjKB`6SxVl-q?ew71Q}A`*Dp2RwSEq|HP3y$Hh>?HQMHR!u9v4$
zR(>LK2_*TOIZ*6<-fIKm7pE?%%0we`{jVX@vc<9hParT*y5B98uixVmF07WtJv%*}
z3WseMWHeV`u2d8gOLm18yBlP4M!4!NM0|$mc!600wm%2iGT<FZubQUtbQP0`{0G|M
zB3&Vb1DjQe_lf5W(N#w!rdpswLXV$!sp%y5^EE%pk<nYDq-c`Bu(>LOx5&G{;w#@O
zNJ!xE?<%(}7$AeYznyf0XulYDjG2FxhQ>|r+71&aL2fWckuqzRGg)*!IM<hexrlmA
zJvD#L2WZI9`nmCnUjb8arP<Fa>#tu6+f%FhsEEmRgG<u!qWh_hXBmBD+myCKdMgY;
zm$(@mB5bF$Q>T6mRum3dB~NAvG>4`{D?YhAt=7nk=~^Rt`M2un{oszWm4YlV6S)Sv
zkok9Dh#ddAk)7OGLpyefO@tixF8%-@s#q3eV-)-wZ)sudSuZH1hHZ2@5+s9Jy_H-}
zJz1r&wVSt^!M{ARd0rB@2I5y$n;;DsH2Dw-@rdR(q_b5-=c~^Lgcl|{8X51N=)Ezw
zo3$)Q)L)aM<ZW72=_41a<y6A;m2G}!K8CKeG9-@lAApwr@j0!1Px{f}6fE0iYsJ&`
zlauWw_E=SbjP(DX0deG~DiE>KfM}@I-F!JSl{*V{@b$_f>+iNgd7xXk8*g&EMSB=9
zO67#`D@=+M=mHRa6S+n5Kvt{)f9WQ$XK%UQ%<C}OkVv6Egkfy1VoY!1K&jD3>RZ8C
zwWnwt>2(|6tFEGGaDF04I89Okzrut$-kwgvCLd6QAA?sYM~$7$q4a|&Ef5WXrRKXR
zK723a2}WK=K<NRMgSa&}#Urbtmn5##!{+F1Bur_3bwjWbV~MtWpg2;+K>3WzM$Q^c
zG}ta>)-yYG%LU^9OMQtg9O8~n2OmpmX-Mgk?3Z```Tp<?)!W{bSib#i;!v(K^)zkf
zn#<W(NvMWRcZ9ppBKHWyrjvw<CA>>1DS}QWs}3{q%xQfCI=`B(gwRKvp6mvj?NQ-Z
z;8D&>?XZ&upmB@)!H`Z5zM-tFq6QLB9k7-q?_@_?*#rtCmY-QW(Nt}Lh<NCGEYuFQ
zt@9kKP@cUDaKk>IA*wXjHN+-UqEt$)to(aq@B2-NQbC_B`CrYZU(+!G608Pez2(Ax
z*YJy7s1=%gq`ox>)I@vL*?4Gp{AQ#|j<{iI42F)D?qkcLH2;Wb$)<3{2$}<~uc?n2
zT)ll+>*WPrzQZOvUQP^E(3B^xmM?p+njB}-)HY@Z&t|(IClV@#U}5LU&CEyA^}i%!
z>*6rI0@1_#$(U1h`J`Y3X`vc4;Sj<^;^eCUGz3c3F2`%&sjm*vs+T0`I0y2DJjveH
z6@e6&O+s)AEG@@?dJ}t4uKI(stY%w@2OKZCJ8#qG7e-e-?U0d@N&~YDb3#gF*PGG{
z>={T~=7z4?DD!KE^+ujzy?mYr96^JQLW~mCWEvqypq2cH(JGqSc75ZgIuM4kA<Rdc
zB}}mcBt(KNP!!I>{B-J+oaMNO$G`|~FGh0NbJ0as9=s1asv#pemqiU$Ztvk}ImPVm
zF1(mei9FO5maSpK0b90jw=VRo*ukNFvddV-FWYH`;$Q8riU_0@RmwpRK32uW(^Vz*
z>sPwxZM88Y^4H8(Alx=ADkT*dIlQB-;dn1<$;buE4`LAxA*5tQ63(ZAoQJu*4)byV
zw|*U9Gnwk2=sK%mHXe#H1_~rTw8LNRx9XEAK!x<mwy)#oO>g`*7IbwBus{;&Jx;=3
zQ?t4}_d^T&oGESnvL#Ea05ys7@3&Y0J(jAw(!uup8S7L>y8p`f#6Y4-kpgYxLI9fZ
zE?24s8d;>6Q~Xat#Ef~Uc?198a=<p6&$5V{$w^u8c_nSc>B$%U<!<tp<@dd1>SgcX
zCa-Aco@OG@{aoSt(bsep7!)3y73#~9gfpwmg~go7etAa5Tq8x1Kj^bE!b(Lk7^>x(
zJ<D?^1Z#hjv*h33+K$#*%)&`}{9wWtHR{8^kq1pz_+*Jc*sa$lR<vu5mlVlmXIExx
z{Jjx;cS|Srhhy^WjWJ!yLL=k-$jE6(^H_WyCy0MrFiZKaGY!vQPTCV_U+DV^HT^CA
zKw9d^-K}LYQ1-T+x%ulz{a>TknPiZA(#9%FAu}(-2Fi_(8J<Cu?7HE2^DHG~oOCH2
zAwKQbPoFLXZ$_2>4e<+#D{7wGIrP^qd0roRHoKg4Z)Eu(7O^_R)MC-9Ufs?p<AG)?
zO_8v5J+FX;+Ah9dkc310|9kdmW?0a}HM<*RBWKG~^oMGr#3mEye>@=Z>q!M}NkAuP
zTTS+w*-b`-5os*|Y`*hT+_<CT{Z-Qa{uuR7;nC@$Zhtsq`)~xFBQA$0lUbIRW;lt6
z#u9_B+a7y)%Q+a^hk-PJi%_ZNyC^J^OmP?<O{PC1(Zybb5g+~gD(oqwYTDP`X|((V
z$tbw_@w~(>wBM@G!g)H$Z+|s^QAK6$>A;ESaHavrb;An@DjbL2s<y4r!g{eXH7tx@
z_M8zD6(hVK>hjq?A@Pjo@CIl1fO)^s=-))g`^Y?m7xlT(%F0rs+8FO-!G?^O*S_e;
zo~wHv!pjule}GPW?2JI_AnlU*7&vH{W`JTGu5)*XgxK&`tuv|(Uz)RD^VH2KZAgv4
zFyioRchrc#Y#G~X4j85>wQ$ej?I1}Cqf4vA^r?eQ7vni}fL#Un13ff<^=*T5W2dR3
zEdw4_O1kB;Q~pAKFvd63#<u;+HVB18SW%JGuJsD_Aj1*1VfEVIUtojCb#<_A<C!`7
zeM9f}i+l&4`LQw`_Q6rn-<{V7vmdrr3*`a47tNs<a=0^>_=X_whv%Y{=dB{#AR+Je
z=#%#MOv(p0t_o@RSS@2yp%7&BdD+ibL0#4@pA&f*=(3e1NBUk15$wE(b2*Id->!7W
z1=qs|mYDv4xG`ZL>=iPSx%H@Y8@eaTsdKfI>_S3J(Icd@zvJTub*0<22OHqh`0u^9
zKN8Ce@+XE;MIWS^y$@!+UwiO4pLb@uz9fvL*B74dgu{gYe(tz%yw@mlc(TCw`k0Z)
z<Gj0URbl*ioj97pe2~2&@H*=_n(;{bu<lBG(fSNfE)o!`(B=RAFK46LWTd{=#pk6%
z@aF1Q)|LNB#eN{p`>2lVTDPFCcceK*T6G7xn~reEDk&?HurY3j>9#_bNe%3&hzD2G
zS*s`Uvl{yrHsJSqyV{Pc-Rxz2I8xJdobb3{*GLi~iddCW{PNyP<HMsA_;V`ro_&u7
z4B^Z~>R}ODsa@-QeejRv#jLEfunDVzd$Ap6)e3ECh~UqKa-GJ@ZAU2D#Djw5x4y|7
z|E7m_EsSWdQ=G5%TaO!CuMcL|J6b*|jb0n=Qo5c;6Ss#`XO+=A+tTAE_ZiXuPFNZ3
zw-NGa=m6HWvTklLGlgTO*Sj-ZI}yrIgA)%|hei*MZ*FQ=(aCx{W?$DneyI`smm<x`
zpEbhR0srSOe@o7?HQ#NG-j93N{Ez$PrBFvB>zO^6OK!x+ub1T+9t+ZOYvmfrQd*eI
zC}c!d)-7Q*@r(YXLli-L*v(W1jNGR~DWY?1cFgKOwgG*P?T5n%O)Xo;HhU(9C??h*
zSg$~~Duo&Y@d-27mq+%fo)u0gg`F@g3$D_j{JPMBrY>DQX9u@#FBXEs8MtvO1`x?O
z?AF6JNQ^uG2zcJjg(VCmC%Ks3c}rKK5-whZe1?Gn0-K)8NgQWnU9U!K80|N_8aS6t
z$I|X_gSw`EeU)!o+X2m#x<>boc3+#6G9mjTP({lwo&Vd376KBOLPy_z>}2p4Bw^$4
zkn$eKSY;t#nJ)YWKYKI^?~Z3RnZqHGr-+_SM3s|rL@r;VXG556iVAFmI4k~y+|A7?
zn@{}nVzbr`Z--s8{WQ~NL&XByGiZTea&AZm2TQ+#(H!<=`nT+C(?Pq|(Ok{5Py@{d
z@Kfje8)x{@3_%fs^V#x`y@M#CWuH8wBf;#i$=dG36|V<2<6K@!J3G`HD4p3|uLNrg
z?K%i2^EO}fA8b!*R8>?Gsw3BI2hJSWPcPv0lK+ogzy69N`qnt%#@*fBJ-AzA!Gi~v
z;O_3yK=1?zE<u7zaCZpq(m280rIB}$@4fe(HEZt7`~lNzb^mbcRMkG`dG@K#u0H=&
z8AQe$&_khJks%`|?rS$gwxt?R7nVM`SiE4yhucVf-^eSAjvqg)U{u}BFGtp}WeLqt
z&?T;prcu+hFM@qJNIe$3U*-OM(^B=a{@wq1dSB%AfjcYcb@|tjdRoSB2RkCeR(F*a
zr?u8N_oF!|%B0@kfqk+<UT29*mZJ-&;k{dtFAdwr*isg$W548arFgKvmY{pKHP&Cw
zvcxzGelE$^D|Qyfb8O2?>{%lrHk3Jz8KBd|lq=AwCNC}f6Z#nY$uU93eD$i(&-?W;
zh!5=6vdVteeogOrvNS^C)Sl^ToV(ru(7n<+O0L@7#naT*=5k-61U%gyqjlF68JF1K
z&u`BSHSE2IfRBV9K5TM}22P%}mc8?E-5-cUp>|t_WAGL9Qj%6hUJE};UpBiXqxSp$
z4cDzFB1P}FH4?Yg1QjM?ok<V%S=XETLM3>(xps*E_&Sc9J4T@-3n(*i_6>}HdNO*z
zRhWMFir_Eg1eGKo?f~|@$TSuYnLXUB8)b(zx!8pIN*=&7`+5)MwjcOz-hnHv_SYw{
z04drCT;)q^IOY%OnZ)p6=SU=8t}yJh80FdwHe>&SwB1az=krlDeF~#Y68^bywtakB
zZLtrv&~QxF_#1N=)m@R^tb<NL*R&V3fVI}|SJ!gq=H1<$<FEcr&j$#sPp(J}uM&Sw
zF;;_wyPj`%M4s!786534I>W`qUQt$>I22Yr-(I|~hH1KXYvtYmy0^&pt9~pTB5$^t
zo$ORVOEsn0ZyLpzQ5Oq0EjJV*;mPr2=p8O3mrJ-Y2HG#s5}anPJF^hohK60@#-cWI
zveW0oNNitvkDRKwlDjfYwi4HS@`Y-nfrra5@RQnSpq3Ud3BO~{jtiId6u_PjoKG<a
z&CKjs?{JJR<Z&k7<XFU1PCC!6oZ<lfQ~K+dX?JjE^V%8A8Hb_KV$w=mN$R}a9|6bS
zaB0W3z<Fj7z6dUwsK(wTq@-!1v>$L(bwD6LQh#Nr6(CoC%Ss2=6<q)Qq-p`<^58^c
zQ={d6ruUl!RfXaX@3enRY^=cDQX%+>^I+~5O}3DS$N^tW!Bo8!|K`+abMfdgw$x9A
zUwW9-is`!L5Mc6^9lX1T^Zh`?Umv&Q!ZS~%Reu#Rb9f$BG$Q_rS6pmnM5=JiC{;`R
z@L_6M!#=(?{T`#V1fD}i{z$$4l=Hb7H{-iW&TqJ-tKOba`(*nHHtpIt+&}a55UIii
zq~6P;FYY*Hh481V%*fhN`?IpGhqD6{cDb;RX3F2Ln6tg{ZwYFCA!jSvzq5caP5|n`
zo`f>9b?Ts<6e3kWKTS_4rXHhZu()ONxjm!z8F+ajAPv8+WWmHxFH2%cVl-6oluxE-
zU;9wUwnQ;H?k_qHeVm^<XtmaP>r<l>c%o%LC%W&@+Wl>%fkgN5)|Ng?B-QiuW5$y7
zF}T*80o;`4a#Bm9k;*4(5F(MN$1UE!>&fMFbr^SM++vGnr&I0Z?q?Jz_5!&t_BzjD
zY6`krCeZwLUK{}N%;MSVr_Xh}KkFESxQhWwvRpqEU}a%a3%@T?smRv!Wzb@B(%pIQ
zMR$>T{&8NyI6OV(g3@!w9Mj*jWs0%gFbuKn8*X}DB34$T_HVy}AP6w<cXml8re{&P
zSGRw7pC5)6DO|w;5N4kPt1ipiBah}a$1HSV3^8y1p?D%6;H046-H^!3jV2%xm0bQ@
z>{r+u+%>`Fq>hpJ=FX(ZHEy8mWP<w90&(E}+9B)H6^nr*fq6X1{9opev#<QIX~wS@
z02*1;?<SHU))alM1gXF2E6obZ=y$lBN_Lh-^p@1I(y@(Kw~OVE8*i3m3yp97yB?lr
zWt-JO0a;BOuLuE<`z_<Q$8#+4{V^i9gVp8F+dc~wEeNY;=RrZq%WmstcUev8T-RvD
zDgmJ`JMrd&Uj>zN#e~1;r-5a7u)n<SqhziwuC`n|x75Euhhw&U427erGmz(A#^EZB
z{sFu_IsI&(uKlFtu<F|Z^+O$VL&`y!O)-_#{H0a7-~2MnvC04OqivbpCr6BkzWyU}
z0z}y8p@uLqW0?W+j~`<W#Pcvz(o&2%eANuK+@^+3oUZpOD-7F0n9_`aU4b1xxcALb
z3lGi628s*H7Q{<tC38DFnjvTU0Nr+Ly+4ho;D$og4WqGah)v;({YrDhDR`8S+j0(z
ztQ?ctO`bRzQ?Q$}@{3j&F{QLM6*?n+?DdVt<mD>_jT`!O<-7B~A-_v6k~wx$rEX^o
zfzboQXj=70)Zuq&9J_Ytvs4h8Htql<3r^6R?QYe7?}Qz<+pi}?Hm~CaY#Fa}4TrY}
z6q(pg$D-=R_hy&~NT+KjvmU9?qq0*N;u&y}ubcLbEDvY!z7l)PnTm>$FRE#Mm#0m3
zZL2y~$`FW8GkV47QA5mK%xrc#le-?CymuKZEqu61d6aW+mjaDZa-&EgQq`^WMkwmm
zn5Y*9ft%8JSMCl=a?JO}Fy67uXMauShtMsO@9j}fAI3{6n|>pd2_Za&_!Wr~PEODk
z)9d4ram#DeBB$Mg!QR*-VQ>`1D-sSv+|Z#rr^gXamWa!$WWr@Z>_n03hLOnK5=G17
zVB6tZ3B!K2*Me!6tl{FL$$}iI*D4n-{$FmJ8E=5t!)9ThZ@VdB`{SM;VPsDt6^zCi
zw{lntLp%+6?DcXxhsGJi`b=anUX+|yx>W>)Dn4tB6_F}@*fv4*DXMR!s=YnbX4aD1
z=gKC_WsnK*cOT+?QwtG%YcGEo8m+#pk2<rwKNHo|ndh{bQMfrU^#FEm$Hck_Wi@B1
z09rlSib`t$xDjFjeq>iIi`5(Qti*+l#rV0CLxl;V5=J@aHO4z>#_aiJWf>Z(xrn-k
z*$5cq-3$~#6Q@mUOQpq|ld8%C`?mnhxFOvRSGI;%fMJ{GR&VU2!tw%-@<+usP7@Pj
zu?z@PNp9eWckK%*><OCId|}#{Jt^*Lk*Pk!!v05>6xCPwgr-YovDuQztuCj|v<IL6
zKk+S3{5SDQ4aJik%oK5-w~NNDWPDZ;aN#MGjo;i>oOqEPx*sXIejF$aGMUPIHQ?Ko
zdcAqzem-kby||V;-#4!A?AfLpecYj-5IzvI97_)y+Od>)3)IxshT`<Sk=L#^8fy1J
z5!jtWVge(CQK1&*E9|J#M9p>?Q?R%GHE1VSO_}6!+4g=FyTyBcrF?u86MH(~Mn<_J
z@)<+)RL)%cYaWjILp2nRDjZX<Qs<mp*{FzviRt5GOZ#f8keIden=H7|NvF5fg9J)V
z>pMfvGjDa*E8jb>FV~C9YH7)SCG4$iT9c?Y5=DnBZPyAUylrsboGfRHzix0i3!K10
zL*+n@6`uo+SXlMyzUFkaQn*v_HU#328Ow`Qx$NSJTf4tiV2Ih`vaY&qRNfr<T)dn)
z^@h7V-!2pU;CB+U%JyJ(+n+FBeZZ+vKu*TgQ~nn$G-KH@M$P{T2B|LHAa``D?z0}N
z-a8HU>%YJI<OcMVS9kUlioc0Yc3sSwitpc@ewou;yvQzRSLQKod%lWY`t5>J-T4F$
zNHcI<m%P8+I!TBg;&p6$f&ZwesBs2)FRHg?6n|Az6#V@8P?J#3lr8LKa*!zL&vUQw
zbaOaRWw@Iqa#`%uph^XNN`bbbn(41Nd^6u7sLKFhIuxm%8v$4!nLQ4tuC9=oS;`58
z>@iJlRUgiH`Rna;1V0)o_wp_(ZOv)W*O(7Yz_9DA;5H4F(J``sf4D*_o7NKL5z4A#
z1rmw4E7y_tv%T;O<tVbRoUQ~*ObOvBCT!YI4*9uUW&~1M^?JZg%7vxPiAgkaJfngC
zwNq)PpM^u|%fijQzQqQ`<d1P~)mP)#6JecUzw{UQ|3``(P7Dd}GtKck`%+eJJLQqB
zRlaa_Sdz<azeK4yFVuifK%mEh7;p#2+we-CTd$Zlfl9cPW-}|cneA1qZe-N+{D|Un
zQPS0a==n+0V3;Q1IsS7{-pG*CN^`{RF(23Aw-g-1w3KY;UTXtKf_gCl=deZ^F4JCJ
zrCE!;F~KaJ*YJKjJShu~$8RV}^k=Q-lEnr-%CRSYyNjdgudi)vb>{|D=Ue<!-X|G%
z<jrrM@E9b+ec}*at6biQ^MHG~lhu~k|H4kFii`+~^$XF?XEQDWLw7W*92cgh=L2#f
zkE7u=@fNz;>e`+7!r#BS#r-aH{GX?-l*Muj7)2g7*WAz7;}~9VbgJ67qeQMQoSX$n
zpC2c?c4~*ttR{0rpP!R93XXjXhbGen5rSt`gj+^l+SVN7#b0&#DmK0`PQCK2G;o+M
z)${<eL|mSm){Whg(LYH2MjhZ$e)LCjL3C2iRebA_W;|Tlnj#63ZmlY0{J8zmkQ2Ax
zw0_6E1u;VUWU21QjHBrA=%mxtWdrZL{aW1*a#25Z-MPd}Qsk%y@T}^G{V<~E<F4~9
z*OppgQl`l^)0fXeo<~Y9E((P&<cBV#wn0(XVx$v0VfmEvkh|#yNKdSShqC!-s`B4`
zf~i`Kec5}8iDTh8KgJAgL%op|JQhM>Pm@8zkgC$9@y1HwgSi%(wbt)^KF@(ciIw_|
z>KgirB`Rcxvn5t3;M4VvG|$r*jL(SngtCUM8oV!%Tbti=zXX0?UD@(Etn}6H43fKo
zZ_Bl}YMH(g3I4{5R|0*#YsD2nNusan*v5uOC+bzDc%%dH2b>F&ihGjsWyX1}`->(a
z1Z)*)G;gJXaS|ZD%b$z_Uj;jjI$3MS53Q8<QiacZ4&AR(C^p6hZ|$I(y{`_RA13_L
z{a+)(d#PT}`MXR;2#hh2qX3Mj3vsa=ZOJ41#_3CMTjWDqXXg^=_m{QS-%2RnMC+|o
zhB#4IybgwWH{Pf;-mY-d0``g7f4F`z12=7W$L;4rP-?AlgV_z+T+US~ET^VS<!+wP
zZ^&c9+!k(0K|tPiaw`&w@ub850sF^Cu}Cxu|KR|Slcm>0aB0~`8ykX;ifyEKTrrxp
z>5+YOlI@t|Z1wE7h)L$fU2p8=I+cGhR7LyhIXZhU&4(@*j^9kzR_22}c&`XB!~u-Y
zw?#o$y<O{@tt5_?cVmZR*`g@Hxnfs@I4Xj8C9@;klW$=u^m^mPMmbM9`0VMEyyDFv
zIvc*Z;;I2jcc;P^H#=P=t{dw#Lh&?f#v17NmqD+y6zQUFLW^q;G_P0BqXu3(<IgY4
z;y8#8Tq($k8-Y8#IRQs5^hzS%8FKw{7;=7m98$?{-oK-${W3d9;~RkBi!spS({7|G
zL$!&~bej(%#Y6;NJfU|bWn*q%ypuNZwQs=l6Nc&sizP(g+q2R6MMI44y|@JvFE1Iv
zc`dD*!^MO%QQzsJ-z;f{KD>(?{w(Yz-v`xJDup8=Wbznq&cF%J&(MGqPlWg51O~1|
zbabZ&;2=r@)fVhop5;ylFc#TR(pfcA)b)em7vTq!K_2#&XJ+;vu5<xUcUCjMtej^P
z&gJz&=t+^U|HNt#eXxi1T6?2}fk(I8Ow1Q~F5fUsr=MN-gMf@SLe`~SoMXz8b#x^>
zJZdU2WGn<{Ie%55e^R?SO^w2n;-R;Zm-<;75{9sI$>*-Y#@3L*c>0SGA<w*I!ky{#
zkDpVAf`bRzP#oFNbYc8fuVM+Q>xOvq2y_2xi#Y<g(J|kDQAI5MRs4A3<>L=@57MZ%
zu1bBr%LThP6_G*9rt2NybHS4#Cj%#sB{E)Lr9YQ(M41_d?H<>%(1GGF@TexsI*Omp
zSlCYgWXzXqI0|PiGIajf_9R=X{elw!Azrd~4fy!`YXIb#FjB##&C?-(QObf02|rxk
z+^2Jn+Dxk<HSL#inuM0t>%|;*`{PPiy09HR#Y9eYSs5yc3$A$Uj-&70kz02Fhw&5M
zoA;|zh3*~R+vIw{P?Oe%AIw`;{;nvtu*&xL4yr^Mc%mt({IO4YYI!$}9aHP;cZ~rD
zc@iNgyNyMYY`aXjpJjhU)Z|kohGW*<yPtTUcU1Z;Tu0gK)qP)5u~)1UJ70_?NGfu>
znXRSGoqUXQQnDxgP+!l*#Eml`Qxdrv-*Z-7)Iy}+WPi2BmpRs1!<l|c(yF@7U;&Gt
zQ>W*U_;<a!zIEj@pnHg-GeOlCIx06B2WGL7V(hrEo;y%Vh`9}E;lqFL1sMIPuD=*F
zlHyG*M^ji<2B*Np#Hla9m1W(`#flkG+j(4!Anc<|#!tQhc@5fb^LoSlLN~C~5<v3$
z_(%NW0Oo$HnxoToCE)E4BSCV}L*%7*ba*5i8L-sl#orjv_*k*RmHxuk?##9R;ytR@
z#6Yzy+@DuhAVSGGr>!HYp|x@P^Xy}T*ULqh^T7OK&K)7@?(Ot)k_8b_3PWK*JGRXZ
zjw#>uBsyAkWTdD2vSB*Eol0q@6c2r^YC2<Rwty$>#^c_2Y2~lTDbbwQ1>w#(kF-D{
zEiJr~N?LvQGQj+Iyyn+qeu&B#6y^CtZN2SK%b8OR*vir;O+nP%#JGFX>kP3%CG&d<
ziaKtsmCokM9eERp`0K0J<@QD{k!G8<x6;^Hxc!IxiVChd<$NyLS)OmHe3Wc7FkH1R
z`Htw*>HRelxILDW*%&3WA^SOxC@Y`!^KFQ)R7r>K9Q3)o*8RIa)-kDxke{r)!U+kj
zB&7($DU6Ifm>uKK%`fCtHNqbo2f>|tPBK_K*dTod9Jx<;1cj{y?o|lt{<a_z^F1dM
zxlUt94B8f0c)QkWzw32_f+#8|49qWX1j9h?HfIyWLp#cG{Jc*41H|8ukWsE`{dWhX
zg(f84%;m!vK4RAut4Id~kQ^QRoLGAkMut2;e<sA_6y#@^8>b?!U!qXL?E$Lycdfm^
zJU?E(^^7kXK`A8X*$@}2WQM%8?(1|88U8*p^KZR0_P$v6^XG-`d^s2IMwt|gb6R`m
z1*~sg{@pO@mhO6`Blmj<q@`yt-HM1sm`7i>5Gr{=`vS?`c%yuM>VF%EI`540TK6VP
zp|{%7!4Qq{3%aA}Uo!KDJm1}SVk8WO4Fy3qyxSpGDIe;c-}(|vpT_j0Mdu_Fw$#3-
zeWwxcG8qQP;i<Hd72(ax%m41N*v`!jvG`fC8G2n3)k<Vq{<{Lo!NGG(%n8ck$1NU6
z7MVo=2d&py(^-tbFgu%(gH2LS4q=A=Cym#i-+A9HNJx&7l7%L86tovTaI-{0zDB1c
z&52S-EP7~aX`9Ua9Dz!SMA$L7=l^!<VHgG8jbs~)9E|i`y}Px$d`M9>KYPB0zFS^d
z37y$C)2+lG%M!i+s^yMQc+N!{V~v5r8C*4iUP=y!gv2*o>;^IX`lZ2Rd^kNZhJ{0)
z_^3F%=;}&VQ<KMZ<z!i2S=jBe-9)$NhxOF^4=X4(VQ3X@AMK&}(&iAVNk+Z@q~#j&
z!pb7NU$Np+1tGD9#K(I+U$l8`v*;LxWp?>QIkn7=lkj`*+bbOh;qeIy!i~g!ihMOw
z`4`Sfmc7Nk1%|#pbyC$KBfCKK!XCa-E+5q4VRXLZC*3FOog6iOD%Qi+5RDSs>D9TA
zRU+;QW=72EDNa^Q^?rGI`TiRs?#r3$puXrrIZnSbk#FB{O^5dNFSFa;XiNyPBN)`N
zxdJ8(G*eTz=YApoZW2z+<R+)DN(RCl95@%0Hlwqrh5kUnr=((Hnp38ZL4Nk6F92O#
zL&*Ej$iOZK-9{(idXg56;?4Ca@_|3Gi{Y&{Jg`4nT0n6LaxyMhcc&bZ+MdiG=xOVn
zNp5%Cebv;b!y_X-Y3UivU$fw9mh54i<bi#mrXe8em=XKIvWDXt+tXGx{)h?nKg}-k
zA5~<PztH^|Emu=t51*S8pk)}MVV^*bm9g{&eTX!b(C`p2aCG-<o?2avzVk$2)n>6A
z%N#-;2U2y{NC1IUG#|0)_y1CwUs>=h%ojHN!YWaj2L_n77Z;-gx(ST4P+b(I<Wj%T
z7So#Vwf~Y=QaIBQNdn0t^g&}`MP$*ArgQpW(<|k`N-u6X3*>p@9%Kkz44SJ+XY#Wu
z<>EMKMZ*o#6IsT>X`}N}Bcq_A0D-vLu<Ag219zPrUVT<T@VCpY76Wc984PrII%;Za
z>ViB%e9-%ckuehPy@47z#x&$#OQ@MH<^R^j10MuptniMlTh8~MD`oq$=h6lRV2g{R
zavZTXSLZ8m?)x{~l3&ck$4ApEtDuQHbizoiBl-wUov5ZzH&Y`ckUq9hGAk7m9o){$
zOj3F>v?Qj~8f`&o|GzT}?TBreS=9Bl;Gp0K<6`9ozoPaJfK9kY6Mr6%vVm)-N$|BR
zGsw16zq0pn=KT^PWycT_&a$>Sl<K+MsnM+*&f!BF`SmN`ky?GuRF{&vAko^!R!YVN
zOH)S1^Pd6a90VviBrz#7X=&5#<v~rRGe2>g4amQx@o&vt?#L^t$e!IC);NQ(r%Sh*
zK44+Rwf>p;gqtG}@)Jmc&yf*2lJbcNmyxl2{_78JhVAxi*F0twQekfZnS(>VBfk3F
zCO<b8RvfY6ta`c^bc2>wI+r=M<=AlW$e4;Fv944o+J0_Y*tfp|xTK;nkt-`|{Lzfe
z7bF=VkZgo0;d^dPEby_W=SGKzr>pTtQ-5VdPUp3w{xhn~DC&WnOiRVf#x^%jO+5Q9
zj<u%d_wV_YzlhxSBj_2QuhK9~C(mG@#1$1uqV%{+cJ}nEhAQ;9W&iqAcRXqPzw8}5
zAG7g)9eyoT_q_AAZjDb4h1RXW@28`UY*hf7<G<T2t~s@seoj-<WbkXW{KptHJ>le(
zl#7m_E;2ygFJflq^2>q7wTH`uzzDzd7ba~(fA!%Ne5SLmb9I4i$LCiJjL6?)ErK@A
zLbzE%F3>3W9FeS<QY+*Iwg3Dj`>o2Rl#yM^*B5(cR@x6vfR7J8&CpY!d(yGvR(AC|
z=xm6B;w?z`w>OnNpB?D4oHP|8wB`7p?$;N(Qf4;kiJQZGN9=!(O(2k_thf%ltbme%
zfn`n^iCIhx-)r3mCGavfs>Wpp-@xw_uM={2A{Kmmydn4H3tq8uW~g0t8+I&yHU^+Z
znAH34){x668^6i^M8{H#8wagIuTIy~7Xz;soymtRr><M5*9KD@Tf3vg?CfZ#bx)d9
z4r6G*1EiiKzhSidM35V%(dQ;foZ5UFcGYK}t$BaHt4B-6Fh1kxv;F#wpqaV3%ge3t
zfDg+4&Im(J&*hGfyrN>CSC<#b-o$C;ymRp)4B-Cxng8JlZL#3@Pt;7lAoP;Hh@w&U
z{xz=+B!%RQs15Px!XcI3Dc<KBhOWWBgw@z|Om=f-1#DN>88uzq*x%7apy)UhJ$=w1
zb5$e|2&9qK(3;cMqGItQ9W!k|nl2bXp&I=V6Z<hh9P&4%@?pN3JQBP!sLXGS5jzlS
z{JKr$-|2w>kkH~iS?{305W5k^P5ZX>bleqVGwXV}FD@R-|N3}llY8tm*%@Av<4Zo8
z#?hl1coksrMRl<HJODP6KL8y-m@7t(hNkQ+l-=oIYinC;GrK=LERO&n74;_#^0{(a
zx~Nvx?es??Cds_K=nLw`2y(_aIwEm?)aeXQP1SxrO2d$z{Vmy%lk*~WSyEE_u3q4>
z5UYUz#=8tgL8lIY?q|6Aq~xsd@NigGJzpvdrkk$Wn;T&Nz-M)>&-h2hm~jgEZ{KjR
zrqkzjbuggdKhV=gwK7@J#!wH&DauMq!vMNZU3Y$Tbq4d=>1=mG0^tG8XRR!k-7pDT
z0|drHN4zZl;NoKXou;l1i~`2(BfCy$t=WsKQK!w;<EroxQi1r++FBx~svr!nRTu6~
zA8;HXSdrZjtz<UhePWK;TL|s6Ifmlb7^dguw!w}N0zZ=vBf2fFKhCZAGSPw{kX*_b
zYVE34#0|(<f@$sNi+-F0D1fVL{Y55(Li&pq+J~80_!nPVg<cI+adbB?@aP}rq%<7>
zp!uXuvBn%iE|BfG>OSky=XMd*^LK=4n4>gg=rnTK49UX{G>Ci0iitH1vT<<iZ+5xF
zQg>EPRhIww5gL#+#sO4RWLc;%f@<sAf;e4nqo`?Xhoq)zZ+Moo8=<S81O${XR!Hci
zk?}U%zU1s&Y?-TxAmg)%iEr-55*P=krfT!>@K8~4L5++kSlim)t#t)J99ciRLv3&S
zGDLCcHxA#oA0DpnO6yeU9<_<HxM2hG@~cectM|9(M*}3^$M`{A181EV?bD|nsu<|c
znVATIoLFc`e(!4-@Srum>JHsvY#7l)1OD$NqqV*5;QVX}bnyA#hY$pEl&6OY72)LM
zj+6!l<t$8R<H^&71wIQaRrKcSsz!3ldZgK6Wu#VR4L9zY*&!M>2huB)c7}&gN=lAu
zK-a@=0!*WV!r^J<;RrJkQHaAKSNh^?eOLIyLoh^%9*0L6qt&n(QwB;wq4vPqPUfjU
z`X86~{##&r51l3WQTqoX9HCE4PS+bS9Med+Eq(i>l)g5NCy08AySmmxM8)XnkUXQj
zR6>Rd;a3;uzaRj9mLwcEWzXA26qMF@EhnYVwSCa^k--C)7}&<#zwLaY%)zcTA2LD=
z1uWB=KgQ5OL9k^^r>dPetM~2iNL04BD@vVCkUh9TgIO2n1oYGepr76%06;8nd$l4j
zAK%WqVSg&%aM=}mJ&so>IVDKg=)uj*3_iXJ2eM+QzCQj4HkFHrkb!~-yZ(h$qF?6c
z88+5lupo>Kp^;O8eHIaa!^OtN;S6l&H<7RV`t2L7{YEDVxaoYb?n~^1&3t}-dyf2<
z+F`ZT95wzh>#^u(Cj@G0WJTY5W|2>X*&rcO75}G0?SJ38OYZikKbg&ts@#IkDyX-Y
z;SNsyF+ebrhFgvI<>SNVOB^Fdbtrgu5P`zJKR5T8BsnDoTBT|u$O*>tWC<oguBS5~
z>T-|deCz4B8rc`R(|bh9;*0ViOLb>-Ypd)*YkY?vy2-H>_<cD=TcT%k5J9I9ijhW0
z*ql*Z%$hwW|8q<vZ(u-LR$i{Ip@CwEk-Mc(!1$ycNL{dnv!3P$0x`N0<vU6Qv9VP?
zoEE+<dI@v8VQW_##d8GsICMS2-LGELh+GZtG+*nB2h%EWqQayZ2O^!dLcmZ7ZC8Id
zcD&xM8QeVtO+IASm<@bdeLU3<6YFA(@!sUW-|X3VMsM=p5$61%tR{k7)v|}Y>N>gz
zO`e&N0j-d1TCZ1YzZ|juyn+Dng|G8G{dlt4fU(hj%ia!oWswJAB&@(E33|scJ|jh%
zhHotjs(brb^;xBh`JsQB8H{RW0%8>w<zq!KT-VsnpM+454%*t<sv9qY6jB(d*($xr
zrTpX=s@nE4y)Sx<O$PoHF|srF{T%x$iAFHvL5BBz{=oWN!qE|Zd&eB+?9F<I9ME0P
zAr{qOr?V}*(c#c<JgHV%7BexyPRqc6_PnV+Gq)6y@;I;C>U$fUz&17-ri@)<v9+ph
zO{5O=OA$o@0)bYXE@trbDk9f0Dg}&YPhXj={FOF__ARV(F1gl=G)Y|M=hM)9yTZ8A
z7r8O@Qv2Quf#G);qeiAVCCgrF+Xt+YV>mW%9p&K^MT2Bf-mzm^4^+E+(G7ENvT#Dw
z*SRrPF(R+>v463O%v&A}Yg+yvlnSBHr+l5a)BZXf$o*j^DxeDpw4(7}sHgeIt2O^}
z*3^7$#jfVdbz}W{XGbB<@q$rUhaWnsc{vDFK=AKQjBRh7a+g7YcM_$Ul0Y8H|Dju)
ztY{FU{pm^r#_@(fhH=;BXIA}2MDdrAYM0Xn9kclXf=BY}ZItSsL)WdUwzHd;u`}n*
zAaXxw2nMN?zdb8E<WEua<)9rUVuwfI{r@F+oVUF#-iw8@bUo4W@bT<qdx`a%zg+{!
z-*${IZb_<SY!rz299~IPqEHmm3_)$@ojA#~Xto<c4=*VKz9+P(hJC6*S9T)L!yTa7
zW#~q|W(z!eW#ozoHJwFJ0>6LEr1%C@lYWoS{&-)|^Th@x35o8MLn#>5o%HPS(Fxvv
zJj^GjY2yj-wo-%C!0RzQG11TO)P^;h#v!<KxmQ;U%pb~ud(U*p9oe8$;I()<mpO4N
zn?5W+!2N)bm?RULT<5cP$aX<paPG?`Mv$cBE7R)3tsR%&gwpfv;r`{7qSM3K+y9Ch
zQRiGk3A<b0(-wE48FC~)`x1{?a>tX4#WTF#@bEdVhK_RRM@69QZ=E)YbstxEh#mw?
z8gr5`jVQ>=%XcRi5lE%}4Ft;<fXwBt{lTSWF>lxPklLU()79s=<66fx<`Z#eL=4fJ
zs9Ex^9((Te9nL8`^0DjZ)8({_IgLs4$1A#r5!KFwij$Ft+l~a2>*C2t@AhcMo2B}9
z@9bY}?KGcv$~n(#rR{8-KP@CS<u;k{kq6v}8LNhNjK=f7KC(Nu9tsgghFHBmK`&Go
zMnldZM1Xfj=!d}&i6k)g7c~)_o0)NKe@N(pHP}s~MN$=g5g4<?0pwLwVEg#M0RT;-
zqMMx@Z70|#OPvTRB_#Z7?uJtiVk^xEPtpDxe0aNBrBziu_h(OZ+LZ?IfaZ(d>x<sl
zYROARPLHO64GHi;tJuMgbMd0c)b;NMug&q>0B%5$zw@nlVaLIDDFMzSMde%Wt^bC*
zMn?b%RPBl9$BOs|_YvQBhE&aV2HDaD-H2az#5>)zArDt+i}0v|ttQitOLqh8b93{B
zl?`NUY?Zq8zHle#QRiIm5WvxRDy68%^667D6o5sW_0((I_ws1BGsO}xJTlT>YwiOG
zPI-(7TlY#Z0b6H8e*0$e?Yq`PW6~F*prAXtgR)4O*vX+@6nv8{I1~V&p}|AIdDGe{
zvyPj~=c=FE(e2^lQnKk*soE#6kxa}VHAb$dV4y=f^EtO9KOgDva7WdzJ(}@1;lKK`
z9dg!{n3EHk;#2ZYGFe#_++s$HzXQb;m6eg2Ma>5_0TOnKB(`?P004%_h3?dghv!NF
z!^m>WORg}LnAm3Hh(&1eAs{#-V@2}3O|HfPpG}{vM%nYu;`u)44S7=Z4Vm2k!V6Od
z>w15(N15L^>dPqpmZl`v>%+s_wS(I@ug<2N`0G8lBlow)oI_p)I)<D}pCj92Q@%`2
zhm~)^0ZJJHP=Kkq)e{ty|KseBvKvQHyzbv$RD!z_#9uEt9%gd`Nv0I1bPNN`yHb{m
z2ls-(-@nfTg6HNeem6D20LcAL0{{NCyayY9{5V4dW{4?qQdIitFbqL&9KTyzFTWFq
zRD%P+??{}=+JT9Or?u3!PswM$6mGl$LCgub3v!v3iM@Ohe>(%0j9Zd8XXgL@H_iLC
zpDWdH@$T4#u~V=Ez~6K<p#X!oNS;7kBY~bDAW-k0Z5b3S^ZKo`wywCHAr-T}Naaq5
znYsD&!unR*se7xMq1LPu#Uoq<RFi7fu$;X;>j(OuG%Ri(0O$P&zkj=QzQt3F_N4>`
z!WVeo1rbkLZuB(P>atoponJV(JzTgvKdsB<9Shaf(eFf78^_6!cVM(u?aci$OJ~~)
z-j7X4Aal;#5<-U&Q~e)qu}{klLPm;4A`}l?)uV8tCieOFsv~uwN<ZRyGB?U9ClHEk
z4a)TC#=w5521&okQO?H)kKFGhC?B3E@@Bp5tv7WXY|;d-4LYZ?f4y-ta2wY#`H;!^
z#TFf(LyUr=y$fr1SIfC=^<gtC?%_HmNZQqPMld3x=S-NL9esX&zVz2G85KwEE(cq?
zBQ;IUBe3PujlqeyGhvY59UTvEgTy7{Qo9WctYr7^!xl;Khbg{34^nvFoB>6AY8JZ>
zMn1R7bMw4XiykLyZUB98aQt!g+mRsI`%p;V>o?QmsJBN^|MRxDh?1N@a`Csvgp0NF
zwGiW%Z7PwQ&2!UwJ(tS?7Ux5{a&_Yk!kRTQuhp*%ug|PPuMii&`n=a!^N!`l%l{5E
z`>T6BCw`|Z-<MkKC^~(P4ZZJQbe<gCdXlx$IjPXR0`Bbq?V`+08=f>derH<kmxFDI
z${$b-hnl*sm6fuIMOaZSGq(iL!+dfO0^KmkpU2OgNBKKpQkG!{3O6(Cs=C>l{7>yM
zxUu4}dpJ>P=He)kz0U0)P-m?sB|ok_sPRWIn*HYCDY&p8*RISEt$@sXkZEc0rYGjW
z*YDogT^_f_CnvjprAWi()Lu7MR%SaoCg!ra0{$#QJ9kbGxvMN=77}ht%*vW`%A6_V
z(`Cgs@L8S-cF4%oS5sF<lf+C+$&UW{ceC2A6pT9LLU`cgZYU@7g;!`rI59Ib?BQXS
zAVru&IgU)=hjCm{xems|Qg6G+5-pS>{sh?qA7-4SQ=L@^2t*yj7&H7QL!@*_ITQc6
z%r7Athnv%7dzf`zaH{i*9y%iOD|n9Q45?Mw*7jr9_Z;{S=?;-Q0;o441&q`T!q-_j
zVIWxw1Y~S1EG#T_wRfWefk0f`_k{op3kz=G9aexqprlJEHx`yUBHs78yu6wZn^p}T
zY=GbdK6n-P96?c>*<vNqhDIzbE>=t|tOzwJe^lhyve0!M-M@&<9S@;D3a4qQsVUH<
z-vK87_oagT#~6|em+0tPd6Hb7%^eUZ66gJn>Y(wQBsg`Ems|^VTrMl^i345`sFdWt
z4rTm6l3rBx>#90V=W^JTat8wY;!Hz8AjW=doNZ2aUaU~e6C<ddK{{$5OzH0+P~?A3
zBup1&A?cY3WkgID=C-;a0Rmy)S*oCh)6JJYkK`rLvAf$HU6Q&0^FQ<lQ(LR8G)9Qf
zQ|%>*85~XY3lv))S@Q*mJO1xYV{iY7-ZH?~j{p`iU6h-}9gVu6bm)DSaOsPcvtcDK
zAhWE9>3kla4v2w3^@M)`D(SM(TUZrK<H{fw1ZP#a>$2^s@yCJ+2>%n{4_<DZNK*hj
zr<<&0X{Iz#T?O3(1_T0?F3x2|C(>eZ1~at~<vXHd$q4?7oRd0}R%tvN5x_a}%&iQ}
zA8?|2Z{@bL#1DU^BLIP9$^Kn9edLc4iU$q|1mOIq3z@>-CmJ9w`GW)SKcfDV>;GQ&
z|F6sc%P!wYkKi$<m#6`WKnZMEL;xzF)l_1><Bh&x6IL>u_9G@7RxqG%DxZXy#}LJ1
z7Q`6C#fmvyg9+D7jSNbHN@0}1+(bc%q>|tTl-PC`5ly8NgZydLLuDF!SoNups9}4+
zhfdwWrUz=gaO?v}GS}TEf9VU<2WupN`#%|I`!itEfld+^3;;~nZdQP0eXy=!aCUyk
zFab7e9a=KuZJTj0Kr+!Jl`h=^1$P`KZ3s%{zMJ!5i>hF{r$z#3C4&oyrKQwHC&vaz
z@cZ^jVd%kP6A?4Upy6TzU|OL-ffS@r&|}GP^qI>f#JEvSB_a7CAlY{ZqeU|Uw7U{F
zRp&#F=<$SATb(PELdu|%VaG;3m_L%Dd>9(x^a?uW<Wc*b1VqvngvU?8E5IbgK4C|b
zX+Z82IFr>Xgzp1X;6sh>r`K>U##}16-cNO&O;K|3U``*H=u#F)V!?KMW+dhvO2~x8
zq&2#4?ZBusi-s_;=aM>aA11(7q}vU!*_m<igHbi^TatsUovq<X%kImVr*)@Eu<h4U
z()?OPgggnFFaD&mlQK=`-TGVyH4jC*AQ?U!ePD4kz>E6b-#ulL+TNFv6$2A<w3h`>
zP3(z^0(6&!24u2Qs^C-JBO$dyeOvhTFjUNLFLDrGkn;*0*yXBuOvK40^EBHPVR7uD
zMc?1epz=J|zz>0)CXqd1mWGiLQ%^ME9_nTW`=_M(m1cxE3}wGxf|O%%Vu^cdE`KLN
zmDJlW3P*>dev72sJSoTG3hkU*!7`neTT?kiy0)*dwWnbSWZlfkim9#!9Za|^?4pPM
zfojX*dnkeUX|GjOw%TpaxekA@!;ry}=U7CnrM}Bh+O~5K5BJZr{X|&Gp1)`ep7ZZ+
zp#I7z58@i?r3O<XhER~p%+~ILaNZt%qdaO!>ti?cId1Nbqqo=hMVF_3zKr8_Nf(*;
z+h&}qB%hd^cZ8fp?qqGE3WJr+5(!6*OnHaOFQhClV6fd&p1XWGfJ7kjrzIP7B6Qfh
z4o$$G<=9hsyj^3TI<V+Rg)Gs|R8tb-M$DL{P=H$gtAv5-qHpKw;NhkQr`rBd%B2!M
z01>K<qiwYNI9K?xhn%3ZZYd^{BVOhVw*EX&kB4e~1&5gQ!kT@;hO(gk-SmKVhJCK&
z;B-o=9)NS+RGd!JN^NyFT9n^|iU<$clK$pk5;n%3W#(lZa~4|ZfA0n0t<~k7Jj$G%
z!XY-ZfSNd)a*mu<0T!y9p(EihuQ)X)^%d=;NTatm&d1mJk{xl<8?}vgKXGI|{0%0t
zo8;cvo3Bmh8rfcC$Jwq#QoAK=#zk0VmWIJXBkO}!|CR!Ko)u2m5+tw20}~Z1>g`ZY
z20>nPZk9a*_Ei!J=>8pycE#AU@R9EO<Abl;N<xPuk);q^$-rYhm>4OJg~qSP(_?#u
zuW>Bw(lYwXbk>x?2z(@=*MaN-8_Ve>;NIRe8c`{?rd!_~T3!8hph8LUJ_{bI&RQyq
z4oX`?)!Mo5Uqbho>QcshvO-33obS%3#xQzYjfat;A;ErfWr0V>YjY`Bjnn&Kx!TH(
z&a$U#!i|80wpPx-#WQ7{Oovn9iaJ(TWGrvpWVhtnAH68nROp}XhYdgD$bYfUP9P?}
zHy9&`zuL@<U(Y?BNDI}GPlctOf~<27w9d{C0l|0INZ@{%z{NI*2?>)SZ?7GXe~EAu
zh;nJ3R`b!^wEl(QGudPkSOv#l89z{`XW0*KXRt~J^p8N>Cj-*<vJuCpBxn>;m1=&N
znWVD5M3OYP+b;QzMe}z#Z)$!gF2MI~@F04yu0{c?HrKkw6Y*EX44klXD<wCL*D=ye
zBqPrM>@E`6Qa40J1G;}kMFFZyVYio)EQf}}mJD@Ie>(5qeTi^v7TMyi(wh&F9&jXO
z^DvjJBI2)%?@Rt+NjrEG8M$;ewP|6UXG$*-OgmD7hBQt_EGE9!|8$Cu8!kY5Gw;ZM
zF)ha5NakfeFM{IODuB+-kZF?aCl!X|f{&w_5|<wWQi(MUvHmKoA@9rtAOFqwV#ZSV
z4zF3(-Qc!m#(h(*7D4XgXHNd1ubJ9IW&`#p*saoGgtR=?LOPix^*Dss6;S0QMDSBH
zzs#<&2-ernButgPBf>j{vb($PT55Me2<3YjF5sf|=&9nf+ZaEoFw3KVGY1qU#0L$Q
z<|Ja$pmY+$iyFj)^c5k$UfM9+{cV$;?XLex(p~!rL*<(fC--c)Q$=)N2Ap>P=XQ<{
zy6=gNmIKgBHsv1hyr+c?^j<k77F)F&0t;s`mSgO=lZB6(Z_Y|P`g``rHSFs<L+IW!
z0lCF*mrLOr)^R4{X}F??D>ctM1IF=+GK|*N0l0>bWFaa(7c+b8Cv2dK#Hln#00Rr|
z>RW=gQm#cWo1K}<BQ=RqGC=Y`6rF1=KR-4<1b#C+1rw#-J|wssBVo4E{3V{f{jvpy
zmo4c<_LIlvY}k5EB=7Zj^J%i~*m&bpCr5ie6*-?9Y8E+yL0On$6}AjlBwPVkfz?T%
zQetA>VRz#Wd;9Me6uFNg`8Jz~%oW-fn=B6AuPN-SuSMPlwM+1d_f46b{HUY9KJcgo
z(T|*<AO&~`@wPXt#V<ArP0evNt_x&Xnp~SYsrJPPTCTnp2^etBAGI0d{ydw)L@6<g
zQZ!YCQRgw!rHpZ|1N3LK_c?~%()xS$M-cFPY-u*Qs%V+hNXit($Qj%9#pZf$FEqF`
zo7JM#YM)DDO_2~AtmR7*?F@xYjM4ru<@Sprxt(9l-_ADle0IykVKZl?y(uE;CSVX*
z`o0l^QZm~7lI+czy(|o?hzsn`*fHfE=q(c1{6v~HD}gIRh!3Lv#(Eb&j)9NOM|O2b
zi@V5dD(d3Xd>9$>M;5Qkcq39r?6_B%z%Pn{Zpep03gv>G%<emEvpbCEKycK)s5&rM
z??az$e2Bt_dlJXFsp9Q5L(le(+2}n_GGE-dPIX=wzbiaacE^EGQlh4c*uIz+ZTY}_
zszFi&yZa*r_5q|dPyq))0pmc81g@!)**)GBB~{NB-^H>zfzkR*#EcML46%%rP=K|N
z+H&c3!uju=TyU#%Uzvdat`y5Boc4M_IH(#0Xx0J%zjR+ZgG8_bU!P@62x|sJ*`Uht
z)5V!1g4oJ2&|Kd=BD`}oCL|yNIsSWtsbgcfK1Xz4ou0Pt-<<D5KZB<>wX>((BjNx3
zrOPOl#YF2a;9)PkHz?lZkzXU!DlKK)imu6L`!Fkfs@t^|UtJ06(P97E)7-yKr}H8m
zCJiT&(L<**geZw=lFYhB)icLItI1d9?bJj@awn|5Ve3p?O_64{DUlR|gLj&qcG^8|
zXI5k1h{rd3C>4g1LB2jZj6FTY#fllh1=Z0PS0O1SWtSFz%CPEv9m|fZDYNKYm_LJ-
zS0_2});SyE<t6BRJ40yTnU8ijf(?5U315!b?9n|jg*n|$)g$bpm#PHS7w5Z<LUDH5
z8~MUMC;M<DOEbR9Rns*UX8r|vZ(qQ9=ZKIs^NUPHQINGW3wyIBgEY)EVQ-BDZX`T1
z5}TornD|jISeTTt^i!V9b$WEYns&){^u5r<x+6l>XX3C?j^CzIG5kD;&?etub!odR
zxp;uYZ#l3j7SPYqp^ka&J>Zm!5lMn0eIo40-b!!jzNAlZD9=*TSq=O=OJlV)=@qDG
zKy$=CX!UfiY<gNk_^G|A+QS+YC#R;u($CRHF7ti)?M4GB=U!2fbX*TdpGansTcu&3
zrKQuh4Mn4)L`0B60reIk^MA9OPbR@Bn>|lt=>D!#5yhU7;coe*@aVWc&dr)VJ}sWB
z?LzRQmdlvtcx`@%Pm%Bl`#hL3oRM$^oK)Ryu(k$?LP%ujFeDg4mwS!uxQkaG*PP4k
z)h^R8gfH$?gsWN@;TMf@!{%U-LN_UhVVCgElgm+Uwu(x~gJl}wpAGnfGc4h%0~aC^
zFq)?v_c<H|Y%)T^WRTJE8_c(Gg*$8c@Cn8nsRpr^W=&EnoxO#&v<;~oxv;X)-a|+-
zxzjehTRfb*+#+XqZ5faMBO4i>q`g?MRZZcs9p|tfJ=IhZCugSQlpQIM0#E>~;KF1f
zkdV`=OSRJ>)mdD<jBy69Xv1;%uS5i$dh{G_aoGJNV^()5{YiFRciQY>$g0f&3Mqm>
zl(6ag^>C<~;hJ%+K>8nn((hRZZ?@Z=X98GqAC6{NKbKI(X*-wGw=0S73RsP}1(QAW
zXdyNG>Y=vk#Dy#4=MhOn_2Nva;ZRa8Bx7RYW;v2g2CRgn@d@W~8Yi^w>@o*F`U~&v
zFI~=7)0qUuH#Nxx2MZ`dYZ^wBF;O|vVWCA39>HVE2rB@#l|xt>L~czH&ferm!lXbA
z9)}O7$EOc{`lrs15n+US!9O-~sI0h_q02a$JZ&E?jWaJ-W#J>#gtd#e#d948h7e8y
z#c$ywJ0mVYjO~|`Wa^-Sn;(T23+Tc|>t<0=4cNV*j)dNJZDiH<hgaiTm~iLkaZ(Dw
z^A^`@uHNn<ca|h~1XpDq%?C9k4}JP%0tPd}I+FOxFZ6jh>fYwMl*m+2!7@jphZT+s
z7pn}0&Tb$@-D!`_-N_RHy=gyc+ay@TF%&AA*blV%UbLsFeJb{%N9d-pjOhz1Fskif
zq^6ZN=<j-sS*9q|$o!}%Kq^|~^`cLH_DknL4U#DGh(h$X_$DtQf5nm*XcIGCL?XST
z%E1%oLvOE=6d9yG&A{(5hCYEED4*Uwt^jd63GqQv^7wvo=SKiB!Og#QS*9o6zYr?3
z*I9l-12i^x9c|`@&CY-B6@11kDHEl#N6U`Z=c>8abgE9E{e$WKB#F!QU_*yY^`=nA
zMn-I_FTlc`rN#G)(dpoY?8gHd@dx@YyhLVV(Hb|Tx0=S6a1v2EG&saW8TLVWT&9PT
zct&8mPO+a81&fBjFTt@EJecpw9i}~FIT4ANa99P5kB;Xo7S&SCcBed3bJLLJOXIUt
zP%lXzv^oee)Qj*_!t=)n^D3I|b?CP(-1Q<S8~2gqk*4QjxoMZO7*W@)i9%w5&ogZj
z!K@k0;mqpcCgPOpAbIG`t|v>Q-C@>8M#W&BVV2D@ONm+4pf0`mEWBWMGPU1Z=f9Y$
zw6@ft>Q{xGBuPT{^JlMftJS~-1(nCBPM?uc%HVM|S#-TR?;C0VV8TMdE9T=wh(^K{
zU|!~umLI~SXA%GSLh*K5=e_D;vzkW^=^k}>xXHWzeJ}p_f;%=E{grn{T=Z{03`YYR
zBoN%{uE}3Mtb89BkOAx-AkSCd6*tZ=)t1qKEFq)VC}4luk-=RkRU1;n94|j0W2cYC
z21<rHey!Xfo7U~Gk-(*XP03`*{EbyEz@ixZCDG0wo#*EuElSwBPU#O>YkxJ3w#a1S
z0Rnv85uck8Gba<aN*(GzI4%WPOBFuTLsk^+i3T&rRHS6uytOKG)lL%dwZW49rlgyk
zMafJ695T<^#jX3FWTdhQYG2@1ylDs{Y`@qwo@cJRw3U}Xa0)H&cmDm)aaLqZli;q7
zX(}%a<HK4Ojt>m{3<J>u9E)FzxY?Sm8{upeuvv?{O#??<sM(Dz`qJ2IdJY$obbgsY
zT=>!P+tf8H<A*uhl71dSGZTvpXK%9o*%QzD3hE{3gH}fb9b{LV5K6d^F<8qc8!{L^
zG;s_`VTPYY9|iYL;}%M#`ugDsWfLEPX?ASeSfTW6KH&e&sP%7zLvbCK|B7dtif{&%
z0;HUvHyc4k!B=hSKATaWEik=T;J?dp-LWXb#=7Qn@9VBgi80nqq(Y=dMVFyQwtG)7
z%2;S$A$;8N?&;*=b|K=*BQTG<5E^a2cTlvYdNB5(xhXYJf~(OMFZ=F7^bCoMy4Z5K
z*(9Uso>Ev@_EQDoC23?8QYgQ`SURoQAT5q#y8wP18L`SYrlr8%h<0Q+E#)I30%pXb
z98>cG0H^>~9W(#^iOu_Nr;F-p6E7mhUt}#VZ7NM63z9}2q@@$mB^nerol=#fysoDw
zH6)A`+Adq}=UR^VRwQK5u*09ub1S!n;0&uSkWdN`f6{$S=TjeyY0+lQG8^pIB&uCV
z%G@{SMHwb#pmEFk%3*9RZQd4{{25R9+CacyTk=avq>9{wzhwfhU!F}cqu=ot`2tvF
zt4U^c0drkS;x7TQwYxfTC$Qu9Uc#;ACFm86yJONqfnA+2d~Oy>&S&oNt4PUfMTI|A
zE>TdjnmCDJC4>L!Jo0zBT4-aEAZN;Shg%?ByN&5`4TTb=D5rm8mPVEg#)YF4Rgm&c
z4v)3epE{gVH>%#2k46x_T4k)%nO@D0_`R6_(@3sFL-J#LQ<OaZ_yy%nmmIawd(x@X
zBL|=G$4++*FUngVO-;{niC7_gk86is+OhZ^6vA|V&fB|}DNFh$Wt3rRV!U<GMIi$P
zO2Fb`((09|uhivP`+At7Bp;8`bynn^3GxxN92@1@+2eI7b^Mg1lW(%Gz>kjCGCfn&
zw@b9fUujCnSgP$jU2#@JIdWknwG|b`Xz*Ted{78JFDop7!V`f?kcS|zc7CDM%W`lZ
z4!p(7SkZEiySm6&Mfy->L>xxP&6dum9!V;>+eSAn+#|%IJh&TcZ{2h(pn1~6fRMf9
zI|tYF!S{Tv;}MxXV}6ajN7zY{pW3`Y=pW(}f2mt?bC?s(+SO%Z;Fl|4PYa3kBqJKZ
z1~_%V;aiaiLWc*BjLRwFF3I`ae3S``QAHP;o+&afnhh0Pw$xSb6;#$GSB3{Db5G6u
zGMCFCX;W==DP0mRlY{~=6XP*vK&8-1;L^z#AR6xc&*0vujmEQuGNNoim~re;ibF}*
z|35a)GANEGTKl-WEN;P_z%K3*Nbm%Af=h7M;4Xm#*Cj}BcXxMpcVA#}-r|4X`|W<)
z>e@MT=Ja!(?%!0`U~_ZS!d_y@Y#T-XqD2WvOqV|qQ9(+H7h45V@N56uG|dl8=5?n5
zb+u$1T?=UF0ax&nq<+EJx1g60`Z%tJtUcI~vqFMh*1LawC3H&;_^SmAhad+=jqKmH
zmEMXp4zMJ+#n3!*EDFbe`tYY1HvhIwYES_TBf-_V>_sa@ARQjK+u~bkdE>qNoehrs
zeBIE&IV=|QDf8Z=1HYQh$e<pT^+3DIHVKi3A(cAR;rG`T{ei9z*lw9FCI_F1j&<sC
zE);9nI=Q%t5!ZEuT!D4o@dP%AFe!BSdZTF4#_#-0@Ocg27}lPCGcW%con+`)S&P2w
ziE4yB8sqJ|ZDjF|^ur;RE-vC`gF8cyIiT{ak?aY5jj32Q$9jF8P6p&qv>4PwPbm!H
zge75KCyYoMtu>N}CHYLddSXN@?im#M5@L5c>b&C+f$WwH3z9>Ti^g?)RkOc6`~xX%
zgoXgfS;^Kez(IX11&TMXy2s_iKe(*$L+IZ{PlpcYwJ$BWDp;Jx-z1PgsK(;Jj8w`1
zupqN~g%Ex@7FLn<CXRtw9EIb^u<Jsc@hV}u;NR+RKW7=Hz@i9+Z6t&@yJZ<ZR&TBA
z3E0)bg*Yi_eH@5<5HL3_#GaTgc1sR;W<f+oTU+$&jv4+$sISy!Xheu;G|f+Ppm?Pb
z*KVX^bZhw$L7#d+o^Z9Yx`jWTS^|%*2&n@*q8qmdZi?x;qGEE{EGH*Y1pSx76vpq_
ze<_JaBEQTW>wnRpd@${JL_<bXXQC0VIMtPT*q^Jiw48CMTnx(e<j5#hQ&|9a!ECBx
z%r;mRiIp0ks1o6s$e0!mX^9TBoF30&kW|fgwK=-L7uih38|E9ix1%FR30qpu7-4@+
z8Mg++3rX~M|1&R5G3lGdAYs1xDt9b~@NMdE=lMLYJz<;Fs5FU@BQLnJw^AG!`OL_t
z$!C+--Y<a38TWm2lexiA3x^sFDeMC#k17szMB95k*Nj1?edf6FnH;o2`u*ziCMp{R
zG#y{N?(jLtIUza4+Cj1(bB@I23uBX%u(1feaV+q;nCHADJACR1zcCKW$^VAa&~);|
zPy_wr*Vxa@(NoLIX;;J+ZDrEvoy8!Lx6rAyO+ri@7?F#{r3v0bt0*i6*1B1SUtoP<
zm_oqTqp>5zMeL~*2Y!+6YO%GBYkSyw3!9=tzdzq|Oi4DOysV<^>%5q6$SV-I*Sg;2
z#}#|g`S5jH_F#Jd^_!hA^z%ZvnDS?-i<3VH;s~9$WueJ*gE$BmPyJjNr<^Dolmgmt
z4EbMDezO>_d1?UNEt$&Is|q_~+7Rv3_-qaj%dw~SZtge$YRvDX8cje_!=w1VsN;X5
zCug}fQVt+9yJgX7dF&{m!zE5;GJcfC*BGxek|-w;IO1k2;8H;LZ6t)BV@Io=_KK`Y
zMOq9Dmkcouu>3s;=W|O)Fea}0<KDd~3XaRU8dcsx2g#>&#Du#40~`t^fQ<q6K=~sr
ztqhvin}ZFylM@K<Zm-3N8W+wB-ng=)-R16CnNCPwkR|;CZ7gaa)YMN89GqXn=Fo^q
zu)xBvb=XD3sK->IIb{bO|EL1854josM3_zK0tXjZZeR*Rms7;4qF#trcP>lGH0$0~
z6Zmc|a=(&z(Ir#!9meB;-6N_-rvD;|DUFK_CkF2Vhw!39w}rpSv$V)+YSM1u7r}{$
zu8Cv)76U?X$d1`B-CnN#4@Q2mBoOD(#<K+e-}9{R6rlHS#!6fj)4nYBJcqhdXq1`#
zbNBTUfGzz;*J|l6LwzgY@7dzEz9j_Q1SYA44^XH)P~+Ws@!p0iZp#E&$cO>`k$Gm6
zdcqCfV;%qtG7T`b<aJ4fLym)OhC<{AE>KVKKN1F?A2JweLN4TNPCK_h+{iiZ+CP<i
z?rdl$56kCaPf7m~NHE-uNt;tVB-F~nt{O;<5-&}H)&r-y81XERFOA!M3Jq&7mDr<O
z{J7i6+~I}pCnD!^-pab?(GyqzZ+2?}G35qH^d@su8ZVWu)A;j7{aoRU=n2$=q@bh0
zsI2GYmFK&^MnpgW;oW%eCJ>K^kRg7~kNcXKZgn|K3N%Dq&DypF3Y!ig<a*b~$xl^P
zI7CASZ=1q#K1GSfgeNqwS8f{02ZeVdhtc51z-bfsj1VpBBOU9|ny9oClX#e<Qy7v{
z@vmA6PA<AVF3fFBz9Th`2}vf;(QyBiP(N~{o&)pG&(~NI+!1iXr-Gz_SIu;?WrD>_
zlc&bmGtGsKSYhmP?fp!Qbsl>OlQzWv&cgxGy!xx)#TBF6`x51Hjyhw7p_Qj2TfCPQ
zzT?JAnvITb$es5X7n;S|2&Xi5Gg^~8v26qGfmH$sLxvk!!Bv!$tulMS-lbLuz%&#Q
zT-jqRC!N>XL9F{DO4NG9Yx;00eS@snbX=Dhu)YUugAlsF4^~9CCk|GLV*D%qEE`i%
zsJ^K}2j+Trq;9X!{2P7)QDMzv=2ikV)<fnBoG}PMkAvu1dB0~z019oQ^IBL(hDnx{
zRsC@fFd^eG5h1^so6koka58n|1z*13o_3V3o6k^U29unH^ht^ttm+tpR;VkRp&rZx
zlRzy_0tu3Pgfy-#Rv+=$u3Zaob2D^)h)_|-tQNlc?(?ddy3!2HD2|P85<TcXgj`sn
zU=NH4Yw>I#!Nkju1X6c~hY~3f&=3Q{Kc##o@PQEOw7Ar|IG{{xscD@_w5*9|G^|R_
z5?Rc+Qh-39pRmF&P*R0#LDZT83tAp$;a-U(GTzVT8y&2qgiObaVgb?p&bv~5l$Om~
z`ji@%STf(+5W$yS@5OkIs`@imQY6$9DM8Q#q+qgF`N%xyjkwk;k=2fGs6MBvq80NT
z_+^j*zd&iIGb2@da8zO7=#x!E;9+_N3``4T;1%bu5tv4}*5%mpNbRHOREt9S=(er2
z@w)*9KM<LeSkG@=OLrN*G1c)*gzVL{$<&#u{-h&r_r#b|T4)oojs$P2snTDgvl!KA
zb2)o4m@A}5N09u3jZ2nZ;xm+(!uZW6Evt1X_S_GnME0*g^ihL?-j%eU(JL%-C;>G*
z){swC+DMC<R00e$=%<;2P2l7N(bAav+f_zdIVcHjMMMY=$qS1G*SB-HV3H$7a$jm^
zt^2BEDDlNoaQ1KI$;f?)?#WnMN)Zsjk3g-8ZyqRz7f;uhb^PISGf3iVCoMJa!ir>_
zMhLV1(Wlx{6oMoTEM8Pq0tP;N6A}>eYj>63R+Z-HNZ3HD8+|pqz`0kP{qwWsInB(1
z-IBHH4(C-u9nhAk7PR?E#$NoXL8A${DU@rf27|d$a1X9_Vmdvpmgqoa1T*~GmWHd*
z3=QM*S(l+nv`l9+<VQF~KH4~842xSP`C3*+s0QX3g&+f+XI!#2+^JtaEPze#C!!Wt
z@ek4;6lZ51O{a4_qMv>v9Hu!g8_P*%-`+u3^DGp;{5B2pi?mj6B&0|>=TuBI4b+WE
z_$f!Q|E{oj|Bv<G)X{W=Xj$0?6Mm9u^c(Hzo&1b*^~4}&zRKWbqw5WCJc;x$#rWWX
z5f+1-kw*!D*_3WVcCKk<Y-W)72}5hG4D%8JMv+=T26br@(4(wD2r=Lnzv0Lj(|qv;
z2$BmHrx7TO9i~D|0?Ep88Y07CLJ`5ZGw#G+w1dz@zPw(_*1UvJu2ymbz>`82G7+WG
z{I&?NKVjvn`TypBYfDUT%cf|Nmy)u%QL{VOwV=_dbtUCjFEh3dh4Mz#;D%tohx-t<
zp4dm}4G}P;A)RfoK6E;gtBk-w5RaYSwgodiMpo-z{gIJk8Q!M|+<m#6Z8%{ni_6+#
zdhr5C&P1ygl8IZjA&X<cTzLQNTMF-n?}3{_xyoK$Jp!t%k&9@`=4pS<41ClWBLi$^
zHf%>{IqRpe14>(5*b5ZKWHfb=(UkWwo4jh?cK4eBgcPxdBF51L&U+$^gsZ+Guo5`b
zC~$NVq1Mt9I6$yN-&}n7r|`Gk{cci3{c<LXC_FQA4tNlITZc^zfj;X8?J|wgG!b<3
zn!VC`A_UxoMQ@4|6-O6#K61saoQg+YLW<aR(;wR^bl}R)EJQHwq<g!hL_S=h(DgW+
z3kCnz?Enj$%ny`(;>nPkfWds?MbGJ&-Nvb=PmW+=m!5VkK(oV@FggN^6Lb}ET$6-c
z`!|gXw!~Lg_<><?iER1C3SHznpBs@wu};@E$@({ZfCViYHU_#hZI1oN`tIey=cqzU
zq^zgEHd=Rc^Z7ed3oD^!hFj;-A#jS&c4UMuGV(RHJz=KTzC|4&Ah1DpikKtEKQm;q
z_5&Tc9X#S38epOl7KUzIml_S7JX9J8rvTp6#rw+lbB#u;J5jQ*NlNxx7?iG|&^-WY
z!2j^GXI^CS{vm1m0<@QZc{~xl#GA9!!#mX@O_IR+nE)>a=Is$J=4_cH>|k>7+uGmU
z>Rk8x=+r(-WJSPOyT2xgS!MQ;UzZnSQ@V+JyJslckMGkRYDv0!t!u~xbf!EJ&7~u_
z*Arbjcc4-nIEsLPB_XJH8X&|iOEaZC?E=3S)7E40tl1Bq!AE4yLFzeA+=6s{#Mm6d
z7Ic7Sr#lo4@~}9oU_|Sw9XcI*xJfbEy-DG-kak-bgwOoQX`icb4=@g3+9d{rhiXp{
z-%`rBvZ%#s#tF7Syh<h_;le&(hO(vlB&O?AQkWUL;Gx5$owGMXvz7UFwlr5%bi|&|
zPWVnOQ#u5Nivuv9G8<p67=$5?jLXe8m1#s<8UaBvuTsAh+6CC82}m<G6@a63T~CH_
zdGu`kfSBSm5dSLDceX%#SGLf89-fFc&0i(ypxWT6OJaYlh5+n4{>sA6n3JS|&E}}@
zA2}R7%G+YpRCyJVV}CbZtupHKs~iR}DulY<=360sITnWb4hxgO^xpKPA23y2jJ2pq
z&0nRIfbjeV{gpT|%M^m7%b?xAo*m|SW&A5kmsCz)r*gn`w8A}bn<D=z?B^~|LzQd=
zw!43vY*(5G5PnSBYD4oY$IrloXDa)4bv(~uD|#v!M(Y!26$egRrzE?W1fn(rUe6dv
zOWq5Z`sRZu1IoEZ_{bul=hYdJIx3M3f6dvy|Me!kND=O6S@M6+0^}Zb{$oMJ?pO}R
zd>Xr-&v)dvk3^JW(>deG;B5LQ)f48O;bGH40b>6Jkx^SIEK8u4GV4MF$N$eGIcv+r
z*2U;l(}~}C^LT8a<2u}tNrETSi$0v??Wkh@N0wE{$(+?&_43>C0!ozEC&aPFa##%k
z6LC$K*GU{1#iS2}8KLQO<SC^u8${B;$Nx#6%DV>RZ*P>PCHk6r+h2a%h>t-}CM&bK
zUFU)?seQqwsDN*#8GTD@NNJK<ldS6uMm}FJ_RIiDq$$S4?L(zQSL@I;-H6hieFriR
z?=W~na`zoFo9~Wu)5LTG5kXj(2i#rSb3YURPzu-N;(Md7;;xhk(9>4xhC&F#CEvL_
z<u;Sg<I0D1-rpEo(FA6-nHR9}>hzpL>3xA-c7Oj9QVV^%8#iSe1ZCg7I#gf%#P9IR
z1({A{|N1}+YUlgwXb0&8N`<g_9I%h3FwxS=NNf9=W?k{t+jwlZVc9NT^ty9I^%Q%~
z*Pty2d9Dy6sVo$4g($aNzEUC!;{qz5BjC6gc`k)M&Ggu)vw<yp+C{*|`$x_i_xT|f
z?g`?*<OzPBX!aste0FyB+y6;W=Kk^LE<XwD{-;k|B8lDBh#fxdgkrw+hy%mI@Jd>g
z$5!n<KQ{Bn^c&BhF<KpKlv5J0FnHgk_38)rTgu1;fg;@Sv{PDLS%_fc0@9zd7iHV6
zmd%JI`?^&}n@1IkGmF)xNr<cmI=&4cc!w$*V{yAa#1iIyO`EL(^{Yj%*_h*kK_#7L
z*k}K{a~|QyYMae_e{()Fz9pA0cqpg{D8U>?dEwO5C`>X_$W^TX6}8?#BUvi%zSy5<
zxadqpE>$q#K$jzt`1s(Y=5*7M(I?{`26;HTc*z7vOS#YD5;Ju4)cjy{^+44B2dB}Q
zozM#>w<8n={g-jRg*Xv5gNu?FX+qCG$Vq`u0sHWlIQ^`55f)NVcbV@PLV6U3;_0{#
zP(KinrZ`bp8wVU{CAgdA<bIKx+XamJ{pGK#M34$RemQ#ouI`N%%|dQA6eq<s;G46N
zJAkkzDwgYd(^Vqn#bzK;AncpPt2J4kfxz%hpTO?^pX*%yy`Zl;-H`q^w|;+@Kt{2N
zB2WOFI8@ru?vUirv+RV_6H6CVFNXq)$A+THjHV|z|9uGkHb|YaMKono{9$;`{Iwk|
z4g<Tus^`1Z&t?}}B1_m(^j~$<3ng)0al8zlpuCzUQ7lPVraB-|os^!k3M#X!X5k7r
ztH*ylM9$P}L(Ycg*PUSl58kq{b^mU}eSZH63q#zoVS1#psyq179*9E(a}-J^O+Ohx
z9u^x{?9oi?8VTLYvSDj|(C2+nU##F?DNb~1wT-*_amUkeVwt3|@2cK_FQD#E?<!A)
zzJ~uIOuNAk9IPMF;@HbQ;&4K*uDTD)VPQd1-|A<DTS`7QJ$ej0wlfHsa#_qi-(7k$
z<MyxPY|uB$mEzgJ%O<4AR4D0(mX!LmboW=;YL<C_A;c@XoUEk&&=a|^G?>>(qt6%8
zh$B}?Eloe=GFWR9{Pd3)jgu1D6;va%G~`}Vs(u$FcEL#|X3w+|XP0z4O0>v1G2T0%
z!qXhQn@xZD&$3M@jd)H7#$@Yi%4N{)kp9yEp2dN~Qq__(>Saw%4$h(dW_y>!siH{N
z`fM6*Y0{sye~^VcxOxVG!<8XvuTN92O~6b;-u)WOACxWM$m=-dU@jr5#5|Ld2m3Mt
zqDsl|B_gt+3WVEmG+lu>e+K_aB<VBGPGnXe9prJD{|pI|%`9Eg2DyKBz6Lt693rh<
zo$Ab9<ihpw0<SmgBvQ~J1WKaXEb)K$oi#QGdx}V}ppNbmk!aAZq4dC}iy#aq+q#QJ
z^A+I!vvIx_C%G-6;Kg%Fj7C(4+k)Qd#AZ~~CoG`{)6WYwS4!xrJ#xs_G%VWf^6rd{
zfOf39qUa9Z@Wb$FSt(pl)ROX6>RYf!j9ucvZ{ZL~ex6Cqffr_B+G20^)q)OJ5oqUV
zzKI`%oy&`imYGgQ!b6QBMg`3eFF(;jcXF_fwYE#e0rR5*f{Wmq3RlhSmIlL+E71Fu
zk>rY}qLD(pk&$P3>x(FV>N|_6$E$2TTQ!H)Q4jEpw-<ND%fmJ8<B3_@H>&UfQNDRv
zT5=gDfvJTyjPr69Ewv=W(Ss1sCDmXl+}-J9t6G9ZmhYXt{n6|08LY|*U|xjM8{1{4
z<U}|qs!!9@Y|6!z$|~QyjKh3o0>Z*VCpnb7rsmZ|KY5s1;;@rGcor;WA}*3Q%`LLf
z^d7y7htQFbq18HsC;^G^(=FQW_4mFO>9JqLCnK~yfg*3x^5`fseU(CxA!jX-iZMSH
z<u}IQOX>&Il8Dy|Ll}`20D3iuQNz2Qk(xkKPit4K3`f1FGvC`)^$M!$aksDX{dh!w
zI*snbV&}{oD$V4szK3ElP%}%oWv(RZOCnOcu%`)*x!40q$>(PJ=CBBLbmjDNn_YmZ
zcXJvl4Ttcxp+-21xe)yWXtDHi`$uldF1YX$*Aue>Dalvx<?=uE7MZ^3sVab}H{sFo
zeE;a7sCfl$aBoP7V{pKMY?zU7{-w?pof}PWi0o@0nrhz{G7X;GU)b2#*w@ihoE!>B
z>RSZ{0WS9Xzb8*;X}+OVsG}+_3=U1O3>(7Oom0qNVEI`XsHnAwCl2%QA)9<8;%qff
z?6#4dg?V=-Odv%yd9&t+(;N<lPy@T9-~;r<KNQa-YmA*dE`<eB<^lUdQn-IEOuHeU
zUqxA<m{<j_(HQJ*xz`ZYMt?bKiZsBUMJ8J-qj5bBk?6a67#Pv(GoSwfi3$1*Omd}o
zn&iD`td|DE9D~>p2;7K-9)brsP{-6cHjHUEj3KSDXnfpTg6O$`h+0lyF&uo$BhPLE
z%mh%;-I#sw(|?JgyeArSjgFtCjK=*>p;a`c|MsuZN(f!=_sv}6E?^|nu_R5%Lh-^s
z-!&m1#A1~i-A@#cOHWP^2-(UCkkMyzb#X#>asZ5o;7aN((rMv<)3lXIWEe%K2YrKr
zP=P}W5XnswHDdRekl3+S^a?Zitvc)c6CLC38gBv$nE+UQxW+qfl1SnlM-f^@GSVxM
zhT$avMeg<CCADM}p}|OvZk7BNh{l?ri4+%{cGQS(n%S2%XgIYVmtKJpAAEq`nG-dJ
zacF(Ln~=fQ%HWAMH}OxPYRP#Ly`|=!l&~KI1uXA8Wax2JuOdoGC6O0??D@s&?pvd~
z3eH$w6rq7LVZ22{mN7F;Z-`tVA`J&j8dho_hd5?rx1uJ}bV=JPeVNi(`Xl%2GW9ds
z#rUzHsr*(Q`j-Hn?AGrO=o04eiJy?ZiAnpd7e^I$vTGtbs3Rv@q{%xcq-V3Ej!Djn
zUvH>|qX+Bvlo+KiX>N6$1ct{YwEUf;VG`d<O_xHw<kavO`<KWVvcSRb8T$>beh#{q
zs@la}tpz%onolOHK#^8gMp`=Wwn^g%SqLtQpwq(HhWjo;Z&fc59>8di#z3diUaUTp
z)9sum6~R0oLc5Wl$cj2fM5n({m6ZTosSAnlMnaV9ROw6O1#%yS#(&QXJ^JdQ7*0Cw
zai<-Oqs}~#YogX!!DUEO6~T!giUb)YBAHuPUSE*S)wK~5?0Zrb>-|}9L`UIxJz*zA
z23>Xpth;uU{-JWj^u2feMyW(}(=jM5xy66~cFJb7CFZ%9DOijqvV1?oK9#)*6A~n=
z$EIasVyJT)^ZUCB;W@ccuI>rAeLl<Bj$WhD$f`MNHIOavSxS|VP$odv3%QDYXs99`
zt+<o|w+rdfmHU@V@6hrZqKooPp-muFmwAYktUjB5_Q1HQ?7tBm1s2U(NTJj>!$3GS
zZfDT^1@q>D;se3&uQYn<IX^NueFf7jiN9}p#76DC?bmo&%$?ag1~7Pdso~&C$Rq<0
zV}&b>?Lu%saR}&=dPYhBTl8;)(UC1*&eSuXmwfr-Ig|D@bX!Olc&<;2aCG>tBw%AL
zY?#n)tS=@eM_l{c{8ycEXFF<A1N0S(iiITj1y{wh^ce?BrwfC`GSi+u?u{rg#G;ss
zYvMn+Q5fb)R@|Za3Z<s-Ll9Q5lKdppmzwDxKQ_BxecW1mpqqX=>^^W2s9bVJxj{z~
zS0`l9r;;AN!ar3gPvhWHHAZ5<!2JHu@t`*|Ck^F&HPr@1BZaW8l<0Z?OXWK-<MFS9
zBD(ne#a50(%Qd5=I>pLVDEX8kV|Gc;5bEyEb(Dw^YYI3Enu6iG!`K}!VNZD`h&69g
zxir3{H*bGji&O?h2i{ChQsbF?0T|#*&f4O!p*X@iS)WTU;}{~U!x{#4Q@pU*$~#rs
zxzBBYfKSY=4mM0>q)(N$CY0HnBYScMNNB;jY8;<0X(tS>t-V|>#5L@OEUpVRs(+9=
zVnz%5nV`G~rcQz~dl}jlUg?4;hOnNa(ek{JozBe6?OKMr^LUihJXuUfK8Y%{iY_Kj
zVw}@_&A-$cQ{5aK$RYjs&<NjNNlnENi?Y8(lA1AC-i*JLA40|Gq^Ix-3@ZEVrl!6%
zeD@knVYwARBXP>VYcyf(E>3RwH5JI6k`&{k)jHo_IN~%^Z5^zO5#81=8OQso&@7q~
z!NXHY<Q8(W+#M(Mh@4=t;JKBqFn{jk4r%)PhYE^`)&2eJmlq|Cq;#)Tl1X})z1<??
zG;|w@SONolFd#m5Qc^ER>F$@<gEQ4(#pP%b&T*K=i%Phr`^Oo<{xDDrn#WZ-TRnw~
z1KUbp6&sOIB85*qTe6g_yc@-G=JsZp=hCUb>84yk6sQI5-YtYM5BAZW_iCFjwe+4Z
z`v!vuIZp7wR+}SCxzQ5;M5-v?`b{K6M~#x4R3RuHykp~fy!$yzG6tMyQls1UIM@&c
zIcS#vD734)H>~ZJT#jQ4lrAPrRN2PRrgH2*8=KvIA<G5)F-}ewfw(E((0=R>^T%HF
zbhhJt`kF~TF~9g{d$UP9m5$1JihU~E&GEe4=My}}1?A6<is4au0XFUQgI7`W7Ol$V
ze$9>pjibtuA11!U-&!xz%1vqxHfM_uj&g9o-#=GU_acrS&kk|ARgn^!8(m{|rM#4!
zOLh+AOy<S3yuD`p(WoxX-(Y4d6MM5yhYZzQ89;1>4%@@!1-DIS{8|=fg7TI)rg`-4
zpID?3)b&+%FG{%Faze(h)<YJY{$A?D>{9wNj_^Fjf*ax2Z8&+<wY!~%9f|xe*e)Lp
z`1LCteo(rFjpvs|I(_G`I|_?a-8#7SG~M;`@8EU<C6!J{sc%hdyfTTu7{Onuijt2x
zRehIlU$9U^PAVUv9nb)|-;f0t3p+bkGUk$eiB+NxE?WA}e+y2|?YQ~|ZZEP9Cl1#G
z)ZGpyEgcS6VQfFMY-D!#49JWAsN8Ge{4vd4iw7Ip^RERzo6w!xRb7RU*vSfJLC==s
zSkm#!8oDZ^5lGa8xO5mo#ZC3zTtSD^-B31pjp)C$N~igB^cMTg{Aqh&zi`;MZbpia
zw`&^}(|Fmg6mIlFldj=dd`4VM!8&Se3?XbK`+o);zUqWVowg2R1K?iNDJcQcwl83l
z<8p7B_mxBOzsxmt`ZjeR5uD7t-&mUDi<veJJ+`tmRoY7|G?^Dzn-AJ}HtH&hEf^_w
zUK(rsjUu{jl#Z<Rca|~{4T#EVU|HfYus_uM?G>I7@_(Tck)P>2ckr+9K^JrOW9%?2
z9QruOnQ?C7a==A`iH4-!wKXmO5^E)xkHkVaWU10vl^nskLgZTLWUW++D3ArCh@$%6
z2lO$G7FLysm99a}==Gqe;^!zz#juR-mfyze8L}!%VA^N}a$IT4DnWn-bE`(l?owMz
zZ!hR(FW_XA7Dc^)Ix$dZc%jcy1%->bu@=1fv<qdW%elE&7!qWyhoeX?NVH#Y<ad4c
zB~;E)&4`nr>Fl^}FNp+C=9O_a7?@otI4?90CcJNlB<oI+4a0Rt_h+jBBZfs(-#4#*
z(F7x^pD!$K%`W}fK38&al<%k+)psVwJkO;}mjS2`j=LZ2s$ElPtJb-E0oa}-S#F=h
z!ZLl?L&Uh65>1gul>_%+&Z2WWP>)6AaWSp^**^E1{n&0w#H=2GrRb|lu$X?_ncp?V
zMns|!Qz;%)7-i%*_8|r#jm3Uro0Qb!u-WL@HxhB_j+~t1vn2q`n_wgnPD;0OE)s3A
zqGfnaMy~en<w>9PS&g6Jd8`dy<fSC)8v(S>UD4@c)5xoqnG}Ehn@1Vx3LVS9P~Z>7
zuq!pf#`czw_DmK|e;PV*GifLcMxURVVmlfi6bk_{$!-v$V0dK@TMw5Bt3TQcx_R{j
z#ogulTj0ADj#rSaDa$GCT9&S<i+jX-tL1O6;SwU+9TWcSQxg!o$OVKH+MyK~YpDuB
z@-NeH>e6PlallAZ0nu<VDE@yEAI9LDQx=ntccTnhD(<JmTF~y#vB{)3`5;riTca;C
z{pUSc1c+(8ms{HiV(TgCeRtL@e>Du+mY<xZ;=sY?%&i(vnQV)IO`_nymZx!(g|KSQ
zTjCaMO`pEYo&o*nX72b)>OURzgqu5gT$ND~b`h_qqNhgZ#o(xuTW>V2YK}OX<TTHn
zaxU|V+61Rj89jJfzB{zu-IB|xZt{dEOk%DRch=<k>z(G2F|ARS5#HV0P0HJUzTc>-
zS&V^nd9eMM^^*mktB&_MkTtyBLhR*H9Jk`%XQV&#vK0Tgr19dg1g+r~)6}pyNPUH+
z&?vpU$7aLA5xCM<IWo5DT8C(1++SDBbjokaIH18(UTbnf=DFP;4-Pi}d#R)U%l}Ik
zZ<O|4ldfbV<ZOrV^<m9zuq%xM@!9ZAJXCKROMy_v`0O0cAT@Ds=o^fC<>US;TlEi8
zDGm^1)3vKnPY@|c(!9L?3F3VJoUB*-J$p(@HdFY)lOYZRyWmZR;nBrKj9y-7Yr9E1
zb=6rB2a~0dVFXiT6yu$Rlq8bqfat0tpWj>Z_r>&(V_=`G1Z?0K3w|h~^W`Ec7RA5&
zmcN^n`eyyx<ohpHc~(-ixLqt*g-_tUOUH{`(v6JtzA*F}0fR4ntG-rBNFs?!?fTH>
zdsz46!ov2!&V{1i&8H7&Xeyp}`#2TSU(*Q;N~Bz_Pc<-#aSem0&?be4lOt#YJszV<
zzsdpx57>_c#mefh2IhUX^I{NE)xO5Iy!T6*;Wfm3Y{Apt56f9Y$BOhw%HgNvr}F-+
z9;H~brY{&fB`1}h9hr_76osC(zaD9jly)so72M*j<`z?Z;DXQwSPs1aNI<v0T|Nh5
zH$ZDPoxf~>k~IY0?1OQLu-+*vw-k$l3Q-}%eeiv5Y^71+#`z77`{ZOMUEH1arb>C@
zJQ9AD{Ble)P{k@7-`XiOZ08O{aKIMw+}NaE?gfzHw{zucONKN{&45Y~1&E(9iPfOW
zMsHDYi++<`njI@Fwe_I|QeFj7H(#x3e)k_u3;1;RZQ+|ysWOceRJk>@_1@I@%8uk2
zrwsS>1frtyKm3(Uezzx@giSVSOm!V-DhInyBjlKx#W6ma^t1YA^T;Sh`(H~14^87P
zA?8*MXd{qO!&_AZMkYWAS?h3h^?*%&UW7p`WWXNfL%qaQ6*GUnUkDD^E%9Btqxn*9
zRlRya#ST&vFpuuM*`8g31tvU({TLYCTK81S1DVjRc;OJik#n}reI~DGvnxKXt5Bow
z$8(j&Z7fSaG*g@Y{#oJ~E&b-q7%86>h~pZDfG#=f;D%XI4s1vAFxA2t`;ebZBfj(a
ziNSzMp|a`FQNCP?(J)lB7;=5aTTu?Iy7eXT&kWi8>Ff{G+?@O@y1(mD|4H#;)6EQ7
z%&v)LkOz1&#G%Kbh*p8Bn*6?Gu*V<FRuRfiV`8azo+qiW?KiJcF?Vic7CKmO)#)*}
zGVp6xvahgyZm`hh$$LUD0%okZTUb;F(M(Wo%?W5XT3>=(ZQ<eLVo<scnYVLHY7Vv?
z{*1=qNY2{5Gco#MV>Sl?L5uD>_i|WRDB_N$Y>RP8WcQ&cpxjoo^fC=A^{a;>LEaIm
zz=QUomuhzHFA;dwI-`{kj=@t(5SwsOk-SDbZ5*8JI!O|q<gCVfP<hLcTcSv4ImztY
zsB1E^hq^}@E0PQ7<MA-eMYj!N8XYhSFCz`UL<AYFN6w$>4{|8NOtItI$?(BN374_u
zPt7e**vPpON-~#jxZvkNL>lW~)8`ptTy){NYj9k%x#79?jQIGWNLv@QAq&z=yF%B4
ztZoOw9~K8k-iW?P?leOz$4?8n>>Q{UT<SauteQWSzi(faO1v8sgNydi^aKUmP_A7K
znVv`qDM<m+=?tPicg`G7GdA|P`Ju*0cJ18pG|6cn9{`B5_1~NXgPCH+vVv4W+a?a~
z5|LQYtu^oNds}U+jknY=P=%Xcs2ZXm5VCa+3lQvkA|mtBX5<r-$4d(-+M(0J0RyT9
zU41Z&SQMsjKumhhRjGCnug~ebMt%Fj)wY7m%)U+pG6Dxe;e{OD*SALnngr?rFo|EF
zysx!!5SrERm&H7e)t6~F7I`OvO^8bf4`Ci?^&v>4jrI;Gw9SZ@2eEMT7gakh))^PF
z_bwYjiBi9_&f6j%{osf(SX7OXyy_veqQhb0{ujn3KipW|G`j?TD5I!)|0gb&>e!#h
z=zbxvL2$uH#W!*{d9q+Cj!a1VW)lumWQ&-YRmdSZsp;n}kSZ3(*k?NlUcj4?TA%Ng
ztqP4`cNp%P53!$s<zd}+OI~r#S1)L<Pgsm_3xNT?<a_wCe8PQBgomFUs?3g`jZ`*)
z3#g#1*ry1|dZ__sPc(1_IfszIgEqpwHdpbw0D2@G((mP`wJFdwx#zBc6Me2W3haMj
z_E|89pY@G+169>kY>r%GW1l`pd~-iw+HKj52;_IiO3plORe1J!zT!#aVq%H>Dl~vF
z<w`+;88#x(-osEw5R7B+J`qVX0m8{j?dTZAu@b7*dt8=+o6~E`cyym|2qk9pcbCd`
zg=~q{Xp6rW{RyZqu(52G$4d>t$$#I72udPnkn-<+)d_c+a-}F7f#ol5VU|Qu-Lu}o
z{6rIsBZ)#IjTmnvf%4yPRTfmhe`CS_UHyLyPQ^=?aa|NXNC$^aomGz%w=jbfMjy-p
zsHkODGwo9OrT$CPeF)lthhG1DLXQ(lPss^nXa@1L3Lf0gS9|8!SL7A=QWbmq`*Dbf
zf;u|<W%y=Brt>@S2?z%1lU<OEuC@(P&@ppQ`iRtz-9m6&6A{qC8uv!a1GPUAwV1oQ
zxAVnn9JVAWE$5oM7xXpR-poi=>g~)=U+~90DGW!SQ?~e4)vUU@`3!wNDI_w~32GIE
zLsWD}Gh2QxZM=%>=m^5#;u=SjIFo7KojdmL&6lqXM#pvVpFP2v^C*kGFlDy5l}_FP
z_)bQafDu-^r~uKY8&*7>y7wBXGSg|{)O9;6i$wH&|M%O~ez7*f)#mNrZ`TDv-3Ht5
zSAp5PAL`PEJRP2{!em-`TuIkj^t)3&HY6mu1&5&f?>`(E4tz)bE5D#*p+C@a(IzP=
z={#}L`t0LoyU{1l**3O2kbMwF)zNEOyvm5dDDrstf`F8CHWZE{`8#=+EnH^{tVCh8
z1U?KCTCmQ~$$^0>8S76f(;XTg7dX34O-(IbsSJpY#;7>bNXKkh(+?jqAL~21<QU#{
zYFcbEAtNDS{GwkmXWnP9h^3nqqrcLSkna5Gmhr>a;@kXQ880hy7*>|AuM(p-^mJR!
zYuReSx&EbQZ^?mxQp(0oDZ<1<(6e3`i-AIXrWRtIH*$1SO3TQYPNCZnpPj5(zzbt)
zVOH(<qH}k;9MNM3^_obs=rJE-uZk|P(sFhdhUos#K)Z&BJk|MMP`b1g@n_AMn=Rax
zY5kaYULF`0#;%)6pzoM&c9qZabNe9TWzc`ir#JHZfC2XMmd|;l7E4{d?G<j+oTIr2
zz9$U3|H!4<^&}Q=gg;a1?sQ4n>v8Jq!V%k@_SpE4*-CxpE|H(z_+R}e>9oFqq!hpB
zd(`=|6}fqmS7?(Shui6*;-^phBn`hZ|BUUA=?)E#3fg!F<J3h7Yva^)|Fj94u2=j}
z(RL39)AMP)mr$hHgo`-kcB~<bYEzXjc6SOD+bc=8!<hEM_XhWb*Y;-A`7FoA<GCv0
z{^8MSMc-tx%9#<yeboyes_5}MK&rea$zmraIm_bZcy9697DgIm-CKEL|9vz5MEHct
z`-F+3sg(>VD1fRx{cNe<mDX<a+;K+)^2gP;@Z0>}86slq(|!q?ZZ(SHOn8xI_SBm@
z(aeT_*okb6`8_6|=YA&Nfv&ld_l7erDal%RM4XtS<o9%^vkhA4TF?60xe33mk>SKg
zVT!P|aWc-g<h>3KsTm*~JHW1O=ltsdyF3~4-TC+}-`Z%vi??>mqdicuXJH}vBUIU_
zGl!<|N7$O(LC-(?%F9A3;hFAkT93`G2t6NdJ{VD-C(I;v?cTTjXK^i$V2gGcv6oIE
z`_}Fe`*!&!C8Cda^QyHr8?a)D5&2Po&B_&2^tjEc!h%Y_u??T6xwlCmrn-8Q_o_!I
z2AS&FL2iBZ3dQMCP27pBUQ{t)jWa63O4`&^3ajupW&9uYtTBr4GzC9{nU1$}#sc4G
zfjc;N7!pFlq1^$hzpf`qS)PvuplC9C^8VMC&!yTm?UyyjJ&jN2+i5nBS#Ifhug-j|
z#~v{Mdlmq-Oy}}uCJrt>J9|Rc-mh~yzXSffv%vMc{CUTl-S*B7Oy%C*)$qtS?G|(R
z`tD5uLBRyv1;dfet{0J$S9b`n=)<l&ul@S|gWm1MM*0<YY~RAdfe+Rn9B^nnBRY8g
z(QX~vcD*`8S?o3Zq9d!1P^1~sQPFOG;^yuIF0fMYIQ{5CvF`^VL_hGIxOaqJ?*xXh
z>9r#KTrha%e0eemnX=r?UnrQ~8D59+5q+V3eR$&hwBg8Cvp;^&c9e~Ws~YFN;qwQ7
zAkMSSWa^n}sr?6QMH>W`%I{I^T~N*z{ypWHGM^Lnv<<C>o1eYy+xn~NqZ)lj+gimS
z&URGJ*gT>>ajUE3H{aba55^vnus1vtv)UfHT$dHrUyTHB$$*<vS5POTjdiE9jhzW$
z*@<=E%iG(%pj1PT*sY`1+hzIE`xi~S78|x1(YMGeY~}Cs7TF%>quKIg9Z%)}hMH9O
zLjU0vs<9m3fvA+nW%=h8s~)SBtF2i+t!57zY(=j?0Z8(7*C?kY9@)TeM#f(*MpQ6u
zPX;jsR;4;st2Rr79dDA-ZI88QDzo-4&<#JD2O~V?H>g>^m>@~m+W2l5)n**w2+7-_
zsewOKDvhyrJI{UNTF*h_z_X}~KxQil+rXk%?n2yZV;%l)K>_Z}-zk9#AzIqR5OjZr
zK|HyUBpGGFcR{WDx(l|IAC4nawU2vWbbJX4y-m5?+&SGy-mQzZ@5l@rvfa+JvcG&q
zu9(U-5nA_n5#hC8*V%V#eHwR3V%P0@!CoC(*cdgM{(JQ|zX0;=T;aK&DzGE3QDHD}
z_6DWe_kl9c6tsPA^V({CnGYiuJNM)MXGN+k2El8_;t}%<<FxSY&2*13KbqdS-%H*r
zTxrDtC;c*#nAL%Wg;nr|>I>G|$okZnuR25ZVNRFZkblnB0+libbIhXld;9vQnFP~T
z>`BIYcBncxCVVxy3LH%&r6gfOQW&bV*d$<xV?_1*XU6n|p1r!eyRGJ1>3i%NQS}!D
zTqaw*<Ce%fqbd~hUDMrq`$0SVD;EexZ|mTww(HUgpqaKPh(0x&h|~0b@Qv#^G~IH!
zR6z6YXkhV)^5*zB(PCuBKU=BLHQh}Zc!a7`Yb!G{A0hnG&1%^^-krVw$L0-83S!{r
zM<57kG{4F+(MqeG?Rma~;FXj4!PDB2%P1sjHS14BIpR~^rd725h%VC14x{u=C>Tqd
z;m!pmW@QET;q^8cCS?_+C3&Uvq5FX^=HQ!(-^AhA0o!SPkXZ;PJl9E$GK}R)F6|cX
zt=7X6XO>wFH_yHM4wBdH(TVGUAQx9WGiRI9L3#3||0cDd+j-#3*5)t9toKl#ZCA3o
zq{8y7NRjU@{>?*F(jV@Lt(Mv5ZEo^{kP|(x`WjT!|LEGcRVkdLKHkX+KTm$k>R7RB
zOE#9WmzZ%`_jy8${sawrYHjrqeL7{u!`J<IRrO@G#GR#4rgOOpNt|-ce1If-l<|G|
zkP(4Tm7`t5kB65A*-ga8HAOX@FTEI^E$<2Yrrml^R8BG*XH!8T{_==>b3T*!i#9AF
zA>oU4@zYR5+|*zUAC}2sr9^N@2;N33Gi^ClVEGBTa0*=KFIw55(Lu1bPsYK}$os!e
z7gw$zx9s1%gK<FFE>d`P8Y{i?DPs&1Cn=v|VCCeU-?TpQ+REh}TDE72gpH1}dEFiM
z_hkz49QXgS(1%i(48S_@3#0~pMwXKo8J&m%G;XlX6H(-tm1v|y*3q&Iuf^u|J!U7H
z`F=*e`v_gB5E&tk{&ddT8qP6t?d^W?X$C0hdUQP3UY=}tek*A8X5i%P6mCBis7N;N
z-9|)6I2L=h-t#HR>`lqF*>|bg6F;qBs%_zq0mRVf$jpFfeeZ`!3Ga_fb~i^8EEKwS
z8F?%Q3Z^>W7B^ej8Q`+}C8d79DK9SBLiFF4Cs=oAtby<2^-F`{uhd@>a+XXb8f>yN
z!1C7O?1k#F?erZ@Te-2yO9uiO8qs!{soF{h7;Yug9F>QI+;ZndiqR~QxQUMYB$%31
zB14}9jWV4KUx`jzUK7-7C6@8waT-?Ebj%Yze4+(}pD#~|gF{u*V3}{cw)YD*uSG?n
zwj1p$Hag$a5h~6_U}0f__PEN^0a9kx3+MVztJ!OA5e741SY*AE#zDdr7nIJdFwD&V
z=;$dvu!A!DqR@lZyWdD|PZnsot7*hWb>-YNc#{q0LzF01KHA<>2meRx;Q49<uejL1
z#b`entJKuhMPKe|Mc<qN=m2)}uI;{};$ayIA+CohS<Cs_Bddir&mE-pl!uRRcFR8n
zsN?$;({R=rKYBw?Sw7kub*8SU&fjM8`(<qS>+gG>o$Q>T0*0%fhjtf3f2kUreSApg
zB93|`{F`3@SLyK@$0kDJK!8uUx2BlK_T*kXb2c)>8yXz!IcCpAdIe=|p5(A6%L9`o
zrxZ%`gr2UebE6Vci;T6s0?Ks$cyJ1T$PfwfWP@pYy0aKxFs!!jyTBlKqG0uZ`?FXu
z7H$K$sMB+Bu#9m1SA6Vx8dVYrQAs{qZ3;Wc_Kvx^$-|&@0yV6;(Za&Qni;&t3fbS0
zVxq2k!kC<=bsl8<j@2z-N~^0+e_fNR;n1r5EfeL(T$OcrILOnEWI35b+2VG_@v#kP
zbtDU8IsJFnqP;POtl{#Av1YN=lNA;gwzpS$rbrd&eRm2S%`0ZHSN8q2RC7>uda%c)
zTTia8ZnaPjf{HotRaJd7vrfbTn<u^-awOQJjpGdb&#%o(Sojr|(reSt?P6)9VkDVo
zXJ*2~V|r)wWxr&m{ON4LKyn5s`h4Tx+Yf>_I!o)&zS13v3aGBlV>>zVP$k-Df4$9E
z!6!Iw*Aj8z8e%n)Q~cb&=i+4$7Tk0|=DZPvLF{v86(`|&ccE6elDvrnt%shje+~-8
z6q!j(xbwzqn8=UO)~1*B8XDx6aAB5^zH+0Z5|%Snt6lK+c02!TP*vXtiejv{;?a10
zWnHT{>?^=LX*?^hqM!FXc4Se!lF}qR$Sq%P^<>2syCJx`QuKW7P@dcsz9xv|Nmp=b
zyZ_MscFq_}F7Tx%6cYs%6KQkZ(Vg2;rK6@4wz|4nUSVW#kWNsr_;-^$8k!SwOxU-X
zckAR?v#xPGG(uBM1NNI<AH*zdNX@vIk7gWuqFqm<-9EoQQ5l>>g`>Rt6ba8h@7;y`
zcAR=iD#!-wTbA#i)a=%81-z&<*1SX7IIi=dis{6{&t3`NzN!#}0LFGmoCn@MR{D!2
zU{MO6#b<iEozd-0N`%G|A2o3yFV^pEd_53Lhv*w>C)<<nw4*l~XS$Dti)ohKcv0Y!
zg%uZ<zS{g*aPgLa-MMH=oG@2l{nj!rQ{w^6T=wVla&K8`bUX8`a~w!wH#nF{OYcdF
zA+wtO`}yBlxXrO>EZMv_RY~n^PX@nZ#{7?EFU5<s2C;O$a*M5JD%dYB5`si?o|M)t
z3x?itm6bRK-X>o{5YZSBi3~~)_L}goO-xKw)c<t6UB6<ipr1y!Kvm7hpQmje>&t{%
zMN68RG<fZob@qEt_Q%$;*J8-pI^MEJGx{36srt5Ds=XIP6B4m`e0q(Pb6_g>es38x
z*e;E;=Uvc%K$tSBmdk8OQ+f6|$`@I5j8vj0mHm?8%MyWzsup$jD}eN|e%*`qfe3t(
zMm-MRx0VpIj+ajZcW1)ByFESK4ow-QPZpr1CGFmR5Ir66_n(fpFFMD@(_gW94o)~z
zH5ZY^c6w3uI5bmN9NSM=Pp;YVb!M7Q=-KX#IcC<ghhxihQy^n(?T;=63y<C1-6X;;
z{3oy4V-rzCMq^{fV}}0MyS=EV>rFu;&6!QzKddCBdK?zdo^J=fRM#krDS3~~N9fJw
zvqlj;_g)(&|4L8nNm3+xcwNyZ_KkdWOm2vIN7I*vjZFt9?xC;*kF8WjhsKOm4+wjH
zeV*qCf}nd_FumBzVDX=kp^1^5$u9WT*KNrC<D(bmM|207i;_v#OzrIPoE@1=)VLze
za}$^1V`1#Nr7IIgeix>Y;G{9_S|gH;v4^1(`=NvcW#o|_TVDA1)FVGh8~|XrZUNKu
zZ26W=`x?EeN#pg^n>~?1(RiV}&86iTuVN2+x-=p5O^kt_{*P4HR}Z^kR(?IDS4cK4
zeZ6|x{XIWNODSs<5r;|NwU~g@F0u0ghf!BxzTW!T_dvFQ-u^xuJkrtY4b5LkNlH38
zf*U?O$rt7=L2J>`3VIwwWx5S?oSbo1Gop+<wCKqref2+tw41J#muo*?4%6aE&KgW(
zexB7XF23G;+3`5<OKt=k`ePu$b0kLv1K2(GBL+ku`kpe%?P(%m3x*GzP=Pg*nGHW^
zo6qA_*s7otF-#fW%Jun;a_V(2oq^XmbD)&ep@(WRcU{lnj<dlD>%=vFwpUVILHp3N
z=LQdSr6R(Ppl6qv^YXq2+lV(+<fQeb+`Dq+?7iZx2K?;Jju^@!P`oi+hTl*XXDcY>
zbE_%Mgy`#`_5jp>_sZh_VkQo<U84+l?h_KmAksy|BYKxsA^fAY_)Wat{vmngph@;O
zDi`wQW?rJzY~u|h`nj8MAM2ZM(m|HTC=a_Zn3A*O)-J**$KVC2_GI#xBH6t2Ey&`6
zTTSD={Yv~BY~hXihC8&Xt}E~^WMyQgD>j<2S;;83&PDHL;-Zcgr(O__%Y|fjDpx!o
z^8a<J!H|L?x0jgXrod)A6?;#&Cu8$vD-T;?AutFjW5U;${G@z$=UDCxi41WEeMIZq
zsTKxz3N5GA<-*UGzCXRCi(1Z`Lr7-c1{C?4Wh3NmGdpFeI=a3oxA#IOI+PsbaESD0
z16t18|L|>iWamoBdcVr{4-8yg((a6(!JyJulglK>mVskO#>b5>+I>yU&2UMU;sIAz
z^yevK`Zr|8w<j~TGUymc@SBuDJ_mPY(w{&d{&G=?&j1s!Dd+^7r>yWbl@ELtG_&?V
zih0x>Fo{dOQ?y5`!rMCUaD=x~57n{w)Q@_1u@=?QLB+01?{)X0M<J4+q~+18y|6=h
z4T>lo#Yk(A>)bFEJZrVEF?q{M=60H8U-dd5{)%1b@O-G6)<0l^g(5sg+Lm9K?{sK{
zhe^sy*Q`2fby1+?`(pO0(-inN_K>@J@M>FpBAiiyFB@C!{lwes&Y8+&KxAfWTJ3%T
ztH2<Jho|$K|5fvjv|I6wq>I8m`U40QV<M|OS*xAsL~lTpocTx5=?e=c=`5|VaB1&T
zT0xcX00)?sR-}nAt-$ec(ioga<`wEcHdK}1vPrGIv;?$N$u3Y#*NaysjHMVee~KmG
zIA4O4LeAIgF%u<nZ3cR4##yB)_;j<_!UZ{*1|<iu&L#v6@0p1-i;JgOrdlqVi;H`K
z5h8_d85fV^^*(NH0O*=0nI<-A_n>NnN9fYC+0X|985)lEhkqq>Kw$LbI6Wu#xO&?o
z<}ffD+<2m+66(vTOh%grmZxLORtyUL1+>(13QpU$_2l(?Gb51-jVZbmhb_Jk4v!=x
zC6zoFrx*s>o0>{}pe4)l?dL&3!vecr9-UYf6@U4D5{x&aG`3Tz1!p;<0Vhgx%z_FC
zE}{(#476GY(;ND5XO^Y&O|evAKHZ%e&s}dcnVj-h*vWxUvwWXbu^3yTv@qLVPeFpg
zIFjLM(t(IH$MF%$q9Yq6uSPx1py!%L`|UK|y(?zU$+7{$xwYCaGxnVzpmI@b3m9om
zyrSfB+I}-fP?u0!ExM%QTxulvzGi|c7)M>s2@uQ_)D-2H=UFlzJSX<1Y8PC@N@pRV
zMn9yD1O7VNe#!m&|GzUPLO2Sg3&sIYzq~+orf1@~Ob37BU6`4fUyX3Gst|;<zj*zz
zxyk0V7|WG<lE%Z|JCe~Zd-bNUnJ=XUfigQgVZQHtC+6S$f9!n+R8!g3Kciy<MaSNd
zOA&O000JUi5L85pKoA9lkX%9_$%Whm4Ap{SK~PYNlpu;I3Q>wkS5Q!@Qlx_g2puK#
z`d>GImC-lv&3oVbf8X4-oN&+CXP@)?oxS(j=bXFN{C;xx$-8L;^|L&elnyUbUwE)>
zwS-yj0)AHmD`#Wt)hk4lUX1pXJgqEAuFLT(9vb4=L8>!2SaffD)_AI)Q^W93r?l~X
z7Q-V<%m3B~7GqLhU;lBOxyvxFMU1?bzF_j+VUK}T3kBLYa!$LAF8H5NHz*a@<ksgt
zpSRPrUMFU|=|dv^$;l{mYEhK7`};}@V@c<}C50ol>zP>}l^E^=n~<%&iH)RTxZA3`
zMaEI2<?3cb!Y0UAn|0@NFIXzV9$K-YwU!xJIcj|O>dCP=Ov1HWmqYBHy|oWWExvLk
zhgcmy?!6{mH`-s>Wxzk&J+XX{M5kBrbRJJzdwBo;m^9@bA^22r312=%$IJd$<>;=e
z-roDQd|Xl8CDk>@3>=Mjgvddgw@G(+v%?a}^?Sy~$5Sv(`YSa*9`LoR@w8)R%)eWd
z8(u$}pCq9_fi(<p#N)vP_i+)&o*J(kA52y`rLu)RZy)nZ06dpP?hjkM($C-U*hug>
zYKNo4Ir^T9>$NLUe8DoqY9)!~<uc?=vH|CO>-DnSGnC7G`AaP8GJNAnwYprcuHJRD
z%GkvlRG!;~HF^xLC{vlJgD-z|QrEqXElH|*C?YHzBoDj4xn?&aMXuwka~K^rb3A;=
z=v01P&zcCrdaj%^OW!rP^lYhg%vF`Fh7YP7d#U5?VJ~)S!Jq`ZVX{8`qMpjIUr|Uh
zz2;Sx2b8P2bG3y9qimB?bb+S3yNaS?=Pm5so;g01i@W#MI>w&!=|%l|C}7}9f7O+!
zddIX=PL092W5b$y=Gi$pK_6b4pfVCW)|He!-w>zTmB}Me95!WcpzeI`(Lqs%l8nhi
zwh{VAVHWD~@|DlGF;xn@gALp2Qdab2$c1@KRJR7RMtj`f)jLI(b)4^Z{qVLUeQ@Hg
zjE#x!qNOUu6K+~ZJ50w1kF>a{GJZKUc)bU$si)K;VUj;UN;~G#&Qlm9f3*PBk?#b%
zTd|6jn`?^8^i<WE+tS{5bma84L9iy13?4NulL>ck*-YiLcJJl2C>}Yh*t5Q<G%D+3
zfkZ*cu~6rMM~jbdH9XopK8U|R(nB+e?H1*-_CIGFdt{l>y>~F(r@Gol=Wy+Kw_=$|
zeA6Kj6-QOov7Hy%${Iy>>^Kw6a1NfkfH$B`X_3J10i6H;eT-)u;Xu#_VK2inee~6N
z?7;Ac+6U>v!ZNJWYr=2BEZ(QjWHIk<F3?9`l}}*JxfB>!f@ipCT3KyFbc>tjmc^iX
z!d=|Ar^ZQpOe|;i^QpR@98`6^ILiMhWVLt*{Z>ek^-(tx_qlViXD`@g$0pbR`Z&{V
zL4HzLYwH&Elc#oZ5?esqGB{9~(zGRb-C>yvzCt3me!F~mNy^7uj5nW)qI+g0UP)Kk
z`DpIbyl&CQMC;;C{$Lpb_wM<=@8T5m*!7`|^i<xfgF#_k$mA0UZDMARyeGz8%9s|A
zSOC|x9T&iS*q>|Y9UCg3hI=ksrJX9UNWk;<a$YZgp|-vB{;T-m4yMOY``w-(m2o)N
zCu2PQb#0QJC{txfEnwHRXL*zlZ!lZ~J$izodHXM{)~UY#)`AJ%h+H4<HcDm^#7%Qo
ztSGzv)bYq>nLJ$YV7iZw&#!OxVJs$k$<dGEQKnh$%7Q{0dUMiG<M1Hd2Aa2)KQKRs
zIuu>TWQ?jS$q!40$dNE*w_?XW<~61dHc&Ii9Z@|VAJ)Hpi)n5MOyCQNPjt!iskgbd
z$BVbY{N@1>53Bc9`;`vwtfwzmHxio)Zi~=pdVl{`VPTnQP#vBa#w)|tllxf3VXdW6
zIfnz21N~aLm#xHYm5S9mfSnkz6Xzn_Y2y-`-djucyx^(zZ?C+tg{FAoL_<z$%;{gw
z$91q0!`|hm-iwJzSMJxeE(y<zX9Ok?t0_k4DD$+}b(4?lpXTO<I&Qdj>-rY%^N}xa
zA6$8Hy{43<r3H5{PmmPbqcC_}2)3SlUXLY<4`zl=PtjhkeKr;8PX`3EbE=Z;n3aiT
zVWI*W&p6kU8doJp)@tpuw^%qbv^IEb=-2K{mpKwyeXFId)7@T2T6!&wzN(V(A^YK@
zFvY=_5g27Ib@lp=45zxV#p}y^LTfF?+U6bi>FytKeP|dC3JGSfRUB~4^-j4sKI%7w
zt+2H&x|VYVZvnQ5_FPFlVC=|Sxn$k5mzYy)<%$&rYD*e@U)|W-o3r%7&SR3zp##mt
zyjx;jyjztf7x){T_3qP6Y)G<`ShBuc(N58G*(yEC)WT9#wYEDQD<i6l`;fn_VNJ^Q
zCu$p&oeS-10z8thriK@VBs=e^{KaW`|MlHl6SWR}Anrw@Cs3}X_I??Uiyyi0gDr&;
z+pL_5?G!<C$AW;ay6q#I3=GTkx#3NFd^1m|WVrZ+x>j}UT)Ac=PC!u5TlG-v*8W90
zWHO33?Nm@uE4v}E^h#8{&U>q0OtLWkmGJ~ZTj<WqYE~hh6q4b>gHlsV7U|3qevLfc
zuAvU5N01zJ9q(LVTvQzoF3?^*nSbKuZdW;$XiLdtN;$2w*5$a|Q4fZj%hLN$&o4)h
zeH8cJBP8dY&U^g+ef_u$GGJF3hkxN`@w_Ohcd*e8@yImCuBh7PK%?iGSMZA0uM6z#
z<TZ{xqGRl+8yrZgPu)zX(+`9U$Oo@G{KyRTkW~93|EfpnEuA?r&LfQew4ThXiHX!r
zk0zy%9avl2US#WL5g?AwKBZ^1eYh-5uVlZxHArx}5Kz=wnzVw4HCdRiIw7K}$~d*a
zpWgN?`D1_o+mQ~YqE~{T=T3{#C0YvwG@A7@Mq>l_99+4{g{U;?H0tI$^yGj7)n+%5
zxH!2{<vd@l)5qQd=*AZASkok2@B5{_LrpC0d)V^Zzl{x7s@6H=%{{L8WH>62(c7L+
zsSLZ}P}P+_R%&GVJJ-eanjbr_<o!++4vQzVddX`Na4(oj!%um_6?nkI#%OeR>Zoyp
z>wC8|ynGj*SUzs1{Kn6pm*eZLh^=)VY&%!~)^a4zLXutzAMHu9tvLC@pI=x-C9ZDN
zU^Pe@Y|?r^+;aiy?emv#zNM+*`EewqWW{g4Ip&gDTQ{ffUL;V=h-9>7Jz6&B_@|sL
zP$fbA3fj?Hq*jjf&QII)4OS+!Orf;YCo+b+zk{J1EGsS^R%f=s!9i;6;wVT$NXS3K
zWvS)%;mem^zDs0>G2_Xs=a;dbUS7@_76BkkxhKrGbDy!}jwS2MqX}gqc-I*H(E9E-
zFR$Zxqi?<MVd>r2vqZaTVQ4|-70tu7Vd3tcr?g(k*qAW(T#U?5gznr~w{fSv_XSke
z*q7-#T(eZ5{ZjREv4sccBmZ$9rqhW>63z_pSuKhWib<1?45&?(2)jpIa4t+CjCOR<
zYR@eR)l=z<!BEJ7wchh7@$8tit&zOXUliwUTx(Kav@G)VWlr>nTC|Ag{nK-G?c_7J
zn>!sv<x}XtdWFd|)fOIfUoN&#!1K1u+x`ugf(e^d8;{oO{FY?m>?|_>)QL;_NE&W4
zEh2!y3=NO^U!it(O7l4IhU#9ta%DxiueXNmbMWG_RXUky^@RezUyR%$bIzCb{IXbl
zJh7sF<3XOyoB8G$MP7Sq<Yef1`|6a_-BHiUS+r;g*po?>(V72d#VS!bIYxQ;;`MT*
z^G|@N8=kipPxVTDP!!_N=&`JfD{m*CzrDHBaY60F%_~-JJfLxEentI80bB8@P_Lls
ze{S_T(oT1=wEMMZm$7uqWFC^V)zBAZ^bTCfFH$!WL@1kkD&}2jQaky~GT9^g`xfe4
zlViPkg6*tj_>}*;ij_@vx=&}T^|JXAiM6XwJs7L^r52r5^Sgd}%Zj!)q8jVgy1ClR
zZ>*?aEMS{Ha{2Pw#q$Tc>a@a()YMOoCM^RmhlG?oB)zyDbNQ)H*azt_Q_wy-=Nxl$
z#7R?8jV@tK(lXF;kqkEB$lbJc>gC*T`#Z{F+!QGk_Te-~{<gNm74^anCtwBHfo>iA
z``o!hA#=4lsof{$951pKl6+})LVRW9fS)Lj`W3Zf`y>|_l*S-x)}K&&lGsstx@mkt
zRfgi#@|<-twk!9TJer5TI>E{=B0KqohimQ6U$kp;oF<RpdYPTfji>8EiDtT@7y-3a
zmHGm<QV27ro{zlktaCYD7rJqdctAVZXIaw8SFO8=?3Qxh^TNZAe{t+o@{al4)AQG5
zYg>I8jDsUrE2UC-d803kDJjZV)0>)Fu##(U^RLr1@(<!(x2gZ>D{PR?#IL4vwnaQs
zFL&oy_H_X@lR0zu>1hc_3S3VO5z>gY;$3)C(`rNKym`2ds=AKW^V{~q_A7Tfq=Z(~
zD;+$&QuB$W<U6Q0XX9G+Q$dpI+1dIP=NGM)4ZMIQ5T54kh`H3i=-`@t_W_M{NyOKl
zw2<T#)wh3Z*_9%+SwoZE&%U8%v~o#gB;pqV3a+ioS`{3mde^Opyw@}ww+t-b8S@K9
z;K|0Sgy_@|LC<B8q1?S}EgfBv>vS>q%uJ4XEk?-ka*TcVqNrFzd~?*4pf}YVKN%PH
z>(J<{#B)@&<&jFlCd(o>s-F~3ByY-llHu|~$vrYPM96bl<YL~=>Ql0cUMRj52cv2d
zmNg4LIk~L4Jo500^?PM4OMJRa;P|^~^6Co(ir?59EZ=Kr*j9Qy$@{qQQ~67lYG>h>
z4|KHKPtQ*vm09a<R5q?J`b~YI1GiJ<4Rc}9&95?P@cP%jx4T6a9TeJ{8rM-#zfizd
z(7bZkX>`+o$mSLGHy0h0k~*)p?I;)5+A~@jYDTMeq%)SOpM?)yVw6mTDL!avdKtCb
zZqZ85olXgxO_se=>QW8L4&ZZ<8W|~lL@>-2Y}%`}P$1@13&mmRrGSC|(%;_n=mq+m
zEA8KRmM!$;<g!%)SrNy@6$dD-_6jFXoY2tNvwZy~A11?sCa1Gdz&4{Ul&HH=Irl-L
z%uCwxcUZ#u+I@b(r+0cF7IArdJf$k|%7Ohg2hC7x+}+)WLUh)8@7d*^=(#L1(&pNk
zg13*Y6W&r3q(a6BrCa<S1#P)=1JHPO*;4In{+m)6A3W~z)vKpuCHTE^PPmqNE{lA(
zcJc2jdxTbNb72J3O6&KX%@=rba%zVjX_NrAuAcrF><%XoAum_<pPct!Qy970lwEQp
zV0^^%bR66kZ($NoJbXIN@Cx~3DdX^f>9g>xQes_t@H1_XTaU@iKGM1K2g7?XU|3_!
zh%2{1OyGmm4S?ruCH|tICj((=tuV;sHf5#pyL%QiM_MpcRy{0k_Y3vQuIb-k)A(?S
z!-EGE^`XlfoClS~PMqj#Lp!jTG8XRrOSA*T-&a24`N*@BSxz!Pi|Q*;BjmG{@7-gY
zq8WMu8vRHZI;&t;mNnU1euZU{;7Fp$X&MO)Z(Jzwv`y<iFm))h<tlae@<`qz_m4^K
z_1$y>j`m5^I)M9F%Fxo*!<Szal3IUZLcEE^V)u8-KixsdUZtGs61%%h#@+1xC0d7E
z1Oc_&G}*d}R{4(AVQS@)HrNR^$Dli_(|oH$q^NDKzwy;34_?C$=U?qqz4SCz&iCD$
z>$sM}u!3ji3h;1LV0>p~qf%FGJZ;;yL*p;5H?2G(;~Nbz8Z<Qb1h|Cotd_7I&R69c
zvg=>p+uOTN-fHK>#6+{L+%DTA>l3mV1t;ce1<fsdDrcAb^2w=1-0@f1Tw7C%&#M|g
zAh4~e5!%tZW_3vg1eSz$+G_E`=i@re>X{ODuj9Z9hKGZow7(;%Mw0s6lF4>e$P%}B
zaxKYDOX1kr*4tZ9X-!tn{he>=9@WgO%b|V-?ehDy_3$4{8RrOfLED(EZNW}`9%QS^
z?)tHZuJeKqAMWdH2)mF*&9#)g@7lcIcrqbiY|OPLiB$0B#9aLfzrn=(_(^cQ@Jcgm
zufn>X&M?<0t9k&h@rXTI)Scl%sEFSjra+BAs}~rQ9HwV_u}a;yOtK6Y9!x`GC!cix
z_|l+>7twv~)u$%C(|<W$-RM!G+VL9B`G7gPMtFzmCg^~hSEie@%RHXpdBb&bZv~9w
zM*Poyu#b;V7$&?G%nXt9U3x21XWY48i9OMCmr2LAD?TzqwQFkJxBO_;x0JTWXKgWd
zscKWo+R!X}DeVApq3!VkzPj#n%qt015x)dlIB$hL#x8rjj@^q!AEm$785<k3PcbXB
zNIW~~)-TJ@VeFwA8KpdwXN}T{Rf&s^Hy*l&YmQM}M=9D>qG@%wHiMiqKi4~rF()mo
zN<`;=ZP(aNk6$c2M#cFvrLR_r=oBAQ>2y@oQ<6UYOm%YcF3Vk9(kkQL+nlL+Z>d*;
zvhH<_ym{YN)#W&0mT`@rB>{+uT`4RSa}UirPFJ0H>H=k`+1RuaYWoV=5|SRT1jok4
zY*z9WHQK%YP!uYU5O>I8NFp;c^X5jC!VQLv0+qI4T~J!aYpKCJ#*k%A-U0W%%h{Ex
z@stY2WMe~E9v!`Agx_N+d}7xw&4Z~n=NDd6xLujzuWkFN$xoXnrEYtySBe24#jYij
z`AE2llB8KCR%uk2e<4|u?YLy0+OE2bI?E2@uE}SqUb^g{vPF7d7D|QT>*ed!*yEbT
zaxHdMwb;a>WwKmFb#!!6dav1)MQI0$nLUzBZgAf_z^@<^rZ}nXPVFGI)uq7eH*8=h
zSkzq=on)2BkGeE=y&RC}2&HGy@5}J_?euGkJ<S7G9n9%vMTh6F&v3!_R~#zYy>#+-
z9UYzOV=p7>cD@^Jdv#-P!P*+ON@wd(t)l9QtNQcqC1yGf{Z_GqQFEtx0L)>=w6|}F
z!RqaNU`r$t`yZu_oUv_4r^kk?Vsi^);xey~6l;kl*Ch|G$uy~`kTY^|bGPa58~TVw
zqbp3I40M>=#5}aQ+iqHZTcaJl6Pq<^jy}|=&)3_ZbC*ySeF%+4!!3n(d{mpu5pAiC
zPoD?mZE`BziZn_p^4T3zz)VdYVH@h9nOPIgXf&Eup6o*yu2vqbw?L!O;%1NTgJG3E
zV`^Tn>5X%j8qxZfRFItNUfHJACU}>0JMBVe)eltgNMu$~8a*Z_mU0Hupt(k3{29Hr
zqVnQx1Ruob<SL5*iixo;eB@9;cIh!h(Cl71X5f{ZG(@X$57ayKeqw}*Mx$k21~yc*
z;ls=k34FNA(U8XRci>TvG7n><a{@lJV!PgIF%$hTYE4`0YiU}0qAmMO>|M7r-Idm9
zD#?>4DgsO)(+m|mV>G%a{fuH~sws_S?sSM}wb<=VeB&lbIdN%dMAgIHj&a@T9o@Fw
zb@U3hM7l{=;%GPmpnzSQHr^F1tsSyJJ0UXHVKhvYiQp(WV}X{HlS5c#vr3pg^4*@C
zIeMl%_)zJga!-y^R%X{a50@6v`v$4?vOFII9A2zC)N;$zJ*Zwa!w#j=QwJ(6Y0e0R
zbK4Lb5!MPsnNzZpeRV41%;CvXOTpLo4ns`%m|v48#2+HtII%illd^NuSVHju=22z#
z1($9e7>4gQ^Hw`}ZIte8B}yH$H#Q|D8LN)IzJDWr5I=ChkJ?=)zrbTyTgwkGs%vJY
zSesSsWcnJEk(F&u*=ksN7hiJk)o2(LT<zGQ*Hi^9F4#Ld;8xOK7$zs7I^5RPme6u7
z<wG4@nl>0IG#)~V*V0vNd&=u;rxm@?!)(X!P_CBW(G2I7@)df|6~;%JSx$}q)lm8?
zYd&^MQOOdyM!z`o)TTZ|UE5$$^EAgId3<O%+ND1qsmaaF?Q2W0Uf<rquDh}|ScXn1
z*d89Tee()YoqWeyqJM?4c~V8M7oWp1m8>3>wwfe6$Dt<2YAbtlzowVFd5c+t^`iA@
zP6c_d%|#gvAWQg#=b{o+<$y#%D1o_3*5@?O8taZTXI%TYEr_~xOGK;pvahS~g6_d*
z!Y|ko=`XFt3VJ`eqQA-UtLEtDY;B1Gan%Vem6~J-wR7}d`RmuHN<o*wqsk$b6-lW~
z?Lbtu)rU7Sa&oNGYb^5bRVPRjdYcwkS)RIA)?*=!FAfcuY$*x}6qjpMVvct~B*)_e
zHE>B(+@OCgxwd^kVSFU&;lmvg8DsnXsK>&zZA-S>+Sw(%iZ~Ix!_C=8p(RM^!^_)+
zp~KF8O?NHiw|H&rYaSd^Rv9mp4wlC2I@Z&pcd&vyD7B=rSkq+Qi*{P3Ssit~#>_Gv
ziHGaTnph&NBDu!GmQx+2DKN`e^=@ozkqCd|PM$TW!V3}^p~BU6zV-fMBMp<!R!>gi
z2dZL=dXsA?1;)vhN9|&T35%{hTg_0Hri~;v*GvqCNOvU(=6#HsJ5ci6E-v5pZrrtb
zJgafNu;KQRERVpBNp_3yg*ZNw()jeHf%vhmV8-M80$HB>elBo#-Pq7W#w~nFIK4lq
zk}^4W>BEh0T~&+F!wX#-lPXaSS<Nk{*m<Ji&&vsA2H-27qMI-L6Y6!fCs9LA{Pmk2
zy*(bK;#lFt7ZrEsjuweTib?i;hiXu>>rn_SZvf34K5ELd)7fk<Rh96`VfLhm){adw
zThhAI4SDN&F2oi~c_cqmtkWL-)#{@Ub#LxfVP%&ABD?K?U!R4?E80qr5CvIUbz()y
z>K;pSKQw7<HZgyElr`w#s>Dnm*}tPT%iXbou&+4tO}4jlQ>A?GeWs|^9_8MB#%&GC
zyB({p7qKhb6RhvnUhs`z#^?X8U4QH5duG>YQSiW#%kOP$ZS$c`<IK8&1V-~YRpsjC
z3!-?2{6QCfRLM}SwCahgfhNb7o{-=_wu^V@-AmWE$0wgZ3$(c0^|1O@^Oci>y)|~s
z%>)+>c%*OLv%IXa{Ky+O?fSaIbY(B7JgOu5>ol+zjyiY5r5&ifB%E{_$~|1V;6d>K
z>irG3(U#P=hpgKZ3ByG<d|Q@!xC;7?PYkBCk5)D(-`LCYk~6ay+rwxI<7+O}HTNrI
zsAe^vCGUM0Tac!*&V-VpRqE6g)zc}vBS7M)+eDY1&}xQb(*D8jb@A_c>GtJ0baMWc
z^78Vg>T~|_Jx5)l>?-3(;f=5Kk`zX2G8;pO@$2&l_|U7P{H~HAq*Q{>c<z0ojE(+$
z;!9O#=D-o&k(%q`Z14d{N0^9K%Gx3p0J_iFCh>r4Tgs-p_xx65x)J@FUNSfN+3oQz
zoEK<z?Lx6)bhA{Lf_Tjd)2gbf_VSZkwdKw6?TLh7Md+w;TSG?0xL&3k&MnM+{D|X9
z3+Lvmo$+Otb|@C=sY<IzTQGu;W;lzpR%c=}eBFpCmDS;3VUWCZi8nvv#0GLu(n#Nn
ziQQh-lh=1kdrXXNJoZ6gowTEwi0-vewYhR;`KhbB^i@7ai`I^H7Nx+_q>;V=ctSCr
zByC+>c<*pRjce+Mx+^SGaafDr#pQs<v9WWm?At=7<M(1>yw@r2(2DO?7(de8Xy>ck
z`{uS6`-4yxx%zs&T}l0g+PZ`MPwhralzikGg8UK2=8g=OEQN;D?%p10jGi!XE&j%>
z;!WS#G*$9W?0;<mWhf1O$QkbPxJXX%I5p8Bs+H@@cuBD^G&JlUdseS)-WjW!kx|jb
zx^>{iHfH9vGagJmhKk*-L(K4MqQA~|yVv)WWUUX}&C_K_33+XFJcdfK8lqUJKDg-<
zmvHA!%I<<71=<mxu@<Ry^!GZkn<`^XlNWEizh#-N-I{Uf(buL>bMv92FZ$N?Y+TZC
z>}ABgS7}Zn2STe_TDwS2WA`dF<N4|zrgf)fRdlU6>ME7Rr>rn{WKgdpoHWV%^zkoq
zOYudr?8;~cIc37?L3FP7i%z+Q=RUPiV|!mr*TZUsyUa{y#NGCcw_olvcj+1%H8xE;
zJkUF|w=jA$OU=N&$hdr`by0Yja9ig7LE{pVt!;ir))?sbknv%2&!mcL@_=`iGJAyy
z{oK5vWk~*3kQ@{WKRHcj7s>exn=alIDm>gE&uT%|D@LQ6o{vgPReE1<!81dfRHvQ*
z#QHP?&BOQZRSi(=N!{kPbky3`&JOOwcqJ)yH@)}O*3r@NQ5`O?8+<&MJ`((q{^t5Y
z`JtCN@s>|cy0T0ghaM+CQ0}O+9G}qgOY2UNbE<c-XgKodzIj2F&CAEcotC@0Gg%FF
zV>kHm?`~?*t+PGrj<Lnp^*<L{Cu5(}XW=m}{NlZb^LCfc(Uj0*?F8|Tp4YLaXZYyH
zu7!lKlX83u=PtdNZ;|U=H0WXPwx_`!8>07X&FE-n`5nVE7BDF;ldQ36vdlk)l{w0;
z$no8WM$5C)qN8rwRmQDzZ2Ij&F7@ee!xc;qf4s<n=gNci46LuJRG6Yu@ns9u#0nT$
zl}6*zaM=kfq$jHJ34;a`K{dTc4zdXZc0}K`*xL@sf>-9$l_YK5`N+(z{;W5j9LlND
z$%0qW*+fJst#yOHh)#H2dv+V>#-CXm?~|3mUST3HzhsdLZhd=leuGQ*Wfza(U8oK2
zXkFFjrp}2rb7||kM`KOV$t-WUSjP_`DK6z*Z|7k1sTwit%QJJ?!OD&WAMBU~zT^z?
z7m-2%m1Yj~hjs75vbao>t8cAy=>HJvoEt3P+$VjcoBw5&#~BM}hY;xOFp!83+W^UI
zQFOD-Q&Jdt5bFNAx*C(#Rhr}!2p-)Nts6#pm4av8><JIoW^P3OHS|^$?WmVwF=)A?
z-7+3;6BtD&=RwVW+u{n(MT?Kj#nq?M3RbPLxbj<N<0U$~g=SOhhwHB}E_k(fWB3J$
zEI}dYk<^RGvQi{nS{zqPyn`L7Q*nvDb7$+Cqt1sj-QH=54>BvF^~mcT%tIj5{?%dU
zsU2NTHw~k8hqLj6ZY8Ad+pA<50XvpXTz=nLe#a1{&=cy)y6G?7du9Xj&(PE~#Qe<S
z7gqz1`mNAY7WegW7n7BhUFY7mSu0@N?UB-ZsATL{V_jKv8?5tYH=!YYnC@8mw6FD*
z(0HY3kDC)UBqW3#_yF6e(q;YFfWNV-DhMyCo3AaA6)Ib4B4kQbId*y@y}MNbUlbme
zd-@_tx7Oq}h@?KjA6N927Dz<jx+T&PS0=Gx$@=n^ljVckM=#24x9+S$x(FerJEW%P
zoxV}9J<jb+cc47n(j>Q3`BK*8cn=a_k?qvSi*mn*yBlqHYDhm2^nqwy7#h4}0r8S=
zY+AR0hZj^F7NXaksQqyGsc7%`+e2b(N2jOfujy%rESP-mP{>eK#ZHb;V`BE#-wH`g
zJ!8`g8^+hf+<iDqISIObT4?k6tbVcFoQM+}6RL9_<&&R$r%h?zyaxZ=hm^H_)$vLH
zZu|Aix%dWJTl2PiOpJ}a$qm_VpYzLbIdARc<fi3Z{J;aQU0&wS%^wcXCx#JZ(V_OP
zX}TG6-Y^(tm$;18CDMlsu7!lePdInPzU)_$c6V)&Fu8PM?)-F?#ohUDCWR}-xVX49
zorV;7xVUy*HsRvpI{$PI7ni>9YA&whf)BX3xK^H<$Hf(~k0WRG3m4ax<$sI*E&8|U
z|4q@>$zP%bj;GkRz1qsf#l@wisjCsEZh4aHf7e4G!&D3zBaXp?WU7Q6%?hNDK`IDa
z;6QsKL??k{ss#zcffhId22a6|Q1<jc-G`*4q~s168P2byq~y21Qro3=a7oF?$;!#d
z%E;}I=91hlB_k)p1xWr|5P$Q~U@C^fCHXJ+^)0ynPabOuL;|Mg76u3;dx$~>b`xnZ
z6{Ls(8dDYAUrC|tcETtuM6#z*!I>5s9BUB+G%z3uA{&BKF+d-}&C<>u!eJq@H39#r
zFV33|#-5woi9ofP>2izUXIn&lwnY?3##j+SoS+y0+dxjrMid$-2H*%35KARMWM#nv
z27+4^xB&nFa4?_@=t5+0>W!n~%Mwm+(@3`n>S9PBY>&Z$X5_D2Vn*BdEi^t2%8dMZ
ztl}_8h9SzA&A#ehAHr=B+zuFk_Cx{}1DlbxKQ#pmr<-#BQI9j^{$PxskRu(5>Vp(O
z7s7#N<b4oK1w;TfeI3y+^kYeY^5+@YBKVEkPja{)3W|T8AHlDctEfyP|F#hRO7$nP
z|7madzxR9{|1tLV;uH{rBY`Lq?l0@(C-Gl$#}4VQ<G+-Q^bXm-<Ntr+5dyTPEP$JP
z`j6}g0-POzA!kRJs_E-wN5Bw~hQ!t_HdLxTtRNxb<m7~!HXCFakl30XVMQYlso4?M
z5G6Z;M8HxY7^FB7uppcrLAAk90rv<9_p>9W!Zw^8p=FdEp=XbjLsQLg*%26fPB26|
zfwLp5F-WvSMu5wXz=1@9Bl2cLz}q0d4m1prK&59#eD1-Do*jXqQ6UnBN+9F2BS;XL
zK!qp-G9I8(Fj!6*M;QfzsM!%%3=Ia65)6?J6JQizWP<>nfjI>qvZoSA1ZNO84a(F2
zL&n;G6!Sl1fifi^u@%M5jc5e0HW&&Oz~FE&K(zs9Xa>{}M+2x3fFTkA7;6LKXheh?
zfDGY47$A@VIz*!Y*r}ioI1(@b2C)1T`Ylo1f9d>x?f(um5avt+icTW_WqthE|F>_K
zlKRg7W##1l_W%FH^J&HvxP<_93{1cR98&<MvNRfn<CfgwfFp)NK<rdusvczrB8xf^
zV+9hwF2aE@mO`*cnkfK+hY@4`+V<^0IzX6m3K+yvK*SsDKr-NDL%`ZhS^v}!XfOzK
zJcUNJ0m)P(M1aWqv^r53K!N~Bfd#n%fJ(Oq6#$ru_&qlOP(TM7fdb+b04jxsBz$-Z
zM6*`_1gFNZ`%83!v%mw%ID3ddrXqRMw>ZD4`x>y34G7pkFqMoUfdFLvmG4gt_X~(H
z;6xx25w6J~7U2N}Xn@uj8j;EYP9WncAPkFBK%6*?!N8va4gmtJAqs#t1TbVAV4!yh
z1!!3#u|tzaf$Tvsz@7+VU=U&OlM*W;4g6NiKSCUCYCsBr;17l)_-7b)hR7fa;pa24
zUlx7M=WZHIg-9F$09i`_97qMRR1gPHL97iKB0_iqIL)IK2w-5CfF~oh{}8wzj#&s$
z!#QHeSP=JfpO_Zp==n;`cYq9SAg53AU#sLy>UWEU;AfhC(DoBpD+nTj81k1hXN@7k
z2wG&zWC7ExW}M!FVEsK4GumgR1OUEh4kO!+?_KAsVOh{IBqAr-|H_5FmjSluaTvl7
zw@z=^X0ZY+M5ZF6n&D}dX+d$6Srdqe<pYP+bPgcWBn%Y==zn$!q_L<bjz9%4Fh@uf
zum&+y8imseshwW%0kqbq-mE~F3V=8Ql4bzlF?*0g0LfSoCCC}@H>UQbvCZ)RkF)$e
zt2oGsOoT8vZIJ#wonKV`n8&Ze@k}cuBL7D)%mhw-h(i4y#CNsd2iB>ctT0$Rkc<O3
z=LcjO$qJ+ZTQD$ynI8GpKOc903V+&5z6^&lGSY(oA|V742LCDUeM84Lb>EXQ+X|yL
z;}BE~fecarj*@={+;nJ{z|2ITe;p<jga0FxGgaS%q+;;@UZ6w_6@>pHg!VKdQ6C}_
zu(P=6tP<a>4E7+FV9i<0Y(O%S03hPCz~<=s4E~>itwwah(BXd-Hjw~RL9!YShvWs{
zWB#i8$AJl%Yb||byTp<G9NhOA8R^eBFvn@9lmb*p41g$r=<lMO_>AnP2xKZqvBqFQ
z_&*ZONDyuow?#^S40WmlL=FY$LoiH0c7G7376vdBPytZW*AWA>boUsj85$X&cN?J%
zG!d+7hYY_229jwc&g*pBsY5_<Ku}FzM{wrvueE$C{-o-!rNkb>p)h1JM4j5qf6vZ0
z0zV-Nhpe?oE%0R<D#S_ja5zqu_l2q0Lpb<<*P@TmMI?|2R2YS|r_E01H}&7-P5Nkn
zMkY{U#6h5`GZtW~#WzV5Lf$_UNTg7*|7sNZ0tE>qL6ljd=j<Y1W7XkQ%mS1^26PDO
zKfy~NQ-2CpR%-iS0M(uX9ivb09cO|0srtvxv2S{hDKQf=A!`5wa2lfkLy$Us>ZEIE
zq^7H8p|)33*T_QOK+oi`#XdblBLE~j5-1Rvgp7M;kpD50=8SUoB=D>1A2Yy__=i#J
z>lyr4pr$}n2n)@!CHhX}C+HDT1UX0cXW$L=jP!Qv9hj8>6ktfRM{;QpH^n4}49-#n
z*ifnVVgL+b?O>VdU)ldGVQ3hn{D3T^`o}~e5?^MJQxGvUs?ASGLmO%u{5Mz(28Nv=
z3hqZ1GcEEHi<y!7vqb2t85$naGtl@iAOj798oGu*wg(MeL)4F%P@g&?0SMMJBoJW;
zz(F7ka2o&2EG#s14S!0;?CBXN`$AS0!OyQ8hW=gY7@`q`f0RIcC-F5|22<4_4wyBW
z_-nEV$-gFx_ypxgdBki&e*~HIT~6^|mP}9~B1rjBw*7^`Pj+Bm2y)Jzt%)=w)BOx_
z`f!zF@&BvRYzm0OV5y(K#4zMsOUy#(9|-=KSWV8|C$eFg+0DSy&8F1Nco7T|rw+Ei
z_#}h^!Vrz}&5ri-3GeJge0T2q&v7$-1^M0a)R*Ny-_&!YI0yH$9MJ<*&Q0m`T_=G&
zbIyT;;AunRln{xW+guwE*lmNMP(=|2XS|Ukr2$eg1R{t7G(Hai76qsnD-N|JhynsQ
zj?BONY=8)2a3Dn!nM#QA2M2sVl=<;N-&9iooND`5p7c#=7N6Gq&qw3gz<qP{_al*?
z9|8XL6iA|EQ8IrOV*79QHGfe1Jx<PXHZ*e&Itx;mfCI4@3P6C72noR;?$53{GTV2^
z%KizQU!t^!aE2h3Mj=q?Qzw|y-{O6~o%$n*uY<%7&OE8eqJRPPztsc4HV}=7;{*>H
z)dr#voI%{|mt~x#7zG$ikpKgh6e|oCg{6QPDrh<N*#*owKe9yFu@s!;+Kh8cMzB@@
z1ixsjJd?A1A1A&Gw=>-8LpWdt2r!N0PZ9j}9qH`#KO*<b;DI3n;4uQsSzo^=m=4hZ
zCl1F%f*m+>>CPeghdgUp17wH_z#x@#6K(lNCSZve?G)u=v(E6$;xNTFZtBZN%+%=d
zAQ{O_Kpa4WXVw908j(1)w16agB8Cdia@+gI6DcC{M+5!AJpYr^`bFQL=kn{qpSgsA
zy4vo~slXTBFwNF%R{Y2J_}^Uka+LpI{L>#=sbR4YjZFOx$sbk!+|3QYYWWwT`bVy~
zXG8qsi|ubfe!HIQez7`zgX$m4k7jR6g^+yudncQfa*l^lIiEvMyA1*U$2{ks$+2gn
j@PGPKroW%RpTD2KpTD0!@%+C400960%O~Pv0CoxhQIq5o

literal 0
HcmV?d00001

diff --git a/assets/jfrog/artifactory-ha-107.104.10.tgz b/assets/jfrog/artifactory-ha-107.104.10.tgz
new file mode 100644
index 0000000000000000000000000000000000000000..912d01f24e0720de724ec4d4a2a24d8db926db6c
GIT binary patch
literal 224816
zcmV)SK(fCdiwG0|00000|0w_~VMtOiV@ORlOnEsqVl!4SWK%V1T2nbTPgYhoO;>Dc
zVQyr3R8em|NM&qo0PMZ{ciT3WI6gn?ufWLJwcVPO<VTXKlkPf>lX{xO{#tH3J+pHX
zh=e566u|<ZZB6RW-~K(gco3vWNq*$fsdaXzF$i1$7r@2EePS-@2uG6fSunw!g9+v`
zoZ)Hmm;3v5yWQ^N-Cg)^x7)4$xA%B&_b<KOCwotJ_jaE=-up|px7*v@{R`^e;}{x$
zxsaIurF-YTs+0SJ{BW8wi6v#J=(iB^w!?t%3mTE12p5#4ee@*kb$7$w(-uMzmN;SK
zFv3zMB&4hp5!H~AxQ{Z-WlDH$wU~-5!LuO6Q_@F&f63Vx?H665@Aqq)jR=-GSHRob
z?b;gW`H%z`cBt#$Jwv^)_f6Ohy6d&|IY|f>#0;c-2wDhDiNrCM*q?mwX}H}&hz$kd
z7kEe$DrfF{FWl*cy<Q7v)RkRqw{VtK@z-s|BqM1|(ufk#Zv`k~X-p;5$(WF1PQ-6X
zNK!mZNZdk5kFogFLWq-$39821M-wSC(eHF3b#z7e>xi?lnqmtfhmc-3+)+yx6A^Km
z>CS#ksj7ezbn3vNH#o&(!jZ_cjB!cRF~UiLrubLJQHG;)JXU2R#-~_{trkMVoF*}n
zj3ol$G)4zUNMVR@5w<2w4c(6L^77IQFJjY<hxAU1MruSOnvi~{gM}bcbX1w>l-DNA
z(sApY%q|&^0eRl%R)7F{D?l;1V3}yCUGY=>rkG-yN=#G20SuX9n)DG(g~UlhxcFZ;
zP`3g=8_}DhA;MDc;a2T75-jJDUSf-ZF_n{i2-64nX3<)5mZ|nxme2?eW6N7Qw{bqo
z`LCn@35(9}v5zJ6zq_;3o1_2Ry$AaLDSlOAbf3hAj){<cBqn%!?{R;(yBm>i_sP!Q
z&Jg3#H{1Aev^Uz`9d7S_6YmXob{<FDJKJP$6mLh{-;AE(F4>K{-Ea1A_nT3?x6>Mv
zlyEHdHPGGO4!S!*_vu;pX@76Gzt;<&cK3SQkH7Bj^>@1Mk8)W41AmqCe}R*nh<j!L
z7oPv^?cK+_d)4#5+j}_wpX9f;hF*{n&J&6B+N-O*a+8IvwKa4$p#o8XF#2Wx&Ferj
z0FuOTX+w?Y<Pvj&E+-^K(FCW!C>Wp<!bymJVL1{LmM1YfPuV59oM4G&EJvzc%xF6P
zs{*tiMMMZBC&V_tq;i5jd_dt(dVijiSt#=1IhmpB>()47L!2n~bq&!e9+Oitra~%u
zW%xW1#4I`|+!3sz?n#~`0}^o}g@%AofTlAG;s-L*U*F;>QQy}z9}w<4)(%BDMMHwv
z1>rP~Ns4lzrmlw-8oDS#52=W8Hy5usgb{@jk9ALPnIwI5%wxh48=;Jo5#c0_h+2r=
zX0->jy}1}F+S!~Nz3vHC7x)h%5KaVxZJ?I$N~1}j4GS7d3!s|??H7IY;Tn+Wb#K-s
zrSgCkESD<da%BGXE2HTT#8jPPAqjVXns3D_RBHJje6&eC7AVSvWYeQk=g-NQrdxGi
zOyN%~$)}|J*Bh3n(iRP9Od`yShIR|&g2ZUZ<OGd4o0|0juGr)4P(m(9f&`uBiNq;k
zxkzR(r^eCt(eJIs8kLV`^tGjW7L`wPv$5aTka^ZcSgLIi$3!vuNUF^u0PX0KCW)GP
z#4@VCKKlF1)8kj~zCV6*SmN<7Fz*l<bp(lWPUWm~PG+Jbc`g(ci76+Vi$`Wy2VUQ5
z$q_P7qCOhoL=Y${4Y9IC*3iD$(31HZ64pa+?Tp1j@%Jny1Cqc1U<<FUp@HP;5K9IR
zT8fio1}B`;m{jTGC{Gf_I3Y=<S%M`&8-N%4$N*AiND**Yo2@nY@38^cZ<V`L0B_J;
zYYo{lA0krwL_IIfy0+#IA)I23UA_v@EOUeTkbcw2hcuYdlumI16(k<_(Kq2<*n6_G
z^W^c9r;ndNd6p;12}@`+>!YL5TP9C95hRtsVY;`H?&7zc2x<OOukk5#*WT;Cp>0zb
zWqBX9d)=unNa&Q-wCKI6HfXopBTv<amsblRg-3O#_4Qpxil^XFI%106(o~XEonP1r
z5t~j)s&+2RCG04*#u+CUl;r}DPEv^`SfC*xDVnki5~Dm-r2M_QGDXMr5YTkQ!e0eT
z-$U=LSa}81!lLP-mRsn@)C>w*y)RARJq%GDVOZS@oJtg9iCb&siT2U@hwF8<cV4oR
z5J0USJp2`1%Q(GIyWDIUN<^#fHeGy|!cFg;N--0XOn<@C#7*DlJAf^TFK`+uJPH!2
z9jcfO4rG@Lbcs_5XFcQW!XS@w#4b}Gwt^F}bVSEFoHk#8u(pOy)fL+$vQX`kTwTCc
zlGOoX*YW1@^#J<%T5(A&cNxJffF`)5C0A4cYByrdfYo2#-q2}^JpLT;mq@}>Ea?SF
zW?TL==XjC}ifeBV!>o`ifRrF}5>Z0W75kMZQfw7p-RW0kmB=VWCz`4OYf{&Nx+vh*
z8<K=w>Sat3xx&-T@Qus3oZ3-uZ+f#muHsa0GsW&0+@fYQ&Vw<xhvHTh8goGqR>KP1
zl9|hII71>M5gpAm3jNMos8Z0koECwT_XC+(UU;a_IgoTVf`6M1R7Iq?+=vtP@(o+a
zHU>g<$`XQ}W5snCrdgqgv&3xWVk4jDL&8%ci2yk)i$n*<Q<`>gE+>rBe*<gM;X@pC
zTIzq*aCNW6eal&5E(--dPxRHQYlY}Yq7h3HcBxr+RoS4&3blZ^t7eu?2MA~M6=!+o
zigfY%y8E+oIoKLPi>F1Ykfd?OXe!I4=9bsL3&MvLP-9rF;_pi=qe-bGp+dq9tvgl7
zR-Dx8ST>^#ux=;<UEEq*Yne|5WF6YguJQNBpwvjMLM}+C>mH3z$|Mp*-%A>rI!lu0
zWD8*phzjHcDuxCq!1KI?5r4K2@^uA<(O*M{SBkNvGMS+%Obx)G{gWdk**Qt!#Op1s
zafgdB!<DHQ2j`MO`|`}r6bOq6nvOXUuy}K<pgHHyadb}7xWX^0iR;n+C^VC5kb+Zm
zq=6z%BF5o>O_<_6&_Dm>nv8Ow8j(I*30yXC@f;~4rmkGT%D`-Ph1-awg2sfC7-98j
zJ|$yvh2E&0rB-DNmI$L0PDb<!P0fzWu$-KMEVv#roWWcYeuCwsk2+<IjVUY%))Bn2
zYQC7|=%~-CT9jZRfOkgicKu?b^7fXA2yg@q6oT7O#XJr*Qp0kCjI*m*Fl6y85cJ=w
zT~{?q@Q@@$Cz9jQh(>{yiQAi}=96N`%qN+63ugEaG|h!nv~`NpT=Q(2h$6#~t8FbZ
z9O-idB*ncS5C}K}b4>*@5k@wkH;4HH2$*+Q$4qhjp=o8_Q2Vjg?qIct%wAJ8um$Xx
z`2@tYn1U0wsGBk)oWf2>kWqwf>8-8Ltm2Jyv1Tw}gMiY;pbN<fXZd&nlRky*1NR6O
z>Uija=d%n8VUH7V7MhSV;2HH5Y{%cSH?lsCYQJa_#fg>>r9_`HK{Bie4Ep};?4%d=
z+=%q+`1IreZKzM%o2vGZq+~>asP;m2>|nre;h}a;NQM)7L4ceXaH{5Zh<+d>)4&wB
z1C0QvI)kZZJ_KTEGP4Ba70;qtBBF)gW1dBSCW@lwYY0TdrkdTYAqZ=8Z-Q3}=NV^`
zMXcCuf)vDksF8=LR5M74Vo@-k0lp?U9g|Wm3(8(BaEkg1Ns4J2*rt6L)Zl@BeKz`)
z5_!q^d1hYv|NK|W5fep|EC|J!5KT?g(B~AW@OaEv?8GuHJz&_^uQkR^5kff2=CrTs
z8!`NXeu#d!hJQFNq9|SS-_A^plU)MED2a^}rvf{dO{aMZ5+^N~F0^H6gN|yH_?G$F
z^yccR*ls-4O54he6mhi;f;zyBz?*QXF!TaTJX9||`*_x8tEK4~Y{*MYWiVnqh=(BW
zEksWt8W2D&P+GVe&S}<C4PG*CK^wBVwx(V&MIXLmLUW7`-A;Q6Z+Gsq;-0E~NM(wr
z)F>@G!-NexT72w26)-!ehx;$y9EQ_aG3P~j>B2DN|8CN=`MwMJS#K|V9Cm}43@J{7
zUN7Li$BLS}sy_-vJF17quW^EfxMVyw<h%G#pu4H*;gwWqjny*rjd)E+lJ3W`+Gy&e
zx4+VIwJE+jD6ZK)YWMcKKov8>1vH9C{oRR>CZgNj?kj49x%S0;kYGAh%?y{SA*g$&
zkM?$VwiSF%r&wzjY6Q5jlSd=93umrCvV?GZB>=VM1jnZYB=h2~knAf}*RfJ=^&Tfz
zvK|HQd<<5p4Jwn8XmqV49PMpe>FAm#AGHF~wUUT*tyV}{wA+Jr`Z4+T_{@7Cp6FdN
z`2Sw(dq{C6U>LJ8Pxqd|ao^lhfMzU5Z+;w{S&50|DPv1lVj?k3w5kv>UXl$0W2?p?
zB<8YZ+gOnbLp)C_4W#0VW(9aAC%_!y)Sm*7`nN1SDQJq&lu998U99sp3VzWFk7G_R
zv^ZH~OwAR*ObE((vV{_YF9_VdaPg^)jL0;T>e%HxDYv`?p%BR5JoFYUrY9dV8_2Fr
zJk)?PbM&`Bb|oi7SWT+xPw1iAO6ATcYM@Te^@HPoOpn6vG9IcS#Uzy!CjvUtuqr*8
zrjA3hBT(B-)37#=Mc`4Rw)uKa)c%Zzfoh@)OT%6rfNiEfSe)Nr06c;7uv{nzTko9A
z1WIT`QbFEnIfz<#il^^DE>@Ntnu_|?^F-tY7mWJoz&tRt*ajGF=uaQb_li}GWMVgo
z`Dp9@P5%w{j^CjmP&`7AP)RsWo|VS=?9qp_;~x&+URP_`u|IqC;q>_R;k*6Qx7Y7m
z_!20J0nwnRYnWfZrSDCa_E9bZf`trv=K43nV@nv3p^S6ae2v6SVsS1ymQ5i+#^S(H
zTBm-5B61}=Yl6r?PDoJw0;~)!nySA4S3PK_jfC4Ve23=0h4O8^b}q}{@jTrZZ&`ZE
zm;@fm)m#^I0FhsN73dkK7c?Pb5-*2c)LjKKP|XwD<WNL7(Y)N!ewtdY(rbh>ZJ0}m
z2xHDN^qLBZ*a-Pww5$QC@7Zdz5hRM(G&|u8j9nDjUp^7jNWE%RE5%JNy6>yEy}y>O
zuvmoRa5W*Us8JriKBM{xdYY$_PKmJq0!!%vPr9N)Qz5S3fBo7jNVTkA(H<?5R5zZY
zg95C1;GJYnpngh$U69BUYDK)_jCl$j@7ir?fPE*C(SP5W;npU%4wzxJpM<^LZ^GU(
z9kt;^ooSI(gIJY-9S_>jnwU*=_IiLW2zTlac=KfHH8?_rb+>xH0p;-o{#G(@0u1ld
z?$d41Ce;+mL>yMBE!-NCV?@#m%2^7}+6&C7swWf+Bun-x3hQ}F>@rHG7y%AKJYiG{
z#q(I*Vrr@2az|J|HJAudeI6EF{$zXX8}Wo*%QwHgJAC`oyPx(?%@qrf%p;}BMVA@g
zGSk{M#sKrouFvY$F}iEMHGmUxpoES{G>a0&sIhbX-ZVHV?f_I&b6emgXVVh*=?t=-
zgnQfJ)fW00Qwi|=T3VElB?QEVGsH5IqC86&j)h`?V|JP9KZaz))R`iDN>i*3ncl6O
z3}kUS$rXtT#g<wyoW_0h&$gJfw@^EX)c;;iXhP6G|A`)LL^)5?C6B54kD!TK-ykqj
z(?AghmP@n^cWuAZNmzsv#l!ZWcAxf2$^@Lz&PA`IRjHkXUXT=yz_b5{j(<S^`q#H8
zW{5-+Rzd(3NJz!mgJkzxBoab0w5=+qr2Q{9l{I*p4ixL(_X?{sUaQW#Go)$9pFE7<
zdy*tfOQ5YZ0YIY(PUD2|_P>fPVcsYg+N4TbPdNjns!5d|gWc!4PN4lQiZ_?4ZG^4*
zlQ91c#l+PT`B2yKKUu7va5ijwQfr!PN7J+?%8Jyosxyd6f9g#lP;g#sl_|c0-Qing
zW@=O-G@E8XB9_JiU0<s@G>wuxCa7JpV-nGXOi3Gs==!>}zdX450ERwAMAz4bh&Svz
zGXeEvr#N{*5<D{l>cenGNRa6T;RkG*sk^HEw~Jo5-3_}zw~fLBpNaUP@E{4Tx##tD
z?`ikL2SgG<(DgO^GmX*pwdpq_oU+*U*z20|GH&{-V9&Hvc+WXGn{Xl~EQ$MQ&wLR%
zTsGd9o)K%%hrP0BuQ(Ka^v&|km%Ud&qLOD1JLOJ0#Vy=C`oHPcul3%YmU>RS>fJ1D
zu(f5G?D!mSyJB$Hs@P~ZxI!8OEzLF#XU?GNl4u!7VFoW58WX8`bj4bC3>#!vENvkc
z+}N}ZHtp9hNo*vpYr3Q;2o8nB!-R?nO~-OV4k(Wj!bWF27t-{tp3gPL%s01Q#?X1$
zc6r2-SnJdy==xZ9?He$cOu+IKTxE6Hkv6~7FN9Ho$L9PABxpKLh^=iUI%-o{uS~_i
zlo!lB9X3E}xM^i?Tj)rlOO~#KMiGxjB$8#bKV2{ME$EkwlL|{J)V@%}!rvdjU}@2%
z*$3dt_~fbLhkq2-XkJ`W8BI#6A;oOdG&jmMHAj}j=n~J=L*5ELIf0R=@iq?ASJRg&
zop8__o$80<TRhdzd2LIfrsjr2N9C5*WG`iaNUM>Bk^aqhD*jG!=b)U5=f*hS{XJ=v
z^l|rhM8=unD%D$e*&BCd;Tl-4De}XED9J&SR><3?c_L|+kU&x5I8O)%10(mBXQ1z7
zni;1Iq$gl?;8cD4RrM?5n(Cy5jGCopiQgWd9ijle!B=#ePqkcx#O9^SMhJu8S#407
zlDO!S3e>Z%s9h~&fe#02C>m!~i#+#gEj5HuI9pVE5K`?p1jYqs=GF?NG><Y0Dhjca
z>X^W93!aWz@UQNQOc5L+z#|LM6z!j$9lhK?I6FT5MH4hdz)DrY%tb+Y@%+RU9;XA%
z6S!UJ>svtOcbt*5r1pEN<}cYa!qQd(dwHBj#8hP5atN7`V0_cF+(r5O6kn<P6RX>B
zyKApc0Y?T4mYz&Fs4t7vFw%zu!>6n(DxJv#btOJ)?{>TG_5TQemVvgtf#WeHlG6yR
z#I&Wt1*VCDHz#L!5<Us9&_;1ni%sp4G-ManX7r4i(SUI0eVrk?>ClR}-z(g_R~zKL
ze`mZP8Hd5g=sn9w`bM{UkFWqo8g&q#giqCo)EGEXX9Dp2-gIEVo!*XJP&@N$)2R;R
zp#Ig2?=?mFwb)YOEz5z6aM+a$9i@VfClaiSHGXMAh6ESlO5poUp%cc;_k~cx#s!yL
zTLVV)nvIQ*m>QCW9HJ8@1XUx@nzcTP$uJ*pA)1cZ7P`bdrRjJ}(MZBM1BS%(tAO=U
zTUE5~Fl%e*Fu_97ND$1UiPOLOeVXf79Zx$izfCcjoGbWcfQrZ0Mr}IKheag#(rBNP
z7);8Hz0sBxH2sZc@31yC_^$u7`*gcq^yADP+C^bjwsfc*lmo>**z<q}l5spXH-_5l
z>k&(0Q)>72x|;X8THAGfxT;4A#-B!pD|Q~NM9{I8&#CRM2s3nUYu9h=VpC5@l6AN)
z2&_X=VDDPP?8Yq0ofTil$lQZG3)DQE3NsLHp5FW#jzI-smyDkiE<6<Jk~-{2M>k3i
zc5$rU0}40lshBHjYoH>Qma38qqGf9Od-DjvB-T+?=a3Zx|E;+K;KJU%9B809PRh1Q
z+H`bZgZp_x(ux(Waa7p??S_8*frp5`6YO(yf?r^XUr^`R5*8Nv>a7Vqu~BKes21MX
z72)$gzoZFK>qXq{Gi9-6`f(I7uK4{#H?tMQ1cM>yl$obM%3@-<_anKktxu;@jUdUa
z1%eyAvHp#>obQ_DSDw=p^BIiiA9nKAn4uV{n<^HCq6bV9{X4^ZrH1K9gt6`&Y+~(D
z8fkN;9<xyMIgZZrY?ZoeYkG{DaAhE5pJRj69wa!Ll-<uX&*Qy#`&zKCUM;(i!>jUR
zMr;B6<Mi-?@R?zlz{r(JqZ5JsHY~6iUQLrNV+xCtOFR>n%ebJp;vfy@whG>QwGIVK
za!Fv)*7Ot9CS?=<cSFXcq8piC8XAT@G)j3(loIeFtHqbLUB!G%WFNsJ*!M6n1VlR#
zdkSyO#A6Bv%*S-X#%g{E8;`-+Slhj#0O_}Nfb*EjFaaZEuh?jU=07;SeM3W|x${4G
zFC<;5;Uf@|hHrGLC}u#e)PEZ4)Qs8tIzO-x2Vc*)rlI>Z-^xa-s%hmu&9~B0p_(@4
zLt_icF&WWw??X)Za0Y+3ECVx!2Y#^`oMx|B`O}*y`{s3hOH_UH>cKtLWToAD1`ipu
z0dd1<iZ|_^wFR%|_O5>W1h#^Q9P`D=Aw4|R_A{=ctJ3LbMB5uWHdm>z{DPv8ia1J!
zo`hG5uupBJMq*u+c<wwdp3hoyopBNXLAJtWb+I_W+ONGZ5|Yd^l<4m-o*x)<JXp~;
zv%zmk=MCl*zZiCoIgS$h&;so#=JLQQ4BON5m~s?k$djE`UwpMRwWHU#lhEO}D2ngW
z9{u-!8|gT^3z*JyCVoo-_p}av#TPi(3wz;iFZ>mA$9-~=v0gaE7bFcCA9vti+q!uz
zkd6kjtb_KP618j*E(~X=J%d5LopEAiGnKmT4c!nL1C=zdZL4}EGS3RbRxMgvq&XN9
zd88^Gr6cxy22bEN+DNF7C{&Lpzwh>@Rk=9WC!S!<6XKWKnYby15Y7ivYc#CY+O_6D
z_TzFBAg3Llv+uFC|An2;ny09FdwBNlbpPkVI@s6sSQmqJF<CDc1W~0xvOFq9@M+=_
zof-pOUw5qgioc)*;0s^>Uh2-*h1{^ub_oS~L+Or|ZRi_pcs!DX-+aF>*y`|FQIC~}
zUH=8`dP~S}yzgby@gJa;SpQ8?>mcXJcb#IzznlXh=C~?dC4k4ViOLaMagTbk3xvxy
zHfW<1#AtIN05M^gLhTW-Mt8lcCn+fWHfW5xo9-~x#yP5-Co_dWZU2DC=;0uJ5eG?3
zYRsiR=f<z^VSbEtK<X{SP?O!4{#=QIVODj{8wmN#{7%Us2$ebdqPXf8RD#jlep(O2
z8C%v_$~l*kI)pc?m5rMul3*&V6*3Tvq6n0-{^3IrWvkr?c3#D*4MGA_E6~u_!-_TE
z%7%Pe=Jf`bHhq1APhd;9aOXAdD&G}#!q~ZfaxI2$>e|Zn9nDv&_Q=V~9r{%px~o)~
z!?`=+(q1zrR7rsLo!ZQ}tdmqy?m1VxB|33H^kQirMf(O%i@=0#7VxK*FTG(g@#0Ii
z1O3JZ4@mtlEulYfPWRR@xfC58PCVssZ{{ieEhi=pB049t5FJ*9nkkEk_9F+sF7O;v
z=c#D)*H$UkkqrrhSnAndIGfrw%Sb9jg1CB<2NQCIcD4-_IKe_73M!)sNv68>dJsSy
z8eflS12;Z<^x@6^;Oy}9-4BPqTpJB-C8E`AHFql$BuT53bO(VdDZ5$Kgp4$V>dndV
z>Dm6<v%VjqRQo+@tXY=BfzW}h6i*W8I=)p*vV_g1B$a=igIWYnRd~d(HlSzYL`;yO
zfm$_sg*NuH%!-*e^_FrGG11FA{>t#?V`u)I(G;oq6`DWwPwhQvV=jS|*jv)M`5K+7
z)~gr;3}Y7|3_i^&n&_T4T?f-_=_<I$qUdnR@7}hb>ak|?&4n@bhc~|t#?M6Gi)Sv7
z(%)YmICbnA`gLUf(qWSBZwe#l1OPo(W>V_4I-!P-{nq?*!FZI~z!i#2gXZ}U!#x0D
z)RvDpaW-_tgToIiT)oR}kT~aMTKb?v)9J4<mbj0;YdIzyD!$Vd-x=H7R>7ZvGaHeF
z_xk$m_3A!un~&SgquXvA-gc<FEsgMZ*9|EB;o|UD8f_b{spS?J-WOX2dD@REVyR#W
z0g1a-KBi0}PPF<IP;Jp}sv23l`Rg?sm-NP<KG#nip<@zhRi-r>aJFVv|EU|~LR)l#
zfk<Nxi$*gPFmU`Dr}5W1y4@NS;562M2B$<@FoMCValhMF9jkg=e+1_~Ri;@?ngKih
zB<zOWu&3D|&m013wv95haFMp&*T$L8#txk0EsQoWtorh<t=Yd7xuu$Vn-U-yG(}kg
zF>c9~)M1+lHNN%~4EDShq1g$>Y@wx}9~Qjp@n}@y7%GjafEkh)l&OWvJcn?sSXd~v
z=5Gr$p`Zy*7>*SbaHa)KML37W`-tLLT?=Cg>7EsaD*K~_PoY*jhF8<X_~Pj|f3;j;
z$c?3dN>k5o)6s&K_nz^?C&w{3rX|*i7V1oKR%HPE_TKZQ{H_Saq>p|N9QzK=SnYx{
zQnj@f-aJ&=RWKxtR{}y5UL1(EHRlCvZ=9+*57>ofNj|2jwV^mpi3!96*OLCYu5Bx!
zj%srPr4=%dc{HIHB=F5~g!u-!a)Kx!IMt>GC_tBFsAgyWD&J7kSpZfCF66Vmht>@R
zZBmxqTp{+L4*S^Zu*H6+zDZQQv#EV(mRuoyC&+tsfAoDzSL+1&sP969@;YeU-buOQ
zK>IO0l?R8XKOLUF`^THt@BFJoJy8rMtn2dA?$cg-m9}s8|MBkZ`_sey7lR6jZ5=hK
z9>T%F;b5?!@!o>AUhjwhI6K{ccX0gn<<YAOgk^o-rm1W5_E7b|u-S{}?@o@7U&9>t
z56+H$I;>RhRq^AuIC}AVzJ9s-n_u1y4i8Qb&+5F-UqZw*ySw!*@dKHil9A6>Ye3Uk
z;Kfq$J_DCrd_5;KYit6l8c3UhNDAT7QOYh6CxXVr#Dv#@-94pGSQgB9G0k02Wg8gH
z8KGWc6TmKx731YXjq5JfeQpBIz`%vRUN_x&=D3Cls8lqi$XFn{KXv3R?@xqi4EQKp
zzn*Ck8z8|cbXFK27}!n;A6svmIfPXrB#kJzHO(Q^k8^|*PH;Rc2I7N*L2Z>sRm2Kk
z-}3X*P;2d)N=29OIZ(Zb#1O_D!jjI7x4gb!@i{A&*5U}}3RI3=nn-vyi@*YOz1K#p
zW^}rKrAkF0Q>xlDXP~Kd6RB<z7aiIUyWX5a;b!R*79ABW=F}$uyyKF@q0%zt-Wr3a
zjC!qVGgvC?v7)%<+D^UsSpkP9!#WySaFs*@CC5|i&2#JoU0_+2uuB`Stk>P%RTr3l
z_whUxaH+900A(kH`i7vVXh<~=sNjeypuaYS5?L5@#OvC9?|F@yzPpeWEPcgsL{7>+
zusdBNJ7)2Gc%&Qnqpck5Ndq<Ueo9(E7}bJUPVS|JB7c0Vftm~Bl(Bee0H>S6|53eS
z;D3%@c)>E`n*thui~{NZy*;RrSOTYIqMoi4`mjNP?Izwwz3xu8D1%<T!qHsGnk_qk
zNW@n4-rfh(Z2R~W<TXw6tK+N^_P!hesX6o!Tt%R#O{1A5K{il@=24C9xN-LW<3{?J
z3lr0zaM#bWu+Bp;%#0`g^58ON><>Xc9=1u{HhGBe@rRD@@t?Lyb{1`t&lWReekTCJ
zeY-DC;yjIUs;<TzC|M9_q!K_CdBzWYbV_jiGpCXq>&IYC{Ac47Z`DRd{;I<@7V>@l
z9I7~0SpaX3&kp@`TXdW<PK<`hT+%ud6+GCc>Zz7zwb1k^%I<K3vKk=5(S!seVcOe=
zB(DZZH`Oc2#Tq<6si)M`=DZcBPupu?1;s(BJH1Ny>OfT+0FL*%<v0ZZ;lvE~1?7ER
zVtAe@zIsU$X!@E?sWT)L=QMi(S<`-mD0T4U(MmS&Wdhoc!dM1rYZ>c!iw=tD2Jjd+
zCeT~+7BJ{<e$jVc8xt$C9klD3wcA_hazdktb#fFao~3w7BfUQANLuBShNs?@+7Nrg
z(*$lJ#%)(=o+Mi+WpmxZiycunBcxhvp=iRG3z=;-i>`OVLxeWQ**0P++W&c=W`WZf
z^B9@s14yraINVa7(SM`kjHCmJqw`Jk*)GZa?1Q#jmVwoE76;$9fB>MOcTjMaB{QfE
zsR7j3D~F<@^g&Jq?0XQC7$5^D?2d_gJR2MJBHNw)n2sFs#*B?sP3OB@QyN@sH+~3=
zl6d3PbADCNj#mc*6rfj79~~qtkL`YR!@!p!5Ie!ejx7*71>~JZ$ZB~8JDc^5j4H@=
z@o)7)9VTozU*ekSjuuo{FwK2c8$D0husl5-?A2QZpWF`1{=Q!RL`R4lXsuPdEfVW!
zT01A$VWVolRMZH08aggFEy&QzvL>Zu+6zH@t0+)^Yq6E(ZqyZGvKKj%xzan&u}CJj
zABaI+z5?^HKD0xcPltpbj}HAT2ST%HuJ?h{CSw#$XySzuQCPd75wnAAJg;wV23-m#
zq@WaW7lzI)dl4rP=xS|$lE1JVP4P@;n$Cr14`v+OBS1}Io1yL$*iHb;5-~%+jB$sh
zY#VR)2hh?8vQ2U+tw&PjFDx|eSFR8&%#ER#JAp?!MTr^;!VzaeARE-Ebk#Yh`?-nP
zBnS0Nt`)SgP9Za4muL#{Uq>czegiTj(@ao^Hf+lFXQ;R7cW<l+PJTKtl4Hkoy-__F
zmInfEX;TH`IB`L=c*BQ<P?NEgpM%&KMuCrUb`b@CgTV$6v;ZgH-5Q`?Xa&*-VWZ)1
z=%Dva2Woq>-0yT|J;~fSyGv{InrhS!O^3hv8N%z%SZ;ElT{5*8+Ibt;0Voh##eO>Z
z$z>16QYtPiwx-Bns%v*OP4zC(d2g|$NUE!1ucn%MCSa!rTK{lm+UVWGiX{RBzkNBd
zkxa~9G{ez$g@t7?c5XPTi6C5OV#7Mv0lWera?Nn2x%VQmgkz<(F^+$xR-?t~NO;8i
zjT#adzu*W$fE=BugXN9Nw@Y4xlyoFQnmv2;;qA-8yQ7n9n~{{dfXh0B1sLrs3g{C@
z8?(ZFEEB<k8ZV%m69?^9gf_w%jv#4G@xn5%Hz&>f=f76o9%W{0Yo7V4De{>a{jn5?
zrU=BMciXFj6Ew`Db0S6MnTK@Hk&VJyA68MZ89d`u6eejbO=kA=kE3ibmt1w>4Q*H=
zW5DJ|XR{`%oMhMrI?>sv5rmDBHdXhCj?o4uS%RZd`tD7ew#}tQaa}g$t<o!8leG%s
zU6RUXDH2z$)$q~KRmm>(tqVqHzEy-kTC@G3^cO;?t#(7ZkJ`py^PS1(+TNP0nQ`_j
ziR3#PtNMQ{{`{`CGUOD0cTQ%e!T+e=;+m>jpnlH}Umd+gC#Oe0?VlZ@9}a(k(*H~U
z$NZi>`@a;54&T10saDfVlu(k&cVvobVn*}7zxs0sDV~O7g9U>GwQS9>ylK@=4Ciw4
zF6UI$vfIHX3=Z|0!oFY~rmAj3?&caeV6<HYq?;HpIHLkULDi<ASZT()tG(_w?;^tG
zyPPLJ(96rqDnv81i(W@H5Y5=Q2~f_4Om;4Mq58E;5G{*qQ$P2Ob+96_mQ5@}vm{z|
zcbq1(G7&J(X6Ij{2~rWo5t$P6+Ag2LU>s#$fHg(Xp6mAextyp+l8KrG<m(7hCrKUI
z>A+=DQdee7GESnxSQNlfQ{SVWMgAohTv1ErDzsr_12?rxlK{p^lo5~%a%4<4iZNB{
zX!1Fr<CMfd^5oQ5XIC(ZgspIRl~Fz`t9@6ycHFaktM)-&E%jgA_)-jZe%i5!kwnNM
zW@UM(Rm{$#)#NFv*#f0tLYJbn48G{uEkSj|+7_%xZ;%V}y_A_35VI6*bI)?GMTXlm
zE$_801XBa76rNAT0C=DQjmcpe@fq*|Kakl`?9~CwCx5o*Q*of`vNy)WXVErsqGYIY
z!XYLeO~++~>p*!qCv!Wa>(yAWcMysamd7s@WBmfsmiqTu@$CmPJHeC}6D&TR=zGK&
zp0BvAbtUyW9>`fjbTsO66=3d9FqfYA)RbnJ%R`-qcVL|VRy+t!613GUHmdzp=EI=E
z^MnoUu*?nPqt6tTFjL;F&cwoRR+)AY9Cr}{oNRi@F)d|+tjm09#asvaA#rqKQESW<
zY&<KPy~I<R%#8p1flI;cQu$PBY_LoVx3=`=aYkC3B|(^Z#2Mak0KvOKWV;19nF)W9
z;{*y6$9Sq8IbE3rwanfnVrfLc(bxFm1t#GxO~;)$$4MX*xXzmW?#qkI6LT>%8*xO5
zSb!h(^;Wp~XZz^nVz>RTE&Z>@?q9p@Eo4d*j?7nGw%h*Kr^FE@bI&6$^Y!I~N}}B&
z(z!s@){|)?H+jBCR`ulYt9I(M*9^zcaiS<Fcj$6)$idOcdR`ozpo60qr-<WpTs)aw
zhU~<HG=MMxr%<tv{<+@khWh{ZIy>9zTL=nzuE5Puy<#BrHfK}qz-zq;5}J~^E}@2X
zG6=&E=?Aq=pIwBGs~^|1^$(?CZI#AkUfK&Lr3XEq;oCeYX*AJd1pDN&vW3D^$9!<%
z?^S1LXnI2#V+q<YsW43qo8BCP;8_vPv{*N%{(#2bBX4aDP04hqqoHV_exfDWs%F3X
z@kpBp0nMiZy=5_h^c2>Q6WpoMh+Yw$M^v|i`D)9%oo#KpXBNRGyRT%of1s8R)bfE^
zK2XaCYH6sY#8T})VXZsn@g>BhF{EYLc)GW<^Np@~RZ~0<Sz#pO1jq9UFUSRf=>A#@
zrQMxivD6V`Q<vA8Wh`N16Gy=$?4bg*`Znb$GtoRu=5!N(Unf6@><t=(9?1bqh2)q*
zJQ^3}bc(MA=j2kWEZ0!c2tq8BiOYlu>AA>UPDuJ=DzKzt1m0GC^n$%*a$wSem}&_g
zlEfuockVTyw0f<+3Ew3LXIa15sXv(D(07_F+Ht1(zfD6O62PcYO@M$93_-51t&`uG
z+KtYWqihOPL<{FcyR61^G$I^qGloQ75|YlX5?E!x#xKSBJ^*PhwRR?y7g3_1*{}El
z7f!yQs*hQ!9Uj8D6#6ykp8`|Ep0<jQXfa2lu(D%TgWNJ&SDxE=ho$Fj8In1cRUcGM
z+4QQrT>Le3Y|gOFT@J+84BCVZ>g-fReu|Fp+*fNENk77%z;mH+z@?gmWAt7}5(=g>
zoA#$3cR}~PeM9?WDcjh=Aw1B!B4dDprZjcx4t3z5IL~4%$v|=}$=JQlO)_7WBw(8r
z>(~Lt<jn2}XMXQ3lIgx2P#9H03ZvR2s;CqqxQHlLjV9*WZO^yswF|z-SMB{>ZCuSO
zX_I>G?{Bx6-q)N(L=@rwN|e)^qEjV$5oJsah-ndC--0d<5ZoL?W@L$~%i~NInnrXr
z6>0|KwpVhcrs<VLjFS__5-sT1-ZdY7on9@~MClwk-*kJ0q8jXA-Csf^bJ{DdOv8n!
znb@ExTSf`{k|xB(2e@QB)&-o{$WpO`=7XvBQ~)am<U{oJN^n6r?pZB~Bky*<NtT#g
zZXUlf8qpNgmj$zOtgb>Z<Detdwl&(2iENt5nc)-S{Z!I@+rBvDKjDPN)~5^1cm*5D
zwju}Z3FdM8Tb+j&ZdC1RXRR~@N*Thbq=D_Vbo4YJTjbw~?fOem)lHo=wU+j3g1;*1
z^{$7HMR~tSDy!#xV<OwV1vRY_<VFhXU)BGi6t>EZJW$v#o5HG>UR@4ypTWDtRK8^V
zL>GBEM^LS+fIa=%u8B@f_8RAOt`>Wk(?r7akqB8Nu=!OTebt?bk|UwLJ$}?`6zZ-8
z#rE2y>6Qk%oI47dcP*F_f3JS4ZVqYeR#TP+aBpl`(Cy0Q(e`hPlu5XJ!av3RWb=*m
zU20fc(wg55Ro~$!-8+Q%u>E}O_#SV5sfz_+&QX<QFU+!0lV)RCo{d-47B+Jk5#Tap
zomD`P3q?ijDRtH$A4Uq9we%gY?N_zCsl(qnNlgqjV@Idh0s>Jd4IMImLT@yzK3d=D
zt}hN%<G}w};?#UBS6>i`Adw|h8d<S8V@0TM>w032*ynT#zIPWsyNBj7aDS1$zRfO|
zw|C=gat!_AoH#$%+OOoBx$|k$u4|^OxDoZ=HTR*q`gGKYv)2POoS|rf)3NmjlZh~q
zVm7q1i-{GeV?mg-g3eylBq%fC|6JITuqHmnioq%0;1sLDe0}zM@U@?ocFle{dp+>W
zTZN^ri#MnyK}$qx%jEgg7BR-FERrr2W&sea;dHX&je~uijaJaHp0C1KDNipj2g8}m
zcy0xz()4#?GG&%zqo7D5smQryHQ-&zVj$Y^Uv(t%)UuCOI10gf&R!1`9F6(|7h$zX
zvEbf{zGa*j&ZjxrZaJ3jd}`ooY-;QB&@Yl@E7Tik+Hm^4V&Wp1*!V~0qpJ5eFId%g
zC<qj0pG7!~xI{s4PG;&4V^JHPlNn^+T{tWo=mxd}CxS@5;0OCZkeMi+L;g14#03_I
zt+4N}Ff6}wIy7TJ=Q=3#d=CY_Z;_UIVXo=DJExlNnN-t%{LA`jcemTo`~P!Y$~W|x
z|I~N#!uT7-e))s0@=Dk5UgKiyG~B+uyRFh6o)7xu2)`S?*KGcZ;<2}0B&T#wVjVdd
zUb?GA?aBq=!8oTe=|pUr<&p&M!EIu6{Y+3Ua_}g2sf<AcBboEAw2t*<wWrH=tTo_}
zV~V9BqAWMVizbXl#K~(R*0*&f6%5f--J^mCVA~@7UoJrs3b}&|(SmWaOsJGLZoM1K
zmLePzHGnrXr3wq7jXoGN7pu|E#cP&38Ar+EO@mL=CfPzb1|gc3u?mzDwMv-Jwv1YT
z$}VgOcAm`8kmJaS3f2qZhK>7ZLwadm(|r&1qQVonK(Z->xV4qtAr^yk8%6_!KS=C>
zZiZPalPODAK$6nycDvJxxMdsM-{wU)3mde`GHGATdI#Z_ncU|SZIKHaTNRG3Y)e`-
z_g7W0x7Vu)AGo)D2ZY$(zc6Xv++Jyr_st3XDtoe4<X6c2prA?8=1}t>X?u{g-BQ|O
z_t1l+?awD^TXF5bL`j>?TVLE#wqynE)6>UyxQ}c<pY=Y{$wsxh&`S$?G<wVA2`7T2
z(ij#%mZ(|Z8YYS$X3;s}Mhr-qsg^N8CEP>vVFNPGjMad|Am;ikx~~<5ISUk1Zsi`X
z%ZKaomL${ep@-}8&v#v}xb|P-bxAIW_RX~~I(<PbyC@&`tgL1DJ!9vVz=(pD=x2zA
zW)c+@w?fX7f#fuj_I}c@#ydR*iI$3dK`+6Ne)lcD)ig>TuC#|M?bfdVlFEns?9X?f
zt+Mc6;$`Nt&lVS&D_Y@F+qsMFq3h`367nyh0xf@*i|CJG$RQKqS#qeqZe+soaNFKH
z(RC-~;l};*-MFhR{-?fm_gX9^Qx=n?xKeFNo%JHx&lFWar!1F*Bb&a>-joGl0E4-a
z33EBkSPCj}Hi8cT9&MChZ31{dYO@Jo3kH(JP<<{Dkx}Rr^d%4lgqRVLu1ja!ZeXZZ
zU^<{<<+c#Q(B7plw4@mRE%J=;F~`}YxIz+ebL%6QZM*-p`{bKCKZo8Ocn!M(53GjI
zYB;R?SvZX^_7Yx0&z*_QR?!m}bOPnn)+CR+icJCX$VTu%&BKv6v;i3KGAC{the6~9
z<C3^@0&^g-fxXv7IF6|fnq#{OSG*+@rG7=E?>{FeeYE%@wtj&gRku5`O4RRsQPz_E
zUX$fq^L23l37{HKxA+$O?5Jz9f%~Qzb-nF{xVv4BwLd2I?swl=C&Pl_@Iurqd%|yb
zS62vr1RE_o(l6{{{t`@*9BLkJ=P&+=+;sohHN5dfXd5=rBZNdWA!=iPe|C1V(jE8t
zpP%<i;hRvq0<FI{-2NeK^1opG?R-*MHyaAVFSHEDyDLk@tH`|XV)0b!?7{5m3wjEd
z7Uto`{o-%jFI6sC+DQLtg6X|Kz1aCC%lqj?&ueSw&Cy_Rbo}<+!SUO()8p5zDWGxA
z*<|^P4;Gci#+lf9@z&Mc{v3|KYisE3n5I`P2<+Rhxwy}%qK_{~may4WUuXJWgchwz
z%r&*pHuO<Bewo_B<#=Rj3K=X2IH)VaMy_Pj*5-M-FMbs2t=#MG7DcZ(%QIE>1j<I`
z0(S-7q?flWJ!MRK#Tlm;G$G@%qpVts<20G6$}ed`^oI3ofX3j&Ha-*))=82}?zSG`
zu}d9umZ?i=|MhDV7F&=gVpDbcM_w!~6D#R7Pt`6qITqWs5ql-!Q<_52D~=;_Qa%lE
zfK2w`6V9$?&-2lU@KPF-wKXJ)u;)i77mrOWb~H-x*rqU^;uMdGj-UX0s~k^O-B=p$
zMron$OqL=APDdeAy&E>}XyiynIr6j@qFlA9OAlI8m5Smvj*aX-nL*cE;8Q7_X2uK=
z95U7H)PU+IU&4=xV~j!BZk;_ZiB`&InY~LSLt`Q}_o$e;&V~L^<|uE?Gy<-Ig{<R3
zel>QdU01D*|9rx!4u}D%oOJ+1FKsDJJuvF>HMzNB9mW@$7D=F6en@E;{%wOv|EYpP
z+t|+QHL;!jicZyOs+P`FYU?lN?I9Y8TbY&%n{SegZn+5NIF1oU?+v&79zf_bp)M<d
zFd7`a`u~1BI)k_-01@Ks*=T=MbG3$E5j0lhYLq9*?6bTh(08bk!4k&YnGzxJnB47|
zp{E}R^jl8lw~B%$1fA0)!AXLGu13$dC}v0`gk-4qEyR3rPmckONrbuQdaT#V=(IHb
zO&COFOW1f!xPK0ew{ybArhstHIQ*@_zt&BB@b1l7Ks;Uj8Txp)`U>6NTk;6qep+p^
zr{1k@fWk%v)dMnjsE{$?+`ngqj9FgFjFpfJlJwCf=Be5GE+K<SBc3rX!S$J3Wejq4
z>TB)Q(c6EhV-TX3OdAE5yqOm^t+<yj7C{6gF-s-Bg4J=@)bQ2SqWe<}u)jX8qBDPg
zY!IPYFnt?%uTZ_6rkJL1(V<IhbCgSF5|rz^K~)J<70_>*Py**<rmskw4xQz26wlSp
zGubg5DPT!lzSv=83a;We)f1#TEL_RN-#j{>_<e*ydf@F??Ft;FR2DC6BjhnTNcB-`
z`1%t>{jDp5gu3MqUd-aPHDv8d*ahL2oJt#X%jV}O6JNI{42xvB4A`dsMC(v%eG9Dz
zWA(o=CQ}GCI{J1U0o5p_B{MX9YQjBinJ~CIKZ(svu?275OGp5q7#TmYNvmK(=Zb|$
z*l3h6T;iJNv(XgwUNRm*9zmfalNtuy2twwnd*Qs!cwWjJ9TAAW<-#`reb?vKg!Roc
zAvrO_fRNKBl-BoWXD5R#U_ErlgTZTLdQ@uzVY*;kuER4EpVelBsYcw;xf9Y#su74M
z%?TV=2-9Vf1Vb1SU`@jc9t->|#^^&1q=y_x_nreuGZX$Px45(r9+DfaoZJW=Q1Bpv
zL_Rb^G*g^2w}LJo!qG{;*lLQDfN1%WA?&h?Gn*j2ZJwoVv|(-r9j&nanngHi8&f0`
z59Lf#B70U$Q{8_#l>VA72+q|DN&ge{Aa-2$meyzqBc@Im@M5vrmikJxD|Rbp%x3d)
ztXLg0rrEK~=fcdx5%V#TC-WaN&LoRi(nn_pC$6;0wlzGhPl>8%AHpT^=+o}j?(UAl
z#MAE6?$%TDhh=<NMp7}MBZc3I%f~w}=c)$8(PW_-m7r^&h}FRC?(WpV(Zy?P=*8j5
z>EXft+2M<RMQ2i2(?J$`2%h=6*L}PfyzX_MJciu$Xq3wwg3`k?7dSb;e@H)UT<%Ll
zupi8)Y8zn(KHo~1(fg^iZjv|aUUfr-eWDS$e`cMJK*9MfRRbSBAeu%=9uw3yL>F}3
zTEbCP8dR#PeXc8ZKC{NBNq^I%@42ZR<n1gy{&SWWQt|QIsDtih@xS?;YyTOweShec
zzdvJ`y@G(N2cUIqn_%g#D;wvz;EppE!%ZR+-+4_(V+@R>G?0lApXzjYNGs^x;0zcN
zjSRK6p1i<R=r3sJ>pn`Y_silA2WT!k(v;<?JOR6=cAdzxUEYVK2k1VU;#3E})C!;&
zomlu1X-NoNW02;^wlXh7;g2Pp-{_jZjLC?mB;JC=OYn9c661Cl7rhV3h;f2+7ACh+
zLzcVDQRRe7h7E%=_=d%#k4_1Wf96z@<J3HDgiiYoF&SYrnlXdWJ@d01=q&bHFH$#t
zljgqAexSekMc;XCjC7+NwCkF++g9mjG<O2UvlLHhq_r)Ikm)d-7G9p3QJ@V7Om1HY
zzz9QEX`UooC}nfq!Lt`pHzPsh7K$c}*=&wZ-{txyJVa<?oNX&!egEfyngdQ_%oX!)
z;k^3ca7%qe|Ba3_l7ggQ(|@h5)y+J(p)1h#-p%cwYTD?mR;}8cMf1sjN*Q<53!5fn
zNU)q2+qVp*u}U%!heFk|@|23Xgh&Y+ix3@2goVhbMEj>fZd(lBBo-6<*d;NXK~D*q
zah4ID%)*xKvDVOGKHr<IUR7BZy2!RsR+0n@Nuw}g9o0Z|Y*S57jOw$Go`k)};kJ?D
zt5N^RlRj$OzxsRK-Q9MhCfnS>bsVvGEzVtvr7N*?AqMVVg-!U^PA)iTZ%BH9h6<?x
z@hbS1GKCl3o_!P67`L_>FEPVS)bkj1_f##X_(`Vi_9^7cV!6z6`AH`HaV;O4+O&!p
z|1wQ1>y@zan5N^<D3oYA(%SY6%Si}90e$YNl-tm|_uTcXIG}`$JKhmnasm<hEhjk%
z1*DvA6-(pUE2~ojX_-VHb)P)exV11snr698WfvHMzSaw(hFoe<!UTCo*r<;leK>f1
zJUHwFwQw9VmJ{J|pTVtg@KsohVnj(2dmybQ1GRr0ahEI%mgAkVjPd%>-}Mf)FdS_u
zhG{LB+I|8UizSaTq3dgq);3!a+nu?BA+chG&Rz~Yi-{JOBQI}@`l~kD@jY0Jl=c*f
ziPMxVv1yig+(*4|H|#xaAq`7Y>~^j3mld3x65#}9+k4>aOs!RxzrU?yyJO~l6Lz(j
zhF<mJ?-RK1z}Cu%+xD|8nV|{e^xx_}P81i9a4s1V5l)PKQml|mhdErsg$2av5;?uZ
z;#_oio(7QET&Hg76nzC5iv!h{>WXw)kYkaVe)~-f_mrlmCJ(yJ>p8_&MbVB~AU-DY
z;N-_2B~9qR_52BsNGjE?K~FRdm=eipB#L+Bnxg<#v+q6>l(+Ad6%kJr{VaXZV<=a)
z3PW#LmGAh1D2C6g&__@9z>OZ@nVwKC6r)WAdb0OlR%nJ3^~i)bfv%K+qCIZ;N}#$8
zVct`oo!XEf9LGhHQO!4@DbBWR)=0HG1{sHdDt_~FlzROTds)+|?h_5PO39ebfkh4*
zA#BCpk$dS$1}a#^&k-EkIa|(~r6ly!?goqws$T(QUq<FWrvFw<r!|7n&Js@i-aPP7
zld@&i`o7zvCJ-exwB8R!{cv<*2vvnnAT;J#<cc2K2Si1$*Q9zu`&zrQLByth#zPw4
zBw?2o4YS%%?|nVjd)w90gRb9^{#g$qJ*$pmx&zQ628Pw=!H9BliIb$Wrl!nkBm)Cx
z#CV{lGc@A}D*84Oj-6ttQR8GQ1jwnax*d~u*1WJ*(N<NkY~|fYC&H-x2s$jveCS@)
z6#$l0QZ^@9lu-4+Hc32=PEe-qA%0QN4y`i1+X8_oA+Q4h%m)_roi)=XO~-+ps6|vm
z3iOZyn$^vCfqHH6zCAi|NPS%@Zd$dYlLeY?t;%z%ZT)A64%I0KLJ1j1tnHzOUD5u{
z!SwW24zO3Y7`ms6wSW71Fk9w`L^vc8hvhZJm!iBvfn_lIs0**JZb#p5^D4G`bx!s8
zM8&Cu1v|6URi(x&5I|H}r8{}7t}3Zs-Cy<7=rNk`y^?IW4ztki{yc&2HEmHnT6gZ>
zBj`SM@hZr^w{5)r<=}f>=<xAUK7GuLPaiko(?`ko)Q~r+0GL2$znTRJjD>5(L5o`~
zj3DtRbZVWyGMBrARG5YvdUnnGT$LQY%*iZ!e3`;grR1J`zE<(wTI7{gcFNMkxXIPa
zlfLf1etj$T!l$xeE?B`v$yc-E{>h8Cz%7Ey&b-&Y#}uxuE%DD^18mhv*7Paxz4RBz
z=>GYy*4i4{H+Ex8JFgT0yb7Mvb9`7^Lq7_Ff*{a@TM&g1$v7Gkc}Yl$rg<W1mXLCz
zmy9Ev77jCDF^dBCXc<#E$%l{$S&Oj}HV$x#lbNKEP!Gl_krR@O&M;xa&J@G5WkQl^
zr|d4IP4fhp&9{o#czzmM=C~h&{DP#CgXn=Fj80g*E>MTa2wa~8h=^Ai{Y{NjaU2Jx
z=Rh)$gAo}8&}pD<Ecj=D6ACdA)gSx%-+I+hfM^B|B1YNLZmk*lt=bi$-&!+Asy$*X
z1j~bVQ8vW9D6^otVK3YccNRlZSC=FeP_A$dow4ya(K=Bo(1>6#TLV*dJWUF7E~EMe
zW7Iqwa~uPnK`>+74{?&9DUCR@2vlpNZg`q{Nu@pS959sAeu^N)-0<8GskEt%H(QNC
z1q=ZMXFPrDtLucNHY5QYeIf}LEnT7x<GhCEFCXt$-s&CuuoRuQ$7hFwP+rNq_tEWk
zyN`Ew;lJH(xANcZo!#EfUwXSw_MYtS?LK+D_m^&O@A2-=Ur_fxCb;aEE583P-8=VH
zo!lSfcfisy$1+c>q~RB<?*@KTGb$vusogzI`S<&OZM8mp2oN3BDxx$&{ejHX8^P35
zM|DGS^a~plwmzF^gZ#Dxdi&)af9*{*!dC06Re$K`{nNKcZ(pI6TYS~}N+GsvYM`fJ
zU9f~yl*$Gn@r@UVHMDQ|Dd4rJd3IOK7~mi6XV8Mggyl(G!~mv6f>d^yBAYutMqn?0
z1K^Lqyq!z*W`A&Yc>3;#!(W~~+5od|ksz+NV=y6CXlHx#<|BWE;05sLLjnBy7D%WE
z{?UF4_z4!qtl!ytxveOfzC+=ayRKb1>UURZ;_IJg<ogK-K_tB($*gdaZjRCq)4(vZ
zNSo~F2?VMHJ{G_i&9<OP&mMgk93Gq=p1pg!|K`w4eCfzP;tz<cF{kzZxrjFZ%4k}q
z%nfALR%{<G`L#a}4OQd2I|ZGmp=RFCmQ8!*jr-AlpN@w9{rKqZ{ZY^g4Yk1Uhk}0L
zG}P`cZ`$jhY~&yD*F=dHks?84MY5!ttlsA>2+3EPn7rg{s^z@aY7+IjPr|3W;nfy;
zKR>SbXo3YA5|ScrT*@Rv@8?Bx@3#Qc2xVY7WX~j=MNgJsjjPRT6>VwfaaDAbju^5+
z0m<CB45);SKl)l~EY;j6z{4{>|Np4`Kc!;ES7rHKy>Y^ZIH`XX*g9H;@(Z3O$J&5|
zgq8u&)i)cvp3jeCP35a2Xs)?gj09hbFrg7i1<^(tb;E74)6+dXrzz$$AsHwCm?n1o
zuC0zPvM8<3jqp-8CNqIhEU1$U!cUTXOj8X>Y@&^(piwxU($qj(P$9+=|3GG&3n2N}
z8Z!ot@?gatj-$*-UiPDi<*A%o#@oU%V%`G1&6~*(^yXbWS7EaOyD1$}66<<L+RR)V
zP<;xbc$;7AE3l4g9{4E15al7tIVY(s;!s#`3w?p=%hZ4|+<OS1D=fXqKoPN2(o_eb
zH6ml1FH3}KR6k}hmZUJiGDH{dWLXE+$g4rcW}{kEhVvy~zPJ7@dNgEA$T274x5OPQ
zRqMt6+5YqW!C}93#<V^l(z;6<!Vv-pTrwVSfq=EF)-?R&i|6l7_6LKXk56Abd$eIQ
zpN)w`0c1H78IH80oF9uzmtJ3^auY*jR%#hAZOr#O8gr7NVvd{Y)31W18J3f0?GHei
zJRAgeR@ZIxJ5uv}yo-V$CJ~FtX3Ma$-n`0e(BSaw$CG}m7ou0j9Laym9G$?``s3+q
zaH28`VWiOlwQUf9c0&+92o|8#@dm+fk6#?VJ2^f*yA66Pm=GC>z^73Bv-_{m1{%0-
zBPUB=7;p_nI?9uz2)(vh9qG|YWt=)T-EBroC7HrNg~T!!p$P>+pv?Sn-PR*ei)Ny$
zJ~HFzKXRz+xWxe9)zXUi#$+q3%G=|!!#+BaXo_b@;&Xy98j(vhrD?9{pEXV>#RSRn
zVL~IdIgACZjZyJe7?@2{c!_1C$(o+AHB_}Wn8TSmhY%fdy>x6YA{1QSc<t7`wHq9s
z{&aLuvwQ%1mBqVh@1@mV|6mu{x8MtDs*WtIH_fis=a;$|_M#<rMzpJ+x|8D<AQ`G)
z0|GFvwwDvsb|D6zH3b-KH|}|t$6VDkyWEaMjW8H7eu;U!BAK=GftU|{9o)jlq@N`1
zX}7?oA$r>(I3kuv9ZmIPXvo>6&?cNlv9Fkcn52^8r0SXnYW*B67}O6~#}=4eX`0-3
z|MKbQayA!6xf7PX0CkNGv8gy0rvw50v={xP;8LhSQz9n}f@pD)kPDoe_>0;O%Mahl
z(q#5mHAY}jtiPw}(+YBi1Y#4S3yMoa`|${ZK^+dx(EiDhGcdB&MG&|Re1<JtJU=g!
zZ4?NE+D&@s6>)0G0Xmx<r-v7W&ju!@I!%49Dl8u%i_thn-|yQ_HG>sNdZEsFS(Ak1
zgtL4+nY$E!JSr&XA&w@ckLrFXG{0C4h{m?N5Df@%>h#OYOXIi`u_+jjC%JkAbYd#9
z1kXCBXD>V7?|<!cu3zIc{(3;vY)AHC9utXaBEq?Cu45!LJP$HXr&v7`jM0Ah>-1{j
zGeym;zV`KX>+f&=QTC4LTdpl-5^XfyPYc8PDl!IYu*!DQuTG@81RE#VA#9pKUPxf2
ze~nlwn2lI!Hm@KOwU_nxtUSKI{`Ie|A}&M|mt-%rqm%w3snSA>Ute1m^yKvD&Hm{x
z?>_DwW(RY}8>}K+Ynb`Mtz)%ehi{%Ao_^$6-@~0<xktcb$75=2kYvB?=tPmG!r<mk
zyF}zMLt=u0$QTs<U;ELA`8@+N>zi$W|7)Y~zVn9JzK_+d9q!y(FCA@p;TDcmQTf+6
zPoshk+zH_p$PKaCZ}Nq$>n=04)AxYzm4;hJXVXyU`)L?wRi-{BXrmFJ?>CBmM>Lh2
zsCOe#(#Me`wZ1|JP8>8P(;?B3$Q8qdIq@V!#;-0W87JBgk)|lmA~w}oMzwG5jpZ=v
z83vr1F*Db)d@G5EtIlkmKo1YN7h43uMDHXAQvDl~PT=yuuuL(CE?h0>B{tA^&wAY_
z;odjl)n*~OO39_=zR-Rm*p}5aIE6u>CtxFFAsC?0{~N1jDEw^;{%AsytiyFdKs}Zy
z5Q-fNVix6!lhy9G+5t~1<%0<wPXhBu)h6Cwpd748tx<kxRT(sMJ%!qk^NTn{;Ad&#
z8oD^TXscn!pZG8d6J*)+Zk=q)WBP)&!sj-{`z*gk`_FfZ2oNqpnI(7ZW3m0`-gbAl
zSF!(mytngU|M^LNA3k)xLKk$}hd0}ZCIp^lQ-zjjLi*^d4lo{_uUdy!8TeXNec{!m
z61Ggezy#)M$hi>|l|bAR9zg4o%1qU?YD@Gxk~~i%^mqsUNvDH+G@@6i9TdRS@eMR7
z?|jwLfuG=_))E59H?nMaWu`KiX9`QBvfndKQ#nHI{}O=#(7wYo5>Y^Y1Ssx5t0W?^
zaJIjx8-qU#4Zz3mO;A~nR*zF#4XeO}-WsL4yU&eLJBs^8X!SUiqc1N<trG^<oT_<&
z@jV@`1JKnX?7D(XGU&G)Ct6dAvkayawtglWI@Fh{4@D^i8j=Vr-T)E~dBRi}rVdI3
zZvgO7w9!JS0Ot#ZtQT(wsxD}5GZJlvt)r3UT{I9U0n_|0l+j9@Nf70#!JE-8LwE6t
ztJ%o*<J@L$tZ@6?yE5hU#_14Z_HgL{xUtqAi<JjhIyCJHv`6V(&db9#Y*dHUQPonF
z#x2=U?IUf>f)M=)wq=z=va(664U5d<Xz5yuk~z}bru7yTt0g@KUC}MdhKml|ES=hH
z0%<gkRpdJ0ZS#-zN&uE&&pR#Zezc~USd;<;>ssI=z5LWb<#ywq@Hedfw+&nUyN#ib
z+F!R(`(67MSLQ2Yc@1%oBhPSe>9EHn4O9bBfPRD%*a<?NILPX-;Y}x0(^+w;=jHjE
zRal|8i0%Z>jXJ_=ykn9c?3ckrxQ%um?|C%|m!|H3j#CmJ5RikdFbK4XQkr-uQh-(0
z3b;%}7@4pd&`Ah@e@DZ|yCjW}sRG9FuF4N&R;n?-xC02hfi@;mW*rcuZGv48<kQ&K
z$}`5%DMU*_XRilVNYgPfhU4XAz{LFaj=ryE)MlajKPHNpFy_diOhh$ci%i6!5fjZH
zhc;@%9G22jQ*jkG_ml{hTo7bENpzl*Ws^3wYYAT2q;l?JYxrz!I~IAlR6#AOv%-u=
zCL{3~J16O?6E8JtFCJ34gT<pM941#Ah^xP74GN$Qt1w?-(K<APTU=}9-RBwT-e?~d
z?N->4UMGw9W=+KvcIg7}tJU_e@Kwm_EjRqlaoy0o7Uj+7U{(AqYxL33ROj??!!x<s
zeyr<g**U%8o?NAiRqKB=ghN>0lRPm#6=FqfSDP(D^;{R%*R5)q){H~mwpE%J0a-qL
zD9^TGU2Z#u+jYJa>vaKio|7?M^(Jg=zi1trJ8jtb%NzJJZ8!z1_j<Edw?pzB@Ox9#
z-UO?6Md*!jd1Ex1m`yjrpJ}rkaTfSOj8!YGjH)K+%WE!2j&XuH@Z6y^kQ>}w3t=?A
z%p0Gc?%BD~Hjo2tiyP=nHSJCRq23^Fn2_jPi}G?8z80~OO?Ct3Zzids_A1gTUz+@!
zJO#X*5bg6)*aSzaH=2$Cpx?t*i)ty6DFnA92tDMlmj(#|qa?>gJ|1Hb0#>{rG6Csg
z${?H1Sm(zxQMYNjVDOQ8x-S=_km%eZi~Q&>sUBt1Beiyquf9beUEl=upP>zzCCz)H
zavsA?^?$!3$^I@_K~kN}u@TOatr~9X@hHdx38BiDKb9fJ-A!K0^8w>-L6vmFRY{ZS
zW(E3Gsd+;p)zHt1)mKH`Ty(x0;cu?>awN`oxDb=g)mKL6@*Z!}W)Wg#&QlvvBO|<=
zdmaR_z(Z<+wt`qw9;xa_>4-g_!B9N`XUstUN7I;Gp%8T~!}$nGP6<S5i-=#R=jzz3
z9dC_JLf23*4NB&~v|;3J)V58%p%lqIZUxUa_8>|;R$$tt?F0_><hOZHe!7)Sv@yZr
z2Qn-5?pHD1%Q~7BDm-AEicHZUzjZj@*f(yq23~c@e^%QwOsdpO&9~4DLEl=yzV8J$
zpNC|{?;AJ3x5Q(8>-$u>G?>bA-f1<F@9uJgX=mBJ&Ta1C`osBjL#ZKKjhotfr`7Lh
z=e&m6I=NlKQUcV%NUd+My`3LiJ*2rkzS3s3KtJv>u87N0Eae7-mg6no9jhgH_lnvQ
z<WGrTe|q|ou3$qgfM2OG-e(P{&?qpi2Bv-`^|xXfDwtaV?2>6Om`xQREx)2`$6Ky*
zt8rJlxxevqIcgZS`cmHNtKe6GTYYqkK>2)A1!4NZv<e%rjHuRq*9m7EK31uSH?kX`
z$)DSTTeym`)i4Mr{M2x0Rn!$Pt<HamzItyhg;3=MV17&Q^_q@K4CivFi>~ThL%$36
zj<d{KSS;n+ahBQTo@Z${fF{1CLZWuRjW!ye*R|aL2ADF0<-LwJH#ZeIPq2`69EbnH
zu0@8C^O#&+h2;f`ST?hP{g=N8SvEUxQJ2h15Zvq92LNXdKKKgVG(97cQO7FoJLhC3
zI+Eu?lDPeCYkD42j)Ls|fPUK=F%IV5h^FY#Mj}wqLmfHII$&|q`N~E|2`*504t5as
zPqn_qU+TY`-=dhQqx(-3j8Oa02L<@LjsEqmmRm(o(-hz1B+!V0`_#8B+xNY}?ihm+
zH;3tkn#29Wzdwi(Rsa=JzO6e3lt+m+NmKR9`*r05p-%&VIv$-VKyWA;PR61xZ+S$t
zq07A<kQ$JSjt5MNjiBZic~<J?Q=F7$!I_Dq5F5t!Y?iI83o*t;br4GO6#ZF4?myF+
zX19JF;ix1KDFq1E_D#gIS#r;LADRJHFJtw@Xyxb23Sf&{X3N~k{`dB;BQ{*xse6gu
zM}O0JX@BH`cyaLV(iyo}j?xilsU&H9FCC5=#N=Lozm6hpxp6NYMm{&wh)){BS-T&U
zE?+>&GM2FM{cKQ~CChhcbU%ADT7CdiGG#GI?&s`Hd3}eKs`Z?q@wk~c;hd*;Cg{_=
zDQ4NiT{SOFY)%tYF`HayUMZGnjQm+NUfz0O=JSG~o4}&Fo))MhB-t-`nk=tbYZ~GY
z4}uwNJncU1cAoC;?s!JB1=_9pv}q0*^XdC)xUZ>FN?BOD5c7>hL#vNvpHaf}3MLxO
z)f*=DiR~pyy)H7DsHwMb1~<26sL?IzEqbe2EKspFRbF8}pHSyn>U}k}=fV~XXLmd8
zqn@H41S(^3*~M3w<ZdfX*h>bd=T}M(*P!I}>lo@-A&zwwe+L~?D$#b6(OzA+n&o{h
zZB^6pjWMj<d|6Cxirp_5#dE`3j^Ftvw?Xb(a}CB~wH<3b=DsLI&X1`cdQH8XpzHuA
zQJz>wx+0Xh4$C7X&m)<05`!WjPrU-j9zfG9my0*)h^9ChIKY<5A+Rr+5<Uih$V*No
zskamI0<5=Dh<=BmslV!@dV|qc(H{siP3?N7X)y|PWa?YYTg*?{&Ta#^PxL4}GZ8?-
z=U5OBE3`ZBbi-hVr%Av`8WSF>S4HFa-w?@Zw1A_V>I#-$vr2VST$fwaV=~Jp%NJ*x
z_KUG#DlK&@U>Qm6M1t#Uv|`-~4_cVA&&@ep5_`-CI-&^~5-e}g#5d|#J|2a6+p_Nt
z#md9;x3)X<j~5;KTE$3{yFsxWi?A@g@0FO|Y!#~2Kh_G&4eK7Tzp6Q~jkun1k`c(j
zS-8G0K7S=E)Dzv@c#p2+?z5yls(DVY=EGXrfj5CN51}p_mxn|B;?NPWR_4)l_{BQx
z%ta>qFz@71s#3^YO3|)EwF3*CBx<*dUDQR_*XaLk{LkMw$=G+{*PH(rTGx=p1{U>P
z#Dbyv6+Y=eZy#=A%(KV_Hv8mpCl+oUGpJWQi)z9~tZHvx8zsO8ed9n1H$ki)@AZp8
ztQpkDKx|Vt9}CH!BUs8DZn+$ZKS7k8>c&_(yh*V=08?p$=VUc{)lEBjREic=)73J9
zsrQ_s%Y|DoXX77v(sa{7C$`c;|7r`Uy6{ckt5;8{r#UF~Uu$t|QXl-6=s)c~-M%q@
zv6RO;J$pI0i%<`yaub=}q6YPdy1PWro8-*}<lY!okdHUkUNpB)Cmr`XT_hZzueNCT
zHxP}>k!V&RX^;!_M_!+c)kjSg7if<bNbSKc^ESv`AhU0%yBy6ome|AQ$GK!8!bzeo
z#zxr%bhb!n0TnDPnvUn5$tzc^8TaQ7Q2OxusK4g;zx6V|+w`$G{%^OtU5)>{-F>{h
z_YnX0Q~ValSv;|`r3o^t*O7Qt!#d8%xbC7y;Y*qj5xyc4wMXio9o-bN2(=OT>^{(+
zPxxy*|2U4Rq%6hi^b3~r$mDvuc^}Kpe{ZLH{(IZq#}DWKQ~Y$^DtD&cqMzC|M}=x^
zQLQ;e(C41m!*8YEg7ZJ6X)t6=3dwO6M4ZI8Bmhg!e{Z|DH+TM@JjDP1B)<<{=D2%G
z<LxQO7DKf88qr3{;=4)J;|DB(PR?l>_mTeC!WlI_qkVMIYgv=)ehU?WtX9m?RNeJ0
zqyx<wy)@3U#n8L}WvV_zNLbv$1gLdQCWKRo$0q!imEIY%dRxh8-1>9r*;EBPcQ=&~
zrUI2W3K8M|{+D<LF>o6fDHnv7WP<ZmXtu&4Z`MXqE&ua#ABI2SubKXPAG8xjpp#DC
z{0>;g|0$YZrvKZ$o!tle|0#ZTgnB-t@NFq{g(#N@_MIqnX-EDM>9d?=q>qj>{98_1
z0vuak7-Sgyo70wI8BN03H0h(?oiRw&TycKIN){ly&2)C9^FO31<})D~CnnC?jflWf
z{%@yx{&%)_ALKuu<ma9L#xw4F8)~8V^I}8%V`}1tZhm=eTrtW&B8ezd1#dFp6;Oj<
zk&%?YX2a5IA#KXoD9c;WvX-PcV<}CV(7cGRGIS90H4~=?e(+QNR-*s<Dw^W#b^?H9
z{NLl=PWAo2xBDRf`y{`L{IBHcuNM6c&O{?8cVMgBjZPQa>!xJ75)Qmfs(ss?>+7H>
zv9YD@`LVr#rh2#x=X@bPtEOYM^ADGPVB_H4lm;y0|9ZVA)%V|SxBGDZKgDl}pf2*F
z;ELNac=IN{&0Snyw}K$}C=bU+mI~N(R5iq=y__jjVA?*ZS=h#~g<c~z%~(oO)9_KP
z%b6Zvd!9T!nxjv@qu+8SYw6UZs@<Qfx#0Dw5Ohvv==$0`I6<!KvulftTt4@9e)!$+
zw-WtVJ79<fx#bP8jQ;OF?pEpl<A?mupXTS$|1x>EYi{&DqVl}Yn2=*m#BVN;$F1N0
zALio4yS{Ut)D#L*Q`ISxKBm~w9fUuuUZ_O*V@LA?olBs00RU_~404|6(JCevJu37$
zr7OsLzApr<7STZ#gx?=%e<uKVTX3^3{v0BSmFWLC(wb0`N{SP4QyK7b`R{gB{`=%X
z{`+ZuA8JCbH3$R8jExgAkc{Io3CB@3sAQh?7<u0j(~6hx3jeP6%tw<mkE84ldmogU
z|8b=41k6DXe-#QpAZcDnUc7XRXl>$3(%;X0GX5ODmFPd!M~U!&rXzOW@}KULz1=GR
zzq9wC|NkVvsv!41>0)`?{1K_6oqFW}7_vC;hHq*er6X2rGheQu$Y44zR+%@OpI52X
z45(d#R%1zD%e$_0{u3IJRNPAU|Cbf`ziw~t{lC+D;Qv0!PwRgcs{a>oRgG=TjxoXm
zw-ZYbwz~S}zdwKg^5aQ?O*gkANsn$$k{;EPq<LZPav^Th6TX5>lee|*k^AR(*FOAK
z`>jO(r*zEW#0MhcG`pz)c&YxcTh;&Vbe}xX|4;H;6vfJ}x*xvkW7+}CZL>cz%cv(q
zLNT#=v^gfOsM4-Hh;4Jq((g$!J+iN^C7`O+7l0i|EOW7Zbbi$;xQFZGkN;bV{-;D<
zGJc-1ghsP_xBu_$?#|i&@9aF#|4;I(3BTqqc9rCtk2D>J=TAjQS;t)hZ}q1WXm@W$
z8s)wB=^6ILtoUjyy~s#Z#Olph?1#@q$SVLNvQiBj(XkS$>HpI9yh(<$#Vx}`A4;TJ
zeN?!F%n1D=x}J^art1XgNdH-<cT=@Vsq$e>-CDTj4?R))WtB;8*9BLs4up8X$sJ$^
zLGUMuL9iPAABiBlh;Hfrzl{Dr?slv6zx(8Y|Nk^UbBf4sOLaSPmJ!rWN20Ax$lBUk
zDPa8f`$&=d`uD+!1!FSl-`xl!$S(efj{{YK#;cCgn<+wC>Z4BLg~p-2RSJT<WckvO
z(5b?XGf1~<-UD7qe_5h|MbN4bjnbVF;S5Jq&h$zNtsd;JlH5%7V_R!j+R5z=i}mFd
zpi_e5pE;G}IE{$9-71^yltc-pQ_Yw3(J7IbrfT1f%+3*nUl{w7Rfa<|yOJ4}6K%!0
zO1lYufhC4OVa~Rb6C59>$*ivvEyKN2e`F5S9PU*+V>VaxM?FW42V&_CF&pq8!9u(R
zw6)c8xG*<;Gl1W6BBc52uG>~P4o|_FVi`?ddsx3US-AOvEkUi?f;Gf_h@<m-PCfWB
z$h+?8&q3h*xjvBi{{RyI92WG;A@Xj6J&^f79GNc@hkGaV57OI*->UC_7Ly>0haV^Y
zUvF>kan=8~*L(8t{{Iv|!&;1Gy?rhuKjS1zXoL^oR#RMn+(ccpEKLhEozisw0@DN!
zlTxgFL8cdkAFyeLIYI5eUG&23Uf2z~Z4@5hOy_5&M1()&Lt<`2-*4ByBegiQbI}_T
z`Tw)`{@rccNW<v<?N5PKyqmZ;l5EFuTIWgMtJq5F*0KFaO1nMXUWX<j2{A>o0OeRs
z^M3Yw2!JF20{kV~aZ<A9)DZ~`2EYtvFc{2OJ5o>rZ834><8s({ju631s_492I<s}}
zi9~(Bdx0xlEi?!(&t$i*=R3?LaiP$whFC30=eq?n#M1axl8^w1<ZH$~L+Hk+=AWC}
zvrqZ;pM+Kjr%RVq_5jRX|95xycJ|fvfA`t$PP_i!#k1!6FD|fF5RmjZaLmbNTzM_c
za_U#Uj^=ts($Qc8z{5qv`}h1y6h?p|A6uU1hn8S05MCUVYbzB3w8N)0rkB$f$zNe5
zDx~$6fn$Ym9AYbkv(*7LNE9V<mFtKu)8+PW_eM0u&^V?7heeMoAzcUUTAZ^^e@k*w
z9etvNnE?RJmC~ww_^k>pF^|zX5P2&tlXLsd=y@$q6SS|$a?w|B>C?`Z%I{iu*T2Ie
zc9FTY`*fcy7uxoPFkkhWHiQ{0)i_Hdz<lKDv@K-2C}^~#F}CDwMr~*Kg+hJ{uU?08
z?(F9GO`=(GGnGM8Y>tyEZ>Ao~GK@N?8o5^ybVb~&0FPx{?&K4D4xOb7vAnEEuZ`=K
zTv>_fqF|FpfEf80g)3_F?7<sELgdZP#kVPDQsG?eDu9)4FcmY51lVSY3JVa7Q}fl&
zsVKK9iwezHOH@WAE-uz~vgIYA7ec&19wp4z*s|d{#K?~peBa~2x-CZ^nJKp>*x6R7
zMTo9}7S;@&FI_i|xum4g%Y2W`Hiq$5%Xc!#hmHJdA`9A)C7mPR3*n7sxg>G{rv3Q~
zWVpwkfe1QD)@8v(%qv_AauE;xz<2%GY8+r_IfuSSLTn)~6u8b<<iHr+w@d?D<yJBP
zkd)Q#z(6Bno4RaxFX0S%D&d$53h_ZrRAj77*|?abN{VHLj;gvpO_2+^uF$Eh5=529
zEZtGOhK}bJh7LXV%aVAPZ<af3VeG1ETGv6ilZa)?hLYe_hj<3V<EYTFH}zkxD6$>!
z$VDUsJ<yQ}qq8N7{Dj5hBUV9B$o1H2&<m2X#!<54I)$uWhS^Qf^4UCHCN-P_;+%--
zHmVCAURq@SP<+v~#h>3N{{~=j<sb~Y0Vo+gp@2T3DL+D(ijU{Q&L%m|%%1HlbCZ-!
znMoW00Ir2(hGMU&AHX?13omgjnv_-*8TK%u=BK&kq;3v_Inae6JbHPK{Q%++L2~Ae
zLkow?K*LF_bl17;21)rZh=nvHsUgY?S<)AH0lL%cYV-H$Qy+$Q-?{9i!}ahkNw0C@
zTZjBiK{Ban;Dd$2S3W++Xkp<Mr@)*wJu2Uw`nVgg8eb3<{_PfWXwQAn`Ncxfk_@Ik
z27J;$H1#0#!6l?_KC51@*Lg0~T%U3(RtwQWp?HS;*o82Nun&D;xvu{K(2}~o*!}{7
zWgzu~MAdW6v$^P~L!z1#n3L4%1$B@T3xAj+7lMC+P5S*gaD3LE^91LR4?N)0)9dw~
zOZ*<8;4ee4OF%T`plgH9|MVSr-4E@cpSO4810$F!`-TyKHzCBH<(~VP`h7hI@CJn!
zgx;KdvH5>wjL;PP_8Zs~ihwTs18jree}4|bIrR8wgm?*`^Z7d$Cy9RkXXiPXqUU^S
zo;(La8;<Wmb;xCoXmst)z>inChqfOiwlx;~X~`~?3Sy*P@9t#1>t7<TUt!T>RN955
zydN_vL!`@ILW^7RQp&dH3*Q0zdwaDM5eX_K|I9*n=m#qxB$bU;v>HuGtDmUIR|V7*
zoIdk+>|enZ>4$hpLg;8DO$;{8$a{7TF-8td_Y^FVpS1ki0aXtB;Ub`o2?%N+@l1c<
z)2CWJ5oV`YFsPV`Q`>aoG80J@rQ|RH5hXT8Bcc`jc~0MjVro*Ab(>Y;Wf^M(7yfmm
zLA>{oM?-{X#$b&tM!Zn=W9ZK}43y22U13OIIA9sC20y_S(M{bbDnykwRuUWz04>`E
zu5USDiv0zMPrN$M%>vDY1+!WmMmwV^vaJvjIsT=J&`H!Ps|0MJ)*6_+pW43XK|B1M
z$QVqA3yXvhM@xlbD$IV+Ruk|y0m$zn<=wQgda@uP&gK|ChL~Zqt_L<h4n~vXSA)aJ
z+344cH-qtHIJ)?0`0FR|{d%m$#zAH-=v|9i0#n=c?F*=0M<~3){^CGVY}vuxPjEGY
zQ~66uCbhzh6_HmZI@wY!0)kVLNdwh@QJfcmQG%rn7&Ar4oj=DgfS$wM6w<bo1JX{m
zZB>9p&lOx9a2DuZ!BrkJ--#_zV}GISw7!*xLwjI&z&O!ljAb5Z7PdMRTT2a#$0qe<
z*vO--ZZX+%3=f6K%<QI-hJdvMw4PQe%xOnZEsHhF`05mU$nr8n7`a+$p;D<uOwbIq
ztqb4vievKDNP$A$M02UeiO|GE=3I_CG84UXZtekTYUeOVqt(u-Ql@YTIn1b7CFZfr
z@u~<iWBZfNSG6TGmKSPx;d#46-LAE|G;eje9r;<yW}P#g5k;irD|=~_J&G~N?)uVO
z;^>5SElRS))B<C7TBKu~jhrJx8)4gpXVVE@k}$hnGBFda)%B-cYJF+B>W*xg_m-&`
zN2#<#?mc&D=(vd0Xcd1-E9CN>LSFn(=!lyVGGr)-#B4&TyhBsx@(VgI)skIeju+l_
zZQ;jX8DoZY0GSMzcw|@qK<xvAUGeBlb*1m7Xo)6dVQ#rUWG}e2ld{-u1^g@Nglxxr
zLe}6ClkZAU-O;X$k6m5&x>BBXRRaXe9Q!bh=_@1D-0`1KxIFKQ-T0b>WfKQ~rDi<9
zke=}$vIe!r_oe4W%N4gUt2H>Pio1l-QO?|SPv>BuqQoOgM^f!Yr|$=0|NRvEGik$U
z1wk}cdMody0KstTn4lQ9M*TiUOE3M>F&*!uv7n`vg!lP1)zHs6C~BEPh)LvU1GMCO
zBX)7um&6a1I0fzItr}Jk^sd?6RAx>vA(T=Umv^xf{ijdhd+`0E5W+fr>Cd6NNMoA!
zTz|F&cEA7kPD$TQ%>~E;<yNre3w}qE<w#M;N+k8vSarrf9iLzPGB}=GygD0Q4F5A3
zj!p+B7e_DE6M_TKi6pZ|S(LEUW&VtBpXrl*rr9H9%zk`zG5%pN8XjF74JLz^gYod<
z?Kr~j&9Lt2g|Zsz5i}nth|8I_F1vq{IZEJm`%)0D;7VgJa|zTUu0yzqdx&bs>!wtd
zvAUnfDLiMX*+8jzQAFuU+R{vk%$K~qQZ6%`560tP&PGSK#SC)l)#?lp*I$n*5-8Oe
z!-Rax9F>_P9?IN-&!=K##Bz3;Ivmok23!i5wOB4`GgHUelG&3dl}0DGCXi$#RLaYh
zCfHq59AUSrG|FPz@>_Lbgxw0{t)tA-v!mg~4};<9;N{6MBOek)F87i(ya};2^sW*1
zy#@5bpDm0czLpFWv6j0<b8w3n7BzV0`w-~z1;tOshAAZ55x0f$L16m1iDoj1c+5?z
zMH^~9P1=*&bW$wSY@UNgRgd7#Ml&}pZ|R=p$0P^JCP~YkE*F;&KL(o+9J~NaFGOx}
z4(o!ZJqq(|I^^HzTk;o;sH9;}d9h-5K0kicU}-)X=WMsx(A~q$Xmd;RLxnzuCR~gg
zK4aH-cxhuF*2SN}k9rVem$^Kw-XzX7(*7(gOnMWoRHC$jR;<P17i4aAXOB9K-U?z2
zZ(*>2HzoOA3sspl&I(b2fa|X)-jpPCC^`t$B&jmZsbnK60kub8@Hqkh$@4{P{eV83
zA5bG~#zFwa5v5CUT+vk3h$?iuv{RVzUzk_bNjs(v9`1;A-xJ@vU-TpZzqs`Mkc8L@
z`ZGJ|39*$}`fVLq=?W^eRdm;V?vrrfB8x!bhJ)}@XF3+^WDoZ={kHW1K@w-nz(paS
zSTgbDlgG@=#I>-$3}gGIdMvlbc^?B?{-}?m@l~Jlna=sNkpRAzHj(fK+CVrEW5X4n
zh4rBq;#J@yFYNMx6!r?4-5@XGqA9djwkyqh^3o7kvfxUo;i|%quP#PsZzsdi#pLY#
z?BwkAuNNn0hl7)g(eQuY9*>4c<KgJ%<HO<P*Yn{xyRFTkLf#h)|5zd%Esm7@Y1TZx
zjF`HA*Zbg-zVsZsLN|I-w{rE`UYTy>o_8hVUFcsSFl$Vc?7I0m_AfIbekh*`-;+2?
zc`(>rWfOUt-6N7tSPt?aAx4bk5+<A!IHj@58!H!G!(7y)0w&C4DC;3M#nGDRIc7H!
zfr^vDP0N+mkK~RdjOua`&JlLHfrZ0W-}4<vTcL3daw^4SKnt_<K79v~uz$Jq92fT9
zlQOl<k}M&!yOm|4HTJl~G2IkF*U8+r<L|kxkB0`P45PFOnlJ&U?0YA2@1C1y3=@8v
z_ugVqx#BgMrD_5;skWAg)kA4WYOE>H3~*{7mxnF9Mvg83p;pEvg<BbS&wV9}WLrFw
z6z=<JH~!7o#Vmdj3iv9;PwV$}PyD{_>tXxnJ#KHkzgq7vg&0~Esmvm+4;W~D!1Crk
z&j+mKy1Ig?q$ikJ<7|ExANW`{TPN!LxsOBr&Ifr?M9mF#nCD>_B-(T}&`Pk*4ComS
z>@4Wk6w#O|BAJP5rii54TBZm+l=Vyz!ftIXQ-lFd!={L2M^?rZA#LB9G)2UKTRX&E
z+S=n$kL?lh?;?9dLI$lpqP0h~_t4~4+IwiNC8E8Db|0CewLyT^29Y=S?LD;5au3a{
zU$#C3_ju!;%u=<Dds1z!jk_ModK-6PTeH^2-2kWIjl1u`h3~+e0BOSPCxu%dg0E!n
z9?z)imz~TsnHO#2lcHbcHePD;>~#3%>}Ys$adJGK3{M9~M<cc21JK#-(f>4FZ7H+0
z63IB>pIss)vs6tYr7W|KMAAc9Pa+8%x|T#Tz-b7%wf);okQ(>8gSty`T9>=1WGgGb
z5?M*7Gj+O)uq*VqiwNK=lZ%F4wj%8wi!?SxRgXraI%}SbW<acaD9RXW%@ffqkcMSM
znm?<IoJdQzvf?X|70Hyw@`C>?k{Br|eC<+0V3AgG80YJ=OOAA!s!5Nu-dYmG0A@WY
zA~M-plEeh4VQCWjf$#dWRViVT6mDh7S0YQ|8C7j`$xP=(Pe=-VW%5KKoYu*vb+Y;L
z&NW*no7TyuWez=av`#jlb+XBu`_{?kemL2rdy~(3#V5g{)D@q&bZakY-d>Q*L^X3k
zx|dnUTA+urp0Pma(3<CyCP)q8x27$_0H<kpqe}wuwRMSH6qd7R$TgZaYDmyqv&Nme
z9*ILAo5`h@g`P(eX?$e{j)LB{M)P|t1m&r!=td;fUC)=u3~EiE9fk4M^D4>#){yj}
z86D%<wrxn#B=<Ca^&{mYUV3Mq5P^H*FKjCWe*p(ht)&|RngVxgD_3xFSgjfU*5s9f
zZ#;PkyOm|vOvQ54)=ac70z=S+YOc|2x9%o6s=lpK*-(q*J%g<tV(=F8jxczUTbJ)2
z+x(X8kw+Wntc`Ql9(=TM&e}L<?eT|}`tJYnN6U409p^0GQ{GLE4t0N!vB;dqMhu>%
zh^DL4F_vM6m;)uVoh@Tj$%7}RblfmcRE0jD`%W|6mH{==a|NWX^JRMfA=(Yu&?E4W
z8c6a}VObx@BIpL#cb0b8<rVea==85G+{a6=&sU_rQmvDR=Ix~U<ZvoyN-N4oC=Bdc
z2}BFXbDbojG3Yjt=q)4?Eg<60o=jAWpYWnCUlb<ltiu?8mt>tl(PHXOLYuGi_VOz>
zm9Mkz+*V1^SwVQTX*$1#G@WZK;!M|jV+CuGlpRAcO-a(%E-PvppL9$#w(2VV;;Loo
zUKviKIT*f|&Mm_K{sdRI%Pk5@1@ckV%<nN5NCf3B3CrH6>=1Iv&^$B(4;h4XTsP7M
zlsVK}OUl!L(6~}5Pis_Ol(2{0e>V#KDdbxI2s#+~C;Zx>MN>fF;u_*Ze-T(1g3kY3
z@AP)Jd)wXZ4(J_P0dpomko109Uc#RvndN&u{ug}u1OPB@-Qu(0HJ$zRaBB3n#H6h0
zfT4v_5z}JS3yd$Vo5WqZ^)=w9klH2mT1K!s^M=<Duf~ksv#a!GXyF-ThMt2LAi&5A
zr=asM(*GCf6mO_gD^ZUD(zI}C5qN|!WQxYY3xMGa-n>Gd13JBL`W*=eSqNS^2!n1A
zk%t0C_Jyzm&^^IZN=D3oBwAp~SOi2fS3jzrbmMsyW1tBAPJBdi8tj!pUN)VJYk=>-
zDt%Z$YSN);T}c3KG(~ouj#0x=F50noi|Du_AfD^JBB>E~<HDjb6z3gxACE5vzl<+V
zjt_^Y<BZdX;*gS7i|UMquaD18vsJ`J^+O~EXOZO1_))HB*p3kRW%%;q_-J@KIiCD_
zF&e%a4aYxROwN89o?g5<KGAii$i&^}e=kD+3VMcapPdXZ2BS>J%br29Co2%k^`AZT
z)CyUP3+%fvPm9abAV}b%knh{c#6OIs56O-<5EJ7UCG^dy%9H2kfS}%$dKkl>ho_Tz
zRo@IJgQLM@P_Oo@(b?%_czRT|Hmf{58jc2&<FnIxji0@Y25s>2_#~q8S|EOWb$E7q
zIy{`LJN^-~)vcYx&n#VAILWT*q-!GN!QtU>Jg$Zb^c=l=!sP7y?BwkAuNUL<ljF(7
z;o0eAaC};tPxAbhTUW%^6|s%J&_-Wqoe*m}A-2rXMqg;%58LPq_n6<xIv$!Sliox9
zVNj%Q=2|B{YXk?$^jac_Lv5hKjv+TlL|nd%-HjTq-doq!SrC%m`^Al3u9rhJ3oJ0;
z8QMYj{o<ykv5=7YI%r1KizX^UkSNBn*2A^+aBV$YTMyTC>{<`k*2A^+aBV$YTMt(w
z%eEe_t%qyt;aZZUS`XLO!*y*gXgypjdH1FBh8WF2+(q8huQupWjlK-Py!>d&mExlN
z>26yTqDVCm6$C5FxBRT-#A^an&yzQE#BKCQ*#eK&ar@mWIXLTk{+fZU>;7A?-mK>Z
zYy?%y6?ii>aU8s;WDgO5nEgv#e>Ri6ltjxH_zPedxRwn;=b{5T-H!OC$KEvMYrF|M
z$U|XDr^W8Z$xd3XSnP7V*{siTA-G$JC0ZCn^dXspKCv+hLedW{<aS+u)+2K|aFWZc
z>(AJ9fBN(=-=17HBIKslTp3r6k(oi<WeDm4>9E%cFx_XZ5YSp)I0uX>2Cd7}o2}4t
zk!PK#yj9@pZK~F?<h^G}g&{K+04gzKKV%+we_x(dSfLJY<}vFOx$qKN<&sJ!g$*}r
zI=Zrq+%XJ%g7{sB19Q3S<U&;^m$?kpzmB^#7M@8&-RVlsubu8t`Z*87AjbZM>?=+E
z_%kQ;>7>^_o@YHMd-$3VQ`~Z{m88EUxK9ru`f>T>AHCH=^zMn2;WN)&9e}9cI_}d}
zyqz<*7>GtGmUmtWPEtveF09)d7~si8%>Z+Dg#xT9D@~dG@fbPKwy<y^K)XrK7Aw6|
z&Qw*m%ln3XP(J!}cO3n13|)F*OGRAzR)B35T16y{7+TY5q-w0h^7$8|)EWT9ZwwcQ
zzRf``wjUXezt~MI-x+uz8t_*5IT-P$VMm8UOtDHeQU4DxoI;GDbF{?Bn~m)`be1mi
zX2&znPhJmipuG%{@5x(-4-n1f;Q`p$-WJ}o_IO(ph!^T5n>eq<PtbhVQ{UaRV%BrZ
zwJxC>(}db201GR$=O<AalKlvP6$JTyZC=)pnLd~~pK1LnHO2D}ItjD1^a9^^L5JO_
zlMgzDhJCldACIw19`cRS;@rYcU0THOk0q)}inl>ixfGR4PwP-qC0c5VlGdlAd_!6B
zS{nK;#PnE0*slsNE3BxzGSg0y*%1zchBwSfj{5^kt_c+k)`u{9g={N?Y4!rGOxBjn
zY!z&)YeO6oQGdoT6v>Mu2b*-Z;(JxajoRrC;c&EM-}IGp{6q3g8VK7iJeyANl7wO_
z>cM|9Dzrk^pLWBjO4T7+3y0#KmGO!z=Mz`HCuQ2KVr8o8l2PQ4QEN`BB2jpambyJf
z%f;C>#27g+b%8SUhgDfwb-Gfaxhhj*I<YKslv`^WObr@2K}zJZrWeWWIe+B4eymNf
z^%2W=U*PT+U||K10XxSebi~;~d-AHPKgI&hm{>InqofEo;t|1Q$(=dG0jqp5!~{RX
z9R;V@&0wPiUfrRk(48e8+X^jxRPH_(xT)}ifLezIIR@Qk2A{#Mu{tKrYp@oZWaSoC
z&@>Te02`Od*4w+ZxA$7U-huAIhd9SJtyf{9H{)w;-Qe0T<7{qR!SY>&ZwYhON`(7{
z5yADTR(8cM<A~jScYESQedeL>X@|brMybrTss=ArRUCx%np^)|&2$vf%)+jRZo-;+
zOqK9$%XMobTUA}!%;tFo)q?xKB0C$$TRH22iy&MbA;~O8(4X)GEs*(!qS#VYIz`W*
z0|Q{boUCfR1sf7GphxhJoB^Lh`|4;JxYR=MR`hdavp^?-ho%Ag{F6<1&F1e>n!YQY
zu>{w;JFeT&98Up39=)r;wwOq)G<B^RKm<65M05zu+nOf#okrK|b@q4~QmDE6EW2pM
z;7hDlC7qOw10$OW3Y53XhKbS}2MKVli9&X0Ei%?<I#k&>l-rR2qlLv|tn$vV2D(BE
z#txMs*E=!fmDYsP2K2-!clA2e8z#I3YQ`_Q2a;r1H%a0h_ah_E3PzP38;S76-Amj9
z5<uG&^U)*$*;;bwT7+bG_h?E5Q>WXh3`ihf_0s|9=&lqR3zre(*>2><CzD>V$Z>Cc
z2a*HuTdDTaDp5<|cMeH#%ZRBJ!#|dggwg>W$F`!1qEV<+?W%5=026_(A21*#$=WEc
zN23*C-#*z^@2r86bLn^^sgdKNn~#YAPWG|np1X3;)(kcc@j}sX=`{HGpWRQNHvZ8*
z_vDeqb3c~bM7;IY<w{96a4vh18d9;1?d|RD{k=W<cYAwV{kyZbzx|J$y=PCK?LFOl
zw*T}W+q*mad(Zv>wr{D=(z7I?h5xa=c3W!azK|zRBjKv(0(paL3%PXP)#aRQNbImv
zKC#1w6(IiW00h*xxPQHK2}5gVLtM(W#Y7L;E95x`;M{kP5W&kJ+Ah9aIx`q<i1M?t
zrH6NagS-3i^|7i0k3F||U?yV?T12ekF9P3#UQXC4LEg?GMq#p6$8JG<3mO;7bsdVe
z0U|jxY228qAy&uPso2{nyFW@KTdsGMNW^9pPe<{xJND=1*QTFJ>woMvR#65Ntp9tv
zdry`1fA{I$e!KqP#lzR~S!g)I;~aq@wR0Z&OE08m<!}pZ11b$3fMYN5nq#ZZ)W>o>
z5(b53fABqb_0Nq5;4Og;xLk>uAqWV4K<%ojb3X8=a{Ws<^)X}@pOH5M%Rmwl*E?Jw
z@FlRK5YVnKU%3DPMShs^ps;a>Pa`remwTE`P${^U=lP-N;wii^xOeU;>vAl_9)NLF
z(Y9Q71qci&iNthCk0e7M9I_x0$LD|`FM2;m1Rw$|55!>-DVfF<Hvp}AkXGD~ZHNVK
zw(KZ0soc@W=ZH(&33hZWlAq@Aj{1saZ4q&G6uhz)$X$u|yySO<80bKl4xAp*lcF-<
z5F}e7HV6`SV=O1|LKcK@O>9qtSrY%WOaE!?D!j?Y(d3DVs>VqTupj!i?;e23;rRxT
zW13=r8B*VulK2>6rB*=A03jDk0ZsvtsS!*Ix<$*^8){RuQ&UIM$fp@nEnK<8*sn69
z89N)~^d=~YE{h~<wmizJd~L0|vaCx5m&wrPiPp1RsU+BoKDUze6+hMV|IiBIbm<Zp
zR@npO>i@e>_qO+U75)Fo-qWY8{(l#bs5)CgK>Dfv%qM$X*^u((>Co5l5ajq|SV0iq
zq8Hj(U;7ph-{Wt`<ZUp+mXjV4m@_!Uf%JKe5wskpsKvMDK<B^Sf4y(w=fB?ZoAa~L
zWN<n;0B_G<j|N9WFrJ*9pAU~B<v76bI#QA%xWM%Z`R9MV5xhq5133I)aQb?9a`w8n
zaKNKT0U!tc{tSil<z>(I7yb8B?9cjiE=d2<^)LGiD^f}OB#dzGE31tNZwvg_JM}|&
z049+(ZUq5V+Nc`-VGcd8@|VEE5G+Zg(qAq;CmMuwT)?C37|~n%5#-}(TAz+n1Y?T*
z1+W-(#Uub8{SVmLe%5>TUGHWKgmWtdbBhSg@PG)RHH&tp-}P>QkHOA1|GUfoKIz>&
z1`F#70<y$(&p}`a!Z`%?660uiwGcy}mLU;oM86}V(9JLH7x=GtHmcUQ?_Z>ydko$$
zNl5X^Ya%_s)0GlWoRnRk$*Sy=P?t0^sxq~Z3p%B0AwoA1WEn&{6LjcMk-5Kg9dHTb
za5YYe{EjK?9=w5eFU~%x?^0>USL*}mk|&*P_x|gh3*lMgxU96&Lssb_b##IOhPD-V
ztx|tEobL6LhlXw#d=kxWO^AjLHSE{S)zX-wx`B9ocn)4J?JF39!7`jj1#RZ;MZ0kv
zw@ELyq>!Z1F?5i+?&&v%p&C-;FA)0U5F>A<@z)da1;6@B;6dob3?0WYp?Mf0P!?nI
zz;}QPuc6yBY)&&c(D?<f@68}iXSoMPJnj+-b2cNsqkyY6>r15f`<fx8@*}oyH;ilq
zMjFbU?I+tEu(efCZ)U8gn*vkICg-&XdbBiZM^~NCa1IG%d02=zmzjCylN--YIERZW
z^V7piZ$RD>h#yy~@f!Qf!0h3etu<v;bo5Y)G<f~Px#i6ux9aFA`UH8)o3lW=r(HO4
zI`F36DNWqJIjzzeO?A0{1`dv4NukeZY_;4m*A%b1;An%bVK_r1#H*rGNsKCSJhWv)
zYi8)WYG}pbG`%v<^t?wN%xEiI9H;75Cs~gq`=eBTYfCqpqsgmrJXBmWJ!fFY|9g@s
zQACv2(Kf^i(WML7X!_wC;<RWF2+AAR4BZu1aV_AW=@jBv8INi_P8^^kWO}-xYQ&0P
z7N%$sXwZt!t+&PQq}r_}Kdd5!=e*LX7OlDr94mz55L+RftqQHoF(A2`Xld4%<1{Dh
z_vxfO2FQ_BTo7F)ut}YOCN;M6Yj(N1??TC)eW|mxrq0*CRRPM5h9bA6W!6paM~`F4
za?wu`_VL&#lCk7bfRPu1&0g%5-Fs;fNF%sO0mQp16lzE8u**thZtXtZC(DJleZf_{
zUels8J8Qjs<EfK>y|x7({(?r;tusrY&HnI9|2hO&0e&m39*z=-5?I!WB2pu5NYX`q
zi-o7KsMp7t9drdC<><iFS*k^tG(5{$ATKZd11rF@25jjkH7ddqWLD@dtt12*h^p7=
zp_=U>MN1e^`F>cvNs(dHLDjgjDmqEgvZ??t<tI;AI5LRkC0}}NKC6@}EAHDG*K)I~
zrcd`0u0=?44dq;Xn_?yv&W~hL9&AD|-BL?}1lY#V5}eiz2*x3;j2AKm|4l=>AgR^d
zd&e0nBhormte9rYOA1K{@dA02FkfTKhUX9?x+U~I&g+(=UsrN#3Xw#!`}!o@@0bTS
zQ|=sRzQ=nn!+5LZJ7r>R=95KsSDX<D#i4`qA?61V&P)4|gLoV(a2#N0IfuR%Exm{*
zBjGb{Dsqqs2wbIs(n(9?-S&ZjMzWVYj-`4p;S72D%j&v<rSGk4DpNKtCaF4C|C$QE
zQnKx;p;zMDmmRh+c2)hk>maN|@va+wzgIo{ey;iE>xdJc8^~GdcVTiLT_FEUD>sz?
z_rg`I#g&6F=mu&+_?pBPXRM55(etDkQ*iO(oWlC3-ReCw`e?#M6iMA226LbbLwNM^
z9Qy&pA%f)08?zio8ct%RyUt}dNXoY?^cAzvL%aap>2)=-{q%{Z>YUwWOym8#E_&SE
z-3E7ecNpB=-Q9I?*TLOkaCdii1|J*-cc-V%^WQsrt#z`KlhYSX`=)8q{Mz(;f3E9x
zWAvr@iBUfKf*?1TaFDg(n-v3rMM~^fjjphzS767kTlQv>DLbUGQLR|y1_rX>O6)ev
zf<PbJt<4Z_T9SHvbHSqG!^lAnH<-mR4sr?Nrg(!fkJ00Ufp-zN_~f_8XB6oBuAwtu
zr^a)}gC{#r%Aml}n6?wnA|J_LtY43Ds9vmju$R>wTQe(+B;!#cOML(BSq+~Hv$$xw
zyyNF%2n}U>+WXHMyLouFA#BBYu}x&O?|e-rOy03C5jARWDy1se{1^XDwWmVM{<Q51
zV`~^pobG2)ayDW)K!1F_yQ0h%Vl%A+C);Uuuzy{dC5rfsSRdw*HTbhI7$8Oa6jYOc
z>q%L0LQ)xw*Zzrqu&xL=<)533#jy(uIt%)Kd&VJscX1M7posnJpE<VFrHDt3Dhqmf
z>)EKfGnrDV)5Ut1c00SEg(*8(-U0vIS(j3E9a*zQ6Kyv}oQ+iFV!>_W2R(besPB&M
ziiON9C}O;iWbO<?dm*^(O&w?n{|+QiA}$O9ECRG0(Z6%;nIV|bHBW6BCvFhsbqh%r
zd9&JTC9;Qk!;Sl6;b-eUCcAS{hl+=GbGG_ZR_O5(0z{Hu(4lq=B}f$bd>#?1MT_32
z$$4=@P*lJw)gTFb;Pkl39tuZamoyecvoQ8qb@Q3uD&jeU8!gp}%P~Z-kztE5%53u-
zn-k`Cn-iyhWSg^{2>OuIiqdyT`N)^pJ4vUUK(4BeL!F(c?r?HM4r1S8bsrB{PAie%
zIGbgGFOQz7FTDnyO$=Q;ar<jv@6hhyd?dkgtQ=biG4K<j*Rl01fZfhKoo}gI5g8X#
z{)4Wf&x8b<hAo?QIy_DEibin;726o%^$BYPE#>X+&BcS87k5WS&L=y+zN5oEZ^!6X
zV|FoK?JRIW&*s`%8ySVSIBHY%HN)!4vE$E%qZnS?xkbl9haVy8QR>}reU?SI3G4nV
zn>qENY@Y6dZrwT)^^vL_Z{RF=7D{*N*dM<UHnQP|yvHm8g8Y|43Mv=WuA4`&+@>}g
z4~V9dyRf;#GhD4;*TuZb&+hIWwtZR(l&Pdd(B*UqnTD6YDp8M+aP)+*W#0jxMZJ{6
zt~49V!mmZ+$$O4E`!8M4;Snc+5En2w-FGa^#PPU=<eBQzy-eZvhfsPZ(LUS?vG3+L
zj^T-Pgz|@n&<o1?Lu1oA`#RSp6t2QE@w(B9x@Op*+m$X?GV*&OF<2~n&ElJ#H~N7Y
zD&j$+P?*38z0CZun0aF-#)<o@UT9_RKn@$xWh|{Z991GQUHwS?Fop)7g3bO_>3&BM
zd2^RxN~sXRqC#q+-Re-m1%fC68pzSsXA4zxHKBek0nK~2acVn_4j=8u=EhCkpGg>@
z70Slq?xz9KSf?tb-HnW8E3zPXQ*=;0_C@%}nI7pooVu0atdwluC8?Y}xnuXUs)Sav
zQQ{bzoN7@`etp>+NB@Rie#2@}uIiliSeSigQj*u+f~`9rq-spWT)daopT;tXs*7Y<
z{7O)_WUK^(t?+YY=-uST9_AdkX#Wy`zY;5~E4#V>xA{LYJx1@{Eh;i!GO3sdS(aEe
zT$=%z*LGzB@N3R@<p|4LVTdvczy7Ay7GCHJ%_@>`@6&|zuL$R30}c)6!?za{dT`~;
zLG}xpH~=+KjsJh;J5V3sAq>0cFbiOBQz#c`D8_J|oTnd(yTNOp^GI)5AR^ls3=8h+
z1tZ)kpb3b(-bjBC;h3bY!oJ^`+ylm8n0HU)3t>(Nh59}Ij>V>&*3P|BkFa<L1+Em<
zP6V~1Kp9CvT)q%>$6>Mn;H)0;|N6wK)2QAX_*BxJ@t6b#TTCC@7#I;zns>5_&gdJX
zz@;173_JMApUW{)&<%)rO}F#44=6>4gCV#Fr;a>2Hb3wWj49TjM)0O>PsFWF&&W@;
zO(1%FGcm;oB}Y34R*(w8c(*$(%v$~{4=khPL4WMMiT^O!!t24~(D6A-kDq9W`xzv_
zny!PkbFwDh`wZ@ejk?4_6^Mw@B1byRqCbSl9kq+^%;fAZlc$WTG4D{C_(~b7GPw`N
z9&dSnhW<k22cQnES1^2YJ!R~qaazl_58l28Fu-sQ7#|gr(sUPzI)J{qYS?crYLEP1
z)j`;8*+~<00Xpo-mfU)yw47-AD9d9SgiY^a8{YpF9w?2}T&y=V2ArX?=buHxC$=)e
z@1*j~97&azlIRWm99_LctB}x(a6-olXgQ#8O`%lAK-8qVK8k8}U5^W2@M|yl7a;ik
z_!l5t>i;)@u#N-2f<so@N2E%wRK*ew`<li>%O=I2+5w)gI5HV|WXI{wU1EsXj=^l(
zpf`vI7Hg1}DqEbQi!RNIMtgK5i+)i{6JM{Zj%VIr|60?@Jm>&<x2k-6w!Uz)A2D#_
zc5`Qzk%SyY_RPX0O7s8r2eBBpy>9S!v<qMCKz?9T`UF|K7V{3Za*^fW-&`Jlc0!q@
z{4B}yAAYdDe8`oHF~y#J0;4HV4HseR5hz^<0t%Or=5+S{TN-3o7d{v#WHgN{#3-f2
zTroZ7dn9p)JPeXSP$@RqT4HCX-#su)#7TJP_`vWQW6`nd?I%4&3P163TMYHRX&1rr
zVuk}Xq4?Ea5`U+H{xN`cuL$ZdOSPlyGb6*h4Q|GJg99<nM+G)nxHphG8rHKN=ZBfs
zvkM*KWl==xur&c`LXvj%$PaAnFt?g6R<E`Ob}!XMnhDBBO-V;tG#l)*63T@%YXzwc
z;D%^VGzcMyoBS>}LkEAU?0Z6vX@)7sM6*Y_DO(9PwQu%=m&tOdqOHuiltLnTbHV?y
z2xdTwAkEY{dm$`sCGCT{qhqs(xqMAG%+WI+V)d^?$TFoJ(D$n38$>%dOJLwIH9j{D
zrOJB?ju91HH`|}Gtjb)Ewrwzb%EaJ1&og7KKSE~V!82TXEftI|Kkjajqn^XJ0^c)=
zN7VGAT#GP>)C^AOuAhQd;dh_3bMek3pR0;=zgtYimJ?KF=(MD_o0j_jE)aC*NX2&2
zxr<rL0TZ-Ap>+&pSG$i-y@%@b@%noV^gw>Fvi%P~AnK+9@&jHnCtJBxdYG4g_<=Ei
zrWnW%w&1;)Um#Jzy|XR~GHd_C54wT;U>buv?$2?NZAMI%T7PIJg1NwO8Mh9ez}N-V
zw|N(pcI(?k-pQ?`0%ZZ=L7qVcu6n2TzrMZT)^rO(cmLW0^vF8WE5683|1{d(=e*QP
z`!q|~%<UR+borSvidm9!m`;UbGOoZm#7zG3Z{|3q^7EnoeCE4+Ndbmwmy)>$o9+CB
zA(NPm6ZGonO)@Pl5H&=yVk)Nc!4^TP;2r#SdmJuql~K*Cj5J%5?OpD?br+r5<eU4M
zB~H7FUAK;-j25>kO8uHN0XpTazWd7_h61pHbxb1X8>^kIG{f_a(&kv!gj>Srf6};~
zy^$Ok)>bg(D7Lqz@htDVUi!xxZ+VqZ=KKl%dJ2x4-s;b;3yl94f#7_KgZ}?dAn>+&
z>}+!D3iizA<?^BF<e7H#LZ5{qxMyi_nNCIiQWcZD3&CgI--ToB4E2%VL_@b4kt`zY
zipBZ<wuPslGbH1SujEkLgZMj3Zeug(If+Nd6xJ$^!rOIs2kL{q4Rq$s{QN>`XmEbZ
zL&EWwv~Vh?TE=O!h;F1uqzfXs3|AGd^e||(Bgul8_M9-;#pEh$BF-OnJCa+0_8Y<s
zbQ~p;s1m31U(Sm5<m#WO2e|6ne^N5BYQZcI#Z*pzH491G=j9^p<`5z(GAhK6r2sY5
zsZ|N59|-TJz+3*PBeQvvMk*fFM-%>eigp!cjEaS}6xLZ`HB}4*lKyur+&}E0TN_+3
zazMvm8`_B<rBgl%bPN=IXf*#g2HRMmW3Z0>pN;`J{~yP|ZwYh^7t=t;z;^N<$DmjC
ze;kALtQ8~E%N$u$Qu5#$BL@VQHARGTuVB}qba`dggY<a~g$RPtY6=-yN)3gKTo7Iw
zWg+oPt&r|dG)kF0jWj=sM)Ex672fn|w>)=7nunhg=uu8O*9EJ5r&D~1_B|oM$7wtd
z(+fV(!K-}Kj#s+Z1@C)=saNuXClpl>F)Ha5`-?R_1>U|QtmrG#kY@%KgtoyzCo&3F
zC}x|dm_@=7x|`LC0G?Au7{>@ZytYc=qO3KWN4jRUQ9&x=ID^;b!SX$C#HX!^9H+A)
zSN5ALWCt%-%OPh6gQ1W1`D|M3nWjY+&8fZZRUK(Bz6E0sC&|!jBVqJWuiC?*%9tyn
zCnH-0$97pNrkTK4ErAgt4G4RTjT~4jBCO1O$?YaF4e{+F-+d_c1A3sbF6qm6i{P3X
zz3t#38%0qEd2^+kI4UONw#JLBO0D>fELdwPBbZL5nd|J!)opU})i!lnaOWh>A){Y5
z=#DJc7*W_A?h;3)>liKe;X1)SfYx$_=auDW?>PU<byeS|5)`p1GJEE}Cx|M<W6$f3
z+9w{h?(*(z;0Bp55>p-C1O|Nm@7VH?m8SGVNG#B@7JRy+i^<T6a+96Lc@=Q}g3q}Y
zoebbMB`0vw`X^HlUt-PpjfGNwNI4P@%YQTpCQ8gB)?d?K)=$y>?OHf9)NM~lH^{G(
z_Ak{@Kw98bb|g&%-ep%j&!RoHTH9>0x7cUtI0V@(Ed!rjn`UjuijTV2yWiKiGW#uM
z>V^V7VQU@It1(jHAfl=UcT8Q9IKi)y>-FNJX>+?EG9n~NI78TD&Lu@vGsSwe3;7XY
z;^=<fEz=!Izz!{Zdgja%uhqCa)rBMlV$>4qutP#H){+W7U<Zeho_@?dDmZ#}wQX--
z1??1K)~k9#$Xu5nQGD>|Z28xX0e&dvgMf?*DEL`*mYEh2Da7rhWu$TlU^Xk!n&`y(
z1ph1o{sZ}rJuHdzuz>La)rpj72El=4AifM901fzRD-$P^=)ay5;f}~NYc-SliU_C|
z-9acZ=Mhk7=ws%@c?(Y?-vt4=_~#Gy!v;i!Bghi=fZW2piUoi4Gd`V?`bbeN8mx6Z
z>uLG8pK7c*N6bO8u-_G<<+!O1_=Ff&0VJZdq%NjL0U!=n5vd48--2=x+2McV2)PO~
z_u!fNLALP=2WTc?;K`AK$cbSIfN7DY)v-jfiwL~LdT){J2F7@Nc|8OhWC*w0JB%ON
z&1d(44-KiY%Ke`#fJie8jgi?}s+U#qNOZ@&xJh+vuw*muQ}JIJE;widK?Ib&-Kr%d
z4zHRJ0v)ZD#6xuu*n+sS@m|7eQ$w-^dFg(>HBI2*()FmZv}xL$D<e0NAwmGIVGaQ?
zlHwRHHvY&bRSnh(E}|iEey+u@$mCbClJ7HQj|>NsojWX|q5Vul>DXgZLrW94higFT
zw_?TpwP)h;v~=^Zzj7N@%O(L0=l}Ig_E1+~dHS?Iabv<f>DGM_#pK(lqu%k=6p@EY
zX6qd6k9}+pdAF>D)=qt>fyR1^Y>F9fHkMrqN1WS}iy(z9!87Pu6(3QYpMV^}LsG%?
zi)i%bWbdrRV1;XF;*S+G?((ls8#fPL+&m)nni*Q;gz(~l!<UO@g9A&ZViEjqe!-}U
zZmdXRL&Ch=JS1eQ^Z3AFJ9k?uP}A>gSRYU}o#NRr-cDZJ1PQ;4!33nP5m<Tng!p)T
zKhH;AJ`REG%nSJ11o>&lDf~>gtG7+=A9h1=&3lqM>2q0(`3$cAJhYtS+!_}+ZfkVN
zvzRPdOAo}ssLbwIjhe%26mQ&3kJM4Yuc$X2kBdf2XEF_lyVL+4Q=QYp$XtK!OEPUt
z?Nx<g<J2Qw7Q6>ItD3p76)24R5y}<+l~}?gmBv8NykN0#qWgOLjMg37XIgG(ztWc5
zuf-xRb$eBghMm~DPw$N_er+zrP)O$43QcelB>%}oP_xR`mEoo{XUBHblDA%C`Lw&k
z*5y9^g-6&lR%7UKo?i1f<=~*6o}0N^$X=|grqO0DAwQIc^z%5hQg&B|>0uRK{~G2C
z(x=eU0*-|?xIL!3($GGm7|$O!$eVC6m2QOVc?q_cdN6HtO9RD$Za2O)&9etqNdWsj
zb~9*U$`YPmXN)-T*WsV)>tsi$)>^}W0kWn%-(FNT2I9||<=@UXMakykASRq>9ba~o
z-T_gP;y2j+%uWpWKV~JM-8u<x<r8{PdFxjxg5>8#h~QLt8G4};FDj3sM?66}vwIMf
zV6L#h(6A}Be58*H6zyVvBtD42cj&L>KaS@h<s6z{ys>d^=L-tZGtZ{S*7R1ke2o4y
zHM2nR#QotT%zNR^D)+2S2i?qxGYeWAZH%4i8mYmqQ+Px+$E&RUtDk2_t>$RlcP<G|
z$b#`$ZGR+SJO>ZZOJ7+p>b^St9GFLjZ6Nwf&t#*des5G)N;55qFFaTgrH|0Xh|x1w
z&+X!nHNEg{&G}?zkS(f$Pk$o6eTh(32xu{ffA=MB&z-GA#x9BRp0x-NX(6+>pRic~
znT7ek%tG<o|7I3$8PRV4ommY1!z`%Mp8vxvXsb8z{ui@&`d`d~@a{j%VobD4{vT$c
z31k*r)9>N-KxT3K_4}TXJDjoSsBE9npH5hdRu6TA|D*bheUU@M<mX_Qg$)JBK3Dj=
z*6uM0&SspPrSa`2=YO0<_)EusoQ0%ZyDWz@Hi{8<7>?M9Ra6oe{-*0Gz5d}$yk%Z~
zH_?u;FD}_`3Kt47N!H8|czsh3LpRXwwNj!mEuVjPj?T$1c%^M^7_;84*3Gfi7v(BL
zZczup(y*FSEMg^pM+KpSxyyy>sm5jVXTHB!;;rFin{kEbb1%mQ4v;I3>30|1jubSm
z)N0t2kIG~$W(P}29`qwCIShWgz%tP>!Zff7BQ=)e8hH)n9Ji;}yG{2h4_x@b6l;#R
zie{80&QD_6PsDcG>gwa~Cr0v;gcoxAlJk@o4-p%-(K;+E1j1PQQ@oee<(P`h@ePXp
z_Sjo@`;ktLp{tzGkfL0O+4<FsFR5OIw4lR{@mw97pvQyUaVJ2tWKqgf`PW$K&``-%
z1xP5Gdk!@*n+|jMB$`$1@qR6up?+CQ0&Mi9|E^q0tc1f~^QbyjSse*>h2wmKF3VGg
z8Z=SY&>+mJn%5(R{mFe#?~0=rLoA1Qtgp2)(2xUpcZam99X#z_J&5+hGT3dPSYwww
z$L6^@es|`wW9pD^s=9}KRf>MM37i=h3`^q%rykr;R4V6{guJe*v+A&20GrQbNCKrc
z9z_s@cuM>7dvlp*17l9QT<)ZY0_q%O7E9P_H6*1(J0v&Z&*66|@wPh&2J{a(F1Q?$
ztN}^*?oMd6LV&7ZE2hp{#V{H5jqQH9bc;fkivoBSt{+qv6fV_&#~Io6j&%sBy{z@C
zVZp+l*RnY#*{i>p=dy2W79E`I(>ofB^!o2UXZ{b)Xo=GBIAJ=N-t}|z-RJi|PP(?1
z>Rp`FICd}%;lihjAMlx}2_&=S6}PoeUlZdp{;UX9G^^z!U#AW19<s$zl*3>bIyM}}
z=2_=norE<mLXYXBeM8SHfSl}@rEkXgsj$Fi2MfY11*^mb0{PDNKWN4wkY+?${6jOw
zBEjC8yX0RqPaF}mkaQAt8eT!AYDkbe5qEAeP!1Q!A%Nfi!?LPtS)k%UA=2Uz{oPZx
zF8B^^i-wj{zevNfvTqyVH4u8sK*bJb9SCsN3DgQ&)j5TK?yyJ)oo5y$8;K;a&Ms2o
zFK8&UIP@%1>=~>DsOwzLb0%_$H|BdKt*b1x@LH&tdZH<YG=E13(6lNjS;+m|OQR@G
z($^rx%Z4HJLf<h@E9B!rrI9zc27jxaDEj1Gfu!n&^ug0}(WE=0)UOXJ#B|o#N{G!<
zVXwMHZTlVCP7%i^0%n!H|2HcYpOO+uKPItygi-~2k9e7(jg}<%dRY;=pt#G<j$Thv
zYRcmq7gWi^59KfX-QYuz4~?pxX4z%5ms~Nlk7kn}BS6$dUU(?i-%wNGZ{udJ?#$RU
zw;*A}vT*v=prw*r9k=hpu7mn?nPUGqi$~3q9?zAG$0PXungR1C=+JFO|MjT<H?AGt
zepu1oqTMVIau_argMSL3zm4(=Y{oY_G{vax^cd#qk$$XN9DM@bzIKQ{yLx(RzP1B8
zyPp3i=IHX>R0IGqN8RSxf5#lVF=?~B`t-h>;lKqc)gZU$dC)=RL=io|9A%JSKhJaH
z{>2-5)xD&$!itX=Y&!Z70!t`rqJu10aalRwqrA;_YEkR^@i?;3^ja_B;On^9mv&Oo
z8v}(PljwvCj{w&>>!0Nq0Mp&DpB;k!(Jz64*O`NWO~pL>wh!Qpe-QAp*oauIAf!Fz
zbY=QL<%+GO9dOvCwC|>Q^HB45+jfqD$Z}CD1Pk@oOHBWBfn_Uy%;Y_R2?ph)@&()U
zjJI<kSl@nCIV`@{+28BT`MuIu$rzAV&V`zpK<lqQ@jP^fdyceVu&>?qb>-K<ll57H
zDS+oK`z(M7H@A68_=;6HE&aNX@N%UyC@$A8Rtb(WsR|}S0=4fB=U{M<AWpz1?$bPx
zEz_O%KCDXcQq|)#VQ64Y4HSMAuuY}-3`|A8um1~6RE-Gc1lDGrS^ciRT~oEI_!BO#
zsr)=6b-l}f(VSm;uhJn8)dJ`GEEum5=WS3p^(-<^@8nB2KmT6tgxL@7gryZozbCnM
z`%y{9HNH3zJ#kG@S=jNX6l{hdtBGlwTRm(-HWB1hY3l6gi|D~_JygePvrcN*Tq-!7
zD?y|TggE%r-x%P1#NlK31NVCe%7nXGAK(EEWu_!!mkL(pvGxq`+M&7m{+yZ$aO*gm
zbuwC00)smQq<mgdRegH;p2*MvuJ@I(Kn`b^$q(Jx7jAicpO?zxpl`n*<opo~5@wOD
z3yMo4>{@-9qx5tte@w@5abSeZG5B2veA9Mf*}f<IZ5o2&8|6Z$vj5Rh&eK1weKfMy
z%0GuZa(*=!Q<RuV$<1m2rf|F9F0-X{GpR%3Ndd){yql@Ih!Mo{Ixbi=TVpOlCfzDt
zjY3Y(uQDO>{THlr(i1xltADMyVI^1ZZ<@b5=1vE5Y8M2J)ZJqzgr5sBT0`+ujZew>
zr8jD{=_`ujD8SSu6T{k_UF6t<o}Za_(~H^mLkpZdzOE9kqNvb>=SnGn9SOR7!a{D}
z`}o)K2;6@qFRog~fw+rZ>f}*#Njq0wq5M4>QksMamDl%$eGh{Si4cN=y}IjRj>Y2R
z7|s{qK-Xvqik;5>L-{O?X2*w5odGmi7ChxSimEg9knxd)aeMAUNm&BWMe#nj)0CSV
z`)S#?0=PO%!sMHBKOzUUvxY*YN*Z<RemBy5eXsD42R6|Bazm_eMf~N0Sm8WV<<zp=
zW>ckW-(oNS^U`CbrA}Ub3SW^!(-QQm*-zj@-djN4U)t4Awph=_36V#eF186&^ePeF
ziF2}g)r3<c^C>O`4d`(`pOm9~Yl`n+z#A-Y9eI{LoaH5GX0sL3)K=}}zEn6d4UfW$
z%Dyxu0BtXrW8t5Ho*u29Y+rp{b2^^@Mk0w$lq1$(tLW0|pQiag-Jlb-`7ql@Xe(Lf
zTdUl@5IvA=y}-1m=F3Gojw-XrPaMl&Co9+TD*YuCJ0A15$^JsExyJ+G)&Q1#xPbi6
z^2@hCDn*5=td9b=kK~A}CR+ODw8A$L(^c*3I@4x3xb!T?gQoV2;c$$jN#mCHaL9B-
zcWlIS10RN71)T$0>nPunaK4he&xJQnsqcCO9FF0s@L7M4rmL{o*xFdbqTXK`zLZ5f
z9)%D)obb;9PpT^b)01@%TR>lmW!yNiyUPaW-)wChf<wApT<N@Aa-f7Iyd5w-5YBuA
z`DihAYCe}wvg|l8tIEvIwft@E@1SCzuj?gS18~u*FS`_a@0wHl41Av0`L_!prTFOR
z?MqX4Bs>0lx%Nh!e2MLQS=GwP>fWy|B^k~&8~cmo9u1v6F1GL8Xa{0?f4PoY45+R3
z?%AjY$_g}{1!3N*u(b*Wu4~X(NO5<j3rf6FstSHvF~|Qz(W&wjYq&Vh^^PfEq9`DV
ztI}>LYAyHkMNPmt?Ga@p?^$CuQ_hw#9Owpj8Ixo4YbkEn4!@bhcVjs;c5&{oDy9t^
zPH4`i^U445P0sWrs(6Kgpmq~xN9&KVGSxWw<@Gd@4`;aYZsHMImQH?(2Mrv<g%oAB
z7g0|`i_Z`N6f>=pHH9-#RM9)MAgm=$vd~t0x^BNy8)b0waP2Wga8{9wl_Zt`qiZY4
zK*=R<`Zk3}sT?eYV*(CH3U{?9M5gc-fmMSmhTlh#4mwX6%m{i}W-PsK7$+G;HKi`F
z%rrIirP3793&ZFzOm+Sh`!x_CVek=iS|f&_$NrQ@BZWiv;|JQQUFo+h-<XP*(G*5f
zh1!!K%5GZpDVNNU-~5_Ki>kg2bstK8+g$Io`j_vG4o@wVQIy07Uxu*0ef2*!Pz&Im
z0GscMD=&_l@Ae<*UEYFNRJx}gU2m6P#yN(@47-l<Kf)|7T6>00^BY>4vwL58cn;`{
zBWKo2@wv`!l_EP<!#>?D>JI`xY&Pt7b|g^00q(O4+^;{P6+r<)+dJO0_kh`^9?Q#D
zKrTPUH9&HNvm*he^eF_}r})R&TP<8DZvjy^wMT;jt;@2DF80D&3(@1lJY4nn!y*)s
zMf@D%`<0-FfO?oyFXoRw2Xr(A=29G9f8k`l$~o{lLJQSvDRfjCMWZ;12JWqNU6jk1
z8^Yc*5K{uy)1cm5xqoBs6w~nYOp)50h07}h_w8px1qP!Ok9hIq7U9po)~zkzm)_|z
zJb2PqnMqQONtbPnp?ZFq@OkVn-9+|}a12L$k<~Lp<X#(IJb3h8+IzO~!N~xcyF+sh
zed?6Q0TXSU1nqyEjZX`6-O*S&@*`Kge*aES^M@3Wno)12%m*h4u{4|0tdaZhu$DiB
zsqZ4U#&AeGQJ`hyy_(vgP0!L$yw^b|Ip!*SR*4!?#)I~~N?DfeIv$T^l*>jnQU=4p
zyZmtqeU4XCL~VA@EO+M%slkmsnD2Q8|0){#Tef5)M|Y1uw;gAkytkmV20I-jkODQ9
zZ!D%i4E~fQoDh0mQq|1UY<}@@G(l7ccI7Zd>qm{ajk>f#5j5$>7dEqm_d&)Kz3jS<
z+&Ah&UfulWAACsB;{z^I)^eHy6;s$(+i1u5sCK7!!N~fTrQ9vmXFIx@&1G)7u9LgB
zG#h}Lj>lrffv@ZJtGs<cTNB{H`W)a%l@O3w+48I^&v)+l>NT=(xWc`}j8rbZn*-vh
z*K7VbSYf@Jc}P#q0i~OnR0>>-8_>L+ki6Anb?`nv={w)`J1`)x$1={}vg@R~Sl}f0
zn#(cp+mdM^0qqrg--kYBqAQaH?|904{3)=<1rke{wJ=jkO{<~r%9!JnbrR-#=3dDo
z=b4~-`o20H8?_45p%l*SpBa3h#V@!AJob7YqTi(xLg?dvJ?@O^_Be9#`CMx@*ITex
zgeWRKh)(<I_LJ?U`r)!=QWu+Bs-iDS@VVOJnF}89dQcr_kR7_DhaR&`TTVaPNj+Xl
zN<NmBOjP7_NC(XkSaf_5@xjC3rGE%W#i&7*x5#cUm^K62zwDr#!FPm4UWK0WD{l>3
z^DnMipYprB?sCa-QBivE`!IDF@2b%aM%`#CNSR2(C(|>6zFoOkk#hZ&OqfRQH*DSs
z34CHoTBEv0e7gq*WJeZmPe+aw?(W@gEM81p)4v3T1bqhJ1VQ?=s7pxs^aG&?LPbuc
zia{C54E_EYnD6!riL8NU6Z8C0{PTR$e|tc8$`}f2B+t_ejccV#pI_uIh}X;eH5W4@
zHJ|t1Egrf_b%RYZ4~i@!RFpOo5cuRoCwYf?M}RU*D#7}221AZwNSKdcXea0bdwLaG
zux81u&6iK6W%T^s3tsoWv*_N&`WZi<kOW`K=m~%zgrc+AQyu$#qGL54A^~0OI=BEL
z+600cRCrYVwH~D$h$t4szZ<MKR9=^$I2RudJQpN@Bp;OKoyp478kg9SqaV1+lo*2R
ztSdPN<SI=c3z;%g^%9GlLf4U&VuMvW&w~+t2#?)`NPxh<9>R#>?NeZc-+*%Gh`rNp
zVuC0{^y#IZDnT50(Sk;DFJ+6Iu)v%|20=FSCl`c%GK)qzSn<OUM*CXrB^Ku;Vn%k}
z>#~2cVCD1v$!99UCbNm91U7k~5njV}FrEegt0nS?iT%;a`Dv2f=)vv3(cFW?K6)L=
zCo?NwjA7vNG&}EF7JocjjCY}mk*TN`q+uyx0E|y$D8J@*0{*=^&L**Q18RHWrM^Wm
z@2becK`m@9gFUFdQrJQ!%O3fv9#hfVH~xmvy`v9O%n$mjRL!Jy|79}^ru4>meo}Vz
zMB@Xu8i+5sn`9qW@9+?@|4ux&d=J>pJyir6?tzrPuLwp|rrNV~zt>BC1aK8<B(D+}
zteHPH-mneOV$zC^qH9hldh(JmsqaV85edYu9|#un#XaQH3&Nc6Y3dj;FMYMMRDu$3
zyH88g|H${%FIOr>+|TO(YJbDdqA@9U#SvYt@u{`TWHehEchpq84L#c^z+2vr$KBxI
z^E#}0$>ryV2}58rQft216+qB?bqCOsBGrZD?{TfDoTUYH%Tdy(vsk#b3+Gn$Rg}hB
z+jF_0Rhi8yZ}lnF5qW}<sP7dsoTYS0boeFcb{g_p9I{mTw6b)VzGx!bAD;2_?KeFv
z2pzwm73oFU#mJ5cKy4U<*~4Vm8~+X5fXS<sN2A?qIzWjml8?z3ct&S%*EVRc=ZU>X
z(_{bOWEwd(8u0A5a2zy#Hqe1k0Yt@jf}b)o1W(s&m%p2Jpy-pQdZ-mEuW&v}QklO0
zaGl1~6M)KITL6iULF9_9Y{t<nf3&)3INhyo-DfR!Zg!y<tPsO%!HT<s7|K(Lks~eS
zY!33v-s1)_;o6J6hXY4_nZ?=o9y_>FcpY{_sn+B8t@S4yfs*tWSmk>rJ^lP%KW~v|
zG*!{B+z-3axGY@Wmot=M_(SClzc>c`Jh52n+TN2>tcI<-Xw62aRz<>x+4Nd`sa@3{
znC87>Y>p@|Hm~vR@z?m!ib8WZuWlx0Cw9UqDm3}*-;!$#rU!KRMTLMQsTB_zM`yP1
zItfL096pR=NQ*qXtBk<P8vMx~X%v`46Ys#fBf(lFvR5=Yp=*e47g`QiV%EG2+QFJv
zsK;7yAb9`T?}Y1?{3F%E<(v47krx3b?^D^=6y~K0G`|ZftO&B(A?c|!V;QV~jf?c;
zV|!hd%78SUhhBpd4Q&%nX2B7YB;O`asEGOCAeuix*B{bnMsMog^NsyEV2QI-H;6ue
z&+1JYichiy<UUcF{~FaEfbB6o?_MvcsoezyYP$ff0N0yQnvBL%bmJ&?t%$u;hGVDz
z)JeXHx;siI&CdW`&ka5X>tuQ#49(E6Y^c5r4N}p3-GLK5+Q6@FiV?%co6%UB`51=X
z&sfI>?<m19<EVptj?cjHw1mFoh*maWu?p8z27Z1-SqmS2;m@n&(FY$H>w*QhW*b^e
zC0yFZ2DlSDKQSUQG%!1<>g2<T3rqtL{HVO{{DMB50U-lc6p^7xVcmgfL$MPdEsq7!
z4nsiT{K(x&*+Hu3mkRm-?O<#V?e{1=5`m@%58^ipmPQ_Q9?kvO%a1Tt;+9e-B@}R1
zeVQzR!nFC@m>zA1k4amE?_i7>?&_rmii{ct>=FLX1-bv@=UGNx?@v1QKx&!F269jS
zjNwS>+`Uv2ol0wusUj=cEIN}6%E=iCc~f)e1&j^4&7Z>(cZ)`PG<xZBWGbolAJmiq
z5NGQVg)^MDpAX$))Us*m)dk1Dw!%lpq?QcIyQ4)AVHNsJtrU~jWa%E=e^gzJF_R5r
z&ect9_)`sEE~iEb!9OTj-;-#ll^(P~ic?buQJzuJ`buuhK16lKF^0Ha7>d?7kogJC
z6A#FcGzPDppAjzvpm-;ue6w(Y1$ThUD64l};Fy+Bpf&23hf=}i@JUNVb02NDEc%R%
zQyQS{=^?o%LGFt){-eVQksE_Fqes<!*1#oy_BVT_tu?#DSGVV_cAZi-U=kQbJpUTH
zqO*R-;mBU^d_1%Ae|xA0hU>LlxHy)qwD34vQg|l~$*O8XOb>-O2RRsMGB<w4(rAkj
z?b5v=5!|E0ucT7>FBN7%7S=9O0{2f5H<T?!B0<{3?Bckgrns+w2mud?)$e<58cpa}
z;?kOmSgbXqz*bwbt<@O#p2}&$T=xBoRr%OD#S{o1SsTI1)9@85XYt+pr-cs@LS}t?
z1|ttO9o?)Dwm+#y!sxUlAIscDIBiNi3#M3Uvvw{{!zQj62aneywUYll==7$kH;>)u
zzKX$Pi?s8KzJT~uTP$-`Y=yyb-FwfLvQ9{8lz}IAuMzH@o}bak1~<pkRXfk?Tz~fM
zsr~_Aa;Kk5fzaOp{2P1fMghL9yT^guDdnjE>?|+}-nD-d+n&)yuCP&9;t91u4zh6H
z#wbP_K@VpAPhe2H5y(caj}|l4X9@j;2>K`AoY~V=dgli!yKQ9-YL(y*5o;L^C5Owc
z^*<1F#ttp=iXH(z+lRyytAO(Nx#f4_O}@*|IzDe8uw~17Mo4HjF@fj*5h%{v>k~xh
zqvH^q%a9n2KBJF*AZhYl>)D+T^YLmTof>8}fd!B0hW`6C{%#Z^{`QA}u8x6VpOPOl
z^M@&{jLp<H`e&<w@WcWkiu$lFRV0l&&=?u0FOkcdBf7COr=M%k1xxFRZQ5C6ub-1e
z>nvND9VcAYz@N!~Xq{P)ZxG};AccyLFZ08(>+&;!&)Wg8Lqt``bn79p<!a$DJpaf5
zZDRjH`F1`K0)0Vj1adr&NCH*;47{L|g@gEo#FsGRjE4GI@QI{Vb|rqM2VV!1-{|C{
zq;CeoAg74=RFg9a8F&W>qws(%uOx>{Mh~z?l-Zgsv~8tOMP)vKXobFm+<JQ#JcWYo
z?-qHZFl<gRkB>H+4IVJzhFpeJS2o|@nnL@%sl~S!-Q^3qyNOeRoji?6w-W|kmTzuu
zINXR;E&8Kw6V@_pJ%`i-0-`^0J^lW;zsZ_L><{Q}MT-l5=&z*(d{J<Gf%p{!YnKZu
z$dFUQSDNLE*P};INpOh$*^f=-v5brMT#t2<iUCiE;EKLQCBe$DgftrMjbPl9bME6+
zjLcrUm;T7^9Mfv$14kzG$%cJdI&<|XivAaCTi(k+cfa(J=%g_YN`M3a2tVF;+5fC4
zKzD->)`16<ABFwaKn{W&x7j1RhMTVOf^-JC3%VBhqj)wb42{LRpz}vqF1gd8`BYCV
zwv0|kL8}}sRBZk;q_1$VjT3<U55(jggB(w4C33<6NwVS*oi$yJwC2IUdjoenaQQ$_
zNac{gf0inKYs@42Opuv+v;%>B+x^-xp!^yNzy};T<cYr5k@~??#4x%1^7l-4kQcPd
zDUWuXqoI%w&XmVLZ}&OlYY%IIzd8j&8C}?TtS_2d9G`Fhc9YP(pDX4mBN~}7$7l1A
z)Sg3_Zd9L=&yzu|erIAeg{l0X6FDD^iE9^~74=mP`JtPop({UOm}CZ2aEOWEtD@M-
zMkmKXX;sK3*L~gD?^7-O`1=Y7-y%-K_Qy{6Q93_ZEk9B>oNZmC-Ay;0GlF4T%T&!`
zQVKp(L!^<Yn=Z?j3t}r*?8Vh}5^)J{ZCTFo_V8Y{+S8Lm94FvuJNIo;tD5&H>niN-
z>1Zh!%j>&nAlp=Accji52~fh}sZ~<p86`#G=Zv%-H)O94y?VbLkwpfcC^hLwI3vUU
zmt#C7$7wSx=AjX!gVRXxZw4_Fgak|aSyki5`h_g7`jeaLpBZTTZ%Z`WOBhQ~3uqCy
zc9Kis$HEl4e}5*}OJ7gg)hGrPrKpf%yiO*rU*6{_adaRyQns9CEswTc*i)K9TTN8O
zq@B&Cz<xe_ElIhOq)l%ANLD}yBW3FKk>Wo1B92g9lzXZB@d?;@N-4MbSi9V&x_q6>
z<)0KKErp#*7<Nyc58pvBnq7WtxqP#RMoelw<qD3w<NOS7JSujq1i^#vHHWE?*i=2R
z1{D^y3v+5UNtu!Z%T2oO9MA4S1SWKHeX(r5XAR&bwT9YvDI78iuuIGvU+s($!7{9s
zf{0UHlZR_8ua-*e2W^)4J<vP*sZk%9dL?1P?vc?N)R}Aa;e%46wts(gSDZ%?xdT1)
zuZ&1TC`PcT3h_%@!+@IV3w)pmMN!2G7MKx70avN0D=SiktzV5+R`*K^MUrP57)L0O
z9VPokj1}FgOGlg9U~%lCyRdTgV)j{h2~C%05MS~v>BuFh76+p|$e?3CO?-)>85ypc
zWndFNv_4bxYdVtBx`ebkSxpANq|zg!jMd7bmJytEa;21Fv;%BiOOpis8jc*d8|l*s
zGGnXg2WV)3g*rQwW>Dd_cWuy0SU+uO5twpW*dBJ=#lJc1%6xj=jl+eaZ&*QB4|oql
z62jkHVSZZ`NYD-`vZGi~G`|n_pLHho%#?}A6MRbQYF0|;xgX99WAJa&xV`wBpcn}S
zaf>HzA-fn!FF}~1t`;H}QKa&^DkA_ZPfEAP3nad^^<?NU2Cpk-95ss>@Ji8Cd~u0N
za^Dsbk!;hP+DW!FMXkEQ%tN?_qiH%ln%pawjH}dyhHSH9mY;wyaT2d<XlbRzo$x%_
zOG~pCDc^$k+Z<_blvwGrP27JzufViA<+<4_CcUlR_DomYK6tum@%@1;P|aq8uI4Hi
z+zc2o75?4LZ_xol6XA97*PbN~^x!n?YcX&4PMRX~K8OVZ62&diYCx4o9siLETD?Yv
z#HKBQ_8PA3FVkz(u1RCWlu@Z}d>39*T#=iz9kMnz{06sc{`7DoW){$xoqy+Gfl4OX
zkd<kT2cv_PR@Y$9g3yy;hqN{qFHKP$XRcnKQ42Ryh2mB0SkcNld#hu2&v0#z`mv~?
z!pM;jBiVR}uFRQevEjBH0riZE+V1hJB+Af-d|qu4p-bbGS!h66b>dKIj^wlU7W{I%
zGV&5JVCCgDkTOPFEXonB`P-1d4B`}69fdn!{R9sfg<|8>Q2C~?C*9LlThl~BPU%4O
zWyy-C_rd+*?d0qsh<jc?Gn)@<wX>?K)owCm&cvz52)pc8>WFAnKIF%qfnb0%Iuz3e
zY}NuEA!r5kYu^hEs9VhcOj`byg9<GShwv>_YH8I{vOQMKd=69ZXQ&ILCe#AK1ie1h
z^f;IC;VPoU#HM(Z$mZz0vN_!Nwr$y^yBy-=X}&3r@Z28dwAzqz?0A(El(&x}t1~dp
zgm>uDUFfYn%oHp!4o%Frj+V(3tT>1peu%8er01gj*N>S9;KEr|AHHH)331Qyn>M^b
z(3T>xs!20IN(aj}c4R-8F(=D}NJ&yvVEwcVMee19!sUi`;%np%%~qPrM_WWEUg1hy
z$s$Q*l-F?3xDAvgYMWPOG1Pl%U<OvEn#Ca11dT8|a$8G_Jd}H5j*cpJ9eKk>bc+)m
zL{*xba5F9<!cl50#gJ(SVKim$w0y5lo|)Kc8gAtSCvrKhNn}lUQ7fxofb`s?$l~)1
z7}CL2)fPnTdrm4ZG<s|)i}pTlgq&Qu`X@*8oaM51-6Ji>qm~_fFR^5|oXsD-!Z+HV
zjiM`djc2^8E6nt<K1jV-L;hXPPp%u1Qyo19tL|Y~+jDX{cVRM@;a7NKQTq*K(q0oY
z`|XTv&ai5G*uq-Oew}Rrd!&K$>D%C+M_z7QqYMfu`>I&93D#&`x!Acc*3_p5+w6Rr
zep)CijbiEsZCFVYr@xJh=@z}cn03iO5Ka0A0)Md=69R+wL9`pr?=VbX@V6*fhTr||
z>BS|mA~OS+`_0Yi`Fh+xyl`@IVZr;l-aJ^ivEnEA^z-A+`S1~B$Fb$RE`Km87On=o
z*tk7y)Wgd?sU?_UJ8rDB{XUYs*ZAhhapzmN-Hg|9(~S3uEz-2Y;X-NZAVGDqHX@<c
zX+qf*YXC8<`Y}y7s1?CNDQ|mMpV`u~>fFTK_}9BhN50P7{8!dWdXc*fXwOxiBzUP7
zO<klZdNwpe$ta6{Aa+?u6J-`Jr=wL}vHjWwaH+3=iosEI8ysttACVI@H;H$D&4G8?
zxfYcrEb6YgOQ4#~gDK@bJp7C_G01cTEb^kI*xxRk?*&^O5DAyn*wqh>s|(2nAP9T9
z3lfPn)^22c%ZM%Dt#05O8B@j!<XiE7uoR<Kc^?)C2)1d0@f0(_VzICcU^VB4@dGT%
zs+;{%<?DXdsJw$E7g1TMz{}{}S0tMrrB#z_dekj9$_6`@Qu5)<+l*zwuj?ZYC!=ev
z*)|s%aQyf_Q42SzLpjkni^uSDZRe2Ae@RXLWK2rL%eO$H{18%f=y5eCHXx2mBWI^h
zBZU}%q|E<U==E0UIJhO?En)D3crH&s`CjPqTF~|&aBHMk_qf{p6n)bri7SPRm$;>)
zpf}LDXKB-4g$*}#UJKx(iPVy+dV?0eT1&tl8AkCsFm^g;^=&WjeKu$<SSwoj4sw)e
z!3*qczlz*CuSh}BDyM8Xqa6MSt!FOO71U?$n?FH1<elW`ZxS*JSV(Vq;3k8aW|BHs
zvDgdpKG+y$G|TrRG7`aF*%7GoWJ3BBF8aiu6<W+nj$(&JLY2Q!d$re4blIr=rlqn)
zg!lvLmboK-hZ~3^G}cd=itOmtILN`@gZ(uR>tVfP4*XQ)Xmmic>+KY#)&Y3tQ@`eW
zczU*NJ^~c-=Gupn)Q{9=mt|yB0vyqMsDjOHHFVx|T0eGT{DLwI=x5A1Uo%QZcDsN4
z8VlOC#%elG?~)qd{CG(k1kD#LjTj~{%R+1)8oH8(dP>N&im90mz*hWv+m(I+6g>ud
z8Uj1L^8~i7*8qIp%@*-3gMi(-_CU|pBAXt#@8WN3nAJG9buKvoJm-(na8~1wFr3@<
zA8#nPW!%qqUedQa9m?!fI(`b~>WyY0hj?_FFcS{!kZHjC_~E*-_oRf<Em(<fed=m&
zsnBv)cDG54@zG2o3(zC!5T8==72d5;Q^O<*$m1NfAmJ#(9arG%FvG&<mGuUvdu1k(
zJ4s)~<A5E4PI&fvKZI=CV&N}GA^)Nc0C0bC%WdHGp*P5E4f8%0o@n$8{|j>jQM(@5
zn#c|UM4G?(LP-d6zgfI=j#n@UYeX%)MQvav1d0y<OAuy}Eesf44*WI4+`1PCKlj1O
zBxty*8#p25{8z^cxMf~fk<0{GI2sHI6yu$dW3eZDFHVGDI6iWJVV~9u(aWn70zv46
zq+|G?;HQvSV6o>b)zuPUjOn;3;Gyq@s^jU6rr`TjuMQOb-NGoBz#ZxDmoiUleS5zp
zc<g~uE`a9&=*#-xxFMR8A3HgI56C+Z9XLEBg4YPrMSMQvTlVE3Ngc$+p(H0h2t6;S
z`Cxnr{g)O3Jlk*S|9oWLoo&DF08c5OX~0>%H%NeA*e5QIv>OQ0HxAynKCX~jp-r52
zha5{59jZYq+=42PWTTPW%Ofx!((eq?@bm1&_{c;-yB@9ij~=bhK75;fA&g#-Oao6%
zV@967&u61tMt`{HL5V&<BvUj^`&(eohK7;-*79qbiT#lo{h&KD6SBCOO=dG_o_bJx
zW=*{idu~{|fr8lX<>hnvNdS3c?;w%u{dZriQIl)jPn1w<YdCK<1lU3k_Ou#i6{?~Y
zRXY~6JC-yIxNcZ<6r7DO6VRU1U5HQI6%JoJ$$72gD~xOi6+5fK6%n*}ictvfB2SE|
zvI)M<TSTt|zGdC8GT##P!DF7k+7Gmhc$KQ@&XVhKj{S6QVqH@Ns*DU^gw6nw?7}~b
zFNf7wZvA|$ZOm>v!Qa=~>Qo?7v~q6q7G3m7=}lGg2jl99LBz+=7N5w%?EfA>o{Oq%
zi41qTeX~Pf)LsM$y58Tt#mX3w^lQ6C#2E++L?o<#5Y$Q?KgeD^gD?#oFi{%0XGW&C
zexta<dNFB}THjypgX(%uWq3-)I?Di94p5&9#o$viBnV)TO%WpQz(B((M{%vjeV{FT
z<k1-!!&C$7Q<VFPP|Jp$QBlXji05f!mEW#5F^VrSih~cNKfNtW<~;kKsoxDn=^(ax
zkUyT@BCcjrEaw6O#a+_~9^Tn7X4BIJHVtoLSlx=Gg|s>yglIckfbSMwK7NdfM8W%h
z$jn91LPy}HBSdYvNp&)iC0jstaZCVe-@^*NeHCt>i2F(Og6}(D(a`=d&$U)P1t(&9
z@3rVuan}*i`Htu2yLs31_EW%e4=Du)v(eVaz?dcqI*Prq1wRUn`j|KqwFY&=5($`S
zx7=EfC&Uc@Y4^z04W+ObM|kTs&qB$3l!i%|?5KVx>O=XT?dfMr#)~`g=WC*0j-6{=
z*A)uouk-FG;T|vXapP@@eGGhLyMmt{bY~KB)`i4zuF|4*kR;mKulq=LI5b6tOn$J=
z?0cx$rkx486tRkHb?p(niUQ8mT5Y4%ngUCSWXO7CbA!Js-s?Tl87dY;6BEPd%2c%S
zB(QYEe=#76zB8(%Q~d%_$<WIqcP~2)PgB$&#2171Ss+V16p<vl@nd>YmD?@*3MY%X
zX2T*L0=e+Zu7AOgw46t63D&}*NHdldB++5g9~T{7<Ucu`O9e6QA}K}I_DG(;BbbV7
z_VbZoAwmRgDo1D<aG_+30FQ8x#EKlT!Ib!Z3Vu~WO-iJDje~i0omMvZxy=BY+k=st
z+XF!;se~NP6|6{te&MF_X@x9?ixq}y>OzG1M?hxJpXy1W5MlIy-SwT1?Ya*f2<j+a
z>Vs<7-PxT?+VuVyN_Jt29@$uhId!^?DG@j`1_kJK(%qO*i9{d&EpQcz0NK$3PDz6(
zlgmm@18<62SQwoi(718*$3lsEJPO2E5+93!yH($ZU>468UX4w1QRg>M=h3WE;YR^(
zmB$-#{-#|_3}9VJV8UaGv!Lkb4T2BA#qlzL%}dYe8*=vM8pp`Fh7n%V_u6aaof5a0
zJ%l6_sg$@2p7!DSPO={^LlakBcV^GqS7{|{F4pYNGSWK|;=SZbC=MuwO1`MN$3=*q
z!++;pPXCTV=d3CG(LoKz*@%_p7XnVB^1&*(@w+^Crp35u3M*A8MOjueAy?k#$4~`}
z!iTYsD<tyDlPV*6v6&e0cY_>zc>-JmII|EGsCNC(W&ClpxQh&Gj~CU|jUZ6o;5Uo*
zL794Bu;5^CguK938p!ZL{J;aE4&A%$Z!KVdd%gci&y#YM`}?Pa)&nAXL)fYZcOOot
zyK^C9D@ky#%(I$iM#={ZyD!vYKv>mm>1S$@2x3S?+8Cz_5kxv2ik4j|{0Kotg7t)F
zwFa7X!%2i|<gUza^3&0p#ZQLJ-|1?3!LAolO)*PxQM6*cpYgXd__mOFb}@EhNfyT!
zW&$Q>2iSHAzaP_$$qRo6%_Ew2ryI%kb$fn1Z8n!~yRE2MTR`ACmsI5lGe`7t`H!(<
zJ=q(RCiIx~GJLOf5HQIKIAu#gnG0palP$VKkcU&G#{$Ldg{Sw1)NC#nWrAe6zhtvV
zmSVr?C|=X}0P%6mxJK3|ZVqdAMaeb5p5gC|h-M;Hen`nywfipBU+mSy)>gmN@)=2u
zvr0Co*aE|r5)8h>fTC%*gh`I4jF<S~f>}2qa5Fh()aQxr@3-0oD$_Ey75+zu4Oq{j
z#1e>G!=8GwD`C692bwFu!0YEZ%Z}I!wNMj7Q1hJI=mEED6&dciuXZ@1ZFEoaQ(6op
z=3RO%e<qoEfW<~f;tydTf-fQqS#LQMUKs=BX1?bJ^>87FZ~8df)B&GaXISC+0C$HK
z7*-Nkg*n3xur7ie;infuH6U3wSH|@oDdP`Ak}8xiGE)zz_xB=-IS^|N$VJ-=Ch%T%
zjMV(Q!7`6m&rwJ+nbZ)v6}E&o*t;|?OS!C6usSuFHcV8{o+h$Am%l&`mpbUl5||un
zZR(E#H-I2wHPg@Wd>%Ld+k0d4+TN4UD~i6Zt7&sYQDQs902^F-&Ln8ZUN(*w>m}$@
znv5<<u4IJw`${3Q#e9gGyHcxYVLo$Oh4e5ZoSx}>Yv`zCHrZ#zO&V0#O9hG;)BgiZ
zK(oIRpuQKgd)&m6Dos3znuxXByuB4$OQJcUtesgngigO>3wnZktSv;N8|}1_7c!Gw
zhrn<dbmR<E(JINToQl5t-Tv<HplsK^+ZPnx!h3Thdok}F#V|X`0V^3F#nMCGq^Aq(
z=Fqa|aE$(BCNn$w6)QVO2!jQ>0m}d^>D*a=E-~z0y8dO>z>!XL)(Rj<rYEsv!eD2&
zSTe;E%oikSiba99n}XfmQ^3AsCQdk_g6QQc(k0ne5m*Gkn*d@IO`7F`DYU{R{{Pu~
z)9tpAYhm>K)>BmEzQ>Y7LL4M&Xt%#5OLAL@E$b8I?vs_9&nyB(5)p`EP=F++(`Vh+
zxUYAg<gVJgMgXKpx7)*s_@mn*fnC$CJrArQH%`5UBCS0LNQifvaqOVnAc2E8k)y+(
z<dcjS;|ZFMkq0^~PsMQOJTn1Ab~Q@Zd&P#N(^^Hqv&oSUh;Obb*%!wu(wL!CR-B(9
zVklduWt3&1(FdiJLQoQbqvDN3JsLAOJsUhKT-AI}(7IBdgQk%x>an}JJ#E*qr&;44
z8l7M^Qi+2Lpq3*V@`AjI6SyC5;%SVQe{mDfPKyj0cuJ+;Ks~?wX?N%R@~0j-EodTg
z8r~qDxgv~fm9ZX@vb$!0Hl@CVaejH*Q-)i_+lJcGDNQLjp(a`v_Rk^b%H%>4Fyx_?
zpGbHx^ep4|^Ee$_kHs+KH!QVw4cqi4ied?qCgi3VvMgme6IQPaBsQ{){B^=Iw&X+-
zK5o*KCi6TFA)<cD@(C-%jwC8OSb%0{!V<sZ<%Bj%sOjLovgxtxJRR`|(BC}UjMEVh
z{w@GnmtF&VD_ga<66Ju1T%8@CzC8=3FdA$dBh&_1Yo|)HiN7_?F9S)1W;Dy?4CK=F
zitNz)hbs{Tg*gi|tQFBi+(E<;+ICrD921V=4w9hh03xyl_i0-_Bdq4(=rFZX`%=Dv
zCsuParE-H<opW-R#m4;cA>m_fT|gGxzdn8U{u;MrDu<<Mu524eur(`5YaK^gYd5n_
zSBh)rBh<ZOA&-;Yxm=!SWX=mh6R9=M!6Zdf6DVeFK3juoU2Ww}+m@;w6U;c2pFN8>
zP&qmp$?ci*;@Pu5lqQmrVm8ibgiIUekZBZ?#6TPQhD935Lsr6U|9`)!p9`Ggb^{<u
z{St^h1tpl>LafJOaKF=T$^UfZf4af_Q{il<)vX%#9p`7)mmsvTq4(!KuH{N@B22}>
zd}RqZo@H@DI-Qc;GxA(RWg6-_k)4xQW;Tyf2qodD-&}8rzTgWQ<87gxpaFK&24T}7
zL$g1R*mlh&t*VJ+LIoKzmP!#BG#t76RlS9PL;4mLQ|XqPbC+yY2s$zuxRA;N&{{+4
z?zJ3aESQVX;dFx40<}3-d!g`K6q$jqYSyIehW2!o-{q8rq}_$H?b?6^V<^3jr;Hbh
z_ww+D<@%c$&FGZoQklT>JN~)f@4DirV@<eX=-5;Y*D2)#0)0%AQ<hNe&2nbBYaPJK
zve#V}sIU@ZHOLI*@yz9$hKcMvp|e>sZ{llBA7nG<&3wX|NRAgWf@z!ruhzMyn=gJK
z?Vx>#xv6oAfdGgvcCoG6#iF{<Bz@~Lkyz+?o<e2qLf=2wm2<A+e-Z0CD@bbw>pBP9
z&dBHKEluJ`BGr^CwsI%>-JiN-FfEcizNA?WGFk)vlpOUeVUkWu>8;K==|FddGVMNd
zVpCA|ardEg{Xn9%_7gdnFTkh`=&rK?-5Lil2xWNBRD8U$7hk9w9%;S0yRz^7pxd(p
z)zB7D3>VcLl@o#+RXbI@Ydj@<#!@kfM|lJI`k>Ad1}fg7fd;PeMVo>Uycgko&}!`N
zcICqdt%FwMK>eX7W#(Z~zIRyh{^I@qdm(c4X4>#1jR0@8<w0Xf#2IQQ851+>llKCy
z<c^%aBqzuEjM{r^phJ7lkw$w5!9mTWuh=cia+u+n3W!)H4_diRPv~%+2_0^G!9ay5
zTj#V-W`IP&=TQ1Zb0qerDdQNtbn))`tRLjg?)yet*Ls!mNK#Z#txx2ht7Wy;xpu7s
zf1me_1K#fQdYk+4yJY9F?*sz4NE(r+ppE}Y0eK47=&3~Zr`p3PZ;q8%DnVDh-XhqN
znpa+Q<ZhqLsrh(;eGu}2?(WjVcKBUycyDwk?nU!JMj%8nxMRZ!=QjedAWn^;GjikQ
zmYYO{NFZh=9${>NnD8Qr>g=MDf@{;LncP#K@2H)x<33MOQehye<lJyBWJubsl8Hdd
z`Ki<pg%i5yGN)^F^h!l&mLrO*vUxctyRDX4@OhH3F-=H6&*Cs|US~8Fa#c-DSILCY
z2+uHeYzNM{beEuoOXS~~3p|_?6(As4QmLFZh#UrW5_ZdyphkE(Rd%<fZ-e!MM+gP1
zb)c0QG2df3f!P!<;?=V1)P0&T>kvlMp2yZ}p9>t$@LH<y*V-6*mSsG1<1gHc?-|1P
z58JB~sr|#YOM9)9t*w@pl*+YQuBYc|BgAX~C>3NHhZ)zIt`L(jOXA$d_-cB(f^1>w
zY0ssnCcGvkdrNRi5iqz>g@ABF?-I#pMAw=VDtAe3YHx)AOS7rHeRrm9$D!XYO*LhA
zl>ryW{y9KfwLlF!f$dfXVR6k%o=vG6`)oxkrxF2NRYVbf*rh2=k_MTwC@!Y3p$W~#
z%#Ve0MI;I9>B5OTwTsz1tX+(DqKsGu;V^te206>7aSCJon9-13vMdG(5CR8*3cSo1
zy#f6R^a#gn6S+1GA>nx}eyc8aQPt`59+YdZc~%My-h<ojZk!~%h?*Ce#q&BIPslMw
z4ue(P*gcm&W^oV@4^VKzlG#p%Uo_prXo8oisdEV6yPXi=rvSe>iN}*Bb>MH8_DUVU
z3N&#M!$#terh2TYFhu?3Ad311@r8yV&mz@qUxM|Qe5`jYs0&~^PgQ7;&?upln9`MA
zcy5(LlEi7wi_EddHB^|PyIy&c5MhKS{;<e0N!Qf|v3m(H&J*R{0Lg;TbPig(h%*-X
znI6nF|A{;+!o0|sB>$JF&JP)((QPc?AZV@veO#L~<UZJVs3hSk0BtK{|0tNqMS~<#
zo)8U_uFx>G=15i~Of(3~!)<h_r2Gy>oy`(3;PQkeb7gf{d^22@q<tUyh9Os0RylPK
z(b@>|se;g)vguICGx{qC`1DVpq5O(oIG5tqusJGmMtOwfJd^+|WdZQAzz@pcDG3=4
z3#zV?*d%C{Ffh}lNS*aMOOK)TJqj>zZ5od!ImxqF@?o5g6ErHpT>f+dGeNTNM&F<C
z#Kr~_6&mf@@<9Yz=$KQCI&$dw_Hy>(vAZVC!byC~25WQlR8kn9tJi2&6PB^zyy3~7
zBN`{_O6Am#Ds}9;L`@Qd%LnO53`m56w~kk?xQ8uEIk1l0j<pDC+U8hsLCl6-sG9P-
zLA&MK^4q&^yb&J?z!s9h7tMr=ygA}U8u_k$8?M39+j76^*T-iU$1mTUovOR0GpKM|
zoDfPy0+i$mTMyP@;w*dL@n3f;%dQ59ARh<uQAav(GAM@e;Z8A(o6|Urr!+Y_4B9~}
zXzw3(9T{YA&+#U;KmB06*1$$RQ$y%8*3bD&zUtx>Mu(v}Pla`ov6K)-MM4~@0X4ws
zOdgwuuF5Rvi5p-B(3$HJ=S!L#W<c2uQHsu=XsX?7AGsk1-i90mkmz^l?tN?NP|N&N
z-Qci<)9ry1$Z-SF=()PT3)ZZJ;`Z(uLUDVyCaMR_kWO(!Ww5cq)6SwyE*hwD5a=GK
zDz=dYVuInVHZUsXIYZ_N>_%?eZZEi3D^PnP8e|ai+5BC4cFVGPAFcT&L?C4hj2ApB
z6B{ig(BzKJ1qt~~a?RVAl2WuF1Y=Hl#>ja(;teh6!3K8Lh*{e2bRDf?_s}9hyJrwU
zM~WtV9EWmy?r1DYQr6Ub%u*2LZP|&~?M@!fTnBboWJ#?$C0Gt_{6RThE>7ilB}*$V
zvbBPX2o1>ltyW!V1$q~Ev`Pxm1|O7=^I=$wMl8eZ6%~nKzx%*PBb-I=U}ZCQ@1VE+
zJ6+pd#g^WMIq6`sZpRr)5i$3=?gxAApyh(tw^n8qliOK7+Xa*BH4k^&gL*%EDaF(^
zjp}3<!Ez_;q@1GB>#bmsR@>d%+kR*dB(}SI;O1HFnmwp@U%3mjZ5+_#r`Uy)eB3bZ
zr&9Q*$bmK}SLNc+a5IE`Ct&w143s-_@M%!1*F0=>EG*CT=7jA4FC=$ti2hEZRRd4v
zif1f|Q&uCs83=xk2(k$kcX51qPC}X_sQZJj)Q}QM4y`<?g+~>bwa7AnQ3OtKP9+&|
zQE<)xqjO4+4_1v(tC5yPSzK0@m<Act1f$p=t9hML3sG4@ERs4J%zB#)=$&Ya?x1RS
z`V-6h-JB%xFr%5H`rqB%1y=o+dyy1UVvz)LmeBbQ^qJc^QJWN}<3HvT_QzLpZ{(gl
zaem1s%zWR(92Fh4xxH}4r8L&c%prY)XCYf6&X-~29Fp^NkZooAAO{dKp=R?6K0t0~
zoRbrmw~gX^8yDzKL}gLySiv|YVZvxelxMCY+}B=ncM2vK<A%*00E3j>L0Et({x)bB
zTYS!yb}4^f8We$-G){RQkLG~p8G}@9c=)N%cKc$+Q}9Hn&?_lf>GHD1_<+QDcV&*;
z+ikf*hil2-Gj!Jrdw2UvnAp@nr^2~uD<!tB-8*R4&~JV!YI(4?J9v=G>;<h#7{8k%
z5KdTBBrL-?X%$+gqf@{@V2oyx)_BjW6n8v;b?n|fH={iw*KhhZ(@*8w$sNN5`J~M`
zxlZlLX`o&Pv~Z%nrGN<1vme*@;7)ejophXUc~+$0BHMaFdR-93#kL!9Uf-9-S%}GB
zO_?h~EeIJ1mKu!pby&lD-rL<%YK&sJR-{n2Km~JkadQ{NO$_>@3B(}eOou;V{Q4+X
zGKbVv+%$dVauoFe9&sio#z&aGuVY8?>vyAT`Q?cN1h;*l&)?>6^j1++)N*_^rDfeT
zN=@nbeC6gqkV_t&#v&^~;(u90V<}tCVlso|l%3o5kma<krqW)+2j6Q$=*y|Lk%2;A
zGg_k}*1B46IgqEEHEY#kkZjPf2xAF|rvzteIn#DO=pF?34Wc_)D$8cZ@+`j9(ND+G
zG)~D2i5wYu3sKr2W4|DMRK&m={{Gw+W6=IWIJ=VUF6UXg>53e!oKM|rVR{J&g=#Q~
zQ($v1#c?6*?g};n1-rYu?NMLhrv6sA#V9jDGnj?HNS?IV*mWFD4mQfmY|`0Xf=|Uf
zm4bW5E;&yy{7Ylu8VOCkcBdMEWwL#oEi=J|epKP0CaiFs)YB1-lOki+lZ=T8Pf%3e
zgKG{Eimv>NTyIG<iecQVgnXBBUL*plpznt`NcX_g__|K6a%*=9)z|r1ZWEtDsW^+H
zw@Rk{;8c3S0zFyLVH{HLc8)Qn4pd{&wYC>U+znJ+0IENer+4Dyi!GWu`a@_GRg_vO
zTEgN0Q}+&6=0tmky;?kdpkfw;_ItO{^9X1eLz%BdF-619mQf715$imMw7ipbo`?mG
z2a71K1^i$MqTtzGLdiuFy5g15dRdI64$&k(L&_wYmLQtF6qzf*`I%hGTCa(UOH<^#
zc0#oUa8@lTBsIr=xA{}|K@9c;+d?q7(rL&}Y{8ob-s--d(G^qry`4-&D{~Bv5o8Cl
zG@K(V6jFxgFh2gRRMwcgx4P#XR@WSsszox3Qj%vhykVKjH36z99POYIsxRUM5-MiK
zMH&`aQdYApg`6;&<P#kxs3dv!zS%1)f0e?D-rDD+9duNjl&+sPN6pgY+gme=n=ofH
z^PR15oGA|8E<e_eBuo~B<9=wj4T!g3t5KL}bQ7B9anm@1<plW%wO<;6vU0ybrZg7d
z1=-b(BCGD$xn~b=cmb{E&uXhvq+YAr5%*TGBX(OpSLxWi0p%rZJ0L2WC64N=mV3=k
zYj;p76F4|%9kwAQ%abUucnVa>$XN<k5J?=*0=dNl6}<qQ1hCRiQqw$!!zG|0gEGrM
zvRwayCDf>hL&EM^NdBm8`ED5xEd(|}2pl;2o=P~g1(%GxsI(g?&q^A|BEM!$8qK)L
zZ&q^|ctnxT;+@;J${gL%5{rt~Uh<^5tOGZ|$=Fto%9&$YZN+pbGck2hP5nHf>gS0W
z=ZPt~1)gP;#0>W?zu|dM2Kzy~7j#^tYCFj&`v$2LQLD)_(%Hhu1+{fG&WV%|C>q@j
znOh+NtsCq*4!%}1>mCkD2w>Vf|D%XADdz$B>-mgffSA7UrCN`6jn(Xqw$VZ2G{ka6
z&W2*7q}oXxQLA?ti7?XOEsYrV+_ym&lmP0Jv~-~7M^W`vo$M0ZZ2~jKEjWCLrzjPJ
zt<mx=yJMZh+8xt{POC`qKyb86lFyap>?D!G2^gE=)O_2Yu}~4y_UfWwyJx+%%3*3^
zz%fTF^D@8hq|T0`bk>Od-|HN@MBDXZ)VME{+rl_3+*)utr%j=@7N~=ShcwZc{tvag
zQhZX?uS!Kx72BY~3*Ws}60bQiE1LRsRqONo>|y?Y|Ihzx(9_a#NcePx{8=n9D$7yM
zeb~LXlrb&kh@FD~d=q_^lRue7=^~imQ-S<aeK&sNEwcB)sfMbAm3D=RDwGRn1#pQe
zn=(1BGWVajTE_B4_E7$PS&Rva^nahKEXI`Qgh9Q*sC3aPL^mQ^gKS8{0GXuXT<WRg
zFyuv=o8M~6GNGL_VN^(N9pA<Y8#_)nOEw`N2qb*aX#F+}YP>5|DKCgqaJ%CP`5T8w
zt*-vcW|+P9?hg3T>M{bgxG(p=>5!-?)DM6QHK55XPH_t=w)lEI`uOKQc@u{$6--&V
zGHt6gzLz@@B=`urullCbw!?cn`_{kSGe}h*6Aac9EmGMSOzlooxAWHMx)`0MXcN>_
zuFtBoZk;VvR;z*tu5wwEkGM)6V#6)DQd=<<&V9GHhNoe-=ji{6aclG25_WW&@!5<;
z<l^l5!`1Q6HlAm0cyCQ{ZyUM_0ey=7xfS8ir&q1S?Y&8pgk-rQG2!YIVQ-O5N3+e8
z<##-jNE6%~h#=-tBt3V0R8kjw@k2Z4bktTKtXzY6_h5hfq4e6_y7XEj|KT00$bMb<
zo*Nc0EW~`s@2f(h)E3)=-yl%hJLhJ7l_i^Z^)=qfmenwp<tkYI{@{LfmZl?jocg!z
zs-~Br*2_mq)`7(NIE8=Q#W%4D&sVlkNlKjP!?k_$7R(<VFb+L&&A;H}R8ld1gLTiF
zYa#u9(Af>_!3dMRMY9Mix@etW>sV?M#)@ok9t<DBy~7UFWl;_rCu{_4gSJX7!+)yM
zMvJfnebu$M(^lUCHBB+ak3lDk8oN%R+KyG&bd0vL?yBgrs0eeX)+ikdqN4MKl)LlT
z$?Nk%s_Nt>fpp86OV^ppftiYxTa-ycs-h<}BeOWX5u}(Y6XmNI%g|3)GBsWrqrd8w
zx65iQIa6`#7xzjxW-0w~OpSw7b-x<8PGHv~pw%5?*EZjn+SpD=MaH5cjcA%blnLaP
zWftJCw&{=q_jUzk=g0uh(C$M!=vwqBkvF$QEmpu4EREziJe^H4V>f~6KzU(c&9^ai
zD^)pd3l4EGD7fkA)w%$OXNq&Fgub57B{4jJ+o^Yrs>TE<<AqaeNi~K5p$!5UGB%?b
zYobA}Y0S-e^A>D%z6^kGD95O`(=|?+lunr~zXfu$&VqHSaxK8b_Ce6oo3dN7r$l5>
z3a7ukI)8h7^_KyJ+B>EUNVQ0K5fPJV1UG9sQ*xn=2}b%Ak5iQxKAY)Zl=5ATbX5jt
zp4JyB*$Y}V^=E2j)1zn4NNx76!=c@1CMXgQm#@=m{TM?X(3N<4$LHyLd-c*lWoHKM
zR?rRF2LqqilBPVZ;NIl;T=1NUT8U^F=P8}WS|-Xf#&pRp{ga)*lbko(Ees6)rfVpD
z;@U~SXW68x-gj+#6U73}!%$-EwhP%5G>_3bA}Q7K8;8oSW=ggLI+5oNCFIU*GM!YQ
z`ksPK2DHfeRQ}Wd;aZYMP&%K=H9TE~S9OCuCCKi|KRWh?w)ZMBqML2v$yM$B;80?}
zDxz6N{1rt)2mBuuq(1_rC(bXrPN)37>3olq*ml;^wreRf@8wJBeGN--0`Qj}->!Rn
z4uRcs=xc3lyRuJ`P+=}A_U?l8`;5)Fh)V^$mhIl&*RXqg77;p#)Ng5~Gpkp{gWa!T
zCA;oQ+GZuKwN|3*n+#NBhLI7K`2hT6O37*J{M)Rq45h7D8N_@i;-T2dskjk4rlv@9
z#v^MNbH3LKT+?_dno4|Y;?O%!93b$GyLOw*xVzTcI~&i)yICGj<A0XbN-O5>2JN;}
zPWQkSa$ULIecim-a^75rX!e4xhH)6|nJ9q6l7#)bf8Ey=MoeG}#88-*clFDM72$9g
zr+G%_<o(qfo7rbdT{%uI38!1C{JYvZ_P&Ojvgh2CLwn_&g;ZPFptj}2kT#VY7}RJi
z0~QNi2qd!L+d596eOOitmzbMutb&ALVjUc8TV=1iU&CH^m7&J1F{)|<6u1u}&uGrZ
z^Gcy!S5s1(ao}vICDCWfC$Z_<f;T~O+pMz)ZyIas@jr`<k(UV{nso9~`w=^KIp}1y
zgXjbYU;ZFE!9lr`T}@!LlEiJ;p;Ovb>RSD~I1eXM&*Bhiq+A)g5tH(1;E#c#Cm=CE
zPYRr!XsX|BjMGZui@g#1!J$5guBY}_b5miVua8NHm7Iz4idaYoCNX%gmXgc&CtT#m
zNi64XU)(Q659v856N#5JhT+2yHZd}pCSX%a$0|@vXZ+X!dNl*Af^1)bOxg*0+jb#)
zdLga-62Edc8OZ}pOcYzSbysa}k&`#0-aId-&ump%NjS6HHM1+z|8X3ZEl6c@w2yr7
zl!aPiY?;L^dtKpJwJNQSYC(%|xf&PRps)*#$}p>TrK+7~$3$)&nrW8qwy_cEUDkbj
z&;+Hw1&qn%uD-&5!OxebsJI)SA+~F7)2h|YB^sk(`6<eqFRyIA%DvjNyV*9oX%BrB
z5M2wxMm-&@1;WPXKGcxO;J+TUXXo86BdZ}v!^FwqD?1Rp_8oN=NI8gIS*x_Nr8c%s
zu;<&@I(xR#!eF%)nL2(=)pQ&vnyQ|nvsg&9L2eX6>-C7{biq^3fuJo1;t-W9f=y{`
z*1U%#POf=(@$D+L(GpH02RA*srUio?XV>hl8RvXD%lIuL3~Js@nGo0;FfX!{sk$gM
z&)IYamktb3+6Jcs>ka&FDe7u9tZaV`ntWT*bX-Np^fK<QwTjMHu?n{^NtP>1AJkSf
zDFdnyqp+L;0{%oEbJN9A>LMYRqL6Vt62YdoEIZ-T8O<0*{CP#_q@cqh@@GSh75Ua&
z$<#S?G$UnLe9O}~*F_g?bf0AlikoaaBbTb;mz2IQxyWC0eq$2&kh!sY78bzzv7%EU
zq(BfyU|-hi12r#s-TQQ96Df>26>IZENnolFscCDhdR)qLcKaD))njur+9v+$a6O!I
z!&g)XL?pIB4D<nfT&8=P>cRZV)_?WWC+vi5K-m6T6I#hH>FS@mD2c*QmMUCQA-r(F
z+n8Dhf>MsbmmA&EG{j7b5Jc!D$w9V`joC9T&VYGa9{(&3!2?vx+$wRl8M@M4%<T8{
z?AJNC*4H3Lw;VBg7im9GHJ5iQAN?iGC;fb$Foi%i#R5yVH$}IuT&H#$+flmJQC8Wl
zuYdux98>Nt@&KqDV;6EV;ddz+s`vn?wnm^Zj~j&*LW&^?;aQqsw7Vc7MO7~0W0J^Q
zb4RmO5@tndUg@+oWjBSoP!QlLNsyga+sv!w9b=iqKImUA#e10nOi15agsSy5FuzvN
zF(=qXd@n7eY-3fNV3x%k^rVCeaiNoWD_Lp=bk~61GoV#msbv_8(w|j&6-@*uW0l{d
z>p*hP)vr*)W+tF60tw96hftUO({53SERv#YIqONz+MslMchQERFaY(l@(E2zn_Q}>
zgE)0hzd50#f8DpR4O;qpt-^V#l-f^IddbFdYJnLPY^}kX4ugdrez}QSmWLx&$^94r
z?EQkpChAp_j-8l2cGW)pvLdJeL!%|}1{hx^7?1%Z4A4U#Ucpdgz#XL;8@s=)z_gBF
zeHgU9_@%Ud(pJ#!m|9wUWz|jv<|k!xdUAaE;pFwZpD*0}hm7+a>T;B*7@+Vik0Y!G
zE0}rMi2~D}{wo$uXl`TkRMvvL>B5<F+sxT2+NvIa((6JFC3eC7i8b<K)ic_~o>tIq
zEndEf8}lP)4^6U@1aN5H-z||H6|aQ!potX0<PP4^IDf^nQzhXXsT>0*WkA_FMII*!
z6tUA?FYMT+Z$+od*fF5fKD%G@th|Fxsl#Ra)LZbnTI9m__RM=_>%=t9<FS3E;wWg6
zzrK|;FHT4Np|IkRr4T#g*oMG2sqx5;CAmv5jhqXxYwD=&FSDNr2GQVK@6Wf5I1r~c
zvmL6#dJQ2Y@NNxoh!B}Vae(=ZOCZ>+NT;)7==}^@q+@m((T%Bw&{^S5Dmjp@r)%^p
z-QT$)ol<qUm1xucSK!px4-Q=Fq?d6}I-5n2rL&A{e*oE1<ryT?-}b7s2X+K|{~aq&
z4ZkuS$W7y5)j(GDyj8hWd8X=mC$Y#E!BVz93|Y!l9t)aeLvI*ur9*3y?Ya%i_S`i~
zVucmkbP&KbdMyaAUvAaw`c}RD`Z#(~3~Pet4y714ka%|ZJH*NzVw_y1YWic`T)VX}
zWNvvdoVqMsE%7)R1S?XNFYmL~?I^mErtFzjv`SQEQ3VJ{={DM$U&zlW;(;^7t_qlT
zJxE%pnlMf9b%SQEqYe7~H|0{z85<?g6ner44fBE~<S)l>-?%07?XX=lY<Xq2i%F>=
zv#r!1!YrQU!iCq-@Ei}*sp_WS9XRM!x|o6sp=}_PDfpD$pP0skV*M>{RUj+#(vC+1
z3&FC>q!`DkqSq+QyOZCyP!A1IPZ%Ki402<uL_t}m0?59Nunf>ZgcBxJ7E<b=-<;4u
z{bq+eFhh3NKQmv{cD85VKwaw1k~-swPWYjbst<;l9;jog-gwwZ6Rp&y1pe^vEc6hj
zXGXR7r=t^;HSpvZ`J7w1&Ah*--(QEm^nkv6UV73CY=4%wbIBzQM*N*-rZo2eYPGvX
zbB(lT7j0;Ty&-S;EhB<YJw9yH&(X@2PuSe)$581iB8s6C-__O9s6SGl`4?H$Qw)=s
zVM8o)K{Zr5)hQiRD5?an<P*t1U2HJaqqojsF0Nw?h<XB|emOX`ZeI=QX?dzgO$-7e
zGA5N(D(g7j4;=&64V<EW73F`a?9_rdT`!gJV5L}@6>}QfnA7+u|A72cBkTNd81#bn
zfhWGM(nGnUz2Nf9J8PI>dqMjPkf*l8xFlXL<Xn1ndzulYt|bH-O(dL}PIMQl<!{F5
zluUV4B#aDMNF~-_JAjnmffp}h>UTTBzA1!x;Mqz98FHSBJfkzEbibuD+ke3+Cuw2z
z46JsA)kxjT>5Noa>0Zsdra2~Lfx5*A;uJH}W1d<Ny9UG>K9#*-|FfgQUa)Ux-PN;p
z7(h<*IHU>YnqaBuQngQz!E#PcFy8L`GO!L`QF$8l;31QMbXkd6F-+nx@meLl;WT<l
z6PkuB!x4B&pf{J>#L>*WQ=Pdg)TIJWo5oyIN=-(2k7qPYSTwW{+kW#r2N%(#b$R+y
zq2L2%{El|q0y?aN4SSy-8<yTUr&<wuxK?3lHS~0#H)dCf>5$D?Hm|7$oKt##jiLkj
zPq!PVg>h&=ls!Anw3JGPMv?)!G~LiFoC5==Y^p68;xaa-C`wsLTNkx7(DqFo)x)x8
zqdOW;>HWJIOC2@GzHSmaTfSv*pzKsEJ5NV^pe;&Bg6!*iD%Ho`)(0_eR|l(gwClM9
zL4}mmxq}GLR0cv;q-4lO=#OG#)0VE7P`7%;reCARj@&gP@A^w$6cDDGyax4k8wU=p
zHYyWMumg<BaD5Pg_dNve)VrHH+6OHs-?maMmh2|Vi95v>)uuDgLOrdcUB@MG3zD73
z;jEMi2;aKFau#mOz+J=syBoAM1TTNCqK)Z`0;JVRgOoasuppd#G&gQgu$p3-7~H3+
zp~_BE20qsgIH)<%s*&*^*blmJh^_}o+c?+9h)#PEMs$>oL+*9i#NoD2v_&9vv198P
z+iiC-)K552TUDr7->YJ=QH6Q1_s2kWCBck6EfJOUP#-zZeSclKVxxI5C~LEJwugGM
zt*SI;9prLkUG1BSvRu|d0$qY~mWm={wgseoAA6Vxbl0oCQ&<-bB?o8)=;|=0X8&8W
zXfKst%P_h>rdJGI3bd*fz0e}1j-G`#KrP0C7^=ehjs|D~pY0;|YZj^OJv5xKW<uvU
zsc=HEpcNFq#=yKEF|PoVigjv>3HU+Mp-Q<x1xQW?%?Z0F-Hz7-2ET0goD=MovLqdL
zAlG+C=auSb19jt%pstAAD#4`^0L?Vfg_X=v6QiVm{^Rx8)mu5GztdZ42i~h0Sck1g
z1#08WH=`*B&p=aLx0$A=CUk6SoCh77^el&|n_AR@HJNf9KehtZqlAxD>Vr5UB9B-G
zw<_Ud2v$@*JFw-ph1n@(cLL1WESZ=4sd?p}pm$pngZ7$|Fbx`Dc3K)}G{D-~gW9T7
z%?TZpYU*GyQMCOitsJByCiVSTObN8&ud6eu$tpa+62Z`R<>eo)ecnI}RF7Gv`@_`S
zcS}rbjtiXMs%^L`Y+9*n?S#=nX?Uk;PD1Cr$W4<}d7deqx);5*U{J-{DRee~AlR}j
zuEt;FKFoC3xmT$ltZ>jSVNkX^2QZeo>}>~qcRjZ3SXa*Ob6{L2JRJ?Zy2pwHI#!ud
zH!7FVSb!()LxXKQ8H4woD({fv_WN%LAB`XvE!LhArEPAxYUDNn+8L1ZG>1AxP=5y^
zfz{)I5QzdcQ0-{2TrlSeqbca2ft{H}n{J5*8zCL619HFJf`do~V?joR)T?pB;(tQ@
zOar{!opmJ%ts8VSgjUcsG`kdcsB!kklS@cbQ-X5vcfnIai+m!#2tA8NE9mY$01bko
z3@^{KcuFGFwyj3&io7HE-o6nF((Mq*c(!`GaP?^@6|`+<4u)JWh!2!=xOmk!GEU3{
z8BFL)8r~GM(>POkO%r-bb1MIKV0TOT-7T-k45F3WJyAem83%wt)OJ~8iXf;|g&X{%
zka{=xY<MxWUl{ojgUmLbEvQ3pDlU>csL2o}G{f4Q{jR=*f(#3coGw(|PITgv3x20?
z4^1%g=fGJ*yJih2G)Nf|`U{xwf1>paw?T&mWwYLU-dVj*)oFn$jHxTiaMC_dh1i07
zvSm=kL4eMo0qR;(&`NyDL!rz)&Kn1HZ>WYGO1D7!6H&RU&b#~iT~BhCti)t4-qARB
z8>*vxsMGamr0h#n$L!=xs07nIpMe}%IGffnNa(A3;4qR@+s$eFVEDqIF69pEQYNPF
zIK}#X^51U7ISe0Ft-5R!DNh**Q`1=rCT9@5J{A>%PD~$)LC90V6ZVFWRr6DuI55C`
z4GY;Mc>8W(H_UaGaquGz;F7$`_;jEx*Y&+O9PqXabI&zhXO6l68{kR>t)P8a^V)+X
zxMP)M?IDNk@%@tY3Q0T4!H+#<>O2es6?rVLI#rEObRco6q?vM<mmR)UGx~!IXay~V
z&^GotNWJeaJoJA5b%|{dzxlL<XSUQ)_#ulMg@)6Ypby;fOcE`ic$x>bwS`W;y_otB
z@>ybPF%K$TNiD2>4QqFSD_S|!k?`NdI%Te{jdOq)K3yQF&*yNj@#4{3(OXy9*A=ZD
zk<<~F6u|%(q1_MFHy|oPWiqnyYQj!!uYPLo7HLWaLCnT=Vrw>*)OZWqq)q$bBe2!B
z(u1ke;-vLz(O*?(tn{VPRzFC}?^W^~&D98`Jgk_w`A+Z9z&3R@#z?(xAZ$>UoeGsq
z2TcT2?OjJaO(c=Y*o@_I9^W!M!H$_=$GOU*7)m7bNRmF4GeCxrG=Tbn)U<5>SvjzK
z^Ps(wy=^A_|FFb;jn^3w6l*M-t~}1~rd*hX+Ny#202Sy3?R`rIy0&71&&#FGc2B1>
zRpY=QGgeN~iCqTDeyJ!x9df$DFd2ZY)U?p%BM|N`e{x{<OfEj)WcyH;WH8AfPLD5n
zCBYDs&?1GJ7HFZAtk^H(B0-x3U(|vC^h=iKEUQan^Asvgo1wC&g=kWFQKkooZ)tWz
z*mRc9$&}8t2#8%?fBDsU*;F0CGk}+mQ=U&)2Dwde$M|>*t4v)j2$06vGgBA<os-_4
ztp=g(=X>K^N+-D*q?VW641gZS&7Q^0j*}yIuy8JD0x->PFWuZB3(4le?JtD1;8mM`
z+$ycZTSmgi+`eS<OZ}Pq^i&xw%?8q{)Gc-DD$NslF&dF1zG23T81WD*#nUPMCr`m}
z&ThmGl#$JMBy}AZam031mX)qG+f;)#GoG+ul24OuyNp)NG9Es|J$r_2B`4X;R)dlQ
z^dtn+XrK$gZz%&wF0bph1EXC7L!E)<%iPO|QpzWECAMH%3#Q^GKr78nBvec+87`GD
zb}Tgp`k?`CX-c0#hXp9<=vqVq`_D_o;(plN99X}A_N;(!z>aZX#^|hZ9>%#NLG1s{
z>pY<`Q@hS072`=w6EUO4TNtGbV)r;)+fdmzBL&d5vNyqrCyPx<uGdozY0`e{DS_Xs
zSebkh$3oNxapekPlu*04o5VRw6xr}obn1ZR^BMcWwK)y!<P4qaEhH{9ovT=fQEhh>
zGMwwS4-3_v0imK93p;MNeq89js`@|r6wY9sg<-De-ePh;aRPDCgdsJohEAP~BH>G+
zJR;}EZ;7NR&TP#kw)f*_8x=CBR(l#WP?GcAKsn9EOy!%o#vrJH03Apo?WC3<wUUgM
z7c&{#kZ7%oWC&Z!F2`l~cDBATTy6=wk98Lxse&toeU>q-hA6dyv65!&C??0zGA<k7
zN1Ej2)!Ff%&o6!?C$En$emv{{;n}n2!|cVzvuCI8e!jRqe|tvWp8xpzn!G$CS7-nG
z{rT0|DS7qoiX2~%_m@9j9iN{4;om1taEhIv@q9FBscvP3igk@s@>jJlA22X%8vSjn
z{LQwUs57X|cahq>0u0KaMxa42*bD9l0ag>%-^OwuQplbRZ|-OoITeMUJyVq~q{xs&
z=AErUD>w}H1~7*UuJQ^-JW2SS+?Qw1?8Kfu!*E%Z8L65J5b}&%YadLB?oO!CnMi*i
zea6UN9rO0zw%kHXhBioSxnXkwCP#o?nnNrUHnE6Ma0x0WYoF!tJPhRQ=fq6fri)C9
zVIaQ`#6)KV2@n*VB%p26m6hJoIKk>BH5E5nP#e`;ElZFbzh~KT?ucKu`LhGgmMCa1
zq@=YRMk(z9#@p8!{Ayp5RDP9r&<&y=wDUDN;uR*oj0ASIECDbKbt;Qx%R#gZh@O+3
zYER*vtu1*I&%hAd9Pz9f4a*tEa6_Ipn}X$}lvs;|=czMPuV$zRw#|qVrS0oE>8;)M
zj(cIoy$ju>rgj!<VFvmlC$S6ArlYQ-jdirs31FDa(!;etv>gy_oq*Nx^-~}tMww*U
z2e4@)dyj7!`a0mSmFXdvaFGiKvhBmO-U2Ny?z#D42j29wdfA`Qj7292ji+wMOcgB(
zU0%>=;sV_@KzG-eSv%;tK)MD<+nbs0%9QZ}OIN7I*ubAFQ|V|ZR$x3uE<9BQ=E0Y|
z!}4&)xF7=6DYZz!fCheR9rPlJxw4WNYbKy36b#x@<!iLyplUV2TNzCw_pNw@<$!b?
z4^NqDd!Vf_l?lbdKE8!Q0k9!!xxsmCH+20Kj8Vxaa(haYL|~GOB<<+!k2n)JC5)kP
z_tBuS6`Hj{(`iMfSkDF_gtP;4!qZ!(@~yN-LjKeVFzd&*esqJ)<P+V%7_b+`I^euo
z)p?!r^l7ep+uCbpjETZ6n^j*h3t%4_1oZF^wZj`W-!Xck?M~;^_kutztg)j!j@G1W
z0`Q&T4*VQH)TZO<EQv>RLn-oNhG}UNp5+XWH1<7r(EHkgwaIaNmAj~O@rS&~$pk%T
z6rylEI}b*rxIk_0Tc<2Y=<9iWd9FN%R=`6{%vdNzY^P+VjxcjZ*sB>~6%x{QV3=ex
zU-7SFPS~INEkv_=-HSY@f)gm`7oLLQx(kN$=(kQSyI4Z{0X?-_({{0vuTEGp!(BYZ
zjCdz4Op4?YpVBz3GuXfsO_o}Bk&O<F!15%mu~XerBsXs8heSlI;!1dt>rx!@L>LAa
z__h`I+M2Ce>u}o+2%Dd@jwIF&S}^S^h8pOl>*$7kFVS42j8aD!GM195&U^LyA~q+~
zOl{ZZ%ao+9dQ&J($@!(VIspG@V!)JbXKjIZYk+IRV7bbt^IE6oHFaYV72PIyWnEs=
z-%Fn54os6(QW6N=$Pbj;rZh<!WXhtrm|{pE&Bm<G?FWGE**b!{VB|z+ZwSXF;%jpb
zPAZRy_L};|LLoP?ZBtp+5%5~Ut^?%IPxN}|w5{P$-|(zR9OBxwxoI`hlZtmmxe)np
zRGaT68AVwf>e{5V-dfA;dOe9%G*}a(!OC>7YqQm=gVcufN>1_q>J1znsJ<rf#{s(M
zWiTP1X9-grJ{kt9U|_5euWTJxC59Y`=9aEw4{JH<LD%WtwhkR@IdrV6BLe3x3WAs+
zC2g$NH`bL;NKVHt`kGhmru6H~!)|^F1YYaT01!n6#mm#?EMwDHFkNZh8ONkGtwU*B
zj-Jsmu|V@BM%P;1k&1a51|iSbCFcpWzjeWy-Lq1HibyF^(4b5m$$?*U9ipR#MH(e6
zP#yV8^`>zElkd=7td{=i?SGLe)>m^4Bpns2b3DsBhwjUz$~6;4BhWK+d0YoV+aw$K
z4#9HEy~?S&Fifg}L!nMIkC(U4F;028A-8P|PjEZ?E7xkBqc}9-v%pf^DeU{HKOPQM
z9WYl)h`0nH;-prX=>+Yb0oqx*H&qGGg`%^|k_W&Hi|~f!XHqW~1B`N7kduUPP0pDk
z4qmZYLPI9!lqCaAptXnmZp`uli3+B9aLVpfmAPpNc-Kt2wb;FjJV#rOYeaf9P0n=s
zpgVv~{aV9TcIZ$xCs!y@tqJN~EsB9e4+Xy=%vRmPl^|2<ODi#ZoN<Tf+uR+0N}%${
zJ+e;qpH5U^L@EBGPg=8XWal6^Zabh4ENIJ7RGF6A;w;X)=6dXwGzXK7t&}vIo?FTK
zrA5x0+TLK(MUB0|8Ln41RYZ9|*xPw$ul60?<soA^rUaO!k{PU3s3<Bak(#q62~Ed^
zkJ9G4w0t`m8k(MT_PS)N5H&{x*{7094IwaESJQEirdtCWr+$GbbBP#J%82mVZkQIw
zF5r&cl*J}+XE(|Q3^!Y&w?ujj`D{+8$@NFcI_Kp0>iYcE@yYeOtG|4B{qF4<6j?7x
zI&N~t8e-p}!@t{#hX4$pfuEd16mY4gQOFubycNcdqk8_jU`<eRr?YJN)<>cJU!I;+
zLGiX?4pqoys{Y(zVE=;Yy$GJ0u5JI)joe;f``{VPCs?~xMO7-t3C$<M<^@d{P4Y?E
z6w_9$#%6yknp4$0(Z`$}x4X5R1e&<C<qw~!>%RX0bYzWnFfj+oTf=V68o&#z&l|$K
z-Exxd+g(5B0pFJ58pbZp<`TWjDMBje%_wp}f6-N?!<e92u`^DmW*pb7jRx(qf~4ba
zY~lne8csPXi<FWWp^7Of5s+X%;#>tXy3k9_^DrVno9^n=Sx{w^ZyyaXaqa*-tbqr@
zQ(kGkqrK1~PD52s>5gU0)CC7R>z?#M4Q!Vn@9s;k=vkC?SRy9QZ#%%uJzvKoaG=Y1
z00?uT+g%@Z$}6=Dhh=WwAwV%#uw<mGo~>atx*xVg8Bx>Y&6oVzHVtzf$J2r1{BUyC
zsy5pt5Oy61etJVKUkYhXlQ^YP#k6UGF1niV>opX=1IGm0wn6(PwxR6Vt{h0?q&f*z
z#|t2oIBfU$PW+@swkHSW6RMF_aH4QWOJO=NhDmH##|(7fm;zc(SHHFPN|!Fuk;i;Q
z2K}?EpU$p6{MXwzAI|>k`s(<@$-9e-Gs)x!q!2EyIY|-iwJ^o7_CuRG&|bq1vTqOh
z&?XQp)<nF+1%FSBd8Dcq!p(sobQW8fCi1`M(Vn{CYUuapSmp;#QOO@O8nR24#XQn|
zVC@*YdW^*;iQha%w>pNhPhjd2MT<ZB0kq)~Wkn0bpyygA)Ug0eD1K*u;dU-=BRTWh
zNVar8Pk^`9j11NtXv?cfKv-QA^1}#fWEP(%2|MPY9<sg2l)^{acCCFj7zJTrlyV0Y
z6Drc&Nn1eY$QII|ZROWVAS-LfKJ@|A-4C|8tpsm-G9tbl)Zpam2X)}IVC;Ga@0(mu
zwM3E(3Nwi#3uCVa#)F65)7|DI1e0oW;7g1Px*%c(<NGYJHNn9%BX5k89AX_~b|jN`
zvj*qwnU>KDF>gtHsxH3=qF-H@tEf#MlasYA4G+v=W1_ywI~$a63jF`71W3-E%VYrU
z8$c^8yKNzu#0BMWSrLM{(ECc0gWQKTCb1W^yABMK|Dr5$2TRbk&YXpA54Q!Z1Kec5
z9NMe(bD#9P5Ir)GG66Q<usIf5R&b!0te0LH${>amzg!hJAJ}B{0mN`Zt-uHaJ(4+z
zM`S{88KJ7cs4+1t9NOf}SlXa?$!RR|EFKnE?8R+|tK<9w2ad(NGMqorTdHNL&E~0l
z1riQTs{&19FgiRMZmRgs*v7oLYPz!NyTjWk;x%w>FF15Sm{8`<p^GOB#rRum={0WE
z(oM3k4r@TYQ~A(PjU-Hp$ghk-;uI?c+ax*6k+V<_YM|Ptc(%%|T_TiWYFh{<X<?l^
zy%!u<2sUNmz~v?7zGbE$o>F@h7hPh4M>*Ov@$cJg1*PDvIA7=Xo0I~@XAX>!ZpI@*
z(>!kKqT9AIK+bEA$U-#<0}e?skwsoesvr9*_a-Y+h~Cj%`jj5d(mb1^uN-V`!j5KA
z3-&96*{shju_kx2b^7wd`>QwG4tATUT8lf%z^$_XbZp8&Yqv$VFpO)Cm53m+nqi+^
z(>yatNRIUfRo!C3Q*zKcXaikh_Y+!(oJGzYYz+QE=`^dQ$efUGkla<&4_Hj(t`%;r
z6-1<gt{9|8?BP9x5xXAgw?2%z-h9U4?Nt7-Fc1FbwNP^~3QV$Idas6lok=7Ml|fjJ
z@rKiAs4`$I?EM<p)<s?^f2Ob87Tg`}_t|zstRo%JgDo=1ZO4w*`<owWz2fb1Ang6k
zYeweYF0;e4j5UqbL+!E>q@e<mO)%5%(rg&#8CDas34GiyGUkR*L5lD*a+Z#G7BVP0
zLXvoD(nNHRx=^08l5WvC23e)x+0=s%1Rv!CB89aH&7y%x`Zk$u?#LbiS#9ycU41pk
z!o@k=<EuN+EebIn(l#pOwn~^z$3U-bb0h{<bg%BL6WHKv5xl=}ID78430?UnFBi)!
z1lwzF-_uEsXL9zW6SVxM^zxljr#E;9ME-u)1U30BhqmshAo3VP9_hg6f#|B-PI`we
zjkoO(HkiNdBeYT8j1V#y((s0*(Lj+V9ZzRUe6Yy(^{5A&(ONa5t+0(oK;E<4Xz$<u
zE_iP3<|aH)6NI}si9(u1Zmq4BE)NXEz&nq@M3;#NffnlPl2VOHEV>(W*a^3Wd`lMz
z_TiQ*=EJgfEq3fVErs?UddqCau9E`M^VSf?J2?}1vr>Dqr3+Qq?q%ksx)z5czaE5W
zxTV~3PNs2sZ1QFJh_vl6HW6X<lkQqlyX(Z|cNPd<s<12-B;_gehg)S3Cvv}AJII;B
z>#LW?CtB{P75Xkql|;zaH760jOQG(VPA4IMI(>Pf+amC6+bbdEhyhc2|G{aVP;bb=
zXlslRF=2cw1ri0VjsN(nKYkqO&YSa-vy1-OryZl!YPEX1yYT;3t5y1cr`PW8{YQIu
ze{X+xZ+E}9_aCixx6|4C57PRy)2ROxQVjl&)^8rGytr@VLmv7lPWeW0$t6!}e?}*0
zHOQZ6T1eL3X|;A2z9b2}s;Ew3n1E;F9UZd2vmsx+KD&C`C&w43<mBDO>G}2fyNf<#
z#J=yJHOST3<<+~>_b2k}20V3o-oL&&fB9a10|43qIW?tOMX;e}v#D0JNyJ1d8B-`L
z2q`7m6zkHM8r3E+q#;?9sr=JWpr9#*YsG+Sa9EFKI46DGn58XM7+#Dg<Pg(|V_~dA
z<$3X}GO>`)=2<+R<b>a)ERzxd+H9cY6VKv*!gvZ!-5Xd0Nsw_y(_9N;Y9E{lurW=@
z8Gx=#qDYl^s@hzEbg5>6HOv$kEQbO=N$C%UR+Z2inEb8EqQRsa1lj{KRUug_tvpqb
z)Pp*`mgZ`}fV|SBUyE$U1rv5x&4KGP+Eh?BVJU)a#oPEQzhhZL*}3H;;uQbg02PZW
zaaTc6X%2D+GBTwp9W%_h9uZN56E(4hlyzbG!#U2L0&I6@?qZ2eJR@6iyp6{rCh-gd
zWJdX%%vc7QCR=;0|7#nDlQJ@HyarU{BBv>60AfNjDJdYtc$*Aa%0_V*)5M4F%+ntE
zUwE-ews;2r$~L#%Q-|EED87xOLc+?3iysOAyJuM#gKY2S*#Vy6C4gh8pc<BW*o5*C
zWlWo8Y{aq*!&0WIwgnVe#XJVol!QKDw4}(Nb-_hY%`o#sDqD9Fy)f01NIAVxO7K81
z_&`J7|57xALq6U?E28SuX*$R6GA5MB23|r{f;Xi4g5()Zg$<FDs4Txpi~>jrZV!NK
z_zP4pO3MuSbQXhhfPIp1nKrD>Td+&LLdbO!x|A;7-6@M=3RN(iW&g~xn+j2Yz(qM@
zphFVV>=lSpy$o{!-kB~=(*~JBxd0>1;{A8%QbSTxiGbJ%YB(p<&;?E1Ql3Nm6Gh&X
zQ7yvyV}#~8g%VRLFjdZ0f!MNnmtK0Js#<qEo3S*C@5zuQ{BGOs!YRw*TMFJ!xglb+
zi~(|t`aMvqSCDWI^u&iCo$?f}VkF0q*q`w!(keL=(e^zo=3$8eiy(xXCM09GF&t&X
zHEc8pOX!ei`Y)d8V|H(o0w%c}6D-Xe7-f4m;R##{!n1fBL%Ge$nOEttrc)#D`Zq{<
z`_%49Y}N+RJNO<pCSy|?oBIh>+$5&ReQ99nyo@DtlEmo^Y}_zT0Z*jnxvdW!>VS=C
z2uz~k@JO?%l}X9nVSHpy{X~*-#p7#FynF}Dm37858>kfp#Y@dRBrxwx0EbohuHI5u
z70vN2o-Lew!?_eW7ICCWqRF->hSNA##6!y+fL$<ita*{z=?&*~Vue2COcnEA%q?6&
z1#AU!c!}>rHlfLg@X=!7Wi@V3HqDwg6)fcUhAi_Dfm%BmPvfv5Phm(Cz@xiNzL$dV
zQKZ@uCvSnf>CA4F+^1aF%L4l^8cSJ`p<V76Jay(orYaCEiA63NF3U2a5LR#%E(yoT
zHYsWVk5o_K@k`E!(u$F_+)ZydWW>V)XSbo&RxH9o2%Wc%DO_5N{23^oWlii}Z-T#8
zjgKKu#VigBUWjB)rZl@jqn445w8+IoJWiEq8qNqdwiXj5vD&=gIibY8tHEaV3YX+-
zvuu3>9~61q4V3h8S{l@*U1ls~K*@)5Zyb9G1^Y(;fk1x0!O|REc08MLWY<#Qb*>*0
zqE0}5lwy?}_QWh-OID;`Aal+6Vr9m;W-e7`G@KA;gNP&{!#PTEAQ$|F7lcX)Z^rV1
zCK~<jc$P$Wv6MAZo;Km+MSKf?Hp2<c#!_+ObDHGy<|t#VLE<c9w>*Rh+cG!T4sqzI
zi`o{mB>^gw&XRM}y-aoDYS?dPEJIc+;2R}axO$r_<{MfJ!g6KA8g>q}1rMm}9MC0&
z9=YHC>1?t4kj-*v29xW{2oqGTk+;bV*Xo?!l-{rg1`0?iPfrN+Xg(UL8i_1P8tT9C
zbjGtB55~{|B`7PY5Xg*P8FZ+CGcq|rvsoh5O^8x}U6!;<O-%*C;<L`;hI0hs?yjMm
zDGQkpG>hSOj<Pr%YmJ7*n)kUEe@ko=nn1}gr2tNcx=l3l`Zz1UpckYINC5&u|5z#H
z`IA#a+{vTRye=T;BYFNt7ZQ1#OPn@`lE-5efHJ1?XCQJ)ao@5G%gELl7orIp2K703
zA>}9hJ5C8D3B40VoXe#qY-}nl>&aW0phOjy5jfxpIB}s=Z3`!~hcnm9(&sS+Ni_$5
zaXK$yq86F7GOBKhRy6D#Q!GzQRmdH5tfa;jDzv}`4rPUWW_M#u;Ej+J>;~kDxt5^-
zhMv;7rEFy?1R+wwSM(o}^596M*a$i54c$l){?83Z_SI&hx=YnkvW8WKU_&fwO&QBe
z70fK{I@&OL)i$oQ5IGsk`O4{`zLBvop2g6S(iMG;b|^oUg;JAW;hxy{z()0$LuX7h
z+*nas>QOrHD5M#BCZ};K@dUL;;SBE;4VN%gi8Wi9&>uN;M$TAH<FujWW=Dkw?I4|3
z7Uv9X2DAv#fDj179UBU}8<H$WOv+6SN0<N<&FytlYeN%6&3wuv)tB6mdTJOjIaLL4
z#xhKb<Lbsi0IIi=Dy#N4E!xJ~f$IE~;wO)K^Wxq0`N`QPfs6?3#3b|>Qsj2Vac`GH
z0%~qbWoO~M98g;Iq)@0p6{FKg$7;7#N9wxUuZS8@23!a%p|Q%oI$-K|xOQIw*=SA@
zMuk+TTr0hL#okuP;T1=EnpDrx?zP<^539t|IehODa}UYfd+i&bNIbH1MzYMY<$zWA
zJZn^UnQB?jv2rQhpk|jwrJDi*#4S`22U|*<MNPTLxjCB@>fR=EDOfO?1z3oYgDx$q
z+w7b-2oI=A8zUc09OYF?DE@RJUE3>)M|00MZ`cNnBKhx3>N_q*I#Be~)efz46B@Yt
zB91)N0ey->?l4QEVrt6&xEP}e3+jLRILkB*HrOd2QhS-eT7^ZIpvGqz|8Qd#`7LU<
z$Z8cJwt}%91%Q&_%Q*@Oq^9Bt1YAg|)su2-BzSAut8p2rxDC5{KB}2b!(JO*jksPF
zajkRaDgit>v}4V)6R3ErJT7dc?vPJWl$LnpnPrToQqlyx1K9&*M;BfIUDZl~A|UUv
zI-NW;U2!{^BSgnRV(c69vJ~kUvm7(lLerI%^yP?ULk^01L)ZGej%udFESRQ)FbD!g
z*GPLG@%;;)%a@Gz2KdX6qf#cX?HJTM$wpvmqL{Hvu!x}}NL~ZyNYp?mU6?i(MkN|&
z3=w~>ZU|^(?4E@Vi3h@KHpKQ-uIL`h7tjmHwH82x3ZvF?v?;|0BDY(BLxt(Wq@h8M
zB3X3Ggd@?2hN-cy{<IxeRHnW{T0P^2wK^#^)udlQFf5~jrzWZs!-Q#u(QMGWQ-oPO
zR7YWyj(8kb?X&te>2p)upoRtDPVEQeG!~#bu}nVoGtK0_%*`b*QytDxfd$Q5s#ul`
zz$r!;GOVp&4SQhf?h8BBEhukE!%101b)SxN;UDfcfihHN^SDpW`<vwDasRxpH}~iB
z>(}qzUz4AYuda?SuFuc<<lU9)mVft(9AEr}{Q3Oiv_V*m9^m^KM2MM{Kvh5%Ic8FO
zgTPKoHJzH1JKQQzh_Wh)<s))^e*NaGK`!21G|w+yU7cV2c=q<};<`cJo?V^1KEAj<
zetG`p{Q56|La)xRFV6ZHK5(pHTpnLtpP#&cb9_ZE-(Ow6>z^UFMQ>rk66g&(<Eelm
zfDpLLP%HG&h0bOfpJlNW&tbtM73~Q4XDO~@FGXvk5XBU96-};V0hC?vFg9v35_RQg
z1#7J9Xss%<h<gVCd1JOzzVs%h!#Dxw`MKo01X^=qs58JwIZ43SnNJwc=8maFd$Mu}
z1-2%Gl#P>k%+io;H;lKt;hA!c<>x_s-$Fq_kccJm5Cl4y+&JSx7{7%cGAA_51$f8n
z?*~#(kA3ir4E2#ESj%5o1TZFhO2@tpU%stF0&H*qgzH)(TbzcFL8Dv=Qh-65ZVW-U
z08~?G(@>Gn41MO3iyK}oiX<;9y0Dvtp)m!16Q}Ah9lGjT47Qf~#PzJ?vJ;L7JLWvP
zixby&ctb?aXEQox4Uh?nT;<9a8FC|<jEd9>H^2mIB0-?>M;3bffdezK-2gn40(#jH
zr(hUkI*o2)aFVKW{9K4wZGsMNP~h<f90ue#lsrN1f~LH3WT%OSb18nFNYUNDu4QN8
zQg@q{Lc<B?XaxmJr{`=3n=7GY#DJbOpdQE!x=Z3BW@rXg)Nc-W$EInVoBL?Iw~3xR
z;lo5(p+Iigkz_|ozUXSfuEJWsiiPLyVF7u~@1!P#s-)R4*iQ$rT^~fWq>1AVF*3Ju
zi+~YVeJu&8C8IE3kaVmU#Zq)@DRR(2*@RW@8PI2W;qku1-i*xNL~O*;2;Z3SB&so;
z(`*WqNDJ3y7wvT}vdntRl;xNT!Ju2FGNLxBcH`k(2^)4nbGZX{PmM5t=U}5FHk!F0
z0-s%+O1@eb1_!?%UtXSFoSy&Jkvu|M0~f;=+|WJw8%*WS_>u@A*DJozP+=6lH9?Ej
zJWg1K)saw}YgkPly7vmg(lFryiT*I7;SI|L+5F|#O{=6NG}PQ~u8|4z5>e}OH0gkB
zVWnhcv~ljJ2L6X_0@^yLsba#5B*OT4H4mj7IBeVT%|h$Id79IE;|K+%9w!ixpBeVF
zH@yUv!$2!-P{a}NMhI;932GOJnKR9dwQF_AY{&|DNcBvhjrZm(i@|U$Y4E1x6~5<F
z1;0SsH!5P|k5@aV{jSD5V~rd%3n%fdrj*v1_{)4gpZ`jJ(Tz$=Ue;gXafKw2qci#F
z({KYq$(DS;#9VHFFF|O1M0LkSjt5((#CRwMEX742jRvEPh~sGed<fPu>Y3~`BGX)>
z`$Hk8D*m|%;p&8}B%v>oJyguuhHItt_DfGM7TyDkB=FxTerv%Swyn>YHwBI4ruC#Q
zaz@7dmSG)mSKw6E5-YEZ>biojJoNqXQ;q*OP2N7`7|Y}TTYIhcemVYscfb1>|Nl8Y
zPspEMW!$gG_&Od>h{`ZR*%G=EolIz!Z@3Mu{_yM>c~@l4&m`iZP%eKc?<@u2B7?f#
zrAi1Q&RIZSvV`9OCx8^-QJkWeZAb-l8*q9(p>Yo?JOY6&Qui<9uL;Xb^(8TGOsaug
zX|P6!Xb=c7mUH~;xdG*EMHAQd`k0(M<-To~BgscFFD>NLosg%aq>!rcj&e)v{OQ%z
zyB~Kf^glY#pV+URZ<}(&*T?R7+kxEn3!by1XV1v1j8DBu?g#DtU>CJ6G$P6!)Dw5>
zl#`IAC~jb(%n18v&>UrC$TgK`p?-(QA=xWQNKOUDzJU0Fb(VvTjj!YY!6RSAFUUE&
z%os3m`Hdi_ET?fIHa4D-Kie)2?Vx@5$Bk$HJvjD~LlMFC>tOLzO~mBFBkqgFM;lP(
zdzNs&A;lyfPm;OY@JekZ>3UTFL}1^iZu2se!b_e#yLfkf1}Ncoq_&OHOo94!dtW<)
zr(VAY*b3*i$VDs4@Z`x8$Z151@>*wfVuuHbDNupHp1FF^b`KK`K%`VjQ&g3<`>XSu
z1!yl}DL-`EC@u&&iCLO&Yzzj2Ar+I2H8M@*I~$#VT(JARp(`~}iMRhK7<r2+<$q>#
zvgMwz5*CGh(k7p8V@YbM6~s;$n5rxr6&dO|_TYkzZa^;hU4s-@!ax-SQJWCdtqY%o
z$-|kb(^AKD&CT`BO;<T1TdU&YsI$0rga$|cNV*+gv#Fu^q6F^jPU*{L6U_HB8nW{9
z%_eTJeZsB)iyZf{mRYILt=dGhIIGS&OLOsF)PgzMc%_>?RDb#uD<7$Wy&qsathx13
zTSMMEG}N!uWPXwNUfGm%{T`m;^}OvWyGr0b?;^8J*mnbdAn~@0dxo5sr~jY-Nkqcf
zj2yP)zi)~m3-bhtJtMQ*kTer{Y(JEmlIS&_)^G(+4v{3V?jfYips1_CfGj}KWmO&4
zbgG0$6RC~^s~Oox0~_2kq~Q%IX2=hra*$KxT2)v<9;Rcxluuuiw4!#Cy*HsuYOo<u
zSxwqMk8%Ua1*f6jUHSguZhvWU^zrkVKPCMyjCWLV>O2u{C4=8G#sm6ayW8!Q^uPVq
zWB&K&`DkhKJu<Z`Mx*%=$+LoOIH+;7L2P63Bl7Auem00(ZT$#rbE<5~k?Leev@ndn
znkJb?#$5c5f{EPxO~{l@<xI)u?vL@N`8J#tM`W|JX*_<@xb~%9^`%|;g%riV@D%<|
zZ|S?4e&v2D<PYOb_1C@n>j}B$*d1TWm0Zdb87l-+mzXrk<#E6N^Si6lJ~_L(dUth%
z_E*W)bhHz&Jn(#^xv5L9EB7d=#}N`YY#j|bw`!C8BU{}5;S)!?BY(nwVWACtR9DH?
zyOt+HAt{^-%dvCi$?>1rT>tW=Z`QZ*snUN{YvxlC|A*;+r`0Og|LE<udXMz~b9|nV
zH;mqTzL)6?BMMk*JNciSldMPu85VI836n(PR?GCW<>S=twis+I;WJO3*eaZ<a{WL8
z9m^OQG7RN^eGD?Ruxv<`z)M-EbUZW<felM{zJVMEm2L=5J@or2lIWDH>IKk5a6h;w
zZ{xA**7W2FxkPOk%}m-#Fpl#{F$9Yrs(Pxw`7q%_)mK&bI$va7f1=_?nu@G8Q=T)?
zY(Fwx{KDsXWv=J)y{~{pfAg&OOB12T&lmet`TscKLz;X-_Ww}*ulC+vugw2D-ADfa
zSw5@le~--LcbafrYlxR@9H&R*U-J1T7~_w~CO+7V(>QMq<pWKqHLHL^o5dsY%P%I8
zZPUNp!I<Ue@}cu|#9z*Tk{5iFY(ZbPfNaLz1U9$HufIBgFN-9>y23C-@Dq{;|D^yP
z4QA$9149`p&8{@bQ!#n!{M8JdzgRfoWK&nLj#J{U)2Way9C%at#U;%rM`Y8P;G#~l
z=5g}tul7{bPU8>@j%L}ZJf6qzdmiXtEcJKO$D}&JmCi>U4+h@h0U>x@liAE!#Q$Uv
zEq_GXt=8Lk!FagR(x__rD-P}M%?|!7%$9m%*7U{G16SJWl@U|D+ms0P?O<l9A(}ZI
z=r3`Z#kX<7#_UXl6dk0N{UBn~83wJy%%Q;~%J|IrQ|{8m+4YC3<DdQeK>oTZCYz1T
zX1Lkd1hjvu_8GkAr5o^+ym&#p1Kd%Y4u1ssef~WOY5w3dcMx_ix$gHQ;>ugrZOK1U
zw)wY}FIokeylb=&A1kb{hWA-M*6qA?7@6W^d#$PYuFL`LtL@G~&AaWEeEHi~qfm1G
z^lJOxd7J{Qvj;xEO_;#xe+x9?H*zm;p<lB&@pvL%y+DC8|1uJVJ9Zrx`2D1bZwE2I
z5pe=H)RQN)n1DZ3Wr@1qKeZh3fC%9t;MXBTK&Aepk07<k0^#*<0j+-{y>-|58OUwD
z;Q29x=bJg8Z-nkVsxhCM1buEJ#RhQ$`A&E`Qn1M{zcfiaGMI}^Ou&a3=q5r6TZKqI
z%rc(ykSBs%zv<t$@xOuoe@Fel`@MO=Y1K&F8-n93q76GjBs+N`f-uW#VSTt^^N)dd
z!{!#AV34Qw0eVznZT#q{-+yz|o__DFn2lKW0mIrqgz;>`G6A{F-<$nosoA6_Pjsha
z&(n?I@P}VEH0H>el7rU4!T0K`+QWdN)G19ad6vJH2V=;G22t6Ex>w|C+;LbU7-<?%
ztK-4qVexTy@VaqR2U6`95AMMF8$f>j^<&n)-qOn}UwzdIyC9tYzqkI^^Nh{-i{Ovj
z|97y2Z;gs1k#B60KyLHOPdbyxpy#6HTG$a9+jQCOF&m^b0zozd3Ceu}F5~7V`4?o`
zr#WfKIaSu;jBmH0S=pGT-Mn~2w!V|Q`{Dk>h-Y^+i&%toi2OjFKHWC=Np53K7ClS8
z6XAqSnTD%}RCxoYkhe)~<zrzV!C<ow2_KW4Tbk`8e7pk(@5OH5Q-ORckEd}u{@y}h
zS;n)60Kh}?ef?s_?y@*%<o~#j?fkFr$PSdB$XJ-W8%4f@)Q&&=AdkY`84G9Yw*9Z$
z&i2k$@NAoSQ0Xk*!48c(0A}aA_Re=5GRzpgDeqc1DbgDjeb7~RKd?09P(wu1MWRw_
zK1}KThar#VAD|Or>wBGKZF)fOIP;uk{C@r+V>J4Z$5Y0OoRGs->-*9JGb+S~38N9q
zAWd1`p7Jvx=QlC?Fq0gBkpF)6e|CarWTy_2hr^5R5MmGBprf6gm2cb80<l<UQz=^E
zOstj~sY+LY5D6cR5>6xMBH>a5%k7?!|7t=$RP)^}%d$9P&6iZL=KCyJbVH7IcD|E0
z-=7Fj%HM0Kqwf^qoAE3!pG<j-R~kkWwv5!jTOqA0fCKulV5-Y!^_q*Ecpn7g@8d%g
zc*W&c-{E64io98jxP#g9M+KvwXK|P}ujK`lThQz)U4m>*>3x%q*$>_JUbok3wZ7M=
z+AoHud@3pUCZWk4oeOgt-TUYg1?O&B5(DD$ha!u~f0rneq$=Nel&AKpeSv%Cq{rwh
z=T7{)_V><|UB32}(1{1;Z)g9jN2;L=hvab}xj>x`R5>KhU?<Rf?A(AUyB9y6U;G!D
z@hBj#IQAM<<?C*BEk!pW7IM;@5-7%Ii0}iW(a1T2mejP*$nTCo{)MTck|Xa=XM^a{
zen(oWesBT0Ynq(yxoS9Sx`$;N-p4IV*BLa6sw_(`Z04_rkep^?mS2{?)=Jb7xjwm6
z-?@wb($PNEPc{B4kxToO;a?BMe|OuRZaMy|wf7kR^;te&LHzf(@A&<~LECz7@#iVM
ze>Y?4iEV0oMB00;4Wjz!<5Q+HuC^>q>HRe}*gqoOR;wD$2b$CgFVg&o?5gipkC>|o
zetS4#uHCA>b+9bP@1PXp*KUnBoy4L~zESN~Ya`=D&fwS5ew25^EUVLMS@WUVi<UM#
z`kP_5;>Xe(?ahr*2Bl}CFERF%<y3CxI@|iW=Loe;zr^PJeWbAFOAOA3Ql?Rrd%na3
zzBEgF{H*b*k^lI3%(73G{Jlc{_kOP;|Ls1;|9_s(qx|>j<-dm|wpB^;ZkfDxmQv$h
z`SCUK$2SO3Hy?F*RR)3<QJe<}AG=?w`If)dKJWUMw3=?dt~IY$egY<5`wMo9YqER!
zzuG4%^K>ikl%}JFsme>{hw>X*1ggAYeki|zqGIKF_4R_M^Ng}ld;?!^5E9ayCUHvN
zxQB%TYg7MbK&bD*p*-PgNbmkv=|46R`+WIdQvYvN^1pW5kM#d@d>-llzlHwaT1&0%
zJf#13*Vg|(Dr4@T`ciM1`rj+5{|D=8|Lbkj-lOur`mR1I|BuT5<L9gU)X0Cj{z)^6
zp-Xb~TV=tA^#4w;B>#0<d!5ds{P#IN%j)txie*d0GILE92xX7u5`LEnf9d=3KkZYc
z{}7edq(#m%mT>x;ssF?Jf45x!t<&o4KH7gj%jYZ5{~znWJ=TBwrg_pgFDRAMCjBHO
zlcl7xvb4$v_x&w(64LOoUw*M24VFhnVme>bhf6d?c`MJAwDur&U}0+Xg4sFgWDu3l
zXSuqp7@Mz?XbtESH>0vic7}1fBPQyvW~l!0F9rSyxubbF(UFm(cs!*u5>9A3W_k)c
zLc)ksp2wqkw0s%}0~s#M0x?-N1FHG!ukdmZ9i`+y)yTj6@=(H$P0Vmtk|%-)7G^B}
zQcDpc@z>#Jk-+PuIVMjd%BIjoZ}k1sN1^cJKUMiJ%f&2-^X8|k1OKr6*Q@IP`;YS9
z=lHB%|F7x+Sf?({zo#Jc#YK~qz5k!O`udsziuw8MK8G$nkjSiE3MF?!XBCkq8`2OY
z8t9y(W~E&0$6*LqT>hC5srCX#>U&RK^Bb1xm8oP(`L-EUy$=0eFR*Sw&O{D>%e{ug
zOD$VOl6CRB;C}v3D|waX?|Bi*!>nr5Z&!`_?T_;Jgw<I9lTf=PuDM&k0k>&=*Vw0;
z?#H;sKG{||uCdQO_S!D5Pc`sId!0Vj1imyE{dPZ#<-gAs|GD3(^ndN`?mzbb`7EDD
z`S14>zP>R-mMLD7#3L5Y!-SCu=Qr57)j<cF=($1cvp9?t<@!0zOvxj5&q6x`r$Ui3
zv1~R7)F~oZsOU9I5>7@LpJID{XH)~4OlTS<EQ7j5`E<53WkS%gE-^IASU<Ogl0NSQ
z9tGe3L4xnH`v4PVVg4B}gV~!ea~0Mb{#(-;mYp@u>NB3S8t{u8^BQA+Nlk0ndFgq5
z#uGC`evva<YxFOvqyFB<px5?gj$y6QznHrId!GR;?8_X$>O+5Vo5k;a3f=<0%xSDY
zg)glR|J!}4_8(|T|5@w5bXt}CuhxF+(f;!}K3_rn*S8-(^VR2n9empKulBcLRqIu(
zYVIOBYo&&*w}T&*8TLQT{k7tz{@ZxTJ}NQne~gQ6Bg;oMro%7I|Nh-SRrxPx;!`^R
zR+0ZI{a^R?_a5`VKFeoy|KF75SsaRz45AG4GamKpI$n&#j~Op!ClF1l+i7gRORqT3
z-^OA}^Ki2H$wj6jjYlz)Gs;+go{F3%<t`hK9>m{i!Xl?R8x@IQ3I%AI@|+^aS1-7j
zMI^mh#cQ^y1@g@`{brl(7A)tXBmdnTXP?Dyw!m?wethx-l)E9Lx$XkCp}(k`m;UW9
z(?rMFCwx4P({YfnTb3M=I301c7}0zZfXqkM>=Oi~^7Tjn3nTemp5*=fkAf8}5Hrpb
zjY{%&i=8u;O=D>NA&y9Ezt`H(&qx?SoX!fntNDD!jtG{@siSFt*a;Wx1LLD3^4%{d
zZ{GFKj$lW1K)PJKb2~`$qxRrgU}rIkSrR!Qb+u%&`S($l+bfsw@dsRin`42$^CF)W
zdEoBNOm)`Dr!%wVo6a8M&O5s;HJLbNLR@Bis4t9T4J>z{B2A*wC5W3cLA<mH`FZk(
zokC<_KV<1G8B#GJP3Alh7Fj}?%@K_g((ddBt)LaOkM>%<-lMem$v-9ePa=SjXG62O
z$a%(s``^3%(_XvV>r~>uT95HxpXH-kQqVLaTkIbXk}gSc$Yweco7-fo?%@eNr8zx~
zGo5M#ZPlLtq1lu?=p0J6(KP>q{L3kPPcC@Gh<TZ8xiF<vV*zhtIwu+%SwyHHGnzsD
z_<X{Mn2VfEmDLeaOPM#&D~aI}vn3ep3`OXar(;5s1OzBd8-=C`^0zSL8T3ENISlaB
z%;YJWID?I5^Toz<oD#W}yT#KVHana0%L$Fs7euaK=fwT6DKA+Q=ea3gl|=8kGGt~X
zj{GNpPx)W%yx4fYgP`R<VBi-U8%~Fe-*T)e&ud>;aI|&nCbrp0J(_szklvrraKifW
zKbdL5xBAXicMrOLHAg~ko%#EP!)4ara`WDfeo-BrJ_=IPS!KO-eC)KUQ$RFu4`Q8T
zFtcBGU!S{BUaTSuxugDz#A)8!CBOdqe8&T1;lr4hYF4Llw#pdgcL06`kQrn3{gSk#
zuN(5YjcJ~je|+)FFKfe7yP-D22j@+;)D>sN`HP!)c3Na{I(|P(IQ2k0FaNm0{L8P%
zc~`(Jns@n5m2r5jOW~l4{JJlx{felPjs)m3h$Scv$=9Fnc#tY{uBXD946jUqy@e^h
z2^>qYHSNLx7n>v;E1oq>9vLIMk3}A*<36yylZ3`ow-=rrQ7)E_8EKN!c}k~o2$5AT
zD}~)@kXgo>s1!%=$m#L*F>s!j$0vV&e@SY&<E}cT=MLdohvJax2c~W+Nf3B8BIXFm
zazZOb0m<g|Q0DIyhSJXx1F<|7@!IlzC+y~56w@Kg8ss}hj(#9Tn#ak*Ec1c$OabP*
z(V6-Uz7_w9(|o(s+D~8iV%V(i#xK9r%#{54tJ$KQ=B!EYXvSRrxP&y-UG=)}3_pA1
zLXTYN%Wxt1VrPf+p>5<`1rN{&C>yq16nRE-HlD**8H<WEqG>qCQVOc?ERY4%rww(e
zLF&cS$L@w4{Uw{w+n8rBGG3(76(7dw^BwO8`#en2d_QAZ$kLpS*{h7P{)~p~`HugH
zJCt6`i;jeE{;J=muZyzn?7ZR`VKkf&kFITj-EF&}I)UPmTK1s3<Sja#b*SMY3B-)H
z2-rh%MhR)H*x~9O3stg@WwtA@&1RSsB4=3{fz9_-{@^2Ym~kO4SboQ|o4&eOi%@$3
zir0f!fa7(zz5*3@uDLv|^40JlCoGLwnj@|3Jm2yDu0B4E)BcQR42cxW&hA-Q<UEtF
zF8pm3UhW{~YMlFdgc6?*Cu38d8xZQRy0>Q;pRp{TgE{|)&42QgiA}VX{IChN=o|HK
zKZ*vAqQSQ!8h{EQSyLnkjnH105J!Qt%77mkS#R-s;F2z4C_rYLBhhTvaSnK1UcVPG
zyXQOb?}yi;u0O$By52%+sf2q!CM>+UWLeCk7u}Y;&Gv8Sc+u;19=*t!z@8ZrQ2Y6g
z{lz}58cM%tw_2^%^Bw(XX%7&Dy9ssF3Y+i-_;4^xcz9!ISDqEjn%wHN|B?yTx5n~p
z4P)$>^RdJw)WSEnKl;_?ZRfYW-NbI>o5qq)euPJe&=!J4=5Ob+f62A`rr1a6$DhUT
zCH?$f;ta%Z7BngEdFA^musUj$XLC!e<RA5~RbQ=QngUb(p+-m|3&b7!o4fFDR74}L
zLu4I0=t3G)cB_>9DhuEH#Ll9RJNt+C$+dU`KV~_Z(tDyOMTC?>>lyE(@cStIelFqn
zD`M)ul{c&+AOCJ*?#BwQ%iLu(lU;*ct$ooDgmM-Ig<ueGn}+NpV-ZX9m?pwQ-ug#g
zNZI=N&VnC(#B|*2%OFCa-ijdoJNg_QV*PlWvgm!5Trp%LtB^B)KNbK28n<YWDx*4&
zUZ|4_6JA96yet-Y+7L^l8IRMCnk~Mmrl-JI$WTN0U7D;UEBc_#s{q>qvcQK$c*F7w
zI$en~`OxjV0Nw%RY$nYo>qDMlnC9~xc)dJZFhh%voiD!a%vgc@ZC6leggU#Q#o4^i
zLY_wc6|8?`{bei|$`uqA47CcUS*TU7%X#RXXo_z0w!0S75nW3cyH*GOSO7E&C-E(F
zwCLlX`=s9`KXq49pg&@@%VUrfD{OkxTtQH78fGfGze!oH1GI|b{GdkY!25Wm&;hcZ
zUg+<qUYGafXVwS3rF=Q1uJ%GL$I;qXKCv#h-g*7r+oH*Y*%wJEyhm)py&RYfsbCS|
zsU|0360<Z{75e}dnHAZL3nq--sFmlXyRB!kc)J(Oyk-Z@kDv1(sv(fSg@%4gQugt-
zzu#i>`}DTH_033Cx5G;GYCVl;1;ubR7O|f1<Rfe~EArAuyN%g~N4w1@jH+FiEH3BZ
zj|R&}#Q%m6A9}_;Gz)qs`rV(p3#5RD1s2!V$3$-Pk^#~DuK<rqPgPDK1_M?;_qJDm
z2|%4Ep6{4nRypC&n8!Tm_G^IeJ@tIY`E{vDEn{Q7Z2YH^D#qS2%T}PZ3_FW#HJ(B2
z0UMXa4Co8!u0VbPAaD%%*F(FCkP5+G=lQH`vy|Uic>0UgK>9iEWm@6<WCtjHzuGvV
zdE**w(>`XDf3>4ke_Cxo!Q~0p4d(q~2lBsOZIGL(=(FsWW&Jo}XK9$tq2uJA+5Fr`
z+GP*gDJ*?z<r)2%&9C&u@Md6s@J6)Xt~|ntoEU%0BUT>5{^E_{e7y?&_#a~YF9f^H
zn25(|oQ`2Xyl?bvb)NApt28e%R<*3w|747$HE*qCuw7{GUCs8Yu6e?X=vBtk{FF~=
z{QtA}t?g~&#=_tAE3mW@+u2C6olUlNs<etFC)%|wSCX@v<G3m%LK2TDQcF_4)Y1Ff
z-v@&`2<qZXw(Z%R^K>l|91I3CgTY`h6EcOXNV=tgBJ8%eD=HZA>CgD~)b(RS0xj=t
z{mPf?c6%E8S8j@b#<w~B$_BQMmA9+)oPQ#uE?D`;Ppcgrt$@O*n~po_ZGdU@E(-!i
z3$uIk^@=OkEJ*!RH%={9uJ(#{r`hoO`!)KTx^dbF@C1jcdc9TlYBb2{+iZ0Y^V52$
zalccIf6ZcC>IYGOty2m4nXpqc@qIPY2E7lWzPttas7DkM_0`TOvPeI=7x)2@eBU5M
z%|?NHolfM#vAp@Wid*|OhZOnZv6xfyzk6gxz3&A65q$QCFXunrm-A?=4dHL5gb~-u
zwq=hcbu-S~a;|W!zl8k$2SJwWozO(PtG1hWckPJ|fS&sF=W&jH@)T!=ulOoqXPdPY
zx`Lof6Ai8!Fa^K}Z<m!1LEWi<GT`~PXI<!YKP7-``=hlY)Fk9((P^UA&-x_MKIQ%^
z1=zwp%F4YMTc1_7Hu<}g^?EfoK&x+UY<}yN`(Dw(y=v6gL##OE4nfIwNBWg^M;a}(
z>?Ev;Dba@cqZ>zm7(;&;Lyvo~wQMO-V!iDz|5#8~SWq5qF?omnSV_LsN`erwE+)Ts
z#?61Pf7bl3K24d9<B}f^qw@bIQTUKPmgN86+u8lW$p8A|?yKED^1ptIe|I1@&NPm^
z*&uCt&OUNJ;$YG<7=sAw!Pt${@+WFBq50f-Nk1N9IJ`=neRR&G{Z2?de@j8125vfx
z;t7E_jr}kkBIj9BdX_lIxt#TJ9O9JhAj=2tlol)TaZ>(y*2k<{wR_gb{N<8P>#W8>
zMbS9C?g2Fz*8p}(GtYPae$;Eww0SC6nU`Kks<$%ilaU|Z*uX;4_xnIp()FE6z1r*E
zPBm&Qw5HeSu9H{Z*EXo!TEOe{c$Qb{!PcWX%-k9g>-2ue@}=846Iti)F>P(7QWb&e
zdY*l*XpM@pTG`6l5K<^>trTqFzZZo+R>uE>|E%l(#2>|Oip$CPQTkZ8{{Qf1_s3Ue
z{m0j@cK@jV^G*J3d<T^n`ff5V6gJRd;Es~Q;Zf~F?{n3;b?BcbRVSo>c6y)5uOe-M
z=zmXmvsSlPJ3T#W9@O3+HL6bUq}Fo^g@dzpyK&O(eQLBj&DKe^xLYXv(ypDJHrl<;
zLA!a{?R7t&HhS&T<9g$L)uI1&tZnM8gP$Ai-a+g5wAE=;9r~O7bP9z|<D}E<Ha|6b
zKQ})2KGlxS2p+uzhl!v1SGaeHZ+m0k^KjVf5#%-yO)tn3>|WyAq|o`?f$uvXYwbq8
z_tRm!_2I02L|ysVEC25>jz(v3;Fv8tjf1mxv-`RCQ>%IMbK|r4B4Ndm%Ksbr;m`Os
z|I6cAr`u>-zZFH2$UybaPg?axuUQx0fWG&=OgBH(KGi<9jvI0)?v?v7n&2$RdaYY~
zU+Xl0@S?qDH)X(U-%#@RPFtPshjyb=b)<2W|6#q|{M2Y?yYpiI3di~1sna7qnpvhu
ze$i>PPin`Oq0JH;hwfy-@OVAa?6<N=k@<1ssMhH=4?2xn`{1L7FAm%!^#=)d<H6X9
zwDGNpxd9*#eH}_>3_27!kcChVj?M_bb{gHY(;P_bJfwru*>u^+PMQa`PWP~RlsmZ4
zAGk?M46ijX<C@@eqXRNu$3s74MQ{BOvE2_#4C)V1GKl?YT1K65Gz&b${5Oy=6oQP?
z2+cx2C73|UH=;TH0HaxgJ=DKNewg^9aSFwIa7>!hjIsP^$Q=-6#Hvle9-C&9zV?Fv
z^;x3X{w>nRUf5Wbc6_)B6Siyb-#5F*fA7@}Ks|!O(3mK8`+Yw>{;f=rqbfw_BP)>R
z>0%K66i9x^iVP(Mz>sv^>wNBX8^^uRwPPX-vT%o^v>}?b2kMZh&hjPEe)28Vmh?SU
zk7kSJNvB&oI%>38H^R5UdMa$74?)y-12W4=>V|1Tr_m2lf0jTABoss=e^7wof@bS<
zYbW*EQR}1uY5GFX4WbY`N(;t)K%%Nc2%)~^ilpjr#Q}&kZc-w;!IqzpEyK1bp_-tA
z)ICC<^1mGUQe%m#qy1Ex@rkTD{4b|a;NW^kwfBvqs<P8{3OcK?1`U-vor2&F_PPz+
zF!{|X6l(2m^RRZ%ZM8r1w>7nB)lY}V2mHk`E#QU7elU&#r%-Qpy6xusvu?9>!W-57
zB#r(4jBMDP!msU`fctCg-l~H+Xq|Lx%@eYw@b$+Wj?x6@3`uDci($1J^`_QAj6FXg
zGg<Q>@3V`bm^xy4T~HqnqZlKX$~UdAoghC&euAbEu~4EA6Lk~Ec#sA}kI+QYgBatm
zK)&iRSk;~KYr-<EDZK#@;{X!yrx7p>qUTdld@J)BpSD}ar(NK^UcK4w9kmW>gr-$T
z+y2)1mrjAmyrsDmA<|XP^Wz+Y<YTRILQFx!E*ZOQyX<hBYV~@r+u}k)m;)+$lYKAH
zF@(PedM>TeL&oWbh^L4a8k{NEzf#;yuoCgH>l8lKj+%9<Dm$5`MPcnag~D;8)2V%s
zqQ{j=)#;8g5>U~=4f!wRqM|NPLYQBoD2CCI=Iow?Ii5i@nYyXp4{$D+FX5KbN@$9G
z1j$wQE0yc(Yig;M2hju^;lT`t16=X^WE!})6|ie7G~4#~ZT#EJkHKx9Y|v-wqmugL
z*iB>qW?M{OmM--OMtJRpFf>jSV=Qc%vY*R|Vt@5i+fkdi?8n;FZ6Kz`5+tvrAP=Xm
zA0&nL>2a^#crSqv+qhS69M;Z`x>cug<;In0npS{}6{$b?cbqZgdLTg&!Kpgt?2V%d
zrpx@;y`s|w>Er!0(bKESP8gB%`{>?IG4gQYlYNY}L#_iPP!QEzh?4$_Lvu{G34F}D
z>CH}vL0xfPv{2kpwGjV$Yn%GPXbN3Xk+vN)ZrsT<z*TrVAP}A6X}eWFJLtmV?jS$Z
zLM4ltg=RYwfog&8{IAy^>?<WmE0w=APl--wH#(hn`+qrYwY%>snL3O7-`lr37IHaT
zt^1`tv!a&00bLXSnk2y_@^ICohQeZOvg_w#62((i;`Q*7tM+<S%0c8Nc5l7@$|&H(
zr4=guAv#B;e<7!s?bJaRZwX6FF2jRygi0aG2=-a~$Uz(EFoHD6%!7VQFCp+98Av+c
zSP76ZPG>RgVdxhYb~1~DGGe&xqjL+!7fxYbXg5AIe*L!>vGNO5qRKCxP^QW+Oc7ev
z-Qx*O`GqDU%Q}95RFq#ZAz09dV0*!1|FCe;mm*=KM!Vf=_w4$<8D6=8pIvT<7zn#j
zHZLyl+c<@dlUBE}kD6cz`@BXZ*s|1Afn_Cd`#310jvo%_Iy1pZ;*KzyxVL1}Ox=1!
zp3mAx1kz;~U5D8PM|e*%(j^=x`T*ny%X~@Scqr0^V-7`nZ?vH(A1rfiIfZ7YC*7$w
z5Y!2*m;{PJq3^I(vzINKOleE3XEQGXC2Wx8=;oQR7VylLT@EvA+Zvlr&AeR>&oFnj
zO}WkH<&&j@t2er}=21sC<g8>|VANS$oK_G*N!UJE<~Ajpduw-6Ol^JY!kzo+N{-h&
z6cpL8p`Z(8?x!nxZ4L3v1tw&41068uBX<@2Hp2-x4+Kkar<LkeQ~81It~V1zeQoFx
z-<FB4BU0JNXc)~xk2@_4Hv}usJM`lurCaz}=;0Vua5|{)BaVvd!($}2A$3f<hocZe
zDq9<qj@c6ygN9Zh867A6kwlmM6!{^c0@2ansey0;cmhtuG(tE@-G1OFW0c0TBt?Ck
zUSk~c!tM#D*H4FWG(tQ;ru-$``YiO_lr9_4+t2tG4dZBnYTm>T(K~dO;20gdp*w=z
zIeLdWI3*e}kvnvWHHSe7C!gn%iydVd#8N)wB%)TQeDRNSxAd=C>3?=gf4;ceee-fo
ztP0(xkd3)LA<-*rAnrjFEX)1pen@CU-C7*h0uMLmVK?NS_u`%It(;SqBnqO8+A}&M
zti(M!N8>0-!GJF%=mJF{aznw<V*TOXe0ofvJERCBjBpAk4q{RkV4THIIWj;}k1YbR
z)b+nIjnP(!2gE`lavTP<!krflE^%BUt8SFw?S+GCo-P}bKV2{&_<YGBges!!yq0fz
zsHuw)l~@onVph395M3vzc&F}n=47T+1H+I@#M4RG1ylf+66!;lKtjbuqKe+3gUrIZ
zO{{P(!Qv2Fbizbfyf8(WzY(G-TK)rkgnxxS!~WgQ%lSD7>CVd^Y(gqN6GAF6fD?4a
z*o0mzFdz!iY&wcv4->U<cKV@Rs{>opK!G{19vpe~aS)O5`ynD*Jk+11T$#2`jtC^O
z_P8kuG4{Y&o<!&p<0%n2KSg64W8lXyx-O#wx)4oV!crm3-vp=Qh?Z@Pu5cU+(^~Mf
zV4UN#qi*x`sL?z9(CZw0Y=G_vFfl(9oX)11-45*Tlff8IT;wLm!^t4_`}FW=O*bs_
z!TaIpdv*fyy*L3W^hP*6hH<oJ>2#L1;!keuyZrz|tk>2yizJ(c2~JVt@UTH;gAGjC
z`d{MPZqxzeuv*+zUf|&ngFGJ7tw>dQ7vp3Wq*Z5!ZYwuX5RE#15Zoe%f+BN4=77?A
zADtJKelF-&M+ZG(uO1+JMMrJnpm(U^;j2nG3j(zF?)fhI`c?E={Hr4zHRs4F(&rAU
zR*|#gpbOJQqoQ{R771ekf}ssF@-IWPs#Dxj+ip9H95z>OU;*)^c&CDxOMlaM)Z>)-
zB<pa>cBYQ6?t9^8iiW-%WfY?;#vIlW&p~F}jYGkq6F(W0he0&*lW3R%oA%vgTuJ?D
zZx97hob=q#>(S+aXsg2DAi!>1b-v*9orzNzyodXqU-0>>KfQhZ_RXKkvo`kXvmk)S
zyKi6Zl4qYW(YgH5E7t6N?2pE&{C@Y(KLXGw@MzNs(KEdu8jW!L0jI~2huiM8;CjlW
z$8geG+;yZYt4N-42Uhdsuq9n8JouQlW)6~i<Neu(Y#WG9J}=%8X!8rCeez4KeUkm6
zc*lo7f0jH;ig%P?a{|X9uK|>U90M9C-aK%WOzQyzch5XSy+<Kk@ebylAXIw27^#)0
zT>4R?^V(!y3yBpey%tPP><x6_PW{vk`~)Y;t|!1LF|3%~$Xq_^%+M#s<V3MQ@<TV^
zdf6#5?;fu>7$@n$*o~{jEiiPP;+^ry{?7jH+(BQFdwq#ES>QcNquF$d<E`S(Hkxm4
z>*^k-t)c8N18|oG53>#h4n_S_hf;%>UC9&=kQ*csO59sG>Pm?Ll+Xa1K1Kl^rlmCY
zCll;}5s<R->S2`1rJ5|P(JTfYEu&vB@*<-DVyN~Do;82sr)7nxozxv%c4K!S=_=*=
zS?SeILdBcR>+XJWkIw2`m6+~0#;#}ioP0NN{m}e?1+{l?r}j=?%RZAa4g%5V1|W)>
zbv|%+3L)D>m!}a6OG;GKNc(0z2R8~dh(@Zmq;uwI&AI6Fcl0ZwfHfQ1{OS&L^t`w$
zCBy_nXWw&E%&TBuNAYEXJbyUEF%Hw<R;Dn&9^-UOwjN*temFU+yzkTte$pe~_mbIk
z8pSF0syhV$SSqpGyH@id``IqBML(RJaY-p=nrv&+?oY_xeKHlKgQeRk-cc}fX@cY&
z5*4>7o-_3Qv%~JQZu!}(lmDTThJyqzZ@;s%!`cshN=?<O1m0nxYIM0yD#_FjLmXEM
zJ@VJqc7bBf9#@^p*Dqg6@IQ2_uE&0W(LVg`MYO9ZMm`a=e<t`hw1a;9r}`FY=TmnK
z@P5%3N<p^3A#%R#?C!|tNr3Sb?J|HNmVe9(g=8FEcPKnT@(t8U-8co=X74DnFh2C0
zH9B@LF>;B>V4`3BG(o3v1bNMxb+mQbtZ&oLI;YK(-f6R5Eq=#7{n-x!>bs%f`Su=?
z@&zxE9}a>UgrN|{6J3MHIW5E2Y3xpsb4ehS{)~zoxWh@e`}&{gxyqbi))Ipb?ZAlB
zXljm_Y5l=q7RO|tkW`CX(*%|95Pe0X7*A2@dO%3edz(8<dE*p0%6H#ag}n~jHo{u4
zlVSl!L|2C?+S)@2JBRQS#Qes7n&4na0~N@$pxKmrHmLcXY)gqKDxIRzC`G#&iO7%$
zJ%4AX3jgBT^;6bdZ>@*}*%md7eT#n5DUJDE$253~cY7s=m^Kbe-XTwd4_YVP#;@J1
zWV095;?@9s_(C`-PiD6O2H>OChu-_f$J(c6s|_(n$Bk|++l>W~Q{2i}z|>0H*50s#
zq$2x{ZCf;TLut@yv_CZuM0hu-5yxoLZPyNHTzTfr$9AJuuR3J;lkbd1j9R^;=1D`E
zCxW=#Affh1ahF>mSpX0aoClzE=u{jD=HyU?vocAAw%<nTV`VAVUqBjFN`LJ+TagVY
z!U#b{bxiUXA&~(Htd4C|LMzNK+ZuBAq-#Y}96y$roiu=xw(yqhAjPgYjwV$0>4P%*
zg+?I{B8XT(emL|)KgB4BqG=hOC77!BG(sNk&qlChcB4Z-u<k30ce_H&<g3(;M;OAm
zs}`wfH|otcnXT3dS7FUVW=RJa`3V`!)J+oXy+m$5ic>?*B>2^K)Bs)Dn|)05eLN$B
zM^`xRM+rug$fFS)@Q0t!(Ubjl5MARqgNReS`_yQ^Z*>|ywqN+JiiEoyU7+XBb6Y{B
z>BUW;_w49c*Q6n}Phh)6V14~+yy-NLjy`807&KDo#P!?;I*2h{PWX(FH5YjihM57E
zxaRBtYf(<heBrFnF4AZ=7$apStyUf(ls=Wr81P|N;1ScAy%>xqk%!*=u(KLa_SI1|
z;=7f^FtNXcWYdsUEDn12&fq}~lp59}Ww~ebl@WoH#xI~0=u}Crv6-5VrUY!OB65m<
zTetwOI5OISkax~bY+QB1l6(PHS+=TkaLIx6%&c4cnwld*Ix#p;+gfoETF^v@kVaBE
zL9i*}(qmggGmX%@=Wp_qG56R#J#iA!&9@p;BaS1<%642esNi;SGN3Sl)41_d^iW_h
zC<17gz`b_ka4nF()Y>Om^k7@D4w#cxw~+<YcZs17`xyZ&_0s@zPdpK3xq&WWvU_^<
z>U?)nyn}Xg__;HYyKDt4Jvv$y@QWq?5bqK#YiUJh)_)K_3wyV9NYtF-IeXyX9lbe6
z#<?#P*y`c5jXh*oNPak-rB&VkQo`s9O!O-<@z7%ah0T0nP5^y~F%H)QwU+~mdgRxG
z^~wf|t!q8k^N#!w_hal{BHigkh*m0<zJ!jPIANpO=Z>P&rzZha7Sv@dj1Hn8n#Js;
zCK<*Q5*YK175|~;@oB5wt(|nys-G0^I5H-mu)aALEp51JkN5az?ORSpBa~jwjc%*n
z0vj8-bWXtb9k{_@77*Jnz~LwzBbLwE4T4*gMAX5MfXjw7$Dv2I4VTCb{7Y<^oTXB<
z)<4^z?2N@sx@vI`ek!UtSKf>48^x~)_X6Pv`x=dLFip@bK`~G1&z;=Yc+*2+6i<Li
zW1n7MO6m7tKbPq~b%WWQzhHVhB*9lWhMS2Hh?1b|u|F82K`?`Z1RA3fCQ*RtNpu8<
z!$9~XLbC)ju;`zIiKkk+|3oFa-{H6>YQW28!Xc#*BF)PT4ExW==$at*624KxM6NOV
z-&vB9A)<+U+lLFW!&v|>MdoBB8%VObqWyVrp*F?L^5>X7fAdeY<%da%T@OV=c=`^#
zQ}Ew@X~)=4c<?OS*Gdwx9{RIX44X!1r7|d$j)PANA9i7*&hr04W?O>M8`2XD7JO3p
z1`p7icZ!#acX1Sr5@U0$+Uy(R7>DvEdnitb?}lu<q&dm7Pl@5}$JOGN=hIsTPLX`%
zZ1ZN?CTy79er<sDcaBOPX+Xj8E+?0sAEVL~i5KMQ7v;MxHXdR+HBUaEeRKe4I%FR`
zpxeZ$8xuK@!GK!=+BTU0RbpVO$OP;of$Uo`a<t8QmRr${Hz<s*5hU+ROu=Gp`1CM{
z{L2`_8N>h!xB4vfZ^}vP4leP{VC;q?49DRjRI;-B!|OM%cPlf(!zBW?<c3};#kiD4
zB|eT)5RDS@AW6MwmO>MkJS>s!OMX~N$GDWZ6I@FDiH0O>LEoWwTPen<<jNV_W+#hd
zJh&t?>Y|Z<g(1?AT~AM_+nT4kKuH?I<;jH5Kc#N*!UlTJPg|rjm&uY0%J%SpXemEU
z7{{{!PZqL*A<7_(2snf~aAg3^V4t~<{N!hR+Ywke#k)&<J9p6Y=lt_eG(9v^*@U08
z7sWg1b6(IP>5kn?e5>0CV%$ID+obC7Slh2OBJ=AdzWtg;mzX&#4R;Yk(e9IA#}yVA
zD)@Z{ZbJH0j$bJ-vg1da=lgKVx__}r{)P|8-+NM1NM9vHx7?{f$)4{2q2ir3xH-B2
z$B>W-sTp?pUTt0|jBt8NHuNG&s5Sf<-x?QzRJt3~71p05(<Q#m5{boe`3Z6d=?s=Q
za2m2(%#1JK&|CNzK?yTI<cKgS95f7EvSiIdd^4rGnJ=L1<bg7%?)oT&$jOV$Q3k{^
zk{9>bkXGf<q9vhBmSY{xvZ}=pqN3Ue&MT-sJfK?cC=$LBg%f`|?D2TSkFDdzVow>{
zm0Mh@88~p4HHbzPren)NG@|GV6~EvsNAtDG1x0h}WiY*;3vW$79jHYb7Dv~7c4kiW
z^(LflNRS(2H1(%^xmSGM%@hrYN+njVcK=oeQGuU3#qq=s!O>}nT_9T@fL+)SW=Rwx
zh17I4;tK>jRWNJ=WiB%jcLT2X!R0y&X`JW?r}U~euo(5bQZJ<*ZD+K*Pqf{4Inj3D
zVsT)}7m;XinhO1Wb|=9{987UsMx9H43Q?Pc9GntxDcR7sJDLC+xbsW`10h7z-_q+e
zx;o}}pKHfQRAiZNj5^k`W8l7<wnPfSStwY*@YOo#zt!+xEZf38nSDnv&PqR}x6ztl
zI}6<_*AEEG-ka7BQzY;|868I<(>Mdjdr^u};D`9F8d1Pp&zsMZFX1Mvf__LWzjyC6
zC7{^AXam*ZOp9O6A|rLf+Z2LPOK1WKc+{;D%c6mlh=Yv{RA<-naCqg%Q3zq#T=WyV
zlcft(Iz~So_K+Jy{HHLF2%JxRXCMu*OMEL+`bg8sP57?YDQs+zZ<z(fQQ2pYt2zJ3
zyPpnG!-nya@93vS)-aU)w-2l^j*?XWf?Wo&enH1XJ1MZ?Ho_~zwe-_rBfP2>w_wI`
zc*TPn{y~VFF^i-*l3C0x($xsBmadm{iE&f(m%pIK$){eYTWfbkpmZUZcDV%4{lWqr
zvG5ukrZkp~W336prDjb++qpdK-mGrsoS9R)toY>~`BHqkz#zKHSnF51na*LD!t8tr
zpOs#*ST_#Pfqk87Er~E7g7#Z5lU&a`ibm}yrHVu@$_g*h!zSd=uy|CwJ3Ko%IH?^s
z&UY^6eAS$|q36Pm6a1Bl!bD`TXDUt$4GE$Vd%WlHEhg(j=vOjxJwIwqF-0pWCu7U1
z>qor=r=S0R>ZaqIHJ4fKl$Dj{3wzEit=8UGTJzQZnIj^`zs+zsxUD*#>j$?gZ6MVD
z3Li#+hvTZletJ$pqw8cE<0LtvbWEy?7I9|&mt!*3eiWAZ*A6?sTe6_DGd@$|GdMT`
z?kc851}j!pf?&mi*#MeAWxu%pxix(64lZX?){l<k+P!rAf8pc4gPgtBYB!1hFWlnX
zs`hX!NYBNAWu6M65x~WUQA;lbFdn}k%jS8JOTvZV_nPM!-w`v2yHlk69B?P<7E`E4
ztq<*1x7KYOv`!8SydNgBMZsEh+u<jPAC96+_{Fd-8Wg1;n)3-y!zlHKcrr~XxG3<*
zHm0cYC{-|Sit!DNN5D5JQF2j;2>r!t>cT{&XP-;YCZ%UIHwTovE8a=s&kOT{KEiFJ
zIP{8l3QdUZg6I>vH&Vro=(vb0k7n}zw&PClS&|6?q?QkPVQMKFZwIfM^=fg;_fToJ
zZEtYmPB3p0ZY#@XQG-GRswjKprfJcDlxdciAmtV(@{Czs9z=^Uauk0B(fS8*6#f+T
z52N^qGw^yUpEGbjic>O3DF-~Dnrl*MNwmtAAN80UxdHnpv^j{QFm?Nz+jQGQMnYq8
zsPRo+XW%)COGdbH7py<*g6PL+l39Y3rD;!lPN~znhDhGxD<QAHU||K%5)5&wEZEu~
zqG^;QK5Pn_DbFu4iDF`m4~Qj`j$P_ri9*ahEv=5eB2pT@2bfi-sNi04r_)M0_G7O!
zb>sB5B3jG8oPyysaEb=ZtkIU~RDs6Z<jkIEnKys=OrcLAGCeGViC4|wu1R^Rlu$jU
zl89`Wa5}J&hBkN52E?-WqlCpBfv}>YI^)(A{EiI?L{V?<MVO8byaHt^6ARV`ZR~GZ
zR(Qr>Z9IvtuzuZ{?9iy{hL_x6Bf3@N5MunPh&g72ReKgHIDyfD+!XD-+JF5TjiXtd
z7&6cdQygEpLDhNv8tuJ8FW~=*gNbg5$i$q-kw-M3UFVwUiDQ%IP{agEP!Rn05?zB!
zoKTktTxka9X>i;Xqj(mE^n?qdtZ5WF5j@fy&h<!Bd8K6<`&WK|M{HeVu{}EW)Z7W9
zte|W$Wra#XmSvRv)LXtvsT6d!(N`n@m|vH&es8t6^?)myeq#f1s~#&ePizyH>qXM&
z(Deh-WDtck`C~$M#$;ajM?N^&_-Rw0U(<!-#%Kcmh9nBfN2hM=PH>823ZuBY4+psX
znttd`U>9H9)1Qwc`n-;(IP?+}g=hrXV)s!<_AMJ5=xj<Xh$Qp84Wg9nqmx>pz$Hx;
zlhs$Yl~)s3>NAe}qVhJ!pVZXd^<`AkNCS#eFzk@#ID-KR9}^o?t_ICr`u6O|lDF$4
z3)v2bVEa7~XX}>mPC;&gBaCiXid!>6yKNeU>&Dl9xWM;#q#$IP>0_6NCF4+x0()ho
zT~434AsoNt`}mA`m{IEyED3E2=!?~<&)Pp4!AEg4n-aVB?uY#n!)C5e2vs1|6e`}m
zR+<?ib&!Jtauceq&)Jt3FKNH%yvX{$cqwnigCe8(8(?CT{x2Mpun^8Du1_k*;aROG
z=1_Ylu@q@@Xu?0i5^}QbhGUjfb1aZD`ADc32>PLGeMAhzS)7o;)6){_Is^A^-6!j&
z)(KhXDJ98YjD(JAq!jN|!pyA(M=p3WhHuaXJ?#1>-Bg7C<Wc&2_zZG3anLs)fX0pv
z-4ZB5wN`Iz=!BE$bp&}d7hQ)mCBMZy!|Xz>f-MVbmlnOlLShuu<{EC9U>C#TLIA2h
zmMr4=?oKNv;>W{hC}+!Ulk7DpvaDya*Pptx1UGK*V5V6@3*y>yuDdAfC`5|J*u6ZB
z{7{KrMMlyM*~WhN#msN;p0tPXB5}<bohwjy$_4&U4ewGGUK{AsnCuO32x$Sr0ZV!w
z(}S{GmWn9#!x=ViSku+r^-w86gK^{!jLXE1>RH*i{}wIt;d<_vH4PyK@FYr+Kbg`R
zqL}7wp`Vo(+cwKRE4l|o^R7H>yZGP*7->;StMC6--2REX!&fwrb;#}|t+o5JZ~m5p
z)_9R7NbM@YK*Cc&gB)1QrtW=CFvMQO`U$--H_HVXh6Lw|v{pcwY!<I&mI(UsOO!^F
zft%9U5PDEN!e&&c%k~i!R^SC9n{}tkO9)vKiwO<t;CH9f2pYl(ase##F7&Dd8LTHv
zg2mXu`g(`+*>icA-kWI@r|6*8tsON_YQ5H3w@Q^gYc+S+<%QX_1B>NRG)nG0gtg+F
zRE2<y=4H0M_QTPlyiD3fMKc<QU0UQmz<}ypb}gQLo}ro+u(W|TPy?!X@L;wCZP5)~
zh2M^<kVSEuras9snSqypN@JvDs#pkafJl5inYwXAHdy|R+&n<2sz}17jue)a=1Hep
z+WYe^8SK!%!Jaz#i*Dbp$76W_j~h@5fhURtHNe~>=rav!lG?ye*u~ofQZ^z{JiFj0
zZECwU;ayEs3^k5TK#lBHi(6DJCBLCfnym24*UMQSPa`kcM3reA4Jx~p0T@rrfmQtL
zwh3oXgCmd;5QwZ-Cee&6)5FMs!`45F5K-X}tVw_GiQlCmaw=ttA`Y)CYokoK!D*P$
z%|??GZU7)cZjrX`tkY;$|NQ4a7fwDjPkyC8cXxhZKR>ivXQ$QOogWLl>F&<X4y$t`
zK0R)od}zs^A|Io8LgpU|Fr7Bq$IT8D{d@DnPT{m!w><v=!kVM$Ej?izMAKUu5vNXR
z63ya)aVv-(Lh&0M^ckf7FW$Y{FGW{4hN4@l<A9c8{X{+O)V-kOBve~6Z~S54j-ZZ~
zX++*>pyujbZSxIWS*4wPwx~I+r_z;vLQNUyJG6z0lmw&~cKn96^P=%Ow5c0<j7UVN
zr1uas1fzGxpxU+cuU_AtTi6p$=O@%mL5`rj!vdAJ&|r#+cgjHL6eJyzBkoFr-6`*a
zI%gpdz!dnt6j@pK2~-F{rC{brqPVT8Y2AkT#;9nvk6`meZp{Oh&UfTr;gB)9a#aGN
zPm|OSsVO90aD#_w&1*lPnDu8VjX67Mb&;3~sCg%$@Srrhx_NXZG!IC*Bqk?Oi^DOb
zG9Kt6Nifv~QWFL;e6pgv+Aj%#m^&J$fovu5fNm-2PXg7(c9y^{YG8O0h!D%IAVH-X
zqR+Q&)&`Bc4cyef0zbg1n~t-IPh>PAe=j$BQOpdB5EZu|5|(y{N)VAV)Z*Ka7V||H
z{yL8RD=e^}#Rdt7xoPS`S{{=h3;?Wt1KKxV(0^pYD)=Ui-5#~Dt*u}djoL>_r4F)@
zv3>`4m^APe`k(U6B(Q#wA@`E@2Jsi;nAdrxQ+mawLg%V7*BTo=GG;8^nLy?R?K9Q)
zrQFNXp*h>S<A4jCa!pIingRVdWE<F1bga4J5Ft~%1R}g{=#&4YdI%xvC)`KBG*9ZS
zUpnZo<mrLfe@)yQ6iso+loce;B|q75CZ@sB>=F@;M=O9;b9UrUh$=BmvWXuayEm;V
z4r!oN@osm&^lEQsXJ>A0b;|px7Vq}<OS?OJKd228obtOuul7qs(W`ICBIt*s<79Lg
z#k{{Ca$Bf<y_V+(a4G{7f!tp@F(e%z;b5Y>;c3K-KH#kxv_z#)&lhk&8=DmO6A^i%
z!cn$S#XHOUIRre+Lg)*7ivF_!L!}@kE4My5xjAL-IN2>$4EZNUNZJ}e=Z<oHQ-m*2
zbLH5*LE&uDr@1i|BG`~7lnJ8i?{v}OD@S(fd5}H#P1;&WBU-f-;DNLN*23~7<gkt+
zf+}RCCQEC~^2#e0RKCl&3H6gO9kjx!f}Lhd*hz9~mZbzdNA*1AwONt1ln+eyQeHif
z#b!E-3BbPxo2i}WvzpTCQQ1wveGtpd3k9)cC5G;Hr_;Kdx^Tx>zi|ovE*f5_+I-Y+
zmQ<ZS1ahK&6r~BIN`#sqI2}+|$#oQ8GR4UWEBgXs5)M;nQVZ3AC`NK-dqcfGWFdks
zlQf<U(piihr0ooZ!6}ErZAP_Q;o9S|5Vp>En@or7pBD85rXmYd2vPBlk&LcUidjgX
zS2e;^cyscXih1U=1MFbd)-F#%ZICh0Ebf5RK9V15AE=iF1!R4zbm;m4^=>iBSU@q(
z<M(h1DNfQhcD-MSO>>H4R;?{#M|ghROQRl`8b<zlf<P7SY6+Gi_P6@QoXV$y>!#6Q
zQ@8^qcWG-oL9|CN>+4@u$eYqsqAr3nq4Kwgp7w_<dmc_w2oV+#=V;dq@ylGbrNENe
zV1TiQy)x=z8jTlY*DIIHDhmwUR0pp>x21fWunV2ygC%;ZD#S>cQQaq{H`6w0?38eh
zs#TDSH7;M9M?W+j2cf6b2xB(^np9}vb!A>?WC~j*X9<ph`9#&@CuF{dbKk7zd$wqA
z-|Ho5Ty=cXDQPr!bUT)_i6oGT+!BJp(RuNXcBJgtzeBmAYxH2cG#Bs&KSHL?Gb?w9
zGrP1$6mGS+MgB&mqXBZnT<)W1;Y)QW`{<eb5@G`4ee~>%Mf~ieXCE9BT{RUcrQrke
z?l>7>Ci&~FMh9Fr5Fk2@qbZJ;PC^!_Ac*DdaWsSDRLKJqNY>(B;dN&INywrIMSUTQ
z_FZo!48@5sMe@}6#02fe7>%OHV}}!GsUP_1EqAWTrA)182F@APjR%)P2jl2EL__SR
za4eJ*a^qOZa1+AtGwEB*^ir^fuC}8{Rd(P%yoO3RP<x6X#xiy=4<C<hJ@OOC1R?{2
z24g>vJmJI6e(J{H7VO`mWa<uRWbCVbO6cox#N%toNTJjl$E3{a(YpbB^20t0say4%
z{5ad3Fk3Ckc7rs7`UHgyHt;qdC%9tNTHf?@o<)^O3zeS?`+WyFWV}5nwuKxR2>nsW
z!q)wwaTKK)bD7Kvv95JnnRHPtzEYk*M=bR5j=Y|$o{Qlu2*4A?*BO2u!TPkP3erNc
zWJ`y20DnQhbH{|s(Y6B?=t!{Az$KO<ShoU(=JHg&<$n^3)*~=@8x3*MDhG3<-t1mU
zhMz<@HQzn`h>PF40`%(J3Xt3bnrUKUJ+hn!+V~+)NL>vhu5ejtB5N1`^24j>5_?ov
zo);Np7DCInW9%v4iYb16-Uq+!n5K9#1<OX=Ziw%pxw>VMkaLfBC=gHD5a;r<3&#*$
z2%px%h-B>YD>En=t}dK4>y-~QSehrWrb`Bd`N~_1>R}^~^kW_u_EbduWi#?L+&J)Q
zhBiNen>y$kn1?O)gr3+#yDS7^2s^eiI*G2yPe^Na?Z#nJMhZ}Cd`)go#Fpt}TA78O
zFv$UmU<-(%Aw4VI(4xpbJH>K?Yg#X6f<^8Y=*8uEMj$GMUu@&Soe(P#Mq!C)C77v~
zT95(27UM+zP(dJ}CHZtS!}Ws%Z6y(b%p!YShz*Cx4{<4K7(~~JG#%-cZiuH!#{Tpq
z3dN#<9M1gtv7BavDfrwWI4c?|!b7j|QV{zhcwMuDHbkZ+UTHdwSREjK21tZNRI3N_
z0wjgCgJ{I1oi0zR0+7YcSQe|13;?Z)OL%#=A39`5n<PZT->MifMXHKm8KD+6;LqtI
z(5%n**&@)a&o9&yR~o+9iH7NsA70i%??9|4*}a`j#VwX`adRR=AE)>OeWPQbsi5r2
zEVYv(h9*}y{zD~g-cm=qMJ`IBA+ct{OM@0m$Is4Vj|_dBN$~`yQv_nQxJ87T^u+=O
z#An&P6kI42fpfPL_)48+n$M3Z_H%v;M*5j6Rr{#VB12Sh+z#hiazg=PDk`+P>6o5b
z)%}>=9nBJjIR)UTmym|8Q~ZosYcS{W4k8qXrY9gP4Szy25V0D33oH~Cb7(bAY&HiR
zJ1geKqu2r2FdWj2DJF~8`|~3IMy~N94`p_dXHFfOI81Mqldt06b`>^sKg-IwSm9gJ
z_;D_VgJF$<hwMnWprk7<p?d3Nvx{o=Iy!27_|QE0V5B^wEKi`>d44D&8#HzobGAOG
z^AWHuf!JqiX)Cwr;RfW1?W@hU?=!r*AG16RtH`vva6y>Ju1&VTqU!-F1=|jkINDhd
zq$e|%*dz29X|i+7>rBXbR<{~!Q-P7dKF=(oPR_ERK!$>jh--4Twelpn6i`NJCxIjp
zr$8GgQNZp-^W;iv4jNy%0k4Z|4wt3}HkWsv=bWedfjX{E@s75hJJm16JBKGbXYqm1
z1_nZ3^0srf7J~zV`!Q|FC1!E3xvd&SYYx){X-2=&cio6yuTgaM*iFXtDv#b`?x=xD
zsvje*7XPZcWn)@)cZVxGJ=@1yn(9N%@9|d5uZ1qNIG`iY@-*Co8Um2KNMw@TA&uz5
z>qot@n;g68V5~;3FIvV_o?(d+cZ{tlyUY}h&^cuer?~sY;ddjxIK{m$nX~B&C0{5M
zj$o|`L)y-<S=YPFvV^sQC1}j`d8m0KSw>*G;-Rfs!qT<!g6Dn|qFEelBe>z4Oe11J
z2ztANF=W7m>kW3}1f5W0!eXJYz6DC|i0J-wEmNi0=^eEWYDXVioi5$0(Coy7b1Grv
zm}ZP0^+q^tCP!rA#!-^4H{WV^RXwg+Q6C)`m}U_%mN<1|2;)C5Dh)5RS-HmGdiJmz
zh%AE^YC9rB80TE%s6ZX$1bmEe-|kMexEVUM7Pe@oT%kbcEUsKJt!;z<tlZ_JNiHF;
zk?f-G(~T;vM-6xmp*|MJO?BcB3X+G-(<<nL5l&BM{lFi5gooQphg_szFBvdv^$my1
z@v;uKZX0ZU)xp+R8f^WW54LU{EYCb;43|944%j|oYA-JzGimp&M-8~qapx>?sT)7a
z3Mb$!Sm07OX6E*qzzw-G%!yWqR*2-6I930z@>Nwky=5OU*N?dJY3`7wozzWd31N{T
z4c0|C+!3o_0&k5vku-6o0Kq!spjeMC<ZQ^f-m7A5@7WJ=s@!TMKi`<uDm63~1#*#|
zQ1evJQxj8b*UJWD;lNJBBR`zoWJhF-hOi|BDV2QviYD8cIlFs5mUqfK<y~i6^$!|g
zctSh%@jSm^r&14C|AO)()RSc93Ya0|C{95^(15C~*_7XfqlMDFC|!5kXVWo8^&x_v
zLZD<j2fZO7n2KG(Zq~U8n#=}csHnh_sy!4<rF6Fi$?aVK9*eA7<S2p@QPmPt9R@iz
z*UQ!XLw?ljiyV#X*;H8%Ql>fy_b@EF4$AYP$PX?gSr*+0C1dOQuq;7A<nJAx^Re{o
zW9iv(=~;(KhK##s_)2F~nf6mI-f?hjbhkJ`U(pwO8%THf-0ASdmV)|24{4eR*~JBn
z1$$(Y6X^gIpI?Y;lx7JNs9q9X;dmHC*GBb{A9nU${pr<CWgK0X(x^0uCQ~=YrSv)~
zQTse8`C-Y6(vk=Q;5F7uG)E?R-*=NS0rh(4&Fc;J--4g?Xt=82hk=`5<P_i6Iv;zV
z8tqQAb>bjjPUx%hZu!NwrZ!J&-EO0OQr-OWk1yvtr9XeU`2I_AQ)}|}t@xSu@ju9?
z7vI}I#ECl)ZY|h!RsSC<vTxDF1tBY4TnTAD(ZMHLhKh4k+#t*O9%&A&lC8+eY=Ma%
z_IQzc9&<MFLw_=xEUa2lBmB1e>{<B*W0d#g!5({{`D<#duIw(DGEVV5`@P40*Vqlj
z_l_0a>{to2?ryv&)6<4M_$%wm@rOuEIql{7bM47{Il#;stl(b4zj5R&i?t-^j*(;|
zP+^SHm0;{Hf)T6+qhtV4vU_OZ)a#1ot2clC@%5j$WTvq{DP52K6hi<`X&6V7k_(bo
zQoLitR-Pg^2vC4sNc;=OqOt44b`ri#?qP1m{=_f?uUsVuEl(&SdX<=>!Pt%60a<XM
zDgEy5%8fVZf1W)%|L%Mr+U{RmyqG(41E#=!6`;=;?2Q*HQ~^}3saL`}PVr<K#gL+m
zm(k$YA!B|j<)^6Dsht)!cs+c`D9Gw5g&vCWG$44T_y*jxthfg}?BbiWH}OX_cSUa;
zMVZ647?1Ex)^9*x2_WW~#*ii!d1dw2Dh_>FGHRi-HoG>ildUDe9<ebuH=#6MQYqdk
zgPOxnF_3x1QLeO!b8Q(XF335SB<1b1num4$E&Ao6d_OMu@1OP!o%|a*`8S?y+Ml>z
zq?wy-+T26uMWxdV9>S#bd_f@56VHoP7-$-U8Ll%Bd$=Y8rT<Z!vsu}6^eJ>UEB=?w
z;^vp|%NO#FjA!m_!jsL#(<!L9CL4WQBseFy9-D8nUBM%t#w#gl9t*B#oqRUKyOtT=
z`!}57-K6r5ib6z6*UAzy0(I7%$0z8D&Xynbm~>MHF{gxAl{4lfPUNA0o?;A>{keGe
zN`D6%t|(?{Nh(@8k{N8ul{$UvOpN-m^zE=3Ea)qc(n*SU0);uDg&4(Lf1?gUd&Tz6
z+AMwBuDJ_Mx}%i-sW+-O^h59S-({KOrEUwf)sz8`0nOsgYj>bJ&j&`h35KOPNTKd&
z-H&a>6vfNcD*R>78F}`RbMQ?=s5XN*cTfp@S4v`jmV?66LRfEqtFlBDtA4(%i~_#8
z{cT>k{Vh8NmJ90h-+QOE?#HTZsmNDBEqU|QQ<8rofBTz$9=~)pG{04DWjBZtqC{Gr
z?2PfHwXwZx+A*W=+zd;)J7^uBwmJ<fI_A54T=bSIA}rJFFSIr+-@B20WIu=om&hHa
z5a=7oO3zSlTHK8F$}5khbI@*{+9_+i${&f=P^0La9~6U&z3vkOt*_@LJ!+nu{o1QH
zJKc8k{TU=i6BU}=ON<}|9FIMYLIjYglZoqSR7$pC?d6VqC9<7?IwXP^%~Etdc2f!i
zc?vrGv^WZ76*EY5@}d-Dnh1^`TKK4qy-Wzf^XImaw6XWmP0gwdtqyuqzR~;flVpa=
z%HhZ(bn>IwiES_g9HvpSVpj(^Oj{lM%igC(yXyRysX@`|pg%E0XrI54ZXJ%vpB#!?
zjJ>g&3Itcehj#fVTbDmB=<>%0cWE8vn+09Id2p9+j4qdQsQk6bT*TEMH`imSH7KwU
z9S`??H(asrI&Hi<^jUuvrn42HpV7u@h1>kto=8NPMnj%@0dkfmc{MbE86XT+yNx4D
zHq-JFsDut{-P)1To@TeA%WF2X_H%Y)z$mxDK8LH;>~DFqU}J;d34sAc*CFWSjSchx
z&Yu!XK@I+ZXOhKQBH5Ex_ha+q1CM!XbqK=8?f|^{gkm(k?R`SOqNIB}#rjdWYFpgV
z26IPK^ttC)XJIm%5-SONsMS%5wgQ^@sg8{eV9uR%xV-3l%3FHx(5#zjwi88Z;jPwz
z#mbZC+|BUH4SWxHY9NXi@H)%KwAx#yhKXYt6uoMxp)SI>)yL`v2_E#sg-y1J3L__5
z5Q3+4Qt$Uf+;1a*U&yP)=b4@_IIr_!5!y?$3Q=0s@3tGb&KKC8@bwl_Z?``?W7pL+
zbm!a1vi-7sK10t&`Jd}E!Ny&s7t4t_Sf+`;-MyIWZiqYfIg<zRTlNZZ<b>JI#Vr@L
zeTKC3gIs}<!S)kBfnc37KU9?<E;0)2+=AJ@t@n$ZY?({5Q`ogP<m}bdH$Bg<FpXG3
zC#@5CRr~SPIn}o!%{jZ}R$@a)(5|7%(Q;kR@1Z=YCNC_wS10uP61}~S%C;QPn#mxu
zx|ir%i>lSts|4^Zb*rLJ=Z1E)u7PEwL^so^W%sYSn8=K$P$Pl~$|_CG!kBByN*Opz
zoNpplAgqsJ9d&~MdqlbOWbQBdE$Y_E(PzkyK$}25rWhw<Zb6|ahC8JLca}g-3<!UK
zo2g_I^aQrme~U2wA%NdR088z4WN>Ng)x?k|)AwT!QMVvls)Sd^r~q~vCFv;67Z=9*
zkbR8OR9^axV&o=?KMJjvu}x{<+{^hJ-m|ple?RKgYu#F}-D-93&+@jr>j~^CfGm8d
zkUe3Yq6pmmWy3aeJJJAq3W<VJuwks<Uobq&2oeQi4=N^5&QPx&TR*ONZt60>wQ-wq
z0m8}~$O&(Mq~~AgusipfhR+`py%Vg1+&3Rwu)GG&Bl7df$PaIRA7-X0`k$VUVTku;
zVgt){_}Bb&Ro2aPnai+Q<itbCs7fh>mDx0lI^|FW_P!4JDVVbnxJl{{IuL8{`!H$a
zsMhH=5557LYJ<HuyJqlRhheiHugbF7FPErV8=mB`s$tjFtv2*2+bSycDV1p(d;afa
z8PJj@PtT<=#Cvn6f#o{9X@0sYXJ)$0WyvgZ;-Tb8?e}VInZ=wkr2=YS`}Gv8c^rkK
z==WhwD6dn0{|%TE26=Dh%;32WduBggl|i##R)T1hShDF@TGFdtUVpXLyq%5vZKLOp
z75>+Lug3p2(ohLdfbDC)o<upj{l1?b|NVE;&%CJAH&D@Rp!e6(8C=&=)Y-3B*437d
z^VPKtOZB;;w2enA>TTOVnCjL5?wb#E_C+<%BOJt|bX}GWH@!tZlry;UJ?!y^K2Ai`
zWGiN&x}3g7xE_Z?uO;tV-mpNmz3eL=Cp1^3nyS;ov={=9*{eDt#}H*z!h&vi%fmaF
z@6U}f!joxwOWBCWgDKcKG+%u7VYP}Jo_t4fikUEA9F75lKU@t48?d9n5DzUdWLSao
z52$`B5TAcZUKH;HvF7C$MF)u{45pTz91h2M{LEibDa2?8DH(?_a=wH{Cu$G!6)z_7
z?p?M==s*oC|GFIUuWR)Bb@bLUPRisRoJziq!r)e|!Ij{Yc~v<l(-K^<?->cX9*L#@
zVA?Fx?yt<FG@rd-Q)^NrUQ}Cwk5=PS8N19iui%@d5aB+81*Futnd3{5k&y=@&=6X}
z4Wi$Dvu6jrd;Uf}@B}69(oCJSmaZ(gO4jIbGu0PlqQ8&)5F09+0O+Mr&-FZ8@kdsP
zfipMDbsyidOf#<MQ51^1<R@g+dHzOD+`vu65deS^8F)&E$SEqFJE(O1oBlDM_3x@^
z2ic-L02wkSqiQf*{oq&5T+hRvftKJJ6$9W61yy5JmPta{d}+gCQ-frxiu^=DE=#Jj
zMepKIxuv$vtP;XgZiw7Cc5l(vUg#-J3L9uw{RTM{RvJM94X3byv=5L&Y&QxDiaf(D
z89x+-ZKrOMAeY~nful6+4tU<5Y^HM31FM0zFA~f(XeDvv+&aj)MW0cKPMm`I*36Fv
zxUiRI;T!U*MzF4K75CJL?_o3xJ(i$}Skah%-wd0fhi?e!pxTW1{`_wjbLTBfip^sB
zjc=+|RMe2k2KdunwNmJ!>>E!L1#R*se}rk0+)YtUJ~NRJlS*VNxfBs!midHc6b7V@
zat8xEO<!83Dj{FLinCw)3C(Yfhwd!kz|dA2kv_Rm4}m#}KbZ!!WOITO)CdU=DlC9D
zM>su8aC|^vIJKCT*dJmHS4@N1;PUpb=yVodeh0h}qR;4r{N-#Gv~T&c%L|j^qiEEE
z%x{d!uGdTb365rIwRorg+%N5vU+bYt1Yp$(UGoAL5p~Z`rh$8_a~vb6zKk;h^%y*6
znG(Vz{25)}W?>4|K@Djr(ngN>D{-{^?DV#V^OpZtMim7ZPf<}FB-()N&=`tgCx{<*
zgEbDlF=K+?cP=YOyRL^yutzaSfc72Ejl3~gc<7`3YEd8mTxWZY3`GTuYCswt?xUjm
znOxLXA27Rxz-p#L(MGZTH8qUf80(X*u4#kuB%+ryMB};jc4H@#v>It2Q576uFb8Nk
zAZ^=K*x+feWBl99kI4?pO~(ltMr}H!8IvjYERw$7Y*%G%%i_+q`toDzxKVYATLVuo
zfO!YmAUdtH_5s~VZ$sXI>9xmdVb)Gh0kZSYK{mes?eyCFC!qU3%~P6|$oZE)bqf5N
z0(~@yCetXvPT^zY=$Jhl<6z<x+Nb<?Je@d&dgDF&NrQi#LV+f_q^0g{sZrImsN#MC
zn+&tO539Yb2F<e6dt|L+HJVu!W@%EWsZcCe8Wi|^BGnE+&D*Za(e5<PvF5*L4OzRF
zXv!<hD|rN2!4=rNLsb^l$CE}pT!v-MfjjofwVw^d>Qf6&8{=S#<D}q+e)^IAomq~d
z#^`5v63_-!r+CMBWnM8~mXoojTE~9uow{*)3q?72WnS@lxxDPYQ}!~G22<W^I%>ZE
z_4sHnuUX*tZzjQBrSFH8n@JG(AxnwJE9cjHN6q)`TKn@d2!YR>lN!Sk<HDc?TzlgQ
zW<^>8<cGru-MSOX)w1eyHaqq)|E3uZBLbIBjbgD-eih^toqWW>gnU#c{aEfL9ydR<
zYY?s9`P}I?j(eYL$49;9$ziLy0z3hxdD7|Dj*c2_@|6&Iac6Wfj{oCN9}`6loE<~1
zx>iK6J$+OfYT)b$awWMUf_2<~OawJ>b_BWFUJ=0qx*R+vk{OV8MAc=<c86Ilnn<Kj
zif2=Zr?Gd01Ooyiqu4<j`}hhI8T~}JaJmj9@bs+L`ZZ?luChp&tld(csPzpr56m5h
zE|Y`H(eZbg+L>g1q<cB2VO6}#p9!A#XoOQaLcL#S@%LI@YCh;YXz;0abjGJhtwhgn
zDrY!G#JKbH&){A9g;spcNg_lowZ>$c-ts|1DKaqvHoFVPphTd{>_s{bolAe3gMi{V
z%kW~xwwQ<-6a2MaE|#nfjqnQT@ty)FAqWgDRq<u9+h7JpBfRqCD1<G8aSxX8PJ&a^
z$HORAWJSO@Y5YRZ9>9JqZfWVj9rdk)90Ryoid~(5^(!0R2Gvybd738MIGB@{)ue%Y
zvCI@wtS7PXW@dm=%$-hg2<exu+*q$VRW$m{qme#7D27%rcq==P$`YF;$Oxwgvm}is
ztXeJPKg#XCbyQc#yV?xE?ca06Uh5E+PLOnyF(dG_-8v?l83qC}#1he)uQn5!2<0$w
zyVa5%EahT#Kv^zU-%>8tpsQ^BDA=qkQ@Pmu=S=Ct1Z)i<Q|_OSaLVK*V_Yv&rEt<=
zX`<U6d94=8GFS0gPG3jL*+!n5EKa3dCjZa&^6S%#<<_IN4mzcE9BHanup#nSPeNwi
zUaVSKtH}{!P-ayk!Lm^81e!<2(HHYs=;8Y<=ZurA)(C$mv!}2pkUu4j(dPO7Y&ym9
z{>3KwJBY67-%9%5ZJnPafbXivapTk<y0q3X%@}DkP*V`tTinF%t*so06w(YySD+1F
zD4B0fxFSGdxe2}4!@;=;s<pe#!`eZ&)&7j47^yd^HG#YD()QCKgez3l;j3Pa1DZxt
zpv3cj!l}i?4;kyRG@Eb=G;weArv*wV4BK_yG8@LAd|?{%nT|}uKGUaZ<LmI>?Eb0h
zyeaSgsl1~$nuQ&HcUgy){8-&`ek|{mcM$pCU1!_KO=V9ws&`6l`3$DuE-c~S&<<65
zj{<8qzbc(rB!CY^d{h}p4j@d*4>GeoOHm+Fu)Av*SL@(!PU}NxkqgU03ySO3S{-CK
z=mE&)!`j^jWrT`%3z+fzZx?d}IetmQgR^$Kanj}Kh{+qPc|q%sRnp0{0!r*{uJOTg
z`YH^;#eOR@o^83AXBYpK9X~NDGWa?9d$qnBhB)q|Zk!^gj#E5Hv8UpZ>Ha11LqGLh
z@bXVqGikXbSjL%wFGlWbV`R50Ege#!P}X(1KIf=Dn{wM-rrb2`7vgKB!kMP`qQFyL
z{a~m>2zF?O^=NPj-sji0_f@C(CSR3SRev_Ee4y(_u^`!vxIE#cjxPoMJgeDa0aQ&3
zAUFMSX4!#qk3ZvEHL``utcJ?AnRMA;WIJpcnz0a)VXrfaIteW$nst;=GARs@N2ZlV
z%2|PqSc7Wd$q^e8lQCbQ%~bH}&@YHVbFO!DA<uibCyi$qXM$KZC{M&~CoAr`+_%sg
z`h)dWVm+hBOm7QRK2p7_nWd5L=rWJh7&p#QiqbZEQ+!ci+2^r{p7;IHW$FGhv?dom
z5+kiX-}iKf@_(jIc$oa#*#F73jv*>`4%2pK_hWd2f|TlsS`>)SmLVM{kuY57uvjAI
z3^kO2S)c=Ft^ryjYS}P~^i)r_J>lx6ea`NOo)}T)&xw=I&o(TdU2)R}o?Va0=$eO}
z>SlG5h4#eg5_1;`&AR~DU*cPcZh-HUsH5|9^qqWP{eS4oM)?IHDi5}xFO&!Jj79*t
z#02>*R?0wpmGMW)eyWBBu!`iBRNK7M=g+B|teVC%On&ua>|W+81lkzRp-dt0q7b9M
z$Pf+PS;6xkQC<s@)$%usjJxWzZ}96tN6|>BFiRgEMI)^|`T`9m&tY@Dkn$|qdQ@<h
z;J6lgAL3{>J&dCX(L%~-a*MZT9E3px72_ZzrPpos4n8&xex|$+_pOy@njaBBYWpD~
zy!1v1zuQE;0E956pd7V6^bVUxjowM^xKUM{Tm&6xr_xmUP`bT1h^)^uh(?v-oz{iP
z6U)55xzn=Hva=(n24dyl#duB>@6G~Z4YQ$fjso$t(LQc=s4=t<48Fkw^!y!qx0Pay
zN^V}`ZR%xbmoD6NjIPHx#w?}?4)A$eAXYy;!D&at(ZIpAn0eJt$zyc%iNoojqJUm7
zXWuQK48D}8xboO>iY%-uFsk$7or#?mA;8!jXJlSh$j>X5Z7u~OIzU?tOyy?849Jt3
zfq@57%56V(%$cr6kXqTB@zLbc^J7$+8t)9<{`G5Sd}}G^`$r7e&f@QXcFzP*+zx#2
zCfI9*%`i#bAfWpNl|nR>HNW|Cmihgb5GDDMzB24*)&+C&Gm*8*ea8?LCF|-pX`Wa&
zn>RZRq-pkWd6QH8(4A~5&GLg>5s%KE`5qei9{S5){=zd!4$vm#q1@zwqV$MKBQnv9
zGv8yK>*OZyM(~ctZ9|EaRMObQlFuyCtIHMH##SvWr??dK`f%pJ9njR#G_CyaFpfqQ
z<wN!Fvb;Pc#Yw3`ryh?j>CiaahW?plmMrV$CU%#N#{{3?!7TRE+sedEQXH2r@vRj!
zl*F4OVHj#r;GDgDoD_IY3;L?=t6{p#A3f`LSRrxepxvl-n<pPoyYct4X1h^G^=7+q
z&~3Gwjm}e8GB$&FbrTYnZAP&Ll0*}=-m3>l@$w{)17P35*uTQw)AVp1#g|V5nbquE
z8MZ|Q8UZDXwcvVumlH>~-lSKiEH~V$$<g!?XFRq4-g_~e4p!ZZJ%DX8;`+4R3E6$x
zZZd-WwA~4*e%fvn5nrz(u}z1a01i_~t%)Y?6!{6F6=~Tm1$Wwj*M>O*->8>%Kz`sU
z-GIGts?G}@vCInxF&my&%_fhaWR`N3f;zNl{105{b>px={--&l4=r|;E%;gq%C_vK
z3K_rXA{Tcyz}OF=1HL`HU!<|Q?a}rga))H|JF$%snZ+O)9YoVxTBkj8y@z?!b=m~c
z=vV}tYt$hlm9JiDlWTYSX3j(;aGuX)u~V1t#gwku-I_r(y@l(QI7|~7gvM@Br4jOQ
zlKLTysw52$CSGRn&^S}k4{ncTqIV(>XG({$vt-1Bu&Hf4ftou?8L-g*jTb`_vo}R0
zYC2LR=1%1W62+?LPKAuzJnkTJVLy<eIH~ijQq<{C0K-`j5Q0s8#lAEtcrH-lS!5Va
z7mixR4QPK47&bdNnc{&z^aoiIO@}IpzAb_Hfx*huSoVQ!=u<aMaU7C0KUp^XZ_FT2
z$^=0+e@K5U5P7j0DOUW}MwOw6oz$oi5C0GtwrLd0p@1W<DKQnuLd!|FemDXZ*a{D5
zYbe0>INDI#PSX09YA1<0W31R)P7zG5q;muw+-s3%tx2hz`w4moRy63V8#qus&Aw=m
zR}Wk?G7H4yik+ETN4PQvuYSm?F)|sE%E!yNZl#4;ayZa(HR!Z9@9iY;!%Idxc?Y_{
zUObfe6iR2-r-dM2E%KP_UJ>n6LEt{E8JRgL2vI3npqZAtvvpq1fYX4X<>1tcg;_T_
zmA*x6!bWeh3ZFePQBmM!Wom&-Ub0JvO}buhfhI#(Ri`loiCSZSw!#OiGz+^to^HDz
zXOVx3EaWOi1|a{8VmXkk&ttiI<?_2o!?N<s+Q~Mhx7$ymV3u0<W`qxIdo$VtyfLoo
zsL%*m(U-~#OQmG_ede3&u=Um)C;iNo@3&-Iy6J-Q4snw5z44N*G2LSF-Ek({8t;WS
z_=?=?OH?{^st($`o5p^aqT=p+ll9zza=oi=%O9ifJ?MJ_b!lXhO4$P01GjM!1y>6W
zt!!N2(K}A&RIlQ)zQ+mA!uv>3;ISK54sx^~{2WmpOE9c$cZ$Hw0U2biY-~pxSZ-)C
zmgB^QPS_<cjgBH;i#mPESCm6Rot-Y28>Ps$J^?%gr<x;W;)XYCm>nW-v8C~b{9@ZG
zV^^}8G!GbJAtDR79N8Q}nQHxz#&Lm(VD}qs=~6C*WIHEDeajHe%oj!=UT#nnT}wqe
zTR)*GBDs(5oWs4~X+`+nbT!9QUOjqC!T~E{YT5yc*pNmviZNZR<p{IY<tC)P#5CVx
zQWep|x&u^k+p)h{+QhFs`Q-UOHZJ7P^B2_@7rdx>6eFJ&s2BarwM1Q)_*S_d=r2&r
z+Xm~KUkzp{*%<7VP{~7^Ri*v87JUcGnXJKnIK!DXA|TJ&>Ryp|4+<X_V$K37nWWco
z+y_M^k;#bu3Sd4G1-b^91(87Y*1^w>wz)K*3<wPyn(vWUA3BQzS|7jnF^VoxCO<|#
zUPhp<@zXMEV1wPH<ymY?slxwJ3Gt`a^8b`eE0RZF%{S3k$jQ5zRQAg+DwWOc3`h~3
z#n#7U?8ewDhmnWNK0Rjer*ycPc&O~S#omL(d7SIuF6jNubASozA`{z{LoyT1oT;#*
zsqKn5W(ov`7WMM8<a$#jt+=k?RFrc<R&6^tWXUJFWOv1JKDFZ_gU6LnXrT`;c(l<+
zw*d*sJh)gcmsOUEkhEe#cq*bMz;|gobvg2rv}#*`ZHuq!Tym$1%VgO-aTp=sPzJA~
zgB;$u!;-SFg@a+VEcFa;m}4Xw3lR&y;IS8{?bbn~(`lZ3kl~!Db%;*et<y%k`xzZJ
zk9ZIU)IRiS>My0+Ok{R8!UNLN)6#eHs%$hwMVWMVP13=aWj;fUhV0LbiK|#rb{qFz
z9n-AUj`F9qV`i$^JGPzHJ%6q|W6S@=;w6&q^$CJ<qraMAvDgiOEEhkd5J~~%$A-Cm
zUg!!Cg1A6cjky3*H3gc6XE`6cCD5%(27f<+B(6A2O$};j0*$0v+qLI<;*zC;{%>Z6
z$v-0hc@wNn^2D9y&n1^Iad=&vxKsT;u_9x34iJais-eDYg84slkD~0Mbq3W~GXu(c
zdk6_ro0$7_h`Q0gVvYwt6e(2css2mjH}cC^?s@o_mRd1l*|H8{fec)`iN07Zmj&=W
zQzB>lSbzuF?Lv@57rb2-XVfH`g(=;&=ei0DD&`cD;vkhcpBL{qID#j4o4%AWetxQ6
zQV>DlqLeZ{>R=!YU!RZ|F(}LT_ZS^ol7Q|%B*ff8dB^5&QmkS@Tbk9SvWdw5ZD;7j
zoH}x1#3JtbF<ryuK;I&B71w}>9|TWN07FJlyll3@DFRv{zFYyQTbKWl5%oj_qUmi*
z93?z*e21Oq84bB}(tJTUv8sD9c|PzB#N6RpvN5qfvqKKZN*A~(5oE{)i-a#4TxQav
zZus)`AY}DuVwnSVp<`4ZZzk$9>)kUxU@l7iD<cyXn^Q8IM<P7PIPu+}(k{pZH7$Io
zQa}$PR7?IyBTmkkV5;a<WH`vsk7nimmn;1?K>$izjKv|8cFZ}A{4ixTFvN)&=|yv9
zO^lAD^wLSzKFm7dxN%bVW9u>0clqXt*w|7Ms;JvmGPe3I_X{d09q<F9wUJu=@P0*9
zBy}{7RF{Uun3+aH22%D2O<`ms+QNG9W<g2edZynxEIi7((Z0Wq`$Hu?SS2mmFWyTc
zGa+QzEW~R|<nJs7xrfdx@%|}|k2_|OWRENYnNww_c=rR(cl=<{;HN}3@sL|TyNGD%
zFaEp4#IkPj(cWk6Vtc^*uU~<QNJR~~+%+qY<=DcHCvNu?IizpGGooh>ZB;?cFv&ud
zW%Tl5u?CYiyuv$~&8w%#wmrhy9zZN|sO1IcvcR+Rd_t@nw43SD76hB6(F1VFhRSL<
z<OQ52Sqtz1NZ2CWzcCstEEbsQJvhu6KV_B+ouOnAsAKwkZ+%8H&HxTtr=L;rj>DX*
zKL3?D$p-Vd);)j%y9)3XnPM4=$_-I;&^qZhPP%rCZBzXy!1)CF;Z<~r3D+FXLV&o^
z3<@J)&uRqlXufr(HEVmX7Mi^B94~a87w<^_hv0;rm!;-d>^rwvG`WuSTmx(AI5Qz{
zD>0$&thpC4t#@f2237{tM^hh4idi(2RA6rCaRsHM^N6OmOiS@g+a}Y>+05k5)D(|#
z2C8v)ma}a-EYr&3tCHBzI<-_fR%b|{r~X?WwVJ?}owyq9S37tW!<C*~#+y7lx5&t?
zX6nvl=e8^u8k-xMb`6=$J?P3i;Q9}+^K(wr6hHSPoS;e1!m@ZdeLyRO<ne!k_Y@zY
z3{q!8&#rPBF>I?JvN^d2lcIZ}p49G{dU?9;ZELJWx999KG7kH1coNAbn&M~O_-Iu#
z`SBke@Nsm7bB&6%?g~KL+#`VZZh}J*)be0I0`KQuj<$jn4}q3e7*cFX*)UiJcIxPs
z%bsbebDP{S*v(T~-Cken2oT%b)qDZ<>}4Z~SN0T{-BG%y_sl*tPSkri(X!byOpxMh
zeitoEsC>+9ihmtADV|KVYbDCZ_LfU=;kWLNm2;dWmKEuAfmH>sb;HXVO18|5TE4a$
zh>(>%^F*3J#=E5^kkS5Lv1iAvPmOG<pLGVczRB{3J@DUS59rI|f36i^wE#9yH})rp
zX5{)A-_rBr1dVWrX?^q=#8Zy(4SKbQ3Tf<5jzwcr>+lz3S<cC1cIC!et{mm_DDVX6
zYH{l?#XA+?TuB?Yo%2=i2#2F|%=bRUyAAd2T>UJ>*RnH3??94e6W|<`MkyJ8Mh*>K
z(``48(Q&QQZM1)Ge3nz7^(L@Wd)nXGf3-K4JNUsA<&Qt}ie|Lw$rc%#pcVTgKU61)
z@D}-w%<&XTnJ<B<pVi011qkY9CuEnF(}3Qs@+C)H!<Vq%1bY^2O*EwsJ+n-T{jKSm
zaA2Ftqorp-;4E%>23{Bb0rkNw`9yP^ImqEIwk4n0+))m4R393RRj1JxmQcQR?06ZI
zr9A9w*1Ov9)Qxc{n=7U@-FI8fYGZ4!hIG-beSVaRaz%cOQ8MdmNdbib8L4C!7-1Ht
z;o1i8N(;7rD|^BIWHGkp#b&CA*z`EXE&jKK;DS09dsV-iFXD0fS-abI8`|Urectnl
zwrIi(nCs3|=JRhgMJA!BGUBiwBQ9@I44ysI4$0US#1aZ<+iVwsNRi!!7v;u|<x*p<
zShB_2a{D|e!C!0c?lzE&tCi!`H(17ymoQd-{LZoy?E8h9DQN{Vw+z$@%8I{dVFcR4
z@mHhL1ght`kS`u%1S_fF74gpmsxNTTm}m8A#G|>{h%7Pe1|M5oQ_FV_%*tA#r<X@R
zqg9iT$ecASrc_KZo!lHWDi`-2v#K9?I(Q{?l`?+`bxfZ~8lmg4KN$0n(|#2A1FFDS
z=6r}bEh`35o~wks1_SDe93%q1gB<m5=@gL|EOUp5miKambUq&+HBWwC(-$K8{J-l3
z5lWkJ<!V|(<^#%8ihuZ8GD>6Vf%SiYqXp$TTj<sJgD4ECNYb0}rb1FOX=sKZzhQ3#
zZib_Xwr2Ol;R#%VSDM9czwf7$-?WzW;qh-~W1byaYwWqHOLhVo$k_AsmhhxJFh-d{
z+9X5Op_niFkP=*YZ0N&rl%&mR70N3SbAQ$k{J}@^@O0Z~Cce}+pO0D_fg9OvJPq6d
zMt|ev+<*Bu7@^nSfB82)A>>a&uYIB}{&q*lGT%pA2hn62B^Zf&O42swBXRy#6dx$t
zC<x_|sYY~dS-ewccWy~$AV};;%$-a#p0C4?dNCa+V`e>(fPhASGR##&AL)TC6i30;
zOAzGr{MPuX;<N-sG11=~M=qGl5Cr!7U1r!+0snTh4KYy2aG}$BaZ1)DB5UhpT%u?k
z+N#&lpd*xB3zTP<T#2oba)}k7TPM#F%dBJ1WORxDgR(1;kvuf9(g>%Db*v=Tk&{V&
z(@j+Ysp-CQEc$G@Kx@7*o=_)aHRPt!$)jLyM{0RU7@vi1$}lf1E|v%7mdPNpYJwTU
zg({wzOgPl<#xB8=`O|Cm$XqMQeG;-La%|f=F5FcS9JRzONhT}H^6lX8-djN}2@B~X
zHvtRu@r`n?08zeS$`zx(e}hab+S0IMZk3$PwC&m*Ra3uDGL}_m;{Qq>6xC|bbD*em
zmHG7FD({JQC@iS@NGVVJr^tA+f#`CYhy}zAJz1PYSwYxtov`cAEYIOe*4^qh+`2}b
zNU^t$8JD~2Q+_cVI{z0;xrf^-E88jO99q^q5$+&a*wtp7NG8nK7|V?evjYb?5}syn
zm@Su@9_9!4vO>;I>$Pr!m9Uj&2>PYj{fK^Ud`7jCIsyz<aa5Zq-S?t_zIZGh(>HN)
zTXd29JYT#1?rVaPZi<E!!D)h#Nim2<9X|+ek#mgGapa-m-Qn5E!Ab47alUgw_u2I8
z+~UCEbtYjpJj#i1F)qF1;gE3W6+TO_7XBh$KtVb)`L;&`SL}(OJqS|gw{bi_u6(If
zjEx%qr-OY0$0YEHHb`qlLSwj@HcwgnFN2<0q-_C~dDYdC%$vEWPMqK&s{b`ij7QL=
zRvpe@Ls52Efm%^A2CsvTT2XgBq}J<zr`@{m;A!To1MR@RYCXcw>)8wpvq79MEtr!{
zGNT5VEgZOv`=j0iO2Ag&t*>~veYh}k2mWWtWf-=;*zUq)^_g)UM%h@H=a9Cv?5oe9
zLeUi`ZMAGi=PGD5EQam`pd3+vRTE!3Y|FDe^tHnx>yl1pIye@HVY1QE;EVfInW5}v
ztuX`iaB?8863($0rl8`yP#6T*4bP@6QPLsz`mWh<K@<fQhZXGB3{VF-wr9%K+6)>?
zFV~u1+{=PJIBL{R(Ag;wTSP=_&ESd*7V8_W%iSFi|K}99$bZrI&ptn!JoBD?e0I#F
zR#jitLaFROB`D9qeG-%q&B-*1Q#VYJ^8)^%R^UOc4}!wbAI<1M6XeF2MVrs2%=nZ7
zs7g77qoStRi;EZ2<)*krndfSPJj?Y->`uk8_`@Ie=zqUG`iCw0f5sMNcSE(@w#rGs
z!jbFOLkxp-ZEZxsGc~hzv7c{YtZGQwjaH*cp7AP=KdSZ<k(~KhFz537``NM;{UF5;
zaK1^KXTgd@G=_Gt5YE`~7zal5ddDKhd{Xn4`;&91^AIa{CD3+b*D6u$^|Bb@dsw$T
z6gd0DX4$S5B5bsOxK*nh46ie+{|ZBvrmDM_>6&YcBBUq^Luql}aCM=xSbT3&Qv8d>
zDhhpD=dix^hy!-hO>A9{RtoF3FLA5HcWVds+TlD?FGQQbEw-nLeHQ(j8eBy}?pB@<
z6T_}pX^pW&A!H(-5!`)C-8hwjAwtEPR}{Lnc2}zs1fG8!ddt6+F)d_Ma@6QH>Zo&e
zaM0*<4$qE`K07qyji35%;QvcGX-jZgo04I|uin(1CAe{e2Qvy+yk^Qa^wW<xnBq9G
zw^tf46%KOA@o$F1h$v9|$M&`q&IqTcapcVgsr_5|UbJUkh1~YsmjYo@uCEZ6h7q$3
zf*M7vT;|u~CfUh*O}-bem5@r$Ptw@$0}9sf>q-L~fScI0cI-#tud$oyQ-pBh8$U%m
zH0MDhOlC1o&;+M0^;Y-^wO72tQR_qRedA;8Q?u3X)#~-$aid$SI>p1I+K1j}ry%0V
zGG+S=yMe}B=7sR<R;H|C2i5DIKSz2&(HD-_FOQ=Mb}ak()wk!?b-?2Ts5%RBHV`Ul
z58*RC`ok>ZC=2T)*h5b8^^T2V{<SE2{i=lDW)3hF+{`8Yn;<0bry+aA)x6q^58#D`
z&WSw##XbBmd2JMLNj|GdhE=AZ0E0k$zdUx~o=DmAV-7#JAzfT(Q!8Kc$;(#cHG^GO
znW=?kDIanJXT|F$N+5fs!Y@|*7VI0_O(hfsYM@&#-{eOMuM_@WsVJ96kh7t?|FZPs
zMd%gvj;3_AL033Vh_;5AQW|`s&ogOa{E)3vtU=XzQ{E}>Xjg>X8?()iW*c60s~Og#
z!6lBX4ly1MYX{v{`*ZJ8qul}fA^Sm9<3)zOBOM%hqPU7i71?Ff(A3)LDOFnKa;1#J
zE7Nd|0#9wOyF73@Q1zTrr*4_+Gtcw-?Rx*8=IMHr(sjJi`9ee<Z9G~|_iuqBz_72p
zi=c5YvNZd+ypcV$DPt_vuPIjau`)vXK*5hbFl9}DDvJ9b%#t*kFssrC@wsOu`9s%d
z_OCjT84m*3bsum_gglJ~Q6R4hup5O@OfdX)5*+Z~r@X15p!|o{Nar|wVv4zV)O`Qz
z@zEXx5u#G*24Yz^E0qq8uW$_i@dvmfFgxEY`kNP(zi~jDC@1<`P27vVTB>aCK?UP9
zh6>sat6og+F<~}^5>=IsZV(_hrKUJe7SgdMn>{uq2iZOzLeCc~5ptWkxyeRkiURC<
zWHE(2jIrwn<VP}f2Q1l;9YsItrLjK&mt3|1w_Nx-Yi*+NbQGtn@H1)l=)4@o>BIRr
ziqjQ&*j6fjDHC%XRiaJYo9;Nqu9vJpx?|b+u?Z;fcrX>^h@Oy^I=amEBlJvg=(Vw%
zMB(W;b`!h;RXgS<k4;+>rw5bR1o(u6w&JePJH~-~gFVvo!Pt#g;o`RW$z#*o#OcBG
zHUU01y;oJ@c>`0_xV4F<$mzW1v@_@R?=u|Vt~s&FH%~OPvWLf-S_$!Yp4;ruvXg7H
z$)DX!L%QyqO+A_iO1bMnFN6s4(8auv;B?`-z0e0iJ}@Vifc>mpHCpw~&EnfSqQm^_
zI*NJ14<%lrfhc{<d}K5Qm~lhb-v0(j3J?-t0~vwup!kT`HXuJ7M({RohoOyJC6RF`
zsZnp)8LQfOHG*dE92qbSLa%lANCRcPe*{picaT<NS!sA^d@GEmRhc(c?4V3#7Y6Im
zc^G0GREuVnuN4lQxHpK~hL6OEnZag`$W3A_zpi9_abLc)0m=|?E%wYpG<j47{s1mD
z4JwUSmzkn@ENizg&B7N(qbK3v9D8w1Zq8WokHpe>BrrHTmr~0ZJnzH%^7#UI3uwI-
z<L7o^^1r>e2S|cxf@+emY?F{D33e0NkOZ^QlSo32g}tUEWcF8&Bnf#WFeD+DQp+SE
z@5B2_!UA{;XuXys<aS|7g1xtgOM*1lZK9CBty&@r=9a=P46@ZzN<(HxazAlUXz{r6
zkfnlMAS~2cQ6jQmK2RjA02fjGK0;yXBu6UD{_ZapiE%qe6N<)78oLMZepPX>xxfus
zz!K_X?@+DI^EJ6&LGQ8nUInRhx=D*={B5*fad6+@_#!JgSyXc;Xf0te;W7~skkzBA
zHKhVTE3!d^fy)2`zM>dl?W;Tqpl_eTRipQCZy5;jAWGxM76X0QITB&eW>vw^KU;0!
zT1LNx!0eogv}}Kd9t8ebp}?!!+=h0(fMu|>&Hviz_Hv+KsFE^}tB5V<9u5+WkP_v-
z&KSOAse&@&`r`aPBNJu%m_IY~k?!E+v4OfS$(Wdmqdw!nw_Vi|{T)QJFwNvIxfujA
z57+U~odqfL6Kgk0{i;)ZowG7mQNA`)xEH3-?1x3H-QvW;$3vn-w|rDZyXY<Q(O;?>
z|HDw`4te$c_uJb_w6J<z0$I<bZD-(4(HG(AQaqGPUK&g~BIOJjZcY^M>W#zN*-^Jw
zgBbGOX{+6x^Vr<{*6l8Dd2s=^rfiw#4BFoNlx2-@21Oi=)y*m1HGb{3YrTWk$zk)u
z|7Y(zz?#Uqzahdd2A>rhtd-e_0t%ri2#5p)6sZDMN({*Wkt7o{p-IiIVi#AjE1>SK
z9lN3^VDG)HU2NFJf+C81&)k_LGs%SF>b~#$|IG8e@8Zn8=bn4+x##@Oxp(dbGm5Zr
zbVh|VIK;_rls!}bp|1VYZqd$gHN4Qk%f!?kq*h=$xU97(r`&84o+{Ov*J_>CwFM@G
zx<=85woo8V>bP$sSe;bVS;rcpiw@J&kCwD%vX#_;D{TeMoD>-WIM`=2REIuZba2QZ
zZRqT-T7$x*tc0$bHY1Hz(!@?T(hd_EvZMtPNcYAM-Fr@&X0YhjUdW7VjlOEzA9YWM
z2K!o>bEwfB7LD!nXnv1qNTfBYQ4OYR=|)N`H3~JlxuLO57R~P}4T-cy=YkR+(dWn_
zSuFaVl2Tt<UDaL^Z*<?m7k8FIL#wy+sg_9H$rh}?8XeZyu_#B>2n{pNa0(xm5_{=v
z)RPmk(Owg=(aH^D(Q`urrH`U@?~`nr80o1txM`61w#5>)lLGK(Nw!^<EIYe6OLY;o
z*#ZSM%!FoXO)-Hw^ixl>s-`?WSdo^xG}$tezOq{Gl-in#K~(?u_HgRTozd5#8m<QR
zed3>6V8B^`gKS)L``P!g2i@pr-_HU6{8klNV2_E(poLKA_LzL#&_kd*=FkOU=z$3x
zgmG><gmGyuB%#MJ4M36xF^mp8LIp9}n{^u81wpuCIZvKQ96|6U0Ts=+=U*?7q5-(t
zB$fN^n@*O9%}8X44<fyWhV;^PwzsZ;PC$uPbyQY`xa9gCIzv2~57$D&xkO2<6gMo~
zD|~pE2Z|qqp^lR@zjgE))RbzZPvvz4AuNkDq3ZJtve-2G)G**}3{o~~+H{R=Ghkhl
zAW_q>1QViMdQRGs1~7sRDb$PSC1KuyVs$ags`{`*h(caNLzEVllmhXK^%^Jr4;b0+
z7U7p~X%Tef@tUgRO3AY%2#c7UYHcKZJtCI!WXjEEav~_CICmx=l!0}Bs1PfZp)~QK
zw%(D81t9{O-AsH$BA}(@)Id3cR39A~guXhI-&uv@`SA#X!ce?0E*>WDIV7+0pyUrw
z+0>k*4gqAa!0r7QRHg4%2JxwK1NGtY4c4c*qFfzc2vKF1gc1$u+mI@R^Aa!xpcc^R
zFt9^mR5m~ns*liU9Uh;^6Jd?VAmk-88$KdIg#uXiwVEYDOE8-nHX&)+O4zW|ux^6W
z(?wI;3zAsG9}o^*BSjb*&JFY$6+R@?$IClR`yEIw(&iQ$G7Fez_X+Y2_3;V|4hk6(
z>J{drO*+&kz-yF`H}-7M5U)_0#)%TchWmt$)-0kiAUu8(283oV|ML;iNmP4CNKE1n
zyav$?iPs?AL*g~)3x~vOP(wqao#ECwxizMU4WvE2>1L6}M5CFCUp&wL)5H3Gru~<h
zzW?%hrd)u*lOJR-q`rC`$3aXrJ^*Jjh9fwLqP^bj>)~%*Agd|xsbLV-2(Z%51CS#_
z5>*LSI+iCCF~2x0AVPz0jpT9QrlF<e;GQP7R<F&GHtdiKd?T=~{AmRTq<FkLgvt>a
zSPYVDes~P?_$271B?8sRWe~?)3hB;y!P}!(z=l_slo^4hEr`>G2wI|0Yg?nK4V_cs
zYjRB=j!@VpUq=H`5C78z{qdNPm~voRQ7Y<;33S!$P7Z8@D1^dt8%TmAEA1K-NL@-)
zMK?Gh<+(t(#A#0))(jIH>|O)Tqk*n{39?Y(C^9PYLeWGqjH?nU%oCzeXt<4rq$G$O
zla_WM^F0FjzkrMW(@^z)0vVCL+dv))3xXv<h{S806!<Mo=p#|T`fBH}D5=ryDI+g%
zd`+;RPRZ+B2hep+9Z3X49>)RFg)Hcy!+#WAXnE3qmCID}!Bw>UsZZSlusv2N5kR5g
zAdK}Iq=slr>_w>DOCs>%>)ciSb%8o@(5p)S?RCrxdu8@94wi$PF8N?4A+cB~kmrZK
zC)d@<b=n<`WO-UxS!syAw}Uka^J@%?<`kvkvj(TJ>K+japb!X%QB-Ofe#AZxg?Iom
z0o^1Wt40SSx<i3HSpu>0gW^l>m<I4Pmg1VF6y(SX(m7pejJj6$n>&xe_)}W^7Q1M5
zI$>ec)*}CpBA~A!n*S~&qWsbAprq%Nb|W=uKB%@4H!$BF=@wa(F%vmZ&>bD<%osIu
zLN&r{oSdH7MjZE7ciIh#)1Hn)l=xf%d=f!f|JJw~yCD^zpT}BTCmN*jC2I8V3s{MI
zbRvg1tZRu9d2lRl&ovPbzC%yPr<6+ns0GgfMzV0CLr4~Vv=LB{HrV<949#e*`b$;I
z{d8#N%P^2OvQ#4>(h$&rp&&|_)({>dokK+}1@zDtL*HtgLP|Gc@cUmt-i;t>NCyN5
zLrtA1w41GHXJeCN$A%zevj8M%H-ba}iOEP&9?z3g&v8={{$Ih0{|Z#3-D0QvD=L~`
z9r{0us$zxYZzr38jpF3=iX6^MfU#IyeQY!&l*kdK76TuTMK<46w8<*ktX-i0cU2Vn
zil_~uE}=Co7O<zeLln2%q2VO+EP&-ap$Ki7=>|bQq%)<gUN&f!rqX+{uRN?x9J>E~
zpsfZtbom=1$@ssCa;V=J|EG}-c^ZB94_^pjs6+bAe8m6Zyjk-cLxVtwZ~$6hh-63z
zMAXmWyT*SZBKofJ|5W3luas14{_LT`Dy=mYEdWIVR}|2t0#-Z}(&q4+;VUiw`IVLA
z-&BOJp#c9WkcMBhjmW}9=r;#qUtpdEh(^K=MMWWB>#`mat*?F5J;eZP@=Vy_@PIHK
zMpx^K<DlShA2-M^PJ)1sKf(jT$TK?;{}M@g-j@v|Mg+pxQ~(z7RRH{KFgXIj5?+i5
z#t5*XV3{yZC;{77F*&hQ#Nbmol$QhxAfW_5N-RQ$T%xG9D?A{KJ196P$Y)S^a46Sj
zlwVkQn1@9geg|g;rKqkw3F?piP*@J}!NpXN91-(*a)LuBK#0m=39Nl`6AH_f@4lKA
zi&O-gpv08IS~{$mh!<({+5|0D_V0@h+tFxN#6wYh{h^u7+Hv^Gy5DrhXmP6CJS3Ir
z*k|0paY6xpVc|YOKB4sI3Tcgnj_s!z%<d3RAZSD}nLL3Y9K6Eir`FhSqm9}UBNPxb
zF!r>U_~9q51tBVu<P!<-h*Bs4wnOLKw?PwxQYppgU;#A^L7J~|Xy<ApZcL+hWLg?W
z)rE$0!-E3{d4+R_golTOk!(_s*T4WDZ;T#($9l6*q-&Hk^%z*J73~vWAyRsTWOqq&
zl)}nGt5U=wV)J~k^5M7LgQclt#GXO=@8eZFr0KtdSG{h?H3VfScXO#v&rmxyAWh8I
z*<gB3s3ztEVWqqzagY!{9*P#ne91lm)r_L!TNObOj;%=tSL!qgU!e5r&nZH~sVn~A
z%umux2F1T=R`h=qv8zR>I&erBt0_(t;>lpuZbDrr2Yd}lYVhPWsKH_VCZnnqi~alg
zZu&tXg4lm`V5m8Cs!5==bedmy;O9-!+RR2j2I)@Pj7wDm%=l?JC-Rr5;CLZW6&D&<
zAEBO!A%k%`tZx@olJXT_Nmx2Qt?CX1OGK&ka<WlwYu3(*D<$U(oQW4zzktXvGGqiu
zU84AhJI@-D3Et6vraeF=TAo2I6R$yy%Y>v;YQgk#pb-pthsu9}V5ph`QFCHC=9L6d
z$_L*IuUk6JpKB`Gn(E~B&qYVx%BEV-BDo2T^fB$%Ce6o=__COekP*DL(wTIz))_Er
zUD?McZ<3<)kS4;wx=IVL{{22HoBq<S2C7c?RK*39V{CPtS3OEB@)e4-zN1dTAEO?0
z-J}x<=^2V7%J{G^<qeI4^k89{&!W60fDQJlA0c8*IN?FMM_kDz8}IZev51X(eYV=(
z&;yUAQBm(9R?*UlMVdxY^8iH^T{-~NG?Jtfy;Tucvm{2obzUVldL-TqQkt@B2%&pe
zHkqu}mAy*hI>CK2h-=+Xt3jM5E@(b=(iN#n@?SFeB*NMn5Ij8GC$w2wAVU)6u#BVt
zw5Mq|LIg0v=94&SIEmIIa!RwUQlkd*C>|`bWbi~AJ6<lAsv~<gp2rpt0G;Ma3vI4g
z5R3F@Sb|WBv!k+;jotpBEZDTDAJ5^3!F*u3Ss|gpnA!9T8Vm*c4G#4R_X`e!f_<S;
zfdP=OUw}^-tLZ%<$yaI6SrCi#C*`URl51<Ye<aw^^!_ErsJkdbFl#21#1Wp1NDEr1
zIQ!x*V$+%EBJrnI7ektI{|E_ZHR(nksSK9F5&;zCGm`7=74F6L_6vm&3}g#qRjooo
z6dW}y7bd}A(F9c1aG@4f1TAkN4dNryR{{q7Ep@Aq6`tl2ieT_X42aaI4N>3*%Nj?<
zc*0X>E*PMP2y%iK>yj!JtXv1uXedhat8tCoqShV;)#eEeLOORbsG<X{fKyj?8=_{o
zzgA*f3yDz|zet(`QP=V5(yBl%4ItKL2#790+-P-O2@tw;BPDU)u)3(CorY8fL$CyD
zRnA;2Ov_*@PfH|4S;J9SYYmUs4wR}1-w}}@gm^`Jv7ZD^)_hM%e5dNTr9sU<>4SNd
zT57hc+EJ$2T+?m}N~Ii<N<+NaD;BA=7t|rKU=k>032vk&{-(L2PNy1R^DCYwiG#s_
z(-R}^7?)6WfmRPlrzM2KQjw6)qgliK((xyauM;tfUse9!NcQS^F_f3Y3zmXqq5rly
zL1|IVrw6qu`WFBm(!T<p&I8=oMQ$8VetBRXjr<rtv<Ex|kEyJvkKm^nReXusa-h#(
zzo0bVFpps0Fb`HFi<OZUi^!~m9**w9{z1O(!rmT^)^TWJjFlZ^XT##KY%GM<84kqi
zHMNK8_Gm1@S7|R6kx~1I>5heF@04Exs$CNzqp}LBX);MZRE*;2$d*q{L$xSIq1@1h
zLVRphV@UqR$Y5Rq<*C+@8fpq^?ND`)W)B^Ob5K#0FchJ5xTp~YqVy5p$ACgC4hv#I
z8e1?aSJr7+7@8~U$T!rf`mZrZ=rFGGr<@+zg3-E#uW2LIu$7F|5{S;L-Y7?FX);GU
z#L9ciG<p5S1L~zc5XzIJ8)sOPBGmLgq^Ild14;8VPc5TA5=@u&{bQvenbu&boIb9F
zzAa!NBtY~USIP`>EP`kA$&*nTqhPNZffz%*MtE_9L$DA!tce&SgUM7L9Zrx@CR;VU
zDJ+r8v|K60<x!ldoF|Ke<-{9$_etlf8*<YPx#$M`qZU)%JUP!>DDz;_F$IDUU!e?@
z`(PagGY$Jg8C_`b3yR}M;nJ5Un-`UC&?t8@Pljg-@Szl<5G<Bre@GxPPYUjR1Z1O>
zp;{~vY^ahZT=ER?3-S#n2civMx7yG}tvF-K5^BaUkEx~a|A3!F2@1<05<yb30HP?c
z630+Az`_bn;)zD^WJ0i!lciaJMI8ZaW>Z>KYjFnEV3CFro1^53M<YWu5>+k+P%4nc
zKm$HCI;L4dvttB|R}C%=vZET45PI`PiCY^mA>a@JDsG_#6*_V)>MJa~Lc{%hy#|E`
zhmPhB5Az9SQXQU#$Tdr=FFl}*m#GAFhA}j-RLj$l1VOV+9U>2HgI(xFRhwSa4v+(z
ze~<aFaIesCZb0xLuK;eSPe_2@Ag}P?Mn;0Zj&eM-L)RwuCY5^S2_+CF_O;Nh?ja%p
z>8+-tk-*6fyhTI;x`jXqoa{^USj>}>|0z(@ZEVF*(?#lDWu!0fp>}KyCXGofu^<-p
zU+O$RneoQ*#H6xcHQP_vMPI)FpC%;3NnEfIkpTQxKpj>V@BrRg4=L$!8eO3iK(l!v
ztvC>m=++-duNsg$%fbqC!G5tm!0qDGMT2W>!Zc4h)_6uvhfUUn7HE0#B_&XsD3<27
z-sAxwW-5&`Xit32;h-@M|412>ypWVZ0w?QQj3V2Z<|u<U*Sg0+mvp|CGLZVvI1^v2
z42>*4Y0r)?T85&XWZLUdG{vkn$a~N(MNuXWRjLgxWo0xXFD0l8rZ9%#H*$*_=ne$2
zjV@-<4h2?ATL+<Jp-7|*QDb;0_-+c7^F$(8Mn#BzL1E!u0RcXts$|(1zYuQt=nx+|
z|DxeCSr%ztAtCr!u-SI>vjJ45BvPnhAZsjNptaP<!sxk6lLcd04Kz+6l+jT8gup0K
zaT=8%QNI~lL5fbAs1-pJ{;=UDxA>K`qNys_jE0)ZKP^cOF-JAij*EFx%$R}yr<iOE
z|IwLh6<8AUr1W>OVX-p^=RuZP%#&*6qp8Cl$dhVi7a9zzNU%;bt)nKPX;?H>N<~d8
z3yJ3h#5^g{3u<<vktBd}O%z-TCzHW^Oyy)^p4>*`-;j_Es}nQIkU`f+XiRX3rWlsU
zAqgUY*+PNlS&zi`-^yaJ016OFV2BrkB*8#obkrlt2O$F3PoQ((q{cJNU_mJGhf_V8
zuq#K|PkgsWJP&JDIfgp6e5j%PH`?#<&luL;hC^le8|=Yp$ZG1`QqqhKBGgng8qbr#
z0yd^TO-)7P>Y!ddA@?0hhvH<g6k<gS1#VhrOUmFlI3-Lj6H4O1r63p~t$PY&uvEn3
z!{Km>+=JD<C)rx7UT{@I$c;yk1PI(vuA+^b15)uOEVF|k6>k#4Kg?FnC_YaD#lR3R
zQI3dtav`555~V@{SPsj?LJ2G&AOeEhZGNImhE3ym1eHs8Vi-bXSY;HJLy2G$6;>#0
zh*zkOH#aEQ+lTAt4Z)Hmp$w6L>7PWT%GgkNJS>B8djm;eSb%>+BNYkxLb)gvLZvWY
z7@G<S<q%eo%_1f202ajhO)D39V*<gm6{PKYev()u5Jpj69FehT3<eDf4h#tn^HD+}
z{9;G#Vncia0(HVAo`C2=cVI_>&rIf_P#i3QF=rsazoHVvut~?s@FW5#o@Wb&j`Wzg
zdp;J-@`k!j@fJ<xfcQiJqi*wc*@+c`t4UE<K7{9kZ;r(Ez0nQuUuHzKd2Pg&XfDi=
ztO+|_$?}(eoJ&iLSi@@cLtGgwMv?$H(D|8d43D3XC<QQD`?~@4novWcj8)>-24uvS
zLblRab!qG`Rnz$Fz%hw0Pbk9YIUkXxsuoFNRat9FJ+)aBL$+k{H1u#`Xi#im7f=|!
zhM>WL0D*DzgWm$D+z}>62uT8U$D1OL1eY&^d2)ClC=(nTfW%>cVxekN#{=I`AArPR
zC6oaORf}Oc-wrQkC&J6IQ<Mrp5Ru7+jgwFtJzaF**jSj4h2z6fSmr_ZVz3NJB(kgD
z*hW%$VOgXN^#$t*Wc*9zN~;X%b1m)0y?q8Y#$RYiGuXr0<%S1y2MzHV<e$NU8sKtp
zXz=h5Qdugb!*nbRiIoQkB?(><!62YvMD{~HN0dW2O1(qeB8|dS2K5nWo$~49mo`Nx
zWAj>s{$Z19<^AHGQVnL4yQnooGrpLpMkh3;E&f#%ULRDT^@l3@U^^_n@{bEww=p8K
zg;&GdB35n4Uka*P1H^=ggosZAkT|>%DK8O)eNte4BHm-|a=3VaM<G!j0n1P!BGEyF
zzA#P+mGfkB)dqcf0@N}@J*5LzUed3ls%9~ky8mz}JU&q<g9Y9~;!}3|{!_{kt*44b
zLP>&B;zC$QeeH5Y`-n8P(aIWyi2MhV1UFh!qYz$GE)$9ad8izg`NOI7^(aM%_VAGp
zQ2{HUygHhtElZ(8OqT}h6J;p%NC~J0>ypY*>W}6%p<!hqyk??Qz>~vj?a^JGt|T$e
zBA6!`E)5n5h<s%uBd)8sCbb3zL8FjT-$>aMUD`$}g4d#tr0A>DmnB@aM9|0#Czk-m
zi@4iBI00sgc|wU^6MrNwY~y)$AW*SWh1^46kr-nRVD6@p)cV=m+uJ+$=>z_2Z*Q;p
zUq=Ufdp(CfE`444^zGx~+*i-u!Nu9$Ne{CB;uf3nOT=uYp8Y>=OS5zTBR|zpyD`BA
zAVDHu?nd6@!o=5~@!91D*(LF0c8FANH!fC&#F2eCQ_Ix4Df7>6#4=0}B8MS2$YQ83
zH#9gnT)ip=)?s2`WkLfFWx(-wAUsj|X|QNRY-%JH(kM%2ATH4&kMXR#31W3by9t76
zF;5Di@kpXbfK?Ytlxbf$g(sGZU^hAf9yELt2pC5m1fudF0vY@vQ9>QyC||>JKJiY#
zlk+rQVvmTo$%rgL<E>n*Br5{L#g7*z!2*p!A|wu_Eu|h^526g_oPnAAZyDVGnt{~_
zDm~PLrW|t8OUi)bgGzc!8d5Y-Dn(>+%4^~olg3+82BR6WQZ15DM-`%8!6%00JQ8o1
zO8lqo*Z1E)`!($U!@!1jHX8qr+Gy1OJG*H5fBU|U-~Io;@$3GJU5rp-7sEs2nN0lq
z25^+0m310Zxkw|&oVkZRvpW>XOM$|LVi-xpuc!k%%2CxKE|lryY;Vt0?mJAuiUudj
z{UrF-bJWAaff>k42_-06SXt4PvU9M9tgV^dp^-cxSY(B~2ZEzhu%H%Vq9PcULQeL~
zM2TD|f+8T+Sbm~R1lgjHEdr^JF11aDSUu9><#H*Pk6%NL{q1IF=iunVwrAV39o+ia
z_j9zvk6p0iNriSv4t98s*)AUDiRAHP@zj^2y*&$xa%X~tZ?F`GaVC_+0p`f*0u`6G
zwzd#pR9VWwUMVf6GFNDkMu;{8oCa=@rWQ>G6cxpUNH?y4R@GTv&<GoUlOmKu4oo6r
zCL@WK_`A0Q1P-#r<>p||1S`>m7#;1I_}U)17l1k}P=1XRn<x^cve|5*1oD#z<<KBR
zBIgOgaS(XjFgb#MbWJ|pU#m2m&1Nwz(onukD3zo5Dg@<Nk$4D|BT|B<PYNz!8X91o
zL`}tmMUO}Acv2~*+bpJ9$2=??nV70W8hjApEXIR{12GLeEIgUYfg(QqA@26**%Pvj
zg)nGk2g_uLjGPX|xmTZ`pu9&PciFH2Vzb%weZwL@Vlb7NT57}g+U+!|hcsgbL3Y5?
zOA(<&ZmTf@J(&<hvI3Arnp$`nOkxE=vyWH@B`~HcJXvbv{j+Dr3jfn)@B5GV(fWT$
zoKTWNRt;M|B8mOtBtXOd-@)F+$&u>+9qs$N^!@Jt|BYW-nl0vz*kDx`WrLB&59?8$
z(F0{<Fi}**RbCT<Lg4{nNe=k`vz7mKB>wB<4hr*OOnHQSo*agtv@{L+Qdow9(<=Bd
zTZ|-1<RCW7$go3Ek)2$GviUN(79DN^ocblS65v#v77C-N5Rq{CJU$kDf+c6Su&@9(
z2eCWRLpT<eaq**TxO|~B9+sgH1R)Z4CMG9X0))|BdGa&$Oc5sWFpWtoQ=vo-%OpHe
z2qKdY!Q_jPqAiIEC2=A+OwQvc_=O}n4-zG!a#)5H$B+1cBHY}f+_VHi*8qf~B7%1j
z3PZMP8qKYacb!71X{z%zyNDAfbK1N<Hdde1N!mXf9n^0<rcg%47Y?VoW^+dJTMne=
zI5cAnbyRI=_=rgjHfm*BdG?pVQe*(Tw{;{tEe#S%_@YDsOv%aH#`D-1@|A$SfNV@r
znp~2ZmIleCBFKuaxUwGzDo0rm+ZxnxXJS~>$^wKdDco2@mduk0U;%D*ArHvX5?_e~
z-+}5V1zDi{cvuX(GqL_+<q%ZP1?QRSm<n);h8!^_lw=?eh=mnnLFA?zCaFyk*h?=d
z{#hM{7V+(DLOw_zVK4C%6IX=9;n`&o5{DxYGMcv~j#|V@$%SH}B+ebH3-EViRY4)F
zraMyxC(DF#7>cGu3Z52_9VCMVAgiYo0;VBgv%0eX>bh1*4(Umb)^=9xUe=IC%ptTB
zAp8VaW(Nq^Svc5PIO3;bV6x!HCrT1v0aq^LNl?t$z!E+pz`!!*WcVT>ERl1?ycBK>
zB1q+;!U-^B@6H4fH4vU1;6y4zQc}4xm?z-MiD(>hwYPUyy^``!lp7E81h5Q(ApDpr
z^;<rIBnV+H$f-h5X0K>Fb}z_|S{qXR8qj)NPjH=gv$JdR{2&_yjZ+lK$^%%UH#_+0
zv}_a=A+fO{geS<zXnI*+M8=1Kj{~*vPNT3~Eiq`6?NDDC5@#En1j}SX0c<;vhr+hQ
zWg?J7K;7)@z)W!0S>0DTH*LYyL3lM~e}Iwug0^)`{N{6`gOG|p+-8!P6~;n{46=g9
zV>V6Rs9Uv$`q^7IT%0`C)=-~5PS*b+fnd4@SrGmKvus~ajNfLM-PA_-Kixs4p3qSn
zf}nDU^24b$bzpoE?2!dtj3*FK*oZ}BI*o%sh+?261gkhOF*X(k8=}>00xpv9Ej5q>
z+rgb=QO763sGJ+4tOX&lvFg`ak0~<1SR{H9CYK5Ma@%ms$YTPx4TJfKGNC*bVu^Vv
zw!Apl!^xqqle4|Oy}Qz6h9$;$BVwLVg0di<D4CZEtcBX}lf4YFCrP9CGI=Zoc|-WF
zL@Ntrw-RMSC{x4r5!TTTs|@^^1*F{aMB@&K4C+@m^g21Ra8Mp*MYvGx&kR-XRl>)6
z3N_f(f4z64j2vA@m3_ncr*XaiGCvqM85Et93Z<|}D1lL>#_66wH1m15G)~47z{Ipq
z#Q&wEEOE#vu{j8oWa%gh><ZPCXio+FC}p__^`XuOvXqsc{EOsEw4fD;s5Db$`?VYW
zW^F2GLk2U0nbEZTPXqZs%ozQ%#2@i%Wc{y?ql4D^pM%Ty{XhT8uR9dT6H1^UY{WHg
zE5LMtnT*I1FxY^f4Gp6Z)W@Akp9{d^IW{U6z%q~kP={s^@lY#b1T{o(5-ie=|4G%G
zp7X;9+Nr|5rZtF98mUmAG`k>@lqE{+h{l8h?H*H>P0)C<+wI;R3JV)T1YOV|YKl-U
zgLz^inkKS^H0G<Z+zQxy(NKN`W2s@&WJ@K}ObQY@gZhvC6cD6l{s6aTq*j@55-gFU
zKyrk3@>Sjgg&+re$39r7&BRPCD5d0z7+zS;Cz1qWp%`Y%Q>8G#TErqY7kdCfJax*#
z4&lpTxh+0;?o1}6`gRZH#`Dm45U_(-9dBFfeM}-h0hZ%MoIwFnI!cp9AA474`XXd9
z4vzh>LV$S<0*>~5G~a16K$Ajn>|<{a1VN-BaDS`wHONqCy;Noxz<{V;yYxlLkY7U6
zC>dg_x|pE(28H_AYrQ~KZ|N$^VX>5p*)lFj-w-nDYcF<hFd`uLQkyFPlj69<jxh*x
zl@MfUA%n$;9LAy*8DtA7|CxxwGAP0V>oOPYjfjF+N~FqyESXqMe9;xMz}rie!zd;v
zImE(|4p^ChWkhM>Ax4+Wi-RR{ma?2ijKs3kWEIbyL6$-(<N;Cm1(X4+9#ABU%zGr!
zEZ`lC99~4-A!P{+kYRMef58)?n@XDCAIj21pFJRD@4-{hdF-L4C~yX)gbf7*mHz@g
zP?A+WBsf)<lEJ7Hk)SaChRmO;Eal%s2_SmBLGoZI+Z*mhdZ!+fNJ97x`bumH;L#%~
z2`Ye-?1*>DRHv5ZCY5idd!$LEQmi^KJrZ!jn9?I660A&jIbX_^AksuMUiFj-K?yJ{
z<%xtzusRp%+!ws*9ydWKRh3g(VUqm?;8I}M3*1-Y&SYjV|I={j|GOV8{wIBC`!(8V
zWc|O7gL5AZ{NJ~)lf!rX|8M;8n9_~F8$v!D3dadixhxgm04$WCFh5ZSyFuD<s73|0
zvMg9`!&lcEg3WwHBnXouGF}`^&02w-T!Yka-G~ozL;^nvD(6Y~FcH+dLEtD)-HWv3
z=5VM;Z7CM!$rEL8I1(2pf{DG;csY8~;Cpo1H9avbmkIeOvHXYIQ#O<iNrVys=DQp<
zmLu^Gu!WL1W#=R)B7y^uIOV=;SlLA#SXo^ICr3UN8+C&Q05Z1T<SKD89v_ZP6tU6x
zM7aP-maxUV6gJ`T*a9L(VT*+#kr4GrOM}FTBHFg`^Dsc^!5GaDSSCaS#O_VV!QS3p
z868j=AUqF_tU%)=;O;^0C|;1bI!blf3F$(!FBoi1ZtyZFn<o$;5;n0x&qH(A@u36*
zPuGxCCKU5zsqArt<dsb+dE+B8I0QjNVHk9z7Ydpx;Zw>1Nzhf)Vhd{_MXYMnc9a;!
z>Z%^;sE|Uckb+l8X`sS5af-Gi`G}Z}CSoci;l;sXY(U3}Q*hAOgd*UUGtg0tx)cxg
zno>_D7JhME6cwqep{Pi^mjJe^XklXt+9U3BR37x=L9Fhpt5|5PmNkt8ES8GEQCB*H
zWs62eg_kIghb3}+n^n_fK(3-b3AwRK_<RJ1Whe!RKLaPFG_7SR4@Hv^nSe@0`BY6v
zTZ&EZkn%Wn?L|yY@geefbuI;ChV(#pZ2?cti{YV!OX7({NOBM&2|-YKoD4?Cizwz=
zS(vR|4x(GGma1NBPB$!)cZ1aL@vm)VA~%RNP7uR)Q@_De%j{5C1Y<1+@x+)MZAk@4
z43ZjDE|L?o$&S91`cH47Z%_vD`9D~ggjmE;y)t1E=0g!#9J#tTc#JcT!ZJ+9-5^$D
zO${fC5>2J0QM3aW4U10fAdjQuPstK(N&Ka%0o8z$CZ-C?ATnA<5YHpNz*3DJeW`)U
zg9oT%EI|Z7sT%NU>K3GUIETxfr}{Kg2U4J`M>{1N;g{N~>Ujh0($%HkouxUm#JrSX
zDJ)U13ZXiiQ4OMY9h@?bB9wH65;-ivFr?~QJ0;@6R9|N+1QemGPw_x}O{!|h(im-B
zFbAijdFg7?scF_!(<EJ5+H`WHN*JYB8G=bffJYEugDu{5xljxT3MGkhnA&q?1vXKd
zO=Jy-vQRoSJ`us)8SY{*a<W88u!OXHiC@1*Wg7QU^d+Hm_1RrKmGx+z&f)YMRX1Wb
zNf0??^+mi{>jd-~6BU(;gmU7ZZZsTGeP}_#gQML1@M8f&y#hmE86TF&d2z6ZqrK{V
zATNdb&c&Y2K2QNL-W@9D{b!Dq@(=QiZSsU_QpnJhxuk>87fd4^lr(0LwgJ}AG+Hpg
zYCtt9jt_?k4U|rli5m2hn&m0ZQkN&!Y6K-!QDVM^t0+rpyX9sEendpiq=eOtWDdl9
zG7T{wt4*!jO!Fb;H*PwF0^+<urM5RtlT@Wi4zQ`yNzDHWQ;Cj9^QRFV6^$uG8b{?P
z>Tb;*AfjSp!$c?wPohS6<6;TUR5}A$0s9XQ<P7A=`SB1dn%&C^LD6)+RBFqI)5q~;
z*6dyuELtrVig|G`TLw!JRERyW20lU6jJ7h8V<!4ycx0q{$0YziO&Ri103w0KhyWH*
zijjn-d{3Ql8gofih$lrvB4jjAOvFFxf4hMl^Z2WVs;Lud&J@2vKQ5FFao=P}uofB~
z4XqMdLe`L$9FZa-BrcUKQspyU!$4Q3nd+}1(WsTu!pW+t8v6zQyFrYK>#ql6$m9Mc
zL#A6Pz?KJgG8_|+APIm|@B|~Sd<dv(Od*YG8ndUN=7a*UdPrhU`K)1er!A$a^8e{I
zkMBSAPh<U0gv23~Z)dOvY^fyfpS027`k!MTdlzRXt^I$__TSh4{*B+%kf6cLPE0*L
zJ*M9f?@&FxAAZIDXT;Fc)0<_GazRf|ucdUzXjD&+-5vX%e#)PoNqTzOdVbzs;VJsh
zZcbh@{L)qX7q_|XH}_Z^v%)Vr%-h7vJI`w9l$r4t4f>8d=sok`yP<s!cH+D6n6379
z-~0X+?~#2grvT4Sm*2n2%vs?4{8>iQE;Kc&<LPHx^S8gKezx~Y=EJ3X>&wDE56;%p
zXBZfnKpgcSoP&&d?!o5?`P#4a6k*4ubLi^aXB?OQ-p-h#{f^Ty=qD->@W+%$PDi#Z
zM&C&Loz;P3+AZrdemAx{;1gs+!<9bV&y}WSNTv@LADwEb-8fX(%JN5=mc7}9t;}3E
z>uEP`kXLb^P98@M^D0=DrZghSc3j$pre%{|*^ZI-4>D*(5|T5w1x?E=vyhzWOGoL^
zh~&6b_I)tE561Vw_&yll2jlx-d>@SOgYkVZz7NL#=wLtv49ms2=Bsa)ygzt)_+-<9
z&q!_2_^{*=6YCF)YL8exz0IuOyR&xQ$OZkYtFy}L$342Y^+)cbvVHBcWVK~!J?owg
zygu<tLH@^e8#}l1OyBfy`-RQNUFzS+-;ORhl6CXXjKq>bmQNQ4-$!T7SghoERkmZ~
z(rYnoaE>0E#!C{IKI;+(&$qkf;-0tdu(+;Ic=4^Mx&<N6CuHtBu-w2|RBO9D^m5j-
zWXaEOW?rmw8GGaXz)JJQnF&81H8wVH`5SZie*5yZ;)2Qh*jMW><*Zz{zbfL|nDZXf
zCj=9{xB5NXF>>miNj-2W%&|Osc7iOcF2Ble^Tu}p`J0}f2vJPnU){RA)H(g#osfbj
z5vjwU^h#)xSTq0lx|jJi7cN}dJ?z9_gVj^7*Y{0+dGXR@)5&g8VF~=#4@cxGh5M&j
zNKWs%E|2t;9px-PYdX|t`PlZQtlC3|lW#?SJ`z{yQFUiqX2sUAZ8~g_{r#+b?aTTJ
z6Y47;*4HAvqie4G^?v`Au~)i9Cl!{uot|nsoe<jWKKgL+AE%~#CYthTXJjsp$Q&D8
z69m`XdNkeGJVWsCdD+6Mm0e5^we5Sqq-S*f-zUAYqTl}gaUFNrrn(dJel+XmwyP{Y
ztmqfzH2c*sucB>#*WJFjkmLbSdb#+_)UN*T&aAod`q=G}pIy^;KOY%3p_*N0Gwgxo
zvRzZk10RgM;Zprq<-^u#ahHy+-B4hA({tx;$;cx;Z;w!_@kJx61AoS@mFMBi_p>$W
z_H@^)M^B_qTXv3|nI8KhV^GhVXVH^A%&cG43?FJJv3cqse?4>g>e?4i7OZ+<b6YMC
z9OS=uuTpboN9)7IZ%;4FZwJUn8ckdgk-~|qd3X2mitB~1JOhNo{B}-f*{9sCK6ARn
zGyO!$@mX6!7P?;zT`>J-In)y8D!|C<036ea`759*@G0DIcE{e>dvBNVZ%0?3cS2uw
z?elr}ii?syb9f5r)?F7S?HXNT`K*6wkKQG}jwi(4v3*F+i93IEY6}<}@;fIifnO64
zR^0V(?gG#ERWtN6dKI0N?mK!m#^h1Ns||x=TeS*~XL2KM$wX0TMA)>XAEO8j++thU
zYQggleckXL_ES{#xG?WWvw6tpD!b|CS!17^@;EW!V94S&teuR#$JrUuF=Znc^dG+K
z!M*L17kp@&aCerGn>V2J+M=-4f>l?YM*vD8Ohwht7sP!#A4Wd1@&>+GcHVtwHPj;b
zS5C^}BP}k}mTrD_^_cr%k!R_e_U;oG5}J@{m{;-I{k?Axptz!4zso5pnbq4`U*7Ys
z=GnfC-W!Jwtn)E9TH0Ic|KJj41|}!m9#xFQio*isX%pwSB*f#z=@`^Wsi7wEw%a8A
zckfPr<H?Pzd30y0r|ZsJ6&)DI%zk!!oKqF`__%F>$YV#TbZyAQu7lbsmB+~-ui|uh
zRd;;o&vsPI-|<kob;B8#J#`mH4$8Q1`=M`7k7s$Dn!?Bwy{Ba^d&?>wtqp-+oXqD%
z5Q<&?!7#7l^vk=$@qgdh!>HKzSB1W@`Np(2Q(cqO)(Tf0cXJNf$XV?;dCZ&2&Yw#k
zR)yw9d%XO8-*iGCgAMX3+*SxW<D-+H$hkb%|NWUd>GLd4=Y)`#uTNZv2sno_Zkicg
zs+1l%kbAi<@xi`H%X=+*I_S53?QjV!Yaf#H)MDW&ARW#CgZ(o%J9mw0S1Rq)>nE3a
z+;eqzCz%=vf}y<o``dNfZ#MG4*6cUq$J!6Yxh{-g9GBj_`z97=!9mfY`qJFw86V!P
zIP$}ckJ0a@_4M_I+!WW>6=kHpx)+u_qKmNK!p#SMtsvxosBK72@A-cu;r$t77_{S}
z?dtqjm#0-u4tmis>i2;s3|@Da-oCixR&-z4vCkVjMRYztA@VFjI0lA3Tx=B5*AFPf
zd1%wRq^Aoy->$p4-aTyrcYZ<bl;7J<34_v?f1K+2K2Q94({4#zr&-L}A%yGeUD(QO
z!^X>a*H;*fxwd$L`9hZo4~&z8KM9u}GTLlpVpQOqkz9RZ-A}d>+ig9cY$|jjWG`YI
zmu?<rjBEGMo*@@f1W!)Ct~C4f7xG~E+FuNe@<tTa|BaMwdz5@3dFDFtTI;J`USkQV
zwPzfc{uyF67qD@VWs-lZ=4#Hl+|zqjRxb1(8j)<WOizIVi<AB?s-mQ#Bw^<v*$|V7
zgqzrmxd}^73O<+Qip0V5C%-IZ=GV+c?LO`un9XrC%yj*b)A~y3<_~{gTVZa}hv>1z
zU`|K2E4thgXX7bj(!lFa22DQ@cstXfV(_u`j*mL%GrG1hGJG52+xpPkBJ-d2;5?cP
zS)1(`85-wXhWGwQgZ+DNEihkLe|SqAvT^s0?jvh<{KA238O#6Z#(cVbPq%5$y7v3|
zZ-U_=ifqS7W=}seAnEeaj8o#k>F-WuiXUHSaX7=ywy$BG1*b59vHWPaq0g7!dC_KF
zT-TO$c*}nTaXPXS!~Qw|6pX8=TE1}Jk7j#I-#-4#FT1e)Y3fTB2inWnIkV*9sRvn+
zX(^*KTmMR!h){N6s|BxHUd+IlI69eAJpQBmI^Ul<)gO2}!sP8zJw;5*R{1G)o|pHO
z-m7_--lcxV9Ng?;Vsb}?7NAWJ#gpAp1x5AO&mQxbo>*Pfm0_^OqN@DjlCm2$FZR_w
zdDgXV#uU6>D5oQP?uBt7pq@mrk~z88j`X)nI_`wmM31#GF!HvnDjA(T>-M`tum0jc
z9`Nq52awOv-Pw+jm*f7f0ZQ$`2;4ApYf^63lXc5o=2uU7A&WX;U?dn`nEU}gb2@G8
zi(6}K#it&-zJ6?t*Tzu8te)3HFzG^@8B1mrwM>qFe`nHq)4?;Qb51f^tSha5w|2pf
zE24mBUcpE35gdRSQ`eWiftaMGnyeP~58d(MfHZm4Lc4R5x^o~)M(e<`?c<)tSuW1C
zygPdpZu+42jN{T>!TJC$nv`%7mM2z}F3K8H6;kuV=%8`>IeyukmWH+Aksr>lxXpIA
z-xv}<y)N4l!tG?0xjtN6KdNRbKK*Prl_XtHTgTnS|CHEc4`jAjPjQ2J!?mL9^RA?e
zpKCpanLph|K%=E2IUQf@v5B_8twwvJo&E)T)9zMX{S8ffh1|h3yRdShe}4YQbssKW
zxR&0pXyM=qVgTM0?+o)QuDNV61Ux+2Qm&|d()#kAq_j)hkL_YyX@^latvNK&JY)A~
zWN@dSl0KMJ&Lk%JD$Kwhg88_W|3x8f@t4oXSP%D?pYvgl$f|Y_2Ra5EU*^68Ct9C;
zdiLBYU!tmuL0-jfMdb$ExOY+TXHG8ryXJIMyN$uGhwm(H199#|D!4(Vzw|HJwPVf0
zr7f125x(WFk=20?M~3wVHOE#jKV-*F-<JI0L1pxf36u2n8NxP3xx+KyV{<#_7A1vS
z;+}dMyRg+rc__0j)^@4E{(EMBy;%RV^9JsiqRrLVOzPSuMR2&>HLd4%(=l%n16;=7
z=<m;L$H=_h*Lni%VSKSqw-184h;C(Pe}9^K-2|E)s&KdbRKs0z>rLRLfPz!4W?^mJ
zZ5NU={md8(pnNmRcPwUZw9Tmf>viwY2~iuaV?xd=Kh@!OI{Lvp`HJMkN!|?(E)ze4
zyo#aw*;Zg)heG}9<zCe@EFa#ux#q;k&X_Qr7+DLG>(AGrVW|dJgt$-9(}#-<0)Ax!
z3U>`Vjd{|0XL^6ZdFG;B^PNpFL^%4+E$h9OqK{kFY<GC|BhnRDl4ET{a{Mo+KVkyI
z7YN<ZdvRbpa>MOiNmOZcwJ(^iW5-^4?|HlGeY;af<|f^^Y>u}$N*^vh7&LPhraqjh
zhVQPtOieiS1_Mp^tG9Z!fjEU$jJjSMGvh8D?autsKmDjFz9jO87pEhex%H1+AlZ%O
z?-tMOZr1wc@Fd}|qG5dpX6q?V8oy<ieX9QR%rn=`9=BF*kH;q!%s4K!USfX}LtTm?
zh9k_!w3Tr3KN!chu;65K+A};(Oz2;Bry_9h74Hd!m;2#1bz`<;<b=wgGuW&zjAu*=
zn`C(Dg88!4!R@d7c@3*~%V2-IKRrUW$FH(tg0AEk<W)HKS(Gyn_<ghZ-rG+7-Iv|J
z+72;0cGy2#PqErCC$J2Dacj*oPy4hVapST++c7eB)#Y-a#&;RZ^;|Np6fd8P%%~k0
z{t+v%wY<fJ+S51Pd!#?AxqC!VhC|0xlaQPf2W&b6g!IWyQ6H9l-8Jda{ruEYd*>v~
z>sbR6dd+FH!;7qCGe7+XP@-jFs|97QE-?%Pqx++v_ILhzzW&pL`<?IZsc8>_j3DD1
zp4-nX^_biKo-Dnavm7fI#p%d?*>UVAjG3vJMS602+Ank4-zi<*1(WA_CKd`@EwMCZ
zid|jxJN5+qsu{!S_#%Pn3AD=DaG<{A_$)`m;`7mo(}S}06k84UZyg`|JiqYg1*gI`
z4#UJ(ZfKBK!PdJ61L>D>YHnRvfAe04JEwQQtqumh6-sxMWL9r`TOgf5#41BL9g7A9
zII}>!(bDFY%g24fx;f~YHNXK&e^CsMy;b`9&Wel6;^hnRDkC@@i?+t>z^1k0599S7
zd!8k4eX-~4q5Lbryf0#4!1f_OVQ%KEbDp?eV(P=ik~^urfuaYDjX0I#d9uWF(SijN
ze6sPGKfYpRNy5$^&)%+Z$31^P#&PMP@fX3|$Qx0(TT*%S(1Eo1)sK$$%@+fm#O+$f
z;|r66Ui5yx$VX0q4Sl$H#oTeTF=k^r^gAz=UVPnV?+H8q*FF9$1zHwoDCt#p_xbSd
zxh`F&SO3BK8P9!Su5oCT7(<<$JO<OY+I&OjMD&o0dzvsV4TyAlx$V4>S({%i`|I*y
zt236sCh0RAT3Q`AWMJD0qtbp@;fAx$sYe#NALcHYe_}`-Hq#X^j4&rYBkJC?ly2wR
z;|OVLwqvB<--cj96&c%j+P_q+aY?R}olXN%oXIF#G(IB5H0jD2^IJH29BNzGYUGoS
zCI#3(+-xu?>4d%vy!YqI0f6Vt2Kn5oB~NxobsdoS_iP+Z4dHZTd(B<mn;6W+hgVj(
zwyL<AdT95w3qJviFtRZD!-JRWJEgApP&4Utr)b<-A8Q|y<Nt6E2DS{0KIL+XZQoaR
zzV*}2M?o(itN`&Nr#+*^;f#$jCkES!ZG#r!X2O<nTq;~-jrE$-&G6x~MeQXgx*j^T
z#2NIdGox&2`hmL{Ti>M2>I3ljkmVTcvJ70%(gd2_LLu#3Z29oU+?oE~D}kR`ZJ598
zeRk)=55^{roq`qLo9!6+WYt+c9Ld+t-@S9>%x6)Vqc2_&T?6`P)AB}m<{{53v&M<U
zNB<U{lLEH<8ONog7YFix;be1m8!}fh!;(kbh)xvGXB*F)1pGz&;)J`^6*)gV9?<m(
zKs<txoQ~`gG(mthJFom9KLImbOBaj-`4-Ly!~BJ4a`7&&wL!nR`C}5>g_)B>eL7p{
zGYsa~gj|=4E^cY#GQaxhlS_r;L7h*GiibZ`nEse}%5qNn4;Nj4@miAY7<nu9MhYeX
zNHK8vhH=*`F~s@#gi{+JwAPFY-ybWIer)OX<}sKI_aitR*|*;yZ!s-eR(^Rg6VsG#
zY{tyrftK{PPk$FxlCX2$iy4-VxFs>yhx@Go<2v5B&$j&Z<ZAAOc~N7ot#dpF+VEuT
zJz-ZLf0Mi9`r^9-DyQOW>!(dZa@<=Sz<tHu@)a3de+b?)z|$<#cPLPiHZ>3KcOKC#
z^5?o;K?Y#%Ni+4~;x{EJ^KgGJt+}tLH2c)k)r>y@So9C=Q{ZEBk1Uzhp{~y=FWfW~
zWjjWecsqmfe!-kL*kQ)a+GDo!MpnL=aAq~&PRM9+ILaw?@aW`V<Q9&$+^h>*UGcMD
z0u<5G0J%U$zp($bUxa1_wS%yCs|@?^UOsn~9DkQ=m{+m8_oF&O|Npw|n;RqD00zv@
zv|rt$ocTNE8!tPt2S?-6tO{F=^bQCF#x%>|a+hc~!Fi@%>D%)zc>l)S`Mf5>xogy$
z0(4;kju`qdj!VxKkHfm`Y8oHErvCagvkCL7rHQx@&$G_1dv?C{<vo{gT+X}Ku6TJn
zYGPIq*>Ziq;;~f+3;uYp!rv1QKNc~{7N1Y3`@O?1xAC2AKm=x8*vf3xj!~G(Y~f`1
z-&_rMKfPz+D<|C3E-Rl2d)$idyJhqCUrtnt_}wweZChF$m}e9{3e#r)vBy5UCI{7Q
zycm`6*d9+OZ7iSd=gG~8_uFy$lJ6kR#9OFs$d$;CPv)#ToyNT9L*$PX`Fu8pG%9jd
ztr-ybv_G&hLpdGU!!9hx!p<R!fSSy#=S{HN{B|j@L6MQrjVk$reLmLi9#7ez#&AwY
z_8O;^T&%_pPK~_0^NIYuHGfXO-4>`pE2D{VS(8f+_1*5=^W(|&$)Ig4kZvC^hus!v
z#M4<eWpU@vI7(sI2=^DiG2RF66+Ycu?dRV8X=`BG{5c)jQE&d-2?A1%f5ZvT%X_-z
zv##u$Zn^{q-Y1RTvdf-LpZRiIhigOA9dVQt+PkpTf@^CojK}28-t?wsKJNl@?Bu09
z1&)5%M*W@9v!%OlZZ4Q;2<*F!k<|g1XF5}%r_UH>+&-woahI&WSKU3%jx0(s#zD$L
z&h6vtdP?d?UbN&s2RiW1Ag^MJ%PL>*Y&`|bxQpAams4He3!X8LO9^<68Nc$)hY$D+
zcsvfET1VT$Rtp|K?%NOZ!VzN+7mcqwlDTS$S+85T`Z`+MZ+i0a&AL^I9|i01W~XO6
zMn=b8>(|l*Iy+i1*EZ44E|oQRWZ(}zgu+)neC_GH-8t!9{{-OUj$#)1C(E0&u^OeA
z-J2Y+d-;?FR*PA9=FT)_?2}U!UcS!@xMD9bsZB$2PQ3rr88e%w+ZYA&t*(FKy?lMb
zDSfj5M~{V%7%n5z(f#l2&bV%zpa5F&X)veb3s2Kb06Z2SUU}x^-i?n&_UvRaJ5J$s
zFRNe5-QaFZ`aXJf^*3(xr<!&C`4jk8w-&6=dipkNZt{#pySK7F?To*@e)we5tU7Mu
z&7v07Y3|jxZ?$tT%S@}`c~#H2U^}_eHM8rB>Oap+{Atg&N6E{ba!>B@kUx93HsMWw
z_rpPjj~I3~>3<aMx;*Vy%?OUu&2YZ?LeKb5i9Th}IY_adIkE1+=QSAvJ)U0bQI-{V
z>F61kJzbAS`@cKWvd5;I+piBa+^}ndwe93NhcD-xt%%wlF{sk)`I4?bynbAJE{pr2
zGQ_1-i#^FhUn+)s9(~fklbK?LF$M{0yZ1i7<>OOJjVV54H78+t^>2MQR@*!s_SU}*
zv+a=WnEnhje6nU^PEPCJC$-L-bob)%-;8&f-<JPTF?L|`!zm?+kM5Ul=-YX|`9hb}
z!K3wBny*ijou0jXZrZyw#g3QSZFplajg1+jki~ZGud!}f_XW1px?M<)|J8|)*}!C*
z3}Cb?T{7ZrZxd$QA-{9Vj<1^>Sk@zbp3TLTN05)K^e&>bQ-|A~Ix@Yq1TNlpFYw5Y
zZV~3CE!`zgSH0Yj`QU?LYft+P$n9y!pH@uyJkB}HO$JNWz3VvOM#oP241?X>3tL_3
z>hZD%C!6!c@ZpPP*Rr1NoSs>++>0@_LviA>Wb=H7JAe9=)k&XszK}E`$8Of8KHdE4
z@|WJx?;`HE?OoNDs>i#s)~D7Tnw0x_!i20NOAo&2>Sj8rynO9TJ9m4#eIHjB0cX3O
zaa_7tX6&1-r?_u4(QZX)Nv++mNLl<`j?7@cp|p7W)!QTXm<(9a;l%{g0h{M7&9Fb?
z(elqTQm5m`ZOzMe-3=~VRy|$+Ug?6ROV71q_?Q{JPp?V2xumpkapiCMo7+L0I|=%5
z@kZ-UnErNYIq~JuiT<}&aE0-+IYPtzmNy5U6TdxPA105;h#$XUMZ|<z<Cfd+ynE-@
z<F*A$*(Yy?rX~teKRHG?dC}Vi*>AhdeVd0_kCs*ke0r>l!mQ*7DDvrqN4#?zH})CT
zR#CP7e497jK2=^D_U2uXak6W`v!GS{D3ia_Vk&R!4cmXSHh)=iR!unHuWdjG<4}iU
zbbpq(-<B=LCBN+i<|Gyit(@llFc9P$n5&otNX^HY`BU5;c0ROs%lR=P#`}QU(J8a{
zmpSj<DX8yK&|8>QaOSLOMK^T%yHm`;o2sfNm-LJ_k2v1ayRaAo4946er_UA%t$-VM
z)rX5ur(RvGr_XrYVYPVehXZ>)PET`P-j^}Vcw*eb0j_aFic7Lm3|8%qn2_t~^YX**
zIfLG;TQzC$mY)hT7F2Hb-P?Iw*&{~9_#T!KPo|Y};{kx3V^`Q}!6(=AgD`0AHTJ@}
zzQ1K;9-Mq9l!b+6TyE{jgU{=)MQ`0~bams@^~T#eT-$M3wE9}@)ph=v_3NznPK$Op
z2Pv!!a)L_7A9;0Z^lkT<xd7UjhUB<M94u=Il4onh1-HX9ecF#~bIl^8y&@W3Fu;*N
zwnlJaMaI^r83QfSjufU0maq6w^Xrqx$i_||o<6QS(5~0?IV(E-Vls(S1696V#=m#d
z(;N4?##RUBr7$L1a<VypFakHstho2fu*m-Lb2%=C1BLzi7rj5Q9kFq@-?+S5@Q3@a
zhtb|9Yj;n7e=0MpdL3q<Zp>Y`#P8{IgB2z<*Qc3{G2XE2rXLgYq^a#fa!y>I(b-O)
z;o7#JTvmU;=?CxerwRiZQSFQpXWu@x`_0^HWP{tbeix^p+gv)0V;BtFp8P?PTCr<)
z?&&=T=8oIF!#HiEH{(ED>mp(Q#o2qk%`_HdIerG0yG17*sd>uUJ@%}PBB<rW2x#y2
zyB{WfjCJ02ae*M&B(HolqasX(z7OiSJ>5Iyon+OVtA`C(ZH>;<-<%+-8$I<&0iKf7
zhl`(`TGOTt#JO{EqL^D-JKTHZ(8bRS%d^K{`ILH&KR0=X>nN_cz+$#Qk&#$(z~RjY
z!?MSo@2+<ZK$f(bGO#fC&^)K4nf|X&uRwr?W$44jFFKFI+(*l{@xp{u{?)C+BD=-U
z<qS61-?ex^l&4$&MJ`@xlZs3pE#xdeyW{iGX}Oo{690Z1;Wp>_j$ceBm6xpJ{?xku
z`KZ&^rU7h*#qy=D7x)-T8FDB7!15!p%xQPma+VmdS!Z{?Uh8R_5`TQw7XHl1c6m#q
zEoZY8Qsh+2>t*Rlx9Tcd3^nu1EMu8WDt}qlY0UNTxkXXFNJ|`w9G7;TxTPbe!0b)0
z9zEd()C_BXrNuQ1X|!TryR5b^YE1LdYd0?Ey}dc8-bg+i>hCW&S9*2j{F%k*{@gPq
z-BW(&v}aTlO}d_oJQ;Uwf;m7<SVXc5T^VO!Wb&xE{Nl0)1Gcm|G-<Z;nGQy`uY438
zc(m-uPI-S%u^-f#QSno)`Np(2x2*S`xoNj&VBsT1#czkX&lfG7nQ_DlBuYr;E1WrT
zNyoh<wRS$-x`f%-0RM&5Uwa!}yeOmB`*zEEhJ-6TEO$(f*%onhSz=z*nH9!wyP(Hb
zJ*^*c@%|+cJm-z#bSyg94(bm~{MoY;Uhn#FU|Q*mE0E#>qk<`|c~;VEN4osc{n8f}
zYu~p$y0-jttw;T>x1U!!y_BAXOqP{%O+8<f)Q|Sa`PodL;o3eV=S0OHogMWV9orZs
zo0vOq;L4w7+E$LZQ$OPN54pGB`J_A=?EB920A#Y6V>NuF<U`HoMcwASnR%m|Yxk}x
zLpCfvys}N)=7%7D_(>lw?w5B6)9-VJ&RwIN;y<<S9`!b%|76DUO`Qi^Yu9U!&zVuo
zwnwLyD{A)^AT=c)k36WV=~zAcWqwVV%Y&20cn9rUnjGDc?HIYE^2#G4lcRr?-`E=_
zDXNLR*gNxi<zOiCW*z!`b=3BVt-B8V+(8j)BwBa1>hqJ4FPBzvKe*2MS$L7LGdy~)
zy#7Y$A6vm<VMrf+xOl~|aZ~j48Ly1eH@{kz4|}YLewyIfn$coiX4TFPcI!R2u<|c<
zn8X=iIKq5P|8ZBRVE$<G%4rV1wwNCuAK`hbvPf_dLv1<Pj*-p}&siCn9G%4Rk9f1r
zKhwOrE%)Ohvqw>x9|}zSZ;QXZ{_?;C_PZ{>S<Kc`Nc9RzlAmmS^P)AJchX$Y%6^>U
zTyJiC?`=JxjfnuEx!D%Bx*~K$aI-LO$*f6nBYgL6xstiVu-n23=!b``Z&sFAlx!+A
z2r}*>?DzJ;;pE9dr4H8zcV0Pt%$-HM-Y*la*%|?S@e_l*iclBWEdaw+Yo8|7$zC&u
zZG61FV7MaUNap)f9kQ6Y)kp80=ASf}(`(a<qp$0u-%ZY(H!`mJC_i$T@x-$AT?V8=
zYg!g@HG|A!ZHz9>mA2lvdgPmHXYx5`92WGizI1kUiDjSd&OI#)swe6xoD4ffbpGr4
z`nSBwXI&NdIu1+uVakzJ`MU;vScDNU3(4{S+~x5v`ixzsqxK+4x2GY8wk|g7;RM!e
zZeFsR+<Mr<36%~hj5TeIa(i{#`})vle%ahbEq+%V>~13K+5ZQN;m3-$Vq>s9+cC0e
z)$KbiO@<Vg|M9#&$?0VZoA21}!RAH3#XjqF<;LZ_svDO*7zU?%n+zy%OFgo1a$KvU
zC%ukwVoZwHe46H()^nN5$~|Bq%nw6l*JeDz0-4W)@7zm74sS{_V|8X!ybDFx_4nQ_
zp83w4VX);F6UpGJ+VgR>;gO4G^7Dpy+n(LJe(=?Yt+)RE$=54ePa!h4Ism6-&YXo!
z^KGVMxZGO#MgOGdaf6^6D@w*)uVmU*uQ{2xtS9Hr3P$3o?HwWpydHH))TN03^P%hO
zd`+2Rvs2b(78;(dd^Cf(!Lndc8n@N-#9u;fO}drY$K3j@_fPD8y|X^e)l&p8ZLYbv
z_aEQm(qP+Vxr6T<nv}cS&Z}o@#t%MZD8ex{7}qJcxJO8TvtEy9p5OU;ZP|tt-pi@W
zMjuV#L!3e<M#Z9qE9cLw3cU2TTlu}mAF8hYcA(PAeeUQTAaPb>kXLbctLaodeTJFY
z>Z0qeg7atYjb1r@j;~^0yN%{sADgp_*rnzlY!xSsyC81wKIH8Dab`WQQ!c-@OKy2a
z7~&?EWj%av2(s9n4D%|^_e-b^$maZDxc^l3%b&BN`maNWg<6{AXVqTHKPG-rGk0Iq
z?b$~1VTFHgfFBn1GA|6e`KteppC*^xsJS6Gd(TF?gXH0H>98l`mgwm-y0#mYEcmd2
zU)K5h`N+a;MiV=id$?qc8j?Hf!S5T4OpdNBKmObF{QQsWwspDu)+tDFeO=MbF<XDh
zO`GJ<4&p%j7{{e8^SeZK=RoER|MzE}N4(n5@5+Oi9^As@5Aa5tRL2`X_A+-@3~LLW
zjZ%b&KfGCSL}K&w_fPkhbUSQ)HtSjP<!;fJZ@zt<33874*^ZH~Y_?+&=V{}USDn@*
ze|Rvy=;)!L#pS0u-2U|OxTm?>u8nW5-tTH)bU&(ax8w?UfoEmMpIUmJK5}EPbj;{2
zSwXknGw)&8CdMGIqODU0w}IK5&jvju^$UX82h;n`xi4*TIO@%--7X1BW<5Yg+Q%>q
zrddnZzpDB%A^NH3yX$@f?mmuK%BW~}d24d8P3#;YNSg2NRoLpvaMzcZ^xhkM-ut*t
zTDh^`$cmUABcL0lt3+=m&)mSgdBXZ-Pmq{-67i(;@0y_1FD>7lUBw^Ioap&6@b7mI
zvR)qu2DX)@4;Q!HXY8NNDK*?*+5T>1`t*6D6jdoVUZ1KLjT4`I{}b=6fsuEQvu8u=
z9~@3b!e(@SGxK1+(cNdGhUBac4J-kG!$BV|p5=NKg9<)vt=eDnwKZ>3xj16IfZ3{3
zR@9;Sx$W;v+r}5>=qaYRT*^MoTwj~%m^*nwhgIci>$tl{71eYFYlt?5t;`%YVXjD;
z!--h_{7;{<>F9Rb5e&m0X4dl_%+FnNeevlbOwYC$6jS6}o?CzIZGKE7<BYLGvh^p|
zP13a{sry@k;JdP2NRE5Kv@1p?kcoohA92Fi*nDd08r#Sf2A>iA7wrs-jgssF+d^lD
zDWsi`J1iOS^Qh|Iyt{Tw>=~=LGJinV0r|Jj{jnLa)jpWhu_$H!7#1hHe3IdqYl{n(
z)IVKlc6EP`!O)E!9+B^BnNKDqw<-ID1C3Br9V<TLJmX!TOZS)dy!-OliRtF8&Clod
zeQp2{Z`i853V}Y@6K8a2f#=B*&(9rpOz|^$6p?yq@KfJQeG8`aKVyJr>c%Y@cZ*v$
zu3%d4xzcSHC)XH$-t%bl<$(#7TMs`3Lbuh2izTm8o%9(7*E$&WEnZdHsZ;&6F$d=u
z-w4k<^k|;l<v!iSE`B0lkeFSB{rZi&I_1`b1@k^_TGQf{asRSA719ec+Wu8=mYQ9i
zG8{^OS~=A<`AFGX)6Lr$F7vBX5|4%b_+%abl=D8YMxoeinN+&%(N2#ek)hY_t$Osz
zc*er_g-hlq@vpoZ!7wnA2XQ(Uq0u{fa<Vx`3_Fc^lI8OBbj_6utobAE1RHm|HoRo}
zz0??gu+TC#;Z#oC!&?#8R<3^Z%DBJN`vJ*zfu|*_Ee(tW5uA?f>u(a|21a=S&<*2f
z=N2U&ESqDxc_O3rnV&a3tU5pE!P0VUy3Q$o-Qtb;!pl1+P7Ygs&#b0yWLc}=bGD&B
z2y?JW!?r4HmF(5243q2v!=OIqtvf8LxpI~@f9Rc}saMYY-M2`(_UwbDuY5t0t}rBi
z$sYd6!dF-3Jt^)b`NYUQ)2)l-uisbqzu1vsU?d3UbY!QY<Ge92S6H;`-SWpf50_0a
z-E4s&m%0x*J2MunI+(Vs%D~9GyUB~9s&l)`ZbiO2HK)s1!<pQ%HP1@Yd$JcV^IJ#G
zH!EV87k6ItaO98u^fb23J+nu{lOC^r(0yE|-1bh2Z9Z6R-m=Sp)H|1Yl)W5%x%=nt
z8>YN6?(b09Eh}Q^t?1Q*Df=AqBBAto_co9I?Jn10`p;$M7tpK+uC039z9-MtQ}i<g
ziHL1K*S{KZu*NXIcHHW?Rfl(>Q+={IMFx2lvc5Ne@XzK<WK{TfIS^Ga<Ad*~k;V>#
zyEs0sG=6_-hW*?=f!TTr1I#EsKHaju!yCoO;u=FNr1p<Me{~v$O}W`4^x@)dr<Z27
zgJxSPs;XyNR<@d&HP0qyDWl@WkOJ|~&s#92UaOYp=qYLp_ZKW15c%<N;DeC|Qw>ae
zXDTWm*6-eawo}%xQ-@I9azBHCQ4bgGdVjcVfT=@}!pwAlY*VS*tn{|O>FG0sCaa6C
zS3leH<K6y0P47^~>Gytnhim6&=hhCP><?53nA^5(FaBw2{eI~5l=nf8_rAWfU+`B!
zbQ_3MxQ#LW-KlPlk8}Fv9*a3-V=sFpomYJR1-zmiG#j&VGXhsvm_R1$I5k@i7nt^M
z|K`_G#eW;r=GG-$eb_pqhvnsEL+u#`=X;vGfZlz`DSN-6W`yX+I7N)9(V1hmH35;=
zk^<^_aG=eM<I<_iI(6;NfgUp|au3+C)B8O9bCYy)%ZbN4&P%Nxk6xW+U}Q2Rhf{Oy
z^OV%qhm)q5TE!|bthay7Ku1}i9oUkh4;RbN6x?bDh4fNv`Z)tWHrK)K*Gba{-+3|B
zGipm#(3(*HNU&}-_QkC=WeclTrp&su;-HQFga^itPX%~ju1RK)S24%QY{I~7&SC@K
zjp+^#A8eF5fK+eYrHwh0_5QLptH$7?U)$Bl8sqB4oli_SC_QV+idE!ZuIuZ!>n}Tu
z(Lb{tBYUk1T-DOVYD2l@)7#ThD|$z^V&tCQ!~ggy@XtWob1hAv*-S;?;47_`Wcs(7
zEcqqIboJk_hdGB{#A2+FUixrx=&|Yk*_<(ky>_N|c{68Z@oK}`+`6DkJI>t9a@+9n
z4@{SaD5O7Ls>)kZI&Y*;Myo5COBo(VA{`Usd{|CFt1y{h0gU|Q+~~H@Y!ijhy?0ve
zic<@bgS+nLx?MIlHg|n8tX0da`{cjrDNeSWIM}7X`^(R(bMIfv4J#aZ_0Ko!R>ADy
z%qf(G%8n+ZLOi<Lc-)J8Jgvi;^5?^^oWAMaqs1bj5!UhI^0&+QKhF3V{l{ea%p=xk
zSKU26??<zq{h!KnsY`=X+l@+<4jUyuyz6j>-l2-$r%%4(+|@ra|MCCh>Z-$<{=UDw
zKSQ>`BclZrMt6%eOa(+50Y`&UN_W>phk}%pG|~uC0@6%DK#-7@?rx;(_Y9n$&-eH5
zp69+#pZhxZo_hwv13-eDFlqOb9DHIqFOxx!B;b^@=$iYLA5SZ2D6xA5xjH%ohU^7_
z&E(<Sw;G*<I{QEB{DctEoHuTMY5u{SgTmHsa=<5dwHrFSr;A~mdSRL-m`ZE6emfP7
zqa{vkbq!A=ihH5kO#pyMd0?^cK8Mz@cDiCeQ(N(Ssd|1`mMy811df3B0xgMQr=CAe
zf8JauzmbFCV?9|!oQ^BA6@0-)NGs6hAa}L@1|C372HuaYcm5haWAHPWA`)XrR%Bdy
zp8sYpX9~+s7O=CYT4Q?RN^)~km^KF!@j#^S7Ttqqbj!E#0MIm*Iyz*+Ko$T!WO7J9
zJgC$3YN?8);9^8=GE^SLR`;2ugkg7i0$_^yc>3#oCh=A4+p4G_OQNSwrQ!pVgk>*|
zxe(Na;8zK71Uw2*`54-0IYF_&`KW*$^i}26JW{RQESQEIt6n(2GgAA!Wa9PoK~aY&
zeoDNzvGsf5e;^k&e5Hq==CyjfMh1^iMBRPA_VQ(TQ<WbD7Zhc=Amvc7<-n<_o`ZE?
zTGTzZeHk%J1#(L~+h&f<qn;e+s83fFFK(sT8(qgbB_OcYV$1~cOsq2|Uq_A#yRA2^
zowqpz)6n1npi*XaQEjZ(rv`I{_=$I$BmwkA-a<;xo^fOOxQn3Xg=*W9!XxZZ0*PlN
z3kli<>4bkSP?kFH)?owo4D>bQJAHzm^-nb@%^OXV?J$AEb^|8tM#~0@o)SlyYXYEc
zIKTD&ixhLIX@lZmZCTX#T%2#oR&vE%eLAQ9>z5~au@$kzgY`f2S9=&!Xl_yDAl}t{
zJGQXo6AFFxKdqdt&#}1Mj<bQWv;TvR9Qk#@C3Hv2fCU4|#U0KerH;GDp&?lj-!$Z|
zrX%$C$Af|F4D0RWukvaES5Smd_C~{qW<D&y!0gQ=N*3^RntM5#*3}+tMe(?LD(TIz
zT-*^aCs?N%Z#p=3k?V!1n3(hve^_xd7ZwY}V%{+lb@WPD%04MP;wEbIU4;bOiD<=K
z9zu?M5$U;GmK^izyBre(b`w2k<M$h(N*Pga60%5Ac^RHNc#H1TUufwZ0)rza{Xx-F
znE)ODQWY-ilM(%BoMf$863ha#o3Gn%QhlI|#f`cYLykT>zMA%&1G@Jl9HB4RScS`P
zTL=qXaAHWNj$TPfbSJ@ba`*k(FHhp8Do%=gc5EKn-un>AW83kUnH|WBhn=}|Ou<g;
z-3mVdCMsf?iD<7-tkNjd(d`?fv|@Nb4*p#Zwt1F3hcT+_I=jBaPd*W1s~IHVyszp=
zIJlmQn6aOV+O?nK)PTlb)NbnNn#%AAQh0<T3Nljv#$Sr_i3q-*$Vw*@lt3sY0ex|q
zx&XeBTjb}_9AK9sTPtOO+FaVztzk<NiZ{YSAXWV6DJStQv`PR1rsHSgS5&HGYV-y=
zsDg4wHjL^$jlo<TOsb(A_@0ZzotGr$klKgq!X+(D8zW;5f9PbeUevX14wk3`Hax(S
zWXQ0l!(IQ0(MxwBgY%M!6k{nKK8RJ)#Tmq76m?DW?#F{iB5GXYbUD}ziY68^@=!d*
zLNiYib#!~XGA$b(U<tipFYeZrnfk5jh&(?LXw2TtFC1~5XFiI*XeYX8<EYd0a^IPq
zUUP(w%9N}5DjB9k4GckGa2VFMcz8e+8F<1HB0?47JjU@z1mDQ`$i+k1XkD;B;KBvc
z0VvNdAJ37kh?)SF86oElYpyawmq({>uiydHRO;yV0}w489<TtdEuH-?icEUqdLKTj
zV$l{>>df}@vW;)D3^VjG^*3)rt;7P&MyRIA?>4GT-U}Afh~gH0iMRot<Ofe?BpeHc
zzb%Jh#>o7uKU&<Q>+O4Yap)-o(1sNreS1Ogy6|SE&Jn6*ds-mWYpsvPmWl{!Ud`TT
z{2;J_fyvK$U8#1jrmAl8{B}UClltL^%jz`Q@@E_uKhgKXJ81gmqQXR)Il603O8bK-
zl?(w8cvcfZ&6~Po*9Y2WFJ5Tc+sy3{MaDmI)ty|^W*U=V4foE&7R_n20FNzCMr`Qf
zc3unZ3^}$23ZzRK4z<~T1b}+D(um^5t9qRQkT?S@<;QM5N8Pl6ad5vd%0Z}dsixWW
ziIuJ5pZ<q;#cS=GkMj$Y18ccdQO0T;8;44kW`*>S|6Huj>ZYkbr4`utB8rTC;;J&)
z2{|u692%Bf_)v0j&AX5P=SaQUjdi<F6knc~Zv1p<02{GAENMh>g@--*0H~UAv#UH~
z+CUS_$keBe56>ifVjz2Tmrbb+_}5Y;H#gtl8A{N5B9j2q+ov=BYRUfCt!)NqbD&N&
zX=FlR0g+UT0qMf?hXuUg+NzWAk1roBUCI*70;}IVSbjU<J{3L7;|Lwq88AIWd45Z9
zS;OvYhd`Ud_f#e+W<=TwAQ5K2uJ5Uxl>eYaoa@g)<J!>;?~7YXSY<ILj&@=<;&*3C
zg6X&)rgCE~f5dl6>^JTIS~`gXy9Gu(kO}wX;4sJm+2z%GEuB?ab|$1=cC$O;&#xs9
ze4f@%7MJ=ZYJnoi9v|)YDy`fp6vh@TSYyZUq$5FK7i8MU?!7+bJyRoD=pYBGhV9H{
zVT)%h`Ps&0v(g&GMy$fF`+(kUnb~~i9lnvyfx?v5`?~nw-dLn)grMf#)qHvd1WrOu
zp7s|t*ZPnbY69UMH)c^p3o3?uq?heXQ}3aT*%Li^nlYiKlvq#KP_Da;-B;N0%qwM8
zf;wSv^&6<e{$9yghWRY#oUfq<lC@PI^F*UQQe5`32%t90TVy)@b2ZtxX<Im8bc4m)
zlV8JBvOoTB`QX5STCO%cZSiC4)XvbkNd=z!sWy1NcGr2q^|I$R5AnWxZ+sak?l)X&
z{sZ`oH1y7#GRYK6bG+z=Lr@o%ou!k()y+`Z1I>?nkG|EKkrxI6A~D7S*82yHYE|=>
zJp^p{tQ*(KQhLX}M8$PHp*&bCFfOCilMu_gjoo&wK+#hVg|x*L0}%H?M#e|VKSJcD
z#Mxoe>6Odf(_zZ#wwGV&1C;i<mh?Tf3Dh3n4$++)>-T>xj#q}=3Liq)8)FoW3;<9t
zAHS=m=Z|*TDRFj(g%|W2qV-h=nuV90Bi-6ql>DLy;kGGj@ktc_D-So;`2DYUrLnfg
zf|Z}W8O|WEi-C!EN3%2qvbjp0JU<ZFS6g#loIMLu%i_888cE=I*^M}P^iyDtP~ta^
zZvWNK`73VCQCHKkeyoaTUMX7sjS&IoL><Le8>`kcboRg3xk>Kfvo~2iPo|+#>vs8_
zeNdRlO>eXLwVRT8zqnOV1Ub8e`zLGTzr95801zo#8c|#&$4>?TR1M!ec^))lKo#77
z2Ng$oT9Ng!ijZuX=d$7LHmZ35y)aL_GMU$5;RwaT&Y>Oz8~}lvn9_)-!auQtz_RS>
z6^D(Y$QMss)#0PYRSq9uQ%%;F&-ln6q<!qZZFTtSTFRsiWe#Tcrny{#SqJvhB-ncD
z-PL3`BCQ=*3FF={^wUjhzf&?y0d{|Mt^6l%SDwgazsy^(PwCl5w=T!quXN#~hwl0v
z=(n?hY5xPiU{RRY^E2)$wbJu*X%19Wl_do&<o=am&xm0chY7*l>Q!@5DdtkVe%U)C
z@9_PEvyk^zzB6`}&HwL-ngD2&ly~0Mp=QdCv*F45c;2^n`nH#iF+E`A3E@KIudKC{
zZ5vn)X2p&anNW8}3+o(dL`WY^9#S|g9CKi6+*EZ&mT!ovk3sUt@XMt9qI!ARZ_ieo
z<|Ti?YgWT1P20qQ#e0hu2JKiuR1nm>x2;fM7<)D*Y$owz_>94E1+6uva>G`%`olZt
z0-nq6PjQrX5aoV;ZS`1hD)b52qRigN@v>VSFOw`5O*(?2r-Em4DFDzk`BN*~TKi>{
z5}sp_71E^pV8xAYg4FWbtIN)qbjl$Ymk!&R!e{%;PXmWQbnybkSsz)JJqM++)eD6>
zIwTr70|Lu3@>?Cg8lv<8%DMQ>db&<s#ox*fUi6Pg>zN?e1|--{D#tY6L!Xcxm~>cY
zsY16P|8vZ>MfhV(f~6uW1+fMlmB`wUMBm%WLA|<kFFMpeyWSh|zdyODy}JGCK3uZJ
z?GWX;rCi7Uzs8NhppKUHTl_>)TvOQBppyK%^9jvN8Y&fkyj>7<EqV03{kuq+w_e#D
zNx=P0!@ADQlvyU)2)lRp0&Nb-tUFf$kRnUB-cw(jfi#at9_eLV{5D5CEs0?<oYYO1
zP1BCh7vX;AR*FS#YGJou-JguF+NV^dm{z`0f>k~@o_Xby2UbB>P_6i9Rc>06))E@S
z6doSU0c0I5OsP(n?}`ymKwsI4*Hedc#xygb(<IkFEd@4ZqQkJ9kYPE&lycw!EaX@W
z9%?Q%tvmGE$q{wmV%%uZC;i2D_^m$;w1|W22gT1$dHrI4k9dH*;*9G*THJfkgHQ)R
zV3+#{>Ou*xaisu+G8P@Jhu!E(uNY%*NZt*J;&ByFspY@a@MEA{MR<y7YAuD=78Zy&
zaCqXZulbc!)*YL*!U6;hBoKZo0SMBI{74ic#xP8Q%_Zo8s0RuV-#_nFNpr0Wea)IN
zZfXg)U){mxM-FY8S4!9#3c}v#+R;%1hP_fVnW~Q$;GTK$6gl}_>|TN%?M$La<fTR)
z;(sM*q)+y|Uz4LsdvS-;^5I@cR08Xf92Rqf*&CAyzA0V2A<5oqUDF<vuS56x)c}o_
z6a7QO5lKzmWS8!*hjK{NnozZMKZP}34P-Mi-f*MN8l#qF!veH6hvc87Ja|9}p`^(9
zpaA#ei^@ujsSv@-k)3bShrnerktKW)gg*E3IuA*`cY6CO3K=UIzbN}t3;=<X7}AK`
zucGN8Fok#6OeMfQhW&!Q#prza56Fm+OVCBn2BZ3j%PQ)bFP|Ul?#Ok}{Ce`+=%j99
z00cJBLQt=#OZq(sKrDgw1~-<Fo~}eIw;6aDH@ko9H-_da#o;qvK2FUf?7Kx*=dQRB
zlB9gfc@;I%Z0KAzrQYK#caFv1%h7^K+;9Z^HSqH8h`r@0BU&yIMn&S`pw}>*oxnUF
zBz@W7#|(J^ba#IjF`A8DMhbvW9*>_sP=xw2{LkY?MXt@cW_MGaLWm;?>NtCx{H)e^
z_!cbr^2vnU<mUH(?y-(JM3Utje}nTs9*KMQ;QA>u0{$6jbEr!8`iCvT0JYX4vdh~b
zi7rooQIUfEdt?SYM5{Q`Eib*y6Cha0Cr~^2{<8C<QTUxS`){B3`qxyAtQJY|0MHpz
z8qq#Ip$rK;0)!g4yV59hwW(O0Z2B$`$Y$ifI9t!m94LL6VqG9wgKM>>C$3cDjb2h$
zQEc<0hN9XE$l*mEJfMnH9o^pVLd%UJ2Oo%A5pnf}yuhMgDK@uExQ0vQWlQ)&><+8n
z;<wM3qt_6umu5Ax@LCy~%!mlUoRg@dqX<A?W(5=XwF+qpq<o!d@7YVxQTXZJfawZZ
zG_3mW<+C;R;`P?;&9zp-WZOErazsO0K5-v1hu_g9{tC(f%-%TnBmw#s!3p}>t3e;{
z>D|XAv}UX@IUj6aC{}xmA}>AaQZG}0(tej~#t0#g*b|S_ydpHK<UN=0E2vQ@d*htj
zGBgP>4QjjXf4#9(`PB~eH*bT@R{gKn?U0+7&4_sv?><@fgqllrdJpeDAp)Y@-#oBg
zUlhdybSc%*?c1v~v?y}O3w@d(HPdg!tYp&$s1$Q4i?x)9beo@-uUaFZs0SnGW6nQV
z7E(OxNCOe)B@<#k+X&8WSvCl)H6}pNpfG#H1j4KZm+ZDWSgm=Y69I8FLT!!ID?GJW
zq`d6Et->^j)cKD`6;YYOJlw`lIn?OK*bwkQEH+Qly2ltHjw;cYdHtA!waF7-dW2ux
z6_U|-sRB7*<D=hPZH@_FGo0UdVTe2{xR4YcL4apoDfy#RfK;Ijb9N-<%T*No_$F&p
z6_61ds^H?Zcmogj$fNJP^;=_?6rnfERTSP#y?fb|`cYIX7z}I0rZ2bo9tCiw2Ao?t
zHA#pWE%y$#0Dbdr-$egCPw2CZu1g*a0Up~9wI5Xrqs}GBC$NLw=RrL&JYGrxhzk7Z
zsZyy1`TOuCK+`SyTk#3$v;peA1(A)7t%8@|BK>8XX)wZY=QTn0uGIdU)tKv``L*QO
z7)ilv0O%oK8d2O4$E_>C5=HJaNpX`=VS$3W7otj&aZ&c7<1XBF@fi!3OoRecUy|Kb
zYR?LyO8uMRSPYqJlc!|bxhRAO{326Fw~r^$kf8d&*c$darP19a7XIR8g5zbk99E@2
zZ{*DsOcu6yK8KyI>*iRTzqx}gVuhmbqwfYFg7KrL9!h#vtHS#ME@IwQvH7>x9~s_F
z;^_W7t)CcH_`r33QSwr$<(TDrN=I4-p7XzcbqRn+bp{$q+508JI>}n!1PB^fWcMJz
znGe#cK0aHVO%dR(dLepo(i*bgp{kj_$aSfbbWD;|lvnJo=+2F`h3g<csk(+BO>;+o
zLDqj;E>SjMpR)BL0q%+yqDt66{MAaIak-~FqdFMO-tQDwIkqGM<`QL;z2_HYus^G#
zm5zy)Wl+B%tA%53nuinu1!XTpH77T?&Xej5eqKHVj4(tE#!36m#}9W2fPa6iT{iJ`
zb#rcO{qI9pvj=GoANYOtCa=fp-c91zT&+F!C1g@Mjx4#@lCFaEhV|$^v(xN^3L&`#
zPEJNo9#bpO-Gd|GbwHcLQnG{;TZAHtL!#}8jtRsu8}m=^QHo8Tl6m#w<p$kahOpHP
zt(i-ydir`{!P7g(T>K+Z7<PkUZ)EZEatT8;gRE%6uU&UnktF2SP$e7{I1@LnZyoY8
z6TOgu1trDiMs$5&Y9&?_e?4i_)c^gD9#u2$|J2P(lpf~aqZ|uMnwB*k=g=AXJ;}HJ
z%&I8mE#96?AD@fU|J=mE?==^qtHw3Mgn+*X+8iLs*T)zmq)_ESal1F1A0!bLB(*??
zo%fX6j2Nj&F1b&^%-%G0s<(UXc~IBJJ7)Ar!27kCEC|eOjG*Q{bj}O{mBL{u#QZjT
z4ezLQ#EAEoj(+MY+%&y3-yzJyewRzkxVlO5WTK;5h(6vt8U$umLQwPS?z|TPm2#?=
z?|yn0_ehL*fBNhFPYFuRa({Zb)!ECWg!b!`_)MPAo&7M>j{m_D$cTV{2ihDSq}=pn
ziXcG^XPd4|-B>6Ul%y$tziTF6+QNT{BkVxS3D*8%hiK73BC&Acrzga;ddtpH##a>s
z5R9PcDN+Hb_#OBNHi@(zGV*m!1zG-FFPey2dn5Q~fPyy4uw4IG+vw&(8^c1$xbdmg
zBj@jxV3<O7fS`fkf?N^U?7m5RiK|q**R0P=s*z25?v;`g%*m=*c;w|4bprWOlwz?)
zJ~GT9nc>#;dhM`XkckzMW(Kr5uw+oZL(qYsIneOVTBeGZ(FpTInIHFzs4vG9v{qnR
zR>sRdyjGc9s%mI+6Q{n32fQX#M=SNYEE1s#Aj)I9BqOAXX${<dlGYG2$;-?U2TT#i
zcXgbXm#f$SQ)I8Ily3#HBGN!uf(WX&2vyLs{<2+B_3esX&CY+MZk-Nf4>Tub#y-A8
zJU<ANZ1QT{6*rRj?4Qt{jgk3V-HbW(ZMy<tmPJtWGLXHe1qrfm?tO?X;Yo3#duq~8
zd~E<}$sa^?`AT?J$7JJmGPasu2uT`3pMO94?384URt-S-0BsIix*@V~BrqjrT-VMQ
zVmlYTfS4*F;=0D$s_jP2eJS>9%=6_XsTPB`3$Cg*rW=}$bEu;_vF}`s%!srXSSgyQ
z5)iTYDe>O+HtpF-1V=WFi`<rPOD-{v4`FS?QGXJj>l4~Dr4YZw4Fe%B05lC#M~B?g
zB?3IjblgmgYzVWH2)r!TeW!RkJ(c)pF5&zk$y1)PYpK4-PAbVQA{n1ehsMa5!v{P}
zEQmB_EaAsg(TG_5VW=&!a-CR8|HIA<q7)BbTTPYNsP996UIT09gx$JPZF=G=X1v!V
zbkbsR?X4rWJkdf>^FA~RC2P&VG_9QnTP8>Eu#3bPmuxLAOIo}WAp7Gj1>$9*qtM$6
zA*mi{8OyHBlest&GB_+XK+wQvfRUs%5OGhbu3@10lYGJOkuIHJ+x0(#NO}QdJ0Fo0
zVfoICQK2PE9@~!6uq$`~352~-4wSD8h*2CY3~PuPSAP>aiK9H_&7rm!x^$Q#V9KtT
zX<q7jmm<@GMzhTkyhzt#^gok^wwW9jXU`J3>f?7@^@$oA+!Z%A^BPZPV<Jf}<2wgm
z^%i}D_q3X+j?Jv3EEY73yC@Hkz!7jLo_Qs^R`~;X4#3Cf$+!?waUDI8Gu?KxMP%Vt
zBT?d|&ltf+sVm$M=LERLoamnXZliKawY~y|y~27N>7!86*7ulsQ)};P=goKavUL_W
z8`eT@Si~{>8Hr&`c;elAtWhLVHc@j@D#cdeZ@W$afWYKR2<k$ex5Eq(?x?9x1o|a%
zJew!agLYCZn=iAX6CccubiWUIFT=?7>3P**<0V=4`T#+LEtPTwco49YpQD>E$Kx>A
zw9<I<vC}(4wDO-9?ko-kTbmcf$6oi@hkGGiZ}-)(wU#D=x-c<dTr~ibS8-S0<7vQ4
zy-c94jn~lKqsoTq&)}paN*y<olw*`^^$|2wM$!~<u=+ll2@!xG!H=E_ewD`oh*7*N
z&EQ@Zj@Xkilo8KaG9UUgh6Eopu74UV{ICyj-dC-=(h!HOpegXoD+_ZyiLuJK^;!5O
zpOSptl{U}g@Gd$7_A=i~eOx3(*wbg$haGQ5oa&W>y$+@%=%*6tw?qGXA2h3#=CdP{
zVRSlMdx|YI4rWnF*>R8mD4U8Rw{XN&X|7+)m|ITjBu}E9PaNX+Am9p070lk~3bbcq
zb<^GbP^NhKScA{kY5eT@@{(oAG25SkQIpoFrJCkBpAz!jO#-!AX`k~MYX=!@xhny*
zIgI_>F#<fP4qQ$r(v9|KYflH`q?7lVh5Y_Z;*dg7QAsE4uxR!*77cA{ct=g{gTS!G
zhyX!@pm#R10hlVFB{A%fR5sJPzJ~4Wx0%vd)wU4>PVF4(BQ7@G2lVpQ+}}NC{>k@)
z)#E#5SEXWgD2&x%l_wP*kTb3;EVw{esu1LFsvBM&6!%>S_&dTScJ=(j!aF5K!=%|-
z$MBCE3UtHhD=0Vo=&50rQan6hfkf2B$v-ui%ekH=#N~j#z;jJ<-H7oI2L_1A4hsKZ
z7st0d&5fTCUvsYUnQWM2{YDExU6}E(f(bFHe9;Dw#P^Ny=2>9xQF)ngDrDUfH-_dL
zK8-#tT6LXziIim_w4vsRk17>tU_k^RYJfI}HPT-JS5Tku_mYOj^H+P4iW<{t&s64+
ztD^OXHZJF^f7mEvE8beP3MpHpd^S}BpQ2@0Q+Yl?21iUj0ooj>dbcD1P$$=BPx^%X
z=lY-9?^Mo3`D&<e19{e<Se*7q^C#quo^<*cM=>5A0ODm#BXTFX(ZGn9lmu$5KJRg_
zkc>^UF7ObiN>!>ql?bni!%eih346*@CM{`-=%mv632kscoFiDtm*6M9{lA4MFEf?_
zxzDBFJ==Y`>dTAl_FvA{ss5SYwD=0sIivqoir1;WAlUA}-|)=fzQvc@7f<;D1V=q}
zYZb5`a~rg)`FVe;*@r3prQx^O@Xn2OZJaGFLD=FWeJ<GI-s_$2@4m_L&=FENVp0ZZ
zb2u;AB*RMj#z1m(n2QlL(RuW;D5D|~b^FiAGjYc5o&iCdBOVeSy<5lg!7{F9ls5MQ
zuArQ;0tjzG@qh&?FtNg}M&+x4<f$+E-m0sj4K+xd5|gQh^gg|JKQt%dF?1SVJwHVx
z-OqND=BNw&w}<Q|g@@<XjF_>LoXCm4y;nm<uZaYX`4*70o(N}kzfz~ZpY^w$n~5NO
z5;$VgAHv>v%6IJ?j+nd)NJFW{^masq?5uZO`UuT0pQHy|K@~#F%7iCm%GF$~-${PH
zAq{gsm_-$KzS$>%M;POoSDtj%MUpK>W7?HcT6Yw=s!M`|M+=8PCMOWmlHtT>FJ4+q
zFfxym|NQp5bGyI()?EV2FBbpvQs3bYs*cUAn#({o|3{a|$?5ZTzdJbVRbU9LjY6JM
zN9|ZN*7^Fv3rCjn@PI08VKWv@%a7u{C~T7WJ~7gq6+b)GBm8Lij>H}p$1dt=dF76a
zvneDz7Ea@<i!su$!7sPUsPTYvrZgfp3NY;H{j_SkoDD(QlBQMN0n?eE{cDTI!hcdw
z+6b=bVIL3@vlsG#uPZcuvFi%I`rqj+E-I6u=3VnXD2kt(V``b!kR`)Ex~Bs9R57Ge
zjCto9FMW0KAjAWzDAdvIYkjn$sB4fL&qT>n7+^m?uyl1?qd9LpimkrZfeOWW{}|<;
z($CY#SMJuHK4(#(b>Z6H$<u%<s9G?4<D7YRXcS@)ghiXOO0h{I$Neea4HHQ=a4Ez^
z#iT8)G>H$xNOQJ8JH9^r#^b-Q1W;knKH*fb|3t{sy0;4!smbpC_ZKj3xJg)y5OP%t
zbQfLHg0POPX+z!e@aBy-j2&++z_8ZJ06~LhwxLb1%l*la&<)u#o$t<{e7Wjf)BNn+
z=f8R5eAkd{$grm4R6bqj)g#;ET5F+cLlAgY1wqYgFJxB>66b`SWxKZ=tfcE?&(?Mb
zBuXzX-WUq|Gj~nh=Ay4?A*6&I?cbG|T23(>EQK6q`p*G@Iyq`<r2f^D(6>9c>5~SE
z%DeTVAw6K6^$39uTa|lk`#%ofatBX!4NKJ%_D=Eq4+qS!vjh>do~{g?wAreT6jNSZ
ze>1rtR*d}Lp@^VZ`gd^)EV{C$^tV46n+at<20*1uX+&|!Rkuh1Ir4XP-cMu+qa{U-
zm)}lMIfmVm!?|uLCY4e$dO=%P*3`K4JfFAgl?W+3f(*~RGD*4YG3jCwrg-VIY?=6X
z+fP&RpIT^$-R)>>RB$sT<>8Y2AJo3ZR2jaLyS3S3NgQTTU8Wd-a05k8l?uhl-%Zm2
zl=izqpFVrLV9_q(uTuc&xrUSc7)UMf=jyWl^s2djs<mxhEtC=rYb_2CG(fWrc7t6s
zCclf_W7LbAt@!1g^V{y3_0qJD2Q6;aB!J2uXs%&9yY;#K)2pjzC(nbJ-f^jr!Xs|t
znOCm<$cluq2V?dULZ==8Bp;QWMpoMb2}1-WXmC+Su3_T0TQ<tu#Yl4yYA&@mxWO@f
z<5}<()EfwUqq)spXb{5v;yPY7<n8F~<F8-uS4(h>tNoSyqKsK%<Vi<0)LEI`a?a8Q
zK&9|BqPUm3x2^);NOPY_PFvJ{GmIEB*y;$}?f;elU&Bq94CX3cXxbZ}i=%QsjoKMF
z3P0WZ9$P)F8Z`ih{d*2UerK|GH^aH!hVy7sW`w^QOqKz`B}_A5qsXs(Q7J7+M5k(Q
zrZros5d_ZEM^N*Q?d0r(g4w%!1|*+iak~(O`#~U^5xt$CL6cYyIZpYDz*L6*XQZM2
zsJ42iKCR%=!ppn*KP?plL0~fkf|~cAsHb31FcZJ6rFkcnvK&3OT>TbL`w=HXI{CZe
zwf1zr7f$1o&zGq+I^R`5U<&yGf(Ck)stpiwLzAK3`cCzFoa>wZJLjL=CpO&rwWklx
znIN2;ov(s@(FhC({4|s54znWRLpc}+ph!ZJ1$jC<&YZb_*K4Crq{q7^bmQ=i(1c~u
z<IQ#7Ju%CMeXr9@%=kv#fc3}Y)!l;8B%!(BlyEO7U(`RiV17yHvhQ;4F#YXY=iM)A
zHSW#jFXO(WKwvEdhNcjZiv~~tD0U-}-bah`_G!JX<;T&6+<>p5&;NvTH#rKQzLVYU
zhSP9!qjkbVabgApoCVLiGWr9{BOsK_!=-agJ`2F7OWcWSrfC0;3qX1B==qmW{IGjr
zUKU?YL)oK*ATR|z3=QwnHY5ch0MMrlIX?EL&v>W-oT7a#2Dfa#^)++gR$D-9q)R)M
zb@~uG5)0FhQ>9$I{6BqI5CefT8BCyY^2xFf(%u6_+}@=aRHKH!&Ys!5l{p8TD+Gf4
zJ}okQGC%?LMSgjAVw||~fY(r+MixEM$7JlvlUjq{+sDtJpnByuGp>e7Zs@c`er=n9
z<Cc@*UrQMlF=?v$(ozNVo}Vr5NYqFq>L9`y5oxQyfP;Ba!~yu0p2_I^KJ<q04Pl=~
z{ZQWc9h|~L$voUU+F7dse2dlVgOyLj;;*1)K?PH9x#9yL<lLJx-{UAmEkQEN!zB|-
ztLyBQcf)XH!!3<Tm%+R{8C}HEeH8D`>VyhypX^EoUqO`;>NLjG-JNFYR!5Z+#8HWw
ziCS$B?9=M;1>tt=1USFdOwD|CI_Rh(x%_l7n^miW2@F%Xi=p9tEeLsw$N*UxXBhRp
zm`c)THR|c@9m{<v7KgJkH)^;g-cV$HLfKsoQd_$E+9IaY84P2u2@p2;#l<WQgp%d@
zMqyYQyEv?B9XgW?HEEFCY=3EU@OzFZ^crdaaSi81mer~vpL|l}0uaye3#JtHX;36j
zD>22p_LRc<q6=Yp6ZRfoBm@3KdE;P0e5=NyHXX!j^UVIyl4Q^o)I+Sq)soMdx<yeb
z;a+w({2yxszI2XVOPsh+>7Ug;sH&QrgsouGgYVH?3C4HSE)Ed}99X!6Bfz)rnJkT0
z$*E9udYa6ubmYcc;$k&{%VDAK4r^UHXn<bt*XXh*4IW@lUX124)ozkag8<=Obs4#l
zj0a-n_6@@hPqoPu=SgtB$x6sQAtG~-i8MKC(EY6*)xO{e0!OQ3XbNA*k&vR$gf~RX
zizbTIs6@48r9V`3+x%BrMihbN_zlk<F8=+qMj8Lw8J&=}#S#!WS`I@~$Q=VCKv_U*
zYv$*G`@yaEcWpO5tt~cN40L|Np^FZ39d`%0HTQF-E^qvK=_idN9R<mjByjb+c-EDq
zlyV9n8ZPx?C$x35Uk%2Saa%*}M@>yhzmqsF%k=}qUDYhxwMdioa=uhsR{^QiD=11r
zoyPLYD|BjUhk(*vCx^qkS3c3kFRlIdy%_&0dYG?Cj_xqHqYnM+1d9EAj-(jPrN$$B
zH|+tS)<OSpm7ip<jBS3bKQqCT2uCjqAU=FqS)oQD_`AMx_Gj#)o<<1lX-R;vK?vdG
z7AS#R{n%hg37x9hN<?x3Yk&^U4(y8lS^E;OCgvrUKBkB{o7*^Fi7)Ks;m*2G2JhCx
zv#uOC@)k!~5We|!t1OqA@j$E|UjD0Y#q&=LE8){69X3wR7;7x4jYwx_#r$>vKzbY|
z&_PAtF4k@zRH|xKX)Ye)wph9G%MmZLdpqq5uW=TB1St@!<la6&nyl~pJDBDNFIIuT
zWd<0U!Z{Y$71TV$Mxwd|gU7h7;YU&EX}I#>57B2Jx+G8MSx9m2sI`Au&3;p1kCrwZ
z1iqz>p()H8rISx92a0(8KjbbkY>SnDf7Twk`;jLr=Wi786(3>Vw%!1=Kuf<fK~*(;
zI+~l0>mq}|*aHKE4X8iBuL2#g#pR`=@!TRxQK=VF%Ozrgi5mP}xKYi~YLoTEc0>{&
z%6A95GiP-R87bQ_NLdj07MAa+COSkKGvMr|!t3Dj%BQb7kW2BQ=HtKNz+LRJG1}^E
zf~w*h5o!2dz9R~N+TbQoB%1RT3Lyldi$9$K7SP4_$0TN|EwtK&aQ<jcab42fWJseJ
z)8t<_X=(nkxDpI|nie2z@Q>q7l{85pNOfaFWVIK+6Z$w@uh#OBXB#IeF46AbTdXI+
z+{n54x3IyGzT<Ieg|bH&n!@t46xFl`K;uAz?qoM?FPC1ezTg4=&UM^kU3@REYWo}h
zkB3mjm?k!xXMEO?-{b-i8K8nG8kQ9UAd7U<od8Px&SLdC@<S;UjSE3i)Rz7*l)CUa
zz0(ANNLi*2onioj5Wiqb@72anPy%!D&d|UllPbfKvCR7O^^|qi{vW0|aakxASJ$uK
zI<kKGMkkWEs<^HTrFpDqVELW|u3j4;Y_OHB%B+4H^%>bf?pe>lxi63y6#KDs8i%mT
z6w_?StmRa6BfIi^U6k`VFC0r2LsQ7IN~f5X2Z)4i(0W#KFz?^V=#uGmt<E#w;l~O5
z8ei3ouHod=pU12_*hgV4!&K40?0*PzqFf1(vMDyfZN7`cNG0t@UvLK2<K1j-n;;jq
zmXpre!xQA;%en%FJxvG@Ht5ZjdWEnC8R_ns&6Z?Gj2?#{eBBDm_?VZP^XK#r)W)fP
zZ1BmiQChRLlHxF8n4mSf{OdF$BFzKOx^h}2Ss_glC@+fIU#i+wbLHdlERYnYfZ*a^
z5>Vr-{CuX%bpR<Rj^I$cBX>6dk%3<@MZ>e|1AHXcDRo!fEXh9meO$5s%h5)OD}V79
zE)Gkf1u|u&XO8WV^6*Fw>z7#begOs?@B_ue5P6^!{eys#Y*kc{<=Ddy34aZ&&WZBQ
zHa1+SoZB02X^sAn{hR@j<_HWpgnn`rL{SpDxTIFCp85+6^l=n>bgfcS^~^y2n)h9~
z^TXts*b!@bCe361cv33erywvns|gf&Ju46#tzt6Y`Pw2u9N#Y9<H4^sPCA@%@<7$z
z)kQatlf{F0KMzVPXKR^L5a9t((qgnVtiTjfW;D4~<$nF?GWqp}tdF}d$?<Rs8pXP}
z#zObp-UPQ-?x-B)O+4TmSf`O<W|15)Cll>;tv-Lncm3%yNu^U?ob?;?`~r`^(MKja
z?r4K~<-8JKGpe5`Y2AR-sb~uhx`O(OUoZt_bA_WGf)66Xj)JO0kkZD%dQcp!Q};r}
z#Yr2T|E4&3k>$M*Ti*#VBhrlUtSi0n$JEl2unC>iCoE6s)UQ$6cd~EXi4v*x*DjD%
z@%nOm?^JPu;>phqm9sxfW3(kfU~*m)C{i@<A4r)|+NYYC(*1_(7oTXEKgs-$$ncw}
zW0}g5PCV{|wLtmQjpK*COYV`RtsExMII>P#P#ZVD{r>OCd&;Lv$E6<x-79ft@1)QJ
z_2{Gf-7&{hF~y~K84+m+JnKq8;HF#}H_*lFlXk`c--d{UZH(+_sOh$GT*Fxh3K&Wm
zB0~@5XQ@liMvZm%WT9D<OnAT{e!<lCNL3U<4BzUXZcOAtzYIuL`n~Td?HqSu?q4la
zdU)?DMOwBVIX8H%em;5Z5HDe116rmkM(0m-LqKgT#U5P+M{EJDYzBfSNg0;c;_`FT
zaWS6>FFv152^sDRlYB6cdORH1uE}109Rm9+t|Hgw$#m-A`BAvfS0Tc6E?Y-@dE5Z{
zDvYV~)%z*TD_y5*?Wr7|uV3B|Ku7@t4!et0afl_5m2u(kIt}BG=ezWWFN6u=VhRfZ
z+&Ka><D|VspO^wRjmawVC<CBvuukKghBGm$2g*Gm($Goezd2%`==1DZ2-n{%bBJ$6
zZ|l~0K=?d7+BLgjX)|G)O78^-JWE!LZeN(^1z0FNJeOu%>vsbuq%C&3-^M=D!TE(O
zXn3HG&L^`#==Ad=sZ@o$mk$CE7I@Z`Kg{gl>J}*L7QdX%&wjHb*d+74bH==|Xb7j|
zIVw?~Ba?>5sjnrq2jY)yqpn6bv@tRx;Hd$^2GSz#B<vZO0VdjIpE-ht(|G*-xRSyr
zI7u^ECqrnK<MWRzlFK({*ZZt^jR24riwSg)i<OE*;jYQzFmlCnqQ?EO9{&NkUIdQc
zw}d}Nq&jSL!!e60{ydk;mBzEK^s!rKRF_B9WS^#`#QAP|TN^8CAInY&4rnXmmiA%e
zogh?N=D<T&?Fb90$`eB3uAqz{I*q%*-{nAUd=9^VyeAwv?%OFP_S-NXIH^C;rewf{
z00nCBktD58Z2{Y<5<1nndPR$~oRSR>sG}-IuhhkGL8A3cwkslcYnK8i^hZqAB@Q3w
z5ps*-tn?5V3Ag*;+pN3E@G0f@!g@-A))#!G07Ma}V9M*;EF&;Sb<kfcvEtc5(6En+
z7l~<TVr0f?iv^2)zXbj8>hbsc+11PW`6&dp7#bjKU>|L8FKrb_9!rj^JLlW2oe!Ll
z@I4+X9n|spSMFw8KfZ$qU9}^b>pQNg21$DDA#oTPs$%r<f_x!d-4B)Jz0kiCM(nqN
zi8Nkbl-4}s42i(a<d4OC@0>Xe@|Qly)m1y9z4lQte>$B7F_{Y0X*|_rq=G3RCW+fq
z3KsC`PsZb7C1VkxFaONShAF5|4ifrN`t%jBow`3d=lzmE7=Hz&Mp}$MX1;kIir~cV
zp88#c(g$_c*SJ-(x~Kn@7#pCI85UAY#3_ROADu#Cub})nO`!W~uMMy@okW;z-ohH)
z$@ogksrN5JZfTsJOMx+|u?c!#zfF{o`%!sOf|Q4qap^ZIQ9OX2$ppGDz<x%7Dg&YI
zJ-GJs$3pE3eWWkG{#V?MxU;q&@%kpy1CO7@=$C=OKBWP|qin|qMIcg`hsOX<)x?V3
zsGEx^AWX@Ka}Hf>jh86qOeiUKo?^zu=Kz4D<uNqtrs^kL00iRV=Kh<0>*eUi?xe{0
z?ZciIRy<lbhSPz;@EZ8RP`tz`*L~ltg^U#06<!+vboMzwc=Y`CmOVI=x!7jnWR%ZU
zq~fDDPu7!=7#z3R82x-Be$RQzA&;l73FcJ7{}u8DXk6zoan%0zq{yD_#;1+hAV|Mn
z?%&AAce^oi!)LpI?X=<Jv1z(1)oncBTpvTT?w@!d0(wZA>l@-J#kbqKe=XimMKOkw
z3n!~NYJ|<0&U3qfZU0!hl3}hbB>4);A6AS$Cb)Kvfb*a-EUy_4jpwAqdChva*q!O?
z%~A5;78{}}T#N3fNUnT8eLJ;~v?QKvw<M<;fbqw=;|9%{45|r)g@0YNQrmT>Xy19A
zmdK`M9)o|)d#tve=gX`xd-y43lxi(L#%2y*H2@<6)@eNbC&(XbL3>Imt*#Zx?K<Ml
zlgE1H{}OjaN#sC-CH)7Yj`Q17RqKwX*$|T(z<`4|3h@;fd~@n1RkYK(A2xDg^z|hb
zt^kAIK|NlXcy+PtW7H9wjspW3d{Y1zaG(#IHpV8amJ*)b+IFT1Z;j($_d9PWrnf!E
zIkJ|#N!M#b-;vH>$(Qq;b@OhUef4cF&t<`~l*Q-}1K+9~9)718i7MmSFZQ+W&92V|
zjeg@ybPNBg8ufJ_SV!{NtSwV-K~*jUc0hn<UFko$Nem(-^)TBDcW(F=I3a2^Qv;#+
z*S2k7BEw^=%{#Z;j~a|NKed&i{-wvp-QC+O<uDuP)bNdILgzTR@E^Y{nW=G{xDmye
z!Wn%g;`H5Fzm6e$76Xs>WbjR6V8G#=Wy&AI%u>9xncy`(9l23wJxu(Tv)lv+#bQVg
zerDoDTK@EMns9z%nWc9}5Of!+)A*9RCbO67ddbw9m(f(@#?6Yej^8VM|KKe80oW+;
z6Wiw2Q(KR!2vaCuo@PZ%Hh>DI&Xm5MlPV}q#yR`zb#Y0q)|K<c4|_jBKFp%z#zC=%
zz(|-KkwnNq{DCteeXbUl0ve%!XI&X#9_MldAj6InlkK<OeLgp9qgbLczKT;&8NOYD
zgT@ctvd)4cdiOiSFR7&P0D50DXbvGblWj5_=B&nF-T;a;s+0S3xeUvV#n8u{i|>n4
zoizWGv-c>U%IqFIDL~ku@~u)O0Az@q3Ll(AN}PrUJwm48W#ayhM?ufzupYmvrD{?{
zbwpZxsfRG-3ZAv76ap@VVw)ek>2uZ^ccyJxA8AzbFR3I1Qf&|uY1}6A6Te~Q<+pIH
z!kf&p@Yn!hg95Mi3K~G>`p)j;&i(q|Dm?v*{<?n*Kmqe`I+HqNt)6rrlYDQC|A7x5
zh{P|LVniCRKY*@^*9#wPMoOG|*5t71I^Dt5u$*k_$L%pyLDj7yd$tlQn@fQ))&vj|
zFtZ7iDtGANM>OVuXDyN~e6-5n{a~TfCAm<ZxD^LVBdReaVN6uzsmb1DAwDxdlF1$x
z)gM6qIvdC4kLSmX;Ww+C&kqaeS#<6HCClm1_1oGh+%3}H$8(8~YnY^m5q1|t!z&xl
zqRWC>X+G7TEn#wBH@!{#@gZ&N%fAE>Bh`Z!%W7@6v-0AMPC$%=I*oFL^`pIHqCQ86
z*?1=R^>X5$L;g-`Ub~b6I9I90Zoq9)V{-K+dvTs>uE_;<#;tD<-|!2jIE_q}w3SUd
z3ppY!!$zx)g&KoT;R->2tbxYt&hWNMP0H0f9@ZcBKfR(01GAezsfrgLs_IPcQgq4D
zi8?Ku4F_A26;^lSqJe_K!|{7Y6+vyQ$Th=bD>;d~dY}({CQ#%lO?$B-u-{pEdm9re
zv7hC=@F)*DdpF=OwN=9?Ct{CC`;%|0Bl$nCl)_=^7#d!apIJ#C5bkRG0VE6ZbfVjH
zXJb>TD~r-mR{h^_R~fm5n5{6=ay9XGkr}yq>+Z#!{1I|NCUr+V>&jp%9WQOtAs-Lh
z*=J1d>%^V4Rf@K7DqIxCfYy_4v+uv7I&79=bJNCh1P==k#)5@go~V+<b4t&?)@1MF
zBayd7bs+G+LVE8iRkhT%igXSM6sF%~-~lMGAln0#g=9f3P)ftF%Z_82R`UC<I^h7e
z)&rA%)VGUe^`)!dIm=N7;3kq{bcm*PJS*R3<7=w>bi&(n(ocU6zU8a^ORb+`ae1kF
z^^|Wu@i*gy>q6h1ep_ffNp5L?ut7{d*Jn;hpL9coy?1JBhJ5{~f8C^|w$(pXxPtlv
zoBHv1mrs<@Yz;59pQ@$%{oRB+@*qyEO%6$wiWz~B{U5=Smb0C{+ZB-%OIM!3{<<o^
z)l5xQP+hA?p;Tq<g_PQq#prw|*SSY5DECJVH#}Qg<Gd#-K3z*0MrPfPAjCPH7f=&s
z-yyP!-(cN@mO&O#o5`ka0|O2*d?g?*#?2jF8K|`7tit&`<dpNF-@g=j9Qxnc&tBhq
zKC%7#gdxTb`kf><J3!b#c!e{68FF34>5VQQw_m1LGMou#!Cg>Ff(&y@G1W=zFjb{?
z5!ru8<-;8get(&~Ctv?N$Ch66<#sy?S5>;A1QLVh6ZaV>Ts4k=Syrne>x5_Tr&$35
z4%+#-KAarIt@}b{zML&@Tqpa+754%&{~Dic$j?PH>~R;5^)=pn9X5p^#2hx5jGsUr
z-N6EQD77wrA-($@3M;<9%`QZ!jnE^j0ne^oY{ry#Z+(k!1r<zv&{T@o(wRi=tlu&-
zqwuhs3Z$@u<dNXi!Mb@cDpA_$U5JIhTmx5o7}P!StSj5%be?O&Djj`{@5w(xJ<z|e
z^?uI@cf8gF^YEV;(Or-l#3IQ5rKCM+wy;&d=1WAai@%pNq}v}GLG`c662lAH#W$+X
z-cBvJ?7C=Q80{-C;6TA!*vH9O>~zjZCjSU!-RzgoI2U&nhZ4|;uKQB|+)s&fU3T`h
z^`*|ZWA-485xa~d^A;yJ|C7LpuC5c|JT<<`&tG{MgmD^S!KaHqHMK4;0Hj}My_F$+
z`=K~M*x+RdS9vg4vSt%iz-Kxb{!6m#zqH<9li-gMU3??mJ=u3xBiT`$V4X(o_rXrN
z6&Ty7t7g8`HGVr&<^Ai>UnGD1f3i`>>CM)@azplo-%wy(*ugRD5k9JOJ<P9BI%>xE
z#$oIkQ+@YXui<}u1omK3d2q?EQTnE5SV!cs`G$YVUWr%auxufyhq4&0RO6RkREx=O
zw05d}6F4E*L=Sm%MsV->ANk}iQA~74<XH-t1lRDj9!B*$c-ECrN^M1L(s$LiT45rN
zoBBrjTQ)IX2wvP4Eei1Qdfqx<Ph`SwSS?Gicv1yJ3=QutG`L|JurD~Vy;wHCnqaV1
z5kZHuUOEu<xt{)ln)k|?)=#$xN)!~T)2LmX`|!hCOop>v*B0wFzxMaN$N7E#{LM&B
zBtxDy)|(o)?;mw>SIVdcwMHYBfdPj+r1}X3Ri&fP#0~rD*3SkKdlD2Ikfpzl$;0n3
z>lvBz>qga}w0cp`O$IR_hO`)+uO-H!DS!%F7s76hGb%R@W7+1%v`cPB;4Y5g(U^Om
z>|RTD%(vE^zv4S6?NgUwdaLs1x~+a1NF*-m*rK`S*S-n0*RJKs#QmRmZW%@*-}stz
z_q>9C*K5Pe)PT*@u2vjT%Mj%eY4H{b(F2}*V(vU6w$@iT8{RkhnWFoJVED#T*S>k4
zqu*V#gvtP6gK2znzbyQ5gF~M%cZXShUYiYUWt)|F*9m8cV8R>HzWm#WM85qB*P;tn
z(m1i%Aum(%1N-Js(w9S{#>X4go_8BKZ$D4MWrq?_A<a%l@jtfpO}@HT1*x!K+1w`3
zIH%nvBUcn{i}AY+;TwB}IrGGMUYf1pxNPK$O6@w*7((4Po|cJslG`1*iw1Erm_U)Q
z1r^hSfqGWq7I06+`Yz|*e<_XY?cNR3;NRx?M?Pt#{h{e;MC)x`JnKp`CAQ5Ega-+I
zHv;>5>YVe(skU+Vc3Q?Jdxa0g<iAXQJ}B*5J~wGCCdDR8_6+6^?EI!Jm6K7j1HX?e
zl3fdC6ezs!sN&S21C)n89MI_AC6q~`&Q~&1f~(+JSKeA-UA_YN8y*uh%Ccfpg9O4@
zArhziyC##ZJA$FldFjfx#$d?|4}jN%I*lwwh$$p;vg#%Abyh)$r1-+#az)^ef2H!f
zJ#(a-krraCyJuEF8OejXg<mk$Q;?YZ4|r7Q)Cx-oyY-~;W#Z~>FvI5Zc8*Z!bKXMV
zI-6IW5zMG2{DLV`zO>DJF8-&#2Z_kyLGx=VkH*|0sBw-Mi|Mn?z%p0wdAC7_hfyDR
z2GwcI(iPD_8cu2rejlc~hUM?TDfh#<4$e|w=Hj{53-0)+{Z!S|+|wu{IsY=4&s%)B
zsTU>7io#>+TszFoS@va+!R0%0Y_<s*?&`b+s~)0Px_`J8Vc7-@IB+1<R{JU5l{>!`
zV2r}3WgBSxm&<gF3K?(PEm*b3(s&gKtz0MQEom`Y>4U*@DAVS6wG1_rAVl)h<Qe}M
zg9eTg7}YX=!rY5koEAt7LN5|MAXU)C(D2SJzpkquBgh=RawXu(1KB%TKo{Rpl>lQD
zHmQCXxh9D75m|B%>;9eit9Pl+9S@6`ZU-kpm|0AqaavU%TKUOw>Om~g9}`ki%I*r$
z|JwR!uLQeBMtouK!qyywI*nNdQYA>_WJ1Y=pu8FBre|6I=`);gFfEgvNLTEV3GqDt
zZllQCC>Kz{R8L-vLL=D4C3R_Jyyf~&Z`2u6{iOB7#uFbLu~&@hiNU_QRvY)Hhht8I
z{KvI!%(dK0`3}`-WYHH#A(196B^~ibpLyvd%}rcK?pWY_xDu%67GBBqpX{rzTw`<w
zIKVoMS?VkTSIKm0EguaG+HS7+s#q1%lPvwYP|yI;B?^fiq$LWUmJ`I?e|F82R6!F%
z!`o5)y1ECL`CMk{J9f3<%zoueXDKY=2F_@?m_#mL-Q^s?&?6ytRq!xZ4{OA$0AT~h
zm!uZVsL#lT=q1CIX<Z36IV)Hd?(QNTtUM|{T9Ej_WavmF<5rL)B$LAg8fP&kYxoR{
zC?l|IhCe^mu4ZD!B}Fi2vDNvLPj;**WULf*88TA^PJ(A$DGO!!p#bdrI+$j=+ir$n
zqxr*%S?1Nqzh@c2nD@QMfnC+Qz2|eIsq+6%uzDD0Z<)Z;--DcE*WTj1;sxb({^?QW
z#>bl>{^E0O-D`}VKo(Uon#=b!=(<|k`DPbEDxF}Kf7kE)ncY`!aP@!&$S&~~yw~CS
z$rFFsn{x#Jv6I&1V*I@?_k#+S2Bj5?((B+n0M1h3R{rgRD?Zl`kLuTa#cL#fL-Bwt
ziefaE?K2RimdVVNaO48|M%B6N8vXOV;4&OBJP>v}4I>fQ=Alm+BEhBzxHg`3r4|?4
z`UmKbF)88g?g*xRYKdm;a_U)J9~GS6Pf7n`QTskm_iYe3`Voevuq=y2M;)a>I}s{*
zYqr(5@xAsPZ@FO{gI9p|y^bycM)`X4wu(r+qr1VNhZMzVrE;g~!Vdux)m`F3$%~Rk
z{T6=#Rsg0xirylbIM8@QNdKe{#{MZl*dRWisp8e;4TfE7^cf~{L2i{)3|A|D1^@Qx
zbKWZMvY;UeG(MSrd%w{oNEVXGW&({f>X0?CMWuFBN*|0yaGZ{?8tbk3Mcn*LY<K2N
zs`u6Plj)Xuq5+}*kx8G`=#m`MCwszS_8wd-?hBIZf~N_}OiwmLHj-|$D_bi>BfNkC
zhoyeyrhdvwr#|HKE@*s@|FiF={p$pO0Tx)YZgTu$RS~^ADun@&Rt5|>WbuSz7@;ov
zF8j6{WEa%B%Zub~$o~q*2&paE{v0pgG)ZMFK0T^1#()G~Lv$Kh9`R2-(x05n^ZgQp
zE?80<k**%*VUYOi8Ul%Ei)7M3WB=@xvI+)7S`skeFjo+g`y6T`U3>eWDMI)(=9mh9
zjpEtAYQ!e1mFVjyM^bEV=%s6~NfneaG`uCxA)kk_)elr!z)S^;D*Ejp|B7WJUCMj0
zsGK0qnic@HahO1noz<^6b1}2FOo3`d@jVU2b!td8BsO>bg{YXVu#EU@S*orvDPe4a
zL_7fo99~l>SN2mr)!(mv|9&4ph91h7AK!8NTjBXr<@&B6HgaT<VIwCgo&O`%$+JTt
zG<uwHRABe`4(-1lXadM2c{pO%oSAoUeW8)92E8RIMk{4&0ip2CAJ318pmkIpHl34T
zLx%f*wRbFC`F>wBoy*whs50e$=tzq0Slqj}fp27R5|S3mXp7rT_)$6Y#7n2qi*3do
zHA4T#)s=@s{dIA^jT)n;2B8pR%Nj+tY*VsjjqGbmL^6`>%ur;fvSzD<7)yk)k0kr@
zvu7Q9_9e^M-)DwVy?@Vh=iIa0b3W(XbI;enPdNrI4D=ux-ri2326;<w2@@9Wm(SMz
zLq|@)BcDJgK&?u#4GPoJAh*Lj?NPXUgCgg`&Sk<9Mf+{lcEvw}i^aAV=5Bc3em0p+
zTg8OFk*W&2K)^D$x!S=%B{^Sb^EIdG@Ba`9G!C$0Jm+Wb*&XXJd*Lq)eSo`Yx{MSR
z_!5+4UgC4-yJDmWiBJ;O_pJ2;!a8Y-?<Fhlw|;;+pn3kPA2mLNzz}QAqqy;#J!>v3
z1B~ylPLLo5EN{QP5nW(8F=yvfI?~<w$sP>ld5;t|p$ukEO(A5v!P5K_^?SFbS5hke
z7M>TkT=P{y#mdS0IQeS#Tcv-|!iD37TU26B%W>b-uP1>fc*>>rpF^X+jfK^l%EESn
zIlP~N-`>G8=7i`{>!_hVc}zcaFF09+*~renx^t_CB#KzzgpxNeo-BcP&-s-8_jy`F
zTAmW5s7V7AXE_`YanYz>dkFDf(M&U;&X7#KO^P2vh|U+mzGty<9p>fM&+*aZ@RSgs
z2VsQ{inWA<jC4fLv@q_Doq9NYu0Zp_apx#6@ml5-PHn~~@4jcVY@{gaHI+e4R5|<`
z6=!?V;<}nc4~{|Z>QWB8h3&Y>-4zw^aEQi}to7|are*1+!v!)>Baa0{|3~I4-Zbnx
z{^T~|7O8?+1AlVolbq7`bFNSKWr)Ozvpp_9Os<cIH&CEQZ=1nJDQH|DHQbLIMpp}Y
z+t(JL;^i|*@>o7hqX_a4*W173*+d4@QY5#-2<s`RU8P8hm*ebwCyK9?@2zC~hqL7$
zjUy*nks_bW2aJCFpA^rwm5LHq-4{Cx>0;LABKb{*jJ?ZExD$x9H9Maltd&+|P@a!S
zQIiW<>}j#UW-CUJxJu-CNbo<5Wq3`)m&qk`w!>RXWd4sa{7l!96+zLi|0Nmz%NXnY
zc~+tnPlz}`Muf@!HV;;H#t5Ry3Qxt<5w?Hi%q$@SKc%>d;wVcur6aJMG6D1;xP&5>
z0m{KE`@Te#ElCt{X*nsA?pdH_7DLr^MA@HB629_(LiD~eHAj@atmihIU<9NCmWIt4
zH})eKRh8S#s#q^}JAjJ-6x>iR7?g3Vn+JzdOfS_qX?x}~3IBYfVwNZrB5sk8NBkc#
z!3*9RY2tPh1TfRx*?I9_b1WaXnIM<2TO46p@BWvbLQ2uy%<Sm=N|PEhb7MornbU40
zg5cc%xV4K?-;B7@*a^jiEXTi2^eZ6!y5@vyiGPI^u3qTxm~2U9(&hcUk6glTjG<^V
za7ZAZTT7eV4)dB`(cnLjt+_<RdJE&$c7LzotvTq{F)fqpV}tb~h@L^I(zag&S9Qq(
zqF)sBiaP_FL|c|$smEdNQ-i1S75f8bP!zVwF7$3ETjM<zI@bX4;4aFycd?8)sV}MZ
zuA%Ie#2<QPD^~6+y*c?WC8-UmNNXIrgjJ$YpWu4M$n7xsy0@fnQ1q}G#jO`IZf#4Y
zdCS>+RDMU&vjHxERwzvRgmsHo?@Bi6ox&{WHlGDVzvCO2KOP%@LbZUn!KIM756-VV
zNgD*6)Vy&1aDPIB|HoA0UNDiVgJra_-#<((#(6tWT#&F^d>4+U8Whm}TYS+=?~;id
zteYOD&X%80C3)XvZ1X$zHmsr3h^uQTA#Ob;c&V&cuD%d~At~`WJJHp3&E_(xf0-IJ
zEWVY5Dws0c!Ovh@*qs3`0)%{Y?**N@#Y&Q)p?Owhu8;eEgv~{E^W&hR^l*eI^qqLW
zrnS@LfE8_?KfkfUciOua)d3=hOf~!N{L2&}O;|mhAiAl0ivH9S`p>jHpOK;_DpVY3
z8{qeI&8BUmP|rOlD%Ox5wpEhbfM$5X5kyJwZwPe}AeuUsG3PNIwWbzIvh0#IQM+3T
za%ca7Xdrr5%VATZdW8nW<q!qRiEtHy(=a-JPk}bJ#L2R!*LGsg++;WSAEwf$&IS_I
z+b}HY?oWowr!=UE%4Q#<<Rj$#=-lr5-h(F%LjN+AWQZ^)?vIf2V+>O@Qc?*n<8nye
z2V%X2DD_+c4|bz~dQy8XoRHTOg)Zx}`AkM03I7Q~k2dO2uYl-c%k3W=ZqIc8?%$z5
z59`1n!%P(V;E>LV|FiT!<A6h1Xf`DW{w+V(dn+77QM3(<s{Cu|KO7#l5oJEdpG5Vq
z{2n#jKU_2@$@YKpTOL5fr9rA73=5}jRgy#(j~wxDx+bz?FCixix=jdJ-#&nOKOo!u
zo33f&A7ft0aX!67a$)$#7&VcCHh-!E+7ri-6oBB<y3{ycI^2ffMcA#5l!A1)-EvK2
zC+)7B@Lzw64Y@cjT%qG<zFWps71GD`^f+A5yFRS;s;<MS%?Rxx9?pA5%AkZH1~pM%
z_$(njSDdE5t1Wfm7^*OM2J&~e8cDmy9VQp2Ti@=#u5j`d4_TumH2`bhBAS_d`pGK%
zmV#XPzr-wuO%I6;h|4{%s!xJnpg@l{8qi&(I2T*&VU*@#yBwTsjJLpEiWDa45rZ9f
zS^~?Sw7%_AyZ^G9Npbsc&IqWBNGy(GQ|TX%DlKM>SiUNuvz>KDAZ$n|pZnPHlT*+y
z#YN2|GVYG0PoJgi<J3OZB!laN4SV7ib0skXt~JWZa7uzE4bHJCoHHnOd2+bLSQnS?
zf`7nY5w@n_2_<ohd+(#Z>?myf0U;^aRj=P71mT<P7(^h|k5vUnpa>9%D8(N&cK<KM
zs2v6?B4eY5#ftwhHYl<;i@T3VTN7tBWGFL#p!t_gpk?zoJEcVNwFH1*@kW`{C=NBT
zSbmElGUgyvdiDPp%kV<T6B%2I-QIg;%1(NW34e@Y)hL(1pHJZ3Gp#HBvB>a~_85d9
zfkL^=#x)Iy_e%IB2>2f<VxG^t_=Z=<b;u!X9hUtgWl=N)tIFfK8N`z}{XK_hRU=pS
zeg7r46fP@ABzFIzlI3RbJmoP6fum~D&mJl|^Xka|5qtK%gvgo8vt-KQD;?a&&EV7&
z8qP`e#4TbY&4d22MNG!tJnlYXsgsay%|DEkLA@qy@#~duL6_QxI){oE(8E=Fe&%is
z%T9mCr)rApWm3Lv*tibXD`SH=2!|Iic`nbN-`eyR-5uQ6z2ug)hoPR1_EtYTJ1>4w
zogm#qzv4rbj~fsHg?`xf?JkW-@#7|cDlWv<&O!Y8B;(e$jw!c%VZehw<jy4YGq`QH
z#P5jSuew-%FIDq6y<&&#S~T|-RGM&@o9}1`|1HbADAT%P#U$^7DevDeyzfXU41;c8
zwt(o*u7U;MVj<%~_1jNFJ@>-y8{hngSkFZhY9cWl?+HJmMe1M~a}u1Xb#I}Jx!2o>
ztNQ(#IGzV492a9KqURH7iK~V>bAtMLS1)PVlG|alW0Vl@LEhKbJq*orB6H2lt@ScC
zA_V@N>*hpScFih7Cm)L`b>g}HlWJirL~@#l#6m8Pv;RZvhrPGZ>e@TeO{M8UmO`Bg
z^^`842k}WT9CwpaT6(SrE!11z8~#)J+FcLj=wtIwu^+OFOdmm)$cg$W6D{&7LEQy{
zAA)$aJais<l_*y3JIw8$|3_s6;7*j{{@81!kI#e3Dc>4l8FRWOsZDrLG11b|M3wdG
zOEYB3aFTEZSkS_#_1bRLmsRoq;|eJ^(sa$BJP#lFudcYKN8UU#IqkjTF}Hv2|5*B(
z?ID9lNAT`(PYu!iLuI)gZ7dubTrHI2^-<yfSi0h^YP@X7rn7yvwOrCNrvBIu=;B&G
z`w>^|Th!q*64@PqPxN{I{LXG5hT9fXt(4W)FV$ua9yHRu@0ZX2<M74RF+81^^SfiU
z9uH4BoS&iPNk@vBNY1fmz5-M?S}A4uAKX5O|1uKx*CD$_cV1#uHSR|(jv-eH!)}{i
z{|^3{;B-t`s$bF=_}Ewxw@AoU|JIdZN<rC2hXF(4!lmn#qEBn;6OZ50yrk`O_9XCT
zx6OS$JYbH7lH?h0LguBm?)4a6#jh*1GDCjyzP_aOoDjVAl|3CnVM&tbJoW11E9J(5
ze|NI!99yBkd{%yIP-JfI-js#Drv7r$KZ0x@>Rb?C5K&jn+7Jrs<N4!2XbqM}L)82%
zmxE7*NQj$-*T=#cfgZ%8E|s@8K!O(?pDYKm>1>O*Xq@gi-@$q8tYR_Fu4y-};%oIo
zw;mFe)<K|EbPWjRL9F*VP$Zuh{v_w#Y5w;KTLJACEr!RPti>^mTwf{sr@C;O9WgMW
zN-P}tc&w}5V3d#lqctCcjR!<(@@eL@MBnkJiY6`bdkRM@pSDK8b${EVGy&K(T;n-e
zh1dVR7}Cojd?~^oDQd##Ok)K_S<??Pcv{xK-M{a2^3<c#k4PzkFV)~?btrL<Rpo0j
zhjE(U0;1pF0T%c`Z1=%`kKo;tN<Z_DBc{bzjd2l|9ayz25sSQ}H*ObhrPvS6Rdf5R
z&6tZ$G5yP0OqhgtXUh5AF~@f!R79_DL~e)ah*q?qrnuz5bb+|XmkVB{?xpNvLC2zu
z1ckXUH(lc@bzNNi9Labq2c%7t=db$N$TGVe`$4AQG$anRk<h2Rl@kH`<Ef%K=0rkY
z37R<}42kyfM`w96%Z&2!mk8ln;h#FB03M;3M*Ux{hsJzJ7wjol#A~Fe$?a|$yGe>O
zN&VI~^_*AicYZaxyafI6zCRwb#6P<AY$YzIv)bby`4LM`8?saW!&JNWL#!PCa5QYN
zH89*3ki&fC|0|wmxW+r?V%OKqa4xFehFj5p^OVc5i{AYGo<En><p$9Zg$dE9<ho@r
z52ES2YRH)iA{e4ByVXjPx-ziYiYX#2T1pV((RQhiI<7-TG2nlO%!Qt*V8Ga~eu{FS
zr2JzTUEUR0ghj0HL?npFBaVRjOfG&=AeLbi1BR(guCA8<ZG-1gN#X8-EE_)we0e&q
z2z~p%8g;LpwB56MPDK81*Fxi)$Irj(fgR1ohHK2F_*}aKXvw_^jpK^MH_DJfeAs_%
zZ?He)vud0JUyuZNkC-7ol6bZ<VbAgZwQ$L@wDT8*DVzJQ=KNJKhCe{9821Z90t9m|
z3v!5u3{t)|!7}DdP|%o3ph5$B2}|(VI|w;WnoGxp>B_MZwVL<Aa?)QowEg}OorL>T
z1Yu)NRIC}E`pTqsVW=K%rNrd{;~78m!Qu){YZs-yCy^4URf3+X6xmO6FAt3-Q_0Fa
zxP6c`)BD1Xn(|L^dQfbugLtiSDpXdESag34^dMBC)!V!2F^;=0tJ4G2W)3Wxd$Wel
z<{#hD(G###oPQ0Dfe-;A%M=ztjY1X>{e8y3D+yRH)<LMJd;MGQk)i?(mqbV}7tJvW
zgGxMe_epDLuMKb6QbATmu%lj3phsy0liIWRw081DPTabLYEkO>`-bF|K%VWvnA-jK
z#7o%;|46C7S)0}sVuT4(HV=#Pn#3r_l0*Wx=;)!2`*D-utnq>3|IxYPt@@6f{SDS*
zZvXCIcO<ZUVjb`reJS4W;`pJq%(09)yP`DrBv7>;4==zDuR9T@?Dt3tCPVdeCt5L5
znU+uC^2xl|6aY#pgBmUq>G%4&7CZl`pM0eTR6;W|<)~KKj~(E((GLW6&L;FTlv}52
z9-AIJBw^<IP;o{0g%6v+3B`ng-*+^>n;qv5DWyQ-&_#yA<e{Co_NbAI`;t12&OWdQ
zder20n4ojojC8aZ_xa)w>O<G`h2>A<!=Y<}yb!E(9&_>ABmg!NYqwAy)+W{=^_+RQ
znhV5B-lH=z3sD=973+lm8Z&RMtSDW8i2!uedHz|-Y@hC2MU4o$_nnVaA$VT8Ir16k
z@hL7ZoPDWw;(f5W>HagK6C^1sglD<f+2@+#0~*)oqbL5QwEJ{XldwIOf=4#QOH)2}
z3y6N?&D$R>0TCAs!Xo_4TYmnY6CG@S0KMDIDgvdL`9xZx9CrzTH#ZW@0eLK2-g7=u
z1sn58aaWQgKrK^Le{bpr)5Z*8m6x3%QFs^0?J%=l+Lv@`B)XmR9R>_91*!oaUWT?&
z-X}>Ng5T-;+#krN-D$67IJ@&$Q`2QWCsGCl0-;A~cwR&ALryd9iPqe@gmNoOuX{{)
zT=>l7Cirf(k14@+J^{t<_Am~hn>Nos%S_$sE;Xtw-P9_!o^yFIK89c0<G2m&8`ZAk
zR<1~>ub{VUPxffpNwU8PbyaS6UWrt}eUbFLUlfEUxu$Mf%#t6IFky|=Pugy~6Bnp6
zl8~Y%>$ZF!gTT91E&Tq0YCvz;o`!<05adryoL@01=Fz!lEA^pEFP0d|Kr{rfkfMAu
zg!jt*Itc<t{V_(&OA?F)#>W-UjMwmmtYYC7lwb~}z%Jq;v41F&&jO;~-Pp+QhH44u
zjpxpX2n<OHZGAhgp+U_oT5}o<r{TRzl3zqT$H`z3NTjF<pg?1(cGR+CpH$D;Ub!C{
zJH&4Hr$chsY)?Clt-W?n$@Bg6$0WXWqzU-0E|xJTGb&1-4)lb1q*pmo1vj%LpQ+_4
z3H_7S3-1)E$)^OL(!6lK%<6&W@qG>w2yZPJBCH9Z6*|+$eVifQRm07G8EL!*D#gc9
zZ0e&=rOKyd0zC-bY;<`hi~#W&d4(yv_8FJrayoT0Dwx5?xkgxm<l9HUGe>n?g|kmk
zztHNXh*+eki6sT?6CTv(0mV4Jd<a?+BXIZ4F?`j!N^mJwiDag74x4L1g{WtLvn6)X
z?0#xJ-xbT6<SZ?ZW41mJA3dXKQ|7$XZM#?*+|rLC5VKOs#wNee<E8tV^_<J!%ge@}
zy;A#Q9j>lDm*alOF>JE#yP3Z+s$d0O&?OO506jVHgQ{kKgLNL?&t@<D)9{vxrQ>L8
zy0%}^*PH6Udn580K^mX+GzM>gysr+#eDda-vvJ0+p<oMa>Li8Lf}UR-iFe*`+7qE#
z%ran74uHR;K#%g7n0(f~feVeQx@z!%F1En#_TT-9(kR{m#fOP|CI`jNJ|Vrl!j~d4
zk)kG<QM4{la`Wi;`#J7jwN5ws|KPeH%H1aoLQWw*)ebA7pXqjZBQy#r(4(2A=0CZF
z^8SnYRAjZU`gyYzBlx!sYNu>mwXSxtmFzfJ{vH<5!u|+Qff&?q8H(MgqyF_vw$q_6
z-Kji;V?@~Edx?z9kYoI<G!jKyaKg-W`?Z$qKg^AoyyRv-E1szLg@efLFks#2`~84i
z{59BIQ{Vc#aI|XK><8{Y_`lHSi=<c<R;DvIjL2FZQq<&IEv-8dBPXw0&2N8scR-&i
zld3{GVZ=_umM?}B-c@V*QIE(1p|4;T5Qg`SPt}YqzWd8rdtE3SE-p$RS|ic936Z`&
z{oLuX9xBi{AmA~*3azp(mQk>~F;FTD8?;ANP#I$C)6(ZaZ0RHQ(ZRHKkOlmTN!DR4
ze0f{T{gAun5YQOdpr-b7p_&ez#80<!2aja*(*52gnJ@g^uY-@P+nN?lk?WWG&_K*-
zx%8}bezSu5Sok-f2SLf8`OA@DP&az?^XIr7yog<WfBM!lLYLw#3LvMGgs-fZ1}DR>
zk=tQx=wcjR1L18I9CQ3X*Q*TIv|iWJUpqEJWT1E**};Iq*+aGru#AGEW0W#s*!IHQ
zDOdheRg*tfy#6-#&s3g1Yg^TIz05P={cAB@bAsN$e<1Ye2VIj&6$rs)g%#%;pGoMC
zc~C(?@@n8qdE<Tb1$JjpqNk!y&Yhc~Q8vRe3U1NdhWTPgJ5N0=j~Wv8+UWx?9A5#$
zXMy|T2QBmQy0~u}vgu_SpUm7>XkT5jfG}i_t*YzdPTj9eTCbhoW?(pA?{@zqJ)*a2
z&M~BTlGHAw9bO*=R{)_$`LvZE-8I9F8WunFx>~j$Kr58vdH)#WX_2F{>b#o>#6EAy
z^J%&BLjR(a*j?4MZTZ}5q^Q8wCt3V&RmofQuGpXKWd>@*%jt;ivD!cnB8o5l0iQsg
zO&gkd>0z<jkXYt7(?8v@6d*;1?X1tD0oZuICO$2%e`vYZ{a3l*^|U<6Z)COEcSq-P
z35F#3tA`y+_3<2g!2w=H1!WwHe)X^6p9tLPYBbz6PT62XOAfbJJAC#kR46R_gU3@T
zN<B)2JPyo#!_kr*RrhB%-{h3xC|}U!`BNFY2c~l`&wo4hwEX>0{(8OtTF_<7KdsH(
zr=nx^oxtV!^MU6f?5cn+A;KCdOzPZ2U47?2<tkrh)weCqKS-xdg0GyHal!Sgp>v%@
z;VPwzzT8kfETiD#8Lp%xY+8-oYDKEw$a*{4xP!mw)gR6l<2U?pHMW&&n+bh~ZN|sl
z+5%cTxR8C0%7`VIi(5JSHF8V8?f7?{Nb-c4qG%KAb|5>?CR9Yt7e`pVyh{}rBvCk^
z2T{!g-wvca9p|lHsqeg87QOH;+2GU5<Jt}EigoW>+<n{1HP*Pjak3#c1)%#}o`2Ru
zQ!8CvLT>YJN%!JzPOrYS{$JhHFjLgX<t?k_tD@%H^1YSuPySQTfMJlLCd(%yye$Ez
z=jyGSnP<Fv7v2bIqC38E9b<FMy<Ljxx-QR|oh%k|Z;4a`LvlMzW3--S)HwodCvI`O
zD3REcUi9L)Cp{1{FHyvW4~ZAr3+``|?RI1T?*rAlqZc<<iH(^fR8n};aj~kHzqrfz
z3g6il_dT1j)p77&DtXi*RReVfVVkv70u{5A(iOO2Poa67i;VD2(X6On2#MSbWKe3n
zA9upGa?Or4BZj~o5-FO%0*i>n;xF58ne|mK&C2cmwl3A+)_Xik^XKhL`M6Ehz2q~p
zDO0Kkeiz62`_KLJ{3WrjXv*VWnce>4jP5Mx_zgn`U2LTndgfXHe1Rj}E}1^@$<Q&y
zBy7rm=1nWD&zpjSeg1h)^a0!XJ0MoW2~0ryd_{f<U=U57Kh@pGpY;@Rfo?97uGVFf
zvtLFs)y^uvAUVh!xQpf{HgY;n!wD>1g`b}3F`WQ`yFlpCujHsTkfQyzYM4uru`TfK
zOs-1qF#9odQMH)dS5WNq1ayi+Gxdb({oxYib{GU#41xkw#PTy@sc<2u3cck;!3c-^
zIdf*lE9jDI$=J#_td~sPt7%~tkn~gFRPOfQciN&pRwgX9T-?n`*4Q)q`$>-xAg=j~
z!IP&YW`BKrzrrXK#spAPphwyDOk3%ou8&)Bo<d7Fm+ngAMpibxl!H&C*QNY<d%x0f
zw2v0ol1=gOQfCH9a=?cn&%cur^!nWSFQaWGBO}!g=>NF>ekaAIwG$D68@E|p<9>3{
zERa3|glY$R5bv9Www_Ulv6#Kt*}J&=!z0c7P%DRmR5ryGHN>1`RdPx{7!ADmS>JpY
z1U9IdAqP|-YirNU_xG!&yk9C+u6)~&4bWK9%%AloNs?1AZwJ3o?`I=ZVlF!ME|9?-
z4+8JXk=sdl!C|^6rH3PWZNbv36(7a-M7uMO-E2fYA)7qs2Fd2$OlKH;_jIyW1Bvy4
z7}PwX06s&?t5z1=%_bt3Dwh11w6jZ(Jti;J?z6_I$n<vir^)5(dvE!Lo&%tL9W0{;
zKU7)QqV7w}dU^fP8^<>0+l9+xq>ZNX<}FPu_V@NECEawIHgl3f*qR?cMm>O8KsL`Z
z@1x*GfPVO%-lB`!GE<$yBh9Ry52Ul6DtN`S#<*IkeQ;*v`bycMgmz7_j2hffWdmHv
z%d=D7F{i3lMh%NOiH{Kv*U_BAc=YQMmmS>u`G%6-q#gwJ3_*$x)}`R}LE6-@m0pjD
z^n_S8evV&M(&7Co@h2{K?Q2+#Y{(MV3*ndjx|rbqkgboCPm3GuY{p-<r|dQRb!@00
z|7;(T%|80wAN|R!$&1&c?iNz0BC!X&7LZM!4*XfrYv_4tD~sh4PM2*0<_n~udVL%>
z$#v`&Kd)Ph<mAFnD5J<wRa6EwGa%p*Re9xD3Gtz>S>Nz9_H)If81v&-pyxo(Sq2!1
z4|U($nXA9Ax8#JU=mR~73d^U|s18DQlbaOdzU(p3TXm<u5fVZocY!$6#B(0ay$1=<
z(@mr0ym{m*ir`9{ar-rL=4~D_s};qXmC_5V!AT_h@x_LY?<gio&Nb{c-Z5XCnbG(^
zn!;4l62Al1%lrLC%EtSqgc<Z7lQ!E$ypHk2p}F_Cr-q{3PrOPdLmdcOKsHB2cYOdA
z$Z6vPMVZ_U+-7Cr>`TrpK^s!^WCwBuJcRLBL(T2+;;-D=*7s;&?fm3+7_+M-ui$YM
zMXW=2+p=Wv72+XPDb2NX$20UEp%#-CZ+xtx_rx_PdXE$pcz!bI*b{R7>oIc&EyjD0
zqGV+8iHQfo&7F&Z<UwE*C@zobSTQFmJZ$`&yGaNrpVFYl>i1Jo)Kdr{j1M}vh*y@c
ztvrp^z59p9Btt~iBavckvVKME5sPdVkWD%GE(eN}V)yF(#nH6q<8&NtbMuSJ`OC*A
z`mF)(?sVWjN2OL<0{!lAf3fjfO!-X?I4m3~YQiGA3FUbQw|1GfTJpJykJZ-PW}QE8
zUKAe`a12`E3v(2+aqYe%QZ{Q_GOX*V!zaeL;W!_#LCxM-=z%g!7gaYsOzo-tnR_qb
z;m~W_(c`y)JXu)NPH(NY7xcTsBLeOj=$CX1e~r`l47y~0@o*v4z|Oo}N%~z1y3>DT
ze6g;mtMXSt66Ixlh0}9&jZ$)uCK6i*F{tqp2=-Bd$)Gr_&vZXmsSb#8?>Lz2mrK=m
zrlvg}N3*;gG(8*F;ydEeu<WGaoG4&tU#ozGdz0H?cAqbDYKftw($7F-bGzQ`hmP+=
zXQvzw;Nj$JAL`umyK0_mEk@<N<R{`2Ycumw9f{?pGN|#&4?nmK<3jZ>IZ-6*&#L)M
z?kn(i8>308%7+Nx5sHa^hRXv=_MXM)LITgulm<23wbKuQPc(g=4@{TcKDDkT8{^@h
zA$-T9iar39GU%j|uN!gh9-8yFzpj0|1joIhK#$7)tn=ZDh{cNDuQF}pm%~?_P)wK;
zk)WA#B}Mm1S_${5_Sza*CeJ)H_ntBLx{$f9!Yw5HD$s+dmAL*At^)Edo`_j5UmcS2
zRy9_+&3pO}*_xiJdzok@LVBuxNcGR41r>{*m0QGRu8r8YvzPTq%NjuLva=<QyD!rk
z-9ch3MyC0hkN`5&HxPOh^6?oIB@FJWd^_8C$Nckj_R_HPDgC$a-&&ITq*8hEo-LXD
zejo$%hVB%fn-hEpfZTa4Aib(QG1SV6xZ+@zoax#nGxM$pwOp#B1d1maD>S{|C2bgv
z&1y;(JY?`5(1Un+=lUzS3W(lYq9BQ(%A-nZ*Qrh_EIKv*8;Kq#Cj!@1>0KjhpM+Mj
zXhD6V)HTTffgjN2`8V-RxdT=VzvdU2C013}%XfyPJZp@tgbMH^z%_X|sjtDE_`0Y+
zU@j^*kDVQ!a)sOu^Nr`?trTgXO#qXd)LZ4@5RbUymdSfOx{3xUJj+|@K3}Z%dL3L|
zzP7??ds!I(J*6_JnM`xyK&?WWhhz!~EA0T)%~pN~l)~{)mt<^$sZL0wGelsdIK}fN
z9W^<i05Pbc`#d86a1qjVr<qqybIgG6$Uc5h>bAD}@tm&LP*=oMOZBPx>%_5y9`2=Y
zG74do(E7_3keGL^p`hEBm%o>n%_W@h9WmQ^HtLtY5moxbmy{p8RkYY#S@0Uz0kOj7
z)DB+OhQCcq0@&awcYq#5=xb*|R1c(iQ1X4NBzD2aY~9i>_}2`{`0s+u3^!6|zG$Fo
zJszfOKXIgiMHpil1;rDYDBl|4p7nkvgn(%t=<dc+=(g=b?q+mp^B>A^+=J<rrr`t2
z<^R64uAK^#&do~C0@a=a$bnG0JbycMZYSkeE!-DLxzA3Fh@J1*HAV(E!jHiV+ZD^2
z<d#rph;;EX>QL0PgnWUveF4<Szg!)*;;eDvNtLtq!79DM1Ja&pz+IKPxNXOSCr{8i
z7Ar}HTs&z|Fw};C#cKj(knk)}>$AiSug}h{@`VF2i;2CN5O+Zm9^54)6rX*@Al^3@
zq_oStlx(*=OkaS4pn3lMH~+gp@I%eMJAQ4~*3%E_=LZ^%%p6Hw?nXja9&C%QYnoJR
z;`cht3o9eoVek}Qpa-FTZvzTkrpefQ>aiSmH1*2a(=HhD>kDbu+EkCF%hUE9n<(wh
z3JN*LQ79qdj)c>0cs&rl1+uLgG~1zbd83{P2nl(Wdlu4BlXkog>@O-LIz3$2n5#2w
z-@X|{oTO<`BdXf(1pca=vcbQ&e)d$g=J_jQgX0(LjPAn2Nx13lU0nOj9>dw4$ICaq
z?5~X&t>09k5)c4Dj4%sGFWFrs8lE@s1^vM})-wt1MT>>Py1D|S4fjxWZ78LE-==uZ
zJTSOz^e<J7l#SrU^)>?4Yuk2-Ll?8N-XG76Y~(^@&P`w=%^|YvJ<0nEZ-j*OO%>#k
za6bz4DC6mQSAYw;d@5>PQ@N1#hr=WO8&_YF+SGVnV)ND=&Iwym$fbJiF@54mhk>Cs
z(MVB~f>fCR_#DW#>KBV=B`@b5Q=NGLvOrD0UuWk~sjxe#r7A@LNE}Mk58YB^<ItOs
z7ks?rgzFm4Kc~wK0$)?WGUo6$v)oMS1`5qx!llQ~MeQ^v(i)knw2^9GU(GDWdhRK-
z=ts7dxcqR=&iw=iLv3=9q9#riGNJHbkZsi>i`#czzRhZ#lSLUw7E)%&6AW)tk`dSZ
zrQhXAx5b?7rX8I`e+qR8Vo)PWJ@66yRRf3n?8Q)+e9^6umv8fv$8=FnND?XavZ=t%
zo4yH(N3$pY9vV%S8g@jlPo5(u2U-XxD5p4`+9na(X1&L=nxb=eanlQNf6n$-!yhf}
zKAYV<T)no-cC_hIq^L<}gG>ZG81!&qZ8|!c??Kl9!bUgP_K!i*QwfZSS4E&2+4jQ}
zf{lNUQ+`#(GUg~Ov#6%b0EI$dOP_Yds7tR?Ny~1ArRldFkDmQRbXV(|IvSXV^Tl?o
zU-W~5AiiX%DFVN}1D)WncX3fxnvCwV48I13tq1-Ky_}tTJkZn#mbZut+E(J_?jjb;
zsb;4m37!PYm;+LP0!K4q2X$UyX@4(1(fd!Dglx3vi6i0adFXZ{`jclCCBI||DA1ky
zTTX>o9PbIgHkp^HOAKR1L-k2VQ;e?}r)*>)yarnN9=wHk*S9@18JQn*V<87VQRn&d
ztMh_xrtktE#VVOR7kT;ixTi-t-v+rI53W83oNX&D%#h^6OX?Jb3MeR0+(5$lLFiGV
z_lt2LBW?tGyq>G3jZ${|-0S_93tmO6LtUk}|Cps4Fn2b4Eer9oIU=UwK*+jOLp=9s
z(k((rMvvasgN{ON%Ha!6Es!`i=GCrUwosuMZs@VgS+1WSX!d>yF3-b9_QdFbK;W+$
zSjHUZjU=@c1t55{neTx=LV1B<jBrdp2)iGTJy8Le&SbA<ArwL@?am51X#bS<CqrpN
z3~HkC1$^1tl~GAai&=HvSs5zqcuCEjml(y3%z~p)^TJ?h;hnl_rOFQ-2czGEo3ym9
zLSgMU$?Y)oV;<K~(Uj#C+n+x82jZr8>x91BKQd&KAzfv*TcAP%^mcSHA1)2wn;UtI
zC}Gw_!hcerM;p!9R;X=WU{N|ALbh^c8E))&$-=gNyIY|Nq*5}E-(kz)JYCejOMp+#
zhW#U}jL+x6P@DHiQ4^{anRqxq1<N}T3~`F9*TBx>>*Z-tg=>#V0sKBlZ^4||vxEQ2
zo;8DPdn})16dCF*2tBHu8Ers$jt3Xa2w~1-iFZ~-eR4dW5zPs>XqIJSBYE+6Dihvw
znqEE)WD|@kyDFX5CXRTxL#kl-D|aon`8S1Z4KM%UmJGF3md+p{Kp{7~(GVk^ax07z
z4wE6b!>rj}vIG<k`<$fjT5P+h@7%cK?07sBd=e;>%dfESKmq}ua7v*AyJk&xd}M#m
z=d=TbB}qPOSa$LazeSNI=diifbFM>&bP5%y)COeJuvdBUcVa3IYCBESg9IaggQ3dW
zSVqBye9CzE9iYl=xd5kg2Q_nG(}C<yW@6A~oIbWJuJ-QE$xc;B0*$%Zc9ULIhZ7}~
z=N(ei<R>3H3!qMC;ANqLqV@lnX3sj*we5DEv~hCazSvpOUOKM!;svz5lDJsPZ353K
z<aQX&rb{*e1q9y}{^23IU$Qs6ETy2V06QxYL=x8nl!$4%&y}e;iZja9;icBwqUt#*
zb<{Aehvaq`VSS~?pm??`58ucw?A}Fnj@E}RUHkYriS+pan-FY!VJ^J{qh#g=uSY2F
zTOG>3*hK;9*ELP9kD1VF-vRW)wpUle?o-g$-y!+CG)iV!FYE(@E&~IpX^)SU{Xd8P
z`?~4|B?l%M^8ERILT@Rjj1q${_EF6pAESM>8oMcS((03h14vCAKAr7eNv`{pll=JV
zoR;UdMej<s*TBv>2?R)P_VwuWyyTaHj9Cei?`mg8^@~%Qba_8tzLA4n+kxyfqjYxS
zb)+=e;4nIJJIq}^E)5`*&h^2DJw+>X*mifh6qE6l;~BC+^sY8Nm(wr+MUol9;XkgY
zEaX4~fx7ukN+{1Qi<x0J!m>;+k-hj6s#Lt8@+2^<4mBvZj;78rKtTfZMBgJ=ZXn@C
zKo8<kx9V3ABM)LOb-z}FrCPJhX*T7gUekXhe#b!W?xmr=wXHduYE`9}ZHYiK)GXMb
zMmIfLm`y7k`#rlR=%Q?b*!?=p_29ARr1M7$`r+_Mq=b(DirsYTrE{$uV5qVNmQk?e
zHDxUPBj|c*TUVuaMc)<&{!wq(URZ91!`-UuNB!_T%7o09I3~M@?wz+icz$t4Fhe$s
z4SswF0Pf;lp4Jtjm-3ac|JAQQClEA1Iu8&!*ZY$W&5vt|<pX)uDFguOpv&`DEq>0<
ztyPYF-?<~ivhmY0Jpz}$&bsn)k9+f+IUhHv+!_S!bN0+y$?bD<#=de2cVXuLAkhkg
zr}zRr2s(kxx8N=g0xk@?cq?IpfW<$*^7v~qxNFblv_eY?GqY{i@!81-07#o5&tJ8|
zcZ^#r5BoztEBNBAgr4FB^yJPIg9&#X2~f_`#}<3U-^n&WRW5ivzc`}jV#N$c!mTLK
zqkP6jfz<Vv34pUUj6<W$dCbL2&0*318OM=Dfl>XvPNs5;fRoV|AiR0skt1kQ4FK_R
zSU~jSv~RzF-vfTTXbL@Nb~IAA`0ig!l@;MfG74v^U8|NQ$fK83=>96qVxt6-48=!f
zP@`K?`jjI=GiCZ?5+Nn^<e~J&SuGtjjdq^;t^3`SWE++g8;OHMKKN<BaO;=pKAT^&
zf-b-51Vc%8_#6NQSna1+{&LB8RNH0GJY@gz+<C2H?6}j?m3MT4R~$CiO8Ljh01%&`
z1w?-ZPz{I6qH>aQ?CQMJm;d9$qYA_4O+659l|h(b((1R^j*8#DnpUC8RU3xb!YUo@
zyP*m4NVqNqdNk9>(2Y7n-(up23**%kklgQ$hM1ike|O`~y(8ni2qX?&Bvykt?QU(q
zDGo({6nMe~hXo-;P2S#adIQ%Zc&A+E^-0BMp6WK{%F%3eAwq`a_;^q*z2(fF=k0E7
z_lE2}UvPMHPM2dE3e&nrZij&|=-Yy3>8^YdwY<%AWo*!kTMk_;wn)O34;cEKJ?FS;
z+8%v>LA%>b%{1I<262JHpm(s0f|lKrYAG>5-Sx1p=Ze(<nTn|g!9R;P^Fe~7MC%;S
za>0dOamyk~?}rNx5ebXebuHqU6_Cf5)zmz2T=%3VMRFG7+x-O7H&i^~93*X5&}VqL
z8v31lhpVeB*q$_FsD23o-(tw~4<068<z8+8b~G1f#OFn-m9i95eY#^El4hk>8u0u4
ze;EI0ea2jJmOnJs);Ia5&vyn}AHUQLVaWh8R3pJ`D!<ckYUN^`s93?WrlLH1`q46X
z9P9^4-;nr~Ncib-yE5%=pMJE=&oT&x5D*SDv5Xq5P}s62=sEL%=RJ>P+zCC7j@-{V
za$i@If9<r9?5&g{ddZj&Z4{eDs@uw4`>egz^@bK^$bc^(^r&UGaS>>hQd-nUdHF)t
zjhPYIt<}Y(MNb9C<8eLWM~d%FxpxWwMM%)?t2h?|LJolTeaP)F2g%<K*x<N>bA8^=
z-k86#Yk#{{?Ci5EH?((r<39vA<ak!zxUaT+|6p8y^m(r->nSJ<s)}V4)T^*kg%uOP
z>KWNbqC9)5{>eH!c2y;FV~R(svE1Ot(qBtQ@-)S5LMXlGgM)omC|CDs$pMh89+q+O
zzTvJa0NPK-7JX#e*?xg3(iF8EEO+WpVet`N_j#V+bCfU7(*2rWEVu7KDyj*!&Wq2B
zcxcXN7T;XthQkO4uROjf7H)>(o*J^6u#F(3QB#+LcSuISDzw}>8^d(1RAOVRR_?&{
z*+DcJIgrd_0oe?c-sd0(4%D$i-$kE{&CBinE(>$map>C@BFRq>by=yW*ZY2!W2frG
zn>{`g)9jgtz!wVisAaGD21ppPYdf46sg&bCCHr7oREBl^fxxRKl6z$3(AweKsMa|t
z_Uu`pC;oTvF5h6?vqT>SB-{an9(DgX!3co%bu8v0A+l^aj`GtPp-Z;Mce{Ild~anx
zCXfr?P?%fZH?A`}yL5*e`ijp2!ce%ndMQF5w^HH)O0Hmx*+)`O$Iq^cr5!PiB5G7;
zA*+u`{0m5Kt2mgY#})+sQ&#bXbjezOCvd%8zU0TW+ufBSXLR)ZNderoe|`3%PSps;
zkPF{%u#$z43g&q$0)~PKq`xkAT+#|hn!mF9MRwh?CVB32*ik${)dN0;zjyr4@Kv8Z
zX!#Jp?h-Rd3C%FaGUj;8b3?)0T04zhR0BI8)^Ch4-U|+qUHgJ6n4H&Fjvb`Ge3orh
zPB(^^3*W$Sc4yu!8KUnJa~%msklSH!5SSMrNs(lT@L85bzb9II>tbs{p(7KiYXqm(
zJM)fv&F<GLn%(6Qp*`LD*4NkmDn>biY)3e?c79`V9}VO?eVitLJNB!j9m~6r>yCWD
z8(ctd<?XrU8Nc<I21*bZ#E|DtHB8pQ9bt~m=xx8Z_F<!-m)Rh`N_vs=xHb5vR9%dX
z=rb`7yKbsT#@jg{@U`1m#+*C(tz24esG9V%Ypg3T{llcH&sN>rrARN;(5sB(JbE<V
z#fvB(|D}7s@`5MA)@EBjM0)Ag^vd<72?De@yip_vwkU>;);;C9Spur^@R7Tdj@+cK
z0bIk@W^6noUwhHw`uS{5RRF{&XaVU(Se}Jx-9z;!L(VX}naKwv;Q}`8rR??>XXu`=
zkw%9(6B`Hd<z2tlav6Vz_V=218D1);g^|X7lA%gL{XG>uzy9OKZ;ddmcl)Jpbn9}8
zAAvJEx(qM79;>AT)#ZDi|C<RP*fmoaP%;96zY=m<ieD@$DYt<_IVSWT<-L#T$++o}
z&FWAY*7due?MeN5T|({MozBx;H>&GW71Mpj@l<xL>kLhlATShPh7?WEfWcGDP+#61
z^!y^P-;(dGG;&BJdDpwDxX`F7Q4Ucf+`;{&%7eL#oZ5Q_O4VOEQzJ}Xn{<Fqp8j#}
z#7Rpdo~zw#QvfCOHqwJP1`2!6bxkGO%2;f%!qNn>RKZ}FU%ER~QZD3(?R)Lnnjqtm
z)K(|g*CAQZ>)w+j;t@UFtTu98Fx!xW2>|g4q(JmXf%8dl02uWF2ZZJFZ8B!y2A0e{
zel+f>(!^fYK0-LR+4EdC%QNG>Da>I}QhQRDAZwv7UaRRdvB7av<n|aLp52#Zs7k8l
zzU!5PO|XHgdxLH7`p<4wC=VaygsJR^j0G(2s$BkczGCbL(*m71;Z+zMMo(^!G2ml6
z1Gq6@TxLZl%_x8Fzxln`vLj6`cW4!eAYgPG9bi3VYkKzy>LA{Ej#sadfESl_$?Y+@
z@pwvdz>6Ae9*549%^sX%8(^*ak|s2{ay0!NMu+MbbugrkGRA$2?-Uo$QMGEU_aj5S
z0(~82=kwPBPnhBw+%}^;R37Y{Q1rG_9p5h3q+2<%3NKm%7mHejLTln5d{U@dGDejX
za11wnyT8<z@DUnVI~B^bWk86<?Rkm5LXpqF3)TMX#vXUh3vrRk!ZwRG+ue9`BdRE4
zTz;w3nW9Bi%SL5iGSn~7*U=CBfk^O#5iYkWiGTB3{e~a5fQqGgU7A|@2qB(A)lCgr
zvAsoMPi2|S$vc<7BqIl8sN4PL0$=w+VeLAo<>asWVf*(^HgU*@3@qQ#%o=k(as&Gm
zwms#K_THed5&plu7GMWu!KcCB`BNYa4)(VcVd=of-l~{tNCR|qr)qTZiew_^x1%WK
z&Xwo6^kKiy+Th>;?22<!tXb5LU`i;gouAwuW9H~~l^oz^AOy0l@%;+|uTMMHV3NfP
z#goc8&5rWC2}9Um`h5HsxuVquI8OXc?l0N?#OVh1=K#o(q1`{Y;^r7fgc52?D$OcS
zL--cd_1VTn`e3&~rSFF&HFuu&p`rDG8F8bH2QV#NFC)xsUV!t8FaQFtsl%Ca9G(m-
zAh9YSmV}k8(|W4@V1PBpdylhr`KXN(Rtz|JZTM1XiUHwm7o!Iru_FM`Q;rl!%sXw$
zxA01k7_*Vry_T7u=s1Y%ZG>5=^^MB30GlKCp9Fs4aQ<%h8b4l}``ucNsf)`s`x%ux
z<^E*kKstL0#D&j&SQUv41nqBj))g3vU9eh?{k>5*FMH?e?$O8A>fd2or?UNKs~i&F
zgu*eiR~%?>m4m<&+HfYp7%SRqC=>9D^iw91+oyh_6GDU^uSPAH+Ly$hCk+(V;A`)2
zn<xrAfkxz0V{%4!ds?I4(AQEC&crOxk4S%FLj?kRW@9lBR;vP6;oDGG@6lJe*)PnG
zLUsv_tL5TQw0In4bKiAY{Q~(s5O~4>&Lmh@OM4xKr}$P-u^2DSQ^55WrI_s@zHi8O
z^XNhIcVH=ZJ6Ko!AyAV(f*5;>zf5ofJSh<Un`-aa;W!C^e^bcOZnU{4a?h^KpwxQb
zu@R?qWON!J>1eismpbQp(1~K=IZX{+&`ab1FW9E$la_)c^py$B(@?l+@@{n<WOICA
zs9a{1mreSJFa|I_>%c5ATSj5t{2*>WOEu~G6Smz5GIGF*rrn>P7TrPvTNXn3W$y^^
z6qslYUwvd@Y&};6!8sfeX92}a#Xs4{_(a?J`-VHO$Nu(pV@dNrPYG34f-?yw8a2Lv
zHv`UgBfR+QLgQ=6@jgDyzi%8}YGY$SrQy%zuJ3GwFr21feex|W(md1Ghlcneh<?N*
zeUTRc+UITmIpj9*LKRZk)g-ZZR=?`W>QM-CqjsGuU=TLrJLie<NIQKdyRBU9tRoF9
zA_OUBBK+ws7}ZDd?c<5eOig~guTaxk&6}$a9g@%Qe1)<e`MR}VsV(b<f;1s?(JFRl
z1;p3EP*_9-Qp{vyN|95`1huTL(o`uxaWZ5#n(LwCrg$9fp~Pheb{Z54t*uIKUg=Q{
z_D+8DlT8f(Y16j*t7d;#WrG%AQ9Ttg;oC`3=FvcJ$ll5@N10_3o#kO>qCnsGvwS^h
z+o`~W>Ac-??C<#gvkY!M4T)qZ2*jpF7dp}o3gT(c8<h{P3ZeMsr(-N-93(Mt^b~Q7
z9^3*8S8Q=LJ?H<f(%EG2_swS@aH>EGB<88}q$2Dl3c)|<k#6>8&pivrv45{MacIbt
zy7d&>;WwkdL0+6Pkde4=Qys(eGyR~w*%%@<$*F;ap9cC7SMT094GQAQn`!UgFSLGG
zHOq&8<sjfyWbj+9=<t+3K_NWyeT6jgH4k1#j+`C=!aU4gg^{7YQ+yqz5z1Qwf9GAE
zvOY-M`_}Y|)d3yoB>U>HjCD@kVxqq|TP>dfk652mc=u?P3l0+_x5xDHv9ka#p*C}m
zD;x)f^36TyJijBT$3B=AP+hIzJd9`T^sxnA9TcK_kV=6D*}Z{FXTav5Fjq5hC>iP|
z*rtZ=L-T7+=zA=8*+Z+UUEwh+=V`PQM)=znjPnp5LQ!-(vJmsoua_DOQZmy<8oh$4
zgzHjOknm;#+xkk6K{O1mPlvrO<YG@VfKG;Q{g*Sf5ZHG4a3Cd$hoXpO*i~V#gr4&!
z)eET=1xXH&0unw7`Z@~He@aRFN(l#_8*Wna654T&rFPiI_}m|;c75ope0WT#LEjpu
zxBZh110D!nacy=}UkC`kQa7QDgzp0Vh?QRD7a(o=^JSxc^D&l+r-4oN3bDcWLX#z2
z;)h7>4O~^}cj6ntV({lz*tP6&%XlhFHh4-q(2sa2ST#X;*Cb`fW^=F8|L%hu58Lae
zcGJqrvc{a?WQR&~LoGi*20R>oyl{sa6<|FSy$gB+BL^gD+WnjEe0gyjrjA-re>a$c
zVbAKg@{2z>S=mXi;ZSYgIhW^sM|5Wm%$FTcg>5fZMh{(Wq4)xYX+0yi$9!lb+oFAS
zBjtI^I|_3Sy(@d+dR5dl%+M2u9a_4$g-M~i%W(7M_jL|v6=$=CU@}w!#HMEQE8^Rw
zh_`UO?Zl8yjv!w6i}sAZZt}(#I$Q0XHxG!LW=EA4F5R7lIt)^aI0V`7feC^5fI9_Z
z%?^b@Ut*(wtTTj554e9}2N=56-j&$jJog(8J!F^-75Hv8({@{T0{5i7X}0y}P`S+e
zpPY06h=#h|Uo|zN0~UcK1o(mn=(kvfLhH-@qEaYBPKrZu2VxTz-Uy*3E3}oKkB1o^
zcyo%}I1d6tCG_A-iv|!MZg|RTz;wveMV;kAw*fDT+<C;T#7Bk88u^77&)|GOuuGd$
zoX@A|Yxf36I~@qIxbgApQ{;dOrA-Z&u0{j2z6|?A-fp`$$*@|%xH^F4?!lgxZ+RR0
zArwM2LeRri^Btv5kjjh<i){i_QtFIuY$g9lfY@`OucMV3KiVjv86nsa{c`PU=XdW<
zg>OYh*;%Dk-XUxPMu}<(oy*CP>kazg3ygj_ucF4K0)<7SA;nDMoulYbyO3wkoCjrB
zIv|2Wr@h88=JR$x-;D5bK0Q1!yabq)b8&~(E)W74lv<BpT+F$xPBu;hgX2<xegrqy
zDgc1;=?z>g6b|}D_%KM3wQO2J*{<iXxo=G2N0`LIylIiCZm)yygD(&hvOCpN!}MD^
z@Vf>Qz76yvW_k_$L90B=;Zc?G+o6yg%bNDl`0qc8{M-_xEf0~=Pby}cA&<^F2EC0w
z`?b=-rHAJ39E1p=5A-7{##Su>kT4BcQ~jdYBwtoTBjm-YUa>;f){F`N!#0-^I&e%x
z096CON0->PpNPNvb=xPKY$#fu2&9+^D(JE<utn21{FPVwS7UsBKJfm6d+JACa}lMl
zhlZqzLag9(hkA-izv-`-%g%augwHqTFaBVMBjF>UucO;jQ>GyB1GX#A_fAFG-@G6L
zeqnsE_!&#Xhv6SbL5kMK)}h>~W0L+f9YbuX)#Kr*Fjq<_PX<!V<OY?HJ>W)-&owO8
z^SsB6Je3A{wD7p0DS`ShMXOg#Df#%QZ-PIYmQQebqI@U+Gv>~}c;xLJ3!kPW{@J!{
z{Hg}os5ifTVzw3ftNNi8nNYq^tzC+{-UoR<2K0vQHH>b^m&8l?a{c8yCT?0x6@~Lx
zexrp$U2Uc=6H$@K5h}8x1Iu7`(ji}@Gca)7^+&<aTLkU0?GwnzflqYp{`}eL+0-yC
zdX(H{ynSu28vq749u7~$WAfD;nYf5w`3HY}c5Os_-H6KXJjl#&_m=miFl9nEp-FBp
z@f%5oVg_F;WM%0<c%ROaxq3R;+i&Olq(w3{@%tZdm0)O<#iXZ&>+sWnxX<9o!I^05
z_yIn0!0KGPKR-u~IxS4=CW^~rO22z8_+AUQ|4zCogCL0Ko}>Mt`<l238}yscY4AgX
zETO;5J$}TWNS?Ip2frpG2kIa;H5ao+mq6fKmzRHZSl>6;2xJ2fidZ3BrA@jz6%dDI
zoKzsx{?wD?XK_|=PGBk9voLkC@G1ZTKj2J(#87{|2Zl;Gqr!5+M${_VU)LsIxp_Ih
zpGmU<U33U5#~38~N)L(xPcZLsP~#WYn99n^#*)R@IpIjGKE>D3O4~7R5coTP-p5Bx
zR?gG6@<Hc*TzqrVU-iUTq98lR(cN+1NIv(Vf3u?;4T@jsz{0#KN&8%n*kS9VJqD7(
z^qLH%LmgXcrN)^BzXw7g9>Fni++E1*;Y4}ZLsW&*bI3&>l%F>zpxd3^GII6u6eWik
z00Ji%z?l}m%X+IK;UPfVWoGIIBdzl{U<nEHlKC7z0@*JeLM2;Z;GG!c5&m<Hmo$(o
z=r-GRdv*u}hGyg;#Y|pOS-1kAZ5RPTr-ciJSS#?no?~nsad*AXdVA*b;U0`okW>1m
zGE>q@TdttRglBF_`W|0t6)iwu=&wMen2F}wa(_aS)^pLs?aqSX3Ytpc>Etig9H~6^
z(m?jZFOs%%qb7IgO=V|2!j@LRCPpr;MK$lX@2WWv4&*JMA3;qg&jSLl-A;M3P_`lf
zQJ?{x4BKwaub}eKy(M($Qm7#UgOX0zdIw3264w<+9n%*&3d)2{WFy5)9BRvx2-zx2
z-1=Mw{VU%R*NLCM2PGswnBL+cZom#TV_dhME7N&Zh7V;uCD%T8)BObTi?{9m!TAEd
z?C=z8g2m)q*cs1=4)mQd_fT|=w{L^|(mfP|Aj%)YYNplM_MbE#$~^R7GBPX;b1BG%
z@aOvE_L#~>H&$}M5iBqyGV)Y1v+yZ6Ei-N8*ZNZJ)f=}ClRbC7<<Z&RtW3?|g$$!*
z*KZZbUS>Qxoonqn00Q3<N`WwV1%i~3*ancS!MahkeuiV(L65ai0{WTvVg2I+^w;8|
zyK}=EM;1*gmhRZ~C8ethpc_as6b+?KO%%A}A@N%ooBur#4-9q+-Jkb8B~>QHFD@E#
zh(R?3+lRY1z7Lj-OTVU<&P*SoS)BOY%MXUu$05Z`S|OKA08kh|0<+h?4w2)>Ym2t7
zDK(dW{`7GRqx)O_Fu*vX@?Kzk`kftF<f&M?FVhOz&PZ#oTwo_79DF@EQ_k0<B1I&;
z7WB<a{@eZQRFxK?B70JoAcG_M>6Rij*uxCQ4z$7iliFRzkwu1zrTdff^y5b+2cpiu
z?*o4&U*v!}4FO&G<{Exfmov%2tS|cubvMZ!25SlmF=i7{*XHmKGSBFx^Bx&9@=1uF
zR!5SdRtdsr>xrg>W+1U5RQ?Q}KN;<}^}CYGEJxDmVrl*V$KI94L)HC%<{3{+y&{rI
z<wm8F!C=TbLQ=LODx_)VVlrE^Sdy5h(xPbBX6b3KCvCDsh;|hv$!;o9gt8NUuY2#1
zHMBg-@9X|k=ALst%lVwo`JDIpoO2N;=`wCbqHh&6czrYHd9S%VZ_^hg>Du4m&yGc6
zLKjUxZ4{7FhPo7{9BUO9R}z%to+Vy9Is69g&v@jT#JNhUK5V~^JoS_MP80O55N)GA
zl&`y7IYv!K7=?bM7>RK(aCDqSh{U1z=^^}0@**y&3y*DDZkZfnpS<+Q5u#n^Y9>G3
z<*y3{%6Y$mw|^U*^K_eR!;!O4AO<Od|9bIm!g`T2jHwPa%c*bQ8zwVN%pA<tE1r7{
z=^;`QMGL!R{WL-AvoU#Z+UO34SZ3Md#TFQnBtQUkg=uk>f9*C2ARK}Q|Fs9BbDP+5
z25l|(Vm7a|5+gxTGGVXC*yt)uvFEOirWJ2Ri=98Q_MSagASN+;J2cl}lr2$PrOGR-
z#_SH4zYM;~@GEb+K-;DzO<%VdP7J`wyz+K`vL~?ijUjHr{8Tfy;v&Cj-P-d+0_1I#
zBQc>j;y#H=Jg_LS$>&YS7%G3>iEl3$mF@5UFueJQrPyyU6T%`BDvwv4xw=<H3|g16
z&1{7g&mItym>n5_cM=Z5f+!Km6<*BJnF`61nx9`U;n!c*Cw;kh6lJ*>z9^6o2rXCR
zBhR?p7QeCgtReG-SM0Q+!~9dK<Ds6K6Nzy!_ajLGdw3}?lt~IMei#+e#F)DGQB_f6
z-ff-^PZ<D;zmlLbZ^IoUJd0PeBCuKaj5OJ5@qQs;lo3JpsRlp*{CHZ23}l-p+j$$6
z+@55tA3eS8*3v*|&Nl({_VA0&=V&M1Q>iI><e+|J-0#x~0fc#|Jmyuq1yj(X2dpC#
z5<KoaKK9yW$IhC-^@hbvcW$%mAIeh5TEo8D#q;B<2<;2^RBG-NBm}8WFI^NM#3PAB
z^MkW%yin+U(%J=^%I~dD-sP`9H&vKh9DbF%@tV}qweY}ng@R}7G@qC^lrN}Q%PE=9
zeNH{jy8TW}0+0v`z&mkfj*}2Zfs(H{?w3ZLzMDK-e4PFAh=zA=9a2%md07@$R>Hym
zvdHTRwHZMjhl3QtfKk~I3D<o*_SM=fgW~9`0r-L)eqRm=@lK&#>Bl5i>Ag&fm+<y}
zdCBtQw*5!__f1DWtvF?!uIk1XOuTlA7)~$2^I23bcx*J@B0z|DP9&QDCpM%6{w|<y
zy34gMPl8f1Kgm$(P7a^vuh|S|bstW-xmjtO#up70Gp+S6qkNREPMSRxg%+)IBFILS
z*{?PaAYf31W(ghI)zg$p5=FN--nA^m;kO=9g!iy!hom&^&Zhq!8k)9Yd+k>1X>&46
zt}KTfi!nhKE60_bDU6yq-o1i46<>N`it>uBEuYVZa5*<ZnPXqUSu!&KiLvDw%2W8W
zk0|g)xqX>ikgCFqSA<p>bt?(7Q5l?~MFE6hXxL1B&fFAy=+c6=CvTNJwHO(nj!Wqv
zxrl3gv(C6!C%*WkW`@%8+eozaC7HYNc8>!HfIlja*?jTHb}@<BJ5mCTFREPBRWu87
zI1zaEg7T~RCud~Gj)TL<8wBrn`!;(gP52%1UAHLgD7UZ@F$us%QkWLEPc=_e7!^PM
za58C?x4lD>{Z)~Wm<wl$^V40*tEwKAZjpkIX&%2uXj=TnV@U+I>6xn6dlx(3m)CBM
zwvKPYBS$Hs`OD7zIYm^W{5qj9&x;j%NSYaU{qgOWZGPCBTJXTK5^0#0%dLLlF=Z56
z5t?_c&K|!4alwMP*q;ZjNTs~rXBobw&sQqBP1+Rg-B@tkQWH-9PMIV6IA87Kqi2Rp
z^y9FU;zRoW7_iYE{@`IGCUli)sc`^-A#(F(!X_<}d)0&+sIe|Kezn&-8d7c)S$SVp
zBm@wu(5Y$HT%13Xm)BE*{o<v(H&$J#I$0QhjD?y-2p}}0qxp~AJkrskZx=?MZ>xDC
z*O*cG+&;yqq-u^s^=EW;LFGEsOhN$RG7JXXKgApC<1;?a<8x%p)0eA53uGaaiw?j$
zJuf{tMHr<&;Z=6x#}8^{rR#Sqz2lus(j`?iO$*H%4X@6$P*V8aQ*0V(W;gXPV<=7U
z+Yjl-A3@r;N98eBn#*nz;+2cMoVsE?rEtEF)BBzCMH6ctDzvBTw}e>)K=I1?l)b@c
z&XyUL2!-16jOxqi`iUpb-fe(_fbr%8*{DU?hm?d-ic(GFoWI&{xV_~(RH}5G<rK}&
z{IFj-w;JZdlb78ZTBuzW8tgG&I?nrTZhE8gPQQISpaq<?WM<$+iA189#P;RD#*Vv|
zk?fmQ;>2yI{XZU!Ex_o!EL`FQjpiK$Z~AjzC6{`awaxkxE;d<=moYmO=UjJ@0tk^Q
zs63_!HtB_!MAKwmqka4Q<aC$4qj>x*#w#}Ye$IiM5SWi;ypNX0s*m7a@#f{A>MPo(
zy|0s;0EN#InSntk$NmWr031(7M*nDq>6MZ+w(KlMR0wsI7@R7UWWS~|P+V{K^y+QZ
z$ynbikI|Jf(D<)`#>Xs_FbW;4Adxh_w!AXGHfi#N4k>muovQ179MuYE3!5k~Be~US
z*XiuXj}lVUYvq`>+ua-H@+1I>%K><&#2e!#38M~5i-r_V!Ixf0yu9PCq4(pE36;l}
z=Ejpb&;V=F;W6c|Dw%bpJeymM5`WsX+|1#A&hp$0NVKmzHo_>E3ED3_*OWJ1NW8r3
zt{i%Gd)?KSPY<ccyh?_rU>54hRLcx(Q`lxZ6e`v_QN!*!%l6>|XbA5Qz&nLsm}!qf
zUz2(DEV}fATG`AiCWlgYzu9z^lkuhU?4EHjv5P3aPHDyDr(V>>gf)xOtQ&7swy)dK
z1|L2QR*J-UIZZHxmLADy{1hi{^SSDoS8NU~SYA(2@oU+3DEOWK@|<EgOm*a)X}DK5
zA(**nv2n?TXB}5>QEX$>AGkxz#0KD<k}4E8pwQRGtw>@#3)ow{m~?kuP)$cekmr*}
zuJ0zo9~BFhK78Ge6$hSGSUMTSKk>FgJW4MnsU1GRrzo8ns5@t`48(H;YP8qWN*7<(
z$rY|E(Y%i4xBN2=X|uH86cB~XSDq#3n;Uh7W-2frK44&r6J{TKNE#1~d}sx>OtW-B
z0Ko@}YrKpslgSe@CF4CSt>0B2wl6X#RR{v3$27TZ3>BTK8442Zr02E|KITFL=vV;W
zskk69NQn0bW><dA(zxUmxODd&Xr9}IG2%Jy<2ehK9D~1k`>Oa_*{ArlDfDHMq8&3Q
zwUe$rmbwp3h<pADz&l+#eQ+W)AvQ7VE9NMlDV0P=oip@GJ+l`)s)}C{AjDgX;mCcQ
zcD=og*{V9~=pFPudQ;?K+f^^2IR;w!m`|i_5#p^C`@+p-?@&H}S_(bwFrHk&-+lM!
zqic{y@PT(v8V_8Y>hxTyX-&3A=@DGa;s7DupQ7$*(x;z)o<WF=Mybr(Fyq#Z8@sR<
z^eYObRlGPiLOo+%O%_I>cPeD&<w~|+zu^CIQt+JjVu@Gla$i3tACUwIkrt>tCiusV
zl_<2NOnFsR%bP^s=Z?hm*`i~n`rm%8Un>=H`?&%kfG`Q2N^8B$XgXqSz7NG0djlTE
z;mretc&TFUY0^<|C1(*L?NC#lr-nRDQh0be=F}f4*GF$Edxklkx01R|i1$_`_2k4a
z)pn_788zA`YvlGkv?hr`q2+JFw74;QFh&7{Ybbtxka)&TO+M&#+g8@jzv@-Joc5<h
zo}&&;gciZ&l~sQ^*S<?xT0Ey|x&ps0;<y(hbehu~&k6a^{34MVsE&cUdodKrCLdGN
z;NOjXQFT~@*_>p0R%1!x5%?JMydwSTLt--Xm(7@0^XhoQg0q^>nw6AMXi+-?K{g6i
z9yo&lsPQs)$QrZ-ZV4?}cJYG2N9)m>WRqA2U%fauRv3kDnRlh^L9pVxqK`s*V^U6D
zXNbp^l-JJq1gEYvT?oJzI9Pt!0_PC9zt>|GzwpRf9h6>m?IwHO%f$CvPUR$Q(~<!8
z93sR`PcyVn!mW85J4NRC1OfO$v0R-CIfKurJm$g6JW)}JMaGe*Pc~Q0aX5QRKGazv
zuK7)SL{<3yd#4VHK#M^oRmS}nviI9k`G5~^l-n4LOlza(25&e6>$n|3w(6A0YIu(g
zqj5tn$>Ve6+t7ECV^I9n^Yf44>p8C8Q-x9J&nj2q*E`4QJ(?aViW0YweV&)QuVcOv
zw1~MgI}#&9T7JhQfUrqqY^)r{t4<|#vU6~oN5)3(L)#Oto5P~yq50JsJvOGwfBmzQ
zGB1x;?N1g(HCo-8Rj}@)qEwm(92bkD@|b>v+6fS2iz2UnOrc4Q8c#fpy$`6KYj3^b
zQN&7%llmyR$t-|C7fHQzyU3+Jl<8(6*CaA-BEIy3!c@!nuq!Bt)L3*hpJg*+x+Jhi
zmuE~HMUU{N7#*s7J_eOMxg&jL{;YTOKQYj%LQ&%IHJ`dYfwg`QWXwv!=WIS!Ut)D-
zNt3iN3cYxGB*p<_3K>s|1A21)*rNIGKfnH~5S)yzitsG_(3YNrllcO9tNBtZlDwW>
zdFarxM&$rOd&|~smZj7)m{91|_{_j`;<GIl0R$`b(LC9(d*eS$nKi?4xnEvZt=y|;
z(K8kI+Z~1sLyM=pyF%_*?Xf@oIO$$Zb+UT<`Na+B4#;+Mq1a=gM;bJpZqO)LQyPAL
z^QG#bS((WVyFw?lZSqf_rYj6}ll+wgpVr#ZX5M3spN(BHy?C5DV_gOHNxF%&BJ>&?
zi3x4Q?2HiNy%I@%bFV4_e<~n-!yFgf=VShk4T)yw?<EE83?cAEQrj$CoIk%cz2Vke
zfQ?K^yH3Z5zn=ZYN(csB#oW_CH`)vo8lxnURQ{=Cmy0xWy-F#-Y(7`LwQNkwHEW`m
z{|>3`D}jQLj<8Y{=MP5bvWsWG6Rv2yUR_zfF2rZ&&fP-7sP|&-X{Q}*CyfInP7<1K
z-ZxffVBgJkd1+MgL9J}}>W<ZB4raTq+ghMS$6EtVLd&ned!qCqqkf$83ZCM-qQcz5
zm5K2x&{E!R1wl3{RYX-!7<G4?XqjHf;}$M4v{h0ZrM0WIxoLOy(e-z8E5OCT0v=O!
z@~tYloZz+{A*J%8^)x%$qpG4r%g*kB!n4Exywm5IhX7&JII%75=_Gd5+|M^%s*Fln
z0wZ?k*X(t5GVwiQBRbv~&?s4W$+z+7Rl|m*PE4MgjNYqDqa1eKT73vDY61-i;?gZ9
z0fa{=zF|b#=hzZOq37Z#<H?)yuJDbY#2sk#j32jsA)rz6;boGp_v4U_UnIT3Pj3p%
z5>6gDhJu!JU0X*m67r?3_O+po6d-{P)HrVF**2<bkMpNn%Y@L&q??j|FVNk5|9F`~
zC_%#8w>jv%71sxf{#8(UOrP@yw8bPAS(a2Qwdc$c=4FUPd1(7TZfQ)*Wv#pJWPld6
zvjX%cyT8qg)hwCfZXk2+f`RhmZI7OqDL{+G6nH;nE;KgRqWDS+mTR^hpDxkl1RPiP
zk8auhF8IvOCyRcQ0`_bnkn(RQU-mA2^vtm4{o)cfZ?uP1#1#rz^17oW6cXGDz&lkf
znJtV$vy@dSY`+y#bghA!ttlx>i`y!$m5q(AdQyL9f}Su+dfY2ta?Zsi;gf9|KdKlk
z`?59Vu0lrmEx)y<vrZWaVwgOpi{>XOX!@V4>el-9iiu}9p=1S5b>`|-b*&#QkEw?R
z{jNX&Vo{Eha|~mdCLMX|A#F20d7(}yCU`d%6g>6dNdW}FNSGFf4w^d?g=Q&UA!mG9
zQt@<s454HRO6Emf>zhR1ms6dNB+OA>gF@q^R>b>1tadA&RQ09)w75ja4Apb(1<PAQ
zUGdTwlYky6AcV+D)Wt@Xgg@Jz%Eq9Bm1;_Mov8J+P->m0Ata1y9#>vfb@T@9bz4@H
zZq>FxImtNJ$`CEBsPv3o6Xrm3v3w-P;lSeb{X)DZkyO@vJ+-VOzws_hP1I@s<5@-f
zv%Fl%4)TQQ!l+UyQE}FJ=h~O`7{k_^85l!FRnErjsCTr|V_RZi9L{e-W?+SS7__{K
ztV6Y~@+`)$52zi5Qk00>_@Z&OOUqe(GtUE?+H>WFQR_!ny61f^yX()9+AOtkLCbOp
z$fX+7M!gPC{}Y<u*Na5+cRKnWkpd*n65<{co9bkbFOtx{O7Kppl44h{j%Tbtp0&ab
zEqcHnC|FPzp%rlPz1M5&-;-z7lvn0EYdGiK%6KU%0obe(ro}zqkO##bi-F8%+3hdB
zw1zE_DBqF7nB}6j-qzXC%|pyJ+)@INI6^2tt3hq5Y1k3k@HQ*OLo_k2{8?00)C1S6
zOc>rPMo078cc&S`yK;oaXH{B<3@Ud0K@b;7eN(gAv8661?U?+LlvIFFGF}8fbye%5
z*Y`&Sw^)fAq7(lrLGhQyS6}*4JLjnmLlK$+$DpJ6I07CGP2#g{VjBuaZxlJ-A}eAT
z|6zFx|HuXPSj+Ots>(OVYw;-b+_@4_f#Em7zse#SKCm-_T64n3VS}Q|A8TquQ)`_a
zK{o2_vejk*LcE=#TMj+CtB~OtY!vB$+I;^@`NvX~D*bC0<@djgM2prL0eU%~FQ<nm
zu<FEpZ(R3P<JCL}w)TATA?*M>8%mtp9)Nc;eT9Kyy49i^V;c7x)fao6F^Y^u@zutL
zJWV1!ZFq<cuDIL&?lk(Ev}kDZlUF+JCyvB=e_6mVe4S_@I%XQX=;m)q*TSwZRDeXa
zmCOv(ooT>;R<?L(oQPAJ&fAVf`ANmCtMgBcsXOvycg3|MQ46ONA{9{;W1}{LpQQNr
zg8lL@-wH~xlyjMg{j>5Rxpp#qJEIvv78|~5I~3F?N@{1`^m_GHDU2(jEzMKidM~OY
zGXCUy6Wb@%q7t*uLY{(IoRP2S>^ZmfTBGDdgSNo5kJ}#2UrvKB(s%^f{{(wkD6XB4
z&eL)1(5{|VHVtjH6eyt89BCGxSEL_1<@yV}n1pr|!OJV>k1+M{!@iBCH{8NrV=F(R
z!(E#8Bw(g^nZZc%9hFFojQ?(vMFB!Qe=&~S$FZ?RUcWDhoPo;GJT6BUOXinc@PDG}
zuRw@=0S#MU?n7Jt?Kv}ZX|z)%DE_oRvM+Y5`e44!7e<W20`N|rFBi%a0tn~Pvlvlc
z`lh!t?kqmmt}KP!z$m>~rDk_Q|AnV0nn&BFbt~a@smtyTkkV-HsB|qQ;3gv@*Wh70
ze5Galgv`KnZZp~%8d!&_9XX}taub@VCRL>pac&<<o>jE3zryuj@1=Z1N?ViXr|i2f
zCy|@;)~NKAG41*TR8DZ4x%Xf9&s$no&w{suN4uvjPx@URfcG6e@r+x|Z`w@_6!-cb
zLAT_Df69F9IEy;@eS5KAzSgaa0jLu``kP4gjI+fPlhjw7nVRJqG>=(!D!uVWCAK7d
zCI~H_6eBUAt1Us300Ix4s-WVpMRMPpVexjgJufq4v=p@<FvLmDAu>eze8WP(sdWMt
zm}=10GMZC-A$jS`kdyL^FIVS#-SCX5b6vXu{tSFqo*SIb#o>D0s(UZDbK@rY#xdvx
zLDMxRFG#puI#EAY>DDYCUg48`kDNrG;ujtlFIcCq8Kq&eS0r^aCpGKHzT&eppuT(!
zt!&P|#LXlCAn#d4@n{*WbhC+RRj%lkGikSMFP~po>)K?+dE|SbKy-@rnhO4IxxY4i
z)Y^affvcDL;@cwFX+907p48tzwqp}~*nB?JA?rVFv4WA%Lm!>Jv&%bXH<<_3T^}zR
zJ8MiRWy=m3>_a`zxh=Z918AL_IuokH8$)MW7ivFMxAyy}q095Q-(Gg~w}{ixN)O@n
zt$|Etpt=-fHo+<33cC8?D(MCXt{TWpwCiYdduOQ1O+S35A?<yo6>d%pft1fPKekYR
zesxj$ho@K1N<COn(oV^lN-cD#bhc?gi%KlAC&*%RpD*48trw%YF$UMyc;8bT6R1!V
zPiS(j`z<Tb?s9wnyL;Tb1;SvM7Y{Sa;a2ho75=fDY2F`5mzJUUn=XeHhWQj9yaR9Y
zxF|+q8o9Vlkib($Z}HvcvVy(gwAJ)oO8`+P-3G-B<tgK^dutD5Pw_u6UZJigI%~(V
z52^lZob=!6>8kKB7$-a5mrc8~@4os-hSqtnG45&7u?;vy0zl(gdu2?r^QVhgD~_=&
z8O_t3g&E_ucQhO4bm>ULCdGtA(P+<@c?I)pZ=AL+*5SWanROvq;#_1(iJIZ6tJPVF
zl}4{;KxS<)+C8oQ$WvJ{2|ywtCF&h5Ioz8fVm)_^WyumaUts$YEx+iN-OF1;H(W8U
zi~t_qm6;ZEWn=N5HDOu&EQV<4R6h!<MUjWWj5)^2PC8Wh@FQDN9%}lHsC(MfQFlY2
z?%73HQnpv|U6J!`+tJ2SO*%YbZt+;<_(uDrn;WbD4326bd+O{knJIxyak}Q#UhMFt
z8X7q_Q(UxU+l~`NM8aLPQ{C3sMacdEMQ$raqWO;=dAx!A;sT%mSA6O9T<@J=`F@O(
z-sehw)@6UMyXiq*8MSw_XB%jKo?_Bez0EYi^;UCkM}b!TDu-KPoa)*?FqkbNNmpeJ
z9@G}if)9d~-w41vU4EFz6B0)GjBlb=E9UHKTQ6dbA7dH04b|q6k?8R`(qV$(xM|f_
zZc*6NytLHZRIb$51lAnh8fxfQ*<c>(Y?F0)+x{o%qINb=Kzm95ie78j-R&@{zfzbM
z_oziS3=Z$7Pzz<Mw%gsd9cwIAzBxs@zRW<UwV|dkyJpKag{hXgA5|Cbbc{UTR`W-g
zdTOj?hsVoHp&>1+<<1<6g}PDU`liAcMH3sXX6Ya&xdZS{D_77C2nnOsW40W7y-j7^
z@_4&bEwa*jt+=}Lq6PT%Dc47Da)@mRWAe^MIUSEs2Y1e`D@=7RT9=bp|M<%&dV5^Q
z`N#6rGi{7`%#iKk_P1X8MJHJJ?tB76$8S-2%)K&;ydh$@Qoc;h`aRn}`47eEfwOGp
z@=m-_@!nW<rKUVvME9)RI$fKVTX!cYDKaCu)rnJW)3)vjc@kd{xZY4D`}ozVDCzNW
z8y@?dIOY_8>(K*PGd_@JatLTBj9tCPp|*k9dI=N0bK+6LeDv=j%}bju<ajKJ5Q`Oa
zWS3lLUTm-Q!YVXaM#i6{)VG6gwCp>;hqip*GY-M+M)O^_(<IMDrnF@RR(j-S#ZJAG
z0E20hglTc)#dF3%VS`oV$%}2LO_MK|i0wEbMg~+*@z089+*H<hH;X!X(oH?(sZVa@
zTPNPsL!EdZv##U$dRc>(#P^;bUqz5rCyg<RT!vbnefHMXy4<H#Pd`^$$G}^NK9ZS%
z>9#lSK=H%A(H2EchLKhI2X)ldu)Io<RE5oQhw*Ry4Sci<!YS`!LUN`$y`RRO*|BE6
z=VpF5oxgrhR&21Zf3{1wi}vfH^Eq3pOF<Ve1<7*<p!hxPy5Hxkx?7W_kUhR={!S;q
zcqtgSa};MJ`aK5^>KLkFc@xo5liTDPEhc@b{9{x{((8lFLZ>*NtcEjB_&b+IjMJBK
zub>usdS|^ZWdBy8o9?n<L;G)OXPl&`ab%7C?h+!Gq4=9;7Kr>=*1FdL?)A^8Jm$mD
z6@NgB;&_6)))${oa!TAoYn@QfFk2d&;(}hwy(?&b^jh(PLkBnSP~d6b36<-L>|Z53
z-Kw&`idr-|?|^OWu4ZO^MMvxVHz7}x-UOTfR`^IcZ~nY1i^ZI5vQ+er7RW5MPC|de
zpwOb@EeNtvYeYh^!YFjoYC!Km=4qvaIz)AP6&gFu$20Czfxhi1L!H)!vI)W7UU$>$
zE7}dX>8~>X#8__=y>#<l%x0J5*t<=~HeYHre#JjTo4&P%TYvLLb>gircim*ZRPk5F
z23F)PxYp*8@xb{A+9FaO#b2)$<dqS$-cUvgK9#VFARF~uTGc=pg<dQ9D(9MSQ(c7;
z>-kz6lsRV1l=`sDl$(C9PxAvg{0lcTvp1}NcJhQ<V{?Sqv2|$<+G!CYx@Wh&b7+#H
zpPaCPc)v|5k9>dAs!B#KyC8I{T;R5)8<TGM=$`RQYWpPXku<SxtMxQ7;+86+==&J4
z&@D9u0PbPD;`zm5TkfY$S*OdaEc#H5Y_fMlu+i;vG7Agqiyj#w)5)4$$bAl<XET?6
zT&a+gL{md@6s&+qj2CK3vOGZ$0co7#f6)sU*@1k0f~*29W^Vqbv@?OeXFeQHL+W?4
zT5Sr=HDVe!v<&cNTDcJqCnDc1e7gkL_$=Y{$#`!ikx8&AUKWYwZ?Jraft<ntLRz4B
zq1Id%x6SbNXS~Pg--BD|-uNXaCj7n+{>64&W}vRLel-+#PDguc(Bj=5l{~hhjDeST
zXx8+al3gwz=U=-nu|(J$w!a<dX#Qd}MID-)S4Cb-sAya6|K7!SA@*qy+FWq`67$o8
z>lH7PvizcT-)~NS3&UJ>s66IrtsACLlr>j^Zs3=`CFs$HwWK#l0tkzztLU5*zux)6
z{S7|wo^`hwWszm%rR(+CGp+5j>w>;aG51E2klvzXULJ3M>88Tra8G%1Ld9Vn&Wyx_
z9*kZOO>uitUKg@2Pi>8uX?W|Z5t7DuDP{MYP4TSa*IUNETL$l_Vnp53mJ1c`fd~;G
z|DIJVx4nUEz6PPP1*L-B5PiCK5o#M_4xAeSibV70RxmhF2RN>2dAZ)<MTBE&?UZB4
zJ?BfsoYWic*Lqo`H$Gbh->W9EI{@#baauwYvWYp&E8Gq#c6IQF1Lmromj-00OnLUA
z=y1lH>*wH|pM}D-xQQ3xG^4jxYu?3(IfTr=Jflnxj~w%vi)A{eHIMds`nZt40#5pn
zh!4O!y%mw12KAak<}1&dNnSx0+ZW!oo+<)!byglezaUkxH~37!lmHRfLpG1g3{1Da
zWCD3eJ<-ScYMKQL%j}-|CnD#l?G{5brgD+Kiuip;HMsk+BGG)-O1zO2oIh0~kzFQZ
zV0T`9_8a*0GtWTOF1yYb{3JDP+vHl5F%{M+K^DuCUkpv*YM71JJYMbztZik=zZGOa
zk>Gq?Q*>QX*S)dP*tv0I+iGl^jcuEaoyKNkCym|MjnUY4a{v3i{o{N1&eI;}<&1Im
z*n7=2*IaY?k#ZXi66bFm4R~wBq@$ZRWN--}hS@~fC)G&*@@3A@WoDxtaKUh?Eu1c+
ze6UK7k(*e}EN4c8llm3TpUi+UwO#Iaf|^|OI>sF3EYI(<uJdncY*?13GWz*Y>Y<nj
zr*Us&P)jg@8(eygW)dy|RJs{jIGC`5#N+>z9MUA@e^TK=Xa>>Ug|9^BwCW)s;HpV6
z%7#j<+PiU(n$7qzBU~v_5ydU7R0vYK`}s9-Bo|44eZk6Kb}DA8+EJrs%jZK_*fZ?a
z{{TCHlr0+g-1(0ArA@6I;ZsNnst=7QXKm3aPGwElsOHD%2mknEmiHw>L6`S#xU6iU
zY&`BDn9f8^cSm3hYB^|2@iT4#e=f%wO%Jt;tQ<G93-TJq26KIPD>v-s5RY4Ucp)B0
zsKnU>H5#P_H;`12n(3?ix9DxD{^KKjPk7MW==@q=hX)k!{M*7{AN`|0bu9ffF^yQp
z!Upbi^W<83${cB7Z-Cg}Vn86X_C^WKGn?fbm9OftlmteQwfRp5vmMvdQ>lSJ4bxtf
zKg+*=qokJlGLtBE$(#i?yV)`(;meQNN6Z~&V@KV1M9(i*?R`>#azWk`7!hPV7c-~$
zb#-@~&5fx_+*<m_uFXbVI1k|Jk9UC1mY?Kfab-=sq`%J=yP5&c%dq^{9NN#)p$NSX
z^c2KfE2L#siZc31?WY#^TDG0uAcdO!*_Lk4BWUxv$)dHqOmsI|EWNMi#{UJPXF17b
z<1jM@_`nHSg>Ui7xtk#!X4)xg)7|t?B$IJMq>bwH>Upp;Y%xTaVE;?eT$jA!jub|a
z8AC?^lWfveR<c=$<n~d?M_}>G(%v)6o#9t-M8~81eE0W_q0c@d5~Y4}wmO&GY}A8e
z9(6J!sM<5Mr1%UD|6@k-yB5X>O0CUQVPuO1q`~>(+TvkgXT&poijgx$&bej{<14PO
z`~t2-zruF?E+0f(?Fj<LY(`^-qfI#`W)vvd$w%kaS`}!V!6$HxCSyu9W3VVLn<dn8
zeY*v0F34-eM$Sl<oQw1pf3tGpVwzDCfDD8T^~6^TI=W(4a6+NSJ@7?P6oy~e+oQwU
zsnFujF+Mcb%sk?x<1ga$?TsK4U^$zubmZDFd)Ig<lr5LO@PJJQDM?A)>9o3fCy!NT
z6ni%^#WUuB<va`qpAcS{J`|d!YwVTQ%q3+9i+NnA*HV75BqM?~_osY3xLHTcnjN)P
zVqRZTJT)f>r+NLDbT0S0W_|5+=L-ko)A{4Ztb+v;H%T%YtTE1mNeO+&6Bbyo`B5y;
z<9eL>*D^HrGXjx?L8vaByQq9w%$08OP&$$PSH@@1H&F@!6-`MKz^!QV3le5#jVP(9
z>Mr{m{EmJuz?IwGNWV;C$7CA3@QH>8oqzMymFyWAse_iPn~<epz(AVoQ-cEGN-i!2
z8zL7sYvWz;lrP`DVtS_-rky!}j-HEW_al4m9OZ9^`j`wOQ}pW1de`aTBkc$rTA$wD
zCAfZkGTa_#iV=j;7gP1)mD2Z1)?w=@5kC)F7QljKd#FSE;B?c@{b?_*B}Dk=gm|2X
zQcAq7ZkaSZu%hq|;}*xzp*t{izxT@gq7gIsIvRfU&EB?mga5Vp^kj`z)ZCoUF&`|@
z$)*mzu5@LeId2Rc>3=|@Fl1bX3T>H}r}ca6#5!3ykUhLM%+Fw9obGM-2E$da5j2wR
z8~Eb6f&9zg%!(F8=fJhH>>O-UvU)dA=<a)=Q@@^!TQ)4y?HJNqEMyixH1|+K6sUpu
zP=T}hWa7BchIG>`iSzy~(EpH{{o@4LxzvA5zFJs_z25XSSeeIAJ2LB3Ag!cjxTWtk
zj^rzf_udf(rhD?Tpm38L+ugf*it69K4@!0@`jU9-IPrMOoXk|$@O*0DIt541^gG$H
zobsD^d`*1Szik1YS^R$n;BfSj5q%&xN_XNP_gK-aT^Ecxv}tU@EP2nv>8Oh5EjlKj
z?7P+68)rwAEq$R~EOoU;s5w>?wVlH^Z}l{H)<<wr9Sgm8>afh*M^0@WvXjMTL(a}c
zD<?&$R^{;iG8~gXYB1&NxptptNc}xBH1bwO+}a5W$!m-5;dN1zx*g`eNi2Ev2IB@!
zLIHuAZiCK<k3);qupJk0ad=5H`zi|#{)W!v+EPY>e~#fSajUFcRO*$7st@IWP`@MT
zZT7JZO~%9?jX4f81wdIlxQ_j@@@L4bYTor~+noHe4vTmy|7-*}cxM0~oEoUN@tJ;<
zqUG|$&6F1znSw<*&@hc~#Y8LLV&_1@%wAq6ZmKXd$(W<0mpqbr(D*bSUr{<c>5r`Y
zHK3B%vv!uZht_ofxg?7U%(*qW^5?7#K-Sj(Frx3F&ywZNPZvJP;^vSTy$xCZ-faG%
zLR9K28IY=f2x)GE&%Gu%wP^hZp}h-9`91R?Lu0LxT(3%eJLgZo_^rJnuh)EU<!)1~
zm)p|i@)|bLQ1y7>ZRXU`;|z{?W3!Qv;Qg;6gSb0MiHmj{bgYS-^w{EV)Mqfn%t(B)
z)Jx%Tsh$h12mDrB+S9Q$uDw`phEo$GX<Ll3YGpi(FFhTYIFSY=q=>PVjd*cWGqLHn
zVZW@+SXNN{5juwtz57>c*f9Q-Alb}mk&;)|);qO{`l4x_H~R6|<|50~!MlQ$^6O%h
zEdCF)i@K|#b)VhL0gMz(ujlWC=)a2|pY0`eh*;0kIbFurH$zE(M>}9|PFj{}+#jRF
z8nAs<!DTfnE#~?iomFDu;x9`oZ);91{czhdqZwmj25xd}@ftLS%|)fRCtY$gT*<6@
z(4LY~refXR<x@L^dy-%}Cb-jNI7^5tBmc6)9Z!fB|L8$<fy-m1ysQRuRJN}z@D?Yk
zqg=-5tB58^=3L;3(Tl1LBaQ9KTm+I{nlM^?YbKcPyVwz5H#1{4sAA>smx{HgZSFHX
z2=$s!b*s8R|AiN45b1A+w$*EV1%j=4*J~8O`X(-3{F`k%?h9+uWjou}nuw@V#M(LR
zHssRF!xu1HU-EYbU$?)e>`<xLI#HS_*%{0N9x&OHQ#r=e*HL04uvK>1x1dA9mmQ01
zNb%8u@L-0c=uD7w3#EU-7}ql7)HUARg-Qj8%I165a)r2-7|l?Kx*LgMeiAai*~eQF
zz62idi<RZ6ThuqeG?C^vT?Ei|)Zk;~h{O?rgV-si5QS&-Wk)K;!=>3nY1~8Pkoi~H
zSzpQ2jNyIkHeI|Pva|$(T45JlB7qt(J<pw*X5mS)&>!n!_3yCJl_LT7s_wgC9_kd4
zZkKL0Sht19<wZ#PL)%5^+PW;=J1LWhn;4eO%4PTv+mLzHhJfub#N=1k-PKgG$dt?0
z@Y^UMX}4x`oy)4$ajT`{(f3raN&ya6V32}nG9<^TraYXqddzXHE9=}>kDL;xhRHi1
zh4@lG#W-u{&w)>H{!=m~bn=$y0juR_fSC|EZ9;vC-Ied?+v{C*Oc-`Dn!_)aSE#st
zu`gcFvP*GFgp=h|mmU6(dv0OcZP;M-p1j0O@k2c6wuRp4JJ_-CW0|i3zbUf}9D3-~
zYHMlNv5A(hz16PiiTgK4;J}2*<IEM=QK9T;3|+vE>wSWhW0U=FSGSG36Rsxj$vtg+
z{EzIdI2fhsyhg5$o&nFzYDOM?a`?f7?G5Usp&SOw2M4g5OP;qt`J7@WN(6DV0-4|5
zZ?UGZ`;kM=lMs^AR<~4uUA+J`legJJzHUU#Qv46aQF?;b)TpT-ZmJ(zt-_$$^v{Yd
zD}|7PS{S;7%GM3M4h?oyG+mFdUk=Fl<<spaA6#0Ka{m^^L|})xd(n7vcw#rC67-Lp
zKFEFht#2j4INkfeKr3<NuviWIeAk)H0NkAXF}&X`8tDP`HX7Y|{Q4!IHukaEMt<DX
zK6WBEyuGCc!i(m-7(WJmg!?+ZErNRU)rH$6{dtdFsVqU<0J~|TR_@wAb+e)9MP<UG
zlxlqM<rdPw77T<jGW00PV|zvHCkSm-qI_|CHOM&ij_9;5;#tu{{>;6qb}ad<B~@?4
zwbs0UU&=6>gtmO{CD9fcjGl_TTyhos@$uWpFr=*V4P_lQW|fht!y{$0R`*f8rl`IB
zE8l0$C4TIV5YrDZS9nrtK@Y>-6MyK`euuck&-DFQM0zNvrz2BO@OBHd(?Q&0z3k&_
zfe!J(#X^qxss6D*lXNUKk5up24`58(cAFRf{7E(W%(gCw&0_TXubCs*yV-*Y3hH`d
zg^FXTKeMNi)*jqPiNSpTK9RswTY1cFC0WQfO$_sfQc{wOZv@Veh;)Z8`<h+NIgG8+
z$({p$HHg<9RcyLcN<gC&aX4zdLm~KdFn4wNLiixAUE^{d@_%elX*jt&anP1A8kD*t
zxyrBi(=}!`sue5q3G_=v85?90YlY@w_kP)@bU=O|gR$uqXZ_@j8`)V3E}vN&j`b6g
zc?vUSnqPH3+|*oaG%et=oRN?vo~@@0dEjf_0xgxzcfG5bb-c|+{$i7byCS={zDiF^
z1Y{csETygYMkVwP=^sDfh<g!)G!cKGKlnsA(<=4023`oH_QYCQnHC0|z(pzxD)jzn
zAE0?Tnd_|MyGmy;L0V{D@(!_GXTsdGJN8WZCFp{YeT7A-|2V72q?Z0$V9<gAE2}5q
zcp=k&e5R&{cpp653B@+%<o!JOQ7pu6X^8bR<cx`=@;?eW7&ZGCqU;G9A!@BLhek9m
z_#zpb^*UO|PN!ZwJNl-cqUDK!&??&nq5SyE--ahC(j3C=uMax?QG>+{!k35nCO2Bc
z`Hbx5hmJZfCI%CWegibji;UJPH(9N({Bq<uwiu5-SatC?dsiqz;_lt8&3Abv4y)iY
z+2%kyh8O<bt&8nha)E-&y}*BTY_FMfj;9Kx)N3zVE#D<uaP%g|sjj)V@!ZF_eS$3q
zh83B+2>#`1GQVg$VPYiEB@=WGuxP1O?i41EbX8HbW0!pOJi<#;UA^Ymjz2!3`(&(}
zcCLn^w}=^4|L#Q~zqRS@3&hHyIe3G2=xV?pUH7YW7t<TPd|qa+_CG^gq3-4Z(S{=D
zKh%2XHz`!IXqay&M~p@|=FgY9%8fGM=)?Yw0up|2gmYwQ=NX~9y_d;vU58sT`zV`T
z;8VpGZ{6^PWMpJWWdiVzC^z#vD6x4sSGm@K65mV4jQ!W5?Rw6OLr3j!JvKFZvw(ye
zp48u*B4>z2_9`A58ZriI-xz&e)F(<y74_d`Oi$!k@o#7!Oah%8-mS-5t!?Gi@Prw2
z&hR{ybY@buvHU(W?NBoYyNgdf%Fl3iV!*1#G@<KV`LE<nKVpS>X*%u14sI;9o~;`S
z$1xVBxyvP#B13|~sYVLNk?MIGu*u1Pdc<yIbuW5rcsgH*`(k<jZOb_)2Xo?QYiN&%
zTbFWR6a1?ZzDga76tl(2Y8YFL7D0R5_(PYHCA4Wq+6)87^Zmv@usz!nEP2$8VXB3J
zf6jvb1s|;0-qpsAI*9D$={RdtkENJskDGtFk{`}Z5m!0!Bf^2EU4atXeL$Cb+)A~*
znJ#>@b@&$6=*Y#+>UIbxJJuVs++>Ev%YRmYHUDitP5(G9{(#xDYoCRiaj#9yrPXC1
z*H-qAOKr=`<^_CCB1r6K^G-`KPpGb^U(A-8C8uaAhvFg_qQMFp7&o8|^W+dNo&7L9
zwS{DNZ1rnkqIqkf=j#}6_PSx$M?H~g<GEpPv^kKl&e#S^ytsw`q|S8{@A_KAil*6R
zc}cm+*g+Q;e>MkBjPP^1XR}KeHS^O|ycZqw>fJUXq4C9Kn~)!uT*$#U{;fb+hl26B
zI2Q;4WP<a0i;|h#g|jCBnIREh7U*?=>&dVesd)CSp#E{qC`8iq=?6vFH~2Vo0x}LU
ztFT%4!Y^X~<Hd2WY{lmAN{Wy3$!m>VG4^3?Mx5+s7VU4d!wUTV_1u6IxY`_~MDuic
zREMwI&E|tN;%ynGNcc?M1oSF6dFt-tS58K3RBtNnki$7>6FxB%v8GXi#%w}m*7yFH
ztO01-z%8NXI)N=Y_~0HA7t69I?*%tHWBGrBgxsS~hd|))mvDL~JB{Ic|KhJ=@lEl6
zgf_KGC6j%hCB4_b`fuY+Ld?HwXVjN<^8##8VPdWQtc^`Jp5i*LOR7FdHUfM&aTMZX
z?174xZzBYELHN6F&g1P{L{Ze!(DM$P=rgB-*~cT_!}^xns&hOaFQSr|2u_MfuZpxr
zx5Eh>YywH?SC-YR@|fz{{~@(;g^+ZO$D$vfQK!^{CJ4nr@$dTzoECy7>V@m;KR&A0
zw*CA@(f#|()iL~8Q>v=s{ba9JsXhl%juBpc&irXKE@n5VgaoH7e`}+){33_`6A@L-
z(*ga8A*BU&!aWQ-XVN?;TcUhrgc2+RmC$WXj*^LF&HNQ&B$_~9LBmT?%MBU9UQF5I
zc>F2?KbdTXpfu2V9k%{-^U(TWoLGrm5-l?X7mLuHLmozteihlN(FgU#W#e1Y_S5zF
znxI=1V^d_p)};izyr(t=N9F0nlG3WEV6((BPI|`bAc#RQ3B5gkdx0beK3Fv<h}lK|
z;=>n}PLSYgt68H!EFs?XY3H;u=hp<|TpoF#y{?{<SHazfTGFNd$*UUo@<al>0Qq%P
z9|h$9Tf7rPwzZ{3NIbXsaok;Dzv!iL5WKETSl^u^1e4gCX!_$YRV@T_O!T@~{&>)_
z`Gt{(rEyidz@55{!Sd~_%Jw)`Xt%cup7-+m&0CKx0xeeU&a}#re|Iz{dFj)&){Cb<
z?aLWI(j1&TEt=BZ)=>C2X#6kc5{X|#|9b%{08)J(Js(}3yP}IDfS;e)x<4ftweKR8
zpCZThl=Y)2Q9}=k&lS~8)VP$79q2X#hrQLJ8Mx8U#7k7dd(KoeG&F{7t@=P!RaK9#
zS_&H2b+jdAg{76Hg_VWjD_E+-m3z&L;ee$p3hv*L6Nl(JVpYQO)oo6oB&ppDAv~DA
zX<}$-YG~jx3`p8UJTMp#j-q@_l&A<h9z-7s;}ya{3ZR`b?)Y+&iXs7S@wPOBa77g%
zpAT*UiWH`31CvmaA(#<IiGj)ESe=A@kU!NCqsK<R0^(7>P5hdynaqLEgGGVHs|Ab_
zLrWuf(htW?gb+eo0f}F6DWS0V`huUGOO-`~#vmb3=b%c!Z?eT;AzIP0q2`UxM!y0s
zfw|D+!@gWcl7*^dTX=cE7)i1eQNEo6)Om<RMSZ#Ozv62;G9@ZCN#wvo+_Su?5>=j7
z;6#cT<f;d<8Eme2$*d@j9^6iSJFsjWxY7>*q(~NiNdk!_KpM*)1u;;^48TH==OUx8
zunC9;$&v-Tag9Y_4@0iF(lUt7G>D>>>j~qrx4WV4j6g;cCBisuM7xQgtS@ohre93&
zsE#MD^*!j5V;k2)s~24EvG7RHi5$%@hcHwi^{PHns#XlOsH0P_D<GD<T;96_1Ykpz
z^&_qkXWP|L!)0I~itDf;s6!`Vd60vKOQDeY`e1)b;3Ppoy20X`52CQ(n^W*bn(m*<
z7OL?W=z`fmQDTv;+%fVAGwA(QWTqJCM*bKPS;*C#+FppDq5V_9Ey1mU@T>^IA_72h
zDVF>>Nw!d>b43MxaiH>1O<^!L1l>sLo>G^+ciGHoLo^-LcveHwdl-?}l`mYJOf>^v
zXDx^UL;47PQ^X%-iR3#&^p@bZt-G(|yupz~D_U+C6{~guN~mZ{sU6_KxoVqf(wwCt
zUE-=#KM`pFd(k+9SA^ITH8Pq?g%+3_TKc8Cq29n)2APkTvcFc;NWrzjy=!TJO%x}6
zc*mvBagioj8kj98g0!8O0_zfGP97NrBUtzYnR<-e1&@JYG#3VA+|GY$>rX2*uLM_$
zwAg)NWkj*NtvB&1lw3Ir@O4BYnP1wl&)pqH2Xe{U%GPGrx6M+_B$zUu$_^Of!h=F!
zPDunCC$SHNB}b3wKW)Y(m|I6RQGuJiOh&ywtdAP0?^=MsBFkmry}q8$&>F0)`U5ql
zgp8xAb&W`amWanejbz?Li`>~GFu0^a@?0f^gt&=felkH{?G9Rs7lXpr7adeys0Tqa
z;vu6krPMHA$(A&VdP_>9OZVDF+oA8~e!FkA2yy#Yw+V$pqfr5z?4jLE88DqCt8-K`
zS1I@gQ!IgBfN5QTYHV$8Vq$-8+B~`VXKZ-hDqO@%i98Jn#hLTBU&3Ci+@!reQS9V}
zK8`N4E31KtW#{Cdv4LT8(K?^R>a<Z~W4X|WjS10v53~@IE#5y}Bkg_c_xDJ-hN3k}
z-hZju8}Y6;_{<w^y0hohHCo<rOs2N57lEC*hjr}x4zKIaq4!ZHv!Vo{$f}W5xI~I6
z%X*3zj+mE&w2GKjLBYfWi6`L8rI0_W58Sa4>cy73%L6De@=>JircQ+@$IPKCixfV6
z!Kr&qK@qp-DTY~@QGUtrLKxBI8oQ;eEmekL9oe>{I@5>2VO3wV5e{xOHh034hfUk%
zGH-aJ*%ZF0h0OijJGyUe6@V4@ES~NDlGinwdzu)o_E$NZiy@*7jqSVIu|vp?ZxpIh
zaa-g5jRn?=qjj4jihTua#JI8RhBnYw@cg0Y^ZRMsubzUJZriVqcoDZ*v+^6h;UeeQ
z2!V0+_KB_b8M-1Wu5I;M@QJjEI3j#-@xPKZM6bXzinjm|+_NpmEW2W-&Eb1wOw9vq
zp2h5)0bCETGWt=Vx`zV8QjC=lb-l#3!6SDe4)Vx-hto~`hI-%LNP=sCzZ-x&W%URf
z;0Ei>7sT70zfwPSzd$|j(6-Yc6+JE509|y}Z-CTz41_Z`qeaH{gw2N1IoT<@cQ4ol
z7pS9Jb~s;~N<aSu#&I+su!1<OSa08(EuG%4q~?12Z-hBD^c~-oG!*QiL2vwdMzNw~
z&)bP}y`+$z09d2~R)NBN9%MYRQ%O%~oOc!N>y_Y;Knlu=&$@7EXa5GlmVPqPmViVF
z&W*ZA=$kC@Na&WxX!yMVWOO2zO$b1LFvO%IWQa|BusRzau;OL`AgYi9tElIzEP(Fd
z%wrXFsJtU`5y(nV@yI?WazUzl7zl?Knz<|tKT`1_XdL^h1Z@`ZD<vZGug$$AMKc_P
zSo7O3b!5!yW9VlEnwa(nO;D>icVqzG5XyitDYE!Qm-2c5fc$+sXzdY7-Z~)VmxVBa
z*l_?Z$us5&8X?*u5fc#)%LT~D3wU|76YP(yPLjT(7iDZDqI@9*A^Hwa^3`fbI1X-)
z)2BZ;w+r_JE!|<b%K~Eq9`AWO0Cp5)1^hWs`T-B%vHB!c>{j~BKZXB%Y7^*%HWgDA
z9&&;W`dD^eB?7FVbcy%zaK%ZN4usbS34&v-v_w?_Oa=VAD!@RrW)`0)XkW3UD|jDd
z@8<};H27hwBG}S%oinmiU?}VzkOivc5RSVVzkPF%zk+jp?_nQSI`f4Pe8`7A-o57G
zj1zh`CKW*|k0vE4C>O#KK?5<v-g5+!=S98|78V6KMfcDDeJy#a^hZ-)+(vv^9}^Mw
zjvCwZ^D<64Oe`GSHIw|PwrJN*%F^6M27ia_U5QL`8-mvMV=(G=wx+19s3B`RBz37i
ztK0n^Q}lrJ4hw_^=)R)*z`PcC2Rd!N=l?j|4G_#KuaZ5BnMQ#<esC7Z#oI{`@oE1e
ztu)&gNHDK9`Vey8+#7!EPG5744f$S97M*nD=m-9V#?prwhoH(T>-%w#8fiZW%q?pL
zscah4LL;1uJ#<0@V{t(~t8fJYkSJNLn(M5C7?^Su3%edNxs5jv93r7GtSQR<_&MK&
z(cUZL0D%;J+aSJc?vS?+wA}zuenVcsb!h)iULfON_K=xR0l(IK%)jj*3?Y8VcNCq|
zo>UNLd;S`Te?!S0`U#WcI)CJ2(I@}><FMbbC1CoYD&G9|gIOr_U!btx$M(*1zQy(%
zXi;72y0`b=%kVK)2q;b;#0`o3`O#MZdx*R1^Fh2o3|YUj&1&%8dzM*C5Rf^WcNloP
z*Asm9p~rkl2)h^xn%Q1oSrrt9J^|^~-oNHG^<;srhiz@PbF&_dy1gzU(cY^3?*c|Z
zk1E?_dV|8Ai*3vn_x@p0JN-$aJ)j?<J^o4;HpnhFMn+!Ok<6ciar*Bot9^ll#6#9k
zA#h91+e2_&X<Ek~8au)$ny~`HANY`;PlE_Sp?iS@{<k0}p13dXS65yEtnf<+fB*`p
z#BYUaR%5)oWZxm<0e+C1pEFQ?pvp<%hpRvDZyElp;urk2H*XGZ=uc)lJ3&iugRs4r
z1VjFW1m_X>K&n_6AfYr@8OEyJdTsLEjra)q(vo`1>+A&**<N#GIM4<aLgd}^UnD3U
zy8j9i^l5#5709CI=ykoV1V(2}0PsNO+qQi;)IsWqH_j-d3=$swfe<BQWF&}pZyA?u
z7{I5%E$HOFFSxP7*J$X)NCs{3oQ7Z7HF3YM2N!COBanwz*%kT&>htZ`$npFtd)CNk
zN6B|z<Qnv^9QRYooGq<TBo)@wdOu(C-}-ZYRaU2N9e58pI5@w7ckw_4fWvIg>O<0E
zAmQu^7mH2_8!r_k2~2~<>%!C_Lbl+|-9u>nD?wL}Y|i!<tNjO6lA;@w4j_BNoK2fW
zRiZ={g20(L6ow_560HbqVL~4&N#XMME~rHx5j%?lPn`={7(aXP={1;v3nx@XS;Pv0
z8W<^E*vQJFFC7vX;>^Q#>y4%boA&2Aq)ZFhg2@<?tr9t(B&1z!W1~`NQ-lg5ZQ?M9
zfuUfTx0;L{V+a!UHrQ4a2NKz&w^jOFsKp(2V$*N|g8nNJIy_5ue;758+#Qu+%!TXt
zPbs82;$~=^j>z}+6F_{72o8R|8Tc~l%b7L-(Btdl)W=HGbc8bWg|w%mXuDJr{b*!O
z>!*ThB?6<u&KKZn{N|8r-o^AT%PJoo-I=})GB-oCsG5%4_x8&6P=-b}I2)s%Vn-~g
z{&@Q7Y)IBdKV|hNG$Vr9zGE!*u<6bAur2nua0eEINE=J+DGNjsp_?>y`AnVIp(ZIp
zLc}73){a4JMCSoT&Y|y+AqeTD%|ii%B`IW#!5rk_h{G`Pxxf4T=siOM!<bleEX5^x
zk#qYIr-QRxp?Cq|p~S1XuX*JephyaMJn6fa&o>eu;q6Dz=_!v!+}5X&oGm5j&C$D)
zPam!rfR`k=dt(<9^kEmvwnM8;adHp%XDu-n#{^MWk%ruf(V-rX3hcdxBlT|Q<cgLI
zHmE=aZf~vwISQ4DkQl-|DW&ysICvXG$g@Q)XP|zI1WlQ+9y_S#*AdDDp@kx~2fLxe
zevoOwv;02Z)P-uddrnaq%R`I%R+8clkc7o7X<Ahef>A*Eb6LP$5U&=7C*c9}m&mFk
z7$UJW9CcQ>7!TlN#@a3q#@nqa>x!Fy%vcabR`O7c6)8G{1+kfw8Q#mf@?hk~^RjfO
zVfp0%)X2$jV~}5!C12_U#3bdRCHV*?OLQiTl|{*${Y<*pf9wC<XvwwM6?0yKFurcd
zX6WvSuyU)0s-x{hf~?u^JatpObl@@1G&$Er%pD|u6{#j7Pm?JO<vaa5-JG5`pS3_s
zBq8KA6_0hY#BSj7M7I&sacO~qJJ8rUkR`erMpH!6bs&#ZEF96bKC1k3$+|S){wrcY
z2unf*@80mYt;vn{L!t8sStkm(SGh=!xyLwc-xnKEOOqr-H>uCI0#Q;Ht>Vum1Daa&
z<_n&>|K{p(HBb8&LZ&nuq-1Si<YxZEphh7ZK-CKU?aF}YRv`Cn#Oc_!ADE1bUMazc
za2pot6ZlnR#6zmbXA-i#$6=$&ws-}HlJ(g9>t$<5(RncOX^;l2iz;N@^V0TXGTJeQ
zGReXMZ%2a&7h#MYPf}OR{K=CKqS@(`c|ABCG)J^RMJhrYgKX|pgU|_bv7EU5Xx9l&
z6t_LKlzzt+KC61NPl)?EoZEj`Pppya8wcfxh$(mCDZ+$Npr)*kI@2<Ac?qM-tX%0N
zCh3`S0c-s*XqnN<w;nNxi!c76OUD-bb}}7sq@dPLq$*P%@}?O{R?1%~UK&^eS6~?K
zquP`4<&<JQ_alm`{hb8qX2opLpLie&@bN+;`dz!dPAtTYsYdwH$BRDLDu`I@iT+5i
zxdu%mm(vzt9r5d{ISeC<thbr@l!F6B!aIsL1R-n;#dA~n4wP-|T1`%e0@~)oQU*%Q
zt_)dd5M$(6VIshla4e4>GepFk3YFf%7%svt8)<PRR|Zh_X^--FVfS&V@Luub%_ds>
zJB4egu^~~iiyb30CgLpbexQh?k>1<z<C2yaM#hxMY^NkAyji-$Av&k%DZ@5+`0R<X
zJJ2nNbMr{GVkfI#9lGWGk1@j9DM<j?RbazNL7EA7Rx1%K(vPpOahRFP=);FWZWvMD
z)wu4P=@m36^Zj?MnydNXuFaJ@IQAR+3Tyi9dX`(HPS?nh@10$9367=2UdUvYN3pw9
zD+<_>QJ>8q5e4qrhR@DXf-Ns8jJPck-zE$<`g`XLRt-R&W-J>87`b%l@ACJi^i4|#
zaB6tp3i*Wx*}rts6Uv?N@B6qva*qe*w&1KG9$Jd*ocqd0BH6>Z3I@s38%fQy`RI@?
zFDOeo(`2FZN=yjdG$8&QBMYFoHn2hx!G@rWL(<`R_)cmA4fMppZ#D`@i$aQ`L}O|q
zC0iL_?qQ@>^+p#>iuiO^A@k2x))oxEr)*TmlUEdG33}u9@k*LACjLEkygk<&bs0(a
zXx!a1R-sfL^FZT&rHK0$i6uhL7EOs*PBR&;hAnRZrPmtQ%_^{ak6nAmxPKDZs*VT4
z{?{7{@@VsCvmnP)3{L=r^|>z7cyYc}eR&*xS5nX1Dx?J;O&E+*49oSr7GpP_RE4J~
zpRklvw`J=teYhCxNzT?Gi#d#2ZDFi5C6D;lhPjB~Uk`VnYWUX*F)~p0qNr(by;#&@
zesLm|vGA5LdYo5~@Eq@FyKJUJ{2MoHEFzY_=u{v@>;+XlO42{n%mtW1OXUv{WB^vD
zG4u!D(pP{4b8F4(QwKr&DY^mj+!^85!lY0}<LXcQ74olla{98C>H=<sIt7Fw^l0CI
z-(xxA>$|f+e1Qa&L=E02Lq5h4*%`#f#wpm_8>DB}y0LQOOHT{IfMj$cFCe=ROl)m_
zPcGJGGeCLR_m+ZW8UjPIF{8LLeKE1#G#qNw++rb#QtGH0;k26rrm~5dn%_CS!8D^c
z@NbLKfdl!|u6jTsV~C^Z$0qdKs}Ui2_QkMqlJD;42ifQ5LI6xlr`g-&B_m4gg{N&P
z+=b(hjqZ%M#{?mlRx@Mkw<5Jo^WjQF3=_C?50QI|otpMbQ`9i!4~fdeT>vRFp_o!u
z7o<KPzFX<6C|jQ~gd0;DAKFf%=zflarAM%Rn`VOn0t^wXeoy(clc*}LcQA(ht2KNC
zw=dpXLS-R6C&Btp>^Lgcj_%Z;v(5<5KE*QN(Juf-%KA?u!F>{(oH@u?`}9GXTVVDb
z{k|Amn{Ra4%LCi4=y!2~XNQ}_(1>0UF-p<y`~WpV36_ecoj>B~FsI~56(cj2z1x>6
z?1aBup>x>;SfLGA8DxCSi4cC<8OgudKJ+BEa>JR=MK9K_v6T0n*J&I=aF9Ne!p2A!
zg(Nx_Hmsgix<>p)uwIiXwk1LD+YD8ThLYKCfte=+UeVIMV@?LF7)4<j88w3EGoB_*
zoD$+bPE#M(bRSGG)CYCY=d_K$^44D+G*;XJ=%nwVcc)yuGQf$oGazwf{~4Lc{9$SR
z_PcltC9H~G@4VPA6uph<DbOx_!?Eo^UtJRP{6#&L2_jc%BwaX)*#3%i-}lg8CUO7`
z0tX`o+{G7n{~JycB8xybB&j#(VyLG-D{R6HGX=CQV{(n0dm*qhf{pH$UhYe$-r@*d
z>zBCtlNC*w&IzXC3a{tgf@`Z;L0T`O>DYpr24gBQg)rZ<prF4Caw&G@Z{m4GEt^qj
z%qC+ms)8WaJ*7EwcmtI?A~5q%=ydaq?O9Iv9Lf897JTZ+7B?cO&=xW3Lq<pj*sMiZ
zaXeeewCPd09bu8F-=>&Jl%vQZ(xDJ%1!sx4?mn{8Mp&k7j)M<^#O@K<BTdA%x_^S0
zFmFE*sP_dk5fGB~1CvKjJ(|x)iPEX&XFZ>*gP~7Xs+>agGy=)}>*`LGs>r(NwChQ4
z)ixzx6uFlSLJEB<4FzvMn5y_e+q;FGcS2ZjOTydRXStp1Aphw~evtURLbtueb9^Of
zHh!(q>8J&?141zXe14Oxdy|TRX$0m!7Yy(>|9z9BF{1INjuAaf<~cN{@h0w*F?4En
z`yyT1aSwUgQg5THtw8hQ9hCB$UV7h22S`}E58p!ZT-roTNFE~&r$hH`WaLj(l`ap;
z@08yu`6*2)`Fnldy8inBi)<DEUntZpp81dJnVckBNzizChG1XhuT?su3=X<$nRC+D
z_osp*5a%M;Y<*?m-!;XNFepA!x}2S7sFsQ-dJJN7Cq{%1w;PW<#WW!&Vje=k8N6J5
zD9<9$R6wczK^7_xrj}1A5yzJM-L{IwO=qo;%@eBc-ZM~Vz0HYPIl%ZQQn5rOvFU6K
z#0uD1l?0r{J&fEt4UA0z1ly1fAtd<vw7XC#ol|vyE`25Z7$TvLGzGzK@jF?H$biXK
zLyN|~d5`!V3Nbf83F~IG9U`IeEW|9BPhQ39zkrkA!|&lu7B5MOW?<9%IaI(}iDe}i
zJKWCxnb6(qXuEHL6Lzz`?T1)1-VLQ=XL!ii7MR^67bM>fi5&BDoHsiKZr@>b`KL!U
zMWsoON#4w-KAp_wsa9K@3DEP5?`V29UA9!UQa$-pGHwagR{nsJq;s%APS!=NwZ+!z
zR;_b#xuP7_vcKKDUkshLHGF8ReDY7pLc^UUE}h%cqleH{x8G9Cz|9&BTi5rENLuGk
zS&;Tw*$r~1G|1w;6ANLblgoHu4Qqk2^H^7_>$V!dl@!z#dPBg5e4X-hwpr+g_u;cm
zDGZWZqmkx3&TAfcH<<N#2+Wh{I$54ue{ZYKMe6z)yl&Cf);4WxnQ(LSsQbr_zdNIQ
zlk}6bwKU>Z*m$eF^evMD<Y|~b2HNb_{1pD?Ei(5})z)^n!1|>zVF>!FJ7D2Su<`D8
zNjUI%_uz6`@79H5ZPT0AhjY#Utaqqb>+d$zbLrD#KFIIo_2JTKW&Le8lDjU@>uxzv
z#<2I^sOMoB+;EIG)8^Z?nVYeh!JokoI=|{UzxtT<eX%$?*xEwt0=@Uv=&n{w8i4qM
zR=ctKULQcO7h7i;FV9!}j@zwgAl5&xd_K7KWT<Q^6v|<|c^ES7+ImLZ!G5ial_*6|
zGQ^BfrmR1Mj`?amdv0)w3UP-L3+B=|^eRJ%BoJf69fX%F05hU^6`A6H`#3@t+HrLL
z2?dIds7u#!wuOj)yuM~dB*#Vml``t7t)WPTnUh-h`N5r8Ma@Z+=>Pmfd8P85{wFU<
z+NtLXkyNnzg%NN*c`joE*I!VCFwWSY*qKe1szKFX9vOxzd;)92K6=ztFAiViBs0y!
zs*LeFuZ&SqJ~`zL&)jpD5WXsrho@)f`^6=J*x8vC`j>=w3;6PVUQ37vi&smt2dKio
zM(1#CUety_KG{%eAl+;XK#qJrhEW1CiU=k`k~v<=Qa;a>T>7h#l@kK->-zdCAX?~d
z$b$j?D&Fig#r{~tu1+e)t(XViis$mw5g>CT5@JKzVQ`YSmF;ENkBq=Sgl;l@gWRAJ
zjO!CY@XE{)7cL>r6EXxC49$F@rVozSg%BO^?Qo914VGaLioP&^aHBZ%#N_nTi<3aB
zC3KEjTWV?QwwLNc{indA<zMknpPwibVce{U+J3~;4e90s>J@>=5QdDehpwnF{`MQb
z1PJ-BHYNeF9Hkiv;{C$s4sHua8@`m~Tlwf1&7c=D#2&In1p)>X{9xUqq<T#-#0G1n
zAw`QngbpTaiADy=Yzy~~P?4_vWa|<yB>SM*#!>v^SWMz_d5sPI(2|zZe6Bcg;g#}`
z)plW&>451Vb!9RR1)m=-R6k#J*0J+2g-WTpD)~Mm%orI~?JFqED}-Y=^EoAR8hKK`
z6qCuXOA=kipoLt2O8@@H5U>6uxnnyPX7IG|bR=P;J|5>XZh~fFDi$JQ6h(KFw9k`C
z!K}%|s!7X^tY>i$F*5Vm95$(KXe01@L;9P3BJo{Gq~S9@la$QYUr;!*x2sXB?9?(w
zN6tU%*Jp1zpGD)fcd9oHf%)OzHmvYqB@*;dSNaxvNZIW9IVmB!7@119h|qf#q@$7@
zs~iXQSPC^|M2U&ymRCb?SuA6L-&0}9@o%ZykjoUHJftY`RWJNo_REbut23{A2RC2R
zqY=zZlcR+?%Y;rxR{X)o$1U==c2VuNDDfikg@Nrg0a-XRYbGo^j5`*blkKAr`L3~;
z6vn1v1-B?BL*li7Kg!|EV$}lx=@hBC5Wb^0h}LEgXxuim&7rpxSdXW0gS=_V_`MlJ
zYM8wFbFPT6${E$#s_7yqu>X}WEP1+ZT6?umKW1E=Q03|Oc<Re4fd}b$Fsm5jmpH3Y
z*z>R!g1)A3O6g<eg)m35dBP`UsT1dXzU~k%&5qN0;Zic}<m=iFC0CrHDV+s{*SXU*
zpS1>E86R9e%K+z>4c`a7fj*jB9WfBqqAVAj8KF5BW>iaW^<b+e^KE25+lw~~sexq`
zW*Da^yF=8|D94AxZ|trSy*YH8o}XK?+y+#r4T^R!zs3+AEu;L(Aj!`T{eZrY)>FTP
z66L6oySX;CZ0!(}>~1ep>g$wo29lREgeAYRue(5XdNJHfL*v3%jkgxbu{j=Q7l~4m
zd)WsWOle%8f}>#0Pb}q7<QDZbByPr~mmU57f8yt90JqCVxf3EN_6o4x*l=DKKC3Ri
zzaT3V2}S8x8uX13r)f6Z38zteG@<0WQRX!&TrVo_n_g53ZOT5PlnRU7XXk;s%`P?z
z+Q#VZJ!3}+EIFv@$s&8SutaTs>DO}iu&5(>dH-t{8r<ggqf#f06lsED>ZDu}KVaka
z7=|!zlI+xSx=c4;x~RsW>)-Eh%f!&Cp7vCaW7ht>CIcG?eR*)KK?cd~R|r{6+eRc0
zOD27xZ8W8a?|KoPw$lBiB`m6qS61k_wDRTy;$)HrZwfcgGZBWGc94V0^pxZ1hXvt5
ztkymxZX&_Qk_)S8cT)_B`?08dg1bb`Uy%0B_MKKv?seE#ZM%L__Zm3jXfBi25v&ge
zp<E2k56^w>o~SsU)}4hD$9J{c=6iJ(>@?Q%7wL~NC5Sf{#@myn?DyK&*6@3hS-1@l
z3_jkOX%@`F9-}%-@Vr-YND(Bmevy@HYaO!rjV7S^&vzpYbN(Q9yf!yx(pdBo>yX0V
z_zxPZ&f7NDzsX<fQ{M)Bb<Nzk5TnXldh-0{tGtCjU_?aUac~Ph@lAs36|<$q$q*iw
zerV;2GFy|U4Y7Q;H<;=gzOy7qh4&0wkQ$XTedjA8p<YdJk!bm%O#&EapeH$<W%F0}
z@Gq~QHTiq-qLPd6x2@lrssO3K`Z>u%o`1uEC~d?ZH0=)+SkmDT5CAd^l)hU>X1%f^
zFSSn&EZhbG>@XgNqLnSMfK$P+yy2;1VsB9$JUpCjbcarMj`0=uk??m7UcjO*%s}Ms
zi@S!gy%75xt`_FO&jJthmNVW-GG0`e2npV=#{Z<mpSX#>YL4I8j9~T=$IfB8jLR?B
zQg;vepN{XhN0(Fb1f2!AZ>aS3xD7$OW_v5U#Rl#w<<|9O9+pTrMyWblFlh4g|1hnj
z2;!pyI~MrKa|-s$`SHiysuh@~!S0_}2HQjI;=BGq|0?Ev`rQwRxKBZit(p}7Hc%xr
zs7+o9BQi|ij+~3$F3n)g8A%EDI1%$df8h;b7*siPQoUNsBr+K96rV@IdyL*DcILVe
zi!_jC_?w1FG@xi63r{S9SS&!><Xt>jIRnklfoV4N%`j>xU_DGPMgGLsX3SWDT|S_o
zP|-EB<XAa~IYo;a5B-)0b6|O_!f6NHvY6GvM&a1YbUUFh2M!2=i{ac!JjSiyFgD}(
z{2s;rp1k3e9fRs0&mt4v5?#_G1fkG_CG2{C9K63mxrz%V8Io^tAk{~CwahF(7H~Mh
z`>*jUBrvy<?^Hqht9@@;2w1RC$W`)VL@R~t^5=N#Q?38LEx&?)#h;a|uJeV{7P+3V
zEq}L_a9nl;rC&#+qTeu|YyE*!mKD%OF4$#FivT-n5y{PuBSXihDYWj~t?9=tdX5Jp
ze&k<|ESV#G{Z&fL8N)|2h&si*O)Nt#4-Ci9p`S!yRT3Jvp*C5e7LOYC5;Xcu$|3oU
z%8bffjo6dq8b?qJU%o0@jb+-go#99XjKoEe7w)rrr61dr_yl}gtI;usBZv>s&YcD~
zd()%*rlIzCvozG7dktJCnRn8YKZn~>z&j;kqx_pXhJZ5Kt%$Ech}`N@%g%G?JpE-`
zV$6P?W=%OedT-^PNe3t@CW_s^2{u6_3b4U&zz2mn_3hwKiNdoQ2Ahz$yYh`yi1QB9
z@Ge6bt-D5I{7Cef$%NR)oAwLpYTK_nx3&;|tduX7X6(M9Wl1y(@JIRFT;YbLv9qHp
zapzHte}f>@i`<*UCTf<sBU@uM`dh!<>P&5ETHCD@4mDuymia=qa4BexrQQgY2Zv?Q
zY=aZWnZ{-J6_pPXf-!1Ceyh<v7n6(2u+amky%!YMl=veK)vZM+q<PBvE@%VYKdq=T
z6Il}EEjy@24o!kNCl%&uL88KR(Nt|y*@<Q)tvoay6;Mn3t#5>egYrlj>?>A!`Y|lF
zr{2wxUqH^nd|X{cQF>nxgvxt}rTA^SUv7nOB~8&TSLjs24A>Rn{zG`dT7Z-HY;$!I
zz&}MjGs)rJF-AgdC#S8Vqx=Xqn3Ty9EOil*f0NaQ_J)tC!`eCM=Y5rs4ukR$hb}6l
ze20ZweatYtw^cp*t4`~91y@pALz+16@fgrnRjAltv$fZ-xV)iSjxwWA{jo}ky%NVX
zmbz))jA#6<kjj-hHz&a546$fh=11O_benakhUO$gz0(*Wn#MLLKX&fYf8*%3SOI0h
z0Xs&nBtMe!kF&@y5^u!txNbzHmiFKb5te)iT+hGMOIY2brfp1A3yL{+{f*E3%)f9)
zN^7j2_+}tIf~ePUH^{%V&AXfW!bci;T%7URf4=Vo`dvU%10xjw=W4@yR*KoM&o>97
z<S;?{r1>!4V(v`#=Ie*}iA$vABO1Z$PvPYCS0TXYMz+2Qt@k{!A3ns(1-GME>SCm@
zIj|3wp<H{NCS?G93e6&t*HTQOWqm+G1%kG;yEs`NwqVBhu}+9@0a8J2_n|t&*H)*P
zuHB708f_9O!QlSq2BeKvD*^_aS5(BKBtm)SND(1MWqU+~*_*wuf#^A%pL_wbnYKCW
zIpMjzpC8dQ`s30x^6$&%oJ^@>+PvUz=6N1I$I@|MmPz!LwZXG*T_msCYbto<;!<z1
zoTCet(OW*P7}R4d!zCILcMCR&%U1P}-5c@0Vhj%{5SSUzosDkq46oirp&J~{740AB
zlm~K@TWk@lC^|T!+ts;}Q<mqQ6R=Q>n8<rbKk793SwZ0q!k~^0WoEd~T`DSp^7%Y;
z@Tb4K@E80|$2@n8QlPq73{2Jk-mutH5TT<THDqq{TSD~ugF|jF+4?)W2$fPpPpffM
zCb}Em<T<wZt*pI6JaomvEN17{<M>o-rhFZCn|`miyH8EN%+8IG;?Df5=K?-9Ikh#3
zqLc<_RpqjP#dzE$S2Oy0oyWEvWED<9s0-(8bMl)K)a^m`N*z}l7E5=TK>ZBiz#A$#
zS<EPAsr7evZ+jOUXv&~}P`i){@I8e-Mmlombgw6fU5asxu}&+g$pX~Z%=Loec;Wjv
z<JKIFuw;oCM6Dty$d^j<Cko3RpPNFQ!t!tJu>5HEj~9BW)42NtGnCovXE5>7eAAdk
zkSe)s`YQiAt*Voee;~S{bS=9VomVNgY)a#dH<pJc0|KcvYg?ZUjHE^>-ugPz8c>((
z;z0`^_l{*ftYW8b{NEM$av9m*#@~85PlDZRzf~wneZ{<R97MQoiw1U>V$3@th5wqx
z))pnByZ;vqbV2gQ9FeCU=Fm2tr{5I};~JUE%PRfYhSiJaC!WWphwpxSutFLL`Si3e
zp=@}PsaCO;A7tx7b@!2HJZP@VHxdgNV<$4^<J7c9y_pdvq2%(^j8+7qjz>A0{={>D
zjDSYbA$m>kj#^Er6e-bnaU|<+HJ;(BW7CT!BPH5uasN%Ocs201m@VFi@5qJR@`9ZN
zdGNBa$~P*Z3UF8-)>7dV{O0e47MWq~k1T(COG76=a;Z-#htZc~#!Ks8;&P3C!_qO+
zK<#&Ox{@r~2#s3>8}P5kG<q>8Asjk45IT!$=FtO6kp=Tc`QO7HOhHmp<CWXexXP7T
z`6P`@W*bt-$2L#ezCS$S&w{`&*&jXX9q5!nCjE9g2S#xSa!PLrYg#L*cO3t|uM^7r
za2v!FpbVDo3BC{|Rj{-<gUwyyX!NlrdeKg%q;gwE(Ik!i=3FpD)h;9rv0mjANZV7x
z$<I<j9N7dwUJQeviP|t+;aL@!KTOS)Y|gjp!$tmOE!;P=jJ$>tW5W>=3-zO$?F#pq
zqjK6WOp1c)-SQMb7NxJ=vasyILF73e*MqY;A~x#`zic4e!bwN+ZqI+VH+!|GJii~4
zB)z7oIswkyL*n*vvWzcjGMFZ}xfS}9bs{;dNekC!*a<AYS_f2AnLZf1t3F1OR=jS9
zOO+5DM3~jo&#-xA-);NVdpNuC;ftWNL91fv@tOq+oyK8KTq&6^OXV`qj**<~^>$jz
zs+;xJoTWb$-BewS6*z#@Rn?!G^xm6~9&JY7-$*S+7$0tL>1DkQfPy*;=AJeJcRxdY
zoTrZ(nz<y}`l}JE-RSSsf}7eV)k<nr&C|>+TV=o6jjHzm-fs83Y}c$h^0TY`>i6H0
zrfz(KmI~U4BzZHo;eN(RJ3cY6JS|pBR+y5ci7|r*ch5VAn7-1Quq)6t1>$<%N4?NE
zpkz*pQ7Pi%VV4s;BAM}dr)vM=`Q(43QNG5gnab=T>Vivgn`let5jvx0)~w_!*mRs_
z!D%9U%L!1zNCSNiSTeWH#*|#d2q(L$%hXL1$X}VsT3i<Y`$owIcwjbWE$iou(1fKy
zf<!pQM7!Isp)&0eABj~+(X5jHfaJ7fI2<XYl7Ckw3MuP73gBbDJ7L8pA1SS_F5Rp&
zYWz5sVRMV*XKn6!y45IZ)g4+u@V?@kPdDT{9raOISgaH^5+e}QaHQ;*Xg@bFi=H3u
zZ)Of_esMBORqJJIoe5XqxBqxr8gMat?>aL%ane&bH&Vr%xPEI}9@f86D@()<sGI%6
z_CO-VDR=Vh*4*^A*Ng~rLH5wp+Y$nsV(DSs5S7*Xb=JndMq>p>c?HY*s<>Lzs8<1A
zK)<xLJS`=|*GJj|bdK$_`yu9@jh}>arOR4UB7Pm)6uf%gXJ=<ZXdov1_hD}9jJtf%
z@2*JO|L@O3`KXk5M)V5`I97`l9GAVPzZ^gMQ#N<nYTQ>TV~PF%btTvnN=&_<E_B)K
zGZ3$cRr)N3l%fl})ymay4iA>Iyal-YY|WGNw9de7i14``OR9Z>_lDz_X1VjkGPNF*
zXez<Y)}c4C$gB1@l2gxnKwkq#W2K);ka&t%Fim-n{@h9;v*r_XFc`l03C@ZFP1bn-
z_-Y19@`5ZX4q=7TFa`cOKwky@;K!W%BNiHNI>Xpj%LVteh??5+e*o=362F1sYzl@3
znoJtZMjlz@6Ctgaxk6(zH7QVfq0I;3tc!I-M~Hk@>`o!50R&zUcF$GF!`opvb{@{Y
zd^IF9bU9~W&x0kxoFq{k+zEam(x?vU8wfPfPYmYmno~(Q#rpY(g~WgbYC{Mm#(X^u
zTkurD3HCGz4u3Mwp+Ch^TgTEV5nJe%7|V93V~kVvgi)|_XV&OX6ImmYAPYgB^kc3E
zZX>t)MazZ*(0#&Yp3n>;IH-TCP6f#TbAwFP&<KeMJaFSc0K#^L0x&fpe$Uy7jxxJY
z^<2(*o8b)n**KWa`<c2&pViSQ38SJLbkP@3^HsYo#K5dmDQU;yR;r0xaDRMFH{446
z>@!d*F16>B$zcQwUr5Yl9BrY1-jGnOI;;Cq_$%UUNE$r?HT8109d(mVx(11^?reMA
z0b;vfGj-0@hw|7nIuiUL3GmFdI)m-ZwM5%}tyD~H?U#I1-$s}QF(;Q3PQ-)-ejn}b
zz@s5>xBGc*&5ojok9lWqj?PYFbly~9laO*TbY4FUHV}#pOdJP#(li&r9tYnC?p!8Z
zs+*ixKFqZ_$q+o(=z_THnl`$~(#5m_d(x9Z(MC_21#I_MRmtp_rCv8s*HO1@U^;E9
z_(JGjXfy$TX9BP19ubIR-C}~ZXx9Ss1-w)1dINxP08K?|y8s<pZ%WnD_zQplOnd+U
zB;k^dsD~x!=I)=?t5;u61IUB)XK=wV>aJ?_v-z{K{;y<~Z}Tgel{ee3>In=ijB%M?
zvV*67N-!(igTYC%%?y(i62_inim*FiqhvOWm7u!ns>2uag?0|qV>;MRhLns)eQ_OG
zab|cI<i`4ho>0h1;qf2^l9kL;B02Sh66cIdZIErgRd{^m6=}!7w9J4sdu(3QhnR@N
zIg`X7#)ZeRYW700+l$gF#_;x^yFa|u6^dqx29Hw~QnN{xppP62&&<i)1{Q&>tdFJ|
zicO2Ko*0}fS!x1kA&s}S-$uJTMvE}Q;XE0^MXVK+A+g3hsdBrdNseyT$R?-K=htJL
zFtMFdx@&j;buGs1RO`SL8Rw8FGq}a6?a=x~68h{C)GVcY{#Pud9k4(=4wTLn>Cs^y
zM^djh$+SZk*q$dBkEi$(K|*o2c9|5CV`@}K0A)3N>j;{zNy|lP#4=SsbBBooqImI_
zcubrKA18R6Rs!va_fa&ya@;Gg0zCd=;Q!e9@+A%T*C`Fp*Fin>^=sFx#?Du?jb6Ul
z*+Kt?cHOQ<O5@s{x}SnXCv>h31i2v`t^}2KPIWYw<oCiNP1<GR+PmJOiYJ?nB7cs;
zI*{UUrXVO<e5V=u>(`E|Jz+855SzW+2;wQ&*JSS%QiK)<Y=UbA>7CJ%kpwLVbrU&?
zY&5~0-aoUUNMF4y#O2Gy^VC;2ZFD{-I^QA4P1io(c(a)0Q7`FkIg5!1Nsvs`m7S<{
z1u`6WLvm}ETK9(HF1AsNl(wKRyr9F=baPZ_N8>9$iOr!uA@pZV6mxV2M<+)Im&ot=
z7;f^={s73ng%0)yN9ea-j?NSS<Mq~?V37d3O5)UPB+a+bi-Y%PXGaH@FE-I-uCas2
zm7sq)%{I}|$>0d>prf-xg@O9@YB-Zbpr0?^pH=`t@Up-mwjtmiGO1W+<Aq)DJ1@3S
z^2e_F!xHxe<jmEym}cqaTyQ#HREY&#qIOR9e>ytp<bKR%IC3>ni*F~>K|02&Zr<&G
zcz0Ca&4B(@=mygJE4Ur2jnxD_fw&?$zx@(H0d|+=={f2c*Re<KrcqT&FSSu7u8H|%
z@0rivT^;@V`TL8@ql>G<<H7z<Cr4L@M?dd>IJvw!J-WO&J{VXs+2|`ay>td@`m9qL
z0B{8&rWjlg)dWo}QAhH@^;UpW?FB>C#logh6l*R>>hDF&xC^%d#RGWF5xo2mUVaR(
zI*3;s#StoA4LlXx)QW}W3fHch@-sYzt7Uyd?%W<jUXdzCCv{kY_J`06bck;qD*ta;
zn&y81Pf6VSFTuiv`<Rpe<<*;4JGuN1yDwk9Zu37pM)|UaQ0F^6yPZDjn3pv*&s{U;
zjE}eVKi4~3s=Ay-MAg+9xAeD&s}ruIM0EP-3y6qLG1^}8n*&8>3<N0pJCy<aun%z+
zV?lWO<B0KT$B}YhxAI-tuo4S(l{A{)QTmWt)`LS5UA;&a_zsC8-7nQx<}fXKl_^k}
z$`0<C@0^4_;m}1ueTS?XCHQtq!%iRVmi>Z1cVKfb`RzkUrGjg-eFDYS-2YnoC3jp+
zsF#d7iTQewG*2oynx(2*^O9UTyK|>1X<ad0Ii%}g!EgGNx$wQ70qW*;{@iAXnN6%)
zte9bhovNRK8}@cy{ZLWCvc##w5-4Saq_!8u-;fqg>g0P8VyCKtCB!sGhqbbQS1p?4
zDyGS@DdTQuDW%ssheTo;i235msFzhsV8~cNa9AO-%+rh0aizFQ>9FN4z|?H73IiHS
zGR{l11Ou>GNkBA`l@sdwBrL98P=`9^<db9N2+N7?E*a^zrQ8CuU2sXh&qlM%%vI4O
zKckS>A+=r00?CWzmE<j%x4YOI-A5)^Do!e2e;TlSc0_CH|Gz%?p=YlCZ%<@m`|SPY
z(V!<k%SHRB*Z+5SUX|$oZT{cKDc^r@vb&)nc#(s(((Qx>Bt4}gD$tOa9B$go?fdW7
z*4!|O+9z5Y4G|yRP^^u-GOrlU1FibeykF?tC{FaH!!v!CtF4W0shrSIKSmkDNHB{;
zjbBK5U%n&{c)i4^M*Sdeyq=9Ws$)%R$M9|N40p`S*1mk{B0567kNPz1NO&7B0)73u
z5LR%PwK!_Vsw|5c388z7WymDjAb+9_oqR7#c^km5gL<3k51mZ}5H1-Sn<zR-aK91b
zPDRAy&`f}qZRq^{;PTzY(co(T@bviX>U@7N`0f40;g8>Ke2Ry}lL3G<A;r7h)Pk#O
z@ReL6lBWy9J6(p<NmXsUKX$(Kd@QkJ29N{>Ov0;w?Vvk|BK77K>UMqNF`sN^NLWdL
zDx4g8!c$l^d7ctsYU!bfU^py!2TpG3d7NLb*3?~(+73<CYrGbWm1MWer>NVNa)!E8
z{YAh=?8g^p<c9DU&1lrsPi2*~f?q9}x+J{$v2*?|otwgRb&y$BIP}qml>iyLL@NU}
z(S}-k<#jUlrJF`vbi4XRd4X4JO{*W_p#Y_<i@IGi5vbcmk@zz}-7dtzZTynl{Qy)o
z*cWeappK7nvalFR-*9Se1wcH|b!`QAFj0f8LkYYGnHcSMG@zkJa#q+>*sJz}NwhY7
zUTzw#=MlE{w(05v!`e)oXA>VgC$%aUthU*WrLd;`Ha@i*v9++8ML*e25-YThjV#wm
zC~1v4AiCPuuNlF2_Wtnb>i9e-?n34h(QqYag&37&Dt_PjqbDSmvFKsn=StmxZ|0A$
zoy`IY=kG5rb4V=Hy@-eh%m@8hkBzULBqmMcx!<&k0v(m_(N;XG>aa080;*Fkp$sdy
z>;5}40jS#rVtkiS;|Z;F&1LX=hSl5{ezokDq!XIr8It%DK^Tq5Et=9WmPC|?NjyHc
zX6`nza4$KB{RY<dCPclA_3G}U7nwc##%st!w~e{tMP~5~jxIhPAC#=0#$7iT``xtO
zmoI7~;&4{qprKDbBfH#OyTBeb-X}YoFvC6dKW0WdU+p4n%;C#2cuFM8;|<OmPoMV_
zBhNW<*0O~fTzACyE#`hR-Vit5c4PjSPt$$_vj6u-VTs+nx4oU-PH*=KO>=W)CU=r6
zA<_*FsE;Ml*r=A>LUl8jx0r`C9E%>;A-68^IOQj;A}4LXv&8?X;ZqhKan86v{T~Z}
zZ<0Eqcax_|GL52xHhk(y)X|5Njx+03+_tHH0y~oq`fjs&Xb@ps^x|mDu}{)2dt@5P
zS<>-MZZI9R5l|&JszzJV|F^!MdFZmh{omDu1QFq)C!=7YKI-rP_Flbx^*VR|x3~B5
zReS&U80E{C?eEbIo%X?VaYO^6wwNEMiY(rQ^wIa*dKGSezjpLFG9hdA{hYbN*OokM
zP*JT`ZHS){TY7zW(+UtAR9n)+&XgX_oHXg^4oMz|9(wZ<{z<0;hz5>2-4vLTnB4@$
zG{v0hLuYIMGsXcOQQ{*UMLIp?+HXWdhx$_Wp#~z*ka##21Uw|suZhu`xss$L@C6vs
zgG;iG0SRZcjiC<HZLTjN|6WAA&3ek%NMWfIv;+GNI_&@0oLouEBn`dOdL!aAlq1yn
zhv@!8?HsORpgY@4z~&RyC!putf!b=hzEXrbX1twdbF22$B1{+HA}ms5mkT0euJ5z-
zdr%<;DolIr44V5S-9cfiGJ#Z0C9^TXUl)wY{D#~a2W*Ig^t1jOE+rPk-abGz9EGXA
zqS0ia-FsB&5YUD_&gJs0>*vF6ls=m3R-3hhE(U*I&G0MW-kT7II_mf_0JA3j)?*M9
z{P~>fI5x~1XXI9ON1JF;S?(>L{W(P0T#hPklsPw(N}9H{R_dC6I){!D38(Ssm9#5n
z$W5Pry34iC$h^`MNokXOpG|vk+j1QG`$06pXYmy6?lhO1W!Z9T$-XqTm!<Lo)NM%B
zN1<jWJ9QJvx|{KWRCby!M&`1HRdg=Huawf26(5Y&_5rV!zUeF9f}HDIH!Q@tNxRCi
z*IaGfm*pCf#GR=H$>TItI4{g@&}c4U@(3;`*BF;`wh}HI4%=MfL2jN#Lv|a?9j?71
zj54(s7^?MROtN#=4LflTTXaD<*JcYXh@{<oQJ$$<y<CbAD~a_kZxW#IwCay`?xTDo
zB4v}by99F2J{vL$ngcP{SY-su)$BIuZw~ZI7!9uenxEEq4CA;>VgRY*x|4xn&|q?6
zL5?!jGjqgva|$;gCt$qr_^>q%(WZ-buxW~t+5zf1C1VS9qR~>zpgc*;v@AFdyIQiL
z<I?=A`u?RB`Alxy)6(@*o<Fzrx*)^C746DcId_$jX}Kz<w!|t=?7I-v+!Vm`s8^aU
zcs}vUn>C=FZTK)mEUX;e%M?e>s<F9n>T^8TUXmyXb<|}XZS;Po0TI1-0UM%@&VHQZ
z?9OI+tu%XNXR~C#%I1|$elMmgpTp_PFKFXaO8?UR*mTB=@Mty>aXD|6Co7)MoE7aF
zaHne7HN#o;!mc2i*(MgGSYDntqeaPXU5cu`GhAdsO&fPA9l~0J{H17`MK0&5Z4H&?
zoKaj?=>y$DBicoGmhVb;!&JfT8Dl;2nRqA~Us0jJ&ddw*92;A7hyIM2w9m~Qf2e-=
zv7({VseX4(3=i$R${@*5m-&_rXa#TlB2XWzx{`r7Aj#{z5Wy!hn^X5!GSk(+Brnw+
z)SbAG?u}l$zogIQt03#WsHEoP0V&n_;+O#}Nhxg-@Fj1IX9MKq-Vl0e5FJh5-%)pj
zwpk=gGPiBZX|&x-Boy({AL#DRG%2Z`tvW{l9<XUd0|GH}tuX?kp=3(4rQtYG0tb?Y
z>+tNJsyM<ls24bS6Nu#1%K!tL1-P9q{RKx5)GPf~y85%7^a3A8nLYLt!pUW%*8O{l
zM6_avG7!}eZHCqKW2Z<>Rq?+V4N>Pm!;Vw6>-ZZab@Lm*e}*6TPd*$C(8v9g<HP;S
z<M(I%{|w;)&o;S(8E>$i8e0uw^CPe%l_{A2pyLrzv($@ufT%F(`6dKBN086L7ZPHb
zX%93A)+mUSz>^RZ#K+MBY*)<@jy~f`B*4vzBuGlTq1`m5k(^~~#XQ*Dto~VtqTJks
zT`5JdpA3HsIrTu*`wtc)leSzCiH1y0(6z084R~HVZLX0CzAKcFlyqvWBaNd_WV1S>
zIHZ5Z1l{TYJ!vSOlf(UU-Q<)(xZ@F1Am;^ZG(qEZz(&9aqBY)|FU|+&j^Q@C_-X&Z
zITqN@lCeb?02XV-WJe-0=kKiDIUi!r{7{&^w9OWB>H!riFs6l}(GW526RuM}48Y3u
zmhn$DlTnx8Ap)cK?TGo^BtVe)wyq|Larzex$NC#3qWNn(jv~$?PQmyhq8|wtNrEHh
z+s<@frQ1QiP6{M5D}qdK2v<81<^*;A=WcIzr@PZZy#pNKAq}XcMD%`*hs3n*y`$1%
zlM!dA14meRx!k_l9TJIm>ns%%l0d0q-Fp(qcrVltC$+oDIyy9>(ZBt;+k4gB*+Tzw
zxA%4-T9r{KbMu(%>Hk@{gEZ}W@6!*!us61gB?ZLg$pCeAsCo5I*S|xsB+}o<{M+>+
zk^(m23Q6HAsu@vHnU}gCI2;gLsInOdfRbUt_6Wl?nI#Gk5Ekf`1cA;z0l`1r*u!8m
zCLsPi^Z`dTI-W@67-RIBGrrDb%#x7D0KcBg69wG@=QdnOrz|+J8hujZHX%u9Nzy4C
z8Il9TU834lDb%XE*#3v8GEl1<=_eC+xzT9hh*3XaH;(h-gLXnbKis$v_7|Dt{p>V1
z$EoHFxEQ(@Ck;`(I4Ql_0tC{S(f1un38b<`R%8FUfc<ZBr`nt0=^_@ubK-yPz1++D
z|L?ut+iUHAAEP)PluzRFI_IfbeuWKtV5-gZ(arAKCmQ<w^yYGHN+kBN#Qim7qH#8N
z&CEOqxIv%4lsF^kUwcC0(8t<+<qm~3^hqeuD}4u3c)H5v1=6*$S<p(ll2LGDZ5trO
z5!yhBt3ymWH61vP4QR6*L37cRi6CC(LA0hxYcEh6u?+~NW_5e}=KdbtA%o~1n)~jb
z<*~0iZCnO&-(31?2e<D&k=d3FW9^tq14$c!Pi9te-?2!-Ri&}9t=E(43*8|R;!ngg
zZbd($7j78s7YV@ha<rzc+ca&NUKW=Bvud_7%eQ8x+<FVmQt_EePf!X_PflHnq?=cT
zk=cKJYkB(I$^!d;?g_WsSRa_P|L?wjvzy!hU%!64+wT95QJgbrl>(sVx#w?xU%j~>
zIaUF=4ZPG~VDmw@?{ZUvb|0U!kAqpn-03&cwpR2fGFgMHWfzSpGk!)5HtF7T-Fctp
z2DO;{=eQeCAs0LV&XNB+yKf5qpKspmwDSKkO1jV-iEYEKD}L>EyJapyB_b><!LqK@
zPkIgfE0+b<f7Xzxx%xL(|9i8SU;nRPzi#6{K1ykz|LGh}T@p$@gV3y9ZCnOQ!51;v
z5`PBj|9j)VzB=k*#sV#;6_#7-J@B=TYvk8zgQePFogP@r273BII~>vw^VwmdR~j`g
z!g8{OzSG%}Qa$d=7l=Qoe@9=x0&?Hk?uj%%+@ax{S0wZtyRQoUYQ93-grC1Ir090D
znr?=>4IIh-15X3sq8c!dzdtS@|7{Mhh2H_@$^V_*H#zzLYWL0CR{lRmDS4B&?%R0-
zO8Y&Nt?m9IyWE!8h=*24R~^}r$(m<PtYI-~(i%}yJ8k81^jmXdTOPYCA^*jVx7Y>1
z-230R`TO6OJ9};Zr$;F{@tBwWRnmQ+osI9Kj;HBG?=R$YId+@L{POM|Nzfbrt8!6o
zUAdiM6~Q&xDnvv)MG&1l+<9Ef_hjQrqD-)B@@IX6Y?Ri`%F5Z4;$~;hrWvn8uB>^6
zm=Kj$CqlHTHz!g?4vVRxGoAl)_lLLUgT#DH<T-rK)fXfno=J9I!<17jy@}4hUCNgT
zaTbt1GEuLd;8weU{Lk8*F0cd4v;TSZb}ujgU+=W{zmHOKqOvr4x?)!?_A|lIGdn|-
zN?&b(3>yCO`$u~?sFnB;^9PO$L&y<T{mRX6o>+UM5i!x9ZHn>zAYiwMhC>#IzLT3o
z7>VqN=k!B0%Q*gTy1|z;a6y9z{%N}rXVYxAIhxo~piNp9jOXuUa84oAt+3BgKs_px
zITRMdbQr26Q=bl?c+zVOI=O?|-OF~9Q&E;B+cK=R`znh{x_NSf{k2m3<}0r*gGQW9
ziJXvFAmMQwkvaUCXbRu_lI{V^0{ef_>1IXuf5rEoS1;T5-^VGrCFFRn<&J(?hvz!?
zt6r)voI{#%sAzPCcEf+D4WH8+8j!J@mS6kwBqyU6p1qTOVZZ1IL&={>c4MhMo(=*`
zr^&D2jCx3UTAj21BAz6^`Z8fc8vQWEKz%$uKgfPKKR!%9@Fd5hJ}<>e<iCK-kNe^5
z1)RlBXc&L4{ymPOfJ{j!aR6B&MW*U$EF@IdXv1?<BJI0qO2a<dT}$`0&wcdf_3M|f
z*AOyUCszedZDjAmV0OV6xD<(*kYs8}@#Nos(*0ABVu1tTJo*3XRsQ|w<(t>7|Hq@0
zCEkBhKDbbPP;pf_Wg(S}({SAL7$*#5;dXL?c%A`rpKYP={91u$=t|9kY|SZmtJ-Ut
zAclRPs=WaRS}#spJCDY7+r)F))bw`Mlr&1v81%=EWbe*-N7UT$U3#DZIJ$lmpbbmc
zP4u0E><>@kLH?1;0`gy-#ujz`gECM4@9pK~|L*I(Hvh+?l$`8vB2T1R`~?e0<ypW8
z56^Ys2Po}b-$SeZTB;R?mOaENafu^pG-LF;6Q!Z^ht^?<U@`Xy{F*=8QDUpz5I%$|
zu^_pYfL5vmFEFqFYV!7}l?CPhkcPfe=~nvw|MKPA!u$W5R{wvL(p3Kcq$j@J2A<$H
zzyfkXMv5rTe!T>7?Jm*R0jO+*Cmlgw$J<#GF$ANADd?h%G048>u{e}#_Pql7PSQ`!
zjsJ-@^P%hwz@D2wp{W&fyOA_23&?+cS11-g0?d>DZwvmvdwVZi``<??Uur_&W<$vL
zs@*eml~%H^TC!`it@jcBGbV}Iuk#wdLH?`^<<HZcs`iHt<Py(B#pv39c5P~l{7X+E
z6-OpfZ<$|4!8j}JY;GToK+j1+nD5o8GarNUL`sbYYL`-F*w4&IrAc4e9yaqht14M!
zs~gY9ttJ-KLh>JWWo&lkmEHgEyxl9<|Gs|P%Kt|xuDNH0`jrG8%((EC=xB8tL`Fk&
zH;Vhq{e`!hzu!i&yvDou`Zo_dt6Tqjdv6Qp|2MDN^Z%oiCEouGADkLKSnmCAkO5Mz
zI?g{bmM!NBH0z)L7HYfVcfzJ4D1Rqx;z&>lp#qm@`LdW;!jRAhx8CHjFe<a~Z%%g_
zO2Thk!&3XD3GWnJ7mO^Mp`mRSFX@!9Sf-6LpPL|50jGS=DX}3g-u0L7Nm(a~RT?0-
z_dBaAi|qdrOEQWBL1dQ`?3<&~{0pJ_{r~mO>sNXIkJqnT|L?~s&Cb)R)^}>oFU*`@
z*e65O{}Fi%2Sj+pfs)qjC9jLl&-P2V#>lknMZsagDwETJsWK?Nkm@wH=T~Fsr2G3l
zc6S^_y=;~Rk4+;Mg1Z11w-?M|G6W2g-M%!AL_QYglHQQt@Pt!8d|ZZUL(8Z|3~0?Z
zdA67r>x5uGAVPq7r^Yz53A+o*9oEC{kR|RDb~vUhXJusGYnq;+RS7b#9}6##A6$oz
z`HQ5)DWslpBIcjeFP$=ruUdE|KE%1@)~FxQ+YH;4D1gG75I+tGKXV?wl&0r=)}pMc
zMW?9LWv0hXFF3_xavlePzQi}&RAi>YM&T~e(TIjr&K#PUFOAOwrDCPLlT2W_Qg-^1
zi{$9wldzGR%~~W)6AGa#eUacOXHgZ34$N~-1d#wtb8!cCU`we&e|N`S4!~=YJ_v>m
z+<RgfGM_X?QB`h)qYG6dXuQooK~}wnO+JyC;V03&k*;4g;CTnP0`#IUpZj%%Ya`QH
z!}Za0Ad&@y=VhMrafQQhySo1<B;ivU0=Rb^d*qyO3jRne^xdJ<Rm<$<4FS%>%bM36
z=mF;46_r+ysh|nWrc_peK%FFu%bneRmLggC&A*G8`}^6djXdV!>Evb4Fb>2lJr1cn
z(CIM=7uk2X%DhMr^)NA<wC+zH$>!=yaGp%HV^raCH2uY!OqriNnrv>m*G4Xaxy}Dc
zU|W`#Y7=F=fwiUxu@s?gSE-SX-!AAA)u#Eyp+SR;UYUSVYKit6%&fx-7`-T|o_z_m
zr6A?(F*H-lv4$<VSxp-`d&GP%YGl(DXC0-xXnRP*Z86Dx?RuYcU+xNi=~<KC5?&~{
zQ=2yAPqcv~8$iHpv{6IWyrfEe_0Z-f>fl(iPO%qn!fr!!O?}jjulw-dcjyjzv4mv1
zsDrwry=!+qUF0Ff`niq;S%Q96tIKxjK=kY?8&r<q>({=kK<DZi&p(}Bcqv5l^RLSE
zlTW!x{W}llwpv%H&OE0)8$FomH0r=(;iwu{SlsCC&dzf{c0@zJ2^iF!sx=$Q3ED;7
zDgJE#?HbiAihftM>VlDCN5{zj;v{``e(Z@5M`FTcC-XUALjI2ti$mDH|MQzHT7*7h
zJ{D#rbuZ?w-^OdR0Qq5-Y11WG`$KLUUU>hkT1DLp^!DvrwC$6dZ84cHh*HU(T+&g5
zAepyL6!(2)!f*ZiH{2K+@YdqU*KG?A#&S!bSuJSaXhB=5Gv$-YH-Y@{Q#${YGPe`d
zNqQ+gxs)nag{dw@q&W^v`^{5WLq1g-Lm~Xlf~uL-s&lHeD#`BEUqTTP@vye3`90sT
zf>rZp#e#IK8dXu`Iio5Sip?;n5s0>Lj&Hkew%Qsz66skA$g$0A2(L~!)DL!{>zT5n
zZ?@sGk2-U^se0p?cj3@@Y!RmnmTG{7$X<pQe#*VNG=oyW#w#4pE4<C;zmA~!hv9}t
zU-zcJaMDdL`yFalywx^1=T@{_P&O8x94j{6($zbEW2u5ye-G9Oa}wU<kLY^#e>%QA
z+dn<NIz0O6!@JzFhlOLNnTMFqOcXfOfzU3U-0b;e7>~=ZDANAU-w!U|T^tSm&&k!t
z_a`4tkFE}nFUtGvG}swB^Ex?ye{p$r_TluWqncjk#Ov$SN$W;?R)W~O!~M(sN-`%f
z6D$s~#D|nuQMF=2$<yKL;^_S3_+bC?`2E?{>HEW@3Q~vw-;jEeW<Y%yR8h5o8-nA^
zQ8zq?)UhDv#yQ|;8q8&}465h*gTZg_FAlGMK0c`$e%0P)JjAx=IA0Xmq)dNrgk>3m
zKWD-|+M;p$mCTH*WWLl#6w$5E%4EDPpUA8~&+TL>o;*1DFt|LrxY|EIzdGALt(cSw
zn*$sr|ITiG6`h^#LtnqVA6(W5xy5$D>Tc!=ol0LMEpqCY!+l(&3c!|KTj@VmyRZt5
zTT8C00)9_;NfpN2^w2Q>EV1yku6Q=@If>6;?(QK1|If+Q(b@h_Cr4M8CxiLA*Nlh`
z>V&LQdQxn*g*G@_I@n#F46e>Ej($G6xEdT?d_20iIygT6<>+E*WFt;SO1<Sbgdfmo
zqK;e56-I^5!O_KK4Rg-9Yic0FO+UXL{m1g%lwWC;Ooci%AMC4@88+C(ED83P#B9HU
z1kJA{JRU5H?8V8F*j}70hHA3~ck=!nXaS8h4jlVb_5wEkg$W6RZqBT#ql5QnXGaH0
zv#VY)g}x5bK;sK`cX&Kls>eery!oBx*db|sLPK)S$%uY#h~~-h*%649<9~0CqtnY`
zXQ3*zFX@#0#lohvy*xfW`oHhb7T}qrgB9Q#jrY}mPuREty65lqKO7!kDzqD7>wv%C
zK{MO?)xrMd{xVn`V2OijWJ-EHI5|E#ySzF*KD#<S8VvT|9W~{D9pL_yhNnabJSK}Q
zy1_5|7e|MRmrvgBA6}gt|8%i`aonKmRMZV7m=ph;lYn9Wgbq38v>J!}-9rNA6n}Q*
z#(dOI_y2t%@l@H>y|_DtdT#!ef<B>BDw{A|a-d9xb9HijdR%?bYu@{c26s68AP8T4
zXdebg7iy!r&(O;IUeUlVz35j$A{@{gB903#ft3ThJUGAl_2}q)|K#}N(ctR%?DFX1
z<NnD4!z%CjL5AheKR1;O>99uUY0~40h5~*=QxeL8XJq9_2ABJnN2f}hs!i|xhef!p
z(A`7K$N`JPCIiV$$-(;%XN!!bq|a3eyYXa*FUXYLke_KFGjCg!qd9-~%TN1P7e}Y>
zKOQNS`m*jE)~L@#Mw3e>;^HX1sGIhaLn(RFIA1I|P6_?gJcLAubIyhpud|sdS!~JY
z)G;MRuEcl|RT?lNW5ihaSZ5*TV~K}Y5F2T#2vA{$qVW|KoM3;3x*w|U2g|R_!N$ZN
zsvmx=Xy_oJEz=4{LGHys?FkhL5vY$<U1d(%s`4i?n^QMAE~lK=LEQ=3-Fw^H>FxA(
zjcs9b&T$yI!g^~3WWN^`)to&bB|EOI-ijz$6mZ}JgM&j7;8~exL3YKK)XoEpDxDOv
zprUdY1zn`xdgepPR?LGDvF8yXE+?Fb2@CuhK>4b9P$Nu(n3E=;@>MG=h1^$YNPv9e
zLa7sq_i}3~>#NG8YKaGRwGinX5udH|crw0=x};q2m%eklNFHbua*4s-EV`O<)VbGk
z%E4N8J>|gMV?pI0-D^eVU@g0(E;3+hxo`!GD%ab6R#lw|-!iX5^PW2z8Hm}}p(PaO
zZ*P+K9E}}ohQ&DA=s~Kc-n)PeQD>z74bBKXfBX9$nEP**93qZBOU26m0Si;&5a;88
zO~uuKmu$PP&firtab@;~EF4*c7nsnBk-O1h_1H^mjjtv{Tuq&fBSrfA_?ICr|H;dE
zUMxVmWhu7gv(Frse?TMBG`m<INgk6W22iy3{OHKXvc?79xLN?!!nqizpaLsFed1v*
zP(Gl+y=+?(sI>;I1tMm$>y^;6X47c4Vd$M8yD_CN?@PSSm+-+eTJH7qE3EV+*<qG|
z^@a^z!Nu!d^n0j{Vxdi9DMGj?EJKiaVzGgNegpRB<j<IL;-k*K`N`g+(Qu3|PX@?^
zji^Xl+)hXcHK;&|)o}hQ!nV}0QRd7*#V~Bv%s%?kgm8^?xe7fl=_*6BDe-AM?W0pN
zWqg(;C;f}SJ4YYwzM~EK+>HWUqVMJ61ZPe0%c_@+E2|qWNy4iANaWiz+{Z*!@S+SV
zapYr329je*#wOs54&?4ArrAn5zKH>7??}m?sB=Md4E|1C!-RsI1py7mAD~Jfg>ew9
zq0-IOy^1SS*_%$D?)fIo6?<u;1=`q~`9M>sIKyA^QJ36~3emrG$%Qye0YN@i^xY>i
z+d|*LrjPnR7VpcU2KxFHCdJgNlWT<!ZulmIFdV{9nV(k&G&-dNOPgeo(;+p>-W*Ce
zK6T>AoVovuiO3&mg=E}%qm-VH=wGFeX(ciF45*$LV3CIOae#HodO)3Vz=k+Tf7E{i
z|5mNx42C7C@x@Al>6G@;C<M|MC$#>TXPC=ux%i)}%>VWF)!wUD`S{<vuiE_Yk5V2r
z`ex;W3a3-dXO&4|O4s%Zf^V9B%R*3El!E0_@;>_zoOb-rF#6{1Q&++sC+=s;+)q68
zXC7UnQZ-w+<qD)>-b@70v~CIe&U0C=0zWq(=;9qd^T42q;CP^zpau9(DjcZG8Z|LC
zO|{1l2AW~r`Z%DA;kdF;pccbsQ9x^Imj(c>seixNpDy5s4EtHy&;4U%TCfir?6a(w
zHqPh2UYyVQh`M1e4b!wSKHC_dZH&)0#;5a0*v9yr*FhWOvyJhYmNv#`8{@N$@!7`s
zY-4<`+Cca@+Pyvxi{gLPAfI)|-fWv?UySN{c!<!R$=&0!Q9T;~DB$on3F!H4&a;JQ
z%QlRsGiQs2@mzg`%}0q9nqS2UT1sU2!+oXr&l&vH@!9d^;ZIll7w;DF#CAGZkw3YH
z_!|xmDQ}AOZ~G^e)T}|<baF4mDL^s`>%5s)=nf7pj?XU#Nj!|XSXcM32!__oeL*bi
zqSlpQS=CEJCU}D3XUjLpeKC+Y^naQ)4M5i@XlG?7=EE;c%ncQ>NZ8JK{hc$uWSEFd
z60l;r;(JrGHU{vLQ&t-~xcYQ!8%?p0gqO5hFr;xChq#SHyhz+sCx~v@k`uGgn{XDg
zSRAmaQtdiyH0o^5qu}5_&JKRLcz^c(!{F-R{psoPWlgZ{ionLjz8h*{N^oT`F!MQI
zGjY2Q<LMy9Aj#@{&+y|98S1&&G`F#m7s2ldFZ)%-N-hv$;eF)c_l`Co^8*HCu6y;X
zi`!J7%i&LzY%?GDy_9RX<vI#)N~<kt&y>Jy7=)tn0!ss4pB(O=&%dT929XYY94#2~
zI@4r6f(kPe?RxGu1)v2)vu+AmoiUohjcQI3m3SZga@1gZ)p&aoQofz$i6?_5@#z48
z%0T9w-KEt0glx^i1#809h6%1D-G`qW_aNfY5<UF1KRCKNJZsj4k`9MwjX@uu9X1C|
zL%#^x%0jI%O(Qugwz{&yb#tyr%wYBmwhcAL+P$N(<k-JB_~mN<^0Kk`z}%Z$VJRES
z5YvZ_0l82wBZ&Oiw4V<b^CPkX^q3cdzBZ;>n*pKCfY4?@Xfq(R84%{+*k(XzGa%IT
z+Gap#Ga$4X5ZVj~Z3cwAd}%Wvv>6aqkO86M;`Jlu;^4Gkrd7Pw=%x|tN-s6iD~%|q
z>ZK$>!c)xDASC88j%uQKyEWQ84Q-x=Hc!L1%+rurulI^8pMkV&RQU{$d&HE_z`0jM
z`3$6G<H-*kAT`qPUQc%=J*_Z5Lz{u8mF%r#e@>FU&A_8en}Mg9gl{wOv>ABX3_K5?
zfu|y{zR$c*gm+0O`7B~IlwIv30>Spbh{=}tGf@BE8~^pyiMy{W4LnXGDbmRLr9W5Q
zvuGMXe_f%g<`!GV@wFP!CGLeX2o{6V&q1@R%{`XGwxsP`H;sSM+&K%Huzu^TQO`bc
z&9`?_|GT;WKZkTMO?dV3vOi^<=@-nKRNZ#Dlt~ue%CaRD05(mOltXMvB&S|&J{VKQ
z8R;CCdkb^%5ObN9^8(9NjAU+%N7Tp@z5?7Lj_}Rg;8m^f>=g^@|LA1UISvuyKH*3*
zlMu&F2AZ)Lg@pL(ClL{kj%Em>1k6UcKP>#_IBV)`553GWK3{*cv-s5%j7f-K%6u47
zVpwR#)<GSg3N@f|bI9_Az0_SvsX#j1zudnXy#H`<a8&Qq6>%EM5$a5skUysPAQ9v8
z$A9=J7KH!!4}r{3%|GE<M*s5@nf>?=0TiqVac1sKHa8pic_kz*t(xBWRKUty^OVk6
zog<A)vkw=?b4iv^tN#yw`yb+er8H_rj&w~V!(Qs)wxP=B4)1(_F!-iUOL=6<@OUD|
z=Zp9(m9kQu-&!e>?uBao)F+#p^AcU!WXZF4Dg6669<B7%Vj^YqE}yRrp-5|5`LFPF
zu9|d<JO2FpB}<DH-rAOfT=ur99NIlDoyq~;>+Y!>WP>ZH2fiBp7L2sY3(E?a_hqHk
zU0_x~TnRHRexdnyPs;u5uUG8U>KnyVb0(<2b}U<q*%1`Z*)^DAJ{EoSd#7uz^Ll^A
zgwMK4B6PM;$K2CpdWH;Toj>Lex5f&rQmPbe!2Y@W!`o_sn68Z_g0~eLH@adkjI}CT
z@pHK9DY++TGygu-%)br9^OH+|{Y0LbnmsWsHLF>a7N5;IFHZ}-IxRb~B{;PCsH>OM
zYV%Q-TvE@=qg>jgNebl*0`5gz{sOtNiZWL{S!z)kFiR|_Cz9Q}gv52}pfkUHrb5zi
z3~8TBvClqqC2i%$G+lHbFsMxaT-gWAnEH5@@dZHNmApS#i-|dD%Nq<KvvOR}^XONd
zGTj}Zxg>3~X}8(5@0(5A9pm#)rv0sRB>$buBKf~>yd>f7LJ7d@^MCK`?Y-G8=Kp@x
z=Kp?-;^zOp*|k}`b;`bZ8N3^2W=?Yjmr0c-X}rHQN}pXwyZeoDX(P0bJ_v&3gbD{K
zL_>sqpTfT-Lvlh8_GF9$6ve}Uipd$17X<sWec$Iq2&1*HqY)*6kA@^*w`fQ_90PFT
z!oH<Jp!TE)4T(BxaH6(UNqi(23(+u^sznAK6==xWCjy8GHYMmrGlD>Dgnms@FZWHW
ziIkD(Z*PyOoWw&#qwO?5v-?jfL`=l?>mS~{*;_+tHpw0iq6y9=bvCI$NjDC`x1mcy
zA5Pk$Z=&xnm`Ge_`926@AqhV|UsH;r`F9_ku}~3V9sNeoEe<8ZL4YFW3q=D(QYU}C
znxhH60a8=0rcO_aoh{;{5#s<&wG{XhQG`?fW^zI}I!}bC?t<Kq5Dm$Qaez5{!3kV>
z&bE-CYDZTe0iN!bp&>zFhoQIy2cN()1A7w#pE?E`L*l6!1aQ4IRLN1v)v9ytS?lx~
zE#~7YF&`7DFGUOR+^pv{qM$Ox`KwkLSb14+|5psQ(BA+5o4^0ReEW7UxBu_$y?xv6
z|Bq1$Z@0yO`bHW5&L;A8w#ELB$YVGl!XugIUmFj*mxz9+QE~@T@>@68+2t%E&3l0a
z;d$`zF%S2IVgDx_;LuYWL-QVjY`c74xu5HL9l%NRLY-(Apkq)4p$?Nw#XL^QPT3rZ
zWJ4|Vn*NgS=8X9SQa&{9CA2N_og_b~J|0ScRVb}Qcg@|cG*e~2q4sJJEL-i1pq9a`
z3|Pg5Kp9GltAAg<WF?3@G93C<Vqk;(nQhl`D|F1&N_LTFI?KVUq^`nYZfA3)Mgbf5
z*X8bT=JvV3wAGF^5j)O6Q&9x%9lhNlajsIP$HkP|6=}83JzGK8B@nF4$_%AgEi;;x
zsLODJ$pX@cvqAAzZ880CVbu@HJpJ#@>z$nbxBK$VZma)2Mp;C&OWZ&nN~z0tuu^?4
z5Bw2Txw@_&LyODzzj6gG-@!N4-CDJ+Rohy%?Qg5L{cCA$MzTKGwdY*@uQwsVl#WBj
z$+CUS(f@W{@4n9Ie>*!bU$*++W0ZAtj-@0#6i70p=ULmL4PzSkG#sM{d!O)_h~C;d
zx|~pfL>$4AMPfpN0F47SM8MB99B&~`0xanb0f!CeI}ZJ|brh1ZezDrn*=LBatyTWp
zW)Hm&gBfBWv{Wdeh;S6pko4Aihl8tuWSp$6qXSq-=;Ofv`IL*b-k8d5_+O3wT5tFl
z--iFSA132%^*{DcaT9K*fQH!n6h{awKG(kQiQ8!H``!?LTKm2yr_tK?|L@v5`iMDY
zu|UU%M`EoParR%tlWRTd6TGeKarR%&@oi%6`oB2ZKRi9^P5tHjs9pcBUcG&}`zE{o
zci-;5ebcW0$0+OenR4)dPS)0bPyhI1!#?=l-rl-S+l-I5HxWE-BQ{j)psSZW3vrM-
zg->ya#}MBciJ6dOiZ<R~9R74V*whOihlot02^Lf!79y}Z7j#GiDrca4un<`dU35J*
zjRLCln%>&l&y1sA_P0<33MCSRpx@!Kos)>Acsmc()>X!^x8#Iu>zukJUNqea-dtN-
zUq_cG|Np~_wYBT(YmbG31!V0zq;^B-2Vvhwrg8E%uHpC0XSZwHl!ij$AVAZZq8i{|
z#6Wck7#xR^Ge3rC>}zWve4z_8WK0UlaU>8%rL$Htdh_3|v1(8I+eAKz0ycx$Vxa<=
zzW-~G{q60{!~Le!^H40*CLt#T{r(FHrYQz$ygf15v>S+F3Eo><`^nHv(+hbxL_>mN
zVRr-Q9!HT#p?xx6U__f}#JG#JVi<?x*a#_H(1C_eLyN8GA%}_+EYOgU5J@7W4sUSF
z_$Q6S*}LPje@DlmB9Yhv!|kpa!4?_?F$tv){ho6+C2~SyU}VW6YX<Q9PrsgDWJeHj
z=JzPu-t58ro^t{Q;DSmb*4Da?*#+9|?e6`LwXPn>%ieBpXRV9QKca}U8>$Y?gxj6i
zS}(-vY!J-Ue9&;jv5-9WWXy?SCSW}~TR@w&OO~*t`l#sw<5z!L7KQKz*D23l_sf>W
z0=#{x`qHuH%rpu|5CI)0#HEJiHZxM6jBp%Cl=0e8b4$?g=a}OuQIq}0#(I?ev5ACE
zYk&eOqyRAKuSia?w2Ww>5+C_7*W`qu>2B86{tbQq{UwdQ|Gtk-sL*C4X2`-Uh-)B;
z>Pj!=4<Rk1znXy9{<Q6rfJklJ<5Jt<^isl`W@(EekvW8O7syVuOIkLKSV%%Cz)tA=
z<G~Aoun^3nSlShtGKZeB0Gc{H(u1Km11N`6$3$v@crvg+q8kr&6T1GGADx<mGbV|e
zghSQB5>|H%7Eu;bYKf!vCxivMB|*?b=Y~rO@^CCc!!rgtK7(nOW}PN{qNzG!LBMXI
zLp%(Ka9Aqg$YGG-FC!BiCQr$!EsQKro0I<9+FjZ&YEtgdA<<4Zip$&btc#jV%@0eq
zU%TrrRu-+_mM2{9JDGQDcj($gY=Qt;7i3I@<g@E)hJ6Rs(IKdp=vcKv+%#K$A++Ti
zlsj}C(x7s#=eKv*r#9f%b=sq|HKw7(*bU*F`b41XlE#~>8gE-xS{|HzKA5mf<?LgF
zHdU}s(zs=xr&%6|eXO^o_MX1Z_IRfFg^iG{Wc{}#Q|tuy4GxFda0Md6Vz~}l_WCyE
z!KIIlYf&zJus@|?!XXthC;`zj$x|y2#6ITv_?&T>hn-;`xX^Q%#@f!PA6j;K^5ucp
z$MMX_i=R7mk^TtEPr3AQojamd{yfdHO7=;jUu%U#ltaxQ+>;}_(SX2?3t@Qh!<^&x
zEdPYd9lHMgk88ByGa?}53HE&*1sz3k5STdyV-NkPKz#5{wPL_!9}}43Ai$!6b&$(G
zraFQ+7W#p17UC)O(kCmWSGVN}mz78#9Z;XoyD+ppI=WALXZXC!9lF-W1wG1^VWJHC
zL`+c0<}gqR`@qdlTb^OLL)S%vfd%-;VIPUdO&XT4kHqaB^*qZRy8d#x{|=IDd|g8P
zIP8;VgIQGifR+{ML^5r8PUQ|=ACJzMJm*A^uy9E;zkQZ{YR_D@$AQVFb6nKW+w#1M
zRh^eTdO7UllVRLo`%2k|ju5mlwnIovSPUVfkRZz%khJAd%N@EN;lOziU$nhqAEo-f
zHy3_$0o|d21mi}@P=vXpI0$CQ-WQ@$56jf`N*i$_p+Rhbxn0CbM6^9y#&op3V|;|N
zlB2tw=SEEAGLUMxEc3MGNtBf^kd9t_PWY4x2qtL5NR`38Lq|H%APuQZb7~k{?1^?=
z)eupXf=rCSvBb!y9Q-Y3Xk)}U^1uZ9c0zQJy~L>Y(+>h&^EliW9|YmoV0L>wGJlv|
z(`T@4-!lHGl~@axm26-|_Nlo{yhF!XzR|6_8CGd;6rV>~$<<*s`;=TJHfNvqM)AoP
z=jzb9xq)|bQ&y^FpVG_3=IqnnC_edehps!jJDsJKpIY`Qy-aM*KJAU-lP`DZdOx_u
zv)bFfy7uMllg}>x{k7BMdk6xZ@{g^IOsE$VK-$C~@evkXnyAiBvxs=BBSc%4DR=1l
z%Q6oZN&9B(;~anPkoqq=J_I`r#Syt9*apM^8DS6HAR(f=;+^*q2?rB8l8A8>Qy<0Q
zr;y!-TS#fwI`c~h$C7p06V#)XJ9NEs5AM<IlS|iE5AP2BVj|-wx7v`~6T}R{5K9Go
zrU~}Js6M<wH<-7N8c(sT<lr9oII6qq$@OUNeNGPd&yyeqZF!buh3r%9pOfpcfwK;<
zR_dnHmM2<Pa_bE26Z2+Z?lf<FxHv&WGNxgu1AM@4He!6L!Tm1&=x=XNn2^8sm3aDN
zdx!<`!{7hc?^sGshp{Ao{Qkdw7aoh?A0rw_!vFZ=k3a6S7q?}xvO4w=gx@IDcz%z^
z=QbOV(t<-Hixm6l{R{y0mPV;9k5^X5K2eEZS9y;RJT#1_L&9yKBZqI)9_FzyBpz&M
zZF$ONh0@2HkZA)Q>JFLIWYA1pTa`y~(4dt$&#SDCePqz=>M>=X-Gp^6PX>sD9-p;w
zqn=k;;pPRgcpFKd)MU&Wd+Ah`;C2eSkiI!&d};%-9iG8mG!6ZwQEkiW%L+HIc(gG4
z;Hc%EXI)l#^1|GkT&ZLA9DBokd-7H+0inea9%C8`nd2gJoY#<-MzJjqSXRzI`U0i~
z;2p$=H9VnfTOA0bj*j`MfBzpKaBwUqB$PI^LR+3rSsnWfu^@+MO?Iyf#-!bk$T%xw
z>^myRAlmZE6E7=d9~%12*yr#Jv5{sFtI<fN?|$0yyvl0X=PJqv6f5h|KF?=GP0LBo
zu&jiAN^*7Ay_uRPcc<0T-M8i2mX$oYyX+H-IWJ!&A;#MBT#K3ftGTmY)jrQYbGNU$
z2z70FX2r5k1Er<BeV%>X^#7&6?$DWeE*(J{YrBbw^dD_`X5|i^pzhH=&qZPudK1n<
z7K;Nmozjvhs{<mDQw_Y7sYFxelOEa+0(MJ$;|$tI*DSo=Qe8}$Bv&|!f|>L8EvJ&G
zzXRss!1$B0(Wtfkd7N^0Pihy~Cyb|qlr>7kQC0{Uu>+pU5c^<)Z%Br@T;S-8Nzz9L
zkX0HD2^w>PrS^0VYlLC@p#LysB^LAUtSRwe{(Xka>^Sa_$$*TUs_<6PLmvbg#Q_}a
zv44X@kNBBmnjliraNKTkPo><U>*?&unaBls3D~EpwX^AQ$@~O8^X36{Cs-KsGKtOY
z^(QjR#HH`1THWo0dJ{x#rab5JsVtX<enO#AHSp<ZM7T-Bm{eA~rQ4DDXQ4+Br%5D{
zvY7c<K+aN`2dn(h0(-XuFz|6y4#_5|l+1k^B8Y`>`KF1jy`ZQ-MEwgVPBAw6NpCgR
zKMq~YzY1vyT>hy^P@wZ}s_848SgNC0x${UvLlqATlKx<sMR#Dcuxz%w*lNoiy5czW
z*%a;WKo&vl!Nw9q6CB1<!l`FM>s*z$&$3S;mrhxax$HV<!vhUQ@pZ_;ZaU+OFjDIy
z_$`Vv`AdnQy!2`Gc9CPB_V(x5mK95%LL#`b9?Me0wdGls73)5VeGX~uHFkl0kWV=p
zvA}O%F`iwyL)RrK`>)Z4Q0F79dSihi!UYwQgdXXEXZksolg;$#B{@C{ZyK7+?}sx4
zO%MrhC}$z$n7_fC>g3Ne7Nc7TxEjz;M2FK9CK<dwJTbrN(V#64T1<MB<=eaL^AU4#
zaN79fj?n?+21lnjvS)C0kZ)P**_0J;UdJJo{&1g<s}=Fg=0%~tVHnKE@f5Q5x8<3X
z2VtMza8RuPW!NWR=0X_^$T$uK_TcY;wE^m$L0K{T=-nvhH8<FI=pqg!of5lsonwxt
zM3Od?&+{uQW}l<al7v3-6=zgRA6u!0k2bU?n7&n?Vj3dGld#R6%cJde;kPWSVW06Y
zL)<{{m>wZ=oqk4&##fUe?kR>?8ilreyQ0|#ZI~eI`uV_})y+8}=d#jgFu|Po=bQu#
z`zLhBF{iov>^r0@p-9(4fvtu%JT{%;t{@TSa8wGYkga%m!Ubdpj{TxpSHt#M_Bq9$
z4|I?f%EBt6!&Cg3PU9((Oya->Wr4uFZFy$pfnMBG9y*~pi^Dqhu?{>IU~5qS#LKE5
zEruTi;Wf<DjD2zs?`?UiWyS1s=|#U165)W}5OEwz!f$YpXP?W1bMz^xg{Y~vg3+|)
zk;{X!k6#w+xyU|#(7w1o)AEq)bHL(~OsNI-@l>_@j-xH#q^y{I1`<m$C84~eQ^Ml1
z<J=ueDj}(B-ERnO`F3U1C$I5jh%d;L-H@Llf=}`AeuoZ9Zg=1g5lcyU2uAQ6V4x9a
zQ+*b5?iV3_L0g_eSqb}iv5;&!keJIjI_GRyZ*6FkpC+#mLbpVbYPvKkZF&5%LiRbK
zHzXuN%;BFB_6bbOmVcgGSt0ve5bV?W{8Pd{+_r4_=b4q2un#<X^a3{ig$X&wPY2zh
zecwl3K$Y%1F%5(@77W<9)oq?nSxK0mgnj0{ccDD{1Z>=;Az~5HFZC@OJ+HD__Bo`&
zo5w)~_F=IUEdxEzvO@NW#{25OC#)oma;8VcK3R5AtP%?w3)}!g<g+B9XhYaN;j%*A
zM+=lw8lDm%@VLrt^$wZefoTGALjuJ?VuCqAw^UBjpqXuX>SeX6^9c>f`J5aVcj(f%
z${6?6<eeSZiG~E}G#N|d)Rsppt7V@{IwgOxaL&og*2?gWq*Ed!o<^<F*fT1tx%Y9+
zoVCsKDUK>l<&zreUgh}iWPpM4EYOCIDrPSLwm?b0j6{udhYoR5G``+!od+MFtb~1t
z<6kk4d&=3zLYTuxEekxcvJ&>uzM=z<(@4&Z^Kyp{DIDxEpCLA~j;2DlUK)|Me2cO|
z_W95(LUb{{k7S5^CLUyJnh?|ze+IAzi9dth_^+0+o^V+q`!om*rF$$-Z6PA!(Gev+
zqTzxZ*_LlrR=;^Ir8?(!u%fD*-5*;$_=%L&v(LQvs&`1&(7co58;I|0<E07`3M%Q1
z;;s?nQ>{ZA*79(ega-vkl}yZd%Y6@3R>D4l@Ehupo}5MVUq9~9ukn!ZkVqoXK(|Dy
z<<dB`<(ri|bZx?PAD=Is8O5?s#Q1z?)r{(_S}ccnTb@F>L)Wigz1&+`{AAcCWIj2c
z$3msj$F^J+jkbK7veL~9Qcd7`b03Ipm{iNhkT;N)MyD;0Tkg>Hm#^1oqe6R}8{Q(r
zJ^{o2PdLD#SF;!1p=>ooM+w(}3Pc6EK5?qFC-<jYRw{j5z8J8Wd*lL#dCLv3_u)jC
zV;1HFVUvUjg2;;-PjQgTK&u#NTOOjA$g200KHh}*aX@%^5}kaHHnJ)tGWkKEq&eDP
za$?gf89Vwmyw6iEtC2pF=|>jCQ!+mvu9Fd$Od~lvq#WHqTTp|xeR8ucCR6w$;&h7n
z3?4At^n)8>6P+_({iiKYquilu$>XJMR`YD+O{UDRXC?@diLiv5Lj(=b+qZA6SV|aa
zgN{SSiLZ2|Yt3orgiomuO7~9tP%4wQyKTAZ(aTEM$BjMTJTJG?${0MKe>_+gkG6c1
zvU>J0$=(hEOs8dF@6b7CH`FHxhiPiK>vIc3YC)#kZ-GQ=Um2ciSxu;fvdkCNW@GAC
z2)qjsT7W;a7KGdD!)I2iQlm6(pJyKt59^o*o=)STPdV`<(}rUX10_t=a?-OXcj&s)
zxo>Ke4EspN@mTFWqAJ3wQgH^l8iIQHJ7~j8ZF%x#<(n7wJR-y?^Q-;66#MK$HKgjb
z%=3K99lHMgf?)qQP9=FCdSt;YO-1QL|EgESv(o2+{23D=TNZkr<qlo{@Q$uh`pkPi
zEk2!s$4+}@e~!gGoi5+LAbm&xN^wo3je)76)1F9gk~zYsCwQcf@MuF$sF-_tZ!ZnM
zL0Jj=cx*al;eHddjlA@c3=IjwzDc5kg8=y?3fPSJh!X+tuL5mw68eO<9P`x5YNU^T
zr0PY?-ye-=NagID6H#vYoV7YM&s!1m5jIUx1Z{ih*m<?EUD!(SSOK;6&9gm7C(%dO
zf{moMbe`ax|HnPgnT5fIlGYEnda$9S-G?3Vo&8}2gAJKavLh|AP%a&;YMGx}Fwj};
zXjeJ2C4>D$W;x*1gAMSI1n3i)rMqjhkv7NnVF#-zeZ9b7b&F)YO{cc$VDFPQH#682
zh1w1+J@O|qX8{X@g`i`dGk106o_2JFnH|j61<#UcEZl%S@OW1_Sjhq#x~VqIN?Psl
z2YVkIr7Rma(bMiA*E1U-oYmH_@7q{tLSjiqaiB!<MtW^;NzrO&Pp7O@Pt&V?u4k;_
zA0r!D)_Kll<$C_yvtk4J1ERL&p65_j%|9n|MNqx`X<6ramDTbOr;JlMgJ;_+bL~5H
zZmOB*UCB@^^g|uN-UN=}EeAc5vYIDe!$0J+<oGzG@<4mnmt}I%9wHP169vY=HmThT
zqvuxcd5ciOKl*9pl*M6rjH?X)n73RoN@}_18J36QpE>dHv;5O?&a*8m<sU(P;^DGQ
zE7Rk??<;PxJe1wO4F4>TQCl9ftd@V81ev+hFE7G)gka>;(TH#o%B-KY>!sF~r&?C3
zKQ{^!Qo}z<kdT&lo=bTU{_*PK9o6tp(ynEo=TcV5Kl@@Jap?avt95a_L%&Uk_QYpM
zS43XST?Tp~QvYg!gaSI8!R|)5zPZ+}{H8i$9EEI=hx)dxs;nd<P=SBUhhLZ|O(Z@c
zNd2T(!MNQ+)J4lPGz2X=!y_$oJk9bj^2dAtU8ZRIbqQ${c*{S3gR&C-;RO2^ni0fY
zW66xo6@>m^VeqUhB@4r?GncFz?(?vf%nWy)!DPj7pOLlXyy0d{ChLa#JnSXs4L4&n
zIe)lM-C{B`+<9h`)fSVPh5UqVCJVD$XE<4FGx^{nUion6Sraa1NSJ+)a64*WC7w=M
zi8)4wixOX->P!jeAGS})l<`^O7=*ZXeHGgQol+?fvkB<cs&e6r9{P<20UF^T7-H{}
z;=F4uMBT3GNS)A;PewE(eydDBY*{@Q&9h8xY?RuHp=VQ8&qed>Q<pJKZCU7Pmj~gZ
zS}WBB4OCkOdIseIxM+^8>cVEKEgwDkvii%yc^0epF;;CE>S>mhnEVvEsK#z}d6U(a
zhn{MAP%dg}_}uc(GcT*>qIou~t@-NTuRH)3&9P)%#E8`ee4kOa<zdU}wd;BItW8Z>
zTMl|Y<>9!f%Br=oL2JuK&!#+pS<sve9%W{&8HVBZA8uBUwmjvslH47V@F@-9G2<P_
z9yuqRGJilk7WxG(8xoJJ9}-16B*fR6wShy>Sb-VELD1UPKk2d}Ayof<pX;&7V}4tn
zMY%(IBKzoi@AaEgdcCD)7yjBQP5hH@uaj?jF+6jyP?FEG_kDe6m-n!PDY;`C!ug(j
zmL{Mq4ZR@t!MLeQg*BCi1`+XAIsCTVudL+BEYCi3(%zZ8Wd+`8%d;!1$(opBpOJXS
zSsYcd5B!LZ50lXO?M>oyEqCa8cV}n!e(aN6Ee{&(Vs`UN8ZEYkInCOQ?3<SrMbEEb
zpYrp&*}Q7_r!CK<tYq`5WFH=f`{IKjJmV&%KDc{V%13Q^W@ROtm$`P{_dFJdb2MjH
zb=I$6ST{o(XH1el8ko-p8oH%HpuJg!1mRe+DVEg3K`=ueC*XZTM+F>0Fms~<Z1DwY
z)89W#S&2`4>C{#Cc!sA0u~C{VD9=c3c`juo*M=dHw~T)}X94x<<8ips=ge)jGy-k;
zmSrW<C(AxK2-xk>XGwU7OBnMG9kTF+gnMSn3GxC;LTMaol{)0HFeILK=V;5*E-O);
zbJFK?6i|;!wMU5vdqiZsc<<0Y`ZXRB9ui3e0^bfd5uR-x%#co@hr$F98gVv7w-f43
z5Dmwi2!SNWqY?Fx$Kt>T{mA&<x8>o>YHpn+<}!}XIUANgwr6{^s<YE-c?62!SE0<g
z1EL|76bFYSz_YSv;5!6Ap&=PDPEbH^NT~Qaf`P$}l>#7_<mfx}a%ai0R17Gpd(nm-
ze_^+XjU)-xdX5MmF+SB7yepWjJGA@yUhNA5l5|Q~EGtI@wjQA~0M%f1TiYGF*LX?>
zG{Q89Ik}v0A|@;-ET%hjN<%u0r)sMf#ET`pA;`2!GufKK!Y!(*NOkH+Rgd@xkN!XQ
z-hR7{8+j0&e}_+jr95j%QMX9RU*V2sSC*8FPW+*j6ldn=<eFeNNFr)BIslq7$M!w<
zHSX)(C%Fd&pc~!n=7&Vda+WwJF-78|P$(3t3WX|3I2z(Hs2^z%5EAOQ-k(u>#Uuya
z3$f&cOsn}bG8Ox2RGgKbsjnt<oB8Mo*^Rvro6ERdq1CN`D0aVsQ@=Q&Ic)BZx!k(k
zXIaUaQY4=_hsqtFDeH2dWhLiBk$mPH;WZ~XOV@_7Z?CLGUMiB$9D(VM<)wAG&+-{P
zyIuQf@|h!^-l=qYJ7lcOvSlT@04F%4iz)+|E>LWBD=60GE0vXKUM2FGt$LL-udMA_
z_4)?ON@SlB`OH?m)|%I!sH{ZuDv{4@)oZPJ{fWw5aG%+#*IM)X6P1-{UM2FGt$M9B
zuRl>)iRL9EG53nu8PRB7m#;1|KLe2_3FGVI>su=;x!G6blW@`}`~uQb9noZ1nYJ30
zV+5pv=-|lE?y&%x3ZOaCJ(4&e0&%Qc46%8r0^U`R*Pc{gxvVBQKqUNta7p_#z><gy
z67Z>vGx><t%NNJ4qpxbB=pzd*siOzD{oZ1p>vAV$C0@Rke14!2ne8F2g9GFgf%>M&
zjR9DfuUT%HI;TiJKat6N3M!J%6`8C_=-VwTC7+|i1^CZrbaYtBfP8e?SNhhNh9ul^
zQ})0kC!ES5iKT9H`RZc#;^LK&fduMJY;Y5G63QVNA?%)eYnA?P%IXd;9xZfsq0dOw
zvjUEe)8<msIT<sP#_<&uYh~;~mz9vuh)7O@1(o;D=t5#H5muaLq;#-UAo5Y^?du1+
z-&$FT;%>=jUZh$xqVquI!VOTnF5g`FjJij&65P*i?>x_)ohm;c@j_xr11Fv+<LC{G
zb%5g`!C^#%uy1zP+WJE-D?Pj{8R6M!v7EsDZfYz=Jf^4oFk8n=deG%F>V9&B5TCML
z5pbN44r)rClIBk7SGBAi)cn5v;(7B+x0-w+hQpUQ!f{X;-?;cQqJ6|kNJU0Fg^=r1
zpzbTD!7a4Jby<123-0rp#Z)q0BT0Wo7hqnd5QWy*yd^VnMyxbs`p{W-a}k>*gk$yn
zx;%(-7oxKzpFAgso1U+5c-f46a94q2)FUVrBt(Lh=?H8;J%U0i0yc)r_uj;%tabSc
zWhJk>Yse>i)L(iG{WdYglT|=8Hc$R*+0eQ?#B!I17mX$1<8pYC&*%b#D`bBLYqJS|
zwFB3r4o?Y5AE%K-qS!`>M8Kxj<*SyvBp<!xm)do;n~!M7$N01^Lp`R+ns^>cSt<GC
zI@);})jilLiq1-Mc22Bf4`MAjKk%|r(YZuEw-cSql(d$eA7ELj=v*S7I?*|on6HO~
zPqUmXLx>pKSXnlD=(;?t@>%<e;t_FH6$|9#YMtGF2KjJB3>ELZ-op>SZ4RYOL}z!m
zXqOCGAe^suBP@xKy8(;)bdYi|QSai2a7p9A2k2^d%evHSD%(N9kOWs~jHA??fZ*AP
zM@h8y-B@K=Nrq2LK6Hc!#OGu{h2)c3XI00O=fqx4oT{eCHoZAK>vFH<GwOycxFX!A
z?8aB7W%5awP^woo0nH+xwa?)<Rz9O{kIER2=&n7lJbPccP+GHT@{xEj`^LSVd?X&M
zaBk~z=S7Lmmxn)ocysvr<R&6?1^Fat6zS-+OLHI96ea5j+22h0jJl`&H%y*!B1l~K
zxMoKCYVy%fbt+$aeMT1v321-fl8k<*vsS*pwPMYNn;|1Qa|RAWM5h;4G8B>|ViOXg
zgoVOn*C>!rkP690uk~N`u|6HUk8Y8<YOKpQR#xll{84gz5|7{Ex+kXkk+Q0WNIa&T
z#Um0+G{&6bUPORO75(bC>TCDshhB`?aFdL2l!9dr3xts*qa?zT%+26ay7O8f8SFZb
z-k+$f*kNOVWU%!~U|nz3b@?XBirvNLr_r04M{i9)-&k2m9z9Dw3q_Y-N0t8*m6b%5
zuO^?G5Qpp7hJT{6lGujT<Wm#ka2?z5PgGVC+pwB^YC;^YV;la7%1UAzR+CRnh{JVk
z!#`13No+$)J_|*c|BSA|32eer6wxb!a5=ubCK=QEcGFvzyDcjTPFF)d)vDK8^ZFB&
zmC8N~MVDV|UVoypQq60j=<;jL>rYhflKWJvUTe+kPgGW_c`X!Oeyw@^iONbeuQUm<
zBo~rnNd|Q;^7)8ALv<uf{k41Hw_84=?k72ca6acOifBC0i`!iA8Xm|e5s9zg$Slz4
zGdj{QO3zq`F6^!Q*_wpD#j=tccizLn!t|4o&pC?-!f^;6UeY*JXV4}mf20(o9LCYv
z#hE(3t{K0Y>v^;;U!kmoe89`_7+hHwA)iCe@dU9xf_8}YekXzJ4vVg-9D@AANkp(9
z_1<i2VfpKp+dHc^tmiwy!4M^w;}KCJZ7NKJZq)TWK_t2&lLL77`F<z+_*)lYK1ji1
zRWj5al4yizEF_Miu8)3T+&&K7X*9asu9BfyL>iBfTN8~Yo~5*38wly~@`ti#Scq%J
z!vpQOotQs&@*2lj;vN>{U^MYU^BKBAsQixUk4OR1Xj~2n!aX)tg8gWuxTpZ1@F8)Z
zl5}meF2X^;(pVxpJWRL<QP+1I!J`SH(mb41dnSV`#v>A<t^;b<Z#4da-n_j$>7ci9
zKy(C(V2C+HBe72EJE}vfUD^{S1nosSKE)8n1D%@&CrLzgSnbC`flP!@FoYzQ6h~r5
z=`KUHiBmy1JWNK6XLAxeX5IfuqLGg--M&Skcehic1Zgl8E$pC>L`15?X@U~M1r-vU
znpu>p5jW4?i7g!sp*PV!V=z~>3Y>U`3sJeFV6$m=ic{;QG?E^T5e`Q*rXYwb9ZoV9
z2}Jt{k1>sKFCu=UaTrN8SydsL>>!N(efatn#Ix7o83b$rO7!wOkDEaUv|B>hFb+2M
zJ-QyME({gh?E+J|5$$_@Gqyj$qo|g0|ADr*FKM#9-9i6mDF9`0WFy+Vcl!Bl)A?ho
z(b(8PNA8nvz`B7(e-RRiX(UwD4fNg!#pvAyIvtHt3BIBd51e=AAq#|W!1V(*+Ra=5
z#qN+@dy?&@aY(q3I1W9oJM>f^o>OzH(KrSA7Lv1g5KRy#YHyNQ;o2l%q6H9;A^^1>
zVHyDFjtjkyF4Zm~u>h0MgrzQtqU>>qp>Ui^Ho}qydgu1@=lc>5ASMuK1))A1F$!rP
zGCoQDvczvRUTOsBXdZS=F^b8xA#dnGp^{3Gdr4|)g=%B9RamT!W;OZ<(>SlUg9IJK
z5I#S)Pz%^00jB^r8mCcAIPTGiN=40(a>&=~cm&T<=zrAs38y2>CuYB4^*`8Kc|2pl
ztNB(<x)3Cw(KwU<pkxV($e2VBT8YE0QPzo(D@@?Gko0M6Hdr=_+G0H>hf@HZ>yd@t
zMj;^y;pSlt{SUxkN5q_z26VdBCY;h-m9D2I7}7BfQ?=TLQg9TpYakRwY-~(8ry+4!
zg7KKord^(@V49y)j%%0)>pP_5#&H!;6{st(kj0-CXcxsSBxj6E;iJPyu*`v9(V2q!
zS`kL|oS7LK0>;{Yc62L6t})SDOc32eHWWyO88`+HlA(l?vHAw1Ky7D5whE0IssIma
zam?b;*oDl`5XXz_U0zB6PU0)ok_76+Q9q6epScj0<n_*Wj&rlY8jVYaMl4ifPwBw7
zTM!N>06IH~Cx+PyBQRlLv(!E<lX#GG#9`X=%>#VJ5BcsiGv8GVY<J5Qw49gH*{M@J
zNt`+d|MLIs|5w)%Z<27PBsd^s!R&EqL<9yeM4+wE&I0x^kub>00rS;nN4qE)d>Hny
z{!5*eLWvEU5xmBUlAx&2XPG&@)vzYFBG8E4uzC+&51Gyf;v7AyTXjB%q2|x#?VLWD
z8EV3?yCu+?YF(hZQfn3RLdr=X8Miwb+S{N?BPF$I#U%qCqI<cn>U#50nYDuTSB%60
zY!}I)6`crhTE4J^g2NEyfuh`&MJzZHhC>YbtWQ2lI0MzO?NEkR#X=fLE42l9M4}@s
z$POa@z(=2&Vu(2jU#4mUi)IHkpSD`BUpBue4pM+wGGO;O(2J!cJD$rEMR?UY?0{F0
zCX^_98fVish!zAfhzcqk>;SnCsUye$Fp-f=)C%ciR_*>_71ao{)Ji;NF;Q})AW~-7
zE40XZE$pi|OcKklsbMt*t}m}OpQ8-Iy8--Ww;Zao!j32me~lPcl1iT&5*B9LWtku?
zI=dx`?lu~yeLzge;>Xf3a%KfhXZzIB5Rkm0VHQV|j70^6EBbaQtVo@(i-;jF)YZTk
z*z^6TzV*Z1S^KVWIb?#EmdozEFr@KdSE2q|Nit>$>u4|Mmijr{hmi8F0R=PwIC=D0
zzOn_HvB{SpV{LC)o|uWl0B%UjB|0`_e5yTz6pO~F&xsgnO&|`4){x&@p*APH{E!<^
zsm?idz}e%?{Ojqn&&$!cWlqVWkd<o5C1d;|;55;P2dxLqN2f7jJk)7f$wv~T(xhh9
z?Lj!4piwHMUUn_SQn<i#^vyntR3}|c<_2aGOFl^$jg@*yW!Uq>u9ob`#0qgrmrF<1
z8kQ|dJ(Xk|vN+EIHLI~M^baL2uXy~O@YM{-nidUMbEvTZ=_*+((oB%ofMt0G5+oKB
z_BxIGjE_t$W7u#F6GhX;q@*nuXJRwC=F>1nB1N$z)NE2f8V@Dcc6~AI?x=tMh`PXe
z;iEtJPuFZNeY2ymX7Wz!)xLan(P&)0y2#Q{8=A6inpUa@3hiaQJVU>Xgx_^#25p4^
zLz7OkW^_+2kN25^AGE%_i4#81Fe5GgC!8gOM-u}K4CsRD!q#atyka))j+<=TH1W}~
z=BYXvfwpzqh82l)J2y|6tH{oBaN)aSWEtx^H3<#t8oGHlJGJRFOYIwuz}{&zw$Tri
z3%O&%$Z8E3=9Agk1Cl5H1!mM~fbr5X8>v69(jEz9WP38b3`k5k4GOsMWF$QEyXUC`
z&r|&#_`9l>AMnbr)uc*aV^!C}q9$`WB=JtRg{r8l8g^~_J0pBV1?(bAHV2ZYx{5<f
z#V@Dn<e*tI+h(DWT|8Y~O{Ms|v%aRv6`3^i>8cO^(A-SXwA$tG%Jb;BLYcXI6S?G-
zS47NZU0VLw%(zyOwgd!T6jGawd~~cM5#t!K*c&i~@b^@RlvJL^S6S{e_aoF7yHB5g
zzqh}II2m9LH->qY0<>zfYKhfSvpz`FT4KAXeHN@)EF8Orfpn*q9a52KqZ}e*!Y6X5
zfKVbOD4679LIO!b%S35N0?b7wA%msDRjV9HQYkTM4BN_ZDlp(B3=V2%nKnT^!m-<r
zeW=Vhir8SFfU-LBR(^JbOvwUciZwG92E49er0yYjK}Sh6F_teQ=44N!aS$+#ej^Y&
z`Ra-h8GNuFPw*&eY=AAGq=g!jO2hoyX&_{wQlCAzZ|K1I9>`#x`T|HB{&auJzdg(1
zZFSILbd4thegoaU10QY2>Z`2B9QHHFg4EvIe^L#$F)oURYyWwGzylvplxSiAX`w)$
z&Me8UdO*lC87rqUeDxVe@AJs3H33?;^nsnVjzf?_(Iy<d-?v{p-?Fzqs%N3ZPi?fI
z`L@XokhUKstOP8I^v|ICID+ui3t^3nMm`Y$5`3Z~8exz?wQ{5cv0g5syf=rO8>!mF
z(l6*Zl|0G`MC*L)MXa|w!U`NEkHgKP4oqvta%+1z=kh0`Xv+v}8QP7mkw<VZg=PX=
zI2=Hc<sT{GRLK$-L?h@(t@LAoy3Q?1w-osn)&X>aNLtJo>l!M|q7oC=oTWs>B+3k3
zA8hjtts8qWx%Ldy-k4$!dm6!TOmFEp3k>WvaC2jL=g*pR4<gpXQ65nU6bYyvFa`Zb
zBmxp+PMO$2*94951P$@He85XiwDp=KN*Rp<s=89!qw;3?JFif_tFHCAd>vic{5yp7
zI%rS7?<)KKJgeWzF$$Hk4)Y=Bw3zYbLvJyzYEkj!xba;DTE3gc)znvwsud{1^ts|I
z)zCR6vW6FF&kHOKd@g;pXBysY#4@R(Y4R=1F(bXqkw6aB<^Wg(>XC?Dn{A?GK68mo
z^sOD2mXv+;Pj;<DpdBRAo@v|$Ua|+9&|b;}ERIP47C{FySfFbXMMYx>h$mJ3*}kq~
zc3nP-i~a!&DWzW@ZNORdr775#t=4F6=<S}&^q3lTK;g-;s8x7&NFt>AuVEo?`%5<1
zTeLxCwakGe?6v2?P+7NT_(EMEms5SW8>gcl;VwUwYSlcmY&2F!mLOuM(!D@qe9AK+
zU?XCiQn*16X}?c{G?G3#j1kU_Q|9fc_HMVgey-_63j^h|Ls6YxWV^1q#-hldReKs&
zV1~NJlbtE(tcf}E@_-xbD6&`Q*#>~45S>{clsmI)3duN`avut@#8x=S<spHLh}NyR
z7VM$~%b}e|CXxD$##!!2qm@u}6k$5j5+2-Fsr^kzqNOz$I^awQ$L+zf?I}(WTjx-P
zz8{ZHcF^H37drs)h{jaOSAN4vLhsKqdi!m2BPYHsBuHS5l9@e8qvG9>(x>1KS->(S
z`AYbiPKP6<1Q@9U0H-my|77>meM}>u)JYr|%{UHw6S$`~c?hBiJh`Y8J5~;YZNW)j
z^Tzi93#;|zxvQ+@(ihM7p7u#Qd>-z%NRPY-zsK!o<oovXr(x@9|2Yo7-+R^yzTe;d
z-hZ|mk{-pe_x&zsO!mcYM0*a^i{Zwrr|lQstEW$&ZCS%-#-z1%g$a#}9h7Ka637h$
zlrsVx{1IsdU<3++cET#U;GsT^sTdk<8oeP>Ew)yT;1b-Z>9PL7K4SpS;f#ti7KGko
zTN7A(lny`>z*4~w5g@R#GFuoE6xw_V9Qobmr;u1&iCyc|MYv~_liiR65$41*0C*bI
z4gGrAo3PaDkpYdjH1#Tu){Whv^GEbqQdDEAbATPU{io=^tACz3whXYS%aq6JG%wDl
zWE(fO&SMf!+^ip2254;=?>JU*689Moh>Q6TIEp?%Kw7J4WnFbjo@CY_Xhv{Tjo7QK
zW=y2tBNF>XY!~r(@afkkjTLc<Uz;8EhhW+p?AK=J*QPVCUz=aPG&OtvMIAy#d>AC}
zWHxWhs3SU}Qd9Tu3a3D_PoM1XnMDA7B;h2W!Xjg*Y864JJ2BT92ilx$c$&Uth@**C
z{4@qL(FCld+LtM!iibjerdsjJ*N2a;<m6{cB0R}8V3x`xm0+!QABCCyqBq^K@tz5Y
z5)I`wAu*aheeCsE9HRHfz<$tMg+Pj<TCb81*|A|xp+>_46GEwj>0vVGH*46pu3kW+
zh8rbV2=L%^eyog9yJP6tN)&VuGfqNn&VU7}j%;fN&%Hp)a2uR(g3jJvT>f}|a`EBk
zi<9%6{LkZ;&L3xo7Z<<0JwJB7I(>6`dHnLj;rWjj)8GDb`0Dud9B_X2<MH9;p^pyD
z#TX|eOk=PCR)P+0XWDBtuok?!MfJ_9)Gj(0bz)B)6bch&=NhWcEXu%V)w=N1=oHMj
zi*-wZ8ufLQ_E*&WxL}3Wl7%+Rn(M$=--R7nX`}0-L%8DTk(l(U)QzYp-Ca}R_`9*t
zN``qP(H>D-o#Q})zaN}dLTz)U4~5oV%VL)Yhg3*Td#RR`0KOsSVIe%JkQ`HW*nlh3
z+l0gyL)w=L(~6m7U+jP`qjV`k;ilghV_}J{*&4v=iyt{lliV&FO~AKO@`;|gwy#Xo
z3I;|y>Qr26)W*y_XyR0|=1xsaR?W(GYK`p0YGOFjBA_1(M=UJ<s*OMTIf(T<1z~;$
zTR7G1;|I>HH<xvUd*ZkJmi0V$z0S3el6l8vjCLOL@f$CRph|2j-E79>+BVK}&FE_g
zJg^XGVaNE#RJ-tj0GYX_KnI4{N7{j((OCNEB^KJ*cc-ocB|a)9+0z8$v^L$Vwp5}a
zwhkuh6zDl#F>p?n)8`ymuHDFe`Pwc2S)-^59aDa=t3cUJ2I`-ND>?%#XIKtRmE25y
zVZ@O$7Csh89l|k{6QfI6M?KdELmjfN4~A{xIw$<=U;py$_i*=2K=j`fTR!@MDs4gS
z4jT8Fxs1m>mdX+gnc3L6aH_G6RtSaxivyBKQO;K;1Rca)!a`5!0=pY_G!Mt2hhs@S
z`^}c$XdDW-^~v?%qE~?7jR_|TD<!2($!2hsWcu6Df4M_w;Zp&U&pKC84X1o>)eWVt
z)YycxDxk#fN=}G1ix*ql`BEhWn5PGqxgE$T_OO5n3l9xYkXb`^ck&-%NvD2fT>q}-
zQ~J@dJ!mQClCxBuj6=p0`866vvfu@}7_w{q+6+gUZ|J!o!a3vW$cwO%70sFX|NTGz
zuYflxD6@~C_c~2$aa=S=sjK8oy-d(zU}T>qxXnGKI%xxpr|(L)^xS?<1{{Ylt5f+{
zpqMB@537@bWu86SzsvY5WKJi>Im1N90r!j;rO+R7E<$sk04-W5u2Xn#Kx6G{%yAsD
zQ8aPH*=#Hyos$s(vr-*g#yQ)Nd3V}UV?0@0aWH$_RP;F^b{+-8lvYrBSPbnu7du(!
zoy)Y*!@Sk1efag>if;e=RVL;AR%lcO@xlA^le1T+M~9cEZ{OtY>?<0rin)5XNP9w3
zX}!t79d-ylVgh}rgyDnU@gJ&3`jDTB7V|wg-t&7n$@R;XOxG*C#EF?=fts;jGSqIV
z!?@9S|29T%*jTT1dw&P*wf0&&dV`GjGNJw&jCFhj7nIf#P|0r8N*P|WAtaWm@L1oI
zL*gZz{Z0b8Wn}yj{+;nmHlV@?%W&~!s49DZY@VoSPjro7^*cbREyw22Gy(;U1I81^
zt&>dt?4VDughxC$47Kv5r@F7DgFHNkwvJ^;hgxO^h)O}CzT@|h)fn%glee$@Mq_*X
z7w|ALfM3ItmRQ2`BIh|k0SW(edt0epXV#g`d@VAO*_kgmPUD2W({(y%-0q@HyW$EB
zy@`Ig0*&@ydixglPDg5GEq{=#)aTxGpU`w4bg?ZTz5gfS4v$oe?~9?azp#X=(^j85
z8;S&QLd~SSJ|$7Ol^vP=89W{sOb%BUL0cuEzh+~S-y%*5ZDCuerrU;$w9#^cN71$=
zpl!f`{;uJnL$G`CGzN7|+rOONHJZ9R2-}7c3$C`c!!#AHT|mp;mNdY1MDNek8d$Se
zEM~EbP(sH>*>i|j&0A=hBF<ds+(~FyloZ(`#9Zc(5aB2p;vUJKq{RrMAsaCTu^Rju
zPcqA=tAFNn0wjH8;?@``rp&pSCN8tWnwX6Nz`CJ3=apO6c`Ay=dxl8uRkHO|$aQ@1
zB5+!VjEMMgZi28|5yulnQaKogmPuH|z3m5fd)_z%u*EF6ofi9<aWyj&gNVkg_5#&v
zq|~a7Gv50!-v2P710$bqWFNg$5HG+&32J(an4jW-CVM*v$<TOTt=!Lo^wS7MG`<pg
zVQR%1nM%efj>Ik}f<<Ej!pt80e;*9lUJi(H1ataZWF{5Wdl4J#>Ka754T1<Y-t#0g
zANP0R^x8l#Il*8yHr&<PswCkf)YY<WH{S&2F^aWt80RJ<o`?vKN!R@3`VV!H9CDTp
zhL!^vi5Mbf=-1A0$Dm;_r*Jm7+qdGX#X;3LT_3FG4q<imncM|MFn6m3$7xP-73%EW
zk;pD-luS{nbTae6A|vwLl{b^=wUH&06*BojUpsFWuVFI>6(Qi|b!M)yvKXXhrNWg3
zyIY<7Ir<q?%bZs+>fzujP1Nb8U)0)H?Iw(<<-<6h=o63$f^cBp&b$TrXX-l7`Wl)C
z>HQm^EJ!)9TQjk;rCfW|pb8o8;L)ZvqYsEgnbYjFDczA*J%)Z4EKZaL-u&b%NSvEY
z&q|<Qn&>l9=y~=8d0t2Y7Lu)MXx<%_07=FH@**WYl`Qx68N@+8;0|XIInZ=mhK))x
z67O5T`6D7R0IFv8rMac$;A8z#zx=dKVyT#qAQJ8@sCgG=+yc6u;$#61i7~;~T}+rb
z08V$p$4TO*LHAs=7Q59DzA@BpcOAHjmIo~88cvTDx<;**@u-42Y;DK(Vznu_eJwV6
zccel7x4pO2epJljp`eVpKAbGf_W-$e@dYvpGe>o{3sof+li65Ty;kDcYiTflps_Z9
zsbkhKFJW$bBY3W@nF@_d56_HyYQzRp3t?eUzo8OEvrsHf($lrTO}k9=_O0{6RPXz~
zV`)RJ7oFDAPJ7RP`aL>*^TS(&4i5fdtf!?_(oPqK5<*}<sx$RpW`4V5=zFcCoyJ9}
z!*SlgN|V8fk=`AK4kCcQb1It7cVJ!KpPi%q)?RxNlTngJ(XOftZlzeF5y9rsgks^>
zn1|s1hb4u00TU~+4N}Z;ED5Pq@-u;|pa>c38f;I@SsI6q*K`H>yEML8h&EGXEvO&i
zfu<d68qwW_TlUb&&g1Iv8^%nnpV?rfEh!4je#EZf8H+KN;~1%9#;(}r3;$pKzqV#Y
z@0iDFY*#P*cFS)YZ(<L<bw+{E68fpWK0B+%i$vqi;p-FavG!N>@#5_8=;W{GC+|)#
zPT#)y>(6J$hnFYERepVL`Rm2y;pNX42>tcwpNHp{#orFk&d|G)bJd@-L;h-yKlE1{
zXYsFlt-Y4ldf~O6p!R-e|NG9<C;syn`%hl9_Fg<g-?dt;7W(<}=&v?%&0ihfV^Hze
zcH4iU_DRk%ERS%eS}x}&hsXa$2-#_<Z!Rtm&o9;I!yiu?HT(`C)ZW$LpBo7UAt&VV
z^Jl`Y&82hH7<C}RQtd`1(`|kaG*RHneN3YpA4iQ7&Kd8ZpU-|gKRiA`KOCOEIyvsx
zyN3kJV2GNP(`sstbfvWL3$vRpi0rt3=+m~YJw$nj{m=n}VMpzo9t}ehck&BFR@keM
zB~s~~MzM9C&_1?K{f~FhV;dvvu{M!CE=JgV44b)cN3+Oxq!DM#Wrd3p3#mQ?8?KBq
z6HA8OSQsnik(;moz3uS%`+L87e?Qslv|jkFz1IGVr!QVSnX|vY_uKxS-Q5OdzYt)*
zS2TMFZ4Ko&6ny5$o3kVz^;`8yd#!w}9|l`$e{a~5Rm0-!VXfNwnVoIw%mgE%4WhE?
zVpU-~Vc{0+zYM=UaCu;3^QNTGJoA3Bxw7#<>2R5qwd)dl*M?Ke#Gw~j96IBqPd{3J
z1f~6GWzTj)mDbB73s|I|Y%q8|1wWq(Nx@HNtQ1DAN!ox3MK|lbUmL4H5Sb=BXoRl_
z(swP)aJI~mj+1@_4nXFLG=^|a2K?uKTY-NVhMB_(aKBf_hiAnbLbnY}S(~5r)sK>l
zBF2>JYy*p#pg~GKgb7e7&;XneHWfSC+Q|ixaohN{0k7XY&ipyIOei4j%!vhb0-g-U
z?)no|av0<2$9F&ZIwFphw0?Z|6VfgnHm)@;NrXL4@D<_OOp?23JT{l$tdGW&T!YWJ
zk@VD&)ik8gG}^xtU(#-K7&`XA#N(qA%p*#8!E|mc)*%gbxH~7kgh6A#xW0oo5vGP%
zAVK4RXakZWHW05zaDu{#qF>XU#%T5xh?bq(&-Y%mr_I>b!PwbSoCuckKoRqlT|N=J
z<8~LUzG+PIO@kBq7#wpsf#3u?<`xCQgT+<rpo5HEPT#`x(ote#gAq|p#n1ew{_`oF
zWT)U!9z}3LQC4^|%K*GGGjHItT+$}!lN&V&TAk%*p8c`i+Cgpo9-+ObD9`q~=Rft)
zsmzUkYW5IGz2aek`}_!Gci<YmwC{ZMf`$j$Abc1QCiIWLXZUzpsiSFpY;R|g7qwdA
zV5Hp!(VyT@5rX?eYkS+z;_<=7h_oTx!psBExCiI}cJ`Xd*u(NEg2A_g-difYzP@%n
z<{2OCf&qCqCf8!O{o?y4ySYZVK;<p%W;nNnxpo_2$?3;MhA1}JvaX##t;Q}Vig?>G
zc1#nd0xWt$GL8pCUtQ{efT?DcS*%OdEEW2UfLq^qU=JWC&Vy2!1sf6TR{+jpMN})1
z-r#@QnDGmV;6+8rzt0ipGE+$7BJJtdktU1+z-uMw-UMAME~G}hiTk<geFXkbA~kMw
z2GwxeN`!<b1vm0+*L^lF)G3;pFo}Ia!X6H;P#$i9aPhyK3x`G{x0P&fD}{rXZCY^f
zqV4TQR`H!uG_VQiU;^{d*tLRgBNC6%7<1wK&InnUn$i%~`0N*Imm`_M?V2_lNd2@N
z{irYfbS%bF>r&LS#ak|8Gs;^XIq}6@N88-l!m0d<X;Vxwj7+gZh{2(I8!2hgxHqeV
z)v0wMS&|fCEq1fLJ-wLLhv2`dWt~p}+uIF<-nV~4KO9~jzUrX-vcQCsgNtK()J5iW
z)KS$;%j1*F!&BAt(mrX)9sAT_n@0%(C*q1ge(KcG0)nw`mB%X>>Dq07-&phP*${x>
z?N~_7g;)N{CcCs|QRrI8h}BjchJ)igRG)ocElt?S!UJpV-eg|Z%;de=Jx*VL>}KXV
ze<(-MhPEo4zWLF6cY5fZ{doNI>$AgGueKbR?M-LllC$6*nJHh{`h`m5us-m1(mO~g
z5GLp(yoUmx&Dh06E|EOZC-9}~L24wB+y}bOuiA-_VCfDfWS6nqZu!ssmdBsHu&)E`
zPYOn1PMt!Op@<D=pu34#Nc`WmQzsTf(?dmsRt<ROqFo4+H074wwYY#QMqwXt?x?S`
z2b@_1p5jBQuEUmefHoiU?wd#K<x6o<1W;`>9FD2EOS5(fIvSCXVo9Qj5{qA-y*<A?
zd~?}BSui@-FjH;-S-*~HJ9acI)i#T<<gCOL_Oi!q=&c+QeogI815y|eqmse#t$k?~
z8>qUasq)f?un40>PL%osz6eD6=)$-}R<<~N_3G^}A5LDMUH&`2ADn0#7|yKpIrVAH
z8EDW-tGx)vSFTf@eQ)OmGloYI`fcr)L@ZHI6z&lAo!ya1PJm%rjQwrh{BnO2MZ6az
z0w%fRxS@ilR76~FR&!wp52h4Nf|<i_oSG+3T3^SpmOJcCe9nAybHATP5kyErLlPwl
zE5`B%NM}6)XQHk3)`S7`XZQtl0ctrZ_yg#$=}N0I<K_;@`Ne(yrH<p2Pk44;g^Esh
z?)T86i{05>7Hc|v7JkSX;$EhbWX!<sxQtnMTmHZNe|1rh<5(%R40YS^P2qrYE|m2B
zoscBa%93;cZbRmR2f$|c;^h3@>CwrDH;1oJx>`fXBHeFx-@ZD|`Pi1-z>XO&7m4-#
z%akTm@Kun^ctUEcjUC7Q{pRiE$%QXJ%AILIZ4_neN7<XyT$>c`^v8j<M4p<9n@#Ov
z3;5m2PN*zC@U$_Plf)X1W`uCBi`nieInTZ_v!f*}M4MJwaqs~X%_oMsWlJP@XjIOY
zd?W$#s6=3^1V3DR<)qZlhz$lHUbu(4I?F-Q&B!b}PO<}EE5hm&Qq{XV#)yR_x+a$F
zg5nIbPRhhlhTU|EydiRl5P3gmP0{h;<>AZ23-ilA(5@UMyV@1S&ybvX0+tdxI9o$U
z?;pX{EBMZ3#Aj{^b6OO|S?Ck5c1xJ|g6i-#`4M0|2we?2sH7w7^{5rkOnw9e3;G|$
z63sd(h_etZ#^XjUQLfuM5|#-_Z)clnxe&XN=qt`5!r^YR7Q271#_qH{3}OX5dUWDg
zMJ&MXz37gKotdL9UkX=5-YhtkYQZsM1Y5bm*GeN60R=4DtAre_!H|q_{@xKdR+dM@
z_2chTE~LvkfoVE2IiS*?gUZa%f3Sf<&XOFG0*?QOThHvo#cQU5aP;%V$@z2*c-ewD
zi%4F<28%H0fBf?F^3CDvQ+P_5QSjqJHv_J)3>Vy-j%h>&1j5%<!>G_V3!Iu(?AnM>
zPFqE3e_59$i&BC57_?$<h%+m8ZsZB<bD_iRDY|y5UVMyJtJQk;<O%%SYPHJ$w%Ys8
z{?dN({OR*2PoF%0_Vh2Uy}f78p8f^3?sDR`q)G(;OY7ESl_&R&l&Q7tG!U{*x<kgU
zI;i<;GvUNDBFm0C*E}Qs{Mu}ms(aUj4u-OWnqIrP-j5HyEVBQNMa6T%*ex~2-2MNw
zRo?%t=TFxA|31nFdPTIfXp>)PyNCP05KDA)s)S>mJ1Z3W8eeE@NOiD%8oLRp{52<d
zpk<N$FNP!i3f?oJn8M{)!My$7+J92o|4;Vz*XRGelq?*CI`>U1hz`;&^j{mcb-DX8
zcmL}I7w0F3$FEQPQFxOv=AQq1`=$Ng+Iza*|MyakSTaG74o|-xD_wx&INW8tBA=Jd
zsVH?G6BELGgp>7A|4o$z_rJ;GbTc+EZ~s4kQkMVQPxjmE{eK^2!Q^4L%@`IG*-Ulb
zFu!pLd5Matz-autjz3>wG}@U7hhdifi_FkRzFzXL*EYyO7R0F5qYCN$b+bUD8-)q$
z@b2@O@q+umKEc%jJYnAcf7043?f<7w_MWZx|9zByS8q_`C05K-#dw~mO7j4l+YEDJ
zlc|L$%rjo<n~@%4S%?>#@py?{al`FE9nU`xLmmYCR&>jW66b&I75KVkzW%Sj(RSk9
zJoLyCW6atA?bg%hW&7Wg*4qAeF9jDZ{{fa{!1$ztPUAkuSqz&-F-%YcCrS2a+kfKk
zHS}$#32u3aUeO-MeBwqP>NBn%spxzF5VlQw&e_<uW-}uje;pym$Itj+>Ze3DI+2dd
z<Tr+FL^`v)nCC{rYtTSJZo6<Jq=f7`Rw97djo5&RjOUCnzw(oK(6}NK@Yw1!JTtL|
zXFQr3Ugp!(@K8UE!HuQi*||1Gm|8Ds)trnljXHI%)5zo=GJcH>{g)Ziyd>#3(N<~^
zVd@yKP<OHoIY~$dMSA@j<KilRZE{_g6_+LX|BbGI=GuSupHAKX?yu#)dnp?msKf_1
zHqfa=dH85>lsh`zJvv5`F%xko;Vd9RD4orON_eLz!}1~>3UkdZ9)4MJ|J$=n?0(3j
z$NDmv$qnZ0|EJGe?J525>3aX)OZoI^cN>lAr~?6il~Sk9|AUc2OE4rIw7vV~OQWHx
zHO>iSvcO2NzIGP3p?!65be&$h@#&L&;)$A?Y<!1SAnl5;dT64}kOmSpugIi{nm@dK
z+eA%$z%<cjM1@4nmxt#~_5c5BZfzm&%a;a#^XZdk!?Dj9K{ZJrJ|8FHF({@N!H|S$
zMB~A!PBx&wJ^}Sri8_!xQa2)TKsqM%89W9)`IvBGlDB3l(L8iTCLQ$Y6M{6jU%ogA
z>$F!V<4T}*zSh(16f)bXS#cZ>2=YzH*FsNf95qDwTh)xjq5azW-?SU{2XA@-Au4{&
z0xq<Es)M^-KRtqKV$Y$)m(O*Rza)H=W$ye2)^NtE-D1JAwNksgiJE$M+{w!6MbmSl
zeMJ61z8chyX=V<;F2*H%r$Z76QtVaJ$uhm_7KL67zGvVbSe_FGeYX_(eDU>whcX5J
z7qC&nViL=2Edrgop@|+XjC-eBJC#RS$Eb6VXZ2|!KmXz83^K=s+G2JaKm;<o_wu~~
z8}F6+O>_X|n`I0^L*Y9W0Zzcf7W#~0sx#fSTgA;|$Sh_OZEDx0eA-*(swm+!mVMNm
zju4kM>Y%@gri;6&;T&#@^0Y|>W}-H^0p341fjHk}Q6WF0KT;-1-ic%hi`ZcDlj1=|
zxQ0yRX@(bP?yDo!0;^vgspkBB8B$&TEbyvHa&-jx!X=P}sqyx-Sfa#fI$V+p7oou!
zRJSsMyPu;<kF<i5%Hg}KJE)u;GVh$arTl+${V%`?h9EO@HNZLg-?R2!`Tqau^JjZ&
z{qH`?4fH=bBuHXDAhMAE(7b=F+j|9aQS8OsALM5M?IZu4wlA98vF>Im|LFGNR-94G
zbE?7qbpEzSj(_CB`BUE7x4qZ_YI}A!sTpN8BP=AU>IhK@X9=h9N;A8-aWXQGNG$!u
zmda_6cU4$4K}KW3kJu=|oS^34+kX3r*J@6msP!b^Z)F|Asfe0cxG1qZZuf}9?Pd|H
zrTQjZR&!;Dazi{WhN)su$ooT;nflj2lF9qIAcAb|8su2AH`QkR<n)l$TA+$OlfMqZ
zRuBCBtq0E2>iSnNKwMjh7OI*R31f}5n_%rW+v)t};ZYtEaKT;0dpKBv-#ouH>hyrA
z95QYK;4Fp0S<P36%A@n+MG+YAa0&d~p7d}+bFyCwbu}#)$C^Nrr?9CY3b7!eNgb01
z6yNvvzw;Z1kRk|z=8@p4ruH?~E*Vaqt2CB058Jr!@B1zNhP){CsBYfbz==A<mhpJd
zNfyHpv_%}D=BF=TnkY}E<lC@M3M`00osA9tp_~lJ$JY?I(}}jIw9bA#4Cu=j)FS~-
z1<^f2)EN_N^@?aO7F(Cb=<oafz6rW1baJI8#3Ae}wOV1M&(b(->gYp$V|)9u5GEIb
z<3ltcEOEpJj|HU6AEj~CYHV*WD1PV&v%-P3K+6thnx8hu?_1vYzin;5|G&Qcw*BSH
zqbAxcpa*?Ml3hsf<THi~)en%*ENc7O`pmj4S8lHV>&Te%?tcF=U;p24KPlh;K6&<J
z{r=}(%3}II93huFKbGcd<qRL%zh0X>^Ax7$4h&rDRhP)*M232Pqw%xA1JcnJ;IRqu
z$zn)r&}yO1!IX_GuO!R`o393rh!0(6wnO;sComZ%SPp&3vecffRueUKs;2D28$2RS
z)P%GI&_q}DTCHY&d{05xzAFgZOF-DpAe;il>`)V{!OsKBO+n&LE3>OstjIJ9wu(0Z
zO5QlPenVN@7<dsPv^Bmw8uE}iW;|qD`skGcfc2f)N(6A8WN?sYcGSV9Bl2j{qY_=i
zQx-Yo?Aji{YFq;)f^b^qQ$F4qh5&fhSYCVL&O>Q#t1Y8SC}R1Y(HL$urm^5!qH!En
zw4XBNpNgMNlsDJ@^ax-yIPDyu=C84h)N_GO&d=YTcOb+X>__|3r;rEDO+h@B#>b|W
zYt|2XVC2=pm(5>eR4#9_lmui<VuW=NF5>2~-O)iporG^AJW&J?6B63gkYr-Ny&?&O
zf69_>Nt?huh%g<Am4N+2%HjEsn|-t#T+WH9e7i)_yBqoBJxzWdWQO*#busmAu*Vxr
z@o%L@=4z@?ZJHoIL;9M#y`NZ@yDc}D|KKIhD&)Vtr|t6n&y%Om*Ye-JlqKXp$MB*<
z4eQ5T$lMH1i64eQ;GZViL|WQ_KhGJH&CFzL<sUgDx;AR++Z!uV)Sbq~5i&WAlK~Zy
zPn680PC!2!)3-mlmF-Kg%IfyVyn)1nQZ4n3qb|F4>*|Xvb2p`Xun^g+{pl$j)U>F*
zb#gw_eyKCpqSQytzlq(yi4J%f6snc+0@JRyO+in#n;8ukvFaJ(I))d0=oAPdoAZUv
zu?k)cGl(upqexd3CDO~p+gj>t@6`Xcx0Tao@uqPRLM=e$h>FhlinIVcg_$zNxO8N^
z3|+!FbGq>|Pm!q+4iHWt^HJejzmlAae>Dn2>q!-wnO~B70)+N;Fkb6w<8-qH>rqBa
zrvzzXU>L<SFRWZI&4Q;*`F7+R7jtfL{+o-o`2xV)^Z)sj|9`8!j{k5kWf}hulfXoW
z6;^}~;Q+J(N5xcj3>-zSgUI38X_jNaHT_Jpa6?#Tl*~?Hf_WQDi22q0WqvzjT;{)-
zzsmNBGsha?^qCnVd^lYYQ+l|QbJm0sH+{RU)i_z}-P2h5=*(u5Lz|4FI34u}&tjjO
zW{|kbM!Aq2$0D-Xzw(g$6FiEX*w2}{0~>n?VjRNk$C3=ll&RxbA<ngPT$&sN>Suew
zk;U96V;rR>A6@N9R$iP;E^;p5ItO!Z$f`U6a^Ffvc3~WCl0OQaSKS$JP1mZw;MD^-
zE3dh|OA7h#Y9R~1!^)QBAoE)%d!Sp<A%YZx9aj)kTkTY!re4bC)EL&Uvl4)UCzI0|
zjb%+wK!vmWnm*X3MYS`187X;6n)WJDZEhtjT}~3Bv%Bi#TW}>s!UcA_y}mj#y)^at
zJC6>hn>p08S#f{+V(I(asS8|)jyL<JRwL&dxG1~%`EUHAZ?FHi+wF4vmnTo3Jzt;y
z_feM6|DCg3NF0ZlhuXJZ)b3J4BeuHU5!KoGfiIP}B{;Ri{|!5^p{8{<i25e*yJ<5$
zo{a;ed7<kWUtNEMV>}?C*P9euTo{?4l1=J212#||i;e5052-|jd5+*dFVM+!#zC>h
zJlq!EC)^gj%cAN5GPHGBs@$CaYvNge{m<3^T2H3p|2|pA|Gl5G1phzzm}L3Zje?Zr
zbE{VvTpr_1xxzzR;3n3Z<|g_=pONHg9H3|W@R5!#(te+QL``p6xY9r#={zSoWDtO<
zV74ArSZFu4-o!~o2aI&y1k8alZS?g1CYr^G=+9OW`3$K!aX?V>yC!OWXx@BMI73`N
zjiL$qBgGNzQxYPaBrsXO@e9$tLw%{nP>_qvy$uoyIVU-w2n2SWR5PL@YLrk23BPGj
zb^PW+)dfvBA;AH;BSzeo-#G2tyI_-E%R2BmxTm>-3wQ??Jq5ghb~es!-nU9G@p4kQ
zDM#?B3Jc-gmE|AB=0;#)dUfE;(4l)N9-SGig>RPzuuO%8-t@T35ZeP+Ro3MW%FWMz
z?U!_W`)_-1Z*SWE+iI=P|NAIQod22mSFgNb;WJD-mO?ZSH&$G0P`xnzZB<uo#X6{I
z_^)DXnte4<b2Q05&NA?py7JIT;fvkO_v~$=J<hd_R6%3Y(m5tzeNkj0mO8P}(14Cf
zY{iOHKoV+XT-D&@bDYuLfWa&#K04Gvhv7k$G>w=x=vm*m&EHd#ZpA_V7BuPM;OZLl
zFgL){h{}l%5PV1DKD%9D#0@)tJu+Z*YC&8tz8sS}ju^}zB1O|ax+Xe1p&(<zaa6{s
zz&h1o_D1op?b$^dojUoa425OMq-eFygp>*d6}mnspWQ}Em~OYEwCI`V7G=861rxY1
zow7XVMo!&6cEuD6vtKPHOv_BQRb4=H4A|*cOTT5lb44Z#u^osQa0{-ZBMw{<@MCDM
zS<C&fmMb!;b_sst=$xujmWx<5oxj0hH8Uzz9dr(Ktf#`pt=Koks2)>0r`Tev;Jq;2
zqZ;uwP7>=V<hVvCSPl@4L-KJ}t4A5o^*$1Fx0~%^{%*^hxEV*BNKVOE=ZB?zgd<LH
zI5EjZ!-aNb?lP^ds?POp!QtK0{I#?TQPX%Vhwq9pK*~P!?Fzs8z2+8bMkF4{VH34m
zu!c;nAzbL7CeW)Hrto>@1+v-vQxuE50?9tsEBQEk--)gv+<GyKwLp-XHuPuhg;LKI
zn?Xmga}k9+@Tvd1?(84M-pXvrdiur#&50`5(heg2prgbv@kf+lxap%`l)j(P;K~Gl
z&$2<-WW#!YhPpEis$LW1AsS1EUn-dOFJ`6#Lz^MuI1bq;L!9nLFDLTQOU5FC<6>98
z42e$Kzz_~YBqpOC)AsoVy3WX<O3*2-hqiwJYX<*$foYh>u-3wjwS|bZXY6P5-Y6h%
z;YSMfTP<S-k1~?$9H3^?GK@zSp3>L(^vltivL9?!+p$?Wr+&MIe6!M7WkaK9rqNHD
zEth#mDrqGA0g*qE$q$^36eYXS2SpS4C31H*Z7!nK4GV2%4h%Ka&_6js1+b>dIm{g0
zunZ+#MvPsh32KfNyRx#$qZu)q%-Uw1(SFvSds68`#QfriSYjuvVR8Kr=2xB)_SC4=
zIIJ9?rmo{M`x*6~Jt1-6#-#e>#7}WNAuVo<0B2IxxlRl@5g)jeTjxah$i@^qbGAhJ
zjaKz4+at@YO7=Vp(ATtJG#!X42*Y&*ErS9NEpGJ6Y<gDS^xC|uc%r1AepLhFNJFc7
zYE}<R<sQ-yIOJe>erfqHB+uru8L?}^(Wc_-hfy-bsJ*qN|9q2<2&VyRZ=uaJNv3Ok
zHZQh56asg-v<>w|K<O0ct7||8<m0)%5;%;aS5$%?-2C;|UmR?p=KpG<&+2#(lB1`K
zcAm?4AmtfM<TVOgP7Kq2KO&WzuR2K5)Wj8{-lU@`@Md&b?O{|9P7{}8>s-a*aT*-x
z7$uyHDNBWOikls2B~%cn#Uk>lt~pOC{c0lNibVuFTkpOOr*!~<hgEK2|Cfy80lB^Z
zcf0+peE+|;|KC?x{{5HxM(0A)06L1WsC<rNi6l@J@|QT-^W1<`+v1!Gi#`S`4V9}p
z<_CZgj6P21e&NT8ms@3Pj(Kl0)y$2`S{(6UcB7dlQsAJ|t*m=1`2)<rg(_Pmvyweo
z-8$Oo`Pb&JP4^j+d)m)ytHq0I$ZBV^X7LZN+?@Z*Br=-Eyc1v!|8G5OmGi$n-G92y
z|8_5BDgGaagbRd?Q4rq!WNt2&GW;1bc1|)J`pORk_`3Qi(8hwY#9em^Ob=1w;8XVd
zac;QCIiE}-`%9*$*F=wXn{1jkO3(T?9z|Q#tsl_y!JF@YZ5vyG|L2p|)c$|+<oW)3
z|KCShV*l%RKQz{{_$Z6Pcs@{Cw$*u!O~0N4XreKu#sQIL-_KUIZO|k0Ewu6MmkaWR
znt`3zPTb!4SHleBU9yvS{0?&)mYsY|7?<eNr@VtNUk)B^UZp(}$Ow>Q%>iB(p?~4H
z{N|~a(V&sX(C>o9ia8!MKY^vzS2gr|t1n-^G|^|&!-70}f;=xI0Sn1ig#qPdN}~{w
zc#OuFYe!9e$&9rp=-l-y;X*H-U69el%dUgwuSlsY$4CjkfFnc_QLsn|^#LM7DXG^?
z+i3wNydx~g4^vIS5;*mQy*x%CZcbfq`K$H18k<NP6MeK*_jWzEE7tZ>b2}^Z0~qp=
zn<G=N;M|p)d6kh}nCicl+F4T_=N2V38*{Patf1e_Z{N)hG?y?<r!ky0@@?;T^~0l*
z@jt6(Rx=xE>ek-r$D0mw)J(J+Gbdw8uC-%EEGajaqO6Y||4lqLHbg{YWb;qxtN7Y5
zNO>Tzl%NB&X>VF`V2Tvt{BU5KRhh~%W9e9}Uw#{>n?R3fhTT-(%UT?&8C2cOBF0Tk
zW37ZO1eg91idpQL+KZ4}{k2``_Wp`Y+C@5qJNsoRu`piQ=fg~2ji3L<$(V3Keo|j{
z4v_iN)GAV$TeZB%H@iagE3bvN3O9NVIg}hm{F;lpI_tXGbm(EopX>5<%gyEgYs_OB
z4;D}X=GuQ-Q}*BXI{)YWlqKZ<U-W__++(RU0be<bB8Uu$2eZWfj8;tjOFWnn{_C7E
zIg8I%_U775aU7z}%reomPKQn81oYZ6p@YiNyFTk1+8<~fqNc}x{WbjV(PuHldrzNr
znmVe`FNf!EPT&04LFf7GQAi{SBni=`63LywVPC#<)HkZmmoHm8$Os#87W+~M^w1aC
z(FAd#rb*&Zzrw;}M#E`ro4Df%1V4uelq4Qg&SLF04bGYM5h(NY@-_%%3bq}I<Ipps
zcxn{Sso8LB7wg00Pf~8o{~ZsM-46j40>>f8m50GR`_J>I<^1o@pY5&VKix}Ng8v&2
z9fFSRYUe59^N_)q>l6r6A-)&!Van+!>#)u^WCK5CPFB{5x2P*D=9p3RE;seGGe$mH
z6U<yqP<v!pAJ`1)%<v&R1Fas{dVf`Uruvy<YCe*EG=oLnmT`qvA02CbucPN%dqysb
zTu1vXxxQEEGI<ZC%c*A-h5n3d-a;Mex}_e%-p_*YGfw*S<3inBk%_Mxm3p$Ce6EjQ
zt`+6}%cU`ku?9h`0CPgw=O3a^+4<_=KgEXtQx0{aY?WHZ8F6YhwVsF-wAq{oSZ?5&
z{;k@rur{S-1r?6cNYZ2~9KP+h!gJAe1uQ+cnwP%$F#Sj)iunZf(^!j1#$*kl%;{h#
ztu2l5(u1Cvyld`G$nxdZbEB`o73P9nu$=ihh;D+#k_T?yr`|f{Cp6ZaU2-&-)#bt+
zt!m-T&dsN?+}c~_RlVqoFNW=BfmLvAfb}b4CpH831!JOOZZ#g(Ri^CQ;@!Sp(d)ew
z&RtG#1%yl#FyYr8{O)rnF=x%oyR2$Ci@z-9Te%wfe}p;3VXwv%G)Mk_{&dR!@A=+3
z|L^^jo5=sK)oLHVT)Fgbsp!GT{&u3Zl0UqDyPec;$G97rzXGL8N&L3G=?<rIcw?cz
z)K|60k9jbpl0dG%MF4WDmwQU(uwHd2^`khkYEYv#oHHhCR0r<-)GUlz(U0QK*3H1_
zBQ;;oZ9iXqnce=JBoPgOMCzt9U1Pe}ucH!`7ok=yDpagjjSLBRY6VxU9Tgxb&IW*V
z>EI@B4yWj;N<%98y}5Dn3ovX=`!BCr3ALD>M)FG4(6T$VJAEA=+GQ?Hht!)hkWjN{
z>Zz}y{sKgpx4Hu~RlzhHWB;cp@{1gBE7Rpyc-Aih_YIVJ+igXEH&Nsl>}JJkyq&}n
z>wZHOzOI*BD)6@32d=)m>~xtuR*>25P<g+@?N*q=ZT6XaA}zDAYTB*XFr)VG5-Xca
z(ck2%=HSm+QI|_rt(g1$1ApSWBKr@E2keISpLT11`u=x+{r>ZQ%8l$lYPFAFZk}(g
z-UMU_>EW1w^10Sqfi%#!v;*Y>-H|D18nw%rf=v6Bn1YIZ)tG{28*qwU)EIE)nv+VC
zsy8P+G*i$qmbiySxqWE9zAsbK1+l*U(?%ry+uWWGQ#m}zX~pR$ql+2?6nuSBPiD)Q
zQd}tJsHw}_y|neg9pOP5#0($%KfoZS8@PMuHlt?!%s0c?)b7rdOR(I%HLi4AJt%9O
zAaVg?T+Vgonc+;$1&ChP_XLq%7Atgxwl@RF+UmBbEU`MP8%S2Yl_-o0z<m>Ifa&(z
zwz`=~EV1r4wYt^xa$BpL>GpwJ-4?dZ)CtIUX`5N85>q>adFB~sJKexMbEl@zS^CB|
zVl<mIh1)Q{yElb?ZDY#=EUU5q<@KvffOG7B?WfP5743ifs{Y#kcOT^@_P;Z|+86)(
z)ynOE4k0}l6JQQgy$LX{b2}@bGuGW$0jm+blp)aR;+D@qDtfB41ZK)@R^Qcy=l7~4
z2m7taEp&6naGWM)*qEwEt8}CCzoPS0HR|fk2-DT;Rp<)hU(q9zX()=bGbnOaYAG^v
zmnkQQqLrdzi1LEWK=!iELo=ywp%u7WN21v?dq~EOo5}Yf31~>N(9$M@6hS5$sDX3V
zp*BrysUW@$VOj{cb44Z|>wEUMSqE2bRvZW#WD@&WXhR6-LSqB9J)=roy7ttVJ%gfz
zUy{XZf~Hp1a>jAUQ&S40z?s|1MBi}@8^u-sYWA)9N91xAkNN#MCz(c6ZBC0N2(&!N
z{CkmVmCwc~+AOcB1535NYO6S%8ERqe7|V9NVzZbt#U&}`X2!7@9o^DC<}TK^VIrH7
z`IcOQ8oBWf?KG>E{}-Ooop6u5>d)Dw_IwTk^6>Q5oI$t9-DAm=$XE>8TGeQ}W?W0!
zQ>Re%h<CtATw(QQtfVOJe#2B;IiJ;WHy6=Ma=LP_bGlkFzjH@RZqD*5mDg{WTx#bu
zhh%C<A}MWimmX%-dyod{)!2VI32A*GxH<2CpYA=`FZq8yd;V-4|L0yx<0b~+bG6)?
zm#<gv|EUS-!I*vloO-J-{CqouuO8uUY`s&+T*}O=Ti?>cTkK@Eaktjhv(U*EnFv3D
zx^*6!s(Q71BLqM#4cIJO$)-E|S&$|AOY_>zuVC>_i@@H-uWf4b^~SbrifSG%2u4gO
zT6i4isM1=^@aJ-C)|*0$d$M-mrJcCk(Z3}-CqRzw%+fWJORUU=D?e~nz$s^fd;<pt
z-QVrqw(i|yO9Q_6>fX#CRo%xewKaqDhiHb<XOj*cZ<RAW`-L$LRvL4}-J#yKGTEd4
zfUaL=-Ns$BhpQz0iOXvAKlhBA)&l3ne|@&!D*OMmpFLmefA>*tqW&3uNYw#NuScep
zJuN~*ePFalEbg~jkXN=W;$`U`;HzexvX|X;8<EIswTy^dGg^DKqqVcq77_94Bs-n(
zq7pY%Q<zSEQCbF+IDFsEvRcc%9GZkClG#HEppFNoD;hh8l|R9ws1WBWe;Zb#Q0FI1
ztwLQru9LWVckuvQCjZa8@pUybHv>$FC9WQ#{#twiIX*w_bgmFTGmjLMq-ArtPtmZS
zEp&YfdOhtKNz`XcIvJJOWJ5D|`}{f8&ZSunQ8sr=77|Rkf|2uay=m@u)0CvnsoqPO
z&$FtK0Ku7`V@XsqOh6dz*XJ>xyLZYaotviU$#-1c6F(Run^@-nNy1~LDm0sD(|Od|
z%;n%M8<ETTX8JO8JarA~W~)=%!5n3UDgz>qQqD;%v%B2pR5DB)hZ*N6<Wrj(X{oe$
zPWv(#x%CWP=9*KWt7y{h{2KonTW7VuiC^O;+FUS?pubh)2UJuBb@!0eYl^L92|92X
zqQ{=6#G=26zlnoKs=DC<3JM&D{@;X48u{uw-&q7sVd7ytRajE~_lG1J(Lu~OS$vE+
z@_*~;UdjJ|Z|_-qegAVWWdogIsW=rR^VBP=j-43wQW}Mdizhg^!UH1w#s<0^Qh`L8
zB#cXe#E?W0xI~~4mcfw5gB`?4ge4uDV>ACA$6;dw#bltJXg9Tqz&I<S|F-3$w{bK<
zEQXc}B$N=2A{rCF;U8aoxKM{&V*?!lDWZ2r7bv7$H2eXTyYPPve#7tmhwsAw?H9wr
zuKJ(-Q;g%?yrUituF?c_AJN$M#dXry_IvoMvF*!I(%AmL8yn~y=9HxZogSZvhM#cu
zI|*dNry;?+x*li0H~g^(SV(riA(O?D`~Upp@c8wKKMI!_WA^@k+J5%D9RH{N{ONlC
z-%Hs*FLhohyBl879#>M!ky`gg;}E_7Cy7SIuYcRLnWfZm;EN$-nA(*rp@G<qbkz@r
zayC?*Eii=+I7<`7QZzN8hz)3fdPH6m#c&KDx}D!>Y;2&*SO4SqywT`(yGpWdgd`zx
zNaBDJBfYD$wPX5&bAC*?pe*j7mjBWJXq_@lGOkXR63YzYCdD$J)nG7U4~t>r5mMlz
zY~Tq>6D6l+wE!-h(06v+al3Iv<FJF222TgCancwOiIw!MK-K_Ps7#O^*zc!Nq+R78
zucK`>nrP7oHUCMXh@oE?kHV$~Vq*iH#xhF;)@T5e)`CdF*_ehzAZ&4NEqH2P3E=`=
z4{0z&0gjaj1eRd%gCCQKB`7A>W<5*_GN6X3_206G1RCKO4+!@gjhBVxEDQh~|NT#C
zkKiN`d2d(d8(0oaG9gJKHW?}5PzkHLd-#*}5m4rl?w`geh*BX57rs8G;8%@?Ar`2o
zXiO5JbPTZDC#sA07EA>VkBKA#o#jc@&eK@Z5h;S0a2EQM?QWsXmp`4IZ~5pLphW7g
zEGKp<*$5Px%U2gDAd1h@081iv6x|OXlU@wZ<`rqGKh=CEEaeC%nHQ1S2WOmsEkRI8
zM5E!k;I{qt-gga8&v)N%`z_r>>9|DULs0}leHKORTBnceMLM6W0BP1z0v=-;!EZ+K
zGdtOk2>3q)EFqv6hP2-&AhZh-<dANl!+xK}R8j@!X9bix#c4=lg#f~lTRx*>A_7i9
zOGFEo&*<c1qO<Lt#z`vYH)wqJW|w)tud3PS#%I(uJ0544@?#bfU$DOHqR&Vt>O~l-
zFOd4l;B=zZUs{E&&#3D<-~RCSZPS=p@-(|I56_$G|Nqt8>Y`bY3^5N2kf<;28<K>D
z1|?HCNmytB*;SuoNvi<MAPLwgVKIqi22XAv>K5sw4ib%$DV*FLB(Rx|aDsa@T5vl}
zEyRs>*W#sWAI{%ux7|X^mZ|~Vg$^7X`-;Dtqr6+3s#$l%7bWJ3#XCIMNF8WXpOQgD
z6=$?>QfNO*cIxzxr~u1@AacuB6ykUFVTNo9=vpZAQ_;^wk8TM{oFtqjoPrfMt5rHx
z{bg5t2`GiclJwI^kRq6iLg}`@J1A)kk0FYPEU)+sC~f=Y5V<UryoZA+5SM`R{N>>h
z;zY2N2V@ywmx40jVHJ=ILwR(5d;>%-O_#=gp#&xuR12j*lBY!NS_LjhtRP#B^L@MT
z?|-){D1p(RaL)KrEdI{9`>M*)(%NFZE^*G>`4O|KayNjw8-W0w`DrrXI3&4qu)Z%*
zy!lk3YZ^s}#3BV3=t>Xo0UeWA8w#%pe51PrwMJ`QK058AZhk|fNxW;1J$>^*&1iDS
z*)_s30suiXg71aW(_kBFh!F;5!_OtE@&M&KcKd^K!=8QB-a<tI%<RU~5gyDJxb91P
zxpA4dNA64Mxp8qR7gECu{ZBVTrE{*RQ-x^K>8DYIpeEQ`rdPnwPL^(dMmBoXw67Z<
zb$5^;1ie4C&3@b5fI6Hpxs`eQ3CU9kN9Ci62_$J0X%|n?t(?Fy3$6&)G>Fd0fC|Yc
z$asam!6PC{6Ua!ub`I^G`rr1p@);K2+IMq3<WvheGk3&_4y60r9xE#|_t}be%Qtg|
z<)uLUMoRAC;EKdxT=>zrFCc6w-%uGcl@N&)<!jrkI#`(ACx>UJnJkv=1VQ+i2E_V`
zFxJezJ7eGz(!;!IcChN@y&Wwi2`47BOUxt<O6EST;`x;A_98ae-D|bK-)%kLZNJ#X
z3H6-T!lSX*_S(;O9bPbrCH|OM%L27|^_F^tdnCHgGv*#o19#;kn5R+(<51gB9KP+S
z(6$274XS4~Tgo>>!JVT<?`=42ov02KX06+;7-4bc^wP~*xm)ptd26TdB-H=AIdJNL
zRmhAThn~!BJQW0W?J=Tiyd4wHX-K+rSFd;hqUs-UqWOb0q^KV!=#Laf3g4kpB>{|S
zopG_j0Bl2%x-LvAiPGGpv(TE=5{o(MXK(Xco}Ay{iMeE%&AM)RG=768>ypJKeC;z;
z+|=1gT;A5k!D{x}*b{i_jcA3$S$gBtG#gv7)QhwaPez)fN%qlI%|P-#DYXA>bHjEh
z%sa{o8GIGgH-)|{GU=i+`iv*t6`3qP>aEb1#SsIs=WF6<)(jo=<@N@BliRI8U*-VH
zIO0TdO2!1-f@mM%h!Y%6Pyi=G=)3Y?!DrYr@n(t`LQQia9=<EyM_DA>vD?k*@AjHo
zs2P!XAcsxVZlR`-oW+Cu@wwvvW|+d~oQQXjZoh+cTToVY-NTXby4Cg-mbv9tQ6H?R
z=oW02HfEiYrpXw*l`;omi&~35-QGuY(N}#r^(_^94ok-IfUNFH`s*CJtGmelI;Y<1
zuD>(NO_ZD_q|&XbnWj^r!j^NE|N7hJhEuo3o&(f$ndsnDtCH&;umrav(dz*VSuRb=
zB+7zk#3A9D9@Qt2y@Y``3yLvf8jIYY$~8!*HKeFLzl$eA_M9VoMuNnUrBR492>NNR
z9cCv}F#4SQk&;+O6Wcf_C?MTOU3G#g&BRdc&yvnJINa^c(#i;Zf$N_;B)OG!?b2Sw
zg9?4Zzf5TqA`*`&XYokCli(B_wLn<ccQIIt56j4M8Oc^Xty<>5pPokPX@=TIXPm|o
z(O9!n%CyTl_{v%NL_ZZ<nil2=F?M$5TNuQ%UlwnF%F`%43ew`L%y~hdvr%U6=pxqp
zodnV>2$e!dp~P~y)HJRN?^N|)%LrnX)A)%@)FfU};W|_a)TdlXX9@~p@Xy5NtyO5I
z%DAa(bVCrFK_rh*%wo^hcBe5dU|*3*yEr)ztE;AGxYoP;iPzE|Q0M{NlRx0I{l3f6
zzF{lnwKptZd;AAfT*flz<)!QUv%p*8yCk}TT((dQ06)IXi{q|2&34QyTBYM>F9VCZ
z{b`H>EWqwI$=xb;9ItHc1u@94%7*OP9-Gcl>Z1##%)E0W2>iCWVPDn4Jh#xC^(#JS
z?^dm!tx_KY0-Z|4&DnyH7-A*BYNrlJlm)&X*?Z|_)^9aI6uOI{>Oq!y>sNY7FU-vb
zyoPYesm`?rR>-CbE5>oW`La$+X9i9$-*q#B8+G%&V;-f8Yy)ZY8R$wqqMh~>JYbHa
z(p(%1#A5T1e!^0XfK(8h#NTL5_EJlu>5ll(ob{{9&C^|a{haJfD_O$n^>ea~eBC8<
z0tesAD$ZHIQoPOVeqg!vgIITe7isd3%h!M3RsY^@9jDh%he-UoOQ&Ox-Q(U{VEqCt
z1dc<F3v0OS`W@L`R>VQ4*Dr(fE3aV&$9=8iyz|dwlDy^lr*oM8cTNWX<1P<DlXv<n
zAA%Z+`#l6ft^Wn{n8t(oI{gCr`>j;$xk~8*3gGRWa2%?>HdygFiy|5iF7ZG~00vnI
z_gE^;OI%X}Njv~1pE;#=mv>TaY;2&5gai~vhyn&hFeD=^9Cv8dRsQ0c8?UKO10gv{
zNJn)@<3R(VFkh~Yb+xk9orp%-xt0nPu>eaFHV`5o@hFK%2Zhker>xO%9&gVX>O89n
zgq*wox;>jm-n;RD#vdCEi3jt#)%{33aJy;y?Pq@53rUaS*lV{u{%pU|NYW@eV-XGJ
z!V1XlPY~AKpJffRn44f6eS8>Q<B52TXg`NT;p{O4VU&+|bo5L?Bve1`zhUx>6G3A6
zSi@r+kaB=9=XlaUh)SYEV9kcqMsSKINLZj_-3em-9DFm5-)MxSmpWMO=?J7#7|<Zw
zmo~tafQd!)il|={5tEOSV?^UV<0I{$siOu6cP(^mQbodtG3dlN4v6WjM>>s-jQU){
z+9-qtD3Zm7LUYX`Zy;xtk&E!g2GUbE5ShpM8_2n0%r}sUJ3ALoHdw2!kDLoi-$jDL
zW1}JTE%#A`g_uWzKMtADLA`PSC3?rAbVTfRIf9;c&}rY2Skr6nAa|HI5YM35G>^nX
zDioXog%gF)Kt~`DlqvpIfVk;38x0%;M2OccB=f*Mgqmo?!aV0mE!>5H&It~G;Z%~h
zumFPoXYODZ^gm>Y5nlXA8;u0Z;k<s&OeDEpzK~&|rz{A?EONG_qZfUnupAn%8^}Ry
z2>}}jFaSVrz~zK9Y(}$1C!(BeA$-N0S-O$ltnZO^C37b`nwZ|N$mBIn5*h>BDD-8%
z&w_;LKFwi&MJD<NtjZ--{Yc|FAT<2?zGfz}b-a!Y)D7eUyMa(9JgQ1IT>DRClA%)J
z5+<wwOBJX3#k`t=sC`I~SWpO<1bYz#NjK~TjkEi)9VFO@AW26=s1B}i44ZPGT1%#S
z=lUu*VM0)N@Ho-Kf}}7cl#4Pp6w9`&yMgimzXn(Ez2|w=F-{CtZXVzS8Fz1e5aA?Q
zys2Kow+a3uC0U@9d^J9Oa<1TweE%8so;@LPkOf!&@}*IjbeKf>jD6oXq3lRJ?qvB>
zZP1ys!;6bw-ku*fa#?b0?+QB&SH#q)gd_(2;x9AM<vMC+!3gV|1j~+rrTCY{A+N|}
z=7?8L^ut95w0D-qN)Dqc{53Y*(3pVM(vB)_{&~9z73{WVgS~lsd2->)kD5;fEEX&x
zw+TYrYTa)b;#T_xfruB3L_9ay#H~XT!`hto6-Vkb9;lO(iR_BN<fet!o{DF|t4=~R
zE5i}tQWTcWL|g)9tQ2Y@BpOXjWKjsmSX!!sW^<>6&4XqWX#R1j>Voke%L6>JTm6IT
zq7(zNK8|H0+jrz+!nj0EHwTY4uhJd~WCV?ETv%{f5D5-Q_U0j{2IMjHyI`>b@1Xg~
zS3J*m=<rKZF*q#9vnR;&LK3i$Y&EJ7(Y_HP+Abp6t3gEj4iM3<MuZKP^|O7bY<&3`
zYWpp})o8qb8>2UDOh!GzQG0&}?X~t=JLc{Go(+45uCYL%kSLv~Ph%>EB+Q?T4X7NZ
zJqTf?2-!p$+Yl1VRCuiK$szGf1i`HxB!^U>5&oTVH@*O*lORG(+lVunu__qictC^>
z5~ZVcso(QhSZ2q8x*(Zi5sW7+^Y70CH}wgYDOX*Ep$_V#r@F7@Dd<J*N+SS+S4cLL
znE|3wkf^UzEX+eAWn?HjdHc$5G`6>Y0hc)g_%-1KQ4_I@m?*<#B>d0q?MA~xXV#V3
zd@VFOY;-R@UwCs=6i>Qn(=ZS~LvMn5Ob&IUJ(%9U#l6#!T3H?54W?i0b8os&9dQe>
zIGSwv=>0zlC$mH2*^qdO1aLylq_i*67U;kMjulOXXv6?Zx#p{FKMK2DH^hc^`f7OS
zXN3hV6PdVO-6@#H`+fneKK^5O!_@WwIL}b|9B9;lmqlXIzUztBg{|bh4Ty!ae;Xof
z=AqaaH_nYwGQ>S1X#g7v#N8nqu>pyRTKQ`{DOgu+z&0oNn<B9zMW`X+`tZ|{3G$Ex
zut{h}Mw+-zjoHCS(Kf<Bsjl|%a=hx{DS{>h8_Uk@n;qy+dvC^%CF(2oh2sgLLZn12
zKBSh{%`P%@DgqK?PFWT<NH3Ie4|Q9Ij0iQnWmtAM;&`IgF$W``g?=1a+-vUC^qx^*
zi&=0NkzvjgPWpsfHuawM`xNYqP%UIZs<a$fwb^@Ty!T<e|6xQ2dWm;8vX5RWh!<c%
z#Fp75=BId|7thW?GBn;-#PYKs{WL-mjjx2J1v|1Du@Dtfrjl`rBeBbgV9}U(3b;M^
z|Gt+nA-x<Bz0SK%e~ZkdqB^`Z)-{Ny<^bb)<2_F@^Kt)M3NyPd>#{Bnu>Ai400960
LV(UBn09+CP?M~@N

literal 0
HcmV?d00001

diff --git a/assets/jfrog/artifactory-ha-107.104.9.tgz b/assets/jfrog/artifactory-ha-107.104.9.tgz
index d96751d590056ce1b5a79ae43b808507f06b248c..81d95738121471f5177ae01ed51ba3536fe59f11 100644
GIT binary patch
delta 211972
zcmV)RK(oKK+zqPS4UkEHwcVPO<VTXKlkPf>lX{xO{#tH3J+nOtL_!j3ieLfIwl?+W
zZ~q=#JP1;xBtP=#);hb>7z8eW3*h47J~5Ycgd@rLESTWV!31*|&hRw(+x`8z-EQ~s
z?k@bd+wE5W+k4#W{;jwBWbeuD-tLpfdw=Wpc6&R!e?#4S97E%OFBcN?zjg22S9NlK
zk{?b}Cb6U}75x@M-gX!eenBJh6XAlgw2z*Iz3y(<d(uKE!V)KJ97b5mgoKoJBBB~n
z68BMtxl9SKtrk;}C3qI3cuM-{pD#HZqy3^w^!<Kqv-5mNf(tv4_3xgcUfBC4>;~QS
z+WMR%1PfxiDR1$A7D7`Zaf~JQr`CHKZnqF(LqYfj9@2!$nfu-gcY0y3*TNZfWf$8m
zoMjd4eA9|aM$(w15hbGE3Q)w-m`bRUF(JpCh~JZtq<EN+xP_1&V)3bk5GNTER1LR}
zCQ@di-|0l^T#E3w5ocpH!xlmgAH8n46ZW3AVj?0=Gu_#Lk116ZaDq-9IP?amcuY7F
zd6qFQX*xzYNzfGk#yHAwbdJZWY{d8!OR?2LXqeL^Mv}2aAe_eN;0P%M5iY{kgsGw1
z5nf(in&Cxk+VODSY0*fHXhajz?{u&bM2e0o6P@zXgjqUnos-!m<1rx5``ii;KyL*o
zCKoIdEww3seyZOSQ%qBdX-YVNAyZ6~KBB3RI7tW>|Lq3qRsaYedQ&t+Sn3Vhs@+9`
z<vh|$Y%wsVa*_{W`T*Z7T1(C{)jrD-8o^0xc}r*a&1XCRb@V@B(fK|0v4sA2cXoPn
z^nbheK>t6*uS&1(lOEAA5wefO1aI#>?(cSYBhu}EKH1sZ8Dc#8W*a|__D0*g!|mN~
z;=SR{&f{o%XPfMe;_Ybro6%F;CA)FA`^_Hielv>qc3NYS5{{+1W7^x@?d_nu6Lg=R
zb)WY4cKdt1@M(9ixBd9*?p}YV+x~0^>QDBooc{})<V4&v1Gw<~Z*T8D-rcL7|J~lh
z`Trz;zqK{=f{bvUNTk<Z-Tsx!E^Mu>p|c4Uhzf+!FZ*v^2bxEaB!+t(YCI>Gm=kn4
zAt{O`I0at90G$v{Li7vEk(jVNiP3q=F45%#OEhCSQte_!)A8RGp#3N!LLfOIw)rKM
z6ZGK&3V+i3^PJ2=kq^(w3|(Kh#t9qZM6s`bYlu$qn4FR^6;jbF!wHHYX3;s}j$jpa
zPx2%gkcbm0Gz5eKG@V%xKaiRJ`W8=#`o5-Fg>c_7e<;E!8WO}V2&ZvOQj`ldbv>-m
z&_xk?NJWghxp>7Pj3|_Ntb2OPB<Z7L9utn(2xXj%2q$So)I#(&t39CY&BajB&gR^I
z=ygx9y1=3kfp8)iYy-7~R~k(MZCKDyS^(WFXus&A57&T1uY0pDDU}DT;L21Pmm~A9
z-xy7QAg1aR3rV>9(|jvdp;F8L;G<3Au|QESB%2<UI)6^aG~KHEVhVp^Nj@dzzuvGs
zm9}U=V-jIrG_+eF7bHeQCMRgb+0?9A4=~Oi`-c*8K@ueBG*2W>3Cl$?gE=*hwvYa3
zHP)znG^4LA)w8I4nwyRNzJ|=RF2Yi6i#R6gEr6ujECSGuE@_genMW+6`s<^AzC1mC
z_3r!QH;1KXz>^^b7=JVR$PDYi>su{3Lgv-fM<bjF0!5`ER<_6*+BX|oGJiwDdg!g4
zu~?`l0E@|hBrpKj!fR`2Ah|lklEH(P;v|{D3FkB>Rr)x}lSDC2NRnxmU`fyh;KjZ}
zfRq_h1RU08YYqN;YykFK<t`P#8+6xNL$=I^h}1q&FHp0tt$+DL2&Y(Mm#;!J%iLf-
zq~CP%Aq}Q9rBj?h1&POf^i8-I_MYtQJbC=&>EkC*p5;k$!V((I`sir%mdO)N1W6@u
znC>~HyZAjPLYlwSdwmMswfDMjXxkJ<S>8wOUU#Ys5;~<dEqbr24caaD4pg<_an?de
z;ZfabeSO!F;(xVxl#ZC9w=|U`Rp%GBLd2$1lB%7{atS+1t#QW51!cJaq?1&l2^MHb
zNQ$QHg2X6K6)AtOu1wK!Jp?ozvG6y+()Z9iD^^|swXkTqsO1*=F*SpNR_{v_cn?EV
zM;KQ30;dwiSmM@Nd7^!^{^5FE?VXpbBqva-2eJW0*MBljFVrqKTZR(Rs=G}W-=%QV
zd#6&&ge22n@HBDL_xTQBOX3ThMhcIDL~4gBW`hIS<pN#eRKi)$IJ+>&qa3lz)Q7F$
zL@XWAaSo@=mocoZp;L9mHc2&9yChc^u$5$WfY^1sd3-&9zP?smQp;UNFbkjwZfVIC
z6@c1}SbsBM^_RCdbebZMKL`9JlJFEudO?!emOsrop5%h!+S|i0E943wCCHpal+bg<
ze&vZ2Tg6v*`W0CvG78a&rfR^N)ODaP3b^%#Bw?3&8B;{A@H8`g<1#L%cGTOO-fWMn
zIMv%su{#F0s2Pp(V9f2IxK)M5To8oSumZPa=6~`V&XCARL`O4?LcjACsuc7sr$yl8
z{Xk}x7ar<!4kVq8;NPYLRS_vJH{wLSe8U#9je$^|vV@@LSaBVOX;vuWEHPWT*vRMk
zknog9B0vtyBGJL|l%^e=%L(K3e}OgW@F9*mE%m=@xVqQkzU3@2mxThKC;DpDwL)|x
z(IAK=3A@y+yQ*x^W942z+*LD6rvrpD`iiqWb49v%ech8&2xJk3um(g0asm}Y0~FwS
z-oi*olgJ2Tf8W2lCZimvMx@VH0+$V3JV%O%sVf(-GBBH6;WlEapfTYjMp!+XPsx~E
zp*L!0sa4s6CBo>0lM%f_Q?uhTEGK6mF0O|RXE2w9pI|xZqfS|4V+u>McLcAjnlENK
zI_k5k7A05+;GI#sUBB3<yuD>20vtgDh2S<+F^@xyA=I$kAmi+677STD3k3aN)vl`=
zC3r}Zq7%vSXhfqxi_MeE2}*w}fUw#_X0It4*aCLUd;(%xOu-3T)J>TYPGKh`Xhg8g
zIoZ-%Tc26Q8|h-rV88|ey^cW_k`vDI@dPG)3fl+n5h~R2&;`$D85Y7GC*UkJA!ood
z>MPiezh!S^eH_(((Iko!Eg?#YK4pSrSP>ZX{n^<`FYLJy>DTe;$pL@bP@lFpRqY{3
z$%q0`?S<;t!GPbwL+zZ93@7x0068(>RL$)W{Xj^jfhleW8Uavs22;&^2*lE4W(mkE
zo<+4pL<_&iJd6HH6h+O~5QvCPHM?6w5Z3121g{j%GtMN7Sh3p#DTw<}BM(ujW{?ua
zqF_D)d`)mVCZ$>yl)Zmg;1u;2k`&W4uuc0gsKEpM`fT(oCGwK-^US>T|NU#r5fep|
zEC|J!5KT?g(C2il@OaEv?8GuHJz&_^uQkR^5kff2<`lH*8!`NXeu#d!hJQFNq9|SS
z-_A^plU)MED2a^}rvf{dO{aMZ5+^N~F0^H6gN|zS{FeFJ^yYu+sn~8j)k@pSj1+OT
z4T3trjli35sW9{cOFUFBJ^OgpXRD>@8EnW)Ol2@)Jcx%N?=3`6AsP@sEl^sx8qR6f
zQVm`*Zb2Key0)fXF-0G~VnTC_4&6?B32%4qv*MmMen@4Cr_?AdJHvzxJ6e3~J{2%K
zr-%D5-W-P0STTR+MS1DMFy#Mk(zE%#3;9`ZFMJ$!gP05{PJ>=A;JwF+n!Bn$3Pn4r
zhsLjQf`zzbJT~OJ_)ws`sp;XBRA`OWGW3mjO-PdN$FbUI>ZG^7(sH#azB(wb**<Fb
z_PRh7Gr|Qlib(z4iI66u+uiOfYJ|D=#e9%pI#taKm#TjusC%c6_I7u+6?{&oSZfz*
z1h}x1M<cZhXRbi9gm8N$0JY@=$EO4&^Wv_M>?>8*u~KgJ9w%3_9tG}v3|6TPDwC3E
zbgd*D?QL7>=$a=VwF1($l8AJzR!Ca3+k<xcG5PlR%zGf7=v^}S|6c2RNO2}$JF_uQ
z_nyIV-`syvfMzU5Z+;w{S&50|DPv1lVj?k3w5kv>UXl$0W2?p?B<8YZ+gOnbLp)C_
z4W#0VW(9aAC%_!y)Sm*7`nN1SDQJq&lu998U99sp3VzWFk7G_Rv^ZH~OwAR*ObE((
zvV{_YF9_VdaPg^)jL0;T>e%HxDYv`?p%BR5JoJASET$(PG8@RQO+3_qGIR8|Kz1c3
zL|9F#>QCsQ+DhflCu*Qh&h>-ie@u_U?=l{$A;lz>6ej{Y)37Q%nx>9JvLjI2P1CS8
zk44~7qqg~aPSpO4hk<IM3roXZ9e{17KUkdKU;sRU^RQef2wU%*%mhkkL{dTCX*q~m
zc#40g??5hAmK>Uj`quMA<OLUu`slzsFtpeP7;WfJAI<lQRgGj~H;MUZ>;6Ok4Hl8#
zp&(E^LXc2NI8L6G#`)~ghqL1!4&Po^YuT|sd-UP-`1Rqt{nNMC?_2m1D2f5mpr>n?
zU%#dAO_ugiE&_su40`7JH^O5}7?GijbJu@-jl@l2aV|QRO(8+X;=oZ_r+$PYawR)!
zg2+HlNKpL(tPC!is=ohQJ!q$mgxfKEhvvV9@@>6#F3aHYJlz*>S$fKt1Rl!OTo-cy
zkzaci=ozOMG$CUWFNa;!T?H~w%@f<?P((P<yxh`$np&>XYlJgxx=V=&W6m=4nhJl3
z*a-Pww5$QC@7Zdz5hRM(G&|u8j9nDjUp^7jNWE%RE5%JNy6>yEy}y>OuvmoRa5W*U
zs8JriKBM{xdYY$_PKmJq0$b_=Pr9N)Qz5S3fBo7jNVTkA(H<?5R5zZYg95C1;GJYn
zpngh$U69BUYDK)_jCl$j@7ir?fPH@_k<owOnc>z}xel0NwV#B&-EYF)G99(yM4f4o
zRfAZSfE^Fo(3+S{boP3HE(mw(4|wxr>NPk*g#oyFz5(U&1pZbsZ~_eP)9%x4&?eOs
z%0wJisV&?Zl4C^D3(8pv&)N&jsj4Rw3nWYSDhlg)O6)R9rWgSZLOfwq3dMi(Slwc3
zso-))SU@$H2vL0=7G3^id+ZzWgkH-xzq~tq`_sFh_D{_f3y{nsrOHK@8QwC}+BL=i
z^USW#>eey3YrZvr6LO%0jz~0%62+*obN${lI4SM`R8(_Y;3a3%68Gs0vYv!{+u_v~
z`WaIR@cdd@l#nF^#D+7(GLnCyJWCjkg<^nXcA4rwhGfLlnIe2jQ>+e|-mRPrWN|vl
z6^RPPmRc~J#(nhfwwScHP&<g!|6WdLLeRhejUH`8IZxCjkE!~Ppov=FATUzXKoJI(
zOSBDlZNJk=ScDVB!}gzcpY}@11f0>%MX#e(shxygkQ9!<v;T*Ve?Wh~{`xJ786wey
zl@LG$5>j#YAldyEiG+|0ZL7*DY5(e`vIbAnfnxppUSV~{Yt?yohBWQ?lZO#}Pm+Xb
z3AB|a0BAJ9X`B$={<YW==8bZpO{%o@lrvDOnpEjA*nO_+1llE|cyp=RM%b!93G?4j
zOk6FI4|N^?lf~)@XTyKSC$*-zb~H_UqO3?Qt2%?I^rzk=0tM&AR+-`}*d4w_W~N3Z
zLbGWGBw}eS(Dk*dL(?e9V}jZhJ0=lL$dt5Eh_0_o`^$r?4`Aq1M09;^h<L-kGZRox
zc8Zf1B*8N?pgs&|ganyh5Pra>nYydm|G4Od+ug7mblWIA@R@&z9||Xv(3*Q*U-zDN
zKYTzW5d>Xd!#~p)U0<7iGr}p0U5~x4DKF!uzY6wDONIBGld}mYV#1QRkM_(Lk;7%<
zed!so27TBoi}s2`(MR7b-+bA71tcnY_OMg#v{T%|&7=RDZv9&C-D#=k#H-%T(gs^w
zmdTFK@wO`lcddVljdp{xq%qLaY~yg|45}`PmVp#z@RFf1k(x(WtaZn*L59WB7GlAT
zP3vIOe*KcfM&i1rONxTvP)IyXsF=`nEGOiE@+cu}bjEWbP2cMITw~09bL(XcotJHw
zM=Xi8PCbIIk9F6+0dvU&EKk8zR+k-V^Gp3g7$taY&Yyokf~Mny*xFX2qc)Xw+*JHa
zdBNP%VFRRwn^yL=g^nb;Wa&C+6!B<8B3U;3)Ad5%f_}+3sj#F%?F&UL{QUt8mKI%_
zeE{B$Po64%_(x%l=EWtI(WImrQp`3@bE8~Sb7V=3F7Zq~<gMV76BvmaZ{sk1HGQel
z2?xE=seXSrzQt4hoY%G#YHDscbX0C>P4-d-h_o7680kNJx8v^=cMi&_cy5gI-QSZ&
zNgsEAM`WBCu2Q{qm%VXU7OsKynj$|uh>{#MX@$IPnkSNG2?-P>j`M_YFfej|c?SAU
zrkQcdKzagJ2Ts+uUsb;{uBlF1$f#LrmiX=Q*&%-l&>MV3r}<RNMM!L3s%(TX2%gmj
zr74MvE~!90>x$adLKgUNpoXGxR<+1;uhvpS7=^P%wFe>9jzeHvU}kQuKuYr{qoAS?
zJE@Kd{I=lfs0IJ(uE-R@Ap$(I5KYnk>DkfC{e!dP(_b_}Qv|G370g@|lo!uWT;Xv#
z&^&*E+m*h)1yp{=8A(fOzo%;cl1(ElZ6&am$7w`NMaC_MkQoWaH$BT;l)q2$mAXH%
zx(&Cx_WBfXWUyfA$%KRYvRDlxeK;_D%DSS`nLJQe;<NT{x7%L-KjF_Z(6%>lJf=i)
z8iAFVwp6&lG*R&8<P1;3C*c*^C~j)8sa=1PhU~)HjGi$w8W8ThuQNn99a<6hdxe|#
zYJ<G@?~E5D<1qLby=NIo-{@BF5f<P`qYmPe@TnS+8UrWlOaPwWn+^=P)7!BNYG;0J
zI@O^b)W4eXy{0I?7F#O3WjSyW4!e?}qg2rGM1pm(#xG6Ckl;dG34EU^bi$bVz7T&(
z*tp=5Yiq!WUbC_B5mQ65kVACBgrI5!TC>(iF&XCLEkx51+d`L^r!*aJDH=&QXTXq{
zeig7jYO9LY9cFC}9VS>v8VQ1VG;#V@zfW@=tK(_s<+mv&lXC^X3{dg-+Nezj`ml%u
zUmERm5`#&Zu{YYXf~J4a>>bvo2H$`6pLU;aw~Kz9*+aW1%*vJym4kAixCeV4&_FVd
z$L7XRdwo4(No-2(-d<PpURP_ot`ArBNWu8i$Z*BZgOvz6*77;E-4$Vm&TZ}bja_W&
z2}!aJ*9C!fNDAy-Yna`bMY*%$>lm4PkY|CKhf`q&!p+m0U&Aq|AncOybHaaxhaz24
zhaKtYM#;f0j@5fW;YK|bb46_pRK(I!RdPYJOih1p9wC^-I;!d%vSQ%BHCF&!*xQ!_
z4K&9|*;YxLj_zx4KTk+nv7$AODqEo4(2qax5YcyneQr+h3oP*q>Kt3b!a`rYHK8Xq
zDs30l!W+9HeE#Q`G$Creh`WD%rYzP>KaL{C6~CY8X10QuU@!!oGV>HjSxhYVek9km
z_33n~5hR(lKyZUM*1z$V^Ifz2%5$1xK7;Z6%TC@JGZZ6rQ^lfC^nhuie`k2F)G!^1
zFxI_;O{^VCBW=#qV-{*Y$I*G7tx|VwO^;C%t_+0ib8L{>g9JyDvipCT=6SpqZ(j@c
z)vIOqad=gJ%!n<3f1Dm(5I!>u6BxNNX>=m6--ZP?!>ehsWlUjla*1ccav2vCR~)3_
z+*ZL`uhyYpNiGRY+M0fX+N5ma|8B^bRCFWrOGCr3hej!HiBbYyWVQIxwyT(riR>eI
z1p6KahJa`%Vo%|%nRtIp;eh#=PS{w@FJa>`I2&ubR}>)qwhnL}QyC^;gzOa?P0;)Y
zr?+otXf${J2k(WXD>ZxsLelV!P8G!r$d&p}L!Fv2dtc`VHsavx8P_y)pXOWHcvdy7
z+^6|gS}Ii2#(ZdOAvq=^dhUIQ2_Mej@0Mj?#_+%|HiOgb6)S&#dJ|>eysmGFs&8IB
zxTl(|v|G>MA%iv`vKUSArroo);Pu?z)o-7`R`8HxzBoCgho{<p##MAxI{l1jdqc<O
zDixMrP!v)TN6FBW@JbQ(sjbvVtg8~woyW!VS!=E{P68mvR=BJ#76(}SwHHQ0l39il
z{qx2117nT{EBXXxHuyc0`WQ1W{7)ktXLkY9na;%TN#LH=!Eg8i2YX>J-0g+GVeYt3
zPBPXDr}%=TA>-o?{A*j2Tp2?Q8wnK>h3fI-_ubyKldBm%f3Pkl>*azVsuW0;N2Lfp
zO<bZ=W1#Enj&)!07qkF;;p^W^-TAtZ8}`{Qp+Ija-O;iQeS-~;N0RWH@Am~;9bPNy
zvGTC%zo1=j3Hgopy^K2k1Jn}he<*4l<UIMVQ>^%xb0EYVSEZ{2@HjS6IbtjBQBQV(
zaM{KNZIpr-e{C)VASUcms67JK=&o1wBn5@v28~g7(;cSTI7gN9WTp_P?H>>sJshMj
z;vk7hjk(n4-1zl9%#X1SNWEnkYO?#%pDR%?%&N|L10kQ8-zhl+p)yBb6j%L%N-%oc
zPwRm=W6L^AIp<PRhwx^#vT>6{5=@1)LI#3S6oFFKe?NREqHMJr!Op8#wLwT=Y6Tkl
zdRVdMTiK9L%e>y;(x$I(@Cj@Q7w){qUFEx?P8d7aPp-xAO<h~LzN7g{)gC!nxkJBd
zLwA)bb2xWLT-s~KgenQpzEhhSmvxd#%01_5w?ronh+Zu1qiEmYX%U#v%>w?^@})N{
zCSH8We|DhX*x&)F|D`4L2hQo<8YY*bqr-`(9PZ6LrN8II#6d*oWEP^ss!%g!G0}eH
z;MWD7W9mE=jsD&$#X7PfVGv6_`wM4N+h!R_g-8%rZ}MP5uF%f5p#mpZ2t+|;G$F}U
zw_Xndh(qJ+5pCecXOBL-*&m!8p1%9x@Rw_&f1#~Jw3@BvZe@ZbX_b=hAW$V`H>;YE
zk%mycIXON(+kbo3_d}FwzekNV%W^mnI*^s(N#b0`w~9%Yu-TNP^6zs{i{PmWj~Lbl
z^lY4n2{JTLt46QT#(tJrG4rP0QZ6DUdU?lR8Qy&C%zrYPA~nB4^QZo)y(ewVC6E$(
ze@i+yU!zmidKF`UVeBG=!KYb86W#Ns>tLEKT?H3e6df-4-P`t4J=Sc#xiF^w@aEUS
z_?hT?@yrEM`sd37r;c4izm3daI!x02O=0Am0HEi}OiI00C)Dt<-<p3e7>`mLxI&R>
z&^-TXxCbDN+VT-6&W5gdaQI<`t9Q8#e-h`sOiLehXgd8h#uE3@cP+<+L&bNx;yYuT
z+bZ}oaAqTt@Lpe^y<XkNZS!%vd34*2!`lvZx1|yO;kp5(KU^ICN~3MVHMQIV!~0^(
zAW!>IMJyF8As}(r%Ey#R#EDj)0;(<AO;sanH-Eim<C5MO)aUw%BXmq6t;)1Ue*@0e
z%<4aNgIs8fPB0K@Omop_h5`nTU*k0XT1U5Ag94n!`p@8$XbVO#ST*i<`>JDAkL!=%
z+^5Pki%BzJ$Df4Vup9O?8|0ZoK+U#Mh88Z;*8AEx^V!&ebG(Jo28LB%-nBLRw<5Px
zQ*ToOB!i|XOCZKAxsp0;6QRb}f1ZNDp4TEYJHePOwDj}Cf_FV0jY=Ftr7;ySLlT2B
zwNRPo5RMfK3#HclZGk2fG~o%uv4R55w4kX7=dgGmQ5>slVJsotv%*kif3)x^)N04@
zYMK~dJpJacmMaXou@q2g>iKOtTF~;|Gk*BwI0nbG#5&PJohi<$41nL>e|x@^-xZ;l
z^wA%IW8c9Ut6gwLs<zg`n}<rf3WlWdN<fIhivzK?=DdLIjZ-z}0lUyF$;ULcHWbGx
zF@c!iTGAiawQVKTQEg73v_j@Fk0$hj1im?rFyA1ZP7oyor`ps21?Z9t)$Gh)<r```
z3&85Yg?!fc(7K_ZP0F&He=Ecu)L|c69k$rd)HjK$cQ&;T&5|pm?*w_T?vK82>1v%o
zAN5^mP+kYE+dC;&9B4nLr}E(N^ryqqcmI0x`kjB3s3(fSgmqnh+I`w<uhRC-{=eRx
zeSdnm|6))9v8|&f)k8QqI2;TXG~Qd#*6aQ7UuUQL?+%XNzC3zWe}S;9@7pwWZQdTL
z{uefT@%-J%@$qYz<Nm?f(NBk!>b)v{{1!(qUeDJrSAX-%yTReX>ET(O_xVeRm}Ymk
zz9oJjvr{ti`DzVlIt#p5D&A+{l8dkBWM+*`Kve^2QxHiZTslhGCE`TTn3$OGI<UK^
z^a;y?884=}3#x1bf1^1g)Jtpv*u}A8yj-Yp-Nm}kO~4r#xX{<@raR9Z*DwK<il!79
z3q<#)j-2KFi4cteA7$&;Gc95RBshi63gZI<+bQ8=>uocKuu6oa5e2uVIfVLgj&Q;W
zj%UR{d~h(Rt@5afSmEnietsHitzA>8=n_5$suz(M!k9x?f6}?}me&_7K4-<!S{%V#
zfy%K<6A8~|5m<n(_u7cnj850DRH+DLN>!WY3^cWFBGpaeqC@*(*PBx)+$?><qNAe4
zocaWScU+P<R9dFoTVwE)QLj~P21{i<RutD<+o?A{E8y^CSVtoZu99e=<albmd5)c+
z3oNS=c4_04fAzZCyXpe-?>?TV0xmU{2B7SOP~Q;r6b-570Tmok1@!l(P$CP1j(A<W
z?>(<k({~rLf~BuGj>t*b2X?1xWXCL?507*Mf3%f@J!zmO-cLyj2%}mM%gMd8P~?wq
zHBfV5oH7<K4d8TB_&=&w4E)d03olq^d{aOJkWnE0f4{c}H4;nUv`o~~l|mmjD6rkc
z`>5C5=@w<st5-OhD_OH;2M~$as@~iCV47_opMt!mX?}H_Rl?qvBOo=0K7y+V^t5R-
zvn0p{s?a>Du^l(g-hbXmA9G=18WisOSr*oL2!@&Q#9tm<#*F<T$j8GrsoN$G@jd?3
z@jd>pe{GVTMVsWa#SEF>34n0l?u(N+Ph*^_t8oWP76clp1W-ku@k1Y-5*+``sU*kx
zF<2A-**L{pwULp(>Tr#Pd|y9@Dvnhaz}w@qLqFXX9jA;FqhT_aw9Z5Y54Nd#s^wWN
zG(C#4JKUhG28eJpA;CzP_Vyvkt3lFD^-6NFe+JJ_>M1p~Id8@3)AkxzL2*#(POlQa
zI#AUHfaASxIZgpUI5C5LL3v-77@lW}uU^swn!ct}>I@0RIn7=`*0diXN*z3Tw35wx
znSi#VFqT2uTE;rwqJtv30X)Wy3G~*y1q}L!U-X^V#>9$j2kp9M?e-SBoX}`uog4*<
ze`hJ4(nzn5I+9lTq~WP|r8dOg@HBy&h;iFhnkUH?O4(d@@M1^Q%?PO$TPT_^=0av$
z&7$j_@DQPmakh<EiuQjVs9E4N#ym!5`2f<Z9}c(FXY`-wI3wvm;^=(Se6~w6Kl`BV
zmStddoyEboEg%4B=p7WCWyuU`LuvpuXZFgWs3?7qQvv%P#3TmDzzMr!q8`u2M!m>(
zXFsMRhrBUkV^!1nF4vR>7u$^=0;43}IQ5)g)wAQ(!2kv571T!u3Cm-<AKftUr3l1M
zaIs?x#7+TurxCJRp25y$eIug^a$WqdlfEO*0gaQ6Bu)q$Hf8%W)Z6rv<RmX0f52b^
z2wH%X?`{oHFSG*bgRs%?H+0bZrUSLTS(7j&CjqUKSS7%J``4AXN155$nrFUhihO29
ze=G%}DFU(R-S+C>1P$}(oJdi5<{=$)WTUXwhgDQ;2G2MZg-IGqlbJpJ<0u=<C0AW|
zLmQUJ7_j-#*{q2wCmFVZPINYE1Yx73P1QZ3W3<6Zmf)zAzI)TAZF6Z+T$fFGtMm%j
zWUYdDm!z_PS&GC}Yc+f{bXBrTed~hJnQs*#kk)K}DE);HYOCGQ?xVIb*nDU5xwg0F
zYG$1MMk4u+#;X25ia)=rtqeKE-<^}0Y4Bg_x45RN7O3Cz!&gUd(aGu2Py1(w=!e5!
zp!9#z|1!U4&;BQcqQkc@YO2-r5+#(R@*SCCnwZgl{P%DE972kx;n-loAVDo#Gc0df
zwG+d+oV?39RkiGPunB`hy{51)Scj>q+mO4t1`Zf)R{`lJ1`N)q08mi1X((2j@$PD`
z`^~$EaQQChi4XMh^0Eri4DF)VQ4K^hHf{oxvmuk6i(aUH?Gi-G;@Z^DePbQ0NUUWO
z%g`);iB{bmr^&2L1kAJ9`PXQIR77z^ro_Cq%V#hcN0}F3O%b%`y8V7GC+d-8q9y_P
zI)c<mQb%?=aG8|Ul^K(alc+Ej1#r~V_o!!)f5`<`)RMUhZ5Y|WP3_VofN>IK1muDo
z8Iz4-OqDvCd=BV1CGn3uIW^YV6-**wD;!>bWt7j#YTwna9rrBXs(p}GOZ^u&z7&I<
zpLQ%_BoVTRSy>)x6|?hbHF=6^wm>PE(4{CXgD-k^OHkdgwgoHF8{~p~FJ<Nh#4JVI
z+_T(kk>U1C%X@7L!PEdNh38W-03K*SV{({Ad<J~L4`g-}dv(C_$)D}{R2-<f?2R#h
z@maJ@oG2NpoN$PVN7Hc`;W|)W&dJ=)=z294>>Y%ngyr!|#aO?9w59%iR($(`%uX=n
z#RQ8_C;A?7hUY78Yh6jbjt6p<5FL%WTm_i>6U?P2J~gEo=JHVI;T;&~zZDOHlLT!w
zi;ZeOmH9BJ@H}BdJ1ld<_~<i5CCrq6H>)$T@S9bpT?EHnga9X-UUE!JnIP*jUs^HO
zfqqCFomkWwa|IjEie@kIlqNIdKY!p-FuPPfl^Po?)55JSy?LCG)@Df%W*%{dcN{?Q
zZV=gSK~84EU*tG}0>v?&YDZ32W<f2pcZpaU5peW1zIcI2xJ%P<C(dya2nDWxvu3~h
z^5XKuTnx=d98n?`;75JE6>k3BK03MBZU4HZ|Ml4YYq!0HOo_sg`Krry+rNHF98og&
zJn}MMUrwkb+ASiT3sh}AnKp8h=X+#TPY%Cor#^elaQqx6ih^>7E*FO!9G$G^#nA~m
zIC^o4I8MjKli6j+PCQ5h2orFB3Kje4-|M|@sQ+)Tv$MUvg`lA43fv6UD+WSub2ilu
zyw;l_p(&Z`5^7i{gD?z{eo*W5*+uBM`f)v5|4<s%R%uM;rM+NMdeHM3zRiP@MiVVY
zuum>4TPQqr%m)|#UUi0srZ<!^mY@xj3e(iE>CGVso)ytdi*<AA4`}RvJ@VGp(3DJv
zIvR==>L*%~t!nnGACI(&5YT)o&|4N0NKaw?IKiD7jp!B8c|>(Pn6I|H+u7Epdu9=A
zvinMQ`v+?IKrJ7r<pZ^Rpq7SON-Wj>6V|$89$!LC8bex^ji-A%JKyM<S2e}+kQGKU
zPH;S*@Pb?ri0-eoP}<#p2^LEoF*bF1ty#trHa2k-Ou`;2K&x+4o-z~7!(>i3@%MG|
zbI9JHLFkbjuvAEnDa503QBJ4$YH&_2waRi06^$UoLYcTsn2?@}%;kinKc)gpDn{UK
z)kiPbTP6o4Er_X>;2}v|0(R$K14^sc>YMOga&VUQo1OZD2@ZXKr^%unXR80(G}Ivh
zj2hJh2nfLt<oen=`JJiV=sY>fra(osa89(#YD`BX!ofCUNaQ6U>D(%TRR(PQQk?Gt
zkmgcrXF_=qB?_AThA(j8<O{0$n5Ej`A)HI0Uz7eRFg5IHtN4f(b2JJoJ7zV=Eu(ei
zxs7*Ndft{HnPXXh^+DB?O|QDk#a~0m<_z21<v@JRpiS7I&Q3+-r|1aJeYKX6^dk%k
zJQoTFT&hVpM(=ebp<p_*X@BZ*7j)m-H?%*NvW*=a!UL@<G6pDUN>iuqPzMf*^DM@a
z3?#>rjNR+pB=coS0=8MPjvZi3&g_nG=J(zrneNL0g;6Dcq%f*YqKZl(f{Tb^)o5a_
z-S&LDUc2CXeAV7R)yCDlk~XQ={{D8G>3z*vL_`t(uS7Y$DLPf67g5H<fS4BH^)2Y)
z0Kv^MWJZ>#x;)Ngp=m@{Q=w)sZhIwHYMNe2#5g%&EYX6F?OpTXx9QbVO_a`&^G&x`
zD5}8@*8L@aL^7wn(#kYkh?<EFin3*turFysTzr5_#$#Q;iH$53J7_+bYEK2QVn9Ab
zU#|ogl;fV&k~s2i_nTyi$>rwpE29xjL48>;E63_81TzjgLTy{44VlQMnVcCuA>L0V
z-M8(FL;e#^Xl#ADz>HV0k!&k+(4Jr(x4+eSc;QBW)vk8dN<*NOA)HDY*j`IVPXn?=
z{+-yazZ6y7)JaooX|E>utCC*tdiYqB_lu;mdfqoCvfW!y(<(u3q_F-~{eP6gR=JS}
z3j1YKSoPAY%R%llc$b*UmyDn2A}{9%s&y5xr(fGO(W%K^<DAabVh?kgNO(RHA&Uey
zzp0~tuevi)awN33$B$Z#Lfy5X*j}47-O@mpb4Nk*t_4%#@6~VB%^{85YRb|8?u{)A
zx?Q<E+Wu{kG6|PY_?Nh!Y`&4cOATvFTJyW1>O1_TdxsDowx5q3-{Z|Mb+I7KIjWNE
zg;_Rg(rhftv+=6h!e%Zb0$hfyvkC}up{R&|J*CbX<ikiIvzET&wf(AgH+A?sC#i{{
zX6)z`TR<S{q@hE`Pw0(?)ko_)-Sx$xY8?2#N}QUH<?0I}5hSvNN+T;4XRHYIZCy{y
z5&N7@!T0XMXZO%t2JSD?*SFc_^7d|=O^%^ooD=8gTKkoJGj~31+I7v86*r>(yXHQB
zR9Byl8gce|fQB;^O>jE4{$Mf@CQ{6Xc6Kqb0(C41lUC5#i<$&wCj6fZTN2j9$5=5q
z<r|!0HJGo@UJt(Z)6%ZlFK4d@etD~~)OGO&)g)+%NNt%spV}hEc$G!crNS%#f;F5@
zcD!-0ud~q#I@a@57%S!J1?FHla~aQnt-w^8{!UD$%#v&r6lo+CIk&6^yenA@L>vCA
zjzpeX_R$JQAz07Z>w$u!QGehftQIL2+*{GNjPt_zG)LPl$I_io4P1>)ZCxJvMY3##
zdIL=xPQO=7TqF}4|Hyn)_5R@ntNIQFfx_&w2!|1uC<xBUO#NXjYQu9fgY3J13x{O`
z-N1I>L=dSL{9ykFG84sf$lnH>xWMAD754oVhUIrohh{A3TnB}o@1el=Ez(ji%r(7t
z=Ty@@lWO|Ue_226?shwR|9`Ga`G!98pZZQ-7=NSKFMrZiUg`SXYg~+-hTFGyw^jPn
z^Ff~+;djILn$2HPJoeU$<dp7zNvtC$!%KIys9m`rJQ(LRCY^{)vs{wEJ-AJbuAd3Y
zMGhXtE|oEeU?g+imDaJotoC%-j<p6Ha!j#QM3m)bc+rH>h&XvI#QL_bq=F%us(Vxr
z0c=~O|H~yvLLql>AzCnQmI;;8#;tdQ*;0gKq6YAWrc_}ew9yA+=3+H4+PQemawp>`
zdAw=xiP|Jv2*)5q(=t|pQleG~^VybB>rdH*4Z+Tn85(jNIZ?rSlQS_m0fUolF(nB0
zdNtt#_qOkonK3PY^(1X8uKkxNX|s9ji(AT;te|~*`uGm_k?rTR-bXsws8$zxX+e)h
zZ<##dM37V(!ve?>HS1f$L=nU+Iw#zS0Vy-pGA5{mduTpvK*pJ|8ju*oT%SevwW2U*
zfnv(7+{1PGa9!S#WZFISa9#fOuFDnI{!6?r$pz8Ax%NeWr!R<Q7v<xgm9-4NXYAY(
z7*Ws?{S492OroOVR>*lWkeo)+-cS0~c&Eo8(Nd8w=q32k@4m&innuaPmG*F@-TD<k
zQu%P7{q^p%RTlnByv$to+2TTTMJrrtJ9n`?bR9ihLjEOGpyjV}5&by~Ib<R{OAhtd
zjZ8QmZrgi*C%W#WJlwc{y&HGc#sAc|?p}+fWXfWa6j!P(sk2^0`<bE&=#=G>aAecB
z*_*N;3}7%fGGQ*K8B0MW&PMP7z@v>4tW5y#M{PC%Y{5X17^=@DA~Fh{g1!WzfDkhx
z(sk*K+YJoW3QPxdtlSnt7}~q^g_ab<zeS!AKIS-on-o__0&Z@7<g#t|pLU;oQ|IT<
zy92LbSKxuw@L3IqmA?w7@x@-kYv{Q%vDqqm0)tMVoZ6b?aaXY^Kpxo$KB##(5{EVb
z177CDP2(_#++bW1cTQjqBsQ@3x(LTH)j@M?H{pu6grd~1i1hvE<fM-lU&Pig(4*>h
zM^=e{`kgPzTC(43vYcza4(>kzR0HZ3-(sH~bxk&K-!!AHx4jT|x685i=fvLq?mO#b
zSTG!3h?-?j`0eiM3c-(Hqh&|>g<Z^Ff=QA?&BN{d#Xpgo?mxSRH@*mM!v=bUkccKk
zZS3#Q&Q4ak<39iM^Ij=@6KYqW_4kI`KZQ+y{uhkDolh$3W<x>vg_hxXcV($~6`A*4
zES^f8J(xXxK~Le*!aUr#U;K^xrOG8s8|nX=V0!N_FLu7k@_u^J^V%AEb2Jzn9lw2d
zaQyb{^!Rma3TT{jHd+4SgGHsWaVEB2ymd9VKZoP*+8TO0rs-7+0{ixBF79)x=;I52
zk|k_5)z_K67okO~5_3&0v<-b!j$fv>a5)~CnnDH(0uJhmu#qd-w6%Gj?u#FVdMo$3
zyG79}&hku^J%O@OxxigPH|gaqOHUb-UUA0h1x?7f>?o_&;y6uas`5*k5WQjj8lW*a
zv5gN!gmseSlDn-(c<fTgoMq}#+JF6j+JwaxB#PKno&J#*OUuMcI?YqHi%pKjc5TF7
zN%)keQ1pu9h@6y90~{ceefWg4tJ(8>G$Oo|24!sxi6ZRz(aFVQ6N?><5<IpkjHfuo
zW1=G{z}_mylT|mC#=B8ks5_ITNP*K)$W-r!jXN4Sl2ML4?S&{;ZR*m4)>Nf`qPUG?
zBfC##(DfGhR0^k=F+&80Of@?-p!&&|@MGc_V^FqRXU|KbmGW6;?-I$-m`Ke%DrT;8
zp+A&4%3CvyfU963>$s3#jooS2RcqrvpKz)JVn8Zq9RSfwTS`+8jJkYHZmw8|@r9;E
z66ls6QW}PT+hEdvsi4p{w)1*_O>AesqEmI6s--iP+WL!mdx%EjR;J~`=9?s=TP}h*
zj$?$;d&4ci2N3#9sLM(qj0Q)q{=XlO&LFM{K!iAZHrgN6T&<y31dSEB8s$kc`z-GW
z^c|{Xu!J#prbGxlCU<*g=;;Rn{hm|#t)id_LFY6{aFU>)tI_i<iWw4r2_YHkeG4&P
z+|y$~V-jKRxgP7aGCD0ye-j2#*%CG$6Yie_<L#WVu_+*&GY)@i@UL|fAG~{W77$NY
ze}+EZt-eCH_m(_Dx1Uy<?5TIF8=$aJLG^&l9V%o@IQQ>aA!C-8GGis=f+T%(iFs<a
zzDvkp(uik_OK^QAR~dtUT%Gz_dv)~oU+Nfy=q1xe0VZ$eg-t8&<%>lS0ZGhKiLYRF
z95yw4b+zdJ6a(z9kE`g+-ya)9XckQ02Hq=FZ>K4yDO_~u65AZ*l9>eM`fgBF0#ya{
zn<kXNIhpAz(xyXaIUL1vwew7N3`YuB5|=M_7@2~r_)YZ$sSXQ&S2FQ8kIpB4A7PLl
zcso|R0!Jy8#S7aAc}xycebgGh{sd8f>&hUZZux^3vv_R{S-TQ;LHH%7(gxkK`8mqO
z*X;?zB3Uj2w&}moI@DU<LhHd;{cnuP6he)TzFkK^HA-p83=N-}a1UE146e>kVsle$
z!JGFI5&$Sh#!qa2(kj@{xndy_HX0=im$>HnY&1o^myAb{M^Na<q=rE^f{?lDUO2Ba
zo|iI5M+Bm8x$q4@-}SjQVSV#VNKVW!Amp?OrS<*U*~wrFSP$LtVDK859@W}Fm@XKX
z>+sCPXSEq&su4GI?u4|GY6Rj*a{|W|!gQG=!4QT7Skth7g2w_si!u6;1L+|L(!J+E
z(#(W^$}KJ}goortD<?OC2NXPrAdwG^5X}_l%&nlyhj4V#FSeQ@B_LY9WC*+L;>;#U
zZ<}Xn8*P}IK}RcWzh)6m+Qt;g#6vmLl*pbH(^U6g4yC`Q3xad?Lel>PJ%}CGy`?o;
z!icF82E15*thS}T677oJiW#%nyc{c5$Bb!qEc3ZA^Kis`OytS@hm14HB9`>g*};h`
zt+H(mPwP{nD%yu|Nj&<ryS2N!qcHKb`?S0D)cj!?AC{3+Oz24AcjEH#&da%~0dX{0
zs758|8Yp5lFuS`ub#Qd?+8TOscyfApuzz;=qF>Q}nH1J^kcA$CXTI)rAMXXPd)+6G
zA$L6*<uZq$^zh6DPR{Qi(hnP#`_d5X2lJ`gM%aPRw-RRbek!e-<juNQ-B4klXhiOx
zS?42AaDGeGz=scrrcsi|1hoy(1zoq6a8#8Bm8xo=>x!Mvtnq2m-!$oaZfXa4J4=uM
zJIf1ysrdM9)Is;M_}_fawf~ITzCZQK-=8teUO~Xs1JF9QO|W#=m5uXUaK{;o;U<xZ
z@4Tj?F$P9b8py<mPjxyxq!n~;a0U#CMuu8jPhMau^cS@AbsweH`(<&512mT%Y0C0c
zo`79byH4cUF7LzA19TrvajJt~Y6Vb?PAq(XiL@jHt}#e+WLudRqVUHO&Tn+hU&dra
zQxb1M;w5-H4~cO*jEmlfWW+c@It!CqsUgc<=BRSQCBufn8GOTH(nqHR$3Jr_$#H6)
zHbSR;hnS2o8qJtN=$`pm4s;fKtrw{qze#gnXg|<D{G#u?Hb%P94%&6i+HI?JGnzYp
zf#O+;r!>;q7DdQ(7)}c>Pt7RM1_UOzF9cwOp{q1ck}Z_7x$fZEi>RBCAaV;u6UJ;d
zN2l*{eG?ucv@y=M6|cVk^FYl3r!nS=dAD$0{cyOYKBE6b#~DdMQn2a2R@drg9^B9s
zXnXJG_D?l!bXKcYZO)?k<Ugg1JL-jhO%pOCSk8;>TZYnDB^iiAp=w!qO2u44q=bz{
zh>j$}LgZ7T{nH?~ErxFri-~>gk{HgQrv%M7%Lq?qVaxVdYv?ea@6A@Psw@j#WZNh!
zNrHu>Q5dm~Y9Kncsir4J_1Q;H!rtR>+eq=%sDI>1AGPgY{k`t)Zo5&FZSLTII*!=8
z7UwR-(v?`c5CeCw!Y2HCCl?&FHzd74Lxt3Ucolq0nZgTi&%Oz3j9Xicmzd!u>UoU1
zd#aXG{3O$M`xNqJv0P@k{3H|pxR#GiZCb^Qf0-th^-9=yOw(~_6iPH5X>EIk<s^il
zfIjzB%5CV~d+z#G98ki>9q)*LEjfV*{hpJYgaT4dw~D3l?3LB2fwWAbkGfADYus8G
zAx*Q~rm_o+Kws+xQ9~}ZC}D!UBW%=1k3Jl{J{}zQfm%2Y8Ow?AxX<8LIQS|oMlqr!
zi9L{3lY!d5jkrq|2FvlzSjKq$=<j-mS{RPD6vMO@Ol>~_jKz{inb7rrHArilt%&W;
zT)~i7u|j7r2cE@5i_4Lhw?+L`8}0ZWtVK$Dip0ce%9hwPOFZtQUbq|fp0<#Nr73p1
z*7(Z`PELt%0<-Ns@O7rvD$C#BR<hkObH53@T1-Q)dhz!O+;?DW<-~3KS(ePugmL=6
z>OM{s7msi*84?jrjD1o}tdL8GIb6eq1;ptRIlaW<Ty%Jz29VfXr*7#KeFYhd1J#%6
ziga3#W09GD`%Mh@l%}U954z3kImK5+(T-UlJ|^<u<i{T+P3ZsXlleV65P=&#z%xCe
zTqs7H3iM>}Ka)g0Cjr@$Y(7SRS23N|2u3?gIPrV)z(Y;SmR0NfZjYKkl+@6AKN$7H
z(TO2c6*_^?m}ikIdTbvM6}?`Q>ILm<?aBrboBA0KX?&A}T~;*AYD2yE^<3|5S4$7N
zen<LeJ&5$II*#cMK#Ld{R-XqW%E={8lFpi%GN+LY444t)ftt?Hj3cOj=-Ws*c8Z}!
zjgzeqAg8wKc1+$`^TJw1TUEibm3JSV2&48R=&&gBp?g(V09aB<*_>oiLe&G?B=I;p
zL7BRT_(efGw952u3k0Hszzzg3A6V3P)=ZZ)9S3rv7Eui;&_fDnRyX4X>b1rD_UObR
z^>wMZY1NKS7HGP)D$l8Zw)LMOI#j0|2qk13v9^aAc18O)2h-DAIlx}oV(6YO*8c75
z!EBi$65)_Y9G2G<UyAYy1(w0+qb|I@x*dJL&8yh%)j8GU6BVZt7VOMYSCtyCKmbu?
zmG0!Rx~imlb$``QqsM5%_e!$iI?O`5`|||8*R)0TXx+JgkD&X1*u|?L``)(k_Lqb2
zd7;C{OZoIMGd_LXgijwO-%~^0q-qu<Fcz*A2Q6-~FoMKi(5ZF)%3SUeQehfy=-D;z
zb5(NqGAFa_@ns4}m6Ch%`C7$yYmrx0*(pmC<0e-xPx`w5`t_~U3!ln@xnKnwC11^s
z`zJ5n0=Eb*JM&(D`yNxcwzkASe+{rzCt1^{!1vN$Afx;DudTH;v~TRjn08(%0(ccX
zr|0;vwuXKb1O-8$3AZ2$A(C-4B=VAw6ixF)(kvn6MlTshI4vAzz+x5!?$I))a*_`r
z6S5X#C2Snv6elxDBcUFQQz9oM7oB0khMg&fXUl{n(@xnRT}Yee2{4;)6|?dDG_=fd
zKL+^)NhJr-149^{uy|dQOhHxy9qufXr9n#x;khAFX;U3<wv+im9)I6H-mkpXJN98I
zI&Y894hNyUl6UW;+wFEA@9x5XyWMW(zuP;zy`8`HcAxA$+1=ZH@_6rW-QM2g-JQRo
z?tM&f*)Lao|KGZI?yEYvKgsWarDKj|o>)o4FIL|T{HA79NNiKPdz$j^_y68%efSU{
zI;vGfX@dF#nW;B|seh-A>W1Rz7d9wteKyes`F#oW_RBl|+M8;Gt=3no{?O0+r*Dtm
zzCtUv_^S1lLTuU8Ku^KCU<s)xl?_7T8!r%RXy5Qtz-v+S?5>zGz(3m0paqEu%agc>
z0ZfYosq8XEHg|lCz+V0az#oBmJD2Fq{^0EJ^xY4KzdU=i0e@!QB0*ej$6!LP(9ZVe
z%}4$S!3*HghXVNZEs#(T{G<I8@DnVIS--RQa$8X{eTTv;cU`-3)bFm+#MeK~$oCTv
zf=GHnl3C#--5jMKrh#E*kv7@U69`lZd@O)3nr%Uoo;~_7I6OE#JbU+c|IMM9_|lPo
z#2*k>V@~V+bAJ(S{*BSJOqm<VtgYBST=Hvw9vZ5~cXtXpPeaYTpDmmA${Y8i{XQKH
z{paz~+xw%S6&h-R-wy@-!fB}8UEZ|UKiSAX;;)GkEh0sN$cki1HCesSTM&}3G%<O}
z*;LDUt<@yzb)SS!cf+eK^nQL^@6iMcG$bTN+_;oUhJW7Ai{{>M0j3ekz;ei*NjQt1
zEWsLAo7XDZ($3?m=qMdAWQ78fxp5g#2^)X(wbWRuxle$HXMFzuQTcyL#f-1Y^1FKD
zgbi_0|0=L`v<l@HJWY<Z0SO5$1E8yKHg-LqAIF-?S4YrXbF&x;z7%0XBa#ZDjWp_p
z+hnJwdw+ONQ_N>VGEV+AP3-txTOD0wQCgoH;iYa&W&)vDP$w6JpCtL1rW%siL>o;(
zqi{T>se!hjLX0K;fy_1+K=QFQW(*wV!HPW`N12hl>_-vHQ#rScw}oTGyajrjH<Kag
z&AWK6!e#?@Q#zs~*7c6GnYlKg`V>U*How+aV1FIeJn&J1A<9FPb52rO#G$a>7Wx9!
zm#G0`xc3l1S6F(Jfg)n5q^S-<YedF2UzP~fsD8|1EJ<O2Wr!}^$+8ZtkynF?%|^AT
z4ChO}d~f|*^k~SKkYi57?}<BBs@9ABv;F7$gTsF7jA?y9q;;1zgd+qHxMV!u0s(7T
zt$%6w$rsPxo$L<=KOdjIc=l++W<DDei2}%SCNdmpM>#))y>oCUK_BfMI~&{H*xcB*
zHr!}qn-gPWJK1<+TN@`E+qP}|-aOBJb?erx``4(ZtGa5sXXbp)_cV4YQ)idtK6U7D
z#T?s@m9$F~jsr@u0YdKil1(T%b_SZs6%v0oPae3limKHkl){5&4;*L_d2;N;@f0Jo
zPS51!-#y#Qu{7_R%;MEiya}KrUcP|x`=QyzEpan!pjWy8+G>>)>^zjz50yc<d>1)z
zlenA5$KA=t%Z=bplZA{8JwPe%$^CJ03I@N$j)F$c5Z3`&lJ8$)AzWwEccSBI8M7=t
zu60{UIjZzt;gEhdoILo?>22)IaeaY8Ir3+Ixggu_k&x4$)0P3S&H0&MPlKlP75_e6
z41I!pK!U|DbLk!DKo<OXIgTRBs-s*^#jgWUBR8K9N+WL+bY-;4wL5N_f|^H!S>Z@V
zPA#W;BUf5qI$sznkyEFO4HG%0-iF8dLT4iZVa|t(i*mgWn0N9(yX9rkyaDJ3&T{h>
zqGeeOLk0JE)#71l8}36sm78Qkd2U<cE)FRkQ1$~7f~Be{6=Tkg3?`Qo8rO#V!ZUS9
zZ=R!lEk-<=1(($?!n1=sz41064aJvet#_y}m-5`Q`EL=K*D4tgd5ScV!o7*b@N&@<
zb(Umpby`4LVZu(~Nd~OdJ0Sz^9E$c3cAB1L#+p0m=J?Qw3rDgQBc&6}H5$3Lln18-
zfC7JSz<Dp+QvD<RIk6)JS~w=eA!cPfMXr1qMcEvgF@137l>DJm(Oq&pi{KOrWsH%J
z_)AXg^%^cvgy_q})W=9XJ4@Yy1ZoSiPbi}vzYuexEhb#>ih|b>mZQ}OIA11FNf=J>
zBn)*ipMq}{9Rmqj<TQ`u=H;p)XAqVQ;FUMw`8_dsFSy=^KfN6j;HUd~NESm~6no<L
zm7`l5Ief6G9TgeQ@#JoFRBpEgqm~vomZsGU%Eg$j4r-FG#GLut<|T0MT=gFtotN;O
zjnsn?F-C+Xd2g$2l?f#WKMLDt>7D>a)U@Bz>Ydd#yTo`!*TcQ*X|DZ;#zPEnq+7*k
zhHlHTu7ue4LdOPURrAknrdqME4T^wfiOeQL#6bE-5fG_OmlmyU#Z^s;-k5s-Si#@b
z4SK(<Bxe%GNHt|{C`kMuFP#yMGBni1zT3O|oa2v~F9k1%e!@Br5mb=tS*JbsR+=;#
zh1utj<oNA<-|WlQZ<YFMGGqc+*~FQ4pB;(E7x!)*D7K65v5FZ71`gw5eki?8hdm2G
zvYlqy`hzSBF1v0+m%C!;D~T@FbeM^3J-4xA)K#7rd6WtQzpTM;V-F+OF5BOPRGu=i
zH_bl!UnPg?N}A6qAHG`RnrjpbQd<<D{l4V>^&!lWocYI{LS<$sp0W|>5`|SH<e-`*
zn~opG>I>n$rW7BnW}?QUSwV>}{yIs{HUC|*(f%TOpXCG(CM$!LeX-7mJ|e7q!X`%;
z1*HW?7ph16k`h++ogh(h>*jBbJZm_U9^(-e*OdFD*E-Gi2KV;-PqH@Ik)r*sDL?Y1
zlz9%G5Rp8Z9~7o!xWA_W5JCCRuWz=99~Pns6@9KE!U8E@QGXF37-R4MN}RuFUIAC4
z-w%Q(Qi8aZo~Pb0{7qOPQ>o%-p@GNYED*91cN@tgzGZH?gWtx}W>Ic5ocqKAk72re
zXP0d=YVs1;)O*M^@XF9F`8w(T3l5b@G@Z)*%%t}HaKp{LS*sQV<<rr8oA^ss8h}mU
zSE9J{fc=mu3G(5{*ZM<*`FHLbnS=JyXMQFicPoDZ9b%Zf&c?&6m@Um5L9U=~lU-4b
zSM(f&8UQ}k)yILZBJ2nC^+KqelDyWTsk@XQNC*k}@6e@!^7mNHST$Yb^1s0w_(g5)
zlhG>Qe!WUs-18(CFf&V4V!$kBl>wds*8)UUkW=&IXKjJ<Y)6lTG&*X(>XC{un*6Bo
z`Q}o~P$X!f@Dt$ZH^9)pc=oE}7Jre2vIo0TX_yxM19pfQQh{R+TgGHz$Bu3rT3Hak
zug`%>13vr4lr$}yC4;(O){{BSB<6not9*I*VR!APU4_HzdOO?x-QY2*@dMy+4AxS+
zKpdG2tIfx8j?f@=tUoc@$7Q1)Hm@?Tnmow3tb9&kI~Iug4&7vyELK-1Q-K^gwrg>$
z6Pds}vs!$Qja5!10HZ(6_%Af_%Nj%WiVcJ%M~ucE-<Iud?1L;=iqYgZ#uLAW;&kmK
z2&hw?EsD;!IpKY`-JC1#iVvU}S@%6GIxlv`uvz6*{}o&7fZoIt*)f)4(!u_?W{475
z9a6>LFBoG9UNoC$_@riAfku7yyJP9${&S{=c3w;P1=M6TU$0e%Ndoa%YL9qJv>WlI
zCntPr@r8ek8afGTTu>zoTtkFvhR0V`e~m?i7I|^p^cwsr890BCa33(#P8l6n3Nd(H
z^$*2Vvy8R71rn|!fa^2mg$T9KHc%gRZ+2<%AN$}mt+<@XC*ISPo@HeX-Q73++yC|u
z(^dU*?q}YM5cRJ#mV@Cud2!Akk@Ed{Xc*%pVO&;ygefzsYK~Z3k4bPTdZ?xXGA=oZ
zW{F&l*6;?)g-#d7)=z+q?Kf=CR&^1^vijaADQb#qyl*teWf;tyR?Nhztw93?w1m`J
z1mWe~7RU&{k;_>Oji&iHf^_w)_ty{cjy5bvu+KG@;tgmbAAc$gV7VPbT$Rs1R9|Tf
zpD=R2jXSPSbztw0AO6sIW3axPo>D)&bLeAlUGb|pwOHou+|B{?iXt^m0ghlX?af4f
zRzWOd2^+0UM$vmcoW;dTtMr8^v5h8;3>@(9f<9j-n~e1BzJ;#3c43~nf`9gfRsWva
z#-`hXDC3*$($grx6T2-BborxKy=Jr64bhdi+S~?Ixx2(sw4<j9$7j7LcW<s`J)tA^
zlW3F%ePvV`^${>?%_J4$7|46Imd6oCu%?G-#L+cIkehR{+&aw_2WcBga3s%pt^ms0
zAhk=2JJO51al+}su8mi4gFLXOF3o$Oo1rz#c+294?#Mztzg1m=k}BiQhynk-*{2z4
zMH^2G)l3N|uveW50}oz6IV2%SY=R1**+I$%er)`YG!vNAJ{)3KX|`<paTV{?#*9-C
zceF+x`F6xyN^CYu(dZUi-6cVyzXf%ln}?iEHSV47MBJxv4*;YiAGF#cs@Y?;XcGyQ
z_;x4PUxy*#^Zum@rH~D-D;SL4g74aiB)jx!$Rr;Bgnm&k^%NtYpPKwNuO+dr=h8*6
zZC`coL<vl|x1c7D&ud8@-Voc*{6sT0n@}TAp`hr<@+O9={VQe_*c7O(MqGL#bsR2`
z+oLQ1ZayabAvOCM(17a7*!K)4s|YV{85wR^a(J>-L1Z7TD7vW3f-HORx4~%7cCJaG
zGY@k_zz%wn>w#33U-QRG(K*zY`@Kg`Wxuv$g$97NX9t#z{{BLXbz_t-1B;ITN7gU-
zY0_?2p3Nn0yG9rT*I__&m0iAUPJX<33Q1&B=Wo{~G<R;8>A)oc_uuAz6W`NU^;V9w
ze@+{gobi_zPC=ID%bgRSQq)V|vx`_MnQnCEidV_}rNv=K=n7w}ey=LTT(5MceNAUJ
zi5?(O*ecL9^RrP{=z^^(d{mWTA0{|umvNJ*oXX?z*9!WcQiLJk^^#EaLyXbiu#|Pf
z9Qn`GSC&ecVn3?;W@9|MG+pqs1WV>L1uRm=?tJSZ-74pDN3FKj?rUdWE8NBx)s2(#
zEv*1uUzbSXXCF0aqnDlr1cI8VKMTH#@a6!4pk`?}cOAj+k=)fl-Iiaq^DJ;QZ*vY7
z8gp38l@maCmzO<bi1I%44?nrf`-~V_q(i4akyR(UV%><3G4*3Q+6?=vjw#FgIp&t!
z{?uK?qWNy!(Omesi;Zg_m^8NF{mvLJZf-1IrJ6Wb!Z1*8l|*R#ZJM5b$UgKhZ7!fb
z;61e)?mO2v2bI(@In=e&6<9FyFM>}9>l^|U@hU@f7vBy|sreEPMH5=yZLPhC)nWqA
zKK%Vw@maqdY=jpdO-qt1Pl*xnj`RI+oO%8yDFx4@?D547^+BnzYrycNJ99HXt+e3P
z9y3b$bs84>sV&;?U30XO{Ey|YOGk9TLcGWKWHsgdb>oM7R8M$j-<|0A_Q&=nNk1ID
zKLYLM0ukiD0`bhk(wF`Bwwr*d5^!On*a=Kh9!z8!6P46ve)5&6eFGF}<Y9>+Na_Je
z<=aSpde>W8McMkTF>%#!WD{?$QO$)A+}(UWI4aLy9~ESexySPLy4}$Z>geG>5=5}|
zEA`GYL+fD&$~ahgYOR-X!_BQ3bj<)`z1f8+$osV!jezNVu2cN7pxd&eLC8s@gU7@D
zI7*M<b4b*yCvbG7evv{pcB<~)l#Fj$Yf1e=k(+7RPZPaev5q2}%KY0DPj2bSkL%A^
z!u~gow%krUMj?ON^tv?4N9PBixTC92cHV1Z%42OT(_v!v8^)dG24=m@c2!0yHCG9I
zS(*Y9M>VD#hvWwXKC`_5%dKb6l)?`ceI>*>w1l(I-_Df93QpwfFxVa>t{k^qw{J@B
z?(X~)%Mj<9zAGGIQO|e2oNJ5fv_%XR`r*%#`FZn0b(3F>yr40n4^EJQ#FzdD^dbYC
zboseCU7ny!UG}*n?0f9ac?Rr1+L?6KEV)X5ZW->oGFF_8B17uivmaEHrcof0Yg^8C
z=;fW7lc~?Bf@W{&i^8mxZ(dxHTq{tA+I|84F|^4R?IRY|OnT!tT`5gv$4`T}3wB)$
z)Z7CXI8i&T+l)h(K8dRU>0@Opj7jZE3@5R(Atw3ZkUC0d@rHu3n}6b0r3wmtw10YG
z`)CP=@ngIZB4}|X2H>VBzb#Wn2Qpp6)v}NXf5`2lF5xJ^lLQIvQI#ajt-^bPFRXqQ
z2mVgY8Q!aO_E?l3p#-NFy9vxT;6n4U-7_9A9+cRaH-oRycwy!M>2Rdm&J1wjSS#7?
zZAL78vy@wu(eNnq<@t_p_ThURI)A4XT%kv+zZbR9R*f>Au%_=P?nl-uybfryB&W1t
z)kGD#k@wtl>eSkWz%t4&A07}gMF<=~5={pq!KXA^>=3vzki_<O*e<(=8SigD>#h>L
z3`KtNtu!tiS^upK#7JnTZ9K}#+czQ1pO9EXAB4K1EE&!dE=lT5@{GWlZZYU>;^cNG
zV4XzR*>y;1IX!-#A)e<i(YiHaJpY?1oF1l}8a>*V=jV6?r%iu*#P?=Q<aR)w=$qz#
z^Hqb^l&Q#KF>fUxL=nAlb%5z4|J3>p#PxAXl4W|<eswwyfZ!{whm9d4y_k%9l;06@
zU4A#CaI+qKH-*gfy=lQfY>vU3`^=Q#G@{UKY_5(*-wNt-Bn`<VU5I^r86aIiIx!(_
zD$R@y*_%XTF#FQ17t?P@`cKi-q=ImxaEaKzw4ukj4!`rHIGdkNBC_n*3a@9*TXA~7
zmocsW(*SG<v>pG((6!718llzopNcQ%%S+~F36ox`8(TO_Q9i`({!@y(nbxiS&m=pi
zlW<Mq53E{iguJ~<keB$ne*U4t%>jgyJre!!5P>yw#%f7ojCVE@dd#GjF2@@|_~5=Y
z2YnpJF!T#W_2j@wLGdrd1}VhChaah)1ba+z%iME-e#`-Z+?mnst{xlOHl+%VNx>Ne
zpDtyCKLR$k!jSXiUNZec)T=Y>SKlY!IYZ~SO|SG#+ZSy@Q1j|~)gWm7LU3clI~?>%
z>xa0<kh8Qr1C>61D&0|LM09AX=RRF<MWql9XNVTDLUBJCV~6lPcm>YKjpS&O=8ZE4
zARN+ES4}Z?eSseJG<6bK?}#-!>~2;Q0Ck>U?1tTfX#M!?lfTW{O)H&e6o_&*{aMH&
zKXO(&+isq*?|IIh;lO314%y>DBv;(gMfa!rymx&y^BYKsI1yC~3%nqa`cvs42noOH
z28r<p;kHCaCL#99vGqLDap)Swb6ZoCrhuMXQThz87Ue;mC@b(3Q!+I6ey|L?Ak1;*
zS<v~$#0BI#2(z0{RDeYFsR^@9G)WHXRS~nTfdUkD_kDtGMrsJ}Lx6@6Jf@Nvi4Eyv
z+;X%gihA27<Fndo0=LkriU;U6rb3Kc|H;=r^Gq^>d7B;=g@IvyE-C(l7WAK<ep_uv
zxye<!xt#!Z@g6&o8>e19Yso%1IUU8gyZO1QaQAcL#gj?{xzn!@{)p5JOaC*hH?nMu
z<1({J+Gn)*E~lDRn?$W(VbHII#~1#b5ituX^h68LPXoSK3XX2y0Pw$TAD52yB`+VF
ztG;m{-vmR653QR!t;i1;^ZfY4Z#5bhk|mMnu4-)h@URBd^Ihi?_pZuGOG~PcZ%YQk
zY65zp&RwXv8nd-4&tY;xHI5GUvXCj)K<7r{$*X<ysxJ>Hcc)og8OKw_VZauz!xLlk
zfT^llR|M53DQuSlkb}12E5kRQHJHGpW3kPhW3Vw<60Jtd{K-I7YWehMVP77lMnEZt
zczn7<XzG$TvC-v3W&UDvUhnEf9gdHN{WHFTIE!@gez{RXk}22wo6wuxlWxREIT1^L
z;Mxt0wj{`%#J&6ubS?IAsC0XK1f+MYa&mi-sCaIe%MY^xG&}A%!@CQYAQb289sNyS
zB`XBz($bS884|U#qc6R=n#}6?Z?y%_0TWcp?O<SB#4x-{cNSQQk;GUpSu<FB0-HDx
znvqAOh`pC64c!=E9gHpCaRB7_e%U*K&{E;64AnqHODU2^>zjK!9mw~F6!gx~jlxN`
zh#wqaGB^mp<4F%*rv-nOXsEMIdPQ|yhFcDdx`zOZ-UkIE=|d_HC7me$#y~tXZV(5*
z!@A)^Na8rEDVYu0BpSFJsg5rX1@VCBP1(ELlLB!M;aRkH`)8%ckqx_K(B`uD6bMK#
z)QI!Wb*b&J{fL^IR_t^FL;9ZO-pAb-GlN#%m<}*6Dx0!o<CKqOj!%})S;5RPiImqC
zR`2U;@qyr@rRnU7UO}q}Z-&j>j~|=I0#`upUdg=>;yehkrEHMv=Me68z-mMhtggQA
z?IwvZ*z<Ma-{Q>G_(Cae8ktxtnVAk2_g2*AV|YW6;*nLI$KiMD4r>y>@^{UAkQ(2C
z1F!>$=9sar4%VR#TC6+)xqV{DBM{9q<1b?~t#uT`d)9NXgQn%&bhEicvb;2HffYgw
zEp<yR;{GOHv*Sm~bmC>LMReu)6U4t?C{tRs1^K$Iu-5wSuMa_$;vhA0W;~%uZP9||
z&Q;K(oBQDz$ldL~?av1r-r}^&-T>oL88LmgCFF$_yG#MiFSGCs?c5a6Hyf{aNUz44
zKAb5Arj&HX_dgjP`VPtWu>8@!mxe|kX~WOo30Zn?Q1&hFq!{I+P^nf5(&>r*4E96Q
zpB!|ab%k&#1Xawom#!45Ki3r7G3woh<@|ZC`$yS)8c44RE6TsM_oXI?^a+UUC)JMr
zh!v017jJd}8A^gk+}kx?HhpjYf`E)%UWvWOqBbJlQ8=p-ifK(6Q(N0gOqP#V-@;+v
z_t&ldK-ToTOS@n+QygG$D4<MuS7YdS9FvUkUWMjbbXR$k4qC*Z&gWSANZn`%uW*&~
z61=*wn_>Ddxy5{#<nctf0}x6<XYN%LtcmiVC1Y3oQd`N%aK85tI`DFXFh$#QJ((rz
zlqD&?ZkIgnCYuj6TY4b(a+D-3uhw`e`STF2mpSTvgsv|yU4H~=G@@xouV@{r`!BlK
zZx-{_5%`$cS<{8Zh?MP(QXw{2t1pjb*{qrLFZDSEgOIf@VQI)7alj9<4TzN$D_*^{
z%r3mYm%L~*Z?22B^n_t0KNM=CsH+7kHZvI3e0oxTYufhU?+Er!dkU5izv1rbKi(~p
zUVZ41NWX!=(LsdRccWxCc0mGh&q74$%ot(bG<PU7t6`gEmjHGmX=E4)&4=M<5UJxl
zsCm)*=IR54Db%ME1(<dEGEoZcQp#Bbqikua>G`jT>o+hcAaZ2SxPTyLp->W4D||$X
zae_%|EJJxk&H=r<-gAQ`<ThJO;w||@^J4K}p*=BUJF!js#cqm5o_gnL0`zB4{o}{F
z?W%O&(Z{(`fJR4V3wMIekfY9_%x3wL?8!pyyR>Y(z`8*gKureEDp3cvudQ(F_uviZ
zPYDL`Mz!LoT6Z{y29E^u7wIPp?wIyBRb>cUR>%EarzQ6o)E>FAqYgd3de_Scao=w5
z0D3(}4mjpX)8?wfZ(~%Bc~j+~+Ke)X?a=J~Gfx@`abV$l)`J3KM}vP3ax+)!m7ec&
zgEiqw<WkiiP{GFZLGJF4ZV&VKz~l0TVtuGVDg*$6`Qf-viqr=F6;B|~Uof9mNHpzN
z>|yT&HSfe&&N;nvVv<6-3?VpJRfuV*adj!lUtR%3W=DpMBuy;52bTPUlGgn~yDve!
zQz2yhUY;@UU^}QHP6yFqh+(6`eKHj;i>+rcGSAH6Asm#YWdD%9&)|4~x6Phf-98?x
zk%R(no2_R>efL*PGS!Ydx?ykfB5b9WTR|bcT7rT@7Dn4xC4aLx1?V=jUs?!i@C{M1
zKF+b7EGB)Yo(Dvy6Of7pVSHwUIqpgCdZ-HR1j`Mo7d@Hg^m3i(G!dso^E^V|mO@y<
zYfyZDv{r$@rxMz_mOdZ?%}DQq#OIyI>sx`NKVtbAm}!Y~C(y2O=!ifX1x_FksPOX6
z>)^AHdkb|Khr+)#J9~PcBlkv}x5X@0BPYzU|Jyof0(3{@v5s>7JGa?=7m^~4?llz6
zpPQ^dXFumP?ZsCB_6jBhCwL>vr}h~zjhe!IdmvcC{N>N|25A$t2>@SudGDSqf&mZs
z+}r1GI5ZJ{ALfU=Y59jfRyq8zq69IQBCf+`F%~Z86Mtj1TEm)1D4RI3-z-O%k`asx
z^)D|>J5LSCt3OpJ6ZMslq7D*vI<dl01JOv`Yt?^EhlrctuioB`m}u~HRG=|Y_aj((
zQp)6L%?5l0neyB}!&=aDm|23i?!cL057u#*hm7cv1*HNK*Z8ov8#1fp7x_m_hWOlu
zw-s=WFR$C=zoX&dtVplrfvwpR9RakTCE6^1(jwGWU3S?pWH5{NSisS!xFjj^vEDot
zH$#lARFhpZHMY(0tf6o|Tnj}y9^<9Ng3SkiL^DcuC_k7SO>!e8jVJ0GNdrH4e&AKZ
z2=!o1E3AK|6Hn&SL?`?L#<&VyWzYNL*E@8$QU~AUIK+4`biEFd<hKIax=K`Z-jAYR
zQ!;aO<xn<x3;1arxhq|VBH!M!hH>S?5F>+8rQ|}4>Bjt~G%>EY!G|x&_tzV0z3NEG
zCJt}~L(`1vt6;f=zDOqSY6Ss(Bg;pNk=#MoraWy=mQSZNSMOdG1A`(znU3@$bs*GM
z@6Hkb7)X8X=>6CcR<&8~Syyu43{-oTlcjF#jlzo8qT*XtWrPS+OOSz__gBfn@mC2f
zLdIp67|s?NV)4)ETgRMfN`jnGY_iqxmzc!TBXYn#GU(ADX5WlpR51a7yt9U`<S;Ss
zA0B^srcI;Fh%K<2_%L<lkRykv@6DEm3o7hbmz|JMLWalAisM858=)F<G-<~yrIZ;X
zIY*yPFujLw*u-#Kbu9B#OC{u|kQyryH}8L$+$=~3h;E2Gmkvfu^@|_q#qhCVbUNEz
zfLmG}vPc!oPn4<_JHP|HV}G=%4r<4)%i!2dUK1y@8mZV*aI8GGJ=?|Cs~X!l>|I-l
zp1+U&%x2F<lPKJy_qI$D_{BPW@iL>ka}?~xC|lP*2Vvr_Q)rSEokbx=V6+-yJ_~P<
zz|yYI#)?rne_x_+<!jk`5@VD8m{N)>RoWnaA>eL#)Dk{#fdv4v^m{kiq6TluN8y?1
zY^Gns`)x!^JH*ruZxH#I=M(geV{kTHZMQ#TElfgPz|xUYJxsMg!sn1d`qxMDu0@x{
z77^5@Ms}@2rpzskiFHeM&~Nm|!8Suaq6=H-iI=j<>(f<HvHJRtZK^r08jw(<gs&{o
z$Mh6)YuCBTE&Racul1*lU^5I@py((6-?*G>k~)~i!N;OQiBYU(mU2#>vS01N(<&2d
zE=q?#e&_d7$V#c6OO#x~8iC$1U)e4DETBa=G`;9Ai@|yvPSSqkHcP$>O3E?6&#)3*
z7S{eQN(p{^=KRzf`Mz4Ei-ybWnL{@0c~iJKE~fUQB=Z2!=LePeny7bG%j@bt6<NrV
zRIyXtYcbwSl(xLD-V0EB`FxKj^V+3NG9LASCTO>A(4(TvrouS%FvPxQ%|4=^RKmWr
z%CIcu{hYSzpb$~6;Ts!Ij$Q{Jfj$z59WO=^mIg<Pc^)GWaw>wdUh;cV&79dslzr}T
zqHpmsg&8pB=i|!yVZ?$@tWStc9h4e$eYJDW(|a*qb8#F}hkt^`LGm?xG`)$b9Z2An
z-Ew<XMXlPBHDPv!pChjlYl-j<w;DPvR!^>N%N?TSH!oclF7;FqKbBdUk&hTl?dVix
zV$VVu+%=q#lxiM8aypqmK|)(JjHN~YI*;2I>;sGvCZ|&n|62=~EHO6gcXG?%Bb=#*
z(L+dU)Mm0|R~uSRSWcu#mZWK>jx(iH|2LXUy`-;3Xw+QB@y~emM%UFScpYJ{vS4hs
zzF>O*C20G2Yk!1=f&^WH=`n$`1HP8?t_tm;6Z)<<mobXGD+LL&Hl<y{*&z}Ko73aq
z6%{zTfgVsA45g)9MQaYZ7Wwhg8u61Y!edOKOoG5lP+=u;)kT$I)+Q%NQX_V2LXw@E
z(f&ARe~1$HAGOSAHWN-Nst`;jDq#nh9J9Ec<CoLGVgZC(8@|2GBi$RE=s$%<N}jdG
z?t(&ob3ZHv@eXa8m#5bI#x0!XZpA_bL#YA1C;~x~MGp^46Ox62+@4r3RFl+J{)!FC
z3C@`h1_pUAj7s(Vh5*fqfgK!EJ6H2qzUU1EV<dZ{8h>u8X9Glybj}F`l|cW~>aQC~
zlrCTS;N~ey*~UvvDd@l(r3|ll!9gRp64vkjf|(@B6gGpRU;}7Ha*le_>hs}rF6}^r
zTH3W?n%2C`x8g6v7vV0O7@O^eca&h=EqCv6!Al4)?B9;yYm>EKY>B=fBhWQyxGef!
zBsy%7M+$F;23@I|^I@NwqC9fEH{FAapqr2Wl_1O2X1m@`92y(zZ>;G?GI=fbVrU-p
zB!SfZ_!C=jt&w|^KJnZT57w2+6@LZ5tO)a<n)G4ihTP}j>}YIJFrVE7U_KzEuah$G
z<kL22HPMfI-^`$D*KNs`ZkP4ORx?SO+tc(-5A2=2o$a07SL4u_hXo}@PG13=#Id1L
zyW2;HyM5bxi?`c6?Umzsq8m6!AZ>C&#+alx%LV?fsI)d<@pUVq>yEHplpF9;Yj(O{
zF-W)D%W<dL)ju*MW3iS`JZpRAePCuM^ZS~Mu$jms=gG39Z-(KSu}+bosQu-JluR;e
z51l#-lc%Wm9|1j%exKf4Aq4f9>DN;-u7T-{Bi^6f=mEbHdlg2L7h?BfD5FlC&?eB_
z+5$rQG&XOEq;>Ngzc|qim<j`k^>>24u<<oO>m4D^!$u-o<9GrCS$%u5Sw81OOF!#6
zrpV&RTGQ@jYh`R0OfgbH1AGPxc*&VJjnidLra2OZU*_Y6v2yDUXL^wp1XpQOO8C5(
zrL<KA?G%!O6=`Z1V~1o66Ih<+AXSJip8KRPRivpde<J3^t0nix_!2O{;D?UzL^q&x
z`sk|k)^%}e^m-^@XW!YabIBZntAkxSMqY`6YvKF%=0I=~wqn1nEwHqZChhyKjUNul
zlQx$w&B<G9tl0Ymtf#8@II?Tnp%E_SiVNqIY|RAH5#E<GhNA_{=`>pM^a!is@WK_H
zVmN`MdwH~8J6lGzU~oXOuQ=RPN^=mC%yu(_L!#eb_glaI%F3=v>^a)?CAqh_C`_e5
zexp>w<J6w!inm22Reoof8%cUWqlo_kOg#7Fxj@6D6UumnVUr-#qsMN}m}+CRx2kPr
zbUX1sF9LTX-TH;Wb+D4{==RH=kjuYWV3xgSG$Fbqfz_s$#FN0Elho`nj&vN`-Nbyu
zeJ%s5+cTG^gEI>cCr2m#93&-Jsn5LOZOEzRi)j#tfh}!)Bl-x>cCJ1-RlT|bc@aZ>
zjQEV$cO`Oo!nPD~w!fBet&Q)i3UT<4Z9#2vjykFBe@yA=yV1YPl(4(DMb^;YwM4>g
z(I-ZR8Z?og6Gs9ZToM|wk_CL$IgvkwE4;t{!?ha6m}ZCzH51PeDv!#NmTRutp^wKJ
zNgBKf1TiGw($e~ztBU=I*L1=?Jgt|Damgr?iEY@>LGK6qDL_lkwycxT5B0~$68$CM
z@}*vb)+hnf&TK@BTy6(X!`5X){!l_m8o}4>Mw~orVWb#vt$V(i;MAqb{5&xGBH-Mh
z$o1Q`ZY1+{VdTJ%XSvWjanf^urYC<6E4RhPn%QE*AZ|>Y(^;e~_4|;{@36X@TH&Lq
zjKf4~Y2@wZV#YqO5=-|2If&~<*9bk#lzQ`F&I~Rq=_%d%!R$8T2r-h(k)qU)94T~5
zA2XPkzzv{D^46OHYQMDXNRo11e=>C#$x0!YDCBzKmhK<;Lfl;*9?|Y{ldbd&<s*mR
zJ;gqSftPs>YJm3+vkg5I01m5ISwsMl0pV^<ujSyVU5WRxu$LTY&+iHUIf54D2b|^>
z<QteF#HK>5s-|t4FQ|FTx++zdl_U2Af+~rPuK?`Z7#5Fs-PB8x)wh)McqxLzifHEr
zVxI=bi4`96^XssbmkZFf)TpaF(ILZz+J-{R7gr#zb~tND5-F!BytsUpHN_|_4U(!p
zo6$slB#5TiWsOBiJw!0~^>YQ16mZTNXXwJJTQe^Z*$VRV6vb5>zVwZn(RY$z@*|if
zcOb=WX&>u;{phZmacxMhdQz*fOSLjF?BKlcdC!5)T$cWy)K{c49e8oXVdreheAXkb
z_#;M2bVkyh$sBq0$lR-ZCPPf>lZrlEAk{Qmc-r_xQ8csq_Th$}E4jM<Vog(K`n!ln
zgC$>gC`Yz6!;bu-w+Xa$d=ilutAfnTA^{V<6@IRZJV(<B-TO|N*|7nhVgWC1SLy^~
zZz7?+7l7mQ0tLomx4u)q#hLwn=U{c$)L&R}?4K8+iZ*LJhZx0Nnc1)3cF(z061PHi
zrz2UzcN@BhT0I!GUSEFq(_$OXG&Cm&hxG3-V#)7Y<{1#qF{b?=HF}j;@R<e&OEiyQ
z7SmsYJ&69>NE;oZIgosv_Af;6u;1Yfc;SNVP=WX`2+4<#8ptVu9yM9XF@RF%$3JZ-
zads`CvK*IPPb`z)aPNvfpDCVa$sz_^*^$=%mw)MewS}!_@+|dbz-&1r+_Ga-`c#-!
zYTYA`TF6OrPCLm<(cE`?^I0(uiQGwInPIx4m=$AC!b*0dX2W*k5;P-EqC%@<Cl%{8
z`T>c1F-jQo_`UHbl`8Y47}O`Tr<<K83lBctoHs94{4RXtAt62a2|xTCgAP8yY1iW6
z{`EtESrmle6>688jl>L7AU`ykBT`30k2-pvD{wc5@I4aoter(Ea&(qddMiKfa&@F%
zD5?l$B!(LmV;6_&ZoKqg;^CqH?~P<HT%a#EtR&G(V-txcsG!GGx%#1edimJY!|T%p
zSI*Cm9|M!PTR-a+o!c1&V|#V;M45l1L;Cqi=i%nX$DdX4?E|fTzB0Ril0jdWXQb-5
z(3*U&XM5X$zbX{|j<D0a_y2u~?%pQujtp#nw(a1flc99;mZGcGzkmhQMt4m~8d_wd
zTJw=LjZJ^<uA{6TAwH&U{^KLgpiSHmdpA-pv^&tD5wwPa9l6sX4;Qoj-5W#3EiJCs
z6}29XU$vpTxbPh{VdHfm+Mp^`j02H@Weaab<neu{xVSbh?wQX*az2upPBiZ8VC_O*
z<Gq8efSxYOqRW{M$|CUpozS8fZ6dC!46{Dn)=4P*ytdHiYRhCHphxfdSachTJ1)E?
zu`yT8b)*vAh4i=M&EjA3PX6n$oi1j+G$$$+6#c*Ew~GCKYY6qpL~iGP+dJuHh}Z?k
z*L6Bxo>T9SjDX7158axLibH4{D2-7p4|YyR!Vch%DGHi@+Pj=Sz?ImMBtDAsg!luu
zB?VdJFdvd{J?5!+XoF+lx&xkXSj<SaWZ+_OL{X<o`^>3hxnk0htVK7RN(Wc`jx0S$
zu$C1;bOwcS&rKg#pm64MNEod+om_GOUhY^nbM&~#_lg(v@U&v$(?!<I;7-7gYZl>I
z)&cWM)F~YU9@r>4n99-F%*rXJc=PN(9U5CFwq*--d!6PoA!O`0V05e|LZ-wXfMJfh
zcHS5J1J+Z_)+=<K{RCO+5M*v^zP7rkHC7~_z$g7MNaxnmJy8vs)K;YV?wEE?>>L^K
z^<&wI>g)^U7haS;(!r0AGkS&hCw7{<W1w(RFvncrtM^j|s@j@URdQiBWs4FD*^A@z
z9!clC=-ov`(l+~~K9T>QO}>j+&5msLX54T|+7x#Kctus2M5c;W0^F?;iE%Jzw-AU5
zI(mil_iJ3<siqnSGU0Za32gdKwFz~N=F!(sUuD4;7k9#UdnA1?BRL7Z7fpX#Y(PhX
zG8$KB*0Rv5qW|U@r(g~rtlu69C#-8+gt3VPFQ$7*fngKRgAD&l^NAPty2MB-OiaF3
zmQw|U!jdH#mFL{hKb#qT&g+uGbn|nFeNxE)#r}6EQvBtJZWs#c_`x>#(((rOM*V|_
zE=D-c2~{Rf^?=fp&!XDqdV}$TGcel7lt(Zdyg~_vNZ)Wsqk@<44(E>r_3USBun?Cn
zn8urH`A+wlWP-v6U*B*CvFR=nw*Ds(g)b!3xA`wgY^@yeP4vvpTCbwMPXARbRhi7M
zW)Zbk%w##GQ)M+O9jjjn3nc|UV&AWI@L!nv@3h61su7s!EB<t_%_=4=qXAz6L%GLf
zVqPKTs^GDZ7Q$G(LTu=REgv8%<rh-MY_M#~t;Gn@Re(Vj%#lb+*i4tE9dC_+=#^uX
zZHETa&AVjhH?bRee7IF6{!GQIgkWR(lOBMLu0eD$*RAi5>^zwcV%Sbj^7SwJLkz7h
z8ncxOW3#f81eLuw6>G&ZazMo+I;BlOVsv1cvmck2#WjHKE==S5ch@%6yjD6j6TVso
z=OkTge0gMiUJ=>7x?-G>b6#Mt-LFES<{oX--Eivy=Z6t=Ecmw}N|*j+5$~I_GND0;
z@ic8t#DYRN?j5uq(~)f6e(-W1)_y3VJ|gInrSTsH&<5*yMN`>SB)}>Hqp$jfAWlo^
zRgk|<7&I@;`cIhLo~l|t>T&BD>`c>rY|SYSG;=V5)RBeN_J-z1ovw|5i{3DvA+Aa-
zqkQgNYn%106{cMqJH4J8{SbS2=LOl|Ppz)!zEsm~fN3{;-N)T~N8I-y@6s}?Yelkj
ztg#G+Swn*`_&!4y1n7;sV9t#7R)yL1W_ZabU)hejT2tt1=&y_&ctXzyzIKy;BN)=<
zJq?H?)gvMsVUV24y@Fzldk)QCQdQ@ZnEVY1`J*eV!m0zB0G<7})KzR2c&^y%i3MKE
zoamM2owHfJFik*MG5E_{qJqcx!KF$@7kzdu)MDGWs?}*iB>-H6xU>9kQ<`)IhifIC
zFceR?xC`9aY6kUVw&dce>w^cr>YvtEhIWgAEx8I!s_dj_NQz8&grw$wp%F6#u<#C5
z5u$DujBE=QeCo?QNvrW-1t9|_6*m(#Fm0lUgI|)#7QeCXB`*Zez})rIy5IB76Hs?R
zTMaU|!X}t%a|1FvM2{2{lL(T@L<A961M6~Ykm$mzn77lE;LAErM>@f#?vEC-&}t>C
zrAX4GhWE4JM@Lnd_=u@!d&_ovgEWZ-HN%efKClUpSGuJSGju9)Tkc<E97e-SvHFBk
z;(}+uiH4f;f90$EQ9m!UO9R6Qs3Kt@r5aiJS|wG0W%PAZa9Q)RA|S!}*n^@pem6fe
zHUdoXp>{8)-Dzq8i3|B!blTyV<LN1p(c>%N?(MDn-d^9_{T`d$X|9xeF0k(11iB+x
zZU6S_J^2CNWM4WtQ%{)}0;=tF)3rM6ilb4Y*e*MQ@C>p>Y<1b3-_Np<KC4j^tnCZM
zBK<f8gPLpp3{Y@}7qd1O)BD#rAda$3zsC!^we}xvew1{DsY{QK9oH`WroOHy%pCxN
z+F!5kYs(;G1)4p6P@5p@h*#_|Lu>{aC@#^8Y)p_z8r5kI*@^fd;^X{tCHmC}PR`3=
zxt3N&ra81+y0rSWT}YNvx5_<9y8kDZlGJtGw}-=n#o}DqQ{aqCQw0XI0_5H9t(5#J
z;2&@JwSR05^ex_ex8UjBB@7^IbOwlD<d_S8?mHmbK++)-`<pOdXPA^v%ndp5qr-%l
z0apU<_mk1ETZ{o;TJ$2)$>898h0n`ModvH-oZjVl?paN7a^txnM}^VR7Qg9{UQyNL
zqfS*Z8@7UhN%*B*|E_TiSE68JO7+fAP^N83IegAL+M(@WX>q@xJ#}K}CkFf-)u)^E
z+@ax+Xe0VvWMV1BNC@jl(S{EFNtwNbq@YM47*P6+&}q{LvADr1z2Y?2;%vjA?V8TM
za+I!34;_Zft-`yxFeKz2T*bWnGP6Z<bj9qb!yeX;c<k7755YYWPWzHYJe`=&wuMTm
zOU?y{?q<S3b0vx$?4V$y6a;)n2Q|onEYIjVMh2(%A|lELWsqw~UYah6{YSQ+Vd6|O
zi~&5=&D4Y^T;n25;c+lB964}B@c2?RdBiq}(M19)wFWgcshQytJXJ=$*8ZhxwgS9w
z1bcVXUn7_zDXp9M|CRaJR<_ku$U&!$OdUil)a#W}E=3A9C){BP%>#F!DTHm8V{}~2
zWyrk~P`lD&)1y1qJ7{EMwxsd{z={3Crz;}-Qu;AQ<E^(Gce8&ywRnxX_hhOqg1VWH
zv+~{W6&q!9*M4ZvmZdKxkr*wFou@zG&NCXVfw1_`K=Xm{VfO~mX}|Nixz4<;pEh;i
z;{~&yG>nCj5@X2$va)kgV#)V;{$BB^CXl!My@!831Uk_=B(ETO-i#bxygZy9+L|5y
z7D$7W!oGhXh1~9&O+MhfKdPNgzPK<+gJ$lTUlHk5WnL+x94_d~qv7lk-xj~!i+O-i
z$8*_1gKMn(!T&J&B2aUa`nMOAL8frVkV$|BKiEa@Z^0QZFs=KFwzq4klN+N3W%4QB
z*WkJiP=XP^qbx1^EqFiZU;ac4cBY4Nj)WV(@`uagjC3pBytng@?U~>LwU2@XkJtHO
z5Kj>x>iS(KMSj5b@<KhJ?^<{?qKf6FkfB+McT?m~jWeI)JXO1Ml`S-18Wv`IBW*Ct
zNMHZ6CKvb%%qF8NWhLq7j+C7xDyMR=m9aI(A@UVjk%@Annc|7_VYnPA$G3L75IMl_
zI&dmRyv5L-5qAW*F;57VUaDFSX`MnIC(vZuJbs*JBW{1+ZK-IO5z{;-b9D&>4{gG7
zuT%wivo7uv!$R$FebC446v9KlaGouW&CjG2v;}woz8+r;n9k{O1AExAq@ZmNE+pC=
z37ch@n+oF!r&(R%+AfZ{L-X)e_n1*%c2Ozpi?0_kuA#eM<hDeP`jLo+So1t_$(6B9
zZvMLaBUb0FvfC)K^GrQMS6z;iDw?;#O7dTzBRF$WbQSoQbDhc+KE7s<72QxY*>gwP
zKuO{Q|FX|%R*7mFHI(gtR+MBysEtw|Ho|!|a9BxcWluVMfj9Nk4(CZt_dG}>m{jBm
zi=?}q?US<?-arp0(JH&fe;xgMww+eVX{O<Fr~He<<GrtSf1I@W<cRhK%5yZcUbwA9
zpU08!s(6D|VXd3Dat2SqwH1K*5@RHjH)&x5G_J8OVpg|pSp-!Y@rY6Om*=a>MA13&
zH<*c8|2%55vKZLr=wzF`>yRQIv!K@_EIHAn`5sI8TA=P{EytZvFjDTwudc@~VE$tW
z<el(UMLcP7nyVjSx(IRE;$@p~r@;aR?jOM-(mIxwBjeWZW6T|GyjUxKMZ(_{re1A%
zfK~r5L+oM;G>fTUla<W_7lkX8)It^HA%`6^rP!5iNQCskyQsQkS(ONtW2~gD85Wic
zX}cUWr;o>l{4m4u8hWVuR5dc${?wdJx7Kd0ZI_}W*}kRqjl~m-T^iv3VnWHAi_8`j
zE~R2kMx3UV&>yasz9!V}srbj^1dbb=0V(U=mT1xxEi&N!?R1z{QfD=zvZi+Dg6lM+
zAx*wL8XX3+`Rw1UJAHOb6M@bqXp)aW$@xllx!>a-S8^aesPEu@^p(Uh=;7$v3lZe1
z6rZw(gkNMxNzI?dp>!e_Xwv<ozjNQqB+@weN57LYGrvR9|E-6yIi}&H>qR%!1df<0
zDWUMg%NCFGGS0~)<ZzXr{j@t};*I7+=3DCM_++N*%D|ZSX_T~i*uwXz483dx%aiEn
zFIMpvo$AYrl^)TnB&3~?_w{@-jj6FFVog<vZA4ktRpkPqmIkNLvlfuy2FWU;aM++h
z3Sw=frSogvLwIx)Gkh8qX+KBh00bGhYY5LI7DJQK&_h&;HmW;;iPMw<LoFw3gn04#
z*B8pQ%QRSSwF^S?t|4#cK9BPKZ)V1}2Z<7HT3Kjt19?HWWCyUQ6LPQdK^}zk4un4}
zc*DAI7(2shD7M+{=$zu<;q;0EW@O~{)*k`_B<oW7V~V_(w~;(wMo-!TfuhSwYdSS9
zChAf?El>tRmulU4S)SI;YAR6^i<`!K>nUl4_;nS5U$>UPn_t!Q!D%=~4#DvEV|ODb
z5`9vT96fgu=&@I$Vjww)<p{<~^eLnNGs-N=bo#asPtD<aC#(16&-#e~$BRX;1g6Y7
zA&m2HL@|%M8^TxcezL$lV2q%iPzqnsxTt-?j9dC&Gs7KL{ghY-*!r<6XWjc<MDd9W
zlQ(TLX35|al6-IMZpMmtMkEwA8HrB?hT@vuZyOHX;uqs|**?vc3Z;A(2(T4r5|;^9
zB!;Mt?~I`)g-HijXRNATOq`Smy%~(dVCP^iN>`Xun4Mmj_-D~Gz=O~Bw;zD_tESFW
zwL0%HFTU&)8KWX+UCKr%t3o(`fqo6<o<@Pz?si5)RON*57a6xgS(00dM|A>jtb+Wp
zlGfz=AX@5{l-J}+n<+&0J{+Yfu~igwxo`Ex%$`wCVU_AHszs_e{Ad3q&!fS`Tg{uo
zIGP3{M>`qRTy+4p9qil3t263E9uD*JCw@+`fj@C(k;v!&!FD%=qRF3u$p|glt*Dl;
zq$g#;1x;fxT($M<&hn4n5&z`BC|sKm|6_l->tjyoo3q0(10|gD|FCAMa}l>nHCBw0
zrsF{kM{?yPhqLAO?=2jHKTSBub9VVBkK2_is>vIE)&q1Mn9){Jr8B>;>)seRYDB#^
zbmxD{On@WDcu8iDBemo~ex}@j7xHgF^Ty%9A;BZT+7SPjJ&*Un4KBKWmvP_$Q(68g
z$*N#lRiR9NH)XhTdm#L1+0AToDr)!VuEmVK=7<e;xR4N;v>Z0rhOzJq6~Q;RFtz*{
z&!dDKAi58RW~7PSU&8j2@YdVH;Ogs=MS*GMMLnvmKJr_HJ%;h1Cs}aY2MN|Ot}#WJ
zuAbs>!CkL&;r<<1=V~E_-Q%*L_U=>J_a^a-*C`>CFRSL%;NY#^`!^sDwexdf2fvF@
zSt8bcBI7540!F&N^de*?32ed0b$QSBp3U7UFc51#RDvUf47@{i**6{gaoCupew*!3
zLczmQc%%Q*ZA^+o%bv+L7Mdb@L8~;5hGPWv{D3`xp7?Tdb#~|C!PA<S_0GYsZ*O<Y
z*E+aXmsx;cHSvkj*`1rJ!Xxl!2Cd3I#@U=XH+<P~l|l>J*63O33Bp9(iacvCk28pX
zRe0C(OqQg(;wkzw`en;>w0oKs{GQ{02^ihk17CtV`0(051-A(#B!v&fL^N)gO&7NS
z`PJ|2ykJ@muEJ(^j|f$Q?PpV}$sHXV>^pQ+sH5?5;B%=GGPO@9suB0l2n<B<#d4tc
z{4VN#XWErH;phC}gl&7Bou_u#(6B=QfI5T2?YLoOA&J4uqfFNr>tYVQ-Gk9H{^iA^
z81-s)Wgi+xPo%K72Rp5z-#0X-v!ioaNaZX%9;5q9N!Jtye7)4^LPlX*Bodo-yFq-l
z?Mfd=Qx*3Yg~9sd=rU9NVrF%1n1`;<dcmdHJz4C;=TUTK2sCjd^fd!D{g{B}H$|(R
zi=v&@e9DG)!^9#X!WqS+Je!5S-)Bgogy>-VYwwLT4HZQC*@U#O9Y#qlv^wAD-d0zx
zs<-~Z3C&a26?8oGh(<Y-DQ~W%%~_E9Bbs1<>v7B=hL3kj-{4ly_h%$#de2H_ZOb3H
z9+$;7nGTXfT4hy;YVqsKUfBb_wO#y%6{6e~S<6vyJ1k_R&t1RQZoIx!U?FGYKQ$#A
z$snuEkZ15K!(5ZI5%xAAP8MTyP#U?JabBbUm(-s~%(KmJX8$jk{{N=*Bn+5cH`iz=
z-xA2gM94G5DiE3t$UW9eV?XCR@A-WI+f%WRI)b3)s>&Ks=mXs%oM`*qnCwJ^>%JD3
zmg|n<36%j-CB2v9j5ZqdmAKOP|8KT|d4mjM+&qPwhIko8Jwrz|LTKYUdQ;jASbU%Q
z@{$22vX03(?W*y6fF}_=7J1Y2%N8;Mv$REs+>P-qXc&%V^H2fEgFEUK`s;Qw6qR^X
zHTnE?fYs9<n9r*k@ozze`5^`MnL5%Djl~K=u(&5U@ru@<Rl7CtDy2W>H3kBHjvZJT
z{2-<_Yhx1~*Ed2%NHw(TxARdrm1m-&?-BDDYx&mFqx>rr0?9QXY2e<z;f}v&NU0Jn
zj4x$<BzkddTwxSw9zk}aFgC#qrbItw=JOST^K5aLo-qHfL%=*j0X%T~MLf`W4Zjng
zQ^)H#HD;tXI@w=<Ema47<8V>D>k-lg2W^&>20+Galqc(F)$c>*iP$7?WOnqG$x%Vm
zoU$v5d!`On{kH?b5o3OPjPXS51Ns_VqiFcze8kj73pgz1+6Js&f*9erdW`l9$Y?wA
zMeV?!oi%OOX1)*nZ`}bQ*TskRu)i_j57*?E>!jsHQwLe^Q=qK6W}5N;xBdX-fy%Sx
z+B&~uG>+WkUx;x{Oo+fn67TrFR7nx3UQhDi!a4dM3B51}3~ax~T`K29Y86amEt<>y
zh$iRd=+J4Omf!z13it&6*C=qV|34W8mT?j1amlN?iPb2T%UDC<pHq10*roWBS|M|l
z2L6Tb+i<z^6dEG8V6s@(>h<D7L>Z(c$tE_LvjdN;%%ZgaEBKGXyzX*Aw4s~+;P~YJ
zRz(lcRg00YF!N^_cD@ZIF~^7087hyGy#E9HFVF39XJd|XWFEq42~;42nYaPcd0^lO
zX(<lJuS?Qk{kn(&xIu#{+(ADQ3(b^LBjv(Lf)wDs82A?fIOL0QZEZfc#37zsL^t+#
zjL(rjTNgZiq({jRN1m<=VC3pIk<8D=IniPZo^2%wHvTZ&`>}23!<?{I*vmdLF}_;i
zrM=eLk>I}l!66UzM07$ktYJUM4Kb_X5Zc4fpbFPvum7|J#DA|C2*kk&aj9%)^JuQ+
z@KBqf9ihGlv?T3i(XDWf3#q45EET2FJ{O*JM~4!UxXNvJF|_lQ%Dg4w9Ag}{k2Afe
zAGMZXSEsP;Jx`EF6K!J2rWO*(nGE<J9stu%4}dgt+r*i$w1u=6+J=tR4A$HweLrXC
zRFK7g9RL|7bUpeWrQdqdPfcSPIZcdCO@e8FoR@$|QNd-?ol*0$^yOdHwWbg0nBPuw
zOxbGoQCNBL4QHQ=1b>wrbkxd!og}b;-2M@RtmQ+!7-kTz6%gA|GYYH9@A}Wi$upgD
zvMk*7W+o0tUQmUx&78qzOzQtk{(=7o{p(JWiEX6v6tI<mM(F&5s~L+gHt+v0!tN<J
z60p%4b!?jxOl;e>ZQFLo&cwDcv27cZWMXS#XTsC-?SI$a|EW`Ta?#bf>6@;g-}S8Z
zKJ^}|)BVujqo)JL{>xkcV*hX5l)%`Zht$bdE`<)}<zMV?{6$?1jQuy^y_sGhQNg{l
zE($Vh|10+I2FCu=7+i6?$3?aoF<EN;p_vHg{KI8jI(YnJ7nI-U0WK=-*0+m1lbeYJ
z%KSou+=B|7^-k@7e0#yIX%__V{)PVV=#h0KSG<v-{%JJ5&v_}8_Gy-|nOikt=<+jT
z<g>)(Fr5m=q?~{`#7w^O@8&qA^7EnoyyiQ+i2;UbmlC-L8|{3AA(NPm6Ljk6P0}qb
z5H;UqL{&`XgDe68s^A@bc6;nDZk18ZEDY3}lkHvZJareH+GHF1nI%p;ie0ykqYM_e
z$x8j2)B!r>t-kxeJPi3^1?m`u&(~KvTd9ZV8>P&#tO+-T&Ue!|pS_VB=vS99<;b@-
zr|~TByI%Uo8gF@&Pv-my{&)(Eo8IcruJMomck&MaM*q&IIOzZX(f|Kf^3T)ivAw~i
zE6_8Wm&=Q$lV{q|3w;)f;GU(yX*w18Q&m*rE(D)te+Q1CGt@_%0}b73M52hWD;7ug
zbrVlPXGq!?fUo3G+JpEzOKyE5@HvrN#}w8oj@;XIXB+CBt_^hN)%^TIX=reM(?i_x
zr<70%hg!yIv#@TYN2CiPnKWk=uGBDSwIlI@sP>!?>BZy<O9IX=n;r2jfBOw#20D%s
zaa4)Z`A=s>douM8)B{}gt=;5ItXeS3Ls6B}pUr|&0Q<aLq@5f>L`4RLA7jZtk92BP
z!r=$Pv%&wGKkCS2-lUO&NBQ1_f1a#eMG>Q7p)HAZR#;6L1A(M3i-o((7P`642_pvt
z1h%1__)$9Lqd-7F-iJp04-nYK0s(<_?EeM?|NH=Q{y#s!X9@HJ7l3IXAYeWDFF>GI
z_CJ8Yde(}8@nw!QDlutrm4O`s%bGmGxmTd;P^!E#>p|+ghFloIXeF7HG`WUcS}qVT
zjiQj~rB+Zk6^%lAPb1Bbypb$Vd6_4D+AYtWf%+kJ0zJw}=el5p_jHOk!M-O1_&kmK
zVH&XD10A%&OXYZ_dtLChN0@RYFK|L$1rei?Ua`Me(^KH>E6jqvJPmnfU_odb1T-3>
zV1=T#d5T%Y?4dhZtq9;bWrT4Iu*0h><Sxouvw0+|R_hfc!j3a|Z63_Bc_Th;O=LKo
z6}d9sT_HPoI9m=mI_M33w9jYLV$U=!vH;Yl_O@4bB)#|+3_TpgLw_3yqmO#k9u8H;
zToFAPSS#4K%2F`R_{VAqj1Z|o*kWwtz*-SurRPg-H;AZ-ZWnp)L#ZCn0mix{FR~Uv
zH8px$K|?l*A`bHAN;h$ojK*z^7g?2BKi0EgttE|MI+bRwvoBY+$jDaO)M>z-69F7U
zMn7%P9ht8&qOd#M#g9zaFk0-xb%K1pTFVulmw!Eb$N68bsro*ZpomV9+B5Y%K~y0g
zdtP_cK5?scmv?8ovHkfZHr3&Yr^n}$#g>PxG^HCtVuqHn;ME;nOoCRFo9r~stAO(t
zc+R!xqzAVtIf0YXKbd;?6m7<DECfjIlCUQnmIpTpB#6%=)?d?I)=$y?=~_55)NPMX
zH^{G(@-Nj<Kw98Xb|gsvK4e!s&!RoHTH9=}wb*CrI0V`){Q`b>ZJM<%BR1+@?|xt7
z%H+3{sT=zB0bA>kUX76g2N6{@xNYi^$N_$pRIm3VnkKgkA|pbAm?MM@5OXdeqM9k%
zqg}{{2opz}diRU=NE~)(;lnd$o@lkk-Kj1l5r9!ksKW*c!B9&g@PHi@MsoT-_o(3L
z+10kSbrrZ>h*_`d2_b!5enkGxt+VN0H}(~*m=6Ln%CF#O)ma9-wM8LrJ1rxHogcGV
ziN-`H)+Z>n2>4M$7JFC%fb_6{@eb9AlwbzIj%6VB3p@b&>$9y)j8we;dQO-tBG0VV
zO!6}#pk8Dfp~Re<U!kFoi38^~JdJDz1mxo12kM7)hzduLCF}vYg?kkXzUXIsS|#<7
zqFOXq>mMwq<>P*;vF7YC2T4MHR}7ZpraIsgqMQYgh*A=|m>LCuuQ*&qq#_i33yMW#
zhyTV9ausIoK{NA%tm79B(2PRB^CAV|6T^}(#zpE@#}bLIZ{Q`?dyAwuFvjD*)<UpB
zhJf{{Fg|EEpPdI@G^EBV_kToRxEY4p$ZR#m%c^)Jy5nBVq&hZ8qM7HZ_>VLv9JGM|
z0?OV_6<`U8-K!>qKu2pi;ZPj}wji!-yqB=r)R1&RUaFsWRTFrmbUkV;WtukU%E0x_
z5Fr59Fo%E$NpTDp8-L`3vIc7z7txR?KiA@CWYS;J64@EjNBV=w&TVFq(0<0DbnG$7
zp{0r2!&M--Tejl*+%s``TDp1IU%rj1Wfg~p1NeVFlRnfHSe`zuP289;O}ceoL^1j{
z>Zo^oHbvy2lG-{4`C}j3L*D&TLTjfw)IejoMK;9@Hyg_?g(J%C$wiRF7Uv#xt@;sB
zoF9)I!A)Gj`19N7&B@+biNP}G(8R746Yj5{A2x0tJh*w^)N5vFkmJLP2M%8@nhg#t
z83Dz@_}zR0Q5D@-kwk`sdAWH=$du<l0K<0fwv?czva49{P&S=n*)ZNtUR(t6KaIio
zC9e@!xOoM6xqUy*M_%3!f%MA@_~HclX~)TYjJGSdP44e@LvhV}5<2N~Sq%B~uK%7|
z&T(vx^B=c0I^<bQmaL`&a4;&fJ5~Tub9jwnjXUX)Ix6@T^`_%-(ZFF^(}1{34dCI_
zIUS7j^~b&h<NDNIRTwr-J>q4-TY$5wnHy_?!nhxyT=5_AB}@`24D`$kW(z0U&)1J=
z-LZYfUk&Y7+H(7~SVX06f0d(QCpPcXdt;0LHkV>3Byn$s#ybg+r7{xKtgr&QGTe0L
z>{yRl^44lBpLVucyWFQg@d%s7Y79Nj(`z25930fsb2C>8*@|`5G}_F?<%fXxx*msC
z%IxScKCHm&U&DMt`V?APz%kPVwa0W<8ro+R<N4zTdJ`_D(2j6EFTwUw4W^B5YM?mK
z?)+#?^X!3D;>UiA-3VNmvV;fl>5LHpeje^tUne<2wbmL243IYE`Szl!(Gz{l{QB*D
zQ<P*b24cd2*70da;T;eqA$Eh^&*VgpA3Q4#?bb<nD<9v3%2U5W9w<LA{0&Z(hrSm&
z;iB>=dc+fyBfAGd3FZn53=Nw?%SY<CK+!HXIN?DQzC(XC|8YDADd!Mie(}o6v6U~t
zPscQy9$V8}+44S`YHDVI;)xsVBgAvz&La1$O$*)3finwQ9Bqu9=^ClQrc-!CI>)1|
z{j;BYTdn43+;=V!PSAqkSZ#kKU_1x!tCy~_Uc`N6`WcW%ifthBQ_p0*q<(KyS5h-A
zkvBX@5v7mN#fZT(SI-S_ambQh_`2$RGBd~;Rl%!2k>9>VC?g1Dk;A|H61L{fmLp@A
zM0w6y_`hi(v$dbFS^!yv`F~i2;`je%6>b^PZvQu{82ZO5DAS(*i&fB6Z{YnOR`K+I
zSOwwTe^`Zy)0jw?{6ANr33L^l({JJSKv!}5`TL%bE1aR{sBE9XpH@hVMh|s_@4fnr
zZINBWBz3UM!iF4VpELYTYv-64XCqF|()jj+<G)-*_)Eusxe5unb{TeOY?NdvHzEKh
z3K4PE%n*2eQxAPN(8;w@pfLVAmvxTL$uIaz)7mg*y;ZH7W2-O1S%%!A4uYj&HK$m_
zLiUCVLJM=33)NGN%j(Z`f3d_<!@)Y^3eW3ajtk6#D~{=Q7Tt~%G_KTYSe1{;q%CF#
zONk%!BP-bre!IXj(lWp_um~YFmIH8&yoPd)+tcgarhAnKE_`5$HOE^;GRhL>Co%0O
zVmobh_3`%;B6*0z3%PvBxXX)&hz#3k9DXSPU@ZN~-^%K8Ooiuo2St8+?5(*4r;}mm
zD#te@D;HvRem3Jvs8=B^=x|{?SI5TdaU*x!@l!8ZlyX=8F;+S>RI*k1=OUVW4mB~G
z4s&?Ln^o-belD7!ep*X>+2~9CS-uos4u`+yR&}hhIuhs#$N3IjmZuIiXriv6L6}uF
zuSWu#%5_iYilY}pB!_scueChTkOO&lhqR&{H0@nIh!$)a<Tg;Ou|t+)^IZL7XXdhF
z>X3J;x`%8<l5VF7oCy~U3!rg>Qx9$^BAN4-n5?d<v+A&&ADh=?NF1g12Z{g)(UkV3
zY;&1s14B-_T<)ZY0_q%O7IWB2H6(?2J0urj>hPPSSlgXAJ^H&GCtMD3)_??jcPF%3
z;g_mFE2hqC#V{$=jqQH9REt8EivoBSt{+qv6fWiehzr0!a*<u{Scj0(%Tm7*79`|(
zEt6xCz4DW3F8j7-(ZR_+y`#ZMumA32=6}dVOO%Gk3FE=^j-R9NKA-<_;<dG8@8YD!
zv4d#{CqC_u0iT%~0I4mHn5~8Sswk)NM@6WjSuHQw8V#U($QDOY4uehb*l-w|dkw&~
zG6`#3gdWpL^NOBV06Ez)OV^B%s<6On2MfX^39G~j0{I5K-~Rss7l%M_5oz%cT#QA6
z0Y|3gUo=k~5wnnV5_B5=f=bp9BXuHf-(sK~E|5V0f8h_ysIF##iUo#9iAD5xPuaTQ
zJGd<xT2B2W3CjXx-!{T)AoP}jiXO~55a6s4s1>xTa|oqwGfM@YXBH(H3CFX{E>hqx
zXecu~^emF^8LS4V>s-!rByfr~=6fZssVuedSg4qKqA7+n%OV75S{0Nm<bLd>kryZG
zYmne&!w`C*Z=0tT@^Yh6%bQz+zt&C^eef(pQUZ4k@$>*LnzUyW`t^Z@n9e$z@v(U-
zY*n|YZNEd?$>Vs1!K||P|74}$Q&1r3$0SsbP^e(<5&fcXqahBu{-p?AP~2r_N2ezt
zIpy)46RPAPSosrwC+HC5U8Aa}S>_koORgx|d$URK2oNlh6&}j<H`G-4+qjvlJ2N!R
zEr=U2FPs8i8?;oCs^j*3*mO{zE|cvaXYr`G(|>R#;c*MR{mp>c4Lo$4(f@nY{~Om1
zZ$GSPZ_#e{b3wpx;XC|O0Nrhr7oZv6=+G3Sw$o#nvq$Q&YH{=l`1QH{?W3!wr{;4j
zptI}w|E)N>d^Z%ofQqAT190|#Gmf2@v{@c~I$w@(EZu}^klXV-=s>b>5j{U0rIG)B
zoae^<hi&Lp_map6DL!Jb>gYr8FQKT33^HTIW#xd6@-*A2MXl}sz>$Hb(|QR9U&F<|
zw3CcpA1DNwL?>K${BoVMPA$jyGTjMF?GW&f2D|_O*O`M~8;W`MZSTNjfAH&Nu@SLa
zK~Q_j>B{th(iK}tJK(TOY2Qur=Aq`#mhBw<H_Jt>5G>T6FERbk1(vORF_ZTMCKwcx
z$``EDGv3aHV14^l<*@i(XMe6U=l4ouC1ODSaxB!$0IWaz#PZPT@7dFWz&>}@)_}{K
zfRnXZgQ+jiTejIRM%>)yDWNMCp|tetLc+`C&cL`_zgQ(Wio`0I2yxWDJDh{TL4r7b
zpSTb61lCM<p8K#WflF17kNBa1RW(rfm9H&I#b;nE^lj}wrbN|<V2*!v=9$Is`ujCy
zyNW;IuT_=QGZNRk{1?snrMD^_vQU5)IOj*fc#RlOgTkq2k$HM2Z@T%pY`GI=Ke!W?
z7JzO~V)ORBl9qFPaUy!+n!K{GW49D+h9Iknaf?emY(gdh<Wy<u?CA5`gWX!Fj@3q;
z<gmG9P&#M4a2W_u(5b)im-i97k6|#bYzNAOyISAZ0~*RqNyZK(tjc5U*%#n%hvvrH
zb4tpWTgTa~lhLXY7~J7k^2a4*)rY6=i8Srk^}aF|$l(kV*`Yhz!Y#M&^HO;n^zA2v
zoIip={4BC{L2+q>U8^rsl%7sy@N^s}J4VPHz29}fcWo!;t$V`XrXeW4Q7*J9`|lm)
z-2KzqM<aW!d~?Vn=U0O<MG3$mZY~xBFooL%cj--~n@JsFPjV>Mq@7IFMT|h^zvBW$
zvo+?zq*AS7)hJ|id@2*dvOi&+6Q6)X75=qihLxPXzp4Lhn>!uMsa+5>Qgx4=5PmGg
zXbt_CYJ5t{FTGKtNnchJLjjf`8R=K=>>|e=^!&`cn_kSe9$Mh!@pS=8xQZfz6Q0YZ
zUu;Ow-4hma``*Vtk4NDCH+ON>G6vu-cBzv^%_VMMd4=-zXh>=jB2-@A7xq02(kDO&
z4EE}-g*g_Bjbk`pfCKHKB`9_}Td?w38uhjhuR1+wk_>qAa};G~$|1ueGsD*0g_5%P
zR~Px)9ALXCH#hdfvTyn8>M#+Lcgp>U4AjmV3Y9W()UEr?Nb~Pog@=5FyZlc##0po$
zpDu_M&NEd`Ex+1qs&wsJ?B!E0J(gSQ<khF}71=c{L9d$q_}}Hd`Q`nkT>WH<^<10~
zxwUCyn?Oab65yRUCaYIWI5aY!;*!yT80X_j84%@LQ+x*l-e7s_$o<R1SzeraHd`@G
zZN*ORQ-uT5@F={f>{C<xtL+7IEc^rD>Cx)R`q|etr}Oc}@J+lE<%s3y3c8f~hiQJQ
z8+3v;FJ}7)O(pYuYn9t4q6d<#7nt_ce7SJPQDqj{iDMb;WaVmJrN6jh$7B8$=^v<7
zcfgM?xYaL9Ufi$zkMhe`0HvZrRn~g}>w8kfRTB+eb6Vl6u<45Sb)9Lm99(*q<3UsV
z#c(*r(WG(9TR3DoqB}O?xq%OTuY%42jdhf7NjPuG-N(YKr=+YN0lQ;(3Vha|qv<Ma
zR@OF_u&B3}hEHXYjz>Yn4k!HcuP4>zFM#REnuqOIU$SM~IFY-{I>(=EZ5)C_+8tb}
zyj(IMc_q9ZFg*~;d<1!KF?MP`mru0pI54Zq%+9s^ZSC)%VxO<;B~$a|qE%mZDfrek
zr}hB=Zb>NoBW20OM@O%pnz|#|KV-|b*W=_%Y~RYNmQPmpes(EIbFA9fUnKPaG<5bj
zS!KJ?4n+0-a2~Z7P+9BUvr-O}6=*sOz`RyrYZdZe*Pt<z;BHSBlz1gq75uhh`jLvF
zQ{^ezaB-aL9aF$aUO*gIrQJ}}TJGnI8jo|@Bf>z|v&v+qoGooQ&<*Y~Cdca6Qrxf=
zelv&f#(Ze(;@n|XOcOR7-<(Yg@W~JUE@yfYRlH13P`d%Mt+i{cOgT<=c|DEf!x65$
zlW>HVrIVlRK@CTLAxV+#^{uC&#b<~BiiyU_n%wzYRM8u>0IVfWk|1!WO1IysjUuRd
zxb~PlD62@?N&<_Y!L^lmpyZM#eT&?qR1TKhF&+mbnXB3pB2#FSz^cI&fZ_LEq=U{~
z1~Y<QmKjT@8^%FOUQMA39Ar#Md8sr-^ujPY3{#!|i~SeyC2sH@b6O*cpvU%<M=gm%
z8yt*wYFGL_%QvRtWi*+AM4|R1kfNIgeaa;><Tsz@(W0tvL*2WQ-xlW^jsE3Zqr+1R
zMHB_m!KWdtZ(n`zI%)x&<<r;3o8t0|<Hno)dwQ3*02Zb0sYloA<)?9up)viAqkM3f
z#YJn+&}n`{OLKPbUvBOLTI0x>wNiY}vs<Oej+L+vcZ>Q1z`M=5{r0vv>i4hv>;m`e
z_h?1XFTt&CZ<_nB*`^-L<h;UFz(gAdLHn+=@o8bMI~sFGe&n*(@89WZ{*e5VGwRJ0
z`QXGMmS%IBHFEDB*7Aoi^<8Av7!GMC3N#EnS5w<G=~)_z_d4jr$DD=FDp5nqc+kFA
z$-iW}j>n@J<g!tXl)-TDE`v{@&+%%CsLbw}<nDYSHMp<`^F7bt|B8hE2FR4G=jiV7
z<+kIDll2yq)?lZD0LW2edB<Y<!{ASu!wI41B~;Bk&E^*mN8?3wV3!Y*wSsHJY}BO`
zil9l>Ke3s_y$>>`=w#M(<i1lK^62I_2lFCDj}N#=TFYq;R7_!CZJ{0GquQO`1tIHS
zmU6XJpKa@EHkY~Sx=!xg0;t!&YC0Z^6$d`A*RJyRzuKC<9<0y5JSpP?GAmo2Rpoil
z9shcbEF3O#EioaLi|yoqc<S|<KMqz{?_?g*QL#hmW+s-7X<i02Z^b8V_E;Uf%}@Hy
zcl`zg<n>s_`CE3KbQklV<X&?+0=_Sq781~0vGu*{QzW=DTJVe~1Kxg|0#_g)v6NW~
zGbPou8v3q`*-u#}VPrG+N*+1R1k}^_)oEF&RG<zeab|aC@PSah;Qs5e*ZUCtE}alU
zAOG`ldsMf_k%QOgTC=&{f~_J%QRzWs+E2HibT7pZmo<~B*xXVTeNmj()fUfO;DE=2
z@;HO^&?P<en0eX~F#TvJ`FJTI@mN|iQIXRj6*xy=(ee3>7aj&L{hePjMh&XGMP_Tk
zwE3(3(+<iRd|Pnjui#UD<*i|B{>4@6Q+}7%T`n0eDoPK2AEpk&T{XJFs2g<!2_s4P
zWO_#6_bV4G63#yo@zcothRxd{fG5VpRmywB*Lz^Sb7bKba5{3VaCh%^WAS3*n*J#u
zDBv>yCjio?MO8w=s}F!82o*k+EC!`7GxYlxDDU(O3a^4@6LIe<?mnON-yYDOGK7K}
z$#eHY<67y`<rldN;Pvu+&c)0~&gZ>#i-m4b-e42YgCa`{7NyMu0G^y^CGIfq2vBB8
z#91EBV8{R{hJ^VDhIRrju%}m{1*?`!+PwLsT1L-rz2J3k+l%gPEFV7x6cXV}89cur
z2%%_g_Eg7ypXgYPhloQLyACdZh%|wq1{NMwf38I-0}w?6`F4WzhRW;W73Y400}s>)
zAjt-$cxJLPwZ_G_<>&^kGR24BI_pY~zjBqPj|BmyOq9JuVy4h_B&FD3mCo~E-`<7B
z?n1;t;Qt=Nh~n*&V}##;a^;A=(QIIXC`9z>rJO239C*=yMsh7>3!gB<oJ0mfHuEJF
zgnlrIL^)XT!4O9KTJ0qi=Oti9cHZl<eK2F?^X%p`7Gaax#8Lp4DbNV7;W`*j1AsdT
zc|_bq{%GZV)Jbl1;P&6C??GZ8y^iFQn3ONZFmSn>op&sY-=8hUyHG_*Rn!a8u#_;q
zj8CK~KIgUrlFQ2U0jG+<zbXUCeV-8wsEoB|>3)AN`4GTWsF1u$V6bL(ZM<O{phcw=
z9Yt21Q1s*_U{c<Wq9fvoT;CBa=8JpCrWb@b;M3GGVqW@cXDJ25Uw59CrvLfwl}}en
zMcj|;04jgO&Z03%HpLNLt?{YV%Oo^gYIoEWymdX>sION*Uhv~iP|$fDR=vcp=Z6VH
z;0Q`<zS-56fcMJwS5LBJ7m~lnwW4yC7EtC!NukbS;npskTiI7p7;A0K<%U*eHmkhW
zCs#-02}Gj4Rm^ad(k9a4m!R8e$ZN67Q0CLf&|><c32(i7{-A5W>0w6b_zA5@C&DI5
zdQ1Rn!w>{u3zKGR{7-oVOkS-#8tq=w0ZMq0Y)rnuGdhE-wn2L>PxLLC4m+5Gapc%&
zz_Z`NanShLKnFtQE9yrl_$d>8&~(jK`I}h>iauG2hgz}nGRLC?rRiI+>olewKUDVW
z0!VZWB4=!6Gmd8Yqt#8r=}vX)K1;E4vkUoP1wa(91uO0jVkl1~MvkPAqdCwodyfmm
zgmW+U9u6G!Wfo^$Hg<5i@H*^<LaoQ~duu8jfs)iGSmj$L9o_t1KTnZoG-c7x+;_Xt
zxGY?rmot=M_(SD&zc_mQJkeOH+TN2>tcK0IXw62aRz<>x+4Nd`$sN^TO!M9`R!5W<
z8^GTm?LV&Zp%n$^aQ?cPn4Q=OC96>9vwcshF_<3E;S&)ABAZq`XdIo{!s|p7-EsIZ
z_8~2@?5;8bD{Js4d!$idvr4Q3>y8*}<(s{t$q8*kbi3fMa3v<q%fM}{d4+ncWe0+{
z)P5&ix1`_{3zzR=Ge%wnm^@EqpHrBZDgbCc7gShbWVb_-Qz?crSbiH9smaIox+;|c
zDLfCo1}AEoCY;QIBSs0{4en53^T9zhe}b-El4k~Qs^0VU{W;*ss$@5aK3~tuO&W?%
zk_F`cw>1A%%Dpev$Mn2=y}+h+7Zj+i0<;2LZw4t+YEO~%quA9Vwo+;Kp#o4Rc|a3Y
zca%<=p8>j_8+;7b$@D%LnxSFYP<<I1q@wwn0|$DvfnVJe1BQ(^gRvCTF$|lZv5pPi
zQM_NqQ3u%^uYu!f30=t%jZDB|6|Si?{QQWr7C!vK?q7+ccV1GK1q&|CHnf;ZxU}_k
za3?lCB1B|pU?ou1$%g|MsNM;J0hQOCpU{UhAf&*J98xq%tUC~GC^n*_Ut@tZ!w?WS
z!MWSX+er0%l7a7_9SrTE{T_u!!q9Z!fqX_mQpkhOqq*;U`4PrST$0Kpg#7NRPm?83
zm^ObJ)1&S1F=>kM9gH!<UA@#mkx|2lQW#`8A@_q*&oc6QQ)$%!RMM3V05VU$jNwSB
z+`SYNol0wusUj<xELxKcipd#qc~f)e1&nptjnrZByG0{CYQ1zhQk4|@cPfeih_khb
z!WoX+kB4qiDw(wO>Vo5+o8hBll1m2V-O<8`unK*qR*FfhGPIBG!BrPyOr*n@b9EEz
z{*=R)zfz(E;UAQ&?};_k0Hp_QkYZF+ffQ$yG`<q+vky_7aSS1@7ltA=4y1m9^F#yE
z#En5K=VwF<0Vv)HDBmqyV8I>WGRo>*7ucu86=;n5<)Kt?*?rOy(A-DcEsH*4<CF$y
zdU}ZOiIMx_jCXZ7AaY}nX7nh#&l))8&;DdDx3y+>`0Dn&)~->=00Jg~4ZHKtp(|SJ
zHyrltwa&*gEC1JrdSI1X%Y~DD$w~{4qa~SV(vY;OCdBkmXk(C_o;q_qHI`ai^xF>Y
zD-yvyI{b19rT<c47Gz=VA_aJ!Fi}I<QX~?jP0S9C8)~xqGKe7Xj8y%;=cdtwmN_o1
zsfgKHLlSJICEHpJK+pSBP95g5?_aFS%i1ZbK={bg2v(kkuUI*Y@7_Nxbchf#>)SIJ
zd8p~=W`(fzK{XOat0nPR<}S=(Q{q`L#X^&{eQ_E#am6rrycVgIwELjbo2K48cBA`O
z6dqf+ok!#a#IM@o7iYz07#!!l_iQQ4grr6pcvAN&;oj*v;EY-(sQCwNwe!5r^+(^H
z>h2dNSNgdm2;JS6e`8PG=$CKn&M}}nxjf|yI}41QXZ1_(`oY69y2uqa3QH`$Hqb!^
z?)w<|NF(UMtp5oNYBvJu$o0`;rur<QpCCd1<f}7Vx=Qc-KxMbB^g*o>{2^j3{h`Eg
zxwZZ~g3j0>z#^~c@yloHkcfQctNd;5*Bj9W@8w4wuQw2ovSvLa#5bFm!1DzI#CUpr
z0%?789D;J`6Qa>)^wAF_Ok}m5-FYz|uO@)k^sdA+<1yaQ$zJ2{L?PmDz4Pnp7zp$!
z`7trQo5D)lOns+&wi*aeC=evC59?Az(zpYSk%syN2w&D5(T<%trLIC3EUhK9X=joC
z{g^CTW8Tc{IN`L0TLJtNV`e?Rfsp54$&|djneUEWmml%G-VR^e-zW<iZ#~2}T`e4j
z=O5{zP3+$(Ue5<Ypf8AwK#u1TiJ_{Wfj`$tLV<jOVoR8DMnnC~_}`>dcEnTDgRX<f
zZgc?oDCrvj802J8pK3BjK?CmqArx+qU&~41643)J5oNY!3vHXplu?-vAX=esAh+J$
z1y7-1`#VM6DD)c>Oyi@?W`hTexFMGz)s@Znx2Dj3uWCQqi|+CT+}*?|z)qgVq}mAs
zFUvPJ)*Ws{s}}uHw+L(LH=jf5zXGB^a6JKjyY8<trV;xCx|`8r0`K~(X#t<)?4KZh
z1wq>70t(V(6!4X1`C|3x(Np5=qPzRCDcqKE(VlCuPLeU;@e!QSx2VKe8J3VnqrDLf
zdveZwJc^OotM^jx*_~rrt-RpKgg)7@FH2{x9!1gr0m+v4($L*6eZ)Fx41?kzfPgQ;
z_qQFk-DL&nZV<vc@PP88u-_WUfso@id!*NJ(=}d@&LDSz*TTDsXM;k}SUd|lyFzkF
zoes^XdZMvqv^ok}<!GUz^B*C7g?nurU&#NAA;%cxcw*}}CmfJOD{hfl)0IeTZVbFv
zaJK`Ocl7uac5(b?$>P_>Jkk$9y!6zg9SG#>&gZrP#ph4}{@0O1p2%Ari61<945Q0W
zf6sIWc>$}O@@U67YI6CYOnLnCcAqoe_OKTCt5YzP(S`NL`l7kT@%i@eH}T#3xuTxZ
zB9ZZPyf*KN?Ky<$M)k@0+!<8rcP3U-n9Bck6y>8aaqXhBtiHl74;Z>x8oKfmf=QxB
z1&5djx+;pTY;<xQlv0Ika^2URm7Qwg!{1jx_#SZ@wm){lhtm1ZV)>r3?riHK<!-v+
zoDl@uTBd3ilU(qT5+a2})pS|@t01;=*<MUtCjpo6)|UAkZx8RUR(pC<h~or2P3OK%
zN>%e7MO}s6JuMA61E9RViyE>`MP^&_tdRgE9G*%g1)f1d1b)s)>v3J?>d>qA`w?j*
z;6$lON8A}1_J18<DLGD?VKEJjARU}Wf`2!NnII%s($A_IKh`f~{;NN^q5hG9w*R_B
zy|sj~1hs$`acd{B6n-p3uKOo7-d^f@(ym4^un3T>LW1#kGGXoVK2M3g1F?~!<uvQp
zXxoK7g(<YvL{&`M*=#cG$HV86q$_dS<VJ9k0zw!GW3P`S*TE-IgzBQ)OI`5C*Y;C#
zxy}3P<rd}T-??1ANfDA#*s1to_muhYZ3Ls)U#~5fuh!6riLIxcL2-8+AK{Hh#g3IA
zc<_K;bC?S84b=l{P$3b!FsD|N<S99@+{Ek7@$4Q%U?U~h7t2OAYXC2?HPjw>mm>o|
zoA|u()%MsoSo+mc5HZSYvT%)GE2ZN5fg2@$4|L9cYE(z2UWu5nd!#f5b><p<_@Gp%
z?Xr*Vit{MKcc6#<l@VzO#RwKvA%4J{)}R1WeSin@P!v_1ApRLK6mXS_y0Riw*!q=d
zWp%&AP$YTQfpLTanNiZ8L|D<Sy0kPY4Hm~Px(mx!FJ>Qwm(a9%20u!kB^)^g)Z$>2
z2kCX}r-?36G$X@RvkYv)ht_6_eojYHSeKAgC#gx}msEOWl(AS@)G~mROfHv_k9GjS
z*0eN<(XZjiaJ!K{j36^Mi-JKz11!|ppfm#ux4dfum&5vLLW{tZ%fj}s<1YTwGp@|1
z(_KGYDEf{Sc=dqyFeEPY-4*7yRe?CokRlt31$pz^VE<WXLeET@s64@kgsx_#RG$0c
z%rFMu7PZ@pzX^(wU?7)R!X~nd5kP7Q!W4C-5V?pvg~wGH0l2kMx;0)P{=KayLx&+~
zO)=xBS=4|>lDguPQ$&L6w(uMA7WJu}L`zfDiW|&4gljmOrqiRzy>iL8N=<0U77J$i
z2?!$x(VB*qR$AN%_mjPp6kCz<EqK4pk>+}dl|Jjl{m1h%Osi9#o4sP<D`4feXS(9{
z!P8BPcNeliHJcT>nzLMBBVfc-=yx}tMF$9VgxAF%d*(RMgVV6j#k`$6De}zwKxPO?
z6t@Jc0ab2w{6|V?^%@moo3?nGYq+*QjDMqcOd2Dmj7oKXbm29{6}dUvA!~ENuXDNP
zPY*X@W&xemxhy*~R1)#J3_!Z|2N*4^l)4667KENO8>F?lSZT8AI8*i7j9R#vDin`m
z$Ff$|*=rq}dxmR!RPdsP3Ilt5j6~xhx-v(C#k$+C2&iXN)OL?&B@y~Q<nwBa2wiHY
z%t8Z-suPDwb0nYD*Pxf%<&l?&0V^-Jf#fk7;6ih>=5Ip+Gl)|RVZbWxfb|pn*C-S#
zhla{`g*~aBw%VE|VloPcZ=aSdczW+#FWyeh9s;=M^)s{iuvXhEs#@(PL*|SedJM3?
z{7M}Wt;&b|*fJ0dkVc1M+JO5`z>@&2fPU?J!2xxP`P9T;-*Zr*h2Rjrhe|H3SW2|V
zs+rGW>ZOLdKx#rQ5CA6V^eLyuIgJlj5XC1p#G-^ZM(35y;l{UY%P!sJ5GPObO>u<g
z_9&*+hLmH+tDK;`eH2-ofdwACLznJCZ|z~mAn|c%BHlH$OvWI^LEP{|WKBjr7wtcO
zOy9m-II8Nymn|zH?%99Sgf|G-k|$I(X$DB@VA;lw><2OAWC2XRDM_gEubq~m$i0-1
zyWG%Be2(0q*-CNxXbbE7P`DCPvPe`J<uM#IZUbeG+Tu}J4E3HGn1Pk9W;RGMK_kqL
z+|tq_3*}m$qos^pLteKL+2lY6QI+B%+=z>aaFiTNHe}pJ7){<gE#Iq?XCktihFgBe
ziTst;B)lrLs0GOC=O;NgDYE!D1C~;7RkZ~W`<@fa3ymII%A&oG8zCo`uKv|Vp0iw5
zuY08AxYe?Q?!}kver5ATFY}J}XQSwfUgH_>=n65uuMJWy){x1{`N?%da;T%nVAVYg
zYkN*k=Ppd<(*F!kC~CifOx$Z?V!NHO%^6m04_jD`0qob=7O+JcIG?@_?mqHx*&1b#
zOWIe(qD`<w>&nH>eX^uHJ=kXFQ}@$AS!ongHE6?1m^l4uTuis<?ZvE10uo`8T?qWe
zUQ7rKng@|?IKRU%eSzO1U>Sb*x2G4Ez}?0SVDB|Ir|0u=|M0@e$%Ps3^Lpc8;l_%O
z;KR=kz?JjvBfy4Z%X?k^U{owr{q<tw_OxCPFZZMtZ-(u-zTEcvNa9}OyCeIZZ{1ci
zUdK%{-d}9tre$^)3R4Gh%9GU*akWkpimq4#h+)<DX~IFR2xba-+q?SAmX;OgCZ@(e
z-c364b>`+jvzF6~+@(Q#uJR<nOSP!$B2Ce=0nqd%qs;mM?6Qz1iYy)uN2|JG`_&73
zWqy7YgQMs+IF=~CZ%)u$#NPci2i|GtT9lTss5|B^05zKjQ;K_d_!%i8km(3m<V8!-
zKV3Mo1)CiZ@t4)u)ens;3rPkb2z$B<;t4g@Zlt`w5L>`o-N4r~ri>TJHh=75DMqdE
z03H?y2)3w$@Dww^VzICcU^VB4@dGT%s+;{%<m*yvRNlaniYTpA;HCBME0Ro)(yGZc
zJ?efn$^<!<Qt;x;+l*zwujwNWC!uSt+BO#&um{Ud)WS{bP)sz=;?bwBZXeS6FR96&
zj7bW6`4)(mA3}-@J+9=$2E=h{<ZRbz0FsHmkd*oU2>!hlJPv9Jc#R)?Cz{LSSH2g#
zycV!M0BnvF>mFB|pQ3NLByuKm@({Ij6!Zd|dzLo*RakLT=C!_jG?7|TRBzD2S855^
zBE!i44vd}7S$*Hjdz%eh4bqBMzJnb7w%`SJwqHeNomZrwXq8hooKX&cgw`_`3UCGW
znfvZfkPdk#G5VXBlpGe)TmHPvY^IsG4pubwf~*fVh6&B`?TD0EpjT!D>O6^%E}4@q
zA+<t_Ny$<4ut>1-H)^l;DvB;EmEW{vwy+={fc6(x#P4teF@(nYNmJo%-5Liu_<OKF
z=3zZ7cT9i}MfOGqG`rqTAu63OPe4A^-+T{G&$f-nFNM6h_Mt@eBemII($Xpcj_5s<
zLFTp^I<Gpd@7pncftdw#Gv*wBGfGBwx`Tg?1#VemHJzt-Nse#4za$QV<_nZY3=^1T
zA+`?<T}eSb#b;W@)XWB8D}KK2NWFX&Jpw!pfg8Vh{J<OQzj(cyEq=5NegSss+5w)e
zMK(QfvSP2RnAJG9buKwyc+T&o;Vj1QVK}#I!LKN{Wn9m9UQ)N)9m;H!I(`b~>WyY0
zhj_G_FcS`JkZHijAH#KHZ;A1xo3P^F`_$E5Q=sLp>~0eoenc}0FF=o^LwrceS9rHZ
zO$`$(Adj=xf`p?CcU*z50bquO&MWH;PWQ@8BDWJii^spV2|D4~?)?z5ZHt9I9R>Z1
z*1w+eE?RB@*N5I9vo%cnSa>4QGkh;h5#QSNNLPio5g^k1%@;~Sko(PkNac71fv`l>
z!duh=G9gfW2$%ygi)>-QXmjAN>F3tGK=`;0P9{OaRo%b|Dds;r0L$Q(d0j=)6JX(J
zFvL&{cSerIo@~815dz`($o++VS})&T{yHHLgic5}h7SsS2#NxVJ^xZ(Eq#qK9ybL%
z^u17aJiSsE$WHa@K+)YTjB@hdk^Fus^R(8t_gjL;9vJ2P@;m^2SsNTTM04_EBg5|j
zc?0I~4i5?7H3GB|fRAT<%f1{W$%D8!l%#|Q!RKFTJ{X^Z|ErIWXZt<<-`nQh*;ah_
z^_0x<wVKO^+#g?8F9;4Eh173cA|d(pY%%|6i4VRScTXpAE`~!7uC}azR?XGhqbI~@
zRtaehnq}d3FaUnDG5gfCJ^N&E-L)f(-5s0`FnU`vt?%l2b34Fiaw0edK@I=`7Ok0g
zCqo~M_n~{w=QP&id!ey=!MCO*<#BMB&8IQm3}E<An7hLbUT_S)L;G;}y$9I5<w0NG
zIFD!hUl>Z%uQiOyL<*;{g>~bGhbpn+$!g$Oqc7}Jx8h8^;K;&3Zim9cAlL&M0u3Gj
zj=`U?f3gTUzFW~bdq&HHQMWeD{~?YVMKcZNTi}i+Upge*dV%V`CHzw@(!{?AYrI78
zNaurz9oJkr#Z`DQ%DIc#S-52$K%I^i^rQWwU`ENw+RH@)o@bXZQx}Kly1(>%Lz6mK
znrhZd*1Dq>C6&2Sac{H@8HCgf*4j4_(97|78|+R(eMM}d--+4^dq!vd-sgFH?FBt8
z^1XNC1uAxTurC}*%ZG?g=HOQR+%34F&xoXA-#Y_3jqL-?8{V#AW8=r~{a<}hU2iG$
zPf1v38DEwIROf;*_!M;U{1~KDgoxWPC$P#<oGWqfXbTT{v_{4-)xbp&<-Q_RK-sV}
zD(YAm(LA+`^6S+GM)4&^anOO(hqq<PoM-<t)w7`pEyQLQ^83?k#MNxF<y-(jOf`+*
z;f)nzHa(qx!|=wJ#jQw6P^;5HkfyWc77+(t{>K<4@vPVVkeQ2sg$(~q2SDvtlj<aZ
zIh$Xmaf}~o-@yvLeFbj+8`qNv;DT3{w`gd;oBLX;nw$eMz4uyVsyO@T+xfQV#+!N9
z^VU<quO1R|b|$0E_kl4@6m*nJBMUwx>g7=}N-7O1<|Se<k#4!w9#4oFzSHiJs~ZX-
zFZS@(Ywm@T`6vyMFqu~UPUMI3-L2_oONNU(zUS+2KOH+)yRIu_%Ky&015m;}UVg-l
zw<-3~^OEiee0b2FiOX3R62-YniP%9BYiIx6N3z2?D=cL6gLP)xL(MkrjMF8LRa~uW
zkKmEycc#*68?DylUrHcF)+3!8{8{l<?}<)du^^I=5I$F?qLn9(r6cx}K2G?JVKI&J
zCx}XhULKiy*=cy1q6Q(pC;-}Lfi$5+SmN7_AESq=+)mk5IBCo^D;CiZ$c0~a{R@7i
z<veO?kQNqsxUq}?u@0mDIO*^r+sWx%3W#YFaVfI4N7DQq!Bkv|pN}Z>H$>2;a)hP<
z7Yc?5@Q5pMtjI7MOmW#$@T+1fl5hCeIG9)0X=Q^STlAp0Js7#UJpc$o2_@uk&LBl%
z^b0qY4=Z?4T&yruQ<ra;yZq97{*+G&g$SbuY|d}Itk-?uKypU@Qtws6=E~+|Qm40T
zD3OgRa%5u_=G5snrbOV(5E!7>Nqb{PDI8t)r@&P(0%ThY7=s2LCzh3*0&a?0m>HZN
z(715)$3nmLcoc{-0}>vKfp;cu48bg(FZ?w&$w8f8N1aErN`W8!a;w~5kJC5pVx$M_
zN(2)cOPB>kKW`9taB#eq{@S?ooW3GsYp!vOoNE~2F@3AOR^Bdgi`hd+M3GF6yWnmg
zp6?_Lb{U$u>bf&~-nvRFS#_~ydzO~k78mO!Q$le-F;sFz1?V0ZeRvH2nRhw;GYXxv
zs<5kr8jiCbE5j!UjGFSnD!K5xJh!JsIjIXPRVYN5S27`&-{!|q1&YFlv5zan^U4w{
zfg1pf4EQ^Nj=kIgt^pib2nv)te(2KvI9gmq2DQhF>gq-iD6jAvMf;$PJup~sus4EU
zV9O1p_#l4ZfPkn&_io!;3)tUY&%x<=lB#llc1vhHAfmH`ta@<w;dHt?7ZNrT1@_7`
ztEp!seXy|mLMaA>RLz!BQ;LKygCo+$o|L~qq|>5k*_FbNU}VHwPk2^qpjkDXM7T!o
zNbe*)9j#iV(r5loSIY}>y^w5*S&ECI5$*l>aXW)=3xLeCi?I_;v{<<?<2PA5z_yF|
z{g`e{R`@$`{==j@-AJad+x`7%qq%g;ZCTCQ0s_~$q$)><DWaFte~b<5$=;YGzQ?SV
zUbfbO-y|#Glr;uLF_d9ly66r;9!`-C3ly^#p3WOmv$<S^5t8}-lGPqrlI>4N@v6o<
zh>v5&IRIIos5z|N5hd3EdxozwBKn$G`5`$*)lOEjzu2pZwXJ@s<s*^`XN7c7u?2=T
zCJ20+9!1k|36l&@8880b1+#8~|7LQ`sLvDK-*2T0RJvtsGjvyn6*yU<#0<c#VM{sL
z5w~671<mEB=kfELWkc+RTBwO3sD93E^nly30)&Qp?yDV!X&c=Wr%HVXiFuP+&7Vo4
z8eq235#J^3gZD*bChaXB#Vw<!*vR)>Cmt?j_e~#XojTw(>kKPAAK>b+1j9-Mt1zeE
z_N7iHLr8T(sQyZl$(?YyN6OfxPgI2xLT2m%^_DFnp98VhfLye_U<B`F!$`@$8!Yqq
z3-BC;B$ZAHp<QN;e}%nE<Fu5^N&%}=lWxOA_3UXP-E;W^^kNBvp3H!xP-|0v6u1Ti
zVXK*bcF*&;`QP5_8`t)pgkDi}bzMyxBZ}f%A=_BsQgbGO2KF*>JXkM*A5x^WL2@M{
zJhID$$QJV<YVJy{B8B-(X%$k#-{AC20dK9LqY~Mq9~C!gP+>2?)(<0EK`(Zb@8)na
zjXYmeR%FX&cMqnnY!P>1b*?s7C@|N6_X+l`rWY&5zidv#W=YnM_!n*+LZ~j#OjPGY
z_r7g?UR@X1t@dtUV{8xFx{~=aUK5Tm@lJr!;^q%8vTm1@!=E3|H=a1fewqO&Sb1MD
zX?Z1KLLfUqr$Fe=Hnjl^%ohfopXMw5i3)BjaKut&lnrKsMwV?_EF<XC*ksnx;z4cM
z!CTv^{k^6X3S33Or$;o4<ZBwJS`hu&ASM{{Sx3Rt&4c9OUxL1lom(6(^s#w6KGD&e
z&sr{0ks)G;mrreG(hjr@=Kg@9P5(xh`%LiyDN-<H1h|A@x7X@7yywTO<V|(oRhU4G
zGY?-bRDhc<S-tIg%Sj;#r$SE{X$?Qjc!Z~~^F_fXaZm_XVsT&oVR9_?0c_TfL}(s5
z#W1H6KGs`N4|bVV-;wZ=B^~kprjA79NXJ_0HS95(#f(BVjhuWE6Dojixp|6t;R1AN
ziii?gVDWyO7(X657e789joz}G;yiE{KBO#>=1)UcC%^q_L%H?=5niqlhe}ikd_mfG
zyu0A;X!Ld>$9?PAG=MYuoI(u3tEWuqju3y}yS3-Z`(61rZh9+H7rbraybjV>+th|{
zNsV0=fgGj1q0Rx`8>)bC-QkV!^+jrV>X!lv9qgw$l9S0p5j3X5!qj{zFQx~&gXeoL
zLf!ZgrUOp877xUYdx~fi*kp>sGMq*_b8d8vI(RaU#@KiFL6+7-F*E^(#T1HrJ|vQY
zfXO>p+TkB$G`v~>3(G;YzP+PR4%v#c-QLEth6_HzTj=>6z70U^5-Rd11BiCI0k|)%
zZc7{5QDCHAE@6HzKYSSzo*n-8U!$6~<uXlCee5%g;L>3hY*R-Fhl`KV7xQlsw5Ska
z-0<ktm<ytt!ow)*9@-`Z=sy;ak_ygVNE#uZt#$doS0C@4GPS6@sq_X>YPhnNx`b%u
zy1Jx~jK1HJ?3n`W^@XrD`vm--Kk?ekXd-}jeB0qm*0a+}+Y(CZ*m5>0Xhz$feE-#B
zLK2_6)uESXX*LTlf?ml!J3uC`icV=^FQ6M@qiugAzmZl&h(7(2oX;P_rNqsHH*uMH
zzrWTbm_m`1WWq6P6)J~+oM4TSJS>F&H(VTVLR4eW?h63utIUVb+4le^mi|DC<cB2B
z*b=E2Gj{4*a+vsXI|OtNe5mf(l`q%eJrSN*uBH<=*B3sY@Yf#6IFQPX4EUMDa^;yj
zi}2(oZL!|ziJIg6;YrL**0kV=SAikltJu+VjOyKmf8Dn)%q;-*_yuLWL?YTG82{U2
zhP<XK%1i_RiOZ5EgNn;W(DA0;6Ba1?iiM?WotEXAZl?~z!-CtMFbO`dBl_p6g}{_9
zBW8ZjEqDa1g<He7@J1ISGpNpHrQ{;~$t`u~C?%|9E3D~qJrL5As^>>}EOzws-A(w>
zYc}r8Y09xmX8%3!XUEQU=YF}Ve7ni%Z#9I~%0qAfn7>@IYMRpJjEhBwEn)v;<ElPZ
zMLn7c`#8eU?etN0c+>@7VUsqC<G!stks0gBjNf3E)DLWyVCx*Px|PbZY{mfM%L4z%
z%1Y<xAdpB#kA|A{k)qCdGXHayM6FZrJQ4FtksZO`sjjs{0Mv6HS}9woa~|l8+3}Mz
zdii~T6zOsbO{)v#>sEfJ854aHUvG&v5{nM_XA1EDeB&eq*|VBi?lU3JFqTUJR})pG
zC+Fuvw-2GBmM3)X495Nn#M9a)&@DV@CKz+CIW@2DMr^|h{BPDhon4LB9|apt;LGz^
zN(k7g1gYr3`0Bjs-L`z>exoYPQIg)^FRulFSu`k`?V=#4+FSALV3cm`UB7voiz|<#
zA?TVAjRT>NLQ3;vW942?t=rH2k569`mj{dW8?rbM$Ce{uQ|Vz`8%kVs*7M|Nu-d~P
zIlW|*W3RF6zP1ITz>biFFZ6)$OiA5u`YD%;y-c`BEed3v4td2>r(9S<2j2mqFe+WZ
zNwcCwpxD5P(yO>D*;5(y0ZzBu?bT~F(c$dXn}qJFPwJhNikec5;$hxT^Oltkj~Z}5
z{&O7o_SL;l_S<cj*-67S1X#NiUSfGc+?O<{H{9xJrPx#X`Vf`lk5nxhVa=Xx(%(s0
zng(u%4*AoSf4zeIQSO4St`>(pUi2LSUXE^*SK{|V62xN6?WRMpC!ApQ#0qhRtS$#f
zY1v|7Qp6S%-;C`7Gj2$u{#+C#1=}uFWNxbFUsvST9SA5Ys~8hk9&S1@m`SbICPfKN
z{;m9l5{BM+%2ICY_8=o}mG(XQXO%ZMWmip__KkN^J+r)&;M_iwqk$zGri;2fKwfhq
zbOC0L$=wcmw!<yGAWZgfClj782OX1`SX-qsi#?J6${o#PDycxii(B2Jt<*8(F<24?
zvf8~M6_<I(lsjk*gK>Yk@y{>+ET(f5iKV=;72AAxg4r9Ls+-ky9G^6EKGy@r&6sQ4
z!Dr-+pXikzL#?vDH7PYUX=y2wfEJzF@)PUt!*(E4m}YnpxT{gMD9KE+`<tULHa?xf
zcE)GcbEV}J-4x`$vQ9FnOzp~Hfli{=XcLxVt6AtYp3?R<j$t6OO_e?Vo@Mr9g*y!L
z?B<@Spx9%d+(No7LWsOUml{yU&NH%k@|E~+cH*?<XrOxPVyFSXOR43P08p8YR19VH
zg|IWD)A3=h;$*PrXM<6EEir4n)%vj>MX_2?drW>}P~1~x&Tyt584C&ejdW13C}7Y*
zaNW~5J)j@34=`hP=p7u0BzxX;0Y4c$lvB^{zoppLd27HSZij4KIpmOaM`mGX4Bzv7
zQyd3g-xH#~`I|po(83u71%RyNG?=ue5N^n}HDnc>URkLMv)h%6vRe+)#~n46OyR!k
znEoU~*ayevj5;K-pHSvgUCAW&aYP*b3UwP6PBKTjY-<?&nC@5YNml`H#G|Ngl`v0L
zn3A!WYT)INDw;HGJsUIKFvhNyQP^eRorGc>O7U4g&LX|K4AtNZ3t*Z>KiUSF2%dLC
z(&>t1#rhldZJPZnijQ`%dpv{eE4^YC8Mko3o^F@esus*&FPrU9;I~%=*&YpuJ+0{%
zRmQk@2$@PA3Sx5YJX7hhlm?j`8_d*@y<26;I}&i!35{v@E|lEW++E9$RWGf?pXfE5
zL{me9+Z}mf9p<hw7%-pHc&0SL`brD)@}O8y_#SP*mA=1H&rRbf;T?L&mjXg(4tmqr
zk36|c4g3E9RY0o084e4ou9Da!XqGTA)1^qA^*T$Bq4hlqFmP=ek0&|Fvsm(BoQ@MT
zD#2X-bOJL$vhPOUpYX)S1``z;?b`A|1X}2rQ;a%t==t_?_TsU-Ce6ZsNqox&YjgBe
zQW&4B*JxG~ma*Zy;mMvO8Yk*X<<yTVb?m!DO%j942kA%*NQ8p7j#sX@hb>Dvu#Vi0
zwFqk3=2&q-%!Xa4n)16ryXD*R+q-VO5g!V`7Lvgi&4i1*IpRec`L2B%uEEmVa=Yr+
z$7dJEFW;P<s=KB$sBl|<oDfPy0+i$mTMyP@;w*dL@n3f;%dQ59ARh<uQAav(GAM@e
z;Z8A(o6|Urr!+Y_4B9~}Xzw3(9T{YA&+#U;KmB06*1$$RQ$y%8*3bD&zUtx>Mu(v}
zPla`ov6K)-MM4~@0X4wsOdgwuuF5Rvi5p-B(2463=S!L#W<c404N;2DpJ=MxYah8G
z2i}Gp1d!)<=<a=M=}^o3Q{CXOgwyST6UcD`(dfClzYEr^gyQz@8bWb<w<f9w%#coP
zLuIhB!PCy7OfDLzaS-Sprz*CQ1!98Xtu`<!<vBy<3G7C0+iowoS1V9^A{t~6^4a`d
zdUngQc^|F$CPW~AWekiLJS!6$EhNz7j?M)M`Al-n+nAD4v>*gyPI<=2c{<_^E$G1p
zcGiel+V6B7tz!4kB0#%m5I{$YCVU)+a(nJ*EJ;$<)O^fR5an&ziP-H<9?o0`c35Od
ztvV%G4sQHGIbJSK<##1ZD=xCNf{O?Z$os8UU1$Y*7k9LON(#{iAC!>uVOWetEW_*-
z6^UTK`@lydoJH?oWixi~ptt=yUE5v7mfnRq>0q*M#~DfyG55Oe2Yc<H<$~C^R%R8G
z+gU!_1(WMF4|m&xdOv$9#nd&8>SPzeawqJhoTAa|tzeN>+uhsSerOLQw!3@a=2`8U
zJ*anIxeK#@T^!Klr`Uy)eB3bZr&9Q*$bmK}SLNc+a5IE`Ct&w143s-_@M%!1*F0=>
zEG*CT=7jA4FC=$ti2hEZRRd4vif1f|Q&uCs83=xk2(k$kcX51qPC}X_sQZJj)Q}QM
z4y`<?g+~>bwa7AnQ3OtKP9+&|QE<)xqjO4+4_1wTP^*!aMOj={mY4<^)C8m0AFFwt
zQVUU8LM)Ox8q9i|4CtL`iteClclr~{``w%*@i3#Aqx#?7-33<tmwS;EQeu$=a+c8f
z4z!uuIZ>Mwr{h276ZXefa&P3GJaK->C(L}`#2ghJwYj};#-%jY%FH2sgJ&UIBF>j#
z<Q$TJ^K_7HW&0op5Hg`=^9nvdZfBg66PLG*;(Hqx=uSjsQR`U2I3;1iXhxK0t|Hvm
zUUPQ}CKuy|%^d)Pl-)sCfT{g9Xc$|3&Xsm4e_t9DftNH+c^;4EfaV#4RBd?psnB-&
zV#ZVOM5xd!DOu_2vc~v;#CdmRj@;XAxk873Ysud;bk_@eciT#s*wjF$!ntWHCAO~J
zJ80L?Z+<Fjd9b%Tc#zBN1+7XLzndcvPFPeVEW<cy6<VgFQ@}uAjAoM7c+aa8cRYY~
z?A|>$qdg+mZ~8XVPvzUm9m56rq|G_GPVLEQpk4;FaH77YfC$pFAJ_NbPIla#bewO0
zc~+$0BHMaFdR-93#kL!9Uf-6+S%}GBO_?h~EeIJ1mKu!pby&lD-rL<%YK&sJR-{n2
zKm~JkadQ{NO$_>@3B(}eOou;V{Q4+XGKbVv+%$dVauoFe9&sio#z&aGuVY8?>vyAT
z`Q?cN1h;*l&)?>6^j1++)N*_^rDffJG)hhB_<ZH&K#)rwoyH<7K;nN{L}Mvi&SEly
z<dmJ;_K@YYt)|jm!w27ML+Hz?wvmBCUo%>xBG$TEZ#j^soHc9JVvuamun1!bh^GW+
zYB|$(Kj<C=_YI;OSt`qB#_}w_)zMGK(KJrU3yB;Vc?(h6AY;EEeN@E28~*-(+!kZd
z{z5prlI$+$S-R<p9Ic#B-D_cb2?&L1Fo{!Ob1%hlA?)r7HUb5^ySwdCU*V?yR=C9|
zGeI+$g}+FiwAk2n98C^3%FArh*<FH9#XOaQd&Vv~PcZyTW8oSJO}%!f8h~Z8eVi>b
z!G(TQ;h-k0aGliC5si}~W7m^^jEM<PP*mQ7YYq{LuKbH!Z%H(YVce^Pe3x=wBm%0S
z?}s=@_rTNmx=yZgYj+9N*ZEm)51&D)IE$mVN~ZnbRC>VzJz3FV98&LgjxnVURAbS#
zwiiX*4OCqKsy~ybcjDxWEt)#|LueFLlv*iT!r}l^_YPO)M0<z5T0DJ!pkfw;_ItO{
z^9X1eLz%BdF-619mQf715$imMw7ipbo`?mG2a71K1^i$MqTtzGLd8WBy5g15dRdI6
z4$&k(L&_wYmLQtF6qzf*`I%hGTCa(UOH<^#c0#oUa8@lTBsIr=xA{}|K@9c;+d?q7
z(rL&}Y{8ob-s--d(G^pF`n{b@MJsa*juB)BvNW6{D-=?O=P*A0tyI>SySKXM99GvH
zma0WEi&BzjG`wM%$~6J1C>-se5~?ra1QIG{#zh(ySyEQBEQOpfn&cB5Ca5HN_rBRH
zD}R;3ir(7iq#blroRqGgHb>3U<l9>_ikmQJGxMFTaGWU)-Y!3X){Z1h7KGz|XtxcB
zw_vMLm}qnpn&xrSID_Q``3SXN8iBHMzd)um7T^Wh)s7;o?%26!4{vw@t>({ar&FX}
ztJ@LxR<I*>TRvCm*t`MdC2Tt&Dw-vZ>Z_J}%}#4~P$?5QIA|TVAtlR`D6n`6RLRI$
z3Re(G9M1x|#RC<8y#Sm9u+mRb(>#X5C7>aLD$75zT>pY4)ToF<!tPl}{-|yFZW#|P
z1U5kk960)(N;tCxmyEoqv>PeUN*c%_zh+Gu&A7>LR&yD6M3K(oo!hp`9Np0pi;C7>
z@}#+}12@3Q*jA3pnPXaQ#dIh$F?CT*{XC)S=ZP8Ti7B~%1)gP;#0>W?zu|dM2Kzy~
z7j#^tYCFj&`v$2LQLD)_(%Hhu1+{fG&WV%|C>q@jnOh+NtsCq*4!%}1>mCkD2w=K9
z|D%XADdz$B>-mgffSA7UrCN`6jn(Xqw$VZ2G{ka6&W2*7q}oXxQLA?ti7?XOEsYrV
z+_ym&lmO~~leBc8=SNZXRh{e-+ie0f#w|E}h^HtOgRRl>ExTi#!`dCwg-)wT@j!62
zOOnr(<?JMp!U-6g;?#WGpRrI8)As73V7q6%waQ^?V!$y+EAukH@1)L-qjc7Y{om^x
zx<uRcV$`@Vl-t5MEZkafI;Tycwic*^goiZInEnrcwYyS$Qq`|YMNt*opu!8^y;Tyg
zIWa4m`gK+7^Ze{#{(t|^|7+0G(sD@nbcOs`EHNs}QO<qXy|<JxE#-)vg8+OJeU_6y
znMLU$nBY@^{8D{4e&a2&_ra-#s)Utxg^4PZ3ugszi7A^hIj%DIpSW7a@<sMg{(V`D
z35xW8f1j!>#+2uTLA}AKbkQnAHzHeuY)HcZnWW-e>Z#)}<VBjB-)hP-p`9~fR7h?e
z-^K|WJ5D!CHX$DfBz(|l{Voh@yem~HFNjlcyW<J@8;3}(uKvnqn7#Jy4*1dPG6J=@
zFZaLckf<rt4}c3bpvf#waSJN8_<BA1_~$-<c@u{$6--&VGHt6gzLz@@B=`urullCZ
zw!?cn`_{kSGe}h*6Aac9EmGMSOzlooxAWHMx)`0MXcN>_uFtBoZk;VvR;z*tu5wwE
zkGM)6V#6)DQd=<<&V9GHhNoe-=ji{6aclG25_WW&@!5<;<l^l5!`1Q6HlAm0cyCRA
zac>*C3ITnJ{kaw4(5F|e#O=LFlZ0fsA~E6W6k%_XO-HlMl;w9klSmWX9Ec$1QY1Zh
zd{j~weDOm&=ycRpAFN!1dG}y{`=RvO-MaKzBmdzYtH^#``JNjVFf7D;$nUE{qSO}K
zgWn)f+B@fFeU&Afcl9;i$(GeHmgOpcSpNRtesz|nBX^wox9zH?m!a0nM@rU##Q8Xd
zf8514u?f#twopk*oan=~ee)K~A003bJ#o#y;N(<NF@A$}&zox@{eIBd4eY@Plf6Z=
z2rIg1onPx%Y7)kZY;Yb7AHluD4%B5)4jU(I1Z;!0N-e{Gs?tV_umpY8wYSrMR^I|O
zO)<rfK_`nEyH26nj#b!njJC4ws_3$)2y>^_C>;x;qVt86yYtw|>+?dY>f|PYbjz7b
z*O|+KnTnNLlu1IWq9-&XvpBpFq?joa<*OLW&`(%0HC`H{zv_;+%W5n+Q*rAT_ewWr
zDgALwje}G*zZ$qsVAms{)g5Dh*EZjn+SpD=MaH5cjcA%blnLaPWftJCw&{=q_jUzk
z=g0uh(C$M!=vwqBkvF$QEmpu4EREziJe^H4V>f~6KzU(c&9^aiD^)pd3l4EGD7fkA
z)w%$OXNq&Fgub57B{4jJ+o^Yrs>TE<<AqaeNi~K5p$!5UGB%?bYobAau4&B8dGi)*
zb-oOMZz#v8x6?IFnUqeMEx!eFv(AEbs&XyB#P&hZ)0?tevZq93PztBNygGk-eD#+B
zgxWi%3`n&|co7kkX#_WGI#Y6?jR{8j6^~Pu7(ScnUzGA)jdWE8XP(v<DcK8JHT7p|
zWz(Z)&q!_duEU|-XeKCs5)YTJ(`x+~LmkkSczVa@>3e(i(m-Wr2JKeR4cZ3-pVyM6
zJgwl~<oI0hoQYbAXc*@yoyJ-w$}`4v$u9kqoxqcvH`^@?4F0BTD1GAENxx^=q^jO`
zZCew?0?orvV(hjH*%UO7(K;e2)$$vM%C2TgwgEbk=ME+0&TKM&om8Ouo`OvVw8;5X
z{?q^AT9QXlI-kllJY9uXb%Q-6$nMHNI`)RP_bM`?n{DFBRqg%YP-4F-qFF}#6-7b^
z{2vvhKLVsD&M&%7r~JO@e2<gZcGl9iYbi7D<xA;(4NGwX@RuInu6ukAf!%ZHYi(`2
zvQLswVJ<4R?t=7x`;5)Fh)V^$mhIl&*RXqg77;p#)Ng5~Gpkp{gWa!TCA;oQ+GZuK
zwN|3*n+#NBhLI7K`2hT6O37*J{M)Rq45h7D8N_@i;-T2dskjk4rlv@9#v^MNbH3LK
zT+?_dno4|Y;?O%!93b$GyLOw*xVzTcI~&i)yICGj<A0Wa)k-Vo?gs6)Q%?856>?p<
z-F@A>*>c`ohiLYKu7+_K?3pNl!;*ykx_{l*6-G>83&c>Emv{BchZW&)7^itg=j8p>
z8=Ki@N?kclEeWSvs{Fg!I`+PXo3iKJltX*vorP3e*`T)N#E>?X8yM7RECUt`T?izy
z;M+P*p?z3?RtuMyn{2FtgkfSG9Bf-<ue)EvUU!wD#;q}`Y6BFw4<gTK&c^dfp<Y*0
zQk!w$Y^WvCXUZqB>Dz)gL2}!yvj}e*YwPhpi;R(%2_Kqt@>2T|J9atfWVM6n1P5RK
zAUeT8xszQ@V6>9NZP=kx+EwaW{ku31CsNPi5NV`;Tp79%lk#cckAb2mATdBs3Y?v2
zs^4vl(@Nrty%GDiiD%bS`>VOBu+Z1XB*aS2M0rIlqyv)}yjM%f<@*yZ^5Z0ybGI+<
zm!gOC9F&Q~OB%!QVF;TTnM@O~DWzi-D5f)h>;S!*0aih_uRtd41ifv$kUhPS)_#d!
zxtolC<bft8imlqZt2VdD$(vDco|n^SwkoY8oZ0P~*_G-4IF8B|q%t|$M?QGULM<`2
z%;J{4u5hecl~zZ!phdV`jSFp1*o8)Am{q${)lRcxBDW6BG)s5e*ogEl>%Ki`g3{jt
z#^iEWU*W&t=Sx#m+>Or=+cmdo)#~OFjZv_F{1oNQmsd7l<zDUC-E5oPw1>V5h^_@;
zqn-}d0%7BGA8N>C@Lvzwv-573k=2l-VdCWQl^qCP`;Iybq#VSqtW{dsQX5+**z;{{
zojqG=VX#_@OdY?bYB~-SO;u0PSu7;lAU6u3^Lj*cy5K42K+u*0afr$l!KO4eYu-bD
z5+~QZyZCmM+Gq)<k%OBaUDJZWj<aj_){JvLon`!%5e7Byrc4Oz4VV{M%2Ztxn&)gf
zgG&d7C~bq&f%OJ{w-j}?8dkQy22H*#X*#Z=V|p2P*IGsAt5}6wm?X=Ur4MQ=nv?-m
zh*4Nh0Rev^kGbh$DRq&MOHs(U9*JOo(_5CE@ac?Z3?u%$B6L#FVG;SWp~i}QYp!JK
z96FkjGAzF3X`Jh#i#EE?vIWIWHlC47Rq;zo-<MqEuQ|Ul34F-h*gXpiVEtIpsSr{i
zh$FBsYxRMem%Q$My0VEB#+-_^d7>mRRfyEIHC8<?<vF|kjIrvmxfyK}e|5Nj9!|O8
zE2;w`65AjK`T#yI(>+b~V18xmzxwGDc0x8FY=5l@t>l+<_0L_DL}4gP6)vd|UO3=w
zOsxY!DaYW;jc#cgVkSihBJ`5vAX~@A?3os4z`QMwe-?+}0V-y0l{niBUFj}n_IrBv
z>l|F`YY?Mbju^d*v>&LN%e$3-kN%S8lYTx=m_i_%Vu2;wo1$A+u2Z{>?I_*qD68z&
zSHJ*TjwyE+c>q+7u?snw@Vk@@ReS(cTO&}I$Bn`YA;pk{@GMO*+Fg*4qAHj0F-hdD
zxuaPs3A3U!uXNg)vYSF(C<ySBB*@OIZRXYTj<HN)AM`Jm;=RlOCZunFEkf1$8kk=z
z=$I4iBEFXvQns-wPB6=24ti2Tg}Bhkyp=391G;NK?-|f4uGBJ&Md{Bfy^1D+ld;P0
z(RCoX=jvCeVKWm@7l8z3>_e!_{%N-;L>5WWwVd@NXKhfry}M{bP#A#vS^0#fq)jeW
z)IprOr{A1V(!cIo*aj_s{k>M<JXK2VrzyQ;<2bdz3<|c^U`>a?LJz;(L@mq15v$~W
z3;_0i!D18js!7LA%pSXHpMF^pRDhw;l6V7*FB1&N01^i1p%1TMC^F!VQjLw>-&SB+
zN3cE&T3`H9T0dzkXm?C4t-Z2prvmenGC4gtzWi|V`rXeLZvI1m#(55PIZ9LvQ23U|
z5mtj0%slKwfoV_w6^kY`x3PIDYeC+0;mo;h=4=&hRS!Vvbs>imyI}vs8hNqm8SP?E
zD`>YCFW<zC`H{1SCfP{>I5h9?mdK8ZS3-KwM2cW?2k&T{zv9`cl5mbxj)9XhplqEY
zkCOz7*y*kpc5Kssx1v*J>=@8#pWUx{R^CCU)Zwyy>MeL(Epp*|d*;2ebz&Ol@z}mn
zaTGMkU*Afa7pEisP*`!uQiz>#Y(wCi)OcjalH4VjM$QG;HFebXm)TDQgJ|%r_vhP2
z9Eek!*$&lVy@n7Hc((>PM2JkGIKX_yB@k>@q|@0k^nM0^Ez&VNjp)WyL+Gq<CzTvX
z*V8rnmG19ckxr>P+)A`*|0{56><0%fb<)c?D4ors$kJKHwLgGtsqzex>2G^g+5<a+
zz5kAtr-omd4&<hBuxcQydfuvBsytJ5y^~nvi(n~RABHStDvt$CvY|JOw$h<B$#&g_
zWqa<LC9%SPifuXw;2OOagx4>(>UDjq-hO=?y(oq?!E=XF3>-*2JNzAD<qk1Uu2MDq
zF>bEiS{O37JQz-0madj~oD6~$smho4S?hKbT}e~+%qm(Xs<Nm81f+BuZOt#_XB6?k
z8DdujOuHT=EmTdICiuERGuP1u{r;PBspgE05@-s4Jz<1~c|jBMm*cl@+>-fr*sdA2
zyfWLxq|}hvR%#Go7SD3w!s}>wj)&<~byM&T9P}z(Ou>cFHW11bd`j<6Ok+Z^{uZ|?
zkd=99$D@ITVA*9-jN??%YZT_)$?sdJhX$x843K;Vxv^EEpe$1XWZy<u252C{36m-d
zDfQ5QZ%$~SezQX!m?69CpP4UeJKM8wpf2@hNuBXTC;ZSz)d#~&57aSLZ#-<IiB@V;
z0)O~-7J3NNGoxDk)6oga8hCPye9o=hX5Qb^@2^8&dO%-3FFol6wm-|;x#W@tBmPb^
zQ<{4Kwc6dHxklQvi#D{v-jKKamJz|H9v`-U>E~$W$|r2@^kb-W6%obIiSO!aY1AL7
z&-{z5>M4dv%&;Mrxu6;<o$8bhDil?MSMrJEpDs2S>d{;0Fc;S`21GppQNJ9VTDPx;
z^t3$Hqb3Fc5gC)pDwTB{?}v^7>jq9yzl!p|RCa1XoUWHjc(78e%!)aUZOmzWlz%{f
z{;835emD$zLHocHUsvg&+|gcedFGup%&@(n{RPNV+hJT1uNQJIy}CWkh*H-Q0*xjT
zPE9Ae3)S*BV{}TUJSq}KhAgBKYp@+a%J0C7mofFb9bw-T!aVS7C4vk&&qbcmnNqsn
z(wXhQ;FOcJuzChoyTWRu?&Wkws;qQ>ujXCT922rY-C_iBikay#Pc4XD17Z!I%3iSl
z*->FH*tfIp>RCGsAg6g8(gbr&uvB!Z+9$|hIVUF=Z+CtfSck8uJPmsAkV!zgti-Gs
zCUKZ}t&-kw8oi_mO+%L92s|awo6BwDXlCB2&RiAhQURw;W3DNsCZoK^Ga4p;EE-yf
zZNGV*gNta=x;%ZUQ1AgWen&fQ0Ug%ChP}^^4NGsFQ>_R+T&u9O8hSd=8?&p#bjao`
zo7YqW&MCdWM$v)%r`wIw!Z<V_%AOr(T1urtBgueVnr>(o&VhkbHr194aTyy^6s4@B
zt&3V3X#1v)>S0;4(H)Ja^#0v{jHQm6V_!E3oh{!oI8b&fmYt^~KF}5=BtiD|J(cR?
zZtH^>x2uEII@<MIf}lc5>fAwuXDS0BD^fCKBlJfxvS~|KOsHGEV$-itV@K|qk$3&2
zFA4}#O<sfgx{U*eRvVRxCfET+Ww<_w!22Eock10u9qogblW$w87E5-26XnF6VvB0i
znP;J%*3qux61WA)&f{=a$^?XO-C#Kjw`Jh2VgKC?+8TnFKUdMl^hE*E>ZCzR9Y<IY
zPCl9&Hz-(5u}lo^)6`I9rzr!UYX=<EoM_d^co6IdT{uM7gQRVo>tjTxy$B;Z%Elr0
zx@_Wb+b7y05W3j0b&TzQw!0YWCmg7)DpaiRRk7Hp!aUgfW1zZ{V8))7h)Q~>kDTYe
zzph-d(L5NGwOKpcLp|A6RT{GnayhcD_Dw}uF6$tHE<rg<MUgSv0#d$@Jxm0;>s8+=
ztc!+{1GEBkbr@5#|E*cHm&&hY7~LP!D~2uwTGfhPXpvG!&%zsjpcZ363{_!$M*}p0
z&vudfHH%dC9vV(qGof>wR5+nn&<cuQV_@Eom{)*F#X7ac1pFZBP^Da;0wgDc=7imo
zZpZ5ZgI~6L&I$HPS&|Mrkn6jn^Gfxzfx7WWP*+55mEckdfM%NL!b;|-iBZx&|MB|l
z>aCp8-{~#21Mk&;46MV}qXM;Y=9|%!gJ+;AuG>u0QxiHiHO_;MO?sBY)J-jF!J16D
zjvrfr>QTbSD)m7e5s^nMgIksGF$62Bo*me7+rsRWvO59hY?jQ+{nWhjPtd!qi9vf!
zNtgx=Fgq;`G#X&->_KhSspf<ZN;P$`m?+wQlvWPX5tI6Vek`U0TJhJ_nbc$z9$<-J
zXuI<A57$0#AO@<(EYtmAYVNxwrZvX}&TrK=TopF0)U|fPXrVN`(=;ccb6(`8Nvb^0
zluq4?-dZrIV(k<<8$b|jSr%90FLEDdI_%u5)DKoTXqPZ3+noa#%Ut%hgTA{STXw7~
zXZJZUt`nYrjs{-cV?_cTt4ygIl}l(Wz!UeO!M2@@!TU~?cgS)3{WpY<Mv#jZYfp*N
zHn&_ga+?6{49Iz!L!Bb1zXOrL>hVB`M1dNpb~IQnnDd0u6!g%*&dj1sx5R^ukPg-X
zx!-QVK_r8*AfrO+)wp5tKcRl60bcITx{`#}4LTZsLM!MRnq7)J)HwU&$t9$zDM2~-
zyWlCIMLv;Vgq}sC6?FF=fCfQPhL`7AJS7oo+g2lXMcxs7Z{LUo>2`=@JX^h8xcW4d
z3fi_a2SctG#0SbbT)gTV87F3f3?}p?4R4CsX`HFNrU^ZzIhB7qu)C%F?v__%2GPpx
zo+zMyu#5x1AZoj;F+~tms=^KaQAoWTd^Wro+Aoa!h(Tr>&lc37Hx(Dj9n@q96PjUd
z&VE;4LP3TFMot&1ZYMhN$pybtxQ8Yf`E%f`p<S~E6dI%q3H=33_&?ElhTEXSg0flf
zJ@2gEr|Pso6~@#RWjJXcs6uSPJ=rp-;vhhO=g<IkEh%UvKINfM<{sybgSt0VLk^`|
zp#6!cTvg}Yef_Q{xl2}JG8gY?oVyLxQ9jh^dNfk@C8}d~awb%QX`atOjx3x_>lh^T
z)je<+NviGUw0$sqVNjQHhjl3v(|4R={XY3`x8fXzkE&K(Hj0#|jD)G_ECrJ@2woq5
ziwZ#}rVqs+<f-5Zd&9@7`Ke7D7+}7Jg=`YMeK)Wh<~qwb_>l&1NnT}qI?$Hu`raE3
zc-w`!=bElFM_qsoaHWD)&_1kr?LiXUu}ZS`kVE$Peo1<Tq#fnp$DT5E9)^L6JeF6T
zszxX}kT_M+OgYTU4&SO7{lNvaf)+x5XdC++q~3QI9(uq3y2Lh!-+bD_Gh6B?{E)?s
zLc{4x&<E~#CW#hMJk5jJ+CnGaUQGQ5`7ANDm<N@vq!!k`hPAuE6|EfVNceAJoif+f
z#yLO?pDqy8=X1E%c=2ei=&h^l>x$NnNa~17ieLbY(C&xo8xR$tG8x%;HDRZJwpTwj
zcZ)Qof*@w&I<YkyOKQA@ZPKRw@DbQ*Tj{}6X>rnewdk*^GgkW2XsaJ2<@YLij^=6v
zQXW=J+<d2ZXkeQ<8)KwiHxM=`%T9$#rh_H|s`joUo+gsWWNgOrIFE0conXgIu;X0i
zQ4A%Lc_c}n${8R-NE$%>Kx$flw*Rag*u8nsUdi4zlm35L;=ab~j0lP~mQ7b4=XX;s
z%tCF|Kz)D;^n&)jB?DbsF~R5MQfIrT)0wJqV2~Lrr|85k17*Kd6rc_{U169Ez*cHn
zX!8*Wcb7joFncB!A8@jLs7o@KWDuvvm%Nf-2uf&?LQM;_P)b(pmvNDQpiP1=YC!<{
zCChV`)upj{3YDhKP}$Q$G^xBO(*wk}G`k^eI?Lx|N@rRG#4fMD{OY`Hst({8z{|%e
z&nGN{+$OkVd_0C#rmhwQNaO68DGY$lNpH_qgV6T#y>Tw3lUxl_%gb&CKo8?)&*Ems
z$&ou)I2SYlm}a+^ZtjqOg=F*K_7_50@TyHeZk5*IEhFJ$ZeOzbrT)x)da8_;W&>$e
z>XtfnmF9`O7>!60-!S7vjChEZ;^~zBlc!)fXE$O8%E;zBlDdwIIAS|0%SzXpZK^?=
z8BbU+$*0M-T}G>B84sV~o;}01l9Oy^t3k;DdJ=+ZG|&a$x0Hc@B$wB9+kw%pfuYVo
z^JVU3L@DJHx)NJ3tp!tY6QGsmCK4(pmJF9l7(1341O3ndw=|{Cpu+-`baX8uf&J&D
zVsSrgZVs$pKzmleH(<v&Fk^JqI1l68ks$W}=5?OXn5kW7k&5x8riqwQ<1LI*2C;h_
zu5GC7n~?%&TiKg`;KY-~rX<(vDTg#^zx9;B?^Uc!K8a%?>Vvp)1u;sfUEEFLoF$5E
z_$fMd!1DQw{ovZ126l3WPW2WN7n;shti!0by9yc3b=!x9YR`aB(Ts&1w_86hbYE5d
zAAJgEu+G9T*K=<%xt}<JxM;$V8dgK6PDYXNrBEJ`^W(RFL{b!Iw&oJs`|-1l3K>+Z
zJq;Qt$@y-eoMvOD^37ah5Y#|`4kVFwQcI9pNk+?ynT%~nwAMv3gso+l<1&0ZTi+Ni
zw}jotx{Hrg!Ii>3%NSNelv=@9Ni%j7ljCR^mksbEP4e>U?D)^;7eA7d*T)w>p7sCm
z?Ah~S_G06I*|XDkKVMv*zda*w&wqS<O<tantF!<8{`~6fl)QR(MUF4X`^z7%j!)12
z@b42RIK@uTcs?4mRJXE1#k$5R`K#KO4;UCWjsCV({$^WF)EU&~yGU(b0S0AIBha81
z>;?CO0ILb>Z)3R+DP&KEH+M9PoQlHFo~cR~Qe;SfBJ<AHpcNbjdjpum1y^|mBc3Gu
zPVURIXLe%Go?*DG%8XRa1qgXYuC))QM0Y1t=uD(PkUnGNua0^9Z(DAmB|{q|w%o9}
z0Fxs?FU=tq3Y%C&D7XZbleN!scpe6F_H$w;ZPP_2#W0ZH2V$Z#f&>T(P7=_z>B>rP
zX`Enxb(5Nk8!f1fYOa<gNRHpL>^OJCFWdat0cT4Tv=>s+S`MR>_5kDU>kNLiuSqJu
z$~))=(GS}BnjG;86JJIGyIPh27=}8P#j@ofS_VYV$xgMW@XpqjyoqOEh;5E|){KVb
z3}d(<Pn%7_a#BjHMZ)vc8LC$^)C1dQM2XUW_Vt|f*6w=8y)fh6g>F()JBzh21AUQ`
z*ac|QQP<JNI@;+3Fid9Y;aVWt4v4l+!0Pz=DUcDPOtS0)*tC(o$F~f99dOvn^bkzA
z$b|#h_TgD?ffg6{-2AWuZ+cq2>`!RMqLYNiQ@3NLiWY?~FK9Gzf$kchyKBs>9rRp(
zAYB8b?afSgWy*Mgr7KipY~at8sdO|HD=?lS7oMsD^WaO~VR^V?To8fklv<=<Km)(E
z4tkNqTv<tsH4{)13I=Vd@-<p;P_>%it&FCT`&K-{azHwcho?-nJ<wK|%7kKJAKyZu
z0N9YV+~7R68@m1q#;D{IxjiLHA~4B+MUr;(_D7rvoD#-Rxcg|(*b2?spy{+CQ><r$
z5JK7kIpOIoQ~6ffBO!n41eo<>TR*zNX7Y({U<}xcVjXZ^t?Il^dHOWhy>0C^GsZ;W
zmd&a!m<6y84FY=jhuYx{o9`Gs(RQbE>U%+;7S`BN9!G1^H39g}a0h;lA8ONo@pP8N
zqq(6Jc`?JZv<c60hDRFvo;&D$ZNb{)xV_3<)VcUWUgTtgo-+zjIG&vcBT`(THutSl
z79{lbJia_vo<l3(Atq)llp?lMGE+yGIV0@VjIas`={hh>vYD^=*D)vTPyH66S-tK>
zo>RdIl=BNu!EoIL!+G>ur<PrREFt}Xp4zQxyI9FrCoGxaE}mjWypt9tMe>MGX`I#>
zY+#BeORc-eMh8Y<d6L%HsctEf8#nYrA|h6CCA`RWDGqre41)`N+lqT_%~q{-xNQf7
z%}-iK5^D!7nD!Mz4fN7=bi=-vXf9GlsUr*-OUYE{z50C-n-glLwrlf$WlB<4y(yHY
z<owcF9e{r{F<{EJv$nvyHNdrDuw3QSd973Pn!2%wif$9UvM#Ub?<LQ22d2p?DG7vb
z<Oj-aQ<@|VGG$R*Ofe*oW@A?8_5;B7Y#l*eFmj@^H-zI7@wGVzCzZ!Udrkdfp^%%{
zwy7-Z2zaev*8y_qCwe`9blTSNsBd^yBo1-y+T64n=}E=AqFjjlH>%BdlZ>J)4s~r(
zT5ql8cD<g&DjKYb(O_jd*tOYe)j?`QdL^fLfAt2A4pd(g_~QWG^D>x_&$EOn4j&Bz
zRWLACh*!3bs}e&FL~~2mv4^!B^`Pr?Z(E0swH!Lu)e(Vn7X?9o%#e~c*6SPV$|oeJ
zV;6nRt9DcRb>?9=zXSrWb!PyGB7@@PX>*pbX)KtoH1CXK(wf$xv@J)^=$Kfb`4XdR
zt?o$0JPm`8XY7*m1lr%aV9oAXDM3Y~6e(y>rjF#muelD<QNtpQ5*DbA{H1!+IDpA_
z=q^@E|Md31$Q0{;tGNb}j*8Veo@Jdw_vKRMnhB#3=oz{^t^=WMk_~)^V7cX9<y2i5
zCe^^9P$!zl%iHG|r@Y*d+ct(LxSjo#Yqic%9GdW1U@7ht_Wjf!4~MD_m@6ejT!IjB
zQY*}Kf_BdU?JV7!s)Xl4(b;9m17L<lc*F8DsTYd@Mma5i$Vo!DCg;o%2d~&Hp&^rV
z%94R5(Aq<OH)i>OL<Q44IAwRL%G|UBylW=iTI}9Mo}(?tH6lHlCTBW*&>g_0eyw3E
zJ9H?UlPi>{)&%vg7R5lKhl1Y_W~*-DN{}h_rInaH&bUMLZSIagB~W?f9$BaQPbaD{
zq7?tpC#_k3H?nh(8@C<M2NtyDD5^|LZE+UoU2{ElOPYhp##Tz2P0y`l{n8@mO>J+m
z>7vHo;0)KRn<}EbAMEYCvse3$?(&ea98&_!QppU~DpVAelt|54lZ2+@!bfRyU0S}K
z3=K_BI(uERRfw7+g6vaCrG^j~t*hy{N7Jo=jZ?pWK$N*ej45SAcx^XKi(?mX$8O4E
z6S%V*Wdnwrt<hT|J%)TXC)DKnqhy_Pa(s1t{_6PT`rXxEKD>VS_6&-wmn0oGIb#j6
z@6h4jZN)<XhR?uH&LIl8RMRMA4I|zPW5-cFe_gO9D7n*FwtVZO(Ecw^PpY7JTQP?!
z<T6!%f9^1_f5G%#1kX*^wtwkHZZEKX@QmgYtlg@jDwX4e<`ZG_f+mb6`J`-$X)9J^
zvp*KiscN3+W6qA--C9lpO<daYhtJe?-+ur)vc@`?n1kf4VYg-t;04y_4dLBxIZ5~J
zuAlROZ%c6vV;5(0iQeTDA(iuH6gi;3=&I6xVN6i1*cqo&GmdN4MuT=)LDF$IHgN(K
z4W}HHMM_DGP{ov#2uQFWajpUxUFfCec^DC(O?P$bET}Tdw~q#xIClUZ*1!YdDX+BN
z(Ozf~r=hB+bjLDg>VgBEbx-=B2DVF(clRY%^eoCcED;muw;f>Sp0DE(IMC%h0ED@J
z(Cw~|I^~sGhQl&9?+~DvD_AnpRnOKi8r=_DqKv5N@#af@ZJUO<j^pXTaeg>CYgL==
z5(v8v1V6o@mM?`gr%9Yrsbbo+Ko?z2`1Kl!-+^O-ZQG#z65CMrY*!AXaZ;Uxs^bL^
zN*uO(d?$WVBioaM@(I<*DmYQNqopu^9T>wTHmqX?I&e$@EvKvBT6?8S7wO1jJ|ctu
z+0{>HS0DcC?VAs0|8;$J{Nd!?#l@Lq@&i%`7uTGmi1u2TVp#j3O&w^jVF%f_hkR%g
z2o`H1-r<73C&oNdRSV(fKoB~MEld;n-}7isU2rw@`*SSw1E;9uj~NZwCCg%e9_c=?
zc8py;#$uDiZyuvt9YfhCFm;Kd#UK3u+Hi@oq6K2mbFCBVSO6vzzq7w^I~TW+oOx{|
zTe_boz*}oZ2I~&A<<%r0tS$=qVFWcYi_epU9rI8R*<NHy;UjIk);=4Ig0L`3xdVy`
z6>09IEueE`3u(}{^6Mm!m9=AkpZWmm?g!i4R)V)Z84+I&YH)J(gF0|pFm}Cz_f0OS
zS|UjXg_*>Wg|Sxy<H5u3>27lpf=RVG@Fm6tT@W#Y@qL!qn&9A>kvGOk4zZ3gJCez}
zS%dTTOv~tnn71T8RhQob(XTGdRn(@B$;sN5h6m=bF;QRToefGj1^$13RRSdE&Sf%y
z_6?vFmff}xOyYuaxU2}lT<CqJ$wBVJ8k5)y+Fb{R$$wFnxPv9=T4&Bew};yT)&XuZ
zU=Hoo`ngZ~U5FkTNSOeeZ`d3QEh{)sOx8=U3}p~QieIjZn-6R<`T$}$p;lmofgZ`6
z#3M4Hw~SC#VAPlx77lHHa%L=TP`u<c7I_vA3oQ2Hw!_tN{(%F>;$0cepXe>sveaht
z)V%@;ho)75rZE^D9t}5Dd}nN9UR*U@+4SAvZ4~huxV9G@Iv`9abLY^-6NX~^t+n(T
zw`%DoSy+cPpx&u`XsAXKCPm~|Mj>&E6@qP&9OlSbs0TGrZBsmdTjka+5y~*NEd-Oa
zu+E*{3l1y<o3e1=@{)4jGE)#wsXdB|E-}HQ9POF-_ieU<Qt(!suXFoNN`c}t2gXP@
z;}M~09yfK-ZCe>2=e0*<p_+sNhoqRuA}=J>kA0PUlNBjM@8~XlN)Kmgp3Tu$4z@O7
zM>DAf`<20L)@PP~Sd%;1I(_-!{neXo2fIyFt;HQ>;8xjxIyU8?wc8?F7{)cnN<<J@
z&9Kj|X`Y!RB**%Ls%|miDLH5zw1F<M`w1;X&LU?HHU|Hobeh#tWKPI8NbV}?2P`IX
z*9y1R3L?@#R}9i4_V6CUh+U8LTOUSUZ$9Jjb}D~Zm<NA<^IE7m7zHL-FTGbozs@9*
zg~}i-$9ThOG*lTd7WRG(Z0jPglt0r~ZVT>?_WNwRA=Z%&=)o2l<hEl+>;27-v|jOc
zIS}^#<~1X8Z<pEOS;m^i>Y;X73DQsj$tIZTcWE|^^9-wr*#tiB7a4Oys31l7897Tw
zJPR2V9U)17JT++|x<_3o&sj;g=p2KrQt)i*!3Tnm@&S>;+Jt7&z$AT}%r<vqkASSU
zc;T+T8f4+(obK_}9q1N?7!PS16>?i8Os8X@*S0wl11q{$ch(7PaJC5EUpSmSciV)n
ze3O@pWfp?%HMj5SB*!y3d(sJ7ep7n+PN~xyyaOVCf4^&jn*5eSTX$3td5j^Cbl~$q
zbX9IAy~CEq+ja;W%-{AA+9+>E2pJ4%c*D|Yph%OBr!yr!SmgV9)C10Ft(wtR*hV8D
z@7Zm%_wRofJhygp6CS7u!d;w1A<ZJU)>ccG2L@u`oyTCJ%fy2~3-xtLsm3H0-Hkcy
zgj+*@zNL!<`*6z@^I=)L7CZKwmO}dvy=69I*GYlsd20ycot%lhS*bnQ(uFE)_cHTR
zU5mq!Uk^ew+){2iC(}4RHu*AqMA~*3n~1RbNp~%&-F4#fI|~FaRalk^lJXS#!>uxi
z6S?259pp^m_0`Mc6D@bt3VoNQN+M+Inv;ls-=$D@OsA8OKb^ij(QOfUw(XUWa>Rfs
zz5n1ePpCKKV6-(xh?p?Gl>&)^*2aH)-5);?bmz_a$=OB!?9-0XYPDLu-Cg*9tJNy~
zztd}X_x_{3yT7-;ySKaF+xw4JyW8pP{Re4%+G*5(3MmKwN9#9_RbJdT@*xj>6svrH
zquAt<C$&SP6SNxSPc$tgZ|}5Py9-~E6ke57r!Y*wv+<6O+27faFJ7Nrz3r3Zi&Jv)
z?&9?P`uyERA5vo9_s<&S>g@9B-Rb)i`E>)HIz8`SU!A{vFTVi*?SPz`+N>hjP_x-o
zE7~MtBDIVu)D?uBl5C2FX-tu76B*KfkUYwi{%I&s(3Qe9V?a4LEJ!n)lfLfE(v~_5
zFUAvci21~^Fy^81ym(fbSjcDdEFMpC!tYX+Nf7{zHc<14XYoH_JO!uj4XlDB$T*{E
zt|c+G56%SGm?q>5KvyPFq)I+jeXc;fRI|V$W(o|}LxG>9_y<F)QfLj#{#JE=(O}XI
z0{sD*Dv>O;R-P(I>Oq}fOLH|~KwjzEuSGWFf(g5;=D_tCZ7L|6uoOYI;%$7D-?6Nr
z4Bc`Paf<(LfR06#ysMz7JO{Z08JW_Qjv1z0kBBJ3iJDkL3cIlU;T&gA0k*p{cd^7K
zo{_CM-p1n*lX!*^GNXJ>W-Nn$RFkc}*8jB)!$~0-H(moOa*@*%Q~)udnG_WeV!Ta;
zEM=oOjA`OScjjr2{4c!NBwIX#e`TB7?x{oaRTSUGQ6XVv#KjK<fZek!j6t|}6YT)c
z@DjkWR8S4;JZwV!h%%<lGB#pahH)uVRont9tYRVqs!Bp1Fq%^2&${A&BIstAdLp&0
zJBePHYe}S_-Y8{wAQ*h0q3?ewoWUU<@1Pe^b?P*o<98VoN@fE$p{l_fQhh=4jHbfI
z$VpU|-y}u@qy)DIz%~2@Dj20@hI~4UK|8=kNw`cKSLZF*rCuQ<y9r%O7w_(rMKOgk
z7|ybP=Gje!C_v<*oH5XUA&F`B3dE^ihPeRmOdF?ZgG`}bfRShM{yTK3A*rcEKx_py
zoD*v3f~IaM&!PW`B5%s77GVK0Li3zLjVTqGDrc)eY}v$1FF#S0tvjC0SQ^FmWXKYJ
zw{3Uflx6WP1^1`i5V2Xt069ke9;nqTNVo@j;zJNmc?wrCl4D4J?9ccVX_Xv`XagTs
z^RUE#MG(VH6Oysp7>=^xS~ePlC3MI${TI*lF}t@(0h3&g36|y!470tP@B}Ue;aNP6
zq26ZY%&YWR)2Wen{TrmbeQNh4HfxLM9efWPld&m{&HaQjZW2@EzBI6QUdEC+N#gVd
zHf|WFfG1M*+}4MG4u!x*Gz2EmaCoHI)XJpf?l3;Gr+y+yx#ID)Ctkh-=E^$bnGMvM
zg5srS9uk;$CV;~#ephcPtcvFN7S9$=zTsSo9IH6eB++DB6vJtpE8?N$4!|y$ITpQ0
z?evE8I<Z2Za;B>JFXk4mpaRAMIlRR8A)C--MEGd2@Uj|zw<nusO`8f9@_R#;`G`QV
zos6e(*pR0%qzT~BT_)d4LHH<AZHkk(z}<9aH%jhPF6?E2{TGd;tjN$VcMP67b0Sj}
ziI&777Y&zX8BqvJxC)nqV`!TcHGoH|C-C?s=R;}5$Xf2EHykqJVS%&TP;4s}VIhQ0
zT*n+PEk^!-3>43@CU&nk!C$M!$B?ID7Ka5dL^3B+n%$sP%ScCB<YFQor^+@BX9OEt
zi;0q0ZC>!4P~zUzV6%FKOY*f@w!VQ6iahQHO8Pi04Qlf)GZr$S<ioi)j=h9}{i9%M
zjy^k{%{a1aDeyYi4+&8xAU{g6N)CHsmaio%(l3yIx#oPaGUHq`mnt(FPKdKXM3Ru<
z9Hlsr3;x0jLZyT^V|hUnjed7LOQO42${Hz8n{e_XzJ))V;e=*msW|aDP4anjlrh#I
zah9=L9zuw1nVV~mI5gEoZHw8O02NAS$+>A?rdn||>^C!(A*&VejS?(ez0DQ#4J`&?
zxiVsZ4Lb+gf(O)f4(O6XliY9rbhg-i$YwcogUR(}gbAwN$lGLwYjsX<N^e*LBL$?C
zrzZq@G#`yrkwlgx4fWr6I^$W62V>}f5|oux2xLaD3|dsc8JVP@*({OjCWI-#E=$^_
zrlz7`@mXha!#M(Rch}I(l!Z(Pn#FKCM_HVIj<rU^V$J*9i@znd2~D78m{I_zL)|AD
zd3~IfU(gHE6{G+Gp@FOv^8CrEA@1Z+XkHhP^N~D%qYH^V&LvKpL&@W@ia;4t`7;nX
zrMPcdhGk^yj0@3(4TAz5ypZw}{vD@;l7!xgBF^Pf6E-#_mi6SVOi-eV%Lp9s1e~~k
zP^z|t6WYU>>t*Tln1ZC5gTpwTmoQO_Oj;RLH$^KN_Kqo*r==?74mwy;;|dj8U;~e`
zLO!#*F=p^aND6iXa>ZQBPyj<u>D*GbG8KXtDd8*n4@r4&BvNdIB=v^wqzM1#h9moG
zGg0lOYAIR6szR_K7PY2~<)sp4mUbO~Z5X|38&_J0oQ&ms<@8YB$XFQ9VrWU}ioQlW
zl%L8%sY$SKPwabOqk7DtGbS2ttSBw@D4lo|(hOab(>RrQg4&~ShWDz5OPH$0nk`M}
zj~qH9XDp|2+R$>dqr!uBkj^WMa|Sj8T7+mo420p14TaqeNfsj}<)(%sOaO|1=JvX&
zwV?^3W<F(->Pv1&Jv9uNoGJr2V;N?}adqP$0@Yhdl~wzj7HwnkKz05~@smfrdGYT0
z{N!wtKuQF*ViI}`DRMjGxVOt80W~+Jva@hr4k)d9Qm9m*s?lkrW3}6=Lv`KlS40gc
z11<!X&{$<(9WeDfT)VG;Y&0i-38O-)Q?8X>y<%@GB=L$PJx!|TX!qLgkcU-b=^Vay
ziMfYl?!ER6P$V8%IwM);*mA%se4aI`yG*sL=UBOvZcwvJqtZ<Q0pb?Qh=VO9&Z4GV
z<lLN13WaZzxfCoI%>t~%$U&DD)opgp8-xc`rHzq~CXVtdB@}-;kuL6k6~&{uXPY-{
zgGQ13cP8~67b6`gdg^M2R=Eic+<g&89_oNTMIm{ZrBN|8^?zK9(S!x{KYg5Kng$!}
z)DNk>Okl0Ts!LGhvy6YZF^l{bwOeGh3J_btSdRig$?)YIg#=Pl@&qC-q}1w3xiu2J
zHSN{7j8x!;T|FPw%%)*~uZ=E8T(63_);V*P0G=G$vF6zcRJ>Il7dBFN$fqbuOFZ(-
zGDcG=X#(DX?18eQD=&bqYNbFCkoQ=gP9B;rxt+`rqT?Vj_KkU2igb)wju~sA>B>s_
za>TMB2SvT1YkgivHB(|1Ow&Oa1c9P!q`i;${sqtFOU8Qx{AI|0Q7Mzxb`0vBWFs&&
zQOsB-Sj5l~B(H&UBx)d(E=->bqY{lXhKN5`Hv}{?cF#hG!~@|q8)6$PS9A~M3+M&p
zS_>dT#ZhZH+SK9$k=w1nq2hF5($FDCkt{l8!jWi1!xY(9f7+HSDpg-0t)6kiTAh@d
zYVt228kSMPQxn#IiE+X-!*Die-YLQ?9;%}-N=H17tM*xaoAkLUZcxJlaHsYIavBRz
zomeKH`k7{OU*_f#n5housKA2eEmbT_2H+GUj2YHeu!cP_b@zpx>K4?uq~WBjqPkDV
zx$qBnn?M~ZvU%Jm=lxCc^0<HA*PHwE`St5}@2|<v$5&T>#~0V<XMOVS%5}@Xdqs{f
z{zCqIesS6$EJhFT{R~3H%u1jvAd4I`sl7p9C#9NB&B+~Z6(~emmBjK9xjw&sbJidi
z?=G6>7q70)FMd3Gdv<Z%AaBpEPF^2hTpzzYe{+8Q7eJv`=hqi!eGDHsRxmD)uddHe
z-oH7%BA4%fuP)#9&yd@qw=iJ|G>4t>R6rF#h}>nU75eBxXS0mYvRI1eu;7sjcLe;i
z6xXqrqP0<oVhXy7CfBh5$}V^q8#Nh;y7IGvHP&^sR+U-Ay@P<fF<UBMdK1%OoPhKE
zTykCly*V+~8DONGBw*~!CyZxv$JC-dSvkZ4Ta!V5%En1NW@*T_8^+t+@JzYJ^7A0R
zZ=s+dNW_wO2m&2UZk%x;jNd{JnG+i30=(n(_XDY?$3A#QhWf}7EatB)0vMD%rDNZQ
zFW=T70X8@Q;&rW&Elxv7p;4{`DZrpjH-@NN0IDgp>8MC(hCXx2#SO0(MUs~lUD(aS
z(3k>$zll?Im=0ZaEe2aled2mna@h$-gdKAp-NlJ(JG>zx=d&3dvj)fnMXr+NiwwCD
zO-4m(g&SakHIX3D`6COx{lI~l*lqwGN&&rWh*L0(F`Y)YF*r$8J$^1ktTsUhHz@FU
z0}can97>)bcR^ELIkMA5!?_ecPo(JXU)QpKvv8@qO-rHSgmbilf~C`Qwu8-;P%>gb
zPa04VWCraeaS<~#gDUDb2fSm`G|tU^G~U}p&z<mLqO4FLx9mu=BPCySwP0IetzX5$
zbN8@-yykaO6GBzeY#8jP1K6$)B3jbK@rD?gTe(HRh^xMqgw&Ezm@h~=){9~(y0sL4
zIcT74!YcU;=(D`=c;8`fMrLm!HezXnZ%lX+)tJs{HU&zgg=@2m_Bt0?X1!&~a!iF_
z&@NLMQ5#je@o=t$4ZEPZ+yT3%Mwq{Iu+b44&0G+H&n`|SU#$y+gWr!YFV8Mc&;RR4
z9-%FQi{T4y=$`xyrgCR|NraH=6<=t7s4xoOnxMsM9w#ir@<^!7HLNBN?Ry1bX_#<<
zM1Ppk@P_4rZ2t1=rd3iB8ftDg*T{s4iKz8Cnsh+6uvD@#+BkPq1OLM|0c{=BR59U2
z5@7(nnupR39JcNFW}$cBJk9C7afE_Wj}r*U&kUQ|n`VN_VW5>ZsNx8CBLsGT`~aXp
zU%v#k3&hNsX2#mJI%GCv1w5pBCeX)wbC$(mxRx|{Q}PPm^QnSgpzj+MvGK>Nozs3-
zW1g`_4w{9N_*PR&>rDJ*KA+EjCBNuSr6n)xukg4+lE~4SeDrC!0ik3|K44-lx4)Ml
zv_7KR<08j{ty5w=R0EdcB9KOdQAWgZf3$u+1Zx@fOm-TPX|B=zp^#G*|J;OlbwXB>
z&=<)bD&}m%wNiTfrKcAQ?}0@U_-_=ywcrig)@RI{f<|)Fds0_9BV&Hcun@Q_a4Ktw
zmDfdeUBTBL`~LW;#Q&QvZ=Z6E<?;Wmy;gg_9RI(&-+he#{~Vtu<WH|M?w4eIe;tn}
zM5P#^Yzb|NP9`+VH{6a^e|Ywcyel&2XA<#HD3?Ffca{QhkwIbaQYi!x=PV#ES;Fst
z6F?5|C{EGKHlzaD4LHr7(6|RB9)Z9Xsrwi5*M#Mz0+SdwCe=W$G*}}<Gzf$k%Q^n_
z+<@}7qKRvJeN4`sdf&Fqk>n$of0!2X=}ySgQBp`%ct^P<cK-D0>fMh!7Wy9@=uhm|
z&bLiD;_G8~yzM}4`vuS0(X(gdRmP{@B=>{%ez1#L7a9@e4(f@!g~~}tQxrF_Qf7pW
zG-!@8G9;VIvrxao<B;u@BqXN-V_!i0z(UKx#>Q82fZ&m@;uj>HU1kgzf4KZckW-e^
zI1w8g&&Z!`8;5q#KK$dxGyfhOd)c9g;QDp2c&aX9a^Vs8MdPClDDyo_xZjat5|1az
z-0gU!wvu$cG5{j5?^CyXnaSZL&z@bpyFLSy@LN*bPHCn>{kqMsoxxMD;R9@ib6e!1
z6=itx<Ow7-B1L(vQ#!H5e}lvnC_!M)Ts>&phlvItQmUjWs%qQ))p^bWw3o1yAi8Z7
z7lfR|EX_AI27|$nipj<rsiyLsjZQ!=*nQs6rJAV3+kX^{yv3aIKeIX6a!*(Zi^4u>
zv(LA&CbiTGVkZntm6nZ)4D}p)aKT15AQ$|uK?<y4pell>O$h4Ne}zxN<l#)zX{lqn
z=H`0mrmdWjtyOh#)LGm@LW3iJB;Aj%+0@W{Q37{%r}SmB3FiA54O#j5W)nBqK4DjY
zRgU{u%&b)DR&AnLoK<I?rMY-7YQY?Bywcqssy}^-m5<cG-VZPy7Tx-&ts(Cn8tRv7
zGQY@suWU-XfDcdce|p|_m0cxppLdbjX6(BGKahD_#yvyM%hUhQ|0E(|Y(@@S^4~Yb
zkcD}I#GaAaZAhAlJhmT7T}kvBPiwe>Cx=K9SoaW8W>D1CU_ch2>ar>iYg$#pqlr|<
zfz^!cqk#?X8Pf2E6f@+9P&&w|a;-|NAP>{AUdpGhNm^06f63mPP$xCmkf^LC?Vm@v
zgXDtKQ17mM|8Tdzv^e_s`OKe^{ujnOsycO^2)C5MZyDnO{jc5ac1rr+e(N#+`}2IX
zH2EHx+7+YG{D|aP!8RP!INBh#v-lBt^&3AM#4Wde1hzR<x8z8*vLjj;#$QdB%p+qi
z{zt(?ZvG}@f6AtEret&X$9U6x8_tR&vf0@*9=~Z^`%<s^(yshMisD~*3V)}!^xaIq
zaz7RFhw-NR>t6l!gj{oMk1yp)F6D`g6@sZtOq%5KxZnTz-PLKIoLybLyE;Pqt7L0B
z+6h=5cs|nH6sFgudz94U2#FiEkcOOFwM+hyt#1GDe~BaAkw4+Tu+j!Ts>@{SUCR@p
zkQB~^<=DFN<oM5Qu7CN`H|yK@RO!DeHuI^7|HJgZ(`uFLfAn@+y+`{0IX+Lw8%A$E
z-^+A{5d|!@t^7~UNmitS42w94gh?WC%Vql6@^R|6TMRaq@R=u1Y#Gi}xqcvlj%ADt
z8HVz|e?A5oT39xuYT%_TR5~7-hrouVTi-yAgGx69rylzK6iIaIRrLbsBDf#ileh6$
zwQG9vgj}LFjAkZnB^bx~q!@z54^=(Y;Cz_yp=zwEo1HH*uRl@oBTYqCn<>wkXtp1j
zE`H(jyfW8w`QBH+qQ808`=yD{<L8Tgs{DVPfAAqqJ|X*msQy=bZ?9M8|DEn5|NktX
z)%Cwe=J7jCxUM(EOE!+vBl0i#d=rfEM`RNpY{qGvH;3|pCKQ`hK%vj#5&7j8lgPH|
zU+!Sc@^ksnc{<`R=Re5{zDc&AF<U@3V{ZbR+vL|@9l)1Gl3-zB7$W!y$%Fq=0FMSU
zfAg$?p^TJfSDNIhm^^j<YKG2VESzw%sY_VLDRI~7lt>p2ys7-+lID{mvgu54Q7c*V
zIQjKgdn#(Dafk&+v+PtJ&*S$!5A-jV8ocRaQmx=h=cA4X1Ml#F5WFtRZ00QDe=>-c
zKO*f`>utPXJX~pMRJHsShj#a72Y(i3e@neFYZ~L}fh&FW%804nZAygtb}+Nl5zU+q
zG?=)|;@dc3V|FG&iVjlCeh{(g41-o;=FnggWqjuRDR=4O?E1si@z4H!Ab;Hylg-9v
zGu&)!0@^=S`wZUm(hYb@Uc4aQ0q&?xhd+Y+KL4JCG=K1!I|w_MT=#ntapf)Rf41Zw
zDck(p$``GIOx`tGh>sQ4SHt@(AM1ABI*d$lvc1;Sd{^dx_SJUhpyu6nOTPT=t5GO9
ze|ok3?>tTc*4YD}-zH4p^uGlf@f*39x6rRyoOnEuuU??QnSU9H!X3Mg3;cf4#J7W(
z--tMY8|ujuT1>#7s<K4g@1I(Ze|SKIa1rq9kRhN{|ItT~T4aIn`nQ1AzmeX$>--Gl
zwqEf37{c?-9MCsHcOKQ4Pfdb8w~=ClxPg2pJRK?6<d<KXBpw;e#V#h`!whs6A%(3%
zBp+rO&w0obL9XBQZ`=6aK>xp^{@?xHyx{a|B<>BtaTd{r9U+pPJP|>df918XKHRYR
z$H2Q`a|=%}$W!|OO{%aqest9Dzd348zjs#5MlAb)VeKEncs5~~fL!M9&Hk~}Y|@h_
zy4A7g=|*t)!!H{ebL33PLF?e)d-YZAVL(yplqQ!v%U{cbG2}yosO&@CD{?jNI4lv2
zG!3ZL@nG?=__#ZG-MFa(f2sD12X|oo4Isb%`Y~%?Z|UWgufA%9T@X(H-&_CddB$e^
zMexV%|2tU1w?;*h$Tv1gAh&ttC!I-T&~(vqEo=#meY))Sm<>`IfgqcK1m!*fmvM8G
z{0lPe)10*AoGNQ^#<$zhtZYovZeBbhTi?mu{c!(b#Irk^MJz%(e?)#DPoHj^`y{t9
zCySmX--&R-rcA@tL#n(1Q^?z-w(_yCk6^IbhlG#G&MnP$5<cF6gZE-L@TovPmB-UK
z9e-~juq@-*Ljd3*`M!QJV|Q7cGxC4j$9DeLcVq|3Ph>32-HjsOL2Abzevn7u?u>=A
zb=&^eZD)IDD|og|e>|vk7Vlt-#vK5&^Id!AyABy<jNX)YEu0kT4U0bLs=FUp8gi&1
zqUj=0DK#Ia^!~$;NAnNR3bFOQPO>&lpm&^k&N6;K|Bx{neaPb}<3&!$VXO6h>46y)
z;=_c|h-HwbEN@TwnUM3Fn0=T@4nW9%Kl?vB!85W`2g$?Xe?@l)u?KI^(az4wx9w<w
zSgf<D6s>S3R!fakrK>=QgpWoEr;&4!a4CZ2c2CHEH6b6W`R<lwSsbzEODb6NeU>b`
zAxAqq-^rWrPXs9C?={rXcZ%@Mc$Sw>raZ<g4WkKLM(W?Kkk%Ez0ex67)#bB#%|%YU
z4}$Uc@u3O4f8z41@9;4iMcyn%+`(-5qk_@TvpCF~*YX0&Eok<YE<rY@^u9^Q?1yf9
zuiI<2THk9_?H9vSK9v-FlhEXj&V{*+?tOHLf^#=5i2-r>Ly^Vgze|)!QkCyK%2RvQ
zzQ8?m(qr_Mb0_{?`+H}~E?@gf=)?o_x3mA%Bh^rbe?#&(kX)cn2dW$rXRsCMJ$7!u
zl--LT&oBOq%y<-#R~(y-s`7QWx|X7w5DPhJP6-raGer1-(P-qHK}%}dXXJNBApgQt
zQOS|_r?WwHX}=>aRX?}@-8D^4_gr-xHQmE94e#TYrRxluMOBt17dG?PLr6}uG0QK@
zUuz}me~4V4T&nNf#eeB&pX#R?|CPw4eai5!hvL7x?M}BG|JB-ijQ{#9pRXYP``dT?
ze&L{Py|?)Dl-|FavGl}twLK#3z19X%jr8#;(;8P>mZtRn8awPCk#4J14d(+*>Vy|*
zenfWFcdJLt)dasi95L5!Ro^;T7UOqNit%f=f5w|mV$mnxsCKKhk?|sD@M~#5%DZ8f
z)oHb?`B3deOB){j&9GbXW9g0d=Ef+4(zDT*7<<ZcDz|f;ZT;MHgxaQGVsrjJQdsjP
z2IoU5)2PZlUt$7Znx#E{*7(%Oe|$V<*(Xc>ULpT`zgLm}b|2&aKhNh;{`>Uu-@_8y
zf2t&Tw@h9;OQ~_M{P-IA;~Rvin~%D@Dg!}_D9(d~kKHfTe9K>JpLhLBT1_`!*P7QW
zKLHc3{RO+lHQBxVU+oi>dAgN%O4HH8ROKb}L-`FY0#)8HKa}4<QL*y8`g+0Bc}CeN
zzJaed2nlIUlQ^Ys+`~eFwW)tIAk_EZe^8!qHKcd{tMnh6h<(2NFRA~xD*0c#?MM3m
zIX;i{|KCFYZ>^=)b{^9IyKC$JAC)n8P<^SlO#Sbb)c=EZwg2_DY41__Uwu~}mH$WO
z|MBzHeQM-CUH_yR#n2@=`mM6yL;8QGSCaoat-Vg?QU3cJpJjD<9>uaHVwt%ne+z`N
z$8rh3%Y?u5efgjEsnUOlN^8<0=NU^l{ms<>Vg0{buK(6)b#@=^zn|sv73lwu_1_-r
zzkSm@>6;gn%4w5+l9I_%QdwDA<%9eFmO2S(_}DMM*p3FvBO@`Luj#`jnxedw=So_8
z5Ie9iHG0A9oOCjX%IC9OT~>_Ef7eO02K0%WQQ0Ir!#Ld$6ZKa!RR8#w0{?{E(L9{!
z$jDJVp3)f!Co~;1J%t@1VZ<rV<Iy}?J`IF{43}krn5>!s)%^8WcsYoUQu3c_<X?Vy
zDB;H@X1FWK6F~$EGnRj;r3jJu>+rKk;C0d*lcy17Q|O{M`u^#oQ26nmf2#bK<zkk^
zdGpiNfqz*3>s9st{YUxlb9`2>|5x<@tW%ff-&2tJ;-bmQ-v3WseSJ*<#r%ABpF@`(
zNMzP7g_1j=vx-QQ4QU7x4Rp>?vr;bh<1hp)F8@r3RC|FV^}Q#r`3+0;%2YC?eA^7F
zUWb0K7g)C-XCjBc<z7SLf2Ec!BFVb=U2s4Dr<J@)^Y^?6<zZGe>bI*#{q{%sd&250
zfJvxb64%_V-+<e+zH97LP4{D5W1noR9M{<A9(!$<*QXlzqrFa_Y64%Hi+;PG#q!^0
zi~rp3RQkX6cK09q|9qCuqx|=K3SZxtA<Go6N#YR;=V8Lgg!3Ehf86SzgH80@Aof`t
zMv8L%oMxuv5xZxhoq<!KNSRnR8wBbU5iC^nnk5M*ql{0nJ-;)m0Zk?}jS`kY-J*Ot
z+nF*U=vbE+nq{n?+d@g7cLI-s@BbjdciDY_iLx;NjF-Xe&6l|f>ka>{X${NH8fWzx
zPg)K5MUHumvA?9If3@tq^t?XfiJ2k4$eFD*`j^yEfA3?^Yx^?Cu-52bOkMxI&j1$o
zWe#BVp})Az;`crUZ-HOtG}fQOmsW@W?LJle545EJto2_ytxEn^Yrpkq|M?uBuOR;G
z+mE05>hr%2K5hC}``fUp^(t01cM+YnQp48U!H>!e`=93ie_C-<|82ZvAC(yPKgLD3
zk>#Tr)8UuqfB){Es{EHT@hP2utH^(q{;zxcdyn~FpXIZ<|8L6jEDl9U22qCj8ISsP
z9WO@W$BY-V6No0&?KC#urB|HiZ(}i~c{thp<RVj%#-o_Y8D%U#Peo3Xa+i%q5904M
zVUg3EjfzAte}w`xO?gg{<Es~3%p#KBtl~A>)B^eDntrp*b_<sC(2@Ucj<e6=H(TI1
zQ$Id=0?OTx(Oh={+t6Rs%}f9GmuaHo>=Qm7$LTmo*ey$rNSuy1T8wBu2|(r}YxW6(
zQu%r$fQ6C#E>H4){zt(I7Kj<=iAE*)yT#5K%ce23fBq0hq_y8`ZRlqtj37>Dh27PB
zK4V7&OXbwjG(hZx3-*EW(GmIXmy<W|`e#S5qdFj6F5bBvr1?>M@GP*i7{x4!9FV$N
zGTHq5D9i1YOZfN$uE5Q)z~6b1&x$;7_hzO#>*Uj!+44<i4{_(6-Ikh6oH8LUGd|Q8
z#<2#Le>+f-CQ<1U#7&tXUfP8GJo&>;Au_NZvh<b=shE%^a~=qbEFsP2h{g$NclLu;
z&<ff|d#zsYQCj@upOXA15kSbZq1jyIJY&KA?_K|Cuifo+D)C>f$M~<$@=+}*Xd00%
z_Kycim!vpkGaZS|ZL(GO@PwYyoSw#+PBntIe`?SF&}>Q`bPgrkXqx{){^b<DCl@?o
z#Jo(lT$oa-v4FQRofD0XEFx5p8O@-6d_G}B%tg+o%IXNIrOX@XmBes~*%AzPh9Y#z
z(=nk*0s<7KjY87|`CAzB4Emqs90qu5X7UtGoWVx3`C{WaPKn&g-QwvFo1IPh<%GuR
ze+weluXEyl*p!#7iSyi)uS%l#Tp2Pm5=Z_Mz^DALc3x~e-$BswA29HXjSZ(m#&0>+
zl;^cCEI8V_braj{q#jK?c1Z6}XgFd0_@B%);ah#@s=EhWznUYVx6b_i!r?OOZ@GDI
zN580!P9FuS>8!HeIzDz<)hQqvxCgP$e=(TZue-0$T_`VBk%in*|3%_7@9mObe|^5=
z0kZI6%u6+^(>PmYjPg4GzXHgNvHE^VTGH1I`P{}d&&xl)_~n<i;i=tFo8g1=CR^%?
zv*P^4O*}g-vN#>TpCz1nAfA_hTw(s@SLD1aU>420e5cAdyw;^~&_#aTm(+eme^g0F
z0(2R~5)_Bz>(6&QNR>I)Q(;YpSEj(;!W7>Gj-}X|c42^vO%je3&l)C=jFH{PB9GH?
zA6VZ>LgT613(t-y7fZ*CG|A~arPDZs$SRkW!tON4EMrYniX(XB^!WN1IM2)DlRv+|
zB(>aeSDn&xhj6V!aY*$8Q#X|)e+WDq5p#rOIiZ!JfMoM}DD(FUL+NLUfmj}kcy0N<
z6L#}2is_JL4e}i$M?a7v&Ew=@mifSWrU3KZ=uG_v-->_5X}(=*?WeDMF>F?M<CkA*
zW=ekj)of8tbJnDHG-ED*Ttb@au6o^fhMzrhp+_$CWw;Q0v9m+^&^B_ee}V^S1e6V1
zE{Z&(IUCR6tBgfO8qqYIV<`pIcNWM3>eGfg)FAa@>SK39j{cHO=xxli7a1?o=!y^H
z^!bkWgMA(*X}+JaEM#d;$Lv+cSbs)C_I$^G#2rd6=0!)sH-FV{)7M4Wc6MIzj4&Eb
zh)379!0xu)P@O>WNG*HNe_iqxoz6PcaFGOJMq32zAvvRjv{vkJ^^S!q*~c>571(Ao
zObU^+tc<|s`zn9%5jxDc5Em@J<JnDLU93f@y#U4QK`g-WI$U3YiaXa_o>uv4c#sp8
z#w^W|R(786cz;(PpT=o_Ml*&)ie+c_EG%-K$yXQtwhAwI5OX!ofBif{iO+|Vu_@0D
z2=!Op+p~<%SeDPhod3h-KY7Z;CfZ7V*o0d2jrzAAMT1At;9C(5Kn0MjDH4Q6XfI5N
zqrh2Zz>kcqxA;A9Nf$8`AhXSpXtwJ(2RtvY-wT-C^Bws2!|PGkpWrQBZy~i*!o438
z7T#R4EauURZcE-~fBUy{yy*2hk6z?VV9yK*sQrA${$ih24W(bSTdh{>`Hudxv<C>n
z-Gn-7g-v(^d^i{;JiIZqE6)mMO>TACf5`;vTVr{)hB0=``B>r-YT=vPAN^|cw)5NG
zZelm`O=HO?Kf)tKXbZt2^S5)^zvS9|Q|zPk<Im#vl74<Ke{lxlHw&7S_q_6b6<8g$
z%Cos8R`QSf*Q&2pF-?J~{!k+%kp<$8{motYH!7kL*CDcw9dscLD!WxmewBsqePU<P
z$DRGd`{Y`@fgiJ+OzAz*lOjS&q4kXSQTTlnem|G+`xP<u-^v?Sk&k~jG52Ey*JbXq
zn#ry~uGYS2e+WW3i-JNhh__8cc9OA(rFl#f;URDRBQK<E{d{M^k3M2L?)7C5Ay98c
zkp3Ngjt;SYJWg5kK1;3`vXNEDnZF+k00E6#G)R?EokuU!Nree7B7I&K3p{OzrO}MX
z=|{~L-&E66U@T;)A^a{)R+1Hc(B@TuZ2?)}!y>$4fB6NSuEd#q==NOz?|^bPljf84
zA<r;O^Z5?EUY;$Op~c6}7vFYftib)YD=0KVo!!skY~E)fPb2>d)<3fTG8PQw3JME`
zT7}ar)T-CzJoHX9MYnm|U5n|6uBD4zs{?;50Gfr9_?9_Z^zqMq((jU=x+^KrAF<ly
zF-VFPe>S~ot{^Bk4Ko$p-=r+p0a`_Ieo!NH;C;MO=m1$yFZB0Qugm-LGwXxiQofv0
zS9_tB<7n+GpIDb$@4SBRZP8@H?2Dun-Xk{QUJgu#RIrHfRFji1iCLPfihTf!%!+Kr
z1rtVZ)XMYH-PSW%yxj|CUbBPd$Ip2X)ey+ve?mh)B`N!O+uv`o`F(m@-}+{xs@q{D
zdbOTLw1Q%|8jD!Zck&UoniYBJqus`A!=v5i6GqjpOBR=N@JEB?BjSHUhz~vE9-0Nc
z6aDT_-33y>!vc$I>tiCfdC7oi{#SrUrKc*V5Q70LpL^S@zXYJp6VG?dFRPqzXv||C
ze{}mb!1tbdzT^D5)TEZNv0gU*Q%MzLZ<%E)&{~F_MYbBxAohTb%VGxf1$0*+zW@+8
zhWzWHT}4QRV6XFhR<>En?<_q1#cCk^9QQJ<aDK7_l)hhWoY1^+jkakYGs?f((W*bK
zHlX10gzE<Lez61jU#~XE%~bSRcFVGUe;l#1G|cAEaq`b>e(odfvIp%HmOi!ejQ-5#
zSNdXjGcZ4RBie6Q9^phzjKAd(D-U6R@y2kzUWI=A4>A51f?Z}z#N#wh$FLvXH~O|Z
z&-j*Anim<XT2||SGDgyxw^lOPE;RS9W_wlFJmE$3D&uK>%BM6=6~T3G`v1?~f48=`
zjT;Mp*RR0RN^EB%$#yo`)~V7emYitUwp>ZhZjR%sln6;YrbsPG`BF#kZ+{;Q?jWd(
zFWI(dbI#MXNN_M1%nSyD!HlJWBJ8%eD=HZA>CgD~)b(RS0xj=t{mPf?c6%E8S8j@b
z#<w~B$_BQMmA9+)oPQ#uE?D`;e^09&9j$=Eshf^F>1}{%^)3qnMhmlh^Yw}=*DOf=
zQ#Vd6R<8DncBk3!`ujEdo4Rq@2=D}lsd~Lt_G&c9>Dz2|5A)M{sBynjjepHzT<Ql=
zf2~sq`I)d&Gx2>j(gwW`qQ1NZ_^3w|67|*2D6&XDx)=BXk$m4EM9oHle|w!y<ioMN
z`L~K&`!<IZ`QovdQ}e%jWJbO31pX0x_J=R$Ki-$~XsZq3Z>EG1*UGkKk0o_8&fIdY
zaIC+C{Qd_)mg}9+M7yiDn|F8Zi4K6C`t;{<j(+kKXNIr%Dq&}vwG_I7pi2`Ct{N}}
zzzA=bl@CGPsem%z`L<_Wf9P~SC4g)DqqQQ`B;;k$X`<H8`Xtdl<^C%L*up)^%Dos{
zpH;Rt`MZ<#dNnsdt8Z;=e(RO{UeUq5YSh<5tT^QkLCJPU`jvJ^8ZET!B&>=l(T4e>
z8%KW_Lw^`Uk9)ASY$;J<z3ngmSWs42P#$eDd58X3Nxs!ef)KJUe<r_o#?61Pf7bl3
zK24d9<B}f^qw@bIQTUKPmgN86+u8lW$p8A|?yKED^1ptIe|I1@&NPm^*&uCt&OUNJ
z;$YG<7=sAw!Pt${@+WFBq50f-Nk1N9IJ`=neRR&G{Z2?de@j8125vfx;t7E_jr}kk
zBIj9BdX_lIxt#TJe;neJ>>$er?vxfQ@o`fAdDh3QTeW-E$Nc4zPV213K}FFxyzT)t
z7}o%HN;A)Q{(jVJ(6o6fSechzNvgLp?30ln-q^rG()as7RMPdGO1;|a-cB`YEVQQA
z=&qAj-q$v$+*-iv^mvw6>cQ5dI?UV}5$p7R$nvGzIulvvfA2AEZKYBbf$4gleXeMY
zin3bS%GwZ8C~K`0Y~a5ag+Ert|AYUm>;J?b#cqnr$@o$FSh)WG@MibNS7!ak*ROW}
zsQ>d#{%w2*l^FVNGA<N0&|%<?lEUFp?L+T#)wy-(pC?r(q<?mLpUJNxZGq^2Pk6Id
zw^utoJ!&4*f8HN8s!s2u)^iGlgR^$KankL5YP37e)=9OvTPXa}uAQDX+P%&}yLsB}
zbw8grdhOHWdgFc7q5pNPZR)LqpBwGoLF@Rm)oD~6`kVc93WZMNq|@v+KQ($kH$L}1
z)sD^x9=!yIiJ$scxOa(fdt=}8aM<e+<TemZFUS+@e_rC-q|o`?f$uvXYwbq8_tRm!
z_2I02L|ysVEC25>jz(v3;Fv8tjf1mxv-`RCQ>%IMbK|r4B4Ndm%Ksbr;m`Os|I6cA
zr`u>-zZFH2$UybaPg?axuUQx0fWG&=OgBH(KGi<9jvI0)?v?v7n&2$RdaYY~U+Xl0
z@S?qDe>Y{oYu`}v_fA`#?uT}xQ+1?ql>cG9-Tc&OXS?%a{|d+X->K6hKAKskNPf|2
zv`=csmZ8lO9Ea{?!SHxJ((JdgNRjz*<EYl@HV-<DTKnLmhA$4>B=rXgcH_a=inQ^q
ziMatF4}Bd<W(+zMIgo`=4vx+Uzjhkkv(p?%f9yP@gVWh`*~m_s2enT3uz8d_xX>TC
zNlFZ_H8A6v;B%t`GGE6-KV(I3{SdL;4@(T{4^T3Q{b^c8opCe^JjDDrkT4X2jME6s
zLO&&#K*~3wIsE{mS%N*(zeRqS_@i+O#d~l}n$wK2{AkD>5M{)wO~4+TW|O}5g8=ne
zf1=s`Ez-tb*jSZze7Fh|wrlU-H@nAw@6`@KJ%Yl}m?(DpeLp?^txS=lDn#caE0E^t
zVi5imNPftQ3?&7?kaXSaeC~7`$Gy+BV<HT)aEGI`A)2%Y>X4|;@+HxJ@-5Yt^gUIN
zW{c)Yr&~KZYP4B5!neVCDr}$+LDY8xe=^HS>V|1Tr_m2lf0jTABoss=e^7wof@bS<
zYbW*EQR}1uY5GFX4WbY`N(;t)K%%Nc2%)~^ilpjr#Q}&kZc-w;!IqzpEyK1bp_-tA
z)ICC<^1mGUQe%m#qy1Ex@rkTD{4b|a;NW^kwfBvqs<P8{3OcK?1`U-vor2&FfA+c!
z+%WmgDHLk$Zu78q&~3Fp^S3p%Xw^@L#|QkyF)iSQ$bK-60;f=KcDn86`?GGdb;29f
z{UnY3{)}wcoWif|nt=Oj?B1$_IcS}9Yt0j~rttO09FEci=L|_{5{qHA8}+8vL5w{=
zAv0O?An&t_pqM&hd0kK+52F|(f0xQPt*@ORKSh3mrV+7Fq7V~x6UTUv21Jk0MACy8
z<FG)!>M>Z=o$_nKGOa1S0TAN=67Z)HFb$&TQ&D^?^BSMFTgRte;JseG+3p>+4r+v^
zRY%+Y*7=uCfylh2xfCJNRnPO|9E0Rzt#Lw3LBlQ?yKKAcaGYxOdav8!e?mi;11frx
zeJ{{4gue)SF0Ii+#_5KLr-&9BoGIA9Qru0j67jL?6h76CnsurwJDH|MVeLAF!f~V1
zseO>5$CXOe>5efHP|?5*`7h+6qApNEm|vnOhS8Dc?4E=<o<TI3x~bm}a4wiH;g-@$
zXo`IV$yN3%mFw$kYN?h7f6)XS;lT`t16=X^WE!})6|ie7G~4#~ZT#EJkHKx9Y|v-w
zqmugL*iB>qW?M{OmM--OMtJRpFf>jSV=Qc%vY*R|Vt@5i+fkdi?8n;FZ6Kz`5+tvr
zAP=XmA0&nL>2a^#crSqv+qhS69M;Z`x>cug<;In0npS{}6{$b?e|MZQ<a!`M5y7cC
z=Io8538u^Z*uA3D2I=GdG||(m%1#)O^ZV%DPBHRu;*))hwL`80Bv265T!@nXibHcu
zw+VdAy6MeMh(TR(UbIl$QMC~NdTX2d!DtFyQIWPCG;Z9<G{9AOJ0K99;%U28KRf8c
z;_e_n)IueTnT2LMe-nXff$#jU*B|UFB}glkzcf#YPG~neop<|xIc>GO?<$!(i~Qf)
zw>lPbIa{s!r9HEvmc0R86aShd!6fo<)uV>OVr;VO=VKDZQ&!^j@RF<cdQ{3m<R*4+
zz5dE5;KZdBD*YikN2Pxur<m>3K^JccOG_@pgK>mPA<78$e_8v;K^y2Wf;7p@gMLdd
zA@Cg;NIKtG36L>PXEE(z=oc1tGK+&UVz}+2a|^~7PGMeXH$F6e{kIpf@(Wd>$}gT!
zrphl&5n9&W;|Wdqg(f4*I(~pulwU9*SkQ-Hd%<J>uyE0rB4MLOyWMK{?E1bLUb%sv
zU2cdN2)j`>e=jcZ+c<@dlUBE}kD6cz`@BXZ*s|1Afn_Cd`#310jvo%_Iy1pZ;*Kzy
zxVL1}Ox=1!p3mAx1kz;~U5D8PM|e*%(j^=x`T*ny%X~@Scqr0^V-7`nZ?vH(A1rfi
zIfZ7YC*7$w5Y!2*m;{PJq3^I(vzINKOleE3XEQGXe<f^?<>=;_u@>;mmR$}rYug%|
zPR+bs4$m-mwN1Ir=H-*6gR3{XwdPSrH{`5jTwv5$T%1-ALP^*@Smrh*n|o__QcP`q
z>cXA-=}L~*JQNh!u%Vy}W$vddd2J2x%mpT7bORkQ=OcF&{5Hc0I1dC%aHo~(Ra5za
z?XEWye?)z4=n~(SiLN73*~e%Y%|eemEetmVE6+Rh<0Pe9_*v-T7*%jOsPH3>it58-
zB(@=SOuL7p5JD<j8<URN6BdJpRv;N2C;gE`m;Ds^A)x}%(cr0pZ~}M&PQ)}qI7!`p
z;3s30#<L_veVkrn9P+~M38&XjhjBDQJV2)We<j@dEcD%!E*sF>&-fM%<7k3v-oy{l
zJ9L)d7#+KzJA&OgdWSkVB^oi2J9LRPhd~J^pXZW`9c3BBQa<D)qE@GT@sD%2^sid!
ze|AcLzPQ_c^KwqC3f-oVjk!G`(JO2q?m-kR%l+qmNN7aeS{&8_4>#vwH{_o8;+^iT
zf1Fd6BnqO8+A}&Mti(M!N8>0-!GJF%=mJF{aznw<V*TOXe0ofvJERCBjBpAk4q{Rk
zV4THIIWj;}k1YbR)b+nIjnP(!2gE`lavTP<!krflE^%BUt8SFw?S+GCo-P}bKV2{&
z_<YGBges!!yq0fzsHuw)l~@onVph39e-K?KsCcLDcjjcKR0G41OT^Pj*acJomlEnj
znLt9tMWTw{p@YoAx=pNbF2UjuT6DrhSiCSrn7<LCDO&yme1w06J;VOp&dd2Z2<gtt
zA8bM@J`+MJF@O_v#@K{jEHEGn(QG=3T@Mqrad!HlU8@6I(?EeaupS(F^>Gl9fARYv
zB3nGvpQT)xwoZ-+B(nCnDGD+6z*(L|=n~^85jj6aV;p1P$1u7sqXW7SO<clKA<W+d
zr{jp0ZH%sP91GK0@U&o@<Flh~^Yp0EJN?k>9DHnm?g%h3KNFnJrkULi?Cz7n7*AZ}
zCdk9dAolz8@MujpEc3zp;plsIe**HoH~}g2MmRl&akOUXbe6W_Pj2kH{QyI(*VZ<R
zB%6f^PEq6Vut8;m4NTekU*g+t)B)qLTHIA$;NcL1JRZ}nNL6_k<75`3RcD88D>qOO
zjXHi1+#-j9B6C6JfYN#&ofnmUF6dWB2R&l19w2%}M{VJtcc|jwt4cTve*(1k?)fhI
z`c?E={Hr4zHRs4F(&rAUR*|#gpbOJQqoQ{R771ekf}ssF@-IWPs#Dxj+ip9H95z>O
zU;*)^c&CDxOMlaM)Z>)-B<pa>cBYQ6?t9^8iiW-%WfY?;#vIlW&p~F}jYGkq6F(W0
zhe0&*lW3R%oA%vgTuJ?De{T>4QJnPL(Cg9VfM~12;2^+mTy?(S^PP!P7`%u3o?r0!
zt3SPc{r1hD$+I^0>a!q#$GdM|?UHAoG10mF(JR*Mee93Msr-KT&p!gtDDY_03DGmX
zAR3Ku`~j!Ok%!yvwcvWnq{nd5THJM{E2~JJaR*lO<gg`ODm?g@f3{{0l6vF)*@tW!
zh)zB)-Vtc?3#5JWORas9{i1lshd+OoJWGmqlwflL$04r)l!F`t8Ytd8aFk5z0R(r?
zJVU)lAzkqf=A9r^dc7E_m8e|$QKR$PWL^u26)C+IOit_#bl^_?)D8RuC(5oTz$r1T
znBB-+KI+WSC&uJNf3ZLELpR`h*(oyb9<MkUC+Wf1jjP2iFm#;ao$<;3&i?M)L0^%3
zeTg<%;5|yC*>sBIt>Vr$ns09F>K>=9q3kdNaF+!SvknCgMg3EUQiGUX$rKNe8zd1*
z+*>&6N{IoK&;Xl0MgbnCr8M>@6YPNzkh1dXVU)_Hnk=l*e=G(bEu&vB@*<-DVyN~D
zo;82sr)7nxozxv%c4K!S=_=*=S?SeILdBcR>+XJWkIw2`m6+~0#;#}ioP0NN{m}e?
z1+{l?r}j=?%RZAa4g%5V1|W)>bv|%+3L)D>m!}a6OG;GKNc(0z2R8~dh(@Zmq;uwI
z&AI6Fcl0Zwe}FX`+WhJcbo9KqD<#APLucP}Q_QPiUq|s}f;@jX#4!%j;8vzEzaHas
zOtv0i0)99-tGw^j3x3ig-}jQ)bQ;Ae_NqGt09Y!q+q+itA^X`bu|+?eoN-AhW}0kk
z)9z2m-hDC^q=Ti~Dc(^qb7_L)91<0`D4sL){j<aFf3t4+*{hTPp^}D!1TSyDv$Mn6
z4}D5a)v5&EVWDbtxlSs{)DJ@(R|-Ay*VcA{V$L2{oyylQUrO*lbgHh$et^+F{Ov`w
zt0+c35ww3M_&2nJe*CBU7HQ{GcMR};(HBZVw!k5BzU=Jo$mdCb@f7VcfFYKD%nOBN
z99?%Pe>_3*4b(~9I0e~e?<le`KJ=V5I(9EHa*4=bqF?<qL8oy9dCi)2v~}97Z`02@
zr_GbzX|rA}e#buj*$)EhyP@Fu_8yY*1uu~w4uTnkp%BFrU4zFtEyLGo>`sw$Ng$N|
zjEWq%!%4UM`k&~z%A8=<5`zxyz=+dmYL1v`fBnH=7RO|tkW`CX(*%|95Pe0X7*A2@
zdO%3edz(8<dE*p0%6H#ag}n~jHo{u4lVSl!L|2C?+S)@2JBRQS#Qes7n&4na0~N@$
zpxKmrHmLcXY)gqKDxIRzC`G#&iO7%$J%4AX3jgBT^;6bdZ>@*}*%md7eT#n5DUJDE
zf5$X<ig$Y@hnO}FOWq+*f)83J-NvuotYotn)#BCweE32*DNkm%00!Wr)`#Bv#>d*H
zW~&V`N5_qBE!&L+kW<{sSisau+t%K&gQOz+j%`~sbwg>;X|z8z4@7u3s1e6#({0xd
zXk2;b&Bu15R<Al_`IGOAMvPj$qvlCNf0`$PxZEJ2_DFG;TOnBh5D=UPpmgX|90}&+
zP=&KHNrkrGM(Sf_Dc4^>8dXYv?KxYK4Jg70K}B^;@)seI0SK&)ZB#-l%rDy-a`vQa
zMN=F<mYAJ1fRncHmh2$Kt~ib+RQBnEGWvx^ArB&mSU`R_^g}<zD2SqI8J#7Vf2#L1
zLLTnVMzCadqeDNi?kkFSyF$$5tJIB07{a)#7O7}A>diKpt=0)wVa-EkNe3AD2^q}P
zO%m+AL~cKdQ$x-q_|<mQ0A1RfeN6OyJR^fgS2*rR2}YC1qY)hNho8{Vll^uOUE?@|
zh*P}#)M&qNbs9akU-+(ygu5JFf1u~jb6Y{B>BUW;_w49c*Q6n}Phh)6V14~+yy-NL
zjy`807&KDo#P!?;I*2h{PWX(FH5YjihM57ExaRBtYf(<heBrFnF4AZ=7$apStyUf(
zls=Wr81P|N;1ScAy%>xqk%!*=u(KLa_SI1|;=7f^FtNXcWYdsUEDn12f6m}R4wM?!
zBW1Z~^OX^Slg2Ng6zEh*uCbY#j-~``t0HoWe_OZ!t~fH<fsl93PHbFt!jgOeR#~>H
zb8yLl^vtYV`<j{~LOL-xPup5?5n9khh>%87Izg~0;?iSVLo<!gyXSB6lri_%Jw0&}
z(#^LTQzMQe$;x(IHK^cre{nLPFoDy!@l*6rU@#~GXqUjfcH?j@kiXR0Ct37hTd@w9
zlUBEp1=Dwlp%42R0W9^?0CP_~5oWo8E@85JdiCmjcT&8Ac60c-Gm*P&1uQ)}S{3k%
zCI1lb5-n?KMP}B25Izfgw{=L=oZ>lq;NTs-IY-91FBI77;k1oCe`HulemI?_Ro(wm
z!srW3^eZy)&|?0D&3s`_0DXut4%Y*<mjjA=<ky4s$_9(AYdzQVj{Fe!W9(ic-RVS#
zRw|XggpQmzVWZmTj-u12CjnFz)MYG;4x%8M#q6af8O9V681s!4|DopbX{+6>opjNv
zpA_#nGA5s}zBv~ye{HyGkN5az?ORSpBa~jwjc%*n0vj8-bWXtb9k{_@77*Jnz~Lwz
zBbLwE4T4*gMAX5MfXjw7$Dv2I4VTCb{7Y<^oTXB<)<4^z?2N@sx@vI`ek!UtSKf>4
z8^x~)_X6Pv`x=dLFip@bK`~G1&z;=Yc+*2+6i<LiW1n7Me@f~1U_Y1XK6QiHoWEdt
zJ0!tZIEI^v5QvhX>#;u=qd_o(g9I9*5++fA=}B}1hr>YlBto+UGqC8NgNdhFy8lEa
zy5HfrCThUTX2Kz*5hBgY3=I3v$LN|M_7c8P!$htz`rlcSk|Cmrd)tQ#vBOyaE=A^K
zB^yYxxuX4fe{i8T#mw^Om_C2=PqgKSNs3($MMHS{4!u+G-+pPw*iU%yEZf&g60sio
zvs4V5MrfrnD3y+bPYWM*VWZCS|3YS4g3%k&6ATu7QuqcB(3^LPmx_0B6pa#NbFA9z
z8{!y;@+NyIPKfV@Y`dg6$+S<2;qAxO;+E&rTLw;%e|+R@^Jdy6Y?$4CZGiQ6j!GVB
zK*8}YCzqZdqtX<K7v$*|<-0959%4E*Pd=c1bO2{MWFI}C+r+6G6FHE<fLj9EHkklb
zVqmJs1neV$>{~H%w9R^!ThWa-D2%QVB=1X1!D4Or^e~A0%NWBM!~hGo`YiNs%1P=D
zF7eG^f9!@M49DRjRI;-B!|OM%cPlf(!zBW?<c3};#kiD4B|eT)5RDS@AW6MwmO>Mk
zJS>s!OMX~N$GDWZ6I@FDiH0O>LEoWwTPen<<jNV_W+#hdJh&t?>Y|Z<g(1?AT~AM_
z+nT4kKuH?I<;jH5Kc#N*!UlTJPg|rjm&uY0f6DgofM_W{O&G_s08bXOf+5Nvj0iY{
zI&ftG&0wFokNo6keA^LNIK{h5d^>m0^XL5YPc%I=Q`v-{v=_xY=yP7sA?c3YOMI)_
z2x8nn<J+X_@L1cgG$QlsCBFTdMwgg5D-CxML(%S&V8;~}7b^ID25v(7RE}RMFtX!E
zf1Bs~aLT%Wu}S`h56ItpQd3A@B}BK}sX)n|?*F0Uoi?~Rx&X(JkO`?7cKKdyUMP%k
zdP+9*B1)(={2AXG7lBl|8`KrnpCr>IzRePe#c}xwatG-QmN;-4vRllIFW}Hy_!vP6
zGe6{rFew}~3|z8g%|d)LrMj6fpzP#<e=?}<`Y46S$&1WU2E;Ow7x&nZR^`#6C811~
zV;#=2s>KkZqS^?~E2us^pjz%I6220J6Ms7F@p#0Kt>eaGPZ`^lTU@FcIB=IWh(;Br
zW6MD_qUZ`0zu+rJ^R>wZMRV$9Fuk7(Z%scPs6`qUN7sCIW={0=CZujikQ-w(fAyz)
zxmSGM%@hrYN+njVcK=oeQGuU3#qq=s!O>}nT_9T@fL+)SW=Rwxh17I4;tK>jRWNJ=
zWiB%jcLT2X!R0y&X`JW?r}U~euo(5bQZJ<*ZD+K*Pqf{4Inj3DVsT)}7m;XinhO1W
zb|=9{987UsMx9H43Q?Pc9Gntxe<|6}w>z2u8@TgK0s|pL)ZfzUG`c$Gcb{v=M^t2)
zZ;U$DvSZ-Bo3=y>!C5F+!0^>N=)cwQUo6|gJ(+z+FwROprMJ<VU^@%lE7uPQ%if#T
z4^t%YKN%fIA=5Ym$a_(WQQ(L8tr}6lT+f@&k}u&Vtb%?>EWdZ}G$o+ef52!1)!|Hw
zU(O;Ub;H{ff>BFo0ttB3trE+kfs}}YjSW<1*Ya?9<;PJ7VcA^t6S|Y73sgErKOOdv
z8$|r4FpmhFPkd(}4X{gmD^vPN)5%TvuGcASY>;o61;tU>XOF8n|H!+a4pGB~@sjW8
zr$*K=l>N64tT2v}RR4lqe+IFBLB~WpDX`%-!YjkI^wVJ@ys8$rV8(HH#e*9DL5Q0%
zi=;V{S<Efc)d;Vau9tL)aZ~h{zo5p+r(UO9Yj;JUbRm~^xdhMs!U7$!@ERPZG?tBH
ztqH@WW=%rdxjgLNtZwF<nNzx~_~jn?Qhd6=AiBy}>sPv&&S99sf9!k-pOs#*ST_#P
zfqk87Er~E7g7#Z5lU&a`ibm}yrHVu@$_g*h!zSd=uy|CwJ3Ko%IH?^s&UY^6eAS$|
zq36Pm6a1Bl!bD`TXDUt$4GE$Vd%WlHEhg(j=vOjxJwIwqF-0pWCu7U1>qor=r=S0R
z>ZaqIHJ4fKl$Dj{e+zrgEUnhwS6cJc{+S~p#=p&QIJm7kp6ds<Ds3Rt{|X;QfrsO&
z!+v^BL8I$r8sj86qI68EixzQa{+DAi)qWI~`PU9Rzgx1Pvok(Z;xjln0`4lNMFuNY
zR)S!~gW0(Mxix(64lZX?){l<k+P!rAf8pc4gPgtBYB!1he=pqP+^Y6)EJ)AAfn}Zw
zq7lHwhEYo|1TY@IAj{@?kxRmb;P;y68Q&2zh`Upy{2Xv6>K0R|N39R-R=3t|9JEdj
z3%nmDvqiyLblc%4i64%lOZdgGEgBT1ADZ(CPs1qnhj=ngDYz)`$Tp^^@hDX=Zi?{@
zjYq&YDN%A!e~1YE#cS%qM5Sk+OV1{yXEZkll)Ee5N#f57^MXFYZKOE#igyZ4i0y*t
z6S_B2#f|8=h%1j~^8U8tPViZh2?C^+4|!o~DH?AFubTC0am)8mX|`=|aN<rdZxU`R
z%Vtr7LIkQPd*r5R(SVd`mX{#q7ANwISzR7Pi!gE&e}4th`Ui0o{uK2Oqxgt3@Omnr
zGjKnOQ!+>?2RxvfYf@-Qw91wr^_UyE0sAMkIf$b$b^Dv!blXElLSu2L@l9T5;5mv*
zM!0botUv66=*MW1S%Q?MX-|7jsnfcKNZ#TrA+Nt+VFk|;3~{O~*xDbWX_O>BYzmqw
z&o42Fe_~>c4~Qj`j$P_ri9*ahEv=5eB2pT@2bfi-sNi04r_)M0_G7O!b>sB5B3jG8
zoPyysaEb=ZtkIU~RDs6Z<jkIEnKys=OrcLAGCeGViC4|wu1R^Rlu$jUl89`Wa5}J&
zhBkN52E?-WqlCpBfv}>YI^)(A{EiI?L{V?<e?^#%4!i<oDiaIV25szbSyp()U~N2!
zuCRXHne5Q0>V}uxU?aL!;}Bx}sfamdgjIVMDma1Bf!q}Bz1n~M8jYh_oES3D3{xCm
zxk1%={Tl7PLNDO|ii3%6iO9s9$B{=gpk3#h=!s*K=1{~0N>C8|_Yz%$OPo-b2wZ6f
zf9Gj%+!dpE7KZeM3!<!P6gm++(j3n9NK<*GWg7ceet<`8U1PC5I`-7u38So_Y%yhp
zN<o%ol>O9OzDlVSbhgn~BmkISm$H6uwYT+vE1G^|197V!D>F}Q6PN2n(&*6j1JYy=
zg*5qNLUzVvUie2oINA7VQ=ebch2zF(e**r7Bnrt#r*7;{aEfCJqqw^d2e|y2e&|kM
z7hl}dpN}K@ypE?h^b!<>Xaw0}_fbgpEgKu?Y)UMMB=futqLl2TlUkv`B~2BR)mOHa
zR})z3GmiVB@;1kx)YRSeWmMBh1By~G?2zU-g8>O26B|^n2F+di_Uy=#x9cMdf7uR)
zVEa7~XX}>mPC;&gBaCiXid!>6yKNeU>&Dl9xWM;#q#$IP>0_6NCF4+x0()hoT~434
zAsoNt`}mA`m{IEyED3E2=!?~<&)Pp4!AEg4n-aVB?uY#n!)C5e2vs1|6e`}mR+<?i
zb&!Jtauceq&)Jt3FKNH%yvX{$e|RZx#e*WF`5Rzjl>RRqldurZD6UT`$KhG6C+1Ll
zC$SW1b7;ap!4h(^?S^BPQ*$hkGWkfT7zp~IYkfov#95q>!PC<c>N*4WZrvyArq&5r
z=P4!0UyOu~YNQnJRKm=y21hP<GKO!^1wHKgCf!to|Kw5nd-x1;HgV85e;|Oyjt<=t
zC_=SXZ*1s<lj(H?c{CSYhcqR>#XQ68Lal-=3u>1Zy~9Fc6x8M#Zkb>g!{I^zsy>!1
z;`#1QD<<N{!)GXG%WaeFH7K&IXR_Cyy0Zi~Zt!5HSwaiq+H<bEDC;OhipJQzJdONN
ziC#rU(hb?he)q-9Z}6V9e~0iQam^W>D^PgK1^!PB?@|_C8|c%R><w@TX#v6kOL`vD
zgR)zeiYWEN88&WM)79PeP$@x!apVt-%fycAS=qS%7A^DPdhVDt4Iu{bBubG#nbI1f
znC5MvpOqKeHp@LLx(7w`t~_kJ_}~Q?X;De5@BdcZ{)xN8S2U1yf5`47t+o5JZ~m5p
z)_9R7NbM@YK*Cc&gB)1QrtW=CFvMQO`U$--H_HVXh6Lw|v{pcwY!<I&mI(UsOO!^F
zft%9U5PDEN!e&&c%k~i!R^SC9n{}tkO9)vKiwO<t;CH9f2pYl(ase##F7&Dd8LTHv
zg2mXu`g(`+*>icAf8LvE6sPE*)~y{iPino^S+`1+J!>_0*yV-Uv;&LfQ8Y^KJ%qL5
zoK%H?jOJywz4pV=qP$GnMMX0jhh19aKEQzLTy`y<eV(D37O=E|Hc$hqc<^Ah1Z~j`
zU4`F{s*pu-o2EX=GMRywfJ$SeWvW;RZh%O9Jej(2L^fFde~sKcK&Yxn!lsTCmX+p7
zr(4?l^DY_e(7(Z+I{Axk->%1Fc>s?aPzr%3iUc*l+#~2S4Qi6wz)#r4+XPZJB2hfM
z;3sWryEWlmO;ijuj!i&~>{g3gR4paHp-q~s@XOcBSsza$FWE$uX&enIyOjYLPt1W;
z{Oh&}XHSD8e~=Lnh^$v8(Tpt9!^nWc)<236QQ;7*Nq_H&-=!gPDrJfy4zDb0qfEHL
zX_(Q?Mw1h603bqck+$xv(`Z-!{O3OxPChhGex*NmcYa_$KeStCr`6q^9}B$c?#|8*
zt8*hhJ#L+RXvv=<AES6e<{t_$oi^IX%?=d(d-KCif8n%Qw><v=!kVM$Ej?izMAKUu
z5vNXR63ya)aVv-(Lh&0M^ckf7FW$Y{FGW{4hN4@l<A9c8{X{+O)V-kOBve~6Z~S54
zj-ZZ~X++*>pyujbZSxIWS*4wPwx~I+r_z;vLQNUyJG6z0lmw&~cKn96^P=%Ow5c0<
zj7UVNf28*iGz6n}#-Q4@^sipuo?F-xPUk1oOhJyIyu$*Ox6ojUig(ID=M*Fzk|XX)
zgWW0bf;wj*55N@oz7$zm_X$)8L8V~kNTRr{scGGY`NpVdwvS-*L~hLkmd<zNU*V83
zx^h(lqED0552-06UT}klY0YatpqTY%DUCThe`$4*m<p(QC!z45G`hNZbR{$oNVy~?
zCsB*TF{Cmc=pq1^Kxe;6Fx3T869zJTvZB1&FA0H|I~u2fY$fr4ZYk+c0@cQLmcTA*
zV0aRU5X-F~L8Tg^&$n&X293K7+|<7UKftM*j<bnRWHcgwFE@Ho%nXYV6}KP~mUf3q
z5Ro&~;(yza7V||H{yL8RD=e^}#Rdt7xoPS`S{{=h3;?Wt1KKxV(0^pYD)=Ui-5#~D
zt*u}djoL>_r4F)@v3>`4m^APe`k(U6B(Q#wA@`E@2Jsi;nAdrxQ+mawLg%V7*BTo=
zGG;8^nLy?R?K9Q)rQFNXp*h>S<A4jCa!pIintuWPIAj~xQ*^Ak;t(NIyaXb=Zs?Q$
zrFsY<>L=Vszcf$ktzSCmujJ{0*ndsj8x&1($dnZ%&m}+EaVDn0(d-ftjYlhhRdaUa
zPlzfpOtOg|9=kWKDGq6%RPk<izw~NvXJ=<_ZFS1~sTS|{_Dj1vdq1cR6P)t9La+8q
zM1Rq%Z^<I)hoj?UbQs0FzaMg2sC~Vb=Lc{q0~CSWUpg@)9U$RgqPyW~#Ed@Rtr@gL
zrBKfoa6lWI6!#Mmd85Knwo%19%lkP5Jj_Dq3ww(GvjIb;ASEleJ~_ELW$rlHEmjQq
zCq_ux8bIfca(z>TFHm#k*u6pFY|^K>F@F^z*pMca38L%obkX4}M|SFYkUjTJ+FD2>
zTD275fwTbD!ty2Lu#O^vDrBW5OKZ&X$}1OCzRS1?^^-6iw8E)^on}keNpfnIr35@j
z^*rUZS&_Ar4@~w_UOkY-W;%-rz`qBZsh#Jun$qe~*-gNG5X;RA1+io$hVFK!(|@{~
zx^Tx>zi|ovE*f5_+I-Y+mQ<ZS1ahK&6r~BIN`#sqI2}+|$#oQ8GR4UWEBgXs5)M;n
zQVZ3AC`NK-dqcfGWFdkslQf<U(piihr0ooZ!6}ErZAP_Q;o9S|5Vp>En@or7pBD85
zrXmYd2vPBlk&LcUidjgXS2e;^cz<*9mx_7jv;*v5*48dhLT!*S&@AqN)IO3QY9FYV
z1qEb%t90o40rhS%%2+@#&g1uR3Mo#~Hg>&Vh)r{fV^*y#V@G&?+)JY#m>Nd@dV)X|
z?rI5^BKEiX#hl8gg6pQyU{kmQC3k6SJ3+KZFYD`HR>+&uRH80|GokXgh<~2;hb(&@
zPErUF77*uX*9`H?T(zaZlG$K@v4_1f>S7v=7h~5em&+;(4BS))uRyn@e4DTfo#KNf
zda5eKNSRUHC#5&jHfijXaE_`~kc%}gUz<liG#v+_r_=~zHvyVdXyJ8bUT9<rTP9}-
zj)D0^)#E2*zK3()tmk{SXn$|t>m_Mib$rq(X*73qJC?JFB#?>R5`w|edGU^Rr0m(h
zL%E`B^kBL)7w`r@LZ;3$D|d)9yR=6XZnd~Y{zj#v0dmA#?xSbnOLZvw=$ZQxVgllQ
z^z4j9{OqG=9~={1H5DnP;REvSI2m9j`RlDl2V6D~AUchsDUO#;LVp&hAc*DdaWsSD
zRLKJqNY>(B;dN&INywrIMSUTQ_FZo!48@5sMe@}6#02fe7>%OHV}}!GsUP_1EqAWT
zrA)182F@APjR%)P2jl2EL__SRa4eJ*a^qOZa1+AtGwEB*^ir^fuC}8{Rd(P%yoO3R
zP<x6X#xiy=4<C<hJ%92O$OIw-g9c+ikUZhT&VK5~;1=xPqGak0Xk_fGeM;!-am3?m
z$Vj2o8^@%~>e0IaeDcFS3#nW6oBTN2oG@E0%65Y^gZc!84L0yLA1AnC)LP#3be=_(
zNeh*q4EuctIb^&&D7J+h7zq7Q$imkBqHz?Z8FQJ;3bC$rTYs5!Q7yhwo<K(|^zn|o
zo~xdV;VcNi6UEmVejdU4w5JNvLa}5^hjjpdLBDgygv-&k0~Y8=u+qRKmLgcU0*2=D
zRKDeZ5{uR&FnAjcanULVbEMwvUP*?ZL^w6yJ^hG_-?{?y>e~vC+yk0vVq!hAoCn(Y
zAx}tM4I{2_S$}CFYZw6X!>i~LdsJ7R7a3$0Ld&;f>?z-hDSm$52fyu@rg$<1%SPR9
zi0`4fx@D1&bB}i@5Kr0==kl`)#}HizpVq>NWbE=QGbkCZE}S*%l@BynnkTTPO9q7b
z%3F)-VIz<9V;&dwR7Cw{Gx9XtIPhtPHa~%zI_Mghhkq^hgr3+#yDS7^2s^eiI*G2y
zPe^Na?Z#nJMhZ}Cd`)go#Fpt}TA78OFv$UmU<-(%Aw4VI(4xpbJH>K?Yg#X6f<^8Y
z=*8uEMj$GMUu@&Soe(P#Mq!C)C77v~T95(27UM+zP(dJ}CHZtS!}Ws%Z6y(b%p!YS
zhz*Cx4}WnfY8XV<i8LMQm2QZqO2+>5Bnri%fgH~K`LUd4gemykAvh}<D#Amr@lp``
zB6wZ1gEmB_C0=PdjaVHZeg;T{L{zH>@&Y7<wS#EHrJXKMssfP3%~%$zkqiK>ic5HT
zw;wuWN1G%>!{4eHF-5A1U>TtnHQ>+bBG9bQ_kY<U(5%ld)Du@4zSxO|>5(5^)<W+<
ztS8yMolV6pmT_@&B10di_yc{TW1y*^?8+>)lOu*ES2+GdC2ihPN4rHXN}?gLX2MH@
z7E8y^&SQ@ZeVj@01gBF3VzszMgqrll0tUoq*}W88C=`Knw-fkEon@NOk16(ZehNnV
znSU!)`>4+%LsW6x4(C~NLjhtcDzv)kn4VeH{g~Yy%@Tz<1>mTckcO^P{ES&^Fz4|O
zA{2+FCm<^ge?l`5u^M~}EEE=VXf;l3HU}I#E9S<d*a6uv9MX*`CX3hm^CJI7uJIxd
zWp<HgP92&!OmCHwuj1c!6*hD~%gVV};eT7w_;D_VgJF$<hwMnWprk7<p?d3Nvx{o=
zIy!27_|QE0V5B^wEKi`>d44D&8#HzobGAOG^AWHuf!JqiX)Cwr;RfW1?W@hU?=!r*
zAG16RtH`vva6y>Ju1&VTqU!-F1=|jkINDhdq$e|%*dz29X|i+7>rBXbR<{~!Q-6Vx
zz&_6`qE61Tpg@L#j)-e=wzcvkxfD=FXeWUr5vM>KCsDxeM)TxKYYrM;xdE?>YYvyD
z2R4^?p68sW`hhyGPVtVmo;%eq#XE;5J7@8M&;|xVU-Gtdwibf}g8MOT$t7lSu(_=o
zMQaYz1ZhUU(s$j6UawJf_1I0u^nWUk-eT^kfk~<#Bdr$ys=8%kT6TAbD?2^g$6K1}
zL(T8;R?M%3F0(kGBhd0R+=Chdki1A_lHDPV=)&tqy|J4dyXj!8Mz1eg##EkRi4u2=
ztth+96pqk2We%sf`^DjRBfdDry)T)w=?f)aC=`xhtqDWg&aqk7yUenLwSR&oXw3C_
zsCgq<Mqs+)p{-fM(zWt}=YABTSsZL5xZ#^jBVs`adb@)$WWa>$4R+%Mols-KVxh3U
z1xoIS=>BvqQ>EGI9kmW>M;}|AF5Rop?8Jm~Dq-Z9W{e;8MmTLIM`Ys0QIf7V-)eVN
zJ+4|&9~~H&W)U%#ICWzP<9|OdDh)5RS-HmGdiJmzh%AE^YC9rB80TE%s6ZX$1bmEe
z-|kMexEVUM7Pe@oT%kbcEUsKJt!;z<tlZ_JNiHF;k?f-G(~T;vM-6xmp*|MJO?BcB
z3X+G-(<<nL5l&BM{lFi5gooQphg_szFBvdv^$my1@v;uKZX0ZU)qla(R~l^nn-8{b
z9W2j0Wek@*&JNf<VrnlhA2Vt9tw#;G(Q)T2aj6?W$_gjoELh-DH)iJcn!pXYGt7xr
zhgOK>mpE1bukuw@JH2HeG1rf{@@ejnrk&JHX9;1EAr00=INTAdU;=NAI*~MSr2xS?
z<e*rOF63;;x!$W{ZGZ3C4{@s8Y9v43nAIvZG!_MNk)BZVRL@frQ)}1D24msCPQ)WW
zoZVzcWQ>NeB?KvzeEo_h+nG7Ldq0+U$~)y<XIu3T8en)rJN5BAzhI|Q4_N<#@*~uf
zWabK(A>$}cK|#=fs;$|S--V-v(!D5MciU&vF-G+vf}cX5WPdvcy&)l(ie18P*0~9q
z%m!nqsKAn{Jrqr)bhib`?OgvJi>zDZD1sAF)e=)3201p@%hmite$?xW9F6PQR9O#F
zraB4tFf6(b%JZSf4=yBG7TpLXW9#~`EI~o!?;W1=vGnX?>Dh7VS%*o6jJs#}N@rA=
z_ERq2ad2#Ow|_W6U(pwO8%THf-0ASdmV)|24{4eR*~JBn1$$(Y6X^gIpI?Y;lx7JN
zs9q9X;dmHC*GBb{A9nU${pr<CWgK0X(x^0uCQ~=YrSv)~QTse8`C-Y6(vk=Q;5F7u
zG)E?R-*=NS0rh(4&Fc;J--4g?Xt=82hk=`5<P_i6I)5K~pBn8>vvuMiUry+&@^1OX
zwx%{uYu#?6eNx^0@{cd)JEcE=x%mD|aZ_vZ_O1At_whf-rx)MbKg5YU5N<8lbXET!
zDzb0U#RVZNU0exiKGDG^T84^qRNNrT`5tKwtdgzB$!vj%ANF{WdLDB&@k4(yn=Gta
zQ6v1e`+w|N`2}N?_vFDId!YGiYOJp8E|@Y-@jd&!$9~t?4aE1372WJu3A65QyeQMt
zhCTQz>&o$mNK85H<@s~%$$L4#%o?oVUc$d|<SdJ|B<PNjWFt^vjM9~0>@I>4tOlcG
z08z4gXyMfBisq{~fBy0HpSWbEu|FwYkNp%w0Dn$t7)O(m3zAn-yko>xo+390P=H-X
z{0qmTvFpQj6249DVQ$9$#4rP|TqOrBPbeaKm6)Qz*p1x*S#Y2!{qF9{jW_6jo;^GN
z?tCBG?q6KIm^*U=roes`pwAfWjTb6Z0aUK3SHe0@@njmskfMy2(csr1V}2^-r>NGc
zoqrZKcs+c`D9Gw5g&vCWG$44T_y*jxthfg}?BbiWH}OX_cSUa;MVZ647?1Ex)^9*x
z2_WW~#*ii!d1dw2Dh_>FGHRi-HoG>ildUDe9<ebuH=#6MQYqdkgPOxnF_3x1QLeO!
zb8Q(XF335SB<1b1num4$E&Ao6d_OMu?|+~64W0ZOI{7!AY}%i=U!<9vZQ9&J=S8K{
z3m(Fx^n5`e(G$;$RTyX*gBh+f5PP^L1Ev2_oU>Wkbo427HY@&@&En>l@XHtSj*MsS
zY{HYx#nUOMxF#EYTO>FqxE`BtvR%O=pT;XGX&wu%XPtaD!@HIl-upM4;oYS2kAI3n
zL`v7n5;6jH)}6;E=!(vkAN81YQwA}ogjba_<|Iz!p@5!Z43qu2c=t+w2OF*^W@$+(
zS~`*$Y|527ed|n&`myxwuo^7rE0EGjigyBqIiZCZ#aw@*4nljy_RZQXecP_N3r)JC
zl>VtVsyFmQ@AKbfnd7By3$)dg0e_DH&Em~#cc41Y2S&IFhNU@3q3&tjk8Q;i#mm(y
z{AJG>dG?WW@J&OgHiI~KPziijN@9MNgTm87SZ{x;vP2cDe!i`Y0=~NaZC<(kEjtF5
z3+nUVd#APT$Es|p$X7uvdGpj$l7Aw9`<s3qzjQV<zg2E!H;59VL|UHgjDPW^wXwZx
z+A*W=+zd;)J7^uBwmJ<fI_A54T=bSIA}rJFFSIr+-@B20WIu=om&hHa5a=7oO3zSl
zTHK8F$}5khbI@*{+9_+i${&f=P^0La9~6U&z3vkOt*_@LJ!+nu{o1QHJKc8k{TU=i
z6BU}=ON<}|9FIMYLIjYglYfcpXjDqJVeRFPd?m7-fjT6D7|l|2J$6$H19=KM{Ioa<
zWfe0>bn>DUW10w#A6odRjlE0=!Sm;~k+iY*(M`>&46P1&Q@+vr@snhR%gW)%BXshk
z*@<m1101GNvSL>UI80j|`^(;^M!V|#n5jY0>YzU{L};JCk!~H1$$y_5id&4mv6~76
zSHg#O`6pYKKQ8F<#|L+59p#$^UA}p6mv4+NmvX55waHw>)gL$4W2rSLun-*&_kA~9
zvF|!<ygKw*e-@^*6``Ne#%hJz{MepIM3_cHo_YatmL_>MG=Lc(3|701BTF{Z@)D?o
z4r|@ok<y-Kx1!5yHh;7Bb9Q6ED7V2rhpX1?Z+Wv|V}subfdNI=A?W0d4fFxdpAt(!
z4gP><lEqpg*^^fHWAo$#k9lf!2*Sti0KEEyVl=(&eL}yYq<cHX`cb%QTinqGb4OG3
zx#w7CVKSQ%D+zn3)lrJJ0-E`$j*Sgq&Yg6)yy$z%TYB%%tbdznwi88Z;jPwz#mbZC
z+|BUH4SWxHY9NXi@H)%KwAx#yhKXYt6uoMxp)SI>)yL`v2_E#sg-y1J3L__55Q3+4
zQt$Uf+;1a*U&yP)=b4@_IIr_!5!y?$3Q=0s@3tGb&KKC8@bwl_Z?``?W7pL+bm!a1
zvi-7sK10t&`G245Gr`7Pr5DSII9R5Mzumo<>u!iU_BoRW@mux^apZ*A&c!VkwS9)P
z^n+Z1lEL;9KY?JKGCx$6ATBZr?A(IczODC*oNSp(vs2i$H{|Tq)HglPuP}{RLMN>g
zc~$%I)j8F-BF#Cw<yK-tNYJjK%F%LN&hMc-sU|NhxPMnC^!gILy^hMZ9MGD{AhWuc
z=v#}b)zzy6@GW(#qEF|BcC@a6Wu!zm)2U_mueq4WjHgf|f(gnhP0hlXYsyL)I82;x
zB32-*k6|5kg8+L(x$|W1FZnI%*2&Rl$d5pqKt84zCu43wp(utsr2}`CKu!z@e}J2*
zWE1oRwtv-si!lBnfZs#_OYL=JaB1t+#E>V`_hS!Hw;)@pgjdI?0CpNB=_t+@7smRK
zeT>pnUiyt<<R*zf3ayv1O=;lV%lRALv$W@bKkC(M-CD2RYIX0=^0vF{3G6C>EPSYt
zJz<@q2;BW;!!~m}(g1r3iGotFVXWU@Fg(i$5`P6^4=N^5&QPx&TR*ONZt60>wQ-wq
z0m8}~$O&(Mq~~AgusipfhR+`py%Vg1+&3Rwu)GG&Bl7df$PaIRA7-X0`k$VUVTku;
zVgt){_}Bb&Ro2aPnai+Q<itbCs7fh>mDx0lI^|FW_P!4JDVVbnxJl{{IuL8{`!H$a
zsDIY!HV?i5n`(o-H@jx=U58<_AFs-?*)Nx<S{t6^v8rL$)vY%4DcdS4^(mEU8+-om
zWEs$sCQr|$FvNRvr-9`<ylH;ADraW8%w@?ea^j)nN$vM)Y?;NJGNl4)U;FhGta%)T
zqv-cxO(?HZfBy}b69##2=FH%^4tr)lUVoKAvtL$%Xp~s8=~!CQt6pAzwbs0yjr(n*
z=Z_Ws*M6_Y|2EQ42~dFTYrmdEIlKM7pC14Hchb+isMI%5(QKgi*U}kW*HYBkuUFR9
zmX7n)wGB)4xuUd<M=R=W+d!D=)&TCC4|MiLHP0g)#G`awmJK((MLv`>xbi*h@qdRt
zPDIpXD`ug(oW4f59*0A(CGT3^ut2rF>?<E9G*_jXs?)=?7y^&kt2!db5M@=uf^K-r
z!#kPp&y6v{lWBTO*@(x3DcCtQUwrmqwTc{`d`EGLnJ{1+jsb%|Tnz>ru%p2c4=pfc
zSb_5osD3ICpMObS6z>GF=H(Yf2Y-ns45pTz91h2M{LEibDa2?8DH(?_a=wH{Cu$G!
z6)z_7?p?M==s*oC|GFIUuWR)Bb@bLUPRisRoJziq!r)e|!Ij{Yc~v<l(-K^<?->cX
z9*L#@VA?Fx?yt<FG@rd-Q)^NrUQ}Cwk5=PS8N19iui%@d5aB+81*FutnSbL;k&%%H
zBhV09!VRL|eY0l=y?g#fJ@5o2?$S)1w3e<cxJuUOa5L2xWTL;1{16)|n*ivgQP1@}
zTk%I$iGedW%XJ^$vP?6s=TQ`jyW}Ti)p`C#PTasv#Ss925*c_(hsY@^oja&>{hR(V
zpY`vmXb0J%JOCLoCZlRFTz~!GSI%6|!=8bb;2ISJ;0*;;V^x+(LfL$2!(vl|WU7k%
zL_sb~s<TD!;!nAyw#}>(!c%UD+&Fe`(bit*DNPC+XjlCPITThJK>`h@uz|D>kV9-Y
z3JQum!z~#<6oqZ4ZjvCE-<g4<H0%y|-k)rya?%5<fwwOb%r$5waew68I>@<2pHYZT
zoPzn*%#Q}Ru$N}x8}h0~u&!<u_tc2*VKfUpmY|7P(U^YU44a{cZwTq2+Kl-A{BIX?
z=PgT$&0_kEZ>m*P)R4&r_|smsQs|=W8&4AjZSp36glUr8O;JrgGm#LJN@Oaz6cJyR
z`GjT^2BeO12Ln7!Uw>MrDj{FLinCw)3C(Yfhwd!kz|dA2kv_Rm4}m#}KbZ!!WOITO
z)CdU=DlC9DM>su8aC|^vIJKCT*dJmHS4@N1;PUpb=yVodeh0h}qR;4r{N-#Gv~T&c
z%L|j^qiEEE%x{d!uGdTb365rIwRorg+%N5vU+bYt1Yp$(U4Qce7ZG*OPo{x;t8*M9
zsJ@Id0`(X?W|<PgB>Wj&-)3P7)j<tuDAGob_$zU={Ot6$hVz#HS4I^D7*A1A9VFU-
z?9dpBVJC<mc7rtzy)k2g-*+x6N4u_vO0Y*UNPzYo&W*e=S$OE9{c2Gk|6FH#jSNKv
zjA}p{9qyx|`hS^R)K(ubyM@4NrbE$2vHdkQjNBOOldZ04gYhJymor4;x%GBqCzG@q
zX&+G)9AGd9XgMHl+f~@$X|H4a+su#24$Do)2^mIhI;9ztDfTRqzTRwCWo^si&bIpU
zW9zt4b&6X9PcMLZ2iYJxt+Vz4-AQjl-hk<~$7*5LPJd4Uvh&YDHopJu^xFF;p!+|~
zQ<|2@`IkR+3jCS^eKd$B(<s4C;bY_Im^~ZgVB!?or~G$3oj8Sh<30OHgMXbufhM}7
zrS5I1QPs4l;(h{~470ostG%oS&9c;cWUXU0npqWQX;P@EP%Kv(6!?51)eb<-+pf#e
z?ljJ^=6}Cu4OzRFXv!<hD|rN2!4=rNLsb^l$CE}pT!v-MfjjofwVw^d>Qf6&8{=S#
z<D}q+e)^IAomq~d#^`5v63_-!r+CMBWnM8~mXoojTE~9uow{*)3q?72WnS@lxxDPY
zQ}!~G22<W^I%>ZE_4sHnuUX*tZzjQBrSFH8n}10V_#sP)$1CU8dq>Up?OOZuG6;ds
zoRb>E663<41zdaM31&rF0_2Co2;I69%GI*!b2dBnG5@9+4kH4WPK{!*P<|EU6rFs;
z!GwHNCjD6MB_20Fv}+Kp-}&6>HjaCrYsW{u=E-5Jx&k}_rg_ro){c%EZSs{6d2wfS
zF@KK#<4+$GMGc%CL$113M6f-5R2pjF><Drtxgvsf+<#02HE?zWx!PV4!2`M+JSLJE
zkak4XWyyAjSuL7Kq)>`yQ;4UrcZ3830wbf?K^pt`3KJRqM7MCd4khsPtk?QAX6>%B
zNSLhMQl6;w4KxqT9fvNHgUiwJcbVFmWPg36dpW3KRlLie37+?8gi|>}y<cbX_gY?R
zKIl7W@Tqom#-~WFM9*(3XE;X0xbyVS;9dHKR(#D#B1A2<#$=k_@<Br>GBE-+y9>sk
zM4-#;MLG_hOMjY!fZ{mI@M6Zcn1~t^{Iy;#maGkp@Cxbio&qN!2n;P%@nx~wV1EWi
zBfRqCD1<G8aSxX8PJ&a^$HORAWJSO@Y5YRZ9>9JqZfWVj9rdk)90Ryoid~(5^(!0R
z2Gvybd738MIGB@{)ue%YvCI@wtS7PXW@dm=%$-hg2<exu+*q$VRW$m{qme#7D27%r
zcq==P$`YF;$Oxwgvm}istXeJPKYz;YzI9Yr$h+DM!0q32#9r$VmQIj#lQARkwB0%;
zn;8ZIGQ<+mo3Az#nh51Eal6%$9W3QybwF7zR^L)C)}X6w{3zJ0D^t1H{O3&R!vt&%
zAye+3k8sN5C1YGKQ>AdyVQHe<9(k=6$}(5+Sx#R^%GpMqn=DSHTqgg|_J8v0(~RZT
zqqYt@rF9%>s#dTe@>fqnX5L<`T3M^f5n@ngRU*N%Q0)YoN5;_?^I7QO`z_~;ldRSV
ze<!o2uqTi|C5_SM`TlG=#qs{dCiy#vuIb-O`rmDxpCo|qs>pHU)E~OE)-cT&X*5t%
z5ZGJX#O|%F9EcRs3`tj@4S!!KnQu+FB0yoe3BB0E!MO>lwY$y3+CjI~{*0m+sW+-M
zfxGY0_R}GRD^%6tt6q%*nnqKg#Pfc_sl~((8SAk$n{Wy=ac}ge1xhFk+jZVD8^)k~
zVH)$9j!eTo)2C_U>+s*~{;BG`DewNNyrVXng&lr(S%;SVSlx1dEPwBncM$pCU1!_K
zO=V9ws&`6l`3$DuE-c~S&<<65j{<8qzbc(rB!CY^d{h}p4j@d*4>GeoOHm+Fu)Av*
zSL@(!PU}NxkqgU03ySO3S{-CK=mE&)!`j^jWrT`%3z+fzZx?d}IetmQgR^$Kanj}K
zh{+qPc|q%sRnp0{0)I;EZLaaba{4L^!Nq<nGoEd^nP(UOl^s7ZDl+&v`Fpj#8-_UU
zq;8xdr;bxRNU^8lk?H;=@<TuMUGVZxRx@e2Bv{6ofiFhxYhz@$D=i&Tp-|R!xjyHp
zKAUpeU8dYL?HA%}rNWt}_oBd4Uj1OGL<n|hhV^K03Et<|wtx3kr}!pcl~z@MHm!W1
z>qfC4*^Rh7;iQf)1^qm$*<t}yO$#75{c&d5fpU*O<6AYdh03gk%C?zw*<fTlY#N%e
z5Rzf9Gm1J1EhU<Dlu$A$43I~rl}5^0fsR;%YT(Hc8xoT-U!cuY@aoVnh(U9%cXJ`n
zd$=c!XBcOKSbsJsPsD8}EAF}6x6m5;gY{NoJ)_4=ZwpjDQoXC0rIGIFGLO|5H_lOt
z(l&Zid{JQ8=dp;M_x;gj>HadbCKo;uBdtE)_jHHyf2K}&nEcz=|H-wEAu4tb({^U}
zV|astl<J9E6o}83Asr`?FkI-cSR&>OHI#u_paW;F0e@N}YS}P~^i)r_J>lx6ea`NO
zo)}T)&xw=I&o(TdU2)R}o?Va0=$eO}>SlG5h4#eg5_1;`&AR~DU*cPcZh-HUsH5|9
z^qqWP{eS4oM)?IHDi5}xFO&!Jj79*t#02>*R?0wpmGMW)eyWBBu!`iBRNK7M=g+B|
zteVC%On-j$W9(k$D+JmY&Y?^p@S+f-zsL{`-C4o&A5mTllGXAzi;TPKv~Te1Ku6I?
zsW3|)9z`RqJo*9+CeLAWy^!)O*?LrPmf*M+dLQCwHa(1^3DH8zXmX3UXB>n<1Qp{T
zB&FAF^$tEZ4t}P*5BIH=XPO@oKx+FTBE0lQ34g!aM7;onFs7g!wLbI?n@5e_N$t2%
zRh(P|9cZW0RQXW4y*P-h&ohWdmExV&g~=1kyuP{9ve2@#Bc}#p<>1A5P89FX0%8rb
zp>d7^@wCxCZg!|Kv=9uw!2|UC9eTHwVvI^|UgK@*WoMTz+;oht$2i6;rU(x3d0HS=
zKYu;JX-CA-z`?bcdDTzJV|4V1!|9-+fL<_X-z}dEzLcoA^4M{TEUYRps`KKViJcZ9
zz}OvUWL{Rt&nuQ~E(IbwKwAt<<z~bT$dj6Zfd^8`Z9jI*nXX2VTG^ZN(d5$eV^o?N
z?+o4k^=oE)YbodZM-14`;_rWU&je814u5>_CfI9*%`i#bAfWpNl|nR>HNW|Cmihgb
z5GDDMzB24*)&+C&Gm*8*ea8?LCF|-pX`Wa&n>RZRq-pkWd6QH8(4A~5&GLg>5s%KE
z`5qei9{S5){=zd!4$vm#q1@zwqV$MKBQnv9Gv8yK>*OZyM(~ctZ9|EaRMObQl7G)E
z(yPlA*~V5aE2p>=^!jk-z#Y)k(KN06?=X%=73D+q@3Oo+CB;dpLZ=>&E$PrW+lKy`
zWtJ@K<|cNRjmHF^;K3~R)7#3#O;Q|}FY&DvG?c`fBVib7QQ(}te4G?`P7C^~?yF(C
z%pX1LcUU2D=b+uFb(<$2P`mN>vwvp0QAhP=yK&HMwVRF3Q&=)KgLril5|(X7u?3Pu
z6Sdx}2T1YqB#;AO-@(|w!rs&La2>^$PXn3N>|7bPMFkoGC5yG-dVH4?N4MUjSEejC
z+^WgZ^buz~wg29GF`N!o-HSbdZ8GBewA~5WecEm^g8a1I38{YCZWIw;uYV)4O^2NT
z4pT_2i6-t8`3a&GY1u6WciMp0hB*V@sF!v?e&8wHfW2_4&I=x~%nJuG8=hCqCXb+G
zmU5MXI<#o~4_xSV<FG*fr#Yk#Eq0YH_*x0dw(O+}8NcWv7k4(m*bkutzCFBOq_Mf}
z(e@s4hh+0Rv5gU##UL6TM1Rv;TBkj8y@z?!b=m~c=vV}tYt$hlm9JiDlWTYSX3j(;
zaGuX)u~V1t#gwku-I_r(y@l(QI7|~7gvM@Br4jOQlKLTysw52$CSGRn&^S}k4{ncT
zqIV(>XG({$vt-1Bu&Hf4ftou?8L-g*jTb`_vo}R0YC2LR=1%1W5`V?2=T3!;+&u0e
za$!G^p*X4YtWwnJPyoYO5D<b*eZ{^sDR?eW;#p)EP8W_^#SLhG4;VH(IGN&sKlBG#
z5>1CHiM}m?_<_O7)L8a`ZRk@sO>rEOH9uK4{BO)4P|5^BHh)NeED(9I8Yx!%)<%_~
zh@I4^5fA?m7`AB?%YUJOBd#ei705!%Nw<DD0u|T_4`^#B!1g%WP}@$@`j=`ai8^Df
z*jr8!Os=GJ1RmULk!P(*shs->dI(lD=&KtzP(97QXpmPATr@HZ#N>*dnOjG=G6%1I
z$f_|i8Ij7z%eZc(g;{bq&~i2Cv^MYUB=EyaMmu>2y1-sMlz;dXN@v!mg&<!o@|f#h
z5$#h!;6AMxnK>y4Q7KuVnU=e=bzaVZ(}1Dn;M9tRSvNVAzC~=pMsKnTpFJ{BQQ&1|
zYJp2$vP*|ex?XRACPP?Nr!fSHT4R5<!UwA~3%fj?Zo406k$;LT<SIr6ApeYFIgqT+
zW4U_e^1DdGvVZc-+Q~Mhx7$ymV3u0<W`qxIdo$VtyfLoosL%*m(U-~#OQmG_ede3&
zu=Um)C;iNo@3&-Iy6J-Q4snw5z44N*G2LSF-Ek({8t;WS_=?=?OH?{^st($`o5p^a
zqT=p+ll9zza=oi=%O9ifJ?MJ_b!lXhO4$P01GjM!1%Foy4y|ll;L$ry=2WlZvcAU&
z&%*miQQ)x~R}ONtAN(9q9!oH+ZFh>m%mEo>t!!*Z8(3~=GM3}Sg-+NdFO7~OUyC|@
z%2$*_L7km0m>Z?Ywmtzo1gDxKW#Wc6YnUA(Z?UEEhWujNDq~l&nluj>Vj&_6xE$FW
zL78g(kblN;fr()E8*S-QE`?+}Cq{kC5YEgOMj&2pP!wHDMLJtQp(!G{kM5kqz2Ip@
z_}+9i$5UQCdP~9qD`INe0gBj=Ml^~sU99B@v(@D$q`ky6-(pe~(Zjj}RB_v}zggPE
zuRQtW`9C%;<j?aL)fX4MsCg74pBAVW{mivQU4NJOR=FPNFHp?e2J4$&4Q46X80?i$
z$wQk}rTw`UeFw^!tigUb!<jZBAkW(BUXgbX3Lh6@&H^c!q}OrW2Sp{3$%y_6U_KHB
zx(1j9kwEp<!OxAhxip{*2n`#W?~zv@I*S8ZAHVl8iY`$mKSn-YMxd_o(=uydgWaU%
zS$}LxslxwJ3Gt`a^8b`eE0RZF%{S3k$jQ5zRQAg+DwWOc3`h~3#n#7U?8ewDhmnWN
zK0Rjer*ycPc&O~S#omL(d7SIuF6jNubASozA`{z{LoyT1oT;#*sqKn5W(ov`7WMM8
z<a$#jt+=k?RFrc<R&6^tWXUJFWOv1JK7Y02B7?`3P-vkKFL<=kN4Eh9$vn7NE|*o7
zijcHoLU<~oCct-TJ9RnoleB7EfNhJf>RfWCipyl#J#iQz;7|syqk|mYxx<pOu!VzR
zv@G=uZ<u2w8VeB%zu>VKr|s53qtj`ge30RssC9@=+pW_^yZad(Hjj7^2Gl<EX@BZ3
zrQ1wob~eHT($mw@ck-%iG(<(2baqYB!Ixz|LyU&(&y0zySW<Qy_g)>-tksV4r?q2d
zs@XfXoz^{nt~_JQ|Ha}ZlJ4~hf^wt3nqjfn4S*~cKco;!0p-VrxqV*f3J`+0Kvj*o
z08=#unucdNAG;;ctx5)eKY=8!IDbq{4Qgltjig%JwdZ=`lBI(FZ)S$cKO+Bm6Rb`0
z#GU5PC6_R9cwL;hQ~f@%B4c(A5Qp2Up}uT_`9E`yqU@n{2Gv+I1Il`P2nkc0nEP~y
zy3xO4jt4&!DOBmH{!8OG^2=E6dH9%?S}|hTvJPQ^3|za3zE~}n1@JvnB7bN6SbzuF
z?Lv@57rb2-XVfH`g(=;&=ei0DD&`cD;vkhcpBL{qID#j4o4%AWetxQ6QV>DlqLeZ{
z>R=!YU!RZ|F(}LT_ZS^ol7Q|%B*ff8dB^5&QmkS@Tbk9SvWdw5ZD;7joH}x1#3Jtb
zF<ryuK;I&B71w}>9|TWN0DnV9P`qrm!YKk;A--Gzs9Tr+krDMo1fuC}OB^LUa(suK
z=NS#TbJBc4II*gGF?l}l4aD5xTCy>*KC?p($VwNuDG_AI28)C*8eC@5qi*=}^&n*R
zXkwWIb)jQaA8#h=Gwa<mK430N{VO9A6`NBsn@1u%$T;!cpwceL1b;Oxe5g`D4<b}c
z{zxNE&X{1T=v8Dm$k2~w<^Go|{Wd`WN?eS^A(VE^IgR`<Wi>Fwi5cldb7oD9j->R`
zN!C8hI^no+Qukx)G1PbY=84$YQWC1D+g38R`Y!hiDkvTB1ERH&TK({TMN}kpG>%l4
zhQ*kfMneWt_6SX3WPc;t!g}y#K}q3yrr$a&Jj%M!zQ2z9LnS>}B`w-7-b*4gA!OMs
z#A{3B?<@wnht4bU{wa-*J7$q&k1PV2Q)Q=k_XE#&{9w`Gr$jdKkXt{yh-m3A{=3A)
zvTpIw-e>J%d%*jzUxA58MGd*!H7k$h*usw|Zub;9q;JAAqJL)&ZB;?cFv&udW%Tl5
zu?CYiyuv$~&8w%#wmrhy9zZN|sO1IcvcR+Rd_t@nw43SD76hB6(F1VFhRSL<<OQ52
zSqtz1NZ2CWzcCstEEbsQJvhu6KV_B+ouOnAsAKwkZ+%8H&HxTtr=L;rj>DX*KL3?D
z$p-Vd);)j%yMGGs6`5igipmX9bkI8KHcq;BjBQi>D8Tsy`r%b{i3!&n&O(5=(hLeC
zV9#m<@MykurZsDOuNIoT@*FR8ofq#&|A*j&otLHNSnNBuSv0wh^jrgL={PeXZ!0mO
z?yR{NF|BuL9tKth)JIbvN{U%DlvH4D=y3(5r1OZTw|`7a@k`q#)5_V*<j&L-k8uX7
zad(!pZ8|K|%Hpe%*w8w)R615?NT8?wTOPHVz?Yr48tqp*cooByo?OP8JUh3@$gO7T
z&SdAdEEpP_8=7_vnaw@u$~)lt53uudPSg}X_amI3NzcNvcsYGQD}?0ne}eZEAE69V
zXF|`ea(@~zY^xu#Ik^XuqI;p9)b5#jdAjaxYpg}L=j<{v4*PF-63Hf-;%D9XXjL=$
z@gE)Vadd@qjf%DI3P9W3BY^jAf<qD1@?bv#@8@2Qwt^H7ftFSnQfx}uFjxk5>gbls
zo@uFbo7^zi%~M+4USH}65Zl|;d;#_BWh04K_J0(a-BG%y_sl*tPSkri(X!byOpxMh
zeitoEsC>+9ihmtADV|KVYbDCZ_LfU=;kWLNm2;dWmKEuAfmH>sb;HXVO18|5TE4a$
zh>(>%^F*3J#=E5^kkS5Lv1iAvPmOG<pLGVczRB{3J@DUS59rI|f36i^wE#9yH})rp
zW`E@R8Q;?L;{=Uxh-rQF8N^eL@eO*lhYD%zPmV=nQ|s^-WLeJ1WOn7oTCN=B^C<8H
z=xTB6FU30*;9N-?ww?1;?+AyZbj<fY#k&pl?OgpV#MiPjMejh8WfR~Wl}0HUe?|@s
zUDIthkI`|h(`~eWZhV$gp!FuOQ+wLq*?)hvH<vs3!4&0>Kl6%awCTwf8JnOL`y)S8
zCyDSD`Hsx-6iS&dfvKO>$HN5(>SiZomzL9j-mUT_M_j{~u-^oG7Hmy4r4K!`Op5)j
z>6&n0o64i5XF=dBZh8h@7ybeD!7TYibDTNI;V!l%pV{0|4sui<8jV$_(HE9bzJGP>
zco~zWJnU=MyV~&7jd3WOE2cHwcU#SBV{5O5bkVJSew2!GMShG?GV5ze0fhh=sbm)z
zVHT(1+6M1R3$}hMd%^x>F}CK#W~zwT^f<*W{<nqTf;tv^Rll1r;&J*}yW4gf+T;a&
z-t&pJXu=Gb>&{f>^KUgpCZVV@;(xFoBQ9@I44ysI4$0US#1aZ<+iVwsNRi!!7v;u|
z<x*p<ShB_2a{D|e!C!0c?lzE&tCi!`H(17ymoQd-{LZoy?E8h9DQN{Vw+z$@%8I{d
zVFcR4@mHhL1ght`kS`u%1S_fF74gpmsxNTTm}m8A#G|>{h%7Pe1|M5oQ-8~M4$R70
zqNkTfKciKXkjR`hET&XUF`e8TG%6SO9<!<+c{+F{bd@rH33W`LNE)H*u|F8|kkft?
z_yelISmu0)IV~#&QJ$-Wyaog6i5w&XzJna~Z|M|~7%X##h?e(qgmgY1A2m;YUegyM
z`uxA^1rbV{aph`SL*@g@Q-6wo_*ybbW9fnQe}JO}<vCmE)%b%b45>)coAIVXQZi|1
zh9JLTZv<|JqlmU<_r&1|T!L4c#csdvr<32bmh|EAZ)Rhj9a?Mbxv5Kb0vX8I^YxbS
zq&zT2nL*klL)D>}FZz%YTzG8g!*P_P&1n_ND-m;l)(`x_NAmD=+ka>#zSK9Lk6Ign
z8`*6<4cq}nf8*rbfB82Uq1WGk`8Pfx<WEAceWEV@c1OoD-$z>q(PSDW7>RpI(l+KJ
zasE~mA1K=>2<4HfMs#giyi;d)Zb@b!NbE?=olG;HufvaeF&!vlW<8OBfJT2Z%vD1l
z>47X1N5R!g5ajgy)_?e^;<N-sG11=~M=qGl5Cr!7U1r!+0snTh4KYy2aG}$BaZ1)D
zB5UhpT%u?k+N#&lpd*xB3zTP<T#2oba)}k7TPM#F%dBJ1WORxDgR(1;kvuf9(g>%D
zb*v=Tk&{V&(@j+Ysp-CQEc$G@Kx@7*o=_)aHRPt!$)jLyM}KO0NEn}mZptt(EH0J@
z<(A1HvTA}E!i6fHnM^p;@5U~{lljwY_Q+f-$$b*CC~|DuIxgH*5gfI|EJ-FS%ku5u
z@ZMWNEeQ+hBR2sH^zn^yuK-cLVagSwzkh>FE85bqVs4e3&9v>>9aU4mPcoKOXX5`#
z9u(DT&~u=ubAOfj^xrD)iFPO~sQO4LPyDCIc(Q@$a+-(*#0@=JoJ3hc*lwM$>(4CD
z;Y!xs>NecEMx02ow~iT?yXsSZF&sMo7fiW_+bS#DDd!wo);tmJAX(VeW}HYS%-9&q
zjSRB`2RRa+W^b4+mzo~t2lui<&Q9yKZiAJum1YR~rGMG|h<<K-MzxbV0t{AhRGTQ>
z_o9Kmcq|>$H*s=Xbdmf#U%US9Yl4w(iiQ-yX@ZeSF^EPTKL~D-bBxn*<e}o-;n~T-
zN$t3CzH>qM+4Sq&;=tl{CSf)_%876>F1_R7kZ|V}K1;9`{vuvLK{_+}wnqb3?1`T}
z2vX;_aeq8Nu6(IfjEx%qr-OY0$0YEHHb`qlLSwj@HcwgnFN2<0q-_C~dDYdC%$vEW
zPMqK&s{b`ij7QL=Rvpe@Ls52Efm%^A2CsvTT2XgBq}J<zr`@{m;A!To1MR@RYCXcw
z>)8wpvq79MEtr!{GNT5VEgZOv`=j0iO2Ag&t$(k0xP7=VatHor$z>R}zS!=<Wc8VG
z9Y)z$nCFnTwCt<TphD3VCvCNCN9QVNH7thi1fU#IfK?M;J8a9dJoL50BI}Y)W;!?)
zh+(qP(%_5xRGFddX00&;^l)+@uM*C&7^a}&yigbf*bUF7Em6`T_xi5ca6uFW6^9k<
z)_)982RXK9%GKHo8cQ$NnqS<@f;~8D)K1XZDG^&lL~G69iVPO(8?DRT9T5NL6t~EK
z(f7|jKbt)Bo_&0F%%oOTU)DmY>^~(a&%u2Xln~9yG>TI<Op)^f{-IXjL9Gvh!q6Yh
z=s*+X#+XH$&!)`ylme(qIfbL5rr3*%7k|^`rnp6!=W2pH%k@d@PQ|hK!yoqOf4@EY
zhb{Vl#ujCFL$%zt%1OY&k?Yq(41;uSZA8H{HM4fHpKoETYDn6RR-;Lt@hXo$s`e9+
zocUNV=koje*|HV=AjJ=GzDb*B!HPsQhIX(J&e-u72S)UI$0EjjQuCJklXIx^5PvIo
zCD3+b*D6u$^|Bb@dsw$T6gd0DX4$S5B5bsOxK*nh46ie+{|ZBvrmDM_>6&YcBBUq^
zLuql}aCM=xSbT3&Qv8d>DhhpD=dix^hy!-hO>A9{RtoF3FLA5HcWVds+TlD?FGQQb
zEw-nLeHQ(j8eBy}?pB@<6T_}pX@8BeL?L7%pAp=BOWin?fgwW0npYIMwRTsl5(J)q
z9D2*Yl`$=3Q*zYkHtMKzc5u+>bPmssjy^jy<BgyCZs7k*IcZC9TAPw#!mr-coh7(&
zg9kGTSG;D*HuTevIGEx%vA0(mFcl7R$?<Q7!-yzQ`^WaS6wU~zr*Y)X27jsjTlrqJ
zXI_Qe_S}~OVN$NI5SNA#vkih8MXX%r*W)JH$$L${7q69&O3zQy*zW@h*6-^|0~>&w
z*tK@-N8zuro9R=8aN-+3MLRU-K_g6NF;36~r!MtY_zAUFyuwlIL+^d#W9?J3)$Y~m
z_1<x#TdO+7!=u`V-e;#E;(y69W%~@ffyP|sh4AZErmSKI)$5)=M|wfg7mn92kE028
zEc^M@x98S%z~cj`Ity|(5GrX8;WIt@!z|(`3+pA=Lr(Jbj*VjewJ3W1s)XNW4lotm
z%q9JsASCanA$!HuyxNNo;Dv?Gi9G+sJ^V0vZ4_@wKC4NFRi>akc7NfXNZIpa4nMac
zU0i5WD_`=-%U0wygI!mdsfA@JA94d{#p@?ZAbX|4FIM~(>>JxnB@_i}pj$5A<VOmx
z6aHSQD3?c&v!T2Hvh?Fc=oR&jrgXJIS2#|HwuYHf8hoP9GihS{kgZd!LDhLv-YM^B
zSA^Ufv(1lY8(wv*8GqKJ!6lBX4ly1MYX{v{`*ZJ8qul}fA^Sm9<3)zOBOM%hqPU7i
z71?Ff(A3)LDOFnKa;1#JE7Nd|0#9wOyF73@Q1zTrr*4_+Gtcw-?Rx*8=IMHr(sjJi
z`9ee<Z9G~|_iuqBz_72pi=c5YvNZd+ypcV$DPt_vuPIjav41i``ar>tJ}_lXe=3Um
zAIy?8nlP)<2=TdRCHX_wXZEi;kr@vH*mWOpN`yR(22mid3a}f6QA{xWbrKx#->1B(
zp`iSS)=1|#d}4~Zc+`CV>+#VZ1QDWA=>}q1H!GD6j<0YG|M3U7A}~AOEc%-lmA`R7
zn<yvxTTR@HzJFS(Z0|t@<1~f}+77E;Oz$yaHiZ&Zm5y!@AUCC^I8GMQu_l{6HYEqy
zJ|05P7b_8Ro4L8kMr4Wt?0RG|g*=S0>j&gVGIa+m*^nJYKkB8iKLM9qwgI<X_&RHC
zqVRMSr>pQYY4+&69L4Fw`8bNx6?xcJDt;*wa~xHoO@G{*?l{J-m#jd#W7+tz2`KP*
zFcsy9o{*M0y3F<?^h|K*wXvH-;psSb6TAXdJLV^kO<NPE2b0(Y_=JSE;;zs;#({f-
zJ<{{R*o{}=;<ow8W7FHj>B00i0X{apS5@M915?zvwTY(4>AdE&Gw1d1GaTQpIkCz&
zPc*Z#hkwVKS_$!Yp4;ruvXg7H$)DX!L%QyqO+A_iO1bMnFN6s4(8auv;B?`-z0e0i
zJ}@Vifc>mpHCpw~&EnfSqQm^_I*NJ14<%lrfhc{<d}K5Qm~lhb-v0(j3J?-t0~vwu
zp!kT`HXuJ7M({RohoOyJC6RF`sZnp)8LQfOHGhI;?;II03_`DU_ecX}y?+Eyt#^=C
zV_9i<XnZS-rd63YRqUWlWfunP(RmnR98`;Dm9G^JoVYiL+lG(Ch?&7=j>t`7EWfT~
zd~sjCv;oQxa4q)CLNs|)1^xgoH4Q3_SC^Thc`R$UFwMdjMx!U;;T(H$O>WLu@sGsP
zd4D7@I6Ie8%NRWG!~6320(c8(y%yu=c46|ry|)KQf@y+klCW%(kS7Ut6WNdiv(b}C
zLXL&KrX*zcSC1qKc_c6-A(v9iBq8s^`%1zBcnfH~mL%kMVM>C%w}(rDG}mpSkiV^3
zA`9l0!Y&N5)l*7CW=C>AaZqUSxbl#tf`45gEYw<2BC=mTP$aAX7g78^LSgA7M=H$z
z?k^UJaXUv7ipEVEy9e-oRdKMnzztcz66#~`P_54MHMw6w@3Ht^1*vnoNsDFtZM0u;
zaNpqgA}cvrRC6b2EnzX?G7%Aw)uXC4r2;@JvO$D_%K!tuq8MQ9t2_yyZ=b?dqks2s
zZy5;jAWGxM76X0QITB&eW>vw^KU;0!T1LNx!0eogv}}Kd9t8ebp}?!!+=h0(fMu|>
z&Hviz_Hv+KsFE^}tB5V<9u5+WkP_v-&KSOAse&@&`r`aPBNJu%m_IY~k?!E+v4OfS
z$(Wdmqdw!nw_Vi|{T)QJFwNvIxqlf1GY{AC(47S-^Al?~O8u%+e4Vp0S5dw;Q@9tV
z(Cmjrtli?o!pB3RM7MlYMZ4%N^3h+a8vnyk<_>xF{rB73O0=+gT>@Fpq-|&5PSF?P
z=~6tDOI{jGIwIu^8E#G#@9K@i+SyUJSA!Vx-f64do%7h-{MPL*Z+US6w|}N=ndc1J
z-uskgjc^7<9F5h@Dc&`H?Y3*ZgVxDm^8-i}({VPX^8eZU4zMP&?r(^&i@|5b25V(D
zqJTnZ3IZZQ0Y$2Sl@dcTKqSe;OlVTGtJuX=><Xy6YsaoA3fOyZYZn`Kv7m?|-!pe6
z$xJe#xVrEA{y+0P@4Gm2?|-@Ho_p>&zjN-Ldr5;soa{!~GxZ<p+CS|U?F?7L3k|$X
zOzlBx1*U_`T8nbZ%{JkwQmuKd)@fZ^U_z*C6n$t51=6IB`!<5rNkyG?tRcGSFirhv
zNoyusNe#HtR?y5zkr9A{eMUod=;K8PhYZq&&hDx;C``&q=&ETm(tl_rP3&|d?J%Js
zOIjd-bZ`97z2~H928({}h0M6t=&QE<QTKFcu&<RlhZ@~s(b!Ip=J$w(L|UU7)nK}o
zZlttQqfn!p8yeeW(fqE`kVtEEE-3L4eU2=W#iH*iDfOk*RqZA5M)w_jac3zsw0cXQ
zYKhdHY{B}g(P51pi+^%NjnFXT45#p6DY2K%Mm;$p8|^g_8?D?h7Ckp4Q2HoZ_ddy{
ziIJXagPR74Z(A%;J1GEvmSo#y$+EMHvs4#Rn=MdK!%S$F))W({LqGL2t7^*AgB5A1
zOOq`l=_{+{PN}V_7)14dZx5%g+!=i>s^My2-zWaL1qPf2IDg2-HMgIAAA8V^e)jzw
z@Xv2mkp=dcm<(D7g>H|@*9|=cx?>Jq5QZL@&_NjIrb8H)=0XyB4ATH4X%NHcz#~);
zqrF+D!Cer9E0*)*iNp~EUlLH!e0%=&0x24Rt4&h5-@fT&iP(%pmiQpjYiLL>U1xji
z3g`rsXjMmLRey*}uJ55U#H0CeEi{}<l*CGL!@|A7hlhEf_%RsjI7#zcN3TImsYd!#
zUPlnZvPcuEKF=VFO`}f$c0h^04FlfBAZ4SbP1o2q1J*SO5;YA=Fd@pN=cFxZ03+Ct
zLcMri66PH!Ru{9Zst-$qDC9LXL}_73DG<L{uW{1<fRX)f5q^L9mKH%r9<Ql7u9Q4W
zg0P6msn$lq*CS#nPo~^#CMSYIigRc3K^a*0hYGPm8A=l$YU>@jSP&wh+0Dd9Bm!DW
zP7RbJNcGW?LFlVP`JGibo*$1OC=A65<KkiRo<s5~4@&+3l}*h_>JUH%3*6q1K~?&G
zWe}e#H&7oQ-(Y`znk&lH@r4joc1bAFkiHG6LO3r0QvhlKjSd4l6h>tO6ruVEjn?7u
zi98Y3cnm^bGPB_$5>zOFWnZgVBD4gvsbLe6rmchxI}Ph5I6Yl7wY?yTMf?Hb&^1zo
zq2b&>uTkMcLVdiv!?fRl<RWcuu_3d7d3K*5?@%AFu;727kRhR7VLsZVLwy3gM)`PS
z&jt<g3Z-eBC^2lfPv~gPA{qn2<2PYIXy)=i9}%5IwTFbnB>uo_5Z#b?4bnX%UW2}H
zNW2C$G$h&?Zk>}`V~W^7+S8kE7HLd0nyL83^Xxx8tlwwaf0^m~FP~@11sFW}K?XzW
ztJiTH#8iLd18^o|ID&&H+UwoE9{$z^vYG;)8U|sF04wc0068)wQI%k&V|hXm^NYg*
zA~g8cNFE1n8d^#Y?rCCc_1YY1!w$K?Hv;R*pH^@{ipRS{s2q`j#UQ!nhsQ9FPl8@r
zB2bN7264=#knWrpyghmaY<P7^nGtB(f;er6pe26_wYD{y+R!;Az9!f7;RuCo@^v&2
z_3%Gk&>xQpi75xB6{Vuim_S#}?&QEmh(ahVw}B)`veK?Wfz+i$Rdj<BQl1NhOPuz^
zVa+hH!R|HSJR0cQmmmujjv}KXFBDA_!?-Gu!aN}gg@)T`NJ@gpF==TBGT$SR{|mV2
zKMj9X|0j?U*}Dzop|BuW5`;*+#z}$S(u6(|^{cOT4vUf+-JUY?0>{?`3+j}-&UFA?
z=hTrzK;&^8AYI6U9y<I-(S?>L{a3k6B_CWx%b)txJpkKdg%SZ28V<r(uR&^v#>8HP
z%Dp54FTT!Q)n6B=69>Jj^xs~`ys%ehALD;uIk@SP4`vb)i<JU-e&~C0U7cK~-O)&v
zr-hZ3hUj}cSd%cn#;|BkQ7S%ba2l)b5upGIfq)oArIz7G?DJ5F2OtyBP13PybTFbj
z6v&e$5Gy|@zT}Q+08e8nu31V!j;tV^)0M`kYjwZ5^B9ajrNwWti&m!-7B+1y^8bG*
z0{R-F`R_s^${*bhN_tLdH&T=4gK8Ub1M}UHZjnV9Gm!%Y-O+*0j8QWuR3psB$?2JG
z#BqOhr`@19?ddo~iO(g#ClQqOZ;h+58&U!Kd91Z{qCpy8qDKF|fR(66Cvu3xx|S%B
z2gl;}Todu&JM?sXN~!dZTJRiTBny8hI)r4=M;ieJX@i~r&(Mt4s=rjV+)syQz6=9t
zBTF?BA`Jl@7z(0<X$|2a(m7PrQa}%VG4!p*DWr5G2EYFW<lP98hIBx1Fx1qELc7_D
zb~ZLSc5DbjHVZ(Kb|XjxkeG}V<?%c@^&B@P;r|t^_^&`k+AVgvzoMcE)}ep@v#2Uo
zNd9)R3D_u3POr$}yaX7F#ns0~LqdrhQED;p@mOT@T}7L$qRrX``hQnNp|6PAAnFoY
z(_#U8nma^s%N-g{GS327&J&8zrkQRK<U=}B%Ial<W@#$D7yHV?+Qgyz-v`=ifJ2wR
zA(D*$n<$6+jq!gP>5!+<cmIFzg%E~1q~FX({2$JnHP10L2!sd+paq6VhJ-*w{T#k)
z{1+mk?;8J4H6Hp(NwwzB9xANTT2s*iP$Y0g0bMF!#X})&4!;?`((<2QSxNp)Mfe&D
z@Sg%{_(j`@EL?<sb0GEw=2?JfB<xUB6!Nt$>mkwl+DF|}46r88gdKkl4+zs?bhWNH
z4hjzUafAHgBnbHUBRn9CJhKz=FOihzec3=_L?Db!1z-_h1;Eb+lOqr;;l+qxi~t)7
zmI>p860m(0lM_2d3_g`Zc}cJU5=!u+#3FRaC5mdh!UMv%gMx#Cd<KOFhjM*J`Gtjt
zd03?3cW`D<it5^vp#Fc@4~69rA6!fY$q_N1Cnq?B0)(g>mcZI4H=(dx`R=P}u}DR*
z2}(>Utfj-6iFlDFuT9WmW&ghDupNzNMLZP6*B_eMtR081tou!8j25TL%|lX|j(x@r
z948du7Z&al<P%DNu8`JP=-7Um!R!w41cF8slgSeZ!oe$CerkV>{WjXDEipm?F#}^y
zdx;-@(pnIrB1t}x0FNkz5@0)Y&V3s+K`50{j1Cr1(-5Tj8i#hSHsZ!KdPk<Eaa3Js
zI5#{vaFACxcSv}6NEpc`1$hk&@bSjz;diVz`$W1%NmGx3#ahum@f9MaM@V*;Bu6Q%
zJhUoBEFw0~2P=Oce%n1*no36O8KnO{UbRD-{yTWp>xNuIP=<0hm-_S!wPOR)#C)9%
zrssreVm=U7%1aUl3Gw5hXmQM!>=RJUC_27X5ftIrnsjibPLuEjO0WK$A~c-3;t$UJ
zB+X<{{F`P)|3?wKT7;?thlH`3;zS{y3|8$X)OB*e*N}gt22Wmt8XVSdGOAj!*uS6e
zrXLg{i2YXwhMGgCngm))r}>2ke%>Ul&202zknW_-xKuU3jGvZsB7cbrju!$|aiM|r
z5$c&3G8m`B`gTDjDPQrGgr(!ts_sy*M3hP|CmZFqX6>A~QgXh)nRrq43y2IOLq>qq
zC5nHz^Q?a%ncyA$XW9c~qU9OXGVvPJxJ*bor4~#-2O7bUcc}aq2!^UD5H%;JV_r!R
zrF`(c@Vceb{JEy0t*K64|6FwBt!%0VEs~qiNFURFZPI+~h%bxj2pPd^E1gLfYn=h3
z)|GvH@+K)t4{0I{tgE!}>fi6Pvgt4FYM|<LPgQ?hKsm-%$9dJG#3EmzNb5W56#Oyj
zLDx+>k&vFDNTQ4n`%>P}I7kl`rui(&YXaC{ulf-p)`Sxtq<h4bT(a>_j}nX6xYuW^
z?F~KfXc`su9%2<Oomix46g3Y}RMDjaKuse_I?-DdaWzX~<Xh)eVxvdm%^;;IyM_?D
zhh=}0$!cBMt0b-y+&6=`*8Q{^#A)J!=2ItKk*XyBC4)~QtgQjT!^3?-o23OZBvB5_
zND4rEnsy^Z03&QZiIawtXiXxgG}|gQYA}!D!6HirPqeY)<#MSyvS;IYYykn#X|A-;
z=86TeNPmVU2&FhXDm&TO?GMU=O^f>R9DaWo%m<d66%rbZnN7c-!BC*z;83q{zu+J!
z*cTcV7y$YD1^9%qn%)zVe3b^B1+hqfQm*PCxweM;M}i$q?_Xk!x{ERdvt~j`9O21`
zw4jBGvoG!<Hl2ws5`SuSF{CN?kC1RylWydZ%3vuh5kNscBe~vQ;a*&CzfcIlK(>D{
zR@EvbM8Q$Ra$yn-7EM594Hs%*MbPpV(jY!EeI;PP-%_^<S>b6ep$G<F#DGYR+7Jb9
zu&i-pj3+#G=7Irwh#)6;u`a1n!OC?YjfSE$zZ%!bEo$vyP;H*jAf$5_gDN`E3OIFT
zw;^hV`)eh(wU8Kf@r$H65Op1&F0FqG<kA3QZH9p862y&G*OdUFOE*#y_YJFyD%xpC
zWiSLwpjPF~#lo}<rt-8zQj|3ug|*i3i0weBn(!SF2||chv={qH;AGABl*D(cj$0bk
z{F6SISE;3DtEwGkn$0!srl3^HA*nRPo4sO@N_#;a5(_4QQkLLGYT|F2E9!rAssT2?
z;(3xd7z{W)G2)JK2~`(p^?-C*LMSX13HdylHQX;9f719m5u^B3<^PRjubvk}c}cur
zDOeWzZ<`a87S()uP@AHE0pKD1E8yuoz>Qtx#_{Br2j<bpkMTo$z*F#;%8L33ewtCm
zm#8fV`V969O7ji#2=)#0U`2njSQ%-th|Egp;pi^xALQ#U?Cs%b9fu~ySlK~#HY^Uy
z#zJVF;XtfjQ+udxkH!*wmG)v08MTj??pSE{PWdIE+BG3EDyyKHCX?ht#VC%BZ28nQ
zREuI1$_;HO#K%@OhU8z24CW<Jo@yPbp{AhL4pj$f_Rvu{2NhKbLlJ*Uhl?6fAW9$c
zeGDkX;;<kVq_G8)a%G*Cg`v5kj(kI%s{a~ugbw2>f6D2hEf}p^_?k9S4O_`bErIB~
z>Wy-=mL_wwL#({FOq17NJfL3M1ED-gx^adzDMC%}LwdUIK9Dp|^VBl>Bf)fO-#=Cw
zl4%W=%IV`;=-UDYLIQt8uW_Z!AjcwjHlI8hl`#tTsu74W)N6znH#h_fp~ISpF*2A;
z<<a2;8D+9n!<)hqxlGHIQd}OziOPAhI9N`+p?9BjuDT&N-H?lJz&~m+<;|1xyoE9k
zCLL2C2=NulP`MA*VKCFMKa|mh2EU*<eiSZ!d9ry?=?0B*C-Z+~c%}d!N+AltVk!2A
z1QPS4;NC|-HcA<)#S+1WDrv$c&j7z5-(Yee+VFL&4PDfVGo~z|W(@O~TKfJE_(_zY
zupA;0Bqa+ViUKQf3{?Xxtl%V`Xar9t1RFV7ngv+Y5wK=9rB$^SXHX3mX(+KdN}hN$
zGE^f`<zfJ(0$G0yG~iRCW11y2J4V2G)!@<~JE}1Wp*LTYxU~Tj0uB+N;ucy^p(EF#
zzQV#QG~CbEYfyM_=xFZnFrQE+)!}J~T(h+L(gWIfnMy!s7()X~wLA?;5H#D=A@a~R
z*o9tHwdqCe06DPv_m~e0_X-W?1_TfC3gCwNgar5v@(O<sZe%3r>nO)VJ9KSgZ&ImO
zo=^f|VqXj0>K-Bzklt!K8VQ`-z*|Hlpj!x(z{$QekHtJG`JVzc-Nsf7HC?3cRYv;q
z9%{$dVA7bx5({Ec|E13JlNoO;PfRNNRkQtsUG((}@M%IaoWuni5edM51=L|>0T1A<
z^^lStr_p~EIsr7B7t)FY@rZ8yf%K{Yxw9;+Fc<6>>jT^_K3z1p#wJYjq+^X|<aF3%
zU1))p7hh5WwTWVBZtG1R0Ai-nD1-LI*BlNS)9{a!LCFhA86<GBuEi*_jcJZDXmhQ5
z9CS(NYbgV%4~;YN#mdmg;*<95_@ZSf+DWFp9z}ms%vyuI2klZ6W#Uk!+Tc=FMkDf4
zg1TS|V;FuTx2S>cKoHyLVixUCV70V$5K0z`M9L5~hKGXhrcgOgB!XpBgy<I(7VZ@g
z;1jA!mW}ZX;f9Y6@uBlC8ZMJ%k>(W=f{z88ZAU*FKxIlIg&GF3#_|PPON}gyp1U+z
zFqVJSK;slb84a~h2#gXHr%?$K^_!s;r0ArHS`kFy4;yZBi(g4AnyP}$XsD_D(~{H>
zb5t|!xR@u!j2ZZUipj?CADyXIfh93dN`Ds{7CVD*9%PxtJgHVbnmX)(JgHW8p~0Yv
z1nV@@I%*P{hDB4QRMfPxka$i&%##wmpk{w38c6~u*F?dka55Rp$5c)x=E-d|{tXG)
zusSiL3>kENgvJDiXo_Kp9Fiacm@O1&p7lt4|E(+r3!ng@1crDqND>SbMn^rOd=Mgl
z{RBGqO=>*T3>Jg}e>l~n3A=KX{ls^B#PhIbm1C%5%ZD1uf1~{#|BPYnZ8%hhzrlYV
zoQABX&MhU)*dRhpMWgXN87yF9>eJLzG_DTn)e~~xp>!xt21_AUv{2xtb+)7oj)POe
z<T9Zo4qOU?5z@M+Kn6=iJU$!_r^r26-FuR)wdw^|HH6%F1WACv4dp7@xH%vdZ^AM=
z2vYGTA^gK^<&5I<Bv1?t@e<{Tm?wW1@_8arDkOmAuuLqJzybmyAh_M;C(2~lG>%75
zxr8T%Aw-5%MqxRW2sTk+g~En-h5C4NgMz(%xPIOcEJ+f|5DA$6NkpoQ4TZ<UG8nfv
zkOYPW_%}3Ck&rKxi&7y}3iE}rsgO_(VFlSNQo;^kL9E}ja*;PC5IkE!+OB`+Cy7M@
zVHD-X5gCidV9=o8z>wfDA0-sRFLu-}HpC|&P$yjC35YIq2X++r%w!%4#laF7a|QzZ
zD=I+@n{=EEPa=TgdA4BaNRNrT=VQSvZ>Z}OZ_!i^h))DC>Na1Oome5bniPfQLwG*;
z=15%M8{Gi^Wky7s*G6oK=E8p*$(pd^l`Mbh$GNn`h&8N6Kg5;6Vk8NG1D&7Q#_;$F
ziBbTgwZ9usuL(6I%2*|SZ9qnRDP${+RhP#8QZ<dw4jhyC@`NIMp7RlDs%nuWR+Y7;
z)Ki;9F=R_7PeTtEh6cq3b^(RqYX}+~2oM-YKlm+h${k^Hgpedqcf5Zo@<?#`GMFca
z2ZA!eu>nXN_9qsqHg!Dk4fO#?99BXZfKas<mh<iKVs;|D96Lp+5CjpKT-Z1Xwb9c>
z2ab(}`B*qU9ED{bbT0<WkVGQ8`i*TQl^2#p+E8Dxo<PRGRIaqjkUrPaZrs~vU}OA+
zhBSjctX*z+Fn7=ppFw~A87!y)E(eDO4-X-gr9wJP$HI_Ud4N!o;3W|Z0vbkSKh$$X
zIfSFsJH##0C`@HgAA!~>pFVzRQ-m@$uSMt|HmO$LFYYPTU^cmnS~E1`i-~G<LSx$E
zUsd7tK?PcWsG<+H!{RIdxNvnFBQjffHM}ii)rS0~psF=MOo)F-i1;)BiNhO_@)A+l
zCk5sw;yu<bhl>Yz6cXhTunZL<5*<Y73*(efIZq~6ZP2GDKrKVmQ#x?vCH*?8Y8GRu
z`wxf0;}eB4Sl}%rK4quxKcyVeda76?lq4u6E`)W|*Dgo2k4RG+t*lXq$bTS7aHBOf
z3gI>7GNCw-hsu9pnLnILUyo9RXb&Ix5EZZj%B!PU+OiZn#B^z}K2e5JkCcFFur8?_
zrT%DM6B<?)!fPf<1w1*d)*ju}=}HpgEP{EG;nHA{fXG)iGUB?5Yf@`q5Ht!Y^^KHG
z(WPyqB6uzONQ%BXeOba)O9YL~aB>M?yokFEgcD$<m?wXf=r!?2;=(qbX9ofmJ5|U%
z1Qv-g<^bkyDoL%My}iA?bDuuozxMX_n*Vilu(#K9=;PAYrBB~JF3x@R>>XU3?Va=>
z`!8;>8NWo#R_fXR<F+(A_doJe4YeB+Yyc7@^5t&iJuXaq{TZKKZjfCPPiBWm<#yv@
zWk?*^hckb*Os$(T|LjIA!vrC67;=LwhWc_tgM-7>t72dsCI(g}H1JRc9DfJG6P2F^
zi#EijMq(k2vSbG05-su=&$^o+R!6j(Aea{Oq!1d9B#H!Bb)iI=_Jvb;VyOsrqa)x!
z!#9C|apXZDDi0!%!5<PO)B%q2H7w^7?*u$KPvd_j_K0|!jK~r+-pa*FvLY~C{CHs!
zEYK(<LgG-`QtHw5Aj)9Q8JNlcmcjk68CZ>=(nCFH${{DcqzpJdsHC@~Aw?6VQbZ=F
zye6J8X}l$6Fq$DN)glRXR3YjWd}3J6Bk_i*#DCg;egFNlU&H=C3~YF3qw)W!jYj>y
zvx|SG|F`e!_}%~i8^7+q*u@AXb}>9Op2@_&ZvaR6Sy`tsm5VfT%$a-GGrL29yc8&0
zD29<l{E9lTqa0N&;zF5D&i3|9<-WrdtY~ne+)sjUJx4t(9GHQ;lu&}Ag_RXuDLV&y
z$l99O9U93Kf<;!ydmuPE1q*5+CMtqqDdc}-&rFoag(4^dVvXe|%0!SY3fUr%`sh;I
zWQf%xEnY5{a{2f*)Y#u{c6JVqE^K?YJ=?*ppM5_^JN(!MJDyZ%m*ilF=a}u{VV+1H
zKNe4YIojK^peT1HSoj7@VHjsZNgQB~oGwstX=`f>0Y;Uj9PE|SVk&cm7HNcNGr)go
z;1+3W(PThTQA~(*;|ge1o#h3Mu<<u3LOJBXBr;|)l4yy)dpkhjAX{8+4)#p25>1HF
z(VmH~?U8!{sKWx~*GRF6B2g-v%@#@^KZ#Hd4MHSxo)8=df!7U_Blt(x<kS7NO0(H)
z7SkdP<;#RpIf}1BP>vOehfp~pC1`*8q~H>!p#j!O)KolJ^mx>cCzWEl&0?x`%)`Qw
ziK#lI!3Pn}Vmw$l5YxcJ!jq{SDB{B(;%<+gJt5mz2!mF3uuO)?$mvj=d-eGV%6s&2
zmkkRbHk(b~H!Sia22+`-r8aD@-A<!=NHb;-WCuLG6cI|~wi+YQlL<j2D*%64q^X6M
z!6a4?H2a8kPy%DB!jq*o-amV0tnfc=_P+m!AFcnF#0e!SWYw_cBa+xJP69OS{~hdI
zoE)kC-_gFWOW*JQ|KIqfrP*Tchz(YCQ8pNP{IDM789h)&1`|a^T;(+(C=?zLmgIo{
zKU?`<N8-Ou?w~Lq#*|0M=gEIz2ue%Spf81GC^)Tx53|KcqC^g2vy2Qo6cyRYMJSsu
zlWWo8Ccvp*LMs7I#c821iV6`4m(Sy4!6#U9b_)v&aB~p56Fr1uVHp=cx`xXaO5<S}
z3PBJeac5$3f+av0-IXUlQ_mD(5)aduv@#V+<giS_6NMl$`4CLL7%6|+lBiG;CxXM|
zJbr>-NRsm)Q6egbWms|ihz}^j%`M7JOAvGoKqx9Aco(5CWUHpp-0FDODU_O~I$yJk
zIB_zk&Ff=h^+}zi{j<?Q{nld&Wn_HeaH?xIXC%MnKx&RdGsaLy)rN+TnABjSR;HC_
ze;F)A2C#cuN3zq>AfbPRFG>`^l$^Y6JdcebUkTU?$i@_<$t9U-X^>nhf~@F@EBk?<
za+C$Jtw9ZUCWbYwEI_!D!i_~_$vl|=7T{JF@_;NY@s&vM9jJ~{kOj(*hsCfv6YDQl
z4ngHyaGt4-sQ{;F$Pr^gNe1$OSXeO@L~goalG+r3z4VgepVfb1Xc6DeCgg+k5%v;K
zF>ysm9G+bkA#peYA)|R);;2Qelw2qlO5)tHx&VJSRuvS&YPvIJaI#D&hoNXnq~K`*
z*+DW`0J3^YAz&H;HmfW9udZvA<dB}^Xl-Z3?qv;W#2i990m4s!Wp;poorQy)g(H3{
z1||!Be4-=)7I1&%GM)s*oDD4DBLWO8V@`%I62cNWSIkS{#vp=JE-IV=L-y`W5K#l+
z*#S<ZG9)FHD}#9guAGR*Ay<2QchxH?4@J50Fi!x>APB;bsZzh?BS?Y}=7O9m1ZDP$
zwqy5#?5MRN)vp1q$Mpo)c{e+|CeIJDLC`owk*qv`C3=6egP%^zMo|$G8!JM1f{cu&
zm-R(td>HsRPz&!g3d_|JgGSj7^_3xUw!ulTOePe-wgY)6Y&%>g0!aka&CU+Y1b3a)
zeU)?57F->KS5x)}7`ZQKTgSw2J~uiDsrbWfCW%>LEQH7)D|kF+)8vi1Rcol9y>-LI
z$zyE|_33}(Wc?o!2&QY01>qks%l7re_-%&SO>Kn#(;Zam2_3Z|2r7ptKb%@q2gVn{
z9$DbUcme^1jaWpc(>Mr(C<a<Wu!;i{V`E{kAzIBQ;35g%QUf`#9o$J4b$lX>%DFMh
zS`ZQ&tA4HZm?8s=MWQERa+#1Xw++XPJSK44FqnUzC=<$4A(ohzV#|wzJ)9i+Iyu|h
z+q)}GW>{j3HzMW<B`6ExiIRD#z*?vcKiSI=dy+JIFO$bokT-<yO0=?2b}LaPgfcZ;
zA7LHsu*$%nSwPAyPc-g;$e@08L$8w~3kT(4R)h=1{>)JIUL}0Ir%;1k{nvX(%E-}m
zRM~$woPQeE`!Dl@ag#yOIjK+zi-ZywRcf5>2}CoWhfCvRJONBh`$YU-I?57<j1rrJ
zKuMO4qQI_DO^NnYz>iXvi%=ixd>~6%>B+xHzC;UJfrv^oRkmNd(QnqKayDczGng4o
z%l|Zx|HF*YKTG@(zed*o`Zzjht^YZ=eBXcn^RN86LxDV@1Pa1NT;sL^Oc$8Rh%5nv
z4fxs6FbY9^+?n*b04$zkqjCW(0|@|iXa*4vwIW7PLj)(mBJKE}RK4jrKa8NAD%@*Y
zgZQM83I$5D3nEEbqQs79OeoOqF=g2VjVHU^?%koVupvay1r4I62<0-ECnln4B3pk*
zW4;>8t$@uJ4dqubmKruqwp23Bq#&U)sQ=hc0YPf!4{&QnYLy8m!4f$NBu8i`U*$be
z2y(D@?1P2cOw81RQcA9f;f3XVB1s??iea`qRSE;FMJ!@-u?G;uQ>QHK5WXCi+v0=g
z&SXNWZ}(7cJP(Zr0XvA*@wT<z$0UF96JR-B#2FMIrK2=y^s#q!rY}M!<KWm2D+HL=
zAmC`<NAsOF12icF$3FJ<KoCS40{6E%UxN&V)=OoE0St)hwM$==4EZHAjgld@s*4Gl
zZ&0X@z19m<^_H%p92QHtm@VUi^bH}SzV>4G1|tG;FSWS>Fe#2p>==VER|$VXmKHKt
zjL2auT9HAvkn*32C@g~_EU+$f!QO}{h^0iTEXb0H)x;NFAq%{{R5^@da*{(V9O;0S
z30OvyCLUsRxx6@7B4;VfX~ak@OHEes+!<skltLa5g<n7!u<8LtvdFwg63qhM!N}o7
z)E!cmzyKLW7yK7IA-bug3I2bfEKT&;15)-LJO!P{9%_mLXHZJmP(V=mFVF)eS=B>=
zQ*|jBj7kv+3gd6c{He-P{!NqsqQ@H~4~DY6;a;S7>M@BVgx{dA#HIiqJ(7~30yxQz
zc&AKtYFTbl`DVIDnnWtassqy_0Vj+pJt88(%5<0WrCbRjO+@2WPnmxZlmNq0o=BJk
zt8<ageZiaVaTA16RXL><CfQ#AE(LbIz<nj|OlAi2KMjZezx&bRf6|AxU!#pi*8lrB
zIQP-O|9$&9Ief?e|HcoGDcuOXA>_lMaGVg8%Tn<Tz(NTM^AlyT8>AhFYE)n=%Yx-L
ze09Ac*vv;nf-pHE<Hdi$)T|ZQ$u&s*){XceM<no*pmLss4--MX8w8H>)V)YcZVrcv
z)Rtmlo;*<oha+)uBAD1ajhCY*4ZcUGUDFf8a+#2i63c(MJ!M1bkVGgEV7|*yV>uH4
z09z=DQ+7^*A|f~diBs;ohLv5^ftA%YaB}2Ru~9c@03c)QO|E|uC*$$q*hCQ<jZc&d
zkYov4%u8Vt4v#G$VidMmC=v-#kF+#MoG7Ag8$S;Nlpc)H41r}rL_qA`gdFVc?Um61
zl>x%@;K&LzP6F;8<c{J6iL0Yjmz|I<H2Z?V*5n2+gR*%70U}`&8}vLhhaDeEFz|E@
zNo7JYPnOCaM@WBO*_4tuJ|crd5JVJ)K}UL_ps5l*r5un1T}3UnuohCpszz-`iBYVs
z>XD8LDWnQ1c!iV(DvT4SXiJihh}mc&ra}^494y8LbeuQ^2aQcA0&Y129mS|i@nEkh
z^<-k<7uQ8mk*XSsinMzPV5^E2Hm0CG;yy>^K`$P}>b`%viiO5%S<^_sVyOrmb)_>{
zwrFHjc!~0OSR%)_Sv5@t<SOcukQ=Ln&qr`rhEjm|GjLK$(^{7DP&65l38-Y0Pt}C9
zrP%ZiDUVavUc}TCA0m%e=Tb0cNDp+^7VzY}7#>QvB%VlwBnKgq5CoOS$zXK6h+?jl
zh1uHWAi96$YN_hA=5)g%c{fP?9{<`_CUS#V;{-8$H}xAlwagBMMKIQK5KoNB(Uw$z
z#2~3b<svyTo9yUIssHpQ`UYhXpZ|k}Nr*)p)hiPwVLlX*#gVIfgU2}YC@jNt+znzi
z*3@vKDA80}8bv#B(Xi;m4)Qok{*)}ymc(DG8c=@?IB8<4pbR3Tbp-J|;tMR**wL37
zs62RpI>r)20F<f$pQdg>iidN!+<B@`Gj$*Zx_Y!zq7i<nt*V|k&@NqF`rTQYGfT`%
z36{bV^{No6vl-POYS+Oj<0wK&S16Ig5)4DCuC-GlE==`xwn9J=y809k#Mh*%hAfTI
z)&+laa5|cot~Q;TW=%Cs(xs(MCr7G;QHqrzm_!741OYbK;$4>u#c-fdk|>9%Jy%v>
z6Q$Wi)_^Drr9<Nr5!{{OE(RkfOOymlNXwV_^?OvNaUVrr5=vK}-NjQ`kLKwdPQOug
zBW9BXkwaEr#GAEFK(8@TQK?8MC+_J+!x4YghZZC}ILgfrKNcX=D=-9>@nMOa7YBPd
z+N<6N@=~bpT<q!W0~G+{-JxRMf96;z{~*uUCQqm)g$zxZOF9UB!8FoANn-|S8(<Ah
zqXh%322_*c_;8reK<Px8s6j8OS)Sr7b$N2FMo>}}CFX0min5fpTW)6HM?~~YN?3p0
zNajGyC({t~vD(zS%`_ike&eP?C?L)oRBC(UG)YyO<N%vGoy7dFFqP<tG=Cb=QPG$}
zq;XV!qVCr00U|0kHcW(~@FZ%4H!haoOr<lB6|n!{K+Zs(oF5OdqS?Ky5EM=4OQp7a
zIDH&nX3g$p!J^e-p_ms3vt_UpL4|+V18d+DRLy8BBROWGFNQ}(s&`xh@Y9qbF9jeH
zSd0i@5v3SOXv+8038yiaRE2m_L?l8+^Tb5_qyD!W*fEd4YN(nzq2^5S8}#Es*%0?l
zh6HP&;nC14p(SJuX~_{OB0}O)$s$!g(=`lqb(*REDiV!aDJ`6=s;aSH;J;-X#HhIb
zdN77O?q4!wx|ITKd0;2QG4TkJ05}CtFyhLGfV##M(x|2}dm3s^C;+R6B<7UQ8di7O
zQkp9NpI-C${!{-n*8fCE976ea27ADkO5*-W8x5}iIrg!4ady($|L1J~x6ZNwcPoFJ
z=rjHwS63a@^!NSc{TZ?i9vLm5FuGf$VJaZf2sj#)Qo6e)IuxX&q>)CD5|CyJ0)m9J
zbax|Nzh~h5e7?Vb_dNG~`rOyK_uMm(ASX=P{UisUSkB92&?5;r<t)19e&xs03K~l6
zUO}#o4uK(iL0~g^IQOkaC!x;%k2-%pAw)FijhkPZe=z5uu(g{U@X1~6hR*KkV%Vl$
zn5GG)(%P-xPDSHri4$90!_$c3Ug&lc03cExSnRvcp*5_XuGr7iR{UP7o*$NFOX?(n
zBjCM2OJdlm=TFn0Hy6rp<Y4$%PZklU<H~FWU$7C<3bZ-MUG2Yt2T+rN_hWzSoxg_9
z82k*Th{PC@6&aVF=f9cDnZmM@1?=pp)|j5SlHA-Brp>`bJP_%-Mfczt-STZb05nad
zjt-eHkOe>wnH<s&59&0%TB>3xxEN8J43$T*)qQ3uVc1=s0GMJvp8k5DNqp7%wkj&f
zlIZDEsrbMoVcCmgE(CQU_*H)b90894R6d3_T24?ba6T$v2Ypp}HIGzlHw&gA$Ep|3
z?~K$wFPV5feNfaPik}kiZEXEs_#eoH4PWUYsClg(uaUtc6j68Iuf2R3-c;pB!39NG
zE=V~PY&mdhs^?(cmlk!8ZC^&rQi0qO&$gLk^Qb4sIqK6@#fw{M_C|l#u}%pHthE?3
zfjkrIjLFxLqrz_MO>5_E4#6}ucmSxBSzS~c>-DL@Tp@nq-6lx@eUZ12(z9pWSU&C|
zsCl8<wxsX~JCs1;8OcI|c0oGfp9_?w&bxKkfIS0!&G=5A;Aj0)4NCJy(_}kL;IQ3*
z3A@p<fug6xQRbQeXd8ddZ@vE_#awFIpg34t7BxN>=UcLsTya;Q&Z+<U<w;&_MJ(}P
z{m=Z>9>x@!TNF8ncQxOREiCzjLSOw)D`)F-Ebg}BY+&r{|DYpBeqC@0-O(~&!9a3x
zhjU1&<L+^2NLIu*4Y{l72>t!>U?4lgdOP{6yjs8&6d{zo(J+6anGXvvFncqJk_9}S
z=3b7bb+rduQ9Q1mN_sOa7k9+V3D&8`n+}d$<a!}0CMNyFA6DGVg~dX#n0Jgs9la8k
zvQG++xQW_)S0TZ6B3dz*hma#*M0)O)CCB{wF2}@x-9*pX`29wxQbyF9ge;O&UWVrm
z-l9A87g{=pz~Fy~Nq<oER3?B2fK-Lc`eZ~u8Yfw6mISlF?B?tCn^YetV{xM{#gL=V
zj<2RY=YZ}#2}kG)Hdf*C+ZMt?7n~T9siRjC65UC#oZNlC_REvFsfv>#pB<Zrw)Z|n
z^4NC#Wo8HR;$dg*98<8<dbh$4fQgD&W+K`v6st4}b##CG#we{A9*~27mxFDdCC_1u
z>blOZFY%L4gxG2Z2{`YoIuZ`9ry^$Tr=oW4=QuT>u@|+QI=ZGZe1a4n;fR8a)W7kU
z;(Q{4?<ca-$pj@3N=ZOpT&6C7Z{!yFc{B&urO4JwS)ewTc6Dpml7!-oun<TUKYGeZ
zd<(4-fPjDL_?h?>l`5GUy@3v@pxluSqk2zcFc$}tYA6T3=OS_EC5btt_Tjp4NlVkl
z$e6<)IvK1Nb#0r2CF+0;5AY-zGOX!v*MDO4(p|{lyksK9Sc-=aVwH4p2Jsk0UDLe#
z@!*k&8rL{o4mN|LiG_?j6i>0x%#%bN-QKQD%Z7gkSVC{ui@SAYrhcnBBF|3*8nbuv
z3rAe%nUCTx+KDdOIO;UL+;?WD*BqgvGUaN%N`@&>149rP9EP<m9v)Cd2A;5lh){(%
zk8wN_!8bBKa`8|$S{LjOxNw1V0Lrt=$8%&Wq9%Z4M#y=?nybvv<<aTeD|i4kl{&ip
z07QRFhX*V`YfERpiz1VrxZa14s#vszl{&Niylmr}EW-?aO#RK<P%E)Ovk|Ik^1F>H
zllOwfG@`hLUm|XRC;7pX841Ti;cv@fm@zW{>W>!p=z9C!T^xD}0kmO-N8eu1yDq$$
zsdI#C*`5{%^;+v=v85t{npd;;89xYYU|@gpvtC!K-K(jpn>@cAQ0t_AIO4K8O}6|Q
z$Hh<dz3>j2zPYF{k!FtWnv>H0AW9`e00f@ZL{Rgl?%4H#w%Lmpn)WtxJ4BK3Ph52;
z*R+|&Bv`|}^RPv88ZE$M%aaisy11R!LOVl_t$_mRl7>TV_8$SD9<DT^xbdo9X8?aB
z&HzjKv766PH*H`X+%JrB5UO0NX?A^LWvlq7|KVNnTKneX{KDkGS}s+TvD(JQp^~Lp
zAwA?j7pt?nY3fgD1vb8jB4eMps!Vo5&dU#nh9wt1lw4f%?&JSCQm=Mn-7XZxm*=G$
zKV2HYMr;pD8c|%~VUIols%G5mD$jqIHqgW}GWBWW!!yaA7|0&oWm9Sc{<T!e&CNG>
zh7$Ci$Rxn@_UVkjTCzWOYnuVu9H>)G8krDSKqS>-K)Ue!VF53=w(2DO<I6`&m$C%2
z!0I;-mfudePesr2I6_Bt222l8p5GE&*0B59A<*XVJ(Wp{8IiUENQBw1>wAA{C*?mV
z5$F1I(71MV!~5cv5>{D^iKCs^jriS}l3+UShpF6H%OCNb68la2zm`toz;1yN4`jkU
zIXDb*Kz4bxUQ1_HmYoTym)-1+`15PY1D~h$lf|WeiCUltvd2fey-F*03Wc!+3)a~2
zJLyOe*aeyPv3su%dC$~H7CL{(fvRCUb6MEp8B2b)aoMc22C)&Vu<JgccUxvQpLvIG
zq;sG!rS-lp{<k+4DH<WDd3QCRUIBrVkdvqVMa{K7<b|3*c*l)d6w!i;As^{wJJZyA
zXk+$7Po8E>s3|4Z(>0XqZe#Zqc0BV+S(Ttp7+n1Z>af38GL~UJ%Q=7NYp8)_ZPmv-
z(Ws9Um%S_ksLk>gnNI&)O*U@Y77iHQVDa|k*D#grkN;afI541=s|`<E{Mb6RGjwiJ
zf#-gz4W6&vbzX42?0L;Yyzkx{Uq*`i4VRk#06rrPy)&mwGR4vyFS_9n)P-ed>11$q
zGgS6K^W)y5Z?$IRg@J#7NQ|+7_5J~)TGjkz4*?rK>&A7ml-{u~QE?qlC=b>OjLRtX
zB*e0AW4B!^Q1sM8A#HKR0K|Qek@1o8j}W;jadwz=dgXHWbeM9w?d4bc0HwXIC4EnA
z0=37tLv$y{`u$&v<CS5z!iNy{#u!B-0{|4v$M0(C`J-KSN}PY)Vc`Y+hG>1&fo9=l
z=Sa6U7A3zZLbz?pT6_}4|H{LSHGco=U1_YXv0&wAZ-z4n>|$Wz-O(&ffo!glC(jQA
z_SM#$7iZ7H)UtRky+#r^UUnl+9{m)UBb4}!quYP=bN-53bJW#ztRJi5nOBOIe`7?z
zIZ;Qk)yAsz44r@d?{#jHd-&{4R?m}ZsMNY$erF#PCUVo;Y<}&gWZo}sRTM$aF5&*k
z+W2oT5j+4y%9chHSIO~{0RUCQH&31i%@|Mx_uoOqQJz+0eXJrRTjsfJc)N{i9zZY5
z6R%9>byzq;v9NQf2LT5_;3lRtBC7CD>>#i#yL!c8qbPs!#S>R`_^5G}!w1+@llA2@
zKJo`?AG>c`9lpAjGHFAZgPFZ)E|*}|f&DZIww`)-H5rabYX?@sxHk;_bd%celnhgV
z-5*^m|H<2xCvw>@^A_w=diK$+%klOrUHIssyM71y?QCG$|G+O;6z28(jJry$^!!|!
z0~J+eNkM-LxqoHYGh*1qVL~vsdevN1in$c8U-r((JA6OkEabhF?~Gk#^Z$FICIA{G
z<(+qRsF||kY<RLhp7-sYzU^gWOb=LjLbwq5D{C!f+Xj|{S+OHUCe+>0!a7G95z<GK
zhZGJA#~j!iH&vaH<r|{vV~{*D{4y!Os9s+7+p~War+LXA@S4@INz*oQVDa9fg+V)3
z5ETS9?`<m-7{;EB37bj$7(QcgTtRD%soby?t^V-Nxq#=g`%@gH9YndGUt2xan+knG
zwkWeVa=h#o$IB#(MU#%8=&9hDTnYd*P5#u%w$^@GrG)1gWQ8>8K3H+1n;^Bk_Uf`T
zCY^tB$i=0@cBb&zKJ(MSArM`>KylVbmSxXDX>9dEp^grTM$Ul1vW)yzhp&bxeSmT<
zezTsgQ&;h~vV#}><I#F1$h83pwv);+&G*nJWCtc4)>*31Ey({Ib8Qj+7?WVB$Vx%1
zK}RLB_9M~vwsKIfF5Qa`_0O*NM*QzjZfbw8Zoj$@muzu6M0sv0*RlVvabqy3qh<XT
zKamvI6!tZ!B>(PwLNk+wO2r><7X)2P9zAdWE>h;LS9V7daDUUVt}`=bmWejP?%lmW
zn?o||&Q$=U$kMI%)YoPp&Et_rdKnkL%@I#aVpt3(b<<_jv?KIIxZk;zVv(C#*zJE;
z_b214_9;~<rj@UhV3p5}XI}Z_fmP5IR4e{jm7A8NwS>kng@;FT09i*1Q>xSDyJEx>
z&{wwN_0-{<G0jZqG|BZ(OMy+9=rAlNWLQoxr5tzw3po~phnh=G>khqkazx#?7&jX9
zNq_Mje(O&IE#lz%LGiOwUccDiBOZSsuQ=oSj~4eH^dQs$5ZL8Dg1S(`Yg{P+p^QaG
z>tQ##(ksT;8<KZJqIg^dRBHJzHT)PTR}r3Knp#WYwS@&D4ji61>uY``m37Bvt*`(=
z0||tmN&tfNB0my^h%pRPU~>t2AnJhv#P`p8RnlDRLSM6HjGJ1*?N@iO`H_D^o92}g
zwuXYRH@bFo)PP~H)J&%8;{~{9UOYukeiyr!phr8C=n;9Tk%#zS2^#5>J@41#sM22C
z;k10X7ZR1gdL)O%++g;`WP)!>7jH<iw_4Y<2j%O~y?!-7qvb^Z&~QXjQ#aYA`|F_`
z6165&ZQV~{jaLKNjEpzjsIz~@sAbu(0Ikg-`DZB)9#BFkDRMq2z&-h*vJzt|MDTKC
z=bQ8)aG6YG310-E&%M0PLsIXZ-oA=L#!AL7%Kj7sK;R^XG$Qw_XnF`t;T<+p32={L
zzhG}MIv@T6G9u&>bkVcHs6OJdihAbD=f}D`ave0kp8PgCshb!8fenAO5Y+4Gl70^Y
z5KExF!Hp%Prz_FQZ3bS(&F<g&jiI?parlgvk5e-V`)<+IxhrmjBq^VAUPX;G8#<Rw
zsrNX`on!I$a<pI)Hyi<f4ZOTNVsClMh?Yx)QIU8!=rs&yCos<kNnbYjF+*Me-QC|s
zjAo;kkpke8$K$6D6rq2<4FB`EQITtNuG!sGrx4;uf;!F~CqJt-9=-)jzI-wvH@W%!
zpL?uh4v}Q}#^2!lk4NI3J-B|#jDUXz+8nBqz5Zc~FhH%fi0tw<NTSOVU{s`F{~nnE
z578=)bjwRG^8^T1@(I*VzQ64JXcT@Y&Hmfxz5X>-BdbLcJOF=m#*{|1PfsXA0*?Tp
z2JWsj3SDg~RwtXj3k0$m`7h4aGcyNDU#3_Wh}Pg*t?7v?m3X6<)KwJQ{HUR*wgPf^
zkp~Z`B2`DX_q)(?qsYMr;#NdleIYNf=vRu(EfcQc5_#DY{t&yv>bLmqGv??u1nZ?)
zjV!!Yh9)y20x*B)B<koW0uY#4!Nh&7LYe|8Unkmo_7Zdye!4ecx<VEWtG;{rY>mBm
zy>)wYt(7p@wvMhG(a@Gp+=tBJcXWxrf-(TJH_kmtfWAd=g1+`@(8qgv_i+iW87oZA
z2iq5l)!w4WOOLwL%M_rr-{qPyLdYZb#N#xt2+b;a&n18S3ThO}-Z<yB3{65zgW7KU
zUvDf`ezgPr&D&tJRsZXCJLKkNGh!aayHA!qq2^MZ-ov|3h=3^fHxF#r7e(;^T}pLy
z`}QggEs7lSLZ2o`&GcI_E7`OGD#cvNVl5>i-R9@ztJVl8>cPnQnDY;og%r;^(m=#{
z$%L5CHiCb1Tb2z1YmEsIG$_m-F@Z2^!6mz`4pwWP=tMvqjZj-7^$Jfd7AY_LZ>um3
zB6a@bQAJdyFb}u!Qw}xyF*XD|5R1)|wC*uRh@(pMWnMq#U~Tfmmmc94cZFm$UaCM2
z*!bu-SDRzP*9_<PT^J(I3N9ptM-bqdS4#dU6(E0AD8rl`N%?XW1wX#Y+EfK(#D*%k
zI4$15!#(ooJ8%8g*d;~i&2klmH&gFkHl=<P)d~i~TCwTNZN5hVoT&llR!&V4Vn)lo
zgDpVcyxTX?f6o*8ETij^2Sb3zwnObl)xxNA3GxZ-p!a!DPYjQjQUIa?KYFTEszLrf
zd<lQhbc_C0d_p>HfVyu%WMgBi;N`bSf7xalj4<4JO_04Swf|-{<~nG8EjczuQt%o8
zddQbX6nDgN>k6<$k^4+i++<W(prG!BsM2Iyl)dP<3wK?7#=<2Np}^FaWOtR?vx2Bn
z|7JKAL#Eo~DVcUI3gH32$kfs8<4H6ms6Kx%wuZe<X>>P<g}->2;CR_BhgIp%8+kJY
zlZ7pw&ta$Qx;Yl-Z|-1=SfS|q=(_=kVEpK*hmxMvs_=e*i<oy+Z2s-_M}~KkIJ!Si
z>nDa4K5(61l)O}GIcE8u(vg;d=lri<T>{`yoq<MD_I`=5PO{cF0fGh=**yqw=7WE<
zs*leWXHx{Yt6qp+oV14Qcc^NnFLGU~Bps6^73CGXE4p)IZQ(k|PpYmVNYmWWUy$|R
zmP?ck*r#m0NPxTIg{TrX5P!AOXI$<n&!`Rtv-dm2RgNu*fVo5&W$*b#8SKyMXr*JK
zWf|0O$ZFx3o8}>fKtb6HQO(H>uJeDSdV`;r4*??#QG;>PzVq?JT>{|WA8VIQd|lm~
z+gkto(ADfgn!^WvpS{WJvATDYI5t;nk9`T5l#U}yF1DnrAiZHdy3g!1JE1~IZh@1N
z(UZs23Uv422zVXP=CG73A;lJ<h~kiFd!l0kam>d2(|eR+lc!`}y?D7nx0Zh)Y&An`
z=2EJjzFt`H^v*FC|40;u-C)=oS-iYl!Vt|ME1K|Y*WFbl3Ar^?2}cFa#Et7)hy2V$
zFJxdrNwK*RUEh~li510PPueu~fB&OL)r|W;b@LLXhxzv?$HJ1PWlhI9bVhzp@~uC!
zDoS~aw<pub=i>A~H*xTL&4qvHs&UOQA>i+UHU~)Z^)bc>DO7n--0ltM2T6nlNiEP}
z=RM^%BSvbHOYT!Jvo}qh>g`^89@Mq*jv0Lt@P2J33j#A6BdB=~oil?#rEpjZF~5yo
z!#gS+G2;EDqo2A8H%%|icL?*a-{lfBu5OY%ndqn%qK`L^27#HC5Y&IXx;yVhK&71O
z<-4EW#XS-u-k<(@|5Jiev)rE^ZguuDDWU!PBtDZTbZ0*dwc~%V1TrGv-+?xV2Prpw
znIcF~!`Y_mQa2V#1tn?9-|w2qm$vX<;s`s?a)PzL*dbbUkVq_C_~{8Tt=_V8l<`%?
z00bi_dWuv4Dt-q(f=z!St%r<!ol`-UKi7*UqSoFB{u!X4jWR6PKh`$7xzNV2P%>_O
zYW2wZdnFjAkR2dsAh;k`1U9>G(q7^!)$TRx^O9<0)1G^!<OFlFY8D=Oxka5oeiWrx
ztdWllb4X^mb-i9YY!_r=MWmSlZ4N9MRPPXUAZQLWyt9_6;$?p{!aPyt$2}wJ%P|G5
z6_}Ql@v;xERVJ6J8rs~%sc+%|uSwO>N_{SiM5qFY@|Z5k2&rOP1Gk@~HN;HvGIPWM
zQ^fII9p~lcDmK6r*{dq$TY;>IG!T{`g6b_o6|}6sY*$o$yJA<f^B<{Orvupo%}JTD
zk1r9=55gpyyc&OZ#f>CB`zN$#V`TnTH)9Tc+pa*EWf9c83}o+VL4xd?dmkc8cv76`
zo|^O%UmHML@&^%Jz7n3*G1+*XjIHJuLXw8i=iiS$J0)48RRa({K%2vsZip-#2~3F@
z*R}J7*v>^SAf`%)xUTWGYP(T$UyA)2^L%+ps>R^#f~$Y3jp>G_;~eU!PV75ZBQqlH
z1y+hCssuzVeoDNzy-j;|62Xy8<07}^+mcI+<3m{6aMYi~=lX>9Oew@Kal=5!3jj^S
z)X^dLbcp~@G95P)BOAi(Bmyssb>Au8PERHNnM*i-Nb;1Y>{_ZXvXe@3i%7<2)1fgk
z=I{Xz6AOPLjTuY$F;z4o7JnFOORQWcmeT*QGlM9_!`D_*B{u5&(4W`9nmJ*&Zd99|
zxQZF?H3^-xSX_JSh%HaF5Y)U6jY7#<GcZkS=fRfA(L3xSF~%iZi_4N0?*z#HcuRqJ
zndm6=_CiRi2U^CmEAwP7j)V*jOAQb-@EKqvX$^lw+*7J+7-;?^Uod>6ODEWN{m&qh
zUclJSM<hj9zB6M~Xvvbtwxcxc3LZcLVQ-WJ<?8}s6bB2#8e+!P--J%$C{KBFs4a#r
z9i|AFvMXkqm%84i$h4r*Y;y!J(zO`<&!nMkCWpn@vqY}?_#Ib$qQ(Yy#f{Cp#*^8Y
zNYa1H_|Cysy+z;PJ*{S{V>2r$iv<niF3JNWa0DERXI{y!RsH~;1Mu;AGA@KvTt`pj
zOt;-^5m~s^NR)W#Ge+=H>I(P6IRS1lC%PxU+o+sUt*?M#udp6R`Y4pN^*v_Z)Y`k+
zdGnpUY@Nl;hP99z7I6%JMq(Hfo_O~jYZQNplugu}luEHx_}i`%03a~A5`wx==j|{<
zgga{L6M=q-9M9&-^Prs+%jV0h=)?!JBi-*q-pep@eR^JX*my~ny*@zDU`wT30UiYG
z<mc$-%kel2Hmx+?eC+hj5Uu>@g*%Hw!Pe$Q@v+x^_TgSg*V}zHY^|k<pe{@d7*~G{
zz~oij)%SQB@KP@msB7ajboZ#TVfr&TDTz|Y%_QX*C0l(24V95JMI5ZYk7hyyAV~0|
zr-EPQaR6cz?@BYcmxUwtWDI4*bC%49{){2P2aW5W1`9vz1Dy9&>#j7!VJm0~JoC!J
zTu)-GGH!hqe#xgKUw5U=^EkYV&VYZt%=c0s7fBKJ^qKWx$D0wSdgWlRgDDC6sYLqi
z(Er{C&1$9j?8syoozB*tVhfFfSyWPX+~YsWrlQC#9C1~e>lXl%Ky1G==9ZH>$&+a3
z6NmUc2)Ke$1+zE00`1vY-E?<9lqp_5*5LDX8b5o!ykuE&%=Tws)TA|Psit|(r-Xce
zcauP^R@&!$#@ay!Tkc8#Z4P5UcZ>i}ssoqPiFBj=+1k^=IO*hlW+A^nlQ^VMR8-Ol
zJ1m-gjYUJ-8s1Tp`yeoEF(N?FAn2WqYyhSTXh{q^B$dsyuCHM``)#H)R<&)!fKxk%
z`iP57_W`|pHTQSVnSb*AVD<P;*;T23SRD#uby(#|g$Lw}>k11l5SA(g`J3v7mj}gt
z7Xto{aEV<#|FG~*iP11=w$?HH<Aws=F!~D04L^Enn57gC4_F`(b#d}f4d!yLrwMU6
zpfB)TlUz4q{KJ6(VzPt6KiI|b?M`#!XT;Z>YkVdf=2*YcLQofGJgi_sOe$Z0v;idX
zePg_N7T9}KUM8FhS+~TEq4|bSqfd)gU8i0mWmyPqs5#=JN(CBN5CMo9pv_^8^jE+Y
z)F=GCq@nTr)t;oH#&p^<l{w_9X#Js$%Q@>GHp<wFw-&8J$`&b~P1V4sXc^X2o==d$
z5tC1VHV3NSEeQbB$+g*&J|X{qx&G(&JC$=$z8WgrK%O-y7N<SZ{0VuZC!IdVQH+NN
zfOr|xh}=nTG%zA2C4m~N&wJb}BxBR83p~WBQkCjYCBkdsa1*U=!k+S!NlTg{I;pgN
zLL1x<=LlBvCHRSN|8F76%Zz0}?sMsP&vsv~`tl;X{g<<Ks(<D;Exy8kbk691mEv`(
zF9^0f@Had&xNq_0_Qg}a0KrjD-C70g$J_?(YJT3IYW87De`)wFHoS9VT^nahOAxmB
zNS_O~xc7Re`@3&)JamK<j+m4I+8oYHHp#G(zA=y-9p++0O>`c;EXt@zMBV-~@=Tnu
zyJtYq=7@)cNAK40e6Wmvs~M%uy?`qyXRH9iTTnb;feK8lu&Yt|Y9M*)i@vw&s%S$E
z5~svusv*5k@7)j0Nq7vM##hfz5lQ#6-K06{0{`tHyGh~UxiuqZ>?9|0;&1QOkkM-*
zfn&Y}B&{dHS>3PHsqbg~ZRchpNS_3bnDmFRH=gocJBK4C?*h_)P^vM#9T6cr>m8Rq
zLi5Wf=>b<zh0wAx;R%^?H5co5lAmu#!`u&MQH7mv_DSFo#(3tHC!KYXWQ)<5cBPco
z9YwC{k|5#H!r_m}352v{IPuwwmlhL@%;V%gzy0pq?ytXfm%#Fi#s9q2cesP9V{@zK
zGLX&x(Is+n`h4Ag?+(s-6&M0*qmZZ6Q9Blmb-upv!jYvsJfI3&*o;Nf@}qb!3Y#Rp
zPmDBY#m`Rl2tOLWBeBQDv5R_IUb*AqYzhgFh12-zVvICw@XM_-YCPbaDUFDY0t|b4
zKdss>XG2i7q-j-mz;xzk|JvfQ@ShZvHi9d9*aw8f?1g-P;Oh#FU+lWVul{#Bi;K!+
zsCn1C4~pXF=9pThHDt-~kM5~JK2;3q6l31`#!FvaJP7fCDhhRU`&u8ZDC!#I#xqg!
z6b9JO4=i0B*J#cgk7BE@b)Z6V-akh9r}XnQ@|C-_r_WhbXkECrck(pg3aS>&-Z*ET
z9U6rg1YyyCrmRwIlE`s?%6G#=k_}u6aZxd83oA|H!!XjEEzpjy55MvF?<)aR7_?6~
z73@C|^0e;lf<<bwyZ`+Kj2mte79)gQl>*&Gm$V?PBWv1Fw>-Rg;|*iSTMIC(wK71^
zpqXuG6YO$-G9+|EwoK={^Cw@fde<~Rd-wTo-Z<ZXH6$A{tm!zFPuF?%$o9C_T4>r3
z1fEqvQ1jXg+0}x?Ibmnn?kxu^={ni7wH*S9(u<2XhQj{LT~oKY=qp+XDPc$ZcV(uQ
zQw#@7A%~g%b3mX@j@lZjfAu8v?apobq=BOHZoOzo4;W`XLZHJ|<sRGqkHfdz!Bbts
zQuTy?y;D5@!vQnwEJ4Jqrz=AzZMLc-#gtdq-%Kuu6(j$5C?Y79{$1Pxi>|CG{q2v&
zW<uGI0Z=JZ8c|$w)h$v$j{IGn_Y+ydXi1Ud<+l@5j$yataIRa5Nu`vGUeMN+H8n0h
z&*$xWB|-|1Aj31SOj0g;OuCqaDPH<4TPFU0-S*Q|{HGQgVs|?l8x`D4NqM*={|B{i
zF;#}|<Zf-YSQ3X>RF^3RAlyLFQ>8+2@^{m80Hyt|(5KJdE?BgS`0ErvdamIlKL%0@
z{JFZUKfP+MpK5JeR|};C!&-|21P#z^gWX^kjmhs~_Zao!W-ESq=lr&NX1z4+<3Wpm
zn>7ibvIm-L*v@W!ZvXV^>e<QjAf|U*Dx~m;n|S7xt3R?LVeG+}y@b%I2LQ=OC8v?q
zwm`xVK?xdM)RAkL`0bXB@^&%O9E6%n?G0{lOy77Gd<FFe!ro|Za~B$faKE^YmkoJ4
zdi(h6*Zb8HT;pngCBG<R));xxQ4Mu}R%W-Hv$O$FDLjoR?xpUntH3wX+-H*07IohY
zBgPE2Is$k5za_xea1$njxr!H>_QvPpsN7GZb_R~ZPxrpZR!^%&4S-?)o<oq|ne5%o
zaIUxEJld2Q;jadhWk7HV(+t=s@+)6dN=p*ashXQ<%~omzfiv|H)VyOmIs2f0VD|2w
z0m-LW+%81neh|oJL~rM3&?MGFj#K_3FqNVI8EL3Ls;%CsPb;{z@ba$yPfNu>5ZDZX
zpyvH2>M0l$%*1bNY2HbtEJu$mSHH#6e#D88PX4ZVtv#LZh12-t^JQv{&UY0Mm_mMl
zpn;yHY6FDa&}8VhzEiy(=lZ69|IYa*_lXU+e(mXlb0!EUXXmS6Uo-*(0zb{9y2GqU
z_)reU0VtA?WI>+Jjx%TO-}Tz46Y24;3Een+BQ#-|^mudKcTdc+Vc+XC6EnV1H(>qo
zcy+g6G)ZVKI3?T*$`|zyE|^~uy6n50J4}E3)_M1fT8(>i`OCQPC=ghG3xT021mvOt
z6ab3dNTm1C;=FxYZ)^E+v>`X(tLXDT;oMD*!l&<Kce~*<+}voL@KBtX0Rd;hv#yN(
z!14$PCG&9UT$9fN@aYnFqM9k%zvBW>9z1&fB@{pGUYM7~m(x)8C?N<;K@UU2yR;2S
zK?nf!DMOBrz3DR^Y5=EyXkUxLE!%H>%^bMZ77!ch(oSWaK7@|M!t~=*DHkvQPahV<
zK;TRU6KI@#vh0Jj_dpT1cPR$dsNt`(XLfI8&H?8Nfgrz6iwvI(P=I}rU*4S<CvH68
zHB_gOMNjlG8N2eN*5LQ{@$)CBUir<8t6`EGIxUf3+h*Xn<z)DO*HVT>Oq!~`v{V7T
z=VyyM5;YQuI*4#aMA|Aa;9y=9aR9!hXEHj!54|CLL)fQLKa@9q2dD5*G7tBTcGhYD
z-(vOpVC56B_$#PcP{Gt&uJ`~5Irrww_c#hsOOVX+aLL5d>N<Pn-7s9)a7$y-Wianf
zMi;SkAH}<~I-x>;+b6q{!B<eFggT8eb$6$ky46wT1aVZNW};Tx1N*dkd_lM!I|0sb
zHB&QRoenyxNG?BJ%x2Z<U;@Jw?qX<oUkgIsA~HZ$#u-L^FQ$_8S&e#nd&hDgipAlq
z%#9jui8mBkpHOy}gVdI;zP5<zbOyuNYXXD~esM8N1EFMpxxP^tmc}j)t6GQ7BtuOa
zBsbe%+8q3zBMQBS8bDmbd68wcs>mmw6uAJzGyH-nMSU6+$<s<q@vc3ku)gR*Sl)!a
z#}~<f|4`mIm=NEpv8YW4vD!Sdf3zeSbOrSgD{-~tbEa-lR7$v)-3|Z88i6mJW7iTV
zE>!wwwGXO)swO94E12})do)*q@g22`Lxceb7Vh8(@U43$OXF2?DiocbCi5yCx$%~`
zSWVz^Sm?XMT9*zQpx65~y6j1V2bhx=qq$7An`F}<KzLVOMs6hIfmpeH!?43sZ8F7q
z5}a?c5^_(7$Q)!MO^zCLf2&8eFF1n0(drnQ!WVLXB%~-b;SJI9qKRTPDp74&=?@j%
zHvg5D5k+7*e#5hei+}&DQO3V^Mkl0gu>=H;mc!5#a>u|3P!`bIn)x~4esJskUE7UM
zYm3bm1D&66=%RyM$K640&HbFI%Nu`Q`bpzRM?tbB30(ayo^>TDrJMqYhD-g}32oi%
zSA+3?WZc$J`%zO<((fdW%X0kyaaT3Vb}iCmy__%A)>S|%^$LoTP^YoH@(P_=+99B{
z*U91V?v+op@k?vJeJ{qpiXP@`lA}8e?x;imI)P$;pCc(obE)yj-c5S|sCCdkT;(U(
zD`T4<>(5N^B*M|l0*DV^R#vD{2>!0Goc$Sp`>3Z80()8#AZ!pqIJpH%;8s627*ax~
zYPJ%QoWL5OgR=v>qJP%D1gwd9iKUMzV$S9^&R60KdwICC?vug0_3*4K2adeOQ5J-6
ze%&g|rDi-3tB05Ws$22=6T?dQbV-MelQYH|OKKz1*;z5a9RQFXhY560(YK4W+Xt0@
zs#;Z=i^sSvR&M-q#LMj7PW!@ZoP{4j3dAb8w-1me>-+u=ruo5(RUmMg0fwe<js<oF
zH4m|os4l_aF>Y)4Q51R_t~~fd^cjdQ$<uijQk*+#?Vnb&-&EM6r40vxZ)sy_3iC$k
z<kQN5B3}Owxl0V&V&&hTwMXuL<jKl^`5Q%i#YdR8t@lh&RSlnx=H}zN$RIHGzyM(b
z>JRX%KnHAbdFg08w}?_y>V?#DiCAEw27ecBRCBc2WIeGRkpzhH-NEk6S=~ZL%61G=
z76iV9<$J1$4w1$TIJ>FvI=H;@>8lRpQhccS_-{CH7rShXwmO@js`y4k8orl*?}!4R
zHn<5CiROHTLI{EA;!kIQ1$6QKF^QRK3$1n`oIjdVT$eOA8PX`mH2K#}TAF_>t^~uL
zrUeKa{Ns32B~20tQr*}PS?$H|ggy?}tF?UO*~UqVOSC)q7VAkcH*#+NEo?BP?|58V
zq3jWcrm*}hMK$dK&^XYbJJ}6?+sma_t1ozfzjGb8SQp>RtJ?mC|KlN4F{X*l<{6)L
z<TtqhL<Xo}iiTyy0LUWUbSHpPzq44qj{HyxMdLz{6t$&445co7PVY29AX1j;L#G&k
zAjB`2(tEY>6O_PQyfZW~$)w7#WGu7(d_85Iwf~1HPFxns#ntuew~nlTU%t_aB(5s1
z>q2QBD;ik7CxNTi1_&E$Wveo)-$s2#HjsPPb8zkpBnHKPES<(7tTM$k+c9f772U|L
zJYN^(e9jBUlEu&zvaHf6rsV-5VH>obl^o3bcQU$UdR?pY%y;;40>8#rb)#!IIrZl;
z>kjr&Sj#X~G%))g!kj37R|2GLicN5v@8U30N&C?koPqUtH=Elg$c3%tq;vN01bO(f
zu7F`r69R+{dUK^-A*?}0x_f4`CD{?9$KeNGx56?$=B4KRIsF5*ajG91eDZ6Q)@-e$
zIE)x3XpJuaI?aek^T4yNoK{IzNRtH0i=y_Is&>^}`FK1FB!ww|Ah`IK1l0H{KcDGx
z9YD&7BRJIV$lVP<WZ)M}(eSML03XS9O5IgAOR~>?A6M-Ea<oz6%3u72i^EcAflOKH
znPWSoJUo)a`X$!9Uw{Dz{6O(AL>?$b{~(|wTNM>#Iri{F!e0ZcbE3SnjSUwn=k|tM
zTBAQ?KW9LsIRXQJ4xyi11yPiQE-tB6tEc_~1AQFD9$l-HR6R40zvg{c?))%$CU(S{
zo=NkVKc19I_bCWW&T0ZhUe5{yN2{33cfPhr5XZNR_jvHDjgt;%oIFsqcXiRt<7Dw5
z-p_;5%Gp}x6hwFcl(ZOa4J$B(lo?HKRk>e(x=en(A?xFR?n`n!oPtKNF0QfAJ-0W(
z?Ug$!M|l$u_y*Q#q?lPG2h7PtdtIx~U-4akx=d2()E8&{#yr2k<8SnliH<wkU|u<|
z#Mg}KCrVm3AayF*f`hK0zTy{5LD^j4sE6Q#h_IueDiNf#aj+f~2kX?mP;qh6M(4jN
zPF`erFT~b=cLL0aG$TCgN-z8|wX`H`LMQbJ%M&{FYn1k#>>GEYL~8xD3uINizTDnB
zRh*!B@^eGw?9b8|ZAlQAoYw@36wUhwQf8F)sb;2hzv24DCtBuDGXEno{3hyHrn00H
zkNaRPP(F3z_+jsodn9QqhY2)}tkV|M#?5cP|9kR(p7QC^ap?y^_e$K^J1O))J^JW=
zcg!(WOmXR5MnoC{&$<#2xG9&$4RrDPq@6Lqw;>{78zVa!YPxM4*KpQ>0)|qC$k0Ri
zS?bcWQDfabS!fm|6CQAgUof>jQWb>|!?*gU8xy(EF9VX5e(!rqJI7s^`&Y}99^Si3
zk(RB0N6rmitDjFEJH$&E*npO)iqZKK-4IY4OR+~+!4X?PE1QAfNm7R8wYdD;bX?45
z!i&#mQ$mKj!XzIIq#h3kwrjGNUx&c{imS-Ac`}_kczzV_^Hqp&oy*n{UmiDrz6xXN
zeD!_`^GesLT6-#o=j)gE0}xWcfWz)$RUBe}31nql_`6QS_~ZF5{oxB?g1DH%LI8J;
zz|1&lZ_y{FfK6kviag2yXdA54IH%!EjOu}MPlz;hQu%L=*eCitdltg=H_II2ThZIP
zH69Q?507@uZdlq(*rw8Z0RqpG6{Fi1=6L}Y3J=ev8Q1#VzzJ!Ko$j}>k92T;AqyIR
z9;l=9$t(~${rpHORUz-?g8+mDo^|C9GdsAt1<Ja`FQ@af-|PrB$$ameF)u6{!YO%<
zO4R4bq~USuYf0^a_+#6stI-W@jLZmlYJjkTw1_(idj@8JiFVm%j-cT*9)CZsr0@w&
z(oELL5Sr!q{Nsw`@{QT`J}X`$0OZAgVgeoHVx=NcxNEXFj9l@YsBu56$A3Vs7lGsV
zE#Z$5sSX?6aLl5LKhLFdrSYsQeeBj5)#Xt&*{5kKalV`0*2aq3$Ffs`1KP^CrG40V
zCkU06Iq=X`JHkS$@`RAMD<~s~PUCLycR5fSpTqAT?+Hha`*uo+{WgpTPU=s8v?&>I
zAwYo|d?ZQhQ(M4xs)SB;u3pjNET?3{1L~-X(JOT^T##rzlkJMg-P)zV3H=e1b&12r
zd4$}eI4eB_M#Akr_%`cqGJHz;y|A8=p!Ee`DF9IfDwy*6Hp>XiQ62QxO00Nx5H#$g
z;zeQ_ni!dJ+G4?C-!DNwyn6h9{eE`!a(;dafh~px2piZ(8{A7<1(L^-<Lb`&c5CMY
zCnS82he`)^eEyZY+18KmAVOE|Nap&EYpOw#UVBI!Muw^weY_xF2v_$*WqB|3?}QQi
zZD1memlvfq&p1OOa5MR1G2c69PJ{fV4{~+Yj%craRLq}FXF*J+LUkH{Pc<2-U<!yy
z;`Wq+1$_FG@wiyYSVZW{KeMu73hI-CgnpDheFbc%?vKuSza$XGUqPvn7Nd`uZ=Q!D
zII+8@eixziL7nwAZk4R=>3=202Iyplh13#piXi_-r;ykyD1S~9=)T%(18hwv5oVjW
zuts+>zS45){fm%W8mH%fQeaGKY=Yj`ZxbctepFtRAmw3YT>6bl6c3<hGJ)<3u%A(&
z%0Os)53c?Eu~7R$AL)y){}p#5?yT)cyuQiwz~g5z`eh)nPicVgDBJNt5r`D#;W5Bd
zHL+qh>gHk!2vaiRoI@8|<0XnY6H1Dmr<if^IRGGOc?`|Esrm_j7XX2{xVitP-+DQ^
zu{$X;e*3WJg%yt$j^T7*FuVqSFcdFw%5~p2Yat^=c7@jl0G)jf5FS0hy=4#1WG=Ru
zI2q-06{+~>&6D*cBnHQAHby_+h~IOba>(PUYl1nI@PCDT0UFmiOdPfUJt?whyYXpb
zHVD$Mm-{#J@!f8JjNI_qE?_%t_;_rZ?n-qV4>;Gy(5(9>9*BS*lIHq`cuMi@w(ehx
z_ft`fq2$8JYK|IVGp6(0E@0a~mab%&YYR!fg7SwIqmK!$og?5ps0_<%#zW&dDREx2
z-Ys@#`g(JeJh;V%s0!Dj`zewu-%sC8EhH_8C)+K_sRm$w{ITx1L31X9Y64;5Ul*;^
zcHJr3cV4F@vT2#e;9v6|tF7nxGAqm;eo7goT8oddnZs8Nz{r4g8c+WT^2b`xo>EGy
zYejOqj=1yWv0nMV#9dJmInZE9|ADCE{PtAUx}#|}#N-Ar;2@4dd<6#IoVrOB?X>QP
zjhq;LeMyCXE5P7)P>)w8UR^Bv7<I&^<G?@$-xL4_9Owh5jj_q9rG#g<ww-ChTjTiG
z{mvVT>21$(j;tkb()HTVcce2|^5uMI-MrgoUwxa)b6Kz~WidL$z_%)ghu>*NqRM#o
zi+!zov+J`#qu)3a-NL`BMt$7}){%TRYs=JIP?ZaRfgKRwSy%c`ZW4n?Nj=Q=!krtw
z1x|=s&D20B{<Uozn8@(hYV*!5_oD`*%};G*sDJ6Pad-FjN;%BNIW>G^n$S58F8s$Y
zOJ-^uCvHSBrf^1|i8y_C)~{p8p2fi9JsEt{7#MIkXPNScFtZddZ6<h)Pe*RlSq~Gx
z<t#UU!9lSY(u1Fwc#)Pry__bTpIBz;-4O)ch3YiE<gUr=rMg}+wdQ3s6}fS<;;iHM
z3g16Ci+%t$3jD;jx%Jf6qbkA_%9p2E5t9v|f~hm5ujix+ij#59{(4<plB;#)eDTBH
zPmm9@D7kS^>>)4`W=A9uG7x{@Oh})r#if9MMkwG}S4Nn}xf}t=up`A}`>l7M&&}E>
zmZ*%c;uKVdZ<pYp@k6()v!ICH{m$@9Dk(gG-q#G8LkP}fn+%6JtMQjNfFh0R<o;YP
z!*XLW^l|6n`=V4Q&Hv==J<6vty9ZAS5H_fMt5gX986u~`2Pcsdr=dZQkZE|CxWD6n
zQP49vtjDivshSi~9g!Aa>LE<If@du%g@8+;*yhJ>`kb}KooSoaM;ev<ODYM0R2#%Z
z8n=o3#BW%6`7K<l@Fue?JT^espunrWf(DSezOy^IbHDz#3Qzx{zwRFcP{2H#&ZG`m
zt0&#ZB;On3f8fIhBJm5R7?H;751^}m;`PD@n~@Tyo;5jax=wd+H7qBa`f+<qRZw-S
z$eyjl%H~pFj5Ps-1k7v#rOF+8_z{gc;8}}g3m>iWcRyI@bV)9hCvL@o(uitINf;AV
zd1|tES%}Zfk7TlkMfC@ezs|<7`Q!O9WBAP~=kvn?dKO*#f5~z>bp5t=3U`ZtwD<8`
z;^P`7>0yN3#nAA|#<S?MpjMhs^=C_%+}BNS6MuY2+xqe^LBvS);Kj09+wH8pIHMB~
zBcV>CTw(oaFPW&%5n?u;$$h<?_~($nlbY8qr2x)Vs<9hzo79+GeaT*&r<!YWft_*d
z8^kyKf+<cTlO=6slg>hpNXxK)(W+yi#^6)9LeL*;pfS5Mysc7`a`ldf^@sgWujs<S
z>?TmE;>CxmI+ME;U2=4yP77zl!Ior&)!n#gprG(@{GL%oP}?eU&G6VtPU5Z}=mVb#
z6nRS1UaSc0cUIos#zac&XL&C?%7f0{4fsoK)iBD5*dx;Z<lE{<{?99arEr)!hKASV
zXI9b&guB{)0Lg+po#^)5+1OO-%A$0XRsT2KRYq<hW-H9JTur=PWJa#ux_faae}r6+
zN!=08x-ytb$4i@Z$j8HW_8F7=I&o)hm7*=23KxYjp!KBN?ECMi4x6Re+_bSA!NUTC
zv0&krC#odzoYJ$eHQD=r_(<e!Q5^{UuaMrmN>wejts<R60)^=}8F&B+EXejiWg%Hm
z3zX6@?6Tunrj`7@t4=t8t@Xg9ANB2GS$*m1cg}K@0l0~z7#*T%9nZ?Q+4!33KArIP
zob=P*gKzn2|5EFxSX^GJUOnZTPyEd|;kwXwr{5MDPm)_2AZ!qSlh5^;6VfN$P+{+#
z+L|F>Kk8pMX{l}XPZh49{=lYwJl^FKWi(sEOYNs>>3)AV;f_3r6Kj)0Ql(->AY}hX
zu%zW|r|)(}B*oH|XRyDn%5ODOQx#O#DpDv_S$iR+Hf1q7-^q3E5ev%wQNs<-*48-h
ziHc9xQihRPw<8FDaZcw2)P&i0h^*o_ST~_%kVVvHvT57EfI|#l35bhvb4OPODs4Hd
za6S(?<$UP(FGU`Q{&)7X*Y}=JZ2vxCh_QoyC&|qY5H=8A;mlu#Tvu^=qszzbm+6%Z
zXTn)<7nG79!`xC#brL&FRjFM>_8(IDaEF86UncL#*Z<Ccv8C61x!sP!Rh6zNfyAKs
z#C^sISB>Lemes1rI^o&-X;#31gLZzd4<|=)>%LH#FK5de*U7$d#l67Hzs4sU@^jG)
zd)&oieT_F?hfN^}F^3H%<0p_ucd!5+O0A1uNbi1!!iw*2vkMVwBlO5>z_V)?n=$3x
zTi+sFK?PHPA2gNXwR9$tJL|X1%qTqUrUEJKAbBJ>b+B$8j7pStdKY5hFW11;9tL$!
zJnPD~IGyL(uu4ZC<9qUtP!II)YrWrd!X2+Q!94tDMsydX2C)e8e<^8Cnk{VAulW*D
z>*DVv4e9pBMo|50vc&L$cJYm>v$s<VF1s$;7e@Pk3Jf?<@D}!QG8Q|XGm^<aLRmNa
z<ulI3UB#gUG@|Ri)IaxA;#`-VeQkZIGwzr@NMpn<<H)?l$<6;HaH6a0L^w~4uk!O(
z9tL5YMp*Fa;!jPj%L@SM*I9362;Y7v4iGkY8NyW_43@0fL>2Iv4u=1dEc-95H`pZj
zqeK^f-$-{)_TAM;b`&RAr&0TTuv2aY#y0AznJ;yX-_BHd|2p&+$zT7UY}9djv$e0>
zkbU7d6j&E_aLjsykLp|x^J|ojn(@7H7<<N4-#ylA_#YpEJ(yG;T=Hv_zUdj(5qWIB
z;a{>>;uSe8TL|i*EJiEU_@x)sVzL{pooe5I1WpJx(L)}c5!`$JM?Ser6cgPMd6q&Z
z!8LrXhf)0wo^>UZQd?1*^j)>BR+xz6roNH>mQ9Qof)}?%ivoPSp0^Iz6Pd6ZR?8AB
zo>ajQL&LiZ4Q`kQ><dn8FP6=(CKzm0M9|@^mkvaIuBX4C=Dl*J_0uha5(S0oG-?-r
z=RW-K7L(y@*R{oZ&9D7^?{R+LKYue)6UmULjrFF+?fXYv+?6t_L9Nk<WnjP|52=1a
zK~?GKGjYRyy7jYx#GVAj24v~4WAgAj%z8%V{JK#!D6L-9bCW>~h#@UT=WB_vXbPah
z)`hTJ<BZCU!&tWYG3}Du5x9$Ecr@mJ-Y2`)k{$D{b?2}64odsfWtiTo{JCzcp9T_%
zi#oPwuKBfZLhZF{c`|YTC!Sk|k;pf`Cfz-+;NSJy@G>=EGqtM~N7OPzc|=;gMMCs|
zC!d%*&xoz{70!nDO@5~6ejymXvDCG1p6BRy*DRqjK-gd!pWH7Cf85~EC(PY{VOF2l
zW&>N<W+mQr!Wkl%@P@Q6|286#Z@<E|=z^6rPHc9_%ar`UzB!ci<<O|{@kX`h-3HFv
z&y#T3p#)S&v(r)hk8OREudY==D(qJ_w+S@PX}8J96-C=({BA?|#$I90JaL|vW@|Vu
z8~LJAyN)!5P`8bzW#XOWc1P}iqCuPtCQ#&SLB;f7pq^E@1>94yzRS7yUrOV8yLZDh
z__ulfkxyD_e`tCd(Ry1K&$`k~iEZ-(;Xy**jljO1I_Laxs%_l8otCl5Uf}~V`7e{7
z4@&!%&rMp3NwLY2J%jlJJHKg5<z$rX!0+RVWY>Zj1q$ywsyKD%0Og^74+k{5cL`;Z
zsPmP~l;A3O)|IzbSeLH={)Wc{jk2uR)F6Q{R*1yu{;tVn>yBXPb6&dgtua_K!vo+o
zp-v-<5n>97oUD3De4SMgA}PMGw_FkU<6o)#ZqFPkXQYJ~>+YEqP)72gZs8Y9^%NxL
z{sSHrI<>+Q!frije3`g^dK=8JxxAet6#AUE(6`R!Rc8b<stLbfij*&HGoOq9>F+@z
zvUt$^TFRp_w+L#SBgSI-Y%{RT)qCD;(BWa!2cAK78nbjoG?0dqT7%z*sjgx9J8;VV
zaIS;16qvbquJwXDK59QzH8uA%%1F+?4CeC|A8zVJ$+DvGm^#;g4s&yseHmnM`Hmc$
zZ9;~-I&Z<Mhv=2=A8tihwgCeU97wg*eu{VH&Tj=6qcCdO1{(k6G99Br#@luaR_(Dg
zUPVGH*9m${T8viuVDKEuv^icaL(L=zk^D4y#y`fOfujUQwalL|_aYXj1rmeMi$o7d
z6?8E)ymQO1>#E0p2r@^nTnV`HK=zIn(8YIDCBPVkO{yP8t_k9NM3&scx_>AB>RqaH
z$HO9~+rdc?W)>4@oK_WxR(^7vdJs$W$ApxWvb#d`zqUTwE5WXj5ntH5ur&vvPGgpV
zR0$F}nNTtzC~ro(=~>o)`V1!=Ov_{^(iOX8LOjpE+bHsXHp&H5Fx8V6qtFO;aY<bo
z8E?7%(;IchR6l9`u<^tPN9+}&dSbAzuGPl<>EW2uApdc#8*?r9QociV8d>zkQAngo
zOG!t((Pv&dNplm|kvkSRAFc%IxrJA9{U`hCE7usE0S>TEW0pFLz*RDxTFXZRgSMM1
zzA9G5^dw7ve=Za>Ky-;hq6cY-!l&f~ard8H^CVT!#L)0|RKKq70cJjzS^AD$Z8)=E
zIn!ARi@1R^S}rD$%U5?fM=<nA$XyjY%+<ph@hU*rfbk`%1vBb1vLSlOaAjIof=$i}
zR)xE}NCzvAijNi~J}?<N63Ms~BnipnFoDKdjL8~*KEoo)2<)2S&rh|hnV4}&5zJX^
zb^hd&9V-eMD@9#~%v6Ds;8|D7LRo$&0Q<fUrrGYcn<3a}{;*<}c{TFySw=ACeeZE#
zSG8{M`P^u#{QncI9>&>QCh+w4Am`Y%w>YnOL3y2jdQ`db@n(p>_*`4}8lxwWMOBRE
z@_h||x~`UXzS%{PN++1*-}O6xX7|+_Ts@!xvP--L?{&C-^2A^E<{ZI)?4&ih7=Q1}
z{h)%SL21RJ^g1{XfU{J%m4Cb7iqG}Kqxv;p@fwNWP&^=uq8QC(`wT>>Wim4*9JzqL
zQFZRRM*n;-xC}=O4}{%L!$<_SdFWGyNU$k?0<Mi`U8%*zw*CS7V@yhTyE}qupIV|>
zyPSF!*GC2C_fyipSk%7H(|sERj(&upDJ;t((NRZf&`yL(-kNRoZG5kN$6Ia~$KVy9
zeXpZSfKk5QysaV<@91tY=pjWhTB+P=y6{85M0J<AQ1YUrQNP7sfE9qLkD|9oCJr=z
z-VoA1>4UL<3J^Ak&u6N5b$Nqf*BX6>iCmCdB^ATfieJIMefpfYin}amNCJ&drr+Lg
zbP1A$WU`q+<BU3F4Qx@V9hK4tqY)gZBdo@HYkm<o{}S7sIg{#rb^T<zWu9n2=znC=
zXEnMc$MngbaG1RZ*NXds<htN#f-=*8lg*Hgq}%Mu)(X)GFJQo7sb9INpR&@a5Ba<c
z8sFpp?7M0II>BFn1(vLv9KTpqMDLDDVL+sn0Rs+MJfRpysLQ^~zU>Ct1-0(-B6%C~
zzrry>YD>01$ICZOQW=X+k1C8YAc5Bqoko^N{8NwgCnxiKzXYKRmefY1tA}}i7$p9>
zhCm|PBAGPM*gt!vtbzfNmIMqq%oT*>K8M;!*WNy8iV!}HIi|v2qj>hO8nMZ0CHnfw
zkrbO7dg<D0QUzrU4R6VF$md~f^#hd_FjK*ziheuDzhc=)m-1dLDkq4urUgK4941g?
zXZ0)2T+FO3Q=l4Ad{0Ahof=Yq4T;TNe<3PnD=Z^ETb8P8OiCD=AQ4Z10f*NV%9Z_;
zPxbe!-@o4nkfDe2<;Qp2{#JPYRJp!uh>aXsWZ1|_O6UJbb@J>`2#p>m92M9-zC-)3
z2busfNgj^aHD~4>TwiEpt3hu`iqT5hT0kg#^T+dJB4{0zhfU`s*pT6W{$K4KOIN<%
z*G%U!Hae<I`5!uxqB|D%?rq>38JvWqg)-XWb`yS7&OGtbY4l>7aYv1iPN2g7adqY4
zP=8&VZ==TOsX-{j*s?~EE!&iAStI+J5|NA~J2Mp7sjS&5A;uD6>?6s({OnoBo_)zO
z_V<}#RPW#O+&T9w_ngmvIrrT2je!dTJ&1<4w^OJ=-qKsbghl)1v$g-wkrVL9C(sE{
zt5R%(!n8EV?J!S!6z<-j$hoj{nXp9Bep|I&@sHqQvF(Mq8{W5{O=i<pF`;jys=_W1
zu*_|)b}&#$&ez#|&1w4kKSTnJ1FRU&`I&om$2!bj_)9|{;4YefE+a(+z62$im-yWI
zt{5poB9w&nJ!}1duuj_Id&!FXtskHcXr907M~x35FvME(C~o{_&zcL%0OR|s6C{WM
z%iC{nL>E|2%-Q*rj&yf^vIj$X-Xld#D1+HkQwZ5^ur&Wf{obwVm6VFVh3CaB*L+n_
zv2wCLPQKdxR_R}Vv~b~g;TDyc({kK5_3KHX37&GP{pZl=Z)0Kgrn0b|U=HtR;J0_M
zj5#5?)H-UYPae|`-3v}uVK%b!ukPIHA&DXuIHBatiziFq-E%&r|9zg;kd~(eDQeO{
z#aRvqL|ioL*B(N=S2WX1s52x}Z<FGO5Tf%%u<u!HT!(pox%G2=G&wva1n5Cnp@U*A
zAt56j(K9WKyJM#w4xcN~d~n=3%1gYKIfYZ3@yWaI*(@6=ih50DP!m-S|3<~xUbMKb
z=Fo#<kh{8+18-qFZgO`;1w0(0@g!?~yN_vEdg*Y14AjVD0nz`F`HD9U`;I@kjkras
zVAjB&-1#Jbr}X`t>(hN1BC+CZkIN5}>*L`K6zI|0X0TBT8rMe+_v41q)k5C(wFRhn
z`Am{LmJib?f;`0a_Ahxhk-@YS$?Y)0dJ1Y+DU#ylI6L2o;%nu5D;fXcZ23py$VpbD
z$S3mwqaXh##j|atqQq7A#m+*yn6<e`ev=_%?{X7=?gS!j&CcfsYo!$#l;<N-)Z{`I
zds-~8*@_V)t`d1368sNi8D7)yWpW9f?eNwTng3%9Khw2jMNqWse@TY_GR8W8o|P!Y
z6Cw_f5n-~w&4X2)F@mVF!c#GIgzX<WGfRlTPbqGqILgvZ=?E;ROaMIyE}@8JfO7E4
zzAsUKWlIu8Tv|@bq<a>qnZ-~w9Z~jYlZ3DQpAfyTOwAExFYCDtCl~?gfTdw`#*O_5
zMpfl@vntk$-45U)00lSH3kGG}>gK_r6w^yJPTHRNOu|3ksF)=Rg@{`u<PrZzOz?uY
zMw+<Y1Od!+cXnR<*Br~oZ6?Si>=s9u*1P|IrKgZmbT>0QI=|AS#?0K<P;ut88;Kxz
zHvn$!qSQAdt~7Q+F(J$GuM_<WNWZQ*;acKfVTG#~`a33DQkislKkp-#up472+6){L
z$miD5Cbz@9rdKrh4`gdD5wYIFxV7EiYj|r8x^+y;<oeiPy$GUbP^z@;7r|9svViD+
z7X`iI&cG(omgQIKahUtm;HiAY{(u=2g>AA6z1zvwc#nn7H9$PLi}LMVEMrdUOKQDq
zD0?OGhhEu=mHSF>PX0?tYC|g08iy`nl_=CFxLz@GJ50XrE$JH+J*-A?>xGP4+fr%X
zayB28-;wlefD51%3X?uz-Qv}|l8t(Qr!Wh;&1V78@AwAhkH^NJP%R*Ca4BT&gYzp-
z(gr~%H7}e$+@H|k|1s6L7ffX8U>R-f_YYHxao)}o7bNT!--V;81_iYL7GLzzyJX@9
z>!ydPv*jmLN#1uE+x(8b4QuE$;_4boh+B^dUMlOAt1m=gNJ@OpPIPr$v$;%v>R+Zt
z4U2Cjp$ewVcJMRU7ItTVivS@X-Frc&Zn2VNXlR}lnd{@eA7OKm-TXMHC_Nk@3VkQu
zuW9WxIbcPb=g)7f@SXOqMRkD4Aydu1JO468NE231Cx~w9o}xeXg#I%v&u65li3$}5
z+6MUjT(fE0DAaS$iHbF(hi#RA<TjugUT_3a68sxNT?B}xj%CbwOh>J$g_110WKGoW
zmV(^bzaScj-qmv0l&D^z0dYA*fpQ{Th2S)d&fim@jV*Dq?CG_gm@_xo4gQCz^r^Ff
zMD;cdOS=1$q4FsWYNE2)$0+#-IX^nLyT13}NrTY8OeGm2%!&IWr2H6v!&HrwRD#R6
z9Fq5eSZ^UpJy*bk-6)`*)Se3`<n=_M%ld3SlaWWle}d4Xje688AiCIc`v-^HGu^-Y
zcj(W<IxxsE6NNrFq;ul`EIrUT;7}HtP04|O%g^=R3I|aXZNs7}|62MFhevHhna}Yj
zQT;2wM-BH67Y$0X{h$1QmIn}VX^<)i!@{Xsl_b%{BS-w3u8Hi}OUQ|WZW995w+~?6
z56CwErfb^x$Cy`goKG*2Tp0c_Mopxk&7bOk_QY`{1t9peE;Wvq4!0qA5q7I1r63({
zw_Fq1NxLg2{MX-NLoSXBSLpbe@0M{@h4gVfJq{Q2t`Dods_SrnYBNH+h==pukuoS@
zh(S%%7d}e}&lRWX?`lh3IEE?=o`L+`twz%Bafivp>DIUVuPdB<#Y5I8Ne#f-w}@uu
zo_?|lzoj4-{x31hVbeom1LAVetLl^B7bwu9jRtgADbB?fdl;p;*e(Yr8{;jomm-Bp
zdc<JIotD6|C#`RP`_%5gtY%W&{+lxb>LL=0qu5mX$D>M%StFLOO6Y87oe>Bd63XX3
zcKqZN^h<G3Gl`75W9idpDf>9Jk2T5Q`e4JJxW!yajDTy6ax$Efph<&sYzpTLN?o2D
zZZX!y<-6b?@K=PbDR@Fj+~VH*s4qJT8-GAZ3U<}&w+KOh_$E6B5lHo8RlyM`0t6yT
z@kfo_|4T7yhrx=-*r;K#;y;WHitNqe?jzFH#90j)%FG{V{$&$r**wlpDN%ea0U%hs
zQ6@EtLrpA}-=c_&IY^aW{XfPsyb$t4#+G8Y_g<N@lOAKjAEQ_`$|dmU6L|Mb>xzFY
zGW?`H1|dj)pinNeaZLl_y%K&20{%yenCJ5@zTwqz9dZa;hh_grSriSys`7Yl2Jz%g
zf6pOW)yS27-+zfMh0DqjiQT`bWVsnUPk9VN;HaAPvxkb#ygKrK#GZXGA#&#OESYln
zN(c9GGdMMchI3Lqaf{eU^Pqoh5tFeukGqdp>LjFpTk{ViWl*mPTl{+EThOKUq0XV=
z1@v&0o}al}!?M%g@u`~PdYP1O8#b<k^~%^F4#MFDOrFd0=eIV!MRx}`b}zYQ?O~{=
zqrKJ7&d!TpR3}LH(69Iq<>LlKK%pPDeY;B|QvA5dpNb2ywQ~@^KFPSXtz*h9Ul{P<
z54kgc3H=Oi+b!`sqW7yVmfuU&JWj9JA-fjMy#<vf9OmXb+QEOz@-E7>u2?b2yI{)u
z_Y3bkQVPSM+m|gM`m?KG!M9k*xKRD}(@@X7u=~b0{~^|M(S({v499!Ik7$uPSjL<L
zXKLMBC}ZyRHsY#&zb207feFXO7>elmL|Wp1s-e!Dpnl%fOIo(%b{Op#CB%D>_w{uT
zL-U--T=Q~ky^M_rfj{TEIgyrKv&zuP$6`vIc&`7XTG$GaoF*c%kc;E&{}B6O?=7^t
z_D*zDX?l>QP-j9tr3>gmd=d=D-K3P3p6fvi_15=>|CGLV*F!n_*!)xMhwLKLN6;mI
za-u%UM2mb%P<Mgghaes;51ofzC5n~%4s-kG|4|tMxD%zgKlWPb<MW_$%C|;X#+<H6
zY7-t*Otf?~QDwdQ(hQk0oFrTU7PK&Gy|!ERWmWwDxI)T}G+i?&&%;Olt1Is5kvES_
zPJ6F-%<Z51KbF2`d&uC?5xjfcQ$uur|4><OM;i-=23HH^czsm(KbEd|s~RsGvgvG}
zZ7r9yjHy5N1G>1@&wj*J`xbThj6`+^;1hkGKfkjZh~c)yR4Zk*^-Hyxg9nXt@B8KR
z|2TYcbqr4@=KStht;fSt4(DfRdD4-hCX#dPnXdrVjaEuo{s*@Y;=hc9{dLHHZqc2W
zSXGVtQHx{9mBO&wrq{oNe<nB`Q<mzNGzLC4R>Un5a@D_eWtdV>_R(R$khpN^dZp;o
zn)<}!w=^$l`<y)qyxDDYUk?wMqoE{u#+#6NsjYiGhF9_HO0CS0pS-UxX+0+dZ+&G?
zM^IRj<T+2h`uIw@vEbjGY&yq(R_HIEmERf^nVY*eWudRBznt`sAlrvJ7sMAt)K#-K
zgu?oG{x}d?gXPf>H9yPc;8P(I;%4FXv2aG92l1#&<?RiS;6=wL%Yke<+afL+r#sGf
za2`9WSd6o4+KsFDTK&+iheV}y5NH)$1A=)F>wOLs$>)VX$+>r$|9!%LRzUkji{Wu6
zYjF%C*H_B^sV<ymM+{7;5(`H@9_y+%80F*tXwAo9;{lPHe405e(Rci*qDf2qp2E?}
zr>zli-QV^oO#pTc*LY4=;q`wnhV*g>UyATYikdJw(^x@K*7So6o|g4*_wPHMJoV`G
zBT|asOEtJz9ZK9|Rry+f%we47w}9yPcYp;x5Zit5-y?YUq|(p)<A`Z7R%2YmWd~L*
zOT;2C>5bckTPgNKbJg7bYBT1dQ%wJ|7852R-kEZKcg*qK2o=%m8<E>#I-(UVs3|Tv
zFkK+-@#TV7se38ASkSR3BSB#<%uUz0N?jKhKSwg&$^mK9<oT<Aem1hqF2{b5DL4&@
z18pSq>2Bpj!2WouXpT9N&{u+HP6$Jyef-f`-pn$iy!<6XxK{Y54k>^~D5g>WSL>lM
zAJPST$`$b%DQa@No5pUE;!IM%wM{+e75klEjV>=if4uLH$1L%WZarIx%jvB4_(y)k
z($j|Ql>ac*uKf^yE5|<^4I69?47Ua3Fkkuqil-T_@s7FJ^))k`i>kNbR`lOI<udG|
zH-Eq9&t-MFK{P~RLNqG5ZW+vjX!@=ia;Aa^hN#PKwUVT+3~aVyiU^CA62y44UFxHb
z>yS|l_@5zjp=T->F!rmTq8unG{}@J>cSROq5$ih<2_o`;h$EmrlZ#&zh-DbXfMF_=
ztE=UI+u(UrQn<Sy%f?RvU!IODLf`(cM%}9?ZTGC66OsShwb1zH@$>I`U`KPY;Tm%(
zKG*I5T5@kf<G3R6jWT2qANC*H8|)AHtQzOQ7bF4RBW8$?B%ZBI*mL}UEnKoJ?fgYy
z%I3bSIe!&@jNuPZE5`l8kO0A)%Yq!@A%m1}O|XnP6BION5~$FCUcwT5_6|ahljhQK
zVY+gxM6Kq1u$=T44sE}GL?_`s6+zgT6BTQQr@k_&T^Oo|TPbmQz<9>be6YAe)7nL;
z?@6QtYL%d;Dn<6w+{;6w$yBm34{jeM&Gf#oqo(|SQ=A?Y+v*@*tDFjzl_M72Ujsb|
zm1y<$ZhDO4?#t@*0JWI|i{{>}p|knNcXadwEEVTpgJU2>fXFh1MNp%V1w?<JG4M(P
z){Auz>gitp)_bI=K*J>w(#u72jKZK2&)j{|8ro~aTeeh?l@aWy7Zm7G8o{LYEIzHB
zJdqQBw=SVtlzRTYA$cW`XL~TFcK<!`Qg*^WQtEHkrgeoFVZxNn!=k(<G0L$dk-#lF
zdZ^=m++;Xwe4zM$bgp=-z9VOUgY}r(zx&r62`ryj2fRjKiub!XeyA;TEMv~DD9t?y
zRISIu3$VlMPJ}7@J(7aSQ2pGAR*Y1p<x{wSd@?UK1%Q&upoYst`n|rc#m;}~Cts-n
zmC(#gIjU9mV+VL`^aFvNvkCnS<<_a1$EL>)Ntn4lR9q2$;ln0yLNQ_B_Z`jeX2<zM
zN-2;ybdjMjd1xoDJ!<6QzNC($vk&Zn9yPfgCg_|tBONWqeZDw^`p`9fVfoYeaOj$U
zATI<foyT1KHVJ@@#M&*ChqZ}yNIhpBuI2*qlK1G0%tF*gWW_q+zsAg)D=SJDU?Kn=
zb)J8gGTWy+S5YH^?tSMYRS2G!ZjO8gdVGq@3uj-dop>K?Zo2=B=mbg13gKBUcJ{fZ
z_<+Xs`RIv%DeXR8)Ff<=rQneb@zRukkKF>IA9?fkM@vA&MT4*iKl7HKzvn~;+aEyh
zcC(5=DP}&AmMF(v0^rS!1am+h%a-??k5s|Nd{W$%BneQ<6xH9Gy1}$DLs;cyXGj#@
zMRGgLY?t;WT^fmQ=X{3&!%Kl`fQOf%ZIt&(QitGo`absu@@aS4YZ=b&Jl52IbeYeI
zltF<&=usM;*U<Zr(~NtfHMcII+{)7H9@8BcJ~O!qzFX~MO0b<zK(V_$j05PV&GXMP
zQ@6THjVenwwTi9hTwaWi;n(&!ZbSP<wd=T*D-!A}=<V8*Jz92>>@PxHmD`<HB2{o-
zB>nCe1))i<shbwF<i{jTSY!2nleXLL#0Bb%B&4Xxx-H+wAn>kL3%`G$8qgcIr=egg
z1o=}F=T}UMd35gCN`2_kizP-f5Dft=q$uAE;k|OdPJ+Nue~c0Hk_2Oc@o~j7<28IC
zt5~=NC744gu#0#|>>tYHvw-M#H#YLSp;`iZ<GJ%80z*<lTi=drXizhMi`JY5!)bW$
zlH?Z=&v7zX1QID~0w~Z}svWiL*eBI<wpZ?l#tyOD{ppY#HrvxqV{5P7Q}TR2{V|De
z9cco-tBYmK$&8B9rvp7<9_dw%RKd+`$!BW0N<#mn^};(vYVs+;r!+5|FSB}}d3>LP
z1j1WOh6rl{Xob%7aUW-Yh<DX+vtLFUuYpSOaTJ^S=u@fkDVabILN^;-o(UsBd`4bj
z%C3FJrMR3<-HZxm@NupYmLU1|5%A1W9arJ(6VxxXdMP3nDQaR#LHmRU^?5)sjxQgA
zmc$6$eRB+7wXPCeid7<+shq>+T2LYC+23r5T{OF&TF-aIvL-oyOUvV!tq;UU&uH3|
zIWKkFE>;G&^rHyGtdz2`$uIPH>3(KC=koXRvhioH)c#n9t835YxF2#1o2>h8=5LHD
zSV0$bNyHRDPtN<Gs@dOQoyYgH*$e+Pyrp94INF-7?U(fRruy&Rh<rwn#%Dc^!5bj&
zs{=8gy!qyAobhXaDA)p<I!R%*pywAy;+;2~_C%-_vkaJ&1K=+y(4%}NCZBb0;6kIS
zt{Oa`i!HFb{da$&G>UgX@nPbg$w9HRPe?DX@TG`Mq^L<|6s-%C+&nt|evZ3Wt<#PE
zKe#T4a`#DtkW+|HwZn?&XSyBU2#rDt^k}B3`A;sPy#Hc<J{4K*tA5^W#R&dwgW4$@
zSFNjEY$ZDmmcNHZw6H${R3HX5T!vyd>ZpJHlI?WpOLr;{;TRFN_+BC-GvpY5D~&|a
z7Mw71-F~g*`VVs>CNH_!&x$ANec>Q-I}BJi`hGtk7k>>l*VMQEE*z~|Hv5755B@Lo
z`64Nng_Y@l%nc*5mWLEI`BqEoPQ=K`>sIsIU)~+ir^=+NkWLt})3D`>A%%C<nts$H
zvOwr7m<5F4edAL#V~g+pa@JlK%7%-J(udYabZ$bVuTMXBdaQ>EG!6)OOs_(#tczt7
z>~0K{3d08NQ595%nEJHzIS^a=NPToLtsP_mzhaVqbyy2u-qvzI<gPgcGzK=Psr_82
zrb8$3)2-aWBN@GPzjsOI3xD_P;N$AHrbSca`lUWJ5OZ2CJu98xte`#?{tf6sP%>!#
zawHhkjUN5{Ic^6pVprdvzV(dIrFe@1$mt~EE9<4f$?$9Bb{HGF7>CzDcv}U>9RJVt
zD#JB@t=F~m*N%-487N*yb}*oD_K+<DETiD)7^O@Yw!JWS%9a0A)#Q&AufNUxGnJ>$
z+E#U4FY`=z|5{AfoS--G9|%4ALD!^G1wwFHVa55zXA=5j9#jC(Krg>gkh~iBQr>tU
zeSzH>l<2AGlXK^0Xq3&cjDlM<w_(26(auv(%cF*bf4z44zzfG$!0=h%zW71Qe7r91
z+lFj<nZ_qG_Z8Y#mn<L**<-8fy0}yKE0fl1=eHRc4%oZh|45JMt(tQTDV`*?3u%Yf
zN5K_9=utjx<wtkTaHEFB552CI?FY~b<#^sd#&}xfsH{5gCIYd~Tk?Eb?!3^yC?$4R
zHEmlyfA<<GDzNoQ7XMpS@)o@-_9uIpfg160I%0dQHqe8J;!A(PCy-~;hGt%RSgbZA
zmif)}Pj@T@NYP<C>$7M8Hr}s^Ps{5cTCR2fRW5ivEl=_rS#9>+(YaiLAxZw~VaHN^
zJjY&efLBpL8Hb`@{cHFq0(ZI^4R?)GHrUXTf5Yw74xhaW6$;D#;PF(7Qjbz0j{|ex
zaI|Dc)&1GcH#ucE$`^Eb{#3^9f$7}K^WRQAEq_0hzh3XZ7IfM2Piu4cspwdJCvbWG
zeBgNqyDFedh_FTqlREcMSKs+hxyqMW^=*su57KFq;49~4TyXtr=v-$}xJv1wFE>;V
zf6FNNc!nz}37b}9w_1_vH?rQ2Htygrdi961#rO?BT#aqz+GaxEVVm)Bx3+-R4lZP$
zqcUPi=Hgb)evRDHZ#({7Cz3p2rYPFPx*f>Qvk4VZ^TiQXFYi(X21yhS=s{F7!M6h`
zPse$ySL!=2mqjnUOE&oQ^0;;byJFq@e-?M&wsMU%Zf~4yh)n_LK9}d8_0ZHxSC^36
zyj#+}xSP|fFRlMqH#N)@HF9~&YWb?D`L=v-W&D%>6f|HMq^QaA$p~*t!0EYq>t^N|
z@7{$sLYnA~Z(PUN9CL4%qPnijb7m)th1^>r)xeP44$~N|XBl;l0NaUM+%8HafA*vo
zy*Tbk4}{E16mj80;)V8t``cu@-Pr&8K=tnE#m!Y>W9A5z6y9`PtSaU&?lQi@cecfS
z&t`0O9Q>C`9<@l-K%GI@W-XOK#Vn<C1#Z|=XddSxBfL{IE9w_QA~ypWlp62Hov^K3
zvt!MOA#jI8iYBnYB4V-l%l2Dle|^<UvvRw?txGky^&XGX{CWFQK5kQWFZqmY%9QGX
z-^FqM{&W94e@Uz>n)0|;X1BjMqdN;ae#6i~7hCCtp1BqPU*HJ0OQuhJGIUHa37hht
zdDBYk^QPcnpMRbceZY494v5uo0u#_aUy)w|7(|ojPj&b4XFWw+pqtC2f2(!b<m{J`
zOtrJhFGvnD2kxS|iH)3&({KVySK+5;dQ2xk;4Tn)^eZ`P4Wwwlts3T1WNZt(JCm!D
zJIsCzT~sY5_Z1X7JprBK&`dp{dVjbCxg7?<6@#Dv6|ww`SSnn|sX}jgQ82<Gf6knl
z@d~=+S~9ls4eKRS_i9?0e+4A{6gZW;{r8==sE?HiODz|7bCNao%>I7TV+4q6{$lXt
zX^GiiAK$Mq3WYHN)D-AZc0JQpI;iX8R-C8M63(T&(zub8O)ur(6X|s+f8O4&G#u@t
z#kFKpJiOGIL6RKsVaW6Eqy)V_cmB(0Tgk{swFCM;uD{<&v1#o@e?;KMZ5G$KpIkHx
zq>lih+JPR#`zE2SXB1*AW^Z=(F7E#DNHagw%Ap{YO>spHF(+A-oYD_Q122BoH{S(;
z4Qgh{0TsyF+B5V0{i-SNmr9i@-!^0eG?p~;XMIVM<P^-?!Ee<2*~pZbi%z`@WH85r
zz`Jtfb`oB2m@Z1`f8mH;Td?$M#Ygcy(eBJ+Hye>p$R^LZL9)3w(-{WeJ)Nx8Kw^C$
z1~rc;fX|Tfs+9$Ivx&&1iX}fL?d;NHkI755`>Zi4GQHjXX>$4c-dld5=KyG52g|6z
z4^`H+sQc2gUS5Cn#<7k0cH#0EX``vUc}o+E{k=U(NjIIQf6bhv5Vq!rk5La`7Ld)e
z%=;*~5uhKwr?=?hw#-!L@JKVO=L6}irwU&2tTC=uY9E{#xxP|%D4|_bETaZDRM`Mm
z^78DIcg(4(l~KcDPU2(4!*w+0FdqH7#AOHfe!iikH>n4KJwuS9gLNr*eULVFY^B#@
zB0V9Nji2Kef0cB2ze@ax%U$~#RwEm-#Pve>Wxp;a_&;Rp<K)xg20NSam+dKg&3+vl
zD#$<EM`W{)e)mUzGHdeU^{Bgr6skz<0j~vQ)29P}7W5i=UfRlHxrEbYn}GQOX{cTw
z$4zn_yT#Az)*?B%@Ds`?GE^0nLCp*ZctllRIaWe^f2eELH$08~T=6Kz{P-2<InZ;K
z0Y>6O-S>9p>hJ3<IpHb#Ko6qA@+mc{gOJ_iCdIffdkpke-RW<HgpkNxAPzP0oJVu-
zK?3x2(`Y$w9=VDlxYB0aevO=Yn}^J5MX_e3^ulUz63Kpiv7zHTib;}l4SS7u%ok^7
zH2#mKe=wD_#P5Lh@_xUOvhlttVFvxjq|J5_uVXxMXzo4ksi7$M6R(oVPzQn*kj)X%
zT^~RNa@zPnQ6_f-w^>;@`;s$D(1sK}*@0XE4`DpkP;+~{_$#-z^*tI`J3qM{#_Vdz
zD|j455$n+1wk#QZg?LC+N^>pU@eI93sKunke;XgG=sj`GiQXec1)iS_I`)KI|9Z^a
zL5uMoq$n9#d}88(aC7HkAbAiN1&YgKI#$ey3J)7U=WY@L%BM7_vHJZ~6!jEB2;+ke
zF5;EtYb#Hqb?^S+G06~7^+==`o2*|Ed&DA}1!PkWzRQ8)q}aWBe{nSJ`8XX%+uZ!3
ze{%lv@rizGfV(>#xX)3k)s{fNJKSGv{1#JwlLHP5M~a%Th;Bl8-odS1rmdEIuHs|0
zHMd#k&zl#;2L&91R`|jk#cW)=?}(Jm+LjFKdg}0rF>W}{2W(KYcNTh}4AVu`O%GFh
zYJcY53wSv6+IIB#Z6Hq;*0j@GtL+8-f9~*zfO`h|B^|?G<1{{lF4<o^Tu3#rGcQ+?
zewTvo^dA{ttSjoO{8f-dc^O~f^juw|lpLgq#MVI!YP<x3eN<pFC=Tm0-Op931ESnJ
z4(9shQuUpwX^+RzEN=%*&&IX*j(9XIJ83v43fS4#Dj?zB<aU_d=Zl<LVkoKfe=`u-
z+^#qKq2oKz*(t{ZcsTjmhdTHCuA1jsi&1$m`HA?%+RVIEM`F3D3~Idc!w+u5xKRB|
zP87-dvuZw*`wG0>#%PkN@*x6vgkqwf;qrizy=O7HkifGur9n-1?es(76HTAz1Jh-<
zPpxao#(4N=2;cFjq7Oi&3_7Xgf9pn^yNBld?XPR!F2QkcDA1#_KkIzBB4V+k_p40X
z_~q~wClnLrL?meDTuIS=l2*cfs=c;GmdP^@&An&Ly)I;~t8fbmzY6pqY9+3}gsXtO
zizi~%%U6e_yj6`=Zu6f0L$;=;>Ru*ViIASEA5#4@XhFr|XXO@gnQJ5Vf9>pLJ<_rU
zkh|<`iR13ev_^N37>ki<ekLS<4D}6!9))~-21N;jyDHz#Hr_G+Je|EX?0ic9?fbWu
zq&}%sp1fyECchuZ0KK6*#pmV(9|9nEUJFRCDo+fxvLdcHm?dYrcFD}VD?%-o>L`KY
zNyZ9I?{`TXhGVmuk_8VLf4m3uAYR_N{tB)FqW6|4NMfk+sFK=ss*?(fPL2OYqQ}XJ
zz;#u6*T~u@p_MFJP@gDuO)@~>2XuM<O?*@CfEB~9`9)@lRn_(KogpdD8e=P=0z3(D
zO&(6_Yj7vNF6s}Mi^|PoXNRX;A-BVP<GFY%MH*-mz~m<NR(UwYe<SX=W%3@6uA%`7
z&+=Bf&ljt`UI&+#udQ&}URDM`PpJ%QCexfaP^*yUA(=wLN;^Pxvz6ZgrEomdB^jGw
zsuL3F3=tS9PVsz6M@<eWKn!Z=KF<gMT!eJpY37yF95diMvX38>x~;8#Jg4h5)D<z+
zQhloaI&mzahkNOpe~dyHCA9vs1tjKOYbfaU<>l|?WpfE9d`HZ7o{jpYZ$y>;@FnF3
zZxt;zR~Ebmc0jDKIkkhAwc&5mk^nY%${nBw5&GI$5Y+=|9+Z6FDv4e2F<ZB^3;s1j
zGXA?DGsBJ4nJ*fsT91e6+D{y5U=hYxMnUmJCd#))xM#hee+eOAng_bOu@t&(yO6sX
zUE2JIG933{dZlUjz;gM&FRg2*!lZMv(z8Id=KyjblrGQT4xQUc`Be+|MN;mw6C+~h
zdv=YH!Hw`^@WOV*vL?AD)EOdOyo@>&^(-M@plx3OHS#Z4hpjkkoOn{@tbMRbZ}5P$
zXBu!<r7mvUfAQeS6SR)SN|GTLPZ|^qwIN{fnm`#OJPXwNEOEo@vvaF_;Xuq{Vs9qI
zU66zacL@o_XP+^M_ss<<?J_SV+bs{%7oZ?$o<IN1|1J>xP_yrjU)#0y^n?2Ofkq=U
zM^cx&k<gU~+oJ25Ce@nwy$<uj$_RECJcSqNL8#x`e}Dp)X)^YndMw8sO}%pVv<rs(
z`a;^ZHq~S4^0a-&CQ7@rf<n%56iP_ABjL0gUJrzCfo!V=&35Qq-l!)6LPB2Uo`rPO
zq#dsV`-=*RP7fD0=ITt_w{Hd!Cuthgh^qEGfxjxJZ169xpFLHrdH%}S;P}Nlqr32M
z5^j2Xe;3z2v&V3D=kfB5FZ*jFM(a0Ks00K65F^Y2(o1$%iH7G5d_jM3j`d7Jd(mQ{
zu&%BEX~R8KT^mYi-?u5AGY<@I8~saFBV{9aalMT|_1d;w;?TwHtoO%rBOAF8nR64^
zNOOoRdr$KI!W$tWeNzQ_B;1bzJ<51`-WA}2e=eVjTGv!Ar2XOWi2ugbm!vi|o|o9X
zb%%4pmK1WSUVBWRc+z2Ds7*9d)TAI)CICJMvaR~X;#tYdxyMvz-q+bVR4VLFYN<*Q
z01}51^+UH5**Nqj<OLruIpMm7^UvurgTU7mu#7pp%`7)lx`9G-mvHH^b5T3ZiL^$h
ze=2RH+SgYzi?N=23N8APZ6z*0oU?O3fx%Fl9Hgj;Q-w?@JQ!qKwaDW3otJO3TIXa@
z29kx88S(_f+mvL)HGk=MdD3k$C%b7!C()lmU4j_Yh*A%H1b@}Q;XZpY6eeGEYvkqI
z{NyoRloOIfO1*3<u=A#Gg5uHa$-jq2f0Lz#9ntHP=g7%{7QzY2DNd)hNyN5U@A0gr
z=-gf0^g`U9v;EcZM@zfUW;YL4ukErOZMqaGYSP&t69EqfJzQ9uj!x!#&^3Ut(G9l!
zW03Sz0wdy85vWGC{V;`K<DcV{UzM?pISR`xswp!-q0raTr(H4X((6>xvYTOPfBJ35
zqh~)6-PO9Ljt1u8e6bzt7yY0hh%XsxiokF0KqvU?U0jrvCZqc-!>@s1>w*75FK4G7
z4>UD`<t^fZwv~9fyNJbds@dsCf+xW;=71ESz|oA@L7i7v+TV*$^!}43Asa1v;z+o9
z9=hF#{^XfO$uC&~3UsIbmQx`Xf5&^muTAD<>Jr14(NKNT(G=rr#wi<F2(N)wz6Wn1
z-t}z{O-AO&+*rtgPt<w-{OY`*n<>1&N3lvK&qZFoJ?`m|&bL8s$AhcS0cYDv3o|77
z@RB-3p#lmD6gQA?eh_-p=>1|G$cP((9<S%BX`__gKKFY6<$_lc>rhwef9*eJ=?2W5
z&0fnwyljq$sW=d_F4YjveVTNO5R%cOxAmZ-P@8i2f>R45j*WS>YnLrlD25w)>~fat
z=Led-UxLf?@R2<+Iv^1Es|J=a$9W@3Ekywc-fZT3;EzyVU>GAD(+|S#$74@a0H!n9
zt62zz&`P_rf)3h0rTxiJf7%d(ny7pMU-ouoR8rDnR-JcNh6+1gQgi1eMsXvv;Aqsm
zFj!i6r><J5@<YeL==b0zEv>6iSo=+KI}H7p$2C+mWqHN+rw{&txar+Gq3`yO4B2Ez
zSDEb=sL%kt9bL?aOT+i(Mjj(dm^G2`pA_iPMl-e*YMU2Wl#Yjxf2~|uh8sIxvaqe+
z?pA05sg%s)ci3_`PZzcC65x}wVgJY~<MVki)aE@>)P!n9CLYdD!SYT7L!9F3HL&ye
zdU;w@;o4(T0KX5?TQFz#?BKt$XU!nn9?K^gMTU9{LXT=^MjKF`<G}?pLYOmI;+<7d
zpB#^8L~{Zznq`^Te@I^ZoyvswoTisg1K9+l%C1VMwTUAh?vN@N{>oj8ZT?LmTf@tL
zxFthvm8COC2vEq)ZZyP*r`!tTgu`UW?J#S$mn;E=!#*eJyB6Cn>N_{?I6EE>1)l^8
z<?<`+JCH!YC!A8~z^+-79Us}>^EvH6VM&tD8kU`W!*5Zff5|y)uJxSj&>@{d1uC@x
z*);4`Ui_Vyii6rt)AS(0$lqY7vNo1cupyr^9)1U?GFvXd>D)oh9N2Uq`;(a%bQ!0Q
zEsLwYyK}Nr6_P+>ZnoW|7uDfJ3FUc*6gBzD$Ib$%(;0YKsGw;5Kc?BU4s~t2ohNOa
z9JnubR<xInf2+NC0d21&E|zkez_SXu9fq^%k_|us!FPp!c!=(o><uqVDJUzz&PoK4
z#Pt9rVw&!AWonM%jB<5&sr9y~dQM6mHB9RvxgADWU+FO@p6$xRH*yQRcTt_A^`T4G
zK0Zz&eSW|u1lwMiOE1AFnYqF15z6~khw?9WQ9$~2e@&C?V<xoPcL4pc?bVgA`xNx`
zcS!y&jgnc`3;V#J%fLWt+T&wo|IeZSzOK4K$$?3RJb!+l&|AtWqr~8geN=PD$7o-z
z#%_w7wE86B08$f&PiMPVlIuR@BtO17r{%eA(YuoEHL!C|0s)eneLXroFZrb)V^)IX
zyV{vifBoW=CSBgomv7`?*LEN~%_yCncpWKCHaLuq+zxY>k4pmxrE`6-VNcP@9JbwE
zF2!Vg<#>i{5WTBS&*d}>K#^pIaQKhwDGNE!K%j1ZlM>2v%VK8Ojj$}!OJpzpgenzp
zs5}V_t3wUSt)r=P3{a2&J<<0FmK#X85zvEpf7Gq|6~xGcm`mNS)nKXCEOVMoIjPt5
zABo>Fkh^<nsBdj+&Zb&bDP~(DkPI~oHmK1}j}~UrO2>ZBt_iv*n;>?-4s$(t>^bTD
z(Sm+BJQ69P<G*4zoqFk9D+d^=tbt_|EO|{C3;zhZUfR}Gsa?^x#esj+8@3mgo8fS`
zf9m>CKRk~zA@e1U$u6RM=WP$3Uz`!lkPTylAKw9hyLgwUb%p4qd?oCE_3O_G1PzeR
z1BA}?{-i_m<62_*KwfnU0f0K_^88hcpR;pom1Ey`?g+7L{IpDuz@@LVuDsmi-aKc{
z$4x4?20{CrJ+oGF``nzdubjeNnE5|Qf3(8jDZW4tf=(dwEx3z=fD3~z-b&aYVDZnd
zJpP&t?%H!Xt<aLf%xv3re0K5y0Mcg2^H;6#9pl!@!~T%Z3ch$Np{IBOJ-IW*V8UHT
z0+h4#vBe(ocd`vol?z_aFOKNBSTVzqa4QP*D4(%WAa(s^0^qC-<IpH`9&_<he{)#$
zf5vfSQD9Vmual|VBH(271qg56cjO3~R0BYK92OA$IPKdn;P-&vE}BBmnH`PPEx!8~
zQ)NZ?k&MEbYS*e|3G(PA6}rC)v)CwsBt!908Pw>Ols@H%&`g>Bm_$fPJ$Wd-aaKzQ
zO{1Nse(QcWCE120#YW=bkPm*^e=pqnWxCJi*Q}t+Z#uzH(j7hrKmk_!DVD!n@*UN7
z*)tE>e>`_ys~9`(v~=Yio!}LR&9zegaWVkJCujlDUjbCZ;j*Zlq#V0C@AT#WIPs{$
z@Oe`Ygj;10CYZGPEw-cLx38vEsB+bYA-1qeNBeGQf;<wgOMxEEG%|Fff6mainE2ts
zcr^ti_j{uuW+%tr-MDk_$T%+oi9;8O)nHD$Tib7nL(v}vo^ZioK}b=Px3`<#!1V~;
zDVKSDQn8t*x{bMVG#g!rkRdrf9+XROIkV?^yIb46A$!jk9NwJM<(P)TwC<7HVIU0p
zwxC(ME1yIyZ!=vP8}#Cqe?u3GEt0V11BO0l&pED|wnyJz(C#)<GYz+zL0q6P=p8Jh
zpk?=@T1pI1cRj4@xngxdref+r@XzASe2^e1(K^SoTyUXR+_H$$`{9B^M8e{AU5hwo
z1?2H%H8l?$*FC98k(|Z&c0a-N4HZu~2T9u%^ch~RhJGjC;p!?2f3_#h7^+`_z_%Fk
z{DX(dSGkuPfE~@n8S#0MYNag2RG;oxhoo8Ql?MDi{~yLbTAwkOoaGOVwe?N@>GPez
z*2gb3Ls&9^4An?5o67GroLae9Cn{F3tf?r^o_@5<9S8eC(l;c2B@%vm+^$T!+ovBb
z^Ro<sAq0d2O)R4Ze=8KWtO<I~Jm7iHBN=x>kE0{^bB^5C)#P70Z6tdurHEcKCPW*>
zW|8W)a@Rg<uXVklg&8v73kW@G*=<||TBVd0^-*5Fkac5bM0RU+F=^3L!SQ%pkNA<|
zdsFUR!haDGbo(mKg@BL)pnV^5JIq1yw*xjf?%-UX_p>+Vf3NJ?-)<E<`|QdM?H%9v
z4*?E2o|QN5t1aI@7}p<t-fPNw3JQa&Vi^VXDy&pt#RRZ=M)r{?&z`D(vd)fORmt3#
z;?Zg>H~6vi*V2(ZO>vtLO7HpLV4oGr)qPrW03@r2Wn8>(xT^|)_S3ONADMQxUto$f
zMJ)%*o%&N)e|$vOeV!-y9OcWibid{o%k4XmifTfw^WyU&9-8x+#WxqZ;V{C%E01rA
zg`1(cr-rO1Y$FJ1)YRqR9g-2S3N5$J#xPwgmDt#-l{;{Kb`VWQ4kYtfKsE!V_c_Rc
z19hy>chM(f^K!et%fcLX9QyW!Nb(azT~_Mp^}e6wf7q!y@n(<D#58;6A@GF)J!;u&
zz5x=3?Ai_|Mk?j_Psu*m7L{RLe<1LxiR2zxIka~8HmY?_iamQ4=!yRwyvsLO_bkyz
z0SR{ip-0_6PA~$XeI1LrNQf+3j-&i^M(C35@!jqoAm3Zrj|t?$Hx%ZU_l@g}&Mw{I
zhQ8vne}FI)uC88+(8sNmxPX!?7-RO4)YI{^t72(KOrwYz)mg~uV-o)YlG`c{X6dm7
zf&Y|Md?8)3*53(SZ<jCmG3|DDrN|i_J%3UFckN%Fy{J<)f-&U6Hyo^FA*6zN-im;s
zU;^o{%N>`r!ja~$?0%75x2#E?`y6%@4^Z`he~;ns9se_Y)n^Y{J_NA4#0*kGGt9A!
zIo|TzP%yXFPGc9<zz&G@8)J<3f<t82zMu*w=k=9i2k9@LWm}cgjp60OH!z&tnKw&@
z=)1&RN5T>0b{HH4<^@PnBpD)nmL<{eiPqk_*qTu2$VBQI!KwAmyyIT8`}K-ucX>o;
ze^0l*_4T#CicyXr+YwH!o!?m8M+5mzAE(LRj{PcW$MP=Zx+5R(1{cs<d3$bo#&12Q
zff57;G35DE4U=_nN0?(XdfV@<eb^}IWj2Vfl3wIIZVmn^RTpC;`b^BjuA3^7@pcXf
zeC;-tG3QQxE0>lVswVyH8tckS|1hcQf3sEhb}7<JHS{VYIgcKVckv?1$A9VGue{)i
zu(jFN50PHFHNA4ZX@USP4sR66fh~$*qjgVtZkB+mJbdKtq$4+}YXH}<wHX`F$k$%9
zxPCsHQxyO)3R*yV5te6RTK7=>$&fS5Zf5cUNw|Pbdnvp9#TmLMY^2d)&cwz+e|&k@
zueDsp-=Y1z=3R!DifLh_v7cn9Qc!<SMbEGQxba&fOzYi#=^Nd;oZ?5|jE*kD%dW?2
z=|FY)-sk^j!UuNE6b6)xK;W;0oR;Dji%QCEpiqtpy+?WPV|p@fdStUYREBl^?q_>a
zzh0M6dv~Yvbk~jQx>Ut<pK&~ue_iW3LlY$k48@lrMH4h&@DwxDmv;v}zsT#i<a;ZP
z91=<1^{y%|G^$FJL(~X&aDS=tU@jx4_TGU~^;gc+2$R<)9iWq^f1EpU($a|MYB$>y
zKncB#^x%zw!rpUTQ;D`R7F(>aG(jv?Fc{{S?hcid3prx@UVFAC$ao~Rf7QwLbx0QU
zy7wfBctlS(tBqV2%r@j;0ziBMDG>cp;CvDs07iYl0b#j(n~WK_fhBW~AB}seG_jYp
zj}Xpn_B_|k^2~T|3UgSL)SlEO$Xe)&*J}DqY;YVExjjaRXZIx;s*<X??|S866KtUB
z-eB9i{<E7E%EL!FVJbT!e`5iQyDFD|ov#@C!L&dpPIwgthtZSUV+{D%&H!!<7?)Ym
zNi)iy`)__Pw(Lk#%N<$;A_y4WMh93A*_z&cf;xzIp5xVPB;dtmU2=O&Zakin9PpwB
zo5!IuWwQt8*alduzN86Ft{hE&htZ+>MI8*Oql|Ii;ycB~b5yMwf9w6oP_IB=N7?!O
zwZIdmxCXb)C=ZnfJ0}#q?NrCN%Qfj%j;z9q*1*N0R-w?E_y?a9s+NpV<pdnVP2cV>
z^(B0S2G&l6GHn?UVsU$3qOVZoGw?#S|GKfqo%2Fmq_VKhqRn<U-rR^P${3el>U5@P
zQPr|h*_RCU3-opLe*=FY5<Fpq%WX>H-~3j;;fF1tVrgENrj|ZJh^J6>Q-fA)Z&BD&
zS!Q$c&gC!3$N?GZcK^A+*S%0!yAEnO`Kx}|{=Jh;9P%Lp%Xc)h#+;Abz&?d-Px+(0
zHz;g`|8K7a*g;wFY4CUc6bOTZ{VhdUI`FZ#DyACJ03F?_e;Qr9BALkf?I=pQbLDw1
zeb_IwHaK_yyW-pwYZmn*m=X$W=O?$vm^r##B?q_}2!U*CeE)*L>(h=km}K!n@uYH2
zv!gt3!Vor?J|F)@u4uIZjuU^A`%AVzak_#1IRLU`X!j4UxH-lVp@iC!O0&w-5WWR<
zeYSCtKG<zgf9d;SNzI+7eQ0QXU`E_%;{i-d*UJbqn-}1`A`F1QYwB>O9ET^v3P`L9
zh$Ueq>$IM#KNw)m@!sRCT|R2#gcSo0UK_p?nqokB+r{XCN9+gy^pqn767x=*@-4g)
zB*tvyb+2XSCpr!ydmCX^YJH<JEx_i;{U?E6IGn%Rf4#<!*XDk=R%7boa?O55<xaUj
z899*7o&s^<b01bkVgo_@o1Jw9hGG}2mScZ!6wb@uxw?Dwv9<bl*w(3Rzu78>#5bXE
z%<L5h+FRuy@Psy;NifEW_8Q6r{3897iRAXFpXh`T;m4~{3#RrZvFAwxg*EuvJKQFU
z0#Be3fBDpyoYCE$*626%wN!*NF$?q~(x2E+fxw>GSPX>Ks=!tFHq_O7^i^*53-hCp
zT|(n(xi}Op9!J^ScU@M$Kt2xyo-lwj3D(upUPs|6z7<p~#!K@QaJ@w-W_yV58?xOz
zdeHnGSjycF)>VH9)TECf#-8FY6Py4~3Pk^=f7&~CI8FlK-xPAR8*T21+_P&lD7D^q
zY{V%Y8Jz}5I-0HErOtUCbfTDePE$h{^b$G13%05Gq@^GUePsgkG!$-{yjxud*&H7j
zDwkR1Ws^Q4i~)?#IxtJjmQk2DKZx7UQcb%4gl#v1j2y6{Y4_)+MYqtvmW5D$**gL}
ze+4F5!&e_!7+cR(L2wR7#92V`Qt?mrF+S0D{=VVP>#@Im-B{B6&r?E`mEcT*iAIet
z;LU)u-3TxKy3qJqa=edE^Y0r+m)h7EP-*ycx$8R{Aq=M}Sf6}Li!{&l^`Rkt2%;Y`
zNnhjzfcAOYe-60~yikQyb~Q=toz<^;f3kWMg50QG=L#5v&G^oFVm#7LpUG}3S3B!S
z1B(bjikS$1dJ9JNQGEM&A~REyAMY#Fv{v)x>O+U*^E+RmtVh0X?N@5cx}hLV2wk*_
z-B|(gbubhbQGpaQ*_cw~)G|RWtE)6s3Q(L3*^TCU=(s5!M|&u7*@2w~g+gnqf0CP5
zdQ^kGli&PgQv*QSwC(<?*&kNfpaob|Pen}lc2bmiG|(Hew=&F8W|>51d6=0f(D(f;
zUk}=LDllO>Z?_!#JHG!cgIiBSA{hz-v8mC8j<kb<c-r$u<%6q2D8BjW7)u!kNemo4
zMI56Cx4^;`TU<@g`M;}lHW~bVfAbj#oGOq4iFxWgsR+A?LhuiIq?^6jbI-zY?B8om
z92zpEZau|z_|52VkQb*6WF+p}RLAiAOh0IEHik$|a%v#qr-6RN)w?%NgMzs7X4?Dr
z3#}hk&GO-2IS6<a8T?i&Iy~i1PzaBFUm=Zr&4bsGBd14zFb}g=VPvT9e-vLwX@v6D
zz~6b7r>qYW_r5i~Vs$_VI?28|EMuKhx0vWJ&Q{B3z$4b@6y7~r<$}Y+$n7zGeC#a1
zOQ_A<;|j+?p?q@>I?wM2>ah=|1yomSI1l3)JAG_{R|kdY9;8yBL3VH8(iyNhD9qIi
z97=||3AU-B`_TNF6Z#&@e_i&_s%lqw%*uHhErk*Owguxn#D`E6-Ht58JoM|O27{E$
zw2?-yU@GCdR23w=nZUNb(qj+}gX_~_uM4@@(+r@K;amUZOf3YqT|OL0iQ=IsVi|T-
z*ejvu{7LmfYDGbk1Ehe2kAl9ALiC?f(!Nr{!RLmXl)Qv?oMWjSfA%px_Xnz7ANndE
z9usQNx5nvh|762}2SQg|o88nG0)ns9O(-MbyFfo;rC0d{NSpqA*{I)qjHTjfU{k$9
zZ1BC%WC@q}AyRt-S5^9*_(rf8{P`7jEqmNDp30I9p3)BVBVGztO;Fx7N!hX4-0Sqe
z`{2gI_PVLvw6e0Se=#RG*`d<hP|FXH0S|{CFWjL<1y~P7?}FaI$N@>3cK@b3UtZjX
zsiPLu-wkG9*t0sW{NfKzR(8^BI8@tr&gFUE5#3n>^JT|VVcUz9(L+~TD84{pTF=Ps
zF(2B<wrF47NO|7!j>4Qn@5)}dUKMo>GxWq^hn6mGVN&Sse=^*B`F))OTE*F{A(#x6
z0I{i={EGN?DdH_0Z#yxhlOu>1{-QmjubaH_h0a!c=gkA+rrA-Yg-ds5p$>!8A`U?|
zd|*N#KHyG)ShGW6(3jZgAL|U^(gW^a*a3#FwRa`<H_!csLk}5dLj}H@&9vRtoxnY5
zZ<=lWIaDt5fBq*Y9RQ-CZueJBjp%?yAPE7!-~swAR-w@Pa=)k)%8--dP~3sogoQUk
zXvqp~rRU>eh6mo9A~(*1z)%T2IMbp5#D^Q6@)|H5GIddBdC+aZiz0U(F)Q&=;j%`4
zA;vQ}9}w))<`n1iDf-&I!O>0!LM(24{Q49*ph9U=f5WA#(EzP4!~T%B+wM&=tX43t
z4q&-^u&3o)-o}0ig;0$U^l;UDN2wE}G9$xcn*f!RI-?s~$v+Yx_8jQzXr;!FHcDtl
z2zErjT)W!&-TPDFTai(AR%w-Y2%CUWqFO@dax&z4gFg5IqhHResBx)4VG(IaF_U=b
zC_2<Gf8^OS=Rw((4v65;X|HjN`MllFHzT~9PY+KFF9BxdT->3x3xq%hrPkvY7jtf_
zla15B;J8$vAHmJF3IL#ddIJ{=g@b+(J`7T1Et^(Qw(B`;?i*A15hk%PZ(3xk+w0)_
z;0wfr>`wL6F#VPe{H}q7Zv*{^nO*~b&??Vze|S`7{B|fL$Fin<H2(XKB0skTY0E=o
z^plF&X2_$njzMpu&wj16aOt7BI|m^`=mY(Tim_Eo03=KU)>OYJHp!RO&<J^Ps#mO#
zwKZeH|FF%agbo}N5kS?z@6jc;?I+^ze%<!TCL4;DCju#Ef(p8<3vAK!4S(g8{?!<t
zf1eM$zu=zwk=I;A>Fc2(siF`o_}rnMqS9~rE9SDZ9v<QIjrof|*x^X{2<YqR_SBRq
z2>gKU%JaQbQT8`4$berMUo3vc((qyU$5D`?wXt<5cj}m=KTXFFTWa-qcq+`563UZ-
z6f?O&C1ek{QR8zBi}gJ3aU)NqK^`qUe{N_>pgv5|>J?K;K0fN3;LoPz6I`As-^u@s
zx$`d`d3(pgrzwelwk;dKszEmD&2OKWZH4}-erQD|lrL0km*TGXLEeu6y<vL|qZ{%i
z@lw8AfBBAyn-)_=;rx}~XyH&-o2ko0R3vhQimd3sGMJro$QS7h3|x2pQSkE?e?hx!
z`vfv_;1gZDKYw<5HZ@F(9wm1fZ(rN%27m#Mhr<)`n0z%yCNAPv{=r|LT^kW!H=^=8
z4>B{{z2$u=Oqq~PXp-AY{6><Yn8DWySy?&|-lwx<uAWZz_S^YBX^~7#{Qk#VB^X*|
zG3jaHI{Y*s?lU-Ya3<P1et?f0f3P~&?$6JWqfQIcx{2cQn9}cF3%=LF?Z1<5${+~h
zx#wtq=)NXy!Up~3a~k~6AWP^kbB`bKCz2;E`@yft$bmYDP0huu(IpW0*5&0N9oF{^
zHUinegCbT4S80>3P6fna87CD8wLkSF`B|J5oD*2e_AE@DEW8SUzz;Z6e;_f`U+;mT
z63(cwoUjqKO7_>a$yaV(j_+sEtUwnX!pboQiN4Z<qQDc(dmPmGg*B$Kva+#cF?LQk
z601+~b+poUj2i_0&Y$=3QInPP^sRi*xgQtbob*>cF_tLE&T({i+&7ZXJ?P);C`W_h
zS30mTZ%WcW*CTe=`e=`Vf21(ICPV2^$Cg^Dac05qfl!D?a10!G7czS|Q6BaXRiX48
za?uCn=gkS|cBi+DT)jL+$sq=SzzGI$rp52F-l|A=2+($!nYzJ9>--H^Lc+XcKF5zh
z_DhFQ$rc!RCkA<h|6JoG4de>C&34_M9Rh)&8F@%Clb2K$t^jBoe?~yiY2iX4)(SkY
z=NMZ@++FXp-k!O9xCbK?<dnXt%#^g!mMds6;hCF~zQ<QuMGFuZ`YRAAW}^AF+@Fx7
z^;|S@yR%@pf~Hb<I{Aw=M=FoKG?4x9i=^$`sL36AQ`uRMu%#8SiIGcdQO&#UyJ`-E
z19=PRM^Mwr^MJr>f45VfER?MXKon>|C&RW|^DC%4bZ-eAx)f@Nz@VfPw%$P!qr`Q^
zQOER!j)F2_6WK^H6NlRJBto{z61P5=LI29P#C785??DO452m+xh#Rm&%^26M=gM?m
zmEl8KPsz2<-E==e{Nio9e{jBlFFQQNnqV<G7k0)oq62+rf6P4;UE}TBAis1E#UP0C
zhp?Jyb+-K{&4)4%J(!FPOT%0WvLXDrKDj-nveAu|9B>2+42g_9mCP)B3Qo&R8~L@q
zRD1Qtt;1x`oo{(`wl^zNGk77xXxa5!1+teJk51=WyAFWBw}et43|@gCWhAx%Bx|s4
zRIQ)kn0C-(e=U@Ne&&5x|M&p?wYcc+-0;ScMU#r9J9d3Z>8b+g29gX#LupeJ1@3rA
z{8q;1e^0~%gPlV6=Y3B}l}Yi7i-sIxPz}NM;qHy^gJt8=uj!>T(}!plCw}+xgQ4|t
zNHLRE$R!g16vmIh?6t2$<oNO0qOEI6&E=mzecZz6fBu#~3^0zUycZaserHD(c`BCf
z%d~>FGt$~C7ud-N2VW1)l=C&IND&FI1%309|91a6Ri#C!$ez?C$lyqRx}``B_ArC7
z18p$>q;{8aWRam_>Hg$A{rHi|fvEHE`@mnx7dc=~LqJ!)xrQIr<xH|L>&yN^-A!_b
z!J2|Xe~j5g)U`SMgUmB}>AXkAjC>N}r`3^Us8xb6+IpfXp&3Z52$esB=TAoaZT+s~
zGRu*4x>#EOLnmoY{Xh1uJRYj<|1-~cV(Jx<R4O+rl?(<$))A7j6;UBgGZ&NDn#GdD
zJe3wjyEaQtdp&8BB|@~TC`ooxi6WGp@O#~Re}}B0<yn4T_n$KNoby@E=X}oRywB&H
zyCTuI3L3n=ne)8YT%Nb-i;{HhZ}4ZwA~B(hrk^$nNGU^I3R8}?ii;}=%5l#UFP<EJ
zgZ5`Ua!uk~B~>4`Uq_z$NqwgYdRK_HQ6I|JU9KFXrX!3(KT?duI2brO&LTwOQ2g`|
zfBq(U5tr13$2KjuOb)S6UV7vR(XMkflb`PL*98ORyx+jvzm3j$x=ps>$XO^5gA~Dk
zy?8fay~r8HREL`7)VJ>qlbI%F4rc2W&pn3p5GjeGg<Z0KnxOUBn7lV_bcaJMv+VI=
z3k*pTAOO0;w7AN@cAEqc4nc$e+Jn)#e@$#TgSM7?F`HLfiIJcvnXp%6Y;+Z-*mGA$
z(~7sE#m=8td(WOL5R;g_9h&Pf%9g0DQstFZV|ItjUk2Y~_?0(Zpl#EVrmtHJCkEhT
zUU|De*%Mg%#t=7QeyW*UagkrNZtZy@0rIxWk(kgMai2sb9$1vv<nyLu43$6cf5f*J
zjLP=+e;D3;#8T`xm<eH#36;mI&RpHAA_lEX*=DxFif0dqNz9H6z&i;CVL_CL<O(ll
z=}d*>NzKo%m+<Q^>yy6RJBqSg3||yT2!xia@sVd-Zj0a8d)AQo!Yg)K(P926)$veI
z&56V~nER2WfIYmF7s@0B7e9=Oe`sP%-TSDjs4?$0Plu-r0L5QPP?@*kjuD>4t634)
ztb0b9Y_)j5kTA-KAp2AUAOL<mtwRQ~&6DlCjY@7$GS-it-gawgAT;Nj0D61)Mdx$0
z6Yr_i6g_fKKQiw3>4X5nJX9X@s@;MqXwd`KkqHSNcOD;m?XqKMP2hUNe`2OPx7qa%
zWhrE>VPEay`SDeR_Jw;YHFpXUf>fuME(#Fhkwl{T!PzxlDD*yQ?Sf6^_tq!x^4Fi6
zD$FeozslWsO={^{cwo9h!83N6Ps|(27gVg}l+5QoryghBekUdYNQ4F8oj5bcNeH7r
z$yXfrOQTNTO`a`2&VG4Bf5SVs4yh>Oyex|=E8*aOS>*ME+Kix%!$AsRz^LqqgzG*Y
z`)X~LL2>le0DQp?zb}V`c&E^=^kWjM^j;>#OL%*~ykz-t+y0~e`=%qGR-Cd<S9N0x
zCSE&545ydi`7A0IJT@9{5g^1nClby76B|+je-}_U-R0VsCqXHhf1hNibSH<;^Ve*K
zv$_wb+}y0RP2-D(ika5>mr*`SS0~M$ib9LlIT2)|%IsI02M{o*LbHSp?doYtC5fV2
z9Pe5d;_zFKD8hSKvqMsvc4yOn4-HM*u)TJx^|Uz|CRdh2j>VWDi<RR_&J;$?9PeI1
zor*8LFhzOA)|Ss_e?z#O8==gxuiz}18Gyvt@(krE{Mknoc%$6D%q>V&;l(RLtBksp
z1lgzzPSK(OLNGLJraotG3O;mcLEDqJN}gJbj8Dg<bdX%cHNIJAT&xpcd{Q$*Y58p=
z+WL~r-FUml0R+GwmB(zpcx1bn#Oxg@fyNhAF6t_p1v#7ue>{6Z`PKZBGqPjH!C~YL
zg7>?9o4u1J{0{l9TNHMbTUd#h1Yjd6OpDv6nkOoZiXVSCnY7B=-XY2Usz^x8g)_zZ
z=`Q6}RgX%yNWsT6k6$A+Eq>#%Bm&#?Ox5eXi=FSwYqv&Q$2Z}TqZHBnW#|5!A}UdS
zoluzP#fm*7f6a`${`mIGHb3l5EqGvAi8M^h<yOD&m@<m32+g}zXOCZjxL`qC?9YQ%
zq*C7Rvkc$T=PQ-mCT)uLZY(%%sR^flr_2$3oUiur(KACP`f*rF@gaSG4A^K7fABC8
z6S~T@)Hr~^5V?6XVUrfgy=uY@)L0iAzuM~^4JkK@f2_POD-r?-Rp`{TYc9^8$;<00
z!G7^l-W#i~RGlo0KgL4MA_Nec(b4=zZXW4q(YFgD&$rb)k!#E-d~Tm&R8lp^q53mA
zyP$F%Y9=9oa2W;z?w{g~_3;@W=kYl*=IP7Tp#`##$wdd?ot~E-oFa_UpYSR>@#6=z
zveNatf0f?xPA2J+Dw?K+=8c9|XIdyJ{O&0>jWn~HdYCbkruXfK^y7~p?c1aBm@Ca?
zw+ZpeMP5!_v7S;m-^c0w&iSH=H4hcq)Ad`zECQf-<$TKC;4^2-3`>MUZFxrZWpw?-
z6KC%>KtaHGbAoKtqU=LT!YD<lCUVYS?Kj-se{vowRXWacisom2*e{)14fEm2%We%V
z)UFB*_Lwgn=lwP}y-|6m-@YBt0!~^oGw`BBB2i3Y`*L7o$6d=v_RT7B;<nTNACJZs
zV02y<E^&fJ^A3VH{kgA_OTEk5W_<}4n=Ho5m>r69uDeJ9gvb<B9#aIH^g>LcX)>?T
zf4+Twa=OdjQ9OPY;}x5HKj%PB2+YSa-bc%0)kkozc=K{l^%d>Y-q%S^fWl{q%)p?N
zWB&vQ0FEakqkpu*^h!w@TXq&BDulX93{DkFvR_jfD6Y4AdiA#IWUOzM$LLBKX#Cee
z<6{;|7=;d2kVqO|TV9!8n>2YshZMV-e@@l)K8|XIvxQ9*n33G-wCi;C<3|Z8>a}uA
z+wJZRb9oYg#N`0IQ{s(rlY~(RrA0#ur{GI3BwpTe*U<ZM$b`z{OLODN9B6<w>F}6x
zSCz~<Ql8DNMu|UdT5jfWKWBMv1|-_o9UEbk%LMHgo@>gRE+k&wbyp6(y1nk|f6J$b
zRAgQy!&5K|^<=7L2DT||vmFW*Yn`ZJcb#SX@BuW0_Xpse!Y|CUN1?CDym}U0`a!L1
z<`t7esk`57y2{D;Qh9dIIGET)6kn&bV)9cj>SDs0MQPTJH!9oL?P!A!9|kK$V!WIt
z7(z>rWHf$?6Sw(X^~@_ahZZcaf2XMUwQM^S{LX)QPB9#&I`Ymm+$)<9%v`kCxa7jK
zj;psQwlV4t+#zOS1Mp5s6^a{B=xgIvBr%=^>@8kQx;rnZrlTRq^T{LEcN5`{iUms_
zzV6401J5cfos8n2cv~SJr5BUb4j<rCl+Fy)owHX4;yD5}+Usehi?8eCe+t)?XkJJ2
zTmG4bv{_nk3W!4HE6<Yi&5gQ3GZmN*A26`R3A2wqB#nngKC}W`rdhfmfZzkgHC{%R
z$>a%{lJTCE*6*qh+ZUOWDg=SiW18GHhKf$r3<ZgH(sSDfA9JArbSwbxR9ui4B*gmz
zvn#)5X<YIOT)O)XG|z3qe;Dx`_wk$sOOC<cynR)Ct?W~L+7$XSNzsm(liEqw9!uSa
zCd55|1>l{oojy1bnh=|q^%ZlJ&y-4{qs|$6rJmUf9#zFJ2@v9~#c<?4PP^XT#%xs`
zb@UGU9=$2@u<fds&>RD;e9R}(wg~aoihbecvUez-KP`oxb{J2tf8g)Fd-TyY$Rqf`
zyC;nYE>3lNF4eRq+oSXdE@p9n5bsY>_cZC#&p*!~L`I`j=53g9>&A^;*bDj<h0-cs
zoExE@F|Q^IqtH7QGV^jJ+pk~n|2Qdl&U>-Mt97}rACr$r0)$8lR2~!j<Hkx9T2iLG
zs;cEpqVID@V)|^+e=$@2Z$H<sm5R9iT!9ckn1oKHwO(d49WgfFhvJL90T1Kw<^e*y
zR5AB7>8Q7ovj~xPsHx6VL!KrnJUkt9>W`G`qc@d3!<^1rN!=#Idn=N9a^jb2yHvA`
z8ts!ca(f<Hlf<CV@;6~x+?YKWqX5D+6hA*mJmaP&AN0Cye=BR}U-hb9PW#g$&ryda
zLW|(?%BsJdYu}|TEuPafU4dU0aomd$I?ZX0=Y)J{ev!xwRL4Nwy%>sQlaHxs@bAXH
zs5-2{Y)&#gtFa{U2z-orUXgzFAu*Zx%Vx~0d38Kt!CB2`%}UBBw5T0{ARC1$51c^&
z)OeXYWDVK^f478|EW3EY;G^~EO|nU>gRfp394m}Mx6Hdz_8?gCUC~FOy)h{#uQSAB
zOUi3!e1cO~nl1$33mh!JY=Lu#+~4c5ieGqStqw}Bx^|Pj?q%ZpEvIr4wrNQKdkzue
zrl%R&C*jt-jh!O%e1ZUcp;)fYg`B}>R37u-WuB<0f5al=$kQjAtL8YIy(J&&ED_iI
zrahu6eE+>u2SuR8ppq)%{tMarZK-^~hd0V?3`VB4(Q|`0oPl-Rjv!lg%49XX$A;0k
zA(!OwIr44jJIOI9{_6Sp$ME$WSMRC9DD-EQEAi`{<MbX)j}%3TTgX1o%iY&8UkO^o
z+?gGTe~}?Azhe?W*d#JGRu1D;r;<9^Ik?RuV<Y#W?TOdTVNvqX{A!IJ8&l=K{@F>H
zm&dF2CySyQt!~XKSa(uUD$N6qi^WlSOg}>H1c<Rkkyk&a(4<C<C!WUM2UO3sx8Cq5
zVx`4NeU#i}7C@kjq+YsR<We8XbhD6a5*arUe_wh*VX9?(*cB8+YAiaM&$5{@T@u)%
z%QL2pqDOdBj1E;kAA?Gs+>yRAf7UztpBQLWp(t_qnor%Hz*@ftGG-;=b2cBVFR{9^
zq)A#Bg<d>8661g|g^VY~0X;c?Y|;GppI`q~2u?;<MR*o|XiHDR$$Wvl)qJTHNnX#c
ze>`+(S)+1*puJ`5Hp^1#8B8ejYJ6s3I`P>SivWTZ`e>eP*uC)|rp%h*xZE!<t5)vS
zv*?+M`|S=xhM~n%-d!PgtoGQSew=i#raD=@{rutvbO&U+xlrt}&?60+PB&;2tSJpY
zzxh&i(5%elhFzf(+BW&8Ptz5Kx=H>@e}YeI?PxRavBuBFu9#jtPMxu?g8C%gL|PGg
zjg7>FHez;02=QKtq`tXV6@fn$kiKD#3-0qVf5(PIv-9_of_8=w_#&xo7B0@8-<sZV
zYc9Y>rleh`W5i$2{$eErgRWxkX`mZz1`3T)l1M85RI<xOnz>%36ks-=tKM2Rf2QS{
zHPOp|ht&3!KtV`HSgDHh2cvV@#k1cDS2SL)t}I^{;<Iz-ZXsdRdolO4(+;+i#sLy1
z2~9We8>=(0@8-I^G%ER^R<?U}$7(YNvt8G1EzqLltpO*Y<=5XmQTmWkKhAjtPw`z*
zVQ%5d#CR2GDQ~xeARCn`qN*p1f4VzPv`jDLaSN9i+A1lI(%RM9+_XFU==!_472slE
z0gtIV`Bs%&PH@|fkW%^4dYT>WQB_f*WoP$5;aOq;-s$tqLx3=9oY<E3bP~I2?&q5>
zRYoN(ff2j&YxcT2nfRWu5gl&~Xp}6x<lA`ks$s)YCnnELM(@?7Q4YIqf2}@*7Bzte
z1aavWlK{da6yGo+?Q?92qR?}3l=0+Ec~|(xPvQ<Vdd832z7WtT`S3DH*ZXnE#xIiI
z;HNi*W(g;c9793Nxvs4v7zz2(R{PpeM+%TY2WlKQ^lTedwa59>tz|;!WztQ_zZd9k
zzJI(-A(SBD?b{r5-iqr3e?|W)s63|6`2*Tw5{oQLs+HPv<_PmLM4~*j{U5h9rscBM
zU3W4-i`rQMdXwGX=EZ83OmR1mId{Q8`SG?#Ps|jc#bOG)pE4I3n`=>gr3K41+m26{
zXmSFMEBi;c?0y$~X6KVdzexdmwh&19x05e>mp*!CSo3~y37a?Cf5R%`3WY3r-BA(>
z32p`8ovN117Dl02%BmE$--;=^)<DhHl$52#Z57wb#zt2?slPKpPZ%XV?v*b&=i-v^
z$u^B2RScGW*_v`!AtU^j-&)gIr;G$KOdiuk^OF=b{m)f(Ykhmg#50^wvVx~NbM>ma
z){mCQ)Wd>)S0Dhfe<;VvIfk)Jla4&~khU40yig|;6TBM>3Z8oKqyPe7ButA#2hE*{
zLbDXFkTbq4sd&0RhETEuCG(=L^-ZGh%c)LB66PqcL7{O{E8_hhR=X8Xs`^rYT3n)I
zhU&TYg5|BDu6SvTNkESj5JF@n>SCix!k_I<Wn<96N;M_Be@@hTS}3*7(-0CyHIFN=
zsycdu_PQ-AO1ElTpqyl!Yh{R*R#bY%t_gFXxmZ3D<8WYc`hFo^lSnFSzMfjvk>7Zi
zr6%gM|M9G%{aIeFWCwY|bYWDfl&CoCymRf#dW>P~%?ym8qAF)&cGNps>9H*_Fb?N8
zAv3T-Jq%i2e?``zT32}%<JSk&jzTF)#BF@hxZ0)VtiGA&flckX^1`U~qbuEfeN%8H
z?-y-s+s?$+#P%<?CdR~e(y?uGV%wTz!ijB7Y&*H<|90y>-1F3Rs`_+Qcb{+Xwf6ef
zx)Vy@d^nP^OIvF%Fz<l+ryBdS_(yoz7yRVanPkxmKe1oD3^;}*yi<Inf?MMVuB??I
zwP%^SY(tgS2*(oXw61YDj-U}L7Grtz3_|<!)>+HL)fk7(I0JB(%awCyZ{CfS3TCSb
zKfjmfFdDoU_ebQg>HHDbP<Jp*Cgn=T_^-2yp2OMs@geykfju3#3=w%s{$c_5BIh}r
zoo9CH9(fj?)+b{n{b}Ht#y6xZ?Be2=i>`U3T?1aR{U&-4VS(NCNfr_PtG7buVnr1<
z+5Nvy8990pT6};dD8IAvVfO5;I7qL02zfRVNG*7l->+ivtH`}m4=;pM2sE9U^(6w2
z5Bqkr%H4n*TFeub<B*8W7V}l#9SZyl@~$@bGS@iB-f!{5^1jrMEbqV0-Z3;sM<!jt
z7p>vl-LDr_If&<KDXeIjiX$U*b6>S?0wdp2oMj3p*#tC3uaUT;Tt)19ze?UsE96o?
zTcU5@45f-B&tkxOa;DSg2QjtX_Ii10-zsmcNucz6gkBQd!Sax)r|eMs`7?Wei?D54
z&&IOFzQvwK_e|kQ4i`OJn}YhI#5`_+AsDR<JHUg$PeGTH^JR=7_YqUtq^FP32(MR>
z6OEW77BFzV<0-K*UdE*tDO!`WfH|GwG!kLZ6W~-FqEk4s8!3AKwYRkRLNmNT?A6${
zx0YBQIuD;1RUXx#LO7tL`tCE}|B~(iU7|hS@!!y=&P#$mKYnlSYz$d6vSAA`f;AR(
z3x|Vuk9QT;aOzCjVTFAU?jkxqaN84kk!-CJ39MR@D-AGCjcU0*=B#_ys5lpi>KUz#
z*u@{Rlnvni6bL#8f_fOSmZzkTPQJTaX(=&ehqdY=V9i*^aYj!w%*E$Ae?b5EPmDim
z=OFb?I>Y<fcw1_o(B8PNA(eD?ms!CFgH^5juMyQtoE(+ZFwizu1V*0MhbMixzp_G6
z2W;a?Oo<#=k)#(#Q{TxmKMSioXpu?u287kHJQXs1J?3O~aIRHgU;%5StGN7{eyoN^
zh?G*s;GQ(o>4*pL;30R%Ix(~?e)H@29yp{nT4}%SjZ%J8t2T8NeEn9#nk=@P?@Yb!
zTrl^5mHFB1q28H>;h3D5Xmedp+&jna4~T(keH*?VGIF)}VqDIga|isSdUB;|<o7mI
z>S_A5Wy9Uqx+hg3ijtbKJGDoH^yJY=FB|pO@eKD5aC(~d$&I(Vw<FMw7|Vh6f#S{i
zG@1`))c&`)JkQ~pL!OILm?$5=_yRrW-@@iX?m3dV@4Y=MEQV)Gf4~;tNk0^R0p7!_
zdy%rI3{(G2IwNO|F!HBvc@|^nVF+P{;3!3bD9gpP0$H%Ya77K}n`MfQtI2xLuC=^$
ze0JR^T{OHssv|Uf3cp@s@|^`faK!((tZeWn>3S2o@6AVLy@u1P?t1J!hZj0(H^Bgy
zUWRF8#iKpP9{a_f^z{y>WZ!)};6A9}gdiE0YJ)kqJip4-CJnXjTDDhOu}J9#F+Li%
zdVV=(j&+qGsWUS<%gxO2W))xAus2MT+tP5)0s}1Jsk+Fs8A-Eqb*PzM%XK2NS+6yH
zx~|&Iu5nM`R#2IY?~k_vG|;wTNGN1|(f8iJDDQV;hknkPAEu^sdPTYpG{6hl3Xz^B
zJmj}(56B!B#!qdn9uPNW{|!E^jmM46<@%P=XdaIASeSRTfn%@*-aMs{3%|G<TgXv^
z*pgqV_vW`SbKte%z{3BkH*{iE5`O)<B=U_z*#Ln(dnd&a+Tg=6)ioGW3)$@3np<;6
z4~P0eDXGwW!ej3o0uN0XAToZGNvc;a+}BC_F*sjkSwd1x`?Kude<e74>U`^*1(MV_
ztC(gD9n-j1K}*rI8+gHIHr-craq#Npku;ngOCM?2RvsOKUz>uLn-IpVf1|_k4;&d@
zf)T#7r#P=rf5}fMzbm8<A`JRQp>758c<EzNvc>9ee3RLsD{gzX2V8Upwj9^2Uu&rY
z%9HJbO~P(doK|{TU>nPxN%88GwJ>vA_E*Byzqk}%ukKwnJn>?ZL6lnQ=BkIGAC>r7
z_c9&`n61F%P=FWQRQIrdTYZ_Ati~SEPK!A_nfe`bv&Nql>(c4^%Q)FYtjMa_@^5$0
zOAC*p9`4z-Vb$MGAc4_|nY~0}(s6O|w0cOcc$tH&i5u@CPZRi8QJn!rmY9I?5SK=D
zses;)$3NU?2A{)H{}GX9=sIx;Dy@XIcv@0ms8{3vMRzndJWprUGy3C*bGlZNhAtM3
z4jK&;nVQoO)B8RrGSQ)OeMl_`+MSknkt;u)Q!vu4S3TDPqc5!&R;Cr-i1S$6Jgc33
zi~Z&%V;2D!X|4o8H}{OcDgCA24P0zk+@DpEV{@|Um~|WNM&KzZcA3{I>}}2|%)SCB
z+EOV%^jy5amWaO-xN-nP@4a{JlVZKE@UZNa3$^fBW8d=TJy~7MTGwh5GN-T-+t11^
zi>w{*D&97rSft87b+Cq2(d~j1?{8Yduc}5ERO@Jq0oZ|Y2dJG~X5s(-!NV8(4)dr~
zVY|4u)ZjJ@$2Y`mgjwH>%G^H_ov;o#ZZw}Vw9%gb{Gn@YPp@@q17U;WfXsDYWy^}{
z);iYNZTFSzs=`l5ThQ|hkgVf6zjVi2Gz3wqJ_{58Ax!v_T6rkD#`=Z*dK_08{dNw8
zfuTjg{F<^_hC!2g_HXrxjrdAL4?d|phpHFK{{*>~8VC0eN@fz$7M(3o{)lasJNl{Z
zMi)iKYBsqhByWIwmZdUS!G?sWoU!S}^=y?k+Iw|xR^aIT?9tTU^qPfufBhe3=N;k>
zVe<kki*w?n%Y*rkmat3taBC)HtATfOtRBJI{dd!s(@btD0gF+0r#C&8k0MM)Uk{<c
z!u_^#fx{n}l3QpEdUS@R79V*R`S0O-_x(EDE?zWS<(>}JovLbiOhrDL_PMnR6E$6!
zDOi~xZf&Td^{3ubh(Kf=oW4VOlHdEOdJ1s=+>RXYr%2=y)%S1=UX4#G!vQj)!Wypq
zv9G+|Z`%_Bzs-9?Yb^BolyF$0fa@%fCK2%`inmd|mV>2L%i9>6fRS=vN%eGnfJgU{
zct>2X_X<CJ$G!NacKv745rx`XBLst>bCXHgmTbU4v+VEY@3(ur`vvs_^tb>1w9W&i
zW9jlk?m1|bkd<Z6mVY?x>212RC36K%O7m_PXxeUTFda?{6}#hgmT!D}szv4Ze5T{;
zC`K!jhw&tt#hIpse9o*5F6S%D@)>GOcbFtd$Nu)at`m9`fa;)CGzHDzXytn_->J3s
zj}n>6-xeK%&uyPDLTk{wDIRR(ylO!1mXhi8xi-hP3x{ydlwltY1NX|Z@H+K|<eS^<
zOAgawNkMda(7z5y<#!VI&8s_&&6+XQQ4&K=pe)(28!Kj=H;Mz}BQF@%4Qa8yJMy@E
z%+5I$C%ISsldY2S<U!P;P%TGEb1;+UJy)J`_++A8OBqqHr|Ac7Bfv1L-~p`G7k;!g
zb12Tue{UT2_kd3XtyhyAh!UTSHk)T)Pp|)DDvXb#gbO5{1O^PwqNizisV@s#6w56$
zn2;5nMC%T=usMajYdi-EgR?zoubZzz#@!?z>oD@{HC7EJnX+;``nlb;IGTEkiXT3*
z6Ut;Af+hh5-(NXAz*Z_K|5uS)hu&Kn(JW1urcl^e*=qI%2Q=*9qA1ih#^U?QRp3E(
z*E}amT*TLd5Sx3rkN;F5vhAKysAwa;8e-&7*L4D-hhaAEwK4&d>bA%qon9;!P4dp?
zo291NEG-0md!$7Q+q#1_eO|?UH%sYV_Uwk0&kUxJ47WJ?Hg}_d=Z-Iw9Xeh7UY!==
z?KqsS11%+VzMQsXLaaA)jWt<}SY4`bs>@_sMXgxmgKrJ;I1z`1oS(MExI*7@*-IeN
zXJ~fjD&dkazt``Y241oAl}=9Bi)J|V&8GD&UQXFrCB+qy?(J`>(!G5@HK-}m4bVC@
zm>t*WVr6-JU8kP`>K4DG2bnDGwngtOJSTZ<m3zM!?c=m82(TyCA2;tN4NOmJW!3ZM
znmB&tQrxRu<SWOIyqTe)50ddni6>^0%%GH%>84D1;ac@k*`f+^UIa}Ms$oPfYMnf?
zhyYH-o4(`F=yQ=?AyLgh91b2pZ7ow|n}am2jQpWXr-mB{JtSa@CDes^X0O?Z2**sk
z!s#`Du=P!Id^PKCOB$tG!D5M)xZ~089TZXA1tVut?pC&`jb68Se&yIQy}ue@a&>r5
z!o>97hW#?(XXa4W((NON;x8)}<g&W4kC!9SQyK1`;ODgQRv2SWkH4!kNY|#YMOoiQ
zapeTqvWfr{g{dkEmT&6KOi#eoUKiRMC!8H~yMN@%$-qNYx~z`>Z08jZO<$;SEg$Gj
zY+gcEqaDv;5aqd+-^RGN8q}R5qyi85Gq2&Q7-e|nyZZ@4>N(xH9@99=emnQ@dY-xT
zxauZqSeoHODJ$ck!p;)k*5|6W>)2i<z+1Rij{;aqnTVlE)rFU~3)0mguBMl@O8w>R
zc3Xs#HSJDme48xw)Vw)kGTmkh_E2Xly8Jm2itr>70+#?xSEjCSiEtYRE3XEr4%kNs
z8Faz5#InIo#e#tlnF|9RQ8^^ha&x!-)iuR$wifqswtsndB_@ie$WJysjB|wfH9=Pz
z$-oM6fXCc-CUS(;A)-TUd(cdR?|Bg1WpPR#l3l%2z(>XP`~KvE%k|W>7>Gd~igwJJ
z)vMyVG8rNgJ2cEwDGis7d-?l^J$F7!+DFh&f7B41#!qGlG%?tUl2HuyRv^DiwVb4?
zD~P^8ywX*|4(#A#K+QKypkE>MEj5x00N~Eavq#KfO7#rc0|kEN9q;>cO$LRUyDNQQ
zCb}%RM;GF&b;uY>zV{XrY<y@ZS_#=uZ^<A`<yR(-GAFau^VbQzA^W~&T9R3(8yq3}
zCuOzTIWvuCAe^O;MIVf@gq1pS{T;R;VR?dDYGpszMqn?HaqNxHuG@`Mx^&s?1}Y`x
z;Tl)u2}z*ExQ1FsHK~?*(&cM#GqH?$;dz&pE!C2|IVb*<9N7MyPY(~KT>4EcixYWx
zrPk{TJErOP4|nK$DRIX|^^NsE6Y87=3E#WoR}~aQ9jE=>s=N_G(9~8Uom4eIosWg1
ztv>UMT-sdqE_p=h3nK=MK_vC%H*hAdxLy+y5)BfVmJAf1bMs}zH(2(jhdh;G#0{U?
zERZDe3H9m_$f{7K_(mz&w5#B2T+?A@D&>a!bgDC~^@nA#Q9EVsc@Z@09X~v~i%Bdd
zp*Jz5Rk*?|vzRpJs+g9l6_Gq(n}!?wR+IB$qBak*eIC9QNv)@2awPc&4%mn|(0mP_
z#8^!=hckt5Cd?!LH2{BxXo<XVyi)w_=@OHjzxPu*A+{`QHPCdZ3UXIQS?;eOlkMz>
z^~&d`*iF81Ba6FdEn^NK?E9mM**W6VNX|^&ZFD@2ilYVc;nLOfmqlafPp92DAr51b
z|CXQ2!n+jkijxHC?kOqY`vK0z|I*m5dEFi;jSsXf1(N>Gvr}Ru7e`o*Qa<5MGAPnI
zu%hNpOFD;6nPlR_+WSOIt5s~jm4oxbIFan<;kc7GqAxvp-A`u2SD>t`nz!n;6p|_h
zbO^;b!(~p(2sS-6$5}Hw;}4(9gCJX!kR8v4+eBb&_iarnxt{v3Ux3Z*#7=yxh4syv
zL%Sb1>6%ccwU_%~%5-+Z5JNXB)8$%|!1M9H8(}zw_7a8YbR6LxNYZAptDKU~256W6
zxM>(uJ-5-v60!ouO>1+Qy6|xv(j?}hZe*)2ik`9u^Fyf2BA`HA9F+zqwE}b^x5U^T
zNJ3-n<eTBek^(C501`Iv+1v9cb<!n{Ecxv_=VOumYE5vuX*(OThErV=`d7c$0UPR%
z<)FI23cZGJrVbfjm09l{x?RkzEJT)W@QP-M1Q*RgJ><;g@1QZZU$DW}ym6?lp-94?
z%c02M;fFk<@-sBtr4mY7oHLbfA<|i<W091)@OU(54bobK0Hs&J<<C-v;lU#cRri8z
z6-v(Ugy~0gB!M6ckggcI{=28lZ|z~J(YHNNWu%~Y&IudAaiNM>k=2Ej;qM(mD)B7H
z1Y!`4B*X1^frs#t?X&V#xkT-kJ3r*uR~d+gVO;MJko~tXF)N^hJA$Jqo#&m#`~}tx
z--FJ;c9FRNG~=qyJ6kIe!ah?9NuloNX?nX6=O9kr;a2HuagujOjPX|;ARiG4r89cm
z7#s_7Go2_KOHbrV{cG+g8MTj}SmA_!?2nJ_`8V=2BPth$BSOls-RNS1{&qq*EFXa7
z-E@Q{o=jKg8wso)%=M^u3-TQLCcLmZYL0d#k?0-|q^Hvl6(25cwm!#f7!d||bb9UY
zP>t#z%7x_L)AOeatvz{^JS3pDG0^elbFc{Sj(5DRl*XP-A;RNBXJ_NBzVsgo5<An#
z8x+EGvxB8#6XslhPFg*}oa@v7`-PJ}bpCu{@L>FgwI2+-!{p?lPBMRQvLVF=-w(4R
zsUhhHB=x{4xahgX5$C`vfN^9v?CDoKKiIc+`rHib4&?tmD3t0dlO5q=Qlo-GTbS{J
z_d;Z8+v*d&-S%j7Uxk-_mIyijXl*gPB=*yNaJ@(&V`tB8n~of6S4b9lUg*fQbYB(T
z-+2v3uS+`*9MJt)iY4S@5Osg%Ozq-XH!Yt5;2dph7ef%P(2ML(_Vm5;+rupNvNflK
zRo`}~tGTOL1e|;A&UE%XGOpN-A<pmp+Tt15R>^0R-aGbIjq9t7^j42Pf2(ghSr7GG
zqd@d8?h|rJ&ir%@Yo8M`D_tbb$Jb{25TPYvsTNmo%afa1+tW4rkU~uf6S#4SjO3FA
z&hqkg_%glxD`n|ycl?tw1F=;{nup1yF%<tB@A$2h+_PNT#y{ajZ8kOUIf7J$M0c*&
z$3IDIz6*)S3<E6)eyQpx?Q@e6-rR9g2NIuf{ca+96iZD~`Prm@_}02r!KZU<THYiG
z(ZNx}V2YV#LsQ-U+x~@#;o5E=F}!UC5V+QgYTz?{;A&HlCAS)Idn{15C`dY|MzY0m
zMSr7DpRVcn@i;+w?owALKnLyMC?Yz&F0oC-TSob^m+dK|`X=DY`IUuClDD+QY%u8W
z(qt><*a4a>TUSkbOhSfurm{XaQ5EG{rMbyC%+D84`sHBkgxw<7ZjAa_y{(4>zv^4V
z(}yEv!7!G0FQVRU%=g$dPCA|(*wLS~qT&vx-Aog9UzkHg#`~D;fr+~@hK@Hv-08tV
zSp<w-?V}KnbgWWcZl3t`%=u;VhEmHzoT)M<S<}DHt8Zq~3#wL!LNH8NeG75?TE|4&
zDZIuos*_1%(Xp!?#EN#t;9A<ipE~SqY=x3+rHOpkNkW1mQ!mjocHPEL+PJwM3Sl{B
z7jX8L7{ZG@i&M@6sEti%TK~VV6ZCdEiA;-y4vGgm<S*Q1L;@$<3)ebQ0-e?#HWvse
zdyD^+z5X7$yjez*>#VWllXz>+)(*c=6uIkj!9|%X$`8-}fb~s!7?mFd-kNG;2|5-*
z>0@A971lS^T&&CPHfzCj<nel^lAP-}E+eXLy9chnzD8up@zqSb2{Cc;YuBTEFOE1C
z(9KERLk3=MRO?p$y^T<;5j4pv&984C+K2mAaZd01zv=N(r*GugM9D5a?xRVYL-1De
zmT?-j9^D2N2W|6jjY!x6*8G6}oE9{KFV&O*>$B&c%=x~4@bkUySu&rGMBxfTkFBr8
zPEr-F_I34nT-<ELX}O<W``S+M)vtYdvqI)hYW$H(Ocvc))tCFt5=+9d45py2B1*Qx
zt?qe?Yvh}v*^La5&3Y3B((DPPrwu-&{FIox*MgsfU1w_ZOOd7k_0GDm7vj*y{4W+P
zG6vMY$9?y8zH}{V$t`DAgP}F!`LNP@e?hdM`*q<(Lqj_AVn*%`<!~#Ou2J2sXty~X
zpN6-)X3TKypinF9m0|r85Ulyhq(g#GTv({`BlBuFB16VQAK$^Qfb6@toqMoD;OYBo
zL~o|0>iH2;&5kCZc2_pbDMN)j)()ZzozuA!liDO#w34ErG8Z;mb>YCF)b0x_DTz~o
zm>?60)OzR|WvV3zRxO+<t<~q30m?qIl4$`g!U5j7x}(H`PL@LWuh_H??vbY0_r6<V
zay2D-j+K?5)%fXEcj45HB_ssJ0;xDqMSFnHPwbL-(g)-sy`LIh=Z0U!P1v!hk9#P_
zCroam^q7#g6UL>Hmq|MiQSvlFb%bzSu8BYX#7K&_*~w*<H)|yNX_=ixDcl03#-L^r
zqyd8_?2bj1WbB}M=2V;LmiaF(8wC=dv%};Lp)TE)3mM;KfOTo}<;g;}z=HQ`?_)nU
z{s+UF7SM6d;JV(_cE>KK^3)uRn750LVj-&7zBK<kUgICng@M9j4-+~@v}U?M-x!KV
ztt_j8<AHNe|Fn-R288TY!EFWy(8oram?EvM+WOS9@AvVtDES*<43<X|?;~*7s1Q!T
zx8!uV4Eb;#<7q?4$B9p@dL03sOyXP7^Q`wsJmAn&WBS?AIqYwfyAq@G-+b#cQYxL+
za>@llob_`z-E(T(j{SZxsCRigdP=xcF4>pF7QW^MMKraoa&PhSUB0+xuL@W=Rma49
zDqIZ*m1!vHWa}I5c3m#w5HX{N?2b6tCtI5+rZsu<@bNoM3*^mP(QLvD#toIC2|4{J
z1a!o_P4BW?MN!@K_~gL2wMj73yBl7Wm<E@ur6tSuv61!UhAjHCG5#>D=L1&qfVxBT
zH&Nwfh}02vJ^PrAO8g2~CVnwZp0F4-%Z+>gY=*-UCu?%D;Jxhaa3Vz_smo&NT9<bJ
z#GW0_7m7ry-tOC41{u@4*$RZm>+hMhz{B{!r^)SBfp}No$G(Jt>qo>imXwb!SE*S8
z_wd1#*v8rtSU2Y5Y>Xt_KB4D?o_MmoUq?2pyzfmW&HPAVZPcpyGWE02_@(yjd%1bj
zT$0(1uUBAg3#e6zoM6I0A2uv#J&0|g9qNhRu1v_PaY?OmAHjnYJ+Sht*svA^E=Dyj
zrPeh+8&4<LEP^=R4N(~jc83ndpH4eS{`haPu!znte1zGB|2fA=*Y6s$*JARi)Kt;e
z$0GjHd_t0PB*m3n5WKioZAuLyG?aGvzTp*mN}SHFDLyff)y0Fm-G8ME(S9rCqfPDO
zH&Y#V`}k9l-Hq8bPlrkhGpE=PFq2I9Gkm4jO?+~%k$B`#1K>C9vo9UF1bZFd9-w2c
z#C=o0r!=>E8075Ab{Q4Pb@~bgF>>>gFAHd*lnn5VD|4vv?v%0L!J)BTc%7>Zbf<9i
zsK)q>&nr>v-e_AkY3IK76Q!an3{3`*QiEQWmGWbNY{z;vqC}_6K)Gl@F-Iz>=?^^y
z)4n3DpZC!c8yDSz&B;ir^{o6Q8pQ=Dz1X`~!3{fs802($boQND_R^F37@bhiiYx2F
z74;;MtsHYntA`Mi@FH1voZ*fopChKFiz-prZ~7z!qouLt>Bug|el>Tt{=`eA)o*8^
zs|gCG1uTlj!GDz|LZ1qd{1Y6v4MoZTEg9i0IM|+2X1LzxP9kS0#mU*A+;<-=UY=KK
zD5<}j{C;n>sg>&?pH?6GbL~`Mpv5j7-iiCZOLmEbH*yjr7iRXcqDiNd|B+|RfrFr6
zD186(Z|}b&&25xhk6$TaEq`47A4Pn~MO&@+@PGj~+<5i>>Ft1^idM-u5KtmbW-#Mf
zg(ZZVrE0lYPT?_VH{@<j)iG2#Gv5_mZ26h5B<=B|?p~HEi&X#Pwc2QCS0#<q<8HeC
zxoU4Z4WIq4jj^M?*4$cXHyQUdt-0J&LGL4%8hwfj-bXM>YsB;B2`0a=^M~G=my&9m
zt>RFHy|F%gcMRa=)zRW6JM)d#n*=0_bMyOq%=1vHih1!~wbodq8(nko592x8A%^cC
zVNXBDu1Q(CL9CNfRk|-@JA9-xwk)!NaYj{z`n9s`zQH2;27+ozmrIOXg{^0ngY>;C
z_E(zLQTt*bcGDlzN_GL{Z&#Pyf@la+$+vz`ZJR4G`*uL@0$*W`sfX`b=3?(dxJ~kp
zoUatouxan*?&;N1^$hw(2iZZ>!8WCnxsDQ397JZw9})?%?5n{%IQm4U*j}%{l-4hT
zPaFKzj(-wYM3L)V3I?X(;K<<y5Q8!yiQ8!KyS^`WECVwBs%G^<7ZTitkFx`&t%zNh
zm4*rlv6TQnCT08J5ek`;`rFEiyz%l!njmlG!JH}$^CwlqeMv^lbINPI@OPfiX0!EX
zu2Q;~e4Ht_n69#FOF2daA>cpm@QK|m6}PT=H^l2dVBPa_q|c7uuo877hx2nV4Y&($
zpPLxon^$JcB7Yubs}+@r4~YD4YeJR_-J@KBPCFoEY0ABCdn0jWa-@`>?QV1HclBLy
zD)QjJbx}jIPJ{A39jK48m~yR*V%(;CTd~YP49FY9|6VuCI3OA(#w~FOe7!H7`ZjB<
zA<>6CS>&2(g{FSix)TSp-FVnLR(>VC`?yZ-Gi9it++-7<E#yM-l_AoO`ir+=ZhXTC
z;xh)AlFc~j^mS8z+pn8=1=qRoa&vl_L@Nw;N6yzDVRj2y<z-C!-O4fFOO4#7cNsWm
zWaHed)A8!@?oM%0oAWNOy<fURDUJe#|LI<@spN>(@b^kyRWxOh$q~?;=2=(==P}o>
zgqsje#h$uJvORDGX7cFuYNscEtYPPFnCSxD&-l#Y_rLUVp7C{BoQs+#96)-pY*O>_
z<E^-BL5|@9Ic|k+%1$copjj1Qt<QWvH>-0JpGswo7+c+6<vxeWYc&)$cX*N&-F5Df
z8cN4@A?zX$qQ~8xL<H<F2={Z$9Zj7)_ynM_pb$?2e#Y58b=#pT$9~G%J{K$l6hMQ|
zA9OLw5GlA=Gy-x?F{_XnxWfO>7x#wL3zvImvOVptA4?^(2rkPLQYH42SX*o^3o$zv
zihW~{T2s(6?DF4Wc~Ts78+Vfn*X0{Rk<x#}rqUuRRd)XKXlKbx`k>VhG?@xF?*aax
zOR)`+u;P=>bH4UQ;`N0)pgEAPX^~t}hlm)00`lhHx_|OvvzFfM#%AyPxS%EMMf}G8
z-dbt$+N**^KB6OSo_|?2M=>V&Ues-u((8b92=>#zT3&m8iwKM>9AcQWm$RPr@@-h(
zQ+3fF)n2%VAo|<LA8s_7CqL6zuYMrLv9sMw-vLDe(-Pumn|*}k!>)qsKD(IF*}BFQ
z|C{@e3~sFJY`n*8)&7+jGEYlie5%bE9j8*d*2Yb!9-(ObrkNDny<4*E%GW_`At3F4
zTT0NB=UO>)VfW`#<HA9x*EB-Nh@C#NH$zrKLt3ch=^O*tmA!}Z>v`x+t_0kzE-~`+
z4mo~QhwEyhLzs&XY2@fb_(c{oEReFgh`Hl3JSJFUe53`E%mb>}4u|__WRsS*`8aXr
z5ofS5V-<>``v|A94g@|}WKb4k4Iwnf2A;n!-k!bJy;(=qVdjRY_8^Btekh{<#*TOr
z-=yCOgyXd@9=-B;HoG9<TLjWp2c;c6D4<IDtI@O69}Z5-&I?F%DQplYCeC+(v^*KO
zjp?hOsEQ#XbRzw@ytR*?g0QI|pB#rZdgVfC=>{Li2X)1zgET9p#6IpCrtbnXFP{}M
z9<{C?6@+I8(oiJmo)SCgf&bURCraSDo}4(vyPi<i3-A>6UL!|<{Bd^B?DZHT65q;N
zC4`8(cp{Q@U<mSbdu8O(gjb5He40BU9Cv`nD|TDta+S)z-Zls!dTM<3+inTLLeO$N
zD!=R98iG%p^Leg%@9Ir?f5;6zhAd49FY|KP6Qc}@fn%o_jUfAf4*+E#0prW%-NoaP
zH=-~E^!ck$^Is88^^17<o4A=1ZLI`G_`t1-J56Oh9U-kNPwHjgUU!8=8ezl(`CPf!
z_CtAPW#t|h=MJEuq2cpURazOfjHNn1Gq*4|voQ192BBh4-AVUUEa3Dhk#K9!9OOhx
zzDQcSsMr2AT6`@}8UsKW9ic!#U_zjs1%a?=VV_9AZx~uv6d9Uev;Ncp2m#SF)PNL=
z`i%(JaTtp5-vvz#0lcte=qLTUXazH}j0vMKV*$9K`zUB*W(b?eMuGp)hf0{4Vu4A+
z7Mp7xYFbPMFa^UvAZZ2cqd-u>Y^LrFn-3sEa3-L9ASQt$5Cc0R@9nDPWFlsPVByE$
zbKnTM3gp3H>*15&KkFYrzvGdh2$8ran0;5IT!H3*q?GWdC}E6@_}Urv1WbmewnXfl
z{Gys_u6#)b9qlgKZQ4SWjz}-zK$bkvmOqRwc#2&0m@K*m(otI<ZQd^7%m^%CtY{_z
zv|dVsvzEAs0658##=&5TiZBs2_<3X^B?%&Ygl2<LCV^)iSZM`ED`esGHKZ~4`h2jC
zrhyVDqY&ROCHM-$F02W?CfqF@E6il<cD$Jr5m>b$=#@R3@Q5g|3tWEMh~g}S8q)b-
z(5dg~(!(WRe1o3z^?2n2BMBCzWfu2@w$i5$|NSc{0GM5l0!tRPfFy$H-<t!6AvOyB
zk0N>$9Gov0sc{!31E~=`SDek+tz?EShnWdP8y29DU4b~i12%|TTbOi7h}B$4GU`BE
z#pP`<5ff)OFfZhnT2d=A<WnfHGHWUHcbSqI+RZasIO|>Yw~A6@Dba{JN^gvsOv5v_
z@0Voq04(cqWl^_DXdG|u??SYSi5NyZ5ghnmE)n(xy<yhz>}e8Lc~>o+Jv=A1E)?tG
ziocWa7-zx;3f5G)175!`I^bHc<EhIRJ*hH}LhmA2*G~`?#PNp@4keXiB}@&>MQmxW
zFxOMT<f0@QEf>_4@-B34S{rAQAx@Y$^6v1Q0+_N?36mrRp$?<6kh~J?iQ+>+dCHP7
zm}cm_NH}TxQxK76t-Tfw=6XRy6xp&=<gYX8gR`A2-ErrEC2DwRex?*-#8fOhot;69
zfv23!TrJl<>l}skA{ZkW+-Rb_IWWlV7%0I~6wYXn=x~EZZfl6K$9CcM<&ah$vasGR
zfVPC`%H|1JRDxm#k*DX$MAfdk#sT<08W_Y12G7uBSQ#XOWa!3KEEogBJdj}@s;@>q
zbm%2a<NZPEV&|8&bYUP;ZGmz5&lMmD2Pq6TeQYV+gIaa9pqqjU?$>sU1b4)>BBi$;
zhiK=`@?~IHGQB#Q#dgZ2tTEeh!g3o8&`7IX9Hdf&G!x0G3|r6HSYOZW&ZcW&ZT`>X
zXR{btH%;PrXjnVJk6vk~b?QTIW)!JIcV@(z^p1?$dJY2%bF*EO#sV$D(Zz97*7}kG
z@5=)+?=IK@)+?d|15^DSeDBv##kzu}GJ$gpeH|oEdt!E-maR#v%1T}T=z5DQ0Kpn<
zQ}J#Y-<jvb?p@S-i1nB(RurZ}d=U|)O!kba?6D30X&0*uUZcMs#dy?JL*s3RSYijX
zD@0TvbIOqjY>q{+EaeC0c)&coBKG_s>4R^y*2h>_A$QJf(3xfVyL>m4DHEZY7sj$`
zc@W;dLu-;-EkraPy<JPbh#o6D@Ez$}@VFyk<H|?!Wxl&spdxVN;;pAg5?t7&a=ZmM
zy}7UGHu{^+wp@V_XK)=hvysk~NAy}yBD`!?Pv_Q?BkH}adA%)+TOD%Hte)4NF`<X#
z(cAEg{Xt68aOQoB3(E&d+)Kgg+hva!*<(~lpVSJs%zCRlQ$cx$p0)xMFp4FENR|sJ
zy);@`;6cP}<q!}+c&zK1;YjYbCU%2{t81LuHH&W`ob4S<#XR)2?5$j<8fhb1$s}{J
zd&fsgkSOlV^KcoXz0$KSj_esA#0Qo*c7BHd#uqF=+@G^GZL?zW`V;eKo8I+GvBXh<
zHpJ}1PA#;KYXW3r16EiRz#lvrSncYl_R2SNZE%J-q<c;9v8oCj^hpt{-DUs;&3In^
zYaHJ{pNfyScb@aJ=xcdC%PLE`gT6k9r&)#z(B2(JkGE050kB}`8N9q1B_bFk@`oaR
z2*giX#^*DUfj)E$^{-{Ip!VLCytSQ#0$pL5B7)0h@gUF1Lh&GAZBPQrNf-tWrQ;GT
zV5cAKkOy3pYeR${9|>*Y`DZ}EH$}*@8bMkTxVG;^oFXo?js=f>c*yE+nN|gls7!Z#
zkTIhFosmMBE_{-(N`24-u?a894vO1yy%wRb1%r{VeV8N<{;_=%1r}h*t3NSC)(f-6
zg^~7PjO$Uu3Lg!Caywx#^iKy7yEpJs&OTYqCQ@W_*FHql_sIM3SXgTmToj^=$1fHE
zv?rJAejyloRQYQriFy{Y^2g!;GJhykEY9ovVaOYTo}K=w&FD{9`L;a+4tRSgq<075
z;C+BI;lJHEe<&~_&M(xmEt)SSH>j^Sy*xt*Hu7>(lkbo~zyDdgElR*y*e1CVQMS}C
z)m<^|eiBgWrJ~T7fl!C?rwgbp&^$&$5pkxO+Z4I|;_l@MI^F$jDbLe2^i(u;RIbYx
z5S|3Ivhs(Y%wGI>N}qyx{kJps${u<G@?Mo7?;SmJvZP3T>ro5B=Z8>HXVgd$3c|l|
zA-%JN(WimIk62|D;r1b;pSFH;ZwtM!^rsG??{;Pd`2rGVPC^3pGA^StyVngxpBfzc
z)iMfI4q>1Rp?#Jm6kP?Rw0s&%cpYob>dk6TI*5*2Yfo<Ry+#(?#(PD5!3JzSC4Its
zlK7*2clcD2ymRa$nN-s#d5}DUfxLhHo~MX(Ee((fZovJbvDy(vKB?IE7WH1+7Q63E
z)qF+(|C~=48olEY0^LPcsyq2RP!1aB>%Xsx_#FU5L^Jf4+t*_SLAe)tZw81U5Q4wc
z5{d*sC*g6fEpv+Cq$`%qY<mACWW9uH8w8JRPE_m7CHTyT{ala==tJMR0*Idp2R=T-
z0mr_tX>BFp=K&+f={}ru`~gdVL}+~)-gX0k&nE`|3}bXN9RDKNP`daczAWPodV?o;
zR@(Qs?ooR5zcZ@S6+ZITkY<1R#LXYL=_Bp^bZ~rEYP$LWtSc#>x3@t823LfEFR9uu
zLU5Qbe<NkcyJ*Lr&$ts5@RhTx4CYT@+wDIsWa0m;l<tJRoVNQPK5KBFkReY8zK*Ug
z&d&2lgYLhWw7mVMbqptg=RK~LE5*szx*y$-gW-OQy<Womz+3rMLd|YI|LHm|$E(n9
z%Ilp`(QV+5=yq?JI~PpHa~+Go^C0fmt`zg<ne9$rEXrQ9&p_~LyTe}aCP@G6+C_hz
z55pjpm;Z?b{`IyC)h~J@94qt!e9sw%`+V{c=)(&E)$+bXaGBy6I?jJN*9q+4(qKY?
z_FqTfy<h5w`L7=4pC1#w=Y@~N%g=s1d=YPKj*k7O!N$Sc@W^|;$jI)4NC_Cj5DCas
zgldttt#(>tFVEzr5vSIbx_-d%V<?)_+MpO3S2!5iXV=XjARn~j5eR&7K0XO&RPYEq
zUzLG6He9fCSl1W5TgY%@%)t+Wp*nd~B4*<O8rHB-u+MI)jw=W-faK-N)q6)oXQ78>
z@4fC9to36uaXGJyv(a`mxKoyJ4pBL8&?oqp-+dj=<CDU19m{o@AmB{){B<*r_(jQ{
zIj&452id@RJ6&{R_pYR&U{JFRdX5BH1pj-Ix3pl<xQ%#%@oUUQ?H!O(a2Svyl>HP5
za*#2bk&GxXO*x7;AoNLrtqsGDZ;PP+CrO5;GmtT0(wrTi5s!{SwE`@*J#GLZLm~-w
z7Ws8Db)X2H_uLEU*JTbxm_$dSCk)GvncVgH5Wyjg9-yTqYX-wi5dWpTiigKcH6T3j
zoe2M>JDed{&fHUUo&kmfmlZryJxmEzbc4?RQa#_k03&kT+(iTjNBJygF##Xm1RVCI
zzl97DJgnYOkIFrNjW77XzV0Ld8w&*vDr3?}3==Jp4;BY7<0W)GPz9$Cy&M>3EMVVo
z1sjnhi$+>$0If<!ibt#gsYuL-+ETxgH$-tj`;aGK7(3KaBv&)Wcap&MP(YpHrf-7n
zi2WY#wEK}`hAlC6s#`5%7-8B_K}B^5`-VE`G@VSymb(86UGT<*keKB&L!0aVqpme)
z7!=85hX<?;GnuRm@vRLzvW1mJsaPqTX!9gcBI;KSdJbK=!)0g!!G=Rbwf=!!N+_X`
zxd(ZL1t4QnHHrox&y6Ldi4Y`;h3-L&DE=_&P30dD7E8yQYAP%u3Y#*5J`$Pi2qX&l
zJrH-U=r=t-@imAJh4kyi_sb8pC*R=>aC6J4lmZ;S>PonhzCPLn42WxkRls6K^R7Kx
zCHwukrSPw@suNwk18z7e{z;_=C@;vt7)0vROT#7@J_pAOY!GA*74<W#!zNr^+M#7B
z)5byL{N~4?Vn)o$(I!irEND6c|3TJ&SdZt*Q#rjHOVuAf0KFl?2N(RAzyO8!<KDgo
zTp!?mAEPy!4ws^w8{-S02!@|qwWaS5Duprkm?2aip%X)*=z_3CY2N4u8=Vt_J<eA_
z0&8!;(=SCKb66j<E3-df!-FocnTBC4L*MMrL%^lQ@t-%C4k|HIQed(S&ZP#!gc*Z0
z1IH>ade<T;r1%y@ksC`fS8dK(PKK`ATMumF|6sPgTvKdvENnjoV|`vzNZZmE=j>bz
zT*lgj4%BouaO0!%;2~oF%j(V)I%SORSD=BCIR0x!l-SMIQdeH-=i~_%3I%Dmg>=;Y
zX(n@r5BB9BeUGLvL}MKT<H-Ws-<T@#o6g^&XGsS)FHFmQpE9g>`836iNfC-@k-Pzx
zt(JPv>erd?`)HeCpl#B#HMoYXVz)gAp$rVDqBSx*T<W0|C9vw|9%<nfLzlitmA#j?
z_ZmbS5y<IsEzlqYICwezx?8D?4@Sos@$tlr;*~e$XZroV#RzQ-F+!ap7s~6mXpb-!
znQ0fLp`Zo0z9EnOV#}-zViKM!I~L%fC#v$;kK)!(56MdxsP%s8;4=p63Qrq<a+0&5
zO_m)i$(=L0DS2}5BN)o|V8Oluf{N_W9O2Njux8-8n-u|!A{|ZUFa8_VBBO;|4;)mV
zQTc9*Z>=LzDSJ~!E-P`BQ$53hJfV>#_xxnI@H2F@%;876CLT`^HMr&K-+{uSt}*xE
z=GWaOdA(da@x$ntLVqS~{NWE*%f7o(I(?K1D(wNks=<W0+=aq9;W<d<Ix#`I?FqPt
z#EU8aAq;*0_|WGww$ok|V~K#z_v8Y0#tkiUQNHvgQV+rIR1wa8l)|^vJCe1f@XDzy
zt^iJPO{~Ts9K4clwnht{HXu>@GpsuRIrtCy`>NV?AeYpI=F~=M_~q;AMA)C}UkRf9
zY2yEsWdb^oK?XbUqGXL2;n*DYkm9YA(5GipRA6dftuSxyt^QBn{MG;XwG0(DCU%Ij
zvY^QFw&DcALmv~}3KtaB)qI$|oiYeSP8_mYZ59!Pu*p-nL}Zb<r2$vc=n<~<d}w_A
zpkxI)b;n5~`XF6*^Li*dH`Km_r#@}dnelo;1wE8tXi2Q#Vfg=OBTQUG_~3^c=?J~o
zQcLNRriC0i*EDh=J=x3k37mCyW|oY&4bRpn-R#g|UfVkqk?$!B-xH|L_M;5w)RpmN
zVc*%nq4QqW_uL-C`T>ro#JX&b&<}H#%bo4x+Vk44E;c-S<w!+rIR9_n4XLZAx50Es
z#WT72yP0sCsj(&Z#Lhi@Z`uF)rgRbQpzk=y93KTs2SZzfI!HuHQ|pS4^m?jM&wiE{
zwPPwo5EYr{KWm5n_YbWP{h7HLx*!THX*iTI>$MS;3nGC(8VOiq>606R1{H<$)%XOP
zUEFOP%nE^s0vYkI_VR>Y1={L7F>eeVdZce<q<H-wgo53pR`n=9%<iv_4JDoi(R}KE
z7@94V&Hs5#?)4~({t!nXL(i1J2%X0~9I8Mltqo*aAKt>tb9_Zue!;oD7uKVX3Bo_`
z1`oWu{BMmU>kW`3>I>j>XG;G!tHil7Kb*QLvwds}&XJ4x8=_qj&-0`z?MDpdLKj(X
zesS>@$NF`u7<sU(qJs-wBLv^FvJ@3Y4!MIpdjW}U7av-M7?yfr!k5A+S%Zi+xy0$T
z$|y!XsRL_-lt6#}F%h6o{U6212O*>sbX0G_VITVNBL=V%HtGcX_atbSquiei1`NS~
zHON2L8VjrlcU|-2O&?j`ErL1h_yIX(W^@3jUgN9P20i74nz@97o}_bzaRzxHHJts2
zcT^ivEnh|eTp*x2Wb7>q{w9Ue$}BZJT-w^oEdQTYXGS&>m1Ta=*RSe9_rT4NdM>UX
z7S_uOY2ZLt>-OB&uNC2eNq7muzdi6#AM|ZYbbM0aabwFEtB{PkeTS1MxVoQN0t=+|
z0%+%JWzIZ_Z;tfBqc{U?1)ugoejjzniIa~e^`kwGU!Q1Smp}W0bT=FPES}O}h9A3H
z=7Jx2Brmrn{NAKVdDq$MoBd`h>>Kygp(E=d<@o_JZ;oqCeGfKRv2y<+^-;%w_;ln#
znn?q2=3Jys5O;)cR1e0NE|&}IxJu@%*v8S-->O%&QX2w+0?E9s=G#tI5#22U|Lubl
zYA{<c=3``GCY2!e;&0S&QpUy)xqdf;L4G3|wFDPUu*k8CzjY+esEAWm;KSS#yHs8Y
zlP>_aGkNBEkHq}Dcjk3LBRR5fo9C$LpdlG~Qo)u|Uj;G+-hz(f0r>=kTOzdj{!!Dm
z!&7-C@)B>5B7PoTP%T~>l^}Z@)Q?t{(vKEzLz(q#$i`y{Yc0DBHKWI6`a7^J)OXZi
zNh%f5(YBeD^M?gq@vRWfi(j)`sBk-%17*Na;IFGSh!f<5CoJqwc#FO>7Kx}jmeuPC
z|A$fYhgd`(OU(PFty^;(?fwnyDLvC*qLn9Sodqv2Y%1@dYYX0Pc@XaY4klyj><fd^
z_<Cyh(pV^o5nNtl_>+7ojLH7!@XIko`<}~qXITc~#C;`+6*_xPJoPsW`7Ow_x)Bgv
zs;3U1M{Z+DLp*)&?0qIcMQIZ53@!Exnho?hu*oD%vz$rM{YSk@;3OJ+M6%k+(cNkN
z&|Mg^Y4?Q4Y_Xv8w_UoS@SES`7RiOJLVwje*+djc74yIHKQlq>li)#(B!p#~)AmUG
z5@!vG^dJjM>x!>{3;tgOQ#r!r`hx)cGz@l)QayKuYc3DEQP0nwWi)I1!6aB~cx_Qr
zRO3v}0=#Jcb+qc#uq_@)nB<Q`TvXa2H1P>==wlKql<XJ(NjcLD3$FWqXAyGm(9A(r
z@~f@CKsvnF7Zm0#$=?tt*;?T-Q#XFyM^lsujGxE+?~5W34>lU@12vVxiM_zG)&tFA
zf&n(;3hGP6Wsz@L_9^p#a*ui)$%{YkV(!<~weqGHX;koO{?*lk;%4TT(9uHf7x`=H
z7B`3Q$U^)i(lX0~DF;Mbhzc0!Z#>$(J*tu*hurx0q&DW#skkV)E?FS?51ETBkxOH8
zH_8qb%Xi&QxL<Sn-rx_q+FSrrb!qauK)>u3HkETbV*;|4bI2O{``l_Aa^j!DU`A|8
zQ&V#d4W=BJE!nNH>9N%@C8r&M8X;$}CIvjO+yQVaB=$dxmQ$lGMPL8sCrEb0muyq(
z<O#5!sUA`NK7D5Hz6efxroU`<ot_i#@_`ZYU-S4xCd(Lc68{41uO$Jp+~^-jiLwpS
zisC0=dEb#h?8&Q|0&-Ppn8u$3(QhCg+7$!Z?97PoYL=YMiW8=BWYOzW9`;zEF%FLa
z)Del(%+Zdny8ZjY1G_$_2zVIwHue5){LdmFZyov$jDpyx+5k4``#2*SuhASae8E5)
z=8OoRw4(wI448!;3kRTM^pjuu8l9XEY%b$cf;$wM^%(4U68ywAYUdG>A{S|!XpDSr
zOadpf=0B5}40VKNl3|k#{DkUUla3EkA7FcFbdnKnzpw8FOE=jEwsEEVub%xEw`Dq5
zrXw^S4o9*JHx26OW@8P<g{HLX;P*j+{ErUxq|U`Ud%{7H%O${VDz}g+Rjx#}f@%>l
zHQDnRWrUe-41RT~ws1`8gk7&Vk01wnKM5L9^w$awhEF~_L$cz?RK7v^%;x&~OZU^Q
z1`EQ7P5$V4niFa1&<XvAX-)Pp$1%l6_RX0pmHydU0KARbf62#1HU<~tbrviB@7pND
zHlwWlN)}@CuS3Am!rQhGI>LtfSYAEPo^0@6RGZiAU{8#TQax#hyX{(c=5q@e`|QoF
zExx*3!Qqj08@l<6`yY?)!1MA-8o~HifLDInrD@#zwwDgYm&cRt%NO1Oxa3pS)>f9%
zh{UK624?rutHSov=+uPP*ZXdGdKbUL*u<=r$I-#@q80E|^Mw)r!x%{4N#9xrKJO0B
zmb(TG9InDix4J)fC-uIly*}oEmnFTXxOX9e?MqPJ#1D7FOa06DroOkvz9;dkgY4XN
zA0OfK&%3WyYx81ukB>7jizijEv*oX|HlI4f!~MRiZol=~uMyg_vtxt)u<xT1u_EY)
zo^n*XCV-vaCe-b!Y8iLL7L8joQp6uKh@!Lht(RfFh_D}M;z3ecbG9WY&S-S3IGrCL
zrKA9?ae)bnG2}d);=Zm~?Atpuz8ZPQ(gp&`!`Yb)fgCr938~*pXKS1?js&TK<>R(d
zW!8eD$m1@9m_gZXo!OzMdgZo(3la2E3lJzH4@en08{R*F*>MIvxDAcbrVhzHu(4sK
zU@@yPwo#Kr+i_Wdm6&R-6=t@k98md1`bQ-U?Mv)my_(55t!!?d+_rVuz}3_hi%JOa
zWs&D39pykTWS`{6E~18*01c!Ydzqer$F#^<0p%hr5R8!tEUjqpWX@Q4I6dD<a@oA5
zfJm}J-@*ZE*JB3<OGv8MznJR{WZnF66-upzkPST~PIIw)WCgqJRej)8e<0y2{r<U^
z_;@?)c|mhfoui3|@Q!c{NkRWO#<xE1o8iR4K;8ubb0k!g!|ZA(K5J+w_^X3q>T%d_
z4bN1q$&2%`8QTgA*LGYOg6;N0<knitz|><a@daND&#wMMVVui_qtQ32_{gkg{ODPx
zp(oU18b?p;kmKjdh%ml!LUXha4kJ?qD_6$E7%$oxrMF<ig}Dt2qTGvo63Tp}eKx2F
z4)wxsGDu`deQUTXEif>SBfq?37apO_6owKs4ZKB`w`fryE|TO+6Ze>!!Nn#>0Luan
zMb{j54JQ}mq@_w=jT7ZVKOezj|C96k8!x1)Xy^>*3Eg<A*{P+SmZ#!#O4iD+(`UlC
zmU^?c!nlOOPgZwe3Cn4GPgyD^jMWa;shvd#?)MwzO<dD=)lJ;MI&w_+O{ML8%nB81
zo^k4M!H`IJcnCl8$|32beWSQ;K)Yi|yW}scZDuMVf$;h~2D_<O#m%)dCBBoW``=^|
z?_JAwBI?3=6m8luOG=CB3@X3e5%b^n;uFg|u)HRLb?!cazBmL<#m0DOg7&=nkZN!K
zqs<o!2~g*)?J3?aBJbSf<Z`_gy~qv&A-dGiZjOvPmWV(4bJ&7XR0tx>fYIy?_6%<1
z72-rQnU<%;r2L@G8k65&C>}?8-@e5}%6@x2&U!5;G<@3ayP6@sHHqx>hjml-X!fWX
zunEEH9Wo;Li?yIa)L*mu77-E*Pb}-oU$_OOP%rZP?w%_{SgmRalChj+CXC`=97Jh(
zWN^SH1~6}{@ikz=`G><b8fZzGl_SEAo_Upywl5#%{Z%;G3i%0rc7`U$x6Nm24(Y=5
zP0dbX^X{A4p{31=9~JB{T#E!}5iwys=8`qoG)@v(p|}EOZ>WsJhB$G_h~Mcw!kYF$
z<=|&Zn7YjGu0x?ood|AA1)dY>Dx0&PBi7U>2FE!se-2!(79HRr^MO%I_>XjDhE<{%
zyM)#M$d*29QPy>PMoD2N{v8eYy5?3WqAfv9wv%s>&fj<a9{|BXKELr+>>6)HLs<A`
zdMn*@l{myYu@$f)C)l4M@|g;Vtef+J?AfO^v-&_TnK1O)bYHEpDMYf#yHCQtLRkn)
zT3`MY8O?0V4d~*r&?6CCAgCtWe~K>2yqRx`29b#1wE=cDSG7BUF9LC9Qa}wd)KXP0
z+_Y5ZgL4Is53yGQ(7DSlrE?6-plV$idr4~{XudiIgK7>gG(4dr{TsDd%tCL%S;%4?
zKa#@BCg~#<ZXq@rZ6QvkOp+@cMZqlj>y}fgg;&5la39Olx8#x<i2Tpqf17O{hmuZ7
zSF>9876-kFoCfRfJ{)v^+dt`^9DO`GQ8F(@?f`J>qZe#6GKZ+2Ih$&IB8j$k?T+&r
zS$7af-L;k2Bd7J{gb8ye0DB(90Cq{@z9(qTet&t?SBC))-ky}2^KTjIt|0|~kitmG
zzN0~0q%e^Q4}}zU?Kj28e?1#|S+NNWL#>b`LzsgW0>-52dC&m`q8CkPSI#%HK$0^$
zi1&nZ&_*nXuam=Fr_*Q6WUuXJn*4UXSy)+%ylQL@12(h|OBYA`ho?uqslTolb~x_h
zu6^R^f`ZG!?uc?ByF3ojhB~%|Op^b$xwh`yg_zL^YYf}Zk6D32e;c4X#1Y}}r_vm0
zK*mHUE#2A@tMNYYSdH&-S58QmGbX!sE;54!xl@>r^nocq#ANM%Q;ajSQZ*Y1?`e(E
z*(e~M*7|z#Nvr1l^cMgH@mpMg`e%d%!a8jt4TU7wS1Vq12EC+-R1(9KwRJV`7SEq)
zP$JwBP9Gf~iSg@*e|nf?Kgto+MqqgWB(tn|s6)&2QQ7sK!a|2(x93N7X7GJ;*-|zM
zaAo^5<A{95(<mT)%>X+04g8Vjy7~G2d;KBJZ!^TaqluKZN&ba?{{yf|)DtH{nNff=
z2O8uQQX&iOBj)1Z)ZD6=!?C?NqS7BC%*Wz^i0)4OG4!_2f5#$=3$}6E)V>V+gW5sV
zuIDg^<Tw-<66K(PjUNr&-*BK<CC{rFPXKo?Mo-8kGfl6V^b+@}CzInQo|51IuKU$-
zM*;iN5fjX9=0VXh{)Invz5-*KlM=llO1+t}Sncd6ilvSK>ZmXZ3-B@3^aL;Q?KH|y
zfr?cckf)yof3^jLXUr)>pa|uum+^rpkdK&DNJTpC3#<AJV~La&02Qy`GIT=VBC({^
z9FlxrP6_p~=jRBr3`ecQNxf@ha&#r@4oNp)*e8B>#M!h99d;qHU{_9X2s@E6B6I*L
zjPj(+=8ZC^J`?QFOpG-fc_9+}Z4+)yGNtdSA%iu|e=zxhhC0n*lA=QazD!=3U_i*@
zObA;eqr!nhoQ=kqsWqYFiG4o;a~^>FA1u~@L!w`x(twT8_?IEh@Jn*zZ7w?WIl?3r
z)+Unr`UEujQvA%(qX&{-lVo2E6bXKsl^+3<yj#C8A^Vvx=Zwpu2!M2^>Zms%p|t&0
z3I;ete}~$TDjHu+hPY=Y+upnOk+1DE^`R<XYwog7tJg015_<R1T^C-=G(EANe*_s#
z;JfyLG@qdoe92Xq&Qb%gnE(}a_n&*c-8Vn<c6vM8d#}*cf9)`^+QVQP>jbMly<8Tb
zKPzO7=FGwn*VeP36Ab!u5ULVY$q%Y&4w~6lf3*>vaJfJUe#%0%K-tJvFpE^353od_
zIH4h9vdOGl5cwH5B8r5P&)`|2tC8yY8ELm>ksW9_`eAiCyHa1TH1M97^wFJpaYgI@
zZF@+=Z85PQh&N%VbI6cjQz9oc9QQh9G;J{0%DK+qn8!Isd=nwJNuOv#Z6=Ce)4ODW
ze*_5yRRnim);4qasY$qH{1d_fgJ(1cA;fqEhI!P@=^&#H<rJUfSO<J<&mBrALh3zZ
z29RSo^8xPOlE1R2nf=(OGL0g&^v0*aK#uwKHTZX5-x!>*v6Yb4;W#<&2W)H|iZfSm
z&?e1?Xt#V}!+zVwnVgBa_C6I32&d6uf98iwyZ4Y$P{|H>9#C}As#!GFRNAniIOqrj
zv><XbdCS&yPT1IZ$=ZQni32vyLMk>o(AD|~(l)2f19C(3Rf?u!G8FyiDGg7F5O_>P
z9}&)(c|^Ii&#tPa>OP<$K@le-`nh%(0UMvtkeox!>`0WV_ZJI^Q}xn(f{MVrf1t0b
zj+D}a0y^ZFQ#ctp2QOXgTvs}=b^53ije+bM)+zo>r}5O}taoQK1MD=LJTueO<sy5S
zuq|OlWkK27mjfqh_LR!`FzqX05#%8(zEXgf2j}P$ArTJf4H1ZjlJFZGWZPeQ(XUCJ
zV^gKPy&sUewthfL+u8fws)jnnf2w(l$5LB!OPw}6H?8((lT=(cx*$__lhI;;8HJY2
znRIgc$*n7hIwvW5Mp&wC55&?&dTpsM`kct#4)D#~l#VAutWo%x2Ks@2&3PzBexhrJ
zNI=F5Vc5h69aW1TcqLTpY0R-lz!IU+J5+Knul5MV?P5D(`hT|9EmX?Fe=Zw!AsH)d
z#m*1!RDb7$Q|9Y@9HNh2>Ibuv!~OGup0pPDI4Zw$=RqI6cmeNmN|2gABBj%sf0{+F
zE5)Pq52ec;p4mTW=x6>&ZtMF19CL4Sg{9<4ckpEd<hS3v2~koX{*ZwH8?c;WZJ$gE
zLo`2_9p;<~HPvnl6Ga82f0Xu)N^%*1KJVGT`shpxG);xquU_u0WsR!f(%mFJFfTlI
z(PwfCs9o76NXXzJ8rl~noMIY_Zb+o!8XAu6x9xQWv8(VgfijF?k;SlYu($E?aX3TR
zS35KCy5n<V9-*gr1{#rh+UcPqHAYx_a6w_sX?n>Oz2ml`<}5W*f67zDC4yQ*)cT{b
zP%WMn62(G>gLZeAW^Xan$!4HP6caaTjCHB3AAf@vXU`)-be%_wl9y+l{?VM8d3QuP
zxy3=Sz0Qe{oO-frz>FA&G1(#6XU+1V4PXoxI2;pWUe-msJ3ak>>eyvvIG4%ofMQ!t
zu)iTTmBds3QF4{Ve^UE`8fIZ35|gR%5(UBc(=3Tgrj<bel|04z+JYfsLeOC_vsVns
zE48^f5}-~)Pw0BvCpX(-GQC#Za{cDj>9u|)fyaM2flKS(O=nbyn520)9aYt+rdsou
zB{#a;&_Zm#+I_PLs9Jyy%GE&AO71@m$d_+kzuMeV!1S8(f51L(2=6<Hge)FUl%|!{
z<+aIK5Rd?l4}=ReA^3*sePu1NtLUdI>^e2JFv49^O7fV%zrgkkVHA>EB&X5H8iYVf
zaM%JhFt|TSr#D&K`FH!&{4nj~8tgpK+qZ8~I$w}$Jd<qBtQR;U={Qe_3Pg3va7B&l
zqOD3YC@Ro3f9zV<iL$FY)pjFUB+H%-N&@_uSh?EbcYPflkL&~MR>nG5zdHU;_tU?b
z`o;*U)9sWs>2$Wt>?iO4)}#m4xf-E99idFLzYQnA-zI|Oib+VnEflgsS6~H&sL+oG
zg2*l8O&Bwo6w_dVNw0+W5ZV|=duo>Ue;aHi?sQ0Bf2<(%?$@I&2n+h(wULs<-Y2a_
zr7;c5>^juxF}0M_zJ7iQ`6176fa%m&r8&eu|9Ftt+*u_$fjA^1#))NOxCs~%G-Pq;
zTlOMmPo@Hqa>>1g1lxi=+q}wbC5C)(c-PkPia5OsV~@%>>gk-ziJZ01crXmR%c|}n
zKB@wkf5Q^iqQV94_u)MpUZ(XiFv-iGs4yA3bCE1b0CSGzr1X)>!9&Eu<UYrm@TIF?
zO9sgjT&NoOjr)ovQUg8~5_J9%XqG(N+YLCuOvFQt*NYc`M$XE<(^V%&y^ozTpCn=4
zE(rF2<5ZIOA#7xV{zYu|`%>jXkN}1Svt^Zke>Em7J?%egUtLqq(~OsGZzL(w4Nvfp
z1S0tcwg-JQovE!GbXL>I>ZNhyV@Z;f&{;QFeJ~ouffASC`XB{ttHS-I__o&Uz@T;<
z&H^w{69$|ha(i9lWb;UyQ+5{7exd<iFtDcm06$wZXg4gX(FigQDE7*{U*OZEI`a`8
ze~pyzpQ!_cAaYUFPFvg2aNH#~`dV}w3qi*rSa&Ja)~I;!x9zNpL%)kdNs})|B57Mm
zEf+)|2{w{jXo9()T)HrS-!uV3WgXV6euQp6&uEyTr1_z$iq(VFN!cHMpz41Y9+7I4
z8;-TYKFi>3&VTd4+Qrf7WB@_P5J*vMf8~t*`KUKeEWbaISs!(>q#%2wi~s7TDN&96
zwys;&i^i+ABZIpAQ%O<X&u;P4p4+P(^Y4F{8MoBS%daTqb%FF`O_SZJ@yurq>cu&q
z$I{vm-3G5JtkSK_PX*52GEb4ZN|9BPo!Kg(upLwR0_@9^<E?3<<$i9i^1+hte@8aQ
z>j74S-f|S>Tz(&9HX^;<v%uU_uNI+-c~lC$ggKK*#|et*r-aQksm%Ue+|eWEpSU$(
zG7FVBWnfgCYS=G~>EuyjvEume*q=bbOSCp)`f}_ZOwujiTH^Suo4i=1>VS5?LBm+g
zhU|0tJxNsl`wO4F*g`LowlDrjf6h@Qy*g_!y^krGxsQ$;k;nklzktP<2G<x`8JsK#
zB&bh3%#*j4i1`i~Gd4|HsWSBo)SR)H8;6!K@k4P4n*N^q>AcLR$5e<Im#(gscBg*H
z_M<1s&>il?(C*&LSBctc5l<)Nz3WI@dg-Vi>orYNrv`lqY4lXRk>oDpf3kOtB}x|u
z)4mYW=EIFqPW{T*J{LCawDsRt3(Jl1@2-cX!)-OOe@RU&!|&f(7jwl=nL<|hy+SL?
z)O#G&ET!Yq(a!FR(<&6Sht$vh)(RR-p4p|vB5K;AK&!R2R$W^_T~nmJkFExN{Wc-+
zaFyDgR!&~-=^@$uvsdVafA<U3ZDvF^ylcgfk`BQ$&IV?)1GBM(ZFC9!VAn@`uiu<f
z^UaH5^<ih4Ga*howm`Ix9K@JiTgZvuW78-GPj-Xfw$^2nFmfn^Xc5gkl8WWsw`<9?
zT`IhHL;;%-KP86tPMuC!n3r2?=JD9@t&vH3UadbSVk30sR!af*f6#j+yN`8BcO<#m
zkvv2N(xwf@Gcshi#TPZ>i-YWSy@5StJ_%qrQ54L2+V|Z&0YQ^3M;A!!Wjw|?@yw=S
zjO(-tlX?Q0p_&``R8H`WyAiwtD(*}~D+>)4iaod7y4oDvQ#(-B28y#O7#e6YX)qgk
zWRXvVv|i>4jm^}ge?aMlHXnquF4hqpA@W(VJB6SI5O_h@Jy#(QZ-?R7c{uy>)sW24
z<(z>%50(gXl0<QEC-{X(qdKH-AkaiVF_^b&P9@<K>*pgD5(5^f4Iz{m^Yt`r!BYh%
z*wZ99{K-6r{uE1X9ZRP~Y@u6XEZd=uF;3MJM#0XVS))Hqe`JkFf-D4i(vP_wxQ*QE
z7cCnOK=%ooc|tRY;Gq7kIu#@X%ndSCLn9<6@W71&0SMa}3c%Ea_&sMQI?C)q)pI%L
zZH6=OXX9Wx?`P^BeO5=KB#eq~&_!QB%~$QV5CgMLrKBB)Td5{)!Ts?y-Eb@Mv(G@O
zxYV9gCWjF$e|#Y^mvOX(0(wJ2wd$<yOX07Gvmt5p2-MWe-FDPXI_VlDy1KLNbq9#;
ze$CW5S0Bn_&*(_-ha|u=*Xj(mGuIMr_q9?nwY6XJQGFX>8pNDjPB;-07WjR%y91Ag
zz}@cWwKY46B0lDwxj8yJjnR2ig-t@r#n5^EFxWsSe>O029Oy~YTm*X@d>^=TnQ*CY
za$@-~*XATc@LZz{;<9Vn=psuO(+ccKPX<LBJ!uxO-CtEDvtyQe-9TMO-Liq{w5{R`
zp?jgx1pJ)|yq<eRAdYp53D%-r3(ObrPOa+=0Kx$@6{+n4bZEUPRZHV900J=a0RWJM
zOFE(+f0m$|yMJ1*UVS+YAP>@?!3D#pyQ<aC=FiIdzmi$L&97uu-fX|BCor%u#$|rV
z4xaic!K`c#1}DijGfYxQ7<-Z_!tQ{LlG!j;g6gWP4qwa{+Br~<>0mz@QZgR(#dT!G
znc-cK8|xE#LLn!G$Ac6|Rx(eC<kS;NoHH)9e?hkSR^joLSEL;S(=r3n?6G-GA7Ua7
z=S&iV7#AMLs@V(0ZZAr!7{l9t?*8yrS16h(8az%}NX;f$f<AIAJToVE8(0LkvObz>
zC^jv^dSY;{WT^?Dg*4vQejDxX7%jpGhx23v7qM1QhQu24q{{7*CONuUBb%H`pI?u0
zf5OCeO6jiM{nxb^vs0}DQ)HY&qRikHr?x}u7fI-|OHi|v?)hJ_kaoZV@i<UASENUW
zeH=->-XzlwU0{2jTs)rQPXr0Y-P&bRNRFvd9RZZp@U0_gx+X0br4h?i{mdOE4v6B#
zU*a)wB7B_SaaswqBi={R_{wpwybAF6e~W?tW9Q44G~8dOG(2Ai_0ZR^U9%cHU(q&t
z`DSMa{TteKyBaBtYj^5?3KE^rxjGQ!hH$tNRN6V!(Oi<>3yU;qmx*iddW$NaY&wek
zIST7Qio=<LplI=(X6Ub9JF51C#e73-_HrYLr(j=`y;n#PS{$$mt`($rMoUH#f3zIb
zP2?!D(FAvT|ICIWef6>smoFF3Q(xV*(fOR{e1{-6UHg3F&0>~Ey`;P4EG8l(K{8QS
zcB0l5$Z*^Z$*o;#-5ZL#*hVc<+Je6Df(}p9%~7Epjj#M9Hi!O%(4R3;%+VPfog5up
zBERQjxXDBN10eerI@li^q2GQve>zhDjMrOlf<*%CDv49Gku={zFAm<HogE!qzSu;U
zxyBA6SAzcKG}}Z+CxaujgO1J)6$a|ptKm!%fquSte_8<q!OH@N*oJ_6$fRPOjTd&o
z@4VPT$sfDw4@=w^kTX})Vw$CwbHV9+Q6&~|iP|~Y|LN$Yllw87;mFlQe=WY9Ob6*0
ztGao&|KZ(HeK!O8SD_n7@2}u?tTt8?^aSFH<oxza1O?b#mZ#^aV_e4`wVOs&DZSK2
znYbqAlf7p?e|L5C@8|C?E{`s*4vz=>Kb;(19UlF>|Ka5F>h$RH;`m@-$z-Fi*!0pF
zsOhs#X#l_#h?rt<Jya7kf3ZXz$p_b40Zz3S3{@8kn?_Nrxge>(7ct{5+y)d6;5A3^
z@<Vv}F}&&^UU3vhsCYH-RB%%(7M3eqyK2hM@D#3=^$odmdklF+svMovVF}tFLNm}I
zzICYlzh!Bf{{cKDaqqtb3m5KVPX3oyZ(i->@;~gpeEGV~|L_>)f6E#|o$vJQcKWDe
zUe?q+cg>tLKHk><T<>hD>T(tlRaa-+(%&MkPPmd1(dnZvAR;=&XnV<T4iud+5TNMq
zR0i<FKEzdw1>xzBBgUs4N6LNO%6DbMN-We>(rA81=|gH+4-QFm^&(l|J0yy9zf@zH
z!?fsCra)yXJGf`Qe{&N0ghLkr^&PTml;GPb4Lg0bTlNe7+=0!#<hKtYl?txS_6ZbQ
zbN_4Um)vnRp<XiTB<AZy(mbi;XqKvK%}a9W?9QF4q;<t~<&ds}1;6Q6=EC=S2B@3Y
z`E#2kW;U^Iv0{c1cB*~`ZrIy-^+QDk%Mzy!OQ4hylG<Jre}6+-IH{BGNr;`Q3YHMl
z939rm{#~_blB<{|%chLGou!ms>l_k^X&~l{E2CakErB6p0l{H~$TCkaPREtvDy74g
zy8u(Oy($c7D9Jc4(Gm>6VkH65NLEg$?~|~&dO;oPn3GSAl_M-Cy1Qhg+m><*%yz*g
z`92%XGBa02f0O)-LSBc|b}b7eFP2x5w`AV#VsCUGnP90nseJuu!1CD<t*QV2`rwD2
zx%$67k%{fI_m@Y5p8PBq?W11*-`#mtqW`z~e;=oO|GmlXhKArp4%SMy6B>~8l#ZxC
zLt=8cX*0L)zh7H(!z5~-Xl*n^d~`#xHuB26VmJ@9f9gl`exY-tIMJ65&-7icwl=z@
zazaD>7-bA2!7LIrej(|7`I0=~^%A2R^@F(adN$sujy0(r!?(dR+%Yd(`|_oW=m_;b
z>eH|z;cdJK^!4jPSixP^;;0#`vMgpKgzhbtA(Lo>{E0Sn^1UqOZ2-Rx>TRY!bT$z{
zxMXN-f1>Cl!Tm;zI~5U+Lo)$dwxRR)gUfdpM}w>V!_(ultMmQA;J5b|hd+L|@hKh>
zPX++egcR>~Qwy%D!B=vPNS-bX?{pbbCsnoa{@D4_^RdK^89)*kFbS{zwS(>;iqxA|
zsN404$9%GxAz>u}s&I1X2~T0w<atVjsilV^e}dt#<Q+J<rRQ;ey;@UuJ!(5NRj=_{
zFjkV?E}x=qSIQacQuP-B8?hf>oRJ&CUo@jpS3i|i(h7dHWa^Ue=Eu(YyL4^})73#{
zS>ez}8&(2j>=LaE*hCv@?UmQb*q3e^anbGS7v%+Btu?KFgogr@vM%a&%|xJX7e(UF
ze*ks65C^yMOLF%EP}N{xyuE=sKFZ0$VkmvXskIdV@j%zL72Lr@4Ym#?@E&AhwA;~u
zh91dTVN+qR+6yMp+Vpw3X|$e4*xK8ss}BroGjX0xeC(Xms$8(zW;d3?n)ciH)NaJq
z!fF=%WIIW$&^k7<TqmKVHR^!qYG1!*e+1vz`@^HF<MW)j3z<(u!<C#BVpNi;_<iS(
zo{(6^qKAE-D|G|DnLoaEHVY`6zrVQ5A+b#NA|f6zAM|HEHokU}m^6*&e$y%nbX2}a
zTk))_!^Z3gs7|?rGOXaP`|r#Ipl%n4@m)fVC$!Qvm%;BDR&!(c)v{ZXPH2i}e@Nm_
z1YtBHw`fYkSQ1elCh_>(nz`G=!oB1i_8VB+n-KLf)~maZUS#&{8?PY`-8SZm7n#K~
zIJ)?Fd{DA}8h71X?03_8U%se~h{IWZgN8o&jO=oA?E-t$c%STS!VLG+|Ckx=e6@?P
zF^4b9;3<(Tk2g4PJbm6zj6CPae_6{GYH-~V<F}am&3HrHc-xKnV?Is$4aolAAB81$
z_ulq)dON+{Cp68?m6_a0u7pT8IG{e3L}Q~`b_><bT;5_H(r_$#T!-Ac#N(8ow2GXx
z{mv5qqlQmec*Hs50`-3^0KQ4;h~7<}D#<j84%+akCs9WqPCCx4S8>~>fBFgROgiYh
z&FY~+gmKY}qcO)mNxSTkX(VS!$2YmbbkIgXmE5QrZAt&%`hMo2%L4a*R}&IMgo~bx
zf`$61zyI5N_4d{4-2LC)-pg0*{oiAhFJHF5M>llZ2hYV34T#!eew-?@coWh`-*4+x
zxc&Xw(dWp7tkw5(<_ce1fAXwBMYUSBA$~?|>Gj=BD?o5iZAlM1Q+hOW(xjt1BzYWq
z=*>&`C!G!;8aV27Q(#JBb`uoS6mzBzovr=P7zcDjiH~p;>GY6mzYz@`>Pyv!8i+tc
z;^9~j@Q_5mCPr)KN|KVm7hp&aF3CCuB%IMUhB{2QxxR$_dlB(Af9ok@BZZ|>&<^Z7
z=&=7|b8;mulQi^B>y3!hP>xXNAENsYwR5<Nf$nTG0h>=)pMaio2WqS3`brV%nDKU+
z&8^x~i!fb)i?B$MT`q`>xxUZR??Htas4(rdGidIUbO(j4$^=q1mCVKje_b#p^BZz!
z9Izn{($D&DxRh8Be|!4?)o>K1`ie%Afp+gvr9(g)_BfZzx2~TLyHWaRs#|T=4!Rip
zc{RhYfO~I39O|g!#{kTl^jnWXQ1It-s^i!&Z=8`^)g5i3NoBdWeD>!MWpg>IxKZZZ
zOe$&G)>^4+{^=Y#N+g`dqgT?dm?1ZP{^>5)J|pu=Pb8&HfAW1c?ZIu!ap>;{(FC8x
zQ?$F&TyB<S%dI8*($rp-$_r4pAyprRnwjj>O(^Sb#tTx}X}TDh%NkbExeUKjN>^5V
zFk0IOyjuFEuY3z~u5;b65a%ZCD#u=PwQ*mTYeW)vrWPcR(^TQSFuOscxrE6hxSU*L
zT+Z1_xNJCVe{+ckxp^85*=;a)xb})L%G6$9sMd=y$<AFj?8G^2(FNgLn=P~;l6Lb&
zd8TUhaw$TrB-XpUNr1l7sz2JfkMfO(lugp^639LKY{)2R4#Zqzl@Tmgv)iP<InXO%
zG`RX}ep=%(jN>+m0i=%WP6mcSgUN{nIm%Se%n{?we<|F6oPhDd<HOc8M4K+!!KNun
zY6qz6l#DIZiAGB;gYqOX)3V?=>}tt|j!W~e>id^k<TJT(PfOQNdH&qe>w*jmSF|f*
z<=j<9rsb-b+7hcgvF}1ub5j7%qh4vc;Q7QWZ`Oczw&BANv9NM<FH;;jtH$QSsn79T
zdr6`of7DTzakSC<nFd7k-UV!kIy(Dtj<Y+P<+al6k)6$w{VJPRI{Ceru6z!sFTbFT
zPbvLN_hZu;FT$hQM8xI1S)QzTK66&IYrvhVW!DU6)eF0VXl9#OkYagx-i#I{yLBn5
z_ResT2{mopsdNZy4f2<wX%@Mhr?xdznsY{Re_f>ybPJ7W7u{LDE8PuK1-EC6^~h)9
zp=f+Xg#tS>FU)gnY|$P1GiK60H+TG@`r*flhEAvY-8nHlwDT&1Btu>1TQ;B-yzz@b
zeXQzA2I7Duuk%6#pU7-Z-CxN}SO1c{RCiE!;y$`Jdg=a>K9{e8toNdlnv(~lROgFh
ze+IB5rL;-Fm%K5a4Um(2L+GVJbToZ`N8J(HW|1t(+_o*J(RMG9P{c=npu0QMq@;Sb
z>Kp-hz@`xm2*k*>#t4Xpk}1uWhT}j997r0j!?Sy;;t12AUf|?SAd*)v0}N~y;C8z7
z7aT!Quk>5#>d$u43w#`9_SjPhCzp|0fA{Yt648nw%0N^@v>8^@kDVelRmJ~eG(?^M
z3_DKMuH$cz)Xi@I{~3PVKlyMpKp*!{jt}=QkKdp5|1*RKJlo_BX1u|6YHT%#&5yv6
zRHk75gN{c?%~CJs0iwdB=bI4l96>${Ur2~$rajOgSfe0P0#8Cv5FbYiuw6Are>nP#
zE0F*<E0Q27?S^*Km_~AztrhcNbF=zq9g1>u6LzH(!G1FQE#%Y#RqsDoj7-{cK_nV7
zIYHO9`ZeHr?X<Z@Cit#ULQ>MHv5qv3LXpktjN*{~854A?1N5Y!cuo%Y&vlbi2H}oJ
zOo5yitkDFG(*YX+ABfg?Z@xGmf1Epp+vwt_{R8J%U_VR77GVHbtQC_TiO8J4vv%iv
zh&}T|VfNBCTga&gRII?57KTPc#JEqmPWdnZE7x1bKh;b|U4n-QjNZ2+=690-LFU`K
znk2^QUo;%+Z<L7UukARBIEy$1<BN!XBwQp3j+k#d(|wh02l+ZFkj$(Ie=@xxT<t`d
z6V&;iyS?3=?oJ2w4se8rG@z0a(fc(X64Sc(j!KJ7Mx3Dz9AV+*a{Fd?NF?5^vs6$>
z0;P&|?@1uzy--7()b1wh=+KBp|Muf<?^Sna3;oaC-rI#}RYsxA&10^o|7YP2(zNTn
zPd@;|-q<dd6cCpu1Ju=_f9BOcUH=Zjl1P6a^KaLSNDA15D<p-hsAfb(WnSun;BY`}
zp~_|;07`}l+anCqWR@sEKv<w#5(GN?1O)$dV-JJPn1J~6&<7mV=y)QLV~o*j&iFc$
zF-t-o1N?d}PZV?uoZE0AowDG>YV=8s+k_;cB}u1nWJnGScZq6Kf2B~X>SFsJqRK$6
zZls?~+~r22g(F7&fZaIGix1if`TTI>KG<JmlJ~RI+#IKxGvH$AUYs;U_2Q)TY6}oZ
zV@BV1C?$}}7Fmt`=K}V>$(?F%hNp{I0MCj4wfAx_@BhE|dT+0_|9y<&cu+ox%j=w{
zX89F1?18B^(?>VEe`}v;==al`%e5(y*vAt0*N}<E+1xcV^B~{`eg0D7jG%w*35i1=
zYxk8q6w=Tqp+v9r9ZccrDwh{X*UDx=E9pu`!Hu<TfDlJ$10}8wG3nHF;5as*&2j|I
zMN=k%c$EjynkKEiKyAb}Ae5Tb?d_ZUdvu2kqI+oWyMLC)f4=IpaT&;cbLp!c+`jun
zW?MFlwPPv`By9vfnOVhs$07+=mBz-lUQenobcaNUKM~Kk75#`_xM8$kBmmRP(VDhy
z)3jxJSy=whs@cjc-<p|n>n$`(#b+u#K`B5zIdv_PZeA5eX8-lA<>_-P3+(^7C){ph
zePGW1zx(>le{OF7fBpLHZoB_KMsd!hRSJNb=bpd)ef8#k<X8pdHt<q|fz1cqzROJw
z+I@V^J`QFPbEn@(+gj0|$Yc$&mR&Ta%=j5K*ra>Ub?1GW8`NU*pW|*og<S9eI7j~P
z?7k`Zf4+IM)5`zHDCt6TB(@E^uK2av?UuO+m58vce+0|AQa|Z6@UL7JSpQi=rsnG3
zT>bCOUVi<*e*L<Q|M)1Sf&Qm+G<8WR`3yp{cC~RCC<R}{WJ~-RsQ>Sc|N82vhZzgB
zoK{$FsrSIwI<Apls|}WFgLQgfEgR_R2kmf3L(FG~iC$^cxCqP17Wz(SM@sd$FJB=3
zp#B|wfBg!`eP_ET()@6ThHqYx&~xm*D)g)Q3T+d9{<@H&+s$ga8SXZ4B>N9M4S<Vk
zz&!r`xPbh(IlLBr2bd@ScXr?8<o~PPH*Z_{{}`p@P1?F|=M5<B_e{37`-|*yTVf*~
zS|MF^WJe}zo;9(C#i&VZL{06qmCMm@&5dn&f9$e^{1-RgViy2&?|<Ls?|)zJ?6vuy
z9;M{OV_x=GN%w(vHolKKo~9SQzmU)6*li~B%e#9dL2vx8%0;zx<#vWu1lMG%5E1bd
zL3HwP=W#9HlZ`8hGQqCNpY;v0QCc@ED`!)Ro1HzIX1or$vgR3LLR4Oz2+^kAoJbit
ze=Meo&UF6I-5=hX4-)e+k>~I^S6`5TcqZ9-4O33B^d>t0b}3&X#92W4$V9z*f?MqZ
z@;_^Ly1))F&;IAt+r7N}f4$S*|2|5|iOSOG>55&o*v|w*&+H6UDt)yDGHCeA?;q{q
zpjP5X%pW*13?WBU^(!~Od1CF2M#Myaf3_*c_k)1lA{q`^9Qsaf5@95=Bc9U_)hy%q
zzv%{F(!d1`BKW86Mx0Hv-R5XwOMy0NSumczlfgNKP`AQ9M*;PyOy*En4AWt#l1zO%
zfZ|E7G3ewDYIiT&O-@BwmTb$g*6yn;D(U9Q3HH}Y@td!_x(pg|HYIXGVu6Ime{n?S
z@MoeaeDh1X2P_Nh|3#;p72W?8-+x}cY~Oz$r{tE9<GGeQ`ehxS>)fw;slIRyX~v<V
z(HYte|DiT~PH$*H#%@}E?aPy#j9z&5PWFZUq9Y6?e<s<DrS^C_2r!){zk)OBA?0ax
z&i;#dlKAS&gb8W%!xRJc@%a28fBWJ5_%QvzlN^uwyc8>u{{k{U?uWA%a27kEVf?xJ
z_c)3IG9{tJ0c433nX0F;kWgKt4bM@DwC|!R4f|+!E#1>T_tBfzuV21iL&#*ETopLA
zk-ZOt*#%?ZQY2<VlBp%dlYjq7_fJKN1rC7o<o~Nz`S+ifZ(g_lACFR&e|Y~%`QSqF
zLB&<!l!a6>PQ!7}W1KLMh1<ym;&}$heYS<d^J@j3p(`~DvNfmNt!l4nf*AIFs`dsP
zXuUXX?K~RSZ4=LFQ`6g3Q_?6wW6&QvlD#|U9Z_?~cj<uw;OP2MfHo{$H_>+vvOheD
z2l+=X3&?+U8e7!$56V3Gf4{evm;bx3_uBj)k5Y27!-+hRYVj8=AeCnUBRo9Ug&&}_
zcYP17`fI6H99s4er^F?WsL_nk?@pA4&L3KbC4$A=Bk*hfY)6T$c0>3Os>FiiS^`?B
z61>2?{;SE`r&bn}|3e!3N~K%r`~S<AZwv4LZ(9BTQA$(!|C65he|8&qg4+NK$ORcG
zqB#5Y62!H;L|+G>vJswi1brQEXHCQqj2fn(i!#O_`<}<*P_Ehc3g|mYKQ%Z0C)&)1
zvNr&GZvKR(R?O{2(yS~X|Mgv=So{buPyW9x`2X(hy=?7&AEkV$34xmpA>XTZ&(Kv`
z$-ZjIuFbaINBGZ}e<WtV&TIGv`Li;VKTmV2+8;WQOFR=5qig@!wW%%gFFl1+9GOJD
zWquh2<E*r^xqUPOJtqlazE`Ktd<@DHDK#3XT}qW<KQkYdCVgdl*v#Xss$`L^Zag2i
znpjW^$$!|DvDuYZcK^TgcCTRn`}%Dw{~x8e=AISmR}y$If8)YeqNCMq5E%{8-6-xa
z_ZQx3{(c+9@*3~r>)$-=tZx19?Y%9W|KGf7&;O57mU#a&d~j;`V7d3dK?X><>Nx+%
zShk!i(5!#{Td3`d-wB(Jp!}V%i6cQJgbG}q<;!AX2}433+<KG8!l=x`zd7A$C<(uD
z4NL8pCcIN@e_b%LY=(xmS-hlE!eW^=&U|iyPz9XwJ*UKmxOmrJz9(g!C{}5J+}`i3
zt}L?uODxGK4g`^1POxu|O7ky->i7TGJFj2m{Xbs6ZvDR>r!+fHt6JZwIlnM-eqo;s
zQU6EeF&q%#5eG_IvzNRsIzQVl-5Mj)vKIx11*=R>e+Q<@p!7nj)7YM0jiHn7@Auf<
zaTN8kSr$AtjaUfo0$|);Fo($yFi3X$(l`?NSeQ$CLw>^(PW|w48Kw;_qZTosHQVIb
zVqUBhg8hI90p^_=<IE=PE+}_c54%H_xKG&On68|ak$JCadWKdd$hdwiyg+_%9X{qS
zk`kwoe|pA=n152gbjmEgYT=dm5a*U#qkcedGi+C)019tH{5T-|%z5}ynx6Ani?XT~
zouX2gnI1R2;1rL^c^m}#65nuBk(mk`g}X#YBN|dUb7*3|G(HcMik0$CGJ)kv+38Cz
zlB0u9!bWN~YmqcfD1@%`MS`Q8MO7#|FwZ#=e?$T>&BYzmfi0y9{oNgRIRLLo`XCrO
zaPNs_$b8ZmMOC>GjxJP<pz${U1X=YOHu*$mhMz?9M!J60fae|D3ebzbeD2p3u8mA*
z4cAB0fk+k*o|k#f#}y94?dtxckc3ZZ2;kmv?2&WADflC?(07MYS1q%bHv~8jFKb?R
zf1n4LcUM$eL8gKxFq=|Y1p;-FEG~C;`&o))<v0H>X72B2t2XkOi>H&9J;OK<v-CKm
z@<6A@BwS?Q;VSbYLDa*<aMHRzc_f>wFTr^-)s9hx%hB`~Z!%?m@@TTT>0TST2<A5b
zCxLBQUaC!$@dnnKBE(XJwq2!0I)1yLe@|4K<`;(s4KjLV0!FDN+HWwk4l7{vqNIBE
zCDfLJl(WasOfAP6w&Z3tZRG3`^S!8%O;?<Cl<uPKAq}_1B=@!Jea?NkEBK{nO@2#w
zq2Nw!+K@ld29j(50khFY4O#P&D)H4ro13VEW63(jUc3pr4be6AQ8&Ks!++nQe>>#G
z5|Ztr4(g8fuHE@`k%tuP=Q<W-3Hn*BF59I8(X*>;P&tCHU;C~CovUX&|8#ocr4Y@}
zzbeyDKIJC$?>v~>YF(i^^PKW*^kAmbr~{9MqiS4Xaih08JI?{x5e@w&U{H6e)@&pv
zXcu*-__O`DYgDr+`d!tk3r30^e;p(Li<9)(`LQQL9Ek~&oy_Ne3Hd)pEDmA&{?Bi+
zXc791`B<2h)V-LyejBgN0_2BTrcIY%?GL$ac;WrCY87=a(A&3f(Y8-+w#8(+AW9{B
za!E%Kf@I!0QQY^H3BUF4-*97Sz*~zWU$-qh7|ShzX0@PwqXliL&Xi9of8PZ1!%yk_
zQ_9><P$%i7^yE^iSQVza6p`jQH0?J}VGa3IZ48C*Hw&s}R;$jb(yAo8SAPjbM8w0|
zrsns2!wOc-pA`$zv1(LBk>`x6R46vXphh6tzB#__y4h-L@JOU*DImu-vmv}X;ZQ%=
zg|27Hj=tH3%RcJN?WXFDe`nr>L*ubUoHAId0Tv>A8D97)_v+FNN&y?Ma6GT@HlP1G
zg61EF8y<b#oBqN{H@)n4s9Et=+u)pA(Q-lASa@=**mO%*@BEFW3SRv^SR>3yc#}V(
z>)HS5`0{N3^!V!V=%)|wa?2hTj+tg2Vm>ob;7|ubyL581=aXSPe=fhGNc%f~Ke&8%
zaWwcpCs!ZepL{qyx;i|*DDSt^U}xye>*W0X#pTu6htr>qYI>Oyudh=ltsCuG31aUK
z_b>M=$(+DUusFmLA5vaL)rt)zPlv0Eqw|yFgZ<0n_h(n9?+=eENFf4zL+VMI0rg=}
zMb!pw2#zyH-S8Yzf5(EH8|Q$ZX)u??GN_*K4+g)zzc{@5`S_%2_*HwG@etdd<9tzM
zlQR9i5td~L{+tQ>Xp6?}S28oMlKD~}QAD>sE0giId?K^{Jhzjjc=F)n!{GAh;%fi=
z{OWA~v|>^!Yz}ag{5!k#RdjZ`4}JaeesEbM<QCfntGk&ie{?E+k+jIEUk>+iktzUN
zc5S8qSna|pIBqSustWi$;U!fVbJIh^{IkTu)4Jl>yyql7gSoqh2>d@MS4U_2Kb;(1
zU7if)>s~V=I;az}PU%Up*%sR1Z0TTkc`~><zc~8&=;CT{bn)@%;_Be|{FkGPrIC#|
z87cLa-w=L4f1`;yZZ%gJ6*>n;7ne26Ip?mafebhO{Ce~s%Xd?LrByN&>ePI&uU2N*
zU>CC_*k2N}{R$E^zn1WLuqd(@Cre^`ak3by%@*9r`*)xPG}1V5>{Hnb*!UMFBn-Ma
zv#O2`-k+Tv9VpGNdc_p_I!FVJFWBAT@nESQ52^6xe|MT=hotoh4aqqtBl@`^nkUC+
zM<7;?|GhbmPA`j{g{siLq*L-23!BpR^7!=V|Gqz4fM=2pR)B9b-dF!UVdDnqp1<4w
zaCm&F&~AvW1O9#o&1~;i2m6=%%V2SUB@U{QDe3j#<oM|9^6K>X?CSJrFxY>0)Rg~q
zfcsM#f1VN{@R%&J=mx*+UmP7OUOsuhe|U9r{L{t$#c_kKQ&BgVU{3sVP6CGg6FTIW
z(`p>@cMl1eQ~cSL8}m^=-T(K6#8YKg_u}pp>bdz>3i^ajscgb<$$>H%&eh5B>2dWz
zuX*n)8r<RVgCKnIp?w$}U8s%fK0_<-dqo4gfApeX35jq(Z-_W9xCB-X?DF9J>er*A
z^Zk?Kk4J;6<Fm`7i;w#!3k<8g=LZ><KmXiRGNi*Aou^5UD;f&;4NXZX3!agcBN<%o
zUml$*ajG`G_a7GFwnBFgF(U^o4x0=lHzfz}Kb$QxmXbbKCG5tNA-*6}c0+!qfy}&Z
ze^rj={M|1<?O$CSoxcBgq*Ut5x^q~gJ{K8HE}4jnqx7O~+D{Ip<W1vzvE(=<^i%T?
z5+Tkx8&<r|W~yYdC7)BrloYuV<3&_yz=(_yW8q_+g_w^e9%4akq^Tl6g&B&*S5$C<
z{Tb?hsJb64zcL3K6Mv|F__3m)gM_wBe=8UTxfcVqCsZUvpgvZ0l{smv%Ad$=PTl0V
zoN`_Vbth<d?`?0Vx6|7-wuQ|($6@3O>#Y@#{a#d5bM}Cg?6|giE23mkz=0184h~6x
zXJwuR*%ez-I}b3bbW+HIippISbdh@NnGYpfF%L$>o=1eZoNyv0Ebwap<*VjFe~mB=
zVosWX%2%zh6mnmoAp!D<3#Cpd-pj3}tgkAUswE!O)k36mM0~c+<H`6g>XLH7U;57J
zB6*-u$R!4Qv*>EdQRiOEDF<uW^^^m1j|G*3bgvbagSG6Ey2ya3<-!##s$6gPSygo=
ze9OEJ&3o=>WFTf=hn7&Bzr9J`e{(c;tQi*LXrl+IntJa7Hbk9~`ZqWu^!)AbdtmOr
zS#pRt`YaVI`v)vci9?)^2R0Q~175Q2x;lSX&BT@28?ta@5nf<ID@N`{ht*>*tu?-y
z3~@DeGL97K@8e&FxcnzC<9V?F>6WF~lFvSKSpETxNYm_MeI$8ImKZ?Mf8O(>BOl8e
z7kuMt0aOd;VxWQwtOWImhq*xcfCl%nZB3xo8nhOOn8~hJLeH8_quGX`cY^H3l)k(#
z@j73^2hV7^*VC`C(vxI|SpwD@Hh2XWuY1w&p*D(zHi@MO;i9k%LFS3Y1_t^K*q@U>
zW6Ft-I{W4)dyhuLF}ge%e;^k&q9Sc^J0T&|paLaU!}+TS+fv6ynKJ_w!?0O1`{+v(
z!Zp(6D)hLds|?Mi#HaDJk50*y@mZFf^e+PM9DTI=jyB|THwtixzL$#=oHfNSt6ny)
ztZuj@39I%ak#Ey*9}`u<i!!Lhk&h)ANRA~Ln}9Pqkh`OpW-ICVe<lW?y(1-mqRs`;
zG59-m4HF7-76ddLe}F1|6vjcYhDtYA_bRSTWp6rpy62lTSL~&Y7HDH{<^xTk;tYSu
zM_qC|Dn$R%B^Tl>1qAt6(RZK7Yzut{n?CCQSiCQX8tCg+m=sg5POcR`xZ#@+!f*&b
zWqw{A(CCy7ENzlSe@=(gEPHb(;rP^vBXj2dGbSQ`q!p5J>y1)+KB9k>KBkq#<TIdp
zUVud!(#HYTDeD1s#sM4RApKGQ4g6cRhBFwJq{bI338qupOQR4-U!2hTU!Gwuv*qG{
zt}_4E+gE$9UghI|@4jmDzduTO)aaX)4=S8aF`rc?g(+Rze=7*SY5FY-L1|G6mP^U|
z>_c$c@jt`po4Ze4345HlpDA-c@z9@nbd5^YY~hwGkcN3P5kS+rCG0!TWw{Fc+<>5q
zclgW$gC>IGfntId;6JHwpe}3F#Mm^|9zPgphIQ-XfG&pP%0hu!44Xv(t*Koa0JNt5
z{bGN*fFCmKe`jew_m7on!9HxT&$3?HIG_J|aX#lG>V~;AOw-2rY-4=3F+STEpUxv;
z8{>0c2W^bcHpXXK+8Cd0jL$a4XB*?Qjq$l^1L5ar_xe06ivLxEeAXR%vu&1rF{<m~
zAwqj5caO_P^=ts3fWzM;py#(a&la97+c2KaoGlv0e{=N_HXkKcXnqwZXep855BHVg
zKWFe)$7jcvhd*8IU%Xqy6Wi%vMgHU(;%_)Oq`WE8zwMt?QnLna)5*OMrvS+)tn+4G
zp*uLZI6l7|B=IojVqM+CA{bgT_XV-6i&|HLWmPW?ncxYApDo`Y_r*Zs(En-HGyq+r
zpq-VSf0z%yFflh&#3Erk=k<5a_>y5FGD*OS>5A`7&Dt2iOHNsB=-}$pt!*^LLK0rm
zYQd1kZ5-k@4)G#!Q=K5XWlK)XLT|!Z$YOE8rb@Nzu+gZqIgf&a|2RAN<>LL>`wxSw
zgZHPW$Cow1wkrY~7yE9gi7COA!NAPte9gq|e?E+-gA{`#tMfg>k3VFn=VsH~#!6lU
zzbCxxR~ak0K!}C+k%!+q+JMXt7?8Q{)vqpYQ-LmrKUK2LeBk#|uHlyJD7-1Hwxm5%
z0<&QdipC2p4S0QWxPLzXnxYs)I`DC{V94uCllcfL%uKZFx!V+g77)$4DP(oVXa+Z`
ze>q81;(hSTQG@MO<LymI`F5Hoo(!7Arvn5k1DSVrms0Z+vNa1AtO-{eCb*JxAAWA!
zgNR2<^zhUE;OOe`tXUUIIvk!g27P>X*c>zs{UT^93$?~HjpVG@>dFe&&AB2mgV{6K
zHq;nv_m0MrWB=mdm#h8D%f{jZb8m8mf2C|JLrfn!2INA$j3Dx3(|$f&%#X+l&|_W*
z`r4RkZ3cuk145etq0NBMW<Z#OW19h?&45tTYnuU~&4AEmKxi`{v>6cc@}<py&}Kkb
zK?a11i`S2si-XgGnO5;yqnk#oE4|c6uQZ~ds+W=k2~ROogOHfZII4-_?bc}Xe>Ajt
z8rnP!-!e}_X1(4ku6zd4vQgzTK<*J!J_F}o5#=+GmW?MraDdcE!+Sm5mGrd2{0wad
zo>sEAlKnYJ_BI2LE^P*$W)i;5z|&^nX*2LVd<LG1!1_M(J`vs}q2#lO(NK1^j|c?Y
z{~{(^;?F?+e{cNPS10bit~BsCe~qL_BkPy`Ty@W)X#o9og|3=gY#GPbYDAZ~7s?=5
z3`#!-&8{~0SPt8gwsYMy{zY@=ENH^|t+Pfw`@}Wh-bwxM=KlX2(!n(0)yK>JlyRnC
zFmF<I+vQRwS$HeUmQ(=PG*MCxu_=+9dbRmrOciIOb6oB%%*8{@Wm?V)e=JuqlDRP+
zQ6o?I3UG@!!Z&k+SGB&gS1hRiqmx1BI7E#5gd@pJLL568XvSg`65^|$L_|C~njwr5
zFdOCmu<)DXtf{j-^fJfzeErSN;#X5JCLw|;^I=GdVWAmY2X%ZZ)PTy(A<Gx`Qg<b#
z0_kx7a{p@Z{=>z=QN2@Ff5d4hN2oJlLjIWEgG7wWAOGQ_SP=f>KLj#EHUETb8U4>s
zWcK4f1W>Rd#F@D_+1za4=arDOv}$_eQvoY;%~LvOb&fPH%|2Wl&m~zxt^Pm!?SF{>
zmC~pgInp(e411}E+lDHiJG}G#!Qh)ZE#;9Z!{dn<pD*IGRLV+qe|~GFNV*rQ^;4g0
zZq7?|X_F<--lg#G=XkWzSBr_1(Yt)UHiROrY30Ad)46KWE$;a9@0TnsR(NY$4szMs
zrgCWaxO6H9c(1#sa*z$KpdR>Y^jk2}DlaT6VBVLNR(F9}0dXbFwD^VQ-#sb!v%g-k
zQ>$+jPtBR2{@Sr@e=TN5P&jATV2b%z^wIB~uDQ<Z{TUNJ>ne%R*+Lz2PnYQ#GL&`x
zm_OVaE3itbQm_I0=k5=0s|8}ZHkJt9R&3npioGz_s%*v2;i{+Po}kVA`&2XkHW1HG
zF8%crd1h+%#I)3`W>H#vHs`!NE%fTN?8KJf(B`AAUQ(;ge@9(%Nj)!*a%qz$DU>q^
zxEFEx3*^Qs%3SqisYPYLEU}!PNOtcM64#}J&iwY73Q5B;q<t>MKKsy>w3Q#zbkTjl
zpfdS$WgjqO>f>3)7XW=%^8R2gCg!9qZ!m<+%5g!@qhEE(ba#N}lC;gH-DcCiZ#Hdr
zjL$!r_P5TFfBbhYi{$^l@sfnQ3nc)r&;Px%xA$hZnE(4#oB#VUiktuYX4hu%)+zhu
zW$<p8nK{iBTqaeTr1AdJD1CMz?d~_qrH#-!`XC6B6Dk~}5DgLbeG31U49N*W*po31
zP!taXDkf)4UJ&fh_I;ldA&l0(jz*LOJ{ppM-J&7!e{c-Ii3|Id27%g>A~YoGsKJTa
zQYG<`U@Sz#SgIBocvPSvXP*clCfJmq8_fs;u@U+;Nxj@RttL`NqQAX8rg9Pw6^*vj
z{LJn@sSq&{+pm9k^JZ@irP(BVIEW@Vm(<y$0wvuz1mA`(34J(ei@u4zzhEM9o#p!=
zh=nBlfB1Y&DT?ObeRRe`MTB+q8$q`?ln4g_ikL4H4HQY8{Pk*%Cin(OO}UynJt=m!
zh>u2$12olA;7>#mPW_w73E}8G5u&;aazjEiBqPQF=IjM0aOFAMLV~ItU3~<2x?6^Z
z1c4of;uaiy0?Q2SO$>bM7;FrQr)Chq_0~`&e@7)(tIoA&t<!6?n2)Q(d`zUi6fMAW
zv!2(8g31)<uUchb<z>PBUoqH1d;kA${{H{+?c2TF{=c{P_HDcWKSn9M-4+At8)f`E
zo5<JM7W+RUkKup_k7S;IZ9ME=BKn<1$sI_^Z{1vHm$Qg8?*$Ts=fT6rJlqq8{hx4v
ze?w1g49$B8vhDJH<$kW~bpR*L3w5GhfQ~^GggQ(z74tYHJ7seuk`1-cYx+yRn=|GU
zNcqsXm(aGzcar>|`gkb)RiU&J-8FZ&(oB{8hT5w^uxzz2f?5W%GGG-K0%a&IuKs=b
zl9eFt$Z+UaiGdCBXSQ9(t<W)7E7?V!f9Wg-uade7hq;~2l^O+X++UZw!<pOX0@GGI
z)<o<$15HH{w0HD&hs3!`nI0EYYFDJyI`?b^VV6L#GAlEbVzta@R-!J$4JHdnAI=8F
zTeZdXzlBvlDD(8cH?Mbc`rq!$H@mI=_ZVdn%`R~~omE)gOt*#$6nA&m;#%C@og&5E
z-FZoIcZ$2aOY!2xt$1;Fe{tA+|G_@Vm6K#5lV{eN_2eEXZ@OaUjb6FCHi1iNjlJV`
zz#oZ;dE<Q)`<EZ=hK8r@e2bR-$EK%x1zcO)j6d>Zw3y?1*Rvk{S)C6BpLPt)CjGwZ
z-Sx~@`hIrW>9>3g#HlXK@TMeQs*sJu=UCcDeT}x>oO6n%I0f~YQux@O9J+`>V>o}7
z$N3L@!HKej1|dA>)EUA9UsuHanF#orb-{DHxS%RC^fYKAZkbEo-J<pAm??NGgk%vO
zGOd;$Owp$*B0j5kLX1)aljz*g5{qI)o*xGbwX4p&;A2YPx&?4O*>-Ii`Vqb@`lm&=
z&c81S4=Vo3h9oe#P$wd<d-(p`P3utDeBmqpVtw|UlO<)l@!s=sVU+vHg8(EkDM>`L
z!N4+ru3U3hrhM5_GrSB44!1_MoxE>by<gszao?q06neb&_}qc_&NEM+Hb5QEV8xC%
z(!#1$%hBF<ULCz>!PlKQ<mXLaU*8ix`ws{6y2NEu%#uoVP>sPg<ACTfme3$MiMXHT
ze<i6eD_(%}!`zXPI*S)TM8O_IqpcF49sc|H`!qRnSysSxub3H^+sxe(Cqmh*t&gp(
zFh{Ka@`e~XU9t>Xpnuq~hZ04~_L+c&-Z%XI^+e2uYS-fwuNgO5FIRhe5V3yF%R4H|
z!a_}Ltso8pPJHu4{0eeDX)uU1eQ0F$SLg;u?plq#IsrmN&?iN}GScP;fDScJZRA8G
zH~E5BP+waea2dip9nbcKYB)gz@8_iM$l(OgF;pRV=7{-7g|LKV5fy@9_ViXO3T|!X
zK)uh@ni8*9$qddyyM1P%N-M!Dy8;iG%{h>TQhPbtpV5kQE3)ivp&`RZhO8my`4UM|
zgn&o<0?_RX(02gl*+^reSX0U(Cs9}eA!MeOf-oX_r8*IDF)^x$c)reFrkz|)6w8a)
zsW)Qcut*6LM5NXZi_dyiSOZkaLbtw?%gKM>BLWhrqpI+KUkJbY_$LsH4y11s+W9uZ
z-uO<!<NZLSkI>dT;j_TCYHjVf7hY)hA!G6F=*n(p=6eUiDJC7t_&6~gJWXu7&?*~6
zS=Dbu`_YHRu0Q0PHZ=Xm-Kiaf{Q|R2U*d6L31YP2tF;bRAK~{>0pB$iJsiYKaPhJH
za0bU59g*l~w=A?&f|S*984!D)Gnwj;t@H$wXiu(bY^j7In3V8D^?H~FgRdF_p)4Nq
zcTo=oZ!a**UJxSZw>$hj2{W{$<D(~W-@e|baz4F13-RTPWhSJNBQ}!N1W;8lbR`Q1
zH$}hMK$<+ywJ1YUG&{%1+lS4`!#idaGet`5qfP3Q@y{?@FLRoZ!xw+z&%cR-W%=AE
z#u{g0{mpEY$Y&JN>iALyHFO&(k4T9avmAPR<Tn5r;UMr=@$kvi-^~VPGL6ax14R>2
zUVDvATS7;soH}+T7Y*ky<+CViHX$?hpZ@yK$WwTS4@f2Y8SWXE5hcgr&=4IVC|9gx
zea7X%lwqQwJ<$qIX#&)xEvyX!_DWB-ww~5KWwLGJVG{gnbj*%pjm$ReT*8dY{%18E
z+B!g!zg~`0+lASB^;*6yW<5NlnSMMQcH&e`B|ex~Lpm(apult<!FkT^F=RT$QRRHv
zT_$L>EoWohICtfT;i7fi<U(2~jwyGr>oI0PjXZ&4jZLS$j<vTF_|d43{byqw@`^^U
zknBzhD96H^3|zmSvf}&1x4M(Qjr&!sB@wvWNKvTA{Kw5hWYLcujuf@WXSIB?nhcvN
z^tDE^?Y8%WBLg3%@h9)I#2A%wwE)_4+QE+NkU5D*C}>k`%ACNKztG=md2b{Y)`WDJ
zgObJnd|L8}l1_MUcG&$qT=(&YbBunOHp0Ie8$%U^3vg17J(Yrj<Yx}v>P2;pT?HCn
zFqu6MpYDZgW<saJf5g)+-MeGCVGW8J?PEm?-WEb$_43b0LZpHej3R?RMIkJRGC!vs
z!)<FH!nW&#m;RN{tx7gnOQHR)MFDaX0SR67O@j{)h0e0KZa&VdONe_*rxzN*eu~K^
zN}bs+LVXIwEo|={x`(2ViwuLa2~dWCs7Sc2wflrHT7CcCFn(Oi*xnnzOv9Bs{MAmK
zat5-6>JgN#RuSe%(;n|nezy-OjOle2rf6Ru^~4KU2V5@bx=aE~lR4?ED(*OTL$Bp-
z06yHSi&GAD4mx8nC*>2H9$G>nXESCCjus1Kv=y06k!JEd^a+MK5cQh@z>%Qj<LCA7
z4-?RCVK5lcgw*2b`-$6RY2?0!;c|kE>Wd8a12Mrc^$`0W=(OlFU_1P|8F1_s`lwv&
zxknBmTf&$~#a6@kTneqKR-Xu;&lT^MIz3rh9x|mS%smS6kwg$@5&J~Bv0Xjwio2$`
zgen3%8{{wsWv<I*YgRrGgTC_z3iEUoenu3GQMjTk4EM2KlarwzTCicz^4Z;=7h?~_
z+};+@*h8t73DbA2h5+p4(tY+T6k^Lqsn&A~?cy#~KN555Z(;MN>MrR^S)didL0ZGC
zO7W9@nDr4wo$?fr91CV<qq1+|!|oVy`}yg)TZ)#y&2s52dp$4k+{7KJ-2E^A<aHBg
z%Es~ecqO$_S*YXTeo-mzf*j6mRJetmJ>Nj#lQkwVAg%3YUBJgbL9tyOi)OD=@^Ki;
zn1D9bS!R8l>r0#XanIoc+9@ZN^lq#XAsUofu%J^=aQJzo=ejf%k;0)2#gM832rDdC
z%!AN@yjcHaoCP2zl3%b^R*BO(pT3(E{3YF}%&c!H*vWqz6%n2L&qmxq8I1!@oDusn
zon{HP@aYm}&1hZ7MqscZG01mwr|i6fcCoPSo|pHZuyP<?)1FQWc7t*=pj0yqGs*W`
zw>(oxFULw}q?)5nc|0?qZLafbYx^_uNLpw<$|Xd{ayW2R4s+k}Q1}tbe&k^5-?oq9
z&d6~FP=R;D9@8(p#6yWMSI_TH`d*BIK(rMZ{QFLv@Y}B`gMTT5qsL3qX#Ry7JCA}S
zxvO>}a)>A~jB2Na_Z*-8>Jb#T2pH%PKTA;i>+cDQT~4#+puo2V#1eI@`lb!{#e3Cd
zH}8E(#RlX^9mPtJ-OBjQ)RIIwob5G921SFk_62Gi_`nIGjg`a6AP>xiHUWGx3?ILR
zp%@<n^N>v3fo*##kXjO(?P;;PPT=a7L$Rm*_^Wc{KOSB%o->@csZz~Ml`IVZI=5%~
zPJ;?ld~@7&_C^ptW*mxR=Uq>c@6Sf`>OTkLNCRHc)^ujEQRB`A;sykREdoY5yzhsI
zX#_t!(MT6AgKO;F$>RC=_DkPhfgitn>$BojR;Cf`z4^@DPdNqxKW09byO{BkJcKEB
zs-o*J%E*GO#u$`4tKvachuo&Q{U3C;4ACkn%JlAM>yMAK(mc14j#Q<pO8QwK7n_TT
z77*-jzyN<4nb*I!u*vzCttIcdk>aSQb-numpkdta^!pi%XFKM~WN}@)Kk1|SEbu(O
z)_qLzw|OredrSy9IprGc4R)S;PlfCdx7=@Y`)plxMnf|TH0`DT<o60}|7Zs{Lg!GC
z2T_L+WywuWzMu*vTtbQKQmq6-F<sdQuo8w_V!Ddqup-rOy!4TGXERUyzD0*%F}cy2
zC0Fo<k`@NFqdY2AxBxzI9$gbG*Eh=jc$I1kbm-DL<YogXUi9LpLGaz=`1>vag&Z`p
zq{Jdx)|^yU<M1gfbG%jPp=UvF{mDPI$2%HJ27(^%@tGTUeu>jSvAb0C=}DpjAT%>9
zSf{GtH)IsSZOd5eKpEM7=Z+D<pDtlFrHu@h6u7(8M!6*mlO@B{H<-8MnXrGejf}^~
zsJ^x?=Kf*COzqCJac{*uRzzz~zs?#fZTL>`1Ro+d|GTsheTxR&R88kB#X)*MH-tnq
zizY#0)MVchf>++0r0QB6@pKIZ`2BlWm6s~BNR9p8I-CrrZ!eRk1sqraiGIhD#WT2c
zNZU34{hh~+?VY}e+Uc>BMl@iuqr9Zn&7?fmVsDZX8Cg?+QRXSg9A_<HqOW23+@$hD
zTqAd;EkB(6P&%LMVF~5Y6rJ#t;Y)Mit6eqMg~o(JzVn$2?l+v|A)|5vc!P`Nh#g1K
zEPXQ7aht7lle;X`f!DL8GpmxZpq15JOFb<{5JJS}s1Kt&@?wgmj#kw(9hkSMd2tCE
zEGo2TH2~QI8uaq`7*JA+PJ5&X#j@j?j$@!B;czu%Fno$&bB+$QmA=jurtUt_by{1o
z_mEDaaf(uP=4XY(o4x@st`$kbQ`*rE<eN4k!sx_G>S<<|PnQEPCDK7H0#<BCsws{a
z4O7zNgT2-}N&Hf<@q|R#+kbL;=S92Ct1Z>FI=zX*G@klFLN!_g9GSQwPoc)Fq{Hfe
zRyI;B)kuOt{{5oOkjcimKhhD+S;=;Iu$F>)pcY`td|}K7PYVIh!nDPIMjQE2Jjrfy
zrwi_}yg3-MD=I=$wN+`LSRr|gr-5%-s$W2M#RNht(>X>@TA)bla6IL{ufEK2EsG%=
z4OO9_p&le>s9sZ_;6Lt9_+S2qb1KC%vBp}tK8v&<Z88q5Iyr#y)Z#t}&Ki@;?fvY!
zo$HFhdYU^;4h(1QpEq8_*924OBSN<jtXwX+MRo*Ar1h(Q$rEeY-h;=DC*}c1S?D9L
zS}q@80YcNFT6Bn&(J0DSmV7a#GVBphgvrp5H!U9@9ITJCviD)|J|oJ>(lFnp_K#}O
zS4@^l|0X<twBSWnWe)I&U}x)Ic?x#pR59+WoJ=qj;3GcZ{9#Dy70m%LqfXA07U2|>
ztRP6urARZQjtcqfR2@(}KZrhWzbTA~H%vi9$+H*ZEDfvApYzAI_$4)%fbnG*N0NiD
z6P4hj#$sJP>B@tPYTSFsoAy?JYUXzSf3-0bPH3?InV65RZ7qObf{}WQ9Iw~)M*#3)
zY`oJMZ!-+Og|_!bFsDA<85C<c5;0-kIm~J_?rP3g^v~!NgImLptT>u2YudXSLs&it
zUXPE5V+#Z1mS|a-^xnK3%tKCHMeCFgZj|AlomLz6axJyA`h+eIXZ}}+-X#(yb_)Z8
zNWCF6+iwOq(H68>jdrwJy@kvHYGZ#4aQgjv$n_~^opWkvxTHkS-&VWZ&QY7?gLni-
z5?Jh|utBvZq+5ZHmT3ttD&KSJ5;;fHNwA;ImL==u80{FHpx_dw5`znnjqiiU5Zp<b
zRFtf}<br?i(6`R>oB6|*!2dyp$AXQ3-~YU(#w#0S(eeR1o3EIp<)i`*TwT8Z%a`Aw
zH~sf5$<xD#mH?w@&WtfeU5})?Dh0%Rl>9Q-$4kqi$I#E6s1y<JMbIo|I#pJ+zdp?6
zy6|<Xl&6C8r?O3v@6Vl%BnX(%MiD~3inK0P46aFHz5&IV2cJfF62BiGB2OL*3<{io
zu_Q$_Mj>rxyc`&nTapHzBT)pDD0#Uj$B6lgoa%=CLYMyVWgx8iSWB#2GmU;cZ1G08
znZXC4#1F=ySA4m(n2PcX{%;bhHzc2(9^E0IzK>@=N5+|aUN6ub5*{uso%|3Uis)jd
z*R84Zy5F39oVD5;S>fUV*xhZ?s%cFL-E3E`lk1D$D8)LGbpwqtsq`{*WkuYP9a7QC
z%_#QTWBtY$Bv@pc>})$s_ktQa@Xv64j%Ct5E;tjw>o4)1A@M$OiU<*?HH`8U`JIoX
z;3ITthMxoZb-P($jR~Re++=HVR5aSu6K#L=s1IH0@xOC%w7yC*&W(TE^&>(2DMz~M
zqQkjzZ9ggpaI?s81)NNP$Xblmm`KIfMRW<WTLc{1#6P@u28A&QXU+~@QAp39k)DOO
zK7|=f7<h#>%%c%ge}|$+!#;c(D4)&wm+PQYe(U^b^4sJ*0g-5*iTn3@7^ZQoP8w#g
zA_ff{1&f2gpeQp`wMm}6cen{f<+}Ql7v}ab#MYiH;C3yz@~0yH&n|30;=a|#uStrv
zW~Ya%mqN;IRZ>q1C8RoN$|Em+zm%lDv&Zb7#=E#d*^45tfJY`;(iFDh!sov1b9nuB
znnQI6S9F{7yUT46i1`@0sN+&wbS4@TxYOBta?(GRo9@GKKtbmeaop%`Hu+*)g#6!Z
zPWNmAP{UQ4jVV+tMz_X)CSI<va^A96A<e>IOv(-RyXpL=#9(^q_jYBZBd~I<IC{K1
zOy$e};pt5Y=n_B3T2sj-BPuE1s+nR!Du+&Y=z+#42bp_Sm~-W0jItYQWX6;ml3y}Q
zSV6o^>!LZ-qUP$9%f-z80_A`t1gcC)y!c{(FrmGHBn84)UZiAJ%`w@jf{&P1>7ct@
zmHm_wf7rD7KD+|1Qf?6c&<5^!?;;PGrTHV*`srw}bQ6wNI$jIDS37M)osX|rWS_eE
z82O&=5d&X0cz*7J4ilgoIkAgTUn>pJr{r=GuPqgV?Q{;kQ~2Fp`}y1DjyNtJn;rl+
z1QPzU^jBV-8@G19=fGQX2)aS8gs(6qkxIT4U9$UdxjCB&LVbnEy!j^QM_pZ<FEIa!
zRQ*wM$g|@3*Xvnnc1|j|XPO8U6v*8qIwOv4N~O=8JqS&`vWJ-KF5~J9l?g&m2^F|(
z0Ki#5{<G0lNuq7fb>Vngz)^Bs8d&1|nBY6hH$9l|^Dt)UHHH4W!aW5h%a$P3NBo+&
zGV2}a`bK&$V2J}mD5opDdE6VC=t1f+;0X@HM*3<dG!ol1AlBwqS7GjN(<@@xT&TY{
zo`M9%OyB$Q4fX49ag01=vy}6i38@vL)iC0!lG{7Tpn0amtFPHBB|%-vE5N^TBXukr
z{-)bMxqq^t8PRY8W8EkJ&HwaWnZdU3U^T=QkT0osf&%~E(cd$oMzlLDSz%?cZXPB*
z1=%Gx*!`1G?g;umWf$zErPtr>XqpcnL5=@GXBr_qYVM+ztjre7Zcr0ctOd8_)Q1Am
zc2+tEys1A=9$lv*k#|wUSAdVuSX_teJ!>3W^zORUJo`XXYfLzcU1<*~$G&pB`C_`Q
z+#<)5TD*Q5)%~+CCQoQ9(XGO$O^z4xd;C=5&QAO&)S13v%7~<IxC)#C79P}Ukq1L`
zj$YdVlNkK_VQGRoPS_q>4f~7fx=Sxz`Cg8tHc2F~KhQsQtvtp%1+-Kp1ONFQ#=cf7
z#65S{{u;bi@pxu`X%vvM_a1N1eY3_e+gIx8gxf(6Oi-4l?31Ny^k1k+)z!<f(J6oX
zN2efz{7xk*rn~OVyeIlFTp8u5(Jw69krI$2uS5NQ8Wk{*|2|i>FnERX!T(vo%q7=H
z_h$3NKMaw1t%Sw^5DuMSItaI(_H{e1Gmpcau^J>vj#nEh8WN*Lpx@X?{f!Ga6CQ%e
z?vhNPcRWy4ahay3(V7mC;+n><ILG?`klsMJr57A6QWvRiGQGbbkIFrSVV)XVNujyM
zP;-3!hV~Q`(%aaO%!t%F`Mts6*Hph2JI6n7m?Z3ekkmpVa1)xzmR?18ep8p4#r-dO
zX7^=F$USOg-02`)QA<z30_PgDC7p5HA$!ZLdSW*y&TFqf+fwmY8o4o8wC}78^wW#a
zoO&M*pIOciRKY==1uO|ss}EU5n4)d3+-cguy2%xbjML<Os~ins@j2us_-qv%WE9?|
z9C=gIjON|}lu){hNeki6#6MKCzt)-GednBFZ?0FhVF=Ap)Dgs;XjIl8;%qk0FV!ar
zj<TuNz~xl2$3MhRhTSaSZK*)aEN}6<-5on-K|Ii@S|8SKHZLpH(K5MK-z^~MnBV)j
z1rnc%J<+zZ@-5df;i=B5oT&Zfx|aP)py&G2cg|rT(H)&q3-=NvwVV>hRJmAlu-y2S
z%iNy#@G&`Tr+~h4VF;$0iBK@}`jdsIE4x>6db0&y=qm6_M{wmjc}&j5Q>L$!Gk7@K
zlgM{B%W3ol;!67vx5-XMpvGSY>nI-0&~^a^Mbs490t;5uR`0!NEHYT-^%+z%OcVEL
z?~McOp&Uh=7M^r1Iw~FArDW(o*p_l$DR*}%bsr60j`xbm3XQGb-{tGC_oI~T#@fRj
z_+IN|{Al334P1iVDPhK5&>$d?7|`3hTy^PbNThB2NYG?`Ew59sy-Jy;YN}{#O=3Y(
z+r*a68iPWYlzc)8Vh63<5mU_{GP{<Yy#_qjE4wrcSk*->PcT?FE#d5Q+HyBI8fak&
z_5^}Pr!FjRDz-kxl%$5liONKf7twhXYT#vbX7bbKx&9Z@k2LV-PdkJC74MB3ZKBDU
zEd6<%9)IICB>OBj*(WO_AwsLekJ=X40v{vTbfiRE4HdQ*$vf-EJv=eC6I}0j41iEK
zh+CuxytA593tbhfe_PwZ&%qdwvTn!|plsf2OaA$tFjQil{q5)jY+e~Ryd{^*(K<g1
z*R-dX@>3?4@p+TXs8u@mBb;P59_M%a(}#<3p8kdQ4<a3Wv2&T`ar}R|{z`TslX6Fu
zg!`my?v$#CApJZEHN`1<!qs*cApU%~=q2MNLxm3K$Nx{ltHqmDoG*j~0aL_kU>R#o
zsf=5clgO3gb0Sfk)L(IuC@9if${pX0lrWacHusc|LO$Pto%Y*O&e=@Gq*CP`I$fY)
z2>Ss_c&LUN5mDl&snMK(3$&NuP_qFZQHU<`{OuDs7#MCXgdg7%3ooX}fNbhvHMYF6
zb4fy<myk7zuZdI|C%hDX0}mR8mo-KW=hNpWzRfI1GP7Td>#K;+mwbXJKWPNb+uM5{
z8ti<*pN5+w+uwERi%6@>t4lkd{(^kOnNv}%i^h_28%j1uKVfDIgV<VDK`~!WsVTTk
zDUcZa4xDzqdJuA7lkvTyAmu{JdoLswI3y(Y^rdcKLJ>g5o~1rxLXiVj;lp|UMWP}y
zWg9+#)ERaXksHfEA|`wF{?s3h(^6GuEuWI^jA{G*LRvF!u$Ue5j!TGED`dgaD}vJN
zcJO{(8~?t`iA%0IwWVBw-#!t&r(a3c7%1gu7OLcRx@+)a)+VDq;b?bP1BQ3GjF9Wc
z63{8B3wuIimLE8nvr=HhGS<tdboS^hzMgq3<>w(})@D3&1(I32Nd0_uo_1=jhE{?1
z&p(ze$C|U94K23wCxna)2_U&$4!t{FTLYk=0b`<4La0%*wt4@Kmfo`$WKn5gJ8`1?
z|Hm~ibiPTLQ)i?`5By`Wu#_nD*6(ir^MWLiK^0vK#ML@hSM6FDCMfsG=3XMoD7#A}
z8Jn-zXvCt&BNPNtigye{TG9X5m${eO{sA{o@4z;&pO4`6P0+ws4Yb#gvH2<C5~`2-
zZ0?gh1+&cWQufJRN?jI1qK??^iim<Z#$QFTB%5I0DDRrF?Bt(bkGj{70a9iyVZTsN
z;?+MN1DQ13Fh=^_7H#IoSrm^i5;Qko%4CGTnKjVlJGNFO`^BQ*ZVKnl%otNcUC&q>
z9_g79BsvW%E<?p-InjqvrL<4%RYt8vMSYWk!6@Ud?^XOOOBZGqT<3dUt@+gPrINqX
zt7&>UM2J#z3W0}DDN|nYz-(NBVECIx)z5lZeLzc0h?0UA8AoGXxDYX-O+wo_BVo2z
zE#QxIaceE<p}(y;bz}#1u6KgXMEE4sPeg8!vvxn%J&t3N2{|X>)~*`?PmhWhzX8Mu
zYUC`hg6KkS#s!Gju+L%W=zZPG`nD&iZB@6I4Q9cXrGqYz_Z{W+SXXH|*Zp?H97m$5
zQ$X4C2)dZxsE6clXEDCAFWzz){Kbaz4IU~t&)}$o36?dR>j*p)!)>@>QFFhY?Wu4u
zIxRUi{u!27je0<PZ5B-HG{&O&-X8O>DO()%5w94kSA6{+-sxgkx~4ZN;{*8hv++mb
zmTMD|b}4AF^Y<s$WTX1wlPP}JS!51A-9X=#ImdOcK6I>VT%JZe8oX8sW!>v796~wV
z5+3u0FJ@}P!X88N&(8B2^4wEZ;E3&ZbpTCS3u0zT;IY<R{Nx&KOrOMnGbK1~Y)e+C
z5D~2={uRG!g63r&<$DsJ05ugTO9~^xgpe8oB2zcDR`)#7?>5oUW^vv@sDPYw2bgO|
zx=W+6-S(z4FWyZ$u{yBUxHl@L<6{_E=B<wu3~%0j`8_5ld4TcwPsxp0eOA}Q|A%>T
zfop`{vBbf5lWr0Wp$V4;BytlgQ}gA+{FCdtQOh%iNa+C`O~&}7N_UTE{M~+RHjU03
zA5`I&7T#ob^z5~@0)2L~0H^Mi7@&?y>>P&id`@(<SE4J5vX43jmNc(&jp;<Kw%iUD
zS{&nhK3lAsD`cQ0B?<M+il^yMb837crpIY?613bT2<${<n`}*D<s3|3UgwGoiq+fw
z%c`-il&LbphRsN)+y+9!^pp`=W3h6B`OlnDehWfj8`_W2?Sk~C0tFr5PT=|!v?pdg
zQ8FUE-Fr%S?{l5tRoB;6J(i72&1XpR_OLavb&`}BK8?MbRHRx|ILABz(oj#XqBH|I
zK009zc!Sk@D1yv+Z6^c&ta3zJc)r~4=nh|>iYo6lLZ1C8ds6rDZ6T72&>=MXa2%fp
z2|e3DdqhPhF<en590LadNYXD95fY`RBJ5fK=7*o$PKDYf_bcj|H?(!CYj31Su4D!L
z!%lM2j-^K{2q>=7TyWxK7-#TYBYn{!=rwOEcPeVva!GyIEczAMhd$huyo_j4iP4F0
z^6cC}%14v70cLe40zMxyWfB$xo!GlT8{pohxww}}$KZjRnftLaq6JA87X--EoZ9=A
z@sSZr-=A3X?L)jUG`lnWY{ZCaObOp2M&(QhwUU$-!~5Os`h`_>WbOKGuFK(_f5qBA
z(9$zR*lQ~aagn1e)+4`vC|x}=(|;#=<7kJWt%H|Wm8ga5+k3dqFjF{LRdm!pZ>gf<
z(f|14<UgGR{u4_2=l|NR_I~|nh^scFV62v_R#>%7{#?D<r~1ELo$~!=6}QL#DJ;WG
z=PcDg;`jeNwtw6H98kU?%_p$lEuM#LIDEX=+}+Q8k6Dd$1y>?04z9hnUSzovRNelR
zjUt5~M8h6BK~wVfy4G_`TZ|{1F*yg|pEoKj;+(RS&;cU_+%UPHm+X#8wrFP7OM+Uw
z3!bzkuI2GVyTyx5&B08&Uq}PSH3Un)sgt>WupbKVFy_D$+zR=^bN1&Ne#Z6^7r1Lw
zTJ+w)zrKytA$zrY4i{A`bvYNGVa1b;Vx=V_n#x(x+f^5DJ|`STDxhqx9Xw|Pr#p`N
z!H;CnahfA4o-zgK1@-Yfk?lfH0nX1nZlyDa9vyO_7U<RjVh)O&8D1%~{`O==!(*hQ
zImYBQ_^7B&J02!)|3++yOe1`?<AY`f5GO1T5%RD3ON1$)WeS~nso?IHwBf;p3EKsb
zetlsBAi3G*iS`fgjl5~Z=_M<$MIoWT;ruy{CS2~uN$V^fsRl1jCcGV`OuuL50oLaR
zd|ec@J_IrI5pt04qs0vHm0y&hlzUh!r=d0B9z9@*6QQ~}5M)uI&l@+BB0{sHi}j)<
zYO4`N5EpkK&C@7BZ(XwDv*k?4o~F6K(?&=MwYxpzgsiVA#b6ZmYBT|LL1Gx_<tU}_
za{o=`I@wsLR!IF5@TF~W;|yMxc#iJ<K2Ptojn6Ex7aRCttoou<ojNPy!zsl>G?Nxc
zR^!GqqD_T%Mkz4F+1C~R5Hn;<HE*UFV$~4D`gFf_@(pduAj}f24w`Oe>_Wf+hIrZm
z-ngG<Y3csZr>vb-!wzUgRM?Yhy11KIdixw#pgZ~syRzP0Gy?X3ea$TXlsuRaV|BBB
zbkM4J5LYc_Y6?Z%rrZs20z>dBDMM9~prXk=?MsPO=!tvi#wkbr5Gg0%w4NTuh}I3U
zh`MCO?Fxa_A?|S|+mbm%z9qKJbNlOjS{>x2G*K<JgLSAUGYM>qa*Ae^b;+89*e3mm
zz!4FN{Pfo+*!oi*Kl80nyGBR&0HlH#W=cC%WWz9dXrD9vGMqfYVfN}&?uER-k2H}y
z?BFM-0lFg4p9iYDF^rxWuX6OfLhmK6K{}en(9V3=5IK6ubL#SP?24FqE#rE=jQK-K
zg`LiI6bv^s@dw~#NsP%T>~j|6KdUS$wyj^%l=RqK;-ln-wL9nn^7-$oJG5D`ths5g
zq4V!Xj(b<p5ViYyTt{N@Kcse4Ab%uM(@~gWh+0vjv`XpFO4YCiY>3U4)-M|^)7eDb
zr4cDXxYbDG_z;E!Qw3*+aoq}k3L-{#RU?=_(#mv_bJYaeb25x%hB+1HZ3yLhRR?MU
zRIuvn*|xGm2h8DzOocK%yek5&{ndDDj7h34;$sPiHAOV@YC6Sm0Np%&tj72(Hs+8x
z6v|$9Sbs@NgkxJtym?m(3oAH0+vnw(YOJ;)2}d?jH`HYnGHi=YJOP<d45guC!f43m
zZ0u!vP79z6QlM;*ElS!Hmt9z#h^5BU`wIk5M6HHAMj58`D-Vs|zL<96BL6Dy<OGZ@
zCo?`ly-I{&G1P{GC{Na>!&9mpJPU^C-@ySBYR^py+oF@`Vb)XJsF&EnyB%}me&5*Y
z)|kFcyBNq>mMUFQIUf_fjJ>zM8|uq<%J!uvZvFt`p&N&b(b4fb(E?h;_z{<eCHlx1
zV8_2@5}y^AT^cX-Ke4!LAy9v{lDZ_Il?yBo%QfG>)#}gq7b!yN(SI!HCTPY-8t!^q
z<}m+A6q+HN+3NaaW>E&;f1V;@Tj3sXELW}h2k{GSfZ4xuGb_g+`k3UuCD^G*Ug76^
z?G-1$gtYkr!h#_i#s?^dDoo3b;<xo<9|i)7crt9Hiylt>rVJhm+is)KBi$B~#&C-`
zzAiSRHCgpvoK5tI*g7))@CPVTkWD1{K9yg31u|m>@n63cn=b$5mjWIc2#b*)Ydaz=
zDT$|EAB>VM&4W591JMkXf>Y}(#Z@w0v;i`JzRal(YFDf%mJI5*gcQ3fLs6Vg^K+P{
z2IaUK!&Ta##7IJ*OuBLHG{s4CUF|xnEMree=sec1?#>0jSa!Gzn9IyHm$FF&{sPt)
zE)#88dXR&RcA9;vd0^AwX$oEYs#O*kf{i?iRKEXDIyPtanYz5V$aQ3>4v``|4mKK4
zbGVvcN8#SbOcC0t@(s$=XzD)qX#v&K@~mTMFCN}Rm$~DnFMcRUKjg`ldL)gys<10d
z@A$xuRBW^Z25b7$=I)H;<0y{R5RGAAbaR)vw+Rgj)Gu<T)WfBZQY{!sjgg>Gh}NWx
zD}aYgSKQw*WF_kZb?G2d%y;k?!ZHrvzNsyp5@M0wN#UiA64R=nPK~~b`Y|U#O43Ba
zNt!(rex*`sPE9HsFPD^|*$TVm6ev|5@3Y*DCcgzaHN*YPsFv-<l}?x@%lJrT%&B!u
z{nK~~wL`ao5|d%zi#{{4j;(eJ)tyG7{hw_C#J^QT?bE`^zdE<CJo~<JP}%ANoJJG*
zLy$$4X4Ntrq6SbYd-yW(+A2#YoaY=u?9I`}{agxIiiAmtE#I>uCU!HF`|%>M1`|~p
zWg)BulE1Is4c2uOzCBVNLmq_0y=@BXH@4kQ#P(&3@K=BPU@A)%IzJv$$cx)sjka6s
zmXpvmrCwbly|QEYFaE@D!iGcw6!|7HW(1oB)-4hIr=PBAlpaL-qnjRbol?+96p>h2
z^AIZ#^-5<hBbR^iJ2cqO4M-1XlpdRXURkgw)S{X_`zK&tL%~1R8*&kwU|x0dmx{B>
z_Hcjs^l!-=W3wX<q;KiWl9aFt^KL9MWhIwUnzDr@s!YxUZklQ-#E|?jU|00kDd$TS
zpKvyE%TC6&#Ywl>my~chevwm(BA|TdyLnNe>;IdfM=OaQ6r-t+7?m-;7eBzij8joi
zW3$wJb`gDvj$IeUxJ)FIb4-uIgx!->k`!byVV4;q<#FZa&h>NqV)7}2{+rqCcxk23
zi?}O?<eW`v55rX94ubhUaILtT_{{*FE!Exn(UfCHS8@dd%}Z6r{_FKjeXK;Z>41sj
zZ>+uzb#gT|ZvsQ}wyA${Du$;*ptslcH=J#=AH4tY_B9cvD@H1)wd5zB$W(13&I-Uf
zbr$tbrvxyw*}5Jwk_9m?;nDE9fAS&4B9ilr664_Eso<F~i^<_x0o?Rpq!fg2)h<-B
z#RElbb`1UHzkj5%@|0zpuYA6P8+H%|=d<t7nFIwujvoKfdt63mr$&tavM{cVciA4A
z&>pr4O-wyApxqsvmLwQ6B>J24DMsXUw~|51?6TKKptrEB9-`$(B94s$J@SoXX+V64
z90<JGoe#C+OBUpP3?P!(Kg_*;c?UB_wa$x%&2Z(wJs`V1qxdxuSJpO=xGqhRA*%U0
zzRPkg4gI1csChkrfJF5ZQ7!lYt%X2>_!_A?jv>gW%&M|RFXt_Zx~3>=7d~69&BA&t
z@S%tzNM<_S`fvDO`Hii=mF0wB2sh6J?yu5ti>&x3*J0Gr0kgtE=R0tH-&lgV*a;pb
zKFM50#99T5Le7sSU<~-Qg<r1|xi}QrV9NL8?Py%n(V|t~)Z^B#pTjXYB@3W%NAa;%
z<BwIJ?PZPSMi($q)|p#zw@Z=qc41|}J8e0Al1u@Lg4L<zzoW(EQ8v%UK_BzA(ygiO
z>S@DH!&6wZ0j5>9Wvo$h3g2B*Fwm3eINU&W6WmP>r-QpI94fx1k%FhzpZnRmigy@U
z>lS}c#B5~?+fE9GYokhgOOUHj<@x-^x+P73lZoavH-Xj1<m|)b9N75?Qh8?<Y!m6s
zIZ?`v<?Q1|Gxsh!#U5+g7Y?r7-OO(;&}L8a1Yf%=fz$h&Du0GyI*n1j@vy8plc7}9
zuEAdwl7p!`L!Q`Hj}8Ri)D5{RwDOSV4kBwc#1GQ`5Ev8*vea>2w%yL>SbH_1j}=9h
zjI^>2N8hqbL-J~5LK&f#NmF>(w?rg9j#IPGw0eBkRRhlmFE?WZc*M*2mN*l7jgZ)h
z`F_Ey19)g4v_BJ%8wJ$JVqwRSljUgKSw6Q%F1tU{F+ahw7A5<GnjkD^QcH{sTXYNC
z@>_k`=S*$>LWIx`7ieuQlSjlK_k@OYp0O+&InKcRoM(qktXs^16*phY*g|v<_^x!f
z=8zTZ6WsBlQK5M=-Y}z0tP>cXEq4zYbM<8^82AwrZZEe5BUtn*ggh(rbjT{j!>yFw
zTDa1&w*J&sg2{xGJcT0Z?vrrVeoPQW0cf3Be-FSvCQ$Y$$!nz9A0LBqs4DzpkZno$
zDOSwQ0;F<2Uh{=&$7~ctH-MqHMV1=&nVmwnbz8SC3WG7sgCt$zn47?|jWR|{Y(_Qs
z2#}HYaxyFibCXA;EEpaB;2<Yzg&l4w<q@^Z7RP?_7vNhK4eR-S`e}fYK%Ls~5t#wL
zOL*+?taTzL>!Br{EPzYS0!$SX=_xIj8^~`4F_yf`uw}_d9Gi?`RD|*=YiRQ=X-)Z_
zE#`+Bt+Ns54$rCLX3okkc{s)8Zh_jVHoyzl0!<5=Al!gutXfDtsA))%Hx$_LU7<a@
z^!~L$A$U#kLeiR>aPbjvhE|up9`L;QU+6GA_yhO8@5>G{K3K!+_Z?Ym%eWorXS^CL
zp@g+LErwpTIYOWobL3q7q=f}+8cuc(l>(3~88?#3B%ITwbP@IsbUL^d_{zgTAnb{=
z#Kfw}`ZiRic}bTmP~NGqWcUg8IT}JBjDvns8_g%qUeV}EmG6_{CwXXbi66g5N9~Li
zRIF~OopwDlbHz-YsXeOIakp|*l{~~TJ{WIPpEj*kxNlF)9sAU3rC~VNXa836=yH36
zO_I)7%BsecPeOS71LqdJ*SvY}1550`3z*eOD(5<Raue<UE%C+43OG0Vo8jj*n|JPL
z56b?t6d+^X7v7|M`UGKJUGUR={)=~_PEa0xuOgR8Z9@iIf`6RMDQ>;~z)o+eVJ4^6
zz!!gekH4gW){b?Cnc0S!lb!zd{*SYNPakpJ;jpia<2#d<JDCb&55wgY*MJ^|EXWZd
zP(zO;4#aIjaMBNisOanp&Cl8A1K(|ltXvzmte;ZIV`+4+=J3WPFzXU+3`@f4Ne~{>
zZ3Y<(Nrl=IlXAaATv9Fm(4kM#2y9*fVOfBq*4>7Od}+w!IFlEH2dtiM>laO(!`Dfn
zo<$w8A-}}hbjb;s4TtiE5CF)i3UI|JC1E338&$>|?LH7O1P;kY<iCUF9_!hq&SLW|
z8C0i5$9dqJd7*HM_!_G51@0l4`t6<i;Q4%goga4|M+U=kS(GL{uZ80b`G729gYPfb
z;FqPx<J*a&4<iL?*nzNt0`NSxRk<_g`ulM?Za6G8Oo)#Y*EB1d6^QAD(T3;ym2F)+
z^IP}w7-yclQmy0A=x>Cey9%8`TDEN&Un3n<uI5RfdZ9Y&4)X#Nw9Vf|)fGe4o1H*x
zU3r`pR@)jVQxL9)S#eBF9LiQ?p|r_tsTy}dft#md$j-%(7z6%(f`qSxy?ZPa{F}d%
zE`0OEPa!N_U#2L15`ajJocF9)R}JzZG%YOTvPjHDVcr<3M!^vi!w|{ZkY0hoA`w&%
z)gC=t3>T8=ZyFs!-C|+;sglKimr>EB!;TYTLvDoDXMd&pBX-5ZJ1bLnE>|VwxXFu9
zAIae7V$<PbSS{yjz^#nfl8O4^&q`EZ_fYxu?eKtX;RY-C5x}?G(rAn$<!N01zJPun
zv2m@paP#kuZ&6HcpE#9m#e00%v6Cv0zP{S65kJXxm1l~pu$KJtw^&{X@eZl_SsyH<
z*?tBjF`fyjHLSms=}}>-ww2{Zb~{S)Ls^=cGG_GLid*f9T14m)Us{=Z-htQPZ(bdx
zTvwwu56b&JTcGvDGNypuP2sV(2GX1xzYHL#IYg?<GUnyfbm6!QL6@G?e$Xa!ha1*V
zie@$^zWYv!<o>5!2(KmLB<r#kcpYoq=wIW2m;u!79uHwFnxLEct^Qf=vy<Fw)627(
zS(qO5l@IahlH<WJqR3E4@*1Y2xuN;OBMKHHo;obe00Kl|B(c<Yr`&q}h0b)F3$%+t
zQ3ep9+%#EqRmsU;sWW>u6OSCF-}g}RLzJOqgigLoa%Ek2X>upGtC?a>R{X%|VBjTR
zU^K9^Kal^4W|TwnecywuaH$`XhEaf1MAQO#d2Iv;r_O##aDMH`P(G3#2Im!L$xo`e
zv!mdv1G|e>SR;YBhbDh&?rb@Tth@6M0^ts#D=As}q_j9K_uuc|UwR<di}J>W0@qJC
zs|THD$ck$cx$oFTqXH5@DVtyKlaGs#S#v(Xrn9cky!cK;eN{?(rU51ep9QOwU{bun
zR`1L^weh^!cn3(B#IXN3Op?Wbfi}1a5M+}TkpD|*s|zBgxsq+z`H$4h0J>#ky`P(s
z)aP+IcPIP<JMsNBYx$TfGv~qHQ)l&=gWx4^EF^VZ(IaEFri<^VX4#(1b5f``T9x3f
zMPG*Y*NboI$@hBss@Mat7gNfU2H7OU207iJq}Ik-t0wyW<28yic-i7R8Ys^t@`rGE
z;5Hv46xC-KC?h!%_ovq#zu)wly4a#xWckLfUwer`YY_=;Gvq&_(ou}EBenCoiq~aq
z+O=@@O5C)#VtaOo%)UMr{AA0zaE1O|MOR*gx<i%0+-o8<Uc02v6r_w2k?I8Ihu=*}
zxRQSG9O791fk4UFKbV?dar#>CT~Hth%y0$HUwkTVA<7h=gTvxP!BfU-Rbqc^3=-<a
zAi3IP{X3ePbKISRa(zj(!k0o$Y?F>pMh_kF6uTj=W!f30wBCJ97;|=J_`CnlCx2vR
zT@(1JsH}re&{Qu|XZFP&**cbAZ<_x|SXg#%^2A_1DJ>r5Id?>TJ&R=Eyrp^C0}wb@
zf{xDg{_zu+|7?B{ZBWbgodb!@fu;vPO1^Ko!TbVhOx-M@LvMW;6-s)bb2~bW-|$>X
z*H6h3TUs7wV9QG{BUaw;`k(E82ES#*$ofa|d}#`?&(ClmWS^B9gC~((P5IFR0sGVu
z8ivw)J~)T>m&^X$#b?p#_?*m+5RhX0wX%RRr}4`Jg2`8J_R}JIm$166(S$*L+90zS
zJTam96uAMHW4?JLk88dwZN9Opnpqs0Yr42taG_baFO_d14rO$x-2m2r&84lt2xD%|
zTlyS){B1&no@r4U`+-HquW<xhldmwJPD0PKzB%Y0l+zJh;8Qez8(B~%Uj(jtqkdZx
zvr}vjx54*0ND?Vy$?h59>CzaZ-?xx1oq6w|{l;nB^w2%E9GV|jK%yXMTtU>ROi-)*
zI_Y)M@AcjvjuP$Ho&dU46YczjNL_ZsWa1wQn{j$ZL?ylhYIYGuoK>d8nt6~r3@OL9
zHKWHb<-zF4g2Rb{hvV?Qd<Q_RX1=^+L+Im2jtS`+8W)mwb(OYgXJ6qc{(4O%jr;xE
z2${2m>e~Grw7lf>&9*WzI8No;Sj(CpX4){_LZ5L~X0#Utg#eBIP11?*UrCogI(&G#
zC}vb9;mP@i{Qbm1p}kps%bN}xk(D^GnmZribq0U%{Jf<LE>`cqY8-&5ly^k4tkF}N
zqN7NaU9xy~WE?6g`j6|kb%l~esT2jR56=|ntW&2mbb?4D_($qudfU*bNqojngl{;f
z4(`_nhn6Z#t_Fi;VL_Fgs->C!s<wvBnXCmVs5@Q-$|5vyeE}f;8=T$T@)Lm*TPu>H
zd&eIQWP86ICI&`RT+RU1AbPW3LDHEE(L!Vx=1ProC2rCNcX&_wbv&vBUN=d#WX=xk
zf(!xv)&)~C`3K9GyWZsR+A=K_`QDxykW~1vf1;9aH5&e{TB5-|{@~A&+!dK~#{Wt`
zBGc*kx*r!l@Tn|gIdwlJB`EGr{`Gq91D9bU6e#nnF>hZ#%^5M(f(?oTC`34}YbIWe
znlIS|H!mHoCBQsxfY;TYRoSA#0@?SUoElg+pmtXVasSYb6U{F(Yy8w!urSrX(~YpK
zE$)2@7+U#M606hS8QgXjv)R^SLC?u7D8O-Ej!vk+6dWS@8Y+i1Ay&^LtGo!wea1es
z+B%7--gWUDTa4Un;HIk#@Sh33AKf3`PM|uX^YJ`{)#s#W$@1&t$-xD@mQDTz(jU(f
z^DmkcJqU1%QHH&t7!+Y>rF=Z`_`*LuO_p2nZ3MV`10JzpJ>N4)1u0nq$&L#4Uq4ME
zq&{a#V@8G;nvw**lcr#8Ln~Abe3fAvuBR%}8kzcB5lCTHWm_i*uvuCY@fplv?_SJ4
zSdgzMBsAyw2g7D~R9Q=S;yNsg)AGkv_B-NnH2YfwCA1XLu|A`BgjzBVX~&ut#o~9E
zWU{;fkMAoP*j=V1rS<w<m#a)Y_MH)ew+r~tV)BQjPfw>+1S}Xa++nrKO~WgO^TSb%
z{e?+AIk}zuT|6M*dB0XTmzdNbhv?hmUE5wQZfaPnup!y)Vj)11V~7Lr3-F6yC{1bt
zlPHgsf^XA?_F02H=gnYUgOiX&pTL#p?AHr^<=lrU!&71JnHAqFB+#Nwv+m)+SYgk~
zA1=V%D^7IKaMk`jWQCS@tWKaW-KH%omx$z@kld^^zZ+=#B_PnFk&6llSpU7`4_5L0
z76dp@VFhQ!4^QR7cYIBqR5kq@04Lu}_*0?vQE*x!fZ-#haPTAIQsS}f4DuIxzIwTQ
z`26bR^>n=Z%k+W-gE5HQMoX!(oOkx;Y#+<GLpxc+&Rf3nYC9Nhj~FZtixf)S?C8UZ
zB>QiK1r5+Kt`$p>DfT27T<{iqUgEnGUKfqCkFFbDkpTa~GrnQ7+wUfxpx8)|%3@2!
zW|m_tdP1}N#XhOPi0@%)T$L>C(EWDb(tmJq@p}CFYF0bvv(*aLeP+q&_PR2ge0y7W
zeD?M5Busu4`|)Zpb4uRCmAs*HnNI0AndtY|aUNheYrbyw$FnPc?J}0vLXK(-YqmMD
z^k^yPz>E(68a`SQr5SP-9HLkE&i(@ay%!KOk(nrVGyXidKRN_e+;6V6P$Pe;PpHI%
z8D?PRd>EZ1^lJ5ro(wMhDY%NPsmqeYXq4dJ(7Snu_2NfQ1udLiuZGu5V+}=vwN`cG
zZx2*KikfAd=Am~}$ZRyT_Aj$b^C>-{^L$EYn8oYk#lOsbwugQ*#<M_S`2A`?Oqzr3
z2)Fi?)!g2H;hV4=dnBHEMI$n!MIg+VJ2V=RVi71Ou_cXDD_dGzi6Q%)MVL<i8=jkk
zf9&}`nmA~2rs2KV@j5>0ZX?Fgg`^v=yC*<6kJjwd)ta(QhuhMxg<n+YV4mJ@!L}T-
z=LJ_w-vb+k2-IDWg?6N7)upxO;>G5y-j)1hJ0^?|m!L4?;*?n9=(eEe+Um8#IR9>)
zXWe4J#6avkp{z@!5tsygj)5vbmWf;v=_KieN1%=LSM($(T>eI;>){~0;X9M_)l?6F
zHMNv?rqCXRk{nm}c$7GeUDdC9Dq$PpMpimBbsFFM9Ef?EriTTGiu0{H2!-8)7lb$`
zFC7tsEG5B(Eqs&vG*#-Bm>nqXjnxY+sk1f02z5C+-Wf3EBAc0~?C_V$$~`658$9e`
z3)_6>8w}1V5Li9QdH*Y2%Fg{(zAO$<-9?5$pWjf%uLaoN&UW9-AQF&R1zj48q)iLI
z<!tR(7sr-d)pun}8vM112ukoElmG(7CE?CdtIzC(qlRH|DQ82S5IImqc1ZG|mX>X4
zOi{;5;b1mUd>qSfpPp9k(k%Vz5Mg%L(!NKnfuk;RPxlG7Ab++tWp4e$*<S(dgQ-hN
zaq$b5jK<nMAe#v~vgo$$hnLtC(-7(o;YWB#&_M3xP>>}VniloUnvEKV9FPv6odCff
zSv;t6<~Vi|RfZ5eQP`^05<Wri)}})&RDrnI)bB#lSz`+1F;PvWhSC|V2%l<y=J{f}
zRsV`7xS}~fsJKUe5RUl!YX%?C=(lG;$H>9@_oq?+e)*S5sg+G16&N1gm*<z5_b=$a
z!FLyCB7&HIS`A&*SSSW9*1f$^Ev<w)gPw9TziIM<;K#*H7ZKWHWCWy4$3rgoDb0*+
z<ixdi8V$?zW6fY%ZCC8b?&e%>3%hUU>ha{O<yEI}9NVHN=p5a52XI{hVtZFh#L{bq
z5=FK_R`x*@a+t7l`=TPro%Jddt<r@MGg-CZ=A{WR_|`<1H1NG7#a#&6&XF6<XX6d|
zLv*|!DuS-ZATgCtm}AdWant8ir8PO2;*^<Dl{M$&pNptHPu0WhNvPqn!WkeR%hjb3
z;fA_3NotLXY+GMJrV~J;rTC}7R#S2=T!Tl3%+uKn$$VRKN-aHSJe1fQ6%ZKI%xO%C
zh+5U`o8+y-k#ui!&jWg`&rCmg$tRK|T&Zw++LyjqJIeP2?_5pQPN5ift+*JqaA$|e
zPX_v$mH3&T;L<1bKmA^ny&x+VNy|&RBth`|YKn{5CUGs1`x{8Dfh|uEaUnhA>#?B~
z3oPbOi`O4==-3m!*CPSIecdQ^!e8)0c-;|HLn*%I1)S4Zd@vmrm9n*w6j8C!b-6av
zqddqJW|Q@N7Pld5@IpYp+X}lUNt`Uuy&_S|+fnppAy)kUbU2dKr?L!6qKh=oIPsM1
zGf%8gA6iL>MFP|jG;)moATapl`f|b?*1Y%7s9&KC!t9l=<ZNlCPGgmED6tVkeQAuO
zHNVwG=7Fo3A6dp&Bw7w;xD{NiX_t4LQZgz}+D8$M!K-?V`apqpREW5Pp|iYwIbYe@
z<HzF-@_4*>@pme)H{xlWJ@{M7Wtk_+Pz|OaGHg@w2Ebj}gyVQ5l83F$rWo}SqN=~d
zmpnbBX?P(*t=Yh>?l)tvida_$@o;Iou{)s%Icn(6T{;sX<N|4GobVPXJ<c{c0@fhn
zVcqjO?knD#nTc0_0!cJ-cx2gRx+=UeQnKtjxU7hl1wBld@!T!kY3Q=OqD|Di{t|}j
z(dbNmfa(DE{xOv=R$XXo8H7#Gx7M~H9>?rq>8Vq7bgT0~ZW->IE|<s#)v?2Fv1b4H
ze*Hc#DHv;7{FnW&eLr^y)M%T^?7gR0qQw6NBQo60D@)G(yA7EO9srx&i<9$rr$;9r
z-W<L@>1quji*&!)ef#P-=VM!T13PBCTqM@_FH@RO!B>AlGUExUtu}TX^Y@##mnRp#
z{3v&(0ku(-tsiA?QgdxmxYHj8))IMYE^aopi!I=HD?6dG_`uV~Tuu^eIGPc{y)I_E
zr{p~Q%FK?Iun=upWyQe<Of;Vu>Xt2$;Gt1DTk??v$fFX0trGlj?Uj>KKO;66fOz2^
z>gp^9NjHBZv+Ov@4t%W$t5Zl-@9r2Q7MAFmSh5R>Gt4?E6Gs_#(<$<X$R$GL{hT#L
z$A_1PFAp!wFaJQha+K_9R}?=(a^?wGO6=fl4IRCI1Xr)%JC_lkxh2eLQ50vPPrTYK
zVcrX>!`tLXfbk%7HRzy{j;z<CRy;HL5fCise-wX9H0z`w&O)#lj~lf_xo+!7SSBF7
zoo%M&LhMGOuQ-bchr7vI?EbwPyVLS8h!ybY(TQUfu>iaGqB|ybW{$diDO?eGv*1*!
z1;>mLY~==DD~(tL6tHNo5^}T#Lo&kodq?0{Sso47kH1g3kS^;4rs>G!fJ%Q3Dl<d>
z!3KW{IZJX#3ON2BZauRT7q6KL!qLwcC+E{O;AIQqEFyUY8!W=0|MAPy%QuIwPvI$L
zM!}B@-3++GGF)(TI;IgB5C~sa4WmNeEO2UCv1=njIc*iC{bgO2EJ_9HW6+AdA<nGW
zxsfNZ&xH=Nr|8<Ldhsz@tyb&VlPB<RtJQxh|J!QsKl@Aj$@8brpFDl?{MpmLwD$I%
zJ$w2W)Vj-w+mb2~{4cFrk5!)BH&Uk7w$nh!I_VA>yXv6kug!!L&xkBL>Rj`T`15PC
zS*q?`6FL~m4r+Ss=6XLq__E0UHx?Do31hd^7<2dk(^h%^x1K*)@BjNK8|W3$(xQJ&
zexdCi?gK+C(b1_Aj&<&=Q0QxXp{*g+!S-qFCZzJ$oZx|$MfSfKj`S;d&xB$MmtzI<
z_J3>tNooH-+1p>A|Mya|a1iR;H?bf(NW0K~ZP?c3?#tZ$uM=FHpBx^)KJiE4O~#me
z{_pLV_J3>d>3aX)OF3f61VK7H{d#|_bODazaF_9ld|o!EqSSdzObGK4PS!{LH&qtg
z|0a*q&Dg-a{r~()S^jT7*>A7+|9zANlZV|lV^~mRGu3&+{Kh5ZB`T%@qw()L{(Oni
zXlEuIhFSVAGD9Evdda_D+aL#75Tja;Dx~+<%>s>X6eg_0yU%CF3-15=1Xq6x@Pv8$
z|4D1FwEv$z*?YF$|MyY;UA;k#msl}V72|oLD$N6IZZph@O{Ny2Fwc0YZ$^5IWg%W{
z#^WV+#SOOubv*w(40#ajThT2iN}T_-SK#ZG`TD>9M%#&Z^Uxzpj4@~bw_8u2m+gN~
zT5J2?y%b!u{0CT)0ppVnI*ot(9A`0X8pSX{4V)y|pKbq%zt_;WohG>DA$mo79P^1A
zd8p60ex#!F0YKO`?Kx*-+nUXcZ2WbE93Ma9gQ=eq+2}+%GLzpJvJvUb@?xGF4X;51
z1-b3QjgS(u>sW~ZVmD#~CNiEg!u-ll;z8qzOu%ES)9}p18lLfJYIuK{PgBD~{WJzQ
zmWF5N+8AMKy`)uhGQu?K)VWS0lY7YcH8%8LW=Qjrq~k<esYQgTW4uD$$u{I9AsrOy
z^=piatNgXebzN3mmgN68x&oSO|Ji>!b^p7+mjCXhY;2$sAKchLrxNAiqrp+`=ydn!
z7)i!V#GQn*fC!;<HWPm;;hmxk%Zqd<%r&=o_+`ocZ_hHZ`yr1W>&s*&H<+{kpFVH3
zr}V$4>-~Q(<<qC#Z8WB%4g~yFN}W3Y4@L?t!H{&&_U@N2jfSe$I46+F0wclt+F9I&
z_SM1Bb$aQ>r%(2YCu(Z4@f})$v@5>qp@}v_8c5W<B9kU+{_tq_Z4)*10n<dA5fu_O
zUml(})&KvixwVD7FJBq}&ZkeF4aYub1l1&g_<Wp%$Do*A1Va+05se3@I@y5!`UKQh
zCF(%(NZp9U0qL03XYd&K<YU5#N#2^JMDx%UnRL*nPYBZBe)-~;;XngCF?Rj*2&#!a
zhZbKx*G>MC@KKhz^BY*h8LM`S1<Te-?d~RO>fLcCE2kGt&x!UC`2&|uK?6R2dbBX^
zoo?+^9%UV)&Ox5lr-}Uhhnq9V92aVf*=+z3$n4(B_XcddSL!#>0hDi+F$4{T?^Fah
z0S{Z~Gm5Fsbk}YbH;*B+m`Sv$U6=A{Z<VW}gwt5|QFA&%T-K<A{wA6(?xu!wxGl=l
zCKZ^8+T;d!|J(%Pe3M0m{EYs8NSP#gCz2&BVuQ&~iU$?p8Zwcm8D5;ZuZ~m;tbTQ*
zn)CN%NOk$Mz^f+7)e+<imp~S##@o|ki4v#ja7ij$ga&6&-O32=evT?V(h5#0hwrZL
zpmKJ|ymRW7^8d~CzW^r~g3Qd-0O#m`&)R$C`~RoUpY5&nzxyaR(EsFrkRXZqfXG7r
zL-YQzZtoSyMX?uie~_O6w2%CE+P-LV$GV%P{G;24TX9A$&#4Cc)A`#TIsTCg=TCWS
z-}Yh$sO{O^q-K=WjIfZXsv|@toF$yXE6wcU#>vP$BC+%rTPmkP-c@1I1R0G9KVqW<
zbAp<GZ~N^hUaL8MqSljtfWMV>2&W=yX5pg5?zr6}61SU0td{DVa9PcjA<7N$xEQ92
zK_TxCRc7j614$<D=Yj~bwQG=L$=+0(@sra-R%?MO_Dudd1Y14u_qQH6Ppj)+y#R4-
zAzG+vRwRry)^38e+ia)vmxo7rNWcYm74P9-34ZhZ)~M41rgF%CxCwx>6bffGUmYrs
z&W{&GV8FvA@OOLC!wJpFeks(|v|Jo(0!g02rh+KMf`le@Ode2t-{1evZyZ93APAaA
zf~%U^*I2t`IC-wpSkgRf<G#P|xAYtGqST|hd1nJB>JVGT<3T4`3`5WsafF(mzI<t-
zJeiVj!#*jnAO>}RHa7T&axx$vUqjqZC)%RYI{Wo7pf6ugj|4asME49)XH2ZsE26zv
zY+V|ozwi6|Cg`Tn$(5QAhp?~IYK4(LOXIMqqYwFw?d{7#m|O^s57B_I#1R`j7LYQ3
zl*U!7vAw;Z_@N`r3J2B#EjyTLe%c(rZ+YMUwzd8K|N8QO+xC|)kD6$+fFAT2Np>N@
zlg}6~R6jsIv#9NB>oe=JT)DaauOnm5yZimieEomF{iJ;V`{db^_4}WDDU0d<aD-gy
z{8*Z+l{0*3|9Wlm%u|?}J1}sqS6w2L6B+9HjmFOc4@gH_fX61pCyODiL92y22U9k(
zypk{%Y`z+QI3hlDnb{8Ex1Yddm|!{dCCgHKwpvZp)Tx@X4{z{@G*J`M5<nAO)oZny
z`SCpkVf(HiY%c*}JA-fv6thE3tOh?1EH?#-JFU#FTCpP2DA+3A04RCm-1-e=abw^`
zh|t#f@@U9I=9ux2ZRw*|3INu3YAX@Id6L0Fp4m}<2b+$_qe+iSbPZ2g<dCy#djP9(
z4U`DNX_-&?cxM;_;8|mN?TI@NrMa!Pj4Gjs<#$G7xYd}(f@_J!aahrQ%9MX9el}6w
zT>H}_fYIQzbAXz^#x_#V1v)uDe|z465Nog>?Mt6R9yB)v@l+Zgn^vw_Kj?vxR|{V@
ze~nRpxxC3z5|A;85!OMth?~cDM+XUY626V_L=iwtNN7_-l8OEHiX;&JDNDK~Z36co
z!gM570`?Cnhvz?T_R(^1IVYy_?Gj1vZse2qH2Hau8QRO%#niXK9&a$kzm*!9tEob@
zX@dL=>1*!xeqvqjw%lC)gO@z3kpK3cw#)Z_KTn=MU(0{@QkIba9K(waHLM?VA#*c4
zC4LwJfq$B46KQD!{yb+)HZzm0m4D=r=-Q~MZ*QzfQFj^_N66$fP6kv+K2b80IsyG`
zOyB<GR<<v}Dy!Qc^9B+RO10ECj=JpHt*bAx%-xjk!9rxO_NS+CP}8FJ*2(!y`=!o*
zT#Hg4HUB1d|0X)%Wl*SA#tTfl-Zlk2*=}YuT*Rtpi0c?$^r2HAh-}UmI>#z_G0Y&k
zB#k0nRg_3C6K`v&uf0?M+ul}Ao5h>PMF_P3l_M%T-z(Ar@Dygs6yws7@iKG?<IL&C
z%REJ<MmRt?fy_sRZ~aPgD*n|d46P@BRcK~@N$v>{+SkE&t*edG%@(Xj87-X>q=kWD
z6wkb{a=kPQo;Ky%k#AhgxyAW!F52b`0CUg(=TrXwt@b+p!@ZPc{69<r6CGAq5k7<i
z&<Y$CQ`s?a6uAx}hi9i*jse&7GtI&cVVO}fJB116Z7d<?SM!(o?Tm4m|7QMwD%&T{
z9BYKrXJ&}-;dDVv>ETY!Srba!^zF7*<7BOOPh;t$Gn-8gZ8DDHbkrj}i+ygILE<VK
z<w9~Ci^yjG%0u!`@F;R(KWF9+Z0sS3aR{>?OEMr+rjBEUIM>c`X>t&#pX~)l7IUAB
zag>^TbhRg0d2uqi$hm;)9L%|YA*=EP$bBmv*@bbmN&YBwUUg@@HC?Ozf>#gVti0y-
zE-B={tA#B54l7%hgUoN8?164YhX_&(c3eSFZM9Q@ntCalQ)5`a&Po6Zo=i?>G?q0z
z0Ts^fYx-cD7S+!5Wu)XOY1*qqwYinBbU8_g&hDy{Z^4xm2^ZMy_WJ67%=FUK=kGi^
zoNne&&t}E_?Te-FZ>KJBAv)gdn_7*WZ{VWr=I6ihkG{SB-)^_d@n4=iefE5P{@+Jg
zLjQNpav^aXVjgPWdQrPe4UO39dPh`e=Lf!2-j?9h4*xgoz=oRE*&ynh!0)Eb^msN7
zjOK-|XMA=25svYIgkEodQfzTyWP(aIsoxCPKzS@Su9rTf5*6k-g8RHcC({`R#TxT)
zTX>&vTl6lAst3r>)@7-3bN;W1X94y<SO050nTr4WWF7zae##R3|Kwwm<y$ujQkKuH
zUSV)~j5p;94{d>)SZkV_=nH*DlBaQip6$a&I=V>vefkkKy=mcpN&|VM^PK3AK>((L
z*?LrAq21Ve6DJiNFw%JwFbB%C(bM~zXci};KU+oQGo<Fk0YT00nyC4qdGkr(3~~K5
ziYDlf6i2jANr-Tgz-0Z#FGTka^`#m^K`t`)Hb^MsoaBHa5ZHB6&4`YuQ9>ak{H8(G
z@tX@(7c}971Y3T8<Fs$@f=zlY>%iyWp5_WJ;2m7_6z~Sx**Ld(-zvSt%Sqv;9Kok5
zEQEJgmVXqR8-a!C)qyiZhwi0#bY`#?zFiu?G8Gnj)8j5fY!6&jS(iH~H$VTiU()UE
zzwN!fy=nVztF=D=@1rbn{%7W2z4C^I&oJ#+3eh~=SaGcbLG{9y{YnEI0VkIlO9M77
zPzN1`2UXHEV%nf*ed9KNPffZN2l-pjq=$p6Ys|yk08b+-Cq6*%9gX|!c9(ri0~#xu
z=<I}oj0wk48K(m4REOCc#k;m=7io0r<exGWmL-#-)jAVWDiBoY`k<G>O9M3;6`3r=
zb|7NFEx3-3IB-S4kD<9{E%(D(uE>`WOamAJ(3dJq10sJwG!DtfS*;#rK-c?7%-wFb
zi}|}PbK+(kaUwY-W1SzC_7RRa!QsRt7Y!HMmAT8bwyHYUy9I}LPxIH(E<{b^u^hfD
z#sDe%(6=l6>i3#ks2P!XAcsxVZowKdwT5t^gPK6EW|+d~nHR`r^G{JM@(LvTSg+*c
z?0qM?hH!uD#VpnWL2BC2pS2fCJy&c79l_2;6!O5Q{_nc8e-wKwvnA{48xJ%ms$fey
zi1>q!62rtFQHJ5BkA6}5enNvQ6Z}2P24Ry8>-`z(&NQfcO^}CZEFFHSVAj8wnGOtX
zhKS=hWTOmmx*NTm$U`p~iwKU3UHvj7I%xw#I1GQ0n2dT%+vgYPIwOZFL8r7H+WrBo
z8T{u3rePk#S_?PU79!G~v7gO*qkz1HA1TytwTu}&%1EwrfSOIqFdkWWN?+&GFGpv}
zey~+-$7bc6`t26-%}QsL4UL|eMn7q`T;?6Aq>=CkME*o3KX5iul<Y<y6iwup$lckr
zxrl#OH!QT7IWW{vL;vIm6~LM*=P+}0!!nd~88LR1Ca5`9?8?d}k7mSdGHaW4M*CTR
z?n$K&5%Y^5Vu_uwhQ;+im|uBH*i)lc<FImon!1k5>}S+__JqWN8<Xmj6F<fAgtWLZ
z0-Q-%=Q=UuM10^<Zk-e1BO6of%-Is<H(Gzyt89-fvntv1EI?n=g3)v!svr#45wr{n
zJhZscE3@fYdDCn2uHuQ3e)?4nh$9WH>Zw^hER}mmL*S5u;rXTIzmPne%Vxx`2}hfX
zuOCLq5To|imj3fiIwG6~sJ(?Y(<GU$_1V1G`cMem<<d6P7XhVHoUg6{8IX_X`bvM`
zFp6GL33_nz*I$2euz{NYtBF3V<3UJ{o-W#XF5`ieXE2f1C~P?~O#A(aRBpcNAW2gb
zSBQF(j;6qy(Pg!VQ9(FOT#~JG6^F-ZaG+z9a5APW70xMccBGY1L7Wzg$fvsIJgM}n
ziG(W_5$tTe`#PM~0R$daxrO~-GLC--<o5pG?e??s{r}qje_v(!_h0TCoeNC^=qSRX
z@;Qzrl0a3+U*crXa|2Rsi*qV0`WUP<RIcin9{@%$`Z%5Yg&!+kZk4S$=Dp2SGdC)0
zam0h!jb@rifrC!BvhJ<q4=@84s%(|aO7>)R>u9IvUz@)+-DgPdX+N*67B7FQA*-Fu
zn#Di7a&!JKlgMZu^G<*{{J-_ARnGtRbpPo(|J%KkrTBjw5-t!nMnQP@lexKA%J65%
z*g45?=qo=E;Opw6KpP9n5_jDxFg-+xgHPG-$GPDm=X^4W>@S&~UK2gmZL(?FC_U@n
zcoc0_w|+p+2XDUrwQXz#{-1wOT2uS~$&=^%>-~QpWr_W--~G^7$Ks<b2IKiaY1vli
zH8%Zv4xov~m>LH}nteZ8*|tHC%(u|SvtKUA7itD}Vmonr=U)vojCaXS;_*AoZCG~l
zF=1SyPoMG*zI-`&w0V{GNFXCXjx`5(S%m(D<MNxQT1JCL9z(wi7At?|c+mU=mReuc
z(C@9jeEHHupHUAB^6UxnypRMeBwG~*l$R-uLPX**8e^^<HT5Mk)}Ekq*RO;Ny?Ay(
zMiVc)4w}CrrLG(!CHw-85J^PAA|ccVhzzBqUNdc{1(@)TupmE7H3duH)D!md7=^ew
zb-m@U*6V6)B5h3c(N=%m+x6V8Sldg@?X1iXV8};qj!eCRb60NWRYrDUs{dMQXH9jS
zTa?sn%*Bqgf_^i<eK$MMT*5S+#&Fiix4qxh506U5|E!u>&1|HpTYIM;Z#v9TGtq9$
zoQx^C){Ysmq}*JJvOaqJH}Tlm5D|@$%|D^9;%mbo<$=Ibf)0PsroCy&fhkgm^TUB{
zR%I&7jHP3>e)(;jZUQ}`8Fo{BFKcnAW>9rAix@XGjkOZC5M264C}y!|YA-@^_1AW#
z+xsgrX&31b?(CPP#KL%GpAR#AHGcjZCu70|`AL1*IY8!5Q>#d2Zq@Q4-|Py}ue=u8
zD%|Kf<WO=L@oRrB>gufPX49dEA%CvR*DW`f|F1ERX*^g!1(<99ZB5yK+w1(F_fwXT
z|9{a7j&P5q(gb|vEQ%m9Bp%EX`!iZG^)K;YM)<FD#^fwMU)h^$GsSU;HZ#ja(>fhC
zkrU8s%Y+UpNALQqZ)ks@afq58|Ml1KyGNhJ5br&G)@gt0s6xLSp1(PL^J52{=d(v4
zktC2LM4L(^cLIlf`O;C}s5)Q1Z0#T;Y{XgYOC8WdUt~uU#EF_Fi9`Jg3y&EMr?G9~
zjwcZO93oJXcuYBqwc9i}XVyoc%+t%;Ae1TCb|j8N&y3=!Q9P$+!?9hg505`dxiSBD
zJWzH&1XzCv9ETiN9tQL5KhK|*^S?iTwzrP|bT4HI{%<^V2s*N>ou`P;Lk456Qy@%*
z_+G?^DW{{X!#d-T4g8cjSy?CEqOP!*V@A=t+|<*~82MyPFmp9Q?U7-9U^A#Q!-wz;
zw0d0Y{Z-|e>SvCr`AGKB3>JA?#uZw9bgcEgj-G#S?HRc!avkln<oaHr%j7+nE~lPV
z6#6r+c?)%<>y~;5dp`@p&p7GRj|+8kMJB#(RO-ok^0_{KxmJ|>FPFwF#u@~%0?Y|z
zpMQuxW#_Ad{}dkrOgYqvvQ=ssXT+)5)OsRT&}MTUV7Y;7`nPJg!rGLU6;wD%BT18~
zaQJ_=-wMw~*A=kz+-hF>=EL+OjVR_5)K6nACK;18gfgdtp|rL%#!C-+X7aANJ0Z)L
zThEQY0#}#|cENJy=ODTX7E2zud7pagl%LR8b9TwmU{;q4ceJX7H#;|<%5rOOnOF6q
zFTNPIp9NOIwE@<zh@IFB+!u_Ain-NzSXY0UvTuub`+7yM_fj}_IlUDSGEu;UUwiPo
z&z;1aH81b7s^u*HvY2n>YUKYB<`jp$8dK05`TzOTDgVFcd+Yqa_fu{n|G!qNef)Ce
z(!Zsm2P6C2iPlQ~@cQj`QokMJZe;!nlrAOl+xDhAoXX*ih5k}s)gnLU!H`M<x&D6^
z0m!Ld?kSbSdex!SkK)9tL5<pQ&X}xG9k}yTvoLB!KZ-wFHv^}S)O<a+{e1OhcKdUZ
zL^J>rshiGpjp<&$j!INsgj%(zP_bS$G9=)s6<o1)RDhs38vxR!gPXiLoT8^H4XNn&
z=Elh{z_2y#zr1QC)M9!X$tzVu%kF>F?(}thXqUM(9a3-3Ktj!)si(e*`U?<Y-s%p}
zR0Y#)jQyXY$S-ohtxT6+;aR^3+&56>ZMPNu-9(XJu$vXD@pckRtosdB__|(hsleNA
zAGrGNveRYuSV3mHL*@Mrw_9Nfx7laziL}hds%f`k!;IR$ORQ`zMSqj4nuC8oXGL8u
zS+!#B_YeGu>x%3@EFQ2M+JD-u{ptJP{q_6L`zbfF|ESeIez|$RwR#hfA*6?60?OxF
zZw1mo-_j104|GSSplQ@DX9_ayS7Hh(_ElpFnr*--c2Q%%nQKleO{(6U^w3N}$5`SX
z7UlM#`TD+0Nf*TW_D>s;^lyK2dpb<z@Fb@dr=N^2Y79{D^+`RMEn`Y?p_rqlE^qhJ
z)(3Zl2Wb#9eC+=KgP3mM?xEX^n)Nf^3};ijJ5w&fa`)D_(sA{mtZ{<K1&nby*O_OA
zGc^|=dR^ZWM0#1Q&=uO=3?OT(+oH0>>a1=cS@l+;FfIW1O{@W?+i!o{>SiXf#Jb<q
z>Q>XsZLMym+XrrSTi7;JCm`RYZDyrPOzjNjnP;5sbOZCuoti>t=^NjO(QMWfZo~ZU
z-W2+^jV%wbtj7MA*RL`G&awZspFV$9wEyj^`fK~&eUzKn|IYMkU;OV^E4TkSg!Euc
zfH_R{CcwPT?W};#Sa*M81*}H!QiedMi(5VespzTF5|}BsS$$U*p5LpI9PGCux6sWQ
z!*QCJVPmQut<sIk|BB92)u^jCBTQGXSD`D2e?^Z>rlBa#&Y;LysinxwU8bBIidKq>
zA<7Ff1KG<u56z^$g;wBh9f@Yo>>(L9ZYJM{B%mS5LQ9(rQUrgQXrKnpS%=y*v896e
zHiT&*+|Cu5c&zW)-)0?LwOMf>Xpl+lW1$TppbL!+)b@-jap~GqWA+S+5`IY*uL+u3
zS<4y6Ax}*ykOF6JD-(UkHEa}D{j1rx<{y#ESv=<V=bU63QMEZOmLSmbAoK4<s#QK4
zqiD0drVcFC_Nsra;&f)Hg|%ZW+wqFcV$Kwoq?nr-$7XbNOZ%9+Sl@<;Y)a-^atUhW
z#yhmrtXBSCct&@^J@TqQXP4UZIS9zZ(_3=}-6D67B~v0}F=%U5qv@J)Eoo1kLe(SQ
z0Vi>V)tj-BqPY7FQ*q^dR>$33L@&wd%Dv9%YQ_A{9W8&kIm@e5UcX^-sh!gtlBpqy
zq_oXldYD!3K^ml2WB=tOr1gQ|=Dh!Xy7y$i<p25X`LlKWpL;2dn;3x4)pBoMzFxim
zrzWHaWBLVf>aD);^X&}2dW5^N^-dvkDKoEbeM<{(v6I=x-C9@ALMK;bBK!pE)_G{E
z>ecRz5CDI*G+?uAC7bT-XF-<eFU@N=zk<a#EdqNRzqYB#*BjfiDXMw6AQ&;BXyI|3
zqe^Qv!=KBoS#Jt0?#bGLmv-WENB@@WoB%nxGfUS@F0nEfuKd7R0jHb^@(mmqbbq&Z
z+q!p;Ee-hMt9vtpRCOP>)Yc5nAEFsbpG`V+yj6eB^z0YLG+1fO5qF1r*UDs%`UARt
znROd?%^t3j^d~N>(f`~tZdwbR7ytFyeyi;N(|-1Rt^eIexrzE`^dVITG`${~R`#?A
z4fTQ19<jLJYC&GvvWS<Zdw{Q+b;@3L*KI^1uhlXla?NP%)sEKAMq5P0tCQ?>!i!4W
zR84<jI{8Iu8BpTzeLKr)E%$P05}HV64<&#)9+<9Z>>O791dpOZoU8n8SdBuRpD?uw
zb@jMT;^y7O18kZ6Kl8@d)y&)sFd>$>dWiaK@df1g{It`#Lj24;Qc#kX&E-Bt!+y5V
z^(pA}v}YtypDpQRRA!S6&D`zt=TtkFW;uUE+1xEzNHFCJM$X6ern%ouQ<6HTdM{-@
z&#FQK1ZRGZB~i^V0b#UXpT~Ue-YJ`OZknPe-*I(M{9uf1Vx0pd36GVk&}^bj=TU1j
zmxH%#L@wu>>C4dZ)HSG^txjzRbCeaT42V2RIVZ8q?sA(`$uMyoW}KstPi<<XrP6=m
zIql0}<kmBEnQKmguA)i1^K1NTY@OBqCVq{ZXmi0lg8o*GA5c*l)ZIf;uPL^cCFsCm
zh#q^M5{v#O{w59{sp^IcC@63o`hOEHY2>T#d}k3jg^7ppRAEW^-yf1_L<ceBWbrZP
z$p5XUdnNz>y}f7c_5IJilnr!-rQ&~7kjzuBtU7jL)Jtg;DlVSj;0h0j@EaTGa!3Ud
zX_7E51rkFNMc@*FMpy<z8V`05ClQu(Y>v(RdmM+24HT1scB0+XCIaKEi2mD_kKV@7
z1hE)eDv(e@IErXY{Dyyg@!>)pa*Yji1f+=G9bKT1a?$VyRPMt6HTVs`_aA@03;(xY
z3<taFfA&u?j(78pdN{aB6VQD`W7`+kNn_jZ;j6~BFGopZ`~Plipm&&4mI`!wd?Fft
z!rAX6kPV-P1n=s4oc-SL$0A@M+5Lu07EA8`^OM8l*C+lcTxN{f`~PYC+4FMzpZ4>o
z>-~Q(Wdps`d7<oXctv|$NiBazYTX-+L-hWiBpMaJ{%zA{mQu%oFNTm|YFDy^24XkT
zRX-TY*-&-1z!W;*EKL+k(bR+@HlP9O5qV7%!!dy9c7CI=v4JjM{g31GMx)#9D#^ML
zl7z$|i33WE^sdg<j_D81`7z;wvbcj<{zw0#b;>ZwxH?%%EHj9k6w7~nR)fKaJuHTe
zM@WH>vVkWkO_ZFP)dIM1Lf_eO$L+=yjl&L78ay4m#z|vDBv#V10$BrGp)x^wV85S6
zk#?1XypFcjXre_U)chxjB8GlpJPMl{h>Z<&8p|vZSfc?<S_>ixXJZ-?fw0B7wcx3F
zC4>ufJ*2@91vpkB5LkbL!4G~+B9@?-T$}YUDae2trq+MU9ujDTV>}?-Z!}&Oma{Mb
zaQyc_r9Fa^MC83)nQve@G|7Y{iP&VMghM5)>h9rB)<-~@N4kF+qaaF!BwYCVn1Ww5
z8irV)o}w{Hgwip<Zl9<w-divgG(0Af2y~VwRXa~(Nk^mzV#0q}=u@`4g*IRQbauYw
zqho*)slT$E*r{YAP-re+U7&y{K1%~EiP%weKY&bnF+7`Bq^bT?^PRAiBb;PjL}nkH
zaRRmkK_wB5hUbFY_S<{kH9S4veZTFubQ7iH5`_;%5d`&F6tQcaKCTz(e69kdSxX6c
zjA;bF8O6`+WJ7-<;QtV?gn(ig(te+S&@M=jL%M+u`+XWyNfn%*6;SFFry+?I0tiQL
z`HYT<2si~T5iMLkqmz$`&bD_NC#js@pz+z8UFQA1s%D=XpHbKBc${I%k6B23!TPd`
zJ|mr|7h$BnK<X!h(}`ApX%)6Uqps_G`@`F}O=D)s)9in~JUnlz|NmEWtBYnqGQ>PA
zK%&05Z%7gr8k9`oBw?WiWLJHTC9MK1gCt<1gvBJ589cdxs9U6yI!H81rf_n1kicd-
z!U^utXu<6?wGcPjU5l5heK>!s-F6EtTdD?d7dmio>?{6mj`D7Cs%G64UzC_D7Vq$2
zBXyuneM)}@5mlVgzDc3|EZM2kKcWIG4}!=oUr~tP)rT3fDWGei%uhu>7d^TqC~=Z-
zmT(GI+^kmVRP~o#@g<-X5=+ugBSDH_E()dF{_dcpF+7GSBC@>VGoZBXmqX;TQ1TuQ
zra)W*%JY|pM~D-_QXY_HfL#j8fQMB;E)3<-`SE`Z5V<s68vBJ3m|RdTlmbbf618g;
zxFE5DY&FjJ?Y_VN-KwAjMt{ON<4dvlJLm4JDoaaii}kw1IdkVn%&N-W0P1c80(9o5
z$$;aK<j%qRzC`inQ;Du=6d@9e6kMPyJ-i2WOk!;)ye9CC?h@1*t#$e6w2!*^4UH!8
zu04PD^vwq~qsbv>*9gZ500hklz86YQgKelGMi`V0KbNS=1C;OB?GMfkd-hd(3l#-0
zvl~xGcrah!x-aeJ#%10fxi6*X#>J&vNDVLaKiv$K&bgva6{1O}pGFaanqY64UI9Zp
zS-SZd+2~QzzHWTf-9ds7^#0T~`)zXr>TrL?<W}bGCnQfH9F>nMCXl32q+L8kw{il<
zEVv?E(;zx011cn+AmbJK29Jm+O&}xr+Bvj$>VMnY%4b-7Yv0ZFkW($>%-j(xI*{&f
zd#tR?+-ED=E#J%;mX`wY8!5SmgDVn)ap6bfzJRc$d_!f(R6-<Hl&@{C>R@4dpB#Ul
zoo2FFwi5*5V;T_aE5cYa`|gZ^Pe>2*rrE)&m-lwGkR+U#&@M5PG$@(-w2J3bw%d!?
zV0W+8{(iUhe7F5#7bnznS__ZHUfXLw+jV%sB$oJNW-SZU=G9y374DJfKF^qYJPq8H
zk6@lk8H_`1Lvi@Fqe9yXNH?gS)ogz$-wXwJjvBqU;jne0I#igoZnt8D#g)@bH*4i?
z#TVwSoxYP$|L^9&sRLFaGj<$$GPm(m5Y)BDh^p~+OgN_@>CRof;suDRf5eIA57v;P
zew?5`QXDCKhf0+MFs60J#Rdbg4Mpm@FsUR;bCb?OYgS7v=A@s!&2M>feuIA}=8|PL
z>$>I9_zj+{OBR>#wa-*>Q)ee}d0QI?tJ!N~PvEIHq7@Qn>5Ws<Y;46+FVa3d8EK9t
z*+*A31IhcO(Ehj04cnnG?<gx|@KsRX6#A~nq>IYvGoEx;WU~0Ew?bbQM-0TCuZg2s
zGj!0G+Z*&vZnpw`nFA=}h!cOwDH#)R3!;65BTjHQK>?f$q3_Cn1)pKh#G5H%2sO=x
zc=)b(A7znj$8I;LzuRkWp=LzlfgCnbyM>xUauyHr$LEUwn_&u{b0XeBy8RB)Z9!Sp
zbq`0z>sH%WSmu^nMSZZMqFb<8+L(1pnkHlLR>~ZNEov?LbbBAoMPGmQ<<z%S>^UqM
z#{;suE9tLu=&tS}`|F%~tGoWrC^u1ZnvhDjs%Dx_g$i5FS^n#9n;TBu8hZ{<(`BNA
zQ>{v_d%zOhibSsmEM&PfDU&D*o)L$HYkE|lMD`K}-Yh7_h-oZxe=64?oz{?|_WUlM
z2-$Ov>=_9XLzYG%(jb56r@3~RolL>#bMi+@Vi`?r<Dj5`bRTuq392*`L$yCkI^W=M
zw>L{GBlHEXf9{avR@Svkdle5V^a=kmrBR4TJf@t*BmGW-Q*hJ*VO`(FU@bl@Bg<tZ
zTlKVRnFD`%8l|ThY9F0(8cRfD%}y!PF6ZDYXXO+9RBUNlm?MA0*x8wHVGz%LS-kxz
zPowlGNQ<j7=LLPvMwz{%i&*b>5=gTkR0<u163gLI)3_?UQ`LVhBZyT_<0mpvlXyji
z>rf?7pK>9cDJY1+KNFj`R-u_H<EF0B4MA`Qkvu{%i#=Q0oyN3)eMKhi;^aWAu9}|V
zTJQ2FUQ2sGp$C6(PyT?<_WLeN`-ZKQ*WR#v?eQN_aT&{;mzS>Z&jN3W?~>>Wa@j&L
z0Q~qiFOIwBG}|$+XqAqiy$mes_NOrlumHQ;BzLRWalEp%7sMdHDjTwEdu%#KsgEv{
zGV{)jAn@DfhJ95F^V~vn*01=Sy<4?@wn}{r2y`kDH)nqfMq-GS0IQukAW;_hdSvgV
zms!8n1X1WNhN=fy=B;1pCA}~=8}J&!C8s*q9#|opDy$gC@#f1qEu9%Sy?ocr2yWEP
z_l|j#F0u`z&1ax1^@w)bQ}BQ}j!JWJED(#$L;49zH3CvWY!ZK?HQ7rojix)|M|0M%
zDmPDe>GgkevNNq@38&Z3$u{zJm(U3ud@rjwXZ=d?HnaPI<<<{k-Thsp$v-Y%|9w~e
zd%Ja<UOyco@#`*~jy-mddvAgD3$PG44mmEY;j-&@WP4c=2c2HO49>5-h8Z09wT|=7
zKa)xFmgk?&Vfx=W8T^mCJOoYN>92eUYAEja5Cng<{uj(+8V}~{^b6?kw^Fg^Dy0i3
zfVXqPaj5#*V8!PwifBBz!~-P(7-S*bW2rPRaZL>*@c@{7=9Jo9-buBwv4JiU5>Ol=
z3K$f@kc_Z!+@V!h`HN?6yrw!0gybY49n~R?2MvV6e7QQ-)yh_PA{uGuS}IV)0xU_`
zK!|^Q#G@o49TY+<pRz{7dAvPmsPn8Q5OVJR>-KCOdGE#p8h>mwBp%G`R`(<E!0o2(
zx1afKFC;yRW3S!v__O^+BT1v^j72n<3o9VIKS5Y`f0i}OVs3(Q^zmVIjVIzUqWv5W
zg|o*Hgi$`;(a|#nkx>1#|AxskP6UbNV-0_gaX`ue!kptt10gDj4uLfrQX9c3njm3;
zj&&!9^>gseIDVrMl3waywWlMHPGLZUY+u>{R{|y$(JP{UQAA8WN{$hY`;3pYgQkue
zAl$Xku}KvPAI6{)<2WFuvmWU*HZtmS32UPe7NAHL8w$-ei@brHRYoqt8yiSZ-9Ue2
z9_Mc$=ZZ1kKql_&Ts+xet-3yPE+~B$2?~#mhS0a%M-dic9tr+9WI_k^$^n$<9gETt
zvDf7YdfGv!eM@3ZuepQVVctMIgJ#n_5)Y|Ra0(Po6hZ?Xfk05E_*Vhqrq^sVa1an7
zUbB$Q1NRVWq7e)8oF}z#7X~^fIQ)NwQ%T;!0tot_xr1HM|Bxj{c=01`G!iU_^ZGqA
zk>q;$LWYH&vLF<*$k~#PUi6K^a%jA6AP2D}1Z*I{006xKmlMvg8O;`*h;p)p@D+1r
z=|+09zDL%T%$@9LVtT(Klh-&&Xbfzl(3kl>3lgIHG>82andlp^DwkCCBaMISfY9*k
z`<j`^*6}(rP&beZ>;^)a@Te-;aP2>lNrp;=OPH_%ELEK97xQWgqV^#{VnHEb66{3~
zB;BwVG|ukFc938rf+QUgp*pz6F>K0#YAu=So$IUMgb6|6!Q(^^3zEW+P%g^YP%PW7
z?gq*O{2E-r_nzlf$2c)qxp^#r6J*@I^+AM_WbvkY3Ew98kCbGAQu5XK^vSt`H}d^w
z)O+@X#6cEZ{mYk^KWYOO2o5hUetCO-+?QQy111I{lbIu4IhToQ10*Qr$%QXJYCaXP
zSg?rPCJ1q>b-!VVTkRVJB3>{O@!Vt+w+=}RYjfI{)oKGYf11sm5;hN-O`!S5rK$_Y
zdn^y|$Zquys*6$#$oe>zjcnhMj|t-vIo%vQ+Pq48B#;p_wsB#>WkDo3AlaLToEnhF
z(C>o93cQ2nCtvYA-=V`VO~v4_AkUs4&kISwLbBDULPYyUh-kZrXs-ql?K?n3yBZNT
zSk}+>p|bJie`BcaxBOP4@&0X$-mozl^$17p{T;N|+H38YxBq)K>>;|w0)axJbfP|u
zsTh(le=;_pa+vlYgq0#>6KQNiNGwy~vA!pV#4`~Dw|0;mQh`SJcgEfL0+3FE2sLdZ
z&Sb`_V2I-Z5jseej@G4q&tqYk9S7=yWQs*Fp0Lcne?Jf0)F)V`Ty+(OI;fML>b{nz
zpcl0(jQ|W@A=yx728c>QqP|kGFb|ECk)iD5?JK|0*xvpHT;>em*Mt*9O~f){q70Xj
z@ISY=8x0SgSyyKBwb1CW(Y^G1;muJ|Jn5oM!$1HHy$R|uIn<5zV0!x&_fAJ@Wp#Kr
zn0~R(f4%8Gb;K>i;%Ktvqxb(LoXif5XG7vC62J*HlhVFOTc866I94<jq7efu<(jXy
z{V42q-4Gkv>8s(PpA{CgOl0DAb*Eq&@B0O?`uLCC4O80#;5<X+bD&WJUKWW-`>rQi
z7q*i3HXs(x{%we`nTKLy+&DKz$q@I5qycOwe-L+vY{Uj6CTiuc@uXl~wE^3l;BSh=
zjufGWgzLjkM<&Qa62K;*85wEfIyGhoBSqT?1Esp!$IJ1mho=ad5Ns?vvu}2wKkdC4
zKbEMk*cXl`hzgMsvG|Z$UN^hQ(5VPWj5%dl*dV=7#y!++9Wo-+@RniO-H79fTE`rW
ze|#4Dab$6?xl_}7Mu9D6!Cgd#IZrt06K>hmd)Dt$urornkOisIa$wbF@1619hw=W0
z5gq6y-rdMPdZ{2@fCUj-W|x?s;(=Z~I|s?ocwZ6A&w}*R2t_o$5}Fq5$ZEtwR7jah
z#wm`(E+>LTW8x{`_Tc~fUc!X*azOMtGVeP5Ei#je>hRK7*C3vn1B~a5_dLnW$Ng_9
a%<Q_X%ep+k^8W__0RR7Q`>kjIToM3uzaRzx

delta 212000
zcmV)kK%l>>+zqwd4UkEHjoq4*<X2L4(p|@KQcsiEU(0Q$XLe2kk&uL%B3J;ltx5g)
z+rI}F4}uga$&Wlbwa)G|27wFU0=T%iPs}A9;Ycz*3nsX8Fu`1gGdxZHa(};Wx7*#@
z*@6FdyWQ%4dwaWEf9dT!+1=af^`7i)|E1g8>22-(1$FOn42{2kTu99S(!FzE)ye%q
zemG5;#FDa9^jipd+hIWX1&zp0gbT{jK6(=Nx;tU-NeiI}OPsKA7-1<B5>nQQh-yel
z+(#MaG9|pWT1-Wj;8~F3De0rXzvOI;_KPmj_xrWYMg+^8E8y*|c5RLGd`N-|JJiSD
zJwv^)_f6Ohx{qsr>vNJ2EQlFM`4F@ani7d)EU`cN-qUcag%BGG!Y}ZUCREPc_g=W&
z3wym5&ZsN9*lOV{tKjdOR!lOI#w3j>5&c$xB9_KfLY0gOIp#$CmV_k5!-T{wg!B-L
zPc4Kv$(W#OxP3H{G86qyCsHR@gujkB8><<%5OVnFb;Ip{u=lhT6A^Km>CS#ksj7ez
zbn3vNH#o&(!jZ_cjB!cRF~UiLrubLJQHG;)JXU2R#-~_{%@#t#oF*}nj3ol$G)4zU
zNFj)D5w<2w4c(6L^77IQFJjY<hx1O0MruSOnvi~{gM}bcbX1w>l$R#V(sApY%q|&^
z0eRl%R)7G1dMiLNxnP-SsZH@y{hpX&no3Ml!T}7KVw&_3O@+isLb&)}H&C|%KpN4T
zq9MXkZ{b$$E)p!~kzQhpfiabnd<fGA_-4^sa+ay~S(eZU&SJ}3I=gQ^()q8W{|SrE
z@3D_1^uN2k-J7HT-Q5TJ|0#Y|YIL8}hK`AleIzD-cx!jBzti1`NVofBdv|+?@#vc^
zycg|`wswYFJKw~+!|m<8Xlr|m?2h8CXzQENQ`{vxaku-;F7AFaig&kLW0De%rM?Eb
zTU$YQJLo<=>pt!8?(}zi;nVJJZ)@-C?rwj(+x|$$<v;FMIsX?p$%(jU25{l|-`d*Q
z+u5yup8xG959j}r{MOdc3o^oaB9UHub+=cpvaq$bhR!BbASw_>zwEzx9cT_fk{E7n
zsPUX!VouQIgrq2%;1oCo19U<-3DGYsM`FVABu3{cyF`~0EYXbRNVSU@O~-##fcB$^
z2!Z5;*yfj1PSA%BDEvw9&vP;hMLs+yGjx4_-5Mush!e%Wt|2<bV{%HyR7gdy44)^0
zm__G=JAzfzJ;{?~Kq5}0&=3#`&~#=&{6J><>sve}>ie2z1j2pC+Mx)iXh;ydAe_cA
zNl`A;)b+4JLl;HpAr&$1=HeBHFrrZ6vF_<DlcbN1c}zHBBb0G6BAlcVQ47)AsP=$=
zwl)?+McW&5qt`vb>H-5o1j316unp7_UTHK5v~EE|X#sSjp#7qcK3oG5z3$Drq*NZT
zg6C3YT#n4Yeq}WMftadOEF|IXPxGx<g-R{|gO4_e#{xyUkZgKX>ijtw({!`$iz)nx
zCHa(;|9ZpnRNA5ejY))g(a>&zT#y)l4Vj#v5oc4gKEM`x%pFR|1xb*g(>#$lB`g=o
z4Cd50+CKWd)mWqQ(Tu*fRL`RFX>K<5`x-LOx(G|PE#jCcP9I6NSp=XRUD6~`GmltC
z_18y#e|dWR>fQIpZw^aL{srb8BBPEVQO>EHb<W95bR^G(q9QTnM6>b84C}xL>su{3
zLgr1AJ_Q?pC<dR!WIz%a0Bqs4H8hZ19b(DgK}&Ix%;1D`8j~u09OX%(7$+pjG)u4~
zXdUokUl~Bk3@HK*YooOW|2;MU`>k@93g8X8Ypo$$=0ikkpQ!hxS=ZM5A%s(`vCCH>
znq_V<AJT6+`H%)vn$jswpn}BXKKdry4SP?vx1a2PJ$btK1j@5KNlsWoqgfvvjovbO
z!igZM1P;?ZmUI`t<wQvHmwJs)p}Y2O_YG~E!YIr8sNL&MbwNU>w5CPxRkcC8<z9KJ
zHaxvr2q`?OJFTzpI#Rp^kJ1rS^p>WQr0V>_R*2YiN>a6RSuSBmsWr|xxu7f;fOL{d
zG{FLY4GBrnlwFV*<*6d&@70wlI<AL+rXv>qDp>j+dS}JTE1(t@O&7J?L_elxP|)gq
zX#($Ii0TN#>R#Yfq8LluS}RYqj~;)xeysM+OIDHssMUj)zoKgyrx$9Mn=M0$Xw}`O
zi|<mn>Ah1aW<rwbFL;``>HB;KuqE*YP9ueXM?oUBLlv{Zf$VaDE^#X1tY@5E801lo
z*k$U&R&XMgj_5dt)8<PM*4EIex?-DT7OGv6s|(mlvN}NQI^I0K9zb7TD=w+!E+d!)
z&;+-%<cbPF?Ru;ku=>l}8#+yq$DafK5=nT9CA}cYY}23S98YpVaqaD4m=$sbkP>8n
zP9jR^xnjTaM2gMgt2_OQtP&Z8=tNUBU`^^eP!|Q<dP9=1OTCOKB3F2t8NP8Dms30H
ztqpIs$5ou_ZKl{AgIm;$#(6O2_E6laLSrrn!fIH7TQYO`4QEJXB%-64Mxoz%3snmG
zmeV3|@_ryQ%L@<nIR}!?M(}UbfvSjq6qg%uqF%mX3)#j%s7_fz&~vP~4#PAn6mgcA
ztz2y6^L$8nN+b~=hh>rI;CM>Y4$kF-ar$pyO*(vtqfSfxuNtoIwYYCNOUz}Vz~_m+
zT6L`u9Z57|Ny08Q>#iyr^jN7D5O>wg(&+%<jK1P5&s>o%e*D<|S-Bi+4WY%8QwUrU
ziLeGl1#$uvLjx4xdEUavKa;=+V}GCja!p1#P>o2RtpqL`xOk2f5mQ$#U}a!7yTWb6
zQbA+FNsO?1G@p_&xk7K$&Qhzg2}^|02`3|Zg{Ef5WmrzmKp0#P8O~rX2|vMd(np=L
z#>NzuB<l!XSv6nGa&**ZRV_-e5WqX5cDsJDQF(jIL<Bg31`5G#sA3+68X>7+xk1L+
z)hrmYcoqoyZ`H1=8YOs0lA;sI@n}S&Knul_!wE_Pt9O$R3LAgOD8e@N*4AfM@kY8>
zGZ?TzKx<>rh2(^@d^~|kpThQmdxQ#gJaobHS%!tM#|bzKO~@JWjQR?;<8Rp;SszEW
zUo?s0L`#TLqEDG18CC=aeSda#(hGZTMEZ4ndUAl))u*iuReMNMGNM3Kd!agZFyOcF
zP&+3i!wJ10Ku&)QI8}2iL_ZLcX<&-mfkpsSoxxNy9|Ey7nOOqzif2(R5z)f$G0&nu
z6Gc(;H3TAJQ_b$y5QMe4H^D1~^NcgeB3A4+K?>qN)W}0rsu`q2u_&0&0ACZFj!CJO
z1!XT5I7R)1B*iohY|}mrYVbh6J{$c?iM(X|JTou-fBt`~<%o%*Nfw0SOo*l?YUpzs
zRCqjQEOug<mL4$d>(?6NrU)UNWpnCR^^F*QK|e%4T*E&c7g3b1`EO^Y#>p;$VwA*2
zic^7|%cj#j1&NauOc&ZRv`$AgT71iVZFqC_RBSh%YNc&uMvA!F20<O*M&M1jR2X`J
zB_67mo_&8j>$BC;^b9uSC8jbMF&@N2koOj%rw|PYpcW`CTn*<mYpDh=8MmMfSzTLG
zub83_UooLMMu%>vy@a<r_gQgI*FK~&#ZzjOmYre3h8-<FcApBEozuhp7jF*3X{?y@
zqP%or81jEN>DheWh5W3y8}5bOASOeK)1cQ2cyE7CQFB-IN1<p(_0ae=POuP{jK_w2
z7at0AH#I%Hk_xS{T86$6uL()g{Ww+|O`Y`iS6Z$%#a9Q#HQPt+-fkDDVn(=tMiHsM
zI}y@EbgSEaMU61mzL*aZOsA@u;ZijOb?@}i?#}j>g3sv`Ywbdf02g-hXry-G%oRwM
z5N?031faH@;P{k)WM14Al6|G>I#$Z9-s9v-)}z3kkHIRnL1j`Bjjol1qrELF9bNO}
zqgFt=RuYk})e1?AcDv9{KPKNEpLq|&6TM3Y|KDqU4=K(BEMwN^>E1Iq?i-s5(2V8i
z&5wgKD>1P=Wo+q6OeCg>Ruv+~OR_;=Y}J1_gv4C7Y#S?5VTk8xrGZpj(X0T^<OG;Q
zocdD$Qva5vCk0Irno=pGtBZBMM!_#y;c?9Ag%&4kjH$T-m<d5SPc~6P@CAXp7cM@v
zkrA0@QXRXTC*_uxAQS@mn}^<l#q{JuW&_!^iH90cW{&<Q$gbps2&+j|{Rur(Td9BC
z`9uxW$+>=T{Ez8T_+7?BHKdrNlHx=_XBt+eN7K}CNOlBjyJ;HM=CKGoYScDg&xzWf
z@i0(LbYW@Os{^pj^aqRc8w`Laa2}Qm1!3!*lbJvXjYulUJ1qxM3s3R%9mvJXl0#Eb
z-+G>iyx@XSA03znh8EiZqYeG(qxpYcv8s_w>?ScEZQZ}=zro(|I}`+pM+g!s3CGE^
z(m0<z`fzsq!{OWOYArkVXOBLd9=|?(w}1Nf`h5#u0!1+(8uWAx^Xs?ty~)x(%0)o1
zkU`H}|3-Lh2_rI;aqgP0k+?}L&PB(vDI~~P95_nr)Q?a^u4HFT5E;k`395fzfR({T
zQ`PtXst4_~k#IYP@6i0WP`*8`oy#(KJWuz<Tb7<OCV_`?H6M#PfXJ`C3iOQA3!0EI
ziI>AJ>aGGAsOE`nawsC4XkKn<KTR!H={3TcHq50&gfV9sdQF8yY=rzTTGoKn_iVM<
z2ognXnw@Y4#x9ENFQ15Mq+Wlus+Hm<7v1;O+umPGS6D1Uak!cgR@5jDU!PI^1U=1D
zNvFhE0D+}+fhS#2p{Wqp@4tR+6{K3$uV{}JNva!9(Ln*$Jn&93Cs047z%EE+3AG|#
zamGA_j(6?0G{C--$mqZC%y4U)TL;Xr+E2pX&NpFinU30UqRzC)szHCOO2Cc>t!qup
z20D8^Ko^8N^#{CpGW8l9p~AddJ>P)xcmjVb88`uk_i6X(7HE@d3S}Y=tJD^54aqSg
z=>_F1g=g&r=2X=aiUpD-dliNCJSBD+B~y$52O*v?Duv>CtZp&2RB*W?ET9@pgs46b
zi!Oh%J@$=wLa*hUU*3NmzWwRlPy46liUmmKky7QN%M5RsY3&+gfO%%uXLais-8J7D
zzzI1}LPsQ;MTuh6*tvdh8k`h&04l1vE%1`FX^H!E23b$S-L3Fy6a9>-1bBWeElS7|
z0%F4%Vi`$Mo+S*&LNUNGyG->TLo#COOc6e%DOQI}?^aF*vN(U8<cdUvVoNO;PUAlM
zXIo6#o2VT`>VGdMG$H7p|3r`0qnsz|lE+m2N6<vAZx9%%X`l!L%O%=^ySCryBrL*-
z;$izwyH9&1WdhD<=c3oqs?<(GFGvbU;MxB}$3LKd{p(v4Gen{ZD<OaiB&6c(L9+WT
z5(yz0+ESHM(*A#!o5~tIO$Ung?|X&S8Lw66-5Juf<4+z&@I6TqrX|o;ngF2D1gCLA
zc>7<)mN0LW3vE)Rt*4xUQq`nNkHPM9T_?~E7sZ=P)i%Ob{YjYrhGODsiF~N*_@69R
zPdFPkKB+a$wWDd;6J<qeS=AXtr9bs15hyq>w#pP=!R~+XEiyATDiNAZGawO5V}Y)(
zRUMi}Ngfl_uGle&XhNo>jY4#NUD{tBTzvpTpCY2`YeU2v_MMr4da_fTydVjlnE~}-
zI3py;^n&mMHqF#s)&AQ>FWl;e-Jsh>;epRY{7|@%gx1{i`nvbD`{4s3i6H3u8vdEa
z==$39n-PCbS?qf3bxnC0H~m$xXId(}=bW5PI1v+;#C^1DzK9$y8}Ccch&AZLURktP
z9Ev{rX8GpJ-YXzc$+L%@a;Kf*7H%H>-*oHOdiPFCJttoEZk9IK+OkY`e2%wWF}Q10
zY_uC(A&r5SW*dhyXHa!Xv<##$gO?1AiPSv0Vy%BWh7B?-mbMTJZfsfyoA&FMBsLP)
zHC<8^1cyT6VM4`(reirF2b4z%VWTsi3u*dR&*vIr=9^nDW9YnWyF6k^taa)UbbYM5
z_6?XzCSZ9AuClu9NSj~k7s4pPV{`rl5;Pqr#MZVF9kr>fTc+Y)$_wV64(lK_+_18@
zO>}=G(IrbCgGLdLMkJDDvp-!g^eyO@jFSpWD%8GE#KPYnz+h?7rP&AI%lPD};)j0}
z)@WW_QW;H3sv*T}(=<2AH8n?;#OM;w)I;71J~@GrsPQ%q(^u1%DxGl98=dNh<6At{
z&v|W2p{C}BLr3M7)?_bbfJm#6g^~WvcPfAWPI2d;oQmhhIN$v}X_WMF_jg3bnc*tc
zTX)$TcV*!kSg$Ga!-FWvL6cU<+opLUX_k;cQQ|mH2nPcr_m^j&?_`=8rwpVgV0GYB
zefw4QE908#q=k%{rDloW9-kee0KLIibed1KT!h5trOHMKgWy?hP@0ms=#mQ5v#x)r
zT`gpR4+m-}8fR6DJojoXHH1+(TU2`xQtdbd#sy~P)(WIFk1`4>3bB*wn80rfo{n1Z
zukMOW5ga1GBMZ?K?Vp|<z1%-IJ3jqI6EsD@N>#zkML~J-{KOR=rvuFsxLxV%TR`P^
zoRPGo_Is-4FWEH0(pCa{d7MVXRAhhLatN7`V0_cF+(r5O6kn<P6RX>Bt81@M0Y?T4
zmYz&Fs4t7vFw%zu!>2q}R63If>Pmdp-syJRkN+e5Sq9qn29C#+NKPZL64RCn7nmjr
z-khA_N%$nZLhHp%EjF}E(vV$Po6$37Mgzi~_jQKorb8>@ey?!zUTu)~{+)mEf@B;9
zAEWmyBk3F6>OH~&9BI@+d=frYBT{4FM4bu1^Lx{Q0e5;kc0ujTuT7^qkc0YHGrrdp
z<=0|Mg|{pRF2Z3~GIW#*I-W?dF4p*^2^kVxh%15bGlfnVGv60N2^$w&a%~M5(Q7s~
zK4NM}7IKJAm=IKrKx@|eC?<cye7uQhI%1pX67!U%<4r{)3FizL64S2&)<<ns(YnK|
zt)asN3rQnEFpnlq|LXT?u48pP?Y#Up#bk1>;Fkd^9$y=^=|CSAk>E?CeNJL9DKqv)
zn^w^DH=4b}+SK5?{?qQ$t#;9mGka(kg<09sp>j|T6!&1y0~$!i@z{Ud7;3LSj#v_#
zQoFYwt9d_GYx`IquIiD3@u!jDik$~55p=BOb85RQ!VI0;+VvZ|*whn}WF4*x0_%_z
z*t^y+yD^J$XT{esGWQ_Q0yPh(!VH9)r#HWbV^BfZCFAFW3lBxQqz*gM(T$RWT^y_T
zfWnP>D&~sX8mNe+rK*4Af@qnV{@y%7Fo|_k)j4Fvz<+D50JyNXF9#ZEj+3&jk~SUP
z*WiAhkhEe&YaCTJLA#+Jf8Zga?*#kYoZuH&;uq98wuFU+zItmyPi$1$E~<q$c18I7
z&o600)Orzj`%GD^nSLBaj4OUW(amfHF~ML6I%Vc5kg}Lq?)`sAKGxQ!)2T*~WYz+~
z4c=J)#+%M}&GIYHX^Qy_#`6z5d27s2jMPmPi$c)@riuQY;k{DBbR@!9_YO9(b|{Us
zIa7~WsQDa6=XthD-L*A6MoqXf5VFs)L23^Y98JpZXPW2nUc7xR*jKNXoxSj?{Fo7&
z0RK2WydZpL7$$!(a%Ix!L}0%S3v7m0(`3__!s6r-&xGYNE-0=zNW;0Ug126+L&1_<
z5}33#{RFj1*~I_dkTI#~M&_4>hG7qlQr;4!1iZ*<@uh87F&`7zNAL*tJq!#1(N4sk
z!do-(n8E?`F`clnnqR`kV{kUscCRQv`fVNHJf<>CzzBcYD>j;-`43KS-_X!#?)(ql
z3rSaM_y~lg;TxSQiW!hA^`C}1HDmU^&JS$F!PhgcY3M%9x3bZyYFfEZ^R2X0sHTni
z(AYw9Oh)wF`w$a8oWb8M%fO7`fnRI}r`ao3{`4lwzIk2W5>?;4dT>`YS!uVP!9xbE
zL)<W$;tf5!XKlgjxxK63K7p;^A;)}ia!3zPwf&5%=&E%38PWEJj?GmnEWe;Aq#}-z
zp(o*$BJ5LJsgYP$C7#=Rlgk(z4gJOQ17nT{EBa<O_$`z37&9;aZzCONcLCFx&cts?
z;GWjOulNE7yJ0Wf>4m>y?zm4*GS&;H_=2P%<KqteYfF<=8AA-~2^A8B>ha|F-QKX1
zq!~Vc@K{V9mkWZZQXp9#l_K~wafwcifv&GR)_uia&;sy<uYWIf=j%dl*k`+h0==Ph
zN6R+!4K_R;Ny2Zw-xq9kc&(_%%EPYzf_A+n<Tu{;GV1sbP)n@;rl@t0^W?iuvEpCO
zfe>?Cm97%N<Jd&yh^@FsJ=q1qWg8o`UJ7D=w6PF?n6OKs_6S&`yI$3k6cm2zG)CPG
zcbID9997PfnL?npe?VmPaFD);gCr(3=2D+?<Jb2vKgK#B^_F3%$?i*ku0+8wt2*Zm
zgnVXxyW|jr${c-BT=feo!RT#0tq0<aE$b}hoJ&a^!kg8~#!V7QFcsDc83;yE1WI{-
z{NY0pWvkr?c3#D*4MGA_E6~s%hZSqSl@0l{%<By<ZTk8KpTL%I;m&K^RlY0ggt2q|
z<XQ~h)U}oCJDRUl?U9p}JM^nIbXTb|hjVwtrM+fMsFDEfJGGf{StqHa+;gsWOLXFZ
z=*7}LiuMhj7J&)fEZ|QqUwXr0;>DMLYzO*{4IYsCUs^(c;GFKQVR9)tI-GdQ;oi(s
z`ddy+97J?ZW+6JP3N=#}6YWP1eqG=>rp{B*=&!9(tRou|2C>w$zi>9SZI+Q#hy-!<
zCJ!d$3T<y0DsX~@KonF)6Ov4I>&HO=acF!!q7B^m?9qoe`-8K?(|11{{&H=9G_;k7
zR<qUItxS+4ty0n*1gfO$W>ph1(h#aQC&#B}`)|+seuz@-_o%UESq=w62eMK;Nu2BW
zRx!yEHk*=E{&fy&5j<7l5yRSmo{bYRL52ou)#w#k-_J5DX5P?S%0<LPFYov(!<&zt
z`FBQBq~=#>{?tFU_oR)v1X5yuZ%OCoYjmnwuVM@^j9r8<_%y3%qI=$S9Za*OtKcGw
zqQfP>d)t1h$C}MI7sk{d-uyZkKNEc~p1D9ue}8%4)Uj*m*OB>4he^7>DU6&G0Q6j$
zNvYTBgc?5fTl3Ea<56k@S12+Kn&&?Z_W*=ZTR!5%+0Yda4nM4L^)9!6LE@a3Y3YLw
zO{c%cSmHkVuH~3;sQ6A-d}nNPTLpgx&TK>y-s|hL*Q@)uWj<~-k8Z1Rcw3?Fwlu=u
zT{ocghl|5sX|!dyrj}b^cwcN9<Y_;uh^2xh1SIZS`Is_^IMM1;K($4?scK~H=C9Xm
zT+$nZ`dmM8gpNt1Rhia*Xu#Q;S^cMOkPB_m2?ipKNh})8P{6?PYn;Yk>*#iCP=M1|
z{~4STZNUfztH%9qUv;eNas3gT`&5}`F=+<u_>-_3cEg@#gFJHxsM$8k(85L9dS4r7
zJ{vo5j<+z{z_9AeyS8TkR^*my>TODZWY8343B<T1S5k*<BGmYQ+EXyt^IC*vCm6GZ
zmVSO%@UF+BQHf)yG^PS(NMcZ?7Ao@`!m(muq12kcEzpF5COly{R#3p17Bm&%92V~*
zieq&xj3uOdRv4=6j}|_KTJ0EKO%vmbr{Db5a)lu`mI5kGJ-<yy3tHZL#t)wy$KaTj
zSSMPjGsRhz0r1;@d(W5hyCM{mKKeay>^nGPwF}Nj)z(^g^H6D5!H_gw2?$YmaUj;#
zoENaYajND#U>BMt`Ix5GhT=FSCJ+-`OZwwuZCeR-RGSkht&n-lqY1qrfp3l@%r{7u
z6GREYsWvr00lFkZH9PZH`G%U#0<b!8A)oa<^w?0)CS}=w%@tw~>adTk4qNPJ>YGH>
zJDb{vX2})OcY?fE_ebBibhS>PkNPe&D6fOo?VXe>4zwTBQ+aTB`qSa*yMMfS{m#Ei
z)Dy*E!n!U$?LO_bS84lZ{~zzpzCS(Oe=(?l*wRsx>LDB)91aEx8t*P>>-B#4kF(SL
zcL&FBUmm@Gsz6xQ_idWGHg6AA{|lSFc>eC>`1m!<asS}#=%>R<^<EV}ev6|QujlKR
ztH1f>-Qe)x^zf|C`}`$DOtZUN-x5EN*(n+Me6<ENodsSj74I`}$;H=mGPA}epsIni
zDTt&HE*+)p5^*AEOiWC89oXGd`h;b{j2F|~1y#0xfzg~1>LoS-?BZB4UM|$Q?&7h}
zO~4r#xX{;+O?RF-u3-Wy6-_BJ7KrXo9XZSU6CoM{KFZdwXIjJtNN@_B6~+e!wo}5#
z*4t(dVU-9;BMNR!a|re09N~l$9M6h@_~2kro8?gzvBDp3`uS<7wRTOVqD%N3s9r>3
z2xAU^VM*u4TV7wV_?#6>YjFf~1uDlbO(Z;<MPLEC-fJUPGdf+rQl%o0DOGKnGtkt!
ziBva<iw^CFU2jgIaI^FYi;jvGbLtZS-f>CdP-&TRZ;ioIM!i<G87!6cSW#SaZKvM+
ztboIlVI7SuxJsgdlH;lM<~eqPF0iah*rknsSJvxp?WhaPzx#Ne3b@o*8i2ABLVZKf
zQ#7QS2UKuG70_RsLWwL4I^uQhzW2OFP2XL}3YNa&I3g!yAK2}#ksY&mK0MM5{Lxkp
z_N0NDct0gAAdG53EGPHULXkhd)j-XKamrY{G=S4h;s2;!G4MY}FT7xx@l62@Kt_Ro
z^#9%-)JQCW(=t&{R|<XDpulz$@1tIKyIYh&uU_G3u4K)Y9Y7>vt9ozmgK4&Xd<ycK
zruo%zRtbAwj)2r0`UtKf(9@>T%#t7*s6z9o#&+B|d;f7GeawZ4X;8T9XIWV1AsA-H
z6MuPd88h~WARiCgq;8u$#P|3^$M^VuPunEhi#Ew;iy1P%69D19-4`cup2j#;SK~I6
zEC@7G380ER<A**vB{=?>Q%R2XW3VRvvvG>IY9k|m)!`Zo`M!P*RUE4<fVanIhkm*(
zI!+lUM#E$-X`P7*9&A(fRLiqkXnGW7cep`W4G`gILV}Sn?d?O7SA(RR>XqbwVhx_3
z)Kh9|bKZ*6r|mVcg5sdmon9q;b)c#Z0LQ!Ca-0HyaAF4gg7UsDF+9%{U%jLWG<{8{
z)EN?rbDF(?tZ6?&lsb6wXeFEXG68KzVJw5RwTyMVMF&N619*%Z6X?x(3mEh_zvw%!
zjfoZ64%&6i+U-qrIib<SIynk|6wgvTrIB7AbtJ9wNyAg`N^OX}?r8!y5aYJ1G*6OE
zl(M<*;Kh!pn-NkiHc>QT%!SOhnnl+;;UPln<7^AD6z%^!P_w{kjCqXA@&Tk*KOAnV
z&*;C=aYoXC#L@YN`D~YDe)d7zEz7{_I*WsETR;HN&^stN%aR$?hSUImYV4ImQBnFJ
zrvmmph)E2PffIJeL_MC3je3#o&VEcs4tZn7#;T_CU9Kq&F18v!1V%}`e(E{Ds%OWm
zg8>TAE2xhS5|+nyKe}PyOA(0e;9}bri0uOMb|Yl9JcI3x`bI_-<huB`dZ7*zHk>bU
z&2&c#DlC}hzN(F$Cu~@g%_F!0^^=AqP6+EZW&1PK+whazBrhGm!C(UjT7Z-9ZVgZ`
zv;ygau+i|>b<q2!1GTkLlPD!80nL+8CBT34Un_5qGPAWg&wSMs`OJ*|SPDc_1Y*&<
z?bX2v8s^bCk)ra<LptcldSR^(tEkuvo^dJ)lQfnlGkf~SQ8t)MuDbAsHY|}bVDqE1
zSrb)GGHe5#=xo#o!bVA(s(VDoXq}TR!BHuF_l8Z|=F+0LE}QaJ=@qWYS_SbgNo9Yt
z6p5?WYWQgAs$`e?)&-+8-zq{Nt=axi`U@e{R=c6yM{Q%U`Of5XZEw!i%sBg%MDiVt
zRsFvee|}e68FGrhJ0~;K;D6L_aZOb%P`~Ggua4fLlhdQ0_RkK{4~M@%>HnqwV}8$`
z{a*@2hi_lhRIBMFN+?O?J2J&IF{6L^-(USXgcMK1vB82tf?Bp_Sl+a1Cx&x5d6#pl
zYT4~z69$KRO<`ZK4pUXPAa`>O95C9h0@6(k7@Sc7prC5gP^>iL-PLaQn|Bf6@?Fjo
zAL!-fWfh_s+C{IU8i;0W+yp3RLnb>Hy-@wyC5V>AwW*)`#yVJ$Sj#4sp;><tt-3o-
zlUbPvm}j%|uh9glh~kJ$iFs|8&tNc)GB3cIB52Qb`~6%_)Fa76O#<?D1gVpxj_h>c
zGAXGmGbR})QDH0!;HatZQO_d(k_)b=C36+pFtUN0+NDVV<0Q%m$OSnvCL6_=Ds?pZ
z9MEw};vac(YOJ#>m_))>IJ|$#D4&(pzN=k3?peNB`yj8D`Y&#LDF)j=ZCk`hB4iP>
zvOLr(X6Mmr@)Xr<fl@G`OHo<|U-ayjpt@mg3s$5z$OZXc%FGLhS&Fu~Yq{4V!|j=t
z_u3YMsR33B&!=JlJkWr~<S>o+4ETT_$m}Tg>VV~wKil)EI8b%j8)JXsvuK+*Q8H9H
z;Sdv#rsFcgb)dYQlewMI^=d5GI|xMy%j1`dv3>z*Oa1$-`1S*tonXp~2^ODD^gZGX
z&sW^mx{`Vw59BN%IvRDk3NZI4m`hK5YDzQA<)O~QJ21|FD;@+V3EFHH8`XX)^I=fo
zdBTQvSmuWD(PxTEm??j6R%c@2H>*s$2#&i50Zul(<d~K+LDpryv|_FU{g601v8XlX
z3O1e<&0gXuO=iY_{=lVRcBy<SHP%_Cg<G3?^Ee}|jglbDJmL)RIDp{YAhO+roXmv3
z$Z-M%ieo(0j-0N{f?8(p60tNQ;OJ|7@dA@@m!{)RoZ}=A3S56@&3^ag#pQ{)7@CbZ
zqC_mfkNSEm-2AhBbaJuN{@14d*Pi>=PJ0uX5``o4RhR9w|Me+xM9JLq$jf|vIiZqh
zw}^BuP_^}BTF*_M?~zqKIsB@f`s_8s@pGIg3d$Y2TpV(6bh4foM<?ju=*21GI2{*H
zW|tv5@gNN#Ou&CBRP3XFKJIlx{eQci?XAa~2nu?xz|By-Vj%Q3XH)IKYrP2)nv%IL
zp@wxb2*VKR2enS0U4)LSAJ?<TA4<d8ERD&$v=>ZD4|+bsw|P*~Xrjdk_Q_>s3x%hS
z`QXCetIp8S^oBCV60~koVVW8?y*UKIvm%;lv2ITN0gZpXN8Z{Rnv&^IM?=v<{X|Q$
zRn30&<B>KI0-8?+ddp%0=_#xqC%99i5xpWhkEm`3^VODj+gsXn&n$vXc3;VE|3EDt
zsO1B-e4v&O)Y4E(iKW_q!diFC<4cH1V@S)g@pNx{`x{;Js-}1zvcgEl36AFzUXTj{
z(fzd+O1pnM!D6W+#-=W>HOpAS#wLz}N!UXLX!UK%Q)Z%hn9S)W{=QCr4%r(t2tASm
zmI}!+g?KbB%IOqe4bI7>R#~p0q7j5xC=-_n6Vh{$xtx&n$5dcR#R$Bu`sf9F%jCeM
z1u@kUJS2%r!0y~@Kxy?_eG|S*4$iWEvr~UC!J&WeG+DIcO!a@8hB_pGQKOmw0U;QI
zTwhx!zcaNPohL`x6sU+6&WUzejp=AaIM`+kiM%8vom(Za%7Beuit~K{(p+loOeim+
zL_xD(@dYlNd_h$ovs61ggmWqMYtlajriMLj6(7-Jjz(c+$E*gqX|%39xA6{3&)YI2
zb1Z+WKB$_q=~Z{R_-p9coMD^09Eh(Ov<Vy3*{O*96dmEYuhue>euP1R=R)CtOEn3{
z=)I046ijC}?N2@Kg6@0!hW5u&wy}dlc%XGf#sCFPY3kG+>cBy9p2b*_f#g_{v3s4H
zWWFp(z&0z^u>*|BncWf2{N7t6(|tLhFsgrq6h^g4R8c8Ja1l|g8coc#+nR6JYZrWv
zuiE>&+PIom(kAuV-`{RCy{|coh$zDUl_;k-MW;&iBFdN;5Yr;Oz6D(zAh<b(%*YZ|
zm&chbG>zzLD%1?dZLj1?P17rh7$+x;C0fw2wPQZ~I=xz|iPAZ8zUlS~MK##Ly1##f
zNanOxTA79mQ8TeYQ8tYd_9ab-iw|(gc&rOJv5}=>2h9gl?Wq7(49JJ*>y_Ywa@@08
z5=Y+cev>RQx!gQ{Wi+BGs4oj<<yc*XV8%g5sBLSsArsj&lQY97#QUkF`?h^?$bZ5K
zjjc}?nDGiWl5Ir}+7ry<_P06@FWi5q+SSflX$X`ugi}ca+iU6QX+XBfzZ2W_m!hhh
zI%#Sx?bQT-RnqHS4<C#2evwpG&-=ziwtEX|S|!Mh6xP40|3fKkl^c1WuwOQXRWH4|
z9OOQOcZsQd$@qyb@^X%#T2}#k`n6pXoto@5&gon&_AsZ3gy$m>vPfX_t2%%Bsyh=U
zM?!mh{HWC^)LjdT?X^kMEe&)zcN8@5S}-O4Uj0_x9MagWrYsHM-q^ID+m*|s?cWwD
zlW_Tje~SCb<{Rm|)UdXsHNP9GzQa$tcL?!e`}x@MJ>L9M7Yo9iqbkW>m}R3T&Bn4k
z8?UM@Z00f|z-7oftAHREii&^OQ|hciK8zGHYw0^)+plVOQ-{BElA0K5#*R+01q7l_
z8aibBgx+Xaee`&{`*?Av8VCN*5~t>4x%z@g1c@x6(#VR%87o44Th|kF#6G7}@V&e6
z**!Fuf%}W}^=)>!yuBM|lVj)?=fwHB)_x`5%<WH`c3m@N#f_-{uDO2?)zzn?Mx4DK
zpy3Qf6P%8%KbTB}i4?Q0on1_<KphLhq!o1bq9#F^3IFH9mV`C&F;)yt`39$04d&~!
z*MqP9w6tsX%h~IJU*0M#bzQtcH3?cGQky2vr?!YOUS*MVsW1zGU=62}9j_nk>uj`w
zj`e&M#!7j5fjJn?T*iNMD=?L&zY~)wvm_e@MH)#(&Mm6}?@AT}(T4x3Bax?;eYC<+
z2-b7<dZ6HF)E~GAt3`?h_g3^R<GgS_&Czztv2^EC16N~HTbGA^kt|!G-ayla)9)1%
z7s<rNKQbRxy}x<Es=h-(pfLL^!ePWE3W9SoQ-2tX+VGsrAp3vr!eQA!H?SQz5k%?*
zKiL0)%tY}V^0xseF0eRkg?)d8VfmfYp&1K0*FmA@dnoXIi?q}Wb4~BwIn{K}q?-QY
zU)E2%JKc`n|DWqpzM;?jr@oUH#@{IR%O7-=SGs<88y91{;r8v_ZI%A;e9$LH_}%cm
zX7g7RkG;o5a!P;qB-W9W;ibD;)UI3*9*lDulTO5@SuRQ79^58I*UtpyA_tFRm&zDK
zFp@d%O6yo(R(rZ^$65mpIi^@DBFb_zylBE`M4Y@9VtrdzQo#^S)jcYR0JbgC|K$=S
zp^!Vc5G@!t%Y;g4<JP;uY%0PrQ3H5GQ>w5K+USEZbFncR?OeQOxs!2}Jl-_;L~W8y
zgkun*X&I|PDN(D0`E1ju^{4E@hG6H(3=KJsoT%V&lPWPd0fCcaF(n9gdo|$$cen17
zkTETP`6O*CuKkxNX|s9ji(AT;te|~*x_5{B$oBJD?<1XTRI3ZUw4g_$w@jXJB1kHY
zVF6@`n)R(=q6lIZofB@vfRveP852~(Jv1LSAmhwf4M+@PuFs<TT2Yv@Kr!W3?%}$8
zxGrx=GVLCExGw*E*X4?9|0Q0R<br75T>GMb(-*|Di*m1LWi7++89TQGMijI}KSMM$
zlc=b;6>^>oB&U(I_mh4#-sv$&v{d8^dI^5?yKnKWrcv^6r9E6}w|)hXR6g8if4=){
zm4*KjFEf{Ywz$w-(F&K^_FZfbT}Ka>kbemkX!)~TM1KrJ4w(qgl0*G<BNL8?+xFgn
ziLN^-4>#_g@5Wtq@jvygyW3(ZnX;H9#g%GH>Z}*hex|4bI%T;e9NF}3_NFWd0~pMW
zOqk1Q#!^s;vk`m%@MygRYXiXhQJYNwTQHC$hU#;Ph>Sv~pf7<aAjFJ_^s#it?FNQw
z1*QW!R&EO+4DDU|LQ9I_-y+WlA9I|4O^Pcd0XMfka@n@~PrFaPsq=H_-GSGzEAYT-
z_^gJ*%AbYP_+l^NHT2w>*lZR(fk7uwPHj!H*Hvr^kViIx4{9Ec#G!S-fR{OO!#E5g
zHyD@1ofDV?i4E-CF2Zq4b<iB!O}OGMp(yn$B7OfkIq9Rt7qRsV^r*VskyWC9e&>s_
zmhAVMEa#f9gZoba)quLix7cS#U6T#mH_fQ)Z7syz?Q*RBF|l{Q`_4KU77T|MqGs6>
zeyh8>LhvKlXxWi|VHfk4V3Ooe^Kd(V@lWKY`_Hc7jW0smuz?;SB%%pX8~gjSvy+wX
zxX=ImyjKd}gxVEo{k`G#4`Gvk{{`c3`;*GL*-#LEp=CJUU0Et#Mdp1Mi>Fd&4`xqa
z&{MdyFb_BG7k}e^sdCBEM*2?^Oz-~b#m+Zb-cK)jURy(Njs}CH<G1e)j^Cc09=~o)
z0gZFcCd*%Zu&6XP&cxP>x31>a=WzU8TSIThG`(s;VBdbt#eGf{eSATGvV_g1`a0A1
zBD82#Vy>x$wxN&8@ypZ}F2^HNQ^;UJz(HLRHgYAKwl>exeet7EZ{=Qhrzm>GS)Qq~
zCr~yj7q~0vCcV66=_zB<E6zB*pa~h59c9&89H+@lRenhmqBpEx12hIFw(+5euuhU(
za<}yek6r4RvrJt|`>$Vro3Pk|L=l^+(?9ZJX_;6_r+KP&vB|O6u8r6$37^swie7OX
zk(2UifCFT*51(*$HG7_qMueBrpscMSQG`7|I=R?0vDncl!DE}kc#2azCOU!w?5%P<
zS#@J+yc?y3x-(gd6gVA)O!aQqxTBFH8Rf{+UWjtlrY=2bO;sv?irY9gvioEPU2lR<
zrEr=VGemI6RI^h9s-JubKPHYb24%Z-_PiuoDW7HbE|Cn4iPYSqV&*y*`a_wcyfxDZ
zxC$1sjtlwK*qwG=wKo3q38y+B2BdP<0T8{kr8M=xsLR*n=8AO~Uuaq+fo}OBrD6ED
z4JQ4k3JPswJ3p>}iS6uHbgE8MwREOZTYoWc579{6%CubAe3N8!(?u}Haf~o}Z@A_6
z079P$by*37(ctLS|M%n38N@XKh!AJbM*E|ht2OkBps^xXqdZAwpXD8azC)D^mN4ed
zln8;x<ZjOlJ^etS-*PIyRTMNK=$s}AP7)M!HF~~9F+(DMAtXb+Zz1N3dwL9LOd`xZ
z*JHg_MyI9eZ^9rdTf)X;!u@k#yqyy^HU)%p#^G-b{<Uu6gLiMv0^;fF&(OV{>ML|>
zcgZ7k>uI&gu6nn+0SX%xR1e79p+d%lbN`+dGG=)xGgd+_NYY1_n5SmzyMzoTjd;em
z1lMPBl`+VF)v2$wS4VIEp^ia_UNUVIVDe^O*tFtazE}hiki;yN_zG6XVN=6bSBvgX
zF~I)%xQfpFea|35vtar*@Lr*MJ54c7;i5yA*ybpg%p@q+cY~@Ds4Ae}G@%5}$xL67
zHXS<4;V7P~ooBLRI8wlpxO}n0$P`?~Z>lFqby&E6l8L{0bUyL>2!r&%+p*deI7+E3
zUf4#+V{(w{qt@{CCy4r6R|W}n%OAX$#cONG+Lf>i!Y?_MHt3ek&rv46Zci8%$#NO6
zP5+4=L#@Y~=y5Ps{~Kd6g;1lTZyzI|8l|*khK5f~xQ9&>23O}NvAHQW;mvyq2>=u$
z<0m$MX%%efT(J-d8;uf%OI-7OHkzW|OU5I}BPeuaQp2DdLC9QnFPzsI&r6x3BLdO4
zT=)i{@A}-Du)cXFBqwGV5OUgt()#}F>}0SBtcUJ+FnEnjk7{ioOc#vHb$Djtv)YU>
z)rcE9cS2f8H3IRZIf3H}VY*C`U<gA3tZ7((!DE4+#Tb3af%K3A>E3f7X=cJd<rbF~
z!b5VSm6IF60}38QkjRHdh-Qj&=2p<<LpVC=7h6q{5)dt4GK5`rab^>wx6QM(jn>W0
zpraMGU$Y1&ZDWdL;-Q>rN@UN9X{!4#htglu1;M#`A?bgD9>k98-qIQ^VZ_u4170kD
zR@+iviFU<q#f;f(UXB&3W5zT)mib(mc{pM|Ch}zdL&lk85li~$?BK+eR@t_Or}ZgO
z741W~Bp!X*-Q3yPR+xC&ecIi8YW}c{56eg@CUm6mJ8}7V=jB}0fH;~gRHG7f4HU5&
zn4O*NIyky`Z4JFRJUKl)*grdb(XZ%#ObTl{$U+anGhg?*d%MBwUiZl!<gQ1fT;>pz
z9-g_t$@%?5`eEa8UmAk_U_Mpb2s`lkR>F+lPo;H}yjl0E8!GG*jmZ5o>wE+X&Tpw2
z`0xSIG)nTAptd2ppzGEWj;hk2QdRA9U9t0-H9k%Hn<jnFP3<6WXX){uv%HXhijUt$
z9ds{?|IO!I`_HKD`$Mn%{TajT76e>90Ig%&1WR{a**MPycbu^pZW5XJ&TBdvV_+nu
zflQ3}RHws3T0!>)XTXqXWT>_E<OQZee?dE6_fcxSUlw;bKy%rVrYuk83D`BY>qMUI
z@;)p*K=;uUr#kqhRshB5#KM<<NJ~QC8iO=Pwv~Ay3V$r&{6^ROWlTmiCGjRCUV^vt
zkQleaxafUIMvN1rvoN`p8nWDFjw&ZyGHe)}!8a@>eRN82{4=ML9H-`KBXrt#h{*_}
z(To{{?wOzEKxeVndXc*En>6=@_5=ORFZ#}FW277Hpk3Fj-L^_Mqq!4*D4wNwN+Ydp
zQG`r~;k5Ab)QkeHLtt|ILI6e>x=QmT*+eOu>kgj1h`JdGA~#VqVa#T8bowsWH{l^d
z>*H)o@#_0O57ZoR8e^`QcMIp$4~LuTBl>T2oRJhH1sncrb**mZ!3|x3wsvoB|5VdP
zXSHh8<}8{|{!_}hqh8p5G$BKR<-FLwWhjkRl7ToBs+N_fRLmtrO4wM0=tv?gL_Q_j
zKMiu*V)!PpnApcIiQx=-O3;k6jPPU@wrr2Jh7R-j-fZ=%%CgW!wvDoqBv?oqg%Rth
z2BKq|YI<T+pMCTs?CphHMvAXS{UcBMsBQo1?{;@~+KrlQa|hRdam3!WICm+QuEf%X
z7`S^CHsN18x!|C^A?XDgDx?O)tKeJ86kd3{_Dxu0+}diq#0)o4&tufxQ?;DpCz-a}
zr;sm;<uc3VCz<fawR~)9(<)~C%QUg9SHi|)nvO%GP@?HbYuhs{Cm{p{^tq=}ZbR?h
zbJwrpfD$(Dct>o1$q7X0x18i86p(VdRV<BXudGfDq-7F))P1t2acg0OG|h6G$}TVh
zeXSQn4Y|~!gbDJFuu&g9`f%|2cyQPUYT-C!EGNR_K7(7~;H$70#fXw5_CQ)q25SF0
z;x1VjEXO-z8RPY%zv~@pVK~}S4AWXLwfzJz7E2ywLf6-SAgyh-BDOno1w&%R3Z1<i
zcoq{aE=OM87WG$cwBviQ7Afs15)-E>TVm5J@wktA;ZE3l+CmzZrr7OT<1Z^XIVHjg
z%(iyH*O^+YEPsDn$#%!g{U+>cF%7-y#os4z-+`@_6SwVWSu#Tt#_7M+eViyR9^qUv
zBqE#``=nS)A(swwxP}W0h|?u<dWprk=<qxZAhEel-O?%g3NjW4sxQ?Q>9ionA~XH=
zn;7mXO;1f8beq?6im!^IZL>gpOyt4Ik3UM9(0}Wb@jW{bf*U=+Gd-bPC`OwK^knzH
zlRQ2r0os#fK1P47m`-a1qn#z3_`P}Hp(bU^s`Y)hM@=9~YG}P5jQZi|#1N_qoj_>J
zv&a?g*#|^Luh*n{LHk;}vQET?e#S!@-y~s|6%Di6Q15*`*L&O5(u1zwk^Wf^B0Z~)
zW4Z&-A_j)l=fQ|_a*30qv!<rZX(R&!X2f`)rZY6-2r7U2HWH4VVyIE$WGe*7sja#l
zlXup<uvXDlRj_R3-A5<FsQm~!EXsW7Uey%<mQ+$UCs~wG^}sesJdRFKrtTqrQP2*p
zGQHaZfhZxc0|Cqj7WJJq(<M#Eft;vCR6`2%kOG?3&3J)&ZSlT6I&nyST`F!`wWE^-
znr^MibE<!B{bz^{)hP!;2^mMM?V*NU(f-ZB^z>E^uvfMix~Ge^fBSkcTjq#FI3yB>
z<u%2ZqP#+ZWia}v3$L$kN8fMrDz<xdPWAXi#i@h^JG0bPrN%1|KvY?!J9(_GDyd%G
zU-i@IF`Dqbl5DsRv(WDTJb~{uZBad1x9{I0=stgT@hZr^w{5)j<=}f>=<xAUK7GuL
zPaiko(?`ko)Q~r+ngt1rg=@t@i(4#=An_-3YMs9_m%D^in1&mAcFp@-l^njz$t-((
znZi+}<eq%KR`K0h<ds!+%F@KR$<@n~zV5$%eJl0Cr?Ox!SiwfgSF_{($&0tZErQF=
zyw`ue#}uxuE%DD^18mhv*7Paxz4RBz=>GYy*4i4{H+Ex8JFgT0yb7Mvb9`7^Lq7_F
zf*{a@TM&g1$v7Gkc}Yl$rg<W1mXLCzmy9Ev77jCDF^dBCXc<#E$%l{$S&Oj}HV$x#
zlbNKEP!Gl_krR@O&M;xa&J@G5WkQl^r|cgtq)qb#n9a9}*?4{$TIRSPgZzS|l7r}h
zA&gE~{8*DjK~@75ZZDIaK}!klxgk<%Qyp)#lkq_w0bi34LKuJdc6Q*u-EOz?->vPP
z-u7R5J5P4^wtBrMd)t5M_ICHSp8N%M?_+|?e!1fN|I)p4U)9O|L4F4;9dj)6#7Y`|
zvHEV{H#MU|Vw>9C)0BU||JPRQ!-oLTQLQ3M6VxBbOuZ3IJ#|#q6-U3YL1F8&f!4`y
zOQ5%3-tpJoP$PeAwZ2;Qhko8aeS7rw6<WE)SFNuUV#}rmdJ5JBOGrhjY!DLPc!5|$
z`-YzaUW=M%cg2hW{?UF0El5mQp2S5AU|J+dWtS<kx#MF5_VPCX{s_$5xkPXF2WN+;
z?|wM^<=LZkFzXfx;%Ykv6LN*Nw>EA*@<#|>0FOQtz^{LAfrNVCAMK}rpI~9k`klR(
z+lrFuI}~2IkF_gD{q8DF{PCw5`F;XI5J@jcGAo><o1^r@G%(C8(k4540)Z-lj|K2W
zvn^=Svqv8WhX<#JXYbzbzd1A$Upn%S_ygi<%xS%UE~3r9GMbhta|4;R72AhPe(ldg
zL)G~1PC<X?X{ed^vt`p>dE<Vx->0LYe?LBYdw&$PLPIU^`=Ov;I1RPC%bWJ&Pd4(8
z_-mp>i%5|mvLabhO;+#o7KG$0O-x>LHq~-oYc+{_-6!GGo$zWCy`LY~do;lU4GBpR
zH!fw8q4)Emx%ZoZX@oMc9I|H;&Y~wvu*TKqwTgc>wez?tI!Z?jS)qVrZd?Xb!p0wc
zEj5;E?i1kQ8K3`uRQ{h*G2^SU{I1?OVMCnMzY1&}twQ+)Pm^P9Kte*x0O;x)ja|>@
z$FZjJ)e$t;+$ctZFGZNph@^sOBaOP@HreUv9-h+_^O=y0lYdMTJAT(zM;BR?*5^ie
zsT+TjnLsEO)X4?mCrLi0sfHvr(0WtQC>&2|YM?Es5MzmdAhV4HkbG>783RXouwoC#
zQD!7B`%%R5RL(8qZQ&R(Z-L(C&149A^DdsNu+f0sl#VEgb-g2PX08pWJ_S*{&9C(p
zSVuJve3W2_@(|^mlT;RQD6F@IzCiV5YQTRO?mYz16_(y)pomy1X{v+J8j-QhmnA|q
zsvol$OHvqM8KMh!vaADZ<kg^Jvr#Q7!}*dg-&_9{JsL75<d_rjTjGwDs`X<3Z2$TG
z;IQ91V_F{&Y2Bp_;Rpc)E*XzELBLv8YZ`v?#q)P3`-8#H$EPozJzBS!&&EWe0J49a
zi3~^DQO=LWrAx1`QMrjBGAp$Vm^SA79gR83P%+01_32l^(hSSVv-Ss|OdbvbJFDw9
z`W*nRKvKV{dG76?Ac#rCVzSXPtgJV$G8;5FJp1va-|B_vl`%*1pE5@$aJBw;`Wl?5
z%t9Dxv_Nee1fbmz#1Dc6Xmz|n@Y~}Thwn~*j!(~SgWd`zL`EX;DHQ+g{wuVB2Cm!4
z$<h}FT!WF0@+2ujuWeLEdUR45r;bf`o6%B9rZ7+;vCKtiLO~EHGk;vS^$66WndqvI
z%sBdw9O^o5F~E1Vv?9JS*$S)j_W10ukB%go;u(_ooFI%w<PuG3nk)KejT1^SL9%>*
zn9xXV4r4)UV^sVV24>R~USb((vZiNj4OOiT=5VIYAw-9KTsk%v5ehDEympVhwHq9s
z{&aLuvwQ%1mBqVh@1@m#{J}1=Z^0MRR2^AZZ<<{{o?q%>*o&6f8PTqO>Q0VdfMlqG
z4G6%v+Fnjj+l3f>))Zi{-MHsn9&=TH)9i9P5;ekL#P}uV@rq>D&Ie*X^mT9xACrEP
zw5QzymxkzVh2V%-B6T#?kD(!FmqMFx8pXb124a#*ij%5q9;o$muwYO>U>#dva;0f<
z-~G#{pUc@?80B_Y_5##3*2RY6T$~aF^wVDSlY&d30!@jWFbJZ>NkT4gYT_?{YC9}H
zd?!nj*<aNdfkm<Yo~BPL$QcrdO^7ZiE)DI+BM1g{I5<Q5Cr8e}$XXXc;5P6Xws7(M
zyiB%HAP{Od>7iG|sU-*KY<8R;UJyPTn3(D`^|`9Be1t4U;~0IvZ#&ftRwU_#I_G6g
z5|R_n^6_NuQvC6#pqz&|nv_0&s{5hP{9-jA8r$wdG$6#O(=RVCjpI(lreHjt<mwU7
ziK)mEJnNjEz3hCy|FzG#evQ-k>j6=-9odI@OeCg>2<NuBj*-ytJjghmV)aZgM*HEf
z)2oHg6g9K@+Sk{uzrXoM**l_dxwe!^wBB?-Eez|c$QY=>D%(lFI+5ys5^S7chp=e|
zc_D$7{xxE$U^Zf@*}Q^C)Lz!#v-0@<`q#g<intI>T#~)ej!ycEq)H1hetm6O(38`n
zH~Xi*y!*I!m>tX=Z?KARtzqU1w~p0@9lm*fc>0lNeGhkb<sJc#9gnH8L6ZHlqZ37%
z3WJ+F?Glm442cN}B4bd0_<!w3ALjQA$gFR+0sgOzzWdG_X8S%?w|2O5YrS-|<%L@~
zQbpxo<2;QDI&de1TOc>YX1~c7wywL(*iPRA!dDt@8J$f-o$se%oK>0nn4tAWfWF@-
z`W?|!ZlK<cL`fe<lGOSN9XN5&luU<2M<Q1Y7v{v15E;L^m}H!PXg@@nqCAV(RA(90
zzPUG+!>DH%aB9ZPT+8yUBp$9hvv~qNJm6kz5d;&xlN?C(Z%jIY%LBtQ#UQ$HwV;<+
zN8df`b)SU0--K5ih3G0JmzMiN`-xziR@2}V28Eu0jgW<4fI|OoteT<lw=MXi2}!aJ
z*98IfSfW5Eb|{E{S(GbIR=eM72RyBm4<>Xx3Ctr^n|ObLa<C?~M){#tWzfv^6lz1x
zFX9k^pQVXw=;G+2&4wX=;=?3NkY&@mb+Rpw=?mHlpW77gv-}$EKi?@LK)48HmfW$A
z#rB`OTiu;r#r|_|xA$QG`AL2sK6Ji97j)W(H`|CN1fFJ-mr65#JCZz4Beb^-|D@AF
zJ{r+0)D8+@>i7nlly|;r>A+8LQELeS<QrKwyfRZ6%rk|hQQ7Yqr>PvF_J4`M0BGM~
z8i^<%KLQl@pH&i(SU6kX)Q!O(h6do{_a>;UN2|xFt%g-#LT`;y-QDNLs2#<9BeZ&)
z%F&mXqt*$7YfjaFyukRL4%Y$bY7ur_K_(gWTaFX0DaBa^(+OKY6Ac~eOVx*>6ao!N
zgcWZ935PskDhyKxC4x5q_$b<FAyk0#g+kVgw*yrdG`AUvHp14?$nq{4h?9V6eizDU
zCC(&>a@F9?XqTb8c*WIhWczV$GdEVa{q9|va(d%*2r+wqxO4#ASZj~P$^$GNnsx=+
zqx3H4<zX8(s>AB2YN<-&mTai@kv3*Qi2elIvdSS@*(BD6Mdop|bgf0n9O-S-dW(wH
zk{*Mu=oV$&MF(z{PHi-SG#bY$avkut`A2&t0L!rFofdUJTGLD{N&$j(E%1?Eerlj{
zyKztW8&>~++lH<F-Nw*I?XTOY{jPnBEAy4HyoR{Pk!QHKbl78(2C9K5KtI9>>;$1s
z9AtG^_ofr7>8!Za^YZ+SDy&dkM0bMcMjc@_-Z4oJ_RC-*+(z4byIxJgrKvlh<CMe)
z1ms{V3<7PSlqMdE6kyf00xlB~MkcHVbP@vK-_dY?Z-=B2GF8Ah-c|X5%t|%p7k2=G
zH_-Y-%B%x|v<<Kef_xhLT6xAeI)!K{=<M~t3TZkf#&Eox449bT-qH8fjM^+z|HniT
z6UH1ll!>SYY>|mLG-9Ip<IqNJn8Q+9YAUY6=AIJ4k_&>YCyCB;vTV|(b}hjxn^ewS
zYz?1(t!>95FPAE)MRit~@yKK(K4a%3U3KE6M(xEzDtEAWG=;<DY6Efg7p*}7v|$zI
zD=b=vW^jvZt-Sj@1Kk_#!=l{^JJRc9@!qVdxWX=70DiUF{uRCoS-s_kzd5cOn%APd
z`5df@pJk0c8k*{y9&UIhSKE(u9W6VjH{6qdt8}qy{f~xl2<v;2C&s5jtcdMuvqh+$
z>*D&lRV~w+amd@YO7kKh%ZCr;**2`pZO3rC&X;1nE`ZK+GN!BEgpKVNtwVFC4I6)X
z1AnFsr(pG7Z`SH|NWKGpZ;INRVD+vDy)iCtj7Af)=|=c7ZI&a>0$+%+YNeG?)dYQi
zdCld>F-|ZCo;#EVa)X;|A&kbCdE?X5Jv-Oi26CWnaRZ&HroG`m)EmSN6B3<kQC{xC
z*CIBu$!@^>%_KF{UPU_POOv0Ir+}9eqJ3Tpo8U<GM$<6>^n2KBQ7t7hh2WM1p@;nS
z(jXyVl;pU`$72jaz={_{CLmo*8D#T+8SDIbCh9g#7Ysg9Pxs|w6cU|VWRV~JCDo&B
zdZgCw@zuBJqYIp%{xh^Lv!r=XRL*0#q5ki8B-!5uD@dx7IX1#svQ@(kJst&lAR$!w
z^2aj7xVy<~c|Ks=EvS-ixGHHf-K;>LDm8CNq#F8JvHGg0n~TnOBmB*^UXH|n`3@Ii
zvbp-o=v?08P1-C%tju|8BWh%Xmvhg9AQpH?P0&^lYsw>4{U{x==Q9|pC*X`3$p2^>
zlPeUWu4OnMLCGnBC~Xn(>-1b5o3-Pu(MjkU3Z_BH9GEtYyp7tnsW+4&xyP;G*~T73
ziN^{|yR@Cap`QFU56VxsvVqorCs_PIW~JW!D#m+RN3%kO2aHpZDH`Or4(A*D#;w-C
zs}A|kYI}xBm71yf7MdaGTMO9tz2N5akgWK9{Ra4!c&u-IpDLFIQ(4YCttRr_U2ZV#
zEW6ja%^h5SIG=7PHDs%CQ(Nz}`W@|@*HBw0w@X+`fLa)-^$oVS^Mk8@hcvgxSK6!=
z=*L~g6>(XLrQCqfa=hicW3>eDUQt_u{3-G4PfuUc6>O*l@GCXO`>X*K8U?1+z|^m#
z{#GnQ1#>HaT{7(jv#A24<yUm=c*}KeHSS6`_cwknM-8J^U&>p375pl2tB-CGD4%bt
zAWT1)R$&8{5!JfyI^k@8!^bKW@kVw7H2HH|a0^#4wi*WEgr6D?t%|zhrPcW_(O2)S
zr4XvT0L*Xcy<XE%iQ!xhb<tIQYv_03-f@;$3yY<EJI*q@-198$I?%+|R7lkBx6yjz
z^SYM%Uk6i$u)NpN#>R#s=Lr_Fj^prO*tN(oavqbbtFXL45zA(OHn9Kl7a_}L2QKQ8
zc?p7hUHbsw%)tj=p_`^>Br@t)#eL_T%tS}>Tu2hPzimy=W6DvG-5=0zTO-E7+#Asp
zJz7r$3VNs`r&$LqPC8%N=qSMj3eUj~!v3k&xA;r_cjH?WGj(+TiGmSoKl-2mU$@b}
zzSVN82x^+*dz=J+8c}ec`nF~JzBkw%V=&_8FuhQ7xPSQf2Qk75phC*Gb;p46DA6Wq
zs(yLDu6!W$X#h~iqca5v4n@PsSk&b$kBByOxz__y19H*vfJw0t)chjPO5J>llhQ0W
zGm#Wx!`Pn9vXylq#<-{sLP?&YKWoVSXFAjD=C30hl>{Pxr2ygDzKM7?OYS-ELo>kY
zWvreUt^9mh0c>&0Y??dS|K9#}#D+^dbuZET=x-V??T=g#FAm;aIwKd$Q99x*l_ZVt
zrNdE!nB42{*HNS`H}0jw$meDn@kwJiYxjfF<qIfT#u7HZpA9OrWcdz_?q_dC%MV~m
zrYt7O{hYmjDX;IaQnj8lG#)qeCY<y1&IEm$H^nSlxU1%+iOp$(DrS=l%`3$cjgdc#
z#>-m|%zR!jbQ4%q*V6)Zge3a~Pm|>}YfVG^;XyEi^{3sZ-OkgUoo&xZwm`d8pEk`Q
zV?KRf4fi!wN+}C#7h=AVXlV7Z>@!N3Ucp48xq8EYq&~5|M5)(BCKEOF7S7=2)(kbe
zMZHCDHH!r*)~3oU%;yv8JWIW=ruJOeV&Uv=r+w5@^n*ZUEH1nF3X|Mzr3rh<;Pm`T
z>ERlbynY=+9V^7KuHx^YV@f63YBJiZ3s<weucfVOI=(T6wVN-C$xX5Q1*3Rwc+2rS
z-{dxb$bD<B!C0)eV~xk$7lp|AG1Wt_sdp2U9pEI&6YEG<gfiD*d4%M7By&z;Pz2<u
zR{+@qXqx46@g^P76ej}**itzJ_C-^|$KVfn$*Cmuc0yi&^)?F8?=Up=SAA4(Fxo2m
z17W7AUC%TvMuCn@eT#XE`6=7ktpoRo9))LrCIU$K918+sg?8tiZWzq)GzmCKW5PrA
zs%RYl8zMQ47I1V^UBU8eR;g}^>vD^FOlJ9H`QmKTelZqIrKN5KEF-C%NN|0PR;*j$
zK?_s%xjBbRVvqSiM>HWrg5@om_(mPe$D=TBTlU?dSb2E<)^>+}Z_%NzRg5&b8x+fb
zu?P#(`(BCZ%~qjW{bQ}b+_3He`>UD*+lcEKCmDeZoQ3QA;`3LsLOs#VjrZtE?mkP}
zqnhXRYCf!`9e5Kc^APH?ad|k@FAg06Yh@l?hhMD2&Rk@&5A#kQr7DHYr4;QtR6DTH
zNuqYU*hO7*eU1L#`v3fmlZ<^Ae!cO3f1z~^S!`fY&qXX4s$b!g4)pfnCdNFAY+$ob
z9(Q8l)-i*6#j~g;Y{aVe_O($0e9$)zq;M0&`te@B7{r=EeGJ4lb@Q>1{5gW9%;A>H
zk@yot*{N=fmBX79+XFC_Hh4}}qgUOulSid!Q8isHBba*6DY{&^1#>q3kta=mHyw0h
zD=qY|wt%V&-}JqD^^|&=gHr#s7Plt#!GDSV)9%x)8}k=Sd92g3mxH?q^<XMDk?AdJ
zP>-m)OZ2=+-dsTLjbR1(cw_BFbNh7Caj(-w!twcPi-vy#(YPFmW(AT4xj=v9^|@Gm
z)KqbS_Gp3B9_%u2gWLr&`-ZxI%h7yei9Kw7oJ%GmoFwXEY?NI<XN!auP{G2Y>3Hs$
zymG~waewXrr4PT4`fHB=TQBpwO&^Qn|8~1u)%d?#-MwD#A^z{D_$`pLcw%Qu6J%De
zBk`(+b)1uN-9?YWmoy<Fd_^Q`kJLXqx+!E4Y9sL3eV{*|@Yi_$aU4@@Nm+{3=@%^L
zk;(OR^FEfH|K4`>{P%iKwjR#^r}*i-Rqjl?ML)G`jtbS-qFQr`pwB(Ahu=!S1?PWC
z(_qM$6q4gCh&YLFNdT6d|K3(_w|f4!b|2#Zf0Ew^FLT^IrSbNZV~Zi$e2r+mlO9)K
zf9r*a@PGeHJcAgxjf<2E!b>v2`6@J9VUag#BdM1E`MD3npYYdA|Gf{|2_w)+CvScS
zEaU&4>{aRiR&T5OK>t6*uZ~d9hZMdog{~0g62ZO`g)Z&LKO%jWvyAl7afW}(NlSoZ
z>kESngMV|{GAyG>IGZMY^t&?#shTU!f3H}{0%WI|&aQO+hcv}}CM4s;#96x$5m?Iq
zZCB6#_SW`;{O6PWyz}39#(i%?E%bg~Y>0nMP2A9pFOQ8YM)^l15oN02O(whoY7i_k
zlJeJVSXwQlO&J?yc?(+Bk`!kwrAZT-7x7hw4r0D$;`G1|e#+lU^j}{^Q=HvSe*mzI
z|J&<rSKt4;+Yj=;Px7nC|4N?zYSG`|Of+(G2e!)H=yb8YZc3&r;lRtJ+PB@gz7C2K
z8(Zq0AKMFPs)x&P&KKgdYC2Xs|8VICHV*DhX}~i6uh)B0egAFm?L3_SPw`tKsEfQP
zxZ<`9-n@x#a~Idwtsn?K%ER%If29I89aRmnX)k9A6_~b9Y8JLJY@yePO*58~)HHll
z>vE<C*q$d(kLKvp@94Lj$yz$~sA~7;YA$$vDg>RA8M?kU4^EKl`s~^wBbU#;ogaQT
z{H;X))eab9L2h{iETjKBd)+Gi-+Rda{Aqq3{V$VuyXHpkBP!4Pj0rjBe?<J|0(so}
z{r_PuUcBo&=SfYWAT?E;GU;QA9o<3r!|H`fls|SfKhU`ZY8L>&#={`zi5{(Da?ztg
zpHsSmyyyEuz-kd4WI_1-f%bO-fVTxV>*CKLl30oUk0Y%KC8?x15jT|qFPHyrRpq}=
z9^}8D=J%l{<XVF;aLm{^e<1_OI3AO59A$$_=2?%C_Z=~<c=@jI?|RRCG&%D)%KotT
zL7Dj<N7_!n9Q5#4q3{Ee=9T2dOSg#DCaxs?{oE(x&+%J{{!@LF2oGpFV)rfo=|0)r
znUnwQJm~*F$*(HNy-&JW-Zp<k>S(84IRJ(%&b#58T1V-K)!NLLe`_c*n9hq;=FR5k
zRcbW@YL}qZSkl+>t}C7YghnJ4x6=LpWd;7P+nam;Z+9Q~zfbbh`k#gB{{>uCV;i$$
zjPSti#L|PUuD<#24<La2cv4`~&Fx6iqnneYN3|qrUYNUFh}-mpuOQRpZLNFc{yE;Y
z55LuZE7AWc9dkJGe}RZN&2B0HUaJ4=R`q||-Mt6;|4Dv}qFC8g_rq6xOgn(NZT3fI
z8TDjHC?-~qHpj#jRoayYv29LS`aMaeNA}gV1XQ*90<Z&#WiFPF&aYYp_i%mu@qa7P
z|CGo}#?LdB&}eq=_W!+|ojLpe?X3s;|4Du|;n)1du9AH7f03r+@cgL=DeJgP;I002
z0`2b2NTa;>K0U*}m=#}*r572AidelFi~aDq2zdoyL{_R{BRW<>HT_@Oo;S&Gwzy@O
z=tGHAtB(qokQt$0MAx(N+;p7)9qB*o^lqv)DOEnKsap%z{GlgmzpOIJt-9cf)qxNX
zIJpDtAPD{>e=!JFqyHljWEasb-T#--|GjRvO8>i09{B%H^E0Q2{I*oLBWD>w?Q|sC
z>V&MVt(5}Cf4`3uxvzg8oLDd>lm6X}FoNvjkN7xH6==NbIK7!7q@_OUBwlD7>RY8C
z$V-+l9SNN(>^OsTyXHOMmGqY-8dwCa`p_ud84=EKe?;X>uawa0!Tu`A%~U_OwT7jg
z+}^NQUtR$^B{=?>Q%R1~h^X7Gve`~alwdm5d`Taj5{YT5_T9+r96|Vnu|HX5I5e{>
znPEB6R-CJ}o8T8%Vh9xGY&$u@@o}2W`a01v+&lG0=0MHiUbQo3b47pDbJTbsmhKR<
z0S^)^f5clrTU#xM3v<&q1Nbc`LYlwsx^0Ey@D!{mmeJ(3hxJ>Ng_|$f64a_KSVP>0
zI6BYg)Po;`yz8F+90cB<>jR1Z4<PZ+VL`tfBJVcX1DXHBk@+%lxOYPTAiaI~t@{3F
zF$uDG_;KR@^>%mn=HmZ#w;$gBpW<g&i?OV?f6s;FXPjgSjqm~7YKjYx8>owxrD=ht
zQ=0ByV4C1zQi_!?$n=8n12)YtC#e0mi(a_Z3%fzLjlu(*>HN%;i13GeNX%{M`|bL7
zq!wp(E_(kzd+*=fwv9B5?%)0tSjD@Edn3tq9H(`j^u3C$q;4JCkEFEQ)9rO=5|R*8
ze<TY~j@2~pXTOI4NCF_hU!ol+C3{X|k-%U8%wPtC!OSHLtsN;Sfwq{q@^LxrJ4cA%
zB~^4@E}hxB_e7$;-@U*Ut`-`EmuIqD*Yh3blDJUlRYR<nr1RZ^8DeStDoIEHMDjJ`
zo*{H&RP)cx?b)aN`cFbDgwv%<DtiFt4zB;ZyL&tP>iWO?Z2M`mfL@mZe}4n8xN;B%
z-2jw~o=`v^(Ucz{OvT4@VP}&ZXJ*g#mAOgErpzRc007rQGDES~)DPgCo`sh<7EMa4
ziVS-gQS;N>a#A;k!5rwq5FWie$9@2Dh#)!h#-WA7WuW0CR=Vq4c7vq+7sNsulGG4o
zhAim|ya3(lb+!5X^r;U+f4lEo_R`^cc$cKtIPtARex@Lq)HLwHLg6bPpJTMJ@QPDl
z&YB*T?@oQ(4OopYhzkF93pupsKIr^np=e14Qy&99X&{<<5c=Q}Qa7Jfuh;857iz9g
zITfpgXrWL%Lw@W+7)02IKCoQZ{{U!7U0-Z}0l_km`az=Vx#rnie{|F#QB4ZWNow_i
zI!K9yKg^K}!9T$!{r(&{KI_kUf^*0R9`Nbu^?J`GeveS_mm%0CAewT}wL#~9`VPGA
zhj!4<+q?0B5loeR!wA5e5Ms}A&wWh&zMcbkgTf0!Z%)40{68{AXbOJ&4QvWUKo|Z2
zw!!beKL_C)dVDlOf4qdx`TU)WlSDuNv-2EG(Q`gEPo4vz4afJOI^;4(G`e<Y;K!@n
zL)#A$+Zqf0v}Bh`1u@dDcXzVh^)HdvudwJbD(%8j-j5lTA<|_pp~bCuDP`O9h3|m<
zy}eqBhy<0Ae`cXO^n(=;lFCLaT8*Zp)lXF9s{(2YPM`TZfA+87iu6OgBq4M(k|qY5
zX5>A)h8QCUrh5vO$WK~+?SLwW{csV`#sma4ka(s)@aa>no(Qv3EErVG#Hnq%ahZuE
zic)fzfQS+sqY=>x{yeAeLNPU|%DT;}@Uo0Gf(!pT(jeaZ$fF^`Gh?vE79(CL`!V$A
z8wSee$*wRYe=r=dj8}u7;EL#`ZWI-wN*gN)4hMji?E=@g95BWH0>md?o#$qOX2OD5
ztq!A|(G=NM2#Fm3Qbp(_YL!(2woq#gOx{mz-}9gyeokZzro)9rLWrZKLNOI)KWM87
z_?rOacaidL+E_hVkPv5c3?D<xuvymwn;!?G$?>bff8pe8^y|f&!FVzpUHmls^%MAh
zJ=S95ATt;Au0<_@scri91yrvi6kcI}aUdzS?BMPvxEjH!{3RumT4BbD$g2{aY^fFj
z!70h4foi}g&I`aO!O{kdnIh!QpJNz6&*5$gX<NzxX(!vZD!`)W3a$<~3v{pGDvz1(
z#FnVBf4@+6THngUp*=7>V4P?&#xf5y3tJtEt)+&=W0U$aY~)c^x0q}>hKE9AW_Hs^
zL%>=BT2HGK=CmWImc^Q7e07RFWO<n(j9jg>P^r`+CTND*)`jnS#W8tnq(C8WqPbM#
zL}+3nb1p|6nTg&xH}`-vwR4!G(Q4;ZDO0$Fe;j61tP=BB=6F>EnX&yz=d0S18OsYb
zyzsnTqHfn(U7EML+>ZRLWwXwi&WIvX@|C?b${xiSWOse(Epc>0yA~x`Vrqf0J1x>N
z&PL9Wp^dQZ!n5fFFG-l)E}58#*6RAxF15b2Ty;mb%zMjJjH6UqBKMxVG<00VYP5<!
zf29?2`A#7(ekgRrO$iw?6hvY+p;X?XsdM=SotJ9KE-}Xo@4B||<FAY{Lpp#=hD$uM
ztAC*Ofx)hLbf&t}cT==P6S6S3+#j+R+}cT5Y_|gbm2^V3V?H5kaEZxxC8+LbSH{P#
zu6tc6&$_Asf@O|<n8x&#5o+%EPbgfTe|N=hd`-f#iG#mVGag__&-f2ngIeSJ((|I_
zid&e~8XQ%{UBc)nXKuQub1+a*;t{1IsrI7N_k*ziev18>v|+S@AQ~&Zm3LEsU^sP5
zP>frnejlTymwxG(j(5^n&{9jn`}~?}=w}@iwM-$zB=WNXTJpUSySVF1;)hC{e}Z=N
zRt+l%de`i3Dl;dT5K1YF%e&Z#{?jM$J^21n2w|PR^ykoBq%qBVu0PuXyWjtNr=;(u
z<^p7aax2*K1-~Q7a-=9^C6an-tUBYLj?XWC85~b8UY(6DhX0uiN2i06i=&t73BdvA
zM3PyfEJ|4FGJnRm&-BSY)9jHle`Y_vx)}d37!8jujs}y#%fWbf@pc?x_hwl4^g>w;
z^$3~|6vX9BTbJEG$s8qcyL~ALS8%1Vm$?LL5!WHy#63i{<8@Q2%2?gc;}o8=)NG*C
zyeOjdByDM?MCME0UMZIu&IjZ1FK45p+hPVe^=fs7i0iM%6bY1SjA25)C1sAv%n=V|
z?!f0$u`*&gJ53!9=~n|T1<YD3m$aFw<7~<7$&-^Vh%|qfd&wH!gxDH-*9iOG0(#-k
z7Df?YO9qNq%iW?mxWx;L8a(rT2z2>^;wNLn6q4<T+rs!DF#X&_Gnqs@<|fsm4K<%8
z?a6IADVAwA&q1TAM{sAOnVXikbkFi*k^^Ovq~%VRi%W<fgG~qyUVx<+BDXk)bwSe}
zg?Tm|@^63iE%}Q^RMN1gyjZb2pC3PJur!~HbGF-T=<eZWw7I4Ep+X-+6E4OLpRsE^
zytJ_o>*CMgM?HwK%Um8-ZxZJkX@3?LCcTMPDpA@%E7oH13o^I5vqzmqZv`=iw=h`1
zo05F5g{sUNXN4$1!1Y%YZ%Pt66di<Wl2n=IRI+~&m4Mo#FZi5*|K$0iwSGXK%@3#%
zHe(@x;)v3vIId`_YD5*fUD_$k_%F<>>ZBc02M>2dy6=ha-7k6)fL~nten>)W1^t;F
z^n}<-Ed92QtaJqx+A6y1KKDsDaFIozaKk}(sWTmmb+U(hntt2*fFOypW#FQaPb``E
z^2vW=W@h4A*k6XReN#P_TjRWsfh~X3$I<wzPx(yeeA-9=-%FcFcmr)99Eh>uiqFFO
z&<pV@@R1jG`9KPLh0Jb{7je-P+AG_Y<~@072rOA}rPOd$;m21OqqDb@;pk#=c7Aqp
z_WIY0le5FY$;D{+zi*F6!=v$V^z-rIaPoia`EZ=w*5*(l?+b>1ED??tM@s%QYaU-l
zOx?fheQ-%%dX8P88@;Jpxq5A{OgD1RyOQxP^sf+@HKs{+-TWN;mzfYhluw24Nt~rT
z80@aHi9F5j5lJU32YHYXBSvxw6HW@8(pcq<m5Z)nE^1N%6J|1$^$?rlXifASvm1Yj
zK*dSnrsYcOM{-9JMs>Le=LkF9z{26G@A(d-t<X3JIhA5EpoLj_pT2`g*uPwQjthJ5
zNtxPaNtTe=-O4i28hc#gm~M)o>tt@*@%P-;$3p{ChEduCO_+dF_PrCichAi;h6%sT
zdv7tQT=AOBQZ)gaR9j2L>Y+3wHP(L=Xa+bnkjujsUL!{rfKV&rlESTwyXU@=MY1iP
zNecJ<v>X3s>|z!_2?czW;-~fdx+i{L_w}&-^B%Xi-e0ZvmqH9Ji&SQj)&~r<K45us
zpXUSCa$Q})RMHd7tZ_EKiw}G(o2?Ud{@ll*e&>TcDWc|vI?VGh3=(a+8fbqdSZ4<G
z3<q`=bZd%e%oLH#L^V@HQf)0$gdWOzrU+rTww5Wv0H<M7M6x3*V~UWrZ%vvaV!*8(
z;x29N@u<i4i1>GrJt854)*jK?Biegtax3jUwAK>Q-b1^O%+cB)Kx>1@oBQ@2+Gn|k
zX4WrTAA)<laZhHc+QvPpw$^{fT@Piwjk~a|S!?5NfYb2C-S^<acVJF{G-39W!mSU%
zSF(4HXH@mePG*|Si?;De(XVnFFSU7gI(&0>G(5RDIUY}jr-P%Tk=pP9=xq1se;Tj0
zl-XK|WSsENE|HR1swR<AmRUz4>7lGAkpvE1OClNIG=$vR{_Q46jeCFHLEWV|t;=0h
zvXzxziL9j4nL6D?*cE!*MFjAb$wfmiTak8;MH-u;sz;+yoi)!zGa%MI6lDyx=80$)
zNW(HB&7W09PNbz<S@D&~ieyS-dBJ}cNsN>fzILf0ut+O8jPv!`B}Y0<)ucySZ!HO8
z0JEMH5t(c)Nn!%jurz-O{lItq*{YN<NeZ{J<SUUS@r<fAx@4yFq9-JUzA||t5l-u5
z(>mFFdFPs~lTGVn(=vyiIa((h&^p=V&3)@+b3dGH(!I&&yyBB!QR<3MT)MRvG;c3R
zW}=$8Al=KXV=d4_S<hG?bZE`<NfV@o@LSWCVSv-LyU`_q_}YKEL@o-;*)!xCO&c{N
z=&f1fPF;`0p^wev(#t~6BZ)M=G6P3JZ(F1JJr;uUR8@2%lIpJKOJoMMrq7PTc<Xr;
z<p66)`p}Gy@od{RBx#a+8o&CH@)0k+Gf#-XJ@FT|6@tHj1E<!~4FOGoyS0@oxHzoV
z41a6#O2Idtyo7(<%Cc*wVmWGSCfXN)A?QLi*J!p|cat1d-&Uz?s73Og!B!73c#C;Q
z7`(`>%lD6Me#`dAqm6Uc#yM*bKH4~EZJe|A_(My5_y72#<+{6$a~AI@?<Plwx<ANR
zWX@wF2G3GN)79x1%dkVtfs)zImNBa2!4p$DZkQ*kLZ5%neW#gj%YYi`xdKwx`7*u#
z5bcI+=n;5G4J7%gu&fVc5p)CWJ4-w4@{0Oybo$p8?&GD`=POcQsn*Fu^LEmFayXSU
zr4{8P6b5#!1fm7xxlR(%7<8LR^cE6{77+1gPbR9xPk2$6FA5WN)?tjlOR`R&Xfbss
zq0QHMd-*{Xo66T&cW$es=&T?-+BBVCLz>Pt7ICKQy|IF|NXm|(n5HD@YnK%@jZZoz
z8e4UhesR^ZbgvAj(HsolOXn8hlNN7!e=qp-2>@W+y2WR~YdZVs;ne7DiAh=00YeL=
zBBsTt7Z_h!H;KD+>ubPIA+<~BwTxhO<_)hQUX2;MXIJUX(84pw3_S-gK!A}KPC@5i
zr2j9{Dc(@0R-zsQq-o*OBJc=d$P|r(7XZT<ym^H@2XuPh^g9v`vJkv-5C+{Ke<BYB
zjO+_x2cUa`r<9DC|46jJl(7hiX0CozJ?X~tD#kz&`knZQ<TThTgS>1y7uNvafmQmj
zfYhWz)4GxX+GvXGIvt~iqg=FO?-tQ<ML;~)dqq+s?#6{hV<^r$?mix041O73oE#qx
zPsbUj55*xRtrpc84PPIhoo1_ue~apeNDR&*$(!+`T+gr_A@Ixa<;C&Q@N{xK`SoHn
zd^H-5f4G>O{WLticy)ZD>r9b}yU+i<2>mPQ8M=LTGQ1d!G952_2FaeRKrGjP_Rv!+
zWGybR@4`GSE>D9Xfr~=EZzmJ~FqS?fJKjJ{j9-+{H>WC3o}UAPdROXUe++*fo=)mj
zeKVX4js}xKz1puvXQz|l=~30%tn%<^I2ufj&ra(#e)cjNw86{clZeV|f%x&&;o0fw
z@Nly3_(#lEw{{Xgvvh6YB)g`Qu8EKbhlj)QxEdzVbM)>Ble6=)le5>qUX0IAjwcs~
zXQz|F@o8y3$@5!oT@hPXf5bNWLK}UdbwaG^gxE4i8-1a5KWw8f++%(#>v(9UOnMLX
zhe46LnQNW+tPva}(`$(!4z+;_JBHjK5pnr4b~kFcdT(7@XF*7M?-w_Exn2&@EU>_U
zXJ`lA_lujF#zI2o>!2A`FPf+bL82JPS`XLO!?pErZ9QDmv1>hCe_IdN*2A^+aBV$Y
zjV#-GxV9dyt%qw#l4?C%TMyT@xuErMt>oR8&KqJh192C5Q@`4vM>YB~0Q2&rDOZY%
z?x(wLQHUbdKvWQ{DBtq4mJ_cDP(4rH%n`TIBV`LbTF32otK{IU@A+#6wyyhc!Fscv
z7qAgjEmz>p)WmV{f1;8-L;zy;FLnLdO!86^Enna-fMMWTHUyoE4(N0{;+r0O)0D6A
zCg>m!g(;mDyBjAvX}Myt%kgHjKF5XNZXuRvVGz-WWDfeo#wZ9$KeUkBb^Te7%;~^M
zF0-ybW7GZV)5Cmwa@mNGn_6>aTscN&262}ms0XCOUMIkGf1kBNKx=v795AXFv@TC?
zwnEEAo^_(~R)MRxsangD_nsvchRj?5sKku@ka^(!eR)!0g*v>M$E;K2!b@nCODdTZ
zHr%Y~=*lv3$1v~-;&&Ym%;m0=3ss$5<}y_OI_}n3cqS2brz<(XcDh69=R6F982cBp
zuQc`J&z#Vwf0JJOc%Jp3?BQ!dOmWM(R+9db;66Qs=*Q)gKYFW$=-m@3!)KnmIsj3>
zb=;?|csplqF%XSXEbqJ$oTQQ_U0Am_Fu;?GngQnQ3I$kIR+=*V<1uoeZDHX;fOeCd
zEmnG`oT;jAm-h|(pnUY{?l}727`pVrmWsIatpM9BJG6>O8Zoq{(@51=iRJSzMyWLb
zh~F444t<-0T5LZu9DlK!SiUpxLNws5@N+QYPs5H5hnQlOYNGxhld6>;f42@FAezm?
z1F*BbExc##@wO%qFVssmabAm`p!u$+zPo9~tml?%T|zge3AIT87FKA_Pogp;`w;*u
z2=e{fysRNJeK2!A)B06visv765@u=X1-|cs4!cn&A9M;0`)+|h9%Gk0<Qt{MxrLp&
zw20v!OH`8-Z-b_CDJqwqf7YR<O0?7zC9O|K`G&IMwKViyi0QG0uwNBkR#;JaWu~1Z
zvm+b?4R4r}9QOy7ToWo7tPf%I3fWc&)9eLWnXE0D*(%sp*M>MGqW+9wD3TXR4mRm*
z#rLX;8@1CP!r^GizUeFH_=n_~G!V93cs8BjB?-k=)Pw(IRA_~+e?RSpQI)Dgv=$D<
zJuBlCSI#G{d{4@>S;fj!)g`0IA*0ruR7Ilj8ZC8uik6GBYlty&VCn*8=nt#1vg&lD
zLUUE7#&lv?<|wz;G?*GRa)Ok|Wlb-V+jIWNcl}tKVCy56@4mp@FTlbI9s_ocN$7~P
zgZAWARey{HnlZ6ze-=hb5pKjIg2|FQbBF_0`C^C(eug^=PO+Q8Mhm>ULrbAMOFp(0
zTKcHmeJ*fQ;RgY=4hwP&y3GtegI!~FOq$nVEjG!@Ev%qvBF+FdE|aadcWH0$wS2t;
z-GvWvj%`}6!bESz*VwwjwOz*9+_-|}y9(bD=B$+n_YEV0f9q4N?228+5xe>B_QZ+$
z%tPPP4t=$aQkiR24PL6MI0)-CxBj`B=_sU`g<TKbgf;b;D&gCf>()lLs=Bn9&GQPX
z1^0hNb~cW;a@GSELAW|Xl39$PKj8^lAoC4Hv8AYVik?9S2EcqdS=D$8HY8?1kKi9U
z13riL)zLC=f2oDwt?1{<W`Rxu4^0E~`6rw3n$6#%G<{b(V+pQxcU-rlIi3Q7JbG7w
zZ84EpY3f=tfCz99iRciRw>3@fJB_Z_>+JC~q)>DBS$5Hi!IxOAN;)YU2Szp%6ew?%
z4HKm|4iey86NT*1T4b!zbf~g%D7Pa4MhlC_Smm8ze+_hn7K|M#L#}sX$SbW0r48tb
zQ|{_@sy9q{3)GBXat|cQux^sXJMKqDo)wHLJ2n#Gi@TS&2PA;DDdwX|0<yK_(6tE3
z?(Wf)3Z_oCQyGvzzUrp~(9vBfG!`x+$g|zZjZY@MV3FhA_zolo;I~rkrB$Mq!0#NA
z;Fb|nO)G|fEFlS{13HdvMHNM(P^sEg-7o<r0$o2~KuVIeQCyEkE5g2gvaQ}(110Cu
z@kUZ3$3-_E69Js;W63>t<)Ez@Y#QQ)qT$kM@bQx;cqo7G_V%{=@6O)-_CI#^o;}^)
z-Pw7z|KuOryF2?&p8NxB-%_8YXGuZ}|6_aYw$#pjAy1x0!d1})@&?xya_PRS%Q@MQ
z*kPx9VuuYYK>XJM2&ivy|9a;VhStu8xRh&)i5{|7$a4<Bx$hhyf|o(GU3|H8W-#0k
z<!5C}5AT2e26y-2>tj_19(!)_z)Z#(w1`;6Uj)7fy_~R9g1ntWjKXBCj@^Rz7BnuD
z>pB!`14MFY(zr2IL#&RoQ?a*Ec7K#ewp{Nhk%-MIo{r*WckIv2uT4Ld*8kXTtfCAk
zSpWBS_ns>2|L)T#yY2da7Y|>{XQAN;k8=cu)Xsl-=r6sHnw7&Xunnj*cmR&Q#A}YN
zI#VCZ@kkgHmi@u^+|@rf9)Pz5I^c38W`-aj^Z~W2rq21mpUU+w;nc^FU3^B~3@igl
zL|pH1fxwr*ib6oUzI^2Z02KLQ#)HDfAwG@BxLodOHbJG}TAt^JqKl{S!r<Pyr>x7d
z5PN?B#!*Gva@`dmFr*|B(<MEU41I9Of<zpj1A@Hh{Tva12(Ua5he@Pl8dux^wCX`x
zaYMEt7P#56qtK*sM<1UfE^Q~+(XmK=n!`KlE0(oI#MM#o%32_ICEoLr-xXq@17SLF
zdPGl(%78<VY>C()NZ5_BoWKiN5W+RFJq>?mN&M3;{nOZ0c$1Bz$rBS*jguN+KlE+i
zJphx#^9>-!G{ychq`ogD@iD|ot$>;VLN1m9oB|?KBbXL+i<Yl9)TU^srjDeMPcx)i
zxN?cHUu8x!b~ecAO;8eD7D?7@d6ZT8+FEsGS(geflcCKMt!KGXNw61vZYAj}eyV@z
z|DhGa>Cz=Itg;8l)&F;&?rrbyD*FGEy}g}Q|G$ezRGqCLApKN-=94|HY)JX?bm;4N
z2y%QftRRSQ(F^UYuYHS$@A0=|@-~=Z%Sn$2%o!ZwK>EDK2wDzP)Z$xnpz~kvzuq_T
z^Iz}y&H34AGB}+afVbzbM}wmw7*BuB&d-NOk#ZbhcpWK85nSN<g#7cr-UwbJ_yHXL
zFgSfZJUM&aTR7lRqyUhEet(9-`SP-7`-}ejDfVZ5Iv1pW>H3%bg%zo!eG*1E_m$N~
zgtrC$>z(=`JOGnO8@GahDs5B^|1gIhSoup}VF;EaQt2<3o)Zm1IxgT*c8q`Mt^Ek{
z@ieVZ$0>p_#r^_VjJjeH0FV9$>})^lJ^QYAvjxJr6@s}%gl2d^gwUErJJauaH^9eW
zXPf`K%m01SyLk*2))fR~iRqq$zz~FU2<#=s(eP>^hCVGrBGQO{M?|5UU)nG5U+-*G
zt#9AINIUl!ykC-#;+5A#dVqhYD<z&dDZ4(CRoN$@E@@;`WojW8bV}7igl;0pGKh30
z=+L1ebARbN;1b5+YMc`J9aGpncmwTToPAQ?rP7YC)(6rhPdeG|{ntAe!n4M4S!tz*
ztkOg3=mY}{Z7c3trT%g_-Rmb04c##KB%0lt5Dgt_*sqzZr7=f!1Mz?Q@Ep8c+E*|H
zgJn363fj!wi+1BUZj)YYNg+w2W9T4t-P3OjLp7wxUm*0yAx7Rz<F6;;3x4&Nz=P0<
z89I(*Lh~?0pe)AZf$snpUPHHM*qml?pz{k{-<v_4&T<coc-$ov=4?iMM*&xD)|W`{
z_ccRG<wtDaZW!4Jj5L3gJKImTJ78<8px(?_Pd5domQBuU5%g$j)Q+w?pWz%5$nvld
zaV|6S%qKUVop25pRpzIMm)?N9B@jQZRO2=Fmx0;CF<WcOs_5vU6lw7KhjYuDL2lL2
zQ}hY)mN#dCbWgi*;&k9my;GXFe{));Gn(ph{|p=)!;(Uu(b#`#xnr&=UUk9I23x~$
zhDeB4MWvD$RpNMP%ZAp>&~??&io<DoWuEDIk35*sR=7A$)vZpl9!d5`sr=TKZZt=e
zSL1l7xMq6Jz>fd-BvGP>D6gY!h!vts7qZdx!#Tuh(H;<#H?A4FE3V>Nz(La~#IZ6S
z)p(pZKu5^*bVGmDh!wvqOwl6HpcS86Z;RbYwOdVoSVaoYd8Jb=T6GyXRtU!-wn8{t
z6<V2NKyo$F(yTGZX-?Mf(@A*@kRz+OAi7FmlR5!SYHa7%>~eMAg_1k_QfF&Tov(eX
z0+byMMQ%&Wtef7C9><d9qMsz}<FQdBW67fcBQFG-z1V*(yZ6!}kVbHm0*H52DAbPF
zVV9N2+}eG*PnHX9`+}=@y{1KHcGi0N##1N%dTk3n`~{7wTW6L)oBhKt{p%291^BJB
zdN@iTN?=(hib##LAxRhcEf$`_qFx_ocF+}ol%oSvXQ>up((o*2fxNu*53B&s8nC6G
z)TjtckXe7ByR?!JXdtRyr-y2`hZHSgK;`>k^(IAzQ3qAy%BtujMa!xJyp*3jVd2Oi
zmY00#wfU@4s;szgYh26Cu9`mGOSl#x$u*R7@okEkR5(A9NqMjd!E{S42@+r%LrZX4
zHy{{?v@%}E6#O?0>4KzIbMGBzsEkPKRIy^3EiZp5Bq78L<Wa(WjV&9VLyYK_(Dyj6
zTaJER$*n0w63y=GlW@Od9^6d1bDa4e@4XD;t(NbUiM5$e7TH~KMj#Z24$g;|A3!)S
z?MDvcajd{`fT86a`d+m3BA$$d&$y|`K_(z@l?F;DEs=NI2L>9+Uh+7W>b-<B<moS~
z>k5CCzPGNaOxd`Yr0QJ#Yby9k$+oM8UWspCcG$w$RrTktgRm0CyKeaXUiI+%x#pX%
zBTjg3AZMlDg~@$%f&4G6+))1C3s<ogR}R9U8>k84YZ6<Wu`-fH&y!|M!NrSn3hSeG
ztM}08qX`#LBz1Eb%z-Wp;nB-;><18s2$Fv@Z_IKWX*h|M?mCy<ASvIn&{xbt5AgzY
zr`OfU_R}Yts?)jbrBqU!8sjrC2|tc&YVT<-5?F+M@Uc!fadUyP(QKLOi)AVeTWPaC
ziP8xGXwQAnIma-tF!E-#7><!rn!~flNa?xMkSGXiwjcwv1JFIeQ$SPn>QQL0H%foo
z^M&t#{q5~rX+ghI<)r6mC_#s`IMv8ndK<<xA@YoN!BUV{jb4q1Ytk~dIs-W**^w%J
z%#YktZQN9hiZY+(R@M)unBZFOSGKZ2FU$;IJV6g_KS(U?%!<9_G2$P#Qt3;TN?q`<
ze~G+)g)I}Bg5Q1vU08V~ql;^r*vNlcxE=8O@6SOvhhDs7@9ouEvL&d`!4!$|fXUE9
zKUnc-QnVBZ{W?uaVsjm#*%X|3A-jSr(x;*Nq4PW|Gh(n60;U5l#i!RG$+MpydOcmN
zYV|~z9kmD9wNAxMoZ6-vSH+1yQNpoj?`GlB_?V5+h<J|kJg4tMvA&AXn$3Tz@KQ9Y
z9i>Wx#>?`v(7+1qd2dylB{>H)IO-X7HZ$Oc4y?hy29WZ27vw-@ATT5_9I$y9`~+7-
zHxDBiU*BaV!QlWzWt$nrG?BToLW$5re`(K~1Kp?nzObzexuMeImd(JT%N!t+ax{Rf
z9uTs%kUErX?ARSniAv|8OL~7c4jY^#+ll}dwRr_s&9)g}bZvz&0$hbM-cN1c^PnBx
zAL2+*qTRd=`pC9$yCjlruV2_8#CO|Z02g=L;CdX8+n|~34M&yledI-IopLa#zSdOH
z<h+tA7c&uvn^}u%_;NrMJ-#_>nr$>qWOgB44{UxMj3&pg28WZg(XW3OKb{?*Ui>ut
z^%MBM*{1u^u$5izO!GcHWK=Zqub}>lfn21_Y|1bjS_-+RJT*sLgc0Q1TNF!7>Z`-E
z)6?PM<YIF6)9`e?xy|e38gt8Tj%v6%`$1dH%-OmkCTd6<tEu`o%gohy_sw8D8IJ05
zuf(iu917W$=Ec6JYj%HZC)BNO!cfwiLa(r|WT$0D)SuvL1g8f&8*ELR_ie}~AjS$d
z**P;XH2FJCM%);D)7b?wZD-Bo09?V<0hPJkE4cdXvO`N%^74Amh^v%9EJs2HP+t}$
z#p0_=CDs=xuyiDtF8%k5`kD~WrD#(F<%=RqhQDcv<L@3A9-e>y5wIg*@XE))d^l!=
zl4Mpf`@R^?lN)e}DeB=kG47YazZpWVbTpBZA4ErW4IeXWiEF)+mdpV)J8mgHZIN9B
zbf?O>CpCo!En38c(-Lj#!gu{)N)Z7H8C1-r8Ye*$50%O4Qk>W2a}lO?26N7Mv@@!d
zDV#ultiTq-5>tOz?Kr84yO)aRijvUoeodDCa7a5*hO$`?gR(OSaYz7^bNAPt(6V-P
zb#kQa^M+C4rfBV`@Na9wzk(|x{8XFBj`G?E3o*i}LVasvQlp6gE{shCaM4IFAU5|R
z$z!}$6KhUx?oA(YhBKMhrK>*Lk{N$2s&TRkUGa1&!M}g?#rpDmu?pR=a%M9kh{J?{
z<okkh%j-F?Ry1^K;M-P)B{fV*i)ivd8N`doa0uHjJeyANl7!in)x=A*R@a|)sTWnt
zRDXA-VjQK?61n%>rJ>^@R-;w?DXoypcM5rZuu%BQ$45NuNQMjriD(Y7D%^UB;B}`y
z?mCz4RhNHT<T(wSByPaMyRI$#_)DN6c7*qfg{TMF)W>3^*wByQL$C})WeU@<r!@Yf
zc(nFmj$8=-2{!5X=fLq9@DB{Oe6J%!3+OLHuuDLMDd^gu^FMtDUiU*g=xYK5byKuN
z*HwWQ<4guTHhkwffHx?-AfXj5$&1bZBO}0kpErMnBA^TZ0Nbe_GftwrKIfwp$K(P2
zRfoDJ1L8s$fE^LE<9qNnR>b@(pw(}v>or!TOwD`grLLssi2VhcF`KJ-fq9se>B<N-
zcZESHTz;t$yYV%xGr5$k1P|dc<L=-FLn#^xFw_N77T3Sg((?o#Kea|2>R5IsH(oP0
zH!XkPCO6oPh>cMYl1Qw-==A*{<l(|aJD(K<(OBu7B{l^JhU*gvig9c7YSd`yrC&NG
z$2L|1_Q+gnNqC=M6Zzf`&|O4K$DI5%P}DMo5XW>4H{c|GZ^XUC^(A>mMOZ<*l|ts5
z5K1YF3(z>8&8JV`d+`0E5W+fr>Cd6N=%#<bU4OO(cEA6(AlL+lm5+v`@QMn#1?10J
zwQ);l6&wF_e17rE;COQJ>TGl|{Lf@KIvt!`9K96Ao1V`efKDWwb2DYjA~6YF8pqUI
z5~%q~-)b=X@zurnhrwugba6D83|<b#!;81$2)j2!6}Pfy$IAMpN6>txD=t9Vx-5Tq
zQ|2_6ADxzha0OQyTenM~7I7WIO<4HVj+e|$nnY1FT%Ej^C)&<sHyTFs;ezHx5v3>b
z2{I)zU-Gthxy*1r7>|EB8y(#iGh|~dRAY#^{(4N2K&i$UCgfY@sLUMkQ05MNJ{2n?
zmb2N^;gEhc;8MV>#c~O22rznCQYwFqPHs&g$w;V_mn%)MyQVn8ZdGZN#kS?Q>cR-S
z706phnWtw*!;2pV!_&dblVL_aB#PX}ya=W6CdAgzyGGde7SIcSwlIqLS~60^`_e72
zsYLtJ;F<5MmD(4$UN7z&RI_Wk_0gU>rk|T=M%^3bG^rMCsQF}5lizewEYp8%o+DiK
zuqqsm+5I7f0t6^vTEeC8V<Q0&Z!H933>sVB41!IPmOWiAE+KvlHX%580hV5fTtn*W
z^38h`=Gk<}ztOkkFPi0A=kXyehb$!H$B!B;&3-eSu{YO5JdWnK8Etr@vef&@go_%e
z$FROB-Mh5xt7TyB$GUxB@S}fTh#2NA$VGg?&X|7|mci2ekZWj`AZpFbQi;+=X0a9v
zUR)H?weHH`-Nw@3O-ZLDo77(!y(vkkU8IwmL|djg9bt+JP2EWl{1m}|?$Uj^^&M@_
zchoSqEWbgL)vqkC70pnMv<bIMGDQg4!gQMa1bIFO(tS^S?|zYy0Q`R<z34i#10kUy
z=|y;JsYzE*zpoJ2^g<7!xlh7@i)fCi1b5-3?g&e)lRdW7jD@X_5uSMJ2QCWvWRr<6
zpQ&bME3U<o*=JJhtb3Blz?MJ6<Y;_N=a>2@tld*^C2{vR`e<U?wkFQRwkEc18y(wD
zCgw~uvF%K3+Y?)p?33qt&-<@>Po0Z%aV~b(-gn(yyBh2FS>KhHeK*Wj$nRKy6dJ<A
zrFWC1N8&?f@I~;ppP5AZW`V9@?9e=!AE+c>8j}+<V0jU5I?1c6WhKe&%0-mI`Ja`H
zoE#!#MP|tXkiRcKK5<+`aee|yM2g{b#QwR1Km?+<;a=>YoDZ5xF!b)`%ywXT{ViFu
z?wdzgORfCoA9YV(^Y$d)>%3Uc!n4TUYF6cX(w*a#o{7-+@>qI5C6}+jLEjFJIO2hI
zeTYT73D0OqDDF+NTqcX^4oC2h|EC17{*(auvBKk@5MW5|jMh~uSn>f3?*D)Q;=qA=
z^jIJ^HL9W5h9@fA8>714l>nXUI^#4tTZe8Gb#``wT#kq$np^IKgu_Q3K)~j$DD{U$
z_D2ESo5!DSPxAL}#`QSfkrrofUg$Iivy{(;X^RvaTR0to)bNtwY=}v)a%dOtm44fU
z6BP_=b3K*TG-uB<H-lC82I=M@cA4Goe2@L@SpA7Tn!>=}D*qZ4?VkpJU3B}P`xzJp
zFEv%W+p9(vnkW5Xoa1c`0+#xi953$(H*{($88T(t+p;*Pjy!LI63qAAi>C75zAaq&
zC64TM<TUsu68vSE9$=AfJhds<pJAn*VJBSCo~foQVpSDq!&sC@lWA&_NAsaQ%OVfm
zT+=Coh0F<8KpTs%ilq}>>*lnMjs$P<h;+BR=xlLr_VdXV;Pa$x1o%f>{88rM@cwdC
zI}E3zX_kk_9>8#$4fbH^xxqa|+fh=_M8}EqdEl|8-?wq*G=`@<ausaI`V!P~W;M2e
zUs1R=4x`WD%iSJzcOgA%J3wYXj4!PghKCilT|{qbBn8si|74l94rxZcKt05lPIgdZ
zPmF}r+7>Q~sLu-$2UgOm%}H5%tyhHie4TdrSZG)ZgwbVomo)eD)}$+5DTdiA+WTnO
zne@I)jYgErXj%h_Yy5mf-8_8wd3rg72{fPArP*0&`)4q>X5V|ExNW097S*(ziqDqZ
zOEe8?3fQF+_3?~zV%kdBaD?sYjBLHuux(9_sF|dkm&>s305^J*Vx01rhHL<pO0uHm
z-z8jQ&69atv|deW9HcHgi8TRiYrE(QVnHeQC4TRzK&_{hEY^i=%PDPAr140OHhDar
zq;v=KAx(0Ixtv)&gX??=bPB4l-}*MNjB~Qc`+oi&V@ZmtoTo`kx^ls|y;U?4;?%lw
z$(dlBj0&Pc!1d?-hn`CQQ<E^h$ePLU7gxA5XPxq&>8YGBq|l)6Hg1Vjd(LEdlCJx}
zG;N76xt?SdKOjR?dw$>AXxS2Z8sMYd{NXnxrv`^z%B(z8s_QFq_ZVzOU6F+_*EPYr
z1R;?65c@?mVu?SWL&OHQhtnPp`kMkDzCL>7?`pXNpr|%SK&)oAQCTc_E1T2d!X%wP
z=E1>IhQ&>pFHQ0Y-o@R)X3XA2xBI?+DVGUv{`Ulj>dgAmhM|}r_k^C0y>R%QIUnY@
z|F4s=()eTiOFfJ4w(SaZ45ObOh^H4{1<VS2F%!y;06n=tX1_&9MR2dw^9WA)gyy5a
zS@b#sn1ImLZEJ^&Sj-FE$o^BXL!e~P?_j>lsai+a#ECH%-;3&2n7z%tUfm%hUFBG*
z2E9jaAKs_2NWEpUMTh>?<t+No=g4B4b;Kr!hYx$D+{?;eS9kbtYYpX(=Q3pB=@M&3
z0T*y;1QVZOZTc6kKfRQ^xlgSY-bIER-H3I$0IziBY<QIst#Bd}<kSg|=Gamyl)TJT
z_W^!otXIEFzDYM-=mqI%ti<-IjMMiBD{eEfgkCWl(lMnkmj0wM1q4Rh+H1xcnhT!A
z^F7T@BwxD(4U=AFn{o(??2EQUNk2DS%2&Bmf9>ZNnyqctIhr=WR?B{U{@NPhXi5Vj
zW6zAvj&zTWp3B%<U_nnbt?l~tD&Of*DJ$T86UHRg5L@N?U3lm#+%D0Li1C9~5a$?c
z2;daVksmC=ZaGLfYSjLy{!YcALX>*ib{72%hFR+CLYDkcZuPL5#YAmw4S$|7gu)L0
zd@fw(>)O27^6>0{^oh{uRoq0Q?8*nyGp>)VoS(XgK{$S|P+%;V&U<3>oJ1H8PB!<=
zgC$j`zY4-s(B@4R5UMb%h5Gc{Nx57K63TYCXWRoRDSp;nlNS+R^F2THa8jYuK?DHE
z{XF-S4OD!$LZ9gQ)`FC2{M0%6J*=*8hP#pS1scrgzxH66TG$^lvm4d|h|bGk+gI+~
z)(Wbi$97MXmUc}Q5t2CiVZvCcO_%|-=jzELMm&!%P23L7WF^eDR#6M_?l|G)f*N+h
z#-0@56tbAb-5Ku1X(38g`8k;pJ5R*Ilg|qrBDT{Bo)<*^4kRho`BQMNJ>ZfmAY@<%
zNx_PhO%Zp3;ZE&LG92&#1@muZ+euD|>eUP|#xqDo64Kxl9c6=J1WXzexisje=7=0c
zi*+RGO6|(uu5XP4VL=+X9zXkRi4JD^E5a#%Lr8<!b4Wa17!kdpM>&W>Y_)ZZCNukR
zBa7iT_~p6w-8`FIk3a7nJUe;uPPMMkUJ6+^{hYFTetkaY(3MC9CP>KjZLohi;%P2D
z#G{cz1>kjeeiOvcQ;etiWCY>AB?oR$KJUi);pI5L<CWZU>3F}N+yP%jLGV7|4*9u=
zU!jZTN5=D>>uD<0)6Rr^Pw>d<v2j*Bjkh#Nm5``DMT7$t*{6umFqZb{)ULRmU0ok@
za#K#F;4lB{_3agSd3MT#41TTuYyAI@jbLeZv+r{(D3fdaKWxMl>Hj=Y{2w*~_z#Xi
zcO(+h9hv6ZkS1^_aet{gy<PpZ5uaZl?FQohYa@=VKW&8n%m3I2GC9gO|EQl-|I0@F
zr2VuJN6RY?4_occQ^AS%TVEaSi@FGFbi9JV*JqI1Kdpp>Bsb*W(23<fjtT<~eY9Y4
z)}%3FQ)r-N@AvlaR(Hk^QKFc$ydla<n;T`>43g5!#0df5bo^VklCJD7W!8YgGwiXL
z%1i&OjX*<;O!>nEm#V>8)~1gI=t7`DcjWx{EUWLvt9eVns!q@Ok%s$fmNk(qd%J|W
zyROCphu!ISYsJip`|1Z#$F7-&_#MLn93P7^)M5ZVvSake>tZ-h#cT$6<}#T=n~I;S
zQ0`6)xt;Zd{g>V5+Y2jO@8ut0i>`Iktw^|Ce$Bnb?*DFDWRa&{nO`i7&R!337}?I+
zjtN8-Z)dmV<A`9s(rZgXky=nBolRRLA7@yJLjmB3kjwRCCwgwe<?CqM_bUX2khb~|
zD^LK@K_N@&{GKn^Se{OemLHB$!|FKLf20MevvF|g|Eshx82;bV0%G59Y~}9{opHzi
zQ(6qT<u|!}g2Mko3y&n82rG$VEFI?CDvY!y_?&%(MV<K0C&FLXrbmE@B9*~;#Kf<g
ztMO!b1~tn`KhQCq%Pv*pAF471cmjt`cQ<pqHdEYZsGD^%m?M|vF^LgHW>>rlfXH);
zkv}D}eLn496yIjyy(@9JNbEbp>U)ks+~_xfk`#mW{h$Zo5MM#lVWwjp$yd4Hw|kBv
zk_@GflWOdu0ksl@d~e|LFPQlIl5>9Z-UVUzkT3^tUFVamQ?hKfn(^jRFPIXu4RmJ1
zS4<;yZR<bhi6f&y&0%4D*lYGK&042jE@c(%##`KWA-A&$Pa}C(y{vAhOx#$Wr@G+%
zD!b9NN4u5^<w-Sl=#`jToT?1qs6DJ3Bd=UAeJc)Tya+K@Eib@SFT!jf_u%wUq!1Dx
zFNaCLdPP)6AlLxiATF<zTx{p+N}ibIDY>Hu|J}cXhimAyanzT*&Y)+oSvz9lz}yS_
zT>;yK7S15ALIcBS)q{UflbUsL0*YrAn|pd^=<TfjKdT{XYejtn(9_6P6Tq}Y60bN;
z%qKHXL$WOMm#l%NEbBbom0x_5xF2=moR%-?WelG6F6B14QS{sjY_8bMUka~8<*RS{
z)8)Lhokb$kz+DmrCcy>>jyOiTLQ72_<KQip#c;bso3Z*i!a_A_tmG^f^w<Bcp+<-=
zfU_bFtx}Bf5D|Smx2roBd%TK$J7ZYo_CF*<@YzDc?r#PVrpquoDGOJkePVNC;j3pp
zqXbwgRNNz%`U_hv&HWDkc#o!iI$kb@Nf~vN5OPqkPKpXvRM7=hPemrx@djN{n$5gc
z8g<OI68o#>nW)Ndhp!b}dS266KB^K7Pph1RxI8QmRcxr({}C87YGFt4GCv2iEVBl7
zbp9FHumD&670B_2jENbZwNvn)4iPIIl^>x5fw<|FdRMK((*2)<!?Zs2wzkCuRh^*8
zOCC|+7;0^8@JJxhGdl0y1PqzC`l343$VJ-<8Ub^#lY8hj__NlOjbRaISB(2^r`cb%
zX4hyh=9yT!Mhhkux_+kK)1Q=ELgejfUv08>EP;0A9jIAEE}fl4fdcsV{M)+fnK>yc
zY>^;C3?YdM_qkM8{F#Xz_7%?2Z`KAOO)HcPEw#aAQQsg}Lj8Ts3+~f`nwSxx+I=<m
zFxMLm!o0U)9n(BQY&$06zU)J!UpWTIWj1J#Z*a%L)+jXA^8t94A4k6H7{{mV34Tg^
zw?LXkGn*#?LFcNLGvbo1!#jrdJedxAWjk>@+?f=WAGzx$*_g)5K9RwImq}5<3oD4c
zdvt8LPD2qEBUfudeK!9Zis}25yG7xD>4vc!SRjvVU^_VNN`4l&KrnEC_)NH_DK*|(
zN*&QsB*pRL3ojhMB<4){rhR`8FJKGIxXlDFL{Fl8v-#pYV}BiA9!Q!%O=d*kK&g@4
zzJy2$K`2hn3w5M#kh1Pnobth|Yk)+zuo0V~Uu$yBiG+*q>9OBCdQ<?>R9z2VaUU-N
zp*M}028H00>YUEC8rd8j?R=KT4ENOjSUG1C(HzuCmi#^#Gm)NMv&fo)-;n}%;g{%}
zTz7~<QpH`KlQ?Lz;jexUFRP213F6+>x4>&p!AP1@OXn)M%4S^qt*Y<TuUk;wN9Ea+
z>@fEQ0apjDeCU1jgifLupTs#vAyRj)72`kFqozit&Ddn`Kh{IXj@%vXLuAvX5(52M
z@!buKw|#tgxZm8Z(T>~26cCpEihI~|LnMvd>sY!bS1HaEw9P}=r^G<5g$U9TMVFm|
zB3zGNE0@&Nz&d7oBh-h&#)zvSiJ_tzTcfR!D#kM27F^Z1stQVWJ@umam9*cGpAZFx
zEUmb_k!FY-o7-1LW<ZP2Jb83Za&d<xP;YcKf}S7wB-H^fDJZ#H0oY3U&Bv(yrnk3q
zbacGBx|ju8T3Qx?mi)`hcT>x&)%o|$++52yrH{I<j<<u=DWTrS3wJ*MbjrqSq2^@=
zxr+^)+XLU(IqmWo^XcIk6NF?e(tyo7u*AXrTF(cjQ?eeQtHC*p{}?PMW|3PQ?&MdV
ziDYF=fhB&htn{~Gph!8zwO1=5J&vALcLPoAH1G?;wi7Aeeo^j)v@+i}OkwXLiuMoS
zlBfDMbq_f2sAXF&S3(0_T?wc@18-yVUFo2!J>_Q-L!IWJ#Zwwvyea?K53@@M`tbxm
z9NC;p_`GiQF5io`p?!IL+Zl2bECB79_<kbYQrY`+xvd`%=ZW?YZ{zvOthS@6_rPHc
z`Bnd20E4$Pb=C@vbep=p>E-JrC}Y&M$h>=)?RzhXkB^TYbj82E<?sSx&KrIKQ5C0n
z;En1-kKW!2G!}R1;MCToB%sOmQL13=*3#~25}WF2Wfs>-{jTdlbfIogwCw)ASnmI)
z2ITzhIh!6Z>ig^mJvi-d|M)!n&1WEe{x8Ef8?KvvUk9E9Zv%oE7MDf*nbfn0*=Rsf
zz!!n8-xZ%NcAQT0DA60TB^YO+0W>-uzdBsCo4eiMHNpA8EQ20K&>aSert{lfLKt(a
zGXEJQ<7Xon(9cX1^1RK(sj6pILBRzgH{}>yUWowH=?Xu?n%{lI^*k`Wyzg+$;IGjl
zw{RZwH4TcNs50wP5t8(z9^RC`g3roFzxXGUs$XS)Oiy>MZS|Cw{3{<<@C=9S2uJ@;
z3d%os6dF4R<q6mxejddih`>&~@X*e9YF<IhtAN+W8`7=(z+VY{XR|M4NN$byiIW~E
z)JcFGgL-1yO<B0fbz9igrXwW+bD3{9q^}*S$ya3u3E3Q>Ck~iQp32T|8|lX{g<hNb
zUdotk^H5U5a=mnd?aWaG@CMol2Q`C6lDB-Wve^(U)Fi7?3vEq|(okdRkyyc@VN&!w
zR@R(k%yW6rVrA25Ckzk6ID8VD9f%J9vZ8@pG3>CX=gwjwA2iz)XYD0}+Xl=$*~9wR
zDA@i7rsL8>ojjzQ%)FQcMn~-Ysvq4Nh1RAB^!qX=G%q#n_e%Rty+7=RDf2A5Z49cw
z-U=PxF2OSi^Blo=BCsAa$hveTlAj4rFXE*}=WX5H7W)!k1xa4zzHUIs>`<I{r0E0C
zT(Y6^Xd{Bx{y1*fPR=qExM>bqd(|zfi|C}kI9R;%y^7>yE>%eO=iVofvDEK-bn8Lq
z0_&?|E5M`9`;{WGc3p#>rXqT8x&^8;y0!dB2Z~2pPlC;IsLpbu>~bLQaxMLGApUX{
zyr!IgWm)^8#`==ls)MHf+nQQa=MA9d>W;mmIKDivow_`~5Wz80&hdu|W;rpXss9@R
z=>c*Zm}T*V4U>gwn)UWKIuS+3IY*MT)@5G$1Qt|ZY*4zGJ<hUP>R#uInT+}5@WEGe
z)f;sOTAROs`aKY1=xnzF^0c({)qDVLu6xh@1$o}k&V|utXgB2vSNtV;s{%^+0w>mf
z^)hM5#0530m)<$nx@rwzjOv67BK=`fTBPIw*cHAjc0I~pF!=nb2AyLobGO#G{?lyz
z5LzF52Ay9uoq=-sd4Ad4hD=?{5w}lQ)XwOH|AmRuw(RPOpJk)dv+0hT-mAwTP)TKo
zSiB^_*5g{x=cw{MZF=Uljsq%7s4kQ6FBAVfNu6yIF*!RgbmFNnTUBJRR~k%AZ2ZBb
zzT6*qm4Z850&yJl+gE|smDoQ>-rlO;L5g{t<iNt1_4-do3uC9m-+q>)-X6)Q6pkK)
zFbQ#x=1Y**%i(>qHQW+;hw&-DEF3)YjLRR|WSaaPcIlcv#*O>3n}N?G5LEp<J2V|i
z>kpq-6hfx2%TGOP^jmIvypwYdcI5i&-0IbWEy#wOVY2mY8n&hx=S_3)Jz3g&X}BbN
zDm`?+A4FyLv-5f2xW05n--*m<cKvr1H!Tuw?AijFYUqdBmm$dz=c>>dl`ev4bMC7N
zT_}G#@GsVClhIf}lfdD6jMt#>6_yLxX;(N|%$ocw{1H(ipGEd=B~jc3S17Pm5JQHN
z5;HDApiV~_P_n5v`-VwqjL)Y;SnaUuv?+N#41p5ED?)7ze1eMx*4Wo@#*CST*PKQ<
zWh-MLw$;JAlep?df+Lnd<sdnRs5@!QO`&U<Zv%<{c87tk4T$g#PPh^(56-V}3z!O`
z?DZ$kSq)#{sO^{A&Y9~N%w=i4eFwoZ2aUTZMxpkOgky4xclL1>vqxDaX!BSm&CFKm
z8`0>DIaf`HrHV@im56M6|D#KCf~R^$L2qAg_YB1yiA;8i>Yn6z`nAw7Q-v)Vh-No*
z#fP}_+yFRd7XcWKUG*%j^l`$$qqa|FycXks7_oQOy{dU?vz_7I@S9VH;|2E#B)jq!
zhP4n6rd|u$-U2Fyf%PrN{hp1<ySi_yqAlx-j!!82|KM$30&LM4IZRtFh$MmGr8$S!
zqvM0v-=Sn&mKhEkB_m>FM>;r<%UON#py$O#!u8Is7;?#vV{VbNtrx6(h!3E>>rU+m
zlxykxmXcMt3>@eZAnRSXvfR&1@kV8CC=J^1+nvjecL(PcAJOZiOoJ!(vDY70YETDs
zG*Y`jt>`Cnz;lng(qQ2bJ()YE$thHpdsoAu-u;;I{WZ8t8y6z*Bx6&m?`kH2Q#J`(
zOAC$|=OJ<*;vT1=j9KrEOa0OX!H|QnJKb>~=0_%K2T-ZlPgOhRDe57bp&QQ3Eyc(M
z_9Vj&=k81F^nba>9f*gtDyFOFW3#e$*_R@#4z;<JVeHc&Z=$E9nGHd;2O(q@bvjR&
zW0%@7m7!s}<W?)`^bx^G92m6~bCgvYEgT{|Il$e;!E(91^hVS?s^sV_xm{H==%}_=
z^Bi711E1rGmo{E!%Z)%!cAiQ%p!HSYwd4WRks{SIv9R{`t1S1S#jkVE>eeR58aG0<
z$Wbwnk9oV^$9SRfO5O!K6+fhUVsvi5(nDzNQcC91pz+4v>QLZB|6E9DdaGf$yJ6FH
zYc}t0>gh*IPts}KcVsNjY{L&`jL|k6cA|qZz+cME&7cM%hBj+vf`Yzk#qg;X-wn?^
zv~<F0&gX|)eudmkMH(I^9po(qqUH5b9M+oa%nQh8oBtN>WgI!U1_|WjxL>`+{e!6M
zi9tt;9e<&ZhSrD7qMOMm$w{_5HcLKrw!YyP+-Xs68)qC_zB5q=hO0c9OPieN9qti3
zaOBfm{OUnb{Hii%rZ%NV*=vd1pa&%6eu0XU`^YPnpbweXDZM;lT?6z0u8>yntNgux
zByZCT&tE@b+mr6wv_AifVsb2O<W}4^JQI%h65LnQcFcvu3{<g0Ir&~RPoBm^0{3F6
zBbc49I#+!{ZyBR!DKF6P-k;r|dnaDNy@@N$i#M+qyI)<K9FR{!(q;68B+!r%b1pHr
zMhFtQpY*<XHV}LMtKfga8yt7?3(f*369}(quHRgDo^P<+aQeY&%Luna5F44&m1cQK
zkPL}H$3sUHpHRnuy#E5@83FYqFrtJ+dEBB$$hQ@X;sxFt8TL4l9PiZ)3LS|2EPI82
z<sxZ=a`P0OIb+YP%2h&RtbOy}4qEniJZ;y_3K%ge9}QE<=m3I|L$I2zf0>@UGI1RA
z6@|?5>{@{pY6rsh&bVlR&If<?gp&#9T?yCh&M%MrcU^OzA|3+Wm@?O5Ql9aE+>tun
z=xL(J_{*lI${k3N*5WQ7V9mtXMk%TbSx%fo2wM1N1&$I>VEWQW9vJ555=w@2gAOnD
z3`RIr=%0204^}>4$Smtd8|=)V1}2_!I$3as8|o_F3!y_S^SwU+w@{p$gE;iFcc9T}
zR9R^hUVQU~Df<IAMv3Tp8fO*(jZ+fiGngVO-ZM-O$F1ixCSf{(CqXbuH4jsUH$A91
zDb*Wn*r)TBS|*eB(KI@iaIN*KLHWa%{a`ba4DA>FcR2*wXi)7PB?idy$~vX6OdqgR
zTK@;~ygm30DwG?Hv3;d74B$f<2*iwrB&G|NU~kni5IyfhotytL!$}CGnSus!_&IW5
zcYlOXC<O1`>MNWpN8)6#Io1&Q$M4F!D5a#2mUj+Ukf~)$6KG>hRT9)eBD<YYb8>?=
zsd|HreS7QPQ8K6_s}EHg&b6$w*8_By8@+oP?YvfgsX}`Y@V{LKZRTFkWWDt$J+8m?
zc-~qq7fxTk)5&5mz)B0D(e<yA4{-VrRVyq~B38b&rF`d1(U2waNPd`^hha4#X<99F
zqjE71aSNWTfUA@|Jy4afE;Ugi|M>$nmGlLtn>(D$^I<1SBGN*7Fo!~Tk_t#HV~LXV
zFb;eCCteWsS54XE<Ig0iboN0j+`S?i#t0`D!@8@LVbY=K%u(qIA>%Xh%DKX~^DVg;
z;lDz&%AR0EWmJi6O>b`bj5tLxp>y#z92IM2TPJ3AhEDNq!IdLMcf9z*&UL%ttZCT$
ze;bLB1hL;IZ5Wu@@ue6v$zuWD5@p+2S|yfqx~5S~bQ>{*(H6XTNKy}ssc*koP=l^w
z3%dqs^@v^#U>!vl-?&V4fAxZg9ehn}&mZfDAVRL9@G18qZ(kdmw%GWYRTz?wEYc}V
zTspbDQoqYH7`gY?H{Jnloawh06@um4g2<KMX}j~i0F{>VkuU!pbkJ`g{VMY8x!d{r
z{w_92iAK_63Yvp1?N)}JeD&`TVbu`DJ>>R-W##`ugT!!kVV&Q#*kdK?+id>?rE?i=
z9~s5+V@jsllA)LwU(7yIdUT^#M!t#J!+vpHL_V<xzksq;z8J1EghR{_p`nwursfu1
zKnx#IE;M!g+oLzj47m4F;3T2m3ri6P#~+wv&lFQfl;|bARnTL_mKcv<A!HP>#U#P$
ze3&#g<ci^{Q8O~mj?^I#yIdtl?0t%ukADVEu7e0OL-V#sj&OxE)*7Uj#;czG=pRC=
zz$wr4mv1ruE!)$BXD1y8QzpC6l;}@+G0CcCtFa^EgDnFbG5tS&nvWfG_DQtVS~*WK
zGLzmsnDZjq(kox9rC(UE7oH3~wV#U?rhj%UK$*r158#xQmMMRXMrh~B-FEIjge(3L
z)u|~upsCJgO>YF#Ck$(<Lq*DSRGaFdAjhx|cXel|%d9Z^RV@G}HE=h3?Zm<($oHk(
zGG!M$bAk-We62YHgttEH7@{PM<j!VfD2e96cgl+Xh(AT;g#*b}P6bXcz{XvnMoALS
zg5_ZCaCC^>dfC86A+aOxNeL}C#z;QAaiPOpF|p=mRk_W7%iDY}EMxZlHQKCPNZ!7S
ztzrBvLJI2|Rry)uwBAjXlvyh){`6G0P30jXITas}a~TPdiH%&qQ=}_P%eH7?j4mr_
zBM-MO+R$6z(7?t~DD0}&m(ipAiZq<o?><IJF0neCV6rEbnCFkXW{0t@G|d-UWad2v
zZ`1w9-pbF9<HG$<CGJAv&OKlFBc*qBqlzKT&p!c(6ry@J|FWw#Jw-PZ6|$Zigi+GC
zP)sBMb>0A7;m}|RtK@*9ddrdv`TU>jCv4wFKByM{QujYWzN6(pkrP;T<$a)Cz$C%I
zv6@h4u<VotTEp|<=nv=}lt4gln31L_7hA&7DO<++Qm;*~z+zR+ts}6Z++MHaLf4p!
z&9t4&Ot|;|w|B6nTif5ZBdeojvGOY0z6dxdx7*EXyc9a`PHs+6Zpf<E&5vIyS3+Tk
zN(!d(RAr9~FEv)>`&Imps%VY(n<R20liqxC@-O|d%w*1ko35hIlCDtQcLnb`ZlVfp
z)W7uhY&&@OXtum@C*KR2pW{SuShY2guEn;)v^cjBzA`kU&s*^@;HOx)QyS@aWJv;x
z^`=0!3N6hRH*XVrG2g+0@>dE5C!4mL)W4m|FcXO4Q!FQ)%M7v70S}T9!!w%+DtfKK
z=4y^QIA+C?J}~W!#YLx+@dlaam*jSNagkJTioXwSwIzHJd(wm&ozOxnDMC?tM{Feh
zL;mRhbYjmx)}v4HGc)HU9rN8pi|+>V@`^B}&szKOVX7atKm>wcJ`96g+XA3^$wAvR
z>u)yydMthIKSubxWnX|oy6;7<@6!*8j-PWWc{38NMD9=EPs&PIT=Y~J30N*SJmXRO
z#z|HFeP&{5A8zzL4S-iwkx04H9U>6r{OL&NxP)&K-r89cbrAQ<UK*M%aF+)hj_7ni
zzn2w0luh1&c947*sIF^s3)G%+Y|6z|>^*%g%|PAUOYtmKvR?_)T2y|By|N1N>)Y%G
zC#wTxbEvyvi>mTfo?le3(K~MO4a9W)efLf7O6~0Ac0=jm;T^&d4CH`NdSXd4f4@rt
zwjC_ot15(UE8n3J6-jNT*$zOmu%*-Ol7p=2?GMJAi{$;IlrDMuH)A%@KyH?AKuVd>
zI}Mkli1bnij8^T3kavAU${475ehbu^a{PF8;f(%@?x;B^V0k2osK4z(x-{%q)I-eg
z)%yVk$r9lJ#%k0BQ;3od1#$2~mR(~7MF1VYdM%v%%3RTj=!ZfXv<$q4wr+fgd1VsL
znNoSb-2AzN3?2n9s7dGGP(e)R;n1gu=|0TkmzgMm=_TKQiJTsXY@)$L1z}HySgk6C
zi*S`uVGsjjxOOCF3Z=OTBz!yb<t~F*X`uUG#T0C4-&%wu`!B%kgf_R9JVHoR(k^38
zE}iUmyGcUdpH$DMTY-JZ-}9RIe3&R(dm5CtyPsh`_jg}^-N5WXB2Dl<ILnf=YD-hS
zQ3mIJ*JG~0gTS#Ync%Ti>m0WT<<lYb;_p<BO#rLw<!1n6e-v<ovy6UQ^cLOd%#+&N
zUJw|r-^BAenOT?b%~#BCz)<J-((?|@`$LI$X9)CVw%!em83OpU%{$wmGVtFXygOe`
zyoj#(n7$4+`+zYDYarlwYZ^HWF+@Tp!uX*;0J1pHytOk?OAs(7$qVkq636%^9Qv~^
z{k&<Ugu$02|B#S+nqGkaMtJcs3&%G;1P*{jijSkY5I0E5j~C9&kQ5MP?B{!xRMD-q
z3gItiJYb#zfV@tPB_!<(=<(^1?S|xW{rRis9p)N<w5v<2?U$r`(b3^%dn>ZfukPoo
zNM{W{VYj9=vM9IR$5f^7^cnQQ62DXvf#shr89q!D1RP*p5w^>ri~9L(Deor?9-g;C
zh2;L5=o9~yj3cI76B(?z1kuJY+aMc|F<((rUt<m6hvyS}97BqJwqD_qN+Y}Bn9HYy
z`C>?B(`V*lY`Ylf)Eus&dYa(!h=0Wt5<Cu?In3bMFJFk)O%bagSdSk-l&|H?CD+Y?
zx+o_UcM;CA7b=A|m#=o9sF(|$IEgfj(O!mK9v$iLN+tA@Gx$D>rCF?2ip1?LVgAEV
zna&yD3ENblYfV$R6_m|53}n$0PAbxKVnx^Sf*z<?)^MR2xg(;(5&6d#k-bPC?JFJl
zKGWj=1SXF>%^m1tO5G5M$LxVCB}IsPqa%O0lX*F(Cc$+DA2)WTvQ_hUBo%czU-2}r
zER!oT{adUhdo~vb4E?IgZ$CRRA59Bee+Wz<Hx<5cR5N_SA^$0~V$42~^OwYO30Jqd
zBRd|Su$+c|qr7LH{7Ly!zF;<Fo!S<5s+$QdqW8@rUq9Xx=vz**ML&Rb4ti?N=U3nF
zak#o{J{I!4r9}u!rDhaDUse_+@L><+Q9WC3J}W2U5ML|WhT{6OeoycxJ)yf4!io`i
zPA4nCwpWTP{{jYAht<Ctt-#C<=O)>GM(+5?<y3|0ajE^2$r{>Ld=0(%f;Xw-eg;z{
zqRp4Ym$FeW0|GU-GX+;iSvLba3eq9vcD7;gM!7IGVOK(fGBoC=S690By8~2#_zv^p
zvVe#f)EG?SQz@|yTP$1VFXUTo165pr5%e*efhsC*4E4x?A%ZAf*qt4%NY$&uAgO*M
zfzHb@2}QvkNRJm&6`)1C=1~3f`*3#FxV?mC$9~E~L^Da1mk&?!7D3nM^LI{iakv(%
zCRU(POpgp-(c0%19<n8OObr`Fc1cort*i=_ePY>~@u#85YHLRfrPa(x$2|t%%}n)!
z<U1J>&8~SrL57h_3_LXIYnJ*ft{!-}$8j5k1`b3eYBaof7IwHHN4@1Ts_8*VK)s!H
zid0Oz7Fhed?F<SIc-#b;QE?FVFGQhP;mov|O9aUBGtoz`AIO}}_XPI(rR3gAN!%E!
z*KXxAyH8Off$v~@s3I;xqd@?f0!FNaR)k<=`uD#R60Dy}Cc}dw1Uqiy(Zr?=%0kFE
zeID8Sl(4kmbsH9McQC>y(5<|n0dH}NT4$b27-IrY_LI5COiCq@%Qc}RdyK2)<Uw|>
z_?hV%8*6jr9j~;Ik<CU*4xxZmrWsnN6uD1QPCspHQmpiQ&ov21`~`GJp4f_q=eK8#
zF9LA_744@8YqxS<?cT5wz>V*2GY=t32>0qLTZTBGV~cTK<$MFiDbmcQAcs*gg=a*H
zz9=24*)QZ1sx`?5{oE9+=w#Ta=sBPXh#4bh4oP$1xwM(!ik=&)6ENFlwA!EWXTuoR
zu##<gtogb)h$|gz#Q;#P^1@e9lB#RZTA@2p&0?0Mp`|G*k`2^aaI4}aE8v~*A8MFd
zm!0*@Ef`PjQp3yY%Cs%;GvkjXD~YcPXIsxJli+ViiSMj!iorGg6Rc{;CUPk4H4pd6
z`kB{Jn$B~ge+IMnnc}oh0$sd2`$dVkG8TT3_CIlXiD(6?P=LNARQc-He*^>*D_Syf
z-@+*VZz7S|>iwKQX61CVzjNF-wEALJHNeFOP#1XXDjDxaBV}~0IJHrJzf0@pEXYN^
zn>Awd;=x7vx)mQ$Jm2@j_yyc@5(K50C88;*lHeps2u8;ei%P7Zn~%54rjjP0>7<VS
z2TKo6+!df~aLZ+(*bYt7<;J9P#Grz<ClHfLqa*eFoz=X|%1K)c#2bSNMEqb;MUrAA
zuk6P=I29Nh<jL5yN*uolKQc$_fx;#u@jEw@GwX&DgtNp=7Sii-8Z-ZO*XQ+beD!BP
zzD9m2`oywPCGPNRRhn?cl)(#;wRRONb_`6rlMN8<EsUq|U{?G?lw~(1eYCHV@(pKP
zu8M5)#Qcjj4{sZWNS1^w-kBd<#3uA0rN^1H48{=?3^xsB-LRK(w2Ye_xreE766&6n
z(C-|U|7IFGuginUlkK|MaT61F6A>u|ba}DkDuoy4hxc&x`4zA-sNI>8s_0HZ>qE+z
z0@e^up;a-TbMDK1zi67vo4;`U+mgx)4_;i(ra#IW$EH>4_)i1MmhB(?o+onF!|(Rc
zQ#c9@%8s|R8dtcGj-qx*UACeAj^JI_mI%etEy;|mH>@|<D{2aiI-PSEmYa0!o{|in
z%~klK(R=+k;^EW%GlSf}ozazcu_X<^0?|D+L35-&LxrEQ*vn@-RYAt-giXKLWGTmK
z9avcf-^RbM&HuI!C<Cj+EzpiD8nmFojq3X~E^C<m@~Y7(>+q?E12OER-!xFa|NNgs
zF(U*xqua@m{}0Jwz-M&W*~^Sk)kSCiTu2;5-N%0A?5gbmGs~)~K(c<PwdS@-2En9m
zT<7BGRhP%S%|ZX?#}H~#V|g?ywhb#c#}Efc`7}D~oXrOfRq2M^6V{YyIFqA#Y`|h^
zNoQoTf3)Iw(uT7uJ+0bC!!UY@>dSq*FFsPLNogl}yn-D-+?a?z;`Xkei9D5U^>?MS
zuq(b<zoA9q;a=K1jbV#^l=9ZQmuM&O0K6ssSi8nFH-}2xFJtUo`PXbh*2Gsv4hnxT
z77}WH>3pPLS0;=>F30Hn%?$>%bK^Qvaz5ZJp^g$bBF$y9QRm;e7m!!xkgQCZBP3Fs
z_=0u$sdUbO87WsMw{j>Oeq(qR9W5^^Jpl~I=d7&yxm#tfE{$f{3k2!tyaE{}O6SR9
z+4wZw`eeP;E|qcmFWqU`=SISnM7GRko}8$1ibndsXTyCKVVS8q=xJ@UD93qi8`TVa
zQ-0qosB-3#kbK#_2*S=y#(_mz)^%lj<=oP8_UX|96axP7iQoJL9gKi7VU}J`h2ZZ1
ze&0v&Nl;_YT}d3s87ILZt0BEm$!=U?OMdIbZ{aBT^<(Js9pFi3((Jpa>HC>J&w`3#
zpB%1Ehsz8pcKQJfNwH9IT&V9QAEW_{37zB^4z92GK3qvmWpaskG_OFRb2hqZ9&@VP
zy&wiK_2on$;oeyfdz1jrG$b;W67ztw`bRS7d~hc<B5QrhKWfH)>70v<n84>}dMtt}
zIgeWTty*D?B9lJhE~KQGj}jB9XA6BXyUBuURuX&Y_v?Sv-}ebk2z=03NBij$zIZz}
zwX-r!ApFe0di*mw@b5urakO2g_T?``q1F2~;9qnAtZi<3FV%cj!Tg4a;;ZP(UCI<?
zlW%>0oCv@%>Nd>HE!Q7D85}@PK$%-JH;j!?GJPCj=?OreD>h{6_iPA=ZXJyzU?M-?
z(+N->k<Q!o5)peyvDE?-;<|S3j~!m0H7&`05Kc9y<3HKHcju=b9Ut3c#hk8HSRVi=
zVCcQ00ZaW%U5k9Kr^aX~5=h(sw;Z|ul`|D?|Lb7nH1<M7B==BT#)w$-(^Om$&+MKn
zePuEg0p+q*o2ax$F<q^=w1+EYfWTIQALF4SE&fY&(Ofydk&9(af}69NA6&E`Z8znK
zkd5eMgMuD4w6l+Jjq?|lP|_)Pl2JgC6k10q>_HTT8%yjy{+>kQ<LPKdzaZ<_bVZNg
z%PsJBim~|7@^m0W0D4l)gW1`Dr*J4FD_NNcL2*3^8mDq0I+zqTTGhl>;C%*@KZ+cT
z!ht1qJ!v;Odd-jlD;z<C)FNvSC#~&oyWYCZiG%44VGpPwH2NmNJ!1@Ukq_t!I32Yy
zWT!G3(FTE;?2w~8a`{N@$2gyuw%&jdzQ%-I1?8iR^onHK-CNL}&x6?SxqUK#J;8V2
zpNZg^6etErw*8$C(f*&Fjb3sRd%t-KlHfQ;pNyr&VeT#`G`r7W@y~dMe5TlcRNy00
zV)e5KwIJfPT}c$4nZFG#zzWdg{5XE<#IdykO9m$ca#gbbCAAA0Ab~Fb9YJIH+ZUm{
zj?3i*I9^RD_x)Vicf4wT>A5`c1`F^Dd&k3-b^}AE;N*Sn;STxC|HN%|$gyPAq3O56
zE2!{DHX6FQIE3&alVg%bnBgcUKp_s?_Gr$3@MwPW*?vcE-@)nxpw_2}LpCoq%L%pv
zgZ71CysjZ}6%69QHK|KbFogbtzvlw(1zN9(PAmj%`g<ekOv_fDL{E4Ub~*3+N3QXC
zW*T<)pH$bM_^l!m#J0{&L2SX3@thi>h(#rI2a_z6q1m%q_5IR6BC(a~hNOo_v{Y!X
zspW-@tlnb2+!p~oaIfqYwjL|71$Bd)bX;&HD^sGCA(Z%Xv2eHI$F%A4DV}co1lPl!
zKO5jDAEjwR6<ik@PSo`{=E|7&L+d~HTJt2_Bjcr1PX~&3?=gf+tgm!;Oq=N>(9_Jp
z_@omuqsGy&6qdU1+dfn2VY{f>aEV|T!L}e+WFl3`g#_@rwlIRQ6jst266t;_xk6pi
zP;vv>8tU06VnK*|cGxFi`OGNB=QTR@uceI}!Kt2y8~z9mD~LWeCf1s}mpfpp9ddBw
zGl@|J;h$fsHm}I(l$d_xe<`j4F*;<{@;`o$Wc1|lqR62Ur`pouzLgW7_pJ#GBde`p
zI*@#imIN}<M<m1vaRP+PX(diO993hRRb!#!DISh<lLWWHw~IFbxN20VE5YmaGm>^b
zr96SRcQgfUmzk^S@81j!9_@g>tFf6V@^_=t_V=GBOT*koj2t|~`GMc|Cs9(yUNY$(
zdXGPpm8TWyKtpzqv}43ixRD)&OglOZk-j@C2teHx<3%KL%-vC^X<hmXhu&*90#kxR
zx^I>5w*6Jc#g^y#oAOh5>Oyaz^BoL{p@_V2V@TG`w-Pl1jNAgP!a?~ESlAmj{iiK7
zj=O?8?2dsSV7rUBYu(4<DWWtwa9H%K9;bpc`N5v-+xcy^<98c9zE$0)23Ot1^tnf3
z%YX>(+Abd#`L^JD^LeD-+x>cV2@Y#%SOCWq+2{LEpqc$q3}3BrNkn+}HPzs3sFYp&
zDVIYUi=ckb9`RqohrvRlP5cIf2YIn*ey1pYgx^J%16vA>1(FCNqWFS8WR1PCwXM*q
zn>nB_I;3^;svx9|UA&VQvWf_F1hw7m5CNhSi5THzXgu%UyRH=lR{tOE1ksG$(^`Ir
zkhORA{d<n2c_LD3&?efcxZ!j!fmU5^WHG36^Et&rst~c0!Ks2~t1_bFu8iC&x2H%$
zUK~&pd2AEV<5{hQ$b{`U+N9VO>X=N0D6I)ap<Z^KrfRJ{y4mngo-I&rk1B2+j{v$G
zu808c7L;I+eC@o<LopMgxfZ5m?3lM&;1gxoQ|=017#nWF{NTmaL?;MYUf(u-XJD^s
zZeq4Ks>>w^z_ZtYO{@HGLJ5(W^I#j;tMh41Z%Qr{U3Nvt)H@-Bmnjnj4n($8c5)G@
zFJ@`DwRcu-$H<Kc!{>f22zdw)UP{<Y%W^=Wkp3-o91-O#DQqhxELWh+j0>7Cjke|X
zh`Z=+gguvp2O|>Wg^{lsd7bI#>Y{mfY}sb*NST>w?j{o)!9I(<=;)U6PMKp0XBQVG
zRN$&V-a!{Ti-!G!MALEgCuP&KLpRxAymWShhRhoW?Il@Qq*cUEWKsgK%ZhniN2?SY
zFRUaWaWdcwvX#I!v0|sc`NxtC3&5A`*`05Bv!iU5gqF!>!47FzVyj(=kw`s9;-ed8
z7Gry7OO_G88g#bW`9XHS9R2SA6~8+L$_Hbk-AJFdY&lK!AT;5VuXZufFrD}0TC|kC
zpdC21k!U-xYb4;ADtY;)X6Of%(f%fafe*0)>#vZMiWM|k8;HUOi%15mo4=A`E>f?d
zKMd;1I7m*l_5Pt}LqRGeDQK!hLpLE1>kzL?d86vp2piR<F=MJ436@c9*XhU<4CRqb
zkp<BB%dKS?{!ni=Gci>0hMuY;nPgVvrmjGIdE^`BcB}%hyy}_iktDLU8&V!3%@Yi3
znM{@q!;?ZyAVr^IZVZCy-fx#~)*a{5J?7O_OS90-29qjWAo>Vjx9*ANwN_ff!uTJP
z+nO2M+8-jVUkj%hMfuU%t!SeDuyfGy*J(kiJu}xHVCl`~!FOQ}PP9xn3J}izJdQWe
zy@5RGGX4w<bMv3U-s=`|^U>$HJ0Yg;4iTSKVpgnUA_7m?o1EI{S6qIiC^FKDffZUL
zpJ0SW_G%H<^H<PJv=X=Gza3Zaq<-pUAPITjQn<g-zJjJ)BzDCJww(-wDHI#}XWlsX
zJrBUCmbm)-yEmR(Z}QA@JmZVEFuT-ldHz|W^D73>@VBB=lW;78CPUQ7<G>g%Df9s@
zxgw~MpVnAGp8uH7IR_)3^YAS*n=|czE$a}}h^2FV@@d9|tHe|6@EVx?gFHAbarlDt
zCa<ef`D7Nge%9I#IeK^M@ku_T;1+R3JTQUId*}nEsC0hF5^XH$|1h`bx$oZt{viBV
zI|R1za3U#{k!#eZ`Tx?4>Tcz*TC2c!s!(leh;KYhMTd_6y2_;yf!`kbCxc!V_aH($
z$Ocu&3Awyc%`IwrZ0*?7vgy7<Ro{6z<$xoE<&NT`i%2RE1MbsA$N5)l2lA03stSrN
z3HyvuJwh;31Vv?0WEDOvpkJ$q9L<;3DGs<;N5?0ykG?PN*Tu)&OA$rvk`8<|n7DMt
zP^#d#p|l}ia=Clduw#lk3a$6B*hS@ik7qi8yR2(QjdN(6moyla_aK58FrP`nke8^W
zY;d7}z4UzR=n1LUe{(SW?uGDsGU>dl(-U*xoD!zW%nw~|+AAfGx$1}5c-{c(YYLDx
zaeks%bxufzh<yUh2w7X=YWdzaSnK<l8l(*=#XGCb5J;MpH<%0;lDla#hN;A2m{>xG
z{bkDm-osZ3{4GA~+ioO$QAVY7hMBH}5gM2yM5Ho@bvi=X3_J*U+;Z!%KhVJy=y|}z
zYP+gCNJNE+!e6^^982ENFd2UpZv)=U4v*Mlgp<Ufif}PWqfYO&pExhiHfh=_A8XLS
z=;kgSoyb2<nx&1F8*Qh>lIp@YzCB<^H$IY*l5AZJ)rGi(Kq2pm$A1JQE3p~G(pd3I
z5}(xaWA*3WO$?%}F4F2>VG$%N+G2rEA4v+5cDI$884^}Xn}(}sI|qbE76Nv;>B{M0
zk|e1r@FFr`@zLDq4_5L!_jcDmoz&+AM9yTrk+UT$evVxJeQeYp$+L(9tlWZErKyma
z19jr9MiFl56?XzUqsm!zK86(d`Iy*Fw&~IWARqqSmT%_XjpzFuG!{gST6=|f9YwR$
zs1N%{|GCTtUrT*OAAUKsR|4=H&>RVD<jOfpcS5qQ^jCx;au`w&WO@@LGy=$X`(_$q
zx2N~r>;$j}Vz+A-);R5^f6zu#$!912Fd3~+J(Sn#VoqEcWxHL58(&Grka=#EQO%yX
z`xYAbN;ghZh02%w^W5k?D;G}gUw8(_8e?Hu$lIT?k@`EgK@wr$&JJK#l;VHx05j9~
zK{~ItTilXOg(P=z_wajtWX$Zhs<n^(PGDG_OFv2dvBc4XNQsp_%b3BQD7VZ|FLp&z
zBaVuB#3)~@A&%k<gC=IRZXV?<|4oulI=E~<VibF$-2Nf9HanttU_tgm?gcteYjQI6
z50Z)d)R;at!QDtiXadmW4zBG4dcEI#v)xGkMVMaJR&P((w^T)0?M`T2y*a_FPgj$h
z@ck(|j9<~?*u^_9iRUY<LdnuMm=sI}g`CW$7dxa1^QJUzd)*2Td6s>pfJeqX;lmRv
z$`;G17|ZF8@7dC_(W~Ez(b()W#mbcB(IM>*2(YawQMBP2-a){7Spc(B^g2=?<%1mQ
zBW9|R2SOonMBlq&2Nh^O33Lkmq!iYWtI=Y!;+d1LZx}q&AHJ3U)SAxF7R7=EbC*W7
z<CQ)Hcj_kVF+J*vlxF?&Ox#1!AZwLhmMk^2IKZ`w>NWW5NlZ(aM=<n?GC`<91mffe
zzsWjhMq>qaG8}+qHmXH0VK(D*aH;u#4S{^Bt0iBmZ8N1`uTFL{YPKUvk0NY~^s8gp
zCAQ9pSu|oE4jW<NNb4f3-%;5Ny1PO<rJi7IUOgZ~6+77jXR6s25<9l=o;Q!pfOczq
zfFS+M(SoB`HCxUcV*2X&IH2b&IzOIsH@eVNl~u1i83lm7XH`(t7H#4l&pNDe2V)pF
z@YF8omyKK`WltSp&v3-2uD=VNvKZ@(`pxN|IGMwJ2WLypV=xL^<_zDdQ=aY6{T$R7
z@<>)zHcST%LE61C)NF$j^H((GzIt5Tr101qKCKDCA7rFC)rJg`s5+}6t;VZ5BedhA
z$S-f<hyp00)Kn{0{^Xu`0)LbH8l`WalP!2gt&pBoT^1TbWq6rNTX>I4AUCo8G`>wl
zDTu6&Y(~sIKt?UCDIFMfgB5cXbWB0J*%J1WrtS);?%w<{@GEriDtY*O`KS9S#9<m)
zO-xsqRZq=DO%c{X?LzIQ<|g$TPi}~k_z-F5ECk?{!~N+M1C8H0jAIWkdTkJRCsJA0
zv7UxP(uk}R2l)_@mzotJ@v>z+^cM5<b`>@{`@?!5g#)5<F&!q33eECou9^HqmC_bM
zYcik9YjO_Z8N1C@brAA}fE4}(5flt(O1DW1<G69SB|WK07QfXYmq6iwJGEQu#TQ7d
zB0C^=UN8$B{Y$>sDb8fl%8#;G)9bmRj<be<M81xz&(igo`X34zWsxSqB;T6!MV;fd
zCggwqTinQA9n)v_mm^onxg*^eush_|;(5VbA2eSM==6%q(O2_rP>MTwG)#U$=|A|y
z7|Gcfc+Vzv__LKC?SFX`8HH)@kV9GD_3Q$6yJmA+aV8=0f>4Kc;*n@_wqbjNzj207
zjmBl@I-p~b2W4h?h1P+a^v6(EG{nfl*C-TQxG4E|7khNazwt}Rgawr(yAHG^l391i
zQbW)km#c_jDxMUL=hV#3GGG;I$J5qS93AGIH|tpR9n188W){8k#|(6O=gz8)s&fLI
z`cxQ_6#N4VbwuBe=k$ZInUerZ=4&TKwZK3#nNpi2QWx9>nH46vVEo-fwbjk^Zlomy
zVlvFyr63K9LBE7UC=1ojNX_vI)hFxzDluFIUt-<gpV6Y<25f)z8`_$lXs6#y#Pv9R
z?Y4y77P9-TSn`On&V13N(%h`0^BFI(Y}1yPS048{f~r6*(VEagkEUHzzMnD5m0-W}
z^c226th8JpBQN_pJN2BYk4~a@M-mI7AE`@@G9OLfR`KTsRnxC7EC|NQvd72GtY)H!
zfDVqu)J=70J;JwRF#AOa&U2_{UA)jC&ad8Fr4Hu}Sk*bQP)_P-63@mNWgId9zS*Cm
z*3ABJY7PQ+A?zuvB+9CC1e)6gW{ay@57xCPHWR$ifon9p1I8c2bg>Vnl42fX^|+M6
zu!K<b*KDTu(DyVm6od^52WuRmp~rR4)$J=1>Sfcu-)p*#wCOm!P#iisoRhD~Z48Xi
zr_a3j$wqK_5H*}lpY%R5heU({e&IeiISW3#fLS+`VmO1cGDWh$D-Y4Ye29NXl*CHe
z3qd{lYYguH=w}8c5DB8hvj5hV^`kyygwXya7{tL3=l|@@@P}J6ysg`+D_{;h<yS8h
z5iJf?F_G2u*=<utmO(G)`N}pzy!_ob{L<%8Ml=-d{{mq^p1+#-!y?NhT~`~#?j?V~
zI8T&&10)MV(>ZAEBF<RkCwef~{3r6P2=gLilKfwyIzMEDMz^tmgP^$z^l@#{ko#cc
zp^}8F0JN=){i9$a7Y&j~c|tTyx<bR0nj=|}Fwr0^54X{!lJYwkbv8@DfXfq>%$3z)
z@y&2qlJ<S*8-`q2S>@C{L~A3+rwV^UbIPVeCC})uAmGzKfrj!cdf{A(Tf^q4ycy*Y
zlJigku#^SB%K|?rgQp~9I4r2TN@A0sS;D|fmm+o6>nuHn*7qpDz_n>Sp5!FYV#$Yb
zI!@521atY*3Csk^z8igi!V?=COjKyJYs&`_XrW_HG3v;n=iAHKi^uMoGz)(x@huyy
z&CydyVSKJ$qghQ@#)k8TCwq=)oTw|6Q$MQIvF{Q!NenI@q$4pP5enWqUb*5Pwk+kq
zI&wSKBB*JbW5oqA8+M^;%I^m4mT${%@4E3ud?)~0NCsat6E5=Rh!<((yY_9k21{?t
z?W$iNpIsckd~<fH?wZb^!fk(XLMRmpP?9TbJy?f{v+RAxf8D7pyBZ*Zd>q6_9qGWy
zpcux7JH;?=PUAG5(&XqcXa}vJy?@wsWRSf*$D7pt^n>+U0~_^B4WZ9iKj$;~s*6(?
z9fsyS71l|{QbHIN32~$b)BvY5d2AlKDzl&`Zh#p;C$3AJFKKd^0cC$TL@7FdqN#ST
zedLB5cpGvMK%U>ByZ5c7LoM@9b%VnaPPYe6Ajb_vqvz`WE?Bb?irc$u2*vH)ny4Ny
zLprq$mBGdaPdke;xoDuqL7;n_s@O&rhzW+b+Q6uk=M0%Aup7B;yS?CEtw8OGXplk3
zXY+UI*)7ZFeYEDA5P^S`F)&{6tW0dQkU*0=Iu|75Gs!h?V@gWVf)I>3<ryRA>4-P9
zpa&b+StDj?zteTJirqtt0PUVZ039is@Npc<?YX0|BuQCQ^D#?7l(%IkVz)baICCA?
zVUZ=Z>XcwPxbX+&c)2*0-<2$_xX9KDE+RA_@3&fYp%v&|+|hq3DMTB5P(sd!VKEx9
z46|2MB!d0!10RiW7QKU&&Dgzz-uCZwZFd!0dKc!TgUPxbXDCI)-0Qj@?6rfI3u50|
znN>_~XZdUwOs>~F+-(o){p_U_Q`a=AlU)SMov@Q~ibk)uf<;<wcW-a|p*@h;?(Tt`
zXSHkgpx%AuF3f*+aX^!wVi!*Gal^QuO5vX(2il-qm5W2e%@FpTfZek&Q0~mZr$Mb=
z^RU&iusqY76Sf1qkle8$`a6kM4Lq4Ep0OlOS&jH+Aow{V$R<?W#qs4i32Bm`?hn3F
zLrNq$wDP1D9#vr0BFg|q5jep)m1Mw0!8rqr&M7@UST%n_twvfFWpP<qVj5&n6O3Yi
ztmbt}EktDru}JD@FzanHpm(Avx`V3S=}#>0cXN`&!;EH*>VJ247g+UQ?nP2aiA55~
zSwiPK&}MGuL~T->j{lfX*dJfXy^(wJ#Q7zkF!OyAb5wNH=JvuFm(o}(Gl%pIo`r0Q
zIA4a5b4Y*A(?PbC?SmXZ$b_2BEBFApopDZ1T;4W{?`>S5I}w#dtz!k_l!OVR8Bw0O
zif~_h&D|-OT#OqwcK{4hb_ZbrruN&QVQld^SK6igeQ8hxUeY+_c|4i}nr94Bwc+8X
zLfh?&8Bf6zp+c{uWTmUi8sh^J=iQY#a&Ncg3LSs0C4bM*T`%n2Z7X47Qv;m}=ccWc
z*t&M_pj|`1`KhSo!QSrRK`yfwv?^izZjL}WVNsE=4CAC#Xqk>q0Rw?Cnn_yYJ+D&S
z@c`Dbd-vRo_J~}+>Dx>{m2W3^3>V~+Hs|CzwI`>6dKu8diTaiTB1q4ET;GE`*>QK$
zalU`$S&@Q^Z0iN-bwLyt+it{peOnr5Atrw{Wv&RdAY>p|YB1K<VGZwjZ+B0rF^c6{
zkwV!570lJe&0Q2XG3bvb5QC629sY#z>!Vo798y<t)AW_gQPc-`#F?BJA7T2wjvd9X
z-;J*2mnRMo-1dP!f1AJ2TSZY(%kkBemUVyAC^e<y^Oc(eK`wc88jGv|iT`C0jiqck
zi^&X<Q+96KLzdIFno4^OAAGM3p)aS}Mg|If&1j8^SnF!N<v^Zt)~r>FL9#)^B8(*<
zo)Vm?<xJcCpnDM9H;8UzsVtir%d_}aM?W1$(>NtBBywcrEktR9jQxW2Q4s@g`1^lz
zTZ}>b3*qcavb&sT>82}kv~oUmuZ8I)AQY;>Bu;_Ny%fiVu)8bR2o&t@?zTsLg`4_Y
z;TEIJ1kGR;{vvtOVq@2FG&$HPFSAK!cL_cf^Hd7%8N1{>!SFAQg=-`<_1c|k0G7%2
zakk6^7y40!gPO3yby819G){_)T~B{9CMG;VQF#xpIYcPB@-K3|CDAB`ajz2cUCMcp
z2&jU-AL1b015e}YI=RZN-6d3C=V!S+d<LcBERNnPnf8NI=>-e)WJQN@NWI%R#*{ix
zjYZemUKDXRP;~*Q{!E_UiIXq3XzJ(>p;1&(YNcoiivvvEJ6xF)?H%@N@$`Rzidhia
z@7+evBcNprWxf{06b(CDMlsw*tn(bw@=n%yA{ICvETXs;@Pj3Yf@gOL6&FqDidRPK
zWiggIM3ejsDU)bgf@t<qWUd6~XL2cPy(TIyO_A@~3Dp+BS+%5))ExWW=1<)RG1wDq
z3&G$@ry)DB1#cR7tNVIJS4@BD_jWQBt;{hvMvxuI(r}KfP)He`!}$2OQdwi}-s+xn
zSY2~isusyCN=cs4@P=h7*954daI}L;sJ@63NT`?@7im~zNm<RZ6mr67l23G)ppxX>
z`)04K{8b7odTXDPcF<9AQo4TH95qXmZ*R>gZo-_+%y+iJai%zUyZnDxJCZP25RUty
z-8LZJf~`hjqR~xgn#WD!43-n*Bh-Fr1j@?&0-4fSfEQ#}JBqBjW9Obdyx|43nm?<Z
zPLX=8Zb#f(!H(E%`CO%A^9Gccu<d}TXqGstuUhUkJFVS8rA*-9pmo@Wlq^r8z~U)T
zB_n4kTtOspJPYI&4^)5j0&o(*N<T?W^B4}7fQAgJEdR)I{R@^*qaqFoyJsQ!qqgO{
zWjwSH*aRVP;OKiQ;mj6XGV-F*ZlpXbX&{UInl))O<0ijZ&1K*bMLLUjZrdtzbVo}p
zDq4HVljgDx+yEzITRAFcj%l?O)1l17)I~M*^MtCOCuW={rsRJXc$QHTGu*rUhUY;U
z><8^$&~cHf?Ife@8>CW1ttQV%XA2`2)YjEFCsIP7XmmGZZiNK2Zm{b(_*%`ZdpIZ|
zfa&i1k0Q>boCn~q=QD-@V*0|DYCYODR<k?WMhA)05X%)g8;X&VYA1C>t=?fI!bpR+
zG-B9u-v(V!0;qpa($ayRA4Szyb+Surw+YM`x8U$0o}yF?wnodh?2dH~Yj;c+I;|qb
z1HsWQNj_JWvy(&$Ctz%fQ}b<q#zI9*+pCL$?Vk14Du=0w0mmGz%**_~lR7(&(pe++
zf3I`s5^dLuQRBW)ZVThEaBIQooHm8pTA&UR9@0c(`agfv?n?1VRlh0~MOAEr3NL*3
zR!O|(#H?uQ*Hx|0^RtKf|NTGzuR%{s%OT;@74m1X#HcJsIrm}r-crW2lp}Ty0`N`r
zSx)|B7Nv_|f=>nVOZDCOjkn0&2d5gU5?0z3CaO>_oE5+&rfkaOxXRpr;%XVo7uiGk
z_hm6ADAIrbeX6n;Q=StB^#-HTMXM0qh-?kAAq@j$l8SSwr;fvr7in&Ot0~KbcFu%R
zA-Q#Y8z*e+INdDSgnS^7@Ij;XyD+Hnu2iMGAWp&Ujwj@A93r*4`YW4Z_S(BU;76;=
z2-M=f-2bLSqNY$k04~&kCbKxjEvVSy>-Fg4pZkC0O&qdRFlFV+w5`(kUhYJY;3Me1
z>YGN}4)5*kTmO2`AXR-#Fj!BtNM&O%wL4MW&Re7FVsw_GO;A(0KC8~Ub+%MltqLNz
z%4JPH;wpKF4Y%Y<ZN*eL_ubwao`&6?qyH<$t<7&s*wJamXEPR&i?izwSI0lwc%Hf8
zy)}Quy=~|!1oSEP=T?M6pI)^RxA!JZ5|ZVL#DuF;guO*J9nCgVmf!JAB292}AcB}n
zk@Vd0QAu6!#SiVE(@|S}uyPIN-Glw@htg|z>(XnD{D*g}BKvjadu~|3un_Yhzpo03
zQd?{feuF@1@0^?URhDet)z^3@TUNtZmaBhY`TK+W)mfU3+;QsPwyT<6hFUKlDOm>+
z=i?OqaTnjjCOlu+LM172q7T>h&08>kbig?D#5MndlT%5>_zl)QZ?1*(`$1<num>Yd
z_7=?|tmvY3eywAvNf;}#!Fe!z1osX*P?tqHY@DzWunpQOwG98MN*gW067*Hq-cEm8
zeGAky#S}jVoh)kXI)!RGR$<dI+RD1CqRXNp%$-`JbS#L9&KFYd&SNL9&kL!llbZz6
zEoUxWXD$b3Dpqb$CJCvEp3scU;_yb0Vx~-#uVO4iKViw#cxjCOsyp5;tFh!v#jRi5
zE8Uo-^v5wZ4pP<pYT!D7U5|iPcZ`2s+k9hcV>=-g8H<WEqG|q6CXic}S%AOVrb7<g
z+ZB|ZBLh4`yASQ4Ytf@b-rN$kSOHhCG?L@+bT-M1-2|os<%NMY-^SFfROPfSIK;uA
z;HIZn>jE5}DbA%5`g%T>#P9%ar`|QH8WW_97f!7u)ffVVHV9zI*o<bZi3WeUrZG3?
z&0Db5`7!{$p&X;$PS-ePQaWX}{1(W~It$jR%C!I!+Xq2UZ^~}To)VEkDV+ZD>iq5T
z)n5h>YVVjbAk`w_MMO-d5!|flOv!~dCK%~gJWf?&_-v+sQOb8U(p4Fpd0JnjWG`sd
z)Ss!9O^=>EBemJP4u^K5nV^42JY2p`tMy|HbwF3*=^dY^@9ot~1C^Z_v|B+pXdeuG
zUQ3$tw1Rt+<8#4tCTb<3VVtLQ8f%#-&luAsyYx?X0#9<@Y_~8l_?xbw^oeUH{hno$
zs(RnGZA}ylG!H|GvD+?WQ_ws{>xiUO%WoViyP7H42IxedJCu++v&nySQi1Aw3N{(g
zBIi^2PydH&NghGzd@9%QbQNCJ4fd2EyDR_b*c;m3tH_9MwuvWKwfBQViT$dGW*PBU
z6bT*he^ikE2#}sQzvw!h^82RqJx*fVSxeilrOdpSFQxZ2EX4`HUwVAI?(sPUcF&=&
zwYBZaK1o7_xv1E>3(|k@GdANQE*0=vwtIVD!|v@_MCc$=zonVZtX>rlcE5&|?7Ayy
zo0YWIT8XZ2GEk8jMn+WT1Mrh6C8w$LZ?n2Gl(u4J5c8dghhitE;zsP4nj*~^kE~tH
z`Ccn<P2;6#D)Fs}L+?CsfWSBI+HEr9?pkZ_Y&;|HW_dh~|5<-lE3KHj8?@U_Io$(S
z$aUp*_jU7T%XxDhqS*_&8pdI;XQBWOOA_|${&inh7%_n@5JO>J-qkN3R)oW0oaPyw
zllNC|Y-XP+b>%p<B%E%k^6zTv*!vo8%ARvm4(*k97E*0xgW8r8L)uhsU{Is63|K65
zA&|&|Z|gXP_F;cnEnH%5vat#hhKY4>ux*vS?tTq>-BpGfx5lWd4N%}dh&-b?8_z3+
zdR<LPZN`DKp_W9SDWAlqZwuZ8$!)XFBD`s=t;hc?GDcn|d}z|iOYKMO*yW&;)efQ)
z9DMnM=mZDlPIfhc(Ml4xVTVp>SE+0D@8Ue1NIi=~q>+DeW#~ps%BO)p28y15!~i`h
zaCV}pez!4BD~T`mM(o=ro?TDvujZ!0LSG+~5Gy$o<rT4z4oqV3UM(e;?@zeMkCRx=
z-M+YAiXPH)P$m*DX$-@MA#7q~GEKmyl#W%Pn9lgI1N3SJSOwX>0-3ZE^tSCn_Vhwp
z`z3zmZZdz82b!2DwrcCH+T0>1Z$`a&UQVCcs<e`DX18l*SEm2tI4WC^%H(Jt`QRxF
zwZzymi(B@(!m(;qS{>Db7U6O=F0?^m7aEmeR_#hvJI#)X+&VPVEZuEmBhtI9`}Uv-
zN`DI&lgnLwh5v$|FHKQ#H$Fpb*W9L6tD8$SM!|pbQ<OJfUfFz=d$nhGvu$?M9{MUE
zx)y|udOBDOgpJRAs3DWVe?4f=&bwVkRzs48iIc-ub|84|JL)WuauB<+R%vBRZET%j
z&$qF4_H3nv!D=lsb^MyD={Qg{RXs&#v5;tk+$e<3>k-ZAf~TAVL0b;QAu3k{o6^{<
zc@KX{oLuwn;@eefqa~b14sLpMO$!D)&aT;8GtT*RmhoFg7}UI*G9j=xU|wV?Q*}{j
zp0nu;E*%)6v<*%N)*JZUQq<LISlRv>H2Joq>9~rH>1EtqYZaZZVij&-k}Ox2KB%o|
zQU+8ZMqxPx1pJ9S=BA6K)I~xrMIqyQB!YiUZ&`N2r!$%{jQI14&`CjuMdZ(h8Y}Xx
zxss`K=x9dDu=tjzajuIl+UP#Z78Ezxct$Q&#V;v+UviPZ=KRJa@F8<!_be=c^<zb+
zLP&uij=;XG)dy-`^1Aow$|h16b1K&6iITunAyU)USoOG+=j`?~#;V8WX0%QG)!~17
zIOT?~s1AroY=ao+1NgX1_cYam`IW8z>ZecG3E6<K{k0~vl3&u*KX*|Qg`q4}xTHdO
z;efX>wGITO9D^@6x}|A|nG_+2&`XkoY#kf3XIh*A^R_(xSsa1~sF=A`;%qZ?rMsBf
z@9EjEb8xM%L5yxWV)QQ3exPbD?^b_4`b(Nm`uRLz3W02j1(s}Yif&!GPVF|fqjamI
ztg>5Q0Rw0`rrcfR0Z=){F63mw?@}^U@c~e6jX+@@Hwr6+6hjiivoyhIcR@mms$9ay
zB$2n~j%KMO%!<;y(rIhTZVGjwAiz_SAUm(NnODm@#xjY0(7#-Y_c8;RkiLJl2vzHA
zV1BKjV@|M(_+DB_*~Y3k!7Ph8=t&6`;zB3$R<hI#=&k|1XF#jCQp+$Fr9Z3mDw+sR
z#wx!@*Ma1ot6!mp%}hXD1QM9B51}smr`@6uStLc*a@LcawL$6j?xGDrVF2o9<rA8c
zHn~($2XX42ese-e|GIBs8?=A)_gaPXR4KKeru34H<J1B(DA-zqH5~>EJ^XSLwJZ-u
ztdjdN0NDEli%rz4CLKF5d+e%x`ej8>0ft6P;tepqOfVn=NEo1pKD>gV$bdUaH8ysC
zTY+gE!TK<0eep|a{iLm+-7&Sa_R6ZA3d~Q+<n-kD^25pNcRyda`44{?=Q-5nC{Zy$
z;aeU@SPfP%^RN>Irak>vESk{V#^$N41$onjGv~IMvsJWJJpiTGg&a!kg8dU~<i)CI
zw2M8hpxs)$d=oe3N6sFaWG4yW(7eA}B0DNx3F$!-DT2uzyrXgcif5-v!Z}ho22RR=
zvUQ3)P7)|$r@LO*u}y#9icXcWV?d{UcE9FXc?X?Rhs*Y<x8QZP$c69infJ=piD{h2
zWBW?QQP3oReJg2RoR0WIVZ|X!A$G>G4S{b`<B=Upa+hElITv8p)KS}CW<L=OqQSS`
zpKlv+AWm&&J5-1D8bV0m-5TH!Au@&H0P`7_K(JYnPG`r^`x$?<NXP6nq8n2Up|irB
zRB|9)PuJ*Iy1#QpI;HAxE77L?ufVCX9~`*UNiXA|bT*43OJ^C^{s6M2$}>o&zwK3N
z59|o`{ySEl8h&LukekNAs)4NPd8=}%@=VqBPGXTSf~9PI7_yY9JQg&`hTbsRN{7}Y
z+jSe3?YV1~#0q~aw&@^%YxG(WUccO`*Y&M>`}J}3q8Qc$&mBrJa3JyQ@OOxnJH$A-
zO4anoxVd&~VaVL_U^sPIx?19KG6+_rDqr4bt=my_B~95gt7w&|%AyJokkW0mHNTLb
zQN#mhh+P#h?Rt>3P&Hwi;Ohp>Tt^%9`)|snnlm;^pecX!gb^C%1x?6bj^Dm<OXk~Q
zyJpz(%4`>tQbT52sX>HUJj;a(ucP5P9;Q>(O~E^G(5rMY1s6iwKqyo2DZM{2jS0p2
zTimKZR_3K0j|LWkWtT}Yj#EXiQJ8lpzi*))8lavqK=K*n##V`fvP=b#eH&pJpn(V{
zOsXuT)I)#2IiZ32%?^2BhU~6?X1=KHY|p-dy40H`b;c8&@Ixb29}F`+P{&lg@vxC5
zTB%J5{NdkO=pjtcjB4>uM<*z2;K?!aIk$3~d4Es8zYcxr0e$(r^rRQq{w#0jl1mzl
z_&d!^Y3>2kYIlp~8fnii+RzGnL*DXRMg*UFeAs`cpQDv4pRl>pkD=04L=;0OzN@RH
zQGcX9^DnZhrx+$N!-iPqf@-LAs#7|sP*e$C$tRM3y4YZ-M{k|OTwKQ(5cLE^{c><>
z-M$*q)ACf0nivE`WK1fnRMv64A36rC8#qP%D$4&-*{KC_x?U>b!Ah|*E9Nw|F{klS
z{sDjar$*NK;V|e0?E_DIU8RR|M|;8LnRnJO!}fyq7a&h<hjB@~UdXxh>h?4vN?l6`
zG@3{_HJ#`#RLkFt(J7hos7M$YvXDxw!FB*CzXLB`#?<e2gnd&8^T4x}2r}e67kNf!
zO6h(}XSV->Q%=&t>KRz=3agR2m(v-kveJLOns-feOvnOtixI>rW~RqHwIFs4h&6mF
zd%^x^M}@s$-_E+LXYDY6oaS*z6U;TiQqiSqpCE(foSb01-T7r;9loOSH0Z%YCIRWP
z60>5M#9`vKN_xX-^pYkt4OxaG@RUGrF1LxJnR%x=b5*EI1)MgGxu%qwjPf4OXqbPn
zXlNm}{pNWNE}}{6^7N%b!3WIv9qqUUbXW%)_C7y0EWL3~wIcLzt-{i3=;=Uj%&rpC
zA)B*oUQ-P?r}X|BMF;YqZZ}Q~<IsR8dv=^@DU}M1Bm;73x}jM(2L?{rR9iB{Wo%4Q
zl(LexE^29@?VCEPhh@!1cQl^T`*(jcmO5&VecdE<wtUOrK-sBScAk#-KwFfM1lia3
zRH~1=tq)?{t`1h~XxDQIf(j|Aa|aQgsSJdyNXd|m&>zLfrY&7Dp>FkxO}|Es9l2{p
z-u0KhC?HHVc@668HVzzGZB!<jU<VkL;rbu~?|TT`sdqPZv=3TNzHOyiEZKieloNM~
zEvijto`rf^N4t(o;1(o1kHc9h6A-?2gXJvTmVvv5{dYHLYY1NcTtyqx7X?VGlLjeu
z9AQB?`Dkw3pkOt{GBLPMQ$v-VrVM<p9dJ-{qE#c~L9icm;SgO9lD2WKj}e{rB8=!L
z8;9KMvWdfOpJ<Cf=wip#F}8o(?qaB)aG<uTP_e#O#bToh^I-3ff$B<v8GBkHD(Rs<
za-RGCx^l%v^I%ZcX6<Yb^<-OBY0Nsv<;c3)Hx*^Mtb+u)1m!FhMaFCkNcleYFcIjk
zSAD0jE*eS>&<fDiVNA{bw`S2^D!-Otbbm~*7`hZ_RV#X-MM@n#3vYjbT8srTRE6~&
z4bTKW+ePlzEK=EfXgFcbgwAnN;e=vAD=2=Afq6e-UI8W*>(mw#@Pnj7m2!a!kem#f
z6LwF!9j^xre%bChC)g`xNjmI6uJ4Y{E7i{i>c$^IT@kref=eX;nrWg7E19DvMoItt
z$Lq7Jw{l8<r?=D&yjOoSunt>~3e?7#Z$?uNo`I&gZZl0!P3YLvI1f5D=~)g_H?^n*
zYcl0JeryG*M+qOR)CX}yL>{pWZdJm^5Ui+rc3{hG3$s(o?gW^#Su!v8Q}fC{LGQLE
z2JJN^VHz~R?6fq{Xn?h|2ennFniD!G)zraaqG<b3S~*BZOzMC8v6vEQ#a~xvQj=A9
zfF**V?aIqPT>HF%7^ohzO!tSWx$l;k)*Kf&zg63CRoJvr*V+lAh0^d&)0~9Pd6AnY
zsq#EiI(094Yr&w3wNvP9070;2SzL|3$bFdUuye0cKUm?QUBaMjcMf1IbJ^Pt`tEvc
z*|Dyi-RHo#PI!Mh8hCY&6$x~#GNo=*E}^jiPuzzF+jcSr?>klAA;<0a-w-|;K`vUX
zJta!p+;Y{(Z3472Am?cgb&8<=4nzX0#{(e}1!|z$(O|h?&J#vc&_e?|GmAFe5)U>)
zI#>tfe!B$+kqpLyj0&k&<A%lmg!-8Vc)2_4N)lQ(=xBckt)OdYb}8;q<Lr+omyo8W
z1m)oGf~SNQ`9yvZdKQgV(A|3g8U#fdUY=+1ltid)TaDNic}MWQeIpj6+aZ$iZ1r~G
z>eEmvXxq*l47pwqA1LQ=@v3iRoR|qRn9!FryeVd<ai;Q`CiIl%RQ~P2?w0bqTV9bF
zL@T#@qJV$GG7bQPsO_@G6hTm_3OD#iA@y$X+3;d$zcBJ62AOR<TTqAIR9qx?P?I4{
zXoj^p`(1qr1sN6?IbEo_o#@0T7yM4)9-3g}&w;ascFh`4Xpk}_^cOJU|3vE<Zi5aB
z%4WUyyt8_rs?!2h7*ki2;iP?_3b6(EWXqt6g8+Y>Lj%;cq@b1fl!ro@dz?28>fTTd
zIh1aJ_9vopRh@VD^}C+rE?J4mT)d-k?lx3M`B10p(MZ{ssE*mmnNSI)c|HR<vT!!7
zW025S_rPH!skWQb_QCLlL0!rn)}>5L-*Jld`{cjfigOq~s#<l~C{ms>5~ilJ6im(_
zczu5?Dg>RFJ`{tHr-CQ!4IiuKr#5k5fcY90vPtmv-N0^`>n!8oM;gE-d6n_$KwGZs
zdv7@4Z5QUAYr4)HbpbZOl?qxx`>^J<2T5?pD#_YI4%y@TCFvECc9er3d&<;#7zQfx
zSYCCi8lmVw;#5g9<uEThe5+>k2N%!^S_prkZR~T9df#1m=>7id65Akt^JxpuY^kI0
zLl!p*4W}<bAGqV0Bw9f6G!JTP3!Qv>G4&thv&7V59#p!LT3GuU*6spVv~s8;;lGJ>
z%3NC;=KwK$x<F8$&*5I<#iO~Rx303UD_T1usUt2af&nl>yC14=KvaavWMt#jgq?rd
zUj5YEEz*<<f|!l##MW#qsqq%JNt^b=M_{XMr3X``#YyYcqQ9!nSm{fnt$vV{->c*~
znyV2=c~~)V^PS$Ifo<w+jFEcXK-i!xI~6LK4w?w4+PjW;nn)s(u^G$bJicXif*mu#
zj&qeqF_cK=ktBU8XMhYLX#n*DscC=N{<Csm_vS%+C41XU`u|~x`x>t^A}H2aHeGp~
z-%YtN3$;}P^#Ll-3)=gZ40LV91fQ2no$a1ZXR5}5L1wI+q7%Cel>JgsfI8%Kg<&!P
zTd8TG%|{^IUH;_2?3rAAz{&QZF3Dh$L7X06@=AgsD4|6PH7(FWDOs^!#zlXEHVM9{
z1p(-nEYDe1m&WEPRGKzJWlsyyr1GLn4-ntd?1r%EET5ApooNveyS)DLtMjs{I)G;Y
zFCV8opRf#ao8XS|@fcQ_x>^t*jk9N_FaSCyy**nELfg;x#<`SEay3XTFS{84J&c<@
zi<=!MNA6(ZT+jqyn%!QyxkG;zlFftLUkGWzt2X_(Ra%F)jD(N5eaYsR`ZM?GsWMuc
z4Ww16Tk6zRnkVvNG$KiS!;BX(;vrUwr&Ib*o`T_=-H071Bb)C?>N+msi0!B>D_v{0
zsRnIkJYm5kpC;RO8LgUSJbZ?G_6*xfPO_P;1|<jRNeHIVKo@}DQU-sLTwd302S&RF
zhB^bym${b_rIb(TN^HTj7EHxWfL5BDNT`@tGF&QQ>{x0H^g{#O(v&`f4hvAy(Y1&K
z_MexE#r?3kIk0{K?O6fefF0w&jL})+JdATkg4q9?*Lgx?rgoi0D#nwVCSpd7w=hZ>
z#O`spwxP0bMhc*9Wp96i6HgYKl3cH+9MYuy)>8t%SFtkrB#wos58}!d#3-S5aW{!`
zmMF5}r|8rH%jYxpgKKjd*vT0>)munhXgXK14x`%cDr7j<Z66k@Jp)2TGZuE-ZvD8>
zeO2{;^eLRdIt#;G&%MRue&Ph;q6tH4SPh*z8AZaELU}~akKcb1Nl~2HnoDf&$Imt@
zWKga4G-#kC=evP&nvI#tH*<|aPy+!vkVM)^EkSA}87(hnGPWVnS{KO>ww7Iv%kb@N
zePg)X5_TW!E<REPR|@+qV^|GQY6W8@&Dc>)j-zE<Ho%WG$;+#=<3FEY{76n-A7A`<
z*8jt^XU~V(i;aJ0&raX{d~tpL_Kdte|MB%Td3i>z&i?oN^Q*H{^6K3cIldt8FMqr`
zK0W)xzfYXt6gxrV`DoBm-O36T>l&xzuWDaDU|`rZ`rB6dn{7E!XHc8(BDHx17?eSc
zK!aYe7u*j5tR}3#jpaV1kUbgR+|ev@DhfY)rYc=Xks*JH%sX3yR&W^X4PXuzT;&yv
zc#`ltxi8P2*@-=ShT*a*Gg37dAmkaj);^dL-JMXOGm-v4`izmkI_B-aZMlV(3~i9u
za>M2VOpXA(G>2FyY+@0i;1X0$);`POc^Jsq&xx6|O&6II!$5u?h>6Y!5+EozNkH4C
zD=WRFae{x<O=>D`w4gSsxmuPWIeyQw<J=LyZ1ZOaoGnq%UPwu6IgC=;1B|z?Gx*iM
zCaL@?@1Pq*KWOJ`a>Of4d>IMsYFPqc80u6O%a(&^84x`uJJp`TJ6l`wCZ2&IwmITi
zGa8mNjNyhnZ8inVNhz@w3C~k!s9w!b4{VzeB}#wW*K^WayXzhI!i;+tx=Bs#EY`vd
z^hHi$7obf?T}K=1Xr~jvFqx%?Yk_DxAlf<stK;jZKt_x*$+8b%(?<3l-!k-dz+o%X
zLoneY7Y=0GhiAP7T3p<7^TQ6j>1p+{KcN|mP7)eV-Hw?mS`@mxpwYwyx@&;$t}(NA
z&~tx*bPbTUH#6OpDdPo}u27A!fj?KK($P??z<7#Wc&ZA_gD-i9<>8KTK?JH(YLS8g
z4gA(R=tUB9WhF7zOh8R27__Cz*J!~()oOybGMYy2Tk#0X0qHm%o-)<;KwDud6N-g>
zd<%sFU_;h&gY(#K==v)dqmobL_LL}zz$AYcN!rodA8{sdN*F`o?xR6tD>Q3^rqhZ{
zv7QY=2x$l8gr~Pm<y&cwg#4)!VAhXq{pbdp$tSvjF<>u>b-;PGs`EPK>C;^Iwzb#H
z7!!qCHmkm17Qj9<2<YJ-YKJ#$zGL)6+nvs-?*)NcSYt<d9IZ*$1mHWv9r!tZs7-&z
z(^(Ra=7v(_#SGKZCOpd-9%<}*?x6Rz1#6Sz_9}N#=i(1}k&_8}&L~9Tcy=C)NO6JM
z+_z3ykkHrj`0`wN4y}NPn3%Cpir7xcOdVn7jIdWT!YU-B>%cI{X1?NI$DFV~^;?K$
z^|}{%P6a1W&M!O#!*v%7=h1JST6TZ2g!BV?YPY8CVkKXluw;h2c#0YEPFk20$s<0c
zaaw1vfhn3SweBJt9T<V-Nm^s4x}`{N+|Un+h*-sy@FLfxIOK^i3@-3(EAF*5Tea5V
zwjB^QKWQCFtR1vq+E)xU&`a0R4f|fAxkwqMjxb~_B~zXE>i0!#PN<pMuFZd!DM?-R
zrcj!a^Gj=W0RGX$fGOL~+5+#^0M~}Wa+Oc#wNA}z>c%1}x=rxPy1b^pmpscIm?o>F
zBoMlhA1Jp?X_7R^ltpnd#gIUnjai-B4*=V<bp&<6$cfJ05ROa4*XA6YR2~!UHT8>y
zLT+N)rn0Of;I)EX2gsqH==FclX<NgizTsJsIK;JUbJJ?1Cl&9Cav}2Hs5akCGK#V|
z)U`=zy|tFx^?DMkXs{+mgO%xE*Ji6#2dNF|m7L=J)f+fEP<>6{j{|hi%V0u2&l09M
zd^8MH!N6D{UfDXXN(?y=%`IKW9@cWygRaxPZ5=w+a_CrBM+DAY6a;@ULrU6MuWzg?
zpOBo6UGz1t+D+-#nTOr{5(vE3odF<<42qYh%~{5#v0%E=yfcnTYg&iWwj4d9V`72k
zON_3yx+4|yGz>zXu}jVqXn*U1HM?h}1Qn4|q@Y2WI+6pw<~l@24U05NSfD!cm+DR9
z04Cp|yI3v#)7$?dQ>=fl<{C&kDpu!smURx@mrIpvCX7a)XXx^{4urNzHt-#S<(7Mu
zQ*~jOR0D@XooF5}Z=YkF@^V9N+ZdkUcJ^1U)jCIUXu@ZKrMOer_fvm79I85Cu9OgQ
z2|~n4tuWIG+C2lbvvhB&5}pf1XO|@pfEgCy4a?7@UMvO}<+OhwCkf%2oHIupykfJ2
zhD^>WO9q-iYY+L|nB@Z!6-@Ksl-;Q+bJG&=u9<Xev3nPJj<y`vi1cWhoayvIcL1CE
zwT7+i(4lNju27;{6V$s}6a$GK3VuVFt-6IPL8jD~R$}%z;||fcxjX)pK;@BpWS#0i
zov6ZyQv64sv}S+Z$j(7-+;%`8SkRWEs4^|J#aWzp&GpzVX$~eETPbNaJ-3qeON*R0
zwY|ZniyC`_GhDB3s)+J_u($KhUhO-&%R|O;ObIYcB{Nv7P*GG;A~k1C5}J++AEnK8
zY58_CG&DWw>~+ajA!?2YvQH(I8bV;SuBPK2O}7R%PW^uZQRWgcrj!xkwcRi+j$ObV
zyD5uJ;LdK84H#~=MsJDq81mViP?PJAl6B6>@zwSDtK*aFcUOP;@cP}`GbplNl62hU
zj5Wl*Lx+F26%PRzJ_A2FhbZ7uO{0)CjCd=I9Y^*2b-|jT<W6VV@~w|T`@cLrse<Bd
z#T=@T%T#~;xx>Kz1=D*GJU3n2{-qnay}<UtGn!AZcB_i2RE`sxPlU}2nlPH=ld>tM
ztyqoC{#Z1ps(GT1IXiB5YdHxtacRpRK2z6y{{iU88tY(U4wAQq-I_Ik7g(P+gm=5;
zB;B{We$E5FEyXpAU7XD&dY4m#RL+}G<beL7t4e=|F+sIrXPi#WIIdY64ccV|NypvT
z#0gY1oN`naDJ3yN6;o0oAi;jbxe8=-p_iKHVMKs7-PNhHpvoxUJ{n-++yQu40}q6!
zywZ9{d!a>~hN_;@9m|-h3l4PFJ?VoQ*e*fd-IrX^vncDZL`<CDc7U0CzK%!WK$r6X
z5axeEx4S;-lvipQ4$IuULx5tgV97{VJzK+QbU$o~GNPu(n=kpbZ5rk}j;901`QhZO
zRc*FQAnZC2{Pc!ez7*1&CUHuoifPjVU34|!*J~(#2aXB0ZG-kpY(v?zT{)1(Np%vc
zju${EaoFzho%l(OY)=l#CsZS=;6&k$mcoB@U<{Mku#Oq%z%d21oUVRr?UgQFq$7{{
zhz$B?S3jLyefY1pZ$6y;*Y(x$hm&^~7iW^m4@e<gTyv5l+G}BoVeN-Db)db59c14g
z@}W&2SgeV7hYS9m81qO~Ergo`LFg>DFiqrt&!atc!PU_3&#}x8oT8FHW;A4%EQ^16
zr2D|yF?RJBi%k;0d5ms#3}v6d)Fp}*fAj-r!zId!7KlO5wN9vG0hmzy&i=yfT--)-
z=CzS*>3*I7Z><>_tUJ(_SCfFSx+vs_5!A>mK2H*M%tJk7dyy%HkF@Pt`)n`@!on!!
z4k#v6q`8x}fX<OEq(R%tuaiJl){cLD>I0~|A8d153EuW(M0`1@!O7JR>cDBi*!2$H
zH@To{i6j{mW)eph#$FAK2M@cayUj@mCe`M^mlzjxLBtHk_gP|Vf`ey9-WVr2#5%_8
zNG9)Q4bIy$Eu$A=-jeuKU49Qlzq&A2QJX#{Cu>_89+<<%M17TaHYni~`2T-Z36PvS
zm&pLyH-J`HcH2TQi3`f%vLXa?q4$+02e}VxOkyu+cO4ie|3z8i4wj&6ojD8L9&QU*
z2e`?AIkZ>n=RWCoA$nvWWddxzVRJ0Btl&T~SuedZltBzBez_`cKCsE?1Bl^-T7eM;
zdL(lakI01HGD1~>QDb6QIJAGsnX$A%@siV6<XJo{u-J>+4p+zd2M!#IcV#$#qPJAb
zQk%_F_X;E&npOpx#$a@KG~872ow1F1an*EX(|3orQN(ND+Fo$zfH0xVokJH-7>e<?
z*3xU-s->G`VI9_hdZ+TCp&Ch;6p>#Ug~TaV2)0Rbm?LMQ9@Id!P4Rzhm0P<+D8tmY
z5KPj-I(K?6IIs|G%EE!mOUixAOhG)Q_9!m8!~~CWv}fYqx7i9x!CP^@&h0lT1&Yrc
z7$e<`M}($%+|)(4ZDoL**B+6DY7zz<l42r@ypU8s_EqjpR-_QUqr3DeJ)EU^Hb-AM
z*xH00&7>CWR|d0LpILumP3~mt^yP>5S8ui*>^4!g7I&0^TV?<0*p!3TZi{ST7}p#t
z5kX`%!#=yFd1jK39P1CNy2XU2<e+uX2D-%VC$tbbi<~*w82p3MX;w>-IU(O5xvQuj
zu$ahQE8JQuh)4rnF-VWt!+QuLc0JN>eHeAU`HaKcsr+GK9{hjJYoX>~6qsba^j;19
zI+I8iDub{b;|-_LP-Vba*!wlGt&6-;{!CxFEx0?{@3ZZOSVuab2U}#2+m0Qr_cuS%
zdd1u2K-l}6*Nn`)U1o=88EYD=huUQ&NJ9lAn_#BjrP(mfGpr_N6Zp7aWXuhrf)wFr
z<SZTWEM!o0gd~6Q)TD{%9(AESXC>XDa}2Ud!Lz9c9|%6m2Sf^M6PiT>lk{ye+uV^o
z0<zlTg}eG{kcEqLy2n>{pj#ATJfv+@$ZeG{osNNC+vZ3Ntmt0dStqc;*&=v<;c)ic
zZ4<ikO<pdRSqQe*+`gxi9M9zJNhfIeP3h%3rA}|~4v2sJ{jLdW@>>pV-BCg0F@`+S
zfzJccRk@w?4qF;;+aYW)f7?fBqr4d*WH6-R4NIeeB27A;&Xo9Ik?-qK4>+T>YDQaO
z8;yXxXSdPbzyDqE+}h1ec%UW-cX1MhG>hC?TP<B47>I#)9)pQ46AuC{)Ym1Y8k1Ob
zH|DStZVi9=mM#+P!!1|Lhh^<r?AUW!3hh7imf4J5Ck3MCts#teawhU-rS@b?7pkz`
z%gjr4Ee=P1JqXcoOS$EoOyl&}<je38Y1?6JBEsq?-L<54*NMyTED*d@VOc6j%2VhM
zx5^++<bJnykTZqXS1*rGwA@iE^j(%JiIA;pP9lGPmqOh!olZjjbo%l{w?*LDwpT*R
z5d)_5{)5vzq27>#(bgCtV#4@V3M2|z8~^cjfBZnuoj2zvXBYjmPdi4d)oS&2cj5o7
zR;%>?POshF`;YeS{$8)sZtwTH|Iuo9JMH#=kk+T2M*XLda`1n&e)Cx6#eE|m^3X@I
z$~S+CO)hy-J2W~$t3m!m(?at0POG)M@Fhv%RY`RU!vs7V@93EQoelZo_1V?iJ~_TP
zB`5DLPS3B;-(B<}CH8&)tU<2MF0bC5zCV#)H{hw$^ZxbK`OEk68vxJ_$f>E#DuN9)
zn@zQ%O(G^z%a}r4LC7h|rdXK96sb0mAq{`YqfF_ah5`j$DO@uKl!L>9G{ZUR>&`4~
zsl)JMJRygePaF$l9xBg^XO)SCd^XSG@gyhwE@hb%0nlgzHJ^AE{}aYjaO&Q`DoBEi
zGn(dF5>xx&On{APLe2nmWfDcI<Wtq>3dBn_3oK%$z+gQT_(_U?FtjR#*1+s<RTqB^
zCfy*=ACRdM$x>_Ose+^))cLhER|5v*m9G6-WHT<9u)AswT%XaVg0cxq5o9ag##i|r
z%NokiEhiDD`0objSX9Zo3W~~ekUNl(DNX5^VaoN0h$5V*i8Z9K3(FtQarP8oyE}6i
zOKjp9*^1+BJRUKLXBZ(f%I9RpGDv?l+1hLUU)wO86q0e{HJ~CFIZZ(Y5EGh7Q2`;w
z+hoX6Hj2ZTCO&j$p7zN9!i!C^#WVO<wz=(|IwW63@ogLx5>`fB{7?YcJ<GxvgnKv9
z4)6>w0US#O)v(UPCe)88W7;fZBbH?tmoinwEug|GCNiL^B=iBJDMkLQD=vS6ZicBR
zQro(d=!LnKL<;JSQicbD!3P@p{+GfT9P;rFdJ$EpPSZJlmocGaHgFTF8oVLZ7bMSU
zDr}6LL}mF+Vl+TXaC-n;!(X6+QCeomr?VKe18kIp%d~NI-hy4~6+*I`(6w~&?oL@0
zQz(PsEc<7k-BgGIL@vr1108>om}aj)oa$wm3-Hdgahf*B6zT;Sc^2=#Lzfzono0!3
zR#3w^p@uGK>Xz~x`kyHBrmSia79b-u&neWHQjw{0whF|SO}zB-6II!|<JpX*QG8E^
zEa7+Cb{9@r7T;2Ef65IJn`I1;W7O|~TD^jVd!Q#i1o4!oa1|pthQxpVj8BnP$)Sig
z@L@F%OAJ^9G2ApE8M}?)C>yS2qd{0ghdk4N@k}4Hdz%z6$>o?}Y2Lsv+q(%*;8GBt
z#p4+2ZC1{_N{=<28hO{hLCV{wc28onwus)r_pmV;o6^|aPblLiF-7i618e7HESZxe
zPH$l2hH(mbB2~|AedvEs2y8?{U=j_7N19EoOiJz!<0E_OCz6ya9$$On<vU=mtTUe3
zK&>e#UTWqcfq7>FIIQA#^_Ie_XpV33Y~kb^&ZWq)iX%-DO}0fboW{8#9$M}I?1GtN
z(TmhhZ#b_LEA%O6s+#{|Zs7_lU@VZsOMD-)2~9?Xj}{9rt8ssOvT4?|sbC?$H)NTQ
z2o&4Ncp8Tdc?v_C03O|C^1T#<k0RBkIC%@)O=ota<UZxXUKZGY(OAlg4DE8q;Hfhw
zGF6diNi1^Fa9NfSg|LLHa7j3Zwn<R~c%*s)k6&^=lva$a<!*YzAtN3ZIJ*tSwqg+$
zLg>VG%;C~v<j;RV@hod%_j(ijwQ76}c`9acSnxt5b26pb4O+E~bfiTtCgO3bY}0T?
zu(7q6D2dhP1<wg3?p+Nwt5>)rUz=s?8~C8e<8Gj&kJHkiHt#ZHAp=T2oO|QgODNbs
z3YO;Rv*X!}BfFLYuXFv75Oo6bqZF&;uqS5uTCyVj0-1kn&KD~)&NXwXGNa*yI2%MH
z2^r2&iUYaeFT5aBN_aDt7c|l6cgM3Nx{IZ(k@B<&Coke#__G;KXf~FL6Q9#0pEpMt
zV+|5#8N1~ngxHq3x%P-dQ(e@yn5_v=p>&p<oAza@6<5Q4Gh-RDS^?iE!NS$sTruC!
zVi1-qBi4VgbD%AFKwam6E-5t0{q|31i`|E8mP0p~Twg|*pz4jhO=h@O=k%uZhBYu!
zKuURfLZC<U(MT0ZWJ%Ic|Ba_Jp5=Hjh7Kq}SxJRJX7tLSMFpIZNeY_H5~*%Nm;&sw
zq+M!iDhd{#brv_ABM^6Y4c$yx$b_I-47YQX#p!=oYcwp@ywAP(TVk8g1ZsvU1#mjl
zeWH=q$65IWy&zpd3J?$)$Vws4pPU-vP9BBkbpbga$@4e5kjUd);<P!GJRYkElrfb*
z1CdjT`<7)`Mz+ql5KY)HDA2(RDL>)gaY`sj=$$CyTrM?XV^d;TPu|J|C91fLzyVLd
zi3@+FYFjv=J)F5-mOhUuNUAwFjMI4u6Sc^sl~Hw5w4!0}m|}TaszUCdgC#YtP@x4j
z@F*+fGrJpO25*F<U^gIF%(V;!F!YqpEoCcHA&8L@zM}t-lm|y5#YRX{Z|F{n@PBSN
zvadE1)n2NWk~OR<1RG*eYsy$&Dq&`6*U^85(W|y`rG?1JSk6~Y5A}_Vh4CzgmXxmO
zYqUf8sVtP51Pk}Xz6Um{#~eCiqT$Ah(o&DoiAN#L&^0-YQ;8?2Jql-duWGo2scNj*
z(uDrVp)+#EavG-%EjK$VJZJ~$ys|iFU^Adahz7(!81C3m*xit1F=A3~YB<6KplE+?
zubWyMnjmWCQzogt<c8E!!+^=DGJrFdVOAVhHx43Dy_Hm1wZCc6HWm+5=dTn$dDNR1
z@2<~J&Nd08L|`i>p~sLSw=<4=yBrcwb5kli3+Ls4(yAwgN(HJKokluVyRAA@*WG?a
z)POSJLSPAvRrb{ZQ@_Kt`wGZLbCQ2BDx^B)TItm*_O?P2uQ<}vq<W5auk8+bSS6Ou
z;d_^udr0QqYu^Ax;*q5@l4Xu92du*9S);nkRLgpfl}qUcHM=w_-4qZYZlR1g*izyw
zYRW~<&Do?-_%@kK!Gh5&z)Fl9bZJrDX6L*?ctBO!82M=8D6djN@uw5%;$DAIJeqs9
zdBZkn6v=;QQr~eg(t)C<u6AgZo6x}B7jfjF4(L-9l80Fu6;o6H$Hf>;SWy4d$62On
zu)$9KklM=x)+(&J1Vui}_=g*_$Zt`*MOLc-u@#K<C;*fUU(QiTAT=dVAmTzwt)7%y
zBf(qKUX9C01#Z~Y^HI%g8uowM=yJsMs)%cyGgk@V$)O!<o}EC&Tjg<KBXx&-ilVf{
zBhM^jG?kJj;2p>wC_B3H0_dt%3KRi(kLBs)q3M#_$s8d%4iaPEn3ttU$C%}qu@;)H
ztfVhTEE{rA)Em0i=XF#wC1$}i9fUy;D7r@4`-tyf@LaxRyf?sKh8%yDGI?#spx#L~
z0#g&kjAepF3>`u88aPLy214n=^tmu9(Kus>_;YnbKqF)KEObab5MHw(wy|<W_fWoo
zUO=w303uWzwU(nzEj|#r-3lBkP8TK(9dZ=OqEjXuiAFR`k$v^2ZMmXS^%c_U88@ue
zNvWwO{{o_685KM=VV!>%CrmR8XM^UQBFy5UItrt7#N)VXpVhZXpPS+aH7o#kYCj;S
zu>jSHW%8+?X(sn&ZZ3hD>Tr$<ENI?R#j<1oPBFrmVQmF#*aK5{U)ZT`L48XaPRc5(
z`*fTO|8Tbn)S)7q$9;0%-y|=O`{#YVxj&y@zkc`rn*4lxb#;GyaeaQ)C-1IYxBR<T
z<oMz*<j?09rwzhl^Z?(_AVkcp1j+)k$T5@J8w7Szs_E36+~HP%LX=fWEFY2U^XoTf
z4RZ1BqIrJt>gxRB$FsL*7uOB)_U!89_3_2^@yqi!=huG$6nb@jeR0;u@PT6m<MR0G
z`uybmo8v2T`Tl?E@?HN7xh;AN6P7@8*cnd+Q~`v@U4~krk1ljJ%lIsdrFaet9;t9g
zz&}fI9eXKS8-*yQpsQ$d9SflBf`_qDlaZ(^KPy;cT}NwGnMK??2*?|=rShdWF&)MU
zIM2@|=Oxga6JwnLM#@P7#?E}gcs6%TE!vZnLoBd08Ki$~oWx_6hHSfGyxk4Ylxr+M
z590e43JQWmEQyC8(81)!85hF%E%cB%p<yn-J6?Z3ka~LTgJ)!@k1WAr{>mbNLD^F}
z_HFp`Z5<L|g99L5*BaU4G=vly<w}qO4BB*Kh`I%!nnIh7iiBq9GnZW4@M=*cd0Ekg
z-7E}^De!-rI8}$~&{fxBu(i}Du4g5eop40hG3U`;oVd2b8zOQ(o6#|AfJ{*2Dp|hB
zkQ>otRHRn80VY@z2?Cuzve4TP9GHpi2H>F-(94E61;ZHAX>=QdlT_8?=R(A46LfHc
z0*^P~Fd)aF<Oy;YH06~eJ6$xKOY!qWithe(Ejxb;m%7`u6dF!AM=K~;Iz4AQ*jx!E
zBL?)O0R=&3&|VT3F+($`qJDG0J2p+@+}uawy-oDo2_GiP3I%e@jwCx$@<mq*wiVX;
zRV+Mr4-3d^ekU~{R3*)Z!G1b`?fM|1B~2V}h>^LKTLg@_>T5|zEg6ORf}~@;D3+pI
zOObzr2FfO^lFxuX%L|Y99rk8q_9kK@mPYu-geOsr>6~U$phQ}@HoIuAbCG4%Tc#|>
zR0sy`GL;dvQMDTn=StYH3!2LvuzPBR`8x+29kJ2O1rhiFj6ie0?BZ1N)w(b^`2G0u
z^6cXD{J)Om5!xcS7{1_!?#bU^DtE@0L<qTF@r8ze3Zw9?30kb?al$ezkA&J>!)o%-
zzE=>Ih6xu)^oJP@Z&)tK<}bf)S|uf+q2_jTjZB!Bh+3bcNe5&LOC>9#jdMpe@IP!5
z(AGgs6%$@05eCq!c_{6`VcU*x7J3KH)12NLM<^)uIDvrt%&@7wX(p%~23l!@Dvp3R
zLSV;#Pf)u+%$#XvtX-=^W<yrML#k&2eY`hkSqz42NrN{fukbyeD)<HZzEKeyf4tf`
z?RPci8EfRASvZMrHKnx9#9!v~`TSS%i|$lf^0NL4k1HgJ9G%HWpN1O{O19(!CgyVc
zdkI48BdR?vay-~NCB{QFU@0yFX*3vRL>xzd>*qtTmQl}SrxBUv8r>fXIaTq`O^8<~
zWF-lGk?f&j&Nf^trMF*tda>{xSR{e}M)6w<-mq<b#=I$LBsaY$b(J$R=C=$Bfx7~y
zvX)qRT~yZ<eC@ICkDp5Xzv=S!DaTkI|KHkcwfD>M|GRtpkMaMX<MV|4=~c%4l8mo^
z<MD*36eE-^p)JwLgl74M+tKO|&z_NYMdtiWA|49m@`w7)QUES8DC}J-g&^Xb1>_}5
z_#JQp$N?V3DSFw4R6x4{r`Z!4_n^ch5ZEGh|3dznu)I`Y6640C8pxFfYlMgffe>Rk
z$G@H%P~KKFac!@U$+=VS+qOB9d;}AJ(?UMo33)n73aJY3D7VDUpI%+P`*FuY|Dyx_
ziT&F7wkbz^ee9069ms9J;5j>b_KdvB_|%)^e$d_zc2Vm>Bcj|vJ#n{CISFZs;s#dA
zjIfag%~3{%WK($->UVe?vb~ao<Wykn3y2?BXgS!}_(~2CJn~iif~2#{i~$3Gm){6-
z%5oYfVq@bO`Lk`~&<@&%f82QH--BZ>I}{OIzYZ2p)kRD$JmS7+e6#^&zGn&dJ5o&I
z@g$kM9k0|@lCD<<Km_)E>UJ+PIlScAvx|4vXMhrZOKRIG%~YsgxB0a*c<MELfUR(D
zi(Is#3{Rdsfuu&HD6e%&C$@NhkeC7`2<(}w2W|T>(EvnBl{7_FZM(lZ&sl)>5|$D~
zw~gY0kdv6D`NqazFc?xX*;pghRKBy(3CIPz&l|c_6P0-TkAji6m{a~|HYZ!|2`gby
z*e7lF`8L+1mRdpVgn_BjvQd$to?{O#*ysl2g5Nbrfi(<NMG&<KLEXB4@JX0FoQXOu
zbxhaXT<_epl{2!nsxFQ?i(5!&aO97q`|&lK8k#Rk;Lh%pzHBzZd_SWhD?i_C;s)C%
z><X~TaUYABl`7q;O*D(M>a4Rg7w<(an4^tXy4yqbr%$o+ks8?h0mj3kTOYMG<h?^f
z{ZdWl7kTfMO-UE<;VE8!&)crDs|4=zE;8GUeK+6-GH=VcXUKVZ`v3W#L?n#O$YD$V
z`=%JOFi()!GcvmkNi&hh_Cu*FiC*Jr4Oj5w5J>{-9zx0tin<yM$O2SdR^?$$t4eq@
zk?J_Gnvs1pu)#e;8s3m%hWrpp2RT))Rf!ekVLH}J`SdkOD{41?*?SY}qy`%jmDQyE
z^C)+aTyPrd-Iebj?)H}!M;||*`BT#W!gxnjr_K}MmNNJ)V?3b$wY%L;N&nk#J?4LZ
zo{yF$-y>7IVl<i`kvuEdhJzYM8^m@NKO(Pw<7b1o<<^hDHmB;A9H~}zL<__CtLc(?
zWX#3?D4592--Jwm*;LMyZ0`OTZ<=qzS#d-*JDbMiH;rpw>Q!Ibm0w6v{0mRv@AQ_w
zo9S2Xr$YWP-c*0xtG}L*YmV*lrCiCSJdv?NFm;JZlUyG6`#-<CI_;CQtE+ccM`(YQ
zY)wZy0m}o=N1B_$^tyD9l6o8=al;nUkaMec$v?8y?H@jWailx)C;S&y+Q3J3nQXml
zc_I{&!nv><TUVYO|C!D8FJJm*eH))D{a3|iJ{9qQnErQKt#bX3UU$FqNdG^_=Lvbk
z=&k2_na(hxfTgyT|H(PYid2wc5hsx_NhEH$Og~#bPTh8k!Nw9k^W=#w!<j1A4<yjB
zjFBP3Q2y6{#~?!s%Z5}9yp)AX$3ycF*syf#8_01`>4xCcL%*LQiB7$$UI1ML_k(-#
zHXf^XO;4VXOVozZ%%rUZ<2aubL$LUvs;3&94--CAja7BC^F`+MCn|oVsmN+G<vA10
z_9N59FMOU?=6WvQ`wCd}H_v*%G!c6Ie6dfJ|Bn-YKBUPfWd9G<|7!2;^~(Ie(|P3o
zpXIZ<{`bf{ey0i7^@e!K#&LQ?{w1Gpf-(MxY~q8>IF0k>P(ILvVzUY;^jSP2zx-kn
z**5*l9gJCiE+0BiNBrgdCwaj)$rdzb3&>{dO<;4I{Q9c{__9b6EG!H|1V15p@Lvkx
z(O_nOo;5I(k<#o+lROoZr_Nu^(D{pn6HYdD3F|l|?mC?k>B50Gm0w)ad~!rKoe3^#
zC2Jlhzy4}ZMeQ^WvEXQyoyy~R{J!Ub{>4&*H+@X16<q0j)bU{89Uc&Z*F~AloJIUk
z2GR0Iq}^)0jTelED=m$xmcQcA?%wR+&%$hfsW)a#V>~@@rLSHYG1a?GiBR7TW|lgl
znbUy=6PH<h8z*ec&O}JjL2B6#A~v02&`Qi48cd>$&zwKyE?t~mf4DmS*}o6uubX1B
z+1PA`n~hCC`=@H3!Fyi10Z++`7sNZj9kuE3N08s=-;<E$4?c4TVds+TeorE<yk*^g
zmi!}Sn}1vRqE(Q|yG9G~vBLUlc%S8C-OgKwktt5L*P5E|${f(X+U^|GyxVTcm%n{A
z3MJ=HueSf4$0@)%d*JiigbAGfw?HF)Blq$a`ZbFak0<ig3luo>FC$U7W7lzk-%pzO
zb`bL$5hrj%J$XWl3HVc0mZ<yvQ_B&54~P&h0)8Db1eEGO`Up~sED&D*7SQ@P(pz_(
zpMl)g3!WcCc)pnf`bOx^qZ;$6NzmsuQfv@6kne=2BL$oM@=KG%BZIlv#RPnqf$k!t
zuvLiU!z|-D4|yWU^_%`}8~+>V|98~?yWg7^oL-H@y&*WxBHFMcM6#17A_%j8ycX7n
z8#ezKcsFcr;RyzLY9F9U71qX&j{5yKNA2nN&WhQHWgjrC{X-bfCM*+>%ly6BKbD$J
zdh$fKI`%x>2o8VvWkX|*oGCeI9UOeGzN$S8C`z5u<dSFkYk4q+d}t7reW-gyuErgQ
zC4!Nr0kt|FEFKmgcL%Q<H+3L?)qe5d4y?Zc<kw$6X6@@Oy}a_(SFNxM!s-8e>wi7Z
z*o?mj{<!^r2TS<Ys7Mm|#wH2mHn04oGl>kEE?TaIEupbbm)#z-K}sVKWHXSU+$Z2N
zZf=r)L8g70la`!QWi8J5b{m?NjcMA=i$`SZJGr|b?mvupc1N>_MM#H#$PeV{(`|E~
z<TmDH(X-?`5l+~YX}Eewl{a7td7IQ$J{I;73^x0a@G;rBrP)rx$2)NFUhD=w709RZ
zcp9hU?=1wDWjuQb06Zk$*Dq%5E{k(U{*U|E&j0$3>_GX6jD@+oQRF*F?fAnF@+jP$
zv2eC-+yA=lZ0~FZ&$fww2bIp^9c<CK17LQ(Ywvv5A;XN(oAR!OlOnxg(Fa|1_XA5q
z4mCtHT_h@{=EIcUe;D#;{sCGcw!YU%)}{&cjx*0$#_#7JGDf2hc|2vj$O$=YwZ1Ps
zFrz|zm@pc#4APY4?I}MKa()xD4>QRD2>I`4|7Rz7Mt15Tc{sd(=nf(F;0-$3*;)Cv
z9W4-xbvBiv70$$JsgbI56$p{=(J0|GaxM}sMX=oN3Hh%k<U=*z-Lfo;Bi4LL1#7;~
zl0`S<XlLg;dGq~=0HyrBhC2FA5xyDE^76@)$9Sb-G-1m~{ks*?x&k<$4-2Ncd{(cy
z$cgtsF#bM1G=W!tTz>T(K1QR+o5hGbm@R))F#35Ghk5f_UO>48&A!ql$mW#ZH|d!D
z&~5K^d#zUMdyT67VtC4@l7ep%n%vR3Ft^dYk1kPg?xrO%ATEC>vY7mLi84v5@|{O{
zYOmTCxMxm!jJ|U2#J_8Q?@Za{YhMYScwqi^_P=_h8p?2gNFE203)JaAl|$kTwgSD!
z&JCEdd-3D>#eb0*j{@?FW3y3JzV24nQgjnyAt%i#fnsci2tP0yjhr)RNlp8V{O$<k
zUzjQ?Ir9E=Hi$0mcci822N$5brpf7^tB#|ldswF7ecZBiok6px%Ch9bX8w8z$!Rub
z`DOWQtwbGvk?WI7^_{!;FCFbu{Z!+>61lWb8UFQ9{CBtA>6YWaTDy<&U!Udk6~upk
z`;Ol)9JH<X7Jr`7`*$;zp4hIoN2I;i+90ZtK0aky<7&&&l-^%shy5ecZMCZ5e4t64
z@FLBR$gcWs^@zEe;J1e(=Gv|5TL;Tx{0>Sne(lzOc+*KN`s5qcZnZWtUgQjZE$v5n
zH_Wm+t(G+(s=a7w!=t|$b}N1?z0uy>7-dj;Hu@4{PgzdocCNFnpL>o_+w@Cp&fiB0
zYre$bd?;laRk`O&OyEniw8zgHpBnj(kH;+gWXazv<bO+<uO$ENKF0rlp3kHF_vz)o
zhb6XuRY~%0nY?zEQsZ9v@ip?tHwaNTA9Z<E27(q*oCgUXyI-pLmcQ0M@A{Xtnr^<X
zHLq8G0w!Mj3wDcZvU~Zz+9xXWbSv+arlW<a%1h>l@*7$Ns=Q%-D8GTCV&!@D^@6AK
zjIvRD17B|t64IO|aZ2B~hlK)bQ~zc_sPDmlp*-PgNbmkv=|46R`+WIdQvYvN^S|~U
z>Hp{WJktMv3;n;fmRj3+NdNDyt^a>i#@s>mrQS02zgJTK57yQG*W0GON9BL@U42yk
zAC>>d&sX=Uk^gl4lV%h{m*nWT%7PE+|D9e*{_C{%TD?d4?{j>X)#Z5<%a({`=9(;j
z5Xv6QCHyWE{?hm5f7+)?{~;=^NsF9kEaCJwQ~!tc|8BYdTc_3OKH7gj%jYZ5{~znW
zJ=TBwrg_pgFDRAMCjBHOlcl7xvb4$v_x&w(64LOoUw*M24VFhnVme>bhf6d?c`MJA
zwDur&U}0+Xg4sFgWDu3lXSuqp7@MzulV}a-6E~x>Np^;Dx+5m)uV$$J@h=7b3Av+r
zIMI=jqj)@}GZIc{I%awbJ3_*UQ=Z48d9-{Q2m=`|%K|Z3H3O>o>#y)~5FMrDKh?;;
z{PIx3k4?;QSCS`!2o`26|58g4BJtPZXOY0`q&X%}Bg&@GMQ`-|(?_B3<3Ck@`7g`G
zEQ#~xr>g`1u>9An=>P5Rqx|<dKC9RNt9k&|sY~<kDad?r(PU-s|EI3LzNUa;em=X;
zp-T@WGHaJY$(_(yMWo4wGz5tTI_IcaDHr>37y=fTe<nn#y}*(B-jmn-hNXICDw$Hg
zZ3b1ZL%-JxtXq&Xk;C6|uOab&Qp*;RWL^9&xS#*iN?xV;dtQX{FsmB%+f}1}`=k6l
zVRaV3B-Ad6Ywp%>z-?OJHTJ2d`!TMuPqtN#YwUB6y|&BiQw{vlUZ+nrfiKNPzunJb
z`R}vEf9`iG{a<^#y~qAPpXKu?|NWlA*EeR!GR13>c*Meam@qQo{02LJw>s!x6FoPG
zeHMq2qFg_xnJIb1?pbJO;8ZA5CYH?xfjUJ53l+U)Ny5n}<5O(U?~H0dlL<|ugk?~-
zD4))Drc4Mr)+L5!8SCe^P}1j}z@y;%KS=Ohb{}A(EX+USWiWg5Wv;?{!+&d9!?Lr+
zS$)QnRs(*KV_swIFR5vNEjuqgug`d5X2>scW^0Z9C3V!_`xx}vzRWSKHToA**MILb
zfQ5aT16Y0NFK)B=y-&eg;Fmd#^{4Qq)!~1;Pu2bdE$KgN{g+OwlK<7(+kLeEe2&jo
z5dZb<$IpEA`CkX0HvOypZCKTM6|0)Nh|XH6Ve9SSM`ecnPji2Nt+=WGHeRxiN(}oS
z<D%Qh@==ZH@JsW*fA>#S{>z#8l+M3Z<iAS)*S-DjWB%7?`K<2$o3cEMLs61Jlwp3x
zqkdh-i;?&-<HhU*qDgf-jm>xI73cZeSWIaiPBuTe$W)~9C}wg-8OzU8k<+ByW#iF<
z_&ZHl<TPiaA`wh~p#V)&o>S!b>IE0Gh@>~Gc+EDoK)$)A-)ytpg5^AP<iDHa?6dgI
z7C6q-k58U}ayMi&*ImFi^cQvW(!c#>n&>$DgpbE@It~(c%aS7!rz4IQBbrYFkom}(
zeS)A=z8(o+VI;rHlf0k*QLusqV#ax*QAz%8v2(_<X$-A@Kg1Df?e|(6`WXo$h|^hN
zcQv2S*b%`}IdwD*5If<5ePDcaM85mw<juSO*%9oh4oH`acWwu1e$*a33+yaLF-sx`
zq^_1sHvc}#a(m?xKK_6!aC0p1cV6VPA`jfXnW@e?`E+KseAC%O+<9lWr6v=nOo+>j
z5A}s{tbyf!4pgK`RJsIlQznR)HX%Px{;*Ss4D5$2y(L2`CZx%n2f`vtNV7SjaYEXi
z{h$@Jg7(o~tJiy!7C-r?B>zbS5b|tjHWxY1SaAP)*MHh;cYB?({ja<K82|NIKB^@J
zO(U|!{_!B`k`#w*rX#VrO}6SDp3qa8)6+Q9sYcL$R_*y8noY@r&Y@%*P4hp<znsGN
z<bp?xn3u_x3sXup7VtKvbE2`4MT816qZ!nX&nJwCxyad6Ssfv@lz9Wak{B*ATY|yP
zP=ro-IwmwpK!C!uQD~YVe+xsNLI0DS!vIgsOrD~NGuUW0Uu-<bDUn;bTRi<?v$H9`
zoX|LbeL>{<bxzz5oAQ!1ah{v<RY~-oD??^R;>dpj_>}+E&WnxbI|y3-0|tJvvEg*c
z_$|kp^1Swi1xH)AZep9A)T4>V4(a^~4JWK0|C5;}e5>zVb@!m_S92uv)|tOwI9z7^
zEjRD&=oi(|>7yVuomJLb$Hz{qIt4@n_aN4PIR-QPb@%nT3+2TsvXDFKzet?sy<PI_
zug`ZpKo&lXd8uY~8fUAFQGN&DR{)tYR^Km4OZvJYpWB$`dHKf|zx=W`JhdBYGkkE~
zWJ_IfR-C`MiD#!p7N_I)vxHL*#PjlxE6l(Aikx=^%%XXh?^GFw*SZuAy2!8llG?9-
zh$`twfG&erg5r>T{rQdusWRt!Dy+%y$`sgJnBtqju@qa=E(~z7Ny4$>S;OR!F|zwu
z<Z(Lg1M53UXgqa$;n@-8V(FNXCOMs_bQ*^cS>>`)*qsKMWvq!xaRiT?9$y~==XrU2
z^5^%Lq?SAGs#ALI5UzD74yk@%>ZX!^1c7HGVvdk3C$v%&kZfKLW&U1aDE%xk5X)l`
zuPxtq!fyUWF&(n3LB3<;=m%1yd7M1VG9Nh46kxs^ovGj8Tk)?r&9_Uf{q%J&hRy13
z{PIi9Ov$gmnk~v{&YJX&X3XV}OGs1QRj>Qb@UurQ^vH$23>Shgc6LY~+D6WQRqz0f
zfU;rBMUiJTXX811m9eNuBbtVDETy3O&H`CLecDim8l+xKee7<?(O<F&y^VSHBI89G
zUGZU@KHu?vu+PIJ&G$2wg)GhKn7zsv>(6M&p6~dNxI^j1yy!^y=CAr~`no9F&dw{I
z5k|ua@#xwX*xj}psuL(4sbvp;x=Y@o(^-caE|NgZXp4Y7BxjV6)`}gj-my?6`&eeX
z0^4kcNg;BUl@Zu{U*!)zLWda_;)3OOJiF<ui?s-~7od1Ohy^%ahwCd)ap#)L(<)yL
z4|2lNn58+=%Fgp0@9*m4(>U$VXvUC8vFz-gg+<OY`Rc;oR^jCiVy?!2xt~WU@%eBv
zHs!eiq5i6SdzSGT%knvx^MBa<Cr_E!L|e%Zn^23sQUCU%Xz(Z+d@G^>r~r~RMS{=>
z?S%<(6gaC4_>qzI7QY8B=^};#WVSgH&2}B<fam4)djYe1z61Y$cs=U+6TGGCEu@x8
zxc6hi!kbH$#XNe^ZOPkzZ2xwS7rkER(Tki3?3p0}wV&_UU+mMWq4bM(tJP{f-_d`T
z_5eY+n@~rsunBK~4+q19hc||H<ypb3$*oTNFPUI{Yb?*!FvgBKA4^<9EqrtPqhD>_
zc7EI2P3%U#X)O8VM|gw?Z6R1>{&p_=mt4DVihY!R{8{{7($DXICC)(nW<itko>#uF
z0;{7|c{aDiO8!y*TJ_Z`rYSJhA8LdovOwIizqt$lMnyE@Iz-m7gD#{&Ww%Pnud?vH
zPwXuExU+wFpInPK@MD&fDZM9pQbb58w4U)k3cruS@8=SJzapmoTY1AO^6~E`=6<Z;
zy3AcxGubuB)!G+-4M8YpQBVj5@wREmPBIp;G>>T_Jmjr^<b{;2pYJUA(ML?jy}k@0
z1nR8_(!Zn6(IM84$0>{6XUP>qHnIvi^Y>!`AfR!J2B|Wt^XP>-sW9P1q|eJ@fu{|z
zG@9`^{ixaEn`(LrjD-v}gx{sfO0uF4+Pn&|Eg%bgScEr!EWe=Bl{k|R-M$Op9Z=3@
z(tNT$<Qax(KHq`Y%d-VDwD{Qh;@i%Q6}aDa1%*bav-??`&HF6mY2;tQ`bXAZ#)6?-
zL1DpAt8kiyTJ^e|hu(>%=r(V=YcU<swREv-b>NQ$K(lZX-!eywKK{8+`d#u<cO?b-
zBUZaS21&7h!lpOP6$Is`VWy({o0R1`K&vRu4{C%CypLB39U$xJh5ml(b$MTYW_{3G
z%9m5>YA@7s9Ibuj6YFy8o!9TZEt*W2eUX&Hd&DN(%Yn&|3KkKbYH|`LF-vn*u@7L8
zS&_}SV8ZB)T6tc&+j=I8w|l|NYj)85_&E=v8Up!$TWIK~BxN6O`}-|6zfW)LTi=XS
zbvvv?uh!FuR!|IAV-f55PCmj`vm!5jwA+|%c(mJm!l>GH$>MSj{%Ej#MEq|E@u6qj
zL$jcFqTl_gyFdzfSYUB&eN5ywFBuTc{|fM^^i<^(VlZIkb8ma~mjKjx;`xsGWt9^S
zjd{#}gKobD_}){`cbs3Bn$$8j*2~6!Dyd@ZEwgL|TFbDr$X4SS#2&D5S<HaGfbI(9
z7XSjskbgb2s|cwO>~)^c$~H^+orR~rSPi6~<6fo}&QErL()X*46Ph=!(KhX4M)_Ae
zTJ@*Z1{7SLaNS_uFLogR>(vIinTkHkZdulUk0W-LhS?lCPX3wA&wZp__Mn}@(x+CQ
z(VyA;N?#0b2IdEEMEmW^Bb>;I@wYr;<ss}Z-Wbl;tI&`CA;$kgu*-~zc$~)R81}>a
zM&DNF8Q-!>^CDwa%WC~k#z<Q8)=CE3h34MXY_IB?C%lMWWjxJK`IN^0KYQQW-ZpN3
zEc{)+0!u5gosA^h*<@R%N~>6MqFvi^B{{n}j;m54B=MLcwIt<B9lgK(eK5F#pf0{-
z+n&uiPuC*B!C){m7z_q8Ayc@Dq+1#&!ft!JqJj~h{)}%=T|YJ?(DL5auY9>~x2Lgx
z<)-*&e4Ep+Y+&nHdAnNA`6oi^f|Y-N{IuH9(F!P>y6L!+-UgUf@3J6Zv@p9jU$3}w
z&4ScFb>q}x<!Y~JcbW~azh9%jsT-$_08en3s@Gd(uSSEMzRgzmFh8w_8uvTZ_}47P
zrG60g*E*Gup9woP6W>=OZP5E5>dRYzk9tHQQD5zhB8&8+dx0Mi$@dLH)NB-gxYy}K
zJ{-%Nf2+8)Z*xeIFCL3IHUGOuX4Lym;2*(ffB16#<9#`gw%QQ>W=a@wt!!KNSW-9R
z%q`~%$NEdi?|%?vx!ws)w7Y7%d3V>I=m6-cPk$cg=qFEcX84M)5_Yy(OQ9<Wx-`+?
zssU2~jPQ0@`4H5d3Md1fZ+q5%g--WV0=Tw6S}Q_LLS7b~CTjhxPZI4@?!QuiE!?B5
z+>5dGS!HXJzdKp4S91fj`qswgw_dsL6&>8GMtwcRic{_olx%mTUuk!w(L&2k!m5}O
zZJ0m0arB2V^oKF@xCdLymJ%h_+y3&81!aW=<<S<Ccj%9m<Xf#I2qEi#V)A=u-2C_Y
zXU+fW)0F8rF8SdwD*ta1g%9atN&f%6o!uXd{I5Um?!Nvb|LeE-cL!qQOykI#4brCP
z>?7wR4kkT=F^I4pjNLdbf1(x>n$Mk=^y49h!>h#EN9Ro1?}XIzw-oeg;HJYUo)CD`
z*bmboa-JonXNiNH%UK_P$01J14zhgUPHC|cA1CFXXMN1NRl8?>%wI0)w9aZAR1}TF
z>mE>paSdRnH1mAt??=4`O`E5Jm3irvq<SmEJ{kGpjSVa$eZLPxC0*aC)T_Pj?Np=2
zLTh@B?mBtpeQkrvtp&VJk7s$M9&A0T!_2J_u}<%YEMK~<Gm&+F{vOlTRw`8yn6Bs9
z=Ze;-D65sNtPLTBvert$2L5|d_+w@KKlsnO{!jc-?54P!j31?sh3o$hZ+3rtW!8Uu
zz4zlE^?$y}zm4yp5<}lj#)ZNLIt<)VQaC)Sedv9zI=2q}^Q7v8^v_Q3Gx=4dEfD?h
z32)Zw_G+i6N6mwO+WVtM)#;todQPEmaMo@&PP)BMjdrKmI;j?S3x!|WwbRo^yVp5r
zH&460?&s4+uYG!4Z@jNM^uLa^O}%ySbEDlmXdR!nI*qDBf3u%Xq0niZbei4fr$+DR
z#^>Ir+R+)oqnF??@l*c__b%~mZ|r*>4tqU<+y<iQ1$lyh-AjC%6gr<f@O|fFt=*{i
zemZQoKAg3Ws4E|P<^LVV(daA=9J6Joad6gdc0c!iYBf)OZhRJBB&;}6`F|rn{2AZo
ze|cQ%bQ^8!x1vZA8L0mGNvq!IHS6LV(D%NV>E@@}r`pHXaYGKpy>dTB6PyKEuXSth
zYn=uVUbNSL?4}HO?Hfw|-f64T{m^c7s*W^{@;|J%o1Yr(Y<FJlU*S0aJ9T=*M>ES5
z$uByM_DSv7GPGHO<ItTf7#^=jn*CN5DKbB99MwAA=0T@XYae{n@Wp|fr2ZhmZaf%U
zkv6_HF*g9@p|3;9j6sJY2eJ^#!O<Dv*G{8*cA5i!iJgaZa5|eV8`(+opw{UgHji=#
z7y1J?Nr~aL24-9nd~S3==IeOqhpgzWA0oE<VTnQg0ZIn3KTXT1Gmd6~hnW8c5{5#M
zaT=jn=%)k|Ncl!IrypQ6OR$Ifx5y6@e>6^^cn^+AbDA-h9}T$!qKsIz3D{%PY|__$
z5THJPOElZRMcUX48>`Ze4_9HrcJ2N9X7~8-z1jh&M^G3V6UA=7@2AJVl__#mh3I@_
z1=2iS48orR$q!kPp`-v9lCFE5&z)}Lxc9ksOoTxe?r@YgM3eSF9TL@9z9iaDzNOld
zzNhNZY|%XFbZbXPjW+8>_%>Kig$?u}i281SKxR2f-7rn)H2NXx&k`tsgo0?~4+=0`
z&}^M<?WA5iYMnG7O<(A_K@?&~X~DP;NK|zQA=I~AkyIV7H~^8xO-e*J*zyyyW!M%a
zR1;K?x<}|!{+A<PYAjK8w4X{dK9N<2|K$`499-|H_P%jcRd%{gL1#7AprLZ7QxM#L
z!Ctq48z#Rwg+i^}Z64MRx~=wS{<fwTt@`Qk_<+ASrUkqZ*$>81;1uf3PPg5Bf7Wfb
zPI#lbpQN$hpOFolQ~0%A6L5cx-CK1q2d$HCt$9M$6u$nL!%>>xoFOSqVlk|Cqu$gy
zh_UA<WF~7K<b8G#6jMhmuM6tqVH9J3<Wl*j^|ce^r^rvxG$IyC6k?)o;usIofanpL
zNO}-s92Uq|JqD|~Q+`cYrZuHE0Ad_K0{%1tra|<4DvEDqUgOht>-e+_yw|HY+r6XK
zL5<L~>S){FI{(rs5Sh0$mm);E>Un;gV~~8THBN{rXxJrVmu;6Fj#I5(?{!;$TxbY$
zKt*q|?*%%B@E1YPr8RoUINcEO6wyM1GX?usin|F`B0hGV!l&9%vrbiIC)2bjtX-#2
zIBs-0wGUGCxKgP)-7!W2DjK*U|Akys)CEci^Gg)PFgntl-IFlKGl(WrH}(4g&IR)&
z+)`QzO|g$4xypW}a(#VGE!FaWAew+9Jec8dfGeJ#Oau3}0(NbMX50S0jenc@F}UrM
z4f;%dR8oH&yJ_s-Y>Vm3(xo232(R4`hQ^6vjD<~8_H#K=?600`J8Bb`{aBm24aC$~
zg5;GH<l)rygQU<tJ?_;T?<Ejo8~5ss!`j(Vx9U``+_(}=(+ZHWBJ~G<|Bf?;Tn{8D
zA~;pYoV{^0!E~7)yH|ADAbq@_CVF~R*$E?ZejnZ2DMlVne6o+RcF1*r1PY>>3sKTv
zacGX|Hi3^>H@(>jF{mrfix!GIsutp3Z*5aQ7)_xoD$=%t#*I6f2Dl1u2Lz&1JZ-n?
zX9rza+#TeHTBu|(v(RjRXChE7@SXql`h$I?1Zk!6m*y$a3GGIw^KSnyr>%DPT_saz
zk^g)9R>wjvXRCF;v}ab-vNxb>;$M>_m_#0~del%@j7@g^d`zNv%1XQ*UUJo5k4ia+
z+{Es!*IyY0oVc_?r9VXHsPr%76tkT==;AG5X~|`HFpf|uL>a+<K5HL2XagNakS3XV
z&~ND_1im8!N#`3Y0W!wvET%mS{ldadW^qtP47YuBZo&A%Da;G)#)rnQ|MntQexXWK
z`Nb2;RQZJ|Ld&{)JfSJS&}3v;#}AN-@(U&e3;GajFL>-97B2cyBy7}Zw_EL=UEepu
zD>v}7%MB3&VK>Tu=EVhm8>g^w(&{$$Q4<VdpVx>4Tb7zCu&e}b9|vXB@xuXKXC^pF
z+!00-_m*s$sauc8^I7|dK)MX0>oB|E2=7Tox`g9IAAtN|nJ?)Z4@J6g%%Mo{jW!hJ
zgJrHQr_k*5q&w9Hf;xc}lRz;j^c~h}_OfM@DQ$`MZ01FOpo9&w9Nj!K)&ic{vddv+
zZChj0shPLS;Th(xwkfySynM2BaP>yF);#LyhMbj*3yeC8i_;21C<)sK%iN}9b8qcV
zim9znUAS{UUCHs9hk_y-HWYNB%>8sFudN}Txxj>sZlD9^eB`cz-)1-g=Ye1e?zB?9
zYAQdl-SuXFf~c<zUE<p^(RD;B`xp(QS?F=6h2e%^<#~sGoTPLMKMOq^qY6$36@J7~
zQGIxf#5SakY4>mxLP%w6W708u!eY?S3M8ZBq(74AvY#S9Bvc?e8ay=+P5@89iI_$R
zC#l;H{A7&Mc$TE7kJD?6LtfZD;q?0HFpfru2gsCvzl2+#g}$58WdnNq8Q-E|98FNo
zoA@Dmht3ilqhmL8N3c6b?@$M)L?b40hc2<^Feu^V^IUSVqb!41%7>gp)asNk{&DV>
z{#7ge&ra#j7k9gFUe1YCq1zO)F}EiqdW8+dJ&1y3x&Pb`35}>*i^E#r;pRN-hTQXB
zywkmZm2=9HL_w5Mdq!u3mAFUeXdERe81SV8U7#pLZYVfftUuhFPmc+7hZJFi5l-R6
zK}^a5jI;PDM+Qjhu|*)3y8c(DG1?08fLJI*j>CXfxbvdHC5}sE)r}Ioy>L*?(`7^Q
zrwaxIpD#ItP(_rT*YZsdHFYtf5({ER%qlm32%_r*74Ovj&YaAYYG4?0iFi5*yMPMd
zQbK(w6G*7INL0}~bdXtCw}}<bC0HCni%ysbix;K{^EW~?MazGHkMOUsXV|~nc{x7^
zA>DcTgH1@qXF^CN25^GT7@N?G1qMVRnoUQs>tUic&Q3qHYjt328YnOa)`KIjJ`N&(
zGJZcqWQ&LTvy>~-*2xipMAjZRMIpu>ILng=U1B^XBIl=QjAIP^7)IA+bU+uPiAz{2
zg!!A`bR5yLjnNg3V_{kgo)(OAe0J1ro*p%NryqKqgO3f+9RVihXM)q&G_%`*-F-3`
z<B5yh1bH|a#D1S19<AwyWj=U69DUD!PC&jFCm@C12&cy|j@B%l&eB%=$&G!tA7F^}
z+S+E3WV0~ADQX-ZHmGc{fhk-6OMKgnI$#`Di@VATJRD+>$78w`sVeVcoXmo>>g>>M
z<pv6(QO6I0TjWqsWG=`YP+IS!^P<wv1^w#iphxW014OUrs4X1y4plsSRS9Q*L4fw&
zJ>NxNzlvUqe|3bT<{UXi`rJX)DspxlbYZ$^RP+wPB4I2*FtlMt{$*%Zb&6YR+iho&
z!{*8jEFiuV?^F<T>2LaudYm$!WF1b~&eZYMeJ|Wh(a@KpjAC@fn8P~aImm3gaVR)+
z;wOXhFo;He5)D&e)4rRGE2%$!?G2(Jij$rjdOf-v5N%Z$90b^ntIijEzB6$OgZFUX
z^9w$I^{2P5-@f@XdDg~WeHH}pc=zqAUGnTRCOVftdc~T(kNwd&mEZ6F`9}a61s-iW
zA$q14M57UoKj8E@@^IU|7F<u6^cYTBi@T0=WfjRY?!aoE9JZuOg$Eyh)7H#EQg6IJ
z`;ct|(aGn<I|6NffwWJ4skKkCUli~7@aNBxXG!sn5^PT3IOH{ea*$&{1I3#Mj*@9T
zfZ*<#XQ=lmq$}RRyc2{<uNNb=5|v9oYII(k%xfXBBBj@Y$%(yz4&14qx`ChIMA`KO
zI3<P^vm2SqN1Yk^#F(6aDE3Ew=muObJ4NQ*;}r+vBt00rakaPwhK^IbGd|hh+25Tz
z=qqxsFVQ9oyhmv?n@(}ORovM|^UZBt-Q%=1lpSUO?y}%v)}g?msDJ8EY7nz4nc@L*
zgCs(UdkaThDKUT&8er4MD8R$Cl*ayKf;}(-QdV9)j8eH&lZ7>Zn#I7QW%LV1UPSa?
z4Ap+Yv*u6yw5$-dle&Y;ZtM;uU8P(<E4|uDsCbik-Q6$l(OI3V64M>W*!3)*lkX<3
zADSPqp!V+V)ZXc9*=I7wK_L3v07Ox<&Ij&JA!M8A@-$*$Nr{RYY2U2p;6{N4(MZ*n
zbj}>DITwBYj($ad6tHGPn_u05j-D5HrG%JZ=<IuLig^|6>nOfVkmnDFIL2Wb+{zT@
z*JGTH$<_l*zz-*9mG_-`!B2YR`(84ePNO)*UUjDc081ryd)I0{WIx*_w&;hGGcGB`
zOp|SG+WiUHyHBQqbg*<g#XAaSE=`b}L!#mq#dC(fe|Fe^eby~Mdv)?ZRMK#e;N|Ui
zc6M0%p--u)T9v>%EL4py*GVOr`eBIUN})&o+S)Eq%-Q3rQ~CPkO9}pmPSy3;4=~z?
zzrBcd6~)LWg7(h@|AuzZkN;HPBJF(Yjse~;`a&tl7C1!Cmz~`m`8)|Qo}yg_FvRkY
zd7+Suqw5ZTg(pb9fjX%hry$$x9Yq$#hn}-W$L=LYE)f|_^sApH=roQXuUWH>woaS%
zZTeZ~w0Y7yZPu&B@7Sk5`$0f`HxxYI-a}Hp;3e|IK`?_b6ry;dYw$RyW%xRc-6?V|
z353$0QIP|8IO%p@{}Vk|nG?)fV$h)-7;zd+%@H$ytv?vd;+X6cl4@~lnxGOMqOWKa
z<0&d#4+!abZ*zw!Z=51W`R@Cwu-9SRMpz4WQY_$z=;|;<TYD&B=Ma8^nBUk>6C4a_
zpaPi|G@EkI1~tEvZ7C5&rBhTIrD!)J5g8Jp=kM%P;a^<4e#)Bbtrc+~+oFcCZ_!UW
zr7^#M>zD>l@oul=5YxtC$vfmp@ImXO+xWGcm2CE+THG3d4_^o;<;m<8zyN&I`p|pd
z_*nbYY_%cg=(y3XWxKHea*A6S3z%AI+u9p;kW^&fv2BZ{ZYT{pjrOPJfe7ygHR2d;
zy6xHljVsT*`PgpM>Q#p<fAXEth*7I|)I4c_Nb^Jxmm4J19x3i}D<lg50)q1Zln$MW
zBf*>;s&G~&snGV@NPVm<<@yUqqe|(oJ!dPj0Yw-gsHl!f{vsqY0D;x9jY?>R`DI%}
z&YpCwXo};<60?&AaMBjuk{zVj701zp%07KiM!(P~<Us@x3&;<Le(0wd1yM9Dqq78m
zQ}v!k$iw~F2$sxlbm#}xeMRwZSBRN>mAdf=Ll}3}A{FgMz1b$S)jHuSta->R=>Q`?
zA%mH^NrJtX$n8gQYRH)czuJx(pi6tRkBPpIXJqi`3dj8@!DteBG=c;E@Dn<EvfmD(
zYaC|~af)}J8twP3PNT>63*S|daF?Th3-tVXZY!uXy|@YVo*f<Qnlz;L32e6rtgl~<
zH=X9u(dR4#gGLISxSrcU2QjA037-+N<{~e`Ff-s1*PI<-Ey_umFPs(HMH<ZpW2DTa
z)ygA;(x;Lc13v5uJYqVt7lZL6^3a<fc2)z*zB-CVe7BMqCia(*Y#OqP#X;|X-Wfc|
zfl|YIq%8MrzA_?k()b0G0-Y+!H8xYz(UgE~RYXqlZwnW|6-P!p5c1C1iH)mHSduTm
zD$7=N4lX&6o|$!PUsH2LNGAs8X<I8ULJOJ*5z<IXCkQr0TzYJ4Xr>W*_xw$sGUgt;
zrzcKAy7^XPYQ%9QS=o-O1{K_YE=~p%CU6=zeu^Fn3<gC2?Gm`xZXB)!@|RlsB#Rzw
zE7k#X(&{#{VEQgG^kF|EfTeyKVD5=0!Ynt?B}{ftuU?(+PKtNXZVo?pCUTdpfTc%A
zs{($p<R9W)qGc_u$jtf=!e?RcwhoD!Q#@x69K549=g2tsg#ueWoVKxlhYSnJ52v%V
zs{3C`7=3|>enlo8TFk$&nJ>%<pbs&|;d-F<azIg!{Ccon*<i7Ct>=2)kssoIjNMD5
zJDmv8N~O}5(2)}-Y*hQ)QFQwBB!J3-x{QU<K@>!@n7z~_!<a$>W4^KCKh!)vZMD0#
zlP+5Ilj0pm#^e*$H|L^%r43i@@gD!Ieap#cgwo5o(QVaRU}Gbf&I#DQ12-7V0%H3G
zI2@&8#PT`2L2!$bh&mV&aM_UNIP}Q2;S#xle~B%Vvs8-K`ez%Iow1lnS1s<rPenE7
z%6pN0qxd!9ULYJ{U!yS&rU{xQDCQ~sxs&@EZ+a+<;t3FG?9=OiODX*x?B_Dwr*1Ht
z^A}8Sha~t4$8a+d0#OolJ@yA<GzeyJkU(Qp!XyeXJ&BIsa2N=mL}->^1{VEuF!5AN
z_n)Xl_d6WdL=AY^OgN-8LZo?_fnopo7+n*@UcxtOn8-Co|2s=kGDI|SZ~Jf|b~p>b
zrO2GDWCKYySF}HW4=&WEm|6ZD)8}vgiMISONwMppXb4Z=p?3=Y+b``H`w0)8W&2u5
zBGyBHmWpB12(45GrP6WmY2m{zY}8r)U&w4rFnU9Jg294M3g6%Xdh<^4Qt>X1qETXO
zj#Zm|LmcB!-eeEO3Gv;KZI?7Bnf56$y#2UZ-12;S%fKmrl8>Bi-b~ws4YS*?4Y2;s
zQOP3>C^+8b<kItFRGK33f;|1Ae7D8MLrkaU$p^HL4&Y3O?4t*Cn>cl2A_p=Ua7#ej
zCKI4a3``Z7fPEy8eJe(ewpq_|E4uLph0!&F<b8=LSgZ}79tM$r8Dltu7+~R6pN0NS
zIZ55YCB7MdjNNdA;W%7`N>+A%c>U(}Ze>PzxJ1B~+|Vnf7?;wh#K%zzqESK~B&iq8
zQfT6mhb7W|$q!5E7?%=vf=j7C(U62K=sWaoE5#U<TsdRg>|}9_2bW|<T{QBqFhm-%
z>*)z~Tk}*GC`n_uJed&sr_?Q8*g)_3X^V8`GFg&;LD?Q25H01W3FCMc;K@Q(Fhm)I
z5dnu#2d)gD8SFFnk)QmGZ#x1Dr+9aXZ|4qr{+xgQiKd5UDx2_=_M&(Pea;IyB;B!l
ziEniqL5%xne4A7q9&7uRMr3}y#J6A5=n^w$rQt4ODB67z?6|_>LIuCiz)eV>%JC}&
zMt1yvX!Cp@PFeRaHp$=c0r`7RY6|JAgy@z#6)4%${XbN^(*`$37vLBYG9fj?F5j!o
z3xyF*PsxT}L<zNqKjT~DB9KaVgSx`{lVrNYw^<^wI4(ay?jW7P5(iF0c8i(u1sr+{
zA0sGX=7$^+CWV8BflHRGS%`0@R5$Yll$|_(PzKdqAEgjEd67BFfLKQI;vO5)syte>
zB$UZ=tixGWwHQKFR2#v01=WWKRLdPj!dIej;!lS?9*_93b=+9&DPy~Gi%T^F2kx>4
z(Wt_7Y&nQV6kVa>7kuStzBaj_XimKhruTE<t?8!&wMfI_=$g;Y%!$6<gwzcQa$}5t
zrv8*K_lmE(nW6zvsl>|F?%&EFD)4isIG*?+I65t{3uNm9unQZ)EQvy-keaSWe1Tx6
z3WjZ<%w;CxZou_ExLju;jT0T=lwQ>a7NdSw>ZR19?TmK!iMIPLC)y5NEDkLBA`%Tw
zQ=z}l?j-n#gDH;7sB`I0A!?J5gHr;3E+rfKc1IIn19zTDU?7Bu`dfOPMpwuD?sM(<
zh>9%pjZw#1b`0Ei)0RjfI12>}7`|Eu{kIzai)CB5C$sMe##!m7^fp=(Y-gc+<@y0(
z*?ZIaVTuI)C!^yiWEy7xc`r&a3j7eiRU-<R>v{88@+I7aRnQNK<@fHLrUVp!8yIb%
zI-F_o%UNWkZg`tQFlq@+AOVlMRbp8*kP>mQv4QIBS{@Fs{5T3BESrmdLU*!sfl9~d
zr^6m{gNXkW<`IGOiSG=g0d|RRWlA4uI=Kno^*V)(4e~9spg1b~>~S^cA9?rFA!^t#
zUh*CN)W{l!vj6sh6~<AL>R+&b%OKV-=$L3H1vcD9cxAYjemZP~SJmPc%s39Ocu>PX
z2yruJku*m#i@8O*8sXK_^^z_zZi@c$7t}cU)a!I>?XC!vF67cKm*BZySfC>oUW3Dw
z#<Fp&HDS2atVw7)mxtY()y<qUb4r&LzuY5Vicc39L{}MW{Yp2}ISf;On4K@-v(hUT
z>&5{(u&-0CB@qTh(0&VMlIwX#(Wo7zRFTL<S>Yvm*n}J!7LST|hi4}TC$;0o`Od|h
zubLA#^jz3+g1<6Rn20R)OvP!TAwe`^kM|tD#bkX5{Yqx8=SQt6rf4PQWNcY={iv7V
z^z+|O-E^F@<}$0Dva-^Dd|}U-rPbQ|N^8E_KXXLH__rAj2e(znbN%2}r45AoU*W?j
z@Nisp*iX+XXmp)SW1J*Ml#WSt(IU>w|8h*G+K<9A|Jq^acS{y@cE)E)d<F+cz+J_(
z$Y90FN)W7gFdO$jw}$WC!R2hq`q6P*yO)mtFMQm0khAw%?I!Vm|AkweTh$(p1?jms
zu*_3IGy=HTFly<A0LJ4NWZ66~a!I%l{9f}s<2zyoad(Q8p9Ahh-C_#$sP&=U>ejlA
zgVxDmf%n5?wkTMOZae%W@xxJc3BMS&MT4UBLvudiX&9yc5KpEl1s4S#*~Sz#9;FJ#
zO)<Wq@d)@PB}y)T3K5~dcuifHsPyb}>Di?8jOONma(Bf$N&I<XUeHIljTDDo@lK%$
zv0V^-Lia|hxDg!}aploW-rsiI2|i0QL4efqAumiVMdR(@RkL0#ZuuT6&9?0gPTUFR
zO~P$u*(_>Mh(Hx(kK8mZ8jv#0@)D%n;zXV?tILCE5k`)G;;$fD{~(USpQ8R@6d!R0
zUQgw72JT03N(L$AfCp4_O$sfER@w5S9&;l%VE=?R2XPdpZhv!|ZhOc`Xe<sjzRBwh
zJV$ZK2siG6^@m*${TNL$OOUcO?P<>`bz0XD$y<CS<n<RUtl(LKAx@PATl+&ajgrKN
zO+ho|`6VWQQA~{S0kLG#u}j@6QHZ&xrPa|_L`uW=0JG{872GTCbXrNre(aT|Zk*m$
zL~Hq%Q!u;+PSJpwHQF+rD$sbFoY@mC^X4y~DfCH1riW!P@v0fzH7PHZ5~{~k5|IrP
zP6sy9(B=->fLQi^l(4uX5LQ%FXWY7i-?1TqDC*6By$I9MfmfhRWn#hFppE@4%L>mJ
ztc@qp71pmilN}mW-SCndY(%$e972pg6*0$*uxigj1t%~%kei~tSNpGDqj5Bg6GH}?
zVT$7`H>f(VU!%QO=mq>=aWK&>5t*3tIP!=FwCh|GJ#lQ(9EzAg2?~P$UZQJoi4*D)
zfh)~_;5-eEyJ8g2!jPVDL6kL(LMMVpn!~vsX)3R@Ok@Ab5AcYsYb>@$$DW!yVU!h=
zEvBqcDaf*nvY&d(S1FZ(&Nljr1OW5vQr7RS_O>2yMbmF=Aa2!TW#)-(;&Q!68XdZR
zK$;AqkS2dj$j+F|3;)OmCmTO)>ho*5aNHPwO~BufL?QX;)Q#N<PH{|O6nFRG0GD6W
z58Vmu;){Fw^KnF<*YOmGUV@?!jUZd>J_^acWn%-KO^F4OWS+M{l#+dPQY#d=q^V-E
z`pUNQY644r#&KU%-sbp|n!3BbjA|NbKv4>Y9nu_UFd*S$VuQ-npt(!mo*h~8c70@j
zA=}{)Y`+KMY~2#xDab8wgwYL4acf3sw@ssP-T2xM7x*5J6ogDOeeCkEWE_f7V6Tj{
z%jpw0gyWZdAD=M~Gip78C813LeX%<AS^GyL_$ZEMQ)1WN{jgtR*v$0_p$deWLdCn+
zN;5;G4svinZbH@dIs5YBCG8iT7g_&*7cb?lcu-_Ce*;X6(*K2H5*ET4#q~+$I6SNM
z#2jkxB$gs=4o&zcSVB&=-EhouYK{d`CLakE13^D@t&fO-IExc9czRkwU1#9lt@~u%
z)H)&SJf$T0i;>V#jg;b@N|?FT;K&6}#_$cgpod-Gq??NHpFB!`51&EKCJy?41_aR9
z(V<%cMX1*5jSZb}GQEx<kLIH5kf!9fm}i(>s8z6KLG99_cUVY_g4$feEfefwI9v!o
z)yI-WJm1}E#YFsg_zdN2xowiY21S<jO!oRycb4GB4Ia!iOK3q{d(L$iWgUe`(HOgz
zr;#5j(W}Tvx*^-x@4lG%4c?P~_7Gkqt~sM~1qx5O!2hY?UCP311AQ8ky#Wp(EkHP6
zNzY??P<G2w5v6`O!^RD3y1Kg_DkW$zj{Jdfnb=W1D;xLUqGdi@&mFU-A;bWlL@Dwo
zQ(8k5)4VP8v+`owX1QlY_n>Irm4|H?AG`n~Eh=gC{ojh)KXG^XiUzWO4%xk=wRV5@
z&EIm+8ZXiWsa+))NO&q}kOPa^)V<FMhS-Z(KcN@qX1O54kl<XA)(R+-&EmDp5<x$H
ziPC5?a8nu^LJx{Z*o+Ew**>De3cNsMv+h)R2_Z{jF`+>n{O)ubK|?q}E`WvJg<h2)
zgY|?-uoyd7U+-`}doB-u(|a?G;uIa!y0xR`Nv+p9>sG0<XRYQAySy-)c3`nQibl!3
zhp<+hld2Gq(Y(yI*M2x!l$S}nsAxvxuuF^F2N+PD%dW+<&oflh0+u$=25LYR4<5{x
zpe?$gtMJ=V6|yL9)6^$fCNuC7P-%>`Oce{k4G@WsCsQ|$$Og-Qzmb~<2vrqH*wm52
zveG>1bW3}G-X((_`Zw59Cx6lH+x2)X58!bFN+Iw>k)Q^cdjx%^K}}K{_zAmsn?TA&
zB#LJj{G?57w<f%+iHf1du?eV=-D+`*s-@&Nv`Lc{e))Pi>*HzUC7Y-+jiW(jw=w|Z
zi8-)}f893W>}ha+1Tq2wk@d<XnvrFC7#VQb`bQBWDjb3}>F+)9yEH^jrA$%8;gw}=
zlnFOD4KupgXmY|007S?w($<}I8tv+z|NQ5|$%p32uk`2c&JXP8hj#1iw7R?VV}Uo_
z-Pze;b#BC`$E}kOE%{UAV-!!w{6hhz(?<Ka*@2>eZ+_T+DV#Rzmghe}SaUSJr6-Jo
zXnIQ{;?yZkqFFpJZUxapD1L*3K7-W%#k*JgrRWOBP;^Um9MDp%pQxvux)+q3glbFX
zjXw<B5!BH#jmSF<)Lgx*ZN7mktF)8P7B#2!0I)z$zf`)?PpByaeTTMCk&=M)!j9k2
zc3w1Ihc<OXj}eIof0gtef`(x9&KOj?mj2c2+j9$h!s+~knkmQ;ly_L5@)jCQQSnY0
z=$wM2LvqAjX|OxxT~OyN<N=rh-<KjQ>pp=BA*dA097z<nH8ri<Fy9yz&Gr#&p2)3v
zz|#4S{3{$XMpv#%K=f&n`XM!i#0zflFs*s*2NbjZETu7Le<!Uj5>o*+?<5o+ltx!K
zkFJE~0V$Wn<RofwIEGZl16?Eurn*3C!a#;kR+Lx!B_R-VN8>b*tt1}MEhYU)pxW5Z
z64*rz3{L_PV!0J0s8mDr`L@m4pmDc>oBCJa2RL=paW?UZj7H?|<wh@xnPCy4;ub{0
z((X_RB65aWe|#I#V!r6YU&pb3g#{M0*dXCBH%(ng%VY9`0f5zSK>Owk`j1Rl1>dBx
z+oKk?wH3^wQTs@#)Il~f*6-jBlLo#*|5Lu11lBJy<X+O=ApT+;^E%ITO0U>d=v-Ci
zT4SR}#*D=~6Ue-veWv=plzUk^G-q3P9B_eCu4!pme>0#Thin6TijFl`93o_jmq3Kq
z4Sn*zR1YCU{e=7Im*z>m^-Bl+l{`HV`>%<6gQ6)8nX-c9x#TB1&crl0nq4BI@n{9G
zYR-=Q2~j16NjCArWA~;t#UTxpD&FnxmtO7d?Ci{~txkDA)#BaWerb1S?+3MEf>VB1
z=+%CSe<*tOEm;KpaCDrE4x^a&_d{+AwXfIm`~Xg6fFh9lODBe;10)<wbT>SWn9&Ek
zHG`I@6zcf`4rpVO;(j6`Z&WzSHmZ1Mc|V7Mhgk@HVNcP2Hejd}q-5pRCnq<j%pE7Y
z#fl;S#0W`S1L)jQu5XI)1!}GwyEiDDP5Lx9f2KkN8`6X_L3I6{E;@YW$WA>Evgf`@
zTMKDKtCj*hkQTsNSiXcD)=@-Ig{;(MX^mN4dF6u2cNsUKeiEjGRyb9#(`*SlNlwkO
zlz```o~OJvE3%gIfyrLVs|T{!OlL6x`1fElwex&dQ(8SLy9u}tV!3&tAeOAe(B1BI
ze_D4_7w#DAH!i{7MZ*hKn~(a<lB&~(Ku*+;qBMb2iBJ;+rvvILxsKvXrZ_oaWnVx{
z!eI(cYN0w1#YoO<Z>ZOYEJV;{lE$+^I*YM`w4H%4IOR~d&8T)OTzfng!qypYlj)HC
z)1schRAgZaAu8T6lF>CvF$?MQsz#U!e{W9yQZdh*c7Pqs+S=tws0}g(n#CQE+DGz3
z?F03)pn$Azl@47$px!M;84D=JdHfzuA;n4B#;*4Zv1v|m%&N6z><G_~duh}IQ^Uw#
zPY|fWT`j><#Qs*lm{a*waNRT-YzlXv<SuP(Cy4gwWqtk23VBnSO4LPgCRF|wf6>$a
zkY&%qNeUst0^%I)njwCftF{zaG8+sq_OMq*T}-3#V(fb5a#>}8ft%{!73j8<ZxeQ*
zQ+%*QPgR8&DKo13r1WOmCXJmE&QY}ra<RtcYxC%brsE*=lp0~|CP0%4ExfMG3yn-+
z%j7J<F)*K~di;dU_i*l;^?c73f9>siy(EpRj!!xzjpmMS$8t821Tv9ZLNGWwFW%9P
zls)@*C|7ii9!!_!0^Z<9$kcge<qmOXm-dLltroY)->7snK#rKpee^7RsSafyJ#$||
zOhCMko}ICXpMCV~gJYtrrXr;@d_dkECj-nRf4$Y{fXfB~M5l2y#qrWff5-wA1hKq5
zj%IM2DtTZ6$y(eiyw1!&30V}Os4ryEzU!@op*RtyNS+#>n4sMlqfr!j>~P{N^#eb>
z<<2#^l&KZXz&WG3@!(SEU>seCXo%euj)js!ZX7EaZbBG-CVh*UUJBOG)piuA$`1U8
z*H8%uYEKcwSjG<K;p4Hbe@A`-nLuP<&|vHbk|%uF*-zaV+=BgEluX?Ljf{P@PYHcJ
zj(B_x87Y){<Cv6LJ$g5QPkz{EA$6;MlOJcB6K1PL*=~?#P@kZ%!3N&u;{;cXTFaZB
z&a<d8X`%9yVZZMnhm5xe#kP<G1ED_(S=hQ?G>)P)V=j|fA=b5Se=CzNs>N5z6X=MA
zKHibnbJcS(oCN`RqWC()&m&l$_EbSyD3)yLunyoa=y&dza5>s`zyci!RvNg(QUvQ(
zz|dTt%D4PaV$pg825+MwE?VVaj?|moE6MPa2&d+|ryp_gTUUTyeOm#Ndq6WyOsq$i
z^FSLv<O!*(VZ;?Ke=AL74Ff=acokh@kLt?vB7@9AX!&-GJ>^?5#m~?C;I|#q6i=pL
z*{ItM@jWzGw=5EJ?(q%<;z=9gTz+=p7@`Z|(^?pjj9q?Z1|`GQg|lY8@_`0R^90s(
z$$&6ld23NUY~+!C%;UnIim1PAMxKTn2R_Zv<|lAd2VDd6f3U@#&=Y%TmxVwKVaHZR
zC($+e32Du)-8f9jNC9e%ugUF+*fM=gE3?oOCOJS6YynX;q-UiYS`^u5r&w-qP3y%>
zu*ls4y|_Hj2t=jui)}o(6JjO8C@c}J1T*zg3o-!MVw}hyDhMRBB%f|(xPFkJtt29l
zS!9n3vEdN;e<3bK4TI=9k)|WP(hc!c$=IKsM4?zTki(fjKbF&sFa@7G1ZPD<MR@2n
zUJ7Dg1g~p$(1ysg#4Amw5vv2l&j5*#h-&pfUVx;qb`XuYwA1BDRRFTM8Ovfdk^!Jq
zaS1Q)_Cts4Xp@9!_*)etrbty0EF;vS2K+f)1e*2ve?D6Tn)UgGdg4mM7dz1~J@UiL
zTId~!^(4Euv#GenGA?dTWa#4*f1q!43^Wy#U74kJa>UT&3det_q|ICEXt&5kNi-zZ
zOn7O~V(IwVdF+v)k25Kr;B<;WtQNP3P?Nq`z<~HHyO)9sg(7h7b^>3ivrO~(F~xq)
zPr*n(e{-d3AN5&eh$@cT;XF%jC_qd_g;qBm(=)5OAG5ooS)wqf037ua($IB^pD}9<
z<~-g(gyPWj1Z1V*PiO`rR)cSWg~DPEt;UJX=73{o#oTxlJ0Kf|L%K1=Wbt}`UgY1%
zHD2VQ%r5fGsY4To>8*0|Rs7qo!iMf=SveOge|$?CKhDK)Fsw1~kR1sZlyt=<RBxSZ
zc2TWfM@Ov>ADSm0jFe}T<q0%9&ksdpgU0S+&erF2J_5ES5c^CmZRHj{+<-i>eYM&4
zeTG-}W0r?u6`58SE(jCZwaNBZbUi?&VB3KbM>`9G^kn7|dxRb%O?HlXoe4S5>Q-ZI
ze=0B%*you=)X7;E6v$A}5phk<wpN}bmjcQN?Ie&S;uL7(BnsHwXr5eY%|YWUH{f+~
z&EeAYz~=JK^PKZkKTyZjDc;f6bEo>Hc<1nB=PW)D+Q2~QOWt<Q)?#o#a6hIkxx_3E
zHn&xyXw6}oAkFAk`mP(%>otn59=pkye_rL$Tg)9bFiG`eq}AeIRkv(R%kJ)QWv6HR
zcuP}#sQEqKiutwBWfli?1X`Ykdr(6Fk{5|gvOA;^U3mSdH+GX_Hyw=C==DX*n94IO
zQR0rV6=j#1!Vx;B%;6Mwzc~DE#22Ty_a$>SeWBzFg~Ac6HDO5GIX3Hhmsysue^#&r
zjk!J#HE$%#2uxQzv^7gux>jEB+>b&ui-T<hH+++6L@WqFZ+9?;4481e!ET(O6KYIY
zEELwaK*=2u-Jh;ysx&*jqt-#~=wqwXrF#{cotSV=C5#-?jPax12&c{Dh)mo#O49Y_
zTkWo@$5kupqXPreEF#7dr)~^kfBfe~rQwA(E7urY&mMLIk!8?AZAWAX<D82e6{v%p
zfR7RG+uf-aH$#Wk!WQk6D-`IQ#g!|jwQca9mAia2$tC19l3mn&x>2R|r~%I*)W_nu
zsZJb1LGrM9S_OSD!s+R(ANYfh@Nj$Skc;%|B?D%yzTt2=Ue>|ZZG)|^e>&LuN`tL`
z^TF1wgXNj0jNy{U*#X-}Ozq|6V<zps^{4?iI_{h$E_LHaS>Xhn1q)p2#?0Ja6SyIF
zhB?vd&<c_K5~u3_Rlcffr?>1Q=K2v=KFuA{w3E8&EFmm1q`|rfhdW{wOyI3iCz2+v
z6d+iK92D!(g`5pJ*Lzj0f9*Z{Ax@QBjpXMWvs$Hw#-czj(i3W)>UnBnYVCU2U@RQi
ziFo9PvzzRQjL{IbgdnAouV2w*J2Pi@@5k~^d8fSVY^(l30}M}Sr#_zN7wlB(0qb8-
zeuR3G%v=F8WE{mQC<q!*wKbdayKuBnx)-JEZu@LH#;86-@KXqse{AQVHzWj8u}j#^
zIyXU+*<cJ66<AWWhoY&J?zSMgo$KFYk#&n4MQ|djT4JihAjjr<xtf2-k9vKPqj5c(
zD(gYYR43schDFywc|H{R!G$Etq8p)PY+WCgB`Apey~A@pmY#hqJv%Nv>oCcXarX>g
z>5MAVe#*r=4vvlPe-<a`EBZoj1L+Q*I~|_bQc!>BAx#q@ySRX{V2@04A|0UO^9yl}
z(kx*D)k~r)91nx&+NfUg!_MBTKfT(ijHByP8kGjoWa`GalwL<AYM&=1KP-7sS`tA3
zyvBNo=Ex-P`))EOpkD91dA-5@Tkw+}4ObQXFmMx$oZ|ahf9GTGQ={E!woV-6%L#o|
z-Yvh_*3{-{t=nz1PpX?={_*8}r}XD97vFy=ZfZ^5z7;?7KK=*!^x}K_hd6Nu!mS0H
zuIm3oMfNSaxFBSuiz^|`Cp!2<%TRHSiW_7(-y_X|Rk9U1nJqB!!yYeE&tuLee&|nT
zlZ90)YJ}f*f1f=ozhI2=o;=uN4>W&Gjn$Ri1yjZ;zGuJp*zX#<f%x9BqMIEnVb<M^
z7iD_dum^u-T{->`i7BVOJb$h|c`pZ;S%VeaOZYdAoMo|=1l=)`Yy>KdQMwY0-9<2h
z)nJqiAWC)*Eu4B?(R}sh&p*EY6PL_1_9vz5v7cfHf50gX<7iTHLGnt9cZ}G|Q{)B#
z3a|@_f8kg(c751R!nesi%+1)J7-ry=tK^{N2}MM&5>qr7yRkbU3l21;-`!og@do|R
zvuEeuo$o{2{fmnib7yYA6xgo<^cjP_@j`_vfXX%XN?6A!o=l?{Qk3yB8vHtB%ul8K
z6xBMlf78MSuZIsA1zA0%&_gkv1_ZAZ-+-Hz759LLU3`=FCjN-#uIP=UD0A2r;}O2e
z`VHtS0mMAh7}CTdudM!B#i1`tMlE#KX4l4bvb7}GBR1ydCX~iYD#bfxP;>Yx1~RWW
z%9S>8t}Wxl1v$r(q`ZAr^RTYJMZa8>@5crIfBn<Gp_6|@C;!HiP5Tq~i!^hyO`Ch@
zyr^_~!9$poo-YU_dg6Jp3Ik1JFvE2QVh`73p!7eAb2clRjy{FXX2t)qS={^*e)&S)
zk@3u(O?a}ocsd0Y*JPt_iv;Hc*JJZdwkvq#(|9E%&11p!tdq}Xc-Jz+d;f+ryqi@1
ze^F70Na<QxLPns@y7Tx1UD4U{qaKrP${^;H@TzjgoWzMd6wp(QVX{9L?_TNeV8a!~
zEG<bzOGh$;O}SF1Z=H!zKbF27R)Yn71yVXm@lK#HC$tcwnCoxUL1?eozFC{4Z`(C@
zp-Fd?(m(Y^^@e`veg3;FbG+1Tfwr15f8a5oS-g4e4pis)zz8?NurvoL)IF{Hv8|Y*
zc)41Izw9|9&pvVvzG(>6W)SBNDuM4xNzBi3P<UDh>+Nq<mZ)OY&$pFPz*o1w%`3OR
zWyipBL4E#v@3hwaSd}dm`6{R-Z=QNe@=xS%f78$7m(GUfx5};T22nzkNXwI*e=)wa
zHnw+7J7)Bqn_)?J2d(4NR;OV_$9$KMi{4U2gk_rjh1Q1UdpEL=><7`{61l?^0(}En
z=^5%xi<_}tdF8Qm4%*FAJ7tYm`6JO9Y80LGgJN*8*L`B3_4T}@N6nM7Uwidtr`vA6
zKZC?*qC%5<i4mlL<FUt4hyW6Ge=>0$jY`Qjti9ZkuSB*pP=`biqgjfs$8JhtAWuPu
zpB6`<tYQX<PF|E^OcTNJLkl0Zv6l%Uc>dfrk~a1}x~W-}q18ce$~SsHev-^^Sveee
zgid}mJFyLBfWtIOR_y8khiR*0f7$!gXjh#dGc_n$9rP!L2<`JX(yhZWfBBO`af`7x
zc2j}iO8C$&|77d(#|2&f_~0(BqkOZV%Qp}1@{Q5uQVx~BHkpgK`s3z$EVTv&7NX<f
zzVC)B_FboqSBF09&%$)JBJ?xbSgmlIAKMd&2-9fDQ!hZy(j>2j1~3DJ!D_d0WXWb)
zUILZSVXa#`Qrgq(R&;sIe`eNx&Tb4C<u=&oaMhaqEpHZVZ16iFFrer<1f9IGfj+?b
zQ(`Ho!5{EUvRF$bd(!HDY@U4JF;A@yLHO7mfLEVTjHb7}Pv}>abZ@6vKMGfEi#yt2
z?r4fW_Z;giOlDJJC1DS>I!e)2Kr=tpv9STnxswi;7ky88OYa?;e|0m>cA_XPywy6e
zSb6fCyBS`&f$srN4Mgz*UT683R(s3TFmWt{qE{_7)I}J#`dHl{!GoT-u*o)2VdP{B
zLhzJM>iwRG`)vg93wgEpJk#?9=XG8zLVIaeAxf+I-F5@l`2yP$zTQIW?e=G9?7F&!
z?tB|rwqLf-XXx1|fB$oRCfK;E^kO*?2g@|^x4Rc}-3@WaK4<bEe#>4Vj+`*txwz$`
zw$G53evm6rGT46NClIVt=7*{h#6?Ddom(*5xAlIJlPz;;b_%=phMc{c`ljdk6{ZnO
z=%jTbuWCQOI;Z+pq&a7|+)8W+3EDMOIa;pE`8|{;)#QZ*fA{KyUSFcO*HPJ)16nf~
zWLEbQeQQy*x_XrWzNKze^y%Etj@C7>jFjkRI<@TnH5U_^@f2!AFhN<RsaY6vO<5@e
zhl%q|#0rG<F|4C*5MYlecb?4sCBH@8Iyw3b`4MOn$j21pWXvrn6vc3-bl}bs$cX{r
z4{$S;Y=WM^f42H>5yn3R@S6x=slAR2E^WP<81iKLe(WLY7Gz76@ah;9z)qti9mV<L
z!dM@&k5QV+OTST!+$8Zwq4hGhDGi)^Ie)`@miGMbN4<KjTkEx3t?vC<-gb9Afn5cV
zg%1_7C#+KxfxEwK*k*1=8emT$QBVptjP?5qhG!W;f1*I_LB#~h8S2$z>&F$(O<m@<
zHf}R6Kv;PLIpOV(^!y7QcIRHx@cCn+cY<}0`{siSme;^}M1DRQ`Qgp)!^|{A|I_m^
z4DsGfY+$(#|C*n!%DR~@a~U>^oOmc1RVjtAGMi>mryQ!l-q#^N1#>n6H%a|L2VxC=
zA0}-af7LqO=D{~$Q*E&KX4ee9>o9Eg<5gKU`{fc<Yr~T~RyFLpy48k0Wm`q1KBY2k
zW6%GcECX87<mtH-hInu8G_YKUH_cC1<;+Z%xh$DQPCS%6sr_D!Ewh+Yrc^-fYrmd?
zHIJik6#YJ|3FUR_@4o?a!XWR>oEbdVVbAQxf2%TR_RC5TjS@>X9ZO4k)ywOz)|$7o
zaldW!{ISCS+V9o)-$oiL0Sd5v?bnkiXSd(?)8oJYPWqV_mHGxMnho^+S~`R4T8cXR
z^~$>1(s91JwqdD0SCqE#Xhpqk8wgX~8o+(?fzH0D=6QsJc$BWovf-w;$cJ(USH6cm
zfBw+NiHMqP#Vk~p)7J>s<8bJ;<Xy`f7O1wDedXhX=BiXvb$XZ<L*OxcRY&9)qO3|-
z&<$^ScqjAyxiLm~GEHwO8}WEB1v`i4i_bo+R*}P#?<h_&69$aKF<|hAtHEFcb~G5`
zp#_EvD{%e+)lUWD^DoJZ;+-JYy!@i*e<0C>!PL@|!{IoOpZO~)g&6H1CF2lA&X>^W
zMD0Po;>9H1z039p9jIaDUza2Pb&X!Xj^0|vNtwKZQ_0s+7~HBgxDuQ)uPWzcT7oO~
zJtHC4BeC=!Oq*re{gru?=Cc=UYE6p7i)t(I(P~^OW0$$+6@0T4BHTx?fRq|He{*~(
zGBWaD1R6q1xIy&0Z}#k<chBFb2cDqBU7D$r*3y*)SIHV3Zl?NzO!W7WA7Vpg69Bz5
z>bah0EB?qTF>vN)x$fgzmTAWIJc>ebm;8jRI?vz8i5s}7I067rA_Gt95IIGqa|e~K
zf73tav;JKb?I2r}2OvYnWK<1?f2$w-%9-nV*fY=)T%%$DyrH0KtjaP;D4Q>BSZr#L
zOjVJeD9B|=b++hT{3*B8wwYBzc*+ft8^`V~+S&^}rAc7}?W*4(hr&uDNTA^qHjwrK
za)|9lK|zscxFzF<qOk4MO%mktJ2P;UhTQ?r`;*O7PI_Q9@b*Q5xdyEye~z462RXOs
zGYZj(Q!w9}`OyFu_R=hTLtfPg*43@zo*MBzjAo(75;PGj8q@EaVKemb4Iv#=n-Sli
z|LtP#yk$wTSxmq2O|^=O8Zy}cf7+{73SE?a<7uLxP2S{>Fin!XDXPh5CK6&&iA*Jz
zBI3(3pU{lLfYed$V1TFTe@n|$CFJW@arSFJq4}-x(47Sw7}`oB(kD0SAuuQLC)0qI
zY)){38X@69g$2;&2&ZQWjt?jdrxw!^`$LT3ifJ$#T;Bc_ozB9`?|?T#^ckIyznsm2
z_AOs_d0}#V6pdPt`HfN8^?Ip4!O<+O7Vp%b`=y=oYdutn0IWKpe`{XgBBJj3$uw|p
zb&g{M)t7NbpdN$AEK@?5gg>L}+bm3>I;bHHMcT*_e<hBVpPk;;aNhF&%BZ3M<0&et
zgG3vU9U4P1>;&<{Zm`CoH)c%m`_5(MXxH^n3HB%k3DCa7xsf*}3lDv?UoGn6pX+R|
zk)f!7Q4L6=!+lg#e?OCp+Uf&lw-8v(bST;=w!fx^ksD)uveh+hFrGy8a)xL;x882-
zWRg}R?IWs!0}SQ>EeE7+y9ygT?RAWQoB1)>VY%rzA;YLmr!-?S#hyjd*PHFCtZiA`
z*;ZeEY#leMPH}7C=>;(FAR9!db=E$hJLzr68!)~0SS`%jf9WYecK$iY#`nLSUVHxp
zbpNM$O4AZK|MI6!fnQUgj|S0X8YS2%d~6&Yvu9%*Oq@ddl>d&W6Q@vbyk|dY@UK%S
z&_tKC)V(b=s+ty6+)rSWVV3t{wU^bPS(bW_taYqLGpoWZO$s#?ised!0-sN$+5xC}
z+jTkGoyIxVfBg5XA#3*%O?icRC66F0xB{DZsLG=Hc+!Z6%do6DaK~P`_OpRleQLpJ
zV;oFzoD}@fPe0PXGs`j582#){0@|SJ6z>?X%q!;0ax&Ib>)4OIQ#Vd;p(qEh%qu=G
zmzUjl%3fyDV9I+<N6q)Y9v|)HH4FUy%_P{X^!>1Me=`XJKV&KKc;)<h@2L5{U2A_{
z1|jg7b5dhiVq6%sfNO6&!K_G2fc$V6p<8!Cxms3z&Su9x=HE2KVMO54sZlHz%CCZ)
zqLYs}n2?Xkq#w(@#N+0Nb`7HSJD)q<#&Pd+?f9tIJUMJtSAZwLG*3F++R;&?O}-K$
zFYb&kf5!2D{OMz&sDZO%$W_;h2)3t>N<$5t9YL-nS46Om`;UpB2F{KkSKBKhctDqf
z$3!v%(vGOQEZOcbt3?xu6iV@I3h^}dj*wtLU}O|KNMj#gVIrfS=oU`bp#+|u^;*Bi
ztld=>36r&3$`iG|f#!j^<IrVta5*~uE>k;`f2@ymF9$WOig)=l!Sf!Ca4JWr_v<YF
zUdv0(2Ym+(KGlxS_!Oy?==n|M49AEVcb@(kyi32(imy3Igs7#~m`u}KK4>UKCPu(!
zcflBx2y~gfNXMab=}&VIP#k9&Ud-4Q6H#M=zt+pelC_}`ULif+Q{W^7fuW@;zASbd
zf6TyWgjaqXg|KBX?!gk?NpOn#co@ZstOyt<jbG^51K5wnEiE0mqrP>JV*po6v8(g1
zer3bkpqh$4Pt#-@2XpeWnlx}PmYG6|^&}SF%nVS9xzi~QA^p;o8|zi4ibkJ#G}6Zh
z#n1`{Z)N9ESz@yU8R7I`mZZ^yRjY;ke@D69w~p!xc~_eOxcz&M*lQia(g~7oGG+vx
zwp+(!Gs8eYhFBtc^VMcT6QLX?Zns*pgQZ-o4k*jT>RZai8g!M79|fCrWhxh&|C}j(
zn1HPzWXk>X5l)%BWQ^-&suWH-EKPLVBd^s$S>`G}%jxS#Iorr{lf|i&%jEyre_nol
znz7t^)Yd_#w2mW9)e1I5{_07{%-f4qD{D15LJZ2RN+ehos+~ad$T<39J_|j3zvY~9
zlGPgF?_~BA_5|{$q%qn&-=9sVINrb5B!36dHT_#j|GTa8lLYWx6*+F4`a_r28m1W|
zjRtB80(*;_*uAxt1Cc_SA?XUVf8h%y^Q{S21Sl*wp%;5NI5$DHcDH$0JLtCBpHUPe
z^+vTOaQ9u>emaD3g{nGy)vIwp(`X8mc-~JqwV3!JV?CB;6Hb99?v4JmKnaCmyUtr?
z!x)q=Ok+ONk!jdx`ZR5P9sZl$KUJMK<=sD(chp9+u*2^z>(G)Pt6R>Gf91XM4kG`%
z>uejjsq6_y^-ifRpTQK|g(dtO+M#OiQDE)nSEUn+1n{AVk18X{0fb5UL1wmRDGEdi
zc6SZqY90K|X?+MSa$#9$L2=z$tAh*&JpkE!Si9Sxj8O4z0W+Te?P87~$1iDkaMo@&
zPP#lDF?nM(FKGR-N;;WVe?W=7%{4w)PG5x~xY%!H#<MLq^X%fkvg0R4MFu}7f3Mbe
z!w|=v)QwZ*)NzUjDfU!6GTpyKe(0yZ3ts-oY9=k01j{%x@Wse|ZH(-8rKLkE6w10T
z*XJD7XH#yw%aog@{X%@LR5;W0UKDuBs~-%N2*D1`upSLA!TbE$fA+rW6yM~l(yHpu
zrj-wL-6$3$yAhWsoYe89pr2<oTP%R8X#wP>Kh7*WQ10<(e5*#bP?^<G**23d8;op+
zO+zylLNe@iMo}lBr9`ui5=th80rJSS(nvWg&=G4;4LmtwLt--K3$&REULE=cF=)>9
zZZ70`5BH?;4C71?f6E5tiMZ`##XXn%7Ft7pu-;0nXY`oqZGp;1s&_TBG}0Yi=CK;%
z#yLt++D31RFA6OCJQmUOzCXGw-Cu^*<ibZ{q}Av9p6*co&(sMIlYblgKe^U1M8(cw
z+Rp5L3~x}7Qaw?N0`b{0q~jzKh6^1QOT?U^hB7b<bl}W2e?V(QEgMFWp6bcACtTgM
z&)NOZ6C=v}IdSs&*@oq_D{k7rv+FS#UGuP0-K=i1(4H7wV(ucLc^3ftOMDB_4e*^3
zb##7?zLW2({||lHD8C>?<-r#8h4Mh2(Fh=ym>|E!N*Rc+GX6-}Pu0)>R*}4tYMXcZ
z{5f@#RnvHef61?YjNQw8g+Lp_Ig}{`UKC>V7a5|VJ1cnpBg$(*vReLTk#Sd@_6>d=
z=qMT~6=vzfqiCd+M_-`9<T-4v7gC-jTaOCP5**h;??W8TriXDfAzDZoO>Xh_jDs+U
zpkf?^r1ZM2-oeMl!OxWU;l8!<O!FfGNNqnvgqPkZf8lqVs26|`#uSvJ)`#9<^Qh4~
zsU0_}ij#|=1MO6rDj!O>7YC8`c?Qv_QoPf;FnMB`*Ee@s7Fu?8<kUc{9K0CMiQ?T^
zK&)XlG|o{Vo;KRY%?>q&7J|Vycz~Y2L+`dyj8VzWYrIXp?CjEon~u@-7{{2!6u|*L
zPYcBAf2Sun?T9!UIJg!wulgx@jE+8WI2}|J&<p15yXBL?ml73M9y?Bvg;fPcbzZzP
zvC|?17`x+)%*zV-dBw8Lr9eanXp4cV+>Dq3c~Ubl@IXqr?Z=Ke)71!4D|<6Onp}E*
zj7n4EouS*me$9+;E#-XwhymMK{Qb}FnE;C0e}V7a1beNp878S41a!ZkQiz7K<~Lu?
zGQZyvq9i}kSBCw}x?oOzCbCw!?--(@WL^Cx%@gZp^Jb@kG|e6^Z*qzsx|2<%S$>c!
z;?dbN-$NtcLx1_pUw9_T0osH-l$$(IlpZl@L?)VX=6kGjo!sQz2;R}SZ77kFN*bG3
zfAX0{dUd%X+t{jQ<rJ5KULVdJxC5Fxnx>Wi9mdh9qI{_SU6z-pq&O*6=+xt}B^?@P
z+t5F=%#vl@+{Es(@tEKfJeb9PdRv*eNs8n0CBC(ShLU)5Bn(3>3Y@c-kCOt=X+dAr
zeKky%`J-q34l5+?9JCv?Zu8^=YB&CVf7Wa_>ZsmqHx9b3cC*oW3QNXj5U*}R!m`aM
zwm_0-qSkx$04ZLc1abiEI~e;{*n65DuA}(!X&|$joh!q(s6Zp2WU&@pkMDBg=+>L`
z%9Q1XTQxbFKH`k0_TPIihSR~Sd$9+wO-5XwwmTuaPuopKke{|YA=OXYjUwXfe|03b
z>97;PVG5}=(Zro1KS8u2ExV=QP8;yrFlXQ!_0kT=4?LwCuoq6%dBG!=dEp>t!}F@y
z<Pnt2Qm#@^hZc?hfeXEE92Us`G>7z|#jdgiUn@b`mc3LV;}>1z;?4#b`yq6|w}<zO
zG&Z+A+TKI%kZgV@wlN~J7(}Cke`tD3>$GRC_b`vTPMaVa9gBc-jXGqc^3^MCa_vsv
z%$bM;&hxn}cIxuIn9?=7TQi8Jw{X1@hiO8C(AX`iG(sLuQa_|om89Xp#LEmG8fPl{
z!R@h3^iJgAOzALomW+51Hnoi>P;*Bq0~Y$f@nT3~_NJ&rO-G8v+^M`kf1+6R+^LX}
zo5vkQF6;*~6eo3_Rf;+t3Sc-30z$B<uh^F+1<wUaJc|s&>B3Q~xB>0&0mEhoCsRD|
zhyEZ-qUlg2(YGZKKQLIC8p}Sg4SnjSDUL(3<|oUB|BV?0N|_+Y<`3zQ1tKq2BgKl}
z+Nd%Vv6C7#;^7|x!#0g#e>oIz#5E<R0$FG|>DCWNpaNUr0c{Nh*d9k4YTHR#|5EKF
zQD=-5d&?<;$(3}Dz=L}&@~kx}m2*Eq55bBCeRTr|s;Ai(4f5)Ni$-RFm|U?lbL$9K
z=HS&2Sv5u`BU1Tz8P~0}FiQ>xTCN72*5<vP1b%qQXeaML7ubu3e-fWU>CF1H5ag>x
z9&_C*qJ1g|+^01oGbaThDkTdv({gvV&dV8a8ZfjRoLaFk>n5ktw}?&H=uKAPvqvT>
z3cRdLEpW+8cImK5*Xu3NWC*M3G=?BiYwXWf_+XW0VVB3#ZTI6W@=uY4T*b%$<eyP2
z2a@%9ELX2weivz2e^#DZJK3i6cKb;b%u?&#jPRjtZ$^87H^x;R6&fKc`cipesgx|g
z&wP^|w%(fKq@TI+{g!M?H(gNPAx=`hH(s(erdv$DJI-WV<Gt_(Uy*x#iAsk~)j^wg
z)7TGFRNS3!vYtCou6NaK`D66G2Yqj#E{#l5DO(_W;5JU8f8c7tp_PpbJbK5;oa$9v
z*7rE!S$H2Q3Osh>%0Z6ygP$YHV+n?}?M@MxIUs|qm5uFa1IrCf#&Vpv&<VTbrO{F3
zYf-09`HFHVsI$`rbE6d5)+d06;8b&@Ox*Bh4YNb!Ew(h?kY8+DW$a2;ljZ?KEJS1h
zmm`}aC{wK;f6_QEFcIv2qb*&^rI2jr#Heo>!kPKP2*k?`ilS?&NN4LOG({x$(VcU+
z7d)*9-<z)Hc*?6sZ%H^{MNCaQKoJ|#h(<A{i?tkKwz}Mew3nFXTTH4VdRTXWDsDUW
zH%puNl_#G(|HsCK{CWPO`r?8YHIHKC(*pIPpShN(f9n$8D%S)31&VpwV14te!7L>k
zgS`?ed1$k$v_IFP??5?|HP{blIMYT1<XKzYEAs9^;p0NgSs*2o^g53Fpr|A=8PQ(>
z%txX?*8sC15~$uf__@(Gmj;vpp<zSwJ@V>9XK_I5<M%#B(Iv{{$H>Ra2-G!xT4oJw
zu$#0ze~WD?Rro(DA^y}_{-1JbMe^vY`6l`bIe9me%6|DprLwu50V$%h*!q}^-57i2
zF!FHOr^gKblnyr&50xFa*n6-zk8>T|1--v{4lqGoWMaE=NM@p$GZl6;wOtX%Oo71A
zqF#QMTyLtR71uSKigHfKs%-~{Ecqmt?5;S@f2Vd_Wbn8W3N7^E1&=oR=r$lBnFklk
z<+93B5t3F+2v0@S1o$p(r!Gf+l2&aCux;^GolEXiahWW;Ck`V79LnHzbdbY4cUV#u
zws0_vmZhHI4Ree{V<BSU7d-ajwB0&rbUMwG4>Ft+wGPo~yLH-VcR!=U<`ECVfZB&X
ze@*?RbeoCH&PI4ZdU{&=PF|IbhNvi$&aO#1__EArh|!S!nK5w{OUiEJ-m7Dpwc1hs
zw06u)HG9Xl)4J!+m1k`EzgWCP(!D-GP;T^BGb|Rn0g&b5hZI67p#0b{x6cb*0YVTL
zsH!m+V5+7-)9@_kW48plRmtG*Cy>Mye}}25K@ClykyLBD_FPX~vQ*Ij&CD?QN8~?m
zg0)GWxYPW(<Ps(huZt6Rs^2G8WX#S1;&59v)R#>#|7Y$|ls&Z0pc-ptKv{1OAz^A0
zbDs`TH~Lr1@!*Fdg(^MOe`)+iei_R>4<FM~D@H6^)*&pAfonI>7pvv60KR8Rf8>lG
z3-BPjT?mrsg15`!jG9EVFr~ZpTvuU1#hgM?9HbKG^Wq%`NATos)0Z;F&rj7$3L*$x
zlv1Wg9Snrw>k|?q24(sF9-~7`643pJgqT|>@7VlJid8IVOS8IEHWB&1?F^lmQ%6pW
zSj0U)rfawy=v!p2;u;X~gW%~2e_+T6ikHn+I7L7!#Fr}ob?fp!GNPV{Ks3E=iKB!^
zj_<JZJfk6ZPMR+WCsuVYCeH`HftWj7OExCfXLiT|S?K~dC4vmuV3F`egUd{M)D2(0
z9)zqOO)PVuE_96Q<IO~UX1#mH2h2sOe`RE%VslDn^GJjT87ICQRN4iZf1sv?4^;~2
zL4<0_A8EwN852wuy^0J68T!$z-2ZZ=-zEq^iHor~gwl>Vr;#6~tOkZSF(bWb&a8>i
zk(6FK$=ZimCmc6U>V9lJhWakwJP{jPN<tNN+e*e(-{pQm1*HRiK(sbes~_I4h>E0+
z#*ymMuoyGbXvjdy9-%3We{4isSP$MTC@Eae^jn98M_D)8_t$ZMsH6w0q(%G1dr4#_
zge;qdcx{RNoy8#c(0L`^Kc(?;$1IZUkwqYLs_Yc+e&G3zA1oUDl*lF?a_eUo5iR}2
zf0vk8)-68T`>b7T4|xCeD=-nMs3DiTX63OQTln$B?Vcis^i6n1fAq|uttyBaCRwPm
zj9y+W)?m_xS9mA0dG!?8wntdo1BgWqwY=b57I=1^Pl$Dcb~9btf?%^WdH^ojP+1L!
zynxdrYXLq030s8wH%5bn#R4<E2ZuT1r_6GpGn6a>bxfb{t<Px28Nfm7^fM~nahP+}
z=f5&1*<c>mx(85Te^&v%B2z3wQMn<C4q7MO#!1(Xv2Cg!1vsBTKfH=AG2xoSSqKnU
znn7U%>{*Qf9?iGTv}SGZ)k2e3p5ukC^Wq)p{}7z8^Rm<&i+$%dize5Ro@-z&9cL!w
zZ6zkuoi+C&ru8n(!@$ab`e^DyNimCtk_yZXJ+7dXbRN<4f0k(}ereleS~;7U+?kr<
zG0s3W?#^<yO^0P#S$tIz8(OE9O2_I93G~!|%cE8k__7mMqy1_JuVT2;lgoIMXXh3f
zxz$YFne5z_1w&(VL({Gyv$+Rdc?Vqo0d{`QiJIc)euNV==~-A7FQ*S^g^)b{Pw<}N
zBa}hvOz7EFe@-KYZS_MoC--1dbT8DC+C5V*PuIO|jkW0ZoLxr7VgC(JBH2V!{Hz-v
zt!gGe{-Xmvj;?U7QL)xt0ce|h1n}NXa43RW9_&Zp{oKpZR*>Q$(9#M+icKjS2Ft)s
z9o=%-Gc9#)lN$!Rc}lC>>q{L0Vtc!qFQA^iY$Wl@f1V<<J4*NTp4o@SiFywwS~h!z
z2~vE`@1kW1m5-TC@vj3X#gnOatwj0Q-f}4}{MOyEa*ngavLc->u&Us-Zg^Qk$(ET>
z%hz@T5wfypo=6kOc(>F9GTPrO_UyRzsgX_fv(BK_H(CC$2mX8P0eyM=&$R-q7QhDT
z#{LA+e~er|<6C-uoS+d7F|Ch2gLuj@zCo|{P$7-|$+2i`Y90Q9EXz5W%&y#6%ax;i
z9tEBNT`g|?rFf?ToGWR=wsXGf9pP}4j``lFc(<XxovWXP_*!<R=p9J1YyzC4(kLb4
z&&Z*nYr5^`F*>ewx{dbFjn8rlwB7`EYESz+fBUcY=5hx=n4<jgXI{~aHa*!QV-vJu
zf8>YiBoW>s-;p_<LMihlF!i(gc(?#T-Ry+y(sCNmyH&pAh->%~_M2eOf~|?B^r2^#
zNwL2*T@wy$Q+c%XEC`&%P0zsV!atxsm?fWRjxz^2+{L!!Gn+fgL5}J}qp|8V`oa>*
zf47buFJrQlhkea@R~w$XF%D&O#k8jTZmU^sZ0*&MF1oePk5W;t$d55fW_>Lwpb#J<
zmFxl|%;Gd$+u&Vk!PakOFW8?f#@4*pOcfEE9;dj)|F#fZP{(4g>UZ-+JWfArciV15
zo4laUdp^+?O_%|5-I>aK{;j6SBotLfe;oE>#N{oD!Lx_jAsO3(SV949o9!YHDYDz}
zqTJZATxzTpOSX7hZl4Dw_-oDG-3F3zwQ{`r2Fn=o62{7p-&uBoeZNpMC9Oc_mVsJ9
zS@HKQj6i!h{%Ta3K=nKq^2K9}U?mm2BL0~`^#x8E^Q=CNcr-T~ktK%R;A4wxe`@*8
zfmvBg^z`!RXS8Y(5}C7x#gvLErjwh4M&;t(V^;MePY17ru2SYNp^oVjNh5SU_6K7g
za@vmqe?S!&%bX7}r)9+;%5#;F*I+<Bk%L6QcaWq0EuA6~gJtdz(ehr7kk04hqvpxa
zYx+V&pZ|BgAVO&~u3SxP$b3L~e@gKWUrR=5EIqLP4{)@gJZB5N8h;RlAr(n_Gu~84
zN+u1>5ac)Pjlj)t6w%h~o;W;#OYlmw*zNcIbn=_ll0H2C&1}rGLu-vaH+9KQAOjhD
zzTOg^ln2HrGf10cs5%t$MITav3y%$bIF6FEIjur@C1UQ+`hh?ANFJVUe;dujm-^=O
zQEMY`BfE{KfjhwHZ=9U_FaHK3^!ocR|HdbT{7LAwPt?WV?&w(N`)KPRnoOevBXLhj
z+Qxh&&fkjS17#Zpp*%9xh^{S*ck1lUEy)Z7i5-c#lWE5Db@)*)rUPZntS1r>(CANw
zxoYSmJ&=XsD7bnFf}Eb;e;PkkoR**{Ci<J>$OUs5g1~;i%M6<;;NNbxAqEN=E_7Ni
zPRY7NWNn>{OB9VmTlG2`bcC{Nf%5E<E3q|FF0lf1>*QHtnRV=$j4ttiP<ACUl7}W%
z8sSv2j+MkZax%$px~VE4HQiT^MV~DfXw4VK6Y6BFhTK#-c@)g;e@HD43FEWSO&R8e
z#l`ZV+%g$NR!uNNxKPD2lL?3V-Pk2~GJkr_9+_(;xlckCMUHJ-$A!Bpf}@t0CCOxE
zS-u?{-g_&kC1D|b<R)N&KE6@z6(GttOu1t8_ivDCMOzwH%&n5MnYLZKqiX8+Nyf73
zO#ENTgQ8judJYtIf37m0{#)fe(GG<LRUawkiT@NCPc{%;P7|?!xS=PDlPD_)+pQCJ
z{h8%CT*<my-G*D&h!ZLH)-mI9SAEJahC}E7f+_cKTV-WC<(xyynkT{?Bn!LRj1$R(
z85?7{kzsb=AV<Q}><zQ!Qq#ly;9ge9*=fDjZLkuy(hNbre>A%v(a(*~sCH6EfWaz`
zY7?dVUNq1bkELV!CQfdPE|Q<;YuDd>O)%0;(U2lIO)xSk2GOYF2f;0Jj&VAUJXE|p
zJUcl!sU0`YcP{8Yn|_^J99X>0B+Q0KIT0?#rFT3W67IahX9?EAU&IS2NM|PB_GsXW
zJ@K;#LF)WAe~#zJl`oZwu~Fmybg)n0m;^r225GHGXbd;g<|&K+WzaK=v@O6guev&t
zc{3N)i4#0T^}mLR@d&!qs>2y<D9R2iP%BEt;C0YZE9$O?)OsE8v|INbJk5M{pdHv(
ztw;EIJ)41HHi+}31#_}VX4C+)g#(vyf7E+G3D^p}fAtj)w+|Oa?!f;nxeUYB7u#K!
ztUfcY!zddI^BmHamVNaZR4BUQq^*|i=v)P@hQ-jG0F)yNuxjFKhi!S5hrV`LWL?t9
zOb5pTF-$gE8hmk|Dl?SbtTkqU9!?JARl+$I!xU7U7Yc&_yW!ciB}zKvUf(qvE{LL_
z;;@3<f0_a6AjkGhxmue+W9j8u^NV{~um?wt+6g*4C1Q(+XssDsk-=hpqjkBv1LFUj
z;uiTY`u^GHXOm~%vyab?nbfN4%UURv{ig)wIk-=P5~4YoMsezfDRN%GKhz35sP#cm
z82Y0b9cY5w7_(^e*_0WdQUFycr*Kr%6nk;;e`31a6t^hzTuqQ?xju>AsW=vY_`@Fk
z@3%+)utopR*rM!isFvGSISE)ea{YRUVUVt^jVO4gX4WqD^DT^34N1GvYBb3+Ughye
z)qWz9Gan1)Tz-E)TehMfr1$~OH)-=MSdoav&<+;D89N^1z=&S&Sj3o5YTj~xat?JK
ze`4jX1ln%wS|y6TUKS&K59^kP0%xDtEZfyWgpKwOw`!Gx;dO@fUt!47RCV_<U2|<w
zgcL<#C@t<At}b*Ii|=hpihr?KMWJu&9M;z!almf6iLL9=N@3mhC2p1YZtcKcJDg|g
zg=iDF#r8C@&!T@*gR4l$-O3YUV%QZcf2}c=D1=PpGlIKssT-#<Fhr<W^NK>Z*6wOm
zg23~SLvQ)FGNy%WN{$-cMjds|4h|Zf&f(e7(PxKdyzx`t4g7y8Cv6E%Yf~~z_|==b
zvjjJ8@L)#aiq}lphJN}H2U8p;_V!8xrourkIsVOX7!d_(|JdG^!WrT8G>*L4e;~Dg
zE8mOu%&U;wp8HZDOv?2Y;?gi;wn0#%h?UFydfX&Cd9TU$;<XY|>G??-`+Y#c`h8t#
zU;}UyyVj2VDEu{cGkuB>PJH91Xou!JXoSfu#tE9>)TQ1EKcV)DS2${Y=)G@ztbJ;>
z+Pzx6-aBq|YgMOscvSn)`|K1%e>_>HY@cB_(3s1-5PsdtlvV7YdfoHqNG~Y*!twg$
zaWuh>Wk0|A_T0J-czgg=XF<*eLM81Xe5OZ#m_;0AVZ8)<$VtB5u~E#w7DcaLmGIll
z0j7eRxuky+gyj7+WUsiIS9|dRys*$Yk>|g-haV=djp8lIXEn*N$`q8xe=gh;DSLj*
z;paA_iwkXP<x4(!*^0bou<I%_wXiJZLvG-#c>P2PWUo~C#fsm8ePg?+grYzVbj#(N
z{7B(-!rv<u<?;w}Hgxx2mVUely`tXHl&&`D3daf2)-Y2_gHQB%CQXbVvUQ3zs5)=T
zJLMhiijaF_w)xR)!>evJf5Un-xWsYQA;!aD?V#Igf9`#1v^!uwWIw2CyvVS3q=O?*
z6j#xxBD;(lnp!(OrAn(@u9R_jWg4zg;Hk}Zmj_M<s-9Eo)Gc#;=6PPfUGM+XJYA1c
zx{fzGUx>(~jYrGr{w+`h81|KS5j5^amS!K9H?oH|WsIfzHN}cPe^y3FA1L_I2d1p)
zPepP6gISVB6J}K!AwKu4B!B4o%>Gp;GUGu2yY2%{iIAt!APVGF0d}J>iV23lPJ#pe
z`;<2|6qNta8tEK|PfRfvkDBj)JwDolAVO3s-9RksW~I`>@fD8YKmGt$1ZL-(MSt_6
z@;44>6XisItBHHje^*PD?LDYqoW@W=+hNs<={+XQrck1)($Nh9<fhaV$H_uE)?~BC
zrsN>o$3y7(VkJUuGdDNch)hv{U5_lLkcTmL{eb*PrtW|x8?vM5N4+%mC*YFHHsF>E
zUuUgN6rPUabQOLk%^sbXqd0vyA4hSzA`jb2#V=)Ij-yJne~Ek39mm-9k`+jIEE_*I
z0R<iprlK6t6Vg&gm)U-Vo(T@UHg=OJJRQewf>)qw$Nc26X=~#2U=o`EpODa2+!cDq
zIB;*UM|wUOyYVVq+%`XXY<inGJ(%7mz{jTds!BX>V2T>IHqjJ0o!6Xp=DhxWhU42c
zCsz69iDp*zfACmSD<S^QbDJGnc5;n2`Lmm8NY|aSsYmlbDR({Sg%Cj=x|kOdoGx6q
z7y2N`2j;{Qu%ET7MyuYrS$tbZbeMl#M=?+Mp~Oox5T%cqkBp`OGj8bG``-Xb0YU<7
zAS3V{6dw`W2IPms2;S!HFtm}YBr*;qHR>%pV^tfke@4*kog)K=LFl#a9%-Pg_m2Ro
z^$yZ%EGrEUjc<j~v?}waiXD`x?80C@IuApPgKE*N^0mT&6ZZyj+whSXF*DfA5xGf>
z<=2&rFYe2iHb5ByuEm~Nh$fG!z#qV+ra`6g>M~O_k7ex^rdjyHX!ImJoMSJp$;}xn
z{*hQZe~$zPXXjFC8H4A2cwatW0B-@U*JAwKE=>Nn_x1ouFilWR5|(We@+84-A{&xm
zHhL0C$g!~3l!VOw>X9TNj|7G!<Wg#xB;<W~UrAU1Zvm~>l7!qYOi8f!_Hap%=DJN3
z^0!q>WWn50*o8s1dP-@?>`3k>4hk(ES01udf3ORLg<300ME1)Eii8#5B8uNfC@h`i
zNQK$o{ly|NZs%x1(YQ%t_W<6nDh@UmxFHKzLVfHVs?~YECig4oJr>`qAazbRX|asI
zjrJ=J?i(CmWF;qyYVHKBB`hXfCL#i|dQ`QhQ~+p2Hi$5A8DPLy6a%b%l_vr8?NhjF
zfAk*iEdwDQL}~okVxSK@M<NW`tST7#XR8fd%jmZdn4MFRmhI2bgTOy46nIse+tAJz
zund;A`CmKTUJmpNRZ<3W6|v>q!$E=(Qli|~8N-(>RZwPJU!31(WTH$T^Jiv0(jA;U
zHc;0k852`+)Mp&{wyRpAzk_HNrkVUDe>a0*=HWUXy0ai<eq!xLsb6)9uX9%BD$3Vp
z3irYkn*FedwOgE6_;^T^=$4PFXcxUjKKe^l<9`^++##>N|9*R0i56C`OCal+wCxPs
zDf%KjU5bZt$xDMtN2Ht~!_A4}UA=KwJ3H$3Y7j%-J8iYQa~_+U-@4u9EiW$Mf7X;O
z^PEB3d!Mqb5ze59qp`X<#k<C@-FB^a&^kG6e)#|FeFs<*S@$<Y*u~(pVuQ6Z8&N<Z
zGz9^XpnxJ(z)FcB86c8mVkR`H*;VY~Ds~0b-L+#^6b0<Px3!B6yI4>}k?)y1lVm2D
zP+Z;jegB_%p7&jxx%b?2&pr2?f8ROx&b?qp5jKv_sE`JSIN6P|XX-!HwSU?z+8M5f
z7aDk(nA(HX3QPx=wHD=+n{C2VrCRe^t<$=;z=TlODEiPA3ZzLL_iY5LlZra)SVMHt
zVVe5UlGaSNk{WQOt)Q8cA|n6?`;3O_(8r4o4jH5ko!wPyP?(gJ&{flBf27e$n%L<^
z+F?RNmb5?u>E8IEd(TPJ3>N*`3z>1P(N}HzqweX@U|%b94mG;NqOqMG&F>KniL^#F
zs=;(E-AHMrMxjPGH#D}%qWN8=A(7VTTu|a8`W#s#i$&j4QtC^qtJ+KAjqW@6;?7cN
zX!Vvp)e@;Y*@E>~qr)0Ie-`D48lhpv8BXEDQerQije2rIHri_<Hd?u1EP8H8p!89+
z?tPL?6C*v<1~&~7-?mtyc2WTTEXlUZl4WNXXQ?itHd~;ehMCYTttlo@hkoj5R@IcJ
z2P@K2mnK_A(pOf?ol;v<F^KB_-X2a}xik7&RKwN4zEAvf3k*05e{hhEYi>XLKK7s+
z{p|ZW-~fj}c)y?Dsv-;QF)<mm5DMKMldl_k2z19Bx*!ZaFrkAm&P|6fF3p7`^cbcA
zNYWsN(Sb*(AVzz$PJ_E32v;oU$rFhq2)-nsqWSjx>jhFY09Tu&a=(4k$r7;{i7fF!
zq}R}pUb@cq))mkRDAB5p%73a5mt5aNXNX7h;aX@omneyq;)aELg%1z&K=ETR)NzvL
zw~k(eno^DQsl1LLgk_N?RDGU77Mn(&8V0<LLCQu=o362K2CQomBx)L#U_z8j&q-U-
z07kGOg?jP4B+NTdtS)9*RUeiJQOIj(h|<E6QXqb@UgM<y0VDg}B7gkyEiHnMJYG|E
zTq${$1Yr@AQ>~4JuSdjEo=myfOil!a6z9(5gEFx04;5mCGL$Ah)Ydz4u^>c1vzv*J
zNCdQ$oEj)ckm{o&gV0xp@;j?=JU<>mP#B6A#>K<rJ%{8~9+dn6Dw~><)FFTj7P!41
zgR1oX${;>fZlFFqzJI~`G*^_X;|n3G?2=HTA$=QCg>YU1rU29e8XX39D2&PmC_?oS
z8m+_Q6L})6@fd`>WM;!hB&bjT%f42#L}&?SQ^O`CO<M^Yb{f`AaC*9EYI{Kvi}(Y=
zp=+cFL&Ld&UZcW?g!*`ShiSh9$wk`SVnb#D^XxuB-l0BTVSm9vAwxpF!hEzzhx!C~
zjq>rvo(&q}6-v`MQDWF|pU}~oMKlJ4$8W-b(9Gq3J|a4aY7YsCN&JD=Ai5#(8l-zj
zyas*Yka!JhXh^g(+&U+>#uTxEw5K=SEYg^0G*j`5=h=UHSijG-|1#6}Up~*23ov-{
zgA9h$SFhtZh<~ZZ2jEP`a0CZYwAZ_RJ^ZZ;WHkjoH4MTU0an_10CHqVqAI~k$MS?C
z<`;(rL}>7>kvtCEG_;f)+|$I?>a{u2h8=Q&Zv@trKds<^6pwd@P&pz4i$QYD507CU
zp9H<MM4%eE4C0teA>BDIczg5;*zoF-G9%Em1##LCL4QjWYHe#YwV`uLd`+(D!x0MG
z<m+f4>fwL7pg$fH5>pOLD@sM3F@dg{-N}KC5QR`!ZUae>WTjn$0;x-hs^|tMq&yc0
zmpJW-!<u1YgWYSuc{I?qFF_V697RS&UMQL<hH+IQg?U003Jtf>kdy?GW75(NWWGlr
z{}*u4e}5XP{!btyvUeNELt#O%BnXjsjgtbur3rl`>Q`Uw92O-tx;<s&1&*%?7St(u
zo$CO)&Z#4bfXL%GK)R3xJ#_ewq6;lg`mb`CN<O%XmOu5WdjPh_3MB$4G#rGnUW3#S
zjfuSom3v79UVNRqs=qE!Ck}d5>A$^>d10^2K7Yo+a&XfnAIu~q7Apnv{LuI0x;nW|
zyQ7gTPYWw64bk^@uqI)CjbYK8qEvj=;51g<BSHZb0s%3KN-e{W*yo`T4?rfMo1|ma
z=wL*5D3B*hAXa`*e90Zt0G`HDT(gvd99cm+rz?$7*Xn+A=P?+6N{ioO7p+bwENt3Z
z<bVHB1oSmT^WTL;ls~#1l=Pg^Zlos72h}#>2IjjX-6D%JW+Dd)x}yV~8KY)Ss79EL
zlhZTXh~xh1PP;*I+S74}5}!+ePa-Jm-x^nAH>3je^H^)^M1wTGM2-G^0V`3DPUH}W
zbuCdM501s{xhCSlcj)Q(lv3#*wct6xNPiYibO_0!k2V4d(gr*KpP?D8Rez~!xt|Wr
zd>IDPMwV(ML>dA*Fcd@y(;C7<q;sgKrGOs#V(43qQ%LDX41WI$$h#3F4e5a3V5q4R
zg?6(Q?QCpv?AQ>5Y!-kd?M9FYATb#!%Hw%*>N##o!v8B+@n3<8v|H?Se?>(TtbarQ
zXHiwGko@gr6R=U7oL-T`c?mEUi>r@~hJ+G1qSRvG<FUx*yNWhhMVqw?^#87kLSGTJ
zLDVI*ro{sGG<S&NmOC_@WS#}EoF^2aO*7pf$cJ>Ml-0`y&C*nQFZPv(wTVObzYnz4
z0EaGrLnImhH&G7t8{_{p(jiZy?|=T`3n2`3NWYnn_&=OCYo23h5C{<tKno0!3<-gV
z`Z;{p_%B36-!=Z9YCQCnl4{MLJyckwwWgv4ph)0~0=iVdiibkl9DXx=rR6`rvXcCp
zitsfQ;6DY@@Qbz)S-1%O=0NNV%(DQ|NZ6sMDCBEh)<dH8wU4@|7+_7F34c2r9uTI(
z=xSYY926Yx;|BS~Nf7YyM|eOOd1fc#Um_{b`?7(=h(H*d3cw=13V@#tCPyGx!iy2X
z7y&jEEEC2FC1Cq1CMR}^7<?*+@{(WyB$VJsiACs;OBB_1g$IOj2L%TO`3wpV4(0lc
z@(T+O^RP(6@8Ha!6xFpSL4W<R9}3GMKDd|)k|Sb1Pfl<M1qe|&EP=I8ZbD(X^4(X{
zVv&kq6O@=zSWAaB6Y(NVUYnrB%Km-PVLKYlig+lBuRk=iSvwA2S@)aH7%fhfn}?(_
z9s7(MI8G?QFD%?A$S0KkTp_Ko(6RkAgV`P82?UKOCX*)+go9VO{D0IM`)#yQTVjL)
zVg|;Z_7Xq*q_rSKMUs3X0Ul8bCBSy*oclItf>0`@7#%F2rXfi4H4g1uZN!af^o~qR
z<EXmOaBg^T;2^JX?vU{CkT8->3i28l;Ny+a!|zyc_K9?jlBOO5i?yPC;wwZ-kC5yx
zNsdxjd1zINSVU}|4}VrZ{I+|rG?k3lGf4k^ylRIu{de%H*A2ObpbX`1F7@ddYR3ko
ziTOGkOwS3`#C#yEl$Rt965_{0(c+jd*(acyQFMH(A}GSKHR<3=ohIQ6lwSQgMQAv6
z#UGscNt(%^_&3dp{*NMdwFp%Q4hds5#fd^Z8LZk(sO#i_uYVy)4W7IPH8`x_WK^|c
zv420`O+P3^5c{tV3^j*NH3_tqPV);7{Jcq8o7w2cAl*ruaj9y689y!OME(*L94`c_
z;z9%KBh)i7WH3&L_3eU6QoiCV2}{SPRo$Uri71s`PBzMI&DuF}rR02pGx4J87Z4dn
zhKvBIOBDZb=YLs4GQm6g&$I`~M9VX%W#TocahZ^GN-dav4m5%x?@;+K5DZmQAZkub
z$GnmtO8MY>;dM)=`EyN0TT`99{<-MLTiH|#S|m52kv^vV+NAl|5nmS55i)|;Ryva|
z);a@5tt<QZ<V{kP9@0b@SXXJ`)xY0oWz%2U)j-who`0&ifO3qjj`ONViABCbk=A$A
zDfna5gRYx&A|X9Pkwh6E_NBa`agZJ?O!HZk*95S^UiBkHtO+MPNcV^<xn$#=9wipB
zaj(x-+Z%e|(KIURJ;W+nI<ZL8C~6*{sG>^;fSN{<bfUK^;%b(}$hXd`#72+An?Xub
zb`2qP4}Z%hlhwMiS4mtaxNin=t@~*;h||Oc&8JSfB2`KLO9r1rSX%>vhll%wHcJa+
zNTM8;kraUTH0?%+07lq+5+@BO(V9d~X|`2r)L<UPgGH7Mo@iso%jHsaWY5O)*a8Be
z(_Cqx%@qq`k^T%z5K3`&RCcnl+aHt#n-=xsIe+{xm=7#BD<m`+Gn;-vgP}mb!J%H^
ze!)RdurD+!FaYxP3-AeJHN7V!`6>-M3u2M}q+HcOa%~Owj|4lK-oL~cbr)p_X3d0>
zIKq<=X+aAWXJ6b!Y&sKNB>vRuVn|c&A0gqaCf&#*mBCV2B7lN?MsmHq!o9fOexVS8
zfq!gatg2N=h=QYr<-#NwESiAI8ZOkrilF5!q(OXS`bxlnzol*!vcl6`LJ<tUhyjrr
zwIK@JU|HkH7*BZW%moAV5J67xVqH?Df|ct)8VyBhel@O<Th!XapxQj4K}hE=232&R
z6>#dxZbQ@z_t#2nYaub};ulGCAnH0kU4L2?$fW_q+6)2FC5RiXt}6jTmu{pa?i*GY
zRkYKP%3uhVK&{G|i-l<!Oyy~bq$q1R3Tv(55!-=MHQ_rV5`+-1XfO7Yz{#5LDT(h?
z9k(>7`6qoauTo3RR#iL7G@EPMO+l%YLsDsoH+#h*mG*)<Bo<5pr7XdX)WqL3SAW#$
zR0C{&#q%U_Fc@%pV#FQe5~?oH>H+Drgiu&267qR8Yq(!J{-p7BB1ZA6%Ksb5UOg{{
z@{)MLQm`!a-!>;GEvotSpf*MS0>DH1SHRPGfE&BWjpNBL56q*HALEDifT!Rwl@;|7
z{4}GAFHu_#^cn0Il;#`e5$qf0!GDTmu`<$P5t)_H!_i&XKgicz*xSR=Iu1>Yv9g2g
zY*-wYjfK!U!+}`6ruI<X9*rgVD(%H0GHM?&-LcT@o$^aSwQE9TR8~PXO(w~QicuUL
z+48Ars20U2lpESmh>xvm49UM38O%$dJk>f<Lrp=g9jXq}?4hG@4l1e=hJPZI4i`0|
zK$Je>`xsD&#bH4#NMj2o<;prO3qx~79r=bjRsS{S2pz^%{*=>0TQFL;@HK6u8n%*=
zS_08|)f?q#EluWVhgf-UnI^BlctE|h2SRz0bmI(bQiPh`hxByaeIRL`=BZ`$M}q0n
zzJIJVB-0u!mD9(y(6<E)gntBxUgJucL5@Z6Y(9B1Dq|GvRU;5%sMiQDZg2<|LWeaG
zV`MOy%A>;xGRkDDhBt*Ja+#JZrMNtb6P5F1aj=|tL+?K6Ty;Zkx*-?cfPd6t%9|(W
zc?)G8Ogg4O5aKJ8p>iLr!(gUie<-614Sqp!{3u-d@?`U((hVBrPJiaf@Js<dltL7O
z#Zv4K2_)u8!M%@wY?LxoizR{$Rnmk@o&kPAzQN=`wBhSk8@i|!XG~c_%^2n}we<ZT
z@RKM(VL3!1NJ<t!6a`k|7^((XSiwm=(FmSQ2sU!EGz+k(BVf&JN~>xu&Y&7B(okY^
zlsxfhWT-}>%EbUm1%I*_XuzjN$23c5c8q}Ws==i}c2r{$LT|n(accu61RNqj#Vxd;
zLPxGeeT9WrXt<xR*P!s=(9zuCVLqWus>9O|xn^ngr3bX}GL?YNFop(}YIz!xAZWI!
zL*$`tunWDYYSW9_0dipT?=c@1?iCu&4G13O6~GPk2?_8U<bM?&+{j4K*HMm#cIeu~
z-lS5mJfQ@_#J(1~)jdQcAidReG!i(ufwzcAK(`Pmfs=h{9*cQW@;?P?x{a+EYPv|>
ztBmyJJ=Bh^!K5*XB^Jb@{!5+bCo|qyo|shjt7iKNyXfl|;M0U;IEf23A`*cA3aG=%
z0v^Cy>memQPJg2-bOLBLFQgR*;t}2Y1L;)*a%WjsVJ_G&)(5y<e7b0GjZK*5Nyi$`
z$my`jy3hhGFTSJ%Y7@oM+}4{s0K`nCQ3maauQ?nvrr{qcgOV4LGDzTLU5im<8`B(R
z(B@kAIOvkj*HQ*j9~x)ki<O~~#V76A@kPr}w3AGGJ%5U(n6(CZ589<D%EX~cwZWyV
zj7H?81a-j_#xVRwZczi>fgrZg#Vp#Pz-nphAe1Z=iIgE~3=ak0O`&q0NCeBM2+=Pn
zEZi#~z$a9dEF0q&!VMoC;zQ?OG+ZXjBF!r#1Ro1F+m3!VfXb9a3N;L5jpYlpmKs?Y
zJ$GrcV1F#DfyOC>G8$^15EvyYPNNbe>Ni6xNYP0XwIYbZA2!_N7Qd2KG*tzg(NI(Q
zrzNQ&=BQ@caWPMd88h(z6qAkNKRQ#b0!w0^l>RO@EOrLrJjgPOc~Y%>G<Dbmc~Y(H
zLW4mS3D#+*b<`v@4U48qsi<jXA@Q7mm?tHAL4VCoG?D~Ru8D$6;bbzHkExtY%#+(_
z{2LOoVRd3g88Ybl2#pC2(G<fHIV3>@Fk2|lJnND8{##iL7C-?)2@LUKkR%u=jE;Il
z`5;69`w4XJo78xw87v3|{&1>C6L#e&`-$)Ni05I=D#uXAmJc<Q|3>>g{u#sC+i<81
ze}98LI1O1%om)zpu|b5IibmskGFZUI)TgPbXj~oCt0&~XL+MbQ43<KyXraJO>ugCG
z90#X_$z?)G9Jmw&Bcydtfee<4czie<PLX@Cy7weoYt;*`Y6!XU2$BGS8_HF*adSW_
z-h^d#5TxQwLimT-${EGyNuU@Q;w8!vF@H}k<nu(LR7e2JVVPJcfdvFaKybUwPn5~9
zX&jHBatTiiLx>EkjKXp#5p1Hu3WW{v3ia{k1_gWjaQ(a?Sdt`^ArdhClZaFq8w!ty
zWiW1UAPEc$@Na0OA|YQW7o|d|6y^(KQz4-o!V0okq=X&7f>^(4<sxrPAb7Tdw0~XC
zPZEm+!YIm%BQh3^!Jt9Gfg!<RK1wKrU+kz|Y=}=lpia2N6A)eK4(urKnaMm9ii0IE
z<_rY*S5$%+Ht9GSo<sn}^K8M;kscFw&&PsU-cZ*m-lC}-5T6KO)NQ^lJF!A=H7N?q
zhwyyx&5^jiH@X4-%Z!LNuZ`Fe&3}bCk~Lw+D_Q>1k8^2>5o=hDeuyiB#YhqW2Rc8q
zjp6YV5~Tn}YkxPOUK46al(9<u+JKDsQpi>st1gZGrD__V9XKZO<q1XjJm(|QRMjF$
ztSW0wsi!uJV#t<Eo`xPS3=N76>;ekI*AO%~5Fjv)e(+o1lsm%Y2q8(J?tgew<dNX=
zWiU?;4+Ld`V*`*l>`yFIZR&X78|nj)IIM&+0HJCzEa%(d#q30QId+OtAqXNexv+5(
zYNMx%4jdZ`^RaMzI10-==w1w#A&EqG^&8trDlaUHw4uIWJ%NmWsa$E5A$_i;-MF{U
zz{dCs4QU2@Si9WtVD6wHK7WJ!GgwdqTn-Km9v(s}ONDfpj)fty@&KVE!Al|-1T>7u
zeyHb&atKGMcZgf0QJBi0J_4;%K7IVsrU+$hUW?E_Y*MYfU))ow!EACDwPt9>7ZcU!
zgvPYRzpBFPg9^0%P(>eXhs9U^apCGVMr5||YIs}3stx%|K~-yjn12wF5b<dM5{EY;
z<t3u9PYTRW#Cxn=4i^vbC?v`wU>PbzBsz%D7se@}a-K}C+MrKQfLeyAr*z=TOZs(G
z)hxzR_a6?0$0rJ9u)teLe9BJWe@Z!`^;EG)C`nLCTnOu^uU(F4ACaauT3MqIk^exF
z;6`g|6vAuDWkPWv4}X=zGJiOgz8<9r(H=hXAu3=6lvhWyv}GxDi0RT`eWDDd9w`CU
zU|mu<O8wEiCN!)pgx5@z3V3o@tv$M{)0HH~Sp@SW!==F@0g<n4WW;q9*QD0KAZQd)
z>KiGWqD$LIMethmkraJ(`m%(pmIxY|;p7s)coBCS2q(ZyF@H}e(QD$5#D#4<&kh7C
zcB+tj2rLp~%mK{ZRFYahdwY9(=RSSFf9>t<HUI1AU~jMI(8r~(v!jE9i?frSy@N|%
zXBR!l{)<~|#xD`Gm3sF7xGl}j{g3=qL+!={8-N6fe7PHWj|&rDf5vB*8)TQnli49s
zx!t%}84^eK;eSjmQ|qS8Kf4jjFhPhMhTI^Fp}ySE;NWoesu);@iGh^~4Lp<q$KQeQ
zMCGT!q7AXBkyuEhESZ70M2kGev+gE{)e-F`2&Tn6DTKx&i6Q}3T_{neec=?ISSo_u
z=m>bw@J%3K9C;9k%7X}G@P|YRb%3LM4a@n&I{{D5(|>r0JtE#FBeDdIw{o$PtOyJj
zKVFyw3p5IekT{gKlzMbMh%%US24?cVWpMv%238}e^iU6)a>z+9DFcoVD(Nk0NYO;8
z6p_g(uZd?&8gEG%jAqD6wMar8Rfu{8pBR?&NW5Vx@t?L|-+%w?*RcN&0~_AiX#78F
zqf!6w?0=%^|LvWezx)4x<JbKcyBMLwE{2E3Gnx4J4d5t0E9*3-a*;-kIdcztW_Ku%
zmjZ<g#W0eHUr`5kl%uLeTqx7Y+1{S1+;^CQ6%9_5`$_Pv=ctE;12d495=v0Cu(F~n
zW#?cISz9x^LnC=Yu*eE|4+KZ2U_mX!L`5(xg@2svnTZm)Py|Iltg-w=nFz8)AzK7e
zA6;sj46%Bo#mnVVE+4;!8vEPL&d$Nng>BEaXFIs{v+w6<habCO$CC=}k{s;t9J5_K
z%oEAu$Kt6kM|*n~6y?qY3*TTV4C72Fi37}$(*-InZEbBKz^Jm6gS}E(Ol7XnB8?Dj
z27fpW+#*danhYo^iV2Z!Tmh}Bv%H`YHvT3>D2E)FM8-@;5-ss}ZwCk*WQ)tq!JY|L
zq6slN+B5OBJ#sGqby%SM8YwnWBuZto*+L2AClSh_L5M`o6N2L)@Va4g1pnxoe7e6@
zX*Qe9Vp^o3e3?)xNAXn%%CREx5GqHc1b<DR6kNhIG{8EEnu-UD9*^4bq*6?`SxmK#
zd003yF;#~&_#nbrj0Xz`Vj6f@cruj(MSS=}-0jh`CuAE7VbIDBmdOwqIUR~~uRcFP
zd5=EsvS9(lX0z%0hDCnFU@9}U)Q0V~+i6q}X~qnK?0~12B0`DWR$~NuG9id$1%Dum
zG_~+Dn8XT#W*@N*N?=S?c(T;S`)ALL75=Bq-uEBzqxJuiIH4qktQxj_L=yYONq~m^
zzk|JtlOxstJKFbkcKGi9|BYW-nl0vz*kDx`WrLB&59?8$(F0{<Fi}**RbCT<Lg4{n
zNe=k`vz7mKB>wB<4hr*OOnHQSo_`#MptLj%`chbig3~JaFk6fyO5`9m%gC@pQIVZo
zgtGZExfUI60-X9Kv=ZP{oE8eBs1T8G`8+-re1ausx3I7PHwUph(L*>EmT~c;Yq)%&
zG#-|r5CkC-cP1t$SOSF6U3u~|^-K{a@i2`^D^sCF4$CAwQ3xWF55eS%k$<8si3%lg
zA~;OW<0trqBsmWfC8Bazh84$;_<$nZ+@jpH1VPsTgrXvXcM%FhwrU#9t&Vq{LaAx0
z^EJDO6DM=pygoKopVUd(KN}s?Z#||^M#dKor@CfyM)F$@q~<s@V+?gvZD{z2Newn?
zWm<Xmm%&nG0K2z!Bs(n)5`RkgqC^2q$;sQs^Vk^jm4Ll~Y)ny_T#}iV2Fax&$cnDG
zvL6U4M_CZt8q{!SVp!A40)#6m+*m}G%##UV0d93656IFIUx@_Yf$As)S)lxQSPZ)}
zvHoJ^5LC_u=b7r53UG>s95E)8WFQZSg%x8#<fa=YsZ9~sOD`$@S$`dd7V+(DLOw_z
zVK4C%6IX=9;n`&o5{DxYGMcv~j#|V@$%SH}B+ebH3-EViRY4)FraMyxC(DF#7>cGu
z3Z52_9VCMVAgiYo0;VBgv%0eX>bh1*4(Umb)^=9xUe=IC%ptTBAp8VaW(Nq^Svc5P
zIO3;bV6x!HCrT1v0e@F6<4I7=*}xJ$BEY~h=4ALHAuN$|#k>@53?fM7qQVI<Wbe)d
z5j7B=9pFSNLsC+?GMFde%86(ka<#X2SG|(*P?Q@F^8~OAf*|~uD)n1Ff+PrGF371u
zP-d@aJ9aO~j#?X1{Tk4ETu*SFceAr=^86qh1dUS^$;ty*qJK9#`02E46cr({u_A;g
z$jE4VSzkoPhk=g+weU`(uv{%MXq4?xUl|f-8=M5oWI_RKJCKLMw!>v2kVHV;?Ciiy
zaMxMgS2;Ir!PP-{HD!N*k^6$Sbxi!`bEAWhia*?Dl9(07LWm5qg2!VvP2Q+mwTAlH
zTQ^*sJl57wpMO41*8d@aV7dlb5dHzPY+p}|-)5NI)JFI}-9e?E&`}$LpmK=v!>KiO
zV0;nmkp*6iClFBBh(%;Nje|glVxT1it2i(*HWmgOqSb5yE|TyqHIM__!JTAL$0x$5
zoExL81tGDq>epJ2DKfxVBzh7imkIfD+i=XtV*<AggMaynGNC*bVu^Vvw!Apl!^xqq
zle4|Oy}Qz6h9$;$BVwLVg0di<D4CZEtcBX}lf4YFCrP9CGI=Zoc|-WFL@Ntrw-RMS
zC{x4r5!TTTs|@^^1*F{aMB@&K4C+@m^g21Ra8Mp*MYvGx&kR-XRl>)63N_f(f4z64
zj2vA@m4AK1`KNKc|1v)qHyIS2lM1D<NGO3(rN-%=Ks57txHL}26Trl@PsIPFqbzaA
zD6u&Rlw|2B3hWBilxR-{{3vC)2=$@P2eOovp8SjCOSGUBh^RDEW&5=o{bp?{XF~=v
zgPGB^{7(b<Kg<~Yv&0|qYh?YekE4Uu`kzDJ?|=J${*_;MD3B+VKtb4uYur|V=>jtu
zktJZT0Y4iWMj@z=JCi;afW>ocR4#yJAOWBb%^>2TR>TNuh~Okxq#gg0sy997hY_?>
zg?mkF5T7(sp+ISNK_n?ll-LoC2?g3crYxJF@npB#y*m^ZHiQVeph46Wp<D*@#6&br
zWPb~3%vWQ%6|niDq5KNQQp2XnmP)3X6eM&8^&k5wAV|&p0dCDmtuo;xSRzM(<OuEL
ztGovaK@RqgeXvlQiJ4kZO34*5ys(^4BniYqG0c{yN@0Mth(&BJ_5gx->Xd~Y!k5Ex
zTYT``nM_Fa?H<aF=b`Z+U<a`}-nQ2Jn14im0xZXiID-PDbd)BIKK8E8^hL;I931;$
zg#hy!1RU-AXui{CfF_0D*vH-;2!cpM;Qm(UYmlMPda2AXfB{jxcIk_fA-{yCQ8L6<
zbumHn4GQ(K*Ls1f-qKZ+!(u5Hvt?Y6z9D4P*Iw-2U_?Ofr8ZXpCdF}y9b*vYDt{r!
z(n1D{5jl)SD>BFyQvNd$g=J8L1=eLQ*c%ZAv6M)a1z9q&n)sqCWP!JrDu+=_PI8Ea
zBOS0Z0n3Qe#6yfOmlp?1<Sb=5jTnh#smUsyJA*8RQpf|M@CzsdRz09d7Mb@*qFKN@
z7&*L%x<kqm7$C#wg8zaiL^qW*!GAxLrHMX!K+4{Or=auLLrqcO3`z+b3J5Cy1$v+)
zt9nRqsxBpiQ7IxpVf+o5KUG=Ezljn+^mv2h!BDn0+>7*1JtmQa@Ei1%*c8B{M^X}0
z04LcI@06)dEz3<R-%R&NlSrjlbzpiV;Dj-yM?@r8neKAFlq*4`iD<m)DSs1!5@1-$
z6A6=GbuQAmFL={EZh}y%DyOu<B>M}%rNFKixUa;W$;@E>r{U25cRyPEPx{dIYqZhG
z`hOn>=RO+vzi(fMzTffxzwyIkN;d*;2>Ea*94AEOvQ&Hnuuy`+{6rb-25HBk8Wq^e
zvS7IlUtMnqHuDjYAWV+Pcz<y)HERWSat%_ybt68=5efVxsGKL^!$eT;27#kIbuZGA
zo5P_ZwWU~?Cr^~Y;YeJZ2qyMU<K^f{gYVI4*Yw1&TqfkB#PT0*PuWm9BoRsknD27b
zSdPR$z!pm4l%12HhzJfq;*|TYVPzL}U}bd;oE-U7Y}5@J0La*SlYgtk$#{G?Hc`Yz
z;}hiqBw4~1^HSJ^!($7G7=<ksibO)xBP|UQCyHp>#?Qk5r3Yg)LtvQ@5fHmKAqRVV
zdu4P$Wq|NJII;qblYqMixubYN;_4{XWhbNy&Awo;HMzmdplqH%fJoTH20ahWVaJCO
z3_M*!QkhW9lclo95r2|bHl^f^kI3K<1QCT{(2-s!XsU!yDF-A$S5b>Ctc4V@s!`if
zVic>ZdZeR53aLU0ULmD{3gg5n+LGiWVm6wHsgQ&h2aB-*9Vbq~L1Pn&fLqQ$M=|PB
zJlJbWJ(*be#dT3sq^gFZBJExR*s7w1jVWl4xX)2}(2EDLx__^(Vxh5G)-)2ZSSkWX
zUFi&#EgBgWUZOl6mdNpKR!x%uxr+KE<i;xD^AQ}Dp%ftg44jnGw3ekj6ir5C0xB8h
zQ#B!NDK@=B%H!0v7cn)(hsfjAxfF~U(gWSK1w1(~hKCX^i6;^v$w7!D1VQC-G8i2%
zqL^!CVYYTTh<|RmTB>@jIo+^G-VIW}$G^6fiQFL8I6(~GP5lN>Ewe*m5sbAQ#1mt3
zv?UcFF-U4qxkygTCOi64>OZ}SzCjtp=l@_~5@HcY^~!`vm=8r{apdaW;4#iT3d=AZ
zcY|1sH8q?lN;H+0M$ryjG%Px?gFKFsKP5}FCGnT427gooPMVl1D1*po9YH*g_yS8c
zcJ!qNDi0o@j<Ez00Htccr>R?z;^7=Fcb@9gOdUvpt{&}_XoO#CtE%S>v`bf)es`AU
z%o6ibf~BxTy()z2Y(_PR+I4WsIEqlx6-wl=1jCT3YweVX3sZfatq@Rzu0F*B@inQc
zAxmSlb$`JeoQ~$Dt4*h-SyN4ubZKeR$&o5ylwxHFCJ_N1L4Xamc-Q4ZF&rqAB+6lG
z&y^L}L}@mWH6Y4D>CpH@1b1h+i^0gr5+%VB(()yK{T`KR+(*%ugwoY#ckxu#qj@@q
z({EJWh}k4T<dD@D@n)?P&}&RoR4Nk6iF>-yaDPPgp#=#Kj&k$Ej|B+z3Jif|d{`pq
z#laqq_Nw=RycFs?7kfJUKn1{fcc_^6pE*{_Kgct-$rGwcAwyH<k`6*&FpYFj(wITo
z23SMWXu$xh0o9~9J{%@AP&!d2YS2q+mZvyNU7lR45tLL#iTN6?qAaEDmYW&)5fMF;
z5`R`Vk~t9b$uz`#tTwf7GtGyX-?-@z3W)OtmD=7oO;VL6Il!h)Co%skOeH!Z&7Vee
zR5Yd#X&jZGsJk_LfQX8X4HKa#Jc%0Njf*8XQ|Sz31?)dKkTZ}c=f^{=Xm&3v1Vz*N
zQmHK;P9MjYS+jdtuxPbdDCWh%Y#A&?P=6uzz#8}jRWsVkNRFB4i{X)x>K&H={4{0A
zO96-k79#>!L@7oRn({q$!fDJURUw`f5s8q|JTVdfsQ>K-cFg0i8mgvFs5w*o2K~5D
zHpG3CA;DT`cr>(1XbD+ET5?2+h>*BcvPhNBbPWStoo1@PibSJUN((2es%q>P_-5}0
zF)FUV9*iN6`<D!vZlwTQ9@xonOgw@l08YUZjJWb4psq26G^%OLo`#we3c%_ii8<x7
zhSi<6l%~r6r`J5b|I|N?^*<33hfuzq!5*-slDL1;MuY2rj(zN1oSn4x|Mltfx5%;q
zcPoGYKd!Ditm*Ij%lk8A8$2>vKw)&ZNW)Y>q!Dm5D5Z3FO>`(oNl7D(ASEEp6a)kb
zY3c4px_-~V`T2Z*|L%G2`}Dc5bMLulFgySx$O)5nKgq!-mh&<h^hg3uIg75jU-|L0
zf`$^iSCFftLtw~W5ZFu}&V8%VNvN~`qt1U%2ocSB<K~y<AIv!@Z0#lod~#R2p|g9s
z7`CYwrfGtyw07&aQ_(nD;>1?h@HC>h7rNa90Em<a7W?jVXbo$pEA}(B6~C9N=Z9t4
zk~&G?2zW2hk{EXC`P200&4uzCIT$|HlSRboxH4P87i@&I0&Na*SNm_^0n}vR{n&qc
z=da;220w!-A~A+!MaHG)`ETZOrm*Z}0XuuDHKr%7BsVvOX>%|U4@CNI(LH!Zw|pB9
z08LY=qeCVPWC74aCWrLHgE~#Gma13^E=JTQL*-Fyb)Q*E7<QK@0H&Car@!835?{5x
zt%?e=BzpQ(Dn2ktSoY$W3qf57ewBX!N5G>1m5-r~mJ<{UoR13FL0?r~%_G&?&4Ovj
zvFe5MJ0rEvOD0}V9~5<n;-|!W8(Y5@{s(el!&iC;YF?|yYh>^UMbzE*YcF4hH&yvj
za6wU)3sMdRTMnF>>N!~VrA6Ii+m{iuR3Nv+vu)<sJnG4Dj{0;}@#0pRz0rSltWyF4
zYc0l1AkV})WAb(6sIc35)7p8PLof{u9snw3Ru|RAdVOjzSBRf@w@DH}U*s*M^z0co
zmXEs#YF?<eEh#+04keIyMzWBgU64-r=K^J^^KKnBV9!8bGrrR&_*wr{gVMawG}#Ul
zIBYjy!fv!|py(-al({AV+J=AgTkpR}F_)S)C=S+^MUBtJ`Ic-YSKQU7bLzi-d6E}f
z5lcK+|1*EJhcSib7DW!?UCp;+3rjws&{zM{%GvrHi@WVO8yGwLKj_GjUl&|LceD&x
zFpyl_;T%%xxO*HLk`?hyL+)xiLVtfe7|71B-cJ51uNH6xMF?eYG>m^}=EDLE%-&3*
zWC2g7xtF79UG2eE6pyQ?lHLr<#U1f-f_19#rh{V_xn78hiAg{4hZQ$-VX;sw<{cwZ
zN3VpX?32PHZlX5dRY<U%h*r$yA>_yxk)FF{$uYma%P}!vH_>x8e!mf_lo9nNA&VrH
zm*KgCx9Cp&g_h1CFgSl=(jOE(l?mVhAXVYAJ{i%E#!1$iCBZB(yZO5PCe;VZSlp;f
zG34m8<Ev@UIiPz_!V&s{ja9h(wuP|J1t*4N>gbh(M0XM_CwJek{qiJks^X-`XUFED
z?Y$3?JhmNwnc0E7c-Wac#}w?e-mUNhV4@<HnTYlZ#VU<L9o>JvF-j|j2jt-2<zSm<
z$#WQ^x~{Y9OZ?;$A-0-90?zxYj)a5jsfZc-si<B1IZh2|>_zRSj;^T;pCE-tIHDjU
z^>6&8IG>2%`-!Y{GC>K1QWDS?m#GWj8@WY(9?b!EDYCUv7O2goUELbCB%ydCECf=;
zkDhW8-$JVdAYgwwekOiJrAnqoZ=i!JD0gJTsNT~U%*DZ^8p?t1xk%i3Nn#GEeYh@M
z($cgsGUo7yP6q2mUEAhhi8^4z13XEF3~M^v^`98MbQdx>FPTU&mg3=qSS4MYK|DrL
z*EH{bJa{Cc#x+itgUz65Vj&|B#ZxRa^CVG6x3??Pvf+OLme3pa;%;4;so$!O$nz6{
z#_Zkv!V%Yb=A-zFcA|?mjyg>*_nq14HAm>EOu3q`l3_~Jzz_rmhhc4thX+)VfhQ~>
zB2*#HV;qk}@QsX*Ts)MG)&=_mE?giTfb#6}@f_KTs0m=15pv$J<|;FEd35^r3LZdB
zrH*bt0MUQa;Q<TK+S1wYqR6BtuJ_@iDi&>FrOs?WFWdMg%P>P9Q-AX|)JiPSY=ml>
z{BEPl<h@`qjVNy6mxvqSNq+ETM#8aB_}g+AW{k|g`lH1?y57Eb7l)og0Bu;|(YF`$
zt_yEw>Kvh3wx<O`z1I3zY^jK#=GE+d#t#A;7?^+jtk;!l_iC!@CeLpN)H<mjj<~E&
zlP!P7aq$y<FT8`MZ!RiKq?x0;=A^Vgh*HTA0D)&U5!Ae?J9d4bZT8}YroGMF4pC(M
z6Ib2IHEpIb3D$7$JZ#aNMho!R@?^w@E^g<w(9V!!YoI{7q~TDT{YL<(hbxUJZoI13
z832EYGr&@Q?B;XSO&b^o_Y0#OgesS6nq8k**((0&e|T5C*1q{Tzc4wlmP-|7thTXn
zsAOqYNDukX#p<kXn)*{(fsHSs$k->YDwCa%^YX)?VabILB^TGc`}lv3)T`ZCw+lt_
z<$3AGPnQO;5!=I(Mif_g*rN}Csu?%C$}@ka4K%TgOnut;@JzBN2C_$Y*_7IVe=SvV
zbMp<Jp#;4rG6^ufeLCZ>mh6w++Gc<@2kKOlMkWLn5J|NdkS;ubSilRetvU(+`0~-x
zr7XcLu=>q|<+l^=Q_-_Lj?ht^0n<a2=eGoxHSE522(&qTPi2x~Mx?C(5@Gi1`ksH<
zN%;>-#JT<)G_D=p@V>aEgjE(};%Fy!BYt<LB$$r-VJbJ)@<)89#D3HMucebXuv=in
z1DSA74i1AHkX>G_*V0*)WoJU_WjDJc{`^|<z~^cGWO1oqq82EE?D5fVuhPn$LSbyd
zf;D#hPC60<c0s0n?B44`-ZM3lg${pmplaC8To$%?#*&|HTsAAML2Se-?79!=-Ikfn
zXWro(=^Q9bX}zzD|Lu)Mibe=(-d)Y7S3uw-<m738QFE;id7&l{-f?3VMYNz|$VYnF
z&NTHN+L%4jlcyOIYD$UqbPeUY+t_`D9nZW{Rwbwt23Nm<I_&S2jAfY5a?XGG8fqX}
zTlFzdH0mS8WiN{WYO}mWrqe%HlZ~6Ug#$)6SiC*?HB2S@<NuZq4h*Q}YQxhOKekTo
z44s=);JKe_gXe2^oflj$dtUPp@4NTLmyzOr!=>gwfX_%n@60KaOtCb_i*7gsbz#|A
zIvHHu43$05{J8h%Tdf&+VIY4X5@Rf2y??-{RyBXwL%@d5x^bN>rFZO0R9wds%7e86
z<1$J;39+o(*lpJe6g~A&NLySn0C68=WPGIjBSdaWoE;{eUb);o9j2Uad-;_<KxwaQ
zN#9eOK<)AE5Z%eKe*f3vcxBkF@F9e~F-FnI000H^@w-}j{%Dt-5@&yRSa?CdAzEK`
zpjmj?Inu3-MaeIU5N?~Y7N11%zw&Tnjo<%zR~l<;ELi#3o8b%syBL^wcQi{=Ae*b?
z$@2q&eYG{`#o4nkwJe@XuaN|fm)(eyM?VGT2qk{w==NXzoWJ7M9CbAv>&L2i=9Qx5
z-xv{aPSjCswXteFLuY^gd!3u)9zJ`M)$?Q;Dz$Ex-`NL+iQM!yn_s&rnfHrZ6-AJ<
zOSpfsHvZd71P=g_vZWElRdW1f06^97&6DRrGX_+_{dZ7tl&2M0AFBw-mU%84-fp9s
z2ha=i#4D3|9TtvIEbJWWLBIhJxQQu^h${ROI|wYxu3mB2D2ji4@x)afK5AU$@Buc}
zWPSOJkNiQ}$L`x!hp(=sOxjT9U}kTc%O#j~U_VWQt*72yO@<@V+JTiY?hQjf-K6$A
zCBqb8_ea;tfAV(aiCp%}yaoG|o_%!da=iUY7e0FEuHS)vI~$nxKky3{g?T+c<E~OG
zJwKP`Kt)wqQqX@w?q3=9j2L!tm=MgZUNsk$VlKt&m%TIc4&P5W3wdwlJ7ZVb{QsV)
z34lgPdFNdnYNqTs8=kC>=Y4ypZ+qDo(*stX5H3Xi%34d=wt?kfR_sWT33Ye0u+EW2
zg!IwmA%(-jF$cEBO;u-P`G%<a7$lDjzf8(6s+X7j_H2K}X<qUNyk<3Q(zHz+SiHAr
zVbG2hL<K?3d)o>HhOuX3!e$abhR+xrSI}BxDmQFJt3SMRF5tQB{uD=P2T|_l*H(}9
zrb3^PEz0bT951`Y@iNI`(WE0NdMbD(mjVDylRvext+iiPDd9N=Ss_ij4_4ghCP*!>
zy}Im-NvD4ta&hUfohf{_&-^rS2t*ezP@MIVW!ZC38e6?ksG~!okuxB$EF-_w;j1A^
zAE2Cz->j$W)K&bg?BGTJc(k4ga&16@?WA%{^F8zl*?~!ib(Si03-Uk5Tw8=c#w1uO
zvQiLh&{2u3{Ydn^tsK;=OZTEf{j=-65&!#>o7#V?+pq4!C0pDMQJ!1Mb?pCZ+!ze%
zXj#9-Pb9@Pg?$Yw$-g_F(9EQvQt`*z1wq%6N6*{8i<EimmEDm9+}|{;>&#4<WulF+
zdv`C;=8(*~a}@w7vUKY`^|cvD^LXTuUdF|5bHvk<7#71x-E`SB?FfAl?ssmbSmdS_
zcKd(T{mJ;MeM(h|Y2_;=Smkr$nO8n}U=?%))rx;s<)$TREuk??;o;F7K-SU1l<IW(
zt{CwI^p&l6J#{!|OfwTYO>+IyQeaaiIt<GR8I}`FDF+_FLXO4Yq2^N4x<jv>98vcz
z#*GGj(qDXs-}=))i#WJ`Q2gwa*Dv<>hzEbjE6%w7qs6@kJqUFG1a`TPpe~f~8dnNH
zC}Yvldf1Jw^olX|hUDFlC>~b<m0JEw4L=6TRfMOQrq)t;ZDE0k1BWNh`kG%!W!<q^
zD=a|JKmy^X5`ZAR$d5!JVhqC+*j$1hh<cy^@%{5&l{DA7(ATUP<EEBy`_&z6e&m19
zrg^1=t)U?7jjkOXHDK5)HIu3OcmeL27f+Fs-^K1F=+Vw3dPH7o<RSi7f=2pe&-*nw
zs<an(I4vLUg+wK=9?4-bH<-OKnc$n!#T%0Bt=2W|LHRm#uU`$&XgSe8G#ruC)J=Bj
z{(2~fM6C%`TlZ5~<JCYmBjXJ>>a2e;YFRccKx=bI{#nX{2b2&>ikuG$a8JIdti+fK
z5xgAP`6hh`TqYA)!WTj4b1$#+kkospx38j*v6AtNvOmQD5IBh;jmZ5fnjQjEc!$kY
z0^DQRFW6g*&WHbij0m{|UG!`)s*kv=qMrHk`LXVfTnEjsC%=tO>Lvz2U;}?G1oe8l
zq~C)8#1d$4aAOJS=}NS6n}L^cv-`JxV`#2Y96saa<J3&TzFTy4?ur{BNy?|3S5YI)
zhR$VE>OIbK=UDu`94(l{4M)IV126B6*jt`5qU91{R3sh_dJV(b3C#0B(w7Z>%#asA
zclUP@quJ<XqyYHj@%ZTjMW}x-!~Z;PROH&6Yj!u)DTFwZppLW0$<Jzyhi}1>FP}`v
zO>Tbw=N{{rLnK+g@i#dC<B_;$53ZjwBjBHbHixQYuYcGg3{Yz=BD=f|lIZdT7!@hl
zzei@kL$rz`-SX1QJOP50d;+zT?=L$)8in6Uv;X#auYXO|$ZC-U4*-9iF{Kgh(-X>&
zz#~AYfx9b>LRXuL)ybys0)cEs{)@Bq%*=t(mnqf-qBXcyYkJ~JCEn;Ibrr=nKWZqd
zt$-X}<iP`~NY&Bp{VufJD01+DxD^psU&sqA`jujH%Y<vVL|(RpKg8~^`YnF@j5&G@
z!Fp*{BMYyUp~;Mh0L*_mi8?xp00d@MFmYe2kfuP&*NOI?y#yVFpY9Equ8>8;s_$Mt
zTVpR?Z{6NpYb8v!t)nYPG_>Ut_aSrm9bMwDpbWt5jdM>Dpl=bJps&3e^zokFeOy9o
z#tM`3!S;n>wYMnp(xWc*G6g8@ce!Sa5b}sU@i@&ZLbFQVa|wUHf*OUgH_o{&Lz58G
zptjro*BeWfU+qAD^ETLQ)&F|k4!L>RjF?C9?vrItsJT?9_weo$A|T5B%>&!@MNvFJ
zmr@<wzP(CAiz0`-(5DGfGyPV~N;YkPN->wRSWAgWxA}Sbsx<<NdN6W6=KO<YA;q(f
zG!SuKG9l)(jo^RWmSuy$T4MqP4GObIOd!l!aLI0~gVmZRIuQ^@Bh=PNy~0zAMas+m
z+bT?hNS*(9R1uXa%)@Q`ltYbvj12(~#A5R#t$U0S;;0gRnb(gwSercYrAPS1T_G8b
zmnx70Ha_~z)#jM+HN*LR7lz2Qf(uFE5d?VVm6AV71xSAt$}nd~QodY8!H;jUHdO%`
zv7rhsPK!72aF0Ct&Rf4Vc1aO>vs^{t&D6V>O{pJ6wSvL0R&4rmo9|HoXKKK?l~a?1
zn9*|YU<=SU@Aggf-}8h%%jmk~!4TlF?NIwswJ_>jf_wry=zSj46T{=B6o9C}kDe-(
zYLLGVUjlzL-J-u0pO8))pzd1`+1S`Bc=;{TU$&VBBMf(56J+m7?Y~)#xel6NOOB0^
z6ubt29`dCT#T{|nx&kaw<UW%WHyITcD5!fOsx%oFWiLAJ!d(}iv2e*mC@}RU*<Gdf
ztRSk?zZs6jkf}C#N~WEQLU_P0GIezOcoGc>st<pRtzoZI8r@A|;V)h$I9_(kVO9F`
zM&3-pWMPZvbJ*#+ZjQzIn>*MdRw(*D`fdOs7(aUIp`>TED!d=yBIaEcn}2)#k>TAW
zj_%LX`iWtM4_xOLB`=j)j#<8^bfjhAIsfZdmjHNFXP}Xky<Z}%ldSbkfS`dzb`Jua
z`5=F->f^J;*%Sfpsu!XcC#@m-9jcn?i(Ho~Nyj8fMR~>UitgN4TeuGLld5Y7(lmGU
z7i9gn<q~BB_9<I065y_QA*zH8#9yuS8JBy?Gpd8Z?EOx0m19dHU@lQc*?WFb2K%!*
zTIrZ*SqAkRvRXLirg=yqP*C<lRC98J>pXv{-r(ouL%;|_)L@*n?|l4lmjL+p$J%8R
zUspHhw$}eXbTxaB=J0{vXK(U)tnS?;j?LBDV_!lhrQ^twi!JFYNN-q=?lU{hPN)!)
zTj1nm^yD$M0^L100$vBSIV>ehNU=pIqBtblp6HlB9J4Y1^d6<y<SCg~FJ5lYtz~}*
zTg}j#xs<A>uNM|Py>raPKN5vuHyHLt7B4TCFhn!RiYENpb$1m>LT(LJ!cl=UapU^d
zAwM(G3mI5YQfzKS*Y~AXVny-SlQvEL-~Z@QHRJwI-MmEUVg5bJv9P3RS<`V2osr*@
zeCyAwic;R<?aB1<xj6mLO&t7Qb0L4aYFsl+2>5%T%>j~peT*?e3RNByw|m3+K@wp>
zQVVq0c~7~`h>@D)lKT|Q>`hardb`)22X$?{V@96@ykDEig22qi2x{I#=gc5bDIAtU
z%x|OD@QzAHjCg<P=%=p2P18&B9l|{9ce%ujtD7WGCOWEx=;O_!L11Pj1T}xJ?#_D=
zP${Q+`R=E8agW4^_ou(!|CFHAEcd5}Tb;d3N@%}6iO=K--PsRA?f4%ofs6?Fcc9JT
zLCQ^ErU(+$aJK2X)QyEwK}nkO_q%5Dr7irIIKmFJoM7!Qc8C@oBoYf3etJSotGDbN
zWqegJ0Ko`~o+1^1ir;~cV3U7H>megw=Twm8&-J2-sI@nOe+DRMqYTUSkF||%F0?T$
zl#CmnT0L_9UI~UNWCsWu2rkGKfz9rlw3oO_wR_F_yrdf0wC7$aIl-K)nuSMRZc!(Y
zA4Mq^Yvd!t9FiGsU9Z;;+Xb0e5ou;Xn*&P*)jI?o2$};8@2q92co~0<Fi({EanFeQ
za!f&M1*T<XyzIkkmC2>5hBh~G>YI4LYf^QzQlHBr5vl;9Jf=%BLaLb7!0jh#4Kb6v
z%p7sR6mfi4$9Z|ViVZMD_Nq$xRv;@P4TL3#pn8i?1ug3@+Z9#cuGrP={7356=|J{C
zb5dsP<4eTzgD}Y^uf~5}aU+S({t4~b7@5D-&6q>qwkr^3Sp+pN1KE38kRbc!-iOE%
zo)jm#rzZWx*9MT5{6R#QuY_lHOg3I8W2^avkfb5>`S+vGPD$2i)c}MK(B`nE8zKuw
z0#jnfb?tm1wsX-7h^Z1Hu4}xl+HTa`mtw!hJYQatYB6}b;HrOWW4fW~IEOl_6Z_89
z$c#vPft8|(DghCTpAzqFZ_}QgL~vx&xX5k!w&W7y_z>1M9Q7yhxjvyiQws4*+%ORG
z0zlI+b#%x*T_V7fOvlZ{$c8XGiNMQZ-FJ$&(^H9m<`T{yl04-pyO!#U?4*+1B9igh
zbZCr>Iefsw#DafFW5yDGOcjlY#UF;+5-Zn<rSw1S%pgkf@U_)ciH-U`^yf9OW=`0x
z8`Y*Ku42Y}O+qIv7T4Z7V#^aP1U2tNqfoNe3{2D7d9Y=2^bWg7jB&}<;<BX0I{~sk
z-clf5COQhey%3V>ftIoC$~>8iBO!ysQUe4Hd<GavS_6L(_mt`y2AV&~7YrZi(h0U*
z|1*fB7cjQ-5lIo2@5~q#TC(J^?I;bqf(MX5*c;_Q`MQ7@#lga`hL~~nH=&a_%2VDP
zYKx&uhbaQ4?24J@rLK1=GA(E{+Z@4*bS*~zGihj>$zgH!ERm}|e#cdxsIkFaabq*D
z@nkk8lJtKvzH{(ZZ_zh+Ppg^g*vv}GVnM^Wi}C;o907;onOCxFl|O*z0DOF&j0+(Z
z*U=L>(``3fL>6u}5+z>xj1hd4y2AZ%PJmm?iSEhoHY%r7>nmW`E3C(nJ_;pmeUF(p
zwf3%d-h5{-TW4{zVJ+l_MI6JQkr>8=C*Hls8byC1WfL_grBZAa{<iA`00>O3grF|e
zc{|Jy;f|X6M4(?H$Fq6zJZLAyviUMAI`P5mNca1Y_cDxJpPpA8HeQltuMZG3*itE1
zfCm9P`8m4zay$-$O)HHzA3MD>L@WP!;m+bvu(f$neC&0feYh9W^>$wkTWe_|s0$MV
z##Mg<FnJYs^*x>jywuAC>e_e>-94&onEnh-N}|+pGf6o{$yOghLuDjQ5df}0QNIVP
z@1vOz0SFTO=&9gWc^rTk#k<lB?q%VKJsCq8@th^|p+93t@ImAHr@_Jx`vB*C)w(MU
zao7r)0?)j%FxQh9tBhNpg<tY1$=6+J^E?jkqBCHBFY~?B$3;?vJ$+_<*zsn>sa`qQ
z>tITPekzfEJM_QzL9<$EK07iQMyIp2r`ST{U>22>9ryT;vZ*L?3rAd)=K95qx#grz
z@+8{%#36nU0<NG`!R(E$KzlY;H{IP2Wr~-NHTZm;#?PKFFIkoxv;7$uHEE4ns%f6{
zDIwo~-6T+}mG(KGv38Kbmb(%_o5R@89V5V#>cHi6BHd_zw)S)|PC9v?S;+6tBn~MQ
z6_s?t4vS`AW6{vIhIiEDJ_rn3j0g}k2zqBD8-S?-S`xz!No6yw>ucD~ew!(cRc#wF
z;MC5cKH_52eLyc?&HdeT=AV2&SUtW|c2z2WR)@k^9aec#;Q=}0y264Bgry2W{-(O&
z<w0@Zg@C^!Tw+(xKP<dcVl+&et#u6lxS>EdjJ|?$!;hXCW+}zP0~Sa`U7Y+=gSnjR
zX+m5M=nFj8B-f1?|8QV{nCzhN4|Z{UyVKnG8Sype8lTCAIo5Bq5Y&Yk4=b1ulgbx=
zZ2(Dp-xzP61@<15mkFmr)-7>kXujdo=+mNA*Qu9CSr$SYYL57*Qh^2*L;#`&XmeO2
z{S|Np^$CA3X=pruwI`{lF`f2IWe&M2T7PKca?bjPjWV|4twpPlvPH^gQ#J4@T81^1
z=M!Xb#N-p8&4H?SO9B9Oa&7jcPso3NuK&6HPUT#buZ9XYkY^2w#c7W;e?s2qNvDr-
z6yxCmAYR5aB6pG-4UC9MNub8+^B(sK$=EdO0uOPjRHgb;iSU{@+(fIJu%|p_(vqf#
zPAaXR&<6LzIf9jZ34Y?+|67RiGGiH#`&|0nv)z}gzP!k8|K)6*>Yw>di?1+$oiqAh
zrFfm{3xe$q{0+|x?pu7heeskpKycJkw^jlBF}FdxnxFTlnthnkUmAXk4e#7o*T&h>
z5`-;2(&vIL?!DgW{_dL`4;>+eBPL~lHiz?)O){*cZww?yhq)M06P-sdi!v$_QMdn$
zJQHW^?imoYIpQJV(Ytj#A1vd4YDQ^uFW?Hw87qMB78DOypaK&s>}piL8c3e{qVKJ`
zD%wzk#3?bEYDn+Xd-p?g5*|aR@zwKFMAH3iH))Q#z<+zlZc=!7Zq0}pJIRTh_}hCm
zWb~Ry;Fxa#N$ZJlR`)A)>ib!L+qszt(kFo<CjBAoji-Fq&f$p3yMQ!*lxj?GM?}cZ
zddH=Y(ERdAdcYM_A+)SactWOJ&Bgki<mVgGF!zI5RAJ|veG+(tF`jwlNoQRo*<v)N
zT`8q?N0F<#BuIF)aQI_#0wFCKPJH&_rNsmz^Emm>Z@)XY`|EGrC9wQr@joy19qyp&
z*xahQ3}o|vbcvjtK415LyMwb{1%|-dDC8-1)Q&}Cov$yvaAYYD52(TxHe=DW{3zaw
z!X}CD6C=%8@v~Ds!jFdUNbGTO?4q8QSMIntn?k~4;WWOw7$XfE{Bo;|8V@*UN+V*U
z0K=Z%Pph`e*$|X1X<F4CFrE3?zqWWR{3ivajo^wN_5mR=dm$fx__{*l7rU<TtN)$O
z;-WGcYTh;PgQEDkIi{9r4Oue$qkAflPZdKt#h7=#@zPfp4?;Ykib5UTzSc)8in<25
z@l2FFg#q^S14~!OHJbCrquA<e9jH*8_m5HjDg8W+eC2NK>2nqpS{JVEojeV=f~p0x
zH_n-7heja=L0GhZDXSElBy!xJ^4&0zWCNE%TvSZj!b+3)FpM;33$)|w!*4wP`$_;6
z2JI701^Z8gJgs}XV3C^a?tgy)<A$4r#Rwr+r9gMlB`pZ+$eK3PEe~(rc*EH7)&dM`
ztqc$}Xl5JQ1iRdy3<=$kEz|k#{K=QA-Zjn7-hKX?H_mr|4atTKYdTKl({)}wvOTV~
z7MeB$foD|^)V%gWcC{dJPS{ztd&|K}x=!|NZHGXj^y1=;p|C%5*VJt;`id4pO4!l<
zU74xn6vM$%$YG}c91y6JqqausUp)zZyK|d9X`raQTQ3^Y1IAg85a_T~xyQEu<M1ta
z@Ko2ZR6SvT?-bAfaKH>ZOAs;Z>B`Vao2}|dG3C|uH<Jru#mN61iU^9Oe;2pFqAP1k
zfBU1cnNap)094A9MiiG^b&C{`BY#)t{X~{9T2kbA`RxRiW7sV@oa>fiQYj^)7qoR{
zO^r*>^Le{oiIBo0$neZ7la$LIlP)G<ikCjimWh9VxBWB~|EYzB*xioCMg=!hQXVeJ
z|3U3rOqJm~xm%kpmc(He)n$qS2scplRH;y${M|GiKxw}#^y#y=3l{An{yGJao@+SC
zkAc(zf37a;Pp_Kmr&`<A)j}!3u-4)LK?5|~U^m!BWAeM$Jx0B_*@|D@Ilt|mSuaid
zc+ld1W=#U9?1APQwzFHG+dsX!dUo<Wi0K`d3Mo9|CZ2ia>W{2Q7<({gFCld50YLIm
z$!TP@Es!uoP=W>*b>tc*e!FF(yj_em2chOtdxIMs(>I<4UqQWrus539+=T`q+%K-<
zWkcSM-ah{N^?tPk*SOkW$uG*7HAbFvR70JAmDw%lENuW(3Qr@7d#QWtD)5ao_nG9h
zMcp^Uh%tk$j=<giZwc@<+=R(suHuEJz45s?D)-Z<oq?n9)4lJp)zhj`17O&{=Mdy~
zCVO`?oa=2kk2YmS_^ZKW84z5;Gy^t@{K^-V(vn1Us^(@|vy~b_;7ol4HSgF?&ORuA
zn7zAaK=LUTw+m6Y9|W=)(cAeMG>P?)<CMP$Ol9bQMjGmmYO8nZ(+Vyvyu7Rb(^4@I
z1U5q;sCoa1dI|;wGx6J6ns-tu%h6-Y)o<~%A8{h2lfNroYftBU;WR$^e3@FK^IZi5
zrjQ>XXrO1Q+5jOpG#UD>?^LhHxxVRtzjOY{ePY9{UwiuCoC(6o+4(Bi7mdJxz)v%&
z?l3D7K9qxT0E#3eS&*l*<II`+cfB_1M0&hyLN^ZI2u)ZfJ>FdR-4nBH*!Mck#Efs$
z4Oo9XUfnGiO%j?5P6_vd@<siF3+9)EF8eO$4%6Shb>97=R^#4W{xa@63Ix`FLSSeL
z0l8=Z1%P5V66t-kIB%cU+gg4cZO9GyD*F6SICqny@aa3*-EKGyH#b@*JQOEpK)_k>
ztSh5Gusi}n$vj*-*W|MRe7eM)sAh`x@3;Vz2aleA3B?b)7v^R0<usH%N(cf|(8JL1
zE^R|n5CQ;w%8=t@Z~Baf8o()k+Sg)m%l2DeGY4+91;j?Wv{PB951}KmF#R}H%Ein7
z(}x8y5IB>;1R5uwEc+nsJy68$U5Y_9YWVByncZ8NbHKSmAjt32BEu&G6kuQEmv<+|
zi5m}i4b^F6(Gz`4#;!c6HTb=K{QL>3SAH|&YMA7PPD|w1wi!5XIT`+cwUl8IlcuUK
zEmc78`Pt%*M2$qE4kDZpk+up9IG7hj9Dr}>nT*cwLvIM*5cX-*59N*D!6`hH%)`B-
zowXXkw^+SCSouUO{t9XqR510HD?R{1&b>MFJ&r=u5+t)cTr#n=y3SsCHw;%c+|rnI
z8O*zr(M2rXNAd2gPN>j-_Q|ef@D)@kp-y8=-Q8)XZgo^SK^&E+nW)wFz&@=WUl4A`
zPJr`U&D6|Sr-P0vlFLsQvstw|n7}ZFyBHeY*Mg9@hzyXGafVUfi>V}iR->NY-m%<=
zVsSVtbEAe^;tfUCCzRdgAho5duPtIaoxw2nngC&gUtG-6Kqy&%u5T2ErLl{{s@9=1
z$xxF9$<6kcHV41wh(fQS1`yY9USwIVD)PxEMJ@pG48LGXQJ)4y^0X3DylYP>tS`C{
zmN#MV@kKJ=Ka@8PCd9XDENat1tTxZ=A1z4+T|qs>N?a}ZoT*zBl@jh{cf<d&M&L{5
z*tNuo3zhy^?Sra+s>w;%3MM`H9?g|td`Io#5MjW9g*!L`eCwXc(s-4e3Pq=<$-GKO
zZoDNfRui}!7W(e6)}@06==FY$E_>480p{ezXf9LjCfPIy5Z+anksHZ)AXaYQFzoPD
zn@n+@1m~NqgxnJ%G6$JRlcNUR-|A8A3yvUgv^s{S@P!<I2`LIqctf<jXrfq+N>p1`
z`a?yx&3~n3L=jky-|+0=;@>}Ol<}{f(Fti=ECGR|<uEjb+%Yf$lm)c5W_}L1AKZF>
z*LLI6+G4ZCK<6hMy67O+ad(hgb3bS5^2VQ+e$qJ7QIKp&0$0C_XI)83DW?FU;Zi?#
zLR&Zc)nGh-8Migme$>>I^gD^;vRpqv+*Qr8U5hkXFXv0Obrq0Gy@H}7)M+fQyh5jz
zb_gi#b#geod*u^t{L<QQ-;43DqKEmK<me8AJL=HCPN3M|=SYgtTxvYBchepKY8~_s
zSNTcy%Gl<|`ZE(eiE#9?0OG@!l@)3fg1_r4XMe_jKI&<Nz@C-_2pfbDPHuq`xYdsh
zhLq5$nyo}6C$I+S;OxMz=%2MO0c&DjV(DXwn6tT!^Og9*ULNkO`(*HLJv{5mfg^8m
zlm+3NU$@F~sTmK%>fz<T>Q+4e#IO=RUD9FW<czV#lG=!Lc2>-92LPnUVFDdg^zCBp
z_Cck8s#cZe;xTTEl^eet@iM!&)4uQ;XW>VX0<lW&?E|FA`o6z|X@2lx6$o5rfT1az
zV}V^k%|mP?s!K3<jN2N16osCKD-Zq<eFmaS@^qes6z7gw`={0HHx>41X~RL_TiO_!
z!n{#B`LuGNh}Zu^?h?bcSo!y7?UB15d9reU{zegB@e$^2>pc@xRl}#Fx%s#*G6;-4
zFhJOV`UCtb&;eUqUOF1jEus{adLgx3A{Lma!QX`&)f}xhSx;<7Bmts)cd$EiR=1Fm
zvK@nz1%Yp2`JQT`L!>bS&TcBa4lb{J`l<uD6d!6n{u>V5#V#A8t<EN>D!vhshVSKn
zJE8!n4Q>KOqB&oo5JDij_|q9+0bP85Ok$?mLaSW}=a1$T*CowOhBS&XP5yP0mgXOe
zE5Wd*X#v6p|2W=MNs|PER5vz6R(tU~p^wA$YAqjmwsDf;673GY#d;FVjhvf*3mXjS
zJ06!-D0_sVDJ(xrQB8XQG!8WAPIkk8_Hyaf>I)v=?_9?%*2VYos<yx3|9A*hjA>%C
zdB$fQ`AseWkpU{0qG4Gv0J2Co-3g%7?<`iYBR`Zv(YO#KMQ!O1L#Yd&(>qNNh?Hge
z&?yEW2=NQ1^j>ZJ1SK#R?+gu0GO02w8Oy9cUr$+Q?f+ql6PJZ@adrLrtt0Dymv3|;
ziK~k1x=@<OiUyYNN#N?W0m24b*{aOyw^5&w4dkBn9Gv?Ci9xX+OQ&%Nt4uM?cFbB%
zMK`i5&(}pcpYy`8WHB^_EUR>iX?cK1*aod<B?t5Vos2G-Uf1e8^BsPiz_0OD-RK%l
zPW^ezx`TZb)-p^L4b1+BFel1?l>jN5ViVlvyEu$g(th*>XJ9?v&E~cVa$##Z>6|@0
zK_0%WD`42ugaBcK-dw3y2y2j$?w;9fNp{5OarnX4t+0%bd8s*nPX9n{oa)C0pZpr7
zHCrnw4kLyMTBFOqPBS9XJn*b5r&W>_(j<ZMqNx3)s$Df#J|52kNnr|q2rm950X4qL
z&u6+^2as~&2oAM7a(4p|8TbWLG(4+5z(;bOQg_wOlI*kJ#})g(9Bq`i@)v*M;;<B2
zAX8R)=GYD?50B)qeu*{j7hu2vKTtdjkq1iAKL{wvRz(F_jy?R4@YlfVoG9;XW5b2Y
zxxL|**60t}&lwPDj=+F_L+B@0K@=sSi%V+N>Z!lLKp#i3N7pJPRnH9MuX*2<J3maG
zi5;<~XVN_8k0+(leF_4TvzkDW*Ruk_(JChMov$qt#PRLoJs$jO<D|nGCl6HZU0rnZ
zI9WW1_w%5%a<-N^1rZ(qB`ro<!wO6xWk!=*RqofHE|Xtx$ojZ{`;r_Fr=U@+i)$=&
z&+Sccd*zPGQQpJ@zJYZbDP|VQ0dq3ZUf1gLSA5r>E|XL`^~G7gG0!jX_#1s>qT`M>
zm{-m#@in9RiIUb0NS%td;Giq0ulNO1P&QXM>LK_bBJ3!rN(3ow9IOY$!8&y>R9u|2
z(fMzRlNVXu3$gWood7c;%?QuB(hGk~EiDO~&`Ev5@`O(P8l`<F`^KFpky?N40$CNW
zFSqwj6(=a3{M=AE`?EAgTM`5&=QV*MMf3iFlo_Rcs+lR>Z@7N(iI(}3%>RfCzll1Q
zsVwQl<33mmluz9_e%QO@9!c8DVFHaK>$C;6ar4{n|DL>mr+m6}T>3%Ky%Kl!P6|Cx
zk3PEJ9dk?-Q(StN5s`+#v#taLZpx)`16{m6X=e=ZZHP$N#>kF_nr<7%HJo*zfT5Hj
zGW1Y>mb&z8)L3^<7MexLga;hr7ffxBR7D}g@U8yo#zZdk%YbC1-}|1@&T$v!{?#(2
zhxe{hq-E=Wk#mFB>gSWk4)GEOHlSsyVs!pQHw4tiQtZ)HaKskS%4Q&Vl9XY2EiOMd
z9T)SN@Z$5?l#t=BFv$l4smH^C?V9Z6*CDXK;wo}&o=m3>o*#w#d=(;G=dyLgm&XmD
zufmu*U%j8gywY{5)}G4Y`TFJk0E84U;IO+`6^B@V0$CXs{;tz7{&>DifA~U}ATFk`
z5Wt-yFf&ftTl9%3VAGhaB9Afv+6L=1&S^Lkqk5p+6Cw?rRQ{VI_K7~vo`rDz%`%7h
zR`j-RjR%C!!=qiZ8<sW`wyE@9fWWh4#pw2hd0v2p!ozcE#<hMoa6;N*r~7T}BORPy
z$byD{2kPj2G7E%GKR=R6Rmgk!AOK;3XI=Tj%nq(@fwFG#%jx{=H#>q&GT%FA%nOT#
za7vz|67@MUX?UFaT2gx;{@6C^YIH*zBQpY?8X#;SE#gkXo`D%)qFwfxBWO5{$KQ`D
zDSU#HG?R5Qgl0KD|F|N#d}DUK&x+Rw0C};0m_P@)SgA-9?wTwPBUd~pYTOU&@gI=u
zMd0{-OZa0%s>4P%9J8q6&vU6<X*}ynAG>u%b$L`x_Gwy5obRT$wXvf1vFw!KfVMJj
zX&*M;2|}f14m@<#j<ArbJRv0R3d#tg)3_V_T@KX7=kWW-d%}_9zMWEHzYXJolll{X
zZAu1Q2vDE~A4$^s)E2OvDxp)It5>u*%PHCLfI6yT^h#X}7bIHGWV<4Aw{|ITLVv_$
zUE=U@9wE0V&Poq~k#M^YzRkLu44+bdFRZ5|Xnny~3P2Qr3Z}fi%`yUWR0sXF5-Xk^
z1P%MBc#)WfCPrqQwpg&(_e;<ZuO5GYzn@*boS&aUV2hyv!Up!y2KUldf#k8|xVm$`
z-P-xU2?^ihq0&JepMT|Uw)NvXh|pC#lDWR)nre`w*B%mwk)bL^A1}xk!qxpyS>6l%
zJ7L6r8<<Gr<wa@DGtQ6*+)Vyh%=gZj(;$E8gIry;Bid^p74xUlSrC({P@TqqQ%y!H
zm;z#wxILv{0iXV4JT6u;77_aL&#Y{ig8Jkjp&zABUjf^x`=fK-FA0S4S5RuC#pq+^
zo9CejPVDZf-$f{WP-lIOTP3S|`d^8$0XmssA+<!DBFO*IDJ1p^%AeB&y07-y09(^Z
zgxTgTtkIo}ue6+c|03j;#_73#6d02lo1pjg+e8VuAC(s+NO@QpmwuxX#RKS>OrZM$
z>}M3HG7#F{gKIy3EY!ZxNBZLHf5qL1J8Sz9uWvFv@c3Dbei;btQyL&V%65EE1R{lb
zcnt7VO|00By1AGF!jz0S=g`I0c!^@pgpy+CDP~-J4gg469z(Nks(!+M1wbG!ZtlP7
zw_c8J>`sb|-#+YlVa20`V>lfc46lJ748=>Fa^3gMTF6L|UE#F>Kxdx=gh$VBZ`p%0
znTu^EPDc4$MJhge^JF~<iNSH3jnU6H;`f}V9P)VTnqW>P{9hqofW~zW6G!cTPm1i>
zZhYF94TALR<^GL)e775aBR71u3)oH@J|3H<yHef81J3m^H0%C}2O^+{q`AH!o>F|f
zt^3#F{ZtfVD7kR5nxjV8jOjeL3)uFLr7Icc+Cq}Ap!{LQ=wpIw=Lk3tD#P-c@z8iq
zN}SiMcZ=PbzTO-q4{os`s=~GCev0JE_tUpi3rS1j$#zR}ssR{(f2=!h(45Jjnm}0i
z*F`I}U3ZH1o!4oJY+B|q_}9G0YU_Ev%nGxIpHfDt*5YGq=I~VmFfw4B#?ya-{IM3a
zr<Bs_T9MqYBknwTtXKXoaaWW?4m4QOe<12Ozdcp8?r53~F}VQ@IEbSVUxC3lr*2Y3
zJFWX+BPT{*UsB<J3NZK`)Z>+jR~O4ZMjf%~I53dGHwAzJ2l~KiV{Ec&DdE|zZD*SB
z);Rukzw?G-dfRiHBWuZ<biFq89q9~~d^z7)H}AIDSKsFHTox=#S&R-b@U6<>;dh#m
zs4|}YVqfdt?D}lb=r_(pxA3p3QD66gbtIq7+A{SPROLc{U<U+v)|LK~o5UbeQV+Ae
zaOZ|^ffJ%uGc^#3e{I_aCNey>+Prhi{iwlc^HW<H>R)<n+}*vsQVz3mP7U9fCUlO2
z3;*%Ul9?LEi5pRjDV)(~B2M3(_3Ie2XEE@2PX^yK1_m6?S*H9U%q+!An+aay(~%o>
z*2BbaIm=Cda8N9U^x$VEUZmwuFQ*CTCze@ycLYIqp*oE(xoa|esjinyt$7(uMQ+@z
zIP3Vm!uJo(q91^b0za{BZaua2sERO!^5tn(#AE}gVCqci>p7`{;$)n&zg`!Y<Z4|x
zU;ME56Xe4zN^Tq!dkBn#*%3*E48$Ke6Vm5uaVemG5ej(Ll@aD~E=K?|>_{=$e(T-m
zbF(&zB`V{qI0cpA+a)+?{Ln4yEGVLPzcc)jN(v94_cep&5P~z=Cc|OQYW(F5ph%-S
zxj&c7u-sS-ecZYDz9`j6^FKLzkMgO^?!l7+gbga+DpdkNhRCV#!AYdVX=u<RWEx&3
z?(cYi6!c6E>+!2vswPELN2JA<dI(dl;8}}GA>dLdw)wG}K4-0QXWFLqkwzu|l1f4#
z)dn$<#%&@$@f%iNehb$syvZyJj|~tuDDY~ppaEpA@9a+Q+^_$w!qdO#ulvUU6fh5`
zGpR$?>Ph!8$@j+iANcTrNc@5+Mx^oj1L&%Mc)jq!W~9WaXH5>9uG1Y{4a>=<e%u~Y
z6;$0SvS%x?vbhu(V@&`d0W+IGsd9%Nenevqc-A7>!bhw8-47NzU6KpsiCb}?G@=?)
z62?STo|^1k7UDDWBbn@BQT+krud{J%{&;@O7=E+L`TVeeo<-OGU$UGIUB9iJ!rdZ&
z?R`9#__&5idKh7MF*Llg@hrM5sFmhZ{n-*G_jS|T#2+8hw!ZvJ5HV6cc(JV3b~`IC
z&gcZhNT|~&S6DyVOD5`bgqV$Ia$hee{yF6Dq~^6tDS&g8YU~EwCN(BkU$PhHspgto
zU}xO=2JsEQV2aboWJz1uq_dDC(lTs+wCY%>G58d&5cJ0yXw2>mZ>!X#T)pFA{bB#p
zE4nZ+y9t!4c=4gC&g3pdmmHm_)56(suq9bxbvG^=C@4G}zh_ht)V7LTGd#AElent~
z`oL!bMV`{M7b^n$ot3w@F_9AcS>6ke@}RSK1O8H5HH>m1_K37U`L;Te|MN<JDIBJb
zq2V?8nU(Yb;jXqHK(ZiDC%Qd%Ha3;IvM3#8)&C85m62PB*$Oi)R}*g+nUSlv?q1x<
zA0ZcHQg_6&t_-Hq@zN$8^6{{pea7UzPTW~rrDzMM!bM>WXg%pR`~Ews!)7TqH*G9O
z@UQ@3ELgbZi7H7vr}XS=P4+&2J`#CbR0jh8E2Q_XQdLWBt4QaNKw<h#1|EO{3$i^>
zSx6St0;MzzyX-iYX(hk!suK=iYdtXOM}50kR$sdMowFQe0B#~FMu%ux$FuTnHom61
zPba)RC;jyI;9I`hzts9E7MGW*S5Nuo6Mr*KxGwbF>9>W(ljN2L2phzI<a2%Ig!D-_
zRM>l`wr0rJkNVe5T54PUQ-v$2Kd`AEk9YY*8O_%4Qv0b|y5HYTxFZkZ#M<PLRH>K|
z2-*J;ENMC0>APJKNwIY08SJmC@>|W+R0Y+wiWEv!)?P@dO<9c2cXFM3#Da2v)NsSI
zwKdLrqT<uFlwoAn?Fd4DoYQ#$HDUH0BCGff)=g*`WD&KQY}z(3;1I)C0^(xa+|iYR
zN?Xn<oX<l}IUoA{OOeN+|DFBp^}Xj4+rLj3V(g&bNpiCTgbjpOIP;ew*HxU}=<;#<
zWqKvUnQ#`|1*Ig&Ft-#_ox~1PRcaTJ{fAUO+~MH&m&tqb^}lm}Z0R*$ZnvXwRi!IR
zATek@ai4L*Rpa=VWwk1@PI&fyniVkMpq-!V!^u(Hx-V4b%h~eAb+T_<aW63Qukp!-
z{9H7{9(VCrU*pZ!VN(b~%wdDc_zC3E9V~!{QtRRu(!1ZGu;TmM>_UXv2tBeI@a)>f
zW=wha*0%^(P{GuH2Ti4TEuBf^&iXAgGYSv8sXz)lNFE7J9ju!NqY|Z^-i28B%QbMd
zhe6#F&$_ZLPUpEctkTiP_@4YD)C2wdTJQIqaK~#+Fc1Hk5#0r;K`es&UrO4OW(!;O
zYraI(y7+rZL%RL35mf)0EHS*GU3{bJ?CsQo%dU&|h0(r$0s{^dyoG(7jKxmpjAZhU
zP}a?U`HXXMS8*r-jp({B_0Rp3IM-!oUt3@5j5}rz(ipMJI5KZ>a`Qh4oapL05zbTN
ztNi?xhd~&p5f*&9_)}Bs@&Z8mb=F%M!nYra1B4A;hH#Y!gC%P=Q3ZUagW<m<%l=F2
z4K@k>DAC1#H`3jceRnmI9mNUOY1Don?37!9v5mTF=1X1Uw=-4VzYhIH^4I?-8+DxC
zZ0##IWMB9V1=fWf9J3zbqdM2a{2HaBW_)iP#-1_NcaQZN{>MjP4<?ldm;4%~Z+eDx
zL>`-O_?PUJctsA&7J_;xi_uCoe(6QEnCwPtr`k7vffIsF^pHnq1oxi*kx%Xt#YA^R
zo~4jUa1CGUVN}0^XI%-U)K=6ceOGO(6(-`isc)peWfS9t;Kgmxq5vPS=dA<wL?-Np
z)v^SOCsi=S(D3d;gBzv+`+^hOi)Hhx2?kpg5p+1~r2|o)>*+73d9R#l{d9|<L_wiC
zjoQV3xeq_Q#bh|!b#1X;^J{<Kdz|0*&)<yHL^9-QW4)<y`~FcEccqMKP-`?|85nTL
zL#m%pP*pnmOx&=aZvAW^u_r;X0a^O%m^}Orv!0PTziw0wN~;(3+++{~Vn~b8`C4Ku
zngXb>bs_B5IHPjoFqUn8OuOWE1n%M(9*wzw_sQ<HWXF7K-T5oNgVH{A8K$=?f3Dl=
zr-4M`qK++^YkuvUP<!oKo=n{TiRYGKB=U`~Nq5gH_;<ZFyi5()OzmpL5w#3a9+4Jr
zkq|xL$tUK{Gh%Cfg|p#(lb<QNUkHY8EOqUh=Q;Y_HA|=r5H^^`C-=+3A2&Gk33GRU
znAPXC*}zt|S&4U@aE1sbydmw&zl})b+plmfx?m-Z6Pq3KG9^E-Zw@7WIW%f~yix6W
zw}JEa^CVn$C;=7H>~s|WV_V<kt7}z|3j3AKZ32yR+HEp&MbWkxzuOSLu~(QgPn_qa
z*&2?^M!u-jt|N^h)NSKwnRq9;-I2S0Xb>lZ2^9HSP%%9isAm;!0rym_?{e<_m(sZ2
z?%gmA{%xLr<das~ADW&<wBFXmv#vB#V%z*cc#zO{Be1Wh&N+XaY8!WNr)6xiSNK3o
z{>$X&gVMg`bCcF$Qf#th&tU$*&TraMIT<B8@cXzT*|lIsfx`QaDo!0bKzZnY!vT%%
zT|${8>U<?LCAbQnb>*!U*5xaJzu_@Kqbw^nHAo<g6(VuEziTqtx+56+oR_YAYYdjm
z@BnyCsME+|gqT7iC#zl(UuPABNQy7)Ems8o_*W{w+cQVX8EGNLx_f2?l#x8BTlfW2
zJq3xm|A0q@POY$nuv<?WUnZ`9-Uc&lE^p@ug+Avk^sTdb)fvHzYQis=BIQfl%;(~N
z`g@RwEFLt!mhx!KErJ^7h_RSH+YBso^`3Vdba)u`foD*i#w=YC4W!|u*5LPHs%u#O
z4xDm7oa^8$1!gXuYrWu(kJ?XFP0c-xGLrKzgZaG0hnsp)vaBdPrp~p0!`z%@Uj`Xm
zz9YwGn~>qI&RekRA$q0zhg%VrZNPv72U2adpW<D)^IHMND2!URfyRHiOvk8@@wVN9
zReLOrSCP=lb%NfK7NeCu7(9nEZH`yVP%{ZaBtK1_@sBZR;3$DnE%PVLy@<tWfy5y6
zBGCg<1zijc@7(h1y6Q21g3Qq?R|2j)kiDY?bnzWk2{1-slj?_&Yl1i*ktO%A?%#>O
zdY9_l@vw;Lc5o7enZ*Per&R@_m7g4^9>fy;F(D<T?5+^~udR>vO0a8W#25B1Y|TNa
z)0kx-Rf0rLCX`GF%A1jHdY1K{KEnwI(=yqKbj2>25YO}PHj2D|jdB4MO!ef&C^Ujy
zTvC@t##^rc^hTXA)lXVKY&`M75qrg`o*3+_YqfEIdN}4Z$bVex#$3z2l<!cTMizZ>
z6cTCDQqmD`^qH4V(%i&#<c<Z-hbw`4ZsC<&|H;1k$~8u3fCH@4n5E7laFtA_*7DK7
zpzY?0uZmSMJ;~C4p9=*I5M82>=s{Yd@M$?g-2G?QJV_NaF*Lj#)vv32fSJ!_mcC<G
z8_w)k&UBW-B5vS}mWxT`^3`3=5ez*Na#sZpbM>%Byb2IDV0=kx!HoKhY=~YmT$$FD
zV3V_gRpIU~(!t83;-dwL4@`!RL^5s#NkTF?OrUWVW3q;S&#;Ix0=s7T^Hc3=CT3hx
z1alT!oj>_x$BIJ6N>P^~GgaUuc-ED&P?jGGz`n18X|}uVW(YQ#KdhK#UXA>FmJy73
z-+LU`Rju25J~x^w|NjK5hjI3n2|WEh$T@cHEzT=mP+sSs9#w99ycyyzKG)X0#^?!T
zQ5B=Pd|!iquB)Y;Z*~!+(g|kycm2+v*?si}R}W}_>=JLmdmXNyJn@&kIY;mxJ84ZW
z#^3vLKd4}7P+GAly$;R;;4Bqx<=-y2;&c7*sD8~?yhh?T6c5OvC`NPHJ_Au|naoTH
zM=qdmRGqu7(Ldh{F2fPS17Ww*FcN`n9{Q9a5^RcpfNSGfS88#wt$%?27?Tp-?v7yE
zr<Q2eE~lQw^-;n3{gm`C7Pas5bl(PnqaR^t3d^!cbktEAv=gC{w`N;?8{cc+@s=CL
zF?a=N-|OfSV3e;nZ>xyJJGvVTdPq@>Rw{RzF8mNMQQajjl)NZu)Nk<@U<F|6qv$P?
zi35#)H-z+0`e5vz0)!3X^O-7MUEW~WwML&|A{XRVNyTur;#cr*pFZcU;w}psl0f5=
z>9_YAU4mpGnQSJ|IHL|(16x#TN2T<^XavXU2&=K)nqS1tzr=QD&ZK%@T|b#_nI{?$
z`X8C}S&c5qF@3Tp9A@vqwc@@Yxh{B`pv?4tWHV$V={CEvwL&z)3m9-%>Q`>+r>u19
zLq6|<#`pL?`)=C5PVg6CfhFrE$1heD(YvEk7!YY?z<@&*Pbh{F>ay>$Z@WQuL9M&I
zNZyA0uW*cz+LG<h@$yZRRL0`dqY7gTNZ>U@r;+6m|I{P>$;mw5FG1*nCAAUh>R}##
z28q9}A&`i+NG1(5_Rn4^t6)H+B>@8ta|I!}&!INbwYLwNB7{$4j;Zk1D4zYRMr^WL
ziN1bvB*o^2Ub^<0R6!X-!&~wk@_86r{XnG!%v7+bqTdekuUIzHrMwr5$_e7EX#r3h
zhY1wfS^bJL7c*<i6sSfN-_uZBr-oF2Lt=B+Ux<p?3d@MkmZj<%lM==zNW>Fhz~ME8
za%Df|Q~mww_wV-sWay!M`SBgMzZIT8Rj%(EVk1Wu88&i~()mA9ojf}fLZinCM+J6|
z@6i71fhK@Vl7}O9&6#-z*B2VuYS3GfVzg4W77z;G{PFyl2wF$wVbeJYHe|Se|5tm*
z(v|P`HPg9_jgBf){)djF=#Is`dmH#h1}7nDp^Ub;-Gm>NGf%v98ok(N+)*R+e_UO8
zIMiPk=i8_;dTI~~F}AExWXm=sTh_?FrbHwo$<7Q#b}DPON{F#U82d=FFF$+Mv1ebh
zjQxFP7}fjtJa^7L%RT3F&OP^kd=31RW8lI-52E4i?G$Q|xAc}UVbOm1Z0$dE<ODqO
z33LL~subIxFf9#oJIvD_g}XN>axUy#CM;33-&So`{3EznY<pquhWG7fli9RYOz0b_
zs;~<LEOVQy9Sl^G^K~{~bDIAC50OCQ04v6Ge&(Ltu@18r{?gC~xQnKL%ScgyFF{G>
zB|dk)D@KZt2qj^C&sskqtdq9*Ub5nT>j$U<n&+?jQR71h46)WciW|S#v*yAw!1(^^
z1PNlm^7h*s(FK+hb9O$ZBi)^!?7>i;_efC_%3$`?6hgKeEX_YrzjteTC8gqT;dyb(
zHD47}temWmldpEaRr(iyEnGNWxJ4!Av>f+M{dy8;f~Q<+|2Z`J+gMn=sVr<Kn8W)S
z`0X7mV@`-JwT>F<lgIQ!_kxpEn2qfGt2?)PNTP@ZPAGZv;>i+t_nc4Zf1jr{q~$3=
zikdV~ahAgY5f_d6wTBSz70omg>I})$+obp*gy?(`?0Xg)*I{0NZv7k|O%6{90eTQt
z=%83jNXSS>^h^um?%1h^!{-V#9~^g%@)ECQPT|yMeDdylHp@neqFz%O)I^oTzfp0v
z7cH)<IrQKd<gPB|z+2dko7`Pd0S||0Jjq($?qgb(UOHSL12ytkK=glPzT!>8zT;1B
zBW{r@m^JVxcRtB~DSbcZ`gC80NUS*9<MPAg`gnK)1$y+h8Elk-#`RId{kUOtwUD=c
zZ2>A?K9eMm<-;_JAP;f9{Y#!rWH2p7ayyK$o`Tv{illfs&dztD_*(hiO2&UUTmI2F
za*`D(^2vO_=*Ry_@oZbEC~?(&v9pjaW^FE#-(<+xyWE6-JAp`Bv-A1ET4_ZF<@tyd
zHMx+*o)!yiwqgW{t3;lM1pmWWhSxNFnOs6=JG`|-=KmPO&vY$W5fttEUy|X!jIqw2
zXC+GUgop!VM40Sv^I%nHj3BD4@Kj74Vf#nU%n~B-Q;M4?j<R%9Is(fn6F?7wODJL)
zpd7ri?@LsF*^)#NmzI+<>7E5@W-(MvN0j~9B;hOnCq(ZnQ*%Vw%X)6Z2}VFVU}@N#
zabrJ%QB}F!tcvwww*$BcK*0_5f<YO#x_NLY#q?5*leT9*lkm?sDrSj7A>tMZdBpz_
z6TIN9ktS|8K>#z|ot+o|HOKOCn+b9WyTuWv_3nRv=_#ZX-ObF7&aX77F*7$dRGc~O
zMj{B_4S-v_DD};VD~+8{OvrNl>qNf-(ywbyxR&@=SmEl0{*K9(R3=^C&-=(F?8X?1
zHUozQ^0~FN$?Y(&=@kwB1KFBOM69<kZf*DX8s3_NZXMGyxjr^nFM{Y9lqzleMQ~M@
zEFk)SMM1B)Gq6dtW%-qQ9OgbXcq(79KVSw$VVmqi?{=~^-eaM24G<6RqI`Q7%b1h;
zl3MQ?%3ewQp;xwI<-XFJlmAkZ+K`I0#-U4CB?|Qku2+oQ4wJ8YOZo;y535n!dLiT1
zwp5z8oXtn&cO*R<-~woc!lX}Fw|MogWTW1HDa?Xy^I1UjJHCPW<FWB4R11h3Tnd@{
z;QY#yv_a5G%?sxb_a`*?e@r#*1rwP%SVkNB{lnB^oVWAD1qr*wcj0KNK>_W*#TUKw
zE}6K&y6Iu+Z21XQlJ{N4Hos$U!x}n`xVnZC;?`q=m&$tO>I)GVk`kY@6J1@`Y%Y_3
z`j@Fu!{S>>sDdf89sCToh20t8B0$JT_g>JcTdX7*8k%QC=K8qrN7!6sH$M(4N)Jbf
zLf?t^Yg#)^4p`CV`STkqe5bu@Q5_(1$W*iM&c93%(uCF138I_2r|3^Tq5n+F^BE~>
zqC&-iwgG-W*KFE03iaG`qGAo{VOu4CxeaKB7aT#91pkIm7XhNFV;OTE(@|?`p(M*L
zSrfIpr670qFNg-BceNZgC8}3wKwJ({pqvO-Avg`A^Y;{JV@sSYdwOjr=FClYga2VF
zed=r=QN0brlJ5RwsC-I;ny75{F-kr{&X3ORuJ1i~(jfFNQ%QyhbK?F8DL=-4FjXTZ
zmEbZihva=A)?0{D&lT`sHwvgHwdcYKc|B3+vOb&7WaN?XpCI&TqaO7Nh%UC={=wn)
zO!x2p9s2XI4h%BPM4=B3>74jKOAj;-IFyBEQ*z+n@^ihn!a)>8+pwt0zn1>P;ZYk=
z=5zc>RR7BFQN#ViMT3%T|0lnH<pD%o8l(!suyE>DB}sJg$PxdhYa%=L5^|!T+k}Ai
z?E{$i1G3G(>6$kFG3J#V=hI6h7lwa~Q4=X>^QStXJ#idK0SG>=OO4~D!)*v&gx%^$
zDM*LgE!RYL((cL$|Mj=nkc;EO6*_+AyJcKeA$?p=kHZDM>%(fV>N=c%+KkXH;^Dk^
zqzp<JVo($Hh0hYgbH!=;yV_D0j-d*JXCQxftC6&O++lKYy7le;>k21d@sKr2QUkE|
zEuxvZr=P6CZz;%y|4Ynr*z}OtfVkZAs`@1O1q$?NqXFGjigU5W9!6;{w#&iE#&`?t
zrAT3t9x>Q)rzNoLN$cBxKDGNVtC<wH|K^N<x`@Q$C^nV;@u<>b)`;b+5<1&iX9U8A
zgz~wM9X~k*{Zd@iOd{j%So-u?%05o*V@)!+KG?7)ZZTI9Bj8%2oD8QVXwu*uo5DGR
zQkN%(Ta0ya`7Zbe{1stq3Z76Bx48E{>dTJ8#vc%pf?f6cEkY1~zR8Y31XBH2Rd57~
z0D*{7{83}~|5A+FVXz`HHfmU`_zz=)B73vA`-rqPaaKcyGV=$Tf7t|DHjlGYN)%s9
z00<Uulu3=^P!o&gw<scG4pOC8|BtZ@FN8div8CAUy;r8}q{o=>$0$~fatZwT1l~Q<
zy5b*;3_od)K?o9mD3r@=T+@JfuY_NMfd7#q=J~vfZ+LZFhaAGzVc9=Y7DYp_syv>X
zK|FcW-*bpoHF9O&_g`X5;j(f>V)rj9S#Ac;Qyzm5II1T7?4hDFua5j5v1i{)h@81R
zOQsyY(!qV)3{Fj<;ha=Y+#)v8Jm?==#ANKv<L)DtItl52*8Iar8PsdS7QbHk7Idk7
zsB@@z0X<x$=V$KLu<Z1Ae5$6nUMA(+hK=iBy)rh4gK&5OljrjM`K?WF(cQs~-Ais+
zdl>5JXm9niv-9E?)d|u)^ea9@`M3cQQ0Rwk-|o_g6hChAr{Y3v?Ht6fPcm+8>zH!O
z7Y01|L+(s}LO+Asc1!$@=>4jT<@ZuGkJBr5$gV|mZ$YIAhq?KVcJSY_yo)leD^^VM
zE|~KE{lfc>l)^CR_GJr*{_HAP@GTZHE>yq$G}Lo1?7s2Me~9&5G@&LE!||T*BU+>m
zmN6&6nOgT2%9wk-jkv1cuZiP%V8U@Rh9Y`Ck(RiBYN#_OsGoQBl9nyG9Y#Aw3Gp7}
zeSO`-&^#wH*Sy?XFJmJ@;Lo{kPNZemtTJ@+v6xaPp6frU7Pdkpr-?``<l;E{Kg536
zdkd|uy%XJ3njT~+)R|CE=>mEXp9I5kHz}p1=X%gWz4g7}Kc%nT^-zvJHvbg+A-l-*
z5p;=voT!g7(ITG`)LkI>A&5uIL+7DaiDKox!`%M)e^f>Q?nEi>kG)p<_&lhb@~sh;
zF{f*i+Jpxc6D=K0R9UaSG()BgCka=81ucwPukBWSSrz|3u8?vgP1g*{^YD@X>WX`M
z<jo_K)7~o{bNlE1kEO5K9x`}z1n(aA)DYc&KU9|6(Z<4|!PP=JULO_ykEJW#s>aKP
zY&zR#TgxRaW9pCnfG)1}vmbHQzC|5ABaz(!_(Y%Q&+qI8Vz_NF)k;}y{Zeh_;6WqZ
z`+oWSKMr499mCU!Ilntr>+$fE!}%Fno^+(BiR2u6<|{yTqm@#Y|H18p_%9=2e;u-a
zTXg3oR#oGE)Z!R&r7-Na>Gkj6p9xOKl%@J5je(Di6>*D%T=j2V8KxAJeRLQwBraUK
zUMc#tratlbEzL{XK4(t?Z+6?<*TVzmXeddZ@g`(mYU^H);Z^*)QY$m$C-3V^TF(i=
zTVL7J5fqjrdCpU>KE6_JEckaPo6fO+75d9(<+lb!=H~8AS?Fu(FDLyY$o8Sm1@Q$D
zb=9m5p|C!lKMsV}V0kn|&ChZ<_*965xLJ68ESwSOK|JbGd3ysSc+v66av+<|wup<y
z>5lUqoX5^87US%icH=6(RzGy>AyH`^1X@McfM6cPdY=PD@_FG;a_*hxf1j{_70`as
zVtCxiS{%d3^_8-Jstc#t5d#yd#KMt}$GYkbM)~+ZTJtg3ctE5kpJq-=^c{byXwnkD
zr*O3LX=?;r_qRPt6M$XAHJ+1Ic>UjtA-x>Jmm>U;q9%;aG*(cQHT@uir)B-y{rgTQ
zPdz&Qh?FAuQVniahZ6T#RlXK~a~P-jEg<^+9bkbE#C9M2_XyrSsq{1dIAU6i)fg9X
z*@0Ed60yijdgFHCR*L=5Ts619+KjpA6w|+~#e_+Sccz@*9dmp)LPhlYM&x#wj%Y;-
zYKlt^Oc#iIe7WFN>R!q&7IZAiNKlvybJI1hQrE@B&ykF`azNTNdH$+@pN%ZD%dsD1
z3Qj}fKpP2tx?4FBus@zEnqy8R^p&8Q6T*;aAAfX~H?zzrFMo*;t`+{NLki##ifPpU
z)p}^mhjhW7az(sGikjT+rm>r(IFr<GZBx&A#eU~kqsvRsAMg9)F-!cTThCVFayqL$
z{*fQC^t2&6<v&cdYd^$)%JC0J!v<Re!)*aM%vb)u;%SC!ykjnQea#H#qUvq975z6)
zxeUAL&EN0&b6H((5Dih75RFQ%TL$wWn!c-soT(s!A?mVQtt6={1DmawBEq7j1Th|M
zm-?vVI%E_B{%6Qs=$Q%zjQ#4TC<jW)KZeoeU6Dmt#QIJ|f`~kS;s~hE<l+|vVi`s;
zV3^9}>T3DlHh3PD6z(p_vhkC^m#5>3(6|4qQTOUe+dZr2MCAW=Ei}G){QSEf*wI{U
zxW-(H&$T;%mfV}rIIc*1qYN3uhyBO)2Kz%ktHwF-1xbMSh#BG|iDxSl_8k9T3zsZQ
zJAYA_vbpbS&R+$8WB3EqigCX%BtS6dvLJ_e$ROog6D(uS1O<(m1S&M3m#_q%y@QbB
zq`7oln64ZvQLA|$EGPYiL)-5k(Mh;ZMG!XTM8%rnsjp0G7l!KLR!UqRFrM)<A1toW
zw02SIdlD&uS|#YIN|F6E_wvwaGL@{%gWCs5GrceDs44${6sHHpwmOK{DyKqa<%mW1
z*FX<KC0f0`n;zr1`?5McKyBv0qPaI~=xqM+9UVOZOU3!u;1~!IAhJwh5!5JT0ny)Q
z47`$n^<o`_db-!Y^&TlI&~QnF^m5T0qcEt%Gk2e~hW6U<mMs-zWdu9w1qFJPMlh*8
zi%)AOPvpdZtxKpDrJlcUNL~r#*&d9k-G5KKl%4R8l=_>sX<Z>km@sAYuqdxdjB+eV
zByfw49_qLsHyO?vA1MAGoh#m|@5tHTU_Ivc@BVd10?Q}X0k6@Q;{7g;A8N}S%b2q(
zN^?&FRqOHa0_^a*6Jg4JkECESR6lp36(f~t`4ldHpUjI*0idKZsNph^ey^`<vGbq$
z$yaJXB{VZrj%t<t*a2P}{Xk&nY(hUnxpk`MvFWix5@xOs6<35`_^=6_P)r#3eMj@V
z*>V1mQVJvvU1TUs9@>d(j~cnSFRA0`>;rqCM@?>r2|B0ENJootpDzxfK6FiASpGCV
z9J(fd$P2+r=P?(*O#)yev33jPVQpd^QqP%(tGPhD<UKkgvk<irS+P#|uQBuH%8Jqj
zm<T{eo#&sW%=YQdRn&-}d*As;6@urbn<Jlr9-rd!!r7N<C*B8}o9;g&Izf`MLU@*o
zoqet;KA>@ZK6>I`O1n=NH3{2eDR^W<yfo#1W4D0lN8Y^s(Gn1G(I70s&%EX5?>W)I
z_6N|r-K-)|ikVNOCCYJ^0C;mF!5omsvgJMJBUP|5pA>f`NdnX|MfLZlZZK`k5LS8F
z84`tek=zb5+ogR;mqw!7Ip1Nx@KT@};NfLx8|8hH)FJqtzR&%EeA=D%T86Vbk2N)a
zUFLHlWl$gxdX$FeHS|8@G~=FV&8<r)x3cuQ$8^Vq&rEKD?^gSm5^U!aQ0#6G;{dv8
z^Zc{S)UEDPqsr1vtzzprmlxw>__aNb+t9vI?K*DdiiG+Kdb{>ykCvSz`-@Ol<#y+l
zNEO@{Nx%C=L1>a|>ZZjk`7sF-)>!?2r0uplae+D`2`Or_Zp-&E2)t|6!tWob2K0vQ
zX(-qVLH^Xl`4y959-Vu(QXjhXVu_IqL_+`zDatoPc(2^AlOS-^A7jM4B*9o<d|dI&
zcnx33Di&@*3Fc4=>>?f#`-d|5EFk*bjg9<nsFr}<c<y|Nz>t*C*0<vt8q~~xqBW<%
za2npbB>6?ebDRtofkcX$017mgYDX<Q_DS`e?UnnXu|w>3e>x<G&Gxj@*xGCNlsw;0
ze@x<AN1A}|>S7slGNYpO=|E4IM|zbbRd6#~@|jw$lF&bCz3@(vntV#|Da{M#%d8$~
z9^dC6f$-LnA;OvfTA?$2+{YPz;$1b|?3a<oYoJnm9L1(S`c$fXN+!^Q(9K4dXTk^&
zpOIIXvTL7lDK4i|H=}|Xe4J~9B}l$~1Uz$8$5lA{1oaE8UW$lCiketb&_3ZoeI8JZ
z<I9JjB{2eb-yFkNt*Zo=VwFf{D(A4d7F39O_BUH%7tQXc*7IGltVzy)((*WF>jUx8
zGnzJK&P(04i<QAG{U`!4E2V5~@(Vp)x}RCkx%|DnZ2Z|PwLjM3>e_QT?uQ)1ChNYN
z`5U7OR?r1q5-|nPlk+~PYW6o+=kfh)_QF36Z>d;1j<%+2`z3w7ss6h+BA*eY@mWt}
z@CL~H>OjmVZ@xJjXZ#v}3bw$ePEuGc==sHwc;^kLJrSzKECVLx0QgG^^eCT+$!Fag
zxX`Gos|F9~VhikU|J|P`jp7|pe3-ara!~B-6Vl5od?_LmDQc1#Me713H;<0LpX2UT
z>vW_453UQM+<np@<P_pl?XV*HnQn(SLZgrZJ(_81{*y~6@4uLTPeoSys-HJoF@k^F
zpmxf}RqJXOTgi@t<?mq;E$oi~6^KC%m!a5=I_h7)WIG-D(w)jfI7WmmzL&_z3^~T%
zN+VIU1t-j0w_j_y{=?je$xCkbv*L+*UpR=|4g=PWzTXeX#b1NXHTA8(3rDM#&3@qi
zgZ~SCzDSB?VP!ghbHj+N<sn5)zSYvY6ESk~y4C#lmv;yBsWPc5q!UK$G;H}|Na0<z
zrXTf)ED-t%W&vS%-}qF`*y6jtoVC}5vf<*Q^r1BpotqHp>(kGj9_yh3jROK6)2q-b
z>tY!NyBh<g!mvSmR0WkGramow4#bu|QXd^mYX@1tub5<i9oE8^x3%04xoZvqje!kn
zYCjjM>Cj31bSro8NJcN+?_HAl!r%Qm__(^QY0(t9eyI-)#GIB(&r0VvE2xi!e*=0D
zlnk1`90>+>qenk~j@!YD*wy!^0JlI$zi&MwbSd7V0CGA>_{w@|a5DTFxgExaF2><C
z5Z+e7F~|RNy~=P+f9rKE{k3BwL<Wl2ksS;uoIPaA0Lv&iIz}lIhHWp*opR+rRW<oz
z#p`c#|4ilSv$j=T*ULN;-oF;pH7Do|{0Bmhe$X|kRDlp&R#<Vq@tK7Fm<JUUB(Da(
zlsDc-Uto6zC3-6Q<lMO#8f7yqqu>_JZI~~1wDZ){@~9zUf3KZB@WSyGFnkucFMiN6
zAFqr1wjrBdrt!(leTDYbB?|~c_SmYrF7DL*%B1z$`E3S<1NLtBKhh(5tL7X-iYH0!
zLfYZ=QE&widX!IF`O#f7+^AvkL$9l4`vJ5<IiB~AF`gDVDyz=Bi9qc0mOP)9J1_Jv
zN{QW7P1}~wf4xSE3T%Cn#s5~7yhZPd{mEWtphmo$j@TZn4fG(Q_|hNn3FO(dp_!K+
z7OM@3WqvdL(;Z6zQgqnP`YalNjrVKf)AIU<mTTRAl?z@^%ai;@R-1iybS{@*NRq#L
z*s)X}&#@OA;8j#m#-Zp}{~G>@z@4r}!(HQ)4K}poe{g%X!)LETg~GBwcs!M&)T30$
z<G|cE94*;Vb$@pAO->n(@&#R<Kb5h2U^@5m{I^q2%ij;>uh;vp1zooM)7sp9Dmqr*
z30$5(A9x<Zt_tW9BCL_Zq|QCm)p!0=uJUD8ecR&vgLK*?_{w=17hJy@I@ehgu2Q<_
z%MI1Te=-U_p5aPL!lu>OtyZM^jjXq$jXU^@Uj5;0F@D1jS7Tebwwcg(*k*j(tu3In
zgA3W`sEk;Wxww_HUn95l+m3(Ni6l>$DT+3+ZU?gSY(hoUd~t-;%ez#8K@x=ndJxr2
z@a;g#({bMFmHN)hWzh@ok_|q+Jg(iqu2}cJf5qLmtz2V`+Z!hvVp9OR&*k}NJv6n_
z)g|OM@0N5g?&kFBOY8sDO${?eja=TcTD~f3zAfKd8UN%z1q~PmDQdEOGQ!&uaC)xZ
zx|w;#yLaJ@kS4n08`m*5$K2bcsIKesoY~1@A@`O@H83Q%!!$<gSw@{Bz;@ymw~G>q
ze?93%FOGZC10nMgMO^rhc%i-E{x;ceH}?NNP`x{PadVZ}m^nfvg*P1+tBU!HyNs{!
zoo#X7vl&|*2mhs#M=eq{P-hUfSxY5QF-s|3fgAP|n#Z}w2=5fliu#3+$jv|orN;Yl
zCu}R%>{v5m2;3o&q6sXph*&KCvi+7>e_!>|tlaKz>rxGFy~m?8f8M^7kK0t;OFko;
zGNpRpcX6D*|J*;%UlQwzrabPI+3hdR=+1(U-!OF0#a4QuXRZan7dXQ0lIatl3>{NU
z!lwLZ-n7#CyeT-?=bz_9AF!Rj17bCtzy!3<SLBxf2GQjCQ{8?1Sx*rc=;ku%e`;Me
zIs0WKQ|+ws3zCD(fxBpKVk4*HG@QWFRru+d9@7aBxC?|H{Ys8n11Z{XtA@E08QTKy
z&g81(4znLa7gdYNeFeo%Pe7+QG*eHg-XAVOZihi|#ULm^MJzufmI@bgs?b|r6pV1l
zpEGA>yn-&dmW-`@!+Ocoy_yzge*sB91y1E||9z(|>SJZXQp?5NoMeqXv%jD87y;s%
zzZg7uT4MIs$M-9YLSak*H3fQ<UC*?Y4(j^273V3mgmdYxG;U;N(@Qz{M0#DypSSlb
z4M+QEaV^;t4=;6QkR%6u81no(DM7E#o&Pf0Rx&bD?STG|>+g3`Y+5@Je-XHGo5eNm
zCl}2E=_5d>cAy9GzDa278HE^&*_)lci@QHO(##LFawte;Q(RF)%t=-yr}Tr-z>A;t
z&38dygPIv~Kn1e4_RM^LziP_+rBda}w+-0<jU~<eSznSQIR*1}@Ei4hHZmpVqEqhz
z8O-q@@U9%WorD)0ri)T~e>kGo7A(D5@lkwFv^(?I%|_%CvdMF9kZkVFbcVrqPbX_N
zkXRpxLCqry;4`GWYGuLQY$9^0V#$w5JG=DQWAak%K5LAMOmBC8nq0oV_m*GiIRM(%
z!7^&_LzQ(c>b|tBm)9S?acpD0UAR0(+Gr|o-qOTke{YXc(oLsne={d3gsu7EW7Gqf
z1!VIq^F9i01n7tF=`FgrEi=_QJkreS`9M1Bse)HLYmBRv+6QMwuCJ6GN@&*<%c#K(
zRW`ttygWPQ9doK`Wz?{kllU0%a2?G#j7PsNaoNGWpKmDXP3l2l&k&^OU|kAcAEZqk
zTj}+fNKc4m<LCHAe<dB>uM&Uaa@W3w)yRe{alH_J*{_QU{twyuIQg`=!Omv<WqZnA
zvtP%C3i8kP5!vjc-~G{_%$mG-J?d^Dg(?zzz-s~7^y$E#1-*uzm$tH4F5z_9CSblm
z8miaFag$ufZt?TFwMb4b{Dd-!3{^#CP%{Gp9#NH7j+GD}f9jg`4Nqe~S3HU_KYj&z
z4)mO5fRXr6_r0CD`uloIPI!tw(1WP3d`gY#AY?bWNipur9s|8qclsM4AtZ7ah(k?0
z=h57IkN`d1G+NG^N3Nm>uCy7qUn6JU<{`6MQLI@hy|5abM6w@WZ0PuoVv^)s!(QVZ
z^TnANjsK%5e@rDU@jGC>yx(u6Y`kwum_h$BX|r9#>ljZQntP9XYADM6#H(a7)PbM{
zWOGDx*9TC6oHjmCl*!$|ZB`b}zU0gjv>`=Lb|6>4Ll}=W)Z88~{>rUweUAp#&QETK
zF}qsw3LZyM#5#1hElUPpAs$kd(p*b-JVWmhYB6c?f5yiudQV()qW4Hqf#)ZKjy)mQ
zzaBGp&|<s?DN05bpO|<c+}ybsNFD@6f#UL*jumsF!o$YTxtoN5@+l2!tbRWgMLmTO
z!uX(ri+E-E+RD>t-MfEyOfp1NJrXI#ChJ$k9<j(~0ojy;?{c6xDR!^kUmQ()K2FEc
zHaEYhf1JO3e4^hP;O<Tb?sHUXwI$H+4)+%uzr~c_<bcD%k)kFnqMJ~jcW`T$X{#ll
ztN2)L&285C^X5hIK>^306}~V>F&o$JJ0fMXwk5;5o;rMDj2n*g0UOlporNAK!*o$~
z)5FxB+Ml`i0v-;%wjDiw8_1J|HSP4)YI{Mye>*%P;GThgNyqTlIE~MsOZFEJ7g7!E
z%*&Oe-=&~C{YS<Z>x#N6e-$KAUdC5AJy+K#B?oCDv2_rG8ZUuh9~GDkio^O$_j8r%
zfGGElgSmdWRDEY^+T(FF%iBTIvvDoHBOVRQP8!aM0(SPb3P`v&xgBQr`68#57)mPr
ze+)!6x9iP*==e@_cFOSp9!|dYq0T+OtLC}ZVpQHsej+}xHZw2PkyvgjgBq{=@Ppeh
zE>!=L6GgKAteVf{z5;KzF`A^Re24%Zp_u4rxICa_?^%p4B=GD^X;9N$JN*#&MAPT_
zz;xN|Q|nr?F&_RI!goBX=mStGgH9^>f4ULp?x8t<`|H}bOK{v93iPP#&pIEjh*+%X
z{VLNoemQ)_3B`mt5eb?(S5kDJq?K@=YOk%4W%A5JbMF~*uM3&$D%?WCuL3=YT8Zl~
z;VK~S;)$5`^3@?JZ&hQJ+q|d$kge&dx|fMoBBZD4hgAOzT2Qh0S-C}A=GusTe>;0w
zkF=}-<Ssi~;<)=Vt<fDM#$sfep9u*dLwy6GM<E}dK~cisuFAKwjd#pHPiHR;JD<{j
z`~IyZsZT1EC-2#k$?pd;KyT<y@wqv{hXBZ(*8<Y3$`eDatcWWPX33eZT{1K8icrg?
zI!d5;lCeV5`(4t8;n=LEWWhrQfA0Z3h?jS+zk;iP=)ENhk{GHys-$+E>ZHP=Q{%sp
z=y7r)a9x$&HL~_eXeEml)F(<^lME2}0bQPd6W^3OV8!rjevw&XRdv05XGqGk#@I@z
z08av3lZTV~8r+Gmi~0lRqH^=t+2JWy$n7xScrM;bkp|iXFu6&+RUQuUe~3G7nY_oN
zt7w42v%Hn=^Tlef*TLoGYb%_#mz4p~Q!0a+$uuVp)GDNTNT!gm(hgAFY~^=ADI5=V
zNya9a>V!l(Lj*>OQ#@bNQIi7-5Q7@J&ocr57a?7DntA0k#|-$6?BfTeZfmO_&*^#%
zbwy0IRG+H9P8>_<;a>VCf1?ma39Y|u0f~9n8Vb67dHH*J*<8X2-x0H&XQO`U8&Rb{
zd`bDiTSbe_l?AVX9S|#QPVL}jZTQ=?B!CT`atG)^guZqbMD;+L2PNOPN@5p$%+@XK
zf`84BjQ=jk%y1)h=8FcZ*5hHi_7g`MScEZ_QBXXQiSn%x?pg0=e?kbD=7H{REQM~{
zF63@Tmp1>Q497i~UTGRWuw4G{OY7RHFzMW^^ej;AIe;7prOWfTL+5r<e$~Q#k(B%F
z#E97Wo?T;Pa3lN}ys%xdtVwPOb%sb6FQX1cJxj<JXxkS+jr_~iVJprWC!SO}YaguA
z8$2NGnFicdsf*ioe>`~d1g&GSl4QumlLiGtZ3tMrCQt?m&jPhROWg4K?A$6}I1sa#
z*qaG)7bM}qT|z?f*=G#meRDxdyUa_;cFV)`1t<ub=g)uhzY7FE)a<+C*LH0^{h)q+
zpwY<8k<{gGBy{D$w&=R1Nwp?^ufx2sGJ+ijPvHf65bF0ff1to+nvA`t9?Nk@Q?Hyo
z?Sdh{zL0jUP4!s1JZ;~xiPG+@ppbJMg%T3(NI30=*8|~OAls@zvmH8@H|mLikdRlo
zXCWOmX~*lp{-Q#n)5C?0xjNJK?VCZwNty;VqN@E);IGOl8~lswXHQjYp1(3SIDWCt
z=q@~*gqz;pf5o-W>@l3(dAxk%%l_Jk(fUmlDggli#0ay1^pf3GqTzW1U(g?%V?C45
zUbI*!tg9<P+Hen5*M?Hs_ic*j%mahlM*mXPNZANpTyG;#y|!(aICL>P>;3WE$VM(i
z=G+7}(i|eo-jlq)@J2{T-&8>!3HPHwk20Q~cLlhhf6J$$)-{z2X@598;=ghAC8<q~
z=Os38-Qk?DC52q7*B;X+o^%)(Y7>nVH7Q7y34qUmY^#2;cvkXq?lIMw_jPs-l?uC)
zTB=e6fW)Ch{m?B%HV(ZBdBMj^PPne&{Byd@An-K>EMpFDGt14CZlKWIC0u&!T+~i;
zBCV0Be@Yvv_Vv}wVyx$$LW_Q6TZzjL=j_~1U@+7s2PtaeR3Q@z4+hy*EwZ?M=jGe1
z);U>}fn*_NhCIRWHYFKx&0qRmo^)Hx$!^-wN%W^smmmf;qSON)!Cy6SxX)e;g~=D)
z8hQCPKY2_S<%A@WQZJhd?7Zolpm;QU^6#P1e`Kj)NA&vSIdXEKg>Zs$iqolW60vR8
zdpxTtI(HX0y%6{3Y=1TU(bDd-+0Db%YrAYmn=VC)nsheEM8JbV4;R*^qm%g_bPXVE
zbc1dG7$iNFz=(KN1gep3KTILm_~$s~S7j_?j>0mFYRU{yDD<`TX;+N8^g5Na>}FV+
ze}3EX=-E$1ceSpmqk(xiUu?(vML#GA;!B2_BJkTg&<Xx}7Z+uv$>=`I@M~b$df>m%
z%h{>N15J%!d5gH9Z6#jrE@H8qYIZu3;7PEIIUofna5N)!Q0Env_V?lwz5k?1$VQ8v
zI1;X&hi*5bKY3<R@=KP00^O;<<y45pfAOC1Ym<4Iy2LPMG*q8-G{yLuamq#(!fT+F
z@4;J$cYWJKlacu`Hx_c>6Lp?HzdA4IW(qIxQLK{5bCH*Ck9&Hg^KFpZ@!;xnz}dFa
z!VF11yrfQ1sDOe3#SJ8!AA}w?dcPP4GU7&{$LqOj+9+kW&%NG%x!_gAI@DEqfBTPF
zx&d=%v)8f^FPkG`Dh`CKOEtuEpC;WRgk<#SZ9V8H)TSK1;M4+%V`E<J+GPtBis6PH
zyPW0v`GIEdm*Da|d}L3I4hRJPs)1$9ao$K$OHlxVH=Fq$_#>1T7{&<4^n<Yb@z@g;
zfay&3Y8FBvw9@XZpo8{LX@4@5e>TLRCMsXRm%UvXm6WuYRp*_Rp~8-r)ZBTAQQXKZ
zI2tuC43-w&sjF71{LpbQ`aQTwOY15W)_#-R4nsfYaSatsSzfXI>4SeDZhE&)=)3(R
zLpB-GRc5;dDl|ZEM;G(q((t{xk;jM<W=$mgCk1-6(Tr_{+U5lorQ;!Fe=Ap(;l_@a
zENttyyA_&1Dkbyy9kv|K(?#vO1o-4^*gvw$_<SA=wRw*eHKAIOiHGx3u)Gt&5U03$
z4eUI=UY-_Jxb~P7!0&_f7R;GFJNU2cSu@DC$MQ)=k)hs#(4*R!(FT;~cyPgt5avvl
zcxP4AC&%L%(VT#bW?3dSf07q}r!wI^r|IR>KsLdsva8Z*ZQ_WBJERJRzjD`Nn}1Wt
z*6{KlZplzvW$6qO0u*wy8x1kyDYwEn;V>C;JItExB}+izu+K^QuEn;C`p%6z&W^`J
z!6$)2x%>+I4kQrp38xe~uxr+2$4B<}d`>%1Sd!$khGi$;@LLpVe{v3+Ydz;WbV#RA
zfl6&aHVu1~7k?+F;-I$EG(AW#@;4Z&tc_(9Y{;jKhu;CJ%$5sqI(JYr2R0qZ{$wTw
zUB>BS%i?P9?wssYg(T3Jn{7AgMRhn)LV4aHMNNM4v9kc`bOv4)Dkxh2k7@R-LtWc$
z=SdqU2kwiV744<te`+sYK-(*ci>2Hq@T@{^hv96xWCKt@@Lk~_9-{jtd&A383d#zw
zvl2lhaXmnZn5O$&nVO?Gqg)+cYP~J0o|95X4byr^Zif-pS9%PJXS?$7joiZST~z02
zedyA)kB^f`pC7OZ!L}FX(n~N(W^V9$gz~=Cq5O+o6p(&hf79gpm<g@+9Y8;9dvzu3
zJ_UXK9g@FGqhyx#!agwQGBA*u_V`%Y|8wZSud8lQa$u4n&!68X^p<kUC^7hAAJyFP
zG1^zFv6~_%tv*ROfYij{)7kEo<hoBe$&atjX?bp2^sZ!k4eXqgK!D_CUyn}DOMWTH
zn3W*;u6AZrf4?}TNtgHY<r_KJwH?S#GfHPCUPnrk4GyCtx5M1!<I(^^>0BRd*i*DJ
zhi!M4OEDQ=Ii4XKMDJ?Tb2$wIP$Zcl9RA~a%0dn_5U88qq=fR^vX~imBP`4G64{GC
zp-ROYDo+B#>QIAn>uBm60~91cPxL*4<pvUN1oR*te|4*V1u^m<=2G`-HCU=O%baFY
zPU<!NN8)!3<nCS?>Ra2Iv#C~9irJP3Bty-D4Qh1LqlMYD(y`yOYl1GyCWzgy!(0y@
zdrmrkw4fgjk3>r7_^;Sar(QbO$^nKdYhW1#OI}mP!astpm$r3PYFG4aao`{IhV6yr
zW;ooff4Y9u56`1a$b5-ovWw{6dE0~M7iR=BWW(6t$9DkWF5cy7T_JiYUkUqP{rYnP
zK?9`o0HJfeKk3l?xRzKxkXM~T0H6-KJb%^V=j_~C<=FR~J3=fQKP}TEaOvx;D=+uB
zH_w^#ag)leLC`*D&#aZ)J~wCVE2nT5X8sQnf2}ZhiZ9TEpcBY^3-00|;KHDbw-Po8
zSp4%VkH02^yY^g8E3~9AGuw6@pPhUFfV3I%{8cM_$GElfus`Ipf-l}m=qX-6Pwq@H
zm~hvT0Oc%wY_UiDoooYC<$~Aqiz9k2R?KiD+=>D{%4cj8NL_!K061&II5f(f$6UPB
ze;gM5pK%;n6d2Xt>trgo2sjyi0m7U29XWy~)c_D5hXq7GPW$!?_&wmai>A<XW=A7+
zi|_u$R9O*zB%^Sq+O=v~f;@Ujh3>DyEH+9Y$xwV$1~s}RrB68`G*hNOCJ|CnPaaBd
zoYm4n(`e_Z-@4yTNw#50v5`19<b$8~e+##MneMasH7n@yn@%v4bcfFYP=M8bisdht
zd`Goi_RK@}AJ3iFD#ngGEnRs>CwRqSbFGwroD2Z*30gq(R{+&;xGX9sDaWqPJAL^-
zPCTkGeBRUp;Z_-h2_~(6i|wfR?W<`Os$8{Uh%Kzr(Y_m+AdiIWQlLjOjSStWe>3zg
zCVsduUQGeX{oZJZ*~#&DH}2d!GR})Y;?PB6HJH=x*7lp?Q1nNECtPq?5K`3S?d_&F
za6N)|%4J@kRBYy{Zey+-%|;g@WJr#W2j$XR&g^;K?$&m1$lmh>hd1YRIi{g7t$XBl
z7zl&DEoheR$|q6F+e}x+2EDlDf6&EZizICMfT7RXbB?Q~?a}uaw7bpJOv9~a5Em#6
zdI!rWXxTlfmJ$QhT@UMeu2>zAshD~Y{Ihs7A0$Xhw9fG?7hLESw=AOcez@Qek+67O
z*CLKt0eO5`P0a(xbx&$iBxf<c-A^!mL&X!$LDF^weTJ8-q2I}OxVp-Mf9**#hU%9f
z@GXWs|KMTrRqo{mU`KOtMtokRS}990)u%hwA!$~6r2)Us|A+C9)@RHmXZb^8ZGDq}
z`g~`w_3=y15S9!eLp2i2rt&)tr&cc3iHa30YbwgKrynhI$H9J(^bLt$iG-gXw=2``
z_UT8<{49fD2m#?h6U(T<e+q>yYl5CL4|v}5NXDJe<LJo!oFn&jHTl<08_C{EDWaE*
z3DHKeS){tH+_lfzYh7<>VTKI&0z!{kb{iLgRw<=LeUz6kWZjq<k=<HdOj`6*a6BH@
zBYvd#-jsWn@Lz-k-M)%*At2-cXy1q24s($F?SKuAJ2=<p{p^kTe=EE8w_C-|KD%;5
zd&f8aLx4k$XXTCiYRmTz#`Q;^_nNYvg2JGxSVlp;3M*AuF#)Wek$oh}v#08xtg~ZR
zRWdiGc(fYJ4Sp>BwR9v;Q`{zm(tAEQ*k^@ub)S|T0LkiM85i#x?y3Ty{d8>6N2Z<a
z7nmYVQOm({r~VWce;?6xpXUiaNBQzB-LLt@a{CUXqMA_ay!gC`hvs}{@y$hUIE--c
z%Hx}2;btiAsUfQg+XzA$HFY_7hhzk-Ld&hQF-+G=B{sHd<qlk*9Ym9n1IauVkj+5p
zeGYQqKpiXeUG&M=yxi{ZvM`4ohrWFwlKccwmz8>Yz3*o^e|D-)yxHS3G0mQN2z;SH
zk6QMcZ-9g$ySBrLkxDuKQ?d`XMP*pm9|*i^BDqIa4y_%&jcT2fV$Yrhdg6Zv@A3`S
zJxlaaK*AkB=u!8N6N~_8U&mrD5+ci%<0wC!5xQi1e7Cy?$oE$EV*<JG4TZVoed9W#
zvrBilp|AKXe;^EntE-nH^l>XCE}-NJ#+ZF1^>qB~s#w|)(<q`wbr!Pvn8d$;<hF`~
zS$b?i;6G&*Ur3j%^>+f-+vQ7sOuOA(DRM?f&z}^)UHjK(FX~i{U<|qN4F@Y(2&rJ6
zw<2IDm_YjLa>pgDaHRPwyI*A2Eo+kJK8GE}15`cWe`EN2$Nvmp_1S}#4*~2hF@u!Q
z409}Fj<-BF6wIx))7V8dumfWK#u($h;1JohFQ|gad41*BLHf&Q*;eIrV|cmn4Gd>@
z=FO5J`Ytiok#GdL9R>%1c>$6XNrniYWl8jVqP4d!wk8xhGLgDQaB96X@3`0Oe!ZgE
zT^<qIf77jReSPh(Vw5Auc7#)F=QkGj(Llb_$7%AnW4}t;vAhep?#Ktc!3FeI-kw{Y
z@mr5+pag+I40--k!(<)Y5$4#8-u8QIA2telnGNErq!&4lTZ4Z})y3F|J`?k>>!yli
zyqyCAU%QQE%(;`_%BAIos!2b)#=7#-KTN9ne{9vgU5fNl4ZX@p&Z9@;UA&0$@n5?4
zD=&B=Y;CsnL!_5(O|M*Unjk=n!y83%V2fhdXx&qun<bzs4<ETZ>Bvp$8o)JdZN|nk
z^0gN&uAk55R0Tkcf)<cogymV7);&~zGUN=io0)t-5-woVUdnENafa>*8)<ZyGqG_H
ze_!79Yb}@YcW8gFd6(g(Vp<q!>?awj6x82S(evv+Zv55=(|WgG`bM`dr}z;#qod34
zvg@&0I#6A{_xZn>@PS=3g#jfa5cn%0r=|GCqLOkOD3oJD?@`|Sn4XNA9@(r8m0?}K
z``Mn<uh%8i-reau-F2h7E>$tzXB<yuf7iOs&_oFWL-A!u(F6?`JjD$4<=sKgFY@{=
z`QAz+heVQhy{n1~jj9sm5H-Rb++V6Zn9Iniy?3Bg{gpE{!sN9{2k7MKALmY-v^3(m
z+RZivP(p7bJ$PfFu=iZoRHChn#TF|pO%O{J42JooyF(@ALXOzJ*Pg8jG9F27e|2(w
z9g+pT?mbB&9?{dyY9rSLvkf_z01%%*3PgVtIG+RufKeZCKv*u{CSwL}V9DI$N8_F<
zP3&duBZPCCJ<oNsJTu;#!W<SQwI_86vKIQ{wVFN?8yrVPZjTY-*?mcds-$Y}yIwii
z1RJQjH`w;B|LkUk^6*hkn97dGe^|icuFB<K=PSm3FfGuD6JCYEVf5to7y~}GGk_Zd
z#${G?(v0%w{+r*6Ej!ZGa)(xd2m(g8(E-*&wx)NVpbp}l=XmuR33zc?m)stc8;_?X
z2fV1k=5gpu+3dkNwgJ|vFKI%PD@W7cVRWc|Q3pfnC}Z5W_)c;09965ve|kSM)GN@}
zQFcCmE%1aXuEA|H%0uPB&Iv_tJJs>+a!tCGBdhSDHE^-0RVcJ3{=p}OswHDoIRVFT
z)3^IeeF-0-fwfbiOj`zoSlphM=qnWY47^b7zi#Yt=e!UXsVr=>XtUjoH#ee+GREbX
zI-Mz6RJCkW_9a980(~9*f50Dz1Wy>@a+{L)H^0?y_+bmESen<Rsilt);we<!)SwmH
zTNL(Gmf4)VbNNd$azKW<-G46dbuSdwu7g@m{;D6gfA3@yhkVGu@*T~rG3O&Uuuoyz
zQ~qf04GJ6K|J!Q;c2E|48vLC<1;XH9e@hXT4t(sbim8S)Ku33~e?}LtNG5WAJBm{7
zTzQ^LANC8a4Gtc_t~fWvnnnExri8-U`N{1uW{z%G$pLN#LLl23-@hR6`m|#WCRw~t
zJgJ=1>?qHhFoX@J&&Pj}D_U)U<HX<O{*vuaoNi!$4uC8f+WmtoZjNz8D518b(ya0{
zgl|DzpKV;E4|W?=fBJq{Qgi2N9~xR8m=QPHcmUJV^)kZD<^?#f2m>JSnmU{*$KlDa
z0urkNVo6xZI<2Sb4+dCsy!SY3myg;wVa0%h*M={JrWg?3b}@S35jz3^J>^J&#Jtm{
zd<(Axi7^{_-D{coiH?KF-bR>}THmNl3$QtI|4HB%4(IQ7f3NZ5wYlG|)tI`tT(h51
zxl`^>Mh>L2r$Aiz+=o?>*g(+!W@lZ2q1Xkh<=EdFh4Zp^uI?UvY_0wswsk7oZ??)I
z@l7ZkGke8>_EtFvJfRI|5{$8;y@oOYzeqo2BDsC)CpsZS`0;Agf~kE;?0M2aVGX|a
z4!4P-z!PXhe?B!PXLPrxHTn&GEfwKR%mV$0^d~k{Ah2gP76W0mDsUCP4R!S%eU+R2
z!u%*?m(aLcE)GSD$5A%-U6<7_kk12wCk)_Bf_1gD*HL(iZv_>L@zOj6TyIf|*&gEi
zhHN*F9yEUkmU6d)b=4mNHR&UWv8VXU1Si0g0@1&zfA)?Yj*|fRH-#MSMw@#g_w3pX
zO0D-D8*xfUMyCOij%F)(sdJtOohT-r)6~!fy+jW1f^BL(X(>oTUzxx>4TYN~?^f4A
zHpd5s%4Jr0*`$vMV*ul`4$Km>WfbPk590Q-RFkehVcU%$BL}Q#+Wq-y(JeHvWg(Pb
z_KpBge}ReC@YP2a#@2IH5S+siaTZX#RQ!{Dj8C+kzi+tndhBmsH<mR2^OR6!B{-8{
zqEX`ucr)N^H^Pg*E;PQD9Pi`P{QJhyr8YJOR2u$V?)uI~2*YU#)+gW6BF!^>eQ1au
zg6Ky~(ieFFpncx<pF?f~FH|9wT}={uXZ5R|f2<ybAUA5)xdH}ZGrn`47>~5mXR_PM
z)y_K7z#>ABVkW|$-hxqm6yH9c$jsE_$NLI3t<}7_`p_Zy{LWV>>yfWp`<2?VZYW3-
zLKm%KcUC}r9Sns<R3ODnHl`FgwM<aU>MBi@0u(1hcB8o-I&O-`(H=@%c3`JLq0ri@
zf8^$s9@Sv)<TpRr)Bun+ZM(l}_J>tAXaN@0QxOxsofKsr4fKZWtqgONStik09%d#A
z^nE|e*Mqj53QU;J+bzfbj_*Iq;MUWSNQQzyY-)6&BkiCdp7y*^`QWM$if?{8#!|*X
z5(7t15y$AkEwFIK7FW}A{_iTCO$LA8e|!c4rwXJ%VxBrrD#C7}5d4E4>1J>C+_P{T
z`}bNChlWh4TTihaelz+T<i#li8HxKg)iFFj(+}F4jUiH#oEk{@X`ml*_3n++pdhZi
znfCtuLhFZBvwZkh4gy|92EWyc4o~?L6v89lS4bmY^Wb&l$mtOv%){(e7#Zq2f5q2P
z8lk*3@OR$jDeHs8y>CsgSRK%TPO`5K%UI{sEhhSlv(@q$@QC#}g?Eoux!^D{a(hf4
zA3F>15^6K|xWaKzDBs+J&htBhdhCN~0oBzS&ck@dP9Iy~)j=V;2dNZjklh=&bOvk=
z3Uf6BhmxUgf^BN(J~Y4Pgucgef0sS9s@fGEvvQtBOJRh+ZNWGX@gWpNw<8NN5B++n
z!5}3wZKTmFm`b=VRRsxeCa|rq^cY0L;QDmf>q0K}Gy~{l_||_pQwxD@mk$S0qIf8Z
zScY8{_DbkEe^R}WT2YYX04X5hqoA*&5dEi=w6BzK@VVh8B`={J=U8foe|?P4{ef!N
zhrY^($AlX6t#NwWKiM$gfzTD#W;gYPfZ!{26Us>VF3^uy=~aFK(xyLOHtIJYW2tx=
z*i^3&8+<P`S;8fLh}7P|Rh51xz7Z@2e}08s%O1Ckr?O;&r?dn8h?jy@6O?yNQg&=M
z_d5OWKDhC)y>4nZt*k6-f6NI^cBnKr)baylz{BCk3wNkd0oFs&yP!8PazK)%-M{J1
zmlwBT>Zk?vcY_%i_N<O8zxacbm7Vk&4%POZb9vr(M0eJ}eA)3-*!E&&^w8B7iZ4)@
z)-!T@%!f9zE!tN%Ql7WGqcG>tyRsLqS4CaJ3_Wq!p{0vkm=wCZe+)NYeqZN+R&h3K
z2qr@%Kx}FzzaqX}ig*jh+fEGW<Ot%0zi7|s>n3k}p|jQAdGmm{X?9d;;nLk%sKX$&
zh(nMKAD9q`54ckx*6dIi^d&a>$2vo}^nm*pc7UO4?Oloe&2zuu&_jmVP=W7eGi|qZ
zCvZ>Nn`T>o4wcKifB(rz2Y_g(+x=BjBRXIaNJ4-wcz}M3RVcK++%GDHGUTK<6n7vt
zVd0GsTCzf0>G^n=;ej`&$c^(LFjPVh&a`L%@!^K2yar5%OkLDj9&{V<qR5>`%u0Mz
zxU7+1i17^02L!vcImP*WioSMlaJ18b5Q`fhzdl6{s8HI}e{kt)G(hXius`JOwtJHd
zs}+o^16b}J>}mOyx3M2WAygv-JzO>4QR)P#%*e3VCO{>n&gjNg@{a_FJqP+aTB-4)
zjS`v>f*sK>*RFPc_x@D)R%Dc&Ra)g8!X{vpsFu*VoD8|%pbx&l=$G><YFsK%SVS69
z%p~49iVn34e|h%Ic~Ewx10pzd+G`wRK5zH)%?K~&)58<POMqE97k6mw0wIt=srC59
z#hlyfWaBh2I4%|FM{skk0sttV-oV8|;h<lH4}%n0%cd2S?RpNI`^FT0gh?#Sn--bs
z_B!}J_yRE@yHh<iOuwZAziS}j+dw~Jrq{q9w92y_e;!pCza0w6v8-tyjsO0m$j>c7
z+VT(?{iI^H8S?0?W6;~^vtKJMTzY8k&OwL}`anOTVr<nC014B8HPtVQP4Z<mG(ujS
z>J=+wZOxeQKWuX;p##T61W+~bdvu9y`-%9wU$=d-$%dlki9m{(pn@*z0$VhF!(Vx&
ze>KMEf9C`5FSw_E<TV#j`g&+cswl(?K6j|6sPvouin;8phe!B)WB%d~b~q9~0{S|-
zJvC(t0zY88@_g@9l>N;MGT;}+7mJ^<G<+ETaTKIzZEPLNojNAzPt!5PmRda?o(glN
zgz{t{#Y}Ec3E2Z~)c9P(Vm;4$+{jaDkVgxTe;b+-s1H-Ldc~BIkB|B$__JyG1eYhu
zck(}D?)-~K-rlkBX-eXsZOg{5YLJb3^V=t8TcN+IA6k(K<qOr?rMT;TkoRLiZ`fYL
z=!Seryp%83U%q4Fro~iIIDh3gS~%3zX6iB#6^R_7A}czu3}z=C@<loW1J_-D6#TqJ
zf6y-5K7ouJ_(a$4&!3&1O%2ncN6B5r+t>EG0bqdR;qXK}CST2wiHrD^fAH65*G9zG
zji~(2gUk$fZ+Tw|Qzm2+n&kEpzma4pX7IH_R+bKg_vtK|tEZE_{dT@jS|n2wzyI-8
z35Hf#OnO?l4nGZu`wWg8oQbxMAK)Vgf2_{6`}1?;sMEr<Zlbt6ru4hlg739(`|qTi
zG6;fr?m5~Yy03|wutC51oCZHM$P)U?+~Y_5iR4Mke(-BDa-a@kQ*$wEbO{8$b$R(m
zhxL7fjX*Z=pokU1RobMhQvq>U#z_T2?N2>Peimm1=LD9rJquGO3$Fqo@B_{ie@G1V
z*Lz^7gfl8ECu~HmlKpjU@|ByH<NKL3E6_!UuyTw+qObIzDDVXH9tSmkVU4M*tZXb<
zjGYsX#OhOg9j&w-;|77h^XGkh)MVv6eJdYy?#IP9C;e4Vj3o-Pa~$0r_l@Lp5BfJd
z%F&?sl@2V-o07E8^@ts|KH6g-e<@6_$xu4fv87gOoLTUDAQa*e90SMQh0GpKl!rY;
zRVY1&T=YTtd2<4~-RUhOS1(Uda)<#SaDoAxY4N+Pw<;1I0<>Lbrfx9OI)4L}kT5Tq
z&+#LW{n8;+vIPd-i9sIWKi7Ck1G$23vt74mhd^LxMjlek<Rz7bD*)Pte-RLLTDVY%
zwF1xUImXrzch~!@w`VRN?!gEJIi+tZGbOFG<qBF%c;=?0@9~vZ(E<d9{t85jnP|Q(
z_a`K2Jr_;f?kpItps5s|PX1!ek;-E)4P-z3B56A}YI29(RCd-QY-t5-V&u|VRP%28
zu9^ekK;8oS5!7_@JRtDef9;ef3uP+;5Ct00$*}F#{0b@$-CIJ3E`=H*FevGSt#^>b
zC~;kJ)G>Xbqo7RKL^e{)#G$r4iIA<b#I4U|(7*C6ah>@2dr(61gXt|E;s)$cGsbo6
zxiXzsW%y9mQ*!NdH{DMVzj)j3ADl1X%MMSmCRj|)g`M$?=s@2Ye{&B-*LeFj$S>VP
zF$kjkA*^Ovoo)X~^P$W`4<;kS(lD2TYzTj@Pi~K?Y;<EK2OPlyLn0$jB{K`3g3~h7
zMt-d?)n2`E>oD1K=UX0~?aj*63|`1ET6X<bf$U|*qtm(8t^*+OEuj<$gI6F(8HsHG
z$r`L1RqJOsrXBQHe+wm`pLrkFKR!TzEiSq{H@tCV(WGMOj$L0;x~c%Wfh0rGP}<Z)
zfjb@&zm>81-xKk`V5iXidEZk~Wm5d&q9KPER70?RxO?OKVA;6zYkKL-^dXwXiQm2a
zU}$|DQp}_ka>)b$h4CXWd+qBGIexshXzQ9%bNS~_AGa{Nf4}7q1B@do?*+!E-`SBx
zo{FXWGOeKPjI{R31$HvR!PkQ`<$O&lQbfXQLEpUOzumu1RcR3_vL|&3GB}c-ZYffO
zJ<MS2KpV_IsoiB9S!AeKx<5HjKYnC#AnN@4KJZuaMGlzL5YUxxuHi>@Ig>2R`m(=J
zcaz*<u%@68e`7Wgb!`s+AoGk~I`5G&BcFu$X>}wSYLy_2ww`E8Xa*81Lgmlk`IFIp
zTfZy0%yJ~1E|%8+f9zd(JXGEP&phLasaHf&sobbkGR$DeIzm#mA}XY5=3+8ivsjXt
zr_!Qm*JkNyuP1G?M2L13CCP3oQG~J+ey@A)kgd@2e=NVR`%jsB&iO3ob3W&D-sf}9
zMVzF|*yV}7RnXw|&7AAK`qJEupOs~5e}g|e7KsU6IPH{CKuQ_vVwg&-Ra{(2P>y?+
zMDe8X>-0b4k!up?D69E!{5tZ~Pv|?1*Sk!zje1|c_EP0&oQ?<z{ZJ_q<6z+EIFlHO
zM+wqHe*_y9L|sxB9NoCgGC9OPdCB3!B)iVlOn$n{U*`=}@_qwv{WdD+$yT|B!)KsC
z3{r&P)uLU*b)u)4QyglR(cZi>OlFywIhd_eI{OIHL!=an9(K|CNrKiVW6GYiQ5_Dk
ztg=UoEHGp#fC%V{(Bmrq+GP?zJO~Z`tM^Cce>QRC4cc1n#%x+)B~FH-Wa1vtG0|0+
zV$Yo&P0Qbi6+3@q?>Td}KwNUxHfXNHs92)5NS9YujouZma0z^!;aA>tp1xH}hOu@L
zoEU(Yed+D~cz0m!YeW3_d8uY@#YKM6y0zy>M9AB!L}Eg($9)u&yl+urlh2=qF;w}q
ze}m9oFf!ZU|3P^3VN3DfU?xOF$5$S!I(=o2syMVR<(S!uD4p3aE;%bQfZ!w&gauKe
zQp>$qr85+hCpJI3RwAgsq)+~Q_Xx^z5qwb~F%Vj=#z&rZxg~LZ&lyA3bFbK`MTZ0@
z)y6?RH9HdHVD3kj26ppPo~w`*UHmYre`1L-b?>68qDH^nG!33I0F+<_QFZS6+eQR7
zzh-%0v+ijbiq)chBScU}M7bv#01@!xYaKL@Yo281ZB%k=qOpGTw6>c|0--tI1kl?p
zC_0y;op@KZrs$!A`r)y^Pa_5p=c4jhSM26bMvLvYj!a1Kxc%tpE0^s%Y6908e-^Xc
zdCjhWs7NDg4f|>r&krvnw9nsFt+`#05TrJ(bYZ{<K3Ozc5S(4(g+lL@(Jt6nes^8+
zPJjJ5sUp1M@GHCxSEZM%fd{556g*?6`oz4Zen!PwPR@MhbMjHvt+(QmfMi$z!HGL#
ztfUAElzPc^zc}*Lo#a^(W9^qke>A*x>yVBj&CRm7yaEpXmquPosLcrKI25E928_&(
zNVw+XvA5P{DHKOv2_O_~_xpTs1pg%3m2p&ZrQVCAcu8;X7Z)u*Y~6RnfA2Kp(~6VV
z>Z)yM!NhB)h~xDVJfBA8f=5RYECNRG&x%G1{=|lqz~2SbO?SEa`EgK6f96M78pFxq
z)4bK2;H>ULDK|DLZ`Js$p=zeJ?nRW3@|B6Rrl8PbbxuUNs51Li<^e<us?aQ<L%Vva
za!I1tX2(00g?Pf2!%FZT)~t|}rd`>L-$O&w)^DrbVm)<shRNk+kYh0>%3<YsQZqzQ
zGsd}B(54Vd&reoazNO{Uf0+;-_j)L6%u6^+W;!4_raVJsvS8L>MgB;)&vOb=Rr&Es
z&?=*D1yL?4gIlyPfEWx7n<>v&8-ovCoZt5Njk2c}GvnhiX&odNakX#OX&39n=O1xq
zC@sGYBwJsyxf_4iSbzxlqw-kI7Y=U|mz=ddCD8bS>IGdTvml4#e}QMttGt|dVtRJ$
zSU8NlPV|1ecawM0_}?Mlb(6}8atkXFmjrC2MCfsQ)$+tdQ1RmqC6iZr+dCxLUl9$7
zIe)r1Ki#Fgs_J3sW@-4C=CP~9rbVwk7Dr&4o~n7hbFuS%arNdX>-Z)Da+D%ku=MPo
zlf@*<uMrFLyx6e^e`Q#4*B;$^(dLJ}p#={tE769jxxDJ<9+O9Ml%RRn>ddjr5EpES
zi+y>}id5SBU6$b+#ysVcTjY(=-i-yvEH&Zu@08hMkMeOJ9zHc>p&x~%6d%<0$AFFY
z@COegF`+9>ON|4FOwk)R5;kg)-K)l5M~!i@@vFVo(U5Yzf5^)Fk`gh1ScOhayXxZn
ziL$Jo8tfM@?Y*Jua@C2#_@ivpOkx1B867Qn=;o1*7JIWG@?2ZZWBJC6!e{m=MkQ6V
z9jZT}vkNNMqGk{Sh?ih6;ND687$2W;aUP!{W1hTN6<Qz%nOt-L!RcA)fyp8${qZle
z6F<Dim6fjBf2I7Ee<DejT+uW&G;b8VI@3Z)6Lw9uX{4Lo(8G+THoa><s2_hAY2O}|
z$68@7w{--+T=d11<?E=0^L(7%?U*N)So1)!Jzc*g%pw4aSI(vE2|j(M%&=rcs4d^9
zzKo%tc>K(r1}F#^XHJxhT9|!MSp=md-9*XxtNps$e;e)t<x0nyPSJwQ_xogWt6@Go
z`Pr?Zh1yl2!5;Hu;=JGFrZ=kW@Y}l`TENLjWd>f5OeBd*Zd(Ry=(uAU$+=M_LE3uC
z|HF~k0*ua!!o^O|Xx>irW<2v%cByw+)2uJ)Vw1&u5wl%s_B9u2fEbyA%43OQlb(x9
zHcjF;f7-XtOHOy$Gm<aJV!q^1?&a*y34!@o%Ku<_wE8gqC4X)Xs=lIq>bp9r@lg0I
znHd;#V$7ca5y10hW%Z9#m|iYP<H*fqMupH;io>ZwN%pHN110o!O{?Boos9LZ@)%Vq
z3yuF8Xnf2>iJ;KIijqm=YRfD0Ym+98?~vwHe=}&h-p5d_aJI0CA}f+topz1EdGs(L
zMZH#@WxLJ2VGdsskh~N?a7w&BcA^OCfQ(p3;bcPT`NT`x?-+VN3K?H{Y)NiBg$oU^
zCLKOY{))0$N6OPV)hLN4P0P$2?&U1Y&45JvvSTBHav87v+;eq#)A__pJMYM&SGCt&
ze|hobpsMW4WOxc@qaIJO%)mB<ZL&k5VyzQ3?5?qGAKZtA@V)?oQ~3EA_9*mK*_ThF
zOW)(lW?VKon7Zrr#w*;6&y{C(kA;a{KnZk8D<(bhqAen>UYKUxc)hZH?e;eK@L{lW
zB*x2WydkvoNJbMTJMo&&R?oO>b8!B$e|oB_U(42m!EgPS<rKqVsw4k&!`-s+!K{Ug
zj7!cx?YMH2Y8#_|-yLEmHh|!iRH3vUg}yp=c@pz!z@Fko<U4bNYC0N%JRd)FeLDgE
zs93Pfp=*BZIPi?(l1V7R@i!F`QF<{+?eGCUC7H}X-PwC&A)X^pqr9F}y7;<If2wd@
zf#!EKzY&~nNSmnzr+_GCzVs|P*W9Q(Vum8?!F?vSIAPY&2jp?k$cI*7OEpX92M~Rr
zxW>!KGMO?yQ!3uG()w-nA^Re8a)mH3dPJAs%2d^<nyx6>PJU*4|3fY`fQ|+boQew)
zgGTWG!0gPgSrV7L9G~vK9nE(ee?M9x$9)`k{^FzXH*a4SUoHC>pEjAXR7$L4#>95=
z)ko6zpb2sJUjYQCtEUc3fF{HyR(-{6mD8nC=%}-XUa6<|fJf8_ivvdR*I>BvAEsVw
zZ)3HpjXZK2eV5S`dB}F<3uumkRzBtv=$l9I*NA`S<#M*GoI53ro_dHtf2k1cx^v{=
zRmdawz`G}n`!7s!dM4epI@_c4Fg|8czzF`IV(w`&r=ES9PK=C3sm@(L{pR)SJF(~W
zD+*;)y|~vyJ!4)@5<#JNC}!s6O0{1*@Bd+9@a%WuiC5}!Up=B6mI8>87N|TH_{a4X
zD72Jpc~w=*>qOsYj->Qie`2Gj_}_Y_Un?DP>zN`kfH)DIN^iZyY&vXgz857Be+?eO
z6U+lf@KeRz(`2IFNX;Zh+M%X6PYHRFr1;=e%*j7eu8rDQ_7rm}Zv}1Z2>u(<)Dsgv
zSKFnUWz=Y&sFC0Oz?v)$g_ggG(Bnq$#ux<<uc8F`K@u4^GzFm7e=S=%JO8Se_43*u
z7kZ97I00G&mseK(<y`wVWl8burfG_Tx`<<5%+RS$vpvV>L-UJdW}rF->h48QB%6E`
zry;l#`@HIq2CF&A^o+*h#KZ70=D9`s)d$68=PjK+x8~)sg!yMQpEfJ2pwMD=M50_2
zsyuKy5y0^?x62u{e+6z1Em?Zuyuk<SQ5)rw*au!dKQKlFg>IR9x$J(h(%YgBBlg6k
zoVdo6h%G6vo&FI{U1>TWKqzpq{Ja^?A##7G$1Z;Ek+mu)z3S=>&e|7=?>3*zN!Y3-
z3G6;djGLBbXrF{%{U&y@?6dJg@P%r*Di?AFpHO+M1DE(>e`1mgjU!K;Xs(*=aOS2$
zsIz2T^XvAAs_=bxPaY737K6%a%zMw}?zN=~03ZHHx6v5c)<)0u-f#xiF*~AM)k%|8
z@E#jR<GOs3$EV0Qp>L%|qXetw<sT)~b6vfsh@jA)R4>P`bB@z{I4x2PC1D}=EH8I&
z$2?_d5p#Q1e<VhhyzI6~0CA(}m{@s?SDk9=B<J8ZkBkkx2e!vwHHSqhK=Z3LdQ41}
z|GK9qWM3Ss+LtVbYP7mJvtaEBCFwK|I4+hz<+1#Twc{bi7DitAkV2OpIgWG+dk;`M
z+unNJqlldrC;dTcqgeovA)0#eR*_46D9g=4zDacKe*{A5dBrJ~@nM%y5UDZfXaU=1
z`ZOtEw=Un9K9UjPO*J}L`D`>Qc~VFEiu{>x8GmA+RfUq|p{qW1y8~<e?#r5$gwNh|
zw7$gZ^5P~L5fpmSv`CBt#uPH16bJOA{4quI-hF!YS0OkFT@~S3_`WSY2`~E@@>cVt
zmnV5Wf4%&`p=Gt|exml~En6*1X{Rxv(5rEof$5~Dn=Jx}R_G&na$$GJy`MaDy5lmx
zysTRJmrtW-DDAU51Q~`FUu9Q?{L$K@fBJFLy_)Le^!5pg8_*q)?dC$U#{!QuXgXc5
zQLwr+{M@FC)j=~elN)x1j&IxOpFUMr1nMS*f6ECzt+k`fyvG<n9kYB|@mO`{+6vm^
zbQ2jR=ruMH6WWN`5ix@QQZ)7T-Kq$}$$<3rvt96?j`}+`B$}POn-sJogeVYAZL@H3
z{`AK5x?6JrHZmpc8UrKoYSw3~5isZ~?w$s^(Wj%(7-h+%@{c7uU1V76R7(L?^V#Yx
ze`TXvu3D44{I^SQTLBb=bcB_vI=?qMn_WEXtw=@Vwd%_9wIMz`cI+A<f_f+Jo_5N?
zcH&q-@&vKz#yw+oCid+dmlsAQ?{Q_jR&}g0b1>U^&DH`fHqIJw8nNu!+sDf9GwR1W
zFXt=0Eh@|{T#*>B3N7XBmJ{WoQbpDDe?(As#)_5cg*<BEkwROgBv4vATbrA9Wgl60
zC$|Dz1kC5N)F$1mlFtcl+a6M?FiKCeqdlrBO04Y6ZYVrU3?MjtnsE>iL5&sP+@4P6
zRL%Kx!==ioq$Mz7SANYNS0@wS(>7w`i~)_31s8oAk6bZqSmMOuyUFUkyg1Tff9K6r
z2hn0C(10K<*=!O(e25YlMx=d;Em0crOaf&*X=C1Hf$`(G{f(aSW4A2;G)msTNYeFw
z6tdy7lsEYCb)i|piNi-x&~mP8>j*|dKDX7rGSra<B+-Ey#|%B&Mpo^1{&;ig2=r2!
zrsUrXbT{2QR;CzAl=Sv(4mxMWfAfK&e^pc-%jevFZE?wkmL=87?K!hW_!**69@_qo
zS{l=G*=w&k8KA}NtN^`9?r-v9HA^PD8_1qLZ=mvM>%+%piqK*)1>R4Y1C7l!D1q|)
zWtwfrrb#wA0moGQqg!^p4L-f&@xtGvf!&*l<osL7m%K|KJ~ga)x2S}}e;?&x6>*tL
zk-Fw61%(7R0|-u4i)V?T&}<boD#vg6WL;~ZW=l%SlH#_Ct7T)Ns~*?i9<L{Yk{SEb
zmy&Z~arh*g#t*6nOFwT(xucj7e$#J_>CBTx!Wbrx<)Zmf8k+v+sJXSixoqMYPApl@
zSDUeFWnJqB%cJUHLBA^!e}Pz(<D?wJSe8jgo_a{z^p9Ss<4OtMjRgfyJowT85ik;=
z$DxDf%s`>pN|z}apBGm=Sr<brS&Wi>Uf23M(f7p^r^5-eRaT?Wc<JTw{tv3%iYHcm
zu0JIq*)d)1Y<t17)=*c148|m&M+yirvJ!QnQ8nSucBit@=wRiVf0CWYYdtNLTjy$w
z5J5GMd|gv?CQ-AEZ5tC!Y}+;`$;6r1X2-TCnAj6@VtZnn6Wjd${Oi8lbsug&o$j@|
z*Xr(5b?WTBtBSFvg3meUqk@rMuEp9WuR|l-#ylcTOT&9;^131aj}AG;UM-;d(uMv;
zJ)`j;AgI5%v-Ol-M03;#x^66Zw=$^KfHi;PK-Va5%z%2$b~%ssjxj!sMT*H!BJdD*
zpV#v~p83nlf^x_$#9k{Vhy>^wNG|5<YJ1~gE<(@8Nzlp;*?DfZe#(?$x_%yh#Gd~_
z_)_LpNVjn-l)7<!DCdy0$<l59lX71z_L#yjv=jvY_wrPt5SpLJ4^<vA$s)ojUPjT)
zc^F5|+K}A4R72LKLVJ*XiFjPsJ{)Jw0TpYaCVCp7^=k4o_5N~{-5MC9zs=#yzP10+
zftCzqtMv)c{HmG?-i?zK`8Rj=aG0ytk0YPvplm$p+FRA&=I(ln=7HRj0!4|6IX-1M
zooP+b9M07-DtC=0A43liXkxo<-6J4|Jx0yU1U-DW3j548uDiBMT@($D$^p=*B-9O;
zemmQiN6Ye8IPy?olL2Wlm{bbiR$i_aIum;twJ^et2D;@`f~c++aD|s9{R{dvf=YU3
zKG%g`G9u#1PYhYhVSTEE5>rhhkpx5ChKpZ#d<_H_>pSWzZtm-JArJ&D;><LRo{+C<
z>LbD)vt#lWv#;uw^U7|dGgqhQbuFY*qWKzJQ@?!%Rw#9UVFA)j)rl)4t|(U#ySB$a
zZ{p?FsUHi72(Jbb1%oFsV4c~@>9hTq%WfE5OEu5CPn?gzRf445%4?`oVM!J(&}i8T
zh9-F#_NmKZ8AE<j_k#wdv0qG8A=WbzXk_<kkWp)Uu{~C|eu){Tq9ZE$zp0hJKkevT
zPTl?ttHD4XkOGtsur{6)pRJdhpraDXn$>;=wy`5+Opm33#bUx+&+)FYeic4$ZF2kg
z#EHU5FDqKTd8~UmOo}inOcdr}t_mBs?Q0D`inBy%({7kBYXL2xym_S{2MZ30G2?!1
z``{n~D%$f2LIdWlui@8}P3BM5dKXe|5<|J37ACK)x`2Z7BL0YaZ4~=WYPR5Eqk&yY
zrqMJ`#)I)`zt{NDl_UWw`75adGwfi~?X(wP9P#Rc`gln}RT>!dU1tAZ443FTQyN1b
zCA9SUxG&yb2XE*lB>p2UGoK65GQI5qtZS?M+y&Hx88bVcY*!UQWa9mnc|D5})Rtj3
zJ;+$W7D!yWyrn2DbmoX3Wgkd}raF8lt$e1(pvV>PUrc}O(Q>qTh|%YJH-ndBxsN|X
zB&OfWs<{tEFRTR%N<NH+Mi>Cw<-Jq*k&@nZTotnx9oJkbW4gpH&#bX?HhC)ih$Vh|
ztk+~u-9hKJvH-3|cut&JQv$Va^kbhuz%sn15r`qp#m|_uk<t@~JT+>fXlc~<_htWE
zRH4B(dG0ql7xmzl?)7onp@AZAV{`Ma;k)#Y^2T`+FSU!K#IQYn4Bnpo@#A!pSN`<m
z=au`_*T+V4*=~BUtFA(tK(B^pxAyYDS(2^(qqOX+_@D7a7PHiyHp~y>OKo1{U~cQu
z06_8Qmsg3WSklYQoO-=}@W1*or4nv~nt`;CDX{#(WHm}^*HkJ?43Ygpb!^S|rjZLD
zHipgL^@kQ=F-axZP+>fy{1Ra!*)}?0JWX-K5b8*)x>8QjQ#8z8=+0t+&(C85HK)H=
z-KuRC`*Q;?$6SKv{<I3zWVv1Ld)O|2_TT0q5EQn|94dN-Z;_)pI;7jmKJI7s&Av=b
zK2m>M-|O=_y<4E*RCtIevEMEELA<Hw`-5*jy(Ta9?@!z(d<n39;i|7BRMDwcT&z`N
z*lWIg=OyRGF7(#lvwpXt`aR-CC^j2>Cts!lExn-XzA|li+^ZS7%46{_l<w^Bz4!pq
zEe;{5SyRD$W*ftQwOBB`uYwyq+`Wc>Q{U#b+3XFNSj3?e+ix;O`{f<-mP)2~lUBKi
zTll(pnjRsYik;J(Ec%mjxIU9Su8zmO;W*LhK7)63aVGpl(nt@Rpyr{{SJf8Q=iD#?
zVMDIKyA#{lJ0LH39)~M&7j;%P_DunC<Vm;B|D<t`rYf1_0MPyz{_*R${AxL`x@9Oz
z>LeGkCF^MDg9NYbMS~=N{=EqY^U(IH^<}$UAtbiVZlq$hTems%>UZlYz$e|KR0Im?
zcGpyjZ(YH^hK?tbec@H`c~>pPXs@`ok0o~(vSmk+1h-g5fdaJ~9mDgc>@U!z_dU&J
zF}FUm*@cztU(s4#N<NzxgS+zi$Jyw|>oD!&f`o;g@Qcs_(3Je4C-_}c2xiah@U_57
z`ynTt^y@U=CH9b@B6Tx(jRe$@uT4!%r27Yws!j1s8dc#_8#`-Z=R?fyb`BGX{c>4K
z!dIMgeD)S2gY$d!#X-Ix?FxW>ibnodtO9K>eszahPO6U8oi(4?B23}>+zG01B4#=i
zC8k=z=4^6*XL-S*i<Dj(L)a~JGx6e0wEarcZ%)^D^Sv>+?Ox)Qa@KTiEYLU1G^!Dk
zs8FTr!g{@wC%lQH!n3oY;80W{$0Dq}62s^}rHc4oG*BnMas~#?eNuo;9Nw*ZVsnO#
zqJG>R?0D5kheqYLy8M@^?J}6C(n<GZ{G?^9(n|aDL6qFe{6rUuK}q@Qb39cIj&(`?
z1-qv2A?u_n`^{n;x>r~E!!{$#lduR^gSdu&uQ$QdF8g_o{VK4`zTZ5yC6nx@s`}9Q
zqy_#f9i>)W&{M?Jci;jJ-LWheYFu0KhpMXIA%j<ll3XPxxBcyA6rRX*p6|he=89n>
z-_XB&&2>_2v@Xuhu{)Khf-hvGXen3~V8aj;lH`lwCgN{;xlyFEs7S||RJ?cgQ#AUU
z&zK+PpNjl1f0FB4dh>-(Hq#FaNa#k~d*;)ou#FX%!Wa5aOcfQ-+wa@H@@K13X|~SV
zU|eGznmx!;Gdmeaa@8fYMrg3%a?s2+`S~hp*NZYd;$p`Mgp`*K>AHJ%wBixW*2{g|
z_3D%nV%OL)_!@BJ&sdkBI4AK3Y&V+l`hnok=lLf771lIYRDZ{D@TiwmlB&Tr^icX8
zP|I|%S{92^hinWmeEj@cYKnfc9mneyT0SXh<AQNY>PIqa8Gp+2D3k9U7K@&XU9Z^p
z@ei^42nunFINtc^37IawN!mT1TjK1;*dgt=Zi`nMP(BBvW658lkL#t1O~MMMr4)<k
zlV6F3l{RzEx09acR9ciZd`?kzt7#kL@q6^2)I-G&(snignu?vt{+%LsPdaDUL8t@O
zW(amx0R<g7w60Q%f1ayWm)WGxLxD#uJN!ei$V+zanJ9h`eYb8mE<4HQH{yA!fzBYz
z_{bCH{EPclQ<@*_Q;*iR&nkKAhUKqQuD1D=k(B1&J#z8uzn5uSFpXI33g86e>Mb91
zzS`DC2{`3{^1oI$#TeJ;!-KQ|tFpcLkuijH1P-5mTCpR)l<na9ukYyqp?BHdrOBeZ
zfF6y-bkfu0ZT~o2)at;DRHD4<c>UCRhg$k;(aC73+$o+X;*2yMJIltyi``fMW&W{(
zkx`a<I#56yAIf+QmZIi5B@l5nwACZsPL}<`MNJ7<M9sCAXX6uB9(vhhgs?-Mx?2pw
zyuMhphqPOE)A6M@{At5-y;e)%YbTA`>aTwGYb$7{`bMy_7mah~coUr-=EN@z|D#}w
z{VE`i9A!K=ATD#Bddrga+U0<hf<MWC*a(|%@Y#$r+n-^%j?(0J*KZ%_s_8lYQ%&;2
z7K{zRHU0jx3bj1{IVF24y~UYFINl#Ds%4Hsk-Mq-ML`tD8bIuzjwFN$1gVQPjJeSy
z^y-_U{f}6GFT^`)Wqlh9_fGD^PV}~4TkepU&(jMQQu#TqMqkei#I`evv*4%MSRm{5
zYG>-f)o?=3r@PgO;+1sAxBS-97f$DO`_BL{pu8|kF0Sw>5^;}o!+4>93B@6_5d8$I
z8404WMe~!jz`bADm1#+*$;;U*rkBfwemRjM-q}eLoHTN!#G*btv?UuD&e-?J13#Z>
zhP*462MIk)x&BZNZ(8xS9h+2M%lC@DG%|8_ybvx`VmkPD?NPt}k*oc}Rr|%^V}T2Z
zk9nO8pTS8)_}a^-pP(%@%_siN>Pe$du0VgD9iJ2O6HthqAJ4ArQgp)}JF~E{Rr!}O
zlYH9Grf&b#$wvjZk1)A4GGWktaU8j4ANv=5S9+<0*RoVH;^f!L%VNH4rjyB=_iQKE
zvA|eoEIs|tKiNUkj5mRL>9#U$7ll5+Ds%aHVYc*aNE_p#`k-u9rHsj?$$&Wb5*FAK
z?6uq>PNYLuI-ge+Q)T^;A7}mOCUUP-%hV(T!*6D9%LoOUN{=s(yuO)(x;Mt5CQ2B@
z;rm~8z!UM9=l9K^3s@j#d1#-0<1)1oKfgdpV(U(<KPh@iLzq4a@cas!zx>ezjA3Qk
z3~*N4;G>N-I#ZA+h;->a{a~%#vFa<wyxtruz%*9xpd?__ad^go<PCivXcUPQtKwy{
z&)PnndWxU!hHYW#fRB!k2l+9-MV~KEh<wL?xBhyO9riGvH{34B;AJLBjLdvFeP+e^
zi985Rw0kQ$*G2H!0&AZ;1W8Mvf{%l@CZ;1nWu|!oloNdkah6Qh_~+_{YH|2=iOzu1
z{8{p}Yc1ssChX72CuXLuyQG-^)h3RzzlYh+WxD^~W~3$&3XRK9dz6>fKj-$@=hSao
z@YJ4tOl*84dg-LWLTAll3EJ<M?L{mld8g=T7ti8HpJM9xLC)QNm|PFQmyI3?FNoHO
zlDX?%+CjIkpE*mw+JE&An}Ra-+GMPHiEwXau!bw%s~u}obui*jDI=k3E8!Q3kT)N#
zs<&pCsAubtu^%aP?tXXWtD$986DyAPP+ticGt_(c#fZ0C+YSc#!Vl5o%A1nozdU9$
zqkE`1v}&K4CvHBuQu)>ZnfukBk?atyEb9pMj|Qe&z9Qa*-pj|VN;d<7gnYi|<J$sp
z{F<7aP!E5ci0M6Q{eZccO`R%#LW&DCw#(T&HbDsI2@908gX~3tvD48)v0i7MV{ta2
zfbBae4Qsl2o2Z}6f;QCN(BCZ$9f!T6zD_LQLqEL*eU=U0o`X&XASH}ZR|L2|UDith
z{66{p0Lj4~2O>_&ir}@f#H8vPW6%$U)GvOTkv?%et*><jGY}65L5UpM!kQF6zf;>7
zc_{fU+C1H{Z;4DWwNK){eHC;&Ez(V4MP8&;MH$!Dfl}PznFy;SVRnaIY_7-Jgk#Se
zaqNoEs@Zvnzi`<GIx0e=Bb}F{Pf20KI0v}LH7OT6la;G*bMTCL(Rr6tEYy>{DaQwk
z4-_Vnal?Zs7JG<g(PMGWH2-)Kj%xWG;SLB?5dXQ4xu)AUq3XDU61(kxNkl<hcG}yn
z{56b^eo!!wMywH{!N<+sQv2;nNZQThc28RQ10xQMUL^J&SU>esTKgLkf>=(0Thd#2
zhQp^DP-oGZ9Q0U<@u{$~nI}mR;;Q}zBdbc8<{P7I(`taPdBuwPQ#t2z`K~ee?TyH6
zqkh8F^&x2X>!ifSB{s2;q+++QT=5d4)a<V@clnf9wTR?Fol<lUbyd={ujw4^-2Tvw
z$U^NXqa(>a;BO=15Wf9V9%Fei56c+7o-l{_I|n=jVm-vY)q}>Q<Im7vWw^Wkks<ZJ
zzk6md76Kh9zcOC@!fC!T;IsvRd?;ns6<j_6ZLG<5T%ne4xV#bo8C88TpP8g|623jq
z$qz|V{*wsZTfen%3Mm72ZsFs2$9_+`@`p0gdw>iCP#eRLY>w=!WbiDa&pPxofbzCc
zA%0;0D|!aP$h)LVH0BuLg!tigf_^@`j@HnJ9tnnv=INt=tw@|`c7JPWXimIs$h{wm
z-=36MMgOA4ik+6-k@TK%HEKSQ*gsZv<xAe;!nA1pFxFF(PZ2<c@)oqm2AdINw{Nu7
z$PY~`;HU1L+EZcGPu;hNQ~TUr*yi|BonPOCpXa0~ucOGs;@e+1P=)xs&QMJ-{blD0
zs0Nko`(dl5`G5SE<R?lUhnJ_?aFJju8v10o>3@vc1r27={%rKspQUR*^80s1Lmr7=
z@Lwoy6kAbNU8D$^b!=Tm;VY9882e?Y+Rqyxqx^(<xxKWt-s{2G%$YQL$Y7eW-D_J7
ziMb@7?n0Ammvp&IU@_1}_llFnZCu;p4F1;eTe7gU&0**Rv}qMnUnIk9VfJSTKMb9^
z<vmm4P&?;C@H@fo_H$Abd$K-Fzj;H;4uuS*99hZ1=r+Y&$+$4^`s>hx@0khy8=(VC
zDN&~d|GGZ&Jn2h}x!>vOhQN6A*9#Q)U(v8UrL#ao^%~4UE!8@+2Bu%#1;Yt4Rg0m=
zc{lY({y_N=>SaLDK%v|4Xoc4Y*?^Ms;{E>ppP}YurE8R93tPe)0K=!-)11?vE~eB;
zG@9(<WV_?OUv6=X@X((%O<0?xo+}3^`!NY}mOi971qkn&-mzR*6>Bf{{h9U!uE&}r
z_xhuC-q>|F9Vd6#%bjtzpf^otlTdKn8`te6ln~Ft&K@#;D<(Ulz8z&m`>%)5E|;?e
zTi!k2E_R)L>3%B=@oGt&LvERwfuKET&>!Jje}>f^mY1--6VHj%N4QqPuzLhNo$AEC
zSle$fMk|jXH-EBhgiELjArt0tW>4@n^~uMDzJRs??6YHgQh^Jv%Pl5TZfCgNYVE^%
z1iDo3KWZs=p;|BH;Pp`qZOfooBoXsL7@7_r!Kelj{%{!Ha!D%IHNZ#DZ$xPDsmI?_
zew{dVn5`47MN}W77W_$7Q}q-7WD=QM$H^&#{U?Um<GOgtgIlTJNmzAZ@W!fjMdR{Z
zrus?0IVsAgMu1BY@iCJ-^cFArERBBnD9<wqGC}7?B(yIz|GV9wP_Fp(`zMivXvyuv
zN+MoMc@kVMANS1!)3XJU&Li3G!R`i&4t;+TwONf~qL*g1Ez0G+S0pgK_eN-=VGOAU
zZ`slHnhp%d_N*?2rLiSw3MJc**^eP5@Y7)EwhaG5ZfAr>_s+g+r+(r;nX`~5`6fMi
zt<A0)Z=L9a`#|lt2G`Ym^tOdpqqJpIEc}xxzXSKD)%~zJjF!S0DZ((KjjDQfX+jfM
zJC08GBBVK)@|%KlkP<MvYEhc5V3Lz%qJ}`&nyc}{DD+OXs%|7PWDnDY32}D+qWSoI
z%-I0^=dH$vYCoMg-QmAWB^N2(r=Fl_aZ%-fc8>KK1K&kaJA)T_+*66zD~51Em0~lE
zRfTk~uBw(wC9D^`6WeH!3x(6M<&b}?*W=7Cy8hz`zH?9OJIDYB>RYPG?@4{P1v^tU
zI9<;i!LK>^WegtZkXg{;^Ic;H>NeHs@AYu6>o)XCGW~=^D$}>rGu+af$BtbCQbI}d
zLb$|?t=8fJrA^%OS}q1#UkOR|FLqDc#;oUvZv)WZ<nZ3U5zQ#Ejq{bYT+2@H2r0ok
zia*0>+iwfjzMlhrYC3Dd(WZk`;G;HI?vfu1Y>^oick4dfIuWn*lG2F(T3KnYd~wAn
z54VzPyN{orir+esqyJ%SQ$mkA{&wkGi;hxf$jTZXoxC_rSe|2ZK|GwnEoHT6JM-!g
zw1($!Aq~Ze%C#B(#poL6Fh(RyT>e8grGMyb8K$(kHgFs`+trqHh%RB7DE+70ae|CI
z!}^xjgwOa5z>+>T(88n5<t6>8I~3=v%<h)yOLTDokwW%kgKDAq_ek2w^b(B=T!L?w
z8cOz+gY^?7J^J^i$|iSS+-vKbGJ#Ki$FE@^k>MOy8AYhda@a{YdN-~dTC{G0ww&js
zG9ccW#0wtq0-8BT$yx|DP!Y*^G#NAh5d2%Uck^N4+*g(FEc>zcWfL!x>9Zc~9f*aM
z(o`<S!*o}yzez8l=G`}lui)(cfrUrd;DsvO`O;EC&y?#~*84SU-7di)b;oDj2B4@p
zOUiQ5q#a%LXV@)MAd}{NErOYNAo6$AxZ)r7$%p`A?GEE)pDV-y<M&r?VMyah<NQ)=
z&~goI{KPC;@UZmq)8odG^nDKm2!Ew+%&-!u5;xT#Y2$Z1=6KrH5zR|-7w>+8vy$U_
zbh#a!Pp**A4c|PqT`8&Ovw$(AE^-5gOkB(|LapD&rY^^$7g^!k$w^KImz<wF5`WuO
zHe(=$()X1H=xX)JoOp&XI|#(TPyaZWDqg&C{sfDjYEz$Gb}XYcb(ywMglYx({_PGD
zH0(hPET@Seo}~&!v@l4Pj!le3%`AJ33_tXA-adTP%+PgH(Tf;!aBzHL>l+#9n0RsY
zyH&_op%!I-s}UJgatujlxNjAr-c$0i*8ywm56VoG$o((aOK)x8KX#>@Zx-QR<(v~)
zlH1m_5Lp8(ql9$aS_^OD6IEi$2)MejqXu-r7Nh#SDhP!(fFs<Zx5!It3IXYt0|5+;
zM`(_n?#2486VDRWEA1`{vlCf!7(!i^S2$k1%VM?FOwk?q`H{pjfi$6OOy~5Y3m}?S
z)j?Rpa9ssZ(NC*D>eLqV`lg`k-w=9CsP<gDvnuYf(>rJF+GynW&C30dm3TrXoXdcT
zM*3Fgx=VMl*lKzrzp0^#_frFA)Y)>~8!_k+n)}20Ct>8M)12{_U}|k&`<<pF#uD<v
zDZ-&Pe$XZZ^gP3!VXMdQ>m7QkSAZ_PGt|EQ(bYhT_TMjeqYrh6zFvh9_$6=Mr@H93
zlCG-Ju6ABA=befq3vQmBNly3@_-cV)xKCE7-_*Vy+i8&43|%fAk|*6nMvp&qxO9{X
z*R;t<us-*MAruNv<1t_bhS#X9T^05ETJK)ySuiPxN4V*cLkx^aq>$-eE(3K{&2GPi
zwHKBh$}w|=lFe6fazCT)v6K3oURC5=E|~6l^i4ZovVd(f&>536Nrh{6#;gyxHc01A
zYi(#vdPpei2Yd7sU0iDFLif&w&Q;L~yieh&yx3CbYF|H9AIsZvY}KsdZ`m6y2Wj(9
z{&d`f;Gk&DXgP5i>kHXmMu0<J#=+Jghv_WeUS3+Z2WH%2Cz)FVRBpbkdtSEh`n$l`
zCGyGDQ@y}b^0nd7?ilqnR*MGiR5$NNr`3FDq$)Gfd%B*&Ow)AalQ~Ad<o>g3KtO{F
zR{u5dS#V@$z<6KSbDuB#6n6ztIhh$N7Uyf(Sw{>97ivz0C2D-K6`;#Ze8x<93D4Jx
zxXi6JA-NQPr{R=Rs%a{R<0Gzrp)gQo2T#UhOsZrU!P51s`!^@Y@xMcUcy=nB9De~j
zhLfn)@9y7&F8j~o4*sI*anUj>rHyE#o#@JkkfgUxd_gyU<F&Tg#ETYtTYF-RDqrE#
z_H11n5`m+WK6N?3IR(nYYp%GKn-S8q45L^vf9-&rjlhv<xJWznrf$DJ-1<AAXO>)W
z+6q$Ix0LOlAS<=&u3+j*IytGjz7cNB;qCb8Yp^~xs>@Gk!8!O64<6k7!>RDlpU{D3
zgtfU?*Ky6Mbz$8e`(!y&&+ZKx_{P>sc}M5}OnXTs@_hG<^9S;=RZ$4LJ!ZIy=Cq}L
zwg0)0oOqDe$yNSD?#9z3V-9&Tr>9Xh^A=FY&y*%bA>ICU9)3D}W$c4Fv5?r`WMjti
zTf*z19J^3h8WTHXHO^MN>b8kR+aYz8e69DvcU*-sAk=U|#uDE+Xm$<6f8Y7tzI-V5
z1u8j74F7<kV+I8L5#T3r%H^741gqb!tMrCbid1T-NVT>LaJQ&Gr8Z{bcfMICbY%SA
znj@o2PWsvF*J{fYT;9{x9Bao+vlNA@!&Nn&+|*pFG)<qtj3J*5o{fhp8?btzPD|BV
z&-nPyKEi$_b*A?En`*P)b_zdxC=4fQ6pe%LCVh;45imd*6t@9JN((C);UzfOno?@G
z(ei^y&QObiqfVv!u2a11SBasd{?6Xpo#jS)j)#1jqr}nbiSJI6U3!EQR}8=GA_;Hg
z-xfp+CNE2x^m3W+nfB~32#SV+S5^~UM~7NlC<x7^DPc{6uKo`qKH#d=)_s=1jvFqj
z=C{O-6CjATSu*agIVWin{XW+!EFsiPapSpmI(JUDHdjfirlIPo`HtvZlU44ph=)PV
zo$99)S^xbc#&H1svm>!Pyix-+{oYgxe*FzMvru=lxt!2-A?`^@OooJ_-uw9=`lrM2
z5s1<r^n`za$}Rb0@O{=xS*^uZX`tNxhXG1Q2;k*Z-sI*qE#)OeQuA!<<~LEcbYC)y
z`PtlawZ1?%y6WHn6Dq4ZUf_sOaEpCMtTg?5sFQMKx;JG9e55j_BJy|pjLLHTE0J$|
zb_>RD&dw?AE-}{S`kt8%(svx1ptN)guZ2MD21=6(HUVVn^OFuiG=$0I8^4g2jpdjF
z2cT`4udB*b+xPTXv+F+GI{8=bYldjxl=o7{_)3L-23?znQ$IyNw=y2vpW;GXcxFfg
znUrX@6-5>t10qvwuagkvwJOMyI{##RE8=oF@~lgturwT;vBSXg!tzz(7HWcao`pY4
z-OB#@X0=S`p3Nc`JAsAGh;0`YhLS1K6#zdmMMwW37nzsD>t_&ey!4hPBvf!Pt42e9
z%~N+5+WLE7|D{&AbqUnCzud@KLK~MwFzFK0URhuvNB5bjroj|Ge6XSA(!Sw_coq7I
zmLrfpIZ|UKev=%^%^?2H)pfHxHy+fuJZ&~wewe9VP%7FhBK_+HzRiX9!8zeuD<I?{
z&ULGB4RvX97@wQzZiV3Mz^^nGd7!j0nZev_Cjm6Ty(oWUtznU7);j(f!WNxQ@Ps^i
z->zg1Ws;sY^_Ao4X=2ZyU2nk~BjWl~_4wT{W=;Q`kHB>Ia(!C^B=r1vlqsFXN<qBK
z&AV9659_LgtCH}ZX-w0hND1Y(4(M`?TAH-R5TwpEuiUhW9IDw`-h|*}#r(l6F`1(B
z>|7EMihq16_C30fGiP@HvtP@_gw?3-((KruV<R`_T;2S<aSTV43(^l20Hqc}C2M)u
zHf&;AWV6T-(Et1O!#emEb>lMZuKvaSNs}b&J!jxgZe1b0boIB@)a-RLJ)i>$p9%Kf
zOg9?}|69|I$(?-78VyD!>5s9K&8RCu!PPuDCdC4ZHcGCb6;)uY+r0lgvrQ4-jP=D%
zQ^Q~N?(DDEN+@jhkP<h#`)u>zCr>s1VizdZ>F!P<0yQCd<TN*TIB{|B(*x&E#HV|8
z@}~7@&>fvO?UP^oaAMde379-a^@oJPBV!U!b0}D5Ota)0i~T<rj=JT_HU^iH-Hk`v
z808DF4}T{|%WWjl*82^O9QUqe`>TU7<sv7Tq$(iTf8A>Je3uq)!QDm7VCp2GS4ID+
z<2G}tV#r4Is`3O;oc$>814L5<nM7?_unHGh-T7g%+PCzOZ3;Ek2y8}226mC$l$PFm
z&AGA}x$Xs@au41ABO@C`4`p_=)$G6XE2NZ*Y=|2ZTF@?*RBMNp^wKN$+rpcGnSEQv
ztt;u|1+zwhiLv)JHZop+jQuk*P~k_?;qT3fqZk=&N2Yl4Iz-@-3t;cK8ecDO5=Br=
zg3a0+q>r5Re@YCB2YME{>2o~p&Lei12rddpFALI#H^T_*Z2?^RtwnXqE~f6*J@y)|
zAoTW`7`)H);H=uqTN`mu+}nOE=MTYSjr_H>sQ1cML%?$!t9{BuE6JA?v$6sOP`F&7
z`uKv05C7tQ>Pw>q*e$KovNHa)$o52S`b`Nl7AjN5_Xp}FNlLS9%i<v9j85x>d_iJJ
z5mGP>G(h(eBTX)nIh7&ANc1;h8Wk@`Jtt@gcRtyW`{Any(nOL)w8B8!mE`Ip!d>%&
zQ9?09QKbA3Yz#_g3LAtW*$k>%Wx#7eN-J_f_a%->qtB5Bpy%EK*7-LQFXN)tdtjhq
zN?Yg$?EN%`q@IMRd&_q61eD3Pkf^ec;};k?NU^T3PEC&&d}R-o9X@kffl-2dQFFnS
zG&jyn+=JdxZ^c%2J3E1skIEA5F2$$HYbrG?3|F;1{Sc^#0{?5^0k^)XMu4%ib<;Zm
zbZhTBXwF(588X-WZJ~kjZVdf)|E;x55ptFRG?qiYX;EIMW@e(%nXa^@;_uR9Sw&x+
zKld5}y7+tz+`-G2YN{gDr=T_I?8gUcrI?fzMxEoW`{I4(ONN1qh9W_Mzdo3xtPCTy
zWc@)%h;097@CFM&(_RbH^Z5AG1oK!AM4(elC{`&H{Hysem3Ryv_^0+=){H6nyl_`Z
z?LcKo9pAoU0~qv~ld<JSI~6aOlk#0EEGa3Gnw|~-X{xKA-ZLvH#^&)tl;#)9_Ut+8
zLfxZVdvbP^EW(MLzm6cE?>MzmKEO4RmMrMCf<_9T<Vk^;FGhzb5Mr1RXs1Cyk#k<R
zNWd6)84}Y-UI124>L`qWXftX+%8&XD8Ke_$jPx-x$Jzj1T(V@m9s;yHwh`Ne0dU#?
z+|*N)gs)h1{m4ea3<RkPyGB^x(y)caTK}|uOa?F}qd+KV2b`inm{Iqqo(!4xBSW|*
zfWITEfzbhw+hT96YF1<-Cc$9o``~O~biv}q0bs-7{m{p?_oi6j9tol_iMxVXw*|A7
zXbuX>34cq}zLG&+Im6<EjgVF4i=L66|0bKUT9iRYyN!06GM*{Z*Go8;r3xnEFJVpY
zrBcNw%PNF)ToFK<vr9NN0t*-{nUx&@@}<#P%pCzyu4u)B0I*0=a2cD7Ut}VMNun^Y
z`#n)6!Ka=Y&9#R-Wa(>Fq%l7QU~nBxgDIItU|KIIVFLQyn_@c-TG_og5Q?}QiQ^?8
zGi=GR%i3ENm?B|VJnuNk2v7Q$Qv_u-2&|BiLq^?`A*{Oi{fGksddaZTzjQ#jlEliJ
z&xim$NAi*ZgGG*DOqfQucwoukjv_dbin~Ez!Ls1Ij*tx0gAu*O1b^Dp@HOny(^`cX
zRA5ycY3gVZ@W{PTl832-vnRhKB#EH3oH~G!HF)v`1ciw$p}HoZxIqMHvlk)&MXJa1
z7j9UgO;^_M8gnd#Uj~+v1Y{R~Gv8<Edn5o=ka(_|s^7ZwhqFZw)MOirrP8>_vXIzX
zDY;b)#jB+8<&!+79(6Z1vs{;WBlr5rOh*;CEc?x7ZOczZ{W?}#5F0WSGO0#=;8FJj
z9ifTN*t*q*bH>e$M>*(5woQ&H9T;qJb=Z=7!A5IsriZOin(bS3b#O+8>VFC_J;eeq
zlx+C>j$N~T-1|kr`WT@DRK}vpWnYq^>t*$+3CG<mf+-QC4I5hO8AX{Q`@bZj`&sT@
z-PtqN6nh%sYfwvUWk|Tg(%yPiSCi?L@gdtOGKyV3D3sYIOf-ccOX#4~h=#|6j29)#
z>JNy7^s%huJc!YFt&uaFfUSO?4cr9uxkmBaJ@^7JiZF3-Neo^PcsepOAp+h8%qZMK
zYpxK$e#%<ZiK2v$nH|xyeE*Iez<kn>$F?rg+!cgS{aWL$!8fuGPZ*XN_D*BjYvz5W
zL*xgojS&k;_f<4V<mJ2gZUEe+Yf=j*q8T1=Ok&AXE(&e@posrVgDV-_%g+bE$U@+x
zBch@M3zmR&1CysfM6@x*Ei5k4l444e8V~LBNwO5MjM#%i5R6)5;%aenVqt4>`DWBP
zKj``==U9!N0ueX)x${J{S_?clkP&&&g&B5cO%N{J>+tI(!JgRE^c=IRH?)54O|876
zIs48Zw`nt{&a4>?^@cYb<G-5#wj<hx((MwyEBCwIo2d5y3qDznEVxzh0wPI`>?LFA
zLks-l4pt4kW={`_@wDs0{L3`4$aak-T(BowPCgG<k)gK|Z6|d~jS`I~rvfT4f6FL(
zPD2P||FsZ$Yf9xg-4p&F0m{e&WmW!c2<y<6EtSppP#jjB)z(}QJsvioRRJe?$d#~h
z`91j}*IheM3AlFg*3$zIHf~kL--Mgm*i&*F=_@BHQzYb?TZ8>sUyj6Wd?hFoUOJ=q
z4FQV1qOYZKttE_01G3-5xz*k_p#kN=+wg<!UP{Yw`fZaF%LhpuTG5jFqEn3QJ}RVJ
zVwp>3ty!KSuk4SWjv@r`RYL}mEErLGaik*8gNVuYk{+CUy6K2zNA#pIbeEi@v5(Ee
zl%?ID>mFuQAOggEpJz~<xER2pm$2A>=qBWfk$z@>vVmXc=-nMoa0TY)3WgEAaEJ}&
z3gg8Wz+0HRRQvaCj(XO<WxGx~a#FMoui&&-53(Mg40qqCTtO4?pbkg;cHC2PXP$@N
zwul?igvRmGQ2a3lL~=A@vw%1(S>N6oEsWkSrDwVWuZ6P-x@bPa=VoVTiH1NQafi63
zDsUg%mUoxo0m1>JFh>f?M>I^BVF}(d#9`0?7S5Yn-u4z8d<DpcT-4Xl7L}WYGU60g
zc3=k(q?DN^5&$U61SKTUK&AoPd8hu+Xm5N0&x#^w;h;=87zij%e*&_y$fX_|8`KEc
zK1LL1<Y^)#qOx~pDM%+_Oyv2GeDe>F0M-br_h2KWi%W3RdEg7)t!WMi$ADHLGeN!}
z7+S#wGZ(MML^J7~v>#aCi7<F0aR={RKbb!m%&QSzD{v`h_X-{X2S8e{p|TV|E7oVe
zTf*hPe)rr~E)q5qP;n`9++MN*f%+h?g<(<8O!E+Gp|-@JULk^7Nui<O`#tk&13?@l
zGSf%Uu<jQIcfvYt*q52ISN%rYz$-o;s4y6dF8+f8Y&+l?@VwuA26*~dJ|0^Hx}i+O
zR6hHUI(9+4RvkFCf^`wPhX*(j@kL4nBN~JIB>XK-lI1W)R6&0#Mr#YwHD>t(wvsd8
z2uTZCd)j2F2nQ_{c(-<4We@e_83=p%XM(CZgkvv9Z(i*cE@55Xy4VMmPkq1z?{i^}
zcHlj;rAU2iQS-u=D3Oq-)k%@^q@Qphy)%UY^r?POtct2|>wt)rt>5gc;}#_LeT&!!
z7u&Ql$(MQ_QUaYKUdtoLBOO&x1wNft$lOWRPU*E^2#B`mh@Z^73cyn(>Cn8>;?TO)
zOJGB(T+x#jM%VaYRlWv+O}`q<3WHBkAb}nJeJ!^n`B*CSvbMhKI$9SAFd!YCiv$Ng
z;EKXY!|p<m-%7~^-F%s4lwb8C3|eNR49R)`f+RfukD<@mhZ<()Z}pK&pj62HQ5r`0
zIrY*GwF6W)jA)_Y&&2NAzymc<Af8m0g24zW*^lp-tpaRGf<?_+?=!fK*5U2L5tEMk
zOMUq{--J=$cESR?jkhlW;wQqPci<!3u^Tj{qb&T?E8;lSjdO-SWC4%}txdt(z5(#L
z#4sN)jBbWwAcA$&M-a+mKk}Y`AI!&GD{1xP=%xe7+2FlPwYD8k@+ENn`L|zpPC+n3
zAdc5{(5I2${f~(hs(+e@@B0=D%hMxdFhPc4$mzX@f(KfU0Wb`>!h@<!+j#oW@&*5b
z_6Pk8YaSgsTOHt3P<Mm@2Sba;H?$&<!=KqxpUD^NkAB>moi2XP({AtURaDZ4LBCu7
zA<%>BmZ)C8u*ZB0^N%~fkno+}o!~A|RB)G{^0_sV<F%oo=T$iKM?b3J+tNx8KuA1b
z^B4rXaJ@AE+YY2^pSf#p3nObG2@AjDLw!8<!v{d_0t9|Hpevpx<G0I8Pk&ap1$Z!j
z3djT{bCu%}-W^eM2oy+Pv5k)@NMBI-gz)|4*xPHm-wNa-@zRqYH(vyZ)$yuw0k#jO
z8<SuFAS5^o!zZJP2_++xVJ%7IAzG_Wx`hiKLR)aM26X+79zxNsSH;E9IAOubKH9JQ
z0r{Y9k3ay#@$e{|QO?crbXjWNi;N9+2J8B)cLN!2gem?`Fi<0pN<?S8L&Fjl0`}2C
z`R5V>3?O+1xq5Fe)tC7g4m=ymqRyYu@T<54?DurxLhf<`JiIC{c<+!OuSbRsXO~&i
zhKAdKvd@#q6=<&%_e0vGP9skw1;ykzC0BB9?dfy25igy72xo_td?sRknru{00krLp
zsZaEv-2Nf}J!qik8m<<tXa?NW10yTCm%&s;P?RfN0x~U#fjS&PyN;4o#-5CD`$~s_
znoufAhJ!$arpmk?94GQj)H&GS#k~HQk_oV2stuDa7IlG29tzx{F?D$|5Kj2pYr+y0
z1;^L}wVzbRfdUhTIC`bbf+8&{bh$HDG?QU4eHYa`0j?l|6MH--j^<I3#s9aIuuP)l
znnyn&7TPhVfq;!dlwq5kv=zpTq6h6kKDy{aUC*L+{hSlBHmDCgAFLsR!4l%j%nzVH
zh+!|FT7W>LkWGLm<C&u*3uU_%%}gDPpDVr}dIDdcx;ALk6jELmsh)oXhC#-LCx9w`
zsJH@eE<*spXxu!xH7^S_>3sRK4b!&^eWvKb!iu)V)W5F%Nk3f|I6og(!9P+`=9vGW
z`5Dx!4~CDLR@NpyXj&F=5@F+gRR_q$&nq26&MQUED_w74D<Ytz%$OFE2cXfp+AEi`
zdv}uX%+Pu=Sn%cadvf;SA&Qh(rqF8h11VA997SNDXE9`GRIOC>x0go|Cq4zdPts=?
z{a!d4DdY3_W!tu8yxa+hDu0%DHp(x(ygz+!P(UC@?q&C7{^PA3sHQqj8<;yf2Q_ho
z-*$u2N-O)_SfT>Z2Qf*en&FnGddt9m^>HRCp|bo^3R*uhL5tF*&7+T$-a7$9K=i*-
z4ba<5SkYJx{XE_1L>9wD7_94o@RSakFcnY6B&2l8K$_I=L4@Mb=Stp@x_z!sgnDA}
z3LqQ-GoB`O4h5Two~hyl0)_*H@k7s^r;jONBw<xd>P29}#UYoc=ks<^ydh6KsUk$p
zv;+D>(+KgvzUdx;y|YJwgK={u56^;Q+4BE6pRa;|DTH%9Ujh5)nnbv)z9Tl+=g@Zg
ztu^JWyxg3qwgJkhkJ2Z=HUL3W<Ef8AV?aWus6kaClT(2jnNoBdz>VXd8xQT*o3p}U
z($FRbgE4F$oz1d|kZR$($}DIno0hAtRH8Y!2on#)AF9r0Yqd>6Z5$(?(b0e@D~vl=
zusNo!;td{?+z(zllSwoXoTKun>FdlmwO@23XK1JYjh~?C`Q@ZeZ_<SQ)wH$U4=L@E
zM4eH8*qY@`Tofx67(E(n$4Lv&Bqg%YPg+yKZ=m>dzl$g()1{s7Xr3xsh7I2VQ>jvP
zr>(h?b3jg4$4?4bQNvH@hYibZ(qA}ZE6PT=@BGr>-%6(eBZ7cz1nP_y|5fU;g@@wD
zm_a$_ixE3OCjQG&<PsHnWcgx5JN_Hk)>5pVo88@NkQsF_05Q1n*(LqmE&OGH&d^0o
ztmbKO>mdpC2tx&YZjSfQXXp(ZZOfzD7Cn3X=#5}{^4G*!Bw)Y<-U0<N33UXfu}vL(
zB|y$%9O1q7TYf^Y&54D~8?^9g#iLz(?AO7Z(H&=^g>0W#NC!GZ`Ew5uCaeN=6@8Sc
zrlN}rXkF%Mz|v7n(j)mC#_GP`BE6Y!Eo=f8U;JH{jxFZ(c+&q+QN5K&O|~`YRV$pl
zn7>@S7$}0xGYIuo%TGr?p;*g#kD%&!BSE}gGM)Fs?~4F?f2J`u*J))I3qm646u$8G
zq|dhuAQpQ>JQQrKLe<RSy``T;(p4Qn(6vlK7#hh0HrA!Up9yauxD>dwpDdJnyQ^7s
zTb%!K3A!$68*<r}(4;~@H0xue%fU?8k@;LGz(FLY^8C)I;b$>h(=Y3~P=H{$cd)5-
zusHQ_*p=2?*Ou2Ofc;4ra=V+CVroO4tr9Rv4uYh6nO$XWuIcJa_99|R-ejy0#cQCf
zgDHmxoGqUHu>xgaD<ShCe_sfti$QCn7JVr**QVB6)_S}`^a4e5!c-x(&omyet*A(_
z8fEtc1${-qHA@g>2yg2u{ccr3{(NQ_FV$Y*0<KIQD=p20NVHBc@lXD{Pf;~vp9m@U
zQhA_1r3PM#nV)_geJV@^*>Qj{b>1{Ppw}@8Y@&Jp6S{G8DXHx~8zg=s>`$G$2e_%{
zkm+X1A$F!Hnd1<ozZ;W<8e_HJvU6Y>w>sC(cZpYPTL8&#>ECPus~r7dLMFS0U0Zv!
zc$OeX8gI<+d@IxMjRldluso9BBjxMQFi9)bWb|jbA-15K!8FiCW?K^^)eRr=rNHC>
zi$w6(1MNtjT#1M6x)*e3<hR{5lP{^TXjoQ9q`26#E%2!u>N3h0da0wk50H?pKw&s8
z0rGq=V(bU;d-Rb%oC)guDPru4Ynvx9`*`7c4ak6-VMI%mIQ#Tvdvfl~-@A=B*Kvo@
zWOwzsb%hGNPo*IgTEg%<h#YnBCpQDIhyLip%#^X;`zd_xFp(b`ov^uYxcT%(6b?gJ
zNbS*K3|=aVarfZvnPd(RkIEh=xLk`>Xvu=t)`(!L0wy_A(0?LXjAUi`YN9rOCyvk{
zhp$wj1yQ>ttdRXi!#F?uYR0-8&y6QSL9(sv8Yf(hffIT95er_3AZe&_y9EcB`oP<Y
z@3ukyL)y8*R}n^o1WP3+675#vi~<{tHm&^dtA?rOlff0gd4Z9$+&4m8t^n4W;KtuD
z(r59pQ4K7)j>5Lbg7KLJ2lWuNiDg7WdW30r(K?F~{3u}ca4Aep)%En!2TSPnCltG=
zEpmfEMZd+}12;lyIXMlit(O4Bv>JE2?qZN^9T1d-8O4?0gNgI1X<w!88uNuHxrW@S
ztKRZGiJM=;@>%{y1?ah1GFlQ!ZI4_JR}TemhU@w)%ZPb44%o>M#o;C^9*4d@hCg{I
zzhW<*#GN;^wcNSccI(j#S_10(7oF=Zz+GYkv0-{MGv9)uR!1faI`D8h>yO>}{Gz4r
z!P*_B@-9)HumeWQOemq8*$yE91MOPOCW6po28l!x%Z0n`B(k4vZ{Z$j*P>PT9UfYr
zTEDCG$x+l9*DD`G;l&CrjN1qAHNHHbo|9nhCw44VgJ)+-z-3$5V`Ywl<m5MSGn^Xs
zZtrP927y9oyfud4WME$u<xzVi)Xe@7L-BUpybp3LjN@u!mmC%u2n>-4@)mv%BNSmN
zYxw-gY0xKM5X*+9EV{QYdVeC%^Y$s>XX5o$<0VlFvc-iMG&7gH7keAZtYsnA<5TKt
z+hwR5EvD1CfVZK(p(ZPSnG+dlndZ%QYg`H54B<F0n&Cu+19mO~O9yIXx0;}53CS*L
z>E19W{Fe+PunY~Hx6|KG5{EAcaUUkBkE%M&<r!-O{?KQ)41xcty*#M1aselhxq;gG
z>+G2xHfZJoo-n!l;ww0EQrTiI4~r{{l-KNE9I8WD-<p#J5=S@LNe>A$q<}A4BbV>P
zu$M#CLLdwo0csKhhQU|F)4(b?=DT#Lf8U<I?8*!94165n#67@Eb#Kxej=j|iK$gsZ
zVWwS-KqTOK99hgcUeK&OM5fBNZ#Q&gEu1tN5{yFTI&OG;u(YrdGr)$?(Yn)dBbR1`
z!A-I9r}}zY=d}8MHk2UVNJ3cNm-ag^?FDtYOS~d~0(gcT<4n1-6`6T~vVoLc^1=jP
z%-Zxp4s;<*5>S!vapto?8!xJfsw-<i-qE$X^1EFys^5CstwCTNnZBuna7E<^pYZMe
zQOqjQK;UcitV!-2`cs^R{Bm;wNQd_VL1EsIjD&>9Rtt}sy7B8in4*khSRL`dEi6Hu
zELB`V0(zRj7r&aC6Xgogb~>F}(i`;+$!8_*h3`SV-sJ{@H}6ap{GhF!{I**mJlF-{
zt*z6XHg=HTWH~=5_)f9Y?#EGFIcXMth2hEYj}UwKLbwd}kVLEQ#6p%-0<$c3{hu3q
zQdBgCG|)I%vO9@?{$bHT6Zgo9dN#U}%M`ZX0T3rmwLFZ!OOpHadt`gDDV@A*6Ckyn
zLsrp0W>?~nBmbHQ*lK>7F*YYBV+TyHZ13pQ=*p<_@u`=t-#*xnpDf@o$%xZGu_`L3
z&US1hL8GPVf<58Cc`FRlI4Z7W&q!b19s>?Robx`pprtR{SN(^=pt$e>BbGl!)l@`3
zfdS}^?Pw7`+)g}<XzTdwuvu_{>(AlBJq=3u;7+YI9>NF&K30NgNe~gS!l59a8FkL2
z#6v6J6mSfdBfW?&-d~;Xj8Dmj&D$RLMhXe`>pN8KrjCOGDoxBf(zHvv5tE1s*aWAI
zD4TXD@)uZzHVSapCwB<Gk!^&U;{h<BhvBrC`j*ko0#W$O0GJ5hc+Nn+GZ-}_Smz(I
zU~%kCe-RUv?JSBvlrW(KC5{>+3VhL0@4^osomGi?@>oLv@Tz{4aW<EbKT+(k@}c-6
zj!-6?M#P6@<EI~+muPj8o!wY*R8f$7roZs(>ycJ*TY79hdHdbO8Hc&m=K)w*$?D=d
zkzBa_kce48vWa?TAXw{Xm5)*naZj<ad{eKV;9JHHW;e2}7a2mc;Exf1<ZEKP_O*UL
z9zmG=__#QHPp|PdW;xd{9AwP@m5otZxgQ^wJizW4@S^zY29M!RgvpZ69?lcTwCa>X
z-<@H6dkxaT^9cA6;NdNn`~r*=F24(tm_V%SkNnEx&UXr)M<u@hD<%-<zNayx2U=2{
z3{|q;E?GH0uex7dp>S=Rlg+Sid8}`F?C&0Go>%#J9q2Up6HoBm{mRA+GVJ!78v_l0
zMg7`lc>lmp^6SgcYrx;_k5g{HDam$b!}s@aQiF^0E=gvZ<j#%sWNje1vt?7B#|yes
z5X!L40rc^hUSoI}`?&s2>hF2`63*?=nSOLHe|ezSVoLNZ`0U%>eR$U8YH(q2_R-n>
zSl<m2zdXp=NPm45K6`%$HCvk(s<nS;f;ITi1}vO{?$_Rzm>aIQJhnP)mq4Z|vB+1O
zG^R(T1yTWMYCO_Js=(sP@^qkY^I*B6)a4$XZdlA<5oAGS>*mVP8W?Of=_piebJ2<t
z(Y{$xPel2HdT7)>FFp)i0h_H6Mz57_<Zt&}VQKXV9?eX>$$Wp)!os|wJ@SX%^qL%G
zuvxMfqb?RuT1kZyGNPHGKXgwW9ViGVO}hALgKHSw$nF&vAFz@=m4ArtBFKxBs;vY6
znn{_YQzpb07L?E@8FhdXuHH;B#2{Lpk@~~3jgcB()-W#@qGyL=@rf8UmK7<x^Lu#L
z#wpn6ol@k^*Jj{GV!z0*>)KU>Kigg6N4*dBbcZ57Ky1rmaDW@Z7(69V3>n%&?vIbC
z&ek3cUhl_T0pyZM&~Kp-xO4g44aq18N9gJ25=g2R1jeZ6BPh$0QZk8{QeE-E<%M0c
zGC{B=8m~PUa`$(l!?!oM0YAxMz|;_M0~DM)rsw8WfIzPS9=vf18A{_;wjW)Sa(M+>
zBV;?B6RkSeJv?ShwloHUN-_d8TKygaGV|Nn31em7fw-UN#O$lcyqg&=gW+_Ooc)RH
zy;dOuMT{~~_U66-siAzhc347G4T57{L5J~|&q5bw6>!LLyxZu=c%IyN?+j`GQ1Z8J
z9lenRIO0m!M6yc|7DY`c`);&vztAoA$ZWDk8i?2V$<_~<$doe)$}VkE-uN9PMgPm+
zW~`+R1=4sYM<&0jIgLpSR>djk(tlXZ^4zieA!Nk9s&7vmV#$DOhLy-FsWww$3e&gu
zkr%l9HcgJ&b70ZzOInAa6AOD1Uwg+_AK;CIAi*FSvEq*p0)HJrJ6B%zkt<Mf&4t|r
z=R0dl?+_kVD^#$@l1FiYGiBd@JrUE0i02s=1!6mN+6Qz>C#G$GrV%0t&&?sQnYxu<
zUw!7nI4QZ$%c3@2sq3Tcs_4K{ZXY$^G+2Zbc8%?^QM3f^*c`+1l6TR#`@jfbSUMFN
zS)vJA^XP+PzWR%#oX_Ju?{jshcyp5Z=j4M8Y)Ncow(N%xP(iyI56F7xbp?DgO;MAw
z1jw?%Jly5?8)<tUB6z?HI%(40^j9|!sNc43E`0TdLuOb<bx8G%QF&%G4L=?QTOsWS
z0{7fRae0#8>7fnCDL*r`KS6{%r7wn?nSOApESWp-ur2IolRZdmJ^I?;gS`;ztiMM>
zKj1B6g{))uKyl_@ChP6n{Rf*sWWVXH>K`NmbGUy1w@^tLrNm*j46T1O=muh(V;q=l
zJJP>kV?&0L&bCfj*~qzOv$-;&?zyu$@zOQSK9T{Wg<32c!LA9|Dc7nmpDj27Oof_8
zbQ_@Fv<JFEkGt;na@ttws)ODf2bgh09etl>Eku*E#)<n;>e@!qu~<oJ7a9^TzkKe!
z`VD_!<R|o*%l-?f6>kpOHb`$KGS>c{3fo$~$R7sF_~%hQy4F<32rGi7+z{`NY4Tlr
zD>~X+Q4>~v)4dgLx<VX6mDozMB1O<!0Q4C%8Cf^u1KBfAYkKubxunC;E7N_k#^y4T
zP1b!<?kkuCa!ISppFE@KZMgwmToSk_lox*pqREb+OFVD-o1j6+LiyStcQsqJJCI)(
zphTyD8l|Wus+`+tsfMGWfJevBEdXfUWf#&plFT4#U21ztV<D)&S_Xq+4$c)krXu}o
zwU{jecScD-A{9Rp%a={m2PD`AWHQ+X6wL`omoN<dMf}$-#asz5pSaR}EKA>lOKN{f
z<iGdc?9eFSc#a&!YR)b6dow=wH{O3daDE+}I44J+j!uNkOOQK|xb?vcGMVT@)K8Sm
zl|B(iTf4Hyc?FC+h)mtJ9or)(_4$l2eJ3FIJQ)MnCW-x?pg8-(#Zg}z23+~}B-EV$
zNKv-~1pH9~BO&{)0&$+e1Uftv5Y&G)-vl4`Oz367CUO{Jg~S=cEVO`ROq`qtEl^VQ
zg8Aao`lc61d`6ezJ?0#+88PIk<ZxHX^cgeRE3=u#zg=zRR@O4F8ard3jLpN+`O)C;
z^r$!YHq^onrVez>6OSVmToO1FOc{4*6o5@}YzqiS|7)wWVcmu3(J^BT+s}WFS%3nY
zQg?_#MCG4CbHqNHA||wSV@oW?`@mz>zQ+!qA%_ye9WxiH!AiN4n~&syDLce??SE5@
zQ?pVw8!_)GjnUdDWIU~njrfyN&HKqO5|oVJVgpn^1IPeWX%lh4ID(#7@uD-?OOi+>
zHcaVkh<P`7{)GJk;SON(==gs~j9*36!#Mj<hNvb2%L5>pX2nAlTBZ+*uI~gEDh#_h
zKZ-Mh=jqFqqDhcfwm%UH&}TRgebiSBpmN{HKayNGKYjS1J|y{V#*lUuk&-s?zrb(5
zOKf8G#EMX+6(Gfd8aaU!OGEnvDLXjTw<`K@Y;KM)_r?IyDSIHI+Y^6(EPET!DNEx5
zO`JBdFU$Qw>>y&-vzUWZ7%(Uk<p7^d9}V4Kp)Xh^%d06*0DCZ6Psk)QO|F^L68Esn
z<KrfrBmY2N_lx6>0QRNJW{{f9gRHCl3*U9WO2*VDC47T~db1#r*x5lCaTNj7QegxZ
z(#KTMQ+kQ-BvF2HR4jkffL!$~u)}0{#*8u~6`?HkQa%tl@*$lHDNn}%Gpf%x;y`Et
zvf`z@44ol)kyy~Gh9ut?Q$l>~c^QJN!ciOYr0$rQ91bVW7&$(H9`c+CC38o1=*Yx^
z4xhn5?nK&%&;led%91jjH%g!Sbg)A`F~)4<1&i&sb+|Q7guZ_#hAgdV#_<n0P-zb1
z6deNaMf}Pn2LxP77&A3eDx7qPGtn4RwPtuaGw(;zoJT_b2Z<Em0I3(KBw%AW{do*i
z{1V@I>x&L`j?hVkm5HRfK9QPyA%6Pk(UX#2kz~L|f&}jt#Yez6@7B+R@qX&dkWii%
z0WzJbIO@$%z)gR@rGh~oq61|}6;3Z_W7yM^ZSGzBz*Bab>QI%fRlDqy>Xl2rfZly@
z=g1c`MNg>aAIOX*^1JeZ)SqP~`6W|fzDNwf7EG$Bdw<{W?Y;S-x7*v@*?$G*-fN42
z#U3W7u}ZM2)5}Hv`LjgUD9+3cv9pl|9b?e1L8wer#Xo<DrWt5@UsXnQ%;o|i_%R8@
z0wohuK`&BqK7brZ#R-fF;Z0`UfXL3c7EvhRbRnN59EDWROG&$qL3X6zsE5`0;!=FQ
zRKR;|)(3a`#T9J)ubnXtcG%2(K<<oy?jZq;%n_gAVA|^z(X_!}OXoU;V;1KO@pXjU
zCVhfUv6+7eeogL@8DJ=2SP<NPS=-9sCnn*R&}#sFBA?MLgaDx>7-mt|r-PI_lu>-*
zW1Zw{bM6pAQKsJ0W&jz6(;wvBTl`o0G&6`i%#$cmD{p)PjLb2=(UJe|s~dw8GBpy?
zI2^~veV<H?LviW~PPR$%A(}0pnXuocaVlqGroDfMnFYdXbeQ@f)$W7LC@5ryd>#;V
zQL0%uRaDwEp*ZkF3TTG-R{WN&>YR|N_L4ONfgJi|nue5bbfBvBflS++H22XBQdcR8
zit$j?pQkuDMU25IVts%pCHfKN!aTc*mZEzf2MB}|P4MT+VfbWvf&(;^HPa&zs@|U@
zKvsX%3;jt}l*}vjRnd`9dVr6|6jCftM%KYg)f%cwC#Fsxbi=76yMlEJKjV2c*E#F$
z*-QaDO()MxHMP0O941UlxuVjb%<ap8l{9;fc|A<?N|*<EC>LKLz>9++xJD?1KE6Q=
z;D94~1O0US3pe~Fu5+xb6u0+$RMpn=QDJ{ObH7{GP^DPaZ}E^TYi_R6hG(YL{H&9T
zt48N&PHs|KjATZpBy%dAoO*I|7!v0sLC+9!vF%B*w3%F6s*64=vbP0%D>J3j*%&Gm
ze!{+b;O|%u#lVYo%>Xc&@q%eK@uZHb#E*O>6zge9p^Ky?LZf%6_+DP@5rW&<PDp>$
z|LklSsF(x}nK&{TtK5pMAKr`phKOR~seBx)4_>MVvy;QYFsCPVd=G}jcka~hgBLI4
zdz=uY`j1fPwECZV(W^?)B>6+=a))Q;4;*-@KjPc^z61`bJG+FO)3`hNWg^LMzPU3b
zq`v%v`%Kz^WfW`kWRe@A{z30BL&AT=RNF0d6cs6@ly_8|%RuV$uKBAE&Xhn?RCxXB
z<$fn^R3$Inb>aj4!ebVFDz|{xl}&<#6dtUheNoIQx-oMC#0A&jU~0bYYzT;sz()tl
z(1t|@!@kDe#K(uh0zgmf%#znFpA-EEJ%<aa5$UI$9yk(Xlxt63P#ANXUVMK=Z@I0A
zIZKR`vJ|n2Al48z{%9l+i)W2QF_7g!+ZiX>TQqgj87N}K#7-JxTq>)_-{8gBbrEBZ
z^=MJ>@~qN7>QggyCYYjI==(bx6fsV*%N-47LZ}>*8IpO{EFRiOj^P{zQ>4wy9I&_B
zQ~xK9T}Fme9^VcKwxtMqn{0neNIdZ$Ay-Mnl`p7f77_q9n`<voDfr$k;<#i=8I+*n
zr&v!}Foc9LJoXpniXncb);C8?s?)M3aJA#1n;kZrUkPrxdh_b^N<EXv$A3PPm)5`O
z&M;#UO7d`8s;X8^mFBUCZ*+HL3%2uW@6DD()c~|mE(e-avj3?;zI=c4`qkF90H)TI
zEA8{f@_h%OfJD=o(6rLJyfQiSedNpI1ELJf5WK-^U+Khl75!v|T_wgATDU7paT+1{
zFKK%QAPCSc;PY@|3_@f|aJdC4VDkPXncjG9XW#7;^TVW%D{1Ee-oAYclKGOk##71W
z^m>s;Bo*fgU<R;C87_aQah11Ki3f!lxRSfpRjllaPL<tA8p)!kgMt8mI##Z-_}$n5
z#}o6wx}CBPR<Dl#Zh!g@U0)j^b)9ZelWuog&wl*=Z%lgRIu|2Urz4Px_P1#T_}c<9
zxndmBZyN+8*Ojz_0+^}C1BUoEaA$<*Oo~acz_?dLdjM=s!+n1-OM_oW+p#+xP!}rz
zy#M8BTZRSw-^xgdL-$&#QAte0BD)T8dQ2?kl&_yxKz^BL*oSzot<o&w4?i8mHg`se
zjv<cGgivIdSl$GT5g3yw@C<t)y(eP^P_g9R28?XWJzKxZY{!Ot^6;*#;{|bg=h_~X
zP|#C3mt#3=p7DR=Fw8D1x|i`$1;7lJaxDs6<o&*U50@{~>KGX3<&RaEl-)Utm!t$U
zgnU-`NM+%{qH%nmV@&vx)vqK2CowKq4E)A^#bSv89|;f`ev&kcpY6>C9An0!vBK-c
z3yDU?%D(G}lcU<lPKk%&FmLAwdcRW4(T6~8WDNg_O!j~KLgj)XUk*#omQnu2m>_qR
z|EPI&O*l_6Ub?-Oq(C)1fn(&e_?xsn=!5w}Y~504)s2i^8igL@C{78Tc7s(1qe<io
zaVcFNIFs8dvwz9Itu;F^h#iL#UmB<}4UQqcv!QS@d8G9zJB?^R)_~86w5I(ie>P^&
zc34!c5u|?{P|THiKgXwWb>aaynF!&(5C;f`__C^<vbMv))Im4uT6708hNpqF?h>l4
zR`KNDrZWcyo&y7p<1bnwDO*V;7g!%KGU3}`2B{Zcx)5)mn@B@t71peJgmypAXqW-V
z*`bPx<%3m8*&lwO;(wPOk!X||j<Lc%OX020fAxQ0&En{GQ-Ea15SgOb$QkqVQEwVs
zeqW<SA9T~CK>Nsne>zD@RBgYl>K65)@T%-cqi+5bQdIS`m;bbH_iD!c+wXeD4fV3}
zD@=Hu0X13kcz0?%^QnV+e$MMyS{b67;8nR*x}Ewd$JyKZDN<F*vr4=(8zoe3$C$s6
z_T_)^@m9A{az8Uy*<i`{Bb(**AXkIhas=gUejlYaBDLKUU*A)&7on1Q6be0;bH?M2
zV-%B5F`Fq;>HRyuqld&hv1`c5%vGY8NTcFJ!+xPnCy!!_70Z9e{3I2;SZmX!FUR)5
zB-!$fC5}g&_{Azw2bB8_7)NX|CZCh<aiV|n-(Gm+#Wr{mw|((@e2yyU)mnqeeN4g3
zeX`t$SPG!}MOut0aE+lA!AXMv4136hG=6IdiD!{9Wz(dTDqTNE%>{|5c4!G=KNO3g
z$?ut;hDAO-x<W`Ow{^9oJMl}pA2msu?($9y?CrmN6|1cV@nk|i*p9S?myYVOUeSLv
zacWSPkXlbw8%gFeE`8Tnpmb4b+84;Q`SQjnqkg4qpL3gb()zEfg=NP0SJ%Um;kKIC
zzoaIX;`eW@i`n9*NFmGpUZRzy>OGEXmeBF(XlM7uX&nmML+WRLX$4JAp5CR|GHTkg
zK+CnYR$W^{T@$3ekFF;B`gMln!&QG`ds;eqnWu+%_fKD;=iV<wx2X}C@UA68iaV5^
zaV9XE8JLMJY@$o32fIGlfBohZ>u+uti4VK;j0thvu>qod<YbK5&QebNE}4gs^kmog
z?I>L~4kHIri00AEA}Ltje!J#G*`><&j?gCy<R!#V-l_9B39@plqaTko-)euEq~_K5
zV*)Y(XLhv&a1VSCvin%2bO)S@9mxfl0cF~tJtG5hn}1Q$zBs^K*K62w;vruSCk*{X
zPx-#<Cm`8m+tLMMdl{Edid?;EXyZDi!X%!6dZ_vaK9LhN<!&V30R?x)qLl<13&Eb-
zc3ou-?us2KZ39KgTpAiEGAVyBn^|OmhZr|r<^qka#H2vzg(e?_wJtUQo&fY&usfDP
z4P@X2X7*fxynH(hrq;vRm#>;+nl3{k?Rg*vkfJz>gFV47SQ6DCc>|G6)Dwe#yQY{U
zilKTwA_3B1CADP;B|<zk4cqdmf+FZD5*)tM&!O)kuB>D69I<V1i?n}byR4&)Q`LlF
zY3ELi(Vrr+LL^3326<ACxvq2@xm7P(CLDn3Q*P!l&13`z@o&*7Ln&Z(kf{n90XCBl
z+|XwdVKYO%G&Mn9&)SKOQoB(3T-LnJP$K==s5G7TQgx3$i=$B-MnyGnz!$0Ji+0<9
zNV86%q#Xy_i6(Bq{r-P7*>FqoGtWSYxKy4~I){;5_>4o!qi`Ge_yz@H)fwFv%fCWO
z#;DOFP*X2=(~%Q*;%Fos)!EL51;ljU(RGI6LvidG6$$<j`EX%doyqOYwnW=|EmTZp
z?H7L(-zE_I5k(g>ir9?!ULWl3%11-V-S+2B$BZJ6kA7!vj?RB>V|3n>VH1;bIdon>
z3^p<pn>2A8sYz2@B=<P^ePqvN%%!TyiQ&Uco0Am5GmXxX&8|tK^E6#_D``)9GRoWN
zalL@e{wgZz9kbBuM%J~|Efbhd*($zZsuvv2q`xzgujejefI`(`29;=60`rA@r&jew
z62gIO$`acJ*`a^&rW7r;zkn2gu@8U*i73Yt>_RSebNf%@)vGS2CCG#1XX%2W)m_o*
zC;ew>{a?@`+vXRvC~h_=>q#0|XyY=kU<Xh9l;o`Jj7BH%HZzV>NN9VKIe_+nwUXH|
zR)Xlt5r;40G36Yn#&j@<hZK)Te6bx_VQP5i=*IYjo?w5OlftEb0wgV&=ZI76G9k_h
z<;oyie=G6$$|};9foYKeY5LgQQHPk2%5x@)q!?!|g`(LD!EP@Kt7ya9zwiC<R#nKG
zDQY}UNr3exS%5yUEId;ucN17dZe@KiS5Qn^gpJtXT*y)#Knp0mjr}&*+tpfx77oLB
z1m}@bP{x1A81p2`?TRKjs#znOoKl}(mrz95PC{wN?EV`{jG3ucfhkhXAz^B8%TwE;
z^@}+4*@aZIgzovzh;cJu25969ohwwMgB}dIT5p^vhc0P*9$!43!fOPW;BMtI$vA~r
ztBw+s(eRBUXtE{^7bOwPME%qqCiIcu#h;@ovLb(coWN;PNoq&555noC<z9K|!|4|d
z|Htl^FG;w+Zee)7F6e=;Umd*~yI;W$c=={`7yJj<v%8uIjcadifAV9U(7HNc=mt@F
zB`CCWtfINZzvmWd+%6T@-u4z1JlS*<*>e<BffUCJ0YT8>JH^mnzjj6K8Hwm7+v;UT
z5Y2z3eNFmaAwg()z&f~=pWGR(7)j7@kQ2*MV4?}`_Wqs@Mf&PxE-qgto~OFHX`}O5
z(fJOg+_dfUwKt1i9@UcWmXZju0QvDmU7Cs75Fmr86QEnO)SMd(9cZE!32i}Lc*zb=
zlg&|}9ZoO3I5vm+1i&8=63o#Z9i1E<TmXNs=RtXs2L>Za_HA%57#)FMe?B@B0JPUz
zZw6Tm>@tp1vl%zv1}_dioShvVT)fx<7n#NuB9{#RX*JsdM<=5runUgP4h06{*URyO
zBL;pt|8QCY1jv^KDq|Z;+ylY|>ukO-3x4;-Hi-Y&6Mq=uzK}U{6)omzdRZ5o))#+K
zA|@|UyC;KpM<?CPkLe6YwkB%u?WQ_N##q+P`@zTeN7dbo@SnMEWO{!Aw`;Vqil8Sl
zu1Lmjzd%q(yUXJA994{K*`qp1RF%R@ZIFs<qCc5?=HdIxqyHX$IKMbLzdSr14c?s`
zT^=6&H28ROad~=laejO-GGsE*S4@9;=@iuDS*I`n;2K0sKDZvJ2%1=+j%0)DtpTUX
z3x=|bg)OZpR$P!&-;3yR=WYY?2k?p`c<~{;_!wSx5HC531CYNOcq+Jw6)TskymnQT
zU%<J%T2?pY*6p#(D^lj@Bo0fm{h@3ob%<{rD*rE8n&y9yo|3TlPey{J`>21(|MKe1
ztKCfghrO5kdu{%Q$0%Pq0Cc}ov)k>1u6|h)^X%w3Cv>`_{<+cJ7S;J8M53<BxTU^@
zRGe@*My%ThU!;iW=A-S!zgbXJ#y|;0eaGCFKMZ7C#fTxA{5T<W-nFFM*X?XqCalC#
zUB!*+J4zl>i+Zp~qN?Y~BENsjM3MHFax62L=Do@Us8nSO_tbZa0uNEyg^xXptO_Oh
z?Gy*yKG-Yz1%B?z&As5aj{)WauF3W(Db}(7Yv>o>aW$b{JnA^+>v`Nfu4HMJqH4uU
za^dXOPF38xWV$j)SHY6MsaNLQ_i6^Hn%DZdO%pSnST|oW#R$7)KTCgZ*x!BiLrDe0
z5~mhRfP@j^+HM$qLt0p=lkZ80-LeXX5c3QjIz|63TQu=iOp|3(#NF0XO0IPd5r^1k
z_2Npamt{*}Oo)$QP$IJQ(~H${skln$ux&5E#B8q&0~~NP%}TTw18K1mgJ>ixXV~*l
zkYBx09qQ_nPllC4$Y+15yLhBKhH^{HcFraFJ{!#{Ggn5F?2O914vFnr8c0?wuO)9u
z-R@#;bRU^ui8v{J{b|7R=@E6r|9^e(Lr<;#Z%$-v=j_A9(Wu8i^JV*}*8lf*Ulr*8
zZT{cKDc^suv%7(@^dgtmO1CrYqvVthFau+xbGRupx9`92bnJgHiOMHh84V#1++e7T
zyi%_i)&s5hQNLfP+$dJ`rNc9Im#eIeZZV(XKs`oj!$@fs2^znU^uBzFAMkpyQH}V4
z-MBpyZ&byaRF2_0(lgvLFYA2y;s87Wy-(^iY)N<%F9Ll1x)fIOE^B$zv{hLeGZe_~
z4VD4nU=#fTHdTM}y)@-b0KYEiZ6!Z+w}6CjLBLc;(TRimO$fCr0vZK+0+eh6!w;j2
z_vc5W%faF4@!92YFdF^(;r#H&?>4WaF><*tLF$m=j+0n$l?}d>Ygqhrp?Sw4K%7*?
z#`|OUOV5KGT4n%oV8A%M`qwVFlToDJyaJBnA(wb)D@A|8QUa9WWYJSTg_V=%DG{cU
z9)bv(!{T?~_?DhV+4X8n-PNeg&_un)Ye8E{Iu4x!$KiYd94!7q(njpZ7iZ`O(HG5V
z<fx~zQd-Gh4VfGi-2B)bzE9>RH(gzzmlX^=uxTVf$}Z8!fGw~o)?RU)lzr)z78j1A
zUX+)3wN`($`cXa<fP{5{<LHS1jsrsWhYuV_#=&j;lI(nxRMpt$Z*OEB4`gIvK9s)Z
z)XEAHabMLn73{%;4Ym#;@E&Ahl-tn=2QJE3VPj^l+H)q+%Jg})X*8Zk(Ae81t4|u%
zrs6#7_}Ce#Rk~o6&2Ge*G3__;sqKiZxz)`2@pgX_TcLGLWVvokNn_L@qpN-Wni70x
z9}bT$kB1p?7Z4AzhATNO#4ty5_S^37J;ouASPyz073zlkrvLcb-O8ab{BVAeL1LBe
zS%_T8e6l~|vGKJV$E0aI_gh9$z?0%V+K6XSU2e>lfa(@YD9sA?y8lj30B{^hjPGJ<
zJfVM;uDDG8o?<mShF>MS#p#6RZ~-{HMgW2dx&?C_L>#f=Fp0-QW9DuW3-{u4*ss#s
zUWcgXky_n-@FKNm-?$BV=(aIeyhtsc(b4&*<AZ|r)41#AV&6&Xefc6bA}Y`7n>g^$
zXJD3_Z5P<X+WTa8OU`gl{Ewc|?pL!28*_j7stleG$?$lC^TyNX{n*H}M$Q_x5QB3j
zgx*5xHRBC-<L)%(k9wN+8<72fKMG6i?Z55q_I7)FPiUH(D>IpsTmg}8ppQMsk-|o_
zbaK`8T;4(&;9$ynRE6BSfYXGZl!_d;{mu~olY);)a6~Dg4D^4@0ltaru-;9UD)E0b
zvM$*4u**SL9ZtH|te0`ymiS59nRLN-TjfKO5yn|B3a1o$DCx3?<{@9i9p7XI(*>J8
z7ILF(v<3Zt>-(99E=%11UCxjnBFcI^^q1<R`u=bK)!SFEGxvY{`}@1?{oiAhFJE@P
z2RC@$m!69g>?5(o{5Th6ac8IxzTbaQt8nN0&e7*khpbiibNUKjS@LvbMX_3yA%041
zsrBt76=ZNwWl1l0rsQa5rAY^OfYT^&!JC)zpLjl!(ZE61Nq`B7>BJ}|Dduz^DqH&>
z5%lo{BM-nZROul*zaj-)*5{%RF%SmE$b}I@(nAvb5*w}QD@lxek4Zy%>5_k}VnE6>
z+U8h=>DJemGXGwP+^uTLm`GuX6f^_-PIlP;u{pWomT?+-tMz6`alj{_`#0wNP3#=D
zVxT(Pios?R*2kc0?m$hoOkW8?T|M4zv$+*}Y96Kya2XcKv&%W+5monD>OCkI1659Y
z<qYckB-KG~tI~l~btSzq$-jTj3E|ldxjXgA82ZU)^|!o~SQ2~l0M&35y84<%lY(~d
zQ6)nFo8~x|$+xba51lZ1G*zv(DhHhp{=A;ym%zO@Ar4j4@nZ?hnDiTuL8;)^bE@Uo
zP&dxdu4<1q)}+$hTRi(UMA=%6Dt44PJCjP1wzX2~>VH~?jsgj%@aTUPw99A6O`d<8
z)!L_IUg3$Put~PhrajngDGa=UAI{)eGzWXT&E;lMw%kgxuT1S#sk{Vr8&dUAsF})6
z-Gs9CX1pYot)|P7xu{_oor~}*q;zS;2cxxlz^kNh^2)a)=UUedOL1=8u5|1bR~z?b
zxke<hXKG3ESWN}aOS6BQY*b5_EP|`aH9~pKRzi8hVe3mgnVYB4knIMw!!=igVXF2L
zLp5HEadz&iVaLv4%Pt7(+H9!>5x1)s<*BOW%Owx7lvwYxCIRYBtNLhXKgu^EQaVYy
zO(6U1v&lohIS_q~RYb5%O{YnJHPB08G`RX}ep;iE9LH@O14w@y*R2c;qXv@`F?5uw
zo|+><n^U*}IVHwRj}IEt5M{b(2AiZPsT`oHQ!utbB^oWX49b#3Ps@_yFsmgUIxfk-
zs_tJZkx%8uJuO^6#rbm!uM1KvT+*(Hl`~fvsg~<vYD28z#J)>W%}xPaN4>&y!S%!|
zZq|Tyrs2a7F}HtmR4;QFTC2w7!l};jTzN?%AXHJ8P_Wti3Hylk-uq+>x+?o|hO@g{
z#kG>`k=?C={VJVTI{rPMuDpiRS6|TDrxgFG`Z4K@m*LTLBI07+EKXKj&zvRg8gQp*
z>FD9CdtsLlO>YxRQY<Uao6(|Rw=P80+!-!2p}LJdl@@<tjY0lOG)*Iy@zgekN;PK`
z+g18NwNQvU;Lh+};cl2HxIJyGhdv`0gwspR1lWasVXm>U1$W?&h;Z}V-1WxdhaXEC
zTAiwQ=h*Pj%q#cf40Wk*>3~-9ji34AV_8?+X9p;LooCFyMvI!dzo3Px{w02??gD3K
zKe{)1>HdF`JeRM7toNdln3D&jRQHQz2CyQflu5vstTCPmkdt{s=p{jP6n%dK&IIg`
zkQZcb+u`$Yrx!~o<bmJ8-JNbyP(59>MgSg=d5C=^W8@lR1b_ohgl3C_sV@YMOd77j
zv%8|=1Y*Bh;ABl8;#V&XOxi5S+v&nzU?_unCEtGvSAV*bp6|ghwa1>yaB?ZBb^l&M
z7Ooj0_gOhalVLUa*v(T@RQxBw0qFiu(6y>MmcKz<H@gA+Pw;7Q^6_W{J`GNe4+j^=
zAI|#!6UYZV)8tOhc!TX!+iD<_AA!WFOr`k`IGzA8OTCEt05hGQZ-%7j2=GYog3DND
z$^(B*25V%9bIFr3D2NBcCD^W<BP@N!mPiseBa&oN+D+xAF%S77T`Qvg)>iq?Dir0`
zmfV#R1pD#uw}Dkps(Sw*5zuMN8RB3}_zYZ`>Q@raE33^F(7|_^5Rx3vwRNO+6bemN
zXAlMWj|hQV6`&^x#dC5v7^)_xM20(_5CMO(E?A=u8m9s_N_=Fr#(VR{a5S_Gx54?l
z!GU!wFrPUg%P@dktR<5jvQVGD({|@{3|;+0ZuXKk+rX+PsaS$B&J7I*fKU%nmGWUE
ztz2&jy{?#ysss<AG<x3&iRZ)tg7miyF-e5tKXEWs-!Nj$U)y0AQW8=ujW0s{2~mF*
zCpaRW=}h%ixE*BcBtTNL!qEH%QLz(2ia__@_j-G~&Tbd<4qyn!*vA|r*83$IBi*|9
z9&>|DN}PeNJi^MC%blCOG2(Eq%2GifDJhk&drtys?}ZBDBz8AxM~6l<`i~#?das<_
zZSe1Vy|+uzs)$0Vo5xH~|IgALBx!%wd)GfmhP^RetSBHZPDa2{q2|RuZT}8N;z)m=
zvTxVRND8?Lmq-d*QB8@8(!A6;!C`^e2BpoU04Nxy+#cmHb!Lei1OOShMZT}HPsre(
zcI;tkGsa~6dD(|Ns^RI31Irkr*PQWHCSwwZJeKgQxja_T4RC70g>;L86N`V*$2D$a
zk_3h%-Q1BOJ}}(Hs!f?fEvmDfzp*j{wW^U`>$uB}Mk|jP)dRNUI4?hFE9CRTjr(A*
z%p?!e)7%`ViZkGH=$@Z6MD_fn@M=pUki?9>?@$UL6)my~`_Copf8#sV-U7~-u>h`#
z|F!>eKkNU$|9baLYybNg#qxikd=i(}8BfjPD{Q$3CfZCN-0XF(ap3ino6F7|ap*w~
z`yHU8aW;3&Og#wLL7%@AI3uWEdyK=tgUWs74g@&xP{6?}bqAAsy2|7QQnk`q&<eWZ
zp?_m+8)S$hunA&UhX{2mI<OoYz*aGW`l2ZnLA=a^sG~@0E>Ih>jTC=M&Fc0B`u-l=
z0gdQBsD1ZO^VnCFHZBFZuP=R-gWGr4Xt8a=SX-vjlBA8m$1^Lq@0i8ms*>2)#_LJ+
z1?~U~;5Bl!ThWi;g&juwMGP>x9Ia?;H%(e5mxaauESs&=@~xODyWUc>lz*mD6O;f{
zlT+0q?&ei)WaeMrTAqJCx3a|kpLxP{8tVf!`~TkSH+z}=|MlzFuiO3qF^Y92EmHu*
zJomhv@5?v$Bg-lvvw;^H3~W8<_FZgh(C*_k`?xfVsGWW-Z7W58ERz+;N_J70676Ty
zV3Y1W*PZuiZcxj~e+nHRGrr^jutxsx?!C$Re~Rj@{C|X!EHr;hVw<q*f?plSDRL1i
z5MgNvmUg9n(re&fxh%2%(}qmV)xTQ(@6CR8{l9+ws*V5nD5Zh^r*bqoDByG<L$f-{
zxJ)VqU)XG${o#xM?@j;wYN>}Q3$%<@SZt~Hz}GsqkzcC~7HWf4dSE3RsOgv5;TQ*y
zE)HY8Qmb(x<g<Tm@SVzzl<09^zR384>UZ$<t3>WQ(>>z)hdVHS^9lv7W%pI0U)3wL
zP5AliQi`sV)^t<ct>JL;4><QF7gd0H{QYqW`EPP~E&UEqC;xZ%-elzetG(ARTlxPO
zrQl84xNm0-D9!g&wzm6=>|$GDEgo7SU3O##I%}RWv6g>}QIS@Qn#yS_mZRUA8{6{O
zWd-@qZrtTA0BY}l-)8TBU+(U;`JW!8WW-}u_LoWbk#aV^k2;>D7rnob&*a!`Ci9EC
zdn7@x{jZ8ewQ=RPhLs1`WUF8yas@$D@^I^ME!&fcD+yA;uF)UW4bo9sw@NFgQ;O@I
zJ)LH}3b}ux<|$&zsJto>qDj3u<2<xjOca&r{O@}|ywx8#q*KI)@^hv>Lq2kKvhxb2
zoI~!;RQ~Nkz65|0AN7Hbdi4ai+9l+F+U|6T9iYzs=hfT&to(oVroI1tl#&sZh0)Um
zyDG7t3WlEA8Ol`patmas;jg}bw1<OAi60VgWXXRp04!0}FWvm=#M&E$h>rejQj8CL
zpWFf*j7b!DR&EleC9)-+lMm%AWBI?S249lE1q~wjC+#Mb%+uXwXkto^Hc44Bp1+mB
zIe}2M!aj#Sb}^6VkQoe<VTck>eKLUjNv|>J_zr4sKiy46MOl?>tFYGIt28Rf=1CFs
zI)#7u)hn+ygNBsM5uc%m0p?N|q8k2;HHB|}N%w$diTywCbhD=Wzx?~ptC#Kj@8gur
z60$tkGDp9(!*iAURWH#OhBD2#tf+N{cEf+D4WHs0?4zljmS6eu#3!Q{uDO$aVZNvc
zL-C(+c4MwQo(_D7=kc%78TAm;q&g-4L@s|vp7=5&jBEWc!9aXG9v-AW437_!4>Zp4
zsLo4~5cw};=Ep&>cp=YXCpd^cm;WAxp^xS$;Lw*@B3Y{HX~ej!uF#gxQL(glz#IpC
zu-8fUw9kF;=Jo5BuR8$ftdr{kCpNMVfxkE>M7k8Q1><OLNb%&~f0F%EkYb4gV4Z*b
zfAuQ+{`2z9%hvznQOXMMKM5b43qB~hDx8x5b3$=2?YV>^B4y!De1SMj0lCk%kb8bD
z!85R>W=^(dl)H89HBAtMo`=QW0DYwwC#|hV<Em}qIc;icyJ|`rA!s!EQ%kZtHSdUu
zJHAT}6cUcAANpX^&~*!ZXCeE;lX!oSf8?@+{1>OOWnKSdsgwWv`&s$F_j<3*|M4g#
zBRj0f6NwgoPJC2)7SO`OwO#lnl=iOgp;dn+)$&72AL4|#gdx_NG5F1j($M`~>9B~A
zh`LDrnmyZLWUAdDI+j%;hB7TBT8R?8#Jv8i$=jz^mX!Zv9C$*dTkHG(%a?y|bMODJ
zTK)e~N>lm&PECBf4LreZfcWSfO$1S_{dxuBnq8u=0#KO<Pbz}Ginr5YkqkyHr@#Rz
zV~~OCk|^LE^IjqQj?+)o#{UFc*--WxV9(B<(A0{#-AJ01CFH-lD`d+b0qW%c+noRJ
z{{DVz|NAKAOGOCWbO`xgxqE+xs?tjKbxU?-w)G)|e?%xY`?X%fH_;!Zq5Nr*Q`P*?
zmAS-IQ866zPsgOT$iDRCQgNgb^%nVM<czbD&T9K;1iB^(VYXMRPCW+2iIf@*)GVda
zu%D@qLX*BUJ#1xh7FE*7mN%})ts)lGQu1H!%24mhYrFs7eY>Bt|9yY`rj`GXQfzb2
z67?$%JeYFfE6~xZHi(plXm1qvm-|a^HGjR0Vs(vo`Sq_KcGkE4_xIoC&i`-r+w=dU
zloj6pG#{L5K3MJjZ<GR3tUA^o8H<*437XZ<e@nGp^E+YF5fr}@HgO~<g;0XavwT^M
zEn!gLNw?nku`n#M@Na)kcN}m;Z*0R-^Q8&z<Xh*AESsUBY!)x@9Fd48jZ>eSAXEaU
zc+V-YA<p0R7w<`FCyI3%Ah-8B>nqFb{~U5OiF}5*LlN}!QK|kysCxf@z5DuA*8k)6
z>(>AKaZ0oEw5au+nDcWz=jZ0h5cGcpE`dH`F0!B`HGA>vqV<2X`QlU<nHIe$SS(m(
zayrsgMuitr-NyF(Vhr76f4|4>4#TjQ&a&W=c}N23E+CEDbLKE90{Zc8Ul>Os8w+zq
zZ^&<W!l@oUEW)&*Wz;eTw0fI7Th5DhhM?yo#-w?t!Z@`F+Y8Db*2C_Q1@04OIJzrq
zWu)F~nx3IW@l$`UA4@NgA8dz@`bARU6jIGNA@NSCmrjwzS0%gxAL7h%Yt)a_+ceu1
zD1gkJAusX~J+mIZgr;YGR-&w|MK`b1rKZPDFF1!&G>m*-UE*tQ$}>}Lqp+9gWP$_C
z7Zy$Qm&WITLa|cZNh+{hAv=A^L~^w7iP=cZW+jrk36_7MD?JwD$QNN5iWbZvMGSEX
zOmT4+bmf*(hW_5Jy&NR3ar__{T5#`)Wk5XC7)4RJ5so%gg`oB}zm{3`8aBB`3(Zfg
zc_UT7Y`}E~w;c4mFQ5H&jcX&-S;O_wbReAgh-PJ;^>K~Eu)DhdC^({X97u5QDRj{g
zQ7rwDNZ^0jL#e8k+RGaPti#Kg*Bz(<X5AHqR*<To2u$Xfmw^D?IE%}j*?v|cS@F%k
zjhX%X*}9E9YVox4vZokF#w<M!Fh5Y~F%f0ycev8LNHXeSY&dD$pInsA)feMDn=8kt
z+~sKUi#wYWFMc%H+On^WYy>l#|C7MBC@<9(NO^w)D@{?xQj~2Sp+;JMyHcMhH_guv
zO*TmBl`$BhmMFi$)H*DI(F^11>6cJba#GG5LsPXZYuJLD)ufTNN7Q>!1Cy>e?I`Vl
zoiPq}*evtaaX)9i+~xez(<Z+KypVIJ)@{%qU=wgMk^!^9W(8TZk}CGq16y053nNat
z`CfnA8MzI>750D=UG?RE--A2gMqDP_1zq4w_OI;uw2_x7)`uz<WC8kVtuEcA1<^ID
zY*adeuV4GN0-dR+J^xgC;gt~0&c7)0YY$VM`nL||j#yWq$~>ny8@)8sY1DyBf=M~9
za&d#VySvW;*$EE3CSZUw7i%`;Gq4AoIsAWY{%sr8EQ`J)S~=24v8!U_f3cE2TR-+#
z07Et-yqo&$6UP5-LZU!!-~aPX7A*juA)PY4lAQC}_1k!D<{&@JGHtp9D}Tsr!%Od<
zWvj?J2XEiL1v?(P*<rK!k|-7I$psySKqm86iQ>L5P57;T|Arew1KwI5`KoQ<!B~H8
z1vJYA?HeU%3w5S!Qu!v3AAU;fPbsyXfNtDN;mM^?vC2(#AtKFjXxeX<!V2=K*cfu*
zZ<bWej8>gdrA3K%ul@>(2#dy*P4(~Dh9#_;JuBv<W7(+kBF`FCp-^mwL4`mxeN%Yr
z*x70;@Q9^nAt1{(vmv}H;ZQx;rLKQxijKbNhO0j6)OJ($##49U(0FVi#Y8SuA2OD{
z4A1?Pd39+9C5MfhJD!(#o7caNfcnF5!=tZ#)1N!(CYSvdHA~)V8=P}XS}rLYb5D*X
zn{MIit>0M6;8ov)HNqSPH`yb)n*Ddj7iWXh<IBUNcOTzpmc3j!dYWkf=|X=;fdgF`
z+NGPBJr9keY4H_B(%<mI=;HnP(dfTUE<b%Z`FMJCd3bzY+;6wR&d{yvWccCy;_~d{
z>ARzfUTWg?b*rRxqdhA|?ET^3Vo*xv7-o#cA>{B7(=w`-Y$#beT%I2dPmT`;7snsY
zE>Axk9+i-S`S1o+lQaeD<EVd(stw!_EN70Y;aQ}P7#eElfS<5m%VH^1hlA1R*AM51
zmp>h!lnuXZZ_^%PJ2lQ1c{VB1-y30Bgy2u9u#cuF+<rj|?JAiq)e%Kh>$4&mZ^|`V
z^y}PCR^rKnlaHf|qw~wbaCmt(I4zl!5}N}U#{W)leI=cp4rE_He;9vVR0z4{cER#)
zYK2azFOm{D)yv^NE>byQtFEo&AM0IMImfLPS5*$bC%mL`V{UqAs6R_AJ*{h=&3jJb
zGnl)3h`|3kxjZ@>ygNC%yf_)v>s|}Qx}Y17ZsAF>*%sR1Y-wS4aWc9bo*(^mbbdKH
zI{$QZetB>_{Q2m7Wn_OtiY7w6r8kHk;BY36Tg??lfzH9v`9%eD*4#BUkm0(YUylB<
zdN;*aS_M-fPR$1cu`+`OyO<%tU`5OZB_wEmE#XpsS!B;oR>b!FWI0ruEx3~p@1+*d
zNaKK!hk4H@)1L|Ba?s70RdjUl;q2__KxlU5D<;?1K@w<u$?ks+k4G!@c!-%>-)V*&
z;?^fPKtqZq_;W)vPma%yq*yur@8&pKy)1VYDnt7M&(WVGXiD3Q<I|)6`{8T}o{2kH
z1HR#OApUzorVY>?z8`!%JiZWUH^kNgf4_rfy7$Y2!Np(|EDj)temOD)y&jw#ADvxX
zo*tiFo*s=xgZF<&P5EC1xIe|gDPjyx(K3r}^z-2S=uq(T$%nz=<;n58^TGLXgRT=%
zH=03;ydgzCf!+xoQ%G?+4%xeh7|bdBY|D*$)K3Thy_9$=?do3Koj@Jxe<h$#@Er3d
z3>P0L<KbMM9G@PSAM~2{zNWz)jz2O)mmk{4(b2issP2C=wBo+kG_VUd`~{&9`uGO1
z<D5%i>A)@yhL^t_9SsL3$DfWym&a!pN9UggCrb>gxaS8MmREmnDj3pXh0fEY$2AQ_
z`VGxdz;m9Fr6U<#3@(mNg*X+P-iMFNa9ggshnSHA5(P~Ll9`f&4<FB#8B0N*>k@X;
z*%+RqIk|s9KVhGz-nL3dGkpK^yTRr8(dmazM?$5(s5*x=>T{XVWRi*4IC3|1l72EM
z#cvwJ<&xtR&`-=mfEXK6GA?<YO;t%_i#{igDG71~#*3iTfDvdT#@xp$3o#FJIED<F
zNK<)$0y7X!FEOJCdJEuuEV~~pzA~3KCf->5@MC{TLkkIInU*sOvM&ZIPpE(~Uwka<
zDs|Epm9NpFrfz&(PB^a%oEg~Lf7{#b?e_MxZDDiHu^73;dTR}2zZVt7oIM~VySA;~
znkbnUaMA|``iIDeiz3g0^olL0odp<{Iw_<<g~cuks&KXS)I&*E%z|N&>mtT3W)!g*
z@x6ZvK-sEUP!ov#h@vK-vQ<kgh3r>onE?63hEgRI@8#A~)K{5H)d~;lVj<!h5udK}
zcrxAr4k{M>h3}j;k_QTfOk%J%%dVyjb?&vCGO$)%PZ==xSWp>A_gYaISgS6n^Awm$
zE?mQ+%Jg=hRaIrex612K-E&7H12OYDw1R)){OwKho};m2#jpqkn?0GTsrTL|W6+(5
ze@kbCp11RTPn!F06&xatK6Am!-T?^`;vnnefl0;HfR{`=N9FITn7AT)LlR63!b?nO
z$;j>KuxjjuwWgP|F)XJ}%8?@Zefskl7XRd?JTI0Y-KrE@@!6+_<sZ<9G|4X32b_OK
zXoUgf?L9wP^0BCK&Nr?SK)G<v2P!DRieV4AkTQ@BXmBsv));D~L2HhPsqA_M^sLx4
znr#?rCrEEh$;<l+uk!_b@QjvwHT`lcJx+F*CSbK;gPU{lx)=Q(YNJ?clURumHVUf{
zq)se0Fwk$n{uKQYVTwG^9q6CTJsN)wrr_da1Z>y<v!uoC3<a_VW+1j2&R#{BmMS(%
z%?y+b!(`3ugD*`8*GQKu(c|K-QZ$<*4@dJpI7M?p7in_hKaqUr=!3oYxFMh0QGg5d
zy-b|ov?+d3^`dd5b;A`&ShgRrY@3Gr7%K~2ltLv6J;>3BQ^?U&2b@uX+%12_G+jx>
zH_-si9Vz+)bkC8B!QZWF7*miE-^ao9qpZ>gLFD@#P`J6;S8+uud(+8NJ>Mj`VlPaz
zKofg28)ypTXZTAt>XO}2F8Y@$nGk0QAeoO9e0Pl&+u%F7>4W}{`TKHN1AP4|Cq>t*
zl54pScK9X$pge@15-+O`D0F`c2bMHRBd0=Y7QHzXaD3v#kven#5h0d6(lSn{@kS{;
zAK^a>AJYnA@@Y^#*M}?#>0<%w7WDwSQ=g2XpZuu)mi$|`hEo_8q{e4!38qunOQR4-
zU#!sjU!Gwuv(@5%t~3AF+gJOqUS;Ed@9nqw-yfwsYV^(02NjCvkS>2plfo3P?KK47
z)cqEPpfo7?tEJ?9_8~aU_@80)&Aq3tggs8&&xE<3c<9e8x>}`bws4CTNX@*d2%t&b
z0`{$QSuO)#8xVB)4xf2o&{%LhP)yJq{3jI-)Mkx}7@NA<;|Bvxv2Jx7(B*JkTPRS2
zVY4Wp6}1ZkfL7GMU+jNR8}LJh{VeR~{;@I**oO`FS=37#=ks4L&SyQMc9=`eG;NH}
zHpXWg<Fk$NX+09QF+S@$Xk&b~F+P*h#`tVwe6}$@+Zdm1jL&r&2tP-=*XLnT{I441
zv+CHJZnNr(QB@BQ5!y4pdt5cDX9EB^9R4B!J-^L)Hur4VhVg&2=4{z8p6idW`6#hM
zv#U5pONb0_JP?Y1&EPMO&yFt+-(3#Q-!J2dZFR6Fe{u!!SLh#N+7#(u2PdV}tUz0L
zaxcWOgrpVLx|tW~jt<U`hZmzb9!4$J<vlEep)qq`63eQnbp=?K_0o_Do?!Ud;tg`Z
zMjQs-yG7Fgbd7(4c9wRcKm1HsZK#N4!gkj6Hzah$FcGOFVEJ^#_oilL4B!=~tTJ?P
z`RUd)nnT7BEoil5NaHpRaT|wtnYgJ|5Z$6B#}<J*qa+{^J0NqR+I7if(%q_~;OHM`
z2S1;GIQ#H%bb0XM^z`_mBG`6GVB>t>4K*<#xKbGC`K*7}OziH1Xg*3Xh_gE1GyM2N
zhI(!`&26mYW$=5#%YL1)l5>PudLMcCy`v4t{D1+Ot6u%8;x^^za`>*4ZR&yFOSzV}
zTt~r8VYL<QnPQj?gHSYHU`fF1lf%KV{+c2mMB4XYxMaxdRFirH1!g+hb?r7KK{FZ6
zx+!FF#%O;AH>@~Gl;VBx^HGECRpIT<Q1Nz}B_8*i#HW)8lm;^I?yaQe$7E|3E?5z+
zGE8tO=|29{xCa(ZR_Ni~V03hOc-E{7Asr6S8iPJQJ8TXb2VNeuk%dZQnumOmZ*^&e
z>sGBuOkws6whb}H%Dtnp<QSYE{CqjMxM(asAa#Fdmyq+uGDP>GVn8m{%S1+gY}(Jq
z^ZJOa5_&{)L0=nFt<8YYW<Y2&Aha0}+6)LaIJOxO+6)L4y|x(;+6)M7281>PLYo00
zD_`0S2yF(0HDo|2xp@5qDLXjLnQ7&(HJl`3UE!rha-|XaWxW(6NO+2w8W@L^M`1-2
zZ@Yg+o2Q}8)6nK=_?CGZQtS0zaphBxR*fp30&<U-@+mm?iYT9gv}!#0kp-ke8s6*a
zuArwi=4WU#@U)V>mF&++vbPy{RB1EtG?Vac2A(zpPn&_~;WO}*1lIS6dyS}r0!|kp
z!2x%akBAJm|Ao!A*&n|6|K9Y^uU6cBRcU|ZQXF!YMAk3-x$K@r(Lna+FjY0P*iw$K
z<%q6uFO)(sAC$fZO-Gq~tcGnt+gdk`f6?4IOPa8L>#R}FK5@;rcT)eWx&J?hbTCbL
z_3^SlrJU)P%$ro+cD0mA2Hx7TCFKA%O_Y>DY>qg^Ze>0gUBwz{jmy1(xqOJZRLg(5
zz;Y!csg3an8hOH(fLq29zL^`msP&z>VgdahtqeNH0U*>v6mX&w;+V+*3lf0<Ay53o
zLgeDf0zeRh*(~;lmA_fenkw5vFLjL1*5B$be>Ek?#F#%Po*YtaSg6O=1zis_F`!~|
z$l`^)(p^cRKsp>;3@%3>KAs;ORXcxmg%k&T0=hH8_>ajwNJuFE@oyf87@|M^jR8GW
z{ZDx<qyBk~7C-)tNeY&PIMeqgTU!nMyke3TR!wevN?@g~c?##O%8|yV*~jzaT9U=o
z>i^B#`5XJsghtKCk*tY$*egBUHdOiS;SC3)(KmHk$|6&Q#}hF=U&d#tkd=R`{MHJQ
zv@cYvr#{}?te5D*CM%x33*q0-@o25D7BkMn_t|`H0E9}@%6^qk=c0*|-|_43mkce|
zcxzh>a@E_WVrcicbSegTue+yWkPWV&9{6hXTQJf(FDy%7-j|iucY#>~aV^ZW{DtOU
zJt_CIzg{s@t8Nre^_igh+OdCVEv841J7-s53h9*f!EaqhU+4Ayh!9;kLLzjxL08|?
zrFxbb%DTVT54XY!tW>JxY{34$_ru$Aftaj~6@s_r8#lUQ&yBS#Tk&(a>M6J<Xfyvl
z)y%&Q#PgF&fBi(BnVLN@tu(7?l$M{(nwO`gUY%B**a95deAMMjYQ2B?s0%Ks>+&cU
zHffSVIfa0I5tqF{ZmgozswXQgDh+0Z<@7|ddl!(nDjjs{x6hby986`}=R)k$4_$Fv
z{wYZp-Io}YCVwvNL(Z7^c$V@70N)k7KNyRNnzZE&hLBo0Ht0I~m8VR%2dFPe+icox
zHtqXn)3(R>{F7;a>l}Z{f90}F{_h(%PPn^N0`Thm-@E(!Z}xKezhCaQ`M)2d*!jP2
z_DmLUm9nocgLlKs%t@}`BB|0OjrW&E>9ccbcfV0CZ2&gFM}`2OVP+u(Z~&m^Vfk-P
z0G}ZMT^>Ongwfc?Y<5QYIfC9|;CU1=rnUABFu}<8z!>@D7L0$93nK{}*|2Z1?~6St
z1Y;zQ8Wf2wl_L)@LIN<3xM-1rhZz`Ca*ZTnjLZ?ZQH;O<nSfv7)XRO{YQ}lU`a3&Q
z%xBS9&}b*g&usq_GZrDX^ZJK3Z}vMN$tKx@emH}fq|Q1OC~~4e`ZhQy@Z?FG^>y_9
zB@>COEZ+xy#5jMV$HR_L6!pLR;EV)<2piy61a4u#0rY(k5|0TQ2$EX)>%|<+;Eg0T
zref;Uq?p-49+(g+p^26ZUL!#`@o&Osh=O4(L{%5)1_fY@CWK0uix(8hE6>F?U|8(v
z;-iG8x+P$YfV9I9+yeb;X_*1tnTC%ogN-qA#SBVty$*jU<*4{-)w=eqbb1Y!^Ks>n
zP7zm^qB(eW*7FKcP@3ZWRjUlFy)3!^3kF+i@BjbR@Bc5~zTMC4|NHxIUbg%HW0c(6
zZ9bsBR>r?GiF~bXvHv4*3G@+jQR?~E#KZ2zqTgy1-+>hT=43j%ScIr~FET-R7QFnJ
zg?mDv_YQyhFmT1j(7Xpf-7ec#=I5$jM>M@-cqLueH5%Kt*)coZv2CYgvt#v+Z6_Vu
zwr$(CIyO%3=X=lJUDvf%)m~LoW6Uvc3p^O*8)Rl?nF17pq{@u2irtHCqD4D$k38l6
zjJi6B^HHb(*smy=8R{|z1VRBs(m+g_N-?*|jY@VE)9&2IGE{o)%kiA#z6u!4(I7!o
z>G5*ludV{hP<~b%cT=Np;$fWKawDDd!=kh&Fs_(qyoau^swcOpUb{4|f9TVtkvC%v
zkdoRoRy$-gjAua>ZsH|l-z=F?nt0~OUFa&OUFkBNjPA+;L0+#cGO8gHWyWw;*U?J>
zI2*4Q`c${&{;;=PR7mFeh7Hd*BR`v;ZWqthzq}&rBF(Vd{rD1<Q!WiEUv;sb$;*BN
z)${~{u~II9mvFjG0rq9>jaEA4O^sITztnBtmgm+QOnhprr?o$-e~Nq(D1Zykmia84
z0Nbmd^v&<PH#a+*D?gubOu-RIk3*pl9KaU%=yVz!1AUO8RZxVV@Z?d?T{wFN5!ib2
z6dAR8%toGi7pRR%UT~r3Z3W|yxx0jbbB6t|NZ{4=pkVB3OzMAsydm5sHjaI*o%wyE
zHXszS43N?!q8QIyf}QgJ9GtoL0`sPzxMJa9y?JmzkyVyX<yf}kzRG9*-46lh2w%F7
z`fb|CKZoB(?ff$#W^me;m0$`6&5z%R+7WrTpN6j6?tEgV`=_41?9IWw{V@`Np?>@Q
z<V&YPiSOvG9rOJ}{=8*GlwaP__UMi0U+)$U?w$*Oy~>}IT0ehvdcOVsC+GR`uXEF@
ze!J>h<_7;L?f3mJ>dYzoQQ~g<bm;B%b)9v~zcZ&(Sg{K0zLA4G4h!+rp!ev-*W3s@
zszYv2HoaWw0h8ZlrGN4gI##{?K#&{{t^fo!K`@faDO@6B;=3SKfFwv{@DxGHga|Qw
zXVLQMyC}`GM-8HIsUlb~%Cj7xNd+Sw!u~vWt!2#O@dzWAFiEAkCt@hAw^H8R7+g2w
z{R?@TH?zE)E(Id;x#W%zr9JloT5uY?&GDVHYUk<Ryxn>p13FS<8~QE?n3Fyr5aV~E
zY~(=TAl)G;Zv4-=;5tdqmxVOL5l#e(geIfWfA;)~XRVC?)E?fQ=6+Oo3JVru<ly6%
z-^IU+0-~$t$Si0wDo$8{$WC*1oPYu|%Kl~TYVxWeyUdJ!@typ<+$?+xGl($+nVBp2
zDnEiqvS9ntuY=I0o<K!>pk*&J)^HpwN{cTzBr!CU&Js8lrg^L%i!kU;s3Ydq&UY_(
zQ2*-Ne*G8JupbHPdUEi3G*K^S>N6@_3-ueJGOL7lFxluxM&J;_PP1D#!t^{j4DF3)
z>V?h2!8;OdJk$<?(*O_QFl#%AS7+xpWs%E@gvraRb2Az|I9pH>IEsiBVkSB%Z&QIy
z=E!-CZ3J*&&W&}%Yvs$6WJ@sNXVZ!2%!Eg)FL*9FAsc4;WT*epkFQI~=e5YBjU{va
z7<3{tm_9#0LN7#d$|b_dfzW&!=V<{(o*j_59G$8I@dsZR?pRXx@!wy3!}nn<gCCWk
z*DU+8{!)J+y`fqSfui7;9z78yWW@yOXGQZb$k!iF*j(?QZvd`d*|fM5QnpT#Dher4
z4J%q8f&=QuAcW{qF(L9xDBV8M-!-gaY&89!GTH}WvZh>aP!po-1(bKO5HvfoYp{p{
zgdGMTtm3)|ty*!gP9?N=rYaE<p1*09K*D!bS>iNF7@rVhf!9Nj^0Lds_4(*d4&q#B
z2@W*cIDKW&g<^?*iJE(%AFzT@c5(lndK8^#!5AZ37Ooroq9qO*oI2%=0ZOWwDBIM{
zbs}7ksP&pZjz(&;_m~*a>8TV(O6emJ6wVX=6g#Ed!>1?mI)o<9NA27;@tu=VsoeC3
zU-G(5{We{F1=@P_9d;#nEVqJd@E9c^#JWTmr8>5?{4ig6s^j5GJfq~ossve_RR0BI
z`vP@{qzk#ilzIO8i1nrl_1-4!+0ZmZ(SXw`lxT#^;-EI;ZmqX(JFYz*P(Lj}m|U9b
zBRf-s_85lWd~wG<4qh8`)1<mJuW?E=4bdG7%bXPX1>~gm&phx67&N5P1(m7QEDA{O
z?2_|vI5pnW#*iUCnRG;Pk_<x#7iy5bT^Rdb;SYcaZLGdV<$|2)-lmA9iES?=Sue}m
zgXFQ6kF9R+7%78VK>Dy)^L1s4(2x$8Wu`^_HZWVAB-|ICYleJv6Q^e_I2R2s__6~{
z8+54!{De*6b$D3+r(rNp9y%IJJ#(ju;fx~QReh|A=T#yBc_8&ql^n|Ean_F($$Lav
z6ME$$zZ@KQSeSo?0gP+d?$(6z{;Y{_w+`zxAM9+t4PInEzwoWWEqJ<p!;j8Xcc$M2
zlS;Z)K@#VvAlMIXMPlo{;Se{O*CFXAj;4PMkp6MkVXeRr^vz-AN@==&!>^nPJK%|R
zbZ8lKAZ8FC#hGea7_(3(oFrMqFkSk6d4CjlS0o$<?sp3N!{z*iipLQvf3!1a=6*-;
zR`Ri0<XOkr?6?u}cQqesU84`+4rYRH%L}m*DavYsVPK&K9^b@g^?lgrCpyS`<4r*9
z3v$(M<k!AxtQkTaN6U>7SQyenoYzmV)Hh+p6T`F?eOhw69*j^qOFL|33^LQ{WL84k
ze>lXs6^AEwN3E#ns|XZ$Rbza%9%!Zv2nBiA$f%jdQ~|K*%*tX8|9ax2*+ao65;E}C
zu)K<NH84d{s7Q>-9Y#p6nUg+~;cI~0q!=x85O1!*s<E9bC6BMrP*oNf2rCl7CrRw>
zo#`h6_f@B;t+v}}o}1DYh2z?sHGFTXx>Q?!`|R5#OY-4rYxsl5N=v_8G^YTNDPfbV
z#hpstw}Wjw>~?l@ysfl!YIO>`rbbSWmi8Fg-ro<t*|~W&Hl{%NhM`ZzX%5VO6u%k$
zeg!zL?RWETo2tuvSl&$PBY;5Dhi4%uKl$fjRVbc?2qcoq{TO!;R_Nif`bB!tt5=xW
zWVJEEme;zm0I`iO+&9hPY+jO2_-N$9%;25S2~-=EA&@jdjW(gN&?|p8Kp+jy<aHpp
zuuvdB3gj|qD`J!1OqJSE3Xn09>$HiwM1sz3$Lfh_BY%ZDp{g2hi||=XVkpMG(bP_X
z)(j-ER<&T7-9L-H4B4&+vEVX)NQK^-yXB1tp}fkImH*5u`#+HeB%_&RbFHNjz~Lu%
z8WBF%x#W`chV$C3=(x6BCgq!G18yqsAU^T5LJy9dBT5Mf@$a91fhas0JAaJ3pWIx{
z0&lioh50_Z*n$x}dhNen@DDQf90z9qb$=Y&Pf+H*4@0~W%x(j}KAzq#25q&fDq?(a
z@_q_)RQ<bgx2OY!W#F2rldOqZo2JOw8l!1Eycv64p{Bn+|8b=Rg^ZZ@f}@0fGO~wX
z8`4Sv6HC`z-^6!V2NXZupPK3LLvn$3wqjk4)Wc1ZaF{7c;+`)5UcP1f;*7;GyEE10
zn;HlL$*9-hn4hJgwSPoue8U+J2pdghc~mZ?FI+EO2wIpV&2>VLy}Xv)65H?5!TlbQ
z+Fjvz7fvNpkBp#m<*{U%NzEj=xmw7jzPy5uG%>1E6Ntb7MB2gF^Swd9KHcx|?_dqL
z_2{W{{Zztc#sv9i;;lJ}Ue+}0SFoVOBJdsfQb8g`J|jSG1gcw%&(oe8XS0}`Tvv=<
zxyZx(eEXhLXd3Auk;Dqq+;KZFj<*U8t<Uzz%?EChhcjToo>9`C-NaX2r~lZBP!Bp7
z?#VuVXQ?y~{5{7;Z*7?Eue+&cU-UY<Y1R1q$@ZnmltJN&^G&qk=&+n*KvO5ndNu*5
z#d~ggS%0C@?xQAFVm;1A7wm&a!!Y>$lX3AE6ND@D)V<TGXi+WaUmTgw*<^F|s{`}}
z{x$Q~(En4Vauqys(nT?K3FN9NlVUQR=*@5kmOw*wDcHpoX9~UTghObo=S6Vuo}dNi
zcGrA%6{eEkG%M(ySOb+=(;AutVpOiKq%H~GAZEQ2YsCGyq~S>!TnmcpB7K+xe$ou;
zayopwu(JU0G&Q_P)Kq1N)>~(!AAyE%IbY1C3|M!M6|grsUp`O~7hG4qQ@#ilWw({U
zJZJ#xH;2NbB4i5@LHD3A+7iJrI>54hlt1Y=bk$LWj5S%x0p%z_t}@dlhVF>^<n$-9
zmK#(WC)2*-w*GgY{tw2^1Phn{B+o!N({3xqi}Q5x&R`*(W_$V*VDorTjdisyl3gWU
zvs;M@xuVF!Fa{?S!0VEw2`lzQA~t~S48C2^{YH{hQk2w>^C(~xu_^Z9D`W6*Y`z2C
z1{WB{dD-_%P9MgzVqbJA$vsEe;Si8N{uQNm^@R=oNKfLA;hIr(Bo!G&4%SkIrh*?=
zZ;z;K-td!w1CN>L-Kv@(gVAfPecnZYnk7)WIGf=~8T>Zd3FCz-3&vFKNGm|+LMZZQ
z9umKViD%Zxg;$tA5k_*K(quGrK6ssaCM(6AA0ADnlXKK5FjXbPc?%A<9?7PYZ7~Mf
zBDx+?na0FBhHz8^Piq>H<{DQ$YC>b5bTy*`FOsEOv3@8@!MGBB5uS5wJ}@sfbljef
za54UWgQ@NU3_wlLef{xerAUBI6WfB}YPZLbVLg=yEob}I1$~yRnF#uXS)t4K7Bk7v
z3_Sc}XP35*FaK54Y`uSn><At~K^HT#n>#qh+H0M!CUV&84}%_UxeFE_hPzwc_0@Hm
z;Yb$G>Y82JkF(Jt_W`<vyLCaOYhx7dgX-8x@|g{0l7Mdoh>A}LW5D!PiA!<R%9h?P
z@MEQ(8-lb-YZ%%L^5`{1z;ty*n$I`xg5f@bo}u)^N45|Su%?=2aHj5q<Ol*2)z8_^
z8Pl{Jv|U#b;!`9LV+h`x@0A#LzQCr;)tM1xsK7ihM$>S(jyVW0P=VIcn1+6=uv-kw
zkdeurMNmFKq`if`2g+Zk3Wu{jt-1-Sf#sG#daEGXw3z@xkVHreZc7e~hjeak10xa%
znQw2+^bpsJSC29N02GDPnPJBwkrZ~#`C^WI(UE-66UCs8Y`;HA<oms>>lxT7O#=1W
z7{?tJ5S@TmYW<}T3zp9jluCmvvx@`|cl&V_25YnI|1d}3|ACJG69}Sz(<MOYb<u@4
z(6dF%w;U%=fi@+srde{z^5N_DaRe3}lCB>6ibAF-J6-IDTRjm<=yXYGvAsod9auzz
z{qZ{v6%`w9<wel|(_L)aMp?VP9BWh1|39QrNMIBO@Y4TA$VJn#8Rr%n>m&+p2?11~
zL}1P}shToc`pA?0HIrPdxYP%*8{kTd;VR&R3rUPDuSAr)oqxvkFHI)Fkkb$^WQh6o
z?PI9F`{P4v@jht{h<`QPyd1YCanwz7`x8|iXM;WF7MYF<OjlF{`5fd+{67eq;}6dc
z5&|D`3jnL_PWGq4kmd~aym~Xx17ONv_{Zq6)axIZ*5l3SLN6!@sWQ_813v$M#*%wr
zqH;fn;4L<^KG`qJT#NiIaNh6vA1tk8e#V(njY7H}M7ik10NAoG$m@hs&l-xWLQ93x
zlM>h=26S;K3m1cvPAB-Q+bBDrO{i;!gfjrcPiMkhYG$H|@1ahA@dXG0ZK0X4zlWr2
zp@DnZh1Xp#<Jt!b_Cs!HjH~f*cFc42_<yK(3Aaa@Hf`6gdo)hST@44Gm$)ha6QC)r
zzRm*>WLR42txLZ8UDC<KU@qljt0~P3PlG2{-`&U+-Z+S=Zq`2Tg{HAKBsO``Sa4Ke
zdBcI>@Ls6vL8r3@8WJDU@%*Mm^03YLjzU5Ydx_>CNznH###GOfP%X!sX{=4MV<yQ&
zkN4jkz-G)3#$@H#AUrRSe_aV(Ab0=#s5h;k*8M&YL}8Iqq6ih88kAOd|2Sxe8VZS~
zL!G1tdwsgnsWd|R>L0~V!|KR?$V@*jRIq<NAeG>SyRmu$$@h8xx|bqAA~<=Iw^$3G
z=$_7`H|pXH><Up9C{s~29Cn5L_`dVt6GT^~7^c40<rv;;8Fq1YK>`+LWd=WsR#qh2
z7qjog;FNiDxIc+4ALkJkw$e>qu5>DI&?>a~koG(Icz9hL|415C2=@Wo%QYl~$CM_X
z|E<Qpc54e9)BeenW(B7H_ibb)*s;+D!2{9K^gC#2`CiiJ#S@ZKreS#P8jJSv2KIhS
zh#1OlP~RPTZV@DFK$l#NWTIy=Os$Z=RbaDD{nYqwFjRCw?3j5(+fLGpI6M_#CKL{`
zAeCx@;^Ddvhg64aK?rU;E`mX*^^i3;{697ukU>5#;c`|~Jt<7~j{%7t5+`hS+P(Bz
zbQj{kyTozNf@z!2u;*EV#pC`)*1bHB5$upufBaSTGNJ!RF=~A$FK|aX6$TiroI?Lx
z#lk^TcrRv9$p4Q0<@1wl)$45zrj7>6&8Tq6&;=Rok^F2xzQvHN2b3oy|GMLS!(4p1
z<a)I7_+&i8k+7S*ry?b?V^>XwWfDx^e>(4@_g%+^I-Tt`-@9|o4<g$as_)awPv|6k
zMwyQ2+43W${JA0m0wrbDQl9JAn?#~=*<2`U^$R!4N=u<6FmD3;(9C#G1J_+c+#>Eh
zw}E6upBPZDoQzlK_(uO$W1&092fRIH$MZ@hOF=i~GGkGkP-URzkN9@HZJTdJ;!?H9
z)EM%ETm55X6>ym51!bUGOkU8H9;FNlT@^le{#6k;yp;N_-6;myeicxnoyi_q_TLe9
zcP9DChct@>F&H*OS|Kfy&vo`<xV!diM*g?Nv-`O4|FRt7t$i2i>^9)>{QG?A{fg!E
z#dPgS@%-ZYaRKsep|UQjrEx)dNdxspW?}U8C@fJ4Ip4|w+k}<EzsthipZ|SKDHF#O
zIP5IzBhtk3Jvg8zrxZLhPktf7+4Ql{G)A`{Nq%zQjpVb*##!20G51O_s-3a!0izJm
zsZ7BbwMOH|4U4&dwt#S9&^dN+!mCZt(UltT^FgH)#B?T=et()$=E5F&G0D-Z=rhfk
z_rDycoy_cNK!+E>8HsIrYVT^uyVwLO3~NAd6g>+dvBrV|Fd6Dq=n$Qkc-LH}Y<dl<
zXUV`jylVgi<ixu9Vs-7D_?AvK#I7~ra~d)T>W!hp>&{kxk${f?ODB~8ImMETnHh2~
zvU)6L@K_c;HEyS6jVnuul)tM=os8~S3dUDZ7k<O-Q@y|U{?5oH8LG!y#R#mtt<V&%
zwuEK5QakY{!1`L+B6?<p1r2?>1GE=m3VW*M$6$;~*GK0u?FaV8HEVujjxUSVnYt+_
zM(gD}>*;XB17HkBBf}G4NS)m$cPXaO;%%{M=CRt+xBv!v_=_-LJvq&K+b_4ODBF!2
z6jcS;1*VP71HqpABrWlQ@5bs=D4RRz+xJ6{wRh1ZMBJkEvNFe2Biih*RWf_p9cDGd
zK)&Z^iOWl2U<|iN-^BbGPZF2<-md>v@m&QSSzuBC$Z*WJUZ?(PxFW(xzt*74kHn|o
z5V4zk|5*59?h?6nn`+wmK2I?+k?HASxJC{EhO9spn&(^mQDMu}*u=M3r~c8Zlo|{7
z85R)O&~c|b7H}P-gZZ!Io7myX0M4IMC;y3CgBs%ZWT$kx=MMcRlk_l5!M6-%BXkYn
z-k<UlxQM_E>f90Aj-PjSq}_UZe&(x)5^G9ywq93NmmDd`{W(kghpK`(?im5}Ccyym
z(v>Nn5ihIPZy`^GZ;o|%o*tPTcn@7VejwM)Xo3g1c02tmry>YQ<G<Bv1fgzCpH|lz
zpDQ4_BS0rJy5UehL0KOB#%DvR(qGAzN{{=^KdMWvz_%MSsk3UC?$@ugYoW~_ecc7P
zM2s#toKH}VGf=6(zre1`9+@?dIn>RW-S$d!Jnk-Op);CGrv8bo;kEijnI*3k!7Uyh
zVe~8eRu;BDhPT*4{)EgG0Zg^EtB#O(n#J5V72@7VZS`6U`90i+ST^ThOs*FL*FR}k
zpi;XvA1bx;PA)7`?DCI!WSymHF_+}hs3>I}mV2AA*Vd9LfD7jQLUK@+s|N~WS%b3P
zoM5AAj=3U{Z-kYNS_-F%?aRq%%EK?LC9R6BVa-O<l47kTquYezJh=A7?=cTLM4n}b
zLaimGyH4LhK}SV)#F>qz&fQ|Sz6S^+u&mZZZzyyT$~#-B>CkZeweg(CYpJNHf&rR8
z`_@5M)ogKXC8yCe-&}>LhrWa=Kq5}dI^3}2B_wk(pFyFug3=9I!Z{lJCG{pt7#k6F
zZ~&h)1wvnbJUMK55V@9&kmP`NQoCQs;75-v*|xpydA74w0!rDR?&<rL1D0+E;B?*w
zC`X)+L*v)$ByHCkRz2O<8iVY6f^BuYeOsLO5ecY7w#UD>vl&L>10<@0XiJ*urxUhi
zP*ca9*Es5^zXTJJr42SHWNw-L_TwL8+F28I7b*#l^2ZG0H}X1JdRhug0|;-j|EW>e
zMEV@W>^w6gWo~a#0G7Y4?4v8t?dfV5aI<(@(#vSZS=}=GTPJm~VsoU+LrdlU9qo}8
z(0x8x?hjnMl^xUOtX6)^Rbn<E#?7PsNqf_~)s6<R`VKm+S3B+-?|NLMFcvJPn$9Zp
zyK}6dIHzGGe3<95IoKT{e13V<N22<oQag>*!utS0b;ApuV6zS!U<!a~_-1oh*}0q_
zAN`4q&jZ-<dLA+64$&ZK6r=uikqgPk%1gg(aY+8ioIJ!nuT(}48_Hy}wJ(mrG#u(A
zH%ex+zX^VqASJT7^FZkhCU_kr{jqho*o?z{&y6u0E*0q(zK;X+cM`9JPL``y#92lh
zAX|jEJvD+qJZMIY{_uO6E;Q6mibbS_FPD+vtLsYGwX72mR27aNWx%&5FrK?5)6fmd
zfw?f0rH3{{wgz4o?Imj=rs1ED4pCRd@lx7<Voj2xEzh<5oB2wamFnf>vC!Q}rc*>H
zNX)}C0-^w241Vx!&=+)^eArx=|5Tm)t3|k(J&Y+qt}(e^fk+)2dXDsz;Be*o4W=;y
z2|9vQ1dvAjA))dxndR_X9I{J<D_%a;kFB7Nd=eCUh2-%~M1C9~vj#po>x3=K?r>1-
zek(CFZK+BFW&_g<MZ6B-;NMAsQMuVj6jzs!V6!yq>RIoYj;a!B`9fUY*4OaXx_z@F
zIdb0JziZkWI8`$S+A}O#t)~8zb#!n%F!_s=Cv<R9AcbfP6Rd;?AJhXmBABr7$I=_R
zRdwn?ju&ZiMyw?VP`t=UAS%3mj_qMF@QRg~pR~Oe+sFwwg|49u9cA!J!{H2@nmuH4
zlPyIjC4`=iTP6H}?O3t(n9Wp=sIKC`n<jobgS_Ji!u)hi@$n%kX+%csHjSKlv%aH&
z5m^hMk!$W|Eg%PQ8kqM=lK&SR>7vzCA&R{N5#p?5N-_@_UU>yE*yf#Ehc;O*3aD4B
zjz3Cj)GOEjWvCT)p+c6uTDGix_llmBWT8)an^x&r$x$t!)QWtSGJ^q*1*DtpFrhfo
zXW=Esn>;^TG(9pWnWHfD_VM<yHKqLd7VeEE{~Gv9*t5(y9f59MJ^y#4uPO>50qz<<
zs-OxeyF{A=8nh@$v`YjjC$d^k``PGP!Wn$ZA_R13ATbJ~Wj2&1nxhmLAjy%6c-He}
zZ^h+aO%B7yq?gj=9;A7j7dYXhcU4$1Fuoi={lrdI&p+Ve;G03FxXs?m0djszIZmi@
zj4^sF!J4KZBzD_MmB0b((`j0G;N;x^^7RrJ9rFV>HfHKodK+&(HjvkDjL7{UP=%YK
zcEPqvU++p^zl)VMR<JV+(JoJ3n45w;aMQ`Ya&B8eYjbxnKWK{a9td0Nsopc|xTb5>
zMq+F>$JLc*R2j*CR)=<ri#lpqlXLqCt0z4{*%v+^nTV7OCkpt{>GL7@WKBn>w88K)
z5us`=?o3po+Xia2d{|DGt@z}w?*G<$nR(n=uX1=yt}jh*xif%nO3-Ooi{!vZ!4(;b
z@;G^=tpl7eEeuJa1d{XdG9;t7Y|BLzh7R8+5}Tc;O2xE&Pc#%DARQ>S(SRVJE(l1E
zFD__Rc~xVuhUVzD?sngL->9U@4&A+`jCLSU9s0@m8EHZ6h^8DjD^GgBgIV%6X6XRU
z;Hamre--f7VaAdaxhy%CJwutALMxif!D&A#n}JG)m<DiO0&eOKn8EI9`gAkK<ZXnU
z*o;z7!|oLw(-G)%k`r&J?chAXNJGNL8JO~btt-Uj#D@Du?cR3&bfmS`>k`x&J-@=c
z9VL25Ark49L%1=)M2VVA_|oQVV2r8VINlXAmU?a>$T~o8gV=>z&F)>Z>HBrr!%^C=
zB0M*2NfAfW^ey^?T2t!sl6MFgm0)^Fa@D&$BFDRB0aT7F##q)-WeqE<O9NV?UE{=E
zkX^&`>f<vq(aTo?G-ak@Ix1A18RMomMUPo2D@~6jG}V9bq>L2HJ5Ny_{UzO<r>7oA
zAq(bIPmUsLV~i>Hp6kkU7tK%`1mkYiHgC=r0_dWO00()ipRW6>|BBF}&#rDVtWk<!
z!5o)w!pM*v*!AoI2nz^g7uvbVbm!c!LEF|g>lh!>$6OVeDSA2Z_Gvh%N!&U2l+Y@D
zeyVG!$M4R^BNOg|-f-h8lD-ryX)WFya5tu)o0rkn$=M@MxA9rL1h$dFSHV8fwm&3U
zrg@`L0Ta*E<OJ(S%rBjuladrl*7I41$lI)^>87_d7!#Ll(!D8&Cb}G}sfoj&=`z;a
zHoTPb?iOc}iMI$k0i97WdO`pxJTV@g%ef5+4zW=l;YSS>K<<^+7h=M31`OIVe^uIS
zSGxDTO6FLKe)f#1FxXml3q}6+X+_e%>PpRe;I7$7=v0PZKg#TBP!d8AMc7JUAdO)z
z^C}120eXRO-K_P8hEIjU@KwH!NfqAtZBo+WD-SS{AbV)vt>r4L^iM%W87W!}t@%yp
z09q7FaSJwTj<Q%cPu1(%$4f1?G3N$_F+rh0T0fW}#VAc!4TTfibK+G8mLydBRQ?k+
z@CTjiiY5uJjSrgUvW|;hS9qO~TkVVGz1h*M4*HCSx_Z3Cbo{jN?BTM~;g_f>rP5*f
zXff5mE>F{Lc1Z<A)3+?aLLis!Fz5TXg&W|kpvq212{~U02IkepuLLh1sG#pT5UyV<
zsH&r_&-`y8fn0nCu)j4JV)yAJy1;0rYN?@yuJ!w+!$0HF{_~5m3XNxtOC6u0riFF?
z+c$mrdn465ZJM_C|Jl*E1Hj_{Z&I!F;l)yZS?hoAhBiqjCrm$Dc%T_Clo{a-*i%p>
zgjE4v>OVguE0ny2WC(I)!()lD6P*m&GP)xoA0&hhEZYN3uq^Ij3D2<$kLg8I9+y76
z<%EA3YmG+n{@XP$d>tJ*_7{WL<qAY*vLq;Dvq(tTR)JGS+CO=})g}D(GxFE;1D|#Z
zlcKsXV8_%Qtg0d+b{h5A-CvVfh<CuVJFdqiMC_+3lF;Wa1({~7r+rgn&AaLNW~Lhc
z(p~0`K`0t<;wF?PjuVqg_~)5t773bO!YFCSn|F7D&wFD8GjYLA?GM~DBq?@bb}Tdr
zrDch2Hap^wD|Wn1JB`s9da@|{SRM2zs;t6>UwAO5H@6{m$C{z|L;WI`Et#nTZnt>U
zntMc82M+8v!gsiB!X@v~r%#fga~8UYuzmcT>i!=<i-MLCknC$x$Lx4#+j_=6p`JNS
zGG0E}78s>vH-g@L*t|Ku3^gyR0J<S^w7e>Ct7UukPrt2>PM*u0W=BD1h;V~YZc*}D
z`7_=!kutqCbSj8TF&@Am$}o85UnpuRQ5VfiYGFUwKt<+2iewB4BZ*T+k;X6;Auc{y
z@kn!^6B@7C=9g4nTujwQmsqY_vr0aMB{L?&MNX`!Xj#9dKUyCoCR#?iR$>|I&*|+j
z213N#pR)jCW{pO;4EJDorPh3ddP}!(mGeUOc%mp&BnkE+l2AHAc~&e~(KnbFmM8}%
zvOoEb7*ZTsYNY8GB$1y!_pg`(^~<}s5H_Gd>HAyWn7=~M4LZUr%t)M%{B5{pj0l+P
zmtZQbn3rBYY)t~a`6bD}zx<k-t1ap}H-)~;XhBRJO~}_e++JT?=3k7<XIEAPhp!Us
zd)oZOfv9L<mK3Usi1%ACgD0DmJor({uw8j*$Qf=&r0{|EJrCfVYm>SlgIBSe?(vtv
zB1g%VSS}>~D&Bil;w%-X@>wqMSFHGYcN94kYAgGA&D}K$gFHx-STc}CB11folW6#F
z&DI4*vRaUYnZQEEu)GV$&|HTMY0kcQD9_`^yW=-BWD+VA3&>mm0SlZZF)Kjoqi(>S
zUEd1g#Dd6GjwO6Fiq!r@C^ud@&PxhtWff#)+^D8m5pBlt3Nz1D-5dZxIDi5WXi|h<
zAq6c4`H5GoB+GR*8!9a}8T)%=`P?00TKNRH@C;i_K0$5PZTKLtqT|75+*AIdF4u-a
zku%E`50Ya78$OaMilQCXU#YYd7Dp$$(;RzmX~U_>8NO!3PZgp9qIVJ(v?UHCC57ER
zGDQ49?lF)U$Vh~8Zd;_vnA1(FDyG7jV?k7DTnkoqz^KJ1!4R{tk>x5Tb=2~|Nu4gz
z%PKQS&sL4LPK7?_E!ZD&#8kvAp{tG^%*L|79;Bx@j+EKW&zG#3@cT8J=Km^=D*lj>
zhKmO_wD!l<nNF;VWmZQPWm5#mi6I$;%LRoTpBtD^`wEpWXlpLk1Q&%{27+wmII%ao
z5;QT5G8}QPr!Ng6zh}J|4{<i2BoGao-HMWY@G#{X?Nr~37eyB=POoaDaN5(XgMvg2
z!owRz9lQ!h&TME<zW`uJaF2BwFkHKv1os|9ez{_2+g3xcaT~{M$VdUst(L0rNoDYa
zeBFLserYVD*~dE+QE-u%^j<hxib6m!iRM(!Oo2VJ#4(SIf!-~eNwm}8dgDCSe9B}d
z35Ox3qjn61#pjgFn5S`fF4j;rlg)%~)_5XsBBV`0?-B5q>9_zwa*w8uE;9gWxK@2N
z?UXa=R(d&Y%GQ{-!ec-w65M89+_m)_X>!U&%Rx$TqCBtGsx!|!rL;!>2aU)9FdOXA
zT+B=u2kow!K>vP}L%+O@WHEX!v|tg0mkI>|X)f@^+DpY?^+91gNxDWzchNj!`Vl0u
z&mIXN`yh%FT9@o16xJk?6;XqB^)F5VIwWOZEmngku9=8J3SMB=IJ%hoBKL)_Ml4k#
zjTe^rJZC5t1WPE~4}uGjR+Lim5fJ9MIN1fbQ)BhZPeaT_nEC~2J~I}j-vuPfW-D|J
zBc2Qw<v(T7#;Z#WIUuW;?Af#P5&FJWam<<tO6&WgX%K)>IO_4z+4yK!X6vSDBn&+5
zl;KyLc;-HWvLnDf>N)1$W{`5`ZwqrMu^oAaSP}`5VvvD!udXx|l9@FTp`=U;i#<3i
zcOS)F5B-~3Z&i*QCjP0(<5wNb1vds7xu4=vtY)z17EH&<uiWb)vA0#AknA8_9`{;Z
zb&%<`qbVfDw)R?CsbT#fc2eV%Je(%pMf?F65kn=@VK_i5ITEDMrPytqTu$na_gH+z
z(kX72p4I)y_w&>G>G9bXQ~A-n*d(h_O5=C39roD}=t}5G33C=Bz6DFIQ3<qyxdOAr
zOChd|9Hk!x`mPKE$}K%k_mhAKRcbxCBPcU88GsZ{RFbEZ>B?PyRr1Bi0Gy+Aij2e(
zUNVCee-h9Hzm97fjHA4k@d25VvD*E;^Li0sG#v|3)2XBu<n)IY-JERfvahKJ6dDB<
z#v@PETV#wZgYk+3BD&c8P(c9$wz&~o>(M;3IGI>2#e$8pARaR1va1iv#Z?LLPfS~n
z$8NsBv%<0sqfdQ)joGdI`C^x+%c_NLXWPWwH|Z+9&MsZO3>xmzw1ZEiJ2G(F#T3dm
z2t*`7zTV7Pfg$E8&7ZiTt0N2@FvCpF@JXFP87P4cj(~9Df7Z8T$=+eac@_QFW}W?J
zHteXB2iLF3Wjz=(%$c`YA+3C5>bJvgyRixGIS&Uc;yGTM2PbdiDZ9)iess^4C41BC
zQz8())wqAe3K8chVRaQep86BgY{Am^W{w5FRG@mE2-d{Ji?tI$QkDx5uI1W<g72>V
zxD<R^<%8(8y)2pddaQb}K>C-l+HzkWl@kZWjeJv3SxGsbtL+;vwYMnb1(^(INPKZy
zxQNUkQ}O9RjTYOwS#F#jpPrsv;d6U^R}pZGBaQv;v<&%cW<z$iVeRnW*xgBsa9XQ3
zdh0=whUkQ;p7!U;M2mV{69j}lhVtJiZ|6L6)P0=V6@2EP>nGLFMAfXJWvwf=C-MdC
zcIfHu_4RGx3<Ty7{QeGUP;Cya#sRBREn*5QhFZNP0Q?d?R<vHfV4KP~QmJHv5)v?u
zWfz@WRgfkQ4MX;ph18EC*EElv0`!P1A+}d}w@fXXqBJp;J=oTi3lrxW4GOxkUiNPe
z(eBFSFhJFeK+J|&QBaG}gHC`~xX8qhWiTBV9$bH!S@{X2qadFm9cMfR)v2y{mJ23T
zyc;z%)7xb*6ak<aL+y^i!P$eQI0qDtk}5R(yktkIQ!Je(+W6^g;Eim;tl$G$fCy|8
zINZ)MziHw*p=s+y2krK=+xClTGJa57GDdpiHW9M=cPUT_wT^==*5CNWC%of_Oe4+C
z;@hB@qhOwFqQOsckQSMwg4^{Png8T*u$T@~sq@-1r9Dh4nQMU_z4dR6DGO-7x=y@U
zueevtsXgPpegGx89)qS1h9&lDKI20m^!yrBBQ8#!4FduTm_?0Zmdw%SR`%Cq!dBY)
zD>4<OYHM_g?VKS^bO@2>0(c}_S|>DwjE*1PHB*8v;xKM)?96a_Nl<Dqg=j*!6ki@8
zZ%Gkm17##Y${D$RN^~eQ2?NUHp*mNnzlI6w9b*;hgnPrEgYXDZFqlQUAYz&+g@xfy
zDU%tYnFd!OH@yTeMRlfbxI<al%hrbQM;UMxH9KcOLOtTOw6b*EQBSr)qn_{5#Lz&5
zL#QIB`hSw6frhaZ%U<N*`-{8#2fOP6b||UWJmt^|BZolM^hz(4Jb?A@l^QhL>dUXH
zUC~uGpA5pDgbl^p%}F1B(iiOyae}0^LSAB>v?rc#YnyR28cUvkZ#*}FF>K54Tb-4Q
zFTy1nzN+3NS)CA|YxR#e9785U0g}4b*bwc18l|buvcF&*rN-$WNs@$EIf2lFJxC7N
zO>io)X19t`y)H$|$N<Lxuhi{IWHU%;mecHZ;7qFlau!UcU|7QxAQ3qMxb!oKVR?Bh
z5CaKipEkdiS=wod2gSZXf)nSeV>ox{U*|9`#?`Iaf8M()n0d-Z@#I_|XfFKV<E21V
z{#dSwZT_IdzhGF)snb3ZM0;GjGbpLhVe`&qj2%zwT92AniUB&LWJ@<%WodEZm6OY$
z)T*57=db_{(@<(qYvpJ+azYxmi-qu{hzSQ_j)!RPTvffA*L4Jzo%4eHZdY?l<eBR9
zH1v#>4yMcaqv)7LHg`s+Fr1eLGCVwbqFgXm%kON!dz3<_Dv`%JS2==AGGtqkgEWok
z2o7#z1;s_r)q%S3u1fxgGgIUVk{{yxd~OA^(lk8L%!HP($XDeHpHvjHb9e}Z4pf2r
zk2@=m7}TMaP9?(I$iv0FCnv|_gud>g#$^X|-G-F8Psg~OA8oC1=-XIm6gA?b6IlgH
zH&>dcDh?s^25Ir$l<%^|{c*}*kqe-{^Eey8y0=q65fD}Ji~=drj3A^Fc0=VaAA}M_
zmab|zAsuvY(@sIP$Nrmd(BkXuhT78a(}-g)XrDQx?2tExIdZ1He-3ZBFI6A!BsPTi
z+56Y+o#vH0?H`-}-p$)dPn8I~wl9AVnf$sCZ#Y)$#Ift(vFN_mCnWfWID)4mrL524
z(D872X@Ij`6tVbFH0BUo&-`<6Juny$mw{@|y&^t%DlF`4?4BY8+BTJVy_79V^Tr<m
zK0_c`{kWLs^e~;nO;k0{G=#oXzJ>mzWP%2!rcKOLGz~9kT(|9$3Z%6ySnW%t5f0Nd
z)a|6OWD{ZLAlK|A_^%IjKMhNl$-(jLEzi^lDuMXzBF8Z&^#vtEs>dL_c5l!p-Q~b6
z?k0qqlJUghGj^t_ViWwIO;hM-3L6!~T2L0Yxc|7+9nqd}kwYWC<@CY<f`Z!R7N&YG
z(pe@;Bo^WhDp4!t6=t#p+vI3(Vm8<}?$5(aa(Hxm7~Sl=XUM$`KUbJ0r<ml-^}E>x
zfIvH|$M<@k!0=~g$*obFtz;z$XVJo<t8EN<KNIAvtAA-?AU+hk6ghol#>G~cLdCos
z%XlGc88+_eU8bS=Ve0SfP;9dh6$NW4w0Yqn!hediZ^o8GVyX@f%%#crMmY?U$0(8v
zDqV?#(mwKjZid}t!G@wC9wL&mqyu~|9)Owzc~8_me`a)o1jF;StK*SZYYpXd#rwh0
zg-ZiY4Ox$WTCX%$=?mru<5OzFT<<vlsfbi+H$GXF{^o|V$qU;~`9hXP+gL+QcM6U>
z;Ac4aPi^b#e>gaLzU&r{&qrjwPbZ{I5g$vWqzH6(ayfSKcsaSc+}`%j4kD+_Zv#KQ
z@6Qe{z#RU3_K(gk#>GTW4B}9e%No~!s{13^nXg&1*I;$Di9Jk~Eim%nxELuAV!)xB
z9pjZv(U0|*FScDToM23}M7YTK;XSw{K58tyw-^L1#RqXtq@VX_ZU+(SSmvMSleg@h
z#HHSsE<}~kZ0f1(KDXD-NC$gR%mRs&bTan^{kw@X)P-%G3Xy}B^v8`-phHw8<-JOi
z6G6I2j|@rqN@EFBTvmMP=GOxUQbg8L;O4{AzTa(M#(Za5;oYKb9Am?<%2m9cvj}1?
znS>2Se7T-x<=e2V)~4$3&=pFY_e@pSYGG)C&t^}x?nquvR(*2J)hg;@5NKt@HAj|1
zj37Zz|5+9#@X8(fzz1pg2TF%){$k&2s^VvgOQ6?T^Lz3GpIhftV{E*~uxX?#(cKL`
zQ&^6)4c(^A(7_Prl+)yiH4I-3iiP3uH%+ts+7BeHwMY;;ctv8(FMC$=^@I{@ZPl%~
z3Y-$~gKBjiV!wfNv%E<)4@laCM0JL7!mZEZAfG&cOrTx0IpXuO#_*+;Ujmn@_@|{@
za8(ZKEIXKv2b}&`6G<*<L)OP~AkGO3fGSDY$C8AeFQX;FzYHxxSXYG{Y`e!p{eJ%I
z>-O@=;Yn8Tej7sv@S63*R_GE5?<uV{a+p7P3=JV|b*0sztTtL51{e$)0Uj@@G^IiH
zop$Q?2`ij}wd1?8BM;|>7)$ZLO(t(!5Wu!Pj6Uq-Y549&!BWG~Q5MRLnmHtyyspmz
zTSY8(RY2pXc{G#|i@og^5euspRs!pP<P2O%%ZGAAVC$^EC{seD7DH>a5{}S3*7(B0
z#~>)iYKgeI-4Yu~0gL~b=zdilsl3kC@>|dzhu5oSMv4q!yl~)&)$KsG;nd-OtRYCG
z+n=<O^l|T>jYQPMVNRyKe0>OfRr~&=rKyj}dE$|?cGP8;EG<8f>y(`_GBC-eY?<UQ
z<go;gEdD3me82HW8j2u<xt#4qG$)lt2)R7L&oqmFt$X~L4rn4zJ;dEFIt=<0iBmX3
z?8qqWlnuh5O;e@fZZBwjX*J<UP^ZN1IIwC%PplV<3R<sBs5`{H9_!(@rfkforR&J-
zwV`^?P3lSn*`KJc=&6Zt$&1aab(}fgFx%g;SmyKmuoZ6i^`=I3_@Ql~3VE~p7BPRP
zVLmLOVQ#;D0KB}Q!>bH$^=y{(5>~eC9PJ@=g#j3W`IH3i25j9Bmr1<FW`|?l@pEn6
zd2x+Cj3>!1({&7lr5X99*ZyKzuq*9vnRWl-6t`c|takANLSHsMYV&#qL_V?RenLgM
zctc<(E}<!o+AT=q>erJ}B$r-mZYPNBQD%IIgSCE(e!Qc8M%~DA=JdggJKUI-{O|(W
zWR+MbI7b;g@CueP3?I#~gF!}t51|iLCdhtX<S5hxO7L+ZG~N~#w^bJg@bQH-MVm^7
zXq!QWN(<$6?LWmX;{3~<Z?1k9H}-lnzh-9j-R?<9*6h0@JLVPyh5d5!(ka#ZM$0C>
z8Cc_1foV)!^80~Z^DaCV8&`R9?R#*Done1k!J-}wJm0XM<Rz?38Gx}B3&&f|*)z_>
z&b180onO?uNHMAr{~~g0yK4f==GC)#@xvh;geMC+0F+8CNrY)1xO_x7vPc@(LOPVW
z-Dbw|+hp=^wuU+-MeD(l4YR-fC1#r_b8LJ3fS*;nx#TroH|$U@a_ik0TO8?ayfEv*
zsPI+Ijs5JHReFNsTgmJ_E~5XY7w|OeHR#Q1BNT;)#aEp|H70c|(#WQCPd211G!rpa
z$p>_gVo`Q!aQBEtvkC@b@=5VoAZzj7p%hrhi_3vW&R`TiHhW7rv_%uGX;h5$ed(!D
zK+vAHT;Ag(on?<7;X_`*l9y_A52_<B-q&Of+98pl&r){&H9Dxn=wiy;IKjzMnggAe
z(5_xvTo5&b^evfKZ)uJkZ0G@@Lluu;i&g~-Wl?NfZ_Ha?%z5DC*>)zxovJ8IJ;Jb7
zo)M|pdwx`2ywIaF?!PKG6#Vb!VZ_+GfLNY}R)ctH(nGY-1B}%EV#Z*76GZPoVuV$F
zq)<l)r&k>lD$GSMRQ!uGJkfSUe;AIfI|?@9C%4`EH9;osUIR|fjm5Pxie2)B#X8%c
z+Ym=A;f)SB$5iB5p)fI0%kKxT$S!f;jm1d8$>6wQIAo?L%To@+Ifl%|4xBCPz~;TO
zL7_!1J>rTZBtw^nv<*lxX18+4VN3bnm}l>swIhs{iLy$i&a8JmWaPISNk0=#8{;Sw
zFj-%Oe(~C4RU5KFW0LM1x|mhf*5MSG74{`Tw(DfRbH8${j%R4FobB%L$Ss@}{aRSl
zxTK0KIqc`kIzf+x^>;AXp6Y;n0h*ujOuyo#L!W-=<j_lU*XXd-))ne{E#$!AUS0o{
zvlb^t31cl@wNz;%ul7Xvpwi5sLF{-5sU~r>W96sw`(u}<Aeno-s&e2#3acsERF>=E
zrVB=a3q2B%c&}Qwv2KnM^5V;zA$FiR?}*F!V^p%k{^KkrbO59zef9V#86r7A;XXy0
z1za5X6LZ1PnzsqNT(0-hx^}kR81c6Iva|3p-v|pC(sbfs*Tk?3dL$}>DOM?!yR2TX
z<VS7l#8BH=BigjSOu!3&R3oS?VSTU%tkXJvuaoVhs)eqnyV-^cIcKUi41B;VViHYy
zkdb42Ru!b(nrU9MeI|C1=k^n!48B$8Ndpp)=aT<xhu8V>=&c!skm$2tQ$eP@Ad?Y+
zGO*{5s`**>#JlU@jGML;Z$yN0$bN@k5>)^?c_%Ldp(u#Yu_}A!zn-=Zfo{RK%FahJ
zs(gy5JUuns4e44@a{tME*ug$~X5`*4WEr>{Fe-H;{DRbdO*G~519LDnAyn2Sj+HE6
zYCSs=Vf888t(&EHJ&JA7h_<3YAGjRv5_?`deDg(aLgw(|?$5|HZGrk;NgZX3)Q`~3
z9yTmv`e7F3;YhvON$k(=ccATL_!djd{7RMn^JVfj=hgs`=XoSpF6F(7kB_T*6n5Cq
z-~8p`HRH?bv;A*{o14>LO!C{AdRd)7pS$JkDTU}Nd4;m~*Nxld@$&rgY(~`A^BaK}
z#;Wjc!p!V^w_@xv0rQaeMIzuyHRsgcuP1FUhU$ktYkslIkEu_$%z)z0JM1@wUk#7?
zd?MRT+Lc(Zr)SUAoWCc35pEeP-YmPW19Kmxrda7?9E!9Vv5O_Bzr<lyElccyjMdSM
zRSU=Y#PawY??|KzTZ=ota9|-xsSj@M%=@Y)lbjZCTuAzqFU2Y6ZT~>CEA5Q=$mZ)1
zOGK$m;r`3Xo&vUT@o<Z66K8hv@Sm=<hd_)Qgr+CWTUkXrS2kSB)c<7+yJ!KP%r{l>
zi+Y57%zy?MN?iUWLKH!ByM-48s;`vCQYxQjir2bi%>ZiUKNMVN(DBJH!Z_pjX~kE(
z!Tz?|OVp3J6`-0=m<C0l!IuIc@T(%(&}D)*HF4+;<JPOc0xqv#-n_a!fdZT74f@ZO
zolBn)-%~oXrdGGNUu=QXS9Sq)*|0U+*6I9#O~JQ1Z~&)+Nv-&p*Gf-dVW)c6QcS@2
z2q-q2(K18F#~O9pkBKQx7c+m<StzAd=i0KG%o+#y$6vwQL@j(ZwH_+U7FizME4r)h
zInFH;V{0y9o!0%Orh7B+3`m(ybH&7!0{(M<8tTm3bEVHs<00wi6gY7@vi!5B0}FPF
z+0^0kmndv|0`va5Y*j}A)ks2R6A0P+mLX2tvCO!1jwFYr1i+w4oW$@%xTwKDow_S~
z1mOB73?W;#%M<eN_7HQ|p^7Rdr(e$`q{LB;rCpl*24!bR3W@q4N-!)y<YE4X6WU%L
z_>Z*MzOVT%+h>`4X6R61#JV00fboDTKpDGz#QorobiD6xC-xx(q7F-I3v|4pTBac3
zFXN?9^bt`%r#skEjq0&yrOG%gNf=Ap^_Xu+dY+9~;VE0-U2calSvGSc5PBKx-OSP+
zp;C4j@chI&j}7M8$V|}h%V9Cl-R}Jhqas2do8u_h04jxwAG%D=CA2F#TYWlZ#Qp{+
zIzDxI?8US;Z)S52G`O&#m4}e=$O-irW6TcSbZm!L-)5(JDe8sw0gG<U5OnY-bcz7m
z?cFPLnGqVQDzZ29Jf*3v?F}s{+B5(3`|_5iUZr(Ult9&0OvKEZU<Ik3n81IgPicUC
zJrI}kS3iD9GY8r<yDI8*OIZA)9jouWdVvP;B(&ZrOcId+OEviD9kPl2E|7HdQyw#8
z^k=RG@dJ^;`vO02nh}VhlX%jHh96zAJe0~Qk;K<*Q9fXiFiBek8k(9v=!uARBPH?s
z7$*2YqP%>O49u(3BKhgF$#A@RPdW?d{{F>ZHqN@~WyFbfGyYBPy3W+))%Mpq5MFg_
z&Mw$VC)K(ch?<=7N7p3OD1hO74R*om;&)zXGokS?yWx+XJZg%4cftF`LL`_}EA_O&
zHq}Yx+-aDWhbZVrkl%ZJG)Y?D^@=}`JM`+JjcBKcpT$wQ0tqnss)_G!1dfbsLF|n4
zS$_yE`)EKq)cvpIW}^0ltp?Uxvdgz5cD^W-_r=W>fr!nOqLS{)4s_G5o96q<nR%tK
z2`khT7rQ%nhr3uX*k9wV4i@acbw(eXl)2njiy)zy*0$_SFt=&N!2kLpQ86P&>Cv5V
zlHK4$v0!)oi;N8_rA0K1n*NjP${mlpQDs^0x1caSi~KsLFl<EM$SB6I({aekncuNk
zi~eiE1=ui|$&fKtoys|g(LaL08;C>D)*Kg)73EdWqnW9l5>F|Gx@7coeSJQ{(g)`A
zulCXlMos6Y;EB(h#{I|a;%qt67!$lK7k3L+lZ2j$yab`zWCI^}Cl8N`T=hjl@<y!!
zVUtH9i33>`%t5g{Ap;4{o4QAbe_Yk(<5LvJG%yPh6lN<rXhGNgu-c|h#u_WADkxIZ
zcF>TEYf9u{^=WY~Fp8e9X6Z`q$aGS6t9*0+{$be8tm-c0H-@c6dEe?^;tn@+iLDo8
zYJpCGfainNxZmoQGZrH^{8e1qZBpg05>cdcaC_>`fJ87ufB8Nyn(OZ_FWCdMQ57Gs
zU%*zP0&%cWpPcjevP>A*<SPSVSKRi?<gX2TkM~vhH=dr)0t1Yr1zJ(u@D*REw!f)C
z17C8yE=DZu{HmfBi@xTJYeCFXDt4!O5%4WW7>}UG(XTvSJ!xV)w19#$9vdlWi#yVP
zT^<AaT^QJ6AdBMtyQ%5z?A9qc`KYk8$v}#9n%d`wm-UG9{GS?xiIDjLh-`;Yu@C2|
zO~w-a%C_}5GE>sBhD=@?!CPabyFVAM*hzvwS$^OWY_FxL*ZP&|r2k;@fr((2J`gPx
z*ohD<h+&M9F)@wE*Qnn5eBZr)cv<Yed+QBr^4pz|&Q{4@%J74#Y*>qM@V?|ZTm?S4
z+A$luW8`ixMN18!{eJ-zGwaL+Md1!%-`O3R<OCR|#n|80%`f*iQN(*mB4Cm`jvFd?
zN=3x=W;GXv@L)>OB$zq;#+iBYr1f<iYq`VT#OKUMH~0H#6hVX}G$c`?uwpEKfOOU)
za3<PXZ%r65e}-Q`7oe7tf<J%`o36AfGj8sXf1F?3=U?hLPWgmq_f@Fqbmx8#J-XPP
z-DR<+(`Vs_oFVRIDoMr+?2gNrb+_gJ%l}sw^*D}|Qp-@c4c`<FDCa^+-`@#I60Iyb
z_wP1jE_eWJb}vsa-klwvet2{A`n0Pxge=niX7}x@lbnxj*$wQN@p6$^-@i<0LIqz1
zf60s|q_*1Fam?Ru-d>$v`tqaPnFiEGQMP`Ry-CfrN#Ra^99T=_nYp;x)GoGw->vL~
z%Hji08*@2Htl?-z2=}^}?VghJ>?<=nTEarKX_XZRA288;VyIiTM1qG#<!s4E5+ILC
z1hz`>!?jmVO8t!3U;yHUd#J0k93<V0f6TJuBs=i6BCJj!RlU1oj96Hr8)C^WD9$kJ
zq)Z%T*iEO%8zPqok@r*96rCJh9lbodG{5`<?aEQIt6fq249S@%U@5VKvo&<|{t;Zg
zg6~{LeCC!gr$temg+B3Ww}g2ws19$F9|6XL(AA)WN;<M$k6Q7}<VQfTp#M=Uf6=Uy
zf;bDoVmxlt66LzBBVn0<^mewHmJ6{PiN4}2A{_1}Yq9(HYV1zS!ys0`qemx>Rm1}9
z-iz*-*qJ%%@}+P^<jsOpsTLeFMzEC|e62KM5m3OQy-LW@8Vtz@=kFbXV`X_XTtEIk
z<wClw6PTtWlLIRKIjGDG{f8SUf8;F5At~Vaf4KF`PF%cZDhNkEU7lV{*MOHTh_i^~
z6>P8wgZ?Kk&#vAay*`7dlo<s-DReX73d?Z8&FPp%WI!N%T{VmfeY3!+X~k}g2<5a@
zl=hc(S+Xb<sE<J__J%mKV&_Jlz&;l`%ATTYr|QMWXti3cXHTEPzpYlQfBbK&z5nbl
z?WfNVp6#{U&!6r8rM0*B?4bP@)Vj}!+mb2~{4cFLk5!)BS5l_dw$nh!I_VA>yY8Uo
zFU^D#&xkBL>Rj`T`14D%S*q^c5IPvj4r+Ss=6XLq`m)IWHx?Do31hd^7<2dkL94v~
zThChS{r?bU1HB?zTC~Y8f3)4hePD<sIzCgvvCf?p3Vn?)v^AtU*glQjgjD{T6Fkzg
z$o?0@k$wg5nNUpOa;#w9{%`F+E$#oOdwc8i|3OL?4nm##CKf~oX&3r04cofhf0?`g
zb%KkF)1#Bur~W9s%@}jf|GoXv{%`F)UGM(~DaS0CAV`O&Uyqe8f534Z?lNAH&&%di
zlsb=z31L3M$@-}Os>*`<-{f(+9UGXp|DQiC%m3}C?Su9He~7YR^02#R3=4{EraEt!
z-?)OjM8#BKH2zJ;pD!^Q?aYM3FiZbMX6PedF8SAM8{{AhVpQu<h4lWqU7*p8!i05r
z_xa3t!Tn#K;A#P$e=u+VKW*)m_W!}t_TGB`KScR=^#(OwV#Q2VjOU4}G!L-3%`hi6
znOca#JmaOl8R;>Wg?O<UkC)gLx7-fY@%-~J<Uz1+MYo(NasHQHfiGL;>;L*2Z71H%
zLys&m#+?1%ZXG-?+yC~TukC*iQgG4oA7Duaj88h~Ebeohf5otA6vG5HaFS$yw*9C6
zUPIq@n&6g4=oRg8%qMQ-p+4jKk&4a-0Abs-=bVjgYc?~o@z)V@eEf_LrhZCfqZ8@K
zOnzg?Mx-;#i+OG|yao*v<hBbpLQ2SPVkH8I-G~jC$au~O^J_ne2aRho0gtUt!!r|W
zc*dit;blHee+>`y(-_=X8lIhNV}z;ol2*;h2-B!j=Q@o{?jhsX*wBBOA<avYjuUOA
z77?b7@d|Y(+mMrlbWo(%uQ4vJ@|Pypby;y)lK<c83TUqVXa8X8{&#OJ|2;_A*gz#d
zxUqrGB+A1_gQMK>+3xWPl8l*%I|*k25kl!~CRD;Ze?=LV7wJ%#Yi{xQ%aZ%wo@HY9
zLmoZWm&r_SFlYZCJa4t9^uMR;{r@24k3V*|(U^`p5b#$ib?W>-94WK}L()OpyPrQd
z8me03f<Pt<j0EdzXK@?aR|iMe>7^Tg{9&JXqNXMr-=P&qyW*=JnrJhmfke$~GHIgb
z_ix`eW>HfgFio@>Q6W+D<<Uh`{r|t3TU*Hc{J8<({PBlp!?Dj9K{ZJrJ|8FH2`HwQ
z!H|S$MB~AkPBx&wJ_Yqvi8_!xQa2)TKsqM%89W9){g`lKlDB3l(L8ibCLQ$09|+Rm
ze*Wy2+CT$5F?ap+2&#!ahZbKx*G>M4@KKhz^D9`x8LM`O1<Te-?d~RO>fLcKE2kGt
z&x!UC`5l)>K?6R2`etF=JKfr;e3NyII)`~ypC<D2A8yYeb6lt`X14)EAhUZf-y5*;
zUa8+i2T;CQ#t<|VzEct41Uzh^Pbj83(_On&+&qTNVkXh1c3sM+y;ZJ?5>8{;N6qO7
zaap4d`kQFFxSJZz;kGDGn^a&XYLgq_{R<O_^Gy~N@)P=hJ!O*Qok*6jhz%w`DjrmX
zYsf^NW_WStzB*DZu=>@JYR=!6A=Ty20<W4RS4WU9Tmo5`8t+bvB}$y8!zHP35gMF9
zbt@ydhdHYBNGmw09KO4{gUZ<<^UkR|%Kx|5{{oy~2r@HQ1DvD(J!|ik@Ba^;KYg~=
z{~n^;LjRM0LxLpc10oCg56%0>y1iE*7sX!8{Xu>P&_43tY5Std9qVqE@{evGZp9h3
zJf|A$Pv>uY<oL%foImERecOv2ptfgslbTUhGr~fms*VtqaF%ciuQaoZ8z&?4h{V!g
zY^j_Ec~^x+6J#_d{Fsdr%n54#z3sQ3dadU4iCRy80{&LkA)Jb+nT3lIyW@6`NZf7~
zv0AEc!eupAhA210<6@X928Db$RGF!N2_%`kp9><$)~-R0C3{nC#!pTUS*-=C*faUd
z5N!3p-`#oOJgu&O{Q|_bg=nFwS&=Z-Si23@?y{XOULGCiApsZMRlJ9TCHT$rJEKky
zn93o4<0b&kQYf6&e08WizBpMFfdLPfz~9|T4<|Gy`=wA<({gdF2_$(6n+l>33lf^t
zF?m4oeSiO3zi|X9f*@!f39f5u-(c;M;pDkWV@dO{jr;z--_mc$i&Bs3=A8|ks6%WS
zj|ZJ(F$_Ul#1U%#@%eKT<;j$M8}><o1u>|9v$4THl#>DZ_!{DNI?)!D*4eLz0e$|A
zdL+Q9Ai8IWI%8t3UK8!bV(Zcv{e9oxH$gXrPOj91ID~zrRx6D3SsI5;9ev1eY;Ru`
z!sJ45e24~wC63tOiGY;(qcpBsjqU9P#Sa}}RyeR0XxYI`^N-E(`<D0JuUp&i|F6$~
zzixm2{7n;W7SMw}A;~T!c=8#;h3W^$XBM@6X?<p0mMgc{|8-={d3V2mnXmuvx1W~p
zf1f_vU%&r(kg}Nm4@bzA&X1+JS~<gq_OI6_&pd^xxdQ{&detQ|Igz2B-)Q_K@PKr*
z1$b;ie6kqQ8njxdb2w!q%PR?U!RD)ffg|EWmznJle)|zjh6$EKU$QK<XRFmjO`WPK
z`|t*jNE0<7EdeyqRlQcLnIGR%5Vr3N!uApnwlfH)KruVi#A@*Kz;aWNxYNq)sue3T
zje@P>4S<q2F09{B7B>c7ga~boFOP;iWR4jR*_J+fr2t@kr?wISoF^F^<e43Rb+GA(
zJeu^VL^tr1MGiT;u?Mgk*FcFNoR;~Nk9UqC0G>6L*PgiZP@3Cn%cv5HSbk$PhFgtk
zEV!0v9ETO{r%d^0;wKa3&9y&$127t#b`DYVm)J(?xkRTI7jG{*5MmAXqkZX9$b;sl
zAf8I&W7Ent>jynF@@nDB<}WdSDwj7|N&+$_F~T|s7jg60?&u()PQtelo+tu{2?=d#
zNHVeCUXujEKV?a`q)p%+M3|1mO2Ga;<?#H+%|2QVF6YElzFQ*c-Hm+mo+dvJGDCaW
zx|sSl*yAmx__tCcb2U|{HcgP9AbrjK-cPK{{g&IyfAErL74qNSLA!i^|MT?V*;@X4
zkg|mQ=NMjesA2t>3z?hYDe=P)2>jDTn@CF=@aF|%vYDA|t^6a0MAt@5eS2d?in`Od
zI6@|;aWbGn@`;j})CuTkWBT?dx3YZ+R$1Ntm^YAkP^zWAanxnkZe4wmW$vbQ4;CVO
zwLd+D!<rVgw@%Jy+Ano~=312csQEXs`!~@6FM~q0GG1WX^|mSK$#yfN;UZQ&LtH2D
zq7R(`L1c5j)Hznci(v-QC217ts-i@CnRr`EeeIq4-}bh0+AQ8QE<&gUs2owz`CgG0
zfTu81rWluwjF+KH80StmUgjw>HNqjn31mJheCt<|Q}M4xVQ4*nsX{aJOY%T~(7q1F
zYh7)eZnj`O%4q47AT10Gqj=_pmFuNh@U$u4j(p`}&K=HwbI~?m0GNCJKcBMyJb%89
z|L`DX8UGKHz(j`?R)i1X0JH)}#Z-0-97V2!$kF*(mSey*{Y<lPLs({%%uZo~c^gZJ
z`PKYoemiGe=D(SLzsmNBbH^It^qCnVd^lYYQ+l|QbJm0sH+{RU)i_z}-LqKw=-g(L
zLz|4FI34u}&tjjOW{|kbM!Aq2$0D-Xzw(g$6FiEX*w2}{0~>n?VjRNk$C3=ll&RxH
zA<ngPT$vmM>Suewk;U96V;rR>A6@N9R$iP;E^;p5I)`(AZpf-U0dn6;M|NQxZIa&$
zombr%Z%x;#zu?saI4iHYy-N!D?`k0nzr)Iw<skE0Cwrh<(IJ8qgB@28R9o##pr&5R
z=F}M0ud@<>f+v&H8I5I4Pe6sU`<g!3rbV@LeHkfvN}Bd6QEhG|EL}|!qO-f|<Xdnh
zMZyJkyS=`DIyb#E_4zxG4yT(r)U#P}fBRzT``f7tT!@Z0`=(YS=PS4<yZ!lZ{G;!#
z|F_%ia{QO42M7D>^Zy~r68gV$mJ5mF5c5#`){EL*YG}k(*E^y*J3sKH^0ox0cKE+x
z2R78S&IVE61b#PdrpL2!U^FjuJ>#qEk8q3!B=mZJlVXcYBNJ4zN&RNP2FhcxalP~*
zm8dY!5!~kmI+@NmDAt&V+rs;VyP|hlR6Rn5wk}JR+w*@-JPWY@x%yx0=~VpRr|bB?
z4^x)l|EC|5EZ@3Okg|Mk^$LT_W4tL>cxVgU#9GtbL|^C=l01zA^lTqK($Qtw@6(T{
z=}ilNR~pD;o##Y{3<59}%+{j{3+=|%n>eZHfRWCdfH_d6jh^1$M6);%{n;uapCC0S
z4hU*~+eFO|&D&23XNc>kQ8Yonr#Pa0N<xH_1Sab@ekQtis4vwR3UZOTw?RT7=OhOd
zfxxblYDRQKjS>nW;WrJcPTpLqx}XUsB-rw68)toc7i`jNSqDA`_cT{<0q@|Vr+_!m
z&c?aT`&Q{CUQP-(<p@4iVIjP`vivu(xe-{HUL80ybm(4+M`s3W;oGGFEK^~jH$Cn$
z#P-Nlm36s?a{KdN`z77o{@dQ$+ncukK6|=8{~w~4-AV%&9@6-?Rb90e>!7CLzlyDC
z_SHnq(Iopg%fMUe%0s7@5=#R%e@F)%h6h#BG-BGIXMN)~e@jie6$klS(4>ch>l@6&
z+yGA_DknZb@GXt|>~4V(H|+fN$bi+U1#!Lja!l$tVlaP*6ixf+hUn~sf{Y2rQ5mNK
z>r{u?8^!y!XBTO7>g1m?6qY5EqSZPRQYsKs==!jHb{i>Sy4{k}qGz64m&Z#3C^I#g
zEW~yoV!$1^j*d8RO~8+#xn?a7!&<J%q}nC;jiYm_N?9&q)pY&_ht<reRCUlf)R!Vm
z10sJ!G!DtfS*^awfUftEn7iF<7xQ;p=ETi7;zV*v#yUSN?IRp<g2RbPE*dVhD|44=
zZB=!ycMA^hp60KmU5J{-V>x_Ri~&;ip>J3C)$cX8P%|R&Kn|Oz-GVh_Y7OB+2Q`6S
z%`k<}GcS<M=AWWi<P}KviC)Pk+51j(1L1$xi&?A%g4DF3KWi_Pdal?EI)a^xDCB`p
z{oi$G|0woWW=q!7Hy&tCRKb>Z5b*~cC5DOLqYT4MAN{QK{e%YBCir`n4Z<cH*84Nm
zooP_@njjC+SUUVt!K{BVGaVS(3=zk1$VM6BbT@iAk%wL~77-j5yZU)ZbkYWfa2S6g
zF&Xukw$Crnbw&<Vf=+2YwEY8EGx*O7Ov5~ewH9uyEkvX}V?UesMge&XKT@dQY8f;5
zCL_7dA!;@)!}!L+Q~EleemOc*_JgfzJ2orl)Ni+tZ&o_1Y-se{H2P7q<udO`C5?nX
zAo52t`JS_pqGUJvplBk$MDEU}%|(B-x?!Qs%z>eX8u~{^r~uYfIft2}8<wG@%ZRb-
zG(pX=Vpmo+`DRAUCbPC#XSAR7=blvh5HY{_A(q$)Ygk<W!}*n`ggrHCH4ZBWsHy9?
z%zi?>XHQ8SxG|~zaN?&po{$zdMu0OZ>s%*>oQMxy%B^!E{Km!<J9oB3`Hg>8^(xyV
z%dATFJPXj*v|uzHh$;xfbp$Pg0uL>2^~!8|R^Ig5ysLPkq@R9O1L8<St9oiy4@>19
z(hxZ0V0eCM`7b5U=CT>F8^Y11;_F9IGQ_C8wWa@jla2_d0cvld%`{1-Yke{=wmuXB
zce%6;^+iDG6z8jJKnCRFg}#3hIEtcIRDvGd{N<OQ9c-ZH|7xO7>Ua>6qk}~|&t*K2
z@(d>O8ig$<hH1Yak;=_i9VBUL;tEl3($N%nGrFwyFe(VAiA%C|uHx`G4GwgS5>CdH
zrNTMI&5pDZDu~l!5&2ZtoF|ojF_Cb^B7&W*_fUt^I)K3ADtEB|OU8fkfZW~xyWM^^
zb^pJ%|36S!{{5HxM(0w~06LDasC<rNi6l@J@|QT-^W1<`+v1!Gi#`S`4V9}p<_CZg
zj6P21e&NT8ms@3Pj(Kl0)y$2`S{(6kcB7dlQsAJ|t*m=1`5nx_g(_Pmvyweo-8$Oo
z`IqJ|P4^j+d)m)ytHpndYRGD5vu5#+uiT#h%Oo<I$Gj6@4*zdGYnAiA9qd0{=YM;U
zvK0T1L&62Z#wZByelj-~OBwzQ89OH#4t?bZ0(@P46lh~XS>moc1*V56aqubo{Wv#V
z<eX0?k^Lpp(`%x~x=l7s8>MIc8;_!`>ei3w`QYvMzqXC7!2f0QX=`f#KYe=ee7*l4
zqAaoh^}8P$>sWl0#b7)iC@tISyvC+q&jB>i7*pebNVD%}E88~ck@*(dc=pQ$`9jUW
zPHZP`@BFJ_hVic0X*_<1xed!sJ|>Jy^v5502cJJ5ezSR<m!MDs7=H;CE9Q9E`~xht
zzN(?$TYdigxrsiZ9v0-;Q{;Ie30O$BDhwzuQyPVc#A7tZTsvy&OJ=M+LFcYt2^V_t
z?1GFYUUnTce?>}NIYvtO1soxgh=N5zs1FbsN=dzD+D;2F;T>Z^zMpCemcXee?By{E
zadYZ=%U`Y6)!0PZn1AS_t-81Cxm~fgmzvvInIFKAkK7!YdIjgM+{~+t?7~$4wbag<
z>NvM3so9u|9cKmoW`6r_cA&Y0X*!MJtdVbfzo{R-DH;E>YGyUFk*03#oqoLOFh|Wq
zyD@VzrsPIDX2g<mb1BOD=*i#26JtX}G)6Z6guaTe4TF>i0)I;hIz*fHrX>faNFmM-
zhqhUjsVp;=j@A0*w{f}&^oVBIP4&I3#i5!()y*to+|)GIO4veh=^vq(#h$6X2+7r7
z+m&wbugRocq(iu~UzQRJ<CT3r%=Fdx`EQ(z2^Zu?^=0P}nLkafB9*yS%Zq%wD@4EY
zT4<|qqvw!A$$w$QueqqJv#y&>haQLgxh`L}++O~_!91q%U;!0iuKl-Fw*MZq*ZDsm
zrYs@<|Ew1r;T}t+3HZuc6hUN2JeVc+XS8DKU*W-w@Lv~<$yt29vNzXeisKM%W|oPj
zbvkS!C!p7s2_009-t|e}(0)(j5H&si%P--#-+U57ynlD_tkcv{g?>J|cyspVhYq^P
zXOBW6NgzpxHkC;31P=TBxud>Obv}RI+CfIxh_l$2I-rNX$c`q66E#f|hx!#39y1zF
zW81_XPaya?M4%+`m~s|tw`p+BtdBsMr<b=uC{wWQNF0Zr8O2khcuviRW4l-%9)FT@
zYyR(epnvRs2(S=14mqwo4CdK?o*$I+zdwK0TE~BSkg^2-Hy%0!9oyB;Q^e;XgE7}B
z5T-(WFXF?L(^1x8opHzpe#)GztP^ihS6Iw3qv&03>S<?;e6l8(xtgH%$gn=J8Pu8K
zLwE*SJ+Afss`5<rGso0?B>QLvi@Yu43avgm(SQ10N6)wRj9e7Cj`mq{eXr1E@*Yf=
zQ_m_2{TbK1g*wu8OFe|Wp9JCOob>6(g}S*W6JIwf^<+KyTpzz&E6V+sOJf#e4T4w!
z=7h4(KSZCh^VPwBiVp#%9O^{bDz%I=;?!(vJrOHtvpEm2+`u*cTeVwZZA!}uDjcPe
zq<_g&IDFf0h3BH{3Rrq>H7|YhQTmZa6!Qt{r?D23jL8~8nbW~gT3Z_9r3XDTdDq;X
zkmbv*=SE+EE6fGEU^(-15ZwfeB@f)ZPrY@@PiU+;yX0svtILHuTGhgvotsZ(xwW^<
zt9sEFUkuyN0;}NK0P9!8PHYD53&upn+<$63tgB4fcg4GXy`tB9DV)2U-U<krC}6^`
zJ^J0}PGZiQmv>p!au$DC%(rqi^8W~Pio;%wDQJ%T|NLOe|L^(UI{)v(l-tPvuhnXw
zyj;2TZ>i|f$o_VswUR%)e!H90Z^yVFnZE+1OG*5;z3C38a(HW@ztmT?$d7q2q<@k?
zuD?Y9a;lemO69O#btv_tII(I_qc&VHCTmm&?)=m&j9Sr;;?LI2!0973U(annUwxU~
z{(>YC4S+=IrZZh*y4NqG5|tOBRxK)2tXGW;33zG+SF9ZsASliTfOP5LHg686=&4FW
zD*C;-aq<f=Y)$(wuUZMUn4U)RN`KYRvOBdqeH|a#WiCyJ)SEMqP_t+1sjs5`0z{a%
zx(75>!899V|EDPOiyUw()8$uq)-MA0EtGlNZAE{#QRElwX2oi}ox~FBeoGa;u9rJ1
z@V47WuD-kMbeTO?klF50dB4Z)R+z$F_L+MkEwiy|+O60yqxSC-E1OHvUw`GQ=HSm+
zQI|_rt(g1$BY)z$BKr@E2ke&ipLT11`u=xs{r>Y|%B}1_YPC;ZZeDDy-UMU_>G7C=
z^10Sqfi%!}v;*Y>-IFP38nw%rf=v6Bn1YIZ)tG{28*qwU)EIE)nv+VCsy8P+HdD|E
zmbiySxqWE9ekfDYC9%H!(|<-J{oCB0j#4>1&1uEyC!>oR0~CCHT2E%nm{MFQ=BTO5
z+r6~)!5!gI8pI4A`#-=SrW?3>=q{sX{meJR+0^dNluNMOzcsFOTs<mloFH-mV_eR4
z=9%G4%>{^F*Y^aGUKT5Kg|;^X$lB_*s4THMs~bpGy_G183&4FFYkz?0_UpE~nMo|M
z?zgqN)%0>#tDEWekz3ssw$0QD$oFZRS*a3JJA--V8D~4)!aQ@YrqEgX##drAn>B^I
zFu(gZg??#c%OfnSvH#`ut4x4%?0@Zp=g*4vzx`J0U>*PGLCS6Hf9HC&FaP(emD~Ru
zLV7eNz#OJ}6JTEFZhuxlXRQ0N0#+k<DMO&s#T}o4RP<D73Cxt+tiG!Y&+k=94)$A-
zTj=JD;W$mqurXDSR_R9Ne?jM|YSh)65vHrxtI!q1zoJJb(@+#=XHev<)KX;TE>lhp
zMJq+c5ak7#f$U|Shh|dWLMw2;jzqI(_Lz(tx0CNf63~!jp?{@K1}TC}G*AQQtV3;@
z*iu1!8^W{@Zs(dzJl6N@Z?g`r+N?MbG{_|OvCxJP(1peZYI{bNxODBQF?$9@3BM$Z
z*91+itmTa3kf){;NP#oAm5ILN8a9fn{>AKD^N+~oEFSawb51gisM?$sOAu&zkoor_
z)heHjQM6fJQ-24RYJ1gIaXK^9!rC#G?RdpzF=vWPQq1j)V>3FsqkYU>tgpjFHYM{d
zxdb(G<2~AGRxAH6JfnNz9(mQDvP<px90cUy>8&|~Zjrmkk|~j~7__yj(R9tYmb9l%
zq3RLufs?qx>g`xbQQZBCskm}JtK)7iqL<`!<zDA>wSQuM=Z==#p5;|4uU|2_)Xr%R
z$<&ZUQrhM&J<O{2C=Jr9vHx-s()vJfbKd_R>^<Et`F}op{&XGx=Rr#2HU{7ewcMLm
zuUGH?sR`-Pn0^7AdaEz|d^dxy9^rm$y;I0s%FL@<-_gQb>}0lax7O9O(8)EK2tR?k
zbsn0kdVjThBLqM#4cIJO$)-E|NsuM_OY_>zFJSRai@@H+uWf4b^~SbrifSG%2u4gO
zT6i4isM1=^@aJ-C)|*0$d$M-mrJcCk(Z41;CqRzw&C)fKORUU=D?e~nz$s^fd<zE#
z-QV5awjSJLO9Q_6>fX*ERo%xOwKaqD$7qJqXMd9p9dDI0J^O_*4OSX+#NDIbwKCbG
z{(!DuX5GeJv&X9>{fWzJ^gs8Eo7Mv7#eaRa-zxk6v=8>z`rkv8+o*p=A5wKd)9aCG
zWlxLHP#+lWF^l`H7UY#Ji+EYO2l%R4r|e~S-9{wxS}h|Y*NoO)?P%?6v_(X`I>}Ba
zynm>~P1O{plV6mU0VNLKx3jF)a<7Iap^0SnPy(pqf$56I&SB+G@F*(8xys*$)hN{Y
z2~(?3SC8u?Zr)uyz?RAXGjDud&CJaJ6Jm+0hp4|6UqFt}Pdl9}#Lvtl1tn?OT<%je
z>}LyIpMqXbdqxuV*^*91Wj5K+%-ueJPJgv?X_iBj&E1lP1XHeH<a}IjnupyqC8=|&
z_fqEbtSTfxaOUS&64eY75Jvm;dCceTow7;iwkdk@9as0n55~wQ);UCy@K~t|%_iD(
z9<?@eIe5!P<Z`~5z6>2tU4y#W>eO~HM_HlDfXL&Na}vw!F1I<A3=_v;#yJZ4)PJT%
zS}HA`)4mKwZaqU+x#kq;Dw?!Azr?@9)>-Xu;+MFIHW$nz=x^2d0Tq=&-904rnqq5N
zf({&p=!xekvFLB&Z{qM9Ro!p_1qF^n|8K%2jePZ;?<@kRF!4B^Dl94g`$H0q=pbgC
zEI!5@`M-6rSMvYg+dFu^zW;fUvVVcju~eK2l6mTtRmV<@dMS-U#l;gGT;l-|eq#e&
z4XHpPO%leXKw?Ou2wWo22+Lqd<G~K%B*K!8&9Rw(kK?ehfnqYyPPCiaL|~j1(SO_W
z(c3thAQnSQ1rkaKM-h#Q-|$Z^KU}IquCalRffUiZ<4Y7$E*k!T%3b)s27kZd_x{6o
z;s5rF;b2$&&;BXK@owHx4+qz20=kcAZ2RISX>9vFeBIdg<tS-v|KE)b^bT{%Qi0A+
zPDR5{IQxwRvf<N^;9Xshv)>y2SOhF2yI+yXV#)n~ae8#}`qUqV%ZxF5{~xrUJuk=q
zX+Pgz@BarW8|bCZ3uSl1D}UPKN@_V)>)vP_q4)nJ(Wv<KubVcrlsXQ4F@y|LyOJd|
z5WA7C`oU1nhN`m#rqBUrX`)z)rY01z0S!=($Qz;<jsZls^Bawg4RrPDf1F%28r^PJ
zN!E>!BqR<=98hAUcXhUQOn-3Bj|mr)#U0f0Kl&f7Q-(>#)yYy~nSVjtq*&&&8VpA4
zVKHocgB18E8+d}!M9HaHEr1Ir^qn1d+-_XcIP4&$!PCKOoHRy6VkJE*kTt*+Difp!
z_WNlRX;(SO>u6hzCR#K?&3}?8V(4eaqp+!g*w{d4vCI;IH5$OAwIGskHl`sF2wR+6
z3!a)+LbyOTLmCWGfPZ5p0)ZtM{NTqVVhM`Ljad(qf()o(YW=tDA%R9X#sk9rM&o5+
zIST^-$AAB0+9NngMBdxA`39CllT1jGh)qUHI8?%_?jHVReFT(wtox@i3Zhg<!iBGo
zDfm^RVTc9lDH@YRC>;ar_KE7^y#-T2!($?eK<9Z<wTm>CbbmyOASRrJK4rUGX!GTd
z=NDT(Isqt=`YX$cok}(Wh34wjB?^e*voyexh#f`u1IVNo!?Srsn(9wA-w8`O!b#>u
zWcI;1CtynuR1(o>crLhYzrFWu!_)KK_uGC;H&Hq+QTR|4K~SGX5xddp<9d<K=PE#&
zwUmIzm`3oMQGfi*PBtV0{tp352q=aj?e_@??Sce3q#Nj{-={H^RKfX40i{lH8j@Hc
zfN<oNPw0e*fK$*C(Zb~uI{ldFY<p*MlFIoF8lSw`W!~?rYWAt|33bhm#~G&ln1#d_
ztS`Ih6Vi!#5k~3@q<%6uooMx!R$=QC>blOi-@kp^G=FB6Jk9RQql>2c|9>^Nx@Z<8
zL(IbhB<hQYh9qI3LCF+O5*AuOcGc%t(kj3*NCGxWSWIG>!IK+^x<xvvgG8fb3Mcmm
z32dfgoZudf7Tiu#3vsL6wRox8hx51EUANG(rD_0op#ulUzT)rZDDM`hYSvxxMTxm$
z@eU6*Qhx{9)Td++QN<bUn-tp5lASvJBPzi1Ac)-Z6@~a+eV8Ge0=gE;{8aRF(W6^}
z5+?~~38!Gi&1#iSRe#wPUjj-Yu_XO85~K*`qENc+?+;2E!()gdBFig214`R|IYcfC
zCGX*23dAL#ym)zZj5rZ2<pEg+*rlKhcvuDG!hcX6U!2?mkxSF1v0o^G$pzIyDUjqT
zQM*=w3lb~HR^xo%?)&@St_n(E^rxINz7&hUckaHbvb40eSg%W*GxvVPtg74(pzcN>
zKxclM3^)!+?i{S|OB8QDljw#<5hAfj!3Da~!+Su-B-Vz)8v@_xE<vr)T9=Q``ly@V
z(0^zW@7iNe-+WLrnjCU=gK&%hK+uffd!h6+*oGQnghAQxbBU@vK>3c{{@~oOXJ56q
zP*DIgyYXy<2lEB4htghdUFPkPhf;cOU0lkA)bK+8)6G!noGa>7A)0jhX%r!-3HFxh
z6)?1urJJ9TjUF}a>&9=oJ4g_M-k;fKzkhCSKpoDQ+{(QDgyboNqw-P31d=q0w2P<c
zR!-oA1=oaY8blXlK!xNJWV}M(;1Lm}31lQ+JBRj8{cn3)`3#G1?Yp@ia;AlxnLA=d
z2hziBkCl~~`)ozK<*PZv@=_pvBPI86a7|(`F8pBJ7ZA3TZ>S8JN{GaY^0n<%9e*rL
z?~|kRvrHDtc7h;$Oao$lMHp*l-<>n?3F%?pG&@-J^4^XXl7tfz+9hU^1|@T!R`Gnw
zc6$*U?C!PN-|e=Z@3vp;;)HrmYvIw@YkTcyyACgy#1enZtYv}Pyn0K$!aWi_<QemT
zr-8fj5zJF5gK?;BC=TCtRA^fP>3;^*vzjgCo1x&&QKR=R9JWqWhYGXS?M{raxN>^w
zX06<v_`<xk({~c;|J@uob-*fQ#*RZz<~E)Rg1Yt?Q8nI<3FkB<-MOn*yZ}-4k2%r&
z!5UK3j}!EJiX(;ZP^ppt#<b43*kAy*p-5d9CY3~KZqiw3&1#9oob<D|`F|Zx&ad#q
zT(Zn&U3WYhzrvGs$>I{e_L(Yf>g*&gZ)@XVHG6IB2|V>iv_j%6y>V)qjjdSfW!i@)
zBhAqy`{=4>AbFn_+W)$_VLKG&9c6_Kz6$D_Lf<u+bWs_7#*^-vOco#YPUy?xh=JJi
zC2=%sh7S62dxO5o?N*>KbAJG39C0E!C1V0^L9~x>#0d^3D1eh8^j-O{;4|!*cr!%|
zp{BVI58oB<qb!o`*zM-@cYDn()Qm_xki#Zww@_0^&f-D-_+0USGfd%gPQ*J%x8Fg!
zEhwwH?$OA2-D>*^%iMCSs1H_DbPG018?#PH(_{?ZN|}SOMXg1jZh!Bix#+9DocfxI
zJ%=UZctBQnCH-X%-PK)Wf0<Knb=Th+<t9o_6H@6`)lAc=P+`kC&wu@ObHk}yW6uF<
zx=M6#s#VE#k640Rk?8e^g)EmQWfEn<GvbhNO^@o6$X>$0n+3%fF^xs;Pvsh<(;8CL
zp5Mh2A$!h|JtIM4$bZr(L>dJBG}jKZlPMT|PJT~GETf5S9269g?l)a^f-23#Q0-5W
z&Nn#R@6FQ62z`O;pL-;^m38gXUd4k7eZs#?X%r$7k11#INWYWd6dbicSl4$kSc?zK
z$Z{FURz0m+=D?qxM(JsW+DGS{#uCw3vs22n%Q^VUS@}di6@Ocr7Ul>sc6R1l7{s$*
z7H@yb(<nU((&DPjc|o7EQD*PxBG&tj1kx-Bl|o0M#B#XQG_DKpRP|rW2x67f_>oN1
zBwkVBI#dbNr(8&93JPNI&&1}fRcNNlxT$M&LlB%nB#%(cV$argr!g&HUz16@I5`lj
ztEOkT*1P<P*MHI;Q0NidlRx6K{h`a!zF{lnwYMx^di+OJT*flz<)!QUv%p*8`y{%8
zT((dQ06)IVi{q|2&34QyTBYM>F9VCZ{aK6xEWqwI$=xb;9ItHc1u@94%7*O59-Gcl
z>Z41g%)E0W2>iOaVPDn4Jh#xC^(#JS?^dm!tx_KY0)L%J#Ld})kr-knz-p%sNR$P>
z9@%^8W!7&sK@_@+q3ThVdFxktNiWRJ2E2xF$*In@2Uf_Y3M<BOy#2CHOJ@d7FW+@D
zf*W=7y<;Awi);gF^BL$$J))iV6g*&#qtaX)3&djckbc5ajet}To5bH}P4-etqv@Xb
z(VX?G%74w%U3&eT>`W_J!s+#MvW<M%C3FG@KgcT1S-(=e&Fp?)x%GoscYhaY@{g<6
zf8SOA-fbPH*H4E?{IW}@V~;)H-dkY(0xSfMLyik;xa|5J+g?`0L8sR*gYyfoVFt%T
zt>e7&&t#Ik<N2p^nErQ82LIze4?&Z6`U@X|8h?t1Jp@6m{~7a`#)J7f{Q~;?omA|(
zO6dX$;N6^X9IC!CSn)ZFA{q~_@IXlb23ZLASSrm+TvG!{JOC!2Ii+@&cT#O^Y@o}8
z1QbVz0tQ7eBqJ;wcWBjB{^FS%uc=N0AvsA%M|DW!K?9*MU#^aIwX)Tnh(_AEmI@TH
z0DnsoHV`5o@hFK%2Zhker>xO%9&gVX>LRNNgq*wox;>jm-n;RD#vdCEi3jt#)%{33
zaJy;y?Pq@53rUaS*lV{u{%pU|NYW@eXAuqN!V1XlPY~AKpJxrTn44f6eR34t;E8yG
zXg`NT;p_<nVU$mHbo5L?Bve1^zhUy66MsQs`9#BG9FTH=Fz0yEK!{4BLtxE@)JAZM
zCP-MIW8Dd2{TzHVj^Aj6q?bBa?db@lQy9=7+m|-Lm4Jyw^qQz&6cLk;l4C^UKI0?p
zpsAw<2zM=XY*IzSM=|KcI1Y&EtVcSHjg0zS!rCZ=1t^lmhC*}AB5xpPm640^#(xIV
zQ#TNq$N3w`xnj&Wkcm4x7f&`=tFDin3rgQbg2H2?A@nWxafF4KM}j{Lnb1MKasVZI
z$D(vZ>~%SUo_5e#-;!9<YwjR-m^Tp5pxHE!#6v0+oC1Xth0s7pAP|%({#Agu=`|Y-
z90Wv&*DNISz&(PRXvD%i=SeNxg@1uA2o8VdRFb!_0D}H!?qHYnKV*p!Ui?5CjRec#
zynfG3B)ML`kYS;xEC|Ica<-(S7k#6!92&11$U$rg0UHP~06=fR<%BbAMzcjHqMU3Y
ze8rqux{=<j?~!#Sb0<5RnBK3+<TXwb8Ux!X^ku%!f`sTk&0&8{Ci(`f%6}zQ{Yc|F
zAT<2?zGfz}b-a!Y)D7eUyMa(9JgQ1IT>Fn?lA%)J5+<wwOBJX3*}R&9sC`I~SWpO<
z1bYz#NjK~TjkEi)9VFO@AW26=s19y$44ZPGT1%#S=lUu*VM0)N@Ho-Kf}}7cl#4Pp
z6w9`&yMgimzXn(Ez2|w=F;7kmR&F2Q1Q~a4eGuU!S-h!U!nX<jJtbM7lzcV*_`|t^
zH}d@_)O+@n#6cEZ{qyHWVbWm|<umqu--NOw@wk)aPqjg3&W|oHe|~#$(w9<d111J0
zlbIu4JC}ZH10*Qb>7_3}YCaXPSg?rPB?xh=^{`=xTkTr}B3>{O@!Vt+cMeGmYjf6@
z%4!2Nf1Ayn5;hN;O`!QFrK$_Ydn^y|jos=WR2QWfko9pa8`-`i9}~tUa=JPEX7f7j
zkw8Y!*v5qgmj#jFfMjnTa%w;xL%#_YEAS4RfB1^$`3@a^ZYl<c1$p)qd0t2Y7Lu(-
z6(ZWVLPXm|M0+)eXx{@O+SQ1#!Loj`50#BCe;-3_zvZ_YjrVV3^oEVes7E+z@9&_!
z)?RDJy#3#^VGq#_76=p)r4#jOOvR9d`IE5$mBX|LA*>W3n@D3DLSmT;kM%t{B%X;N
zxV3}ikP0-yzcKE{7l3pUM5t*SaV9fX1w$MUh|oczbhIw@dmanR>^M*tBvUMc@q}gm
zfBkvjrar+k<*KVN)Ipu}RQI(!1-+<UX#`;K3dx2tGeA@d67`jeg?VVCj0|O`Z(sS1
z#`gBl;4)_bzag9;Y9f{q6J@xJg#Wp{-Dr5|+`2NGuZ2d3jqauA3vZ5!;z<{68U_Mr
z=uJ?M$)Rqv2h-cPxOX~IE33o1!SsuLf9_59sUvP77DtmUAHDx4;beAbJR1^EkpNDp
znUwZL+5#Ooz_FsK5RDjMDc5|p?MGp^>xS6SPG1cV{iLv<Wg-)|t2+hLc;7F8)yKc@
zZkXC00OuJhp975=@Ty2m+IKzCy0DeJw*j$m_HRRk%{&wv<Hor$N`|;cBn@Cge}T9=
zWFs~pF;OdjgC_;+stwrY1b<T`cB}|BBwQbUIx;~Xk^nXd&B#a-*O@Up7%AFD7%0`%
zK3<MjJv>FwgkWRYnSHYZ{b}#b_=!Y)#lCPnK~#v8h{cE0^19hYhE7F5V$3Pa!UpMu
zGVY;n>yQzlhPMpM?nWF>)H>#1f8?{!k0XnF&7GRwGYV`m3+^H^%z45|pK!~j-m`w6
zf}Ihng)B&wmIJFcd+&_*K8*K2jOaiw@$N?U(MtvK0xXEwGP}h56c6;`**Qpt#`}s`
zeiEdgMku23wa~O+M^+;iqC(14GEQ+Mb~zC&8WT?ew+H{<_Yx+gmjj~LGI`hOZ;_c)
uREL+wx(4yo9AG?eyyr<~KJI@_VP@B5UDo9hmj6Eh0RR88d1T`NToM4@F?lKg

diff --git a/assets/jfrog/artifactory-jcr-107.104.10.tgz b/assets/jfrog/artifactory-jcr-107.104.10.tgz
new file mode 100644
index 0000000000000000000000000000000000000000..2d16ab46b38200fcad9de878a8e400f46de29a4e
GIT binary patch
literal 470909
zcmV){Kz+X-iwG0|00000|0w_~VMtOiV@ORlOnEsqVl!4SWK%V1T2nbTPgYhoO;>Dc
zVQyr3R8em|NM&qo0POt-SQOX(FpkRx6Igj7c8yUF*g#=nse+=bh>8V}A}S!v?heby
z?#?<h3#<r2V%Mm-7GiHvV}rzs1yQgUus0OM-oc6$|IaxyvpWlz+*k9@_x--V?DO0k
z*_}C`UQfd)hKR=$3`rTBM=K~7{{)O;BnC{QuJ^ZnTwPsVy*xb7e_dT&YyMa2?(J4j
z>f!C_?cwR+?d@96RqEmH=3WoD{(UHX`lF{AjH>7Q#jt7;_rK(WX|*JSF$AfleZ>GM
zFa}eTDv1JP7&R^-NEZbTHH5&GzCedjj25Trd`wBuIyGi+)?ymm7Yyu2kt*O%Y8i~s
z;uHwQRRqmYhB{wO)XQ<_B%GoNQtJyk_w)l&iPT5p>g?LN&gUsyjbk*<fvTavVoXO2
z<Ht&J6Jt7^@lS7w)YU^Gbrmad9j;a4S_OgAzG7!kYa}rM6s{v_0{-C(;t4hG>*At-
zwn4j?KW9W->M9tYR#1eFLEnFp7YQVUn!qqR+SkQpbUX#ABsDGy{!wR&d(=ftDBw^W
z9vDsI4DABHGs6bbFVSgL;zZn#Oj1fjn-E)PfS`z-ff0t-8SqfV&OnJLkvf`x&bc-w
zVkoR(b<0YF5!~YlFs{J}wJ%7()f$<RI5FUujr<H4VtNH&49hBU-EyT#J*8m9#j{LB
zFbR4&;u!+K2}sNsbZ`KjPE9C~YK!X<(*LyO{onDa>Hm{3wH~Mc-T?3y{@>fx)uX2W
z_w@As*Z=<$pZ1_H9*^nO3}7V>;z_Ee?McM#L3jc|1A+z^7}0ykVCQ&}(qIgOE0Ir<
zh{f$eA3PbOaFCpUYk?vG)2axqiXSuqr*H`vLFxgWK<d>>kf<e-L2?4d00XH9@I56-
zXjOLN_Mo>yfzvc#5^(<QWP(Wmsi{CRj8)D=+#sR#@<iMK($d5{a>)20igJv`m4MWu
zA)r$d(!)K5hNMXi4itKtAvMHUHU>gc!*Cp6YBiwsIvq(t8Wp5Ao>1v2^bAPE4KyIM
zf8~Z;7z)Q-G#Jg`lnc#Zay4!iI>hbUgWhU2PbB1lUaQ0@gm!1albr#rm$P_F#DedA
z#bN;9AZGEXJxf5mUabadf@T02FQ7#5EFe*Uq5-B=0wt-?Yj7=_34pp-=KH1e0$_$a
z00>uJ`xs0GWfxD88pHr0d|EGe=A_FCmBPp92?~b@v#tt_Mrbe<&JGNWLCqI%=>qMn
zBo&D`C1GO`K^h-4#d(&TnvsWnu02E%u^izYp;eF?hyX$;o>Z&JWT@~I&IKx<#N!Dq
z!Lpd7fDU7oTEo%^--e7=6Iz@flOa)Drbsm!RH4%&*=TSL<br8rOsysr7!;@6fSw$r
zm*bQcXK)%Q)OsiYF-saBG(l<_3j`qE;WR`0@?QWBfG@C@_9yI3Un_KaUtsU)>Z&n*
zsU|c;-LHDo@v79Gr!3rzM+31W%%pu3j(CGBA^nh=(eP&-MItvq>9tz;jzDoG{HOwd
zLgNg}Tuh-LDJ6V^8_mQv_zWf|lW^kzfkQ%qL&JLqh5LdbSRxK+JtcTS!cr^Y_)nk|
z1?mz5r2T=0q;S9_U|KL-lfsS&5f9ceCU%4NAVot%PN?inU!?c~dw0_pB$I$szQEod
z>K37;8BDFlDVE1NHO4?!>kCFJC})^TnLQM!jVFCU=Tv(gMJn|QCQxbbYd-*2Yhr7L
zb?80W(vC~sKw6r;lYKmnF?tH8?R}$C`9IJgAsk@%qK+c8OgymfNIQ3=?SXxwQQPc+
z#2?dPazafo1Wro^nUX^xoHQr%!TVwi2A#Bvz^5y@?<6pJtLvo@l4evC9yWAvY=9Oz
z7p3rZ9s4UiMlHeFU+WqpNJVH<>UtdptCT-`Q=on!kT9CTwF*2o+@Ld~Lcn&3&h*?T
zi3-!H2__7uk_ZJ(hm*!4fvyWl`cn_rHFAU&6>VX-g2I_VR$-8HuWMu>+WJquSQnIj
zgc_IQ7*p4v@!W5J#@0|A<>>yTUdwz6AxiKJ8Y3pHGZ*=gJpVH0p{M@&Xoqx)HDitg
zzJQ_hthZ;>G|S;2RP5NZ-hgI>%f~Rbju}j1%08GH(<*R^qdQOwb)Ei8%DLzMdD;mU
za1H9?F*R)@pU+-Qc5Nc3HYFze{^yBl-yT-)f&@^IDZ>b3q5v2h3xcGD9f88*>qJFP
zFj`DQ@W{y3q?|{F|H(wVOK3pvzC!{e8l@NrSW=ggiMhB-&@f+x!HY|pln8IVPDNo#
zoQ6?SN0AJ!U;wFB3TZ(Yb*6!w!m&gcP*GBk(=gWY-a3LECKSh%FbOc=v^}q)@gOKT
z9O!8jip{x%vN&VL?qKFLYx!|Mq&1FC?69;BR}k?AE^9a90hBm{5o)&3fZ3KB$C7Y>
zYjlhODT*-fO(xW8pr_%_a$Kpzl|YG8a+FroWllyI|GeTEVIyN19j_p@T3o@@X;xwY
zC?>vclM@3#YH<yz#B1sb`u%^p2L1Q*KliDbC^EPPCY?C#5)>RB5GG+#m@kI$7yTbs
zscX&tzn81@-~RtU^6@9NDhgxtYOeo*imC+YJV)zk1_m@WX~31A>|)#f+eiIh{i!wo
zH=uV=|A4{4{UsXZ-v#5(?O*EU?&evu|LgXz{r@wc_MfzDZi>bqWqoQ=CGM?O^En{f
zTrs9_D5H|&#;gce8go3pJ=`8dndV+%fHUZa%YoFx3Anksd5F7!enbkc1eg{OG_A*h
z+yImWjmgz8eMH?LXHu&+@D&np2<Gw`M{ySrp;Mx6SUj%8O+8wOBg}{(Dhi#>35-@y
zD0d@i4sRh^?h=GmUt9q^jYx&!8Zrr20#Z(sYMe1Pq@(%|aF+VGyTv&CRgS0AtJN;>
zQAZQ7Zc>Sn18%NHU_2FZ!hG1Q)f0!>gSb|JcsEzmSkhWU8OsIKTBLA{!2yOQ;AkDD
zz`5)^&e@s$&Dr=%9KdKa-3t@o1YE7*drl_E-X1LEATkNKxg*f-;x3>|7h_YcOBZn$
z&>JP#8bS*MGl#%lFmY&)1Y}%xV1nS~#X=aUSMz*=5c(p$Fc&wc7BoBi@X1DrA6pvn
z06aWd0KN4p;KoYbP22?pY87fd#2Qb+wTw~aFdAqutr9~iKGY)$X$RZ?Rbwi)uPc~8
z69AG5C~-3a>Z8}_xWbBJ_=#jFDojnNwCo%Orql7i2x&Lg0tgc`ME?(&AoY=WK-`94
z2H@t6aFc!(ZmiM?OW@wMrd<T%@UU4-JS3bV_tsH7i=;@M`k0rWzDTPAwNPVeRJyVA
z2Z9EHpz#I(O^n4MxHvag*ZxEtFd-^<gTYin)Z(P>5;uvfvl5pRnATb9>P&fh#?|>|
zEwbXIt`c{Nv|F6HRs(0qZAl8?DrOKwGB{nQ|ESRs5LSt`I|A()(pl>2>I&UpU_9$`
z(JY-7Pv(+0G)X~H>_nTIf~7jDelab;Qy84mVro;3>k#*;3Ovry3934c8)HD1E=m$;
zNd{o?@lX>Dq`pfRyBdgS`Bno`RDQD0)E407Cuk4Ui33zxhyolzi?fpjXi7y#;YkFk
zr-6?o#Ran1Md~I==}ZfxBtbJn5(ZN_nI0GXEbP=GeL)p|9W4&lbZR>}^Z7><sF2f4
zat8`hqr(_N4x`}zxsA9%vj7glhrA`yZW4DcoVZK6nasvhU^R6);W$>Kj1yqU$@BbY
zvw#5*YtxL_XJ9OqNZso|*<0diMA@4~c?d=Ucc~HQ&j92majOH6hY^sM36RwDO90g+
z1TTRQJS9>dkgNL_0P>Nz*Mj3IAjne??7MvtoZ9qw3h41*>49)uzXVRVI^eiTx(VR0
zVG+{;HWPIHEHK^@k2=7Z6waL`2j+ItF973N2N<atn3@UE=fbJ2)>4U^5ssV0jfdm&
z1z<cRp0&WZO1uPMq(*YS2uy9RxeB=E#&RuK!2s!(kyBgOTm@X?Qm`;w2i#r10FJaa
z93P3R5sWJ<90;bC63_rfUkz@0R?0ui`KQlA$yFk)iITU#%3Mv9OHF20S7yZr3N~Ky
zODN({JY*j-{>WhvhjJcce2qhs3+zG*c0C6DnH1GxvbWJcx$*uMrPH6UGp>+vwM@;+
z4305vmwvv^KsdGhx))T<Pep1}dHcgcnyML+VOq(Sbv%;16V+?KK(T#bu&j-v)W`~V
zp5<B~{cLyOQ<rb^lz0oE7-{)zPYr?8BE{3_aoi+s63-e1&u2mLkoeSu;vvu-H$hqT
z1!D1#c>OsPcOHuC7tvBH79c1{AwgV?E(Fa`&~31508N;<8SA%hUxG=kaA8ib)ClE^
z=&fat9s*@|GbPp1&rVEy>IzB!JQS(K%LwJOvl1U@|23hw8>1_P;>kn#0^z$!y8Ss2
z4`bo*1t#TITlnTs-2WaZf59*}9*UdS=R=X!He7Qk#=^wyvoj0`rIt~eLowD_pP%?b
zD1Ry!SBcapn9t7?ePD)GOUv8@1_P4<Bb+brF|HD~TCTeW9HVfgf@sICzhXzEfle=1
z6AFG2tKeND%fG<hTqSO`e1|!TKE_7%7bvN#L|RKr&B2(;+Aqj0>PQ-0jhVTW*HTz)
ze!lv2gTB=qikC#{Z3f0zJAbw<KqwynFy5}FBAM;VNPRvBjJw3sG@@}zg>?&`JEA)~
zqAMT$Q6ca4B_m2rBf6Tk1_T3|FB%dI;3biINnH66xX6df<ZhpjlbgiLG@^%bMAw=l
zh6*Z3S3XwNc(fmp0tWhr0yU{3fu2&=i4Q}Xp#(8-6Hbe{@*%2jJoxcV4@>KK7-f&9
zEqJI}^sh11<H~DzjdugJ1VdnI-t_@89yN?VIbDf5t}Frn)03+Ii#|2y{|5*92Ly!$
z{H-wleE#3fOX^;8{@>lh_22zp|HudY)u*=(QzYPEFrmP;-0Iy=eE7*-H;Jng3|D%L
zg0-)!$0uJ(U>KdRi%W8HvIIk5BqXJBQL~_E7qr<XJRo#P80a0;7x)JU^$iRU3=Rqd
z{enY5L|A|m2n`4c4elG^55IOoPxTE93l9zK69K<L14t#HuW2ieM9g7h&rxI#=mboy
z1{xe=Hy1HDrC}F&DoCx8+rWd?%+k0Mpm1)l1wm?^xS`N=5p+U?T#u%sF>dz{yF(`o
zSFnRf0h2(HdQ}4OVZ9ka8<$Mf#EYbAA*LX828vK6Fn~;ko{yveu4M?u05Cn1KvKk5
z1dm@lUdJ0u0)}R&R1~IV_!&5k4*~>m6{ZFOXy{r<=(UhQ&KF|}GzyP}RtYe*ni~df
zYhiyPaGC|p?QU{HbAa3*YJ{{CK-&)aEpQ4_qan52Nc^5CH0O-QVF5}&KW+uKPEYAb
z8mCQMH42=Ukv%txJtBn$4um87Dw&K^PC!XeXbCh02rc_>C$we))6-~%pBsh!32}e|
z8cd6+aCUk%9?*J40*9CrNKU{J`Emn`J%+{>aweI8+C);ofgl`N@z4o`4vrL0#4`q<
z!zl$E+QHMcqay-GQhX5P2huY%gK5!jCprP6aGD>Ha0GH(i^mfR7(vZO7vO0U`3O>P
z4;)Ae{fn}96iOY_BAz4>N<AEl0z&=Z2EbErN<pAWT^&wo2%1I;kMxY+rbf`URV@td
zw6aI7q?($hqwsi~;ufrHkOgYkezk^F67k&DZkiV`fmUt6pXGW6O-rNgTkK3RO~x~5
zcPhKJ3n)k>?qt4*n;V9Gz=^ki!K(jwLX8XDN3eV}u3&1Tj%f|-cN9+R)yO{3!VnFv
zNWip&0^<#Yp)f7Y_Ru(mLf>$kZOC|l0hT>zI45%gxiM;xsUS5vLX8$ILF70xRk#+X
zP(o`)u+V!cNG+F*qNQD|?P_o(fuT((0<t4XDzTPRNG7R7gfa3%P}58%Kxla~j0V86
zjw4Hh)&?YDgc_5pg<D`bWpRSu6e^%`$0KI+3%qyJk_@51jqZ)$7w`~>tr)|=*kasY
z2(jgca6pS7FpW-)!xwcFnM5f0)oVEDt%K<@kpkqnnoM>yaiK3x5lI+BB;f!ugto7#
z0T4#rJm9G3Mq+uuBW~Qe3{6o9VL<JtNDb?&ASfg*XbZ^+gd#!U3~(jEkQAFRClN@L
zP>YSHdpH4Hjmb%h|BIw}F$=B9v?-RtX<W-7?qeW1fm9=-03=1I2rZ_rL*}*pG4H41
z&CK5k)MOvWJ*dr`?9lLB)Sz$;Mi}iA*I^XW6v!7uh6bl_wE?IJZ6acvoX{dY(PA3h
zkrz6lWpFAUQ=lN>B#4nlrq)6Vat9~lO;U$N2Os0>lz2@WFq*6Yo{@ok`NzdlBOY)t
zGnpVAR&tpLKN89E2E9d6pG4kCU=$4W`lJ?9t9iFg>*X4P;hYDbcOdOTnA6<e79)Dx
zcH<gp1utb3?*24d2on|Pl@WNT?{Yi=Q^x}`{?p0Je;4h6y^$tvgDn^Djc%EY2e=wn
zFchgJ6i!eIa!if%D4BxqX;Jc_*K*tk&<cc1$4!iad}3&mu^|4_PJbGTjJ`_<gVYLe
z0ve1!%U;z4&CpK5kY!ATXamjQ8d~VW*>$rp)j%<ldx8}|jC^diV$8LKOm`Bv5i>0i
za2xG}B4~x4Mo}I?)F6M!rIC@y<C#Jep29Q1oK{{R6{MEd5ehx2r_~0a!Kg&&`Y2O&
z#HU<1O{laOx271%2r;%!O@z+MK8R!h286aMv9E2yHS%jC*}Mh*Wy&LDAoP!#8bCn;
zMguvHYXOBTaOBD51~WJ&Bc$;$dR)t>Ay@@T=}0zQ!-Q90eyk&MlYss(t%6|vjpXy0
z6$sO_!Ijh1I*S>BnF+lzjwup=fI(<8o!r1?aVResLFxepGdvy6=rJ{~e#s=IRwffL
z*U*w$XC!%=NJ4+2J&-C`IFSZS%@~~HDI9kK1V!OVqyjqfTG5=V|IqqvuG+%U!aW_-
z<6551<j&b%xf(4U*Qqgslj$2BPO+huM&EFWg|KcDrujx+jFRPA5bFr%$hWWpau*0F
z1cOfZ{{iVZ;3*1R$3O$48BDmqpJodpN1$VA6-ZBmCE`x(W+Is7@d%+hnv9Q!c^(O9
zT&;HE{-4n3NQz+vWAp=DqReH5$j$JSq1~QHMm$t>=o8MZ!9-k!zKcUmp~eUe%{?n1
zPHtca5pvh)H?_C|r)i8LkafmWgjQudc!S_$pV06fXh(plNiEJrL<Oml6Ix?dk6x?!
z0#6WI;d0TIA-N>a961g|G86?L>m(pB9?IWX3(*Y0K%F)Ug&|Zd3YZFmKO-l{748nE
zfMv|BDUzn05yK!E3Q`aAC-!eb3oxL@l4(7`KvLDXiVXr7V?^GR6V&jEf9Bv&OkfeG
zxl-FSj>04y15Xw&4-LvxnFO3o#mqI4Pnq~)l(Q7R&@kB;7xMV5ij5A?M4|L}UBPHR
zVMA?jPWg=7<#xO%Sy$j80in3CGsJGM(_jXZXRGOj6r_&ea~m^%^e0&!5(!KjaV4SG
zII(&JGa7<PAdL~(yliGe_$NG>lc^L!3^A#e2FGh2d1LZjzG7ot<;YU1rx~Dv_(Js9
zdV|6hgpR<W(-Nk>#_AA$Y7vT|_)xQw=#IiD4^u9H$u@3GsWf*`70otvD5yddsUfsb
zPuS{_7J!E?&ZyFGOn&hjA{>rm4p||9OyLYhXr1`HSx~~G>OgC#MVtVz5uiySoX}ZR
z#^~t8X}1$}i%J~kO-_Pj0;wotGB=Jk)457D@Tuui%`-RFd-7u-<hUjOI-G)Jq75O)
z;?PzhGfHZQYICM39odZnocy`M4~p78C^$UOKfoR^cnX8~E!>VoFhY(AtxMnn>adhr
zoJH~y48@n87+R)@YD|;T;dQc=KOj-ae$J^O&%hFbNO1aZ_$nBtZVuPUSEOvlvx!Kp
zuuIRqVzO498bc>SacE*ZjwW84IAo?(^q=C;UFgisluT&X<_#!7#GCvK44EoZ1gt$i
zNjcT#GREh6f-V<V8`Qz2_!^di5{M+6Vui&d5R}px5@|5XMoUr}STMuH0>>x`I?0OL
zg-6$Bvq0V`d0<OvW0Mb43yN2mp_rq?*%tCx2D9G0F>GK;CHyx9>m8v+3P#~k=Q#A=
zSb`JFeVS03sSc{AFf9a%Yn6HppSGH54DVRj`i~c9O`nDs%r`MGb=}5<x>Z1qvv~le
zuc?15V?H%+Q74N`RRv00*#p~1_IL9pi%Ar45RMKZ$|MDp1k75^vfMf{cvEYyjwvH{
z7{Oc-8D9rBPA0QK=P_yxpD0Cy-8rKvq46MSK{wBYK&{y-vnXuLx)r2`O{Jk8nYCq%
zl}e3Dz)T>XsMz6V0@zyBlm*ff5TRA$G>wFYr|8s#f`H{O8c{GoV(f1iYG#pwW|p9h
z^~u(iDbt4#Yc_J&R8KDKKL4MTW?Y(u&=e>PI|Q4$D*4$*_WdA|fiD?nZ%}-ZlWb82
z%~plVI~Yb1xT7d>ipG^VI}rrUKp+wh5Sv}F4N?X-l|(8EXBFSTSqQ4g@DyAjaPi3T
z8W}?2DvUivuU75B%>{T#KscX(&=PhB9G^!kN#r>hHsuz~2tmek6KZVw!cSvh8k`nn
zG_;d(*Dd!aNdZoW*@t<h<uP_Lb)C2})$F(<3dd*??IdJHicSy0D0U+xp#|)L&2ml@
z#-f8z5w-iXyfyK1<Dx+wA%NwSw*>ShXjD4k6nrWYqaa@lMk6qyDmU<_7DG(cShC3t
zASt5a#nc6JG6{^cecFVo1KJpjDH3XysKTcShBg<jBOuX?pMCEz5Ey0;`t%M94C9#_
z85lkwI3gTG_6`m09TXlI5C(!nh12rE{Xp-a5nxbYP+up26YLCdijF;ljHiS^enly0
zlbS3D^+_?_PZ>Zm%PLe5QMFwx84tn(!v_aAfuP_Z=fI$Tp@BjD1BL_yg*$;E0ipf_
zdIyE~?h`mTFnk13p?-nkK>=ax@`2vm7$Lnw!vp;z2KNpHArYY=!C?Vxv}I=t)wmj+
zys0C#G=XLv(98^56`HFHrqfZRjv`=sjtGwDwz(qxGkIJ=zm)AZ(zITKY8BpH6EyPd
zG^rqrWisp3xp`L9jTKI`)-GmQ-RmX+gN-bOFAXNx(;5vD5C|hLw{;xi!H%INff_YC
znFO4q41!h*Ka<6f6eDaIXmORAP~lny?&xHk?RGM2<r+Ibf2r>dY@$E|C9WpqD4|2h
zsVI`Bjq?^fNCsdEhDNjFb=wE)J<Y-gNdY-8GBtq!a~%OBS`2Mk687-n+x(IM)8YVh
z5SgjTMraj;5+=6nR02$3*q$zdc2}c8c@M2fz#xlo3SbmFXAYydF;>%hHB+<DMcmXI
zeT<&{hR|}t6!=wP$H3uF=frueAlYh?Rag~CDw7Gduy>dUXol43Fct2EasoX>JRT#|
zdiJC>4W^FQYfZ@w3W9a41VP8;QVKJEuz+#e(Fy4xOwemK;<z!4&2&teM4(C1cy9Ry
zO%ogw_{9y}@T>*+NYH`OI%Ide=Y^1an*z1KC?XSJ>TYhXH75)Ibh?etLKO)l$#y|e
zr_*e*9rauR2I6t#Pn-aTFvPS9TyW~46Yu>DNbhismSBwbXq>%O^SA?2uI9Q>C~t9r
zZU<(*>{JWd-_G#$6+xR#_uvvRfJ}y!5L-$b8HV^N7}!J~TG66a3uZ%%IX5>gf||J8
z*U*ug+$h2qWjdx=6q83cb&3RP!1aV-%|yhr{uvrPYww6R@kZV#@pxRTWZy_2)yg_r
z=NP3yo`_Gbja)RDv!0?%vt?Z87^7(%9Y@JEQJre{jpYU|*)S1gfE+OK)R@dC3$#&?
zHX3nZ6*wTMFN~{oErUb9_YMgO2<jU++!u-vbqjPlwSil{AY8f!e?zDw8|RV$0O9}T
z3r^fJ3iECPpH`EE8mG{?aa=X$WUA!j30$qD0j^c3Nt$)~atc!<;tUP!Q`78CMT#0z
z@X^k|D--gnT-7J2q$R+iFRATpTrVK7QGRecM}VqzRHkyrM9Xm#9$a-G2-||WS#+L?
zLCat%#)(i=)UyakKqL+@HBABvXP@T!q`VhL&$4<$(<ozQ%P!NsASi-!Q>${^v}A=n
zww|9FgfH5o^OtcYfIiqB#tQS9Pj2xGL=(qo!Z;t#agLvNHMVC=O%9AwBoIlwr!-9_
zrWy<eLmEg$c$4upXIazG<D8Nx1vQho`Zx&}gaQZnfN{;GV|O?NUyndXz=kibea@%x
zgqABqk!v(+lrhB-RQ;qJb;~fbmL0Fi7{jakUoAQ1mOneYNnFt@|4oMesoaBGb0!vc
zDb4uBqeswY4}2;E|HAZ}PrMP^!f@OS1zyS7^Hm82P-9w^9#i2!MJC~tw&uz{u3KWt
z*Xi1HN&a1j|9}6d=K6o*kzs!$jK4VlPwM62T66usm#4?S>;M0W&!3$ChfW^wXLkgB
z@*#BCR6I<@gu97wHk)Bxc3<{52p9m(4>N#eJ(uiC#NsYp2H=>I26~+@2-Z^q@IXl_
z*oz`G+<GGtpq450_~s`u(*%RFE5(H9827KE#u5&qxO44mTr6QajthndvkST6)p}Ur
z^4FZX4D1&g+~37COjp4$j*>22(AK693P*thB1MC~>=D&saTnoz9a4$Zrz?7zC6#|F
zyvFH@O42;@@`dB{MF)I+`i3#%6PT7ey&6+<$KlgBm4s7uKOs1ai@&Nt+yw;dj15;j
z1?4T~hiWqk#`ET*_<xuQ$HZRK4HD?;I8s4F9>b7NyYQ#jIcsqSCZ2>=<-#2&@4{|Y
z6bKKp#Gl`@)*fv)tNS1;aUVRMq;Osn&@CkBLDQ}=+Wc@aOvz67MhTuX4QQgJ#-Un{
z#;lngSxvB;JL2Nv<QSbGHjaY;ptry$h7vrhN1N{8AS|IA3pm=tNuDk?H8kCD#9n~H
z?w>>1T->KFc8l{hN0C3Z&DohB`crQLXJ>S?O5LZpoBkPs(R4CNDgAoz-^J><uX@&f
z^A2z}ok&^pPAX9Q&`J|~*ej$=Laxg+x&#G>2l#eDr`552I^hxSB*os}VC+Mq8$9BK
zcQM2{0fGS<lovBtB3sZW0}Y`?>sMe#^(p9`jr+O-L!iFMVHF`*1utRAKwB;Ul!{=O
z7aRB!o7q$U%r=*@I;{{K!-sTJa55m8-l<dcpA`7tE37cKlV*N0BK*bdW-B9BXu{D;
zk^=eWElB|my>&Xi(r^^_rUd(&jnDA!a%nsaS)>*R457iH0J#kw+?7KT<6UP;_z<RN
zNLX_!kmrMskxBq_21c&~L_G2rFsTk?*fR&&HZgmZ6WTq(CfX)25Gtt`7^vAw8o`DW
z0v*su;Tjw$FdC=X$!Fs%AAfS6skAj+NrY?BHnVutiqz=TxNxG+h>8RX0d2&saWhx#
zi@LxNBmP{(t|<ugoN;LW3X|G5p8%c#VYq_SDrsNf?&a!=)S(NKy)U##<3W)~a>h+G
zQWl)MB!%rU%E=_$T;XXapkw`=5=Te&LW=Pef@b?!494K`dNp)dumCq5<SA$4g9)C=
zlPdK{o;B~mfbtOxK<nk)6>YpR!6>I-)I1^r*fi)7Jh*RcXu#lr-eCc;LA{3r^mI0j
z#WABFzv+v=+yaxMS;kr$$&HtJpdC{nDgmePzdo8+c-2Vl>nB_yLi&gH?i&!xUIU;}
zI<nT<7ZUTQK8dFv{NMgzy&Wf=KZ$Oic5DAbc*n)X0U%~mL^e5OX+W<1lbO27=SzCX
zsh)xeh<Yd}j-fE3#^V_v#}f#x(sY(C1CmI!UW3zS*EkBM?oH;VF^?%V%s`i<01}C$
z_SfiJE-IMv&hS6m^3SS2jGf#ik>*$Nus0XT4ZN#l>F&qQ;313RE{PQ0dSm8-q5ov>
zhcq2n%VFjO29snW;MTnIcf)WK$)@&VlrV;wlFh$1&p*E%#!<p2f^4D<y<zy^FqjIe
zaE48P1!sP1`5T$|oq_E6%^-oK8K~Y)e7Z~HfJr9Nt%S5OlSQL(7Z!egniwqxb)<@B
zH?OfL4S(WEjsmk2f&b!BNFE*K8sld#{1qL^t405{|HJ^oe{&fiy2H&ch*aVsF#1KK
z3wi#oJSdz58ceH4DTXO;2p=5g1mX#bW;j8*P&h*oI7;;raRcZCxZAlE=vZouFm2nx
zluF0~2b^|9!8Dnm69kt%p<F_1Iuky8a2TM`g=D<q8Zq=0*D_`9HSPrlh9&`_@NZ{l
zh?$=bV-j2#(uGme68Hshc22|%W?v`b29^ihvFmIb5{=xMZJj&STpOswY1EA6wU;)o
zwiOy1ZyFqFd<KLxn!7$KPH<X#9DBRA_`lAH%<eej@4SLa=~O2g{2d7_@07;3>P(bO
zW7aj4k#5stL-aISIcM6z8gG1@p!v~j0!8-WYg}aa>1)3wN>YOnTJ8pKfF?4{?u}<Z
z=5;-zrkybby50^FW&h_yK{1&*U(@64O?foCzFLk8OoioTEtRcFC%SIVL?tb_d9Q}z
z3KksJV9tNfAU=jg&@kOY`%-Cfot>q+zZLeI{{P-Wui5`q5H4J_bpG3}0{^S~pFF&4
z_J6%Rz5nh1{v)6EU@*EWPcZj}F3n>|fNN>Cdc_#v9|$PDmIiV?p;pqyO+>;I{A(4j
z0{xNH^rm%RAZWa~5QLNH6f3k<j#L9@XA0NTIH!`p8HDr>3yTa6?HdLHLPLW?ec8E0
z=pXo%yPTh=&~jbA(Zt=2!DlUk_E;SkD%NgY`5FiMe`ac{rv0l)73nfsK{>;JNOW4&
z-vHxJ?cdGK%iYVnhW&ebdVBtB|Nq2iYDiFj@pn+2#eoC*hSsb1^$+lWR-$_K>dmxF
zIa{w@J!{>75p=zJlJ@X_7AdQHCDp5!Q7^D>@9-3hN7p7Vi;2kV^`tDegN4OG(Xj}b
zi=ADE2`vX&O&GPhYR$g-#K4~$IDj9fDC5s`%KJ}gYVof-0v8NklT}E@yqVTAbj{+l
zqS92qs)G*~o>;u)g32%P@v9=A)Q{t1-}Vw&TG;|wMm-C`KN>fG{jsq&_IVvYS&eg?
zw8g59?>k7qq(O^^e^bXh2Xq(ApGE)3JW&6DZfcW<8MS}QXj$}KEdaJ)c5X&X$ryQ?
z+Q4mX3rBoa7a=Wd3p)mF{HhKj<=qnNfGoQqlII?ns;>=PCbLnA>wr8UT4s~g?T>Hk
zV9Av7jkU?P5KV0`rMz+H3l??!CSB}V2V^kDLK=PJfNvcv0h6|T{jV_o6~@29_*WSJ
z3gcg4{40!qh4HU2{uRc*!uVGh{|e*(!@>YjqQ^@#@4icZ++*aHl}Y6*^I`{=4r^Au
zDCGH@!--{YALN(07@o}wm^Ja^(gmr9{oN-|{`h2p7xVh{^q?1I8SA%5+P+yrR(mI$
z^EsUM^n-i$oAvw2>W`7l{l0rUHucT(*q1$t#DL#aud<J>*i%`ybW)oYSKeMIyxeD)
zvyrV6MDkp#&evvJLwrIrudK<7dT_zHtXHoC!<Uh-pZ8BJwR(DC(Db(7E{Hsm-$#-(
z<Yn>RR`c<v#f9r#tiIYw9y%Xfw9|9Olfv`)4cm)v#_S@C-uid-k89EA(15jNzgzQ^
zA9Dtix>niTTZY)sG;sOqRX*b;XzuUbX{Uc%vTH}#h^GaSjY>|=c^m8VYVC*<=Nhkn
zvw8iNk1p#MrN3;lg|r@e?VAmwHe7vO{wQWnpP=O5c5WZAWko9!Zx4&7l+SGTG?`V%
z_{@T=iIqQR&)YVAji%l6%WtbnqhFP*y?ZtN@Z8@1hZZjiNoW?e<wMuvmeTV4!p@fd
zeOmN%?KbA&k&f@~Jo>Hd%+=F#?@V0bWi*Kw4W^Wz>D9kW2l&T;`U^{17bXuV9CE7q
zkMiIg7sK1~5f>Y7s5Yoq3}1h!_2#14DU-V2_%P-&y~^u@{&eYx@*?Kv?4ZI<ygJ<5
zo6$1+U3_V8^!GGp+r~S7njBet#i#tNzG6Z{Y+}@+7|$o~!#jpd^Z9w->UpYCU&B7~
z?zNZI>mxgBHw{nKU2ar7-Qm^OEB$yu_Ov{pd-F^GRR~=t>j|ecg)1WF?1<RA<Js!9
zcdj;n5|*@b%Hd-7F0RTGvkK2DVn@9=Qg$)F^%LL7upOnV>^5(mx_%yS&oeSwN?Jv3
zYK#UOZ#}Nrt|3=OJ}o^~=I43$LitUX6A4>?eN<}oVneqN+a14(jedRoh`60oY4?)O
zcdECgy^iIP>MN4xPU%z<0@Yx-hv?-defgSdJB=Z|I<MSub>30!9`C~<|HIX{j{5AF
z6x_Gy($E-M>A&LCh=niLwJ<WDvYt|YtYZ!u^~fxl=Im0#?zPqWlZ%Q^<k7=l*7pgT
zY2)mZX%V5i=A*AnoZc?y%8S#}u1x&tvG~p9J~JlpCU||BNZzeMCi;_!0^>?G)l2V>
zAMxSs%`K!j*<z4n;c4oGXvdJfkG35Qo{{sWf9|&E^5cDWWUccy8t|`!Wj0xxt%rV#
z{s>*Z>eL_iD;Ex3)U*0p!DQ_(DPvAtp8ZEwK-{U{=(Y<yZ~PdMbF##5Q}*qUE;||r
zG~!2D+(%}UEC%^dAu<!{k6!d@k}7)d?i&Z+#YeZ<>pFaXWx!g?nO$`sCdBUj{d#rf
z%kz~-Vv6H_N@|B+=U98k@_=r^BDeZY;2%GTcDLRhe0Aj0V=MdTwEj5#=Am}!1As=9
zHEgM&c<YMsBi}q*nYX1tVQ6x-hsO}!C!OkUA&sthzh@Erd$Y^$dFk}a`NgA#SMKvX
z-)m4*!OFIxYmM(kju|`UR%z_Z2RHJzEb6{+bH4sN-a~>&kvung$lCn~qZaiG{3;56
zDqXs0eDSG2?&`bVsg#RGG`bgSIFxoar&{;2BJ0Vbk~62T9vo75+~^Yj)5Ny0qiO?=
zTz1yJ%r$9qc0^24IoY&%H)mr9#|Irknr2qdE6W>y$g|xhL)x3_H=Eix-@oD(;m?sV
zrJu~E#mVs24i+NIl})Y6jyLc=F;;c3fp_qO*ty;O+gomy*gol4b^S#7_}Gt6=I_!E
zebUTkA;*FcFAHh(<$L<Ua4>7@rhA<x9PXdK>&cSI@!vLVCptDZVP(4LsP%+*c6+zK
zo?6-W`kGghCT#D2vN12oan4}UyM+bq5IaglVoiV5qn1@?3MNmQ;p4sYQlI0Nl%uV-
zLks!C;tTmZ9v@kwuCNLZ=0nsU87(CT=dAKTKH-ObMXRFvYg2l4uqto$^Uf3fZKlbl
z*3WJ;zWm{!rAv3Du2*eJ!W!P{$eV@MYD)R8%-gGx#Wv1-RrKoiyB2$P-#FN)i9|A{
z&x-D%r&bdxm|kv)eW&b9ZgXw^e>AbJ_?HJam{RWMmo}}lEJGG85^G+D?f5Aj+y5bJ
zmT%{!4hIHU|JwWd{G(aW$~^TCZ(h0Il8+h7e-p`bS5l*Apg3;Z?abJe8y9|_RlN7;
z^X6x45C3LIWj1P3{q93VPImX)9+{e$IXuk84W^V+J@-%QpHVOKk@$OccAMR|&rVjw
zj1LT0cI3x~g`H>j$;8gL*pv7E&Ae?58cZyD^h6aN#PP~ubw<nVxmVuW!;!)oJR+~g
z?0o9d@I=cC$+rl{8ExnG&DbXuMb7+izap#0PNr<J?(Cs3vV2r;UQLF}Y+5|M)!NrW
zWO=4TNXgc_&&A{Ss;-<;WLJKeS1)s;l}+0Zg;_29+{mh}uZp&NJdQcnhnLgzjFu8-
z_Z8oYEUgYWhLnwrjCp?fNB7C^9z_jX*<9ba+v<I@rM=P>_uV%%bec-<h(E`Z+{AiH
zc~FO&cae;i%M$w^pV8)gaPiJ-VJ(6dB&1kmJ`&rs8-F@>SpMEs>4SbqZ8D?@r&*iZ
zgGtAWqSwu>XCb=W;+_NJbmiT_LDSo|9sV-!QKtr7I?I;t79|I_Zv5m;%5OWp-tCsQ
z=XLT$w9Mur-Ms<@tLz3Fdu@HT2`~P(&AT~IM&+gYS%`KvvI_P~ANOiV*p8pHPZA!y
zEiLTIN9vu8YzuG4cM(IcNi_W}(We_#_|1;Ndp*2;e#o>1r&2SIuP=hmuKD97&3f7`
zI^>tNkT>R|R#VFVGv<633z6lG=2lr3%89A@3sNIL9&;Z%{$O@}k>#^4y4#nQRU2-1
z-91w~JvEDX!Fe+$kvw;J{FQFjwjkuY%*QVml|{V?&D~m*I65xc(yD`9W#z_)@sC<w
zyl{EsLce*Vcz}2#+roJhW7fjJut?@#a{7VuvTN>|gvJ-|Ug;nMjWg{OMQN&o4eU-9
zmq^Z}@UMMrYFjwM3c0|pnc~UA^0vR8Y7wCdXxyY_Cks(W+g$R{`8hixwk2(SF}mv3
zNnV(9t*4ZSdf6SblV!;ISr*)WdSFxgiltt^TDG{g3&=oF=KfXVZI}MOXQwu%->d1z
zI@IOt6_y262dk6ce1zK8jkZ|TNw)lj$nI&o*ypqEygH;v>R&yO)4C(`Gg?Zbp06G$
zvb35zWO?3}v<pSn4NrbQ>TOq@Ut=HxRyN=1i%O0!E4z06kM($W+k3xo*#$I}tc=p2
zjCz^x8+@N|rK<cvS*+)ialKI{CONfZW${^B8@r1Ps!rb9ZvYGLR*=jlYqz5(fcaT)
z+=mtOK5n_bw|bsx?uUXX3rj28ZvCJ~m|5~HdDa+*Qc3KfTA6v~32UaQZ$VXX#e($P
z(iVA;l+3NxHm#oD?6qm!&h13-omX4MToz>C)V467+x<y{p_z!k*K~jOW>T+)8}<TC
z<dp|@vW$I!mTw~#S3lYlo7406TN6^f^NlfBCbP-<AuvQ_A+ihwzduhnx#)O$>WK4~
zJMTR8vMYQb`g+m2A3Kv9Mn6;!*{_YT<|U}8e?WJ5+UxEXB1?Ib;d{qdhtb-{-Jflp
z8ynMgRy_+*Ow(NIQE;yj?+(Acu<O#RyN3pG5MeFx%sR9!3|NgFn)<3L7LKdhY8SI-
z<4ZS@rIm6}-1Xlo@^{}j_~XfUbFTa}I*SjnLoB4x-uw3~Mpm3qp<a}$zx7iSm!lV&
zZ5wTE3r>9ngWHD>|LF`J^oJ!o8gVMRpoMKAo-P){f5)^)7)`d^S^ndO!yh6WO7Ogi
zaI|K*zpgBP{=DMaxD?IB<X=Vw@{V#>M$7Dbzkb(2mLdDD{)3U<rsuwG7&)VQXj0C~
z2&fXJ4SMu^x2D;)24`~@4Qs;UX`7kRQu0HfS6^tkmoDZ$gbw33-wjn+IV0KZ^2vhq
z+k38s-R#+|r5_hNzqXJ@w>qT{%&3=n#_EygYO5zx&gDOwF)rGxb$yuDcGVrfHE6B2
z^|hh*98UHe;bLA)WqvPyL|l4$<wj>q-N8Kh#qTUcJDaxbS-o;<RM!b(e0ntht}*L;
zmu0k+q|qzwp=axJeVN78o1)z4N%g-D$dFN@_MM`?@7e0&h<lF?etRj3cVcU8Z3~x(
zj^tR|g4xY7uZc@yW8SCaPdhtj_u%tx79z`M&bqU|rn@JFx7h2X#EWx+M0`Oe&sCqy
zf|AjF58oR#;>9oZBxUzAPB#J}ZkbV?8~&1)_-xFp?dg5_RDMZD%k1Rz(jgi3GB=AK
zkyk$~4Bq$C`=FzeB7NTsSr1Y2;Jk7Bm$t&M9e%i&GwekfEhVJ;=pL3<eeFXoQumfL
zbBP{li0_egpdYlDGY#I4y^_<sVo95$KOb~uY0CVy{sCQJgG5+A1vF1kldm5x^#0~2
z-?cBYR*i+CUM#9A&W(RlT|c07QQ}N4<^{`aT9hqrEwvCWXqNC$z3I~H@|;79Ti?Zh
zAKC=SmhTZYEZ(IpToJLrZ;}ItoI`#_%k1~`auM`gFu#?Kd3Xdn-(qf6<M0YNX7uuk
zBWGcfSbAv5+N)$LpA23v5y^AOMX#-4fbHm-cy~hU&Z8Q?S)Ehf1jvA&sC@6@icRD0
zCzSlmv~dpSvbSGH$!xOTI)(xZQKJSMeR5wcy&t*e?y)eG<Wz2hVf9;YaYBW9`fFGG
z9_MhXEDz|eJ%2VD`o(^6!G$yL-Yt9g^5D{5=vUwR*{wfLZ`FPMAUfex1FoRaTS%iX
zs6swiTHPA5e8r}o<1RXmyXm;3#p3lSpCA#(hh2~yE3r7rg^5gggDK_HoY%t&>qR(p
zzc230nw(<$;7G-|ca1Lw!(r1iRd-5vK2I1D+)z~7pYx-!GMlWAK3;u9mTq>gWR*uT
zHsGV@b}`f`Dl@&=+WbFWEZ8;Qe?hkw4*%hJ{zpd3>;u<#wU=e=`$M#-VNP1Yoys|}
z7vG?qOF7{Bv!Qq2Kff=2eE7-J4@)@NM#*eiRK0KQXCcCy{YGv|O}l?KEBwXLQ`=UD
zqH=4x$UFE!{<x3tH@8(WTo(1~Ael{8_L~r~h3IE1rn&E7&6{_#rM;fq*tR$e7ALZP
z^$Qd^Ro+i#-ntk63(M|(N9!NZb*_3E1>-_&+{w(<$%FHHthzYo7z$`l#L>g_ugWgu
zT`Rpj?0x%b%{hG?Y(1si%`;|NM;W*&n!GSEcGQajWk0XgS2Zqrh?)%#q3!O8D?Tx!
z-Ql@hM*L!+%;sX(o@6IfPF(3;(qH=;T;1CJVb;$NI>S**t$KLg-F{76vODEbr5k6p
zDv>;Q@sQujZNcn*nXBL3DfL(vOG--iASX<<*AcfDj34n~?4bVice93%w&&`OrnZG0
z*KN><ELXO$D(jPm?f<ZIC*xs@<S~EWwwo^R<#!L<n>D8%t8~#Kd2a5Vk_2m8hXu0o
z<9%MvFaCN~HTH+((pIF)Z<?e$n%=s~>xt9lKLY!6nrf(jKzIA)#qJiOH%%{%Ro+ZH
zn^RPFdu1cU>(lkW9+u{Ewa3;irxp~qUpbVk4$Ew93)8+TYzL!5V&;XJ^Q$8BuH-+P
zu`+foF&k0jq`P>ot5=&*XCJPb%{7@a!y8N~5B2k#)*d>s>95kqTzegR>vfmYrx1sH
zklyWh)^V2h$b}WL+t@@NdOPhHgVaJ~In(9(P@AJMS)&)!vk(onj_y^SHK^*OPxbyo
z!JIs2z=EM?=CRH)P+xR2vATSy&Cr+*t(_n%o2L+`3tw)U9HyHRCgOs_U<+xq)N@-v
zhD<Gb_g%8z+k@i3*crq!HuS$f{|miV+pbAT=J^x^K(@F30o|LWv8&q4fMaGs)<o%|
zUah)4c-LrDtM8!4wwgQm`qRtak2O~poZCNmH^*P1{sG<Umls-Fh<4guy7v2r{R=M6
zfArm8#D3c?`}VD`h)}=(J>=ergLdZt`^q_yJomS?W!J53?`6w!#p|!WF2^HOhsX6!
zc!cmCoB1w2I&Ur3Ke=JlC{8VZ9VoNOT7N&p#zM5N`K6)xw@dFw&Z|B%Xcnt~Ruj70
z&A9fASU+p-wDzoa1$6<Fx;xH_ZH&4OOC}Z-U&!}f{=n&CCd>LgqFHHU6q>W64y!mN
zo-UH-Iu$KkXl?7T4i<vr{T@f&&bxP}JL2c-k#Uvx+67(qTL0_eK1(=FIcRHJ*vx-u
zYfGzJk#Udi<WEdhj8D6LvmrZRM-j}uV~+2C-!}878LVpxk=bMw26}c7Sx&Rp{ciZ!
zWD6N|blZG4*3fs<pET2te3gAPz~=$Mbxj;HGg@X_9)bC7swno+;%>?lv+~pS-|Wl+
z(TMV+UWfQcrM;TDtqYsjJ++=veq#~czLV_wudp7D9r-%sisX-Ttj7<scis5*?)0jn
zp7)=gbm4UCS%WF%$9jF!1;vTuRmJ&9?<aQNS@g6k>%2#1de859_RQ(UOINKQ$Y*kv
z2Xu!sUU#(+{Vd*^v~|yx8x!|7OAAdMv)UECq#KyIsPoI5by4l^|8bRVL&_f1KcHK;
z%)WkOFniCwS8q@57_#@#+>2hLSdpD^ab5mkqjXWP!0PMkzTs+J7}K<K3}0D@e44b3
zeLm~>`l6tZ_&hN?;Klk&7o@7v5@U+Ky*!DfZ?gnUI{wyX{jz$QOB+mBEA7$iV`+Bm
znUs!f<ex1|(H0)NGSRQs;IW-KOHo@$qyGrl)*luX7urU9je8%^YS+ThE}4|IO)FY^
zY50?+Ubj{(DD<a399wy~V0=Z+*q1lAkrO|5@vg?7ZC_tmHlxkWVdo@0?&J@deDP7@
zRsG731#LFYG<=90zhqb1iAYWQ=2x>~Up|Xio8vUr<D6~vZpDM!D>^JwIA8qFDRPpf
zWZk{zrx$wrHdxZir(4%Ktg66__qnxK50T|w=MV=beb<vE>CM)v?)eT}XZau7mOb81
zZr|yBRb=^<MT5pS5#>yc>R)utucH!+dT?Rlqm6&$m6t??TuBct*{Vt|+#d4$2S4{d
zDc)4!Hy9W{{MkA3PN}~5MOXik7n5%hf%k|xvPqUtmW?@Cedrodl5*bPyg~q@Gk-k!
zuH6Dpd;g0;13R7?l$m%qHl=LFhS=e{kIRPb?J@f7VLLo(d;&h@(#p5YiSqehmCs2Y
zRCUtY=UV5)vh>8uTZ)U`>0ghFeZ4%^#gMl|Hq0`+<%d<5cX#Ta_H|q(tIPF8^4z9_
ze`suF>o9L$fuH;2nSL%^vj#utaLPGz!{H?#_sziaW1rnpJuGWb)-Wb5?r6_;>Guov
zu3ndC*MWJS6x@2-{hW%8DR$!~J$dE$<JYsQd+(^s`$aa)vUK>{!HN9`wb*XsV#iH?
zG_o!1Sg?Mm$ns35Q$z1rwX6T^+SZNH4(p%a5=G8>m(xE#*Dg9}*44`D#W7){XQ~tK
zCj^!B%X&GspnWIr??-y-OYZ4f>?teS{c!%#tXDZbZr*x+V~3@io$lc+i>O)Z6K|WZ
zPiJjssD(7TU+199mR5}a^*H+RkM21q51jwm-g;aV=<%@fsLzhQTW%b*_FOi(Vov;x
zbj`I(J-0kRQ;;=rN&m!xyLbA$ZPinsQt@I#!O53<{bJMmfDfXtHthA*y!+*mdR&)|
zh@3Z#YzuFzBtK24mw8j{RF;2z{g}IJKdu}w(Q<ENtJulobayH%A0MgQYPq6hjQ4}^
z53b{$dt1`uqpDtQdH!TCcH`iDX{L?!ghd^;CvRUn`o~Zk)>iT|T1u+I)ESmHnpw4r
zdGqdVvR@-l|BDmG%=cv;1utDlmwdBfRD<N;hQaS=Bu_ti@JQj3I~UqS_l$qux%}vs
z@<z5<5lh<KUGMc^qt%49))&1VpFDU-Wy{LCHB9tR%;^H7z`oPl+uL0^a%|#k-&KvR
zio4oOckhuy?_b)g+<NJ?n37S;>@q96T{)?Lcu4c+UE=h1`I=|=&`tD@C#T6?XJz2;
z?&1ksLc6dyZ_Q{aIeT_(3XG_~KdpRFe$(aHv5vESX&2j`|1sP>w|{)}tLWUak43AZ
zX629m;33Ma9I^BEyStP7U!HXLk4c?N?xf#t9XAY`WRspf+V<?zcK@)1DXcF#A(H31
z1!p|5wsqJgdpW;YvZ;rA*A~4VoY)|HeI#ni$bQ<_aW6AFZffHk5PSE#6Pf!m*Q9Mp
z3bK0hNE7z;9lgJ6wvBZU_o|{v+gJHq+HAx2!G9egv&p)1d1z}3(X}R4*x^Cb+ZLVj
zoE1uU(%rtatY@!}rKcD5%J$j3A~o^ihE**R5;ioPH8zF3T~W~Hc0vC+)OMm}&@jt>
zgL8A&XwzOSYG034yX6@zCB37EGyx$4Gq0@iD^DFiV&}P`Dy`+Dh>!1+8?;-W{YKsY
z!~9T5O4{w=%Xj9Dd0Kk8U3PWhSMHNu=DgQxy_$b@bb>4;djQ-(Bfr4wx8r8+aPeou
z>g{H>h4U`PR#;j!?H`9fF3`=nKRCMF!R;H-kNuWBf3div@T}{#dz-qo{(V@G)2XYc
zx9W;d?8xdh{`s%fK9`bg?7E7|hvq+CqUk*9mvpWGc@ZMBx#-`GY!5?^o%nvNq2I7<
z&AA0bGb{b}r>>2Cd3vGuur|Z54!t*^_-$lh57D+Eshu^OQn3AB<$p(O`|W6ts|H+O
zO87VQs+gsE=N8KP^zSUB(Zu4HeKKVBBF&ObInL=l{3AUFo?I+@U3CB9pruRm5<?ZK
z{`S*{ud*E5;rH@W>njhOpR9_x+s@8yN956v{m={ierD{}K6z8wK-_I_M$0F!CFuh*
zWN+&i<ew>X|8UGErr5#LUxX29n_oRXIr-w6@%|y$Es-5q`iJ7`pa$*44ey>j)oIPS
zjaD|l`F3^s{m2ft!p?}30ZnZSn>7jxv$UEU6!&;P9yzOfudZ3r2PY=%+c&gqd{XJP
z@<HP#M}0e2>-cc0>}N~g2208%3t;^=X=)3Ve0rF2l4bSgw=WB_CfYkkoMdD2Z}ku8
zh6d;FZ*t_feFrwR_w#f0zeqZ|c;4DcI;F)Q-Ro1{y{OeS`?*7|x6G`poL%hw{>}ac
z7bm5Dw`SZ|;iHCGrgyK%uG}|UF>GNz*I&QZ%(hS;dE%k9t;1T`>)ie+^0;A=k>?h~
zXJY4Dysvon(YiRQve7I`d**G>@a5UJPfb`@+-`yA%GiVViPE;`=UZo%thKpPmfOAD
zbAy4^Oxi*kUDWwfrPZy#<?Hgwr(WKnyfHH1=XK3;(+gZa?s+y(|4r6i;;d_P(b}fn
z&W!CgZszOLF520LS0`1>om!Cn{kyZC-^^c1<r%oTS7&b_y*gF-esR4_#`;m>)wGgZ
z$KA%vTY03Zc)|<kt0hO;w>YycV#Av6MK3?P%-Vgr{jjjywa5AfW(`~FV~E0in&<Rn
zlZm#L2XuyC0u*3&YG&o-)s-%l3vzo7Rj#)z*lb9BL-%|)|6R-ki&wJi%M8&63%6uH
z?EY+PxMuq_XeTWPtT=V~$BB2HS?@+!NTY8x*jH(-l*JvI`M@GVh2PlR_h-jOR>eKi
z@YAcx*EJ}Q|Do0J8v{Fp41@N$Y}5FPJAog<Hh<{SzN;v>Xy>*+@>Xn|9(k7?FI6PZ
zeROicH0!<{E0133_4e0(!z4$KjZ&qgKXIok7H^~bB=#Q^zG&+H#tzf=ttm__9r5%=
z#LXg?ciT5+Y_yv2B8j|Nw9={9Ppp~@usopqdGJ=O@sXvnDAmJ?<~`@m8`MZYKN9rF
z&l!ETe|e`Dm!s}==``Cdv$EBhfYkhyG37sIMJ$OaeLS*afvwff$A=0xgl(TTk2T>l
zUBRS56<2?oAv+<`J5PSHC|%zvTh??$zf3zt`uhu;RWTNa_T;#}x@Ebr`@(|4h>8X2
zc&i;_VpM&=)o<d;mo7N!9N>()?wLKTr<6bQSahfl=q%bjQ`=fveq(TSs>5a{QCiox
zJ$k-dv!MH-$+HIEQJ!x7b!O8B=f1yO`RdtS{|7PiAIGd+V0$le%-abIi^KLzo7ay;
z%^pk|bbRn{Ki134vAob`q?CDNSdjZ5M0vkH^n-J@kr%xlZ_Bd<A@WS!@q_nE4)^q+
zQ|^0@^NSC-zREKvD`mt3ww0p{lG$YKbPRLN?9ssKlDi`AeAQ+uZ$;66tS201dPv{R
zH|$<J_8GBs$9To@DYDo5o-K>qOWnS-Y`(hT@>Mq06V`?&H}!SfJbxbBB|HYeq^@7>
zl33ez%a-X+s>-9BTkX0OGTPd*pnv<q`X850YI8WoJ$*oiY^UXw?j?m`Q``L_-DvsF
zB1Spr`e_%fdNk>9@z^;Rwn4Wuqow3_lV5v?{;--rZdN{Y^WPTO;Hvk{2bJP($>XQv
zE#ek0Xm%-d$CIi-OTQ1%4?FYD^08{b^_h-8e(QBHK51xIw)ND(0ZbZX8+q2!iU|PY
zQg6=-n1$ba&}ZFL@r3DbE;jGgNNZg-@8C^OORHb|F5kQD$#e1ewmqv0`c^gku6Q;q
z*sqSt_v!dBjGf~Gej<79ixU$ES{-mWb+z>Mfk%tnnV1#lZdqo3mz<vRzE8~Y6)ksI
zDmu+>kg2OWv~%~`9&U+!sqSKD)qv~MPWKu)Vz)z!K_y((c-r!SE@0I;Tj-LyU8SyP
zuZvXPo7QKYwe?jWedRgLs*>&{yLM05v$S3&BUX3ceE;R@;CE|A_jz~1#xs?;y}&(r
zM)2J(5zW||YI;V?Y^O)Q9c9;#r~S0M-{9PC{udh$bl$bEW3x2q1S7s_Ueeae_Q+~k
z%<=uYvSK?$k@MS9{~ud5z87^`b>dDiwX;Axjg4P2na#zoJV-m)@*Se`bm_(Lk52xP
zjRrbr%U;ho5p{g&%lBtXwF63nK?9L<o0F@&(#BnT9osb7d*wE@^|)P6mN;!3=GoYM
z*-xgz((C(?w+kCx-Zid^d|Uaj-tDrh(_YUwA>B|AYi)aEhb&hU{hE@${(5Yqs?H0K
z&EL0d*xtnz0a}JlRJw}fx!Dc|v4tq0$?(17_b(rMSNZT*?`;8%a>rhM)82dBsdJ?v
zTMzzfC$e;N_<h{R_nqU*Lg(g9>*v<F^6h`tHkepsBZ=zBn&e9BDdp4pt+NwZ207X;
zU4D1wwFSFJKS<l}9rURCiaT_0T({d_->7eSqY>1v%ZB_X-JfkOt-!X<cFt_k{A$_I
zds9^FT0624w4cl-*=9<9V=#N}zFV4z4_$(aFP#5jbgHASWNv2cqs8~OGz`>)U+Fk|
zOlGC*yzQ|GYq!0iB5yvv+&E=)k!DjH=T@<Mj<NC6uc>X}OWUFnE8BbXW#`w-8u!31
zDl0H=<EvMWKgL%qyt*mi#z9M~1CGD1N<ThmdfQhO9(h+E#y@=Au;}|IZR?NGR`eTU
zT<es1pnlJh&--ncGz>3ko!Nbj&B85-18-~?_>HC2twC|gh1(-r^eWANHly^>_&whK
zqU7M#p=D#c#csHiz?SXn>L1Xp^?D{2S&nUASv0MM8xyhoT&dNBdXlTvIo=x%rdr!h
ziH;+07U^1ite#i)_~hOrsax!I$8QaSIm@_{t$RZD9OwilP1hXyDNA<WQXJd7bmS}b
zFv-{FE<=n)^(3pdp4sH=*9go`%(Oj}x947?su>SYYJIv^<fRw5RCzo)@{;oEh5}+`
zJCQv1<MqlGBFkwVZJ!)#*You3dB^MNUkwL6>g(^!e0p%C*A+Wi#=eW9l84^Cx>r1D
zTd`!1v@0rnTrb8J@9xFMiE$04lt1&!@7I5M50TxEsrYHdh@JI9RK+ld9M|XM-8K_v
zK67%*YYc2B@0;Ymq3wqola@YSv!`oUk^kZ94n4fQXExK!MV+AC87(ERn#H}hoF+Ln
z;@<mf1(P>Z4|0myTG_OspBxca?9gv-p7u0hc0CKx;bu@{{m$k*+FyMvYO_6<+WpC~
zDu0yRFUx2t8BdSyYkADkwrA^?@873xq0ZzKJrUb{|MElS)sjQ6CQ%Z%v?joIgDm%(
z+nPBp51-6D{&0&um^xj5+)E3&+!0Kgp1Aj?`LdOw$4egPFG-FZ7F2cqvU6tjJk^A6
zwCA>cKajB|phN83!pht4m#y3EuMXK5mFntJG)*?(#`d<CQ=WNV-@&@Lvm$x!;NWF9
ztbZK<#sxfG=d%O9-8Xj0wZ<u9iyn8Mb>Y{9ZH^P`W#-mj*nMI3t~)0)Bg!6L$UZUM
z-40Bho_f=3tXaFdqiw?D1cUt5$pzi=Bb7TWpZwyM@TU4r$Kic;K^K@@|68w$@%pDX
z)4IN85_jA=c)!K$1N!8s%CT%`Bcr9nf6nS~kz=!j3Uw+~wCR4YO_A6R%j|X4mv3q2
zmA{L1j7d6XFU#21tG?I8O{pmtUS7MBZy58oeupvJNi@cWjFyrd_rz$+fgNn0d{cGe
zYWK6_`{Wd4H<(aiNZa#j)BKrt8gH_@27Sy$QG-_}a*5FV?23DP+&+l>4=;_RmHs(d
zlh}@^Y?tK$-Tj3P&)XiEFH@~}zVl7huOGulO^j*r`dY!{f~q~6w|yHiD5G8`ux)$Z
zZ}i#2KlcCl`@_^8IfHj*bSPRggl*~C7TzX<ewreiYT4)Os)8TB2~GbxXHRy6t3B~k
z>%W>lXzN(UKcilz(z4*IB_As$jcFhJ@NH>v*RxJw>Y#Z4)2Jq#J49v^={2@ZlOtPY
zx%j2y)7u6<pSt_XE{X2oy>>rcejj)w!ac83v*3(+nK|_@w24ly+G-b5CLW6~tlwcw
ztc!X)vW4%hrj%2zQzyxmpA$`VX^`WbZhvy^qtOpn%2Eohx0~N1qHJvLxx@kEVK^QR
z-qS<%CsqE37MC3Sup(>qi0jAx=ylD&Bo++n$L<$g-c%&d4Rv_<qpZlXH2Uo#k7XM-
zY?>~r8k|oRu88o7T09BTMT*buxRAH^#r;8D-ZEnj-^156%T0Pe@m=fW@ig^e0h^c%
zmDyw+91-T8Ns0I5y?=9V>8h?9r;Gd#y-(?L@@{$9Pq(83-*%E^$kthUwHei<x_rg-
z)B!GoHtqYV$-A~%pOEzttJ<-N`IL;7l19URYJ6nFzIPi&4S9TdXTdH9+ocmnUZh-e
z2A#`=xps7BWy6Mw9pijcUNqd5yWz!VMm%AybsJ50>Z;=_e|8*e3u$zxHGw}{hT2um
z5|1BvH*n|rT@J4Df`fyqP7XOJ54D5|ke%*#!^bVp)2|&&Ta&dq42=8zkDaU5eSf_F
zGL}JBB6+So82y9HMszc=`gHOw;(m|zk>?%jzl}_<Dm*_v;c>!LY}0q`Eku?<5?8Wn
zD|WucVygIl{dLV!lozIKFS;<Ncyk#WSQ+t@@-sdz>+NStGDmdpoSUy7ozpL9#HA1J
z*_TJ<`^5bJDEscHCbwp96N5rvN$5cZB1(~JK#J5@5ETWLCJ;b_2vVbf^b$*mNI4cj
zrAZT!Dm8R86afV((p%`g_xi2piJp7qp7(q&|LI!nXJ$|N&CH(JI~tc{fUF=1qwP-V
zsEKm0R2*bEmM!UWXDTA%No|G%e*`TSM$(h0ZZSj3uo%`Gh0YIF#B{B+$~Ydd67XDc
zGwAa{IFi*PnHx}8zC`-gk7|6{r<W6In<C$#lHwj8P*2C#?k`^g^EF=|qy*3WJ2><%
z#|;PksJX61!m1e7R*2Q*er-zj75B#cj3zaoJp>(kM|K4jqwQ{=kC~cTl8f^v84L3k
z<PvY3_oJ0(#+(R>)0=8WhBBe_c)Ko+SnpRu^Y+<1`lxU1uWV!cjMC3v_Sr+=g-?9w
zxnGwRUD*}8cB`81i*%>E{CGDlN3K4CB8vLvt1#R?4aB;niioJWm-d66MyO7S;hPS&
zoFT6dG9XZY@e}Z|pJp&K8lrU@OI|;<u1g?P>R!hL$FbAOu<H<X=SA0z7no$|{<lkT
zKJRPQS_Q$*{-tRZ;fiMJPRZ8IWCjH4DvU6L2`fl|pSm+WmNv@uA$2vGzA=q~W;=yG
zNC{UnWyIIFn6pNkDKGcOZHF5@>0x*A+A4Aq_sz&@ZUQi)iQ#cj`4cUDSJ`?wX7uQ`
zgUiU|LuKjfxv$x2ZQ)`86mgyNDIbDl^e!cHG5QUq(fdovmo&P4L0i;?Nwa>Fob!Ok
z^E28gW>i)76|4NX-N#IQdYxLIt7fwQE$z6YoD)IeFw${{Wr$r}$(T`PoT@2n%i%9!
z1uU%ny|RIcqm>ZG2Xl$;%UK;&<K>b~(K>utm0#(PPs5XTt&t6jabmQPtOY@bKf(Bv
zme6$@&*Jnnvwxm?H<tYI3g44~g`W9gE!sIWA;4F^M}C%de?&69|7-jwqm%6JM}P2w
z1H0N7CjHA-Y+1f$VFoLhGw;7hsZ~rkaA29GZoy4k2?B*>@c-znUs!8M;Bm{~$Jb>=
zi}QRpFfbkihmcxfW%y6u$+N8T#ihv+Y-@T8Rn^=NzBw%=$!`MAG;O20b#4tz(~ccI
zVZYoogBg3xjNv}GF6}T)AJl%~&JoMtKRbkfF%yEb87Xpyr5)XPY!fM!rddn986L?B
zv9#&P1F|hDD(mkpgHE>{Tsfo>Rn-aAJ^>~=C=~J8t&o7{rB$#ml-^Y2W~@zwQKiA;
z{QR`7rJ`F#-hv|NCMKxP(8dyD^FGYR^5V2$$>9as;cdPUiZ~t_s?YZIO)25MC*`B$
z*Rm?dZ)zrbPD?9qy$5V2xeovW5lvtGTG8>I$$z!<)zeSQJg)6cwy~K7-)JLkdF%+v
z;C(~5A0`y`w&Rd}l$0==MFX0PJ9R-RAX<a5{TZN>Glb?q&N|x*+x2<ggU+E-VMbq^
zqG@drJRE}VJnpmc7GpvOe^Q$;+!?vWHu6=}!=cTd5^Q3^6@8BdY_m!~&|yC4q&eXG
z@fGv-+_hnwM5EBf;P>DG@z($!q=cOIT@)-|2*@3^y}A#(x&r7uHFdlzOeYQO@xEZ3
zP{^M=z$ebP8gY^@J1udm?eoy4fayU6+Kf{r3xdM4zdVS3z~o*2Q0B=fiKNNMyJxM#
zmIl0d4x%7X*xV6>O3vZPn$h0iJA{G+`0VJMhmGC&(>{9$$&4gwhRUNcp&zyc^Y!7y
zG^L~8hpV5rELED<Wjp6MyPFh&N0rqgCmbqQW;QFoGT*w(yT!;jB{>eQKSgVgsY1}<
zP8gH~foIVO(CEo1fl90q`SVq>-!p5qgW?b<?EbOzf?FLt+LA%5n2@<o+qPXDrwr|g
z;EdlJb_B)zemnb>cNWma6kqkrE7Px{_|=WN#a~LokKC=h(_HYYr)C?Gk|yb@&~9c>
zy}vs*rf$OcrFMqSD{#v29-Kt&3wMqUy!NgrbMo_>miHSQ^6hh8xiis2f$xzm@n|*_
z1{DNl%MC2dn)_zSY;~7+rS#*p?NV=(lAUA4IY1ipBx;6~_Smr>Mubo<<rhPZeU{dY
zEqBdwJ=#0k7D1(5cmw3SL|s$FWWD(Jy(JGep7<Iah_fjY_5}omV?j{Lr5Y=^^GYqo
zdo<=5?qy{gYj0*Q`s$r8mWM~}fk0h3K3JbxnModxQLc!0?OoO^5%KVpPh+ejgWLQL
z#gR|e1-8?(tKY2emXt^wc{!9xmA5XiulVWv*7})rrQs2<=?r&dR{#(t+&Ax4&|172
zbHe>9VX!d0FM%S~tilfQ5{%VzT~AuU(_mZa1Bv)tm2t4aghRak6syqrLhQ-@*smJ!
z9uCs2RqmsIG+PP$j3=|@I+YT=2ZY-09`f3*mj0OQp*QfR`7ro*M(>8c5?R<JG&_zQ
zpL6^2NPBoPGGyvWtiqo&HpQI69tJDlI}7+#DViNKX$PIR#`bCyM;@hRRxYr>93Iz&
zXNMXd-1IAqJRMuhz;IXT*^dk05XA%(N6ye9K<SSO%*?ju@~h@*cFasi%Esl~wZA@}
zVhpOI2t(HG46E@9%b{owEHd$VU-Ps!9%~7Nf^!Z+P#ih@a@;M1{P~;RQ;F0h&gW4#
z60BAvB|OrzV+UW~ozn;BIj-LPHl($t8y@-bk<LK55_)~;Otkcuc+0P}wloBd9sRy|
z0d<csxfmwN=cGB1&@{^J)$=^ziI$+C$~brlg)l)c)+OgWGs5?N_-g!%pytBJh{0I!
zO!{lO4^o2iGQkmA$zf@kRB{hzI^1}i1$os;&jr(c&!U<c<n|6BLfzW#^++_l=VH~Y
zf`{+T&yjD?k{8Ut@rwp}67^DlG8a^UmEJTFNEeQuiq)+MHuKJ(>YZc#UStQ_k2RDU
z4QH;)@1{x#K=u8%>LZCf21e(`1i(Q81`<_D_Exn3{yrqg{6bZthj4#$)!rqUDV0?Z
z+QiE_2?THZOhto5gTstp;S0t0O!tqre3iRM0is<46i1GGlCAa55vsBDef9?N6;@RV
zy&m#@iP-SHC=z6#2Fh_r)e)vu#j+8s7G&;vJQ19lX^=n>HP)FDgD_llR$)sAc-&1c
zY2G?2*`H!w_rR^!kc%r79D^xUrMoj3j<6FtxC%KbKuPPKd!tJ`IAdi+Py}E}22cT@
z$|-SP(>;F5H6YJ_=4z9-&5HKLVG|25k>Dce?&oCYp6`Fn9DAI5JwDjNPCiRSvZh)d
z<j)w2BRhWgwW43R-0K~>t#zpuYbFuvJ?NZZ&)1R3y&ypw%7Z;<vgcOWih0fa{y6t~
zcE6-jgInuc8s@5TAt)RXI*(wN#1X|6FJ3q_zpf#BG@Ythu9IBs91jAWPze7aZ>cu%
zk(o-|``Z&iUiZvg_IOS;heE&sls9x`c=O0TU2G%qrM0m#NA_H*VzACK$0|>iSdBF=
z-xn#O%^G<K{OIgP@-DJXUXxMYyNzF*PPs^Hb6_E8>^<e|^Y7xI;ymATHF^Jv%={@Y
zn&*0bdo!RwLt$0{$YcnGjE?LIUL^xn^32Jj+)geYlN-v7^To~nAeWa!P(;z=xwZ7{
z`n>>z4C~0$Ug8aRovhC}S{|X70!}*+(qJlv^XJ2TTNeBklupLx+zq0msl-nJMHCH*
zdqDrn@aCEC!=tAz24udl80v0oufIO_w1p3h`NytikH*d*r{se&k8>~Xl_omnU&LNM
z6!D1_g+X0|ps_K92ZjE6Rl2nHJybU$;zeVld<{LH8dDGQlGVd(+7#%PzzOq?4_+Jz
zm9AM=sy=Mz4}JIkPTZ#TK#N!rltsU~FosuZC=cj(PE~09K-tM!scw@k4{FUBgFB`P
zph}}l3%eTk=|pf0qvhbS#c?rp)$M955=v*mKpVqIqWWomJPm!ySeQ4Fdski{AZOq9
zvB(wH7O>smp>flE@=V=%$^N{`^s%Ux+-6T}!wp&|%TWu%)S@hzCV2G$A+I3e)$HMu
zbE%Xr*Ymb()@?05P|)x+fgF#S$K7P0vQO%OYA2g)?Gp=dTK(!d2pY?RmQh39Bg`bH
z&XlD}Mfy~9I*}!{$ckEh4!`c|;c);!0I_GDN-i|xD_ZSm(+cdNo!DqIlBk-t101mH
z{D{Z~j>w<7-I;Zk?j>1s-&_k4-rp7wegtAaC;hgdbAMTJJ@4}x#TmSBvAEMX&cv$%
zOpJ=y5tK#N9~}&@G<#!Z>|ZT6Nw;@XPA$h2nZB}nzj*G~d<{N5Z|VKT%@}2gQ0Ly$
z#d)!#ar6D5v`NIrP#l@9VTF#M!|-_6;YosH@N%JaZMS5Sf_vMRYoZ~OAFU7XB);E1
zLJ3uS)}c*(v%Rk}1w$L!m4=|Pb)ALJFc;~@jF^3g9fCLGq`yG-1+ICyNEu%gGP0l*
ziPlhcL*^c|`PIkj!zY<sD+0$-zrWC@+3Pj}LD}5zTY|WdP?|YErAgtou#v&4jD^eW
z4|(r!@dNGn7DiZW&M$ax!qNdzfcNt#t?hR|_~6E4+UE<PIP#RAt1{s_<K=F>U}EF<
zRx6~^n(z356ye3&G#96L)P5J8vK4vvteN8Fgj<D#qSznx-$&=}gE7Sz!^E`?Ke6?S
zal*QjN9AQO(c$|CE2Pv=XMnGMf`_ee&~FEC?Z)>kB*iLRPq>{PmF(HUPeYk5Rs_ZA
zS<N$sS32*mj(FgQW?qF`R%oC9+MCmqB073`oHkgrp!qJZX!i4)mI{Y-&8iFQ`jMYj
zXWF~3L^!kk@7cLbffM&B>&H*k_$T;_p5Oku>X;+T_7f<QOZ5Q&Vg82XtUID8a1>sb
zWIJw?P0#S_Vo@31`0<<+G@kRrsSIjEwY2tqKkkd%)CV<(4y1@IUj8KtcCe!tIjVpD
zev@Y1iS4YpLH;Z6?tq5B4aJc+>OQgD0dupZ<Bu8~ytvN_JUSndxzw8>mdYtZtFhDQ
zzOWrqQp_$J77x`~n6+F?(|@P>=NRN5%gTJU{w0rn+^)`hlZtc4O8e$6=a|rVy+$`?
zG;S9rbz<(Q`%_<4+!t>-=aU>x2W7x&cNIwb9ZUj58lgv+;oHfEeT|i`3l3d%YM$F<
zlq$NzP8&EYK7O_3{>ae9O*0j8sMmzOnCDQKc5fZcxXDl)xj$p&2qA;vaX~&-Zi_2k
z)!9F%@~_Y0ZE^`V^C@P(?(mgH549f>G&wvuTePruT5;~A1$$Mpc?#?Qy0<le>1Ec4
z6xn=gmZiLureyXx^3ACmvP4>)Q!IY9BWrn$p~Qbl*mR9xs=b+sw=cHWdK`uLC8{#K
zsrJfV!W^Smmz>;&w$*6e!TyO)_G(ewiXUrK$3=c!t7Vw5?sS@5VeD7>5o+EfDefWs
zsj3OA#Rg7em_mIGP7*!nPv*+4DOeq^dtGU}>aL;}c#THnCH;hwp|s<KYrN8z^W7~I
z#xFIcc)Zkr?>=WFQTa{x5Tp1BxgpAjR_|IL_uXDzoPKXP6@2E`jAtv}^5?s2!>{J#
z4>_0~Sy1Y{kE&X2k_At$ZeW-~sa4u;kubex33$(Q|JCs9S7zS!gBq@eN)@y(XdX}Z
z*xt|(trHupmmMnhl3q^Lt|f7Sst$+Z$nwKo9~uRIG}J5M9$LKdOgK3_o+j?aZ`_!6
zkQO0X32g;}rhPpd=R-z3%$jQ%1m5UIfXgdjWq9te6N5w7dm}g`Lj(y8H4gLBqhgLj
z_c^%PX&sAru#e94@nphT{Q$*n%Z}%NQ@4TQ$gOueU9^SLmwKhPPa3~v>r*cwe=5op
zcM`>%rXk2<XjF=K+DTvIqLn>f3@zEIfMIY$(AYcgFGc6ETaMcl-My|loG5@Gn~e=#
znS|$I)%K~;s$2oY)N{j!N7E#}>}S?*l9*_2azTSSGr=&0t{;~z)nP0w8PgR?6hI(V
zwqnkH&rURf|C)b{XBGA^a51kp6Oi8;>mxqp%6*Xa$_lp#c5Jy32#Wd57q4FH6R!BS
zEF{Tyaa%P&&sKyN#CmC%=s&+l15jRiM|K6?^}dQY=FjcSP`+fhl>KZ2V2ArJeFz$B
zV$n=)khm)B*sW|!YHW<7+ouzeJyhC|m9}q@_JtRWkKJWD(dJhh_Twg()0E6Ky7FIW
zr5ykh-FPUD{7Tb5<G$nxtHw&r%P%?U>xy4zT3?!Kc>$rF+eI=QwrrP6UV9kFT-naN
zJ$G<xGuy&pz!+o!h!M4dP56u>h*~#EKBvIUhB&$ko2_Gq7|#ULq<<MIqb|$DyZI<C
z=xcjg=gO@&cW!_u_kT%1(AfN;vog==l@zD#hGQ=>KCU!9ml4iH8@^jOe{-}rkNWK8
zMZVCZ_TIf8rl+kte}>(iGXXPsUmv6d-@GNe0qg4$3%3D_7y;zg{QNXLh)~mzaaEMo
zV~i>tu+<fiS5WURXUnvg=wTXv^S@itM_CC&OBL3YrpVR1mJO8c#Vph82U+JbVt%o}
zuGZV1Z7<;I)4Y{6Y33(oa1gBcCg3D$hN81bU0i8_sEOl&w;wPUPBF{0+_`^Gn0BY~
zm2Pi9d>s>?_w(%+Z1i<jmQ$7@<Hu-MAF9PrMA3QJh>8f|yKl=<lDu*~LS(LDe}F>5
zdpl2^XVo_u{<vN*3dNC=zr9kBmPGLC@NF@ioO>-+Pc^+>Z}B<u%^OqUeScoBKgEHd
z3_9ZAqMp!LIqz^w`uN%E0Pl-ESxKZnZ{csKLeSyyn0M?@Cvo3>L0i#rVy6gr#jxv_
z<5YG$JD^2ZhF1=rSAll1xY*A2R|#A-^t#<l3Ou9kELdjE@aG>V(v{)kIa^F0L&up@
zCXDLUZ-o3+>eTOjt;djynlE+xk0%0tU+-$4U|=s6bCEiG27<MGaP#M~(m@$_qbGj<
z``d_kAEZR}UAYlf_~lLosXT<pT*!K$k}ZHI;g^kB{(Qe7l95Dpvm1_pX&(RaLr>Ll
z!u7eYc@=#7k#1VVeR$!HCkf)tVVFW+JiU5eg|6FV3w!^F&Vab;so~}`(b7@l6(9b5
z@E{0^BP-Q@M8}^+b!H};mXAL7HD`ctS3LEk2*DfCbsu-Ucwh|V4^OL}(Jx?nKfj@{
z!K3-@m*%bw+obh$KH{F`{PWR-tLGtTEcdKagav_Hu|kbEMBwDc%nf2&f#9&~DDu!B
zY!B#Qm_i$$$|PsNvmRtIB^9Hh4~xv*=`o(g84T+U|M^hEJ6|Y{%=^Xl5aA`gNB)%e
zQRW)fgIk``sdm#gs!t0|cL=ZvPNH5{l!4cLETx9*eRMwJ<<$cm4w+{ww+1kc#mN$k
zPHcbZeF2IikA&{=!7&yV4~)L1WIV3$x~LXqzCO(1o|>ipr@$`>p@^ap*^xLztJ`fe
zdVf~G7@Xab{djlatxe?7KlccPsQxOMEGc>=mG$@Fhqng8jTlWit4~DaANy0*<!lHF
zN8NRedPcEsMaAgDB13n4gG$nivnAHb>Hg$FN)kn^*<e42xdc;SjL6mGML3v*l(nww
zh8GX@HoUt0Not21*u%>3MfLM0&~45SsjFg74~xvnsv0lXmOR~j`lmVFHo!224z_8#
zTfyG8A4)yE-uU%sW(@N-)u4q79+CLw_LCj2jhHZysBY!M-(kh9D>Y*+&v?(Mb@%@G
zG|XeuZBN*tm`-{U^}clQzU#6CiunG0dY+PVP03`+wBlSAo%@{-+w-)G-2cN4D*{0g
z@cCHv6}Cm5$m=6sHFUQqXM8TsPZ9Xz!yAkw>YQrj`PUyxyDK6#MN35GMPo`MwD;#a
z=LjfR9~Ami)bU&hN^mzeD38_UZaqcq^1G8V_@-rN-mbSv0=N@@+TO2M2QYPXIlOJH
zxiLW#$t37cnW#k%mBN=hToKTBU)43kF>tV)g-!U1vdnOEQ(Yc(2huPDu=IFd7CL@F
zf|+^YRRo8|&5_pm12Qd!`hSu~r9pAz!rJ6}0unPnzER6By~|>Q4Nbg#u@XMI0|{Pf
zVVLw)+?6d1ZdMha%E;u07iNrn5|iAY&Gx4n{;u-^S%f_d$kt;VYE04m_Esw^&klAR
z3Ov1}|EFL79V{;$IpN+C_w`XG{{dAcs|V(jU#?#c+X=Y_bY*z+!4}tjbYIk|c41QK
zq*FQrSBi4y;+ayR0y|i-V<b`YuMEMTGk)uqIW^atOrn(By<XBB81hyB74=UyJqE>*
zF9^1ucy<(_0(V}2bz1FPG|o=MgU4y|vw8U&WXcZ9Y+@u)udAxTFTX4eH`c}-sP$7^
za@H$+{XS2Z@ejcvF6d#HLX*>)=Z^tj_6_<Hu%UVF3z>yY!fw>EwsG#n4xq!|hoC#F
zJU2p0OX!BCmadWeZsQ{Z*QRv`wf^`!M1T)c;%%brk8XyI9(C$_6O&iW5AP17nAa`Y
z$<p3!_+Or<g<%RUI;DNj05&ukDWW3kS2{DxC6g-`V$SMx=}%o(3!{jlM~hQ4kKu=#
zKC3ZA^V`Qwe{Bqz3JZ&WsxSKI?u1|XAX6{=^|mUzbVIrEXi%M>%!WRva>#fv4!^_J
z|E|2#=%ylN<8GYN`8K&>^({}`kl8zBjCqG?ia^j<okrVqWtJN`-X`DL3|J~vT#a<K
z1WVm_*n|YE44?P<{G$ukd+R0bgmLT~w%W{f`4UwI4YE5_QQ(7=n3Rqyo`c&c6biQY
zCX@D-WX*kxP`9pD40hY$$iF9w?{c|#Z563qj*YP$>(922_k90z2W+!)A}9h($*W>u
zFXV-vO8p&+@`Eb@Y?61!ZNAT)xvIEBXb*jmsr00`Uz1A5H6kVS*g0$!J=G&~VjkQw
z(I?&80c@#&8QTp8-(xszlge||NiS>G;M2aXxfu06L%H)Bf3l*9LJ<`q{(S0^GsD4Y
z?4o{tIT1DL5e^^nWY^+hJDhqW$_H7ifWjXp5OZRWobi)Y5p6CNmGyEtj8*0TQyACa
zBx+3fgGVaCr558oq9Dt1T4O!kZC)aGOLj=^6FrHFdvmvcA|K;!(V^R48w7qibTX>N
z$suh=Xv*V4PzJsH;OQOEm$|weAjiW)J&m@`_B#@WJWd2<(9I2=st$F&%*}4=q4$bl
zs^_${RneuKu`IX)SBxNNtX)ELshePW%!6CkVm`b+wAzuM>rR|D-eGE$P#pQNR%-O(
zxn4PkX}?pa$2VKkqGoEE14ANzxHJE$yRX?kNQst4YkU`bYh!x<3qO^jpctIpt)<k9
zT{_G6|6~I3#0M$icUShS1iUb_@5yVntnQ%AE$$Y_=j}B+toV1$rX~ENwHv?s!NHAB
zO|9ch&+~*7)vUS4#a^fXR9+t^f>N%$eSRBGs1ERcDtlVAy3`cA(kmyw`TS2UBUYFp
z=uU6^ibfXn$r%fm9L%+b5Auh&uR1jsS9H~<^6lNBz65pzCE~?b#u&uw0{2Vdvj(5e
zZ*G0mkG&zh@8X|KxQU>M<B8$RgBrcjZz#_=E~vHE{`jQI;M`o(;&<ZUjtuTL1dV-u
zS|(JDFu52;>8IoOuk(``xM#E#S?;PYy~9O*J?U{Nv9zNmN>mTUaZ6F|%2>;_kqe_u
zBF}cj#`74a(6@<KFT8=hReZZIXzTRjS%XhRCHIy%sVfn7JK|#qtPF4PRy<qq$cgBo
zc^ut!mK=xWtRqh(883c&CcER0Yhh*hQ(;#rqdBF<+G(T{Dx%GQg-(Sv+TPn~oxeR~
zE3|a&tSC(ul+4s^uDERh%nm0#f+8x?{bf3A)cdnMNF5o)Vg8lcmN9-H<?Hg?356YE
z`*rvlj3&g|s!Jp(6bQf3c^t5DXUdp6%zlvdPq4^<lc?3zY4aIy9lH&U$Fm04h#nW!
zqHNV=gPoRsU-kVv)e}S!Yg!*4&%FVqu13mf7RG^}F3cFI$6a~+V26eN4v|3|H;TQz
zz)yFU%=s4uC<f6jIzxA$eH;`=emS>d?nP&EV+M0gDv|z>tL<$6sxjC3^M7*jf)zm#
z5J>7e$#^pBC-Vmd(J!!+<+D@z_tqkbJa;3p**oy?_sGm8y_*vuTJC%o%G<sqslY=g
z+M5*qOp$@e+mR@f{*t~^+4e&C5kpCJ9u;_Q!L9X+H#hxuc!~UTALP_IDX&N)LW;WV
zl2m}-(qx*Ln^<nmm(m@Q_yWa|9}{GvR0z)cg-F}L<}kwcd@R1BK`u&U2X3|@5EOH>
zNF4()!cy&0w3&B9*h!K0<>JDT=eX|=cZ!(y;+pc<k-9b+f%d~Ga(kKio^&`hsZ(RR
zA23D!>3hdf#BqUlxfYjuM^EK03kLWt6-kPbRn4SRusfho3WCN~3!Xc55q{Vz6&^L_
zCwpmpwiGB59lG+5S)A{nschR~+GHa;xw??Bt$tJ{mgmm<J8r|1C)h6WN@afg^zE{A
zO|saeN7lCkdS(ysAFI9*zwcuoi2Hzo`aOj6B2HuIAkU@OOV_^{Y5S!wXD-htyBm+2
z^wcHP3AL@eHs_~KJN48RZ7|sUt;r=u6182`jAu)&w}fx|XI$)uw>>N60$f|=KU5Jr
z-0LM9f^wzydx0N28NZeFwlVACa<SXGAOCQQB^cVp(r+#IGs+%V1DiSslGu+`wCB?(
z-w>e_5D2;xmR^`;NvP#Z3U@r9JAX*BVBS-$&Uh9Sk7jR3rPsCjqt~ZFe|ub799=ZZ
z`$SLh#5D-I^IUmhu@1pBb=8E0`KhH^cY)Kb#H0Fh0F`5$2#T7!RT9`*HxWk>H9QWd
zZ<N8x@NDyQV`u2jtE<;W%s1<M^RHL8Liyf!SC2feKjWJUO5lPxig;)pJqF%aMx4el
zg{~>x++<)NQ3cBe%j4n6ZN>aw_P!$@98y)jI`;J^ICeNnSB5WFZsWM@vxfkuE5na!
z!5+N!@j==_Z<rXSmO3$e#D5vS5+oj_IJ~{qak-{w2z=IKAFK?otYSs$*&Re6C^GnC
z>1xYR9C<3GFhhqB{hVU)eXDYxN{>-aIUnD)`R^T`<VO*$+hR=>Ve|+~0Fs}dC0xnp
zKv0}S2b~7tVjXVkqI^OZ!xTJcoZJsgOE`~+fX!fl;KitNPVhg)^d#y*dDhk#cL*B0
ztY>2Iu{1Z-v^z9t`XlFR)yK481$(e)#%M!v<d3!c-U?uRFwsyP`F$<j(&!}&QwzsS
zu3*u0Z_DYskAyhZO26tZH4%=7E!znHrgsO(0VA81z%KF>T^as+IDDc3U|2&~QdIY5
zeT6}nH^zN13Rax85OaMv#STz`<y8#R@Br;*GF=%S&I`AZDfU6yc^pj>Htc<-A>qG$
zlcY!eI2_8U>{t%6C=JDtEw%8A;IV(wPD0mv<Ifgoa=Uy_QYCqsGZBI$Tv|q+*Z($B
zOFayeT*Z7-E|_+Ze2}SajfAcW76c_=??8td<2QFV)K_)y)8^m0W-4QRQ(eGCmoZHG
zKjw`SVf2U(dKjjb*3YHqyXZ;O{A+V>uhS`bR~lq9hgHdJb+_3oob*U<a!mr0|F;|n
z%9W|R<6yS)BW?$=LHLAn;jppvR%%t<GUvo%l1xj8;=N#Sj}$15%&D}N4al;YkwiVH
z!rN+R13`DTsuUZgm&RPlG}=BlYX3-k|9ho^<u?!2QyqWruBB)Hr=Q^Np8Owz9+TY~
z+8(4_m+!S&!Q#%HG|dgsmEpxzI4lG9K%gls2#SpNne=`n6h}tmJ(6w`_EOfhc$7ZL
zXa(LmXprM{?ekH65adrvporE(5L@siz!5bJQ_BkEGtrEJM6GC;ExJ!P)$QRf8P&v5
zyxe)po`;*~xO3nC(Bt4mW&s}52P?yWk3vky6Mc|&Oow|!ZuEB4NJ>u4{*~Js)@))r
zQy2_J%u}#3ylYg~1MmZOKt@nYzoeAvgPbCtEWVan8cltaQ0L((7xmR-UWjm4+N7Yr
zbm_iODwqv^<wp@6{sQrC1&Sk!`NG0@wJ=Q1O5CQBH{Q)VhnIUJAAg()TQ=7FP45k?
z3?Cgi1a=|`W^fW!iigd{9niohV~=c0g0-I4)a$5{VizUC{#<cUw?03RGchQR+^>AY
z6ZG;vdJ;9`FsqH55(M2jd)uQ(hfrI`EpNS~TCw^g$h2xTx5Q!Lt7YQ69_Z);YzRuZ
zcXbl@ibNTHRTKU|h3JEvLJAk_WR+4RJEt#7A0dRbY$lI96$Jy)eE_KzN*8gzH(BGP
znLdrCE5ldbo-Kb!=aoIwF2*<Y#LjK5^ws2gl(<XxC6G-ID2{w4YO7ih<Ac$K;>aFC
zbc%duF-*=(?4}}yy<b)vKe~NbXr15+@rWC_M<XT$CsExz;O<}{brOXl*0|`TF9QCT
zCOaGakS?-o{qo+Ze%toGREr@_CHr{Lko6#FY*--7?FhyPV?<YmH(+LzRW-ygIcJef
zxx`P*S8ZF3Q;w>cMnsw4a~Zf=&!(>g7R&4iO1z7L5qJW#Ci;Jfr4|lTHaEZ8EnBI2
z&K#m+HX5ZB92lmSDTjwsfV&-lps`c)4>wJZpos2tzNYNr0D5I{dv^q?t4SLx<&D?J
z2+{oet0-W}uK#1nq03n}mt$dNcy+>x`Dds`&bR5o#=M+mFB>ZNZ(;}xhDpDJdb$Ki
zm9Jr#xO%_7dt3r1QMat9QJ1*L4+eDwR5<ScRO)})^GfC3A}9_M2pXH}OZEh(mjEp8
zZhY7k#EPKs(DjAJ!~FvT!#&4Uowg0ItD;)GuQU2fm#+KLkdkx+MNHa|kM@MZ=-H2;
zh|lg>T`iBIE5l1X387E!n7ztU=Yvvv;1!~#u`dk{Zc7M7WSqO9zYmb8{}B|i#`${s
zJQ`Mpuf)v8v(kCxE+v?G%&j$FgU(0s3g4@?0;e3VLUH6+-ZU?;(16gD;iC^Q`>{~+
z_8IcySNj~GUVW8fqfMXLmU+7yUwpO(X9ngNNK~B4h%VTik_5_0#pA830EU>oTe*G@
z8o}IrSK4HKF350OiC8KZ;+a8a5e45vgThJF3YYdZPJl@m3xYzYbfyXW0+~8Anwzj}
zZp1~mN|KE67ck<?vRG0$^4og(BiH?oVSF%yJFQo<H-XtJc1~Smc{1wM_%w6SVG+AB
z@KG~@4-jmlN@!1U<-yAEkRXIi=rLlF>)Pb#=0jI)2haChxzo&3+h^SOrLln`6hRS1
zr;zV%LSghe!YE>m+l}<qdO$#G8~O5t;bq&z83U=&5Wdcw<lj5O!AVrXP5Gtsze5Mt
zJo`0UT^!j;y(h9_*lxwlEUGu&-f<~q`=pdYLuA`H_?QP!He6Cgeu&xwfyw~L!OLmm
zmF0t+vScZd(Cjr@_WVfnRX26psNZWUVOLDsQaThzE>?;V2iu_+>B{i8m|2}T1&K)x
zQ<I}^j*bJ#ZQHLGv<t30>)GynvGmPE=x;xHfA*mX;3s-J{X}SHrPjA&Eo;Qxbo$LA
z^Vy?k%L8tF22CCaFU!8!bfEc8LviHv{ZADb*(g6xEiXBG&gUOm+d_9W)1?`^n*Wv{
zJqks%9)EM%6cENsAEZR-^V1C890<zh&o8RM!uUaDuB=gp=UJiakwuwhEJ<J+><gSk
zeW5}Y2cg)L1wnbDe4)wUH8Qm}FE?(ymhY32=g|22Tz%)7TDS5%+*kcT_U)N=5a0ou
zYmVYOdBJB7fs>v@#f2Z#nYDnR!!@FB5}XwEb9)niTxQgl+`jzzr5+f^9<w7TGV_RB
z@X&C9A4OzzC4I;hMq`UI?N1MTdu)Ujc^uYX>=rN@%DvfVi2Cg#A8T3vPLr<s?k^`%
zv3uzlJzPiCo~SS!lvr>2%*K3xPuQh_hPi)1abzOjNDer1b&;M#J;TdCCVq)Ye|kb=
z+QZRt;G2Pccv%AeiT&t6aD0%_CMfZ%7$$vc^qCp}WHd2MTr>3794_L>Zxc)(OlwWK
zWs&z|QXks8k1?Aw8!dt>u49-&$E)nX=Xgg<Fic!?h->!OaAY?NQ@3I1$dxP0QH3%k
z_s164a;Cj=7VafQ{dPkum760#;EJawQK7s?tRyZn>CZ3JOl?{(n;2FPdvz;F8n~Qq
zd#MM$Fn5jvK^gQc>i|PtJ_~}PrmU`G7>Z17_#E23H1fPY^G-=(SRFQP_50D5U==$W
z0A7Zm!_7cID&s;>%9Ye~jDnG=?e(EuD~$zFr0sirabKJi^+T0yeu96m13_c|vM2%@
z9yggFXl#?ixp=3iR1qGJQQMyUtz|Qh+O=j=Shw@Is<T&|&1k=#D)@DF1Z8uOFiv~<
zHQ5I#F?2kp{bL#aXJGL}MM*)QUwYJBG<<z)(^S~K;UlP_Qb3W+p5<U-2}Dss5UWgx
zATjCQnE1%*Mn{k9H?13{N|$a{h0uv3b2-6JzxP2-eW*+|Wd*p!K+xE4+UK%$pHe^a
zczzBjalsEajS9gwJc9HZj_*yI{d#=m446HAVI)ywl-FoasibkvOrN7NvpaDJ6O*jF
zCr2KvW<E3BY#S3z<0N~`o|=43miU|4Pi9k75C$!wIP&WRl2sBbMOSg{;i2utqpE&O
zRlJ#zJt>=aKb!rsZZ2VEV!_SsCTo3@L2tl9P7q6%^}JMuN+ujlgOL&&gqT!lIo|1e
z0Z*6L*3^8#_P3PP;Gn4+KLekRKcoTLD_+Xx2tl&)F?dC`kDe*uu*9ZmVj2FPgix>}
ztPC&l=nL$;x;o&D@v005KWu+9us_VpBVm(Y4b}rOurj<_fW{{nJ>s>$57JJ`s{3p&
zkc;(qtY}^!1QbNspeR<KIZaI;-2Dm>0S^Y+kD`dybz)9ueD)Cf=}FYUz5O*X!Q&`m
z*s<{3LDtvH3k#gLZ^N_j<Jxk=Z=cg*Dk}ty6?oJv2!YBllBiaZ#ogNUB<l4KhSJfc
z%zP`?_j2no=CtNJn|(pwpmoF#pW-JvZ~$u;0q6+2@dyqi-1~Bk)1X|E@+oxO24kEm
z^2<C$XWT*4LLjv;OmdNbO|zje?_3~g?CjAd%n1k@n@$k6xJ;<6BcF1;d1;I(iEi9<
zxm3U6@xm3bhW@c1g2wV8#83O|A+$nq<ktCX#;#BtdG3y$L%DTMn&s*9%^1dKQF$pt
z<LAIS_=mp_GL_q+08o9b4^rZ2af;D#6w!L{hEYe8zmQiWhWPWLxJm1_hqWX$02~@c
zLeSXP*MxzHk_aoqC*DpmO7cObHdlqVEidbN6@$B}E!pg;KAiRulo-JIt-ab35GYJg
z0!0iXzi~z&H84zaA%W9sY%}xR`A=uO@Y`H5a7|^9sY?(vR<!ctaVU(w5Q|}2z7OBN
z{LUGI#!eIUEHCu_nE9-|&!q9n0o_$=PMgCvmdA2HbIqqK!#mZPF2m?`fJ_GW?XAsK
z3{wj#C&i7;#bcNfJZx>8v%OI)UUbnN%!d&pzv@mF6z1J+2pU_}sO^3Zg2t95ei(fX
zb&&0BFh8I>U$f;o)e)FD{EXI02BK2&OG6-uu7{Q3>jh&X8|cdL@mlFIYu<%pNixIM
z#!Ft`{X|9b1+&1mivf_9uG#`cx*)6!e?_<>RuF>5UTKslY^j-&FQ^gzI277dOf6xI
z%A5m51_&7)dtDe1nJ9`FmK?s!BA?@foNARQK6vHkZO4JE&o8ZNTk<D7=Of|ucM^EP
zQ~*#!%FCZz5GZVmA4ObeeBzDz!39BMO_Aa+us8dsgbKbzTY0q^WNzPE_-Z+KtMylp
zz#D=N2OmaH;X+Wdy~+;S+`urkoFGpM9#6MyoOnB*E#bc1_kvMqblet{!p%M?j{G#t
zbw30OgR>zh9I__{iChTE6Taur?UGW-W^AK5yY74qkO8LBUUL8O+6S46wmQUu!k|KZ
zkP@MVo*g1U=)T?2+`<*=ku~IzQqw){ZFjL_UmAEPkX{T$WK=pF52!~KiX(5y8$K!B
z1`=TXFWZ%z^7d05`Tj8<J=>ZH$K4N12P&Wc37TjUtPG!WFyRh80)-a?3Mw6sfYJfF
zGW^Tj`PvHD67yt)!scVE`D}?pCHSqZ3PIda8iy<hN*)vN4>t%JJFcGmnMhZLhd=7D
zlY$0K{@PKhvFp#<_#*H)i2gEA>>He#K8o?dprJT2?tJ`@Gq5uJ6Q++-Qd~CS*BpwQ
z&8HnA^W&##&Mkv9vV4%KckitOd%6cfWBUhWZSs7Ose^m%)ZM)<TghGQT;poVHtWm>
z(}3%+GJO2yOA!F9W%(fO8XUVX^u7kN-i#HT7(r6J=tJ1yk3%itvMvo@M=m6PN+g2F
z22{@Lj~CT__7INZ<hdY(EjWp~Hhwqz7<Bl%r~7vnBe^2e2gB<xei*%?fs`qR$=Tyj
z4^T#Fz{>FA+;OsB=t<Ns{%4L<vdEvvstdZvBlmQ@>SG#DWnCz3*ii(6#)=q>v!XC4
ze;=g8H(~Y$03J2=we`vJ_N>m3kG$gg)-_YfX}Z@C%t`>xUprg_Fn&!KMI1l+KAxV2
z?julO^GD2tlKoXKfb(0JaX^iS5{ZBsf2FB{Kf-*FsdB2*nvyd$GCkvhz8_a*8t)V?
z{h0Z@5SzXi^lFzUKFBGK!(IRk%EC$1c6nXpL3RXXuqoGB4r*Gk-0=2jj-6YH3w5;X
zf*YKM1Zh6V)RIWOqrYNoX|!;nB?OJF?@x+ZdBz#ueuZ6k-a6IT)tn>rp&&Rw_Sy$2
z(TaI>)@Ki4i;+ZKv$razA&{!aa;*A!twTzQL!^|j?)_04wksD!z@pnw7)7+EUd=w|
zvxlG$Cs9pCsroQC4g_UUWMuOqUCy+3YS`hAb1lhj#Zsf}Vzi_Dz~d;QqTn-0Rutyl
z6)27@dqrE41y+V<dH;^s4^M6@j+rCbb}l7os@|HWh6aj`9HO<n-uNITxKo}mAW#T3
z3=@|*>zL&;A7rZdOPjlV^O2D%b_aA<8EYfvy^Rz+Y(a@TLeSU+hQy#f5U4UEiRvbp
zwTGZjPokQ9rgGK8>^xT1gA;7}bG&~lbDax&>qh^t@i5aK+EX~4anIpHwJDx5mb6}B
zdjxc|6D$A%LH)iEbmzIO!jL@>s2ZF^^*bCEvzL)Xg)*z(RS(2wjC9ectP{5%#M2Iu
z#h^H{*n}*Q48Mfp$b#9Ex{rL2sl?-4o&DU>Jtx4e@OFLr*b5N_)5S}i2uiS$ayAe_
zMImUc{$-PM@2nwcY>SRbE4eiFk)#gqr+|)PzL)JQx_7~w!z)QX$f-2Wt*3h+P;m|f
zCEGE*y;=}OtT}Jre~*sW^VU!DDV;&dmC|r;?$CNh+F?FF1dZjtQ3H5Dpbt`_R!pbi
z00fOy9BQqV;Is|bb*+}QTi0JhCr%bFIjQ;VAxOc>@aEqx1_L&C8pG7GH!_!1{?{Q4
z`?=mBCprJHv$|Ukqm&mWQIzXoA`8@ojEW1P2PO^E@15x1Zk{#_V;t_CA@~P4=a>}q
zf5sLC@p6CfSbx+JGB{S0Io)SrSJS#RXE9yf>fVr2j=$(CZW8T-O#Kqg)i@WV@0mUK
z%C>W9SjkBP-LC@#8Tu?B^?wkjHQ{!<Q~O*4*Tz!)_<gEP&o;K9xx#oOe}D0dq-AP7
z^<Is}+CxdnB6<Dk2+tnralRK1<d*uP3j2$=-L>+wkrKz#%0<}`6kYiRoZ(hO!?Oyn
z_SLDg9aExr!r@?|*33YnehJiJ3Y~o=OssJ-B~e+co>5sp8|D~7(Aex)$#=8QxWYqb
z>2=GR>!v#lOHsk#1Lc59p710iCHhZmGKG#8BPaqdxF`Y-vu(1WK;>(S>9?p|TlZK0
zuwoRY;L<lTasl#4hacRW4zRg&9NB;WDKs{9{R~s+1rw%F`sR$Ea1xM5FH|fuPkwjt
z62Xl#4r@JAQKJD+5>W0|iV|yFLf9yS`I2S$rvv5qr#HooQhb1tLfzh@QDa;>GRm)2
zVcPWJp-t#@urU$Gg`mXCMGhRmk^L=Bp*xSIwMX^{635@nv@(*Yfs=hne@Arz&Ks+p
z%G`BYYBrvfu_QL;&vUf+3dF4&3I-)Yzo{>k|6l4;MAbV=svMsdCl=+@qGHxShx`dt
z&HWq{bETT6)cajrIP$qU9Qj;&NQxeYNq=%AR&J|9J*@`Z?Ru0EtEb->h|PM8fMWES
zLTAN<{z)-G-7DFmY1QDm6!%@x%PUZQHM_y?J+8gaL|RGV@GeL`nNKiRQZ4UU>lrQ<
zU!$i@W!M6lMnpPNqTk>jZGo?7HuKK5S;f5eMvA1Vhvovy$DrR~kx}s$8e5SWj+AKe
zJVMksCP~zQS+`ly0fn22WB=KsXSEZe{sOs83iVc4pyvQdasaXLfWd!cmAPw$aXqTe
z#YF@+ZkoDkGQuJPzT6~&0L(T6DbauLpIObH6>?U7J3FIO)|}bAE%ATp$^R#M)x%R&
zAU$&<t|z?FeV{g=5Hz;+$TO-G?{FDDZ;BC(<#z=kN>3C;OnR^oeaIBR5NaYRMX}`8
ziCvK6<J&f`plGugmAK$7cCkIv<W;*0iuOi|7LO8oVS^o{=LFEJ{a1Q2qN!h9T>MHF
zeTR#rcd;&b8T;4l47>MuUH9U2^l$?BD$R$p00h+H$o`f83;`n*k|r*0AfF|!J?6Vu
z*W=w`B*h!qXTRCFzl6oj3mkzbD8S0_w}!=tH7?=*h#kIm8^+RG68+TUTg`GQMJoU8
z27@|QK2!H{YiX+4C|gj(?+qt_uV8;T5AfN9Bl`;}{3D;870!oSLuLnb%9@w$jFHY>
zA|RVq0GsOK#2S~Fe`K@LmIiU*eywhkf&2Swwamf(X@Cz>V&X$No?FWiN5(EcK}tL?
zL`twEn<sG~D7uPk<N(!tGu?`p+AKz@1<P;9^V-~CBs&T?pcNWh!4~n44rtde8d)UT
zUzJEoVP=|qrl=YWBC!mBF|nK!bEW!!#F&0rui^Jb(vjhP_MU6K<9!EyvH22UGwa{j
z?8)C+=GM}j&D~ngvwx<jM570!S?P`cN^d?t%3SGGdCywklY~m1$ZF90fU>Uj?lY=X
z<j6mI-@QZI<!`N}06sU{3Tk&jZ;P_O_|@zHyZ3ln_xdcELX&6HF+iTS|0Yi$2lE$7
zSTQm!n5*8!I{of>D!6WYBHDfz8!XwVb)apqAX_zH7Xqz{akc;i>NZo=Q?UzrH@mAq
z1)8MaJ25q*0}h_Z07-_X5mV^wx&P!vc@EugL3x@RO_O%PX7hv`sCT!;C60T(zr645
zlXSwKJwAIbo;$5`5%9$JfAd7GLrTZ{tB!9q2TfwxoLy+1_!jWQg#YY``)xfIzK%4F
z3f%^+ZnR4a#uJ$V3P}nO65&4!>GUC0c@I?or$kap?o=1Mqf0gTqX*Rh#r+b*8kZ0M
zf#OE|*#arvFuzu}O2Xu6-vsbAkq?)F4ff*5{=Wab!5<a5)84Wmxn<sNw*Q`-$9yE5
zJLrm<jq*vUU2y5KnVQWVbY(VI#k^PMw9qduwE!-M{*B9)DVG!dpN?-ePe-m2-@ViZ
z8$?Y)fM+<Mu@z_k*)uHrg9>Lb6=vESDFE_6)YLQpp(YA|ns4QJZf2){gqn8&X>G;)
zAU(eD^}t=wW41F2nQdkF9%mf70#`U?4qB=wV5!nv6mzAff3(y`vRkF|8q&OBefFNz
zjk~)Li@u7pGq^oT6TIP%s^j1s-WVH@apfT;`lJ6j&S%XI)=AX5*!Yz!3NY5u|MzTq
zO*cOQwO8y|@4gFZO14R<g3=7_y7yogY!=A%M1s<+nN|`S8F&RY6c+)!sKqjc&R+fJ
zw4!|lsHwp1S#U-ja=cG7&NaX|E&kOw>njXs+v`i6-_7<~<&T2f18{g3#xftp`xRs}
zco~b>1)J20Hz1o^on3spFfy;o_ieOw$t8y*MuL+7D{BJlRi}Sr^I6oJmozPKMX~+&
zY;Ht;pO*q{x-DXw@xN!Y*s<n|f93lXBk#Vz%-v|A!%ZFZ1=Zq_Z@bV!O;nL6s68%8
zCFNZh*=C)16{tORu0qjWtot}T{hhXMD2jC#;*7Sfp+Usf<TTSR#Cd1E8Wd-g;&93?
zpoP!#mM$pHy0@F}cZ0ao9`c|#6AnZocd@<EF0I>2vgJK)V+(BOgZ%gXpMc3b_8$VK
z_k(F^Fcf*>S1>=QG;|RG(1nNmZ|D-SKgU8zmgCdn)Y*cE2efE*_6D%C(toqFY2`v8
zT6~`DIJk?*XL(x~TqZZ&hWKxnRoZ&A`?uTybC}K4?7wrE|9{?67rs~lri7|%Uq0?4
zm7Fe_6bDnZ;_W<vUC>i?TrUCnTuZeW+D%Gm`8g4!7dhV~z8iY3mF{2-(Y5Lvxr_Zp
z6^$2ya_L!_S?>SuYY%VN(Q=wx?0)L+qGmD8?DGTZdAqL;?qYx2{h#e=@?_LdVf}9t
z&q~`3xgcyPm@C%?rSBqFR+%YFqt#@e3ln$2=diN!Um&?mdryZ>Y9jc?gcU0g+H;T+
z{ZIed`Eq9kj5uk@@c`lY(b%KAsEzsBADDv0>a@bjna))j#g8n2yJ!C!MeyhbsHqQ`
zc!*7H(29?rKnWjc_;1BWrh8PC%Y6~txNe<fz<*!lZZ$-6fwlNr;FZi>)Z#&bftPt+
zzW`4~2tr;w|F`=8kB1cB4D7#wr!Z;F*h9NG+}P;Y76%VET2c!|c5!+$=p6YH<Wo{&
z)pBI@IC#o5h5&S*`ERF8X_5seL3(_qj(2vkZd}h(09-d+uo!i=PU{{hQeQx%;pKSl
zAcubx>5qWzrFuRKB_&#HIS_Ohu6(8()FK_A#j}7GYyVM;XXU)c*Lp0JlsG;uHW!7R
z3A#!nNdQRx^=~A>jF*~7O5tnIQQF199YwM;3OrwAl&fX>@7XMNt!w0F)>5<aoX?Ni
z#ra~7yNechPH3S-eNya5(>$C+Jy;gms)r-{SLXTqW>M>@{sGQ8TXPN1gdW5%E&jxj
zi|=naq0ybD;u~xPFM1MnE!r{w22D5+`Fa`2;;{_a1Jp@__A&zlJ&7vl^K(K22&(sS
z<U5i}B~yaL^&~aZ?Tbt;`kK#J<oSsXEHI9h<vjZu7cak(MKwmvzZ2X4akc+=X8lyL
zwi;abCbJvq`IvTKox@0?e$l+~ZwJ;bp~i1#H+0IHC3)P?YwWZG>l97^O49!Az<Qi-
zO|N2Jo5e^q$KlGtaoT~kp*RqHO#btMwOfB9-*%n<Z~}jh$;LO^`h*WE;3PmcU`;ON
zc<#FU|7cAk0X;>lOW?ZVyOWE%SeMo{dlTf-+kS93R_mH4*wwZI%wpD$Dit~Sk7iMS
zsHb>4k4Dd9_S7!u1^EYF4x4QU`#L4l&EA3kw>$IKKY|d~j}=#k9$F)5-FJ!e#03Fx
zgh~TgxBp+)C2)D8`dL1bQd*`Bjdsz1(wE%6Tya!~#i%FK)#ShKK0yM2yg`~b+OKtO
z$VpZ7=3ke<M^i)KfNL*}c4>vnEl+Z9%gvOfIZ!8*(v{8nBT}~KseA)tMf1+0!;_o)
zm%WeZPe*vF=FIr}PkJwQ2U$!gk2d4TafO^|;Dq0gXLntf*24V0ev#r_jo^q9|KI&M
zL%Hj478It}5`ylm=l8nuP7Z>`+Iw|JT)(-R`Ak|6t7hX_^+o!+W@-EX?oJh}`|Kg;
z(UYi#=<`=#tOyF-LE`m5*4BlFHU5lrf3-*j7u>KG-{HX_+PhruxFKk)bnOH1_md%L
z?0FBP-0K*omg-MAafy_pzM8zRU!Vs>aO2|cvN^ZAY2%g+urhr7mCHpidc^B=AEe!v
z+ufL(mm%oR*Gk22jCu?6>_zz*Yi<l=q&&N?Rka0TX`&A@wc)dM7%jPxxnh)dg`Pxx
zdo`yrj!wmUd6k<jl|QH0wF~}oXz@I4^y8TiGL=htS^(pNVS(bv{1tIuAHvG;bnv8#
z>uE-d!Qh6xoXa_6Ot{^^$=E$m9C^=K@JEOn;3R6pnqiR&1da8Smi*Yi?X{r~5?P{L
zf0iG^p#caA5VVZucLWO4djpCin<cIsBvdhysDk#x5pa63u8ee&n3&n~2)+=7G2eJu
zym&h}9A_ecBD!-tl>`K63&oLhuIQ-d(Usxzgl=x5>0~Fol+3>9RyT(&D=EK^v8UnV
zF({6FESVG7%`pfX8+Z3ZJRFK6%U=Feu6+2g$_b}6hWN5ud1Hm+Z}P;8_ho^3%Pqh$
z)MHOTVe|_c7^W7<i{prump;haV1#k+UWY9K{X*U9VmXzK%@J)Ku+f=y4a3w@kvR5r
z4+NTqKv0SvQY7gY#8AZXH$R|H=~UcXTxn#+A{kkKw>Eo!4Q;bRps;oU6w$gx$?2sj
zhAGs0p9s>Z7c^ynkVVhh&?mSj?U$6}5C}^A)oeis6n2JzL_HI57A=lIP_l25#O-gb
z^~;5@`kE&@tZxk)dhu9-(Amd8qV|11rv{@(jAZ&CQ|sP^B$;5C^fv_%yf@1;oz4Ao
zFSV@|TTC;lUZewop#xTiw+;K?MUOzuh(OStNf$f_7%eD{9Jx}M2O$hE+a4ESthq6K
z#d<rIV9*LG=YIy&01d-QRKrtxSIpTF6!WrNCw*wF`gyIW)ir+xeHJ6{$!?8;h6R3_
zy{SUb*ln?tb3S_r@1QvHyGPgbK0$G0oVva?HHzGyOmiT)Wm_3z7B|pQ5l|c%VRjV;
zfx@oCN!06Oh6R8V1!zmA4qNM+1f!`UxbehBEtlEe+CIUgo8S#wLkyGt!V0_AuRASW
z!me=e>QtAJtGO%zFjKYLw_KlLw<h{**fPNPopg?)h)MS+-U?#gNkGt8<N0P=HwYT*
zW~R6xmfp#%5wRuLf5)T5bs#@7UYvG+PY{J7hV2OnWkq4$U522sZydCpun;u1v+cu#
zB-HE17?~S8OsC&HPc0#>(tcX;hmQ|36>{4Me4)YzDUnvv)ggo;TK8NwYOUYiNN@Vw
z;>4!*bK|YFMbSM+$G9i`Ev&zXg4H7Y^MOwQDAgk@ey(?$kwnGPo71n{O6)r3f5=(Y
zphBMZU}p+oBsl-KD2z`j;B=oHJ%UQh=*sYHa`S<Qp)IL}8Q{RpH+MI;Kx!*^8$<*M
zJqj+iY+x;x`u^^CHUk8WWvgBqF}}IhFQ>=*$*FORnQ!I#bd%n%XKvsmYX0Lnpxk&R
ziXw_SKM)Bzjv_ug#ih$5KGU0H-ZgMFxMZl0E`bL=-17e$&vECI<Z-(<w!kK$)mCA<
zJwQ0VPF%{_H2eWN-8mKnMeWUF1$qSPuge&wQ2*vH!Eh2)gvaBlZIs-yZU4|!lk~CG
zc!2}@;4jx-jqyRImL(>>*#m*Hu_7o}NHxzG{6$g3L!n<8W9U65yEWo%`r#XE&-v82
zUn_t>Jqh59)(vkMJp#<5{+^H05XLvQZzJU%&poUYQ<0-GiGf!ZVJ3noqB}Ry`xwRt
zqexeVpA1h*ons(T=h`}4A3~Rv-4kBfVhPUQR|?Kj_6uDYAEd<*DJYIy^}&@H0)_dp
zA}Aa(66KsI6jAi%g-aVROP4n50uG&VJ*|Foafu_9`~PD%9i8=Uxy1%QWK%K2TGKhJ
z{6D}4gB}A_9QTtmfVeJUm_jc#=V!x7RI3P&H=d?Wb#(p2t0psf1*$qjF1p}eo-mN8
z@I$ZfGayhW?m^I<W#0=Q{k9#+x1|Bh-lo;Esik)x2|4kG{5^UZ<%3N1l>W&Afx-fR
z-L`?bu_Gvp^dpl2@Xp0=o%hZPOODVh<(uioKKjJ{|M4`fn>CRE*K_P(TQjY7>j`!O
zv}Z$pT@MQe(h*h!CEN0~A;S?AkrBO5&GGmNx7!QJZT4e=z8^Pa0B4i9SVViC@$&zp
z>&@e#e82zkOfxTIcrbP)Op9zG$-c~#q_R~)7)DCSHnQ)gMM}|zl(mHr$~s}jXtc<l
z?8_KsUuG=B*nf|?N3YjApWpZYnft!4>pIst&$B&`Es96OP1~DwI&vT<{P}}#n*LN4
zMv5?p9>=p~I_IX0<Zk`3muz;-(~w&1>0m{(s2w;c$O#X%IBW2Nr6QkS6(+2CO`BKN
zWmb)Bj3!?2Ip+HKPmj)AcP~rOU|ccO-8afiSwQ>R$^OKXI^&OH^2KqOcgtROR}1)n
z@=kd~G`F@G3z26;f}HRhHnw+3o6s04n)5c-lvY*f1nH^Q^|#+KzO$d&xW)6Y1EsM?
zIaJVYf)>gwwQ~p&{o-)423*Vn#iMaB-a8uT8~(n(%&R9|d;L}_XW5-S87~2emIgWD
z6M4>y|2s)fooMh!{LCG2?$!?Nro6*yvFeRYI&zgjXFw(7Ogy!~VPkxB$#WJ7)MXp6
zj^)i}Y&$WNFdeaHvfvPh3fgA={PZTYA$TJ3M>@Fi=O!T`J@E5Z8$0ODS8Sth+%(WW
z6AY=vj+=q3(r!hGc?q}<JhmCk5$zma-=plj<m(k`JaVo(?GNf#7(SI@1_DEW9zsOB
zGcLWZ8mYw&H=2Cj|7w3WAF*JB^YjwIyK5cK4b*!=4+y}?{+lNjfdLQSq!H1^emw7|
zeuHbVPkiSK8bH>4{tg9vvqg*3YuxAmyr+kyswOXF*s|UuhlqBkoqqkTsTOM(XWGg#
z^V(8-1*cc$K9AyU|E+fGJCR<`9*f+_9YYn6*m+1ti$kUFcVCr4F=@_)c5UNVWvzs{
z<g=pHmV$=1BE3Hl*m|fN#nMM_O;J3ZKQ5oj@w`htlZqbpr|DH?3m$G?TziJDj#Y2U
zUAxw*|7S_2Gp$qq_O>dus*sBQw204fhlRB!n??jARd$xotX|k~%K;Qok1QfuVJRr%
zI%`e)5z+3ycD)`<tHnb23g>=!UkvxxGmmr7*7NNUzjHELzS_0~Sc@FE7E930AOK+F
zIX|5IMsw#y-ya|+{OPvf%U5xs<w_nS7L|}n-I8hIzpG-QpBn}@ME+C^i#H=6O9!GA
zf`Sr~HhyH<TV$uVthk)S?5?`R2>k0^;lU<$Ku^|VmL*T&c&FvYq0;wyyh^2-WXNr1
zx)R*~{4-LQmb#q%1_bDr)F`n6H6zFamMnh;IpI4bP~W{y@mMde$ro;9^F_S+Y#zH&
zRyO{Ik$_R`VYg&+$52;R-<R$F1E3h|I~;2qSW6uX_P&a%)S#pdU9L!QA1GN|`FBxf
zEI_V$GmEvTBOEH|NnV7r#(`*s(1--<>UmN?q#in{`CGiA?yI>x!&TsH0y$LBN#>W7
z0T=l`$O%uB+Ht6B3sE;JV{59Os77QYl`=XAFXs46Ai$sYv2KnGM>`8Mm~p6}W8)+}
zT@86UqvbmK$nlcQ>#5C;Py6*RC%t*DEKC3{Bn487eG;@M6zHQm%7U4z9HbirXbd%^
zb$(zC6sV_KPUV}uUcUNUg4T#UEDQ*3EVvdsoCdqV(qkduTCAdWNJ*x!3R*ntqAy=1
z-}H0s!*9}zPAR7bY)BG3SIauWN`WRNpeuB8_~R7e-%g2Y^T<4gEFyZ6zomDc8(lG`
z*BBO7?wGX8eC^;S=>niNJ^A6}(m{_52x~JPP&}Q9zDC9?aB}IDhic_MzsMBt^(U_|
zu!xXZ&TGUA3qXnQx-gu~nB?%305}6=5YdygHp(?USPV4;ys)?i;`6jio7rFKtPr@d
zgBG{5cfNUR6JZ=G==vtE9+pR?0I9|1Yx<RBbE%+1uiALZ+%e)!)n`^%=^s9Sbh!DA
zRcN+r$_@@txG0?bCg}Wsov(lGqAUo5o@?ERIA0!AYToB#_4Gpy(0>UNg_BE}qzpCI
zvQDCSteHNqJcnbcJ?gF6tI4yqg?94~T{9jjhN^c2r;a`U^KAFQ98Yebz?yYgDB0ER
ze~jW@aN5B7iFm0-OTv1fd*p5>4`8Sa?h~XIYndu_l;tuVhty(kOKJ325yc8T1@p_&
zeZ5wZxAldeE3e)Nw#Xxx9cB0L3Bk!~oA7dgJkR6;il_6dQT3Y;Q8=05<$4>=LV4F;
zN_|zU-k440yCe2uA7Bx#aHyagUAS1Hl_A8Tg06FUAkv`}?M^*A=`kK>T5KH5bK>oM
zbUP(yUb|HdXx%%9;t{1L7yJX*0=xh7o=U!H?O@06UFp@tRZ(11I#ohKf=flq5D-Ha
zy06x~xDM2)-x7wCg+p6hU8qj@fTq%>0wqkCSy%i<)NMVyr%h_--2%YYVL(p!sOCUv
zfRp|l$O#{zx0K(u)zBeue2_1GeeEqDx_Xa6#(eqs?LRBK$f43F)@(xo(m@E8SHZV?
z`Vg9@v*}|;cYAbyJm+$T^2_^eoS5=RSMSuMd+fI<16{Aof4g3Zx(kXwlsQz;)d%tg
zkFz}O!nIwhnTw-(dU~~8LI78hGc1OBaG~qJ262V?r>#A?pRxH8o~aMk7izq(EMHOf
zYipupS&#a^bO%I%r5RdwMip_v5oZ&k#0r%8!ejq<oVVck&5zQSdgnqs0wxv&)oI;u
zr|WFV06}W8dipW{5nKod)w=rDIpNjK%Rde9#_!P%ADI+q%6d17u&fuXP!JgFiNb(u
zvH4njt}KPCC;}%lhBLh%MR3JXSESuiWr2nO5#;fefgY{$_4G%rk7UUfoUB6<l4jiv
z-|id#D!FraVi!dfqTM&|yH8>V+IEI-4tg!!s81*4mBpT@27bmmoJw<O#eNnL1~mPc
z-D}o4Mx3^lxkqZ+*_+L4;`Vjtt7IkOhp8v$qO*AcN9_!Xr?cTnkJ7)vh___J)mUM2
zY2+8-0A`)eKyUq5KTle!`Y&&cF24BF<cWIVr>~;K3d&S(MsRHb{jXmM<xAEmo=%K;
z-fcMD8zLC49Z-AR#Ec*C1)fH6&YY0K|7XGPX`@T3FRGwdUC@{A*e!Z^Y>)|K5=hM@
ziB}P44Q`j;OXPwhfUb+N?CK%bTkb}Q6_jTa0+(!1Je@9Q>mmI3AnJI6?uC{1k?*53
zyhn7L0fCnT<n?ww(11A3LYpZH@;Mef)^!<q?(<otn~!FEs}d9<83V?-m1m9u#Ek^5
z7^-dXffgYa3Ob00o}6~0^@p?0Y}e20$H3|{5k<~?@js_ibPqfC67!FJ$>sre?>LGl
zX=U6a91t&i6pwXn=F7BwpRtUFiV8F2k<F(A$f7)3szyB8y5I8UCD2y&y>+|Rv0~Q$
zSvrIKYQSz)84*2Mog;h`%5sN<S5m%NE^3t%oL#TTeq*wSyv#ysu^%P7|6?JUH5an9
zl#R~2*5|KQ8PVA@gM3byGY18F6A1-*Cjh?RmYY#xP0PR(n<4HPYDmz}Q1?wpEp}a_
z)M*cnuYaR(HXW8Jzt-0;bzfCK0oXn)hYI@b9lR3|GI<7a!ViAE+w)zJ+^#-bv9dn=
zoF*}Uvr9By=CJ<?m$*aNyFc$bY{Q|_H=CAC1XQCB3ju~Vg<=FaRL}xevH$R2Ecf+K
zG2c8dzg)A9fgaI!{`YNie1ZNfYkZYM1x^2T!gKg8_1cRd`}H`<UF%C9z4MkIsooth
zm(ZR4d{bwl;;bLQO810?(uTAq0bb^o_fcYA=lO!Y&#(}vw0l1SRBh|)Nlu?r?3&3c
z?d05*4)oa~ilW2{AbjD9f0`n{x!i@h3z9807b<KcCO-S;M;0s)YJ9yy>s!82E0l!#
z0giZ<-yR+bwgXyeR+JFYFPMS@Is&j5s=$z~b_~f#v?`A#HJp#ZQokhskqs!z3atmD
zZn97mkYqXbvguPT*1w5RP~hzlXuvHg2`k6ey$tO1PZ&$wvDKyM&K&mu#y~w|f%PHt
zAlfNeM6_{?`#1vBJl(77zryu|Syiy6=w4O`J#vh_izXZ@=wTzsG|Qww|LWAWe}IV?
z)iTuGdt7*#;hfa*@2g}H(cFwdD`4dP9+n$Z^R+T5TNqA$!zc}b<GLrkwMS%%l;idu
z_ILa~q9=aC<m|3LecKveF8@a}qcq6>a^!I>R?WQn<p4$(KmQch2@d8Fy6}Z>X7jkA
z^<68Ll6SlTa>Cz88$TnBib9owobX)w0|edtC^4n{!uDU#FrPZ3yl}cn#jKm^#^UYu
z=C8Y6o&nzQG)m0thxtWsATs?0{2yn-HU5hwZUL927Cd{#MBRyY_0liRfqlz}5-Tt@
z4<oS7IRF2=X^&V>V9(%b&+wAhlau$8y}Nva0#medZ?S1j`c{56jy8r@ZnBBIzkyOC
z1@F&~UEtzSNpa8EhocqX_t~S{hY}*IXIAbN2;^^LNIMF0!XGWLg2~Yb%bXQ?>wlC6
zEaq?exiTHUJ(Ax>3MRB45v_3b0&Lpeap9ZmsD^QNY@Th^+!RBDG2;!{#?w|DB~~yp
z-r2Ppskib(<c{;W?do7(AWuARXVB-d<i8)ha2mzaDRZh`XdiuzsA$2N^%{8aS~e$a
zSJ9De9CTZ4r*b)@(V302vE(AZ{M5+R>SdVE=|Yp(zj;h6A+^})w8ELVz3*Myru=Ly
zE3F;g`+QMBg>U2Hg^wLa@pM8SCzTjy%o`w^Qy5<YMxF0g=xi<quE2bzE5!W_{vzON
z<cgs_FD|p#gPW9Oo_U#(%cxiC(iC%vli&L{Qx}9Qh6>xAcz*TZd#}-nj#1~kyVvMd
zfpPca7CZ$+w(+C2Lu079yGl=D<gnB=x4SoTJCrN2zZ$G<SA_rmT*TomW+vA+q=m1W
z#f)H^m;Wd~(`fgOaUV9#l>6()r{odQ#^2p%@c{1fr`Mi1W;vO}5FZ+H=$7CAmpHry
zIpN<vIcFV$bGJgbu2da5cT*~5H7@fJdEDp<=ii^uBFVwR&pA)-!gN<Y<(`nUgw;1W
zM7Eu%A^gqF2Ds*V!7Cxi>$9KQ++!NfFEBTH2d+B?RlCP*KZo-uo=)kfNu?Hp9ob%H
z{O2r-Mj9u*Tt}U^hPnO6<Ay@<B<*N_JPe(Z>IwbQpmE{xa|WSN)n$D>ja*ruTy|!g
z;IMorv+z(OICD0)a8WNk*QG{WY9r#--dx<@9|6!Iq(6eS!E_lz6(Q$~iGd+KgQs<P
zJ&bks=53?Z{gc&MIEY<N9bEt(+vF`X^?*{j?ft?aC%pWZcXb~iBAzLh=GQuw%(5GU
zrbqP5;}xeW|0WEKiV|y5Lk)h*q~4^Zu4fTPEf|NG?V-q-Bikef{6z##elY#3vJ~nU
z@e`$&V{^~U+8cAOzLc$8{zqcuSdMd7RgOQXcL~|KOiqxS%Q@3g<<}Z|GX8$qOhpTP
z+flHvjQ3L!dHcbM;q;sXM~r`te0rd2T>Z~a^S{602UiUBN4M?A!#IB(Ynkua@-~Zo
zTANFQblj(`f^GDBEl;Dw3gp~YpCafvIuy+5D~WF#DTS59TUvSBm^!b(;bdo2x${N9
z|CUY9z0%$0LW~&2O<x+#JG@O8&Y^gc_$eJ!aJ12#=G6I)Gy959cy7>f%C}$S-Ppz}
zxPwCl9ko|>?_-jb)TZ;xu-wPa*}NvfPM!N7oy^_FKMX&P;t_S?xfiql{V08=jT2)H
zd~p-zgGR`eqfI83$N%1neb5-{K9ggx58#No!A`+p3&x>J$6xm^8d$>q-raACi0FDf
zj@7S%T~#gyqvlo}g2`{j7Q)Ln=82hv*{gZ`wyn?<#gp`4;L9Tjv1sA4+^3w}j;c$H
z_D4qV)VFQ$`zW!3OW59oz4S5eyxe;Y=a1@mesR~Bi72`socH+eJ!UuHl^G<1(rv=L
z?qPFt)sTTpcfRi-=5CYTKPXHGoQSN%=YBhMu9yYfBsy;@ZQI^>kP}{#gFq++y)rtf
z?0~g>iOo%OW*y2-gH_wm1lRk2e}kVQB6{-qckW3+mVML<wy7{%e;2*tB_Z+GRU>V&
zB}s!K1;ivJ^u1?#+lDO?-i6JPp2`I14ZYlUGZMICsPff2N|14+2AN3f(-#v<8jVE>
zE?4}n>~W_Y{QJlGB5-nPNY(R6o54XkuGl-=_eV_b<IkMwYo5(*@3-kF*^4M1YdZbu
zz<rXbdtu=LIpdy@U8<D#;hVmV_ZyV{zR8FT7UDSjRLFSnje&BS{ygLK{@gPnn>~c2
zFT3-vZQHw>ASe7kA3QDJk(4{o7N^fARx~=>i3*1b%cg8InFkQjlXsh6DDZdr({H!^
zV}3^BT>JZtkG=yHk*?m-Ne{MBx0321wOHj&dNVjqfj-|($=Q3*J>#oX;mU+hLio+U
zpIyT8iUztT-W7r(4A9jA6*+C@L9V@XMBcAXe=jbBb(J^_&O5<z;%m|P@yNEM!!riu
zo0B-|`mry$JliC5i$kO2nBypJI-57GD{0U7eVxdKe08*7$To&cd+r!&Mb_MLkWpOU
z`;}{4wis|0uSxLl+ni{NZ6Cq1Lwdy>Zc^X?Cd?;%#WyGQ5bZ{=1s_amihSYFHmcw=
za5y>Pu(aAq0cN)WWv1Snv-p(Jps0Jn-J^D;fAehOZh@TexA2KxZ%A=Fd)Ht->)+w#
zlFy2~MklNsWS(ymI3unYY8+_R81#$VFQN)neO-3aZ^Lz>hPw0Dt5C=`5kjMQteHC!
z(hV}^#fQwqbx+^uP{yU}G8ua=m&pA6TUVCPC0pKTyC3_DOrcprol|q#%r7qY>E(Y^
zKe|o-{M!OAX5`pR?RRNf3FWe_1~+}2-mLN)`|Q&azKsk0=^;e4LU72nW_j#<h4_l_
zahvS@^!!!*1phSkZA{2+kXo!;c>aJBZYOz_64`5az%^Wmb!TIh#q$56r3IoQ-<5Yv
zFC91>x^5cIlX<9p*_YV6gzRlQRkaQM{Yg}wfs5_dTC4d;gQqjj4f+N~x-NWk<sw`E
zJ?R1d>{*nUmy?5o>7XpmP~3%~a;xZq(O}}&2p^#$%r<l@!ZOZ>PbmHt5|fbl=vtFA
zRICp(c`@7LuVX#BCzr5I$ALIh(4Y&(RtMjEOiBPB&ChI^-mF-nr+qKjKmFIkQLGE4
zDD{5vIY0AfDor$<Va+m=URMJGwjsbqXbknaPnmH&L^7C)%V{$o^X7Ff4L0X1S*vK3
z{2M48Kt$)c^@Nzp(HmEl1XCE+g9|mCdh<Ul<nCPc+;*E%qQnZc+;vLr947}%+pey8
zM*7O;g?mtU-7(@VUH#rF@z<j->_bH7U1{m@I6gR<SG`|zvXT_3%WOOt?ZUUs&|F0E
zB#Cv+sc}tdRjt13_MQmkb*`z@pg6Sozy5n%fopb@SV5|9yQLDYMkZ20ZL*TY(u2Xx
z(P-6D<!xvpHcG5O`M$_rx(hDzQ6~3@=``!Pu_7rUSZ37ZHk<G#H_RuGrFGmsUn~Ub
ze7A;fd8Dw7>)LNGB6<>3XACttJ6If;nzZju(MU?RSMs22)i#CsCmGyxfL>c*l*McE
z=sClF@Mn#nPMK%Lg@wPb5d#`Sok%V<6BlL<d~aUTyH(_9G<egO(z<-N<U!MqtJ@Ti
z6vzo5A!~b+lm`yj)3q^^><v$O182_th&3`Yaxk3X-ewX?qQsOIf`qI~NDE)RP56)7
z6z`|MFe*@3={c+W_o2xmqVuq0wqB<kU9XINT5fxNRSukGhP+gl2!X+VsQ<sd!v}1o
zSAEnF>f9Jd8dt?^F3iZp?WEOj`;3$*F{Qp!LO+k-ybrD3`g!OPX}Ns!g;Zxt(W;@&
zU+4TGO03{Bx!o3u8(s3$^Q6B%q4m_cuwwKEKeAwNZ9)O`ucH<-Lh)$uKJ*qGvmeYV
z-Q25eECX<mgrBt9rsQ)Vwb-27`Q`x7WjPvtT2B*1k*Z()x3Oa1;Eti*;5!wp$bYfS
z|IzzHsi@KTb$#MIH4&}Q^Y@)kgvC&8wJ&;p7Gw@R=58B4Yo$M0R_;OB^r-sqf5scx
zpm;{lBU&DkItb$C61wLc63qr5-*(v}*3;Rd>G`+I2ZSJAAf6=&jvX5u@kbhq9=G|p
zpPukWN}O@iA{2juknsP9ijzsLAcOsPlv9wV4v807m(RDP60-$u?4cfg>%VV2xVe#Z
zfrUJjPEw_T%Wcb{f_68``|u3JSB>5LIWBXcG4qhV3t3SmyHK8uOs!b=-i5MqH9O`t
zh*CkbxTL(}Hvb=5-m59o#|H~R$gn}<)8;`U>FU2q`Mm5Ft$jAxb0MMk<>)^$?WNL|
z%#31QgJ{VNJ{>*}DPLY9P!2LJ3MZFFe$l>vkp3f6w3*0Af1EadXh3V+E5t3lq?Jwb
z3<V2m9u1?<eIC`+eJ%2AX<;F%&0643&dFV@F95t@G#F=EY$3&X7dg;ZPNP#&`q`5(
z98GXd@#-rh;YnKRuSM`f1@kB4@5gDuC_vmq9$bsHyl?Y_1E3ep;S1}izCzu#dS~&U
z6yjsH{)Mytf8FtvB6ec%uHB*s&k-MXY{`K`1?>=7*{Sf}pZ29G`4Hnn^NRI=Z%xa$
zvxLs%CP3$tW+7MeH&b67-wBEgni~Bob%O@{*B<1AuNcYiJqxPF1cvXFLE52<=X^KB
zPQ6vYr~tcu%(1(}P=?RM$Ly3M{lje+rt%Gbr69FGv88W_r{`XgTE0<ZMN*!x&|TK!
zNRj$$H+L5v)?<%N`~}r5^KEpyDWi4Zwa6GaHJ%p6)HI+wv(EJGITVleub+%PMj5_G
zbesp(a^j;pXh4j|XQV)2%hSo2C)ZMRR!!qLVbH$!D>}P4J%MZiR2C7<ttlkkE=|u<
z>r}_WN(@JlMwCkbOZJ_KY}$WP9=L3}H)JNITwClYqGdUAnlpN-`WlD`2%{x;3^iA>
zdSpLz&u;yonyM$_n%q4v=T%j#yfOTj#;&nN)&?9P)x&tSoUJKvbpQLgkD)~--C4la
z*r0esgSD^a84k8e<YlesJkH)U-RUwE*c?U{tdz_d{`7;5Y=V+W8<~W3{I7Taq?MJ8
zLBj$+3o92d#RGCN*bH*gOakHHAdPp#p5)S9xF$;Ue1oz1?PnGH*e7oRx?{u}zA-cZ
zBKT*|8{e*=*}<l)tL^|3mh5R1kM)m|pFK{vn`F+W>h;vP{6?tXhFQw!lBehF@M|?-
z7wOk=k6IsjA6mVl%4bvQ2c8MJI#a*C&K|qKjExeTQ5M?3p|0Z8daaqSavr4iBXw!1
z%94GLf`6B>VbKHV8Xc#sws@<wwY?tM|LuY&U_<`!^z_QppKw;s(0iVdq`8~BLW9ih
z3Z=u@Q92}7ACtZ$9$MBjmeM;g_ajr(K9s%qAdnOOR~=Iu#{=SwUi6PBBkcFM3`%!c
z!!?=bHXe4fV^=Mn1bf+rhF><f6!!;P>4sYGzgfx!m`!;^w1WTj39mfT&E7=Q)QB55
zJuZW+`+ac-3i1P=5TS6y*^hwNd%4*{+#jqR$t<5UHUpB=hYO;_ywLlU5iKPo248r+
zP1$LjvLeCN^*6Tdav7UP{*)X*6Fhh6S|MLk_}7h0f}GJc0GGJlj1nt=S^PAp2WwYr
zO@3N#+vD;=h&e%!lG?rNTKDbOK*sj1m1C1dIkS;rDtSN~>6|xTT$W21VCN?LS%ANM
z?hL4rOZUU%BR5rt-ruvW4wNcd(WBN!BUe3S*z$kUvF6LJh{X^x=L>PGNSVgN`2cmC
zry!hM>iKfT?E#6_xvZ10nMGAyXs<`^zw6#8@tPkf+`x`z*_lf|`$6AXGB>Rq8B;@1
zwHuwzV%;8-<0u{tuA|<2TW+Cb_$sEFmMkL*Jc;YH{I#{W6v56~h!=p9#;Qq=73a-&
z1)0v9H$M-Yib4|SsT<8d?g3i+JckO}m@_Zm3hL2aJiAcS*&bHX_+yoCW^-ulQL7dD
z*mL0c?tv3M?SFfhxNiKW_Zmf_TMe@;frs0mcsf-xA<)-C_~{(v(a4OFUwl%`#}vV&
zxr#Die9wZ-U|Qq+6>OuFqdsxW1UZz`oK!T-dUpVa3c6S3UG*G<ShDbPBt9XaDquKa
zBMm=Clayeg0~qdebKgkwOZ7-UEq{9LgUa-GL$J03z*EgpJe^2m1^!d}-_Mg4mzp9h
z=I<EmM7Vr*k@j&@x|Ro&eNw<8UMb@)N3Lj<G=$Anuc#Yx|Jx&Q?PPxIV@RTx&9mV!
zw>IyAz;5~&wyra-2S}JUg67lG^xK;aQwJ8}t!R555{nitdlKI-0A{`pT#K!9RW!*c
z1R)(5mYEktaE1M$<1OE)MBX;G$C<$gO07m&{gX88LC0xr7Ol1v=-+P<0B<#?77&vs
z@g_I}GN-aF_F7_bmT7g>!b|f0JKw9Y7l2x|X`yG!ziC-!$Qsp(U|f?FhXWzpP^VBH
zm<Wj4Dkg)EJt1W!bp&o4861g!5ikWs`!_>U50sccDdAy**wc=KcQK*bqXNw7SDlQb
zy50x>mrwBxS3@_}xWFJg99hil3pWTguDtTom@S>m{+{#@*--)J!Vn*G*3`4|)q+9P
z4%}5pEw(YF_W`OIlq$9R;pCVb#aM)}`uV0#NLnU@?Ydt9pNzlnu-Q_s8|TYa<<f!l
z=q>j@@?>6;t;(uFPWa6P`X(60-xbPyGe1I9?Bw`K6m8Jy=C67fYM9Kro(ZT?nLteO
z5R7l=KFGN2kZZg28=y|`+g?O;eWsT=h`^;=ak*V?XJK6sPkz{>?`W0(d>V|<*usuu
zlE7f?NaVP6V#K?-QSX7p$f5~%L9u5^0$WyXixkv}yRT}-C7AD30xe=O-#g-Z=c^Be
z{A{*CW3YCl>bMI{yKqj%dtgxqnLl8D?ONURYZwR&{Vf6~52r<~bD5lR^z-}e8yG1|
zdsH&lPtlu)xtA5D{9LGF$L#$S=tDKBQW(Fh!_9qF)9LC#=SQ>K19c7;vP0RIVKLM%
zzh_NBI0y@jZ}bj4UUIZup2_A-3!)SU{zE+Z6p%V+ZodunA5E0gw##kmp{uFs7MMln
z*CDJui8+9Xjy(!1g+I$6O-w78Nj`hL9%SpwA+f1tu9a#||HQb?&KWrVnvv0o6nAUn
z>xL2{CyD0%DhkSM_pcuoL#;@d(*~(PHt1c=`}dqzD5Pq{qebWE&H}-FA^DbNWlxu;
zmDTT3h26chHLKbtOoR29^lM-sM$A@KEdQ95<HEPGq$G!w^_1KwcWVbVUG2W<t}38!
z3%Up6IICJtaQ{LHE*lZn3?G@)sop!ww3w4%2Yq*OsPtX=S#<{`i_^Okn69xj9UPw<
zK!b)|sx#u{ndbKQlm+VI?g`?DKVVE!BW`fI2jD(8H^|Klojd%$(QvN&$}G=m&1HUS
zlwrn^q!iLza8vm{@^B#=7ZeJJ?UGooyNQXXYg&+-C07>nMt*VsxxG$!eT3}|6d2dU
z2gAC?A?P(9X<bz=2Dgll!+=}-kW@q6i6JaKhVmUz3k#X$j6N9+s|b2}=6{nYT=(~5
z8}BLXN!<@kQCl@lt+owKaa(53HDh9MqI@$|Q*p)nbwB;2Z}bin{UR-HrrzIV+v`8c
zaqtnC--f}8k!V#thxQFp$*#iG%>~q#*qRRDJMN)Im(Hd~u2vfc1?5nm;yT}T6N{cI
z7^Q;$w?dfY1JO2GR=rBBQPGYeJ>ZLs^z-|TZ<_<i-rqVnw$Cr6X-(2@>XtoKq1P7X
zRUhC0pbHDu+hXzrT^$Ao^0~8lO?)2n?xQoDlL8`=oaU2o5&&T$ku=57@Q+xve8`!2
zgy>Jn9>S=~1Gt#YpL%v39JiN_iQlNbq#Z~4Dw_K77pd%WLtPTE*;Y7eD>ePyifxKf
z!WpF$q~~VKfNh~sI8fr@3v$Abyqi9ep@M7O{|ZA``W5%n2dsa16w^Vo?d^g%0tBBi
zhu)9UXB245*pxd@&uB+xe$7hiFd|<43EZ4~emJ@G>eJnO=`dWlL8#8AeP@k!9BKS!
zVWrD_l{HVDGVmSxxW>>lqT|3%&3KsvKk&>zSZKKQ%Q#?#@lj$*@s;*mM-eSrW2<)Q
z2J5|_e~!zntvr%i&V<3xYh^%|7{^(z7~1?U63Xy6-%!|r7N5TcP+~$$*xfMK?vc_V
zR{DYEQl0Q=%wb~H!pkO_rQZX<TzP_uJ2sp6uEZ>!-T3|^e!2N_Y5(07>Hj<g!Ba}~
zJ6|Itr@!T;agU^~H5i*qrxRd+ZyZg^q~4_1EeFR}yMjcOH5=odV|-%Y-q^tb66T7b
z%I_|-$`fXGgs0yNpj$Rqx)7;E7uvhU=RY+$K;Q}fpa@Ebu?V5}rt))AcR6u+IoxjI
zBQJZl;4yG5_Sip}JRmLzFAuFch&tXHS3NPl7EFE7;XqmbP{!rr?FOi3`S%mcZ(JH9
zo)|eC#kr|&EK)^hnnT>WfY8RD;``2nEz2~53uVQ;mA7VM92yqh{bnN<-!o&hE`T_D
zm!ufKKJ*(WCmFy28PU@_TW9zd;6RQ!h=`6==V!oANz=#TEVFsj#OSi`Uh_4Fjz)`0
z8LI_N0-N}Yg+s$HcgyGvI>A`p#sdt$I(ueaqzIh+Q3!hB01H-Sn<4j(B;)6D&BS%x
zYQF3ewvV-CZFML_oz{(|uDK;3J3p0eewLP!*d^gcYtL2%K0*l*9jm{W!9P|=@|Ifn
z>3Z_vQv`NXR0nBVSS?r%)MFl%!!C{V>L71@6;#YZ$w>Bx2AMzUyh&i&#&aMi{43Pj
zV^lpv8wnqr7*3B1*0i!TVtMf%{gpYx)|rbebaWC&-hU^eXu>_s`4U7MsX!Jidk~nG
z#=6tbqQnZ`<K&W1G*BwV+rK-N#vOXbsw=s80PivRa)8qlNNu~CI8F{cNIDc!ZglY?
z&P~-}wWVzMfjyr(I|}?&5Kfjb|I*1-V&m9ZBii(0wd}o%^KJhPST*L|@=VLOvo8vd
z6ZjFR3`J0&o@%Gm3E0L|+Wb#N&yRfz>;f_F80z=5^a(B#TSxND*L58OdZY`pR>EcZ
zm+BMZC&Hs093U9fFXHBMymh!5v+YE%#yesKF1AL5tz*SGRL~k{91Jp2K?>=WtG{t_
zW}}ZF+UMLxM|;cWSK5Su+QhCRm&>Ed3-{OH=j@CIUo6?HPZ+%ti71pyXQ31UIJwmA
zdC1<wmvA<dk)!t|F@rq`))Hbp8r1O+pdRml;Kj8DPZ#Fhw{4pTnW_tIvB*KAhccC1
zhk&xAC;V`->B+`WXvyh8Yxe?JM6{KI(cq0>nL<iwnW<=+18c+Il8Bjv&Ug4v#d1WF
z(MUSW0pcb!JOzN7r!bsc>R+_7uO*)}_NbNij_I*RE`d?he$oC(U-K;YWdIZ5P9f-H
z+<8qeRs-T+GeM($i;1I4o~N-~7a#wX9^oo6aCH4mAEoIdHy+vEmH<4OQQY)2p6+)n
zY6tEHINIn=<osq=B_C2JPdjpOvvs$e(!1&5iSM~jqcTriJOhUCm<mBfz#?bw#hifi
z3!iv7boC%%X&_XZE9c3P@#HIyO{jq#YkvGD&-(hbmb6BzFojh|hxM0IXsfGFwWMak
z(=2cHTd3W2_hAy>$3K+u!zRoB>EdYj`YfQCk7C|yB%NM=%<S$tP^~_vS{z`a>#5AH
zfBb2e@y4^hJUgrrBFlv%HjXOxsO1e*MlG?y4uc;~ZvWa^3IB$2q<!cwzfU-DH~qco
z5$Kv9b?JD}^P0G9FbE92fOcFP$y|@d{QmLe7RlKFsqSO!`*}&W4Jbr@45`IR2V$nd
z`m*mC^e>Yq!{qO#7n>e|@`#1j&2>Perd}ce<B<yHP1mH?_J!K}2ndK3jU;HRQF_@?
zHwS(=nE}hwkbYP|y4P{r8diBYQwq<WKH+Q{?qD}NRaYQ5K6Cx5S=0{PHCTgZ@*3vV
zCV`%3VmrJUHXEP&Q8}4i;lQkn5}Tn3MHobpHbtL(2uDK$f2`D1(z|(6nC%ZZJ9};d
z4uulP$V@UMpeEx};i0+&DalJe+xsn(BuFpVUo#*GCo|IW0}noYPol#jPtA<dKFREv
zIki4AQ6ph5!9@$mVtok=+R&@TI4N~Qd_~#K-jep>M>S#oA|yb{f(>b;_9CKJp@>bB
zjEgwry9l{_shUQ0=&ktA`IPFSu2d^37z)=E#g#p|lWxa+pLhB?h_WYgx#rhu(;G$^
zd(0s~eEt@80-=YqPSi{2YaTinX4v*MvV6{EMkHxq_Uacf^ymf0jizypxQ(jVQ`bRM
zH^cm|0qTAf6-{7AG`Trc`fMD7<#0d16_m-vk5Rux4rCt;TfL>wF=c1lBbn#Gk`n}6
zAH1~oN$NmInQ~YUb=Pj4IFFpnadkEteINiQtDPCZgMYxsre?yzn)+{VK23LBPSRj3
zGv-{({3OjUTdNwg)a`MEZo;?JK><PoLuz?EkgveK*5R@VfF{pYMu`;!=-3I!o<RK8
zyqU#!YQe>?jp*5Doj8?d@r{_v`q={7vAH$T$c4`@`P79B3O%-C1~V`p5GoC<=50)r
zSi!yrhhd-u5zUTPk+frpW9AcC65urZ!{4U!6vFQ(@8JOPLn<mNpHr5@zxkjM0>b!f
zUAOBO8)EVGV(gNnpQb1tYmGDBClKB^0~y{vl}zuK$if!^aJ*M-_7}n`k{S^iOnaNV
z9~DJPhNw%TCy|Gw!)<uX_dV}DGTdOlSjg6yMIa~q_p&dw&<kc6jIIKX%bTj>>HVe~
zI5!PXy{Zq_R};BdDtieM7g)A=^|QG_%rD!A1te$F@GK9B?p2*wes)C4n=6JIV%)JR
z@a;V7x;}V?OrMFTU6ll{sHbm!$raVB*jvB<!Z|QB#mtdfunQx#Ds7GX2|4M#GCyuR
zMPqY>3xJ&P2YRkN2Fo9KKTXdPKN+sXNdMJ{)UDWi=!`<i<zyHK2pnSMxYR1KsW<A7
zz0Lz3a9FaXP3<3G2cByM;pET7>H;_qu)0*p=*qeD#zD>yX<hZzf>h7mqHa~;<54?s
zOWe2O*NLSg!&se2msK9H17`Wt>Wj%Gc23|NhYI@T165BDOr*;X>$&+Ty=m}kh%~x8
ztmZ`?=N-F)YC%aybXgcj9zHV^If+-+sT<u(pZg&*SrHhd%Faw3=1@VC$6zK1e_SB%
zyNZBXnR({2gK+tM!j+N5*&N!F5%Z`WI0W45^2)b&I;ma7{6TKxf|B#oEr2`i0j|Y%
zmz>`V-i>%4usP=*jeLDYRGm$*EgIb2-Ccsa1`7}zg1fuJ!7V_5V8LC2yTifV-QC?C
z&O84dyvbebPI}OT{(9BdRlQ4gmz?#!UJxvt|A?~h0#;-FB?bQL9XI89XZU4oi1C&{
zs`~)HN1mFucV|#wCyi*P-HVLVKK?Fol`yxpxX^B<fQ!sd<CC9L-jDs!W`U4)F0^{Z
z0+kVRn>Fv~IzG~W44{pP5>=3PoXVEI=}SI15BWNJy8ht=E!#Ij6xLBrHy*FxJ?lT-
zd!R0#n-gG<cPTRF_l#)pj=xOkP@BJZ<>JH+B}nL0i&T1?nkoy<JQ(mqNv{OQK&M-p
zGZ6~Jr!jOIo;Pj)7gJ#HaTN+U&78HJJI0U2FwNIjui-ywu9Byq;MK$bE6iDMSfI!Z
zLBDsCcdfjWwTnFawY&dgXWsIy+9Mc#ej7WKS6?m0E9OU6hsSWoX;bOFQr1FN4g~e}
zH6ZElk2;MyW{2Rn_~wt?t~e#}vOmwG5vmy3q+5S@nFP|>VbIYK=xI4(Rxk!L5fq3U
zxhja5B{nfd8W%L3GMe_<$93?CJ9z|@m4^Z<UPp)c@TDzHUpMJ>4$q}D^x{#^iVfY~
z>y9P$v+CvAnVFHhf*0oS%An-GPa*Y<IQldkqGdPsBv;X{o*@g%VZXz-f34f$(O)jW
zawO>XRELFO#cb2w-OPI`tVy`xYK91E(Gh)`_z_7nYD|wkg$XBg3&9wIC)Mae$tbMv
zBZA@2s{h_+2l&~81!8?;golG)r$$=x)N$0=hW`#UYE=gf3N6T{O`=j$!GNI%9NEuj
zxYV(Oyl6wWt+)<5P-*7;%h%ouS;|J>)@Ge&=guT*CabnSRHp#XfiQ8`)GR6Ke&%=q
zwxbaZGK`ikI0E41o?_^!RKsM)oSe-(<R5^@nTW}q`Nylx?Nw|=L>(J}Vg10hsLS2}
zan-NHL6Sao-dd?JgUwm0jt&M7TxdDDp&9<}c$F|Z%+~Q(F(=SpnCI^^HYLg^GQvct
zbO@%O_Y~jz9v+HPF&X>@{rNs)V@b<VrVOWD{!-)aXqTiN6sgNbJhK~JuoZjQQt`eM
zaURu^Hn%tdJx?d%^X;Q-NYE)GSbxL(myz9bv_%-W%X;vi#CiPoUqdCl8|4h=+g#n{
zT}Fuzn=D(HyEFVO+T=tse4fVq(+!k`RF|w30hvS0i0)tJiLNj(#Pt#3a0==1e{;wS
z8S32Qf35pEF*OG^o@r{EUsMbA(GBF}sV|=PJ&A^zW%Gm>L^}m{TVAa{PeigR648H{
z86)Ch=mU+A{+$n=Z3k~a&Nt3C`9gCW=f)uSl1PSmV+1%YAlg1Qur@I}A(Q>+M0c^6
z{$6wKoeaWB6-({<l+j|p5B@L$_Lvp2Dn-2RI;iDS;ORQrTk+)xrs6+ml4O&r?Wu_4
zHHH8D67+y(WH`yihBvogjltQ@EH)oYUni67B!<1!Fg+Mc(n8@hgltjJ#HNn+Lw;AJ
z_Jw|<SYURAuHp2H;A$gc)xhkqn;<$LObC2p&T;s9Xr82bW3JV{RIRw|g1d$N1Vqt;
z2qPj5GC|sR9Rg<Wgi$Rvn6JDAKRv&q8*o0F3x0Wz*JTF5{WZo$fPR^O9_cYYkauBT
z|AU1mu8DeMsEHDrgDM6t|1?#R$#Sn}GZ+`LJ(>3jz|g`60ybNk_q@d7xdi)*5o7as
zq(9^%dWVpm2^an3A#K=BB2#V;8dYadhMLlUKz+*92*P*h)zTRK-V{9PW^uoJ4Gc!v
z?S5OxE-Ij4m3>&jebxjYlfWZm)_AUSs|UZ*!O|bsMS<%Bf~>|n1`o=X7Kp$5LzrQK
zIu`70>FlEkaBsT|Jh0lC%`Yy>#pFj1pNAfSc4+HnVY>*-t}g6x5+~wy9RreCM-<J;
zQ^LtmzEN<$=Zq7oxRurpKVMY<Qb^dT=!`yV^rkavz}8F16Ag|M>WRMg#W8mz?V9o5
zdC%s0*Pfrz&^RH&?<X{xzB}7cQ96#NYzw2$1Ujiow)~lJ&vWGwhMhE$DF#PHJQ8X!
z{bhgv75OJy!XRDAW`ttgdC7phe>b;ZT6cNmP_;lN(pt7r^!g`%zAt(<K?Fs#Xg^(q
zvAYoRm)IP_@a##Hv;F+tpx>!!zUA_(Qi2+sLtYJ~!X+oV#2hh@`P8>1!W1e^FT8=B
ztDmL@4EZTb!VmbMUE)$Z(|RZG3PRiJ8^p?LF%@7K|LAcgiEFVU(K%nirog4op2Wj}
zX7kwo^`h?{T;0Izw9e}0)#i<mif2D%*RE7s9`o}uo70{Bw**6<gR%P?p+&}}t}J^2
zK4Ej~Oqs3Zb@4!6@r)mjE<P0hj_rWHR<|pZsp;w%l5HkCvW~|bnv_y~OU3tNGI$a7
zZ%!)EIe39zCL{DKIhNbuR<5|jxo~^hzeb`S?<8-2yU$&jx&<HqH~lS!!0zn+31$tW
za|_|q(*gN8`!95*`3qha<*PO(>1Zyjq{tuE9N*Guq*m>^a?d8p<csW+40??9FHNYf
z!pC8dYs$F*W0d)4qWk)5Px0S;(C(^^Mf9{l92b`Trz~N6@>fU*HfLv#=rtXF3IPEO
zP4(gy+!7^@0?LEON+t17SpeYm@837DqJ?dgdfbIzTZ@2`n$$hb=sFZsocUli9`<jD
z?w^mubLt*&H-q{s_?{cY>1R<olf{=!XlN<sjt(bUbM(1F6rR8fkkIM*f?-j$V9Ak$
znaeOa*&`5STbrX`$JGNRp$}L-864}6b`_>8d62rn5Y=aYBtkLtXhXVhOrtGe?&<iK
z9+3rDVMz<1{=F$zkE@!mMN8faozwBbdO|TGli<pXt@DX8{-A#2|20TFN$+UzJ!QiW
zF57z%^ZBCHJx~hRXL4AM9zSM~@}o`kL*Z81>yL|%uCFJqzT1eJsEa*yc}scgFJYrE
zq*8NgauiY*-3KmPCMtWfef1|7&aRhE7IRY*8&WnRi~jtnJlrNpJJ3IBa4LO7ABQ)r
zCQv<&(oP64O0h?GOt)JNqmMt%8w~>IO<bYU%UVJUccfm|Q-7+O!oBMCY7l#nvMs1%
zd{QL{uoz>P`zsB5#ls~v7xsq{=#FpsIRK8EnrS_T1ystm=ydZTTQ#<lS>WkP(*5(`
zDJN}qNV{Y_BS;Dc<xxCIdz*kqDe_M!=f5sE5}A)}Z-r0+2>wfIBX(pwCC9(Xt51f!
zGbIW$b(;a?Z(pzQojS+C|Im6TrI(L;Ke3TY)&Kj#DSpcc`pgnDQSntH&mXx5-Di3R
z-r6|QAm494fs6K^tG@TI-EY?XKTE#W76Ef=#Y-&<j!0TeAo=(;_~g{lXD~w*n8(n#
z%U_+@!tWD^gs)wb+RBBhEGY#21VE5QEgXpEXfsvQ-!s2&z8fT6H2QuvvE7<1d?zO1
zrM9%3-(l-B(t0+_+*T3aYHZdV_z3ko?MQlLZkUcI!-Jwnv|)Fo_IdDKRPsbB^pO0D
zE32I4_cyn^*?WBb(;gh@VZ^6%XlPxnH<*g;7d6LIRQ|7a!x=cc94(QQ7yNSsZK14u
z^Ppc6#)+w>iz+&fBO<u36m~=%&>JE4WccpLqBALlR1kmFDkAYTVw*ox+5NG6xOM4q
zGuQf=^rsSvO@Its9KrwX2qq{1UWn-_ONELlHEVr|61Ddm^X9<l_{%g;dQ`NJ17^O~
zg^9{|_Khz|yv^In*VyX6kT-&=3UJ%o@cQYKT3H4Tl@%o=pmI~0$gSldSM*avcpu7-
zrumVKH%&H>%y6BJotWuN_Q@1)`$dW(u@)IDp?9cKlZP5D_o4wR@;Dadnb`a$&egk7
zWz7I1UKaBi%gPK^U?KsBd#%dz8l}4924Mg0;e9B7aA_CK1Z>#ni4CrLRi++dVHEsV
zzDR2j>x3`G<ac?kv45u2{Zn;hJD0#fG!$7*)lOwLzR$W?((T<b8&kZ*P{%%@8fRmV
zzc$|G680Zl7H5&Ij-2=AG%@o_yGrrw!mG0)=-gjs8up7c`HcdazAO4^HePMP0%H(|
za)-5WMU`a$ng^lP^?QZ+mjC^Qw;#GB6Y3Pwefx&`R`o>{FdV_rwmF%=7D5$gr`h#m
z>-yhRD1z+;$BJX5FU<}=nbn{csV)IOBvQc4`KN1N!4(Jf#P65Qj6Wm|UdyoXx&--N
ze<sa%g;s(R_uF7Wox|oI4X1-IDx79CfJ*V{R9aOTd%x}#orC}pk*a3+JzmY|`WgNf
z=gKud+KKA<%-p6yb>uH$K&uo+5?;@gUt{JaJn-_7$8rHBSxzwPv?14H$x$MPmdsi<
z_WiS4o)Ty9{jF<cI4oW?3_r&3&<YmFbN&n>e?R_de^w;m1(zPPQuNrIk%`d*#~bM}
zX+%tj($%qMlLo=RqsHhWCAN*?Dr@29y`0gpH9Ki@x$x;Pw|}yg!xtfnAaA4f*ItE(
z7E07b+4_Ol8RQdfurQUjv30beVSmu>%{_%6AvGE8cubs;urfwVT@SNl!ZPFt+lOHZ
z?d<kX+GRh`C2)f1RoJ0nb-qM}VEjjgo1b6KVbIc&dBdLI($2lr-*{S{aU#R5jLp_A
z&ho~2Pp@9BzmyKTUKp}VL<P~p%zqi4Wp7ou+pE^%nZkXpbX&1f<B`|PO@i#ySas!u
z$lQqgCHm6qy(i>NM3>V0!9Mr8d+?1{-Rd<;mORNX(#<p9A*$03yxSEQD*aN>Vt#g5
zJ`PfBVbYtyn?urLLZupBcjL0NOrJk%OEDBGQ?|yYDh{q)!X>p05*LvDZ&5Hp+iZev
zDYmzJ8Rs7bn^j4==co1o_5%WipF`#(GigT~wn`0d$afY+$TCiYT>j%{HdB_`Ijhf7
zCORS%`#SM#dN6P!<a9z?NX2~cep1IK8po7-$z2=s?xr^E4a%<OBA7gX28mii8Bj85
zSUs-$o0X~IF_Oy%;e0(F0AVZRIS9I3;g3%b41-tWA1pcH#^I(8IH>dft!R<FNs_P=
zSJv)<&~D5jGaB7#3jxMey<R?PXDL-@+h_21UwZ$9OY~pn$IT`eG>>mId|8*y#U2)m
zH{DC>PdtL|0b*uOEa~HoMZHE3j?JCk-txffQzG4#%3W;9qX%Yy3vi+K^5@M};H`-@
z-6Z;a?h=n-O(Te+EVZx*rTbW`J9lgc%fpNhpKsaQ%R}_jWQPQXcRK}~bpX!;7~DD3
z=GL@{;w&xS{O_|)4LYBgl-tmreq_BD71gJni76ECC6Spsa_{0;+c}U}EmzXlrhTZ|
zmJ#QgS9w-FF27i2)b-5jM1PNmx>+H9eU>dK|9FSOA=HH7ko%6)?DOg*;<=KY{WRPw
z;n(2p?&kW>Bxm&?uOGv1oA)&;dxG0g*Jx43az0{0{||cx!zOYY)_&rW#gs5!7UD(g
zXhmgk@6v3f)t=C}#vZ*oA3BwJvHIZZ&{$FYU{8+U6JXVP$eI!M$RFO(lAv~P#)fns
zFZe)+%_r_#2z2QeEyg{|+y!BQn~Q=fwXey|e0ORdWGKG$b2Xk9-fI~Ai8t1u-nG5v
zkcS5zThzF4(*DRCt)=VP+9!Q95X5W?aQ11oix1|F=dW!!rx)gasAs(DRu7~+dial+
z77pyNKm{G`cu~;b!BqvXetX52kOi(Sk&`((NsZ1HjkX~whq1q5D4cb?!L&x1PYBh?
z>UgNZQ<3bpgdNqat8RcTK40r{bjdIKp~{IU;m(0=#?5>f(695pah3YjwX#)`n)7q1
z@renYXQ)Bua?5LWasM%dUH<Wk90UU=Bsn@?TTQ95QLcFS;kw(IvF993%=L{q3*C&%
zt8i(+!I0MiT&eD9rpUgXPP`0dvfGb%Ulf>d1O9J0ZO-TA9#a_as<0kwi;e`~RJ3u^
zyNLRr+~Nmi1W?e#(-4(j<$V%OzirU8DwB)ps;sSODV4lYJGdDRALg?MP2Xl`w_V@8
z^6c@t{SrycgB70;cll1Nr1?D7F)JPR7+B#bZg7j5$=DoWuy8J>e{>D!jg(sq`o$?^
zFFoa$rKzg3f_*4z*wXlgvk({QZty=A9E!6utTUlzD0yE~^}t_7esZZ>ZJ4%|E8QG~
z`U;=dpH5?ct`1aA+Ffm8AGTvduBv|k?g6y{UF=KOMBmbN_ab8p&QkFQ|9$*RNM1^z
zYS!ciQ&*0@0Q5q7^|$gQWJTxk6&BxI&6yx+k9v)WwfLmZ{4XO4)vBAyzUyP7&j@%h
zhH;k0V6~WM*^SO%T(-+!(2Ci1yF>bEe6MepNdMjp8e1Jfn`(X`n%0HX%G%y)MoB<%
z@U0K>_@`zOVlIN8F)NniId~$X=iaiq&M}XW9c4}bo{_b8uILF4VFkravb6*%_KK35
z51143Txn_;JF^NVV~mqXW@RvB2KH`gCW`bY8>7Nj<Cx1Y2ogduAV2@x3!!4f&sK_R
zCX$o2E?LIw(!~G%Ij*ub0r?6qJYU|nvJ=ALn%?<}4<8B{qzku}yt>%J=_dXP<9ibh
z-h;2fg5*ypB~{{1jy?fr{k!Qtvd51RU9piy6p7TO9PuR5&TO^9VUg5&7ckR^S2*=|
zU|zNPX2dk9?^ZSIOLoZ#QlT;+L~DL7L5nciov|T6ol#iJ7=%F73ubp+whm6Xe4^F`
z0=*3S#a>(%uKKq_#Of5a>4$5F8d8^h^Yvc!HW!<OVV6t}-p^)!UN=h@qSo=fs7=QD
zupkBI?Luv%*LSqLM|6kwb|+LaTIT{eTNwzE!??Iq@V=6TvN3py7#YOp%xA!jexc1}
z-s1HWP!}DxUo<a&_Z0;PzRdPu@!?8IstB-UR1Z?d?aQn<A<b;y3vY~G)Z}+hJp2@I
zHSgpVm=&t$IR(0>OCmN6b<$5iFh4CKiAE+V{ew1MPj&R`oSu?HOSol<vMwG0M-how
ztLs=W=uU#OOg9_JUSI7|(X|Z_+V2IX(k<v}1l*)O6@L4J*`{n8yCZ^5vfVibQ3@hU
zQ}~=Bi%nnA63gygfM2ej`(xg#xg4kLbcU6{`7&%|{E>j=dQW7*w9j$<C(ev!yxV{8
zcGL;hZbNp;F;fkrqI#D9dh>!mJJ#fgkUuJ?Ik)T4OTiT@T^(Q4c6mC-WV-x^cW?&F
z9==)8W-Jr`&b<rCyuJ}UOz!~$IEf$Y0KpNnfC9aoxko6nDwNY0!!#3~^vAh(!PIQD
z2gfXPgcjVh!P2Mg-~hp$V-3*!rR}rqg&eeo5qxzB#8?1}5O%uYM}|%Q{<D9%UB?Oj
zFS>Z%Z~BBd(zC(Eiq_>nt<_oANu1<#oGTI0hYOB-#&2%RRP2Dbx;=ZydS9x(QRSbx
zs$E@3Q#3ez$aq*!K~s(7KP`JjQp7yz;7>gM`F31i(cXB#&JQuijr7$_MYYtcW+A4N
z?BL`}UpAE#^swhp?%%0HIvn=t=bal(cm@w!rMR9(ZR>z`Klb}xX(>bR<EP)U2VhhB
zG??9ipn~SNFXQ=6{Na@mSG?ewo&H2_iS#at9-O!^sn({=Nhsa6cF#2Hk$mv)n61$g
zhH_bUd@1G$6sDFqJFfRJchA*=>e9>B%JrZvQIDr!iD_$6)bb)=Dk?)_jwa0)Nm8kS
zp5+a=yxh;43wSM+-ZmSP-`6OhS4SECJtcT9A0cHel1hi(vJ2;Xp;PiPyPc8!H^EY%
z^JdLwj>3s$5tjEooJMJs`DRd9hoi%)jwrVpS=Hvof{@Uy0te%etx9Qgduvrn6imAG
ztNj;*#A+KkP4hGTm{037x6aIMHuoChEh#TZXqpBesdF^y@?q<g!UVo|<YGe9?Z4D4
zN(!6LtnWZ7LR)TyS0qHH^Rn%1xyhteRsgQd=@*IS`zBmZ<cC*9aWw4D3F188aE=SZ
z;dourI9aApCkS6>2X<G#l7*NLwO{plJ1G>LJ1XKCUUipJ;UdFo;nlBw{l`A{ZSA2C
z^^oKlO$m~S<D}hhU!N)q(Gk}5mI|5WD~xQY*zDmh8TQpq_2D9tnUWG-CT@Od=8pU-
zggu+{s(%?VSP1rdOq*QH!3MjIMNFylJt{55B$Jz^escxMjvB(k?5tDwu(lY~h-Qba
zWCd)hlQj3wCc`<0{bt`-7R{Yg%mtMR_}cDMqJAA;v;*51r}rj&&XInU85xfbUDs@Y
z$b224Xr-M+Q2S&+Ju|X$F$w)t2QhWzg7sX!PRO~;?MM~p2bWNk+p}}}Tyu8Ho^uPG
z?NqE1m<Z{8Qql$VuhBQSLaNv|y-e9rmi>udTZDTEGgtr0<I=K)1L*;mBHom0`bT;i
zR~lE&E3-uSjw^Mb>xon$k~e(A#OBA2_UGiH<^Yk8OBB6qz)kUXQuO`7D%mBU^_UXK
zYbOjgmE>bO749~H_Po*Mte`~1gRE;9Z{y{2089BV@Z*-|iNxu+R22_Zr_18%XsAon
z0+jLOeKh1b`Fb6*&w;I$f*Ly^x&y>lGpXxf`IsJi%I;cXqTB4cvK+#`z<3@xst)*^
z_Fv7@%l6-i&X_Sbbgga$88z*64`eV#;9lI^4L3R#k}(SV&i;75$@Z<%Yc9*Sa?4=@
znM8MOJwKL>A1#L10e`c|+dYq^G!EfhVDN3{Om#dTq|9w<Kh+nJeb_x3%JnX&g<rUC
zs{YN+cIgFJax^vP+mDJ&akG6ad>SD>k0l*_Hofd)iTEDnS__|jwwxB%b%uwarLqQC
z4a|CqreCitu&r~P7_L~Rx7Lr3^hG#+UZDY8xeX5f9K0Dif$qm2wHCWv-X5#7+jeQz
zvs&K!E*uT;S3Y;=GSJ#~jweh%ziFtaI%@NnYyhFm6K@2RGiFf?x;Uu10<x_)nwvdF
z;<}SktFci#K3+YmpRa@NzW;SPjH)DlcZFtZ7J1!^AX~NNd*0*s-0aNtb3KeH&*=qD
zcDni>m$F^9-*$hX`k(Y#(vFv#Z7=^wT6WrNnlJI1-rD59iKwUB>Zo}sS^~dX@|3{=
zB&h4KQhvy-YOX@Dis(x0I?ZeTtWEdb>JUb(Xkm0anGl~HT0GEl*dX>fyk|>3xN;+{
z6@A{j6%<uq!7=o^|Ai+~!+I7Kqu(28@&<0Cy~aE7N-$Eue$L_F-}JQRSp9xH>YojG
zz-K?m7fv}7U3OX;m(1asT|jYE6o~W{{)6A<iq=a+eWh`GzHblmdW0*2^Y`9}oBFhx
z*-;a_xLtV4xmP_Aq$`-ZYCRj2U81p^jeQ%zuQ3@{%7LLr>^i}lasWN;4Xi<}WxtH@
zJ9ZfW?MB=3KTdf^s{>wVVA+1M^M96{$F-C!O+{l8;eH%dVfqPjj<JbQV-YrA$)YGv
zY>66uSjk+Bp>=gV&FYE%beZnbs(y33$GUP!Ev!CLUOB2C!nLErx9~l?)lond^0{5|
z)PLKPc}8=eAnh{{wtK#y8!D0=e7{B`17}RfWa^HX#(kAmjxy619xRR4U-xb{=(0L?
z@RWsIL9;U@z^0R7<32W^&!|FmK*!;ff=G+6_)8@buYom*t~2`9t>u$J>%$Bl8LeX?
z*`&_rr)9Il=Ix6tR@<tf-)-HQVA~U#666qTj%UCW-j&W$M~U^KzpN7ogsy!vT~rPg
zVeH@&x2GI%C3QbCMpo5UWii>LK$N0X``FTcHjqf?&+cq-WO^$a@Hm|Hu9#B;wg5Tr
zeitnXYAH$>znXqy1gt$Q&tid_hh}yU+U{{FGmF|G@)^Cj4&0d@25hYe+=PI8#<l!%
z9NIA&_&b(ELt%(&K+3pz^`s{P43Kkv<45~EE0Xg?Q8wf@Uw*@zj4n3xt@Us=z2m+-
z(wPx5&#^4dRFAzv(%o#_YNJ`iQ{JwB4B^kI#^*oCKZ_QzU8U~u*)oo>_p<X{J4oa+
zGg#dt{n+OceNVsE#EM4MQOWeVn#uvbT;B5I2si5ky;lB-LiG_DbXni<H&+LIG}b%n
zwj&5X&j@slHiH$$;ALI>Adg|Jm^vEZ^$O=}=rxOXCF(srU@M9;kAD2FBJ`31`dJHD
zTdCn%X=4-RcQksjH%QSo6_SfV_$~ri)4-Dbw6xz#3Zr_$f6U>!%)HCU4(NOs0K|21
z8_%H-Ir1@neTTjz;WvFu@}E@Q{3jYPJe}YCs7Y)8e1FJcdpRuPw~hG%Br|&?%oaJD
z1hZWoL|;vrH$42<KRc=&_$`!0_ShmS*Iyr*99hZxJw8e69b;lzF7D2{5J^6I575?I
zjpK}!Ct(tQw;WU=4f?lz9)3krYB{6btTCJNy>I26=)K*INr`6dl7Bz`u#9uqB3*Ty
zT;<<36z;Qm1igO{p}kJDCDP^GuNDF~oP0>)h^|wOnVLUoe9#e+?~WUyt5%n9&ePfC
z`-DMlS7dnEpL5%h$&x8sPTe(gaR#gYTdUDSfW{X8wR9rd_4*UL!@(uLmpY8IPrw#F
zGp>G*+e)0U;o}JbFHHDGQ@E4UQozmF$p{`Tv$XR2)~Bdln$uxU>(!%lP=0?n)kHfg
zZF#5HRLPbt$ZD^wfY%}$Xf~%qvvK$9(W}AiIsH7fTBQ1GCqC%Oc`hg8Gy3d%jsC*M
zpY56^Z=~jrlY~>tE=|y9PM+SAL8c9|9T``{actyg?`ZJ|FWdXuLc}>JqAKIi&KF=z
z7qOD;TfOdc5FO#K`1gqJvF#>U&OGgClUStVExXw<jTGSgk|nyn_u;DSa}~lLgvH~&
zVE^}SR4<@ZU<LIoZ;Dmku4Ts%MB8)93K~mF_MPbBs8fDhR}%IlyN*s4-Tb6eWIRfB
z1TC?Vu00-ClUXk}nQv-rq*ia{_@=Ou5@vv^#bBd2A7Abd@XWF^ib>zE0=n9rH}Vwl
zL?8Rns`)!!UIniz-mVZX3>E#iU!#cV03WJPz-W8CNi6X3?eZVc%fNT_9}bor^uz6G
z28FzW4DO~+*`@@ZU&q*5?s$E_+Y6aZOw1IKf&Aw_vRpS?np^@dGd@gIP5SKDs(x{`
zJAHKPP5NJcetds^66LU76F9j{4Ua49`F1;f_uI!CSiTwu8mio0pd;H@dfa%Q%YHfz
zXk!w?a(U-w5yca|i9%u%sy;hYW)-p7jF|%6UK98N_#b<#4ZEBl4&O?$?>1ZY172F*
zwBATM)5tpD0tEc-%J9AeYy#L1D9vA1w_@}-_CA`smahhWEj@|kx46uhKHyoCSsJ!&
z_iLfHorb<Fv3cJY$clD;y6rJ+z7O~H{3=f$J5%lv1&Ewp#cjbf0|6&QaIC^FlL3Ga
zrxBeYo=Xkxl6=cIEv=Zh2O{5;E<W$Q;<&iC9)PU+8YI`GV`iPQ*1M&ftRYf|ps|9^
zV_vf7$0Ht*AZfs9W_Li`+F6b0d&dKvBk9K#-S>d|>6=+9(=HLKM0cm>`s8}rYo+%Y
z@RhcGH5S?E^cts4y`;B9>Oaw>Y#@HcmhCmB?9g)izJ%5#?7C}O?a?sxaX+H96yAmk
zc)W@3Z?A6L(I(Jtb)TtrB>yq5Q&8PWakm~z;C%Ax87*q-b%u93i==ne`g|@ObVSz)
zxKF=p?)0=?iXO5*75J**qUkYKn><eR@iZnQr8y<?XMLxC^9V=;{QmLUKt^&u8x<|u
z=4JcB;X2sFE9!Fnp(XmcXMB+?yzx}oX<_eqR1#3S)^t$sYXGJxpENc5!KLW4eeR36
z)PjU)79IwRfT#4D2mWk78_jl7!Yv<LP2X2R>(#_=p#V^|qoa@6-V*p`5xSiX9fw=$
zbQ-1DBi)x8k){l14#+)jolE}Od~dgOsQ5bYh8OTL;(igmN{XE$YEf;NbAK{OH-Awr
z3|Qg57>fhGU;UkHcS!#<;oBa!oCk|D+VDd-Pw45=-E=8WVYB6Kw9T8T>-*-~ee{Cx
zRE7V+<BOJ?D0!B4toJ|vserosm!qw<tFp(tZ2I=yKZ--U_89<cS+-{zYVBJ4hiZbO
zmpI`o)=yw99GT~EI#$5rnBHZ;-b*&`C4pM!aa2gCDB!Vu`no{m^F64XZqwi5<4_Xd
zwC#ITxs{Url9LUWy5jpd581~%)#m;4kH83wgV25J!>DQVfJn<n{2JNI?ZQ#BG3(Xu
zO1MqEC-4)Rzf%Hm1PJ{<_Qh>iMM24%Zg=ZZRE~y!E>BX5bK3W9=z_<i3c7!Jq6(f7
zm!W3jdTGt!+MSl2ecIf0{Ko3?d1M1>``n)GIpka~0IOF#^(IVBj?>GD3`E}ATmc`F
z?z8*VS3cGkkCtT5{tstYSpjFVY>q2GJFc`PqklK<v1e)}EvwYByl~^}Rx!LP&GqzE
zSpkd&8pb_tg4C9nBfDM#95*_qBJJ@WD*)%|HSW}Hr&-o?B;K=YGji_LKV9VJsxurM
zyePVk8}V!%9leQ`XKGl17AukN&DGvFPxENN$Ai6M(I+sfpX%bjJ$l%kpHe=1_UlJt
z+wy&7_$U0te?@;?#%~D}<axizzAkiS%3cqj3C3@4w;fctqw@s59B>VsPC0Or`F{5K
z0(cKbEDis*+f1~IHdun(z&2@NO8;wizJ7jp#ir+nA+zzIpxRhPv!y{n<y)D@frjm&
ze-)bV)8&-O0#ikEj(26=(UEPosCn<pk#NV!xa}jrMDEGoHVh1fT_^ZuuN>DswTEWe
zviV&G7|OT!X%;@uh8#CqZf1<xK)nd=Jrgh^#H6Kwm#dP`?V8FUK?eb^vFiXwyG~QH
zLraA?=GDiYr2sGMA7Rw~*X{>D?)x2Ahw|-nww#At*|Pll^3gsQ7^|)Xo)b=sq0iM^
z9gPka=QuMiA7$o;jbmMVafo@jc|dKAu7gJaZ65Pk@FABY$s;>>Jh1rd`l_dctohE9
z%rDejO)-Y$yIHX1JBOg>DvHeVY8B^uA6ND1ujF8u`*LbdwfJ#&!f|w@L|CE2Ls@6>
zk#qaHy4L_5?kKX|ilw|F>Nrap=({L~sWaX#GnM1!scItmG&ko`;EzHiVgp7VhxAv(
z(|>tSc9hf}`LAnPxNevDTlhmVxc>i8|7JH?618_4fy}^PUsYUY?^NKi7fZOF*)u`#
ze-0}}8FP2@o1T9iH*dTvn-B7LQUknKxz^(Njh+uR^t!yR(_k~|mE*>B?rWNg0?wWf
z7=n`ZpwkjXyi4yIGa(nR7CdgLNSKVkvV+^w|G|BhHp#Sfw6C64drd}Cl5m|h`bX?S
zhQ_i}@6n3?GV!io4UE<S9nMM<RA+43Nh4{;1VjEl*$o}^wRu(#>DB?!#7VB{gRIqF
zK58zP>0se)G!?g)J0I5V9eJZo-=^nm0#4TNQe(B7ch1LjtNf2a-j-h8(Atfs>E|m{
zJ-;|?4PVw0@3Px>PgeK?`JVpRe*a*oa(Y;7p7c3-&D?&9e#}Ymsowk1vNT$W*0u5V
z;a`b=cl>ARp8ToUocnlZ^K0PFGbnpW6|9d=gOzv<l@HK;H-=dy>Nqq!@3$RD7KS^}
z;Y2xIRQy+HV=@(jpwQiwIyC&tmy@j2$+wOFu#?bR-Ad|Ppz#Of62RF5y#n8L1S`PT
zrV0(;fq!?k6SW`b^EIwnv-1G@3rp@g+<yphJL5RD{=GXF^v%1*V|lc)q-e&v5n%Ke
zcx2OnCxX(P&Gxa0hI|LwvT>ysK{?9G5n8z77IM|P4His^jr8-ky15D7vgW(KRA5_f
zu#+-dQ)UzVq$Fb(YCK&%C&H-N%~Q$%J>C<8XM9H*ONyPs)-HX{&UyX1r*Sk5N>ZLy
zH<X1Bpu;c!-af8(YB_WoERc3Q;gYduqHA~V&w$b09d8v67XZxs+ghO801M~3eW6^?
z95{D9ez+e7POf8kpA00>jXwyYz-_vogxRLXMhZRM7ty`1z#-=lJ8j@O5+i5|HGGBx
zg}KJykPV5Q^;K8E7P^lG^gbmySnu7kQ|%d(soz*kUu!(ubXR8a!kmBJk`u#kcL>(K
zdak(ltx{Jg{$a0&B>!r8bxz<>t8&we;!g8*o6(ALxMMiT&t;ZFM9u4=ZTNh(NID8-
zO<AbAYS9tVRW=4eiI^~BivX~Xxy=<ej6dV!P7QXeR-<$L>lQ2#%h_5TY*s$On<)VS
zW<#R=i=FzGSKR5aX?WHj4_b#bUzK*ALxzYsEUfH4&!0%UOhTuy39B)efIfWSWpK)m
zL>6|r!paTWSydnRb~1Jn(Y8Edwy+n;zP9g_f`ym(UC8qi1EBU7ZV;P{o0})#d^KVT
z^(ie_K<0ISfgHRBjit!je65JuvRD5Dkoj%qdgA&9u1U1?O>yVYx;{=AJ12|{#7w-+
z8}<?rN6`5M7D<i;X_v#_DeO<DWc3$92qw~3;MSyn+lnP3TF)8i2an&g#q*Od?ZkaX
zFH3B_rN0jNr{&NDq&$Hqf>lii%_0U5L4xnsuM{F`+Pq(MQ>D6prDXsf&I>%(=i5B&
zQT2h=v_c2)KX;lA47s~tTsgai_;2ILh(+;6!Pxut`R(Fq!)e0To}~4pSwwz3`Rozw
z;UYJF%y6~);X1F~)E^0JgSBXJ&{f2{%XC*w&t-N*F5_@2I{<9t`l_{Z?p6|!1`o&C
z)si|7Gj)zC^mr(5d!w&Q<C?jvfD92Ue9iY$<&&*GE0M$X%0Q2K6EgM=QQDUg8rfhR
zuB8G?vbAIAaAix{C*mlk^_J)8;v>KA>j!UF<%ItNDxa4fdAt>4aFTaf0cpNA`d}l)
zmE`T4wUUMwUSFlpttSM|6z<RwS#G&@q2U8uvN-i#&A}TZEw|kAOhLonUMRQBicV`&
zvPGr$9e_hFNy-GC{%3q5*IgdVID6ob3x*0S6#i!~zn(<=>e28`xYSBw`f;jo4ax&(
z$&e@F9MXKFI>4qT4k%o58r~>k^!x@qG*E2@Pgydjt9cfKb&g0mbHf=KtmKnEE?s2!
zi#gnSX}^^Fyz8?a?x6ctkt{1e`|2<fkiPR7onrxv;0?i@yHNlQHs`e>M)5<1qOIKU
zn&TaX51X<M*N}a?X(z(b&S5~(H{Cug5hJggqoFM(G`-e`8(zKCEvH5_d;?TcP;(pD
zP0UVk5PndcgF`0zo)HW6%)P$)c-jLnYB}(%pP=+3oV4}*paU3bd)`#Q3QL;aiR#Qg
z9*O{j*I$QLvZ^n<<GSPpAAfy(96Fs5)VF7^-jVt*!c8ps`z22?Zrbw$&LH7Xw}j4`
z%9aSp?t=Q>hR8sKceN{bweBME9cRtAG_JpM>ZUTAMTBi<VRAa3*EDWl`CUuSxsDp2
zKz=G+%N%v!YvJ=q>pYRogSho+v{FkX03PvRgamC~5gdnUn=UI`N6RGuM;{FvRn=X6
ziFDmAYm)WG_JJt}{>yu#m^HhM1!p^3M~{b6DWf@0jL3^mASZ>cpY+D*_e-L}f1iw>
z50==7YA<{6O!jW^^ngRcudO&NqGLHv%*Y>lv|S=Bj<o?o?%?y6Huw8oW3z*;clmj^
z>Mdu=keMcu%V;yg*ghnKyG8DQ4Q^v`-4TY4t>52Y;wdBnEPjn*?;25G_ZxrKR1!BC
z+t$2}zP|vpZ*PCm&?%B-0AG{GP=6(TJRH58c~yMdxDKZ|kTiFS?-Bn3M?h@m6tB-W
zoFy3y+IZ`Bjvxk_4}%vywIQ-yRMLMQqX-GOS7uk_XNWAeFzbt!Do~$(sDXrKfTkj_
z#*4*>l_@Y~VjK=An6bJHFg@5aku<^CV;s^@*Nh>;Bf*T-h+$$Qg352VdN%+un;{Oy
zAAgTaZg067HiReUnwb8PtE;9Yu9*j^Ya}mIoB+#}`v-Etx`!P)NT+Na0fm}A7xt9!
z&y6=EN-$$#E@XVsS-SD44I=z6C~yz335Ygw4|s;3Df2NgM){cWHD=OK#l;Np@MSP%
zXAr?(E_pHGLnYjpRiMG2P|0Osp(6j2&#I#uSP035BK|`SyHY_@?M7_-n+mkM^ce2X
z5H(4apyG_WVnjqM#St4`A^|6AE0Y6x+-?VbNpyAoR4BI*3&Qz-4A7J?hc^M=(yh#M
zZ4g^df>o{O=2bfy8v5kLB*SQ>Fm#xbxiOM|r87!wNELYr>4ef(NYpEE37CD=V4S;@
zmxY6eu%P(cfSo&R1Ba-n(V$K|o&kx1&_IC8DV}9xV^n29kSnb+z|Aez884RG^FxvU
zXQfpNjINR-yYVljwMJCS-_d`<Q+`G27IWuW{hQ_HF06@qLmMmm7gnEc9*VLWppAh^
zpGol%-2!4a`G{}^8ROk{E5L_|C0mVV1tXkrZ#Y$`B`}my!UPd2vG9oN9*2rS{9=~C
z=_wGehk}KH3@!`hMY4d=fh_)Vc+(p19iijTJzy{xtlCocZ{V$rkI*wUm^Oam8~L@p
zVaLWk8y<+QiM-d6P`Zx594~f8@RN-xPG-#II>5Xl-vu2M0QRx~L(mi|H12<xRuPqA
zCRE9h1z;s{F%e^+m*k>aKv@{^2(fAGL=a-Zay>uB`QX2=jR46{P@=*WYg~z8Hikog
zBM2DrKowhm5mRYEUKxjiM*OCxif|kZkrrNDjQx||CJkAJS!V)@p;RKK{~8V2O24d}
z*N8%~R#C#IK~YAfh>w2Jt(3A50vfB*iO?hDw$4OIoU6Q#k5pDu4H5#I0y3HJI>!nk
zFey*RhZsih#g0ESBuH#ny7QD%0?{XE3PPc)1x%{K9S@mjhVe#GDTpGOhTwF-cRP$M
zpRZx;P-{yMEoM+rfriL!SX}sB0V7Iz;lhdfCpb9QmZi0R(6nVW*9#)>Gn10DC(@V;
z4-#U1NRDzWlG<#6JCvEW3Z^pkFt?iA_Ap#V{4*RGL7f8Hx;}HG!C0dPy3S;p-fTM%
zH;RB%N6l4}kCl_>M;G)RZ`k~IC7{x`2Tos3nffC7N)_(hD8ED5_8xbL%K109+p@j-
ztx+$kUff07U~UZ+7>$0<TIHYpUZwErH@qYMg3rbe-&;~Ry@RXj&kWei@*oEjf*?r<
z2+5JPr^IvGdvND~Rfroj9^NDk@z5|vl90+hfzd20fqyotfJ-sZ^pzA?6Va^0{9YS%
zqzPYviM*1Mv|Xfs9Vv%r7ntHXL`&#H!Oy*VrGKTA_I7Qe7<wCQSAMw>;nf{jcyC(4
zLs<OdBj$ed+G$T+IbkV59g?+7(6Qzf5z<LKKeF%k<xQJ4k&x1BlN9P~9kY%7>XZaS
z7MDV&q28-hmjI~4rNYPFt+aOB^2v02K5Vu=F`V$B?F@uepyBao30e3R7G<sP8vp4q
zPrY10K>KzA`wf&^*0MVP)pt7sZO%gSEQtnQw|1T`xXr?kO-e~=lwmATeV4MEX`E0!
zaTU4$5&@d?^|v@bC|A+Lvy-X0(6clhF`qswp&tNQ-<UlE*{wS9J#hZyLQkN+6Z%_2
z{6F)b?-W^nA-PXjx|G#d(9DRCP@Dp&+Q-?DRV_7a?7P{C={>J5Ty^(v%`gjM@bmD+
z@#rd|W?1@?w4`>moGQ9Aih50?dRMXxh&y8)gH;*_69UU{Y}1D6m%4>_Qx=eUtP}Ar
z@Ev5<o)$=Mi=#^Y?w-nFQ7z?oQ_G#Kz-f%pEnb)3!5^Ve7G((t8W=M1ew6pUxy%Ck
zm(YkEod^P72S&vLeNVEI-PyLRMKX9C4-%hqsu$;xDPYTSAoBp{e)^c&WiW|#h%~tb
zVvX2EFxv2x`346rrsd^Jkt~eqg#WH!k^a%I_Hk{`Kf6geMIYtAJ9e9j73ze;tHR{y
zM=D}txHG}=na@}i$CXo**D)X=qPrv2WWV}To@%e19_r+VHGR-7Wdx=9F|=_K+Q+}O
zTCDb<vb6{CfDSdQh6z?Yb4>l2@f}&M*RQ_rvQ!SSbhVnlI9S^G7-o#{I2(<b>NWQ<
zF*k@rsfPIJ44yFNJe=_4<sl+&SB@Zd)0fC044aJva7&`&L^|t!$r~6w1}F$M`XOf+
zaQrKA<lH1HUGDg;kV%0V?YUAI$vp5Wt+nqbwQrhp-H2R-2B_mfE34N%rOIWM<1U0x
z55?6E{{e+f?<PUHfVHT&gpAc4<6wbw_vht0b75Ar$_irp91GEF6#5JFk^!=rGZ%5}
z5O2Fg2OhLR-X!(mXH``i>g`0;xP%mlvnF{*2704ir(%K^=!psx>i%%8J@X#-+0l19
zJ)d<)J)ViwOgi=zJk?WOOJ8h*a5PtFliG{?=}1thi&L$6@o#a<GL~4QVuL8-?01*V
zad;+1j2#Gnb`%QvpB}O$36w_ScK3>!r}9KaiOhPUXnk8E6EXbM>=7Yc@9)RfaiK#u
zawdIhH$<hjD9VkrpWaL<gwv}|%G)i-rxB$(PI5!nB7ZwtO?@@vy;+H-gI`DF@qWf+
z)NcL@dnWDt1xecZ$u$Lwm((YJwasxhsXvTLQh%xMG~Nd1GJd_?j(TTqL<<?KANWjY
zB`X;9gvc`aw4eOofBT-&T);Qw7$z8cJ51?`xYe547;-$>nNHH<!7tdjS3235LelMa
z>5hy&^HOarTbt=iAsD{DZo2|Woa$Tk<@dJV<bv2u##F1xF$+4BJL6uif2;1}BTB5m
z*MF@q%eyZMhj8waiOe$<iHC4|Mu7Mgo5?`=V&SFL-}wIHXeog&J=EBWV}X&}=@D<n
zG#xn>J?t7*;0_sD5d|~O<~XKDa7Rz$hU~x+KEv&u7`sh@?ovXO(sTsQbZWZ#f{>8#
z_^mVGI+h%ARl-_TS<+u~*}7iTwU9@1kfA2eqAf@VH#S)dc{Kol6%foiRs3k>JgtL^
z?zZvC&x#qXDP=Mf2;*KVuYzM9xf{fu(od5{X}&e2sWB|}M3?V#5bp2XjWTnh8m;nX
zr^AE-F+DQ$Tbk-1Vfi^Q0_q%*E)?Q;0fnM+=ieQHhr7Epv8(q}7W^<}Hb%7-ynaHG
zU2$b-ST2Q48G=S4cfQ51b4^v-=^th$-@ISd8j=n<Ec#(F^p#)*jG7d<sG+>H!o=|7
ztDud^d%i2l2B9)RUUV{v*l<Qln_yASI5qIaW0+Zd$hJ{5J+Lw!)+IE1#=V+w^PvP8
z{ZQ+LsNBv*+EZ}aBBsP9^d^T_5uiD4ql}i4#&Wu7_22Ef(7X9~Iph7*;;uD?8#;yt
z$&QVgdOwTuc>E6rXl?P=+I8TEO(1}yXGzld9jhh9B!wUQo2i;v8D7FgB8^?MLNP^y
zdX$m&TXNLxZLNupH$jD>yt&Cr=)M;PB2%H2n?w<MR(ulU81%Z6A!Xc?x%rNjH=jTk
zi-3rM4ryF$Y?2Z^Tin2)6w}_pjCfO1PQV8kTm+klH(((fRX+ild3bQ64>v)#&LN*U
zTf>I*W_qX7{<J&-4#vXhh>*L{3{>QStr{o~#-oa9Do}DdL4||r%QX1tZbf;B{SCR8
z#nBIc!@tA?wx+|X=+<K+xRvVS9m^xpdOHkWP%CMwMW~`lU{Kmb_orhe4$>%ynehlm
zlCTqrYvw~+h$}0T7g-^QN5MhBtH!}!ZlS|{p%w|FAMcRmYjQbl6C$!gg9sI;9c%xK
zP){17d09aCuWrSR9Fg&xSgyN-WD0dDr!0g3%jH?n`YG5sdDOk_lvLb}!$1s@nFw{B
zHv2XWp^JI^MNtB}jIy5ygD6W7ik@i0w>sC)ZS(x(o0%tq!WRs5?7{>tF_t4aR~VU_
zs(*PU8z)w9HwAp!vyy?wgxMF-j2TVPh#?Kev@1Yd>pB6fy0RwTw4;oAB>u*AvUMY_
zFl-Zx8u#p;lHR0>lxKhAuzA0!w{r1%^+deJQA}*uKI`GQz_45x%=EM`a*|^;9~7A3
z(HpRc=b?yVE`vW5#lzCWl9+YWdR7K|<br~~x`@=Ryrs-)?E8)Cp@2xCDEr?ck7DD(
zsKuGNRk!%0Sel{?J)ode=geOpu1$*@xs@DqX698gBqd{hSp6zmSFLV<woqko77WLX
zH-r8)eir?`eDy0&W2*6P(VeE^;<ox2KP83A0BXZO?|02>z;r>SEoSfSZ`vNs(s+b;
zDq_SS&3tedANTc?=kPruhhfZn@}a^a`gv?33pZ(Y3Vi9nUK-ZmA$(HGj)h~f$oJ-`
z2V69-p+1sF&k8a4YfeYc=SU-lEPHEm&}RY?vE^asM|Y|L>$LnZmV9L>@#Jt>CI)ty
zE6xvRc8VVaQL#*HWV{~h&$WBsS{)eV>x+j?cu-IO#HO#<iNR<jI;Ax252M6VaIUa*
zyUp$UM`o}<k)LW3!<fGJM3(j5=`K%=dxRKur+DuDG$e$8fW}O$=c93*E?*lc)uine
zibEF@mb=MYV79>s^VH@wDyh(cXP+S}goVLGFC#B-mx$6{Cp4lcPAQ!yrC=_XW2u9;
zK9%5XJ3JS>OnRaz?`&j-tXJn@n6=5XghU#_zPX@jUt=hx<)A?b?LdkR*`*O4*uO>(
z(3MRKZjPf@VgEjda=I}!8H23a9rx$)yDUPo=f<}rY1;8|9L`^z0NyF_XAFlpV+#6R
zs$T>sA?fer(=?^Dtw#c`iR^PK#Z{eEUCyHG;h|PhKM`Y8;2Vr?b-z7?tTEuyb`|}J
zag!cS!IaWE)gAh)$+?I>P62BtA*Cs<65QEbqbCE?P_Wz{B)a3Fq^}tijX-y;7HP1R
zB$)Sy#hHyOj_f1})^M~3A7|J;Y*_>5*Lsi+n*xVw)ZIeYCw`HHTFiAIN+`<>5d;>3
z#0{p(OxrO}8H5KCLDo%-zcXJ~JuA_LuDu$oVj7d`i`80uCp-RKyKxe<YZ-nFZm?MQ
z9O9bZAiN<ZQaq|Oe_9c_8yYDDKdkelxwy-NMKAMF2-bZ*R$&#*2yg|Wh0^&O9!jM2
z<~NAzK^V10D?}JI*l}m}aDtHGX>5<AtdMi8KT`3Wb-Ik&7P?&fSO|JQY^Y&sxdTCD
z%BjCkr*$RO@Ef}~^bl#v8#H0&)0i2N%-5XFzmQh#Q7x13?nMe9!{}!_Sfx1N&Ft=)
zyjh~UZ-4b7#!;qFr_oQ;nA01j7y390m7y#t$L1CWw!^3?`pRPyq=kxcc@8tG_Wx7|
z<&9eq;aW*z7Y{&cPQKoS@C$NY_RXAHhc<UhuuGgR(u~xT1}8DjY+g%qq9CO}1bI+X
z34R8d!3hSE=QJAm7_E9vo(AQXrCSp%w*s6o$YE^SImVbW<Z;c0dq?;*CfvO&FlkGJ
zC7j!Bjd{Ev(V5k#P&#cL<^*y_jr%i4uc_}^Bt1S#5KZ9Ji->Xm=)BED3jT3T;t1Zw
z03g%bd};OUcN9Q9WU0xZW(ii5@;Shk2!R(a>uZ_#jWj=c2|+$Xtxl~l9f*luL%ac{
zRzt+S4IS}R9%`2jk&f~=sa-srL`t81&R)v&a*L}qJq01wqDOH^oZ(BRq=a@JxQ7aQ
z&)5-?V0_UtSCtI054@n##SecE0(Rs0mq+ibz@eX9G3q)?c~N0Vj236%i&^$du%WAS
zD&5!+?7*|AY(n_-@32lk{|bqR^7o>eV&i9<(?3dQ?rU1f5gzu%<qP|iSTfQxN1C~>
zvlTo&#Giy>r6-|Ky-2OI+N|XYpmU&5q$Lfo-w7Jc&mARJtmY^VxVPb>!E)kqa`+F!
zmq`;S%fmw?GF)FswUN)BDNpCKfTl}zjAd;4ii7dLoyb{;!ee@5&|(=$YctV8Ys%dh
zDXVyK!~7b84lOauffsj5F=C2lZ(PcwNHi^nu$WSjxXL5348u{QjmosR4IJu*9dF3f
z`Nyr}hQxmsiaQFwWv<KqHF^pI_!cUd-~Wv&hV3rg{0_~jDtH&wuZ5xbEBS)czxaF@
z826z5sI-~IMdIlGa{|?quA)}LnBJVxZ$JORs2l&F4W+=P*wMHS{YPdG7uuFPoE5(<
zxJXi^gA2(;F>h`8*OV&uTM52#X;P4cm|8OPkjET~{{4WLx@!)n+s#|(=d}+34^|_x
z`HFvyR@YB1lD?n3+-g`~j~XbxoiJ`jz`&BmD|JBOnD8jD*TEQAiz|sMvuxtf1?=Mv
z_)0TWSpVgXO_XayrCbv?TO%_Y+l4<>Z02+f`hNg$K##u*^<fOk`@rlVq__{yJ^%Th
z8~{zSm0$rnV{!}YDact70D`XPH-?N4qjLX}9`X;HJ9A1yZe4|jC#iK2<mS=PVXmEq
zHppZwl_>Y<8-VjF2}a3DAKMeo?v8dX)b*4(;C1G-%~=tq1H3`luj7K9`vNk+be35_
z#4?T0OkI-*D-4h*5R$2>d9dn_Fk%X*1C<(<8g}WTOPztjx+aD3KzJNj8sPsVaW;L3
zO-5E*An6FjK@1lN-A+L{zG#Axf@XE|tXZb4Fe$Sc8Y0HwDHsRiqJe&i+GOWDU>5OE
zk?kgy0m!MAg-kn<HofvVt4KY8T#6?LFM~L!W+acwLj?7c@u*O=5W`S36;2u1M_zXl
z{T;?f>?jZp<D(E(WD^>KGTAfF$%ij#YnoZx*ppj}&wcXYOIn)hYul?@8haK7gf4<I
zSQiB}-v!ne4^U;UrpAGV!cahFn6Md+O2&>nhl^l0VONZP9UVK)2stUXZrN7olOot{
zmWB{C!)6+WbH9X>nh_S9rg-crn8nICs%kzzHa+`Z*RuaQI_+ZLwe;1WVX0N9QBzwq
z%>=E`r6ey#c^v|G?f&$x8*-<tz!a4F?%S!`pPmV(Z01dB@y(>KNqvq}sAYdf6$M>L
z$ck*r5Je<I(?PwAOrRx!`wQiM0sgM{Z#4*tqL$H{4UIe>6Nm0T7s480P6f9LghGKr
z19&hNV|LwpX%{-1;9Rak0CQ@1ryqA2oVQr2DQ6&iP{(Yj3r@5m29u)%tE#W(?+$ic
zV<yo9#4WZ3BPY@ip_t^Q9qEe9H6*A_bE!#*54T1aN;{0(G6Ma*)2~3(uFvj_y#S4i
z#4094VtqaRFm;3dSkIM<Toc6S14dE(=4jAX-wHaRVJj5@>cDKS1mq-eY)>(jCYZ;i
zN#pEavu2oaFg`lIjOb{63QYyo=3-kyHB3VQQ0<frO(on5_XR+}Obe#x1sFr!QX$_)
z9y<?<m5Ax;94-h`F}zhoFO5YbT#YOQ;xTKTA!qXu<BSKTd)Y9zy|!_7`|PR~#%YqC
znAGEFP&v!&d1DKCpUil0kdXVCjlQ#m+z)Lbzn8X<=c&!+XMrLop_mmF2-2F?K{b91
zG7cpGPBr@=Ov6&P`<ci#bQl+@EQ@rPfH{I}lK$MaDBq|nkchKcpy^Nrmab@mgn(uM
zN$XPSj|5C=_+~*PBddbRJw<c_wwlfzh22nel*V>U*m*&e4wismSj7L|m6jC<=FJ0#
zj}k3I!K7Z0@qdu4;9U-fnKU29=s~kgP(~<jytGu&L_xu#LVSF5e9WVf6Lh(>GgeBU
zDM}T&6RPAQOkN6_W`YF^CIU$VP)utc0LTa+Q&to}G!7F1QXtep8Lq6t-~xLoA;R6Z
znu1}*U4^+T4&|=9G$E^{?!}WC%z%obQOyW>59M8hw4h1~G=dA9Bf<1BG|UpBRtfgQ
zf3B$lodZAZv`(1Xga`Qih@O}!0q7^h{u@DQyB4w%w2u1|hibE-C34v<JK7b+ynHr=
z&V=`o!uyO67Ck@dAweMA;T)BW&`nN<+tNwLvqBMeXj-ADsS*M`J-Cjnii#ycucJN^
z(=Y>rAOd=NJcrBGDZPCWH&O&WJq(W*ICO0G%rUVBDngdcCQjy(1PEq2p;4`6bWE;-
zlR9IOvS=h4js`)b+RaDIbj;Kv+=i;BXF_zz5&#thK~E3)rz(M-9yY8F4H-*UY`|EQ
zm3!e5?+@fyOAK?%fNg05qO_(+aZt&=Ad8S2*OwSUq=F<5o|A&-#D>rR{Gg28y$=e)
zNYBy-kI9Z76MNV4VP78g-{{Jn+GkfVJqmRfJqZ%aHBC25-P~?4$Al%2WAT`;Vk5+l
zno5KRY-2(W+L&ojf>gm9q9sm2xR$sS$tW$WDKibLWkXb;mLzFI*w|R&^|9z1xCx&?
z2KO59B{fB&4>KYex`__$w&L^HLRhMtl%Yh+>RgeeK~fP??9L#7WHqHgUYjdn@LAw)
zUYObNMy005a1_zXj%H0z38*tc7s)%4fIvtlp=f%IUueCE+lI7{Ny>=dZIH;4+l~Lr
z%}xj_M6=g0#+CRtjhlcu*I9_0jiN5u6w}1;4~rX2&NF4zVmeQ}KuwWAmypGRHv<9D
zN@2tp0EMUNe(3R3YBq?|M++778ifoMzv*inUYb1}Iq7Z54Odi+0FtZ8$xJ6P!I3G&
zbUFw%UFl<Z_e`g02AEOh2`^s4B9h67$w^0nSj2v2B+@W@*r6(WH#<BoQdSx12BRFu
zMl_n*<R-LEqR%&|+OnG1VGtx90vTDY>J(&!x_if5ro~j=b8U1Nq{>UjBAjQL;o<p9
zoq+$lLg044x#)(*_**P{_a$?Co=+@Y5=_YR1$nd>8nO7BMJm{ss~<W-V%mZ+sSy@w
ztZtXukYo|k6&S`uMY0rV5Hkb&m&<b3R?X^$tPv%UXh#nvRwP~pI2P;37O0MCou;yx
zH#W7^f-q<hy5)?Oq1qiNv2&y)fk12s0S}03k0>J$<Nj$;swyHMNE}lNtz3g0TlV%e
zB(t#X)cC2fBjkr{I~)GG>RE>u0;~o9+MGM5Pzbc@n8@aW2m#m$$vcZ^Xb3TlgeE~E
z6C*7Hfo7(OwnEnwErkgd|0nIST2ql}2(s$D1%oii2;Hq6u!~<Cr_oH9jpsZ9x)KB6
znq6tA&Qg(J$|%XgD%5C=n%T+@1gl2Qtn;wK1yawm3NK`jD#c5dIOf>iDAfYzW{O>n
zh;iG%ThUt^2SLnbFk}`X$h4=2Yd~rsQACiyx(UpK=$IlxMEqt5s%mMgn^slb*3>eW
zQd~@7JypqLKJKMvYO`I~q_$E<(~UX5%l7&_yd7h}gzhFCs@0AOL>!Edk~5hR1(R1I
zmf3<TLROI;5P}4mQg1?xbKKtV8KE1ql>%lG%c7jCM1(2{NK>2B2H9I@?o1(9&3N}>
z%mwKtAsUl|713z0nB6~0hzPFAK+}*#he!#Wq~vL>#zn^UPNb-LIE5*ph70{nhS`Ap
z*<>N!;f45sEOZgDIH-ZTLH0l*>ahkkO#u;a2aFZRMaJU^;VBpppMP>#7P9_XZ!J5<
z&f=XN!^R8%4y3||Cgj8}!C=!Z!sXh)H8oJDA~}^di5VybudKiX6dVmW5hqxot=Y>T
z3jjq+Ig*!e4Kky8EyWyp@RWGZ5zwq5B;y%SJL5QzV8Tk309j3HC7??%R9Q`xV4MpL
zLn90`8y9yL2SHqsJ1&GmpjHu(DT@dShL{Et&5Y<7lW~mrc=L6++c=A{4BWrBLo7E^
z%N?2|hy#*%Jy7oei7;f$PN9TrEhou(yC6vhMChpa_~`hupfe7OsA-2EC-;$spLDEo
z-1np!Gr0UZ@POg88b0d9qNYf!lppP4yzXMWx5e~s<=!ZnryDdqZiW!aDXQ$n#~tHk
zGB~g8f3TfHora2DYS4l(cO40HzK028p4^b7>=`F)>0!JMJ7;1T+3R$zufR3P0a%x2
zbU*{SKtxOYpkvx-!{Y@dNtjc`uz}rBv@pqFz2=%2V9tRkXzBM}W{Bkj`h4RfVX&(R
zsGkP;Z0DzOJ4j)wh)ltRNlQV{^;G01Hh65MW#kYh+i^!C(kW#SX*!W<t#nD2pm<}7
zQtP~`003#BMlgjMxzJ*%Wm=rnoGOSNmfoMbSh$h7>Aa?sw~9RakD(6*G41t`p~T*U
z#L4>z7AY&nM!LO{CMqHQH>tIq(8w}Qf!MHVCVOBaYfZ?iU}W(*gpuxyQo=0V1f@&J
zBF-dq%0iC+CONUW-E*hA1kx1Cgk;g&Sc<$sdCiU66Pjk?8>72RBMPzUBUex%&Mm$$
z;=CrYFo^@AlyKWPv*SoT8(lU7RDcj<Vo2kLucD>!suV4iA|8-7e@k^8VZoAQGold7
zLRT?+OUwUYn?4k1=%gRAKe&WCTB*QCa&!xPlQS4Ygkd-SPk}l<b9Q~rpIFi$UTBg}
zL;F*Hs|+*+%+mR^vOndwqRKU&Hta*e7N#M<q}<{9AVDLMCBFllV5f-A#W@W2<EXRq
zEqU*yxzDAp*HY)P)Z>yE%6TdEe_y3dDshv3oz^zO_<~WQU<!(?3Zwa%<puS5XP5HI
zVP3%n9QMUl=epqJJ5DMWTseb&i(qSzQw(_{P9HH|#3<3!z_>^^u~lPr3S#J7y>a<i
zM|7ue|GELg1PgQhJSJ0i$JF80F|#r?&Od=;YNl2L$&fptK{m7@+qzgOZ4eAus7aJI
zkpTZpI3h34f?-zk$JSt`Ly`>;)`3d{ohzmJBGOX2#ifdzm<U8^XWE02BiRFkwlm$7
zlFSBSTM`Q|5;}!&Wh54<h(#6&h7(E)>RK$45jvq7(Tr3n`Bxcj?%PQz?WC^(f_V?n
zve!$RF+$X1k(dVP2IP97oVvE$Tfki(cwVi8{Mj0smL9Ypq^UBn;NwdQ(sZwNYEqk;
zCDL9Hj8bG|f(RBA+ye(k^Cv62<7Ss0(De@DZN~yRI66ajHz?n#imN|-t*Q9OzAdP1
zvw}SHD6U;`%%mKf*)V9VZEJ6-nq!xH-paTkZZS$1dkey1PJyXeq9>$?Cjhf6x03x5
z1bTW(xrw)XH=T|<-G&RE;oQ$j0~|Bx0YTogQkV`pfRimGO=t}KVE1yS$;)0=$S8xy
zdv`hB99<9ifSV$FsU;55j++O@$zjV-jw*Gwd-pu~D36VzRl>x^lEnv*xITlXJrleZ
zNnn&Gl*(xPO8ACK$+;D5{4hSpVQ7kj*Wug04k+zo7Ph+_U;oka=j+#@zcm~vWa~yh
z=Xlk#9ri?C;l0>AczGF*zrsJc7;&fA9g8Kek677w|4wWhQ$OoK+qc~h_=O+nnI8}^
ziIKD`y{r>>q40Z8ACJ}aDJaZpg=z1_IR=dVwq3L{y1K#U-{2cCpX~ME6+BdKSF5z9
zbx=vE_x@R3UfF-3{7Sha8nE93x~mo#E~iQ!%=43kve*V;V4DkY?@_3lvf*+aw71Af
z6-qa&S`p-o<K^kZII~wlep0PagC;>&sJdX7O2))VlK#t;ZqpqW&7<z3{zH*mN25@P
z|DFkn1{JS^m5^X0vI=yCM74t5CiQZLGJQ8r%j7B9)gr>~9aDe@D2CwO+auN`L5>E{
z-B?EC?Ep$dImzEI322BbG4I9q9W|$4@|>k;0%iaN;@v|8fBFc6Z1bdD6RgD*uElNB
z;3RM+%4qit>8A));zhbM3UdyiWI4ASL&ctp)2pny97%{94y4{0b`^JoG)W>h@(TCr
zA$2l>PE^!Y9`iN3y$h{)?|THL<KU#QeXWRHc+iO)iEC3$HbWr6+-{&M^{W%|bYOQ8
z3fXQ+%!(`TF^HIW=!%t+Rc_+dq(Yu|T(>_K(}#Id2e)Y^rJewhVIUY{TJD5l_hSxX
z-$-cju&6*mrRsVR23;_LSI2&N$xbF4CYpOYwi~xI$iK8Kc_jvdrOJyf$bul^gU8my
zohf;Q7oe#wD>B=LKd9+YMMwb#K1ks->;~m!oC2$M_8Ht5!`veFOgv^xBI}uzrh=qw
z@Qt-}>LBd|aRk$L@{di+8}2IGKd(`CDd{sNol_W>c)dk^Vo7=zkso977)@3IMh(v6
zE3=>B!HM!O5Jq(k%}p(BRgG<N{-o_TYUA<2DB86b#3Eqk_23Gp+St@aKtbD4$%Zwf
zVYdKFNrG7;3F?ZL%|O*Wj4YE!-vqUN{Oz)xz$5zXLtdy)_w@4jfO(ElevgC&B5OTn
zTDAQe9s-M!>=%t2wCk3Tv>kfL$T=(VjGDWk0w3dnd|{TMGahe%U@GGL_+8<O3DTh^
zk%D4d**X%nC-iPEm&&855uUgMA5qU28pMr##>6%bj&kg?Xw`OFwVj#VyUe#7;uwq5
z3mEhLTE@PX^)kn@!jmjxWZgT@lboT5^#wuC?mY)(jNk_BttQfR2?Ha2HWxJ&X$mAy
zL6kRAH4_++zJe2=^9^8C*&`79Rj;KyPw2#sfeQ49M!=yVCAsy6ZGg$G7-<7cDI?qj
zpkVflg7!ef7<!DLN@Hj|xDY82REho!w?Jy`Of1`(Yi$)C7}qoCN8-4P%P0dU>qOuj
z7l}rq5tjekWtT!~2HD#@Gfc^20=?{8p;w@Rzw`{g^Zc*hc>=vUpSn$3{5?>)DCY5x
zbbChbQlCh-!)gBpA!GOtLA!Dd5ZH15<s7ft|D_XiYi-Ny+Lrd?8tU8Kf*j^`7$mq?
z^Z4laSg=2B8>)_LZ=2ClTUFDV(?wY{TDXVm>e|-UUK&^S($+P4?Qv}_RqfSHjnnF;
z=k(Cm*gMkHZqrzc$M3aS&D8ehrlxwb#;WSJy4kfk)nmEvakr?esn4(Pt==%Vy|uQw
zrMAt_F?|||nZr*v#kVtIwgo2L#F=)K$%b8FR$QM6nRUK)z$`bSAg>c7M*)B;iBAkv
ztqT|s$r5Bym}w|w*E>g!^yCU6Y)3KWsR(Ri!Y+Y@Fp`M-fgRhI4pHo8oX8z$wPVc|
zv*BE3m5j#ZRAi+9ptN8>$^J<rmb-oeAWH-uUMt2ns)Qmyupd79F+XA`nSn-%JND!O
z%oQ<?1P_&o2UQ+G>yiXiX`vGWK{22pWu1w*yCah-@y^N#&RbmKP6i=!t3}nscuD9W
zSWko!i5pB}=;h7VyT3H?p|iCdMr5r7%V}LKP%w|%-3z!DmJmR*+0ptrRdOUdPt`(e
zCOFk^A-RXd4!G)$b6hxR`M?5}_jXmtwz3;Qyzmso1|?UIx%QYiJYZ(Gghp;M{h=bO
z1qOAkFYX&4k1@rRdGm9?<nB$?)HSKDnd|ykxEgL<ChOCLjI3nY6Irz#<<O2zl2c=p
zrc+3l08!B_$v#@69c`j)XNh16(^lfz*lG%5M+pgg2#p#`P)GsBC@oaoW0&!+`trmQ
zHC2Q}fzLD%VHPG%R#T;tB`BDI6+22po-oRx5aXNO3$rb_3&IHRbz%76uR8>rdBM8o
z&WhlI68f*P_P;7HZ$(QmjM!INR>5Lhd_ypj?TDv-!6m!WvI(hLRn2o*<Ko*Wi-pom
zavix1Uwl$0*K2|_RZuWSH%7aBA*j-bNOxRwTh|P#>uOqnA*d;Px=s*E#nn?QdHri4
z72{xDaV#34|Enx5FDotqq#$M&*efL26cM7#W*RCPTLw~O73K{|YH-mg5{ZCt7_*2p
z=%ZuE=|8W@#Y;TXD)G#zhrZqRvM4&~d>p~a65bIKbxKAg|1WV`=XxL#K^r9HZYU8y
zBBqO0S-m(YFQdVN*eZBH)|?2egXm@u-3+3eL3Fe0(2e616E85J_l2M?$$6}tbSIu*
z9ZZm@X|kUYh#9q_b&+RXK?SjBSp}BrJ+D!gN*o4NO%0RK5+vsUnGs0HR56D8LAf0r
zRw(pZuR+>eL)+hDu11Bv+rhmwb-E#lu-O|ogv1jGg+Q|=<%g3Tfa80=gJTBV*v(@{
zL}t}X>`VJ07>Mrq^{=bEu$Q_f^%?MTp#9H6&>)d5KwXWkDb_V<pdGamy)U5uzvEpc
zQ6K#TSTJB8v$y=1Jq1kQ?1jfcEXtzOkh1AC|Gr(A%qt1;vT71b+@^t5#QTcBjU!ku
zt5$cD?!M;V(V%5{5$_7v)KO(}#LvGwqO<TqeaFdTbN}B(qKb{*y+cubS7VlaGsonc
zi&(ashqn7}Ml9Qn4oNTZ$|ij4@yc9l3l`YiPzY2xnGZ68Dx{zU94kdY%@hfTM{E^&
zs}^pN<Tir#?Y}O`1MHN5=GoPDz6BmX${w9LUNPfJZtj=RELCCzk=tfatH}Umgl*Hv
zIB0=_G{=xl*hCfKREnWSkxouH`9v52t+v&Jtm2s<<`(U1EQ6StAjw8i7M(8hzDdL$
z{(8?W%4kGv$4Zf^m2=#!c?XS6ZME(^fpSX4FrW|pEbs+Qp+^+o8KDCLOZV-K&SI+b
z<+zN}>NRX^fs&<4f-2e;WfBj$<yveB)rJRI7^k3ni@Av@5osvLWA{lz{{x^vRfeir
zFK1*HQ;SBZ5yUhMClQ-Ge+@9ae)!0lt0yI6fiMj2NMY0mDJKF0A2rMkTf&~<=oJ#W
zt8ukfvcHwy08XTXW;WLv*@)8;KFy5KJxx|fQ@UXO0d>fF4M{dRiv%EM$JG|AVL`A)
zT<1X`IU#Uu67&emayfgSV{8U&lM{E~2q=-BNjPzPhDlk0%!SLzMrrRB-Tbht691$o
z?M+H)S_*%+qgnWrhC9m&eh4#bl~FB_K2z}M1k<ZqK^ROY^+7e!=CFI5H^YLX30)|R
z%EO)I_Lh`8waN<)T{Wi_w3g=$<7w>QBQp-Q$3GDZg$YGV<d@jZ=q!4v&<l{NaBVPE
z(GmrLli#6BJL$8x7@;LRD8!vw)kbv%uo*Yi?d<`IVzay_C@q;gu8e%1qY4b{ZR%XL
zX*uca-NcG0Wn5>uF3Hk=G)`;f@nPueE5Du8T#(Q&`mTw^J(V{>B&QO^(=uXoiNpg+
zWGM}pX{!)&wuwe#i`YbgB_X4)Y@YN0h$XF5lXf=CPzW^ODG`mCAd=7~b<G%{u2~U`
zUQG33y#Yl{qKK?dK72{zwAS{z<{qAqQ?_HG)9@$_G+<(|R1!=fXn&&dQ0$Kh@{@m-
zSXh<5`4j*Wc3_p>YKOf8h=MMNvY91ey&NLl=OM_w2lzLAWsTcCi)q+vY^eT><Hb}Z
z`RLH6h+Y1YKF}R4^~4b(bDEQeDm&KGtD8Z>5<8%Ya<~$5zIlkNl&H7nr6(=8Y!}*K
z3Uzk?LvFchK%LwpS>?%`iHg@Ud8+HAoC2c^s4If#Nq;?>C*h(m#O@(I%DI$mrmX~F
z59lEwhV`fvBfe5<%Uw#M<U-H!NeiVdwN*6@wULYz@}Xsv>vWr|HrnwT*|!|wh}x+v
z@%#b+1o8d{;~>bi(d{fFY_KG+rfz79plG(s60SeV`FWIYWs;J+y#r=hgQM|Z?=^9?
zF#elbJH4(EG`G~vu4=0VGi&FP()sGq>~Heq`6?-@ZLIOB<}-?@V9u`{W&~MbvzfBU
zy@rS^WFjdB1qKAXZH4=CEz5Udf@P-LEknk&_;KL*b|Z98$+^%<HC(lfq(1iPhuCuG
zc0`-7ZUkLMq$^Uj&{Q~E+umInozN~q!)&(<#ocLFS66P2Y-*jcQrrL)hQ>fTHME3g
zmUhM>_%G<`k?RY1=Hxgt6~-u<U4We4IEu%^HK|J0iv$=~YkQ|qJmUm91+0W6Wpv-c
zl&HI6-eDv)l{T)j%rxdASi%=V!RkozU^7eQQ9G9~rneH*4JbMuSfo3d)pub;Cj+q^
zFOmw+ZcPATHZW2QdZu5C5gYO@-9oUAnO->)%Be#UXRDl2p)|`-T9}b`4h#X}6>7V6
z*~ofdD*8uaY@WBom)kAzXJ>OOyBS%b3$>QdF6Y29Au^rNoZc1WLOUPSEJK;knefEG
z>O!8a@!gr+6U<v^PD&FC!5OBhyW)O&f{Iph1&xz!wT)_AcnhTA3FZ`bWDrfC*(yu0
zRuzpb(a+C>**eKphZr`xSKE<6)wr(Kz%2NBJ3Y1ng;Z%aNa#XYO?d%M;~828%sVhq
zSB+kd6reBV(+o{DYe-f~H-U4$&4k%zK{lKPI-i;;VX?hB`+3@FrDnlQx0+c6(xCR<
zDkNxhvtXDm!J3uof??LuoUpCT`?a6<!<L6i3QJ=py@*e~&1^P}-WXf~OJ#h@j2yW^
z%ZfZu^B!dTA<^9|2P96g>E3{2Yc%@2!dL=zsS=25YrZa!E7Yo;sMKC9U!EH>nB*=x
z%GHKtDhq~#e$9fx63~^F#WYX(jDVC?g^Vmxkrc_A%Ds!31gG-YHltj=Dx*oDYdVx_
zDM|@YwY=eoxd@Q$6#?9$1c+%(L)2T((IMKSLn8vfsFYp?G!<0MX~nA$R7o%-z?4g*
zr|C0mONe4&Bxus1N~~<StR7&<KY#UM+a#vSdF{8KGV?daQPBEY2e{I&dQ;Bvpb&Hi
zWtMiD*<hGym|+PGyfzr25KmZOXfzjts9S_E)36V&eg#F*MD9U~YdVrJziPe-%L+%5
zo1PaHu8&A^Ww|Y4LB~?sfyFUGrvRuO5zW0v9niU7|04WZH#Cu^=cU5GOZ(<Bk!5am
z%#A8TZoEN^F<4&?c!(89LL&qhkI<w$fi$`^2v0T@w10Qw)v(`-GTpsKG^U}jCq(UM
z3i4dSX#-O7xHuv&3J&K5x!+(3Q)o<+6=?gQcWH)13k+y$lsSfTb>bby>B!;0oW5*U
z4Tzcnn>9_LNUW^F{y@BKnZ=l@NzjfEPtT31DJ(S#x6cuh<XmT+yMS3(>hU5cL6CnB
zlDr-n-ON(^fGX9Lt9V;}7iSBKEOC=%@+gS3q#48)CYTlsDL9elo+HvQwIr8SiA82t
zH6W;_9Ofgsv~jc>THp?(AM}r;k82{7E*RF(Yf=*{FP}hbcIOrIP@Zu+c?~b|Nu`-<
zsWUFR6JADqoZT!>VlM$KeIi))6~fX7@$~MbW<%xs;-S_G5qU1>FJ8pFmJ~T5Ib<3f
zIwPwjTr~}4M|lH6&770e0afM?%had|jGK}ML}`Yc*t=>2?JEw7%cI49#Gr5zRyrg;
zCaRd_9uM63gq~Lxc$q%s4kTggw`=0F%OB+V&g3Nt+bu133L8-DxKTzSGmqWQB;(uK
z`+iwklz+397L-YGNFx31Ll80Tqehx-^{tq{71M&6;sS%IAm*($iaukp$U)Tf5>XM%
z)^fAp-z*rA?K&0lF-PsEe|>|X3V1SO+Ui@!xbw7x_?Nc&R(E;8VFT^xLwFIg2T7H%
zoDo!PXHV6lX{S|iIwWd5n#E{Tbrnr)g5(rkFNT;WaSh=P5?MRDn<OWb(7-$Z9j}>X
zU2q=E_^TsSk!5gRgM@0*B!aZbfAN*DRIW;t5y^*39R}O#TX8=W^woB#2qz|@t@(0m
z^;|B6g+qsU1B2w}%JBvVu?^Zm+)09kLC<=luQ&@aHz=A4_rYWzalJ_{huNb*IE*1X
zSrj6oVS;eD17`6L_6`u~fLW5srPpckuq5O-7!W~|Zg_RoOqfNEXy85u2DBp(k)u%M
z-eD>pa!Up_7tlc?+~kkoz<UQ$1ofKtr*fy${=`_?pYJ}g9v`iU^2Cnc5>YPSy=ii<
z*0j!f`Ht>#zsPT8!ObX?mo>I?yY!vsgT8Tq?;N~CJj$dab{0E{A8eVJ#!)1qZvUKQ
zECh{k%915mDry<sGGW-3xS31L90)8#Z9olf;zXhunHndcw&vBPRHS+X1yU;+nOHRl
zB)pL*YZjZHnAT(w+DcOru849Bf`T;L_!AMfO{D)dOrqQ)*?1h?0t*tL$fl{-nK9X9
zN-*L`;|Vm#s*Ir!;Smrd&5jqr*Wzks`Rin9_X<8FB|wlCS%_;95l|uCCBev+uoP_>
zt&>NQGL$Sx7=ma^$i<F!gU6oW9yFBKw7*B_rV<g@0WvEjv2$`x2kN~$`@ql+$qy*G
zx-Q(OuTsXVULmTKSTq{V<mg+<h}}=V4yTU>Zndjh!MGF3Ew;9APqoF9?KnaVFX@L~
zZ~WN)b6q<MAwHc!^`Be)XG7)tqW&9Hy6tks3qM1HO1JNy(ygC+zdI`3V5cl`&nAkx
zc}c)W;L0Ugl`$Xp^2)NEAW(et-HbrxQK$kWDvw6x5Gh|O<t0-Esgw<xK`J#!rFIZg
z@iR0?rM`bus-Jtmdr~P#&Ga~lf~wgMiE3<&YdaD%G_8Xp806p*idSiGEOCH?^esba
zH4Rxbd9Vmd26u|OL8_P7jY!+KEPGLq43e}#lD5NW4XWlKJ^Mb=v%WWecO+(ZG7E>G
z*+u;zYUMkl|FZ`gBtmW?<bdV-LWsT_rWB@vT(%VW*MN*D2C3~XN4oY+8Kk)1KZ@Jm
z&EFlVuBO6_CPBp^y1c~C!VpyH7;k_U%`%|@c$jxiOC8ifjM|bs;hV0h<k?zFk`JVN
zFv`={Xwp4<4kwv^vYJKuBykBDT`)`lO)+9WqI<e<dXO}T)MC@NyJmghR^)jfhyo%8
zh5~7Cr#axrn*1ACIy6#-pr;)oqYyWzIIxrY#K%X+O$hjTBgA%s9pPIr$c?zU5gRJs
z7iMI)rPCoW)wY8vaYiCmmjt;|laH}c%*hZ;qb11)>g30;AQ(j;;7YMDngyN#_GIkf
zYX&51fD-GwG71Dql4)okK1`&agajk=>ChEVgnD=PPOG^On+vP*6Pb(mcbb;=9^tPL
zrTr#iE*1b??}YAK2VFtSz`~%5mGug{9Sdvv-Gtt*J$Kxt(BU|ENk63gvS|N}f&K@U
zRD7np8DZWXo?&g!3{vOaUWzV6|M(sbm=N-Y1@I97NK8X~uxGTjHTR3geftvXF2(SL
zK-&*ozsq3zoiLo=jp0}R%?joT1dUFr=5f(VPjP?L;$wG44s{Q<o6)>)TNw3#W{~FX
z_B3yIRUUc{(xCSE`=>n~$N|_LHOQe5XsBy#t!rv*uWo8=YiX(vWC)=1%w+qP+sL-d
z67$>T4zqqW%f1aC+fWEJrew7{KoWYzeaLTzjB#v@9m3wG+oT1?T|xpXoQmP2z#{`0
zP*-G8sHPE%@gdL1YE`EoD|iGdgby%L5YGry;S|~Ff5wrrq_@B(V>_3QNH^q8S%E39
zPb%JvCRNGe%F|>8(j)DzK@|VZym2iO1sYD@<Jsy$UVN)1L(?%~tE#VO>F^K~MJ<Ez
zL(&z<iA6VRu~dADSq}f8ZyMMBWb9&*;F=AsJ3G}%CZXX8ix>(4<fJ>SYwjG&axj9V
zBBXdYIhyE#1}h+E%bSD%Q#}fI_V$43uBHOq9SwekM|UzE^V{mpIOj@Dh}-yODDkN(
zBZs0(OarfE$<QUleG%CYENqIz_YtoSPso4qE^J_561qRWk>VOP;=M1BcX#f2*#+tQ
zysmSKWojS=O(17T<^myA+DSiPY?86#P#Z8MBNH=x22_ZzWmwY04rs9W6|%;v=^Bzv
z!Wq&S&IFoacVJN6(3q;)6j+o7-BJ{85m}dP)XZiBB8mb+A<%5dH1-4ut4ELmiwHzx
zf4P%<U;@rFR0qg)B2Arue6-6}9bYMmSukoq#Ar~-0zou1#Nuj`@DwEIpq7Cw6qrlj
z#{WtCs@7Cw8iK6aSP8S|8KJwi19nlQ6v_<><{uM`)x>PwEENf+jFK|NV>Mc%X10oH
zC|L@xMv$T%JI&@<NqB~OiZJa$fcHHPikB<_JduVcVs3<lBm)u9Lqf*$Mr_Av!$=GL
z6(P|Uy%p`}N><f#p;TVKcj16U{jj$sU<U+ciPlT(tc!vq0Rb#z?Dj&^1wHPVQXwFK
z*1GA(&Z=u8@k2<D_yTtcvPlM#DO=2t6$B}atCE(YWWN<b1RMo&LgbS<mu4VBLJIDj
zoI;l$Mqsfen-ekmR3PY(6-7`K5ROvtOazh!kOH9&ViQSh6(_crEJ0B)TrR$Juh_E`
zMZStgf_^DlDg_PqC175~ik4yp&@eQE{HER4(<bijZK2iav8DfV?AVH2F}AF-4=J{6
zd~TCUEcn_JL_DA*oe(3S$dsUAxQQ$>CC&1L$yHz{RN|mZFjRK*?JTS;5eH4PiD^N%
zt|7=%z&1{=Ydj8Lg9w<W(T9B&Rlk!b=5WX0B$0+tRyBogvO6|3Y5$n6(D5*T?A{-{
zqHW|pmH~qDUlh^1#8`TqGJ>oUDhIj*p5?>TSc(sd_Hh-Gs)uHQrxpesFiYtpPbi{U
z<SKUHlgCox+NeNNB#@iyCq#zE%qEsla;GKaq|qrnJ2z4KA57BKJ)bMzfjU(-9TA=B
zX;_8=desVir7>dt%1F8n?}utfP78$qw++!cq0wc?CJ%1K1HyWduYD#Mf5aIGa!lue
zVp6NP1Qdr;`2QsVW;7LO$>hXhK(K}<nLoqf85UNdgauTkNr`zr-4Y@+ccr00c@%dx
z<AB41<`pBPXvrkW&g6}PoRfmusW(kCL=sdS(Ga3MPb<}=<W+Zt&1y3&7;!C0q*=b~
zFbM>|(|gMT#9BHs4alYe4WjQMA**JzwKcbv5Wa&B+}c_X*ob&<NH{DqFMB|qnTMx=
z&W&tAK*yzEU>ZU)DT_4KjRDDZCE>6jje$YJeGtAhk^@HvKD|S9F!A|d;`3de_?$8m
z?pw}b$$J>gXuh)<%~>Wql8{^$fvjV0+Tgk|cdvELap(A9^g{I2T^bO$dWG{vaS*KL
zxd!b-bcE#&)@!1m1et{qbM0=U*oohtYCC{97sq!^%Jn`NE_{;+&n4mGM@b*wnH^%f
zc&dJz<?>^?DBGpGxh*Cg3PuW=&G{d6Lo+o|Q{tely4f!EuxDhYEfAM+!PcV?9Um>J
zs3^ya9v>YaEg8>#a9&2!p^DOS5`!{r=iA8FTjjdu)0>_fcP7euLH+BdqN3cdA6jh3
z$L@bHYyyj#+UAzp>Z-Qdnt0CRi(?o^`9fL6hsiQ65&)fuw}gXp_e^q-@TG-3bIJLX
z+X~q$$#2HL?dm5Y$54>zp1->}$CoStvMMT;1VNCYPV(qX^%S`;136Xk(WVtkzvYLY
zZ$C}+cQu>%t~vk)v2-6yBEH)_3x221#y4x(Vv`9hEOJ-3v|!pKjmKVgIB8vz2<b5u
zw>uk+kQioK)v&2BRcke6kmyTZgP;?phJp+4zDu{jD#Uwf=grdS?V!r59kKfwNNRL4
zubial9(ncu*IChNBJ)ZoMJi?b2J=1b2Kk-_U~^SgIdGdRpEf*q(!f*cU{;w~7vyGf
zXGvi(5W57~3@0@sEF}mcbZH2wK(5iNM`Vf)Sr6a_(=>y3%`Q$T#Bc<Eq-801?0i@n
zGE)X@J+>Z5P=~5SSX^W!!USOjddV4^kWGBb{IbUKPde=#EmoYAu>q&h&njW(-azvQ
zrkYG46$i1($k<3UEWv~<sNq;FY{bSALj_)S7Q(VZPF_V%jb@f|iRqu54-V7|HLdM7
zNe*(Nnx<kuK^Rq35kPdzM+UhKiN}5<7^{p%gMPR=A4yUq<;vuoi|BGR#Z)M+tSB#|
zueTY&V6pps4t8EnD8I9gsdx)D5J5ZJllM}i{#bep)Gow}DRS<8Wvq<edp~U9#TWio
zn)w)mV&KN6Hs(*Ca|uaK3z-E}2BVzw!wKSKa_dKz;Es4`WTs`|HcLQ)rXVW_5CxKE
zuxQUDMHivIE?$7rMhoH32`EWW0unS5*?`*s3iCi33GVD|X{JfiE_+<|WS<sP_mapv
zNTa4U+iP*#NRl)Xc{Loqf;>V50FVs16B=>bdL*k^JWU+145frE60@Gv*n~LXvaDp5
zp?F(%ku-CP+yUL-#zH@hYQPeXV0MokD4Vz?Xh%Hz8Zj@yUyv)`wuR_ac_r`QBtyL&
ztHGt*q9Y>rkW#{x5EhZaXkR%avZhYpD>eg1Z51>m6wXN+kH2=1bZJr|jGNFx&$RpB
z0dGb>aF`EZ0)|5F$23`i2`HHP&)@;ZjdP0=^1Mi@dM%M;O5oh5Rnbx?0_sd4AY^4A
za&|%>-%J6ex$+oF<OsPeigZKMp`m0W0Y0Ly)nFd=2=nT>l+7VoK}OS{A|O*1BcfJ{
z8=z9&l;RO)B@_qaBC)ZNGWIHtXFbbM;vmR>#Vex~6~O}PCzt$~Cp~&(M~~zfb|q>D
zAaq!%g$!cw0M$;Az;FvgR|U82spEWJ$<?bqE**h_(jF7c{l)cMfv&QU(&ZajwtW;$
zh)kearf!+v$b$d3-Ufx*1e_Jm%_v+)p=ha;tfnH&218bplt<GAGaVse)!kxup`^pM
z2nu?7N);_t>bgaJTrvO_ThM|Lq-&a;K-+CtNno3iNuoRy2hnk3DQtNk5n0tOPSV5d
z4V;?N_%jeBtuun{P)o+a;Y+IPn_6q*1R>bUCc#W2mzpNLLohfp;>;o`Lq&3R$yquO
zT$D6SCu_Z;rP`S#X%6BA{~vqr{?|5g{f+l${}oe{KEM{q<`z=6+0R1=$<idi2T0p}
zb^FbZrLjFhmb4lPaI<;-_U~)XTr{JbW#bUiMXz>)rMX|uoH>{Gkt<Y{p~*+yOl9%g
zHDi;hQ8I`R`urIbob|pl+V`{GfhKpMVQ>bVU%t99%nUn8IyB;n@n4nT#!E1uv=$ce
ziMB9lG@Dd+40p%feAYptEJ2yOl@`-VGjUFsRzPj-0?r3jEUOj6UCwb&_I)0?P2LSL
z_4)5JIM={HS=+H5#Bnf1<0zs3;pc9E;>brh<M&Jt2hyn5=YvZJ863B{<>2`Y{dS7k
z73(Eg=-?Pegy-+&bvbe5JG?Gl73p;#B5ow>-LI28O=zfZ95A?Whss}V%Lz(GBt1NP
z|30Mw{g3EBNjws!eAS>mK?o)!O{m9msq2a+1Ii*!f5^%2zVR*(95E5M!2E+~gPm9z
z+8E6$e8<-$!6RZM*hhQ203ieAso2pO!z0k&?(P0bsj2cP(lSvD25NrCG@hth5Cyq`
zP~Kv=AxKjj!5^UsjyJ%>CZS+Ra}g&1H)dwHqo|1c%BzY>MV;tEm|{p<bFgHMh6t;R
zj;E!bX$0&y=i3PORiBjrDhi2fn5)TRM9`N)K}tj@4`uov&Ri<vQQ;@3)!Fq8cLg<@
zm2BVi_!k7ix|ECcAXW6oXOd7A=mbKeB=+>Hr%H}iu!pHLSwK?outwOr5NYE?td^UC
zWfoshznJzRzo@EaZge3~HTSwBBbWCybM1ijjU!q5#2M0r+~6SSt?(`<)Jq*%%rHtE
z-kpJLhf}aqA?`>UPt;m!s00qu<{tf?43jOzj5Dn~%A>4w(8p&?n#&M$l)p1eH<Gp}
z&@$UlF*Ch@k}yRw$kg!}iupN|T<5eyi0$q+L2wgxR6}6o9X0g56<H+>M@~BClgOLo
zh$cBSuIh2K2};AdJwDTe`qp|~H*3dd4Hja;tx21NiJvYy;=3FOB}Bwh2K%CH(-W$y
zOvCO+7i_$1F5R$UQol_*B2&~ZY8#LgyY`&o8)natqZo{R)Q2lrzbDSOvWe1CaTyF|
zk#j0;&d$vA5v_2Dha!rs(w)E>zP{#nxnK>gG^tf13;C7@g0WPkYxS^hFW=F28LPO>
zU@vVMZ#|sxE=wN1Tu8z%8IkbI1|<9<@d#_;`W2(}fs;+8OsF|WBY4v95KUs31p&W3
zoQg}10{SSQq_h1*3%tafUeaa%Wy^V5ZdluUTD}|>-Ym&~x{V)nlZUhI;4El#o!hh_
znLT*>b|KySeK`c>9Ad3htRBkd?BxkCk>LJX#<4MY#g&yAh&A;xH(Th|ZI<8t>))M~
z6?7oYvm@aPnnPOVtf=8fC~X-W#}V|L5k4Skl%N4gZwLv|Bnwg+2gJ_wDoPLzbN^Ft
zKtWEG1%i-n1<}aCAr7V~^%%cLPDnZ?nQf6UCc(rK?Fr2pxS)0Nt{6U#U64Z__#o3D
zVVZzAB0?CQMgA&7J(7ChL(D*S+@|UCI(%T?cVx{@8i8z#q@DwnI{XxaKOG!UzzF6)
z4#eML%8-L-49=EP3)AhaNWm^&5^TS-BKK2w7)37F?sfBb1DxdVR8f6*)7^5nn@i%y
zSxO2;sh6O{i$<eBs8lIKLxRB;9Q?lUB*?9*rC}I&c4YA=!9EN$NNc1cKMn#kp<WWH
z5#*D^k9`^<pALs4v7*y3VSO$<{z0_4X1MFqRK@3C@6<y4<fb(jN&z2DCQ+yWf?(s5
zlq9Sp-teth*4_N!@%bhnlZt%w5@r8n%IXc`vREDce!u^8X9xc6_xtw0TboZeH~W9s
z+}YdR+u7aO+w1?Kzt!K~+xi3QFT1l<PsVRrf9T)2u43oDk!NKENp{6FrZe?;9m97N
zqn{4my>*6BGQnvoO%@=<3vz=KB1El#`p)U0EOAT{;zEQEHU?9bt1!AjH=JYOw-KJt
zk7zjhBb-q(X10=4%Nvey^}8Zdmt})1GUfNZQ4kHVG|m8x*?AjXnM`|@1;K?hHqlDG
z$y62bhD?i5MGpD?a1U|>6v^{M*Ce67PeN%4C7R_*LkCMUilU@aVG1pBQ#{HMSoYCr
z;*$hLL(a<s^%o-S&GljpXluQ>RJ6TbYJDen4F#zwkvC9nw=IT=p*0(hLl?T<(Z(G4
z&Dp44&Wp{Uic6f-fv%vB5e?rEnN)B%`ltM6hElOom1C@kVN3CdRdUBK$cTm;RbMtN
zo_M3o4R6%2)E3)2h|;mRfQk8mqu-E73qS|NDCZY(NTQ4ZX2?o?YZXpG4YzN7)Es@q
zTgB5`pDHd03KhXKV%eCwGOB~<C_R%G#Z-KK^0!y#r>{T!c>3<BaE2tnVk)c0-W8d$
zUYcZ#QxTsgL>ZZu<LK0CO06aqmWa^&DlXU9e0)AEh?vs7i?c#0X#LWNvp*>XA&^uG
z5{o#h%XAKjvj&4Q!4w7*=$NEKaC2GjtRU<5-LdNf44Ia7bymukc_{AKGO=cz^8UM<
zZ9z7mf9Yid>P%=zC)hAc{)@ZoZtiVw?>*gn_H=KSok1=Ml2w?ttES~@Um33EW;@bq
z)wEfyvRE~6MU_1qm=Y>WOg@nOINMj&cskW_IE*-{rD3XkcY|pG(*vY^LeO$eqf8h(
zat?ir85+Q~5PU?lkW=wr1b&FF!J*+WazC;t{6$<N@_CmUX()?^O*uCVC|I8B7pnum
zKojAL%V+l*hbdUNc2?|;?xWRDpI1AbvWq>RKK?Jzv^b&He38pFL-{4Q;v{W8N8yw=
zcBGIzLr5Fdf0O3`e#F1Vp~nZ35eOlJG}1@HK$Z#nT&i99IM4(|H=$X!M704uE$@(N
z+b)bfNRpd-+}zyA_0R9-JYSIU!?)*C76*9R147p``tj!rsO!(1L+a>*2zmh|LC>u=
zmdzdAD}mwirc>qVAa3{|y#VohO0P*U-7vdZ;zzD2t~@y;qoVYgNJ+54j`$kjS~l{p
zdi!&d3Za0`1W^-Wfr<+FAps}efCSNvm_{v5a62tHoXS>jtsA{PEsm*JW}MYgm*Dzg
zEEgkBj(KCz*_DIv$$YV&TW#>I_l8UrA3PwINr+*m4Srah!<Eipu0-(!#)z-hC?Mzs
z<{XD)m?b_)r-j`T_9ry#;VcDHC1JIc46xVh@c;7WidyrtHi-;%?s*o7V^yRAJLI8(
zcEA&B{E=LXpJYKU0(B6MDade{?ee+0s(%(v2bIDC3sEmg=*JNaQ~Rwv;l*=Jl0l)U
z5lOAzH#qfdm(zeUa2rx;@B`1|TvYo}maTQL$jBV=x+CAq@~XzX!qDf!$|UWDatz8a
zN(Ht>=quBIDgW6(SQJDVk{GW*OqCx%nYEB+UlPI1?!BoAsMH*QT$i)FG!3T0mQO5=
zgR^7P13+uQio+``<shTo=ga7dXmLCZM+sr9(s*5N{}<T1BFaL#6jcp`y1wBlfkSjG
z3I&~C0{hMcixpWUev+pldDMAy%xN1xieWgU;g=@?JsI^$qHHG4$%x#dcYML|`PzWV
z!+=mkZv_BjM<{SFLA6j_GHlH(C5bSV1QWyj2$3&MKAdMrhpgg@X_3j3d8SWh^(;%*
zUO5c~8xG52&S4>qW0DG8wZtU3oqmWhV;{x@^Ai9`HNp2*3P#dA0s5!&w^vCtaumUK
zI0<y#CxPCGe>DYKe#H6kA4G|E^U{Dh*n{5j)zF>UA83v<i2SJ|+|s(>#bznMRupWO
zBlJP)^sM-#^yi!v4UE+#c_{4+tet?BSFpTOfS@|Yp4k3C7H7C;Ya?i_OmwX4g%~VX
z=E{LKm0pCZjlt=72N^08I1utKXkigQ?PHQqShj%@jBkj2Sdy0mlLV_7q~HpGEFC9N
zHX1{xMYusXhX58YUQGEqQhUFo+mYsxvi%*!RS4Q4H6sF^2qatzT34!g2$(T!x|_O1
z;&y+2c8J#ar>%8iP8yOSg@a+!)qbzSiT;X^7zgxPX#8byJmr>)-VhRt!T{HeXM#c%
zt~Q8vqA-{$YWF&ct3kenUTl=a-tUS0f!U~_W?nQAEPDm@D&K2f^D$S*NP2D=5$7tO
zhk+P8sYcN@4u#m5DwQhAR%<qr6q(h@@tJs|E*^>PBe88mY^82Bma-K~t<5Q@Duc6w
zM9{uG=!<pxMbdUd;XqfQKwB8l#mq$VVdCEZ=`;MHxwHJO8McNKXWmwUZEi~F08twt
zt0t2y1mT|00p$L}XpIh0*_}97cjg^6oag86XCZH)NBkVfRmBwr*A`wmke#;PD#fvC
za~YY}Ri)slQaWr(PAVlAl@<;vt*+WI^H*fbP(VErGV&qicK}$`6i+_DZPUJw%Y?!`
z!4N!E2Ze|G5Rm@af#Fr!VsLoA6r6yjB*DRRtDVoEe7Zb+b9C~#m`b(%`IArQr*Drw
z9Gstg{-uL&fMm!bY9!w^{oC&dVQv)eql`HOv((v?m>E(eqs*g_w2vwwV$?33+{1yd
z6fIlU0)2QzZqwchBPkfs7r%hV19mL;XXQduW4@*L^^yEHmuat7_GMOirrj4<;p>#E
ztW=<7CDx|&Jp9J&vh%cUO0F|Zn_W*`&Nj80wrj4RL@|1+kT8ue(wT~XkK6UeHlcF?
zr*mdUWG2q3NDHM-lht35*{!trtBRL0+Xk@80<gyZuWbEi+Wra4zY=t#xY0KtIKqiJ
zN8m0|py6<;qP8!?!&Db0H9&jr=FVT-%~`4+DQ?ipdL>*`k|5O{v?k=6>*(_B1-d4Q
z7AgWzP|Oegp_*+dgoXmA+Hj;T0*r2T%21^6G7Z>Kk=iaA!%t4*!wTMaj{$4zjjrX$
zR9joCh46~svQ0ISHgwo?cemWz4fGEcjKfSN_{KOOaGjk3GA+vDAi_RGWAUS#Q2dan
zYC7PM1Qj#PuTd>ZA^KO>H18H6G5+;0^kmJBRmNz*XW4P&ZQhZFb7-p^ne18r*`_6t
zt9CD1N6-HsI(>uw{ci}l0cPLk08oZlN`nA_#Nm4xlVeNA<WOBH*t4sb#U3x!wp}a<
zDUT6wc1&0$)R-UtCiVPkwTm<k^AZ{>*k;RFyeB>}`L8SCFu>m|8;CUKr~d+2TT5ry
zfM40{D^=}!b#HMGA2`10e*^mMms}_J2Za0dVK0<#9|-rWFO!By<aOb)@8&N!5BP}a
zR<~fn(kWOxR^cv+o3`aa(bmQU7TTY41cnvyCV$}^u@nyi%EmMtrDJkP6E7gq@G{Am
z41<^O8*hb0-~1+g!pq(^;2TDPFBCH#RDCL{Hm&$9TZk;ALrQ${?pPQi38sD+;E~)j
zO!+m))Jh1$*8&*u1c3krF}WYP4A(#^yRMMrHqdd3ZlZ7%#JqSoBwlJ8zle0MX+t`r
zk$H$6fJ{y@VunftR!9KxNyZgz_V?Vqzi`g=JyT|*?1rY^*up>MY%vWpDf3hjqHZu?
z^(z>^glHs^+Gd)H9xKsV0^q1J79RlN>ZmBtHQgLKv~w!Ml`yi9ilL={l@~`T6pKYA
z!gOUu^=3<7MG5-xKv}0jM~sM1;-2&a+H|#=5pKg$u_HwGCOf?6Ztc3aXf2Of$wXWc
zJczDAo?k{YS}8<;-84*#zkW>2#iL<b>XR(?aY`=I1gB&)wWJskSp2<*1f5oqekA^e
zKcOL~q)7!Zit>+hm<&OgfSG~*WmxWN(X0x<Db#t|TI9eMfb(k|OhK5N)<vNJlt630
zZ28IQ<q>kwJA6wg*+fIaXb>C>HiQbuI<Jv3wAoirF&3y8t)jt>zI$64p%vOrO|2Rk
zsuT2Jvg1m-YW2e&0hvR6Ju9{;k4<_|)TcZ~D6NlB8U^GIaZS4waZQy3<Rt+?gn(Lg
z;~b7^NCN_->iqKf)xqKA>G@CM#N{Wfl@yfuyp)$Oa^$7c@Io+}CguE=?e%9zD2Mns
zX5eu!u_qx8J#tu#L9U`B{bf^e-1RZaxB7PuQoaL0%EkUOqB~0PHGN3sQLl<pt37wG
z`H&Lk;nGQzpN79wnGDMcmD=PNKEuE81@en=fI*b>gbEn7C??@M*-Q-1o*>`fbD!}B
z3Aa@d6p9xm%l}2g<1NC@@|pd!th19N)YUE;2-zki;e6QQ47gl9xM_rrLq<pA6wE-y
z@M`qZD8F`@ShqEG0di!1^QugtLb^&v9^NF4BZ<x;#wc%ruruCAJ{e@A4S){afFQ0k
z9Bpu#E27xyG9|=lmnT$?3o9$=NWkbaf)j77k+97=CCA8@x9XRfC+|!K@QrqX{N5-m
zcfis^4<vX!DDYq_ezKHW{*}fbWYD)C_Mi2iZRIGPnZ}*(<}YI#YQC^f4mpFXwu6c_
zA(HW>zUoDRFW;)Ay~_K&%I9`f?5*OCg7$}=<kz&DAz^eRguQ&ZbGi(btJKvCJ73ge
z62!ekyl|B3h@<!(c^UH~FVm(<J*mcVve@DM(3sH<)BQC1SF;TY19lT7S0rJ^5Q#Tc
zqmu`Tx4fWyA0j5=6vPi1KQd&gMH2(gIe>sxd~awWzaI$oO~nmEZbc;gG~lzw<TD+l
z_^HTJoRVP{Fk+~Rs;&)|tu$r%!K58`d>KKXGl+0aIeB#<x|HFd0JII(c?TVY#`q;p
z@k?6QS&6I!DPLgkDvR5sm0;k~wj~B#Md|zpd>`zMZ4Vi7*jq##^dtOAx%1S$wQrhi
z1Ij-QkFH5Fm7D_Dutlj<FhO4jG{ni2uS4SAPJ#_->4t+FJY|YWxTd(^zX>b0SiEw&
z8?Y$IQUaY;#!>=P)G{~zFo>d*@0i$p>jq%c2U{=z=a$MbQoN>sA4MRPFm0UWa%>Je
zUW8L`2tMxM%%`alf?U3qy0r2KZTe7?F^2`zAB;;~DdM^L5teSvH#*@I!XdZ(pPDok
zZ8pA^8#YY93(c>{s6Ul+O-PD4OIMLge=6q^!nKM#@<VNoG{Iy@uZ#~6_TftgiQlY1
z5}zA<+z1jsW3^ra<BQfjoZ^6ncwMbo_2O-5?FwGmQ3;H}kzcep*BGbDdPc?JDpdLv
zhwU95N#d=;s&l%?Nn#qIJ@*!D)nuAl3SE>NZ$Hhi?n3t;C&U3Ntb_K_FfUj*+~#Ih
zX{00f{_W+9LmBP^CiLC(;@6<}4kr}99P~~T>;>v_1e#}@q$=_{>Q1hFnjj}eh6K8J
zORFTLJu$_-fDXP#o`0A8=>Pm5sbGliQcQ0$WxocFzKJ;>@ilgK-A#9A)BT7O&1@wk
zjyBy1z9yj?C8HkvwI#Aw7Sa=i%&MSUQb5~*sF-AggvTP72E++ba-l-n8t5(Uu8%CO
zbyumaNt(rZARQqLtW~~@NP5gu9EZc`#T0IPU9<+Vh+TeBFe~n^E0vWl_{@+48hQ{r
zp9FHqWrk)kl@W@B_@f3tO?+&Fq9)A>O6E~Yx{{ko<u<bpIyt)haDMO){oc}*DMQ><
zHeR(~I9}mJ8fD&i?zjcY#M_+Byx?ooaKWn1R42_@XV)5na;ykZ=^QItKrqg|up8Di
zX!fRf5<D*NhqAmCxt@E0r=HZ*f`fGK=D}&QlO@3qy?nYK=E`R!HmV~5(yd5Kax3#&
zA<L2YWq{2!3rc0Z2}`lGD`fo+U&jtfy~pkF^|u2XSD1x8l;vApTe-be1y)<bp*mYP
zWX1Tf`dW?}h)f=Q+X@_rY(_kPU5p=Sl>uP9RfT99(<<vg?b}{8`1J~U=?8>T5%~d>
zA0S-HffwraJu{TmLKWo5RE{WpwT!9S&UVo=!xtkf;z}{YJ(y26F1*@BWx868qv%T9
zl$y(zX;tFtipq(KH72BWg=W&4>Iz9pV;<*$k>yz-u?-xg%>|VAC<#-V7_NhQit^~n
zVzNXiQ|;xMW1Q(;z|TCKvjJ5n;svjWK&j%dVoYIWi*1U#g#VCRbTnF7QNQ01kf8E@
z$Tt8+LPHb>fNDi<Q{m-Is0@=yL6vOeaOJ*}0`QKY5UO}x<M9v`B!FgS%0PEOd=O45
z{Ur<yxDu;UD)p#^azULHM3^%G7`%Jn;xCjiOq(Yy2du?_YcXva%osiC*y_3X<O(64
zdpilFbAULOi|_fU=(gmg($H`u(a^0OgU*-;X}%9O@`3W|fix2wgNXXTGGEjA4YFeI
zcbAR#(Ql64R$v$2&5<K{Y9Yy%1f*LmhJ=2rLO^w(i&$CFZb>TSXi*siCLVE+jcBM$
zyiP+R-G4<4DfqZ56!VaV=Q)G77C@wfaN>>WHE~R34wK&o84Y~L3kVK{xE?v^h75S`
z<S+Z!nM_4wYK`rt><r4AR>KEll!f%yj7ShfzVKw9lryD5ctKHUSdnQP{%#bLkg)(I
zd?7hwa*MXN)Cn9aqfE%m$2<djCWRR@m|CrhLNug_n%FEB4$?V@BYJhmM>flbyPCH1
z8kL(;s4+#G9R9}k7OlXNv^!D8nEYErL&Ql#u6&jDGbU{FLDBy6_}$s*`Q^dM<-SsB
zn?`L4A54&4-64s9St`MRQx)--iOeT%HZq%l-QpJ?KNDzNIja93p_>YQ6CKTXmNpZ-
z#)^3;L4BIdE6;)S925K=zyd*E|Mu!oYr|L2$D#ZsaD$fDg`sxnftm|Fv1%=LsOIB-
zr+k@}<V@iW0Hp%w$8UuzR#@V~*<W=izfoJzyG1Tlp{W5+3~`mMF9O6(eiqSKf5`2#
zMA8o;=?70os?!%teK>CJiw(G0`E^Tv-D+s#R(&J4<gsqI^S8Vzu)Z*Y_{nM6k_T=_
zPc_`8H{>u1wYe9CED8vyf&_0AMkz{&(1Htie>nj%sZ;{VUvHz4r9uZg263Th0s%)r
zN-FCOZGfq)7)1sMU!zO_$lMT$U=00d9QuD2cyKH50*Ai%>6{Z`?F^Rf(zW)0SIpBT
z;v+cj@^^xPE5->xwp|LO>`L8y9vs|e0&VuKP75@@rsq-5^QHAXokr(V)3oJx5$|VF
z|K);L?U!_7zBoGn`_cJ_f4+PB!Mw<EUPq3E@@jt8f413ellR@hKR;alcz$&7@}f}0
zR=;0g!r|f3#YIEr-G;nI?MMH-JU{qwczW{c_;sO#S#>XxRp&W5;`KLXd->wS+3D$9
z=;OiR<?-K-3duK%<74JHe)+bX-cJ7Rrw<oLhv!F^RgUSe05eCeZb5I~km)%YnuoKD
zI6QR>m=)tQ9JBe?D>79^6ri1e7zH}WO&HyvgfQw8iNY+Plnp&c;r3*J2x}Bm6^cL`
z6RPlO*a!CmjqNL{STz|Z*aH_DYj#yuXP8yWGp3MGzD0<QaYB6kQy`WbKM|rnjE8N-
zcqxQXFbG=l(V~4|C^;d?NICYD2FyT=1MpA^9#o|PmBHr5_?jRbBn11@ydh?B(5MZ&
zRXI5C>V_E%f-0-UFy(X!Ujfzgh!42IfT34vuRXt$$fv_;KDBC$pszsXq8kYmtZ=&<
zhU=FN7--o#k-m_maI>?L*7X@^YE?&yi$nvinmEVxpyl%cmN#t`m{z$1WN2<ZluA5i
z%rQ7TaAsG82&8HCsL-&cQlo$Sl>m8G%;_oz%<4$g<><FGeuXDAm`WAdp+-5>*d&D%
zYf&sldILf9XT7x6b7>;gQ6i+k^a5NPFH-DXZ2;^cNnU0+fES#ioC|S}ey56><%!i8
zg3Hfvz!_NYs<&dnD9fnBcE=i`4$FixuzJn-@UIJv&A+<GXV*L3e{YDtp6b7LIBzB1
z@G+8K#k-yEzwdL5s2xGO04{kmrYR9()v)BUrmk;mnS|0DDjB&RU%pbGo6(`y4POW$
zG=kfmlH4Ajp~K^s=O}^D-nr?T1fgt*0lumOhwt{bw^lb0yx7z)bPuCM$ee-Mgb-%x
z4iwO^6#7}DP*)?@b&=z67Eypc&I;%LeD#yntPQJ8pM~yrW?=KGc$MN<;xhuMQ<R~T
z$S2^muH-;~ppAy~miXXDBxTW|Ot+7=w***_?1chkEg-NylAA|z^GI$U$<6Y}P3{!4
zUsIv2Avhi?9;*=U!~*M(7m1grT8#i^)IoFuYF!+n&HmO7ztvmXs4N7B!7vIPfR=!m
z1JEKgph7Ul%VEWW{#XaS)(FyORIR^n8ky?8YjCe9e4SvAoY}Y`fG4uDg3cnp3@15<
z<9lmx%#KOjEIXo7=;Q+SrB(zZ&um}2qDrurF$8^W2E3fN{P&C`fNX(|UusEl9QpGW
zbOCZ-B>ua2Q8GkyeK}t>U^U<3^4%d|iR&})0KBi1Zk&;~G|X;KV{@B-qo8Fa#Jd`s
zIw4GUtNgp&Si%d<#>tay|8huFo6jCL6xFwiS$03m<o*!L9yqk!w~1KxfEGyuUfEy1
zI$oL4w{FekuB@PgJo3Q=hj>JMlv^nxVWtQi9@r|XT<6Ln$uxqlEdO|@0CqOe+20R!
zyak0HrE8atSJJprnfnc*EcE4psBANY)nrF7!rC-)ADt8I|0AI(ITeC%af=Z~k$Frw
z`XAz=3vKm4L*5c5-J&avWtcP*glH67{nu2L4TwETdoL}@1R{2Br6|P81$S#zz{%<5
zkr^kDjzT^LLeVdQFGL7E5PVPY6+u~CS(<3Yi~P$!C&7hn*mzF-Ec9{cX^S#nL2enH
z-4N37u7q*wnp3PyOyNo+I38W5fc{4)AR#4T`j$?p#MBZ9HP{;yXUJsZl{O%;{qR}d
zRx2c94Ge>c6efI-3J46UR!14OI97FH3*p;Cp6mkVch?4Rf&$KDTVK*-U%XMxoZ#D6
zG=Qw4!|DUOqVY=zHu)X^h~;wC*J@Hbtgf*hFvNu5sR8te-{lH(UobX9+T_Fpjvzji
z3~=JQg+m$;>B5yqqtvq{Cf_j<sZZfhPtqugM*O=*v#5CMTyNEWaHO@$+Bp$w3WZMa
z`tSld=ryEAhak<7`?%D?+S>39bJ(_Xy{)HYJ5RM;TlK*|F3`nxsTwPDb&1kARM-C>
zekmLT(V+ZBXA`YxNYF4y2Rt=;5k!O9!6_GLNGB`imJ_srMMBKbs+!c*P%~w!+oXUJ
z)U2d}iiX8{DXUON)l_U}&9~aCLO6T#umYisv6hdAGW^HMs|$q>Bebt-cM5YsIKPBm
zlVA5jm4!h}B|)btljjoP0S%_&40xkO2!&}9Xl$-N6l4%Gp=Gne127r1G92n?mMbgh
z9d8my%&-U0CdX%dK#f)bMPC(iv8F)@hs>q%^CzE9UR``RKKrZ!a#D?nF5pq#3Bbf|
z&&Mh5>Q4d>MSmQ?PxaZCuqw0p6odvESfweoV^`qe7<)9G0<2elNY7jZ#eKkk3oYxu
zF4-HCMr^1y_1KhZqf8DfUdheBF@xNRw-$~NwCNvX63S)$`tS@5GVh9{tiYAP`c@EE
zBQL%vg(t1;wm~+eK-~l|RF<m=iD4hnPz7@a5pR~NP}f5`LTd?$1MFGhuh&%&E}<bd
ztF(l3Bbtu00k8*Rk$_=6>v6)@6SmwvK*=T6@)_ga`O(44cSr8TU#U3D1lMVrtDb1Q
zM)|F9ITCg%pR8X9p)Q~Q?mp^DY4isf5w^QgN*O27N8+U)sL#{?HUIfTWnu`){o#sC
zWrqLZPjgD1%;C?Aqu0kL=<NLX?+2Gh=*`hj@b>5Mf8_K0`OhJ|Iy!k-k*uN?FW{Wt
z2QtAlkgfT@AI(0v6i?id90fTDeA?>EGP+gSF`T924_QKaDzzL`yj@q!DXfdA7xAQ9
z5c;^H9I)js79_IBVsK0u6a`7^nxfd+54XGhzkKjWl77gNz%2CU=B8MpY})l^k7r=@
zqcKmRNi>Mk-u0%-pRQG+k{77R$@|h&n3HI^0Scul63?qU4TGso1SD6hy;B68$$?Ih
zd?SN0ntO2M#RldbCsHp&=7TI9b1p&#e1Q|}7=j0<Q*j^Fv4r_~>ytPkUhaVf#Zj5w
zpon<{VvQFmF3+YU0GJI<6uVaQk2qmtcGojTj-}~U-k?GnK{zkyC?x*-BsiBw+J!Mh
zOeHwFjcGEqH5KiS7|ru;RC2o;)$D9BvB}8d8+Nh%_iZ&;DPd_2&1v_bINIf*mJ!M-
z)`W$Db;GQwshpYO3RXFyJfum+$d73n8@QhqsOYW|(B#opFNMTK<zNwSVBzJ}go*H(
z7t|+5p_fcSKL3VHk9{Kz7&e-{y_&E?o;G?XE%=&Nj~1XnlCuP$3u!pA2VCG8W(g@R
zn7)ysVM!sODSwqjVfqrHQkn-`{_PE!o?)8g9n3$SiGxLZb+%mXBGDO6#~0}|AOh6h
zP6D9OXE;fXi?w_k<0L&2F<~#H_iM}jq3=T*^|!H&hU-&hHqEAq9m5mwTbXLIJdVtv
zm9MN(vlp^fB%0X@Lz06{Hw})KXw2Ng{03@>62P^!EDKZuwZj~h+LrQ_+>p^<%~wAd
zd1R!ruG6i`*6nVfn=$pqD&#Xm{xrlB>WM2Uqfw~5i{%Y2RM<9ahOf#x09}i!!Yl|j
zP#Be}19K5Xb&n9wv4OmC6zNd;N`|OwCy9&D+9=*aQHT!yalw0mLmwwTlENh@>GhkV
z4G=8+A9Na%5Ugy}UA-fTf4TRLHi<dNwf$O^S)Q0&KwD`YV1!?_L(VBs2r+|HhMkr+
z80nZyWIzMk24iJK1uRG+5sSf#GdP$9?1ND*4uZ&29;7^FeiK$(tukO)J(Aq(5-Qvb
zB)P3(j?HdvDV>kS-|#g?!j4G9-V+Y!%CG+;{~RZgC&KfJ%fBIgGfZTqTb*>Hn!t`v
zz!*c8l@AYCfea!zaCr@<aSo($J7K)Bqptpa%X=e#f1KPlA{q-Q?7#H2ngY}%>TF;^
ziHn2#BF;H4qWlIoq(I{p4T$zZzljoGyhw<aC@TtQ6k=DC7nE~gd0CoOLtd1SvnUD#
z5!>3)AHdsIT8xE}Pc%ZjST|`D$j~UtJ_iqBT~G79z*$(~@j{2FtG;(3uE!)!r@}tq
zAWZ3j%B%L`-*G^FWwH!PK^6_uF5fWSF;4vM_agQj+=hiEISqY@%pOJvhbeVbjfON%
z6eC`kK>FQkBz>Nev2iV|p>0yLxxM`tk@B|mT0wd4>)<u&O+_fpqNUDW{|;V8s-6cH
zC$Ry*vI4<!7KCL5;c0eK)1&fx@ld-U4AkXH;|1om@G6JopaL9vLPLP77EpGAH-OVD
zUrARal>V?%j5^@7X_yc;mc&WwRo{uS_R;Egf3@l`s1L#_s^rTg^rp(=K^dQj^(ujv
zg(`QRfURHG#AoRWc{MYoAYl*Ea;M&aVsWF4Ix~+4XOi)?=DwAs#rFMLS_md3KN7|7
ziUX0KeZold^6drZZ@n=NN9w|m226UZtqC=jL=F<BmrPv2w3J(de@ieR?K<UFn4`Az
zuYZR_%p3FP%eNPQHsiFcs4tgqFU<FyoDJ0IL%b8zB2pVNW`wx5OI5X(>aYrVfgr{c
zQH<6O4@6)SMn|H*e8jB4HNYJVraHQtPlrR2a2`O^cP67Q<O(yTbtECn62)r(R8!;w
z(T0EdmdHXSN~8?p;R=Vr%eNQ295M8V8Y&{kMAVWmQ>tgU6xKtB*uWs=SUEO0h&E_P
z`*{#7KJ>CQp~d-ybAw(QC?8Duk*E8s;V}CHavVOg&pqsVNs1ijicI+rsRwYc$P^;E
zG&W1YlE89E2qUSO@WX>QWXkfZfw>G4q7jH-DIAzHEUt&jl0miwT?vGnat---FAyTA
zG49Xqox}cY%CJA*{$c&BztdNN9lz3{y#27x<VI`Se7$_5v)t<V-L0LBy11;Hcblbe
zo)5bB0l(XLuPBts{Mxyi2Y%3ZVu7OwSKW3_G8rR@Gs>t>dR{b%vy?dc#w}f9{y|X2
zgbiq-Oq>ACD2>zsswJ<6P*KPY0wSzrC|EUMfH(4Jl*#6K<A{1h3rzv8NN@}|V39Wd
zWWct0;@>0%;T}Ze$z=-?Bp{$^8tBNFvN0Q+aEy5a-qDcqQE(Lkf*)zT2-O!OTUITT
z6~za9k!&FBf6SPYA~F;bK1(>6ZpaXAljvHZNF~7(4HE3>8}e!{-B8#Q%7aGmn)<sd
zCKay0`5?=efSprV9jv)Hy<kLv@Pqh9(e-6k3T15Z3W!oR`~Ci;AaB_MyPvWQXGR87
z>}m=a?;zZgefxT%Efs7hzr?6FE#!L7p0?+@79AngoJaAWDgM)=@_P~gJqq2HE_hLE
z=uznQ`xCmgoco6;bR*Z)SDsCRbgMU=iVIiq$lBeka4+B8y2AmbYJXq{ROy7OIigBu
zRN;`SJf-Yos`ix9L-Tk_J)TkvQYy8E9#5&?-zn8{?jPnUMTD82I-*FJwzyF}-Bi+!
z!H-dNr3ehmX^Eh#qBI#eASe1+5?rJS^-={EA&$X2oo+<PB_7bx_Lc8mVn`m3w8tZD
zVX{WT^zl6VJ)UQ?C;lNGW;&QfexT`BEe^HqyU71^MURJ&c?jjh@_RXmz711~G+>4;
z1^+dd5yj(ayL6(fcgo|5`};d_+fM#NJawaxOd_8I`Jt=cR9P6JgP79|bRK0XNsxkh
zS7&KXI>4xHr~<ylQ3z`5Xb2ymc(i7fwGPEgbvQ)+nMN6u3AlvvTu4$xQqR>&bgPKG
z1V17yTurszwJd|@0`)%fFarZa4Ec4K14XRiZ<fU*86`L#=Z8!HZch712ld&1*5CU}
zr^*{)^A7BYnu14e#N<ZwsQg}-kq3KDub>y&4rU{-39K%GxC)bxr+v=J0HukB@Ig5F
zNh*leU<8a13+obi2I<CV@U?_MABZo@-t8mo`&2;tsA}An2MH(UuZe*tBD}ks&uZnv
zW>8hNB8znY&Sz;e!e8A<dmosKHAB~Y(0%oxtF;WQAG*!0#<5!r*7VyPz2&Yu<x-e)
z9O_MrTmDwRy)n=iu%uEgeP9RkLr}x&p?N%=AN(!4?)+18IQK!QGS<)|gqSxbd}051
zd3o0AjQjdG)TL7Rx}j}B>z6jR--O}(10KKa`@NVC7)h>$n8!FPt=DbD;!p2#4>c=$
zU}xUfzKmK!^LXYx_%rXJ3J<M?^e8?4{Yj7KSpW}Fg1oYV-W^|D9G{+iI6OVMJU@Ng
znZQ7o%w%WZ+hE$MFa36v!)#T`t*_x@yRw2#Ml`(bKtQkkisSc+avJ+mL)hzc8**^k
zg$E>1rx;%f3K=LNaX>wMC=iSJBA?Lk;2P6_*B~z8a|Q}h5rKB{S33O99=sdcFZ3~X
zw{S#pLa%8+Mz&8XpNrElnDWH0Xh6i0HdBD$|4d~*VjdQ7`j%&_LA=yd`$-h@gYDq$
zTNw_I5zmVzoIVT<ASa1#be@HL70Vd@-O4boZ6bC_B)GFAx}CnrhC`BAu!t)wh~?o9
zkI$~3${37j7~qkDlM{h11XuyAEjtJSKlQ}8OWgxMccT#T;sp2=uRV`+tahs%an1-$
z$n#W1D5*$FS$?AXQUV`Lq3R8AUu0UrBAW=lkGyxhLDii%sDa)jVty)-;!Yy)-p8PK
zSDu$QMCj+^Se;mDghnJqbOMnJ@Thk!K5%L>(Kyrz8BvyUhA$xj_*y!C<Xw?O;#bf}
zCW|9RQ{W5*hBJ(&V*-Q5NhC$pDV8V=aTWy1BJy~65~XJeVS)s#te~@m3hW7h)dQj+
z5rG8uml@=PAK)rNbqBT+WX%EjM3EOU-%^6IaMHlQXfT)}>?IMCxY__u0ic7?gh(hb
zL*AzT6lEPoAxjfXLrs-9dp^Op7gyv)5T%tOC|ETnm`uspy7wW&DP=<{=-A8XBuX#5
zG4ZoNB?F?UvC}lq3h)eX1;NxW5uf*cwEF22Qh_uq#9S93$&iaa17y6)BxhV?bkD^v
z7tj{%gj!uGlUf@pROy>92Y~var=_C-L1m!z4IOn6`#!?x7s+n_0!4`B&QB_aFuFK?
z{lD*zF9AOUO5_{(2GbNOqJk}!#EPI1r&Yr&2&P}<B7%NE1&DlTb8kWz!y|IHdy443
z!_co8O~2>lGa%@S1_2HN<n+bxe2@GHv4D^mZGI2fDmk_n^@)cQ!^Kz3l~hX!;u}N&
z`V~Z@5lPHVAiau%Xe3{dB#9FEEsB3DvY5r|OKV=@dHZ|p)1Bfqc58RWEq3c!G0QH$
z`055S1t=*RBo9!Q`XourLzbm}lvyyj0l6l@KDxn4D3`vD!YTuCh%lS{EVzv$MpOvc
zlh?;5|K!`iMXw^E*q5mK*D5fFiNOg-Lu?wR_!eeIkESS}pDUt1&L5leqZ4W)_os3o
z1pg%ny>X2d%V~mX2&Wvn!79o}8p#kJg6#7o5UNK+ffp7AS7a*AM-@;c%3v#A@s%e-
z;%ZV51wJaq`dNXhIkU-cD8**sLKvO;)|rRW7igqWylShOf#Z;-`4wHtX=H=~vDIq6
z3XIsQcMz__{&1Mz(^giHvJHu@Nph3WRDoM5Kv<jj>NO$xBgH_#GW{1?g;c8>Xw@0<
z|N59rq7X&H;rFWusD>5HU()c2gjLv(fT|)Wv5Kd=0hi{RF-ZiEVn#FW<UDBUHDf_E
z971#^8wI%#f;vz4DoQ*66=woMRK;l(l9W<%12*e2$%t!o$rDk&G)w}}cd>6JKx`JX
zG$FDXBmsF3Kvw;Dd3koR0epw3_~PO%k~Q+V0XQsZm#$Dn=22mwi^vu*bm|t2(gY8O
z)Dxj@5(3*5;IN3mzyP=p;7i@YIOgNiJfe?*&mRMyFFo+NU?$96uEtW8@EFnjt`W^;
zBs>U6PCZ0p&P^vuHfEN3e72u2KTcjiUVRfGti&sdFWN`lLltXK2ciR(yZbisaL|<&
zM$)zWQcx$ge-1T(xVnxnC*=AJhKuhc;JJLh{KV0xW@aI#ONHv!ELRoNCD^Xm<hJDP
z5GNy&o|QkuNt8xj6zrqR!!!NXV$Yzb=Y+pg7h6jp`mDdPv$M@R{jC42zwu1|P`peO
zlaP(+kPqcp$J;2&t%|PsVy72zXZo@f)~=YHo$ab}#A}U@-5v}Z#^UAC+4<4o!R67*
z{eto(H;fZ}Ar1Lr%F+w~(BXOu9GqD)#2`^!Td~?w_*BfrbWh6J)VF1;h;l<gDSQ5Q
zV~&6NglOmmnNLtxl1@-M3pqtmGf+s%m$pdQ`^t)+uOBA*Ta6~ZtObyOrTb$L@du|C
z{HE8&{aUu@V}f56m8;trr}{`!*vmO59Y;PKJ!xRNvk8PmM@m(lG?1d!L%|>kP2M{k
z15+c0i_g9xTaXF%8}ivv8tnoOZ0U$DYo5^P(5^yIbnCwQUmX=)1Tx>vL!=6(?=jxf
z1BmxDht1X2?))}a6?s(br1?YXa8_Ab7Zjto%b>7)5N|L|one$X{s0J}At4kO@<?nw
zxKmuwxWhBNiV{_{+&C*Ml13;ctqj4V<6%WC9VO)Af8QdX#3b~A#bw#R0fN<Oh#5Pe
zDPLt(QDfDoSd`9w4f2q&o&05$Rl?nLpyi5%BomMJ(dMrE)a^Sy8BiQLo10Fu`4kKl
zRMPj1-xUgR6|EF!GUSq!Kjk0tQLoE-belp9au7|6Yd;W-10e_i8S{5tWkX`wk90S8
z`~7Yetu7NuL8OdG&P763kQ9qc@$Sy{meAf#a3Zn$D;9PsCREj0=co9&Fc4vPEy>>0
ztc|6|ymlcrr6}zC-OVkr@2jYVO)sjgG|Lo2P~el(OX*Kv*n|+%f=WPTw3e?Qbs#>6
zUBAA;3sTU?Qp%!imXJ?UOaq2MfD|PX?HNLJ!Rc%80^)4U82>yVzE6DQlVmXMm<CXs
z2Z{jP+0L1cA!wJbSE}sCI5fKidXSSSJkxzKZ6qO#L@7niSAY_tgOH!lYm)41>yc@c
zsW5RUOM(sANzQr-V-s+|l~KvEB(QVdK$y9JUJ-M+`K4c=8pwbnoZXWPN*`_mQILwh
z2IeLF3p3(vXG}CzC9*4r2=yAP!4PhV8kt$8KQIEqGN??HRj5&B&4I6E3v#hlH}RQM
z2pZ47UO~7tf8g*e;-%H>_64YH;)5FVIU0}zus>eWfD8yu%WCkB<i?f738)t#scnfw
z#Q|ro)*u=&7agYvGnP#V%Vz?^w-mFn5*`yDmXKjl6em$kl3?m~RE?EZgQe5MQOS!Z
zTYhA9<(WnT%u?#PUex0mSWjgYbVOPS?V~++^QpTfwc@<h?~`C3b=9x^-Tux_w?_PA
z+#gG~N9*or-5ebwP&+~^f9z!}0fPq;UZVjYH-{JrOxx4k`FvN2S1VjPI<>bwc`>iP
zt`{$KyLCdBd+D}biYZ|!in27$(tGLfm-RNN%hSnw{L>^*GKwG?jc7P>r40rRhk{3o
zaXNMZR^7aI*99HcS5Wl%b1#TSJ!2Qm*klO(nvsmSERG@_K-)B|gt47a2$aY6QGf5L
z7+Y0_OT#!*N4g_*;KG!qnt_0@&WwB@(QqF<`E>a9^x|kA2!a+i;dIOlF^#j(7<}jE
ztr$`g_(qY6r9<71!z9h4)(6q(gR~?q5MCr#s47E~kGz@6;<szYCR3wi5FhmUGblLg
zeP^`qXT1YW?n1-h3^>1hbzztpc9L{x#1-SeD#4AHU_fatEaDSwVbW+esqPr=j=TA+
zgG5<^GIuL2rj=&moG`6`+S&!252{#JD~7wA<DTsMJaU`78)EA7-)C^Hfq}BNV?BuD
zV2Z|3LjS|h-2lark8sBCnH~<LQLoPjmku&GZgb1Q^BMZ>6tgSVOR~_xF^mY$-^=TA
z;>dS+UA!vN>p(=@NY=YwCwZFCP~SLUaN!P>zuJ})l#EDvc=rB%N(1^I(SMS7Bux3L
zL3@G_Oh}qgkL6O=6-@?|MV$VSliz*gT^=}MB5r~C2hj#Qu`;wVnpOCYuStSO#7MA@
z_I3e62Fg>hqces_pugSQ{gYBt<x!+%q8JR+{ElfnQMDinas#2f#c)HArZ$2<LK7Ts
zfQd~)!I0)6P5^Gq%x*_f5%-l>6_tuQ(S<O@khbPv$r=q2Ru>&lOFh#F*l*6a5$vlz
zD*;p#64x+Slf{UjFNK1Xh)^EN^go=rRK}yiPf)9~>l^M0YBnp`zUlEV2!wSh7wbW)
z=#S4Np(@Y`ghom1=~qvc9IapvQ)jY(q~KwVuyrBQ#)()hHwDWqzMy_F?L&T1Rn6S!
zLZE8ybw@@n?`h`R0qYw_vh;~FqzSpfLC{;_T~4T%I<lBylsLRQ1KAFzV5dUdkv5*F
zwbW1v9Hh-X`aKyYTZ$QHT6vU5S?QpU&zLlqA?PT7XO?axZBd|QwxMEXdI2S2ie!+f
z<1-ZVb11paX@?No-ED&4ChVw&z{opl=zA-&N*a!wbj&A_H^~uAa%f!D<7N|-hIM;<
zrU&({^}24>j?Wq_#DrUuHVG3yU3A2EIS@*Sh@}knMcJk&R8^UV-H$HVc-LIIVZ)?;
zn|4H|s9n@HASrh3ImI{3o*_pu82hLXSFnChoNr|lrKRFB7|bH)RNS1Mndu{1;Sdi+
z6j`M^fi--6&F^x-8d_;mt40>`Ee`}^sY=)CVclN7qwO+Qaht(j+A`jHIOAQGJbby3
zgkLfu;g=0a_(kFo*2MKIM(G15n@X8bbB;#vq~9T$#4rm2etS3-mmCH3Q9em$`-v8K
zi8;Nb%l^xj^R(Qsw)eDrIV`+clK*rYKj<b8XWPM9(C9k1X+tu5@b>LOy7&8X2+BFc
zTB%q)l+D@86JR32{k4o^WAKVAD>D#l>Sb=W(5>4nzx&s}J1Z;bK$>Sq!WT4$w9Hvi
z!;etfGB}PS=s6>NK+-5d1Crhl5~4{Kq%;nQo#|DSAROlYr{I8soGJ?hA>9h1k%L1V
zOjGJHevh1xbWAeaB4JE|i6z<-nlo@g>*QTAd>*?Xhdl5>ra{6q0dYixFglC;Rfc*b
z^}vUif$X?V)8}>gz`pOunw>NP*%(PZ2P$>=DF%N!IG}(L%zqq+zr~ax2hkXuEu|Kw
z+gXu<UA`pPerHAQr|vL{T(I5i=I;hL$=|7>`tGK?<!(2Z#E-L-6pB(WL5UZQMuAYN
zQig^EgDp7tec?%vTUATLF!1ci;!%Qq7-*2zNJoAg1ZYCNBvK>DCy5{XG(<if4oPA~
zr(weSTzLG0XmibQ*Qcq9&%fTOh4{%$Yc7-mKAKFTPyqzN#wRIBSVz3!Td}OW`NQM$
zO+F?S`RFCe{>hZptLr`Mot$1CUAXCOI$s_Ae!u^8X9xc6_xpu^H=pkAKK;Yy&ff0c
z&hF0MUjGmMt<9&qTYo_PFV$)D$@op{5B)pWRqWh1@*GCtD8XqKDA~?W%8~#$e8B?}
zAN}oB5{*n7gg<sZeR2>TR_gx5IrWB2`Hf7b<1}!M-=7*Y<W|P(XpQ_jqx9~pJ3ifY
z-oj4jyS5Md$HDo@@yTn{I>&dN@A#nF1{|Ub%2Ax9{0LBXM5ajyQSN{>4==oOXrAA7
zWMtuA?2*HQ*chyrbhH7Q$4ifHLL?EXh%YQ_<|zCLIOioPdUtSfd365a&CyTKpR9qW
z8VgXum!mT#w`hB7eg2j|L2%!C@+mL;^8$lVUHBJ!c;RQ5NvA|@X0DfF8VTkEWD2Xo
z;k0^nSsh=!pOzm4AaY9SH3_CUluLcYAYs!7J@bSil<0uN-@wPb@TT78H0k-1PZvjr
z=SP<xP7dB3$&Sx#`4@bExJqXr<Ig7A{4t`TO_^)RtV-BDn(=hM4h`k)yE_Ff(@@#(
z=d-%qdf|St=l*Eu-%gKDmPbJgG*lJ7918ltX{cIVMz>e*t>s_vS%4BTk{0B3JV*N~
z7oa2G30m?hi6+uaTAHGw&HkSIY{$LbK);mR^$Qwfh6aR$D3MO`X@q_$3p{_>fPqFR
z1~V<SC1EQXLK@}LC8YppLm=GnSI6NnLQ2|_M!H?Hs301B@u?J}R56Lb!beH@|H%H2
z^*T!0a{M~oD2N6)sJ;}aG(unX6P^T0knO7TUnF0zt-2hlPx&JhTTq{JJ#PuVVQxS@
z5;7tzVyc>3XBjDKctJy)Oj#Nw<e!s3wO{8I5NJ&i2Im@=sy4|ExU3;f#z=A&WFs1i
zlGr+0tAn+~{)C3Iw1xyePVpNuU2iDK9Ia6l0h$l^&AB5lmJ+Q4&x^7!EluO1<w)Uq
zKD_mdNz(KBRa{E2UNgEO9a7?pbjQMWUs$W%2T@$)>3j#KX!Q*r1{k2IyevsbnC4(v
z%EwcjpW-Z)#YpDeg`x`_y^M6_MPW)q0d_A1@yfx4xx7{HV_*5bm_!$j<g}_-sRaOi
zrh?uoH0L3oy$e4Uk>7ODYiXEdvf1y?-=e`3C0VH4hM2~EW5U<CaK_VclyHKjcB9bB
z^F#ozR7xlG4oY_~A-g|)0_S>_Q#Dfk3>e{6N=Z0FU4`<~t%2eNG$2u)<Y`Y%Umkrp
zJ3YUA{$x$XfgO<)IS})e#n=-t0w!juc>DP?aw7DRMPZE7@$>E{m&L>bNC5V){=Z#?
zB=ot9v>d-4HWiwww6X$HV7=JP<Fi5|1-$GcO{FQBKr2~_(~P-T`E2rc^2g_{XaVQX
z<$OGm?bv^!$F0{e9j0kp7tNRxUd+kq<<UMmPSFHUQHrnlrG7|m(1eCrYWVnC*j~qH
z%9K|DO1ZhozX~aQgHuoJd(mTMHmfW`jm5oc4l%p-S`P5de6zc1%<jd}`QMKZD<-&g
z?Q>OaEr!)kY7Lm?hH6{#<v`=ltL2rDx4CHrXp7(WJM!%GB?wjuLje%W?PelCU5z9B
zybeXUTe~GDB*mO1fs_@SAol<(m0bjGl08%X;Qe!kQF4P5zg=IRsL?=e>MA#=h!$m$
zPf1O;TmUDq=sgX^b!Cu5H%wTxN`nT&d9&z|2<8mnrip;D>mb8lRR6^<618F}X+rLP
zoZOlx$KT%l)3(0fSGSQcO3~U(ic^KP&Q~4?{*?o*G=>t4HsV!+4GoAGqe%=gcY%BO
z=tUum6q2-*yYMT1cUFDR?e_igkALjsI6ie}uOd;$XZxKmPcW81D)@>5R|bQ=D#&&7
z-SHV;XSvnEeurg#gxDB4o-~*Gx%=c(-dT_hwQTv%UG&2bM&aE~XWK<@aTa>{4DNT-
zUu}!suW@v<R&Fe9A!}~Wg?(JOu9O&}){NYj;rct@3Ev3`2&ge-(MC;^mE(y|;)DoC
z9U7u6_M(Z1Kr5Wr=H{I_UqD%IhbiPQ8Iyp+vUcS-W4GyRbKd4s_}bdu@-vtI|HGIB
z{2J}1aWF?6&HDeH-KTro1^xfl?#}L`{{KFnPoH|<p=&zXhf{1w0|JNDgb#~1Cj02S
z9#FI1cb%i#7_6I%-e-KpxE-0!k(f|bp&^_+1+WwDA!N0LCZ=U7`VFN?7JBIEHvCB^
z7uj$~Z&BCD3*$S>5mdIKjW#Ijj7Dl6v1L<po^na8KNNT!SXT=XCD5-K4umiQ$1(KF
z?fip?(jk4y>)`Xi(13WD(?y6nVxVzAGli!$_{M?Fweo(X4D81EsJ%S7;AufP5)*HI
z#+c<Nq?79twSRTN(paadP0(t{_)SCocmn;}f8Ksg8ST`(qbS7=PNLgty`8&(aYDm%
zh`N7b&YxJfP@1TBo^?|9cgyu7w!?#3LB(6@-DlPs^4d|a*u@KP*dj?(TrL*kWXY>E
zj{~zL&?j|!iWLOaq5&eI9;!8sRawK$uGf_(Z^*@UtV{07Kf0|7n6*%a1`e`ts;yLU
zm{~}aA{BTV%vej1vRk|N%mpO=RsgHN0j2@JA9erSMcohG1=hlAsbvRrP0!HMG`D#~
zLWiej#?r?DEC9xrKY)*~8GUhiU)s!Y`SQ13EXZZo-r|Mn_IjANbVS0#1FH<j!(Fuf
zbk|5pl2oR>prerZhy2AFn$-fdjzSt3Bg0GO_41O_fVrM@QiB>?DD^iqc)CME56L88
z{GgM(AyX?wc|tG1jSa1h(=_gZ)%!XcV2SpAAVdXGg3iJB5M92#P}ifLgs${w?05+_
zYwU7U$0U?~;veaduQ21>G+;&F$24F^@^)5U|6SCD4$M5HWWwfyM-0z7VNq~RkTMej
zO-pl+WztH*W^2nztU}FaC3bAGUn&;Wl%_>@hZ4^4GP)vRt6p0<y3OseOK)yUZU@_<
z6*_U#=;tNYjDI;n(+t!X*PN>LqBFFv?U!Gksl`GxYG_`P6$x7`&W7UKr8W=gnM8EK
zMLy>!*W|4n>^2$a*f94tKvmW&^K8O)Yp|-8SsQcCb=angw&}mjPy-CsSr$mM7}jQ-
zi+P#`xm5n=&z<5sp>wdc*A3ZoH$|nzE*i%bW@OPeELQo<A+K^PeL+UF)p1vwxoHyW
zYphxCvoo08tXcf+Yn?CGVk5lh;Lba)^9<=-M|19hoO=wV4|Ds$lNn}@nku<*xQdBd
zk5gUgvs2DDGQyL4-r*6s+K!Q|qs2fKQqDPAHTASi-gewdKJ)DduatH62$pMW9LD<O
zt;ce9jq~Jb8r3vQLgkGSlf;g$3Q`>rI2@GLv&1CnF;9CO4x<-SXs01C@gtBb(9kEh
z$VGj1)IEVW=LGzwJz}QW)M*sB=7|(IiWIy|IUc2Ay3p({>Z+_pQ*sQ>h00TzjS^El
zGUcF9kPu%T<bl}N=BOpbqwYHT4W-dV3h0K$vM~yf3r`v5eaf}iW};fh@`|EdDdAH>
z3-ItPHB)>Oo|&p*7=-6-iY#;s85S>2b5Du|Qu|=4Y^$AS?lu>ySYF%Bod%}(RgE`M
zbl0nsh#)!ZXx@&Q^)IhiNjj{V2mWRL6~l{b-@1yTU`L%xB49#b*;2LMpV<DNSa)^_
zMd|^au$rZ=STicJXxi*jO&V_2aHrDmaysBRR_cJ}a{<S(n$R-ITm$0tma-Ie_q%AV
zTF_m2w5);L-L*FfT3=u1gfqY_t)ic%9JO*7r1nGNwdOhk<VEpR8CB0<G@^KVs69a>
zg8>Fp-9sp(R5+No&kNE`Qm?1P&Alr!WxX`XSW5iv_npa=PZQ+C%PaKz&M->A`T)@o
zJy{DFayC&foy0xRjr6`lzoAh=V&q&S_X<S!>L;Js{1^Xs{d?p`e8>I^IYZQa@`)Gx
zxr_e&Jzs7i@*t&ry~IwSAw_-^lJ7gJ?xmI8lR6IFhsibX!}7~tUWp#&1@b}pzG@H9
z#0!MNl&81X>zum*iaH%$@`7Mf)a;C=Di_=$LOrw84N_5L)AoQ)MMFsWAoogDfAXDD
ze;Jc_NxtMQFQ;+4TfWqXRb{u>bn#gfyZ>AS8`$_b#GZ9$vj9tkN{$$6Hpy$)rOCpo
zm1xG*%mN>5Q*3^|Y{+xi{NDXIj0Q6+)h6!CsBhxWtdCq1!!hqJm67Y&Lpn^NFeRbC
zlnRGrW_=%ro=`t5r9#hSVrs{e`esbYI}YjW2~49n3Zl_+7HAp=vsb9MoVDrA-hd&Q
zL_P_Yv-c)Rb%lkbH9X;%cvrk_oFNuc5y~u<I8GuIC7dA5(0wrAX3vs{*H<EDYY7>V
z+jrm-)&2k6@75y5e)Hnk@yKr<y=2|}?n$?j$U~#toY`0QAAlcMWiuoqI?lWZSUop8
zOqq--2Ql1qV76Jkf6w#0<XNn~gYP=|6|EVjOpr$PRh2KjL*(am8?&k$!fsi^AT3qP
zHYer&+Odi&*0nT>Pt(|1*~KeL(bS{SB!soG2@##B<=j*#VEEk7aup>Q(utu%D2;x?
zlVEnrN?n)PJaExid)9x}?>*bu**1)N@=;f&Jav5#(VyoV`idkLV0q;{lryoKTwhG*
zWR7$T%~O5ynoixf8py1*Nf}g;uCWKL^fWUSHDZk})QtwEO<m#^9crURS(+NftiGKx
zr7=fi_ZHJ>h%TB=dU51~J2qkxy}4CK4YX&`FAM*<MrCBCk#w;@7ON8e1}ca!MO$_D
z2X!s0uA??}MMX15QpcHR?FLcWYd@&rE4Qh-^on$g44H(cI5a>?#8z!<hSXR<t^IVh
z^i-P&uXSayj)2T?M7(;TX;QY-O)MZd4`e!a4~m8=<UQyI!R1(?e2BpBb+{vjry>Y3
zc*zrzjw2t?NO*0WujB=qHEeVw7b;%@Ob9?MoAgi=3CP%Kg7c{S5?h2}S)6c&<jmuM
zpb<#{a72V0qhUkiJ<fy9vU4Zil^QDY-keR*#yX?oO4Eh*mIqI+aR74lG!AN(L*ZC;
z*ZKc`LuvFk7Uc#q+ViHmkQwXKT^B8>kiggTu)v15;b9MP;AMf1o2=oKgiAO}lgvvY
zj4tOmv(R_}2xbs*bB5Ct4RLUx3-0P01RvE2Nk-t)a+A=M)C>?aGP~$EXd3@jjVuHU
zHLnlGO{T8qlbeS?pyMpiZ&vQI>fIX56?)=cN@r8|1!e@qh~3@?k<pprN#G<T^hx5T
zanP-8|2q-&u%3yRVG$LJ-jx@B6)mwMYQ!hYpSw(q73OH1keC44y8wXWl%N$c7R&rh
zWS8C+t;}X;<VO{op@qYTwV_%UQO;fk2xyF+3NJSQut~q81qQ4(=ffT<Q#2wM>I`FJ
zk!a?4L@^1~j&VMJMlI78?zg$cZ)tP6sC5H$Ox^{un5ZGM+k=cS$@`l6wr-wDLp2Zg
zw26l+{oQ1holi&8C`^_;6O;L7p_u$j%|NMHOBnr`T(-D~3k-?YH&=l-QZ;WSY>!Vf
z@X&Huv<0i=^3ij&eFo}w^AYHy&!5r%Tl=5CCM1r2aR0pivzx=H&9fFwRE^4}nhEZ;
zp^N)IkCNC^&>#=X1zI-hbrO3Oj?k@cVU@nUX1RBBaGo)$CeqJ?8CBV+rH^V|9bamM
z9|YzD#C-hk2YV>4iq_x{`SO5~3Txb=s=x{6sl<jZsHkeL6K-zFIaD}Xa9&PUS_}<I
z8rq!>S-o;e6xpC#GU{wrE!8D#&@AyYE_a?xqS5;#s2fozUL|UDK~)76N3ZUC@ff#i
zs-A=DGK#BJ!XN&L?LX^3+nVoIw1~F~SmrLWARAO5HECxr&AHu3&M#kG+(ijuw4j|1
zq$xvF|L&pzF*-TFO3`RT3yorJ>ZZOetWSiF;Vg}qhXV-fS9{xr>YA?EBHXepi-x1p
z#jbV2igqsr|7$+{w`xJ$tU8+U-}?Qnoy`LN+s@Oi$M|pe@-)fGa=EWsdHjYxBdJ?;
zl1PmKdg8vK0b%ZIlA<oZ%`+Ky901z82($%XV3j{Ub<bS;KMyVI=qR@^bIo<k+W(u|
z#r?m#)!%;H|M&3}0GZ3NgHf)VYD!ho#C+|JJwC0TIrsmBhRz_0QkEt-cD#i6EeODj
z{lB@@-zn|?r%xaE|9w2449nmp#que{e67!*VBzb-!q!?zKqXf+^!JhY*ugQCzR>&V
zdb6Y49QHdXM?-0Y@?Bis9VDO!rB)cnaYIoCxD8JXo2enW#4FV4$0VUC9!cmHB^FXT
zQkh7qNcT$s?>vF(vhIWnoq)t^x$Nox{)s&YNW|K?$rwp2VN*E?ja$s^dL_u7{pZ)-
z1Hb2IKKgGY7S2$P2+h!Z2F&9B_I8W(|LNw|-Xs0LkEe=ImystIrO*YUY!U3mDYUip
zzAgHkPGho<PGkIQMmh{^*IvpoP*MKGhKh0Ojos-a*hjx<-FVRsw>(jnLVTwMon3hU
z5Au+O(%`d}2+ZXFwu<|IZ)>Ojxc~3t`P3pff7^JK4~vb<oA_;!2%9Px-EeP#8aPcB
zIp$OitVu$`va42v*O0T4q-bL|L7GrmvR7z2NcZZA(<49lRi1_Ezc{BRIG!y4n8p7+
z?e7-v|GPUokM#dOp89}nVuIh{nALJ}hbqY(=ybl0<|5MtC|R3Sn|2|eKRfvwg_gGD
z`*s6aHAc}bIr}^S9mnGP9~c2gIpj3afLZ+CX8&pN{<ppNDF45gXNI8841~=VW$?=8
zqxDsM{@igKXZaV$CyEfL03{W~raOZv<YjbCQd6HnvV}$t6_r%vdQ$02DZ`VNY15Mu
zarzDYnnh_Pk$O@zDAOq$Zl8Q;uE-R9{wyz?AkH<}wI&OSuf2*NpGBXA>A!-@XmJ9}
zqW?QPdqw*Hbo(*>-@QBr{kO@xhC`9_+X4vX4#$J-rmE}ClAz)xBNa)tGU<zn9rcR;
z2K7P~<@YtscZA<^<+ww!{=mtSKs1$exadi)&#{gm<NDrMFrPbJGQ^8sR?+4Hfa3G`
z)ALmEI}=GPO#eroP>_mv;H*goJX`)-wEx-LdzAm)&-1AQ=CDR8IEtcCKrYfK!6V|1
zy!fIJi_l=?O?O%)UcPJjcRgpmjGTGo#oyq0U^D+CPuK~_z3hHud{{uz+)7?Nb7cr6
zVk_zI*WM7nvu9!YKaOz=(@%J2(f{4OqWpJfbMKM=zn7<|OEO##3}<fb-pk13nk0wO
zB*qCr-5;J`Z@OFCZr|y5k$Z?^0cJ}HbKhhGA}OpXb~Wj)QCaVLt79PCHzpjA6mQu~
zn;`8!MhX2-6s9;hi~Iwbha?tp|AuJvoF`F-#l+(sgI-_aWJJ<)GE`kPMl+6C?|Kv7
z%QG>>DH&$L1xexUeDxwUq2W0JG$LVXR<)XpG%^#uot-I9gUSdk4ieWIWrZw*jGa?(
zCtdrsW7`uO6Wg|J+qP}n$;8RTwlT47+xG9v^H%-Ozmr|N_EA^&?%maEt^2x(DHk4n
z@kj+9|3x!@k%#V$DHCcgexyJ=^7k=g{RD*fD6;SBTZRjF2OD3+_L+YSqr>REy{+FE
zr2v&Wby7zQj+kp=z|GB-P5L2#JN{Y!<sJ>)Q~DtK>gmo_QE%yB06X2r@z<JgDHlSx
zVo7C6Zct;tp=OodbK3806&03p>r}Npfh8GJjBNn$lf<amy5Cp9)b|ec1)zoC3Gi|c
z_2pmmraoBR!4|KBr{qzUUQE_rDMb(P1<fj_F9uI>r4dNVo0Lq-Q%NdrV6tyPsg(=S
z#uEPZ&@45o>Aa@r0gykX3{>4^pf7Mt2C-QFs@3lRTs^(ufB9b@Sqi-<G23i|^=9BH
zSn~R2(*&PFIId}&%}IxQ<oy%@L{wa|!1$B)A8IfzGe`X<x2H_od1PYibTykda*S{2
z02Kag0fMAQa;chq%0JtWa^L*f+#6(o{HrVRubFNh^jW{-Aq>f$Pl>@q@28k{mh&^=
zT@fFyV4n%b`3B52-yix=l?Hd3+~~m~FphW+G(vpB9SDs?H5$xrLjdrz^D1q&iDhDi
zF8R9&qwgmPfhd$vQ@*qdy3`+ugFnW1jZ!z$%Ba+LilXb|PDhAyiccl76s>=69i!oi
z#P$vmOu6G8yo2#IbG{KXQT4rTT?Cj<0oU7RbKlmjfCzvifBdH0;Yy~Io*zJD%VD&`
zr?RT5N<&b=k0$^~cj+aVSv4l)uD1v|4OQP?I~_DH;JsSQ!bRbX^i>X3k-RCYtOQbn
z!-N?B#B!3;t3;S_`*H^AW?n<<F3k`R3qP)2e4!$PklY6Jc|!#0=&5|OkY;c1o$h{k
z?C6hk(3d|c3t1Uax$ph}2sedZz?sM`@yBUSaYmR=HT+SKA!&Qsh`DW+urX^aqujrN
zkWSeiM!!g9IG~{QI&Pv>e)!<Co(MR|aJeTo&O={~JQ2MbnwyOc?&c4J<AH>WYlgm<
z+&&A}HyVq_zrJe$`pg4LrH_H`+SM}7u3c5oa@}{@#$A{s;Lg(vF@i_dH9<j$b?&LD
zE&|eJdxcp5tKW8RcZqQT%-K6kh62Qpq>H5|iHTlxEj!eZBc+E<jT9OmK=fCC!zIA&
zo$PaEYU_WGJoY{RzwjRrA_%NxuL0=m%7v`EwX-0q08#R}u04W86g#&oL;#m&naQI&
z#v47AG!w^!p2_zq9UtF|q#S(wEcQIwawHBW^PAdnV57vk4}5lhim2d1$fWpt-?KvP
z{5piT^jrVhuJ4q&<9q%rWx?6v-K(b$#Yg^D5@2TGs$2Y{*V{A8j?gJAaL<VsxvW$m
zBa@xn4@2cFczW`3iBxmgQIp|4Zc9Kkh452=x6}M6u!$!*qWn&&N&N1C54jX-cA*CS
zUNbGo;Lg3*(5vD0`^2P+43xtfz`sSe4!E-6_e}xpOen)?F!t$9sfEjPNdHqLzFL>o
z{^o%hUAb#%vp2KS>tPxLQKBjiR1EC~lf2I5Y+v{$n4LW-_J{bD;R@Kee2ISV?fyPK
z`0kB2Kl=cLYM{oO{FxV}#_=K58-M1GbLwv3F*U~=t$L(@2#o|G-s*-kg3HsdO{R>-
zA$Pd8^Xa^tK2Y}fIf!fnb`F_?zwK@9({BkryyKt!U+yRS{L7!d1XBBW&6fXT{v}va
zSs3m$r<!_Tg%aJ(|G>pUmXdHMm6B9avi)C`fCP5ZYDzHf%KS#wW2@=Fjlw2>j|YHO
zP_xK4)bIqqVg7{83#?NIfO9*w4{nqUdo@_hbZquo@IW$q{D7pOO<vwUj;AMb+)urt
zx74psFJ+E;;CS!WB;Q`b=roTecN)cM5{L7+a{vO-If^JVOdz?A-}W!=(I<d~pL_6i
zqnDRN?~Ko+=jqFt&+o3bC<+c=1lG;R&mAH#sVTwhm|V{7M6|$TZs)rC3~)Qbm7l#N
zgyj`Sanv7AkV@lD4SQwYUp`=nQL<S@|3z<>iN2Jo9R093a63kmJW_ib0<pk+6%&;3
zRpaJohOX@Tdw@!u+)-;PPYq2HTAN*46gnW2!xoZu#;pA=U7K>X9m5x#`RcimKxEZF
z5ER#ov>k{$%NaK=LI=iG|3nkBnRSs4C1jscvIHFo(AaWt$VMg^5!^^A*&K*WSeL_U
zT4cznJ?QaM$1z!a?#^pVX;SwdrjR3Ic_{i5ALQX-267*<#O9VvDIujgJ3A?IV_SWc
zsX9|z7VSk1&)8XWR{yq#zR$nvR{AX4`Y!su@yj!<w~en_Pd8mk>o29v7S#svZZTQ5
zfwoz5(rn;dt*4)e;%zX5Z7`(mw9|m3<$z%&V`-VEG#`mGHO8577HcK^GHM)eRGYHV
z6<4Bn!@`*X^J*;)eZ|fnp>pPzv$JhCv!yr)(;K4Aesgr%pw#gtr1{V}0pPvy(-7s|
zpa3d*)f)htYknz!tqJ8nzp8*XbuFQl4pCF@gr@1z*z5~7*Cu0rUAy7!vn}Q+0fuvq
z3r7e!q)8m^8qH6YE)33(ONe%g_Wt=FG;(~UXUy3^yq?g!_ck}SH+QNw0KDH%0j~7&
z=nNje&^{HB6iA@j)Qr{3Rz@5z$3?>Ka-!PGqj=124u1UJc_e*l)d~>&G29cdkNvFN
z1byZ#Bm!4|1b>8H<(ZkiyUxaihl$|i3E#)>%cr;g2@)4aPcJvON0bueC{(8@M74+)
zOp%zcyOY}-9c8Cr1b-e5Pv6Jq$7b%kIqY7?x-UI@kp)LKhi;4c4-T2a#KK>}gxHTE
zx?=GqT~ipp7-6-=`NJs`rJm=GGMIX3c6;zb`_Z;yBqK@{!yJSZMl3jlf@vP#pbmqB
zmd8OKd1RRer1|iV-wYExehrdl5z=6!X0bIrt2eFfIKO=FZ`TyL#3-|jOqP$7pz;vg
zMTt{l7xuQbQcBI5>3?^U0k+)i*=ND@k%t;WZW&EUMb9z_>7`NlT2jeMk&6v|IPZ3R
zL{((z9$~+5^YUg^S_$$_ayJABnA3zhv;Ll@4OnGXVDFlshcUc0k7R~7y!iaqPcmTu
z56`2kZRm_!7Gq5#iv;@S2TS*!{w|SsU!FVe@XRJK!u~^t_V*){64VlT!pN_dgs+h3
z{SHW$INzl*Tknh#t^SdCSkenimYgFU`*5jcT-6HBe{4h%<JCd{>4x+<Vkabqhje=p
zRzj~u+Ai|n3qfr`sdP1P?thi5ZmpZ$`Gbu-^-e{Q1(;gsnQERlJ}4AJgMY1^pVZS1
zbnI)FU5Z9p{_?#dg%XOfDh<5bcs>^W4fOE!2-7p!MwgruOpEgrGJGcNaI88%^yQtD
zZV)Rg4X!i(d*pToe#dmH8a<G*SsGyJ4jh=htca<z*iml8{fS$cUkDc(@*0J~sEKlK
zqNp)j#&NGGP$Rj!Jc=M~8}KG7h!!W2G}910Jv>C5wM=g+K+zPHZNJQ{g;(q$0-L!K
z($r>V;>ozIVE5emq1)8MN3v7SroV)?xTJ$=nVCLa;dOM1al(v;Du(1i&*V%e{Xj#Z
zJ|)LRp6q%2PqyJUpqm}ku4N1e0kWC5dXyDS^KY7PWh&7FL7XE8u~Mo+_n)14hR$XK
z7p+Nc)jQX2YL&a&QkT4G6_eHv_5*<uB3Vx{8Q~;cc@walb;eo=KKkzZD1)R8snLiA
zmdt4>bn%#bKkWm>Ot#^otQu-I32&7W;ZjYH{(_p&V%#2;oDt5V)uqExB`?jhm6b}d
zhtK<^Q0(7h%K4E-^xrSlX2}_zIuDhoa%Y5uMl3}xGD$oY(Qqxw_f7pOOea`xE*zwh
z9m2P`IHP57eHb3bn|}*BlHZ$bHA@o;n?YP#tW>0?<g_GDrcqFmXVcZYQ6J*6RYrRM
z9t09eV|;LsVOj<$Gi6PySgnsuz)WQt5b9%Y3a1ihn@bSAqH56Qc2++~V`)vmWBhQa
z1J$)gDXy)mZmTpB3ixR+|L{x|ev7;{A>BloChIYdbdi~9Mx$bvo<@38{af)3{KYwV
zhUIE5{`aOvn0*b){)*3Zt+?SE7~YZTNS&ZTV@V9y>`$>;Y9p2Om`I4fMzLMu&K~$=
zd6Ne$1R>j7Jk*uqnm}S7a=$L7b&;w_w3=3BEt!YWMBPBDZc4wesm|u``zjKp_xCi2
zxWd0`Lw_ORUrrT7z&nWcqb}WEN}edldwy}(LZyOeB{Z^ir`J`sYHNeIV?C=h#sXyU
ziJ<MP#jB<?^NU(hTD#0<iAzFzQNtE3$4KSer1g^BPaWHQgX1=w>Zw`_*mx0}N@?>B
zCV}6Fw2dh2Ep~B6{F#amX2~JgEJdXde#kzB<CgTa^$k|;$h>uw)MR5JVRfYX6ssiW
zqy-N3(L(JL_4=}k*v^GheulYNt<G)axu$}Iab9XJel))7?B!B>jzo?to6_>u|LPPw
zv^!SQrh&~Ukh<Jh3Rn~GrO66wXd0}=ilEGs0!G5h6mh}lEWD5@z&^qiN2%!Gm5m#h
z$f>l|CYAfWxIw}ad=0m2H3>2DbL&~MaJAp`5|H7eD@*wbikrHeQ>Dw<C@#0zE-J`6
z6*a`*+kH?HQo4K`(?l30m84cJq3*wErXd#+-<NA7u3kYYmd`rh|AgQv)rR6Gq76~~
zWG=iILt9+tv;;JxbQYT_s;n6yye?E%AJnA8jB;Dtc)fqmOwz8Jp)RK`cYQgntJVk6
zD(p3Q+7|3^+4h7@&hP25_ZQfUWxLIu12x|L{Tjc6p-+N#3R|)L6WwnGiS+}b^d^1s
z`tF;;l+vpL(uKgaHe;8lVosJ!0-752aACcwYn)PZy<k)Ij29id&)9q?Wi-1am->vF
zBEKO6k9&6P{BpN%C8#Qq>v9a~Fo%x(F-zx!vK6X|^7O=OG{ko{ywAtWpq=))7Y#5^
zhetiL;r=r~SY<Vg>|tEvDH7xJo<H=9!)j%_tG-ImVx7m@mwQK_wy*-F##JqR?y_>t
zYl|!z_`~}|BlRLjAxb91rV!{6{0G-BwK8R#E4UH0>P3IxiO-8wKmBc%NG#FTbJyxi
zasFf_snSO^v&c(~Ga(l&aV!%c7Tcc*IL%tw3k>G@lB3I!e()3u|I|Ygg-^=11=Ju|
z3P6BK3u3;%^!AFMWrRd&-CWX$R97qYiVIuegYUoc#Oza{SY!S)8r3TPeKFKE;n`m0
zgm%_Jth_9p98)p`=<yM;VD`oW?un4Al}u8|x0p*KEM<e=gM7W!%Gv2+S}^F<QIgBU
zIFDrH9>!0p(5^Q<UZm^1-v>6Tq7<(EVWxo$sqfD(M^I6I_Y~ZeI$GBYx>vPmY`^4Y
zg|Z5(8^dSGP^Z!|%5~Rs>v~9!<JAo*(mOVk0N0-N;XT{SChn|U@LZG<62%ll8sQ^s
zCs0*pg*)d(+<1{H6%K+9Ezp^xv34pJE0~>Grg$D4p>GBI`QP3`b`~xlkb^mghqMNH
zaga?4Ojc@+`v8gZ9sc@-sX5k+*ZGf%s^)>kpeDUoI)@bT0mOXCQ?zuVnpy6YRSufo
zBQLc;5R_nge^xfg&M)#wv1V_AF44)iI}<(W(2qK1>}TlOK(MH)^IM}w=6AOnozpTC
zRCO-XB^d)|@Va+uxwKVQ6g|V(4>=tx3x1e5P=^dpFFWD)ecd>_8w+O_=l2!kr)fRM
zCunIotg+iR4<=j*tXZBZ)jdv<C}61s*BpZEbN_M@sUI%x;o{-t<mBr5bntvXK0UN^
z-dG&tp0tGxIU2EXE}&Ye3F~SA*908d9lt$acLqmK6g`N#*EVYob4+g5kalhRm$PU?
zLsyn(Gp6jS-TtJeK3a-V#(jiKnH)sEH)V&u$fn6dX5oIhRs<yJbm*B?j$bdYuWD>n
zH=fb0rn18LJV4g<pr5~d;o>@1k!M%&)rl^h6WY|fSdG86s3pWUf5Yb~sb0{Ry&zhj
z(H_X;bu&;$y_PPU;Exwra;jCjYE!ww=kDut3G`pPdRm*%DfXTl*<I{dW-XXnSyG=|
z*;z#=`Kh1MnN`x+Jb9%mwJ2UGmNZ+;F$upYX!^F22QoUnUr9{`>m3GtzN=7EOY4QW
zUg(bw$FO}lqb$}+EqEV2ThmXCQ`snFs>oRq$wt2=J9!llW|%{0TUn&-(W};dA=&yy
zG^$qHRBZb&qs}zLFR>(%no0m`OZn{~G_I@h>E;k^$7mLjiFTzHk@Rl0e^N75)Ak-u
z>gCPqv2vYg_pY|lD2U3CH>(brG^FSy6!%~P@p+&8#>n4g!}vJHwLZuN<af8)+i!?r
z48Pp?z@)gcyV+5##U(#-W#{D^Q&(vJdrr)C`>^r$u|P?}QYM8Jh-;3#F$eH^5J4vZ
z?T}KtrEQwyM1w(q8Zcl@!kIPEeXJ*et5Y1G4N<Q)T#<`5Iy-wA*vX~h%av9X7uV${
z#d#fw+q!x36~L!PX0_;))v>TfC!^O#H5O8kn5y_3Lfo3T#F=HFaaLK1)@!-3G-Q@3
zwKjE>H0M*0e*Q_z4Es~Lj9ZBks}VX6o<Y(aA1A*pa!MFUXHG2X+$VOX2Mul(Pi*3y
zzGa#e-f^$AqI;HmCB@GtT|7Ev*UQQG@Qy7ifnX#_3_}p4Nds#cA!=fBw`JnI`Y)0|
z;1*uPct;<Ee!q|3Y4w~HZeQMzg~R{{G>WQD*Wjz@rvHM^@t}uXD<ZdmtTS6mC6_b_
zssFw@9ccUY5Ck=R^0u-WpoF~pJ#MXpY%ti{XLjrzGvAj?KTKJIj9Ww<-Hr;1D}WVD
z`>P2vRDu6xq|?L<SgjlJFQ%@u>ADU}wd=nola2g$W4i#h#<YKyzc{IelIWl$$S#~S
z2EeatgSt~Dl}4n`nMizXX({G!+f8+-%SBxngE}P2nSybq2NayTCRQYjQvdR8+n}>r
zcR<?NQ{xTSM}KA*bbR$TyerCx<QQpcpAIqNQFlWQW`XrPlo5$CTE=cEU{4QRMw{NV
z9grCy%BQ3izZ|iC{UkFXlsnYgPr4zbdSu9km`94?fAX>E`wz$><6*<k<xy@I;j3(h
z$%(0}_{jnot*yJ_w+CE-b+Y2`s8}*ra2`mp?0wJi{^>2WW1%7)Go==<&Q8Z+@6D9D
zcBd+q=DoOidY>)s9)5SnCLWBhCvOHGUG6T9w_4cNX53pp@HOhyoF>oGK*(fDEoRQ&
z7VoLuO9sym+0l*p&tbvA(ZSsh-7DVa!O<_~Xr1oCJa(>E9h}=G;<GmPshRODbn&Z7
z3@tDdX0%Z14mFBtkXTm8D<oZTu!21oti&(oh70%X68)Gh9O`R1-O|}{#d58dK8m83
zmQ?{lkpt-s!3Jku99!JnA6F(G4(b;LST}zpuuRc%7xis)ixsk};hFEZ-Yt6glICde
zKAeQ6;WfuRmBNLemja}Ry{fl!6T%?QCbGO2ZcnFM$j~Es&Qh<bC^a0Eg#;IPCBto7
z54CJ0Da%Fo^2d!}2XKON1U;^bD02o9KF<mBYh*-e3uLpOK}XAEQHyoYy;7;rLu}|K
zzCF>c-F)V<a2sbPEXe(Ps4SWET_mT<Ad~M)7mPy9Zq{pM1(-iXO!@-A;6g}ru8{94
z46_m)LTIbSLs+0(JaNK$MzBIirdtqviifP{nqAJ?)EhnOTR7mFSu-I^W^v>L4okqk
zIpMil>*=r9%+O(e*gia1j#;v0*G!dJe=r#1ZqkhYA~}^nv%Y~x?oO<J2Nd1nD<*=y
z5qC1OxfxSMBV8*NHxCt4Ye+Md7jkZQ>zBZHv-zfCOQJ<+p++hd<^_t>41k`hfn!!H
z4a*bDJcHzyv`9=y(7VETw9CzL6lEf)6RfbfD#wBHkL5<qkSy7#{8=i-m|@j}y6#OF
z3mdGmuSVwZ;SIx9#ubPSEtX^G!#M>ROX&-zt|xvpl$hm-`%H)!x@+iCPdF7#WNFNf
zae1FlND^t5Q{Pfck!u@FemM!=8~(uokIjv3?9j)_J-@`!g#`or{5f!ObKt{z@vjl5
z{rT~7&|QbgQPA)tQRHC;`1AiENsrOF`szOkmWEc*GE}2A%IeaX#&&b*{%*!AHP*Le
zOHs2G%HbKmrHZ111&&?|O6@5VESfNYdhr0wRdc*<qK-QWM=~bSvw}u7<K&R;r@gH;
zq_UC%Mm77LGK_>nG)^o$bBRJY=cMIP;VpB5QCGM{Zr?_ZO5o{sNyu~)o(QQ){TSaM
z1r1*}fK_N6@tzkinQy*w<=f|KmF?b~GNRU53q5spH`c$qUl(>|ayZyWy@`l^6M8Ln
zm}yigN+w~}Vw+RnLPJZZtzSl2*jbu|)hbA*n+K<2i~<qL_-<+M(Dm|ep@8+fQF4`M
zNqS=h7zmyF&6mHzBGPS1T|=5I%w;)i49>DSv>1Xnh0Hb(_IetEgEoPB5JT@Hk4`wm
zZBP!@9p`zR?GoeKSrx~XDHiTJJTdq4*m}4tz4V7BbW@V+tazgHNJ!iMzsX{C{B(P{
zGu?Sk^!2|a>noiUJgKyr1oN{KQ%2_0eR&d*$1*(r!$eNGH@rsiH^V$6lrkX~=2^*E
zMATEps4e1CIZQ|PjtCd6tTW<yE7&vQM+J-pQ3;BcP#0tf4(Vml;<5&=4yYrjl`~@e
zjyuB4X%ULV&zgD3Vw2f3Qm$N)vgA?L`x5XzIf}V6(vGK};eU&51kyFla>U#@Ril!1
z+|%@4Ir3#yYmR)?Ewhe#h^F-iT`sGdryTYHjl~CDIcS_Pdo1?`Ew1&}co$G{dsE!u
zZKwuc@;75%A$R8NakiL#-@Ape+sUkzhc2-OxQ6*XtE-et$i>y}TtT&h;t4Y5+wHu$
z$4oEJO|$A1lnU!SocLYboLIQJxOjQFh;c6n2w`tw?t#r~#(>5sZQT}&&gyBNgBPnx
z>7UC|ORvrmZQ<fg8E)aSY^Q5l`n5{~-5yF0nL$XqHGz13t!<_IX)$Kk`-%N5&6b{-
zOfXzCKNvs#t==Mx?X_lWN0#hb%f`;9FKgS-G#v!71`;7!UGL*cYY{~Y(jFYFoyKtx
zowM0++*y5Uy&Bap*=)p(!e7Z&9D~sFEGwzyur*?mSLfZ#XzILd<2-&&+a&m_kETU(
zjM}asb{y;!fsH!xMQW?UiC~U~2f74^<795p73vj^hr`JX82GZqXt;&cz}0)+Y9J#z
z(;B~@N8d5Ee}a*;FYL`>ci66)+^@Z-S_^oh^4SG}yEX=$Hm$-)G?9B}j{ggCCyp*o
z0CTzX!RexFlZ(D}dIH`>&n`DT8~S5<qWZzf`&PQfSHs>hNiP!Sw?Ex)$|yNh+E}QV
z4g!vEmDX}NiUSnNP-Y*zYQ<kXvQDG)<vl2~*y149g*Gczm1ZedBZIYIl-K(V?v5Ep
z9Fw*psUIbCwH3G85>z!m-n|puE?M1xgBSdqA4@DASm0CqMfLWxnf=0clYsqBWUe&-
zZ6u=OP5K(yXKI<(MWnxT|A9=@6nJ;|ql4CC%SbVe1^ld#WrQVb4QW&nA@+=QJ6B04
zx9hiXoLQQTu^w`+oPFkRF51V`%yjgiGqlQFqbI>UBkp0VGL5Tc@t@&;OMW!%%TY_0
zCii5*StS~aFqUa4bgKK?{?&tDFC;Q$C7C#eZUdSkhK1n`8K?z|1>mZ<<Py>Y_JY-6
zz|%?g_M+)O2TG0o-?DWDYnS)f+Wt_z%!Q#?Jx|RenOdb`_0qfYQ`-|2eJ0BnD`u6G
z>OEhxl53;%tf@a3T|7D3q0zebbiggEbfjM_H_Z2!?wylXIs51*M<aQ6>+AZ<yxRnU
z{=gfcQD-T47qC(TyYja$z1C92BdWJ2(gNfRD(=e10=)#o&iuH+KOPtw37TvyeA4J_
z(!M2P01oH}RBVlGz&iwk@2|;G`p(~kjh<m|+!WK=LzP_7=uP1BfAR|+iV^bGiyWal
znBnFu8E`&`_!AG9QjFDR11K{`eD(eShGHs#6k$ydLyRr34n6!(5Ne3B@*UIktGdN-
zS;BmrH+;d34#Q2rs%{(r+%|#D@7%`mpz}=*X9ga-B%{0{Zu-D(SI@BoUVZ1hXWB3b
zf9VHOPe=^@rO+Sum8<h5?Uj5cKL9&;PgpJ8^j+EJtI2oPLv>djbIC{s!(R`LuIQ3R
zl(_2^J8cc8tLpkla(^Sgfb4`4EstwNnmBv7)xT`44bSa;@4i+U%uP0DsusD11-FJ%
z{2Tt=;Bk-qf`t2_sF4ym^?J>WuXhbAiu`JO`@Vl`;Nauu@%=IEaBIfF@o~2Qd6?dR
zH=I34qHF%Xf^c4>xr*s^<QGG1e~hBtw22AOOE`rI3$x3|g{ONC3yoV*ZG0%BRA0W}
z_s_6fb}z-GgfY;@la9qb`<)pzx%70ZtgUL&N(bDp9)&ToyV8H>+4=Vd;=~)$`^5Xo
zs`pnOZa!ihV%G9;DkNm^-uBzxm}BRNyxxM~hPSVWNJSTVME=fYJ}v>`^9&}Qf5+<j
zvK&d%QVs1dYprb?Hst&5@9*8qs$b*`kB=B_EQud$XLEaR!{1|fZ`*s0SFTCnUlpCb
ztL<wpc5J!XvL|K>|2K_$<YLdRbslT(?WHt)7v;4@LzjRz&t4WF>+fC6q@c3b@?yF~
zoNjhTLEZdd=$^ZocydtL9fG)wz}X-uWjFm>jiSPsM-xO;t;foXCYZBu<=U#9eY$ym
zT9*^=fxW?ro`MgMno_lGHqiAJ4KlH^s|#)K4>72SEu=p%ZxLM_pj;d3%W~|XT?;Bq
zp~owO{AmP*^-wC;HLI&xWLnK})m3hp)0nv&W0M@`s@`xjm3k@7?=p*<4At*17kr+X
z0Dj%s#y!>kXbnz{ATHgm$@yW1jW(>oE3MhjYdM}w=!nkF4!yBG#WJgxFr9i<vrZqT
z;J(yzrusn+Msb+9erW1|BO{Zpvq?ou{QU(!eUmogM5$^+=IMCdGapBc4#q4)cz$Fu
z4r6A3j~RInr>&)wZkOE-y-1CJjvBD&QKQro>GXG|bnJu_B=IV|sC<oK0oxZnz%$co
zd`XK%e|x26?9RA81Cw0f3Pc}m(pK!?6+%OwRBA*_Gy`r}*K|(fmzlu?LPh~i-Eg59
zmS8hXZhcyAo0~o>M;?{HB;-#?bUb=Iv}PbMA1K&CpCeHn9gV?S+Gpv%9hzZZ4|ol~
z)8rVbO5O<NeD-FeX3V>Fr>zL;ep+5^@rs>mV;*4NOJaWVHhEnBx?qdVK~y%AC>#T%
z*f*M;Z9clCsAeV7DoY7Q&=f+pu+ihubKo<t!VL$P{ARf&EqTd$s4)24%63)N&Unrt
z=+9Zs@!A>~c{Sx`JH>BE+Ht<UX@RZv#j40->n5KAf;Zr<5V>v<Z%f0$?qAaCZ26+l
zo7>k}6S`&fqgC^vX64_kI(fi-g2thJwAy!LjhBJ<&O#D71^_A7Jrjgw@MvSUv+AkX
zF39FuEb^h0CY`@2*E0;~2a&-B{8ahhbJ_By{-D3n^F#W5FlYTP)bd-5l=BqD3#cE^
zDrMBv?Ac3RsmNrB8?O5d0?II0L224O$@;AZT+eeHXM7Ml5R!b-njyE0>b=Uggt|Wy
zU)uLfRN}m`Ja6G3E}f+C4Ue?Z)13Cg%Fk|{#7KTSOdb`A5d`}f0wuABS>y7j5T=y7
z%c$jyZoo$NQeY#c;o`<dlvwi>jO(zjQB#OHfFTEM_rtyIy-wx|*kiozy*l8Eon7?9
zyO<Bf3oRA=gCHp2&r8s)Yi_Ub*|Uv$o+ipV{`vxz0HOE<nNsI~{hB&Q;}r*j%8|w*
zby2WE4yX{`97CoJb<GEM*l!!^Ca3xP>j=`30IS-6#fX{5F=53m4EfXgxHWILWJYNi
zS9Nk0<U!fqZSlxL=aCeK(5S=lOoOc3rtLA=m+z|4L<VcqVFzuGuS_E-dA`rp29r2Q
zv;bm#&R0VJtwz`&jZe1I(?S~Ka03ig^HextG&xdP88tiRFiyy|$nIH~Nqy-uyT>WA
zuyazkPuvbjUhKpoEOJw78!kHzrqV#1BzyL^Y`6u{&v$@&*Jo&x=}1V}{-W)A(Rs6C
zr<2R}+$)*c(HgU#Ddt?2{7LO$6%G2zrNLSN2DUHk`T<sW_(_qg7v&Wr*LJ?R#@!No
zj0<nlNsjHpxF+#<%Vxc<rpzM_Iwz<-8AbIwj+k1YH8t5fBH^YVzw3^%fV(qL!xJ6a
zB$$uYLQXmjo7;oab(x`PnUStlE20zv*4uTR-winO<0P=L<Lmd`S>-ch$U?>>qE8bn
z-_io`iiPYAzXoSWD3>b_IT$rEuZu!eTzb-+Dxa~ZGC$3O?=Cou+5;|Va?UGS_^aAs
z;jYU1$&ja5Cw*qe=19ruHBaF9R{+NL%Q}hLbt>qy^2_WEF#DP@+x})Ksc(tnXvK}D
z!nw-qWd5HPy^@qcnJ-5Eu#A$&rU->Gb8DifkkqoqwPsY*TOoqqxRPlBQ5a6asp{^g
zWSvISfxTfyEX$l56L@ZC(d*P>0TQV9jIToKUP9^e>cMGzXSD&@JO?4Jjj7;GLmbUu
z=LZ3pnIQ1vOtg1S$`pF%@3aD}1>5s0UGocFds*eanA35!TPV0re5dY#;PyfTgDg$t
z1hRO}Rs(iQz)IUyU;cw6{^!{@5@Xf#^Aju)SvDHdgeJTe;76u#FL(%!dR=3rI0ike
zR!F8YAGyC0IE$0H1Fx6*V}|32Z@VwkCorRNPoQlq5b<C;U(=#<Cwh9bA`OLtd;47V
zM8$Y<fiJ@k2sv>m_K|9tVR9I68E<`L#t<`j|D}5-F}z366E|Cr{yFk2Tt1gKP<Qyf
zP-ody5nELF7lGwVM?zCkep%rU+Z7G}WT_y@GVFJ6Y4VMjDx)L$&Mf?RP}#i~cMXQu
z+H1Mrj4C#RZ11|oW&={vv->KOgKmX2PTzP|JvP+4&aVjoa+z^akNQ?ZIx_*+YBZD}
z_1wlvQ4?H8kA8dpJcdIqbjC?xg$mW3L`VC=;iy)0DD}T#_%Gi4@yc_qOLtTAQYGcT
zJ|yxOV;cHP)8(u8^KRH+e3`vUzp(zzPU+A5^MTwz#EprjQ1l-<B%El8A}blr2Q<Ob
zY~iUG8)AesM@W2qtoayrNApCu_xE!2UE+a*f1`<#(U*km{=C%?jEXVWAb4~QR;Eh1
zlv`0DGL3Bpo540M8$>GsEEr&2CQ@2m*$@NNWS!!cu_$GaC@iEJ0(YbsapzV;iy*&k
zM?200EY<pVI!+MqGyVM?6nAntA`FgdJQ}E}?QQ8W)>P=u=Kv{9_3iELZ$9SXU!Cpk
znE>~P;fJYS+p8{*XQPv~>1fPs|BX$*XCvnmdjn^5P=>)FLH`Y%wrZaf{L#h$f$ig<
zhpQ_Ris#{yAzg>=r_*u7Ze7D=U(y@7DHnxtL&5~y4ea&?#&deA=^p7L3ZyquQ>Vz*
zY>s@2P$}O1QJ%2QT~fF2tbXwfLVjF=2;f~^qiAbPA3qbNqnOWG=;`^h1}s>4oo9Ea
z{lTKo&sIIa-|f;AaFr^+$;M2p(*@vdp)7mrU4K~lSWvOlKzshTT@lG5twSS5Qtd4b
zM6$;IF^o~HG;5(HZYTp<bJI(%kY<*0+kjRe?I9RVCT~^6r{HhPL)7?lD|{3H!}DKE
z?xEbrV=8OK>&Xm3Dzyg?XU#%BB1|7MOrI85Ue<u=VdRc(aMSc|X)CMF-*Mn$34z-<
z`~ht*7$^p@r}?3)Tz_0<Sq@gTxZNnY#X_Z&m-!Bg?Uvd_9Fqz+_R*awP$Za5OL>gk
zjuN&)@p&z+*7_q{<{ZF$R|@CH{m?)#Qs!{Y7yt4}l=S$tEq5^PMt_4zy)N%d+a9`c
z4&0MWxds|ZXy7lYIOcu8(dFOt&8m9-{D2q%<&5xS5_P3RYQYoGiVD~*htvo@DJRVu
zaOU~rq-K@p6a+Uu4vF-Y6ExD*n8UmQZn!_sxvSLg92{IOg%?!8^oHWC|1>7Xmisj{
z8LO|PH><!}N8zPVCy&6Di)w?rz|-+4L!w4lWOK@QTncY%^y-02ISY~^HW_3d>R*zw
zG`Yn~S!>7sE3m@i6Y(qm6>{jhMTB%T1*$+v*df1@?yk3}^XEb<MEqmZ`J1OB$dI-d
zu32iEk>%mY+%sD0y(qwPo7QvieIBy3_R`YjdxrB}Cbv!M>0jROubqcn%=QPs^h0&o
z)|)@NJUl<sM$6N`udg9j8{lr;Id>cA@y>0&FXpMYgzh)i*abylUv(!rcKn58!Gr^L
z35v@B1`7XAJ1)C0eD1H!wNG{}fS&}ouT8w-<+9e>XN3k}hK>E<0&q4RZT{bGO4bG#
zh3(8k%V`KWz3UD77&2t-_?GOPi~fQT&^z}eqyY~gV!`i9oChmL2e&Gzo;bbGD&tiZ
zBD>DThsg`@=I6xHAR;9oaXAV<*j_?xI}!i7prx+8T}1aH{h(>FI7C4y)03_$E{sXC
zp6!R#)V5Nj<8>VI9SxV9X-N$<>#{dJP8nYXPJK>8aXRis>gY@YQQ9R5`aD~+VY#;t
zcoP3%btxTHa~WbGa|Q)I8m)vx>Wsz6MTXHhj?SK5AG&QWA`=nlJpNPH?ye^I8x-C1
z6p5z)hztbMc1Uh`T2Sfbm4at@Xhj^>Z~d=3s36@PUEd)T^iR+U82zhizrNUBScSa^
zF40&&ZH_E`Xotj}cSExHxtUXi<x^V~E3}a(>UuD77I@@GhG88A^0Z15Y+Ti4O@kQl
zMAyzwmxWWrZB{ihiUe6GNqX8LgiOl7&V3fEyc+c1eQ3;H3tT6Y(?);OQxcT?w89rS
z0+g}t!M!nrR|wu}N`lnL*`E>=C8<lYoKU3eRVAvS$EY3&+c|jysD9)8n;%Z1-msb*
z1!)(XDRXd`d7$Ft=yxcED7_fFJ8h9p@!+Z>MFN!vu{~|{(R>m}WHp(PO6BI&cbWO}
zTh9St<9@9wJAQlLJ!)<PtUrE^xa-f>DDfGa_1v#C?`>4{@DuxKm}+9Cf%jw5HuER#
z>9S{LJg#I}|86fJHW=e^8TBp6NB(zGEiV||cj%_OGiP*)8G7e)8^`@ixom1K+nUc}
z&lm9w{3tW9!Z7p6pS~Pm=hXv3ki$>sL^!!C53Bv{)Rf1_sjE*byj2j$<m?0QL)|Gm
zrCa7oN(0R>!G)V|+Tspy_S>98xj+~GUh>N%G5np5Hl4Q*keIfQc~zQTGb=uSK4W7$
zP^IR)v6wT*|G1hnOG8Y(1y~+qsQmL0<ZD3@g?km+G<nOlt}n%05ZVfa_*?T_k#{UP
zZQGA)KdeZ2$B`hy@#Gz;k%f~h*RT4;G7pG=(wpk?|NX?jF$4SJ@0Mrh`V2_rIjTv5
z5ANB@Ojp3(y8_<2l=k{frnC;8ui0(id#3+xNFeXgR8*AQiU}D$sBW!&HgnMJ9;|Nt
zla4&w>!(IegZVsu1&bjD3$lRYApl01a|}ShWaN|k1PbyGv=6unY?cSPrG0%MyG^Q#
z;Rs-W=%S*BA%eUbKVoi@3lC-w2lzC%AZ$sJN-1pG^_vG2K;j?pktH?z`G0zl2;ToF
z2>~*M!bu`FU`i482=NfL%gdl}m$V>Wz6i;!&eDc~R|FsUUDx4_gsYT~+`!!Tpye)W
z-|Tf9H0uM^rkBptEQ|d{!G?IyECGu&w~P~R%zzOo1^)>lSy6m6A-<pgZyzUyHVz&n
z%2%eCriHFd=YNQw4m9bzE0d>nARn>wpF7G?njhrA&S;{Hc-$WFzq$=ZS%MLu_QcuJ
z2=L%^!0<qLEhV6{1TCR@!9P$>_0T&(`tEjHqp|S{84$!_fI4Uf86SHfP4<l$LggZq
zQxrrfr7mSqg-#haBZDIZc*&>*Iv?n{zMwH$F<y_+eTj-jEQ4eWFn}+{5kU+9`gPA|
zkGH#OdG}2c>-8W_G|D%vyE5_WYowB>!~QWo2Qb~-fD^F~e~#xt9BzVNjY=@(tAN&)
zmi(g|zzxsN^)o<~r<6L}=5OdBt)}?=ln;rzl2Y7uCfXm0-f$}P!@*f63d19fA;@J#
zNPYKQRsFi7tED7Xy$|w>bn^4-im#?!fKpgK*BpV>kpJ5Bhd;mfT~{=qA*n0}kPI}j
zvhqly@5@a@I+D5(7=hMbgsn40M+8F@IGH3263p4wk580%D!hr$=gZ`Y6=OJxdg6cy
zsv5f@CS}w3eKG2DuS^E8z2=$P0jzqhSO08C*TY_K!be^mL3ucn%m{YZ&pMqJX=xhL
zMMcV7mKEOng&=@8147{&T9~Sn{(Z^=;HtVhw+nDGy>OBXIFZ7q6@G8n&c9dNA7Z>N
z`-n6_J&c%NNzr6o)$<T_P4?8_hE*_5LWdw*{71J>fDRbU`BI}&>|mtCFxQjahe_27
zACBpM6KliSD--(0v0Sfa-bdod0yk%noXBOLWB(JN1NnsvRnW2o3Mp5_V2vu6mJ4c4
zF66TwZ$<?C#xSihHdQtDZ<7JinQUy41UsRH0%>A6TCJ2x(YTR?%!4fz0ZNJi3I7PP
z>M5!1sCxw=Z1QGcoZvSNUFvRR<JTo;o~$WBqz<<ynd$=DlN6otM-u-udX7Kha?Kgg
zxQ#63{{3OTiusd92J<_6ZEk#v&Lb$alV%6b$+6vd!Fe)_zm;Q?6pAiN>w7`ntkgiV
zGm_(BuAqCE57SP(5QsgCW=frwLAqd6so!^>N(eX&@MIFN`oOr%kp}d+TK{}hXzCj&
zlI&MP;-U6o+btS#J`r|kUYuiU+RPijbROs=`mGBFn50LqjzICii^+Pk`kQlTwc6WH
zAtxcfk+M<@z5Z+QuQ;QpbJfaWlCf2P43bli55)**r_Th+u`75{H(5n4Y5{u-)B|gV
zXW@K>EZ0vY;>aBf@1!=9F;xLo7&&LvG)qzLel3+`5fY3r6AW!jK{4iI1{Gro1k1=l
z2ej_I#%~P+-djdsUW1CSRy6kI6fF6oKKGM$SO_QHJw%)`(^%3ya@XIP@_5h2L2A=}
zEo{<IL02Hk;?KcN{l<Ik_ZoiYo%b^YWa<(u;B45s*2^hqvrbZ(X}1HHkjUf!bF?X;
zn-VZ{ucJ4pRYwv5<4>h^Zx~5fk91hRm~orZCAi=;6H`xdZ8aS$WgQnd(P-zuih#w`
zj0tKf5T4dLl`A7A#ILaKStdimi&})ZKu^Vt*9j#|an8wi>Eg);y;=^_3-QiktShQ2
zrv4=KQFF=~5t6usRZ_Uo*$3AON;1re3FWut9&pIug*^lRo6p-rEZqDYM7RDoupmV=
zusLylllDgmuu>O9r%$9^O&LZLJ{_6+VL~w^o2R_zmH<>Ql*4#GqyTBCO&~6!$37Ye
zKPX&*VSKQfcB?-=uM{Cesm>y>XQyM+%WCI+)fH#qN!vn=W|jrNJCOfsTXH}`!rvw+
zzEZ829$^S6)iL5RTkCZzU4{P?<w$q!_YaAQtizQNS06}r_7|d8hDEj2$KDmgu*O1A
z+=|cskSH3|i|OH`vZZ=V)(MVcWi{NB#Mik#652kSwrAj|loWY755ZaWm)KbBgtMNj
z-tWN|usnPxX7%W_X*J>m6s+HX75bnL1lXbuLcQZ14VpL6{ZlCm=Q0IrGIj|3XOjz9
z(2~F`)`3keXC!t)^%(OPHGQHArDdOufDUguy*~0l3bA^-bK!&#gZ!Wv*^Ell7<SV@
z8)+^<0N827WoQh$r686u*vyJ1Cc3kSndQBIkR}aHrGn{$yhyMh<6r|_4eN{D=Ckqr
z8_^7XtKTx+s_zQayd_k4{@}5wVF8RkVx2sSr!WxgeA!f5TjO!ANYHuQWtqbvdg@AZ
z=L|XhEk+>zr%G8>@KY_?6$??FUk^z#-tT5I$Q(AikF(?b6-DwSw^iEs1%_hIQs_dd
zsC_>|7?aUd0rC2y?u=8Pm!!jMOIkGLUB}p)*|PPutTV+{l}LW;d*z^)xH_2&x=>am
z_nzehFKp76tIfos7#N~SjR>5;?ig^4SJK<-!1-2V5rz7nvz}$ajW(bNrB5j@x3xcp
zN>15HWzgt8(`%DRtzXYGhW?*Y!m7NBgV6C4)yaC(vd2l#wN(WfH65!_m6w;Yy|=yK
zv5F;G=8Wg9D+>jvU+S_&18E!qI=_s#2>>_44|IS7sXVQ3{cos4V%M(&ugcbLRrCsJ
zsa8U6*WpVz#b5k%v}$lT?%1A?d}56m<CeAN+ijZ5WAs;`YAc;aj{5aOPX+TE<voM{
zoW7Du{o35GUV+ItWEbwuXYZqgUs8B%UjeSkhXkyzfJUS5_$fNTi&dWdFh{JJq`z*j
ztc}FCc9t}$Si7IF(P>Ap@VC+!=>Bc=KSWs$_L-g!x_gxFAYDJF@t<A{!8xE{LH<*O
z(<+u3WvJC0X@-CunALISLZC_xJ+c%KfKkWvdulRGYx_!PUju%{37%}?y&w8q6CAYi
zlfU1Y>E^p-Kj6RE$nN_O&F2-caE1ByipV{a?{-I^cE5So%_~Taco8HzZ&-sV!VrOr
zNNoE_{(P}v-+SaAz{?OQ2#37;1wjhJ3>QcsHbgL`35J6ZN4+VK^%$p?_d{NvU$yd$
z0WGNQCze6DzDp|nT;qu`x;)VB+a%PqC<dc>;qG|GdsgGvEM`pZ0Y|{7;W85InR*EU
zM%g(f9eqD>!BRO==UN&|4>Eh&D3n`xe;fm8ZDqBH!szL4c4;CL#>f)t0KN{IGM`~<
z_C<0lUdKz+MXAACj5nGGFbK_Qa8N{Wed!o~G}zKuiWcDAO}nM$=ckVJf)i*OEGvdE
zy-QdKQLX($bCa?wDaR<+&Wq!6Q_$KxW+u)dauY`0pzIe9(kPHl4fypT2STGZ^mWcN
zBB(i25n*tSuV4F&#q+${O^g&PM&CZS@Z)-Y!D?8`)83u~fX9>RMp+>IzoEas-7&7L
zCO~Qf(6x5u)%0L&o@gC_^5jAJyFgGW3<>aWg^@y$L`X)^SNnwGnLrSUbC%&L|FwsW
z{@hN^NXZf?R09CncHOGBH2~b^6>}A>4TyDexfKNBmhnim=Y`jPXb83>>>I>QNzMo5
z2eAKL6i)5Bm0uS7`LA{Uohtz5?dI*+jp%#u!94e~HK|MqU=6i1AhAo7JE~shyu=+D
zDXRQoXJdL5)!9gH&I&vhzr&%-pE2>xbIzR$u#`NK&kDh&Y2aaQNdvtn+D>4+CE8xn
zon}x?+kA3oSxq3#>B2|&qM6d(YpGY7=8D3-X-4HJfK5zgF~dI*`0eNMJIJk)URq&d
zNlr_7&>v?*&TcuM#GK_`*R!Q5UkZr|*mOB|5j%ysG!>i45dlq1{9CJ=C&nSxTC{^*
zG01)j7Oi9d4N6vXaH317o~lM+v6n~D(YEk76grzifMGL1ftVX=TJlHEEk5gxnqPw^
zk&i6R|D+>2@k!007mguDX;-X+oqmxg2>eWq1F2-*<Y9=5<6*e(j-Bsk)P1&yvRT7J
zOxFM7rM3`HH6qA@%^28|#a5Tb5i<fMi-RpJT)&tN)t;bxysD7{Wa^$JMR}f!(Wt%8
zTVUmbX%eeF$7&aAzjeVjf>4(vo0)c|6bJov86+pklVDcpAUoHhWOb#}@_mpecH%E0
z*5>(I8}%a*96v|rc72(DoGn~`_C`_sV^2*nJnC;lP~w`c1fCqzQun^?oe0pbvJUgm
zzRYgY7&ltO8efj@Plc>&LedEXQm^Xv@u3D{5JU((;LKO^yKV_nMEcS4eJ?q|v|gwl
zQ<;2eiS;F|5OQ}JVZRa)d9U+)v5fY?fI$hlP0JXoEws}S<czEi-sh@J@bkiz_)9VJ
zj6uqpJUY`neX~KzktL{avhxawg3&-J-{%o%(Z%p4@A<BVL({Z%k6J^n-6d)_QFdpX
zh<|XKkIM}pV$d8{!eXjBPX@*fIpqcr3ar6F&GGX?>$d2{V;YSP7n2T0T)wHR3k02t
zJeZOP4sHbx2!pJ&7<H03;o{sq@Ii}<<Y{S&RxQz|$ECu_%X3KQ5)~<L@E~Wl7ps!4
zw=|oS5K5;N(&7kw;8DQk0z^>g63T8@;&-^Wu~AoG0V3dL7I2<Gk=EUlflI?Be?yWW
zld>`62=LbaC%>E8HRjY;6b*~fKs=vfKaR1OAv2TOu*{an+`>kStU+D%usC$kq19%e
zDI|;gS5%)=NaVWm<4$n8Um`yavFalgQHDjlBJChL?MgJp7@=9C0FMh~zF-V0?8NFV
z$AW0l<g8aFq8ey?hIpWG^G_aAf-d<Jmjome96uSx2Q-UWV=`BsAsPHSf+MTh{ajk-
zO4Z3^Anvovh+_WuSJ~{kLX>Ly=8;!88j7`mTr%tqT&t>Q8C&2w)tX1(ZzEQh`cQ1`
zeR#6trKo|$ns^fjUkR=U%+^fi+~@6#dpD@Y1d%Z_@xt>)piM;7i=!=T+{fWXn$@1n
zjbFi{iq9Yx29yLQ^h?jL#H#2n<<H+#7?T3G?mI?@BHjskU-SiGZD49V?iSYbU+{lF
zc!t2NGe4v;gvO<=PO)zGwX<;3B-U4~Y^~K0)Ue6^UiVn6Z&?*m*{X`ER3!<88Peka
zfqBfT&Rejlz?ODq1jLpiya2H$$}dZ`h)f+6uBnYjmSe3mS!X>PYKlX_RC04HB8}dF
zhA-vV;DDnrFH#S!ZPpAQ7<g0@{8-33IbTiexVSnIJoW90h7ChFXtM6G+9#vof$Skg
z`<QpJh-QW9CR*9!iSN5Q+!T!cr6oK+nL>w~{gZC}7dkn)nHiT=jFTC#rprYt$7&Jr
zHEEX=W;j;;HEq!KH3ovq+?(!gZXBI1ejK>?mu>iSL=O9JOb&WDFFVpFD9mS&KVa60
zL8+D(&eht6(nmAsIV&Mf;3r|enRXf-av6#GVSL)`Xs*|=B~jLxg7m%F0rMng%NeFN
zvi)CZ{a9gn3L0h&vT~X^J86QML&?)w?v@M4HLVOR^pzOWmj<7VLVEQgd(yauOkzj?
z^i%h=`6rhScem$_u{vN->)t%2NlXo8=$PRZRhWvm_1`xVtvzXtJxPi+IqB!%2{_|j
z$b-{_8Mk9nDZ8r9SL!z@62h&Irop~W9!*KK4G}7KRTD34Xf%ewB7)gpb0MCsKIu)o
z#IY@f%P@1*$n7})>7%E=_{=3~{ASgXi7PUJGJ=}UmN(Z70AIJapD)qw-sV54Ir`w8
z^!oe0`9--20?^ELnQ$j~tXM1PP1LNKQj2YZ518qT(~)uLSK-5O?E9(SWfeww?Ro*<
zfv>m2+gH8htNrfu$T5)ya6-f^155kyQPrDA5PK*mh`r|cLI)V(`^sRS-%3<}(}#$=
zfS2#N&}sFOTs4gqF!aoxCPzJ|#8ow(qxvpIv9fOWX{)Xa<y8yTsDm3Xc4?3Y$8RrH
zf!A3TFa&BP;?{p6u=lDetr>r_ihe0h-$hep|7s#XH`5a?&vXXIsU}7!yW;Y)7(eH}
z!*36yO9+y@CA#8vocuG8@W&JPji`RuKpI+OJazd0J1mH$(zqOs%xtV;bISjdis)j^
z`J8uN>^N_j>UhTo7ZTlu-p?iU>pjYnLrTw+L+S;9ZRjAKbWY?(?C%qI#YEAbBv3~P
z3$QI=(utGLM>FcKF~yE|RfkTF&yOBojlWrWz5Uf#qG?lMEWte$jc3B9Tx#$T#?{8P
z3;>=RDa#5gXXD$*K(h7fq8e6iolSQcoolgvuC&O@EU$7J^ac&Z<=TOvVE^OMPP=cQ
zcFt2)dY-U@j^e;#rE+eu+<XY!XT$T#=8aF~n?6Xo*eF~z*b9d`TBDCQx$4UYvNK^9
zkW*5x*_4rA0nX-9)Q+1!@OQ5_TUNUTlGbE<E+axsD(g~h6G~&p@PpgthsZ3MVr(j_
zSpusp-ly85NxRwb|M+^x=*ZfrYd5y7PCB;Pv2EMv*tVT?Y}>YN+qOD(>ZG6dJ>U1|
zjPs|)t{S68)vl_2-?i49^IGdW%;Vv(=_GvP^BT5?!fkml<Iy^lO;W}Ev5E;<u)j%-
zr{FEMK<kdlW|xJWB)T+V=vX_b#;k&AMmTjE6?HugYMy?~dvWqG!pv{z&~mcgK;zI=
zCmSznc^EC7J!-PPmcc6550<!p#7bPUNC6bm00%>nRbF2uCmT8+GfCW>)u)r<K|17r
z2kJaH-@a#hKOR*4^J*<5kL4B)zpZRo9G1lgr2OI7uz(}QPd+SxdIc1R#_qD*JqiB^
zOT;35G>S#*PxeZCA;!@o)KN}i*+9Lz`vt3+WC3vU*FJq0WWdaQmYEl`PkY;&#Uc<c
zCN9e@J=<KYOhZRwB^2n+FcsQU5RG5#H0%+N(pkeF=r|m1cz};RCzT?^TlCzA{OVc5
zC-ru$CUh8<e^ZZP3+?uO(=E4$iGvlAggc*BZ3YstZ3<warhz%6XS!V6;Lf-QNS8J&
z=sz6c3YvWNl(>HZye@|BV*oY#uK|!mD)rM(X>61d=LEs0o_Ji<AuIJO<=ro^p(S*}
zW*WK<33BFlZ%x!30Q|pN(+&t99x1RQ89BU+9J^0!%;d0tG@f*&gtryY?s8xZ$hr1>
zoaG$9b~rwK(E&R?-AS>4=ZCf9$bT<3XCZ<C1Mt<`|Eh{Au*gD82s=~}062i-ihfvT
zs^oHR>Jh4U&&#7w^Cf8&{eB$^c+-C+EhvI^)kC4~skbq(EL*Tk@Ov<oF^K;2U_uG&
zlv*PereSv;^DL@zW`s<?zK*nhc3uetgXXOWWa0@Zgl?LNwGKv_OvBbWV9*ci)jl_t
zhwFuF{DOlO*40&AouwzgV_65p%1uL>@i+*jHz{-jY<Ya2F5PVaJLh+R%G0&jenyAU
zs0=21#1H(b-odtz-2ph%UZHV8#E%aM5u@6axFPmeZ@HVVw5!<5FmtAA3vFbTr=n1s
zE{(r?U#qeBJZ0~GJ5M1ap(C~eS2%L`Jb8f;hkdBk5q{aJUT_Szfk67BD5CMug_RfU
z&$*Dh(ah1Ht*~&2;MG6U)goh}fPBniu`v9|=V<;4M{x3!ai5K4BB(zwf*E1WGm}5G
zj%b7KS^{m?dQonkJnyIU-F)|l3$Q}4ARkUIfIUHMdl#;vk5g-I|7cp~FzvR`LI@y!
zOyk3REcT_AJPQ4Zt`LqO0r|G#x8=UBHdBh6mr0$y94zT~W7g_qzpOB%`pQXwwaSj7
zRC4|lot53BiYJMy#6`GBy8shdSIg)&AYk4#>6&tzuV|7p3;f*M{n&TA+2VKVM7ihk
zf;%gnaC6-6ubgr#qW%p}g?};eS3Y8AAFpv#NTf$k#kqrRZ+oqQ6aVdgZ147t<9AFb
zS#QdKz|Aj2nNq3qr-LK|pHMki*&xC(JwSVxwVyF8?_JP+JUd0YL$G2z3cQtd_vvTt
zLdPrqhb?jqz{K2%o)8Y$5Li-!>IOgy@$|KGv&IjK)X<<`PqL<X_-n)Ma6^hC0tu|a
zEea1Y;HEDF%AeBP87qe9FAx8>y~UcOPs$G_|29jGlz?=KgbA5fa0meU$Txmbj%yfQ
z{fiYUt<Atn^YA$20sY>UwwMhSD^<!yyhWdPUw5~IVepSunbYa`73P$2&F8Fuqcjm1
z;1@i~$3lBGEaURe1qW>>j&OvqS;{x2|Fs|HLDlvEFU!b|#;`vM0aq3JLAA9hfJoq1
z*`q~+x``4UMj6;%4hzb4oV3r;kOZ4s!Hy(lCawKV4=;P|DuEw3O@75((QBbiGt4-d
zLrt!ok9wi7Q^$~U4MBpFV1P6X=!PU9@8&{&C*P3*$0F=}#yZUuj&=8tVuuMQnEq+U
z(97UbYL$?9s!-`xjt!w=+HNI9_N_00#GK68E(rTg7C7cSZ!gF8AGUbx(xT^*%Of}J
zAjb9{;pJ*z)!QASia)dZjN#lc>HU>^9Rx8F#!mKVAY<k@nUEo((P>OaLb-X;fbuLW
zK6Iz!x`=!?Q&%)C*?rXT`8E@iEz|>Lm5>kIt65&CHAtPt14R)6H)p*;VQGWe*!utQ
zN92Gp3YFH?$noF^v57rv0W`gurH9=vgXFt!(l9=W;!h1M;KesWZ^EeL^imF>e8+3-
zW^TDTVgGcY^4ZYF04L21c~wGlyR6LHU!+KfTD+E}qQZob_wtbFpHBkYSD)tjfbj*C
z5llnDs>EQKkNfrQQR-BuAaSh35Xf6xn9ynUz=HRQg|>Qa-Qx%T9`uFA%@N*=Jt7=l
zv6%w?TD5W^kZPc|dBG%ab-9R6R}I^{EeV1!rdFw^q5So7dv!oWYRr+M(Cfocu)ncq
z{)z7H;n0gl-If<dTtim|*()hSS0g>fKzk4`Z+KyW(YO2*xov9O(9)#EUSd0sxX$N^
zmKTd~cm8NXiyf``8W;(6b_agacIJYZImn>=(nWB0Fisl58^KWw+3!0dG8;&Eo8?C<
zR)*1#rSNKp$<P<`C7n-rUF<s-7^FZ;Y6$bpD{Xt2b#USeKvNSn-F&8)TAHe#P;<b0
z>`ha^SNb4`NyWJ>KxG<2#%u((b`X{elODp7Il$)GWIo#q#0}<v`KiVS(*?`3uch+M
zeYkx;&af@C+AZ#4H&6&I>4?3~HlXoWk&o~=8HDjQsgM;{(Fj%VM;71Y-S~7R*h|9%
z<_2ztrD;C=s$J$a$ueorOHT##IXD~lR*8LwOMBy(VYjRxTnR{hm%yp%8HtaE`@yU^
zcutn>uUi$7!Yp7NT!|m~JV1D5^`WqumH)^geQo<W#CvZCG6v8oMZXfJ4%x62ZB#I%
z91PbpC&7BbAr(51!|_!6rWrs94_hy{6BvU0STBrPNJ;KAQGA(S-ripr{qkk>2j&rd
z7T?@`lT-QHF`Lo*r^dK9-&Z#L+an*!0ASkh3p&k_(H}tdQx=k;Ls`8#e+y??H2`A;
zeKOJ-SSANiMX-$N3eq=m6lS1^F(2|5Y({3JsT^|~W-91K(6nh3)xBo?voub9_a&Ed
zz8-A2(I2?_YuF6!^;Xj+tQ-#0NtXlY;>ApcGRn+p4ic+3%+64D^QLDIEReoanSRv7
znH;8{=R9xl4yTpedDgS;y}Kyw2uG0|>4JYJE>ZH4<_}PX5=`QHdj*idz81+dqnSMC
z-i|V(*ZXd<X(tki8J*avhG{kkuky)_?-+l?6-L$ZR}mJFM<0&hT&!GIys?n(rH#kn
zMV$90?U#32N9kV+cEd!sYy`<l`>qrcbmLv4gCEJ2Mb1<*9S$q3RPHasvdy5NQm*Ws
z8xvL}#)7J{%#IYZ20KPr!~oH!BB(^yB0{)DC>e^5tidDPhN{5wqvtum;#CN?xfn(`
zGW?)JgbLU%N)2=Zr-jC}TUbwk4g+LuN_<Y%XD-~wJ^Iq<>!{QI-m9vu4{T^4-j!5M
zcgP%JXf!vciR=ERsP`s*Xnf2%m(h2n`}44b_C#~%;&;1jfJ)su|A;ul3VHX0f!lDV
z`TIQ(ri?^bIFaXmgz(|%EYjKg5bO1&30RQtk7$Ts(UsyTNiUC@8$<(!2i&=t-K!U5
z2py70d?Ik?D7{^EB8BW}8kfHk)bh7t;QdC>2~77xGF1WUskQv4p#JDbSl{cMh6DGx
zC$Fima-|!Dp2ksqbU5zk3*Tn-s#HM5lephK?<`3#=-GCNBmkpU9g>QjQlZxCU~hmq
zhy$jYP<%5ewWz3bB)>Gd?g)hDSOk3F#0v#73!sRvtdWMZ_2Wv+07}OJU#G8DwI&Hi
z^%pPIgM%^?-ztuJVeo_~U*K;nfT4dqHbWpay-LO@Nrk2NT|%IkDoXyM;4cXanB||-
zD1RR%Co-H!QLQBo;l<YE)woujso2yRsBwR0JxeBtsK-J$S1Hp@hB&F0gts5vn3gV#
zp7fs;PIH`GB*HrYe_dS_d~n$~%2%zBE+yr<@l45de?&D7<>?$G2~BV5AtX7K)a<R+
zG;Lv1r^p1fiGX&gsr~6N|M~S+#a6Lo6SRR~vtVz{R2Ug!df;!x9U{TfydIbmf?bKz
z1m<vNcLckHPmcO<9zP{2I!I*0!7bsi>0v~&Udkxn77s5rF)KT@?>th4_0{~eYaXzp
z8m(W~G;hFyS;LdOM9WsD#8z$`(tpS%3Kw??N#Dq61$w}!QNBo$en?fO*%z6r+K0&F
z2I`^Dymr34nn8#s049VvZqhu@1Qp{gJ^P_ff#(hlqZB0u95poC?3bjRBrm`aQ!8h0
z15RH?BS12(z8uKJukGE0IT8+G*(E?dh^>W7(=(1O;KPwTCJOQsN-k!BsB+bT5D$_U
z`MTkSJD#Ets+^p~D||j+>n}}i+Du{sLVpG4Psc5g_>oAR?F4Rq)~ybFwI*q!Oh*|S
zL|6ABQhQLCQK?|zT0cSL;vX$+{0lK-SKl1vuqe3u+~T_$DMmDH?@N~4)d(CIvOkC*
z8RkoGJ9}F<wJPw0Gd$|#XpQm2sv<%#aup#|_jYZ;!MXJHTpae9si5P};N&q0(6sfF
z&cm58UebO|mj2FN`5oN0DV^fI!^03Jnf`&{F}~v-%2y0f7myo@Cb+<M1#a0KDr!(T
z3fwz#wgFJUfxo0R-r>Z7IUH@-U+B)1OgFcgPRfM0HhTgbH_3m8KtEKb#1^Y%$NK%C
zM?9SnD}Z9W0o@JNx8~{X-3IYyihiGDoA(9b{a&aUYiod|&N4m=nKM4~0XCgry25Ig
zJ$^hO%j@JYFUugl-Gzr3ASp>`H7Tpm40ryR!GDhm3a^U#u3>S-)<e%&uLkb+=n?ZT
z<o%rFb<damVmJM8rOn-wbaAU8AkK}QWP$5M4AikrWSX^!Hn|%X!SjJNnz_|W@{y_C
z=~p7E`PL*E35Jorjm5;L&}(;I_$ypTB@)IFOX!SQzQ_8mdbh$JJHA-IsvS&~K$7he
zGV$<bMscWEfTeAP6Jku~NJCE3#iX)VfHSV>cOt#jzihm*L{gHXi|MW>e%qd_G(*<p
zIWgMC4evTX{)v%CL&5TpGPeVx-gswlXnQrFgm14$GQyMFF@m-JC8WvY|6ihqK9pYq
zPg$w718?1_0#hHVBn~q0sIrT4o;{V?;tw?WY*&7(f`6)|h*xFUAY%l75QR{At+zhe
zRCaz?vzor?|HR2$$j9Guwi6zq4rXldHt0S+`b2QM$SsqT$L_fs(`s{Gd}p_mFPI18
z!I%Dm$9vMbu8!!3l(}6AIQ=p^)1k|vVy7bLDRD;ljb3zfdCmC&TPam7T`4`k0@mI7
zgNXN}A8!Pi%n0mOk8+B}5-X_0V(z4HRnI=U{FFEUt#R%g#^fZH!d)#^F$GC`ggnT#
zpQ6pabMORZa!AHiR~Bq$QcQy-d2zkn_+b@2`jLRmcl8ob+i<V!a6Tr=V}Hc>NEmbY
z*|j}u8A0I>+jK8q83f;SJ$XzL>jXcM(AJu#RKW&1R+Wq$$Z{m<DL)~rWL~<*vR;l$
zDvGPLhx4P{=o_evEn?H1%~;eZYW}>w#^Q!~B=rqcuDe(@|2e1mBMF7))~Bp2=Yg!i
zYrfP_-ax01<@ly~4A2{t)(vlDE+dpg>`voWA9?|w|97QZZ9r{M0#Qe)dg@P-sdA-|
z7dj<&Bon^`Q{SS9+m@mu^*VO~c?%0^_o4~W&kpXNit=v?Q2BA<5aU;Ym*e&*N1%8y
zlKU~@?C5DIfr8nBOyS%Z(Lv3kN0Kn|Hhb@4f-vax8mUNdAM$$(c!j7S$#8U(8N(QT
zF+d~qLW+C0C;^NlG`nF3?)$QZ$nGiQxhg)_No$;>vXsBjEp;%@J@G4bxPTWbGVXt2
zDE)eBExR?tGeKZFo5JP!Q=XWIi-#Hwu}w1&u~@W3<Ff<3sqshqVzi&~mU=HWH%-bE
z%HvX)5w-}ECLoPqxFG^{eH1Zkmj>Lbh#ZQuTq$h$Qg%Y@5cN0KPa2hL{~0*eHz@**
zFl38md|Y+~O?vVaMBvz%h5Vh?)uTe!3#;m0%^PiPwyQ1|24f513g15Jbw@LtRj3er
zVICC7WMqIVky*S#80N186yz-wNMF*1#Fyp?1ed!u!HKAZ)B;91?hI{b)6859X10^6
zB`6;FbI>WnQu{q24f!Skw2BK55Xpj+Lyh0OR{Pruk-*H$ojXFL6{28ysvNlF;eAxY
z#1RImm00gj7>hI+Tsx-tJ;6gu3&vv%z(4*aHxSGfL}G9hqY-uXC8k)6zC5fSjPcXQ
z?Pey7Tl;rRbl29L5~KT_)|eTs*<fGyU0FfF8<QE{k`&qa!tSw9n&hgvx5I3<Vd{8z
zRR)C`jy4H2QZw*>@NiAEn`o>-Sp{rp{RJ!oE(oB8=VH464Yy+Sum#IO7)PZzn#xBY
z)FO?aTPNRPR1%ia&vp>nKOT{WYL3Y5?vl@VJdCZ8I(F4qD!=Auy0BIJ7w5&67Ke4B
z|8|AF{+T!`YUuQV@58@SR^WOOqRTM(-HK5JD?3|=%<AM{Tqeq;Z8Y`EvR2bxmqztx
zNIVg#TLLm0ZVJaJ%0~R6X`A_&a_wNf@N?_s9ZAISje<Uo0t7FmvIjUTa3TTE!t)1P
zbz@-;C{Gl3Q^eoU?_K5Jb!p>5W#On5?0(!#IEsQAmS@Fk&eko;#O>?Y9EL31pPLO|
zSShFhz^L;R&$6;nOtdRCP+&=>yU?=qB)U+K_vgyZ$iHo@I^JP3sGc~k66vhWg}C`9
zuUKFJWNN}HEDDGK7spSsynyHF`zt!YhGaGqk4Evc3`K1AEOo?_6IXaGmS5BVaURbt
za9`h-)9`nIr#9^(ly-Vb%N0D{xMj<IP&l2QkI-aLR>wiMTYTE0-vRhGw!OZMR4UwU
zev@ZlhzYOYY1ZYH%6%yJMO@1~P1zwAzUQG&CTPgge^58*0(9Xa<m<j#n%VDPcXF)x
ze7FBSHHTzom-Ogv?8u8%O}xK9W1%0Xi$tARg305JF{e~FBfVQT@rK*IhRNh}zwI=E
zt|aTUPPVrHBJKJN@Q%=9NQfNm$UJ~VIbLjt%va6Wg1i3H^E^k-1O9`YZ|bE-IaM#D
z-rXYPjwe_0+p0-31IV$p?m2w{P~rb5pcBoun#gmM)-YJT`qe1tff&h`;11{7Cvo|~
z8W_uPufv68^vC%10G7%njO%Qwq>t_;bA9;Ur*$Y?5pJK0^~LJq(KoG#1`Q!cluVuy
zV12Rzh`h?0vibZjW|WD4`EGe7JxfJR$a|^N2p+*GvU{*c;jWtC|GHDwp-KR2HA_(l
zR#Q}(P*gNypHAmjXh;#tGJl?&EK7jw8C^&R+<RM`4=%y@QT@}08$MnEYtynL0JYmx
z)cRX!pOeAWZ<iCf2*&OL_77IWg*N$ms*2=KK^xnvOBobe>#>t7lxC`E!y3D_6Z}<<
z^%`F?sMWFHOeTE!Zy%gB?@SILyZiJ3K<!S2=IlUZwW-=m-5#5s(c0y0yzz907-I=d
zERK@+J2hH`5KR#)dD3DMJxHBmNxVM(PSbL|Baw*5JdV8zJ$1qC?+Oi(CRtOmD}|I)
zawhNDtajh8)-H5N+2ZM>p(ZB82zr^Jt%WD^DL{f9Hmi#t)mKl$J<<1f!FP2Bs5*>$
z=^5W%u%j^au>=#;(D#(DDJ!;~k<WDx&ny0IA>Gd0WF&cuI7?S(=R<$=%GT3T`NI`r
zxuemHVz*Qg8ne>m3C{#JKIW##?`*T^k4E>YiGMP*pa0CA9J~2GpET)QIv`fZ=I7CC
zuYDRqt0o}h8Q^}KzW}H{el3J{{5=a3Q}7$Fml=i749?Stop<7hC=ty4mD4(3R~PLo
z|9x`nG;PG@1Lzr4<%OVQQ;xs#Xd6;GG}t`d@+^{?G7uNp(%iS_A>akkQ}Z4mak*&s
zX)K2h@O>hx0c@>#%#D42#COdkXD|UyX<S{~k$Vp~`JcaWxS&8TM$}fcx~@vPWIPu@
zy1dDc`>edfJbNbT@^)+M*Hw-?6pcPFuEZ3B-sk`8gqP0_YrM-L-vNFE4?@cl+sZBa
ziyK@chKaFnhU4#HwKp17uACs?2r&f}6jsdt9%j7Ov#onJlp{g#FVL`qfcD&|)B!5?
z;RvF^L4IagP)JY~Rd%o`r#3O+XB3Qtf2kw86~vH0Mp=2-Vvzv3iN&3nXAgpxQw4#N
zzX>OJ0hlrcK1{WRIGH8z;xHcjJ<IJ#1<MgS7>I}OePvN;-uvc6sv)iUa719t0c^Wh
z-8E+cH%?!A-=`naSu{38<;_hqo$<gSb|6SYC;Eg`gfO5`*hN*8oNH*Ou3Uj>D}}B@
z#R8=P!!iY4?m)NT@d?=tE2Mq){@B8K0T7w{dT#vg6CCb60TiEW;+2}}Vsa7kxMd|2
z=QhvABYk}hl1sVjK_b{RYYUq~Xv}3M;v<GTEr_!vf-`Wx5!)&yhb(x_S~Y+&KG7%`
ztM4!)9W#(h7Jv=*qz5yDzWtq#+I>9Vla!ez2kd4Nv6Np9QOS6B%a4a!;_@_DhMU^(
z2+dH!nGeP{pznbJxssayC^E&bh`bBCdRUe&9dhODygR>y6@W<iij`Nv0psP`J^Ptc
zl~oe_&L@}S@|2Uroj&VxH+Zbk{c`$$-26_c9LG7b8eK;m=4HaolKxfNXcgr1_TJj{
zeZz6&kfD(L9(~;6NhlJ26WVaKe1a9H@k!;<Dyh2(L=SVZPG}k^`CHNj8N$$qCRTQ%
zzUP<MjV#JAh%6>ec0-8UbB9t{vNjj{2gk_%D0ZztRvXQL1;N<H69BQ*$coJmTzT;C
zAF3hs4dBtLArerRE=EKCqE-}_lFjFj9#bolGTyS|Q$Zr|Y932^I-i3mi^@P01qhH;
zck%kHMSyJdyIJa&Ki4-*$fb@pOB0vjX0`PTCZ4>v&mL6Hm$Ran&)AB1pevfaD}gf^
zu*+Jt_hvdl4QjLPwaJ3ZZ_FxW3mvj;?T+N`c3jhk`f<a4i0X#I)F78hTubN#I+Ej{
zVT=h!X#eqNeq9_1F62~`BWFoqBsRf3>Ic&v-KO)oOeSb32aTWp`D%3TLDqMi^Bd}J
zlo8{TcDcYyBS%b6G2!iIIns(i1uZnY<+H2rH7Pog-|$DYW*r^sdy!Aw9mH?NYT8#W
zFQ_d>uqPLrcWW^Mhd(JZl&73B=XfbP(4B%|%PqRM+n!XL8akqL@%o_NJ*Zg=+D4Vl
zR#Y3AAb_D)!|wksH;C{_t7d%bT-#^>Jy}zNA1hU6S)XR4a%G?7n;kA6y=`!b;%~nQ
zdVRHRADde=+kqUilmQ+WC@5wZao@}@+NaXphyQV`F*m1lWxF4UT)$MtXGyXP!dFtV
zl;Li)d68fHtI$+o8%}9xpe4$PGcS*LAu3U^5>@`W>$>lIkC*fOiv56kHMZ$+;?o@k
zoM`NQ&D@vJa{_vjxJ}5B7zd<x&)c}=WMUYNTtT`tavLDC#+M#xevKW>Grh+|==Ue8
zzX3P2mMj{Wn3HBJ9QYk1jNaoPRzp>mB*))r@B>G^R6$P4Y1a6T4_m_csr<`Kbpm$&
z*`dFDN#%GAhKdewk~!ZGCr3#H`)j&t4?`7zdM2$SRbZ85jwD%Nb5$h<M3bsWRgI7O
z#{@3`^N2j-Z`7;&ORu(;j?A_I&$_mye}4+3^Z+%#WSp${Jw+^CUV+=eZg}exD%8eh
z)-3$gDSc_|Qz`uR+fxRk)~0G&DAI>WQCC}W5!E)&vNylC%@ybmvTT^Ip3et!!moql
z$Z3Ershr3M<iQqVF8n63+9%TM9=)BexMr$nl`{7K>H5gmjM+2zi-WSi+o=Kj;U`xO
zVcm{!8$AxQ1@}9IDEr6v`=|Puim=6J^gTp+gP&AdY98@xZZK`S&b`ndXJKz3+x&mT
zlvq{u>I#;UBD}HNJ{n|BpX2E$?b4qsBT474HS_^youl{#t>e&*h5+C8SDGFG-_GXw
zv@f+gjB8p$;_X-!{rl6?T+5gM_;>DM8$s?_gXmb}wBv)sVBJBZh|IH^*ZO_MCbIy1
zoPM-E8x+}I@AMB$HkYQ@M?~kNESBhC+($$qrizUS8OJb(94lUqajMV9aN1kn2TNBJ
zh~L{Z2cL?*QwPz;(Jl*_$E`Bxe5jky@OUUqYPgQ;Y`w)e>laaoc4oz#+HtXt?^EFD
ztuB{8YCBREBVT$RYE0fw@P!pJCj+ZKaT1_GWTJl9urKpVj!r_PU|BmH!gx-sIw+bF
zlckSZ^(y1e{?R~(xx<z;_CqQPZ_uBj$l;q5tKcW^C5pXS(1dl-`PlxY`X#o*SBv@!
zNp;1R?wFsU+F`GVo)}4h<XnLJTmB!w*_x>tKx?XjrmhNg=~`7;D<rkq3fUTZe=T05
zfi%oy0(}f8%*d5G!r4$=im}pkh4dyjxj^4fKB5S$#BgXo9A~B>U#rrqL!(H=nc4Cj
z%H9a~K*A)~RYdFbKch+);sUNpjrpaq_IzY3S^77cplE!_lc=739e|k#z(d}5kNc3z
zpojU&;gaL}+>y-2o9S)q-O`l%)0vsdL2tZoXmESHs|w5P(7pkm+|t)7<vkQ{s%3^`
zCQ9ToB$t(UzX)NJo)YhobuhB>^1TidnX*(veQ68<T3o-A6xNs@fNa<29@V>3kU-49
z0M`hhK%!kvY_0^IjqrnP3X)$lq}Z6Ke?nipxkY0jrS2?AWyqjog`)|bxP2x?|JJ0%
z=0aBT_4D<UkKK#8y<9&SyLG#Ib;EAwbpN>i0oS|s4O%+e1^NRu2&KCaopkgLOBB`f
zN{rWUN#Fza&Uf{r=LcR^=amdkt*jiLTgwi?yD?M8W!qdMz#u5!zMq*c@U(vBlj$v0
zJ`<gd2y_F;H)sUezhl>H-$)YUvhy2$jOUfvi!@n)ZHENLd>LwF_Y0PX6J#yd?{Ocf
zi|985<>7#WY7RU~Fr(lc8b@YnygBFv07xr?-h=+j_Qn+SPq<L;V4os0kMDVuK`e(6
zQgkoiYReDGze?uzrupUB{N~t`!MXZpFEiL#s-ZYg8vpJzQod0|usD$_gpxyk52eT{
zS;`~q2XZ!C#^cq9n#ReuHfNg3&^ex73uE4Ns7ShJoPgE;mwvzm|GNjH<PJ1<l&N!C
z_d8)3LY)AYTM7yBqi3diQ|UIAduI(u3-`|4=kNu%7HhUquXjXRE69wIXGH+<h4953
zQJNT0(_^s-GnhzvIxKM1hb4<MZTY8VvuYIx(*tR?a6>O>3ev1BC*8w15pirTmn&#$
z-*q4E>HMRZ7K2ln3qSb@ar3QG#cCH{|3ammLv%J}SFe%o8RJzJq!E}7`I%<H7YxVK
z<HAUY4VG8M<XEUz^5AGLDT~@fJ;52o{?!+y8;@hnPhd}GrabVr4bYomgL$&63m*sx
z>>omqYY}r7SEJZYW|!5PXee$%>e3y|$*ty~>X#Ae;4Bk+u}I%yJ3mxj%3mUypTKH<
z4jjG_#E4*jaUggCuWS84GxU&z_ptJ<l0EfD$uV9ArN?PF^FXTCDrdaB<M-=wDmtf|
zhC<?s^b_+o*S*@!{iCBJJdBKZw$M^F*-SKxXDQWIVr+bP$G{AsR<A^8W=ssShYraa
zgvjjHjeR_RV_fe&JM>R+qOS&n8p*LXiFQWB;8`eyl=kr1_cNjugYgIuyzX6!LKi3*
zZ9DDCbWO0@1Bx3Z%vhF|zErGAeNIs|=Wd0<5K4$ZW9%nchcfPP!ND-*F#?PTP+4lI
z(8X3uK2?W>zIjPTLMy0@6kQ4;q8#XZZ9(n${f2Lf-MD4}`APM}L#IWFJFBzN$A3Sj
zG?<hHi+PXqXTIJk&=YDqbruQ|ggz#K?&hLK!SXAABZ?cA{4oz~Lz@1v`&xi3Jcb>x
z{DSYsYublF!NjvAPixFu1uLbhxX6~PnjspzeA$}pa{Zs@jN|;rgqe2Xl&?v=zebYA
zw+%EK`4EXCTMdVGX<sDJ)P&&=J?<v4KhbPLBhmvjnl$dgy7qv)mhG%5MLMKzSzeC%
zqQ+h*_s=n(bS(jmwC3mVdUOA4^lX{;SG@a(bQ2y?AMt;!p(xv%rog>2A+p}`X=PjM
zTATg<jr%lR>AmFz9zUFdZm`k<|3M{PvcQ{R^jFIM%9GjX?3MvmW=ZD*Z{WAuC&*qG
ziu_5he}7ngWv9%)*sGY=o!*CPS&Y8yqCoPD?ry*FSVyAZazD)!-b+&TYkLt<WV|RI
z#EItv<a<z?M3IPF$UDTANfKQ_n0^4>_Exz`@s$C_7;kJcOKw1Dn7<V}B~=t#Db6no
z+38ZlieJ0oVG7q%eFfM2h4mgsO>2BYWtH01RQgI>oJikThTDNUln3$wX-e$~9njjG
z!%Fuhnm(kdQn)^@aJj;)Cy;P-nGWmAUOWu{-{+xGBs)YS!6itqm-?8&hDlu6*#(Kq
zU|Jc!IOAkbE>oR2VL`f=4nB@X`kxQMid67VV6^TuJ#6p>6t8Ud^tDzYYc>5Q*5?-4
zjmPQv!IFW@$JQwNB{Ae9IKuZS!iMh~umnanVg<+TKmUkFPN^53YRnb-M|;4*0X_D1
zTK+^5na(yqkwHxI_!esr@0E?{C^%@ZGLwU%Sl7<0gydL<qVcek7Vq?dpt;?=Bl59`
z_JzDqm_EN~rXdzEo>U`Kn!BX9WGA%FM8{Oa)?j{x1eGa$*Gdl_({^>e9=k>$9=(d>
zlZs%0PG{yH?oH`&9JH2&X6$83ZD1EPf~bvmM=7^-@Zi(}!I9TZZ9XL?%sBCR4USuj
z&^*638sYKvINk2ly-hmWFn_~b&N*kz4ozByLUXpXc#Cg#yRJ<@k%CSH(lu}_tBZs!
zq|uOs15NRJ%$uGMO()mYOGlQs4ihzU6Rv2JxG;QS5y~~J4z`hy&$&!oUFh2IQ5AlN
zEWs+3z>FYY_ga^T4xJX|&PqqlPK(-$tG|PrT)Mg7=(+z<r1*2BjX+_fE@i5(##rup
z@294?%=e@m=}o*zLxx2?s-wAnbxRTF9%=tNydSx&Y!5F8|GH$RjChVPW23-hgQMo=
z`yg#Jr%W<-EenREjYZDZaqxm$l-JbYi${^Ks5dep?=_ah?@-9JxNj}C8fI>k-0)~2
z<SB$7gNS`k@mW=SF5HYMycYX{`nb^R4T;9aJg6Y%^GlgUj-dN{l0y%i*2}QB%*9pJ
z+63}QiuHP@+S@YoNs$dI+fj-3Qz4@`@rPsFr-Oza%Ca-~Nvqr}9O`KojSX^H1`jT<
zq%ipk65&o@nMEYCQc~zFyqD9|v+a87WvyONVqJ+UPn;?FP9Tx%gb|tCRXy&E?N1aD
z374dA!Vpj*N{T3Peg2Dy#E!|yGPfWsTSn;fU7UX{l@;rFZg_qFD$0L!fvS{3bzmvH
z#{d#7EIT1c4D}v}KlD><atmlb!wA<7?rWc6GmW;m;mir!&w=TopPqqeJ2DldhoZSd
z<MR@JAIl~~w$HqI?{Q*U2sMpFQy)JO4)weK0I5S`oZ%mL0&?fsl|<i=udg$r&Wz{I
zN&tG+7Eb1ns1^cNZE^=cnXqOS{b~~W3BDP`G@tAL9Lk}XsLp;9z#BokNgIx~aiPWr
zHD`evwdd3XPuC10iOZ7kiE?nlhVaV*4I|zZLz6Y&2ZMkd-gI)86^jg-ETIe3GVc}q
z4C2n^RZb3^Z_mp=qv}7iRm<+k5!+VDfNIKC+Hn^rR6XTsxjUOms+3`He^v4s5uLi%
zN{3MdE7{}JH>~PbAMo)%<Sj!-t>rQB<7UyIqj`(yd`jFhLd(jc)1J+tO{=T!4K6MM
zxQ%LEle#<mQtfJn&h4%mZY~9s^VSTO#7oV-f3{{78PdR4*v!a5<h6#>h<CatG9doo
zn0BDt+!VG8E7aBGxe?K`>ah~86E)THzf<@a7hK_QUFp#Uz^rB80Xbxqs_0sXGpt>1
z8W=^RD!yJFNikpSo*uozmMEUKbOzR+_-HbwWq9MG3bxBtCW}c{5z)r}nL8JEzYF8a
z`OXZFF94-hvMJ_8OVb;MrjY^ODI0X<GMMG=I%bKqte&Tp7_1BlR*37zv_in<hx08v
zIQV}#l@2qcyx*_l!)Jv7+Vo_54>RWa#gea2<5MYQGFNEHsnU%~>C{R_UqRW~xKQbn
z`ZBOnOxIFJUVI$Y&-Tp^!x*3Y6*QZ_vB?&oko$f@TTvbcgPS&0`*89Jp+%R^p-|~w
zorc-M4t%SU#9jm0UED?90ZwEs+iR_jzllPWj8GXf>54Fs(meYDX6QDB-=V7y>gZ?e
z&pQj8*H)5gS~(fz$aVXYt=TElvoaPy9UaRb?3iRoNrOKVofdKVEE*>6p{+}$7aNZ_
zgNw>EGAqMWGSPXkDGT<A+5N~199aemM-61CBbMq5;-<Kh+KZNGt3J62_aK`lS-^Cf
zj@6TX4^k!4_2QLzJ9*ua2|`LZ{X&&U2W69dmZV_tL?hhjxTH(qUQ9}9zm~kQQhU4A
zAQG{0d7rvXTUntHbU>0qQFuX`G}I6mq9G!VydldN_%CU0+l%x5h2n+``4u;yT4R9Z
z3sZm%yn!Vz?SBPwLEw$3`y7t@%sMA{2}irOrJR3G5*GxOY}*C)cbFVAmBTnhuj(@;
z0_a&yHz5KD_Y0hjdB-RbBHN2nlrnl3OGjfe3u_msAIoYiw~Hd^t&M$~lo_`6+*`iu
zG@W|kIN!XAtC)1-YmvYav@xxTTXtepf-u=hfS*buX8?`P&KLc%$T*ovS1|?q%+m5#
zT*wUVfu;a$ekAguh+q=-rX5B|{DDrlC`yI$<E?2$sm212ou}3rMU2kj2-w0EAZaPq
zkZ2!mVqK6t=1l#J2Wy!GDufH3GD5=gGGyKk!&HwZp#_^B*wZb)k)(^h=1go)jv;lv
zX`JVVRsPO|iZGjz%(_?Ns~asR_NO8nO|zIvqZZ#_Gjv8&<=|5)Sbb|3I9~w43UrV)
z=X_4DzJ*zD;O|c0X5WvFMr#Q=l6h}7k%629X7<GzkuwLO5=pN2qrVUPEnNfmk?iCH
zk$rqKkOK!@1(AU(^XkkSXVqan+I`1`Q_S$(sls#VV+sNbHJ4Qo4gWWvfcJlc1O=;I
zxQF%?mMc@YbUXp3o)wc`jn3|a$pLjL>TH$*tpSeF_1wMkk*)Z9ChAakIyJ~`e6ShG
zJpwS@wL@*=$Co<mP9)ClG6#`VhH^&WXp(5%i9f)kRtC<t*Vb&w2Ld}Z5r^C$MfxcU
zP7A*bFNlKYt*leyZkEOFALF7-&sI}V9c)G=rxQ5w>T4jhsg^AtuY*`v#PyapGeX2%
zn`z6$4<%}x<OKQxGEiXBuO&FGI!IRxr33|NVF1b)T1eYShj8Cjn#dkn$e|kKtCI<p
z1+?{gBLP3Jb^6aM#gz)_vY*C|8c#D7>J0~x%ZI7nx}wal_c9U*ulZ6IygaFi>{%Gp
zES@Vq)*$I?<V2tlB>F$`_AFw<<lq;gf{3lmd58)Hawj$z9$1He;@LMl?-G;hMphR|
zjdZ0CMK%o?lva&#Qv`3jfsoLX{+%(OZHx9cZ(*#EFTGmd?+aV7;&e{YSORMbv-fI2
zQwsh=EmJy1FAk<R`~-;?{2UfRGK#qtT~~)Ir4eKoOH@TlrqibxFMvLEd;LjeecE(Z
zu_&I;znCtbi1G+W;((6N-$K>;JBiBYJ2Hp)LenIoDe6(C)H~rEF^oOs)cV$1T$bU0
z_abqv?1f)uS^!c-*5p=wD`*D@mS)2<^|p-e-Me61Ox*{vpdoP%0N&=u6fXwj)ec9`
zLlg=)wm%FNCW%Qo>Ix91k0?yrGA>+52}vX=cWys#&Ufnnk=@Bh07pM9Co2~tyZz;3
z?^NI8>coim@%%opx4Ub_@bPHpYxnhjwp&?B%@&t?Djx5qi1hW!9ilGjQg-oPj>tr7
zZ0&Delxlr$NNIVwbf#E##qi@@vLUb00(JjTAw*8WNdroK5~K2g2OdWULa22F_p~wM
zdjfzxH(wAI?yaI!D#Jvd28@lrFT9k35=<(CQXWmnDwF~Swufm7P<Zk}ztolyXNw>D
z6`T72Yud|bgArt$J6{y{sAisTqKf2iKlEWF9ihc%FX=b#4x1a$YNd_NilT2vkhjcl
zn^-vn2+UAcD{^822;DuOQa5@hcA^<HEm|r8rUvVSs3sG0`?WVt5#%k_rNLHshqF85
zT$}_3il{j`&%lGO6|um6`81jS<1*cKHUyy3)v=p*2@$Eritc_*D#pTwWoc9K3R)7@
z(>xk;SZzC3wqA38ZS3a1>(5TuM2)yEnynkPYRv{Mb~zR6r3vQ7c6?EnhwOUP$6YL0
zUp4OZSDBHVC;5=(WB+qt<Lxvp@*kksi7#2(@+ALKzTPRATZ)f9GOY~F7l$yP@9Kpx
zcG7<QCY5I#@jmDe2YP;nzifa{D*rc`2SdQMJ*;C+q;O$g8Z%B+OB^%r8@x&<$XQ2Q
z7|GD9QBOz2le9D^LLt^Fi+MX64LRmS#u<L-nj}j^8u%ZG_?tmo9Y;?K<iZ*LeZMO9
ze;*wDRClOyMp@f47Lg6uviF%g@ZvO?in;$LGRNF|P(=PXDH@m-9B~KDB>i!6R5+^e
z&u-FC6{&Nf{{IhVAuX{4JAitB7#bEWi}`8YwSepe&lzCMc|U!1#*)(3QWD%PDdInW
zJa)Ug_05+)-9P<%>1EgHYR53i-U(Ydh5w$TvUy%FvSICfjNPNArStu^n%k|8XzG{F
z@@SfuBqp5ms-}U=Bt~hye)WQxpXvI@yY47n?2AdcydSO9>eaVRW`0n(B;orwJ@wT8
zn4g`naimVG^lWOoeYLPiD00SN8O7kIv4}pZuoO_TLLU8rw^=`kt#^2s%(`POqBo$L
zXi|;75%;3eL}=plx5-v=KH!3l>^^9#BAPOz!8Aij)iw`)9LTgzMpD-v)>@g2-?dgF
zyi@I5Ht9XgbWef;y!TgZakWsd*>2yrT@^~d1)aK?6u4p|K^1jads6!z>i9LH0!}xE
z5SVQ;6qMe@lJ$1t(Rv9+UAL*kan;?V@^_syI(5Y6Ys}Xf-;0ZrJy?6~c2<hk$<eZV
zo3pM>?tg@0=~dT%bmEObJ%_6SkH~}vNoDz0M+E@|r}W?E!upG!y|*RpA|@QzDg2a~
zdl$c>$9K)+g?t1all+!BQ0y>GI#jh-3#{1jeMtH3F+<xT2WUnNY>3M@>7#vQf_DTZ
z?SDi$Bsl`p`=f^}ScW|nm|y;cs{Bs`VE4>;DhBs>m%Y?}^Oy7bPx#xb;a<{``^bRB
zH&e8tJLM@1UC3`?B{LDQ^uv%8lCH2P{Wp5YO?P66l6JG~p1^^n!5HU0;?&7wLV3<S
zuV%8d5=r_$3Nhjx+6JZSH<-AEm-9b5F<Qm5(O8per73v=J@!1!P`;{oL!na{%JY}y
zkLw-+15VnhO{fOcX(AZZZ*X-cR1pGg={|#iCW;TN1uL9gvX>`y`yi5zqqh>zQix{3
zf~^<)cUvoy%;sTyg38PziK?3^T1>>2tK=<SqC+hskJA?ZhMC$Kvt!W;qG|VNZ<9*<
z(!&wDcF2YBti(Mh&a7v{MD+lzhJ&8{DQac;tN!}-y9|R}#g~^ZiPF=PM}hDS=mF>`
z5wTVW@acgt`RBD~FhRb3S6}aYSjHwp`B-_sEv)_sha{uPc>-->t&072vIbdX_dA==
z7xh_F0ZyA@p4|CmzfGjOq*0km`v>9^E{ojx?;?J*)NGbPm~7zMD&lK6UP>NbLjZ*E
z7|ZoN$S1j}Hh7pO1u;3E(7?};`vf~X__>d$h7ZFl*8N<@!;Fn<Y9wMl5@LPt(Dxk!
z*vh3HY)`yD#lcdL1E2%~*M#-&FtwH~wjZ;gsy7lligxne$p6*6#a@h%qFr}!aP&vt
zYz@B+E!7I2?~xGijUMaKBBv&-D+ZD{R(9l~-Pc3{G+p;ZNf&h8mFN3X>$kD3m@jm2
zb*jUXBpCw@kzG5}bTJ6ekRxW`k*3vCl{i(*c%3}lzvxush7w|1Lw8qW`}3u(hFx=R
z|2pVVMD*GQu3&~j1|HlG-0#qb1hNnGt;u1YkoUmF&~M}6pK&hqxX2Ss^>@!wKO3RB
zGpDTPA9cSx2MDV%usFRR{<f=Qr*Z16PS4^KX{*--ybd@ubTfDHD*$brt6Ln3tBole
zS67SWtd|pYI735qD>gDf^dQ8{Y^Zp%bL?=fa_v~Ey-)o;eDSjLnr&pO;pV`Cd!9y=
zi`iiHxl2b_-@X_imOQHB|M)Nk9KN{K`gWhbEDS9-yWr$ixmb^>FWi|ng#USddWJMJ
zn_}?KD{1L13g4WOjYXKDf0B!tc}9q}tV!U$l-v3onw~0lY&hGr`UVmIzlRQmD{X6D
zSyI)XpCZr;^ylUUrTi8g8;uZD&|gK<+!F2!^9csNcGX!4sk_^uXVE@-)u9C-<ZSw4
zo2y?8U6e}JNx2cX#>jBykL721Q2UuSH62^)!Y8U?p+{bW3#-#*xeqUD7S$FN;1}!E
zC?rabfwYtGWMER(Xx`X-4Yc_fqGMzb%TWu~V;E>fUS}LUei;+}sqD`C!PnzBw3b8W
zCn7QjnNy9X#u-kP9r50_)yDs|=u(BDz8rCsXM$+#c80dhr;GHc)$KVn$EU{E*cWms
zhR-#|VXh^VvcbYDTH7R6pKOZ#p8}k!rCpbN7=zj?o@8p)*$FuaV;9Nj12^;y+Yk3;
z&5>_!=<R%3SdxXx45`N=9iNk2(8_+M8h|L!lPjq*fZn%?Cz`F!$G1CeOv>cy-pc0y
z6%IQl-N_^>d9%szk|T#%@!^R~g`_Q?Rsc;-C@WPj=fB={H_OBjL=JT_09#<b<m=lo
z<BYKPz7Z)fu~GFKQ(RL;4v#Z{YPs~nnfTLUuns_#tDHtPT@E(Am-pRD0~_+zLd*eX
zwmWQEtc_s<Kegl(WZv<lY>@YL;^oMh>q*EZ-}8ybB%aUD7zy*mi9mqCz$FdmUza<F
zJGZ&VD%YJiz|r{SRq;-^j$;Rj{B>G%-hI-hD#M_ydVd1Quw{sS1tl(oA{*CfKcdOI
z-4p-rl@y{68`#u3d4tu(xHsr&6Nr2~*bjuQ1b9AJ;5FHI%&cZ!)=6L#e{)hl87#!c
zCXF0dnW*6yBu)1deLo*Hs#GooLV`*Vl)pJ&gQhH&kz?(^ZL0f*9Mw5l0!!2467JA+
zY;e^Wx+>%Z_l|rpMgZqqm#T2%Dvzs)q7MQm%4Y{;xQ8Pf&g;Qr*T(Eyxq&cUr5=p}
zo=-cGZRv?etGY;(*T)sirJ1dBP2;NdNY&dn0Kyn^(97DS;9u2^h%w71xhlRB_w4dD
zUz1QfK|klQgWm|Beb=IO0mGCbFlmdUO`>OAq!Ul8n=_}`9=d=5En2%y;FO4+p}BML
zy$hEu-jm3T`6x079cd*^=lc4rt-=#C9t~2W4zv&$x2J+7AWNniq)M4mS=1lTOmL@z
zGxC%5N^`V)%hDUPU24kiV(94#pPL6HxhX6Ghl%?^RXfX5D14oJi`w^hB}#O5m46G8
z7$Js2p%r$N3+?e1rNz@+%R4zF?9fj3;_&!A9MqYnw5s>eRWWo26n>eDmat6xwyU4)
zcXRobwxEw4e0ynyLH>5J;K`|RY=E)>%wz2!Hn7I+E6|=5^B9Sx6yqw=Ai}tvgQUW-
zXWPgb+|a0dFZ;_O=+9_Raa@1kU04v!hZmFYRE}YF4)pCpBUvXIT?Y0oIVvN=^h<Rt
z*Iru=I3mwp)K?=Mfmd&=kEG@F?<r{S!B-ZpAMc#1x^LX!zag6K3sv*z**o7NW-eHX
z&HB%}!erw19Fxh_d1T0ZJOvvv$3od^WAK%}R5)%OE!InZrG?&)#d}ql1_XCU9ltQ7
zxv=&bl;Q<H2FgwnjOr}eSzo7E!fiS4ff%rbpLU$7G#mfIFFFlb>Hwi{Ofcs<sj+Go
zAz+0JJ&1U5m3Av8Ycy<<5p+!lzh=?XNnq5eplof;O4()1JipLBN8}ulA>ZSc6$h;s
z2dYr-7RRF6iCw=J*(Io5l?idGl5L5zs^?#DbZB73fLQZN%Rso)q|~a*q#GSy5m%X1
z2!iC$a(9(#pn)qDyAeuuoYwWP+(!p<2xPTp$V8?6;q%wy(rQ=KdSBaTR-_WAcCg~{
z?I*Cr;7Qy>@kM#~nHGVOIHq|wCv*emVTvi+E<{1w0pyB}!C4j=GHQI{DEga*#ZAi6
z9QuWNA5qkWA;BOhX^p$TU*1n%>YrZ%r-oByE>l!)!(%Ds$sd3I<nPd-l=32+7QAi`
zkgF0T3B@?OozfxGc|vf}35q|c#rS0&$ALEqfM*P$vNTsLDyE8XpjwDGB~}x}k-0l!
zI+4)uPEXCtmiwhF*OL7?L@wSB>g=1c^k_g+qXGNN&Ja~xt?${n3k}G>l_^ghB|B9@
zhV5cQY5!_v!#cxsg>h3c&U~=p9R<}q$n*faMD^o4hQd=CZY9aqdO0iD-a%O`FXLla
z_OdSgp8Jt+Pp8e*m9;pThZOjwH7N+^f2`2dq{5g^x8DfeHU~mty1X~@;M@vT;aK>$
z^y6&ADNOaX79TinE4PZ0Z`cJ8qNR;y8)Yn1-XKaXoJQrN24C7<xL_<x&Q2~>N|3bh
z%t5E7jiG%Ke#wy(6N_+Lg~>(0<+~JSFdqOwKI=@5@?aySi870uk51ws*-jJviVBJX
zBRn`2D<>WyP)aC`LIz-!eX|-77s+w9e84^7i^|v8#8{k<s#l9aM>zS$)#s#_YjbVd
z)$=CL^N}}-UUsOaT+OzO6v=n&t;fYIj;1)OQ9ZW4R_$jlX!K*8c?S1QCB>ToflXAU
zbeii3=4l3+xKMBXSkzzSO$U;mHB)~GPPnye`9z`KNL=1cQ%!R_R#aY4>-@Bc^>xSc
z8Wjv-O|Gr->)D9*lG|GkrtdW}%CFNuVeuxFFC>Ss-PK6~o7N-i%&4<%E{Oh~e^{94
zC(lbT^5j4xxZu4;C9%%g!8piQY*F!r)A`<(U=|*Y3siYwMbsvf&vWx>X;-pK@UOw%
z$pO!LjR?f~j)^HG#tXiDU*Ux`Et%I2oPx&A<ArnzZvqs`&JhF}&%K#X17t107G5N~
zV#9^8dZys}OZi*LJ_TeHU8Xot7<EM9Cb{i8j7=;_p}CL6xJRwvzHfK0@Vu!$0FJRI
zGDp6Nv?S{4*7`?ltuPU5I!yNuK2{?q&aCO*41NGt&a8a^*L%TqPWyLQ_e-B+b?4@z
zYytP$6~dP&ORf%BD*1gahm(Lu)!yFs&x{z<A)<uc*W(H;AH0d;KCHvWRy*{;Zm`pZ
zjlp$e8vM8-1QFV5vjPRKzVFn*UoH<H*#?FcVOfz5iBD}FWnAQx8pXGOPN~nFWT(g@
z4Xhd2Lx?caz9SETuPzmn@wAXS0-f^%3t(t9!uP;{ms%BW0OXGEhK-UG$nqvY!FG}M
z`?hE2)d9daR6-Y!Ki&Hz-tt1oCb$A#(<~T)Yh%GMMy>l9(0OngZ5&6&7=5HQ?Nx#$
z<%pr;rbz?~4h)+RTEgbdFQ+;mUR9h7iB15a=U$d0cf2i`fI)3mjFWi8N{^f()<}*P
zG1K`IV3VS%3EVC(cDkY`p;PZVl`&l;*~D*+eXARcY_iSHLS97)Fe__DDBEHg`QlmS
ze9EwkVkMKY@-{u+a`p&ECmCAXhYvy>lL%x)y;1kPO8&%fabjIG!X$Q38Hjt?f|6RP
zE>Nz`MK}S=YrYa-dqSURVygnyiy^NaZ%OWPQneXDPj10G138MX%`Y!Q=YF<z;K7-7
zGhEn?*C+z1t@fppa^u7Q-QmSj?$^17R1JKUqbw9S68^EFVHr-v!3idzMhDXC10l7^
z2Js5G=UY_+^lg&i1IOHWYbQng#D`vhSXg7^I_IT1*=CJ4scPz1T|%JZF0h1P>93l1
zq84<+;GHlZ9-$GQPa}w!e!Ftc#e*gi$t9gBd?~7u6ykDE^yz52<^6vEW<Z(0tlNek
zlQ4E{g8I7Y7RcwTH=y)@Tt5H4e)00nk65~M!qa0BIe(Sh(6~`thW$!0Fx15IL*JsB
z^;lpwUlwLqzqi8lzu9La{l5_Cv+&b(ra$<sv;U0-`vv`fFzWWd=>MPM(;$wl-EO<p
z{bLn6_7Qfwa_rb681KAe{!iWW!F=<*uG7)Ld{?8VSE}i16L9?oq+yq~S^eW5RqAFO
zfcEp7o&QGnKa9Dc&)Tyroiw`n;<M)d4?CUW{qGO<hhOghr}z}^zdYe@_yH>tptSF&
zOk51W`4?ZgS-pG)0N|@$1OhDpDoW$gd(<XCzbL0xJ35}eYjnO+t5o9A`I)2%%=^}7
zq!rWrF3E1fc;?+4FfUB@Zo93b!PE877LHkbz#!K&_nVCbPg=$({085=7{;<671EO+
z+-G8&++^F@XrO(c%$>5fcEDPHOAR`URY==i%>$_LQJ#g1%jI+$-jmk<6}Q|Lsrpg<
zI8Jh0!2o^nqG~4irRwR_SjbdBhQoG;$C>Crgko{gufOVg-Gg<-MZXDiR9|$95D6TG
zNmQ(GVn=$^sWA98S;OF^Ke?fCPz)9S$Qw?G4PGF;q*tYQ8H*a~*oZXAP=H&!TwF_Y
zkwy1#kcSR4xps{Dwr(^8v3>}rqL?is6+Tw6+4F=M6YWRtEDl$B$^m2AUomK#@IS=T
z;FW?vHqUdNw2=Dw+$!9a>Z*CJQMdq8?&!_mxdJ~+)qCm*)bg`+wn!tops~2Hmnofu
z({R$VL0gBbBV=sU(pXcEVtTd~s%?UD7CxXbr$4|E)$L>LWhp%Spi6@Va)+JIqToRg
za&+*ci=|zd&cpTSdNoEo7uY<K8=ptc(r3kIZH2-N)W$}Y-&DW&^7*_!57GZNQ2pSu
zM*rLI4~y|%z2RX0i~jd1K5k<3Fx~HQ^*#CG#nr3J(x_QJW$xh++{@-87hC&PDV>Vx
zZ?E5gozk9y>*|Xp`afC|t<^#wT?5@%`}`D|=kKF+K0xFAqHTU6ZS#|Bn!mjY<7LS*
zr`d)&<{w|bBz9I|X@N4m`T}<6<tp`AAqAy+M-jRH-+NmtM3}-3yBqg%daIWYQj(%t
zrA@JN{<bqZqxWz8d@?7k|J!@MoiO(ANt(7N^xr>DvK{aF)0R8(wOA;BXQ%0b^6C9C
zPEyODO;6J_gBEn4>f}Ds9P>NUu}@-%A-@wfdHlsa;7)&>73w#zKsB{KHM2b7-WCve
zD^&p%aezcP`}Z2Lw6Hs03|#9!8`*zk1+UGbf7aT6dZSYQ&!FG^;{X37pZZYA4U4}0
zW>G@A!rLDxvrnxQHBx#({tfRv`Sad&81J#UsCM-F-8Uaj&Mv-s+SPx)J$iHc)zcpQ
zeSUWGl`Km|e(=MbOp}a6$&3VHM)HL31NDW7aW@YmO8!ayOxgi?`ilhoEBV)dkwBGY
zWD%t)5kmz@Oa<r(e%?&${NnW0+26l<x=knZL_Wdi_AB`}VKgAm*d9lcr+a&|XFF<=
zufjMW`JBQe^8|K4Lwt4i`t+-(+Yuw}Zce;C0aJ|gD~CmTU+)F<b}wE=(N1aI3hXqD
zsI}zw&!i<_@ezJ)Rj&C#)37%SHly`gPJ^IfNywnv&FarBHT7?x)Kn5sDdfY~XK&w~
zoPIbvky8jU483SE%#|NTVLZc6h%__4t)%_R8vZ{u#ytJA0`odaQoeWemIA&o3YI~i
z#PkmK^3G>ul2JdW0ou|$TT--zPss6{PHxIeA>{4p4<8yVh{HIWS^)U9jAu01CHXvL
zWI_Fy=_zGN&Zh)AO-yM3bI<)Oms8hhMfh_5$&X*n;@1}W^H=-}JT-w6`J9>xST|u5
zk@g{Z`pfy*$*=gx^&@&=C1|Eo?-O$Ao>$!=p@R~COvB0>`rE}nZ^ZxOSs359i<L3g
zN&##5f4AEk7W4lHquv+(|0zCIDTi>>Qu0RL5zWkZ3Qr>A=x-(kxY6&ADHRmU(25{o
zODz%`>)V^}N@sOH_`vMdnmgV&llAvT>Mx(hp9j!?)ZwQ|^@j%aUwXy(@8SOFOZ}Hm
z@~Nl)dBkw~nw#X?-_G+qWoy}itP~-t8r&?eX%^F*f+r`BD%`;v@CbyWe?<21%P&<C
z1~VFq#yKLyz&7JOL`r<f{cj@k;m<nxuQTWu^FO-%FZchGe45CApMlW##})MCM%IaV
z3qOqOWjp=EM+tQt$`@(w%LjiRK>q`pM#*YH<8^YM`qb0^Ubj0a#(xg_qc8EFpXB2t
zNWX9NCuSvnnzB93PmoVgOq74kiPZ+|MZ9P;nLie1A$Co&(x$}j+C}0=EB>(HzqOvI
zWek?bS-gg*!rG|Aa>w4{AR>(Lms0;5bnLCm+|TKB8C_D<mb>Vp-v9#&3k;_urp{4M
ze7Z<tGiFAiI|p+dg#76^S;jdjmT_iQZ)Qh7<_&u=uSJ<=NJI2^a$<#g(biEaGd8p-
zVao+l5UgS#qRJ0>>Z!Wr-b<fRh`VSNm5P>-O4!`*4M%Lbz%deqaf(K&O~-T_xhls;
z@i;ehwM(Af@(sjfO&a2g=&xRf_n^!f|F?L%SZ%o+2ND&!bZ^|7ds7P4996`p5k*^z
zqK`za4oVlTraZX-ktV?<oh-93UmYiLPVXIEl$ia%3xJd?!lJ@dhDBNuSPMt4#A`d1
zGpnfE8j@Ci*gDUgW{WTel>8?1C-j_VAxt!h0~g_{eZCO?j3Ngh6!3f*MXJ1Cp&(M}
zcXjN}RQ|%ltq1jMl&6w~2^>kezI^E?$99xoUw><z^T?AliIUmsGR>$T949f$Ge3-T
ztGRu}BQL6|bglut<7|xYm~j|~ImcN)jA@4GjdLX`Bn!Vn*0tcQeib^cI1ku4Rn=&u
z#b~}vTlzu3nd&lBGn$|AC(hz&@^S_1X_4(HWI6Fj%U*xW3S-sCc%DSzWK~Eo!0*X;
z*i=7Ti4qg_&RXKrg#1)Nt0zC*P7Oi;7g+c>4zf+2$;g#w_`CK5|M@ivh0GSDolS2Y
zcM27>TyUZ#qcHcPgynykCd)YZF9c_C6NDLQryBv9vHwE6r_{7SEV&fJXq~2htzy$u
zSC%(?WGkdr&&5ShoO3P_6{16lg}h=lz?+n=YP;Ob!_BZi>Y4z^=C?!4p!!l&(U(WP
z9Q81pUy-`Vd$-{f?vL|I0q$9(Qq2+`D0V1bJB>8SB$KF^4A-w~MJfDPQJyM}_Jo|A
zo?o0EA6=cjdrRKFyE=VAuI7|XlPF5=!Weq#<q27E9^{8HVat@y5MsDM@?|8=DCv5A
zuS@(mK#=dkC?eOCOd{&XG$6~Agfa067ke^tD@+6R+dt3qbnO}Ohg|s7Hg`)0a68@%
zV`R5*+*$t6I=qplTeO|0CmYNIPvP6blC3NR_29;M4BotEPd$7qS);vVpLjD_<wPE`
zotCuD<`3H}{^Gi=$|q@?vH7~GIV?C)IHi--B(ivg{<6Ywvz9JZ@kh+qq<2Ss5bNBd
z`9x^zd&ZH19%ajG@u1^Zdkja|kYl`7bNK=+2EksdV!T4PTJksoL8I$ONNG-tMc66M
zK6>?xMXd*N#qSYDY@{>b7mNJyz>S7zE06?O#R0LjSBc-HRY6SZGCj|dYe)BDLh$b|
z-2OcaM7e(Z!(<Sy2!=6bta4`d6BTnSfO)LhMd2;2ot*VR#oTNl8&3^f6b7wJmb@zL
zFBt?2v#M%?FN=C-G>!ZTC9MxFXljSP@x(WeBCJ2%T&I1yu~O?)60HbmKbu*E|5^K$
zr9ARsON!ebY}K#7KHG?otf9G29cNfU7oIv#^rD_VY(@qz!+=iw?1A=^(%T!EP|CJD
zsVOD_y_AlLqV>-D%{A3Bh$4}$GTT)MB>r^D@epB~`ldn{sj{Y4z|WJ2W<^6i`f|fj
z6pl8toe5_45C-^AYnemVay0+1RcGbXF1fQLI@G*V%ycfm**q?&(aI|&z|t<%?13v5
zeuM3(fBo_HrDCmXcF3ZiZcDnO12Q&3xVm{_i`#^MQDtVYYM6|Y{p;?C)wa8KPw67f
zS0`cig8Z_X0lz}gT`OhVov+=#0UT;;BS4``cBA*)sPvG2+pdV(${qU>JoX3sJRtrn
z4X!t<0Jtvxx3}Lb*8kfded+)BNj{C@zrragRO<TcZP)8{*H!95?G|uQR|-1B+WK+&
zv2xkC^CUP4S+-2Moc3}V%r@&f`FqEJHI1(L_*gL&`mi?IsCmH0<HjW|!uaUc4<n9n
zj-m0-<bf#;Up_UThtU7qO`3l+p#Q^i|Bud>{@<VG^Gmr-W3{Be?Pe1@D1OV4L{cf&
z?;wKiQXGm&C4V3a|MB%h73CJ)ci$v|vMaRfH7E1D?LR04KxFi%C1u8x#zZ^OHEJ0P
zf40D`)e$9FEAUET3jGOeoy}iXU2Y3szaXvFmaXqN9;shfd77<?hN<p<{@&O4!Jh}v
ze>Ta&G-u880N2p}es8~6|6wrdf2sfQNj|@E-k!vjKURW;TClJSW;9CtfM(A6P4L%~
zCr`vb$Pt;-D5V(@>n3?ZmW+}xPV#WNf(kYQoG`c%-Sm#XyiAjr=-O&~j78F3!(^Ep
z=7}fe^OvhQNm<BV5D0^W(nt!dh&#FsefU-e+~}G~Pl(TCsE$05C&iTjAo&|V1Z;oS
z+h7~N^iiu{N|x0pWt(Q}mtR`s*Iygp6o2^FUt2ER!jPq<kTbv+q%$0LoNJJNq{a)u
zAqlsBwwI*&-jCBPnaSV;`OaQpuw(2SQ=?e8Bfo1;tUv#44gQ4OL1ETuk{SF^IAJ}x
z$2e?_ZnaY_VK+XGCVo)<cw3x^42F0S%i2b2J_zC(TPgxpx%NC_@<x1Ki)SpVTR9gI
zs+K42YkNkX1&~)nlIirngwr#el7Ie_w4U}`<g5QhI8FMHFH-Waf06(EPpEd)ZIQ1?
zD{hg0!SkrF)f3_qwpv7Cd_(5GA|C+>W0J&_BvYUYu(34Ygdm_9)9*%{;@r|KoUY(G
zM5OeDbJG4vegn0)p8g-CO@AUCITvD=*?J;jkdSd&6b8FukSbb;2KtG#)pPPESte^5
zZvAnkuFvQ55cyBA(&jdRHS*u6(<{|~7!AM3f1l*D*8W>jz6DU=kED@*I-9FINK9Uu
z#<{U;-(HhDTNSJ(A%*EHe-TD29M5Ba=ZZhAdHEMdLk*}b56;$lKp|y2cm^S5FI>qP
zRWGA({efdPxhf~`hQohG=T^!#ww`OfPW<4dANlcwW-T>X^*%@F@w0PTwA=o&W@?4E
z)o6D4@5-@NX8l#>Pp9DopO*8dnu*kas<w?Z+LTMMN?m|BM@qYce_ek)D&bb%6_hto
zGv9^@6t2gM6`IVzkC{Tzktr0-lPA`sO*BlHXp0626&Vs%Wd}()b3dEWeAB#&+S7@X
zz^bON{;omi;wyz%hBQm^WRgTL$kp-r7AdB5lt^7g=0WA|;Elm~8?~ELmF%(UWb1M~
zs^S7|UCq6xj77<G3IhFl++a@RsB}g+#&9?q%1^yYvI&J`j-8K3Kpal97K)wIQXQ7~
znP4^hEzp`h2(Q_L=i4;hrg8!B<fcTcDk-OG`X)iArXI*<qHsgecCFO<C1mS=+-D>G
zKg*|V^YUM7^#4Jpw?8QQe|r7?7ybWJd<t~aY8h5vjO#?>f!hpF-K_P~D*nG^!7W%?
zMZGQf4PBPHS~eBWHm|`|1n_7jxGD-<!Fa{`R)nxT^K&{|iDMOdck3dFqA;GlPXj-v
zt<S0Sm34d%sC<RY94^6Q8Hdx51|mHBEM~bMMF0Q?W$T(&e5`AqshZlXc{M9c!;4Uw
z*VJMwmeU1){9z-D_uCvmgF;%x*mOM&3{q~OT+73zWy5GPvtmqp`JxqWSACYy=UvjP
za0SHYaVmNdtMt}m6^xQ_9$qqPeXa-W$>UT7s{qxoDA>cRG{LwJD$-Q>W-05eBIR0t
zrTpp7CP})IP2-qJ===@KHGN#cCTATU=l*U`q^2>lJg`bluRPttaX8vKR+KujUNUim
z1bzG9+DT33S;{CTsPxpekBd){aset*Dndnc%dX=jT@k^kfD@2BDG|fUk_R-OwEn9A
z)>W5kEtDdV!nug~@tu8lOS3EtOxUa-Z1!%!j-{kMy(N43B87?>Xf_ULTt@gCRHEEy
z+Iwi@TuUgYo4KZjcmGjGFJh5>>R~*?J$Kqu8pt$Xl4eOtvpl5i^FRkNY3L}%XPqa6
z6HtiWf*HD(;hANWrUm8HzMA?GqvfA6(Znu{%^4X`d(Tk|IQ)UAkM@+bp7OWLoz+|u
zfR1t%Pu$SeS5LRO<O;%w1iMr9IQT!ldb&OF^R>^4{XEZ-31y7$D1ZC~5pUJM^c1Fb
zD_GChUvGx6YtP9w_B1Sh8zgaQ*JQst*wz;Lions<oPk))+e9c^Y7dw=mtE2P4{k^-
za%0!y7^&R7JXucWzwu7#R(YhdG6X>q2q$>Oo9e8_Q!`bkRDgxr?TyvIorjZr9jmC7
zw$iLz<hboH&p4)fEJ{qk$Rb{{R8kg=<08Bt&(d&NBE;7kv9(qKmaY=jlrL6sw}#V1
ztg3P<t(u1_wzaH4mGITvo^x|mE1wo({wv2jA_BY$eatB4idOH7gRRsfQMt6G8Je%*
zu~Y~S>x<&hKp_7dD6B)X-KdaQ#e1bXo4rOfj>fm{jri`>hs$q|E>2HA$Ud=!T>)9*
zRhBGXlvw99q)~7|r{!PdZ(=i*T@tJ|Yj^5L|JHw(=B(-}pZ@*o;^@P7N8cZPcz1qv
z>6&f%{HlP~X`P5_DI2AyY?Mnz9lyf271K7`d~$Sk^z!KP^uznh(~Gx9Z%&(UxETI#
zbXD5)!cMv;T;c`9D%OIEl{w!RR<{yM6`vcrY6#_qt}6I4XIQR9R8Rgf?AflZXp%3a
z4cC*521RZ{YE?`#SgUe0YwqV6O=%oRgQbye3dZ6hTPAf9k3O~Fy3KdE*~M^tx$d&0
zK4W)D7L=bT{gNgupJkN&6uCJ|?R`2wy1e}1-Ngn3?BVxG&-^3ql!Ec`_ew+B{BG4R
z<jehfocpDAdF{EZzW{};EIKjT213<*%o8>9YIyh8bIQztxBSZu_~gawPr@S0lPc_W
zJ#WjRM_`ay^br17HS;gm_mS9R=CD>Yx*@JRf|s%ISxz&q!xub><sY1{p-O610IG_#
zx$fNM>GAuEv#Wo6cyn}lb$ao)(|<h1%_EOyc6$6hz}Qx$lsmvUOiSc5!RhrFE!NY%
zp{pjgv3dmlF$rS_`WC--yi$E^<p-K0?sxCb-hS3-`|+#C$W(>0B_MxjgypNLLsxgu
z3%$=X|1`c0vm{>7IRD<yLM~ESrWfTA-XTwmHWlZ*kayYPP?k|<&D_XE%g4I1>}v|M
zmti={i$B2YF4wfKH2d1(>@GNuIK#E&+1C|lcR=}w>6OvZ*{z~Mzl!xEYEyHv%q>0s
z<BZJ!Z4+~|cte_*3lDB|iv*m9-lIR7vHCZO9=WFzf{ICqE#33e6rj>L&sJ#?#(7(A
zHfq39Z!Ere_x|ei;=|Ru^LMY`ee;hGuiqUXz5Z}<`rq%*E>2G_PcObdJ3hVo$N6c6
zX}0y_6x<kV82WdwF5Z1pq4{Y&YTFLkhNZsGB55N3B8Yzx#6NGj=8GVXK3@d!&mUno
z7sLg3`AtM|nFx=k(#AdHO5zZ~uKH4Pq>^4L+m$`0Q(27lQEp|lvqish@in)6RerTv
za9Kx`3ZOq$m2p5>FN<$D#|Nl1q++5QYc(5Abz|M8YNDH}H?{M0UGzs%a-8E<$5m|J
znW*mN4f6&{J#?PPAU9$~xqVE4S#9u~-KqnBS8Bkq(V%FdW@+j}NVW6eiTP|<YsY00
zn)xBN=}#302<cZROUUQT>3bXoC`cNdVhiF-TV%(zn~xJyxNiG@8>Wr@K_BJbakz*+
zDQZGi+?2HbgSG#IwJHwVYLwG5L$zuzrVD}B#b!MqEbHNUMg?)f(d5UvI@=osQSR7+
z^2VW*&MUJfj?&Sci#R1@M}~FV0kI(ycxZ&^BdzLD=F)JfNM<W_Id<8it>>KydyR8Q
zi|zE}E}(B;IH%JvPp~3!wWg!qqYt*ez21X{{N+obl1Kb(UjJjB`kS@?Slj<&f4^Jo
z|1|1-ssH&&J}#>0FY|;={3wiPws!Q3vlrCYU)^@SUjKp3pwM7@w>`V^RLz6eH1~UU
z4JA>Q<l7_*f9A?Zbe;r9@*SF4HA<S-9x0VA`F-k-IAVodRaJDiC%)t>C|aehf389<
z{QFWd7vhdha#wL#gz-gXeGrUC=t23Wf8X#;^Pqf_=2<w=-B3i85!ISk@(bncGCW2s
zX_7AWH=?Q+mO=!m_jwqFKLd|KzxlT`^Jf(OSU+t6{rLPndgGjC6B=`5usK`Z1(d6G
z3exbfe4v=fFlfd+H>dwbsB7zD^z{s3ZU4W1k^Yam`=c-P|5JQ^M}^3itPP)eNK2CD
zsu2I4rT)Z0YvF6#Ui>?kr!G}zdA#N(zv$-mPjBdImxwH9+ylQ^a-kgamtO!5`Sn-h
zPL?1|_uiJQyki;Ue<_un{36_cy3gkHf8+B1>*#-P)GgNk>km8oU+Dj*_&BX1A65SU
zbE*6H$tbEb_)t|OUsv?6@Zg3O|2FO_u)f@1saU=>kgAoh<yKTJzx<%PSboiJIm+GF
z)XHD`Zi%%t8F-U|^wpNa1|{k1S{ArwzMW*?!D+hRJL{f)E9*tKcBFNBeOCYrin}R*
z#om8$l-d_+Td4%Iaico|1}Z8r*9IAs3osLBJi|v+UVf~yp}(KV(}4eba~dteS)63_
zVPmY}|D9pK*#D=~A9TO)|4;FGLeBl1-ySF}B~F>#&1p=omthoy@r<PY<i>~YgHOoS
zJY=d71tV-uqlnC+<XRUN+U0k`&%;|vQa_)g@BKK~dO~74lfLLQqto!727;~qdB-E~
z;%Eg8%2F{UlG2PsVNAU(@8t5sWu9bo>j^nd7K<b%-ydI+Ak5g7Hw*JU_^+7$mUsPg
zwg>-JU(9EF{6FeXb{p>*K-d1{W|@kLNL$Z6c9(8F_pbe$t><38NVlH<udOHKdp`@4
zB_n4ir)<khv*brQ$+x^Pp#GkCE=zvgdiTTI(~HZkt(>x)?fu?I+vwBa{vUsP^!A(6
z*YCdZ7QutYsJ;K)QLo=C+J8Eo-k1L0pXBp|eD^9#X5`2mI63Ax!2cW1Xq3#hj-p64
zT;xO|=QIHDM0cABlF4#G<6QI@ga`O_^0u~~JR$$=cJ{q)XW(@^{~~Sjie8iM{x0ct
zdc&>f<R}PeKw^4FF0Ni(5-D3)KU^hg5+$>h^T&5FT_gdGN<WUR9uVTka#+Y%x7EoL
zl8T=dTL)=@e?JZH$s%Mx%g8m&?<kE4%l({Am(eB7!F*O6-%+Cmckr2JNu1L-*rm5L
z&Ufi;7|?h^cYmBtk~pT5d^eZN-c7DKY~fW|q3TF_s4$*olrflw=$pue8&13Nh+OJW
zvjiygKGz^JI!P7_8uNd%@Mr#Rb(ATGCi;w<*=R`0*aNQ<T`ES+B#d!9m+0#$7rOPF
zyh#FxvVq2vfDi)F_{#WK>QOG-U8}~nThGa>@E(>c0&1>(Mgyz^!7u>M)JPX^aYSKr
zKcm5zTt~^|#!OIG2vr)bA4RBGq<$aZs$>ZgGPa~J9v2^{NwyG6(2oZp^RFX5+eD%6
z63P;e)!#}17Zn@FdS`vU+d&BIGf#+k%0Nj3`{Yy9LtfBDa!UiUjPHE7o+^*rU`CcK
zL{%*{%slliys_>jy3joj?(^H^mh?t&p9gwGIIO=f1WNvWaW9zsSsdn}A6*>1L7ou)
z#2f$K{xXCXr7PlRl=!!P7{OA*SYXu$j#VF$6wcO6>F~hJsAFby6a?0K#+8UY=G(^!
z*ERKXA|n~eKfn35-R<x1|7#mM&%D^%n}zv&dF@S-h0F(%Tr*up(H?(vXX`n+L_=O)
zz9y=1(YIGu=a)h`A&HC#<12d$7gycS?c-?4a<0nm60FtjkjP)r%p+%Uo+ZI@!V!3V
z`=ha_ASI6BI!Pkx$DrzaVtI$1QPbrec1C=8rvm$q1R1zXvKyK)!Zop(tg8xABqqY*
zA#Gj?8OgIHBG@dP#WZ-IMW^>^n5`};M|XZGsX}=S4O^x`pG~G@JWG;UMBB2T|9H3f
zP5ZVt22s@ULpumFI?2akM-GMuO?TvAc(9{af!N7)lH@GU{FG>-F1Z4kP%b~`3Hl|^
z_<?i!kbye7(i8&-pIV_SG!buwSk|Rjl~=W;VN9;W*w0pc`P94Tl$a9&jT(tKN<`Q3
z6<TmI4K;PgT*|*%r4(RFMue{9NL<NFnv!luU&%K#o6*1$IwaH4#%4Hf!U<zUMTJ`E
zs~-N0Xwcz6KtEc}NOz#2i(PwidY>kY3bqF`2LcIL8Ri`OBqAbseFN_h(~rXP1tLRx
z^>H<VkI6LhXL>%O$SSmWCV`5yCCN3{Bp7fVBT%3zNh<r@GFp*-S5FGMX~2ffDWUiN
zB8@14hR=M0L2?&!0-zo^c}apSyj7>kzYb^sGq9xxMSehc<B-0&I6u~w6f~_anpXFq
zNd5ob2C1^GB3|1seMZ}yJ;ENs83?AQq=oTd(BC`gjD?X14b*WDB+u9vi<u-*5(5G*
zIQPitEM$4c4?E-%TSomGhFHJ6;fKA(H~g@-V@aKo<jxb8v$1OPZzwp;K7i~f?lM<~
z!<gmN58w*R4VP~t_8!nQqZ5H8agy_cNT$SkT<qOAp2gw4L9`+%<x^A=B@#@JlZ?*?
zivg1Q@DXKCNg+HXvAmI6&&l)WXK&8mU0fZ#y?Xwfb2gg#8Ao0z0|Mnh_kiTdV&Ve{
z%$6|+73Pd2cQHab@yHe-&&dy*Cn=>Oo@ua3xyY7r4DB#oaE$!PL4kP!-kXI|2vK4)
zl+orqGcxJYfbv|HkSvBlzlv}gPJsHrG{B5^?8idQi7B~Wk<=H3q;uS^a~GZ*i??)%
zL@&wbG#gvL>GAEatHlz1t}lURlk+U$hnpFx-7knj2Z!p~#FXsgTLY68mS;_lM3?u4
z(BRt1GUtM{*bq?Xl%OpnVor?p4U}YC;m(R=oB{x6D3rqd_UQEO(aYDTC%`H0*}{*a
zJ@~H-30`KURY-yEjlUv2Ly(L3ctHi?8Bqu!<8cyC$AaUF-xhuti!ZHV$+nP`LEVdV
zvvX`8;m?aL0C@N@4ix>4Zu<>g!7id5+(9eccdqaPs-OpMZl9zyej|c@fb=*Yl2Jip
zG}O>Jlu+{nGG2sIa5H3u?*&vAzg{Uq?U7eWMn>K}|8d{rda-<MSL*$dKO-@v0dVkZ
zPJVzAj5&eA(-}CYBNbX8;}Qvl&~6vs9Tx~H`VDF@jPWMc6;cp8Xgy&n`i_wX<(N{G
z%w~KpP8ne=(_U|B7P2HRRu6`8wfH}FmKM(a*;rpRKbEQ`i10uwE_G%JS#W{Mc{Su7
z*v62&P<BD=f+bRxde)3d6})8_Gy&jc%lL@BXPg{XK$>j=>6<KBrt)g9d44J%t{PYV
zF75(GjAn4H_o{dObr>)2-w96B2z=ocjc0Jj#y)2}Z<F|37a$y~Tgvp+RiYwAbqY!D
z&r~aDm_~Q#jl51fpx2=vx4XS|Hngk`b2_=<D!J>T5lCiYWjxIjGNUmCK|$tDDf>*G
z=&ORo1{EtH#j}G3;u#FZ_V~j)jwvV~UPfciE|ZwZJFAB1Z!$#R453&!=OJ9h3*%fE
znOcnI%d}<pY2rjm*yRc`=;5gMFVb`dha)6}uFX($nL7Cd%SYj|dg_HP{QF~nGN+f}
z&%#tQ;eROs<Rr|<BD^Qdlq_L~{hyZ^ZC^*pby=}C$5GZk5nt#jzL1g5puiW#!gxk6
zfL^~`aY0O|S;S|A-lsGR`R4i&nNmMrW^|XYP`)MPL9=0y9&WihV1>X8z}S}y$2Q65
zS+bnXg;7$l3d9*?baI|#Wh>c%)RSJ(Ytrj9kzh=^;2QY^8!2shqa<$Vt88T9RGgqR
zh8a#$l!|OnQlSC~8(5CuMnVS_IgOTeS12px3`o#e;v@$#J(ibo(A?lMKn53M9THXv
zm<?Be08{01*e=K9S78K*{5o8O(rAAZrYFk`+Ea3cSwlTL|9-G{cK-c{oGkr_<^JSG
z;2Gxe*nVMb?<GfsFk)PC7-#3VBWc+ac)KgNbm7N7_*dpikF?Lh*n1<e^a%Sg;qYMS
zG)wMRVLbDUG5k79ZfI<b0;bDLAdJX<L~fSXG>d6YnbC?oj*c`V|D4l|)*MNc%-VkJ
zN2@%XKv?*K=5xAad;I$EiDE2!a~jz_9SewwFh3MIwKO}6r^y=R*Uz@Yc$#=WGC<YZ
zOJMF~$9X3On+(Xs>CwrXQ*QyI!Jbj#o3LSJtZ%o)Z*Bd{nA4!t&vHHkzHYT5GxYvp
zBXS_|rZVGLl01Pq0xg&_l@;jwJP}TOPR>-A4B3X;v?HHkMm$G?zEh~JCGX<I9QTrI
z00O7;gxqDJwj6wjl9^J>1*5#YI(hg0N^Hr359`OdGz+|dt!X68^pG&qZD+kcmuAkU
zLO}@`KTdjwd2y1FRk9?0lu<ueficIAbvTr<mTZs96{V$@W{2xPlu_*|ef~U1fX4aL
zDc_z|vV8vh&xMJ^WSPz~KM=eX=8!2A<D@{D$F7%gzz<o<dYAwG+C3LI#hqP%#Fa20
z^*&>q$=^Z*!=ZP-*X{8C^!R`J-u*L%w$rE{yXGDAGd49dB@?Lqc`w#-!8Z}6f-qky
zx<_diMx@s(SPTQpb5Nw9*g1(#UfLdP>wy$R<ZsxRt}b{*8@O$7DY9L#K<*N{xTY}p
zA_=Gw{MvfL#)b<jzBHrAaSMhLM2-cIfEy*)-l(&I3_9u{J0zGhghSz26uncHNabY^
z-wMeT*rMVr(q?9kN80I6=!A6pa5#PA$<{W)t8hV+rDUDS<c8+zo7B(zg`acLS{%U9
z50{sHEaoZQ8O~fdt|Y%ib!k9u4*lqaM!xb^pji%#gRkEy%+le(ZiE@TBo%URhPj^R
z0((#VG>ukm@mkvk+0K)8KBsL#Pb(?;B8-94sual9*I$vY*F6*|lVL2}wZNy)Vmr>o
zDm1)A;Rk7Ad%GvnrXzg2U{lQ#6{ae%uGc`=(pc9!z!%^wzV)Lp;7GObC11E>m;LYi
zWV~2Ld3f$;Ifz)h@F!=9rxE3ZmJ44l=aYvQR;UOG5~fl3`P*1&6wB#vvYfudT?Yb^
zxHU2qTUtKf%KI89ow488Q+m)JnSmTlfI*$ADul@=1oy)^RdI8Ym?SBU**u))yTE40
zF1rm_NU8=JV^e`LTnO-1SnWY)cQEMlhYvajo!tZZhnke0he6=cA@cnlpxgT6lI6lJ
zXQEKl>A#UF1=<r8Bvhyh8D**QpjvS?d`C`RlH((FM&02C=+GS^;c#@|9XKX^L2qf6
z!wgTQ`?^j%Gh&pQ(BUQ%I^02wQSU5@{ty-!xZZEyU7cQf`F(D!VPCm1du9!rO&o#S
zH(t>mKF5GO1MTrU>Fam~nD&h0!!zX(;K*foY)L;JjjCXC@>O~fNs2ZZkn^!ZoWO@I
zT$_c5&G3Vo;gKg_QGH4vTFbkm*YhN~VL+V1SR1+m96D5Q5@RfaD1dM(ga|fImQhe^
z7t=E<y6&}Mg-d%zKqFE{7r_JLc*@2exk6GU*M|jfjuPp1)GH0RjGknHY(ZNUZV*pJ
z=ZupOY$9TQ&ulgz@xsLno(aK$g5bc1k&HyFP+2K5#$lhuT;pOW#0=}-SHkDW6^k@K
z=5#@>g@YY*I{GxuqKMA?h+O7bILX^rnIAL0<!wb6$(;Iuz_1u;;s|T{4X}pOq<8x2
zUayFBRfCXNp!H#l5Idr`6c}PrmN=1CtlGE17LWu23fR6t%h6)9#WM`swIUM@qmA*?
zgbLpzUBrTS*-W|g96w{s*uUi}@s&c=(=1Ce90`Ci%(Bw%A9kA)&;7$LCZ0y<RW?9F
zMEP0`+fws10XZg6&u3&2PO?PhK7w~Vjl$f-VoEySB#cVa`OXM49v$crlcB~bsZoJo
zU#OJfLO4l#;kqpugnn5!j6cKrMt3h=G`ZuW2ElH6$4C2k8C~Pnli@0TD=eWnV09c8
z5}$>;T`z<@6Z-C@if+1~;+<!FpPpGEP|wiZI?lOiz6eJuGym9CQgGIBeb%;*D20+E
z8P+}|>x0c+_))Y=7BmQ#3pkg^&t_CvhNQfX<R}j7S>;5~Vupv##VGg0lxDyJk|`PI
zG+Tr*jP*_CPv|+#LJ$)n7EEt54p=-+A`_lP<W^$)7Lc(@Q?<No0ot#fdMvQ8vh8P+
zd3a058{f(}iQ9#nsbSn@3D*hz$(**Q%#3|@!WT3VR@t_FJ){y)WVqs%>~G+p+TZV?
zTQWQ_PL5t5-FAUc$i@Lo6ZWHQ=<0jjj&14c4zSBQxn?w?;Qr!Yw4;ROZD{#zyQd5a
z(D=64!BmHBNcCC8tqanPVsk_giQ+?W2w*!QXxaP7x6>;vyX;*QHwKu2binh4FR#PH
zz2$Y-UW9SD@S_)pUf1h*-TlKp3NRSTc!%%&7+;V_8*J1Wn`k;;DUWH!2~Wyj#nOog
zFc7-3j29v^eix@pF23peDTK{M%8v~#rEiwf>wL^o4y>gdc#xQJh<B}1J5-(BweKBT
z*x2nlq8C8VMkS)8Dr3Uj&|o^I9>g37Nep8da6&ycR|Yoar;ZaY0?&OJ)XtYP7<u<H
zg+R`g?Q&f>UA>D>Z)vu=6vij*kcue<)g#G@mws19jr!4@zv8NE8gg16`lJxN0TD6_
zE>)k!(_~k9Q-EajHgGua_xgxr3=Yk~bVoHpC!;xddB(+ngD~db6_kIN*66T-dMa!h
zqr*d&>rL?EJtbs;H|j%1e_B$Of4E*wr!<3WqC8dRyAR29Dra%f*s?M@0L#j6aRCOB
zG{2kVq$eWhdT1zlkul=$d&92R!65dH;X{Tt_3CF^F}YFuaL{#!7ZsCRu)e4QiJ8ny
za)ussN23Nt61m-@;m*1};P{F600({#^d7kFqj+Ja<h9VSCCNl-PrKT_S%{xuIoxJx
z3$Koi(?ghdJbF(jp0t;bA9`4wo_W>M9g!Co$UnKG*TQ~I<RxKP6-vXDMqy0dQ8faB
z9dAn({*4MZCP(LIWa3AW5G+Bz*UnK+uZ%FIBq!;ouM#_jTM2n<O9D}qw{|StwS~vW
zO#>Djq9P+>r>HjGEeerRjo2k)huhNpSWXb(y0(nOrUBU&(o?WQ#{L~^v;MfOG<`?&
z%YIIx@H+FemAO`TcXy(V4%{rhNzsyv<(yEak-yr5zC3%!a`(b`_LqE4|Dx?OPtY&<
zoa*n}A`n=G;p|k-xR4K1nmNR=CfS76*o}%X@&pnfgkj#XeUN7X(dOx@geZ_C66VCj
zM#=n29Y2C6BGa){Oi37%NksjONTYE{&~;vSJOv%vdP7$Tz&NIN;D6G^Z^paY%9JO7
zhr&Hr>wOcqH;j`!oUQ=>GYUCh@bELHEK<ufiNOFUo%CELQl<2?|5y;|K?CogB+`Qp
z78kIMYN+Y26+ei}aO)T*Po*2+DBuEnS7uenD%Ed3kZK+b2jjKOW$1NE;g2}Bax$mE
zGNPG?bCWR#%IgWv8y&^YX^!>0OpO!!y@>&5gfrm+a`pPsBu~g32EIXJK{km)2i0>P
zlmcoJH8L776t%ZxREW8Dz{lF1?1`Ox72YEcwrsi}0t6Y&&ZFflj4x$)h}fB7r+KI%
zf7+Q6muJfuM%@0IjQSv%vmG3l=x!5$wyTR08<2cf;Ue>DZ6E56ZQv~$4TLBpB1HTM
zJY+dlu67anJq@M!!4(ah@+Xb`%<X;*GcNWdQ;`a&0*%Di@1|G$%VPvYY|>cago&IT
zHPJF8(Xe%l4%%F)WVko?JPA%hmMuX6c)1K_R7sWH4Lq@<u5c_D^N04m{(*PDOH{Y5
ziAcZ6Xr6_)%CCJCEW((4&5t4@Zy<aQgxjylrO<%D?eqSO&mSZv=_TQt3hCJer@5GZ
zf6#dA`UB$?AB#giSG+4fPXd9y$B`c{#=4Y1=|TLIMd27uSt=3WX{KGIB6+Y%b~C5j
zFIx<IiV~<SJWN!5wu-q-oYC_niG=H3p792TuTi&GrUW`38XbU+3$X)2#*T;(*r+I+
z#h@9eE<C~~p?U{Neodx+7%ek;HP0xUCy|g!hj42kxCD!ug0a-NM>Q*K5^h(BHdfJg
z>nL>pK=V55%DsJcspJQcyi@>7NEsQ={g+V1<|NFdzklwZ2)EoAxnLCj7!4qaNy6A3
zlzvH5z5}<(GSjzVgV>}|AIl$ol)BX!)KC(YCxbg5j0+w|q{VVxzIF#kUWL{yNwFAG
zVMs1Qm=IKL<23e6N#8Y8Rfys;<rsI2vH+^4F4E5ZASkK0T)>3I!KM!n8=FCfha>0R
zT2r|LLP0G8Vp+?T=phZdY`G9-o^6daJL0BT&Ja#UTvqxDqr5>BY!g1HK@>?iq41P;
z&06I=UM^=`lW3D4z|t=aO%VN92n6Hc?6`kvzgBe6sw<hqQ!^oFK7G>)1zdl;?6<$~
zuf<?X-d!>ZWGJ4{<BSG0=Jb&5R`|fsWJ<aj%J&N(>4V0Tm9UR8F3Bf?MZw=vaSan>
z)#;DWVfFQ4$*k`*h)JILlN*}J*kqvO4Cx4^&`uUc5P+L%m+WMjMMY)HQ1v<WqkOIc
zV5ESL@0+=@{MVZUrnmO5r0ex$9Du6hvJ(2GPGU4x7MxyT(jC!O3{5CE!rS^|?Qz0n
zKp?Yzw~J9<n2)(6PNrE%;~-iUtbcjfR;^pMo^x@`{!W;)?^KBc9FVlll4(w|WkiLe
z+z&tny04H*wK=&W*9~dI@`|2W=I~uBU`zj5?lC8bUvs16uz^vs-?5C6{ho<(l_AJo
z1fpaw7Ngn<>#*JH492BuN8^LeVHYw0EE!6qxkJuzPGh*if<h*l$G2GIWJyK@NNwjt
zC>E8#9r7m>YFB<kbM=cT=;E_*BAQhH1@2EFDOxF!ZBQb|NQ;#D4W=@N);FaS+s`Nj
zkkh~}E)WOM@0#KHk1d+&r{UghSEecLDIrZtCpAy%yFSLgd2OJ1QA|`&%CLyO*AtWX
zTvzj9vYHP|lO)mwMIf|52%nny7vGp*Q`LCi>yEr0Myf6fo!-|-RlZ3Tok>t<4l;H$
zIWZnxSB$*Ma}yj{8G^%{aB0Pta;GA>4U#AN-T*oAI_<1~XavZD$w*Z(u*wO9F-j%J
z>GNY@_%pjHFZ>3&#86~FV${|xLw{O^85i1Ntyim*il_~B0EJ>)=Jd)@)?K~cFrJ8t
z83<KGh?K+;73ZgLM{p;>oVFFp8;suJXAJ<{*$yhg>p|?UsXw0MrpW^Y4viUf5(}mQ
zrdY$!&5rdBOLf1xs1jWnL)XM?;wy3{4U5MSm)gKM7smSA%al$e)^wZ8$lZ}q)1@a^
zho*{LiOfo%ywkRfVQ+(|-C^$#vm@;Nakzb?yGJ{Ea5<vq<P8|5C2A{8!;6xMA1O@#
zN$xI}D`f?iLe)CS5PgQ@@yM-I1@ws-ncXgY=T4Y0hxz~gKmV^rPs61ka|&xeX~;1u
z%Y_24-b7r>a%*{g@4y3Ec}a8fonDj@fWQ|8iCXGzeB>=M_W@O%lTuu_BpyhVo1{zN
ze+#;xd|c@bImYT&{US#~F;EX}kF#rk;t4h`d8@>Xqsb&$#<~8@QOrYFUL)!=E>DEF
zVMJ%h>1fCwMC5}C11fu=ue2ENLKa=}!Wg0q#7^5AAdpjD;l`G>VRx_xeneM>jnZfM
zKDH65SwK21T#T_FrC}_#pyY#a8w!qoxFoN`35^+*w#7`@W3`Lvj(L%IM0n{;Q+gyF
z^!80SfgzU9pTEqge*-y6Fn{3;k3g4`wJlkmEhoU*r8`yLvRkdpi-0UiW1x7YJFmrf
zueN0|mJ%Xh?b(sv(<HBF7ncffR+xixAB;Beunb1Xz#$p1GKto(m6I$<QyP%Br&k{?
zj(#u!M=Q-k9aU6KStu?>xkQ+P1mk|wk0O%gl2lBZ-|S(P(MqwunC5p$#*xOmIbdFx
zaH07Ox#GC8`}J2{uh)}XebBgO<=|j{XI;A5z?H71g-UV9N&;n{zlXyju9s|eo!plt
zPp%G&9l(Sc7`9~w63%}juO7N-IF+Pdpu_LnC3MNQ(R}K{e+_poR`#5Sv$?8JDu8bb
z79u1nk%;g$>8{<~UTrd9Z-^=#_Dh;;CbaluDmN@o2xvjzs}FBNozgGO*_`m8ZQeLw
z!GQS-0)wazw%|i37VeZUtID=Fx+42tZ{Q)tN+)ahSs=<GC>w^-8RaCjBS7B}umgGb
zh<V7XMN-ki!UWlXsnnE5q~f2lE=U!22?xIOE}NoIpms_Y`VcfUs4+kl5_?7gRah#G
z-7@qpSWa?O<<6fm;)|$r1|F&qr5RZkCzrIu1eHT`>7%(E=&8J1!s(E<GO=*g`q<A%
z8cuE)S*Frr`zjPge&;k=Xt$l#$5ki9x&kF=D!6dwsBmLysTH!kj$_#(#VQky6Udd4
zqs{#K8(qm1#hGL@SjK@L=j(#<aXnB5UVW4OG{(2fEBd#_;tb6`biKYoj{;f5#SumA
zMMmR*kCVjdJkxd{m=4sn1V(-v`nb#sDhhol27{t*mNu=@-!0Q3rV{FU{*@EM1J9lI
zI*$DXHAQ4V+*R3esJ2W6N^}pr5voCOi12ffN?FVV3JWR_&SGI>^V3xQA{EziFs-y=
zCvioheb4JSsvtN8LQ(CaobrZjH#krV3gZF__d1<#La5c&$lBAhtv$ox*!gB@XU5%*
z*Y~;yW1C}<Hs5ORUL`J(w@FT!Qwq5b^Vna6N)E|0N>$Mq^^=*vlRRm6I~@or`9l}-
zc;o^ezh&)?vaWSyIzNO=7>%LM&21l&7W_QCj;KlbQ<U5Ei6#74p{DHVJ(rKdJX%4h
z)}^Jh3One6|I_~AiqjC#<DT&;K5IhI``%FLV_p7N&s@Onup~)g;nR{ny8GTC$8K3r
zt%%qS1t$dlFA~yU0MZlmi>leizi*@O#Uys{V!CEAMIKkbmeJ?178Jx^dw>J$01*Wp
zA_D3xp;UBb5})a-C>ozYR%%AmgoTAVF?HKF{2aD#h)|&?@cNCPso0*Tm@xPpmNKxG
z($!1pY_t?rmS8MHI<zz;)pGEVNp+x2&K+f6)WS_&G_Gd{$%O6YKD%LiIzPUhCV{ax
zq3@Nd)7Dn}wiI;QV(7gm2nc**E#4#s4mMhRZ|gaEm*(Lj{JE%sA&Ic-b-QMW?g17E
zv5bq~H?MZktDDfyk=NHi4!xlcAvi3^qu*X$U8?kZ9Tfus80PJPdfU9L#Ov!Y&NF{S
z-e0^nDX_Yd3-<hQK>b3Q$!1F#ehwFAh%d~cx%y}&<)#BdJwaipZRrOFy;Ib=37Lu!
z3lRLS?%Q-&RHSOmIVjkH12N5?4mR5E{^zjWeQDdkRqa5DUXi8P2$pAlPG_r9VMwgT
zsogk0TWYAaXjl=DmThfqft=QI*<4%No_X~1GNa^Wlw9j<?Lx75G<Y#^rP)#Ryo2BW
zD0<#O(FEs+ua<(hiMT}N1YbOVPA>1ld@|>1RRYmU(p#X~W=OYz_|cP81;hs^7A|JT
z+VXc3C)G%pL6>4*)Ea_Z+o6*ZgNZR=`B4<|A<>)rg~%bLXG?p4l}{#e2O#EQs&h@i
zfD+GSkeJH(K_iSDBQ(L1&p@>7d7~Y)lA&5jr!GE2Tx~znF>K`)DbD;NlshBeJS(Qq
zY?tbC<LM3b^orzr76wI&Nr{&13r2QACra|`=;hVDFA=R&3tmT(2oq?r+KgzDCQAFu
zJhO5G5cfQLI`-;N&$DnbbwZZfXw}C+*m~5rfHgVa*jM6T@bkGYL5t%M*pA~)HLZoq
zQCSFxk5LS_rVehCi#0@h+0}b#&b$eXK7wJwmJT+8Vd8Vw^{3D`K#w{yGw&9$Rnw*G
z2&M8BP3DD=B8RDuk7Cx=DXgv5AlCDSwn3~ntO$Rq?zyEx(8iLDNXjao^3#xUyb-))
z0xf6*Kldx1LPsJDFAz#7t?zW<hi1`3LFf3Q2i5nh&{%|_%HKF&+EKF`4K&cZs|Pw;
zq*-!H35B{&3(A=2#FQ_yn96D)exB1s3il4|M#^NSg6quy{X$GuGt}&U4tjZa2d$&0
zBc=Kqt)ur@tOM8m$Z~1CgA!sob3oP`V}@ZscpJ;ZM7Is&D#awZrC?n-R(^)XEzORT
zMe1i%#J5>>khsu81M)XblO+*X%t@E?LJE$w6~0O0Fjuw3Oe~vW4w9#AJtyZG)bj%g
z`aEIzw@GrNQ~3msqxW>O1Q|dSJ%XU@APm4FtaJchzhw1GLKT2<^Oii4!k8=usGB9q
zrege@ahF6<ozoyySBD!NZiZAi%0o7t5;WHffk=RJM>nOBtsP&PDvZuPO?*Zs0BV1u
z88!0AS$gC^h@~)=Ar0p~V^;jzZRi`Tzf^O<jTzkf@kHcQOhBTpNfR;^Y4ols!3K=h
z90SsD0$!VCid!U`E~`=lG1DKa>2Gp&ozFq2?qH#MAb0?fHq6GQgZkXh=a=~^q7sQr
zx`n6~+-7}O^*QA;MZ@&V!!+5i&wvqhuz_|USOHX(F)KNqCwDQqmhSO8E@KiX+Ji%u
zCXggaCh)8uiQsicCcaSaqGSe5^2wc_#hgA%g7Zoxu}Nbne+XDFP$D$3uAW%OI>{ob
zO*6`gbz9tywibZ$wn!f@Mn{<ubOhW+1grBoaKVn(Gl$qWhbYaT9f##q@`N-C6HuHY
zpD|HqKo@RCX=?_yK8HgmXhWFn1e=$17RCsS-s}xX@u64cga%YnA}lOLCbo;fQ0o^_
ze4#=l@0p32t&=TU&r7@+2)JM1=s@T*Mgir;C4gqM@QR301^y~^LSwczrHD2WCl9^O
z?~Z?m?ubsKpQ?H)<!jgRx?Np`YFJc)WUO{nBsRxK=O2#0efPs#91@=;iD;@`OyS@{
z-)$0d^;<aG)x#)6NI9@CXfXG46SyS<+4&`4c+#eHmeEROM!!^nCJEFf21B1H2p7ua
z6AR-y-eL9nbySfZg?VUFdpH1H3cP1DDxnL?a26rewT1YmQ|0dbFn^U~CsGP{L1g4P
z3M7}YX)F(;i16oC6>~KDz8>9h44JPdjLvx9MvjO1-Q`qYPP2Beh86G2g;u{f&@UGC
z`9+wAGxJW#GTtWte3N8Q%^+D9s5+rBM1~-13V7udI+?LJ{q+{X4w_<LS0dZ5GdVB{
z0mj?!&vrD^3}cfG4%J5O66PFwuM)bDdK9JyqK={LiV58OZVq{9sy4IKhpp>SD5BPg
za_xTxmim3~03U(5)yOpAU^luQsqWJ$tI&*<N(HGdc_!<UM<L6-Dqzw`CBkA<Q)ppI
zoLJ*1>yog6nC_dhnKtqf)I@bkwucS~+iEJprt6JSecKqd-)$P5b?EiI0q|l>W_5_x
z;cpP3bts~<ih&qkqO~Aet0GXVS^Fd<!Jz2xhIHWfcb=N!;GCKb^)fmIT3J=i0P>5q
zs$rL=(~6{r#~8?PSL_Z^QqP>q{%*RHZ=zh^mzS@Lm3T8cji7PmoDzSMFa3!8<LCf`
zKzzT=Ym=H|joa7b7T0EK&KH_dnz{pQl7(r`EPy=)5J^HO$z%z42OoNza7>n|{}za@
z1B7JG{{6A;>%<<g%^e45X(!pUsAIXH7)a@O0s9E>p@wU*Q<A5U)>x(v#>@LA2}CuX
zF`LXOS4K#&%dY$Zjd!5O>u-K+wmgjYXJ3P@chDTGgbhCk<UvBDez@?nmFh(V`5b|;
zw(4r<*FVyUjWHuVrolkvDVH{_<0HZTa4|9iV5k6WLS;rkWj-xc8F{AI{hJl%ff^lt
z^fO&6dJN^baZT7TmIMH;S`!RJl-?w_l(1xB@mZ5NEKD`|oUT;kmTPJ^Oo5b&<+YV=
zu0&BjmZjX-okWGnY!Zc3G%?YaRDtyuDlXq=k~qOD`J6LSe4v_yj5ayX>Po$Ut;ZmX
z7b7Q~TdV0$$5IX)u62RVA~mQ~E(Y21bzoA*Gu7(KdVQ^6)qyZltIEMaqv(x>iELew
z$o54P0#V2z_I!2djlAxGCEGR;g$|Wxm!ElW17qUI>;4Wjs*6|`N9=0eC09386gb8v
z3uq`1CBE(-^j7vw%&5O0izHY^lw8w^&#^`nsgIL8a7txV{%%GXI7Wckd-;8?qS@NO
zj@qWVt!chuAoUd_<jGg;hU;aJk0{tqX`Ma&?gn=Kp|}6ZPjTq&n^||&tPk7<8Pe7k
zg+hv@ka?2KpF}jcHV`#7ZxF^Y1n<Tt-Ui8T8M#i9oaLFH%B8;XQ(PWJco&+GVFwKu
ztBn~5F%a^|idGfb>1*NNUkQFk{u8(TG9V5#h+)Bchh`<!0ipDd$+>QpWZ>*;I7KU9
zzDg6r_ee%(z7PP6gs7?uYG@+`t$SD$$yM*eg@6Apr7@Dv&Fe#5RdL_4(~Yh6*<)oQ
z5lQ^!^?^*Dz}vbO;RY&f=ukQ20Ky3QvB0UHWC6`ocOaLq0+gy{Os?rP5%LphIWz5B
zc3lk54Bykk5A5|<1?R|?a-O@2-WXN6(DJ??ktmr#g73@aB3+Bb`xX-S+&+*)<!a-T
z@1ngE6jGI7)*VhN)r&*rQ3F65m<0!3S3$5chf2b}!e^jaD8mby2^$b75eG+EG3qET
zC_<qW&5~(3(u#zQO=HKNm(5!T-oDp&o3|cxX1#9Jne_xA;#*zRpmEDDlO(R{*&5%-
zpxYNwQOp26C<7Hme@YesS>;1CQW#qetrf2=C^<F?o!K6nVu3pSpjT9t%w+e~WJlJG
zgHBo^@pRiLLBrWKb{!2nvunb_c%q7olS$-<3!OjM>&&iqJTulvBX&uo5T?h!QBhM>
z)rR(2QMl*{8fgRJ6P8sHpjcc&#_c)1C;gt)j6!_b9ii0^3VBtC-f{YM=dViTgvRo&
zynvK_MsvavE|}egQ6!xL(Mm|iKDj*m=IZp~4WH7F{;h8Y*7+$t+aWBZzbKi>h-LPI
zusom{9B!1%AhbyKzY%>P4a{C4vr1i9tyW5LA9xt$ibTj3e8&Q3^)Yp;-~k#jD)i!V
z!VMq0>sSwXsARK8S#PgYtrbOuL6K(E5F+wdsvSB1i7yx=Rx@a)Vo>SU@}Y=0#B>$q
z8aaNIZy{5Wlvc@X(8HlJ`M6|yg0VDWbxj&n&%Rf;rXslRmWg6E_^TQxZOKMmF(@_;
zXL7wVp3Z`cn8WE8a?KPvAO-LAJ_izaoW#?yRS{H*_DC@-bb-P5$^bmZ4~=)sWHfFf
z4<yd>xV(H#lIau@G(u&yl?H<C*NGpz^drvQvmK5XH1o(=oI}M6sN?{#b@FkKu}Fd%
z%k~eVkY<uZ)Q`dJ>6w`s%<UJ*wHCU-iOG)~7rGL+K4j3rS2Y3%e}?*N8hEi0U?W!E
z_j(FK$Lk$x5S_}<5ko!mEL@O4Xeg$#EtWc_@V$8>WTf9CoHA~Y25_zY2^W!f&>Rj5
zIfWgoe1Ytuj#_^);2a3Rz6P*gptAu)J;{RWKP|a(0v6e1d2PPX>{~>JY(1|io2=_+
zkvqr*o<x2I2T3mb3bh%zUW)KOxJ24@N8ToP@<gvGMEx-ucxVkH#~K9Z;Y=LLVe2qe
zqLSTl4SWMiQ-^NRbZ0jf6g&;E7s`G+L=lF&+ToX_E1Kq<b6j4&(}8$s9s|cbIBva<
zC3b=0BBH%P$m2?#EZF1SlWmPw7+Eyk>Ds{tLhkey0opN(^mV+RCKFw(G7A&dNitzl
z6-RG$U2n*`{Zc$lm)B7^Au_cKy{m7hO{2lU%n3Zs>G+^oh^v0TtXmc-BMuO0sVm_c
zLn4Y=wy;?UHOY@j5>qmXbuSb?xvswVgUV}f3bBtTNz9UnzD{Pc7odrk9g9e11NlH@
z2-<!l9Oss12^gJ)WByf^EXK;n<t{#t!0&7D_O^1N4jO`)o+e>DLobdTFJ3~2GyN*;
z9JInQuMHiqt);O&qb@0T7vxOtBioOtd!8k^^d^c95-uy|Se8WRRL7Ss1Y}*;FqUS)
zVjzea-ZlE#1$4ZQfN-FUA&_v|uSAy1%WsLl%;%g`PP7(-;2UuJh5S_{6<f)#lGdsG
z0V-+E+|PpcB$3+ydZ8tU%UX-S{6aiwlky;h^4DL-W)2z|sskp+c^c`8pW{-CKm$u-
z$e_Y=Cf$F6k==wUTjfC6Q~<lId5EL{;Y}6EX3(2d@DHp!s=BGj-j9STQGH0jn1Ir7
zmt=veyB#bi(o%pLN}H+mRcfK_lZNdusm!__0SYWs;=ZidRczgGpiD84ygDkS0qHy7
zap78~@9FQ<D#pUj0`227ne?xYPnEzY5T`H7rusKjRc}OsX2i)*MpK%Hd3a0B1iLze
z^{~K>wS!5VuqdIayGo$nb?F)dwc~)g<}QxB?!LK<eUw@|DuzMa`-@cO>1u2cnfodo
zK||5$UgB`OhbjeF#~Gs@I2`}Lix&CI7;>M5btli$Ldrh}trNV2VgR6D(mbb`D^bEy
za}+g$vS|jQPEr+OE<k+aXE%f{(tJf0eyZd*(O2-7U(w4tb5!h?wbDG9&0uvgRtVr=
z(O#LX!=8pvBo@seb*$Vs0JQ$}N9Oc<CWA#VSLa*=0n|+q&v7uhfuxg3gf-U*sp3_W
zzR|T_<)Vfr3_zAFja#=*7nw|R5lP#YzoLq-g<OsUWzc{jJB6*Yc20Oy%xk^c*VJ24
zGE2-mCPm8LVw>(saaW(TUzW(Z7F(uGEMHEiBnoe+cEbe8MAQWK7yi#l3^q-A!}g#A
zV7|wx;A|NNbWi37s5*gdIcPgeBI?caMYLm<(QzzeJ+ciAvUOz$kjc#g7$?Fntk&;q
zFR#$~xE$rl@{6I0SoN2AqB7QmWdY9sI(23&SCP$V0v*Q$z<!8Q_oObzBA?9-9WE4|
zL`E46{ZIopgzA#!gv$D2*z(|+f1XPQ^i``hHkMjt>IQ4A8RI~Y(c9n@w6&ds*tfF2
z6gnzrLm-2?eBA^`>)r-LA@2=e18jmR+RC{Y*p+4-a0W%y78~p=I#3oWKBSvY*@0Ek
zvJxRf%q7SY7Z8mgl!Lo@nA1oSH9KhD1uS2s^eb%I8Jo#z0ye57eSW+W5p2oSSp=UW
zv6M6`wU#mQSvzEA+`fC<I0-0|{mTli5*5-J7@DLFtC`Up1>Omp1}Ce#QjPF~fLYI{
zNkGny-Vjbk&}{YXH`n6_Qy9e634d3JS!|ifX8L?4xu4Cb%mKlT=OB3(3d{$}smDPo
z9aorQ^kht@jg9V+re+<p94thb+1l1=z9sZNRLvH+1}*jNG^3&@7bjOUDIu9r3Ju`-
zFea3Tw8_hh)1$wgz5Rw9e|z-yo72lbKY#w$>+I{T=g&{x{qXkc?9C~8bN0=*SLEd>
zxj6mr_h%QUC*;+;3v%?9yg&cu;^^e`&;N5Gf)=8gsW=}6n(HgsQpUA~G5M$5mk)2>
zU7cQfi{M||#cy{044tm@plo?9$sO0JC1B8|6atM$-q5=rd!lfq`ZnbI5JN`O<mS%L
z0#v;6`Ew)KBvGK>*&cViLvJ{SIlN6|DDgDmERyfb^XFz_&!3CXIGL;@t3ea;oLniV
zNP+IoeWnr;{!A_@CI3WL<bQ4BQX!f)aBR7uD+V@5fL@qG$Rsw=fcW5OlDW&5G>7M5
zAhe%zJ!umoK3`sY{CkhhRT==xp%tk)@EzS%P}V_@s54U>3h?&z)iMMLdDDunOeAxe
z_N@q<NviEuQc@>}5rMTXJDq-9cns8oW=x%@Sz^R>WUQ~m0f1pAX*LGY(IECw!j{>|
zccwboO_)MnS$mpf?clnYxd&MOtlefbCxvu1K|G$Jp>&E@cN3kbr+gHmHlu=ZxDkjh
z0?|{+1HGOlNWyi{DjUr{fT2mSsqj{M!eGIwxA{C_IYW@U8nRiSC?hY5tJ!j>*urP5
zzVj>s-*JF%vUqdcBPqv2>cn6JAYE^SftWOsuC;}#jYO6#MOh@-suVa5SR@dXLj`15
zR45j*dM~&^_h>%Z(<X6G_MThDV6Fj|tE@xM<p^a;(Dp63iC_fYmNf(vCsaBJe=GCj
z0KXMZv0@W&o-a#AD^o>jLLoDcZwoF5bk&$Q#5{I(RR+9p<>zz0JB4e-M1(e{RYGkJ
z63WDsL`V|a#sjsD<~)`44C~Q?lx`71NY^9BNqkFX!ho`K^PhU22w68Br*JR}f1>Yc
zizb#Mu&o@XWfB(-(ecL5a@8!*TsLhTW4L~ayK)J@HVFzyTMHLy6i!$A3g^pIBs$EK
zET>|NLtkXcqIQD_tWH}%gh4VDh1f^uXHt(f%w8N~Mkid{Le;-isVOwVz%fFT%hyLR
zbm)KA=2aF^QZfE-Yv>v5wQ?Dmo)G-iIgL`WtP_#7h~o3Pyc8r0Ka5?<wCHQ7Q<yC3
zAPsXjbR|Nr_$sOJ<~qoOj``n&*mV)5$1&bT{#XY>Q>}~&;of#$h<z*Ee{oB>0Cr7j
zOcpYONY7=c@`K`{jSZQSz!b{y%@_~mJrwi=#{>vg0e+)onXC3Kct<U30Gh~1Po&5I
z%B8{3YeUCt@^T0y!_8ufDwHA<=Sh|$m?nn2-@v@)$K>qXD78S%+amJDwCgm$`xU^k
zdtXRu3qOi>$$|#qav>s~xSHzng#ch3bB+v&&}=tkLb<7H$x$S!2CNPW?`|U6bi4tA
zVZy)>!ZV5~tg-6b$^$|u)goPbx$L@X`&^aQ$lS;-ii#sDa+571M0y8`Tf{D@1ji<X
zg0ltA90*SFi*#gQ@O>kxv*Y!xE`u^Yr!C@hESofpqOZrOG{`riGU{=ZECXFtmot+0
z7q4O4K}*s>BM7LzA4o!?5tYm{xb|c{q)_5BN#bJ7U}HoDi271&Vmj#{34Ea9t5%yy
zp&dk+2PzV3g>jv82z7<*7Rvq%z1mT)ZldyZkPO_{ksPZUyO~ql^Vuq%c#|Zf=SdPl
zgE|aWPt7oQ>Dph$pgidERfP_?;F-Q&#z90q*@(AL@)8E<>SP96>bCmkqWW-iYPC!k
zz7;hG3|EH{_dAsv^4*)ilZ7atgLUV=jKY9WdTTq2J$Jz6qpC=sgqgK66R&$<a~H^e
zIX}Zz2P+8swkw>%xU;VG=()U#6CHjCObbt8Xb06>m{qo{Ur1hi4!ri*DG2pt5;*{^
z-y781{0&!rn6*19S0XC79gASDmy;WspWcToXJZjW0(B*DT~Q2ICqW?6cp)2vk0;A4
z8Y_CL+^KgnnvY2!dfO}ektpf2C;;#3Nq4Hfih@NblOVppvN4~qITf<T!~iCFVFLro
zA)-Tl9h4u*n#pbxx}^5Ox|k#YdEi>M6qE}6;W%E;vIG(6z7CSNW+e0BomuecU44lL
z1;s!(WPr<GC(B$KIi0Cx{xVP6#yzJ)iIi%Lh8vox_6t~P$Frh$2F`a>g=iV8CFL^E
z?NeAQli?*?EY;^hB0rujZLHH-MV(#&{9Cd2=VI#%vEf!>ZQZkP2NQQQ@oEzxnsHGf
z?xX16N(BHGnXZVh^B#qi$`z1{tFu=}$5-zz{_)}4cW+LidTN2a_fZgVnTFL|3Bw$F
zk{Otwa6QlCGm=x57iv6A=&ly(n6?YZCUzL?z8#ibwR~g4RsI1>&@Z83Px6j3<RWqW
zE8+wHhUtCn{Z(7r{;iB~UyFWtsh`h9i8>j!B@N4dK4&J8!D?KM=VXHNyLEH2SQ89%
zDY6%EyGA|<VKPyMB=L-^`Rp3#g2T9A%DgeWhJj-Z;3ZS%4biK(^c8;F#O4|i4@^rU
z@G4z#^e!e#h|pi7d4LijO!*jg&jFhYLMqM$k{(K`Ku_`{6J1_IBBc&w&>Vv)bgvQa
zP-RwfDOVtzOUI_r<wLxnLkBz%F!EB}eC2`@xlm9!;*Mrim+=%Wj}hzx2W(SF_(^ZD
zPqquzM-}HKvMhHHFcVzAf${jj+jr1P^mzOD6uvtC%U{q~CJ4T7BT#Wm3~QhnPE-=b
z?(LxMrZXNP5c(b*)F7K6VdyQ5|HDnj9UurjD=gc|a3+54M`7%9g~?<-VN}&Ir5mVA
z2gu&oGcm&jejx3vSWxoAs62@-nnb6D7(z9WG~<+(6+~58fW)*8YPyad0%2O^Y_t`s
z_=1Y4Or~Ufd3y2v>BWb?zj^)P^zT;}M<0&gy?uMine&(|nLTsUuV^Dg&@B1T#3y$*
zP}=v+86KLbWTZZn#aw)PV5SO1E}YD|y*XgSPeTJ$$1B^xl;yzA@Mq|vW14xaYg=o^
z=&Lb?1$vF#{z**cBGo}Ss>?zxU0hSZw-cIOue8a?4AXND^QcSF__xt1_6z_WFx=Y+
zg2to+SrdyxsFjq;a)X_I?+_ns4#Lckx-(ICzhcN_s!X!VgCTt72FAV}<}5kEGR~2C
zLs-SP1>4<`UXBRTIQGm_A3%fqU|PX(@Ft4dc30R+KNbr>X(M4^U<@5F)}GBswPN8A
zboZVETiB{-5hOB=-e-|13krUTg3-sgb<9XQn12I~IMPiKD>0=e^i9?9fmnQ31RZlG
zi15jpW<O$I4s^D!%q$rfZ~#29lOzqnlVt#zPB;4+P=jT64FnyrE!kK@2>Sl*OQ9Ho
zzBib}(ChXQj9wuG{h$V2T?Q3lC&!)55O5RU-m!p7v!V(4(;?-MhmRoWT^ect(g=DI
zvOEi~m!by*ZnLIBcs&D02juoQ*zBQqXdvitTj_v4u=<dgVr&Kg6m;ks2>XSw_=a;h
zFc3_zt(k+PPlPUjBV*+yQLV8t3chC9F!xQIt(4A7cZJI?aT3r=8DKizC1X|ZQRdd<
zNhI5J7~ZvSf@Bfo20MY!wqFQ-K0ujKR>_q@<Q9}EU&b+@n*2^GQZ&x9m2f$NC4`yL
zbYSd$X)u#eltsp_NVZR2et3WJdIw>$jtMhoC+&DLA4a7x9&`pBvMpjZR-!rs#065(
z<xICNiXxJWqC>L69v58>ItN{djHLH-f5~zhpgEWb(u2ajmkXPqfJF#0RPpxLvW&wL
zC*%ucQmy9o&dF#J7_o2RkTKM{`k`ni+{9!^8<_hJn8GLr1~V&jOhLcOIATtuxsH$V
zI`M;R8NY2{kN#z~!>};ZQB6f%yKR~2ER5SbI6yE^5f7ryGr8@V(T0UM!G`w$K^XkY
z>S2NQ!t8LG(YB_qa+jrS1qC&9a)o}^&#uEf^RtzebCSfm04SuraWOa(#X-{~U=W-(
zO|prsz7mBC9ptQff=u{1OP8ha06?A<xNjOwoZ*?5owiPV(ZQYFBG%V)Ndv+3*VxB&
zmmH-~Y^LXR6gxEUn0U-?k!Ucv=WQ9f0%cC*@*u=W>H}@r5Rq?-7H72~bA0VjZfG2g
z<;_&_HafkU2DTwuKColv*m2CU!OmzAWN7fupx=KlliV2fboh|E4|ib{O#CdsB~kWO
z***?wU~Msq1U6ZqMThwiMci6%kLRiyC`8~uK{`?>_hh=T=ZRG+bYGR$v*8vCqr#>P
z47v<aRr&pOZ|SWZm{3${Y*%ZTgnKz<dD{`@F)&sB%jBx^0Q*o$RrR!#zU1@oj}6pL
zA*8h|XUK|aJ|l4wLvxKLBcs^SzH^XMiNhB!kB-%CamqO7g`8=!eU+F-xhiIue0TEl
zSk<acvK_1V2jX}O|NaB2XzNyEMHr#*_#P_}t5LXs*V+2hm(M02+>-RiNv4AQ(bs#g
z&yG*uUY<UDj83Q184U*T|4ye<_<wKI?GOLd9qbSH2gAYse&<h}?tZV=`xEIr=0dAJ
zOD=-`sq@ie6&Lph`H*!V$$4K(u3Piu_wp+Cyv{E9&X1Q|e(7~OgUXjUe~=YSeHg||
zve}+w@N933zj$?e@#c~oy*(kv@7|uAU7fvqdkMKz?=Mex$;IjU#k-UD$NcMEc<SWr
z^6KL3<$L}O0O)$;go3IB?PIs(Y+7<fEyCtpz+XV!Cy3q77D77E^&quddzW)KU36hr
zf`Y=uSVxA!Lenr7X|k89e0P_t56N;iCx;>tEo55xFU~8;N)wwT=_(6n^PD7iG0liD
zy@&Y<YIY=9_%n<r;ke!q^(PpaWqzEi*bTW4XaaQRN8}VhmnN}{r9LWqB7k%#XCaE$
zNH9r0r*eWJ7bNDg0$G+syCQ8+*295G@AB0^ni*6(6m4-OB>A9<jq-CjphsTGkkWLS
zr3s_V?5aL+bw(`-r3Fi2WINmuuO@di+m&WVK8Y|E|K0`l#+P|(5{it$<~xv)g&+Gf
zDsuIvge@m?Ik8<Xio^1+MZQSp18lrAcOl27BqQ5lxFe2-&BIiL4oveENofXg>D$B3
zf9$|;Ty+*3uK+D`misYC@NDj9lqrbe4!Nc=oraUpk8J2@p61B^kt|zeJIUZ*S!)NM
zIwUy+;cXZ!IjoFe{Ez_XJ<TQ|s2(PsOX8Wh1aK@RR1*opEl4~rVp<A)w=?0eU&yRz
zD8eU#w1sJesRIt<NwkEmP_?^2EfQhzEScta9KD2GOD0J`cME~m0*rWISKa@DD;SZF
zcTlgsJas=_iSIJXWFbZH!pLfh6JK4BJo95_yw@C+`8Sca`1nL@4}jaX7bsyAmN`il
zX$YE$D5fu#X@Y{R1!L+pfvggy$}Nh!yP!enL;f^c_76#RQz8lw8^vb~bckb`xdLIV
zmZ2}eJ6-C3u}c<^XsQzj#r;QgX_r$|j(`(YcEHzkK~c9j$-@cN<W209DBQ-$N}l^r
z@I*$w@!3ic+a|xs$^(+B;!&E?I0)~_HI4p%_TIg%jayqB{@<TM9h?SId;xN4NyvT)
zn8Yo&W1Dv8mt?#0jBIN&9=W42;7vK7{e84_8EIy0Y?6?6AKd3@m>FqFTGF~|X^CB~
zrC8V}F}=WW7(*b0d)XBr+9<|>8oh!faiBZi19h22K#GBALtU;fd6j4iY2TVW2A(nl
z5<r9}4pB@lC`{$L?NnGtB*Z-y>n9fLX|}0J0TWV=a1tf!GK}wX$U-0r#9}(25e^IH
zJkO6cpXxj0zmBr#Q`i%$S<M}QS5hM;BTNl_k};OIwF$hyFh(RM;S_~5ItRq{Xaws-
zn7wOy(jhBNANwFA)-4%nkech1zz$*kbk_F-D_1hUaK^JVU`W<#&md4+E=rb~eh6UB
zoWL4Zk@y;=Fe;qLS}dN~`E`pZ62bLZgu_s?Z9eIZXrh>h);r_{-lFI7v~-kquQx4H
zEA%XbxSK02Y()he6{2~u-g{(-!#-mD*~-ge(jIwcOrC-z<-K9ctdGEn9<zx0>tYsq
zID~a{8H;)mC?AtZCqNTaU?ZKRh!S{8cuFjQf4)9f6dB%Sx4|N-PiUl~ctXk(zHW;w
zqYBB8aBj13xzQt34Umzlgq(gM`J}dDbS)d{>lPbvR)K|WNYX;NKap|%&>|e^&}!sw
z!0}SiM6NUv+_CEQ=(C8AsXt*89!}8+$LG?cX0#)%auH4kk#Y;e906hrSE686-Z4uM
zMmDWhy*vqL^lLM0O@X(nJT?Lae;j2RP0y6Y#3#VXdsC;Kln6QbV?v@NoXTYMV<yG5
zP<So!lZ<GyirxyfN;JD?hOad%)SgJ;ny}f%j74TPS0>mWA`3xCu#nzVYH^?!yk`@H
zg@!jK$pnXb`CYO&3@)kAH6j*OVCFf!fX9kI#PL8FPHc+9WLoLRgsdYP$K-<f5PO)F
z=6b&qE?|?^7D><E<~Uu-&gIs6I7RB_i}m!)n8Z@la(JT@3)^n9)qKN?L0QhVSRl@U
zx5x?FvL@&h!)<DR|Jhk3S3Vg-o>=giD-{W{n}b2LhQ@NN*6fY&Iax<Td_h3V(;Wgk
zn)UlCr4|Xpb@hKb8nZZ&6Jz**Qk0ce2y8}=43dq*9GOE0<8dg=O~@?|SQflXbq#jB
zxhiW7t~ZrHZ0s7o84;gwj$;bc*^g;7&=w7$TK3t5zslDT4k6i$G5|+CeW#$5^)${_
z&;!z^e_#Q^HDf}_b33P+xD->NWnC3D`(pl$EyNR=h&62{#oWY;2UvUtCZ`Pd)l^^^
z-8yERS7fSw*yx@J{Yj<nj}S&7zT^{{h@pmLV3J$v&Zjy-hAYlva3B+8$GI}KQ#gJ)
zIa56>Js%^`R1?^%ji#BEs8uFyj4DdehDJ(bO5|y+N=gSEB&OF2=2~Hc&0Mwk40fqJ
z&lgBm@U)6r#P$qTq3IExrkpLyg&+ckyN3R4S{_V^P#fVS?7F^d2>xY8BD-cYQa42u
za<cW*6as{#OKU_(lF5CO@~-WYv8&ePNGCi&1JPg6J!x;m#HV9Q1k<urUt=ALUv8k-
zM4sC-_7cRXZnI~#DIGVdDlP0NeImohu~<Se8_`It6KOqit9d71tAMF*3pP2e+?IW-
z<(MRxM(bK{woG`i4x(vpa8|>n!E`~aL->J_j_Yc5uM4&q5TQ4%Tgn71(Ih1|H8$yj
zDCkd?rMjA%<enM^bWY`u8k1Na>0yfEARf>eNnTXDNDJ0v)+sgr%J36Y?H!+VntKgT
z-j^+}v*5Z7p>kX8*wkgQfC5U%VHW1g0;Nq)3<sB08Y8{vNFiEv;G~Uy#ngZ^$brBR
z))&F61*RCog?NR<h7%ML%!N5+d+Ak`lv?4CAm7&A#JZ0uu2T#-tBTL<!%Lf)JB!Sw
zYu5pVXg}pMLSzn737Ch^;`Kb1vDWq6%#<^*)Xz`~C=eHr(-wRwG!80akW(`^5oAmZ
zr$VtHIIhYRUT`10vkVnhtoa7zL7LLW$%jMBcoiCo+nqos(FtgO>iFi3*uX&`{*Hyc
zW3NaHitf6?&?1zuF0s#P;4B@mr*H)6%A;U1GPz0Y6{8u8wEy&UW_cPQ*h(i*NKD|Z
zk||msOgy{(Bw}XmTNI)wwJJbu1!uif05Xm*Ybpegf(!@{?IE;QN6RhH;8WLL!IqH<
z8c9db`USmNPsv8-u`D)4Z10>QC4eWIw!C?12XebrjubXpx6ejWl@{yBamyG>C1VLV
z6Y>m<9euJJY}Hf?<W+Pg(?E$y)2Uj+sf1{4kQo2QG^<5g&MeD~HPdyKYWkwZtRqLN
zdOh3wyo_n4)GX+xwO}L&sk#Pw_fghAW{Id|c5gtw^q4ft1lbP2yc1#sy2dAC5_1v|
zxe+ADz?u@(kkl@ugES$jNi>LwT=-K(Az+b_E8<%$9vH7dNP3ZB&h}7y0ne+bqZJUY
z5-e&x+T^?fmD@hyufk-Z({RCoVp(`ZxTVqXb(4}=J*LU-)j4CeXmyX*Q?HXUQ%!U|
z1fmkmS!5zAWtc9GWmZiZp@48drad(k#^|5}n)lCYYSQzjq(OlQkeGT=Mf;S4=_D^l
z{0+wfFH=JVrmMZFG+@E<7A98824EJ!cuBor>*<6k+UIFkS4Ce5_J>&$)h<mF?oRF+
zf{ZfA+ijy}+e2@5+s(E{?r+V`yOXmH`faz>+CA<x8*OybvbW_=4$$uLd-O~5cz+!c
zDtCad#`1n=JrYRwMFPuBno<z>NwMZrQ*<d&1qM-^XR)l0I?c{uV;voz99Nph2d(Du
z+s0AjxU-Iq8m+x|yT_f~H_gLl=RGW;gJ$Qr(U#!@y9&nXZmZMWJ3HKMq0_V0=}EgG
zrLEj83`r<#H9lq$hm>IuG)tsa=q?vL9>;7PQ=y*2fb}gFu>MkxYxzs1w~_P72y7M2
zt|<r3&Y4e*nJk&Q+GhoCti92iH)iG9`>~1+4N66&LyCJegw6A&ki3XokVqc<mM|iQ
zLU48_L&D;z<!aG8SqX&UrY?hs3_>~}kx$mv&2IO)<H|LjpIg`as#Fv>3P?zMpwL0*
z1~KE@>|5w26NLSQ!|r%7eMs)<hz}N{o}RK$W`R~70T~ZH!UNZbFKX+MfHXJ&QWvI9
zHX8X9a=FN@1fjr4pDu-<Spcdzw7EYE;aKjO3n^}7HJ^k@*3boPP7IHk$Tu`nlWFl)
z+hedgcTZgRN(?(>a={K53odDB`wq_$PuO^j2V@;|f=Qwd8c$*=jd0kXM5%HELa-nb
z1g<-YeFq=1VZzteVI2wuJ?n^5FpM)D2Nx7JNmU|e#yM3;(7_D~yrh7is%RJP1{PS*
zoL97LrC+y*;<uqt-Cc6cZWhknZqr(*KV(dLLBZ4MY_@~X6=BpTz)#lI?Zr6qi5$dO
zx<M89o5H#yqlhMk9?kA;sQZpsFH~MA&|7MP?Fh|RZneN+_(a=Rlsnr!q>A3LOJNB~
zQ_>&|@M!@~#|IHDQE2Uk7@b>fi+~eXy%vl#Wuwqv&~(yWl$4{Vo+4`*D4(#fnP^|~
zXF>3i-T^m#gPVZ#NfgK$Lly=Fu5%oZfD>uu+F&sy=Sdu=yJgCAj5#N8;hA!xuIK&6
zy{S?*(g95c22z|FW&YAyjh5PI`XU!_<9J`l)uJ#s_`Z93+Bn{C{&QPQA$SYM<8Z3N
z7wphI@eR6iY4(y3LY)OGtgA2z*PEc#YDPm6%iJ!~np?N;2O(j=5sCbesVgaaG4{_%
z!jX4<<E2JQh<z>Xrg|{}S5;P@Wl2}js?15MoHiDXYT)0kA+XlLOik~nHT_W5fhD%B
zy;-=mX&NQ?%4~#!Q7=1CMZXb*L(bA`oYaPaHrgPk8>}17<-J#6b`g20uM)<3Yqdwx
zkQLY=)jfe5S-o*g!Er5kuqR}NyYs1nU*IG@=G5%RE6nMASL2>Zog6s!hx9^o%5*dF
zdODp>Z_u^Ap)Rw_dIQDPA_**;$z49{c0edvg}c6W%;nlk0Ycj&>Y_y{@c?y7jfYI7
zLR|#bXjYU_aV)E!^}t((9haS6$T-o<{kD)(73*Aq_<4jD($Ht=9xCRnWP2$ceCh5{
z?i84%fq$m@trc%TTbmH43wn{OjLg1C(S!!<g2YiavQK$SQhlB0$5nlZ#sBO77Kr~h
zmvY{<jrsBa^{3CDKF`MgKYj7yA^!h9ek<tbgP6Jb<ly#-J$ZSzb@9n}PoAKYNo;*a
z0rR=q;D;klLfxIjkcc>Qtew+@RM8s}vP<CmaM-p_Be|#6!yIk_w335JR~}@e19m!z
z>?bKrLy}~2;mIg5Ve~O&uNswM9YH{`=;Mc`0cBTCue}iBL7rCg*{J5Ts2@&*g<Dg*
z4Yi*SS|@L7DVQHDFe~Y6J6DoGThq!+tZuzOjR{B>fgoObf__Q!kZ)8se)^&G#F?AZ
zn4tv1JhgxC!+^l1k95TgJ7m^4Y@+VRgj4`fO&(K}6S_|lOhaA*f1bKrMa)#dT*Ys@
z1SxH^Sz9WnF{|0njbK0^DD$M<uI)91@~#t)K#Ev-J^oq>4BO`r&1uv0@|oQ2BdV9H
zK8|4PK<?D8p(js{Pdbh5Cr@BSST|*+_s^Id(aYY+S+)ABugk-sle67i#sMB`as`TB
zF29Y=PX9sw;Sfzak7;uHDrIohoLH1XN8&Z*DdiQFq>@I1nmQAzrq){R0)>0}TK*L{
z^(g88oj$%Plf{=xZ{%71l;~8!^p+UD4wM`z-3P0jfFG=KDZq3rnZuxK#>|kALrS8g
zRQmn*-+P!3OG_LpwaTh1pnw1UcR5al0X6gv)5DUgv|8pS^Dbodm0G)<DCPHUw^#Zq
zqe?|XvoohduWXV-l?u47$JlpstXC>BB~SV}?f5R(W^I|hD3kkA?PAC=sXK{qf;bdb
zd0*Z8qgBQgt<J*gPLp?qmM-{i7gbRU_~i$erKId+NWyU~mM<zcJyjr6NyS;qwILl0
zD=N+(%-gk+V|!Y&VACNl9Qt<YK<9tYfBL*h>Z>O0w-snfW-3~K7SWj{y4++r<_j=F
zbDui+Ianl#@?uN*KB{(ko0X*8(GJRi)4J6RB^fE|^!@wq5f2F&qo3;HZ^3Q+B$NV{
zpz(!|DxsLF9jlTV-F|@>cJv0pgNq7D$pU7yY6;kYVEQ_%rMZC&iVC}3%JzO*w3>$A
z^ss-9CS#ee18y_3vO}ueBT{M5kyvWSU9+%BA$pyfkO8t<5^Gm=+MS8)#b7h$LDgM=
zJpi7+p8mIh{_oS8O68h_+&&z?XdAca|MeHo>#qL4xmDkM{-FQg$FJzB`fZfN6H;11
z9VRboO;Ey^V0|%}aH5s~s-V-|cKf%J)_xl`TCJ1Tw)E%-Qq=JiK&IeJjS`asSf?sc
ztl1K}rBtumE+Le^uXQ_3B#i7NuiN0?QF%AE)xAU3BHmu0I7;(g$nQc-5}v3hghpf}
zKq2qxTdLib{&=#DyiNHi6S3rqKhG9_DjxrhFYw7&7rz>D@nPVprz`a&DNmG<f606Z
zvX0KDsvAr~uBHx#LK1m#*52+fWU9Yp=YKK!SIJH8Lj1SW|3-adBSZh2TMzdC{rpzY
zA;A}p?-lN2hb%Vf9k6>%6i*_KdJ`H3+ys%^>Av05vNW=9%c+*;@R<ij^H*Rr-+CcF
z{JzO=QT`wIrj=}Rq($4fP5*oP;#p4rd-jn3<z9aC__E6*Z{c~6IoVF{F4;|=zm3^s
zEb}kQq=4JVJBeD1B}bHxaN-ZW2cG%Oev8rnAY?rp-ckL#E&tQTRy}L~ZEkKn*nju(
zd$9lh+AId4qD1a*$bd%M=uc6&0-ow^<jH~+8quWE69p=e22?c-`z_n(`r4dx^6d1z
z1ClgFiDuMiZ>GPB8TQaB+-6io9(7vx*3iw31@&|ihMKisU!&@;l1;dks!+5#Hf0SA
z<s#E)LlyLx4<B1k72kRy{*WP0XBMUrvIlu#UBqU=gKMczaWdRSp4CAoeQ~-ts-`%)
zG2uxnN`2dQ%~fP`Gv;XC^gK+=Jxz?<;>ui=q~}Xrs+5^1HBT~9OU{&RN+-}Y{pa*Q
z1j4Jg(MG*~L}#=oN1bU^p<=<NZ9LWFXKv8zv{`V)lx{e8LsfQ#s=5`ixc(+flo#oo
z2+6D9PGfpOLoy%@?qj(%mGXMI!tq${Mp2S3ON4@$jjcz4qT@!V+uHrjB@Fbz<3n%V
ztN7l!2kZZ_LNaV8XGq~Odi@$XvsY6Xhlgr%mAphgPHru82|>z2M!!S>Q(HG%b@31p
z@6*B*ms?2=J<VK<87WyHC~e`lwRuD>*iryKtB=e(S7_Q*H#UDPsJl@Yl}l1371d;l
z=U>Ql8y$S+Pl#nkBY@So<@b4_S$6*~PhX!Y0-RC)U4-+))ZE+De71O&qxd%R*>1at
zt$sb({5M&le-q&>vFS)>Ep+9lyksu={-vezEdtqIeSZy!3~Af9@4#@SM1<;p`8EBS
zT-P4tJuuy39qukH=kGB)e-n=LU=Dm~=5ybcehJwM%^r*T3O2gFt{~bsD_7oS0l|}1
zeQ%6ft(=G5am*6tvyh|CVf$i3{=cgK-BkZ>y)+f9>(`J?A+nuWjG@MPSW7})_2Z-v
zR`;At?*i|fOjCHA!0Di_568eDBYCjhZXa%Mj9ywJCVdijWt4Q+r{f`sIh-JUY4ArP
zgQS%e6;SQQ7f5jO!*xlo9MMzsWBtb;U(TKiNCX_=@RY^LJ25SWd1wGREEH7{W3f6M
za)K%b(Bf-gcB8Vm-L%tc4p9Y<w~l@Jp`)9d<ww2TptECMY`l6kbRlf}e^>wUDkfw0
zy86S~$LcIW)t`i+DDI)E!0lqitlq?Mr(7zd<Rz%`9;Os61~E$Q=g6xHP<9C*J<mgb
z!fECxL3Pog+$gN}Qv|pZpx(UH2Oeo3t(FB^yI0*li!X5;kU+8>w1XZ$UNht)FqoiO
zWl@>?Loy<IHguaRM%`pfHs=S~fTu-d>{>Tu15~@faV=zn8qBy8Wi3lpMX7|2Xf$}4
zLLhO>;@bc~AyHpfjLBt86N3KbY-s+YjB0SkKPG<i(n1s}!|8$VcEnuRm`UNRUTpk%
zvAI@Ttv*>p4pcm*HF*VH4ZzgO8@2K#>cs?~XR+oFC($_xx;nLKmqb2;L=Bn^B6Sj?
zJHl7p9t);jxazHLCf3{yS+n{%j@i|;8xtIK6FMSnk|6X`z5X&&V2nBM4harO3}-<F
z;bhDBjGa@`9Seq!(EmR9SFQR4)rufFi@1=2<kFG!vt6q#MrhkJlwW-wN3jR1ON9(b
z9gnGU9<qKvWH_*BNDhLNB*g~$X9W(hR8B5P9MgbQ-e68DXK^@-HnwZEvLJf5BfuQL
zR#V$$#qGu{PO@{7ZR0@0r~t}Paorq0T>u<#h8bO*->Y|wC&>9pFfJZ%>%ajMugbC*
z4g#kaeP*p`@lnBOCo%PtN=J~MKtV;vtsrlNuPS&zcD6R2Z9T8o>o4^>ZBKgpY$TYs
zhj4g_r`*t?O^G%;u&6R+E}$28Cox6;o8d`<pOhV*Q%Gd@N@3Q?22E^sm&+S3t<KuQ
ztbjNCl{%hw`^MqRkk~*7G|*2V^MN!c<W-Uh)93hPk_L4Awt4(dG-g2+9WZ%yq)G^O
zp|jK3$2sBnkd;)zxB(^ns<Bo?pTPpEq-DgrZP0C@tI~iGB(qsUI$7Gb)|hV{fWC)H
zbXOleH1{#Z8s6Q8r8BpgLFI-e1~zubgHVFw0ZC4?ueE`+jXHa$>YY9KZyi7LcmFLG
z{}qbKxoh~>ZSkL*FE%%`@n7|45Apx^@_UH?{}zE}8XNNS2w$CyNwk;Vi@J?Ap4Cf8
z-8wEynafp8d>Ov#$m__r(N?{_MEqJVAZ>p9+D1KF{>NDXY(F{yY#Vjw1k)EE^+vs3
zirFL~@O9DAZ`SKa+40x42XYn)vKZL#O8poze+J*8?GZ_^K<6@Oz3)CkYRPYboPYP#
zs`(a;vz}0Z)EW10(Shao|AO+L4F)8>)8XF*&i}o5zLk~#Pq(%n<o|vA9_0T+pgBC1
z5K>ewEl+jiA5Q|BR6{nfU#k9QU+dl1;!4`6G_MOizqwB!MGC*j+oCGMq>YP9<oao+
z^vHBaOY>YM^C4S9%ivrM^C4S9>MFVN>h+A$NsLLKp2O=BLOxD#NF#h`PnOh}D*BrN
zq29yR=8&l-9r|C4|I3SozRvld`sRy`7rFC4&o&<T|9$)(`2Szj{;Mx#32iQA|1Bw2
ze#{nsK1-}Tcf`t%%UXZSjrrMw@wYfuAB?{T<FDwqp!}x;$=53Zg_|>jWpsht&i}v2
zo&SCMY~$I3{J)Ri|Dp50W)aU2%706<?Q`dUG5Uv4iVB`2EG8ktOHu#r`u|q_d6xb+
zpFa41?&bHO|3CPDr2i*#e8UZyHZjvGMqIZ7bAE)a@OWA5`Whu<ByR+n6UZTt6;xcH
zNH3`)7LaXJe+Ii3GY@CY=$aMT4iSTFoXAwQDsE7p<T0T4?2{c8RO`{G#)s;u;;TRY
zRNz<8B~JXI4&><5!3d94_G#UP8W%8V#1h({2J^ciVMy*u;wm358jM}Jxq-^nU^_zJ
ztCp{?Z;L-pqektKBq3br9+Tu-4Tba29fup@3e{0%fF1{!jNlrT{>#S?Q6P8zEhhit
zgpWh2lYdo~Ob2_5{NJi?W%d8(^^FJle=ol|aycW_mN^*zWsl_lJ>}__&fL1B%3?k@
zt`bP44u_Pqmnh>Q+FSt3rMQQE&<`Nbx$2eLwAl51!Nzl+5fVlNu=uu9vct|vq(`QX
zPHfv*=2UgKLF-r^NK6P%;91}rj#+479SB*#E~{75|D<|MrvHv(DBH}U3uq(nr`foZ
z3(wE@0$8lV67MkkV5UUV^4`ub)!n;zJHHsJEN|z1x4pC%^Gh{+XGh|f>cF>_OAo*M
z`Q1hT`@-=*&tE*x#s5Bi@sR)VUVe+~f9mp>J&^Ng<3S_5Lxhbyq#n{f@uz-B(2%in
zbqlR^6NowVQ9@~130tUj?F7drwE?*ze(HR&G7%{Mg}06%9|4jH3Eq(~Wb&pkxct;=
z)qqAr90ehXAwNMf8rMdIb3D+g1jaFGCuu^2`|ZHjRD$adO7Q*a81v`>I!gTH9*M!=
z=G&0Ma?O|iZYIRM$(Fsk$Ej8gev^4#qU~>Lcg>qH-LHF`GSlQYnY5)^|E4DE*PaJG
zwr?{JOSS&(%=fQ72{5p4GXsk^{q3C?Uwayy0e+k5SiTFc{kNF?5BFbwz4O0MbLW3H
z>h%Zv|2}>X@gLtJ{^Rzj-5>ut;oo=lc|2b-{Cl|}-zob0zimHcL8Shl**3XT@b`bs
zo=quE`UU=@x%_`I`G41&-{kMM_>YZe+4#?m7f&Dj|M&8{tN(xNoBIDJ5$#hFv>{Zj
zX<a>^ir5iJV(RmZ09KyPzvcb`LOj6<=}$sVl!U}l#N_?@rYU>Ykf7TKpZRC{%x5^w
z)ko1y?&FX~gM!ZpjcC-8l*8q&*$7{yF9aFM%vXD-XJ-iw>3?84Pf6^PD1kiNFY0j5
zzEIA41Sk3$fs%evG<yB*{V3F7vLPD`Xf&vX<bs6Ta5ug*M{zQ&f<l3oOg9c$ICV<^
zD}U94^ZAbnnUE?UGZyOQD!!-I@0i3R3Q2_dHmbjPUN7k~0!Eca<4HPq$#hJ%kv!^L
zMC3qZA>*V=SbrOpulEj5+Kp|P7#&Y42G7&>QRPlJcv4M!(WfK~ERZ@k8}k0$j}y<l
z580qAM_|WC%kONGj3-Ie#?4se=oYrT#)oI&P-5P~wosF4L^wZ<Sx*zD<!Z<#vPTu9
zqMeZ)@r<0PXYpJ4t~TK@I44MSfqIw^QH59q{7EcKxIU&K+Sq(ityk;SjqPXk=g%La
zO8#=c1@u3$sJNJK98Y<|Vp6^OlIQ=QZEQWu=YOd`-2ZzoKb13={BbMS6U+*EQJ;Gd
zkN-;gd(ed_!lE5-(|Zj}KtV*Sx3W=uwTJy7Y197@a}C5Re~4-H8om0iQqd<!c092J
zD}2fmGV&^w*M`}=QtqD^(O}1eyz>>&LD5(1`L)HJvXyMms-FF-W;IsR73I5EHQ84)
zYCGlc=Zs^qF6En-*?a9tSY`@L&zHsND;vt|MdYX5>Ys>4$@8b^=H^w+0hGdrHcwTr
z_G!FG8`(MlKL^OPu{gdCXbAm->mclG$*-~>UteD@4NqZ1A;SgdbT*T!dBOhkb2{Fi
z#55Y5jYEbV5U;Wy7wCVsis*L^%&dNA=_$L0mm&&lxro<oA*U8xDp8+<{wr6B6nCQf
ztC|BT*XLL2q|@t?)$?WfsWU9#tKU^BNK8DEZ;|N_5*#DPb}u&6*q7rt3oaPI0MwQg
zmA}g24h*AU{eBK#{*pt<EXl%EtJv-`eD=1sA9(Hq&;8as_lvMIKb-J{#Fb*UwkN+X
z!`?RMa<`)9zOa7Chd2&sG^nVybmiQ87YG0nHuxJd#21vsul<;DeoT@}7N5717$;;f
zeN}Uc<RQSdBe#HX%M|q@m_z}N{OKY@oR$XiwJPT!ha{pTN;Ku&3fnFZ&>aAI_#+y%
z$2cZ(QIoiFMf^#^;@6w6YBRs(!SG41;?8M;6H>vKI3{K~tyi@I7{N5cBkH?wVlrZh
z0im9XYL8<!CUG(a2icDI9~Ker$qn)y53=*E7uPNlNHgt_2T}4MO1_OKkuL;`Zwt1_
z5e@=*%OSE@GcrrljTO-x`_(c;I!oaPzFg_^%0`j?4&?>;y@uYss=?p4k4KR|l2p3f
zKnl5pO&>$zpP!PLvf%YrT~KrSY)!B9BR7NB3E?t}r~tI_s+N99ORL+TUT@Uv_4=!t
ze$3!Ng0PWL#I5ALIaOJ>+6$R~Zg^J`Pe|&JSj;wJF<M<%p%^eW5DO?_F&+?a?aoyz
z7n@7f)~dzlLCMvw$Xmy}HH5TQ^cKn>Rc5{#^cO(kTnAUa!WUM@AhcwHLtV){7fW56
z3X^!65}|m=SIJk)4@iN?e<%|C1>$?w`^DUgcTvU*#xQphXV-hst#iG2(5)+l1e%@G
z-1|kSZ(*X%SN%M~MRSN(ezOPuH?<egT^Y+vsg~s{w@C+G?+f#lyUqRWc(R?-pd69}
zjqnxHoq~I!XJ~;Bme_+Oc3+m*UA=a56ot>_@e3PWU%_;`t1-0P2GtTwXK8YgAlec_
zb;1e6JVrj*i%CGDgyN7pOR%`eYhkXvs?GT5F0ah>wX+~XG}VG2T}pc;_dwco5Ru?4
z4qNI%=0%v2i;o$AfK$zCBrk57!D}^Be#j<)p09KfI0iO}f-$4foq8*4s_rQ;DP+jg
zcoKyRX_PK#Qx#yRfKuSSiGNO#V?0_&zPQlSx&Yn+Wg!zM!{s55Wh~vR8dT5rwsA#y
z!tdH&S=;Kd0{3|&$n}D1T#acwZ4;kGflGqLMV24NjHYaHKclHd<i!_r)Zj~A;aio9
zt)(0cd@JRPTd8kkc{hy%=rg*2V}D35i0z-*{jH7KTj<xVg<LatK-he1+#T89+@0bM
zMw|Q2%fFl(rErZdF=t=N$XO1RU(dUg>BmBzrLVfCv)-eMQA_#OG9IQ|T^km>yL&e*
zAj>&8?nX-U$O(O>W5XHBxARUEGjy{s1xt5|q$ij~!>ETj2@s1k-}ggGqC_R>0$6A~
ziN}l+ZY+K6?wHF4bWdh4_ZdAem|FAkJ~>1_zVz>`A=vBTujt5m@Z<bn_T$VUx-TW6
zzogK-`*zIdY{Pu{?U%2$?XtW_e<9CUUg9q2)mp%}x0sT%fO~J&ioT@D@K!YAOWxl4
zb!*1jy<N`P-ax{W^b{-1vHJ?9F;gnXS19<nlBvTm^h*G0m3UP%Ul!q6zVV<r(9_od
z-zoK~W__LOb&JVB4_p4JXkp+CGwUc?%J(zNo#Xh-ZgGR9D`U)JSFDH^07AAQo^Hdc
zgf!vgU6PEmZcXtng{NOE2GTtdot1vpr?i30`^DPvO^uH9Ub`zJ`!#JX|7o!XITJHn
z)R^-nZODDSSR>~n-X`${iQ6<FjmVFuW6{%J$h7G$+Ia=jF3c^paF2c=)0QR-rw8VP
z(_;E|;THBp$Jh}INVbXei_?bndJ+EdU$Q?i;p8+XoDL!y4FDg`8%?cN8Q1xWlSxeS
z&e!5k#*bQ1YayTROpowl?pa0VA)5pTF^iIYHo`Pg4A-Lcf&vz?7kyoj!I-MQkm)I=
zafSj5z8AHdeq6TM)0kf1g#1FLGullH6g6ypU99EVn?|<4n!Q7{*zVE-T{y+bu$@dp
zBJX@D=s>1Kw)yPm1tr%cOz0_&lLEWV`6Qcjq6^&bOSCt}ancCMh(w8f<TPzHQ(#8h
z*;02fs0#Nz?zZvqpGizAy^!^ma!aJujGp=#&W$`Y>EVzY7~&&(6S5v^f2|->2Mcq3
zzy)3XOKoZt;d1GHj@d8@zWn8OJZ7)WWvBKl?S0%8y<cw^q^L&=ZH0V&a`>Dm+j|J_
zyd%ARd77I?cjz;>M!v?r$U`*ZgBSZR?#2ErxAi=hD%Jq1KvloHDu*=dDbjOP?zqer
z-;4ui%k#+xxA)g{d*`R<ws_D513B*_nzfKk-(6l=ZDW}TanT??049i{YE^_evjOG6
zYdd>c=+b~Uz#W5psi?^m@@)~5<`R<SQQ}n94pR%*T%&m5Rx-BsBDVBwb9lK{vljQ_
zwsg@($--?fxTEsL)9DmgAlB)W!n|c$PKF6I*P2OT)v}x<qer<~)`M2{pjCa@*nrza
ziFN*<_~U~>SwNtCF=6r=JxG%Kk|YSBLSgc)Q*Hhwe+%b-r83Jpi7Pbfv+BP&ixzF;
zmi+%4FE(Ff^1p6vJbk$T=U#r-Kt0|#X2HZynt`{CymurVb?p@(2zE~_jOwpaYeF|S
z-ny*WC$MA6y>0YCQT(-`eEn6zJq>ZvXYokD8^<(C`pA34E04H`yz@zq#1Tn^d05@U
zV|k4RCA|8}q(@Y<cJr!@oAp~7-B%YJ)GV%}FFlY-;}XD5Wpe!X{~UH3GJ~HDHcg#x
z<@Z|{_VIv5S4ChUFa2F0?xs_Cn)23eXF7JUF;}BrqPh00%SVd_HS?y@Wm-I&bqz#O
zi}o;Q-XF0{>jx^?dQoF0W&Itdtz})bF>3(!WgIqa`1ez3aap%8{~ysoj1yAj!=-u5
zT>k&``NoT_diMU8t@?`x{(m38mG2;ve-HCvskDL)LOkH5gTvjo-S<1*)RTW6?|6~?
zv)z3!p31TWlK&p-Vke#M?&;}ab8q*}VPnVZ9`AO&Qfcq3)oL7fy1zDB?dHkxPI;qL
z`mMEldfI4p+k36%X{XzHf7<A_PLK8*Z+1NSuUA-R|77o%MytDba&&sqZtQsSSv`8C
zQoC{7Zg!f#HoCtw-gkf9Jv<Zr=yDQqn$Qc<Jtx!dkOl#Xx?Rz^70B>K0-cWXoJ@JC
z{k{$L+wXQ;js5P=2d$I0XRSl&3MN7I-~E^k&f?I^mTWin&RWgR`|i&t&EsDh?@bL(
z{7FocX;s~sGrQ)|ZoAWH71lL(=!k*3)sIj18{Ou<sS~k)RB4cF=I7mCci){HHPWHr
z3;d3aNFL<=ZfEz+Zo2`9H{~7CnFH_Ck?8N9p0qn}TaEUPm&(W4757`sUmLA_b3sfm
zNIbiqJw2w<q+p8D8tq2wc=xDaXcJE22#@9rPv1wFud8p;$>XzexZCbD_u7r!*4{g(
zza+#wp*|-#_J@U?&eYBJJOf}>_gyHtF}P6Dfy{-ncX%e&YrD}oJDmYZxzF1qnT&56
z*>Q7kx7|5t9?l$GM19N?A$ynTndSuV8*QNZebT3qy7ZDpNNK-_kBLwF)JNQp={TvP
z_K;0NbIUbcAPK?E2}6^JCZZ>h;81W*8WJ?&BtX3>q7kQqVFH)GkXRIltsJvug?+({
zkf2fyH}O<aNA%^Ah9T+^xV%NcamHR+Srm7AxYi<U?Y?=_>>T}1cXtoiBQOkS5yiOI
zqsh@9RoOYoLfmy!2&8#B9|Ro($`8~fHM|5p6is*A@7tZmQTP4skst<{AA5>Np=Xs5
zoU{w<P_WMGx!`{3SII5qcgY^JC7Q?W&hFu1qotZLcC2ctw1VD-tcOD}%RIqR!sRs5
z2=yi$uFydt8&JOl!v)UP?(81#?;f5UHy|lx6yT6W#Is7M)dwir@dP65ubPqUc$#rQ
zM;cd&Al-14a-lV@nfo0%Dy6)~@KgPlmwt4X#E$1YTE+B4?s)nyuT;|Dx`(@O8izZU
zvE!B8rKSor?A7U&%<52|Td*2Ne|V+RZmZKg*xl=#wBGBlyY{6=KOY?J=?_Qp0w^R*
zf|!L~X}{U-w3=_uI?a<~U1*>3B&NNI(AmAxKU=#7?muHZwFk3za@^T%9t)YG<xh4v
zRuM8|NLG>946D`HZ#oUcB%oZ(<ZckqXn-(+i<6PcID>km&tihGq;Gk@E=M#$l%p{d
z8VZYuU^j70{3H~71b7bjV?v^msMS@lcIwq<V#%D0<;jDXgg7CAU^Q?*y4<E<@f6aq
ziZZ3s*2&Rn2i9J9zuD>@p6u-kobGsz1+=egdL=>g1;tYm5>0gj8qZKj-t9Jyg({fQ
zONLlkOrGx3?*4wabE1hxEDpHQ7h#3R2>ue?!y#}@F-{yIaz%L}N@xzQ80<e}-?L!T
zjt{X{`gQlPxi48|J6E)9v|X=MI%>4ryKhs{(@bT@>kJ7pP?3)#{e&<oy98y3c^$DB
zMkk7^^BLLk_-r)B3GIbsCYX=Ws#VHxifsgWU$$$t%galtsaAb90)J>Y5r%y&pnM$S
zX$|z+n!K0bhZgx`LSyjW@)h~cepRs_j&Kswt2HxydA#g17~v(3U}zdCnX#y8%2!V(
zO8wQfbw_97@|B&bTS1DAag-i~K><lH4SA_`deq%-yh(uw-MG8oIM_Wq?Cf~83mn(j
zIH>^|YbpQG_4L9><v|Kc5YCR5oxLF&5h><}_(Dz_!cl-|!rf%TX(I~Bv)kxQ#{>n0
zQ(?yxHmG?(3KU3nCd3r~mQQOa%>+GWSM^pKh4MylwH6C7?%7;O*Ir$dt`M0p+T2Lm
z3L95=G!DrQeDwuHuYB4%*+1LsfN=K^jhsNba!$~!<-+s|;CufLdj7U`O=hk3s(C7S
zLaWhkzutazdeZ8=uI29O)4!K5-Cm^PY_aBVZCPE4*!87M{0HaZhy`RPkcz_m-sI)y
zmqbcnN#f=Dl}hd9ur#A1S23Ojy@k6#IF>gY(mwitD*r)VIp3&<KD`u6I$dSNA2L*l
zP>!(AT8AE5K?e+yf-5KLR33iN78y{wb=Ru=#Uz=;vV}e^&23~7hgGEdwv9d%^!Srk
zx+%39ZyW#o%ad63iA_<}Cts1Ks!y^cbX#*@j%cb+92&W;;m@Fo>Jvo-bJ{S=-mI~I
z6|AC<WwDGJt=37aTg>m9(FG1^Ufc*WFnVKJygbKm<CRv9Pdbfl)C5JCj>arbl;WUN
z6%Z>S?vb#H+BEW|oEZ_$@qnNao(iK`y7dG-pS2DJr1OYfMtOl_yeB#8GL92>0BMEW
zd`b5_l+=Zj9ZKrGafV`5xXrcYm748t>P{^JA)UaMN?<7zu7$OjzFc5rrn<y(I`ceG
zMhCgQyR+2T0`N+gy&Yy=x6K%xj(U4Lyo|c*80AGeubwOy+<v38+dOQ$id-QY=O}dr
zF3v&_hDj7vxXo=UjQhgoQZg-S(<SbiRTpx+&gz0i8%14kiE?Jug}k;I@|+3G(CCV}
zeM`Fv;6{7OqI5}Ur<Lthv)6;Nt{-!Coj*D!)2iTgf+~9i_1Po}w9_KvhG2bo+ov&4
zqzONX0urMdN&K4L;;7j^JcZ(-P94eSVJk$Ss;EpBkNF*z3=Ru{<ak`_j}*M@XGSA|
z1;L}iQv*B7@CKZS2}6V@xEE4BL`gj13F?vLl8{JW49+#aem;oV0O=Ts>c?pHz2SFb
zDK?<BU&s{oV>Uv&!H7oaH9F%YMn^cp1F+7~Yt$x*;D|i6(9>RP7!q;m`<ducTUi-o
zSrs*kq}G{!_}2$q`Oj|U|J5r$eY)OwzJ4RL3RkB{3u}EM?OtgGX%C`Vvf6)6BY`97
z*3z)%c)0Z%#*y~Cm#<xK<&9jDf<aVKYa(YvU6GDHpdsT4DDV}IJ|Pw%9GMku<d62|
z%WVSJAte^VfF!WvU?ycwkMsSrwhU0p$L4{!)%CwHj?rpFe4(KTI*!6AB*P1se@^0x
zkh+YMwYh_8p58VjI-WBisD8^PgiWGqzg8PPQq?6$QY?^}P^)klvP+K2*S5WLBWB80
zFfw$BbQ+6d0yV%>3KhD)#Ns?sMX%9bPOz>CEnHKu*@QNYC=xawvLvj(7}7K){{=q6
ze}K)feO+I_`2a*(Uw>Leq^6o7(zFM#gRT~~z?TXPU=f;(2QdzaU>j$rZ(F<ju&iaE
zzzr-t*z)R;kcsir2niDp^(KjCrYFaT0+NtDI6)C10XWM!L+6By1<BC_4M|L3Jx1)Z
ziuR-+8ey@dBACAsNro%{)0<t8I5w)aS<`0W9Gx9@nx}`2?&;fZd+%KXct=Qt`pHQ$
z8Rx7Wu<p4(BqNM4M*-n}OnY+kXh}D$^1;(+@Ppa``N8afl)3|w9KkqFCdqh`oW#H4
znBrbYAU0@qO$8H8B2E(2I5=oX+E4?tO#gE-?XWf|hdbpB>jUZc3DDz_G(~o-Z!zJM
zFxm0y(yUxTAse)57*3HVL5aB#b0BfOjXspEc0S2khkIS2ukImvQo}Ccq1UJukc(P0
z2}88``uh#^=bxt4@;^M|sQG}rvV8BMogL)WJ@hH-qOrSo02+x}0-}dSJrlni&UU==
zs$F)?o9D2(z+nN1kL7C{#7*jN`c8VBa#ivUr+j1f`1WZKJx)-crlVvrx=@RwaKtx2
zv#rK~S)n7!{c1mC1Ik%Hfo0mmd{|59xa+f!#k`B7pex0J;8rDnFC;kL@jj9d^^sTd
z-@tjkkL1JFk1wCSeEySo*CN6GBn;v8#>=e@@$NklJXgQkQpMiHbTCZP`WrvJ0H7=k
zWYLk}Gu@C41|)t<k|P$77QQsAUM|uj*l8_qc&RI^EZ%7cR`dAaBz39i_)}S0IY{;!
zZ_eK4%RqqYhw`<6cJm22ResxT9p`J5ul4Y69`Q%Kd@T`nBj9-AGl24tmw^V1cNRE_
zrsV*FyXPi{y)S~g@-@u6=uqX^{7x-|<;n{O&r73usZK12>7`(5WUrt-Jf;Z_DJR^r
zdP0&2#Y*Xo%H?CvjC_-s92V07jc};>vR78#J$=7s%#*z#j(5tdpy+tz>r9pH`u4_+
zhyFzP@*F)@vDYYJlku3utL6F{x_P|jvU`%8^wS1&05?>`scO*lq3l-mBsPTF#mB@)
zIOGg*JcX^UL?}R92H5ln3Q0eyBrzS0NB~NJ49?*wVo55hg<xfq7}jVN{YFs01pkW(
z_J`85Mn^QMT1agt*gx;Y*iZ4A()FXtR-H@o7W2BXUEY+ldSg>eXBZP46jT@WMwmv~
z3M#I-GaVN<`Ydge4@nrBHdmmdsJX8Pj>iz^D|mUrR9F(XyC%vv_h<A?0u9-~=9Y5K
zJg2xOef>?=5)9bUp|iEFfk)qzH&P18f|0Wy;Dn$ajl>LIviO{%fcE<&CQ%Yj(~R4f
zLy`=I=>aO>+vBs^oA!Q*@~)`g<&*K4#R&;^>LmbJsi;Goh3Z4T+J?|Y-yWZ7N-5`x
ztU1$8N5Xa=jScERbbIA%3FanML1t_cl~-jyC+LSq2c1Wq>Z7gW|0gMpgq+-7zFx1Z
z@_j0?X=|0Rc2uaE6xY1Q$25vaTq||OU#n{+*>m-J$E*GM@nZ%4C#ULiNJE0Q;qQRS
zrdW)qAhh2(`2*F_i{I_9$l0H|R)Dw5)G&p#1c{LMvA$7H-}8`=G1^c7Ba;4cQ!4Qx
zyKGB%2IVWLo!~eD+E(9WXJLHkdsXNNpA&=y$q>O`X~NNI%pjjyb04jqHuu+Lwf1TA
zxO>{%-zk5ms{TU5Q2K5pcx~Q8GQe;h(Z~-c5QZWc54!}9b5e!cNsPzHI~NctKcTV)
z?rGF*Jo_DeZ!b<zYlT9G>M-Jjjk6<GT;KO6aV+cvzEfTub5tRH^d}m`WQ;18zCgWh
z?Z#8gn<U7y>iw`|^mQ=X#L@ywN(CGVUL7T9brW&54?#Ineq)+&682@Ff|wRG8Eemm
zRKNLJN)ctNQB)ZuXd_1vITWGqUl(IV*SN$qQN`WT7C8vBsFAT-+?~!;ncwiT3QzfZ
zv*HQW##8AT(w*SFljBa~pPf8qs}DQnRUdr#hB)P#%$ooiz=tPqyKfrrc7JW2v>@i_
zsL|QYH&Xz}E3f7>V5z08IbYO9Qd!kgW{bmaBo5k**00Sy6W$GM#LJZFw08GoTzT%x
zyH;a&f5#KzFa4G&q_EXJY#ujK^~4}oD<o1MDQ{>kBo6=rf@cA!9C$S^1#^60!&w-m
zhTE?p`?V#?-4BqyRpQ@yuOxB?icvyP*&b8+Bv6zA1X{-$s-OktSDA)-c}iK)G~16A
zr6>8Y(-uvI1!=6}n2jXu%NJGjn~XyC8AL1~8ue*J6M{m<##MC2iDd5yLjmbc1|Tv!
z?0|-ac18Jm!;o3}DZ%l8Kp6K<0adgb`^}b^t&?NT!kPz4lMV@@TnuK6IVZt7!aWuz
z89GbBFJ@5#^i<#M5y9`{i5NV(AaRdzf<`Qm5ghOb<#P1G-VWI%iE|zC%GbX(T5nF;
zjjpm6zS}{@U5-AX@4uf}3hq^(Uj$muk4`l$3QGM1%q;=y&p$I?+Rekm_jw2z99ekM
zd~OBp#YBn|JtIQqqJR;Y8E}a^&JNHP(@D9RJ1eq@giZV*vSzYS%M*xlr&1{c6s&?k
zsLtwxKOC_DJ%3tX45+Gg$OhV4;TaYCV<e1*JY(_D>(`kzsDVnwdSHorHD5UrIBxs~
zOhHanx@wA4P0wKhMN$!Y<^ON409<fnvH?TydO4|a?TaO;1+cwjcia_R@gOa<YPMLW
z&LANd8G20@mC__Mr-&gT2c>d?z$ntxQzS!kh0yEopU+~(+GF?ik;6qZ_cf+Q9J6#O
z7x&eH3T_uK2Z{(djVqd<&jkj95`Z=Y+)ErsOM(1tw{@KF9+(x&fH^+tH1c42SSb2n
z&lq3{O+unQ@q(CB1G++l^|ZD1VPjOjhH^LXSRbWUwgpyh9W4s@$t^#mn?$#jEbPpr
z_gVd!+j>!hg3Vc;v(Fs7=N8wU@$L!*Og)mcNPsdL5{<@_WXJWtR0#SA6TKxS9!lJN
zR5M??5rE#tghb1M+MEGOdgPabwN(U5$+a#Hf<qdSUQF;ga-B{BX_ZRlW8|e1XLQu!
zxs%=L$(;a63$_@G*d7bnBvv0C%E(NifN`_3;14yAPET5$-Qx~gv`YC}cP6_|RNHzL
z-CA(b7Vq#YY&)HdMwEIvS2`#AC!k{^EawDtUmu75Bow+|NTNY9L@Mbm4#O$pOgb1i
zxNJmm5(UC+I7c|7=cHhAZl$87eno>SURX+{+bM6tqs5wM(tBCevHY5FE)ce`FVT>M
zV~!>q#ri4%?c}~Bj{_93cmzlqQh9tSk@Z1;u1Y&~Md_Ts5qUa<lM52V$wUZ5;plQm
z{UP$h32Y?D7?p^#kjR~A2Ajixc+Sv-69pFi?vDan)BPP)q`jm2%I$!c$6P~77!t*+
z3XJ;a9lI1ATZcM!n8+nT|DNzf3=xg+v<C-b`;!n{ipt3<3`k*I$@T&`P@52?`Rks3
z|NM8fN+X^S93a+*x3AG_tN&~3#XY862hS?IHbs$Yp*Km)uw{f+k_M&9ap-B$!!E7t
ztNgK$xm5J%xo8On3qC1wMSS%9wdJMKO&qcT&ltzH&c0%{apc-mFU=0|bzhlFj+4x(
zDim)T@03>qDo+`BWl_mn)5RPkte-c(RzUmvfGU9~Ai?P-N9O^JQDuzG2l4i!Rc}>|
zN2pHC<F{xV?ZKXou%mrxCXR6|=pYRSTs6?v#01zB15+g?U>ljvzBD68YpUhc6kU0a
zB6f)&ha1llmMWvCM?uszV*+~+J~3|fNkp%zJi-1sx$=iN8W7kHH=&ZXji=9^KijBH
z#2T&$uoWBym4uK=!YX<km5>d%c)^o^O%f=A#mkClzCxo)G9(p_N2HR_k<&>qL0_ZS
zs|g{fg3}pWQ#*@8;-8Bd#b`h;2t*pH<LO+wt#zsk#FH2fPjZ3(M7qUGE9i~hZAqQE
zik8x#?11=!OVNa@6|Vw3Rmci~D1(Rza0s>G$N-vvow<!D|AkE3rWaoM`kYK}JoNqd
zy85p&{jXx#Vm&z@%Gc25P05AiI(E;=)YTEpxPKv2zT@dw+dpMQ=AY+e`e(w<iE>tE
z+(oL3#XbqOT~Xjd1;3AvxoFecewDz4#g86;*oIx!?N5)z-%vsPy_s@~)K>}7E!Q?s
zVblFDDqlN;yFs78F=S{W<qR9zR=X*c1|&HZ2EB<AI_dvHrkR64Hr_MXHQHZ_rgJjQ
zBT2<^QI4>mOhCke(@>paR_g*by^W6%n6UCg4#XmbjRqeJku{0P)mZXoEkM=IgIu7l
z>!T7OZ&qZEH6WF7y1c1|wCEZw7bKL)uUJnnSzBX>P}wd7`xTNO?ny3p$c(SVT8Td&
zbag!9yOX2Fd{3FO$_reoIXG~ZHDrUD;<43`4P<u>i=R`=b9`;7KyjRUxt`w5g}0=i
z4%ng$i<2^6?U@UH{TNa=aD-!m#&oR3z2)m}Cdd~oRcN`+`P(#z3jEv&iAOX7M`uCo
zf-rpmc4@_^B`iV~s--m20z&O7WOM^-E^`rgzUKSja-BpnPIN#Lc~l#gnDo0!FQpr8
zmnnCbXuI!bMB9Oj#RHLVBGF(s7211`N8vjXj!9fa?Q=SYs7-+mjR`oEoZ+{1hk!GE
z*O>%-LqyWw(rq_7ZqKjZ?;agWl2yJj=~&B;LHll6X{QkEg@OhQwU+7rOQ-+yY1_Cb
z^WQ{|^VBc#ohdDPJBjcGrlDA}cgFSSF%tM+j>k#JGR^?<UQ}Wf(ulmYBMOx3`SBzE
zF?tMAkVZoDd;QvB0+tSpR?t4|Y3ajRVx%~lCJ>BTK_f`OW1C7Uiw3eH4pvsszB-mi
zq6-?c2*R>8>2qnxN&%G&(a#56ghQqujd~>D{HiU3Q~^6D(=??|sybn=tzNIRvLfm#
z4N7-qTfN?y@e|*EK0uA49^X<=R?TD$L;2q}EQKNCiCaS*1}Ur|$0Qpmso^%Fi;QdO
z=YvLcu~S}!87I+&4r=(9KyFSgO4X5^FfX94Ms#tjyp$paC+O8H)HwdN+wSbPIwnxM
zG!u6-5k9j<0d%CoYe<yHST@~jhZxQsZ4%1fq?_H3cOK8!GnaT-u;!+yX{ydqh%R#4
z`h}~eYZzH#_C7|BDqAYnO#}46uCuiz69y!@{Swq990Z4K&|-;XB&krg){@+8LY@qZ
zN9F5-v*W$v-J`~b`llN$HAgrKFj$=6ujJMu62e}wI43kDWCQhj)6*uVYQykXF>_tY
zPR2xbi&y!uK<ZM~<s^CkKc_eu&XBoEYnMyeDn7U6oM<g<eIc1|x33%#G5KRcB7eH$
z1(=3Y8#fT@e?bmd7?60!Q;&gHa_~AD$At4kiATOOPlzk^zZ#3FrYx%J+Me3KyG5X@
zJ-#f(=lb9oxQnP3xn8N;1w^lOFq`&2pY-2g|9mo5?YMnhx|KHl4>{_2$lH8oH^b?F
z$cbL9b_+)a^_m=1=Bbbk04~WWwemoKTH~LD*!)n|l<>){_uU}K)DvoucBiEDv!|V?
ztBRo>p1f_Hbap$9y_4gEl5R)QY}qU=X?9S~X*6Kx@T7WM&R|ql%+4pgjaWkaWHe4B
zI2H!Nj43;7R5BQx5OO8s5y({{m>i3cz`yw{U6`oy=zZnUsPahW=78(d%GW9KZ%Q{M
zcZ6%ma_E(>Eu0A51<5zkHnPc0@HnQKN0Yyqw(*FZ@mvs~)O^H;ESHk;cJQgWzf)eN
z0jf;aiVGa$5z$4WHA`%k9VmjJ%4v&QH7#c#<%-QpkTNAa-D9@JgDDX)&+=CYuD=(v
z=x5eDVDX_|z{|0Gy?}cxPQ)NnI?w^tnv+6F!Bti%>nb;L1MDaC*pFG1;NIgkY4(Vb
z$XFbye2dRHc%J2wF>c&B@<$yIeaA*Q5oC#`P3OJD&dDW2@|L#@z5Ygw7Chku;#5_z
zHSMD@<D7y~&`flGi4lv1GVTjaCK+PsUSSc@o|cogD-k6Q-vG=VuWa?bhR5StGNf@(
z8RIya)=cU2FRzsG8hGUl%)HW;Yt(|K%gmTPQ*ze)&0ZAlB%-W`#UBMbxxPD8Ua4@&
z$7~b{gNY=55o%;{53N8fdyjDycLc<W%Jz&GO7LqnBp^k%c)*Ap9e4$*k|yTJ250Oq
zRVs0{z*=O)E{J>FSy*V2b;C!kunFGktPr96*&Xw;5mv29Wc3M@4uli5xwZZ585*)l
z%ri95j1m%G;Bd!#_6%)qp(pTP*&n%@NSc`Qhy{WJ7W3R}_sq6Qvu|PoQ&156w~j8s
zB`&Zl2(B`L{WRF_icvg?BDuo_QPwgFT@aoq4*PndXnLe&9McOLl7W(IDz?Y%y;OH1
zmM4@|#jH>z%r6<so_eXJl#M}e4gHA>fNbqb-tTR<wj6Ma)32-`t<@82=7ny8HD45k
z4loTx5uZge`6CyWv6vTKiGq_&?>6=HF<sbhWFzo5a2AP5r#QwVl8{)!C~s`T2ChD)
zAK?*L@#RhT{gBD``(#X_fFl;60c4BaMv<^vR#wp2SZEMD_r3+B#JAD$ZmFax%_ft@
zCELQ%1Vnw#abLE+&hRHSU3YyI?K-FdMrjsoU*<T20T~~Y8q`b<I#cv*7I#*BUB0uB
z?XVBJ-)Hu@&?LOJIyc7=CJmPI>O|mfO-AA3_>x9*e2<4#hq7w=5bLmH5}8qupo*Ns
z=_4G$_RDM^UuGUAQhNkV!kGg3VR7uM@?Q+$gP2XmLa)7kx?NGdxp5~%G7zZ>m9L*!
z#WEzdH=_>-bIGnhsG6VFWxMD@S+)OZJv|i<j7;WlfQhl%|Kw#63*n6B_@uQRp67aI
z4xMjlFHPDUnefjniFC4y703KaouPqLMJ2;xAm~TRdL|UaNzBFI<!*^|oq>CIp9;C@
zG$Q1@#H9F3q0qCHl=8KWn43a{V<vbphI?p2Zg$;EGd1Hs`6BIo{tW76;-Py$fU_Ju
zX%bjOwNz_r=wc<y;|S^29J`EUO8x@%jHm;(R&P~Md#cfUDkR40+Ktn<T(C>V;UWOq
zK9+pPXS+KKdtx3we}-n5+(neV1V(OaS=jnxJmI8qMf{1Q3C)RXpK;v9lA{nQ8WVhe
z%4lRoucA!SjkHYh*_Uj7gEyi)gcq4(&gg>$MW<ZQKRdk361+vAPh(*lkO<NOM7~OT
z9?OlgsY*qZ&}c$3C#<D(#{sHv<PRD3Glz*i+q1HAcM~mFaXEL)l8TT5c+3(+M`L-F
zB$0VrWVPyi-R5@Bit9mfyepq)E`GKEMov`H;`ZNy=ASt`d?5o_`|4cMQr2Iw@pn6D
zXD!MEsU0gA$apGbkb{cZbiL1<K<q{A?$8@`vsy~SkYHa?-W5<4#^Pm~B|=tSM+qDG
zIFYd-a-(=avQeQ}*%38$!3#t-yH1sL2w5`1L<V)}v(pKKg0O>J0u8+bty)0_%Mp`V
zVrpZ3xy||fzC29t)tJQz+S~2y9yX76yC-Lz9m(ufsT)rnUYLyAAS@5rfZurtOT{_a
z3;|_|SCx59qrtqqOwK{YY&4EKw5WZ6q2#&hSiGv9!<rMYw1QSp18(uq!E79@N`tPZ
zPe;{+P+XI#Px6Z_(=P*6#z?2BVj;KzBJs&+jAJGYEP9n14-l$qlCaq$1+mgRZg(o1
zKW&J?_URP~?8%>Z`gXZBHVfcU1Fk~Qi6VgwDEA0@FN2y=Za}#@c*`MWBQkd=mnd&Z
z-K`1VcFm=cnQaqbBO5#ARmqn4ALy}6R`~JH^GT14S->Bo+Bjx@ZKLLc@}wMC<$tVY
z;cPl^OlJ%PLF=^<n+P%8XBjw3{>csr77oFh@_ExdSNh1SRb>}RbWtE1(}WuuhdJJy
zDRQh803^_D($<}|8?Bw6e)_3&{I+@gPx-h}f2tnewocAYcQ)!TO1kJqy<S)M+?c9I
zC&zD3(nphz(Yz7!4;L_<Hd;r`HeCAm{As;(+T1UA{}jTS*?1~<7=1RL%7{37N;#Xv
ze&$q=+=S96IOID>{a?P`+ODt*62qliw&OtF#`&xCv`hDbm6Omesl4$AAs)azT3IFX
z+5vTApViKOfg`K3k@p2`&S|M~;qFk&1@s+SMP-Qs(TduBLu<35@!GN|jsk@wK~$;t
z5IBUwcTS<&C}`h4zI{`$JYjc!B-Iq;8O(bsP<a*kV^qGj26`hw${~5?tTgDI=~+<k
zEYbm(roZbZE9<s^3L&Tx%neGrxaP2FSBJUht~k1nS>`-7%|n&WcR(*lq!zk$R05(;
zc|s$p3YiaD;Za=kl7_Npy-6Zt&W=wy$V>&?d6z=bL1|LD1yT}bH%K)l@?&<Q;bf>X
z_Fa+`J#`7vAqFvgAyKxrD~2F$JZGf=ZSmNbCZ&87P>YsbL133uFoG0_A<NZ}qslIl
z@7Id74H<VE;)Gs+AK(-x!+heCG#XKVPYpd5E5#y0<yDA;mCd0FMCA0H_%`Ikd`ZE-
zPhxsOOfTeRgJOl@B*BoDC%Yap0Mz{rXgm8s{=|gU$W;>KuGFv#OTjE=?mn_F1SW}J
zSP#xHIpEbT{MD;bSXd*6?pw-dkUzhVvl`DeDv#LI<XqKmoWhwF)nY7PXMx<5oNBi3
z%Q~0kLi5&K$AKm|>zJ04H3Qo5gc;bicx+bU2qLq*1SY($PsRTwA3{j_3AfR2&Ex%(
z-`eOO;_aTXzee~9u`!7hvx4Ng;!$m95*Zw=4iU+Cv=V4FXNPnoSV=}D8`0<pU!9Ce
zBm<?&*BjfFt<8G9ep6WLRJXHJzTVufY}7ZO+66gD^jV>;?TTRZ_E#YUX*4+Eg98@p
z_MXlxVYl@x-9La`8NdkS{&JC#;sFv4a@P$nBWBzIuTG#Oszh$SfIV3_i*d?L<c$r-
zGNa1Z1>bKV;9(L$TO_dfUlA}=2@@f?-N~7mQ|4Nuy+Df*KQls6HUsp=vyN|?@CB)^
z9N{YzO-4PL8`DBUQKtoFLU#F`OFCL|<fmQ-*=yfqQHfNEwlxKKk!k=-^>Q6@STiQN
z3R$UzXpL1~dFz16cR4qqyA$SuwpOZHPLo@fQ@T>~OUl6WY|qoIG7By(t3q~pS)V?0
ziA~%kW&nSSWo9=%d#PEazUXo@a6fCw-IPj3Wbq8|#^domPB5G?c28V_ze|P}+B%=~
zoADj52Z5ZZ$5_H4RU+I8LK0uPN-kM^t{A6AY}yteQ>-uxC%ch75KBqUnK#nwBLopN
z$&+~ECzF_X$gvEJ!kG?5>x_1@#<izoA&MH)WpWLwpA+>2s-g;0h*0@jp-jpsOD&Y|
zcO1mjbaC;Q-SgaT2k617Y%x6<wjstKv$#X2wozKqsbC)#G>~0W=>XGEdbbp23P7oq
zr_bS(62g-f!NG4rr#U6Dx~(mzM+7wPCaeppMkar~=)ew~)iO&;=-+mY8%dv5Ums@*
zJT~sYbagqhU39c759_-%YvM~~oOay=XTr_jCVHCoRrWl>69^GD5O2^%HpDM?)K&uH
z6W=E!AVC#%h>XUI2@a~&s=Wk!oVegE=tU{tM(RMPsc;LQ+A(Bg&8X{>a*H`en%X72
zK|4D@7fT$z&Tjq4bQ}VoDMuJ$4mhdFi`T7rk&!7%Oinn7Vey$;kH6yL`~1~6>C&Jm
z+M5Plp2RyI6^)8QH=e7<>SdB5DBHPP5C&W4<!jlHWwU>WW|D5Eg{(_+&f3sh$kKUM
zxH`<9UD6c{cc;86{zjEUA9-djx6z|$-5$y|dW6>@CLrEMkIq!Y&o+AW*2{L+PDLtl
z_!)V3yd1DB`u9&7ZE)E@fao}8V-nvw33;FfAq8KL*aWsy(={-HWG(oDEHm?81uYg)
z?9W}IJsd35L$f0+J9(O^k_C-pf(DEQYIEW&p&?DC+PRjBGW$j|aL(9nJUA5U57}je
z`UEGiEyPPR<5<OTxmfU%)VG*xrBoQY+G5ORcHlp}gqv{S?kUkRm9ay4_;hURA?1(>
zBn=Gmhcryr1O>}}jAL*M_NIuBu`eTIx3(psFNaLW*NBnARd2c{RdpXd4x!4^Z52|t
zXr0+{wll(PohaKCQ4H=UD6Oc0xAZu{6=UD!EqCWtR9UK_>YZWQ^N=UT+l9-vkOu>i
z52ZY8*Do3~mgLlBF)Kp5c6DXZ#7=q3dIJrq(8p`>`NsBK^e15mo+vG6^nQeDvp7|d
z6N;6V^i%`z7qolhW#Q^>7XvokNx`NHuFw=gyEQNzm#0-%|0y)uK)}#toQ|7PGkT8f
zlidr^@K+&D$9FF)Y4Tf^fVS?JfKnSUn<gf9Bg=K54UKd{>Ya#bhO4e7DhvZaG`e8t
zB#^xFLs>yqA+*{YQ*X5?X8HMb8~U_kl916DG#lI8F!iChZL*}0XKwFEAVI1_d`PQ(
z@-n0g;nPkSQ5w6vl?_UUqYG!v{n}d@EUgn*OOXL#zUiq&d$UnT`YDf#dTXNo@)>y=
zI1Z`I&_+3&)Ipc9c$Bag_#^?^P$3X~u-K~Tm|coTNNaY9<A_(01+*}}W@bx5m+29C
zGmG3|N(X3yEg*_Uv}`paFGZ$m7Ym1%^1hf6F}Yiy6|D1&Kvar8*rtO!Ayy({QAKbi
zn5lIq$N*rQaU$BcI>6<Xe6E^-X~@wkX9BW{?7<Kl4v`<`P*gu;mpoM+<&kcPr{Y68
zK4y^-8pzX&e|9WqHo_Eq?hu^C`WErXW4sc?wh3N$^q>`!X-VHSoiKF|klq6nL}G5M
z2lN6YYiWmUps8JoCz}DJmz$|9R)aJEbjKXRn|1o3Ei78j1&5#7JyML+Cc!E~CsKj`
zAca74|7KeWf#&|rCws?LhA*~RKRKk)`EC^K8F`Yo?TT33d>S_=Cvy1l%1`ANw+9Xj
z%1h>yJ9%bksf5!HHfm>yI@v73h_k-XW}@>9E^Zya+K)ZV@Z(&HC)k}55O>O}f~ZAX
zDqz4=%iB_LpwI-)O-E46o@JTOPcilndKXNzb7S4wCw&$<q?+w^*w0E03LsN+Ln}^(
za?fg?#_H^79x2Kx09(BRHBwILJ!YrCjgEIPp*S)<fsi!%jm$u#?%<oFp{SU{Lgl1L
z=YVZzOWpV)dO$u5M>LZqllk)gLs{2JWxUBlnHTcPsUs7Ixus_0tN6=G;SBFrSvlu3
z{DL%odKJUQu(N>sYD>6er7NzW{gdOz9kjc@j}A}XzHJ`A&7?e&OI|=LUh{nu+2Aa9
zGiS@MbUgxP5*RzvNn5!pH#Z<pY|k#Xc9-Gp(^%zUScIl+!3AL=8%4DJC%W`eC0z61
zilh3RAiXqmNpXapLQQ^-^*s~mJlm$m(pXR^D4u5(QJ2oL!9Wg!o{4Mn)|~4}W@5k^
zVKE9)6ln~!2xp->8?BQoEjeg%fkS;SZg#jbJ#bdM>pbT=)eqd`>Xol$=^Jn7WBJ<C
z$<9@LAe4cD$d9`0jgrOSfY5%-qT~{jIDEWjD@98VGYc{s{VKn8m^@x%@#-PwLwS_P
zEpg-7fl0O>BiSkc!*<KY^4i_HW_E72kC!slhn?T!rJ3IXyiDRyj=;&&a0hG{K<PoE
zEZRL$ND5xcx<ky5aN-Z`==FJG%w97pQDQw~imJm*(Expri^D5#eDw6$h>u=*^J8vr
z`jeF}6fTZXrNx3Q+Q(K+Zz#<YWQ9u5IMe50=Z#bufu+Pls}ru$wdxDcDT~k~4%ZNz
z@a1DBGzf!l><=LWCLC`lR!-2dR3-{E6xFur5*`TNpDd-SG~3<7lfB);cPH(Rv{htw
zVzF{+5%aQY3}xK`Nt*mnOx%$1WV!jao7-{Ysx9`>hJiU6ky;X`IEFC(4`r+1CudeJ
z3AmmEf<u#KumIbh$q=SjF7j-k9`ZsxMmTSGZEM`BJMu1UQ_ea<fj+3Xa!a)?8vJ|f
zET2qr33-juCibZ`RONlt(9b^HkEQ!&J8=XC#mnaD4)B8kNlqudkoxc7<=U-7F3Z}t
z3|N)A$KmRJ6%Ka4Xt4W>4t9T`!S3JtVD}3Lt20k!hAUp@2V6X2sW0C?W>N0GM-6?G
z<DMbn5*&XK31{HU5pW5PmAbto@C@B$)QOX}ydhE_;<Ww0R;?Xp_f}O>t{-#cGixD@
z+X+r4Tr82k4Aw;?sv9ZD;cMoeNSV0OfKUx;P^v`?IU8mi@3nhf+%k<wVx4LfkI%EW
zRXW|67sw@ALd{b*PfaYf-5?)~MZ#hv9@1!Xl^;=NG-6pokWz)ZM>LgX=51`gsMf3X
z>V~&w`v)^%bV57(_08-HJFWYG-5PQ|!hMoTT>&*@$l?STgbb)!os9KaIC)Wez>;On
zz9JrzxqV3V&q5Gio6)_#K$zV-u1?lrjz$xI2sbLIq-vkrP3!9Jf=;f@^zW(2x_OQw
z*b%igG23A<L+4sw%s)g~w`X!RE~iuFJxICRNwkMy-f>W!4<)VeDMib?6QN>k9SULz
zE=2yp(>Wh2kKR=t9aSE+6=kGx_o~0CGpZ`vsg|!bI5oN{;pk8FQJw~J9X{7CJY!Nw
zf9Qcs6OlIY3C2PKG08l2fST%`%rVOB6((?d3A-S1KV+Ag+e@C-H@AM=s@I0>vXZch
z&qiY$lS*>QDpEh^6&h6nmQ+j-fWBkBB6DPl?>)?i0@Snm^JgpS-xB3r8Ln#9gO52u
zUir;#`(5|fMyuUCIrb1uCv>a2QGK%Ju+7umPN&g2-g*4-UmrizD?few^ux#UW2eZ=
zm*#O+<$sB)pMEH=NI3S5TMLY?o&QB;RTq8wB+x2_t3b`Ka`4>AQ1JnkSA;m<6vbhw
z<Zt9uy1<A=U42QtjyW6Ah>j+sxwlsAiuJbf=u!2FS}1SCi%s>y@z?CCdu2C3mGR1N
z)bpl#-c=_M-*|=H&5u<q){T`XRk_=+34i5XIkb<=l*?AW|K54?CLLf-23vivkUw<i
z3WRlv(0V4xMrgwrBn!dVm<J<V3`Qjb#LDjBgi|j|np@9*dhzT>O_@ndN0rMVO$Y?w
zRQfR+RWMLq#qy2`U3rXf7^0A1Nc;=iqA{jmPC{LN2X!;1ql_AOfvp_0I-!VZHSH<#
zhd9Q*5I9g&*1NvI@rwNC(W4LFeb|Pw+n+u?x$$l?Fir0l0s2V6UU_0eH9%9DdSSHV
zgp9^4h7@J`8V!9MGS<6NG(o%V-P6*Fz7HQV3aa~*q5#EY9EyG=<O<xh>T(Zw*&$a+
zcSHv=cSU!|SZ=c|CIfPn_Z!Gh21s^Kqc0PSY!&)zEr))3Wz<|}ZC*AmldXl5K<Jo{
zAH&snyjH%p26Y3EW*|2;&pOg(_O;VEaf8lbic(!Z&v{hS_tCB<<-4td|Nd!TanZlx
zqJQP9P5W1F7dh%?OBN5%hqBe^Cmq6Mwfspyk~^NC7Fj^!7}Rig0jZZuE}-OZwQ?TU
z9((Q-dXH=L<Kyz<kI~1E;+q)HjrSPdJf1(D28&BBqx<cIUI{o*^DWF3GN3YE$x8EB
z!a?EWs~O%XnBmR8;0$l@+P`WR5+z=1x1bTQv+O*6g{I_eQPx$|Ef+|3O7yLAnK_Ah
zx+&nM7$d?yH{Z70Z(wk-SfwSYIq66yV3b?;^er<ncIDK!qwZiqe*!8!UcNS6xDmK8
zqquRu*n@CBDZAO3rTcAKyU<d1l-0iUMs@o%3f})udd=~zZVR;9OamT6nZ;Y*-GTOX
zJ}|MGU|5cW6z)CUr*Y9`iss{DH~i)I8FluN58#`IP;CYA#zPhGU0I3wRSt^431OZ7
zv7-`IELwfd8U@sv{&7>A{*fPp$_4fQf4Zl;op(EFNsGQp_LVnZdrD^S$WQ-p_v3G!
z4aaXa^JX`Q5|T)|J=vLBmxYCko0bhL{N7~4lCJkoj!sY7jl%9^zs>H8Thi``$~60%
zyc<^AZo-c2h0H%kxSv3vZ<yZn4EIf&ld(Z{;jy&$TFuj9%w|5#9*I-X!RU?NC<Yh%
zJ{1aD&&^AE*gQV_XLrBZ?zEb3&LA<GxuFT469g&XbnG#U5I~YnCe5Q!g|C6^)sB2C
zvR#2X5QNAk3A!BOM8ZIU)g8TC%%b!bGe~suq!JUE2u^QWP}CwpE`;Fw?~6v#BEdVH
zWN&3SX`|=WE4LlW`Gi!h&5<wA$ct<vMT7B4lrX+vQ+p&zPTIvEyT3MCJKl@j9TX>R
z^rPyCZ1WG%tfzbOqbK_olVFGw)4_%MBb)rOsL2;|ntbuuO%{&w`J5)7e|D44Gfm#Q
zLer<m%0;~M;_-4zY6%R??M^^?6h{lTy)O$d4t>&_M9E}9=x4I9eZ%eS*dAsgOj%#2
zUVxmXeAXQruoxf=);W!nUfC?Kmp~PCu-n-^w93ouR#Lp?Gi!gZP7GwO+fdcvsI~e#
zJz21_qR)iDfY@aOJb7gWy@mZJUT~p?exWnT5+{-D@k!@h^Z2cfc{*u}4j*A3y!rxT
zGQI6xLcbXAOvl9C3b%EOYgypNa~S>1eXO&HPsTz^A^|#STbH&%H)p3h&KQ6*&ZNWP
zMH*ON<+;P`y_wl^=2BYt>NHTG<)!=F&FBJ$G=Mebo68IIJ<CV(wzu3JCSJjy<WWnf
z>n4ober+2_@S<xDY$_uvVqX422%XZ&KHtN%-^Kv{lpZbqkZbvqUhDd@2<Kz=7NTUw
zJ=>n?>&+b96Kby_`*i!GGj&|u>F&)MDlor_s!!0P!R+epOsH}1$b;pA915mMf8F?W
z<GLZPRdq!V<~eN@;>g8f`(RGF*yVGml@(?ZR2pnQq8x&Cs(Mp31@S4zz&;f8Y`duS
zPcyP*-kP1Fn0rIcUWa|l{rsBZh!u2va-1I3{_^Zx@>`SUT%B^Os3CB)kzwWNc3!T}
zp?p<NUYc{R&hYhH`1Ud^yI_Mhn+!6~dj-EOV6`rLO#$2|Z?*X8O@=!b%D^hJqMPN^
zs`J;HOwx>}a7Tn9ltqeWFUDMwR;sYV%>E`)7lic)$Wa`IBoNG9Cv#udr>IYk58p$6
z1X%>~F~x)rwFZS)3};GxJmHWN1HvERWU4TNzJhM`-$INJ1b8n5SZOUogSVDmj0|-$
zeHsTyx&@V}GG3j`4Pd8?Cxdu4xu~TN*~cVK(?h>3MwoN@|Fick@NpGY<85vK)`g#<
zAP9&I+oefLvzw$ZNLiXRk2W+fk`yRy8g6zc$tAn@F8AKegET<>6hs8|qY9!x!M7-g
zsJtnPpnxFC%Lf8Q1>`MKC?N3v&FkKoxpViCM+<&krP;lA=FFKh=bSln=FFLXLwOim
zmIlVXjKA@Fn)dv-=AQc6uG*fCwzjT`v%Ko;x{X&Am@KTTID0}dmm)CtmkL|o=|~A|
zJ5ChjU>inRznkJ21vpV4OyV082xss|kCl~UNzKuy-&#7&m;+(%4bBO#ekA5!=%i=v
z1q~nECvqlO1X(RV=%#rM!c)l4t^K+&vU`}Br0Ac1KE_>~FcV8y7Q?@C)k0a<*JL2W
z`jK-VdW_0lg-|e?`cWqw%E7J{Ax{T$Hl#G$(G#6G)?oKAX+v{uXIE3*E?`rkvlC`l
zAHKyftiN)hEbFhCN7btEM2~q5TdZzXp-<SBQ>oLbOgmsw-%XYQxzc3%xfFMC!rUog
zSqyK=RSV@zUz33>=||3e=<%fRyD+x&V@{Zo163{jnhw@%F^zt6_pm0uUZ;NLE?`dF
z$q6&356@!Q(_gtz2KCpBrObX?kxfTYk{tC)_7+x}l~ZxQs`u<M$N$3b!uVfB8X^H4
zuxjDgv?yn-w^w&sj@wQ8nO!Qi3sf}i=)|?O57(j;wZC@3x?0h2u)0=Z$v@|mw)Ch#
zy{+m9Row!>YWac4zMwXlL>$DTbTyg{*BJ#mzRqAsPr@X7s6*S0nryRZs4k<g6t2hM
zkYmY}iZ?V+t;+vOhc?Mo$*1Z}LUI`bi`k2Z-5f)NRS^qn#wZK#q`p7Rf&iv7&M09c
z77xZ@7bf}Q{SV`D5N64DIH#Bl1NS2=!C(&ygF!nS7GSs!6)?Q8g78Ls`>Big_y&7H
zWXvVjcyvJ|4BR3VrjVW-Z;rG0nH8YifS>|!8HXSUZ!n}r_!hiZ>@taCj`6pM8{osr
zH|0lsQxUCh>R+ztCt>nV=y-f>8mUqK4lWxy)T_!knOwnT=}9Re*A%hz9;Wp(ZFRvs
zO7hveY^qF(#4gq5;Df@r)Qeqan%Cu<yb$qu1O-S><NCHQ-HePZ7=eV)B5rWot(IF3
zgJb3|<u^RB64ywkPI8y7ci}3Uqm2?roRE?JZq^MbscZzG$1!`fWKwncBfW`%F*nV1
zZ;jGSGg>l9P>58bpE#?|{H5N&B{av~0>Gf$3_RtHAROTu4}<dIQ^m?`)DMe;3ZRPe
zz{sFJNw)^$qaW<ZnU+k#q=c5sH9Q8GH#k(KS=mbxO2<p+79ASkrK$){6r|ClI;G?+
zeui0UWz;G`Jf#^xvn*{ClvWu@u1IJesO0N_FoETmIDtkuG!F<BKp5F>1QfpH8K08T
z4fkT(jAq+FV`paYRvOe2Ebos$Q#opZ-ho%`CYWm=H;IGrXc&Y?!8%}o)^JFEE9XbU
zxX_pK#W(0xEy6lp8mZzVzWdCqk)#QlkQEI{{U)QyNWu|BI(*xVTYr5`_jq_YO^Qup
z`lUMYIEV<y_yhb&tHM?2?zL|$O%yH@H2D3HB*`stZ<F^8B#uc%GG!0C5nqb&#Ki~<
zoH|NNBw)r_s2D06)m~)zYwI@2Zw>pjY>EK`rH+Z(WJWy>%(3-!CPl7nwxJCg48(&R
z3xJY-=&ZG&RYzciYb|ocejkMRh-oUD7#v*z+Ox*sVVE}zunx4MZ{d=VP?t@+>|%1*
zZ1%U|%x{#+TC&H{)6mR1@yHnev%0(@x<m|BLIC4oLz541AyH52b|$5biX2A?Do*2+
zKs^*5wM-FVZ1#-IZ&|~^w}VR35Fv%a?l(Iu<Yy<RHNwl;UoWaC1z`q6_)da(I6E}N
zmtot0ZFXa89JfY|33lE&%5CjxNl=d0C=v-kb(nD@D~u){@~Ao<5&J(bvb{it2nU8Y
zAf*PYL4>d7O=^XAn4UtQcc$Y@8{OrvtYN%`u{hZLoR%0!o8)kYTX<Y~y0O!jv>FJN
zhzd?YYz~m?fP`gNXdX*@ZNXEsx`kF)nloUdZq#NnBx5qco<`EwH+96lyDcLXW&F$4
zZ7mJ)aHKSm6feLW!`UD@+tzl}k(G2A&Kr;!PSU$DYuno~<nYM}e|-P)%y9B#jP6NI
z?IbNx_%uBe4zXhj<Wa&*XG|N0L#rE_Tj;X^m`aC39qsJ5l}U#~^$jcOPZIna4uwdf
zOLEn{Dm5yf7S%nUKnFv<-iO}3%m>ZV)O%>IqjxmZTbMnQf=`8_IMTquX9LMMfYrR}
zxEyIt;2dTCds>i|TL?1jhIuZJAiZz}FW&L3EWD4$F<H0_&6<PH*mK8z<^g&?waaM(
zFqMIp9nuZmSxvtCrel1^=sGQ(A_d~%$Qb37@tFKFY7YpibwIb0?V9C`;!8Q$&Ae{)
zXf)q>C;wq40j77Zskv$8i7m}lLB&#f??^gT73<ZF*ho5+(hZstkKLSK-_zW*vZJ<R
zT|NjYojNB4hDFAOL<@ZEjU||M(-HvP=rh5nmL^>7-TLg$j@`oQG#Py+f=h;mvsehf
zy5w{lSq)QZR4IzuQJhO`X<F4$i=*{B*L8L^wDhd2ZE5alYHe(b7XZ%%)70A8RomR$
z(1B{XBJZ9V&5h$pdS)t76u_x5WU8w`1UoWQN<#sh8bPKc3q-IU_D&^&0ys5-Ol=p4
zU>%tbrV>dXNHwDTw4^%2%wL*_q|g)3CRaSAwIfb2;9?|QcHme#9D+zjk0(nwQHLUU
zV%BT%7_)Fz*-e-%oKjBn_ZtWvm@x+3OAhY!j=l5Uor&g0vX;YlSVhKyM}p-&>W7Zk
zL$Td(?)pMrYS!s7T;TZH=Cy2y_?zh2No60$xH0Z5{WJD1oj`7U4M-wHEVYJo#u;Uu
z##fQKJpgb(kH4U!o1+h01iF{KNW`IYP|pM)z&Xx*yy&wn((WA-?6r7ZESeh{j3FS#
zd%8Hef<V#Y6`vowdDOsYFotx?H1Lu^ItPn*$A%8*g?*;Q$%+f3wc!M^_kiukNU4wx
zJj}lhgRlggzlxn7f4-IqZ;5I=`YcV8svp$JOYfw?=VGZT#92@7#OoUYLNP6qfd)>$
zG^APLty2-H%^(_y{lk}`g(Tkck0Uq5`U%nxow}^;m}z=jEzW-w*nC@aJxAWcMgX7w
zT@UDM5klSp^4w(92yE|YYe9<{3Ib<{MWQ!e*hmN>6u`tCZEaoydAXSHke`eBw}guY
z=sX)w2{y&bR3J9*pCO%`fE6KR-1+l<=umm_8Q1w#Dc<Q&6cKHYpi((ynW=a`rxzpT
zbRo}7mT)W@MgOO3`Qm9tbL$aX2egxW97(EHY(oUko`}q>ygO_8t){Rm22pxTB(^Mg
zJAvep35%0?)=0vMP3M%8l-3A)=Vec!PjLPe#{wnmtFxI5w5q#H(D#%%OulpJf6GLE
z@&Ftb2Vu=}^gfN;HB2%_N(J~71nLqamNu%o4#X2uA4v<K4Vx&bZ_RZ@V1=dG<X{g2
zr`e#kqpPX0wyvwKV;wLpz@MlV1a6{J+p&!}Tp`YPpZ99iku;hvN-Xau-nB^U24y{(
zW)trMrL__9X^0RC;^jIk=?`PzYRJaCuOZp6_q8e8_#*tJl}E<IOQV%XMl1M2S)-Gk
zT^6C)%i^WsWzni=1wj8+hRdYfRO*DIVxz>C_hE|Nh2`*6P(jq*l)$PCzLn0MBrqSk
z@ljFWaR6dcwvp*?*%JjM1(lVOaa9cd@~}>Z7J;x7v>>>a7S(`{gC>D&Fs#Zltc*Zp
zEC(~Lujw8KIL9w4Shu#LqoK8nr6Wdfl;#Dwe=O#tGcl~hmIoRiG^a1e5KQb#ef=r(
z7W4GrKeysXMuiW*aPV5KS2GM~bvl~mfN(u@V8Ve(9uHsh3xRIvj;>)Zf4VS}mPvx5
zpFa3*&vl`X^mL`7K_V2~yzb4<0jf`>+$!@aH$nRuaG1N{OwfB~D#^WCEU82s?9gP?
zn~6c}eO{t^9}h>C2CLFI@6RSTABeiqosiT<T##@Q#}|iwkkzcP0OGO*5SaehH|^l-
z9@oH8KC*?#tbj_HoOD@YWHoFOnvoNdWUo_-hHY|{sNYdS$iy)~5Sa?<DPslFV*#p!
zCqt|cnT){#EvJI#yWWiqn)PBc-QIo=^Q5s1<5Uo%66KM&Rrtj{ko$64Lwi`SAl8#w
z^tF~l<pbWk>YEzLiq7|#k8xuh#VKv6HO?1>E&CuA5%a!JxhzdwhKl6EDPp9;$9sbA
zQ1+2^!sO&%#s1T-btF+ybC|F)n;64O6eLu)`AdP=Xi3u1YPyCC=@w1I?4t(PF$HwY
znMHsWh#HlQA~DsIYE4+UX&<oqAv;Ed`2*tQgR>2L&xV+3gP#o#px!k#cE(HMB{a0h
z0)vpbNJ!oVjQt=S#nBD89v5}AemywMdmld?Y?v2afQZV1EyxS*fwxEF0vUt|`BHk7
zfm_SxkM!D!OBz5al0%-_W{u9DPuyg2$I3$VtJi|sV6Z|Uh4DU=ECfl@fZ%8^L_>5|
zu>41a*HU(2`J3I0yZo@vW5<D-&3^8NS@N*i>=&*_&!NG*eb_)Rq_>x>+$vaWL#x(E
zuCmN*rqMFfNDFbj3B0`B=O9d(_{KOKlG4-F)>F5-p>7S~eSF@UdnWi1F-T!OgoKxz
zC}C%th!+46Mi!LjwpBfiP0bBGt+g!;an8ww(81++nsOCAw-*E9_j#tw{#ay8XhP<R
zd|uzcVaaLPsgdIYu>$a-Jm+5C?FU2)`a|Qw9K`m9j+UlQVhrU314m#2%s&PkQ|dqn
z%C(@vWyH%)4_#=^02m&C7NjvncmtoM1)}$-+tBHB<7n{4wL9{>pOVGshyw?mM2rKS
zW6TcAKNxH(;c;cL;{;hetKeR(kBrIK2@wL6-JwtBy&Lj_F3Xmu0yjE9m<(j)CdCYR
zJ2eRj55QfwJ=HO1q8b7G&EAxc(t}Ce0_7R$ouu10ZSwW6DCIoyhym4J{KWU}sQ|jC
z16OJ`Otu+KhV5vn6j?9u6e6Ll!Nv2l%<h{)xa3FT%uwx{7v#bBMb>iX9SsoiSXVqr
zGtIhLKG`WDO|pl3Cpq08qLYoMS#XdmVA0uGJqh~tBslu$qgf`&1Sr9IC`(wNDA{5X
zh>SF2R!`E#MRKEe{rDY;+s0R<I3A5<EZN8c@picgUD)#1%5g3Q@qReD<6*3+&5RQ}
zrOz_^V_Zf4d(=BT<%tt_3mv~bmZw2!ZyUEyEi*e`Gb5IkuRk()8z!=r?u^FLn(aU<
zItWLVpz)P><G?ixg(z^wUOKcxET;u|Rj>15y3`+??d_x&iHGYt8fv?mT33ONhU3;Y
zbu`q2`lgPCx~{g4riRYxuw+yQap5K;p0+8)a!3+M)H<OSaEg~{ft<qZn;6iCU~+m|
z7&fiJ>48k|>?|0zLIp|zCAqa=aeNmLM_1gS$1*fGT%pO)#2))RweRh<7<3YauEi$7
zHa>Bk-sW7{o!(}Af;_#=xl%p7&2S=KTtn_M9j^qS;o#JoAgyJ9ZUb^7Ej^{6Wg75n
z$(+G;_(MBbe(+PW09z1_hZnGjWp;58wc**V+2|3zGK)J(K^$5n{s$lE)hr`~{%PtX
z4;6NmD)^cU%2uqULO#D}E*G~yz*skM18jLXu}EWi*(0nyycLql??e|yXcSXsf1Q~b
zCHJ)Zj`vWHx=5Rp+27&@oD0-JJ@sBK5(Zc8^!4qDc)(dcm)uTWwie@>re|vsW@Z#0
zuY`tUlOQyDipnuT655V#kf=&jur8hSbsiV?-ROr;kNKi^%p~+(9Y*((0Sm$=ws9KY
zxx-xpX6UD~%aGjB%YbrXIuazt!?6Xxy{vjX978>qw>ywrs5fK?PW(9Y6b*M00Dak1
z3K1-$bM~c7!SyamEQ<`qsXNTy;)ZEI0T?Pf*v`O&-lr%0B+B&hB-*tEVjBhpQzKsm
zRo63`<3P(mbH1Ig`@5Jy@Kq)NXY<GDk6lC-6h?{y>#C^I=f+M7)Uf*Y2n<~`y3?Tx
z$33P*RUi#5N6qR+KURTlMja`QFJPM*Z73`!$^DmnBQ`%`^s={rOE8&|4iI?kUNe)*
zJ1Mz+KbIaZD@ybg4IF%XntIYeuO>NZ_$G+-5ZyCZ_OM_ME_{<!U}V%Io{#f!T|pDG
z$KjZkg+V8G^Nyxdx-m#;=beEL(HD~?K7rDi?IjmMF3ROG7ri1vRhPiM<jzRnPJsc+
z?HrmZzdKvxWgj>J7|0Kfzp>EoCMVLDi%n?nWmaLMhX%?_CH*p$!zJ&rOD7$4@xBF;
z453h+MiE46jec!2CauyG>@sz_ZDO2-KAbEBDn<$*c#k4K5WmkOzj|fzn@hve>zRd}
zZ9;FY*EUmGN4Yjbe5hKRkrwb9>8K754UrXWh%Hdul<d{_)$w;*EX{Bd_gvX}%PUJ3
zUHEzj%XZk>IM33UEHT;Y*q3dMwZaN)0^0B(C~pkM!=Pj=W9fziB9-GMwB=5GU2mbw
z@~LRM3b#EEbdks;p0Xjd2JV2inHtKmX{F+VBst?G4|O3f>j~`e<UEgLrjqo;RTzYY
zA8a4d+m@hMtIiZ*GY88cEu~^RQb2J+ld>EmE^dS#@)GFi=4;`HkE=yE6sxoL9Am>>
zvMmk(3&Dv8NSS-Wn-=tUk(DSFc*Cnvrj)TE?>1=`FhoN{a&S3NIf8t*_2V>-IZOn#
z->6iSa!*Lg0%FulCE@hdkOJ`ngQCb>>ZY^RZIU9A`RLX&xZNzR2wR&L=6DLak6w{*
zK#3Tic7Pz(M<N>CK6Mx62vgn5jYvBPNxnrp?nV!b4p7c*N59jwiJMsR$@LrOb$dV8
zFNiPbW|x|q7SPEB^=>=kLZYrgILaLl)N?52GKux&T8XTK76w)2pgajm;#~RlLi8P0
z&S(zSjV$z)aRc&{r6v@4H>vP(SIlW3C6)AgX!T-6<sst}{Q|(OMhdhDFgYTD>f7qp
zG<3*Q1Mq<mup#*#+3iDXtrWQ*zh|{+4gz0(j9|Q^KwaslV$`q=HsVCHmMWzR`w$7y
zGs^4#375t^9$hqE0yg2Cyd`$5I=UbhD=G7VbfdHA{Adqo7EDGBGYO+Q*=Eo)q`SU&
zD1X1*wFiy!STBO>Cg(TTW0+W7_+q;PNG78hFcfMug;f#5jDtYYB3^!)Trb0=6&E!e
zk8(iBs%ixX6!|3ctgaZ&?P^@S;BhV#+SP~MEZS(b)_@a|CGo*>Z(60P2vI32gzawB
z1omC3c3qlv+li|tVAbTyJD0Q!=Q7E6P8|0T;}FGO$1n)9#=|rz3!OM9M)^|Duz~?b
zqBIfF@Cz1u(caNk*U;J7)Vj(G=LBtypuMB5y`iIP9cXN7W<ePE?n9lV{^FYTMP~aW
zJaBq?a`l~eRMzYR5ijX%k)*>lqilpI4e3{(iOX41Y8!V#4U??ZVeYH4VQQ+W8&>Vs
z&7aRbqtkzP?kSS2^$~*JLccJ>BDWg=C=PyjLg)!7+cpervs+YvIEV|YssSdzL``8$
z!?K(YXysV9avA(}8z*svh9hfGNfQVp70MPp)@cn*735#v2%`^@|DXXD205)|g2$3c
zn7er$NoyJLJTWI@Y7THWw|PT7-vG0Zyhh>H&?18htmy-#JUs+lQyZE4q>G}_Uto?0
z-EdQ=l3o3U(r=(gp||E?eadUaxYL%h3pr$9ShK~+D!(jX-!mby&yR)iK&xFGB+-Sv
zT?%JZ+RPdbS+xhc3PU{R1QO>U^>AJv8DroOp3H5!(2McY9sZDl8wBoNrA)RuC<w{d
z=Sqy*DMkGW^bX`nK=(cgF;`GNtnxQ;R<TQ4lGP<v0?_};d~~8t9dBUVNj#}rWDfT_
zx*W)}xB$fcf$&Vaz<?AK?-eUx7XcIyU(Nv(t;_diL_HD#Gc(%eZY4}{e21FnDGix(
zQhtFrF)n&BSw8T2fV#tlWMl69OgA}jR=SktAVJ32V1et4#x66@qb~XK#UNyUYa*Wm
zHK$`#?5{8C)9>ArDo_`tSWC)8MaLA4X0sa}B<=XlBhv1Y3Eyd<<68>IMg(ukHw(lG
z=o20)augYFWQbd{-ujm*{SJfxzT#rQ-GmahIWwkiIP?w-cgGC1A~>_sQbV5fl0g<K
z`kiphIH}hy<u=q|!RCp(uq7nqQCH1mboR~f7vxZ?V;e+8BUSk3eSxTW)Dbw6pBi#w
zCL0YtNd7G}j*+Ek3+2X}0ws>?sebFE;Ze$k_QZAE9+fm{m6U6}I3bDjg^>BP5Em_x
zyIBkZH=PUO{dN)`*Fq!7rdR}gyUO9n*kYFNc+#T5c8OHt;Vu2tA|j-}`0o-E#k|FO
zJCV7It^p@Lf2CwZVtmMDrF`>PfGs?A;x<8%1L7jwCwg+%3Kc{jljKxcQY#B`YcS7-
z=Xl4rcujJ$t&Xr(2N1hC)PjO@Y2exVU_uldwCih96$I<2(Ijy3hsp{#1O=ShehY9C
zNT?#*cQG0?EEY4<O6)MF{N$T1M27M%fodVotBPkdX%C>Tt$iJcj4_zwywAU2PEx^a
zsqL!67wmGt3uKCXC~_x6L0wyGS3_%;8e`Q^PYG}~fVwec4no8=jadUjENBE>BcMuY
z1h8nnVusakdlwd(T<{p@be%`WQ2UM82|FJ3G)HdVxyqsmbfgCwSb6*D3wbMu2}Nhk
zgovp;OEWpJUO>H>(eagH3Jv8cFwICZ1;wTFFf*f6OR+=SGShma>C2rdC?07KRN!tu
zXRCCWuav@9<zYkasU^};I74E3iod<BRvCD{9apJ*VH>Y*cRf!o<xQ5I+s(+$XX^H4
z=T=M@0-H;kwg{OG+~^A0;Cdg}`2jm>oS%CNcF;V}LcVx8u|oxf<gt&-dz_EZ3sR>-
zPmgj+F>HlzvV{XTCf(*;^~5(%)ywoXubN{Ox;<c(;d9vU!ktJu&;&o_!bi9@lWqTz
z4!4*?Fwm$d>Z|}R8@L6qQnR7q2DMDukHFfQkfSZ+iHD1pa51F2D5c$?8Q6)V+ne@e
zOP$%|lEE(T(u($aUPpktye-TZQ13r%<l*JtMW$zzCg?p=ca0Hs0!}o4_6!-MTbrFl
z^Ajo<GnL{m295*M8R1w7S6N*$FD~rVT?@C5lgF|`jpneb@N3cVQihV{Go$j)?Ghqr
zX7@euOd#o9UK2<vKcU#OmbT*?{HcD5=~VG1%N~2+zsDXBr^olN6`-^L=7BCtPXm&X
zYYiMF`^PruhXy3~qi1nE<p3N3i>g4#vGjC{TUgdQ>;;;Z12UNnX_k;HhpTR;k}l|Y
zr1a>>7!PoqOB+@eP^+gI8vV`yTl+-D=J9XG`Dz9n_8Q~#4o<Qx0~`nC{SNBCPYxwr
z)78<`0$OT2yBa#yG_3Q6Kxoayj&G^DqIyx)xVM5&WI%BLeXmGHn;x%(&n9TI^nTso
z2MO^Os)xongRe5r15@0qxB7A*D4Lx(yR<h9;Fv;cGQ<UZ5&NZKQh}|ErsqTVO_T2W
zR(4H<@iLV~OJ`H5aPFdOvDbxFAU>EpRRqUb7=)RNEl)L-J1Pvqybq1Us*~soMJQh}
zcDxsp#Xam5tarX(yJkVdE6$nLWZkVatEHtqAJRpZ_Q6pq+!6T!2<&XHkQC4rASsn>
z4kJwAG%VWSEoj0PPi5y=pXA0?KG;kY5gndzq?CPE5ZtAX!d?~6=DYDYy?(n}bsAdc
z1##SiiI!`?B$&mHl&|`(8X}ocL>V#IQxTV!D+W&;Y6ra77C;jU2+M2@V39(rjiebE
zI~GWdqGHK%FU!^Azy*I5xw@MNytrDgzv2Q*>T({&3Xb2&w}U;gP%|#AfbWz6e}gjT
z@5vc~HhKK{s5BSV^?{JPr=kZ1so(<f_XVowaMH+o^^VD+xoM9SG3*i_D_m3gR}R$5
z%A=?AM?Zr?laP2hYiLZVJH%vg1JH<dPq@##eq`z3xzJU@{N<oi_K7$q7#`3Q11#jU
z*G%aNqQGe8d>nHc<qV=AR|$HJ4X9~ykht)}Ak2UFoFX0u`P?CH$q6|^I@h%{H?^)Q
z(ih^k`G407;wo**m4#^yFCS2lQrzQf@hOeG8`kdwM+*pYwveOob*5nukt8SMWrf6L
z(hv+mcEVl?+%)=4QktF<$4~Gfc&?bG_4evc`c$DLdDwEQT$p8t778adM?)(CA7q%+
z#gh0*G$HlUhqO$Fc$i?Gt0Ez|>#-pZ2Ta>(%Ea;YO32*L_NMg2YV@$ZOe*Hq6c?XU
zdN%?yvO8cVr6nM!VdSh{Sc7|*?5$o{!v+L>Mf9ph>Y`?h^kuvnl-8N)jA=vQo>TH{
zW7d;!O~kFhEu(NKkC$ph)RvJkessqb$qZZ)hds>0zG5t2hi>**q@$FX#Y6%wH1d;T
z&Kvqb3}hiVx?G(HK}OGAjUO*gc~Eo*dY9wK1T!CknEiIk2+JzqJvZ7o1`0?nbaG!D
zmvsrrS}_@y2pWy5+v`Zs5%A9i+_OQZ#EM9{L@%H#CeIShtfS6kGzi~E*_BXFCYxBP
zA3B_M%q7<G1{3`zi>eUd(|rY4^#1DtmHEP0LLHyg5SU6Qh=PF)@z+D*{we6jb+cRH
zVwqHK86P5rCYV87$m8kDghTvp^bkB6Kk?2UFV~7ak%TOq9IKX&IagH(M<Fqb?aRuN
ze>vDU;iaIEgax$`n1BVhv5RuAV5028lq*tu?}1D!!qiY;Zk2$=wCdO$QB%7o8B3uf
z@qZ-`3U4)tIZ*hq@>P9L<vkHLg<YynQOXm2Ix?Qj17te2-3df9lHTPc+zdij>xf;~
z&^(6)S$BooaK##NZi>BP%(%c=pYV(1(D}b$%1z!@DcDX~&!G9u6W1N&UF@ndPCO>`
z*%<ka47q_Y2z&4ZdqXan*YuDpOvnmZ+g@MW)j+SX^~?}(LQ~gju%=-hsBNtW7=uC_
z)iO#GJ!l|K9(nt;OPt&aUF1~{)~>sKPLR?~k&q(1n;>OUOqu<idMY&v!Y$AlFq0rM
z*0{E{uC=zMVSPn6S!a{lftLfjuYC!#@uPqU7wOPD?CV3^IRw|*PzZl<U*HSr<mB5)
z61bvH{G7x=>g+U5Qnz9oVlio<#y%q0X>d$pJ`p;pypd4quCL5=UjFApPrjrr2bMv%
zs{=1@X0ChUTpl9&U%*6qgqsv@hm+XQy>^&`8sjns7lRIeqi%6X71sbuyEW0ylgw9j
z!iIfZxrHCpvK$zuf;gV{!W@5+89u-)XUDy`KjJ+g1Z+zsi&s3%KFk@pga65M7>3R-
zs<SYDeI^};;T9J1KBOuwd*LI<QMAB8D=gd5dLA?%7DHA7_&TB#<V}2Gvn|N-5a$ks
ztb25l)4|a|44IAc2476%mKnls$~$H-J;DKy3km1Q4b!FKcqo)eLCsj3X>+f12t2+k
z7t9ewLByc|yVVCY48p2s+|gPe8hH=b$~7ir!PYf5)V6}P?MQ3^60IVGD|}cKZ?xuj
zci{NHaHJId1xFmd?(p>C$-`G4-a@68S6|ADQt6*^d_4#ANf1Ibr8B1GXodsA3-AZD
zrIPrr4}?OW-k&8MwSi_q8f~7<P~+1RKwioT93C~!Ud%n2<~PL^$~;gL1X-@rVs~<m
z#l?H<(f@vXbdN3if5sN2XG4YDw%krY&Yp|MLnMQ=Xl+EmQ#DicWk0*ZSQU^|8?922
zAmi2B{)nr0L;}Vm$C!KdCuYmW#Eld^1%pl6APd$_L?dYj1>vL>kF;S#j(6l@%xN`m
znLjyzI+L+-3j(b+c9jxEU+0Svo`7}BLV^8HRF-XFA;MDm$y>GD#&9v+`mZo#NvgUD
znXZAhC;*(Ikdzkl4aajji{1JvCB<swR#9NrI)}x%$K7C;-NefIsGzWJ^%Pe~e7CS+
zFKo_J^@6ksKE*aYvCnS%vIggo@K!6+h>2uZ6g0;uq7ZzM&j6o&b2Q8G0z+ICD<4tl
zs_p0!ZVAGke`qB0*Y#pr(4wTdp{t=Dbgr$dYv}B3T-)5dE=)4s=#H+X^wYSVHXAy%
z8PrYut0$vnZP+jZ6IlY+eNC0Ep*yQ#Dg!NBU7jmIRXCPQhJTaMXCeivuB<Lg;PgYM
z-7=HegrlzOy?4t~uR>sX=1ak0Qku>YmxK}11p*&M%pK+z<0k3Od#(50ea(ebCUx7f
z^j?gDvVJ{RKm}mL(v%JBrg5UB`Py_tIN^xyfC`fHpuw=S7PLVcIvVj-=r*xelA-3d
zRXr;kR@WZi)Yj2cTVLPP($G~K4@VlCYghHG3y0izGT*g*lHEXJE`vh&MJv<0#SY(I
zH-A15FBDx6PWDCz%rp!u*7Jog&z18)l64>+&XKbLQAv1+tBKJc@+FSm#d<bOg0Q`5
zjP_!DQ^aj`6BmB#+rZ>-lc)4uf{=GU4XAHi4Z3@A61<SpIT7T)n1CN9s0`;V31&5q
zVYwlQ4rutCNHnQi41QoiGP#hVO1@-+=f9Cx4t6bMq;g(MIhhkU1s*@)0@-6RcCg~q
zRJF9+<U&#K9q5X~H^Gs@#e~1dV%*^o5S}Nx|NQi0m(X+S9c0LC1BRewBW;aGiYstD
zdG1RSqZ@Rdq6OmNrO}FLg>Xbj8<EQ_lgqGMx0;N4GcgFQco-QEjkR@MZ5``+j&JDb
z#P)-~LR{cQihbB~a0H2BAsW@qF2jeW*0#43r4^0FqR<$U4OcUj<co_g59lO#J;&Ws
zm(TSX<ayn7t)JA?UL2)F9WOPW6Ok$FkC4-SSD=VtsAt|>(3lt5Gy9mlp*6HDV>H#T
zELP+(*F*Av!;d_WWlenQUhZF)wH-4}tx74xXM#7$H)=YyfBAv*c@VH&w+cE)$Q?6b
zro5v9^hBX)Aq-DUr|Q`6c2-nUQ2J!=NM|@4PZe{dxoPEzEzMOph!B*QkKkC=l31)0
zT0_vnfAj>5xtOgliRdNWu^I-b1O!BX^ND-GCdDn=Rrm&D$HF&ghw1Ib<Qx;EL+GK(
z(@{&MfaVZW9NIbQSnCy=YDy;jZA^xq3ko7+8Fh1`g-8aZpq50FDbB-aX?hC%urpeM
zCL2<tsGB{GrKhn=&R>98E^MAv7U6i>w46ft85NsyUN$Xf@_cMsPJukEx+*>|6Ehrn
zqNTNwt^o^bNxJ~jwRnZ6nt(1Ilcu8AqiLk2h%UAL5It>ZBs-vHn@0P9rP;6ms&>j%
zrkb`gPLn3F3~(9=t;C(9w*^z$2uz}u>jpHd5H9YJt4uY$Wt=8WZyDfJ)4Nb59@H^T
zjVp@?ikysVKsk9_kIO=9w8(+w>P*wfdM!-V(0UMe^Vs^k<{w<COz`OX3X*weZ6-<b
zKyhb1$bk@-JY+Ht+0e;3Z|C$upbGN9BCzX(qeg|ExygN6$89k9xDIEYuuX}DAmLtp
zOnqb|1(<X~SKa<REGd|f7&ay&<~w}(h`Ve6y3uFiw?Qimq31k_q)kbIdinNP`ND+}
z)PLqkf*}#QsIx}`DCPMh3{`mssW6uH3=e^CU8AW`=5;tb$ak{~g*D|ojAI;li>8p;
z90#Vg5x{K2DPlxlXMJ1bGBNTWSCVQ>lrL3)d;~0tJ^c`69_4{gf=gwCO5oLerf3k$
zsx3_U;tQ$JwD53%y;vkS`>gmWV(B0fNSqx=seB9`RB@two&#PES{KFmflbK#uWoG;
zk|3L)f+XZyBm_x<+C-KlK`t~ck`Q2F7byw8_0<$fLJ$cgNeHA=K1m3wI8jN+0WSxw
zi;{%ECS*xaw>Ei6@XU3UC<HI7^2ma`q)-ckS86(?!M7rrm^g5>m|A)8Q$Z~d3ThQ7
z5&oK!6bU83Toj*(P$(J+kP5lIiHn6Toz4-2qG80bv^xC0P;pSXz$ICL9@ME`p(>r{
zMRGrf-c<2D4^rfGnHKr@TPj~*=XSyNg<o>~s0I#DQNkj_r6S@&=C`VflnM-*lMN&c
zOa>_M0>uCdwSpvoyqykLjo8A3Wx#+5)3K&n48(2+NQ6Y2LIp#tR#?Y{jD9(RsW}x0
z+5RLwi20|03tsu+Dzt+I%!j3F{EJSv7XZDRmz0Dzi>Pw$!ITXF;G*1%>B9y;Re-Nw
z8^XJ%XYMt9)Sv0ABsw@*Y@n!1d?qI6sP{SWRY$el_Ug>6;rQ~Gj3iRoB&>&hS~lfS
zKe2G4RF8)vO9E!*I0)8e9QWcOl-r>ZYopLs@NpkfqNO^BgG#U*=-}wM!2h@_<6-pb
zh$G6%xM*SixCBt{Nvrn2!x7yLPxr)wJLDz6Bt7Exknzch$XI<tW9{1JuAW*PL*CQg
z*3mW2VsnE_cXY9m-QD=qlq&O_MB54PvJ?@{z=@+YyM-fT4JUSW)b`Z1wKg`b!V*Pw
zoJy&1gF`dB2{BW<scVz%mQun!^Fp$hsc6@E46HJjeVcMD*rsbV<CANTr-MRZ+QmJJ
z#mYi03fJ+HJhnPlbZNjI;<5nMbfglr>}=&4I7(ST_DS&;KxM^vt~%=VVrAtx7tlG+
z-Gf3@W~QsGGscvZrjc%3goy$yw?P7e13!XeP6|_4>b(~pao^~>VSi#whlIY*a}M%G
zSmcZJD85Gu5My~cDyO?vHBvs;D99V!kT1xh_^v8IjOCRDW*@12WE;X^bx%3hm#?e-
zE%Cf@2NUkB0K?Z?wX0=Au(JjASL(17vFMndg@%+f97(_ojip=Y2`5<S-xFEr^9`fb
zb1s6aSJA<7l7*2`4K-)bAU)esV#hMr_$%RcS4lV)>o4(&cxnq5l+=V=S|$^&qZU26
zs!Y##ctc4LCzotcSN7;G)Rq~8R^N3ooI$=bbuCeG<%s(v$1RZIoFqmz;oKuD7FXbI
z99eN>B{_cUt}M`FDhxggMHOQ*wM&m=@R}pYgi#wNDidaD;U>(oVoegY4U@wp$!Ws`
z*dwA5;}6!!83jS7Vn=hbGzGy#7F3F}=To<kQW&^?kSyN5aIkc3#(|{=B5RLrUl5er
zJ7__d6jrMNmE9#SUq2qW#8Vtx>*(sCB~huK&aT?7wViRBq`~mkN%C38+PXrjaYy9?
z79rutnC>3W;K?TSDYwC!&!o(&+JeTm2(zvrlc+FTA_Rm>&$*B^Y$Gh>mU;u)5SkqX
zt&23Pd$2^eLG7{aOv7?6kfy%cQ!=|j$?nkzhfSwO2=L<-%HxdkVZ#hl;q<tX&h=(G
zqggE2%%O`yVR8>8a2XhUP@zw^Y{mM}&v$&WRx_!HW=fbwQVD5Mj&c;#;s6iAk^tsk
z>e}&%0n@Z07|{C%ARlwc@ABCE0o17IlMEohco^T_k4#l{zsBiN<s9|lsX6N_t|<4`
z7rM>5q#F|T7jhN4v_ZrGVgaecSPylIXy78^93iz1Pt9s6)OfGSZ<#Gjn1-z<p*2;_
z(xoMqrrauI%+G|mCylZKCcPk-{#lSikvyOiy5u74=;~>yJ+W(bM?-CWr~e&xE-HPC
zxzqxh*&ABxI~r;`+gjUKchq(^_(69xG}oTkP>-I~t*-4*G)_w#x3-~Uom@m35G_%_
zfGA{n@*@%m)ITH~lH@^cooYyG>w<@*wr+w$Qd^g6Nc<k|K;f1|WFhd2w@Qj6K~sq0
zgyn2^59=ODdylEU_qd#~4H)A5;Ef^g>UClVg*^KJ=Va_Mi4mo|-fima?;s<q5c4Uw
z5thfW^7{e!l_3Y!K&AUMJr$bpvVblPrrVMyhMUBt{Ni4*w)XbsxPTqLz%&`_?BiP;
zaO?4Tz;;XvZw5K?!DFZ;IMd5V0(a!bX_`x2mFI=Dr)I$1yGzU?P}qjJa*5z0g~x4q
zT^oTSF_l=Wmm>n&{B<-yO#T;S`ja&w6*(+cLdC!}K~T+k{K7`JfeoF7z%YlIUIQ)S
zR-(JQA%Iw3AVP6v#$kDxn6rC1CXXCln}}uM+EKh!RBPMWG$gFVE%S66baXA0C}o%q
zqLzOlvu6eJ-(VN*Zd3JrVHxqW+e*!b$u^_aG-^-D;CV|neGKo_l;vSz&{Q#H{07HV
z8VjCFK5!o(C{G<n0_w-91VNUC+H}~h)`f2--KAKL@`<aI_<33Pu-V?H8%fa7g_p6l
zb)Jb9LN7X;S|eGT2#l(pT0@;CdUg4~B0w%GnD?<CI{2o`1ePST50%1xez3>6?m5?$
z5sf@OBc-Jh>5r%^<7|FuSY#0u?X#R>?A{|H7!=7Q9Yw}vB*ngF0}Y!@m^Zn!YAQ2g
z9%#|5LAvu}lP!0|0h+WGR}@q5D=QEvt_r2@>wd9vjK^PSaXO-C11Dj<u)WCtQVVD*
zNb}yZMA%0aL8-=68A#2^gBwPiL*A=Yn=EY2#4i+rR|kO}qap<=53>D^8reJ(_mofC
zImua}!qBG2CGe35VgFmY8ao#YsO8ufI*}8`MA&H86PQ^&ftEu*>RQ%t+WLq-mn|L=
zp%-wJlFg4k^Bmhqkwq#CDYDpa0k!&#o&RIjjBnRJ<8Jq>teJ_~Kz_^8vxK-IP#Ht5
z!ZIzFJ;ddq5=&t|Y(&<#XQy!PMr3~P0?Rv(B@F^ha6HtapeTc_l+sx6+A)_2S(E|E
zMI#tVkmfB#XFzkrJZ=o|`^8q=C8nY>#4h+0m140D{%ftOKAk^1S%7WS@2DBMOB;k}
zE$*d_2D;&xjEnIck5)E&ShQdkEh-B1zn4Y96k2US+(IjCEl{DjLzHOljxJ6;C!wS1
zDZ4P$jTiYK(538c8x+N<>RD`xhqb_=d;c5So`IwC-%uyx`_sx1&lvA+ONSSuJ@dl^
zO&D=Vr)`e-FZP=iH!<Wigy;m|Gln=tLM@^rEBA2x1TCUH96wo(2UFx!D_(j;v&y%p
z;xnK)<4Q2PT*FGUfgi(Zv#)&f=M*!^u4II%V1V6aq>+oZO{*(qPrD&D0ri|TC5N4D
zr`o6LvK|iBRHwQZ6tIjl)x%xQodHVMcg1mQTUSFhXzDjieE6fQxs#XdEIEn9@_j7?
zX)~$!jbdYw>;jP7V2%l(q4lO90uTjlmfo)$ID8e+DLRtIN9Am72quAUkW^yp1L)E%
z>aMQl&Yrrq*4Bo)uC|Vzh7+4QyE@~MF>(jzxKK1GCc!)GXF~@h@WoWXG1Cdnp%{W@
z-FBb>{h6C==&*NF#>FWYU;#`l6!!73?1)dvxE8?0tbY?qwj(v0(rlaTKNQ()tR}(g
zPOHTDFlE6*87m;pI7d36=BCcBhSr7-bzULgSOkQhj)&#}Et$;2m?15h?82`I{XCAH
z9&Yqgj4~inFcr#6{79y?R?`K^XCxpiO5MP^BT)7i+Jkx~BPboTpjH4>oW@bgYMyCK
z>KzYDN>$g<)zj71Qdis6v%0IRy_3^Pt+gwg8|o1}a>shn8R_zZ7Sq6@R{R-X0p}j!
z^e#uo3}i{GM$#!7Jm1D1PHzmB%w#lXP<=k$jgVHKgLhx&ni^WiSu~fIJ;R&WFg4L!
zw-E6;Wlb~(LPjs6ALt}Kl+uowNSuHxQ7XLM6%?J=3QAlVs1hc?^xkobjxKS>ALsn!
zBpDZ<R<G#$)MEEY=q4P}`($$3K(nA5O&F9pU@9mn;Z$3fb6BTkRDEl)UGMK!4+>qx
z?$Ut~edwY}P-;5)ga^qtsnnTy4};9(f^kJQK+4ZIIq@e^ae5(Kl@JZ@kBB)jEJ)yl
zr*Bco`75S~SOG_?=7BaNHL9l5LKfES_lYygHR8#nR^%^CG6aUV0L3keNk*RKq6z8f
z<hTdZ#5Xf|G^wr2PZN%(Ji;7VsUQp=q4FLejL0cK^oa$?m0>dakXZO&>J%?)E^L{d
zY9~)RK9tSf(Bh^E$$hLmZBo4LNVdfSmW=pyX`s`kEO5c-yRt9A2T2J%RID&iSC!_~
zuJ1EzdZJxzakG26>jEK-Z9u;26Vs_iJ>@$`JwhJaaaA`}B;lUfX4Xo;M&XTOf{cd|
z=ZA&Y)UZLXj-(`(&51a7k2u3JN;-XFIu#|ee$>-9YQv*2C|(S)3oFnTDGZ{VK+%P(
zGJpyL$z}9*S6oF=jK6i>C7aq3F9MWIyIdA}yrf{TzAJkf@Id3f2;jc^X(ix_bwTma
zxhql`_=yZY2iVU6ZEL$4I*Q@~%gj2^;ut`gO*;<|j7T)WVUpX4RuDL*wp}*L=|_o&
zdCCw+TXev2GTzEQO8nSKYM?8wwD4mU24U`N=b)Y;=(u_^-|Y{qU}39%;=}KR39Pxp
z?Hz4MZ8o*80xeCeI%>O`+FC(dBRH|888kLEH*|&z?+Hg=rqIJ6%zYKE>folf-2LOs
zj>7ww?e)57nMj-IMn9d&s9P}NVm9F}B5|f&q+fkqY%k>g5zfvk=tiE51vAh{g4Tu;
zdg^PtYJ2LNI)I6cY`xEI73eljHSFj^5O12`%F+}XDW$OLb%n*p!)FEqc`Jqrl@d3X
zo`U#93|^^;4GHE(xQtlF#Nip}3&z&Ndfvf{y5zco**=ieP`7+)T=FgYVi?@u2?<bO
z6ob1u@GUrlyxTzZa8H$E+h>W1n_nE~0C68*<yOUX$zib;K_HcbIB)eJ2Z+kuC^+tO
zvx~dh$;C3rf~8g~lU%e+8xOH;iQFn{tqpy9cr+YnR5stuRI;7EQeNz5z+w5l;P@U5
zxTV3vpF1$`vZdUr8&M`VSJ+KKqe7BY1@NMGEJl?V)R}!)2pBE#jnwqJ;)=RJHbC+<
zpc(xT54ai_y<^-Ec|pksT(*P`m`UjgO|geN(edZTcM%=MDW(53(cY7bW3?fzErYj(
z-fJ=;wCLd(7n@SQz~-U)6`twh_{J{2apL@nqZy5VOp^BCr}(jmikE_4F{)&Xx@2X;
zs;1Vl#?E+KV`n_PAsikb>ocuVJzlk3Kf1MXxqd{vs;uA6_Ljy#Y+<-2yfC7djaSm$
zYq5u3dkRf3CGGW@me@zcI}y2e>?EK!HJO%(Dy}9Y$tM*PCOTg8c`)2fF#&R}fI>31
z?ili)UJGi2!c$*L4G)6H9c~8|F?0gvxT5PYOxY^CC=UY(eI#)VHVD^*K^RCOn8KBH
zJ`JO|qK?0z&h5V>BPtu0eVBOo3FEtkudtEIttB`32oiYJn~+*dMou}z?A|gN*Tdpq
zfqx)aCh7bL%Md}~eb}@qxDOoX$yv+PDZzrcZ_-S|sn)iPqh8m7=`|QA1!%7cQ;zd%
z5#r6~g^{gM(5pNq#<8`>*Y>ovqa}1_fi}i?D8y2SQ!vcgD$S<Qa4g?cDolC8B<g5Z
zKXm9D_4KKls&h@#xu)nG^P>-`dd<=5bt@iHA%zzqjk;w!4XDFd($E*Sx{&b2#Yrk$
zb$MRBxV)iY?qSU$o&qwIx(#4DgT5Fbt!41Nj~Hw>TdMWZ#fIxN>ER`yskO0<Ux?<u
zZZ+3MtpqVv!b1$rm_B}=1U^~Ah7RBWa?S!EFfg-YL=K3Q!XYhnyk_Y*kTWb72#X_7
z7AmAwkBi4eg~bgel2Kmp6g2cKQMMT%RN%>=Fg~S@$tC2DQ8V5hT!m#PDwB4#`V!Wy
zIaCNvA|To=N~0pc*Wz7aQQOhg)L2{B)z-1DXKiOgM@XFTB$CUey-N?2>tzu@;4(&G
zmilHIju474b-)j8&Mqtv*=B**0e)e#>yYp4s_p3NX>O~lZSLu4Xm4(+tL<vbGZN}L
zY&`r+*8+PpDqeXaEQD!Xi)wezOeMLu@<e06;T&(xR8qAOXu#n{#pAS=;eRGQxcPPr
z<tZ|Fmr-3l?oDhtoyHtWVGtI7d47H#@qB(_uI!Y0`>9@RY-(;Oz!}bA5j9gu{5L5M
zYZ%V}^}dIKdtAXQDgqRZ3%BDyAF1{qxK}yo9*&fvDY&Vx0Z+R`TqLZKz!XQFGUAa7
z(8)p8f)bZT&VgDWS&D7F-~phLs$d4c;LF3IPz{q}28IjA3<ewy+Kl3LOfk&h$2xc%
zf~Yf9%)s>_KN1sWhCG{3e(9LdHk4Ax{QFUgVr3HexN<8>5FC-JIk&RL^U#YKb!`G-
z$bREnl&m|vh|Rm1r5p-W%g=*gSWl(c617*e@wqA6(NZaBi56m0YiCz&b8|z7>nuB|
zslBIbU3-ISevzikaAd5uy`79jG#XP&1FkGMQp9Co_~b;=x78R%@RnzWlP8CBG%f%d
z&(%I9n6N4y69LltMQ{bTIw_DVS_S;jaPuur5myw-f<-h`DE>;25}CV;)Z=L_gOnNm
zS5Vo={!^)H*H}tx8TDOkXzh%b^VrLr)-pbSv^eZ7TE^#H$hoNE%sSbv<AIPBi_B6k
zG@loe_yp2ghW0}APULX{usu<HDV$}&1Y$WWtvL&&-$0K-&oRT63_*v`LO6+L8X68T
z%p{EJNjcXeJ^#&$!6azb4G6Sea|mLF38+WQx0*@VlnjiUl%C0p1wFY2j>Zd!%3=K^
z(H;XDYL<;*K*)z@%1=|g$K(+9hvA3_PeTk&F0C0DQc^^Ki0F#82Q&*NqlkS9bwv|)
z@ODr5zJpDm-+~zs-l!+5eYqtq*bhfK9ZNU*@ueULknf%X3uaPU0(QX>Cmx<RpV!vz
ziyn6fdj?E%5a1iiUD!k&aK#JQX2*+E(j*`UvzbICGz0WPpk*C1tvPx^OQl9Z5<1XI
z>jq3x6Tu{UJCU_4B*p`#?HF1b0@Fg3ZRmh34x&PZI#<_rG}QOBw$(TEG}QxW4C$6>
zVDTTKuCgfT8h{og`UV&fCdnC^OiEAaPHGg`8JN)fMuF}CR4^Lm9Cp|iMEzFM#mPqy
z;;rDq^_q-6vjy6=)=xba`OKiYwwCs`&IV=*k&7Mu#a1^ow*;C?T9S5Q9@e9H&K%Zk
z&<_oWCW9n7MV0K0a_M9=BMAnyay)e0V|w>|AC~f5T^DAHLNTC61Q7IvQ;SZYj;|)Q
zp|e_RAi<G@-}45*PfUsUam}Mk<c&E_n?wf~$`d`Ds{}^(u<{<nwP4yD!p1@1G231(
zF__I@GunS{z}pkbMan*AzviG(A_K}ZeO_tw&25@U2eC;SH9bY-JYi-=-A$4{*J~}*
z^VDJ*l=I*f@CY#^h&iHwI>{b_ghA4T#QGt(z_Exh$E1|R>`t2EN1`WTLCt|HahbNh
zX0soCMN8E}$AbjaH=F&a1Y3ZJTnwE=j1-HdNV(_;V+abwa`gNlJf#-|2ln;B1X_--
zwV@SPy;x<LS?XP#W*sTw5{`@=+lcoQc>7nx%2$RvuH|pMzF}oP{5sl;Ko7Os)792f
zx4NNj&3G8(z;abb+uC-ntZ3399_uvwoMzn^tTmE#n8T>|!;=v<geQ6t;*l`{sd4cU
zZe2L~IMJpkGZxn(m}HY4^G>*@qQWe=i#`b*pD<9V6O!1HQ&prsuArO`UHCX0mhAi!
z;sz@t9xYOhv_*Gq_>+QeYZ#br8gzZyZ1$5zGFsM#4I?m-B|Y|+Bjmv|3J3XkXxX}H
z1OQPNCXj4Lvm7@-UkyMkL+h~#oL$l%P*pA#_WBPy;Hg>Ng2{TF9%WbeUnoagA5Eup
zV~|l?hXM8d<!Jk6W;AbQsSx#lm_smcO{oy6=~#NYMYA1ft%0NJdO{J}9vS&|*RaCO
z8_=w>tN@3KOV0YVj8KnrK;^8<l@sc((+X&q6(TjWnWW}Gk9&fvt4h*wPC?CBn`uiW
zslPJMhzAvyq2(9^sSx8g&YKd%ZCnvjOTCg(S67#%Q?-%IBjJ1rti0&m2Ks3*l-6`(
zMu8s=i}F(vRxB}~S&pEaV|eirbC=<(VJeLf#&&o?ZB$fLR4iS*82_!PsF43wRaR8Y
zs9d~k$+E>u7B5>?F{7et(b9^F8K9!jPE6*LMY?iE#iZMkJNG{MxWif<!T~_ZY{IGL
zV_ZUH|CvZvHHZyqR?N&eu~Ygiv!CaakWbZCGyiin-G*s39SEvH<k-fZj<&WgZ&wWO
z!}LPt&>%}0oc<0kPuzJLZ`#nHM!JzEY?<M8i4Q!&Ik*YBJK}GGBAwPUz#cHOsU)hd
z8_ewsN3?V%1*=s6;tIT}1xzdtYEi}MLWVq~CA<X=dkvigeV5c6O?rtQ(YM2<H7LDx
z(hO`04_9J9AA(7#P|EDLm8HDVjngt{a>i=%y)wA(nSqrSm2q#-*pPECg#jmn%Dv@=
z)XruyrsW8)>9dexwiE`V2wJ(DB;u$7@d~~)bTke(#1gw(f9?59?o<5y--(0ZqxL|-
zZRDN*moAg%|BA)S_RRmg;xq5CSg&rxdNq3>6e8yva4Nsjvat}`q;b$>9<K<^11;JJ
z=+e{B%#thWa74N7ZsLN|k>M6%afc(QXj|54GDzsT9gkFoTC|Z43Ncbzswx$$tN>+Y
zp?Tm0O~;$8pnfGzoq`s%AY`W?%z#A|p{(KPDX<=dPfld56ezbrxe2_~rRBpQeE8Ua
z<79dg<Qi)9y*d`FtXdYWh*m@^tB<TWvMNT>F2uBq9viBR5g&7G0BR{`;AG<Zs;a06
zgYM-ayzz~<!VqS<(T|bi-32a|<>lo7Bg#ruRxoOXn6EH0MoBx4vw=s(JkpGV?(Pua
zZd}2wdR|`KNR+%8(H&43q8>AgBQ5=YL?yt9Yzf^eD?)fDnv$`qB1HD~_+DV>Fv(6M
z^<`73(P%WP8=%S19Z+W)j;7;u5TtIWW0FJHe0G0d>1Z?>4n@Z7gr#R3o9sdeX+;Kr
z?U)$~vtfi#SOEj?lXy_#VYNLP(=r*v+u@MMWAR8;2(dbl@Sw|CghQl~ia|WGBE$xY
z9{izqd(58?%KHE^tzyu!OpAAi670SF3G5zyGG)Ugh(@F8zM+*L9Zcq_6&tSbx09C-
z6=McK4A1l#Q#YJ)X$0nn0N}I$h>Ur}8xPSP1i6o>g9b#bqFJN)`&SX_(|5Pp+w-BH
zg6DsuUpGd0b}3JoMqfcrfZX$cWyR8E^8CMeX+_nZ`F~e@#>UFgbQHzAx^@(gGD+6M
za`b@l@sMq&de}7~Ht1^Z9I7P$M%mvg`ghTCTsQ#{qv#3EfdGt+N$@k!vT?SG1dOK5
ztl{9b+4y+Owo@@DWk(a1<Ac*P2uCLZYY>hSST?k6-86a<S^_OT@s@LSXJ>PDWqLX7
zA?$-z4@q6qlh88*(6Rvlrm;MP=mZT+jCm~cvzSvPL?4cYlr+^12U>=fYBw!sHKH#9
zr7UUdMt=%+I$C0|seNc^T`Frk&_cyYiVv{9y1KjCM+j8|z_wEq_mmAmxd)@z>ZI!e
zq{3KdD!WL4^OzRb$9(m<PAb3V9n|R_Q!qY0!Qu337BiC5Igs)=6fuSYRdWp=6>1!)
zb$aQFqb-;*kBJ^pwjnw;26Q8l$|j-UlaC^^*T8{*QN$&M6$_1x0Vk6JrOL9j2d3@V
zVGu3DHI|2vm023W3zd<cKGPc3tRzeleGB5Cq=f82;uD|&r9i|^48Sy89zs1u<xJb@
z!I?}0gaD366hufcFdz=Xs8|^AP3H#bhln+0ZH64ELv|twWYZJaafDtH=Tc9~>?eNZ
zl-W=04Bq}Ir%4u3DMwH1M*nhD7hB%>s^UVZ=JJpQhb`TKV54B$tcZXZuwWAV^B55j
zZ{RR>)_<>V=}_gSp{lZ2X>>sukX9RdENLbNp%udbVv)*Nq>ALjK(t5<WQ{?X>~Sp3
zu+cOFjf9y*W-^*y5-A-TPET4J>FG6-qdm5M8Uz)~LwGHXi5J6|WGr)Jw8w&4vd5w8
zaBx&b#d7ymMzign0jMRR1ppuks=T)e(;U=c5B8=4aQcFcvFHL26Keza6U6d_NeIJN
z$6|#^2CoF9%!xePU}V&)hGe9T+IGt9>r0tha(uk-vW=#dfOuZRwMchu=y<dOCzc=E
zXqo-xZ9~wq^du}_soAi6t(C%#1G_pF!!ocuuzDkt%5r>N5UIxcgB9BZ+71x;;;{(;
z<l;y4B!{ft2TTi;!c&npbMj85W#Gt)vfRb_u`UCP7cVN?O$0%_1|oD$Kss&e$T&U2
zT<xjf-Q7XPCn{*GP1^y&hd?WIU>Z&IC_;*9$)tcrpJ@duhoo*JL!}*6T$%0bgE$D<
zLla{$M8ar5WwdfRr%O-GLfh%-Wwn6W*XO<VJr-zyP^3NSbSypLly@QZjtE}f2@_dM
zcSb=tt&Nmx{V=|$a>=5l6%`fBnZE4I_STzeO*iZ?&{D(NDApF9%ID`78iyqH-g5c`
zYa5VA#L@`sR@TzN>C&V}wPOrb#xq$2urMdZL_oc!Q>*0z(TP;D>{WE;L|@0<uDg^c
z-2^%Nxof+|`QKE%WE~^OE2i6Bi3~zzTwt|~o`EUdfHq^aV7XC<@!Cwkr6nPi_AL1o
zP?qKsrEx&GWH_KGRwtqc@k;>7n(U<P22l)n60-@sc;Zs<z6FQNkgmS>w>UiwG6@(D
zjfci3?f)s#|A&-S;f_E0$+Q2rxT<ooy#H6Zbjcq7->&$~11*|vfL1iR(rpE3+(W~r
zHHb_Ik{cS@04!b}Qu_kXsxE3fNoZjQfVV&c^r3Ivh-;+a5KQ^k|6KLLeSQdF%w6;q
z)*z9mjGknQ7_TR-tP!J)=}CW&h2@Yvz)!*R=7G-6)pY3v>O>czV?ixV*VNQosL*No
zd@DHkBA0&!p_E%?m5X4CgkY$&?BoEfKvTbFE=)z)g+R0%*JKC|LBp{z*(hr!-1)=?
zpt7QBF<Nbhkp9J`7)o?(p_8C~g0!B7QD-y*vC&0$uzS!005s2Q5i=7Gbjr!dEf0l&
zdvMS08PMzjyk^JCb<(!)eQ!1~2pv*nDK5bIqGTA0D~?*KF2aMUtU3}E!pKViswx)C
z@B9cTya-i`D=IJ{s3(HVz=5x^lfw6sIT`SPxUZKjv3c9yP&CTh+HMyI<u^81T;Y3R
zyKhw$9hlDaAVt=LJvfv`ODfXKb1n_|Uiz`ZhEsnJ4HpAwP6VJNV!^cOK(uVJKsjJP
zvo^HA`UvWB4-Smz24QBkhCxXP)g(KvAVS(3b)b#t<bW`-eekvfv}kGi5W(%y`k~>3
zSvhI36fTibCGIm&qGv!H2>4>i7}Yq~5aw~;K%2$5<B=mpybiGv$V5YM@n8Iec9X%x
zKUitn=Qv=!$4_zR(L<RO1i=hdpco+gg?qrjx(_L)UMUOO8Pl*KdBfx9mKA=}5}5R)
zL4Gh;duwaCcixz6pv2EPQ6do_%Sg@-nuJ3!`i^-!eQKL4U*z1V@TCeW9jhJ#rx#<>
zp=qEp^PEJc$1pQld%%4f0$>orjF!@epy!TUx&*(O*MFLxamz6+%;{fjMJ8hl@MR^-
zL!t4|?zV;gFMbNP|GC4r#kP@W|9{bvWlJRczjDc<MSJZ3UGX8y&1!0L=n2>X`*qu~
zMo9p$ZrCu9wO}>yFHxlmQC1djw~^iTTxN5^OeH%V)6)8(=)uB~Ty@^tYI-0im25I>
zM>7(TuJo$`PURWANy|4!tVOY<KBzfa3wD|P{V7Oer%5?AXnY=BY2&7$W9bQ-ZUPdO
z8U>qxp&LmweN{=@k>mijZuGOx8Mc{%&1OG~yN0Zb0p_w-gMj0+V%yc=7!0Pop0Cnx
zX$jbuO-1d2tdlf{jc8gMiPAYQnxt!#Xj)IDbUQva2GZG-vTc$N1D9TfV75a`H<L7a
z6I51IRIt^7hya~@h;fA*=WO>l-%(PKULECLcEVj~Hi5yGu_0ybsFqBcMwABV#pPiq
zLx~4o)zB%F;;adVQ^K@hyJ@C6k=3XshCON|gmRbys){~zPzxhzx6$$w(>AK>J_@KX
z!c`a{6-IJYI3+#er(nWNN9`<P9YgDfX*7_hq(_LoSU?ecyBY2%f}SDkyh7?(X??<V
zZ9C;wv+b0>m)K%;VWBa_?a_N2S%Q~1-P`x7M5G<F!a%@uCWTX6sTawSJVT;oodIY#
zB(|zB0`OJ5^vC%s5h27GG8py9Gn^i!u$D8LZ4aAPQUt@EdVu^SEWAT3hq`|kQzoD3
z40sL{gbeo}Z*9|ZH9%5xv|i07?gRH}#<ZP&3)-iqM6qF|iE7tUDRa2hG}_(Lf{u4V
z`^(8XCQq}(2T%>X_vDbSm8u5eQ<A-jYVQs4R7X2t3Zk}KwKN)ua;^Y}BG(|>XQ#p#
zQ<w6-*3;gBahf$CY3V~~wl%GOzD7NMOz^d#g#@D-g!4gPON+YDWv(Iw39HDBM^eU0
zS(3aI+feWgC)}<X#IX=B`vV$1z2y#|y3|URv_Kqa!%Sk{$}t~$Eo8`Q5Tous4YV>;
z^^}s82Vb#O_j!(XRdv;oU9y0swUM?AG`wvlJFppdO#O8TWMY9ZxVqs$1KFSMm3Yir
zL;N4u3N>R?^@Uk1Aw%`doqVu^Oe6wFzOc1$XmU*tCU@a!;o!JR2vVPAB8nu*>H`Po
zlCC>?8n)<0)`4QrS%oMq9i>hOS{7^qr)EtuE0UQCfwQtko5AgelB@efq{&pLE(tby
zdA~GQnH0x!1b$w2qtaxU4k(=vZe@Xs0ZCBpOiFj?9p84B=^oPHY|0a>n@CE5j@p)X
zXeFTGX#Fr=RpGvG(MH5~%PLg*K{TF8cSO5+^7FI%gO}KX1*)LsMj^5k0B8bY6aYz*
zpdyz*bZr|F7MOX~(CGvZBb`9C#kxfbLpqUP5cDL?yvN2aKTNJlLF&9v=13=|fH71+
zif0NH6a_=jab$<JtBW2WS~1@+QAW`W&t5sDk7DNX3@F9g45y}S(VWBp2ycuoC^c<+
zQzDZoPryy5B&@RNf=F1&#d=!nhfxb=Oj}0}%CLrWoAEOvZ}O>&k>!H>u7}#NiZZ-k
z+%#a?Ov02<j3XL*FAAI_OKu@8W2RE(IxS6&dhd5Njvyzma#izOOG^bUs2&#~Ol&$v
z1T~O*FnlF^G?s|vm>Dx=_K)%uWzT{}K~<+n?sq}tRZ>2q&#fwLoWHkcWEbnHo0Iu*
zpU98}GX>uMj}F7$0n;4BnBpf0ID3epOA;hilY}Q%b9xf*q;bfxXSvy3SxRR4-R=A@
zZ2u=^_M5_~3iKeFG5QN_Bj^54)#8d}OBea#zn1KY|Jo&=bJ|;1g$@eMm@y;Nw7R}y
z#*F{>Y4qRRSu<wLIDhuY12bmK_)uo`I(x>9=sfh_%#m-e7@9HT%o$DfwOu1Kpa1LG
zUtjyspDJE_yl1~_4!^kfil&X7_50M;Zz(<YbLR~_ID5${zp6j)SFatr_*VxdmT95A
zZ<%+?>yK&ARP4Q|dBuMoe*IskpLOBV7oHy<y1^dpKJdQhuf6nVFYb8$mPby1>KnJb
zyRGw`RcFqaIcxUZeL#)(rRG<&-tGC-3xk*XU(MLud3WZ2RdxP8>+Z~#_uZ?;|E}i1
z)(?w7@R!eRs5vld_0F8@e^+|@UH+D5&ie9RrMEY<E>vJO6CQb#qGe#sgxCM(oH_o+
z!PdP?KB#E9KDu@91CF|8hQIOITekmQMUUUi*|I%cvcG~PXI6dVlZux2x#7&J4S)aD
zECos0&${3Pik8C%w4ZhEH%^?PAj#bsYtLZp8H_!Hv1c&$491?p*fSV=24l})>=}&r
z>0p4%W|dt0#Y4aM_)V|>>b|vS?|<1l=9^cY+BtmuXWqRt_2#cjo_jp>?k(57`IQqc
zJbK5DGq$~Z$}@kv_JcjoZ2QH&XIO7;8=L?3^DF=InMW?W^sOteK6vjHn|}P%&mOqu
z?q%=(+j(`}O}{?luiqZe-c(oe+{JBwx6l8=#SG`~o>{fw8-MQoD8cBT`wtj{p@u87
ztG*h0Y}xWHKfN>k_TsMVAM1Ym!uA(VJN*~8Up{+j>do@YJ03pc`C;P||32@*x0jv#
z=<6$=KJ?<#2S4$fz4kivL;n+6`^$>kevrQG>|aFx^zK7vee=p+zP$d=C;cIQ?rCkb
z_oZJxvueXRPki=pLWTb=x&QvttTW!e^yQ{&u70ig(jUKYPy6Q65`Vh(@>`c~dhLn!
z%bs07y7t)xgCEWA{Oa9TzI5r%2OfCn#^df;HT!$#{N>#x!!JGf(AoQ+UESR|n0V!>
z<G;v=`|ShT&pP7mPd+n~b+qR4`}aS#;qsIByEXjg9d`~tw&9&$_dgwf`H7#NzWv&h
zKl<?>S$}-~wjaFo?rEpJ`}9-qzG)t@apxo7dHt7<oczeAHV$pQwfequ_CJ>r?MsVi
z!t1|v@8{m3O*QO0_t5nE(@);GvlZ@q?3r`-I&?hw)C=1#dik55-2aY`E&2OR^EbZx
z$KTeTvGLVEzIA2KB|m=qp09lHfKOH5ux+68s>7I=eR|H8?H@b(s2dvzk(_3*>9+Lm
z&N*bwYrp&cqp#fc_zCYEwduwePUt*sM|9i5<Ni@{$qk>ot>qslJi2Vhcb<OgBV+v!
z{pJThx~%-KE3UiIIN{gxA3vV4@q=?qZ~u1R51cIo`6J8s`P6ea{Og%#GmCz5-3jMy
z>U(j#ZvJ2Iw|{&10cHQ%x%SvO#=_?+ombAg{CjV{`0Rz>eR1LAj?+@N=9XI+=YDD9
zOnCjP_g!-7z8L(5xu3aW{YXv!&exv&=M{h1`mYtu`f*Lyog1zgd2+|^?z?Hlrh7*2
zKL01}7cKu&$A#zq^)~P!f>ra}(%WJ0L7`7$sL6({Kf3?txAgt()k_kOZ`|>RMfOXF
zEPm(4D;_i!|F5<=bL|ZeeD;QQH<dhp^sR><anq+yrDQ*FzxK24dE#3KeGDVE`pY$)
zgNdEZo!1}o$DRvUy#DeRW{xko>bIF+{O11NeV$qWuOF@I+k5Y}fl$x-$E;Mhy}tAF
zLm%v>9Qc#+t$Sbi!W&DfNe_?Q{PN)seC2}&e8qg{<=DB0o^kTC_r~uz?N{v=e>8mE
ztXuAmj%QBVcEW{6uf5?PfBV_l7ryba!6(n3TV0PKy%O2F_l4j6)6(NHr1sF}mp}19
zddb0ens0@-tbFm3KP<m)2lznSr)x$o{`ChQc=Oh4p8wNb%kNCBxb^${E&t3#loL*$
zvt|1$%U^G7#SpL9_sEAwMo!=H(~mrS^J_bw|Hb$bS0B6b?S@0=e&dMDntwcm)WF$;
zkDqwG*_ZBYamGIL)elkf)Ycr>dJyB#eFn;ZY8-vzjhp_xqG!X-XP!7`#ZlKiw*BL?
z?mFNTRsTHe<?espU4B_A{_|TiKWP8VA$9vQ=2<j*%l7+jdwCui`uh*u{MDa7mAUpu
zzgu?m+Yg>lH~#nXH<rwgKfk4B=hh7)GoIVF?3QiYpZP&MeDSxJYU?Ru-}c6wE!*#V
z>B+U^_Y*hI+Ww30Y@fN;p;wRn`<$bO$9|xH_wMSYtykB4uj=fR{{8g9@7(&-%N<|b
z7=P)@zc`l?WYz2~+pDig9!y4OaPwIYU$Ex&-@ToA;fxha2isqI<(>!DH~-$A_16RD
zKJ;|v*SCN1;kUE@_{C>0UvSBDb^r5=eF+6F*{}Vq=OP!~i>Xs{%<NyDcg@m6y7#>`
zbI^hhFZ)W*@85p%v-{6Ywt+2w|K+})`sD#9+<xtu|33BPiem}ZTi4IJJM-5k|J_GW
zsNDR49S>bF{Dn9EeZ{Z;-xuE6_}b^^H`asd&40P_s`1f({jGEO_)qFbUUbdvpWaUC
zf5*q#&pP6(-x?zQIcZMo&mS!R-lhL~`14Pn-TLBz-CtgL&+J#`WgdU<>yK?*V%_!5
z)d#IV_z$OTxZk7`!>pO``nl~(nlMBB0sQ#Nq313<`0=;@`ora87xsMhvNu2X<&S-?
z6KuNtt#gigeM|bCAKz&7A9Q}`&DC`3J7VkJ2mI*jhe_A3n0?ZpFTU{5i<X`CkG+Q5
z{-b~6j=9&&-DmD)OUH+I+;ioJ%Z>7%&VTmDTNhE<r)J%qx#qaN2zMVlzx{!c<g@p^
z^7H}!`HuOIwLds)_S`MUZ+-WV=C+?cGyK5tc~_=?Q1++V+LI~O_M3Hg=G*NDT!7K|
zRd}CEAKUq-vwr`@`)>Z`(-*BdcKz@^m(18~V~w-vweIaVZNF*ox;w1Z`+SB@6W5?=
zqNHYo$da=;yXvcFzjSNp(w!IBvA1qnd1g)3oYRkb<E)Q7a_cp3{PE9M9J<e9+T+No
znggRp*_W3PG@hIF*_D5Jw(i{9TOL2Xa{H>gepvO)$7jwu<fC)vyxQLQkvm?!>d+70
zOmN(1^$*Uh+R)M8xQ+DwgR_5m%VQTFdeOUg{-oc$`o^EnJ7MR~532#?vo8PEr$WzN
ze)Fe3|NJ3Ge&UZ5;nkbZtlAKo-*f<`^lj^A-J5PX_qBUZPyh3Q58OE(D_=6_?MThm
z!C9C8=2OSMaQPE2e)P)zLq7C2Y57~NH3vqso!_|~Gg!~&moLBQD<3@ImRn!_=R1jQ
z5B%)8(U-zC;Fej}op;ky_x|II4PztgPXEZKsfy@`Zr%IBS3dOMI6~q#XV+YR>RZdN
zZ2a&+@816E@%y~`jTxJJKeYFyBX6&G_~u*xw)3e?pM3WV|4Y;^BGYnPkKi`ro1eY0
z`?9Ov{mcD##m~*|xayEuvwsqK`L+kYzU|SSFaF}qXP-ah?Js<e)a$4@FnYlQr?lgG
z#^!H^&R+2IO|O3a!0X`mH=ew3_T2iCmv34(eE#FF-SMyQB>s8KYyXU6`uyg`GpjZ{
z-2ca&n5pBlT7GoiwL@P#<Jl`OU-s1<pL@~jzGwE_<l3#nZ@}N(H+J%ikA1&9eeXYy
zdgY&Gq&Bh|&Y%C6c0^rp&8)AVf7OSEH@^PFXMec=sxO>d^V?Y;xboI_U;Dv@KYt|E
z{CsWOugM4=gOuq}FEzFxN}aRM_w=JXe*VVonc?qV6#M;W=hc9cSs!WH_Onx->o2+Z
zizQEf>AOVrf!Al<ow=cHCN>xMxv6IG^6d6ozjnq+FSqaff9qOLnR!;znKd7p^JdqE
zH~w(N<I&|6SGNzG`}Ub7fauAW51k3GfA_?l=MeEL|M5*je;K>7=Z3_8vWMRc4!C&6
z=0`)19<_bjJ2wnH_|BX0;|_i9r_?n1#tAhCzIgM(jS-?X_M3a%n#*n(d-CN!{f|BN
zFY^h+*;}8!Xw9XUzIEjr4?XbbO-EjJ(W=wZ*m&Fg+MF%h|Gexcb1)9i{N%RHZ$A5x
zhi@Jld+29(-7xEseG&Bici!=tL&tA?$6R&Lhlk$S=jrpPkbf5`*gIf?X!*l7XFl+q
zhPV3S%U^ouQW)Rx^1h%3+=VB;(|>XMJs<h)bNB!L-bPw=+3YRbZ`}O!kBD;r<mSYA
zXK(xC&ilIey}Ip{wb$MHQBd>5hRr>#w;p!%O*j1f`%iu217AOY&Mi;QExrBYzdr5=
zT=V1|m){YKZu;r)8~=EE<D;j2cE-$E`bXz}aqT#~>w<&7c-2r>37M%sAKkk52~J1o
zW2o(0XaDkV2YlznAAVx#k9tnJ>Y5!$k`DRkNb=6xjvAZ)v;9x{ceZ)iNyPg5_L)^1
zw%qvV`PlZ@>%qmJdL#Mv`cG}U|I5#f{$(HVrH;+ZOa8O7=j)ICyXB$g%kJI#eAL#H
z`?jBT?(a^DVCMV6Z9l&_banaoo8Nimh>p{`fAkkb<Sn<|`|-y&*>4;={D^VSZ?#8j
z2u+%1Z`pqAFQcVct~<cd?>e<RzEJYiqksMWJtrKDh`DIi85a$|`-ivf&e7SA=wwcr
zF%w=tyZO^m4B^Q+2c7in5!Y=xI{Amt*KYXg(tVIcxbBI^%5Eu1z4ept|E%&~A2bgk
zOmf%9+Rs|^@TO-%Sn;)hM`yfv`_Ifrt6#gR`__#+8nL*ZeDXuDuXz0B*Y~~m*B1;u
z`tYHo#S>@3>wndH-uZ}qYR;MS+9NNG4&L!^WHkMK$F;Q|1vOhsXT81P>eKrl`pvx1
z2iI)+&HiLd<Xg2h2S!8Je(Q^vvRB{s+QsM1JK!TPtsT;jyXv?lE6<#<`L}z$8r}Av
z9pC=l^G971f9#t-8z4djXWgAC`+CJ+k=3<%^_=4mJ?Udc&82Vb)%Sr&&6zd(&5GZ1
z+R@vd*xs`0k^0lNK71t6saKy_wc)g<TYrb7e(S)j&vt%x&O;9zddcXj{T})DpHaQX
zX8&^EZ^zqzHt^lj5bnxZv$t%oTKu)MR^oa8fPo`^dhZ{XM33GPGY`1y&NXMw*!;aY
zXSHmDFFyADOIB2jeUK=ZAD&sYq3^p7--g-v$yt}rST_F1^_O2@e&NlPU2mZR*WUJl
z2j0BzugeeL^vupDf1TV$OvllE+RwV@_Js#y3+X?x&F^-e`In=Hp85NwqqkNp9YV8S
z8CIcxUbL?A#WOBB??3;8t;CY8dtbQisAavgX3zcmiD17czVpHl|MQQ(AN=IaJNLtj
zjMlv#UGcNueItIset)wzeQK$L%5~Qq7=7u$lmCN|IR|N^XYc#`VHfQ8#I2Wq64CPy
zA+!|u(@iD&htfwKHS@svxL-R@syXn*!O#lKRZHiroN3&Be$|}o|FAK8ZtIydHeWmY
zm)D-!_rj%HKXKu`omU@+$amYE*;}?pXZ#If>Tj#r`Pc(L{OjL7{=|JZzPh6g&#hon
zm2vuxpT2ro<_mPKvbyHLtLmDUhVgpiLkk~U_SP@-xBu7v{`c_&oH=ass=mi=edUQO
z9=v40xrkIbzUIKIuI>Ff66?+1+Utk$o1Y)P_Qjj;zvI$JuzLU6EM(X|l^DF>^z(ne
zg6O5tOnANV#OM*2(VI_RfA3i<etXl3uU&ZIX$@x*$v<`bH*Xre?(pYdy<$0;`H!4+
zcjk^$AH=e;<@l{P8c+Y`j@!q+y5pJOEV(p|d6MY0@qa#WcI%5ryzsRKhZ-9*;q_Ns
zaLShuvb`Ta@(-EJgRgw_mV07rUOD{Rw_+~qpJOc8_T&p|=Y4V6A?NP+R`?Ud_kpIy
zW4qJH>a5u^D^$MY&>tO~weMKAd`#~j!z4ZTw(_r>aK<(Ny5u_#-&y**60DPE&Z_)S
z>FsySF5eqL+3&cmKe~VE=&vtYerL~xU%hAb+ep$kzc?37;$P_g+vi6<_51yZg>=rD
zRU4ZAI0p;VReLR5QSs8|?=KsE+PZHHQ}Mi6+rD<{`jP#I9{Js&j}hzf*z&D=pYZH~
z`&@>8R4+uP<Rbf}mcM=bo5x_BubF*m&&ywb_Qvi*j>-P<OT?O5U2|Zx_JYfgpo4kw
zo!{Jk)ZW|wG<wI4pMT)PSR<UUb@+{cy!69^Mz45d=V$LbXd}_qckS1H)|#hoM#k3c
zx&QfM&GqH4KYj3HAHMFH)|dWq1ztba>^JKJcaC4(d(W!!bb0I7h?*#$b$3SpS{dqf
z&8Ox(_59cNGwwO$jyt}-6!+=iS=+v`>Gmhbul@JP`HQhVzWQ=xc9pbT_@RBkmp-sL
zbMW;gPd$3Ud28yw`Tx22>bR)3?`=4D(3ydc3@ssyASDeV4WojJNQp{^bP7l}qm&>a
z-5{udbV@TygQSGg1H#ZD()E7MjC|jFfB!O^bM{_)?PopD+G{U-oXI6gPuufnY@0W7
zF$w|yy}@5tZ#k!*h`{6z<7+=_hOg@TY7dRtj^X{07dG+Ow^eR5!rIoZ<A>FN1AbUa
zK$nAdva-olls~GL1fB!eaC<so;9?igPZ}PGj~CR{HnTg}pbJZ~SC;XN$5azV&tK<c
zV+wvY4zpll0|HlSf;B$hf_h4lp6KLOU32S`$}34F&|)<poV4CxyhaQ_qIuQEoo$E8
zD8%A-I+lks9r4c`1K5QNSlWv&J)F_r7ly>};FaPptT$yo;SL%AiN5`=(0UvPGS1U(
z5emG~$N}u#i&)o-Fv;yD{AT#2i=yYB-nRb(dQlo?BpD8R3Nt?t{ub{gJc8c4`gJy+
z<JRAB3KNioh1g6y55KOCq&F(kz1?;UJ>&Fs#`1*+@ZXRF8oC9}EGG?9#*=4dajywy
z>%9oIAgO<v39+I9ljT!>LA731j?VY)1H6k+?9cyVe9EkM`J_e#g5P@%zQktL+jZ`7
zgm~|;{|k+yJLZs}Gx5YD`T@1OS!YapN(9ZxjhtHqXeja*)~l1hiC^z^c)&fOH<O2*
zd~uq%ZO^`3{OGKJf7<j#Jnm_`soGBw*p?)BCfTT>U<%$5IZ32LuUgS%9Nqzc%OR1j
zeHWACO!&=>Bo<rCvv~5?|38l0jWl*B#4ng4t@z1eP<&N9X<BzZfsKc9Ws+&iKUBtp
zsUKv7$w1O{5U$wxXHbkVKb@J=JfE9a^tUsd5;F*l;Rev<Fi>p`PFaH1(lYOCJe1Be
ze#gOuV8lVz{`}QJ@{#(HiILbjs_J)C|4q!I^<V|!)kd2w8Sm$_l;jBVBME3q9<(`m
zOH(81$jFOVVBDExbU9U8pv#n@e3T}0&DeVD6SqVNkv0tzZYDEjAX-*hd9@p7Yr+P;
znG(j;90xVf0=-$usPk09O=Z7$NZ)2jkdRI)#zZN~8Twc%R`m|wz4Lz)Z;$xYM)i)C
zqjP$_;ByLp^GE1(6Mm3sV1sh<WR+K>@fh;}MbEGP{T(Pf?<e8iB>e1|r$FhSR6GXh
z=^-aJo#($Oa7)Ro@Z+C&f}-co6UjCNpQu9ZJ7XBT(;N0bgiTZ8-GB@lVBr^B*D6|h
zljG=HfgAqYppd417|l<K_lT7U-X@E|K4AwlGbkZmyaM)=8?07JcNC@AR><+tri7yB
z*Wdo|881jtO1j;0BlXPbtfODTXj2Hp`y2ERf75DM_(lcI*aL520!w<tlS!5^miOHe
zv^#&v_I~`c@AjSFhGWqL_R9~IzUkE8SUXvo5kP{+cU~x0v)MD+a5NDypiWAyLenMY
z_akSvi(jwEos>XQ5>eA#`5e#BG>141*YG~D3yH;+iRIjt_a{QLk}^rwY`m7(GhKyu
zIsB#PAoyWQ+nN<*m#p!uR+ul7EMaL$R2+=Lx<+k9jwkKDIVp74rwHyV%q>{5e6*dP
z<8ox0Pxx$@zp$Qx`ItBif$Y~t$MCrb2zao@XewV&`0MbS3%})VR^D{omA1jhxDF7J
zFL6#rfloAoxEK7e_FYH<S28Ohb4TlLwA_Qeb$2bp(C!v~Q`4#ib?+TBg0R_30aZ2O
z8b5xv@w;2ZyVR7x9y1pKF->o$ue$<$62+cqyjL9GL(#9x(fZ<vM{-+s-?xV1MNJNd
zYf%>HTXTNm?z5`QDWZ#8KVKOd9Pj5VrF)wEEYB$LTlwP`<Mt-0ww(3&v*mQblVDoE
z6GNBDqJMV0q;{sKsHB>Fz4o8o+IjPxFBm7`du4s+Ltnt9`ie!jcOsGB>Sdf)cR$%|
zOG~w>WG(^%yx#ANYDPj|{$B-$VkU`aNtClZc2Q_T4j|D5@PL!~(>$NsGAqOEO@0=`
z9erZ;SGo+8cKcxLC6krow@C_X3c2}$quWM;`my?zx_5ANYbjSQ{9Za7@H0HXsfm&O
zQ}6a*1N}s<V_BMk4xL2`Qi4M^p24!C70&;&#qZ~$Y~Jm>5-r~0T~Ys|L;<I~UkUop
zZIb1@;-Db%w}IrbfwMzhuSh?$Ogq2F8r^nV2&r>f{MA?}${5d*DCTibn+V2I;Ps+6
z>RpW2ZeF$UFje6;B$OWnBei4!>M_<SZc#jza#N`VDg6vs;>SZaLKdKEOnLf;2LY$N
z{}$EMl^?9!#O@u(JCxmSf5hs|Wb4(_M%B|E)>vm&{bf$My^2|vr4c6ed?jb2(0BfT
zgj`Or(0)49{sR}>ISw@dhDp`u`MdP86Z8zk0Hl^JlWg>g%mzEkAGJ)fu%0&NxB5BE
z7yIrO@S3LDWz~%(U1;WmLeq)E8sm4@r$GV{!#9`}PtsFoh?(rfD|R=_HkWGr3Or6)
z10zp8J^k8KTh^~g(gtEMpEd-f1O>hv<rd+CZ2{2bQ2K)Ou0Ij_7c@X1tFi7-Kwa;J
zWen;C<SU6ob>+|Lr}YTgEShysTG`ULR3E`U8Q6zD2a&EWK9;7MS=FYroiO6L#)Q<=
z0V+U&4!Y;P?>?E*n3;@wm0n7PM9tU`n^hNcAA|nO1Pj>c2vC~NGPJUcLRpb~<(#}d
zVE3o%Ov72%$I`JdOV=~P`kmnC*_oGJd>N_y-zFb<xL7$UI)g8EOZt=G|A#5&Pb`QY
zFs^0=_I!O1C7&YoRy-G<4HOsO(4s_d77S8sGauu|)VFt4NZlkJuBzmi=p%l38RI4z
zG`>zArl-02?LRhAq<p9bw9-^Nef6^wFDoOhd-WL)C+48E5{bKT8=r50=fE@U_m9HU
zLnId%TN}y-b!>sXhlkqkQD2*GHheZcW6I#M^2_M!r^PZmh3)ph@0DzB2G?;Iu;_Nd
z<TI;5!a!=+-rHYf#f1;!62xZJy&gZ4iHLzEnq0e22hH_IVO|pNL;-cu0E<Lf35)yH
zb$;%UoLXJaNI8X#gSSC<w)1lW@0DH3@JYax-fdvCZdwGej_jPe%b|^imUsdiEs#l;
za4a!+2c*`wjJ^+uzVh*H37&bx3Q99W!^3YaYiDBy<)zS{#jguUD`>{5Mr?D(4u9q=
z`JUx-H-s7p4It56kRX*t$M&rr?P;m-NIbQnRSS~RZE1qxlV_joGNvE<Do|@uj9pWs
zMjMzV$O@Yn?VEnj@+n{OxqZ#6J=6W3bJoHB%jG5eVupj2rITi=>tWGZ3|A3>sC^{v
zPnyZxq?|k<>XLFb$GHOmoG5?PdqBA`96NVaT~FFF1|>#v+e%!zXs@}_o>xk+_}z}_
zd#RUgPCSTDwPAZbzJ5FTAV5vT<fkaEtU<C6`{SW>I;4d)lZtRKl6p|71$B?VVH6++
zBq+t5Uz|0IT#$F{$y5gPsh}=V(>=A@F+28!k`>}ZAx;%y4AubTcBR_^+5=lt8`)dm
z9AjNuMe3y~4>Vhl7g<Rs`!~qb{htF_lp<t=*}%1Ze}%QysGk?D0t?VZHdM|Y1Rj~+
ztQbl#bwk8rv;nNf3#UC5`buwk_uc0?(LdWDtd!8cvq?|e6YbZ_8HAK1v03$MPaXvY
z5;ZdvU}t!E_(WdwLGoHA#@})D*kiyX#_f%SmZ4q7wJ1}xk4s&%(DngI(~{io_?3tD
zDHI{MGgVvTL|ns_e)neC<2}rW*sOY;(HaaNFiJ}+8xND8<?4FOmNBS%kgr#&W%cDG
zrIW;Nc?A|B786nL`m0VmLL)~`Tz>q~m5g4ix{3(I)a4sqB0pQx>KzNkb2CuOH%fdr
z0a?oZ8O!E(?dI^%*-xkx2tRB8=ii^?_}neKBFap{g9Tz!4LGCt(GK=Ku<<5u*Qpci
zKM&{>eVbSjftZaZ2A%Q8F-7`!?O_Be(&ca^po|`LVE&S=#bv{X`|8xA|BPL8FhGBy
z@}peer%iVnn;41xGkNC>>ih&Ltz<gT_%k~`yxQq&WM3Vd`&$$>fGr9fkF;O59`j_u
zvnEiH)Hr2ZK%j`lYRpjDylfdoYhcvPJ{sus=#g#nVp{uWXK6V*MI<ADy>!S@?6p0`
z-Ox8FP=7mf5x~A`Gh9nb4fkp1!Y4}p1z(Th0V(tib%z29h9@>r-~xZNKO6gFP@Uv+
zeUB=QL+vqIhO;WzxI(uh%_VlTFN^dKlT&BT%GuMQU&DCu9IJ(*FKVGeO5-8Ezu)tB
z%|UZ$<N7EP{T;x<9rjo2u2*?GFaBy=zxHX5vf~rx^ibw(>d$Gm$c95d5|M^6q?KE*
zJJXg4x=cq5NKmT<bz|Q%3KIkL6i_z=%gsVV=M`T*+|!w}r_&cAr*{?H7w_HOrENwc
zN>N--G@l>rmnJbsZ--AXOR!yWzh9W#mQ7(%x`5XYmx#@(#baAR{~jQ@c|~8u@|c`W
z|BsDyFz~K~QFe^#dc8uQ7M!x<H3ogykYT@Hcho+=xlg|nwUNHBAvXW5^I3}^4AD{L
zFRWLE8(oAVIzD118Z@34?VAtr_^#pZA@wFtoYr#nD|O3jnlIC!A3<&Ne{P;GYi^`&
z8XibQU$z<oK0h{Sa6X%O^u8Q_Sg3Y`*sMBB-8zJb7}$b(mu{t{o5^Gutk}qr1OMdv
zZhoc_D3B{-O&_8OM9GpoWzmtg{uu(squ}gNp}Txw9Cy@}>%kS74uPyK$X{6R=E49M
z6wwigQqtYdSMp`qp)@>7qFdDWJ;<PyuCSag7`bi3zsvOMS`-o5fheQSZMl4Vo!l(;
z8;dEKpf!4c$Iz0ef*o1xf@f%we3@jUR>JlKSg=ls2();5x1ns*w~B;0(bMT*fqW8I
zcdf1@6QV-OWF`J*zRfLIrBP`79%FWx&P-CxUYc!Qxh_5yFGFInkHpL*AA-E<(~9fK
zi{Ehd;-$)rCurSv-@P6hKX~L$$6T+;H%RpLlJ$<?X9l~$zHyosI~^u^>ZAcp1x&IY
z$UIn);r|txofOdF7zgs=T+QvVzI0TdP=fT%aKCmP=Z(sn9Gn?D0YqpK5(Ztyk81^g
zp5a!npy%k--7kc+=cL!%IY<IuK&KX@bjq}Jl^Cd@)vC95oes5cEl;Ln7r~#`Ob!bK
zldCUy;)L9RJW6Qfb>@cOt*0hUF-iZtMYpgaUT{cXxb~#8s2p5_N`GO!qMYd&7~+04
z=Kb24tH_2szlku_d}-1v^Hqk?iILdNi4hq9(#wO8t&{X<PYkvo>-cu76J?C3&N~j3
z@Zv}l%dW>CgeiioZ0yY<C}d9W&CI#jx0Sfku`&YK-ADHPXLGyB;kzsVr0go<`Mu4<
zL5su3dP(6XvFh@C{pAJselC!gzdgQt%by5sOUl)3=H(k60dDgOS{*~fL+2qS*ENef
z$cd~v>v0^MZzu1YOBx4iCJS)ssie`B{jD`@%T#1?xph4ME-l=Su7|tn+W(1c7;OMv
z$eEGkWk?q0a`h1(g1Jf1c<L3;C4O-pzvCDp^g}rBn3$BbBm3|@zO=}DGp&J<wF0*|
z$bkzA|E3}+T8K46WHq~*G~M;3@WIc&KQ$G)KihbnrrqIgf<$GC0NA9&?D+6a<>5cf
zn7O5c&7ZHDaa>X{+Ew_(**+u|J6lfsnur*nqsuKCmoOddo72t?i@uBgLRHLCzQn>`
z#NWtrz=!@u%49FOdl2;bV))rJhDeh`rbvvBhP|Zo3%`Xu5_}e$fg~0?C~kB3&>wYy
z<ZI8)#$`W!>3k>kN1TXszr*45PP_H}m@oR%QBY^~%nyZT3q{viGF2wGq^m9kH%;tM
zIMeO%+q2=5hg}Zp%hoAG#K09QEjQDHLX#%O@j<=J3TOZ$Mn=p}>waX!{M$k(q9YsA
z^(rhq{V2bJY2=TH3VJ-hXi}&AYNS`75ET-I`~q}2z|xuY*-%IpKxwaUO?RtMe01KJ
z-7wSbz^s_pLwMribrvbKIwi7SAFXD0u$|TZoOk8z@mvaX8+X6os@n*&!N}yF-@f>q
zW4gbv-WG2qs5pB`zx@=+b32%KEb3@|P>t!KnLa-1l4FsqDc=71>k0(=OFy&r`KV!n
z9FG1HOs=<mqQOB&yUb5zY7agKavNhvES6G)M)I~l>J-B9{47D0zr|ZL`j^8$ZTj0=
zwPH3Y5%cz%g2n(Ol-r?TYxAOw!HV4OxT5Url5Q%1r5Y)BQ{^>}w!$aPYp-XLjXsgs
z0IjzNIc-=valjReYhsPrpCTt3b8NSR!wcb)-P{`-_{7Yz?sDUgeU;n|&fWeT6GwP}
z+>!E+-Fd&?&8m28WhFMNru;&x<d143`HG{S)$<OE(?V~$PyFsVv$eMSws+~-9|%;Q
zy}$p_*?gOuy~Z2H?eLa#=<KT2{h-`O%5`|cAw+Ce9U<`(qzVd@T-0NC`B*4$$+`um
za54rz{nq$M>Y30A6RRL1bQmm^zYSh+=qnr<>`9Y@@ya)>(JI=%f<Hs#%_O4}Dgi^0
zLl8>$-P#9*rZA^UzNY}mh48ay^YM`><H^1E;c}E96+;J&#GH-&NjKI5`bdS`xQ``D
z96ljDzQXY08%L!UB$W|53Pm6hXq1v}Hz_I0YmYoWy)4M7J@GmfNj20}K$#NRua0(L
z>=H_my{xtKO8yG73x_#+G+y?KZ2I)T`%?U{s8vz)MegxBtSEm>Ac@Xcaz@J8N+R9Q
zuk81b6YMg2dx!AlKsSn}t0?4C^k!#u-_19>H->+ua?EaYc89T$vkXRxu0imOS0g7D
zYf6l-iG#K#$bGAmJEf@#QA8~2dJNxNxjQVH5hC3OA!O>TQ>>>9PpmUSd14$YhJyD=
zPU{y-M{e72mbWe7jm}4GR{ea-LxdQBjL|?vt8*F|7|zCYTB1oO9{aW~#tDqvV73!e
zw8aAwoXJXD-1=w8)O<qRaY^1kTcpxWGgyc3Zzw-z^#3=z8uA3`y@Go!;nv>tiMF%?
z5R2b&cj?r)xSVg&bMp)Si~`-j>DpMa_*tf1@6p&?&f*s7o5a1$lz3N@(XFQd1nR7U
zqAzkXsNz8RquNOrbe8?ZR(khGzq7_aolzxa9(z((Ip<-lgg<C8vgrx3SeVis%g$Zg
zB9#`|lXVkN?tPxi34xmGqUia@w{4su(AbB_3DVVpB)68PXxh>MfV}T=$-?Gf^n5A?
z+^*4>-~Vj0B#wLz2-bKvN4I~X*+ix~!1w5aRS>vo__;F4+-@;6ftF1mQMtiFPLs4h
z+RqyQV5aExXx|UfB8N}?^Ql{R@kzQ&HOrKGlW&<@qjAgC*PkB)k$uce&p*D+l^&u8
zAW&0P6g|I}leIiZ<}!<FcHb?1Zfo+SExiUZmy?5_&prt`EnaDx5U4yGV!dc{ptfmB
zZ>uMo$%rJ}&}e_P&YOcjIZZMD-}z>=F?{Irkc_a2(ea8o#T?z@6W68Oc{Xc?NNN#u
zg#xI}VN9|fGsEmn8`>jmr)-5GTcpxLIA%ZH2U7;Q_x@Ao5UYpuj+-mhel=?-6n41@
z^WDjBUV@B$dd}IO2rW*6PefE)KHGZQvQLtJXq{`3(^lj3TEQPx1c}AI5S_fB<c|sf
zuu4qL`WbHy?jCEB3f*H8Uc!;?^}G>`xuNV&goc2ixYP?fquEAlR_~L5l3GdE>7|G|
zxaFdr5}Q?5^rre!A)~m^n>*p0II`D%alFQ<0CxR;hTY}0e}LCxJI+Bw=zWr}8ELY5
zM{UaUnk^m>S{`3CZsDx9vY)~4<?H+Z4a?$?+xiPhHG6GMva~`fXgXTi7bT675#E%q
zh=>6zL~hae&T9R|S?Nn*G)*Y+y-J#~!Klc?`~RsAM4Q4ZDk`fly*~Sj><!sdS!(z_
z^VRfYh5-c<m01CV?e;JWF9nH5b{e<x3clEKh^ro4H_M_zMu8ajMmZOYKqB%{`(<qz
zw9?euFSV+FKn^2MTz@W*`>=D4q&*M>AcGu;b>!|rP}5%F{!`nF7HDHyXkRDa{zJVn
z*M}$UC}b(n<?uR<;R+iHxddP%n+5p2Z!CN$aVUiabjl1ma4l))`az(G`$4GvvC|L_
z@;28HS}t=m$o0PF-4=eKEPyXbAvUXa?#q~>LaJRymt6KS>x>Z+co`UWZ)W|qoPL>~
zO5P(SJ^Z<q(fU+gQ{rZ}d&F>73$LK(Jn2%;Lm4nMy@14GqebXEZ~LQ?A$N<tg%;+E
z9fa_y-jm_tpkShp+;lr2eN?2(wa+8nNoMT!Y;owPWi>}fj+}@p)_fEI2l~NZSnqm{
zat;i^RfyqSnGW^9^5~HPk-haMM_bAtl=%i=2xJr-t$c5kEX7xeEcp3VW7^ywztwL(
z8Ui(z+I3>H>PMYnO8zJvlIx$nnYN=ft8+;XBTrO@tNJGWBnyw;gT8bh?Qn5;Gd86$
zPE)~$Y}7XukZIQwcCk=k6;a6nZ2}4y=Wj6vl*lLq+DeMY>oBV)(Y~c-Hd1ngl$1qc
zS)B~_^NaH<BJ?*{z&$Z(sg2Xz$X{cT8kw3uKWyjcnDIY>hy3TDk{+R@Cd0-nGpDx{
zN|T3KdotQPDaHOzk`)x3cs1rvn#sjCM+WbMox|I?`*UWy;x5v0NUu0Y{`Y9`HI<f!
zgSwV;TTL4c&m;8Pu;9^~SCsV9mk`7NMEE*F*6lclgj~VXXw*FwIJsVY$&KinWfcQ0
z7%QmNg2E7*-yu-byGY&}%`ZfHhYPg^U}Owu&6{7^zFo^fgW632D0fq3(%Ly$jM&tP
z&@jSO+qe!tS5`k<x(=#qWF}ccfOh{y07A)!h)?_+UdPev0=}lc>d#W`!k9c~YA*#6
zh5Qb*r$n51444dD!BsNlU<5dh7f~lu4>=3IfIFlE=yFiFFw8^@&{IM8;v1d5M$YLC
zgwnjl=u;INmYwClna{z3!}$Pg@2b?99J^3l*%W2W!9*#F4c%Z?v|?VqNen<{>C}S4
zruF0j$Rjp~tb_dq4bS$Pcp4s7^yby-!}!`E)AR^1%3lPq*N$et-eZ$owYjN+4z?h(
zw3JDDl`1NaPjjK@i=ZLNNE9*#P%aE_wwR{DU4L4@1^KERvY@HjZ5qlz4Vo7z=%o4N
ztaSSI?0#{NI7xbvm!Zu&(SKn0H4M=~(eqnBTcbioJwV@nw-y)}*;3<6!vjZK;A9*M
zwj8c&sO5m}%ZR?ixhE%Kai7|P*shIx^KdZ7DW?3w1N^BpSF_7xuM`Z?QG%J)JeBB;
z%hyt%1H*dD+F6%FC<6mA04cksCjJEU`ixMXFki`jqf~&U*h@so%8C~p$88inKm3Uu
zB{J$cS}5g|0+;-xAdB?x0m@SE?FMkeo<hE6cd{h=+6<_|8Qy3Z{f-bi=+<Kc11%>c
z7AuK1(*Pj9k%BgR0qJHkvw9_=Pvp^4^9eqsTWM9db(vobUnXSo;;Z7xM;iz7R|i?s
z8E(+zpc3m^kIXFuM8ZS<Q_9)#66D>_uQ##w4u8^8puQ};6x7o`Vt$nZe};2FtL5f?
zpifmSFblh_;RydzxIgkS+va!L*So6zL}*etSF?Upn*c~KFuQXp(gl3IW}c2F4fXq5
zF?=o_N;-4w_%q_=WSb1bO$Wz5YMn4;BcoyRPb;owq7vaC=bfZb3tEXt-=joET|sXq
zR!MOli&xF(p%kbWH9dAJ(&B!0DzIGzgXkHjpzk<c`nXz)h<U1VU}Wy-4dxR+k)<;j
z0*RXOgT!Lr1H=GCMYLi_PQ1`C)kdQ<lpXPWp<%B@Me!lX8?|YEIC^jUXxLvL(Y_<)
z2oK=o5UspvE-Hc_i9VHD&`NTO8wEI$+wazXdXTr&T&KzB0&(c~?x(kWc0K<a%r-3G
zQE%=%Tj-1R{`=nmHac>-=~&Nj&}cMjLERe@j1t5^4#{n9&IR^7he^82T01`E#^t1-
zn$ZND_Ea26N7pk@bN1Mn9sBv~>hO5Hc2f(gtB#zeL`FHHVdIT&{A8{hi;?(>t@N_N
zFN&lm2jLG>aZsk*Vqf<*|L5uQ^)lw@&7~dfI?hy)Bm<BFsgT5CUr25RDf^=kTE0fU
z#brt+25;b_%4j#urU@O(I1D~9sfu<Gcqx`}R+^GSX&<SLl(sNwej9i2O)HxNuWP#;
zEYSO$#DE9I5B<6xH(g_cKsOP+v(o8wLm55+m~|>X2k{I|U)Q!%xc^j4m1l}M2Sm^y
zauEaf2PYsk^Po@*>h6BX$Vm)Xz?tkNUHjf=wALI_=cfS8A9wPL#$6V!9VX$+iST6{
z4H}+q+rMVl9N`mkm8w2U`spzvKVS$X0$f{SVxWc!I&A?HqYHDI<bEnfVqkda?EcVT
zU3l0Z?*dr>oNq^f@6b+6RR|o6h|`7*Pldko)01c-Vt}4bEvS1R!pKYv;NbOTzdFS=
zQ;l8jAt#j0yCTY*I0p!2d@~i8AB7oz_?zmba10ya8b*J*=-%_=hnPv0fcq)t3V2ZO
z8_!8O7KyelM_?wY{Avr$?=XKKO2j8UMF7T#qQlkz78l%`xduo0W4n_Ak?%ITAh&#g
zqUYE6ZY2nT>ggE`G-}Iqd$!c{Q|EUBs=f4&#+_GZsg^&Vk76L`PGk?m(0ojUSQ~eL
z-ErA)Fs+h40D=C}K+*GOY(F1@{N^gbwd`)@_K0gH8M|oDtUY0yl;Vi=$^%7nCL_RS
z$Cn)+zW6(@opFvD)IhJ8Q^&$>_nrcfL7q&qgsGbEP5?ymDkA;cPCj?Tte#=$uqfI=
zq<X2Y&BfT-?!n*shs2V#?#*ZUMQN|<c~sDbsv8>zN*1O?EU<qatp3u@RI_9h+V~=_
z8E@>OJktw1t33EICXM@4ia+MvBl(+BuXW}4T_jF&m!Em+WN8H4v4iZHWC=wFgSr5u
zmUXkQGJ94}0~`ppeB+aq^k5upmzhwM+C*|GLwa-b4Y9ryi-%?^U~=<h&QCSX4-9Q{
zK$io3hEX#c3M51_?Ru2BmyZhgq4hP#k%fUzmk4tSWk)n_?k`7AyJ2I0@j1dLv_?!0
z&>pSH&TC*?I{>;IIy2a0uAwql0I3N3bzP4qsribfl01JCjcbQYUiec=M0E)!fpK~#
z>Q8TavdNS$rg~#7f7}Nv@rUuhE1k*>hQKIAxkwLgZoM4H^SpY`rPCUV-sB8IHM=9p
z!dlwM=ULq}NtvJG=IDzbrzZM6%c{4FL_xs<E_Tv(mL>%1teIKZzdNLP$HYJ$KFW=*
z<2-f7ZShT}S#1!CmDXUk5>?Op_gP$*ubIsyk{D?1-^V_F*O2tb3uKB0D0==K4ND>j
zG*xrvWVpDk-kZ8e1BmQl`h_OLDeDVR63Usd@8HcJrw8*i;=)a6K~GnI*l-h!D_q28
z)$+>0y$GZl6Z&BIyL9~3g%3_SU&HmJ>uU=0#A6C+2(>Ii=*`M@xn93q4NhLhc5Vdo
zXvy!HuMx^03;!!09Im35YxPgseK~udWNTfagU%1Aj-IXEcEY(3YF_hD@A`MAmNg}P
z$I8sU0iQMXz20Mu-b-XU;;Z3M^hFh?SyV_hQ}oA?wrAfDTkB1!i(Ua@afU)Rd;6@a
zH4B6q0!|W+jmuQ&-zUGsB=i{5?ynUXR?zB5Nqo2ohFxn&EcTJe6UhhusCy6t!^4N)
z!W6KQTnO2$>gE2~h=*BrgtrU<O1phax*kt1sy@3Jradz`?DtxdxB?7?k6>KQaSsgi
z07$5Spo@jaw{Cf?B$op&fMr9xv1VVRh)_Aw{{&>o0mUfSO?mTjagwimyx`&wzuu7r
z*BT@%1K+cqAW&yLBd?w|SsKl@n!D8buYf((HK)a2rxB_j_y}Gj4IC}IlBZ3SzseCw
zY31(sTm78B;@TE-Aq(_l6=Jh$@yb?K6!JRyFuvAMrSWR-@H?$5)b8H9Gqnp;>dN)5
zg!k-0BE+tEnJ%ndk<R<ctAf6mvqQRfyf*d6Q;ZmZP;zFHB~)_{Tm>Mt$j#%I!E<_a
zp~JV(3A86w9|~(osh0T&1#dUeZ6iUr1@e`dydHB$I7mBx45E+#1lq!uNk$i0&IN(W
zbE#DwG>dBn7`vz;Ck$&GJ|VCzHiT<@)QXvf{Wq--LN2Ax*wW@;eqAwBNH*;OUrhn(
zsl*FuNK|GwuoA($q3^4m+I_2Zj0WoV^it&je_x&$p<X5$>RonP=-TIaGejFXap0!g
z6BPaHRpx)_7a|7pdST8@xn6c*KGT7YuDZ0Ko!YND!ipS$PbP%&s@2TLq?^g``+nRW
zPbBdb{h)bgrIWR<V&T6TH6h3ZCI5npLml?{^(N!>sl3)iT{}Wy%pmmPv}lp$&kt+q
zzikmYn3d<0n#m2f9)r%2Nv7$o!AFTiL}K>s3|neWsq*#Fjd7ZMa)NT{Kj{Jq_4b@4
znVxs|`AzFMWf@zzLB6+WuGbAtL>WcTf72QbMR0w@M9ifWM$YLSRWaINsyFP!Yd<AA
z74Q+NKPAymf@$~i>uV>!XTXiA7Ug!wkCt5%_}Sz^Ht7h7#fHx1(g2WIYD;Uodi!PN
zQobXIwWd-3{)#K}G^NF*5JF{47VQsb=N`McBCEY?mal$5n3IG`J`}PqdyLA0>V-xv
zC@fZU4g!^D6|_DG`9bRqRPqR#4)&e6NJh(#;_Js_b&NFEMx;28t0y(y!Huc*je2Z8
zsKB>i|4DOgk$#($Vz2s;j#`6HNPXCQ8+2zY2OUCiFJ|;VJ6;<}f684|LvDuLLrS;1
z9-uw89yW0OcX8t|=)+~*c3-h{mvpW*xU}HTLUJ3Mx^mTDZx@DKN}D+A?i8!=(y6#5
z4Y<8&TGyJxn!XP*0Au%epvxhRWBURCdBEPUW9ef%lIi}`J*$F8(Dsn8JtZRUI(-YF
zXxb4T5b1kn{h-)YHR5K-y_uw%Jz5o-*@r}>pz(Q$&8m$Rt%Hfs9VDkUu8*Z{q}0b~
z+}+#!se0PkGF}kw6{CzHUpY(GGsbczHQvK#DK3{Uy=r+M6akKe3LFWhjGGu>rv^EA
zxS7nX_K(*u9MSj8rwm5DvjRGiH~tpTqV_NEmsp+f`^NtncZYZ;7&aD~-%%U@#Xvg0
zM5zG~sPjD(eUX&sl#)N{A;^x_BbfTKswTOb(ssgP_*{gP>jeoGeg;%3i(=WZYw7%U
zh*zk62V*B)jjxpQZXjw!_zUYvp?sD7QIvRmBny+cIz|IxNzh1);(eIU-}|bRxi&>U
zrfnEk)#RHYw?KU4e!>u<1ZpT4SF=k`PaPByqH2U~OcLUq3$WCj>6EyWtiw2$;{KLk
zkw+w7FE+EJdEBeZQDMZN;k19c6Bd)qai{=tZYWoC+Qn8S{2h{yTODgpM(;KRefO;c
znk}Y>e~d+?w)9gG++PRnkn(t1#m?;n(R|?*r-9*yEB%K_dU;NepmjN<4V3W_1Er+W
zVrQd5yfXpS)ff|zi-F_Yt+EFI0Zimc1A>FjJU!3CGVYw*ynxn>mrh!gACLeb(A2A$
zWNsINSYU|zi6Bx5@lJwous5Gri2Mc{7jX{8*KDw=jXSTRt$YN0Id;Y`Ll)N4qGMD0
z$pHvd?=gygJxkhG(I2%0*&W?j()4g4Te*3apLMhUk8X2#u2KRCE8%kLd(xpB%nfc2
zHo{ULo?O3x9&giks=%rZIw_oi{Chc8IF%QPLcRt9Z;#tsoUjHdq#)=h+#Ph9#y%!r
zTL_jV6!=|(1pxj1oni*RVwW|ApvTXqP81)&eXjoJa^nM@&G|Mr6RjecBL({C;}rF2
zz2VpmL>l4Bgu={b=RbEiCLP{V<r}sl1)q&4SSemUxrRc12D%(-(mem+jM77|wTtcW
zH%SLoCL`!5p?-sMBktlg+*uX`FY^E{uH;`-J?;$bEi{O{m1*Dld3ShC#lU)zf*63D
zvSpI(v5?A9Afq7Yk=rZHA{Sap)Tm}}1Ftv@{1$&TUc2^6mH@HNu*aio^(MzIbdt@U
zG8fRC3lsX{Pws1uE%FfqHI!;W-NVj|yl86ZzN9r7&rnzZ$bMxwUEd?so!=5l!XJSV
zR=3@Ek2Oc9DO4xZdK~xqAv}#0<&Qa|Pz#E=2!UR^Z{)UCB}=1uw?X{-X&~e<@?>|!
zWQ8ggQG1(kZH=pBz2o=hS_f&GT?2C^s;MiVd`L4#(9t=G2(1U@YMwVvhDW2WL%x1j
zXG!w#8sZUIGrT{u5Ncl}QGbIbFDr&%7c8K(*XNQwPRb`??0%A09K<1g$2pP+Jpt!x
zo_Ae_r=n&dT{rzMH<vvO*@pk&Z?fHL{Q0^Yc7;%km`9UXZZQ~cCe!ORwqr~N#JIgt
zv|C>kCkC`>)q=WzuQD*AsbK-S48f`<ttA{(vwG-sGa2)>^r$S`0m7};C^%Yi{A|+c
z8#^xDqk-}j>a28H!uvPs`fqto7@{N2Us$i`<G2y*+GC`2zxDoVov~IF%+Ub7HQspN
z(tMGYP=8y4X%cJjn~Eu>GeNk!PMvV8vP^QKkgq^)p8EI>Ym_9qR9EixGj5I+4-(mN
zK}i=_b~C{Q3cyC8?|glZkw6<#&<FQ}`a@_DB{J$Fv01hBw=yBh`xTheLm3~Q;?QST
zI9h6e?D+8e&My|3h|e#144rkfHuuSpda++X6VEleRbbT)V>+NvL<b08t_y?rq3_j^
zybm){MXm)YBqDI|H;H>jy6^bHt+M+FW6%fq?0Qtc)!-(aN;QoU``=#%561C%D*2<T
zNMf;NGEH~yA(sFR*VxvQW6D`Q^gVMjTU)#Pp1zALgfi1ml>YYXiywDn_TH?<U4|^I
zrNzfd3ts{tj|4Kw5)Qd<5CKaxxmMDWMiZh!1q}h>N;3&D_Tp2{ybVd&IKm*p0qmDF
zH|6@%f|xSDHYCU)Gi>veOnMhZh=HF}YC+vosSFh8At<O}FVh;_PGuJ?S-yC*?3%-&
z^!JXu>3t*I7T@QHlXdMJ^RqX%KoKhvdoSp=KPr?Y7W+urqgDku4DgWiuSzULUw*28
zJC(ct^Q>-4M3JJ)!lE?6sFj%IJ4%O-^*k1S{_GQiPH2rZQ*sSUMf6g2yzv*-Gygb<
zg1%SGtSPiw{FN@mTN5CT&$Nc^^{8lME%Fddl7&f?iSdlz5#MH7!(E2>$}}_uYnVCu
z33L4al1sEL)VpH6SctbOKwJsjh(9}6vI#N8if(`O<6f_%@{t7@FrOm#&}(5)4*auP
zkkS#^vK;ykY_(|8RpWq0sGuT1Tw`W~=Pb2RZ-8(SFiIainjq`5kTljO1pQN3zii~=
z;_B4Z@$ZYSriz&kp9H;kXD-KU-%jP;T&+LyA!SoKdRvMQNf#hGV>-;Axfr&?MKpPZ
zj*lmfpV8lEzJo*|8-Ol{r8FrS&Zq}yZmBL~EhCuYN6bIp57TY)l+0=u2?4sJ0%fNW
zUN@g!WBD3~^YF?slPn~Q00RtHGrOm!a|EglV$BeF>9U)$G%2sT3h9K<sia|J#}8jq
zar_+E(K4K_WS943R^r7;)>Ai4{N8;VR59iKmu_C7bvNsbaV#orS=Mlz56aFTOuO;7
zS4A0r$?uu0srdxm&n?`7p7UYasyuUSDC9e!%K?^ld6G3s23;APu*2k}m`YlZ+72Ic
z+I`q%z)DX+7=1eC*A<f&jn7|u>^F4rPa2d9dA&B3hd{3xqUiY#oZbgR%8-b3azR_2
zrbId|3G%(A!vXF4S4;@YcYtuW-{FxktZk7#p6;m?VM#KJg+Q+<q3HRwx8I3D%C4(b
z?vy7cJe45doBevPJXxtt;cpGM8drsk$X;WrfRQot={Nl+N#EFCv7(TjK$nAJ`V}9x
zC<^r0N0W6KCR~}YG(+XP9n-sI?Scdz@f@<8Y~v?!5F|cICJ`xWc}&izv+NXOc;SIR
ziWL%zr4)io-a?LpAkuNbD$t7!wisA1o{m|2BmB34!V|Q9rS8!agDbeMtGLoB!xQVL
zPMy_I#Ql%{!g|6ug<`1bJ)`bY7nyF)U*3Uq<D2%pE2YPn<5knhw}cRN4Et7`ZoWo6
zKE^Gb?b`Qx?VwwjjRTcw3UoQJXVWF3m?7{Scw}!qTUB5z$}C0h+Z_XXLYsn)Dop#z
zRK=&)$}>wfO<k^%^jC<1*OY2ON<+?zWat9e!%1z5amojoO}xI+HZW6Z0&*k(Sn{O4
zp0mnIWm^DC6;ku?#w!j~CItK-iY^+Z0$J8weqLOAvua19_aB)XCnFz6+EU-gKO-=n
zZ=|WVd3A0NHc|!bjTuiTsr;<3#2xr_5y7s>qv-jsQoUn@2y<=jetKKVm;Qp;(rB3c
z(uk&oU@#fsmhdkvqm9>Tpqj^prTz#y>pcAYBGo2H#UJGjbUAEkhsh%~0jz{!L$^Sf
z-Fz$#g)JrHxy0Y`#Fd_xFzwfvm&;2s?RwET7ZqER4GqV6^kIWUCr|S=RAvA;ix#?M
zR6I#~l9#=0_s7(Whqld&ycW@=1diiPTHkayoGRdA%y_C4=9{viC*lb}W)W&ZVRy92
z01qlHS0e*k(vPVZJ<ZpBu>8FqN`i9)I)6Z6$yaeH!$-51PI`+>&U@3L`EA^RA|D$&
zD)Son;b(NQsCbewxE=Y!28s0HN4?o(>Fz#u8p`o8oj?BG2G+=lxWQCwa_k~uxZ5If
z+-`m;+7Xl|k5Tmej|{@8I<he>YiFSrX|dZ}VsVD0TZ_xm=7~a7f4!wZvO;_UeiIj#
z;T|Ms(f9s%K7oP?iOBF5*7F`=rRaEtx}((4G}2anw_xm0n_0N)^4~@z-vPtt-eT#Z
zcYCuZM3yZ0?0U)~h=>6S7+13bBwrhlpxMWbsY@8vwu&4l(4O$;(3}4tI7~5seO|)0
zAal9z0UJ)e&GryktZhE=uTDe1*&G&sou=?KCT+Xuk~KHEJ=oaHYd-!J_m+~dzjH`b
zZm=|Y&8nJc+5VE22T8+}^TQDeBnk;9Hml}(T&al60R#j*SaD%hmxHErX1lJmi{WlG
zlcf-R#sE1%U*&c%FT^YHg4y^_7u|~t8zLwo1oSw{r{R<x?=TA{HeR((n~C=F4dz#x
z*20*~6R!SkiD5{3?DhRfy;!Vby6(74hO^4gZv7$vfl@1>=!>+X$F4@Xp|Rx`bxRfa
zHjiHhZ>L+d5m51k0OC32-jL><Yy%g|vzmiu!e_Y}{e|_mlq>HegMsb*9PNAsK8Mkk
zmF6qYUL@)VJ^Xvao!y~eYZEU%cKc61-3jZ9-ctp&mIjKxD8+wD#UGPbbz9fn(mzn=
zJ<!m_ukYqwW6SopaZ)O+ma9?v5n8_X5FRckZGzfgeHY7y@<&mS#9~83^0)yBn#8hf
z-eu9KT{(R@$($v#AAj4BkU*w%PeMf>4FOJjDh)(U37~?eAvUWn%Jm=zjdA0%XrO@7
z-3FpAkE6&wW<9P7AA&vbpop-vvN`B^GybCSVW{UmR*D6i!ty)(-{(QU9%p)Q%Vis!
z{Hi|zg~t9bbn3^1XMc@NN0VDL?xHk5EMds2Aak52)h!?i^HuaGLaRWznq7eIkDzV(
z`ya`bEFY;0_`H}peYw13QF_Grw_((b4SK1rZQi?-dS~;ZYQ3!Y*_@4o94L3CfG&s0
zfo%i8gKppXWID@W?^pfFXo76o-Zc^5znwT_&~$XN$=mE2L(RoMeye-M%<Ms+h{Y&>
zVZGo)TX}y>4bYwvaX=~m-lnmR^Yo9Y(qzqVgRAFe=T;kcw(Z|%xm(NI=`r_DzAvJY
z<i*FD4A6$6pbcw0=!k)wDQ!_<9BJA8U_TS>$jab^P7&aLEnMPP&pzQ2m00ytf7Lri
z7H-^U9t$EuyOP9W$Jon=i2)pixbq9Yj8Gn@MusrweU<``HR*K&*1sdrL(TNi_=P$<
zMsK$@e@1=Hxg=n;VFvomV-$T+_M<8`)XYPC89=H)E9;fhSKkjSD?~G3>lWv2Xj(}a
zbQyzG*6Eih*>T}bb%z3U89);|${$q+bUCb1{`4n8my_(K{+P;N9ZW55&SE@Op4VIz
zZ#=MdKI8a1j0(<@twrmwibYy0Y#kEIcy&$r<unx%HDe5PInaIIk^&&TJez}A(|12N
z4*X73J`)$HqdRZNvjzuw+Ea}I*c%<$tV!+?VqyTo&zec*M#0p?ikguI>a0KS@~%)!
z&T`=R$TMWB)hwkV>k`g8T3ta{@>R%6o1l8>9uL5q+z#e1uH;JzlHdHV5aquH4nW~^
zS*J(04^Lxd@$<dFUkxgM`!_9yV0!0tzsm5xXe<bQzVD}hs&~))%T4@MK7Zi}5AFK<
z;LBV`pVtlC!?t;|Wd-WD#z*#UtUozlOA81nKC<RR&F{S4?(g(TOM;J6B2hDPK$pW=
z=_VC8(>Hq36JtEA=;_|Wz~bzx6!gu%Ezcxb`v*saZ4db<_;hX@EriOsn9|zb@h3t%
zffEqjf)fKcIw<-59rfyvku>ZVT`!eY@uoV>b0enF{m?0Y=XPL5!KeRXYW3^{m3r@^
zt1NfJtN&j^c7?{>V{1;r@P&fdv7fzXQ}%Zwsq?|NLu7TtuGbDL_3HZCv~FKXf#^~o
zQ8RupuI3YgOJ_*b%xypxPB*EuEhh5ZX4`p))QoT?-Jb|u1h1$NotCRqb+$>A{>&tc
zaNGZdF6w==M}dqoBsQx)?rnHWwHS-(R!Z;Ke!x>(8Z0_dG*+0FOv*@gK7Fo|rNv|e
zvxK{!qdT3t{dBi(U$ppQ{-2xr4!6(^oUXMzdh+?-`oxY;UatGzI$ymi%taf6FiZNF
zZS&>^A0K4V_);D*Py-5^$yi1~G(TS0qzaU?GMtuJo#>Dj>L*gzpYLO5wamOq$Hiai
z6ny3{rdAi@WD%oZZdA|{17~cRWSlfmgyp@=+UGeN!t$jptJ)(ba|6R`i$|h=At-bF
zT=Z~_h)CFrcq7;EH-CBF7kS~|-C3NKXTr_;7QE3k1Dlho?`>d9`hRUt2l1}Cnng3|
zm2bH8)!Cht7^tC93+i4QViZSTf-zZ%Q>R}=418km>$${m)_fRWd#MK<e(wE~w11_a
zhk=j6ja}XA#YHwnYrDsm{zT|{C|C2m*~jo0)F=dGoAOHWsbWXN>7Dv16dUId;;d}c
z6;YNdfMI1g#W7B;kG*mK_bmZ*1bj#|1L`*&X4w#pGtWqK^Sg(`xSn^yVueww&;<1{
zr{YAl<V~6ymd7@k-mvyWn?n&D)&9bIZJa+gq0aYa!ooM?E3`VD%6)hmT{3;`-4<HC
z&V5&(>W6+^&&k~^t&pd7NA)%$v-%L|FJ%-xzrD!wdWht8#OX)3_WhMCt&hLzdxTPC
z7Z;g+MEvc$re=$;E5e19as~PIz0atm84H!s9Ao=ef<TQLy*1t#VjLd5eUl}1q`0zQ
zCl)pcJzqUipvO-64(HytgJ|ARY~PqnBk6Z6-+xAM4RM+*W;)oHt(Ez!rYGHmU)#@A
zA(#Vm_kT?hA@MAU2{?9bc@vhKg@&dgAD;n`GPX>zgtVF)lz;+tVuP2lJZY@7*wJ$I
zG@WC_4TW>pEyHBcO2^`!Xv>=zmYwDE_l1a2BBQ8?&8kx$Ry?CzOvRKeeU`6~?6fP#
zCY84{kh?u+uvI?qDR~zuE%-^bHLgZKQQ^jBy9IfKd2Pi5f0QdE7F#BgaQAkm7NE4(
z7j9`4jWh2S^V2GT4PH8*`4Ny&;K$QvQy$XRi0$ZFR}H6yB05U^h4q3sNBg19>NA}Z
zcUW~2epUVS%K7u$%4TWS+nw>e*Cc@cIMP<fd3xh>cX`N#)8m)HY>7O|l*p(n#Aem2
z-#)xWaD`%alf$u!07aqFi}BU2SEOOWQVi$2j#}Nwcc)^4zmJt+Kio`acXWe$mdPrV
z2>k}e)of;a8y<{u!ym`Xhec1^Jo@_eUab_*l<NOxj+ZfOtbAGMrUq-%8%`gd0FW|d
zCRswD_KgcbD`l>g^sIS9tA5m^-d4}6o#EDG<l1?M$xxmWT+8m%d;*=@NzC@hVdTkf
zXMF9fO3Vlp@&EG>)VF57?_@hQ+Fn20lp7bUg;Hh1&H>XD*eLd`TvW<T71OGjpX>Oj
z)C_^X*G19uPj2VzK|;Cu2S=nWLEbJx<F@~b(}3l<uU?D9AoaQN7XfUx?q^MX-H9h^
zy}FFTOSr(>x&syuUO}LyC=@;aKQWe2NGO}2orPI1-9rTyP_DKnF&3UrA&WY(WUV_(
zAmGK+%*$nZ_1?rP7~+1uzp$Q;g-R2QTHol$AKe#?I@i}X{kG4_-KIBOho8*upRvKN
zU+)bG^$9{@AW+NqbhoZOAbq5O;07L0P<(({{+hb>e($#DMuXU(S6%qV!5fiji_~YE
z>pr^@7EODeC+{&+8x12ig-5G91rw<v^P%aHo^XMff6g~^AgS}7^O?hJYisZAFRFEJ
zZIyuuooER3F$%*_1SrG;XaEwwk;3Br`1;M0MmvkbiKbltui`KNZs&e#Gzm*Dmn+kY
zv9@NL<VTX^S5ZiIVw>vNPwY>Da4L7_-nF|Q021bu?U**2?#}ZKco#Zx_9dJo;!cF8
z`InP$t{4#*;=T@sfq&^YEFC2Tu%!QReCEZH{YV`+3Gy)?-Lh*PYU4hC+8kypTh{wf
zYY3$!g`0hrA>-`nSN;hn0fD~1Y6MTXn<lTA`3@-N^(w=lo7Mfac1`cB%sZUB!Yhbx
z`Qp`bJv3ln?3;Hh?gcL~@EWew%&sH;jEd{w%;V9{?x{0l^!K})*%u<DH?-Q{e(jn=
zo<B}Saw&aG%&4X2OM4CQ{p@scTdGbfMGF<lippFCMjXtFqxPXUbc`kz_TWsSOrqY+
zy5amu+vf%kr*e1e>E@^fNX%C+k5(H?BoU#1K?<<ZJW2jAYTnJc&IB593y9qESn2fA
z>N;2T?TB;Pa6^5@c{J}<b|1Oy5KZD~gGiB`@s4yT5xR_2t2wUW_AFb!8oKgg0-d<2
zxb^RmJw_dY;PZ%`j1;t<t6Qkef*e+*Rh}$<<ape}21VSzjbY$_EewlBWkakDvkis<
zu&KHn27}+fPv$<7NH||*Ui4UdlD^pb^g}lVSbf>*YxB5XCn$oe&R<mTC(kumAe<`K
zCkDgb+{bNQ@6em7ufd?n%lW@=a|?Qm-~X<!4kR?46<gG*h?RS%EBK?VND8nIbQ#bT
zmerV&9eY|)U2$AQ-n6~@7is^0eR*SlT5_w-ygm!UVQXdobV)jx2>l40ajo=AwtjJR
zdZg!bCckIuuL7Oo*HWhOCjI-gH@c=SCwVKBa=$Z{C)x0pDn5xY;=s-u8U?*^$7pG)
zMnRdT*TZN*xhFTt;(V_r^Elv!ZgDhZK}J|~eoicVFc1S~)FnYYCQn-AGhskvUqg28
zTh@JvO8cfU2g@f^4;CoSeUpQfcUnwt|GlQsVUzYBwU}<4BLo_&hG8fQP@teh2az&~
zR~Ao~sM3i)k(d2c)o=Un*|MT9T1+u{4Dtx>oi@w))z4{#buE@cps@-Vh9cfL#6`3@
zyuNN>9=I3Uac{?NqkL_#&3vS{{G46%P;0q4D6F}ivGsY8EXW!+kM|U$Sx_L=ZWG&7
zQ_?EjhcNJ{9lZ#$Y4feac(DFfSN&F3S33Mc@*L%c0rI|D_TTlIM(dRV8Fns0G8sf@
zT2ig%%4#BJ)yxAxX}6c#Au+@|)-ce<ch8gce}*0tXi;E32<>SI`gsfo|2|Jq62zm*
zCx1Ir5m4=6d9*4>v0K5pFgg4_*@Nu-dmjMugTU%4RT|+xjn%&f;-3yS!w{CG{-Sze
zq%&KPWL~u+y&p<J85$jA6vv1r_~@^Z9r3@<1_CzZ{N%DnG;yc%8)qv?Mc?^&Kis22
z_UjPaRF52bNute3-~7B$kxS3IFVTps{MoSL@plg^kuawoG|$W#sxPUI%YOV2_s0Q%
z=x`gsM<4j~arAqmGgNBIa*0`gOH>*Lj(eKk+3v=@K40OdumXu{-rxJ0M(cZi4kr1b
zi!~5vg&u~XXr3KGgkFHzO4XKPh*^KD`_dG7=&vaL{iqd$In~4I7px?A!p1MNZm*?i
z@bMEQ1bX8MhM_2Lg86P{B~Z-o_bGSj>Tik4POI*>JB557a{jlA1WFDu(H(b;&^1lv
zhw}>weN-?6*DHTfJ^D|`3qTKIae3)*Dz}(cTqZzfxm4m+in?Imd8_7F)tN@}=VVe4
z+Qj{xxzh$*cKYu)O?e3P1~_hP3o|P78sOxr%<teF;yqORis!*2jc5Pc4!kAK8xtK)
zM(7%Waj~Y(%58A~(uFjFYX)5pL8C+<%t<G604}KH-lWuAt@-0_k#m1Eqq!_?X7oe7
z1k>WzFk@j>SW*o|SZ4Z*>iy$*MLAO%2v*tH5L^9D(hGkUsZ($9)T8S<<vGx9lbElk
zB3!9?1-HP>khSejScQtG7>1(C({z<gMWA`4NqeRrv75`H+E}1SvVHmdVQmsm&suvX
zzh^(tC72dYTPp#Zx2+2PsBB09mVtdm5BNa2>2?uLpJ={%S@TmFJm`E2QlhtX$Kdou
zFIiqpUlgl&@6G(cA4N)1fYk}v7=R>SE7|@rGQ*~Fb;(d}{pEW4I>+!glk@4a(=M*A
zU%qi@6Zl5!EqP5zLmyh>=z*TaI|`&)y}zj5)<>0VYB$lJHJhkC8o96U38e(b7naSQ
zGpvdSnRb&l3d-7V`|^C8ALd`jJC;0#p@@Bz`9WqLAQrK~=uypmZSPigpWJts+B~yu
z!Se~fCQ)%^ZaO~k<1_6K^}fHBZSp|R^gkcIj&`}IDW7f|+U2u2rm6Jg>6h~b*5Ti5
z>zbw(wNa4G*(Da{6Zk;%|G2sif2jXIo=+#79$9gvVed_%tgEadWbeC5DVJO%dmLY6
zQzTnuyUcL*NkwF2XPyz+BjY&Z_qeM&`uzc~d%o8D^?ttI@7L#jw2TiDd}S@WvX!1g
z5g==`4V%fL%%~wkB>v+{#Jl%7sabzd|3J;cdIZZ7?*?UqCJgIV)BsIWOzFpQZfKe-
z6#_GUGg&iD5hyKqxj9p@uInrz=7v_3Wu+spe?>r70#m+cCW5CcWrz~ey`py27y6DG
zJ;p9J?+Ls=X<F=}vs{$9w?-)2{PE<GmPp>OALMmd3`VPbDBgS0LRT6YErbXlhPNK*
zMN<1;j)3NXQY`SkMVUINAlqU6+yqL1^@LF#nJ}wq%+HO1#-^CuOg}DY+7qA`8D8Qn
zjbfvJ`ZTp-e%D8;w_B*twSArq(m6p#3GeGtC;jA!SAz%+9s`18JTt`X0f_b_KOAgw
zD#M>P<|cfqE%<)IW$MTAuGfDw3!f(kCkIsNQCV<~kbF5vyu43YJJawU>v1Xo%v>0V
zU_{@g`(TY*sc<><VD{vxx{UYh0Vk=*4jLk+_^s)VpBtm1?%6|XZ0D$e&$OlutP{UZ
z0{2+tyPPZcpG%y2Fw2B-?2bc(-OEF}QdS>}{K%6>*ym1j@l`_>iHe9i6VtNhkf0-|
zkJRWfuz)isN}m=V6|o&uA!nit3o!?iX`P-sDlSghdVh^|=f4b(=~uOF053GnnhJq&
zrykZ#OClC@X3vNmnO*M&WiMR!h$EYcAtf$!^OtK&9XwJm(-h*$>oAkwi(`!xL9{2u
z;b0T_oTGFftkX)WCW<%fPLY11acU?1kjb3qPy`iBQ5%&ge!*Wob%~(gHRBS^+$01C
z$Fa28gPKJp9X8i+*R*$M2*tV5E*SFJJ2M!s7qhL=5leu?78YOShNeNO5Eww}oLZVF
z&@S$ow#UV}N+%bwH2C|Lu359t337D6fR&P!N%)rf<muwQA(+{QDma6UhYHxDMvtuy
zR=k8>qP9EQfsLN-Q30tczwz2V^HVfGo8o0QSC4hAXxpZ3r#kof@}1krcm>Nxpjk*^
zVBTm49jKYF(6t@CE#TWEU@5(m^v?D~TweBD@|sWQEZm<=2_0yUP`uuoN*M5OF%T?0
zMaM`n_lC&w&Uk9y{&uA2M;ZD>5&I|9>f{ILE3kK+j%lRu&b9CAwxkNV1qW#OLY07C
z<od6QIOq(>4wk=Ga|`x<f1P9NKUtc%*!+Bee2&1&jdQr)eMys8##C>JX#=2DTGNJ~
zx11PIonX;Xxw<xp&+?!{qUXbhp(2zjvqf#kVgIZFPwy8Q<D6MHvz)LBG5-%lJIPWQ
z*fKpO4)C$My3I^D*RK1ID&POz@#2-SDLF4xK?A)t=RMQWGP~u*N~xMT0oQ$@_o)z=
zZ#IuP_3on(jow*p<=&Hn#3J*xZQ@>jK|k5aKOyp-+wi*Eslkdyz3~M5m&ao2nz?zQ
zoT<LDmdbK2OoH#Qy*y`TJ%7^F?Z#7Y#ueq?AzPZxj|*j=jn5;LC6_KuE_U0ATLU0>
zJ~+5fgdf7Bc@_R^z+}#Cw8~|xmiqch^C+^uFX+DwDz!c`i^TrA=_B^Xxyn=sjOXJ;
zZasBWRpxG5N}SiS2Lg7(h@d(q-D{*x7VRdkcbafz6}+pN?lzH9l_rG79YI;snKrD4
zd{qNAOCZ<2y`di@bpI}9@Lq!T?$quWv2l@?04u7`Sn-T!HCkX-D=^ima?Vh=ludvN
zsDTs)&eg<<(8ZX;SIeT;t7rU2Ee7F>3R|~x=tbqpQPKwnBOm8_eKA|+DoI(JUQ9_a
ztf$uUg%*I&WA2|Pxq+V$d{4E)oLehR-6kqtF1GFyH!s;+d_?YBAN0+=)5rUJdzWze
z13JcE;l8q#4l$P3(&mBW;pDiQeTntzDgRLgFG7EDpQ-18-CyjzCGb&Zy4xzJemkdH
zCYiT{#$i<;g@J@=^?Xh}Z&ZfIbkFYy2Ja<oG;H>lvcaBkXcYNP{#V$qZ4<jeKFauP
zGu`boC*I%48-L3O#ifEx8+Hx2A&i<(979VAdYYPJXC&^G;wxx)z~8sB88!8Aee~XJ
zp517HT^Hkh@%jY%_#-G?=E6V%@45YOs4#K&v}mVS#@8TDh~CWT7(cL>xIl65?kmkO
zq)1D?cMN@X1mz<P2XE>ITM~OZg$Vnc>4oz<BXf<r9zW<smC1fC28NY}M>)K_mr*h<
z+oc5wO0IUW;?EFyDu9Cr4&Ia!++#(300la@ifrZ$hdbnZDwBSlV(wDhUh}tj3;1~N
z?T4`zA3(I8#lEsb0t9>kh?&vVwO6cSbnfxcv!{0fSvGERa+nc&yu?dR^op1EQ*1;e
zkN`+o9m~FWS8qoIprd>G%w>&ZC17Z29Va((ajWw`J26AD!f%1T$SO{Jf4su3h=y0j
z^t%+*Iq^pTXs_H?c4+_NiUVyrZ{efSogoQlxw7{jVi|WrW69cPVlDElCEcdj`duG5
zC)|U`9yann(1__);*i4{PHw|~sbpy~h_1&xo3iq$pPd~%>$!>+*sXg{xck-_a*+zy
zx4^P5`Xu7zK>EztUZHME66;NyC*r+t-iT!rA=`QnH7Ec(@3x8-*d!=pxPCT=CLclh
zFct<9Xin@yImJ-#Y)`=YN3v4l+$TL6AMaV1|6~&*3tOSeoC`Ek6z9I~z8ITMnz@|(
zct%af7wbbz$0hbX71SpXk^Z%xQCh9p4fL8aZH)djD`t5RUV`poju)@y<W@<_5M&`f
z_R&vj9bc>pt!cyV(I6jU1RdCv4BO`vS8EvBc5a)O9)LTe6tch}iaxzB33)B4IyKwl
z0#Mu%(2Kl`f_?=0!gil275r}6j2PUp{ulruH(;DsP`BqspOeJizuXouMRKulE=vKu
zNDlvT7_nG27KyD_xA2U5+#>wYXgho3ZL=Rakqy=1?ZH-FgKZ&-0aI-?Q_q&WYnz|?
zsnV*l6$XY{dR1hJNjgp_RKO<d9jaZvI6v&OUL%L-0`)Q7)2BQcTa))D?RmP;71?x*
zcp54M#s{~|0Agl#wb_Vts{8CeDsMMYMaOy&+h*G1Rs_4{D;He0>#Ubcnm?cp@B~CV
zy1JB*lW~r9pLs@22_gAMy)#tCM#$zy6=L%zEO;2+u1|Wm_B-%dy1rrIT!sO?$bG&s
zA39#X!kOg+_mT1Fr5eNl!wcb3IGKvYGULCeQ$^c;cXu3hx?`JRenlE|6>QoNAX=5)
z1vynTw%~3(7QJ+?Y_D}~PU0vzqPf5l+WXR~sJZUq%d!Z~(%Er-D6S5K9^2FUxX-M4
z0~hDyW8N;JIA2pL5kKH@$3#DaO_WT<^nt;M$Hx^yd*ks=^c>lSBAS6vO)3N?>R#N_
zZNMaA`$n?E%Iordn`YJ-2<#ZyK_93eCm?TqGyBknF5qyvG7tb!q5?R)Y`|IcwCMu4
zNJb}J$<jJdv~`Wz-^*pj>{nQhxc$qU@{pY`N3%AJ^B^|YIFo#3Eio^&FaYpQZdVq+
z6Roft9%O8iMwL$fJ04AQ_*N}-MPmg{PG?a0@=Pav$`LAryb_dC2_-N!e9m*PDQ?f`
zZf&%6(E(Hv)I_%r8x3og`%Yaq7w|dKF#jB{D(5R-SxdBgOBp+$a_aXw?zcwm+D);Z
zUp{7k1Hj7Y>bR%0#b1eY8CHA)qt2C}2BN9aW85aN#p~et%eAuj<!FUnx2h}wGsi3B
z9#&XDkI)iZ5mebEw_&d^w>;w?i=d%nqUD8yA=&-<?*p-Tv4v=X$e{`!7yNYF)8u@0
zh9)v8jjF^JMesmMQ<FVDgnCYVOJ>n8sKwJ!l1*s&n;(HY@?3?}{uY{p&&=TfRv6j7
zhH#907VY5aHX|W2z|_gjcooYot{Ts0#)q2wvTHF}#N)Df_aei4{WDDg6hP=;Wgkhb
z+I}@7C(e2Y#7%G7pq5`d)Wst2xec9+=W$sqW%%Cj<EZPt&L%}pl}h3U+^jULR$H_Y
z=cenNjD8Gj3WI*8Mvn<w!)J`N;cfXs(Y6so6$F`vkX=sApuf=w#I8?>H!0!NYM*S?
zZuLAkV#Y`-2nRz7f9dO(;?`N))y~U1PVWtb*s|nTc92&CE3501ukR{os+;6aSP|^h
z6t0?sawXtklU??f!W+P58|LCFHd<jb!(-Yw2RwPzmx4BL_0o~SHQHh4^Za1m_anue
zjCxpharpO)q+F<r?xru(wEB7Z)t`IAW2tk$lwaEQd?sIIWand7BJP&zUT%?_P^(3B
z{Q8|Ycv6~2?+FzG69O@HH)8JhbhV#+$m6oe&{kb>!=4jDUWKus#iWaZo39~TUz7x%
z84)$&jPR8ul7$OysG`JuHn;AkWDml&+>3%55bc4H9_v~ajnz$ZZT(XDZ_jaw0jxxl
z?TX4U;X_TcDKiqq2(NhN^16>Xk_ooqb$AczGfAwrc>b$!Daw-e6H{Ser~x9LUt+l-
z7@~1rcJ-(7gSEaF64ey69@by8GnMnZ5>tt5+@sFZ-B)_-!SPJl#lEtZv3Vlp!gSrr
zb!847sZH<HYlnPlaJEKvM=Qt;b*_LOVWi#jrS)W$_-St)TNjP>ge&SGVPZ_Sn6(PI
zfzZuwA&Rz>ZC<No(X2B^9x_r=Rnl&vsv@YSNiJUrQ%$nch^;U%&(Zm(F(1msxbCc5
zQ&XJBXj#dLlmU~Bi&6CCq;m(VA{<)f=Beutp8{1(3QpUormX_K$XJOYkO=qkZ!;CJ
zvhAei{uJG=u)g;Jq8PI0wZr784ZqRVwH>b5$KbC_*_pnwma=ogd9!q<ZaRjUNr-x<
zyC-w<kR!MbN=Z=RZ7hWByc&RDj0#u|LFI8G@oV+CYwERYS@s+T0jn)2a#!h$l1dDk
zO5Efgb-qRTVOyzVQX@O5k!A<<B8~F0J%xn|n>J-WcnLR#IpexVZfy9cQ-aUZ@BP#u
z;&!_j;)Hmfseon>^e1sK!S2u*Um+5B@M$yZd=8f@tacKVVVC2mrSNULUbpsjV#QQ<
zX?g*52BF7t4YcA7O>ri_7cbb@u)01T^Jjfbm%~JM2mdmDNTImRBcDirMS72Qa_PBI
zAu!ExrhZ0@m?xgFYwE_R>lPY@Z#Eps$7`P$U4147&8C(5hz#;yBqN;7^h)i5*YVS4
z)Ei0tW<9T>AO|5!j6}CwUaHu8F*f~l{izWtXdi)IB&&FSw=j31<32Zwx-kmz#XFDt
zXWTI|O9+IvYbYJnNQrZvb@H<JI{og7&Gj^HqL@(n1z}OiJN~2X?K`qLx)PZ3k78W1
zWRLJspO4?Yizr0{%E1{gROnyi7W&Fs284=~hR`ZjEu+v9cl#oLD1JDM6-F$A--^tr
zt<5%6UmuGWL<!THHW<ALam+5m+P^$z<8`{q`}bIB&m#B-6D9v~4W^D^E1TMNnWVg7
zC8jX)Nro{ss%<gCyFvNogxA@vS9?6Q9m8E#hjN7RI!?Q9#=AlJoLfX|G~wQoPtit^
zd-Q;6KB$weFi@+?`)xrrHnRcYSRLj+D*cIr&UlaJn%`gh)c&xTnAYgM6cz=MffJqF
zdRM3r7%-dB4I}2)mG*`aa!-~mtSwd^#kxbq$y>BMAR+E{0WX-yL)@?$XBgv|HLbAh
z;_Kj$x^ch(y<<-jo0?CsTq%n>PmbPO;AMF&2MNt%ZqM-hvnVzc7;M^LRG6)w`vUvU
z>2doC{|WDwH(i9h?xU27^ogn8?Ga-6)<uo&c2SIqPEb<}bQb7E=9uX1utG3TJV(zu
zj5n2ADr_jQF44_U5>rePIq4Ri_2X<spR!&-=Q*xRKrC}%V4mS6J_9LK#G(vwYn-@w
zcI%bE)UZ*}#VGQ{F=q_+TFK*J#n!2&n*HYz_~LFo6`mJ2|6aG%jsuAd1+6RWC%jvh
z!45{%V(H}n6VLvDRmg*#Q0|!0^l1;a`coQ+mD<@(=;bV(_Mr0RMg@7iSRR9Dj<rD3
zb8-wd;NMfs>S+ef&a`jd%X#8`)g}SsD{DDUebPIFdc<<eGr|QqX(9e-iP+g@BwlqS
z2O@<2tg@HnDl}1Iv&^}Gq)M7Fu{z|WE9MF=_b1hFSvTBXs&u<rCw$Q_iCi6uK>6&y
zTMLic*M9OcvqPsc{>T)CgX0|6KUq7Y&NRYaFUg+W$j_Q$$Z<DliX>MfFH~y#_N{)@
zMcBAXyrbIs;MG8oFc%zb5-fe=Z3s}yFWX4lS+=+?ym1(5#C-i~#4X8Hv7_oqb1nLJ
zccYpvno%JzHd+G9x%Bvi?z8^goi$E*Bal_{y`3QpzL9_Zl6pO^9ADf$yAN+FWF{6%
z!FRm5f|7R|F}Rniy=#QBWM}k*CacF49kM%2fzojO-di2(^eRcG^R#TVIB!xRFc;?d
zXO93rRs@;`ReoY=P=LZTqshL%3dc45mJat5KVP~s%$Uq|9SEj3ZQ!$pj+vO?Dgqcz
z@k`SwUY_2VE%X0&V3qg9iEZt7X`wK)4I4CDv>56FHF~TQotS-;c1UK|jtE5DdeS7)
z$^AAh*YfOYmQ1*xc)nN7qvvf=yr@sq=rLxAwB<Yz$p>qF$64Y*Qwu4^!_T5llN0e3
zw%h(4QMp>Tt97Pg+!nw?uxUevncOWCE1Y59*8#{0qJDVC?A(1*a-?W^3x76|w39gP
zt)r{!lExM-Oi?gTyl`vT{G}>Cii)RgVJkap){9GpT<=a2t4-)Yd)o!Z%6<+ljjfd^
z+h(8_DP*EM-^2R4)aiv3_e-p9rsb`}TE4~JWD#$^z*y-zGg85HMy(C>g1InIE7#Hw
z%(FaFsdAb}noh9<w<kHwb&HHdi)x(O;q8L{8kb583jB5aI<ux3mR<bkY;aBGFirZ<
zkt4oGuB%=#1llFGE2Owz5{qi?;0bARj;Nk=MfCiRKXw(e|75Fx=VC|_9WNgo9A{Vo
zI-`yoIo(GD{Whwkr0t>^a}ew8jUu9q%H`<|QmlpOO&c;Sm5NMEa0x}D(&{$M%WfZf
zb{~?BV>E>Sj&>%Bj9$+1>9CHzh<XY_k9Fq6YBtb5eVRHmIMR6Py9a8Irxu6MZ`ko9
zgFWZgOAPTcvs=;_ABf!z@)<Ea`?K*{%2%*y1E0lZl!*zvv8XlPx?KFc;yt+Y;FbI2
z9L4~(qOx<@KDh2$%mTL)AVh20kfFyXb&SQd+Sa(Y&whE%>!w{H2h+^o3x!*t^NBL@
z__RdX-BOx3jfW@Pm^BTs?BcDJ!IhoBMEM6>ui;~Ldk%AZrZW*yXURd!#wLn*nayTN
zhi}Wc=+F*`bn-_%_m#Ee4q(2|iz+v%i<z;S8#hxBP_tvKAm3fQrPUs~JcLfX4)5QV
zdv_s7kuF^b4vxD&tZMa;$S9+TG6Urgj4F9}$wiS?xX^C@PRV0_l*ucl(;rOIZ*nqG
zAuy_7zHgeqrWf*Vri=Y@C~-CC&e^0Ni>91qgkaxv5&YXL&ARq~4yCI9pJBC(!d)Mv
z9<22V51)8J&WiuoPDzdrX*b+n4)wYGv$<n|+YQKo6b6cT1%poMrtL4c)1;o4&hTkp
z%bQq#9!Bm5Zh;;rUf}FPp4z$Nqk8Tq&7n9M;(o<ntJerZ&-5wZD0o}LDF%=u6=~<w
zB0cAMYHPc8!RvCB!Wx(g$Y3oD6tRB@Vl#wKjLAk%2cE6icV6J|+X(qU2BQKIx6=qF
zsZ}wKlzt{+iQqJ%LSPI<1Qv6_--eZBS39D3Hcu;jF)BShNuHzPl=RlJAPKc>igjEB
z(Z(2K+4DbSFq!J1Zk-toSG+LU<kj%T=!%Eh09nB!K+8sJyA-#2?Y-u*XsYe2As~I$
z!a%K3$MO7J-_gqU%QDHo6s>#iQwWwXw)Q2*{bUAz*piIJPB)`qiLb0>d>&8P^FKEj
zkDFrlu+h_M^URmXz2ZmOHP3FRmBRM>>`eZ!o$(hM4Nrqq>Cy$@;5h46RZDwRYAZ$=
zKNKajJID_+U+|7PM*&-(*i-6yerjjDaq4)l%s)0+@LT_Z<0)~V9}w&$kK+EvbV_<R
zL7V5!a_CahML}(ZW(?FF=ta)-Xn*Qq!#H-E__c%MJAEF0z1y=$Lm^nSiZ!?ql2ieQ
z3o3;Rn)U(cMP`VFW4XakH=l0WFR_r&I!X)FADyHa$4ysVv|1jo{s{+xT^=9O9Og0s
zg6T{f_>3jTj4g1u9IyJIK=h36pmODa7?%PiHKY;)?<X_+!+bL5K9q4m(~^K*<WF>H
zwjcPBa`i?0rzqLoSOSE4f%V~m8;QkgF6PwEwvxcJz?l=l%$nL*cJU%Vy7B>H_XAdz
zvbjlQ6+MsX4$OL_Tr5r!Dy4}-oB=@1LU6E2Tjg`%Z0w{xkH7Bm_|Ce*8eJ1z6JqV6
zP*m(n#Jl)RRY?1=k}R=6Lhk^*$Y54&Ob^=wi_OY6Z#Dsw@GbRH!j)%~4$lXY?X>`1
z%2G9n7~Dx|`^T!Chg&j%fg|)oQtN~(XAUwD4yYu#J|W8N-D?%8XIHHRy<jQ~)XFpj
z!a0|}`4NtTYap(V+Hka1TpASb5tK1+HVxj2z^u11DgWRo%KyH9?b;HxwdGD|S~#~o
zc{h<nWlb^6?8f|RhP777nEGqRL8XCS<ky%RX-pt*#Vu)~&|dZI=YMciL_La$I6>NV
z>g|l2dOB1HjAO5w;T7uq(*!Z1h`Rl@R)_k5<6dJsN((l;Z#@0^o~7;#`bxSM=V>CB
zxxv>#3)E5xcYV9yH2vuxkYJ0Td+aCuVV*s&9cE7-iqKoAi>}LPS&1JpNU#c@Tc6aU
zWynA&SU(0^8={;d{8Pn>yXqHECu3ot);pcIVVuadZ)3QLtG#P3=Lgx}NKKL{24~@3
zM>D$Q&g2}zr*gEXE5n|aQSgngtR-D2cX}GJ+YMC|nQYosonA?+IqW<y0hMo3;_9_O
zo8qt4yQ@|n!oo%3rCYDZ9aj;!YSKg|P0%#{jvvEgzb&M1wp2wBLV3KO(#G7vvgd~x
zF&Sv1GCZd5yO$iR!)&}SmLjP3l3no{II7_-gg=rbwChY`@@byMj76}*SJv_?J#RG>
zka5vzTDuSSUeV38WXisjeuKP!NFclZ3-x2b#&^Q1ZJ*&^Q9;wffL`Q1bja&F;IPro
zS2L~bJL5F>M^2XL+E6A(g-F*jG&t=UpTfJI-;|?eQ7`CC8)B=WAL)5J$`;qP9eQyP
z6{)3sXe$?G$lVncbbpxH^GI9F9;S6Ez~S@}P_rN$Z1N@dxlkrHQ6#mUq#}JNNAM4U
zVscUXbkfyvPl*Ip{@z3Eeri(!^eZ)b?1nYx7&Wu&!>@PaN6_^W-u9nMPzl#^$^KaW
z(?${fA!oeD@7Z#MQ%{`=fsr;=)0U!6Nl@YKN|eQazSdXE{*PtLUz$gcarnw)zy{5~
z{GS&Y+AC#AQg<&hfV<D?^O5T&Bzsq^1$PvgxrXrh!clwg2&3RTUs=o3dEA+=fz39I
zI7v$8Sy<>lhGlzALzk)K4YniODwO`uF#JsS(mi6JUB9Q8{c9M<{3#BS7mvy~fJdc|
z98M38o9t1fkd@NJH4@eTTg>i&MSmy=klay~WyMM~Ic*Z?Me<2REdz8zl6!unkS)oV
z@##5flJ8j<t>MG<tR&wvq)1EtpA)?$r{+k$SN7b75|e<uz%sG<6Bho&q^fhfTKC$E
z8v*bUiGmyIKZqu7b#woZ7qcpLj@g~aA@iS)^k?NuB}gg~`-uMo6F=>(lPQOoB$An)
zuC8<crepQQgGnlR#Nz0g^`3w6)Y8ffbKk!zuC;8ihFO@Y&m4Cn1JdpUL2X?$`e)=c
z#*eBe<vlsHqMrj<mvtvyD*|io;hH24@5y)QExWy+^;5|s#vx^!!Na1(0($yX2+RvM
zb<^)4JD7abdMo?Z_CTMR>Kx-11<UgC_)wD!vUf<Kvi%paRPn>XCS@Vd1+uXzELFv|
z#yl{e20Xpr#RD>fqP9zQVRJjymf*3_wFbzAcGJZeV%hW41DK32pzJl|?t8sguievl
zdF)>#g$;#hTO7KAL%!66Sb8r~Auz>8s)|>rdpXSG*Gt*AwiPnHRUW+4OeDwI6c@xI
z5ute0w$-a|<vl7<Z5DJx7!Ee+{75U3fK526RYFp5DQxbo^K(zKf}mr%r%(OSPh#l*
zjB4HuB^kB9jJELq$Ed}4Z|BL=@`%O6NHqPBsQzL1y;@34B`MfAJ;L<<+N2h_`YvO?
zC33f8&74MEUBij{)+1t-%6snW2NoSxkefruuCD8Tt5W#as4=s0)f808lr;fAgKgz@
z2Ka~+^5O0OSZ~5tQq0U?dC>(v?t4)W&T+#in~KK$QIgXM3H~i>$EkpOEQNt07HXeZ
z4B_=bGJlNv=12I~C}NwidOS&X(};$R<}q6ii(rngtmSoj9`pm?_cPs=ZS!!?T_<{u
zuwJfJa@k<a_JSfwo)FoP=q6IMn^^YzN32Y`dZ<fP{I;a%ZmFp-9HM9-HrG2NR;2Js
z49ck>OEi<A*NH{L{M2nVme&<dcY6EmCg)(5JE8v=l{Li>ObYMUkxTA@M^MFdrVX+0
zxyR{*i9J8Mpr@&C|M6Fee~n5pL&8Y<5nFzYS-MVII<aJkg%!Rfowty@ULfkhZ64G_
z9?yjm`+Abom3=m!DqZu1{s5uJnvI!OK&-E;?QQ<3XSHW|c<V33IzW`plAJy?Y;g4d
zGCkNL=#MXSTT+7$`_J|E3J=K@?IW_+|IPF-4iDQ&KA#gwq5s!^55M01BQ$i0>;L?>
zJcx|X1lNHf3pA>=WY;D5js~_|kRjO1tH^?G5I3xkZ)t_z`nCtQT+qiq!aP^ub>t_P
zF#IEowoFNTApJheQOZsVfbp5#+B^XcH^6uq?t6cO;_Gmu^@0o`(@;hF(9dGS&P_<y
z82H0>s`%={`uQ9w+Xb8J{d%wZMx6GH#18WQymzz`N*Zk15L+aC2P`P*H2q0?sT&8W
z!{8xQiK@+H?Qwsai{ouEdoOC7{N%#c=*R=W`l_TfbI&?fhu>0DiToGr&WP0?ut7PM
zXLU^}(9_iDv1U_NDe9B2%RS69UF?=aQ!VgtEPu2#IgS|YgwqnO@-f>RKA-mj>d&Ze
zAGVChx=3L0)SDXrR8+-_w#a2Ed4uh|6QU8r62$_P!cRrbwiF*blgz#|o;A%t*Uzg@
zi6q3;X2YJOV!<VhsB42}DwK{GNz;>DY9~!AT^|2Y@wJP~C-DRFSB7mUc}z!AaraGZ
z5kYO^fP|!BSG|7A5S?#HFpcuPNeLAci6T-Uk{7=;ApYNru>{CHl3`<J<?8<!HYBq<
zi@S@=T$AH4gH*w6bPweOTDg$7OF<U@nMe@eFEz=7;*6H?<roynFb9Q7ssA%9+Y5P(
zWZ2T{?cL{A+~kijp^s1;I@R*{Q%OR*R*mIf79l@aC?v!eC{@XAUef`4uSD{LY5(ye
z=GnZ9Uu1oJrwY=}VL32b8O2P@szSl5A%ca|pYlmrH7dF1_b=E|q_PSL?Cv>@JDZ{N
zbQBT-MKxqG{0Vff)ad_#J^fTcvdraaD&2@=rvPOboQYb;Ii-oDA~qTp@=q>evUlfk
zcack7#CB``ezX$m1yRKhk{?6(JBGW4%NNiib;kZMx39}ihxey?>dRFMe(l)!P7cZO
zAsm>;3;21mFi^zSN|p5%Zv1v?>)QQr&nNcxesp!6E7F=I-$OqaMpjRlk_d%K#P*GD
zooG4AkUu>ia*ME^u>O;MYums|;96;r%>mqrqydQAc54Db_HNy|>f7nMl=g}nyaWH%
zS5j-q1A`ItLl67X5M|X^uAbsuGUfgIKkr)#Y9pW<VsNm@>?*Bz3>G{g(X{Ot?ztOr
z*W&6wV7=!onMhzbp`-q!j5NTq=O;Nc8L6Ty1lHS0QUm@iJkNrYD2FlBujZ3kNK(UH
z`5^;BtNeO)R0xcIoCfj@$oulThZ!tCx&T&fYn;6iC3>)~za_J9>(-e$`M{@clGgP>
ztA(wR$!{Tng`Jz={s-)fy|={bTB7Wx#`MtnQiI8xY283CGDAEPca=_2aRAIfGrz7E
zEz#H17x_c+f}w}zD@yvO*$*S4vqsSsDzZMBq>OYVhPy=kZHS<rhrxZX3iaAOhq=8|
z|AdT4+(};C8-Jnk?pa7RU5q)FJ-_=WlcgXk?v>&zQpoyD6d}1vykuTMD-JhryRcJN
zv?}+1R{5%owp=i+F2qOw8!Lh7(U%V`k9)6p%<Y~0Ka)PZ_fW#4ql9(^riNMnL0RrV
zTS$k8)=T7jy;J)?lO(;hESAl<47M5CsxRG%YogQvBV1dKKS^p2-iXgm=5_!w*a`zh
zoZUc>8}O+%x_a9H?U{X>X4W?Y*NP7czT8cWU>D}p&iH4K`!o)xW>^HXd}S>!&2i^G
z2edZY=#)ilZtN!%jYb?=WU8#E<X5%gzkJ3)3KTHhc3Dk{&>UjXu{vKLz-;RC;2udu
zVy}8QR%U4>Rqq@I%}9bvmuqDm8=8_S-_iuI^gDYJZ9{AeT#gKyW2Pfl#;f3Yg{|AY
zW>WZdjkdGkA3`tq^_~$oZxc<=C!mOwOD8>zn-XeO#zTL1aT!puFz{Mlaa%}qLBZ}6
z+(g%8IprTmb_{nd$Sug+)XLkCi0BtQC?G7R%VS~M{&$u`X~N{?tRtIVL)n2|<iqak
zF;_t1=bk)X4(2l0mT}QJ-g&B%mr|@=W1L+xuSnrPn}l!OCk3sOh*fq02o*%G_d8Ih
zo|4W`aqog1USTVsy|Tr~_+y`OkkQL4RsWnW9Op(3PHK@3j(j}UwXU#VOE`#{kLiXD
z3GG@YjD=J?4o=Y&<$q7%SgvKR5qaI=d{iV7yRR1nkJaH#elLdg@ksMW1^UWbvO6>1
zV?^1q4M9BbG{x-Qbvj1#@c2V=i{M8;v{@fc(y^|3E$+`gEdmFd40O_pz9o(O;6FtP
z?J8uQ_@@xFVD63ck;L}zwJwnkdCA|nomNe=AD*ih2-Kc|$xfa5*R;3@dAY8%Q#<2N
z5=ZGtRo|Qnf$4mu4rij~cQ|vJq+`H>SEYL;_r(y3E2BXXE@xXV@Kw4lF6KnDtLB6B
znF|B8a?J0%ug1PrDmf002W=$v8*SxBaUN8vS3Gkv;m^gbosedv{5XhN;mk7owQKyu
z?ON@hb4XD<QazLD`)3cG`LJ$IN4}^RzOt4#dYBPEsZXQ~*gk0Dm9!`PYIX?#9aP^h
zkIpANRDHS<pWjvQ@sIyVM^78dQ-LG&JNCmIJpWiUV!Aar(jJt5R`UN(Jgsrfw_q19
zuUX?<w7ku>ULCfn0J4ML{QX9xfWzeqDG{ZKyHUmEJE4NemQPw?Cu&G!h^b1ojqG(z
zV6zQVMig2~x+tjc(iBTMhm3{be}v72pQwRg>{l~l9q8x|5~JI@CXXn@kticiVjl5C
z)@OOHNR4z1qaHLuZz;7}eK-eCp;98<#m{g2All{mWJTiR|D93y87m^5Ht`~hf4i1i
zT%~;e-2@PH7r$OOTZu0~>@!x}p46e7NPMIV8^T9?=X#0#axJgHIru-a18<W$#E0@v
zS0?Rw{{JleQdQ=ubJBF*`la#@9T-DxP%9P#(%>NRd@*qzxv(L+7)vaB{v<WCwLB_3
zsE;Uue@{TF@G|pL4yJ3zE3_NlgsLbO@#y>i<2rfwsVJgiPV^kvo+g^)abZSd+)9Ou
z4f_dy*id<muC0qk|Kn(R)G9Gfb?V&51(t`$Qt6eIY;NqQ%=G<-V4^!XoF2Nk)k(Tm
zp$S)3AsxEE0D6(vU)}8JVZ%Jx38>Es(w^Cef9uN|W+<lI(XkP^RD56q4no`kqN~&v
zLCq3yu*n{Kuw)X}i(`n<)4eIid$g=X$0Zru$Hz=zVT|%m-F-5@c6^R(-Ma2u8^w+K
zj~YG3ES}PlC#**(lsT%(k80KEJ$ys*T(r<`e_Z?S8`7ohWMH(yVbi9KB-lBn>AsD~
z3R%W!z9zc_3h(S?ivMyI!eFtl{(m@<-dc%N+%K^nb9;t|?npR`N#}qU*edb<=O+F{
z3x;LS-;rg$Esy%_asM>upX*Mf758m&fRCUC1d{Ku(_2+f;fjxVaj5}x^rj7bmWppo
zjNpXtH;+Bn25K2|b5-b9xhVzk!q{7)ISfeykZRj>T}tY4gOg@150}?Oo_@Ot992&m
z{C!LJlQpG(NUH>rhtEMuQ-=xh9kHY5_AVJbarWV~F=nDdU_wsnv$L{b+~>=~nEsTe
zqVorX4}VG%_&@Pl=W!SRO(J0<o2H8Lu(h-eYvL`$HJm10^8Q^TvtaE}<%?a=U*oWE
zwKbIsoH76_Q(<79CRfHSDb%RAd;h8E>%_{-I!86bNLj_zrLzIrN8g0PtoELgiXb^y
zVS>x$&OR5^ZJ1r3jUD|LX~%I<m#E(Pl7|mSm!`tpaIi`A)f?~b05UE*L?Qf4jEG3@
z(N3-dLhp99j))XDpUgt?;|`JV7DUtXfFCJW_nwNrj*ZJu-?>C~pq>?Kpf7#n%*G5+
z$_rsea^5*A1ZK8dpWldCzQ?)PVbF{}SR3&0GP8^IK1QAp{KVGpZgVa3R>x-u1L2Xb
zuFHIWv=RygLXR;EzF@oyKF+=?+n~yia;wT}e8fsQ_{<d`)^6>0X`u+8pmKM6P9C6#
zr7$qh`sO`DCRA0H)xFnEyvvITaU%L2lrglA^gB<s3S`3l#Jyd6-;Y%tJ8}r9yLP)v
zGWt5M=#u~4vJf=6H1)7xmi*616J_rGVCg{|J<XJz;wx*pZYTUMgm&j%t4Lt5HqaNb
ztD|No0X{er7g0}%dwBBcN>ljKe@pB~K+Ht4kfwPxOi1!>qdd`~fjINCOY-a`7L*gu
z>=)35ymIMQlz2X!=nnEeX?`eI7!Ee+X>JyAL$wC=B?uIQMTZq6wmwqM&={@ZZTVl#
zrlEaHmx^ROCysDN`TELQ0&2{6wEvFm*rzn{cGT{LzaHjB985@#Snuj*a&>&()$n{X
z{Vqj#-Pe-V&<M+(pBo!%!U}qPcC=43`Z{iA>sqd!>m|m6wqBZ0rhP3flt%aTsj7Q6
zx|I7IUm&urVwfls#3FH`Ux3mf8fxQai$<F-fGY9v)SD(~n)GXFxj-+{=smhRmy<~G
z*@dL(y7$<Z;`6(VvTM%LQhJSuq)Ramfu~Py;%c0ILIxyO`J-O@%39u`W_c`#${AFT
z7cK^)FJVLtUsC9+o)od9+)F-UrQ)!;7E+3Odf2Rs=dAChHwjDLX-Lh}^PrgZmh{mx
znk8+{>!w{d2gEJw?+$cUBW+_-MB>rX-P|VL<xkaB6HlLOA7qECYp+=R7Zu1R$DSMP
zrFjhp=(G_TObzt-ln<(&`z6+SV(&e7>A}ETI+m5Ez2(AQMSov<;Lerkr$le$80!pO
z0eMRe#$|X5&pmL)uc0^>xNedI_8Ii-+-QRHhSRPL{bHW!8O<PQ05y6{*wQk`=n5`8
zwob~_hV^v`;>O|mL`9U)p!)sfUCaG)XP>Y>A!+`oTwhts+*lSDMk?5=guD6fUZ0(=
z3>@&f5W1bmUnQKveCi!mWOG;vLQy)U)abEXE7%V{iNf!38D;nOv~o7vFye=EP(N)$
z%C_Fc?o#Le@~4QXR_=$ub+BmzpV`GLjZD9ODR(*aXE{}e@r+8tKUF9x4L?ax%_Jk*
z(I(AYwqI+#`~_xy#!F>3NBwA%9~4A|z|b1Kx;p@<BwXN}Yw2H4j6`cy&At^l;QysQ
zMVBt-VU@ZHB1onc`pQ~<{LJD`;>fA%_vW{Y68G8CmC~=1R~Tv1u(imH+PiMeB=+Hv
zV8-X1a4_Uev!k{J{8ONct=H+Qk@B*v;WaYORj}ga>1R%lj8VZBK|zn$uCr(wVcErd
znu8T0upztjCADEzKCS%@q>(=I937_~!M8+2J;gSnRk(0#c>rt(1B1qCO&dPvlxiEW
z%KvbycJN3=FWv21QYsSZc@auE-PVP-M6dJrqk*{NDp`41BGx5Muc04-UL+kv_tz6*
zLS5-KDV`H>@FGq19n7s~hc6|-OTfodq$SrYLsOv_s1TS3tZ@!6fXMb5o;i^p>vd*p
zdM`e+U7#ePZ?IhBk^Mn6hCgPRV%f#V#_5zIupOlZQ?4R3bw9tXcpXmn9C}ZmwXOQb
zzOyrt18Z^JbK>5>cMy8)t&wHzbuh7HMU)p?oJbmov#FsbS2bGx!ij#i62u9VEX}K9
zb0=q*HLbDi;#<r&IQ_6=T{Mo>vBT0{gnrru$`vql7Pu?7-#VXQg!{OmoK>ZhVeP)c
z@|+(IhP)qNy=jD_xm%mE{&{{I0@>&8aX;`Lsak!@H=}->(jlQA*%S*^1EI%+^)(+F
zTI0sd%I|wgRqX|_NaTCorEokwDpX#hcMB0LXX~1<p1Tm^A*AG<x|Z!b&%8#<O6+`6
z<qn7H8oY1C{#f5xph2#hl{6l!5A-5qg|lpgMGGIaqt7ngFV`NvnETP{U^<o>r0%et
zmm?d5P4I6K*7N!Y%eC=)?ShwMb&CJ!>Nh`vfmj8G?0Km_6H84AJiDPmUS%a!JnH^U
zFQ6Gj>x^{18d{`naG@`abksZKc$KP^Rvqy1bm~fvN(qmBm|rCNQfJ-W+0B>vRXDo;
zSPKK`E!=~%1eWJN(l}PX87^LL3S0{jyK^ww+(Yx~wTTmLb@6=gDKNJdU_{(u&DDMy
z+(t<y22QzNtGd^}EhjR>s!yh`ykfY}rq%GduCmDMm5Y7?jK)}Y@kcX!DJj^@2E=Mj
zy8q~U2il@jr0n^DWs3<L{<sFa+O^H3{y$^Jlxb~IJpwLlkEb?jN$K2H{$7L1(r<*w
zjuY9RoK`57<VFIR@O1LJENpR<!^^u;4RQ&E1A3A5XQ11`bjRbpZ`PVPFIT-<NK7@&
z2%wzZa7x<t#o+GR)vj^G?@k;U=28QCP8J5{-M6}DWJK(35|@n5?d12FD4HCarslLl
zjf!pETb7cAZC~rFO?doWO@|ZXD{HxYEXw;1;PmWf+h*<w@4khX61wQlk9-tvj=8-<
zUEkR4IYY=hPvtG2ZfZt_z%;)yz7u<rNZUy&ZkHvKX41?4qs*iSgXiVT`0!x~61$-T
z?aDoF+~42QC;t87Mv63;IZCg9x0<+E7k9|I><>`FwwxbB_EzWq_jIb*Mf$Hy*+exz
z(~H*3(ka&9Mm#0vaV|>IgtA##|1dJ#40uRkVgPs4u67N<ksU|0&evBq={#rDYb;*O
ze#^SQerZ-^=eKR8j)3u_G3JABU#ce_)ZI=!p`13QweNp!LS*3NKcBxOH<nF#+^$0G
zEzTItf+*iGbh5s#^+L~F2!bx~L?Tkzk{=IK5L2*e-(f8)ZO>XlLw)}FoaimK>vzy=
z9Vc2M+ZQhLPof1e7Y5QBKFTpx#|68&{B*Ug`Z-%PnybyA`5(DJ=0ja{H?h&v@j6bl
zigozunO>_&5N$UIJ@$bLwFXkR-`0w7DYLKx5>FIdFBsvbP!}!u&pkEuE>FOqJUrJ}
zqA3t6PldoB`Qnh&ptAEnqLxY*^6SuBUexSR@WGn1wpc+|Tu8;%zU1Jya<6CMgoCqa
zXwwBce&1@3eOH^b)Ov0wKUHVf`tT<`=75~;FNmjLYuw)Y#9obgIOiFFi5fk|ZEV%X
z%INy24d*GbgmdYswP@zxGEUpiAb(vdQn>po6UXv!aV^yf53O{DT%rPeAccWlbf6a}
zPZf=|SB#F<JD|Vw9sW*=OOFs0g`0S=xF+!UoOLi;6bRJ;^djH1NNhc&zIfjHC1Lm6
z&KHkN*q^BUaipdduIy{vF%Au<to^azb2%ok9T2T)!weO09lW;o6t=flH{~6mQM>YS
zLpexiNw;{`kL*ca@j?QAqsjk)QUy$QDlr%W!-HsdRHzX0UQkXWl*av0<MvR+)tYy5
zyRtpGlrkGtOzb94x`E#dY-T}*5*>ej*73#qfK3}7QUf{Q>bjK$ck9XMrJ5!GGy3l<
zDHT(Qe&=a(Y;;zKyJKqg`fiMf#4`Z2XMknb5n<Fcf;Semu2(nx{l>BV?2Xdpak8T6
zLWN6{ivxYV8Yx$urmdY6kan;?AEWMb!oiyiXZKK0bHF5W*LcyzZTU>2!$aM?-nZnn
zo-Quw*<ewx(J?eLdU>VlkB4@wu<SYljGCsniU5Ww?>L&el`*q&Ued>if8>}?Vmt<n
zNMif9f4rn)vupy<dWQMR4mGCXO+flguWP*?k?<tWZ~T}zr(q!ULH=N0?%vb6H@cxr
zl9#|Q`*)v#{sY?-e=Re9sOuYE%$}~#`WGcpL4ogmWH$TRcD@Xxa-=R^jx{W$*7C*f
z3&FvgKAm_5&<n;>iud5l6}&FnM9vq?O#gziZ&Dc`7IW5ZW%3K4M>SDLP<8aC4KpC%
zA$@i2cm?T0UF-glX>3l-!#Eh_E6|gmXXgjmNgwLILBMXlX}ZG;O)~*{ku`T5nNXd?
z?xr9m&VAWqu&?gcKr=Xu40oFJsEOx1T3{C(WNehl!h7{^sVIYLY{u_3sKDAilvZoX
zb!!zDRzp+B`QwKTpCG8GT$=m3+k6YQI5VU3f0)writ@jM)~g5nN2@0Kr=%e!kI2e)
zldfYtacF^EfvMqG_oL5KkD&I&;o!|t*&QF?I{3K7zPeJu25z&qbT)uDPy7LS_v8i&
zL_MVOSTo)2iSiEu`nI>3IXgtC5EyHzis#UH>N1XD!}dHSe2rXKUD~(LtduwO9-<ag
z7O%XkWAns)OZFZuEAh-Q?c9}cJ@heiCkw`Vh`M5Q@v)@`(#@R@Lard3)F?iW>DL#X
z=<%ErC*3W>K*e;X4flRK%Ay>>#BF@Y!9}jNdTqt=m673rjVWfxx`#65*i@66*MCjq
zf`d0zpgTM$Ug{mGyNhF)&n8%T+UMpMHH()iD>}v$XE+_a$5X4<p2W5@GEi<2gQ>pC
z1LchLm9;!CyU8e+2(@*YzPIEfg@3KDyUj6w3Rad75=0@b(1khb+4v5>QH2L<TS^@3
z=_5zS1)w+|TGNJI2F86&P9s#~^azuuevZIy(EZ^Tc4L%p0|oQ2R$bnD?f<dujEsu9
zXQKmHA%~vR$N}-&pZg<7KS-EYsmL;<W<7r3<8zH=-L=0;Qs~6+HBQfN>QqvJbbYan
zVABRK(NLf3oJuGj+Y>#{uGa^}x_9o+4XC7>I5V+Oo}*db4w;^fZ}l7X_`2+*<D4vt
zu>Y*)3-zW#V0NA@^6FhgDP)}hD;IRX+zX!|yn3HTd4PvkxMR3$*Ix=&V0)3?d&ytM
z=k<e`fSbNp0eaI0uj0u48=QQofh8yERFhe4pPzebLOm8}a;S>IqIjfwvcK8#poYC?
zIl7c+vooD(L(k{w`#=VBzo(7WvRg*mTB-#engbT5JXQ1-s8vFzRD9ToclXepzwu%1
zBR>@Pk{Ugx{G-u_FX}Z`_HLb3yNC+D=BRqooQyp4oGW>E|H&fnKGpHLLHUelAzEP9
zLSS72W~8R-3zY(Tk)P!+2SBfbyvrx!)~i>C6}+`9uHO(kegNChTX#DbtwC&0Z~j3&
zcxd4|{73B;NzAnw8#60rOcwhJa#x<Mc(N0a+3XIwc;4KqI2Rmr1oaVw9s|F7%7~Jt
z?XHcPZN3G|nSQ@C;!I-_^CspFc}^-_u<+@U<!>7$pf8+IesWIyJ^*qTf`j|C1ml=A
z)p6ya=kupOFImI7qqGa?|29y9saT2Wy>3ObNNiq9s`wuRZv(x^fLoWJL$8C_yyZ($
zAax#f3Oi1X3K6f;6F!phczKby?pp5#W&0Gg2D}xOL1$!{4WhMSEevcCo^l87L4M6I
zo|RwKTCXMyD|j|o+><E5lL^<)KQHxtbtipYG!QfwTTsZ&4Na4zLSQ}$o>NUz1lmP0
z1u1=X9u5h}TW+~Rl&7nhfl>ycTKD;K?HB8`)zxb&ymn%m0LYQvwBcu_6Ax+?{B2mN
zlqiV+v^LvB98hYMM_p2}Nmd47(avDe(egCU09Ga{Kn-l#z?w573h)uzb*Gu<PIG4g
zztKJXkirf9o0NCDUNE{Mr&{Z2nl6)`CG>Ewe3@O!NypeE1_#F_wuOUkh%JAru9{0a
z>Njdlcsk~vwGmtS#gE({#HhnJR~Ebm2_O#6Iqm&`&yg{iDF7EV?H16B41eJ)j_L(}
z8@lwS?Gkpu$9nw^BJ|e`Ir$Ai)@B>&GetV6&mQ-)^dCQA=8UqyvWv?lpP`E}$35-K
zA#MTFf{Z&GOX1sg3k936D!&~dLvc3KD=j1Ycb2~wwXM-aC>G>p<$*q*1gL;;*1|vp
zx}b~hgC4Hvl1h#fJCg9}eS^8_l}HMC;gY=5klGsV3|1^(M*VU1EU{l;=~w_Yi!9ei
ztT^i&eO%|PzrV_6YD3nUnYO#u2)F%Y|M6qA0emIJj88C=k(TiRk&8D3EBQk6Ky6Qx
zH@tG3+pd)k#w{lI<$~SC$$W5!*ihv7jDx+eE-2_%d1=^fd071i3Sle^6uJ8SG_ekS
z^CS4TUs%uDZ<-%$Hn)C4o^m&rkhIyBUDvg&*TwI4!b)qSxH+L|LO?I_=IsqeK#Vzi
z*U@7+{_m?-&Yp-+@UJ4W*82316st4$p0v;*7{n!<<Eb@#p-+gb-RyEObPHrxH)Ks<
zb$NL+8IX|hs`e~pWg=_54(u(eB|F_;*qCdy>e#*-LV8Klv_V#Dz=`&QX4;0x;yMFO
zz3wT=@u7)xjpl~XNHTAVF~oJu>_Qj_kCv|#?X8WPuV1}RFDeRv*g4_gz9WVj%z`hW
z3noKz94C@G$`(tdjf_Oe3ir}?Z)jwG+NOSXc5rCh{9ja^w2jck^>!lag>6Lg@VWPS
zZz%6ZHuE8K=O(eyFt9RrZ|dH{O9=@RE46FBP=9Ll82j;gSAdUknI?8!SF@Dmi^D^a
zD^daEF*U&eY~i}YN$ES(D(POkXEFq{IB6Llyz-T`EJ;@ig3f{L>VBQ~tQF$jJ<|y5
z@9G+^ly)bNRHcam$-~Je;alolJjRpP#2+m=;krkPPa2&C(Oyu)vgZqZJAXB;2PlQP
zL@JJ-j3s<aW-+(A-cCOI`d|$o@4c<oY7*UE;qt}#eL)5-E#rfHUs+418l`Y(D9EmE
z@x0q7A>qw>gJWgczURrEp<pPqT|-Gu_m@exC+pVPR5$%sDQq+-ez0kSEYsjS+7CK7
zT#gr{H1(WYvykv+hR1YSepm{*^?Fc)ows@!l7Qw;{XIOEsxa~dz5eqg6&27*TtWHe
zSxgU-vF*0If~#o;hKrkC$h&iPzrG$sY3J$e<{#;`9j?DhSNh6Yc70Wff`)?bFRV?!
zN)@*09z;Gc3bi{(NH%)WQMtM(R5RCJgj%S@j|sXDnppOHwdM0#X){2n#D_}9?zo$Z
z>-37sn-Q5N?UbiyGf3rXUDrSdbAP@Z!BJ!q5(4%+f|?@Q+c(%n`@s+wdrz0$eHQX-
zaKv`-d$`#9bjpLK=A4C#xR7lPA%SkvVLAQmbTqM&VA=CQYK*|&H)4kjo?}^lFFrQ@
zu1ID!dTgX8;hF?lccKPTXBICN<%z1X(j4|vDHbPm)W2ORAbklkZa&<U^7j?v3l?b`
zc}TCpHes6>uy<4Yeaq4LakukSKn7D`pvX-j(A6{{;N8XAGoFh=!n*>~qg^o}Zj^_s
zPXY|>m8IF2gz=XQ%ECp})TpocLPbF6G4nTz@gQ>nBzmHWuc4hzdHdvxy?_O;GLGTy
z${Po1=?2U(ykE;h27HT(tJ#;Zt<;e#a7<ApZprAe8^(-dj1Q`z3r?-zc&@Xn-8)?2
z5^(~Il#;XDG(Y&wJAk&j5FgzeX8;1xe$c_P=R0qtXs4+Gp_|`?Z32;+3y^W*GJPxU
zPI>m^I&kL1`_(+8T6isjLEJ(AhhpFnls?$BA+}i5kGn$?m6EcU*XW&>eVrSBNtY0S
zQQycd`TNwoG_9gEp|M`0_HF0>*r(7IJv}K#&W@{82n^e}#|6|Yy6T$kjJJWoxapln
ziBI+q&A61vSD77fRCtgv!3gt~f8_Su=p$ssSzTY~4{G#Svo+TW(}Vx8C<6}(JC&+z
zH*Wl;()Iy_YIqX)C|S_|&&c6CYwVs&kWc=G{lk0NIj3kDAH4CEwWMEBN`Q(`pHGy*
zkX~{18YDcrT%8$Py7q{?f!_rgFTl=vc8W;u+Cr2&UJGA}J%Wk>p~v)dUzyUK6vTzH
zgU{xkPjJ>kWjvw05zPy@=vL)oqlNIdYLnjZT8SM8-V>AReO(sIgLu;74y)tDOB%wr
zMK&eu%)}0?J%ZY*%7Vy?Qmf2ve2tS!Q;pz-aw<_FFl%=FcL23Nb54qe@NJiyge$k4
zpHLnJ{|S_;6xY~y`T{{2IF0bZ9qSf^@R7ssb0R<yDVLspU3T(|RHe>TaoAkzJ=tkM
zUWID(+JnlOSSca=t+<-~&s|noA>z@$X&E*3vFzesi|G=ew}3k9<r191E!52ZgHGRp
z)H4tx_GwCH@pbfc{p`{LCo#jUw_A*3JDunl1rvQ`Eq@4ep9gNTntH*nqgVppW!iHL
zcW=9$A}dY>+`Y&k+sDe+QNDn-*O0rIc7tg1bt(jgw}t-!Kn=!sN4~v}9=OyOS(R2&
zRf3(B4<WnD1|?&a<s&&YM}0!GKC;qwTlQvtS|byu-hC<rM%qN<5h#I6^8QPeg&jjw
z*H}~d(uH@AQpkTl@E{D^QCh$z&weR)L&zgsD8_*9khv%z>$0xp<#9_E{ab)Z#P;e+
z#9eB(rd#BCmq~Y4*$Zo9+HGp8FzxZKcHqbG_YbRXj8wo+NMWFePq?aP+8Al`#XfAf
z<zv35-GG>)B1<15E<h&I<J0fmYpIMJd8sH@=PZIZ;C(Cay#@&<<&hwj*%xEe^OuTB
zvS;PVwX5SSYCw+8vfKOF@|Aq-8UalBhB6=|7%1p+K{;8e5Ew&YJ{=&O)zxOhp1SR9
z#CA`$!Wj!m${VsFY_1P_#WFDfb&568;X9w>c`D#55gm4wj!{q*J~QG*6wCFJ*-bdA
zMK2V7jZB7bGMZM~zGBKZMS+8iW#1srU-5;S1HH(HJz5_??1IR-^u5nI=j(N=oMzLG
z8Mk~V+dB?&cdrch``nhlsa;oz*_IDJf|{i@Z7|AuCC#Omh5hutA>^EL(#5-tn9HH#
z&&cbK1@y(?p-cs<h$Lb<o&RJT4=v;W$a?c|DF5$&oV#0%(Un1{Y-5Ya(l)YBNh(>&
zp0Sifgt3!trZkd58`-A~*|Uy)qLL*<_I2#**ctopx@YwIynomCU#^*XF6W%b<E+ms
zy5wWB#jjZ3p+AC3B~5=TZkBhhi_-3Qgl~sur@9zcD(%(7OJ0FIU;3ErLhiUgC)f;i
zQZ`jBTp0ad4gmJ|#QeCC9FOv&^G*}pCetUM_59NZIJb|@s7u3xAN25nhV~d109&|o
z2--znA`<##<oB(ca)PT}cTyq;Q&xl)o@`639k!B^_!n+{hUoP4PhZIH^z|e^b&v4o
zm;P|R5s4-~0@|_MC)3`*{)$4p@R`7+_*ICDe|hTnKa;_I+GUap?yy)|ZuksOjot;o
zo4h#$?ea%M68bshpBm|50+-_3i)J%MH^+D}5;gw_<rL4mBEQ%hnWp%P*#Iwr0b_4l
zel!kk%aTEnGQSnd@k<6GoIk=vbxS>myaTSgPzfHQdlCi1cXzm3s8a#=TVH{Qh8<VY
zXQS5vP)gJqZW43zS}^)Hu;i^L=f&@OOUL><p@=O#^6@{R@MPPv{XGZ2|AZ~0yOKn$
zJC9?+OR<?&8x@zhiAL%X$3G@QE~&pHYv7>m+-^Ok^}v$RcZ+|raff9!p|>xHHvTxm
z?nz3}T7LR7nb)l_#J?QAD8K@{-i6AYFaC~ilJU>Mb^kYaUcZPu>^>(S$1N-GvbJ0z
zJ<J4vQnJ=?lLbIK0<DJ6O3ZSs2~3&)BSym)M9f(DVSOu}k;49c`VG0IeCd&%?Tagw
zt7hbaN`sq*FXA<DXd{*kO4=<mUyf80>ye+{$4(JJ^`+I?=*=v`L-W?{J>e7p68Z$_
z(O@yhOB=6?USxbc=`4;$KEs{Eyt!8Y8f^?&r)>U}(aQ~z-<tR<D47`rSk-@qPZICl
zQO56o#PQNb$MbEkS(n#`jYP*0Nd4Q)jwCp*i32#rE&uu4oojsZL%jhK>KR2S>OXFI
zm$%c?e_Fh{>Hha%uB`?RzWzo_xHkfcxIsQ9d#7#mIx!lkQ40U-b@^LJ+T~BXVO>RQ
zxuEPnN9(ZUeBRLxg*%0;f%j%zBIBt_M%FR>nz;Xx)f|%O!M0I7mZbD!Z+7A>Ub9I?
zi2l3na-P%xAG62%;|6Og@-{{-dA~gYVV8Jw2x0xqixTs-z@{E`Qeo!IH?8!`pMu)n
zxg<`hEY#9=r2lW@AMFlVDNaehc<1masVnF^uS3w|PpPLBLzwV&kl0jw=M>Y=CcCo<
z!PG3yNp71&sorpL>izeI#6$x0uLsRnxVAb?qEx#|;UowUcJ;`|bcGPec|FjJzsLW!
zU((<{W6_rEFInpOi%AokP5<Prge7Xu973DR4QIYJmHBkq1*{nN%}z1_U%?E@oi_7A
zaFJEzT+o&Iqv;nW2h`RVsfkp7P1pa%^(gFJd<XINaoSfoS>JpGaV(q}0C$3z9Z9=M
zRlCCI!QI21fgZ1|o;o(aSugSo+EVY^{x9R-2e@SUS6r~UK5w%-Y(nwsun;<cKq9os
z$7GGmZMBg_5LrE>cK@8@wl*QjVAHX(czWpa-lxeDum>vnB?CEn3ii)g182g*f)-d8
zcet1VP|cWpjA~=Hr44{PDdfVBe487=q(Z%OcY4d*yNQB9=T?He;)C}5<tgro8ETnR
z3-0oDxyBiVnKOQRGigN^sS;=;q<Ceq_3zM@c!{w-+YyII$c-A43ETW91VVE2jZ@Kl
zXG_knuK!Tq_3_w^Vqyl8B(33Vp(;C~%)qV=S?>Ee=b;((t)<d%mra+>9l3w!CySTS
zYVQcNNq2449(lbjg|Wz-ya#+`$)Mcnuv!IA!?zsz6JBa%5ysT+Zk$sUTDg1jY5hO*
zC?u-CDYg2|U_Z*kBh;U^6t*SRTjP-sq=`ejfEkpBA4iS>;EsXy^h>y!aF(mac<PHe
zhyQZB+ki$#MK>u_oK{<qUDi2lK$)7mA%S=*Wew*oSX?|FX)?G_><uQBAB*0>ag4`K
zEuxb5HjSs>sKIP{C!fMsP<_29Ot9Sng#BMw<q`a^n%#G3*BfPXkNLLR{u0%1?X^E?
z!v5|kO$iuO4v@^mX|=lx=~(43$v0<U2pII!`SUHu^&@arPaP+il<rg~O@9gB!vp*;
zAjoWKlW<7t8~g6>4<RDn(Y>sQR4ekatUwJ31WZDIv+gfj&n75Tbu2n?*5&2j9oeg-
ztXJ~?8AyUgx<h4F8|j2Nt(KR4bH*|WZsHxSghOMQ9Z7?5WB{PZl4ynvnpeztPnY&a
zYGZtXE8oAWk-_U7lW`KujuTHgx8?`rwvB!@zB>Cq!6;YIVL(iObBR3o(Nv=~$bEFl
zwfk!Ff9G8wenTVV^<YRx#kJ}A$;T_vwX7fv<jo<l^)t0dL|TzkJDP7Ve^|}y;5Ut}
zRH2IfR~p=<ToY}7&I9G=*v9tq*tIMWcJ><iSk{f)Msa;#e02)@ve3d4Lb&ob_R8B^
zEGZ?r#uYEc_L|23p1_t3PZ-%$9QDUK*l(CTSDCvszMxb;0#OS_Mv)m<XX(GS;;$hg
z7*d%-d$~30D)FysV6b+5?Op6KspdlJ%8^VlZ2&wbYYp$f-eE`T-^O<*!4L8KT55zO
z4u-5bDLd{^C%K)4|BVjwq!$j-%KlC)XCGU7(cNM7*X(!^7xLfOPbPc`*xg><KJiC_
zwm!hO()KuIwarLOVUL_~bEgJ4w%g9_YR}*P@@F!lXUkHvN9z^{%ZGegmI=YD#A`r-
zI$y>%>+O#zNrU49Yu{d|3auD^ar#%U_gAjDt<`h<?}cwQpDw2a4b#{h8&`PiSwR?r
zR*E|puZu(zE%9IDcH1YIf30hDRNQh&_-9=WwFh6ktvn}s?$+S0&0NLqbZXX*+q+ud
z^2I(yVqRfd!2Jh*9^SYA&MnDPZNg&!E8-f???f~L`Ck0&)hJtY6t(;g20K^IYnEHG
z)mL05=SuE;<=+^u>X+D5qu$w~nAh>JJ@JfR)Of@70VUZ?Gf_SOlsZX-n^1rwiD&?z
z1i?bWv!&LKr4IJYS^52}+t%iMCv$U;;an5R@mVWNiw$J4LcUerRz412ei8iYx(S~!
zdXSCTi6kev^@Isu!Pd~JRMA_H?5Vun+Z5N$zE*yvf6piUB!W$yB@dob&sCBtB7d;R
zGl)68h(sfKn4L(bQo@G-UtW^;)VWbh)~=n`OVr<+DjezzslYx1C>t3ec6|;OhR*oi
zSkLJb#&r;1oHt^2B4x+YSebzU4wzL;Mw(h?@3e4_Q03QTxzUBa>F-ExeD^sQGmf|B
zgH^Gu3JO`;wspTAGvS|t`4kZ;f<A1-VzAbC?XBO{yPNwi2RdpGZ<OhAFYHN00GFw^
z^$*PgJNg%V)~uW}$Cp7oMuMlAp!_vrfD_rwhPU|LBPZzVRcxYJ7}OK2-K}KqcjJhh
z_`k5QJ=K1rjb?R=?XCG>Zi)M$LaO$ix+{;E@DpG@<%4u64mNUYFuOicdadf$>SJ;q
zn_$C=3Wv%bLp*@58SAwbeuF0;NVlBU@GN`6#0;o%G!v#nUv(gm%?9}Sq<oX`o!k5C
zMKzxH%-_&UAM)HY13N4Z?Pd43U*pM<gr$I4<Zfx$LD+X`BAnO7>C$Cn3h=R`GWr|5
z7D3spq)_D*6U3_aQ0k$0j{n?;odP@4-MdJ6&-!<kZ-0idB9P6}%uXarSKm|2fCMiD
zWb4B_M^C;w=vqxmQYcVJEEBWb^Ycc`ki980v0v2-7i-aj3a_&#)VdSKYel>O@D6V?
zA*}r3kZ7b9eqA})Hb?jLC4`U1ssK-zZ?D#OMo8_UWOHBNO3$Rit<}3oeWQR|q^X<`
z&xO+f2wT=c^JTd>_iN(FS3$w}h4h2Q+5{LNlohxw_G5mpj1yS|xCE>|V$nkZ5lsS7
zJ@-Yh0O%%4gh$8SWPO9K08#w60&f4F?8=CNt6jrdme^gWNDi^zGyjROV3#9?ZOhWM
zn-X!$)fV2~XPqXm-Y6q5F#{<gM7X!q!+vcXITYMkYpuyMLmjo9f48(+Fr#+k)Yjf(
zYro>ijboXQrz%|%UcW$-rsQ3?E|r0>k(+2f*=Sp?vv>?FIOPCFapOQ&M*Q>B4;J6f
zS~wNIJMwR!u&z{di|<Hb=)MeWE(a-#ven)g^_u4g8>ACcKsPqU*`5uA`Dc<za3R|~
zpVQY6K7o{{*_pvsdyrks>2rtL7o`xx+R&+_W|F6o1Hwj3(R{KsKe&|eG?uEoa%!xK
zWS;mN{N+qPg&i~Di+c^t-+{U8jW8pfdq8!{0CvcYCIcA(Ng~|j;`KNY^x%0wdQHyN
zk<!rqa@(=Vw8U=5wQf*rPv~?(l_=r7Ck96(GZIh=S@pGl5yzQ<6EOSg&-$8*h^H8&
zzuD>fQNwRF@U`KdzB1Lt6T&KcKTHD5*<JY0PnEJ*HQbHaN!LzPau(i-WMT$vIhzU6
zTp7PPk@Ir+$C;ZaCG#-){ip6*o7+uS!UtXUeq0cYRgQJuAq7P_5*|f(uDn}%<SUp=
zIKqm!qJ`#@O}JGTjBWrt9S2U(l;nn&lVXE{8kR2XCAG=XU`d3Ry3*$AbKZk2Le5pm
zFRjuZ1#!|Jg6PJM@)QOD;LeHWu0G$MU~PEC-}>|0>?W1Yi+d2{%i%Mf$9vjR>aah_
zFZtl1%%-yI?5>>1$mci|=Je+`FnlLV)yI8lX?oJMM{@Pc)vr(8b4fa~nU4_Kvvtc8
zpMI~H$#OpDj=Ji|eo|othCoJ^<4~B@vCCrm82r4>)%uE)Ec>5tMTy^YT~mnRVw|{I
z&t|P=ft_vfMfrB^u)w6(UBcG^@FrI?K|AxqqA((ljBhWGj@U?iYZV1_Jl|gE7cIS$
z$bE<5nP~EKc9pF>+i=gr@EviSf43Cd&CcuFUYo##hr{iwjSvIP;4{hQ9EwI*<#U#*
z#|Gxg=FiUe?6o2e@xXo~BQF2;u{cbKtMJ71E?x8hVV_PC;n8lMqnD8v@mT3zzZA>Y
z+Yi$RMR#sDCiL}La5NqeX1p0)1rI)8s(RkW{#&$USITa4gE?GzR7@9#J_vMUPZ?e~
z2tE_fnQZRfDX_a&IVDAV>T)um&~)i~Aw$cZ@mRmyM{>Hkdb_V)4jdc+!u>3thBM*6
zv*c4a<#Lu`-%res+3hB5SJgiia>)pFS9{6`V;$D99_cR1yq?QT!>&wg#@$~OM<Y?p
zPNYsL5kcSy!hZTexofXnu9Y9R|933M&<Be=wo}z&3_KIzd6yT^!g6jKUU9NkZM*0A
zA(#~y?qdmi!GymEv#;j<(C|tO@t!PEde63U>-3PV=Xi!P>2%dPQjEb55qR!RHMrG_
z{NuHz#I)prx_~gY(>0&2;?NDywoSAifSkNOZv6pAv&jc}!Tk~If3n7ALz`q611a&6
zEQNyoKAPLbJYrpJ!O9DoilU$<4ov~`DR2`vR<5U7gXro0daVGtP0x26E<2<ko1Skz
z_a0qgs0jyHRX4stNHPn#D<|*M;Hxtm5++|Was`Lp0=lsa9an<En><HKDUWBO?_53z
ztm%}adf&^97K<w|nA&T!w$@U@YuO^$m#5_A%;7t+Y<Gmw#Acuy`$V>Kgw+s3+_YcY
zZY3Dry>PF&W^60Dv^0Il9nHkJG++GuU0le${s*%+IPf8MeNkKBYa}zE$k|M&zwtHr
z8d3*8s}t9oN)kzLk)MzbOS<B2T+6t&?_%>aj|PmUOs(c!4}@<}E28>N{bu=!K<axi
zJCQy#F|Bhwy+HK(9mirNYAnAUVO+^k&5zi}sL(PRoE?=joJU*Dzpru0xaw(H8^(l>
zhuc?==3}dlN4`PR97g&KvSewezuufQF-ltf%I$D-^YvZ&qDAl}1#^Z|2$x=tGcM2U
zrC<;c?@AEib|MHQ;t4tG=L&CxO3%ZuA^`8-<+x&}i-(uc2*!qm@u6{3X$~7kBZJP(
z^;3;qePyceyTrHwkdvdCp#3Sb1sREh06y<-#v8I`ft^hEIc2<=7z^XLL&@>8ujMin
z%WrCV4TqcU28x}za0G-Q&KslosHX5B2{iE)V9{scts{81&GZDG*>k|MIOwXl9qua~
z&(Kmpn0J$VOwi}3v$uOGtu7E2*FAW3fEl>TYF{mGq+5&lRZ9M;;keO}X!cFh{9A~i
z;qJEnqp~Iu1{K2B!87_RXIe_!;T5T=)*BF2(rS&WYh?ZiQS50jpHiXwvxyav`kXvq
zQg-v3XWaV(5$iACI@%^z+<+E=WX1n}F`bpF-tp|iBY^Vt$kprOR}sj_WE=_;>-m-&
zzXkX3@a$DvXo1W29Sj&IS<N_hy&gCr=El&N6A;bH64>N&428pcl~-b^)U0bdOv9W=
z^x!9;8!I8c2moL%kEyq{=5F^HDH86?aweCo+Fvi^bQNF39w)K3s;BbRY_~{#cmza0
z-x_PL=37z;{jQ5cZvfrc$qrKjxF|Uv@wOs%;{`nHPIWUS_WRGm$G-6@cNom5i;dsD
z&#$$H*LbzlX}P3e?w-{{Q3xSSfNpI0(Bd5cJk1Hy(-A<8N~PD<!GjNUpbCT<Q%4Al
zGM8d*Saf6vTdlO;U)09qGlYjq4$f=BcrM9E914SfCSwGwb9VOUpHP{oi_Ogi-XDGV
z>Ej8jGg|o!LDI%!7iigi?S&;(CJR<-Q+|FCGj+MtpCV`+dH~F)Y>bUrfUvv5@?P5q
z-a1`8stOA>7bx-&to_jca}T7r>>XUn+*?L@4s!FpE3tjhKNjx8ijYjjp)eQN<eUIs
z4qCQZk+J`63EY8X`2E=jwe|5F3>WR!Wn%Hi`<)}wnOst`^CM-OxnD>({{MXB%?<0I
z`b6oercBzRE)ykC+9@H^HX~n$Aw?M0VC^4sF-o2A_d`HO_;xL2Riijo`H}el*p88l
z)?<Yc(iK%)XoQdbm<*j2o!MhWw%jmP(q;<$t4b;fZM1Sf%<H$TW2RF)6EpCcyO|)J
znUcwY)aSvg%g~&Dboc@=K=fY!NGvJ$x+|YJ{gr=MzQ@@Cg_T=ukB@+sW?Pp6kB47@
zya_#Kr}IlVCOkjvY=Mwq3pVgzy6UNeNr8_yzmHlcanRrYc%y~PxJpfQD_B7v1QddL
z2X+rd*~RuqF$1=Tn+ejQSvp)u{fl^UzcG`x<*?hoB?y}-7QC{c<ZV|chWQ$~i0pkl
zlU4gT1H6Nnu=4vEyDw?<PB-io6Ejc)x33mRr_6z{OEU96TkLF1S3`wiy=QE(J}Q{M
zt(sUy80Qo4!s&o>l1Gd!S`3)W^e^}{T5t*gVRyxd@Mw<w+c3m=PkeY*_`vlFkyk&G
z<S)v^cJt|#XB0AM<q+@r&XV22(0%;dq8zl@WxmqV(xD`jh!`42Het!9R5%PtfUxh<
zIUn!W+j@>)$^{Sq6nMR#puKM>K~_X`FL&HIkSozkXmC~M#7k@KT3gj8-aOonVw65Q
zk>EtWS4?;Vj&~)t*TvG&w?RDiKAMCcG=xtvCdwo4;mftW-~vJT$AMyiQCrIIfm1SL
ztfD9YgvFbp`KaI30=04I=RlJTKS%8?{UaBU@$oZ?xuQQqMUFG5k^|5ahl1ayeW?ym
z0kUO%r~Y1>>H}ej)EpcN^MuXX2LLya5Q9#Rkb7>YDfw#pSmVG$9~+@-lQN7o+`_{T
zm{_Qesc5bHfYf*oUo8{Ae6GvZAPg}PibG-a-jop_C#_uo<9lP)Y$1b9(`|G@C`&m<
zq$E^?@gixn1b%dr$3kt&FMMtRhPmb4SXdpmVR+pIQpig{H<p82LlT57Un4rtmM)xx
zYjT47!#5gp%h~*lF3B-W3J3gTucABomy04vOI+U7z#`Z{^9r<xOdJa1@}n#f@>T_7
zR;E*Vo<1t}8R=T;J+Jt|;*unN0gm`d^O}`x)z(w0Qh2*D_2%h|5BJeuylp0g<(_;b
zf+pHQ5|edwb2v3B^wFf1-({azrzZG>5#tzS@dUV#rG9JE9~CLQ)r;NHm*L5z<In7&
zFE?R!B30D+3NZt&u#<gf2HX_W3fy4HX~_c<D|0_iUAV+>_8v;jQ>Hr7)AYh-Q*X`t
zRF&g8_-Pp_;>$_^2)iUlg!2Z3f>&_lT2Re&<<>WoRM+I)c00NF439uY{Nn>+f=Yep
zS^L^mP>)Tp?cK_p)+tT!0*(pK$!cHy7S?i){#M4?A7_QoF!vWbGmj1^mnusuoO{mT
zpt`cn{cWq?drOB^Uh$};rSx%9N0vIIVTfNbI25K4ejEdU;nG;rcJm5cU7B|DT;sA<
zL)n+lAJ<7nOBxJ-amD8ZlY+WET?IAR1lwe|WF00|ZY~@ZVS*Ij7|oZJpICSqhyDRp
z1!z>+D6v&ozc{n4d>r08kehPnOf{L|!8n4e{9POmRb2&D*#z4@dyYT2kJ&xvxnu+U
zkMqS0SaCw^>QT1YM;&!cI%#E|AlFu}&H!r`78F0`oKHi<2UQOqm7M$L$E40H9Mr)v
z;TNI9XljpQMWo`$XV?h5{$0nMHcb8|mEIXh;eN+OU>Hd&4%0F}Dx|!A%_n`Vvrh(Y
zNpmmlqdz-FghyWy{(J#P9tScLWQuf2q`|Nb`&RaWV~GV$ABq`c5~ZZ&ecc0gyU%=7
z#qg-)+&0LXnsCUTIe1Em835}fh;S1%bMxb9;%R_VA3+HeVX>;Z92aP$QyF1gc_Sv~
zw&6c-rl;O2BTY@Fd!OyMeQX_#A$+SbDG(8Z4uUdt?FHJECD}#5WZvk($fSBD_L7!~
zma9Z+19T2VPQWQ4Q?Id9VNv7m%WAe=lOpVR!?o*h8%`t|sm$y|n#p)^35Sk?lt1?u
zTNlk;NNs!LXW?TrT~-^2C8J-m9LlG{2fUu|(o9ES0~QNzFH=%`SrL*?A*_ST=m1Z+
zCT6GyUnGiT+YUDcOwiJtLKL{29j?&}15WdH`q=-DBrFZ9pXO1l(y|-q56D+u`f?i$
zSz8$*Ji36i07Lw`KB(V=7ly0LEIvc+^d4vn3aU+9kI`Y>M_&Xp3(rhEHTmmHIabIo
zb=NXrmPmQSijXAYP#ESgSzCaG)6^R~DlS@ibiE~Skg}4kYP0n-7SOpy9~6itK<;WW
zG1=-Hd%?>Tb?jg7BEkN5luz=9p_@8EgqvIqu;D^R;>mwyY(%XB;Bv6C!sW><YSzKA
z$HH{TKmrsqwA{&u-!Gut@bjjGb>(F4ySmq2Gcf}f(0q+&k!WN9ULi`2Z~d5|&xOHn
zM>SOQg}2LZ5FpIIgj9*7^nd9%U-naOzQ4}oObo|<VKfeX66nT$HN40V!rtf+OG_QU
zH^dEDg+7}nxT+6e?LF7;J(A&K_!`D@R$jB6N$1mk%FTc8Ee(?w9=(EN!rQRqQ^MQk
zy#eqQ_xawyiJz{O&x2H@s+c_o62E%-=W^Y+Ls!gu5P6mr^er5|zXcTO@He;kerjm_
zHpYrTA`);YjE6V}f*G*o?DVkDJn;EPr6fCtu~E|MnB6W{*6ow6*K^G1<o_lyuXL#?
zZ1-K5Xae#;TT*GBuj8vF{hJVv{)$8Oh6Zd!G2uUf_nhMpw^Z6IiV;3O?U_2WA+KYD
zUI{avR^)e3miOO)7oR7yo>nRK`jgdV8^?yaj$^{7vgA`f$VLp(-vv~zx60l69Y$_m
z;C<kXF<Df!eoU|Gen&2OEFE%o>#UrXf@^!0uk_cWk^%q-TgIUIvc`=quj0^fpiirG
z_xzlo^k5k**!+i1-)Yp77zug~OEQ8?d(q~+KRUYl;nSrjdV(jKF69_OhD8I-CoAO1
zDb5UtAGV)<Ab=W8<Ciggvay&F;ptHjjXl&!uaXf%A`VS7$?#JoV?^->?6#zOtK{&-
z5|Ed%Y=-8`YVzp6f<uQxY9r8s4GfRUytw^)MA}QirD-9aONmj7XzkaUY^7KBcj1&4
zpb+4H+rZD}svZ6X2NI180=lv5=`l}P5t5-~f=0Sry0U~;n8|xWN}5ck;zzNzA`Uu@
zEI|8=y?X3Z!LuK-UFG-Pv+NQESrJHmPG%?4EBS61Gf;f^U8T(}A7hgW<F70cg=xtH
zJ@r--RBGL5Fc-Z|Gd>qhyEg2oog_>9Bkw(FW$4$QTh69eOhYkRDe@^dQ$O&-5EFUm
zzHV=~q9|@GDX-yM`*whAi2_}*bXisfyFBOqI`SWImw<3rHzhs?T7?_5ir3wcN6O_h
z*{VL`tSCMB%_cD4XRSA0=N!HKn|uP+&~s|G?vFYaY)BvvM5zYBZP$$H4;~WX(YG{5
zHE?JbmXeavKm{9nDo+7$$Vxw8DQ|a`T+pxUlP!V9p{Zb1b*`1g;$5Sa`{4n_Tt5EP
z9O}ou;y5?pI2wmu2lFX)c8>KRY~(WW%l7<lp|z&I7Gv^-LFx&Uxka$8cg6t_N8`}h
z^k6{EC;TB_-@_!wMPgxNyJd7QA0%@5I25L3^esO#pvu$PRyI3zYJAl7h4dKyV}-KK
zG)*wNn~m<BDF9rk7ySBbPFf`@@PqehlRHtW#W9TUHwL<~W>@(_nD7%U?E<E*_xlum
zF_X^}VP*5RqC54f8wuBO5MTL1ei@#eGOj+z6m5XNurltfTJ}EW$0|eu4qrv{WnGMY
z^;cB?_q7NjA&qZZKw4V5y9Jb%l<w{r2Bam16s1Ez>24UhySrn^p>yIppS7Mp;Q8&Y
zS$Ex;x$(OD?7h!E_OZz}n2gPKzG5GJa84D)9g1wnK$cf*<Jwg%Z3mE(i=HND#ry0M
z#VD~49w|YJt;dU2Ij`DrBB+I3CTwIy3r+>ucm5I00Pmylr#r$&g2nbcr<|O=a2x;Y
z(4<1Q_heleZ0Xlrap*suX#LQm3Z5_O;L+KU&v{Emtj>tOZt&mo4{$lw3QF6&Ot7%-
zm>)&=Q!P^~d0x**5TYTv@m}kjJnkFs&pPkRJ$<29?2EyYF5*x36lcdA4iLXVi&4xO
zxV|bK&~Q9>qt|v#<2(Gr&n-61^n;GMlZ4zieSdm!vXA;~CraK{ncERJz;`pC-4}c>
zB4giwz~@#UyW!BK-d*1J$n^})J0&4-nkkFmj<JZz@tpUcILGrY+T&A`H3%!YE7S7B
zAWn*xGatbbPWXuK+G0)wfc>4WuRWcjJ(k2H66d=VYW)EXkj7Ee?y-#MRCPQ{Mk<e^
zoyPMsaHeG77gjRcIU>_*%rVRTCXlzaIeA5C)>24%48wB{ptEaS^6pvrAGvC(3nS?g
zm7hN^mIz<`xEYzCJZPbqLwwhH5WtU6`9vaw*=4*jA@x|OT{6(`$)%v%L5>eQo~{>2
zAs&`N)_8>!@QVV<r=Pn8>TlB=IvT$Jriq$z4!AaN<|jIj-~JM13{oZR2VEL#W|K@#
zgIewCJ<PbiF))4z;u!jC8KR**emPtwHR#_{qhD$NrWn2qHw@m)yBOmRwBuDk-K!Rc
zJM=FOJbvjl!@4`Dn{BRlt(IWt4!;(mt$~(G5YUeZPw*(N8^dyO^oB6z=MB)OI@^Dw
zdZ$xV4~)&3*dr{aSF(;8FPGY>Y|CNiG?|^Ym^;3UO02_W^Mh|8Omqd~*`{G;3yZ10
z`xI&#z{XauRhf1joblx{2>ibZO~#w{<pbzVcL6dbS6rHWwl#}!8%t|qyNEKu*}%TP
z-72ho3K}sVn13wQ*z-OJtiEFVOpPBw0pY~8?2-B|1^o?{Ddm?iaizuCIrGD>^<AR9
zYyL~41iWtar1K5RZ_e0!WM*;Fhd~n5UC{OMFrt$vgh`q2uU8oe>1L|gXIZS0l|;JB
zb-baad+CieSFFy|BnbR9IXgWbS6iw!HXz-d*u(5^#UNX^GMXOpq3f1_KDJ-jz$ow0
zx={(8gHc<q&lfbu=luKqpruyhq4y6nbu5mqGp~3!jrmUm2d96{Ml8C0dLZC=b~vBp
zjJ2?{kfigy$~W+r>GoXapFfgx5pe~5x2x)zupE2w@TtC~E!LBTo73*j?jc5Hp|)z&
zL=Ml_QaH(O$2*V8@%eApn-?PfEPv<Xw?BgayI#Fbt`2)CvuUW4-kjXo5MAI7Dg2f;
zYtx9!sknR09?~P~^nA{L{2>9`tlz<GJX@g0pIV(C1A_zOJte!mqZC<ifc%6dE;SMz
zx#oOF7mh8}qjh^Zw2)<<rZ)?F1YOG}H3SHj6E>_3p2~}oV}nEF4qv9`@Z1$Ady*PK
zT`_|qW#%T{=3nFLx8uvxgl27_wDHLP8S=-0F6@kIR%;Qqja4Q?LeHMqlGi<C@_gHG
zs9Vn+2~#TK#JqoA6+*ag*T0?yMA(dcJ*y=Tpt>Foo^N5*Gwsi`U^x`qRpTzsdamQ*
zL=WMS<Imv6{Y4j@pHy-&o*(3}8omYT&OEYrs0(lk4SMV1Du(Qo=z9}F#o{>tj8Kca
zo&4Cr!3Z4lH0P$wG9Wg}ORt=oar<jZl3npF051vt=f`T7*`VHNb%29QOq*QbveiXN
z!VKXnjE^62)QKzggerxdCA9h`S9|Knf?BF9mtRqYDWI4`K`MeU`bs-ODWGvl4vz{O
zSxlpJ;zE>f^52*$U~s_bOOdddD=q=xqeEjEtFjpktu4%LV_cvrO7aG$+)s|5_I8#@
zEg%6exKa9Vk9(3ZvBZEsVV=Q<yS{uq@$*M49`vmOV~v`!S1Lsszp&7ks;(Qnd^=Wj
zQzNr}L6hZ$tKz5c)r7t1M)Tj(H{aJ9&-2D!I1e%dCk?~y<xa4_z9;NF4voV3CsPTO
zylNcOHq-A35m>+4?ZBsHYA&TYYX3z88Nkd-_sfegp%2bx5_6{!4tlP0!qbxUwyo=`
z*{sOu6BwoV8zCoFr(+#_(qtGjuwp`1P~%1|6JH#I10iMEdoiU+^YWU_<;kKaYe?C;
zJ#rT9kTLg}tiZ+)|7F^s&&hZ|0!RcHB4-+bv13vR^<Xq-+ajx4__h->=*}M2Dzd`w
zV)LS%`BQjimjL}XeP+mD0RAnz1{c2d&GI|+e=4Q`?bX}2CH_rxjzvS(hTCwKk_D??
z!*jf+po<j3?CICT7j_Uc6m4?bgv2l#%=hkIa_J1ujVgHn#r~#x<<-Q6?Tr{FOZRhr
zz$bq5s(mchKEJuBnE>tG?MA(|WZGhCsID7X@;X;^ps`PR<krphvgyfmA2*2auqQ!C
zzfux(u#EqvluXAavQmYyWX{(!Mt$@!aUfT&xCfou)|k4O7FG%F<3xiS{lo&9hDoVe
z^!V25;35Ao=SyxM)8<r*c94@<bs84m?%OIX)nV~R6gfP%qCiKqP3U?+6-SbB_Td{_
z+T^tv>w?!NU(d>%&$9Yn5OT%;{bfKN<kBDSokpc#v8a8R6Gyu?G~aecLppLh_hy-@
zCX?rbEw49ygR`_poPPkPtBXw!eb4=J9oeU`F2*vztu0AdA+>U!5`V=X#of5r(_g8&
z&k^1Kw0F5Vd^sCF)#n^i7{4};x=kc!E^M#aoY7Wir~a=PWmrLUR!Y{@T8Ip#3Gt&)
zgl^4H84tRY@VDI$M0iv=O@%@tDBkNZ^Q4~4xu#O8wb;3eo_nX}YH;MAEY0?6K2hO&
zrw@ldzO{e9R$rznN9Uw%fBvO#$;!yr)lJ#1?YgUxX2?-fU`oD5$Jhb+4fH4Q9OnK?
z>tlfK?{nc%ylHr<e>+b_&asi8U&MDEGJNeZ%1Y>itrfj0^qqTq%KL?a#J_+VJ5*0g
z1kIH2e@oeN(+}zabqBg*mp31;PPcRdBWg9}!jb=#fX;f{a`lb|e+j?vI7Fz?Of%3M
zt*Xf#s~Rg~C<{|noi_kNDD7)L2d7}S53850ZI;2BnS+h_DdR6LjR>9#PL6PEfFgNR
zC(rxi{(60Hv%5u(vJ*(g9+-b}3|`CNQ8~_=xZwMf3lQ4;jnxsck(x2_a!K4YjTaI?
zmB;jd&YOO+?r|g^J(9913qfCy9>ppiHtt3c@xS?K%FGJf?Kkkds@v4RbEjtrn--MV
z{7?r_JVE@O)HJ2?8mtpJX5L=|kN&ou!2a^xgBnL}{-+hDv=GJP^Ep~EY$Ralk;UpN
zKJ@Hp?NaV>Zj*h}U*{K^OM(Wtjpk@2X7FawW`EAbMS>nl=&Z^?&|K&bn~jjbpN(%2
zZR&c}4Nh%eKTw`vs*=CSV>2~fyIQz9DA!o~9bOGDu(Kli7F;gZffZ=q^!%x>ap}9z
zg=xW@ZADYlG|^;)JOejM!|38+bARELGSsqKUnH>(F^qmUhv|ppa>Y-7Y{30yp{hA#
zfWBqVHM^6yBGMLGI9HK2c^YlP`#6_vS~v~~WOaF9T0>T0V5n!I%`EPzN}YZiAo#vL
za~(Fh$?b2Fz9H`aGls(8@K>IeC2m$^qfuSzKY9#$jhT+$Sg#_=pNbE~S?D<aqwi7Q
zFfId*hnLjow6K+CIm9nVO&*9A)L%m;ZzgijxhB@z#CyiNSjpnn&tm(vo^gx;b$_rc
zx#*$Wn?D5(_$kSZl|j9)E>K2+Nk-}Ox9$|Eekg$ukA6;?7mS3ANU-BiJu0?RLsQq6
zzOC}V(DWNAp3nO)X=UCSgIZwRF68udDW%(9-&ku9=;6>xj>lBngJ51`WqF*8Ik(Kl
zF*4vQcLe)N)F%`St>f@<k9QRiz%X}>OX?s?Pa$<XO4*PLcxLZEWU&e0m@xE87i#Dw
zRE8U&M7*C->x9teNGHT><F&6Np9~c*k*be~i}%QUSI^o+(yeI${>zwX8O=Xg0O?FK
zym(U@dnU1-5oHn}>d6D21Nvur1JS=pS|2Jjh)S?WnLf+uMr&mTBe2FNv;@Rm?K^9X
z4QN=1<tk+hUK7;iVYoOi;LTHGZBAM1zaIUFi8d0y(=t|3L=vycMNEkC4&$1wWSW)m
zrMn8eU|v!X_>-F|h~v0lTahaDS3RoTiG*+N_x1x5=?hgA`dX|Qrbdcgl``#fb@NP`
z80uQ{uOxVf6LM3nPSFRWsx9{aB2cI;?3L0yoY46S2Q1Bx_HNNheJo+*i>~Laf@u?p
z%+l4XKdOTkJ^+h<s~_9UWO6pyV6ZATiK<QQc~^*Cv@!t2zw(Q16PDD4Kay2;bXI@d
z$_@%O!1$~|^TV#Z+TOS#4KEi_!*@q9wjZgWk2u#^@u$_^tMi^#0Q~)g=ks~018kM+
z<s!Rb{l%^fGiw~f+FgKbs7^s9peHyN)sas~*rniMfd7HrIN=d)Au7atQp=OUiuQ?i
z<f_SJs{r<f05Z%)z;J@~l_m+!qaEmbL=F%w{4YaO@Nz*rdQRCb$Cc~yoH|M4LO$zo
zU{vbycY_)SLfC(J>z?`z{qL7waZaVRLE#bUb2jIcheQp|vbRpk*#$`?fJ8+aMx^*a
z5Mh-rMqApL@8l$Q0`B)#p~Mc2Yu=MnmS^4AhigQE0nuUI)W!x4h<Jjr^V(>ZqgstT
zIs5l3k_x+|BDY{y&H%>8Hfo{?s+*mex6~w((erY4cb~t2?-8-`ym`CE?TLJjOx8S{
zkfxwS){F--EhDK(L-dg*k{uHbja*E$A6tcuH|s{)`ZO>IQ6UD3cAgLZiV-gdL<6;1
z`Ik8aJ3a+-x+q1e-Q|zkiQcA~XB?YxlSljFd|~CLp==1KaSQ~GFByxb$FaNHA8VDZ
z=Y#4w4(yrd0xQD;5-k+Qe+R~CU|p6=HOtc|B%T&yB0oW!5BxA&0!I7XvZbO35-&X=
ztk<XHEj%m#wo~tMAy}K8$0=W~6_i}hg(YalY|NZ>YRoWHCdC5sjYk%veEH`YO`rNh
zsAytv$MFsZX{j^UD6k-3STzUHpa5NTXFX#r%mke*UiJU%I>>y8#Ss63E50fE@O)YO
z&m)HsrGTi>tf~p~zbhwB!_}&;0WNz1`ew*Csk;Ym^U?`Ji9XURx&gm-#PvB{4ZVLg
z*C@0kjydzewO%QR)P4D>6k@Wa+Z+U)kbC00K+d;JkG6=5cZ{a9MC3fa{!vbY!5xX6
zE8$afvkD=a=Q_ID?R@Cmlt`el?nDRD%+B5%R}f@%+$0wr*C^>aj+KRy@<O<x=q8zq
z;Pt|k_OVDliLL?m(T-r1l$BSw8kJl^LkNpTFHrHxm&5yFvVkgF33Y$^)Jr$LZST9P
zzzy3<fMwF#8x#0VU=cGHf8vHyC6-C_iEK5O1Tm$6<Mymz4ZBJkWn-2vxt<s7+YNl{
zv+1(oTkd~&)-bBi|KwwAx!gGojjNzRyA&NE%XK4ugBjVEO8}MJ>mtV^L<OZQ3dEB!
z3U2Sof3cpIZwY7+GMo1Uk)OM)#{U})TmY+?R^((&O8^Q8ooB<ql)hhe-7CStrI(I4
zi`=u_+0QgD37$ULaNOw2knjB9&CqNt+h6e<G8?<+&>5|}dt`G@q!TrZD_%F+SXAX1
z+c=_lK6)%nUl#19B9Qu~Wh%m?6mvp&^SgGq9sBdkI+7>ipw}D0B`p5ss4FQjIU70^
z`MCTYE?fR-oi=#kZE$6LxOu8RQ-;-ph?N;vhy5-=fTw|%za&_I-=*}!5M`lgaREnE
zR4;F2@EHo*NQv4)WrH^e*E%!W>~8BZD38JyuU$kP$oIwySlmC`CgN2EQ3p>wGi5&8
zf3g{K$dk9H;Mgp?u&Ub8>bC7bV;V_ZyR280|Bxi^rwU(KY+0!NjVou7Xi!$OtY6i~
ze}yuPMQeF1{L;2Am<0SM@h?m?Y~>~(w1gK2?U9N*POy;nz;29@-Vu0#^WVV(LC`Nv
zyQ2Emu7X!D&)b}px3(|B++CdCegQPpooBtD(kJLWEqjFziw>zg6fq2h74;c_`-RX2
z@whUGQPTTX;-||DcZC>~Z|$OdzRgrMKfRBr*6LH``b5a^0`(seCM)(=oo9ahxM~IS
zj~~Pwdl@^G2tD~MhfC(>MeyZNIr6plH_``*sgr!GF^g_-BRg-31jL4(l>ondXJ<fy
zDh-~ouyi|5`i!Fck;OKjz_)rXzf)QK#yBOu_l7Zi=)C#|H$0ZoaK*@E?aJp_Zm{-a
zw&}X(IqS}nN4f6x|C5-Lp|QZKK3mc`XjbOm{&Gl|HOdBtazQHGMl`r=t#f#g=PLC9
zU1P`dcDV3`)5JyaiFxD`Vg9%dDjVR_!)5Bbc_B-m_w&vdOjAb^$S_IMW9?p7%qae5
z=65MA`UCT+g8GNgD+gh6@~^yFZT7jP_*jCMbAYLC#ih!&i!~B_q87bctRkgYt%}p_
zU7cXK(t;O=omaHQoi*<Fzga5O?|u7@T8Q-h;Wr(p2m3IPk@fY>6`29|NLtq5e|B2+
z86o{8R^~e?6HAgQhUaCq5MKzZk^PeBR=eB^e1`5LOC@UQjQ1OHG2VEWXcn*zU3LwC
z_+dZ>I`=wu(BTFm{%U#NK%>w54A|y9?f^E}v$+T@&|v~5PZjI&BQdNNq4-Gf&K{d%
z+OzUgSKgC~RUdT6{(D)gu@OukE##T!$UF@CEd0scf1Uej_(7IsHWZVd($U_zw*JTZ
zSU8KM7;&r~#=TPcW?qrEumelYe>E9x1PA7`zBcXF3i{sB{j|`k(<OX%a_Gte<!4y3
zdXFy`Y7+2q-)~h$*Ct{c>NdkzjL!6#Fngun*~-3E*;^rYVO*D%Pj|NCBd0P8Q}^Y*
zNmse7Y^Ul>A8iK{q=bFy<rNgSeEmVDUt@4Cf@`PDoBGo<oeQ0292@zLDq+)MWYI!s
zg^j6KD1sw?ZlIr{LpA_sI=$}qXIB)TvO`d{RC#YX7c-aBq-v`%ykl!nDo=~sAs3JF
z?=c6e-Y%s_K20C;o79VJvqA4B;FF41akFCMe-Y2G8on|aX44)cXNbgw931yKM}9wH
z?m)5q(PGWga&<g-J%UhJ?N^8eSHRjt)_M^~UjJQ1@)O%v7!l9OQsdOhZJ`lLWjxh;
z)6sutuH0EsHVkH)bYXP=d$pn|1-ZVmr#bfA6#8rIdV8@w(Rpn3rYY}ru3{Gf|0T1u
zKgY)Cm3h#05jK2*EY!uxx&DY@h>c5emEGx)3ri(XalQKmaI3qFTx%(D$^aU$o`_Pv
zDs6p9x9eyp<K)2Zw)VRuEsJxn;e)N4<fIa2gO#74E*khs{CaPq%+?q6S!OHzJ|0rC
zD}r@3m>SdXBTZj5zj!UZw0&aN$>I3Z?yJp<@@o0gc6$T|T<_?P!uA6zJLE*c5TYv}
zoL5=jB052Gz6&o5whmAluj{OPL^tNf`1$p!?xIH5dYZs+ZFfvPUPCoC<s!v@GA;Rg
zOYKz!txvm=&X2D|=B>{b=Z%)L+_B^rqF*rbnsacjU2r^g5BCdvnbu^ltsC4%%XrbZ
zXeK5SjHOnt>g$b0X#iUvV01`TS-uv=ZxFtSEg2PddzV1S)8TGlTf;5mf^d{W%JsYo
z#|Rs}B{M(QAxNCSb<xSwd$R(&U0`=+e}f7xA5G}d3ohu=7ZJ&`2n?O9*%`Vbk&szf
z?Vek$9+q8zY(1Lp9j#cza4#B!IhH=qq}K4kwLRk)pONy_-Pt7L002AO`}mD;P4L98
z!)n%;4qiv*l`q>~KfV;^#WMDEpdnO=Zr-7bKF8D+B@Ypg_yKk*srSZGPg8>Rj;a4C
zAI?r)t{xdW$QtwpG)l|h2~<v{=>&#fx@<=a&LB094nh5rGaO1s1;56VHU0ncVMfLE
zP<aW2c4*3sjGXfVU=*EbYqXu)r(rX}lXb|qaBfU$6zFuB7ePU$FjL#?A7{syR9;Zp
zKW)BwnHR7v&$6%mYvSR8*Sf8+i0_Z7j$3d(LgCH##pxQZRIk(xA5DHbzd^4$k2mY#
zf{kRlRN3JT>E{F)i^vjqa-y#<P2#-DARJAW6)t-<_d04`qTP~jjP-?kFT0w74r!a=
zpLy|{qQi3J>o1iMLcVLgmA>1!)t|kM4^>Y*KN1yRY}`F$`-q7U5TFXuchjdge55Qr
zg_{R$vV>$R?~Xku|6BS*tj~=M2>mkfOC^|>+Tc`>hcw9Ulv$z>Cu&)riuYDQRw_L5
zH1H&OYIeR&zk&ix{AOraatzt-^$N>fM5Zdf+IqM|S-s6qn(UiP$Mm_wmC$gzLyS}c
z?;#A6{b0;tJo*0isX?j<;yF*q?Z!H`Jc&ilNWxMrlGA2<?zye)S~-HGqMTwJL>{^#
z+lsf_bpj3!Kh}{PDT{WD*~u>klqb$J%JLdH8NcecyG}~(H`J-B^A{4l`SR&Vfi~KL
z8i%i^hYf2z!_Kp05%vXIeUm*Zb%S95DN`lNzvp(l?R=wozCTzq#knV{#FuZ%eNAjd
zulo&8qGaOM^qr8?n-7*ZU#LvO2(^pNbQ3xTV5IOT>#tXAE;fI0jc=a*`OB{gqvnjH
z^CkD*oZGfjj#WD^Px^$a@$4-T=Us*b7u!jGZ66ZA>e1|md(x~jV5?;sBqep=uu=td
zfU<J~Am2MkJ1UQV2%?ILYjYa3Ck#iPO|RvvKcDAuMyDCG3*$N?t>N9JOM2{O@u@un
zDD6+h7eeNr&Xjwl%6u(WXxP9-H^y`>&daFKo6Ku)#J@;17qC8pmNM${r}yT|WE3|_
z)BL9RrC=&4$LajosN|FP5RD0Ped<?D30kW%YB~b+U&7hd%*;(Gx_;@A;T_&sNmqPL
zO4bcb$KEOFc)5tR@}c)+Esj{>W=q!n)}i~89#obOU6U78!RGsn^0peOnNCn|(B`w=
z3q${47S78h+-?C@tbR+ErBa>6F<N4Ln2J}oDUPlGbiFCPf_jZKV1GA$iNx%{zlwjS
zwNFvB<*D5n_3dmxOic0q<(&xreBkjAKHLY?0}$t5p!%Z08`n46&bUqYOdUFb(PD5`
zMp8L9Hoeb{o(BtUDuM?5zGYir%rVxt;hzRGkq8~UAM;_a*Xa0K<6G?LP$yPL!Zy98
zpVf(}{y%4#SWcLSvr?fgg_w*5H$>;E^fCBJG*(c|D%67X+9{f7n}(Q`jA#H>kb+)B
zQl?+{R)V5ImaTTFSZI@aS#zYKz1+yUUM47XRiEV#(IVs!{)&T*t>Pp0za2nn8=m0B
zls+7vC+4%)Kh@yJuPU9fyl><_l0@~a>3avrfJGVpNCof2*vMB?lid^hr6BAa>s|(z
zbh(T+E^IZ0XpG1q`lS`O-~L#RNqsKK+z_QeVyTM(!hFsKq<4J-3g14QHn$@&#S^L+
z@{fJuMG9qqyoL;9s9Z@DyF!HvdT!hzip&uwWj8GJ)9M`Ib(hD2v-LP=MgzWG=Q)f$
zg_=pMH~oR=A76q^_P(>CjL2i<xzXk!Vy{^<E5%I_f^AcEZfUBN4wg%=h5ko?Ylcc<
z+APnt9$CvyRXo09i#R+IOBeCtJBr{ib|TllkNQ&`<9fDQ>M#iiKYD$2^FBlKZrPr^
z!yb{3)$=$+DPm?It8PA=RcU_^2DKzr-6rpltNBS8Co28ypg!As(~0H5Dtt$GR2~KX
z(j@-|j{PP`u$@f7zvycKxA{xO%Z-!ZZ$9sniWQE^?}OeOj>?x+tv*W|&DgA-)E#^E
z8)KG5(jvTu^EAGsJ!t|QE#{D7VUMIj=xpLFg(pmnnUf<yy_P73tL)=Go&@$8cPt^S
zm+2v0t=jUa4wEa|+)`)jZobfr2GTI~K({~<6`a!-%ps}J9cAjd)FWcP@4I~X*;_$p
z^L*f5K(R@hk+JEr{i(i#+HWm?>;*^{?W+u`C7*{=eR8rwDvt%f=plQ0{eot!#7(s%
zKzha;1Z*4b%^@X!@rTe=))72jyStPlGM?k@@wj@cFo0o1jiaq~amUKYr4`)=+StuK
zUWVPNwaE&if_af@gTpy9S#y+MGr+xM%*D9d`rIZwH$|~cJXRVmYhf>bMxz_X_NcK$
zEw9mzs7i#y%{6qRjC+=z(70hr*Uc&IojYkEJ-+O{Nt7j-;qvQT`KwMZtb-iZ{tgLj
zv=DNiUsgq{MOwA?(0HjoYQT?V1l7y>o+)-hOjE))C<A-_v&Wr{dZ_wT8AwfN({o1b
z{ewdz)CnHv{6}zOo1kqp<T{%~zB!xjdyPg>vP;EjUU5@pgG%;F(#<zcp`W<(2hs=c
zG7>vgCvW}v#FD-*9PC40`r!KeJlHBuxnP^y8<<2<C6D~aWk^*)F?b&#67X15L$&S{
zgJK?=neA_U=lV71EKHn5zwdEp53g)xej@(|90`}2^l;C;{_KI>*!d;S<moNCy)J<e
zNpZxc{Osd*bh>Z!-wFwXs`OnA`hQZ@_HjltsJ_ML92QD22V)si7UBB6u;nw)VAlu@
zn@+w!*eT%`Wk3%bM`HDG`INI>UAiCZ+&-W0Kl5t6u6&*mn!rhVmnA_4FX*^j`g@&o
zo2?gMZA)ULZYoP#ictzOVtaB9E(t!p*3}Ql===5i&a9s~yg|HJ<eci+5SzgfsIEvy
zJw)f2<z6$^fLk8@;(lOx)kA>f&*R5!uNpTS-eN;e7axBrDkciw{ojDS0v2Jq89uFp
zMf&iVBXfd2z8@=^C{SPwAf;JQbTMcnNRPV?*ED!subTtFc2Po~lpF!Vj^%7^!69A?
z+v!d0BQTD52LA##_wv46U`a?fsoErSxEtlkxq=-1$XRp0lXU>-t7HE(M<{j&{YcFo
zH4)uV$a4<ptf5K|grAd^UV?py6}Yve8Al9L6RdyWK+3CV4<s&;l#D{#sICzOmNSR+
zT|I7Kl+AibA}UybwCSg?)-%Ts`*CrLIM7kvqZMwhL{WNUGri{;W+dal)2pm1oIC3A
z+fbbwLdmgw`@-94>7O16LumO2v2X0QztvSO^j&~U%zU|}*}TSoq8$1zV+sVoV`-V^
zz)!)?ywQ!VL!&vGfSMMo<L+t)S!p33iQ5K7_CnRR4&GxF0n7&C{Hc9;Wlos>IHux3
z*~57u;*;(JTq<_wE2f02qUz8&$H9uDGQs){Y%uL~bq%T~;yL3m|MiHMZw5JkAb){M
z-jr>{>5tZ4RF9Ta?36;BW(4!p$!?42I&`6r$+@awnSTKq=Oq#0#4fZ^V`D3?yi!`m
zpkE+6`76x)FPBW@abHQ@jkVf#Z(R?|xZ{>e=&IR{2z-xjCrnvgI}<>wJvUXPXAJ&x
z|Ambh)1Cd|VB6;V-6Fq`=!ey?2-`ZJ^vF5R`C?eYfaA4{zRrY-hmj3bX#JNx^(br?
zNcOH>h&=-fbk_}BDA0_K+7JAXIF$r*;_=v4Nbx7Q&{s9Ny<~y{RY2rPh<ISh<RW6g
zL;sV17e+6{x11<SMT`mqWP>8xR!c}+ZnOT>ah^iLrxKhiWKc`kn197RX=L?!2=%E^
z=Nm^696fin#{Y5vh>685XY~yCDIV6kDlLqH=|qQ5V>e4Jj5O|oLhK9LB<m;n3m@`~
zUn4ps3rhEOztk`NA?*C;-@v<xy^{Qv#U9|N#L72S{E>0kZ=e`hmHY(M;<TeSB#A2+
zIGqp|ec>+O5+0jLNU|zzG5$ol4<iH4zY163-hm!LZ<7#aQp7jQK3Eq~Z{y^~v=>+@
zBn}e)>c^Emx^|fripn~ap1V}7o_psJ6TDbA&_(6e{<O1V7IAd);hF_9{Ybm-<i7!8
zcRfGx&R*e>fun!7&bNy`cMQym@Z?^(1=XLKW#Yp^h8u0u0|#3kLKoGRoXoLANON2(
z@8^teC2yvqRc8<__x!U1D(~BSHHIVd`Ay1Mp06--?NDjl+T68GOW=u^ETNu~#lEU}
zJQZ^73e($Vg-)1I9I=fV{BDPq)biCJJwyARw?tQkl(d^u=b5b=@y?I^Z)!1t1^q$)
zY>p%}HC<Qx(*>hDvV&i@*6cjvl2VBE7d8x<X=E(^{V;LM7pvEKo7;JT6+SBaMtu6y
z2H5?!^xN0Hrc^KU0T3J%6)jIP`a-o+H7F>$`{P~Me*0yLwO-Ax!T8w@vk0PUVRy2(
zPLB+|S1j$$h6;?b;}393QNTYJMwt_9lM>87zzD+{pf%K-Jx|Ggr_w~+RSq$ehOP_^
z)0`KkEXUxMmB4YPKz{K~#_-rk3Fbdy0}Fcp`4fZ8ds(YWp$On99FS$D3t&k=ms*QR
zs3N@n6D~j<z|SY)wO)Bx`VQ^r=$wMmCSc|KoitjB#=L~C_mR=PF|=cTy+5o=@e8nW
z=a{{AnVeRzjCZ({H}*%t4vu0WuZ_?b9a8G}>3OVHq8Qc-K=!16dy|W|J^?zu$|5bg
zi8u66958VhBnh4DeT0D5JV-%60Fov*@S&t(GUn~aPlIMMxC`pRh>4STFxNCP#A!FX
zkLlx2D01)ZrZC)pE43Nf4}#}HC7xO)CHZyR<k|zbQmdX?dS}~94^}5FZ3a2H0S`ZI
z-$IlYklXAfRd12ck~gQ?2@`+}?5tI#2}JjZer3SP<Gsm;+F|a10cRy8KIGA)NX@Xe
zRLic`63d}ZXV7vH(B}{se3oezwQ*BEo6x=$00aBNW{zRKxeskyt*hWGG2`-%tAVSu
z1>0O-BItvF5Dj9vf)=?nDdjx~&2qnNlLSuGY4{_LM$KTCG>gG^u^=<V?4;yX+o7q)
zA;o>dkCw`;wHA0`6hTm`FAS>bKd%pb>{`4=K5XlsKkSj+w}Ug=0x8!$MkLa5k+bXs
z@H;3N9JoF+nZPCa&`EGkCIS;R-`2r$3cfazoHJ=bKHYM6MA2yHB8JNlqer7;z+G-h
zV#%NIiOs!EAQFDRezy(u>uyt&m*6_AzcYabO(V!+e^h}<71l4S$ld`b$xKJax@m)t
z8OVTnuv{*g@yuX*Ys5qYH0@mwGyqyco7-`GqA!8$oE3WyLKHmWPS#4o24c;|$>2<`
z$P`e=sTyt2_;dLN@_BfzB8mWfCe+Jrv!*STX}$mgBen0_AHTnZ-)utt&bxg#e5(Ru
z>8^HA2kC@&Om-%av=9T%p4$rR%mVh3q&ksZgGyD@UxT;CtDd^6Is%T*gkW3uw2~KV
zxxnZk^Bu<&<aIXiW*gYNd%x$Fb6F1VcwCF!xYVf3G7-OI2Z^8193mjJMj)yC-KNS8
z$ZPJ2b)VsNvQ7YsRNC~|Xh2@=Lir@04i<X@?~UDuvq8YG<wHIGW0dfnG~lrQ-tUt3
z-KpnAS_GswJs6e*Ma*_U1MhLA>R~x%E%#YM?bjrmLx97y+;`yfMkUkxh}?D<a_zof
z%{BPEBv^@O&a_xFc<<1aG-I?X$7jHC^NQ$d@v!sGxugOPO=8%DubH*~lMEhtoRmCU
z00qNgu0Uw5(ImSG621yXJO)bnuHvGYBDG)!@fK~)HO7&~4rtFRS-U0xHZ>wa3qM*n
zYug2|&x?Um9_Q~RT({GIJ3Nhpk0oIJ_r{w65MGZPf!v2XTFECF|1%ly%?MkGi!9p>
zx)GBgpB`Y~eRmZqaKDp1_$iwfu{8nBy}eR119m%#fekzA@795jvzoxebl`#14IF4H
zR=v~tZM#MVs`J(KNNKY9401vXJD`oF(U;ucA~5y6G3lO84|)KBuVs-N`o>o!`chYG
zf!wg^6*k)E_}Phv?LvZe!0>A2(>4v#e;<(^>~;nL2E*Id4$Rt>7gRnLh_rkLyn<h6
zZVFu$-NR39)7$U%Z3E5D5I5@tk~iIEPYZH&;Jd7Ss&{@j(2eK1XM$|N9m+g*kB&r)
zFK#sY-X=(;Xx$YtoVC4sng{=vmgwS<dpT^x4cyjOJq$jpn&3q2qJwk6?Ux&Oy0lpj
zcVAsQPF4n8#cX#Xl{#VP=V3xX;35TW&=zhP8EoOi>Q=fq3kciD`Rh}6QJxumFCq0j
zu0#u5j{@FRrkg%b0Ur-RNO&#`f-ATefV@C%T$g%+5yQ6am&v)XTU_L}Yy0NINK>wV
z4J&5QbcAh(?*ZPv{TE>y#2FM;xKW5axyPYxMM(MiN+5=_o7#7{r6xbcq8}pI0>=5W
zk9UzLV@C}7h-UcI{W%N<AZtIZ^bNX%e9eV-NExh@ILw1@dg?ZwcYOh$=Pp{P;3L2a
zL^n71kN|mj8=H%)N@D=Q9^&{Uk<+fgqZ`}YOWJo&y-0Gv7MSJ@**m~PB@Gy{>Uw7C
z{%mG5k=cLWfzU*3l?S$dxj%P0anXJCFzLc!_PFzo(e`7!6XJ{(QCPFud7X*8`H6%d
zDnXy7Dtr+muE=3cDfd;8PZWNzvIwbT<6GyGNwYR&#i7z7API2^pZp3&meRt(K!1}X
zNQ1B0rO|y5>(kkyU!Z2-t%`lg&_CqaGU|!ge(Q*6LOvuwsUJLef$P}>9p~9*&C7<c
z^J{Q$HwZB~QbOw};fBY|a6-234M9yJkOEXcjwSu3s(czwBLF}rfWE5)$fvgqNJK3G
z^8Bq7m$7%DIM=UaIH&7Z9g>#)RA1_VyTOu)pc7ZC?2BoAYFO8_1oRp8HzW^}BDmwE
z4x1{ZS}e~3i+n%%NFn#@T;W~2QQ(_ahWiI@Fa%;bAyE~#5im~xzRV6p>`b3X-9C(i
z{h^z-l!0LXeu_ExrID%o#-?!^iQ!D0hU2C{o7=I-cT42)4eL`^nEvK{cT}+7^=9y1
zQZDUNB>-+IR^=q|oYYWgCVX{p9lV>w4hr6eA|6j?MWN3NmbO2EPs?Dy9WG*VwGyz%
z$L+UO-ZtR}Yjh2QINw}GZTR;xEUv?QX_4n-lqKHhIl}uJ&n{Gf{rcdC+s(GCualWX
zu{XzRT;ihvP=Tt>uVZD#;$HL_VlAG}*OE<v9GCETmUXY^e@!&-gWS&2><7f2wg!Mf
z+Yz|~#A28Za&OB&i)^G?ak2aV+bD6A1JShj%){%*I!@ELTb&2b)3a|kG&`?cHG{{m
zk??C%<S{!ESO}Ti1ngElZ9Y^iBKO+3!Fw6B9o4r*v-i^s*cO{ZSwRQr&=v&vM(8?T
zC_5RsG7;F>^ox38xMXTpYIl})P4^VJ?+ivn7Lo-$%osfn)&&no2${8c+_g;{J@1<#
zp5rHj9;zfSlFT&kwgxnf-Bl5e`Y;Z$8RY1M?NSqM0F-QVSqinx98)E1+|TQaz`@2m
zk>{<FejtI&Q?#e;OxK`;UbEJ%E-xgvCrj>QSEgPoTiH{-_Sve`4GGK$4yLAjj6*iE
zBTtiUnF8HblyX7mPfM>S9@;uPvwhZgB7~5qw5A^ONHCDTG2JdOCg*_|@W_euJHa(W
zEFs}j%b<bRfLUCZR^(-_FY?iOBg(WB*^^o2Eb*Km1cw=Mw{KqtLW3R&?gv->x8?@l
zbs!^Ozk6OFKqTedQRE^>I(_!WUcY;Q(*n3U8HKWfihTzk4?9j*_-OsqkEF8QCrmob
zq$C76xmzv{>Rd!DcSab5%wmB@&k>Uk_iI<J&%OhS-o^JdxD(f|!q=ghImpGPytV*T
zkNY-3r`y1zkmPmFYbkdJgd>4K=dIgmD6T7_tu8EOvOZzW>&ntqJYb{Dg64(~QaKCU
z??vssa1Yq|16!O>wg(^vCdGR@;jOl?HX-VUvKo;J$!9zzO~7p$*#@j-)PW`Yv1@V@
zS;*ZfD5&OhyEknM-i9Eb;}4Dft}_z`9=AtOUnao#WW9-)%tefjGF$Yi&s+;Zqd9fR
zPv$qX01HW=?Eh$MnN8jfqhH;F{Uevl$kw(@@24PlAx*E_CAQAcTnYRFyH?RR-d)^<
zfXur<5?5zN8$P`ZQcFNN+3Q^7KriYP=hu}9nFMT)vx5-ZLAl$>60g_2FMvV&k0tlN
zDY-=+$L=NT8%xa6fc^24<?Ueqlk2BB<Q?DXD%cB&JZoYKK1+oyo+GOCJ9w8LB3zO2
zLezj^yyIdk_-g2^<Sue$<k-0OGNti#twiEks1t!zAl)kZ^1Gos>HqhUINs~4c&ZJ+
z&AKo6vUXNe<mgX|Mn-0Ku0M2R1t>lY+oJQxXeOG@OK)i<`ozB?9NmMxdlEC%GH_{l
zp#K}z8XNXsO+fQ*PW=%}=D5vh|9hBF<~TFb=wE6b%l?lvts;XDdLNckY9B4=GbOOC
zg;?NyQtLcD-73p0YkD4TnkkbBEVq2M=$uX1#HZhdS-R6Th7j+Eu#<Kb`s!lhGx(*;
z7$Nisemuh^&&uv3xsEAWPa=nJ1oPM)?TXTF%1-qM^3LJTtCxnXbe$*sZo;+bChp5~
zJFqnvqHK!zj8Hz4)q!L#&ve$_8=Wp%w9gXBB<LYdT7%%HNvESGB;9_yLqCX1lbKgd
zruYXvOR^TdA!d;db}8H<FzEet6Y>H3<zQn>)WS-iTwkwux;JRnpZB~u>Vd&(PbKGh
z$~W6C2BS<PEPT`}BY?<9oH#u2GpW~bbWQ$!99=#7cmNSLtP2~vCnw%5yOMZM6mKVj
zG5k07&}gd$-Omq<U#vdC_|F1}9A054F-m`-3S_lKGeM{=6`L&Dc*>hD^m7%2+J#oA
z%QKw5uUh?=5>k=w;{8^PtFjFvgTHl5Ig=AAvrlB_oODm*-RiRUz$K&o#I&a^CQqaw
zvnV$wM}O%a!th<(A;k@&X0xPy=(mF)&1B3sQ^FqslFMO=tHRYvN_oqPK4F;HkCRSX
z%H%O%LWhTS3A=jX4~Wx5{7m!I$#dT=_QfONrz4u3$Dl@N#7=OOfYL(Yi^+g84QYvi
zhV-2-bH4Y=R*6w!R;Y|$@2#%<BL?l*x@&DEd<_$>zZDiuqXD_>pn-R0tyV7EL)O}!
zqe^!)hT<OsAFob#U~{1ie1RlTUcJySX7T!$^kzO;iq6ERGGx&ueCcMLwiBN3U$@0-
zza~?jqB9LQ+Jjjv`0db{f{=z^z!SgJVtaEIt10>Ea8p~=CIt3iK|X~_0M+#{Ke&R)
z4AX@lez@B))fwwmMdS$~cde-3`pbnn%DHQ0boueemKir!N~nP(c6o>o!^aEfHM>L}
z>I+2IrMGgpGqrhadF|p~&6m{ET|ZXPx_$hD*(5t&tAxwZ3O#V7dORi+1T=J5_~To1
zYVIm#E(NxYGh_F8y)7$J713}Uz*c4u#ad&{86l(Si1wir-U*@`kVYS#q-pOQdv1KK
zJD(R4RU%_?E+e+A^FZXZdadO7=;T9sS!LI?`BrLQ=}VXoEF?T%uH#zCzE0%FO*xHQ
z`+wLIwBvhYuIbtM`6e>Ik}!!r;eT$Ox$V7H%3Q)5hG-1TI9Z$sGqyu%+JlE!HtJ2^
zHrm%QFa+)2Ia%)oiGZ9(_k`9y?w?N4&}wMyCtKJu@TO^s8;3_}Vqw2(Blypf^)U-d
z(nR&+(0KEjE;|$L)tNQK##7~Ek<;ClB3^nj_ntwU7RRZ`#F!iP)8K(S#-I7>l;lYp
zv0)jPnd1<bgsA}K@4Cjm#_j=9{by$Dq!#8&jh=(~XF=F234b+BRwx6Oj?_z<D&8fY
zx&<``d3%Ki{E>6s!S675)H16o8x%A*9lcz*zd1^J)mW017;i(LcOnt2A!@1y8As(D
zCH%Y>E2Q$SL&kpywCpP}pTkjp`1p$vzIZAsl(p1SDhPDi1^ryY9x}zr!p9GnjI~^;
z_{YcXwxY%@+Qn}!_hn$nXNiN5`=!b6lY5nM!znf0f_-`3YxCmKV$T>hdJ`M!@dokI
z&Kwh#c&-z0Fz7NR_N33`z02uPS}uM9<=L|LKeq7UO^VRBGpk|M(0h1z;#}!no(T88
z?bZTmMpk8hMSo7>>Lu~QxoVTfOOQNcJ+<g`v3cL!;6eExkw%ULmSNL<3rg-Hi7HU_
zF+_O=Atea2Wrs}KJZN%dj=xQL&=hQnM~XA$vQUI=JxoqPCP`if6XJc2s;sSgkMmcS
z*k@%R0>QZ>8$p6Yc3j8cLA5IjH<aO;bkAo&Ph?Avd}UQ?)MI(2iIG5YHIC*sMz>`r
zC(N9#nHxR6^=rpH)Kc})qSJ64Bc5n3GLliXH-vYdggn-q-CvxO!0XhYmzPd9t1vh;
z`t$iOBGhQ96=nG%bY+&FkIqCSAMU97=GC1p9X>qO=<2Y(3So7caoZN|lI``BSABh*
z=~azfvY=V3ZOHxpB^5Nha=7V?_e)hqS(QrARP}esObxpBU=5rTUAw4aM=NYKIN+sr
z*j7I5GBoOG$%|C6nn-#MM6jR3Dyg#(8HEvAA|S5A#XLoSq^7dTF|d0qK74N}x0(xt
z=UVn6Mf-eOv(3@E)OW$E`;3V6$-~A=aLLX!qoq1Ea`*J(ix=&!REn&wd4AMsxMEA*
z+w{05s^5p~zv+Me2I>O6?6uGlr_5KR3gonKMF&`1AuG@Tk0dyd6YYy1RJ%cdOS2*t
zf&(ha^U~(q>N3ml$DGeo^Su4Wx(Rr@?9^m&+-4JpKl;^qI)nbTGsRW$ycy7!4CU>d
zaSwmE(iG^^e|*IdRAj!LMXC)ai@ub|_ukobCW5HRqzU4B9{a9R<4&bVIyuEb{`CEG
z|7`8}d2^~fX{L8PvGeBN@`su9vYWwMQc%&hb2#)DQKzNzlkkh6ef5iu;awc)er}K-
zcjnnmuXiSW5P+Ifrkmya<$e>dq|BCm{N>v#?6|5{qCQ*k4mr#3@H=G9w$!&Q+LDJV
zr=nzHq%Mcku9Rl~p-Lp3Fru)U8Xe&-i+?S=NJyH9dFJIsZZLH#KIqsVj{5>%n&o|S
zUG_eU?ZYPJP|7N%f1^x}bK+~sRk}&RA->OoaQ2t}joaBJQtc_pjcJ>az6jkOF*s)~
z4@BeKjHWeZRnhl<7qK-(?cm<|*G9V9@cC$Qo>(R@0S~#X^;klGEVci%1N2C9h8_NU
z5FdtM3<4WRrJT{_G(~xI#PdV)gZI5jto}-w6$HKi^SD1^)Dx+ySy!tTwh>^MZt_9u
zY?Nz1fkplX;{=CBt<vm>%oxsgFaNm!50{>ax1c9R`^9mL?eo4M>9i))7@RM%LzaHB
z2%@4k>RlzA_DR@8;f%%HYW=l87&=n&H{oj1`%P-nDlau%!&%MLrR5`Fk>p92FnkmK
z59UZ(21H%ai#+wqTnjUpX6NUP0btIL$&@#;STNhL7kLT0A~ZSFf;x0lf}IS-cbk-*
zp5I?1NE^u?w8e>D0zHhlcD&-2G!QY;V(6wDZ<a-vzp;Rcsx5!To!;A{B@+g&^qV*T
z$;sp(h(VHiEUO0dJ+PRqTV$7vcjuB&J^NECz1|O=R>)CZotDwm#TwH~$|ZGtX2Zr`
zd8z5tKzi$rH7ycs{$Y@T(Y|aKfJ*KIZ4Tuw)X0R%UMDjx<#5%=6rlzX&M+s*!29#A
zidd*AbXFn(Q?s;pD&HlkEF|I4n%-Vky{#H@TT*(N%`~t7J6__6RKLh|`uACROKMrx
zy$vy`eYG6=pBrgX7kb<8s*h2E$0majLzJ{adTz1dKYy$pJxSsf5JoufwEo?n5#5YR
zSfo@!b9dh>C*Irr>l_4<2()^Ar5wxfp$!(opY2W2?>X@+0^i?-;0wWqm5Hn*cH)U&
zA7zcr&jbzyemVxRDgHCBzfoM-rm~GB;S74CG0a<L8*rksV09ie<Ougl1@;{X#%FxX
z%%3mnQtk!lit0&P*K0lioi-l(Sz9%|^@b&_bJH$|E}6@<(Pw1-##7>u%F|C#<hKwJ
z>?VP=gqTWrKx!YC`-_s2qMi3*%x-4zZz(L0nr8e0VBlR>K3s25vRF`X4cX$+nW#B{
zw61&HxkCUyNQzDMKfk2ZY{;?^??T)f_7znmu`RxBXplAix`|D65%XQac?I$@n**)M
zkbyzWCy(7@`A6F5e-*}eA5vwWm1*`r?6T&Lrz`ptvaK=;UJX$i8gDc)ItKIy8~k@@
zkD4A8zOZ?3IUWw^1L2}w#@KQbr*9>W?c)Dau^&)8xX%5JWeE;b9PV@#J^8yEPB;2F
zTi!9;k2TIsKEuQ}Mn0s3dDYdcH`<4*$fZdR|0A9@wnmp|(XBB4!i?}&Z>JrBq2`(W
z!6HiDcXeE!<<L4x*#<3D&9T;B?ElA`LjKLZu%FH$vNl~hqFm`mcuafj2S@a`E(!B5
zg$n`;S(pFBw7K+|=^I2J$LwO4Q{TD`zS8o@V`!U}aS&6FS_+{=mvd9JWZ0Fi{q{;K
z&-?vNUDCQ;ZXJFvQ+$a0U;OF(rE9ysUZs2rI$M&>A_+li#DA8l)$!;Si=Wqv;@_^z
zxZ!mDg9xlus^=YK(ekA6dRUe99e7o_VAgvJyCsoCnk3jfb0uW(LoVq54z|RgS)VeV
z_{iPasw14;AI2nU-Rd$jzK+?f`fNSK{e7{_|8@kVxu7t=_x@-~*P^hpDbhSpwOQIz
zQCh5vvh;T&$TEmzHGLp*!l*j;@aV%xy15jYZfvzdy05UB>BiT?s36MoSDK95Tzes!
zC9h4f&ludqCv=s_^=a}Y%PY=jtaR^L%L4hWS8FckFhBaltJ9Jgdw*xB-&^_<itg2q
zi2c|iTjVic=|lRsof8xDlcb@|yG%xmr2717?xw9$tot1e)pGpLIOg=9_;f2yt)#1v
zg8lsnrbcC=v~x!CWpO9t7Aar#wsoHO-D^F<qS7@TWNk~1iQnF|G%LNt9ryntedZFz
z%X8|_wp-5QrC{`IH$_KQqp|pTmcDYT;W)JwBXH}X`r(4PZr?mg=r?EG_PED+=8na;
zcuaQ2t?o6>BR)&RKWyQTa>;GoXhWwCOx1EF`$W%fTN9Pf8dFB^<JOl89+LOf9VD@3
zS>k?8)h{U%Iu{tm&iqvSXfBVw_P*hAPw4l25T4F-D(y!>X{dlC!@QRF62-rtrIrq)
z1MXTS{5XX#o|Un^-9O}Enm>8U$D0*|a0;goplu5lrIOP<>|s@?$sBwQEB;R47y}xi
z<S$ByI!=fRdq*W%v+$eI=DTza=DwQ!khdqU_pe{)p;H!y2#-k?X>Drxfu9`LoGtP}
zsiUQw{)rfz7K5qy?hyGuy?e}y{5%%lr<vA#N6SM|b!(zbih>59bXB&cpkTt*dGNGV
zQ?3Uj0TIDc-cn_;SYsid&eNZ|VOD=kBA2wasz2Up{z+teLFv%iT=X=Hg|$gmA9Kp}
zLX$|Qeu5*0P=lu8Gr0+|*4<9!s$4|Y@tpbQfLjmW0o_USZd>@WD*Kd7W~Kk97elXY
z?%s>J>FqnzRykY95$vplkxG4Q<5hhoBP(vHcKEyq(VKwiRc53j(ru;7#+1$cY`F1N
zB56Q8QPr5RsgxDj3ImQ$I&}hmT~>Kc0df}c3Rg;Dt#jy@r`59zbet@4FB_NeXO~`n
z*O%RekckC-l)Ays9Ru~(YtVbF^2ha1TF$#Dzroh{&X6Z|)iD-lK8VZk-Fd0UqNjg#
z;L?ReiVkmr>0SJi>=g44iHXC?g9dS16Fx(&)LJgp_?ge2O6<FyEKAW=Vpvky^2NVs
zMmnA<w)sxd7z@`oiwl6;1BJwv{}`D-Lg+-|0Ca2Cn9&e<`U1zCZZB98QMgax=+bY-
zc$})DA=O=3%ur!_uX@C=GMYFVw1GN5T)9D{;KE7TB)%POl+Q$#nwK62Fyoe?f&PcU
z3;m+rKF8k*HRLUT;8FO^{(^(nVv!^2)e^<x*u&0wYl^!DY*=zFg+DBY%@a3N2FlnJ
zMugP%<JB)Dkd%J*)^ec&<^5=J%$rTH<x^1m!SGJ<{{VJCiNDj~7F>pQBc@362?29X
zD%xBlX2MwQKq0mz@AObW#2sw4i}xK_x@c-~cIL?Zp_$nu7fsF1PwhQ0I|C;L4+)y!
zfkClY8*>ywp*x6sD6a)_k{=fdXFRP68O%6My=IM{`24pHc0B%NJj7=g*ObBBb4fS>
zPiIVgggwuv0O*;IF`~xr#%^CBJ(xvf2FHvMR#Hc}NSOGr(@%Tq6Yn620;j=6PwGP*
z@qp1(DYYqX=G&;&afITg#R{7XW`eMF6@uDA`)Gj5);jyKVllf|yf!ZEeiyfpM+gtZ
zsWb5dlAy)}l-ZqPYIlS|3u0U_Ay?WR&xv%5Q!OD-jo;?jyEStXxqsLKqWs^5uInyP
z*J<?l491@D^^b-HmC_}bwpy$&sX9Wf<<dHKtyK~@A@xElIRI1rPmE4<B*Lwl+GyAl
zrX{HGAS;$s%o*x1g(`Jxh&hOZA<+_PbOR@1yCWj&5ub&aN=fa$X9m&hI`%LGtf1>n
zg@;2X4hK+bZH3bQfOdVcwKsXbDIOlwuK1nr1(Pv`qZ@l~@T?zjyzcrTe$os@KJkj;
zGuUG_%nqJ;>MbazU`_7QP;FhQDiXtYh$7rVtITHLR#h!mvdUIAW0Sgry-Y5j2}&{4
zp-mbq%p_0SXo##kVHEcBX+%+rcmx!MuE$XwfzL!#Z52~(Xm(u})F!T;RfkZ|ps8?z
zJv^4u1z}8}fOzb<q#hD`RyI-CN)rX$ggnC88Ny6F$BQ_~G#Zkq>yM(?OfezFak+#J
zI$6$Ng@*0HWZ6(c(`3Gw<t3QpG^mqxuzxAiP){{b8Me0MT*IN72K!4YATv&YI?g)k
z`lt&tjIZeiBvW^3z2C6b%h7Lr8s|b@o(loW78B<}P59>*L0<3eF-44<SqO)StotNz
z*yLgtH3^Qo0U2i_6mM~TP*2zbGjd|C4j3UE1_1U&0d9ga*bZp7)#jiiKPrrqVUb4>
zL=ZEZK*_4YPTEK6D4!ihgVBM+o9HJdNEz2R`qT}zm9;MH^A!|em_A98T2Y*oFsMMo
zh9ifcM%)H<!bnF#Bk?#hR{CS3Yx2qtrlxyhGZu#jT#5$ZqR}CaN<eRz0R)^Xh7*o6
zPTuFZz{m%jjw3+(702hn2Zw!TFe|Ea3zrrr<`yn3qnR#t!w5H4IG>qkyoq0E?7hzs
z!9k2AMq_SawJeZ5&bQ-YN;}xY;9qG=J2Jiw8t-)h>EZY>V)USCKcMS9$7@*{46g@t
zg?Jhi-~fczf{F=@D0YqL1Z@>rj2%gUu4t2hY_KFQZDp{B-CpE0!i*o#4vE^N8&0t8
zKheQ#kP~g<c4Da`3C1)ypD{6ZT@uWBO}Yv5t7kKg*QD0fA+YL(n?Uc$Z0erm$E1xG
zXQyTk&RQL44d#p>3_=kCfhAa<$?)GY>X#amK|T&5)&n+fIU?P3WpXHSAowOG&*wNT
zm<}QGIOlM-2qjdOkne5Eo%l?gIbK8pw(7fJH;svBLam+~ihin6yP<gJE0(e^nFYXk
zI-+PTa1?TI#HB51nDc{jX?f<*;blH09o8)N<h?$7U}}a^X7YwIlgkA80@G&Zn%qEf
zLbjY_%{+@~fO@oxup1C;_W;bn;A`OXrO=XHHQjK+OEbpo9}*JfDc!x>rXb^Rv&p8X
zN4vXspOff_hq`_%z&1Zyp$~y%F(wKmJXY^|Hd|yPOe?i7u!>{jK#3V)AnI`#vO|6q
zA{ZvE^@&`T{gY?^6s+}~p)sA>^cdIg7(bg(b0~EJIX{Q_SQgnNLRSpV7l!VXA2=?`
z=M#vb9rGL{C8+6~G*(_<4{`KBC?euF6HJ#I+>}O5Vv|4xq|iDE#{q#HN2F6H(0GU1
zL@Rz7)nSd{f{8D$t>Wz_fD%I-^D_c=6hHRL*)8ax<*b220-V7e3e&XH0Us$xBBhss
zf6FyfI2Pr}A}}+(JOZbmAq|u(z~U6NCp#JF&yP;pSRs-8#>WBf;E1W#d;z8|TUsiZ
zYM!*6Va>VYN}QJw4x+BV03Kb3y9j59i>0^1=w(qm_zKxXFH=0&LvhA9^10p{n5UjP
z1txZ2-*<Z%{#qtZG855E)Fv4&PX|i!j^n{ed#MmpqZgcya#n8A%4V|6RN(Gfo`j|c
zn@t_8WWyyR{J^JiZ@0JzP55>JQ;jH!C}@?O>+(Y=TZ-%QRdWN(d8^oUAW5u)#ksH+
zE)^~<pc-UlE#M#m6>FR)Y2hH6bqN!+O!-Q4K3V3#;zlsnFtx$Y-ZqU!KAgf<hEqs!
z*MWk>cMZgwD&%us>{nabjD?{+rPV@NH`H(5b8|}W#pI8yL$E(myUKSC^$_)m7q*>d
zG!DmXEe*E;gk(@dH4`e3zy&8S^@Ro2YBf7vEEd?q)oe98UKM}HPN{xq1};w;zQ3xm
zTj9n(aLef^6uJ5bMQVfcMA?*ZQz0OsuRW--xEeMiGkekWlw6}+X$$O-D;dgRxoTBY
zI=x6%Nf1E~XNCKEBlS$HQL;mmTj|i`m~k+wnKhz6I3fevd;ZY!?2;9&N3k(fq#HA@
z$FQ}I8{{h5E1Eag(MCJLdc0WpI(7o5?PUD0Q+fm#bLlg-&ps}f2hnEYtM5faQ;drN
z(Vtj|6Zo*XYcuh%Zoard^M)s1N_~QO+Ta?gw<%o-K{z>{0=n#2KJkW-SQxqx1>iKf
z5+U+uH^RkK&yuct1*|Y_Pb+9h=;%CnpyoBhng#jTk~f(>%+F?*3b&&gsm*kB8gLi#
z;K&QF8Cq<=&NzUH@c!+L9|M9f(hh^2TyY?vIIw2KLBdBUQHmgBwC7aaKiPlN{$A!j
zM<dNqjD?XcX0vKF=3JMwu#1+Wz-dI8<p6sjoAQhljHpep%{k07EOCQt3PW%WlSzlv
z)~)wsokCC&6SCg%490fJDuDwrsY}cV6l=q`0Sllurvlg)SUE~<j-46$*o{Rd>VwuZ
zpGJiHCP~NRXIK1C?t6}{v3amx#7yF4$*QwKKm#)pz~rzPN?V!C4KF+^lQ~m(YNc0V
zfLe&MvFc+>_EQJs=s-OjqK?xDXhw<_CXsyCiF7Qckn_WYQ7Ji}Et?0A3iR+$N%54h
zs6esD-H3(_%z8AjnongoA$wuFbwddKitRAS>n~{Ay>Fw587~hJ?51YCTrr1{({4Qx
zu2P7FB_tah9EWA7&)nUv27-2Sdv{4jH!TwW&Q3N@J7XbGJB_|&Q~RdQ#eo$SKu2Qs
zY#bkv1|?%M)A|rcpSrPTTwZ|8)`b^0b&OLtH1#M(Yv;g@7=tNIrVd8BCm>^s$B)z^
z5_B97+S(uB23a7118O3~f~jdX0~V*LtHZO9m`W4h0x>oasur8gHs)(=V=jnsWd;Y0
zwzEoVTi%r(^)iW_sc5VPl-Y#1(I%N@sN0^KVFPM#R5lae9>NGn9=Lp$RJP!ts#NmE
zE-6*DlOta+b~|S%1LJ^06Xv5I=qgybY#iyz6-}2lt%t-V;QnG?WLz3XnI`RecHBLs
zS%7$}Xi(UOFrQ`IIv3qWY>ueGBF-UL1i(&^G3<)r+sXG0yWhLWcMKc`!U4|)-mN>6
z6WzL#f!Z<H-7{(BtgMx*Ocsm)gOZ4MxEOop203nxm9sS+O^2oN=m$*j`0Q0vJK+Ha
z+*TIxLa4>|VzbNCH?=>xvf1(3vKd1u=%M7ZPh=?7*ifn#BxX#SvzFbksf}>gf;AcA
z##}BXdI9Wg>~l|)LqcK7=rA{<F%?q}Y7T@XI-UqPAy(Ly0Gsqvdo+UdR1wt9hEptC
z>mr3f^fer3wy@tj<jt;<ptr=qC*_dx2$98y5}STpM2%v14fmMo>N`x<I~XN`Hy}c$
z!?fx-uSv(HHw8pSehUugO1@x-jN+tTm|S@SrBl}JsU-sr9FKjMF#e%i<;fw;Q;unr
zCnwWfZ~Q!-kV+PKqmGD_)+2S9NUc3p`nw~v*%ZB~4vnmotAMOL85^J|MDw9Wgz`Lc
zE^jm?HnPe16|0o9vL=a&20lb+Q-0&#4(MDtGg-`~hZiN2TTFXV1`>xNGbuInAXhFA
z0g{O6E|<nOn*+w5<{X%T-$gYC>G-HQFxP34Mz7%##4T(gGL5vSafNRt;%CALcC*03
z2gk;#CiFWNStkuk;N`VrU94<gzZ$b04KFT;f3!yG96wii-=-<#J3et8kEBP{a0>Bw
zThzfTGTazVEzF??c3rMmf_<-?qfB0DWlCyJ!cRX)?c{DH!&}>@5DoIy*0{Si@px_6
zfQ1xQF+{agRjoFjR3e2LF^*~}ZcF`Re}V|JwM8U0vC%HBJ=tTZhS$POSg7?IO&61B
zsSqL8sRuad>20;Pwr0V8f}O=C$?Y<=oC!+b#l4A(_bndUKQS$4&+%I4Ms0Gg!ew?C
zzeH`KzR&PLU>SxpHn7Kue3-tTLmVp&8e{|9C`lutkO0Af`IPB{JPU|6_j`Se0!boH
zgmi3_$gfoKBW6cLI+lznaXi#;2@a3|jr$bc)a`C|L4~%ike)%H=8-k<KZWXvafLEP
z6!?(42RHP-@!jiqG;*3fUPOaH&KEqqQx+9OU7vaY0178P(~01h4)&G*m<#FR5Z*x{
zq>EWoT`)1Kl9Io%_(5Zi0u{q#$#erV3OI4ROIQ`MO4XakC^f64Vr|pIrDSFM!XM4p
zN?uTe1U$}7#2iSkC$9=9qu80ui9Ih;<M@1U1;8nrnQ%5*KCq;dCqxbdn;<@*xQH_r
zDxbPglBiD92#6gTQG4Bxa5Xm`@UiJk=J`zSbJh(H_9}Q&_=0vr5-hmgmg6mn@DM&T
zrR?ybitOpsl(;D9deGvo3sAWLnt3>8#wAX}hT<)A9}in1W4dxiVuPWd4RDcJ8)6@F
zk8QzQR4#H=h)0NE7d&JUk*;<g`rUMd`oRnhGv!Z!{b9QM(FvH^Lz_GmPzD<DuMahs
z*_YD>5k5&Z$rCzqwmgiLA%sTU#>g6zD~ycv$z7oKj1vZ3FaY*;?G}+*Wo`?e*m90L
zmXrBI6{}FS*2mG+)bTDMJ$dm@K%&4|m459hyW@E10=5(ZItbx&pxj=7mbe83ZlA+*
ztpA`f2`>qoR7lTGIL&$Y3&o+Qu29ro@fu&`1$lNw3)JT9JMChpQ&Xh``W`f&ib=T8
zOj+s^z|BCpNO|($Al*%`ZlNDB%u7iiv+y>q7b?xg+!lbZaxUL52~<3^u>dMABpwh_
zONj`9iE^Em2bO{BtP)QqFa`wM4*bQ>Yt+P!+YQKaJ0M}3x?C$Q!LEVe5>wUW2g?TT
zQFRm!6K<D?HkQ$Ln@Q+GRh@OQEjPb!N$L-vdC344hlHrs#(SZP&5RQWe}5a#aJO8|
zaKT9a(G~#p5Dmi#DE;F5Yz9_oH&DA_3$aP%f~kKLjMS}caRW&r^JF|~6ItY|mhd<l
zRxA`7+iV8Q)&Q$nh+^KP<dBGmFd0-8#;Ng4A>S2MS%_lE=fzWX7Qmpc^R#np+kGZ3
zQ!rt0FzKbqp<$5HWI1(jZBn@dLP28!B!-qt)k6TfVYkC!o?VJ-#`sQ&IYXEjNki!e
zfbyDAOiZ}C0iy`P35BPWYc^KSV{f;`EQt)d43K^fG(q%ZA`py`i^u&7{94LEQw*|q
zb%#>(>4&XQ!0gARLgv!KrW_p8ce^10G2}JKbU<w4F?kq{5AcB*o$0g9jC?;El0Jyn
z=y7~BWSTtXM-==m3|EI5s7|45ELK4+mdN_{Z4X5OZmf_%#3q9z4-FfkFSIjsTnNDR
zl}onK4cw%$rKNhCU^i;Z02ra*oBK^~S@!EnHB?i39?DsH5eFdaxb(Pvsgf8q%3`Kh
z=yXS8DoQ$(+u+-cmo?7>lO|!n`njCR`W!xHnmB3(4)JWamq7m_CnJkFj_hXYSo}K<
zXRpZ;2WCLhu8=k(6m(s}9p%^t6KH*aR;u9S0l995H7vI1Tnr8$j|FV0KSgns>4XEl
zG(0F-8UmCoWMiOYA+MucMF?`vAkl{x^H$>qYble@7HfUgj%wBHWDYU_VmcI0bBCPc
zh<LDrW%+1}O)<~O5(g15bv!3R9#Itb5N;5}CTBm1<S)FS3l5zIBI~4q&V~JxNQ#z5
zWCo1LnqftX{03baL)n|ciH!pS0p!Gv7Z>nspQ@xc(U)3GrefcjSj~wvr3tB|3GHNq
zC)HlBnZ9`i(CkSjDoA6PN8hWCiG8lB`GlgHPv}$Xs)8aATELZ0b@(UWXqZq{tzzZM
zR^DW)oDn)*QB2jplP;oxa}A^AE>L?)1apu8Vc(H~!L@jdN1a4CuRXeHG4e9cji1O8
z2zDaGv=uD$PAPJSNS-KIMZ<}g%>;!>tw1IqBU!~DR!+e2j8t+neZIzlKRugb!*9Ws
zDDezPleI<WwyZBJETH9{Pk7XZT!2I|F1>pFQPw#%UdL<jiWvs0@DM4%BQnlU@(w?p
z_~Eomvb^T#F}Bt~AU)ebMtB|5aW||#p7Ey61B4UWJfNv@sflr*>lw>W_SOB$8I|bz
zIdqelO>>LP31AWKQ$PUDIiC7<$tMlLHM!w+<Xl;s>B1ANLQ{FJL=a1$TvJ#^DZhoN
z-BNziJdRB7Pm0?|xO<eN$1F#*8yy5tTCldXG%S}kuq!$JWny-jUMVWDB&ybl0}+R2
zJRVvVrhr;8t+U4q-=!za=*9fzjlZwhQ=d|hIb~WuzQZ^wh`0f;IYhkSk-OnppRZaV
zE0;)wE>?q*3K00BAW=*1jVHK^^nNg^&Iv6p*QXu`mTUN3IR84NLs+}Q8!~O0UmFjy
z%nbwi(5_lg#|?`g<Kk=;oH5mC(5@G$-%^TsaOBk`IAr>Sv+B5{WjGzR_=AXiFk!%C
z7fu$zprXA+QFO_2Jcu&jGaa7*&YWTk4~?{ya>WVoBc^58NPC9OW5y6Q9Z08zjZwp{
z?|6I)`g{=SK*7{yOXvW<q)1?kfy85#i)k&i#63pbOUD5t@IV;cQPJT9T3GJhy*D6u
z1#*<2|J)hwf-NU%TZU24ZNSkk+^J%httw-l2V@Bu1H~)T^IEj`YL_U+(#Hs<^_-I5
zGfZC3xLGP7wZa^%d$GI)4@<FZ036}~mXPQM$I47VeV^E9es=lD;?!k2;Han0(3C2w
zx-1k^qtaBEga(uTCU#vEL_$<FhTqwxL7<g9{yY+`(SR|HwNiy@@~gRtIl~pljNJ>)
z&sq7rnCj}#H7kqN%GhS<YQ?m4HKkPYJ=UjC7T9}cSVX-W_Ud%KU-M+<FrNWaFvEcz
zgMqm7UtS?*>@+i#q>zxqhtf;vqFvhZ*(m&1pU%n3o^7YqmK91l@m>4~F>g(~0OdBF
z-Ta2hfccV9>9Ejexdz;dr%f?o5k+7Hfv?_Kaa2mbfU^^K>TNk-L6bSxAY(`$6Tyd2
zETIeYZ+KPN%$BxD#mW~g!?04x8aS|dIRuGeNSje~LOBA|4gnm<S~m_4v9*v7u!a$2
z15l|hk4X6cin<_!xQjdRQ}?ni3I%4TI6{ww4K-^NjS7i*ZGcKH6=1gry|cTG$f$CM
zTOq<c>O2Gwm1CqC#So`7Z7JkZ&ge_Q=u1^~Wp5W&2W2G0!c6OF93bCmtc0lR3&eJx
z!;Ad3iQ7?bJ7tfHl4ctgC^5QX7S1ducFcy-%0OOg9<|8=;53F4+e{#rMvj8{)i<h=
zsS#%q5WDNy*o!s`$~WtQhTzrL*-tfdcUejQR*kQro`;-O(Cm>Ai)L{|UVAYlp3T~!
zp5G1>4g}qSx|VQ|uR7Q)^I{Z*p5%=|QMZ^iEz{p)(4r|N<n}y|3B#(Dp7vVvaEIt3
zGNA6t>^P&g%m9|iRjsm7gJ9C&&yFv2F&!w(rGV4&IL3y3U;ZKt*ZyEyfnrl{K%#x#
z%BEC7NL2`VwTu3gHv_vd1Eu)&sf>m5+3bD?YPAi8_T=MePpMQ(eY0<7YPqacuyWN}
z{KP^THr3X;Ok6_qG$LWD7E*U24|g1?heQD(vS^I_Nq1mJL^HW;7J^Ei)`dKda{-Sh
zvvx<nt+lLgesDq#8bh6%)dD0f;K-@FM5p{o$(_-`ZERVgrtIuG(~q3U?Lny4Qp{%M
zIB19cZ~TX4CPToE+sV4Pa~OeMuu9S%%dx-mdIRQ4eVUZ1e8#koT*aDX+${>KB^i52
z#mOLluAp=-P}*VqB5Ss>?=!~tyc1*QU~+me$un-_v6N4Qu^2)88!limwt$8NEg1qd
zwS-dAm5Feuwj#gy1hP^C;?vMc)QQ<>`bsCl^py-&$aB6vhyxkhGb|?*PlTZqV?)WQ
zp=7r-6j_#_CPF%tHYLn*@Q?{}AcGcC%D%{f$8T-3X(OD7aJUjqsQmbhPi>7i8Q)7&
zC!<jOj8Jqkyy=M@1`+rsHh7&FSlrU!^CP>_AwP0D&NWF3%+LsPRxYQT$W={+(A06w
z_w}n;<JGOm&azcdL?*403L%(G=%W`cEicLRdleM}0T}x2qI_GwEY<6}<3$1Pp~H&@
zbPBAh<YIb$7@<O<%;a!GDV+!#retoINxk)rk@R0Wz|9jQ3^gPCz+iXsIyX)zW5jHO
zeoo!nG?_G{Hh^=CU<XD-U;b3x(sUP2gy}8_Y{RT-2S#)cb@@buQGg@T>h%?dG|f0U
z8&zXUwY26JR@i7Xj<$}1o;I3>xsED4bLyIIK+s;7)>XE4qFB7qcrtKhxTVNj)nEKl
z<gIEFf=h|77K*oyxHQTM?%BN?Ev-3Gqs`1J3eif!TOhB^5N-qhqa~yYs1HyqocAuw
zh~IUb)KJQdu_-FN))3^{mQp1#K#Vkurd)?LX}noUL=H(iTi^k)d@`Op05K0um1_b3
ziq{fBVlwB)XrY|a!Z2KN0;raGt2}0mq$Ed@-6%eTZ*A<V7`FZ^Qd0AajNBRV=3Fv`
zW>;TbZnJwu)xD(nZaH=mG3k>f6@HM-kcQO!vTAr6y)PK8uNJ(DB;gQfvf2#4B#oE$
z7kOs=7l5SqGp}N=CRINZ8&f4@$%&Tt7;vmdehXX^v5DQs{||m%P$g*1ID~L4Wls%T
z3zxAnR}ha!G29L6;108~O2%B~)LiN{ABIN3prON-s#~I=<8wE=pF-^b)oNMyJeTBF
zC70^1k;<2Z%o8C+DNrA4MUO3;7~6(`Sl%kd0kM2(K={+(JGW#AT1^}yLb8gdu<wM7
zZ}?f#fGcQi9N_^^8B4-}7YHR3=sW3PM-RHh<s2Jyaq#|1Tr3hAmA}n=>6Dt?Mngq4
zyQ-nNjvvrff(X=g>X0zxH!(%sz$2ns2#zAs@nPQqZX_Wy8C<U$C?sOChGWg#iC~xK
z#*A^~Risp5OXJ9&5aTfGegu&K@1TU3${Y~&#zK8yKzLgiIaFO6#!QL^T_u37OiMpQ
zXO#rgwBzG|@c6b^9VDjo5F1^hWU>(A@^Dh+ybJ?JV1);%=R~r$n2u%Bhl4m%Ms}lx
z0P6XH2E9PT=pss2R4N}o;|N?z&vXD@^az5oZN~;gSlR$sy%f7I$*2HqUfvS9LKzdq
z0M%uQ;!-iT&gLzNygH|5s+<Zpn%o*wnNc3%(kU);EeC`IICs>gG~#N<eYy%`>OD=Y
zM>+tivZWpk<&lfokwvbSLR(riEZ{JV#lNjOSfl>J%mp{5y^6gC&#7pDM!i9rkgiCh
zW=$$K09rE+@SO&DZMwdBMY6tSRahXp`z6`^t*l-4L{O@;rczzxX8?#c^B5Nn>IEFN
zm!h6a1QY3W3tlZa6Bg2{&q<%D(M+MgnPKMZ1ULw?CO}){M*&oo(Ic5|(=`v(g?oIB
z>6i$L_Lw0{4M>ti4R{v2Ja|1s4a|)@m$u-Ne6)rGkI82taQ4Y0HUWmRhv4W1Nn~^^
zr#hC6tz=Tv`T=3WI>UEIMkzp1hNq7wqoZ^SDgtgx0xNqWoPt>^uNSeP7g4~U*%ahd
zoC$v5P%xZa9EQBkfGXT<q^)V%Y8@t1No&CrPq5ibT8?LsQIov|Q9Nl4azX<uNfj1`
zA`;tqU})?YUVLGIN}ksp(^Ds|XkF+#n?Zo%#EA}qJ_rf0Jl_Ox87;iRV^raM6*i%U
zt#v7)t*DceR`wUpf0OAEo!UN?^;G(|UDnFwR28aH(g+f<+HO+VOiwKwnZD@IW%Fi8
zd_XC`R6Uu(!IZvL>M--0JKN>MMu?DfU@sE8jUyenB?8&mCJ4<=>(W`;Dis<1!USqi
zs7nk$A1?^!h~$$P$7QX_!Q)p^Me!)iNuAom2&huvd2LZ~TTq0vaIG%G)i;$Yw}zc)
z9}Q-N7O)42$a5o*T*Rh@k>k3EJuj=68?9GV>-xkH`Fb35Hs`IJ@-W-GOzMknZa7z^
z0q=`}4t}wyUQF8a9Vc>H`kg*xJcF({NCT*5KsO6iZ4eJ4Lku(pymFGAbX!dRS{-}L
z=wd-tBCBi!IfMiPjCUQL8&ij-<LPX0s5TleVa}-M2U6!+kK}Zl*D(~gV!~;@)`mPZ
zS({nd!?Ep<D55r$<f@ziNPWesnoFQ}wE<0}95?DZQgu(Ks6tbdCKaT*M1iPF?mA&)
z4I(B$DjpUiFNNk%Vk6d$M3*=QqHo_6muVY5f(@cN#j$5Bkcrg{2%Fv*j4H&zs7h|w
z=&VVrU=`skHpQ$8(VBb`BD5xXbXGDDV>?<4qO}GDY7KXNlGI>~=<gxrz%Sl;s*8g&
zX;xCh$R=dvplSw?U#v`xcxgIiNLpqaMG@|5x<jPa(<b76H+7RQm9Folr31-Iya8#t
zaB*duAl!($*hMd%I(R^*=ET}9sCJWM(>3Q4mr?4v17Ra@{3whO%u9lXCNx7EUD!M3
zqI;BavPk`pk;tWx5Qj5fpH}xeg~u?>*%Z<OCz*&z$Nqw1prxAws2GGN72ViziXtD<
z8vCV#_VOO2Hm}B03ma|1j1iQ)Wmo)Qv{zN_6}G-?aedgFpNb;8v4dt>CTw8a77GcH
z`c4N2J$V-q<a5{@ZB^CI>sOOToMXzWP0fMQQ!X&A=_!8vnZ?L7fs!P!6)95&Df84y
zm9nLa-5>0+Gf=U^)i_YKqH9o&+pG!ectQXeqgDdL5K0H>DnTLb#LiirILx7%s7-qE
z;+8szUzh?Z72SF)-CU}otgV=F6TeB6LuL)vA^Z{(wMive+>vqlI26JOUWwZ5AT<|M
ziIDPE)^l*BUf|Yg(8ZIHlc`gy<WDwc9Hh9`IXm;zpuTc329~b^ld_hsR@ZOWZ>U&h
zA&fLu<)AuL^u~~hY&o9Dwyg?*DwLx3oIh!mtz0#x+YX}&O-j!$Tl4%Dz{IkZ`vu6T
zoN;t9#vXijiP4p$1olkG0xlGADOUFf&5L^z1A;rKL+!3hP@Oa|;~HM1-lJ>alnRLW
zUAIt7X#sj~MeC7_X3M~Fl+l;l>dRL&rGlhnc=F|O!|XE1N94y&-#GK?-7VnyC9Cq3
zuVTrn=w9b!udC^R49X}(A(3LqbsievhD+?arl`1i3t=23@NPWC(;$x95Y;J-!YIJL
z80tano8?iscVQSYoFW5ia$<^H4TL<hB&s5A`s(2IWq#hF-!ZTK(j=;iL@9yZ8NCwb
z05|$;XhB_;r0G-?og@kv^?a(&Jrs}@<_dt;5M^~iMXfBU<tCFVxxD+ZgVzuF#544B
z{d!4NRjkBtx?1e|?3#o~coM&Uy(p3=%xT?};fgYBXi_@lfI`{uV}Vnj1~v)g?LcY1
z3NWg=9;%Zj<@ysEP0h3)jn~Dnbn|)Dd@(-$LBToVN;xaNieAmAa-sBn>>`)8Ai;NU
zx8rZh#FZEm=hJ;4lhW13I-fJ<j!Q^cf?3^gGSIx3lpZx8v;|nOXyqh@SmsclvM>1=
zWR{WP1(ykH5=J798D$lcl;VOs6iUi0k(MJ+Bol0^rObIhyj8U-Rv{hUI;J(t=LW4=
zo(m#2)kzE5yz)yYiOYJn+BZ_n6?jxssEJnliSnX9eTaal^1&}ssKqX{mS=6k$ceMi
zT-;-mEKsK&w34Qh?rcSNwjA4WaFZ5KJl&;@pi--Dx{gZORvm?o*N{cVQNzVfN97OZ
zv#t7=rQ0ei#_m%oIP`c4;WbrdZD<@Om5V%=k#Qod!=g$86pN#%mT8l9RLI9Jqu^iW
z%Esu6iM%R9-ZA;LhI@VGglb~1?17a1kVGh?Ofg$?Tvs>++#c7CF<P42zdXBmkag*5
zyoz<hDnBJ3cL;Os&!sI9u^jF}VPum47T2XM2rUx#-|%}NHO+h?vr2AQWmXDxAI>ns
z3<)Rfuo<&ctB=WD1rHE6B-}3UPq<-i=TgQ49x8F!qo}vnSFP2E3WFle#)S|r?#b)O
z*-vc1pt0&kvjZ9xZY>N&#380Dsn>}12l*BP8A%x{nGJS0R3@+WK~K<@Vyv7_gUZME
z)vB%tu5QaTVm8>TiYMcmjoe~TY#i34-qW7Wgo~KbDI{{uBs&-e-t2k=B5s;`&04G?
zs8H<<!!U6RjJdBg!D;iM+L-Q);!VQ?Y36w>Ege9#*@OfQN20a@AlP+)VtX%k+36mP
zF}@&yh332nDqcV(2Z*f`k6U5r3Q{$3{R1zgNvTV)2e7B5d!{+JkPz2O=>jJvTXM6|
z72owv2sil3ivXN!p#GX7p1cTfsH41K<t2rzm7i23vI9d$wDgPur-N*6q3FuCrq<Df
z@AVr_hzfbcB;&4f5w<mMFco>s=tDJ;Q<#mFFA%q=8&`jYaB>&~DvCfQA!lufdJ+ZK
zU)E*D2_UkxTi0Kx<C{l@jO-pzHd)orLTiu<+;DLK3yGErlC?ur@AB|I*hI>8hvw;;
zSkXFxsK1cdmNABM${6^`!wzvMhpoa?kxX_sYv5~AN;>3{&|UmuL4KwI_d?n46jdZN
zZ?!XD7OrR#v6EwI>5vM<Gx||X=?CMj!=B(SFkE=FHz;|`s1pTytaY?Yv6aazO77(1
z!3JFKv^usiV=>W}wem_#<V=&9Ls&Dk5eie>cq5nghN#;w)KkA(cbx_jsa?jqYInwE
zGyu#@z?(T8N7NCLR=;1=EpsJ^143HZN@k5A9z`v#u<39!344fo1T{Q$7YgfKPVM{R
zz-_M!vDX^Z3#m&E(3ZFhP{+&Gc%-tXT$LGualern=jI0#Kxgil-xttMO@dtM#pez3
z6-7QitxTzd3&HfACXUxKUM#1)xCA$xsaIj<;3^#bS}EnVO=WCen@iH&1v!%y1N-51
z&jT6>Zz8`zA`Qi?iIV6{>R@q&fT-*0cmfto27>73(^}tj09h-`DO4pG0tu&ufy}bB
zbP>YcsLe!WLs>BfeNC>C$X_+I;#l&lkaaSDfC!n>#(|w_P%#Z)7sm8(QETzqYmp@|
zDGNd<ufM*g`=FR%aKL0O@?BN&v(|S-pr)lbq&UEHCftAgAX{-{wn|lED!^T_e(<CK
z?oH*%W^gwtKR-<4QPxd0@P0$7;?;*ZjRqJEYc#NB-EF(u5J-V>p|tK=L8cbQebO);
zI+a<~BQOFBrMfRFb|tTFs7fdXl2^-pX+UZZSWLMV>3ixsIf@#`S>XEkKqURk<&!1w
z5ya{9vZ;85$m)%TqUka*6cC?8PUNf--NBs7V4X}H$I8LPSD2U3RJTePzpK(Unrb$M
z>Lz=!Y~?C?GZu{0+Hx`sVjXvUk*BM;foJZ^bOc33rF-$k%}vS_U=?R<+=0XR54>nD
z?s|~>%+Z}F@)IfljI>Jd;)Vf`-b<p01Zjy9F*8R>Gbo#;DXJt@uI2*8gE&}0q~k|D
z)WN>g-}t?P*IsYDtTIRWe8ol@(N+sa=a~ipEUYnCI_og6C?ti&aFnvK+&3V!`RbST
z>gRO^3qM>_`@#jFx)gE23?|o<R5A%ib5kh|cvYuw<YKQfRYM5|5KA$OTV0>dGnv{v
zk~SlLH7dR)ayhCJ(10ehiK&at9QUZ`*YX>_Cf{;ti|TiDid1}x<8n`^yK1Fzzedii
z*nZg*M%`u;xy}kvZWx<3cuip3!Pig^Fio-&PCyC3Xo5+>R@bq~gvbw&bpkV@(M&*H
zVzr}=JEn(`O&P}K%vRFOmJ=aBIyVbw%y7T396wfGUT*U-J<1a07abX~in|e&8EYI_
zFna(ubp~N1Bb$v5WK%i-_@R-yCv3UU#bH~^;Y86%1C&wJClzrmsFp~Ch^Q}SA`h1S
z-vx01oj*ES(@3p^x&f`#ZB$ho`7Nx1LfaXMN-XP3vZHi1*dnM4t4nZ{?X5{9^4`pC
zU_vlStemNVIRWc{Gsqo`*qF|uszj(*lj(9Q9#|!i71sb_mOz(SglGhA9IUmSh`2(i
z#e?S4h($f0oNq!qHQhNSz{&$fANG1Yf{iv)i{LXR7MkWjtEGl;m~legZXvy0kJ=;@
z_m?HEN|a2eX(*9a8hjYFjlesOX)v)mF3bpQ+hOc^pW0|{>L6lb#OSTs{d#*`rVE3l
z-Go2R)vT}^h|Ba@Pa+(&h{ypkFP?+sT_`YbOQ#+qDQ#R1#i-8cn>MzzkCZga>fxA5
zgzjw|on})))*X4-0<)lnz3m5t7v*B&swFfe-AdvDc-D*#<v|&=cX4*=lDYZ)X!@e5
z`Tes?=j`5nUOl*AWcTiwLzm4j&mEja2j})*w2b!7qQ%)49iCg9ok9B!EuyJ;ba-L^
z;?&ISIsbMdf;#*%Q@%cuG_zNNu83=MJamPamm~9smS>l&j(ydx<TqpIz)e@G(Xd+=
z;*QzWf-qQ9l7VVvt7NU$EMB-$e(SJ#@F1h9v9g8(+bCYSd$(3>sB5ctcGa@hq*bax
zALgkDC2mr7M6!9=y<2x|_ii2<Cz6#!HE4u(qh;w7Nyyzc4rM~ZIcSLxbcKN;U$x6D
z6{2JV<CYcD3ju=!>WMx$q2MNBBMgovk-NM^B6uDeGUl_bI;~^G+ugdwzPG}*Oallb
zxQbLS_?Ws?P}D(pNouAz6yPnWt)&H$;Y~}rG7X(eU*Bqw(@C|tfs!=!gyDg;X*ivF
zoO=x9gSt(Xr`dN9ZzRSFQXK#q@g&WmNn{m?ijlCTXY!D)PPXFskXM#z(ja5klbL(K
z<vTN(kVGhvuEvGOPNON6;+5Nq&6Aft3SOI0(wN*5iJU<qFOvuI`IsUJ+d-LZBsc;<
z6F;V$RpAMP0n5A1+cb<qgK|z$)&t~a<au$mxE{)<aA&yj&9esiYzp~d2CtX9EcAFt
zohWXBNX{yoM06TSE;fbo8i{~*d08ZJRVkb}fJhirCMA(l(xB*w>b>9wogh(TLP6q|
zxO=Ya0bBzvS5b$a=@Al2Q1}+?L;!(zi5dd(B$PG?dn>@6ZNB9+O~b}!XTB&IEuo6O
z4mqKId>23EK(1<dgZE=>TxP&?SANuHvy<3XA&<~zvWlC{HYFkN5)Vl-rm-rgQLm>&
z&rCa-i_#H<5XxC-ntH25Bn(KLoBfoxc*wfGamoy4VNVn+g=m_3go%|yw{+sdq_Mo-
z&PZMssJEK}$3nAyNqXfHpsf=W3~SBl_^#9JsVy9JeV*vhra?sb6g!w_$r{%U8e~=4
zf*}~hp&}W3YGF>;vHGy*ix`jwQ@4!jU$WGc(Lyn$g<&>d!Jwf+|8w!PDkhX<jQ{)w
z@(ku$x{UOl5bV`9aeY3l8J@Lh#OE`8$)+9bcxlEozt>QuFvX;U0OnRmkB3~bQ4;RW
zO%V?&=6@@~E@w!3GsZi4K5j%pNv(iz<v#Ab;PaN)|9qD+1*}ephdLsINcE*8^Mkx3
z#%4fC0EIGs)8L`lhg_bRF#-Ij0KXCKM)LX=b4FumfYFh%>PYec=r0XsyjDtiO>7R%
zWaectNfSzni3J)&22CA9UKj#i!ycMj&_*pt^9+x?(bsiq;)MakP4_<6)H>L8$5Dsa
zPPfA&o|u`M<_iJBD(2h(65+C4C*;P>MptqqMXDyNg2HoKQEjqT(V(Hjzzv2Ei78<<
zsvkEV42F_dqzf-syslb>nbL}xhr&gT;)qh*1YOq<y+wIicxhUR8Jpnnlg&=efnX9p
zDMyN$-?yZ7X01Z(mO&Apli~3>F-#g-QQM>3*T{Ze8FkvFU0YSvWe3UO#RD+yU?r)b
z5re4OABKiRTp|unyKaekNRHrVM7?CqU=5-IMYSom0-a<H4ZJAht9o10LbHZoF3L!#
zp2_R%gpgY(euXk_8LwvLt6MR7vW5;^P>~$H4REtmYY&G#uVFQ4Ko%%<;etAotm>LR
z+=Xku>w)p0%2y?Bzy;5Az3bU7vBX8ZiISJlKu#qy#I^3&y}3qxxHgGhna+JHvJWO*
z6-Hdh4xEsS4_=Nsynv2rI~PP0287bbrZaix4!C?|73mo#h>c9g>sI5Z3*^5n%$cY|
zEC_ow$DP9F&AP&)m*!P$sPIELw9GD);z9K>&gw_j7sXk-0B7xVsv=YnN#sCu<GC^J
zHb2OWpD;E%GFQS)xE+&Z>fOc)iDuWGFbZothy?0Nm~}->x+)365RHrCg78|S8@M$o
zPo+C`two|5viaTi5<lW4eL4x^Io0XxV6P%SA|xbeZeVdSAIF>$S!28boxHFG0A<pU
zLj@I-?~0nq=@7b*_V#8mNkFoiHf*6NCGLk~eBBDDA)pH?NIuphkq@7m1#i5oHc>HQ
z7;uLSobq+rjReS<np%dt5zT1#oC+n9rm@jnNq4o7;L3PBtMN`T^&MFuTEuDzy$o!7
zAI2Jr@Diq$s`WrF_FCOI*Qu<cY(7DLp3nUPpZY{>c&xCty0dT06z;m?gCRnr$4P^@
zU_}28Gyq_beh*=l_sF$WW`Ha%&+VI<UOu$=;v*LwIyei}QxnH~!3YBGmth-h34J)`
z#bKa>!c{+~=TJn#C{g2~LB^F*7b;vpTw-UEt;EB!2Mu3ixY9omQ}p}TFfY!Ie#%MV
zc%E?%TnF8|z&cN%ZP!T<?gD-vo{yt8FHtALwgj+@qjsnh8DbY#n|;zj`MHhy6g!%r
zp(UQZU|!eAI>8|m2_*4n(k`FfggQTA(rAjjF>?&XlreypOs+RXubQQ=%(r!Hu2%5?
zTH=9Mevh$tGFgI${%Xquj0g_po3!&Ow3#9#<6I!=q0bb^i!(__mv0~<g$<<H+$58@
zy@tC(C9ITYT!C^f9Gl#hcgz7zrqBZgBkHT0FI{jv7YZsztdW4IGM@a(V}o`zg|;pv
zydz(%pj`>{QO0@kEXy&2m=3Pr0(e}tDk-wkcsw&b3tvs2d#=%z4uUVl87Mg=`e-15
znW)5z-N%ErhwX9MAffg_bpvMOBFuP8@qcM6?G_CR`B+$X>Veb15q2F9GlNNIKAEhl
zVoJAQE>#V@F|T8W6X$`zSxrR=J8pj`az-bz8wf+F2I2=y(uN6DRTLo6R|gF{j=Vua
zUzM|^sgT7NWJD!xqT15z;-#~TM=n2j;K=Od%ZpP-rVq`}&$7e0hPq+A=lZ^)Eir;R
zk|%Y1a&8ModquC|q>f59%!ht8*IYe-sT`gQC$er=sv*L@qp7NR<#;e<e_*F`4cwxm
zFZ0;!+FIR4LAFs!$ZNyxPd(J;sSeyx-LKS=PMrY1&5)qpQ;?BvCZFESaUF`{zb&m|
zUK3CO!}%>yP@Gg1HL)0l4K<~Hy&;}{pQ1j*PmoYIsct69RR%Okn-Y?h9t`d)*EA~e
zFlTWRbiK%cH#jQ3iyymV!pq@88pniw>IhhHNAy*2jJ%Gbj=L-3M!%^RfYF8=Thl0|
z(Aacs%JM1}MnT=)Q;jQI1Fi_-nMQ{LSC<6^zeED`(QX~xk_zVE!iiW`mm&`2lnp}P
zWDOsP#ZQZ%3sVzBSZDQRKYU)QD%)3NmedkF0G`+e^&RkJX+rv@n~EYd#ISRkf{NG{
z$Jme*)c&gor5J*~x6p}_l`9xD@`(`i>IUqZ2B>hH+`QS$Ag<%vvoYcVR@5PXDx@6p
z@C^!TmP(3%06}M*FbbS{m)`+lUb7}ccr8sw1>_dCFxe$*Qd3ajw!#5jjom|{i?L|}
zP|zW#DO3_+@k92ZswwDTTiu70dm>Z;91$xogz5$uBR|(-7-mJs*$VBvZ?7=j#iKS^
z5&@>Qaa5D_9z||VL|t)Bhd#S1I!M-_Jj6^GY+FbKKUa;+s94FBMC2BfDern7u$uTz
z7*fQGf*yA{0umDH)>L3@rLQraP!zZtS46vJ_8vLBcwo%nWEB&p*G}MgA|FPkFjlk0
zEZW6mHhR1|1H=Uqe#@D<w#ao+#ETAz3VTd-sb;G=h>RrbZQKnbVjF$X5v0|`y!RJ2
zF#;AL$WX@H*F_nJu9=X}nMqzXuVzj}lR%4w7!PTnHtjwX<%DbK3~5cXl0uV%asZgc
zGRGwK<$y6}L%?;cjRO?hbrHX<X_v2xU563l%#>;>a@*|^na&*C9y0?3Z5i>v>pY{?
zyl$<Oh!Y%g9~cyhSH<qIFy=zfupf|&lCNTxg>D4}HB@qidKU+ECkk-Ti{+e9PZa=#
zv^S;(2fR3_Pwfzb)0#ABi0Uh@(@{ar@=lNjTW8_2<Q@RXvjX?cP#q7=p7%R#Q~5;&
zcjl5@zws%lDd_t(DyG~;Q$7@%$y-@@9O`#;JZ3H_G(s`w84<byWlqHKAjC-60~v84
zBAXVa&MF|YR>zGM;@LH^GiAJuO0On%9EcVVjOjjRQ~Ef>%qSJ4r1?*?-;265(x9FS
zACmiF&2jAp4s5d|N=26KW0Z=qDK;X3brxvSVO}yKZewrP+OirbMBqR{I+Q5)q;Fx5
zXslFdMV8i!(@hpeg-I!Db}1QE<tv-LrKYl|Ls13TF2~StCL$6>nUpY(qOS7aFRlhI
zU;!$r$~!HEFL~k8X-zeo2x;xtGepHS93qc;aJj}XEgP|;h15o71rIOootl=rB~`~+
zNaReTUCUHolq+L~(Zw@+r)8~L8jQt?e;6lT2d^J7D%z%-u{?~Bdwi#*iZxWYfR!CN
zY5TL4k9j5O)r~*~`5RwP9GIJ)onM+g_BOKFY_?o1!hf^bY~sK9a;{K1DOaqND#cQ<
zQpui_%~kUG{7EQ#JO?`H(`72?N!cgdR&sDplMmYLBTn7};?&*X$xFpn%v;%UbTRh2
zOn=E|v&DfgvGYMxFvZY}MT6FaIN-yH5%%Kp?Bc;CG&MhirVq`}%q`CynqPuks>4gO
z<7jbqVe!z+;c52uI6O5ox3s)CxA!pn1_<OVG(*5tg6m^PL~lmLh(=M^W(s}>>OMj2
zcF^J4fvN|o+}h*pgi}Qq#sw)TTx{CNP*|wxcsxyZNtW-<G4p|TTWvJS6VaSd8UM+C
z(V(wm4eIv-r`3)SUGqqQIP~sBJ*e411LqoOPtZwwgV&!3Q7gb+Bx5(kJQy7yE$pIM
zAl=uAt|#nKaVG+3hoTp}c#R-Kqc#y8beJO178S?>>W=fYK~WC}Iz7%t18HVZ?T}xK
zD=3KvWo#6VM1vOECqhd7Zs609gnCxhg3C1;6;wuHC?VSAjPY0L8VSY)?8rLdc>Mpz
z!MwpDZ%t4UG1zPd0@T4CZV{fV*F<5r(H0#WXR0_1zs~bT0t~dxnOSofH_-s?a-1=~
zJYn1MdFVhh>LH&55SPBIlzsjfG{;P5KJk)JHwq){fd(J8aX>;z(HTQ^;*qA)aIhPv
zZuC<x`HN|H6z!q`{9iCSX0AFUIoQssV|N*?0Ga$D2#|FWG#oHJbUc^fGrkF6S^8Lw
zCkT&1;&GDGe7JWz;12ta$cly{d^|{-LnEPFV8?5?U6=}4y9>-B9u^<cX0*oGi|e(h
zL2WXg2(;#8_ygl||0i6*hWI!H_3Hb(j=diLE+C;OqzGOZQBARd<pzlY?1kEU%~+Xz
z<0`}lBR)MqZah9fK_fBD2JQF`SSGxfJ|CtI3W^QblwJ+UDhXw|MZR}C#C9;`PaDI&
zj0P)xLIGl<SdT#tF;3H4!13fT)CM@DO8s}nQ3n!DRpKDu|At%|XVR20U_+K2z)CJi
z>E_YMX%Hpe_)PJ_ZA`305r%>%BJz#(R*=}G^P6IMK*Cg<@_pjj&N`|Sm#&TJS(qV#
zvx*@ZgH1>{n&bf1M*19x(F;m^4rIscpe|DnwxZ425SQz7S;d+{5?kYG;93|E8zMZh
zivqIhz*3Hzpu#vJF0Ru+{zU`1%;s(q#MmiELgGc^JdAIxO<mX&hz3r}@vxh+=Kb<m
z%Bf~-`;VjK^oiMH+$`1($cs}WARX+e{YiYxZ);=o0>kK#fVe&6I^GIQT;1`2Png*|
zCKny5(ll`c4vBH&j8v1_*C{qTgf{i6Pcu<2&iK?7PwoM=WsUaK1WL<AoTaKCj96?<
zfQLmSzMN7R6^{5@G#J?Vabr_NOzKk)yRH=5VYl9KA|X7a-oY>MW<BTG(w^>Ky_cp|
z$W?~pZo|{UR8#<{V9hgruah=*n}{|CD=)*H_Gna%X;jeS=e-ikw21&j52)uf#@Q;=
zu?u{(7O?j`P(HezEP%##fjQ|!PZXP{DAbz;=06<Y@F-HU%WQ*sMxRheMDe&z7=`2J
zk)>229ugj!BAh#Vn5qG1q<DfaKRfxjwxV<`bJE8RF%shfW4574ixW1wJkB3lgp>}c
zMqUOIPajQWT~0!Ltdbua)C+y5(WTwc?V%11Ryd-jv?Hl<k<e**0v3iff{9J#L?*08
z=V^p6GWV)A+P{Sp`n4Li+<}{_Jmv&4`PfM`s&mQ$(jXwo>%CYzdJ~4^WnJP$ZjTqE
z_bETFnZj#qKQ4&!7TV9$D%R|@8ot!5&{CHlt`Qw<%oy9ul*$A*+Q^t7#6(EF$F(@n
z3tmjS2r~`OCs7x>lKs|b;M!{r(=|NmWnkq)XBGa;G}<_5F~f=Wup9L<&47?`<OBg(
zr45KZOrGY_-w7A6achg{+}l1$r^PvUt-C!WZoU}T-}ofpM{Nk-2*tv*+e|fI$zo8J
z`&vvn&Ox^D1u7T|w1D9@wWt5;>>}$8;zONSz|4h;1l7&KAR0qHAFHu?9lS!uQ5&xk
z(DG!5z>cQPrYNaJTz6dj>vVh?M0{bC91x1K&<a7!$dN&@aabdjbm03gGdH2OJj^na
zU7~B?@eaka#^CBbPQ;vDB{x0NAYq6D2X<#OaJ-hZXow@vK6B&m3daz3q1cQt06TSg
zryxJ;ogn#w9FWZZ0S1I?#+Z^9@0@62jV*;d>nt?aWb3bNp)hhH#?xw1)J?p&h1t&_
z<b>hAOCMNDw+?6+W_YQ7aCCQ>{v=BGdk7;JuZ3MFVncOFOBJ`2o!2@+LMm<~;NVQ)
z9S?=6t?4xM;`HRO<a%^KQ;on^>-7?xC{-qDjEbEi4Gq1=#E~bpDt<c1ATh}+IFt$-
zICBN_so8aSKA+7+LD52s#6*THXu5-YTCydj5JbR)aYKJIEf1E2sf~~cJ1*}Ug8x!=
zBFD{UByNgGm1N`E6oLuStkoeTO4Pp5vTM(Xva81UNV{Q#TCBgUd)(d#NW<|R!i1Ko
z`YP*?efkE9Rphz3VlRMWRJK_++T_5ER;8I8B{MP_IAAOk(2nCVKH=75Xfz+I*UD(h
z+k#b1t9Z)|qve1^*zv}t-fWogU>$h9zQGv{s|Gbgj6?W=IvvLacaJl%XcMM4jT_1Y
zuxO;Wn;091AX5616sd8|jZ05S13D+_NBJb+DLqu|IEV*~jimpmj!&9B#;Z<=^%sU8
zTk6sI0Bt~$zeCG&)3c-ezHEM-MJU@~D!0*&xw{Mzkg`+yW){}VASF#t42jF4jFDtI
zk~*z2aMGN9A=E%J@PWV(#)p|#gG~Air_L)d8;+1maLCLl6Qvig=-moQg5e(7O)UGU
z=UUHDjH|*8`|tu&n8%pR+}Cjc3OP+JXV{V1(kEa)eHx7S&oY*}Uc55pfLUrLb_ysE
zt5DMxuoNe-Gi;DOwKg79Omurpu^>3GcnL4K4?f0*Vpfdx2IYa9(hB6mu3@|~4JF<k
zTNcr=on|kF&8uSr+cx|EfZ01HM;cUQ*ToDCvlGVo?1zpWV;!)kum|PJJ-gdcwMk5l
zk%EQWe{wmKG7To!C?}A*nE<WgC0Za%Jjs82Vg~swQm05;6`-~PSkD!J1n^}n1tXGD
z0Rf^tnARH8a#J*T4eh14j6~3g9zAWQ^k!Ud8(GIP-4rp=IklC59&6e_^K=LLyj8JN
zSZUo2+Tp4+<D(cXqb!w#B@kPX5*Rx&vm0zxtp$b_I?T&Ju|<=mTHPL}XgEj|zR^o+
zkp`G$z*qyJE3N6X7Lz~@SM};9`n(m>OsHAVO@m=L39h=@()-BYpQjOfNqKMJe5q4z
zl(B8w0`ra?Bha<5>yscPHsOvSwhfFW5e;$ef&-)x(I!zVAe`}gVuyf5M%GEg5b+>*
z)r9Da4Et;k;R`5RXjv*Cp(wB@^=MV|3RG@0!(W8SLZ{(^10k|-hlGYk6OOBr%;Ha7
z>|W#<3#OGl9@nUoFjG}@Jp`f>98yn3RPr!g9Pp}|j)!a#HUg(EmO>dFPRr@XXXS2^
z>n2Wvlp}!8RK-FwP6(#c|Ht0Dx3_I0i^KoxQ=qg`+u2YTJC|08vae#xiCWw8N^-mT
zC0UgsA&F~>PzlPm>gs&<_rc&ofTU!}Nu2f^tIyMzBrq5Z27|$1FvF80{^~@GE^{>r
z6sm(c-@wAon{BZYF#w|oo0r52_9PiFG52YL>JGydJMK8WMb%6DF*OHw7ePcBWHq{|
z)wR%@Mz__K#Qn9^d)Geip<f%FPUE!KYIae(qaVw+k5J?EJ^HzIdiVrkpPv9<PkDZ4
z*%Ju&g+0won#>@ulR8pP&CwMn6>Ny2tcWE;)NA#Qn@`Yb`_yio9(7u$Z<{C0)7}$w
z((D|(Yn=8PZ(7H#-g{u7qgL;<+2!s74FTh<(do4g&W{@%bavi3Yj>M`wdJRU0S?$+
zjZR5OA!Hah&0@YQG}*<OP9rjne5Rg5hh-KE;J-xTYW7lYZKQNIfxU_p*FFWwPKoQQ
zZ88_?;+z$%vHC%4b~DR)?}rjPRwQMWj(um~2XJ`aVk<AgmpJ4Xzd4MMpa6`W@fee6
zu9;foNmdMQxQWRi#G}9;;n2mqPt<Am6T_6NEI+sM`wmwWDDrUN4?v*<<VF#pRGnMM
zCS&BdF@@9d{Q1G9r?GsH2o2<r1w0D0un2H}=!r8jZTPIVbO}hD10Zx^Vr26}*N0dx
z{3wAbFx;l=gVQVkl@eOz&q7Yb&&=5>uGVTg3*z)f7pOT?GG@l#_@Nj~O|I$|gPoOU
z;u0&??SOEG9TDPP`GIabyg)Q2)2TDUPe3P_#p0szEaIz?6AWizqTIkDnBxfo=}sco
zpa*Xl)7>Y)hfG0F8{z~EWlVRxOCJtNMIdKFsV|5iof`yrJ_CL%p$6mzW>k=pm$j^g
zU)LtZuVbdVo6|LYSh(`IO=_X;m=JCS1xu%K*bX*V<e(u2dGbVLFLpu~^G-~;8B|EW
zIq)5xgnq2%qdL6}B<_d|0%3&$y`{{=4%2-3Q43s#kLCW#r^ay)E}?hiitU8>R#FiR
z=&1ot`Uf5@VW6FcD4kmzi+~YVyk>$l5u<=FXgbL$N+Qt{OOeI~!Y0i2O#YC|XEx#a
zd<WVL6>U5`#G%J)j7i|-n9iMO0+L87*NTeCbe=^~a#|)V#}1_!5}pYo>XWS9crX{r
zM$(}<qd-DarOaPx+^DII3K!16&C^4+uI9PH!S}}5S@ZO;_3s)RLa-K0r@>sfFX*m&
z>>HqRrOuKNLcKLBJP~dbrZqvT)x-~Q#ACbg-P{vBKL`#yig4%#M5Lq~M2>rbV~VVs
zg_Uel0>_oB-CQygNL8`x({|D&w8LYP3ZsoSM<wv@b`k8>VVj!dr&V}}-GR1jYiF~N
zwP_y4&b2xSg-tz2poD(K$O$M((m06&1G#B~m~Ox~l=8e+u<gP;sjpa!<<aT@CoU^+
zLMkzVjI7o)^1*P;WU$573iISsIKRM6e24n#JYG;vp1UgZOk(74B6sXxN=ca<Cf>~F
z^Z5eZ$P9I<Q`Q9(7fj-5dnS{8p6CvtXa{nAOP|Z#mkfm5kBCHze8mIO2{j%fl`?e^
zM5E#;rQ&G2elh@SnPZsjBqKYqWcS-#PKB?t4gT{8t)-za(>;XGSwXi_8uXIr`P3+|
zOauQ+^;;_5K(;Q%1`3kNMMP#-g=j(}a*3lb?b#=+C5gUHv;8VP_~QTde{1;vtE8NF
zZDY0nf92`(r_a;=|4(1Mc<}$fkKY#h=_n#*JUPf-aln&zYl%<3d;A!+XOZ?9dBmmS
zfFG_nF?DwqK_KGPwRY;qxP;!|fLwvxhs(A@Kjdd>1BXHuKrJ{3H|0SzIuNI`P=Dg9
zX@KKYEIjTd#x{LK>{pe_@C1QFF~jjgOM%iWCuuL(^1yGaxnxpyNjMB<Y=>JGrw!$w
zjymnP<pj(>G%#DqYduyHBU?+0Of0hApG6o}7e*jjc#M8d;*eKM)gS*+cx;T#Swv6_
zZl2P<_hE$L(1)Ai**;`hKlDjGj4-wVP?=v-<O6z$W5*9@0ql7qxe6O8kC=*ItpFiy
z(@|UOvxt=S=cYHp;FQ_!cFPA%ro79*BM>5%r^nw-fI0d-M0MLVNj{UwJ|eK(ah(v3
z4){s!E_(d<wB2jg9zO<-&@yEv`Dav&=uLBSmNa~2x;!T^Vz#Sf9AKfw*P!TS;@imR
z^dICO#-vHcF$qpz@(HAxV@%0(Bw7}hQfiAJm3}xXi#wrWXf<wUBs`F5`M2QKBcK28
z<n>J+EWS{9!|&=RlTH*&vc%9QFq1=}`#2&d;0LW-0x;=I>N4oA+GcRbfsezuQ26b)
z-v$mH7dE(7s+AQfpnv=AH{MS{0nzmyk=^2|v|w`;c^9Jka;;qtl=556#7d?zvTX@X
zkDLxz=~E8bHkhubj%&tPw{0GhC;6Np-hjPXmq#y3#l94$7`#s+Cy^5)3WY`7S2KUK
zh`1uvS>Wy@cvqn5g6|rrggPKEKbRsV5hr6DOv@2}Ve9kBhDas0!OP{bKN{P@&mXq8
zy9HzKsf~g@4{2`KYlR~j|2_NZ^9E@sn$+Lg&=QYSwD~Bab8YD|gXO3%AP7}Hb+B`g
zkWb3XePR13>E(4%l1NA0DF<%rmQpiGt)d3*-+zy2fbkUlSYdxNY2(HLUtlqsUb@H*
z*ihBAN~(8<Im@u2H!vBTSBS4Hu#FZiff!&yUq-c58OWe0+qd(zeV7z2C9XFE$Gt$a
zDUa6y+03-)kRtX7R~n=zmN;>jB5amRUZW;NfGial?+T>Nkw_;7TQUx!?i%6&==}Bc
zzcuuK*Ds4uu5m#1%kk^Baf|+6dGWkr>i>KDmA&T=`u~0W@>12;P#n#0VGH#LPt+Qt
zm=GrVB0Qs5umG~rS)<$iwcR=FqGqSl?$o$NhfPK4KLOJeY^h<aVgSofB|<c7i*6y&
z>uLprviVwTNg!dQ2YIc5eMiLIsENEo8WY#nD2|f27yLV0CNYi06G9U_VW5!p^sO(=
zmhN;`L)IRD<bhZ+#h<5(KV^^qbuOLuR2ILUQ1)SDiKlDv#AhBW!~f#(5O^IKPgOP;
z2UH9lbOpyean?cOXFQi*(&NA0{1?GZ?lSprpa0cLwVIm$d;1Uj|NHrEp=0b^8n#!+
z#|}|!k{qxHEfmc{iUu=3@ThVk*Ta3Aw`KiM&z4gvtdKJgg66LvXudTgKK#DPZ(aEx
z4d!+_IMTXp+@}9Meeo=#|2=z%|8g(CRdU&sk+;Y^h@7m4cjw|}NZ&?eHs$dbc~HO_
zvf5#Xkod%>6DM}Z)`QIaX2133|0o~>C%B{fcU%0Y>V74?|J&QEKJ5SQ<@d1v`)i9B
zgz^HpzriCvtf4<yVH+&fHDvLEwjcVjJzxcF2m>mbhVzyhy17yJoGd+j?+C{&R-zRS
z$(#8vY=kYe1KEs9$nuTWtzEQOXi(2)K_Er@%?&F3!o`GHsRTt!Q&m>M5GFE7He{o1
zI^NcvY*%~2?wBA;Mi%x%q<8XCOT?zZgS6CVPCTw5OGD5IUz{*UNfk#6<(?$G)N8tF
z&gRW68KYIh^Dr>?G%);#E0roqj+aQPlo}{8PTW(Aj}&i82GCXbQ~wVP?$tF^tyE6@
zCGGKEr&<-HShH!JPG$a?D)Jg_=A@XC4QDb`r8!j8wHb5$O<0uX>6{4hRB&gJf9VH!
zgqzfL_|a4%>p6!zQ+^ud<Af~{@**<T9vO*Fo4tOg@vAv8&<Bf-ttXc4T2CzC|7}5J
zI8IJYg>CfuH8Mu8EGP~SrT992iCibXwagVbDYG^DCGv<ky4kO=hY(wz)}C=0PBP}x
zQf5r8k~s^dzWD9$o%kATz5qU}Ow>Db(bTI}_kPH!TdlCl1+J2^YCOdA&v;%#N1yp)
z%QEppfYrR^_jyY*NB=KBzdmybFnalSS)3n+=H7<pvzKSyi*K_&>uu+W)vvcU|4lgb
zZ?ZUZY8tDvTy*)T?8=<?{Y$UPw=Bpy_x&|iWC+_{yMw^xD<V|?%k%VSN?pB^_aJoh
zb-25ToWIBD{7odz!*<|H3!nSm=@*c$&>WC(C}5+T8yopU#ko9}1vpQZWZoFTt&|4+
zX+&b;l7OP#ard&y|6h{-?umc*U#bdP`Zc7_5Z=x*!BD0&D8~UUxlx=8tABy#cY$|-
z=LtND;dW5pg==6Ck=(0wyT`Ta<fYbQJj79-dr9|Qe>%nyg&U+V75#9ih_tmO9I8$K
z0uGLUxG6}^VVI&HDnI=2a`{j|AmGpm&PWu$W5c3^hXjzJLS7Zt7Y*TnVq_~o>+`_!
zMtO0)X`|H)p>iH??fd3kM~lVgz22<T={~R5U&#%9aNGW$oqxWH@RYnR{bToIY1u+G
zoCN_ZZlMyR?Rv#DY$C`hm#k4d2`bOSl#oRcMyUN1StSNaF9B1}ve2J!n>mb8g&~yb
zh1PyT0CNDuo0sy!qd!DDMMl>Cb$>{rD<|@>$Hfk+qwVcoHGLQbW3;R+DpGfhCs>Y#
zY*YBCt7ysU{va9AqzLz2>jz|n%9l=54#=nsBW`$E^HL>ND)uLSIC_~tz)?h^+W<fz
zR$o?(@Kxl;82!gM(EMi+mEn$mgx&b1MkrK-+XLU#*;we5N#N{UR{y-*+b!>u9`7Op
zsx$S=JOy1Dz?6&Ca&Zq0BJ5nGspgJn;RW{kGPG$Qhc1CY4N?puaTB6HajyFV;?4Vz
z>aC&%R^^5)Yj{p0ay{=y*zx+YKfz=cBlKgX@-kIm>QLGrW5>f0+y!M5Ctb!R<if}O
zDHHez{m<k7luM6MIS-P-#JMwwvksp>wQ_mAiB?;p{L1?{LOf_F<q9BiJ*GryK!(GB
zIG#3#cqb^16KbG;+i-!!ZeQXk@;z+7aVWOWqhQ(GsFlk_Ht9`7KsbJ_rfNkY?WQD(
z(_@lu<4D4=fn+GZZbqK20S+X?5>!`X^^VXO89xrjq~mP}91-@a$cs6iXJ9cT8c(y2
z0!BBEd^fgxZ0a!**wSwWSrg~lc1F0qUwyX!yi%#WlziHq4GzhK32zHI!Id+oY98t{
zQ5Of=tW1Op=*9h6<fH#d$s{IEiiXU|on-eq!?c?Xa<b_t7ppHdWc9@?M>hPG5Kquv
z7;+f`8?Xfp^b?4Dz_$}Tm1IohJw6_!0iC{Wo&Fn5iC02Lgr|-a0l_Y1bUOVyCtM%W
zf=VbeActR4yA_5r?11c~40~4t-4;;g8yGfa_6kS_ORGtZ`PL4|JX8!_dG%1`V~Qla
zyLC%OZd0Agbc=OtYW4@A*oj6sK1;ur8>AZQ9h`}Gdgs5j|IFY0x1Rr3zy{~8?q9e0
zf9}25+e`a@Rh~Wg|KH2+!T<kTIGRan@Xr(Hx;@3=L6R4>hN{mh1thYL^HM6gs`4*$
zu6sNkc@6DXDjWE(WgOC0`>$0i>GD4;b71?yaA2!ej2lc}yw}xAr4W%>jN$9Lz2B=;
zPSX9aNDJgL5~L|mwF<)sB7b_{qU{Ne9Y)Sg$a>#6LTJfvL7e{%1=oCw#>s#wK;n-3
zw?JSs`M>7+Pevmg-Rbi08u$NRJl{{R|4;Y#AJ+f-_&u!u502*WR6t0~a=!BvSN@%u
z=f|ahjP#cR-}GyF`kG%!ZYtI5T+46f6RaY+UwF1Cn{8>M{1O>F^^hJZbmVHDsiZ!n
zYsfV?Q$u}7*WkKJro4E)q;woPc<5ii>jFZq6FY$)I>-88agE8A-xLV(9*#E0L^Ns4
z|MlcQPb~Cx?*CNwUQ}OX?*BZiKFI(3_&vz~zv%w2ve8axZ=?O+hRezi>Eh3qEi2EB
zW#xxWcYmAp`PswfZ+)shZ2lfLe|f((*MEP+<+|<pkU7)aL>IX2{{M^2{okk0s?Q$Q
z|NHp;AG-gmn0U#e{I}e;eeU?LH~+zv!ggjciEu!ijb{Jt`u~3Ad3yfuJ$<nM+{^Dl
z|9`OmaQjc{`iAK;t$e11kGO0F#{9(5+~aw%n;R743C{?!!jXetE3i$VNV3!k@o)`Q
zp26wG(#u&(P}4ly!DEn2V;-tj_zlXNJPP!IezU_y<$)iT=~z73uK43m0e%ZzIk7vI
zjvPaOG;yXP`m{u$Oc@M6B(Xo7d#lmlFt~KZQHhS%b;h<A3#eT3Y9abww0v`OoBwg*
zHLCX{4j`d>gyV136-ooMAEt{dR7ds*ZF>%$KpK_d%k2j*kURg@TmPe&P6J;C|FSm>
z2Ybu<zhBu;>;KOy)ra-}UVbaq<<zRS$;J3DdnNzxxt@OM$gLZyEb4RfI)+f{a7js8
ziBcA#y)~#@hz5=e`T@i_7g&iyi-zkmF`oI15Zg3>i0>LDd*lL#vS;GzL`{z}C#pjR
zty6v>F~&58XGUwdW+4}AkF5pds&qa7Bhh10_#1|ybTjKRP&I3(sou$i=Vq}05i6)f
zdqlsO$;q_2wew4%dlzfx7bBHs?Y!@{H@0GasfO=tNc>U=eCu`T;dej3yXb#k*#GDG
zi{}~t-={Ag;y>QYZ+-nwB#$|Obskk8G{QT0*zim0fj`9V+zl`q6LKN4&}x}L)TNIC
zO3HHBOs(t2PNYH`;A`wA#uqITfv{g#PY}c-Ks+G9I~)XrX9|Plr&_BDG#Wdh7vKou
z6U38gd4ef*MlzJZG{W6D35amN2z*T?xbmO`->;6bYCZs>*p2UTGAP=7o2jr_^M$|L
z7Gl+4bFA)hs6~U{WSlo>`<w2&Rt=cM>mG+pHTg{jZKKw|>6Z0tkAv*nw;6|xTK{(2
z_pdz&(6Mhb0_!*Z?Tr{;dl-xkew*Rg90ha#x8D9A@?U<v`@c^!_kXID%ESKuK7J4W
zAK$|N<94szAO1S--*>fnJm1j$d$TUz$@}|%+j+>EMEyT=Y;q^(@BcMtHial2=Gc!`
z%K!D&|GQ>><G<VdKdR5t{-4zsPao|6_wu`|{eS<P+W%*vKlHKJ1y{9}mU=!}VkbC`
ze3zycU}5R}Tb>^vL}Mq$!&yMFSRtJ-Bs{;qYDyn9#OCdT&HOWM=1Yv`;v++ox=!GS
zqnytOP5iLKXAb43W)tT+dBLU;k9>7-c77iFf&T{#=NXP%9L5l5`$Yxv>@($jfSp*T
z5h%zPdA*n4-cJJQCL55^$PY)Q0AJ#u2D$P1cGQW-B~U2PhT+B`3a4xdU}aN17@vQi
z;TbN`DItMmSN1*G{Z4T-@gayXt)a?`=aqsi!(f#Ba5_uIE}l<u4e_had6OI_SwJZ6
zV=}Cv;?2QvyW6b6z({{m)_Iz=kL)|q;BhIzV(8<*(?H7DY{>fWFp4epJ|Lq$?}6?g
z&A*dbJe|cQoi<YuqnqvJB|R*ShMe*mwV9gihnUi{hz#V!)JzTOK=#N+!rK|?9?!_|
zdS<_^@5(b8fpG$dmuTS7F|x5%z@0^G3paH909E&1lq#i4sakthdH(#ttK={DTSNb2
zOhwsvJJFoRB*LZZFM0p}S#|$eHvUWHA^-2a{6x%L{QIp^j|nSeg+pqAKmIFj??IQW
z2np-fp7k1pfPjd0ZWW`>^?~D#ao7I?t27X=+_B?_uhFaTY+K$SsauQ%Z91nho>;d1
zS_zw1!u%5<->X{?civ_QGF-Li*P3)nSJFX?ditxf)>v6q<nLaUIj*YLddT0;>Bo8~
zWt->Gd-XxsWC#@Io6_`^4(0Va>!;r8pU4m6=TFgM@v3Y9O5j7AX9BB3KU$}abRB@7
z0i@bkpI%3P0Qf;V2t8WztMtd$H#Zx@6VwpIFu@tfrb0EZi9fyYr-!r14@c+IfH($-
zSLu&y;GeF-@Xml)hIe{CrFnRxNujX|d);O0)S9dk4k_rroJ;s}$Ev?78;~+MzY;f{
zUKcdXH<hPGw?M9bXWNJkJmPPW!Ur*lkrBI>Rnhm&B+i-)0~CPTd`4wcIov^D<nZt3
z$mK8Dl@v?na;*@%o5<PQ+J2C^4>I>#%iJ#_&fH)|V;tG}V(ox`-9)_Yt(0zg&3$40
zkdB?m^TUxX+LDzs?@b^8i0#4O;IVV*ljyY@5lT;Sd_|&*ZX7u=9?f5sjUrhHkapx2
z5N4S?EWBChIiWjWXA&o+Vft#7vycNE`Z$c`%)1q~ULK$u0J88We%PHl5#~&dqvkbs
zXEBLh@4YH7{gwqoX9L?D)7Xiz?OZt#R>P^iD(ArP=Akq3T@y}(CnQ!N#8Y1FX+)+t
zisxV;t6P7N5L1gEkk>7U&i5q0cHV-tbRY7tlsqgY-)1S{FPMn$GO<XJ<9R&GA<{%M
zQmkqEib#q5YLiL2OyLK)Y!9hj&C}nZJez*60lQaa`1|($i0O~`EZwXlxl%%(A7kuZ
zoZ-kP-s}Aeo6X6yHoV-9-11(>nDQv13{dq|Ir);57TKR(S1XlD<yBcerf9%H=tRhq
zRy=P`i5D&n0^(jM*%e1KoERk5+Z&Mx?X0a(j0hPq28v1KjIgzP=c@MQ-bS^hYVmnc
zGPP}<b<EmDNNPoIp$rmbR;xjO0TQk>aAhleVRZ~#OJ+_WE2-!FRac*daWqdRA$!PH
z$yUpDNPx(G$XobxmhWZn*E28PMH$cO!^%NiUhhG-&S3GNTidx4G(D!7_v_5QwI^-1
z>gP>dv|{q|Z+gf7ruzkSSHZG$RZGj2+g1lz?+eS7yN&(rbkdE}pd8{DO`K~ak%BzY
zOSHg;o!G-p?7ntlceUEBP!v8_#;?8U`U+d8yKaUyJD}P?=xjV)IEXHXP?}K;K98Y`
z4<hX0F!r5*8Z4M!<Tcx_y(%yHXtGx-eeE)c;7zqANOPvW;%6XTe-vWxJPJA@A@e#y
z$)v{;Kp?4>HIiL!THb3hQf@$Io*b`)35*Rk4!tSy!#iQiYYOxPm;^G!X>5nVS{kJZ
zT2%$u37`b{VCG)n_|%!KwZ53plez$21EmquiN~8mo^oHhS7oT4#<qFw)0o~BUtU|o
zSb+PyDM%$lHLs_BH1A@Ugq}GC^NVcWjU`R#%l(q3)>$vUn4!kGqBh;PFZVYxFwp%(
zF779`k<HCC2B6PC!HL|le~ESbOyk!s>h7ao_SZ7a+<{=LcjIQy{^sTsvomtLZ@m1=
znNf0ibb~SbN}HU`Ncr`wODR0ovMha7o=#hjY^9dc{Y@-Px0*IIcz3sMXh1eIaNKPw
zt(s2gGYuO?SH7KfB43~@#$+PhD3aV@W(}i(L$QZQDCNEz_&AJ3kS>6Qrn6{DD5h$s
zFU=h*#el?QIlC{xJZEUt$NQ8JS^v_%vxcDa!(Y*m^I*sMzih`@G3mb43jHM)&AT7R
ze9ke<mp^{_TE{M%TlCkmjAd8c&8%8$*!I>_a@H{KE#v4bKOWyoX6K4__kY=6!n?Px
zbGkJU(>S@s3S(@(f?-UR%E%QTY+Ui&5E$|$0M$yoDyuK+$ShY`&<yCwYk+T*dR5lG
zuC%&EcqF^c{}gj!WOOraDB8&Ov&@`h*vxJ*gC(3XC6T$TuonP=x51unqbi3qqxfAM
zPt#^i_AY@ZU#thxyb+yV{j^U>1F84xwd1N9J#M`=IV1fwX)XI{y#^^^Bb?Wm@g-@<
ze7#;H7ZcjW(It+$zK5Hk8_lN-)1UFYWisumf(Z&MORbI3&v@RE6T`qjeK1-~-mcxk
z0Yi+O5D%xDNWK_tXs_3iAOB0v2WAwXMVR`d&<{sI595uTty&q=`0B*72xpD2`Ja>>
zHK*2EHr=Hb;q}b3VwwkJ<{d>Oj1S4g@k1eSwV9q%K%4A&U)K~cs_M^pe&+a5Y6j+f
z&ucgNxM{Ozk$>sL_-8y{(r!{9uVL-$dMz(MG}0HW<tJ3@oi43`!kH6~yYW20Jm*Ue
z0;v+|=F^|oT)AdJ?4LPNoU?B;KJn%Z?*jAt2JKCqC~gLLg2Pz9a+<W7DzK#Obg4UR
zsB+Ie?so9;$1KA3ARvQ{%o0g8rKf&|aU%<jTR8Xu2K$KK1Z04^U(3nVpu$QUa1N?}
zsY8uCT5f#Ku^dLum%rSJ$8z4>bZEcQ*~eYU`}Iyi@-SNKDCFx;htKh{y$AQsJI=Q+
zKj&7>JM@`HBVXfO<iQ*9!HWGCw_<;m*?N^oW&AG6At`$D^c)d8E_KAW<igqJa`M6K
z{WZ<r*&({kA9PJe&in9Y%@xykU$3;b9UcgAT_-*O#wJBcs|aJJ1ImDx`|M4j^9{TL
zZfwXm@|sK_-{vu?l8|gp5~Hd#m}<aQZi?4#CAHUHXD_{cJG@z|=^gj_d+EG`lC|4j
z^F-x~httW~foQi=a^sfm8xbbZ%H2!?tDKf3DLu;6vL3Xm2d(PM`Uc##lxX)4@;^Q-
zC~GVzUu-dXjUHB#`&vm5Lb;2{w+^-Wm;9|A|JCPF)^TL};gFR6OG&tH8@I&&ufEuO
zk&6GiUw!(J|L0zQH!ypwX+*r48@D{GhOBounDliHU=#L$F-GYZt~H^>!g|7M4l$gV
zQmckOh#7yQX1@H&;hqIfJS5SC!J9^Y7!Q&4h}w^+g{+I&07oH?+4it>;7oZM4Ik6e
z&$9s*&FamIHWp8AY4lJeI4EmUM<zYsO5+B=&UkSA?!S)vO&-Bd2b+Y>*W&xF4f}ND
zhu3*vAuj!0AU2XAJWFJ2zc-&6)L5xeZ_r$KS@O}mPA$z;x=D-Y%hEvPwWxP<Y5s^!
zT0auO*7F)uA?xojY#lAp#<C9R$vAY_@b9O>`fJ_V@_*uwA}7WrI^I~utd##xpI2Y(
zSJL@k_A4(Q<o|vAw!VW%{sV`O3xzFo6gVSVI67{;?Z2;EbBq6ZTDL;}XSe^JJr#Kg
z#Q!~&#oE1o<LvCXb<lWo+^k#u(?;Ja6b{Zio#tt;|4XyeZM9G9#cHAOYo~E`*6j4V
z2c6bguitxr*6erAP7a%I>K6ak$}Mx)KKQxW=^wOD&f48(-Qv&U(JB<W&C_nH*ZQT|
z|GD|T|4ZZeoZ-=@IHZ2;U*i4+p7+PT=i#v5XUJ_qgfHyLaFiE#P7B@lU8vuE*XT44
z`#&9Z+HcQ0$J`W*z0!Y&5gDCFft4=VZ62I=TD|xEpW3a{pPTPh4T{}a<j3=p$eFXe
z=1HU5Yj$$$svJ73qh|Hf_F=Q%I#hK+;^C6-Wt#b^@k`@f`=pt4#kq9ekqOR%JZ$tD
zZyMbu5MGrxmd*@#qYfv3|E%5Zz3nu+bt_pPmsdROw0>!Jvdwvse~F{z_4MIUm1a3Z
zl+@@pJEx74oUY9%jzVX$qI)tQVYaT!q?4s*^SIINwGO(?M(5z2fiDgm8v8EAPUMbr
zkxtc3W1a%A41E(yrVl2Rq$4Y#92}oBe(g4U=VwbG3G;au$Fu2eJv(h3G`hW`*74HL
zg}&?1n614VU?wHO`(_vB{2?Ctp-6h^he&9@h)%KV4}BL=H}a=(33bP07N{)OkU$cg
zn`44zp&v6$AiyD$oPL1OjA9QB=Ex7JKN`o7`~^p>I2`4uBP+*c!U(ZhN+A<Z3H2B*
zSAGzn0fyu)435$F!q&R9lik&ru+w<+rqw(7SHE!p;t>Rf!9<ZW82ItY?<I~L7a=Ae
z<pOD)tp?#wf#gRbNewLkhOFs+_kFk5Jn6r0oUqBj<73aANnmMZm?Z6kIAo%;bit%w
z@|8<V{+)}*bcxn!x7Rp6Zgxa7Y9A|FDr}**0U0;}8)X_hVNCfj`XL(3D5TIq0U7yj
z0lEv4t=nsy9yX5Kr%eb-8G24YLTqUz1or`n>J}q}{#6Q+x+Mh%Akw^!+0+eoe9E-O
zU6tRFqCz5jlsuJxS;<F(CF+*(s1=g~S-0e0R-qul^^Y5Gn#Xl*vtt!ZRucu9I(J$H
z#U0{v2e@JKyHzMOI=$9W<Dl2>yq8}adeWnxj!q8bhZCLv3b8FgL;|aD*y{E=tvBbr
zR{K;II`nBA`GXnL*{#CAI}HW*-;p!dJ9E%J?KN7bY)z5tPr5r=5xk^JT9HU~tJ6Ge
z84X0(^C=t2hUfX=2ssE6CnFJY1`Y6#L>M`Ie)Igg6!|goDVh?dp^y+WaT7(@jRPh}
zK;}?4!Z<9jT73blUMW3eEYqIyn+FjNoEUpd)Iff8eoR54IfP+lWeR7V_Q_cfc&~rh
z>hzD>2MtEkx@GKu4rNWNz~+2T@nj0Iruv>AEm26`HJYbP6-?<RV@K?mEQwR&@UY)&
z%SpqS12Xy|N6;~ZzZiN>08*3n(+Ls2_G!#YNC_?k>_0i~X|M_6W5+7|(l~A%a#7jM
z6fG)k*D4fFn%!>WZ8G(wP^nwJF-8h1a-C2<AqN%B38g0U6GS5D9V;&GXQcb%lF8JG
z{Xu}2g83NkXr+{-s3C~^QY)9QuCBPIT5`z*?4iMoZS2dQPp5%1FN0oN=6MPJ(ZRpZ
z{0OYKbc?^!U)lP@i4#Zu^{yJeEL{!>^zh0Fp=**TslJF|%2rPXO8nK=bw^|1vXzaY
z+d@K&QIuSTK^~4BKcI!q*-8Jf`6dCvbmRVE^Qdut+^bvVOD8ImX<P;}mJ|6Q>q*8)
z)`J8Tn>ckVJ$hp@!F-t?JC}UekP~{ykEt0<IB7%>d3hVX`4l4$Q=jc)avPK~AOQ+f
zbt%Mz{+dl|%(n@$&!*}v4hnfjaKVc?6t{FKBx~>Na#IKo7_Bmrc7o=$Gnods4qsgc
z(JG#G+K1-{Jy_f=<cEeMT`{xJ>}K5ba^PG4^#*QDOOshHziOQ^nb2u=yRU1n&f1;c
z>vASfpZvXiX=0HqXX`b8Ys(@jV&CO!;y)=3Cd9*ak1GnRvB|EVUy>-Ewi0iKSF&nv
zMx`Z)Tu08_8?222rVh_==nv5cWdDJzVzyBWeR|1QI^i<xjtR0ul$qG)ons4ap(6r8
z!G#fZ&M!a69U07YE!QglML3>CyoI4(SlP%d3Q9=eRzn|hF#co}7KKjpZS&uM`6*U<
ztk0;@<F7cUN{`c1=(gs*+@vWzHs;7}4S&Y0C_NUFU_~2>?G=yxCx?qZ78x5gJDql?
zpD*uQ;iVJ!+2w{!1En`6#fvNKHdbNlwB2jgPzw}ce=;ReEEET!s=%@mI0GD%P}dJ#
zzRpZArOpVWi8E)LW^UGF^ZC4U%phHa<SNWAILdmGnO(|oVs;>@aGNdZp1YEmaME2#
ztT#qiv<kPGwyZ*{+fU4?c_6qESW^i!g~Hrnt*0;NY%&vFVl$n26)2^H+>Y)tH8uyl
z&}DCjnbmDmn@&T$y&Yak-8DAlc{;BgEEC*ev)5=HcTGhumy9cvx*QW{E(j$g@+#bB
zHf5Xp+~$&Ln%AZ|xtCU5%ka7k1#NERp<qtRrB&Cm+NP%GQebM1ZmH~B(o_H$?R^p^
zEFq0nx>Zf*2eG@}rXrm`y1?@ilXYxX4lo*$S?EclMam38hVXXiM>OVJ_*v-T2$gZ{
zmgNygS-0T{66Yax!kdSq5JsxJGHE(yPgqhk%mtE>afv;W$+Dk_A2KR184Z>iI8lZ-
zU_^`w!ZdaUfltRMj%GAQ0~}vr9LmJtRMP9Gqlk=<^pPli40qluc{k<D2DJ7wo}*zz
zCaB>}{1ClH=M+ci#0i}d?9S0^)WtEAh&0)uCs<1uoN&qerQ{MvSt(*^6(xzd)|q_x
z&j-i;qhbHQiv8oKo9go?3#L_=Iz>`g>Jtfig)Jm4h>B&U{oD^3jksA$!dhYBmOSi)
z((+!sF|Cyg&XP<(lu&2JM?|DZM<39b&=?eWo1#yMgvbdMN2~QmTJ!lafoYIpj4;A6
zoH(dKS%GmDKkdi>C30*Ph+9qnYttC*gxF;o3Y*7aFo$4x9&s;lWV2P5P`tacQ?0Yx
zy5vt+bO@^7atNVMQE^@?H$7a{#fZ;Xm}X3^a)N+dQB=Iq_d5$VQo4eXnwLn1vB;mG
z3V1R@neNZ2xN54R*XSU#u<kM~T+U#12(20sQ&@dSPht5*O-)tuKVT#LC+rz&H<c%g
z4=_n9PoCyYQdLb&(gXuIK^Kh8=p`HjNQh?BQRH}-iH-BKx1Gizur+rSSODw6k=FnR
zg!SJK5!>RS!7P@-w0(NaAhET_iBX8L2gY(r&;`a*Hs$;njd6s5A476gLI->ynmCN5
zLKwdZj>p7<tv9*EQKVFB#nXy$PR@^et+V51|LkqQd+@FavLnDu{iHaaO*6Y4*xgfi
zj3*9qDDp6MBY(gTk2W;J3LCs1j{YG|K>ndlKnnd4j!&Q;?O8mX#qH=9C-R*^fWbFt
zXID5A%|eP})I2(B^0^^8rfvN%@VrO5pd8kVRqX>F4l&Hf6TTIxYu_SFXF*)IDtueH
zg#t3_`av*976-+~f{g*Ebq#$eYVCaDwT=(^OkX`f{HBIp!a}c6*~6FRa25n;@Adap
z^yi<d)#5)bWvKaptRjDJp?V!z6$^bzn`m_OjzA+3EWj|#!;JkhG^<<19lh+XwaQ>~
z=>$0-J{E6u5R1g#^c}Z2WvXNiPT9uv{vG;WxE-URpY)PM=u$98ZjTo*XFJU!#i0|Q
zx}{-2Mm{CO7}#{+&~Z8Tr+t?MB%*yM^!j``VA87K9t7Bl>efg6p)#=w?i;wz_Yr^C
z|Ka7cm(PD>?>g8!oCN{AuD;x_vUl$>lezNMz9{x4@<-!1sbBr^1pp<1$BRywoaqN-
zG{Vta9G?&mcbqH5^_)ph;H0%!wGvZSk-d`!tk&sKJ29z9|5ILC7)TDAZ_eLl%YcLG
zhvE%`w)ljMD!(>5r`a0C8`=HEBl?IIZ#cmg435P<11JkwDQF;gmx1GC+6*9=dlnh$
zeG$?XZ(!URLiV%ONUcR>`-MU0jmf+b5^GX=BbbudTj;=<`mq!E6jN>26X2LBRzhzS
zCLeud_?y(=kjNkTp%X~CY!!udPv+N*XnZhsqIz)$6dkL0ld4jy)T#>${fV5b3$!hK
zuTe~9(<zR2ij`fo*xoh8J&xPMq`?fps_-}!4JsUpW>t$*gQ;C~ie2OclpyNN;ixNS
z3J~QEHUo?TJdEu)@+TAQffB%-b0`W)oGjIBVI{K&c(jCm#mFN}{zcev$K0~!PyD!~
z5w#mT?nN(h+=Q;lynbZwS16y}Y+S3g;vOH>g+60?;|M!mPIXpq;`m{@g79nZ&8PW|
zK1<r9V;lsk%`HF_wGL&+ohkVFGFcuI;g&>o)L8k};S$_9(146|Y01aTGK$NoFTe3x
zOaL1?bh_3J$mm6}n#_<i7(V)*6Js>+LpFj}B)Xu;^M^wm;V=&7NyP1|F^<P<>j5g@
z+tc&%o9<!3r+rqxPiNC9iDK;4D+K^(+u{;uuKJLzR%N>A+tYJ7Q;L})yT-8l6SjAs
zOcm*1>9&eD9Lyq7L6#g66?ZtEGxU!~N4-bA(xd&;|Ho$<4k*68e5Fzm<%d3}rmj^2
z?+8~lzFgBXo%&&jqjI6o{@U3saLmQ)x>f%3<3}6*$A{`_><1Xt;BSxcrbvW*Hqm~g
z_;*x6FMiX%BIA7OMgXoAeI*o<5;#QG$4a%5yr%)iQ&bfIL!A7vC=}?JTy;4-Me;4w
zjh!flxh=kNWTAiPdr|1bxxmO_QwB5n>c<qFMFirhwGPqFS?h3@SL>d&PWxxA!+P;M
zQT1m(2)ONrgO}TT2nHBDL4N24GjKy;f`?pz#W^lP?KpC#$hu$<>>p840=FdTs?UBy
z-|Nf?YAsXfPz8D%lWDrgLh8HjEQ;7Zf!2#VQ;KXnM1P`Dgr~^9avAAmYYR&VZyX~_
ztM`w(($`_z##jq>Qo`Yg$?7mhJ9~(Va|oXzVK??;ii06{RA9q`W>aa|;OaNsO=d(<
zYZTd|7*#VfB10nd{p)<H$QoCUAB*B<X>B^NZBa9|Z!u3g6J@??r4^py&7N&B)y5Lx
z8IqIWgZ62!`R`tKW{VH?;*JY8d^I^aPiD6ODZt0=xBWNGca2|K?GE@HoiuxmY%@84
ztl~~a1Lj)VuJJ`2Bo#$Hv28KL4W~i3+4-e)pxnDbj995My-wqR`;}+Dyz4X@hjoiB
zf62F0AwjMFaqG01s3(fJQX%2`NU<ulkSqXj2wn!jKC;SI0_OBchqE?Gm9*bQ`fF_|
zH$Oo5R!)E8y;zY`P?Qpaih7@tCq|+aAkaE?k&V_EU$Hfm?8(=PmO6g4g`VWXNn1E)
zJ4m%Fj>v@1eg2|^e&t@sE&-1P<cC8)^ka+yLZ&5jPB9nnF+m<4%to+e_Q;VR<nAkq
zH&r#wl25S{jWD=z*K=k?r+L`wu+eItN)gsN5}I^?kxyA?rVgdpdxD$+iQ?2eOTe$U
zqXy`SzB#~5-bXXmd31@R0ihU8h{ruR;18ej-n0F7K(26<LBuNF{L<{aX?L4_v0wPE
zj+D6^eL~-VzqAzORbO2MTF>@QG|dWf{RFmK4A!52roMDr$H(up5K=VK=p^Ob7CMM9
zUrywRur(KX1jERHN!&1YfVP+n%3|fH@Frq1bH_*<$y_au5y~7&p$z!2EAW`=EIzp7
z3GvYLr<L`9idx5HBzG$`rDA^!*`^^YSS<AVb&3ZiP_9^ywB=rmS7r*FHh%@7z=tZ~
znmkq0GK4_hs)(%O|F?1hT(f7q0X5$xJBfZBGM1DJu+Fk|lY?yw!a|E?^VifRQ^+KS
z<mtRpatf^|qNb2RQa(ViDU!1%Zw<{9La)DnzDyWPi`~~J4rR^USD%_uL=slc$JKxe
zW)~|13Ntv(Yd=Px3k*8N096^>D<=v!0{LsBbDBjDwiTOzIc@ivSug{KDf+OVQNUt9
z4zRSuv&o!npl!@{Py72Hs*~aklv}`KWs>Z&HL(2XXkEaMZ}}nFB)Y9+E;6&hXW_H5
z^}Gg|nA0q0pV@iKEH06;?g|CAdN}T252Z9DKb+3ux@mv0G5QDtz0U?7N-RE#kuNM5
zptljm;bx%rmVn|G`ORSM=fM)|THo=!V?V@$2s;<ZG&(V&*|z;Lw32~SI%@vdadZa!
zB!JHaeHjbM0SU+~5+9A3ks3k<W3jd754BFt+MQnGw1?KMQoNDKr1?a&ExG8{g6p<;
zhhJ{n$zU|Y#LBtVYag~j$3_kx6VQEKCvay0)BOS*j^Z&AL2sQPm?KKKfq{a_h84%5
z$F>a@$O-%loHIDL&Z3Qed7a8<ETPiXi+k{>iRPvAy(sEvc1^e!2uIjgXpDm?MKg*b
znMyz!xv%iHhe8rffJkGXUtfxOebApve4n}{bk1Kfza2vHC63@`A~>Q@bT#(fF>-?$
z93*fbm5`DE^OI--hr>X4O3;jA0T%t{PCQ-H{SDcCzaw#_y2Hyhm5^eBSn-koBmQ|u
zt{7rZppNb)a)r@<XEbJAL=$H|fD5t1SpX(QVPs_+NVd7+?RjvaHpW8pmzaM4{5Q1Y
zhcw2HhsY4#zDBP#{CA(^W9(DuJS+CK35i4tgITP)%{{c@#3_~cLk^4Vc46yK#E*r@
zr3|CztR?6y*rf0^cG2_Knw3g6aZE-uwK>*x_APac!+BG@R42qYL$O^ljATYtrg-~N
zy}0A~{FZ@LWR<L4S<Kjk4YS*?EztfxAlqXFI5^ql<ihhKWKWU$z}|k;>g|aBFx9Db
z`WDsD0i5ZueYDHBiBl(H^B{2s+)>bW*#PJ>28N0aKn*EmU#gy?UD0x~72SG{LUM&5
zh8s;!EKx=dkANs^Mi|Z@T&&FMv(UdT(b#b>@U=U3!V!k!aOEmlu0DPC{8_a;V?1m#
zu(lI=c8swd6I=Gf4#<eI7c}<BEQTTudug-gZ9lZ*F}A5Q!FKFV3?yL-`Wn67i7`gD
zlZ@D|I9VKH_kxY6gGT-(22VqAJ)Ls1wG4HEXdJ=iNy_LSbF+A13%!x2Er~H#%%#LB
z+ruuCQhrPY#|sBf;j)6k%OE5S970{VGJs~V&#WPz{*32cg@skTxxn*<g}(n@R{w>E
z{}m#e@sshPcmr)N3MM4euzP{$rjDTc{WG4^x+Q&W|KuK-e_r7EpE0?>!dRIy7YP*e
zZ4%<RBFBUZb|2TFtWE9sl>=itezg6e2B)mGPuuKosKEZ-OC&{Ns|4?s8yzUy)BO)B
z-WZ)*pif{JQgb4a3{|;TTNDZ-9G|fbz48)j4}Zq<)I}hj?kVaj?JptI1)gV#B>cF1
ziX1nd!4d~XLvf2)@C6)tD;pySVPS_HF(!qB2G?Or)-1%=Q!bn30xC`(ID?v|4?9HG
zGS3{XLn7jIaZhw<T^=pw1eD2gtR-1i*BC-n)C<9R1($~hT*@62Wh>D*@u#D{^hbQx
zK54GDl!;w=j!88G2kx>4WK<S1wiJ*NM^}mX6}2qG)|M<NhEXqr>D^3t8`|kWEONIv
zzUGTFb0)91A#?*pPK43apUUN4vvs#(<T8=Uv|Qu<ZQ?`)cJ3HQ6F&q)XO8az+xh_P
z!j@7?NQg92^VLW$5aLuJr5k8tnen)DrQ8RT>n!Acq9YvhtJ=U~-0sS)l%}^`s@z??
z?Y>*$Z3iY63zmH4i3X>s(B6Az61>B~6h|f0z3`{twaLgKDFK&~Q}VWAOyCsmGLnF+
zCK0!{^t;WTiTTa@#>p|CvcfjT4QtsxNZU;(K?=cHC}_Y?YZLTe8u+iC+sZtd{l+lP
z&VEksRB49oEOag%KVU3-XIg)rAc6m7WE_Xg{R|-Pg&m>55AjRgqd=IRw;$1u;Wn&-
ze#kVx*RKsBpy|M93mw9lmb{$Bdg_Gp7@SdUG=Ts-`c_Fq(LkEV!PXW!6xZ@_c<DzZ
z1h;HC^(o)U@&zg$qo0oY$O(viRO%6f^NZXWBnsFCo+lxF64l9}a@T7WwzgPZp+QMh
zYT|W$$&Y>e=?FFRFutW8ubPS)hO)mJu)>(o*sLKggXGrWed3K2M0cCvWy-Yl(@`_L
ztQU7+#Bq2jof`hbh?`N15_KfAnCHx{W_Wq)ddZg<Cq}Pcq2}o?{cf+(=_yC)!cy8T
zCHT@BIna@Cufbu=ec2?|#$>oKv`HwtNDjNV>)T7t%sE}wthvW(s;Vm#qRWi7erc-d
z5=MG5TOY$m_P+3SlK?H)*Xi1lasy&$zXUbO@w{U)>X4WVl4McVc!?i2A&a}kqvFlc
z`RT!F<D~ha@@XMg&509w4(vF=UP(13VvD^HafWM1Kt|&Ao+Y=Kq75Zq*~s;M(w<_D
z7A?_n&Z_H^KE?6-f1Nq;c*&Y8w06$QTJe=FXO`C7*4J9|_4b7!BErAVaOlqKmgo4v
zT&E4V`d{KB5_mYOTjJ5P3I<&#(+E>~%;`w$s}^yg{+A*))IJGIvbH78?`~Pp#Tj3E
z#%FM_6x?-GiwssGy8y#VI<rapb9?y4aW7_5(T<7Z#;tVyKk&)GLe}0hy&3BNf!mT>
z^%hPP>E(0~k*5MO0=PJ()ba}fg2z9xW%EN(&V)~j-y5Ens>jqIX--Mz&w(_e?g)W;
z+<x0>_Zq$CLHqQmAlnghwy0Q(Z##TS{cuDs;7MRxOi`3qOphnL4N2?|@njlva3t{9
zHl}FsC>JnJjPW)1N5I!H6LKU(jQ;8~H(?_C(R=&R#D2tMb3ppE;!Q&QMPX4ed$@}<
zgI@7QqY2Yp5P!q>M*4JPGLA^$(V}nWU1x&NX~qeVYd-8lT1s($JNVQ(tQU8D581Qb
z`~s)W1j{1fuC{Cz4Jd3v6_XaFYFbP|$`o4`AZ3nea>lGL52{2+EX`iQr2auf!k@_C
zh(yPdfj1NRl7R;#idiR<c_1CCr6h%tOseeoq%X|KP1rx7Z8sue><qSd`L>7kg!|%f
z<(qxZz_T=yj56b{SbxL?(RXB$S%S2sY0r4isnfm!Pu}9bny<fNr3KF@20vBdZ0!%x
zlu+u!rl1we_!1KmF=gCknoK-)xOs(ySXx@zU2{d`G<*Xv>sC?2z3fb<<#_Bzo;`J<
zcwSbelfSG&%4%R0Q!ukiTc%MBnk=(q^i;`Z<F}kC%t1tH3yVAP>KWXPS#H~u%Q2lq
zY{P_OH;**DxP`XBmwiB}@H>LZii-M(=dR#4qDwFp&Eg)xymw#~DDgS5Vr?+`{!)Yz
z7Yx?H6LN{o>&|S4#zi-LlnNV@tp<lM<xfY<N_$v!W}$`?C>_X&(cXUT*)udIvxuhV
zKr4)Kbm;_j>)A83w~rpfe?@m<Y9dKs&J*G>379W))99&Vlh#oA1SX)s`R@t30+TqS
zE}L-n49?TwxGO@@EDZSx7kF87FLXBXSaCSlV?~oIEz`)q^aDH+>zeTGF|p_BPDrv7
zWk(1rWCvN6(e_g><tn99(Aq_RA_X8_+s@j(_0~26u1Wf>EhM#itc^U=O&lo~S)n7x
z4_FbGggp2oWjkXwF0zsjMmBlcG?3SH;kc1Zz}`Sf$SR#Vku$+DjyQ~BwFU>c@|u3=
zOkfvZ+%w;g34ecxr#SQ|A|V<<wAdO7*}i3K3!P7y20=6LJ1~`K4V^X$1v%67X|n#x
zw)ScQOMS+0U(~)Xu_v`mbA1Ul4AOw0R17=hG0vbv%Elx*wN!#GUHbO&k!4>uM;4+T
z4ng<(Oq_GKgf|*;D-2<L!&2OtG1~2NFI*?O^1~Ij$72nlw3<G4q+2o$RWGntLdNCv
zi4(%{%W@lEY8+-<djw6w7y|xbed>$yUyR_Rh|H!;uf2I%vjsK_b3nKN;i^#a=9yM3
zHKh)g;D8*;#q|eK^V1XFF8WXu?SFcb+=>T5#^X1@z-aA%veJYFcSd!6QacXMN<B4(
z#<v7Z6*h+l{8KEE40gWanB~+Z8c2y%QX&SNe)w8Xn1VQqDC;~wE#am!Fz+7vY~3^(
zVe34nB>PK{(9)HZ;*Cz2MXtiJ6g=z0Jv6}&yY8i#va+9ik@h}+1SOkT=pG1Qu%pGd
z1lpw9s5Q}b#>xCTLUJ@mu0jBHK#IQ}l0Qd1!{S1%hOKaFPc(W<xWs6vEezZ;&Mql~
z3j?UzSh9#OH+SY@q8>hfgqCc%^Jex26uGTsw%4CJGm4wn*qs@g&<elyCD&cFbrd{B
zBkWw95kJ(tS5YeHMp7pK?n^qp!5dZ{+>6vTXY@gXB1107pYGnJExdW4&my)rz#)VM
z2wf5MJmLpsa}kOt_QM%Y-LU4XyW=67B6m!DH+7lV(k&}nci*CADsE<u*-#M@08dGb
z{K=H3lEgf23$IpMt=rsgSurgrhIQrhwu_&=03*XIY5o1*n%h5hcleS!vJS<)q>Xle
z`J2DnK^wft1ElseXCP&%;7$(0XVbJkQw+Wrk$FO|)Xh>MaYKT0MV>35#5RjpNt6g)
z`3Z{2#C2ls8^RBYM>y>j>WF<rStNJ?&t}u8@&sI#)MCP&I^^Bym_R`|K`wxX-h);(
zCxgu<lVUM(u)f*heD+)(hWC0(q8J@CdX3}OX`|mh@71}m7o`@KxV$i%c44tRCL?<1
zE^OrIqzeR;Dqa%XYd;*VipykNR7`v0h)avo1{iReE3U<h>KUpT4oh2T3pF8&hjeD6
zXoqj;%JOzpnJtRDJoHJH$x?VJsN6?72^9;@4d987CsQXPY=h-rCz}UwRaHUQ^q#`9
z(mL(-?7bhWtg}P^8hiTSueyD^8ILUkc+!Ma2r^J4hyh_9LGQU!Qz8v~DlXnq2-%2K
z4&{PRJ6v~b!MBD=8kssa0Wngo7k9W=qQ9eU9<1==pBJ+Mo)V94qw+K&Zn;`^L3t7e
ztl~d+({T0-I0_jBfz9>ugv{77JtQeOV*TR?F%b^Vn*4cBJ=;TMl}j8&9A4(EjY+@_
zNyCh6P8B(o3IJl{R$=STyUkAh#~*(zoW5<H{+mBmD^JDa+fMuZtX{3WD9EDKN~I$5
z+^DK2?bEmI<Wa?ARBzb$LjtC=X6K~Ug`|JapH>QIt;3x6Pr<F3Oy~TB(IwM4_lVPn
zl#*HGrfvoCLnwKJgTI5&|HYgAnoTZo1WC7a!vW96`3twSbMt~0lTa@ytno*IGlD!?
zX(jT;0JYHXYNx-zl~vxz`y4T6v}9kJC)AvQzC$~x$VtFj5yx+6cbPX{mlt(HPY{Vs
zs>FH-5<<{Bqfk|I+SjjdFLKxuPUk0FO+l8Tyd@l!caS?p#T%`o3l5TZ$x?TvLGMiN
zf?DUHbih>jK2cFwYYZy5pmHz^l%Tk4h-p)Yxo1=i-AA!GO}6HN2<JQUFL5XsUArm)
z-lsJ7L#_&`4^rU~QuE3WIA()c%ze&I+dZU)0&?CZP^42DU)?;u5~dGG<xHffq%Gm3
zW@Y4>Q<7n7PDo=iu<o-JWxr;t39+yYPJ_8cBbRR}`6Gjx$96f6U0lKN5+G_??gSLs
z4aDE?=4l(;?>2B^{}Su~XHGoM20lr=5#{$}qemj4ScIs!1D>$FIb?%J&d~60Lx#^6
zU-%Dk<X>Wi1y44}ILwJ-2g35C`5^^B<ZnQ=^auW916Ib@apd&5hMijqMlqH9NKXii
zV>h=R++i}ni!A)5>q(GXBSY?6%BP6G8pmagXBy>KY|4DB$_t}#szt$!#hWycMZu`1
z+rG4WStc}V*EAf+38!7tGNNWcI~Lmp_B9!sUUAqY)2sx_y>95U|8qHn5VsT7(66o2
z!}hOT^iTHoK<&RK&NU)a9139t!E@Q8IL^e}Ia*vI;{Ip_&}z<){RtB#DV1#EhbPW;
zdx}HuC{?_v*6jVgN~N;MEp;Z_sTXhdYIe1<_f#)PaV+l&?bmE3==HB`5%j~+2^}4g
zNVfNMX$ifpXUX{ioXP-2AoiC@jD!vlaFCj2c<wP{c6et7C6OJP@d6Hb;WWj4syuIW
zINCO<c$4#e0S*td5Zc0?Cjat)Av=iK%54tL(wH(glI%HJ4Ew1bva%_l3roAcsoWR1
zx^m)Nqi{AE@Yt9d5%Q2`lnKbycjnZQD@S(drIWq1P3DzIlxSU3fES4duo0F|Aci#|
z3{{9q&6d_k#Ff`BsC<_(6PhPsCTNXQ6+6vtVW)&svn-|HS-RzES(!CiORJD(FYVK3
zve?XIF$MTru$kWYa#qtyeNlE(a6gOX7KMUZvS><nJJac*6FYFn*t~HG_Ac&TsOx;(
zZbs|Y0312dfRLC%s6@yKf@7DPO0GzBAq1x+Y|<7GlW~|vlSZg_L{pM8+Z%56VG9v7
zN#khd#<K`p$k-Vug)`}j)EV_=m1$4<LgY0j%VZi9Kf~(@R7K&Y5TfFZAQ@kyG_{bw
zuN#CZ%i`=W9rMg-2k60~Z2o*wVuSU8M{x(FYAC5_RM0OAD#+$m>B#W|Zru`;$pIxe
zPu{~R#F)k%?0CO2o#qTjB3oNVkMR7cACo?)8maj841qe_)lw|Q^l!b!g3nJ4*X>k+
zZDkHjxXW1E8KQlDS>LQ#W?$@Sg1U0fgv{T{d)gn0=y{mN;3BLbE>Jb?;+MH<%Yo6E
z>tgI-uY`J-d*eme@k*tV&H}Czo8UF*c_H5>;zFmYaEqL(t7)W-sA-cjiy50VaZ0#A
z^*YRp4K81&kA8SK4o1&JB8(jhG%54M>)N<*&lIst&M1z6`Bc{9ugH9#&waDL@8x-W
z`(B^MQQh)cqpZ-vGWA%=CJBMk$lXFPI65!h@P@QK`*&#R)J?UJHfgTl4S9sjjc2*s
zq0a2$J`=e0;tu;8*~c!j)L7QgqwtB|l^S~FJOQ78sD>V$3y+@~di2&xqpOD^<uv?^
zxI0z`SepEY?PeEDHsBySjmQ*7w+=!Us3J(t*Ap^><J5!)CJ?N}xx|}{{8u51HYpBQ
zvgp9^*1}Mo2y-OQQdQERod}~5A)Yv#IFJ3nkLS|3mMmp@Ml&$Z=w>{)6zY!2RfvYz
ziQ!m?7MA+4vhGsG@Uz6Wm}#Yu>$=(@L>G2oKfHoWIFNgaAtoYr2n(O|Z9VoWL;^`1
zgWRznBs}56&VK4dU=|$A5uG|N_l(`IaYA2>iS(~wJ%v<n5|fh1NACns<!Md0)U8`*
zxu5M4H(SHYc8e8*`~-z9(eaM#CzxXNT;BY2UU-!y8mc@Q_6HWSSbzJFYztY?5&lrf
z!Zz)q5g~C#U1p=gv};pWW=+(K``R05NVq=Uu+IzKaxt6*0a&8sIwQ{`M4S1cf(%!z
zq@*PpfWM&Kg_VXY(ar~~&`H213NF(WLAzBj43no;SN_Q~T93hyWemhssU?^r{bu)C
zbNH)FPQ!N3E6M4%=>*!p-wBlL0n=e(BGa>6I@<W53`kuMi4?dZHBqh`0P@32a)CWA
zD?bzkWZ^<9w`1b1+=^*-e%Xe+?HI>+G6l^>-)^Y-P+Z@#B#@UL?{FYqqC<R0s(rFj
zQy1K)4L731cX>bUlnhrF&Rd7&x7=A;2C(K!2Dteqw-)uoM(OD%EH2`$^7_k0<Y_ul
z;PVJ=K82e)=n9xeEcT3^*h5v}0x^UgTM3<#EA|Ls&90m%q$Q*Q&GoNY+7i=c2AF4N
z;U`Q<2bHr0c+s$ywPtuyWM7<OIl&dr7c;>sb_=xP$T%b5l_D>;N#{=Rl?X{_GpPh4
z^~7*80NARZ$RBD5P@a;{R5KhuplF8@23dIaIN%!&o*(K`)G#1dG*KP-m2U8-qGNx0
zN<y`0AWJg;a$nB0hbh?H!8wZzwaLS;@p2F~<-Bg_L0c-)lFT$66Oji<o&mB+qO#Qk
zc>$8f+5s8K+0K_IT>vD>%|sNdQQ`nvSC{aX-G1n@9WA9y!q0V#gdo+YU<si%SKvSJ
zMWA)KsEI|Ob-4JXpSW`O#V#4f$9{Ox2)zTfo@DoSc_ME099K6dGW4;EPx%)U149I5
zSLQ@IS*mNv3MU_Q(k@%-c(ceslnj|R6JDffaclp@dF*jY9%n*4!RZu(STF9dNzK|4
z4g;!Mb}t1N3YFvBd;+!fQReadgkb+5Pr+C_3oUCOw^?L}s*c;?JS*8yz%*4ETAg^z
z&#VspNZcLG5=9sV;Ha08hObldjM*r#kp2$J6^Dl>U@MJ$!y^!h9DFM@6ybB2tDNNN
z9B}NcsT*HJ56HUVux8TJWc7Ogp(yJlYrKj>nO)?CQHKW(GfORrSMir!g;TO$MCDv9
z@N>fWNiK$iVS|B(;z+olg)6qvVf%EuhZ={6=(zp%ZR_-HD&!ewc?K<?=ZDI(!C-ea
zW}9=m?19)4sC}jpwsMCbZa|#afnIF)F5NryBN2yTojI*9T;L{B&70eQqAM5K!L9`<
zjw&mh^peOW`5t<LG}$qhc_xx^*0&lPQ$dg*f1HI!T{6mw0vQTg%CE`VHPVwTrGVDM
zd=exik`(A*N&;~=S_W6zu+#X`31nW}ba#1p;Pmn?<DAP-Kaj`OD&FwY3#<OIcw@<6
z=fXb_%0Nf>M_G0u)?zR~NIPa;aEVzIZ13ty(T3ejgG_tB@^3xDuh(d@dhF0Kzsh5l
zSXjDal5WR{>&1WSX4#0R-K|JrXGZ&Y$wPhU@jYIu@y(&jEDCrJj5rN<poRjJTqH`9
z-C~9K!t0a%*r6v*?2dKs^;OH5&NCuVVkNZ|6_=U95&FQH!zxxkTJmnhN2|E^F>^Nk
zNsAW>i6ca5#*lgE*rMsG&@5rC5CIyO+C22Qks=~6U-8h+jEZorGU2&TLNtqlT?99L
z>69=HLeblC#}EM%t~cZ>C+L(b6FC}+Xj`G=jF{|?H&Rtv-Tra=pmF@J-R<$c3Xe|A
zIHw#EE3L-(q(8!OiypIq8xtCDHr{%3b<?j}6CYjZn4u8~mN;`FaO3|_)CztwM&$~F
z>Dj|hprQ=sP}@=w!X)P+O9yHpE0BGJ`*t_F#x2m{xv*6^?Ft3@ApFWT)jF^9@3p&p
zJjf-)HA<Q|^!Y}W=c5KZhmapj;-(vM7zNqO)>$3o!3f7^vq9jy@8IR`tz9ni+P8FA
zl)A_6O1yGAdzjbR!*x4*xK?Km@4d5!xt*1fr&8Tzud^M_?=jbxZ|^fJci+7R+<3p2
zEOD_DeUTMT!CA4u#ZDyD?G1sa=3PpiXm@#rNO_4<xBqIj>c;7<s3c53>dI$&hcxZR
zPCTQGMTXp27vZp?RzV71Q+XnJ;7SETG$=ud79EJ$u;hBLj&**^eu!i3RwH|Sp3YWj
zps~u4i?xJWXJ(w5h-<rE))@;2`9wVS!`XGVN2%U0wge|7+c&Rhik+EN-Fs20lq#jF
zwX53)Q($C3JN@-ydBRRDAFx@2^CRSw6zU47A!8E7ARxFy)y`}x@51p!=^lwU-S*|l
zm{j&5hMz_ty1N9uAtRWM9Thk09Ev70cMKU7L{PQQMN>=NorC1=Qv06ptXpL$f)i0)
z6VnX_OLVR$>)D5V(jTZ8jhpFISqoAoJBhR~thx>=<Dn!KJ|$#Xbt9DZt>?qC1PPJ<
zVab?}_M><9qZ9j4SImsW?_S`W7^6zOol@~ef)l-)V~YMnANg${)8KPs!c$ucZVx@;
zVIq<yK0#lw#|D`u22fS~le$KkPGJJsOUNaTh5@-sWiNSJ+1vkNzfvBPD?28(OD0n%
z!ghQ`Y_6YE+YfDz#I|w*kU7?E9wU=|A2@W(Ks~EGf3_w5E%>z0-BlGoxDLh0D!yrS
z-}QfKcDk+hsfGMxK=(`4(&Jr2Y@RiGy=LdMzWwn(A3s#=A3uKj$H(HfQRL-I^|-9^
ze^}K||H!Y1spBfM7Hqoe|AUI6F8cI|k(Dp5j5NRS&Ql{o#RpW}V$1m+D-NuZ&B!Tq
zfr%gXWs-X7b2jlqe=?h_%v#Z4{8oMRsPtGc${Y4#PrNYfH4TwhwhF3@ReU3!_r!BU
z+(3L|<)WMID`VE`*5eXCZP<gqvZfq=h}4ktR=)q<c=IOdU}g>0aJTXA61kkkIw5E!
z6=WmOVT|InU{qJZ2-bsPr+{eDJq&m1O{eDm^B-S4`$5jkIPxd<)!2_QIN;dBh)iq;
zW}dBC$C$1>MNSZ)06P%)7mh_E$A|4C)TMV&HzR+NQUfm?Ee5R&D56?TFh%azi5!<L
zI8c<=ySa3tE&k7=M<2fXP=m6yPoEwytVIf@!hRi~j|A+k$2wF6G+9$Gm3AEC$&^G8
zqD-dIkk=t2c`D_{sL^el6}DtPe26G0@+pNLitsdGc*Xb{%(No82fXaz>$pGhM?7{#
ze@sZ`ur0zPe4Vu$@J|Xz`b=ZU1B>kE+G{m~ev&e3rLi`<Hf|EFg<_BCnA_Ws8jqHX
zH(I9_@TfYnC|lZ<Hg&F@_=ziWjuVo~@>$6vn!b;A<y5{K7yR!Z_AQhATPFFpzS^*V
z<#v&wZgzNa4}B<Vjee3YOj^sI7$kn;`Dq;nnns|8n+zmgZpc9K-->g#%iESYgw}T1
z|F~V;{uqAz$iA`uEUayKv%Pva6%{vRqx(fda)RTD@n+i<Jo34}k{0H%;CQ)%FGjeU
zGs1g+!4a;~@_))25jkDUw~!I2v*|c~g{Jsu`J^vqH)oLakjSiZsWFLYawuSi7{hFT
zuD<P?-(bT<A`zCPY=k43!KPfx)3?dM=#>-Oj>y4+{sdB5w0NUXSTI_sUM$QndMAue
zV&80x()~6qO=yWZN^756qxwTX^xpp~NppOw*#hmf5{JitNAZ@qJJ6ww2gbMwx@8zh
zA@Av-ALS)eR3F#N@RvPjl+i~%fNdIFwFSh5g>0~0X@U7g3<}S1VV(b87lA6)t-h=E
z0&2~FUzF#+XZs*xLB0Q1|E$q_S5Hc6^Q)kzy!qNgviwAT{=0b|f9q%%cB`eC-M~wT
z6Y2I~XM!(t3+Fe@8y56kq}`Hk4%#PY?QSy{o%FZmxR@n%L`0<7UwLj=xp!mx$U#8d
z3*-!AaP$q5OwW*STHTEGN^AF}d(df}<x@8GX?ahKf(Atw@}L+@?1w&6&<18)(&N_Y
z`M>*zt!}T=dUFne(Nu;e=K>=L0VjQrNr(UvH!?{XjcmFLYp*oqYo6@_)DfGAWEP{V
zu@iF`$kWh~r^O^pvY0`jlgD<1c_27>XyKy{_A)L6-+!OilMeRYIdM8GL%WNfm#)or
zd`f4yq#cfYfks}W8_Da8i^G`EHJduXVchQKf9(I#?9{CnnH&`DF8V<r!rT0vHET&s
zey})h5%$JTtPoraAKv5-c}>1p(d3KIZZfx*&sQ}0{Ii>Uo@(+|4o#l6g^9TSVtX@|
z+JFKp(ed!WcfvK>KIDbhhdvw3!g#hO^mATV&v3ikw}&VXQ!<pH7a(RSU6w-wm;u~i
zjoUa$%4VKk0@>)O(Q6!Q<#}`~zPx55Ykx0p45ZR+i0W|FTKt{dEZEwTcS4{;<SGQ2
zytRei!ub=;NvI)T$Vjr-2qb&j?!9ZBzLh>t?Jh(3#Bsr@&nU*j+up_Xi_qSDip`^N
zUAMU51s0Ye=$D>joriQbWm*#UP`j%oZ3Q%!hdNGe0GHfJhs%q;r+wx34%2xv)8$lB
zTKH--kfY@#=iIIE(g}PIc*<4D3uK<<6Q1oYlf%Ty=@h?eX`rs$xb@fi1_@sD)rC#5
zi3*98O$Z@FI_dX&h_u@%;GdGK#UC;)f0Dc|lSLRG(^-h(x_P%fh3jI4?g_Pbkbb-U
z(Yd&;ZlJr^MLFBAyy`RbXtcb#ITE7Zb$+p&O^2Lel3%Nz7N!~EMpPH`K|Lp}f*(0!
zwh!u-i(WoMT3%u4gi4(4Cq4ydosv9MO+b9g2(S-1nAP%H|Fk4p=B?2w@})P#>@~zU
zKhG}<iD;wK_Gxle`^$@SE^k$sb8*Yf7G0pIniA#cc3Cd(p?p<IURZIjPRaFK<n|^a
zJLiBl9Skxndzrk=5w)gxO#s}dY}MrHA|)Mj*T53eyqo#Ziu>1cnj{fVAxDImDC-nW
zC&t`xu9Seo)cGb73Bm>#)=?)2u*ZbE4Ceks-lA@w9>0h92)qcyV~Q{xOAQK<2=0`+
z&Wu7#3~+ydo2hIQ^c8fg|1Fd8VFKRE1hhMw%)whruQv^4FnvGr5H|~orAk?KQW?O`
z2#rV4^64U2AEJ+OnkJWiNrW6q{ZW{E89O~2B=<`GhVLTm`M-|)hmBsN-)XmdcW3#$
zyXzEo6+jl*RfwLjNm2x9{>sBPb2~Bx_6!0A#h}CF*8e2%EFlOKh&{-dz&S&|dYoIi
z>^ZR`?AEE<j4Ke<zCcX){8wiDg|4`BZ%Fv%ed2e5O^~(pi%%l1f%OIX`E=xm*WZSj
zd5He6&&SZkJ2P<#%T4$<U3Fd7%`~}`VYA4omkFb4sSws?(=6(oLp9hn6Y|$!&Sv1y
z*mt|&Yw&HDw0Yd<_F4z`z@|oL@64_ld^cg(Y~^)XHe2%+QJaS+d#y{@O=W8y`kZYw
zk@_`-X$O1$H_{AvN|Ue8rO?GYb7u<6O?We1bzRQPG`W-|v&gBJ2~Qf&>#=1PbIz0+
zsG9NgHCXe6gd_58SQFCg9KN{+=7dh(nK?6fZo;0~%Ih*{wq`jXBbpOUC#NL8>g5gA
zD=o|AaerR#<!g=qjpz0FKaVtg257))#?x03&dy-q$0z^#M)FxEmAVHJEjoI4DV@P}
zBSD?5y|%2*X?VG~&cjlFuL<qct2O0zUPpxJHUQSrFHH7D4bNj7B)xPU5e+w<BOlTk
zT>2jN<Vzn@<u%!kgsZNkZ^~Uy!r|AFt2tkUquO5flaDEnRjG&S^e|6`Abs}gmWnaN
zS(UM%6V9c3r?CAw5k`12jpv+=q(7L3oyFtDXJ6Lq$dbW#G^1D=2K2*9!H_T4gCRO>
z88Fn#92kjPf%PBAeyR{(e58+yH;Pz`(&M6qR1pEw2u}`&<I;cTpU4g|svs@m5JuL=
zFx80OLh?x_lX(3)+affeyOsZWJK}$C(CVL~mpT39Oy0$D!q+4W=6Vh;ieq6_m7L5|
za7DhC3dr?^So(o!vrJoCn@4#(d&Q=?L6KxqZ4EwJk4qEZWhr?T-`olj?jz)YOeAjR
z_)<k=l+Fm;g_d!HYPXhd*+Q?sf36>Rf)ICjq)whoH%Yk4*646MHWy?jzmNS8r$jab
z(2q&q@w~j`k0KL;WNs1bKAMY2GmhtR6pB^$2vK#uf1V7S>%{5^06?h-JoXW?idy3q
zvafzOE6Y*;u8t}w&&valVSP$v4Th^9^2(XxdDu&#rMO1N0C+<~HMJ@yK|;lN8Ql^?
zgOX4c%L4^DBB;&|zl%SWn%b_=N*GT$A#$R~nWLS((9?<(wop~CgDeg!CJ;cwDr_O6
z0<xIy#z8@nXSgNfhbpn{)S(nP^3Dt#rD4aFaeuOr%2^8{2VPADm}~M(;>em?$eN?~
zC`6}LA^kNS9}RF3AJd6%*rx`=y1rA~(>=b2WEOfNKoirVF|XeWTcL-q8R;O~jH>_P
z|NFGCUW%aD!lyq~r(Q=z1DULYKX27Yg|5=R$uLn+X4&A6Fb|Tut+L5y1`>Qy*_@&m
z%Hu0%JfRqe0imND*TvKLNzPDFR(n6n*7hlnZ;gk}ERev^PE1&vQmF^W9O_S|0Z-XX
zF-6Ug@u0>6XnTa?bBdz_4#R3hJjMPHW4K}(%-oClKhfDNy!Z}yBSi1fDf`RXE*N#?
zvMUpl<6|;vL*zF>WykBs{sfa*Trb|}k2SkedS<#RF@SX|bkY~N*i`p?It`q;$#H_9
z<}xk_)EDrCX37Xd<vYH<&B7S6gQjLfkr%SmU(_<<v-8^;)=T+s;#Cx2JViyllV}T~
zLt{vWO_4n825lT#6Uv0V?_AQ3b{!Adut!Oe0M#tXjj}LXc=)SYy=eA-VY0nJhN1>W
zS0Gaj)=*KemMm)PcUas)5INH!X`|ZyrX@_WF*XNVU(?+2gz(E5s_-KBc4Idav>F+e
zxCjm~r~^D5kg@G5Y{{_K5&nJVM{I}X#AC|3(U?wo#AJ@W@T5O%b?QlO%VK3$|M;$b
z(yUv>9oI7xVBSD9h;IA5bHI1fyAU^EdgX~+n2obDfNcHdX8rqLPOrS*0NwxBI^$u9
ztUvszRgl*d_$!x8ri5av@UD4$BHoR0FtG}qGx;1%CsyIG`9?f)=U=N(;DIiAs{6dq
zsCrmbbw5E2MmoKZ$i1vP&5F=_Y^@VHnnf1oM5WL}q2yd?(BR8~)EfXXpLbo3H)n88
zZv1;uP?URurZU647DrGdT!GCyWM$E9JTZ~(G9qdY+_BfL{cItTpIUL+7za}v(SjfP
z@jL!^W;uo&qwk$bzzfu^;*H>yMLGSkM8}3`9s7}Y=0x!vl5)t*ysCPsblZKW>}4hc
zW^%9Txb^1WC&zosiUt1QdJ^oF2Yy(-o&<p(ija6RbN*rfxb>#f=)AuTLf{MIq`|OE
zxk%9huD!_svnnhB^1~rPb7#W2I?4K+jgEaH>$JilVQ~4-Xc`OWS4B?M$U7WNSfvtc
zC+A+`N$YK=0p9xE_uXFer2oEga@=p79<}Rhz*Asar`=xT__+E1v-c(NQ50F@5MjlU
z-+Hbrx@tK@k^q@W!W|e%$N`aDCP739p)=D-+RSth-90%7LD*GX*K2o0@kDS}UGMc)
zR6t!%yjHvq6z>!9K=DAnUme|D)m=SD4%GeN|NmB)u6p(A)qAhrd-dv74eVu#ym@Cd
zK8`0#(Y{2H0msMCP+dtPSQG728ZzMc2pUQ<Nd$|<#=b<50mnzsP}@l&ScJEOzC_Xi
zl8-38E%EL!(~l-XDYV41%oI<X?}!Qvm>Ag}JJ3~0Y!ji3o`_vIR)<1(Y}IS_8Z&cO
z*({jM+)|Fv?;9`?m@WglRUF)!o$<}_b|%~(u`h?-uuAW8UkRh`QM0I9Gi1m0#_!M6
zr8Xwrg&Le#SU%fWBKjqI<EFBMW6T_Pqx>_9F3rI&zPc0<!j@V|B&v5BlSWUGnKK}(
z8)ptw2D(+fh{d6{Rf@VGKn2bmyy&nkBIX+t#%K1qShzQo$Zdel_cU=b1%aSND?TT7
zBZz@fBDYDZA|sc<b`KWvjwb4$QEXCFN>)r5l_hiV*#oj4(=(ZJ;9mNx7kF*J>8IG~
z^{0FB@U~HnM&BsY#G3~R@{%`c(7jk<3Q^XRx$!zy08>neMnxHwUuqLn_SLC$+n8=N
zV&{h*L-W{p%eju!7V9KPv#1xvG+l|1*J@GyBiG@p%8M!TCbt6U_U}AEKC=)KE|3)_
zBSv6#O;rVSW(WvWAr^{WcXBJih>!~t*Hl$m10>{PdO}VvroUn?W}wq-+$Y$iDpRi5
z{CbwOcLJ7zkWu%~n?;?-i^I51q)O3A2d4>Zd$_fVE6aw8cXE0vQcfIs!({RLeLndA
zi7%fz%}8xMZ0mq({Ej0o)rxEg_uUhc*=TR>T28CUYl?x7yb_5l3))V=b!5EkW*(D6
zV$Zg7!bx0f#Q0`aPa(gc`YE~!GUnySqES)Jug`#g4=e5X?^OBUES8@v0LKJ?S5S4S
zNx*Ln<BE~C26PDmev1xO=;S>IVhO2(q)E`m*eFSC%?w2#g(YbCVvhk%&_H2LU0G>i
zQC(HdT%f3czERBxTu-;Q<4aMxLV%t=9n~npWi(BcjJlub)FL9ug!M?7O>_zr5jxmk
zJ(y4;a@UQP&NK$9huxTW3}iR#9b?*Ud=~zM+(`lN1YhnXUk=?UCf6Ewmsx1q#6YHZ
zqA$;v1K|JWdb4b`srUs)*+H=_@4ys=3$w*VAP1|xK7p0%{wkfhNgzHn^P_yg;sD5`
z#zCfYWJ?sF6y)aGjH^`ew=ZjNXyFQrLko;+W=aD%IH(uMy2HxNLdpoFcg11Gc?I>|
z0M+<~4U1;i)Ra`#8RdxK7p{4M-yieqk*FUju_>;`2dU{xF@z!ZnU48nS<XDU_)mHK
z(5P_W=XLkh8U<Mv)mmLpb>J-)bup-mAsP?I@MC}^OS&YWD1Rh5lh%*~&O9CP&6!Kg
z9LeoU&VX1bsD0hqpIuZRPr2nLQf`d)lf`!Gg)>I)Dd7<HX`D?ZqGX3MxmXFdqUiH@
z-uHkveS*6x4bbsy{PF>-8_f-gZ^XF?Ck}j3=(}0X919>|w*XwrA3L@k^xWetv6Ieh
z!7|IBl4UQtY-40TY@C`A7n03hClvK+_$g6mpaheNVgNTXB{frn74VE1s5U$e#G0VV
z=q}LqQt<TD>!Cq2j~%AoI`1(eX-0){B8Wa4<)OIcIK|zS`{G(dds#0j*0YW17%h&<
z2Xu7Ru{C0k&hayy<7RLarL=9MQL!jw*}Jg_Tlc-sWvS;flp+`Q5hEqP-aQP58h`9M
zp?C7nWB-2FIyO<^a~R{9^^D<d6vR~5=tqH!)v`%PrD7T`cv_?ovx6Gc#5m9qXQlv}
zA*#=26tShAcs^nBroD^zgHMbw^Sk89yH^{werq#K8}wUy3!Gh9X>A}QkU>&=RM09K
zArf470b$=NcB1SC)Q`$Knl}#|V|@=S1@lMvMnR$)$rktn^@DXrV*+UvA@Z5zDFd^Y
zBOYmu6R>Fju1L07YTFoe<VYMQ3+QT0g#T((MWNMQA>hX79Lg>PAw?F!R4YY;4OSTS
zk1(%=wdCqIn-zEIWglT&2P#*ZsTXGPkL5};^E`SS4Q8Fgx<(<bvt;g3!E8-b3+2!Z
zRf$DQRV4zo5H%au$J-qN!mxr~j6*3Y4RuuwMKeo^W?|k(_pPblm^dN=$@oK1c=3%A
z<8Bj<0zksp1*N=dMnh>?c}YWMVMR%R3UWboP&=BYR7Wf9Wq@$TJi|(}KfQ|?!p;+k
zqQ0)n64$chBS$A<x!^^3&V0Pv35Yawrp9?Gh}9)E6=k*97>Wx<>=1)s<Z<A*OkET~
zw&2z{3rE?>r3*oC0qrfKDw3QcbbxP^1tRaKYocCj=Fy;oYjfr4IHi%J!!Det2mKW2
zIBRxH;>9qw5*k+{cN`;&b`><MdFfqt?3fGz!tSC&=B*d<-5$%fZv|#{0J9m`m76VR
zz&fc3+VB9>bK8BLbH=I>K)>uw_$bmEl2ni#wSBYc_9aUk^GiuN_dH{OcNX9CvwI?d
z=Iy}gf+mKl<T6>)g>V@A3p9mrDyw_*#4PjkZ6Q?gBX(!VckB!H#dl=ZQuiHYkZ!Rq
zdy}T0b+i3urwwUbJ>0s<Y5s!^ve7hiPjUrDc6Lk(fo3TLrcRw|RFVvW3{;0Q!$=gx
zM@$Tnp=OLpAu>2iZuqSkeZzU%=!q2FqOl!IV`TyRx?DPOZ0Tp^sE`8tKAe5xUZkm&
zsO~?dNmZKtR7d*nKI`(7B~H{UboB99f&p!3+h}}ZnQ4iJ=}?74^Ra{1#9&O7^iF?7
z&~#DtwThiw(CA6LZeSXQOcuDoUXrMJjG7ksQ?W#+>5_PKtg)6nB<?M$DJiTgtDFI9
zN=}$vR#Q?8ipy$Bit4Ir%1Ubc!;;|{#L1hGXxk<fiz7+6P-~AyKqX%K1#%d%Z?Hvb
z6GQzoLc5~2_77z8W@pl{IV#YWP!eAYrp9+Jd332Qx<5*4!zEiBjh(S0Qv1vH#Y8=r
ztS{CJwsDAS{|;x$ZvPJB5aj+H&Xnr@9flI|)CMx$bmR$$vW`k?f`||Wk_PaLwB(k8
z5G_HUZRQN>LtolK@`HZG4%jGfz&pywST-IGA~wA7YBu}{J()#arN99#od1I^^a`r%
zf&Ww1gn#7NRlMYDDk+=eOL-h|(Rd+lXM(XLqX7)}uxFXZcDIM|JuDB27k46#5nRQv
z(p;oOJMla1j_W-nqR!GLtTb1c3Fi!T;7qMgW0}R}2Ynr9A{KC?o=g0ouHlPOLzBBT
zK_%LWu2+h(uHhs!a*Ik=KuFYdNyb@~uwhXo<d{5a?0C@+-5zsf?<gVB@pKqDO9n;~
zHnxo;=*=DK88BH|WITpsu3i*mW782M(e3q*0_J1Y-CjSOx&62U$_4*G2IEApGfh!%
zEe6mO3x^@Wq7r3a+9^2CM9HWkLvX71(yzE7+V=nk&kok2Vo++5f=&`en`jd4Sppdc
z21!#RQ3u}Cqk^uBstoshEz$J%FoU3{OaQ9pkIEmLh>S{(6iN2wQKiYuon)w?HtiJ{
z;xwAup$W&lrbJXANiB!NN^&z&fmL!5ZjByb>l<yzxRdz(OL`EEUNQ36o694ZhLUy>
zcobe!LfkhgsdGP*9wsZ==*t>7==C)IrU5_oa?@~Z5Ro==X3m{q(j1)pAuGeka7HvA
zC*r!KHfD>%5iOI0j^F0(jD#h*mC(+*1MMLndP{r^r8d@xAA%ekFJjI{MVPK8fgACg
zk&crB8Dwj5G*jYmHp|Nna11bz7##g#p)*X5r7s?vklEW=#aKPKP)a!Dl&Lr&d5c|Y
z$)dCGE#P7Z$?7zMAXIDQuT^rdRT_s~`cAj?jI-b$N)}udBLU!kMv)kZGv<+4y&Ccx
zPs5VunVFMqOmCr4Q^GNw>zhG7<oRZJ1oXvrRfmQK$qMHCM{!<Cw)#8zIH%3FHgICk
zTn&HAYKxsN^t^+r>4tBdz%|A$rr{kss;wEL7!8&Hp}iGkmwE$UkkJ)YC0PgQx!oCL
z<XZGxZ?bNAUyPlH#vTFcaAp!sSr7DqYeY>6x5YWM;&DL;-*K`pbuuCA9-Q#Ry^o}X
zL*&Ml7kHU}80U!Au>`@Icc%!MIY<UcD<0e72Amt3gyjt4qCv<dFNTh0y%u`;s9u;u
zkvgl6vo_Qt+w1}uDL4TaDKl?)lZMVI8Z9yz-mrRPab>K{dQI9$7$PYmakw1t0zr<~
z`cWCjI3@x=Zj{MNxg{i7E;;I%HsN&iuqEQTCPm@B)GTK!X}CnB5u=-Dz^ymRiWt6W
za)Bqe_vkqV2e^pQWd|@~O*o^`oKt;DfiT{?+>o@bBCfZn1<dSWHULV6?a1Fr*~BGA
z@yU4$M$}vXoHr^ks@{0iTv369AE-CS>1GObwThk8^*||(V$QO$zP(p4rbEXdFB@cs
zKt_OSKaa`2L&_QM!IB&k9c|2nJZ`HVW#08FecTjtl1ND;y;xKmk)pDYafp5rU}i!E
zngW<OnLx!=MYBq3>{|nHfMBq}^&XAahi0o`{62oeOhsu0j`|qxc-azlZU5w~8nVGU
zbYD#6l~ghQU<r|;+~@x>m-;Op9owA&mY|xv8Ja)eH_GqN$Z~)*v$M$lsI>^H81l(V
zNc2hgm_dr-={oYEobxt)50d9Gj|Eqc?{CgSFp;`&<aW7`%#NnZQt;7aydncL3Iah3
zNBK!{y(m>yoYinN$}TCZJP!_V>PaT>t_+;3`M6lg<5ViNsSoRoY@?Y%2`WeyLKn-e
zZIzTFgsq4WR-0K9D0ay^bt#uLJ;2+5d7CdCToR&G$RyD{aWq4OgAYX=y})Y>?j=Q8
z$i_i1N>qBrXy{@j+BPDReqrQZRM%7$mDJXjRnD-|IYCt^sIIB1E~%-T3rfq%jU){8
z_MwDJe^J9aGP9i-9;iG$e)`V3DyuYsbgSrWiljq5eZ~qA8j`;{OkB#6;@h}A8W>lt
z_ELZ44opln{=mG`x{)KP-^lh~AAgI)zCJ|Ia`clkEaHa&0O#U|C4`oM8pnpNW7e|@
z5G8RTRn=k$FjiAY(->9GTZC++Td4~El7@=7in4Ckpf*jwkd$eg@>)j(xK-f)b*wP_
z1Lfasftf{)2vPU7G$hPCyiSh@QT9GDC1ZRJFb}tBLp{*~8-MIR3gtty49c*k0~Gi6
z5HL+`Xzt@FvPOTBH6A3{ETM`|^~c!$4J4mv`8>v)5?V3lw#A)792saAG<LH}EDI?1
zjEU@sV<9}Cw~LY_>QJ<c6O4)|F<Hl6yKAV>Lt~C1Q2|m5=XvQ}1~`bP5jGuT<@iZD
zeM!Mg0ym#h#z!3lge}%*N{l%vPX8Xv4kRc*_bW*;=TP3ui#JhLu}NE8)y1Cy;Qz~V
z(1`?ftc5W*@sOnAJ=~h;6ky-Q86f6AAf6!;7_cS9Tg{R<MF2_Ums0>)>+)BbQ4d8x
ziFQ_*M+tqL-@)g3LPH}sY5xE@F~CMKje6iC011aP#m3D2nH+MUs&rvNhk}f%!2&ZD
zjY4KtMBNt4XOocWqlrWT)VP6BcD|0RPiJ(`)`5g5*<Q9vRAf!zYL=VnLADd$5m?$y
zGNCsuB=kxFK8T<#`ErIhE^|Ulg|8x`gADd)*7AQ1rC$RPKu=t>n1@izF=tefWSzW$
zVV;=5QJ7#>#5Ry6y?BwCj?N&QVVo38D)$)b7<co;bZjvRY1DZ;8QFak#|0^rii`uI
zl#xpQ@IFaYEb1^ENpB7DF|!*D4oJ=;G>VaJ*%sV`Hx5b^*Ax9#OVXpbj&{#=++LN`
zYn2qwU+j@YI#S4-RftoT$e&pZTo0X-;{9rzA6G##$@*9X9H+|O^saG6z2jbshH*;7
z6A#Pv<BJGW{^Ea2OgQ_NG25Q(UBn0M`TiBQBjTr1E_3ZKkGa^weJ5@`6gj{;;SSNW
zPc2zNbTCO=m1P@cRD2C)+3*zaIGooICENTAYkmT;Swqb&IhQ1!&2uM2s!6+!A$du#
zP8#(B7iX$0gM(Ybsphl*dw~Qm!+j5<LDFIoGfhVUbHY!K?Sf?}>k+65{Ci&NjAlCn
zD5|QS3(~s`nB8>DKWR?l!K^5(D?$(KQoxgBibN<<H$*{ERb^dCWgQ=5-ct7oaAN@_
zxlL&mA=i|~WCSs(6*P^2JgyO7Wb>u6tWMiIxzyyO*EnwIJiQB!Uy6dT-9Afm#E+fx
zEE?B9x~qYeaGs8ox1^Ym4c7FCnB2QGy#s3{)GJX5Jt@Y~P?iD{<dC7DsB#`kw3BEl
z<I=XBX|2_C)XroSkL?VU;ch2q^K_V_6(?3@VT0eP#nO>HLn3;z|F(`=?Z6YAxZ2t$
zckpUX*NWs4-ZZLnn-#g~O5Kj?+?)-AVRM_NO+jW|54zkAxPAq8zRQUk73c1Q6ErKb
zkSJe{olp`fdBz`;_ox`5m84FDo?PX$<*+4x$mVrDm^6ns)e}8DQ7`>BJa3QX=yn$`
z!x6CGgC~(>p)r13$A@_}(>VUa6RuF&L|3CCrMm*Ct?LoMbU_nkGpVK5aRg(W9tGMw
zmUx(GF%LtUPAQoNslbi{-PX2ex6}=r+-9)bPia|uJz*fgbZ?W31r$3k8(DZcPm#$T
zr5;Al_){~8+JhjPvwDUdq}kiJi{>PhJ7zq^p9&mZj6|7hB~)jA%Y?WXx9%#abDRX0
z6&y5<RfRsYh8H)LERh+NcyG5M0(W-DFO~^p`<BoIvbFC~?pa0Ei6zcbKdDSAb(3YU
zJ@CI{53t+guh$CTS^y(John5DuE;e@?8N8C8fX?}5x<WfL-~{~Vh0$T2RyneMJmk3
zcCBN4fZMW5C9^g`WoqS6-IZ|21RY4voSNQ61MH^ChGn_*YA6@wX1&GmebT!|&|kah
zZnD^J4Myo5RAku>up4AI>u~-KIkf4Tx|*^IP*GT0S5h;pWUjRY%xETd^ho(R`D63C
zEe}2z1@7~Ae8LrN8mtx$o1jXSnkAWDB*<H^A6(-oddfTjO!ll^ZHj{+Yj&dQ($+G7
z<C5uVAkN?m*)Jl7IM~|Jv|{LvZPN5_?V$-Ta#M|L=~y`Ijo)-Oin<sba116v7bbA#
z1zsb>mY^Fi9OVUGI);XG)p7O(CzUT1JKoC4qJC^-tarL$wV;Z!)toY|vER)#t8K15
zozjI}d-p6A>WX}e2((xuQxwn?AX_QfI7S#JXqd9Wo79HQ-pY>SpTx)3ez6%VBC<T*
z^i1RL9D<wF;n=I}-F!12r_pJ5^KL`id4XMbccR5xFdNKNSIW_SPc4z1P*@omu=^q}
zFJ2BFKh+Lcxh;Sc6kyzJ0U(ir-bP4q%^h>4MoPJ4@!fL%I#9`9DSCG!fR$Hk&6jns
zY*S9aSnl~diB7P4mTE?o6>!`#pkGj?;yrOQ(0Y$Qot0*yI?okyeP7HVDHWU~{*FZT
zI6)fwS-q|p+1zACoE&x=A9F%ei9H8mWhKzliL;+UvPDR&nl&V+)Lde`xGre;>w7$B
zT0a`);HlJA%>3D))*chl70})y1zU`i(?%sM1+fAnmGe=~sgE*<+(ISrGcut1DL`Vv
z_X02dcPl7jVUQ>sVz%s2Af$F~MR{4}tQ2D*=9vF~qadczCR~}E*0AaUxhciHu@;BY
zNO)lVD+sgzw_ppt8egQyG8RdEGv2O{s7e})A!yvNw<T`M%?fT!?unyc&?R`PnJP3k
zN_u1w(-Qw!vB=)os1D6E4hgydJpl(~F(k1q(J#KBZI%wC?PLgeG3N0)VuG6y8~kI7
zqUmMP0D4{tn)|WFuoRpLf2_{3H8Xp%&S#&#jbIqrHDWX@1VvC_kTZWw0h(c`F@H>f
zu^{lTkY4#vT@-ZTxpe1)%pxTcRWuQp_mnK#*qDj8Al>Xhxlt&U$0{|#YRmL4dUd-w
z#SBamdo9epj%G%^4oPWH@k9wTvxNjqX!xH5bK1}cY$6NB(d6m`2paU<)A-TilmJC@
zq4zkBhF~T_5V7CSvch&1@QYh*lmi89A$0s+994A*%33NFmoOToyw~e+(h+d(1=Me?
zh7wDm<Pv#+E|oe<q_Pgbl2NPpE2^#pXVTlkO3k89S;tgi9cwY+zp+#00d%=97mMEc
zTp+hzm{Cy2VKumx(s84p>p=ALkZ67!x>3`t=Y&{#Ra?e^NU{ZHAQ#ejIx6AdxEr|y
z57&=<v&X8nqV=R83nj-q*D<bF1#x5wvuKX0EQ#I0rXIV3Oc541hHC*9G{zpPy@H6c
z2TQKl#`^_ST4A<^Bx|d<IMcjqcUVpRJjGa&U5WoMbx>%lfvtf;ua%?gFRJbdb0}<5
zwU0`kNc~aqWCXz5sb+2<f*i6QC!ux_;;ln=oki*#CS~0vZ^NZ(#F-`bQZeIPcYVw+
zwt&w62UD*1wo1}=$~*&_(>yW5LDs{rJmbV-LWhl!*vPOC;00a_9%FCVTP8F;>>YY!
zh0LxlF03mdPuN;!2$)k=HxtY%nF|UlivhwQnLxE2rJi0iU^kD1bJ`<8ZjLUpy1Q%F
zpM6iTm7BsTMd&oaR!K3eG}lVua3}Cqh<b|>0_k0)vnz`#3oA<I<<w(88~1j79N7Hq
zD430Ya>;P9U3wRrnjm+!iL*74Nq;dvpa<#f#kWH^afM&_IfRnbjoUaON%hb7`)!Vz
z@rMQ54}nR<C(I<dFB00O>uA%TkN-K)vp>=n2TQlt)qzzvGu}IKCJ$l#&tPKv2@T1-
z4rgOS^Vwkvs-LPDoC-Shi@K>HmD&JC*{z;V9#_69Vh-#B+#`Iqk?o0LJc!*1AIxzU
znV}QR;!fPk`@_)#Ou(veD0RhS*oSd5chLVNxC}$~7v5bMr#`b?hoKw``#B`9EPL`R
zNKrJ&MN6*Q(L5S7ofd;V0rVVESfovS=CIAp@?iH4j;vdBvX_G+i5PY^N|=1nlUHUi
zyK&!`LG<vtKu#u|BR))%irpShFf0o4>}Zwwq=W1AU3<egSrk|tlCWDHK)t}r`;EF<
z>p&yn<yw1>9$BzO<t2rcV0JYWTL48X#pDVH7O5MpiNhTz|IeGA3I7X5A3OKh$g!bg
zXC7NYq?T4++=o)hf3nf@97aq66QV2<Ra9M&b>JO^{(!1*2)*?IQD~ByV|bz(5LA(5
zo5!NW__PF&mU0Y-Mvbx;<8P*kO>vGgchv-LmTSM*om60P++KV1f8QS6Ym5HBu|>(<
zP^PvmbrKMF=Ir$ln?ahgHp1YEno0SwpFLr$GDz}`R$CJ{<JCI;2=GrtT-GDbnp^#Q
zX3P57gA^$&x|_6a7OYu_#-<%OgtK`(wgV%4y(1oD_N#eo#FJg9(;F){DbRdlmn%`^
zbD|vK9$2?VDzNhxo@JX{im<JH@2y(uU^ta&{ZAOOxKv$_OjlQ16aY$5*p!wL8xF(`
z7MuNfO3LUFUqyjE8ysf$9`k_R9wz4QM@gl1^S8KU^1GP>d**PSs28YB&@Hz9$$d7*
zw`*`33CmmQM@(#XMN)eVCkw%m`3%tAH(gM5D>1}WvGywpb%ix`%qu}C@-NDv#C@%t
z7U-0em(-OMgWB0eMJ2VhrL)V+=X!C)8%dXhu(X&uY12f#Fbb!M{?!l_VwzaeAqHa@
zuKAfLTUpX)is7iJYW((81ERu_TpIY7$xRAWp#0AKwir&cs8_2>C>GTDeXZ|idlFS}
zZEwU<P@0q=QN+b*#Kb|Mvxuq7{A}JNIe9O%zMG$^l**8#>8jL-P~i42rW)`7bf^M%
zU`dfrQU%ADW(ud+A?Y9o*E}eZwU{buAR_7lj#fw-wpT))@~RmP(@SO+o>*2@(@<Dk
z+)z<cR~Yc7mzEdKXqfBunE7OmXZvh+1J1d0OW|j&OzRap^m^UMk$`<rbd)#L=xb3T
zqL<^(C-0tf_koZxfq*wo%?3y%=10_x&Hk`I;%Ggrr->op)s}RTS#&Q+H%DDUrQbRZ
zFe%*ZTlyYB$hw~f_%E)yy}j5AUWgl<aEo8`AP(c!hKiQBvzo=Q)Drkw1awct7m`#1
zzH39gx!|T;zBCrk`6919*)^G!iu){OZ*JfudHsY+WcT}xixrE)`8IcxN<~3$pmQ$Y
zxMvEdlK$@ZQ<q18cLW>$bJEXvgq~9GAc}Vz&?c%H)YfRFs0JtE-yLOQB$@0}q(Q(t
z!I$I9VXg=X9riX8?QM)#x60&VCD<ye0WUNjN(+nXs%qvooLEv*i|hwyhXBKi1beR)
z;BXVgWHhQ-U4~9gEv&A_O3UZ-`$W0TZn!Gp5Z#;&d5C(D)^pT5b%{csZjskLH~PtC
z)u~a6)$z8$<08^$^I>Yb?+FwU4F1j=51J80w#+_5-k=X{moZZ6*DhB0XKIG{2MRy@
zgI(6xU(Lt;i(;CtM2J;sOY!O9OY)_HMC@OBAsrC}WY^6QbtvSz5>&$0RRMCNP*EX<
zCq=?V#=onLrZxp7_4bW)1BVldVoonFn|@M7c^*n41lidgD3>+E@2?frHc>_Yk%FS%
z#B5$hx|C7xFE9XQ0GI4<x^OR8!g*yo54~WltLO!7FL}Kf-(wQV5?ZLzbQHp2An4c>
z7qz%_EVP>SH6?@2F?vJKQArUpi-ftMBN7E+Q3%1!6xCr=1t|>wp+$utDK^AMQBoRo
zRf?dHoU?&pxfuH_w+Y45imE5W&#+ma^RlAqz2{>^)sy65-c#`jnb^RQCR#-3sB2M0
zA*3Zix(cgtUlY*8qt{flX4H?gWYHzIAEc)y%Ap!j&=k44MHMtL398oGyYw|}?Kt(C
z#CCxFNN6tZ6unh3EOdw=IC4>opeDn`HTEujO>a9+y{5MvU|-WaStaf^F-nbdn=pzT
zud7Qt`?{VG6V=WX7nbVNPb+JU&{s=qLHwE5);Trj;@aA{udbsZ-gjn4L%0qUb=L!5
z2r<cnH*=3B>T&n&xG@OW!M?B%>|ExmQL=Y#;@{RW2Xw!#LzySWp~M&vG@m{uF)~~N
z%yvVUKmG_LDTt5=HX<Y9JM{R7={5jKZc@-!HxGlEIZYzlp(I1SL}#pY<KzhHymMrO
zVIy=(caIoQ-1|oeD)$ajax7~Z9t_`_MpLrPt5bH6<7F2DtIv5D<v7q5O)|YH4vYvL
zz_1Pbh!Gu=bsUk~iIMoalC4Ki`H~07LBN#Q(+SbeqcredaH-v(0L4H$zhZbbktyoN
zvV05E{_usZQNQr8i@lg4H#@BOK4NJ%64*G~l~Rcq+^u6z`8*E1IJ8cQ@m+_o^FM#I
zUPyx71Z5;4k(1yi349aTCJFXN{UQl27Iun~;P9{dND|ygV3Pz_N+ps6w~jrPggEfx
z&^jeaa2>)f3H;G|FA0{p&JzW9w<>`w*j);~Fj%enQyLr|NzcTAqD9}zgOdt;f#6Up
zNr`aw?4?L>0mh?vPlSRqh>KL%$LqORXtvuqj8K$x=&DeJz9%aVyb!oe7DNkbUwf$B
z;CYJNPodXWd{2X9Io(c+MEq@QpXB8B!10Asa-68TE>KFsVuwpa#Dq*ARi!8u2s9-d
zP#6puAi$Fp1Ci<FCIR?se}rn-5qc~GvKUl!wXem1owkca*l3fiV6fein>bU^FD@`X
zrvj$hpG^-U{z>A2SGqY5ZFd24V98tml*{e8K(D7IC1~v;yqbGrSQ7!DvfNXd!+a-I
zfMZ_sy+6;)%xC&YJk!yM4R9K{fvhfZn3z<c-Vwm(UDYzjD^g;z?x<hV5e&ydVzJmH
z#KJm>6EinTrGPhmyvxoU0Pfn1;$F0b_HjtYTBoRS__zrw(M$;hKrWa9Brr9=@IRVL
zw-<gIJvu9k$`+=tO91YfH17=Dn=YB@>6Um<m%JF5ct+G2GP*gD-c?*uS~$DBuAva+
zkT+CU)zozxxw-DGYwC=a_4Vl16tD7}jkY~LWl15Off7gC?&eMJDmkgHrm&%?s<O0f
z29hYE<9JGiS{zc@jmeq%nWom;X>ldoGB0fQG7;?}i-CFOvg1(BNVci#j5_4n;%T=O
zm}>TnVjQ<o1t)YoK7p-HHJ#vchB(nhHBI7zwg+3O0VZ=h*ke+(1(2K59j_1HU(C(z
zrV=_wm}gLs%7*D`*BM=0N|Q`CD#L^WmO3B-?uj4nIVZ^}EdJRGjksg=&9px@r^AN6
zBXSNBW>_T3^hkY191vXzIVx_rmbX%l&?rcl+>j{ABK4_qKy)RP1;ak#$H?Y;z5JO{
zp)bc&ok!vc^A37ESq6q<w){}beD`1roUd)dwv0txu`D#GoW+iy7$v!MV=UnWW1MFq
zV;r$z=sm|HDBp{A&y!4!jC`nZlLpD%mJH1wMaEwSt-CV3et&a@)x=U;sG&_w*jwAl
zg!=GB&)(He&wzJ+h8rhm%;$Hu=+5-EGY09t=W;mRVrTqbtm2B3_ld7tK*KqNjcm-h
zlXAx8plM9XnUssK-<qBU{Fw-Y!$RTZnDnjd5pwrA+)Nn0VZt+ECM0jdOia}z;oC5A
zOp>@ZjEg<O8Zpjfow!*LWGmJMJw{3p^u(d!+&%9*M~Y+MIzbxw_Q``Kz8M9UT!<_@
zzIv2fZErV+F2s1NE}cymm+l{Mb@4bC*J|n-NK4qNp|-BDZgy=z!(}imKgoXAv9Kta
zZq!wI7bnD<-X)pWGib8e<`m!HO=MCgRBdi+n}S)Flu4AFE#U#oqvupg8nO|_P_AB!
z&<1x0M(aY&YF;dnG*EbawV`3D5J*{5;VIFdLCNmb2*>oNMsSJaCClRm<-M}vCBkWO
zBiZYfNK{abWHX&Oh0Nye38FTl`$dH&N!2+1p_A|EW|c~alg$)V<PaCq*f{M7sBtb4
zgz+xSKf$!)gDr}piJ(PlZV~C6L;93Qqc5QP*qEdX0lK~D^?qoo^5@k}t}4grFD{DP
zpYuey<zGmeF(pa1QGX28p-yOp48S(9O&IB+S{4n|gxw=-ql=4TLKqI-sL)4dV}gpT
zNg+|~t6_<2iKHpM3h8n(Vf;-aD~V0d4W@G!q)@~^kPY1yBCM%vs3<(CZe~qMVR5bV
z8wxIRV~g?B0^He4DvN7M3Tvw>t7p~})|NOy*OZhOo>Wo{e=C|<Si>2dv^ZgQNzGh)
z6Wf9a!6X)hBg?&C5m%tjC83bSKNJ@6mZY%AeMt(7dblKoMe&xz8R2#nZkvdV0Z#Ge
zNs&#^IHK5NIs3Vnb+4rT!c^ZcT+WOG7##edjUnslb!-QDEc*b}WUN!L5ygGpt?%q_
zHzO+<^C`X&mcX!b#sO&0kb)}1)=h#G_Vm~-Ag)1wTk_a&vvDcy+;e<u>uion*r6Nr
zld*36aX1H*KRyCzx}u`PAl-iPSQLVk>E$4SxpLj4%%#Mu^Mc3YGhqDFB_kq`+<`dP
zMR1V9;<kjL4OfxqORV|s2!l5L91UQL|GAm|*e4_+hs28M=;{-=^&CMvHj)N3Q6B?j
zrQOhLpn^S0G`$-P$fyg1DbB4pY<CmmPA|^p5oc;Wu`EnGinfXhH7ynqF)LASo}_`A
zx-m9N$%+oC<#c5BdLaJ`cG1sms{Sf0BYJn6E@)z?O0HDo!c(GX-?E!Nvh}IY>aZBl
zcsXVC0Y_gN3sy+p^&G&hP8~%86358}Zk7e#bog1V3&&2nN3rar3s-URv#RbPv%N`@
zL!hP(xv_;smWk$pA8PbMIaC;Q&8qHOL!A_QHTgfsMJ{rT=wq{}qn9p&NRpH$*b2q@
z!QSAy6<p_LG}81;&&;%uespdYW%JvX#V(?(eHK@Y&38l?gCZ0nt7vc;F0n6YKtLuF
z;!Uco8qbUv0V)Kwm7M%&_{be{fM7d{ONl9H&kDGTD@Un2rk|=DqxEM-?2jy3*G*VT
z?kw_u)B@@Y()_Y45#tXpgOZOaH<6l>2Q!U0j=bmb4p|JJiFOp+y#v>XQHlbU0NG}p
zk8FaCyU#c6xa7>?VW^So66i_<bN+368ao~f@a5Q%IuRE}PuOVB6WFkNTrG!YIJKCp
zS2baMZnt=FhMvn+N@IU?nCHkwN*~L!kkZFFEuc!LvGf1TnsJ=^N6q7Yo;A}m8^~!{
zT9y#C1UzG?l5x}G*+WzvDz+8k!%}E{TXqT+ZiMFd9<aO<Skl171V>BF3JN#biYtvt
z`;PHU$dn97DjPu#fe39W>MerK)^Rfc|5|LtJz^?yQ|#PtQE{Ag@IPx+HA(c{$s}x}
zW}VN-bwaBMeQ~R7G>~LnF}N7*@zAr`%c4oMXi8b2|GO*-`p{|v>=9aWzCaG=4N<JQ
zYw9TV91?Xw3Tw%!Zsg<x*O0PxY>*PC@^`U5Ue+X+?$>W<TLum<enWzczfLQMy<_}y
zTROBD?cE=GXu_~d+HZTr|8U$awT&UJAw)I+hcQGc5@Hce%H7NHJ+z4Sa(r(&9`sRA
zEp_Q(%__&4io<}Sj4Q_IG7T$115OP4&AxK%pMA_Edy*0Qf&qRmBMm>at*CWjt=|o?
z9;oM#Vhh-5TDZEe9_yiC^>wLxMgiM#CVIH8yw*kOI-WSLtg0)?2W8E&f-Zm5mDkde
z9m6+~jCx;VKtu^iO`XVC#HRqbHkhseQ5G7*A_U+ARjSl1$tZml(#h8mL09E8p-l_{
zNyeqb=DE<Np4DA-<+Tk(Rh5+`MRip*4J9X))z;Mp(!1~*oZU=Qx10p)vY#gEAc!8O
z0=g0j3Od0MluMc}%A&J!lP2oMw?5<Iun8~;CT1Etc-S6@58H7~f{Ts$^{Cj6ZP>7&
zY54ph#bNygL8EWKN{j<jBY7yQy5t$hDJN83R$Et6SyIEVE96)Um-N$a&j=udLJ1ht
zBZNYA=o6-&#j*XvjZTUY280SGhx>>huC!LEm>}tj1lXgLWTZP>Wq*v;Dn+A=(t!>&
z2O#G*4p&waY-6_B(Xec#>T2p5>Z&S=3hNqX*40(lQaY)!aC&)3F@%TTSWmekT|&@o
z8CW=qv*IhD!XuR4rRW$HjiOZ@kuXV~uQGn@-yAGElaZW3{{46}Lz;gN-uxVIYpCot
zvbn748P>*zs0sJFF_6y*Yr;KHH0UKa0|}Rh;@UAi$rCUoiifx9L6MCuslt`6Dxn8V
zZ(XOTsbf$4QO!?El2P-1jf(zCEq059X2Bt;$xcoU2&!mi6S`Fn=nG2Pa4IZ{yR7}P
zst#Xl&&Rv@i$a{(J-RS#44qX8Tuo=c;eqQ-a&>0H%OE4DWL%aFpz?EUPV`MwR9*;m
z#Y98rBWz6!Rm5<-{pVCt@rphomdn+u5ui#Ack<~p#z<>+#>5TEm7>k0kmWB#G6;sY
z0NEpoUS^)fqY0j9@3;ri#IZA2G$|}fOcRQyEW%96<q(F>Q27NAhUFB%#>8CYN>&W|
z;9Pij>ZC4fCTu%9751KVbSj&9phayHw(v3cwn^%?BR&>$aT(F)OxK`GmaD_)c(N}@
zCrL3g<aiixs$BDG&(GNyx~EgEFspl-egRX))}>zcNs(}=6n5OB?!Z550p2uuB%yxO
zl$aV6OPMd64Km<`obP2m6T=36nnXx!HzxwrJK_eGK0N7@B4Hoi^?jDU;Ts;wL9ud(
zO<1nBNOBPE1r$xVJOd~>kW@u))8k5sV)U!?CfWFwcnYBGw2Nn<2Qrcd>v*!)0Pbqs
zrvTjXKCKNn$1g}7I`u@V0lp`TPXTsvK-KKJlA4sbKviP8s8S5Tt)`s-2tvdcq%ese
zL`w>sp|(vniW^4>cxlSuK%1{c*Q1ta@56EI5HZj>Pg*#!@&YgQ*V<MoiqSFkWTMv}
zjE2d1{WykSD+ZC~_Ey(aLA6;{IRjLb&8R7?E32vmRi)shigHj|R$fx;O@1a6eGP@~
z1zzf}%u^lI))s$$l-ZH|{9=vP6jcRkGf8eHI~fTJrkj}cc#2S*$rQ<79aF4M=KT@M
z&PwV<o~SBDML7g2OXf5b7uFRv6qnTi1sd5>lQ}AoG*oI>m)b;hXo5Q1w$SuU0;^c!
zSbQ{m!(hN)*;JuS9Ojb3BDxWSJT-P8#@z5`Vapf?JY8eK$a<JZ2YBI>%uuj#4rCjs
z-hOM`7F%@WFqp{`HbAaf45oMBa5&wf+klO5_f=rqVTrMaUliv6_8gxVRz-A)W3i?{
zAYOntVRyFx2rt~o1n%Rri|OseV;N|{606maT<E5CdyHy{l$SMI6CG!GBps;JZoVtw
zP&N6)eb`SH+wI?(z;~z1D-9O@)P;GIE$yS48D;k2l6xtrlPQwQ0iN=SMJM-xI;9B-
zfk8|3A~pFt=ZQL3Hh}WgBFN1mT5vuv^2WH#@&cC+sA>r{Vl*rT1<o06PuHJX-?3yB
z`;`9uM0-mvju+a5swg@Z`lZPPGopoOfE|ke0hx#VPiUtLpclL7!Ex{_0CzO{XI!)g
z{fd5OQL#$!b5<1}QD;mqnNe2RRazUUDy<E8=X<@~T}_IbDFyPTNK-3Ir%0m%d0EX`
ztTEFM{A0WY-ZAM?R(CEry=G@<jmOaheKKB?qOx;@ypwL9opBS;+L{!VMHO|kBS{w(
zV>UWk^I0&=Loo(&yo5r$w&ohre;QR$Xk~tNl+>^wSlnSwkds5lV2(PP0mHDyvx^ci
z5Hm-d$DjdkffsmzEd`T#vd*DlI8W5kFVvayx5)_4#x?#J;^8EW;}yQ-Rw}-hobMor
z>r-z`X)QZ)+$A>NEwkf#OaP2>E`(7@Ix)g_h#>hnELq|{2a5CTRm=D#!Q8m7*GxmH
z)~cw^_iI7_8VrO2WY(A|yJ=qpNAqc6G<+2JDS?S`eBp_O4OP|9g|1D~#_0BVjMCu*
zj1g?L?WUrvtB$Rd+47i8R2S4{Q72#c+b3_Uj<-$6+oI#_j}D}Y1zjkX)PRSF6mmjJ
zB~{Z);DnK+!M_;Zg$-ZS9GAl7x2M&M$r~KzZWmM>DZoo9X+Vrb;a_AB5u)hbM+COs
zaMhZKvtb5J8fXb9t1PXe9ntvDt;Tz(6(eS}un>bgri0&mflo}<L>*87sbB$M7}&65
zSPn?f6x)RGiGnJjL{6{0ftOu@EKf3{T3p=CDlBR#p^Vak$DyHRi5iCiOb40_9OKhA
zF?$R9#E2PhE-uHiW0grYUwtutYaA7ViU_cF3)iS{iM3cySQOUOm6aA2)m7EZZJ1qK
zQsZGaJR8aFt*u87xc)K=z}1c6n5B-Lh9U$fO&!on8+Qt$Shg9(PJni7_8juHb%ix`
z4dqouh2;%3CDr9+MTK=$308vN$5;=i>zd?jI@u>r7)O}oweU{&lyHdpYTsyNu|3XL
zB^=@%1j=H2Dd*>i5T*Yavfw5<F|==y?x&3W_5o{SiyJhiQ1SvV`!6fbPa~cvPE57!
z(`Y}@i=}1dB}oLsDJ*<SIE4NiVwcs6c7S5Xk4$)+!z(-jq>Kx7;y`}loj*{Y;?Uij
zo(Z?$vZfNW?P77UVGRW)HR@#Hh@6W~cC!|^xRg=>)FjE0>gY)?0FhJ<GdKm`z8oCY
z&?{yzaG{t%7Tetpqi7wI3Ntvdc3%fK>hu*eP;*F(M30#v!QqorI(l>r#T7E=c@(Ev
zmJNJ>dlbb84olUzM_Jto=w%pnRSaU#expaUS$D{ZO?a5aT?*LC$%CL>3Wp6BwNcQ}
zy(vu>!eLQmEyS|Q+PcE>@{$@eSaxz*bwl0U>Jr}mV%svk>0O1@)p#v@K0jX?P-iBP
z!n%Rpg~5>HsL>1IO^LRL7JB0h&H(C;H$EX4;}v(Y07?H8xPtOdlH`g?20ysm^oV`L
z70I$-3IipJKNqBp%=Ibi@rV$G$_)K4qq3p>$5Yj&u@n)a{I}Sk?~L4e6lIPGQAa$Q
zUG@qg>WD7Hb*d<{&K}mWK-d+Fouy1@jwmFK2}Fb_nFSl2NDu@t&P36paH=W>A<L-|
zK_6rLH;{ay6__zx2DeLS9#lj#BFZ|Dm5}I@LiSpZ<o>tOObmf?Nfv?7sI-ZQVO;u=
z_LWLVEDO2jP1=65I}1{1me?6cA}hz3C(ib05#X@K8oH!>Sf+eG<$LrFVP_f+i*P^W
z;Kb9Kt|=ucB#5w~Xstz1#gGrOPqLwC%nsJ+2|ahP1T?E+6nGa%p?pVeNmXnXJ8E@R
zlAF<^AP|t_odQ*ihJ~P5CwAxo?}(AKwl+UBm`m8uqA0BZy-;q##_E7-p2RUba#Hb-
z0AI{DBq}J#piu-uOjja;E(L{fxD$j#T~s5IEQW}QpkTcnjHxOV;}%8JWg#L0MTMO;
zQ3o-UL<Jkw&Md4cDQ>8&DlTa#D+Z$6CaH>y#J`P%%6y=%MN~zsZ-6X{A$*4>8kT~R
z9_|EMR18W@oj}q7Z0Pe+0Xt+1!g+J)q9-B<j#g0VdS!BxQXy)Z&`cs0iOis)s*38W
z+7iPQ!Vfz-o6RgKuW&V&gb<m+2&6~Rp4l#FpjnhfxEX}-EvitXk18i4$RW@oWTT~{
zekO0vHz6sHH+5#WNEQQfMF2t{)3@j}N$6=(P1I)!B{(?}^LxSs_?{^dC$0%}iTz-X
z(k8wZ1LdAx&gB9lXIKd@;;LdqX+y?=>owa(A=ny=A~V`~Z@@Yeibu*O!+woJqhJ(d
zN1LqH@NeeOSURvxQYuJcEayQb+G!q=G?`Irrk|x2BOsdw&w+=DVS^Ya3#b;KA=oeo
zDI&Ih@GEdeMwqS;N+Nd0L(wbI5L87$7pJ2(RZZneGyE%bRg+y0oKRn`G{Y8#1Hy8#
zs0aPHnLmu%`8o`SAV5@IN({nMdTwyUrY126-SOF)s0Mf+W~fSxL|6M+N3yth)4Pr@
zMdt~${mWwIXhU7sat>ZxGCdJ~HPtDg2ghxwt7<5kSyD8s+Y91gIisd(b~V+OHR&La
z)hbPTxg@t1%Aq2}VI=xt$%wIpCs`Td>0Jy`-Rw_jbmr<~PlqDRnA(V-mqS|2+vAzC
z3Nz^`IwZ8a$3Sh9u!$|cRfYSb4&43Fgpbl;@yS0XuDdd#(Zb#ESme}(zA0#qhJZ<m
zO#IVwr5O(r6=IrL(jf+8c*f3lm^^4lp&*|qs+y$8E<pH=F(geFRNYL_=L2BdkbcGn
zZamWO($(I~Yt3J*5f{ZIRSXqN<SILV{!BYEdS@go$*l&(CDEn7vmF^<iFPLJY->c~
zA4;2;u&1pN?y0L%q(abiQJp1r^7}DO$ar|=t4+fSF|W(8+_nrHA}(?JlQv90DgYI?
zFV&9eKUYX%V51T48H<JlU9`Bzy*sZZS?91Q$g`tW;Sh;eCRlN|=5}at7QxoY;5RCo
z;>K-M6WojMN%6b$+mfwX4keIqx&=~R<ZT0KvFM2ik~|>EKNJ?(rvz1hutiXHMmPJB
z^Wrz%@R?#b0ue@bcv55J<mBW`7&i|6Hzy~@{@=XZoSXr<<0g)uIBxv7i4$`M<m8Q=
zkdre2<Rm+Z-u#I{T{$49*JIfy_bd5hE^EFAB>;tDK|P<&aq-~uXDnU$z~3gQekH2=
zPiaz>W|~ht4pp0P#GmuYF-)bRiy$AQA79!~Q&m-Gor<Azm`2eEXkb?cmA^yoiMdas
zLmQIRNDk7NBQxZeIKV@k-G?BjBhDcR(h(sFv=${64#Dn{Y=nKq4j~c^i}^eN0S?~8
z0>+jHv8V#Xk-<Nb7M6o!d=~W}`4$p%!S)gUM838wYOC$59x=d%(Q*Y_q&6{RYZO+R
zHEt_wbpxag+?<h`{G}}JFJ@tFPG!JaG-JuBkIaJOMWwz{ORB}9QAO36&*V1`XSZY)
zBL!NSha~K(0`>{Mh^Pw`ZjdE@ZvD0QPw)PuzW>*vBzT|JlJpn}_x}kK?fZYuxQToB
z|2^?%#4-LxN%l7iT8qbn?>C@QewkTa9^;TkhnsmI$1?&{2pynKiik=KKT(G=$~E&4
z7c7N_o5#pI?0`+HVtSd3Q_r<PdakEJ=%^tO(=#)9t^Bz;AS=r=0?ZL4bjS*dr=!v-
z(5VF;Ei8&rFgC{%lXWQ!<^k`*U`!2zYz<^9z$#su-449RcD3kwv>}L}p@x6Y_xp46
zCi-%GIlkQdNja19{J89bUx-Tnwp>4sG5cFYA*{D7#G$XeoE$HxpW;CW-{>d|VkXJW
z2st`jU}Bk_oedD8MyuQ$gIXRVR+!#JNZXC7fv0y_r0E9r^&UXIxPnHtqP%DjAO6xI
z=^)obB4#Q@TJrbNxd0Wi#dOQf@t~7vLdLut4?f$YXMv!LA>%euQ!E_r^!a>}49a9l
z2Stjk3lb^^f&13#3chqrSNC_c_W68XPkNUYRHdk{;Zq2vtVj#cbR|k)mULhWb6}uz
z5(`Se%eP1ULNp3_+v~A-ERde(fvgT}co26M;*g$8#2}D9&0{PSx%flg_82)5WH$k5
zTKPp)Ra810im|uqCm8SO<1JeZ0iVyupBwc2$YL6iT6W+Z=Qs)Zkh5k0_|Z-uRU}!@
zwynTO4*--F0O?&8@wz?a1i?N>I6+y2tRkqLiRYK&X_9_!wYT>V`IGeiFE>ka2hA?o
zK}Bv#DhLpN|If{tFwwsMkDHK_w|D>F6Mwq8vf*~*L#Mi$53MpT)??J@0o~mmO$#>|
z&xB~8uDrG_7yqx%_-`Kh@7O7*aZrSeA_WCq1fZ+S20tpQ8md+i6nzmTChN#I>+bez
zTG+3LHD6HG9dH_2#m=6<Y85*%EKSrjNs$|ZLJ&Hi=*T(0wzfP!H!_9HP;3&_23)$P
zAt*&#L{$R-DDo5!q?0HkVvH~<KeIJOJmkkN50|Ertc$8FgsT-*p9$#;L2+AZlH42?
zYjq*mT2|dQp(q^FbWw%PafuHwFF(IN-$4l806^2i1oyBef@}*$s@?I_8A!>oPG3$D
z1E(=fZH|fhQ<LQWHQ}Q6_nLz4?jA0u)iafq?9YX?uR{uJ=+ZUb@)4m%iCRlDr%hGG
zsB)Zdbk=-dR~L}vU^o^MnV7r}n!Peg1oS~JNv@fvs|)DSFv#S#B{NVoUGoB87V0s@
z1Fg)=bmXXXG&Ct{yP$@|5Z1RK05UT086>&^>e33NYrz&VB2MwZnZkC8rZ=EUrY=Gt
zcGxHgkubo30Pw<QUO*2WAEXl^(v*c!e4!57i8zr>3ZlRf{D^}~4Pm7j$CblMGqy8m
z`y-naS%j^0DI&?uQ(#|Yc_-?M8o{1ZJgV5PO1cOZFt*LKbl?Z77(($pg9wl}P@1|i
zf2(h1Tkev!yexmFZ&Vhrc^i^Hqy$?<)sF!9({ugldAJ@1q(!hLCbx>A23-|o4Q?}{
z98^NkOorP_Ff56(-VhNw8XA>QXM-j!7D3Jw5AvlE@%#vrsH${yHmITyYS4)v4kqX1
zOff%21x;&c5rvSb0swG<D(h=dQCcOj0Yy^*SUPHf-!}^Q+1|kX<HqusNif6b`~AsD
z2CW2al@n>ULCEk`4X#M*)3mVC)D%{PP<MCoZA%q3D58B0^}^HDMBSnlI4S%1QdMcr
zu4)riRSJpO(*;e;o~?#a;6Tgw`;iPxaqV7eNM$y9E(mus=7SVl55{&8`P8v-0c7Hb
z^(2L?)C3e2WQvQRHq#SsrCDH7PFDQp^jc?uapT5j{Y(Ubyav+Ao&a@P-;uF@mO0;2
zzd!c`4L;#Po2h6zVE$le$u3N(0)I-!&4f^hL8D1gU6n&f(x9PI4LeScH8qJS3EDyv
zVbO-uXh5zncM7FT7sW(PZ)h}n0i~(Q`t10bp#emZ%%oOVrJ$Z&2h}?ycy_HAjH!~|
z3A_=ZBU@+|17mZ?kDZW{lQYH8m$k9RVkII-vgQRsxLxQ(+QL%#^!`HfkZiM8^(MyJ
z1~?NjGu@b0OqIY=+ongfqaSugJ6Sp~(wsOO0g0OSt(JF1Cq37wUPX3J_}6Z8>L%s!
zG(p^X?%AnP@i*Qqjfr98Ios`?L<XYL&9GWjii%-L7Bz#>+~tNN#<Qc%st^*1w8!wj
zT-uU)q9hLpwe-3)Me2mrAWjLuRg?9wR>Fz_O=4pMPo1~~yu;xz8Pe4E&Jp`(Ktlq$
zJ>8z}UdMk@jQ>Gpm3-ij{7G>BH!d%Coc;VScf$C+@xMLsX9TDaBpFn~)wR7=0N35q
zuBffhguu0-MGb&)Q#|}w0QBm7njR8W6acUsG(diI_>HJXSZou+PXC|ko_x#?0`!|s
zUvdLtd5TIQLlGl?QjN)eGME%{&X{qBv=({`9x(#c*3KlZ7bs#wgt{sU5#m#mXdy?Z
zC5o+}<coOm6^K%Nm6gqcNfCm~)3UwWxeyiYAq1@Ds3ARKn<(oVA{$}Npt+xD0OaQ6
zjf38{2kKwc%0P*%t*8e{oFF1aM4#Rn6_L?JPOux`4*&>O)WWX>by3g8D>udC0p`U$
zt)WHGT9D6<+;u#*<9lN)*edF{$pqAZibdIBjLVrkf!~A%lbbgQHbThT0OaM2vww3U
zz=<N{jmybFgdmX!yaT&_MnMY4M<d997R3BKalA&`{xWA!+SWFw*lPcxfpIyG51RRv
z*HITE(FUl<8c+m>&}e*4WJ+AufS#ojD`Yq|H;{BO0QW=yGSXEsqUa)YTU3w@jDN;7
zQ3dnT;glOtVnjXg8dj?pWO!gteBuhy@pzrOs6jgEz>94kbSxpNq&4{w!fg<mMOpV6
z?QG7HH^Yu94xfPxDGCCB!52YBs0P4%FOB<rGAzO!tsHJ*O~_~gO*9A>{TKa0rfI-L
z|1esUIR}6-d-N-sJp9p43XEWsC{P5@_!pXi0oMGHU~08eMJ=kxnux#9_?c~)f0Gu7
z^msseF^utM7gFD>HJML{A9tgKB7ogUDh?VF+x+C45$$xSZK{2Wdm|^7%BXatdSp~y
z%-9YU8MYar2cr$L5{+ps=C2+AT17D`grzpo3P(;DkG_m(UMxk;c7_(F^e?g^L;g|d
zv63ksPq*jiwuSyb{z=;Yr!L>7I!1!?|FPpIj<?zWx#P!<-E05vi9gug%qJ#?6clU3
zW=Yf4PMiQN$(k69sbW5Gx~R4eKBFx<Zo{YR@yzC+5)ResiYhdVYy=Bsaur!$^T~yr
zaHveybU_Y^#M93QsFbJsAuT-|wielunnXd5sbZbd+#D83?lf-42aWEdb8Xy+sH;*?
zBZq)krTV}UAWL!xZeMw}<4Ak~TaufN$;p}$7R!}pBkx)?rs!fWTRkv1x+=Do4~|1%
zvWw|1&8iR-n_^*~))Lc0O1tcf2pvAM=lMd!NAX3Za9Gj;U0om&3v<WD^)OKD84zZ*
zs7gwRWN(7poSYoPJ75tYn-4aw(BPEq9-t?R8<MA^%*Rfs2hDo0*mi7i8_g$#LW=Ao
z33>thvg4&h3(p(q6hd)h2m_~}qKegu60U_-BcB*rryOM3Aqwz1I?#b5bVSTSvrmd>
zu&?=(ONS1sLkI5A5vRi`kq##XgG$7w#USg*LbDiw3wcVU1KW#9G(oSMp@~B1QS9d>
z(@%{^J?^V%VY8d2g`KlR7OM#ht|=OiyyIvTcnOfReXC2l?ZhlO5Mm@6MkTKJPI7vJ
zB@tqJizw?jw<<XT&|R$Z$B8;&Aw(524C>+EP<fQ(Mve-a)~=`_7L4($1;|Ol<R@g*
zP<NhU+R3NrEmi;pB18R<u(zU`8XzR-LZhJJ@PYYjRMGTiRn!)RS+Ox%W7RH%!%BOl
zB3GNO869tecDA$Ym;}S(7(hO-zT-=}YB(QwPYE>!^Q|v9Qthh|!y+8JQi#Bn$fg=l
zC{hC&=j=on{rpzeUyI4?KsTux5K^T!xZ5gfGu@*Y{fzO|L=_4~KJX@jKASW(q1(9%
z6U56SH(E(MR@|2OBRd9%Zz$n5%^-?}XxVQO$n7n20r{<_8$}D)g_e~N;;lIQp*2Dj
zdxHpd^H*0ZgV&EMSqboEM>T(sGcK<$KeNj&U=g9CDk{p>F_Y#xjJc-HJ{U5#Kn%E&
ztcx<VKg}oc3~LSYzw0Q(jN$cXcCnxxs%7pZg6(D^VL0{&Ta$-o?`grL9z0DR9MuUz
zYEl(Qkr4JiP;xGwx-Lb;3Q3OXB0F=VgO9ZKk)Q)<3zmRIF$M36c&CEk)R<f)Q|F=h
z={^=|yw&krf+benFTqqMsqq|!pOD>%G|7q%GJAwuma8*h6I3l4mUQyQw^pZ^mozAw
z@}&GSTvDK>u%cR2gQBbp&0-)g$NXL)bg<th=J50bYdquWuy%9r_h<7Tw8SPYP)WHP
z$;grmpdN^k3nZHarRV|?-`2x8m<fF7NRWmR3BulN-xP%*5=<-zQixREGuAFKOsY##
z>O5KIhy?q9F?c{yX9^w^4nvT2G%joBr@TO<W1?juj3UUEy>dzu!OY|tkcqSzDot4-
z=)o4?UEmv)sc71gU^JQ?6qlS5RI_}e(!E?RmLfv4=u^e0qDk<FETrMgVVulJn|%Cc
z*j+HcH4qz?(}s?VE3z0-LSmR{MiI^U&I+7Omdr*%R0)Tbxk7{(_13@hQ3g5w6t9~V
zTAILULH@chX=44cB5;8Ci{WVDps|fux)N2wN^>VoQR6qaRp9kWk^4;$36+$?=rg<8
z4$gnsJF<y&-|flty7y$s+?fI$|NGj-#ui0sMVO*rAaLVH1l=Y<wr)1zi8q`SLMLey
za>j4**`3?U&hkHZ@ISfppRm%bFt;k;55B0}oa`8J&wuj9<xHF~){*};esBKQ9{F=-
zb>$4t;hq5l26)P57S{|I@S8uv{~MAvV8DQL2X$;7Fkrxb(V26#0Rwy^;QtNmxN2J4
zfC0+}loc1&bqxIUjWaHt{lY6b+um$A^p;~UX}q#*L2dDYg~cl~kN@*IEzb`cf69M~
z&-u?c$B+BZ;lYW5XXyPS?*Dd+@L|r-vE|c#eDT{amabSe;j>S>+wRdi>xV!6>20g;
z*tX--`(Il6{$=;?-cb9~jAa7`rVSc$ASkf@Qt+R&-3|ZwtaY{X(}3l*PelLD>+^2f
z6VbmNvVVc|Tfy+k-?Bi^U;aG5V7O0h95}@JE%Twrog)uS``iAR50zAo;b1jToHUs;
zGEfJKcRzOKVCUdq&CrZ}IU^VQ)(jms`IZ6B!3V9}`Yw+ij}2bA)thk`ha}7LF8c##
z<OA<nmN)<1|D<t9QoZ8*eK;d~hgGjQ>#~yua7gk*RNcE6dlzHxV(eXvy^FDTG4?LT
z-o@Cv7<(7vSGpMBinNSN&O7>FZ{GXuf1aLw#$i|dq<nwVqT2QoPuu-S`1?mQK6%r#
z`~JJWzhKU)sXKO@x?%SzAHH+jz6~F4c;Jvz)$ccSjokI=^w&;%>5A1qTz~TsL#HkI
z_xpEjzU7IDyT8)Eo_p`3r@nDjckJGxj8879dRII5>`M%suUVEi|FTyb55gFIbXber
z>M6NCHseD7mWfkV-u_5r*SNa7x76=iRsGrGr4Kx`cF=_I_t|S}UOe^FcKP>To%8&z
zi3?x<cKQcLU$V6I_mAzr|Iz#X$us-GoQ>B-t~lcX-z&RcSn-eRAKX6g)svqKoVB=$
z%s%sP%kt)*`PS*jVk-PS<Jo5ytEcW-y}j&~o4+Yv{qN5<RWDy0eC4*a>nAMv=B?^0
zKAzV(`{Plq2gP<?_{8;}uim+N^9$=v*fe9%zs`JZ_xSeDpMT+u!_LUBuWb!}`TmLL
z8N|J6SoMn0yZ-RuKx3i>Yo9&r_>#2?4_)v5{^3X3x6J?P(dG{V+uyo<>DJp89`w5#
z)t5irc-`l_7cbuZ!TY<vS4J<``O?+jKKRnYmyTM{wq||)(`O!b79rYS#|;$k{^wJF
z{)r4#a>$UQBlDInT(GlJ+_~k$v-Ur_JM{i%8!p=Zk3Sst@WJEXy?5k--7h~`c<O?$
zU;g3xhRgrGYtse$4m&FUo((OvHyvY$*&he5+<NfT$?Hlnk@Rw~WMkx+Gmo70%`?}&
z{^jFu&iQHbl69ZWsa?Fow_(f)?`2$m&!0C|yf^3di94?T;Qa%-nqPSAx*M;^eq-8Q
z>*P6)j(qb(gN>gblKIe8P1orwG4hkL4?OCVd%pPa<LKC1@0xSYlBR9lMI+yMR(tZ;
zVOd}7oPGRYdCVud`j_Xd{nz)~K3;XrwlQz&dPUK!`|me6_pb{Eig$ng^yRA$LEz^P
zIqk}M9R<xhzj^zkD_>jl#k6wigtEKN^5%5Bz2lju@13?}Q^ynM-dcUplviq2o%O~>
zuph>%d`RX)V&mbSKO(51k~KFzd*}U4?|glE@XZA~o*S!ue&o2H)?N9$Jnrwp^5|{%
zY(D*-x%Xy#I(7ZAqwoFWB0~1zhgPrH^wvKQKNul4^KS*Ut-+n;wRa!+a>J@=-)=v9
zVE3q-o{T>5*t3lXemL)o8)q~P9a`1mX_&V~4cBY)YX8!<Z$06_TeH^;UG>>_<MZ(h
zCoSK8?B)yh9d?28({}$^N1wXz<EH|f7XPREl7qZ=rQQF8uRD73hB>RI&c5fpckVc2
z)prNCzJ2bH{9**@%k(uvS6%bUgcA{@YR~fRzuz1gf5aoo58jp2w_X0+l)H9-eX9Og
z&~eG5`)vMx{Vkuq^7xcT!qe7Yd+3zYE+U+;bnwcpUrzb9v=TwQ@{ma{c62P=ar*%;
z-uKPUPao(Wee?0tca<DH<g(GxS?|37)xa68Z=Q6w(iEw!(7R5%a6dwx!h+$IhZ`Jv
zU`zJx^3-+fmV7m>VgAk!-#T;J<h!<P{axDQ!+xLl(TeT$A3c$MML2Nh`sj7lryW^z
zh`~H#2d&)t^v3NY@X|j!eEEfUz8}5q#%Ctpx9j;iMcwaae>Z+);M0`_JJ-zb81Tu4
ziT7{V`r&oe;<hJO3-btLZ~SiX%B@d-{`PGA@3-zt+xo!OTL<oc^vzvgojJL^>pJP0
zC-Ns$-dymnyfaSz>VqSGTL1p`n)4O}KL6VTXAy$T7_@S0{*|F4@anWKU-9Dkv%Y<1
zSM;+}r%h<B{`|{Lo9C7PS4(?i*pL@Kh(7wzc`xpYz4yTBYe!xFNztDkI0RGR@<Xdv
ze3E|AQ;0eR#|?V$oLeRwS%1j-=;5P&JMn^s|L%JG^uvaPs=&&3A3Wr!2Zzmh=(c5F
zEn1j!JjQy>ytF5xZ@m3g6GkC-`93>dIKTbu@4mY7(chf?!-8-AGP1N7<S&2i`kT5t
zzj&v%{lq^=lP<dDp+9aV^ndu^>J_6e{AU}U&&h);?|eS{U#q`(@h=~oQMqk+{okf<
z8uaCe=$p@9x@Ez5_3@u>K78I0&n=$+tU@-1w1MK?L#oG@A%=Jk{QLU0PgWiA=B_tx
zn9{YX;leAv|MTAt{&Ou@vi65FCx5##^3%W9$<2qK>-l~r+4@GW89MC7n_t9JzjDyY
zuU@k1=!+&UesBNwsvo7x9v*VbkOPNYF`>JC$ENFln=NPGKJw##uNg~dA5MEBddms>
zW9~kFWcB8b(8o`I`N6OsuU6ihecdsGhO9hs&F+_#4Yz;TzPbIJ>m%1?y;4}XkWlT=
zv?rohRS!EKq46K@fvdOdd}YOd&wKj5e|&J!tmEgkA9(qI<r>mBOTMY!dhgbITkm>U
zoq6DCWSh7JZW9>=9axt1<*^wTp7Hs5&+47$YyKbZpT4XhZ}8H|->o>{rS-Rb_wuV(
z9(~|AGUN0a1;c%lwY3=-jZe}}pZ?m%MQ1%!@#fOptur3KA@9TA4NN=opdo|5t}Z>`
z;jeEx`nUIC91om%-Lky-HO-|P@a*>;^x*wlRvmrO?niEIR&HK*=ZHBw?>wdeWT&nD
z=TV+d*4}s2Up_r@((hj;2+v%;EN{MNWZ5u8>5X&Ko{ChQ_03aDBOh(v=aFuI_V~fO
z(hJtKrmcPKsN+9d`_{IDu5Uhazg>9be^wR@_r+?jeh4vG!}9HGFS=mgVfU~9`lFwM
z8#dqZN$2O@0&suYUFY2U{!{OrI=`!9?$QJPNK{0PZ_UtEU+(vOH$>vGGYalr^uv_v
zOMiR#?uWiU@xZSy8?d}_zoDx;c1?TnzV+|ye1FLwcAx!stac%prf5<+8Z)r`<8}2{
z+_d|(XCDuo729#sk!gc&P2axp`AavvzH{3H-+%n+k-N_RGwxSYFx+?k=2NOsKY95-
zJZFr$bII424!=vhcEQ3igN77mY`=GI`?+s^^Y9l}2R}OQn~wsBK98+imN);!=9hOO
zrVgZ4+<4AyZRef(@%3vbUby4W+tm6^gNB4=uWA2IeCFw{h1<4Vn;m)Tqsd=>l!bdk
ztKr;{uT?|pf?LuqJ@=;l+82EL*6BAKHskEG3Z6{c=lb=#zqxMJoiByUKP{|!6tCcM
zP?=8tytD#R>dXWGB~7il^Sg(l?blr7|L^G|3P48M0TmnWIOUV(j7!eTc>Ax{VATh{
zO?x7GPt`zVE*^MqLF?Ms*7X;kdh+(_oxhn|dCI^QWy=co8~lCU{O_K-@=f2AoSUm#
z&f2vs17JP5{pf+>-MdfPc_tRW?0?_e_FC8V4fh0pj2(L)7<S2k<*$2QpS*R$PxrJv
z|I_z@6OR7mc48V`Hm6|tw)@5`NXJ^^&>?rty5jz>x3|CYC#~xX<t@nBYd*MW*6P(i
zT>sq*n_pcr>86WjERG=KZTUBYS8jcE;;n-b4j<mSaryTjAMoORZCx+i@%TMyFC7A*
zAGY)1(~j<5_meW?@ZYw5ci;!-5Fx(?D%gj`AlCB7ERXJUb;%D+fhnK=v|0?z-+l-v
z0FR@MZ|MUMZ93q|PoDknQ>CQq#6c^!u3P@Wjaa$=VR`VJGd8@u^Xd9SZm#-r_Fd}_
z0tIi)U*1r;{+Oxv-gD=*?_ajhrNhYH^7fF-hkp0y38PWZg*(<h?Ds9Xz5ToQK3MSj
z;?oBVOp^{8a^CE2@$vJIIPa#mx(vKi|HZdv=p4Pqb1)ox{h$Zm8Fuxy8-73G#)gw`
zx@8BHq$3aN2tBfKa@WW^4m<g)Soy@0vGsS=vb^~#*S$It*&h2pKklgSLc8W2wc**n
zebV{bf#9z-%co@gxU=EXEnii<P=3WzL(hd{y?sdainE?MIUO<I*&FY?#B+0Y_xD$S
zIl5+X{f)0dBCp)|)bHM0qJ4LC`%ChsCxzDwFipw^t=xM2gT728*EL}3ZoP2F*%|M@
z{>HVN<{SZuIX3Ooi`sWTw@a(-9Q2Ze_mlwx#k&WU|Ivpaygm5vlRqAP*OIBB=R6nR
zbK!&op+z|Ntu0yiXM}&a_1Zgfzt~qf5;Mu;2Uo9{_2QBbJxK9YfY%3Xd*}}3_55${
ztzW-jM=285g$rN!cG{cUzdhusN6&A2{l%m4h$jsc@BUBaIp;$5DL8ZRH!pqO+4}HT
z&}e#h$8CiNfr2%eX}d<<ytMg+$3}Seowek#!|;*FKMM<n`#iV(^E^b^n>T)Q$vGp2
z9q{?=HtB?$P8dIZ*?{Fw?*FxK!;d?zdgjx~w*<EQ<Bk?ARASl_(X2~z-hfuu@|lBA
zJo@B=<$~4U?ccOddcm@SL(>AA7Ej&q*4By{FBLCd^Wr3|Q*U0DH-GU5mCrz_U(=Fy
zdhO|hU)X%~<()GQed(%KVZSYd9z5i#K=mCh*JOIoR8|aHxixRx#Ve+xeScWX=-Z!q
zdAx7x4!<(&@keGY8?gLegI82+5Vvi)_VQ^tUHf9?a>KH``AyfnxDm1O+i7bDOzeK?
z?zQJDXMaDv?g!Z5wvGF2{{HDVrX0KE!<}zG8rpzO$Ib(*S8RG{%n`^!`q969ckQy*
zCbxa~?&{9<ITPC8u9t;W=&NJr=59On@^gOt6S5LB)(l;>Ve-Vrv_V7OJqaB8*43Zg
z@Z)>$9`W{lI}b%pM&<smPrKup%L3;g`i{Efs0li3S6?vP_xbRJKSE^Agc|ANr~h)y
z`G>x>e(fJ1J)iSHSKyU<GY<1aCQlwXd?cFJ&XWs<Z)^2TLtHgs@brQ56X)g)zWcca
zv9l_d4Oo8Lpa*YT)b!cvHNRi=RPD_tK=N%IJZR-s-+*^SMEwl~JGX4U;f;5G_tw+v
zzTQ!V_ExYYPhPs?_OGvqo=tp}nFYgdDk`7gMgGQqW428E;Q?va-?eM6MH_JRnB_B?
zwygj1tt+3uyhXnVcR8_O_)WJp-U-Ee`9Jr+A#mTP?YC{a@7ae}zl7BL#c9y6eLvWG
z{?c>*I}Ph4&p`2R`K`{;h|$Xz&U<Rbv?uSKcJZoJi%XVa$zQbfANRK2b?m2KUpWQu
z{FBn2h(5gNc_bSvPh7K3{@}5PAL_br$A^!NUmZa_iS=6dN1M;6+&22Ni%WE3Yz!3d
zzViH2{tA(8{N1GIqS5ESJm~&S{#johd)0cxWzB=-Q5)X=Z1#xrCLVd#j(>W8k7FNj
zYdpR_0<F%1m1&;r9Y^1IL`-{l;*>6_xeJl>tc}?h%sKUzFD}3O#YZxq$v`@3U|Q~e
znGZcYD0?V`a_9+bZhUq^=c5-*d8A?0g_~yXf|9;`+Yq>kpI!gXUpkKZ@1fX2I&)dx
z{IZt^BZ0bU|1r~YK3{(A#P$!=r@Igp&q>>G@uGPhhqb-*%+Xu0^>}>tnxS((9)92z
z@E`eOpeZ?4`@G_vtNw8u!ugg#s~fgo`tiE@Bae%{{8wyE%`6!1D?ESgXtJ1>Jo1mN
zlZS47rSsu+f7$$7q!H$<Y5(rM&u=)q^UCjbp8oXV3$V6+{LtzZv);cC8e4;g{CHl$
z-PzxMaKx71-t}SS=kHyK{KtYr)Ao6!`{u??GqNMul^0_*k)8HLRJu3|&br{J!S8>1
z@uBjjBOiYF(g|ozN2G1IY{^4!ci;9^$GPK>Jw9_SG`lh?R_%8n`0GB)qetAG@&4=Q
zpEIlYA84QX*WlHcf4l66N8Vc)Tli<#{QhNm^FO}k*#X#+|Ng>tcg;EH)B2@zpMNR*
zD&og6`@LSb^x<hQoqI|+^4QDLf1?PkS!qv1=U!3~Jf>h-!MeeoYdp2>C%(QQ7P-*3
z|2e0l{o>HOTi@QXb;WN!I_}7ik;N05Q!w0juhtrZ!(OoQ{a`CpT$imn1;twmP8_`Y
zBCY-IdkU|s{8RocNU?jMI(c~95$OZd2K{|Z^=o?g`CAW~c;Sx6K7L`%BGl){w5{*|
zX6s@5#-7Uf`;y;0KM^UfOPA%%-_rDY2P6PkK7H+tr@Zz7v^am-H1;4wv;)$%mhQW?
zZQuR!zxoIX!@KhehWp<9O8FXc(d8Royu<@J<tSg;Ie$Z3GCF6;H}&_n-gUvYvorFr
zCOLYbIO$rnu8Z~`cl+uk?K>J4Ur>MYtJmlK7mYD3?fy;v-7Rl4T>9E2Zy)!;nfPq|
z=>w}*OxfolyjR@6@yhPoep7Ydanpt^Ej=Ew$U!^bd-sSFkDCAcUH4QDLb4ZKI#9g(
zt9v^x!25l4=ex^48201H$-{z+kw*XS&<^qO^B=wR+~4gQcTFKy4L2>zn}2Wd1hn4U
zJg3dbJ^PLCAJ4vE&IeyDe&$~YJ1K3SN9xCR&Y0U?rEJ00R({r+p)Zx?T#6VmWAN0!
z93u_8;`<`_?V7<;*R4JO8XbRYAG~twy3rr*BK&{#i>2o^MsGw5R(9B=T_3Kv@XibO
zzkJhu*c$&!=9-~%ipwjIGCg(Bi+@;<A9~JHw*KqqCgS;>{MJv`c2796{;Mmri>|;H
z!??63qW``76gcI{hqbg^yZg1j3|oBRj%W-M@j36a*MIul0WaS7;_EN2eCLq6*B-(K
zW|z<3?}kZtFWmm0EB^W3m9wT{_v7NU4VOIEy6bPhyC;9q5o3@CmbGT+uxsu-39`(s
z1>LjW_?I~1>H9AFVl3WiFW-2M7}&C4{H?d#am=O<!od*`^1=IMK6Js51t&pnp0)7t
zpC-3g?!5W=`qqzfa5(Aajejkh*3jKjcIVSClor_oZ#CJ~FU|kq<G)|?beHFy5)waJ
zzB=fGmd4f<*IavC#V1pdjyb+yxbK9`YoXgY^J2s%=j;|1`)~RBGNgm%&j+t>*WY`f
zBx_3G6Cdg^yI{EQ+Ohv=fIaRk*r{(kV$<sTcV2bYn+GE{7&_#%=2OqO_u=t(Oc?pY
zlQ*=Zv7sY<X!+lL2P2O7<lHeEnxA_nFDi;d@P6^9v~Mf!mp-{=N7<ASpB#Wx+pL1&
zzWT4Ox(hj^1+(UDn)c#-N3Hh0^uSq%U5X9wCx?9P+wkdG=X`$q?_NEANglS6YDTXa
zy6V+yH!p&8_x<~;ofit5mB*iaVdZjc{rZMXouECte%%|lTyff9q~FI3$$Ur@4m)T0
zfPrZz?0;zG@1B@=>dV)>{e*A+O&$AVBjuukH=nqEq`Z61^BE1FAs+Z<(8{g1PQ0eH
zc-esE-u?fOf6wP<PX0FZspp9(G0&m$+jz?(50xDE(J9EP&C6ahbk#>6jh_T};du)m
zxoOd^N0(l6>9A2-F#G0Z<^22OAHKT&n%EDa>+!H>Ez6s~py|~~`yB|LoxA+}?3mx*
z={<i=#cxUo!*758%V`ttn9%mk)K;{|Jq9)MZ!_NbE9|iz>b*0{*RB2Ys?1BgIC6Jb
z$HI@F+FDrp*%b|uLL}6ORj=6e?T<%5wfXcxL#l$Aul*=|{^h2zOKu5a>v7G8X%pux
z(H{K9|IFl@7cWO#@#Bnw;oGJiwiFp2mpt;1XP&(O<`3tLJUsoc&C3hlIdxLU+f_$h
zI{w2iUinkQf**HYKWp{k;48OXal@&fe0}Qq?Pp)S?l$j_ceT8E!|XE-J9Sq>?2ViD
z+0iv+$D3OYnX+MN*G{2u$Jv{+&-h^S(j&L+xayhHetX~TAGWXkKQ6vHD$4Eq8=gDp
z%)pYNC4>>A8$=pL1Vxb&l@93?kZvAHK|<+9P(nJT8Kpr|Lg^m5JKr@R_x;}Azq8hy
z=bW9N&p!KX{;;1l;`S?hUoE!9M4J^-7XWS!_s{v2gF$cqFM~tT;ziTNN}8TH$kZcy
zkzg*|_jK+o+e1oxd4RFr%VeOnTd?L<yN=vmH;l1xtZYOIFRuW^Ks&!OkCijvWAmVY
z&y;qV<^v4HYQn8+TZ>1%Ub=@EB|(CJYMh>|gD)gom&B+jz%+a;BsgMV?<+oDX8u1e
zE}Mn2__XUIP_WCfth^&f1Sgg)!`hD&-cojfzdzvzKf*}A>Hc;f{BLv<_MfNpq@3mh
zs~r|*>+%Gsqv>J=T^_09!02+_-gJe3ig4S@uHYLW$=ikmabbgzQam^5F#R~Iz(p)&
zB~kL1`{TRFbrG@=5&%hE!pj|Y1e{p*1FF6~CqTZQ(LIWzKfT5JnBJYn(yg<Zq_ZWs
zuG*;L`;2@`IjtsL9ZdA~a^`xT=iDJ4p(Ib9^+b^M7Z$jE6si}SCKX@j>`_XLQc~dp
zkSc~$f}vaD>x?LG)DqtOTGFuB%C}(8sZaNTcVra~D^7IDypvyK>Q8M}sed`X^ydy8
zxJ&!^G&yk+m&Qt{bZ?`0W3kdJ*X6XyFYL_K)vG13aqX4}xgQ$+b)8$3hx_|+R{lk@
z%>~+Rir(Nq^u_^ap}yQ{b=61Q%35zsBT#Q3Kk#fS%Kl8etU*Ymk*&FsOB6*Vdhm3M
z!@hLe@VB>f($!Z^E7m9N2IJ1u#Uv*7k^nLk(0%s<=dpyk)Od_fauEp<HEDrsR8hcs
zg0){7nD2V4uiQkMu9;~#$_(!Z^O#hx)lU1lioK?Xscl}GrfaDAC!TN9lW*HOQxds;
zjy-d6FtdAXk6qX)ZYRcjhbCet5*s~WEDbV@IojAL`4XwM?7Hx(x1ivz8Zo$$+efrb
zdx9BO-riHdcM^WOqL68zjri@Rj~T61`7w5soaE$n@Z8`r@lz$BiLAozhnJO5aWQ_i
z&$o+kVvMC${887WF6s^NOn8d*!Es1(pvXLRQ*Cjdh9$87^hn(~{73!0+HZ#EG%4(6
zUMbx@<WsbE!F!$XM}-?30o6=8beioj>C_4=V8GXH>FUWhW4TD<!nj5iT`qs(ad3e}
zvMj5whYdBy!EVBz1OR1xUz1n~VH4SkYA<I<W|gLEn54}5;RpW*+c}wjkBV=kc*J0e
z9@bKu*DnB5wv5c0OF?zIrWXMABX=r6%!zQ{11z+@ulK80z{kV0F<|l;J(im3>K^@U
zTs<GwDJg>fDR`HQUrIJyK4_UWeDo(r&htEnwKhnHw-*VrK>QWzY+E)v)h9$l!Y-f<
zxst!AW@A0<qImYzDrMrirwpko(eNE5Qc%YzMuN{k@4)a^nn%g9htwUnmQ?3Q_GyO)
zZ<iLW3#bm47f%~V*n&T%QQb!Pp$?Fkog{;qF-hsmtc%am5akT`GNZgvp8@&2kg1v5
z%35Nk5hy`CDKjCl{QZV9YYtJKf=|1KpGDs`+p#0QRt4{OdV1~VU<1@>L{7rv<yA-;
z;$S3*LIXdqa_li2n@L?rl>9qJ-cxhq0>Z>X_HWJ`_^(OZcBaY$+9Xhi@QKc<?TB6L
zJdskN{y@7@K`L_qB30&e2)ayFR)uxdG(?zJmE*gqN&^ihg!yJ-@!qx46#wT!7WEi1
zNUP)6a<EKarPsp&D!_a-k+o&hhknP#_e%R?44n{>Xmwyp<&E9G0%e)IwDaEU%#VMX
zA@s!1?(;EM%Tx7tODUHnNnE3fmCkG;A|z_E-`7g_=;(#C>XZ1@RJ6D4(1}a0L4?zL
zVKrT=lsn;upoc?s1Ml`BUj3rv-pH+|)(J#`QmKkfQT&b}a$8+#))yA$fooK;Ms1Ew
zA24E5GYc1kKPAdqw5AcLN01-4DkQWeMa1F+@4NZsBNk#&pL)vAT7$v{PaS^mXo`GX
zEx(QMLs#eM-XJ_*RqGlKy1-^wE?+17%K(c~WG77<KD8LbgQmZt5+GdkJ>RyzN^&}z
zwucrQgamL$Ch9PUbAdM2ov@L5cgOM5sehhOJoc=oNBE)F>!~zGo=4<sKeUEjLXmcx
zTfW7VSOexN++0}FeR`lwI`q%*9UC3+JBb(Z+5vg8-SFsO<j&ZGbEy3bq?nvxZ{45t
z=#UD#A7S0q49*`=q`*|Z-$<DClKHSJ-34mGGLlNWbQ1^^u~32TPnwe`CTj8vzt>F$
zoftZ{Y*<KY`DQOBY4sRM4NToQqAPIQ9%rrX9^<Z&N?ib^e42Gv;}SzWT39X$CI1t?
zp2K|;C~K>axMg%tEyA%1&agfo-qERu^I+R2Nn%oZ4vI6E2k4h-wkA15Zgi*N@6gz_
zWiFq;?4KRDAkUF%D9Zds5~SEgi0|of-Kson2&!8fLV~}5DY(tSN;O-#yZyp!-P)b6
z`^2qZ(Pu~E=i@tP>HO<9JxD|nT9;gMt@>PD-2Wy8E+9;*<liy%nVJt5pd^AiA?WVq
z>Dn)Qa$;Uip1+*97B;ab<Gk?b;U0Md5>bR=d7=9H@SrG;_TzTQD6KHVEoa%h_~vvX
zlcM<x{%`}=s6r^R32WcIc=v8;^P8R!GHCBuhy?(j3aKTAN!V&+y4B#st?$s_QEiI#
zLG^LV+{OXrZuolgfr{YV&$d^MJTOFSxi_CyIc8`9ifGM1kJhTZ&Ob2jXZKviJVI)X
zo!YHtX_sl1R5sis1D`=HbN+0cEvc?2Zs;Bgf4phd4}5#BQ)_=d`s{Pb#bu$=U0kDz
zG-dNZ99&=%>Rz;&lx!rPrn77zNeKLt<GJyTj5}Adm_E6m%nv1j_mWOS%=}LvHXj9~
z2k}1S#O85ZP03D7zF|KWwfTGVY2BOeWq~4E{ZMk6+c|Qcbi2g5$8i)3+Mb6g<YJ|!
z6S;#@7F>HYK6k=#KpUKtYNw@=?KMK9$e(nE1U%+oFT1WOdnqHbz~KU+iEyS844Ls+
zUxo$qgit?|mk(=;hdj&iXk%UN4(AESFx7Xe3sWHq_%vohJ9EuW0Sa}zBaf)lgEc1O
zD)*Btvr9BDa`6%*a_X6&k;qdluKK#{c=~1wu3WHKmhuABZ1LRhB=drY?Y7Qz8T^EN
zWGh^2-8$FV3-F9mHQ8-7&{D?tt<R;Aa6x9n@^$|&$!sHn4n)`x7G$Yz4|gY{x_M*7
zb_aUYtC{bX-D6@-+4aQ%`SGYUsWVn{cV1yuZh<qD%FfpUTQZX?9~{PE7obq`mph|b
zyp0P~lB?BNJ5B^yH<iRwF!EpA*NhEt2M{XHyJC2qfox)E7#nTvR@0e5eMH<pAHYTi
z#2Y5DYj<9><(FV}Q0C32m7h5=2}8(Mpg*skJMynPa~bfF%oWA?7_U$bjSfa`j1Gze
zkS=zFM74-ZOKgA%LF>=^Z76+2MfORMup3j7V0z8PMc893DjR;kfF&|#k0xgvteXoR
zDd?$zsl8{`T<0@;@gaM30HpXf;`O7Aqdt?P=UQ<g29e6roINGEkN(UPmV7vQc;6cb
zw8Up=Fmm$@3B|g3DY=HO?vZ`Joa3s=1LSC0wfP7J&bgcY(;<loHJJuDbe556N^GeO
zSkmMh+-w@jc}NboqUdC;zw>`G8(JNJ=P{?mx#<!FJKTQ8iJ-0L(I59=zriKM?sXD@
z13raw3=4{i*)k41;!FyAG}+`AR>ggvi4eFZ^S@98MGi5i3aemL5~E;S4C(u}^|e0F
z`PKTnB=uHj10*VyADD`ZO^*)QkRRBgMb9iAZv63Sz_5r$sFz<9&JG}vQ`05n?{IJd
z3W}`!5n;o=?iuy;;ExZ%?<56uC5v=i`CN5$hn(O~d>U(!y+i+R*F(-<QH2>C(S)Hr
zRIEkp-+0aM<6Ts-sqiAF`h+Zwo_eFM;r-~`UBBt2EtX@a{EQiq>~%Dd+-9|Q5b<4m
zA{=V3ocbltXg;5fE>&S{Q>^?(K>g^!s6E9#mo>vh@vz-SdC5Eh2N$?SqUL0Hm}gK=
zJ<_L@S_<{0MvDu2smX?g&V9&(B3jeY?LNWD$;UaRG=n?*3gAdi{+LF|?Jze#UJ@h<
z`5kDtfhE&uGoX-kfZTrfs^(^%(9oPdqi(9xp-};c3*YE<HabyInHbrl4Juh3Zl|@p
z=2-r4GLt~t%-Z9%;xtIBGdQ-h<#|zaO!nr}+T<w1GR`jipMUtXoet-0^IMyqRG>S_
zCQgpqCFw*e3%38v-hx19wNtBJ59!88VkmFGB)eKhYi%^ti@g-a_u(^GY@-i}oFe8Y
z6Or;pok5shpT{V2HM$FYoVEF<S$li4O3)%9bk16pM<0L$vD)NrZd|v}S(e-zc`Px#
zsF?^%kqnkNDRLNpG`lF8SFxoM480Iu$4YM>a#p)|YJ({dQk~Lge2E;b%e34M2+4zw
zb+E28T@+@PG?(grA1Gw4Gw=0e8rZ^pC6DEQ@6CB_H7H)hR(f2c3gYkha^9#qydN0S
zX)X8QC^c}yd33Au+|u0Y=l+dXI}oTeV^7bs^SNdxYnAuZ+aZm~(CHO5S^unO^3@lB
zgBRDRB2@Sf7AnXPvycuy<fJ3Q#B1gn!U?Fnw40*CNGF3z4b1#;z+hM+S2H~K$dfND
zz?Cc$?Utiksg{3m>*5ZPBb9)Hw-B3(Z2VE0pH{!f)Cb#@alQobu7#Yxnu`ug7>Vza
zg-a4+p%~~t7;!$lldP`=bmQ|nv7QJQ+I&U0{D57MZw!f&zi3L(5EOw#fG9c54t#vN
zcP`nST4|6oYuq&wyb7ozw>&YjM;WxCZs$#qxT&`5BYlh3fyo#gik7$~kv!4+x#(hB
zq>3oYeCKEldXzWX4^Lw_J|*FNIhNwj55`BxQATmC{Ui92pA%92Z4~k)xY1V8eeeC=
z-GSLers?&zj$k@My1p=hRmcV6RmqH;GQ_>;iGw!9NdByrJR>U)e2iGobQyTG{BS@Z
zB~Yvza#^V}PcR?XJvC1WVvn#X?GHG>JF8hJ8kDkNE@_^>5IQHWQN`;`7k*p-GE4>)
zsK~6NqB<YeX#9vj`rNZ=A&PtOF0GZ|W6O(x1g9|*5;Ff2I6fB>byAr9&nCWD{p6I*
zulK|mDLwzKt_Hq9x-Vni2|Kmae<d#}1q7paogLa#t}o>nbl&@ZaYq5xGCS6lE_@Sj
z(RwyKlew^o|2}p<H6hy3U}*Ct0D;;opeXb0bjq1f-l!HlDvc#C!R4-lp<ndTFDDi8
zX@_4_m(957%UxWw=vj37o6L`E4yR`=Y~qXY?@Ksw%XhubVunBsHBppYBik1C5NPC6
z<S711Z=6$O{YUa5Ux2XtX5sus-^aN`G}c`|qPPCpri&f?<{O~$X@=t9RJEQ!v6u7N
zH8X##({Qn*5;)zbs>ez;22bHG9U)oV!B7u<^pnZ_cSGI31@dja_RJ-2KD;Q>r7D>w
z)EN9s-5iQqs$hG40)%zb(!9?2kR{en2|%ERiYQ7hH#>7_ESO8puiX2z_^r9#mAvQ<
z7P*`r`hW9?$!v5>+JHc%84zpv8@*Na<64`YA8GXPLUi>GR;t~ZxZ;x@=lpNI8PtdO
zf9n_LGtfI(HYS>(Sa{*Mm^H^>P8CMV50=VcxjBqR!ew%Rv3^~Bkl~CWFK`oIj2A=e
zrTJuBC+pFF`Wzy)knT}4Me07&y1c<R>(RgLyyk=n7$;`zy>UPxyo*9a>CN-amyHK_
z$w%f{CYjBZcJE}oQTdR_sW$>+*W|oWzQB|mO@nsI`@@GPs`$K*X!sT}`1_sjc_Qx0
zd*gr*Y*1Y6f}N9XgQ^t=cvwm;r)l?=Um5Fi;V*HGDoVQ&JxP$^Ea1j&2s4J@omUix
zej+fnCYxe)bM+tK-SDoxKMr_+_ah}qLhHC$eonQ~1wzj531a5YtIB$)yxzW({cl<p
zf=Fr4$5rk(*GrJ|Du5K^5^oCYL_*z(eQ<CAGelPY$nHwb^=Yvi!DRI)q5U$l;lA*&
zBiaA-2ZDz1($cbu8}H74AiDzh6&7o^CVv=ar05VKQK_Xs@Lne^-=e=zSet$m2hW>L
zo2ZJuHKQ~VWH>g)y_e6LLLd=2sDt9>6ml`r?YC+bzad9qr;dN-2|XB@2a}%g0FXW=
z#2Rw%(7%2^@8G57brVpZ9NOK+dGJ(g*zxHpBMMmrwA;K(qPoR^LM{SRVGZ0|?sw<E
z6xtNQeA~qPY*-f6v%DZsgsea6VE8Q1g|OK%ketOB#A3Z4*;0IO<hd_eQgDqb?7LIO
zNsvlxVBt*<qqYcM?zeuyk0#gNNop5+DP%vB)4I5~(pwwPu8-YFcMcs$YvkZ@ox@-3
zd@7DjO>ZEPQy=*$T&28G@sNiF?!5DJ1vb1FrQXwl0{;M<3|5L=EPQ-SoMoMjzZ*~8
z;o4}^Lr!lDh7FzyJg&^(#%}bBH=h<;rhFz0!IFn&UY-bYnPS%>0K&Rz430PDzsPg;
z!Vt)CI4J*Uh#<jJjv(OmZGG~r-&@M}p7monmJ%DTQN^>iU^#D;1|Hitcbe^wsufvy
zM`5Q51LfUgULtwNpRu+i3));C*oaK1i&B;GAQ<vY1jJjk_#8}R==l{gu`<CD82g_Q
zI>g9u1ZXD8?sk;c8Ef5GIUOc4h>uSvyrfJ3`}5u22M7EK^L->JCc1u>6*fB@rjn}q
z=gW3ZrV-Z*c;J67Dk%|aO5zM0;xk%{L1fwJ)fYouW1@`z#F;^{2d_ZyBpF<Pf2{L4
zz&@mfwI_4BJ?c6Ili0F-*nh7E-;t=f*eI*nH&-^3u|ESp1P2V=yCtWUyokUBAbe~H
z38#}xJVF^)y&>mB;FPW4h7-<D({d_uY_1?x@()I+{(?XaA0j#KHoW2Q8pu=Yg%MDl
zH*9=w{&^=8#Bw(opu|a$Ms4?WA#_6{R7DS6Vc|INT3-2RkqyhPk*NeRzUn>K0SGZC
zB0Bb4NHtTJ19q93@}0%1`C)11#4aKv3i%6YNeDf4={4xRg(;)SL~}EpETB%upEBou
z$9hOB&~77hZGZ+Bpd^9rN7vc?2%FLB4I=x1)+Q;?Ek4hAKbJX$-Od+adrzU-;KYIG
z)`kFeCOZ7FVE<j($7Zxk_izEoG=-9X@Pw8$0C~n>lXiGetK!;H8BNAc4{qG9IEt?7
zH%t!2X8G&D)Sct$ACDMBRxIu*fB_~1rl#U?K8XU-7iBIKWj-`89*IIm0P=Yu4JH$0
z7`B(WERY}af%B@09fm<vq*(DHdF)hQoEJ^Jn?5M$6v9i6bJMl>B=8UHLWhAGC`vB#
zSF0q*@F$?ur&T|{u*OPHGIls<f)TgL-Lzp-QOd-cFE#jpd0$f4M3&S9*Q%Ly<ESsw
zE~4bxlZ#tvmIjBhE>RewwGcg_dM4Zzm7^v@flcd;tLN=DK~z+@0HpYilF$pR)u#lp
z2YZV2=p_Pl1#bLuW@a4NeMq4wx!^CXh>_v1LEeNjB24^?+%){Z7buHeQngrzJ%jv6
zZ=;L%wCGiYQ@vNw+Y049?9gJsCR%1l<dg_#qyj*;kUSRqzR5=7(^`c=FQmcoxfqY4
z&7^WEP1-jDH!mxB(dE&ELv_75D}D6IRCmcTQL)uc$Hpey{2_t=Y2|Evi^biq+3M-L
z2EMAvkly55^zUpLG`>xAaffqAuIA)?s7+G9Jq?pmv4!vC9SmlqTWlr$c&O-&1LDJ3
z8nnZkxv>BPy*HB}mdn{?<Z5eBTXV1(!Rg>4r!m8LaYwuqZ;_(AVPo4(su3)&r#C?O
zb=lEKKsW@8dB=#9{Fg(M_lc3=x4@0qa#7|Jq4K$Glnm*Ds>^O^Qq-R|8HU@~Bzn%w
z<2gc+JfhUdZ=5La7nU`2m-f_)fAJiKK%yqSAdyp_0bBs0AW+&bDU_$1XrWRR#E5u3
zU%TI^@c1bfH>#8Uwsqh3P_bqkRDU393-@Ja5-7W8EWm%U6KxVD|K<1uCnD@lq&}_w
zaUpE1WFyOA!N#Gjy{{iQtvdhR%r?yTSy$E^L(rSG9@(D&0|lYvM5Jp7R%m2O{vGS1
z)WWzxCY}^4^E_j=%^1Z^wOtQF{StgEn^6Vq_7!aLht^V1GuBfPyVi4T%JAq5?xy5l
zT@f}xj10F0VIy_#y~Nq{1@Sxum%A9?*ZGs<{Vy(4F;JSU0#D~=@7KxFHR8tL#^SDe
zHFF|=oDLQODd0s;y%E{;m-j{?)I9Y(3yS3obl$^<<UuFZ`cVzjDD*{PQW3P_ek&Mr
zUX+kYY#pYK6f-es_z-pYQ!Sn8g4ed&n1Bb&xPS}MZ|&+%Cry1FKPP^z^P-7lU2#rs
zn0eww4dN9@S>3#wckohBk$s#t6B|MO3Hf!LpPXW$nG2DUe@DktYGz!(1Wscu;@JH;
zrK$3WG$#RQ$k@%vA90w!a};;cPIS@6QLEzWv^_h$Y6~BgEK~H5(@u^U{0&1O5m?>g
z;sTW<&<PWmAVsj<80$+xJRRL5d*`P*YkULV7bcJfz&UrhIghLa6?w6n;kR42U@z6S
ze|h>52N$5EQ1b6MfKb!o0vLEr@obxrYNEcwBjl*OaeHX79dqwx8{cFp`gdN+4p)7R
zD28f1L`83>o#Hds#THWuVlaOM9RU~81N|9M+kAnhrBL)3iC0yg@dMgl{jnECPkw+p
zH2<i{m(Bt6ex}wI{@m&`m;aZACKg*hK~Zw4{4(Q#K((~=dh681J6szpdq{IS0L3oK
zXCwA2(<DpZu6EJu{~)ZBs(&sbRIr(~r~0ILAb?y>8-PG(RZx^%Dci66AzLhkn8v-0
ztWF`-IDH58$<-GOW1>u9ZrNDUoJtLFT5+aFhb(Mmw@}ZJVmXixZQ^i<<^D?m(#M`k
z5Hnu+%MO5u+(sn-+|6OFoz~I~8V~?&_$wBxn;rDct)Bete~2wy?bvvglb_^M!>$18
zDz2{|%9$AE)4~4dVs%zMRmqf^cm2DNYP7zC{A3sGyzKDzuo&iR(Zx0IKHlGwdX*#7
zR=yD4LoV9!)5Sro$M!L%62#;m_Gto;D*BD?vh-;!73@Z)O4h%ciS<Rn_GmAgQtR<<
zq=;>7yvNlRrE^hD1Ptz-&Uh&%d0|uA4A5>vnWERgfWiVI@fIy&%-d(VT+o`zldwF$
zmy4HY31URlZ5%9poN$_ooaMBIkE#tC9D*)Q@%F3Oymkn*+q9)Hh~Gh_E(4;W)@zzB
zFA{Se7m2X{Ei|qk(YRgQQX(n}(J|B$yWu-s$?*o`p6H78)tnKJDd8RJ|7tps6`KOX
zA4`V0u(E1pLSARrxGtVmnsmjdTz0eD;?1un4St)}OcD|QBV-I-&ln%=aV@Uc&KJNE
z7Ob-4w$oH0P<z$Xyq>*&)dvPT((oZxu$uYI9<#|gmSnbm*{rk*vlK3W-E%<axOB&8
zCKgXe?Lc<w`KQ{r9XBje)Im{l?W&mKK%j}Llcxg(%{A_%`6@tIC(SHKfRWecCcbQE
zn)(E9$e8HMR*4ERAjev|^3&RT*u27mYg8dEAJBzBD$#(41HZ(gZ_j_R%lr|dC00|J
zmn{^LM|RoE!V7McwMce(WvMW8P`9umXom{7CVzy=XXO2tKG@s_m#VZ+TRfS&UZktt
zqJYlzDh{2mO4(r?E_+_HQJ;GD#+Ot@Jco;oegfZAwcS2X>3tSXwY}(uLs90Jo~4l>
zl?=g*!RA-Lj+$x=N%MUG!6;o`i~R$7#mf219s*`OruCa7$-l<FN5pjMlOL?+>Xwpg
zhzftXhfTZYkjSZL{4YeFc%vRcbaaoN{tT9x5@A6|q*W~SOou*Av$|ZRACTMYUet7X
zab5A%y<qjpu>r4lBDkg4RQL?W(h&7TM+<-iaq~Esxcuypo)TfP!T8dx3)NK~sN`RE
zj`Y01qGaC!l;ei9afuM#4^9rO@(14SN?>)31uMP3((NEndo4Y;&SnWR)#l2Fq&Yso
zzT&Fg!t7b7;up?Ks}Tc^mmCR`MoWA$`4gI0d%RY@<t#fkM_fz8+OYzzQH4-h6Fmya
z1|CIM=_=IS?i%={c8k>6eQ&aAo<v!`#_@8UeMqR_EjPpY)mviOe>fDt>zTXw`zNd8
zJFbGb0EC!1l^~{qwf8mvsX}g?ybYMqq6iwe55|z6mVe2s#3xzeyli;82R0A-W9A8$
zC$l?^ZQ)qh`MVE=1R&5xhExKIuo4ysRGLMp{IEet)mPs^2|21;Y4a5^)o5|~jF0qj
zYF^Jh^TWU!$&;4kndsSDMl$h+o!F&`uzV`^S`reK+5s$wa;$56swZ~bFB&F;I=#G6
z*2~qMEqK{4^AYM^e3s|fZF?_J9XWdFq}l2Jan>jGKky3?fqpkX<0M}rF+Z1TLqSnd
zl-ok;RS{}Nh`1;w1aT-;&P5~}iF0{oY>&j^c?x_{eX!g{-(5QY--;S9WR#d|-od7N
z>NQ)v{@QqUQ>>=dWn)Yq^y!2^zUrSZtI1oIh)neIYhu;-+WXJ3#*s>(>aM~`j6{T?
z53F<>E6+%Bw86S4RZdAB$>cv2ewY3B%!R404-dEutC=OJ8(Fb<Z^2lr1A7p86eZU^
za}bJP$v}tBB;<w7XdRbRTc9h}t%Rz+#@gj_UUq+qfG+~b_j78h#(t&1^+^^a_ePGF
z9Amf`q_Jqy77{rXG?PUJK&DAe&8=#zm*k5$k0Iu&dOZirj<gfRCN}~vJ7dzwf7{!4
zTFvB}?cXu=`3<3s<1PG>$GGG&B!OiwWJ><Qk*YHgs5Cu~`C;I1a(AGNoyV}R`_w_?
zqx8^4|9GT^p6cqLDDz3hn93)(KFNVzr^Ocq_$KT>Wv)&9pJSqo<zJFftMF0LFZ&<-
zA8clVftTh*3;wg~wjQ@r;;0ySFYpmkti|yVblH4b%kp34Mxnu@CCwI3!DNSImQ}bI
z&+dGDGlQ~x`Cn`2gWO0OJ@04}EOpZ;y)Onhy{}(Wo0&5F?5~5(-M@f#n<S>~YXIa4
zV~>WZhvi_Z^GoNnQg$B8BhHqD&?q*_#>=K@TexqS=ehZl0!PKrdx4K8<0|*b709Na
z;uK+p&w*=Hq5s%C00(TvJF9ejE@mOBJWS^7-0V%#*}{<W=JH)JN+0rrxo|CIICD(p
zGklupX33&Y<7fX+>`q9qJ3$w-;sT7MSPULwBtEVF``sH`@R9Mj&X9YWZyWON-v(OL
z!Oeq0vr{h5=$#Q~h--{)U7qoS$9*Uz00OmtgrdwBbsd-UMm@!%qqR_)?zHkTminaK
z;0R6!UiliHO9{UM%H##67^YT}xvUUAr~?~)J57}z#L`aKs1@qXrzMK=l=nsvU&Kd(
zVBy=tWY}2ZKN#^?7UuEyy()2*MZSk&Gulxx{$AjHY<y&WK@}*6<xnt|28YhhYA7O5
zQE#d)j+bM`*Hm?~P542)2K7vW^M^}`Jj45Oy@4*t<xzE}0`<imPRrK^!4dIHM>1H<
z4P|Lay51yr@rER0vvu{w(8F5)U!K)KgUQ6e@8R&o#vYPO^Va}v5}r>eSUH^{8m{>;
z>*%gKQhphulxD^Pw04`M-eOK%pa@?~@O+4uW74;x0&T#5-EU;ON#YQ=3?|a}z5)K{
zuCC|7DGyHXT?194#o`vEdxZfAH1T#SfzvgAIv7GW78|K}ImWOnSR0Sdhy8?&@Y@Gm
z^lZ>8jo7b%W**$0OuHjDA@gfVA0rcc2muIG>p6;YEltexu{UZFvNyE8sOsWCuzc?}
z7yU-hj%GthmRt-T{pI7-&-nd!X=|OHtOqAPJ!QKFjx=lAl};)3*~y$^@%K_BUm^z*
zg?tD2NsU;WoYMQtBp@h=oNYAfhcn{u%m+wZHu&9v`2syXZGt+pkxQz)(34l=r;ne&
zJ#PQ!apM#Ajk#tg1GRjZEfIK}F;03`qdR;Tk#zZFLS}NK?VkrsV>Ta1a&()JJg-J#
z%pTu7y@Nu21KMpWlU)B{4%Y%#TLgEx>c#xa;t>?YP_I78L1&>#)-;n#D{}#^FXvoW
zJZbam%F_wEpK9IoZEs*zLC1W72p52yF{Bdg)8R`JA;Tfypww~$|Fy<KC6Z|=z=v7K
zYhkwT&K)0#%Mfc1dp@*UV{qa?A=2O~ehp-vAJrCmA*(vPz=;b~5-a(44A@h1fTYj^
z5px3e{$O7$`W0t({ESq#|8Ut7{tTO8HCsIQ=`%IzgEUgjM=<Z6!jtGx-sp28CI5))
z5a=CQJ*U-j2{P4(wL-tn{2)hRr+b42%OsJADyhq7Yb=Fpty>$bt@ue+wX|iZ`t}^c
ze$`AKTl+X1Pz%b^FsC06|A=CP{P?9z7w6*E&(6Q9D?2$KWSuWubC)bTE#guxQ-Iul
zw?p~}KBut0^J#X0Ka<!4`!F1E6wcBx=ePt<L`_55?|I#9D1I8a4d3Cax7@7z^R5GS
z>#`X!n=H1(q%XusyvuEPSDyfgaC-mPYHdLX7f>fx^6%JMp`r#!VZNGF0g47qg-j&V
zT41t~xbbRoc$#JJ<*U|kIQV$ve9Z1ABPQ9Ume>b%UNj->zJ+4jl4gb>TBE%AwDL1X
z^k8?MBgJ~m4_2!6)xu%6I^gC=ovf+x0{LbCZ6&&1u-0olqJY8x;p{km%Bn~=#*9Mx
zV6l1P^9S_dB4ClG<hxg_OpPvh5+gh!4zTowOA*Kb>v^7YHJN(c%}5>(%x}^!LHWeU
z@awon6=FY&d5L99(Pu~E9_$4{uWm6lRs!kKA+q*w7HDv<9(nYiw>C9&i{ra7UITGw
z>YPfal#U`=p-@CCHhekG_sK#(D<e6crX=#;@t283VBqg#_w_VCafX<scVF&78{o9+
zRQy?q8MP}?)khrsdK=Ie#px>NjVi~BoGKQtfA|Qw2&gzlHWi)_PiujXj0r3)tz=z2
z7w9hAOoLF`+wZPt?27NdUx~U2nO{wcjuPX$0YIK{rxL^*vEIc27Rj>A#6<K)1$c97
zeTC#EV<N1D#_c(3<I*vgn+O4>z9%`!*PP`>6nixzu^2MNGF#4|Yk?mZ_(P)P-!Yy@
zMFjRku^jd$xsFsKBTwPd_2VVSOeVR%Z{!VS^)Q>9-$GB<)H99G-`~fQSpLXI{!-qk
zAiT(_XJRf@3djL~oserqc>d$fm)cT^tUceRH4{SfA3Mx1h+PV`488O~?&!Ie%lw}|
z-Mr9IwZR5rmI2YwE|S*w-h5id8GR_|=f|m)d1ec<$-EquzCst3*5Lh41(mb~_DhkZ
zp%cX;T%&h|wrN%|HzA(lwe<liMz&sjO#i>-610T6m#!7?a+LcD$zdJwPb*#eWlk}p
zI2g*<?-G$eHX#7!5+t9x%`Zq|e^&CBJ0@6?1b1L7`D2bMhh)6DrM^Nclk4o~iFI1N
zmk$BMwZWkn36J@>;ci~&PF~HDo`-{@U3=^QK6EvFoNDux$9-?|X0*CgBJ0LV&9MhQ
zgWU0lqKlMt4WcouLHmt`YCD8qm4o->Wc1_}r7Z0OBnnvzwA(BuiHb9aKLJ@q+x6A-
zV73|Pe|{Y$TV~4{RV`d5=+;t{l}bqUTymx9I}FCfEz?LOk02DAU|1R$U0v-%QOyu@
zs<0b3o#e&vIg}OfM|sagbn9Awdm0K|oPiM(XLcmGxi7vPErhq0xMAS+>1UsUA;<sl
z=0$R6qqYd!{G!Gs727%g^qjt=yMJd@6mu1BO{R^{#b|zOWaV+43szTTpJ6~DKLPDF
zu%w$~^x@)QSwPG#josr!{M^JA_^{pH({>$tN}|i%C!=R?8N8``{m$i}ww-HCr-aw-
zouM=YdPf&U$#rP=IRH|OL?jdPSZdVAQm6?N?k^tos>|LoxK!UE!r6M4U0AoOQS4-*
zvx=WC&L|QBy(5RB<Wk@MBnT;HQ!3jniH&(FOt?S&<55YxT(ivI9&RO;QgQzMx<qb0
zecH31+ArdMGWyV?kZnM_&Ew=-9t`0`;Bbb)nm7%nm`{wV?9;B{!{Qd6OC0eUvJ`LO
zC4A^FG(;dACSZC(NUgDC7omIYi8qQK5;;Z83m3VM9Ki;W)<b&kuBiZ%-nD{>h}HLe
ze+MYM0JY0Bk6-BA!nEJU6pibin!mJbtAHY8Grak<_%JdBP{T)h9Yqe}9j>$PeiS1c
z)*Q=4C+L$E!>|vRDe46Fvmn`cm2_m7RV>}H``zkc2Ok3yD%B8Zw_!}Dh(*yt;F<8S
zt{R4Nzeto(g5=K!I+T}V3R=t2Ez9GjU*E}3E>_mJJBm==!Uf(DEBVXy+b<A+xv-~W
z>O>>NPg3hSJjE<vhGLhIBL<ivjO*?^FDsL`1g1y=E1%x=VM3)supdNGd_*ZgmNb`M
z7gXIV-&N`QNBr*TV8&o`;^*jBmx$*lexhY|wbPUJL~d(+>a#HtFY{YbhaT-XushNy
zO0L@^pQs^xEE{`YKNN8$zo9kN8z8(fsA|F!Kydj=cveks{aq54&0~TSfBT=e9esO~
zXyLEmjdBOtZ8p_|rID(@l(24X2Y0a5TqFiHRYbskgRAw0BPGY>vEQNJE-i|;Xnn*u
zC|DY-tJuzgN43Ij><xENslM1#G*ZN)qVbaB+^j7-G7_&JSvD+in0zd{#5nHwHT6dW
ziQEqQ)Ms+Ro(bz({H_3G8lmJL{6L)ma3N81)YGxV&q%!PYP{w##nt5^$1`&Y=MRZY
zIZJP(c&K(!h;0%`x^LJte26-H%*nurO1*>q@GFW)R5ac&+=}pNt#I<dv#xZ4WM>a6
z75V6hw%>nW1FK|)-leHBIB^ix-D~7OX)(U>(H2Wjo}(zap6P^;w5FpQSI>h?k|MWR
z1fz6|HW!w}jAMC8{#r|}NU6{${2nGa#o1rdr2F&9TnrHj5|QG~r{z9KPt@vzdLUO@
zKiFLIFn9P!otCft=HEdizX09W?t;kz54+Mw`4>$%tvZWCac}`57)yf;Bu5<(COg0k
zD+}vZHSwRske_m8QX2ohG?)Tl>UAN*y!g%TCkz<nX3HaFfx7YN|4bU%Vz615JxgG(
zi`#b4BxtC2da}Ne-EcA+^?~@(zccX^?$Xt}O)DCxS<Z?{V?o2X{nJ4rBnk<~HL75F
zUiKK732<|}&|`wjZ~9MUPPgA`5yaeWAV|2h86D&(Wx3Pg9509P8(RIHc8WJC7C2Bu
zAlBlDUxpC3enQV1Sh!W$ZNyqj*BaldUk#=)j=BAJB!({jiQBJZ<pROdiRzPLaprO_
ztF`L@1WGE0qRdzOID9+Y37jgqu303*xpDF~U_05Q`7$cL;YPeB-tSj^kgnrkdR}?h
zaQRu5I&VI$P5CleWB{<8lc}B~!)Y_rxZH5-)tgvt|EGUnxHH=1Zf;zVkG-C=uMdK|
zKkh4Hxt0owGC#q4T)`WiT`r~RZ0hZ&@foOX=hAj^uC!$MJ2)wkT+LB0`52V0I)aBt
ziW#5|Rz5{CpuAB;c#%^<f!VBpFj;JII>(Yg_@1P;q)6tX(eJ-wNbn%znx{bm&-wwo
zeT7<_`WP&OCc`zV$j@>i#0ul?HvvCxxrenl?Jmb*-LzUPr5=~^xCn{}Q!|Uh&i5m4
z>YfI<9!!bSO(oE6h5YY*(CqV6_if2^ozvNxQ!LRqm<1CvVqX0fHU(K${)mIz+<>qy
zhm811wrB^p2+Z@bHx8%(Wod8#Ix?`b>FIeUS-5np%<b`J{Os-0qDj#)^WT9{lNR7&
zb@QBi5$W#6b;TM9_wyMG8%ZqP6$RRD#(KAP02hh_`_qXuo&DLG)1erNr2RYmo_{BC
zh=UXq67k!ND*X)wzqgd#A}04CP{cyGH=kBOtfjO!x)Nwf2t6d0{%lcK&3v|FC^uHQ
zrE~jA?5s*7_Le;dbPuaI+FWM-$?-(g;l0VIOu@=f04u{v7YbY;b6j134})JU8{lQ2
z9#$3*)5Z_{JHjP;<@_rqR*qgfakj=bEN@+wcGw>Wbi|9C8fGlU#RV`#LiTUGQi9m+
z>ZpS459o4TR>jtI=>P6O3pLqE<`rab`*FLu;T!5l<_&JWbtA0ZJV#OHr#~xaKutcq
zXah*(Zlb?+=JV^QtW+Qcwq|lQhNcORN|V}OVU2Q;m=P0FUwy<)kpk2+qP$VnK)cN<
z@gHv-umo=}@%MPnN?&3@LmKs&{G95FP~D-W{W;U$ZIm(>ZZ4PymoAW-O;sbOsBf>z
zznvgKq9*l$b{mRco1y@ui+!UnZQ|j#y56l=`Ew!eYKp6YJgaalPJ5}+3wy62kv7I!
zh>HtAxad;}oQP=Z=~0tnK(+a|J&t9fv1uj@Ct-?sg_5agSar<RM5|i}Q_fNeF#}W=
z#q(Zxz0={`_2nE<9>RP7C8At+up5y1R@~;&;lW;4R`7b?Z?;z9@BF5PKy=rP<_~eM
zH+8u|uMfPm&$J#Hf4_I}l+T-Q)J45U7Q2|^(Cg~nM^nx23~7GaP0?Xp>uWErbZG*?
zl8>~xAmaz`wtLz<lH%Ya#7NYnB+zbiUbI1iJ?VQbvC(06dT^ra$gd#1JORA-cjTD}
zeNW#YpXCuJ5vRu8<M|*-2Sakp2i`cK9rgeMn{ZqJLjfg}-Bqp#988+}uIZ+*B2-_k
zdL_gpir*R~pPUYjh&Z+1jIW%Zq7olvI7+bA`uzVMvRh=%E}JvLx^H9zPrR&M>(hVf
ziC%5K1tOs#$W}EV*QM!c(X@Rl0isESL`{0ZSQ<{bZ=54hlTv^LoMKF4Taf>?#kPGv
zzR~5AbZ;CmA6{B2Fd<o{Xm1fK_KijY;dC$y=6Ai{Cqjnn;u=+)bk%+!S%^e;$R)RK
zKVh#b3J@60AI?jP$EPN_IzCI`;zGQRQOv_{AKUCYyfinZuA6)}{?AK&oBLobvtt#z
zmUPa~Zo!k&w`-pFue4W=zHXrtY)ToiZQM}n;epH_S<J=-DzU_7ERvcB<hmd>iQFah
zRA+@|ryBTq+Ob5|SAJ}-l$u>;yD*zf#A*Cyd}Sd@0x|UcZYd=$aL$lQz)S{3m_ACa
zdY!q>CtcLIqCRLa(>t)ba4hgQ1f`B#ksg*oeqn2VcjTIE!}r(SVb}h5I*YyhWQbAs
zygNwNyD_Ht*#fqx{a5xB5ckU4X=Gz=Il7BK?49v(fl4wZ|BlsuY9a6jjK)leH2F57
z_bX#}=MAd!hNI}J8=YXtmGzI2|D}E|Ivz52_cYlG@-6aL_fAZ`aljfVOT(N|Mo0u|
z2!chM(sI#>g2w~NZQ2P$>sKMfUS6*~v^bF)O;2@(p&nlwe((IhuLQtQc)vgj)N3Nx
zwDu#$I3>x+>k$U+cr^)&9!9D_=HE@5h!IeeHmI*%8s4CJPv7~`7>a1E@aEHMX8yea
zwSP1j9I`H5s@7&#;=x|$km_meG~eWQWxLuWzqPA7PameK1-`U8uCd^s)`mc5<x!Me
z*8Hz)AR=stvka$}gXJ`}jM<t_-UNw-1)ATXf9I|#Szh!NVS<ZT{JpwAr<9Qm2Z^f=
zGyG41K#3IG9H|S`5Ba!#k1lbrpsYtD64nR3(jGq0X(j)FdH?6(M~<MW?qTsd{9jX?
z|JlJE#96$cVPAK;TIy_NXR-m8x|g9$02BJ*ze5or(R8sf7)Etz1G;;8x`zB2uK-9f
zLn=W`QsrG@K!!B7)=gg;KT=Hac<JK=g>C3vnJd#RMyHUAMPgp4OB?7GpXYFO2MQ7+
z!%1+BDiWWTz9L>oL>Df8lP(o$vnrX2D`}x3bb3u?DStIn@*z@;=c{5<RHb&T%-xL^
z6T(pAs?sOkC`U--R55?dL#b3XKyJS~#MJB~#<)Y!ODz}HcjM~h$3RN17kjrwNnmr`
zRBQX1VhA}D(OT%ur{&K))C09wo@^6-K(7%qTmHu_bLX|0#p1NPGxgQ1NdU|kY_4WL
zyZf!9B=FkV$=d*iSax}0WcV#yql%TEUp^pMg3x>MAybb5qCB}bBP;Db_`!UlR99X{
zs;uX^TRO_sO;2?YVkEvdw9YzBV-|!1zK5|i7+Ffe15i#E*YVQ9A4l&U|M>B!N|b$E
z@!ykQ(3n+v&NQ&T*4*%}-Io^tq!^h>5aXwQ_ZrYdoMk39ZCu-=9X_VD+3B-8&=ikc
zy_zr?#9oML+#8>Zp>R5l*d9CzJKbxGu9{Ye7=$AJe;tDK{^YOSbh|oBwxbQn5uPe2
zNjmH*U>XAJ1)gOKa;b@eYL#;{tr>C+5a?%36eZW#cIG}Lh^41*P|OsI+xf|y4t$t(
z=w5qjH468UUI~8zm`d0DrmC$u`a-EolbUZ4<0qxrYx2Yg0yRXTD7pTLFoi;b7<jBq
zjJhbE%FtoyYEv9_-qjJ(NMj3EJJPs)-;7VbU7}R(iY<pBWOKavv@}c<>S3hXdcSux
z-_&Wat!;R1pO-jItUC_8m_9gXfU&W41qONeqtFnj>1T@jcb?!slR>ZoPl$-Vz)WYy
z?|j~ua$T<#>~pIQSwDQwKVg#iYGch~PuQe>-}Uq}dVIZh&?4`6WjA*;k$)~IIm{K#
z9r4eVGyCD&@7tf-OgA-kNqtwWc4{v3i)jNP(B~*LRX!jS34j13dOd;8{W;sc(>g1Y
zywUnB?;k>M|GIMzDTqhc#o|cwX1KY*BL0~O;cXO>5!a$3@+;#@AcVx(zH9a27XXho
zVLPIktfTG90Uts~&%cM@g+2&%HU54Y!V<v`L&$2Nskj!mV96+6fG+vB?JGCB^k>Sz
zslSKu(56*We>3aVzl~v*62)Cl)%sCtqL}GdDdP67UL{{K!Vu`^+j{Vrhe^_pQ$GO(
z9B##EutC{NZO`z*@|?|;DfmD<OBQaIXn}xrfoJyps5czAz&p5F1EYq}D-xEclh23R
zI>yiS!CwzI(yxVzt*f<s_|ZOty!tx{-i_p8LA}Px?=6+Uuk*8oZP9Ac1T|C`Jt}nt
z7_>1e2tR<{)zBNA--pu(&<MCUXohgbZC?pIgv8mYvxBJ$z%yRCIaHx99EStWLUN}*
zvd4MDNI5oU+G5CrOdyg=!$lK|D{CwjQlVG0;jZ$e{ZRJ(^ln0lezMrJTK;@1{avvj
z9IzN)ts$ybYMP-(2`sxFLm^}+WWF`HPp!cnaFwy+kv!%z)$>(pkfZXXveShOrstgu
zP=u@$nu_ZkAM7J49b&GVuG8;3m8i+2)A#GwSk^P)m@6%FfWs|u+Jb8nPn~37HN`9M
zjH9~jpa_;~Zvm}8>~|!95Rxp92sC3uH>-J#O;@6}3Y97c^S|F_<#8F2{iUr8#MGY`
zm{chUmbfR&c%#hla;KhXQh`LK73jiUYjOciAxvoYgthZ`G4KER^7_Gq$Y!;1O&WyB
z(#-nhqF4Y9_zZjEDzUc=Jwjk|nCojAuUE=Ges<BT2@@A0{rhisu(CQcelv*ppe>R;
zUiZG@MG;}phLIyE9D4VG-r{(rj67MFi{89^XI7lam9NIL+hF?dGu5U+2I(~Zj4ruQ
z;Q~gah5qaYFB+v&VL(`SZF<%R`UBxI>-u3E(-$O9=83LslL?<=LQwMHv#Q=vz50$)
zL<hze0*zEcQ|0^05D|m^_%uRg1rvpe6hbegCBByTSpM&6>A~wJ<1{XP>^%Et4U%3p
zGit%@3q=rUqzsxWpCbx!9W;j5RL{==kAhks?OLsutS&Sg4|bJYp^HvZH76UHRi|@?
zZa2Jn3H^qV&fFvuBBYWOu0;hgxr{7?ie2gWjlV^+XEoY|eoI;LXLWVaz#EaPC^rBQ
zc2_ZO)u`&Nm2sz7Iq-_7;DF@#Y7J!-IJAnXhk)E(7pqNdpnIgQpM~eXEB(KM9_DV8
zp*;-hto8qM0>}P7M^xy~uE;4ZmHHS^?4*0P!b7xI$~-?d@HyUv;Ocu{0K!ARigHCV
zzMZ;?+1}`veGM>#X_2>pRxtkLCM2Fi=~(NxoPUZ+D*@37q8>gpJGd+K_rHFC1tAxq
z#4%aa+1&d1a$No|PL3~+NRT}mxE2+IM{XjZG5-5McT2M<=?{eKkY#^rmtFq)upAz3
z;$g$&jIQ#c;)q1Xm#7^Z0HVRF2OoOk(aqH34yGtn7H8qoZwZ&_`i;06KG^QSyt~ry
zOIWUO1;^Hbs@~eZmyJPA&_X2yTB?Pn%AaFI;DGZmOVO$#G%o#?vL{)-i}v#4zaKS&
z&?dUr&B6+^MlHNjtM?o8`<}l*LZEkFpsDh+M`<6XmH`D^USG2oZ*K{gwV8E%*v;eo
zlKHO}aTgw;Kej&511sxGj^^fLx=CON79Vc`Ey}ORYd|MrVQKMbJgb0QNZeO^sYuu-
zL7AufYE*Ni;$$7+YXVUSdF;XN%vmiaJ$WliRT=`li{1BBBP}ZR4q)df&t+pD=-yxD
z!~W!%%Bz3ffuqoVeYDk153J-K5v*@3+ZF;K?MOYisy|yGh~kIP#+}Xp82`dYW1=%v
z#?L$Wuk6u??53EJ-f!hXbfZ`8q=`{pVFeUnn(8f}^^ff>`BX6=Kw*7daOD?X7yMP2
zMvci!mv%Pdt3bPrXS|k(a3tm6*~B_S+P3qh7D`{Dsq)Ltk`+=P0}X@q>XSW)y(~J#
zy4=Tj+c&TNtd8gET4hb+_3AfRh;C%IG~>4T&?MuHN{8f5Q86xS0bhtWoUX$uV~tmC
zs(vko`(L>rF}SHY45!S0OZR5tx?t&NciJc3D15x!DUHDOUP%0%!tLLKlMD*C7j-4q
z-mWFDF%A4QxH>K)`NGQD&AUeye(%*j5LOn}c7rO%Pqa)v5h0aoyalv2GZgM9-2=a=
z)|0x_v9j&+CIm$16;EFwtkNf`R$~@2^6DSDvpwve=CEBDmNc3wpK*ouNoqDA7`jgF
zQo(v>|9*P6<S&P+Y@=<Ss{_BoQ*flMKRNZ{H0%j-mt9Rac%o(apAWNv4%bzslP!bV
zJr;&l<zBq}ex+ayu8rpQ2~q(I8Hvn2Ts}_jFE~(yX}q_9)~_t_K$HbUM}5z5wkRWf
z^f>I`$7X1HUUo|6-|8QvolWUjtHiTGLZ!8W>@a-zdTV6ak7;^Tsxz)d#k72qY^oSg
zRuHkjSh=g{z|HBBD<(h&yYhcAK#{xR+nGB10j!KLoK^9@jFdMj9WQr^igU#s$RkxN
zc2d|V$~fCOF5mxSYbnQ`v+(E24~yZslBLCGwjHptun(*jepvN>2L^5Md_+P~*^p$-
z1Mi{?1u(#5?Ah1&e-*662D)YFYGW$q_J&(pBfn<6y^Tt>1qN+GN*wq=a(sLHl**M;
zFW$j^)<Wm*6>^Hc8Q8z-jV-f#mNXMRVnN5Ca?BG)OrdTHfs!)m!Bua5@qtFl>&<t)
zGmaO*dmZQe_)j|<?Uiz}AysZw1-FiqL;|?J4M{xBcy2^SfD6Eh3;it+xdyOOoypBg
zr<<lrq&Mro<n8*A;$8`86l>zjn4Y=42@cn+Q5o`ExIhzBt$}Q2ffO(z5&Gp&bsorl
z({zcb;!S^y#e1WiT<3qik3?wP))F0Pw;WeJs+k~WQLn02-X0Wy1OC9voq{tvAi-zQ
zgYeL!fJ#AC3EdzK_!X>Eas^{zBy`Sq$WDB}xM8B}x_~>VR2^K43Rk=_#neP>Kqqz&
z&E`M#Y>@Dn>>qzauKN66y}(vP>dLI$Qbev7PJXMenC&f&dLagZl5*+6RfV$uftBi{
zmQ>Fa@7LeFSfXYA<n#X=8F>plmaHi1!sR$v^?8`Ge*Em$qSFWBR#rWD3`v(2q@9Du
zdVgo~!PC>l<KnM;P8C<RcVhT~QsmL2o~UDrsKR0?dQ>V3*P;U8y(N>%0d#Y@r=HzL
zZovdY*GIOM71i5WZ(L~y4rq&OtA-ptoTV&28`V|clZJmGXTSvx@p7lOMk*sv!g%KY
z^q@ar1|%WU5}!OyspmNIv;LJbxwG4@+y|4^BfEOnm2W4nY~n<<EFnu2h5k7cJupZ+
zW1(|*?h&(hE3+2gNn*OmjhLLQv@4(gj4V8#O%5LJ4i$R<%Rn^0JeYDk?9-vbQg#!D
z`1iO^*f&n5Q-;ou!rXuG<FBz>+2TFC8bDu(Hn6+)DEZEE_o-q>3aiUIzenCEabVD9
zccC%{wFoiS&EKh2*3CQLr91Q$xE>RgpATHs5$@1WS{wHZ%VNWr^b^jf0AvfQ)-b1R
zM+o-8IVJ?_yC}RiMywOu&CG(?|BW(-c;<9gjtvL+Z^I%TGU^vM;<qR?d?C<Tl0yFu
z%sdysNapOaIO9;a>oXx?yxsFL`lZ^HT}VTQ2Wx5FKj-qFetRjNBAe~^*c)YxYf<sj
z@HJA&7_?~d%<TH+IXi+4GHqQmM)?K5uY^2DA>@9fSN|&Io!E=PxMQn`YmxQs^mkCm
z6mJ172|*_!mUQ$W1ND;o-1Yj?IK2IsqI~_UlYVBJ45nI&%Q-GjDqEjj>o@1p0U)l7
zdhj83CJG{1DZPbZ)n%87YNx|GyvL*(;aB_pi2rj$ywg%W480)l#d#@Q30#W`_t$Im
zN)N&6jMLQQ7>^A%3*9F#j-{vg246hA`fESd->-*ANFF$=D;{AXRaty+3=XIRQ)}1_
zYLkJqbKC6v{DePp+`nB+=((;tcv5%rg8cTC3y^_BFU6?cYjT-S<@{6Zs+OO#m60>!
z0<{!{{{N4w>yC%||Ks^|iqj)2u0(eB?xL)#tRf_PUPj6#7s(#SH_BEdTV=b9WUrG%
zWMpTa5!pw^amMd)S9kRL+vDZ=TJP8U`Fg)!pZCqz#EQ_yn8H^}qt~lv1INsU;7jsb
zcXH@N<;YRe1BN0W=K6dw!EqO-tj#Q?B<R;uYx=_qK<IJL#wi})Cj{SHEkEzkcD!yA
z6)ziG_nC)}>@9vG_pJ~9=Go=v`@N%Exa=M+!>@3EsJT;&`L(nKAbBJ?u4Z3iy?Q!u
zOx}ku@S)$>`@rrmj=mE3C=;D+<<q}iQ_Yi1TSMb8%8<e!!i-uzm#!}=!)vDZcLcrf
zGA7z;?w8W-J>k$O@|*mxFkjmzcZ2<u@YyCh+h<R{zmYfbmLG;q1sgZ)-sXWYXuz=a
zttsdkYR;X}xK|3VVBt^yzLm|Op^NRO^JVq!K@04<8SabMC(y+oLFq6R1`+r;_QPSq
z#NE@ZgH8!wgE%RAGoy3jz+&P8#lE|%I7^=*E&1L#^wklRpD-M}sq@^N*we{JIOfbO
zp4%CnZ`$?xK_{w2_VWi|L~&${)5jNwl5yKEDM(Oscd+`<2$7=#IC<gVO)0@W7Su;j
zkdwQ}X5L7+Q@*zn>AzFVU5?vp`4(>mpXj@DKi2Fch{pSaKXh1tfG+?sF}S<;iB*iv
zKOBDY*am>I@{p6mgxKRHUUH#RxU`>QD<XjeKuT&Dwj~?g9T9+*_VE+9HO`f%!^`Vf
z+0lzzUH>_V>5~<H3-m`;ap4Ez<#$EYeKKa=rKrq{KL9{`W&Y6N{fjG3H0gYW55{(e
zC0u1o-+PH=Sck@vwavts<ylI4OtTKS-*Zi{gFp`(`5$Q1cq?((X$>p8;kaD9JQYma
zYnn}2`P5I?huFPW(E_`5?+G?<T_G2#fPFIz+mc@*UKXUsl<gDhp(wH5ym>O-_vVdQ
zRuQtTcBml%t8*T!Xn{?FQaSg}meAxQC_je6Aj0vJ`!Fss)I0l=Rs*A1DRG`tUQG}8
z%uIi>ijjpaP^GQ~>M08IUw2=O&m_%WPJTG6s_l>QBc|gr+nzG&Gl)q4I?gJt*6arP
zOdB^vf1VRFKL{^DXDP>rPh)DUIAs{J7$5uKC$+XeMw!OAVfSdTA2EVXtcv;_^9rjq
z^zA!$OiK>HT~YE`;1C7BzL$i&)>Q49?Fj)Gb{XhHUPi$_0sUdSPZSG&H*ZD^?O1+#
z3L!UOTvt$c=Et6q#NNN$7BEI~GjrjjfIcK=;Di;iSTz-ityj15j(Oc8{7`Razwx#u
zfSkzsYVeNd7CuAmAqr2Y+iRwu;CgCX9tWt<sIV3Wg_`?RWQj>SPs&$VP1QS9yM1xJ
z-*34_4$%ebV>)L}do#2p?@c-KcB3n@X&LaxsSxFUSR6fwiOJn|Bhsa=F>p-IVX}&r
z<sh~#G$$+w4!A29+_vj1am6hkQ3rSeqMhB{ipZ%r=ekDTF=IkV{!!ly<?&Inxlx6f
z{7Exj`nT&-zHI|e{O0a&n7MFPKp%3Sf839jkH2shm*6=%5xrc47^Ht8TmmOku~;Vj
z_jIag`|qC4V=mVA8KzgHL07@X4Npa@(z_w2i^dl{EytsmIZF51*5)OSk|UZ6ETerd
zt%{oJEWIp^&?uRkI1j_tfzac7nxFQWG;UzyT>MNsL=+ZkN+jY3y{wJ&GFU~)R7?*T
zig<WJKC~|$??T6!tuLYx1k<2Glt<acJ>CY4BDQZNJFUDf+qZ3DnT1##BRl9L^}__@
zt#2kD+tCG_ZdV4MLKLY0P9Ixv79CBx05+1rMMtuv4is%!qx$!9nIZcXhBI#e@}?YQ
z=gZNo4Z}Q$?KQ3>f2eu+3(ax>cqh9H#qUJR?}i5(8l_RClYfp!!xX+%OI^`aftA%B
zQo20bMVE4f3L&Qm<5ENkOpkDQ?={Em8Q9cDTNWKaCBckz`Z3W~EwbOK>*k*}M(XEt
z@TqXU@`swEJzGoJ0Oixa*Rj9VYu9dy_5SiR`5OQh26yK@#jW#|Sho>{H&)cS64XF6
zHF})K$ZF|2c;Rv_6pxFR-}R`<5-@STLhfOO1#}6mu@%9U&9WPg^7FXaz*xj_T1FZ^
zI2e*Wp!YrqgBM$j7Kj|K@N>h@v_DSHSEFwxlhUY4Oi=_cq$D-j>tm?*<hNvIy@Fai
zEhX86aNhz5Jdqp~F8f<(PJR=o16W~X#~Q*p@=3Ilx5uo6$RJ}E55rXqo486mzX?BT
z{>!e}R1vS+lFdc>_j+fWpHcu}LzVp`v1-TFjGQ>j9S{$laf51p?Ql1<ocA_tDxTME
zsf7OffS<FD=Q^ttIaMl&8*q!_h-z)oMx2L^Ycl$wRdX1uks3WNYzdz=(1N$;3q{*U
z3|A0j8bWrtG=l#|BM7rTDc-DzRjqxrRlC)D?}!NljUXHhDg33UZH!%K=}<i<=RC7F
z7-G+yU)f1s4J<6~kG{UEI9}Z>d(wj7peldW6qG9g2OI6OwHDq0HrvZDu41C)H#59u
z40FI!SN$ny3l=Y(>D{B9b{ZFk^1dJWz{Q}8VH1ac&q&IJx#?{BGtQ`;lUx0{H!_|&
z|4ZqmLvJJbDkD1|vl3xbqI0=bc2cz#(fR9l-q0y&UfoAji1HAKv8MskfVaEj)O}vJ
zCHnU2iW`nx5b`RF1uZ3A6x@6b+4`a=@Wg<q5m$silt>mXc%X_B_gOu9nv=Z<+p;eT
zYCtpxMtZGlRy0*N%eD_l<-g_N76Vv_B-<U8VZ@J`VO3%viV<G%&gb<Ub0!mP{p;{v
zR3k~O_QS$g;S!WN&1c5KpwQch`12CDhUXCVbI{eFO83_KUr1C_(0W;Z&COOW>`F{0
zuJMey&h%XAbp*#VW`FR9n#bmelnK-JDAkoZd8IbLQ>z{JtHIhEI2^4YH`KWTx`fdV
z@0XTSRpMuSwe8*1*AuR&frN=M*<#Wx<N-oAzlA8+Pqq83mPWJ89=XpzNmWUQ$*PLr
znr7L2#qw&Bl?JSZL3z%uKMna&ZiaR29?i{hUSp-jCsPKEGA>5Zk(167sETlElU<;$
zLwpWWHYzw{tCF?~^dVy<ia;VfxZftqU?ux0js0obU12@n14J=o?`x;2(;ER}t7|*l
zu@Avt8M8C}q2|ze;k-H8(>I;NOe92o(>;^9c*zl52c;w^^EDMhc3ura$_)yb4?*Q|
zA@OVV*lTLFYgvw*x1X-IqR3sPD@rOccsg;DXUz2$;fH;twowgqN<Ga1=tCOhWqS(?
z6*h0meDo1+3UkHwjNaG?Os52&dBFGa?T9-aVu+LCdBy@7!LXmi#bjkoYj}l7;K651
zsPj49uCO>rP=;Mjpq9h89r`>v)`=BU&8_(b%oT(l&%Lb~uWyVs`n`0))|SQn;dmg+
zL)sihvOCV>@Wb*S+P(6L^jD<sSQodh2Nj~cCC)g&fT8@6x79T@L)3LMb^SLR&gA2@
z&kXK<lS3vmiv2_e`7e?I)^=v4cG2g=858P_qydxOS5c6IkR?W<TQ4tH?7bMDdA$DE
zfE2V(Kp&DtJikYnr_gzyhgr=Kh4|u|$MZAp7?~vm!8+6xkE*A{xz4%xIQpD<cg6O4
z8V^xSDE)%4sHAn^SVzYWG)G6GyzG-0H<auVe(H1ayEcdtG@$f6<ApNai`+tgsQJ@S
zk&+M^g(@5hEn(9i`9tC3VXQD>5&TwULTzcXq4N4zv>-~D#<;=YO^9=LDaP^TF<YNA
zRldK+OL~{UKNu<bk8Ln^4qMsOs>>wh4GS@ak&iMAsZs4q5xxydFDHH2w_fe>)^?6`
zTO7&}hU-|Z{#oA!B@T~>wrGOgvR~0gk!SRvN<OHIwJ=Dt%J*$SH72tG;anXSI41p>
zlh$zW__ct)_No41F)?k?dnwHFB7-NpcyzB&A<Dt51~&|tUROHmN60?HnOT~xJc#v#
ziIcZzIY2_(;{skVk(an(HO(@_Gig|0*u>YtA$1dg6MDyyBsRT}V7^isb&edpx4_G?
zT22z0*ZiLT_a{-TC@|Q#!Jsf(FZTuJoy)_HmGdWkTi<jO@_LR^D$-}h0gnd=+^vi1
z+a03i%G$xrF|awH51C`6yTbx0f8;&J?ljR{W-h-W&$3KAOG!*IN#vAAbk+~{ihd>C
zf-Vm3OF%4BVNjm_CH~t|sE8#Q;?_8MlYQ%z!1Rbg(Zwk8#W7b5=34Q?=L&7p%{BYa
zB=8@4bd`Bu-28jpRyzSC(igO?u$}a6#etm+s>RaDzbBsk5hI^xbyBHwTEnm7xy7H-
zK&;fR4ni;IXtjovE;q@`;l=XkMRP0#nxBzls1E<0Vp4y6kbSme(=O+c?^WA`a(}4#
z1obK34C+zyE$;|7<dm8CgJoi8n~`|cnH-1^I(8)=$yHdQ#Ac~$0ZElKVPbX2Nms}f
z#0@0XZ&^0nS+4ZBS|@xlAc<TZia_~nzuO9rI@W&nF>yerGW^ICg@faq*FRgjqRuv1
zy<Ud0Z{%l9)8}~JZjK~ZBOg?1$M&rO)J3Za<#=b+^`WalAYpDe*yy?Rjkh5{?RjVu
zO;_pCy70zfq*2rLs}Z*(SH+I1CC#_$+3ZF&Uo@dYl-p_w;Bx8k2|etAJzX^}d83e3
z^1YqD6?`NA`X#k`Y#IJT&)hz|xsZuiECt{3<qAsLG?imts`RZ9N|RmDlNu~uSG39Q
zFa}D(_4;mguG1+eoypU*)#SQKg($x;e}3)=;AcTN-k@@xSQ_MERvOV{-(Q7en}17(
z2Z*05Ss7tS=DrR*r!#Kgw}g!w8DT4)(w{yrO{;KuW@D~2@Y{h^z85FAwce$LTA6Iv
zqFJNGP#37t<6Y>)?4vZpGP@2$AmY}OCXr6=w`sU>bE{c0;Q`|LJ~a=XwMX%xK2xK|
znIzJ1c_Nbc*7{E{$AhL9Qw&F*M4cfg;wwy#<2#~qwH{aNjKz4&fcs$Mh71$gTSgXG
z{r<0mkds9H@Xpz}`^Mx*(eM@iY$j<ZamH6$N5?IVHCmXWV4is47S8mg%6SwOZ~Nj_
zcGjE^w=%ijog!A7(7}%O3k;P5oSN!eD^d0>Kp#@bNN1s!<#mb63n`wL7@bV>TZgrL
zi@C`x-g1GV(tUQcg7K_sJLm;dVUT97c>tIfH(IHDhF6+ap%}X-Il_I5j6{QKn%?2-
zhW(n5N(>JAb>cdch6#pE{O8>Bn#z&m>BC2k_#e5haz!8Lkl3z};(19ds<}farO7#>
za>^ai`#b*FRmlFMtpeVQAxX4+{BUrbeg){P8g}$dKN0lXn4+SVn?}q*thYCch%(BT
zXEsQ&7NRq5$S_wdGBUy@6pcx%*)rigKKAb3CmYA05C0wQN)#Epoa5JN8GRA;7=#}0
z%8Auzpn3c_b#`d9>GXFm)E;jw7NOU$<4p#8#-p1U;$z~ltUfUqyBq8`s?Ywj=~~KH
zuyF&w*=3ZG5xl9WE#9(B{G5Uv+;!;6U2+bW1GS>i`D{OIPi^@kj|(6~W89FT%P)0|
z*|^%?u&>_{H}7-Pp^%et_V0zlEzr3{8997fB6PRpc%1tElO9YOw=rzuZI#a}yMW2E
zkM=$z$LjW+=J$+eBcj;JLCeM@iujn!Wl4u`%eZON42pD}k9y`0HRpNCbe9iRW>gn5
zYcW4zA}^roz)(THyLd~ZHGFv(op>ESur2%ULa+jDx)2;3cXvd^;y#g4MiFHO%kCLe
z^74_3B8_mN!@hO#!}BPkSBhso8l~UlVx&TptAP2xX#kr(NSjPIM_edzHRsOTrXP!@
zoMnVy-gFZJJ1R}O_kRwjs{Nl~wG6`DAEoZC^$U-jd_m5N|5#5;P7G@`+`)zVUH;k9
zxya)IWIzgoM0}ouPV1!Y<2sI~o|De->sZU1Tz?iu?gwsx9wuJk>PDX4vG!Bp_<8(L
zob<83;;+@K2cu{Em2MQgt>F>_$dQV4@N1Qx_ddO~UAyRWxk`QwOa)}H6b6Yn-UqSj
z!zag~(KA8p75lD>oB<mlAIV@;AmVl!!6>yV#+fp}NGuUt22_Z0eG!4BT=2IMMd)g0
z6z}F4`7Z_~XQs$=R9uq2nr0-S)=ja_iy)d9LkwH~#|%beUDU0!W8n%HrkZ^k-WXi*
zQXM2Kcm!zOXzP&TQLD9UDUGJuz8V73V<`;MEODO5&-EXx?6@qG{7b>I_b!EC`D1Ed
za^6j*542jAG27{35G?kGn#bqymOlG)gYmFAW)BlRqq@L!iQFrGqFM9qaak$sxXZ>E
zXtgu(LcQT}unKLu02~}=*`{Ldh)QiMSHcfR3GEJ@w=!MyjpCqytxxVLc0W74Gto4C
zqEF@@o6OEz{(<8ycA^^;>>`ii{>OM)dN)Cf*BTePoODr83!xDM^91^kv%OlMds)k!
zdyE1)!0}yv_rKcoE*+;3EE<Ix>?ld9fYS|?!VOFN2=pN{#KJK=;K!SfHyxLmNobuV
z1!@mYQH<lEtu9(Ei&y)Mg;-sl7}gl!HUgg08aMD8N{$<vVX-+r^}#{tS)C!J%0V%1
zc}i+XB?jG1W(u_O%bfpM$_-0P0{W0Y(V^J^;0H?87xAB?pu4dI2=yY%{R1}=i`9J0
z>78vwfhR$;C!aHEXkpmIivnoN28rDdSV_wECXrS2KBPS`>w(e-agtEU@i@d;0MsG`
z2OG6lJ`>KyOgZuf>YRx0sw=F~G14(2)-DP~#jHfUi_cVnbc`rMi3Jj74fG+OvuKs~
zvfeY>tbFrk6EF(jQY#@`c|z&%{2<vri?HP^6{Couos{-}tlGK1B@+}hN;fREPPlUR
zAOqoma+3QaqRgIMn@ByIN+sw8V_}eHralnPh5HsjI03GKxIbve(pYe-Q@lq|Du1(i
z`>lwT<#u_>KR60<zwchVwoGklz7v`j&f`elO(aoS)AX~uF~3@@+NxxX12y7c(m)^b
zYs`%_Mv$+<mNZdluX?WW9~@;-uMb3=V68f}4hAk=Z7M{$bDygI73%ym1TmtBn&Y-+
zr`mzzUSm2-3O0OiJpTEfx$Z3bO1dW386uat!QV*()KUp|f4kr^^Z6f;=VrlnY^MUP
zynA0e&7C<Ep|>zM9k;R4;s9chtSbC&eO8N>Ap@mg0_g2+iE;|?&lM}4Dqlcd4240O
z@3h~BaUs{fjbkUT_N}>{8)ADSHASWvT!nj`E$CwFsd<E7<ydcbh9eDw;2VFaIc+FU
zdK$6Y4OI}CYTi|uSxKuo>^vU<<!@5rYPCO`<FD0ws#G4r!baky+pfo*P!_mq)J!H#
zu(b1?KSsuXn@Qhnt%@Lo^7=leiMfSg%MUYPysd@G@S3^nS$wRneB=EGDS}EL*%hyW
zqw2mw_#;U|yROHLJ})qvFbh`rL(RX^@m0eB88_|bwYy;76`f3T#_UV!H^}>k1hV_T
z&;WW&e3w<V{S*8vDp*<=(1)}`hrG51hmCc;nr&m-nK*uT^i;8qEoE|4h;%J;9IG|!
zS7_t?O(`0RdO>I05L*rVM90@zy0ot4)Q5#AOD*Ta+PEo0?(V4IyCY2AN7`fd%G;Ko
zI-NNJY7vBkjlSeQ6UxLSillasRHO^#eEvh=1Gy-DKIQJbr$_=Td+#N7H?=td_LUkv
ze#4S$oSMn~{#Tp$QFOh8uVZ5|D&bl#*&nz+Z4}WTvW9!-y<3lP>8ep7%B2lewWO$1
z5|sJ66QTIVYyGus|5%3m(lU08(_bdTYRL4<|9O$VqY_GzvbjhP?qS#CC)Z6#_O4hf
z_9!xQ4dM5Nv)1kigWx-VsQH;Zp3K+4W_!6fNlNBPSm-~7W&6y)a8z=)w<Fst6#vgK
z{A|y%9Wl`E-&0KfHH>rNG$+Z6M`fJAW70<srw8XvwkT4_N{+`h5!L@&%&ftpKjZ~S
z?x@PLU?G~EHU;z{`6Z%o0PV2kUH~a%%W|dsx-J^zdlm*u_((kq$@lar(vtt@L|@72
zd6MsyytiS*Bp@%aOiccySs*c~>O8L2z4qZj0Q^Lv;DP!NqJdrA-2dantV-=;4kvTS
z{O1!LyIhF`Nkw8G@qb|AXMD9YWf4<EGSl1L&GBzKR!`oWqLM=_jh$WZ{TEL)tyDkv
z{i_eP<_(rsW+rO0Cp^f2G&{jCdpGrgSy}aoqiRWcj}EQqXF%3vohkQ<pc*@Dv&7*&
z*_zJ0$M?wql^kLMQo8wkMD&Azt{xSl`~|C;@pq7em0Z+%8{5|QV84mVJi`_R%lz`h
zaI*}uZ&<#v;}@}1ori;sN<*FrWMfj8t3K2k@>=;d;OPP`9*`LnwL_{KtH-hS1h2*J
zH9$7Bhc-qZ!<L`^l+o}4%28eRuFre5+CBA`$Noi<-;j^C$D%7Z<w}f*rS~EgqWpt_
ziozA@K2Fp4^%AzNZTU=J<$Lcm63KBk#s)J>L?|4!Z}aJ2d5=m|odewvhJ%f|KGBFI
zU=ogM7LycQ4x4}L`plcGAn2IRnbUvtlNkO#qgr-DNk;AC&}M=E7_}7d>pFEt4zZLN
ziKZJC)jRCISIdd1Bn6vhMj78<o6;m#UmWIJB2Nd##AVFgJ)F32Js?)8yl3tKV9^nI
z*?9zXbzSFMmHfX(jhmFIq@aqYEeZHpOdF3Yz)z%*_wW42audFiVq#*I7hT}zxfgYh
zgU5=psi@x_BRQRr5ZJnQf(o!>E({VeQ~k`W53diF`D4_#0K&gU5!-~-6G_lbgX65n
zAF}2!3+DJk&9Bq(qVEB}pXju1n}&Puy3lck^>MF~%LYTX4-852gvf?O50RqX#IWT*
zU}4nJMO~^oZ%>NumZ~!SA&LfKb+;b1Aca?ANLCqHtdR`6PAnRxr|+mTzpikx?(27$
znzu6F3H`^YtZDk^r0{+nz2q5m1oeT|xFPmE&jhV7vFAq@^fveJKm023uTd!`NGp<l
z#FoF@Bwaf#omeu&!V2G#&Ra-cFA(+OF%51ekLSXOeLczPN`9M<6|ecjet^*9EryIM
zAePtFj<$c)v)I!=y!97ioFIzqB&QFL+&=n$nf}}?_>V7iT2r4N_MiKm6<(4nI!2+_
z|IPF-PWL-VKA#s!q5Ic=_rKcw5gNY4{eS+$4I$$*!F6EB;&GK)vg;E3$AVff$PgUm
zl%b#-#0~4yTN<Ia{vAQB7xeHC%AYCoIiDw&F#LmZEt%quAi90#qm-Q#0OK=zw0NI7
z-2mfdc<lZL#oy^h+XWdyroOWDp?`}B<Cv7LxgBV=Q^j8wHo)&p*)CY!@7DX&H(|AA
zC3cW^7kr}?QPN=JhS(xuYp|fC%gkr3<sK}gt{e}cN>phfYmfcYT%2f+*?Upr5+ED4
zMoS(5)>9#+nP=9qI{cQZa^$~Y)}t1Gz=mX%pVT#{z|K&k$6Jh9q^M85F7q<YbaTLk
zrkdg5nDf!n<T#dNCS8_kl#bco@N3+AT7On;`><t1)<pt~r`}Zmr=lucv`6Bk<Zf^0
zofM52k@z4$Dg0E_tjqDSv&n2b6InC#v;%y4lt@C{Z8scADi&NS7j<vYNQKc7BWZk!
zTlJK2rQ5?lD!z7e`z(Gy{z@?o#SdvoD(=3CEh4CH9FUMS%&O0C8KU#e3C2<WHz}cl
zAyGsMMDpU72E_k+F_r+aBN;YsQl|EgVZ$=Jb66W>=9(<038c!(R_9Popp^>wy5*tx
zMj}CgztkWPiZhtQaWN>8VNUXuQvYXIwh!_e$*|?u+q=&!c*q}P!XBVFwX5aur;~(s
zEt<-{EJ1!SQ%HzEP@<gMvZf98U5PvoruoN<<xdve0wU|<yOfa*PPm|GB@`1es|p3L
zh6onUe9k9j)tKa7z`tP2kxI%WFdGha>&?&wS_%n)p&GL2{{%W$YV7~O9)GSNS?2aQ
zm3CCJOMo&A&Pc88n$k>C5fg0{@=q?7XYVdxZIH{|#CB`pZnPrm1yRM1lAl7(caC(A
zlr5r1>kI>}Jig*w4)0I()R(K|13EDAU7V5=!&oq{5AgF;VUUQug$m0p?8Keawza$A
z-j5vZesp(p6lqS8@1dUwBdaHkNrb{EV*5sqcC;*I$e)fMxkcDdSpUhkwSC({;95zr
z?E&1$q(O+sc3T1gYE#EieJ5Rq(q8d^ci`Xpi)+n!t*i)op@)5`kFsbgQ%mtJp7#Cy
zpYJVs)ltw5F*w+0Zk0wn1_PdyXx?@X_uh@LF}wN?SRaQuBMA&EbTp8Zk+(5y`AM#f
z1}Z2sf%OiO)L>vM?~~_Al*1V6R}0C^B&m_^{E$JR)$_UzREToDICbP3kniPnFB7Z$
z=mM*1d&BIFDA9v;{Vkc9N2kuj#ScDxleDf6S}jbCOnxf~ER184=O3^yj=mDBYl+ZJ
z^_k&wCAX(;ru6`Q$PDpF>{VI?h50_TM1OOC<PU`l`d%8ZDCwW(ID&}I8benoL;W;J
z8R<+6cd_`}5J6q9+jo5`)N1#f=J!tj6EY%kCwXyi;)VLVCn43eF{T){{GOkT=7OlW
zR|>C4A?r6%faEIjk$DA;INY@T!cJY$s_g$+<*z)}dcnB55Fh<-tORDpUfwr9;k)8B
zzjx~YO#1lVOA(Kb6517*9%1<h1=oo-lMWB9m&o^dr}}>;N&0G<;Y_%1Z_~F|U$TyC
zrqlrgY<o^1Noo(?gwIaqaRM?}3xh;lJwT8f@acBidi$qZv-`F!EN=#{eK;uivNy{G
zyUS1SOf-7kJ??aRmRT^%A8LMSo+tMipt;dbt0ZE3V?Uv2EaK22Q(-wRx2hTcr4b7$
zkT2(P$ZAf6<q(UG#ku;YOvZlq>_{pSd)33SGD$10dgnA`LK0lQTnlw>XilblOY@X@
zz}1^*8)94Fa%Av46D_$iUIj16Z{6uLk;1R5x3hzP2)#J3`-Hf88)<ky0!5@;I^}KH
zoKUMg5&FBE`!*#DgRbR$Xb*`lDA=8b8|fI~QvPvd=ScUW?4ry~&AbhXhylTa0>W&J
z8xPY8w8n)V50jI%jBI`lV*~n-_j|6#Tmgx5JbH+G&V74Z#!dS~*Xb@kO0jxf?&_X-
zMGD_&6uxzr6tpfPR_O&GR1mp7;6$BzS~^47v)k(M3R?l~l`cibA8W)y#xAc^{d2l-
zf(JP?rAazC^7C5Pyux-Z;UH>$#v8UIv}>7G%%s|JaEhiN_j?-4d@Xa0$m<U0qXLoG
zeZ3%ftPXGVdnv4+SNeQZkU!L%&6UZH0cFoR4Dq&Zj@h$uId=U1iTmUhA%Jdpvp$@p
zV_o%H+@F0~1P(SD?4l8UOB(mVe~uE`mCri)Pa$S5x0~Q6iS669Et3v;$=|r0QAu+g
znXeZJ(wen`PM`hPw73X4+3vK{I}?u*$LL5^-;@eb-t|fi&PaXU>FgPjj!zeTDm^QC
zE{0HC84ZeXV{g5{U+KQIloQRSk`K~jDh$%hF|~eQjd`nBd;%N~+DIBO*vgOMI;d2y
zc;{uppNU(#AWca5aS*e@SsdH7Yv+mEwdz0TkfL~`S|;Q7MlbD!upTaF{-_uJQ1ctT
zOo*S<CsPLP?=|yDIud@hxIG0ORNpTT&L!MedAt&z-(BzZkN-$VPa8_pL8Ej#jw77B
z|5!9?yfrl15uDF1`Tr-Lme`hCRu?a?Sz_HZeNDDr9k!_evV-3I{YIpK)9nf=5v7T{
zQN?BJP(fttXU(vaH6${`Sf$cV_PPeJ*<M~s6k1NYD5&Sw97{QejD_HTgw2Patbvp}
zu4cqK(b66yMvrez9#M!hQAUo$JmQJ0&zz%3m2?cF7CcI4F11>HI0sLoQX)OY&u#o5
z+U5OdMdH){ol*B2Dj*&=^C3U{b}uozO8NY|86fB^eZ9b5i7!CxGgRD}(x#k9e4-5-
z#z%bTeu?>VEw91#`F~^w-XV2}_vIe1OgZxY|5^B@s?5_I(zM?Or1B3P7{hE)D`tbz
z;9&85F>zkmuwmL5a|~Pl6g88j94b7xpD2QVPe3a3F`cIzOxI3SXf?bERaPkC)eHQ`
zb#k85QAEXD=s2^zjWo#P!VHGkl?pdowv&NY!(}x(_HOC}52NK!tHe0fsqvf;z>SQj
z(kUt0-q=r>?f(zKNPBQNJ$!Mii*&7WJX}ecbm;y9=tEwAb+faVwfxb})B3Dnt=WC}
zxBk2l`VW*lI#wc=iVteQLWny+bd~B7s6_$}Hriu*E}4Y!;T&f0_H2&v9V;!?c1s5L
z^D|Lc7=zqnPruBsosE%gTi5+-qj*sNQKQG1#8W!+gmnppGDlU;quSK_4&RVG6D@Su
zpU|>-L%Nim3W}CLY}$;01RIw$?YB{=ka?WOYqCpV@UA|__%Bx>^k(~N|A!;#tC>i}
z^Ah7Vzo&obj)dz2=^XF^Yb8FAWAab5tT1f(J5Z)Oa;QeHyJxumTz4WZc<zt`d;~Qp
zkZi|BXHh+k{cyyGTNR+CGj8BFS9oJ&04IFEdF+`MP|J{;t4z1bLn(k4#@`anp-&ow
zRNJTPP*RTvoHToRq^u_L%-c=is9Ms{?^`;bEh+s&S|yM?!T~8s9U;Vb#*T69UAq0q
z)sM^8kdX>e9&$>LjfJ_~bD=DZ@lR<gI(IPm@TW9^{}Zouop1}>Boa2VX(}i$dvp7+
zX1+pf!x_>g@82~t2i6)>y4Vf-HDUFwwx)8CO9o(JEDXxi;Lf-ug&Gt095@|)omhEU
z=BZ{GD66=-WbUcf(Kn%17JH9LMUWh<FhN|ItKS7RTPF7><46BR+HqdeA*y$-`2Ic8
zrKvCv9BdSQ^~O7EK*mj*D1@Jl5fSM-+Qof9=sm915s~5+l9@?<+#wR)f@m6E@B^jl
zzSGgyF>x7cJD11~)U`kj_NQ;0-Iygx`5;V4&f}m$l+X3(oi|{T>vjF$G-PuAxfbB%
zW8x6&dyG6G_?dOU)Am~Ct<FXWJ>h|lj@v?hv?2-wLXR^EzF@EcpJ3aCHmICOc~oUJ
zJz$|6eC7%eYq!?Bv`~a!aG9qg7cbDuTo{yRdDBjx5ml9CVfVV354V&MC!*&?8AJO-
zxASPLKqfpu+}FMD{dm=}BZq)`YPY*3qpxF&E(O|@hM>u%sh7EYIq<ABQO52Eb1&lP
z8OH1sf2jGogYdf$njO0~k)Y>VK!3!pwyJ{!_~1-jL@g!m{;9_+&Ed=cEwdc~F%ii^
zn#R>IAxWDiIif{_ai;9ca%{zBloQYF7qG>=GU+yycs{M@4)QK(ekfNM4mRp-X%X>2
zwFUPl2z&sGj>t=FeWIM9F<8Re^S_$R!1|Xj70Gx{9^s1e_lKGTs!Y~ee@Av4Q=0iY
zYxlxmkMJN4CL~8Kcl9#4I~#Y^z2D5dOA%i8H>c4zz_8`##>N`4fF81s^=m|5$IfnD
z%hh$i#Bk8oOA|`9uBC+@*Ew^#%Fb4Ya-ZW5M7CFq5M_dyB~A_qP&!0?E$m#;Sjz=a
zB|e^d(+GV${aRWs(1$d5kFL(;B2s)dA!*v4J+|fe{BDEn8g?2=uMv@SDds-#_|Z*l
zjjLbCpv3C=sMr2bb8Bkmhk~e_A+>nn4`B4Aa#8)46#A+wMJy?H$ww@doi^7(N>Gmv
zn{|=H(k8uGSkk&7HBZ-zV%A&IN6%>Hw0WPK4n3R@kF38t5W9NX#-@nGgJqlCW<K2K
z>Z-}d&$JG*!`;14EdGl!WRr8x!|J7J4JYV~0U1mc^zgJFs-EX1#&vS<Jx|HOz*{<o
zg}0;i!d}Hde|pf)mFUMrZ{!$i4_^WKN)5$j_zKV8bH%TrxE8r@k^|NVdcrZ5;JV?m
zD?_)GXM9#881|GJJuYl+o?~zY8y;IHWo*mxx)^ce@O+{IN@z&!Zt|}AewnLZSig|;
z`KVlfsCjNIvl|1I)vE-Xd{3W7mn(w@ye@=x=iyfgmoUG2rxj=p3qdGKyM!7&o@-(C
zgI}WXdt64T-JWL7W_!8#;T+UU+mN!acXPPZwU7H85!J?XAGi)SZs0e$c%_N)*Ds}R
zr-3Y&>M-6hY53;~Ma7Xv2`ZUnL<gFr*~^Y=ZI{1TnV$7gp36}?+8h7_Q6b7{3|`p`
z0?G*&xaM02))OPqnpJae1rGRsiC@vBi+LEu?t%!CX@&k!^G}V;o+OT(x^B0yU6i=b
zny#3BoxH+GlZI_YCe*%lYeup6k3461#svpM-n2MtnZZ8?Dck#;sTwUS%^F!F<6H$R
zT%LL2^1u-F+$=cw0qb>U4Fe3DcyG&d`3OwNE?seLn1x^4fD>t?k32`mrAzQH7Ew#F
zk7yGv+`<il^{v352^!;u#+(wZ+bnWFJgS|%Qqjvc{mY6)BE2s{DW}^y@Yd+{^8;ug
z?u2qyUY3Yuar0}~C!h~W3(@)Yh?r1U`iwrz3pn|Zruq)%*0aNx6X3<*6DiV?>y@FY
zunSa(@_Q_CPA`DSjvC&1kss@ICTqGc8d)z;lF<LTY}1kbAyxW6W*KAH#K$LS6(ca6
zB?Z&&BFF1~ep&H3obEYv-hOLa^-cZkvyp>qaXs_mzQA`7di<?{dF^#Dv1CP*eK0$j
zG#F=FLrtz~H0KK^2Uv>{CsEMjua3>1nq|_k#IT8PG2P$_z>Ievcdm{dk@g`B&@57}
zfMIihjqHBgLV^MI(}q%3m3D@u=L++)^KdZa{lw}`1MG2|+LZOig>49ApQqRJz<Z=>
z^)26o`e90^gkEHGEKC)I9v9ZrxUX-C9XBbv>myaQ7tAb??`=cjc)C=mye8jPB3RDW
zHDO&(A%;Up$-Q;0+tyEf#!8DF{8D8Phw2)<f5q`wKReJMTg^fmkJSVEkg>v9w!)%?
z_d3w*%XiDPMlR-lvN)KIr3R@vZRh1cgE0w#t-`uK|6sW{eXm{gajs4Y99#VsK)5Yd
zQBL-})Sro^<^<l|&|sg^;woOXz~&dQ45D=g+F$j}(l)r!mqt75opO9iR7<K3_;@;X
zrB|hd*S=LiB>GZUoz2|l%ls-V?SCwVL3C!G&$9$@3!jcVSHBtgu-+WB79wVSFxuRE
z{MBnC7n<r13(rr3c{Bk7;tp%7`t$Z3lvHBSwEMLxyMb+4kzp1+GJWL}!-h7mhR=7G
zMqaO63J_p0#IT7!nB`AN!DKcdR%_A&$JRU1W?dqs&kihGO4ta*HaOI-Z6*!;88fC#
zYm4d<uwi?=wNcB899#K&4a&>E5h6P-WPfs5pqP`J2w=kFsq0Xyr7=z)-%3@;B@`Cu
zL)M>#Z9k_y5$}7m*2ooC^=dIO)i~oR<?Mz_(!M_iYvWM6#u>jmd1QoJ73e)x7?gL{
z!p^{e*xMv78*uF8_Zuk~9h#=*vOtZAZQ0?ZpjO-0`fC#&epl7zD))z)<Bmo7S_3Xm
zZnkgcp7iZsd?}%W?)t<};pXLccBt!{dc0=|dFQBn<<gB!s1W5XuMDkYPZ4Q5NyY8b
zWYSD}>3@`&^ylCOxl(?7Sc1fE=wOFZuLsZfw{(erzqpYi4Q7tf$>S|1FV@8!vM&20
zjIb>mK%c$Uwf{YxDt3wPD`PfM%|<%WnmJm98tkaI!~)h$QJPRX2Mr7(!_9(+<tGQR
zM;&U{5S-a@MC<(hp-JbsqF!V0Vvbvu1NF;u$~(X9E42j-AB-~{eEU*8d9UtH>Pe-v
zY0dpWj!BWhQ~!MalH61}?RBRLv9~m9FbAT1!_dX@y4D9hdm$LM$Qy}BWlerKLP1Qy
zq<yz)U1@*P8XD^N&*wyMG2Op|Uu(P25ZS(PX<!l!h^a7$PX9rUp&ItNhucqg`>LOF
zMPs>I^cw$>3uHdbO=lAmJrl3(LZeWJpPB8mm;%xCfY9R~sZeVmHOFnu2)9x*2O#le
z!S#Ys9tw5Qg#X-ARqOT!ZkL7U8cH+=!Q`kA<w*WGBsHk?+>fZ`lEwTw^p+1b8w`A~
z<}A%t&=nU_F|{u_&s%ubGjqYgS;uM81v-D<>WF<;o3z}<v6G*wy=!^+lO9t*R_7PQ
zTd*x|Z+&vF#x$JkEWk*O9_KN%XlG$?f6$KgmRQER_12oTaB>@_?Prj`E)^-<{gsJj
zzQ44VYJrDUx<W2d0e+Cepl({wi&LkI#ycv;#_FBW-}w)JC&jHxh>F5a-dkD|c*tS-
zoHYuB>IC|bZ(1d`9#daDXZez_%dzvtE7R&vRQ@<p!vb6SHSQRvx=Ysn_;ZdNBdZ+{
zjd8;)6>uHAw)WU+Z?A6J_o;gA%BKybVC`j{4|4%zPx6Tu67U<%f%g<Etf140&mmTL
z5Y3J<6++Gj#$|v~zdL5w5vs6S^G<db+M7!$vr!+2-Q+0`@Oy#HEXZ)8^Up?Ye~cg4
zxZyrEkOQu+TUqq9oQhtqSq?m__r8)+F@@-M9=F6sXLWiyr&h1;#)wEf0YH1VF>Kl*
z3>pUTrlPj>>gK=SICik#D8WsT6-^f^T%KAQ?C(=gx#}`w=^~GGu=?{c>OL17yh+c#
zhk}^`Mv=RQOKu*xvrSI-b@KY&lGl2=xTJT3S-pDa@a)*-m8w4;+Ofc}X$vrD7-K7*
z(og%w9j{v%H!0&IeT?`=j_Fjn*PsDOZ2!)Wm$a<r%^(`@Fn{Q9QySg~q{sNW*5?5U
zPvYFhk4X;o+d?1Z4)*1qJ#D+O4JDGi1RfXIa~AdwY;*jz%=qE%Z+J0B+J4Jlltcvu
zz4w#Z9AMq~GMLJlx^y{Kzl2)TAG0q62XFdy;pssy7)~qL!EqIQZreo8_ne9D1!do)
zx{X-MS+|$TFMu7@KpjEV(HS?)f`I#U)wL59qz`p12S#TwIW_m=tSDcBo&r5NH^fHz
zQ1=bO>gJnfYd%<-5zvRMv36!ebrHLpf|NK<oYzo)-L1hEa2Ofx4Czr5?*+8LE;!iG
zAd{Kz>fcgP3RB;V-)m5|>hMxrttr!~RajgNO(Ew`0498rpq6rJ{_AebEvu#3S?&MB
zl%`XV`yISqJs3DvH90UX4KaE^R<?(99pjBf3+xI^kHmT&eU^FzwJ#0_Z;nBC{DAA=
z6K4BriUk|k&DxT=r+j(h_sF{^4^SZLC5^|J=xk4xeH75Mzr)1UDME!Px0I@Q28*XI
z<s8xP$Wz4E$cELWeQRW)yrFj=wUn}S<y{@CH}+ey?^tQEcZPA-u7vxckD0re%YBEb
zE5?={ntLHVJozEy3c^K=;`f?)ebI#u&oz0<(>x6Hf!4Ue?zb}(<qRfn<HJsFvbEJ~
zE6%SB^bc%IF+tYdmnp-f8r8i1Ya%xsyr~S^;YIOL??~A!jb}cYWZ~_YUs%%kfTOJF
z7-Ovd%=10oTHTH$)}7J8GP9WS>Z`mku1J5V`8nt&gJ2@e-fhNi*-r}pT2E)2bK$gA
zX+lUag|xyJ=c(u7I|Ih#@2zbqa;~S39-R<?Vf|=~8+Pd#_BFT+P)#$VjNW=V0=vO?
zM_xFLQ@#xp%)?l8`|5W5$GS5*ChD1ue#!zl^qfWx=)5DxA3?ey!h&)|mOeGhi31;V
zG?n(${whwP6~ouKJh`b|Nd?mJ$25VB8+=4V{jPH<qIm63_CC2@9~|r1wLd?ooNnaG
z$V_>T2DcqDGZ)_$Fy{3Y=c4VJEQ)Y!RP~4XQX$HBo-Fa{UPQ@fodhct^t{{)pCr6`
zpGJ9rhflb3q<c3|%BsNrBAxGYpp4(^d$Uh(`eOv>j2nDDMDE|<;ztcGyHKYZ&1w1l
z+*1|mHA9m_^#Lr3N2(<Un&5`i9lguYB}AKDX^k6t8)xnU8B7D-wiY;#jP|uuGdwH@
zEKGT-=q*sIh)${axDoH^rL%D3<Jzb5Fzice^tjTGCO`hD*BGcxokfR;GQQ@hTGG6X
z9Milzd3XQGEay4h+1Q|T*1Hfbuxlo;E@5S$s^Slm0{W1Ra+jaNu7iBbrsCGCS4ZT1
zHO;Qy5IS)H+t62cCl{?wY)^0gK|OeA;X3?B?G{PQy#*69CuT?%`wH?@nyYxU^E9)?
z6Lj&Msl|s}aPSe-ClGoZ{O&OWN}8spHfFBnmQ~Ko`{hyB<3=%WVyww?Qt5()kC)AV
z+bRP6;e@hN^Wt{_kf#tF+^;DZ$Ecx(Eek!DKhwBuY1I>@RY3Q*ff7u`NX+c@D40ZI
z@>)~H{}^}&=tDleb@>_WI*8R*t~do!=T#@a<I*G_@hUyx6B&<>4~gxm^=(jcOhK!|
z+fW&_2Ikoy8e5japjP2&PrwfHYhj69ZdG%=nlK{o-C$-XQH&=OuAhHi>ig<R`nqT^
zcs{nEkcS7BCP{@T|0KwvlBNK3h?W<m^w)VgB_MBk<O)%qu3`d8=!I%M7s|9=tkYCi
zudVPoh-m;IXFB7CpP4Sas8#T{5ycXsBm&UfY!`7tsZt(wNyQ{t+zyL&1&fZArFlPP
zVWa|7!Nv_NIkTbwKe1hRnSJIm&kh8P?cs;zZ|L2mywml9!5ul>R)4(tGU-`DFVD)C
z*(F@G49#M2a9m=0IOv8L?sIk3eA3Z?F-yYZ@xZK&*vc;f<o+N=4ZgXu=rcqBadORT
z?LTddjLA#^xM69xfIejS3s-SeANbqwr8n)DFpGYc>(+?SU$f-o*9TdeY^2W?X`>pw
z?q=yde8j{RWrkrBmrXuP8)J%n+@C|-0%immb~cv7w;dJ>HeXeKJ3xkEZD&?mNB6C9
z-;3JUjz=gI<Ync78czXKKsZZb5CUD$P5V(7TXab|$At|^`24=X)c8syg}iV}S~sM&
zg}Z_k%5bPZuAU?I3(TF1pcWBaeZ-2Z_R)uRu6p~ctj4xvotbEQY7Ma4kM<uvMBj$5
zq?qsvW-`z)+#_=FhUbd@usl%v<KzvW9M|@1B|~vb$^E%tPjNCI+#xm;Iersh->ZxA
zdR0E^4qILp|A9gn3WG$hem_I3L*D`jfgKmtv-X=8hFVN5ACafrO(i64x1sAg=Jh)G
z-7c$=+9)0_Seg*fhrD@bg8>j@%HDPM!o~l6^~%*75eoiQMAll5?twye=H8=LS_Hkg
zgljytx<Bj@akZOVeh%9LIn)hX5?I_`-b@B0Bz&s9OIR4m8m|L;ORC8(cNaJ2n=CrF
zuZECb(ll;>Y7V;4eAGzW5LsHMKVGkMT5@7|lB3B~9~MdGO)>h|&e>fEJ>dcFO3~ih
znCbe}>vW=`0EmqX4(>mqug)a+61HeGJkNPDsk3ycMB2bWl&o+cUC)Mk=I3qdC+tJR
z+ou1bYNu_4F0FSEQ7>#Gl1Dh+=e?o48`;8-%$=XYL|cKCc=}TJ7GFw87+I)Z^M?ge
zqsQ4!EVu*w47lU5>pB`G%wL@Di(HX<N*+@ae2OVtcRD3)O|6{nvwJo}FpG<Z;od8M
zsCjX^VlZqT<WTqPoOi7d-|pEatAXzBkxFS#@<>&hD3CmoY!tqw#?5Oubxr)ivJ19n
z^us9wb`Z@4RSa9c(6@6}(|UmtE4N66iBqwJZ^_K27S}t-XI~#J;S+s#RNIWAJ1X41
zxV|sQprK*7m+ucXcd1bfhlPS1>Xy!Vd=?VktiOG%G~53ixib_Dg>|Sa%If?w>hWgT
zVo&wZdzHd^9CaRS+yG@9dPnn78;i~Hfs~|jc(e!!Z)SMSl;($}kXx^NHJAm9mmvvg
zp48tX<EiqakI?HsPf<|;ZNwFnUzWvqFB#Kezbm+!c3XdG(+6oY@9^vEL6mkL&u#vZ
zUfbdRt8}G5)V%wvViYVCba!!W=2fb&ZO;($o<XR?K|-?9iH^zEMWI@__aan7&3;VM
ze$>FQ<*VY(X{OBrB@!PioqOVLDy-8fC~Zb$8g)>fp3NYYt96~*+U0i_$`G7IMj;{K
zfFr1BqP_h?-83Kdv9WeKY@TzFUqhqzL*K*2-ltO@G&SWaT*8KIs|yMAkPge~=4PUa
zl?20<4^m|S{=N}AeES)O`S;R8!|w`YW~0kWdJ?W#kYy)oFm-n6Qc<3$D$DW1ek#FW
zg^mVxC_YVJhD?}_G^hN1#rT3*+D0DIXQ*A+HU{k5+;P`@Y+=IV92JnkSQsR7QwVf5
zO$c~*vG%O@l92GOz|2^8Oo#{N;p$TWeMe<U_9bEbrQ4<9qN=LYSNvfjAoRHDo27V=
zsQ?l^+05V2L94WV>c!sEMW0g6k)FyM2Wja6%+tSL%R@f>78O^sFJWJ)EnDE6qC(t~
z(c?D^8O9mzRl^ot+Q9ML?5jOH+~E>&0t}RrgKJ(G`sVwTrn(Rx-4}No1fuz<jbY1o
z-AK_&Qw2gdzX{t0AvG2u6U1fuR@#&D?8$ZD?8*15c}UgpS_Hkglim-7pd%<fuyI4|
z2hjkYP7PE_%2HmFZ(jCw9{eR8!qalKjojkDPt8lyC`c2U>eXxCcI}UU4sF%dm15xP
zyh?>AXPxl6fO<t+U9+9>Ht0EaW~WKwv*UdeZbkA{W+xmK9&AW3D1Uo?^v?X)17roe
zjz8=NHF~_ol6!^m-hUX>Z7&H2<*IBC9{i<}jzNS<coO+2SupU=$l(G@?4Db&U;c*U
zeY@<O(=-hC-uOe!=~fgIU?SA#5@pIsuekaQ5guHw&WtTtdqCd6Z9s;LR_xwgB9goI
z5T(x7!k1!?pkhGialPDE#<Zsdv7u~W_S|y`u9~QfN0c|B`2aVas$5L85dKze(i=Vt
zu@k_1Vp6@Y%VNG4Pg>kzbzFE!efYM>ri6ou*nzc2P+L`55IIq5<++Woak6PD5qvN%
zMJh!3n!|Z(K=sd@lY%~c+wCUd$}QJNlt;mT0wu~HY8<=#f#3|Rdic<eWh+AX$l>=n
z5uk{aOOL<eTmm9hs56zFHrM)2b=@YfLRC7gA*D==lo0+_T+M!Cw?$Tnc=T@?1`Rz7
zoA}ocv<a|VK%FJ77<>B`YIgr#m;YeuS%?AK3?;MpJA1o-c58x@n5-<fTMc8oTxb~t
z6aAs)KZJSC0XJEUec;zo%t7xm9XUsOwmnXh6{iAhF49B$S@=847SWFCvKP~C5N*Cr
zg(&B1J%10N2IG4o-`+(JUh0pmN-M4^#>~luklkgAlCjA0lboKXKB-Y3S!urwy_uiZ
z#K@(4mkLoXZKVDHl)x={_oedUjy|e;yg7XN!n+44<ewk77l!F9DPWajyOg^j<P|Oy
zbDQ>%xhNp(vX1%X33Fz>TYyo-_UcN64K-`?Epolfq-9s~!PpuA-#{S0_ZS<?&v?D7
z9sDu!{o|?!0~PQSQWzxS7p|g_Hcr}nG4~s8`I+u%H6W&`$kNA%3y_iY`1E_vS}Fr)
zJ}S!9IkVsmc>l_KpCQ62IV4DV?#1}b!lk0(>^V7d?doJl4a(A*_xL`+UCGC+5x|6R
zsM~~u+wwZxFfJA<M7h2&zcvug;%>X)NZrmJvE5rOf7VQr@`h{(tNXn^vCMLSI>i#{
z^qt@N92M}Dh;DV2mO)SjK0E3`6wCFI*-bdANhcJ3jZB7bG8k9ezhcZcMuCG3p>L4q
zuK2@Dfj;E@Ud@jnHbLZk`d*{<xq6){m$|fKhOOVp_D+C2JuAZl8r$<XwdyL%x8<H6
zLCw(^HyC8SlIGUU!hC+;5W=C9bkU}%{Br2T6Y~0F27Ph5FH^xHB8iwuKYyy7mxe(@
z8^b1E@q+d>>>cQGWk*k~Ud_N3FaCai#BM}Ewv&F{<-harf*Qomm-I|_DNCZSBhA9n
zta!Fk1UHOw2SC#!gqtytV3iM$bNn@EG%p%5L|zYI7I&MUPTw9hl8z6qX-*>nP!~&K
zkY?Ev9s%8I%$sh4#JP<h)>%>5taZ+nr@I21r>ukp$j7ZA3<Iv-c`F429<G>YE|G5R
zB5&o|xnOAlKp&DtG&hE(hnL6;LpW5DHi%q2=b6``m%-ip#4<~)sVyzH-6!XM+5#Xw
zNMVp>O~8bJZXxE&wY*Rcm88D1Mf6X?G{jt>iA*TxSYMZUCER*%jH+GqdBQPf=w`<b
z^M~0{qsN8KOrJA0ixCNDV+5~umFt9?kCxL?&|}`e8AXE{?02zHUIJW9i-5>)dyjZS
zerf?AVO}`cC|>Wzf3Q2iZ#Nx@C+v?*Z^AzZmC@xz1(K7(m2StbZ5e$3DII#Su6(IQ
z&i@EXn9jJtprX>5H%cdM=3NT0CG{4h^~KsP@3)S3AOCIe*@B!K*3=ux!y|t9nZQW<
zr&)fRAM--QUUt(kkniw$0cskp9~VF1Dn6q+#Jmgr2PyB)>y}|AU6v&iS;QrsHrFae
zCXWChVR1OvXa&%Wgejr&Q}Pi_zFD~Me0Wqz<bs74(xWz{Jd`XQgXyaI9iU?uu2HvP
zf+?xHt*0NJbj=@TK#d;HH8t^I%r=5geQ{%xN&_kX-uN0v$Pe-~>)!pFoE$*%2nXpj
zm=B?{{jw|^{Z8~DKa4BHA8H<RqxB`skXW4x*w=rmeG{zjV6Pp2k1jzfk_(?8%B{be
z-TO2`WxGFY_sOEu%TortGYnk1cc>8MV2F_eXpTiP18RNatmMS7kAO0|?BWucTiQYf
zT)pS{8#?ZP{*QU*8{^s0c1y4u0~f<B44b%h?@z6?IH2irM9&ko`rur(^!?BuWt$&B
z;^ao_lpwD7OuwvkDXs6_MW?8wrOO8Jcy?8P%4Id9APn34Q-?Y=k1b{|$>JrQU?eX&
z+BK}%KJF%g#}ctkwZ+>%Eg|(!K{P6m!l2Mms#O8pSAd|iG%LFxQ?H(<mhRX4+9_pD
zVdX1+PvpSxclIZ(F3pLAzjg>n{o(f+;@}sUo-KVT_z0?nm^QVanfP=IFfMeQG)fjw
z!Cj+Qinp8`hsnPo@hh45rw5%H%sT@{uM~e&fy;>-!oCiMO`DT}3#S8m!an4E$14?k
z)R4EUASYk><7(<JLI*kDDyd&Bn-O;#wQn-@9o6mw_CD)|Ba5>~fFclj+`8AS6tqgK
z0QJ+royog0JEpX?x|Fiyt@?=aT#xME!1t%!Igc-r5cl{f%Z~(80iZoUDn$8y>Zg5f
z7<T{EfbZj%R?iTfF<WJ>emlw|yObOM5x^<myY`BW7S3jW(rElizXj)U1}+9o44b%N
zjh!Y}8Ii1>RJsop+|>+9y-h&WRm@MQ{guWD&^%E1SUFaxBYQ85)^{N^)Nh4$b&r_}
z04W(_*p_Teb~FLdUKXbG-C4r+f90h*Q0w7pm%+4ie$aKlCrN&P`{g;7Ukgjsj$Qt0
zS`zIGvI{a^It#gFSC<4}T*QS}ozVIkW{DD*9<iHph$6O8(_*0nauRS#;M(Wn&R(dL
z+t_MU-gkez|LO=8kSYiVZ$4Mp<D~-jZ(<}qLmy5oDDV8Pif|%0{g18xj%w=pzQ<v>
z1`UBF0R&W9=t>pQAU%qRfE1-mAXpF-fzUf7ia|uc3esZ(1?eqx1QqEB(rf57bO`-f
zH^JBE{afGXUs$<!?#wx7?=!Q{neIKgfAc4cm(lL*3c8c-+O9YDdRG!{oiTk6$YJ_M
zzTJgchn$7&JQz%TshvrfP`|r%UQKZAuJqG}f8kM3#AsV`{k!pDq=!dX0CgpNN3y@x
zBQaPDhjM{@Bl~?EI|)GcjBRIM!qkN_T{S1aL@Ye`?`(G$(Cn({C54Gm>k6{Ux<`%4
zGYi)x;7=uOVLS!P%i=H0hnI@IA<5+@WA<?DlW{Z4$drSR#?w~Rcs{+GS1|{ou~`%@
z(D?uY{l9IMN3g%@_CLU{-YQ#o%)8U^m#A^`p!`V-`gc!xhTphyh-4{7t=nHp$Et*%
zdZPe^L%~<)FSdyrMd2_{9j6$SZ`UNxevLf91N?6w*m7l?a8&X;+kVrBP+{+werEU=
zOx4NEAWaE4RKjSx{x3`4Hbk)cWK7V!%geuevO1*9S7-hUkOa;22bGx}q|;*5Iv%#|
zIh$mdxp#~*4uxfOBn`t5fq)WIk|j2HQR&-znzc7mniC3KdH<<KhOc!^$4jg_PCez=
zSsaqvHT~WE>fHZqM!7;B42c?TuT%|xw9sr1b{}7H?bS*7Z@vq}u4{(A9uDoQ(4AeJ
ze!Lb_#|(i&c(MsBgA8pFFECYKx>|3oept`z;<JdWRHcaiCk^gVsf}?s?}7Ap>|l9$
zQa2L<J*QiBGV^+FvzU=Dz9yAzRdDGEAyVZ#Tji}CrqmJxvx=9Z2Sww5Ph-nQr%dlu
zoCv@^aM&_`uDWn}a!I*i45SwH6GcW~lWFkgT7ag6Kxkz)_2tgEtHeLmz;NB>#=E$a
zlC6c5wc{D0dI034tSzhydz%embPL~`3_Hr_Yoi&OG#t9&q~f?ondWj9`qw(llO`Ob
zmi?Vt%{sXf(c6XjYbjpDiTKy{lL21>>Fq4<ocbd{-5law>v){H-eD@LctFm$xV{8B
zcG@lM>n+~;`e!<-Z^uTfPx~eWnh)l*Oj80nL|vdjgZJAm^R17m$-|RF8{Z?;1lLTy
zI{nk@{grF&X!o4_d+~eirz@$!qf{2h<~5!MW(X8cEybNrFhHP)Hu#+Q{mv=I-<z6U
z6*pZH|3z05z2S(rmFGpy-yGh*vrw@=`z7<|t$pq9`J$g*pkJZeAct9h9XoXR_RUlB
z9YPZTGh7$ve>w(^crSKNC)&;mNh!aL#x9ieSmu`O3>25ixmI<*3TRGH^G|B2)#z?h
z%Ios$Oj7WVo@~4}q%50ZDZ&dtB&CTkb24x|2?YS;U}$J$mgL6CFT;Hc82?}OyLue&
zWNsWV99`jTpN+D#xF9AB;;qWAia2aFBIMOIb6z3TFbks-N$%9n69#+*OJlckMSlaL
zuku!ZOMEZeM)}pjgPib_F!sxQ)v&xquCioN)d%Z5<Jhyy2o!>w(TQXsDRdO@<so^`
zoFBJg?%8|2LTTDoW!Iov1@;+0-uf15Kk&fX#2LRI=Q(@YtRCcxi>8cDq^vk9Gb0el
z4#mWNOH<G2pB3s8tjtM~8(%u;{*K_n_nvpLWPfWlTpic0sF<l|SO5Dl1O6!_pDZj%
zFoKR*57+r_y!F?)yM5?NkfYw{R+%B!(t%Y3a$0!X{?sb4r#;}aR^@^fz6|6s65Oo>
zm7J&{4n!*p-nywzPQcfz*j%eHxGzMnSJ}${`f)k2f7`+i6o;)2D&{83TdU#R68EEp
z6usN^S06Fpry%*{4^m+`=-AEStcE11jq2a)kE`-n1RB>=*;Nl1;t_o9M8BQT8+_G~
zbemaC&$1^BjDQ+@D`7V5RTmu5YK&h@&Nq+TyLGrhMDuyy;&sFH5zm7#u*dYEv+Vxv
zYkbuU!b;#gV!t$;75YPp2;*^ax_kwZ3ViIUjQI|$gOj%_$&@oniK5j9DCH-X9kB3W
zufX17|1RQ;XTv+2x4*)f;fPi#MkkVutFJsGAi)Cy+2-ip3F%j?t~I1&#RA2oGEtj@
zJa5br(VsdOm!na*T!$J~e4RC=-kUgCC+r14Zu7Jf!pkp>h`i9oZ>pr&WgDEm4EOO^
z=jRUh?brT6-%|5C)jBY+);FzqbNw#D$TaXKX(l_=bLlJqfv)PKcr#s`2eoijIuL<`
zrF2#^JpvRE%naHU{keD`<3tnzE`jThm<*9XR11G}-+f^$0C5u`!eZiYFuy@nK#+Vl
z18+4=_k4?msq12GO6)IIq=Y&gg#RRHh|6)4j#Vk@4T<>G8f$Owb57Gb*UJbDj6kX|
z5#}xFH>iiJ3WMxzwAbcYB2U;YzFS!@m{Y$lzjJWe+VA+P=825QGnFohuOm>TnKLe&
zm&+i~u^T8}*%&*{b9gi~B=rbdY3oSOw}j_sA1=S0w{|Licl=*NVFSt5Hs7(rutVRl
zx$LA&@=j-S^lR>)ETB)!0KM2$X9pGtG$5mj1QWE&^Es;v_X#3D&B_SD96)w4htF-w
zK(t~kb7Qx%x_O>vHUv6mf#Q{|{mH3}r!rONl~dwWPvwcd!C%SnSKPA{x^z&``~z6X
z+6p(-zX#N$4q->!s4`#>I7Nh+U%D1Aj2gZGNNvcuI+7bZU+y}#Sd`fBxz-PB9~hkh
zL^WC{?}_p8Q{NJiikS^{f8pYcz-g#M&1WMmCHPY`BEa%&!??-!TG+;D-$0q#@@XN}
zgBOzkD>fIt3p1rmn8v%Yd+B;f%FaSNFBljBJC0U@6z8`l4#c7y{&B{(^r<|w(V+Z&
zTPyq7O4zW=!OI08aVl}nd!*oKN5Z2h&$V|ek9-AE2*;V>SG7^RvWYkALr{%?r{mCR
zs<PbZYI0m~aO29wgG24A7)VK!mxl88`g0yuCPC-wl$V&aN5LGliy(Tj<J^UT0A%lU
zYtMjhUx*&8;%~!+T{iPd=j8(k@@4m#&Eq+1BY7-<<e$QNG^3^L8k;Kz;>B|u5`Fgb
z8z{b;sruugv@}C0>La;^)tcAx_gs>XZ|B1W4`SWw)TgF3OIeQRT+up?Y|@HrP&nd6
zISz?lpSU7wgvKxG>oinIGaY`u6D@Ynbwe?hlRo3>ecN?f1@?Bum(FzRg$E_S?h(2M
zKyGlh67(`YEDOQ&s_>oVF;QDdZ!yt8*Yn+_L6OqiNnE$-nTZy6cTd^cvn}^LH1Bc8
z#dj-ly=*+bopp%}co@u~#uPr(3VC*_HJhv%UiqA<`mwQ<iq*3VeFvq8Bizs?MAVfg
zAM0a;_zF*S|H>r~2=tRQ5f<a-IerCk36GWP_fNHXz3Z1gEV6g2IdNdXn!Wjm5dF^R
zYFNk-3$+V(9KOe#>Pg*iZM1@^jEfrJP^>^NR^H?yE99A2_H=9SUV;6+${9)OQy1yL
zLW`Aag>)}>#$)|+AITZy8t%V(Im9{yMEcu2jby<8V9F<R$YrlWf1F;Nu-{MIt!{WK
z=<+ShUHvJ28|#?9?O1P7#<g4?Dt2vFEB^kn7z%-8bRu<23JU;F;1077%U%2Baxwl~
z0Y9+pBOk2uSmbL&>3Am0{Vp%Cjp_U@tU|g@eYa2iC=>&U^s#|PFyJpi9cs8fG`<pr
zzps)gy=Pasb9ThebMl)C>1_2TLX^%A;driXbr>chU%bwOn3ghB9~jPZw)T?_4%G;L
zwz>902nUak+hE{{tSVL>$l<8XKbaHrVJ$NBhLreIOoal2K3coQ+@d`!Au3B+N+J*~
z9EuFdC&SF$m^q(n52I!W8?*!EwmsjmyX=vI@AQ55x%cQQ-A&jb)%BBGgk;OmyK-lI
z8h!QWL&MM1j$Or}c7R^&QrFcG$PMn}rR2wRF}JU<0vr0}$o}_o<Hcf%bf)$irKi1;
z_*%9I`t@nmYR2g8IF{Q&C}Jzni+v(nImT>)CT=@y?6wn3?q0mtT060mQd*im;*MgV
zFPblY@h&d(-r&Re>+JYY`+?{k$ZG^6pv2KiXt<seqKnYS&+Etce<2B{x1E`i3QxZ3
zZdONMwjZL4bB~5hXDl#_u16xbC>7BI@=Z)RaD<TuqZ8>v3&SSo(~Cr}rg$cdh}oIl
zD6>lT8b0_Tx<bozcz#^YWD$i~d|&JGO~=!wE}Q|M0CT7r&&O7azj%Y9J{TJ?&XlE|
z&ABmcZkoKF!}Z|C_UpT}K?~zc3KmRe;4b~_3NFtaB%vS>?@JJ2_QG%k{7F^xuQi@1
z)jq!*VSwlFYJ9QNrDH27IQ@f#@L};YX%Dtc$A+C-8)lk&2Fldl_lR-<5DxZMg5IYW
zZHN~*5a9FfetT1;RbVgEdtL=^Dau5j?y#za`PXval*(^tdyPg~?gxn~Ts#he!Y`Pi
zcqtaJU<nlQ6<|GJ?X53xx5MHzp3!s2rZ`wf%pR9R!!wj55boXL9vl2Q`rNI4a=QzN
z#q|$g9bp7?m>p`wObzPbze}rrX*zCoC0Tygvicq>V6wk!^r);wm`;W8^{{V)m2+(+
z?y!n4Uu?HPs-)c>UEj?35v16&kbH85!LJr(_?PEZL*`{SzI(>MKN7Y1@~xv?O2u_>
z5C~>`Q^aiM7mcoGA07eZoZ~vz#B|_@7b!R-I?nSg7k&rk;o;e@zSIVj9bgR{C1K_q
zdtMKn7ImY0%xREjW%6%xI)=eu{VHp56iTM9KEo&n0yX>z=*3EiEdu}~m)pYIR%^dk
zL6U@1Sk2&+RsZXSn62iGI^ZO>m<9@O?QWaohetrn^PP##8r~Jvupb6E)E3Z-o$j(A
zK$cG}M!l_w+lqi?-mYmS$Nl(K_}Di=^){Uu^|0_c4EVR#@|dl6JFS)!EZoERiGT=U
z4)kKnN0x5`kh2_6Lw$baxMX@=JuKu%7qURG`O6rAE^{g7g2ucEWvP?$|BKvutU&Nn
ze&D<zgy%f<0*6H7pUId4n;hMP`KMK<>f>^Af%hl;K7BlmQP9q(8<HL#yF|?z=qxO$
zHebT1&-nXC&DG~pehH&+s3Ax`d23?A8Unp5bjEA<$XlmNC)A)JR{TXC0(Bn-e;t4n
zr^5r6GWWJ|ZdNXycO`ZY2PYzZnBk|s;E?ExEOJhOFFQ5MvdAppmIUrd3he&;!@7n9
zc6y5T`wFr6<NfY2sSHj@*~PK4?cA@V>;GRq^5(j2a6^*ROiKoJ*?@r@B;}NtVfQUx
zpKe8H<`BJ~3$e=Gu=gWCSLALTd0n$OPUVr<|HO{5OSTh*QBoDvoG7@D!-Nct6)7CB
zB0Daq8fiNfmZSQGgfd;bAMVv8>zLt`z`zK6=4vHKWu#`XBaFE58ZuO;pIyEH6cD*L
zI2K3Bz2?d*M!V%7n(uLLNOA2Z%j4q^8_S)`LE@2D!EC~i(dohpjsedHJy#$o(1s0S
zO;?j=O%8gz{bSrVnVok3#~W?LHyuinTfrKN6;KTBAKE_}Z6DVs$q3jTYb8jDWa@Jw
zj4t8D{3pyiR>N;KNf5SEt$Ac2r*64A(Zko+B}D(@xy-u9-ypZ)QyBkWafgz}Z}&o9
zF)#wPFozocbn*fOdRb=iSDXDEi}f%eXupCT)<+fnw_OWM-^Td_L^vIBPWFhkLx}<l
z836^K#tY;D2=uNf5f;Oqe+vq~;E9jSj2yaFA^hrR@|jCAalO2T<=+bFv~q;!LU+l2
zVb~$QT@iNb{3>s0Y3WEZQdks)t1@TGCs#Zek$^ydNM(P#-(crCc{vwy>=*y*!vwuU
zBZ;!YA_r&3-9xz&{e(tW4Gz4N_P#BqA?e1kP9$CW=tP1Md0#Q$joIIo*j*D%N8N(p
zvG-9V)UXL`hTc&gaSvav?FHix#y<`c1x!0qn}+0NCYVK#00f#~f#Rk7P!H0>p`HUR
zGJNcHH;s;8L?k54Ddmd%3KJHmQ>6z$Upx|apZc{XP!-6M^_}^vJ2L=*!oOtWkmx5Y
zwmtx43js3dlqk99_FAW2&7N!?^7FYPs5>n~AHz*N?1;Iw+Jvh1rVoUY;Nh!n?w`+j
z#TEjEPle%-Xu~&U1TabK<VX8npSN84#-immJ|&o`k}X^kCQQGPv{eE>zRhi|KI0#`
zumnZl^lmP!iQh80<^nq8WuO<!&ZT(@0$tT5I?tCbNyD@_AcrHjnsdup{7o;*(L)M5
zOuApmz3R7%5=mR^jH|JAh_TjHa1a?dB--U?SrVA73dF9>e&K%lsMu$$XQlsw(g*9y
zr)UFk#7|q*u4SpU%d1J^?I$!^XD|63qTP7gN(j%Dek6<{+JhF8d18C?OLW+yX^j6B
zpE#!$*pw-K8f5VVn4pbOd&?hHNjxTEfBa=+3Q7E#1Nd-rMki85y{{l6;0l!<P#AJk
zN-J=Krlh3|O|32bl)reHp6vNaE|O=u($fsX=fB)s^r<e#b@5TZrHZX80}$wCIU<ZF
zFbr}PS5*g5w^+OR-TaGd%6_N4T*5bxAo~8t2ly0);^$fS+Eu`iMWEx|+Jd&c7UUw1
z0nfqgQ1cerc8_*f#>O9K#jtSqh`qT-M^s8xq!iCTr*lvP+1A01^&kDEqpGjCRnt-j
zI4EN)T~bi^?^qlX-3${)1CU55ENQoO4W=PQy>Y&IRlBk5>*tS~B-0g5I>5N%vqMP1
zy`HWDnk)hxGMusxrd4k&oe*XK9p4Pao0*?fcm;?038@a$tiGenQehjRu&W{t>mSNZ
zy{%AFMbBUyA?tiS?0#yl0%|M*9iKfXAKpjrpZ8q31N=|&#Ry<HKz8*g%krbX20ERz
zwn&icXwaa8H4_t(4}IRJG3tYw2e)eWeXEm_7Zh3baSZrna57ptqnY7fa8(K{1fGDN
zlTKUaf0IjZ52bRw<0R07B!=Ch%%1`}uYaqwk8PH8(2f+>$|2gdV?<cYRiV!paaEH*
zMxsoS0f{sm-sRBFHgqzn!0AIVy-lK|)EQs*!2Mo@k7{Uc)$CiwnKM%lvgTOjl^Fp@
zy#x_vu5M)|jv}4~$PH2CAYmp<^_BP_Q~k;)v&!qSvA0bAWix#Zm~Uz7GQEfFz8_-g
zY7XUHk4*)M7&sB+5#0!sD^rRKzxkr+!?9_NO6+BAb8T0NFOA?l5IF#+#0<mcQpIJ>
zyDw{4_RWj1la0F9V0SnWD1-{56KU>S#AO^R8g%~L-z+^;cR}^ttzU(YEe)9OfGipH
zlIdtZ1vcdMe4lDD1|70qa(kKjrJoso>M4kIFd2Q|3Fp)tg*75cILmIdC2)$G<`k;P
z<@`XGCJZ>s)9vHX^n$Q5s&STEsao59XfQBeW##KF6c}w~h_ILf(h?N@``WNkA6^Ki
zA+!7pxz~TBBRIG&X){)z`4DXoj7;2f36zwamvYQtUh1xG%qWrih8cc}h(n?o!)5IN
zCJqa4?6{an<%!L<ykYWMmfD@2UvYrGF0D}@iU6jo#l#fMcea9;sT$b7-bDg~@5rCd
z90OPCG!bU56L^Oc@d97<SLTigCJ-hEEh}7|&ZK0rPCOQ(K?VXKTcYHo{eE0Ty5Scs
z2%9P?Tz3t0Uo$WQ7g4;;=MX4FAYL(Aop<x3iO<F1?<X|X@`ZNGuM<Gbzl>0QK_2|t
zb)oE++~Q!pxk4=aVIdR_B@Ogqb4)JrL7;C8iKV5EKN{mlFk#OY39cGLSO?F|dyix|
z>A8m40>*2;JNZJ|FS*4Z{iWe&gvPJp81Q$P^2w1Mi{1d_71xFSps8Q3mCu9KB&!)c
zhmvwU19Ca9-=;a{J&-)h3iuX|-roU=^!Zxbd_Og|f1hB6BjAZRB-%ra9nJ{Yaddk)
zWE}bYv+@)hyP0Y7`h@*HXXY*G_G{UeH1dCgm{+>e62AW~TqF^3q$9aB&)4zQiqQ>_
zN9W*>{b7MS(G2)ckbBPY@SCcg6~%BLpUw>Z`Ow#K!LNkqS1a;8P&pH@1uMQ##e7z^
z)ay@Xk6k<q@*0i-|Ai@^{6RKqn07CqN&_Z$rzyOub&2PpGunJv$@Vc#)%~uj<grxf
zxt()z+KR57nZ8mvCr<GL5a=oz#hW>4W}|~c!GHnn()|ky0#d_e&=9Mi`U7W?Phur#
zXIQ7As;Chi&WB@SYW$wAJTVkF-EukG6bvkyC|+4XPYy9gK<t>q>_dL!cp9IK#gnb&
z)F@Anf*9=4ZkkF)6ahav)gr@3J{2p1KVrWl*<US(FO~qaj8#h%Z)S_f;8h$d5_B8>
zHf&I2bjGFKrZFimMVFSP1WskT7SYzfJq2S}_IF8M8&C`kxMl2rN5>u?!Hz&7f`MM_
zW_s*XX85VFDuQOZT)K*ccDVU_LTZ{!x6((^jv{s%jVwU<OuTyRQ^9>0j9umT-81bI
zhne9BBMwF<(yKGQP)4Bm*t^O*H+{^^E6j43q6*VehWZ*XQxr=5cnBx0Ofw-DMb#a3
z)JvA7{yF14jWO}>%q?dzET$sqr4;$(8(%)~LE%$*sDWN@x1wk+EGe(?d*^PTY>6Vx
zu?(2j1$sOe{yOp<ahCvb*B~_^8ytljIEvT3U`ER6Gu^H+=By+&{QXW)zRyN~g8q4$
z{JZKjw6RZqzW$E}7SfnlH59ED471xXqg{ANgvH#{8rQ_3T$oBqN`n;dI8e9?fTI|r
zz?HoH^{RqF1D`Aj6b?m!RM+HUte5YauHBCeEavnHpkz}%4iv|`0pcheY7>%AuD5q=
zfI!Et5Wns&HVJOD478b5T^y#IHeXnVbo9?X0K`x@R2FSBp!O5~sITualH)S5u({JF
zrk@uyxqKWF-8TM~j}cJg?(Qg?pOK#&ca4ymz<;bzxid=@i0NgaWoL>2Co+Q1Xv0an
zL>0z*pE|u4tyUaMf4&*ei?!6@4Q0SjF?I4=xZWR7@<mTSQ-YQ))`{#jsBI-)!-0I|
zYt_rhl+;O$VTKrE{Kd6NXSK5TsXy025^zih#hZDxBU*|Pkl>`=?fSM?U_a(jCpBj!
zj?O2y&b;R8S)h%>3*WIFGjM?t6X~eLMe-TzY1oi?7WgU*OyIaUS_$d!vRlmXr>2O2
z{h#_o_Yw-*t<cZG^KnJ}Fy+nxJv8XeVJIKxHh(G18s_$<8XRNP?$TKpCUH6s!-+r<
ztAJiClWfIbW;pdEe#2}}sj>m{@(7;X?$Ygkx3=p|R}^g=H}LcN@e8qMyYbRpz}oDd
z!1O8yH%Oo1t%UH8M?WA?h_iSe9<{hxt?c0%cV2Oq%&3PqnQ2m?3Nza|0-I`t&_d`!
zrK~^2k!6kt^#4WBKg0n>01_zzuQ;|cHP^RNaguwV(|y7Dp^8reuuW47Ulzd<Jr`>7
zoZTDiORE%C1hK|X9o8lBa0EOHheVeZu%BQA-f}^s2KbQUX=PbqKQ(+Bqqyf1uJ;t*
z^#C1=s*J}9=16JpSN)M(0N9$TrrPGUU8X%P;HUlHi47xw;lA+K%XW&IR+jbrry#^;
zZ#Ad0Ia-dVyOIXMZa@>iev2$M@v#X26d9JCGs$x^uKNwT@M|0ros=eK20(Ioy8q;l
z&&W@TWnYf2ju;Kf@o3qZOMSskds#X_Rvw={+3fvL7iD|3#&DxxZtp?ZF0J@5Qi=%k
zMssU`sYfLQ$%ppb{IVdHZ4`aUbnU)e;8tjK<V3J(*AR`STH#aHe@${nVz26I4yXOu
z&ndreT&VEd0US&b4vDUqmGA=~x$G7dE`M+@hjj1!ln!6qUk~?cs=qgJoOY>LB-gvV
zKsS<Is>t<|0QvpcEL)~(VZ|P;fKP&}m7sF^B@Z~}WPruHc@E=$@8s+~O9*~{bBvs_
zUL&qZlYoe{c6$wf-P}-N5EH@H{dSQZDm@incjp-B`CtZi<NWv~9Lg8uHQpEXEAMi*
zauj>b8BQ#`GaJ;oGkZXc8l40~UF4K0q9X9UJ8j0l=X*d0ipL?*L;Ypp4ERT|=Y5OU
zNtG678yvzQczbSEwl0Tb9+&juX?Nas59LlS71!`N-{64mi=EiJliSEy3j*ScZ#X16
z_w(E1ARtn)YqO_iQpPzTnO`)#t5aUu#hpRw;TZ6@VIG3>0(pD8*zGe%;(kDWIa7)6
zjBj>=7z1WLI>((t81T25cRYLC!(_gG=7b2mL*AVwNBoSd&jllbFYWYX<4rn0x{Z@+
z+u=AKd$v#)$AJF;b*SO`+_o%=BIW~f(te`l1qIJ#)6`}Mxa7P&3SztpyH7F#kY^&T
zy*(Uzd1=A(Cn8TzGneJ8_KY;%jpaa~h}VE#tlgsmO8~;bGex0njh6YhS>0+l1!d(A
z{@$jx!kPTNO$3EQoq$w3ZD+YqV>NYN0c7S;yLV@iIyeS=HM2tvSLPUpIErWj@LTgo
zHCKq#eJ=d;s49;oXz~y2bFbyYPzL-MQ}xH=I}0Y&+AWJ0J}wHrs58973{uNOj7}uh
z7qE*sR4zd73ukL7IZw9p{%*``5=`k{6TGl=)$2&~aWDy<nxlNPUYV%6K6IKYBtl+I
zPVjb#5kQ~z;_d_S1>Q<ffPu@c3o_Ztc=>bWpGAKu@6KU2E3{J2>6OLO%9y1G)fS?e
zd6aI5N-uUNlwL|b|7TN527o|KP$=F^V2U7$LdfG=!+6zq2_Z4VH`3G8=M7nccq`oA
zcK>~Qlo5bzNoP;~j+B@foM(7hSoJZ_g{^3KYDIL3CS9SX;gJ32`a2;s4UxmNs@u?C
z$99|W21;&;`-9H1>5xxdrJ;&&#EWPYNvKA{tm3TgSP>sj8~4HH%YA*D9xxaz1HIU{
zS$HTEepQqB`Qs+#w0UZ|aEvvav^lz$Oi6nE>(g5%Fd39O<5K&Vw|2LhjPS)Dv1f(x
zY;Sn^`Op+t2_`6B%BRaVv@<r?xdOoo$7SMJ%mfE3K(<lpi$|_`-1FgQ1R%?D*~PBb
zB-MH$A{1b|#@p80^J-s73QS^toFc+_?wJ0#j6(%69W4@sd9TV<pR|tLb!-XntTTQ;
zvYD7E4C1RH<Y*x!*!9mxp3Vfy>q;oFVNfpK|KOtpXN@C`7qbDq*g(_@H#o4X#GLsm
zC(a|sZhe-mMV$Gvw_V^k=vG7GoaYGA#-W^<sx!V1V%B1?_SXcdOzg*z<7p!N`o)Ra
z0Qjn-kbJV6k*E*{;)M!c)9HwFvd{gC(Q|FAK;_B(2FpJ23Fi+mFsqP&zsvPqeL+|W
z{LQ01oOJqe{MxWVwjPy>5rF6l5n<*qEzo$X%poWHjt(kKFOPg1usaE%Bzq0a>^4-K
z<=FwFl@g~#h4-KAI`b`Cxi_c_Ax}c}#~-G^V!(eLYb7+?`V(>uhcbY~_3|eEIyS>6
zE^1{O*xSA$*!?G8Oyaf4JJ2u`@iGy!g7GWy9|AoZys4|as;|jI>yUlWc6&hXamBF)
zgj2tB{kG#tUms^Igp0RUu0N0A-VF+F5Kv(Rmq|Fg)OUM@Mce17=AWY$LPP8dE)QlO
zHZ@%4k^uiLON7O2z@8;D;JcZsM}JY0k)Lo4ey1^Km*a!2*2}cN{;CLn7KI`+RqtNI
zSTB!h71(d~%Mz<<@|<C8Bd2x@7-*ZW%nmhn_D-Sz1SSQqm|7Zsj^V<(%8etin_m{5
zOtNm}8s72_4&!`kiRh2oPaK!Cp1Js?W9ZZb<LpM>!rat@DBow#A{ZEfX=aC-&*sJ_
z*b(rLC~8Tqrh<#?ge0c(;_!_8WQ5JWjkdY=^E~5g5a=;O1e(D#Z=y+Rre%%Y+5#^z
zF*wjOU|Ciy2d45S7AW4#YNj))jKEKJ=%i{?<Cf>Gm~9R=K=JwZCN-iX&h=-{ter06
z5*~ZzWI08!D{?n1YFwB__5A)`CM6R(nfd~xXJt4fdRZ(Q!3eN3hwL@nai>TwmtZIt
zhqnmH5q*m<@1ZaIrx-zxX(G-IU&-*_h|AGfzmCS@?RiwYGme-)FSm(?Kre$1aqD`>
zWgMy=AZsMoEEf$+Fto7&nkR#Lv&ouGq&FL0#q3Y7AkGcXbXKVNG)4vNaQN6QjSgs+
zevFL=z;y1vqa)f*$j<J{h=wvJ0uCXZOVIGzJwkb5y;OdK0dj+jT6wr%<#BDoq(}@3
z?&H51{?)+K7i9l(Krhz!>zfPA@T>a63sQSsry21rOqq@sf*ZFsYI@ur<e}9eP!j`$
z>Pd&O-lFrvd=Bb7U((cN8bj-wv_-&Vv5Iz{A_@BDZGbFw$@Khgf)JdFMkL4t=Wj(!
zM5a7zx_XEc@gf9ur|)}Zmd|+oAC1Ln-C=h;i=#nu_WipYc~%@CB`C)s(G<N?i~z(<
z=FENfKnp$<L&V~fs;cWlyR*5INAoF7Yd^SE838W#ZvVSo>3T^gjW*`x)NkxOsro6>
zl2jgeTTA@Y#RCr0i^ZH@;soJe@{IlVSoUSFB-F44{*0K-&DHIB{dk4M@WUb~L=j+h
zvP+`~dwIWCA!=82$s2etQR=hN-{0(r=R}|o7a5&MkZ?&c0OBT*eYa&tZ?@UB5H+j^
z@cdof9xe0l<VVMro|dr%AZIx(ii7JG?1xTJcGf<#!S_YaeA(+a-Hy43<bqws{eL7N
zDB>KDz9CooVGljY3W=0j9De?O#p{~Xw)8m$MqrbDib9Dia2nZd&s3p=5(GI&_vWG$
z6*C)Jo^ziDu~?W0Gk>Go@R|WnWvX^lQk8FyJ%rEVJg&U==+ErlpWYsh{kz;kjKDZ2
zl+Ep{^-AX&Ok=yG1*Rc!#v`C3bHZsnKBSPg4;RSYN|;qh1k)?xDzJUiYY6FzTR8$q
zz)1mrH*7FlscPC@Z-VxEgc$)>mN|#s<;kDH9-NOk11@cu!oiTL>2zcyso?{N@2*Vw
z<Y!j?v788aDvH#2i@M62a20+b2jx>m;dEcHDRyy9XtywdK;M`l`Y){}E8^0py+;fW
zSBfo8&GlKIv+gZ#>4d@&MmHIqNNs+-An(vcwEpSX`@6H9s0W`4t8x*?$h#U_TiH7@
z-%HYmBjB;9snl~1sf+7jG3#UPRgTay($t?!O6Ko-Iau2E-Vh|8ycbcUK|7U0ZTz7q
zMyt<0e}rOVsvcdmvD#WKtce$nt*S<#hL15J`EPF5kJKKC+%jO(fRue32FTZo7czEM
zPB$yNNPrN?3dtv*MIj*|h@UblS|4BuVEVen%cM~}W4c9-O;ae+pPHl0jV7!h0f?j|
zJd==AV)tz_d40ycC49RpiCs24bE@(D1rS<SO;Eg<sW)u2aSZrp(2(f*pCT<@kr#>P
zz~kDTsrhj^idt^E@as+@1iE?=q1v^a)sR%`w#w#TkmoOtU;G_u=+!h+^M;0o@Gnns
zNVHZr4CHh+(15~?*B94@yi+a`ivY6x(WvH%JI(8LvXQet_a;6=a=D-}l}+8sd+%e5
ze0DCmXpEGpLs<pf2TKk~<tFA`5dlBdn4^`TBBt&FX0}MsPuT8LzZxF}0y#+!R)fn5
zS7VzZW^-dRuLz-t62R=y%mBM3PV%qFz`m^V@G5;l%yHQdb9HxDPSUzFYNL2%lWsl*
zNsR=@h1L@9?lGxEPxu8c{Fx`eGWUtaAEz%HH!VQnr&7U4fgNh;ld$%Z+|J$LIIg}+
zsF@F~S2A^?HPWaD?VsC>7v!}{kX~i0{R;~MlL8Qf>xh1*#n??Y=|Qz3zP!IkX846n
zl(%=+qeO+Icm5k%1@?&}vUBs0Bn<UMDU8oso3@kuLyidJ368jY6~}-NX7&)AKUy^C
zefSbl6zDpiAn43oNghrMZaNbzf+GF}-PYf;&Y1lDv{;Xm)2Cs8Ebyo!egEc+&I5ni
zj!_~GiT3KeB8<YJzCy%ZGQHKbzPJ3)jo*{ul=X8NPp8P6q^bS&f<o|4p^D|DBjcEe
zeY^V`W>!+URk#wDmLB!GJz7i4V(wN#gXbp15Ol2Q1uKv7DM9YdhnFeiaFYGZ@SoW|
z*KE&VS8thE&I{-9finINy2?De#x9O`YdYoq2D&15b$q_ne$_Wz5T_jnvpCe4RvZ>a
z(9RvbkS^t$qkCHF5-<H@AzNKZORbGo;tx+w?+pd^DVC?>fcL&?L3h?%QiqOLC|IQM
zx8Dnw#!h}}*eIBj9ZnLn1Cu8SA}q#6-|jLFg@;s&$OS9jad_EsZOq0D-x|fj`LLf5
zg%&g?Msa;zzk)z-bIT(5)pxg8JciOLuXjd$6n5FkQSvVEDqOvH+mCh){C_$(nw-nS
z)4P0iTJTvwknjd8<WjiMxs#VlzmFeR>yauK_r(u1^*MHx`40VcOiwdxusw3_@=K=b
z#~#(~v9E?wMZvWk0W+J_&a+}DgdP6R><|l&EZ62`ElLkGB&DX@IP0tB$~~%qN4@`>
zekh-z?JPM$@SESf;_Iy6_q-K!zca}S_^y9yTC0r@3!)X9D}f8*x)fqS+X;=HxAy6n
z+CN3r317`S1}ze2jkzBZ#v@y&>Lt0Qf`0>1E>Y%QNZN=IGaR_ktY8>8e@+GOSi3hF
zcPRODzEmA8zg6dHB`9!$W)oSJB%-30B-fz+CP$s;xXJ#m{e;FD&xUs?>owDJ24_zf
zqVDwJb>gq6DJ={(%rxhua{jg$-n-w$|8T&3&e~`l0)<~SL-ES?wCO$v^TmA6LiIdb
zpI;KJ1d+vJ6!qTfp>~2v)?VMlFVCO-jCP6Mc-Rs1^2!-Ga(tJ7&&-{S8vr>dD{&yv
zcj)a8+93}{f(YC2JR1alFds{Ze<;Sn-S4x3&~rTm6s@u@(IUggF8gxjO$T4_n`0uY
zi}~$g@iW!IwrI5pRTVir42CxG@1#a_{Oq2;3+8zvFoznhqV=;9D1;N<(7WY?Nw71M
zp#-b`FbiHq9LDPXlEwWjIwN*HNTRe1n(tL8-LJG#@Y!%knLHvVo>mF}LaZ8=*SMLp
z&|WroaYPg}YjqZfnzh(wUS>D~URsqo;Z&LAbDzmjl2w0LkER!R8mkzXzZGG+9pjg+
zIhTy6`^h6vm>n?mVKK3t-0lL6;Sap;wk3gw!C2$nIx3<E>gL@!guzFTLLF-OkNk`R
zm*+W3Z}O$Y#Gv(eV-`(LsxqF@bLgl{@rGGNNx;H~$jtS-UdmyY#o)44=v@1~A@iLD
z&~r+vFp9jp2`DC}B+P|sds~xa-bWyFvt-IA*Vj9af^qQ@qW|nr#)zcPGrOtRFtqCO
z9JxI!*!yQgxOdCS&yG{-=a=~|Qx`(DO7E3#_U!j7uH7^*PxM$=c?5%nL{;SQs{dXY
z6sHw}O%>pf=&ZUjJOd-(dyM*UL89yVt}Bxvl2xA=3hX+zlsPUF&ABz$1s1Z)@4E|l
zE6Ur;Wv?v~7T-OI(FmMd*NL$<YR?LN-P8azF#-u~hFZ4jcH+;cv|W8mMkiAJ7H=Yr
z-t#>i;GsM<`EGnvlXL2E71!FNy7Kn=;y}k@NT>+Ee$V`wE6=QmUw0QDB`Q=G>F+ys
zX2e8o*$AdY7lF$tk{2}ackuXzfw(fgk{gFaTUt21VPFJYVIlD&p>hvQi%mXl@p7qd
zpI!Y5?MJ#+<*@{r7p*5^@u`{Ugk%M~XOgP})z*U#y2{oXcaAvkk@mkf3NMHmUBqLf
zp0b&hcLwH{Uh{v}MB6$Z1A4J9d9M0^FDtLw;cq|O5nTC5LWm%4B#D1ND(4eG$zGi5
zU{XmHe4t{qRsNG(N&-vtTqxr=u6gnzs;PLE;Hn|lk&wd=a2+H0HTu4fM;DjZ|EA51
zFE}$@C<sVnZEVd~*0I|eu%u_l<4{VF!%>^pscBt~ddbX1%vSEhdD!&5Id55!b$w#-
z$NOu0cB6`B`*wB4Wd9WN$i0h7_nta&d?8ltwiD(Yd)kZmf0WWT(@rotk?!iAW(R45
z0r6w{?q{vatYPM`_sn+@XFicr*;-0u&P|9vJb9u-RffN*yw9+#L=|{HUHD+X&6QVu
zt8Ch9zB~EunG>uRi8lb#j@0s;)t+Wb^YWZwA?*m!m!p-?U|jG6<PWb{t_`9!h?Ks!
z$_nzb_&KI(k;j7XkYmB>z8CtF?oSj(b@8L81>D8<ZI!$plarjut}oh)BK?CqFiDsT
zBZFVNLKepDFy0~@U*3THJuxqEIY;G5B`5uiFQ5Dj9azjs+qbh~b14gKvwN$oAuo$R
z4#_;ZE4Xp(#LnEKBl{I2Z?OYtl5hKZN)!3n^<;K69*5b7171GuBLnV-hE*Ccetvt0
zYEsZ#0v^1Yfj?2i8vyySSU=N;$?ccsv{hdQda-pe7LUNBxEST2xZ}GdDCHS_8x8z{
zg{-4V;Uj_*{hRe85^3i9p1sk8&;HzV4+hP;OPim_y{0@IJlXrkxaj#Nc5QZldwMjg
zxneX@=g>gCOs|r3wk|W;s9jDquAk?+VFhFf20)<4uAz7{ZJA<Z839Oz4MO!z>u0IA
z%C{7pDG*r!UoX;9znbw84dw0iN$yA=@1G58vwP~E4c)CDV1}X4jFMl4k1>@+KdJGL
zGqyFm$<a<iPZmAbN(vUr%6ER+^XyQ_mPLfw-b=Z=jxE2fV<Fdw!T{M-KHR${+*N~z
zlU9{*6UCd^#&t%W5rEw0=<dq(r>@RQxwYLk0(4-kd~1oVRV9HVpUDIda#~4iho9@8
zkMHd_Hj|m-AJmv%s7Yp0Ne!Jar*b-f<o3H&yUW>ow>IeJoJ)^;f6Nm>Lg@8?iUMDi
zl)#GJC0@sh<Eu{$1(<JzP;Nn|3z=g=7W)xr>xw15>N1DaR`Wej!OjiNEYJ_x|7Qmq
zvUj?5U|?;qUV{!Nw$JJP9F|XEug_bGbX7RX(=`eP2qMfI;Hwly9WbDCpU69^Nlan%
z+b8bIfyqqCA*pAj&M%Z`d>Wj7djlIS5Nnvv6)37BClz~=>yFd!EgaKB1pF!e{IS?a
zis=N+6tkG}$$t71Ffb^*LDdl01{5VR_K#`p&+v_q!;xFgK1jXy+=pM${$kADN>Jfa
zTL5{d5X9@8Q?Y&haHGL}R$6)oaT8h`evX+}%FTo8G3wClFAS1T)`i?x0KxetF}-wl
z*EDz<<9|iAIUJ&M(0&QK^gD01v!XpPUuF7n<rr<7YZd6lepW2d0$G+M+*v)aAtb!s
z@AjQhx&XutuOeYxQS54+R_o_WJG1^DM7gR@%*b2o5HmFESPkFd)A6B;kj4O>&V;>A
zdpQpe&re<+F>JIs6eGf7-sZc45ci^LWWYU(e>+)Bqdey#UB;ME6)_rA>^3wKa&+Pb
z?L-v@b*M3A7<d7`2nELX_7%aW>vwf*>2C=E<YfKwKd)Q`LS0VNv=Mep`DDpi7Y}d&
ztZcVBUCsX{TUD>{#nbzoUuQ-utk<r1Uu)R-bCcFr4IY6*qR)MXLqVH3jm`Gl=X76)
zoOz>j=3mo*7CF8@e+S>SjOKlzo%~#3bRr#3r^$@Q3~VO~na!h=vP36Uk@PYjNm;CQ
z%_fU?bK?Nnf+qTa7vqrVF(wWHaMeUwyS)}qc!#I&UHNIq&qNzlsxYm7fwTW*WJ*6D
zj)@i_H`!YW4Tc$)!3e1eZS0dj-+yJ&q&c{ZUPo=B3nHe>pqd<8t(81&`DK~%$!?a&
zi<~t5)FQlNl1JU-tHP;KTJ<wt9ct3C>TkEiDG+*c1<-s*n^P38EM8a_gm8ISK(1rw
z3&P4aR(R|{0d<F__p$fa2wQTHr0J@z>Y;dLGyLia;4hd%cxTI2rv<Cmm`)_?pP<(@
ztQrkh$F*ZHTd9T3o$n%(Z_^g?E>k}Fl}yGDx>~h9Fx(~n0x>jI(}vzy=`81Q<YxWa
z5%Vi<q+_&J&&MvJcr&4<(IViKO1Jh5Y?5cX<W6ihH8y`c@BjnE8SG#0nXcXP($e(m
zBUfu^UiKZ5PllOcr#WcnQ>Af5YUfs>ITMa;a?vG<sNtpJn)QOY%>JcTI-a5#ok$~{
zHWRe8wrVwF^l+4t+~YiHO?s(^95d^E>U0@@yQCXc;S{|ED$t8fVWgR~OzYnu>SwLW
zjVXd$BHtEG2l>Vjq56zm@VO=5L!fT!ojtvJ0s9<>?3X{jM_b(!Fdq-i&1R%iEdAhV
z@f3lTZGk{zf}G3_HHlYi7ijkP4Iux4b)@fmSq>=GCP{Cq(2MBbRuQ)rqAd3-wB_Hd
zIXKfiwbh-`iIimJD@GfGmThoDl07%8T*rx+dHR<iuov|!dDMMB<;<fjk6I(?VxBEg
zBCJaS=^{+;UnD(LI<>A7qvT1~3Z=?oTi$$kWRsR#ds)9uFN63BbErv7BW}><`zxfR
zq_o;Rw3_Fs!7ikcn>OlqfO(XXOLfZ2&&p?d=*=)rW#EwL`)W=Rw52me1mLHhXhns{
zadNFdZqP1mZB@kY71;0C)fqSO>!<qhEeFwsS4c)DQtqE#TIpoMBNX-Qb*k?5q2?d7
zLMzBK@iPHiuz23C#OhnMR&<3FH_(f<JjMH%_Icv)3X5YEHYWM6b!b;YqFR^;=MpsT
z%u*}(?dZ>d-jyc8V&q9=+Tgtb8U7|0xnT0EmqT-#r(@~h&JK}HSD7q-n^ovpxK1IB
zbkO628_<h=o2N)?1G8#j+ww9o_~v4tq~i1Ry({bn88jgaCkxub-H#ML^}TafP5rr#
z5N$%9UPAH8K06Dg70vqz!<~<BROJgvs4K2m(LBv+_<gKmDGY6RG|onot^;(a(Xu#3
ztBa@#gG@Y3KIai&+A9%Dy8;8B1?xwWUul)zOPqp|y$`A%7@bI@SrHoRy^w^`HrF2L
z^*+*(yxsBooCeJ?S0UA-e!pD4QD!L0gYw^7==y(WNIu!kSQ5`cuX>5=<;7TSdF=Np
zw5yQc&<>#kWZ?pTI0gQ43UsY}*2D$VV~i@yp=Lbi0Zj{y4`!ZwFvy)Wh{dNW`p`6o
zZ5&e=|0_O6Ybv4#_P2g)(5nSrfOea}V?;eT1CKwN5$LhbFDpPBAOw<@X6WxW7}yt&
zRQf@$ZukMoCv!-B@c^yE0snTJn=Lsg5J)B70LOldY0t4UW0oybdiDFYWqJo&91>kp
z@b&~~E|T!1kKU7?8d&@fOSytE++=w0YnOCiY4(>|S!%$8uM7+qBXurcH1VaGw-6Xk
zuHORzmWTt|iy}*>M_JtcWF;ShK}vVHFznF8!aK7n&9`r8N8%1ZFIFp^6u=Be7$NYP
zl*}dGbP(pAD968*1_3}6J4(VB^r)6>J9y)d8qluH#RDu3HC!a>4G9zuB@gK>?Y)w<
zU0ZM`_|?ai8}B)26%o9(ySI0K#Who!Z}WxUrNjB&X(G&C08SsLa!IdtR&dK(*Sh3x
zy%)62S}rUnvg1J&*T|HV4(+VZo6(6Bys;=pGq9V8bECh$1@D&-Rz@}Sxj?II<D_;_
zTXDQ!8Dmyonz_-!mN26eiF2AtyGLF0G(67rPFL`m%L<uWywize4Nn>H7nm*`avn)3
z!8SCDvPr$7Bdyx8R>G{%n;05jcmVKQ^WRYnxz}$vs%pmtM&dU3apj5!Z7J7JV!!fV
z9;X?2AV(`<mNQ<FonDgg{zO+cxrX=Gu4+WPwIyiI0{D0hipG8S^22D!BiDRsAI=Pt
z9-IRwZK1vK*yszM4c!>SvU5r8<}bk?RRT5Q7$yJhAC!*+z8cC;lj%Lv{!?s%Sj%mZ
z?Y?!WoiMiX*L)1bfp1ls3NALe_CXa<kb`#icATvQDc%ei%`BXm%qW=U?H+G4(`2)r
zJj;)qv;z*1^o*7HcL}0n``Ci;bWyuBB%hpXgrvdR*mYa?(UM8-$SI8fJsX3^KXq^n
z_&M6<k6!ZLE$#NqeN%8|QMYYu+wQQVjykq&J007$Z95&?&KKJq+qV6k{B`Qys{3{y
z&cmry>t#L7y;kkL*Bo<<Im{RHk8W0gRMeywpuo{~kQuIhVHV7YP8ZyZ$?vjvoU6`U
z8uyr*gvCiYec$}R_U~_jm&LVXTBw_18Mn{&>g0HLW(TAdxN~s=YXTUL<Wh$-nQ*Ya
zpVK|g%qftAq#d^T34xmPbg?bmSdTsAj~;XaH<1j6o7xHhK?7S^yIu5@|DX8nI2NCm
zR8mVDX~Sly7zHKNYmN)Vo7};hKZ7R*@mKyg#5Jc-BGqz(+P5U_Y;I`gP&OxY-(5=Y
z#xKC&Je9a^LuE@p80~u|6uAA|c6K>paQ5~KS)1>Nk=Iav5YZyUH^Jp7ZMii4l=gD^
z=!Cz~>yC(9<_^}ZUy$KGBj|uNP<zkig8uTePWrIWjqNSxo4G~PvDeb1n6+{xx)o=+
zp=Hbks66+0D1f8Sp@f>r3%A^5d|0LKthn8Q{cOqmV^2zH){kcK=00uv+}V6P)`?H(
zmWlr~?3o)_p923MWQ3AB<n(krrHqNyxD>i#!XTgP^OV45CGll+a@3+yOT%&YY8e8_
zk2C(I7x1@y1`tPYd7;Q?tHJzH_5lXxNH-c|Tn*8k&B}pC%Pjym^XIBI+I;1ka-AnJ
zyAPRGmK}7^GR|&Z&$i5ya7(qr@be&F{XfE#AYhg3ISTUB^G}L03Z$H8wsA{e#jjX3
z8p*p{PCK0k?})d97scPz?^IuC|0(@y@$=sM*Ly2ZY~gZX9I&l!^Jcj>%4ZI@)a@$=
zdVME;x8f|nu$s4%PKR9yW$NtS=8F!0|IIvC@!D-azV?pUUMk6ej1w|JQiTg*#dD4+
zZ|Cz$JJ_FAOC1V5BZFpJSc5#U>IJNeFEn-2My6_GkheBFXWr-Z%J<vHvx`4NumoPI
zgi>ZrZQ}AMC;?{_;o-vO14WdLo{xzLK{*R`_KI!dBWy_PQo*GhK_>v`-~+{}x6jc?
zXA;0#BG?ZbDwvn=6tzID9RI-1M=ifxU8Vxsx=)Y1Q^>0F`pR~VP$eHN4y0RyZQ)mU
z+DTM&#bm^5NVI>mxoPgZ(hl$k$h8#}{dlX+N72#Q^8Fbh5}Z6X$*T!q>^9c#4_6)e
zQD-jimF_Wms9vo>W3a%1f_G2%>azdo^Zi`3+|s*?J=?!jR@9|GwHHEenM9_i0bRRP
zT8dQ`c%n#4VH}(&Q6(=AYr!#ZsIV+>M~nWSQE9+T#cy<GOYbe{Z=3)DLO-3}GT0^*
zI3y(&w{Hl=K<yerYf2lHCS$5)%GUkELyNYr2ej`^G5>d=e`Oc!$6MN-qGu9gX|?5I
zG8PoBDD5`Xq@FiKz*ryx&)A)ez<o!oz-rWW`Ki!D+NXSIxB%(|h+~hXkWkqz?NiWH
z;cAkqsiH&GlC47&fqv}e!TmP`beKPCdl<AeZ1;_!YpyeT@-DnEmklDU3e%JFFSzfE
z6L@9C&(ZL>mW79jR}Y#M0W#(<u$*i0U-k7bgZ2`^@p2W=#wCYxF<8?LPN}^}W5gTt
zRhQVFCdw2KwCBOsiV^X%S`eY>9{9`22@ENsMslkWG+y${>bnho1jwc9BIBB36%$G!
zXkIl>U9d0I>Ne5yzFe~9W7FAHNM2V+szCmWrOt|>c7;qs%d00cy>`m0A#n$3kfX=3
zmtgAi7$G{RXclY?vb?MO&LRvmj#nSTXap-nC(V7y{;t^Ars}=^;^6|j%_NLegzb71
z4<4E@D5}_`_g^5FL$;E)muRx?K2d$^{k$nzXU06_=9eB?bym&{UI`#DO^RJq0=~ui
zL`}U_k0^PjSo`!tJ5`UKh|schtBDc6=#w-(pEL(Fq7TW7RB$Id@f`Y@lNI_i4CS;_
zg@V;{=7J8dAK=4lhO9xeeE`+#Knh^9iu|fQxR4;<oK5|iR6B{@Vpm1nezy+#Tu+)b
zeq7AX8u;F(OTk^_6EFLGO9zk7*HWPg^)-2Tc#5Gho>;W3d!6lX%_3|;@7js>h;oPK
z^5?ydK7>l*u1!NyAN`wGNE-hM5`L<JW7JyT(ruPLhyo-(w64}PaZ-PrcXrjF8(U^h
zUfR06lK$0$n)Iz(<L@k7#MH3_M&6wJ5nXuUxZI#fW7J-}$oN2flA4PEtNw=NBbw5=
zoM?qG;h73WAmto;dnVxU5O+Gn_?3><h}P)ST;GrE)z7yA`NAT)Q%GDMKh3x}|D^=k
z)dSMBGV8XFYr}7Q`0Qx%YM;SHSwY<kRX)or8}kWc5Zaz;v`<y9+=#2f6KK<8T=V_r
z)PphI?b7!f6<Z9|>e<+q(;h{OMk&Czs2=v57VAC^lC)0!KdQr1AM;!KkXXQg^0(kY
z9T0b8i8<=flOf>aSh)&D%hZ^;2#;Uj12Sv}Jw5b@Ww!#x<4_C3W|PJ$GtkqCP?>Ld
zcd8x0$5aAWGv|(ce}41z)DSXUPGA+2^9Akt$DDrVp?iU&QYg9f!U?s6toWHX2iGsK
z%jKtwQA5@Jh|UmT4R4!0<d8JyG@keDRiPfzHx_qt%t6$&maUUrn|+A*D@p~~ZLiJ1
zlv`A`GKZ%lMmJ0Mw&&<YVaQy54EL_Kdmc@hkJHhR;<0x>-v7%Rf^#UwyYaV+68JiH
zVcL^H6acyT05RD~a23mK+4tm!He+g!GeHB*10^6@#>1WQ`3=A)2`oDL3%!VvW-WwO
z#bV{9&B!A$+rI2{Khdv6I&qSTb?lI2FmCI0^b}u^Z$R_v(3fBi{E*fwJ_Qz5A%0(M
zV~TF`(b2w0m0hAk#AZCozqrbs(34jhvD|(UR>2<*dn8$YJl}^L1h#en+!;_z<?At(
zw7M4L#Xio7U=r^m`L=^>Im9krMsU|RI^R);)@j(ktgh8)zkGEq+odZX^|G(vQt--5
zJ&Rkn%9xifCKp+zE4*eAUT7mZ?(g9L9trN_fbSj0^>l7;(_%p0aV}q|ON)ejSb`}>
zSt(hBGcCPiKLPS)2lLelmrQB1pcZwlw%p=9&bNp0^<Qh%yAdNfoY;zQ^2273A$YEY
zKIWnayL$0u9U{}KRoPog8gAuGiP(FZ2gQjXi61s&TsbU7Vqqyfv=V&B$}BhWqCfCv
z)(=m2U-zRw<A5C?rTg*b()wBsl%t~v;X}mo$MTLdKR(7NmobJ^`XPI4)ehkUObh_(
zyG2QlZPu=Bu8EoA0%6i;vkrNr=f!_42R#~q$dyUD-@+%u>9l-#+%I4O%mFy^0{7fF
zK6kDbmq+#c#;X5#bNCEB#45hB5%`(3O>DE*69z!rwGK$^bqz)#=|~t#XrKVL1~c$B
zI~##2R_GSj=#+bQdi8qQT(>hdJ$Wg+@xjE~3B7a0leL+$soT1k(ww5nvd+=T(_1K)
zY!d<V>*otOyjpN^Jbgq1#$Qm$)F1dwh#9}eU^0V$&Qr)W{fS@~oTZR}Cj%A#s%YrZ
z-Mn92?W_Q?Ev@{e-{bvycQ}#8xb1bbm*(d8IWy;Xd)|$#wzTbi*{c6}RQuJv{cODb
z62`Ca`pF2a=KmVEqwjjcZPsD>@vfc?jw^c*w)Kwf%Kx!l!}oa%=(J7Peh;`L_Un9H
z2E4oip2d5bpZ|TkYi(D3V*4GxsHc7PJADD~;`r`fiGkCXdBA^R`Yr(AP%FU3=TUx^
zAGpTR^W^9AX!o^M1l;Ae`@{#_0Pr@mfCnkahVQLk8_3=lrFvEp^ry&Oem93P-OoNM
zju-qdAjSM&=e59jzt1VVu16NXcWprD`^=>HcCJS=aMz9y@cA#y@5y-kvs!)o>oo6k
zDz3}#W!dj=U7isb1$;H*`xyD^WX%33M)v(U-@ZRY_BkHuc^YEex%R$i?0KyY<G+pB
ze%t5Y^a0*b9c{nE10IYU`ETO<uKa+=dY|Cx%ZDVNJJK_L@|WV<FMX{Px{Esj$9+d$
zq52(fNi);KTYg97Grp%j{7+B(uZ+M0lBX};YoBdomgXnBFV%L*1-ewkl>g7cTaM`S
zeseJTMVHqGq~g0ZR?qDQ^76lJ10(W0X7W6bp7lRj_+QQdN|3-s{jW)4XTXy<aMBLg
zc<px@v;ETZHRHDf>5T*a#J0~X@Ap~D`-Yq}<$Wo>wf-@bQTuh~+r@qD!T8myuJd7~
zuP5XC+E4tou}%!scH_&tm<dYD^*cY<691YPN7w%X06$oWKXUwT_Wj<GN0?tGxBU*g
zr}VuK^_S?z7+JRe_*y)R`&}`9yO&A(-8k6+=lQ>q)b1um%=*%ZJ^ZR$P)9(#_h)>M
zf&lmT#M@fZzN_9d|MY<gUcTdHzPCO{X+7U<SK}xF7iv9wzPpQnyLsYp<C`zw5$??)
z;C-L?Z56`y+OG}xp$)tPzC2g~Z5>I*Nom7Q9)us_zBc$jKc0Pnt-x1o{yVQZIlrek
zpQkjyedm{*Z{O?Q^S0+#b<$VZcjxYpt6J~vtnJqj!1L#J8>Y?i`SttL_2*rdKJcmb
zV~v048W<S`Bz9Nwcsthz#`*436$#%RdF8r(O~=G-@_(=TS)OhKXT<?LZv({P@rVCr
z0FS)<4+XF4$lF{2z%yX?4d!zt|3j&t2jzTaX%681Hm=={@AGkn?;hC?#@pke_6Nxa
z75`@ee%|Yjy5HwDp!PLt`{HZ-S_F;<xHRKC=r!}Nd0?jJc%A>_Y2?cULU0*G|Em}9
z)yj9@Hv@bG09Ed>`IG10rp<cpbdS=Ae3!4^H`b3HVPtFlUYzUz*U<VtU)6cuuUE?7
z=k5j^w)@xsU>78MeDW?L`(0fEpF4r0_jaG7>x#bakFTv?DDmzY`fpRfQ$KGHJ}@2V
z?)#;bQGo;)HU7thYtE0(>o`|V2p?TNB86?gvrgx#ua&H)0Xww`q%=YXZXMUQ3;WgG
zhJim}6G-xNyLNu(z>fmPuGeb)&PP+3`|a1Y>;G)|$LQnCmd97M7vMSXih`ZtF)onN
z4!8)s%s{4S!OQcV`N#h@wXdd>0t}e(wm-Cc;PYcE_(JZP_?Vvo-to&{{rH;o$^yKg
z18=SP3G6;zfft?p&rhY>2)}-WZMSRzF`tn)x!0mOzEoBd8p!{MkH;nx(r_!e{=Ja+
z?}gmnSntazz{ivRR|K)|EBLj~S$S#h+Qy0|a4yRYm{a-y?YVH)$1t=t>fU`m<pw=l
zWTNNAD__O&v$PiQD-+rJ<WbQEBJ4@oIM1_NPhU^x0JwDi_yVA#n|Lh6i=vaJi;|9_
zqkAkpn;Hu7{G?GJMt*yUlc#>jt;p-Bc0bOIKOS%AOQG8_@b@>tCixu!Xo7hU@fY<!
zR5(Z<h2XsiAU}xlr;h37bFShbX|5BtG)M|$a29|DojCP`K{E+7jzR)qm7O>RM{aLf
z4EgH_*>!h!_BDMpUA-)TkBr*OD*z4ST>r1}t!D%@kkoMnFba_hPCZa+whAMF3<`Hm
z3ax=uF9R_euE2Vbt=A3)HF`>>$OCt^(qI#c&nJ{?mO<&*dkew|!dYj`@&J)7-&fF0
z7nwiK`7gJvMRa|XyP+eTV2ABO!JKoHoL+#JShWduvjW5(()u@sM~xXOM7}ZDN}o8)
ziW)X21gab^^5!$WJQAj0vSqOTK##ECws1Td@+_#cK+*7SB%_JH&$<b#(6f&@_{A93
z%8G(a0V09liXahwZQUZd`D&dp`PSdiU*OfP8(<TdTWdYNs0cn;S~W4fmKv~aD-`}l
zJFiH+NF<{nM1Ns^uZa8wTX|Lu)2i&wJ=9442MNOEs0gnDJ<C#wx%IQJXIWIl+f+m_
zcw8UESr-6V5vBU-6doGgpRWn{bF1FM*3>_*Zt`l%t7v$eI+Q7lTn5dNO+GPzw7<qZ
z+lV7d0R#TqK3vPd%f-sd?b6=G&)DqI-s>?5Z4I@_C)CHd9gk+q*TU)g=5TQ;XaL*w
z8JUC6qplv%*x}OV%c2%n4|n}|egkvW0p}nCJ!%yYH!(j<#lO1d{L@m<%g@CN*+ch0
zVMUw+>s%|s=7r?V<;P1$4Kh6id8zif5%Q&>b!#=pY>X*yZCO-(HzKijzc}CC5WWsf
z=@O2@*-}SK2!R%UKQ!C4XETE<!NOtTk(hD0hHSOml&Id+0H0_^vter#%vf38DuA?b
zHW*`R7PT@|_dqbR8;{T(Ci7reDY<JsTxhSqCcj^)h!Y{d$9Aid6U+45&F%^$gX2>V
z*&|UWYB^0UwWw~19@*uT{a8%1qJ4Bnk>^5)_C??c)GIPC?4~cEw;HkrI%kikYxsvL
z{3Mf7TeAE*{-Ri;UM<)yoL6DZ$3j&g15pPN*<k;44DHop1<BvF)We4aw<1f{hgRq%
z6hnP5)BJWAF>RdfdtJw(wIFuEMcm=}=sH4)_+B3v;){-NlD~L}?3!mWnOF^*<jj!0
z9LJx`c4gCcJ)B#k#0pewZV#ghT)M7Nczrn7Av0p)Xra6I43yUPz4ip^nc{CdDIG7G
z4Qp~F({jD-X)AXcy@I|qRigrz;YoX_7iKQCwkBGsWYccGXg5chN?da_`!JGg7}uZL
zHCxylU+26uSdlH8zk^z`q`Pb)b*=Y(cWp~Ka<*I*1nLJ?WnRx0;aq1?vPKzrG^UCn
zmX=G&)Bm+*LsthAwf7z+i)z?C@q8FiEJ;qBN_Tr`LDqG6PgEQgWK=oiES9yU&-R3k
z`pEsgSsn(jcQ87)WO^k>2XqXo38;-VhR!Cv{fstm?U?SOGHB(mA7V9>RSfNI!oiFe
zZm;?I@ZM%hzgtW@7pY+VUU$Xf*ph*^*Elt2y4}}z9s^x=&hjzf8J%anBIt_0n(#xN
zS6HGmC<a<endJ5wp_iA{67-}aLLP*=x&o3tCwV4YTiF1vEwcrSrl4eBx@yzQ7uo}<
zFnr-B4}WiP!z*)cicqX>>O_)J?corso)jH1gW+;z%FCA@*ZT~`Ql7(8o>=#mM)bPh
zS<L*G6X^`+I!W+nY2D+oN+_{EFVmp-1?JF31quguife&ek*@i!(rO6Wd$?GSE_FF3
zYi2)#GZ9qAVR0c;#yR?`ab_v=2u4+gVeHs1g2PN>yeVg)XqJ(mxe=VE<?Sn7zCO`x
zVnTG*i5j#<(e1twHq6!(GmgigC9P~ShNx%+k2v%~G3DQLO({2Aii1Qq)G%|FvMGH7
zMW4748<1=HnZ7`qY~-(j^Y5k~H$5cMNdzu%iW!D7jXrc|u=5iGf9Ou7)92Rq*MLf7
zhzU*WZ7~KHy{uh2*T54My9~XoW!kvy`xvXtpNz0fGh-sDI*XKNk{N;ICS*1_D`G8%
zDPgo;bQ>Zqy=cv_1x=|pletLfb4eBpeA+y>FP5B7yKtEaVk|b0*hiq2R_r=3b4ttt
z*cpDDZ6n+NMYZx{0OX}Zp4!|}jmI#BT-bcQO9631kf^z1HWft!^-FQB4hI8Td6rP1
zG;VT!mMQ{h%ksd+m{P!4utR^e{)+acFMVuwM0e%Z{JVX9G1;_7nNwHx(5d-XPK@2I
zjJ5aFp{cQhLv&1SdlOGWj9o!^jNL2R`b+Bc?BH^jIr{dvamx)oCfo5}>qX+Cm}`}N
ziY;056X|-|7$+wwqIDVL6X{0l18rxekA+~xKfjdq4VNVP?6Zp*b6AtK-tg!o0l7mK
zcntL3%Gxg_Hg5<B-V??bUNbr69<?4{N8O%2>8#5!jW<7jYvDr58}D1Cvh%_2M6}$}
zvl_GaoO@96RX?Q6Ql@VJ<;{S*S@$e=z>3<czb}6D49QP<QSQ^L5TqCU0rcW5Kn;;}
zk17t78wG6Sumb$_WA50)2lD<9e1hKukvnx=ho#gXwk&t7QsnX$2Q)D}AK$Y$fl8UZ
zJ1Cl`*yDJN<NB}8x@GE7j@w@ks@1#V`YYBghou}bi_HX(T=R1|a$f-Bv!_1!p{qXc
zPzTFb#`G79;!7#mZ5|#hFmG7O0@(h2YSrldU&^6=w1~pTwm4c{Dxn2`@3@A4C3i8_
zd*jx;vZYcrAky<18m2W^^3EBirRKfVNyjv@qUQXnnPqkROeJ!9C>^$_5@`>J-(xQf
znLr0QduaW{YbSdf>p53XCnwt01^nGK=m?cYSM(UUR@%6g)?3jgKnJ6>Ameg@DKo_d
zlLB>bpck1sXGWhBVp$gZn*u<Ciix}gmNo%p4nSC!z8ceSfEElt)Bbw{VMs6eIgtc}
zC+b7@95qPA^XGfWCEsluuXP+p@<Lz<{jeB=_T`QDNaU2)T)*GOOA{3$v(=38x_^@_
z7v|bxPd>7ElJV`P!a{3;?Z>I`YkpXGk10pL@8$2`f*o>)@%<QDFOOlLkSuwwNaUr9
z-DXAGdu1$NC0A|q!<}X!c$h7y&sgl|IJr4e8to-Bn*gP-+`g{7euX|k4LbLGq${}?
z+xf*9%lXC3xq@Q`3RA_(UQqNYro=Y~Sw4GWc{*A0^LtL+T4OQiD!pIi`XOB$fZ;8S
zo-elPuYVdk8sV#cSgBcupSAEF`TGX6-qtuQE~KJ9(^BV3wPga!9YH+o?OHo!ngKQV
zAJ(jvF=Ewv%n1|03ICdLIOrrdh6YGogVTow_d;QMUA_OZF=kXO)vq|$S?cm+r}?Ra
z{D#9T<NY4#;m*7hhl!x}Tl-6a3MNyaCm<Uhgf8W~q*-pzYXO!Jp|b%#gII_brR5;@
zHs9&^k*k*)7b+(R;wC5smZ1<b^QqL&`dlX~SXYpOS>^&Ww4lp)Yj`eQl}ZGr^U5=|
z?Lu%sk(;<I@fj&Ae{e7v;|qpddF0}s9AyLN1_2?IANRriSKXsOn?ijqOZ(t)rc6Ht
zoeb-bxIV{uS-FOD$HGLcXg?I0!SGZONP5QD5)$f+{A(^*qUnUqA&-h9L1$64*zpY?
z?>rFq;o=eOm66Ofh%#~)eYQk`1Mq*5?k{-iDUjY3kZoCnL*LDh7PWpXGdVmH-9<}`
zs5bBK?`ypjgm!;<|1jzBv?*9>`?`V&bAx-e+rR1-vWZRrK89et>N9@wGahh?&vk29
zsmWBv!PtQQ@}DX`OkEXy3>iAE(bqR$P@fg5T`psM!19X0bOL?CDp(b;FX+76aDtbX
zj*%-`|NiECoW9*fw)>}IO@^e{7RM2k)R86;TeIVf`SfX&5ijIfv0-UVoi~RZz6mvY
zbl+~2PS~f0<dz=+6ryHMzJT*mPBeT#>~p%P!w*3C@i?aa#4w?GkV}sqm=(-BOxtXb
zut<V9t$K|=FTP;lk$(`)Hc-()WEgqqAR_(uafEs<c<R4qpR4?8>CE;Wcf{N75_yr&
z9)Xa1Y%BMv=a*p?9?G+0vUN1OC&g{D1@ugOzsBQrS9}*<5zR1KFezv8O)#oBT6K`{
zK=XiIiO=o<c3VMMM3X4MAMO6S8)<Wj9;jxRA)*U%U$x%emga5DCGB#?Q!j@(K^hfJ
zT;xX~$w?LBf+KsH>=KP><rS*?su_ahI?uA2u@0<Q$v2Eo3=p{YfML7zGGoCJ^94k^
zVnxuMam-m)#pSaY5QMSDFq=wlw7g|S<Tv)i5hs?)CuV{KT!TjwWSR@`D1TghC6SX!
z0s(eGf0FSiyC+ws&3hC<q#V>8Fs`Pf<05TqbhoiC`FOJjp9zusF3?|oLyz&hZ!I>Q
zKEhr5@i@p3Wi9?&$>tWznCq}!5aDNq;Q7aWsJ-0~j0+TOgN#fMu#kj3khh%C4E%yA
zBlF?4tsnm7Sm)T1*Ek^uL>b7Yal1zUU>0sXmeA)o2Og`)B@zn6y!0NQ;I8d@+b=|k
zjw`Ni67qB7R`O%&kYisxYHc=!FW?0wG*0{vAL=+TMvhiM*{|S*f@I;!t~nt#bZh{l
zB}Y6@z0+q;luU{v*UuU8@hZEz3NZJz^u5RlFFY2?@{}Hqt6W24c;Tc49Sgs8t$4Rv
zR`vZ03ntv*b@qj%ZOq(_iT3tlkcX^8xasTo7dd_DmMDWX+jv3cx?}xK6gUW@EIX-n
z6YFQhSDwPmkv)W^wOUu6mQUdgBjN}hGN*mpWJFMCEB#5I2+xcrb_ZInxhoIY1@$V$
zZ9P`pH18#MFiDWFWJGOf&XPlDWo`dTBQ?X4gPW}HCFexM?GSiJcl~yXa7g_n-0(-m
z7Un}mT6r}3w0QV+A|`(Xc9mJqGdzNL*KtX5yYU33$}p@DT50miAX2M8!OTC7aA=wG
zFUmumO~Ya?2s*dY1`H0G$dobxgMYotc3-ma2?;(iRjHB<LU<bVC}<z|Qp*87U%r$i
zsOpKb&L2;?zi~R_Oo+iovxEf3eAZxfTjY_Tm39p@{7nQVzhp<>xA?M(oO-Eb4wyi}
z36q+7btfP~{aS~B-H=3qHSz(5YJ!+J-AB5hdL)B4qG-xqgZWS1S=v*sx(7|rYH@-4
z0gHtGpcMYjo&5-=u`5-Vjz51U`CCQDyI|_$ud(xq9aZU6@P+s=1(Vw&ge0R%Ws6c4
zJR*kF47{z@6CB!#LKmW9XGQd-3Y|fvDSB6p8MudWXq_X4u0*FQoJ$}?V^{{5L%1-U
z*g3_6tYLT{X)}lat`gWH5NP&ARLLN6tJRV=H_m88%KZKl!ieUQURtb)sQAi=&BiKx
zdx;@7W>BaV@LE%r&Xk)0$PoNOh!nPb;hF=71c}1NhJuN+*nj(4ttNeV*CFt=jucfQ
zy7<?TP(K%dS8g(Bv&qL<yy%IQapZ&0!%l3EEh%B^QX&=HSRYiKkebJWcp9KyB~X!q
zz%~yzv3v<m@-d_x2$tN`n>a;Vm~6VM*4JpPpyqnZaTSgIX$R5mSUDw2!-v;M@eoTh
z*f`)815a!FXbPyc?67Pd-bUFmJVjfHRfxh|UCzOHUh_i8T@Kj9@Xw^@PMPL2gHk)2
z#SYvK2_`U}Nw!;*@8J(T>gh86IUQN7B_k&1wqpqW9z0<g6-dgi2ybA9w4-N-<Zd2L
z!xda(6&I*Kk}Dc=)8K%;MziJ@nUIP8+P-$zb<DkhM<!gC>40##=8tqq*J@jf%UElR
ztBvo*-jY5EpP;?p*4&G5^>{#e28oOu!iVZ^y0!T3ft_A9lJ?_joRccGSHgp<S7Z(1
zC6mKnoLUI&lSk10>8ejmTJPAjQVKdCPP|MT6v3A}7&Wn*LEs{csV_6W%wJKx+t^#j
zI8le*vkTuk6hf~EPs^XB1oH}-O+n`&aQ8&Pi;7C3PW*U}cZa}!>RA0>#+y9{0UxCs
zj+Wb^5uSG^cUHP)Qnux!oArhwwDdcE<@q{(bAgAbjCHA<fH2`Lj!xfD>|7&{5aNtm
zFI$U^6O$-$PPNXQHEDyJiM(u>dmb*eeatyhPZZBrl0|H4%v(4U{bm}W=_l`TkCgnM
zAf)(RLm5Oitb}RD_9UFR8-JRuA%iP^wP^C9L^eFoYuFe?ZR&KgX}C&tAvU`Z{oiFa
zJy_--LuMeb{{41ajxeILCM>yZ!`iUA4!sEvL*+V#`!zS-eGSUN-2S@-`;g4OM2gGc
zz;+zP_FP-7Elv{LKcb<19f!>VnXj>ieazab@8T_HOtKc%lK2p|4L+b=AiVy<%VP9>
zApKsEK$z}gy_HQ&Mj_;Kq=$+?3B#Nn#+z{~f-C`E(EdJm{0_@!^4|(%Bk^R4=5G1o
zOD)B!qPDRqhogn2&;qsc(-9|cy>@p?YTbMhdtidgR2ayw9h1w@ErE5a^2SJKf?)zz
zmXOvP048VsP<G>#-?d^4l_xm~o<bMw(&naU${S4`tSh$tqz%h$?RhqCICV+1xB~JX
zHAxi+IxdZG;VdN^G@9b!<s9S}_X6}a@~hjqOCfjzU@u79uSh6qKTUF{m?>(XFc$nf
z_B0G~6-pL{lSyk}hRRz@p7{m&C~{5{oppXlJ)XW`Fwy&C^Qhn+g~ea%>^Bd`AFMh{
z)upkqh{ap{K7-pX$9GI2g&Gor#$^ws{1uZM76xTEyHj%tMJNzfD^kMLX5o(`=Ab0T
zi+orkf8pj&fOE+HOE~$RblV*!NL*Zlv7JMf>cxPwUr|r>Fxm|z``0Z}Kus8|;tw)f
zf`3K2$ixm&)_)gz&yW{hQQeMr<M~5;Kvx9!AZS+_L0f@F&|)t?>fEJ;!&bycwg12<
zsYPYUw^8Or=52T`v>jkmX#TJf3(P8dpf}iQe<h=A!t`hi<IThX{lG(5KSPWcR_)9P
z46rLC+?6<dLWU;PND8XHsG&D7N>G#ixn8eiT<W92<2GJ8+X+d8_c16liynDvw(c(U
z`VLCT>OKX3%TW(Dpm+kpPNpMj!?Rq)mRh@f*8Jw}go-frBPL)KZ#axuzAkceLh$Z|
zMR*BjTE@BF@dq4NZ$2AT!B0g@Zv$21*@F(+?33_mNSPb$6+?84XBALR$<;3qrCv;`
z*}ilvTo*_(zC9%o(lAeQ-=Bsse=SW#)>JVXY(T{cs*uFPE-ni|^vHv-+^OYt`cmSi
z-F}+oA}qi!e3#L5NBnn43&AH&mn$q->1S6b>tlCtMmWX13mmX5(RGZYVE312Q)NH|
zk?L{!9+R3^aeS>&V(Z<I1@P~USrJM7yAcrf%O*AjMF=Bl`1)F6@0-`$m<mR7T8r@o
zqIVDAZN1=qMcr5`dn^=Pj+12oH_S{QiMJ_mz|J2(p|sm-DgHY4A+@}-UjeAMMP=-}
z<W3Z8Q@!gAEK<nzp6lOAL|IX^iXTVAB)WC4lBP|d`H2jiQ7bamu~j-Ku`OE|m_cPx
zauBB*L^J3&>;f!R&td+~4u4YrH7RCOtb%+Q0@QWH#Ktof!_Y$MqVl)Wo8hB^y@xk}
z-0}QGRzzB;r>h*xY^8?=T^8m&7qsQD-q>y+Xd00g^XgaW=BNv5DulknWE{;%JO36v
zlstf}pSjOAzD!H3yGJN_70#y8{sU8Oof%^=uo-~<2<&JZsERX%SaE%L6a8B;Eo#Y9
zV0nj&30YjlXtmZnQ6M@ppi&wv8Gr75R}99Zu@3%>;#goqNQxRe#~tX}^d-3LLqpw2
z6ZLnQ!zNjMxk=HI_s{lJ1vSIzXrsGC2nPoyw!HB`1>b~KdEq=C-d<5S)<8xA%-Ezl
z?PT)g&ghgv>qtg+k@f1n(W#bs%R>-Ovg1e@XkHAWh2LxdSP1q{ZGs#1rXV8&sE!hF
zm@}ghibPqNnj*N{0eRR}?=!Eus5UC00;jTGhM6Up;Y*XPp*{Y4bqp1FZm28V4=!Z=
z$Y$hL4KJ_J#=2FkmFC{S-%RUT`kT@xl9=nkwjEQOjoJpLp?M?Bg0y~ZGNmbg<C2VU
zuiZD${|=Yj7LX^H$@#&oe4@a^^xW)WXdVNPUb2X&0G`W)B$SV@$d>3=;8@C4iwTm2
zQFlQ)hEGg}!qv<9<Q(xzWTXD9YIau+K0TGb&AqWG=7Dh1QSehz3+0jcoAnXtXN>ah
z3xBu!XS-l+PMi}))DH<&<wk-q9vI<%i~dk&ClJA1){xWh&I0t4;2{u)+Mj6rWwMsM
zcs__l;36j~QN8PMJr*GnLf#Fx61g)kg<{tre%;uIf;*H`hL?F*YsO?ZEl5(zCgVa~
zA=tZ%F$^H|axM{3jDHndKaqeCI$Och%JK>@0+U4{qqF@Ted-s0ZszN>Ig3QEB$wOC
z{v<1WmC0LV=5d0v_Vj^?jC!W2Ybn9RdvVKG&QNYV^-$C7LHtzkPkg?65+ue`_9M=w
zGa2F8+<?%)`kd5UkGxT4uih_RXNV6Idy}Hk06M-;Vas(t@cIabnqG)Hh(N_2!wL==
z3LD+X<s#u1GeqgayrW1P*OWGx+p(-Ot31>|XSDVe1EcLW<_N{dO&(I)+#BX<x@dTu
zUT11yh18;oIZ;t>A@__`{Oi#0-A{2<&;^BQC_JorU@{4IY8sZ=F%A=RX$LJ4ymobb
z(C3%Gg_feOUR(Amd&BD!s0RcB3QxmehZ5`ut=29=Cq9?9#4ZE1C@=9XpzRvhzgKX?
zA89k!5oR|{>J^RJ-{D>IcURv=Y~Fg<RhS{ZTYDa~hNdRyuKVqJg|!oE8|mn4f2+g_
z<~bc`YMb+TnFGgZC7Sa%*$#t#^A*%MgO$olj7WkEH`fX}k%x>d>H*mNE;dZuHl2E}
zsXSrbv}jk*Q2GAIgF12AVKKVWVp)l5x!Uo;3G^{=yf|#eX-T-A+o*1ZQkURbZ@)&(
zh-?ZB^&^aJ|D}Z&njqUe(n}CDDtrJu@Pyz5iHWiwp41<+C9(?-WckfDDQ5m`;<9~*
zix4Fg6U4T=iFt%C;2Kj-3d8jpmQ6}g>1PYgM?IeBctoeKDctL-vvy+vTe6-7-tF^M
z6(paVR0I-<s{*o@1ao~P#A08MG3}F(qihR|z-giv5(>}Avb6^-3-<53+o{f*ShK<M
zOKCrqivT=;1?IS>OY}%*ftu!07kn`q{y^f4XefN^_5HoQ?=Sk6fWE0KfslxooFoG&
zM<%a$Bqii>R-W)}*bC0_5XS6Jp<fCFJ4W@f#HXbi6wW&XNMK%Wzo!C?y_!Lw(@_EB
zH<=lzw*`fIPpUze1VdacF;h$$y?lX36S<;uH3QhcjJg9BK2KE+14rRcXyJI(zclkm
zE+gNI&KB4Xc>3Ju-jou@v(B~af~?WH_Ise|nFw(AIy@C5Pm6o3gd*3HFQwm#R@gM^
zna^I?(bGQ8z<+paepB`iR<-I8!L=QDtev3Q$of!4j%#7E5y;{bJ1?jUs|CQfMmDmZ
z*nw3W`OOR$k})KXpv8rd%%jw?QzUJm>jEg>s+G&YbO<OeG}Ac`iSR|YHaBc#o8rh3
zzsg~RlXNKOGR&?7G|3mK3K%f|9ikj?@RN*yImj$pIWRYsl77#Gb>Z$Ds<JFC37ADy
zHKxu+p4mZ2=j2bfJ)(N4`YUS2iyW9OM<550HA+wo9_S#rzQ30_#whNiN6`{855U7Y
z$}$<FECS&rv`;Oq;tD`NUeZi<Gj1b+97>u4Bf=eXP+787aduBvJBF&h5H-Qbao_?r
zXn+{BSbj4q&VDw=Ogu8*kE&a!Bt1FbK3WQ4HZxWvp-3@C+c#d7tk6TC?Hu}^2EDG0
zDG)O8xuTK4@*~UjJYWW@{(x!x^kXabr-)JeNK2D)9=#Cm{wRj$_((JqA~bbqEf_oc
z-^6n_M^U%>_TsdipbY8*&2(<eFubQ|=bQ}~9<`=-?lW}t8?b8GjvnhX{3QD^_1xc-
z?1AW&3WO-jb^;?*MM%CVJ!xrRT01GY=rfZ68TnU}R(*W5#i}+)p-<__37ti{<YcJ+
zd+^UV=sR%2(n08upy7WC86E-~v9Po7aLM^(g~}5T(H95|x0A57vUi9g#b$53F8=AQ
z<q&E14iPQ7G}m!H{aA~|p^$X5MF)>L>Nm=7p&c9mU0r0HFTo=mGVIQ`a4#3cAuZ0O
z#Y#+PX0Wu9QS9KkT034LKWs!%29Wj4M2K=%eNHd-8~J#bo*NpvNy}d7mPd%bd^(&P
zb-YL_kD_g}G&M-HM=4GTap@6VUNrsA2?=z~eOu+$65J0ebtIH4ERls{)z+q4Y=&K6
z6I=UtV%b%l1|3eU6Vg+f5roa{38MxqgXMMb?aPdLkPt1MJW)!wRYo=`=PDU#=t7IY
z?VJ>D*Ngb;9oc~bjYvnb7fXQbrkQbq=7)`}o40L}_A&*ps|MeRi`aoH&Js&u?D2V#
zX|$U*KEthp9~X~{CcGg>h*XcBrj6<0{_|CBoPxRLjE}OHx2^~q9(1{vA!##9Zd*7Q
z<g6aE99|?8K5}770-Bgge&IluAb;`^jU72_vU9)Vsf_ZfXM&tW?~mL+NHD()h9{nd
zl&DbW8gyD2cXS0;RjnOi&Rx+O{97l1;hX^Tq1eH|`r~XpwYH%9*+)fUYGma0q5zU4
z5GVTBpG>F)XQ`aR#_Y~C2A;da;0~d+Q&DuiXP^)M^_@dOcsIT9BGv5(9=@(856wZ1
zN#cnni40ym%tIhbxn{zm4ztkip}~rT{VXWo8gS;(Myr{^(Z>AWeEmp?2As_vFh8PY
znGu{m%KC-t=p^cVm5IW(9?EZGn?u7V1B@wn*FA7gvuU9w_k6E3I6q;@;6=bpJmRS`
zSVHviIkBj;XbJqyourZX=*WK80W^ysMEy?%OB~JrqQwei*#|GetZpnqWU$%%SPQQb
zS~cc8vK}7z;LAdIC!)cR68K4rvlCqTTD7G^v2deP_T4<CmKP3tL*`?FS%I2iXo|+6
zg`SmHs6gDu4QXWw)p4atxubT-ubt>BUnopK)ULfUG&&zun9MMI_^8%gK;<4&(=@JI
zB951Qo}!8zKi0XHr6>C|*PN%n`vDR`ufdJie6=SG35tje+&YWCmn9b^&#CpRLrJk)
zVvl?#BdSQ5F?!k&iyf4PO4#hwyKc8&r7g->8zFOttY`T4*~aH5I0L3?3kLD<nYAbk
z(RV{zXIDhJOYu`OD+j;%YS(%3xN+F3C3Q84n)LEkTX#*_O{IX-;MzR|)M||@|7|z1
zkB6=(n4A1EW`Ch3_yEp<nR3x~_OQC)%EVc>0FE+S<%Z0=9uRE*K0**AG>?VvD~d$B
zZ4FSR)icB)Ge`%X|DFy<Y4cCBUOYd`1Rz-KmW#1K(X)B6Dzz;r#F>FbS?%T~7mYaO
z)zynm!<37>I78Aek<{NatT<7VNe#?u+#rk58qI-I;laX&?L=vo_(=>f3P--VE-rp1
zcakbfjr`j%OrS8)BfQMa1s45yrKq1&yJw>97E}E%8}vU`==qZtP0^iilSuSeo#><*
zXw7EaVOy4R(ZBnbPBG_ng#z=kihK1jgmmG(c>=`dM7aq$op3+<(;BdF;HZWE8E+>K
za3&T1^2b7Prvuu|mPykK!G(3_L%;VZC~!$|-Up9gCNpprYLVt;PjUlvFGyvMgr)E;
z9|2^8>3Ei?>12+agE7vwj+RzUxv)Zcg!XJvr@6K7!4*j8JFo2j+I8l*&4tn;U&ZR%
zW`}%czz6o(yTU*WH|T3*(9Q&<D`E+f=WiB8XYJ)^8Q{oMUtK3dVQmK8Z$$xdO)$jT
zb;MYEYYEF>wm^kWJrDDNuZUp3B2P!O(D%xc(BsNLJoksu_{RD-n8~1!Lr+3)0@jBT
zPnms7ghzGPe00ka@W9yk5!pZ)?p6`jv>h*_M5sqHhs($H!f2|fC$gTnK(crvvq2Ij
zEgejR&lAOz6e5G|PBBxfdZHKMD}D54x?mVtBn_zL2H~u^<OB#zXxsn-NZL$;?k62q
zjMF_KG6wyhxur~-$#btwC*J2ewr5|jckEHwM6ZcgD+7FFNDV;&Tq@u$Apy>Bp+T{W
zDlD--%>^)<!!6+ZcZTpckg&x=Th{p(oU~!py06J|iAuZco9kUcCNp8%e;`-2aIPNr
zu3374cYW*)BY~6HbuU82L-ZmA{bpMZJaaNIwQ(~uGrlx1#UdD_wF)OdJ4dWu`?<1W
zY3I+ivZ85*Q&$_7gDMKqRR`$I0fo3pf{YtsKWO7l|FzW4UPS5bV~Pa9k9QG9b~S0u
zmOsQK#W>Yl-fb8s--g=U(d_ADT#5INgDRw|i>~^jMvfTlGiiCWbattY|2oxF&4D(>
zgl6BSS{!o-!Mp1qYV`c13<3GvDI-6VFw&OEUx6y7D#>OUB%y=;Dz%#NY)feC?P%u)
zG%yC*`!sfYI$7=8`|O7-u4_Ywt>Z(#XIa^ZmY7R*;w;=~P_cpR;D)E0*z?Atvoebk
zMnErfgJ(M;B4~z&XqHnS;Yi$Fk~M6@S_wFU=QcvhZwHs!4K%Xv;c7d8B$fnB1mb7a
zdv`cCR_1@eAhla)YK*d-GtZDFy39q`q`H5)=*66)#Br;9ao^G0^C!O&kAEQl`3n05
z6wUw^Oac{-{HXtzEQ=9h4gTL)(wMsJGl07d&=?H=C%j@xwf{F*>FS!4|GDSEe$A!?
zf&+MAt!mLP4q6iOfCW8mT^ezRei~XD=Bcm5411jAAPU{IVhw9xsvZr)!wd2IQQco%
zFZWU|v6!Xg*!2x<_grU6x6_X+NNHN(D%v~2QQ?-q*7R;<gM{2oT#!V&TECrMs_xn%
z`2_V|>chGXRg)a!j`n2B>(J2IFjerj72M-9mjcDm6nP}EzH%)T6F62ihM8oyXpQs9
zLfAIQuX(@OZTqq-spSc(`Geaw+H%d1cozCQLA3fC$~~K|KgV~r8Y=omzMTy8MFG9T
zs==OuwL$5%?}Cr{@g<rKg`8Al<we}CWr1tB1DL{G$XGy1xeWB{dt4Gbosl@3<n(m{
zP$F?`)XbkahQXdoX48mMZ+nl?V39vs*iu1A$svk6Yk)Ww^(}7i(J+cLwD~a1(Q^ff
zPi{+pVP%*_OJwoftdwb3&#TDc=(D1+)s?y@Gr<U>Z6I<G5`M(#HHESasY--#`hbPn
zdTHWlAc=mqiNG`M5Yd5#3pF?ze3Rx98`CQJRNL<(>Kous1z52kob?oK1Lx#)B>AR<
zSf)n*%u(<a^3)2SbYelGVNaMPwwi3575?nNmZ?+7Hp%_MFnBeOqrCveP5b;~N%^XE
zwJ`BDdp0Q2EkZWe!+(AAE9yxv1ae?YeFDjH&GJ%KHwD7B$&R<AM!+Y;b{PmYAe`eT
zcPTeEa(!Bq<_0Jtx##*VU@~?_1N+D593u+|XB*<~K7<a$<_a0BuVJ)nZrHh6PI?^&
z4U?Ut4{Q_iZ(t=a4=8^3Rzk|LU4V0*Eva-VqFO2GAmkl$46r>njE_ZtRuPqLqH^oY
z_E);2?#vZM)a|uYjVUJS{ZX8ZAIMVI;7Sj)I^k=hOuQDQsResc6|`ahP{@HK=m&-J
z!4;)~xmq5`RYP&_A%_+iWv^>p=WA;Q%<<{yZf|XHZfM)I>Thl80~{XLcmY8j3r8e>
zBpe1{c-tDd^2XRGes{!o85{JvR#@+LEAp0S#0yO!lE5I~1grb0Kq7l!lpl&3;830!
zp-+iPq)Yn$%x3kxE2^`;)1mA?m=8h~bkwj%BG5SH<>%8+sq8#yKEtC^cW01blpMGT
z?Pa1S1RXE}pgf~?GB*ar#&ak~i-rECo%o9htQa*RIX)3{xmNql9<f^i##x<j9B3s4
zCh~!nf{+fmys{z9h<?kMld{*(G#GIQQMweU#_=Ku3ZsdQ6G{MMfYbZq*~S2e2g!Cf
z$z-3sv|^CYqI>s`3`$bSn8I74vJ<@hppBv$<}CL<*7pYXa;F8LF2}B={u5<pw2q=y
z_Uiwk)y5~!5q)-qs`Aycd$AweobY?*7oV$)<sUhX-Ntj}LY;S2Z%bYyD<k$KwYqEw
zJ#$q|%^ExfB~F){6U#UvQHbs7tGD6ZBR!c7&Tp3Fj!Y~Zb5tRzNAZ_djDm!ZQc%e$
zvr7;liJwT-44wMo@``vcKE1?auaLovZ!5Q>{<aKn@GlL|Q=^n(o#&}l6WUDGZ~b&O
zP*vG9g+$B;4?k5T5GDk<=t@vFhB+B*one5uhHTt!+JvnjR{<%(e|V=Lg2;qH1&1#f
z2@gyWSzhB)x<9aLAm8iK+FQF36y<%GJGBic8%&8^;O}M~3~SOOWOAQ|zjCIUlV6qF
zPWOzqVJ332>q18Ny&kPnjSHa#WH~k&>rBVisU9`?`q`d{ISUuXEzz)!ZY*$lC=&N>
z!QNvgX5Ismj&V3ER{~w8PYkbdJWZLmNW?c^`#+d-ORB+4fLq@MSuv+#wc16i7-`nY
zp_GgjIff7k@!1v`iG<$JMOL(-Lk%L~nfh$Lau2eDCD4no4+@oo{3}(_4{orYkQ~IB
z0V2?9eAr%bL0l#7NaY_mVoH$9GL_PTs@8H9Yh`8*>p$NIKV>R*&a7RR-Gd#J?l*g&
zWii+_g@w~%14HACa>@g(T80k9)a;bk{5GC4?tSGffZPNm>!L*Eip$g1<lA4%Iy#y<
zk*mPeEckCCog3=R*w{zo&M02X%hXWrAM%#L4V+&M&d_C$xjER4_Ft>x!{F+nRhUnl
z7X8?{JeYd%Q);{6#HiXvzW9cqL<B1C^Y<w<8<`ds^L@esyxXUNhmc>TY}WVYJNcHu
zz3GFjU>E}!P7R0&)t^1cHkD?i=mN`_r=)a@<e)ierB#Sas9;=W@IHYrh>|x-J57|b
ziC7J?{e-8lDJH1kiPv*AE+Xl+7Ci^A&pHb^Q>D?77+6w*i}jUVeM>QW2XK~97AMVX
z%Q`cT=Ey2}q{A%MhqIXAb1T*$?74M(AiTp+6_G=0aHtjIUusb?^xDcvOfLRObrOlX
zPpFT)hBIi#f)O}n-YZVx3TsIs;1R`AP)aEw2mOP7m&P*t@Q%%P`$$a#%X=IgQZnJ)
zT>i8x@R}ddp6CItXL=#JAj=D`45@ay1jKl@?&h?XQ%9~`xF4_99eJS73&9%LiX$AH
zOo#Kewg`@pemtd?*!aVb{}!Xpx)E8+sh>;YzHkaB<-{?0$Fp-Kf5@z7(zzVwt(B0A
z_QUd6(mW>OIu7g;8+W{+W~6nHOID-VHJZbF>LPO;Ra_$N#PUPLcsjIaq|$SwT_`Ji
zY0=6HYzC@yqgaYHC}S5?_29@${HZ=OF_EiG7d>YEP@>7vyxB0XM!Io4#m~Ky9c|BS
zH~em;diLjuccjTdE0s<J&F3#AMVwm7E)R3(t&}k=y0|@8dnhlLDb1~UpRF`G(ae-`
z*@S0E{iZ6V5QmayU`>T~w4m!%mo0SK0A&tJ=BjleEb0P2<2bo!W2rQn5oNvYkS<uT
zES;ZKDe*WqnG&mHryPmTwNp%os{_e=bc$G=hGdb1mvO#XKefRdU61y?_g36K2^7kD
zjTJ7=8YI*Rl{vW*&o8kRI=Nl2g99A-4gNA6;o$SaGwbw1iq@b)8L4f81asC!7HT;(
z&Y$Q{!c(c{Cv8l?iaNjn8Sz+5XAYO&{QYrBCOp~CY(>VH6yuU;iK#{-OVO%_!5(x)
zS$R;NSkLm)z!7xDZY|KY^2lT1!NEz?YJ`HyDZCVTD*h3tnuK7%(ISSY-sUy<)EJ4&
z)EMr3+6Lm0-<@1pdbE>7nmMwXwS^wVLDyr>hsM8s-eBpkleO%^T~)aDCEZyw!++;+
z{7b@&Gn<a~gltP%WHoV{_B1j>k!3(fSNh2?6E#Qnr&&%^brpdMS3y&pSSqG&oYapt
zQ!F8Bb3rXu%J_-;P4$#bQJBQiKP>WENqs<}uUgWK_W{HuV4c4S2An&QYSP%-x=+}C
zdqjnhLwySA-JZOtaH;IK8xjHXVw)28r~<YJHlq2^%uB?So++ECO+#qlKM$b`FLTzC
zi*IUBWF7?7qN)MHgYdHu)h5-h!>eZeql$`=v14p<MXtFmh_aGY8$|YC&aH}n_6n{L
zJwhS*$vYgArvXtX>kp@O9>R|MW&t5m^e!kOzGPLUNb#sxRDUb?6D{^VX2%p3usVXs
z3{xvkpDb8{TvnZ6v+IVyZ#>`?jOq#uHQQ6tV8bjxyHpt<kOut-w_QB_WlqlaT~RTK
z**w}kAX7SjsBRnNH4a~(Tt!h0UA+0jCMm0S<6_O3|5l;A7>T#$6O?c54eGww{>_m0
zDnh)fvbCwHC9=M{YSMFg0nM$ri;r^;I8=GFBuOC#g)WzAe@9-q0A-hA+inaHHSz2L
z-Qy7VkI2CtH_nK_H|NnH7fg1{JrER>Ig#siT_q?uW$6&vYokdROq$n2UuF$uAQY8;
z&E@6J`qT_A%+5KiR0=nsJNY7*9d}T@R$hVrWy2|m;mkzn-&ygZ8+)u<J*`U;bd5$y
zQO=gUm2g)WU)jI~zFmLy4nq(H!fQyKTm87mtM~{1-hPC4QXm$7i8^RF!as(9n5g=8
z;lBtwr{GGWHe5#&+nU(6or&#<ZQD*J*fA%`#I|kQm>4^@HNigl|AVS?aq3)jb@!@u
zwYsZ%_4_^V`}x)X-CiVY?f;x!=Cs$%Gf<16HU<;YW{2LOtl12d`k3iPzL-FXnnyUF
z0<R`4HGv+{EU-<3tg|FjD)O^(W&Ue=u{DVo(*=dX<mr>^S#J#m9&*r0Z<kPK*=@}0
ze>)>q^kU8LrjOE@Gn~z=caD4~ov;g=Rlz#1dFF!3i~$i911~yAeo&tZ>jSGUyi&$_
zCfN;dV>=iAeX^x2T>6r-H`MI%EB~F&jtq#X{)(NJt2aZ;$rm{wnNtcOo}@;n{geWg
z)QaO0iScji2QwdL!ThKrhYdi|AK9-;MK>c-(;74SCy^=R#|8#BYKeaBR_6@flQbu5
zaS+d{4WxKjre)ySGe0ac*~eB?uD%i(?F-qTuV%&)oMd!t_o~!T5zr>cW}5pDB*j^N
z-UnML8I<U#U=+K!Yb|3!{h@(p^%3o}xO=z9-UNP?7LPEPRx`NGz!+vWynT`b)`;BM
z!{CsbAYVE?X--BS)^mSlAP-4Yp|q-k9bO31;GjtJxN4cUGaCqT+(miv{8SLnvt8No
z6`Q<w(1-ANoWDBUPpCJbwpx*Gta9F%DNb#M$cfGExfQ;kqc_!N9S9r7TBx*<iYaZK
z%rFYNPx<T(&Ti%k8Dv1&WxegqM3{d0038;O$ex0H(c(Qq?^JPXO}RN26;}O_5Sufw
zd2H0LwBy#`8Pik$>$Yg26Or6!2;gLQA<2XB7m{g@A?aCx4UdBxeoT$%t0%<Z#bkgd
zkO!X7rQt}YL|cf;Sx0v~CEnTZlE(FMqUyQdsBo5oUz$MvR*+K0&m=<|YIH!=fU-^n
zZ${m4%2%(lv)5R^?iVLPv;R^?KUIi)DHcW~NLq{Lwe*}ieNbYL)NyU6H8PW%P+yG9
z@Sg3HNc1#t33Ru7OzeXrf_QF-&L(Unxcg#=Bz>vCaPg&F&(1UkGxO_NK4z=tqvd!0
zBrZ%UaLA6E(y@w=im>u{bB0)8V+g7R3OacID-tZ#1DTF?NLC23SbR7#Fme~1gTzd&
zz1#Ib%)t4lB5imug2hZ;klhooC*S+q5cZ9FMDUuce$S#l(uBL;6yMAi*$8rPN=tiz
zaKbo*8B-^$e0`Utx=~_{U^)Hup<bRMGf2>C6+54oppW&gcl)Q}CP>dfhwcz0A+Yyj
zk)j2@bLM54C8mj9jFyanuD?L5ocWQ^i(9z#4@l*>#O=|s>a%rIPxd5G&is88!5jW0
zkW4B$nD8vt%Suz6C*8StHw^J;%s=a+cO`H?v4lucV9rFxxTAENH_P3Px>uDzei{1y
zp-+zsb#S(MFz!&qv5Dv;RW;U?^!rqBB^keJ*=Y8ko0m`^zt=+~xu*taeA)XAs#_XP
z;^Ojq58FfKExbKiKmbQ#f$a~@Em%)E9?U>^WcwKjUL&Ree}Uq6E$?oZS@4l@kdG-Z
z73e(na9H)za46Y@s=CH;^gGS+n{-RdBH+T!(1eyqmNdKB9EQy{$EE%VLn%QsI&;%l
zF1;{5i(vA&AeTJ}bWoOM4~A<C(vMmT%%Xp^$N-&+<^1-Fnfzop-NsIjRVs{&IF(Rh
zJ}~9=0F1vs95G4HO}=TJ7U<|7u5_eAX_=LiFrBf5L>}y|@9A_=VrilO2+=Qmd&MeH
z(XnJlkW!1DOcl(u5I|{fIzuzLE9)XdE0FEx&0AXj86!xx`1&7d^X^-?0r9-xC!b~x
z34yzL!#!aMq1gKO$oGwMKe(U>`y~jrvt>#>8zov$VNV$zeIE}fcR1BT?~}PE<!J}O
z+oXVv(}&Mgi}Z=Se~z49JWV$DGI)yf{q%3Vi)#Y?t-f6gCmwVVRfSFlV27u^g#k5j
zK3609R%2siw9kca)l;648!i!D8)J44V3#(3)f)v*ZM+-uRWu#+5kx^LoF1_%$bqsS
zupIFE)PX)m728Ji-CfuGThNb-9&Wsf^aLeN>_O7LNRP-@C(4;QZ(%|=(PWnOs~I1l
zqCPOZC_YzJ1mrgGUdCH`yg{7@zk?&uN9nLa41~@cFy&sz-gljN6!u25gnu)<doS%#
z&H))rVPuJ|PdBfwF#GKBUjNfzT*7(s%5*kRK0`bV2{b_HvHY&hb#`w3I;@{#WXZ9p
z!L^3>DER{yJ^*?xw!H1O$wJ%~*Y7Z0<u4;M!`0qjm2|S?ZagEg;s9KeJ_CoVY6-&&
z`<e*mE|Ss0RpwXugV~#@_{tfpU)RGe45NVwA6uUK1W1YE`O}R*lBDPDbCnJB@}}bp
zA*>yP@(-It3ejt<QFM&Ft*wpAA%dp(yft@M#ahl+3;knWQ_0xKFp;ombH?s-ofOOu
z##h1Ol0g8#<n71KoryPSUo3}qCUAgt$I>*%n2yk7v|zRIPe3(5Fsz;74+>(WFB(ay
zHa7ZbEuI%&$CCWm%5N7>O<M)Dp*(9HJNuxPIl$ohdcN~E+bsp7jY&J5EIySw#Xo<A
z1_IL=v~QkzNZgo&aWvQKyO{;&3~d#pz8|WDV}>`bvahoqR^D2m7k0%@?kwlm-lipn
z`#`-hjO6b+2T{s^ol&ldO$6z^`Q_RhSDNDL>n@Ez(&Z$5fCKP%TUZSxr|C^Jc5(i{
z%sFGU|Cj{dZT%cANi{BDy}ug_QPXH97h=)%W5k?yDr_6H93vhCj=IQ~94YvJ_SV%U
z@qi5J9zh7+(G#F7lY~k0U34bMRmr!q(a3`8ziOyj)#!|9L9!BF=x7fTUD@!r-Yhmk
zP|%S)p;aE8tDaU8*;+R(p$}@N`+*^AUNpXNbtT72G-tzlOccX8Y7>FR!W6H%LC$x9
zlmVdD_DwySkH9ZzejF~C0EyIavL}Z$Iwk3&in7ybW8HnvpZJ?Y@4EF1r<*W)N-xfl
zx(0EDK)M$N-LL#l4s{#Ai;NN(mK24G<9c^Yn5*XM>M9p}Fi~<C%XWpPg#h$vR0_Pi
zx<c_(U2bB!yseNr<J5?=g+#%ag%(k~t|CL3+GJpls(8Dqk~yfhmILFnSB}2;y*EM1
z^La|SH>58#k=~D%PiGqfZ65V89Qfc82rNFzZdI1Az0H|^Pmd5>oCaCAQr3eE4QQT0
zICt{SpVXs%x^b^=$AOoy32w{I?`f>|e3p3`f$!WZTkJyA4C|o}t^;H^aBQSzyLUfw
z7@%`l##mpQw|DF26z*@B6+I{O$M_e%%PnV-btPA2J2fzTMaOFk)ct~e<ESF^)`!YR
z<T<rfj7D)@Sjp|7l3-T(Qw-^1y~Epi+;lD+j``@9MPl=1esp>JK@|zAS2xtLquTFH
z{Ravc7=Bu;TGHU^d2{i5UQQ&n+5*!@wExi|9g3b-^{o`JZuvMe=FFzRuQIpFIC<E_
z2xwA6Qe7VSe6K=TcJdb<K10@T#hz}M8y3gmfA0YEbWmy=`~hnPQ|WI*80Ez<Me8Uo
zH1b_B;Mo|z<eOk2m2+O|<iU(t>rWWiOfIspPEYt4azLF>{)0pIHGGDPznHreSMhYr
zn76{bAcyb8*m8Un^_cs|!03xik_#<GuCtz<!=X|(M|`cG7p-Tc>0-4qzn){VU3vjn
z(wBd;C${VR<u1V5XWf=`qQOQzSytc7>)|0pd{xS~#~y*a=b(gwoe~?~Kl;fh&2&Cd
z663YxCV)hvs)!pMjv;+Qk-A<w4qphIpniTzLRGWg>qIsgif17)E4%>Obygfo1zFz7
z8B6^&DJeXluto`H#&(Gh2a&U_bZDWUiY|tXUJq94dxePdHdpUx;~7?!3rZ}7a3V1E
z$7>aG{6-sP9`*IzspG7Z!w-CV9^q(@FcSiA=Zw;BfkB58h3p<2OmFeYy<G?II>1wc
z<?WmFD(hp-0T!U@@EdsCpj`Xk>L}!qT6(r>5>*jYTolI4ZxHIC3`{7?ckEc>3ydH>
zi+|7AjUIQnfYP*d!2uoti_;R*dCo*43~ve_<n#=jC@DciLh9wmQl{vmGXy6h#Npwx
zFlUbUh3|;<c!Zf#GiMg$-}_gAfwXlBlX9F0WUayBC1a+vcOB4b<juaFdbwjB(@Gw(
zT9GHI;J77ek-njc-oL>MkD!MOsq@cdq<Nc>VpA5njMW$_jVbM8aRUMPWp2asfCcE^
z*FR?j@P@YWw_xhIQ81nt3YmIoyAs+I8PD_HcJcGtrXejtZF$XN<tlb-h<;~(`wxb%
z(6aD-*A!;6S>EWyQ}=yGcbD|!UkdfcHw~kQOwY&LrNm>}mFFJ}W0((xI{HmANG4j-
z4IUOKM1nS_@NQLqx?ZUl5R}5L{NC5tyDW8b<Ujb4j|8%`NM;481qlQ_7ipJ7aQM6J
z^j;63=^y_k2ieWKOpzG{v6{KA6hqE|ji3rC2c9c(CKou?=|Fp`Rz>5!QtK>OUYf@8
z%uzzhS0?`DqI%dlGv3*oe6EZ)Ux2s)^YJIMOsW_5_{7f1f*U(#R{$vXZ=%$jdjTKW
zZL#s*jLglyO=X=}<skmTC`f6bD&;tU$eGfmi1y`T-)nvO#Krjq(Z$Jo=RG;lUcZTH
zWr476PHLs*UgD+tN|rDiDE;Mv8{vYe5T!5YPgftNV_hnb#2n4H>U4%j7~8NjmJaL9
zQ07$AahFfEP^$B3E>Zpwxiel(*E>pYQD@^<`#T{{yIVF|pjxY3tR5Gd7eb}^vfosE
zRx>M9ibPNi+`1>@+uk8u#QTh*S&q!cKS_E;-!k@=j4JjVXXuCle^)_-`*Is`v4WAC
zq0-fIIaV4tyN;+!?-Bd^+fs6)cZ;^&6|L3>YLAZmdc#7C5pDZme+S8FICE3r7^~^L
zLU#8)P8x&Pt4E#KZ}MZB9toVnuOvPrOLyP<uQJ@xrEb0TEOi{A#cc4lv}7=(2GM#k
zK7k;H`+Gn~6q%i)W2?WDZD8R?RP`W#r*3O2H}YTZ=f#a`?4NiQ`}k`cTf#h>?cM&a
z<fW;sxBn`<7dqxLu}C~@{U41ulc&I^zyR*jdmV@7Dx9XGQHy&{fu@eOuJ(^cuAawE
zzMlT%p_oIzq-b)B(3D#@wAC4%kVHGD68{RuE(wYH-nsN4qzR@Cla*anw`?$9U)2)#
z)U~HBe^fOqY(r-eyS|c*Q(6D>C1qGd^&>@pQW1n`O`nrCNR1JGMU(h(nazP$o8xP>
zgztH2Mwg?v(Xl18x+<)<wZXrsy)}cIf|v_=0v#xo-V-y@qUEj2eAR;D61HhpY2?9f
z8m@SxPeJN(S2}22BTX5kz~4F`JmX<P$>gBGTZ#Un52Q^!ah+EfeCZw<8uS?{^qvs)
zgBZEOB)h@TjUeE!<Zk6cMrm2!cdtbw(@_3OfO9YXX$Qwx*Sb{4ziLB#b?MkuS0A{#
zz1rJYAK2E?{tO)XTpH^jI%9oY;TPM^JVajgsB9Y;o73J{6&^F5VQndaVAE^4Ul=JZ
zairQRN@c^e``gtrVNs%Hgr!FDGaJ2e84(?mTh2|;SJmvfwPeU6(3VXdpwL#mrK^WP
zQ{*hN(_}S0@`1ye-?ccLk;>WB(%INpKf=*@ftPG$%ZSJ!WbAsLby=>X*DCGlSIFuC
zYvZVmyne4d>!XZ1T|J$R#H7h3tW79YojU#`rfo(1Q~UwiBYNS<$klg$v6CO;Mt-gj
zZ}<F3Ypqwe%@Ay>Teq_HFE`4UcvrvNm+Mf7XaC{!_2k|08CFQbJ-FCtt847-9WDq7
z9UQN|j;4*uR<7u~URbAId)|#m)K#fu`Hm+*<r~3y%vVb^t-mO(T#i?@SB}_Le3<T+
z;13Dy$D{<}u9N=(ksF*NH;5ouHg1BMxJL?my8n$w4XIhEl>)C&&vM@Bp}NhH7<Iz-
zLXgbovIncDFQ+eJ4Q^Lv%UsX1H=w+eJuf|cO>-I5OHXxtHY}IwLu=m9#h99^$$xNR
zXhE>^d(^dfzATK4Y@e+hWye149nJKAl@XS!;W|>c@7moa340x7PZxaRX4Hy?+0Wp6
zxjB9yD{RJ0UC6u{JsO#2MX9x%TyE!tZJ<wQk49D*@6awJt|nAnZf|E4G1J=Tq}H9I
z@Hr79-J<#QH&`Fo(KmAYwi<M``?U4ecl%m~mM_70ztxG^D=uXHWJCKdweB8UmyIji
zpE0s+Htwu?GCI;P8g}8`mh8+&K#M+%EeOk85;j)M!yF<HBT15ti@|&^FeEQ+41-=o
zra%eKHWl=x7Dh(o@j{GTGQ1gejQ@H2{rmgVo}{D%65L)!niKp25@b8Sx=7@IG(xO3
z>&AiSIV<@!qfSB>11wy~Ijfqbvu2-aQhx-1Yuv~f-nOo#$dj5%V(c2PYD2}_SvDGF
zGDO@?aPSjf!ye70g{a#|NlF}~8#^=Y57G8hEzBYD;RSXg*(M`G#M@5&A7lM};$}hi
z>@dn*R)p#(IxW}vWO+adc7gB*HLDyjZ@GvhYD^{fYRc;BDtZky!m`FFt5~$#c{UvC
zeI%nixBgt8nR4=WD&<H@Xx$t)uHiD*ic`!`&P%`OVBX=dXi>i9nCSjY57|qpz5|y%
zJo$>Bwxt;w-b{Xre~@GOuV@ZPN)#hXl>ZR-%55i~T>M^Sya=}C%&92%`0{QlU)J}&
znuq;IYKZ+xhAOcm<04WXnK;7t5Cf829%jl8YXqgM3yL3HPvEt21d3lgU=Cm)T1n16
zp41gwmlyww2t}SMQ9K}%c<KJ~VUz@(NjezFi*#7iavj#s;-(2pQ7^D`{zOool~Qvf
zIlcClN{+Wq#qivB0XIW9Hp>e^tokoX2pb8*!ISD}3&#03pHp;5+M^rO=ZFD+7#p!3
z{Rd9T&4GXP;wz?*S4fGk&<8rZptJ`rrBRQmIJfigx%vZtZMaE+gbAJ435~pXg0o3|
zP-p=7)AOAF&RqgrMde*`L!q`JF`->^FfzeUiYjLT5oBg#G*mC7Q3bS$lE_##3n;dZ
z{057bJ{hzDtc63ihqk<O*y&$mP4C7Cc7>!*k}57bjwAsy^ANGRnxaB~3&BcHeCv7o
zRkYrlfYu+;XTQ{vSZoE!Zu!3bWlh5Bq6vw<&P*uadL)tX$8(Z|a`}t7Xhn*)^8-Si
zOVy27{W&qR-*CDTS9xym%lrAU(It(*(_^nCat5r(0xqaO6@*gj2*JA!6P1kx(LGrR
z%wbB$-N*=>C2cE{{Y&>UA)OHu5g?{-`;So7r_pl~x)NK|{U;qPp6FII@$l|I2N+J&
z0|z$7y|=L%Qwa%?y%ZO&Q7{&jkZEm+OiM^?0F1n7zkZ7xYHbQLQQDG}*&^0<EFvl?
z9y&<Qv(YC=VkwG;uF712D0{Ns4EA_Yc|Us3;*222Eh!qIwnUewZcY^=O;Bu_`$w&0
z#MIab0P)&?)}{_00ZjxxJx#xelK|4$aLJu10p;5&(g(>58DrJsCp@T~l*^LvJawA2
z#o_~hptw`Tr*QB*H$l2ST<7n$TvAuVySZFvw_;fhJ75WYLXtN*n#f=S?FIkUgbVgd
zJ-8^f;|&}NB0g-KYcyPDP+<8$@L5$NhN&8M=ZjGu+RAi1Bp+U!B{sae@lOVLE5*|#
zusq&FC7d@k7{452VYLlj|0?-!Pky2PCC#cMuYS+NuY~bsL`SM@3V8dCF}K<yFAS!B
zHW6XwF|*D{DXc=1xVd|3{~b*G@6FeEqX%jL`iDU-Vm#2(Het5Q-mz(>iCWT|@sE_%
zY~K@)z4|N!7&=dvIE0T-&W9avwE=OzJa(<fSYTFY;3#|uK6Vxe#z@6BHAAQNKI-=A
z<Z5|u^l`Lz_E|0CU}B5(XWrih{MOv6R@XqK$k1SGqR0Yyy&+MJ)WKO=)%ZL29pcv0
z`sdNMD1T%GEB5&XHdViJd%IGkxxrEgCPSkR?HE)#%e&n_h<4d^OunOOm3c6?FAUa#
zi_EYqa(q=8EjjFx@b5O!QwbslnhZpmyq2Gh&Cyqn1D7!uaTv>M2aRG<3QTX>W-3H$
zy%AETeN-iMZViNjEUv?`u~TG$3!~hsJyNyHinhO%GjWARZ)*Iu%vaY}7uycRHJ1*K
zjzkAg8#AzWf9yK*s79c)pdfj3_Bk=Sy+?^##1TWPW=au-19I|n07$NQ^xo+2Ot($K
zlRwAd#N@l;{(#n1pv{CvgQmPo1H7HH(A~6qGse00gL7ruk2GtLj%k`#Q$FRvr$R(&
z;FaoFb{|*%oo#!uORz;Y*^7A&B>YXJ+eb6|J#O{aG@TYX^TujLg0xXklC{lYMv)BT
zx*3NXo}m`v`U<R=xzrh`(kbo77bjvta&Kcw$0<yrTkq5#;?!;&!Y<?a7Cyj;+RH70
zz^%1G5OK~woN2UR>|e@qGM)Vh%wrst57BH;wvzuUN+&fVr#fYSr$;CMEeJjdeQtWS
zuJY5R>Z-QetIfwr`KO;qEk93K3U(T40}>jfOM#}3z@6#5hr@Mz{MbbPn*rI0t#L&v
z9_j=ltT}WT8>CnUxG`ef|GZSJ{NF?QQ$flWB9W8n|DCXh$VOs@Yj7<RUu93d*_32~
zL>}`q-DU|^0ly}DSynbAZ1Q(`u=0t@&U6&8I-Ta8BgGqkLI5eAT}j-mCx@=a4{D)F
z<&a!N5lu}9;#eK+kUXIzmU?F;=s<c<?fX`7liROXya_~sVl!sSw`7X7Nkjo4E&B~-
z@{Kuk4jZIWM)2`F`;8gY3ip3<3=j{L9S=+<^MAFG4}@OkCiD}wJ2ry;{&N&q0A2ya
zE^92?Q^FD-)r2kAw4so^e4)`KOp_U1ZaE3&X)nakppr#TNAs*<J>yU76w3LZGDkW&
zJZHj~s^a-=moReMj&2QA155Qmf#?hUn0w2B$xqC7d12%2qKl5jVtLh@83tWd2&4HQ
zGOR<tB7HQuxrt*K3Lf32QhmR<-l4iCX6{2wnm?G?#YiciQ29Z($uJGzbVAR{>T6J8
z&voRR&#k$EJ;@({N1KZga^f0=`R|gLH7E^9=vQ(>ph6kd6z@bF?letil5L1HHpIrK
z=T<8^WCH!khKNj(J!zd7Qv54JDy-2~^4&bg9-;(Ot0^={s%wd=h*~@yuWRiO49{Ey
zC-ViBzZ;1;hIydk_&$uVQ{BMbIS7acT~xd$XPFP>KF^(uu!pI!kPl@vWlhasw;f|8
za5P(4-Hr!gvECQOX>Uv5XIr#BbB`u5<Y}Jcxqjl^`IE**CzAic5N$2xYhx_CJKfs&
zf`W+8i;H>KtiANmkMCu!7>XNIx4WCwDcnPCKIdQnSsv)wI_4AIo^<bv`T~55Y5?%!
zt7@+vE-<}(>*1ZdLRZaU>6(}QOSx!lORHuD7~bk;+VAVMF^Z>PO6I<@Fxq`k?lUFx
zqy5sB)^$@s-a49m{E!yVL+r*S<4Bp;4@H|wUEUH%)paxulY*i>YpnK6lD-M6md8f$
z-9pyES{1)Ij+d|A#t87_$<&WUG}cea81L=Omj8};a*rY~s8vw-_2t;=8IEH|?rr`i
z^U`f_A;s`5sMTKks^6+9MQ7(tz58mjgRoI&)0sXVDS0jEJcc-y%Oq7Y{WwPd2q?In
zaa{J5>?$7>&g7_CX2tUjOA9i^yV#_X(Wa2Yp8RTS18=X3X44eRuu+v^QIju~OWNWO
zAM!rUBi|wV8K$F{Tk5YkEaWqXwN&gm;5N?~Cu(tbJjL}AS)b0I*a^04Gw~XF_Zv64
zrAq{dj9m&wFfL$?cJUEemfSi+p>wLlf8B1~hdB4$Y(1V|>W=^Q>(h8$=#UV`%?|Dr
z@Okai*uE)!05Y&kdF}lw_S^>&bE;!ICN?<gL0^YtWDM%{TdNjJ<6kF>oi<`vdlIWL
z*@M*tZ9swZ)kXfotRn<dSOf;DA)bJNuNDh61)qD`0T91(CZy&Ft20X?U=wxTu;v;Q
z>_d<nZdp(Am>zhYiUx&R?6Rt5m`+GqmTypXRcYD4`&Yrg=QiM@d0~TpN7)f4WDSXc
zC4`eC0ekL~6FoajtK!UCqO5*>?U8^9h?ut$nwqTwS)&2T*?Qglz1y|Hjk(70o3_AX
zDBaV_MH2V;-yK4O36rmzWaK1wa#<4F#_qZ;-onTnU26w0C0;!dE{r13_Tatnf=y49
z!R!gX!sue4V~TV>eYhkcy@q7$z3onh^1gEJsZNaJ#Z5Wkx*~A*R(F0QC%`;G1k+}U
zNR5GiUm7He;LW^6<@Sy{0;^w*o-uIoD$qvcgLM){9ATX685LwV@+8^Q%^Z}3abJUV
zacYJiJ1FaGs>l#@W$x}s-f}LUJ13`$DS-3xS-B@vNyq^D)vH6#yz_=W=CbM^t%H_c
z9s`Zdi}7?p=~-VHC;tM`lz<mpc*=%!`&t@ghW6Ta|4Y}Tae1!<8vliuuhoFJBca`i
z`DqG6j)UbGP7NC$dd$4<)XKu)C`Q1i-@=0F*dMn7XvKQ_^VcTpn&Wvb&I5vPT^sd|
zB?>cUAG0cDI1v_m=||;Wx)(eD>JNcK@jXpK4f1X2o8V?=gMakmr}A!pf7=)TrhCI}
z)`~J(x66fUhPANnV?%_nrctQ*%>MI(GIE>!<hQoTE`A4bwbn9%da*Sn-#B^f@UFRP
z`W{P5eZ4AqaO|f$AHmEj7d39nW)HN9)VUQ+w3okv<6mh)dQ59)w&JIlCY|Y-G*l08
zD9T1MeHm=P!;$=wxkLXDm(6Xr=t6~u&j+*C<Nhqqhog5n(IO}fJ1tG_<C-i-hNE*A
zf6SZK{T6ygJr@AkE26<vdkUBX0xxshA#fab>(3mD*EK8bi`SpxG&Z*Nb+S^bjxC-9
zia%Q$ee33H=3zK$WBopARSfmy&jP2zRsWOZwPx8*ls=gk8iY_j>~-U1v<8ffiWd~7
z1CGj4x!4PcQF%SB$x7rnHVM~%>zLb%z}iHB{13tD*Mj}K3Jj2(PSj%WH-)dgW9>={
z=0il}Vu(EnPJZDl+tfsdbt<bOO<ZPPEyUU4o5*6zbtOiCYeX#S`e{B}02`KgwU3j*
zK2?-#L^*YYQ3zdU8V~#}vsYO6M=0I!5G+&(Xc;czeGo$Q)D+Tp|D6}?1e|!Eq~hu9
z-;>2}^!t%z+vj)WGu5onl&geaXl36rbVQA34UCL#`1<1zPIo0A!*<YX4iEc$zgSFB
z81$wtSj52}`gR3tuyE{f$`>I<MBYpo#xAG*ktDo`$_yn2PQokq`}dr%y2HNJ9U~K1
zIS6D8LM(`mu!x}xXe<m*2)9A;+!h{lXm=LT^J6S8;h%QQKo;dM%<zD4tL$nEew2z;
zZ#h!3h$1NTg!SnvDiT~4dP-98qrjY`@GCkmfM4)tfekSqWwT6Cx{`p5{UZvSe>MRU
z91*hZpa%)jGzgAS0G_SN=&oeIejLb#YqVL;;C*W7Wa9vSsp_)ZSmjxwe9=2GKHiQv
zg<MkhZT($2K#IAN*K!t4W=iR)y_b@BOh(%PncQ<{PVudIZM0kZp;(g%-nl%L*Z7q#
z+FzDIt>zR00!8##Ek!6xhW@8w5ez@LM)5z*#aK2(427G^iyB8lhpXYC>_LAH!1O^G
zY9kGPlGa&meJuZ@4CBq1(e**R)bbh>yl>|l3@b&6b&kCT@BQu5(#o!iMtf_*fT?gL
zW_XoIRli_>GNhmJ3Y0phzL<>W-0_D7FIXQ74{HtdQri#qZgl4&WNpTV@)=X^7D(%0
z1^8c1P&8jI4=6!5#9wLqYCm3p(>!`Guw2h6zSC$;c3kH+!5C+gc9v9nK0LX%Yg-WP
ziJWg`x(N|+2(H8OW_L~8PuF%e#Z$Qh3OG1#l0UBw!We%H%>KjQNE8CI={Us(WFFQT
zQ{)LvO0|uA76SK#RFmsiB9ta~NfR;SaaJAm0=7|N8D3p9>%X1<nIGI{eV8)o5{>J)
z4}UckP|*E0_SuayfUfhfE64u-p)yxn7)t}e-bjVvuz1USHPAqDL5{|jgZFi#@$A5$
z_z<=t56n_omY6*SXfnq$eE_7a(}vxWV#XThkaOj$!%ip_d{)&h0bhqR$3g~On}x2t
zgV`fj@yDorF7Nem%2V$kc!T~yBEEa$Y|#B>;Pi0naB&!DN9+_7Ncw+3OfXT*2L^(A
z%A=8l#A1FC#+!?--{JSOnp{L}c9p~G<V>Q)t?b9~I^j5Gjmtj-C!?YnS$kvaz#i<s
zken_m-Hd^1Ji>x4@&j+X);m<?S<en5?_iKM(gs<s+t*g$3KkDM+Lp+K3>(^><&+KL
zD=<}85FrDsgGs7K(;E-&q)WiuzAi4IZ!o8GD8k`pfx?<}g96M4c6DX0fQ*W0r%?Yq
zhKIN4HR-Z=HO-hSm+kC;BPFE2pWd;~y^yCpBoqF(!CNML>JuVsjxl{i4Q}Mf0Kx^l
z2*d*}K^YykE&Y!&x;I@$t`<85g@Gk-#Q`!Ik2R^K=P<#^$2tPO%f{@MpXA!~?c_9<
zG6lgys>8j|^R$QmhsfN{?t!b<swY5rBEy!vPw9>l;diecU<$Ie;kV?)Mk=fulWY71
z=*pKEqQo|^<!W6lSTXo{8uP!9%;P<pJ}Q`&_<z{>+puFsV0!(;v*lk^D*(Qkp0Iv*
z+4hD=a<q%%zms^<i3>ONc^>`81eh_zs;5^~t<Q3MK2-`mgFaRFcByb4xcI=B(=&ql
z^RsazDVtQUED7DYbDud@EqhNe&v#O*FR!bDKPr5pzm1KO+#%f88()DVreJT+D5>qw
znv*c0vphcbN0SvWWBpRB%GbEtKCknA_i%w*;4mw}mD6?b#~*^F$qU~&>-{DMtw@T0
z(hAZ<)pUd2CLa5#Bj{9dyKXK>zHU>h!1<7^G)aLiZ<^l!i_P?S-5y6&jC1My4t<d0
zBxYsN7)A9%*|Ccz9&<W}NhUI5r~}Ir4wb9=y*fL9#xPQv4qu+5L(T8nRYA#@A3Ku6
zv>1&+bAe`I8}}rG1^)ME^!18B?(;q_I9p%OG<hN9Nf3?8Yv?{k6B;cMUg2ihBP%{8
z3H7KK@Kf{<KZL)wkVzx^l7v&um7iv!=poh@#@q{fScWXZd?27~4IQo=c7Vrg;4=x}
zC-7u6@jgBVpJc%lS?46#&7m2W!A8b88(of7uf960rp(ChVhaDb0I3j1Y2ecg(FFKb
zE?`PVWf5m(4y$j!a&yu+hPjRZucOp7#gW1o^{(uV0!r=MqLLLJ_J)sm6FH=S;!t4}
zPYP{U2AYs7gR8|7eP6au*F<B^D&CLe$)PYzz~sG2leBiVnu-S3pbWG+Ao#b~&sTT8
zF9s8V3;>y4`aR{p9A^1ABc2nafV!U+%f5WZ`%6p`aqbWFq?Ga4QDr*x3ibzdmAxHP
zOIW)NK$Jv1H~NGBH{9;2pj)?-nZFQl;qo{5UN6d;GPFdDe3D=_d-=9&k)uCVXJGqW
zXe=_T4<EckXvK_(r*Heu{~vthU-K^jL)9{{DKXPtjJsjPft;_;;)hLk4_11cC1T>;
zh6EmJ22q%QMRyfd`8a$}93zanp?ignig>3ZYDz3KSS_EYX6u*k-v1?JPd_e)PH$ze
zR3Z!asc8`1p)uF}ku^l3K!17%U39;B5OCkIw1JRwA#(p{%Mm4Zyx?CRzcMn?#wk){
z2&;Hl2q|eob&8@FS`<R&QL<Y+UD#fnUnXDlR}=V~C)<n{l%D??!i<swr@@2|?-;{1
z*9@xW;=u#2m(5P_0h??EdsSr=lnRo2FV!n$0RUZDhuVwA(efLv(9N{u(b5D=T`8h;
zF;O&i80fiUt@|v;RY@OPTA~9jBDYC8nkkivar;B9UN-vZs3p1slTdjU3N?D}P~dWd
zf@y^kypXH-Ai>(>thprEIHMZkmg2;~DY;iAz(VFmdm~^s2Qs*H(iVgJPE}e<EB>I-
zQRJbaDP+RBw6?ZB`Df1E#>o-3?1!b0<zDwCD6OOC!sYsSmI4fVE%6*e0iIjp=Q>6`
zM_~-&U@nc=3?6+D{vgHm>_t+y2b7Fuz_}e{<)1&p5HZdcRw~jwq6<K7#XiRTzm$MP
z#L?1~;1^{0qVf2M>@`J^&6aWb)s-DVG{6s<PslgZ$M2F=|7`gYA!H$<i*F?kpqb{8
zBW?NA{11s>PT8Evqcn`Id_v23qDUl+_5-inpFB1?3G!UO0;PwDj&Q$P%I%?^u4h00
zCa^=lK(rg9ukvf(Y+oZFLw=rMz=BG0DQPgj<`G@@%{Ox~>C7rB6ffre_qNeJ19-aP
zddc<8{wp`Fv5iQ{5nrD3SzF9Mx8MKS=K3Ltei3_WA_48}y$)l4W6SmO$z=p3FFrCH
z_m&dSY4A&JOuQ{fZ8gLuM8nK*l3XhdbH6Tg6*_#G0&)zmM1bg!#eHU09s!Ka2_T?!
z_{}_|mpTbo`Y;?(oAxb1i&G%S$q3KXtpXze>~$#Y%epo8G+8cyKButnjQ?v8S8Xi;
z^X-0->1Eg&rvPD40Nq}eo#pa96$`H{HTD62x*}fFfOP`q9pK>DED8#-cox1IykY}v
zDloaa|B<~4n#}ig)<IhaEb1+%{Rr~O*w!MHRh0A2sv7#dk9+D(%xPwTUn+RnnSEaT
z1l1Z`bvs-H5<@VcOi1N-DSF!+Rn{Hi{U#8kp>s)JjUR^z26cfQX+S)em2<)`$(oU8
zs5Uob*R1S>^3FwGmEN~A6tI5Rp_;!7*8F#L%*k4^;37-UNnBl(*MkAgg<HBx>{yhP
z_ZyMcwa?Ehmhe*Z0b8K?zE~g@zp0TEXJxubM}`*RUKqPt)8s9!Dn;L+Tw_8=t^8Xw
zfjU4<ll<&R!op0UCSiFu?l|yFyEU60g@Fh3Y*2C^D6r%ES`h_$Au-yL0YC*Es%n=Y
z-{^$~SNjU~+$$huy889=)+GI6)Crijm(va$N>273a~YQ~mTk&a2^a5Ztf9W%7s$Js
z0nys|{=Q8@*oFA)?R=)&2fdyhPW}Q3L-|b?Eho$QP(XIW`PjE^cr%G1B==M5mlHn{
zy(s<SzXBCGtM$CJDu4PmgV@MH-F84>Az1YU(3x~db`tzO<KvZfb+T;fmUO7Lb)7si
z10`hhyDA@{3Gu?33Wb&pD^rkP15yC)Ok0D{DK4h@yXd2Dir9)<eA}ln@~>J0lAU_B
zila#_z_)d}hxcRE5C^(_2ddsq5|wQH&aR9IVdCpCP_w@!`2OFzNYM3Fx9lxwt6NLq
zvlb@!5BF(ta@9_(`SAw&U+gi^o9TiDQ*!&o;fR`A*3>|5uidNPgRYt>BnlGeEoebN
z1mUr_mi;x?^ZA+J6NH*z5^ud77?1blrnSSQJIOu$x8S4pPTSo8y;$CrzF3R)Eb6#e
zckM@Sx|VdQ5G~!s;epn;%xHuBV=V%Dq&yD_13F+a;=S$p$XzicLH*Tt0(kopx6XeD
zDq^(hhpQX=JeHsWU7zFB5`0{TibQK1Nh;wSRICP&;ram0XwXjqj0s<R#n?ta|G;#}
z!COe+6C)9H&~ODZJW8*G-DRrS52--SO962GS@Kq}H*xfTHK|!))^T?A$1ea%bYA~h
zNF4RZUE;q4Dr^cKS(zA+8SPQV<6fUIM&gnWj%$o5mvzj+5#Of@InAI4y>QtuQeOp$
zM4n2t+E1lnnp<-(s3;4n`0OhaR<;2YbR-#V95}th1C<JS;FM}#Xq#COFDA4VxW8o5
z0Jqk{7WwAw`z#-@Di1W-1G*4$+zup$R@EK5)05NxNJ9SVS*Ml#)8GVdB_G}<BcJ!?
z`n<371=`mtW)qSngh-q*&)>TsYhG>i#4I<{Q9UgGWLBh#bbsu4V*hk5)C>QEE?Xs@
zB^ID|=Xl_B5ba16=FCVuf*Z-K<P$N@>_aVei^K8Ic|k7z&n`dT=v9e%s8v7kNqu`*
zv7R`9_EQiM0!1NlHvc&%iNz?Yz>;*op-n8Sf+LG@@Vs<Y7|gf&MgGkN%%I!v_1zpH
z2rc<?dHD~|n9$4iMF{Gt>X1cDVR=S$vmYpGR-IMw8&03ZJ7^f7b^5kbi4zMN4ef)!
z7QW3ijO1ii#!`%m=gnUw_9PTTOYCx@Rwa2tkKH`{IVRAHy?eT$$3Cd5HlVL>sem<<
zcW&a$C89Jw>}-EN-zGM)-ORJJ<gDRt1En^963;lZZEzD;R<<AUB1XEQatMiHm+8F)
zA^dZ!#~Tyn4h7Nk00jJ{dGwFk7!9<uqjV2SXMWClCq{vw-8PoUi7b9W0Ok*L23Zir
zT@EnoTD$o_GybEmN&BvIhyE1^j#!r#({D*HJ2>Jf`%6OpC_25j<k|x_!-P8$**q~J
zUtJ+elL3mkz6NCd{!}lD^d1=LuNCP{-wP5B{N%g;1T`drh@mR(K%O><S*E*aM36(`
zI93!?!+f<`zx7;Y3CqCLsRojx^J;;YO+RTuRVFE|Lc>_4|2j*b+^2chCiqL8mST^9
zpma}_pE~;EvW4?2uv}de)I<620*i&s4z+^57TJ9r<Oy2-ydU{|7TvX#f!#ENeO0XY
z{YAIn^wh!I$+qziwQolpGvh<2b}#GXc|iG-W2W3DU^StA2t$Q+{m68qs71Q>!A#Ye
z0{!vm)!Zzm5jcbWq*8wRO$K(cTgM#RG$B{Id_iPdlMeAM<3&|^TB{_Ynq#Iw8hs5o
z0dS^|`sQx=$*g2krgWD20P3uLW`F8sHspQ>iS}_lGobbs^o7FV^bq1zUj#`@M?Q%<
zd-n7`sN8>i$E=j=db|kySZ!SY+}R1tZU^=HY;S(8nWh(L(KevuuV3?XZ$Lq!-@Nl}
zDyt(uPM-GXd#n0Z<_=tC90@49E}C4_7~xx6)#0Rx8C<BJR>z}ce7I;%c;KV=sF2jd
z2p0qAj(UE!-DOOoIVVTTG>|ff4E?Un1$a&ei`A4IcyzFeYU%#*YN@&qRiFrYAla)%
zy!rTkoKUE8!aB5pDXL|dyNZ4*Y;e`%SDzaTS{VbOKrCM^7A&Ed_%lEJGx$v{?sS9A
z1LYIRJ7z=4v=(K6Q=L1_eTh!K*oE^Auo*3{_|_pUtVP<avX)~QV@xizbM4eINOD5a
z$iQQUk80R~Aie(-!z*tB(S6c18%v%T7v5gLeZbwdmx4lkWUMpKW`hT*<1e4Xd_2r2
zI`@cby3nO&{D&v(63HCpJV0rT@EMMsa4WT$9sQb9<9ZIFE9`u9f#4wa@}}M^`G6-p
z1><WwwRl&ZY<a7(ZV-p!Y}2W6CN*K7dEo*jawMNX;1ijni()9Y(Ac9{RaG`3saYn+
z5T9+}1V37a<CCKbw6&Q)S3An9Ydx|0N<Xk%`E%k(w*%v{CL2H<)#uWF@W6>RK0iQB
zMqZy;EPY1z^H+_Vb{Ki?HwhXY`zIQc$jK2*EXN=u?;_0n-d0;j7#Ul_9fV(+ot{Gr
z)JzpI1vGkaQk@#%c~4xuY1)r;n(dP83QAQzlo~x&eE=qhjFrY7zo%BttJoiwSkF?+
z!A?NZ%p>oWbWY^KtFx=Z-AKiH<}6>O{7|1rlhgPget(H%wd;qp4eI+PyzuTj#5wz#
zItvou(Z4N0CDR^BC<MjQ046sHh3OTvdyaNSranKq9LVFty>z_SFv7@9({f&Z6IVR^
zj%+yK*E2Stz<Xq2`@?aige-e>25`!ePc>DS<i!U8<x7TQi4<B|?3xo}jm~ZYF;|Zc
zi`OCG9E~VxCw@jZIOs+urtQ?EP)94=H;N}?p}Uwb#h}Wi>=>C4V>ivi6#&Q6l_Bw%
zENk+kRMR-^;w(68%(Bq{-DSZtT7TS9973~6pFCG79_=??lm1!c+{!6sz8}qrjb!Wm
z73~dG=#w#oo`TMzT+BRDPpl<cU56lGIWQyN0I-v`3gH^zG!6C#zdsB9hNM1VTVq-U
zyPW^*Gf*P%&M@gNH4#0^%S|~;($`_+vq*nLkh(d}g=qoHrYjW$sr&4uqAJw(2Awto
z$`wC4%cj5A*NS9#D+X}+SeK}kLq@z5n&=%KLDzbE{smt{d)lI#4ti3*SPN3>BeGK3
z!?|DMs?f&%XenDxlZ+;yll;`8KW%(8jd*1-!WiI2H}nm=?TwW_ncROf+%a2(xcRog
zy2xMdU+)Cc+|J5KySB{I+zKfcE{fYLo}DewU+Mv?HSC4vXX;opPCiYdIs7xu`~8~;
z)xBmEFb9k3U9&fEFf<>+o-y8Ut=`Fzq7@=@IOZwUq^X@vjj!A<HSIc324_bV+XI5D
zz`(_ksXau)qTCg&JWhN$V3EB_M+gH(oa%i#sURb<Lam@F=;VR#rzooNUR_hgr=Wg)
zkouzMFrp^|zDC-icHxA1^fC*Lab$@jyyJ#P%R0IM*;U3yf_av9eK*^Yve0Vr61%t7
zj@hsVu{*Yh+QUer^q#V}9r*AM2MrXqH1%JW0kYj4>b8`jvB~W@I9^%I0pGy^%!639
zJuM}|u8Xm$A1ij)UCWwn$Jk4HN!%7Wgb2u6n_FMB0<BH09*QQM>%mS@?TO9fPPSf-
z=d5B)T-=VoU+(&o%l?UZiBJ*y_ixB{V{=Rd<;$+~EQH6EG{8?E;(zJa%yDlZf1k(G
z!PC*k{mQ~*z<U5U-5*2(0N<&9TU!?&$m{8<ttkE5?LV%GHuqw7da;WSmFEUso@tdV
zG;FDaL2`M3Mf0wR%<SOuu=Dl9L7lJn-QN4z#o)Yizd8%bcHSMW0>@*$Ax9<FCMttv
zT*IEW+IP04#Tjs6V@J{`O65!Uw+};MJwp8tHy0g__ku<R-_T12r=GDSnVfe6xJd!1
zK-n;Vjy$KgZ_`bcX8052(Pit$-U8cwoSEMlT==!4s8E!IpP1vBYdX5Om%X2>j8x$5
zkd09N6^Z=6WoNsa8wv-W7^bnbA1d|(9kAK5#SAHiT_#!w_4SI_Vyin^fhdm-RWbW3
z(VcXmJLKD{8LV2}91J~j4Bb_nwMXA^oRL<pkQr`zm1^T=JFgYvYnhbZ0OqxLCIm)<
z)CBF^!!}Y@;hn|dTZh)53Qy<v#oJ*G&<pVEw7e&CeY_7yO+=!>hr3PNCh>_3jcRky
zz`^~-7cq*HPC3*r@>e}L;yfUL_w)E{>!7m9B~5HI6Q$F{@*kEWEBm)CEY@>uc~SS~
zF!65l#BLsav<<-Gp>lQ0o}zG9x~d3e6yz_aqwn!CfmAV*qFU6N^YeQV_xJnaq-$8$
zzvT@hobzreJNfxeYnS%XEM|a;Y6qyxLc>C5DjWlbbOqi%E&&W{6XU`a`&N$)oBCz2
zmvRCUfvCM_n+7?5zJqE}j^*a$mqd|Xp!aKDo>OAz^EP~UKD^vqXy<AotC!!mm@>z=
zYmqzCw>0W_!U%na#||ERynI~z0=(TlTmsxZHm^N*h_#9Xv35TZ-z+0pc_b(8IzDH&
z0Q=;klcmHRQd*_d*GwHa)L0#H+WLVIv@X7w-cTK-Uect)!#qXqC@SohH-Kqw?81PR
zk5Sc&^14cX70*o@rNHPcp<%VDN>n|!{Fq;^?mjLas($m8+rA2+{P+Q8kxar(@gMsL
z&dOWnR<HhlIqKx7U%uso`Mf~aC&$Pc?e#IC_-geM5<hp8Qs>6KX;B}ikK*KZl*%E}
z_a6J=rFFh+r?3|lqGy!K#&aS`{6qTM1+(WQhLfKfdN9Y&LVbnfZAZjUD(jYXzWq%6
z`iIbfPSQylL?NC{$CFdcb^o%3o53>ArEKQq){SB~>V_Adc7tB^pU;3V7lWmyq^gE#
zTZ43u?Ne5&<3H>O+cBE<15{}w9PzskllBj$a(}`Qv#u1H{k-AJqDdOU_K*6mW^&*X
zgCm*`PCh3YlfgX6Fr+uOhstI~reIEh`8(LiFC0%|E<5;Xl<dQ(XF_lNcboX_;6_L^
zHu?k`qba5tJ+!Q2SrDs|pZ1alu!Irbuy8G;Vcwm$qzh>-C#d`5Z}!%VgQe02wq_|I
zAOWGO)#mpT|8&96M&Cc<NE@29B^gs}Jg1P5-Q)-T+Bue@E~7^&irl!Ee6$o<@OS!{
zm`?5w3=WjqEL(^O-(gric=IC_B9GHJQkXIwY@q6KRMm^i-R2?WNZ+t@s6>RCb!knb
zJzZ?a&nw4@ZNg#P>(Oo@uyYyiodkN2)@gEYk9%C#rHSY;RipY17(2668(m8;Q*3OP
zKT>RtkO}CP7qUInE2=eGmm~@@ROzaW)rx&OCu``~_jC{4t>#^&C?Q$z`I<s@-!B#J
zR_0gh&3=Z3OvlMDFL_@llCI)L%`V{O?_UX=OS^)q|Huv9;xI|C2~q?I@Q(evn=1lV
zh{%-~=pJ6vX}1aZiUZ>j2jm#6`o}I$>TE9Bi$}DQNf~mo!^kDx-(HSMr$FN}UIq-T
z?v*pE(X&Db(w{`J()$-CFhPr`)ht0(-N)1b;UkTimyuL1<*7f7!SL{PCaV(2MTkX^
z_?zP`oHor%d7SJ~Q5QbE_u4L2>ijHAG6@2|f$7g!2FI=^MzJlvUq4tLJ}DP0yupXR
zkQ7IT&lT@I4Pk~=BZg!#j0@`~!Wc{dScnhw3BnS+5x>cB?A#ueB;$X5u(k<YLU!5*
zY3uEKg!pMgu%l`tm1>}sltjli7=45PW!zvv6jZB0Rg=V^MKUU(PkCe)tw*Sc(ubFc
z&L^ix{Ruhl83$SSOr%xh$`9`p*OeZP@rPr0mOh8OrpT@hh>4vo#h_mb<Q<6)!J$-!
zgT!%JI>vP2SOK?GC-IbHQNUKcRd5THl!^|3A;6Iy-rb?8#GNLg%!&B8mC`-{d&xg;
z7P;E9sRZ8rc&Y%D`t(G(4jW{S1yMa&@XcY4)!h7bTcYeNlz(9UR*q`vEY3zu|FVZa
z-O`V8HwOdb*!a&y8{+-7R1Z_XCZ^WBr*4oN9PE(tJ*LgtStLK1zphOdofk`${d$@-
z0%%GdH<bPMj9UMYn&vDP%Po8L0Siie`<;f7ti-+SEHDO45YjXy@D>b;t(W>W2MAOT
zl>5iHJ_v{Cs=D8(6LNa+q)H35phe&G`ImFbT+{G<R^vXfJD?r}l;Hb(-oB>-y@mFL
zO71ZDDd&5^pH{KZ%3p2QkiL{$aWg{|i;n9uQeLk|>~icI4xVKB#_PlSei4hT&ca{B
zqP1JIw1)lu5kf+y7Y3Thegp48=a_kW*=snsX!^C&G-Rk`%zlnZh{bxK`ksjW0!>tX
zIY7{lWe(~zZ4_J|d30SY7$31x0-TXHn*gk-=zYs1a2;vKa&>ky;EITTk;AvQU+CV)
z8tC_VJp7f4SN8o#6+;1IzcK1|ZRo|$#7`$aOd)1g;yVYcP!?`3>;F7`jZlqPe$8@#
z+;ea8)kgsUK}#gL=6|=%vNa52CVblB=W-ISoR`aTu<*xrZ?d5t-npLFrW(yLMizA%
z%?G_!h>h<>O~Ok&ox{?M@UH6Up+Mh4d--^U+XZ|)m%F`sW2jq}MHM~|Duxa7J;SUu
ziUKcluxBjb);p5<N#o4rbd2<y?jW{4_l9Mz8;FMoe@41Hqf8oEO>L$RH89xdBd1Ap
zt5bwX;RbMlf-V|_B6{8&G&#Zai}SL>vrm`<sO*f(BFzUpn9gdYPNI#;&}I4>PNS~{
zvWi)QwDcMl=K6<Qb=9ol@uWCPSCU9$vv`IS2!ZCn5*<;u`xe5i*O@T%+^~xT`EaXN
zQOUyCY6<pL(DCcuEDrIEu-}E@_W&M#{&ohq7JbxJo()e48F`i(C}<x+962hF=K!9|
zQQRNe+1I!M??U2&TDnJ6ns;n3f<Svi%c_H^9}NC+o1nFMD6^g~UeUZZz}z{D?cU{~
zCczGyJAism$EH2*BWu%yew|&yUK3GF#XEEuyjCf`qkGsU+78uvHoQNHv=&1Ho1BJa
zalQtJNUgz|s!&_YUVD?ZqM0CNlLG!$=>4^A;I`t%gNg>kqo73eTrpId42ucPwzH}$
zGZp_on0m+PTDo8hG`4Nqwr$%dww)c@wrx8((TVMx=)|^-m+#*D-gtj{^ysm=dw1_%
zwW{WvRaI82(_zH!RQf9jw)|>eG1bRt*D{n~%k6zsQ}TGZ3u$xr<hS!8<+0>)_DFBG
z-TI9PIkP;dz~o97%aof9v8<d?8^mZBmdWXwa;A$bBZ7bLnSp_ZIbi}%GVPd`89~vz
z5;IZynHd?WpvL9#{_tKzP19q7c~GxLUMmHtNHTEYc)*;gkR=NdU4P^M>{6Y!{=bLV
zu#vLhpsc<Y{%62a0&t<w?Hja;yJs5n;zSkuy3<gXUa3UQ0@UvxKOTjQZ$u70Ms#AZ
zfGnzAzi51M?!e0Ojtwx$2Os(AUEXmQnWhm-lW%!|z<h{$xk+6FC@NLoAAhcukm=aX
z&AW2;u3{DxO%5#Iy@0ncq@39@-BF%1-KiYe&4%NXhsdJ<o&B`fp@yotMmffr=eXm}
z1qXZoT?-I1ZTPIWZJPFb9`et<CG^*EdR8y&6?N*@#?uyjJ|^Lh&H`OC%&sh|oKABD
z&`Y?2_b7o3*ebn&TehWkj#{rCE$N?>-4bT;T1ca=IOMWhU!wj6_)tDxPk;L3FAS&^
zE{9Kkr8t%uvN)(X{aaR{$b7P%OiQt9ur4Y=Ggcj<c9*#yI3Zb)!tB`0=150mPOs>s
zYS0^y!Wi)cOXb^z&C(q~?#;seP4yV8{G)4c*MP`HB}6(Sf#I5mcA7E{z=jTtPoVWP
z26n!&gdmE@TAO+fPwms5$)ed1rF4o_Oy6GDGGHek9m?P&uftO@)v6e61Ln}18Vb0Z
zCcfu<lIcp)3v*rSxiEMX1pMaWWAHeGp?Z3SvXz6{cQE0X5~A{d*Tf8gn{W3w6GBw?
zPqD^+yv3Q``br(grh{@Sd!*3SMgRC+L_JN9V*`L$m#Oe_{#!GZIFi>Kk4XtzPM1|1
z+}FkHZ}yEotK51T@hrx6kxF1s8wGf}@&4!coy|jEnm9hVpNN&uxZj*2D`Vzo(<!wM
zvwT+?kHC3O&eJ{-<#E0FbbaKhc3wRka=+utV~7hBnAEbcJyGtWT$;;&i+P?trMFbk
zI_==BZl~&J<DtZJ$mvP>Pt`9OT}|n^2ImtaM6LW!Q^9n1l8P_PR1k&@aoHhy*0ztz
zRjX!wMyWc^Fsm;ml_u}e<?sO%%ku?_95H?~=#5u#?Xp+ywy2ne-2gI2+d$aLBDr_k
z+8BqQF5e~!ZG%W%QX}xY)AjVZaTwNhEP7D88Lg&Dqs53$O06fp8b7yp5XJqq$@GVA
zAirSO!{7LW%*u7tMVaa>F{{^Qy_>t1rRv2h*z91@<oGVnpS;|79!cpQs(5GnR2u3O
zRH)Ucjuw#4ridmbK5Z-2Q*(_~g?O@Vj~TS|(qM&;Cveud&qlfToM_*>LfWcH!Qs;)
zL^6ob@qF0#1X_w-KE)T107B<2!kFQqpq4}Qu!L1^_r>U=dM>jrexX`2yCy5nwU+BF
z`3-{oH_FAY74D=yiw>KwYg|g1Ke`z}zxlqOufD#jd*r^ZF@5B}uET+Nzn`b`#`kJf
zp6Dlb^qE;*a%j2YtJS3UKU-DaF67q#Ii$$q22k#hiUue$H79_qLe9B0eoR5{pn??)
zik<`#;dy7s&p`JH&E>l3r<07dEPa8+Fx}}fi4k;yiyrhVal~D;IW!(evQh(ylGWj$
zMUtkHVls&UnBY1q5-kx~nMw|Dq=&FFNgRuz0)bgT`ot>J5nXGckAZnt*RV|lpu>&h
z-1k1Fo+PKVB35T6IqMBB+l6xEn?QSvKvbo3-Ds4S5PVNJ<|KM)9o8>|B)1J&5<4dD
zd{07SNWB+qpoNwF1%Qr+Fq3b<KBD^RAGibZAVKz6m?4d2YCj&0V<~PV6xhp*PnU`^
zmPHt_kZE*L*|C3181D^P{Gp5pG8ke~$2@^}HHwf3nc%Qcq)wulUE?s)$~oDSUCTR5
z3m^trKoC`eeW)ungK(wj^0mdbg-ayWP~!M&6(|xFrB<D`-n?|mt~E27D#|0FM=j2J
zxu!iUt0nv^>K-$eNr`vK@e8(ymhb($efaqM{%`%W>hX8==U>LG`)^{Rd-rVkiu%x7
zLOBw{b1gnkSUeE^A-ojNFZSC8UgYz38gZV4obC0>83qgBs;y`_q&#~AzfAk*6rpGQ
zhl1;f;6iUigC>Kn`lVU3o~J|kdy!4c^bE=Ricl6g6!1kZaY{2cvLaCSMVk-Vu56b*
zlFYk8XU5*j#4EBl;Rh$fyK13Ij5YRB-AalHKhaZl(v0?vbYc2HZ37c<m_WXiG|cZ_
zKY3>)AJaLH=+%CTH-2r0L57Axb=q<Hyc4=*gWU@lJPh}?1RK+zBtm`p@aBeD^0Zpl
z8sv>e2%KgT?d_zET51J!nTL)XCEa8-o6|LxDF*9-o0=h|reT!gN^!k39J#$hP%q9g
z>*Xtk@6;$i6pV5IAHuWjpf7#au-E#aFFe4Eta}Xppf{w;6|!~0<#dElDTVg@jku)4
z^}7|;@f4xA@?s^zE_U^2vt7ITluzDjHRJ7IJ)3&aHv{IS%J&2<uKuP)^nKa8>64lC
zZEzv5ZTH`GDGMOEC6_D$PzzSn){5XoFFIEVgMoPdI>u;~KZ5BgFoDv+9i)NV2Js=r
z@Uws=<uwX!L7;gh?BkN*bJScHUbp1|5ymb@FPBXS1nZgA-U+tx>;zv=1Kpa*2ckeB
zffGC_moIal89s6sRy=~?O~ir;;6DXMQ`@+WWc=`gv=6$uyM(TiU)um??CXf{Ou@C-
zK2%P&kQp~DAgkLo@0DNe!spr+Q1!aAJOG@QywB}g${o~_j1agSJp5)2%7TOKvE5n(
zcjQgwL#o$jo?iKymT$(mZb^&L+)CZr_=V5!z2Wm?pL&(|@7JyK<LNJdC{N=&>K`;}
z-P$+q`^9dN?`3OiYh7U@B+jEP0I&{WO7$eHYv;8m%IFT0FG3h+2C(S=VV9^^KOCJN
zu4?*9Irtucvmj8%m_Uah7tV5aiJzGArFVm0`lU{4E)%SFei8q5)v3*g0vGgX7bXIi
z=|=*|KQ!SL2addLBdCh4j-fD9Kwekoc60e{xsKYgY|ZZl!l3vaUmUGr!-T~(WHBUK
zOBlfQYAX060GmrKZg*Ptlk~Uqu&Xl8cRKMh;z4buxScg7>Po@NdC5WHOqpNRr5^{F
zVH!z6S>*f)0ETkbq_=o@+iq*Kj(^_(VSwRdNv;+L%$t6E)o1aou1WK4I$(1nhRETe
z0D}6D^AkB^nUVG{8^+VPh1jI$6sjK;X0x*xcZ3MxkfAcU;Z2{JptLsETfZdYEMa4y
zS`#tAOqB7kfdgT=)Gkf7jV5{evxcEfjUo~dxs3HfIXlQ7baoxTz79SJcZM)khuTVa
z-F4%QaASTWy>6y{K2c?o2nZLFnJR#oK-|3kW9*4OfC7=(M4;f+#qaFpk17G?8pLbV
zsJ6@059pcM`r6j9V^28F?U}K!hWE}F5*mlcNH-UombR_I6mjCbF*oLK5G+b?!r|d7
zkwQ%-<8Rh+w%17~Bayx>&BEmNyDcYH#@;eQTD;gHa?qs{-bgQEM7L33ByGk@%o&Al
zvKUm#Ca8>-V0z$^^1O^_72k0|RN)dgZuH*(posa~0+%h|03ou@n6lp12PhJ8hFI!|
zGdPM?m8l}gyDeIO;`8~qM+RHWBJ@+6PsE5JW}d<`C#aHisp!5I$KM|r(g|7mtve-#
zcd%SFT5J?OY)1ZF-osgwE@R30$wVl;tR!Cyco{pETZeuWz!xwBVv)du>s(7@cB&x1
zH&u_8;Blr}0lM3uCM9VU#=FXt2*QPIDfaTsCdkzacKMU26+)^!C|7f)r6ZP^W-N>6
zBmg|tPk;9t;lzqYyg!gQ9VL%r&M8vQz3$mcjM7>|a_D}n_5ulke~2zAipu$f{6zL1
zEP8DJR1HHStn5*~Z#ir9Gl+%>Qc{Zh9~6y)QLQjtSy4FpdHd1jq0!nMJfCsLx$%sy
z3)38OwrM~OEZa!T;#xt5(e~utj#O0oj@S~2nx?KVDccRa5dwt36U<+4C*Np*45%Oc
z9zks}GXlMYJyPkaI2@cajl(kg7KC-E4`qHl51p#OYes=Q_yMZA{n)Y7AO6Jn+cveW
z#bDF;;~;}Es0@)2|7=uY1(j_h<qT-eeiX8_vjXCJ2hiskUpc*Kz!m5}>L*ed>K$Qa
zRQN<bjt<JZ`Por^5wEUGuve+jJbAVecZrX=gvsJ?9}>bzR?=y|qaBhjWf;NN%~AI&
zD4ef*u0n;o$Rb19z>vfCtlkbuO?P@=X<i1P!(hS^G!BnfNjMj#myZn~+b%F>>^rco
zx~L$8pt<{pEEyBT$BF>G(_HJ-0C@o(rr|<JZQxU&Y=Em1(Y{s%WLG9)`D$c-O^DvV
ze$p_Vj(C^~MNDcq`S`Sp#S^%{xJO0>F|a%tH6mirchFFSIdnt?cz20e`4B5eM@9+k
zSXx1Gba%UsdZoq)ua2uZ%IDBOKg4^@moeG)qZ8!4ag1^XqM7bFQAMKwWt^=+feA7=
zd7gWhKML!PRVHirG5J8%`<R9Q$&Dj7xh7<*-#ZXFSF^`k`(VH5m)7n})Hq~(Kuxh-
zI8b(iQdkTKT&=axLVxfdJUEHDW`d#gTE;QSh+e{$KMub{UFMD#IucQlgeI6Deq%Ge
zi6or=!tOSpCbjQZL(N{;WGJ8#n#iO7#j}2bMF?cw*_G{9Cnm-L92r%Oq6iufVogkh
z-qR6&g2sw1Hy4sPVdH@ir(Ps{VM1`cG}pF@de~K^117v_Y6^zH4aQKmu<Z=NAsGT9
znPs%CkO0$!iM?#l_sd8~v~N;?MGSJ`!kuZs|3r0>{BE_E{Gn@COIDN~QY#H0lM?CT
zm{fwR-knR7DpA})pcH-9kO6Q`iCi8ppQjS=Zcqy!nU?pa)Fdxexf@rf(4fqhD1JHl
zg#dx;(~V0DD_DAvTrF3lAP_5YJ3ojA*R@5TlWP4wadw=n$kYAO9Jss>i4De6MyQH)
zqQuA(&=M!O2Qs$Kg_2uq4eWfD9RZ;c$c+WiKO7*bGK>Y(oX_G#_z#RHwk#r{C3Xeb
zO<)m`o=9;@VbAN&&4dHJenJyC2~j~c!is#aQ?`F`AT6{`d^7=zDsW`sE(H(Z!MR@x
z@kaqvPTwXrvV-&8Oh2Tm>0NweI6w<xN=bankX=iad;CG|iR=j22}qZmou2iuQYyVw
z_^o?pe*|@y;LMgr^o0_4)K9b0k6HuTl1UmDWsCi!p*k%yNdOU@+RV<P*m%rxqll5!
zXY~L?udG<8+^Qpi=4}LbcZ!hPS;!#%&o<T&xX!QR?>9K^a!)MhhmD`zDLj-hMA8c<
zG5`0=_U$WY49*6;B}oCed0b)~#;e;BizZ-b>eau$r4r(KW=%zNQ<bfEb_)dVpq)Ru
z?tD@PL_ZyQ#FoH#nocBgej(iY9*phR1dhV7I}=(2m7$wfaL-kao3e8-k;E4i_zk+O
zz@Cv3Ua70{j~p~(Ce9pM5fW_|HdELyc?-ver^gKIM!pYGn2fB-mNuo>m#bi?WQmHD
zQxI*;cP@#WZ0ln$L!5=<Al5s!u)X#d6y~*t@i-X#hafoB8W=gOvU55Jqp-Aa1(-zm
zj;N}Y)ZbSfrYhU+5EQz<DZ^wWK^(IP)RaN1ua5~OomXV!pFQ_Uhk=R;2n%o)qT_h-
zDG|QH5sOM5t1HyQiga+t&vA{LOz~D72zL~wN+Pf)AwK=HK5%hG7?VPdNVMcq?)sVH
zuxI4?)kOG8boG+=eEFvA@Z`0`OCkc?on4b#a*xT~>Nba0xG!x=lgZuk0>rvEcd4kx
zHGyv6JujNDnmrYMSpW<ILo?(v94%I+165(m@%nrULf%h*dlMJOx_ntlme^MAA+3+X
zK=$BHKv0+HCmVWW=CvHvt@IeexNDS4QOy%Fqz3b8X$*G;3Z|RT-}^Co=T_DeU@Rp6
z2KufHl(;%0Bv01!YuzYr6n~$gz`Q3)@?vF^_j@L$zI|JZu~EeG&kQ!_RplgTt2R>p
zRI`g<=-<N7dri2I$05a_j#SMu!NedYQAC<~Gk(ylwgeB?kk*YE?V9opke{!3M{7<~
zfinScHAQ!|MW6yKY%u&@wc%Ir5BLWZbyjdrai2~uWBeEy!2_=DX7mS1Eo9^6Rjtie
zPQxEy_@76_lL|zOM`n1|myhgO<a-P4CY4w2LAlWV6smcpfQiY{!aOA=Omsay9O5ce
zW{J>YD=Uu@LGvGon=Ohg36oWDEumE%qczpvD$$~Sx#0K@Q6G77NfPS26%_EE>|u76
z?ICz5w$L7GOpdYKL$U(@8KI5AL%Ey|NVcC03R=bQY~xpFOpIzvjVB&s!`UcM>?nVx
zp&}k8ZLPK})f$70U|Ja8bh&}8x+xMUe6I%20kF4SH06tvIUdc|AIqFPUYh*Zgr*x|
z)wKkS^kkjVkJsSV465=L`2)j<{!50AYTB2kN55pOeEzG3erd{=C35G^drB7mZ@-Sn
zbW=Q0KB->S$V>vFBQrSZUgtFJ$oh}9a8`Lj?599|CMEY4g#Z!5HphEKIFp)vAUH^_
zeK{NcsrKzalQre>iJhPhbmzcC-aEzY4@#{uo^L@0*3Pn16<(hRQ$Fs>;_2o^V!vE1
z4EhYi!#{EMXm|GtM$OAt4R8tn$ytPev|wWLaCAy^kg~BWI2t@38r{TqKkd*$Qp7XR
zO8W~2ddihEQS%931HB3R`T^5p3``{~KrjzuW+fz1I9ova{Un82U=Lqley3cnEG5gf
z>f(s}hNqaw-Q}I|hkCC9`motgiS-rFe|O9yk(R1B;XOly+_j~WZy-g(7p4&rD)tWt
zFGnoL*&he!$AsA*ilnCB(>0#OIoDeP=0Eb}0xC!gI~1Z9pXv@cn`f-cTcAPH%|>{v
zlkE9akx1M=o+MuA84Z!TgsXHm4^$lrtP1T$j=AA9;S{Y68-^%VlN^zCt07$yF3F>R
zZaT|Ny(XV5pY`QX30!+%h>?YdFWB&gEeAw_>p@Nl13RPrXOj7NJH=a_pq0}hOpc9m
z-DE)E2ER!nxC!dO39^XEMwH{cmJn>=de;0rmmbdmBNX`DAZJAG3*J2LN$L3UT?1rY
zu?o<+F?&o|AY_;iIUy(Gic1<muineaP_;wxj+^Y4LfI1BD_7B~{^)!^XJFQN`7E)d
z>cRaFr%E=}Ju@w=2IZ)JW-n^FvmyMCv;O}h2u;EAFAjYX5L{Y#Rl=cuBENKr8?`oI
zi4?hI{iy}Ui3f0aK8T7?Ku&@a%cYBy7uEw6cA743)<O9^Eto31Fi}-qj0`9uB74#-
zb+531u`TfDK|*}F4aY;Xy%OoG9?{9(@I$hwz|xZKiN$mQ#$94O!T)l`j5mwGE^}`B
zJDyr&GpPE3*e1g9F}Q2yz6EJag2=CQ-q#>jcei65vA#keB?f1>EIN!8>3}#U7Yt>k
zFo4vUwy4lKG<%XF(^ZteqO=0ep;&wnAnAZairka}qr)DmfD!Mt2Kv`?M4`l*By$Su
z#ZTSwosKa(H-v}lBuhTmU_N1CTM%lH_6)_nf=qZm_X<td|LAG@F(+oo^mTQK?s|#q
zi=>=}_yC#YMivElKCC5KfppKPFQTuY>~!kX0^GRr2q!LhoZ?3IAnyl(w#?=xFM(j;
z!b*S|i9j{ocCMI-il@1esyI3;45`N6W}(QYX>5Hv&hdaxfX*1C_7{3|1!X=!4i@&L
zf;dnTqBSA@4*ilB4HEDxC!L$?&z&*iDO^IL6PsDp(?kT@4Sj*c-K!S8h$}}gA|;To
zaNN`qn{dIP-}3?Xkl!=Uz97yY@1dWUt_B5P>OG}sHvn?5gDk<&|CNNc*54lVhFG5}
zcDw|ghMt;yY(feth*FUcz!=ud1yvWBSBSDV1z4amrV{7>igN&S`&sB|uyvBtKtHMY
zDr_qgBB1Rmu6uv}zh4nsMv!hVbXp&8%#eK{qGG;7$e_OJs1aGT`*Z!A!Q5CUO#di*
zQdx_!e%x05i<&H?T=CdtB!?a5emppXUeDe>mUrodctyP>T``f)&Cw-2^jL^q_$6=8
zaW&M2%}vP>j+m%Yld<zO4T<u=@X#NJ>C**>1GZ!|beA6GU?2IUH<;idH>ueXA!!(h
zKwOPfoM@_lXNhKEbCZy9X~NgG>m)gW=LF=<Y7*Y+S`>NlFP#)}01tFB9LcObp0F?n
z@G|op#1*Kk=`!zs4#no2D4SrULYE|}wmJoi*PxIZzAcIX^J!`ezAx(5F|#QDrUlEV
z*l))ujN`#pmc62%90$paAY5(DDB=GV0abpG7W@!yaso!Hr;wa$7$?Y@AB+9_0o+)Q
zICZwoSrnueEadjw%;QLzK+cuiU`-&NpKq<dWRZ#O_8JwboI_*Slu}kiU8As3n>;qd
zkup>M*@>znBK&+1_&&Yf2KLoy9G+LcJbLKy5WUb#iUK@q8-<X!Z1rp0C(6#j`d|fw
z<zcuFa=3cTEb9Kc&Lu~wyNx3Jg(!C{hG^Nbk%neF`q+iy3*kvYM#TbptW+|wDxE(*
zf)*DYDZ#5N4uZa1;$S2TUNaOGNmW?V3doUBL!;B*B`WB<-H<<xTs~ULA?n0?59-WB
zlcjERS!q8lo|N8q!T+P$B{q%y8HEM(wc#S1;csggrv`TJ!Go^q(Oez|Jm!+Lvzj&`
zzm*vxC_87t-}uF1ILTV_enJt>Yp2{zi}`!2r&BfW3pS4@H?U9FF7HpcXW=}wC|MG_
z2RG!@rx4!cA#{P>fuCkgklBEswLcp^#cUrCO0ch7raa_+?NMtIS?`V@VNgPvl=Fdk
zka}pIreS(Q$jR6BaJDK3-4PsU_p1d2SH%RCJit!f#mG<0`Hxh_uW7T=)uNxj(UCBP
z^wGhZ>>+cs>M_b-Riy+p##Hn_Z5caJd4WJBB=od-6pbdn_v4<Yri^^!CL#6swDR|#
zKI1&?{VIMn2skM_mvCcDbOxidFUr!wyPo0O<<e%euG+B4vK#PeAtEF~*3Hui=vT+K
z@U%ViYOyZ{lS5Qni|yBTwWve-q_=cN4vbKxxLY2P`jR$tFo7m8^J#FqoCou+&zotq
z^=V=7#iubB19u<au5fE9@S%29vQ5e8UF<^oVB(gNVQVHX9<lso#RkquSt&Tr(z1*Z
zjgu&()VedTY2#F#m$Hb5v`$@IvNt@zu0EB#4-0c$!M0An$J|1vy&)X8#y!)9tjP9L
zz-%gT{#s0!@fPlR5M?gRm_2B=OYD5YdvIm`{5=T`mFZm}I+r<S<0&d^1M<jsYyBo{
z$Q4Q{a1=h#Ex?!@eTOu_!jxDJZ(F<o&#J@OQH((x?zgl!h7JAsfu#xkHt*26Kvh|o
z#~$)tln;J;ll-u#G_x*J`!LuLjhEqJN$!2oRabx^DmuO|yEuD>#eS2Z#Q3QO&BCh5
z$SCI%BDAwN52bu?Uy|Q?S-R415~_1}Eb~i5=7bUkWnpfntG{P1UKQiIBE+xA8y>h8
zc1c=Lf8}`2V|!XgAMbeQFSJVD3s^-^KXj$MkfQd5;WQ9xEP}<ItEie)T`FxK0|FGd
zfc8;gZ(vtJT8t3(+q~h2oR&SwEi}j;r7+C;rGbP#8(Xk1wK%0^331#g^z)$q1Exya
zc$T031RG3CVg5Ccbs=F?flnb+AU#`}+^XLA9O2OO%7h9F>n4lKc++lOc&({%M>HG-
zY*@F%N>X%KHd7`Y?v?kdECY`HA4}(3N5bym|3*wvMAK8C;=Uqp$eC-jPdPR%ncr<m
z>b*N+YNIk(NM!&L8hEV@$O#aajN=juipKtybE%44@6Y@vn25#;22!u9w;df+ox&!f
z0Pa~;cYm(|^&8HEl$g5@o9o0#;Z%}ay26Pcg2(Up(as)l{CW5k`BZBeV`*(twjK;y
zfjBEK5`U_!&M4y`d+69TsHj+yagzpJ4hvWTx(bZKSgm5PD_ftNFAjf84UMMLxHhg?
zM_Sqs(UJ3O`sqW^-qkg3Eh-w1ew7+kg(JZE(0rsMh)&=1%Wg`uPp|`$M#pHpD+amx
z-;KV+TK~_j7amD`R;tQs;K6GVHwn?vwOchfEbYcD?RE%$C@#~RF;*LSBsg}$iy8uW
zKJyB44@gPZDBstN+dL7-N2KAQOVaQcdx?p($kAcMM50U51DbK2_TYXkHdYw^`o>!S
zB_&i;8vj1UN3BEVzQEQ1ZY5YRAc%KH!`$70HZA?vzxMWf`L4dHfJNv-R>)iKw?DkI
z6QbRK1j>vZ-m;?K+r^A}kSW8x`=NDg_SPoma;0XWK-_K!eSzJ=^or(IciIV03di)5
za|)m~kdLPFa*4AMJ>_I@QDc%{PzrHHbFZ-!PWnFpf=_q1j|XYKRO@EFV^roKZB@%A
zvbnkqLX!gmyZ9_4QU1q!x4>_ilk!0JKplj7k-NgeZ8JjbB4|$P+fZNkVb`VpEMfZa
zbPZk){P2)3knuH)+~spjwdMXJ?%flhhsVEN?2gg=ieAld$N|KZs$-3y{0<O!Q6<mN
z1ZIvmrJ1<q3mEx@6rZ1;Li7T+owAyn``kGsLK03*1#HCZ4Gc=r>vNJHX>;cUw+*TU
z@q<SK$L_VM$d)_0BJ`V-(gJh$W0$v>aTSOzP%a2@5#K4Y{H$eATm%vVe-T<m@SG#A
zNhLd7*ls!sG3L34eS5(O+?g;f&|nLKwf;nVAaw1dJ4RH*a~TW0xvxgv$hkQ{sKM~>
zNWupqldC%N4$OcV`O6`j1gLW1{DR~nd(fjMwAy}$xFS58=lMUk^GL9b(ub|6S>47B
ztZDi$@zfgVAAut*Z^^OX=HC`O+zEn##5l-N0pSh_j3+z^pvgG2^FW4)MaMg@S5YR^
zSV~GyMf5%&nVTRidt;dI+(NEmCu-E5Hd-~@t3F=kZ<)YOKhE+&C}~m~K`%Rya$#?=
z9l{k`UJh_9(UV9N10`A`^es!a6~atIeEF^#-ZC6F@hB(MiH;M6F27c#I68Qv3_kS)
zF=juqB%0h#>~Fu2xZs3pK+myJy?IjdG;7;IfNSkA=>oW9VLDzaj+G?b3B$fJC<|^k
zN_KRIUeQW!f)t10U}Zku90-TUtX^GUc!<tS3fU_im)g~<oYf9-VcI>hv;b_}O%Q5M
zNNkbqX90#6_0IvYGM}_`98al?U`>zeeDZwoz0)3<a*ym7h_q0hD-bkcOwArRF^@pg
zTHaqj;X#m&y#e(db)R>sy@B$-qqEj9rRa-flKi`BO_%$(xPr87%_zV`y}|VKId9PW
zj=-U2{n61QzA!y!J=$xEVNX`}Uk|X>&EFlP7y`_?{AbyJ53K~7SdD%mA+6&Xo<p?$
zzJR@hrotg!Pd}|haAF#l*M(nT1`!EUb2QbyrcP!%96J+gjQ~J03l&x|2d*oN>uB=Z
z(N*>`FQMY~o8Ut#$4RaR;x!65TT<-HZ5B7)h4$K=&{jdcMFh!KodCOcdth0BK7+Js
zz2e-xLi<!~is*quMo@#qxTgNkC;JCq^_Xn@7?Vv`PFVV`Q=&O6WChcjJb%z0{EHPb
z{GT4g5-=sH({|SYgLC_33je}5bQmBAP<N)6_vG>RsY(yZ%#@S4L$OD8fXW6wC-9s_
z`!jER!!aLea`lZ6#JEX!D!A-8*!2r=ix#=^j92tV2-tt{ng7HPGzMG81+&D5Krjld
z=pGFTzz^b^Kdlu1xdrPmT!jHJ#H*J1br5KLd4=qLY=#RH7oDtQUqkO<o^BqE;8o)+
z@n{^nVv3TZ0swu-GpOL4cqC@l-bL4cO6h#pYz!)`e7FhZd84us?DiyWZ?GmZ^P%F$
zz8KOImjsU^xKP2(0k7_`iQ#Tk8V)xR1jG_PZ~fkSaY;}VAPBtTJrUj>k9ElTz}`VF
z7#pT5$`u=P`_Fl<atzls25lYmb<AhoGf}V%B;$wltuz>6fvH{baw*!6!LpKS|4I2B
zA>n{V3f+5$AOPPCKe7G6n4yi!k7e-;C`j`G)d2!nBuFd=AQB6%WNw0@V0u${&ZLCf
z;jGzBI4=-N(H<VauVM<H)D|a*ffRWaK>fY$uZ*Um@O%;-vxBhjc=Oq=o=My%vb!)D
z`K4{z;eG3Avn3dcPV-P<1dw#vk`ZD_^6WSAy8`2q^sl8X`uIcq)_3z9wUbKmbqh$d
zCV@KRl)c6JAqI(q3M#G`NzHD?<hn+&2OndF8uQ%Z0v@Qjiz!QEGx12)=((x~s$@K)
zDEF6O^K_GuEFle%k*Q`y;T$&|Ms>F0yJ*_gFxU;wt!aN5i3w>Uh(~A7n?H8jr~j9x
zmp&uc-(xzj#z%A>dWjSLKqd%RtE%uQ2&WqTdXeF1Z8noTLr=8>wFt_waRlvA$`4p*
zLRJ8+Z~Rw*YCV2qH3q4;i{(azV={7DGpDuObimCKk4jlY!=$b`S{?}b6ZCWpbxO1Z
zk54F;S^dOOsG9Wv5E|0_kt4_H9|lEq%9m@H_vp8E_Va{{)pXOr;BLpqa8Cw+3-2#i
z8^jfU$O&N0*WYc6pVvS<WQI7O=z$MC*WK!hv?{0|GNFg#|3?Ny=h(>n0NC-)%j1s^
zS;2k*czjuFWW^t@S(DFQfy%h{U0{_{*mG{cGYoW;{o;X==40T%PMI@xiA02yra5x6
zONPUZ0`xucRmhpvYz^j0^|kky3cHQ|_s|%f88nn;%5X&A5UP8MiL(RnC0GdjWR+@j
z^-<MZ8G?fDbJm0Mu0QX``iKY=$&n47Z*2Y#oIoXKJ<PaKHlO!4@{(<XGBLKT6N=V`
zPV3JCo;5v;@dG_f7ym_?`&kgZ9^hWpq8PTtQon!9R>j@xfhy8oL!{lykFjcmzaK9r
z8v2F0al;#=V~l&0tSB5YNYS?YW4neprYQ4+kiz9{2d|;5Bke55%2ixnxjRxNj95`X
z5DiIz7H<#H$4}Nha1B78VOzn<X@8dJ|1*yoYyS=YAB$MaSuZnxnEjtUd>;3``#+PZ
z<6w|lG|9<X|8wn5uh2kP?lTt{ZXC?au~B}%lwsh-L)`m6kN-ushpgB$$3dP1PovgO
zoHPQ1vUkv0bIJlN=rq#<g?Ch!$e0h))jsvag>E4_2AiiyJgKLYB>Av=#6Z59exBjJ
znmNMRXrBbe)Q3ng-k*6~z4p*O29{n+{hU7tgQN~Nfwbxh&B0<R+6)jjur^}CZeOBF
z_F$0i6s5{n;h1Pbp|MSygw|J^qld|IS|dPmE;9h=hv*b3fzOPagNL}}5XI9gUei5&
ze)Zygd)WXI;z1}KrlB-q65c{H`j2`JMtF%-+Q;kqXAKVlN-T<s*y;!5F3ptN3SatJ
z4IXgD=$>*ZJYo;+woNm5DfHcmpUxG8hd?aqP~O~DEjU>QB=yexc?B(|Q#%O_;wWVw
zVkDRg!!S`I{{psFM+T~D2UM`1Fn8SV$_SY=WI5LeH_(IKug5zR#gDpsI7sb0&@bXP
zXVv<JFe9i(Kp2478>|KfV*yebBVin~)Gi*ZmDvIr!p!%e28e=w7^UHa|4AyXZdg~$
z6vAevaCA(ZWqw#~>*$snqCmhdT42UT!ikNvJ9qoW_F6>fXxT82T)C8ZB$q0rw)}<L
zF(&#WPG&_Snqb;rsL1pzJaKA%j<l<^gc{6j!cI0puNG3)bs?T=2e+rVRB*N&MDqC^
z>kITlK{lcd4dch5?lA{Q0&NLh3>1d*)N1_QH*P2j;M{;f`e^oXr`cbtzJZgo2aZ{~
z)18^VL$GWEWBr9Ecj4p6i!5(R!?7WbU`D>~5bwI3i=E>gn)2>(bFoH_@YCH2=$oui
zY+@=g((-=I`nX;GJib=rd>qx$vKug|{dcv3QE!O&DTC?_46q`?{IUc|xo9<3T1ypf
zGC8|Rj&N@2%8QVBB}NfoYawF4k#iB!8%?!8=dq#2zKUVjQk$e(yAoOAFhYGhx&^01
z_C#?vtalD3#})WfSdeIC5FS6W%S>b&INcbNIA1z-E+&K{GH8rjOqC0cJ5wYMztu&u
z@m(O?1RGUq3r5e4OJrv+aq49#)k3;_*}I%VNc^731|~4xp51E_V@S<-#+X)GytZjI
zc9mubQ?mKw2hb%<-++LN_r(_2=G0>C6vc}o-`b&g0Eq1(`DDOar%{LVSmPs>>cV`9
zJ`gJLg}RnK<Dz{h`_RT&&>gG$(?aAzq0Cvkb&4e<19_f6c(Jsgq}EF)lj_vX1#auH
z{psB@Qf4%chKJ5KMe0)GXKjtu3jq;pHG%&U-81qIK`Z5H$x^4uS<)KTSA?4z=3Ipz
zwziQ8%#*YyFN88C<&03dAju}TjDEFTJuPG@dXcv8%koM{6z6fr)1-)&Ig5f7yDi6F
z1^xjG;+1B23eK5Puy0^_P_?#U{)`c_&g)MGG?wMssmmr*$1h=+NVOulk(d5~!skcK
z2?!{{y@dyhTb&8A9cGhIB|jFXi!<Q6*vN1ziYy*~RA4L>iyO32M&;fcLKfU2(&<79
zJ6N7+i*xB2(5aOLDH}pJRy^zH)Kwx-Ksh}j%d;|{Z0QFh&mJCWjTv;BLZ;kpD8|15
z7cAk`Ht!|HTAfLwx75yCn6FIcldfTL_?~~YIQEB!yM+KI7YRxZnTp_MXpImm36H3m
zOlb^oqA>PuG9KbFZVtvrim9g%t@uK*AV)P0HU_g`LP9|^KcibLZ$HsE)<|J9=BQa0
zZAUG-3)GT~x75g)t*d@%e#%v)WCg};+Q>z-#x>SAb#kgjPd+w|!c(YN8*l1`u3|%1
z$?ob98=E{aXshg62V_XL9=yRy7$b2+o6bkcfMujI!W9br1$Qc->Na=Apo1PH3G-YU
zHSFL69d5K!4(p2QT-}whcG*Gm3Qs7s3*gyDc<CCTNFaIEr{ZAR-~z&B^zfM7viqRs
zk^-?%AnOi~)1f0?o7c*d+M}KM1=|zCMl805Du~mTXBh^Rs4Sex&YPr%q={@w#*&vN
zHw05@qH*yhO|Z<=vn0YtA%NmcCYmGJoL+(4nzgEV96~x+-)PPbT{r81o<ArS=8^nz
z{%--@BJ?!T>gx=diYyg*nQZEzEt*9*>lCkq%6rZ_H|AidW5|Dkos?2yuBA<p7+yLF
zlT8lbfYC?=sVuyW5lUXEdPPz)4hx6Ig7fV89qGV(rLfj(qptuZ+I7^#JL~o%$U;{2
zrzOMg2@!9>bdf!raX&QXnX4GX4dC-y(l*!tNwvKrAJaP3O`|k7Wez~M;uasxicw54
zOE8*8ilH(_bwj<uFR>rXk5$4&H2{poGGiX+aP3UpmVMh*H`n7U?xzWmCyQuQkflf5
zvWD*o;S+RVwIXoc0vFcFOh)w*Q6BKHS64BH4q|77#Z;SViqNGYdan4oi1E#j2_<%p
zV87<ffCTwE^$h(mLz{s~7jsikPJ0ZP3b7n?I!VSfksPMZIndS^zK_d@)C`QCA3ZnA
zmPzRJ)-4!HCLoJE+O$e?2^a-Gg^G;EEVQoNF5;nb&s208f6-DTRmEzbwdLSNjvwG4
ziqb}c4U=d#N>eO)LUp>&{YoBadpY)SAmXn7SjGNkp39c)xroqS^eSJrHq3j{t({!-
zO9|6iOkrMRQ|T$0`!zIKe0of94riMwY(-pBBweb#=%Gj+A0N?gxb?P2qwyj%9h34x
zsDwgvHqFM;B#Nt!+a9b@ojWz+Yec!RqRz7;b*q*dBXrs&Kb#}h1zBA_g>GuW#dW^w
zD~5fJ0E2>qq26+DOMq6kD7WmO4e~Br{RsCFLcPC15mVCzJb5eT?G8B{=}*qeV<~-D
zTFQaqZxAke;5ge-qKi#RsC+?oR5Z=MveMVSvDa@C?Y`~qF7}g0>e7c1EaM9=t{ohW
zHFXH~x-pM2QCtVuOuefAPh`;<4Y&6DkWEdTPDjQsvoyIK7rgkNlp0HPc~o>EnSc9=
zCgxAb6zkcsH@J<?iONRr{#yRPg<xAKC)nGlbr%H-V%*F??r$rhM=Px>2Vr2UR~h^B
zq~auD0z`g3azi2hBQc>=&uqPM&iQMEW?pUgcaQP!v+Y3QCQ^sdzx2ogYq4syj2o9s
z$;hqA8y{i+1))c$j@FqI1y40is*%Z1L(ah$u?iqdK_#jfFwLg}apQG{MH*vrCp1Zk
zq-DXp>zGL=?V+H)IqO;}kfVD7CqlNi%4OeqgZXyj?^noC-HdtCC9rrL)V^FeMkavU
zGpS8wSUo^wC9a1X5h{W@l(8G?OhxJy7w#jmf9epm-7S-ovbdH!c|w#MoJTH!m)IBT
zlrAiM6SM#^X+_T3y>2-Yy*tQa*U<MSl+b^-_(%0!ir=;&2>tC2Wu@>>_IL+<o&QPP
zjM9m5x*n&K@_C;%JSeVBjjk~}_a`8}OG1Q_Sz-=IQ7TZdKoL{qR~cKxre($Ml?Vx%
zbvjrM0;<(L>yNX3uS*dbDC6_?-}Jfnp8Wk4k(P-hn7RNmx<R2Kl;s}Mu!l6ODmd94
zPYz|+_e)~D;t-WWIVt}J%|}V5;LMo}tnn9J5nv@e2ftEhbU|^`$=NFfJ!0jJ>tW2%
z0tTE%gdm+Unue+NYLek!9Ji(g$75SdKZbmFugwthrfOm4fu0tgP{QFgago;8e_duz
zlxiMSAs|+0Cy3BrHR^(Yqk3*m#jMl?4pBK<?4>0kF%x<v7M)M1`4?S{*b)9~V_&(%
zh1+PTrO+Z+)TNmLNqob3buRWgmK^RJCBPP8jH4oBL}}^}1$#0Ca!Ej>rm)4`Bw-3=
zWeVgx1<g|}Y57Zql&-uzP(<Cx?`)X%y`s>+eJ4A;I6L3D{0$MH18H{p+`j34Y<79{
zlt_ifj^)u=ATgdE-!md_5Szp3pyNN8nbv1^OmnYJ>j1vMHSN-if?jJvQniX0ZZ|sD
z&-b|8Ti2lzZ>0jReJ3BoOwu!!5TH18l+eNSpL~0HLu?H2hKyaQ$vXj0?a@Dbpb;Uo
z5fCb>@1=N`<l6~7T^u6{AmmmdwVZ}C-NEoOP{Ae{PX7HQr~6l+Q=V{G`W*;lsMHYO
zE~&XfQnk{Mqg~=t#No-*HJ-WyA;PPP&6+z6ACH;g%LaSunMYP*wO)s~UCUHx58)YO
zH$k_p;9X2xnt}4n?k{4wsF<DK#Bf#XW797~JZ-qfOTBv#_I>P0uyDD=%BVxwu4qZp
zix7hAfI38@nw*8+;)$+*zu(rXP|4v+W)XzltP`iZs!-G^`)XX>>q>CWFlO3VSFzDu
zOb>|-YxrmRawTzv2to@iY?ZF$>&LkYsZ0b8L=a*fktRjqERpRJ?&-LIfDcev<D^I~
zTXcF>6D0IS27Xv4HEGYg9+?Y=5D@a(@j84NtmY{Kx_@~)V7<%;=!?%^H=ekz{+AB2
zG3BeHBE4rVF=P*&nDZMB*^0({8z6Ap64cnI$xCVg9<*ob*RZJr7Vujc*CJm0haqwy
zS$q_y3)%bp6JKwzMoMb8Bi=Xji|)ZpK>3On6rZAw^RJn<SUj?JaB<RMTtVKU={`nA
zJu~w3Uay{S=a8q(zgPGAY+??Zgu7d`5Bpo^=~q{i^EM}69pBb}UvFP$;&U~58E}kG
z+Wj{RLvD~aZg1v_yg9s_-<+@I-yaSqHFYI!v6-z(^@-)=M>wET=p(1#NvSPpj(0p1
z^?}Onf(l|9k|;cX>T6F?ym7$KAY(??)=AtU>lrTkJ_b9PB%}=@qf6330m8~kOm7Xi
z(l~*~z!3<Nz|wkuPDsIA_k^Z<{dZ8llc3*>Z?Y6>scWd<u6N*>P}C+-P^;uy^gDfn
z6{RiQGUk(ByeFs_9?*Th8Yv(XRi*BR(ZuPKo4(_Z`Te`e6<eivM)WLtk&ins#a{26
zCq6;2x!F$)yCBv4qkkca)L*P3_#(3}D9?i&bRjERV`)ivB58^W%ni}K3i&>zb(eGt
zn*@P(d`)3yf200;y}y@8;i*0r^cIqI0_VaI7xH_(VdSwsR`7dM>Ecz>35xt!RPoNe
z<enpD{fAvZcl*|zsw7)WXUw}k7f*Oj3?PAIWyRj`s;0Vj9evZ@uT`P6$tyF!1~`;4
z_*p}c&Wl+~r_v{fgCnNCX2J|t$MFEvh-n2?cLuZppcKT2A`Gp|ZK@etjMj_zR_EA|
z(DMn~BnQD4rzUx$08D^D(gh>{2{ocn(^B0T9Uu1%&AN46B{adBXhYug!yN5>WJz|R
z;z$D6R8GfHNAPH*;@`@HEg8&zD)%}Si!t!=c-v~;_*$Vw&vWiVs0V=u#%)8q=X!ys
zc*eGU!T2q0|A(&6uX;j;xSD!}8AXQpEqyn}t>@<LuXTQYp3Vf9Eg%1%1S5ALO~Dvt
zw$Rmdo_@Wh(zVPc9Jd&VdP`+qZ*>?<eHyoqHZH0mxs%-LN}dHOSpnLW(6BcJ;g-%-
zBJ>Jneo1N{@!@z>9ZPa;s^J<xgokC_)xty$2>iKJMLf}iV&tPL6!Xe<n<+XU&OMxQ
zrZ_SlG2?306Gy9SN<~_Vw$2X3P6<O<KsID|hEr5{VNwd2AF9+pF;A5d>Y=@c#4<TT
zkb`GR&!J&CSaTHLM*3@(J%-Q*!0F!!t<E6{JNkK?#^;m};hOYE^M$sg#Y~*eh5D%>
z7@jwG*M$2DWh~bFO9(jbwN-|Q@hYt~_rfH8?HKto8L$hkWNN46KAOXLXGrF>a+M6m
zU$B%>z8_+djYlkDj*L9rx%wtv_PV*W#N<tJ(O8!xM~hZHqHwT{^p8!a#k#88Gwj8A
z#5=1-1tIu$gvkznD8a|Z*u*&sB7LjiUZ9`6Ab$tTVZYmBvJ(wS4v>XM8P%+Jc`0MM
zFa?hEi{*fbPSQx^C7(WUJHY?7A8rHqbmwZ;9;lx{Ew=N5q~;pYeOav)H4l|SzKUT+
zE-(4g$2~;6rvN)ay=Tlm=ucpst#M%OCA8Wx$)Rs>?Gk>!NR9#+xAPLwJ~`JkAU{He
z?SwB7F5)BnV!}mH?$8ht*H^tAY3AaNpu!Mt@zEU9W;92z2;MIPI_#V<SG|nAZA7>2
zMDzFCUd^i)t=%#KkCE2{($zrIxS&x(H6;voA{@zz(p^1vkLmwHQ3SwAZY%a_tBz9g
zr`<&LG+|u-C?k7C{@X<(F2+z?;n*J*ftss>Om8HRGQ2nhff%~9E-^KS7g&w+zu}(w
zkg9mokD+`lF7;7TnIR`H<ie&5fx5G4O)?cmb!8@QpV)x&j&i7I1QMez+#9<uNJD?j
zeEt3u{ANrRpe9;~516Hqw`nqDLTL0IpY)`lVxD8QhjxE#>)@dVm(%S@wXbaSg&RTZ
za#o}KpavB{2_itF1dXKgN%2i@(~O8wXmJXQizA(81t3j4B|IYGY=BYCi#X<n^Z`Gm
zRx*e7%9d?Sp;#36^6Y@fC#un+@0P|kvu7eUW#QP38%GBxx~MK3fn_?8p{bq)v4q$f
zf9Opa(F>;6EQr2aqx1OraujX&=S!$;IYi2MVfB3ioHlv+xi1Xz09^6s*o-)C=*`#v
z=<rzLIvXjHj~Y;|NJskB84xtBM-303UD5NS%#XtFJma@_xzzJ$=k*zPBll4UK+sM4
z$c!8`@kVM_ju8d8C^@ZbpYt4oKmUFHvuhQ$e<CgX(x5p%Q4>(Ykr!g<My4(GnnoQV
zM%2!ZSqB8I1CxJCAZ#zNe4%}1&q;Cg%fU|G?aHdEANbektEG^4Wf|Re52;wiJr-7i
z!(8x&K!o6sX0Bcug%G7H@Xfg`AIic%b|xY0-QdaaV#s&Vl}Z9JS&ZRoyCW(`X8SsR
z?6xdg^ZPtiw=gY4Y|Er$<jX#jOyUzULw`SBWOlee#xQ4pWr>qCvm01(!GnHCr*Z>v
z`hYfAY3RufI+pQinwI)<|2{Uqstp^O!1?NzuA2U|&2Bn#@xt6V3z!uowZ4^Ve8K0K
zf5SvEa$2u)IgTU(#xmlsc!DCG{TCHCr3@XP4o5L!17xaCT$rDTi`GXngW`7BhNPZv
z#iAlJ`2#V{!U6LqyA<@=v<hpU^;n)vo@XuiYu8p=;n;#&(s&Pb`jx?zF*iSg$UJeB
z5X(z0eZj>BvELcbN9PWyaMUpRVBAJIv68F4Btqx%Lxn~skc2~>j^Z7FoPeWpi6zQr
zArfUIP$OeS&p7PTEdbV^XEPMYqzTVD*ma_$UF?e@Wa}G9%xi&|%uiOl%+g!+#0RE(
zDOB!LZ0XSVczat&8mzm)n7^%Rf|zuX-&loJm~pbw60>uB7UMQAoy;_grYCONtoh<o
zsuQ!cqAZ6t4NMzBsM#I%H!lqT@%3fxHKr-%ixF-Ri`qf55LZ;v7x~|fMqNx}aRGDA
z4o~=+TB3RP4}P($!m3iO+$5kz6^^=784q;}t7NRDfBQ3_uU%px+d-MPYMPO84~G+A
zUss?=Wx~rKpPBbfM}EBkB=Zau`+1`Z)NpOCtX<Xd=Bcr$*4&XCKrUm9+3?moq@yXP
zf;lY<{F^SrAp#Vsphr;$16#!CNX@7mEM7+n9Oud%mpcEo?Np5`hzkbCEoJG3uq#>I
z2^oNyH0xM#$twdw&wP1I=SgD|sGS*e#dx*E#0awQBv^V>n#7t!$OJ1aj;9Y;ZA}aQ
zWIX(iTVj{MNUqdoZZ;bjSP{O6+e#iL*;j}95e6WDI(1RU>+CPr4MyMyz<p-&07Huc
z@r-yJ1*iD4%zBNiDDjrWYh<ucmL&Z<3oK<noG5}g7;|*+UuCm?VBRBQ$(pWOp!aH(
z@9)FD1$6@5epyG(&|=KABMtoO1U?dyo2|wy_~)J|s@IYlKV3eEMlui!x}KMir;_Ef
z4{^(J<(Q3v*rV>6GXn3zW|r^ae=dg{j-t%mB*@v8f(Iz!dt9uu!*d=0VC~&agV^*j
z*<mnQ!YUjIVOpUB<_AOKK#kZ(d6=Ls*iP(xbdslO;AYudv-K(E#TW4@u5dJ>xjkb4
z=#C(AFa46y?ZR})PO7gTm&r#!pZI3GPMe5}%J7oX8?nVz*c<Ty`nP^hZiZGAe`bjp
zB{C#=*vz0aoqPOLCvs1DK?|P2WzK$Y{MPz6`D#6?(n#>ovus+GpJj$FWI*@>LIq7;
zPb0UaxwItHJ?kX4-o>oy+Lb4*4E~~*d)3#gp?%xym6VJ7`xF$&Vf#zpMp3o8B!+>F
zyd&u|Vr0la@$E7xfN+`oa!64IKkXI*jT0No^7Nnai3*sKgM#$(YnxvBY!B=Wz{9^j
zYJv)i-$4>B&Ac=rm^x_PN~GaNS4!XN8<IQi7Q|e_7&kmYB%f5xb37ibYDiql=I_B%
zNJ>brjkf%8LZAG8cBCb%^a_Xs0Uqr-a~1M(PPZ9C?g`%vVqf9%(!?|bNU1ckWgMR~
z?LV!SCcHNxJXZ5zj&0Yk`PWem?T0w=oDsIivgY=UwZ)YoyPJVC@vt<dy0^27sq<Nr
z+WV`u#wM-z=$F-NH^lgFXQz+T691p_OpJs+lK&?6i}|_*aK9G%E)4uGKyT6q^Sd$A
z$G5wB2wq$P#OuxOV}?_=kYC1obYEuv9{%k;?`1vjAQ$|Co?rU|lbE@G9rF4-o4db{
z&|fyLuC5qfJiT5pQ9F+qF|OxTZ_|5vW^fx7jnjU4hOjTO>EU_Ae?bE=4I*tnF#g<U
z&*k~ksXAaA80g6z?F~~$1h^l@>*Ecb)yBmNpZ$$zN0`CAIN_ATKZPxEXM!}MCpEr!
zg}F3@ARxZy8S`JU$&Kps!Nbc*|8IV<1YXpJMBW<s;l#RO`rq{)s)V<o?}%>e7|ZF(
zTZevJ2{418jSgX}Zi)U#f<#F}2C3R4!#%2ow)B|m<s%i}ryQQv#v%ObG)?8>P}z!y
z<^-8rQwO>W5zEI-f5f9g4+w+kbw{Xk$*1k%;yUlf&d$G$c>f=^-YLqGt_j!evh7v2
zZQE9t(Pi7VZQC}x&}AE4w$Wu{ukYXIYL9c5W9D3$7ny738}E#G!sqtOFR!o9;F9pN
z_w4fepMd}U-E=k<+|zSBup+K^ZOd!IPdw>U|6mMdooYe@-3N0l+cYWuh2Fn(qx)7{
z5V5W0x!6qh7;r2Z*J^Yj>D4xsNu3%&5iwE5Uv1O|wr@B7i8cLCDT^-w_ewRXf<UV;
zLwC)A?%E+S&D9X?y+1@XdZ>_72Je3;rx^aAj?aq8JWI%E9mc&O;ykA{q6Kf6FP{Of
zG&dg3{ecR*Bnm^3g()7p)gc<gi10rg83WefOFD4#IrJ<g#TJLsU__r{=aUW!03Zm6
zKhSU0l{6S*{8Ir4nmB|j)RRQis?1+rj8BN+6Bz>bM!;MY4jy_`Lj2(jIkEu#OSPf6
z_DU1Eb8XShHfhzKK>R63hX*}@<v2u+gM=QZW&06}?vP33&%0uui<%f7sb$ai1Dp~C
zK1Ch7oOFn2)Gm9Gj67<#1>bV~t_ipuQ&%d-f%XEL<VqMtD1z^M`@U?JEkpOyhRX0F
z$Y_EW_I${>u62#xWtD^bPcIn$Sj56}1bxYjEFnnjC;Sq0si40l9{j146@1DmoLiAd
z6Zt|Zm%pFAzNhtn#@fQi)Y6NikP^FsGn+r$fouSg&r-Gar^OzN{XYa#!#dH&cfmK_
zFvP>4?(bKGA#l2<dI#VKEe(x=iPIE^>v<S?>sj5Cu0q5+PsX959zrP>;H4N@ufPb8
zl2(NCFDs;*eliN&PsMw8Zx|}Rl3rfHO|aHpyX(94!^Efh8$GZjdBqtAUip!kx{tGm
z?Tx+tb<?)>#7!X_iC}s>=qrBp$n=&}y}!NGLibeGldZv7+ej`F45}jne-Ga>pXE{J
z6L@7BkcZ~vZ2GZu3_=r->uI*|*5DDLvgiFn0GFnxr>B+v7zY2J6vSOzyxrQ&b~d5G
z<q+opY-oE*=H39{ZOs;zd)T1LC9$T#RF0Rt)v5<ic4nh(#rT{FL#23>tI#24X|WU*
z8k^=P&Ttp{vPjts^y~RW{4|KkuqU#HnMB#xUkoYZ#zQr@MEzO+pP9F`cO{bI6TP#j
zCnV}p)r5$t?j?xDM7Qjy4-Sxa5Ll@Ebw+*++W9i?l$chmJp9Xdtr*M<days6Y&2}!
z-uBTETr-AHM6Qu}R*4YX1E}5wYoWq_(ypZPc~dapvDGdnK{0wf)nH(JkTC$1pj_qx
zJsa$;h4VoUcLH#ww91VikwYt`U4Ny_=8B!Ukg>jYl`TQ)cBTbCpU*1}8_6vzi1SzL
zJLBXk>t4)7F`D77kBngc+*2)5V;*N>8HY55M_gW4lZsydt%X<fvr>RkIAMq#$gnYA
z8)oAG{}!dYFoFf%AEN)HXQy9rYx4RGB!Upmg^T;u!6uGJF+Yx`Dyz=Z#b=ElMV&EL
zR@UY(CE^B`OadFp49p>=0zNsB#plnizL2ErZ}WdU?He7blENO}-LL3eE>Gs;C^{t!
zZN>NZU-;rGO|2x8Z)9uZ0tzGl@#2-6=RxLDIz?x*Rx?(!DKkSs=VI+R7?ZS{QqHt#
znZ@_xL<*~v(iKKGIM(^RIbZrccmXQ+yQ!XQCGjhC@VW>%jSEqt4h|`y=gnWs3n8&n
z+?v++6bD+(2~Sq{T%R9}nN=6R3-Ll{TYm1nJdCb{AAGK?#fSgf$-BzWso^zlW6bT8
zoXPPtq46nw$D&FbT<_nIwkIMN$|y+QMS|eSPV7d-k!&iq-<4erT5=%DM0nuqwxSdX
z8s^PN*c!1bzv{VLr~kTZeMD>!tYn6DzBnv`5492U-I5yu-T$nM<!Qvu!jvItIS(wS
zSnp(#W;Hw0>&CnpqN)Kq347yl-IXJ~ImEB*LeyFSS?3$;w$J$+9luW^DC9clz*Kfj
zKYdPqY9R(1MGiw5MepbRbp7G<{osUD`sZ}Fe<}l{<cg>2YAmrqZHsLrsTqy6I-RGz
z(A`Pug}s#$LFt!Jj1=T*dt0fxNx@}m*^~_707;AyxAH#HUlQcALO5eoEp6lP!^5rF
z{J8Bry)RyG!W;{HY=zbboF~h19EUll>K<fCjXLGL$9CsnoM6?Er&|2vgkdZ6PR<b9
z6PJ=4v>K-A(XTc$zs#OUk!?6s(8NuLDWyLuG-P$`)t*e?;nbnY1;;ml(UBwR$qTLp
zpK#yE*@*bM>&IlK5NK%&sR7N}sQHgSMa=|(yz^;Z<^utqaF?K6Ojg|EYhb4hXEIeR
zpJtHbYlFT|rEv!-@*a*lok0rD*UxiB-CfbyQ|T`2Q=bVaL$zvT(vgAuj?|6UZ9N9R
z4Z12u9ZN#A!@BTaDBOj)k!0RJ6{JwDe~o+kw-Y=60X3}kc69mLd)Yl*Jp0-xu1iB+
zkb1V>a;FT(!PjYr`m20kO4sP;pP3lq)CQY`BP&(g+W48#r?{g>pyzSdyqSSt0Zfj&
zqVi7Wo~7vI{A{#mPaHkoGn3E$JMdOl&Z!0<^!S-MDQ$xx39QJQjb7VU@yUB+Y3>=O
z6SDrP>9_($ktGlB8l5H8Fh`Y3|0?IRRD>E>hkEI7m7I(!D9VBT!+THv{G0(wfm6Ks
zfk&FrhaS3GM+)Pg9X2^;+G&<%%l$p894<A9q~m3o@)Cdq3r6|ER~rNW+Thy1&;OU-
zE9H7hv4?7Qk;fTHd0If|5aP`I-2A)b%>!(kGxc4j#sEB)xF6=*NVYdwOkY9QZ+SoP
zQzQ|MV0fCdF>QXUKdeWDzXBmX<4GdT@|PkOk?BVEC2W-`HhA#TV5IELvt>GwyAw|-
zXFh@kHx4(Kfe`fN+@tWo+8^bTlyT}~K9{}Gb{T&&*A`55_L|15xr<e%xynKe`Bh)E
z?S>eH>@coWMcQh<5@H;V|3RYz^KJIlZ=b2L7RYmj*zoi4(iU`@QYwqSr&-Y*FwIHF
zYj3|@CNq;eyvD_l<F*a(a%a<i%wi5{Ni~6TXohHgo$L@A<X!jiLuyQ*2j`z;;W)HT
z-1JYMWrUds5&7u7VlUs(17>oxFV`EC6!bzZ{j2xF3d9NoAS*i_yJu?w8?QXeHs(=;
zJ6*_E<=1EHb6vmV-MY8@I-9}1+cvKD`>tl5Ci`67^sjo?*S0(#t3KPGRwmOK+rPrr
zks5zQ8vXfR>2)?39_L5N0QPNy6j_mSAN#vZVD+^g!)=L^W-7X6O+Wbcv2KGI)m{gK
z4}U~p)y6aZ#wXy_arMfnotB2SZf8d*JNs?d?eVoy&-3^Sq(+1(L>yz<-oe#AJK)1N
zib0J=aj$eXgBIrBhOUIAKy8#KW+zNkQ~x0i-N^H2#<QG#NrRb1pQ41AobmVeru6@6
z-_Y53{QM?L2n$wv?u~?K3~zz?TqV#!ct&dH`Q|wrex3i?+aR?^r@Jsd`|NAg>-ctW
zbGx|zCUWTChY51=Sof~E`4Lxan0%Y$qt8)ZwB#u#2YrtccTxQ%{Re-hZ~Uqy2cC}i
zyWTD8<NJDMW%BJq5WFUX@3IbO@PjXtdKUMXoq?E9SpWk&)^GLp1TI7ZmvxUwYSBLt
z;%;nJ_Umy4l3OYmd%Cqk<c)5NVeYhfGsM;7`Do|`@x<S6p&C?P)9uTBT?gW;uerHZ
zFaJ9{z(1W($(THCR&CfLtwLt;NA?E1vr%#-1l1Ue{&{*Lfw5%-R`%@+WchyDXdq9T
zKRvuBa!vhd7aIA@`#SH9>)y|k9o!^`5>eN>h0&(_zKu2dyYH(jH{UNp(7ZxcI`X~s
zCXs)YPumdc`EgRm277^BdHI&nC2Y#|*hx$wLjTs)gCv3x@Pp*_Dv)FN-U%dy4{)N!
zgbc>48=uaZ+Z4Zzw?zM;bN(Tzs0<4+8u*jBY3&h?mCrzSP;v{8e;Q#=h{&*XMGx2x
zn2>+zBk&u%_zbrn_`bp#{8RRp|EU^NJY7S4lBmn3@3GHg_xr}{rRsJdxwzwY|J#O7
zl#nUB{NrGdbp9qL(QU98<WF`No_U|3`1r}s6MxfjgTaCOzUF(YZdIS}jqBf4|GuFD
z&Esrsif<d~%7r7hfGxa&j}m#H=zR|}T?Yf8-cjOieiZ2tGovKM%&m9d5B}THuPF}<
z9;YHO68^*2-vNbFPfo9Ms`QxwRaCmg-hlY|4R&y9@NW4+4sB1=+G#vxhl{p&TZ^~v
zil1?J=ueP0%YHf_Y-ro2@(h#AHGoiWBCs=X1DAAp4(+63o;M4hhapQ&21N~>dc8i)
zqHJPGu+(Mz!0f!XD33{6U5BOO4+8hhh#F^Rq+7cIH&g)r3_!3>w-s>$O#YsNfbSZ0
zq`Py}TjpdccBSlwhX*Vum|&at{6Jbr$Tw?QsrXrMWED&u$>isrF!^J|;qBn|jPX=c
zvTf(bS(~X@L*Uyl5t2%N{akdjgfWt~-`Au6{CRk1XNivKZm2fc_Jn7-K;RsNOF0Z&
zgS6a#&#bh^ra78}Yb;>$ycdKz3*%%ooFrFMC<}RT&Bq1!#w{YdKxR6v85-IG(&@yd
zGZj%-(atNg_b%n;^0N0i$Oc${ntS0oOJl}HW@rDMGsKNOhI?HvbnvW8On^<c8Gw<k
zLK`aM&aySrA)V?dWbctU$Uhy9mId^AG=?iw%pEIK*0wTxEY-cLN%^MiNVeE~5>sS+
zS}wx4?bo#hpOwPdSDCV#VQF<+M6>N1Fqj`wnW2#Fo|2>H`f_<NAY%r-vPF|zc!2k(
zg$_YRv^$O%(#(KQY-ojui7Wcx4^O1{spjOa2dh#<u7gK>?heU%+bu~}D*9Lbn(wr=
z`Ko3OE(L$(O6=du>|g?6_0xXKF(Xiq^)WN441P1GN;M)YsTseSl%R0tQ(ib)61c=H
zpXRkHW}bf2!|Vbvj6#fjx=_*7A50FboQ8JZc#E~XFmqVEWB(87VWxnqy2MVsDrD}i
z0I4P=a5f|Pm(X>DGdTj}PK3y=YU_(==?23vstX0-<ofaM4e^a`>hJ2b7v1fQg!R;m
z&(T0kS?X$amOVo1Ku__kw{V9Wo}9PK93^w#jBtL7Q>;Kd+BJ-C&Fmh;(Am|oH=p{;
zz?(vXH2(A|cGuxOfJci*7oFBcsd#lY(7RkfYa+QtlC#^136vK4;#xx{c!9!-%+tm}
z@zmHSaTYs$xUKv(U`F>iVMOg=35mUn&#Qy-!4dQWeS8)@mv`R3f4Dj2Ev3w?3gz5U
zIQ0}P=v@mnEQ=WBs1_6AS<QqKF99(s()EpZ#*uzf&?uwmdUU7Dg5FhURM^mIctjez
zta6{IF#u))&@80MvRf1%S>}#x#0=${5G}y*l2<=*0mYMi&*s~-ploIB(V_(N*r+9&
zP6clpKdjr-I&(8VfbJ@v<Tzm$EXMuNh?xb4OCwA;_px*X{wu1h84`@MpA^cMjG#uP
z5!{!o?q5YYjOx<oz0<d31l0Wz=HaL?;V^A(W5OF}nLxkku+k%<YUSP@@Ta4nsuZ&>
zUDLRvN+7<N6S{4qa0k4ue3ON%H!b~5Gwm2Xcn>gAj9Pnd6LaBDC`*l<Ma^86L7OW9
zC1FsZ)aO~?bnP|ubEC0IT`h&wT?v~ZJJHPP=uQwizJ<~?NS*)002S<Tb5<fyuv<fb
zjE!O4ay9C#xD}oer~nzUXQPTO@=e7sp{jk`#PTpnkW``sL|7Mzmk3yB%InMm7Sk&Q
z*AWnW#jV)btFnbv`XVlC7Ix5Cs7HefRzzY6VpZ;0?_h%-%!<im3xnTSmIKGVuY;Re
z92VRM8tlVe%xX@7(?zqOru*nk-drBWBq~Qrr7Khd2o++kT!g+rrbl(LVy&{z!)^s)
zZ8ok4Wqp(k+<duOW(UvP5@1*oNp;EAZGBpYRq+2A-9iFZK^L~!D}OpYpbRN;r6z-6
zO5bUDF?K1$Cp?eHo14H6Y8*DRHAdUCiHC?sm(?_@(o^`k!YL2h0$+Lm?c+ZrwS9m$
zuKihb6`{g|LAFvGVQ`&bY$D&wVB8V~0x8l528#LNgeP(%JaRT6Y4BHL&V>Cs;W!cb
z9I2HW@(QS6>hrdL0sH`8RN)%EJtQ_=l41GzKAR|%>ScmPGMVBQVFxP8jY|1xk8t4?
z2Lq+ZT>?lh{gQL)2a5-R1egs-=88ROk<e4t9l`Rs1K1g!0PW0d1%!BXnt2|uH!`1A
zvoZkZc7A>V0gh5G75#L{v}9Lj{C<1S^fWQr-9a9SVxO%@+vn+lzyFYm)4D9#>lN@2
zT_Ac-G(RlqX2%am@95qfX5WOb5+%&#^GMZrK41+A4nQL&;;$$ahxL8%g+%adCs08^
zf?6(A)ZJfI-#*ARaw{@fBHe`Kak_zISvEgIw)U7(B7VFLH)#PyVqeyZ$gHF2N;^`<
zc2Qo;DTi1tjEC1y<u^NBlvX~uI|NM}J4xoTTUrc)Wn_#P?nZqamm8^ROrM#DwJYz3
zvz#VAAjM6%x<PlDXM?rlUjkHx!!p*F_!~d`ag60x1XQK`W_k|KPtoid+IHBH*@h)2
zYVlye_!TB@S>&~RR~xQ5$S-pAQjEa_2gnie(F{iGYB>rFI6uwEe|xqM+}#yJlqR#a
z2n7%zsf7#h(~a$&(X_8}8!v22nk1AnKjC9oAlEt`C5ncgiWVEPKXCJj*VLm7Ik6>K
zZYd%t!c~dqD>^b4Xllhjc?u|6S;=_?DZ#vT?B%5O{w`O%R;bl+HyB(EmC4)GdypPV
zO0Q2sHfHBjXUhJzJgb|nHW14%U0p4Lc4g;dZa8fQT~yKUix9}!?cbGrr5!=f%{o~S
zPzk*vr)WX~&d3-*Tf#rbYLt>A@gLI~LUrtyAk{`SeGHO1L<eIurJ0X_7!rN|HC88W
zm?QkGlrFx7usj?geFrn@$mRGI<}-NyFX5Go?W?3_r{30|0J6+o_X_7BGHG5s3_yNJ
zr5FOg2BK&h;mb5+oFvN7?&vZ>wk8V26_p{z9|W0WXvr!yOBwbU{PihBj(LAwM}21~
zkiXBu8%NE<gfo>>bn|ns@Hyxq8F|PHFUIjOnTWEibPZTWipM0rHGi1goX82x`N&tV
z&6SUDpHke-<V2$49U90;7cTPSCOeIib8<Y>!O?K%FZn`N&ZeGK7Dzo>m{X)utAYi&
zdWPYQ#9kaYZ*$>gAvE^_cgm7LrH;<bw;$uCnOvvA(%!vx1HgmfrMH_TtH~S-AfOD9
zDD|EVujnhO5fusSEm4n12;NpHe{)?J2~3xeJKUNJ2Z83gtJ)fzji}&HPi#p7GSzPz
ziPn%XwOpV$;3mC%qt)S5A0iK^3`v(PMKOgh2ZvEdMDfT;2P*AFE_`U}^Cj~$b$Lwr
zF`F(5*a^9?LswCvwb$Zyz!R+q|I~xb9PdPdV^q${*keIFRJIB#V$zfeutx4qc+trs
zXbdKYM0pa13WU290=yx8m4vv@o0%#MnDg-Dl-tQn{jq9c$O$c1aN*F=7%CFT?joV`
z&dfCtS6Sy}oqW(^HP|wD;whl3h)`px%~1|B2#pn7?@nN3=h(q@5za8?_t-+EA?rga
zF>7c5OAhsh3&oqgz0m@MOjuC%8flx%JOP`#r}S~P@O9v?fYv;CH6KrWNj1nGUxAF-
zh!X}z*dv4iLjfs?gx0<=O3>#Z0l@<Y0k9O&`~;j(7VHE^JebSD9pY-RC4P_!Y~Kgl
zlp6@ZB{h#CiL~U9zMgr;0ZL*C;?ey>fzbo^8=W+Ig3zxK-E(6&`u<|}E10s@b5c3d
zArC;?n!97mPb@$A3P@kb@AEwj==d`flGQWw5|10pzk_)q5jsePVf9b|-?=Q9rn-Ej
zO+7sWR3`>SUxu)Z<lUI$guUI6C$8g`g4sM0J!qhV2y4sSa@;%*-3}hf45dt6BC>LL
zgaS5)m;>HyrboLnTRf}t@hSwRRY;d*?(%}^Ush}qLYB<cBCJKkWRIW-e|<L0KUj#S
z-N2<ABCrxT%Atw7B<NJ}Hed9tkKFsi^QUP3z@RrmJO+(KzO3L^WCC`$i`<YS84Te;
zLxey&l=&$QeP{*s&p$R+9)=wn4=@u({If-h$SaK3is;v9zKEJCNz|^8zCP-gb@vr}
z)k4Fk&cuymq^RSvJS23~XeVV<^dTh-uI<!IH;)BY<JL@<d(JFI#&=+1H<=jQ<);N=
z-C#Uoz_17f`;W5)*dsTtrPkCuqsUtjfB;M_NWhPT3|CKT$`m!<aYe_*)*?B-tR7ip
zRjjef>!NV!=0=J5EoY87G6GrlrX1W?M74P&zZ?>yXqNjAh+do^`RSnTG{8R(8+fIg
z)4foe8%BylR6%?;@ps{Xj|7@+PYW7oYdY*E;pq)N{0g!u#VCQv?QSI$Ul9(AdFaNB
z)ATn$Y#ydsv_QDp%OsNpq^~B4c&v~j8jV=KM??J=|1WaO6lZ>#hw<WQkyNq2n!9Dh
zVgj<Lkvt(=q+zh0gz`$;3#arbph(A^wF-%^_z4tb#;7##sG?IaU1d%g5Ysh#jiRkJ
z_b{<zYe{%msxFqgrZMkUZ!?IeVx&PXSur~Cm0?i9R`VxGaby0PEn;^~rA{8CXA#hm
zl8&})Pay?>o_Ooy8r!^`eUG|IA8nHEYCK>!6XSk9xR$cwD6P;$&E3sH(akA<LH+7X
z@biz<0wl)|+O%Ja+;4v|({`0(LF3_pTJDP0YtI=lS?Z`?cA5}m82<|1*z3xM(e+dd
zr82l006Ty3X@yc`e()|8HfFvrT2@9ZocBT+!YlQG;uZY86!92QDDt31%$9Q9$k!Sg
z5vll|0v;j3IWz|7#Z>e6+=_B#*feaear*MBdEJ!+T`rz&dZ|(^k+s;Q-bEO4Z@X22
zhy+h{scER5eUZAKgKYJ|E8P<=EbWw<@`&|)hDa@lC-RZ=-5;0!{qblV<tO76A}NL%
z$lxMhVzuoB&+fyXQB()B=<DNlF-3*xYc!J1TYao)u72PKR=>yGkM8R3-qvm>@8@)i
z))<gOFIuQ_Zfw2nhRyDSU-57kq=x3v*oid6As3BdJeHki$Dacrz$~kHKS^iM&K~4v
zK(J2)t`>W{-gx_C1`b#X%Dvb{pXk;B5JjM_ia8{$hhHARD<13*L&$b0&N!;IZ2s^j
zR0u(7W}<}7CX+)J(~t2D6=nccXPyUKgUJEu9V&$WQbA;7zxg5+8YOYHFi<mpV^Y<|
ztz_V>Kgf*4^&<Ye&nN_(v*P(0{$e4Syx-%&aU7>gOBS7&$36$eZNW*nEyIr6jn7y_
zIY#s7cUVNKi*$7v0ew_NhzBdHp!IaJ&R!+~ybhwkVUnVSjEQLm9U}`vJe)7n%BHD^
zX%`1aIHFP!R8})z#oVA^h}>>#5k{FVxV5wY<mUqZU+gYlm+zf;TVwv*uZ0J1#1)6t
z1D{&F^phL15f6>ETht5}?qUEDo@wP?mw6jPB}`^r9|(G-pD7RoBwrEIG=+6PJ+f4f
z?14qn^25)90eba(kP`A<rMN~HC<;i<=tT%Tc;vl6j)v0ZaO1e4Q%KZfr4>QTDmHAk
z+1X_feaQ|y3a$y583(G292s1g!H=SNEP`d(`MfGV?gn}lLp&yfUcdBVeV+=kRgSC<
zJ-dJ(=J*qEC_!hM@$NB7&Zz}9S>IECOxAtRb7zGwsfYx2Sblk6WOPAjnYv`Yc7Jxc
zNbPaC#PY5Re(&P-{>Hi#9@3A_7}4VRE9$g`a)Izz>_sj}QaeP_+DU3y<*er?zz?DV
z+}DQ#&}iY0(Hu+im<ay}JrF2e6g-FwL58>%0v>?|@~<AW))5sVWEC5T?*N<^6ITAt
zfO!8Dh^@%UaU_|b&%gf}e(XtW1~O1a6IECj9+#^Dw-HJY9*?19wZpdo=8EcFL91zC
zC3`~5@Z!IzJd=}YLw2?gGn;QiW_jUf&etla#<UgzK_<9}3U{<HUX?Xm3jvmEWv+8H
zlP32RB?lV|oEqUxCZ=JMv{hF<?eaLk{m<l4#@(JtOOG`7UzJYxxyipI4o=QB8)!J*
zmJ8*Su^ccuU^I{DGP8NU8|UW2%In>jgT*J`?kEA~HhW*|)RYv;;j%cuM61;po`0!l
zlX7SA8#bRKRCl%}-XTwCP}tD85GIoRjIxkq+&Xi8n?Za!m!F^_MRBp*x6-`k51}Zo
z)sp9g5_f)|+E3lUuOF4QjVIJX%P-DNDd6;Fg6!vf^c9%?T&6h_Fnk*`tgCrNtg2Id
z|75~Y3klDmpTdd4R<R$%3bH8mg9Q(p4_~;7?u5Ko(@mY`2}saE(LzW1Iq3D!ipwG0
zmq=1}<NW}hlSvhPBkG9$Q#uUT<ja5W!S{M^%%%B0_`a4h?oA3+K2X?*1Q@zoocOPy
z0tYaoMPDx_cW198)dodHT3?!F5;80OJW)nS!HWZ)-b0e5jz4Sk7+V1Zv}zNA_2?8P
zAYUcIB37H8G!Bd}2aHkfEkFDhyx2kcF)C2~pN2z+ly5#w3ZoCuKl#Yk(ejD)kY8ck
zQBFI@KB^&5tLC@C?KlTokF~q+viBn#(Hpb*mR6N8)RIsvApNJXzKx355?>OC9+O2N
z4uEM_SoAY<&>g3EaZ6*jTzh_}@vopBnOckWvQowU)*r8MLgX)lFo-kkBoU<}N!;1A
z(4T*bZltwjX5`!xI}eM_1Q2w_H(k<k<YqFj(VEh9Iks}f|2OPCZn`*)BhQe3ZQPzQ
zCGVcOcIXp5zA5ZC#F5O}-96^uR5*RuGuv@@#?VahJCpd=m+-(<g<mR=3>e8Rff%h~
zkpG&AI<sxxOHMjMS!s;Czy7Fh6XqgTDl|n=piw?yYv6He4hXA=A8ZK!qz(1dlNZ~n
zvow%Cr6TeLBo>&J{llsnEiz53q{S^=F*zL<dem&05_se&12(?px9h;7)3zw}5(QfZ
z1m^wN1jD3nRPSlbw2GCCC#cfEWN6mxiEgxtRf<QWVSddVE`o5YZs*jhbv$hx=rNkF
z3Y%sB;&ZGZh)!E;SUIlt=kI``(>5CSLL>dzzSlj~6!so^-g#mAR8yVRw1WNMvisFw
zk*9t!0a?oq;K%8JYAzth;hUJ!c7`6jg5s=}M2N?s8Q&s?A)JRMVD&rvOKBdWim8j7
zFa8HU9U*cQSnxxNkAiA3v)&>)C&a#}IMC4cAI1X(Mf=0g;M6g7^aGFwE|<7H#=o?+
z?)#eN#<_GoU~siCBsl!W^IDeQ&k7X{BqsD=MT>U-4#t(6$JaqQ^uE)|3TR@x8zlR2
zP=<-Iq6VND8mf1CW8Xxe@noSbnoVkPr?6jxzh1gIEXb;fgm^fMCghgg_dEp?ECNRM
zE`GJrK2^ZQQK5UQ6Zfs8>L?n+j@jF@G}X>6lzaI+`m$P7eE$BVK(X_~j-ejnMRgD@
zP==wt^K|fkrbfugX2}xP^;YVhGEh;{bpDQ6_uP5bLZ#o!(Oc2#^ZTWTP@Bsl{WKT)
zy5162XNhfPpGF|em1q+}{^*FUkT475kw5n}g-ycbTnuV+3sJeavxB6zk7m&2dhg9Q
zOd6yqD2u5kRszU_RV(6%iTG{yaUK)8WPlexSSnC%SF3|m5LOS9s+7<7w##I)Dwz)y
ziwwe3)WF;^XBaQD379)k84^o8D-7PlW-5|ix08xJM^W+`=fF3gIMH*}%4;eV<NSym
ztbgcN#ra7Ddnk!wL^oFsXnSktd*Em2UQ{x;BEB;cr(RN@#6|N!e<0zoW2ao;P74*X
zpAcu~9dJ!pHP0jae>Etrzs>Bkg_e2w$`usTh7ZP64lgl4S=!M<N`#Nv8#0gN1?EvI
z-!Vvphaz#{0-FL7K)W39n_NP1-t9fjIg_=}V?LVW;f2vHR?{F!D)%JgM&N+7cDL5B
zxvZkuyZnt6Ey+bpljLLu+J>LR9JETrRbvBv%Tj<G?c5kZk)w;qjUtLUgI7lFB}>X9
zBXM4ZIiyI2k7i<JnrSm_A{<=>tCGv3l1d6P;494q*k_I)jQod&YGLq?`dlr>Y3?^N
zXHG(8tB*vPp&-nC^8)MRQphz6AwRKqg9eE+b?W4D*CNr~w1&gQ31v&j)D~-M^&W9y
z5-)kYfGk6*cdx3Ihg8L(-&pZ%60Oe+!c3C3^3y{BsvkA*Ja(D)aXRpPMp3$ZwP3V>
z?B7N2BZYr$*zB9=G>H&gKt-;OEoB<$Q_CA$6jl$ODy0wcphf3}K~~>lNAJZiToLk2
zT`+4jU!C^*OGGL1P+cg0xJZNE^D}f;pyK~`90&)N4Kq4JYhEl){LP@qpu!85IK+JL
z`1rU~kd*ElD!@$XJHSZ9zYG!^UTRsb%q$^95`h>8|Ck5YPfb`wx<wM{LxMcoHG+&Q
ziP2E!rLUvnYg$3UB}B!S?;!oYG@29vw|}1*!>Sd(GJz#oS6E+FbVG{3P+1Jsakc#`
zk9`wP&FIK_{san;G>o~=!zC1kQej`U>Ggx%N4~@OJcsY?LyTgQnJQjD!$hTcZZTA5
z{>0E9;*C`t>b(?vOmx(j+&<P)C<uYm6p4#_??3y-HFq*OdOA89Z4eA*Df{m(#W_Wa
zD2vG7o@cAXFTaAW$>?y}Ej^1UHSWpXQ!ZNuAOV?~)e=v!q9U|W5+Su<HbP3_6C?B)
zXohCUhG3N9P~*^{MELx4^1do~Un)TTvsE<PB-L6bIVyZKfS{x^m<)9C2<T)S`dWGq
z^18Xy{Z<Y_hmzhD_>@QHsiR#24v7B<ONBHDbhoyAWfU$<P8Ol)=U`64Z2l`7Q5iGV
zo?vL^F<U4OqdxySV<ILn%^o=6qVTSu_7us&4K-M9yDmI-&t0w0GUz%wMPtG9i5JCt
zExnDs7bIPm%mG&`=}3m_RDd|o<HEQmB41JB-h_JeoFt*a$sd$foQJ4Lrxq(@=dmA`
z%R!k$$mDQY*@_u9W8TyBH5e=ocsI<Ye>340-hA-soSZZ}3~q<TD<lvG<_n|NL`W9A
zpP`^D?KLy=^*&QDm@VI66rldQ<~~j4dBn;o+!==STmX%b7&-E1z^U3}9`M!IXG;o+
zkKU6mI|a?4HSveEZHDo01(_{Dl!uWbq%0I8F_3H&6DqTMsdC6aEpGo%$*yy2CO~+@
z&R)qjjIUH71!6p8<|&isXObQA1{LyLf95nh8z1Q)v!4Jl9x5xH0RryExzQPF_dtvX
zjcG32DQmpz4A=1m@m@0-<uo!$7{|}FSOV?AgP_VbjA7FKOB&3v@#U_LFVKfQSR9#;
z-vR?jeYFUsF~i%(X8MdcOa@#Awqcs6#GJmEk7q=C1x4FK#Cu5+!HRQB$6f4|tD0?r
zAH=uybJ*dLogjajP~!I++O{fCX@D4y`S7@#0FNB_iUc2)Rn6tbL+++{w9zV>CUtwk
zJOHq)vjUgtJIW!xNk=dfbDq*nBvStfx&_+TDjTTdRhO=marRKQTAtM>do}7(fPFTB
z_CKAUV}85<DiTc&a2FUc%C&d%`}TiX5E~71<fmwqzbc9sw=>=<s;KHnO$2d(THNtF
zWt>$3Jo1=(m9D}dPGDWVd}+}-ios}q@oPvN=c-&4ZbuQJX5E3_P|SR$UpV0OazrK!
z6gAvN1QfklDB}{q{cwv$ymngqW$jm^DEY70x}*#MbQddDR$hTJkqY47f3GXon%qPa
zCdF2kBTkAc%{G#=uP^mO7US!@<Gl6t-WaNwLzmPTkD?%R5cC(>I2B?enJnuI`u6Xi
zQjj_)^Y3uN!;rYNWWl-l;47^^YxksuhL4RV7f<P@iZw{*(1K;|PPHDisJndd)xQ|Q
zQ^islCG)w75ikCR`4d-=wf*9Ln}TuF9Od|c6DDs&n4C9Ph#2H)+cSWsiL}*>6L1#6
zTWLi27EzM65sen06;IDEvStF!ZU7H`h$7OBVXRjkS?b+*u<9_VAmiG?d!WYZu^PVs
z-stYX$@S#*eaLDwp0((Dz5gwo4*5&vx(`+V&nR#?O&tPBI}~xE8#m00^jSIZriu%p
zHps>j&;ve(d?(O7pBXLe1&adC_Rf7)z5+!$BgOZz8YRmp#1_dj9JskqUsu6u<x^@A
za>nc5;h(9ul;Zi$n5ZGeKLmUfi-op?t#dvSm3E!5CC#zS&)>StKCCK_lo1R-faXF2
z3m>@Ziu#;+zB8Y2O?&}?QO{1~zpTL`Ynt%>ZwFLVx-lQ?wk)l$uK!pbVXZ!te+i4Q
zo%u+jO65Z$=VH5R(}+;@6320G-ak4L{XS}=nFz@Y8)<OP5v93A*icc!f31oNGTG&d
zasp!Q+N(V*Fq1|&$LJ#^lGBD;3~-^(zE~vJSm}n?5B}iVcHn0VayFrcYwi<Z9!^^<
zz)qQ4z!nw}E)o_3q>3H6$)KPAYBE0+Cl(cf+6;sbxsso)Tj_=P=94FiwRvYa_=)Mw
zGJ_*gM#vm+RnN%r)IrBf1$50Qb?X=3D!RN~-&r8_MEewxD!qtK5d$LGRd$pRRBRUr
zScxqdmu{)UxB#b{Y+P}oRfAT7SXN_V(ClFWVoCc-HdJe-6^M=`&`_f$LmoVojlZ5g
z4ao33PZw-;4z=BJ*+miv$_7Fa&=V4*T)E|y<T?sOf|Oa|(3TI@*Pt5fiisa6*3ICL
ztK0&U(+Wk@>?#`9T6kY8A5j4ln6b!+5^P2N5wti8ESRuj@6hqg2#$<o`o)ceGVEIF
zL^(D@F<(93PvHA&7dP;raX-kt-tkY&5<spJkvU?5V}0Z6!mD6{ho3t7)$BswYkSW&
zvUioau$;dm^?!Gi+(u)0pYG5F3a_y@q1X!WTz#}1e>84e@Og(J>ZaRky0QX3#f8Yq
z3YEn33**D6B?uYjZY@%z8Zc5lc3(1~rm*sG>Q0*H&8$GFIKnTx$k)t(Av9cMalx=_
zF#WQ`Bz5Pu1s<3m+_)ASG-U*uD~EK+$~u{0Q717`=npHwprP<WUWx~TF17LqF;F!T
zw6qSYD3ufB;JyDVL?6em%&*^3k%%aer62-(@t9#P2w4QAueA2r0Xr8EbMt(cc}D1o
z*1_9zLE17j;%4NPjTlj}%gVnJyRy{(k;)a<Y(k>CAPc{IjKyj9!`yO*Iu<*kN`xE`
zAXKXTg{KbZ>xqZjO%wSpev9YE|0TeDf>8baXKi91XRs^Fe!0Y17!(le3j>xyCqayp
zj4VRy=)o?7%j^>h^MRQl5IY4T>#ZzVGkWM?CUnweUKp<|Bqi73SX1~N$o!XpnKBeH
z*Q^z`oJoWHq7nwuMJ`zEs_hRtUf3l7S)3Rb7j4E;NH@ul4p_N{RZf#pMp^m^*#Gl}
zc;4Zt3xN)CIRRU8TMn@<h5|Q+bD-j3A&5@LzN_I;CgEF)T<kM5<$?fWY|D$=l_s(p
zaY{-NVMlxg+cDt6Wrj~C%1mkeh#=9+GXrb8%u*%`aZ$iAYC{mando^oaQoqh)s6~D
zd7D}#?c;h-K{y)1xCtG7_h!Po+R1GgJ3=l>ib>U0?f^^#f=)++=jn;04EqZ^$n=Y-
zd8sQ+ns1D1pXtnV1jJxow3l0UiW385L)RULepHpG$MudgQuTP6al5bQd#iN}cQl6@
z5fNF7$y*PA85kH2y@au@+0TOp)2zAH&*%Dgo+1h=Ka9WTTgAOp$tIWr+}^Q<i;Ct!
z&&<w#xpur3n#%~OMnH5`wCp~ROC#Ru=hm!n!CCWd?jk3vsQjs0GgC|1Iu=#kkanxb
zf2LH-Ml$@Ptx{>?{(8%95+Xs7cW2r8+l_MOO3<f9$PnURyQE-R9+X`=|6eE&P#_ba
z;+^dG)w>SZh%6?}0&jGCh-#~C!8qFJa21U7tH%c@Fh~tVxDg&;NS|xyqEpg0zD0-)
z7C>=i*ZukQevBn9>|~q<KgR#`XhuB~XZ|7P_xqf{EiC<j0-e?yuXK?Ejvm?w8AFY$
z8thc0B#sCy7zV+-$W6+i`TPNCvOyxF_U9#Ybi_U>L?Vk`k8W(s@@6NGX_BUwJVNET
zvae_D8J;QfHo}O#!enn3txf#E+-kzF;mU_j;a|Vv^s-<U7|h!P=C>pcI*{Pd8csXe
zLUObu7P$qS9if%<_n4vwq-BbH1~B}1vC~EsxWtDFu+Go_WHg$eDEeMNWJk~F9XO4F
zGqc-!-30|m1k1NRtVSg>>u@1GvshJbtqDM+xKAqyfd*tt?i{7s&IO73fw8T;rDc<{
zIzso;J9Y+)LdM3onkJCUV?P389C{crfqB$B$;l<Nh;%(CFq&olat1E%o=kt8w`*(D
z$qqZaalYhK3t&m%$G{2ON;*`oAR7|CWW=pdxhZ*mWWH2#mij8xu|tqVWP;ZQJDThs
z$ZR6#JDpmr3wu^JbF$Q(^pr)(kStAb9+nHcxg<qeq-v8cOVfITi|nznv=`C+{nW4K
z^9zx0rGmStksUZac`U7iBAgXeo2l3qnT04eltbq*Q%guxGF0>#p4hjTcsc6gzYZ8^
zp35U8MD!=-My#D?i%c>kp^ap7CMrSzq~TRJe&$QN3jZ(YZXwUTV$K)ERXm2zrsAK|
zhq)`=zMf9=7P@)5C6*Nk3R<l4lgnUXPb%7Z41MsStFE4qwV^-6lNFlHOcbZ%pECi1
zQodRkls*N-5?P<|+|e*dlx9qGg}iF+Hr}xkwE3~#v+`}WRUW5Gi)y(sLKj`O!%1RY
z-tCH+)pIi{4tt%xB{&yP$7F0d8uQc5ot&JxW`%x(zy3Z0VzEx4CPFtGewnm_!{19k
zUJ8t(euFZvTL;`NDC1TN)+Z6%np)_v)WS=NaXmU)&nFdHWbWwDyY98Bb=&`zSD(1|
zJX^I=39WCWu^ug=aONhPm+%UiXsGtN)P8pVFS&wC9Mg7ND({p8k>RK>XE>R2n!DNd
zm}YHyad=tnu8;TKI!ZTDnl-!b?M6|48eO4U^{bF8o<E(MHQt`&;CE9{L}!WYJ)t%A
z^29+}K!3D|Rcm56qAQsZ9x-Msq#XT=B#oGejQv41+jHhS%0%?^md1{)Z9S<1WX53h
zub*U`+U#1b!&cQ=gj`nBje1kAa4Te(b$X&gU9203l~OG#h>6U5XxwVSN_6DV8Hdht
zKGLAFVwOTaQ{ofE!DRy&)p!ajFwD~6qZ3LrO1s1G3|8jZD?)q&i5qdQYG!z$HcU#v
zO)Pg_Ztmc6x4=#j?97;E9(tluTe3Gnar+KNYzAS|(t5>>|5$rI!ie4OmXAnTJPP>p
zc9s8nKz0QLp<AiZAl(1c2P5VM_PU1nhu}Tu59iU4_6Dki`{m+4(aSG;V0%^gc>_=c
z|A1`zB=BiLsIFhYY;MdK#w?jxc~W?7h;>qC)BT(!#p9a;35}$HOfZ9exSHC3sD#Sk
zOKx<c7}Usjd|;0L%|i)%J9--y*Oh<hQfUWQKX=buXk0u!O19FWzgMPWvhi|cf-bZb
zXJF)q7JlKF5Qd}ldePS;&EHUhhJojwMucH=DbeFmOVp${QV~v*pGZ`3G(I@9C{V{b
zfzI;~dJ|vR#x(%q_DA<jm7&VmeLG8aaE|UMiXFC?Y|ff+wMe6P^`WQ1t@o6Egr@nE
zg{Th8>LT|DL0OgO!!5b$D|dyCwKpIUp@l5e#mv_gZqmtU>}NHHL_~yC7F{IQe#uRa
z)JEvGPgUp`N9lBwVqw>vx#F7#2KGYg+reM?)KfnbnegM8p@a%01ndi_7JtWtD3VN3
zqv4)r6`<r55EEcAdW=V|=qGE!6elXGtDbwL^wRlnO#Ep-DlHp6IbAs4At`wl)_L>Q
zS-*Bs?k@E`ge^rd(_^S?+?^cNH`e`Gd^qWNu#sf?>gHB!)@zk=CFCf#m{hMOev&0c
zt54RGX76aI{bDt#_FFGrTur?BG&|ck%Bzw%5U*+w#2BSQQpC+RE^_~Mij-x(-c46q
z?P;#>Z>v!tM}m}BnG=-7I3}LRJJkWu-V(3?&rSUUs+Y_(MJpP>Pi;Nh=8DmHv9F%f
zj$|kW^Z8~4Hc><<FWhHSDseAjKWjoWI)wtY#KR3}MV&;H4pIANzZ~P;MxeE+)h=w&
zv=Tyn;F%mz(somL?raKR7=5$ll#$>c(DR~Mu4|oYo0rnl3W|tTxd-jpXHA0<z(vtX
z9f0!^diOo2EPR;r3vnpRVd*Vi@7n5p>#RbXhDZO080zYkeARo7TFvlPw9sq~VO3$x
zx0ZpEtIk~hli<b(KkVs@kN<}QMiHxZu#>%)JTVR>>#-<E+FuqZ96_>#U-Mn$vq5_3
z#@sFUQrs%_^IVhgmMzFph$3>5S%bmPG_Jick?ie|dha<fdl~#(UHsxOB-VIUY5zup
zixFDB?}s5{Jj6(=UTEuoaTms$Q}=$hJ<*Bwx{^iMrzTYjNHY$HgOMx#!EFk#jcU%l
zQOQIMmw{%|g@VtKF#JmHReWYf08yn(v?n{DI+fqeT|Xp-7Hv2zQnAq#fR2Np^p(dI
ze50dEPfx#YI+iu)TVKCQR=A=0YnM#miSHB6%Q)_ytI;j&-Tn;=wPV|3^S)zi?|0I(
z2`?4DU-7s_VJ`PHY$oN6xDvhBoV+!2u`&+ie7IJ>$VIlS)G-xe8G{Y4r-3^S{y2^?
zMEHVk{lNqZB8>a%Nd87CUqTH&mMvBxQZ2hyoYVuH)5xpDzrhaPkUPi7Q6^|k(nc0E
z5-Ax(3RJU-IRqTJhHC2g4Lp!z12o*f{gs*wQ^RNx;EJ-%GB9o?^nvWWzyfA*Rw%Hz
zJy{DQtIf|+FyA$zFFxOuxZ!#%mQNwhUd3bHa1hrX{pEk2pB~2m#&*uKm)JFZe@}fn
z5?gnlAcn?yA(;iDZ9VdgSIZUo7V|!&_o~PRFDNXeO>0pqe}zFeUL!L1uv-RbRMeV|
zkgAs?d%CO6H5lde|5`6e6j8Xfc2@i(&S-;tZ|!`xUd&vrpJp`3%HsR3VJQ6Y$`Id{
za@|f-3J2~dj9l+5XMs*!U)$Jc%Kz{rJ02<@U>K2DV+fLSH_2n)ws37Kw0uh?hNaZL
zS)|Qqq9`C=Zj&QcXG6bZoi?rK^L;%PQSd9{8cLP}HH(ZvgITv)rJl;c@;yb2eT-2=
zx2CFxiJZH<GR_|@`r*q5eiyu52~on8W37Hi-NP|Ozhu!O6slxl*p|KYGEMVTTZy$>
zQ7FNT2};M6ODJo+WQXn3h6jN!7LzPg&1xt*LAsGO!%921-!Yx#5Hz!`r~BpM=W=`Y
zIXwR=@pQ8HJVR*yj)f)I$1CX4%Ok+w%lGlM`1Kl(1;lpz_IL8|LA3UJI@tR<>J5LI
z9>k^uW|+)@q#@!@&9p36*t2`wb1buVv$!t`SE98pi5LDH$k7d6u9Uzzty#y)!_ExC
zac;CDRx0+3TX>4fA~<Q8%W9sB(z?gPK5K6Po3wS|Z$VPT<3~*tNbN$!2yM5f!Sm+C
z)SO|8CR-;xuW-JUZFmmekf|`PJ1p!!x7Ipb*bRUkw`82pL5;DG@JxVHq#+ws)8jCl
z`2X?*OSLV<<rWw@gwm9o&<k%C>{A*WhJV^344(gQGeV9LSE0X6<t{R>bERHx3Gq#W
zXPwq_DFc`FULK7yiJkL!$Yi<1#<(tt-#`vtG7IA2V=n^Y)u8oGvO8FFQq}MnD<RZa
zUche`xErG-+JRqx)mnShY3*8<nX<&gK;AML5x@G92VM2IZD7(&tj_j`ZZ*a)tRIXQ
zbovteJ;Mo2z>r9F5#6Gn=v@l;h7}-<<QpH#@wAn(8el|-k$7nt;%Jq9tgc5hkE{cR
z<_h<KSB>348GYuwty#4-X7kEp`_Gh=5f)$N%S;u)l$D^uAHZ+{Z_GXDWD#Xzbq+Te
zm(#f0DRhn+SCNCQH32y9<iI{pa<yf$!C2+mOE>Vly?nlTk_&h=K)WD#3#73W&P4<~
zW_req@~4drV5_t?-tV$W@@fxYztP=E(}^=1WFosDw;Ex#q|i0IPCcy*D9;Tfme9XX
zcdc4n!g)N7AMXBE4=9XfrnFLr70KS8-lZOIX)pYC>Yke_2S{;T$ceG1+!bSRrgX4K
zQs!WS5WA^5iPUKG8Enj?(@^wx5a^nD5t05KgdCy!%NZOr1!(F{{6v=KxhFk%b7#*V
zh>yD#cIHmcAwM_6V=0@fpC2oRnB5yr(6hE@#k1-vJPCq6iK(V#917E5b3gvR_y61h
z^-)o(A`~Wc&06v4vq(_V7|Xtuo3k;r*h1YrrzhvJgpiZ%ORc-;1jfpEP)yavuet>h
zR1!$l*@2~L{Oi4we`!l3C`Y&k#YREyW1z|B2pkDSShIgjYg1Jv-*Xlua<CtB!TzPn
z;kvY0PY<6Nj|kAV-0p~RY!kk}t|=SQZ0fi)Jl{-d=O%U|;2uuFRPxe<ug#CntvNVh
zseWMU)po}36VP6{`u0z9^6WdJNsWD(9=$JaPCf|!oIG$Z*W$krFBWIkxW<%Ll%lC+
z$H^E({39V(pjc}BQlj`#ewQa;+FqphN}&61jW_3T-I+Y~(J7A$MU_km?MXI_$JP~x
z6F|5lewq^dsPEp!Irr1Mx~C9n%!AhSyk1yqRPsj1k{zV<P~s}3kbO2}hy{gy#eSUF
zayaKx!Kc&C;{)X@_cn#IV1Q}z=Ek&v=24J?fo2_5kFntmU!szI^mu^{9wOFf#CW7O
zQSR7nj#4uS4G9sH-sh~+&ia}NZnm)1_^e2jniWi}l<3z^qqmf7O#9q?H(LF?$L+p(
z0}~5aA7px(RFHS#0b+tq$hY6ENTi<mO2)Jgy-M0zCL^}OL5AO)>C;@tqPVr&=rRk?
zQgVi%vHkPVcD2rnP?_8MAlxL9t<!8PvTU0$yu$x*YY@WArefPm87A>PU{qzN<NJ?K
zl`6p4iemX(6&3R0EOpI5=peA)<lvm7qMGZW-A1lSV@SG=0S`|7F;tkewk2m*`DK7)
z4o(y7Q?EGmN%-GzGV~C8?YEQm>g3Xv(BGf%nf{L=xN@p{=MZfFY?Z;}Bp+VoYJ%7w
zjhM4@3CY=PLinLPmw$&IQx`3T%;bg;MDLS$hh&W6p%USZh;EWr%4&x&0h&-$Nq^=V
z97tEax*W~IEB+`&lG_9f4x>|ZE{>VHX_7W8|IlQ0Iq7wp<f$vN_-&f7BtWhs8!9&f
zMGIQ))*lg(XHEm{jqb>%OqGf-xXS`_XKlX`xR|GoX!zG?z9Sc~QR&34js_MzQu6>h
zeC$wZ3T6KL(en4Fr5IG0pl_O=4S7(D4;^}OS$xDRHNc{!-8lh1wtab~2dgAMgsNmd
zbq<#`y*4q@BnM~)I+18{QS?vQ{P}JdPTZP+G=l$=^Yk-QTKZOh3^Kb5eBLa$UnI6&
zJ1H}MBiq57Uv$SgNZ8h<qIy|fdO)(G+H=Fs4LXK3YS{t%fMPH&0y$oK_2Y0I$u$wr
zDGfd>4HPF1o5a+@-rU1@&X}p)VZC#st*Gi%L0wP}spS~a$n`OI6GE7YwHjj3Qh^2K
z{Bkf*iqH~WQJKbt<-jnJ#M5jd`|d$|Jn0UW`nw=MclB<zp)xQEdDk<y%9@T5vQn$k
z!Sm1coBnZ}ALOvgfqIPB-#!^5*KW&r?Tcl*fe3A$nBvG@kW3=z_Z9bJ{2M{mS<jV~
zIj)jt`$iMLfxykINDTI)^&-gB8wdMdt!AqSkVGo>tX%a{-Vdwj!X1ccBl1Ab?}sI+
zob;)*BcVRFdGyL7&(2`&+JF~2qKl*AR|h3*DZVFVTD478VQ2d-qHPm=I|s}pPC$IL
zadA@2(CCx>c7zl>m^$nGg6^u%P2tlLV^^Cr9mXw+*g!S}yWg)7x`GXrl&Mh=W||jI
zBs2=dfW@2}2fS{}IUS(<%U&ksWB+TXh@TOK$vZU;P>3dP8quXb$VR<vD8=83PA%Jg
zWH&e)3?#VgyXr1&D>ib&cN)mB9vlz4gio+`?+K9nbzG&OSV%KO(&VwMUR`>zX?5}I
zONg}ghwA?UkU($0*Q_C4!o2o|;I6HS3XKYmXU04=WP_QFuwziap#ny;K&+0^v!%dH
zyNLAG*Lh{E_dL(hw4wIvz4q>2XUp6D4jrHV@D8CjZ~ketr-fb8Mi&MX0w6!CG4)@n
ze!FDoJ1wLgM|rNpG2XyRlEJaz-W`GtEP#G<%B#*dU|&9-oulpcR%aEJQJjR~rYa0(
zrC6d7!NzGqk??EG1F-+Yl0v+IiRIV^3FbJGgv=H4Q-&%h2pR1f98b(y5(SRcbP4*q
zIKGyPHj^hUs2}2i#vQ8~(ai<x_R>l3<MQwuMoq2VY%tQA6gA9#$gaVS#VE^hgw!=-
zcWmvo_lx(-`l9F^%P5U)>b2KtdmUp<+(Pf1ULdrDcGcH+XIX!tXq@i9J<=9ye^(zb
z&h`(E{(gS+;rQbC-Ra-opB?UB9vzn1^||o(i_87X_ZJBL{or5w=a>24_Rr4Hhof`V
zo^wL}Zm&P|cN=H%?_2GycB}om)!sp!?Y-^q_I7u?SFg8sUbnYizeL}*+wC@be|hkC
z8@cB14(%~Z@%K*0d#%n%MlvjoaHd*>^P~O4e<OtKG}Jd2m;2|J>hu1OM~yl34k6Up
z)WbhF9122C$m3Tph25J==c+N{K!~L}jf$sR`wnm-N0s}ShPS?s8b_QnzK7nQ{dm5A
zc!Yk~KR!7++_P^FF_!)iHA|<})D-DTN#PgfG+hw6=l-E@+j;dN$~&BgJy00#sdLk#
zK|rFt>;aMG&MIVyRC1>gY#kTc=hmqI`38D!V}w1|DzfMK2%FF0F!yb5cJUo<#Od><
z%te8OlwX1km&aMSN`~CnF_!Wpx8MH<JK@XE_jdXD-r3q~zxLW&?d{jQuV3#hIp5!T
z9dFB?ZnI=R6Cl4=G<Afwit<}BK1=w`MVycNt$e3j?QE|f2U+TTXULKj!=lu&RvrCR
z&o*;sf)ddNQCV|WRjqc+f^|55>H7A-<bjQiPf4zNYW-q!W#fU8;ZiMY*G2ZO4X2i}
zL$5VEbjC@aezx`qO8U{lo^6IIsh3ISvrxNiFz}v&pO1y4V5c)y0;85BZNP-QnRV8#
zja49sOyUhR!dC?8w-#n7TWUzhNk0SwAoD~TK{zKf{8wH_4SzofQiBzsekX_fXZaUG
zw+>8MtDp7LkK&9%#+2x61B;oUK}tM?2~a7}0E`gU6ggVo$QY4v$Jn(2tzSD#?K#&?
zC?IXji3KzQmJCMk`V&=r7~|;24?lT2B97&>e*Ewg(k2}?t~D-jggs9172#S<l9^~c
zH;>?~kH(Z-gUz_%^wgErG^o%t(!Ud5(jIf@I%<K6$3sV$hm`P~>fC6o0~+XXcTRc<
zvy49D`VHPhm>Ob%1dV*66-Wx%fW02U4GK4k_NF_I(BdZ$%{zBqZN2Wys<Ewsv2&z2
z5iH@pLgpF0d@MG{oi1p7lZa%82FLU{80K;U!3j3ZD++`Mi^}#v2N}DZeTC^Iqu9m<
zBcdFOUwXUVs~MSOBWF<_hVVd96nIk20C<@hANVwvv<dp;MoofRXW5-+f9$k3P)GYC
zbhZ@c*;co_T@M}0O!=o~50TVM91C3cBjDYEYV?x6^ReYOS|AO=hXG+i|M+{l9=oM7
znqH3=FVe`1S}bu^q|*V`pWr|tg8M`J#S1Tu#|IB1(uQygQVT$19-sr**=HuB56h+q
z3g12S(PHWK^|fm;&-h>y6v&$qxfYw9*Wc}IW)k5Fh1a#2;nEuB*=>X+r=M5pB41(M
znsx%V8oivzuiJ*vW127(pwSbOaXcXU=~4#-Of;!XV_m9hiO_chy!u81djUCd9+b!|
z*oauW0x%ZKFSTOn&HB$OGkzu^cvKYZ`y6&IRfRMzlAiXCG+`8Ayq1IRP0+QXLaN8x
zn4hcGM_~UX5@SYZmKt7LiICt@a4XAp-DcxL-J*#Jlh`LD=wbf~W#JYG7yrw7aA-6#
zUCE0VO5or{ofcfY=*5dhTJVDsG_VQiU;^{d$kl?rKqMNYG3LVaoF39JHH9v$^4ZIk
zE=Dqg*EOv+klM8z{iq-PbS%a~?LySE)ob2FXOz`CaN>)(hPIipg;V&1X;n-<j7+{k
zh{2&-8!2wlm^Z77)hTr$Ssdrbns4UCi`mVzHU$4eZR>Ijc=4iv(8tbi=!gBw{gXYE
zJr<a7a`13$ue#9OjykHEsd;#GxqqyxURsxy%&<>gwpo-QFd{Aq<fm>O%^(>4R<XaF
zlCIP7wv9H=-VHu5-j0UUJa}bZHtC}^3j<d}My#~r5F8w3q57<UwKQQPa}L(pyvcah
zETp~KJWfA<Y^LfuZzxCMGp$uPKK-%v;dsAw_T%CEw`cn&C+p6b?Mr9wkuzr=nF?R&
z{soHVur}~^(i=z#5GLp(_(OrsX5_9!#*ysk8~D<-AT=CFW&=IXuG)!^VDSznWVf-~
zX?w4{c8kA!ZM_5RPil<9+&Z}^Lm?YbUpEu6fOx-aqfRV_riGFSt$N_8iFPhb(u`Sp
z*RBOTF$(LzxuL#J9XQhnJb6c|u0xh|fHn{E?i(le;-k384^SO69E_=XOS5_jIvSCH
zVoAb@VvFCNy*t0$KfT;TX)roCFf(QVX}gYUJ8~o}RX2^X<m|-E>ZQ(Y=$#xAeogI3
z15_9gBa*@Ot!-%)87O<DDYMdtun41APL%iqwg^Oe=)#ypme$xmIeGW<r=z!Lm;cV*
z2PawwhEpwlhJ9Lc1{}29YA?jmm1~q|{q5Xf#^4m8eQU=gWU(4W?hRqvIUOnI1S?GQ
zvA?aEUuJKjkoSUwKqNODGgPpY3W;mYY90*1VM^g7s5!jGv2l6Q@;Z(*-(g?kGvcGG
zd;KH~Awm)wk}y`QVl;oS=&VQJPPC=onJ{490=s}Nj9N}|_5eC;x{|6)znMXD_Hdtl
zspB|h6JFd_uAtML`#rSiuI}O{^Cg`&b3bGRaVr%`Qet3FTuQ9FZSNQFmoDmY94Voe
zp>7Ah$z4#+gOYx~6OzPQSaROqZOB}(09fl@9G!nSJ~;Yxy8rg5t0jaq(*0WZ-N|7_
z$JXrucGP$oORV2tW+b7Ut%7965>jhzY(M7j(|4Cg7oPkqH)aQFqbOTD%HCwovq|nv
zf9zXL<gt0US<@!Au)gc*4VA_Ro>k^@5?jU5f)MWWVz##wpJ%<yY;Q3O(3%xiob`Z-
zW)nl*q9zh7G)iYnJ`*3cs6?Qv1Up>&<fO#UkPQaFUbvUKy32vnP0=j9PSOis3&QFa
zQpLL)Mu~+bx+WIw{QL~lMvBN$9J^^0wT8$=LezSnRz-*Vm;2xEUzlJ1i8kdZ-qfZj
zUb@JsC14@3gL5==^!^b%y@KsrihSmkFvCTWpM}2h<{k;-FQ_hWlOF;4gV5C=gGxHG
zR*zcnO!-GxU_t+*NTS&%HR3b`i?O&-Ta?MR4u@p|(%adlQZB@9B>IUnzu@pTId^sc
zt9*55`C(uy!0FM6V-+$VyYHeKCU$1FblFz8Eb>~;s8lnKDIr+T6uy=lu?vt}Mf;SH
zEvr8yBb@m=0>w)6Xt;L#eaeM&Nhc6ZhbM=n^p-4Ts_1|73<aFU*+_D0{6F1t<|M9O
zG7*HM_ZLU!vn9Z@1#uRVtbh#`VV3{-_s5r~`)`lIl`_TP=ecGET&*%ZaC17QAsG+|
zUspaxwS0?)Gp822HY}7=S7F-UYPcaN5vY$rDsKJmbF0R7zD_mUnc~N{E=2pOd%8BX
zF7Kn=Znt0V?7+Y6cDwj*yR-fBZ=Ic2yRUY3cV4|}|E<0C^5x5|zoGU+EI^`I@V~Y1
z+*fgOPXuQ6aj$`pHPRh2cD09^zcyn|T83rWQ1@EPus^>xn}y=7YeEM@xrdsqPP0Cb
zj~;G&{*9KU<%G7I+sD%LzuPXJ|Msg+ef}Q;o}m+>xka1&LhC(T2SY5;!LeeFb?&S{
z=x2PPwISuf_G#oMr1EM?@JQjd=U)s*+B3do!ZQW)Nx`!7-`?KIpa1Rl)^>gWKM17Z
zAk@8YVnOU7Z9@OG$5zAr!>!K0PI_^Ew14>a$QuRA`dE7ZZ*3Ru|DCPf`usl#9I$wT
zARV6e9xFV6<0#l<yd<BO&8aAL9upJ7e1zlrs((^&hx2c8J1r*z%g+C+og)9gyR-GO
zKK~B^D<%)SYsN4?PiD&VhIx%k$V-$@1xBOab^Q4Pq0z=nI0(}8Uu1zi^7WE`y|qCO
z(jZ22Evk?{OScO&`YbnL9o~I8F}}n3pP%%qKogdo|DE<$f&cI9Y;D)){~_St<p<PQ
ziRCj@F`gx=(lo&4Hp86QWNHBlvW%DdWu(Vg8sf!fJifuHxaD!6j^$qqLmmX{E4uDP
ziSxep4t!m>o&2xA(YoW!EF8(4K9-#SPJ8!NQUABouJwNp0ywYv_pu}c#wUB|IO=np
z#;|GR!vr;O9H)PFyd7_=p<g>qaLavkLVFzZi5q#S&$xC{(fI%%Y@4>6v$1W>VMaFo
zIzo<(pRvKzu0%FEk&evdHHK_N_7+(&FO7!RpuQTpZNiO^60qw?u>fK-WCJErnlr-u
z%8R2x<BCkcVr#F_G81dGj73wUmD)5lTBx5yV8+sD*||1Gm|81oRh^754fp1mP9u|h
z$k;VD^k1e+<4LmTL|d7=5T=Z=3Uw#jkdv6~p-}H%W1QdRuZ^xXR16i+|D{hrOZ7k7
zyEE^<+cp39An@!ND$v1a&(N_%S@>u$lsh=yJUB#>F%xko=FBHTD4ETKO8B6#z|tZe
z3bUpbk00vuU!VW_{QrL!Dmed^zZILGvWU{2j8kf`<oxfxYIkPzKfCq$e-QZd&&?NT
zOh<bV@Vie#qWJ$eBeg94knEusn_s>(8md_1oIoZUj0EdzXAv9PTPH`*>E#=L{%Kvj
zQB$Lc=imjTUGh{5O|%wJU!vv}nKV)Jhj;IqsHrcLCRz)rkf{0n{&`dV|9>~v*HP=s
zmj(>y&p%r>9mA3yRFxRwb8-?Kf@12zACe#mX*4+2$wu_oN1(n^q7EdF)s;x(lRcCA
z5P|_5eU3RX$(z%Zh%IzQCVS}5KM|zC{_@31SgEbL8CL?e^R=GlUM{nxnia><fFRF=
ze9pC``cYjJzg5*p6xgq={avSFe`w8aAY{duvw<t^pK9QK_fPkrs@QvI_3d-rWG)FG
zrI~x5z#cBxwL5HBx>xFSH&Iicj(gcTy=i(*w2#Oi$Wxu#KF!SG*VU+m=QKz{LGrC?
zJh@4$x<;;5v)&8V9!Q>(24S<1`C#?^07tnT{qxx<W)X>Gx);7q-O@zgti1M4vvw-q
zqz$9JH(6G%Ci1c$ZciYywNOXQ9s`I#XwP1DHsIi$sNcjMEcse-g`lGFoPsb;Sci2q
zMG@7RE<5e~;W20yF^Sf+>0&nR^<q&Ja~jD$YR*Q8Oe^i7e~6~Lb~D{M)D~rF({jW_
z9da{x@7x69Jx!y+PSGC;lO$_IvY3TzF!@Q*p!~RoOk`=sS10b(p=yrQSBI(@eZL8+
z-uy0Tm7`>J2>IGYkd?9V?zmXM#92JNAr`KJgA1^(GK71Wt4jA&!A<4R-RdqX=Y%Y~
zr|!uAS1bSdIK~ioDklLhk^f$Hw%SGc@73<BTK;<oxP|;DhXhH?2Sn!bpBn$?d1o(&
z8j8G__rvTCpnc?h(7HsEJK8-g#UI@^+=2^AwVYybKApeqmE#?_<NPVB?b%jr2Xk9?
z52@*;njThSRds~8n6sEu@X}5nZk>$mBN9n(wXJe0WKHEZO_0%;@B=oAF(;_`UmdTr
z(`q+oZ`AoH;H{?(!mWs!X}CDCIqvj`#GPh-RSV@!xV&a%3+0A*U2UcEL17<msm#>B
z#v+-#zbh_~Ej?#(EZUo53x0B1NK36y#NNqY2Vu)Q{_f5lXKA&)tJlD;t%M6@)$)i@
zui9-^?JmdZ{QLcbEF|cPr;7Kme*=2+>ds52J51z|aT5URMoYM;dUZ>AaDKSz0{T3-
z!TQ}D^>9oxw7=2P&8fNistF`{0*4BskP8x+)KOVNfo*U5Td%PXDZ(IVCh@Q4l)lE=
zB+JQjmqe0gVOzJoZLh6kNaVR5)yxMQI8}$(GZs%e$!ZXQw1`90{PW9~Cd!hjc{c2u
z8WzN$Px}V@a83r~^IM49>qJ{sQfGhu7|@q5s7HL92%=kts8c4^@)glmY_=?o(0^@v
z+a~C)(8<-B5Qns{#A>x7eU?N)Q%4{38ZTa4=E7t{atw$Dh9wT!;JH8}8qrY_mF>oh
z7b~(KI>NMY#+t)rXJwjyu8lvoTi^Y*{^H~R@#VJ{U%q_PL~FU_K~p5zg#=4pqqtD*
z0QxM#wy!PE)NnJXR{qz~a^1Jzzb%*lw>vw<_uux*o!bBJL0~ocAFhx~ogYtAwPJ=J
z?O&r+o>>ZG^9Ba4HL6Kua-u^yuhDof@PO=T4e;26_+=5KHEFle-kTX6Syo7x2R2W2
z91;(jOm&Cw+fSe}jIkVglBKDA+wCT5>Qrs%hf_QvP1J<6Bv3^cZMECY?E0P=VduU^
z*tx+7JLw2#hGI^miPhp|fhA`~;!Z2otCsA@>=LZ!UjP)pac=E~(zsFJ5hk=YzStXT
zA#=^Nkge&V6Ey(VcS<W3z;Vgqz|U-`i%m!5(x^uzx&~J^IpplxUcjnfGfD*E^vtKM
zzcUO0Fs-tD?v1-_Ni$t-ajAqtmfsnT;8kOG6<kd;j)Ic<GphV!@!mvvboEc)z!=S%
z?!7_HUn3i->jE8}pT9fbgAj{w9<8TeE)Sxcf_x^8mrX0#oZsmi!>{JPZ2lUdBAliv
zNywN)2<sqx#LZ*9p@RfF2_Hvzq7Wb=B(SMr$;5tpMPdm5mL}bkNQbFFeu(KvR5I)z
z5)STvZua3~a7ibo`rQ)AZ$8T=-_q#Ug3R!(bYDz)8|?KKQ~XDvl6jiS6`MuKDWtEu
z-}i|c?iZ@%|G>NNru^U5Zm0PE)82hm^M4NlH{kyq#fuI#uAMoNc^RHzKMXR!KTWiT
zG`9hNo--z!smj*!KXOQPY1GuOH<qQCcN^z>Ncl8Q22@BsQ9P5n0ll<O&;H~Vww|D+
z#qEz-1&IfRQtBH=Tz2)=<quirZA!ObM`WM&XQ%LHPK~**PR?iAFEr+Al=`Uo53%_V
zu?JQLxnjk2foadzO+ibxnFSSB(drrGIs}hibPNcQ&iO*;SOzPG1xObsVW^9W0_vsg
z?Og2ZY|Q^{Ydyow{7d61h?*Of!zw!8E7XGFsg)^WjEhIc%FsoOGpCtWYAG_)!yANS
z$b6Rj)+<G){9lb+*LqU9YUY>tfd)eRIvBS#wQ-tRhy5rn%U)rmxsIWimhrH3tu%9%
zHpSPGC(h<neE*xrw>$%|^!|S}WB=c7*YRH-1a4ygVG<bWu;L2wA@qk9;Ha3%j)TL{
zH4xc9J5F<qxT>F75^j*l^pff+OfY|=2{FH#zszrEjLYmd^H)(napq_voHkQMga@|^
zVoDBoa!#960;X-Zw(2LXy?Go-51rX;l4y-_6eXh`;c4yzQw<W=*(f)X<4A-y`(Kul
zV}eJa6Z<_?cVMFrL5xG1jYyIKnNf8ds)cj)9G4~siTc?-aHKgm$QXx-$wxW&CM#}E
z$`?5gaC>i-ypWYy0%W$84)4M^S|fkt8ZUb@UY{*B|AAL`;OxAn_AV-9zpIVR{SG@@
z<b%v_d#QtdNrMPdjPALNpgL;D0yXtkHfQ><cAcdI$XPNujnPQXX$i1!aa*$&+bpYg
zrXM3EPe{`~C91=%n5D}}Omuc<oqP|Tq)4#BX}8Z;XQq{=zJHhD;cPVrd)7+cZ(rZ|
z{dVR77ouY>eyP=q^8_Bss=fb>&GgOW|4ye<jQ`Z$eYsQL{|^B-kpG>#Tu2-Rm<QUn
zUd%nE1|Mv3eIjP<-BTJ@JeFY84*xggz=oRF*<j{Zf!|G?+5T)CC`}7p%lPv0BOKuY
z30l2LzQ%>&2};SN_8G8&GFfCyFFi;lEQ~vX>t3LfX^s7SiDhe>^G~?z^4@f*9w9-i
z;YLs`{nrRpApc9{zxK{d{O_GQ{`bSc4e0;T=h!Amij07i=5w4cFt{|PHDd}7b%B~#
zZJL|t4^5HeN#vuK+whT&E|Pwqen!pKEOVs?d7$$g>5ySCOf_a}QH6yzW9v<vRFptS
zmrcN2D6>k>);~luKN0=e3L;ZT&5M14n%_22^HcNolfvo3^^-81pg$5E(mo{t!f_0f
z^%_4D-8z()st+}Ck(#$bLNVtihb01rT_@EI>4+L36jDO0nWZ{By-;OA5{`+#?lq44
z_AS_?*RuwE&f3#Vz=d@O6FoI}Gup*#Zu35tT8S5vLe3b1&lFf`-CbV(o5;Kftc<VD
zIMe0Ot>mxHbga2=Z#=*v7Uo*h{oVxG9=WJe!#zN?_rJDPx|#mBv$eG~WB>Q+)oy+N
zKLp(1{!i7vdY26eU!dBt*q~{+(c)T#>V>gyD|>3omqATKe-&BN<g1CAqe=R4k%G6-
zR0|#DzSvA{&)&t_;#})U)o5&5N=F5(ABs%GVkhny8qhI`EL)KXNJ5W{sT$mTjxo9$
zFq}oiL;E`DI5<>EQ;BJXp0$lz`#mw~mYl_3hblenUtMD!WD0m1QaSNp1mDuA&+Zl&
z^_iW&?ip5fW<y*nzHB9R95I+bM2e?<bWL=2QbERq<FL4<0_#+#sgL4)>$CGXI&<^S
zC<=?5NnUH6GAShslxzA;@$NQU!fd@8a*HkFZc)Vhj4^=+(;3ZkrsUN1BbQCFWA@6~
zgjt?xZc%rj*$UX{mvg^Gx^qP)E0G<D7;p!wqazMn5wK%u)}-ZONXr$Ol$!*fIx?p!
zl;$E=RhJ)d*v%A6RReo(bgZY`!7VvA`KTT<CnsNHJ!icz+oJ06EskSrDCC$%sIk03
zGz!S)MYX<32R+|LV(D?SO)NicsS!8hh!e>v8SDJew2yGe2@WPExp1)3smx5KwN}-6
z-pv`jw={h%oI=zz7R$khd<>AH4SlD?u70bzj+!Bf26EU$oi^+tQ+o&xI;aWwYP!jN
zUig4)4*v|sqE-%NpX;4`p89v9Ye=_{&tfkSq^1tMMQ5SVa>-%P5$xQBLM^bV|1aIx
zKl7~>$&$77jRu+$m5`+kM7+VCV#CBAVY<Ri5B;p<{h0b!Ciz2}4aO!L*XJ|Pjp?E4
zJwYu*Bk9mfHD>*bnd!jbW`H=30yat)PB){s6SdIyjD-Y8`KEpz5}mY#AshrqOh!GX
z_46w<ouWe-qf^)qt^WYh4EFN^(;$msubCUG3lT}r=+Bn<D4^ELP73pnT1pJQNl|X^
z4Qe(m!T83Gr|@+){bF>c^aoqiHf(mzDc@-$&+K$s*x=}ysq~X3%SGCeNE!-nK;%zk
z@&jihg~@L8LD58B0o|QLo3Uu~x`jFmJBAXf>z^E^0!UNo92WL&NQUArL&mO>7&XU=
zTv^`an*}kO%-*Jr(SF*VdsFF4#Qfp~SYjuvVSfMLEH6C6?5SSM*RZsMIb|J_*(vJ1
z+#!+g#-#ewiJ#(FLfW-444g?>=^8O)Nc_gd+<8WX-`JR9XU>r*`e>E!vc0m*uB7f+
zuzXEBjHWZ962x!~L5o8HM~ho|na$3sHM=(-N?eq*>sR?e9B!y8SF`zJDLq4a1P(eF
znqS!d3(3>DtcC2FaI~iA`hFM>G3u<Z>pxGE5#iKFoprR9#PMvYsqxtQlndPD;x?2Q
zKBY61Z(ap5AfM0mlfZr$o=^#LaP!w+e|A;_HUC!=P1W@vBuBfeHlFc#z~z~h$V%jn
zoERqken?6WUwM$EnTe}~I!#71!&}f~xrI@VIgMSEoo6Zz&S`L=V-#~TrYsT8EpASv
z<xqj07OU{5y5ush^sBLi6|)F-wylS{oaz7qj|(c+|4YX4fZWXfyVH3&^ZsA!{~ri$
z?*HZb=v?UiMh77lrS3QuA$(OJ^TbKrbA3{-i*pLB>I_!sDid|g4=_eh`Z$eyxgSeB
zw~E>v<8L!l&5g>M@A1vzN()t_KtX3~S@Tx%2dIH_Mb-;yC3~~FWwg=rugzbZt{akj
z+b^rD*^Ba#&7Dn6;vXMWOaEmY8fnD60hZAJ_RIFGqW{nKZk_+}LEuL8KMDvJ2pgp!
z`2D12E*1;C1w3|!9vs@rE(G|x{3_7Of+EK~?-rQtqCmlC^!MXTagk9z8He_lR8F50
zJ=U$VX6h(8>)&`3u9w$-MDByto`0<`yP^H(PJ8D3w|8E(>+}B*aD(%&{eEbqWARZI
zf%1Hyq--nm8lC=p3ZN0hs2T@EnsdKc*tS8B%(qadWxrgJF3joJiS5Mgn}7M3p}$LZ
z6pcS%Zo{&Z&oSc?{rP9sz?Uy?zFE6Udc>C@ERIzNw9*LuE63$Gu3AQdMlFVZ7c5f5
z@lEqj(A0XWg!Z@k^5shtO;HaE@^S~YS^@D{K-NnXDBmYE3=oONXpFfw)YOm6SX+WF
z-M_+G=*_bmGMco~=b+^~QfSIiQo=7_2oZ-AG!jC6fXGma>owDMYJdvw01NWNOjXbX
z&bY7_`^d%3nb%t8wLY)J8q&%{53SGhUC;E2b6c77IxDjaxX;<hUYU9am+sucr;PN$
zRR49OlQq+DrcqL}F%LV=4tmY(_1&C6^9a*)D#N`Z-}Qc1KYUYA{-?#vZl*oWyxKeM
zv}VH`HDhhY%*mLNYi*bjNy^QmDC?u={}9iO4iV7^+58jwDSmDkq%06vLeLwuW?x#e
z!Q?T-`QeSNR;DUTm8D~~f7xrCt^zHh1$tBcE^F6N&7kaM7BOy08f_&UA$ar;QN*H_
zDZL8H&40Elyxw1tNhgno@MeEgOw9FHwD~a8SN&(daWW=cke}3-dvB2W)0E0%nOn5D
z$+vq#^h%$F)^jg<4muPJM!Y!>b@R0A=Fp+X!GG59b)j1R{~Gg%MuUO~uvGusF6w_f
zojU*L!@v#r|DW~dBHUw%Gyz{Z3qyzui3f|={uD1v`Aa-l5dQ0&F}aA&m$v5WOmP&T
zwNx|Fv_^+b<OK9uH=%=y(YvPlh4u#;1*qBLzy2D0`^{7g@z(Cky{3*T^z;7t>GA20
zd+0oyJqm~<z9a!!Q!Kd?IPA-pJ@t($^X1F>1~SY>l*Yc)0X_6Xb~r(tsA-ZY&|X-0
z%xEyX+9vLJ48hMK0wsyYl(R^iO@ndf{0Nk0Z3q`O2xS7g9f_l$WqN6;URqAchNHWv
zFOR<neDbjnI0`tPQQK4o%k)35b_@C6x3_n<pL+hUN-tK&+^3pZr*H%MZ!B~OI<P2{
zrHIc$24k*MAk2jLUd4tfL&mhhdCDOh_$f8AvPQglSz$H9jJ$QZDW{DwvdNlY=4yi4
zBE#CirlU?3AEISOtNXRqUuBl5|1W!Q-rY8iERO!KPk~3LU+hdoOLmsIzLWc2wwdwi
zCAm(z``p{<7egc@p-mBN0JNh?@;>|TU?ahulqfG5@{dF&fkFXQ0ICXwDmQUVO<OXT
zW*|%J5-Nt(1+SF8ccS`Rxkt7gTub}RxxSa^GARTNvT&^;15dl=wF0Ed<{<d9pBbWW
zDVpO?t-xHMwW})SAQ?|S+s7}}ic<gOT$|ZggHo)J=7hY@zl=U*`m2KfWG?~~9O_u!
zD%HgqvCx}JPs9@5bea%L4P3=<<!*(QDJ@I5a1{p}M}=_s25yPxqU{QpyKdE#zWI6l
z2?rR`HJHbt5|gyaT81*mizPR<G(vM1dTQ6M#+i`h%dK9GZeUetL_1?Sb5j)U1dBNj
z+!UsoI{7O!#+;pVG^hjF8c<(^*E2WmN;le@#jBj??TKOFw4j1*1FWWq=~&I!XN-wr
zajWpKE;D6sJMQN8ilTR?F}GKGBOoNAfDXTQ>t~<ci3XbIXIU9JvtQczR(@PTilIN-
zo%G)*|37_P@c%nLn%wpC-)~s{|532as~5dX|ArNBjqGnaS}FO<+i%-R{icoG$owTk
z+DYO!^))yc^X0}ue-2i;$PcNv#2m?7e{B%5isvE4d|9nJ<lu;vSX8J`8_o#f6{-WZ
zJ~^3IOW=t0*|-^4Fk=0>v3|4qQeXcJMFI9Ci&S-|SfU8^W>lg)5h~T9Ou=f^NVC9L
zP_Sq1D1$+^Hxfyk4>q}TSm38J4JqsQX2;3T;BZj%U+!B8H6vXd<X+X#ygRkseH9<t
zUR)fD)t#C_sF*X=+*eY*1rw&Vb}&q3IMt8Xzl$Q@W`pZZm+x_}Z-e&+%De$v0&f#V
zz9pER)p*m14s_p8g|C9Lr2=oj-g5QbUQWBrv5d^NL*;#k(=F45ZRVN1BXyZr74>>H
z%!v8hfwHL-eJ81!qTfJKdzCDsnEn2iUvd4oBH@DEr2S_)IWC_69!>9h{-1Bz{v%lC
z)r<YJgZ@oGnj3GA2`KGrwG~Jqy`>!}ZD>cPpyJSWGX?4Ty_kZsuqsSJ^#+_QhzbKv
zqd6(pscLi5Z8HVEf*j5u%h&hy>+3Qly+g*gzi32K-x?u3kNNU-$}1L}gfA)#Q1bQb
zYBuX)O0ltMP*c0xy_EIAZsArM#PmA$Z(tBp73?{*O{)o<W;2{g?QV5Bhs*A*ak=g4
zR$1d1;w_AE>8jIYhSMcmFuf{2W{8iISfM@I-ZUbE)vc{8(Vx{#N>;O86vh^KZ(<G5
zVDGloO?RRL-8Z$mRY2L+>ZZZoa;sZw+f0>!yi40muS!g151Py~)^ysyJhM|%Xq~=s
zM~r55UD#&v+r25YXWPlQ@O(_IPdhUKHrW5BkDort+5a9*CU-sm+c#|gd#ezB_uoJC
zZvV5m@z$6CQ=F<zfN7cStbkTqyRib64{#?#pao*fYak_%N-cqja+{R5b>U{HLUJ%~
zS!$tcXv1=vsIf7Xw^r&#<=&w4RQb?Vn-Pk|t5xU{=I`l}NfC=|@AME^l<LH0Hknd(
z$XY2%n#dERX0W?D57lyCD+=t^k*L0Bx5>D%nSAdf5Bn$yEv++1A)upyYCP*UwIZ{{
z47nzRX(rsx1zL~Ed~CkeZCsUEab(aSo!G}<>&t*HIMi61Ju0_KSMD11J;+M<Ia$0S
zXliLGs~w9y6{pA)IE}S*^c~x<k)`^L*|(av$Zi&oW_Z?4rUt4qr$q+_%{S6~E>f=Y
znHWX;d74_dl-sKgvfZgs3oF~`3b<#pnAOFO9J85mtOn4Q_A#4Scf&+hkoh{2ph9lk
zp`E5*`M-6KcCvb;MSo5XwVPKEDGwK?W)0s0dyYi~kue*zwX9OHWLU}Cg<Yt;#T~39
zwy?U{Qj!&S?=Tma_NTwq%^v8ED_tIH1E`+YJG-@L^ChoTdA-BzQrV{lmZ@NgC^yY*
zeyA&VD-F`SGE*LYq{zoA5M0Ck-^WLfj&t_kqo<GWy8q`Lc}ANUfX@VJ_uv26zyGIV
znp<P~mFQGkedXuv48E#`-Pn2ygW1W<t7>m);mrc6H||!tdS-xJpfz(NS+>eUQxq?E
zZ<GO0a}7FqD_IfP&kS{d7pJA28?gAsS!B2IYb$iV+SrzKQS`$`L5m4l3y<X-m7`US
zKbKvy+7z0dla&p3cH**Ize{#bi8<JrrK@(8=*@*I-EewXDQi*Qz=1)*+um*K+C8=u
z;_a!snL(-?#+KTe9`oC1hEjWz3LS5hGu8XnBQ32odW+kk-qoAzQN2M|lUdcVX?A;+
zq;L57Xm3wDasX<I|N7*3lK20aPVRdC$8XsGN9#kPjMVgIsHp5I5n7g)3++o1&L<O@
zS2i!=CFvgIE2m1?OU}BrNHm^Iw1`~M+O*%+rb%mUM7%1=P9?l39h<T)6q8@%$N(a1
z-8a1~*K*%4bwU$P%%&u<4i_2}4z10~UBgw7iF1|S4XaS7(;cQ#p)PONO5A+dKERgF
z|I^gIDyI9Uk?|pi<xNx{i?@*D)7?(x3UL$jNJdHOn#;Yw!)`+8>J;><+cinl>m{9p
z%S^JN+S%URr^>!K`4DA|Q!<la$`*{QpTnfN-bs^_It$Qqna`7=G690sKg*IRdKgJz
zbY7juym9X2O*)&V=t*Z>)fGS4M$)m9XMiIb3RS^zz`k{<)k)>x0~3+UdQ&_My(}Dq
z+S%&FbkJK_rpN;EmocR%<jGmCQ%HshLqAzLGWpaBEp<wZXVuT6ky_8d`&4uCR1wA6
zCm+HOp>bCGj(rFnu-`I|pnFi^2b5I?6?mD{tFWvk2|A$fgZtyL5R1NJ-?3-+L~*?e
z2rOXeyWcUJHB#zZ@5}%eM&fo{Rp>YW51h|&h&j$C0B$<}c{-Wq^Zz^=^8Z}V(@y@+
zB!Gv2k-3;OK6<X`y;jRImIjeBalqmWQH{9*Le5>}?{D5XS};fx!@YQZ=7@j)*EvvA
zyJ{n-XhBqoD4HWmk^d?dyV5&viTpUg;o@`=lH~R4Psoc!2b5HxDxuIrCwe(sLGCSI
ze~Kt#Ozbx&i9@Y)&peUIIxo=L&I=3xiNqF7=m|Itt=FoXC)S&c+^99I3?$KxXd?gi
zbDEV${CS1&V#!ayv@!!AfM5x!Uq!%H^b-JfOFz|usA7cZ_T&=~-k|`A_3J&ND?QNT
zyFkMls%=5AgjQm93sG6lj-600XY@mV0#`I@+N@E8D(0}8x9?`4Dn97~Rn>4?o}SoC
zUPOE|{)ggs$Z>aiM8wane;!#yBt#)kXkn`_Eyvyho7hAW!181*O%&>;A2weg)3Fd!
z%uIs-&QM_HUOG4A#QQ;fV<&RR3lg2I$Xu(SEn$BFAr5_k@N|-$JfDl<ZIj*|<clT}
zAdDjSBAy`{B954g$zf9I1jtj}bchPgS*tAoNml2~V$wFlv#!EPL;|u{e=pXcEM7~(
zxM-u};@%&tW|sQ?ST$YWyRd5ay<l9<lKnB{UqS9}O)GBPo)>eRSmeWwT-b&OYq+jA
zhP$4vO10F(PGzmT{cTj%3~Ab@wv_+-)&D#g!5I#68eoI|_hfpMKmVCNeSFvR|J{*i
z1O1OL5#W$65C`8U%LKSYREX3y$!{#y5X;LiszSO4;5o?MBg=XIXD@<TFzkXgr81@=
zF+WSL54kUGJikwCy9SDBpc1k@Np&mzw9raa71V)IL`g)kwBJYAz?c&Xd=v#_t&+sH
zB9&Dk1(hKhL#s<fUy@Y>DFV*lrtb97cv51tt7ZW=J;;;0B5=?rjzX!U9bQgnh{LIq
z9o1ZU7)7F_)7wBX4mp~~0Yhy^%C2#pL#4ZZ6N7|9d6B5)0GZMigJalU7pwVXK}brq
zC}Q^Hn_<}UhW}&hhC{@!2))4J!oB#b6xUkuLRqyeV+^CV$*65Joz7l7e+ejJB&Hr}
zJFDmndL7oAr&|x5YB1(YLh--URhKS9SXaHjp?rDvs_g)J)bB8U+p`{waLV?bhOVM!
z`%z<n(^yU_F?`bP@1H1G8Q~3J29Dk1zqq64;0mq*C%{`G@1mmg6=YJ=#UYnz=#dZN
zkmDdJaO@tt6B&#kC-n$0dW0T=t0nf9AW7E`LjZjr>vLo0^VhEq0F2XEM)-0^@0XZq
zv@o;Vh73TJy#Gg`vjZG5j-U_7Tqwd~7pcMleEkY$$b&IM3Nj8CnTvIHSsa4D9lOV3
zp2h*!dH5Y1azy7strjCPCvoUI08vV)J9_Zoy^PO5(TZFmA6zYw;$IJP7?8z%239!4
zt2iv9#)Ahf#g90O2<6PeHN(r+$T*+(FMpei|Ks<A2fzJ)Uw?n__3J$c>}Q4td;y&3
zV|?p?Te43bx81ZpGd$g%e)WIJ@C8582L1nd`Y3<?J9+ZxuE&47BTona&-Y78;>A*}
zYHAUSqXmV&SR-O4{#7Q=^e&)21Cw4pE!{;i315o_l(XpezH*7br@?A6+0w-{!Em}O
z45$6LrRv$Jh=kIMfJIE~Zn3<Rszs6F5R^Emp5^a^=H2Zwt(Cjo{U8t^bE~uv0dTlr
zI@S@D^2|fAv0*NDO2vAZgDVo==YTIMxiTBDXjfwi#^7c0D{b#Bl>SG?SYEl~HVtXk
z-7MSDlV{)$f<t+#Q5*%^5^aLSXNwd}`KRn>g-6!&OX8@<^yC?EK7?<dzkB!Vo3mH%
z!0WTKH)ki{e@Lw6V?@a%_7PZ<m?mCW>HN)2a(T%`H||t7s(rk&FP+q<D|vn*9I3?t
zU7`@cIhVImgy05)K=%D1Ab}4&ihLAu3<CyMa4i@hM95b{A77%id3%8(A&-Jc2tbTW
zpE44}D+Ig%;uY%!?Z3xV-k-tYoY0lxP7j8neKHe5tiX$dCFc=4IXv`<$J`m_AzWeC
zBdbH@w;3ER$<>&XLrzIN3lLip!pBP#tj2PG9b?8~#18k;&W{!QjjxtCK;wiiy1b?g
z+n|fz<tpi;sZ6mVLw*5sh=W_=$TmD1J^jjmcm)@ztNeHLc$z=|nLK_v$bZ-Jbddin
z!%IX-Bo;tHZlF(w3*v`n2Kk=@_Vv|n`R5rS+(}HfM*iVTq)G$F1eB`3TAFPkk<%zz
zV8-eCC+#BbCT+UrlU+C>3=2jtEp9%h6*yevN{Kg?x@_C6%MY^j*_47{FfvE`#V$On
zs8M<9Wc|kT95CCWBpuQZzhfuT%OF!MKQ6M{)wU@K$$+V;*v6`-nd=qtE)WH$k|B~l
z>&wy7i=l?;qBsatQI=!9M7*u!zUjm2Z$}3yZ)Q&#+c0VdD@#<g-X}pFvSAgAe5Ab$
zZN_+Ofyuey+byI45A3&Yh3EX|Y>We|Y1OGrHT@;JCPeUD-RU;2HWruzNss)noa8Xg
zG%Q;g%jN7O<E5GLw8@{2+;K6d=lx$FzGVe~#{K_k!T*0U8R9=(%hSdG;~)CI8JI!u
zLNGoG#gZ%)ILv@YRuSZQ79eHvhe2RFh&+FLYAoCJK_?6o=~k>5Q1lXeNLxbmR}%?J
zeS1sf?LYlZ|CP5-WTQeQFcU*WdJ_(YNhlOk()8V~E!s(HAD)KX1@e`=_p?tZ2;<cZ
z(S!7IpRDGBQx2|h5D3MQQy8*9UV!5S_;@aFA8@dSs{r^&ERzC@#M}Y3Jp>Rc(8M7}
z3sf+5yb=SKzs_hrn*$Cre@*;o8DFw;C(9Ejk&CPYxRYlMCuC)w0NMMgdU+>Q=ZZ^#
zmz^0O6iZbf@TvwZ%B$7hW`*>-AY|sdq-<Ue(%<CWgDQXkL;{vA2#Tq8%7CLt=@i;9
zex0QVWIUNHU^wIzkR%t@!zylUMN#doI*e3dNc2&nnA}2GdcTg6%cBhFBPry!nC<5H
z>aB+2sQtHz4~x|-?%6Lnzx`|H^V`A!t_+4!e^Q$Uy}IRgk$(4o?K9m?|DR5$M+N==
z$)jQazmBJa{%`H&jKk1})K|Xsta6rWelW$=j41lMCu>}OT1uyOSA~w2%fS)_E0--5
z2i8>4aR6kUVtdlS9C~_PwLRm@%dcPv7swya*4Y~Gv`kRCOsYErVmFT&0wmO~moAHt
z=Q4dA!M<J~&Hn7t%a&*w+syrhZHKq(P~E}>ZFo98{jUFtq4Hs*n)JWPqeuDm|IzVa
z|Gk!{!}|aFQzTX>A?}4%EDy;H)e3{X#*7QD@UpI4O^h{7lzelED8)VkUjV0Z=z%B4
z@+V%si{~=N>bNLeDI{M~Bvcs{hC!k!a5f%QP{+EPty9$19@f+Wy`dD1o?{sU!tRLr
zZ4{9&GA20m5ODtD0OzB#d8c49aPv3_*5J<=26&E<4`39@&bp&tk%BJEbJ2#toF(pU
zjI5BYmCGTL0=o)u9N-n!N+@4q2KMz(z53~$C@VGL2zdwY=yYz*f)$X&fzKLyoGQ2`
z#vqi)Yi#SsTolYQj^zq&J|?`9cLXmKXf^J(EPv0$SZU3#7M{s)C@9&jGr=|Uwljix
zF3dnv?RH_dTdt}M&kmk`_kZQ9)Xn}oJvurn`2Rh9de`GW-jS!n{-2nCb-*aKgx8pM
z3^%AXTw8Gqk>pE`+H#SQ9lidFWlb$#G74Psv(CVq12qP(GcOKH;-KY2zF8(<bx>3c
z`34sF5`{*rh#8{#N_DdHS<dL9h}ls{h+ObI2*?#v7pl0fM3h0#_{Q!35i@QFV-sU~
zAgj!vcX0)&pBmtCfce^$82kl?b8?cnA}ugq#xv=Jq#csXT;>#^!xdy4(e#rf<DTii
zYFUnIfgt4(<xY7LU6_QyT5O9~2rS{H=*A_YFvyQ76ML3@M{(Eo>@1HKcK(8)FfW<p
z(pVWGrDT9Ipr7UUZY?Dg>vfbC$NIWOp6^q^L>`zHEYGQtQ`HY`F~#8QmWv5RnW?g<
zjc7Uoru*g6Z+_jmK=rXF4M{JoAby*yI!TgFdB!v>E!VTORAxH0<41}@nc$So6I@a=
z;ZgzM<e7@~l$p3C^ClbBqcC&wnLNfhXP;a$g$uO)5k`@56tY|+1TN1^^3&>C_Y$P5
zeIy#En*q^0+Y%>kLIFjbVswcFZ%IGpfFkIxfhYCT`cz|v4yntuvZ_|4_!;Yjf!SFI
z9PP2}|B{UXlJ}vXmiW~lIS0TAP`Kbr2TUiDhD6ZNWDgSjs+-CDu024mN-LBLd3s+_
z@_ur^(+cithdfoGT;004kb_(@8B_#2d!WEr`qckT0sF5kwElwJy5Lu#??>3X0CP+k
zSHAy<BdVPO^!)S{Fomk32^a$$@@&x9AJiA!(<I<6pfL2w3ZzNyBrPO4OOqaeagz0b
z6B*i*tyeRm?DH)^C+yH7xUI5($fa5O&ohX9{Sq@R+!$Mki5S{^M*)mmUs9-^YRO`7
zFS2s(IF4B`GVyDz*J=0j(V3DDrl<j|DQA_RPJpW^ofOtQYSP?%ua@P?0KMO%_1`I3
z2~M`74>AY1Id(4%d|lOSWwz5c$&$+YP}@37Qf}=Bgj~cCa4yAiWn`0kH8GnsZ4+R4
zp1`wrDz%B|FRl+cw89!@>Hn;`a6#A;t(K2rX#*8yEtlCZVD{t@3Ozd})n_YyN_EC@
zlLE%R@sKd_Gn;d(oCpiKmP*r5l~TDf`1*zXnuH@yF)CpU+YvO6io9sC(JixLuf|2%
z{8Dm7NnQOaN5qnb`nqaXjZ01FdOM|zTJv+{f5&Okm;HcTAqw`zy8b+fmJm!24%DAN
z#VbUy2c`#LKaQeesW1A**2hfXE}OSydFEkUSox|dpauGLrj7)j2f+`ROFh{6@Znc$
zG=TH}I^c`g9vG+Kaa-WI%yfDr(h`{|$CmMY9-z|6R~{s(&~Y(PKgFv8dNm-+J&ZEK
zX=Jl(m8-bCoF+GP2qKCuF^R2+_(m=>5~>uZYZEY;O;eR@l1gt(B<xv4FufgL*XA??
z5V&1W&-Q;#C|sa!{@>H-lfwD`VE@0Sr~Cac`;N{#MQ`vjfUNX7j$sH-6i9F4B-e92
zRBns23befpmTM|ib@T^`qcr+hz}?KplABw3YmUBeQ>bP~WzDwutiDpMiBztj#ahO_
z75ypAz?mWkIkS@4S?w~)>G^~6!LhF)*}HvHT_s+WV^-OlVTr$ePrvIwj{>cY*gHVO
z`agLxd78ifbNqNZtpC^XbXxyIA5oTM1e5oE5;qsa1#XRuow5g&u+j~|<nJlj3Y4*+
zZMNBB6S)<<V86di4HxOk$D_b}N%ZuJ=&^Q{eO*WBS^oo9!9jWLTXcP}-}$fXWgY!L
zA59ALfAZ+*WSIZg@pPE~>fR3yRV+SCLS~X5L!<L*n|}2QP?5K*UfDK5kMvtvXKY@!
zTo)=DwqiRa8Pz%@Izyi#LOJ;SIR)_b>$7|N7x4^vJdlH9%mL#hLVxSH{Q9bv)}X<d
zfIk=s#p3wP`7AB9t|+1ITYdfd)d63?3^MfO5g3ns<Pjeolo(K6#5nK)3NOJWq{>lK
z9Wq1Z3ED`%+*l~$m8NHGq(}~wWu%l}q$5NWU}=$H;)je3C8XX=zB*Y$n($sihW=it
zDlLJ9EA06;GI4XNpryCgt4izxWlVHIS*}g_XKGihgi>)j%hL^bPRYt_nTmpql&d|;
zNDfTZU!7)F0dQ(j61~v}I~E09Cp~@toJr5<Se50z!r#pP5FhU4jQ>e7P0ggG!l}Il
zXIzpGP-pz3=n|tV<(Lt2O!c8CnX6QR%2oz&2u%J7brfG21}T$w@)_7SCoL&5Sq`y2
zJhRh2RvJq$1^v>~I8{YL1T}V3buMehQ1qbeWEK#rOKNMSoI>)@KL8;K$GUVIma9It
z%bng|p!GD%hw{w6D<@{!%lmxj?u+)*Zxmf3%Fy@X<;gRk|J0?jTxJ*TDY<CrvCu*0
zM6WChsB#!_D-P<atm}Hxf!iT}4$sX#{mTDWkcK#1<Wzu0`|l)g|D8^U{GZqJbddjl
zRm25wMq;i5zETndGBPAw)QSBGU+D7h;i4w|*BK$aZk;cMX4_0*=!5;lGT|7fLkCy^
zy$*EfpnUYMFY1K$?>O{<Go~Lt_<y<gg)QOH<0mJMiYoN$^Ru5$fBMG>I7@pEe8iE*
zkq`ETNNxoV`}*}nyb)!-emzLi3x`SUOBK*V9b^Y<K#}Ms3Vn483tkfJ7e`yi9gk%2
za~XjWg_oF;P`OP@=gjH|lzMCsWhMw^ENwd+hW=Q$G8V0jt&$_lb}?)o-^laPgN(t@
zr?6nQ>FsH<|2%#CIJf>EKR&+e`M-MISS@#-etMle9oB#Cp@YCn!!m&8Lp`fYq+($$
zg!pdb!;~^(0<g+BWCA}WPFBW=H>)eObIizkm+NxM86)ki4rVSos5~-^4{U;UV)$TV
zjjd|ecz>07rn-q^YTA;yGy_>$mryaRE_kK%y%W{n%005};9A;e&h@=Smq{ULkcDd%
z8F<<?uN5FwHV46<{mc-3OVJ#EY6a#3tzA_q2g!Ky**<=$R+RcL=i1E18kAy%G$-VJ
z{$=zj(_a<*Cwmc~;84f%R;ez|h=tx%dLowarqhI2YTzn<D|aibOleudg{wH=I4Xq0
zH*iZl7j0L-+;yv_^v%!XPdLDkuE9JGm6)VW)-seiUM#t>r4gFD&{Mm1HO_=2UvBkk
zbOWnGBib3unVX_$Cs@pR;HEIu)X86=G3M-?qd^_W)`0pVyq>vfSGv*OEMDbAZ%+&Z
zrv(*k8(=j>Ovh@*K4VN2i(7?<b(tx9+i^FyR}{TFjk&$j8v!8^1$6keTR;2kPBhRw
zKg-I<nf=nvxANl(QVjjs?xg=l`TyzTg8$#~(d4e5|9->r|Br%YUcKmD`Zuh2Yh-`Z
z(Mri*-hSIo>NjodM&>UW(oPb;sjtDom@hXL`g5?#MSe)VCFV%x`fG!bRXh(V=F4i;
zAqPjS#G*ol+Hgh)uTUMR^~uS!S^`I`&&JKbf)VT2jrE(=m-_l=C<?GAS){5v#S%rR
zH=`2eiBPE)WeQfSMw$i2f`UD3M;Q#Vy^%=Te6Y!#!va5*X-HYWH#<&#28V;9|8n0-
zs2S<vAor?<=H037?yLCF_Tu7LtnSndLdBe^=Dw2hEtoK^wS!?Q!>NA6{#_LLHXB@T
zx_pm&eH*+tQ05KT5_p>^@-4yitj3#8bfEi&Dtr}`EfshJ_Li&f_Hx=~j%8%F9V+iT
zoNk#eY%|a79jVL2s;JkqVMff~4wOx$=sQW(6#WK@+N)$4#q9UD{EF+x6$uyQChb4d
z$#L=g_h@?8^Z$Iy_8-AAuU_n*9rSMk(%g7^Oh9R0tF1r^=`HO*X+t|Q1r>+3n<+@w
z@5L09ja^kxTw9mM-Q696y9V!Wf;3K$;1E0s8Z3<y+}+*XEqKtzCAhmwaA%nN*PZ$w
z=V_hu?RA#adDyj=?Ep;^v{IpUGwF{c_GF{-Ey|i{akgnJ`-I!}NS``7s*H@1SPm$8
zJDz3eV;^Qw4%|nQsx%C1))_q1OnhRijI`@M5o?4-$oQu&uACN>W4oX?P0<w2)p*1E
zCzl$J=X}#uTIWyOP_%I^8y3-bv5Oe~rrk6|Hh^Pi5)RhRVB$;XT<|;4yypRWr1zqo
zOx_gYl9t<kGY@$ww^grAz0T!s?1JEb@j-$#RoMQ*r`+!-nW=yqYSa?Kyh+qs(Ot4A
zMc6i2wD_TE$_kk<%d9D!M%qouNCg~SMTna6mmU2U3|l)@$`M~u?g-fXY~#6@f?D1E
zBINmWB|r9ZYsK4gbidYN^0=lKaNhd*lH>ZA)fds!kC43i@f)1t@K;O3`o+Zv!fFp6
zQBpV#96dvL7T=FHsEYAR`E3>GLO{Y;fA?W^bORuH;xs5CqNJ@sU5ND-DWhm8sB$q}
zmEEucki_k+lB5`_V+JV-8qEFpPOuIdUkjX7P@4i}(g^sk%(xdPKI*C&H${T3#aos7
zBSyC&)b8`L@>bRv(rB=hm>;)3HI)#ia99iq&?@q6xNuJVP~81|Sz)_XIuc6nk95#0
zfuv`I^u0T$fALtYMe~>AT=AK-*6(rXCZV(j82sr(=eR^zrm)MpyddvvJ}`oP#%`oz
zrcK7B&W*pP&V^S%H9>^qJ-1ay%&t?6W5ReZ^WymQpWg+`hR)F^$`QIc3m>$*#MAo9
zIbF7sN5el0_%zl>E%g2(XR7rZnTtUnblk!^;eXqDDj@Z7GxQt}PL9PZZGLj@&B6j-
z?uh1{*ja<a7qTnN6G9n#6lOV(0XrP0#*8%qGoy*I<;{?wmgaiN=L*{!DOdf23srKd
z>$cT}3Yj!6_ky7#N{gf+34v-wL@=nu+V&D?(4uD@y_%46aZWEIq2;?ycKRwI@#A}X
z-7A&&TLk-A@@$ZAu@}aJN$%}`4!k@|5>79ZO;>@677y7Z?JUnVIga~h^+-mPEetgw
zV01eoxps%9sTn@_ZMcdQa%in4RcfwV3nUN2C-ut&R1X^3<z-O}-zLm)vh33*G)C7N
zVWgLHIn&>mAC^lkh^DJJsO!eQS4>f1^VD)2J5xAuoL>I5xeh;R<-wrVNnxaWjNPE2
z3}nZte-Jp`qwp#00tpKPZS}@hZ|=0F0LM;cWfVhwhr995>{asG2fp~lw2%94dFdsq
zO;py_1(SNqSl5-SW>JTjzfwm^BbDlw${0L*#$_Rp#Ta;1ji<SH195Gy<KG?UE+xHs
zUL<v?@yzoJg@7{VDj^fKZTeP5vGx)vgKf3$xLoqLG)5wtLxzsC6*9Sh&2nY7LuU)0
z8wHhgztC@L%Db>`$Q;baJLe=n(a9p=d^+klFmFkG^eVwmwKo-H3~_Fr$hNoorgchI
z>8F@pc4ey*0LVDyPC#>ZZ`In|?YV(%{Qi<vc%#X)A`}shEy8Y>`=HYnK#_Io!m1sd
zmMqJwpgyO6ib&;x56~{k)?TTU&o$&aV9>XS#he+t*_F_|>4OF_e@Tx`LC|P4HhZRE
z8ogFdP5<-BCv(^%lOO>Vr~KtpB51Nl4lVEUP;58C>7Cuw0>6yP`>oQ-JE&l6WQG_#
z#iVL6S|t2U1-L?)6`49YSbsKc(`4U#gXGVc*1JOg)gfLPqTtSO78zQVF~<x5uOi6<
zbSMT|q-9m2p(|GAMHTVq2hwU$YFtq$^Q^=@ju%Qq-J<I;aNp-S(H&vMA5Aj5oVU1Z
zINvb9oI`#B){}afIx0Ztit;g1y!Bn^k*1U}EO6~Pa-lp%eeH)OQZ+YT(^e?}+qAS5
z)Q!dk0I0c>V_v*&|5Y1%ecgw~LG53hIL4{m&|7p$%y?B~WNJ=+8WU}G5tq3kw4*mm
zjZmKW-hxM9!t#Pu$6)kwX`(rCjS*X#dN(#{vzdJ;j1Ir?d13>->yZKVs>=0`L!j&o
z!tPh+bw44KY9xku0Yn8F00Dw9=ycHY`gBXQ1{!hG1%|q;CncTvM6r;!ppRhhbfP`S
zh&~dF$G@f$5BKHV4Lm_PdwK{aFn$m_FgQ~S{#dUqv%2ca=nk8NPpZnD^nZQR=jBTf
zm+U*OU9~V6!F&(z?y+r3-3`=?jFtRw%6J(Zg>@DU%?-NuzInJWqc&<~>nx3UxPQw7
zY+G}_j8ASAMFrk_|F7pc7l4$7bNEa(+J-g)eyWH}|FxG8Kh2x#vqz@7c%27>#(2^~
zERm4v0W5gUtGwM<akX8kQ~+^&Z;XyQ!Jdx~do{8}un}#|x)tc7xGVqS68xF>-CM&z
z-sJs#OLV!cM5yY1-b9Za_{`K!eDZu-!aIbyhd~S$|2FOsDr~-QrvFY}fqf-7g8=+W
z6agi&jOLKN^^u}xz^sy{Kot>SVf^cd`_fkr5ur3#pOAzF_z#3poAB$>Vg+2Wt7@Sn
z6)W<JSBpmZOSKF^+ae2RZ7M+Y>reQIu&|wYWOtDOQ#<VRKrwj)K{BX}E-D=^W751V
zh7{j!e=)-YA?;At3?2l$-mMxeHHF9iyw0U2MTe8iri7j0r|1aueL=Q}gJC22jhK6C
zbwvjpQ-pWydp&t{3p6IEAy^FXqKD?_^vkMA&9c!_pqXg;CV9t-M5o`YcMs5>`z1So
zQpy@x?lm!c@OZiL#rkpa-v`z&$-?#8Au0J{V&ckTv?;}vX7texu*J*p<o3Gqh={>F
za&>q^T-N=x@xU}M3XY}&>E-!=%a<V6E}*G&AJulSIDtoJbjlUL{hMKR;hn~ntCA_2
zal9Muf%|zPoi*4vnO=}A;@kJ4)2n^1yqd$a8d2wWrJ)lJF(laCxF{p?IMHkg61GIe
z9+ip;b%FTnjJ>{3g@lsgaROm-ugFm#Io3dl%<&k4MbZm(#oMmSdy1gs&%S%azVY*Y
zHBkT_m|(cadpJYdT{ZRw(8R;rqj%`X#`bCMP<N+*$s~v8>8tiC8>0_KT`ie^xk*`s
z7$h7?Q!bs(5sN|XFmQk2f>nMf&M7?inde<2rZ0^(d3#^>Pg*4MkDi9@Sw`O7dT01M
zsRlvu)Fu5x+#FVtLA`T8b&|N?JER!kU(xMmj2Z;|sB${I+~{|A`AE5!>{%a8as%_Z
znOb{5%7sbXetZ=5>B@+Jul%ixlIEAy?xo*E1Aa-EW6uA)Dd%zNd#G%>xcsUuu+sNy
zkd_eK)`0Y-1pc_pU<$ojhjcW9KujezL-!okV(Ov`N75cKsCmzZ51t9}J7eNO<$huA
zfIAkLL?#|Y0A{mQXKgC`Wx%ou3+|_ty%aWP4zti>KY3{F!3(<J1-Z~%5>$0h{W%ki
zHmJ$x+b2{#_Ssno+v9?j3Ge*_G>AU=Ss?q&%b@r9{^EEB3I1(fT*ET}MNzO635+Bh
z5tG~iXTVaUuyDwm(KK-S*XZH5I_Fgt3uFB>UgzaZdsR_g{VbMEkf+6-o}$sXEl$Hb
zxLA+f{z*Rob-`HoVH>D?w1`4~g9e7#tmeBf=k>YaI+%bJxIq|eM<7=+%Um&xSmb1%
znK{8sBq_9%`ToA^mq17UHd+^s972Hw!x~>s5!AYv8%dRw+?G{shkP)rCJlQQ6>?$o
z1Ev-(IWwY&t=WpGxe^RnxU){BpDVcf`ZS-;rqRQ9z2?pvKifg)LYS{(Nrem>%~;T0
zAO|}tD*x*~_3Kp^PZRlBh9m+8?fFtk$<5<SCOZ&y139FLdW%1CqgY>c%9j}nZf6rZ
z1{OUJbt4XDr9!Z@@+B?$lHCsQ_G9aHq?FU?sKuTRnpum)nxe8eTg)o@F<64<Xk!Ud
zA)mTdidxNFbf2C6+QJ9Xc`!>h0z>)s4YF0qh+lG6h++8Ct6DJj0Wbl6mkB4DU)e#U
zaeH<u_@CHQP%$RK$Fy5)fZ(_`2smG55JO#d+!%I8XgW2DF7&%qQndZ?&WNW%pA(Nr
zI-;3_8-L2nz{d8$##L1i_wUbTg5+EFVw5Ub6uMu!-*2C5m~ve9ZoiE{MivHkJD>8*
zHIvWBW1C67-IDt-6lhwpl!*2X4MsDkP5WBC!&V_vq;zA&BA^0q#@zS)uWt=F7A!?_
z+OjPbvjI$tC48uV&)h@P=Z*V}0~3KNn}Sq)2xFsybP8=Ppm<a23?X$c2n^j&XTDqo
zc7HUTL}hmt4@R%sBOoE(iom(wB|^SlK(@5DRznS^h$%yhzs!uNeR@vilEZaOwE44(
z$6-<>M^nFObDfLF*M4mYjRpCP<KBDg3d-_B>(4IhzbPm2Lik(<pp*D|>?LQLEp5D;
z<+D%~J%PB`+aty2wcA?^slqe0#KCn>dn1!O&WQ(#?I0D%ltH%hqgE4H2Sa2s0mRlZ
z{P2errjd=E>bsUb#-1c$A3QYXO@cfy!;0TIMc02K*se%x4LhCT<L5d9Y0yX<`zzn(
zSMZJ45Js&v<d9&E^1ou&T_)+V_A!PM#7CXBOqZhOn?X`D-Y6dpO3F)X$F&!av=+4G
zHWT&wJ!5l^#Xi^Z^Bn!;kKin5Qs1Qc8aRuQReI*vzriM%{tFzn5G0ag@B1Jc+mWKw
z)aiemws8F*`l2i>gy%@M1!!V5;;(>XY)o%Dn0xcJyq55W0;+UIPncfH)pAM%wigdE
zY|<I5b&r*m#uKBz!qt3Y_Nv)t3U8~UA^H#uOnlH-KssplBTU$Hb&-{;bYhs3gVBo>
zKKBJk8;lB!iYXF=i^zEQGjDe<e!SsD8@z9Ks_{n~1v#CJQwWh$xIk+EkmofCzbw!W
zUn4E<w#T9q+5~yyZgn9uxAn&VWOG*WGd(C~3~+WPf={@ckVypVG#=Y%CSi8YM=Z}^
z@I<YuQ#kqn-+IGy^~VaT(qmNqXx5CiP0;ivuO2kj#?-i{h(AMJ>0MdmLdwJp(0Aj@
z@gM^tG<A~E0|L_AmaJ%u+r!E$&4bGtn%>U1y$Y>=#dX7!pL|kIRQtLpH2NzzQNjzn
znf|y|c&umwoIh2ND|CMf-G)Vx7Zxlyv3<KY1HC@eLiAnVVeRRG=26mBsJ10GvpxD4
z)b8)9*NTeeTD9TaB4$>a?JJS^&F?Au%c+}ZYlkGaB*mndVck9$`<`#M6j?_r$2lD`
zY~P=@EsV9ABr$!FQ|enQG@3$#615vI{B-hV&B2c5jY?nGoV!JHMxIP%aqc|5$CpbJ
zp2c7=uZ9gRCAsplSkx)u;nE$Yu2<n;^#HV8tVLKU%;1L~47UZX6IEF>XnQAthguR!
zSHmm$mJepY)xhe7lA#7!^}&3!;eLnZ^m3U4#VrwKO9LhQyvy&W```oi6saK(Cg%cD
zb!7+~wRL2VJ~aiO6u>jaOUYCKh6l(L(m9(tl9NbQNLe9^dBrw7>a?2TrR7p+D5sO3
zmGEubLf#4ytAmJDaDt22j!%So|AQpy(W%{A_4?6sl(#6stDWos-Sfxb-ZaLHP;r+C
zrz*r}u|X0HPc%OMV};HnBn1^Vs~9iTOd-V{gs7w3&(kkOeDby}uO$?PuR=0mugg13
z#h1!!=S;=b&8tePrPrMRvQ7KR^693DwI=l%@`NcOv~?F{VIpm#12qR0R5%LG)t-Q8
zm@8vgVS1i9AqQvFt_=X^MTo|syX(7|$yF*hVp{AT7-JE?5xrbOvqaH)n1ofg!o@F#
zW(Y7wvil&I-VIX(pRCxU-e%pDO)U`pj(!*^N-(m>g)B_AiajCXKEhpXVi?rQ%wW~l
z>X4m<g;d1(wSo2syc)Ct7nJpZ9*bDXn2-XCSTMOn)N@mLKqA$IB(f-u$J0@aOvVAH
zjS=>S%pt*F+z7t7t5b=UiASiw;p*k`t?XyP(`S!`%5>y(xY_6F1xP3!N6Q(OHRetC
z#36$b@YL~JR+OdyMOtCw2LjBlTtHXpz#ou3+N=+0J`fQh+C8+xc7QU%gFmc7Eu#b_
zKLA&iIW0}lQ8PA7$A>HWjxL$RbCUp$Vhq)Q1zCwuz-OUewMHHhT@t%M83TxIZOr$b
zcM;q?Zc*N@sN=(~cN}6;NpnF}U5s%IOML=6;~Wvwk=}`1PT&6>?x49YV$000q4c8b
zefIYgX`C%#G9KrlXI`Ihftq#6#GfVEhAe&*PXIr+fDs3g=x8dx=@t_n%VRMF7d}a-
z8&YH*SIA>Bsu=0{oT-#Jp|6h#-E0*`|JXcfMD`wSzZZjq4dAwg9aXDW#VPaSW`^}X
zhV-j;sK^g`)UNYRGIB`JYry;Z^EvPJNoGHf1%%s*NCqJ=>VYK<qcrp3{6cjk-GgBu
zg^m8Lk3e+`>^!_90>c#K!v437;Ko8ZzS>YDuZIkf>qO43|8}rBb|J%{Lg4D3<RvcF
zPHl{D!P+}%0D)rrf>CzEdssFnc|vLjoq(UejWXu`U^Rx$#bp0N{%Up$BllBQZSd!p
zSE`D*9D>g*qU<<feG1oQ9RiGbH?V<#K=UpJ5#j<G>!9{76Gw>~9PV0x&laI6To)n6
zPQHHdVmiwHM@mH5pFD5fd2b^{)YWz96hC?K_r`uJZbhC-uKQ8G{rJ~SpK1#fHM9$>
z?BjB)MUESud!tE+x&}HQCt>teSGVza`AXUS<^BadS={|6fD5(q<@$(u+FBBAimJ7;
z47iYUe!&3Evhf>h^L#m7sj?e0j8Ok{F_li38U7Vl1G7NUlzZH(gp_khjSuyM&JIJe
zE5=A)=ZK)Y?`#8yq0S`slAzTXdqaYLBWu51y=72;d{1hc+5&WqKTWFNw(Q-!irs3b
z*WQJSO~!@Xpqx)5DnKkn-;QJx`rTiumxCTxh$(IUJwr|Y=z)H@oD)F2#tAQx0(XD8
z{-Uu+r*6AK`R5;XBzTa>aI})Fer#BcYBBDXal>qkjJa?>MM<W}SkJPRgcAky^43X4
zuOBiZWIwKW9R&yCL^5-x7*^vwn<xra#bW0kKRq$(<=g%%r6uTKQZNh`mK_u;ip?VA
z!vpKhjfZxXDUxMSv)e*M?d9AHhfMn80wsJv;^OV}`N15XXT^%9@J34Uku>-K3&~Vh
z0*6Uwc6>Lt_GX9P_)vKnYIU`ghVumCoU{pKPNtGXkd4cO0zGeE2Y-qqXh*}AM5AO_
zMFK|>2UV)V|4HqW{#M|wjpT0}5Z>k?kGoIin$(fS5pzSi!{e*=^Tx3mAdWs@z`<Xc
z-BdI!zewcPrz!LUl~@^ULdej;<H9AJ_H>CT0Q%Uw+alkzU6hMtG}VqOzxO4TRBY}F
z0Ngrt^sXs325W^|7~?TjZemuV{EkH4SX#*QF0w2CTd|(@0dEm*Cx8I9oIa73(p*>)
z<#pU2Id77rO`vk*K|rI&Bo|WhG9)Vd>F+kh@ev{jtLH1G#ZNBH0{Vsa&wMvTG}504
zSCw2O(JzZpG-Q_H7%*m$Iqy!gf^#1x+?W_LjbTYlR#<kzzSB4xV+Z;bc~sLm#;cEN
zFL?FtXD-nS#!t^#VR#YcWt-7aHXXJ3Oz+gBNq@n56<eMz7{F_(*}Xve3i3az8_D;W
zqc1=whd%mJ=(OBQM&k-jtA71yv)50f`<rxgJ`P_Yv=v-ShfY8zeb3fBrlYOYCCGM{
zW?Ylxr{)Qo*)5{O&!<J*X6QyGXW4x}V}Z;elZFD{Qady-d{LUDjY~kEtmE=yRV@BI
z{?@`R%fCgZ!?+nKxrU_XMv2wkV4QBWXaq=`pUhz5Pmog&DK=Po7aX!X>Su02k1^*L
z$wFq$^=D`BSii2da5r2kZDu2b5~Dp!m0$J`yGCcsJq1`ak9`-Pi%2&zU-x;rMeM=N
z{mCJKIJ7qi0v&f4nV9#-sDT#;UlrNs1Y16Ip*D*Vja={nFNI-XvAB{q5vOadc<>2h
z2hvqB;9cZ!>AM-p(6=MEI|sIcxh0fw)xJyAuQwdX%R9JF>m*2ho<v?)y}Pg)33+i}
z1}87jzFc-fp61>N&Z~Ry>(iO&YtY>|@M-T~q%GvEUvP}-zYwurZ>mj6?7vz6VdPYO
zqZK(=|GbOWF8w3tji)h__QmOd?_cKDO2+@l5M+0H=Q0vG{>E2k8T{JDaf|skOUOI$
zAFXMSH@cK?bo*AYmK1k=qhSBfM@~`8{Jq{|aAg1Jy<8#LlsvM<_?y*P@g~8eDeGTj
zJ)HhmZ1C&<ndl1W{CDjQ8~Y;8L6Fx`U;1Czf4lPkh0oNJ7dA*UH(CP5Ur}LTUSFAw
LFxp|V>0tf`&iQIh

literal 0
HcmV?d00001

diff --git a/assets/kasten/k10-7.5.301.tgz b/assets/kasten/k10-7.5.301.tgz
index 7653155bde150b7af17fafe8956de8580d28329b..4f296051ff434055a8f3a07f5f33a65c71ee629d 100644
GIT binary patch
delta 178278
zcmV)OK(@cKuM4iP3y@EL@>hFw&rDo3rS|ApvbCaY-*aa>Y_JL>(W)xc04Pc9UPtU}
z?Cb55+&}`TPt+GbWO>Glm}#@BkjP9V5{X12^ZH=4KVD!ihf5p=f7;65XfztVdhr7O
zI~tA3|2-HzfBvU~7eBrH>BY+zKmGLVPosl_SEHZ)ghtyzr}&qD2#NWhMr-#~Chj}=
z!%@T}mXt-}aDb49B@Wnp=wT@XGNf$ZBV5uMCH^6bF_#hH&d+=*;s7uAA{>%K^!8xn
z{OUTHlD!+k1!d78di>YFpo8JTPs7pP=&|#AP6C1jF;K4$MgttvkGB2IvjL9d^yg2*
zm&4}+pTs2cN#s#~A`S<8$YYUDC43Nb781E2i5LpPZwMcf2u}mz4-nElWM2#r;v{B*
zO2(ImXlG}DP>T4oSHpwhXy6m!aT;sjZ?TXh`al2ce+xxDI>r*Ca~$D02}vZ;MS$gu
z@o=zUs-uOJu{hk{zlK(d)B*Jrm>CVo;r>1rf=IEio{9Z`>x0oSj^+c!y^n6@g_uSX
z(}-{&nuM4Jhl+NIJ^6p9y`+TdC#UZR8E0<_d>kDNzO`un_`8R{O#cVWyWUP8E&6}-
zd^9TS|Cc`<{LugR@mE%tE9pTxCqf<~vB1w>zB>Ff@qe26KfOHg|LpzQdp`4D_y^vf
zN6%-YSKf$!{4|=q`m^UffAQzhv+2v}>(TV!V1y6;OkU5tpI*;il9z)yi3rD1Ejc^S
zM$caEjh^j|UR^zVet2+j`21k_^3Shd{q*X^>*xRP&JQKE=AWAXH#kU$*q#B{JpZ5n
z^!(seY5qSOy?XXz{@=&nBQQ8n#Aqa9;wf7Ojae9fGeJH?*Acso-jb!*Ek61P0yB7o
zj>!xsfkaw@(2Q|qN(={&(A9zpL<Pd=zmCq&_LS*^r6fKWI74Xa1(*|bgE>`3m_U-D
zDM7I^eSAbC$<UG|97z(!0hUAz2LnFE9+;_|U`Y;<<OvxlTaJ3<$n#hdN%i^>n#9CY
zR;xgNw+p4nIKpUB_zsB$O9EeYsiFC0xC+kIf`CdyY=-25lwnAQ5<!OW>FEqbOd>%f
z!jW%4DHbSTy9jGIR3M*ldP97a2pY`+sxfnQJGB_Yw_=!@YdbrGf$$2X&u}0Vjxnc<
zQ@K1uqro5|@|N-I3l>msSz***9<V764lQMWsz*)$1HU?uG4-w$g4YKlL_<6$VyGG|
zk%uG2HFiTdr@l`jfF~Ie!1N`;uv4I35@3!vnNuN`K%2yKMH4_%SRnIOtt@ko!wvxq
z(>>iGd?NAu5Iuej|BjO&FvOvw;1(~{Cz$d%j$`6mklAtt&0@7&DX5<5G*n}Ef#u?V
z5bf-TkyHk@kXVu(cx^TXsT3ge2u9Z@Ga3<p7YWHYo|AEag?I<!^B?&~f6cW~(jXby
z+1qh7+u7Mgw+remkWYo41pYF@A@$S>d_&bLOQU%XUJ@BB(39M-Jw=S$uA(Fec2UGC
z-NEo6Dl9alTI?ck!B{GYRt(bK2_GVV^kg1CLo7l^pC*b59Qm00h(#HsH*ZgN)ob+M
z(EFG~6N$a+r{*>MCy$J=A`rr!M}#<MJ~>2}1pA*jmE?WoX{HPMJ2^zpMsKJdG$IM7
z(OeH<`r5oTTgT!{)6H*eDx5C@HlJ4@!n>IHXLw2iaftr-s(&BlHp=?pqep0eLL{QV
zb|ounECYg!`J#BbAVG*&tbQ`JZ{~}0%&&>O2(Xu%!;c;*?h9h4pHWRpohXf{2Ezx1
zv1`7AX$$HyQOa_<)Id1#(E>{pLMO56#7;NE0X&~`GFRFT$5f>A3MXnZm><)CO#?b3
z-qH(52wPa5zO;-^f3s*t=OK=N_c#d{_VX_!XF))C1q5HllBGX=EEZFSxj&uFat|dA
zm4?Zlkh}EX<c35t!=Bs`FOe+!cE(vGNt7X@D89wZ^f!&DOn-oU*dNz8Qo4fgNydWe
z<Ltq~sQ85yCi^>;SNni@vD(eEfW$#Er%|TV@N&*R`<R3*5+uVbGs4q<N2zX8*1CNN
zsw@4K#B+}Q?Dx%-(@2sz2ie6j%`t^f@tk;Ski0zmLLxc!_5}5bhwWpKqKhO5CdA_@
zmN^{FP)Ncfy~e1&1rzWodi2YGKYpiH(X7RuS-8!oG2<ES2u-mdA1=?#6SJ@#<`nd2
z8sEIKb7=7Bk=8s5I+KWhvqTajnu#WSIDm%=K&s!<>4*NtgkE!D<%1<zeLb)QfKtfJ
zofykS<;z$vC_4kSBvq7!YJQze36F>}WhmR1f!M<yECWh;?3j-hIOgnbIRvnL$YK%+
zMU-)}0p%WJ*B}9%TTXF+)%vHfjeO3gG*Wm5c_jxZlI5Y+LIZ7oC7ex)d>kMo194bf
zC@mvZi%&`cNrrreXoNgv*034E5u%YGUZNBi$Fmvr5b@^(Ny0-KS<oo`>cpRutL&X!
z^mi_aPdV}APTCy-6NZW^u2zrQJ~WEC9uLuuLSkny@X6h&wMud}$pVa$(jM3+chrwl
zJ4XE;46K5<Qc9tJGbq~%UKnsi4K#2XJp&reIT6BT5LRU`wIQ3wPQb*rmI->K_^F=(
z1l5&YzR{yojX+M#Be{(8GX^~}NFp}<jd&7XSV##Ei~+WT9wj`;rj#-_jk-3I>S`G)
zj84Ni0ADK5W(<5!5oN5FpRsqXl)fPbbc@wP4sr{8NfnTP`FG_dLQxV<)dDawnpm)e
zw{(DG`i8S4&cV5+YFSEuX68Lf0<3^3qbQaJ4tfN31x!dpXXxa^*^&8z_=7<}JrW5s
zTuNcSdVxsfF=Z?WsaBuNc$hAYi+V8df&|tw#X1&Z8of)g2$Mk4-21XE9CI3CzC1Jw
zc~SC8Of$oO4@z9YF0K`JD^~@hee;KAf`2$YhP}gFF_QXV`ph^Ba|?+!vtZ*?W59z>
zp>jD^cEMdb$~=jV#0Q~9_0`Ll&tK#pzhluQV=@QCyf7o0Z!oJq<V2E4>zL;wU$5tO
zA0j`pAPG~^aoWb#9DQvJ+*uL?io5UiuB+gq+tVC>8x)pJwW-<9zS%b>1)0%1*ZaZX
zH%#WGK~Gi6oJ8{Y-NbA}v#Dj5`wLjRUynv=awv17@-Q<zk7BCd9E_g594T;0#ehuU
zTX6(?g12OOYOObXE40axzRF&l;_#9MBzrIpD2e1Gr^(>WoUwU8j$)d%){ibYQ@Sbb
zOh2uEf#Ngon(#3!F^)%Cp=nHhPdK?E5sos@@JvH?Ju8@1mFGDu;N7KBKSu7d7n5X~
z9!i}ayPBNO`AOu*j7Ejtj*i_=ZL<_uNIlL3o5_<%a(r5DR(@S+Z)jtQe-hoKPh}tq
z9Jmp&TG>m$%~LgHql_cw=>-<zmT|xM)XBwvL4G%>7G$orYakp-mHu7p(mkt7ugUV)
z0c>eR5)yvu>(62>Jcs{b{_&amf7N1mN#^>H&WL4h*H;nQ^K7%0YJJ#Cdx}TtJ^~qK
zk3!}X+fr?;{4=`><QwZvmtSsWerka&GNq=Wwy3NjpjPOJMSJ90AhS$}LAu)JTyQOa
zt3$|q+o`c2gxPk0vbUY5LxY|e_r@3P?fIfzRGi*mN%qX{KpBq`2Z4ABqv|iP%rW-@
zFXtJLF5z_xk9GHBy+Kk|sIt`jLv-+ZG(wLo!ul)ZrJpHHPnoamUqL(;`67jNk%)zb
z^8A$pN}Py=v%ON)Oivf|2niwu>^|Oq9*p!W==k(FUEMQT57_*S+>qc9(P+j71FN*(
zm`$<6hJ1vMqGjglF~gfTEuDs@*+{7o)P_ZIPo;1@x;RDYay9#hA01W=hewknR?Hwi
z*pxzVv0gsk3vnD1zMC#PdwyhmgxW;ZyR@UrcWIYOqL0SsXfioNCX&I!(zs23XyiZ(
zJqZ~0k=Zcur)CA3oQ(;WN0;w3Pr+fL)(fS7kAi^Ro>67?{{7d%BZT(Q4!k(n$^Uw$
z(3@gGy(81QlNr8{u~KY4EbTrbcT~WP(BDB5`$?&RHUX`R@s<Wb>M>IM0aU>Cqx3Jk
zCQ$=kjQY)J8$**Da}PcGaCwG*tPlVF>G3%I!q`W8A6Nd|4v5(TpuCSjcq}Gn|1pWN
zN01;fhLb|wgZ=<<@{fdaLuDe=)Sj^+I=RDY3vq~cV$NnXAUaH9Cv~<cvwKGnHH$xE
zt;*CkXhF<d5HsU<Q+*JjdcLJ{0caP99H!0!Do_#TP^(962^?#3j9qYljOO%)M9NsN
zKm=-ZV2y2USIi88ezFRb+`dl@LF%eN2BZXa$so!^pcG#<*H`H}F-!P3z%;ZJU>fG#
znpmqi`)Q%w1z57Wq5ikVaDhc0L^?RO9b!|6lkxQ?qVUR72x!-sny)$3-kBpHjJ!lh
z7J{$o^cam<6sfH(v;_Kp%o&K9pbD;rBr>3RypMvwyiX^mHqbM~sW6*A$<(_W62TzM
z0_sUIw2nuXROV52+C3KLQ$&nWrIjswWL9~niqYLXI!}Z|H1dMPC;8dFo1e?OW)AMA
z^1W{?2UylEszZmSGmnIzEIKwGoI|v8u-HM5&hZ@$lhDj^{SESet!uA%45=pE0a~!c
zDw-K5VsWMPn^{*<E8qmw7`oJ-AovCe{m~E|Yi}EDosEk@DMIU3Yf#_?V+ckiT|v#k
zVP3x9E4^y?RWrHOlmrc(No@&Y%X~J2kWPmVz*4__Dq0GV5-%m^`s_vt$=id`W08HW
zechHxmA2*_^}YRnplA?e{=e~2o~4N(#go_K>++I`x~MQCOHxU?aO$Mo@=#Sf*_6&V
z(bKu~ved}K%9IdCiDV~tl4DOxI(T{>p|SB`5`pLpmO|sj#EE1fmej*Ruv8|HYKg{2
zdAmkrL;8MvVJ&nu+X5fQwGzvTkeJI0=4S@7nHxnFG-F(UNr`P>M^o7lBvPnpx2ut+
znE7i<QqKRL3CBA&nVjVburDUpH2z39oh?fr0J>Lall-$Ojr`+xDRA}k;#2A8q^hEn
zC`<_E-r_KKRFMOO(2NFfR+K(S(hY0+i26rT=Dz`HD?L+fN{`eEK{zMA-2@ljgUqdh
z-8q)tf^cDfO<47}2X6qrePk_Ocvges_cR-?4@O6RNF&8eO?&nXd@K6lfPq5=2V)j6
zHPL*dj=*hIJz{gXAqO5-6E!_AJ<K`gGXq1-ru37+0LN71I`T;zu%!j5V@~vZJ-RqG
z7#VN7F)7RuvTZnkz?+y8pkatU2!bBdNHusvBEqSEr(KgjWA8eNC;9;JF;Yf0?2%!I
zO|U;4=tghNS%vx1={$r`7G<qZh&gA}hm1<#3Wx0aI9;P}zXhcO@`}_BUv15lbQC|T
z19(fO3&yS|Ie&6&e3Gw6s=wShyEUrx5}7(ZU`GfW^Cz!IqtVmBpp9Gq3Otx=>L=Q9
zt;s)sw3|rnB(|qm7t9}n$*i$LHE(m#73Px}!BVY)hp=h(uIF%ad5+agi`3TqGRYRr
zw`7SzWuJnq2LxOP4EaPYt~Xecq2eppw2GN9WzzYfm^yUM4D|+(JO>|5(|pKLRQT8_
z4%+2&MrTA)&;ZXuh&oBc!Z>A4BT4uT4i3?O&hrsyFni!6Y?Kr1KhwaLkc3%)E?60H
zk_EcZkaqZV;HKAg4)jndnCIu^B*L*+FnM@iotFbDl*)#%4(sxJcJK;LL#_#l&+*-n
zXS`<z=8(ioFXB|BW{^>!X7<4BNG?qHUm>b&5Lch7Hu<$A4Vp>Ktam2HqHvsFnG?W&
z48n)D{ndgK><j0lP$0BSjrCS&@1PB=C#W5^OCluWL|hQA8CBayi0{TM@)FKTWSfmM
zK%z^>Hy|?W_4&pneVux@ihaHQKiTEMbXf?ksvl?P>1gh3R7od#ggz;SX`(&}!qF0a
zn4DY!Ry@&;Z?NgGwdxegA)XTmO;o0TK2M^^h8mJc@+G(-bl58kLmU~}((_a^FKUlu
z1@Sx<#uwV3XJ@GP245zT(oM(d&b<`-R>zNlpd?gp3*mveGx4fzr$1ncZ(r+JpzDJX
zPJAl&%~O0UCeO17gOYt{MB#AIC@8{6)ybV&kz3`&OGQM9<CsO}?uM0+I&g=7=y@|9
z^Qr-)T8}lGYOrx?XNyWRL?sJ-Inx7~F^eIfs)i|@k*H{q9yr)m28%jS?MUQwXgdmC
zRZqIxxA&{PfZe;cPQ-HmwQ$-|0DYqev$gx&x29ufYtyM+?=DFkP!9_|LrSaQA$mPP
zs8*TlHcd;M{-S0r(l0IaJb&ze`<KcHNl*0(F;L}DjqWzl^U>&>=53v4qfyvk7#+MR
ze64hNn3?=F`c0{7mdN2WNJy-<(^>=64BZr7Ug<Vw@VWpsEUkgc_1penk73JE16A)w
z`UCwNW7l<NmD<vEhUhJbcYR4>cES8hg8gNkCa~XihAbqOq6I2^(-|UvnF%vSEnvw^
zTrgn=v@`s4htmW*Hm^TnDvOX!aKtf|*gAlIw&NvEitD-Q685h}p*}<}Ugn<~A`X$>
z9F)YW{58mhnuPfwvlN-<g@G~8s;o7Ti#$0*2kPN(Y^uoD8ykEpOw^Myql8e(i3KEg
zO0%Oo(DZ#&2AA23Tpx^oZq(16!GPSs*^z$~gI8?_k^zXNkR;sMMf#_S8BBji%qM$r
zIVyb=C)0p>=}*qs^`1xK#m=vT!JOk6j&MFSO>3uw2gVs`ZZE+BjAUuRu)YRmPAF{K
zU}-~2h>zZA*!oH2ks&&rAu1n>G{$llnf`5Ffz&4fmgR6TAQ4=Deo#Eif+->F=uz$$
zq9Qw`2T;mr&e|#zb=(KEK-XkBF!tp*yiQ~1z=<#5B;n}O1dY$%mH=yb+VNfi2BUVx
zaU`gGOP09+wBoxo>TPfne!?798;ONgPv<mJay=M8*q3^l2y2s{PfoK<NFvBD#Mk$J
zPkj<exYK4#avhd`cbHrK>?fv;;i&U;gZgoCXOQmPaiU{!2S5<G2_Q6UX9xB9dxX?%
z(3_uIEYOrCk#B<;$|rwt(yVqosZUU!*_aJRC722hCDT~x1{~nVB{;S0EiTE>{tf2)
zJc-OHtk^H!K`>nz-1haU;4PI46B^?&AL5P!GLvW;;OJU^DFEMx*mJbAkTO2p-v{mu
z_5X_-@9_1r(Ws2-BXp#jf$aI@24bw>ihw3u3zc;@(#ZTyxiqL8EOZ?lI|-E0aEm$Y
zHDfI4lm=8TO-S4A5Pc$`95@Nt4M8mO2)ZRmk|01h2+YYp;X<E@!9~t=l^LWXKm}T`
z+uR|mQ8@X3d#!eW=nTDmJ%Qsh&5jwSf#%Td0!yMe!3h>D8V+>!56b1obFjEX&bft9
z63sXvzh?{K&dYEILci=5)<)&#F1LO#I#6F(O|>4H1qq4dlxC3vL-g2y8d^AyQ{`qN
z^Nfx|S@X{%jows~tYKL;tBrF#4)NW8>eq$!#sv<4jwde}lc!O-EE^x26Lju-dy-*R
zSFJr7;MrB4#0wG<j)RMj<M%g&F9=pTWi&k484P?Zv0mEYDg##wN$?>yE}GZ5hsW$T
zay<SyVBWQ}0lX=-B0|y-IHa#kU?0bl-axdd`R7UY$$}HHV1W+?{%AB(Cc2O$I;KMX
zmtPWpkKGU*>;I30de?AK)9IR=(O5Vf-I+gme0l8pAh!j%ENnhPd^f)MkZS4>-<{{Z
zu4ew|p}1iFBqkob`qsDUzrVj+{s-YLNQj5O2^MX(kH-8D&tJWKcJNav|HJd=&tLq=
z|8O6Fe+&@X`8PfEJ7!52hx_|V3igadFh1XZ_c@-){b!?tKktqHyl=kWRgINRrCRFq
zNc}A4EGAr1B6beZA25e^_!N8TFLyiroXP-RT>gACE?(%%KFX!uQlE}>vIS@%2!SAi
z>|+Nu@LWed7oO$&x6xsMhWa#*feVW(HlN!DR<YHzw8T#t3ka@&1@*R5xO;@q*FpY&
zzh8Beouakai@~L27Cw>6{HSMgx>YJRT$$0`d9dpoAT#Ra%pQ$nv`S)-><-}94D^n&
zOzTL}k=Jz;?d-VeX-+oMEP9>tlx!hK$xfSidi^H-#GFMTa~P%mD<sD>lA@P{)`Quy
zyn<=dD6nd~J(-Lf2lSJXPRZ;j;gl$ULsOnJCbYUV?!qm(_H?+8KnP|cypF(;o4Cn%
zoF=1bo`Ux7N&`J9pce5eB)sV*Xz%hZdq`HH-M3bKd1O@A{UoZ?x^Pd&h6=O|fKDmY
zi}P=wNgC|e&O<nssbgWOn_^dQZSJC?9ns9F@d8J4&4u*%x`=5Lw(!p0`>(uzX<j2r
z!@uLoiBxUipf>H_0o_Hbbx1fM6aaiJ!rPH}z9xyC$Wh&_K#6MBh<=t?VNEJ@T80K%
z#>I#TkxS~(m$Iy-4xbJJn6!1$L82twIYfUiJx6HgboP$P3r++n85ib#4N*wx&Ktsa
zO3!~SvU=e9cYYO0({`;ivyW_lYs6-=fJVf6>f6oqOqcfo(mdU5N{{W$2FP)c>!?j?
zltox-1M*@ieUkG3X_4xl!<fsiw$eaeq*)P=4ue2?NvSN!%|kgaE-FB31$6fjO;g0J
zIiSV#a`mHI%LPCL;)#0e37b)+3LAhnt48CgYa-ueyr5<S2Dvua&BNq>q*U84m4>33
zrhKA}?M>9$p)}#rkVL1I#4LB<<Gshb&a{BAPcwJahJBI))@1s#r-MWEgbe4XCh4C$
z*IzT^vqXPuvb~TcaFsDQ$}s6UowAnhN!4rVZKlI~@IDHb=QygW`aA&mpm`-O&jR}U
zy2J2n^oI80KJ?j>;i^r49jhA&wAmb*h;%GTMH<d+N(g&?TP4c1Kso737paSEt+YTC
zfnlkyD#V7Rs%cESjB90V9YfojHO}#N@g{Rf?V2e%%o!9zkO8BX%2Hl5PO87lVqr2@
zt|b*?4dXt9!Yg+5O=Y4*AlkXI4S5)@D-gf2X`>m?Dh>b1rs6(-MB%qwKMz?BTKMrG
zg}{V0tR)9$8peHyLQw4LAxlF$S008ywC`|jGUz`0+l)_te64Ze>P#X!1*^$fV$5_L
z1SVM{x?q0CEwHe;NiLY*1?sQ}mgwv_qGGUC=EaOL*#2Q&?<@GVj+42Io?BsOE-BTf
zdD<29H(+cbulVMF&#f+r|F>dVapO;KJLl=19Nm3VWt^I;_?65l!>S(q;$^Yzc?*sT
z{iMpWbc3#S;rL*qdSmQeW6-;1(B2yc=WakRs6ev-&k+t-G}pJijan@T(qCZQ?2SKB
z@Ed5pMmQux9rp+TsX#0Ww4>1m3ZgjSF%v}OkDqrlpLKdr<~(COw3&|{KQRcUUdmzS
z$9(!f?OOmav}YAh_y5E24+_Tp_3(+VY;}|tiF^7#pXeqM&!0YSaats6d;gloJ&}ta
zqy2D3+g0>nd!zrev+o<n0s^nrv$!6-1AqA$d)L)865Uo@%OPuxPYtY2`m59^Wmi#`
z4ZAPBHvRlMaTqle)u*;E+jnWC6DKpmN#qe9O_zlbBMb9Mm?+&4ED^c$f<(|8qGOi6
zSV{Tvbl5+Rquv5RU91q)!4g3(Ys3;>BC|??i*E*oi%sxfU?R4Cxbo>coRf}Kx_`ok
z&4fLe3b)+@Sl*e%8+VtNjzo6}ZmF3DZkhmK7n+WAY)W6MoS<8T9JLHD>Nv!x%P<$&
za=~~*ppuI(X^Wn$X;2V4{zs_?Ck_s|&>YiYLmhbLs<vFiv{6@{)rUOQa}C;TkZ(97
z^;~m2tv>5l$t7L$x3MTW4GI@8kAE`9$vWIKBk*0VN-5#nT$XGn9aS`r=^M_H_<q)=
zOUr?yi&Hd*e!GyK+G%MsJq^1{QVol1w*cuE*RMt0{>T3P+KJKE)R`X*ZIQ{)Wf%Uc
zUCh04)KvNWIq|MZ<){{Q=I8wxR4G4Ku&Da*v#)x0dxi%2|60#DNdnx<Eq{LU;q0il
zW83pcT<i5%!xO9(p9YTrvniP|-lL-RQG`w+fA51J90k-Pkst`qIf1<@dZJ)HMN}Y+
z0y4)z?wwp<iRK(fQoT(S0Gxu53|yEvLO6~C>S<ps<4CZXyv3Zrbp$R@m<Y&rCIF;%
zujdJg6YedrfTTu-DEK$y$bV<IQNXZIqj^I|h}}k+Xj$_FYS;RN58F<84M8puDa|40
zyvgN5F`Suk7MhYzjfW|gle!ngrf^@xFSIXU>S@<pFJZRsyl!Va6C#n<+@fv<_$<UU
za(JiLbblQK+=7?Y@}bQQ<kvTCk%=$~BwdBw=c?ge3kz#wp%sQ<0e^y63Q59t?ynaV
zU9QAk(Lb$-Iq6z3CJ4H%#NO3GLmmrb7C~NP9Qnw@F`m+Z0=Z7#S<GpO>%#yVoo2<M
zGLU)%OlHFtx*&D;mpM-nTZa#Iu*CCD1ewI?)W%Amw`1LHP(@eJjT^KYlV)Q%G|cE4
zlsX-08B%j<BMWd?fqz2des*60+7g}F`LFBZPXob)hN(-~N%jAQ$Z$SH3n^o9xW8}S
z!j15u*1+W>g?{#%^D1JO;0AL8Dt8yLuRf+#7#$+8rr2Be(j>s>rhH1RQmebiS^0e^
zAhVE^upOdLm`BR`*-K^imih$6gojj!N*qUn*ydD{CMe(8<$upd<KpnAT^}OAExoyn
zJuonDX%HYB1nf2sC&LR=pT}`bpspvPkuLT5TAv+@7<(&RNmkZt#WUDjd?p%7Zvk?(
z+kTKm+4^V`98ty6Nnu3@Ov6Sk4KeamF2^jA<gPJ`R;$0T(lshWZ>7OCN?l>KxdM3-
z9SOBZYjY(uIe(#Z<M`_3%jYke-3e)z==8XgH(>(##R`O?0+3Gr5@_*`MVE}Vp2>9d
ze7b}dIUS$*zI*sOom5*m-Kp;6;N0*4L!WDpa0;apv9tT8bhbX3vnCn`O~0$h8<IpD
zxDoSwRCSuV4V1LQHWj7_Prp{{CuKUuAZJrG(v}u;mw&o4{H9cL1{d9Ez$<Cv4q#f#
z?rX2`*bxENbr8z~*><L!>k%BbkZ#;*IbD1lcNOp~`-={(h14#$oJt~0{uh+*7~S9?
z>6j`)(BIeccxS1fV2sd2!Rtg8{T-Y~B%Bi8C%$7L*24}mtwvHY;Ugi~`tXoW^;5ND
z%VYNX4S!u%56qGvP}b*rlT&9+b&zen_UeqT24lx3aln?~N$#}Ywn(R^1MMIinNgo`
zqYn?%=5;?~#C|sx*km*);XyTO&qaMxV}xx&AnV~K9C<iGQ++fb1o7Jvm692~+c-Bm
zYFg+Vi6C(TuVX{5*$NEk;bHg<lX*`+?|(v*j(-jX^ReXE)0wkNxktW1stavn77=R?
zt1M<3DYbU)XYrgw^7!3kvu6UP=M;Dw;`T$((Y0thWuqF**e)Dz4@TezFl|NW%X@a>
zUsPkq8ZFoy%U+L0BRA9Xz|-(xi(+%AXjw6<PEa#Er!-i9+E(bx1K$LF&G2fZea^`o
zOMl`Y#dHlK4@S>k)=*jLLKl^p&vRKU`w<JB>5xGOsMhHL>E(J)58JLzW#+!=eH4Ey
zj$lc6OO~g#x^p$fbM$Fq)*Ez9mgT*lOZ8M*6srNL*O^gMBUQITCk0H&+B{L_l1_$c
zU&2gg!#V;^ad^ps4Id3F6i$!M5kPLj_kZZ}ojm}yZ8!@E!a^jW4joVeCz;yK%@_|6
zj+XFgT9~PpvT;C3Bqw!uv(_ZhW`m@10r+^F_-ZSS12`hxXS^E+Y`O)E3`CucBUnPn
z1;M`J&jR1T4vyL22~?a*yQnIPa8R2YU?-dAjLidb6w{5%?i+v%v2kx(g!Uba_J6Xt
zBSBuhKqT^*+S9!mUmzQ1edKv8i6qQ{24XHaQ|fKg3dYc5pm$L)l@^GZE1)<6iDwZ(
zRR7aKXA_P0C)$RHoOEwPn)6}^a$6osCog0mwviuJ8HlAzmRY)2xI=$1LZvF8+hEF+
zNxiG`2$#T>YqB&scRBGB&s^!W&VNh9sklZMO{r9RGhz~X*js4VkA@;F7-0o(ip2sg
zsDL!JZZ_u=)NVS0D3?38k%dMra1!gg`X<zDhL$Yh$im5~V8zEI2yA*@o##LYaN%5r
zUXviBmF~@79xTw_eti%!>q&-+&1N(pIp?5}SVd*cs`z`t$rXukv~m4-^nW|VNdfFO
z?O6J@WO%{LR?|y;rPbheDDePxH%d~?9T$%bY7pLr(kdW5X-{TdLj2;Q*-k7Yzh!$$
z6SLhlryxPQs4z9O?Nk}DdfwP*Y}ZlOMn*Ob*{<GCDDxwY4A*B^uzo?n@GTZbQ)G8Z
z-=^6r9TAviDksS_?dkM*8-HYqTo0`_R`FZ4qQPpA*Df7~?0n8oB0pv{+RBtn2QI`B
zo)eCU?X1%n>Q>-aw++*=GjmvC?^?%aM|J5?fZ(I!ZPIyk+>J8xwI}HfLB}vt8DFA+
z&1sZDXrjXMW;+sC!7LrXPD?>kbESQBEV<&AWY;9BaaV=Z<4mxbJb#HK$ERBwxO3YJ
zf^HOsorciSuFLS1iQ3jUI?(GnhRsd8kDpmOSmK{VH`|d@fR0Y08_HP}b~aU<&73sc
zh<HIb*^cPlOaOQ{c`JVm3J@f&5%Uj%@Xe>8X~eV<p9?I+E#n)uRxNX43%v^`?Z+KC
zd4HClMR3cuUr9oCQGaQO!2T-_TgIV5{=ezXlxl_F4!2SqMSGjFP*%S0eq_l>%((h?
z<F39-3%S)j{d3W~#|sUe66mo=Bq8CO-sFu9+%~P5`_8&dW{igzig2hwJ^T;zkI&Tq
zYppN(lFX|yU>k6<8@L^g1U_G$yg7ZZ(=UZ3DXK*~R}yM#=YIsck6885(PM7TI6_y$
zW=i1W%^%vA$moQ<2McjJ686er$owWE)MmgxtK5s+ART(ck=}vqI1+_64MdnPv{P+c
z3yQt&X`Ezr$?_@&l7o^02scS)4q31LN*CU$TD<_XMM0G^GL~m|BeZXQ`^4M@=!3J9
z3*EpJpxp08w|{huCk2!`=5Qpr0x+Q)Qr`<LFiAJPrb^C&bn>Ljdwcv6Ltk`#(=YiF
zdV97gl(~Ign|0b>V3||E7kF8FQn9*ryd*yQ8<r)_-AbFgSqELI**DfTIVp=SAVPc9
zz?Ii^(K*_BLtfgC2?cN7C`06|8R2SM^n^lzLl*hsX@3)S7l~M`Mc4CJEp)|+SoEhT
z*Qx_8F=rv$^fv$P!3YYyu`a&Q^2hq5OIt`v+B_V_n9ift%=*R&Tw0V@%)2mlUFxk%
zYntk}DUs@Tz~%zoP(k6M`LdXBAz<?}azlciIMQgw9C)6wISK$=Et18g>OtC|fRzor
zGl#?da(|oH(BipiT#HJ2*MXFpq_J>E7pK+uy4sE5)^cU*VAL{}&DM-w$19XIZ&X&x
zU7n@IUKC1(xoX4ICps@{e2F6;g9o8nSFAZkarO_tc8A!AKh%fAkzYuwk<W1Kl!s>7
zTC5JU$)wz_jdk1?R~HXD0ckWOWi|co28pzhCx4ZEyDnlTNvzg0;-@o7H9OQ*!(Kk$
z3vnD1ju=m;+@9~c*llz0?(FQEQj}?9^`y|aQ(>dx#&$9}8xt;%F5hk5zc87cAq5;M
z=#Bfo%Xit)+NTLR8lOXBPYLskdP*_DZ7kyl$_qt%;u@S3B1qa7grh_*NF;4qrK+Q^
zc7N^`>kHrloc84a4w#`@*cq))7mhivs&YFVfB&`cf=UuPbU|ro^Kw$RuNRO!6)+S!
z1%SRBXTn_zgg1{h3W~sP7fc!BB%Bg15auKWZ(vKNz&{ps9n_|nD<_=O3_hsNF?jy0
zs9N%K$(^KniUswKlKSwZ#--zD)w(1i?tkR?9oLQNiU3zlW>7LVT-~=SN!?bsaW{F<
zigOCWDL_D=Ryzmr&}X1<jFFgw1z16yCo^ajH%jBGb00-0@<%lpx8Ss<ePK=W4@QXG
zQ6aSpLzkdX{7hpkv5sq-lZbE#R)PK&5*XQXoi6=qYdmmHnQk07atj8EG37{*7=LSW
zA!Dk?0tI)0Ird~FH%9BC3a8U6tA#7o8tDQJ4U?(e7g-Nzn@VBRxp8DScDPv53ZZuS
z>N((y`n{Kd_UcXVV*>7kF^eMN$xVnv7m(kRaP($TgP3&UO*erl=|!7#bE`?t-k%<i
z(S_-$Q)07x4zoh*W@@;pS-Vwg6n}S1{)f&q<*bHU7lw;4;j!46jAD}`WIAcxJH{AJ
zQ0%glYg>%iR*PD}vz9_^%)6{)5*B(AVjA=-H5_vmR<inb;!}|o8cw&p^womsvNdd$
zwqs~&HidoyZvFOopAM5C0rBK#TzAA(Uy3-Ysqt)b`MO@|ARotz5*EEiL4SvvR~+AH
z!}975#Ye8y#(s(B^hPbX%S^MxoivMAAECb`vP3mlzkxJ!n7s+|w!2lhw5i2)Celtc
zn%#ie2&m~)9DlHy9lUEK*_zzr0Ml^GLz<fR9(2}4qrjJWMS}IME(@v~ai;LqJy93C
z%4|9AEa@~Mu(?}cktY&%bbom=OG&m1uQW3o`2fC?`xs$e=b_v1W(oJbL`W8bd6%>9
z^w2|gA|1x4Bp#BvYo}BPlJ8~QHO(Cd{U``hpBfDUHR8HuHtN(Qn9>oM<VMY8k43Y9
zda{M+fX!L5U9%5J*8RA{lU-CBn-A`v6x8u!QGxZ%y*OHf>c}R&!+%KqF&!24c_JjD
zkryO>me2pg<=HOES?0UOSlmU{PT04}3?d(8BiX_a$mx1)lT56~lmkb$r;=@~`%~sz
zx1HNLzN29hB4_I%IyNW9THvWb2WY{P*6q!V6R`m2i8;a9?p79%ztp`NpN%m6cHOzw
zLKvcBDquUV>=lDj?|<~WEGCgy(AjDMc1rP1RBQD9D3J@Br>eI%qX(SyF#bDmU#!BK
zCRymgrInl+jUkt4lkRT4>o=PtZONo}&;`Pgp-?Nh&IUog8cJ8#4`A0)VTYRL-L}o3
z5In{?5iyH=a~;FMhljF#anjm#dA!OM*DjoF$PMx$ohw^+f`9d^RiKDh<`CHVkhcov
zw<5EAfZ9l3s`0mL?WMY^4{b%VQW%egGa$f49gQGu2N@r2SIe8V7Xle>2-k58CU=IX
z_aP9XBw0pAhkbgMa!@8*0h{&fp>0!J3~k;vlM+)~V|-Ky_HfS8a+aRfoq^D$B4;d#
ze1s+X@@4-9^M8GwM8+Hz``76u{2^ugMhh4vu<zla$K{tV-+te4Rm>OQJi9e!a4A-$
zR*=l~y?#*d&E2CN)AbDb@XzY*`S8F!J)0U}<7cU7M3dttjS#Hy-aG*J(0$2@aS^Q`
zGWPr^2cg9T#ACvxI7%ctxszPigt?D8C*WxxUz8RJp?@|sEX0y}h-CP5+$r^enLkrZ
z>)7<&Mh8BwO;6LfgD&T_*grcyx^Qplngj2;!}*S40J>AvRWf?;X{9YRCqiN_FDe&r
zHq4+I<7z{LOn-Lwi_5{S+Nio<jwrbjgL*?mPZB|9Nq}w_Btl8-V_7|^HU7}2|Jr-5
z1*=5-Zhw%j^qvA-v9f7jkF{ubtR0oY(1k2;&;TrdVIO@_v>mFCTP$h2GkeD-lg2?_
ze{!6fu2Q^#|6O)pv`8=9)}R7%J|-~iS7(!MWKOPW{84S&mRl!Rb=75?Sf;F9{Cn&{
zE5Mt#RZ7JuUT&2!S7#Fxb0(R`9NUc&v7Z*;h=0-*o0Z{$)S`a4zpn%!trlZ!$ed$|
za5Q5krhU59iQo*2u*r7{hZjSX??Gb@U5H#CW&eGNZBrWg$K|^mXbbxjrR(efXM6O1
z!n07zEF6C&R4j;(lwtnF?n$0zO0}h<R*qbJ+V0-Gkk#jl9)mBP=ucZZT^<(HhL~_a
z?tj}#?p~V*w>})-9gWfiW6S(fGB_cad*!HJ)MB@z>JCi+99OPg7ws0uq(jrTB3jC5
zbt;1{<J~&us4@*yf0;``GNkRqqJ01qL89E69xHPMz*ZGSdj}Qx&MJ8{knQyzH^U^|
z7wjA2I9O`CSYzA(y>t+2tgmKRx?-{2!+&(+MB+}{wk2MC$jgZyG-EYpXm?@Ak(8WH
z6MIEa&-^gPJayWTNODTV1~^20)!Y5>C!>o-2m>XL1<<n8?mn?#N#LUp$5y{3x&SDe
zQ4;vNnfs*B$wxDR@CN(s#8mM0K4`uIhWF0ZnqE8cR86c0%~EYcuEfzzb=HZIF@GmB
z!a4D+x_Z!DO|ku)uEO^%wOvrCa(>YC+v#B6fOTf6)DG~~%(PBzAEcdDHK?{@kQF%e
zFwL@wK~8tsg$sR*FEB}52S;_JtBG@trMDowwf1c_8$kMr`|^JULd`TWU$uyC4&w&J
zSn9E1(9D-@LuUaxRi(8^tfp%2sDFNKDZ|kkFHD3)p&A|dK<8|bl9xrGY0&kbW9SW5
zDbNSQPrzss3@re1a@5Mw3Ji5VcRh8ozBY|Ul|MEghF;lXOt~<b33ygFT9c$#P0$pM
z3KDgETdRWyZ6Q{oEmM&ITVbUw;8kw9!7KN)rd9Io;(#E~qhI(>|A3-acYoQB(4QZn
zKbr~tSvx%EUnKtL&Gtfn2CjeS!&$BmMn`@~BPF!8x&Iugs@BX%Rh#K5TWJ(lCN)q%
zMN3JXG#Qm{aJyiz!p=F4q|y@r4DwAjWTR?i&>Jl=4~|3TreF^i)#mG3m0N@Se{Hrl
z8(lDF0rRjV{={bf>yyGQ^?#D5VCpN6R}cAN#miN7Pa__@3bYJNT~@c7DThqD`d%82
zX+;(+(jR}mJhflOQ7-FY;{c`js#)C;L{s3|hVp@R!=#3wa#{Tzz<LHBc2RpyIrXqd
zxYV)~7DD^lrE`1)c@b^2yUx^ej^kRHOuxt<hvGuWJj5O;l7tdZ&VQIJyvB)KFiz#N
zU0|J+d&+Aw)HO|sZ<5b^i?^=@+6FDCWl=3Gs4WAFV=7irIS^xWba860Dd-PH8tzdZ
z+-av)h|UlWIKlo>-xcnladZXG$~5hoShyUMo00fwL7<Lu1z%VO(r#O{m7d&m<|12@
zI7CLN=^z+=ot+a?Ykw6AIP34*#*#+rv$r^+LJ~fqKJhT`GOE7XHiD)vF(h}tC;j9Q
z*&dM4T_D}DjitS1{5oLRM;FYmPa~QE9HI|`pvM}>8xj#ty^kzNLh>{Au9Mgh@)*UK
zW5{c7i!QYbhg*ejF6s12tZ0;!Y#HbU+i8`h;oB2PzQfAykAH3<*%c^V3MprqI;+hU
z_UY4d$crTlED}wz;)I}z6IP}>FX7-cI>S>EG$y;MJ3OgNT-U~+e79W;05(Gbe67O+
z6qJlZP(%B6LA`}T5~wiZ;unOXylHFQ;b;!5B_~A?{e+~{)`sMNhr&>zWGzWB=Pv0?
zx9dhK4-j){Wq(2#4w2qD9dF5W!Pxagheoe5_LG8ODnZmBUE$XCQXu+3X&ULaOct(U
zAEhyVJ$gN=ALa8z>gfI=hB`<*O4M$#-93?gi&%a{!y4dfml;c)6pvJ5`g&ONZA)!0
zOVEHp8V=Hc)-nw;f!F}-Z)6#W9CmD$qHGpB!n4eVl7FF?aJW0*CYMH%^{^!FqyK+u
zYs1Zjhq>DPFg@<m^!T16<A)vc!wz}qcF48a;a)I*3`bLyNwH!<uypHu!F+q_6%>WP
zGWz+iKntjqE-lnKU8ei-on{)2oK>PWNJzd6RSPxw;!xQ4^=jXZt{K5H;XS>AzvxD2
z7T|^oGJl1y%t5Xo5^y;fwVQ5J>|M_}OCtXqs~HsG$Rn3YZBeV0J%B%_9icGm2^rRO
zu)@&P4S^?-uvv9EiJ731LC}7+{#e_@(e(tk=j=1}3av_16NAJH5)zJso*q86epGRO
zkbb?2z1(H6t420Nabda8r8q+%Tj-#K5)+;4p?_|0MrTCQm5UcY3v1R&xR9qyPu>#b
zEr@q*?)!2AE^dpjF#vV&^HfP}$ZlFZ-)jSRG9*sK!qg=@jU?eWI9QP@&qtz$Ef<Mc
z*j)M+NoqT5BiVikdoH4H>*avxpz&M}bu~)`OSo6DD7x7|g*78APG1YTpNX8dGAq8&
znSWJjNTpsXuj{+)ZY){gYel(tB0lY@%{1x-&G57~p=(=Qd`LpZm-iE)*hHAdBem{o
zdg{!lF5nvLH^3JMZ>TE}_SecYSM;YBC*Pc{0(o(=DW-M+)`6uR89HeCT}hk`N@4p`
z*z~iJ32YSEKgaYHcESNw>kC>tw11h&yMG~$wt%{?iQ8kJ?l#<e?F?7nMoiYQs<*t4
zsNXqSCp@m%6i5=rjAOn;nzwpWZm&8(Rd^*j#xW0jMoXvK!E+W8xgbfmlYp%w@eMXF
zI-{rBGRthIfoI^RgdIgH7K|etAsYGghWZH(a>T+$#B4aU{A5Hmr<c2j?!VavsDDV?
z46KaE(--?x|CK#WM{!&S?iRL589J@o8%U?^m@JK3om%R*)7{p0R!sz~igjN`t<}#%
zGT^S-30P$xwkfdxEGAtCe)Qj$Z3gJ~yFYVG&^48pi_2T;<vUXXE9~Yr1odA|1#FnZ
z-`_58uA>_!l5spY0bwgef*A;K_<xne2z!#=<dfgFZ_9Mzlpcm{1&13Qq9Gz2iv^Q;
zB&vyFDgz9qQ?f|xxf^J$ZQXW!H_u1jO)RuEg6=E~NLI`^(L1@et6$wMQp<p8F#u0}
zg@YiciQi%&NtEAD4$&lu2^YlIr_DzYJaoZ))qT4ptY_nQU{kLnkv7|O>wkP|;uYGM
zso%i1o(CwMA$?EY*G`jf1?zodaQ|7>?rvJHr}@4apx>|g-Z~{a9<4MR==Y)t(f6zw
zy4#x@g8DC~6*kP_@6e*he2VA9V?iahy4}Pyjge{XxYO&16sb0<X6dQF$%{$Iq6=`Q
z*O_~+h}oR%JUe(b8r9f>Re#j9-@e)6Bhp2b@%TTXP^*zezIa-b7=w`b9N%djR%^tz
zP<1e>BkCOAA)FN*P`$O0BT#5c36~o>3Bb*mH=5t3pinA*l`ToLFq!5h_A@TJo5S~6
zoTox<`x08c^jih8^6YnQof@J-tCtFjm0~~#)@_!`lwI2IbewTWB7d0{D$e2^Ev7z}
z7!++6OzX5qj5!Vh5`2jDEtJ)!+H1EYUl`z2=uAlpW2D!H#Pru~-?(76iYH4nqX7}f
z!x5yh0vH6+##%aTirK8Inj=B;{V}_Z?w4{u?QtF2EtC@VY38o3^#2?%@A|$6f2uk~
zA@f(31AwqmK>$YFlYcbi=--536q&KEWDp@~2>ygCP4p_~<k-itq&MZ1LaFXg`#|SJ
zE||UxcdRg*053lD5(~I?qv5a_$_OZ=yVK>x6xdv~k2YplIx>W>7MzF$3s$wYo{vVg
zcFB?H4dwWg_P0KZWC0YEWwRaTcxD*cgI~^d)KGlEDWu^U2Y*<IQsT=MZ}%MQw<xZF
zuJzdxoo?E%YpDZHf}m!lt@gAz+n|a|d+xCs0(2rm>eW!OQpO?$s&`g2YqNAufJW|!
zm#lh^)izGc3ihy<vtpJC;WDJ|Ci8*``Hsk2#;@<iY>w385$O(5BJjLDXPV8-1a%`U
zq2^lK64@%-d4IsoIV`pFX$*C?*SoE`ci?zgbKk1Uk^H@@6HAvyPKj)nGT@a<SKzTA
zd}#Tkv@rIC>(*5xk3xJmW|5b0P9k}!{UT#Qt*fNbCwZ@o%dkw{H{;1^dT1w*68+Nk
z$==-bGRh4v#0BAcm%kC#zHuE9K4>P_9FlH^-x}z4SbzN~O<eGRxtpaU*aSN*v=tcY
zc0l9|%{2GvbT(UQ5zGT<TnPV(R<Q!jeO9v8;ehI^%D`fgBzNWYt=ou{V3e(*EUdiQ
zhBueeSB2Ji?43kM;)8IOQ0X&=%bwOEAJSgX>2d4un(t~zLp+HPZpp1Z6Od1Nt2F&G
z(TTM?P=91Ug&gecHWF^y%nHy#8}RZSi!K>!G`iL<tACmAsEx$a$Ty|&fykP%Gq;uX
z5Tb}hdyus?5rnrCtQExbSQuY$Hlsn=C4pKdWRb3k289ePRG%)UdIF%7iftd8_8q4o
zYMF|8A~tatc$q|!hQw@@TaE_HG(lfo4ghPpqJJPXv8DohrPI5-pJqPiWUkh19Mcsq
zfFF!d5zN2JGFqZ~{e{%&5E7Jxy<88_pw8EzUiLU74cL6H=FKXCVcRw>(twWn&|P7r
zQDD3v5$;N6-8Gwq(XOob%%=#?m9ZSKITAs_<67L?@Q3&HhlZ$&(4+R%3AtpSmdM$g
zVt=UKlK502*U;7R<-}xV>jE%y7~POa_Sa{-<>6;Z<7sP$!B-I4h90C8K5dp&)MdP5
zEM27)(F&{8^}z_(yWg@<9jE2;ROg6Bh8UAzT$l)I@P*<VMP9%hq`6qL8ffh$zvUDX
zel-e26^R{uD<;p|SlCc{FBdWZkh;)$^nYoBCeJ(0dDKA;Q2X3RUFSdQrUQ^m4;aGQ
z=e>(74KP}#I&w^R_p{A~C>f7LujTa2w5eNB&vY1~AQD0R(G6S(clb?e7g;ZLz)T_>
zk6Cm>xL6~Ar|24Lb_=z-gwi_=UJkFOCB4=SWFej0#f;02UZ8?=p$5RJCyF(P&VP_|
z5RNwhbHrvS8zJj(B!EMmd#sZ5a7CC-HaPEdJP28-amrT9bo7#&c{Ovi8vC&}HXPD3
z?7+7QoRx#++#E7c_im|AoMZ0J?%GkF)`#BCp)rfAYuCdPD;6&|rHbmMsjDvfMsl>0
zK3W}WyWChW|3j7>bI!4v@KjER`hUt!9e{5nI`+_K!?IHaYm(-GOcCE))~FFFul}(2
zn@CdrP*<;KD@sqEuoYy--Tb~KM{%QQe`H0qoVWFQ3sI*YoE(ZdyP-be4@!LWrr4sk
zmH_FZ%InBbErk0PqliU&)rqw^A?g6%$siiy`2(_l0G&0gog6tUNQ<-eeSb^JsX}5R
zIl*D>=ub0dQ|ne!ALe4=6FMYA7ztR*p27`7yU^ucO7^tXXtE(vmn06ThgX%fnqBNW
zlVN{WiOn<D&`qaJ94kh_Miq#A;>IgwapMe1)0%6Rzp-fx@g_cOvti?DFq_oS9l>l}
zNwpAS!YgF=r@A%}=3YG*A%BkOj0mZNl8y9=U8Mc>EJ~w))^TZc?gTv{cSH2f)_~bX
z$584rB$3=j6Nx36CBcNqUG$N1nc(0YdkY$onj3IUp>p@iWwq`YOBj}YK^fEm>a?=0
z30u3@HPgWrtL*Nwzo^^R<lA}JdTvWr1*(~Yqw>C_c?Rc=r?pu0a(@F;I1PT>>KtzB
zWfPNlkpFLXr&uSh@0G2_q|<MSy3f^pGY!hY>$MJh`{635;`3r>y<;TEog_TM!Nn$u
z{nQ_f=DSI+z07MERVQEXZwTkg+_D!)UXM^Gzy-MNQ7mhw?J=GAP0v$bu^^w&Xu3qX
z4tm5GZX~si>3M}zI)8O7A5`j`=cCa%Z8_u35AP~za(XuZZt`9{8;!yqtm~clrcc}N
zIKNGKo^;G-Q`7E2%`PRVz2{bsG$_3qe>d~$VAOwNt;V$PFGY;4+|%zWr7dsJ(V)v+
zO-yUrceU)a?SDl>!jjtC3tRX7nf{f9osux^bwFJ41xgKaIDZWi5_1|!eI(r33urb@
z4}~*@(e1fYZ0C*H|8{q%lYq#F$s3K@=2&wK@H%s5!PxbK<V(!S9#k1srh3eT)W0^y
zr@t|F-F)q};I&#1@A{I&>_PG>#cpl(q>wI{e@U>v0GU8$zw91wA+Zz>k~@Ie+MEF>
zy}3eW;(`gQuO1|OiYPIz%_lMw22^im#iqe0Oyz@Qm1HcS(Oe&?=oBnmA-o!=(lSc@
zxMWK89%G3oCJn{UliNl<0kxAFM<Rcs#+6;lrDFvD35`%lqeK$%6u6%bMm~{yo0?b`
zwsQuQ&A=7;QJWgFH`3O=-3mv_z?)g3&A)FgA;zfP3O`D)o7n+Y-m1w%HzgigrY|^2
z?OF4L38^1#Zzgr<wb|gc>(jSkVslNp8yrv{%QX5Ut)0F^<W4OiQ90AmYD|CK02cK&
z^FwB^$vc`SN#RU|q~1ovb)D|(4DOQo`E7Jz17UF0Zh<)gt7o;t^!vlY$>pNyx@xT1
zdK|_<fS5KR>#6h;h_Coa2o7!d4<|R2+#-*KApz5p-VuMZd|w&2Hpc(PrfPSzV)DwG
z^VN<-c`S?r0vAGcq?NH_akPI#-hu```i)I@3uP~%8YYHVh2Pi|-O?aXn<fuO9#Pwr
z4X}FiSPjwX3`L;V6M`UHg4{(oJtJo`bTC2-mT-}_RRh|#xxlwV?*V#kFOEJ<+IAMM
zPwKW3ScoJfmn<O1_6%#IvUHr=;Hb@-5NVAiec1y`Q^w)b#8yK+Jvx6!oCVEG_0@u?
zfrm`x>Bt<sw8F3p77pY~HR;ULk9@VK4r!$O&3|Ii^DWZm!mtT@z%oT`h<;HUQ065{
zXBY}2$W*H=0Hse<|HP-VxrY+TyNHvS-UTnDjK$&pzRx@{#J6IIL;O37h8_#|Pmj*`
z11yP<`yT}1ZxZU0ed>RIRv^UZM3CV^hQXu!lg|pNJ@s=h#CLlJks(ri)U3gtM`9@u
zw&9dB76j~8vk4<Xqj^A(x4;~GlJH&hIDCwrC<4+6$T)huFb`ouJRPDFbE<`C<OPXO
z)J7{*Up`yZF4=lt`%%eODGO;Ik-R<_-Bhx|WTL6YMM>SsFB5-js=?<d%BNU$sv?tS
zwZ3)R)c-x{md!ky_Nqne#CLvFH}w-?)8?E{PFM60RnoR(7=JKHRjisk*M2H=>XS%P
z+3X|(4l|woelN|o<1->q#3YIc@j;z<T<PNDnl9?p@os?$zYt%mp%k;N@gnVN6)w<7
z$p-NqP<pL9bH;z>K|kqx15Mh*&wPawx#%o}HXzYbVrXkvhnhpfGzvCnW5%EiZkI?g
z{Rt@N4iJ090^Vc2i7u>o^5)a&FHddeht?RFqC9r#fC}Ty_0vuYeUt-ysNa~*t~I(R
z#o;2oxm6u)7irxa-eYpJmY|fYWlZ#)2ZE~jgYbSj{iT0Xl!{%^qyc&AUt|C(?VUMZ
zoQZw5LG^+_;t~>h#297A#-OB78J<MG7PnrMt7Y3Vvm^K_Uj|LTdzEJ5c!nd~Pf6=G
zy^@#PHl5>bY&7sn+PQe-!ASs%m}F^;aj=B5E*vO@VR3^eZJxW+S><~@dUGO04(KhF
z3&?V#HUfWCXw{S`+ZGv~4~@e5i&nEpE~r2=N&-Kv!jZb8Y&>x%{D<AwiG-IKj5<uD
z#z~YjMlR3vrLev{e<*y{>Hn9g4<Y5mn?2?ti9EiHOD0MCbUaC$wav(eFKeqAaT;R2
zd`oJL)y9dKH3uzVDU9ZdpK6rM2k4qKTc|leH0OUvgrNi%Oh#H8<fi$6Z^bygeoL08
zjkeQz^Ww_v=*H)76?RJRmzV?PCJg>>OZdA7RwSH=6l#%01+aOxG+Ico$-Lq?5>&n=
zOUL$jgDim^IFh<IMKXF<-W$8<*3Ar(z{|*%?$EEm6Kss<&eUGG^YCqjRLJ?)jm&(L
zP9%T!P(3%{C*0Ff@bO$V$#>tqtU4Ap_V1jodOz+}&G}Q_X$xG^cy{!&x3)%^AGmG*
zdt<BBbmu9IXp0uF413MhfQCzI9w+PgyK0oZModF*_ia_bcKS`Q?{gw*kJ4K(T}T-p
z?(f4$4E6tu8}IP-v(c!L2-|D>Il<CQLlS@aF{6>J36f@&EZZAlwh6>SM;_c{N0)8h
zZ1sV*n{Kf{Q<g-&twd$-9by9uR4I;p_y^qH)Hh;nT3jcg28hAuN^NHx>U2%o0c=?h
z_GX1~<{hHP`!|^H^Ca5W(kS+?lPTd5kwgqB+cz{BzU;#u?Qz@WS0Fx8E<c`kDi42E
zJ6Fx!+CJ7-qro4|I3d5+M1;1DO>r1L7+6Jxsju-ObC0+EzLUZPtaciiV=`mCle<{E
zAz=puhi%%qS?c1kNQ1ZFBnIEQz8W^J*Du30%=SAtZt#!d*g4dgbDWuQJ5-XeydD-g
zZhOfs02a~gx(*1~o>&S=@^^~#V;X<WOX^EMkC;#P0)hppyo!@)K)uRi&e-*yN8<Dd
z<=5(}bw&joPU09+he%t@cdGWQnm4tJS%<dyLW`z43HonZA}DMFJr)V-7tgQLysnir
z<-Mn%T4|l0h)UjU{ar2-w4>yiJ5O#Rz$erVM310ar;eTl35n#C%FpSdRY!l?2a)+4
zP}(kA?7FOv*wHW_WD~Ht*i~Eah{>$Dq}s--F|T6@dSV_7?H7Mh1V44Ns%@QVnc^Y7
z`%fJJ;W)hRS9Gy9B-|Yies0cl3+K4Mv1!2$t(#o65#T18qc-&0(mi9`BbSWH)5yj~
zmjfGXrLpcDp)Ut6lU!gn^p1b9Ks;YXrIqd+9ci4RDTUsL2j#Xs+2E$NKwmEKyp70T
z6kY<tP2kEWB#tvj=vgqPWVSp^S{kNE9*GwuBpe49AII-+2wx}$^b_vU@W8Q`nV1Cc
z%mCHS2-_RF_&BZ?T<a^33HL}O6&M;R3I$0sL*zgaE+E`d+N`$Y0Mmc)u}G85n=9tK
zhz#dL6yJDA(BBFA3wi>_y&T`dgQw`<(USx8|3_b3T>0{}$hm8XoI0jL{g+=7Pf^+_
zAxYgz^N)mj*XPWy-7568_O^Kp=v>HjDW?Cf=s=b;$g&2_2$l&ayIQ;BDGjJxf{2>%
zzleB52=ICxjM5wMLWh62*epEuV^~N;*?4f+dF6$=0mU`Ew=?QC|GEyod#qNE31}Ff
zUrsM3=!rf(4bW*cW89P~zR(HF)H*wnIPx*~pX##OY?e7ehBf=L9Dkt;N5d8-rtzKQ
z%i{;d%}Q|uSOG4WudE!9&%%?RX#_={fs8K0qBNQ@0y~0MdT^5}Q0{+v@dExk8jVW-
zefDZJdhw@&7eBrH>BY+zKmGLVPosn9&ktVx35_<2Ma^F#B<6n_t=(6dxbNieYJsC`
zv}6fPY!iI}N7`V&{Gb2zzqMrxcd>PJZm9Ny7Xg;ax<!BdfrjG+=5qK^mnuSEzyALQ
zfBdnh^uh2WSP(;H!rOo75cKuyVDMioLAm3<Xs(oXYT6E=J&E+U$AuVu6G<|I0~Rcc
zLH2s*IHYWUI2im*hw@_&G6gH0qzN&u&ci_&OXJ)f>K%UpPaWq1hdJOFek@W2XIer2
zYR-ay@FBVYS1`f?Sjz|44{1b&)EC$-r+K1{!`!`t9I|E=91ed5pUCvXDGHe0h#jJo
z=0E;OvDo=9mhcpp)Qwo7ZNY>@U%%#?4lfCyJA9{BgK~p}2Nzf_fE%X~!oE)x7Q2NZ
zDlw9?M3Ve?mnm=&aD6b^gN6?5H9&=X7u5CFvBrA8JKEMCYZ89t<e=rl*+2Yf2y3Z=
zdR3M*wf^aWrEq^Uk76}z=nOHQf;0zYLm7yPKDn*y4Bv{$<ZMj1Ji2^`zJ3K>{_zJQ
zfgt9m`UNCv7I#4#zAJF^>(~89PUh);y3vWz8N>e1IKYvoCdMz+-03mS=Enk^{6AMG
zm+y|w(CLMqW`_fWzFa3$;>iHbiA3VYv*}9r$el!cd)a@%X&G((^y^o&$B?ogzYLBd
zNE?o*nyThTjGD|JF3$$&i#f-hoLqi99iM!*$b3G%sNu+$dU?u=))hlUNIVUwSRjb#
zjEGMAE15#Y7Oc(iu_S+idyF_z3MyqoCz4~v<=%|(TQwGj!TUDP>+8|$(P2&)%=4l7
zZdgbX`}Ke87c;(k7n_|AS+fw|U>d-N9m_+_#tq7}$V>3Sv!8~e;b?epsA#Ai7Tvwt
z)jvu50q--7=Bfj8wd9O?BoYKYMd%6KM5%lm=r44r>m&{7Ku@&}JUWLH@YFACE`6G%
zQ!i3*yG1gzz&GG)4Jq8!GDXL+8giIAk_}?QVI6<X1;Vfho%}per0gn^6folN!aXHL
z-sE|@z!(jMQOpABEeGIvP&*>ZiJ$LSU#7D{X9P^3DGAKFBPF)?C;^m0%@MmW91Ol(
zzCSzp{O;)d<S+mBq%chjr}-!+YsJ_Ft8&m@)HHp66D(3X{4YCysIkF5mUswfS(;6M
ze@uU_#s4sO>hP`jA8@Y@uE${>J^uCU4*H)6-(I7=U(n<I$LR4NNPF)8?a8}eo}#ah
zpMDv9!M6fY92)xd<vPQFJ^c%i-TAjaQmVi1pgr@A>InVE#rw0<@qZ!p?yp}4gG+n;
z?@NtoVy^uef!W8mVlS&VzK5gb?SgPp_gsJ93)J}1Xug*lWHtBq$hFwZ%cA%)0Ivjt
zkh0VvIaI4(?fPvT!P&~kIC=t`yYe?fkHt$U<8hG$fu1emDSFcFv#(zVdyc=sB?;LL
z4$v*;ky;Vpj^ly^p$RAc(ggMkT3{vGa4|e&H`)_m3TdKON|QVr!t{$63RpCUt0I4~
z^*(%|MR;Fq7*Ea_o<;5q-2~LE3OQ~n)l*{W9P=rj6LWma_>hK5rC%nI@ghEb+O3_A
z+UVbo6G=JA8h!mbuqS?s=)!1xX~p)-uH&OJYR-=eczhX51Lj=|8_FWBD0phuVSSXK
zY0a3&0rspLwhG)NN%=BtG6n6@1=oK(kB(35>3Xfi*77MYwHj&}=ofvZ*`BO|rnbv$
zPJolxW1%iN0s3+m-KzIG>46VhILSc8dyI3PWJAQt=(r&ofn7w0WVmbb5W|pqoC!9Q
zCz0g%G{dM}s@phrY5YQ`#~bBY2KM1_Er(M(+cFJc8D|spUNC>02+6`TJSBgDsDFQy
zt%3bn`!~f}GiSckbo~XGS$&)9_zUcc+u4t+Baj*|is@hG0h{7r7&E`nclNl@sbo;}
zInW$ZU*-$~uw#Ni@AS3Z8Z%!Y4J%l75Nb0zbI3}OH&=^wqn@JCI-Ez3%K#sD6XrH<
zrsc;R@J*fGPRmunC-NKdqz!+gm{6a1nCG|lt23by^rkqXJ9$&BLtO1|MGobr$vKgn
zdK+a@8}v=_DLo&q>!l}m%2UWDc}zvqB+DGD9l_f3sS*0NCYLFswhi8d_%16(XtH08
zb7e@kz_7M1H_gSSs$uuV(l^es?)Su8cjudCb4_)z`{J-oEpT5<P5Xb_G#_j02(Hgb
ztKx@+N(gH+%nf!^e5oyNurY2F%O7lx9YwfX<40Q1U}Fp^lswoRKMG*C#tvJ=U}N0K
zl{wfPFLFS)#tBoVU}KCZ7c$r!H_DJV%@Rjxf{k${U%X&*9LYo7G&f4+2sXwEXTgHa
zvBU{})4Xw&AlMj#97TT$Hpd<Z@J%zPTy<bw#-tW{YFsJnbj%{-LSNsOYwcmv)|<WT
zc><yCn>5~R5A*G8C7Qu+noaYno1{>_ek;t<b?&#rDGhu3(zIO;**(X0cx0h(edoDx
zCV89mh`4}m(dV%hhQuaw+~&DbfxKzf_>>b*Zk0Q5uDfAvlY@V`X^!MTufq+6MjGN$
zxozt_7p{KxwEn2R6T7MqH*Ex^7jIW}<JaBDU61fOsGB0c@&0XBR($Ii<R5?E?yngC
z|Jf%q8c}`UQ^vt&`e=#&fAQ?uPo?<(m!nrNf5iXa$KM}+?EgC&GoR#g`Qt>g5KHR8
zsX01+kKVn%LMMO6r&mMt@B5%S_x~LNsM6AHCMrM83prgP4`K!g7Z3=%$duv~Lk2y4
zWf{!^JQu^k)q-#`W1Q@w8Icg$rV9=PkjI3hB@P1}(qlssAqESH1xo@SI%g5d(p$`l
zw5ON<u6mCNN3$f-x^X!8g>htVe(C#4*9RkT4ciKQx?_KP+d!dYLyB^cFY^ryYxWRK
zA_5WZLmMcJ1N+?$+WY!-#u?<HMb=SZweg+<MjkC_4f(mJ0h<PNM!cmL5M4r$BM(a)
zuzBt>Li&a;W682e-sx<H$PJWBu_r3194n>sVc7g2Hb6Ej-a{4tC6)x;OnEME8jfib
zJ)%I%e9nK#T*)1dsjzY0P0h(&%mneP94XM&4<kiHK!lhypw__k&2YQGR~xsz0)IUQ
zH!Vsm8n{qD93TiAKSZxbqXYFrXR$mq6bv-d^`8NHgEA?F@1Hrq=1DDl{M_+zh4^}O
z@(dsJ;n5jm*Ga4yrMo>G>^Vn!uvZzm!CqnP26=xh6qpJD17MqarTN>4Y9@w97pF!t
z&BY-c$D$}Ux`Kt@s894&_7s@@+0?*PZ_uCHAB_!IKs{<3m>;bTmN6%S$XqM?q^T)n
z@0>9nrcDb^nwq9(GE;r^UpKEjZ5*7$r&4p!YNG5xv&w-CDuQ?kr*f%O2)Q!^)V%8t
zu0VfR^C!&<keY2Y%48;e($vhSLZ&U$k48pnkuHmP<M4rp(q>qIp@S!Vn;sL1Y2bjc
z@9Q`1yvZY>pL9T?&@_)k0YVof%+OxuG(mpI^BSVf&|qocwLt|Qb)qKUxJXVOMi+W?
zD0v<a{iFjLg{FBd3J|&=q4VP8k<d>%AW?s4nn$7lp__Q+Lg5WJ)srp*k_Or9c1hH$
zQDFqrwq0=6bI5qCs?*b4Z0$Tti-4+=wFs{pQ+0S-6+`o;JBm(F4&m>Qq%K~UM@~QK
zfK(FCIra-uV;*&AtZa%*3&(L6@-HA`RGwa)L#lIA2gfvoPMp%by{zD3UUWvu1t@=y
znG0SQ1oLUMEL+nDT^r^R$v^Lc09b|Tpu(?4YYYo<O_tgY)BkQUg5)9-nM5uctpa^_
z`|ZK#OnbT~HHWhR?RhUyHvBJtj*tWPvKufc#19gHISv96e25iL0P(sf2#E5;!5Fst
za*VwNnb6<K`Og4tv>LQ?a~-k_?&W`|FF+gU>qc*7cxxl551)TdW;4Qnp#k|D!9Hg!
z`~|E17Qi|f9`uq8#~py&!HNdi5xZK!T?5$1n&Z+{V2z#UjH^I8bsa*j0_eEze6JU<
zH{)YWLKa;RPMMyN&kkO76{<Jmw}iy!_%6RN9*nv-H|<VL3Ow~aB(&?riIacg^?^QG
zr8>NoaO4$~W<~PWR==ymI;s}4RiD2ah20P_Ayz*Zqmlu}i;mjA48jm&@aQNjWgt5I
zbuBz}eqa#!en^Zfh5uIoGAR_cUje|$FOzZ^_jYc00ZV*a56_qvw*t*gnabZ2-Z=M+
zquE~2G=9*cTX#>~c!vXo+)sZ|nqThF<SX;y<PiON6q=tp+utENcs)9&17-W90CWGY
z0rR{9<(YzFocOkJ>1PeBR~1+<6)cpVFzg9^r%ShjD1#z|gJ+`(S+7SLNKK~)^(}<A
zAR*o}`;I+`^<4#h3xGycHne|PZm&66cFd<dt$R^7;1%><0etWj+qQo$Z}DmpfKU-~
z-_~UZb#FM&HJrTTXf+slSGa}Xde)imKWWS=F7?$|We;O)>+<i;&|Yb@Bx8YSXn0T&
z({nnohk>@!^6##&UML)XW7Bk~^8fBDLTk;tOy}s%%fCA#1Iol4K-$KopZ7|bJp;9!
zmw(p{)w4P|UJDyIMM{4~7fzB^<w^lmzbW3d0*6T;sj>7;en4$J3>(+|&^yVcqtbTz
z>yCzcRvzd>sU#2VKpPE7Jf9yWK9v`6_@p+T_8@o<&UH-QpWzaRL8IY8NeF<>*jzz@
zN=@p^y*{nf#@X&sn%ddfb)}RK?AWgGT>BS>2M5oF&1^Fv8}@&!_$0ddi1n`Q?ZN2t
z@#*B~=d+XJ&n83KqzM*_Ni<o|nH&d{L{jI^DFJ+caq@2Rx6@y)K9A2%Pu^X9o}7#?
zPp&%p8T7v{IAxs5<v74XK)E&5t{KGLq>zLvZFPMx+VjcXp8BuA9ncsbjR}`JJJ>mn
zQ$RZ2WzWNV(<FcL1F{FkZZ~$ZNU(rh1j(F689@DXFNVkc0gW$HP&b6&|Bt;lZ*Cjc
z62<%9@uxts(six;TAQ7uJFb_hCrh-g*jl2^vFA;xArh7tQ6!tBY%58B_g`Tn0TQGr
z+p%+JI#YK#5wV;FI5;>s%c@LMP?aA$E?HsG(5~UJ0k?mT$9x+4KDx2)C(w@u=@0ai
z_UCE8F*+;IpH+q(-WuW<r-Q~xquZDcCry&4tH3}k?fMyl_<A7@rhgta#-p?8K>sw>
zhokA4-e~EA+{MqvY^=jY&Vc0q6(0?YKZ#JiLGD&z-Kd44h3@IxUA%>-E&X$WuA_?~
zUf+@I8(n`4r_I4=deXiqLekO2@EmQV-sk$&*52eQN2Nx)B}k0M^?0CjNzra?9b$wW
zs2pOXcN@iq$dFwUB->?{YneuzJ1~+o_~-IA3psAoWZrXmW0VaanfdR+G-XlCqBx|>
z@$sZ|xq}!6o<AYSht2KVEGkdM6H5tWoLr3c?&yEGJ(}v>R=?NoO5}WLx5)oBe-i$`
z)KT&YeSd%1=KouNckr%OOZfl3IjA4}<Nx~{e~2sZ0EKJc2>=AN0s$#+vJl*PC12l^
zpX(fjDK(Os+5jNqH#`q->}Uj%P|;#8w$vTibp#h-HV5uq2CtGsgQE|$C!T>dvTgwS
zD~^BoNffZ7WoH;fS)+ackb;^16csy+kcuT$CY0a77uRxt2DC^vMtvC7SMDtmis{Ra
z%~5ei7JFq1%#mBB7(ydRS_z0we0OzW1)+$AlDL*b>O*ERwz7hj1HOa6v#pSnndCUK
zF#}<&3gMKhF>CEZXO0wbNX!aiCf!-#!d-ud!f%xvt^_-CV~I92)nswLTs1luoH;x2
z;tH<p=j8?Qq5n=Wz>`0Q4PfmAs2~?uOrDLLxP1xKGRFQ6LidUS8v51>d<Tx@n8*o1
zEuJ8`ooQxYO|?N)tft~l?Vry%sayj=6rH7%f-Eecp?3P`JRw^`<ZV`<fJjr*GD3f#
zVRqx+HJfbYS8R7hBNf^C`2>+-ARbSOK{9qBmk4sC!%LtaJRR!A(GFe|<wQKi6JV|@
zA~bRdkP7K|5!NSzK%Qa^C<9CK7el(sOHd;fMDhgGXsQEK7&XZ0l%$3tmL-Q88*-$+
zV&_}|YQ$%7HZ{oc?%wbqlNjX{Rv3SIm4C|z0Ww_2l$ylhawC#=pSW4kNMF~nH#BW^
z)S8wsgFYgK2_hQrLQ*k~h0!%dLfU34srgWqq{{FJbtO+#xv}gJ`N)jHBixM?iRx=o
zkermw0lYD=X=~xaz*HH=E;jjZSi@lK5dqGmPOM#2Ut?9zK;)KUZ?HO(SPFlnsJ<gG
zi>oEp4dLYe0tQKd()24ubFx_}jsR=BSxbwz-mbt2idK>gl2V=gSdpNL_lN)|G);h<
z(BF{CMoHRmnki5~_jnm35RtXT1URDF7-5uHI3Gxk=;W^{@~2VFMpXWHO2w_d20jrM
zdCOA7ONK3_3nxI&(TGKe9<F~ACmqi{T0z*71$6Z_X!8rT*d|)~vkh>=1@fgN<5-$O
z6JL`S$VcFHRowFYf<BeT<M(?_x+qp(gU;Fxtuph%mWPrJ0OZ+`7trG1h5kBW15i&N
z8v@kdwUv=$2&lfMb<C2`DNCU}1vF$pd^Q`=&Hix%QrD9T@f$yQ(jkA7;YgdOp5S)o
z3qvZnW4Mk1!>nPVswL8|-=lJ4cvY6Rm=d!0(sTubWuXm)8$R8BBJ-+@W{=)c3bR@c
z1Y4L$8|81VT=vlclsxR<FT3%v`g#uliG>?LoY=6Mh6r0Am|M5V0YZyd5x^h|Nd}Jg
z2#sWgE9$3#eXJU-kUxJ%V4o_r;#Y0h>*$qcqu)4gU$jS8TB)?BOgA8Q5>>#2c#RY*
zNp}$NNa=>snUJN%vDv1$J2``;dByRgGU5teKLjSWw~7G93|E<;Wt*`a6Wu2|imM}D
zUs~3cg1F-1oi%CnY5j^xqYropE>WMz8pHQ2v1}OrFoS_*fOUU>`~biZkm_9L>lyML
z6r!m7B=BtLAYh|gWJhJlW>K}W3fSY<8V#R^8U`jY60elRYVC005Uf2C=0HH++lN80
zUXfzLc+uA@2Y(QJ>Xn1{CGs~uaJ?pO5R3`rCGYTeJQ@KGkF*!>pGs<d-$IY3jMZc*
zMM}O^ngUxYjedWdc^d_lGZ+93nv9k{n$tR*mg`iOe*_iFt=`sWD1`Ou1lpEKs*yH$
zbLt4BmB9W(cP@sSJ+m_BA%U@4sZ>(vY=WkequGhlH{akHEjzk~NFoa>V1?z<*Gtk0
zH&T+D%U9BXG;QF&3DqtX$RvTJO0({m_+m|Fp({f@W(0qsET1E^LLV<t6Zozhf@T94
z$PcX>3t#Jik8G0EhKA&?pob+B=5eqW*No!D{gIg#s|31=0r8;GAn^tlD3WMH>)i2n
z3C>D<Rq-^JqcQ5eW<P;(5a;g!=ssj2r{c+^JULv$qwoi~d)!g6*`yWVddLYD)=gxQ
z$og!+CLVviu?}5521{Jl$z`93{V58G?BM0g@!z+xJ?p%bSmtm)3rPox_kPA&sFb)g
z717zcEQH-{-6SMTHajY^#E^RBxu~fgXmWMez%Yd3OBqriFbrNNSA>cR!kGD%Tjgab
z%Yk8NV4tk_8=(Cf&>y5Skfr#}TSUHfkWVrc8SZ~-<&vsTyhIchDkk!5ce5hNcW44B
z4;gr!0M|E>&rEy7p%CnaF7SNfN(<au<lp&L$lhF|vYK@03cxgmmIDGSMCEAAL^H65
z6?P8>0m<mcN(r*u8vq6XQd&W}q77)<_^h=;R8c3Cim~bQnpq-i_JxzE1okT&9NIE@
zj=_Jg9q2Dn*tem9Dl?0e{%)Jd!TSjLvh7doyg>G<Vzb$^8WFcJQhZAQRcf5zb0N-(
z6~79ycQ4{^0rm>xXYqJX)foIpMrUlqEN%<UOOaMWE-&j<l}aKlW)$6vpfX~9K$T+{
z5SL}3RhRWznRXzr$6AT%*b8{@_Fb@EmC}F1Q{S?J!}FSYS!2sDBME_2Xx(M^*t+<r
z51uGaNZdU#qmpvG<Q%Cpr{rR4{d4BYg8P=Lp6HY`Z#X8;7D~G%kcjwC)_YXWGf_%U
zK3gfG1rCAT5w{!w!I!{w04*<Dh!P)zlx|TF5!`cI+rs!s8~EYeRqoFp$zrhx<Wqm}
zxiB4eWVQfjA&zI`mBIFOhkV_UUGfmoWN)Bl^NT87>D8n}kFN$;bklj+^?E<K_)2>)
z0C&i?vApL|8Dce4)-R*(W`<2?mxYt5tE&lCsK%(s20}26)c?&d4@&Wk3Na^A9UFwo
zU`DbSn;@`OYdeGva@T>q;e~sZB|v|(s)wq|gzi!sR7+h^x6yH1nO24D%A+1HfBKY!
zV`FZsxGGmweE_BMuI39w?G3IM?<s5L*$8Vk$OP*ED_|{jpLO##(S2jh!l(F+TPUAf
z<PvI|(39R=vM%IXEGQTm@|;<ZY$!}8RGCpQVm4|d>?qV8ODg1ZL##&rsnLI|^|eym
z3{P^wd_;)xev9oz`W(7T<Ya$#Ei<R{LkP+&w$^Xp)h#5R95Di<3FaL6ME~{5z-^#u
z))_%6lq}zw?U?+7(<T~V9?GrjJeND&T;xH+v)Q5xHy*+g*+(EiHZq6>w1+w9I*5Gb
z8GgCdk<Wy9lKA*<<>X&U%-Meqiz8u-Yp_-+D;Hltco>#z<ewGvL@P+mO={<n#)zFw
z>B8dNimra43#i)~fQEqrA~?_MHNJwfRtpksp5nToc6neqb03dp*f0pFg)2VC(rbh@
zCy|ix8K^W*vZfU}GH$SpjQ$nNtxDgIu>Pv<`5pYVc0&ZV3e9Yc@Qr`kLxw_TddO%C
zC`Ex!dy2DI25Ub+t6StZ-Ia&W80|klfO_TN_i{}G^5X!B5T>sK74~1cW30r)IW*Xc
zJ9)BA+JaK(N@f(?d4YT@gmX4EH;Hkd71F?7Rf0v;SU^9dt(y3+#B2sgfHD7t;Re0~
zA9*%35YYZV4QNxcK%sx<Rb=)%5ysMhik6lWgwQb(KxVh6sW8m)Y?Fyr^0GwjJ(U#<
zjYVuZ+WOkA=vAg5sW4*|HPmS2PQ>i2gX2b1oQDQuvyi$fYgG1U&?vjJFUSawn4MU$
zVDx(rukEB+oA6m-A#$XR!5<z)1o^_nEqk}f_bn3<52CeWfOmg~%$aDozPYjPfmY6X
z1aDH~E{x{5S>r3=Uu$U7qYZi<fw;1FiRkF0eTe74&|^i`fLQem+?DjuNbn^3E>#O@
z<r^~!589t?2n|}@A#RKHL@Xalm9(mefs#q`ij0mA$fC576hms6{xwJ#rrEF$CS#Jl
z+({17sC10_IzWGE`~r3Gx=JeYloS<s7f|ai-TeE+6){o1nGHzaB*cdW?mf1w*UEgv
z_+(>G78!%3-UA{Y#5TH^VU<!YP|3Hl#E2UEi&kim?E8wEJyFSnqI}{VGLj8!=NFNb
z7nXsXpcu>KHql_}##yaxIw5^AibIZfToJhpSFK=y^|^n5Z)IN}gBC~^{wS<4a=iP?
zbShZoPjk(5(pHp&@`PAEl2aPyPDhg-c&QGl`R+PIZx74FIo#L4zUUQ_I~s<K)Y&rK
z6{L9}Bn>1R1cgQ>1I4?RO^n|D&Jc<HE70~9Fmc2$+#qzG0^mFzyDJnf&^iEt;X{v`
z<^T_0Ca-@%OCeHKZBFx|afW0V@lr)yU8a-)`0x-sd8i>4e~2D-nLAv}FUjXh9_&MO
zu2g=Ff*3?B%ixPUo5n<3)@wnmAdyr<zGVbc4~B~)P-Xv=9;!7tiJg`ngk)tyM_>_#
z9_}03!IYBmi20|H@&ITWEG=((i+t;5b3}|JdjNmT5cH8hCD+2~jb)=Fkj^L|Eekd`
zlbTi1Q+)PL!6X=#=r_D44F)31MpOnN^yer}PP7XF=m07DmV;ZPf`29a6;J%YgQP_z
zxHZU?Q)cVme;>Vhb11rvM|dSe8zp5#n0=o*mhDTi6WI|n@~f9HP^rRQ@8#(|*AJz+
z#WjD-`bK-Tj~hQBM0hxv@UNbR>iAcAbZOz>KlEaC6a@<iS+nUDOHB)e&;kagYBN5E
za2k;{-ehmJKZ}UUAxb2n`v02*l(@l9{xUg7Qs4S)6N=vo(4?#gktWl85U(kC8~qyK
zz4B|Kf7Z@QvR*Y00r>;a-n==~^1KnBTE2g=koGMyPJ-aai?}U7;UT|+&>hkk$%nA*
z)f4iJ5=4FuCI7%G*pVoO2~^}0EvO}Y>POPGnBYuHMQYOsQr9X$S~B}aJ0zCyzt+|*
zv=O~v-7ToE%$^oY#R|PMMpD&uQNVjMcUEp~z!UlC2KmS_kjcX*EC;~7s5|tTr=Wjz
zi|CZdN7cIpqOQ+TJ1d|LJ0@8GzmfYJzDSYwd&#C$pql`O6);*@0azjEU@9=*A6f>{
zy^%~3&@uOvW(f?VY26S+LSP~f5pQvPwc&vXYFPJ3rV4x}Fi-9z*@5fFF4_c=ZHH1t
zZFUkE6yGQky&hqLDzJ?B-eGR;f^mPIW$F+cB7ZxgTxh5f-j{4d3Nz6*iZC!7;_I0G
zom)vF;$=U!2KYG9#}^H}0H9$Y57Xh+g1}grd%8m^1qT4FZCEkfl?R;-S;piCw1O6K
zT8J#x)GW8>vtR*(`;zhxO8SwpXan^n8h@v-QM)VyGct=Zz=)8EK+z<att5Yt<QQGs
zP{do4r{sO{O%`LS8lRHjA*0itNkfQ$n}C<5aR@Xm>*`CHdPYl@hAuEsi2M~MGG5D#
zejBvN0g&ba^ep;GN&R(zqQk_*!w{3T<yOek8-F4wYe1_cmNPwn%1IP)-^kp(<@SDx
zu<W`Aq^kLE7_4=Gd~gSyFaUp{yGPy>Y@7RV<E6`<FWeij_JYtyaJ5Hz2Uu=7Zn(!E
z&k~ua&^^geDJWX|a}*{$IM`6J0$`&1s4q89m4u)kbxUHzO4u=E+mh5cK9XYza)iZ)
zdh`METrz|DGfDGWDdj#_q=(D%z=D=PCs_?Dagb&zq=P_R{Z)``dA)!0DGXA6@X0Yn
z7v&v5`MUNIV=|t!!UBIbTN{$UCcr8@E$JN3RTy`r6i_p<n}|{10Ga4sD?A8K5WJVQ
z4sxl!m4+dl13q|6z;8lOghVgg{Co1Drr~+~1v45dQ@jAc1x!>~*(4Qb*b1cS?6~~N
zaI`bg{R!*MGiFA)E*O8^T9zSQG+uFhcmwK>5$`Y>GbnY}Zp2B1sKILB-&Rd@U%f*!
z6)T0vmu0<1Qq5C*GSr!6y%wj0mfXgR$ivhK`9e`_&eAl;0#d;=HK=mW0@5-Cr9xz;
z+Hkp97_7%g&+=1=&rF6SFX!8~^9~S+8=J4WVxlx^P338h{osFr615OHio`i721zVD
z(vDzLAml&2(sGwfK4*%N7|YKb0!ucIWxXcsfkH0RT<9cIedh`v*YMI=!yhDswq_yE
z6G=%hb{9?gBNP--N@^%XRhmN&fbgf0Rs}fsg9O8lGjCn`CJf=qy+wZJnkQEe-s(XY
z5Tb%eBWz#Z$r*pQTt-w~3a((eTgE9XH!5;H$r}2_E-Beuc%G{YpSs|MC2Ia-t}TVA
zvE}lTHHP8}!&~KFWHMG-@nd$k`%FY)eydRuIPZ|%LMlPd&_^>~sx4R8(56G$^1%Wp
zJ<4{Wqnf#Z;8AreD16dgGXzk&VNoHJHN}exqHOLwnJ|Ca&s+QK4VTUz$%oP|o#=)8
zhX|%Z)F~jGvc^d-PI-H7mr@za@drsNneabQTE!tOmqS2`kdRlZDBLA0lndSkq;*y-
z7mo&qcR_>1RGgzt+f;p~K8jHz*>|^4P?rL>M6H#i{alz{tP#`QmgS}3{Fsv`$V5I2
zkx6qf@GO5`-xRr52;<j5x=R{fp|;M$!rugj<FP<z*rvWF>@Eb_Eh*e7lmEDPXV|{9
z!UexZwUo4u&|}T;j86(VjMGF=(mVtQUa%;|rG1k1RkgB{6^7I;SQ#U;RC)$(O5p6W
zo0GUSQ+u1xLR_{=Ec0>9B>{u_;bfp$*bsjnWdVPD0SbY8LkkQulH{)qHb8~Oe3E`?
zNk^!m$S0Jw^`o>xrR;9$-6ZtlbJGYmc{gEv5b?9Xjei5PbqLb3#0mhk16OPsMH3qf
z*9{PG9aKr1#fqSu+C|TfFmym%cL8ufBCL6ZkD@3?7~?}N69dJTDS|l9s}d)hDwT+g
zc|L#omgHF5V>eu=WC$h!i(~-NN{R&wyoHtxXEx)3%foRA)ou4Ki{4u|bo4mFtIg&=
zkr34<RXTHb6D4#M!)&=lDf?`{MP+m=a*I-SRo$YL4GZ0(a;A8>TU0K0p2eiYr{CrA
zMC$T`Oglv>v+V|zGfsM8%6oIm4Jvyn{+NHKYnklNae+E@-MNjxrRy(k7YgE%9mU%+
zH&Vepzq4+ngt|$}kXb5sY!*IAJja8RV>|$z=(j#SU43>k=OJgAUbykp*Rt)%S*Axq
znI5Jlp0FH2yRnKKZH~JGwmi)bK{$fBkOC?3Up(X;q--0JGod<(`3{okW@Ab78`*zw
zPGTG^)1!$stN@TSx6V8|&awU#SNQ|QIj7byGxpT^A472Lt{oHb0CN^h2uAJ_Iba_y
zA!f%Hk`F}Ps1!RC|F%cVvREYXw*yWu+b1Fkc+_^=?Bk!~_=2nj?a`@+4KmZ?7%XIH
z-(eqUF_41N{IEMDP4Ht{$T3jt;yiyN^iN04V)|PFu!#Q)GU<vbvi;%up`s0A4c8C6
zD)Y^sTqG0|#!0>>?mfDq*w&{tI*<t(oIJ(1eiGfRg^^rK#Wp_~J!kI=G5YM*1Ov9l
zlhTacq9TThxIW4DmngBr8MK2Tg94JiuP5yev|YoqxW!Qn<4Ka*3XWlb-o1a(a)&7a
zjih{*GY3;HD5qVm1Csu0Mg|ASF<dh*jsC+8l5|>fK^?NI=T_P%?V=gE%^wCz&sPAG
zaS4|Ay5;Vxz&7sjAS4uPk{vqC)abY&*%G|?5^L1xx4}8u<S$mX?+dVm&Dl=mw38DH
zWUg-!=~TXXbz1toEZ*_}k1>B*?rNu0zB@eBM3dY12UuO6=yf63zKv7Zi@{wF<JTnc
zNTr$`ICe|BsClNas<ZaI%6!)Mae#a|;wI6c4};*&^&g@uWS}6DGMDg*_78kml4wut
zPE=V5b~f<e;@+e)OeSFD;FBf{i6?;f{Eq<mu8j)4#E`j{e*{~ABjbNP1sN&ju*OOW
z>iS^$M?jPP6{lxmL6oHa7BM1ILtzttz?DAtam29QwfTU@5z;R~g`(*UdCYqpn$A-O
zI_7WS6&ZT!aosdkFbIF<nya#mQDnsz2^<CcQ9}R9->?(Yl_+?Tb)Js(Ly}zLBMB?Z
zkXJZ}!b2%jI7lq@WmJEte4DwQhSP(MyY@jOnO?Kd*<Dj(@`dC&x5y9UM7cKzhWId|
zN%EKVTABZH1Xj@dFIr~yzmLeZXpJ<rdol0B*AQO_&Trt=Em<PT=@>sq@(2><d>f^q
zDJ#)Qy%btEyauinBoy$hEg#<k_<|)b!+7P*-n}uA0lt$O0nmSP0-#y8jpoqiW1BF9
zn$rKb`Z_A(1OZFl6hUN>m|zn8dt=!M%NOzw%EmofqSFZjV1=~k&Rwt)@`TY}<V;j*
z9?Vh5=2nW|tVCo<1yH*>oP0G;--p+qKlZLJ>vqpNUYLiSaCUjJfd`YCaeBYFIvAf{
zpPtmN$CLGS%bkCJ{Mx?nv>IWjrH7r?$+**Mykq}ccUq0ROUt0`C*9iB=a03X)o?mr
z8uz_s?GFF1Gx>DaX}R=&%{O<Q)-n8e=dG?UPip4pkGApEJ#ROUzsyeG*RS=uZJtgx
z@baz0U^|DGpWd}kPY#VuJ%op!!tQ0~zSFW-*R64Qb=iNeU2ST$tC3#2xcq2c9efJA
zqxoUybbN62by@3t9av50cr!Z~)UOUdy=&{ieW&4Vu0MBc#>)O;p4zuFr}M6T`nEnh
zy*oEolZ|m;-_E|cbMuS7#_%?su6KR#c43}PHrFF}esy@Qo1^aN^347MM<3nc>coRz
z2Zy7x&fR}#`F>@Lx+iFPb^odE{dMtm@Ub(#o?P3<pNF-N`smDCU#}Ji=<~@*?{s|I
zX<grUPv7^u%Yi#NI~jhmuMQ_C-H)BGljWzcAKyURw&AIFXk6aich9=#qr>aXL?4`A
zf9{@KPRvbba&mutIys$unY7G<`kC={aW<$;zIK04yQ9hS?Z;1_CjmO`j>f0&-Rpz<
zgRwpMI9S#0CYRp0r-$dGul8_sHrb3%?>B=l_G!oQob%e?wsSDvj8+o|uCCvq(PZ5j
zUx((woBPXg*Pe~dH_%y}z-3S~zZ@T49N2#iPwl(W>8G!kljF(tc=2|!dcV3p8@T4_
zq;`L`S`5dhACD)_WCZP{|H-zU!P0hym+$Y!_QJbzyb;tpx3gwYL!%S@>Z`FCwXQ#R
zFFQ3fzVBR~9M^}FlTYKrlP}}Tfpz8Bcc1F!)zz1i-stf75MGAoouwBHYT=?|n?vJ7
ze{(%P`Pd!5zx=ce|GNI{t*;MH`mkmX#?62C^})$;IQ)Ea+#l7>HTlBCRD>c4<4US#
z+mgE#*oo%p``Yzo?J0KPrZcSF^@fFappDK3wy}D<nCbW4)xl(K9E|DCyL0F5Gro%k
zqhTHY-hOlSb-w9betLUx`Ek{4HNtL7e{<ceTUVoF>tZy&?|eD7uD=+E*Q3R%_sM^q
zw@*VGjjz4g%CrsV81M2L!~0$5%d*yOH4b{M<$dR?e&1W3d>(J!cdtHw^she;?q;Va
zU#>@<XB>9x*Pq+r^~zpfA51pJ*+*~Yd=jOEjm|!Woy+lkXEd>|zjVUR!PTbItkpWB
zkM_lA{<YU?hn<yP?~*n~y*E0si%5Torq!6wR_~YBpF8i`P2=mwJMZB7^T)67^8LDJ
z9UpXtZ|*L>G|r6!+nKE>ZF|=766xVZ_t5K)Kbv2#PmX(62km-SzyCTpSlo_3cQ4W9
z^>EVao=wiKYm?<*J*ZD^X9tseysNH;;ppn%?b+zd^{~4#SLQ0bG)IF^-Lrqio55;Q
zADvu(8XqnXCeFtzq~G^OdVPQ;O!ve)9-dA7tJO)@Jk;NgKQB(ZOYd~JntYy(%&(tT
zW;hy8yvxbQgQ0VBJvlKp9lPto<+VPp4=&M{tGC9%$K%oG?n!5C)+QtK^Z6!hk4~30
z(^+h0UnYyIrTK2K9GqQWzO{b_`rFX>{PEN1&>X_Uk8N{gpN&pF)h}1qqi*YDd{J8*
zcfNG5uN^xWjo-fMoSxX{2jSb%>GkdP=kEIa@Z|i{SJO5Ry8X*9i#JGr|7LbF_&7Km
ztS?*FZ^q-dt<mzWb@gR2?5y5?o~`UJ-HBQ2>9%ehOj?6O`=X;yCWC*=_g5FS_g}gv
zi{NrH@!{dg>8IL#-<&Mgm#xk{I=Sv%*Sja5oQZy^-=CO=SBK{Z1ADkKZf7;G125m}
zlQaGHa@<{aYPN$`?<a$U?x=HWyzhT<KWJGdmRDRk5HuqGQ*jF>A4P4gjOO?d|COjW
z$T7CqC8JD)`;`;RMnQk&6oo+JN<~SSc>8UQD?~mD+_i5YunyoHu@bG26ggqpv`wyZ
zA)oxD)^7MXq^J@KgzNh&{)w4uc!KprwIcdtFko$!Nrd=-o@;hly4uRJUYoMMQ_nT0
zVg}4t5#Y+^(O0<>2bb_aPC~^vzrTRQg;t3bhpZ&NeJ2L|0HS|fN+j4hf1Csg>Fa|4
zl9a}Y4;v(bN_1jiZ0#!pvIBxUj-2TZ!2Vi&4ca%ragz&|K9bzQAiBT(227XSANV?>
zDULV*0egyyR&(_=O+Q4gc>yaO%Zh!h9iDAD9$>a%Q{gKPj9%}SXhR?NtN@^u7jD2l
zs?00k&vF@$6!m|v{2$iiKR^6gilMM>lJq30w^^qn)e_Avcz*yAni2XdGhbGm8d#nX
z0Jfu9YCywV9|5gasnxfnWNDaY5S0pyvc$7IG0-qvpHMDzg;%a1Gu2RHm}pDBiVMF<
zn>_wm-rWq#ehMxjO@XG#t2VPwB#>02WlzOzp!}s$v44MomPWax-s$Pd6EqPvz5-Id
zU3VK(>4}8bZo22+fA6J!q$UMr+iwYPKKgf(^nJ^UNGG_F+@XY{Me#6>9OPTZ#I@He
zG<2XBEZi^_SNv4N_k<O5xH}gI?~tDde5Z(ceRmx?H$CyrgBspC1#GiFejKED&?f<t
zNYyPwy&!*Wb^=r$_9-FFAm_tj%qOMFt@Y0Jm!uL_M+}!zu5MyIqhoWh)V*_;BRR#0
z5V=%#me#&Rg9l6|Q-U2^3Ot00V9$ZcgQm+_c8}r=T{GK|iFf$}d7@gHPs5N$A+Y;I
zPt1p;bSbu~h=|yY6ZvB7QLK0>93C*$kKsn)CG~%BK0Nt;cs%I4PV%60COTT0gO*Bn
ziW)WtE#Znch~y!>??eZDOl<yZu8`U~WTC^oz;Mm}I0@c10h&M90{~+eh6cHq_FZ%6
zAwvR+*$5i_VXE9kfsuA&zZmb6D7&eAzsjoUDQHWHPgyHj>b^VB^V<O9eM_7onWJZ>
zzBhjiT_4WTF*KHIkCyPmjZY`T#26~wPSyDdh`g=1N^bdC6}g4)`7{>?DuPJ$_1=Z+
zF4rEp$I|S#^vRsNdmB7CcuppNWiIhs<HC}xh#4&+FNoOY#~SdjMRJx?Each@K=zqn
znbdy+uL5MajtTK`NM}gQ8Q-?qY(w5bfZ2bRTCzEUrR9kekiq5Y#Go4b(nZc5Zk6P$
zrS)T>ol4Fwj8`gweQt%^sUN3eWCh%U?gs!p53icc76Qrwf=DbIApL_neeB!F$sDr;
zYLbyMYyEtnt|eKYIp4Ek-(s-L968%;SIcvl!>gF>r6xC=25l_lh0Wr*oN+26`Qv}~
zio!In7?5nJ<4xZ+w~x#Bdd{#6QEB&xSjJM4?*t_%i7squ$isgChU*wGO#aTd%C><^
ziZvjQ^c{S0Ehl!N%HwnhLv*vY2Pg<R{gcd=+T0rSyC`FJTM`LU?^7Q$nkSobNK16q
zq|v|2+|F9731_mBct(q+NM3*&`2l}EtQ-SH;ddG0GeRLEL;@>OELed+THJO4gVYep
zx)&l#H1LWq-ZWOiTtmz%8wJ5bCQNoNHY+nSClDp4h613ZNLR0|SfH!FC(+p=)04YJ
zJ!rvQLyg1e#=7rA?&+F}r6y(Pq%cklUsceJXbTU93o+NSRJDN0?LL_cXjOkLQJ|qJ
zmVQsfOGo8#<=T%`MFripZ}*=P3Tdu%HK+Vn<H*MsIflO>x&m0DO+gQ7c9fnYIZ==3
zqaKedv?e)(R!cd(k-8=E>mB*f39RrOZRqpI6ZogIkTVju++W)^bqor`r~T?{Fk#JT
z5(VI`ZJRlg6L&}m45DU(mTP}3k<W`>S@D}CeZvs8uF8MkB)zGFQtn5xZYcWy!N(KR
z%cLu4@Ex%)2E2%&@iFctxsfndqG7;7GX8@VyJQ8z)wGZwaA)gKEL*~&fN0Y-t17<6
zJ1Z1&V9@IFFa&D2d5oUn`aUv3dqX{S|KpqFbg@H1<RrTB(`52Xs;qx}288Uns{=Qr
z*8a*1H<T8n#Id{bpb>%@vfVpyXW2GbK*zLMIH~xM{OH9az8t2IiS?w^r+tDYseOtJ
zUn{AEykflcZ{H(yzk{`7{Utt~rd$90_g?b1BUwXGbzyr~3elxy*XeSjkNC`$neERq
zh$~NSJI<u*vSPuICwPA_$Iz?;@MRr@tkyAE3l8~8Sc_%s+{IAL5MK7?9%SiSM2uMW
zezAC7#-q9lj(G8U@tDMVl=9d~uloupDYSR;Dx4TBsktS-r^c4lC?S4^1UD#?djJjW
zi%nVaAdy!we^i`0Ci`o_>dHiQ3D=H6?IW}p)(!G~R_BTqh1!23rTC7j)wvZe*0YM?
zuBx$YEF11>wRWs<Q(Yi?RVH16>dba$RjkQX*$;7#DxW&2PAM=!CG_m5noH!$C4|!R
zVlWwX4&s9TqIMM5lh{)IAME>Rj_yw^#{}B#f7QzG|NH;@fB&zN_=~oEpnP9_8Y=I3
zzU%oGsXpde90Gq52ha4QG?M&F+##U_5~m9pyhgvx+6I*~7y!*d;hpO*EoWX?{y~Z#
z-qy7e*bmU^7K_N0hZlhMpC3TIQh#5$PgPkEsaz?=rJ*GcV&yE!pi!(h<^zlFL*$Tu
zS8wYx6vDcu2sO=VmeLNlz?klwsWP?$&MM%MDrz?%2(f>b0b(?Am`JWDGh51zBY9t{
zxLqmbkv2!I{gaQzcEd3=mdG*xWICFMe0zge-wK8yGHHg3NbOZ%!CXU?gJxV!)Qu&^
zB$8XId&GqtnNGK*dE~&EycLN-_9TbdpKRnm2^4?wj(-A!R1_yV3mbzSMp<O7@XQEN
zoK;0rDqw#C<~w37V<9G-EI5$o`XM_!cJH=c&5$qdeUX?PcNT*5C!XX_;NriLet&Ku
zpETE>0_D=Qd&s(p5Pty585q;$L-8bQha(!VoM<=ghJ4;aQZFUh!FtDgV0<YNOAgba
zqpXG^t+^E|z9sScs+EPCz7eR}VMOz)AF>rM5ng|!yXDY<Xp|}&RjP7H%Z3xp26KbO
zI|3Mj055~kS|M%w?Wp>CuSJL!5S4w6K)Z!6YBL025Lk1E-rE3pK!?AeZAaxa;c5nh
z0Gh5Z_{Z)MZ(MT0K~Avtg?u^Z_1eDzv6tzh_-<%hM#$3EIve1U%_X!YweuVU1$+M5
zaY%e3U1<b=NnQe4tvkiTw3+<YqLO~qWxb}QiNP)w)Fqf?mt(b6Ihg|#RzUjv6Pi}Y
z;!B(t<k^SbO(c71oIzZ4&}RAUu)dsX9H+aJow}p^fLXm%=?CefR6OIWbh9K-_#z2y
z6c|YOQJWin#d5V&r)V^}Tl6zyNSP+7(;`B!0bJXEY`UwN<sfq)P(@2jL?05ERc#A4
zIU|3_#$T>{pF2h(Wnls0@|%o=kb~3{sLbu^g&|AxAqqpXedM-SyrfnLxl04vb>_$i
z!P>*Z44K4uqn;7(QUpy+iI)mZLcb8sGgfPqo-iWEE8!=JM)>z^nn=B}$$^^{MVhpI
z5We_--rRR>%gEZKLW2bM=`RuygwNTuP>qpI5}|cb%7|TdBap%f6N}_=K+hl+!EfDw
zw(mMK=q$xlb!nN*8daq1k+H2dNh3aHY`QlsBP^wKQ-y7M%Lxm3@?Ly;Qe$%n=M``Q
zEj!?+gJk7QW0Ok7Sxy-HMszbpQZ{otDC|OiLIzyv#EM5&+%8fB^YmR96JDsC1dGsu
z+|jAe=Z6uYF*TAeAM!~e1CqU5WP(|am9Ax0DDg4wSt*e0IBu6paGZijY+Ftxk4<GY
zj++;(rB-b27tUFnCamJ!O(DXbB3Ut+yHJi|((=coCe9_mmNlL1n_fk@#r79h^8TEE
zT8Xd7&r{5{X$a?2=$O+53>M_DqQsD%uK#aVXWWsU?U`eK2RD{ayeotekE9WCr{oxX
zXx_aXpC8rNK=*xoWgxEtJ|a3hx(|H_JPR2p0CxzOuJf-DtQ`~i_+k-VTq%C9s|DyW
zwUM(0H{2qZHmWgV+~n@eb8H^wLv&DoO0^LuJ19vf7?I&o_Mfp6AM2D7)NFPHe*FvV
z{~DAuz5>W2yQ;omR882LBj#wAO&=c-*2g@QH9|F2Qk^35E+D%VNJQhHBurA|D#pKk
z7cLH3uz&||-yLa5^Y1oVRVtPLOAre;9@;`OwRwY}@Bze7iCzL6tn`zAyz+;Cm|(zV
zua2=^P9Ml9$qaYpxejuORhKsN+&DuIB(?G79pEc2U5OP<_(lFAZRKi$859JupO_pd
zVMr8jo9T`+;o{#v&=rzynl>Q4VjX07sK*L}oVFwr5vMA)9yAV`aI=d)@dHnzGw=@~
zKB4zt$)&(Gt;D}mwrk?DRJ00z77#bVOC|liL_8Ef2ClOQGPF>h?^mTgN7q0>NU~*4
z#Avwo9b^L60cq8gq^yEgtU?dYgp^3C*PQq;OzG&AbOAPhAsqb*DW)Yf_=<>>YK+K$
z>4po@{>|)FvH7f!a{p{(J@w%YbYSuxlTS>MTI~6Di8jB1SGPQ2LPTwUI(&uKXB1^1
zsX|ZxL@%ap#YDGN(>1Ddw_d6LaYTrxLC4g{dpEwaAv_Ct4zz8&-Dx=*ntBg&AVmJk
za&Q9#eR~s4LfmgWADNbcKi<IrtWfwH2wY4@a?x18Tbd+*x>nF6&Xy0{J13qA+B6H8
zvtbS_$Pc1P2#|A^zrTWi{{t`@75+VP?ukgfv>dY?0Br?5jT10wIv0FeX#*{B{Y*5b
ztrQO+S;tSb%;FI5_-e)17UL!0yd;LGCEAn}K*%o-S+5ZfGRQyY?ubp}58oiKVmp1y
zGKdo6S;kUf#s?a-ksq!|iYi~DS?9~d6|&4q6>2~eTnQZ4L}he;PxJ;~{^YHL#T<s{
z4sNsp`!xyVKl}9Gcb^Ii>gBiSNxMHxZco{tuh53PvAiI2Gg4;`p1#uZf;c*5f9qqJ
z>g*TCAfsoyNj~YR&)$h#5FiBZ7KprC4cmGL*zSDJ@@Qt-Cdnn-LMvTqniL%YEwrkz
z5i9()E9oPUXymScO;YjmP-(g>Y_x14y6cHah9ea$+_g=1W9X6$oW$pvS$nCsh>33@
znHXQtftnPR6U$C2h=njuT<P|6JCQ`8+pM~DtgYiDeay8i4~QLT3&9HB({!eR^%Zd%
zGq=HANIA5={+p4LApB@@#`$7NtS5<JB)$+Nq4ffRo`;-&;ljEJQ^ii0<EGNy?s~`x
za4*)0^+}e}B~SOUHL$#_*UCH{y=<|~7%(yfDxx^ciln$ZBS{unvS1C#4wrJ$o^8lj
z>j3#+9gvhy3nW%Hf$MM)Bf=d!*i7nh(Ok463aaa|o9I4+SbTBi0+dThY6JOeZTZLq
z$hpP(AvvdiZ=rAD^-MB~u?*kzcwD(AqIB8Ay*rlSyMcQXf>SIJUE5ed%OU5`0GZ$n
zhW`pEUxpVMP6}*zJh~o(FyRmoqYHOnKJDRVdw{ay2xxUJ`qt~~-Qn<JdeR#-^(k&Q
z?eto@+&Cc=$l+;P0iJ1!R)ILzd1E-zyVK_2sz2&~P5ZrzcJnG8Oz4#BK^-sJnPuDL
zSR~oKZ!F{k8_tl;olQ)Ws-nDP4$b~etJF#<oNsQBpW*Kzz7bT|gzad)U22naDMaQk
z$F7)VlE1F((@30hjLZ@E_Du@V*)F!Eb;w<O?2Q;P!S8Y7!9_-zYT97z+nLXs>{=gr
zCarycTM9YLYnbOPFDs9czmh`z!Q0`+ULz-*St0IDD_Mw%^?#$DKX+Ducw{;;T&8=W
zTjY=lL!PlOLl@;;dF6~eO_ZNaQKu=Nuas`YQB|p<*#n7Qb0`#as%Si-VUzUwYO^KS
z4lVfmZveKeG;(Gz3-EcpCL9}0*9lx3fxf+eo?8x}&T<{-sh6J1`>}4cSJWx%h3eO!
zY%ni8S<<V=i^To*EmRn>(ZvuL$j2KOUt4!UZ*(ziB0tPQF0_L(9{lCd>-+A#qQp`*
z5Trv6N*@0H!uULFHIlARy(9&4Z9()Qcs^ork^!E2g%-z_N-r$g*zrh8Ng(R88HCV(
zw&@8k>#FQJkP-A0L=9z+m-u(`G$mwi77qBVFpT7VXG^?>LCGQLm{Q~i01BW!@JcD$
zuQNQP?GoXWKOogzi2o_^7E)3$o=3dl83vC~W(Ns3jU}&waYM=YnFGJ#(UH19Nu835
z<Choyv#i&|fUIS`7H5&Jgr5BrbJS{owc5KkZ^(aZwVM3j`r(^*hxK3TZ+?IK`<u6K
ze*gX8ms<VpLA~}1s6EBx+y1PB5c<E=9z9nQxqp*C329P}m@fuS(wq|{!-kMqgE*wq
zbPc>E{s&n<=st`>8NWR$F-xKBDN;%g847i3kH_TnpyDhh)RCA}DVeb&D_IABBdi~a
zX__U-<4|T6|HJMaecUOXx`pJAi6$zM;0n<hfsQg{i73)(I-Y=r*_mC`WF%`Zf6{m|
zO%hF-2)QPbMq^~vI5=7w`R`I)u(B{}R<JWUeS`%coy6*7&eAqgWN}tbnzhe3_|dl*
z^C%;exHfPz=?CS0rK?y7`;Ml6`TOs3aBD~pDN@E9X*tBy6{*U8V(xR_St(@jhv-xt
zMMP6~XgM8SwomrAs9r@hu?FXJAI<SLfSwg-;w;dgvo!A%U9DUWkg@hr8LyHL!km1c
z#e+3Gi_uS$N5Gn4*|hu*)o|ri@tpJ(1@A?>LiOaTpr8g-E%~q}mx>U7pE)Wb_+&b`
zHm$Ji5fYSdEE|2OqR^<u;nCG^-{b+|eBQvFDB0)>LPbP_ELidsLo3E{i-hn{$R?+v
znHX#-9Hc`T-Ua30P@><q7nT$m#qm5CF1CzDo)xl?APVwsXpk;BbISJr4CrllPFa#<
zLDoY~Md>5Wdl0T&xO3cpmS+1QzOT7cmjml-(fR4?M{yWf`%;4LS=m3=0gCD`n2mlr
zwUi0{J*#ZGSeRg-<4gn^^sJW4g$$lBAz(9SVbZwzdhZgEs{J5b(1Pr?Wmv>?&mYFQ
z(>=Q@kkpXOi0^vHhoS3(#d=1b>2IKATh4qBpCr`E4@2U=D1^FyiH{5DuQjx-a6?nJ
z#J4pmr!Eck4pU-Bl-MQO<dyteDO;{F>T;3xDk1*0WW$9Ugdb`Z@_#8Z=Ze+{DY0hF
zzHoC6ZVh^3m(uE5cKbj`)|G$YL^W}=7z8c52#%JVK5_Uf%KXH~l|XMyTBhmkaQc*E
zH4(EyI^*)rn|RrOY#A)cX{n%73?lC6yS9z|$Qx(Nz!HsChAwGXj+JZmRzbkTYW}<j
zZw?OL2y4~z-Ox2$`v{Dh{rqlkGrN70gR1Z!q5)Xprb$)JBgsvL1PS+j>(;W-9O;1p
zsgyXP1<<9oK7wY?u{Q(P4M_p3O%S4$s-+>APvrUVAJcb#y(92nTI1qE`|s$hZQUXV
z1wr3;XK3fO2S8|eL)TcM1cKg9D^VEES|N8G(sZH05qPUyrPQnHG&Ly<7e}CaTdOV*
zw8O<$HAsr}oHc!2#aRF>#|kZIw~!4tQQN~>jg!wo#mI+QYYEi<;rOWmS0Ra<TlH!%
zVX&CF&^Kp)H#dp3ASn9s+cABljBebzb31{4LJP%z*rTS{A7A>C{i$-He4=L%(@a`2
zs2aLQ#yWI;4QO-d&)^&xSX>$OCx!TmD&c4}J|Ut)JdtqRN_Fk#t~<Ap=eu8!5z-t_
zVy$c-Jy!8VVzg7kv(C|mReZ97_+^~rO`&Rp+@nu_r)it%OfBSWoG%f}ktUXFqJ1L|
ziDXtY`Z=piKOQrhmY9B70Qr20$`RT^V}{ky2LQC{E%dAY+NrX+szNq^c$5HEz67qL
zNy1)D=cbR$fEU28h}E$<p=EeKMA$P>%a)mH&LG|bFdGN!n@hA&UGBF6-t#j-m-p3a
zuXlQXp-&tA{zbdl7`1!dX>*{r^zNwLxEN;aBmtEtf=vw^qh!04hU3I{SIP5;Qt}*a
z2IwYzR>cN`c<m-+1^%-{o2XUHT}4Blp!<l}<1;)Zo?CXfK2XXI;_DD3$*!)*Puj9t
z@iB+u09ZAH)iV?m=A<tb3+-0EB!2|olhR0km{k@=$|XTsPYu$1YMDi`8X*V%^jL)i
z$Q`f}$KM&VT*MxYSDIOL1WD-={X|?pdlz(u?Mo|M@TFO7>xe)$6Wgf7a#v+`K0zk+
z|D(Q5;YK>>OFzwiqRvx9N)+2Kg-(gB^xFadAG`Ak;{Uum>j!X7+&o#Qn{uo2T1BUS
zzPt9+Y-?PP2l{lN4}0T5Q=gs=dgK1H<H_wP(>VsTD0aj3EHHeFr~vI&9(u#^@vu2)
z_lautl$uOI`~m?|^*+pHUuW*?u>;z6CUzR##;HD->fKhq*Y1v9j-O0ziu~skm@Bd}
zlR+A-2<PPY7556(ozREvRuSSfS}#F=4uk=mTIRzD!1>>9Z6$%wG@l53k-P*EqGeHh
z3p8zaZR*Z#K3>g>-Wc<D@)DbyJTOg>bE`%x^N3}74Xa`%DK=_c$3uNe@oniRjq$~3
z+8MT0w?j=(-DujCb-*jCcZTi6^T;+;K&1^81@uI3>4U~dZ%y0eIy<^53~y?GS{2wz
zujw+VzTO)}8A=WT$x{i)n|{DO1zB85RBB)rM@Am))hnRq*c;%xHt{CjJE#DXH4@$h
zQ)n0{2&PN4nOfBM8vjbi6F$-+5GdR`tbm4X<9YFLzdd9OA+#ZbQFnnDHIu&6)3+3c
zU~Dwnw`svL?Y6D~EiwtD>!GKAHs@WCx(AeGufODU=>X9v`D~(T#e^ZOU}}|ezNhH8
zt#OLHCDoNIN)y`WOM@*H5^c*~4*(1SCQ%3)mqXBQbie>F71t;KrZbS*_axcpoJKDa
z9}4`P4H!4m6tSmia*;a=zA2FkHibyC6EXJl`SAqwPTrkzsBJ@I87TIDitDSlik2jp
zIv3s#GYhRyh<x%$war5GO4_WF=@#AvWp4B-u;J7v;^lDKXg2lXaC)v^J?Vk??OPJ~
zOp`{EZ`&+)YCMK|bD)m|bY2RV)N<P$pYwWcig9W;I@3Y#;t3V7;;3Mex}yy>+99e%
zFKiP7hR}BB*;Y}NJ^Idnx)D=F&@(H~M1I*DoL}@Bu{yyu41BTEyN%-uU9sMe*vMNz
zu}m-Ac<3oWX}1)YXxU4R*y1ZZ8jmYEOzW{+r(&621;bO^yiaj}>nEXRW2~g)&M3fj
zwzfvSuy$D-N#{vA!edsbR3nJlAqD3Lf8&KNvoyv(N5dvRNasj@@?(_0%0fZvW8yiv
zl+SBY*(>!vpk(%hTooFv)?f=i$(R*rnxs6%_UV^@1aQsV%nAT79-U<fJ_Qs+^UfLV
z{11FO3?}WSj*o}lxI3DTdgpp~+HZ``3QZvgGLy2#ed;Bs*lsFYF&T!`IZluv!$M3U
zCs016@K0j3^%Nj~4W|U~?f0oC)sk{v%#;KUJba5wE_1cnpEVYhq$Ep-_Ql#|XkhGX
zmKLU%BwG`k4EtyLK>q=DCw$_k@yO&iZ5i93vOygW^+C7Md1B>ccTm>>@=5-LY*71+
z;qbCIcw+T-cThbT1b42VGX12Siy{Q{!LZ#cC;|)~TbU1kItvQ8vE~`TvJzNnXp#>g
zsj%+dA3&Z6<`g7FG*`in$eggV_h<8BJRIqRY4HXBM3^zi$O6x{gG!l~Bm_u9k!f3V
zTvTGm)Osy*g+_rMuSAbSDc}mvCVot<3-P+sZ1fw)?ThxPt!H|%NHYn}Uoun$L7lE(
zu*`**v?vUJ^t96$o)>|fPFx&(al*6Sa5NoGnpyJ*(L5;+PNH`xNA3^wllJF4ZAhY#
zSR=Snz$G`|DOg5uIBJaalkvqi({FBV>r`$PeC<Gf-!+?qRuFk&2LtMf9aL8EzJpeY
z(j+lpdjCxC=!3?^wBKt@JB`oNj^61FuBHS1(^wyWjuZ>_2TFtpnGT1V;gKUB3J{>#
zACrs~@}EM~X!gf1Pl{%L%+QH}7w&%B7HO=Xs@LZDSf8{9qv@nG9d}O#x_+%sN9~T@
z8yD2oo(N@99ntc`NhcUPCq6=7(TF-MKN7=F<973W+G-CQ<e(eq&E7;GTxDBIejt*6
ztu14J*|GwNkG=si+*{;tSm2uaRkYxhJ1vTKxLUhD*j9h|3F-!`xzp}6PW5Sjd~v}I
zomdmeIw`@vSjZeClS`<}*V3{YG;ekG9WM=9r`OUiro&Nhpif)vK_*kko0?WqR>)S!
z@s#<Wp8_Nna#^nhq3bg{T{<@4$FI?qYa*L}z+hTg>RE~gk-0zHNTj53t1)U!J9tA*
z$x7IEOwZZd$_nosUJ^wR?>`(?x*RTgr_&34qAQN`AIO;&4B-$n=E9v{pj%|;19{TE
zcyUNiEIWoacelL^ptd`=BiIDJg0B&*S&)~#3phh|ka31Kx@~f{V7;L^9*%mQ=|$sz
zSXa5N|3F;M)iCF1Pbn-Lj^l=qre!XSYNOljjflPch4B@j&tGd8cyi428%3RfNW_W~
zSn{P$qL)@EgyiMd;XVTyw}Fdxr;VvN>^Aztv)*W`fA04Nqv5o#52lUg=($ZJ=k?l!
zwX#Cw4;|<Q3pdnB7V)5u{06CRz6Ftg=oN)y^b??R$=+l*N?VZ;WM{uIXk1+A7t?Vc
zqxHO+aJ?4E&pz~_Z6kZ^VN7;_yVbkw{uGe6+&gDS*pDxI&GVmy^2fGoEO#b9Md7Dm
z0zslUC-mW{-Jvg_qpSY&+66`M^&qrXM4*p0UY0Bs;BK@U{ZV@&BXBm*hiAQii<e_U
z!-QUF-HO;Od=xBPy8tUr^)4|<G<)5V-W^Swjpms?9k#FaY3KOGP&y^ap=}cW?SxHe
zEJ&gY38F0sb@Wk#{QOg4)L|$1PACm@`rn_6M*~DIaS!1UN9ZTx5yPlBkGOV1)?B+e
zo%Alo9esM-Xr7PzR6}9!A1|bTqL5W*857rDuh20xmTM1dDJ<X2LzKst#V4&j7DI(G
zhON7w0Tap+w&IE-(j2xED)7sq(F`n6{Vj$>t3A-0qn`?omgOTO+#MBaUTpUI?Vn;*
z5sOvR^{fI*N_dW#G^f3ZJ~-2#S(QAm*K}`zR`_J>Pnx}3<S$UB0@>Gp2gCMoq<5P-
zIY$WPFB-#VwhGj1{n+S=&kam+8wP;_Y~m+891_{nyU?etF?IZVR)`yy!$uHbY2(_c
zwWe-^k<S%%I*Q$?MTaBFmoDL0l;MAsIO$vMVdMA$?~qP^pbwwjCqq2mTQn0&(_MK!
z3W%#l1_F{5s-uqv?dGt5xc!)xP8-syb%G69H5+>gBlZn8-#~A)3i@C_-I8WcVVC?}
zaDbq>Q2{IfN(nO^wp)6$F?f;pt_a?aNOS(+wF~qSm%Af<Fljuml{iA9A6L<%7zJ%7
zME)&|P4U931Bq3k-VmwxYKb86!!=K$7F1UB-TphRKM{rN%fktO2Hf2T%#;s#ToBy@
zeuAYW`w56VP=^mank|O6enOteqdkBjf``ISz>U~d;Rmw9#;VlQ?T@VC9=<z>?)ejN
zgYFHYdH#5IJjuRLj`hG@@w0HD*&i2WfueRop)4bTVRYdN705g%1+|hq)rPSHV6wNB
z(k(ON2GeUzhkd<&Ih;0MMiIG-6(_dXnu8Y8Lx9vJ7iH!mPhXMxt~vCOAvu?2Y1}MU
zoxX=f<amCs+Xx*N3E$`syRwV9xDEt-#2;g96)_^k?<+j6C>2tXOe&dsvH7MfwC1^H
z?u&iB#$T^7FJ9uYzFwn`)_o4?o{9rS5Z(T0FJt>+@AU$I%HmVK67S5Fl~^lLK${fh
z#uiq_!bwn)M=e)K-Nh^l4)lI+Fk;mX6GW2&tCYj#VkS8urGtnvd3xHMwi<c|3lx3O
z?mfG0=(O2_XyrP6<Xdi*Rp_)iJ=gU<@u#KY@7Y(~Y4aQ*uLJL?+*TQa7^Doq7dfH`
zpbWxnm(Waqf6&ZT!cC$2XT3Qd^#<fcw9$HYE-(|Q&Ojb5d<4xbUa0Kp^7Fupx|RrL
zb>WGikf)65spCa)NxgLJ=J50LAj189ilV}8d&d`Jy+3GoN9<wng=~Ar_8O72{`4KN
zFwl$vFAX)LdSS3z`h`Avaj09!MqzQF&w9P{XBV7*Ntn-EcbO$OImpd3y?H*xI?IdO
zteXpDEC<MQBeQir=)+NCG<<QWhan7uf)MK`!^magrQz03hHNM10ngu0Xp+Phdl90k
z1cvc?e<4MP-5on5lEozNLo7Ldv<D;&NzNa*g7+WY*(J0>{+1SfVigc7U+DL2or!by
zWAAu>df9kpJ5tO{hDW|LGlrMeV;}T-qiMS<$g3ApxKCW)Km*qe+fKwWu6w6dT9R=q
zGt4Q<iFX&!Xrc<b3Fr|yfoq!t`DAFncwf>ZeM-|#JiECi4eEpOpHo*M_MlBit&sc`
zIlBMpWJuP)g!w`iPrLC%1UQ`xG2?Hk+oLLf+s5Mv;NBwNw@l=%XX#vaoD#i>J{YuH
zIw1#5kTTH+?Gs*Spm0vDCn5?5y1$;;mT`_YC$4`w89taYx2sF&qe=*aB@-MSD{ECu
zI+u-sK0WPqA|cmlKXV=i0`5qHHYZ3WuOwO`vsk}9ZS^{hXT~S0x|V~)7l`IkEj$H(
z3LhK#DZWFU>O|92z354XCN?IVBPVQihicnWBtF;Sf{Kd<{#z~}bc-~`s;K#g<`uz2
zB-58MBpHOnU-Hj7uDFbPy%&nE8o90=5U-KFDF4EKBGrO{{E&{df}X>(k*f1=G@ANg
zG;Q{}C+*Wtqn~j`QO0i#S;f0xpkL^JjiH`9P~sUVkJ2aOE`79kiIgq;8R2B@5cPr8
zOwSgN$~b62IkcQF$Osi~xBM}ZZw$EuXMUnp&dJ*uj~b(P_jG!xALCnNfy8_T2O3=r
zr)15v+RyIB*jdv`j+bb*aNXtTV%S7}*s`*G7*oLadxK|JrV~K-U0;<_U_U#5f1dg=
zEAbHVP+vUuGT0xqdxQ4qih4{wzovR#udye=zHhmtwx11yAW~VymnU)ea5HF*$58=E
z{-SwDB*`v06y?Rv7N&yXtqYOh#gdIk_{T0hk3n8`s@Y)y5cBejv!580p8)?|SpU+P
zb3c_7+J#<WbF+>XdxrIVcZI@#1zOX3n%lHx;&DFcb@b7hJ|5=j%ZVIM(kzyNDojBG
zfB#)Z_gQv#VJh_*CaLCWT=-<{zodGlGF4W_q{mpL8xNHEqjD#n!2pd17t%wt9iXUE
zBal<kC*2F;@p$3Q%EArOc}^7VJl78&$-1J@6q%*~+qNL{BN&!5WrA~mKyV`{r`-w?
zyo}8zKD>brjE7zOc7{H3I%u3Ux{VyDrLDw99{YB}=d8H1gR<W0x2Vo+PBI<S3YJ3;
z8mM6-KkOslKu#FfRaP;l)gGQtNy>+5;{q$teSOf>RVhi89NId0Vs(5=R4PqWaV?lh
zF6pbXwnK|o*7tmC1^tbG!dLKHTr5G^Qz==+s;y1vkm~FxTzfoKBY**5Q<7`1yAA;v
z$a3c32ElOcBYGcJ&GmsMM^1{J>?#krC_9R*q`N~Oppew1=S|3{X$-_kp9}-bnfoXR
z5*z$sc+dha7!&9KHgFCe@zh(fNnGce)8;^LjC6cm=`;rFLN>X7x7jA|nrolf%KEL6
zSeU5YJss%7VF6*hjZqmpT)n|vAH1rN++a6rJF~iDemUAy5;v0TGO7hHdq>|AZM5UA
z9bRak9Q4)=AkN(>0A?_-3}P1~pvcn-HWSjswM;{@9IB8p(S0M41-w*>bGcFx5fp>@
zr?Ty2gPFnBgbh%Crmb{}x`sy^2XGy_=sxrzF?A(PhS?xUM7r@wyuYdKK;<Hp1DFo)
zxu!bvIIEC6Y>-DD5#I-LJC(0cCR<>kl`d39$e%^hK!jZ>^b(xwBOw0%yBr<+VL6~L
zPl60t;W=pPr+kGWYN#shuE=_<*ePY<QpdlmLD8x!C#;Hp?J_Ez#l+?UMKvM&R*n{P
zJ|XDrxbfCmm5Dp~v?dH8@na|(&{&}It!rmZ7_L0kTtAfr;b^UxF|vF|t&wH2_0^bF
zQD{_yz^;-uRn|jj>mz9P9DB2+YE9C;o*p7QlqM*6Y-BB0(j)oqBXKaNX1>&4+XeZj
zJHs;Mge=E@Ez^+7&q=C@EGdXX#0}7X4XVEe$t0$X1})1cFzn~glDNt#h?0B+jHqDb
z6mZDHvMH51`_b4cXWNc-k$N6Gt78fRvAt4;w1P?|5wek1g7&=UGDl|St{t-+K>AX<
z`(|atV6>>7Ubat)@7RaEqzVf)5%(s+EK5>atgmc;!18SEm^P|-Xe9y~tY@^Ns^PX%
zO{sx#F!{%{T{bEAow?=Q)Bj(=jaA?&zb2^sSO{>lidp5|GGWPTpk{jBDgAKGkK+jE
zbGSCG&~t6e*lfpixt<~4K_LpNsaojsc>@pCCqtcBc1qYq6xhA%?zG|IP9>!l8y&h#
zAt?ucR3nL|Bnh(988MbA-v$}dD6cj}MbdWDeJftnlJ61IGD4uOpoJw6q0W?{H1%9_
zN;ftZV&oi>zO!PZ$Y-szByt)cbv*>a^LH5j2B*b^KmHJ~Le8!Da`Nq;!XH1h@JI5F
z^Td^1oNc9D<ZEFP`RBd%{d=Evg>?)S@Gq)=V~F(<3kp}UG9u}ssy<VqKX1QFfKpmo
zo9KR<fHu*+n5aml*4rlZRQt(rS1ah4N8rD->N@bNwrfDUI<uUriSD)EfJWX4@n7%{
z?5wQP|5P?`Wo!Rkbn7Yv>J#o`(Oe{7XguTu3+pCS!Ssz*Lg)W%JEZWr0Rsfw8_@HA
zkTb+xe*+MNXyw^3MC^GTSOHiE$OM)Xgb13rJp`T&Er++baedH2_mz0~5a2V%@=*XF
zFs+*#<YQzQ6F}&K83LZ~8YsX+8?NsoBeXa15M;d-U>>QjQASSaZ%AP<%)t~#u_!Rn
zebu;0vNVHdnfE?UD6#6FlyKr(qMUhu28)uH&Qjsl>be<^sB<UnuxQSqR1s6UbtVA-
z+>t^kBbmQI^RC=afzkt~%|awQkI43Uwpciysjizs4<MOI(+a>M3`O6MNbT&qes~1_
zsQppPF)$Yu#)8Ptzm+H&h!!>5ox4F<JUDXg4JNujVb?Qia{zz;T@4p#g}8oyP*pOW
zPr3C1#bnI?lq<ccCg8ujH<)999O}v9%cK!Ow1V$9%Fiacu^dW(a<s5m8E1Mw5*k>J
z6~?W~3j|H(4}e>eN_a;fKn35CgsOM~1iU5w2f03>`;c^rzC@#6SONL8FJ92(j>*d!
zy{Cy+E-XG-gC-w1Xght}_B#lFJlhJ%JQ@%x&^id2LEEvyxXT&A6oYdE*+Rrkedx>)
zcoi%y@3&a-I{J`AgOAKw47mb#^g%9l{dip2$O9Dc(;^RD$-OE=dz8S~DoM5w@B>kO
z<Ei<Xl%mW7hl|&>CA9~1sRBF{)@?F(OHq!Bs&@{6k%*ANNj?2NY`<oIY{w#dck8B&
zEFO3Z#%A(zaBFDHru*-?z5m_!>{IVp`Q*o|B&FgD#~(RPO?1yrN#qOG2k6fw<)zHj
zgt7<2#fL0~U+O@0N!B6zqCK<lJ)Qha{@%ZoMsd)cJhl4vsG6BnO!|-*GifHw=CT&E
zL*O#|iCvRpgJ1G8SbQaa?PiwbjMW}!jm$DnWvN=RYNOQA%G=aQkgbYFrkZ#K>~5zK
zI&ZVjY&oA|fY#pJhbEFYP=JgziC3X)ly66(nKFHEf~J}Nu?$Xnm)%5)c>1Av*1MDg
z;QY1I2*v^Ok3hXvt4ZIWZM%1U-@3JIG)H=1K%0a?A5s10K`UQ>V<gaaUHU2$zEXyX
z1wa#){M`ZGeH)1^e&|-puxTXgd5XMx{-T=E%s<F1oyXilHtLj*GS9S^+LnQ_Kr2}0
ztRsrwv&!{<m&L6j)T0(TSB_P<{@a!QPea)5wn=F8sL@Ue<RZ?-1tOtk%54vee&H&m
zX@GuCp$2}AQkyS-5wd>ELe!)AepdM|+;`P-UUf50-1y1e*P^LspX8?h6nAt6`7h7&
zXIZaR`O8sIonrY<j+bc&=ata2pJI+$tyX*Y<_-C8tyW9^w^n=m_Lusb-{1cJ=Ixu`
ze?R!8R)1SRJp2XJo?`NCf7U?={a<R2o-2vmzsaA335e={79%((p*6o(-c}BU*pQb7
z_Mbmb{ztL@qYThbwEeg2|AXIufBP=E|7&mS|Lp(g_(KjOT0JyG+#MJM9y0i`RecR+
z$bf6=a<B+PFF2}J=T^8_&nkwys-9A(W7}PueH(^1uD`0Tpua?+XF~&(mwyCh=y~PP
zb?u;P1;HAB1=aeyw|jR8EZ{8yp$jk*La+`jXC6I8`p9$r&~oPNMV2`-?727G@qlY9
z>Ez|fzR?jZp1Zs?GjvNQd_}kk6|;AX`2o0sLq-zK-U>sw7*da$^C}uF;+_XSlkYq}
z@0IIetp(cL7%cYW-<q!N8Zbm=)F|ri&!8c85#qOh@h2XVTh59)f}X{486AP!`rguV
z%p(xhtqW=FNz;bbYL9EWSb2<;-E<l!@-w}(s8!3`vO&fJz$Wzu@a-|ac`lH>s?ZP8
zi~1XW4>H`9=Q_v<lOylpwT^*<hJk{h<C@&mRt5tE%}d`3QO_X?dXyo9HsCo@xL(Y3
zUNQrJE47j5UKdzj5!lCo-sdzER9oCZGVtdOE>sSbp7Hk4UqCBsMf<WhK=G$8;g6<?
z?{is=@*NBlKx%tg!T05IIi<?qDBRp4Voh!Kb|gKcuxAbN6@{)A=?Mi-NLO@|->H%d
zUR=}<SdKgHgJ{^BwQUROKDhki7dj3R{pS&X_?}!RY4LcDBI}WbArvgl{Ejy_xMRuO
z@Qwrnj^Ub-Y+?RJ=V+rYCXt*lVK<>Q4HFYPu8F3h72V6jjfaka6-B9dFbKkh@2=<g
zO3BR~$T5jSS+pzpaIP~otzfwmO;Uj}ESe<=e`3<)lyoTk*Ob4FVpk{}Zzyan%Rd5t
z^v#0&JE*Q_Gm<}%|Dbe(5j%$~Z%b#{n1${=%SS_uw;3FP!*{jXP6W&#ACs5TkMYuC
zD{&*Py{L7Ug$Q6`mGO;b<(1jLJd%*K0zEJA+z{&~!ZW24tXIfyo9gu$e^0H>_-q_O
ze~!X{Z!B&d5G9TjKTpeuEnt8Nl0LG3E2R<_|EiDTI`|f6Wx(>gk}REpC11GmFeUG?
z)Js`_iNX^Zsw?bd&&n-C5v9^k6Gr|HLf=}6;;ft-q$d285=$kGw@6|k8gk!381;03
z4bf*x&r6AdB*@0QVVaiA^n3~k%#UKUema!NNi80hcr#Wb6|sdp+uf{?6F!xHUKrdO
zKTaj|k!M>53}}N2|0maW@Re!4p>m5JP6I?WXZ#t_0!Z}p3WmnwLIEXlDs)#X*Qp3?
zB!J(=0y!IGChFHt28H+?|A?Qr5%KXK7}v8plAe+hewdtlatSQi^Idq_;%pH|q<LMC
zKabpEn9I4zQD;9#xC#$zn!k2`w7k1lsg!iO%*R3`w*rAw025ysK=pF}?HdT)E4Z?g
zmpJ?vsjc!MFpyNKE?@1DU%$prt6{34<lUVSu@>W<eD(XD6a|S4n!*#_J82fFTl9)a
zuiT0?th`FHBR}E$CM#e6I~*q}Khjy^5l_gEjd*-XpNNFM{9~WB<f&4B+O(0mzLgTY
z*dlpKpMwHxM0U_DY7BeQ^^}<YfeR`XMv;h^5Xhml#0f*$)-7^S5cGX_hQw962t)4_
zB_xx_mP)O<K+p~sU*)g6PEJLq1??8H;U>DMy%$9is~Z!2tZ&;^Kf}Xwb}-kCy+%$r
zvqGKSy7Mas|3H{ikffS_@q1k&o59aq5<s}x|J(WCyik~yJnlbH_&+WRUp?VjZ#bF`
zC(W#RQuieAGy6n6qtDT|{|U8f(h$-bG_)wm^rU^Ebe|*IT4V!N`TQpb9F7_zs%JjP
zh%3ykDXqBLw$N2gX}`_z9~@qFn;7EpFhetzM_blws)0@iji%0j3N%kMDs?98%1k!T
zeP|#rtG05t*V3osVdGRUI4XG!SO;*9rV9(J;hP-6AK7)`T`)j%%XKmq%H?o6&`*`R
zj@nQx4OjqxA5@gPz|53zO<IWC;$^P0w=@N2+U#9i=&a6vMp^E>C!W-N#ZpElM(MAE
zML~G`<KfwZAQk3+*bPL_cUNw^l?_>c(ChRF1>1#T5(X8`so(x7GVr`b2EHW=41D{i
zxWLa}T;Q7`S-tcW$A`Rg{UyHQn;r7voRt`rC+W&;sKoNJH#pY^q=s%s9}U{g>9F0>
zn~lMX)S<mpqRI=;?gBmg=SBNOAGM$PqNm1!{^P>BL4tpOz%IxPr|s@YA50q0tMy0N
z;KOGQLv#l>6qlgwgvh^zcFqZubZX1jeTU<YK2V-OPmrM{7Zd?u{;poOR7;M+N)PgO
z_q2E=(;ozF)ULclSyi(iQlGGZQej&Lasou3U9(c%h-&Mlemrfr^zNuVx|$C3lYu@w
zW7T1^ZanFKcvsJN&9xDh+3Z#J-ziC?qq+_dg}Ha3PaA`RH@_WOwHrYM-dS)p^<7&T
zl9g}mCsXF<vk|X~dCyos?g`-$>n2JodKav`a)RY*Ft)A~Rl@RTN&hY~v^Xy#@hz{w
zojvTt&Q^$4iMPdaB=piJ0JZz8%?we`l&_I;kW?#wI^N^ikV_`1Pn!Erw;eo{A93P&
z7ys1F^%H*Hy+gN&3}g_ExU+=IcYWO<v@CXU&j>10#D6eq(&xXYhymFW|Mlk0K`j~o
z@$TI}@gL9f2d|jDGh}<n2cZk*D8w5*3IrjGU~jZQz(gUm>;Sk9Sh#l}T%dq`2GB=f
zhAd})4(2S7#N4w2U^!rhZ1)b3kdHkcIl^*mz|e+4U_qzips+gg-Mau)&+E1Fo7&;K
zy;Qu0{H9%Iktut3bauQKLTEV{hH!zX)m!<V9bhbZ1$$tH;BJ8&JdEW8A+&9pUvmNd
zkfg`-kqH(s1VTJZ1+;I#9RjB7gnKl8Wr3)F{zKe@tQ!lNU>zWUpl@5q2RF8R_ZyZ#
zRtT)%H}Wl9pgr0r#N%5*+_w^AADv5dGv2aiIaatrjL#rhC@~olNc)Qp0ljZSA&^C+
zCOG;4G%bz|3E>>;aV>NcBtBsos+a;={v3K9GAmIL;f;Ex4?;FQlDNBGYe(^hWatuq
z_)ZHh6rV|}YI3xWcBFx1!d2B^UsaTWUupa+acjW4LEUxjBfg%*xl37iQ=FpFD?XZA
zLCBzwf2LCt41`}pIF}H5Fl}>*s{kyMtWp?8VNONMT7vu>Z7{JZVEaBIn~a30Xj+1}
z8r%NL6d%!GTAXfJwWdWvndm-BPD}}ZRZ`=)Wgaor8w=<Wh?4G_pu?1IZ2Ih4xcAQ6
z5xk=FMB9E}@HMV#ku!P%Dk^-mk{Ed;QS|S>_u|CQQn{2Ptb_a-XvG2LFo=-u2kRNw
zw~-_LTmtnHD9Mnh9FyseA&lI8r4~f>h*gHkBVTGDaX*WRvvUT?^s#>+dg<wZWuYR>
zQI1k5Y+s-`<Ht19vgK=@WR>@2>e!=QD?B_xR*=gH4Ovzyo-^&jPxD8i|MP!7SN!+k
z+k<rc_nUw8|7ZELJ^ovcnPzdVTJi|XjG2zz&Wn4C?vgGvk)ws#AR=FK+}3bc9yG!o
z({L&rYaft`^GPD5v(r4O!(&o^MA$KaTBgnR$Qi|aKPar4o<97fEtW$_1>pB6KpU@#
z5{s=CelD7yhy-y9%0kg@+rqOSGSK5=wI2xnV*|H;c)(af2$8S<#EjAJQOuZ%NIQg$
zefw74d&Oh9gy^s+gYzC>@mq<R@bAQ=5v*5Hp|&z9-^T3jLe<56c7Yv#aV6y#28iSb
z)6{)e(4$2|N;JB10T1533)ZXBUTLqKHV(%*kbOjwlJs4Z`GSyhXo}GZPzaQ$YQAgR
zE2M#aA3A2k_7<?aUV*ozR2hA4B+d_slY;D2GwvAfRwQUo;cpvn6@kTc)k)k{gzRN9
zU7|iM6&aU>EL7b!l9`Hs(nZ8VbAn82jcl`k@{HO})SPqY`b*n|W`&2JSJ#1<qERj2
zit&-}&;;?GC0H?SDM^$rPV9gvW|21{ZbV%aVgkjp2|uQaRngmMq487?7#X07m-4)d
zi+MQ7O`i(0oKd&pmjpf&OSuek4vu2Or@}CE%&qvzU<>7;o;`ejHr?Q1VY7*I@;Ret
zQz<NuVg~FhfX}?iWS54BE@6)xFCM7+S`2-B1i<kq(%{?~;1MIoEG@Iq9#4++m~^nm
zJ?KXFZ*>KaY(#*N#O!}e1s-~ReuC0FOuI{_@PFw-9+8UU`f1=uN|ekZ;D(RP<W)W@
zo}DaNOiSw9?tE^4Idh?6d={m%YV=@;Qc$HT?q|V-k<6@1vRn0g^%SLy!Y4^rnO)IV
z)Z$F(uQ~Wx&KG2a#0X~@bjD+7EZ1Jr>o})359UmCc@!rV1WwdH%jTtAe$nt~#{jNF
z7u|<GBq1WH?vJ7WLkgQJp$89!BfpUPgRm-6L_f}Xy=ysteKq%<Y!~cO3jL8QAwDhH
zx%Uj^ykwBl&WYJCbw8?rmqO>*{oK#>A<Xq4RQeAV@*YeY0OEz5n%RUQBw72*1~e83
zBO1+yR$jOvneM)+ysqgi@{NQae%TfW3WUnmkUH5E<^_>pq<tB8*pr<Ek5aCL(fx%R
zq&0Z}O}1Enkq_i}46+;vRfewAp_&3aRY}(}4XLWEV16i!%YOclr3@g`sAb}lT{1Qg
zu_h_5iTup6xmz(T4vpHJq(myaK=jYVr3lKMR$zX)xt{<p0$`A{kkkcjw}`^HL-sm&
z=*wn0zs?igML^P_TlvnI?b^N7u{-J3o%@cNURarbccCV}3-#Ex7NvA_IL?=d#ReUH
zh(#{#&C9?EW+`H#;e&4#HH;HwR`kF4iWR_8?xbhX5GzToP^hoxt{t-+z%nhn9dVhC
zfD$Rzq$ghfr<}0bkx7s8_<3jDSf&TpW`-@F|AA}MLXLrsfD}<mI2M`u`MUsnD6m|o
zVwqll1+KHK{QM6|i%UAlsd1C-XuO6{mi%$WrL#&)=Lj3#RJmJ-R7hV`;)$XcwM0lu
z&V<P>8LKv$eV03eiWYD_$Gi?blA~+~K-C=+;Kp}=pzVwnR?w$f^uq-1jy5jqhHTcz
zE~ADfMG@9Ke*a7f;ym{8lvZ)~EEW>j6mmy@1tqn9>}>GZ&Bh^wfvrPG;yCZnY~i}g
zGBG|B6uc>vSnmunP##g8JOlMy8$=~-cgQSVzeTH%E9$2L)THpVbPQTLLTz`2O;L_j
zx|7MRRTWxyyAYY^UQ@tFi}My$xS#%F{?cB3#s4JyKZRTiPv!l&HU8`1;NVTd|MSg%
z?}zXH@&9~|KX_TcehoT}QS%I3G>-L)A$a}z^&SA--bg<JqXnXlNX!WYERc`D{-4nE
z{v`76PoFwp{aGTBSf+K0{5f($tO%_3011wg1_)3HW*hSR+6zJ-!4(a-ssJo80f`*L
zmjseH5d@ZFAOQD(;0yMz0Q?zv$f$6Chp9hFuN4;iGaC`O&g(TInW60?Xl}p^AqNBt
z%kxO~3$oE^5F3lC+S>!5fg!=SuFz#4`3xNTJIl7g3PFd)Z9&@x2D2IjV6_fHu!7DS
z+V*A-02A3Lr14?>Xk!U@fEl`ReZ=w`Th9D9aJR6G1;z$~zzWwy$7IoF|H49l@(wyQ
zGR<B4@yrDHHm#5J8<`I?sIpwoknf-npP+6P%Us5@^hXl@<{0QthUgw3>|}?Q2`q;W
zD+mbcg4RJHq>d?n0?Wa2`_BckSJnTYy|-^}+g2J!|JSF$Pp9XJof}EE^VUb5-Wk<)
zQa^DLU(0FcH+?!bOhOWBieLeMQns7qyWhd$g#cef%9fp^$2@Zyiv)HT3t+KWEOvdt
z@<}oI%OI~mfKC^KPwL+<169N+p)Ws3Np#jPUkNOc;(NpOz_Bp#jR;Pi{F--158>s(
z8+t{9YdMZk<e;v>s!JC9_Ug-<mRT<A;^iLn{rp@P3c{hWD>kOY%w`0CUL38Z&8cX9
zPT1F$iT_EDKTVy@nA{rm)ZPe`!CT;HTK~6RJ}s>OFSlR3d|3bQ<N0JRE!OV2wIHpy
z#*nAST0=gp`kj0mXK#bNXfVdp=}5v<5zJrFNEwZX=re3EJjZicu7B|(2-Ag%k*%+5
zKxKHr<}@9rc$!~k=pL(o>k7vtAap@O6*Y%vQC<WBy$+ErC=!-Ok0@MzkmaYGWyuhA
z)gig)Ur^T9x8^C!qw?f6(eK@J*gxwU-6yCU$kjY@UXZJV@zi-i=Y<!Xz`2_DCZ+z1
zEH=OXDASuH?TEz*IK}6*s)(T)zsjWL5LEpFj*8{`G9mV=BPH#B2+{@;w_XL<h1_?x
zf|p<+F35EbWI^~jd{MssvMpH>>c0}X8p=PEz9|2il2q5V!{;4~&6tT<e5}!ZI6m~k
z;FzfLkKK30*y=qrU<rwFLI;bT$Ca<2darc^`Nt2-^grz>tp5o$K{#)@=DSbB`oI13
zS#kY;_Ht|IVg0{<j|a?J<}!_n0Hg1M%I#jR52Df0fj%T0=zkGA|C0o%@H}IzEzXW4
zp)WCzJUnNf8#jNIr};=~GU3v=Dif~N4xma|Ip}$(sYT^Lw{CQFP?>$Lr~P&P3u;sc
z$xtUoxyGQhg`82PD{E4B!cj8A+kJg5)Au~oZFqB&xXrtNsHPPbwc)ZCQ|d2q7St?r
zL2Z%iaf+4>GArB)L_v)s?d$%Q#&n*|hiFITLef2^NcPmXyt}mN*s6ZcA&^dhqX{)g
zhG<*DrZHRwAma;~oE(mSBb-jI?Jb6)S@&U`YIuD4A7V0>x~UE+w<a7-@_+k9+5Wrz
z^g;gL$MdOwHV%6@!|B^R?9~yzo}%S<bz$&~$<43oUTkmm_-vl^5_~;nYq+DU;26nw
z*Vk(e)ypr<uF|F-{ZsxDCO;uzIl)+d)Rxy!kB-Pvm-b8ap~9&Z2)-ADWDk~o{yXZ5
zh>)a<{%}5HJ{9oo>5J!ETcP~;AdtV!ry&3B(Zo7`7l5Ytk59LY`v3Fo2l;<L4@6Nk
z@m~bW2LMPG0Y^=5@_>*6&W~6+BRqd4vS5a==s2E4vQ*bZ(eGA8G!!(RMr7nVPy71=
z|K^$f1Wthw5#rS1uSxSiHYJzkS9bOv5euXS+6Z^ol=R_FIGe-mRek#7CkC&9<@#PO
zN&oDByMnr5c7{KfGmtAYsLmK|(vMfP&jaLKxfnb~W0L0nmoNzI4_p0mM&dRpkf>0X
zHSFErydU))J2_f@XaUJ4RQE}*7!#YDP6Cg?WAs4~bQaM$O$oOb(T{a(jx)3Y$HC_~
zxafgPZAu|6*|j<*Hb=-INjL!>0^qX}oK5t9D~aYP!5o7kCHK?HjGb|U;%t6SIARkU
zBSbM)Z*S2-i~=l(EHI}+&JVSuTDm{!qH;z5k`rIR2`AL&1kTydw$J(s$e0j>Bf-!l
zi@|`4&I}c=D2c*XjO%fDhG>kYY#?|ruy#&3&b^>)kTMpDfwsd2X*4h#4{$`dNuxD?
zWqrT5ZHsM)L(|`GI4IMmuGhbt#at}pF9%>uBPXDSkF1ERuQ|C2&Nf)fc()7n-LN0!
z-;ibfv_64*<t0;}VAM4es_V?HF3(%%N1`z@Lbl2SlShoMy{zs;m39bsn&YQ1D^<65
zm}_bqpIiI48|`lefmZO~>Ue8i^-_m_ZBl+K=lbXbJV7ug$O;+|Su?yKoozFlokeb`
zxDHqx;It5})ht={OTlJ!jgcjIY28A&6u--LB9g9(kEl}N(l{gLcRpCxK2+6xZD*Kn
zJEXQ5Gfww@ZB^>Ke0=@C!uxj(`+z3<&(3x+{`-q(FCYB>?&T?-<QES5*Kn|Z-`4n3
z<#}#U+i!jO&79u<KHfk6?O=C5H$D7%a&mM!1_L>IAN#KlL7PNdefXdM?dbjS3EFwK
zv-7;8ARoLt`f!rN1z)f<$P?ey0E43m3Fn!H^Zvt08IVXrmgOGLZ^1kA@v<5d8j(_Y
z^ZONzNLAW2M}fBaRnV6&QkCm}M@%Z05u0)*WwFQB)j^?8#sXy`*~v#MvFyTlIshv4
zLjQ!wiQBK?*Mso>T2Dd#FN>geV;qhC-!GpR{lA_)e~|z8@_a+`zi@HP%6|RclTqpr
z)XE(MSNlm^bWD}|YLhb(Wb>CV=Kjd30`Zf(u`GzaSj9Ngs`e>O7B5_XGq^_i`*8Tj
z@D_LrR}9r>h&6`f1}B;^k^a=N-=}}m1hM!h`{G}!ia?M1)4yS*5NHEzGYKbx#OWsF
zHX%4fY=Xk;7|&?{hY6er&n-xTK9#yT4FE&#+r(IktZ>LttKBvHw?9kgky8csW|YNf
z;B=CFQht4^i2Nbr6#g>?KtDg*dX|&0#zlX6rdvWdXZ%#Ia3T!}=jal1&H99f$Yx0c
zdendW2@Or{1&LGPv|r;1SRAVy$pUR}?dX<&QI%$CnmAR=OdF6i&}im#PWtI}LPX9o
zGq~hy<ha)jSdfymr><G##Z^#dXxJbmi-FQeesTt397^tZ1MPy41V?m1PPIE2dhvgJ
z%jxoep)}($Vv~vLA9H{&8P2uSqbQDZxEm{EB?nSPqvaUrhl9s37=C(C8rJpr>%X=H
z^vG3uf9F3t&t4SQ|L0rV&mY$R`*^^#wy&3}=o*o$gb5PbOaK$ckscLtr2@~}zLUx4
zhHhKVVr$mP*9uEt?IH4#M%BPsI@5n%>HdjPrEhwj3zid9f4Ms1Oof6Emho;fMGB_r
zE@xRvo<Hr)agq=Klt630-bEYs#wzO8wtDhc7=uu^=P+R`hDgIIDhn&9U|x*w3SFm2
zh*Mr;Dg<R+R-x>SQA2bXi&8A=s;bKfy%gi|;V$9n==hzfV+P$hNpazR6uuO_h~cn*
zca9?*2ZZ;8h~R3scc1BQ&_F`hAuR5qZR2#z+t-|B$&C<0puL`no!bMKJ<-_MDzpVX
z)%j`sPgE@XLx#g&H2Mxgs@0v`3ng#A{4~^O5Kd$O6IvyWgbsYtwqKq-dzzm-{J7<w
zBOsJQp420QvnaJxY<|x>s5Hs{p$;r3mFxdHo&TEG{}(Tw7wx~#cD5hxf8EQ|u!x%h
zQMs7s*;0Po+S+oH70EaO+mlYoC;{)2cggP_Z`DTkvjY8x04ErH0BOMyR0ZnGKX!}K
z+A#9X_STbx%GH0C?*HvPeaQcNFAr?kb+?ZadLYIsgxc_DUpAYOL3IIFJl}rf@6T$3
zOP>T3Ovjby0EIGYB{6WcmEsp1T)^d&e(@fox8*Ul@&dYs+E^c`&-dvW;Rp*uoDR2T
zLz+7&m35J>4|KEQG{7ZS*Mfamz7=j|n6DLJ>O9<#>|1}U)g|uUx#|<)Ey~O4=?cAs
zvy=raQmewa&PrV|su~YCstPVW*f4n(osD5af&+)6X5(zZ>}b>~-e>`_KVCiGZN^bP
zi%gJQvk&ogWgkj@_M=c1(!d&C6|`;dBEK^njfn$w&s0=FD)M(GRA6;;4Cb?b7um3M
zjy_P@ILm*xg@W$HsQmoNNlT+ksLMAl2zcWHDHW+d_Ne)(cx(Ejfw`ubHCiR~bsmSo
z{L1NB3-=Au3id1c=EIloZVq48Zo|A*xiAdEG%9Qg(@0xjXUy6FdVV`hU0Fiy0=za&
z7)K|EV|!Q2$i4z*sBLFPr84IdS(^vL2@lo-rP+Us0I4f`8m3mBov6otc*-K$j7Q*_
z`x&L2&W|{m&@0p(boGmIHZd>0d>M3nCH(|W@Z12)2lFH%av!ZC-6tfV6B?BHVru((
z`?)K43X{4@<0vZqzUc8MesP;sB|j?Wd8H}7Br~cBc~^^A7dTpK@b|DZu2JqtlYdu^
zF}Ht^f6TtZp264ub3@Jj#s7Hr^u<mo{?oGu|DXGLz8(Kx$4F=}?%@=VQ^v_5n;xnt
zc&>Z`@64`mbh1@m(Ws_cp@y-AdUGt&HT|N6*{Z`9=1E`l3%gLOs<p*ES+H<6BmG^7
zhdoLX-4}WJ)eMsr*U2lutY9>(1?Xo(m<NB|0;QX1LtWpjDWGWBG}qAQS(MUU#V~i9
z=22KtNYPm6GRxyR3rPewmqV(1sXG|V<5UVhxRj`GJohLY$i0Y-edQx}LSktf<Hh!t
z9eI0H$OUaT_plzKE?ji%7D^srj-!Y~ACidS&>Mg@%UwV53KdMmRnYd>W!wUuDb{}i
z;x7>kE?N=klxz#PCAnVNC9wBJO6Q=kScRqxlz4^efsI0(q;%l|opB;&EUF_H*Vm{=
zqwXX_o+}ckyEvGUG5wpo{iQtSwG?~PrgmvERN#E81^f+>R#ab#^;iWCxM53cYq!C9
z)0Wm(FJXPNy`}Ql{E|&3gv%x9SAu^-&e;4F1`mfN2$$C^;TnA$kA%qP<d{WdPw!cl
z<hj#t%XR#ecb7ux0)1R6Sh*HX0Z;CxXJWqeRY2ksbyHvyZCMWKSHDCV0jrg2cQfU+
zRlNpO<F8l~tfqhGB<b4{{d2#}l69(yw>tbr3+C#<d!wf4y4CFUNm!A;>!yFI#9>|N
z7A#hwm|Jjo4+`F>DXMBUe?9ywvUj~Cm6)r_+=90=#x7cL_E*L(#En`3HLLmR;9ild
z>m;YdQz&u^mcoI@F-cfGUw2KBBNiSL9A2-|mQv+v?iR^t$KpGr%rH7AmbwM6<wil&
z^LZ>k-=rm8#cKY#sN3=O4yb=IJQZ$<Tkw-i#1RulX4f-z|J7KRxk-D<wX0cNNliOm
z-zkBH>trGd#csj+M1%N<X<E<tk8o|(Yf~FY?U=R%xM}jGSERPN609cYEhKIXL5J62
zk*qWp`tZ2A9rG47T?#q~*%rJdDW`$XPU&K?#`^-cVx3an%gaj8wwQm%iE1*`k3%{k
zlAEhhGxzE?5mhK%P1{i>X4;0XYKwz7C47OS)ksS+G1E7J41gy3s;YPis~nfYY7i#p
zhA1E9=0op<u}B=K=(_G^Z%R_zoV-k7Tc>8mTb;f1qe@<SayZ^4JcSgR%D-2LXaG4$
z2RgrLw``njonzI^#{z#=dz_Kq@%VA8J#<Z&ip2xxs}17d2I!0VU|Zp|vZ6*dnqZ3o
zi-U}F5~t%BC%Y`x23p|?$U{|FmJl<R?n8<laYXniXty12hT$y&jl?xD`D@WDY6`Eu
zbQy?Kcjy^fs`{p4j7t34Y`jW~mqV&-cQuvmI_cXXyi{dP-L`+r5=z?5ryI1o7D#i0
z6=64>OLtCdc{Z)LU$lN%)iZv9n>Dr$MsvTII_-Mq-f3Ob6ux=41cEM;ZM)9ro3*bR
zLiL*C6m8c5UyZzVus-2zLBo7%R`Gui0uSA?jkQ23n^_{OT~~YsO2fL+H}4a;_E)=V
z9OPeb*1k#rm2H1>2x-UvuR~iap658^E-hj>bo*>|#jqYqCApWi#ao>>*(l8>7`xv7
z?XoORD+bBFE_O2G1c&YHxz$y@)+{BX-4MAW%8Ehnb(z&CVY!KOe6?#gBIazi^@`=J
zldBK1WpElgritp6*S7m<NX0r=s&H4G`nv6AtE4Wi&X9i^5I5-5YN~IjJKjx0YBk5Z
z?N1}3tGdv9yH(q3f!v@QEwSx-?jGqcE@AEaPf`4OSEWolBAl|Y6@7jckD4jw=Xgp2
z7O7|&{m>~{@>6-e`-YI@ExuBewp(tBm6qeb@XA(DpubdE%IhicD=nwMB+#y~mn$0f
zlNp&4j-!90-*(?G2%nLH9~!ABPzH09$HyM4Oww@cXV?%*TR3IQK=)LmkBSj8TJfo_
zvd6EmrqEKSSJMs?c*OSSZYEMTw*g5iE@(qdTi}00le=au=8=De%SZ2gTtb6Ws)>*e
zLKoRN`Hk}Qx3}U${E8Fuw>cSX(Hm~viCfn{fXsi3Sp!c$^D7hviQ{)`pv>{r|FH9q
zn5NciOC?Pr^CZ1qQfzaxcrd36c!RhCe5*sgDp=-p?@#q@8T<drXmGJd1(sWxV-m0h
z;n&s2cyekLOZK7uTNaWUNl=VC!FWK98A}ghbHt$hGfb;q<pu2Fpesk404?X)4WJjx
zEn|PCbDFA;vv!a7s+egD?jG+|%FyZ~GZ$?6psdX8+~tr=gfcb%Cg)A=CtrSF;a%Sh
zrt<hF4=)Jq2uDex``LXnM2|jwLVq$EqwbS#U8P4&NEY*tn3H~rh4DdpYw{_pPbc1&
zidHUx;9~ZA#yxqIy$OP{BB|+4u}do})`frV+^KA_ss2i59rNxp)O@Twm@fiYGKH3b
zRh7Dn?fzDOs|We7yCwGd(Pi8-+a)K!CC*J3Le9p8asp=;ByKYsw7pxa5o#Rwr4-{d
zBuRFDL9P|O=G{?t9?{?pxqij?>)*z{&d~x`!wD(eX!X}Mn~Y^&#{-6S4C<FY>70M!
zwMhJn{}Y1Kj1!oEy<V^LZCy?>)amO<Mb*N5u9#D91YAe(W$CQX5)z9Uouux0{Qb0D
zwJIc6EqP(kITr*?RDLQ%rtO(|B!WRmuDWQWaPhRJ^&u9sbB1~N;rP&oK-LPfxznj)
z%&HJu@amGBn{RN9*5u<E{<!s{O3Hr|vFVg>n|fK@^P=&@q(YuBKF8@0r7FxbG%kkC
zgS|+suv$uWMH-ghDW<+pNIZ7lDt6`fQXO8^@WTG};rP(70w6_{#OcAF$7gXZQZgUv
zy);&V`iB1&!+#e;K&X!Nv&dOg<ElV^n`P`O!h=V_r%z}~QW7uF|91Z^{#Sp>({4dz
zFvF8w2grWB_zlCw1`iKh&LTnj;rO6pKn(&MMdvuUxZTKtj)+wdirvw&&d5ul{7yPt
zb*qS772tsI)TYf*K~mJ!ugy9HnIJy%6(-9L#!^Y4%{8IJZ48R>G~E6l1h^mYv>4=!
zNz^+w_~QjlMoGfi0!QP36B2(r;Q>_|5Y=6FDyRYe=*{-lBWD^YrP~12<3qhvzdEIk
zb;2?FJuC_AiA6A2Yz-I<gMq1Z^X^_Mexnd4|B;dx8h%GY*CdKD#X?$n@#*T7F1JUy
z7pyH+;l2XUH;w3KQ}*HbaHu|-Ynt+HUo58UmGzQ0&iHnI>X?mtqoaQs;a<9|pEKLN
zuJ4MUcWgX9tf}Lbsj57_pviB9)5&!MguGw@62wM3IULv2H=o@q=QIxY-qlo4AB)A0
zJ`T|@2k-Vyk4EG1$M?s3r$>jQ-ThzRAMWiR+me|ed`vJ8W<xKKgdnx(@+y5*&c%$-
zghpxAVq2`M%K3HW=Td(Frpnr;q+g$gqcm-STb1+ck~yYPyXv;64?)t?4uC1?*H1W^
z5Y9>XK{u`)u*zyKWXM9WVkbLwR_|rEa#c4sw9T#VwkHqwv$Tq24J2$NT$G2G`7(6F
zP&Gs<{pT*?)oW61Q22a>E=D+4>#JNG#0snIIgK&D-qUa(N`ik%R5tt>^<TkXcK@m}
zJf~R_5!8iJg9%>HfW`eJo_5W<!ZKywi}X4oq8|uhtq)$r9#u*$ibM3dr(?Wmg8HvX
z3d7|5#WNBI74{4B*Nu7S2XJqzpVWk8Rjv9B^E`fdSszHC&=H2nua+rQ;9he)!7&~$
zf-*=a4&GE1D{Oy)YOF3cqBF#C{*~a+&es|$j=iEeC7O_p2GDuzzKDu+6Mfd!MN~FN
z)srh{O&eNAdAVjnU7%~BvNCtXGIC{s5}mD}HoN=hXU~;E3u`FSS1_ayFoVqmT9^Na
zz1FhIZ^(6R-3xN<6MMh$e@gM6NEYGs27qmd|GM?!WhsCD>(<MM_)qupd|M_~Iri*o
zBKK*k-YdK6bzyX-SE(1oNiK8#<{paSARq}$>~F7?J=mC5TatnJ2_;b|x~M8@=o$q@
zdH#zaxZn8C+b_3X6z2cam)p-C=Kp;>#bq%FoUqF#`I5>A2Vr-v(p?sdlw%sF!kb4X
z&zx&JWrKgh>{64UG)>T#FLK=7WcuMKVwb-%k?v9La(5JEQyLEu*j@AQ2S>Z5ckfh&
z=hFM5gT3-QmBP<?d&KF2Mr2C%MSvq6fT!wvxNG9ud*4a8>qJ0P;XrqPegE+t{PpVn
z$9G^G>7l*R?&<sA_K%Mb_Vzm_kWYA{+7qE-%-VmHeaBfm5~KLKV^Z;W+Ljy-=7Z$6
zNhEX37-&QK^g*}E1XSJQEGZK=Iy~%fiS2_>X1W3af*jH~yVAp~sz8>QfTYoDmCUdT
zN)WJla>N<zl@w~8#VMVWf#zLD?!EP=>hqINpUPtV%a>uh+(=HU04Hk%{0iA+e2IBD
zIy!%V-{6+BM>+hkzG11ph8AHuS6?{$lLRRV70GHtz800SApcoHaW9Po<i%W99)PC&
zzuP7G|NQxjhx~u{^85?o2sThDQF;tw6A18ZopaI23}Pk6up>;_5dEH~dh3Zr(6{=}
zle!Omu?Wx~DoFrVJ~`rz9BXL!Gi)u<hP!`tmv#Rwx~MCcjozFs;HpbmuiC7tCULc?
z`sGXKUkE%TWZMIb<d9b;y{9jpqYz&MFBUkWAx*D!x?^m~o|1TXR3e}k-~#eZ09U|f
zQSH9_x$7~l`vi?g?|!yyg0sdZst8YAy2f-GlThwhOZ1h9i)mEs6N$*Sv_8Qy2qAwZ
zecvbeudJM&afp0@a+CGF+6k1;-eP`1(xb@g*QK0)3a*$9AVR_rbrVi{G!`k2qOL1F
z?S@0`<W&%7%hNva(KWU$NmIERPt?}`TW1NR=<-?e1{{ZSj(lw?_VC>F@z?)|1|$~b
zp7(z{JEi=;+b<sWfA{ieS)xKSGmd{YoZBrh7GROJ{@)}eoW|2Wz7$H@B#~K&tII$%
zrNd>QG#+J~8Rt0@bS!8i>>L|V$|;U?wQkb_b<egPpslBg^H%~(h5DGESD=mB)@`D4
zPK>6rov+jI)=l<J<RrBn*?(9`?*H-S|9su1KX_KR|3BS+{$T&Vm&cL+Rx*EQQA%~P
z0_z*svqx$_=uZdngu(WWv5PE0-Nkknb(QR?+;Mg1K~Gl&<9FAANhdzop7wQ+-zJzw
zsQYnr{O;i0>mhn8sWX6(^%$RLB1N3cF^!R-84DD#cq;!*<sQ~ll7A}KFA}1ZA*|93
zSfI)z)c@ajpQbayQAmX@@56tYa5jg%a#eM?m}WwMD{%AYlxIX@R=*4NO`G~IhosQ&
zISWAVPVE149fVCsQoA4f&+`{gUl#2@FJC_7f4rCHQ=V6D)xd$vgYmh7<Leoj8th8}
zi&M^`h;SA6b9FOQTL?F_HZ>WVD$w7Py{VO{sggX;;$)0X?d(jx&wGCwi3;;d38%7U
z-^|c5c-+w=Q>XOH1Q9TFe<jhpXBZr!-O)fYp^pw?6ktIl)3jkl-IGmOelz4rho(r(
zSQdrooS->dsD((vL{jj=s<dD<L^wuSGUYfVa-mI3`aKH@u|!h9c)#;_P__;E=Xony
zgr3O1HTHG}v$CzM!i0ZRvK|$8GB})5$eY8-l!{bcH11#gDD;7%8W@Fup}TJGzT0hn
z9=g4{+gINd3bh#Y)DppXM=KU$*y$}Prtfk0DU-CD(Qr%_lw9gjB8KR9sd7G%isv~=
z@pku*4gzH{<HY3pKA6UglMX@>!~SGKf>aFAI~J3UxzM!hc<_H$raLXm6R`-K63zTT
zHVt}rAoVTKvTOo+l?DCTv#07#0{$h7!$<+tQ{;z08=(Q3%^itQPY(mbkKN<_(aFB#
z$%mso`PUzX)S^)8vHQBf&OfZ1ufFIi--jfL*!7&msgSTCQPw1j1W~{9&+4pGbpI&l
z?p!4p@v4<=FN}YQ3j9$Rtmd_G>n-K`T^aso6#LeaWpOJS;j?pDz$e~+cT>s>ke8AD
z$xWHtO0%nPYq7>!I;a`w4SJ;r^p;)G0Ire$r9ban|M&NQvGRvWKzy#v6tsN*xBcwJ
z&Q5Xv_w2=k{pVgD(C5vz|5Pu}Hi5qve0`%BoxgPy_FI2Mjo-9Z4`=S`VX9VnN6~SW
zNL_};(~{=+&aGatgV62lg(Pl!1L6i+rpg*G*Z<JU7WC;0ype>RTqnkdNT-rFZ164~
zUu<vnsj!Nnx^fJ;^!@v+exn;XRptt~to5vOUoT*>U=iuzAds}R<5N|mLFJg^G??kg
zQC0^50A+t@is3p9vf|K$v$=c0skE%9rvi(7{B5OadSA7>)Z*eH%)0mseC&Zftj!|#
zJNRzj4}MRm-z5wUeF1uDnH75cfd`z?n*CJioTV&a(GZ>N9=Z1zO(Kax)WOnqlr?r`
zz?l%1^d3<Dz4v8pPuBKh1FpO4MY(@RC-3*(gUf%v-1>2Z(ImoCxxr2|9xFROn@su$
zw$E!7k^0(CFJ--X&?8rhz;C1ft?92~U;7n?h}m#g=GDKG@#80u4)(9|;nM}nWLevY
z*mNp;-VC)h3kwZiNr|38@@)*47G1!zIB$cpjC^G&@-K9#$U!ttvJ^hI9wIx>c6Oev
zRQi*w;2Z<Cw(gV5;O7A+le6Jm0lJeA;w*o&r^Wj}FLxgNzwhVK+E*c5Z;+@+wgP7<
z(*wa|zp2*JO+2NL1(5a(Cf~A;M>w6WdX1&gjj6_qsa&>qN$7Nzc893D-L3c>l8B_F
zr%vL!Lv&6ij1!m(J=hRY7C(VsA`1dSLK3Q<6HFsGq{t&j76V<FiRDf<#Tn&4(^3_S
zsq%<)!Tc#$Y(4e*#V-K3ssA>blhES70Vk7?;~W8Vlda>F0n?L0<Utp=AW7?i{OlzZ
z1Hb1vmIL+oZhvsGy_J)i<ZK|d=Ggk*!&7not8O_Z5Ji10cR-usKR(;pE}Z|q*x7oM
zCgr#RQ<LB2^?(1_%bjBU-<Mn45Ay$Bo?FU)oFpRG_xJ3Wxw*3cT}Xc|A^mNSPBPV7
zB@PNFAZEo7?R2Evto7zEuAu>&&sp4e%6QFukt@KrZ0ItBWkb|K;8M{-D<7Y2I%!x>
z1VOc7No9sBm~K#w*|P<6ek@o9Z#NEHGiuq+>Dj1mw13M(^%hSSBwpPr%V+6&yrRic
zdQ{vR+G;g7->qfM7>h^ICB7C;3E?LU^ielu&U4Ey&o<|l3<}xi+$ZEL8KU32qr*eT
znCp7;6p%uq<`S47$%bfqYhHLgCv(QHhv@m%Tk3pLIpE&1EH3kYrSYIs4_6Kgmq$+8
zcZWEMUw`lOjk<FiVyboY8<CUiqqz!QC@!*dRk&2b$*{L}rt0MP9xcMAC0SFyX^s0W
z3&{{Y+u6ElLzZ`l%{}P1X02Ub(~`o0k|!g=SeW<PiRu;QBDI@`8tGwDSEB8$t(;+y
zQSu#&rHm*Hx;)vWU&T)m>GH<rl9UVio=z5NDt}cTgSAKpi4epvCev%zDtOGIh{n?o
z-~b5kx%<XYHOE&UV!XgK!sihgqMhge&cBQ^KGpATy8Ecr|G_4>9xG6T{=ZYs|Mc?Z
zv#kgH|3033vj4QU_I?LeprTd!K1@MYMyUWQr#c^rRIAbU*3Pq^v=IUo4Mv{HsKQiK
zVSlVaxhdwytsl33Dy)RE^eG%b-;7^<_hi8b4wrE$i_xG!4nq2n;xxfRKnsV1feQ$-
zGSrQY;g4Heg?8kN*q2tED4U?}oEt?Om!mQX5tWTx6?K%Mt6a~sc70{ef3KFaf5y|W
z{;$Of*ku2Ewp}>?-`U!J@nHYEm*<<a|9_Rwe81_%zii0c{&oy`WnMm5^V;|rG@JBp
zWsv*FSkTnO2GwFkdn3dW@{uTDQo(3xh-_!Z%)yG5aKD;eu+ltM*__+&s2cG~UGdhq
z>x^KxwcoX9SdHzg*6_A|=H8@Ds~RSkHs=Ob%cVs8<1BLz8;>Ua--PVE!}w2I+ka1A
z6!U++eD?go{&z3Wy6k_(m2&A7F*BOZNs9fmbNCWZ)ujO?w|eW5p8pA(k9@naqVBv#
zS_)w#OWK@?A!&YAC|@b&Q<5r8&erTzXmCY;-ZsF*gS4-DYUTf0B)@tZ<^NXs{>MZ7
zzx#Q<iu}h>GF$foaBJEB?TY;hiGN=qYttZEA`VM8KwSB#Uw@5d#J5g?lCOON4vv5%
zNc}pROlVBgYn{9GL6WcS@#TNQ*_@;^l8Jk~|M7ggl>h(5%Lo78`+3}%uA=Tks&|}{
zBRdw9k)w<H<=ja5fa$BVP%rPlipH#_^J&QDn8s-MGwOEjS4cE(Z#k=yeScLF?8QAN
zs<RL0XPa#vQu+5QV=Di^&v5{u$;<RYtOIS}?%5n*xgSGenY&d+@zpYCS6R)S8_s2(
zTU*!r1>u~A#Dvo}1Upr(=aF$wP*<gml|=*`C*%~8b1ZN)MB8)!i@xYFMB7_N5hn{A
zWw64R>*-oLCv<*e`%iX$nt!YGT5s5+B47)`^PB_n<EaRX^%abaN5CdC1oW}AoBpK#
zZ_yWv;NJp{pa+YsK}1D52BJ=2?UVgf?uX(yyX!PIWws=ln2mHg9UDObp&5%AhfWYF
zo+qMUQq$RMP803zxiye*bW)oho=yk4L~d-8x>-=oV5J?DY~4MV>3{XyUWKuRG$2)j
z9Qtf`6fUSRIhl(*dz8mP?gdzte3Z8|n33`+KpF|%c(<7WJ_Xxj?zp3)B@Fyf%UYMk
z%BVO9a6fQ-YtIShgrBDDg2Xq1mpT_~-2|nTQ=*4BlPF>qIyP1U(x|Gmisn63a%_$h
z@9<+vu7>FJRLZ+k2Y;`GeX1aC^#7mDPI0WLZ?Yy1Lr#P^J@vpQ5e~>4R70oX+I}s^
z&d@!(=^=FnbE-ux`n`rC+5LZ%>Gw!PB@*4qQcvdqCv>pb9!NxD@WZF=F9WcOnwc~(
zBh3ut>gjApa?M;_D%#JnARmqo(U&i4nZDhK1vr{9kq-ZR>wmwuy1o-obu!i@sceLL
z9F5-w+bVM4VtdQv($b_m^RZ5V6`R{I1@cLdu&{Kf0}`mzGIklCI_q-DVcqP9D)?B9
z$}(|?x|T6NlPeNrDdXMdso5|&mrT!ug;le&-As~|?MW&mX*!Lw`8nZ#_y^CLvI{~g
zsrvDM!%t5iPJdOttEYDVCxT!t!C%_Me|b^7|Ns2?_REL;-+eqwoqlX04)@r1m&GFG
zn8vB__DJS*xD*R!4LhgmJ&`+F)!O5`#)P{@rWuD9`2H&ssm=>kdcQ}xN-?OcQ+iRb
zpO3)oR(yG|SAuhJv}@iicfm3KQhS^wyPgY95AFW?{(s}UP7l2~I6Un1(Azif-tTpK
zXuN;&;XwcK`e3i4b*NDodH~Sxe{^)t^wRr;Q^vubw$;hc;;jYlZ6?xV=k&fK$RUlh
zE9c<fp2v^GD8B9(4}kI)ktIn43KfoYK<#oN>krb){Wdy16tc_s67z6$bkOM`GEdU$
zJ<2;hlz+%UCsGops<(C{Oy?cQ$@C`)QWAE0+WVoC3GKSoLz?rxrak=hsk~YF@?}^a
zT#m!q*PgZOd+O!?{hj|je^$Kz|Ki!!vj_QqACJnFZw&P*LsJqHF8|g80GuJwgmJXk
zf?Iv&gHWmSS2qYIOr#SE83RqmW?!`DiCiHba(_SL5kx1n5SUb1TLR%MOG!WR>gyJ$
zbfneRK~21w1^QpeSi900*ot;P@6@G0j-(^D$0a>-m9)ws*mz9S9w$^bX#!WMRywsR
z`3IDbtnyTPUT<k4ywj_#|K2M3T*Iz)36+IL`5dVq53!S{aA{u6?`0F@%YU$muSx6A
zpAqHqe`ia|d|&=Qm0N-b`F{_SRqw!m+VGu(%<0d#3c;pRu#$pJwE5-BN)1_xZ?y(F
z87j-nzn`I3)J(Jvd;H62x8A>|-V&mRp2}Y3=B{#5XbZ;EQIyOu+6Y)2;It%gU2)|L
zj7>!V9RI<sWvQ3tON7tY!VQ`p>OSsvOnNN)!lM$d@^E`zswPGO%A?1Rd?@mNMF~o`
zTdtX(0QdluAc8-qB!zz?DpF@)e7_?i7J5*ul=!U7PPsN#ur$9HT;Qo;WM<-;^blk{
zbGX~4%k*(k1z@MsRLX{Bka0pGGXMl>?o(EQ=|XukIG6wy5CMd@qt_awlqoBSFr8Pl
zpcOEEKwLXmopyWU*5P|AJYLFwlQp7(+#nVB{$%GjXNk?RzkC8~g3CZl`TnZ}g(?F%
zKxh$J#Q?OdsKr`=#DvMN8+E{wf6mf04{p3V83o*1myCLQA4^i}$qBXpIem7H1r1tv
zn794AO{WxFagKwFEEy^2UA0Zk;nx@4BPpg)Lk&(u$~b8S-7nh;Jh_s8>QgJ|UeQ*-
z0~`k=YDan&uUM``L4HM`wE5Gw0%~B=d21ecMJp+=gT_v~s##k-K8-bCor6=4i6ao@
zt%i>(+Ny({=-VrltN?uz30J2smlo?vW;?Qao$NMi^0LPLa|E!?6uO|~vb`9-BhKS2
zq&oFf!&pqzwe6--6+KyhQ|db5M3AQGm2w=53FGtTqUTXYz<u>x8JZf3%V~?J#CSFY
z>iGLcm8uX{D3^u(=l5<JTf0eYiS@&^kFA0R3R(mg+gn3`C!9%U%$E{Q|6+S<Bnx~H
zgu_f*4V|p!v9~ZEbFB7U)5SiOct%mgF2QtLNtu!otCQw)qJlPm-!SrBj>uK*A~zel
z&12Tm@i1)faoB$E@-*K}-?2!wi2N+K?Qj)4<`#o=b)<Tr-q%pQJy&WdbpE6hgyXRC
z5N#u7X~X5V&9dbFK9%CKN8T-M+f{oX7Q(hi|E2DGIKT5-37$>Tx9VB*bq{G5CS9n`
z;94@RURGP4$yG{!V%clLHCN^)&2oDz{((qwnw5!aLB;pK=-+tc+|}w|CTOK>;#KWg
z`S?@$e-!+Gz*%nH4nR%*pD$h(?|(mix$_YJ>0Tb?93s2jb%azeoNJk?NWquW@e9h*
z*}nRgJAf42Bo&0}M6t*6TgwFU07qX6hwI~-HYeK1Dp#(5OF>E`+?4%aJdZ#e#lAf9
zEGIXL|52n{m36<?WB2eIuS&Sh2cD7&p!}^PGO4R{pFY+2$o}9s$9_gBr}HCDCiDt*
z2VMPQoK4J&FJA`QhjUo+!PJhNDH}SPj+^*a_2(3)<Pxh(-YPvl1OV*V;Io>dG!p(D
z=`?bB$1g`mV=%Rl{cuW72%pm!dQ-(#HEdg2$Yow@h=uUAWxCS5ruACQUlnmyl=d)G
zXoqWYE%oKUNesW<6`;ZY^ZD~<&kOSZ+0N6GRP-@shUaXis^d#xF_?%{n`#SGQ+#YA
zpn7#Si))kP!Vi~*?lIU0z7#!ZRY%>4dY|CGGGZfl;7f6;Gk9E(>r)y6NONmU>bz>k
z;!81tVsFUxL5L=lL?NQWmi#~6{ElCBmCxw>#WR!Z^iKkNtCKwS7=PJl=8f%*&3Y3^
z)ij?nCWVz2431ntb%H_F*p)RD)7^TT-&iLpVs%KoY8j#2+j`Rr(i6CE`=rQm1!<H}
zIm5hj{b~m3%am^TKcLG&r;98>cce<V@}+5(Rf%$Ub#bZrhB^vpTqeq0U+TIxisE=g
zo4Nj{Bv5VLx8sA4G=H7#MwG<q!Ja=E>ME(yid(y-Ii!{VS?)A|f=d>l99rA;$E#7j
z{FHRyCF5gRQ{0xMB*u*`Ie|i}w8Yk^Sx8+j>QL^DoK%fjm7BU&OODzfib7*RJe?|Y
zm$P~7)?hu>Rlq>DwD}@C7Xhb<iWnBQf<AWY9PBLxZ)u<77=KR*KQ&g_m74K(%J+4>
z8f+v^IX<OfE&Pq*$%2Pyv}fTLzt3sFnP8K2U!pj$1vi^0u}v>?wTT$h?t{HXa`K{e
z1esyZGRd7q+fLq<753vrO$WEv1{NZjk@8xxWSgLCxKpRRS@?$58BOo9l|~owhi6&P
z=wfy-wh=SMI)Bxpzz~oL!mTB*mVghs)G7qnI?D-2un?Dw*NJ*v>`0edg#cUUrsEZy
zY~fVVSWF9p)jN5F(j)m-p4H>NMyA>+00lisOv?dlx3HOxa+dSI(4<)k{j{9_b#;pT
z|MJD36y?6~AVQ!$fan+;?~SQ|{Z>rX`pxQGaF3LM6Mu|`fyapQD6~bs#vm*u+oECM
z8F*TYQYS3xf`)|mOgz!T2(`^M1wR}gHjmNDTGe8TlaO)}q>Tiaf~yhW)>>jxsqf~%
zSrp&d&<E;mucSa%)jil-fnHmsnp+xgrSe=)_saN}sL!6hECQAgv6K!~WCaRzh3fVv
zoXwMhu79bbUYzP+MoUKGJgHl(%_0p!lnT(Z^E!}Ttp>>IRH;r8tcI&kqN)MI-lT%w
zI-q&^WdK(p)2UDcQirbJ%Xog^W5I6EYDa)yt&J(PIO!*xh}nr;S;kqCM@^~tuxtgf
z<2@3j0RV(DtAk*VD^pJ6>7Ew7zL(VyeeOAaS${t)bI7u%WA@O%Ign*jmgUm4u@_bO
zI`P<I0p0N7+QV(Vgl?h@C{>oQwq#MnRw;kgrQ7XHs*JnZQKqM*hSEZ+kKgTzJ0)pO
zhwqu<pR!b+sxKv=zY;ows9E1`?3^W>E@(KPKA|6M)@wOnhCi32zOCyOY!?32^)ym<
z4Syg0Ts)KCaDH#B6isW>t1Dr7?c1#0;1}b0cwQmvra1RbxH++o3-CWdK{c`0|1Aa~
zx#~8srLETKby<aqw_(sK(|@-Pa9Kes)YRtfy84brWh+jVtF69UgvcDzs1|^uAz1(g
z4XLi`5-mvKtedp!R)k7`Z=?w+w$;L3pB_TwgIq%E-LL<vZg`^*CrdWF@cBPuqYF)K
zT(vfelWY0z6Rj67it&G6Y(IU7|9dabr%!{&lWh8<0T`1I`xOcF<<qC7{68-rlP>#n
z54pK?+{JiG!b2L!-9Oqald$_C0Vb2u`$Yn7>XRA#BLcS`lRo?~e=QT#WSv)l8}z@I
z&z=?azh^I=Kg55ymuD^czkcwO$GVXuOg1P;4<F;mX3+YyED@KfMXsu9<!K8}aYAb=
zJJ}5q>O;7F3bKGjEC3QLJKRhtQ({-QT~kuaUcDkuIGaP52Mdy1B}}vcxUb6j;QVYZ
zYs-{2$230GAuQbte?fWIMH1)mXM~eP%AJiWijRp%myo-Ox)UyO#9<eC0lIuF*4$QP
z6)ZV3EKtA9Md$w95A)!(swVjh^-)*0lCvlxT;Cq*=IVgCwl~9YJ-Mp)`)Jv%@}|Ua
zKQv~BgFr@N5v(WYTPd5H1%J1>+GLr6uy75{=9WZFcWf}8e;?}5_)ij~ucf%6fl34V
z3q%1Q(~tx>Pdr$t@kS>ZDHOBu<nz{wrOh?z>I=;?bL_{hAGh)Y*9ICc$@z@2i?K>F
z2W)BI&T{3=l4aVLS%-SgE*DpeK$hzkgn%Qt3RCrhCQsxD2v{6qeytFM<f@3c@61T}
zqVI^?@|7~Ae?pAb5w_`4;q|H-qTZ+F<JqCFzkE!W%T?MK`luVR>6FIPu1}hNyOg4x
zXFEI3O8Cv&0;HasL4O&<=amqj*V12}nSM*=L9dOh@U|xNVBcBlyC|kn4XfK!^WF5l
zypSb%C%0E1<5dOFhgyjHA1=1H>>{#hR3Q_W2cW2Vf3dE0(JEWbV3&h5NtU{$j@8kb
zx~c^bt}vx>M$B&$bm*VA#(8YW^+udf(JikF6^lT5oEIfTmC{<_1axn!?LT>8=zr6T
zK`W7z%aSDq>X2NGvUFCkNUt<Khp5Uqq;{&_c3LWAy3JtjXsL599rMd)pVY*vnQjR%
z3F&owf8>KBm;YaTi+-n1!Ty7j^{4-Bu>U;U-q|kY|9$%O`GfuEKAul2=X6!lsYOa4
zR}SHDPT^h~CsQg?UWgKWPEu?n)o&_D9F3<VQ%OZ$tdL#W_fuyJ=_iEi8lr23$^_FW
z<HUq|e1&P$L1>QCV7AL*NehirZOk@NG>%ose`sYEcEd0ugnsX;*jN1v%ACxCf9TQ>
zDp<E$4AJl1#Ws$T8QykEu!L}JLznP&kM~C>``ss~`{8I${*{-^!#M+Hn>*zX@O4s*
za!m1q$LM56(C+>rB3B7lR|y3=ClR|;UK$Ar=!6Ccx>SH&Pp2nB3Fa7%fz*}(M-jVJ
zf36_s#QI~%3K+pPeDFVgVnO04x-L3tNI2V@=mey3zQ&*)I!KKr-2pBaiYyY0)9AW{
z3E?<YHgsE${FUKI5-8ECF_0sHvOAmTST)atzBddl(jZ8xyk4X#Mkj`*KIq+Q800J+
zqAr7Y&3)N=lhL|Ap;1cs#?=#arQe~Se}6`gG=m>)_Hh(#@F!@7#Rj)&p)A|`YSpq!
z?k4)L|3WRwNhF#aGe!EA4Vzs(nC3(XJe89sEp`VL2<K;6`V=MxuA0H2n}g#J%`=fo
zj>*pg&k4e!vIDy7X50U%;~TH;;!X7Vb0z<3%1f-!{}nug5l98>3!Rx^*rQW5f9LbH
zUpwxyI3&Et*XnWD&8PJ%#*s=C_XMeAX-|+!dIx>tgA-4nLwqryr@RV>tK6xeQ8O%%
zBRD1UM^lnMf)bCkbNnOQvM1WhiwZ3<CxnwYAfay9BSk{a?MG%P>G-+O^=M4vfEd?%
zMUy}bTrqL<#3g$|xk!z?q7&<`f1f*v^?^Hz8&8yo0O;yXP6<fBW*q4Zr;^}nM6Rev
z*C7E^&*_m&^hhQ;^Pe*?b=zRznh^7ZE7$dnM^)?2qs_kQnGMrf;?ZV4|CgX~garKA
zRCH4*0vj+qpe=G5Y;4v|myi)PVP<$ioG~Vcm<lFpJ5w(r1mun)LXYL!e@YQGSv2dZ
zW<Avj2k)5m^=L}0Zzy_StXD*=iS=s!Y1W@>)}Qx_(-K%-^X*Q$r5;VGTN;YqSGO2R
zzm{%kzpmZ|^OxW$alfhTeX-wPU7c0=V1g((0^x$xTCxBa7hh$;s9k{1BNkk|Wg$7L
zUx}Sn7@+BuxG2n*t;9t%f8KJeyw~cN<f_VR)Sug~o<%b5dKoR^YqOqK*13am40zC-
zg{1WwTN=^+uwUPh#yq7H9Hj3TgmZe6kzEoC%Z7Fhx|K$FS`XtcH;T2Axu#8bE~#tq
zwvyb->fXT&sO$E2l6^2hC-3*(Ye#_LV4xX?(+CSeaomqdIymR-3Q~~4o9(UM&dX<)
z>jDAP0p^#$0|A%;1h-iP0eb=gVwcqh0jL6}TbF+a0cQ;D7tgnz`}2S2#mlXi@&^Gg
zE1-171c6r_q+g<#*a$*Oht0TpAy*o8@#)R>R=?9h=tDeVJk4U9lIZ%0mrMu&A%C>N
z;^-PpBX*9X{$ntYz?W00<;WMDIQ2JyIFOKYf@4u6$izp=K<`XR_yo<d^^P!v+Dm|M
zwzoP6{gu&_pdg!{6AlfXFb;bxfi~>zJ1tVx#WFx*`+&x1o<%85Aa)9*-VqirO%cK3
zTGp9Uk+X`$l3lU{;|Rwroe{2DH-CztKb4oq6OUbwgiR76P+)@81er+Loc?Ws;NZ~m
zvtyJ%L}QT>9QM(#?2;@9mw+u7vt-I~XxL=1$@NF^<~-vei6w73X5R<=)QDBsD}7%N
zc*98#OWj|Q1m-J1L3HohyNewJw-HeUI}jB_GEe0&;pDH3#KE<CrR-RWwtp-MfeWz0
z!B7O|eN<H?>=?~y9O`!3+$xt?s9g<Qe+)RDq;}X~JwkznYHXOCYH_GBx+4y@v2d+Y
z4hJkm-dw{&AWCkH<gf*c0GlTf6^h6wFhQMOMG58te39VDH4Y&S3}QS~7YfN$5;2<U
z#=?Y$&7P1Ir8=NzRmu?4H-BxN5kupA;^ntTLpc=BuRF*h&uakN<z^E6kOC4C+4pKM
zzmXRMM#!F+Gw^gGNdzf4i2&x#aExGpi%pGI6J0<wqtls>2|7brAUddtE|({QY4!=f
z{V*6{LIY1VIhOsJzXHm2kSYYzIM$tzG6)J~=ZGE(+8L{MvSLmkseiO2NlK*|UfAg-
zsUedI2~rch3pVLS;^YHPjquU&yMuSHhu}LGL&UE*L@G-O<JU-}JPT3~F_Vh1A7D-<
zSp@x~f^e!qtFFYVo}@aRjw05y4SFzd(*Lm;{=8gFxh4XsA4neg-KKlUbrr}19cq;Y
zqW_09NKtoJ@~>-tsei;c-Mn6R6Ls|lHuw5KT}45+f|N~@=g&tE+>=<Xdh1ZH635h1
zyXoYw$crQ@Rr2s>)E!7=&e7bQJP<lJjm7V0fUu+v9zTAJj*j2I-9Pzt|HBv^j(*uc
z9HYmN9}jX^rxL)N@F{t}ApDX`ab0FW2PtNPDWDs$`JBaXNq>qDb)eY%BSKxABz@oX
zQ09eWgQzGk7aJT0vX0wUsIb|Q|F3Q2c>nmf{bTh0xBcVegT4J?bLG&LpiCSAH`Pda
z=#@%;&ePB4rF*Kh(?L3b+%b#DyVl6+D&;txl>NPbi*7L!QjywCcPOB@vXAw`juIB?
z=)XFfXMBy^27j5rlB&!TbU7nhIz>1&m(wRo;EEI_oH8yqjxMVc7OLT4N0=HWP6n?s
z6Y@%VvkR59ZemNWp_xt|tQ)s=l*3rD!EVhKt#*oUx*?@)#+)E9$?<x52<`$Nk3iJ*
zGFO?{kv$OvU2o7;jCpSiZf=$k^&Gq4ib6-T$d^6mSbvZY$A{fzJk@0!W|n2_rUIva
zGy$}wmV(rorSnW_n;k7Lt7mq%R!|r*E0z7XI5DsFLUyse<@SUsrY!Z{q73Mk#e#0Q
znLb@-rrJ+V4|a=PS|NYmY;U<Tc=!FgR|l`(j*fcA`-ksGd+6Zp==Hvo#QKm%4`xjH
z6ekG@`+uAyOi-zR_$A=9qOXnnmETf4t#~c^iYs%R^f-wa4m;j-&AZN)J5}XQp}y56
z6h{mJ-O_xlYJxLJ3Z?z#Y#QLEV%PL}PPXpW6i>T_fcY2OTX5WRB0v4G*>S`moyf8w
zxvIo3DzI#NqN0&IKcfwMDBz{=fb<kVmah{)BY&uVzanWahy<szF6u7t>aML}>Tc>3
z0{<geEca6dnN*aZrf>gt5_Yc4AXg*G$4?1G#!0Ci3Y0(W3j<{pIPls4fswRIZ8O0X
zH!E4!R-RkX#|pIb$<XLcy1cm?kTR^9@s?-p$~rR^EZjkgKBGSwjg|Dy8P)=t;ZrxH
zQ-1;pHJa<FqRj$TE45!ij5=F@8Ud=7$geCmoxR<P0<(JRms(#l{k_KDN-8!H&?p6q
zEVv)}S7ZPxG_SSrb7Vn5?yV^ODujvyrBVDj)z>Kbv>v&#lylizE!zquZY0q>7)#}t
zS8}QJQnKpk!{H$s@9!S(pNt*BWwNA)EPuElTqW08^63btvkK{Sltq!sxa`R$_;#9P
zQFN++f$ab`Wx(HtS)W67hkPASn<}%mL<=0n{gKq)7%%0NcUiLZqvThv(cOl4*lUo$
zv2A$!xO%{~pWJbo#q=*v0M*u7))S(}tWw~#ySKLEK*7|ht&BOXfr@%Mmhe-Uoqx7A
zg@M<VLxN$e1`c9HkhG#*dc|-W)~&=>DX((nV*hx2Fh1FTw_Bl5B!mkpQm~1OlyN*I
zyAc+?3b2~wvmjHI^wJlCE|TRN@d6l+ym|$qu0gpi@t@(kbg{iPINl%az1{E6!#l#U
z{QUprvu96>{y*E>&tE>A|KG>+FMsp~JP#iUnB@6^e!tWC-F~{*-uh$1M8XYOAaXa<
z!KR9T8R8V9h)zgw9Yh4F)S%!mB(6nD<|?006rpRDapX=feOlA8nF@R7Sdb85<;tmi
za66rU{R^EO{<L@eQ>Sxwb{4Q$u!wYiQ0_@!{*NN0$QoR1Z=qgKO3a`0KYzjL@Ml$`
zN124u8HFKL&dbsD6X1ZhDu5Hf0@DaiXlaa&BAh}T&i65SB+%o>2b{&|7aU(aevD?A
zheTyC(rrLS_3C#{m?bY0`glzcjp&I^m!t!cs-rY8gHBi$hn?SNgp*p{!?9R8(BKD@
zv-ljx7yVf}k2V$04&s!vP=5jKC{HhSjCjsiDpHOU;SYhtG?c{%qu<}yV-`ila4_&r
zUN&v+8)#fdw&Qm>jB=tOL7<pzq67yQQtQ`wV-<l%oPhaQ(3FTyr-yQkXuH4j6!qjk
zFLYy|q2`Pd4(&QFgTY4tny09L{boO>BZycQ_NR<ZBhnApe2|Yg5`Rx=Oa`_w>l|bC
z^u_4+(Z_L4AiflRJjZ{t7|7d1zhAIK<lm<>on`0nE$@SYEVJ2D_WN+n4M4pfoIPum
z5nqZCc*eXT*9YOx-5)-UK8{aEySw}2@#&lW|9g6{_oa*e*V{m?_>>STmBpepNYxg>
z!TqJHxc&d4$B$2F@_+d85J6T^*<yVpDD(t819nK2?hJ<2hnUt4tjv5Ggd`%`8RP6?
zd+W@VPs1v9>k5juNyeu{5%{lvp<UN4NX|+pYZ^*H<Vfm-??WVC=SkX(bJUydt&SQ}
zI1c3-%B@mk5Am%#Kl+UJhzK}^`x5XAigtRv9{P;ze>-O+i+^w*2LVaav(M<`jHttS
zhP2C!`h@mB9FEL+y=E2GpwA$Q)tLqbN_>2MhCZWR^(Xie^wDu4@z_Mcl&cD$Afbfy
zj>Q%fnPVC$KyfNJ2Jm7<ND&Q4EQkbisQyGERlYChAQeI|fN0_9ROIK_9GA(;WzHP`
zGTPOrhfcyhlYb$MMaq9d-v@woQOe!V=q%-#M35iH72xYLI*i67$T&@}cUA6PCy${8
zrxU)8f`DZ)Y-MbBNciSVQeqerJ<^tdwP%>0(b@KM2}Ebx?T1**&Kc(6`DD_cF_FF_
z=_TVA9_=%N+;ZrMg#yj-HOhpVQZWk&id9XIR)dCIk$)gd8DECNl(_+TKk4%_B!0=2
zQRxmb9sC)M^@SIKE;SZh=sYJooRRX*VDZ7qDJ3bkt~y#u6d<Nd(hKprV<yFI`UGKB
z0d7fhx*%b$t{4HDJ4>oNCVgjG(0Iy;5YEUgw@k~cd@Q)h9Ip~4)xHJANW*g3XTX~V
zzBiZ7+<#Uc=z2ONznlvtlzyXA!zT(;XI|NAC8s{4vrq2P^_QNe$!)ycBZ6eo)7`Wr
zPnwUQ%n+SPmE-E{2|9bdyMI=}NI3@O`&a+p-aE8G`qTasSb6&73eOXz!kleFBPD@a
zYhF;EW;jB!b_LLkM@KlFNw^=54^e{CnH3p(wtrU)HmM_=ZAvh1!yRz4{>gPx=xzuB
zBO#~P39-FkSYZR%e@15qvLSMp0BeSZ5I6`NKMRQ?*Vl`EjXjr$vrk_fAZaAbE<>*x
z$|Y9rTTTwgFm)xBCDxZlpM<1zlXt~&C;_QYYCx5FuUF+?aBxB5u&-xs4P_uQ^)i00
zYJaGI!2=s3UAuaWTjp%cGo5yWT*(!PE^@zOSfT2OGo56q+w52Iqozq!QYa_cxetDR
zUD?nLn~YT75Y<(Cnghl1`r687l{~5;F=5=7mT)QdM#MJp7$Bd;;O%|(1l?EL6h5zY
z@anGGCwY07tt$=5)h3J;J9ji=iqpB(gnzMZGAX7#kuo|uKyU+Cb(w8}Y?fK03QY#2
zj~=zactPXPj1G{~1srhe;|5dJLRd#vR|}GRCbG&TO#cSD^zO-c56ah)#08j|b7ed?
zLYw&ji`356Yg!FIz$uQ{)Z!Uyz*vI@$hwf7$`WK9t(92*WanZz3R&Xj@FO;z(to(2
z6}r&PvB18z5sfKzb3E=bfUEC>XzY9e$69kk1MX5v>_@-tii#0syyyy|Ox<!ZeyHlE
zh|UX*qsZ(?Vdqf=bL8txWx%ekv>Nm(FN~ZQ*ZF->=UiE~pG_u^V`;+z*eqEKKx$Q=
zc}f&V>hhD(vGmOxWx*3j9cF4<34fqWI9<rya!yGfeGtlc(<1>tle?0*_Vn0Df_{-S
z=ZMMNgR}agq0wHDa}MD^Avc;~6F|A7HUV^(^cEnsi>nLu7rD8S+W<DH#87~$H??|&
zJEh6ug@m@RtR80vNAkDG5+KYmYnU}qTV9u3GIv&X4fQqDskm^Q*SZ-hbARVp;<7+B
zV|c!CSrNZtS1aT=gLaOxkg6+AjHAmLo2!lN9#S!jzywvM4{n>KBo37=0MJ$&X#vN_
zu?e|xL9Qk6d_k0G<@fx8_og%L>+P@=aP`crtbKsz$1DPFkB;A&{kjBjFnX(vVnSqd
zwT4S>rc5rIa1w#zYbdJXPJcj*>`ElN5hZat_V#BdGb=LSrjeBxC8j*7X%CJ=pHRcH
zG7YNdM+wyoddK2ku3-rB;u#`wz+|tz-aRr#8Dy+75@{XKBhKVLS9K^@?DWvoA7roU
z`%*J(qQ>eKNJmnsLRrDbzcWrwNQ`5RZ1gu=(}Fh@V+X!Aj2>A=b$^Zv($bP767JG^
z`8rUjdvvs9+!gCL4hl`=-V@|jgCU?<vgfqA2BV3_VikJx0>K-#2&kK!SXh&u-InCX
zU&dx!gJ+zbTTA}I9*hg;jbtf})p4uWg$-1{o$~!SOc;$*k9Oxom+0@7X5A+#4la<n
ziB*SZwC93XHAfH{7=P{AD}@o8(m2Oc3(8QZnqLFVD*Fd}a7`7=`)IVMf@6sa=yMuy
zCfFq1k5i5hJc{3%ZwNk0ppDcP;rV1&KwO<<J=R$k?#Bz49q<nA#|z3?4Bb~b*A^m~
z5l-BeF2?Z6?{3xB+WH@a)FRX@Gxan5u1)<TEW{<_p<6%E?|<6VUum`%34BsUDQA9(
z4`uAG_NWDPQQ-R;0A)a$zp668LyMFrY?4J$zQBpTdnw;s@jk1>2lm{v2BNIdS8Bj#
zaLC$I@wRFT|D51-cABzN^+Efi_pk9hIy-|q$y((vYu<T-`skzH2{G;QCASuIQqz*N
zGpX1JPnHKbAUw6+@Ya7K@Xj&&@0x2*h5p4z)}<2&%%B`lP|7p7BF-60z0W%8TIw#r
zS^%4YWQ_WDFrO2+?iaDCKnp79IgNY(c5jL=#W9&u7Te`}^l^N8y#M;({k!V@X$6ou
z3yC@Q<Sat^2ottA94u5DdLwtH_E~4{PN-)NrS!&2Y*yh=uy!+96cH7qlW@v%rDIM~
zP6Le*1-6*f)hG+m28AsZi$eu|`^T-VGWerR%$5R9GBK+I`Sh2683Dlo+Lu8Z0gwXr
z)|b;70l0r}#4ILH<m3<}PM>Ivn{gey<rFK^0j$OTs}doB-cBp!iR#VAlrH2ry3TvS
z^pa~zt87_NFa~I#dP!On;KqFe=$y7WQhKe84kHtHBTVOph(P{uJI)E(V=T%dJFf+H
z1i=QB<rl&ZKy&iAVgS>Iz_L(%KREA`qNuJBAOwGH3#=42#}9IzJJVdjl8n(?3OObr
z9+4KNOVQ+Q8%2>7za~N!e9Rk1g>s1m<02;uh+oCxNkoIR9*<Dba`&{qCT!X96`f~u
zJ$rS)>CnV^lX~y0LXu245i_vsY7N0LbOWSgRYco<jVZk(+-&HLlD%9MLUa34Qm&=W
zTsMCw+AvBJ5|1TJ^j;F{C<!&FeZRBfj?BnIZ2ZmSfa3)67sM%Og9?wDcO}+aG{p%I
z0u8tmFwTicnDU}DLC^|#TfuEL-`9cE_Jm$cBtp5M*keK+b}*hcE!8<p`&R*`56*V)
zBe6sWbYi;1f&>{SyCZ<fRPsnRnSh45AY6Ybm^!Fopk}f;Pt3<s{qV^I@m&%XrZMoI
zs`1O!L^Y0;yCYAvt?Y`TdHbwk*q)(GC~ptAZh^3@GFV_f;8{G-HVXg3!$5=3y*&tU
zKj7)v*^<TvSgP$}l%;I{D&;Dad9k@rSN;)Fp~3>nX}Nn;Xt$74n9XrY1G%Bnz}$cN
zZr%7DFHs;U3UN}SdKGP^gTuYi(QOnkz{QD3F;9=wHvfdlx^kW%{lQ3!0tPdmj^yS)
z6J(M_>Z}&xAy#NCYGb-tO~m>p9e^`Oy}vS{&IN4t1CZ6`U~5ltP|q{H1B1h?GYMg6
zq<<NKnR@ToczmcV@V@Vgfei=BR7HQ)S3avJhvRA<7?|S=n*1gw@3n@#;><3gufzs@
zdvZ9|p3|}ME|6pK36e#IgMk}rT4QnLDX2;+seoLzz@(sQ!rIjm7Tvyw0ccSugoC4B
zP3Jj{!@YNAOzf!*Vn)S`gs_-x7<FeeA1sC;xyUK<qtu}i&Cy5eh-db>mGXb<%+Pcz
zT;*jg_SWW_CGKuXlgu0w%mdi3lbrGLR|WUM#tc%zpHLEl(nuSysI(oPL!EjBo-Roe
zT^kP&S={>5*<+&y@R@VcF-lWT&$E=c17)6IZdF+lr(Ao&-xwneB_6=1xq&TS8Y2vt
z9tps8t@>BH*UxccqvA?x4)%Y{6&YDgsWuJBVavG&`~YWV?2^%IK(4HNE8<STzmSvA
zoNcXv5DW7(KOAdA7VK|sKZ}%8Y13SCk==GO$th92ohzYoS$yIUowK>Ln^2%134N6#
zZZWT1jIs~j;xw3P>)N5Vt*I_aFy&6bVY6sKE*0I~zyw7^e<f`2!;XI^cO03y>W`#(
zCQ^;rZr#oRxB_xHQ)han6INimN0tM!f-b}DCc^T@wWmvAmMg#Pg_g!uoqnj5sncHh
z68>#B(1?|R;&<~2)<<%c=2vk2tw6{EF-Wnv5Ca=$y_c}CXKxk{45*$4HQ2N^AfxBn
z!s_NqmuK-vNMX}OL$rUrwYBvGbteL>&0Y24%aV5VZFPO#3*x>8AJ1Zh#b<OTp*8}w
z4lT-$Wes2_Im}mM1r>%9yNpFOaO+#`K&NDGeU0^zt-H@D-_X3|G}Q_}!dXaDq-;TO
zkP8wsWLb(fggIeiS(;?Z<Z15R`AAt7!euBpO0t5-Uat}=__lw-1z14Pt5Z9DgGpuo
z{0t7NP;gL<249Nt)8*|GM5%6d?Hhd@qw!OxH8hqaye2W>G*E$3eu2DOV;YhG^D0Y|
zs-u;1p~`sy5cIaiapcnokiviz3PfX_5CS|bjpK2CbE1K?Qnsr;$f4Y`TJEyh#Brxq
zR_lDD485ToicNnz^2SktOgwRL(bROhx6B#{RQ=nUI=!x1hN$WejiAIEI!!+)N6>Zz
zU6S(|V;AH9pS?eUlPs$W#NlcXkoXZgE(3#uc#Q@+6C+=}eW|W$Cn_?sD(J|Ch|DUg
z7ph)H+=zUgFWw8@dy!euO>2*{00X#yprf+s&@h7wpXh%mxPgwJ3Wz8SvJ8rhj^KhD
zDj>`Mch9}|z58Ox%<8W0u4<wfrz3CNxXZa`zvrCG>j|@1V=+ZYoU1=fn75GrjvHt+
zshVC}V5;@ovP~$GU5li79I<pe>lEMdLf`9qNqnbtdwVdv<Ar_P52MkYxll9S7wl`=
zok|RL+p>QVW}D?xrRg{9+H`~MDxZ}&c3%?<Vb9FdO4l#Kt`)e0cqdG*a5ve+(V_cd
zWWk=g<7Z2HLD2}@AB2$`jd*N6K@Ci^oF&v64saA>_B2cWjbRQXcr0WJXRPjoM3nAN
zFc5m|e&Q|h7(`aZg_t#Az<jtJ)OH6h1ig5aBQt+?lACW3d3`s^g#}DZ8{=d+NaGz{
zqSEE3XM^No8KzCbEwT;Pzb%IB@JQ*YzhtRMX^4FO_n9U^YdX_`ggE<MMb6jUBcm*E
z=g=aM`9>C6Ph+IgA~BGR(vBoAoH?qPZgKdyS<V9yD6E_ZRGi6AFjmY!7<jVofG`b|
zILLoJZX==dZWItMu|!>(%rOa9F`%D`nFZv?+mSoKl-(0y==*5bjzy*{oVBoG*T+%9
zE651Ayj<I8)~c1w+VTl;8|->TSo<Y$giGSp?P0S`PvM_EH@J717n{LwEDs;Dj`Qo8
zz77_<Mc<!%VB5|OF>4;7N_Y@<@DhEm_kn*xIyb}>Px%mmd)9nMSl?h6?{I<hfB+&4
zaD~%7^uRd6+9=IdE1f+r4x=mDdMo$SS>xy4Zy94q^)C1CQsYh-oGB#0Yl1KlDrJ;W
zgge7_>X6`U{H7Rnhe4Z;?In~?GU+wBpaV^;F`$pzj_8umo23s-E}f|~reSFM(U*U)
z76#2QOvYAG<3_;Lg`~eZa3NO)iqwcZ8Z21%s|Sqk6|A89;HQspf&+esCrk)sGPB{J
zBwpH=3|Z3TPHFm%lE_VPZzM$_l%d*!r@y4Wd$~1?dIu3YxcAe<{;9iR-mA77h&5!~
z?QjpXbm<r@HMb9pA!PM=cz962A0mGvJ5Xf#nOC}ntspI>cQrRM%!cJ_72bU#>PDLt
zkvYn$dGO|p)m3+(<ZJrYO7<QqA7KVIk?ETvM5eD}qE6}I@}=HoS88K;CvwBIWYk8M
zg3he(Dv#lrN$ZofQ(1=fY@BCv1L{vs3HkBF$b!80D=gMJPTk{4*XeEIgtmXWajq&6
zZonQl^I~>sn`R~8m}l^dqq0~ba)8s%Z0d6>2OOBNq%@&{WrGQ?=W!IvqESf~>KB@P
z#bxTk#vgDQ1D(jDGCV%|LM9&dnYsue;dnN_r1tkP@~OMbO++^bMJGn^)V)hR9pjIk
zO~)tx3eUldV2|;{{;+pdr_X=uY#G{I9o=n`>I74U(RAjrIGLR^!O~l#lc}qY{(Tgm
z2Cv&ZUVMbW^LEkoH{0QHpewx{2H;XUo--|vQ`=}M-Av|QkB={+7ot5E?p8Z^!2F(J
zz$+)xZUq{7FY?p}UYrbu5*1iF_SAA+(iPY10#-vu96XRhUB}a(&n|zR)r1`!P&kVY
z;HN&yS-<u9!)xNtj$Cak54SOJl2LfrO0Cnwn>gxwflIwx+=9&xaU1WrdtOKbZ29j{
z+}^>2sYPzL>w!D0$-=pF^Ca2WlP*KDWT69(qDZj-cX}AgN%lRklUWVICWh*u@#KJ+
zj>G#d#d~e4-f$Vlbr*l;@PjfeFGSkpG@CmSb~^{olF%+_fTM{S51G);CgkpD?hTDM
za8yYH**3r(4Df*;u-KvYFoHK?`)=TMahy=SAm&4qS%g^_WZv!td|85<Yj6UU(Q?YR
z%BYpN3GNR47Ea3O93`Apx4q*9nBcyVt+pL|;zC*C-lZ&uZ)ty@NVsWht+whY@A%E4
zk5YaHmruf}Q>1#JQwCwMM5c|8J|XW~1LwsR9R@3kL){)i$|>a59XQ36?CGFcay#iw
z-cwxZT+^?W4ww@>q1ABU;VYdA-sEW|5qA5+T^IGbGWY$0Ct(S-!@&qbD;C+y%Jh0q
z_%aC>4_YIqh$esi<%6I%Huu#gH*G4pJ&@%R+-LX#i4w6F2DGpj!+r=Yq1%Ayfhg>c
z(dZa^q@z8MwXk*Y^AZjSW`$HTmfXkA`{0Qm0L{#rdu-wiW%yM_2XYwGJkFdv=m`0Z
zOoR#LB|z&)ygm+xiL~txF+AZ(32AaH))6vu`(7|ia7=&on$!H395!w{MQ+`gHU)#!
z1Db=wNtlGD22aeg45hdq&?Kyi_n{j(8-}}6#PE?pwGm;sTXh3|z8hhj(57r|Roq^C
z2e)^dco1%cohEiWqbry`yHgY{6H{$q&-Fd<_^@LXs(C>oC1&+Ka?6PmH;J$MQdo+)
zxCAnh7bkySdlDqL8#9c$x(k6AjvY6`;B1;rr{m~B2YLW&aeZHS{(Q!&nA7VVCeny$
zZetQfT+ChJ_IcNvaw|S_74481E@19a&5?&-2P4$p@%#=^6wAo%Lcl_5HV<52XLp6$
zX(m?N4cgepy!tY8t<Y)@W#p!oWY|TDjCR6d6z6}d=m}wB`!TgCBw8`58Twev&ElVV
zol}~eMPn*6SH?CiDFv_&(%McEcp>{<0NGvXA{B$fg%{aJeU<^1_7NM?OfX(KlqOBM
zi7?Sh7@<zs9;Vfgk-JR}VJF-N67=vsOolsNk{f&?-E3?RD8?A&9t;_KSE627<u8Y9
z#W;UDGxR$6xYxNzejHyM#u(lYxlwGnNS3oi{#@$2mzUDudjc&A0UiwEa?8W@L!Myf
zqSy<1J{B^#FJ0<iy0id=FF3*xlkn2crAr8!0R<KjPkxP0AXDy>KI%?-{hnb0?#5JD
zog-K@T>_HhuC25<Pul~0<8cAIiVO{x3YUNO`sdvUONkrrZc@Tn^`_W`oM^~m&#jW5
zjM1J+7!wZK(FhznJka1)47vQ({%%^IZE~H})mwR~HZndRg@ttS;DlRq^}>2?wC(mV
zW0+wibzIz^DB!_*9ieoGs!(Y<G43wLgH`u3RjJ~1WR9P1mM=nj3W0hPBeAa2^B8|w
zY7gt13kTR8Zeya5o?DGmGesH(-3a5mF*~$Nv^=X92<Mg248hA>K-Ia`m<F-J#X>g<
z@5TWOTNTRf_R(-4q0JEO2H`&HgZ8n_u%PcI==NSnh&pp}4R(7{FO)iX?>Je&jT>$h
zr`&3hdlu7FmlvW-Mjwhlz+<4D%3yymrc}6TG_3eO5=-ReKg%+9GiTPbC^z?@Hdi|g
zVy}}G8(N{u&m3MZIuYUSiAxtMs}1BvkvlrMtH>9#A#MSm&Fv*}6iYNXs8mMuPZmm(
z{tegcP(MCx8Vt96ubuuGh2ic}8xM9$cU~%7N~Pv16ook;2GN}oczC!@0o8wHHo^{%
zO9YV60yF^0ja&&#=1QHhDEhO8*Tv*~C#jhcmnb6nOpI@PLC4$kIz!hN77Jm`5$=b3
z{5126Qv0))M7GDOhSY-uM|-Y6xvnl4S3#RzTalj-6z5BWkj(synjFub@*xY21InFp
zn7m#PKYs3lgbc%G7$)@~)v$jBMzun|jzNDRgYc_RC^C|1<VnaPm}!+Li15!4fvGAR
z>_wFH0&0rQ#gv-c)7Mkr?T4eez~lA~?hJh|=q=$r54Lc85O$XMSWANl<35O%<2Uj~
z7=JOVVgm(z6<N6Ep%BJ{9o)x}>yOv@9gOd4;^Khc14Lfun%O4Y)ueyrn1wqnjuz>D
zH_lbb;&-sy$r5mZO4~#a>tW;t1S{ffU;$Rs?@(`w5xb}4Xk12E>PcwhT$NsVo<a*y
zw<B`*p<xj{8!ag4JJ9rnf%ugrg&>=oxL{>S12=MgANyMa2tUqa8&Mkj1gpt3ae6@x
zU1<d%{&SvzL_M)Q<lKLrI@NNx9~^nI4(mKNogj%0pYXIFws#NS;5O-U)piII9=6T=
zlvln_8h*L##pJ(H6Su=X9F3$G488X5YS_Wk1REjR=aLSH{|@mVii%Lz8^j0SYC#f3
zD%J^GV@W(K^^F#-4;FSa%~c#c<@MF(^3i7*#u#17g&|*J={|pMF!WvFc96Y^L*^Hy
z^vo5cLZ-=th17R1S2wmU(SjVPy0OJ2tk>H~SY2~SFql{oHzAHN!zu_aJ_!|L4{{#H
zF>`&VzI8A@9IYBF+Qr+Wl>hSd1STOfnS7<I0AH}U6k1N;s;{R2kKw_aqlq_QwsqvS
zcVl=HFT(U`(S3h+1SuxWmZp!|!Bwn_MsDAy#k;&9PO#gdHL>88Kd5qfNh+*(5n;*g
za4<SPAhg7X04;~r{$e+&{n17CXdW4Pkv{B4J{DLph!X{b@)fpEplQz_(r#l#vw7Fa
z#|!DxfXulN5IUt(Z@ckM0U;dh#l!75K_|ynh;GRmE{1=@gf>3wSz|9gDst}C$L^FL
zrEgWnILRz_YTQ%THvp=PgzBM};N>%Z^n^QcsOMIH&{~jCi<A`_Jk=jvWFIBpYtx0n
zV~jC|yE2YoLP2XD7_rc*EE2U2DyF-BOkemC8qjlE>udDL1B^SV<;1GAGL)dTTMP6-
zz}#M9_u_vp9-Vr|0xR#jv@fIBUE0MX>8>~o77y9(QC`^;tB9X^2Az-sp-vt5tn&AG
zv6F4=hXGCSa?ya51)owAJZJav_d>lG`C*%e%mND1G-Vj%rWmS==Wh+TvF!SB$m?5m
z#5g?heTQoSgj2huWz|oeWSd>`I=29{AL*x=AC`ZAyNb+$Z2<NU$s7m2|4l#V-~U!+
zMVr6>{c!vv=MQhHCYO_kYL0`?-!v6-;{A8clIQ3DaQwTq(%P)8q1xIq+G^FBs8O%h
z)><`GIn%7wR%>gU#X^z38eR)JG@G2imRso&%bXa)pr!HmY~8eZ8z=i12kd65jOsyK
zDkFclSXjosyYEIARl{fyGQ(q`MEjK%%b*C3!Xa8HvB@xR#c|?p`(C`my}CH+$Hl@h
z=%ns7{*&CRtgWz{z?5W=<=nN)f*TW+6)GJP5xT!vE*89??GHP=L|!;ds8fpm0w$&T
zk6}O~<6;zH-{l2yc*SHW#|on*82s2n`oMqA07uCPMZ|iD%c$eUPy-Q1F*?p(og*V2
z7v_ZLp7-5|3^;-jJGdWs$%r}3Xcp$EjCw>1gXjt0-Os#fuHfm1;_|+b%2_P%+kidn
zkC^L`)+ZsmA)2@s@S>BY^xUNqK@Ns7HB_nIy0(74QCmJ!YoYokI$LR>vz2AEdA5Is
z);BiRo10r}_00=ta~(Bn=jyfd@J)(nWwg<(uQ!W@&2>Z+<BiSATD6AOSJ39!dMoQE
zaU8AP)H<*us<(=T+PV62ZLL~cMyD@`KU`ivzt&i<EZ5i0lu>nk;{trBueCNSjYfU#
z3_|NowACV?$SNtB6br5OmCf^&W=(%W^%ZnseG65ZWaFEp-})LlT{~N8tdONtP<4HE
zqq26P4BeWwjb^Py7PWb{vdMp0EL65O&#pJ?x7C&jSWeg1D7e^f(^;0+(c1bZ-5Tjw
zX*AGgt-0FbyDk<4II`Y+i*$eK=E`(uHJFI+r;I9V%V?w4T&=9t);1d#iiLmWTBEj^
z?<JA*RwT4sTdA+rH|y(bE!v`>QiYb!zZ-YJO%?`m3H7lX#0Z{{CYXfVJAv1BeT4f1
zKOAA4(h!uf3*k-kVj-npUeq`q(r8oAYxyGr8JmGC#`H&Eky7e~_ug@_z$WQ>%myG-
z6Jes;^P4JO+r>?gkKH&SxITY~!i16p#r!Y^Grw5qhEcLZy(nIsaX|(gH3y0&jtSvM
z92PDic3Mp(j8F*95a>`w8OMP#4}>QBgCTH~f$t_zKY^E#jm!MGg1gy+N%ZnR3E6<0
z1M#YD#X`yelbt9W_L%a&;|2lt)3z`zRhQr>qR|$qwUC0?i;IQ9FlvAAxWq_g`_@pY
zD!>@k19~Oqg+aP`$j%Gc-4F7z9+U-!v{-quz|Odg!pQZ>qV~L)a87{1_6T7QjGBQ<
zxG3}Xft@2EBrc*@5LN-=fFVX1Z4cAhc{Fs3aJq6@7ody=kq23W!Ya%BOduaU>_u)r
zE~C_$MTP~-gbJ$5gvoz<F}O`~2v0@{;-R0o0pb3;LAbxP6Yf*_#$!GhsgQ-nUV!7c
zjJjUn25kacsFxmvonbpE7CLwj`{95J;%u=JI_N+;A*P#W06}grB0?pD7SIHJDzl9}
zs9r+h-F5@i!F~ERe1ge&cuAbnWrW*d)QQo8vREwayD^n=-JyT)k6^2Sq+XJW)o|PQ
zdSbo79GQZ{pZ+2)78sTcBMdT$3Vr_MC;cv6=gnwAT_i^g&vdjyaxN6{_(F;Wj`l%_
z_M<T9b%#E3+i4NUv7O(H7PLjEn!HW48ew0wBkmLnN81&1rzATb)Vn88704NCOYIW2
z*WM`>T$JtlX0m^o1$~iL{h;X%I7s{vVn~p^fI5C^Y+=Ph`dBI}yqF=#bb3qy&FEZ5
zrJVYd5_d47Rp&jx3o=M==yeDw<sNz@xI2t-R4nkXX?QGqX+2D^z>ib6LXO2{0)kbV
z%D5X_q=8VWF6vwxT<2<n&czo!a1#tf*uk;a3$nl4;b4En)U#qCiQEqEyU}i3Mzcst
zq+{sM{S0N)2QJ2yJzxL?Sd`Ka(hPx?dI2B>(Z7Nb0!L3YB6x7uF!JIK6=8&Q;n?@X
z$nP*9n5eWCc5o(om`iW4Gm1eB17oGxCz-72(*WOeZU}hW9uZ;@wP-TlFz{Y5#02-e
zHkJ^XEQ^1k2=|H14<it$^aRs$gM05{fjw%NK8;U0mD4{Vk0(Nu$lGDRPYb=mjX_T2
zv+Y`_RHM3hwqv$JdSG3T1qWcay#sRC3)%^1q)c&$QQz$logvLE%}|eeXS4iMCSyCI
z?2d<h2+a|QiO^inji_-%s3eZVwnyK56I0O3sEdEyWC(%UR5Qpl6n44UMoCCdf^C)U
z-9{yNJfTHp5kDplh?pN+2m9V0W@>$U92qYqyDJvFSX8-~ACN|6$2|HkB-1g`$E_WA
zOcioaX@jZ>g0U!|BYOh@4i`sMvhi+Z<fRcV+deKA3wdiYjl;_;e)*E!V5aeFT)IlY
zsxE&qLQ{}3P;#z6#!3_!mB!%-r^t%)q_E|9RO1FAM-LI!+)~Y}j%64L%us=i3mct!
zZpA{zn+3}B<1o{I$x3O~aeN3fm5PNG1}S$h^g0j|6LwK29BwCNe$Vd(DXh{N;~lbk
z7J5V#iA^HemNr20<Sg%LSjqvdpwhJ8aiD*<aRiUxr2uDpNHtw{1M5YdVu1)fk7;6T
z-|<w@kxo<QS9+P22&*NsW$JQORATwuDMm+_Qpq?fQQTzfC9*w68Gj)ZO&>;pYK95X
zM%*mlt{uh+jkBb)rDsbiB<RrOh>TR2gyG{84YG&2-en@(+B@WTeHY%2g%f6iw~T-K
zUI0vo{TW6m!2780-W5iKfkAUDrN~5f#TDl;@KZHB-ExZk0^?`Wk5gXu%6<pKY@CF`
zZWmsuigPS+!2BRlo^2Kj2Sa;=+O*u1;Fsa7#~;B?yG$SnVDF}KMbS`cD^5?D=%Vai
z!X?(Bn_$i&c^UCsQ7pQ+OhYLnKXiXPWfo6OKmwP8Wo9Fc;ba&QK{fE*35h}sh%^_5
zsEWC1VeQ3&nmS9+nPz2e6RiAZt+m;#S5xy{l@wG95*!U8Vy>{mk`QWTLLha+#bOj;
zN<^tc3~U?D0AcGQpF<0oprra@3h$h>BRdpk9L9KpqGAm9%iIvhXj0MufrNhnE*2nX
zAugv5$&?Ea@}Y>bSmqc5KD#`#aKUV4p1D0DjL6?f<OXpUM?iE7_;MQ$h&?6LOy|+h
z103~<b<`oU-|Nv=I2m+`g$z7YHniA}6`cs5g-ZI9#WJiT1}g>!F(vQRe8o|}Sl}2g
zqAAt5$1uwacoHwMT&ZbI2$_Evv_6Ih5u))^D5GKELxEM656cwOHZl1!jNlv4(ZVK%
z=bJmlf{?$vC{eUiQ7dtyBy%ZC2!X3PW&=>k0_;U7F`Se7ock9Ge5_gG9C&EXG0UtQ
z4{AKp*CBZfbJ#5w45rZ%_|b1!EN9q7ii-MSknF^{xSvTh<#r8KtZ;vS8*ZGlXtj2_
zBK~YHW3kMU>=M36aDorGK>0K|8{o~0=@hKc+P*uYRTY?i1gShk&1OsE^KFl^O-QKT
zrD~-hAE}EyOv|Z|)dW)*1rNL^=MILL!oH7oT>5$`CO_ks>yxBP@rGA71UU>pk9loF
zvbvnJ4Ng<=Naf3oviE=O-FABj8YV3|PW^!W!MLvj7)4r68kiIBS7y=`k{i<MA;L1Y
zfMf$A!@a0I?9)SJxhw8Cf<q<@cut1Q(8sReYRP%n@*aWIZ8&zF0jDy`xe}-}8=(lh
zG2x{9J8lw(c#oOzs-&UXp6d^(J^sK+Z^w;Oe$&aXDvfORz)pY0*>seIrV=C7XDKxT
z*3#+2fW_`>GU~XaxJ>Jrr?QXJo#<sK6FnO^6<FE(1YPlEq9J+ITS8bWkNjn5w@?zG
zLX##+i|l|I`lZZO+$%8#VWHbX^?z~4!)Opv-RVGF38tLN5%C2~wub^=5DPeYFl=Fh
zu{>zDP%NZ;VVr*+Cs&+$I?2)}7G5k&Svf)szJ!M|wmE?txmilg%^7F*owyB3OsUW;
zPa3bZ2hTP2eYWW_$CfJT=^~qg!XzP7qv{8LWZ^OdDQ9}eRI5|GYT=dhh;V^FGUW$q
zca9@X5}rV4!CM4RSsC@ij@KQPi3;rw5^#Y9u@96P2{eDmirI89yh!Zrfx~Jyo)DYV
z5G@vRp2nNeg69!=w@1z%;h^UQ7)NE)!Gv2wY+A>Q-8ja5qLPU-7YlBZVD|iB$BQA7
zmI~s`eLubom=I=!XAr4j6l32f`vk2lzdNoFa`zp5HF4Z93L`YJt-VE}()YtXu%E#X
z7<o8xqY-~O6ev_2M!eces&O1NBpESvcXvDj6TrP(%8Tgn1t#G7qu7fDHNBiUj<aiI
zqDTkr9q@=Q=I*`o3RfPxz-|~Zm6#B*V6yt|e$4#9y`j%8yuAQT8Uf&T$vtt$=cD(0
zIXEz)F$l2?!XSO0n{d1>Ci4yq4ah||0*@aR3zL60o$yPl`KPeWUK|v(g>i!4#$d|P
zwfR}f0d)k!o|y+D$x5vs9L_+&018oV+!H{pOi04XLRBUB#G=2+N0^Q|i2V_mbE!9W
zVq$vHKrGRC?6F81fjdD=i^am^H#`>)Zt?g^5DxadD5R!RmfAtPO)v&G=x}0914O8i
z*`a^l4%Z8)cecF)o^6Pu2hW<DxW$41VA7ZtjRd2<Lu(hsD8K~oT=tp?Kgyfp>;XVx
z=wzYvZqPX%LN#lKN7+6ywS!W#M@z4f|1zXC(N+L<9aQ0n(HV&A0C2!7z~ji9Dq_=E
zJtznz!OxoBW5%hM&1Ls4L`)I<>EO5>dE0*!=*ugWX0f0es-&vck|itpg1fk&EP}js
z+f4P|hKq?XfND&Bmp%IF?RmcE2FUH<pgp2y!j{yMiUna$Y>b#L{GgR`uukbyEM%VU
z9379jv$Ob}G5>@c=Wwl9&}~$eR-~qc6jf3c6)jZxdN|~1eHZvzAqFoGa#(f~caeY7
z>k97R$n}eb3fX5&E!3vK>=sHZm1c>K<s~t}RDx__6dwp;aDIU+1%NA((lREJn!6g7
zaTnBvh0^l+a%nL;1p%>&g{yK3X`f=@2&XXVBpN#el%7GcpsJQ+sj|w!y1c%ORw_++
zaNTFWo&+HEg=rFMZ9y0k{YydVzvX`{Xc-(9lM!K*Elm2uK6&4N&3VM=4e%I}9pn-#
z=fl<F;db9k&<ln*;_hoAAy{rCRH0yx!jjLEx@$}jgbu=9JExq9=d(c81g#fQEU-st
z;o%3@M`^lVe<baZE>b(}FG~D1dmb*4UL%kdaQl`lR8Wyq%`%=Q^AKG8`P6?<0UeCZ
z!1(AAd$&B(pHp;5FFGUa<2{$)cEp}lhT;GNZbQ)Kg-_o1W9#r~C5-x?yze!O(|v$s
z#A1O5>rf>l&ifcCyN2`5;O2XTp}Dl4Q`luTN}AL?gyVCQv>L<y{=P&**5M&hI?fUg
zI$0Xf>h9wZgDahFEU5EIhzNgi(L^++eK2RA@25U`<{1*DO=k?#setV8r|*4#gv7f~
z`ub`#p`Z)*O+*<7)aHsED;7+Vml<0z92~3=gL1;Q&MT{UmuI@uxO)p$;3j-N2~jFm
zGb$c;0J39}(1cC6;|jNPQ~ZYc%kDCSqGopM*bB=Pu(v95iWk+e-yeTMY-X{L5>=Zw
zX0&yjzGrouB{A$O@)Ac0M_r^bN^JNxRB1%Lp$onef~{_<c2II*f*^)1w`eY&i*~%;
z4vw-eoYb~y`U~!q^I)M{XXSBega{N0pr$$vh&qb3PL4IZadip0dR>S-Ne;YlCI8bU
z2yTSS3i6@8R@tntuhD<66hK_+Kmt`|3QJ|a_}L69<4<KqV<5-i%9HY!TDQxB|CXVC
zGGYIu;}jQov4Gvk_vkaP<G%38+w;^rE~!+wlu?ACHkTLB2XZ0Akb-8oO_Z>K=yw=r
zOmJhHnNk_MTZk9Y0%*%60<zMg#2z4}SEEGS2!7(tsjx)bcocuq9z<SDu4a40D+7^Z
z&hB&a%OKzrY`K9uqWT8G+3YtNzH~8>9J7x&HI#(oEfyyIXE8TDy`b%N#xAUK_`z|K
zi2gXC$4cv=K(i{Ti>ahYe>~|F%6^V=zt$GZ)Y9WY))bjlBwUL~2-U>EM!1RY_i@LA
zo5~F1Chm>+!qR`MaPfMB+5_zE;7}NUL0ROHaloBJe~%4T;sJBRfWR+}#Njfbk8uJ@
zRu<+K3wDRFv@%5D(L8Y%4RAuC>;-7s4R)j9ARz*DL0d$VK_^|0&fFy?E%JiB&>sfi
z6G_J*hmZ}##4poRA{@89pu-;jhv(MP`x_d>J6h@z0$+d7jYZ~JUeFg&*Y)T-Tu?#Q
zMSYhrKG#Rv5d;n~KASevdpG(fuE^MO_?qhF9zb4`>5NpswXrt<C7s1k77Ntr!}Oj}
zYPr%Cz^(9tv6wEwAF*$6JaH;yujAo|`H((c(ipdc<>U}@YY;-cLyuR~ii(AaTDTL0
znK_fo;B<cg`vjgAh!Iq|Ny5~>In7#46N*Lb?+lqQ#2pbdWX?c03w7=k3(W7vv40{&
zn+`0F+9tXM_z#%-Am_6J$3TCOP#0P|3=%IGQvd9<JLyUP5p`+73)@LpETj=VsXjI<
zoN&zfH3(x~^@}1}5`{iHJsq`%(Vn;G`phLjiwS>G?Y}+iCLSP>$sG&`K*)msmb#IJ
zlb=!qImWc~s_O&V#ABy_f+E+#bnIFzBeM7fzWT*7GSC7<0HJ&Y&>}L5g@tM!ix<nt
zK@02q0gmDwZ?ITKiY%#YfUyuF`lW^z&a(uXVqrPWxglRFXrYl$wQ2B-8uGPD2Bsc%
zUTlAf<L`P(YosIDEEMTvP5~V)FaRww?Z%MM=Gl648EsUWn-@UES>LFwq1O6VvzldE
zpel=Yni@$JM$<!+&_bpzW|yF}VAODsl@nfMZ?;me6gTJu+ch1KJFYU$yyr$<IE>Rk
z^(jWK*N0;1#R7{(rUXjUJ18SNXjc>AVSs<tl<%;knHCvxB}2mfs+d(0bXeY$7(mU1
z_4J{~qS?}$&^T2;*)^RPrz)Q@6Ft+Ij|_*4g+q`S<#0G1VFH(lvYR0@S$7s;lHunx
zM+~t$DO?1g7Ym0#og7&18cNVk^Pxm^AaWG5aAFL~g0TYL0V=13i-jb^lrf~_^}&BS
z{IR(sPnsPqqhV7*)%CTN`f_b;vtDV`H!q;ITuKTsSL(bU&1UgDGECIT80xq&;k^-#
zV}B%={eYUeBckr*v~MnIzzfoMZfE33Fo7|iD?lwGNSy-jjN8YkgUOtb%)qXZna_Oc
zz@_+rJRFy3DP;Iq90nAZ{R1Ro*hPQ7w~LE~03rfe3QvH75aqAasd={J1~iO=xhH)t
zmFU}8>BGK6KT5gG1SkmqBg!Pthq&_HvJ3YC+!P_G<p@#lVqJz1)T9M>5ly*U@&bAc
zZI?|yzD6(32Uwzo?L{V^O7WD`qcqu$8IK1I%u{!ng0u)Zc>zwJ+AbE7kWzor%yY}a
z$*3_*!y({#^`YPO_|=k|(5PJk&71-Yj}}C2FXsJHpfhz(h=OMNPlS7+7xan+aiH{y
zn}-@s-7^g-$qsn-!7>gwjtnQjt{M!Zc<2VHEkoUrVfrdEbITVC1Vx8YQqJYh?BVpX
zgkLZ-J`Ad*kG8|ksGNCXc|d;%F){Po5u>8gq#`8d6rrBC2fo6THkk3jGY!T!nB`=_
zSYmb(V2QejLP~l9LTtOSN0EilxsQ7+i%rOBqYned5)wmqS>}e2J3{nT$XI3})1ckZ
zyY|5M0)AoYK^6RH7qg@mYAJCJZb@jRR%@XZLKo9L>6y1W=WR)o7IJ?M4hSzG23QBp
zaE@icr#Vk#7Jv#Xt9SF>xb#wWEWVkht+@f3l4@E8?+Fdx%seXTZipT2wQ&d0CoAAi
zn}(}Q4#n3Lgwx!8JgQdkDbI4qrRp+WMlOzO-2Dn6XF-QdN-=+iyRcX&(O~)ZjvMuG
zX)Kw6{LhxqR;zNRhL(RTo0VKdI8Aql;Ok+3=%+zBZm$>N9wenO1$-F0JzOjZHOC>W
zqeEZDg^-E6G3_<J!ZIZ}uTKaSAi?v$24O-8BTL;A1K?vxTr4OOd|e&n24OJj!#P2z
zIXGw#F^sbc;qPVSW|EaqYJ_P32L%Fi?YaXRaN;H$aE^r5&#!;gnys_-4OEHIl-wIZ
z<oGPRt&HGWhuudcm@wK@d}TnHG?BA(xOCf$UQu@#1zx;EQ_03tvr^7a7Xd*?X+>N}
z!VPwaPC)Bkk_m9wE%VeJqIdRsIEL<J!fIR=?2B<{+imYc7)Cgryp|<%jT`@CVF_Yd
z7<DnToWe90kfwhdaygc!{}MSfJ9iPxb>@glL~&PU1)#V^12ht0#zB}E&aQ&OC{q$L
z3r$Fvfh_Y_(B35>V2r?Wdqkt_APEILD^Y~^Leh7{BHc4n89<PQMaJb~0U%z^z)kO1
z(<7l5QzGcI!E%QnB)3ng?je@8D5KH}n~mMIlU0e(E*5{LfE)a)A-l+@KhHw$^13<~
z$uyL;4AGvcTb8*FcRhMKlWy8_T2OI&MEC};?_5SWPQt+e`(^OKr7>rWUKLqFjrwYR
zv$l-RSDMYr8uKkI*IU&_rM_Bgwpc#}HCVy`w<9x&%j%276XEU?eoLYzu|&lDMM)Z)
zDn$1X(#(Hcl`KdqJ4|9yCObG-;?JOr9UvL4lp4J}GM5G<(?BVIgtFU3!c&AqeJDZ*
zeqlF@wV&c4mqf!fP4z%TRqKrCjf^X}fOB>|fYpn0iAU_Vi1Xh8Jw`C9W*H^8OVkWz
z(?&!(BdRhEe78NGzX4x#hmh;#LoTn224N&hO3;4;2CkRqU*oDNm+XSqUP{FW)wY0n
zOvn$&c4HB^JPCzYsNo1Q9@hl^jTugZY4kL9(=`^pI@Nj~%Q2ef|5?l@mxB}{>O{Qc
z#U-k%@(^IydE~{rqUT9MYhkkQB|Bh7@|k=$=naV)z)NmWTZ@*^7}tn$$$&w~w+t0H
z2;F~Yu=G;KQ7i!G07nONPm#H%LLsva!o0RgH8A=}HepRJk2@q==(v5i2iAZn<G@W5
z2{mFToj(E#&Ls9U-@b%UMaZ6=+;*{$?VF`Ij>^c5sQs6Q2XImjyVLid#aGhGEdns3
zVG!iT662ctZZPb+?PM5HdyPv*Fo*IP=dypKp((yNg2~UT);2cL%6b#Z=S*<sjpq8f
z`f_a<RZg#;tCfodR)vdj?D}R4;*=WoTC;^#E4S9r+IsfW^%YcEyMS)3uPv9+`Lngn
zv$ZCwJ#V8~YqiR#zDj<#TrL(`o0ZM2&GqI5wBAJPq}Ta+t5!zMTB8EhiZ<7CrG0-$
zx6O4{=cq&`uCHy@)+%dNvc8Sx`bw?Us;{qA8tH(jRcoHBS8FXIK<EZq8?|bErCzNx
z8W&R8(}HqEY-z;;+e*C##fz3}t@@d@GFq)Qt7j`~o0Ze`Mt$=_8LiYe*J`a60I>qz
z@_KcvQE8%$t>(r$*~(^pvr#J+2+)7l*4LKmYb(wA+8I_OY9>TU3(bjKZ?<@;B(^5B
z-YgczN;TzxbiUqbpwl(9(yWpHZ+#V=-a69)*pa?urma@mtytJvBT#HMw>HT6uQySx
z*<5cfk)KPnT2&^XQR^&$Q)OeLae*xAe0}q5YqPSp%xX{-3oDg+W2?z3UDbb3t<|Cq
zNDdN?930=8wbk0PfNf`M&02j;V(3{cR9c9jNs5QFfyRay!x+*Nl`1V%Z<UIL)0I|T
zKn4DrmVmzG%*nP;vqmswlOkbu8<GxPSz9g^rrnEheMe#X4g`h(A~os^b=da`*=A#l
z;4JyNT5E1r>T77ZvRXL<C@X&u>FH*zQawu%vQ>l3SY#Fp3u9j1MRJ1tdj~C~CemUV
zq52xxXzd(9960}49f*YPj35J9VWUP7dhG(LuPxV`wd!UWRoB;AwdZcpdCI8vyxQtU
zqtd)kru0PG>T6Y42#_Da(MBDLp0VvfhsGA53Shu`YZHv#GWiJmB6xoZxKF+!^jzO;
zl~JWxZ`Ie%6bpdN>&-F#AeK`rPw<Q7_39S+1`eSNdq?#Z)Y__^Ef(m$Z(XaM2dJH0
z-)bzQvz2o-bnDvs`8AHj8|$rBogN%oUxC_WRp{ERRa)z7mD7z2@GHWD0Jyc~GR%;k
zBs*_aKnP$g(+--<colyRn+!k?w$wtK>*Q3bTdP|Ha_87V(;YGJq8xN-t+%mSb!>5I
zJ+@+D47%$Xzs)H6^aVz4Wr}lzmyzw(Xc@W6>iQNLd!<+ach^Rx4qRxXasg0LD2bPX
zC#wjTTYxx!v2dn-j%=%0Z`HUU0WL<Ufc&v}zScNbLko(!h*p2s*EY`*KHg}opXc@T
zYAY)QwCBJzL#R5dB1k~eqWm<KMzh#AY#NYiZ9U@vuwgDG(bn2>tx1+&X`u??JX?*;
zX;lT;(yJB9Ncr5wLVazywz>vljY8sdqke`mo^rOt3;~3N(7E$76$_NnpUxBmE{nHT
zIa%<m{i7UPv2cIHb3;cvwqoH5&JAc!o65x{G$F=-H&xcoY*o%=D_CFKY*v~V=px2S
z8FIY>AV#qJGzG7~M;W1`X6;O+$%Q4bI|7>ZjaoD138Xu$bZJc9tZX&c>aDZ2<*6se
zx2cb@m<p|-Amy3=YDGAn(@nnZYGsQ_=qe3noXrbX*PDMt)K=Ee`dSUH6E4&$O;lOg
ztWg?WuU5C3&01RZvQ{k6xu+a(ii})zszd>xVep%W_~jtAD_6M@JdXLG0PyNVCINfv
zmltXB-ThefflVu<%99Xi)I_mR$yX4ow6lPIp=^?nC01r3%;RASm<>n`3$m=S)H3RC
zr1i8s98Z4)U5}-!v1)AMAk<&XZ=tEHp4K=_^Mu4IjC4h16yYWQF^q}@wz|Vyq|=Xr
zpQ$FHGqtr^v(jLHDrhZ46}Ur^rg?3t2hnZs2I0PsJ3XB3CU={}_PXN@gvz_qE~2^j
z0}`>*%5-9F&oa$S3&I3avvT+GV}qra6=Lo)y;y(id3%`Ee`NQC^j0z4rw(~~t06>5
zv0(Di)06P&9d|^Fwuq%!C?-I;z+$0;F|`SKlq`K6fc%J9`7yKy;2OOv^nwKK;Q(w!
zs2TV45W<o2E;{}zuk8)Mxdx$#^w(e^C+@Bn^k{8AZINB~=WASY7k}8zwU@{qx?UTm
zr#pWqfX?oG%W#jF#LSIE3mm`&BfX4c`M3~85D)t_U_q>1D5i3;LOBp`%w8N2A;^z|
z`x5wd#8~+OMUzxi9jhVJaQ7jJnII*rhd4F712P;^e{``xS<D1G2%`?%E8=)OJJpMF
z39w=$<av=jao307T+bo{xtEkinC#(z7L0#^`f&*h92{RYJgLAPoKw?X87%Wzf5M%B
zSnp5RR~Q`@Uvt<!1)9wEMPjlqb)dk5U9_<Df&OyB@%LO_1#1v_dv1GFhBsk&wGAGw
z%vc|*mI}|rcMtOAbNtchGj3?ry$cUT*C9vG&XCrH9k?UZ4+A_Zqaa65nRkdez;b`(
zM5#-bd+WQd=MQNtSqIZXOq4?ictp5f66fO$vLVAjB$zmfyj?<?kryUV))mTIb^S2x
zl;Pp1ez{n{mj`|rGn8h*lV?bWeK#uSg8}GEnPr6CDA{?z(A{MP1k+o!VxjF0ff8AG
zbQaVvx}SyTnBZogh6pj3>nu-@oPU4A-M<-~!vTxPeU5;byo|^cUhdH=b_}8QG)+Rt
z8V8c#xSFuspQ`J7-7pF~H$_b9nFN6wr77gxDcRl$y*7S&*nPV1?xSev)4cgX<OOYS
z;A5UN%b9!TX9jjtETp#=j0)G-Sysb<FnY!kt4ye6wFTjsMH<%X`l#jlG_HT`Oc-{u
z7lXF~4=z5^3{o+gWHWMun7^D#)Sfh41<J2bw`sA!A}88BCKnQvF?B&R7wLf!)!Ps`
zkP!T0HynP7&|R9NN`{3L1{#@?J_|#-wcH?aQPp=N7gY&DkIKb@a7uiu9Kh_Bkce@d
z-8j%#DA&)GFooal5u}3Kpa_3^DZLx09^3^b-}W$SV&B8vv4a#87eeolB*1;y`;ZAm
z9p0?U8-Br%?2q2<q=%SY?(n<+eB#c;^}`{2li<BDg1|t%pc{EXkB>7RpHJ1KAd9Ri
zQ%`iNHq$yfytGHk<OSY2UJ+spUfp2?+%SV%nPUOoV;RF#;pHg@UUq*15u5;nE98-J
zbr-_<=m1_6L8Qz!yv%jiFe03!!l~XLmC+Q2Ov}O$t_0WQNr+;Mcc;uvXg~J)p6^Bo
zzhLMkFb|w3Q`&F<sZ;_dyD1GA%SyCBiS7VWkq$iT{Q1HWCULe(xKhI+!=-eZE-05#
z=_MSoO;igKFA{@l$k~6NcfCCp&6bbHWuX%I@{YGn769}`ptR#sog;`7FX1(RFdf^?
z{XQ*_$}7@L1j@2l4<TEjGgdZJxO<}6yVUCHy9wcHG|D2q;elweVj*1x=xdoKn(A!8
za<Vi+VGcOL{3OK!eHVaL0qQVDGYK+g7`AuZpqJI~n0!Qlpi_U3MSpLHSsJ6bc?l7t
zDpd!%6J_XGoFWGF<Os;r_7q>@=?t1>`nD5VT6rH(fCWcy$M95dl4kkboHE+9AI!rz
zSa!vC#PK*jTBt?zbQUZwAygN60;^0TmN*?Z0e7%ZAJZksIE<1kd=ZLK5uOj_(E9@n
zkuNy`KuxV-z#xA|s~fVw&~#cZ$XKT|E`t~D6DuFZwD<{y_n6s`LXbsYA3*)%xia0M
z?<0P=onnFJ&K$~N^9+{qrF2_fOe<o?F$<U^<4j{j$qpWIAoRQd1-KU`9#d0jkV4G(
zA+g^fasW1w&czSgrV<=SWU6>3>99JbX$5ljx<Ab;%YJ`fPGgcl%Vc%);xPMtzK*eQ
zOTRrT7P@X5_&HuIXBs0h#^Hx3jJ%!~xPBVDl_lGAZ%xYjpyDS#U5H&Dt4pm(4m!;q
zE2?E@H(hJxuNp!6Om=_n1;Z!{k=@1t?s~$z0cq-ps0bxtnVFzMhpbEmiwqnq6`Inf
zBBQJlC}Dp^cq~^m6H+wi*bAeS&v6B8TFSwK2uG$S4TID!pf)Ta?8R~#)HSIIq5YkZ
z*4(0x;wGtp=V_as52Z`CNBKYk-(@dfK$aja(gnVWPDs!vJqRHYlRy7BC1WK$plyuy
zLa!qg3*(_0V`e>L^nmVcdjhW}1G3X)2h_nn4G@1NEuCRnWqNul>{tpYKb`D6gpj(a
zrDOXz>fwmU%rNS?fp>SBju%ragHl68`Fi5=s8R^Z<TWzfIL1k8UeR3&&sy++LP!M2
zvcZ69G2zRQl(~uGY2%cRkPZyU{764}HvcF5+g0S_ke+?K>+X5&Fpvg8?<&u6$or3)
zuBd-w@Be9vs?Oj4dpQ2RWMl12vG6T~D2w&8%T2Nq@_%3Z_+!V8oqx>dUv%u)u^Zy%
znbXI9`h8FP^s!^dHt_T6-PP4&&pvkS*w-F=%njdo?6IWFu^WyZdy#kSYvA*-W6y%Y
zAN%?nvTtAinDkru^^eUyla9ah7pK4R*s*^bE_j>IOP;sdIMELKlG_Qlv2?jVfT2!a
zK5@A}=;Opim-~JYpSXOg1U*g!@d?s=yo8`jvU{rZywwd<4I_*UNtfi(Ed_+o$*9vk
z(Oh0(KaV=yQ>C3G8L+B6`<fI+z2l1GILBr6xT-Eio$gXR3KIA7QV`!r2jSx^<E(!W
z2Kn3F4u{F9QmKH1e{`b6>t-_rG22!<>>nrJ99Jaycse#2p0u7=k34Q3-J+a4KGDY4
za(rwtbf?GJR&ObsJf4E>mO|s#Z@O^o*yA2sU#@KKJnpZbcf0@1_?vI(bwBpkcj`a&
z;TQkMH~%tvv2t!%`pEO&f2^|o!Tx_se(2wn{?!LQ^anRR{j+cQ{ipo#JD>b-E8l<9
z!e<_@eEZoC6yEq##k>6f@%6X-_p^^Xe&0*};K{>}z3;of_~rgD{MCEk_xyLf=l?ct
zeog$9-*e(G$6sFjf&I}_|5p73e&>7c`=J|-Klb^L|JnB)d(#Jg(mV01Kk$EIOMdCj
zg(si;ob%C-J@t#`bI<?cKYijOZ#?IH!=HZSb-%s;rWe2YVqxiRfBxQE*I)MbTc7c!
zFTCPyUHkFB|E$Y@w5)#9TfX;n;~#H)`V(*Xpz)tx`-+!-xqIQczxX|k+kWhQ|Maxi
zjlOX4bszo8=}-O3sXzHd^_73|XP<QJbJkaG{g2=DNB`#oKlO%R`rGgQr}tle#-%%c
zY4i<$_rBlyhHv}Ew|(hHzU3{i`5EiN<38~}fBUmPco({V_=_+7{NF#%S-<T&-~Kz#
z{E2VB5x@6;7=xb;E9z6NFZ7@I`ujisxyOF^TVMV>blWSQ_WyhJ-@kwA@80sY|L^{f
z{dnE`^&9@n=l=4Qe}Ct{@&5U~mwxZdKlq^!b)WS7H{Chd`^eM&!|#M&RG#Z@z4|kM
z_89Hc-Ib5{_r34N`0nM=eLwo47yasAJoRgT`U}qYzV@5n>)iLQzkJWRHyFS2ino5x
z8-MjD?Jxby&3`hGKmC9FH-F|^KKheC{C%JP`<Hy+VsP7szU~`GuYCU(KKZGizO?qt
zpL>U~dG;r7yEJ;k$KUa?XWuM+byOX_^EVWyXn_`ryHkq0ySux)OVOpc%cZz`ad#^P
zio3hJT-@QlJm2^C&t{UdBbjV+a<ZAvKsqzPE3dxTnz7wiAuE8^GwGQs<XQ6VPLTh(
zIPMGJc-cjKFYr_s_jXCWm%{(bX?PQYwQ*H``P^;2vvXVy&)NO#_%<>EeBtcuZ_j>c
zPy_~a0mwKQGBhx_0Z|l$ux{MZSMGIg9KQV-D5?fVwi#C(z4smY-+*iv1;K+82mk$l
ztt%T3<KX8z;>W-3Iew?JBVBGI#N7v8SvioHFaBdI29P4ib+D)Y%lyRKW(M%G+uU{C
zKgS8lsA-2ppz8v6?f{tPt;+2bb%KCGkp|c$hMausJbt~6!^w^$daf;jERP%mFYeut
zzV4?(u<yg3Vf`)0@kdYj#!LIkewHO<*X+t(@VRN@T;MXh8q)lpQfi_b{87>OZz;YY
zP4^`&co`DWP5X`bd3B`w1>EgZ^maP%Hj{V`^nZiwBPhH8ecy;6KT7Y;6rT?!{B{Ye
zy?VzKpHD|PvfHm4OB^A62i-;2`u)T&lhoZOorh<F7w3TG`o)tfq~>B5YrubJju_I9
zE^v^nx|Om1pc~hEO<V2%4n}I}Yklzo9KH0*=Xfn_`zUlAua!)!U6iVKWAg7cDR#bb
zGHqPFeEA1>uD4yFSFb+WS#DW0b3W}ARZqR6$a}tA%jR5#89ptXJa@k(46HTZB~5gn
zVD(c&UKRx3*#A|tj}#Pn@?8(CU)?FL`W?-HpX$d;9DmGU8C(xfyi_;iDBa_AH(#X0
zLGtel!R^!!Y2dcYC|<>9xvg(>j=p~r!B35XKjr~Ha2o{4lkX&s7|iG31hn6FPYMdW
z4jDeKK|D|IfxS1*?x(%(=QhjiCwoV?<1u`||GBwqr<;H4ZZ~V<SNCNE@nh@3+hO_J
zp=|#Kv%y;^_<1GerMES4uB7S(41S5#g&dZ2`#z2ZJ%52foWauwlKl&gf_V!|KIPXd
zK+cla25Qbz+IZYM{I9`_YG==V$E5$j2*=xw<>!sJ^X2L)zN6iYw_ZyFAHzJG?pJP0
zP_w|bx?s8ZgnutO<o?02YsUM|HFUt>9^q-@_0Y4c_3q#6K-Yb5L5}y-H{S=3PRQ~-
z`Z=Wc4GXe%>9A9JUN3O1^}J&El>H3?G=F*PZU0*RxTUEM94Ufd!@j+)Uww&vJ!^gq
zi{m@bFf4!lyOfd!ykYg|`oAcG^<LJxz0SMe#(=ko65tNK`CTyhO_O@>8(0w14*o{t
z2x;|M_Zs4EeG=c{&AwaS_W8z+{n85Qczsaps`9)xd|RLJ-K#Y8>MwzS^#R~Ee_)mf
za*k#A*OA?Smo^G`wFhplkL@?Et#@{@ka{2YsP)IWCT-tdH60ca{U2^TU&ikFL#2|v
z?d=~+6yJLxsfHqG0%3WLQzyOdHK6JD(Nsm?(}Jin%&`pI3XY_9LtbiLc=5ouli6YS
zieV{=NoEw}0~`ruxReHfHCRnL;n$}*i{etbGKP_Xolb)YdW)_vr{lAgo4QIr6g-?b
zyY_aSAJ8A$!#c)Gr$bkIWo3~1rLoVqRf|Yam?5^-8z&UJB{DKd?))1EhM)=AsmXy7
znIGr~#wERMbR1^9H@$~s!l!ak1sj<Wf478`x)sn?%@Eubk~G|b)(X0|!n{zXv{O^{
zB(*!`P(?Zj1urP*>u$l%vPrVE@S9{xtOV#m0KW|dQh8ifIOFIh9aeSGBZRsPRiJ)k
znF`}CM6Iyku8ZU`x$KOP8nh#!&smN`jgUZsa{f<QtL@$RI&R}?evKNw=%*4H>z+Hf
zwPYIPl!U(mjFEsV(l8wlH{z@EH<U?|n?MQy^*Yo#34ND%dyrzW8L4ifUEvByM1Zz%
zj1(x7N??>GkNK)1mvN^m7v;ugonc0@63<YW8f!+@&pcFpXepV1QaD%`WwHWdy<0N!
zV|!a-UK)n_<hJx!c~KBnWxgl|6H1dviZZL@p5|9kmJX0FnTu;s!jz^na+`-$$jmWF
zf8(WknQhAb$SvDHPgzuvc&nXU*t13dSv)M1Quebr$_xnQ!R#2MtU*DT7HO8GJ|u#=
z67N<=gU>z<7nwsCh)IAt8mZ477Ye__t2u)G$4n#&;J_jIAYP|5SNNlpbS9se0$-cO
zx4I`%P7-igBvx<Je+n~kU8Tyc9WJYYR%4$QS7tzd&$22$MfveNE<G|dL%@2nn>U5T
zQ&`P5LN^eYWFDD>s!M<J*#=iZJH<_nU2cdb0~Cm&KRs;bAWC_mOaaHvCQZu=>sT%e
zi-Bwx?H_!ob;Z9#f~RQC+pL5Ws$!mqA`z--t_#$~3kOgqjxBvXjZsn%)mpYkk6w+t
zM=S9gb5hw}C{}?qv`+6a=-Twt$cI(FpSxMFB%37Tto_24UqC@sf4|PhsLJj>Z6_OA
zF%lbOr_X{SIdxl?&kH&}tjj0YO=9R*Vi3jD#V;mbsw?77UzCv=`h+j1%Hpn?$S#^0
zHVLFz@J8B&N7>MXQq-pre88BSR%2aYa3EdCM5{aml^w@c>?h~Zfb0+J>{DC$tw1Jp
zb!UeP4p?<&3D9a|!_X!}@p8HgZv7q?p!}$M1^=Won-^Yr7JJo3>;bX4hz;p<ldomQ
zq|T^yX1|L|2g_oDaXwa}8UrG(>Qj_!O#u5`L%#*4(~+-8LCv4l1RBtpRa?Q*pHu>E
zPI*as{5p#AWYaXN3mR=@b5%+)hP2R1o4QarQILEui(Pv~2FQLnJ)bu?hBmnvSEj1b
zm>X276?&>=;yR~65k^=(X;%(X_)@Y0s#=M3&>BppTnSVUx3#sZGs8{ZUi4m?0w_m3
z>_m(E1VRKHc!Q1U)6EWpRfa<uX=5vF;W7Cm$+(O2w9Q2+$&Vt<^XRPS*jJQrocXm4
z*OCcjn^C5VWz#L_IN0c#98T(_;h8CAo6NMo<ds>ao23@#uZW=>#oDJfMIg4()m3Um
zF6yY;$%E_%ni};iC6m~eYSr5904@+|Mr`S>4xze>+l-3aCdAq`7P)^v8abjyiC~S{
zMa_yAq@XBKC{o9z`kj$+K~LRI9Yo9KVoC#&5&kxAIRYx;s<Yn5i`<inwb6|=&|p)a
zc2{pkB_ni~b{#BD!67@v7S$juOpPoo3$>;<?^mLjnPpHFE)24uYugJ4D%HiE5kC(H
zzanKtz)qu#)Vjiatc;XjOk}{?9!)1yRWaiTrjtdc{J0X2BCE-;B!oQ0Lm*#|TH9EL
z8*0XrZhq7{UQAiqRAp<i)I_-kLY?~nH^|H|P&Zhb-c&piD}w_!FNdh2X)jKdWiDN-
zF0L^gO37VTWK|b~*kP{^G`q>#Rnn!Ca;G1qN>tU$U{m)dFvx1i&q$Dj%P-MoL{h92
z@BKD|iDX(*<HOLGoN`O6U@w4CO-51Guu~VGi8$wIKo)9b403Yr2N9??nFXeau#)<R
zF@G!kom_aFZpz~%7MiD37K^Q)XczdYb-v6*3&cntX}!mzTer&$9OVvy>`IgOp#szc
zFLlx~^R}##h2wRtsE)&`%4(cvKxQ9|lEQgJ-Py8?BDbU>P0BfPVSkoZ{+60z98!vC
z_^ewVX(LOwMG0@s!9G_jj~daQ>@Ll2ugf~=hC%puPt63+DwK(LJGRV(Rr!;<cs)U(
zPP$on=&_Q!^mo*LKsmt%7i587T+w5LBCqZi@;f865c*oxj7*(i$s@iD<8O#_go-6s
zsA;-Mxw%Z8DGdh$nJtIhP!pSEf_kA%WFc<d`$g*vRaE^t)D@O!0!1}>(P@HS6<0q-
z$!Q@u41;p3$WpSoDGK>o`4Kw&P_yznYu?XgWoVe|vFC@d02pUX1xHk}P+b!#8^5U#
zKfQ<^S%px4n&w|>T_I1gz4q@so=7w6ru<TKGBWl=0!BPdDj8@}!=DuDD+zKjG<xRw
zX*|Uhv~()=vMQ(p%5!zrGU<8CXvV{3<}z(txam|XxiTocLClOFSXC3`my|Zc<><6S
zG-?nT=)U)j1L+LbW;R83HXzZWnn^1>Pz8Ogv{=)m9o8F_F2_<BlWaQWNtt|VBAsqo
z8J85h-H?Wvc<pd3!&2}^s~U9Ox}UsU>1Ni&r92!egu0-kmPiKKI$@4<TgndYdAk?}
z5vzGSE(>i*x+&|3cs23!%CBPMWyxg+TAgM1AoB9BfU<GOc<@yk%9Q;O3u6|F+zllM
zGjwk0B8zrNzBHZjjE**Gahb#Krcjs4VzaNI5(?6!GA#}n!R?128~oz3+|V*DkORgC
zdipZ*(k7d7Ap|k_^fH@dBuiBW)u05V`VS3CYN{$~kppF9+}I&fhGBtN;}Nt%OTJ}Q
zGRg1f4{gwyijDS!u|x3$)4#(j)#u1Q39+B~TK-gwr<I#yLt)D*CHNb`hNYEdlh&Fz
z<tENj+6rp4NheDS{>`=+SNXfFcwfg{)y1s8iE$Pq9W`taZiX3kc2Z58MK}yQqda|E
zDxJZ$iJZfB7m?;1nc`bhI>^p8wqWHqDaXgidSJ3b7qovEYx7$wRZ+=1q(36Ez9tE8
ztc-T3xM;X3rp%<CDlN7sqb!0=K1r>NzpQL`FgZ^b)}ze~>KleGemdIIM{eo7)-vc;
zD2YhZ!(y{fT}B7{SUUCn?7{o18g_rfpr6HNgz8bHsl7Y1gFyB&#}s1q^O^P}Y?fi_
zI6y{7Vk6Q9LV-+Qpq(?f+;9_10Un=jQ=W40cseWD0*ZWHT2h%d$dtCJfHVeoGugcS
zeI1=+5S>mFU~+?(C@XIxV<ADcni|4Hw$o{5gK4t?o#Q6kk&V4)rp({gDi?2Xfa6Nt
z$5_h_NW>*Ivo{yljBq#QG4mw(>!wOi5Af7ThhSJ#O*LU_H@oZ{Q`NqxC1!^0Nl`&N
zXKzOENU&Sfy3>tt1yA7C(b1M!pKvUGj6E6@Bg3zwI?}V0BTcepr&wWg3u-_XEsU=^
z7CV|}5BjQDOv_sw>NfI=O<ehG)!)q|jH{UJfDuhUF`{XchWlD9MYvN9@kK2v9QZac
z)u%C#tR~)wBa$vsZ!Mc#mfmJUVr(RgIUSKNf<aY6r0y=6U?)0bCTqumEh3jIt6fK7
z8*8Fdwn&F~Y*VG3<Tl4lh=9jZD^z-s#4fFlqWV3a6h{06HnDC#w5kjwJg$M2QQlT2
z%`vBqO?L8UCGRA%P)F<)CZWP66xd#bG7GYi60ucp#vX!Fl{l3>Riz?9m2N^2t&cyq
z0*Tz>D)p)7CtyC{f`)&quv1D-nMJu#t;Xm?l}XPsj;JJ@Yl)=?a#ws>6LUAiXD=q-
zvbR$AbVK4JPq#|d9FhqaF>G=hs<WGMVkpG&`60rIGp=S;d7Msul)gQv0aVqO$s+Sx
zI~)D&R9EH9%ycz+nno+&5KY3i`IY)vnS>#Uq|G=Lq;Sh9?8Ppp>VjB3?e4-<R*E-R
z^Hcwm45m(bv0YHCy{<`pX}VYl8$;r$N{YE?l4~VLZ7-W_v)ucffNN44V_yN4jU*S4
ztFjL!v!{7~G?#BOLr5#50`NX7@Al1ymL7tJ_;IXV=hW1ONJ5K~@kNy>vUCo%eNAlJ
zT0$ootVY!HmMAva?D9A8V#%%BDl)ir*K63Ni?0kDE>KNqm0@H~?G8b5k5vIABITx1
zb$PU*#<}l|AJ`T$9VVICq|Jvd;Zb_yDKnHap_D|ae^rgRRJGawR(*)f@|1$1`%-l#
zHf`w{igsh~5Z%0?W+%RXE3`c+MqtfKu&(yywlI=~AG+)Y>rBaw$3$#<N$O&^Lnrmv
z-To2~s48EXV!-`uy9s`LN97S3N3^w-D`}wJrCrr1Bwj*zm>Al*Gyo@i(Od?-rSt=R
zLxTggv#~qn`~$|oWp}!H%m6T$&K(E&!SyCRgm%7DbXLPEa*vI%?6K0`NkagiMTwZf
z_0yqG|EfFVBjV*}`I*6-HD;;gHiwOCN$N@Yj(^4YeOBbij&ud}iyOTW3mzjh9zj27
z|0OJRwmLcH{joq@?X>4iXLoG=nCK9elCn+MjCGzP#G--#q-;U**PGf&QZSzZP#c%+
z&stATfuGp+PTcm(0|t)N+&{6ksqA@A71s*={_+#J`>|}qE*xzJG@!0341Dx9LyDAZ
zive$w!KN~tNuEP-%wBH)1jj0npbt-fvwt@B(ae-j*s~<!!B6{03$Oo0tUFUE-S^K2
zqw`DJr}I5ZV7>V3BQe<M%e2Y)P_JxK$)Azji{p0XiI2%my%b2#)VO@p`xFG3LUmmI
ze^6@x@e;cleMN%$+Ekc04)};O3a#zAa`ZGO6!j;An!e5QuL#lJCSjRhqQ@ki2rN79
zr%A4!9M}>I7YkREB;R0>|3XFCn#f`=P_UAe=yD>31G7URSEV5#3fckI=~!5?F})yv
zi<sOhHNtid^Em|J1a$9<ZMTwQb-T;vHRj`Q;#>aNbt<6zRLO+Tt-TbP50zg~LXoo2
zjk>T~2_12Bgm~cS1(D31@cQ$>?vpWdHtq!9J4yZ_Z9&1_sn)1AMHAqgC}r!_45lt3
zbNSgs14z&_Qb^j<>MJ$a`dH1fo;*0z7Q~|Pu~=(0{Lv$-T~5{x`A}7Ml1WMFFm|@7
z@suvRgc*N4oAHK-{{_h>l>G5BdqzGIJ)+iX%-|;h!5S(g>usFCQOC!%4+&@7b{csi
z*^F$k{>yb+zD)Ss9rqxZ54k04K7l{KjKv4r0bvfa5png{vTug}1>O@~5Fi`_p=9M{
ze8mv$^s3R@?yw!=yr@rnO!C(pveW@;7<7*YnZFcrSJLo26m2q+n!>VkW`m}Y3V+ql
z$7ZyAKMW|s`rXhFJg(FrA}dRohaYMpT7*Rt5vpaiamk~q)9Hb$h6E-xb@3>tlff$m
zLX{<k^SRtM?~Ko7nh0+g)GnQW^_g_{#dvc`dk*X5HAo`;Dy~~x_e{J~pu|m5$gMgV
z;JP>8zC#>z=w{vE`T9phC2;st?>WxG_wtp_iw)k76+TFwRubJ%IVuZLD^&n=J7!02
z{a5%Qg(KL&#uV=a-o+&pQNc@i>w*PRpj~x~)i`?TuWVOy*uq~w=P1g_<!x*jt_qp6
z$@?|oXx<$tyxxEqn$sOK1a#KLclL!P#2tb|Szgm{vE;mCkzVsIxI0d6<W^>Q#WsFX
zS;+W&4iOsfqn42EFUdgBW~ffG)k;sOncyJvoZz7j*w_kK$KJSY*n4HHnW-s2<Mhr6
z9yb<QxkWL|?78jWu;$Er5&Xy1ypzut4?S)Gvuo_|I9qStq?GsrX)=6OTq5kZMnBHj
z&Zg9rAC72WZz!vVey)xf=!IDBI3I8jgv=m@dy>m)n`2=?8>UZ}3cDds8!xBecTB<^
z31Np{Dy%rDU1~oD^9d-Eh@bld^mtP+<dI_!;Pz~AHTr5(N_6o{hvbbk0fjGmd@A#N
zm{UuV6>=dW^fnP16%E}hkF>Pc)4k97+DrSY=6x*VPdgNwBvcU{k9hEW%s)+8oe8W)
zI>oFDLb2!Oj`ksqm|8HR=HC$m6gb00Y^;^N!|`GPr?E?gmTu@HxcXRtgQ%rvc@n`S
zC)C(^yUDXNm(!k-e-H{<B|E^zkZ%-bA@x*@YaQuTVbs~mgiJtd@hmomJ+bEL+-MU{
z6;6(4!|utwd1sQC3d;(Y`bYdhz|F=(BpjOZu{bUQ78F_d!ILP9F7wT6ts|Ha>^}*M
zc}~FA!5D|0{ro)sx4{t*Q<fba8$2;W9zk0AuFAAz>JkyDIL|E4M9aFXB11*_ggv>a
zNBerf-Eh)ek||J6&0P&G&bVMq!XkQHJmg8jHn*wzDaoYGALNp?TE-RFZ!md%x%kKU
zmmFxc^BwY8CNPyoB5jkz+ZsXARG$eQs(0HMAa%j&fTG0Oc`yOqkpXdcJaFB%qoh+?
z-p(W-<Nf_F)km!rLTM5#!&FD%W%#<`uWoYRor2a2KR^FrgJ(gih*AupnhWVW*};`0
ziapTj)w4~tMg1G#T4`LxuJ?039%hyqN>QjZXl11!m{s$}=?J?uH0T$yZIv3|l?>bh
zH5q{@=0?<ic!a=|_@B)0?t$E`RIgGqw<tWH)S~e3wt}nG)_xOduSub0I9IuiCdIZ+
zf7j$Gj^WkhsS?!;Vbw3MNov)&9JIkfXs11IrC$|rN0?o(-m;po#rix?rN!D-;P#E{
zJKCM`s;i<L;0f+T|L3FZkLzARE^MZmkOFT^y|45mx9tm1sYNKEiJUpJz~Tho`=ey~
zM7-sI%J?Q%m~FAg?*~IL)JqRd(E?HKbSn`<Jbb+aIy&6sRYJp^G{P2?Wcbvbo;~pi
zhvv$G&2u#S#N1u$^4srAobl=7xmFDz<{8=2+QyJyW?A_UYwx*N0CO9feO>{SG;>Io
zPDL(xLh^55#jxDw^*Hz=k$oIdiw<BPY)d!qR$Ey3;rwglLWNm%<i7>C@Z#J;ekh!8
zh!fxUN+?o@l=mEi{RCG5n#OL?IoZ9#;|+E7i;C|uENJ8uK0Ku6*jj;M9`}08W=V43
z^s4(t@%GdYqN$kMgO*yEMeU)^+wQ82PNNQVAxl00<xE$sljY*S6V-W&<1DY$t2Hjn
z@BDESLi(4%j|!eRidxm&;#h{Ez5$m_tLs!yf)`=@-?$`43KJb-3#BBE%1%;KoPo{u
zDYc_t*N!2*x%HcHXYbLU2D#O+hO6%zh~6G?0yn1vGGWz)d$9F$FIUf0DX+|g5iyu1
z=?EXlEIFqUP9{3v949RDaRmPLN0BU_>+#i5%k}*U@|$9PxH%%fJesMgPwk?L!|M4X
zo5sF0bvs<?S|F$OJoB6TRV8~Fg?gqZg}PIgz~&c<jBHVaBbYz>xtOFxu8{d;fYp3*
znw&nU_yKmR_Yi2&*p1_$0;0)>iRCj!a$13xR=TT$_H!C{{fU9BFHLK?F@6y51X22$
z<5mn4!|{+wcIse<3U!5*bXR_4vghA{Rt|_`a8ts8H0!tUL84+)w<PvDZp5z6y<M46
z8MX?mdd&u$;=E-I-}k32nCy$CGY|))aknH3HY%l?IXpYYLMGiwf~!;qGF;4p1~P%D
z+*ZUk9<swW*UqARt8<?bKkgLKg-n9BSU<-y7cuR^amSzgb%#RQZk;|GDnGBGRvi~4
zXtHhOO7tmb$g8uII_UZ%ys+2#kij~Ue^tlu*eE9UHuT;IogVwlRtu)+2esJKCHKZ+
z>Q4UAv@2u<?I?S(?j^9MNV<BtsqX<(?gwN9DYCAL#^)ogN^SeW)9$CV1l<kkl&NYy
zOsV^UM~Hz(-uGW(Wplh{4c<mtA6obOCfrYoGQyWLX#IY*-lWOq1XY!GA-}j?({#Oy
z@P8L^{5vCjJA)Q9+bWeFRaj0Bs?yb5<12GyN~ywXbt8N}rpkY^7%uh#0W*3Wgwh=R
zIvwr{z^|NQ`4V$RS3f;oW&c_3NShRdya%;=zQu2X_qP;Zs<o-}y~44a1LJS-g4w!z
z(m(c>ieSRv`>?g4;RR*;piC`xx0-vLN$1+mnsPA#XdllqD1liot9N(k5k9)EJtDOd
zq_-ou{@<`x8Q*UL#(`EZ`!>ZS=?8rO8`eW_Ph=PC>)$AA8P6paa!!>sd!j+B7FXuB
z<0%KeUSAFGp5inR)H?+|mB#FYPQ+mKOVG+9;+xVqDO}O#^q}+!q21QJez%aM`}}q>
z94~tRenP5D(dWdVR^+7FI79Y9ha}Q&o$bF{T3Q`?=Kwb^o;|uHTc!nt79Cq`>K4dv
zWYvt38_7hu?)337g51!b2w|U5VW4Y?(6j}6n1A7+m}X0|f4QA8oeS#`-MTt0{=|3r
z^g!kl`C3K;{S9~9s$nQ33g7MTo7cjIpHiJI`Az2?B74|OHV440VT~|wHi+-UmJ`*~
zYK6tC#|TV${76_nQEZCYI2;4nKk-eQFs)b&HzC;e8gvJq=0%LQSimhe4nH~CHLsj0
zJj=8~aOw`ulmm$^-t34H1T!>aP}?y*h`l&EK2zC>Za~WR|4FlDjz_OJY(E);w*wfc
z6rAGqRzJQP6C0lXxIFLwvDtLlZyf!ezSy*+eh08k>C`y7o8(@^T8`|NS+d;-;dRs=
zZ}#qKxdTwYZ;P%8qIZ6B7(%yr!BG1Z^skwC_95&YS_mu1FfaP+=I@xG-K`{*am=D$
z-Zj74(9ESfu+AM_zS_2|+@u@H#f{(VxEJUX^kbn2B+4$-ohqAoSvS2LN#L?R_F`Nr
zllTHkQFc};u(zwm=z_!Mla1usM2&R*9`;U%_YDU;0`?G_$xASD^NwVBASBa?H{15!
z^~~QTu+>A*eOXeYUGv|`htUp-)bjf{_*?(b!`3(VXXjQ{&C_bQysJa?(}8+*i%WUi
zs>PYRYWV(jbRYh2KW2Hr_-;O~xBgY@iV6U;Cb&f5d9dsrtCXR>?-z$Am>Bi=)ehS2
z)%HQPa6&YH*HE|4!hmNled0^zAZbnUwU*x--=gMEXJ+2<I>I}I_o!fd-&#Vnpk1Qu
zPfF&76j(3!2?|hhnxS+-Kf#Uqk;t0rM>*FkdJAESrrio3L*#-RCrp~Je^qj~XZ-^l
z7XI!o@3q((*RUP5EpfV5(ZAgeI<G|--D>M;X1K0#FJ%37Zw~CjZ{Z*G>1@(+XsZj0
zUo)W2KC>M#d_C;s&O}7Y?3YGIYE3mHGzg1!ExzYKTNUoWqWZE!5xq*(h3n(F15<@G
z5?)iJ>iG+vw_wq>{f+&s-M)4$FWD2|l=z5mHx}he#cNrIuBf%bKxI3c#$cbrx&)J2
zL3~%mNwktHn_a)i9p#rwwrNqj==H{93$Zb(eQ{2fEch&IXqR?U;|l*g*yk{2Qge-K
zIxk>Zv(N~iu~UsM2H-@YMM3#$*`ndIW)CjZd(yuN-mUw#+Y?w5WOct{KkNc;eziUf
z+E*a)jg+*Ug}w+zUQkMG`!g2?l61IqpnO2nUc*FdwX-2uV2FQF%4x=AL?JV8JnbkI
zwj3EQR|y~4d2B0eG&!FTI(iXD=yE*QXr08zR<1%O%9)ra{JUBsffQ}iv^f&1acv}y
zio~k#=mq=?W1l5?-Gs8x6&disLRIxQPEqk?DA_G5D-Z)OiPjJw#g|O}H$PM#*N&?N
zT<XCM_m$oQs+!l1rlc;Yb5(DT$RksfSSJ<r<DVNCE7wvTjI+pP)S4KNpbribBh9H%
zzQUN>%%^d7t|5-BS85Oz7!<RC`v;n*z6cKZHw<{M&P~VhnlTl6MsEO&b^4tN1EiTO
z4lacwY>1)#=)|dZ=(3a-5=Lg8-!%!{DzFVZsjM3GG`X{)uHfyw8Y+D9$!E#EZ2kRe
z@so<uer%wvLTH3l+#EAMwJWCWpTdQ9MfE8WILv5exE|PJ65OIsfqIP?0n#RqM$s;*
zD+|&X`y(T;ZKI@c@x8!dp+vfU0vS_jVC+Jc{$K_4@CNjagZdGg?&KIgC^%i4o4kh-
z`Ojx0evYNl8<_2afGs_nYg&#$PzO=(t}kNR*;r_gdE<}KXgs>E5fAj;*tMG-Z98DM
zlv1dis#;}clLyBDmYWVaeD+tPNMYd2Nj36q-|a6l6}3~Y^&p^*E`0v2UZwZntf!Hg
zD_5$;{avJ^!?OP07M%p^zP<Y{s-Gu8<X@CK@GXAN%><ZKgUuGiLO=m~Q3vfJR0nA&
zB-Oue#D;UNBJ4&@iUzkKV@=;9yYlhP^e-SE@sOCR`el-}@uQZ|XZD3mwk&l<dUdo}
z;jz=;@ZkCRsdIt;3!JtGnYKuz%^KA3<{HGR_<pGxr3qtM<*Q+u>@%#?ByOxaJJ;#u
zwNQ0R1YB(6I5+Z8{leqx@xACFez{*{j-P)pJQuOa%gn%zj<eyF^16m1L5mP%77$=3
zD5dijwW_A`4jD@Dk27oXZXZb{k#6ASSaXp#@?1N8>U;wBPE<S<NW8P#T%okx<VC*d
zq~rm{VLul&m}u(4EoVM{ZF^b{-dI=@{PLxTh30|7IVj%lMM&RO70UlE-3zT+&53-(
zv0q^P-uY#onJ5ZuBukc>lnxQSFbv5)f8P-|*B>;ad|gYK&=n-hnLEq7-*#OmTx8v<
z@A!Dr<+~2NVLlS%K3{A5@%jifPl-NsT$^5{Z9%;=Y_AM#vLg5z3V`2IeT$=4bEd9#
z1~wZ4d<`|apA)q8e@DsnUJa;9V4o0|#dPE>AGP%GPDvVx-eB9&-~I9*KpC|>@!Un_
zEgV2I>Pbp+j<S1CSD1gJpKOg&l=J=MpYUgoyhFg-f+<Bo>S8S`p1Z3|*?+LrnLpiH
zLc*=*##MG8cd%bQA@RG-Cw?0ZiLZO)=<4Vu2i$Qpp2JyQ+sbvhmZS&T=xWB7dbewe
ztQyBn+XuWVYrB`xvzim%h|kOwRvEq#o|zY5lvEUSYlMz{3eUD)WVp}1TqV)!wdXj#
zndk@l#U}{^;gls0^WNg4qV!yMvW36zRDa+cWV&M}B*7p2tu!p#^Wjk0ORz0{v{coj
zD5%ga{udf3;_hl%ScON5?eu@eG@}fHbXm#7-%NT!ibTHW^#U~>sXz62<<r7fC<GKo
zmWf<a23@p-6i8x%c|jC{%DW{lzkbUlDNh@#@W{!8ML4_{68A-JsnI>EJaWZCTK~05
z-`(?#woe<g4Aq1AWr})X`7&zh2&pFi7=wI1`Pj(}c^`e3CV5KZqiQ{n2j~<d_#Sjp
zwgG510F4N=aDN%!!NC8Y#>6m+W|djRJ<<fqav5~#Bhn#zWpAlz`~T6jeX8D4?+U%8
z-mC8lPg|!&|4(7q{}l35O#BfA=_c*ElPVmMc&YP9eG2!dLXdWdILH|mCbN}KK?6+-
zgI4n0;tN;aUGwe`AiTsaUhZej|6Fwn_DXdv3Niy(ZutC?K|uP!Vfrp3`)3eEGu;pu
zg0yxLMa1EOOZ@KY*i9n0)DLu71nDD^cN2O3Gx0zA-9(=MOyrSzum0zg)@kAYGcoA@
z`{dn3VUS^nS#;R0d*@9&K!Ne9M+EASO#)cHL>!tNk<<E7v@*&NOSj4Yj}G}ELp+3y
zC`&ATL_YME9VV{%Bt_+Q*C|<glMrCZs!<fT%l#nbauOdsLguCa^k0u9h=+j5Jr2Rl
zi9)xi(LP3%Ha3|QiKA(n&d&vy{^-?kS%1yHi=sN2GfKh%qr6tHHhvB84=#<fP*~yF
zrSOP&I!-lFt@&SayG6v7;KV;)+Ib6$-s79s#I3(6Z(VK14X=Su&U0k0clOg4=|1<c
z;C>t-%Nw8yN-lcvIf=3##8^z>hf#;Bej>^LvY7WGxrbLCDh<PBNR<3!S}GW6SSt8G
zLLlai3upy#amMbawR!YgJggG5Lxhb#o!%0x67#i_J}Dw`JPp=A{<|0rwG1Z+(}T#7
zCN%2syeXSub{o+4(cyMxE1A(Tb#RLaXP9j>6;=8Y>v9VTfc_bpd8xnWg5H7B)`1YH
z`BS*+>i*MVqfg{I9$yip>lOoElw0u~;lb9VfFQZ(k0YNtap}IJRu=WbBdMV^9~Zl8
z$!#sRgubAUq{GB9&MI5&)GJLy$Ig#MMpJP&b)!YhyT}1PTt-*(ifAlrNm=-2NccE*
zm~n7@rG56;kI=2jxwFC3VwasOKLx}+BKupP^(f8dEeX1gD&_5LPi&9DRxIVF7*k<5
z0I~O=7xT(+yu}fSPG3cF4>XK5SR`3?BgJnZHY52ngpcZtz?yrMtSOCSx$0Ws8AsdY
z#MC6CTGod#;?V0K$43W}6m5MP#CX3cLKZQ=&@-c)tjInM(74GW#`vh5{&;M7+n@Q;
z-0<d0V5%=L9S_y;L4-CS7KWlO(?L)JP-4x==h&djaiytOLy}Fx_(hlJpk5YSB%@Up
zJk|TR48zp@?^U1Zr>W~1q!LZU6k^FQFLz_qXicG>o@0(1x!{dGF3awqc?4f<C~0l1
zC;w8|;`Jn%TsvjDpZm`$NWM%mBs7hG!1-{Ij4sHp;I1P=^edz;J;DOWSe1h}FwVz-
z^9NgyNE|v-2Lc26aBEpG4lV3c+Lt7wSK7D7{w=9RC4xSwWfzP`@BG-PKVaqTXrZ~%
zIJ@o7z*sd%dB1bwREvN9^XsY}vV61&J`3UpvoH;^u&V(nq1o(vwGSo*>*3?66Etv_
z2c=@|(jV~QvVL+IFsuCZgVpEE1BQ8ir>r>XsL!W-odoh(qWB{}aGWz+R}GKcCdUwo
zqR)FT5ar+U1b<6Q@(s0)NtOGtT*~Lq3qO%M*py+o*{YW4I>|4howBM)*af0e-Xl7Y
za>T!#iV?h1+P?BVTi7e%0@1XvTUa4$thu=gX9ZwqSTnY|$A}W|66bWH18=_rZ*VhP
z6EC|u$B@C_7eB@Y#9mtm<f~@gQ}WM${D%s<0LDJKdn6J{igdtCxZP~aJDu_fYqCl>
z7~ov|QsuZSh&{RHYavrOEav}&47s^_PEhoj$oZ_y>$6mri4o#Px%3+mhB`auLv8^Q
ztDy>3<vyn6B;l4$Nng)QCO`)u_NzD&aX#DH3f5gbUe5PKfHAB*F^W=u2%hIJ+QEpE
z(@<PV?=LXard!<LcF>>H3-g^UGbYaM6vJ2@#4UPO3S8#i1b@G6!N2wPvY?GP9B{H*
zN&Q<D6g!2=`_U+G#cH`;-l!*pGoRufu9rz?6INf$a`#)IOQ8(yD)8F1{g#%Jy!?^y
z0P6dqFmnxjNTKnBiwJ(Bnr&>^AW|&<aBeD8A`VXYO}@|5vLgDuBAN$N6PlvV0Cy;-
zc*bNK8=rRp)e1V-;2P<B45uPf%X@+?-u=8qrEkAiD?u>CeouFC!$%g+al@jPe+L6G
z<GAHr=0cyx)5h+^ErF7mC0;wf`v}(@B+^j*&qaoj8ZV#BDFXc5NI#&+n(Xo)UP+Ue
z)fMjs4G4N(FxGu@yH!y>RhP%mp14)6jlq;RwODqWIndR^-aAM0eNN7OJ9l_oY5tAi
z>1njJ!dWom>B&7S&oQMFb`})#+IgLI7Il_*_wRd-Q%24=o&g~2EXI@fi|#Xi)_DKh
z)=i_b4yK@M+2ob7Dj}@Pj{s4IM`Uk~O+T1AN28x3341Udtq*F}CgxD*yc8Kpm~C<y
zEFzXH715J8ADGD9+SKv#5@SXX_3`pD<Q+#4*Zh=HFxyx}sGZ+mt^Jk!AFU~ISWHq7
zJ!$^l#&ZoAZ!IO(lD6$?nuk}ROeK-Fv50Ag9_FVAdWMe&G35(1Oo9OOn8=hhdJ0bd
z8!%pA)Nh<EPWelQ0!NF%vqQHhk`-eIv$5{FY2^kMx8$GNq2t4o+Ou6KS(G)&dG%92
zhU+S&gExxiVeU9ySrjy+Duk8ss7Ly>{|yauY2yLZ^gCwenG8$0(TO;l-*(Ijq!8{6
zu+1~=IKoG`(!4J>6YXMBLZsX?E0q5YeF`7uT8iE_+hF8TfuE8X3t$P?fS<}og06l_
zW7hN?w??9v$o}aZHX$b6@95bLadGZ3G&HJ8G7vr};rEzd=UN}iWc3kxkkyn#$n;aq
zWTFRlOz=|8^(vyH#Lq@rv_9D4eZh|@iH@SgOm_YbHQb_w_l17PL^Ypj$HZJuZkuk$
z#FUotKl+_RURVO}%gBFi`@Mg!O?O~SZyQ;dlZDja{|*1q!o#J9F+Hw_oc_`B{eTk9
z{o!t>ua5{qkct+@e~O|-g?LvJWaJ9aHk3v!li6X`Z<k)1>Ma$kCs|R7wel+C9Uu6c
zXKX1GTdKZpc0C5x5U2LB3wHkW0^^H<OWmpuXx41Gc{~l6mY>R<>F$q%Tdk7uER*Eq
zw@wfyi4Q+B3o);4+DhS_izEL~K&cS<5Y6|wANo4|fu<&Ypb1`&hbq5YPh|yQmI{-n
z+t!hC)0$+Ru^Lp6MNpY1Ba2Kkpj>h%(V!oT`7WD0CGDY$N5|%q*8LoAEf|@$uqg5D
zBqfr}t_pJP@%$@rr=To^vx6V=ju33%We^JI;)ej=FZ3(DCrM&>3-wzc+9^U_$v5?}
zZrR2!_F&)ocBS?;Klf3*vIHHVdML-mdTn=`jPsQ5vawp#Hem-Ro@2Xy6)zA<TTg>b
z*K(t9KU)b`OmUWsh!vseUZU!SVM|;E4R^;iTEAiB%T2ga$NC~gwtnl2>+;aO@YEZJ
z%y9JeZnWwgCAl8<jpX%~fKtv!AL~PfvH9)R@>$hklIIE8%cokL9t29jnom)l`3%%K
zG=)Yz1FJdz{!sOwW!lA}4w(w!EP1%&|Ad4nU!$W)U&3@Z3Llfw3U*J|Y)f1XRVX}J
zQ%&)WP2Y-G=#5SM?(hE5mtM8k<(XcI5=1GR#Oxu?BsQKdew4&8{mHa?9O!&4a6zIK
zHNZ&}r1R7RMy~~uk%8S#>_PB$Xki}j)}bQD1MBU#Ht#=RZo~}LXT&IVx6J}5p^b_A
zj~>R8VaCK`GLm%q#@7G#Zfe~^aKds1Y=vTw*mI}9XgvM3sCpQ6iE1+n7N)lRmhRE+
zbr>snX5l(|#FQm`?*WhF+H#}wQsZ+6{F?$1kBEbu-%+<oI{+p>iU}dphao=-#m{Jo
z-hEb{1D&0O^|$gAD)tsdH81gRVK=!il0Qh1v3pD0g@2Xu<lZRqX_SqRB-IWNluz?t
z!qDLt`H<PLnjjR+LoMY6okkHM_4$W(cCAik=jE6j{2TDa|Fl%ggu;}7>P-Q~;i9xZ
zt9w+#?7uN%tPDI+2oc@8@aR~mU|Xul)hKt<cEU~=?J#x1hA0GJw%<0a2OKF*zKn*x
zh(*7~)f^6#Dye4Nxzf6QFO#>@4;5H!y_Ej*2fB|)l;{R!jqYG_D)WQ-mgxT9AFowi
z332WbocQo5ACy9bO?j)Cw*pKpikQ3(xeRvpzf*FjOKbvd+lP_vx(ZT>{gc6~pIMoo
zkE=1@dVd8}Ov;|-z$#cCYA<nP-ma6`EdSP=YWt4Z_?IN!M_dG^U{Lt8XzNokcD%1P
z&rlnUbAO;A6H_kjTMQ2G(DCjv{$0&_9>J+eXyC{9GfzXq?FOqluLNppN0MI(ouo29
zC>DhIq^6Vs4y;ss9+U%SJ#@o!$=WU>y3nZ>szoByyB4O5sK$Z{uqv+6qWdH@G)2li
z^s%!zn|mmekYC?i!LZBh&t~A|Qqp|uUhu8u?K&swWn&~!QP6#~Gn<th!Xlk0n_2Gb
z=@Meh$<(cM^uBoF#OY~j&bt{$B9k8*Q(k7pRmuX|pD6r2Wcje=!?b*T?Phy83WJ!Y
zh@xa@7#kLN*UpdS50Z2snzhlX?az{rKGPfK1zo2`AHA^ozs7oZ8UU?LRByV~3o{V=
zib~G6DJ`GIHyeAuv$^slU=}|nX>JY(cq&jfdl4Bnx`=xUaxUV%m-EljRCGM^bX<IN
zB<4jE%wf+I?eMbgULjltD}+5;a=slT%}nZWKmK@gX!iGa`I_yR_!hR(nGtk`>QU3#
zi`L|+h}OhuP?oYE15F2Qn}Qh&O^9lb&QN`()nXtBX{(=4;f;kRfj&#oi-jft=I$`E
z8;>te<*n90aXz{k#-2rt7yd14t#3|e8`+RMW4P?bOhwDe>b1F<$#r8ip4dYjZpc|L
zBjgRkv5LTLzUsc)!M8z!p!#H3fM9#9I~Kq4cHZM;=CS?uI%sXC(sfiJkCm%I@$0Uc
zW%G=^uNHUrjpKyJyUcZ?YrB;DSm@7yHDRvj0Wq4!yzapO{_V~Vv~A9;=G5ip;1x%p
zVoJkLCP&`}+iIOyu=crEiBCr>%tU6^E2-&O_1SHrddXB5#jT<xDtf1&-_kOXFOP>k
zxX_u0kC$8PjLk!_a&3Y$D+~RgB*t~oWh3}*Jj}k~J+=G9BIT;U>qr+r#3%<KTy4_G
zvi~u3CxE_D;WjZ&dd1-wr-;y7<>PA7jgPV^^L%o2WKOu=6j}lnwCkOlu^(CC=We;_
zCSsF<X=?}Px~_8z+GeiA%<msLzL~Go>R!yhnHfHnAHE({b=DI#F!S<MKI@k7o+;{A
z-!6Ha#@%VQn^!jRHFQ31Ej9w$Cw-4jO=|+;yd^=3mOi#Q{?~E3DG0ra^f4O(Ydk^q
ziFfCh9^KHM9)4~dTz0P>E`BPOITb50bJrUjCujeTo+qjrZL(?$5@$5ls+!^F@6HDj
z6YtbLpWU8Yx~}&RvAlTiJHH&0zqY(sLWho%JA5$RgOoSC7;1aX(d+>b)fbmtV9n)y
zE$sZYcF=uRd(L}s^0@SL_DBu6x^}cL@oVy@HGdkv#Z6;c&Ov;9J=$AOX6IX6Z(kQ&
zZ`p$IuC2ESywE|KA?`a*MkzmZ&s(n_n>~766dlo@3%l>LM~?Nq!#PEtPeUDA$IZod
zG+v)BPOq1H&c>g(tAGsx2gkPOfwP{iOL$(sb!~oJ4kq+C!Oi)zRv)L;Zu_h(xlZDS
zSk9{Ej$~7>1K)3}FCEiubrbU^S?>@r;Z)$&+K%K6eQlrC`?u?{w}qGsqu%ZiOAnf7
zmn#>?gKPQs$tt+SuMZ{wjMmQ3!Dy>9|Bif~*R~uhukS7&fu5rw?+fc&f@aOdOY5DN
zs}}#al+Ky;V-5~OkFIPK#R-q2qrIw?H}7MAp4Ll7Prn%+LOmT`doZj2_0rW##`yTb
z=8qEp8SP6?G=;Mb1&_0*$B0*5+XWjT$LrtqD`mvh9bS*E4wb~SuZfBG?I#HI<0CsW
zBXdo*YuP#HO6P!pKsWyik=^q8`R$e?e$SF)Nd|&t<;hM~^0jq;@fpqvFP}i?S>|b5
z&e~m1&t<Vsn@M%U+TDmEwcVHi_l9HTLxZ2sa2xom?t3WVZHfj6ngM9+yxJ;QTSSTT
zyw~6zXg|oo&zVP?Ffh!iSZ$c_6sYihTQ+=jvjtAuVnkP-^}@giEv_Q-adCorS)I>L
zvzG#uSw0zzCnve?O)LJ7j}?ASzIR(qJ4->=b2DQz_X;PwcAovqtzH{Xm4368ITe{;
zw!cBDmiKPYz8eC(13*rgqt4ysW<#gn)8n<{_}zi&^VLh!n?*U~u4D<l<t41k5EY|A
zU(NMQ^3QjTw`z+$hzu<xXV;TYC_wjkIOnjZE8H4t<7b8B2T!C2<4vr{vNa4|xreWU
zq59ZA!b#g;Ujp=u@s&x=voB!e5|pzMnPK&ja}h8Kd+EsM;(>fhA;!Z$RYA#Ol@yT`
z%t8TZw4zl)lQ`J}dr-;}9~xlo<VekFCe!3ZAM<3}7JKXvr6zKbgf={DI(&oY_xA-j
zjv*V6YX}vQCgW}`l<teRP%e8sdj`f8^d0W8?Q!*Y`~avSP{kx>rB30swP8*9N7{pc
zpGzE(4yw}RZUBK1H$_9KMbb7BKFQ=qjJk-CqXC0&0l(n#`ngyupnE=lf{l-dMy`aq
zuL<e&AJspEiqv1H9Svo75+krfE%ykhj_+`XTVvi;X22aA;QC6B$TxU_!(zR`wTwkf
zTTKYZ56ex9JsHm$9%yjLrG88v1()}cVOv=a@2X-;r4NXOeNKi#!E+`}jGiAo(3>ux
zA@Ec0$+2R?*$7aqQl9)s=oHhYj<yO<D*jUl^CmaM#?`f*0*VQVYn?{f2nqIg*oQyi
zo3-)`$o|C4`!oAjERb@l0$6srWQZQkkJ^X&!Fy*xCI|!>GpXDhQQz{8OJW3)^zZ3O
zM(3^DZWfSzgkX1Doo2XRZ`$`bIuN;eG%fQE5Y}uh3GD|4yQIZE**W<86WL|Ds~C=|
z_at5Aakk!|V-&FekmqFhsQiS9dVk6d6>TJnrN)I#vmPYN2J5q8L@ES?kbVBwjPkZF
z(Ipz{`>azj3jHTkz~%$7insg+G-X)A^!!pWIDuy0BxnR^phFL4us%G-?!w^&(M`#z
zKdBK_Rt&v=`F!hp{aqH7Knf0ivmR2Wn9Wt_z+e#32v+)s=<wxwf&|+2edLUrNn%@!
z0!@?TV>0MoT?cO57!qESa&S=R`@dV}C6_x28B$*8w5t_q>7uWvql5P3co)FHdj#>P
zD@Kg!eiH;c01B@q6k7}WQ+|vh3KKEPh!C|bc2qO$rnbj#ERO=B@C5k?wjK7IjYSyI
zPseGD2Y%m|N~?)YNzk5pVlAV}ZzIEcYuXZQ2vCF4O;L1Ggs7;s3+~b|Ni3H-W6u5>
zNK4@-Gk<G#4q%W7Bz2M^_Q7N%#}1ex9&f@**XL#}2XgU$T3oDiXgW)!2%r9pu`eZ^
zq<u0MYLhIHC_Ba{#V3iQb@frxji03w;rJb4r-POk%J;@apT*7?{$WbX_sdQcW%vc%
z(Mw!7tG);UEWc<a#*aV60ZI9O6qcXlxj*obEPP=*waM83aG!5V`p<MZ6UInv06}ih
zUYFu;Ve$76Ct<`PBz|5H_)i!Y6!s(YG&*TbxG0|ysu5J>VRrUt7sf<9#g}Hxpv62R
zVbyxBl<%p~hrk!U?L5k@?-E41AfKmCBzk5%gC<{;bQGef&IUi~UzQA?*p=D+quZR!
z7sQ@CbcE)8qDL}xms~2w#I@hyvzU-zSpkJkdZ4uzLH`YrFl@PP@BLAESVU>c67$qT
zDB+6@lNnGrctJ}d>s4bRs}tOi%F~JD$c@nsmpHo(9tALir!Vumvy8Gbm9WDrRd?_d
zr<4P{AE?489z`6QVH9NKQWs6-r+*m?rT7Z1?$S?HT3f}@&`}wjLW_4qyCIM`Cdz`@
zKoh>1rB2MKk1Uu!zd|P~2$frLK_`m0i=a7j#fl(R)$TamJ>}bvn#lc>%KCCX1f_p@
zWPw?IU<5?TEBwwkYWURU+WQdBy_vPDDA6`F#zcOb_f$oNdaY~|GI@;6(dkp_PMz<q
z_C#=qNNFNVGW3aG##D;aKYTp?ob85>OmTegJedxY7<Vk6fA!QpTk+eOZ4Ax@;v(+0
zH?U+dHnPyr95KQuQmZCkNyd-Xk0mdxl>VZ{!v&=BeGchT{7@xxh(~(qha@#P`D8N}
z(iIo@&A0q1A6nBsE_R9-+rep+bC`kwZ8(_CA-vkUq`o`kL(`PQ9^-)r{as+D`=5XF
z(1&h!KSMr*`uM_VY-9Q0F;O=*?H=MMgnr)~sJMtND{{ej)S)ui@e6ayQ@vKs6*>G}
zOji%samTCliktJnnRYy-HSH7iwtKs^B^~6Yvf(D2ISvzD6_87?b0az<q;+I4u8n-?
z)+;6td_v>_OC_WKlibFivX}T}%6jXC>V|=3QL~6$7>P89gIonOilI*ai$XlRZTO-@
zOJqFIv{svY`Hh!nO{QKtaMa1Bni}0S0w)o$X1Z7CXG4r7^Pcr<ami3{5+1roxFEIU
zk3MULZ&Nk$q;8|-!BM#hf5l^@2a)Du#t1K)(h8_;9O;)xiK<rqtmA30`c+c669r|;
zsMdN{KIu`*#dB<ed0EKrH2MX;_>bry$Ib_qmKAX!Io>=eOe&lnr9CU@2`WO&1Nksu
z6q!5%b0m>Cdgs1N&LT&Pq<r@t#TJJ^9FX}2p{WazkU+b=CtL&8h;Q>jYOf*)^SS1v
zf+w1S_!s7Mb?Lj)P<5n>+)Eo!`m>4JO232$BJ{Wl#Q)(!dCdw4_3rr9ho6W#rdlcu
zbDG4?3t@NQn16&imnQqJ&Q|cfN(vQVRE*emLsXPz!XXO!oS6MfJD#-X4AE_acZM3`
zx%B&+E(|Vn8v$5iME7NAw65phE~Khz{-pG!`Zg)$#QbeR^#uhh@|*TxqoGx;@M5KL
zzG5gxPbhjNbXnExu~$ro>@qAcL3>Z&ri>Mi2g_qZt#sbP?36BapnF&Quu2A0eFv9)
zc3zw8wQJ!Miq%cRVuil%D`60t+)E$PG^>p;#)o7E321~MrEl7pqdob*9N1JUmrpDW
zN@mCWKLCV4d%rvjBifu3ZblnRDFGc6Fd1MC3^hfPXTB60nyzCJQ<vA>nj#sKRL8G0
zU5#2}wf1Y0lFP7*s+2*7sxD#ywrGZ)Y%!CWQng-Nd7Y-pfaDPyRgtJ4k;AK^hBKvb
zt+tlon*qrW=|EY?qv$i5&6K*8TH|Gx!JPp^e`QE1O6(dJ4(XGs)m>ljcGs=dwU;&D
z>(5=H;WY_tv5MlZ%vBBc&hc3qt-u%mdfTWq-qh;V`inUiViB4|fdC*j<|gQ4=mlXH
zlmFWnJGDjJXw;&2ar0Z~4Jbx~oYwkP+}Ondp$@#N4WNBH!00OHtKS&z4+8^(2Ps1C
zfBzK~>oBW9-;dhLSC^sVKm$ua2&2%mS%47zzdoT1k(!NSx=?@_!*l7GIHz=L&WzFG
zE+L7=H8v28ZE7rqac%jszKE7}ZtKe^&uBSER!PmuI6N>HFP)b{P=D|J^SS><>3<Hf
zE@y#b-1)CYBdh<dm-+us@=Gf^Poc&%e<D0jp`O$uY)_|fH1cphsuEG3vvD6$)&z6_
zSJq!P;mcR6EA}h<)e2gN*6Y=mE34~`SKYb|U%h(0vi4@x?!8>?y?IlwTkxf|^6K>~
zxK@AtYNcntY^<)XT60knP!m*E>MQHjdZSujIc}^s8;$0Ay|&VL{j&b5T3>J0f9sV}
z4nNahzWkRZA!p?P7%Bf7t1Bz(FVpgWeXW%LPx6}we2}XS^!g#}qpFMoG{G;je&1U)
z6XajDuT&(IZmYu(@}=+%8<xV{eB?Za;Pb}8epQ~$6zS#IK{Wxva$tZW$DB@x@VQlC
z1MD#(Q@K?+KtyYEb3qqc%{ic=e-p~>IOh|)gRC&XY$%Vw@+Qib(~jgh?7}`e3LQsg
zmrzjycRuneRK)wLFHX3sB>uU1(NXN7lowt)(nYT=;`+ox9-}qQ6w#CD`3re$b_o6o
zp@VxE+0w;1H$Oj@geu%Giu=N;k?19Vph%TIN7HWuzTM4<hx7B`&}V>ze@w&!LPlH;
znwyTPlfG7fY~(Qv9a__$?y)FwLKh1bSv@K=6@lv{=$4t4VkRsB+yfLb1rdz;A{v?b
zd9Yzi%N#n=b1GN}8H3h9{L69Tpu!yA7>Rd)7~B_aW$)+b!GSa`sY;eUfIhH9ad|2X
z=A*;Tu>>sA^ycS58}-Kdf1~7?H4@}L<F?x}H&B-?*G}%;oPcV890F|=@UfPUT<EvO
zLq5Xu^FZewMsL+OoXn8QxTkzV#Ro!d;D4S3j+hA&4Dzlx+bRDC4u~i6{u3*UFDrc@
zS|$6Upa!;}$48qY1|SvlOG<u`&rFvj^Z-E>@KEXVz@%7AALLy{e?_I^Mb$Yx*g4&3
ztEWKDktU$TMdF{S=0_Wy&e>smJK26WAZ{~y1QZP)(U6ax@mwztcSz%;HT~)m4O4k%
z`i+eILMNJzz>s9kXl3+N@kPzR<Y+}4mFveNjB`~VHB&&ue<HCYMVA6U0$`M8q5#NF
zrazbjl8|sFDDgmNe^r{==wBfma&>deI!MoQ35dad6I|76uin)3U1;;*Y=Ar<^;5np
z@cAYdqDQ<ca(y<8<Oiq8$lnSbN2b%Oj~4>ehk@-NO2s)**q2`}))X$S1XpzNOAbP9
z3t+F;BJ3zYB4ISivZxy`sKGN)_*NwP^M6E1J$^vCN~*+Ge+!7eJ0byVg4cC*8(iXf
zOU_dDnI^)JfFp(w2K|t)ZK^-(NJe_0<H*CPs)687&w+iKn0z-ZfEz(SxnYb#eI-NW
zwmP+fQ5K$zqHp6sZmCm16+1%_zyrA@P71OB)|PH(fYWm_$3PQSFO6CN3HAuGK@%(^
zW=WqKt=UEse;RgWgJ{Oh%ORIr&}jHvv>tlSFeMMPIwOW2-RL}IXxl2KrErQQ=bMJJ
zCBY<yUFE;fbkc~i4mfq#LzFH72VWunFIlgJ!GMLnS_T?mVmFPwdR&m$#G=a#(o4E*
z>9obFPwZ+$sqtK+sz&Im3Sm_uT-L)ZL#?X$5r3zpe;Fs^9b(O>Fs?7haDbr02DkBJ
zu~5x5EVdY~>!K!je|&tTr3ebJP&0{V(<W$W(I$!~LuVT~a2UN^k(5RBKQ(FMh2mKP
zcS<RKT7vR+r|1w|fJEYeoL{0Qb9P?kPpgokpxO_yjh4C69Wqpnbj4*;AVg2&El=W%
zdk!o=RpbP_@e>!hVozMJAK<yUSUsPg&q<xiY}*306f-IrYwiI`x>Q8?=82W2uGRFE
zff8ktjaS*l@=v}Ms3z0hr4maKfIt;n7nKec_$V3=HnAwKy(pJVqyayFSg0(kxm;NU
zRc>nnH>3>o5fd6J@zj@F$rPyoUttIJrCP0M7CD5X3I^xqkc3M*pC$-BkM|?aKc_11
zP_0EZuKXu#W*1%}YU~-{ngo}i8lC;2;CeuSO@xv;fLBP<w-J#?mq0gU;2L@?0f`Y+
zf&&2}*op%{u04aPOCtY&hpYP}Dw=SOZB#QD{h5T|;G}a5phJlmMq^Nvg+V+-1xE#e
zs^SS(_&i&XrQ?87wL3CA2O1CW>yA39XiTJ*im17W^b~!fJjm$9k<GH?Cb`h&;x%B-
z-~8#TiL;XQ94a)CJ*LyEi08-?F#&QAq{zs>>xr^eIu=?3n?s#{eJG4wgQGA&F}LK(
z-0NwGtq35eIQ3PRuz|GffQy1Y;&PS77JdR~8eVdNCkI%42o{XFVuYwU{Z(`FEY?6v
zrV!$um=t0LFv8bHRNt&<k;xv%1PIY9vO$I<45H_f?-bj}g29%S!W2}w&Lj(jS@Bbu
zvzW<}od+M$aQRe!%!um&3XrG{gypFr1si<PYUBTYM8ki5k>jmS;wjoPWat+FfNRt>
z_7J_vNJ|WOeeB(c=Z9^n&f7u=9&UtekUn|Fh_P_SV<!A_u0Y)kP1Fjrw)jM=71=ED
zNAv1ctx;PszJ%P4F#fKBYBf~3Id9c=-B@{5tJmtaM)OU7{Y^d9n764y+YS(=Z|kC6
zz4^NSx{+vCtJRFZxek)Tnl-vi0DAW|x}SLK2ZRxeI8AW8b!5DWl?ARd=W$l)($TCt
zR({G;=@PA`boc0_f@&rYOr@cYm`+LfP4FvU09AP;t19!SCzuBD`~!bijsAZ7rtAKJ
zO4KG+&#Rh$><XxXyF2mWvDuR^qdxiqT-+Zp;1F_2frBsQj;X0qbFlL58>pQsZ?hEB
zxm~Ztt_pB>*PQe#2K(UduA*?NX*E~KUNyR-wLI-o5!-^{P8sb?F_SHXe#!+S-_C`w
zj#AN7(y4H~#p#$_9`U&(^G;zuvOAy7$&zxhjB>Dl6!6b=p=U?isr*x$`t$Qy;mkJ#
zA`Dr5x<h}Qd0}`(<u<I;*M00=QouKI3v%`PTBTDPbt3`nic*{Elop@^5;`{L5ca-`
zOL`<+5u5Od{i49%x&&OvtbsgSf&d+Q4Bl`?ZWHSg1wf=rD!uP)quttTy=%&9pfbyt
zg3zOX(eW*zGpUiHm)Q5E9QpW~%FgpKz7kROdZa#~OwVHn!~DEB=zP-NSEnNZWZ-&$
ztwGW`3@qszmf9P#Yh2Iog^pIqEw0h<f4rz(qi!ua_!S1ui@1g;1k?$o<^(8_=MMNs
zoLMBKvX-X@9Zru_TPWk5)n^No?kJD$4n>21*d!48k|pxq1cHS_<;-0aGlO^Tq`hy>
zh?^Lj>ND@9LXudP^Yh>U4mr=cnkdxwJ+IIADlj0FX#=kdDN5onyi^%^kvm;dy0tn)
zD~$ygdLeY2p%j`zc@lFHf&g9{mAiOD+(VSr^a%5h5%i=QE`}0|+O7p50@J;3YWt{v
z)~^A|L<!ftFO?}AIn%ax4h}EgwRd)o_ge2F(?&V|EANrxkoZiq0kD$6DNmM<z!@b3
zcXryXje{MHEfF=C&kq{R7sd?c6CneA>e>i#hz(?)Ytp1AU97^e(zb@4mOc!iix>*%
z67P`Q>$ut@*Jf1}*L@57vUq`fsgB2g)x^_UfEZW!h*xvrO_gC6y<HW)3E5bBQ))fz
zptr(1DIb_Qn?u)$4>s*`Vq<GX_C>f!#ha!|vlgpa66xR`vWAwU!v^L%p{ZA)j|CIN
zBoBx~4Qr1Nv1o-U3uL+B_s7Ra!m}Y4UtDT9^enk(FdOQ6!y2i)*^W!oIOR2eKAvP_
zDhz3{f60#4qQFufy{1oyOC`l}M(u9RBUOi3m!g_RvRj+mfWOfPJUH;8FGnG`hECNY
zt{<qvk^+gOkOK3CDuO9aBUa&n+gT3jgN3t={l$C=QlRzr3z>|e0?RBRCCmH}FK4ff
z#no<SPJ6NqA9(&O6WHX|A}Wc0+fkt_q4{=)DNh8~PU874I^aV#P+){ABXyRdbCHp2
zUTZ|!cfoZ!2{!V}&jEG9Fbe3sC)c1S9Dp9<RyqOH3ZSo#%28uBnZqd?U5H)l3OY^D
za7~B~@%kY27<Tx^CjlxiqnNxDkT4G(e@8;r1dTc^rceY;xxyWUPAU+8Bj1SASV_|6
z=L?d-h40kRNkxhUTTV=p)L-)fatT8hVot{4X#VVsKT^?^$3Pj#aWycu5j0iC*<s{U
zQKRDjRt6wna3o|Gq<29A8wFy_F0Qd>lj|m^)0xwOZiGb=Xk{d%BB-p~hTsar>}I0B
z(d#PG2Q@6CGcLTjFrGJmMADM##g;7eA*3}IJt&Z2qJ0%>S#Iml#&So+f<&Cb*u<5x
zsG_A;SU55Sz_`vEpVTtSU=5IUNoDN4i{49=IT;0_N)-w4ZFIshky%jLL@+=B*x20K
z-ho}qMvax#we=j;Y?M`JMp-9~u_`v3@l{Eiu>;A8Ta_X`Ko-J(!VVX=foBNZ^Dx^=
zxU5vD3ExV!+b4DcZ}J0UX^iakX(|*O!^;c9P6jOx&cq<NaxJ8K4oUCTyHqeYo*oto
z7_Hhkh$colfNPvKu%cLOUKp1@)3l8HHXFqq8GKID8%4!(sm?eH@@X{!&P7nOWR4pQ
zRnadV3Y8B>g=bQKeJ0;Z6G>YT>Psp^DqR#CGP=yHvf?5SZcTGdep$#eiJ{8X7g{*V
zij0vAi|ZxI5PdZlaxTx}{IW>xm;T}?tbi%__N~^IUiBJBa(7q#_ATY8ipESU<+7nf
zA~?;3W^OB0r9p(dq72F9*aIhrUU-ZoI7UG0@Hi^$2%yn_3+?QTJu*2MlV)@Pb*5f!
z%?SheLi|rzb$~dwZnn#Ly_i`qW?r8RmufZ(!B-s35#rf#0O@{37Nhd!7MU`^zsxI*
zp}$Q>aj-P@%?vPEO(NS@?HABq8a2gp)4rmx3ZGuPiK}$LzutmIt?^n|?8^5PI|GoW
zsH#j72L(cZ2{0T-vVrL%<5)Tf6{KZ!9nxQ3sjt+R>ubyPm1XSmty<KxpjAeyY=Ej7
zEA(*{d({{~mD9RBAJ_a6%`J|+N_ti3=})zfGew;acW4F|^EF)yO7S$E0IQd5vX2UF
zO%N7`Sn`@OhgPA*DSN?(`o$!qr4v^(8A!>wtP&c3RJBM&n~aQ_uynXvWSz-at#(T)
z+SOl1%ws&Ud^?kw%R*M`%tw*$0Txu^H5&vZ><<9*oka~&>z=Bpp9th>pqPUA*lg5w
zj>?qY0GP);YqltHrA}1p_whq>&yy}@DcbeA;eU$yQ<%yiD_{4QucH+deRC{M59)Gl
zsy9-9dhypP5-1KpNdpT7L+Rd2DC4oSA(UF}H8)SMNpKm3_T$N@in?kqa;=!NVt(*_
zDY?(7&i)#)rVFi0<k`t2SOHzGBTAjBE^(S|Bd176Q8lJ<g2{5c-${847Q~=}5%Xl~
zP2Zd{%t=p}^bW0(=+q|19BOn{PB`O1@r=`dTD|D*cI-m!FupPNWuY|TM38?=sPZ6c
z8>wo1%Gx88Z8#WGt`Rv7xu!Z~E3Oxl@p7S&NZw(O>Rrq-V}1r4ZA6O>V800}Q4qB<
zXZBVwF&PT2AQ?I2-PC(^i*SU*i7sRlaYxyCY7LMbI>NO^fJbaC8aQRz{27<lXA#eT
zLO!F*F|;bW!or=mEC5xZXIEnqmLuyrrYf-jgy*$#iH5PVrqhp`ptAE<2%W!0ZV1g9
zfKiDq`55(j$YM=UX_1a35B+^4ZU-|Sw8+j4vO<Oy8nu@~pe!c1H&W5@i47p7xG#Lv
zGhmqnCbA>>h(z4te{@7mS<Z$yJjwBY_qeLahPtW#JKfA<xT@cYn1C*UDfSn|jzIe7
zeFuum=CVBwkT{G@qm7AcUYxpG99@!WH5E#FtfJx&QRpW|q?DXreK8`x%1Owg27p}?
zjg9k}V^o@4gi~ZXc?9%B7(kC9u_x$#DofA+2KESoFa^Kr5>)ph$G~WtN2EY2r6Scs
z<*k;}CNUm5I_8no3*qgHl}nu`YlDT*6Fvx$^W=dqI_FP)_+>GdpRfTi2bV;9C7qT)
zm)5WWIsvkm5wQU$2>I+>wj;1~*_S}E0X2VMfscNqL5xiw4??eMRD&?n$?fj)d_;nf
zpL(3CzMw);Urc5b?DgKucak?|f~yChBcjL5kQhrcSXrTr1ecZCWCJF9q9bG6UYE&l
zMrTANIp0Cm2va<U^D%m%8;K)Jsp!ZgW~))>aXF+TYCRgT)FCL|TtsKKwX1E^>85|8
zv`noE>R6Z7664P3lOmQ$M&cGWA$=KSLM@L^9?t6&c=4hmwaB!IU!Vbt@Ku%-Dz52r
zEh%9biDVDJ284>9ME7ePodOa7d+0$ITXIjLnCLSaQzf>?9H~l<Bs1G3X$PFLxJZ5*
zL0g1n4m}G^-`%V^>trq2$(c8q2|s@|+=$t-2)S`sPS@_Eg#pCmWR2&lGQO8YMOAIe
z=(!o0G%CMaO;Ei%cS-2k%DB_X%MiQwn{mRcDGCJv6&j5gXF5Fj*V6;1_%>mF@xPnk
z^*cO0C|wOz7xm3BlBP=YHo^azkN%Ys6pVmMwUYN)rLv?l2b3N~v+FC0&<lTfp{IQ*
z3r5n=qP(CXit8+Ktt*XAINtz{dc-YiwgjvJAynsfMcE$l>aGE>(DzrkcD!-c;k{6`
z%83_4diQZ>NmQNwZ&6KOT<^7*$QwwI)8q`9eqi(=3N9J)#zjtE)rvQ2g8$7t``7)r
znSnD6J6)wp8|=uT)mT%Vup56T9FX4REE4(b`eu+gY>DNLB$2+LauLQDFcp@8*a8!a
z$cQsUqm{p@0&UA>F=xJ@@*G7MA<vj;!kq%`E9hA$v!#sHX65Y4+gavmlCsF-sBBMd
zT#J2Axi@3Si#kcr<T?>wp_N4Qog1B=Vt!Kv-=xuRWP2?cHvgWtq$+<+G{Nt{MpxiZ
za5sX%En^#a5L-p^rFmpQ>Pgb)jV+)rkV(x_GhCw8q-OEz)lKwf!bPz>1D6)i`~0Dq
zYiL}5kUAoo>#3j#n<~$Jj-gwFF1#fkyr#kz8<1q7a)o+7s?#tP)=X%}_+rCB0h1-Q
zgQV{<a%>n?sZ1lPqr!hAxW~0vV#fz)mHolZ&qT$i^u|7=<3<`3+|H^}g-RJ2rm2;!
zN|GP7Nc2H^29oO1%!r$Zz7GSJ1TzLpk!2CrpEcAWwU`qD)&BqrTTOpZgN{E)yAXsw
z7THJgZY*)KsR>^E`eHgLYDY4lG{Fm7<Z<hFF+|PW7-WuXBNu;S5PA%|C<bX5o}d$(
zF?@zA7u1%lM1zp6S7BdF<p8h&^gshFP{f6sL#`L&)T#JWZn!HaXXtiOz_(4}*kFLE
z*y9)h0TQ=c$_gyx8U(~~y3o3e0@Px&HX@kP*A<^V5XYnyW+`6ZOXy0FHR|I9Srk6b
zM5ogdY%HiaUs`{|il5{FGt9@VJ*{>E)kM1BqT_JTOwAT4P{cN_WQ_{$2ydAR9EcP|
z=%CoYDs+<o>G6~aKO;lRdBVjo+kiMhWyiM`Xt&2<V50!p++-Za<rWNKE3&|pvr*RJ
zH~fI64Ng&F)6$=5vov4&rAP$n=w>Wd)XB<z`)Df)jv9Xy$!Q8hKGv98M8xyd(Oc*d
zTKy|T0gg(Qa4_-V@7%-jDOwu!H}yvJYF_Lq=9@?#joI;n7CAIPl-~_Z2h}|AudHq4
zAa1&M7?uB&RY(#qI%2xmh@rs69@0lzG!&Yk;plWrp05zu)Ix&~LL^joxy<<^(ep*Y
zR11o@kWGKCBeR855anVU(3e1fxJtzE6>^5P*z%SxzJJ!H)=pzjW}NK6b=C;w@_fuw
z$x^}5YQ#}<66Uef9OWFYCeOd-#Xwa4qpDY+ierfEMV+X}c?E}2t!A0|`_y$ZWT4IR
zJABJxB1v;6J<mn!PO^?evUbIuQRSiuR_mDtN6CMZ59^r*$2!A#E%RzuMgxuq0ipxq
z*iEpSY10XXi_2)kS7D;`M-GjN_bCz^>*)r^aT0d=RX&M{CixU*i*V#f89&QBpkpK^
zN+}1`TuPPKD43-qt7|;Gwuai;6LmGxRW(FOjg_dRhOVcvQm-GVqZo>!*dP?2tk>&t
zc1V9zg`=?&eU(Hs$#=qe-cH@7%FR8w%h^UaNgrURU_qTm5$>9ukDW!ip{TnMw_1B~
z3obJ)vM9=?Ma3wT1grWE^iYJUI~4FNu^|Fg>s4H7CZKbx=>^z30$Y3AZ82)lRyXs2
zYt$WxgS1?l^RHDRiXM*vp{#`%e`<;`d8U8Dcxi<CmgH$O;l)&{n>vuciv!BeFdMv=
zAIh>IkYNit4&ShBk7_N#{6wPU`m0EyC4oHSr2l9FaUeWu<g3D1b0GSsVdkEqKp+&R
z-A2fWP?WTdm?Ks5%ZtP4OI^87L|v{FbRlTtHnPC3coU;c>wy4*)1wWQZ<tO1jFf*P
zBV%s?VR7u#)ai*%LqV>`mQ?<bJdS#$1HN>zI7}D%He^Wo#5k?m=VBa<cd)GQ3{;Lq
z^hy~Znfw}Qg6NX~+pTmqP)fDVIkGDaf7_!{gEyQEB6UTyG8S)@s|&T&+FImqf`K(a
zi54Dh)aaE})3;Ws0I~`!8x7rI&Gvt2O~R<ru%~Yfolo8-Ja1eq;@O0mDMdP^WTi5f
zY=~@+)}u6{(UrP#ydX4HluJs@(A%IV6a`K2a(#VuEq>S{UYihRgek=1ck*VYxN$G}
zXe#o|@?qM>8d*V1DaASU5j_&!?NziK^3rfeg%BsOYSe_-J4(1-^(oE0BcOlkOdy&(
z?VQ~+wKZWztf%*`s^q__Cq*sx`uf@Od~{M8`{{I1@qF*dD0|1X;7#a2&x(4Nek`xp
zX^TRqQ65#E1x2OjHO>NQY5%26ZrjpKj8i3NXl|LtR<5a4XlNCiS$jPYir@h>jdieK
z{Gr2qZ-u$D6z9+I@sCWUxKDqUy46@5nT#C0I_-xMRnkZ#l4zR_qiYRGg|cnPpfr07
zqopl@jAVjB)CBdsvWH>};<8gJow8$O2FFRnN1{|poL85A6Kw^m;D20Q2E`RpeY2*D
zd?XJ@CKHcywNIbeK$@m<$LI&pLQ2_<ER*>CJN`PQq_5U<lv@$WF-(7F@d;Sau_Ike
zLtTq1>M1nVfenY$@PnzZo1oHIw<{SWFVa{jzC|?<U#c5=Tw?{BOW@<?5;)jg0`E4L
z!13l1INDqSJDar(s*VV-R%BV}Q3ob;>Zqvw8#+iF)umuTt~O(%Re6cx#HUZ>oqdaQ
z{1b7mBC3l#DKd2!Rj!xgx&cA~vX>^i0XYG>mteaALjePqq`Ltx7E3^-L!uilLNRm1
zWs-b%5Ow6m%v=JO>AL~Ff3SdSsAk-%z9dw!#W>>S#V1{2jS#82{d}g`xYt7gSCdlp
z>lEgQ$Oxv<5w*kVQI}>5q-Nh$6XNO0wE9q71n-Mz;zIw6I1kuG!m$lS-e)aldB<dk
z;78o;(Nv-vpHNk?Rki0tBG2{-_E=O4MNLt|axh|%QUMi7;CigSe?$<z$l{`$+v1Jt
zhd#L>&Oluv6vbavbsdc#Qc5f=Y%ryr=MfVT5$b%L2%KJAeCn%HX<vlg`=X9UaU(}5
z5!mZH$l!$$3ZuHHi#!<bIGj!IHwqfpa#r07<NP7?vEufNxoBC%?=PsGzZ7LcL&Tjq
zBb=i{nz|f_xbj(?e@f?_t;x!p(tWrDzJ`=V`TX)0`9S5o14ay}f>mE?v7At@b^+8x
zFIaiJ-vR#(y0VY~6NP$3trj&gb+MDAsUk}4SS*B&TG$5Ecpl_0^7wRHBpeb39bdNw
zxTHkVUe37rf5)uj!kdfo2(B=Y1CQ&h21KL&t2{Z8Ky7q9fAT$wbRMH*dFbi0RR&n$
zc~g=Q9I^olt}#VRQ8iEwR5^pBQKv4T(T5!QQjr#x0rY?KCfL8?v1JZb56wwuL9uH#
z!SWRhmV?mKC)8731hoRy?d{7JtXTmw;0TLXZ0X|ci^X@*o+@Z3YNsKmSEabm^>XFi
zhK2;*+E8;Pe*sduLBZCBxZJ{vrnCVaaE-F3CAY{asDTz?@*?>Jw8F3W_<6!u=?CJ_
zX~6WI^;Rg#y7dA`SrA$*43ZRTsi@8i331m&apfm&g2YZ%+e{;?iJEE_^b!EacX0?p
z&mt}dp_3CGZgR`Mo4|~JV^8+wf?i_(LI4~Zemnk?f9v`}tm}Kt3Gt;VG(IBa$EAix
zi1nl#;Eja<65?FS00XMna-nTU^^n8?9=@*|!dm*#jGYkLwisoNDk%p?(-$*U?QZ$f
zTgI9$wEyq-iwhSqcwsEd=yd54$i7s_M5Da-n(_<I718R?gvut>hNijOYNGq-rm6e)
zKQYMve@Te>qRmVkzI;*cMde;p?nUKZ^gQ>XiFI#2Vdf?i_gda+8!k`g=4=7PR$Iiy
zLhYZ6IhMG5%fD5Tp^J+YXy1XBNRmsOGSw9(>6O)7TU(uWYvOceHx<>76saIXs<Ln|
ze8>i)=v{_BUcPFG+qdcRFO6kc&po<xYLdOEe`-Pd3R4o4n^L(cm77wzDg9?{O1hFk
zVl4}!NTf~)4iis6cMt=O+N;{?KaH<9)U6@XshE;58&a~$MWw1F7~iUEQuut8t~lb@
zDA3n^i+AFBBQD{TG#wyw2S`fSky}G^t?_0pwLcg$pU8PffGBU5lU`+!01=vdQzWJ|
ze?)Zo<?3p=)u;RML|gr`-o(v`eIVZHv4|o7i~#8Ssur@yr=t3hGxqw3N_Tk-=640B
z9r@J%T$o+;TiJn&)Pz|y=Voq;rqLobrR;$C#@l!-j8VhnLKhMFTV>#0$Rx9iZfbxr
zxd>1n6YuYwH-zRrg@HB5d#)p$7i{QHe}eaxcxZ7{<Ratp$;K~^<-Jr<I7A&nG1Md-
zl1Pd$r3A!fXd;MFF+##&382YvbCQ5x!I$JTk%+!D!66r}3T+%*615{`?u|TVM0#<E
zhi@TYmH@i3kS|g|a$#4gL$1FV=ab}j08$Z+sEwkHYouSABJXp6qF7VJ6#>%{e`R@u
zjvx+=io1Z3!6H@nT<p~xy^NuN{{}9hOx*FndyZsTqA#(k^hM_tC8BmC=;dM~ORcY}
zrF(>dFIq-?F$;2FItnNWSQaSXrep+6CaoIklulPNLrGDp73WgK4Cwm-@dFGQa)u-O
z6+rjmf1}G4{xxDqM5HXfhQW-De|gcZ7~;wuZy2{5V;d>*tI^7O5s8!m@kkJD332)&
zcwkuSf$mW4@r)PaMa)w!P2`-K&dr%n*=9<|1z)52#3TgxqZ7jyd_Em&10K15%kMKg
zx7={Vvj6wutZC-U`~DP<)Hw2#mOPpx4QrI|y|@D;VE6Apk#?tP|M%j;f4`f}KkR=l
z{`-Fx_<xGEs$Uw-Ush(IoK7%gT%KjL!2~fEs?{%z8B$cBF;5X)x$i(Fi+@gz*o@rV
z7q?kMcXG@=v5VCCDY|W#m$@pNL$0%W+yBVYf{@C?AnIaQQE(PG9DWdQYw}!}JS?PM
z0(~3Evr+$~iZ+D~sC2kee|0NWw`o;3G1n&3-!k|9th?!V(H%akb^4qXzYz-8(`tXE
z!j+-BRJclot5mq|*=<ANN^A*+ui6jkpbr_khQk@#@w($rCd@?<hv~$)(fe34RhLgE
z)fIh>S65X2(CV1h_%<DAU3SS0*ipr`o`bhh@JlP2vTnx|dgd4%e`7+gkhufMo1VJy
zj21E|F;84#hkS1R&bPCRm7AMCf6|FLfqoI~J%5heqNE^~PZJRD5gO{MX+DNB6Xhu4
zwA23w-eVqnAIaY<CJ{yQI6at7#`we@D_=6FM`jw$5Vr=5kS<FRyfTvU1m>{v!l>I6
z^?erlj(By@#VG4$f0n4_WA>&|U->fbn2IRnGF#=sC-%(bH`lekcW7V&8lEOBFouxn
zEYxD-b0X{Y!SwzB*6DQgl7Qt|vHT<KPtSL5asJQ3!tWc^U0Chat8f1N)>vA*Yc~JA
z_^q+@>Ms3aghlw`_g_~2Z2r=CF||GXqjF{8ciwMqqW@9*fBTok#cw0~|I11<VGK{&
z_xq_cV`lXe8}OW(=V!bN6Z!$xvo1C|9Y%iuX@0`f5fX*l{}yHPkd5rWcOiC={r48(
zIvzvzB(nWGMQgMonvL2Bg-#xWQn{C1t=iZkq=SMQ*zokdfo7p9amp(CghA^vz*i`U
zD^yFcvV@LEe+}I@+T%Kkyrod-Pf9C^hwI1Ihx5Wa<CNl3m;Ir1*&ixu^2D0()5J<j
zEwt1^BPgX7T56%C7CIHipG*s#SI6q(B5SGIJ&E$GqL|WrbiD}#lm#McLxlFD&v8N9
z1`zxWV2`Vs;wI{jQLv3R=jOGxD$yHJGwleERn-JRe{(s|WZla7!a!UGq%IX!5F(jR
z1W05}v7GRTe3h-sG_S_dsLB-AXw!!njLVeg^nrnlf-zq>BN7pc`P}i%#3zcOrK1Y@
z0F9VJvWxj5az0uehS(Z4D$O^I#yX#o8+=O0vw_iUa!|n1$1%jqD}rrchw{=+Rd$Vv
zGik;Re-m@_+DO74c)z@17CICOZ*gvtE|jWkKXpSE-@>b^c!~e0qbboORQ3CEDQ&9x
znP$Ch{W+IBE>ipF;ve=u)x#uvZEJ2$m3)ow{E6$RibA-YWuymMX0y14dQ>-ZUe{j6
zx2kmRM^TqPRUdaA?2^DTu2ko+qd)8z@LZ3#e{1PCsuHET4Bv$w?ui2N(Jd(==g<Q%
z2;fkz=mXs-x}v-a{#I;&K0cMl)0*I_p&njh&u%8~Z;>k++K@rLdK9Ol>6k9BRu#zA
zYx6^Ofqqpyi*Ej&n^ze1p*_+AH0)Xf$S0jqv~r6-sSTm)h@zC{T;v~A#TW4bKt6u5
zf3}<`VJS=LQIvZq&LCb@c4x!o0diakl<M;1*jrW)k}F|;&iuPMmnyNGAXS>PL<oDa
z{2d3`6HlV3JbZMWhA!$X?}J>C_dyzWSv_*q>iKzL{8dHS+^RN_pL{&BH1JW$KFy5H
zNaANQR`c`b;z(X<_T+pjqJ(p+=v{_qf5|?~XhH{FXvs<HQ-3G(y0E~x_(b^1jskpz
z9n?oV)Pl0QZowcJi8SAJ2+V|@<Nz3NGVC|0pAqxt!J)5pRh8J2ywXlR-AKC-b8>W&
zc}o8%e>47FHtN}_v@GXqO?ZT0?JFhTLvYmV_4>=THSyniy`K8-%f`y9wSP3$e_pM>
zT3cUx^=joG^~S4u{nbA}eRka}{)Lpm;2-q|<4Sk#nf$(qg;)7S4t1poD(XHUKIm07
z0Z7o7-gY=&kx42QHuMp1E$=?jPyK-SC}0@TN)vpGY}-nXKAvch2Qqqjx0C{;l%KH>
zmXdD^h>PAUL6-Y60lrI!gP>Q*f3&(=%0e|%tMQO?37@nBQ9G`@jck#?DLn+)&P1Kc
zeUp8f+xd*<_*6Vln&sqd5S3R@FoF;H6bT@)cKehFm6km@%EE~|F-orO&$5e?&aJup
zzf92}6)qS0ZR8M`UB(ZV4p-ynuCSLUlnc>r`&3J!Na>w?JkyeSf__FYf5u7I46+AJ
zR^c1i2y(WWLVOSE97ngMC*T1IJvIgAf>|>$VtJqWHV&Q~=M(l6yRbjSt~PSXM6D-W
zI#GKY_YobxU^3K<+hg@_1OsB4L&uSR!|zK+fP6wRBf)p3gTekI5-_qw@!L@|*@NyZ
z)w5Asws!x{PzpXk8w|w8e|!=+<9EEGUQeP3B;D1;dO%7TWk4iiSjAw{q?&M&UibUK
z5Q6V0bexW?e|N7AWgU}0p!GDt*e1d&&$A1LP4uk0QQ+U5b#JEDT4$^^7deAxsmMM+
zraq3-BIrWvsTdqP=)VU`r<>`9FZu^uwK)Ts^|U|Pux5Sv-@zv}f5GtP&h>{1Epg}V
zBTL}us>l1eQspfkv+g-m*UL^k%_f@0rrURd89ap>rVA-LY41NkBh3M-%4)ZXBb2{G
zmCHS2B*b;0H-W&If*Y33*0_(rm=1$xN^6ugbWg@`6i1K^W)AmZn#e?0R96131N(IH
zi8I9*$9Jqf+8{@_f4<Kg>=?(#y~Y)}J{xZ1V!!qyglG1#i>GkBK4y$YDjw<<>3!^7
zPB0m!(m`hJIY&3h^&L3LMlj9n8t*c`KiJ4Myf4z-9uvbDm+bu*&H^X|(xhMuRtRRu
z9kVzlneh|OYfklhLK)u)9*Zk`9%fs5Uw8!g(&zJ7)KBEZe}5qK*#ho`j^jO=O4WBr
z7f#@voXtLfuAmdj<0blx+|#&)QwQ^&6sbD#_hW2*147w`gCU*qEah-jhWCv3($P_{
z8Bfp&qg^wZ9#cfMW)vEkIC?b`e3L|}o@CBruOA@#WNsihfsIjw`d*Cw4tWM+l)4PY
z2WJ{^jpk{hf9_n8Jq;#*l)auo^dM0K+2B~hd5VQU&CD3bzXz;)2VWr%QF;`RF4~os
z%p4B_L<hu~z=>3t$~6`jSCKJvwvm(LG@l`!BNSi}S|gr4fq1(=B5{0_(kEfw@fdaK
zekev}AlyrH_K1x-$Uzn(llxI7f*j?~GHFjd*~TRXfBAse(_~MKvVNn+<E`Kf+)2_^
z?w5@6)9=riGVJxY9Ejbg5%|s%Y6C7e-A8)5Gw2><!_79ad=w@I8R~^j2eFAFD6>T#
zc4y4f2khHEu^-J(FJLpgF>%aJb+kaVA}{1??DtA#2~;TQG5+5H4D8CE1z)IOM@3Z#
zn402af8rB|^oJkOjAH^mv9~b|LUE35Gqn5Y$r4VURzSM&=EQ?n5IY>}#7KW1zjuwC
zD~Xn4j|uSKpO3Y=9>XO+KF6yF{10hvKZwBrn|+Aa4^R)^%sg)I2bhS!t^+B345~>N
zy+_cVb*Ml9?uhbTv!ysd(8f<?H71cgqS=^4fApAkV-nLN8;(h2k7GFoNSt3UPHE17
zpDynZxrCuM$~nH30X)U}kYLXOJV{R0RB%OAn=P(|&z#ZYQupt*F$IWQ(xcK>?<pq~
z*v=>m;hvzcFvY}sk0~R;aCG9t{di5wBdU*u@IUB?YH{}MlPP~ujkqHcJdxY}$^Azv
zf46e)=xKZbPaaMZwaxa9o@Vs=?W3)!hi!~|bJ{bNlX5si&R9<C-z299)l%gPXL?E|
zGGM_-AMNP3KZ?K6A<*804)m<2TY)Cdj?jtP(Cbg{mA@DAX{N<&woQsCS9iwx<T6-i
z;clgfwWUs5N(Do~e`XSa%{I9G5CsU^f5?KtG#Qf9SThRzvB(Ez=u}j#nlTCn0~Y#6
zBhN2AYY%X5Qm;-1?Stf;KatyIwm4Pt;Uge@$Qp@5UC-M~{KII`0|aenRE}E)-Q(<G
z)3CXSq?v4E6RG({6pV)t?!lbsyJ<K244D&e`1&^i$08*6F$*#jPOJ<>6i(D~e|)P+
z=Ej8PL)88;=4WYqO@hlO_JKG8>mrXmWv;Y;Wo;t|F?8s47?uBgB2k`1-Lc>lG3v)H
zyg(TVU?0u?m?>oeWT^jSA>$v%T40vnA=V{gLfal!6ykmnCWZnRdty_57eMP#qkoJz
zD3~;FXNs^BQ&}$^KS0plA|9VIe|XksxEQs&v$dtJ_;j?Ovk@{v`BHweBe##Be@;5j
z=kotD_@j<S$rGGo3ObA^@g(axOjZyg$<Fab9UT7F>t6(+gTx&(vz-|7){Ysc;3V$E
zd8&!V8FbOh9fLy5&o60Mo#nF%N~0B0^jJNe*iyNVl~U1n7ENc@Ofw4le>b6JQb}HE
zbU(T#8H>b+laEU-zNxIq=<9o0l`(dC#nZh$1`lCZ0?7SXmrKVq(<%L%%&ffs7n8T1
znSpy>;r0M6H9!^#>_^-U1=t6GoJ8YLWx*^f|Lp$*^@W1cQj<ZS6id|Z=~EC!SNF=`
zdXNSDbk$;E$cQ*l(n-vYe`9iqzDu>kqIo<g|NpMM4Q2+v{QF;+im1`$*5UC^r^asB
z18|JK|E2MAef?$T{+C9*y#M7Xe#Zj@j^eu(rQ`+{^u+a{B41fu123)+|Mm^kPSxc=
zqG?TSB{jo`3-0dp4dn5C@!PGAxZDr)0^*809kIBPJpd}Bt2y`WOdHS>FJZqaOuF_<
z1=PUZU5%5{mg&f~C?A=>pjTE+!K^vNg3cU=jC*OyRV9R)at?s%-QC<SCys=S%B$Cr
zCT>YyF)6uo(%xU7i<imJ0d0R4F2gRem;?HVfoe6rcd}?SK$U>6lz2X5gSVA$HR>a)
z#-Y;R>wnffMax}9-w8&+RI^|)MdjX6ibjrs-iuP9v~wc4wH4Bux;hn!XX=l;iXgxm
z5TJ(l7ez+%mxyce$R@^N-^gp4U@W*GZh}1qTsQ;_ULpWN4_yNndm(>AR9wi$$KC`B
z_KpA}VkPSnUbSc+{Y*l!&aWY}26Ebnjsns%XV?pqoAk<>keAofjpK{Ccpy7F?bE%j
zoUxo3`&6hC<No5C9&R)3OfP0W^4Pz7ks0)u<mRLjvS3zhMd__z;`MoSxP8&uIM_+C
z%P01vGv5If==-(!2J3$sCd>T8w_I|1mJ`}ZPR8t8%6_QtA%2@i2=4AGh09Fe3@c#E
zg{6BlQ71Snsyz~1!@vf=Xr6#K^*41>%+6_vnBs1_&Oo#+q(t-ltbYn30N`w+-P&ut
zYl5Tr&M<%}urU>+{MUc|msqvpnns6EB==9wG;lpY9snQ(G5UY;<=v4xh)-+|R0l$k
zT^ps>Cm_zU*Xf;4jZSi>HtYVH1Cr8O5?A6*qPryE>UHHmg6fh$G&2Pz0d;ycCc&=J
z%1kb%9F?Xvfikm^LOXLkCU;bSP;F+!#Q5oSnla<@(`Ys$#`J0Qn-K&&o|cn4y7$&~
zCR@W#rST-FQOtkr=<DPYv_20_Xtj9Ttrl)D#to)FpHd_?r2{pF6RSoh#98)w^yn;L
z&qg<TkVag=6DK?@KH2CH8|ac3KqjYw0i>XdkQa>=m%ggx3!s<}<cQJ14A{sIki`cA
zz#c;ZxO`1PqqegC&l(6RnnYzapHIO*aVbavL}OBzm)CzR3e7N$WLg@>6UA|w6@eDV
zK*S!fpj;M!GI7H@LN>r`wBG+Tvs@{*BSyx&awj#fQ&zxHNC)rKP4=UVfJt%b)4Q^W
zN#y~iL5>A&;xe{s&4_4|DWq@lekR1koYr+>O`eZ8Eese1mc=~?kVQxrr?)uF8F4Rz
z;}?UZ3wnQLT?kF2`Su=jNW{kk2S->k`S`x8_3~JA_ouOPMvU2Wv}_)0yk~9!Jr<#}
zx0LR`;fyz&#!HM@*-E2b!PD`0$s(>#Jmj&r2^KuPMbs$JxlJ8qmju8i0Rq_Tk-!yt
z7gq)Ja*K74C2)l)W=*kA(dP1U@)o=wFk@j{{QrMqfE;cB)|l_y7st5x|Eu+tbo~G2
zt5;?G|0#aozAgU>uCUt#6fw}l4&nmjt;^YB4Nw#Ox-3@1@~?9{H$L=ivFiwxm-M9m
z$7fG%PPMCY0}p$7BBB~M5Efu<OMEHZA=>d^-t7YZ1}q3Y3%pzv|HN)5?Dg;ss8nNM
ze2srrr6IBW>)e*e%#tKYB00rZD4=}FLdva1VTDG7195_DH2I=ojM5LV$9kahe`xjp
z&`Po!^53Tl;ol%YzQbiu<)0N$xv1Q~OY)$Z&=_LMMpI2(mv}Xos|u>dr2w1n_G%Vv
zsYawP=S%J1YGy<)7}c53!##}b{7!*rZ<v3qe~7`+-BZIaX_N!B;rn`wxKV)|w?+q2
z4i+*(&4L0>_%L8q(wl^hyg$NKpeMcT$wAZ+(FQQ`8M;osof9)Pmo+M+=@@J&AWOAO
zOcI4Lp9xu}*QTUuf(aSTfM!m@kr&Obkrd|is9-k2NFs5SaR~kjp(E!f^nD>kYIA>Q
zNG@E_p7G_&rvn9DWWkUkK#7aM$EXv^CxDS-Q*HnQ2fLUdn``!LfGJo|GD!IkxE8^!
zvBlAXC{}3=J5sYJeKl6prm(?8!iX!M`j1~kx0-J!7vXvKu7r}577?w9r&AM{7R?E0
z67Mt;xai-h>64x|Tk-X;Kh*R|T}ywPJB!pJE4aZ{i;@XjkK%Q9_(ln+WH9T#1Ct2Y
zNFI|wIDtYBTaa-+a)rSfAnTGd8+kMg5MTqyz!&rDFF@QZz(=shEdv$|g;$9Pzcgl2
z!1EyrDGG%9G0LPJIYtE`JaeQ90#Le192qPM2aW-dSW%TE&j<rO5_<ONwK7#^7_wQ7
zKhi46%(&uJGFIdkwfg}j??};^w*@~;I2X$2d!w32X1_yB%pk4(1;`~=d}8<ks;c6~
zrkOu_s$9m9Bq0DK4IJphE_N`(h}I0Wk%6!fmw(p*839<Anb!d&0lt^N*8wkooNFci
zfA-$ByKS3G6#mX%fsr#OamJ!8J5E}i$+N~y($?om6R$XJ*Q~rfHbg=aYKmY9(2nZl
z{PuTY<3fN0b+h9<?U)}Div%|A8~eV4J(j4(Tl1rnV_k^HKVpu0YGz;r{wSRf-KWqg
zHX;HCreV`5DMvU7%mKXKY^17xY9*$uq<^YI=`5c=s>Nj&&Bvmew>(A0jIKRP=1X&;
z6k4HUAWj}FnXlkB-$su(nO&0d1)CM}uI&BeIU2-+Z{v?3yKNI*9&U@bw{=J4v(lMT
z#f<EFgFZX6zCxp3X>XAmmB~jza%ehOYuVb;u~|PvIpRX;XF6As@>3{(;<fRIGvlEp
zkGD5MR!-M=Re)a4ys!x^7If9rIc`*OyUt4VDA@gaoU-$xtcculuw6GEu3DU~o%_wo
zJ9o+D7@9VdB65Z4Ix*QK|E|-d$@r$&S1YR!R$iip^)V_<<49&CIZH|I+Tj%Tsdgdm
zBEB8xWy^%Be%43c(qX}W;kOyf?PV?Gu3XbcFSae4(rPVWoml6knk+D_@P&y=w`G|<
zItBqgu$^O8CUuGqxf=soF^Rp%;$^YT1c}==NGoXa+wZrm*_?ry{)d|7@@-lrz?P$o
zav?XL^I0%7V>uP9Tx}e@=QC6q%<#DaUT-ydBF$)kGSHi=!JJfPoV>CL20al7a&PSb
zOQTzM?<Zv*^B{-*{LW~OdOIz@FsJS(#EXmyDCJ$v?$Dk~LPSoy`|^<}GHB?*HgY;(
zc3$XLdlbz~Fy2^}ccDv0uJ>EKjTYX?*VkxPaq*u0AI@?Q@}ied+5sCA$trRMHy2I4
z8=beU{irvF+m+#$ecAyTe_mB)J@m;god>AB7Ft)au-Hl~@s8kh!9u|2+gt}oHPl=N
z`Ev0pKtH+`0X{a@K*98uK)wpC0MrjJfP%7Y{)44DY!8;{|FvkhWEqL)c(#!Zz+(OX
z-v0iRLtp>DzjyfT$-VynE}kV9-Xk(A#C-L8Z(D2h4B0yLeN|dwW&n`pU(h@qx>}RS
z*!v74q?N=&d$%kg<}$1A`-F0urz98Xi8_i4b=)n*2y_eL@C-vFK`XtZ^@~`>ocm&z
z-IG?HNPX}15iTfXYtkd{qndGr7dAnd`ChQpB(j25C{YD3Njb8YdD{UY1kM}pW|yAZ
z0UUqBMQd{8*9j5!Z;AZv4=}jw9A~{Wz4~Q~SL>V&+sj>LYuM5K+v#gcdBQG9IbYT*
zJGGge@%4L<v;3U~{qwumZa>W0_PQWD`|E2X$-nWl#{EB{c`A4F+GN0z`+qQa(y;&A
z-yiJn-{1dt@oaSe*X-8zSE3NUQ+x4WgHV6q6$F!mru#_s)sLYDeX@`{FWC+mSZug-
zJMRn4%nS<+Gz`ngJ2I9%Gnc^-b?Q1Igxa*&MpJT+y#FH4Qv5&LnC-LA68!)4>C?T2
z{rA(S2Z#6g|1KVl|HD{Z5z9Z}!dR7r5%}f6AZSzG!OJac*CuSomsR08C!S}G%&nKX
z+yNwiZG!&I)rhl<UG;fRi-L&0JHe<o#u+C)E&pOnfLzOp#I)G!g3Nc&gG)IZuG~wq
z$PjVf$h)8<`uut5&WEn|3F$f6512GBZpVpj-)`xXVbRGS>SZ(byIF!s#zq)CJJm=V
ztE)bvPo~?xsnP$J_v#Tmb#w(GP%UXJ(gMr^vn!Wg-2o<l1wW9FZ~#hsjC5L+;i6Fi
zG^_HEzdF|xiaIN*d;iVqQ`qVuLiSZ>vvsA_+FsO+W^xESQ*ID`m2+U|$$}RGvE2zR
zq~9HTtaO@&hMw$E&V;!?)XCl6_J79{5JFgG(?rW8T(NqUk$=M3mw)|Y&cDV4x?aD=
zo2G)qQ-FnkjL^gi?OaG}9qE8SxihN`R2H1Q?pjt$eEqq%7|0@Y*6-LVa6O$mOU+F;
zifm~~bHGD=>U#(Lkq0UiqHViTMxP3|XuTUua*^<nhp+DlT-W}fmKL+CzRt3%UF7w2
zAujStHdcLU@c>THd&daEYQLB>o|=RYLnktJA4wK}Z-@$(+P5O(x~N++!GI)&X!jDA
zyJeN{a*~up@Lk{eMl+(?u46aBaZ(BkXGCyG$}_<(NWKv~sA<7<F1ZapRFX0M`18Bh
z^{gN;&pA_HG&WePdTY7mwFq0MJ;QyZq?c!!wnQJ!&LnYr=B$jRx_)z}8!UUB-i7><
zo#Hru5kN~{5K^qwc)?Qj`3x6@`+>4E<DR!_zwV$*a<0PNvAEG)z}|wjUD=}k_C}SM
zM8;<YE5%t}%|@gQ45#<)-nR$6u2#E^8kYZk+x*`${$JUA-%JLunE!t=*gqUJ{l5?Q
z@A>~bc{Bo+G+Z;>aGjUfi!ItIx?S!m;K*`+U)mB4SwY*<s0Ox*sK7Ges{r}(!i2lx
z^m#!N*;h_7k_c9+emh>UL&rjFbx+`WJWo~6bVht0^32uWUVuHQE`3Sm(*H;$UpIeE
zXEf;38!ETRgwEv1RAtOBm;LFgpe~07ovU|_qPaV2svwlTcSL7@L7zXDEX!y<`MF4c
zu^>Z~S6Oy_9pIyoU3|SNj?$uQgau1myB#i)=8j*u>l;w&)%+$XmXc5A?Us$U{x?lx
zD>yvs>%Ph;w5)AG8zfJgt(sn64EAFD=TEr2AmSv$35iD(R_<7WqGPI*ECJx^RCNrY
zq^zW3ZVlz@9<@FVQLnw}LjZaKKCroeA(JUdtBjO>o8IeSd(DcWwpupigLrVz-&^E@
z_5&48ECp}TC9~L+jKEEzwPUYoegP`PKUOFQ{M;$zH`+$M|IBIjkKVQ;lxbBMN|KN`
zJ@T2WPz8{MM&70h@`r6@-R6otJy-HtJmxBYQp@ajQEDa!H!LU>!n(_#wuT*l-jE<n
zIL@hfVW?vVUs3P<0t_93;`7I?Wl=8@2YLt6u|_}dNXBp)JFDXaw5^$e#g}${Q};Wg
zQ@CFiw4S$^uGM=^XLv&5luig2J`DKcqkyGwN>VUR<>iY$fBvs^YT5vjKyAMs^cutP
zkK3(uY`9KMfhVC}`Ha8r)Jc_P$^viAf9@5wVxX-?l$TCWb_*M0KzRnp$Hua9|D!A0
z=~O=r_S@U5H3PWxWlHi0^!s4MMbdss%jdg9B)e(=4PXy6+kRG+85%xEJskpXu>UOH
zi}&Ke@Y}s__jdccC5*b)?oLS278KhA8hmb@%7e}RJ9iq6SD1;_PoG^f6XLu%e|;Im
zs_yG>lh5~{TYD>R;04fw{Z>t?k@l-Hd+x|nyb0@STUGtJ%-W4D*32zJtrDXjl@s3V
zs}cHn!hLrjwRTSqBwQ|xVVd>ZRYFT1eCa2`ST;_TH0C8OTcd5BB@?@Lg)S__A0)r@
zYmof%_He?joCI)?Y+@F#yhoO79eUh0?rmG<iCjCa+X1)Uu3PoW$mk`>3Fjvz8#R}f
z;sGQ9W|zC-0Umz|X!0lUgl!@Qb?#I*`>J5$C;_u_g2i-*!W4<wUvKkl?y-MpBcyIk
zeN>0rn7!6VuTJa(YtSbA8{?CO?9X;dUXAK<`bWD|Jr%N;`E|>i$GQH()8xi7Tx+{H
zuWpq&>qZ(Tcjr2+l~<>ejS55Fh-K<-Fpzw(W`#aAV@H40K`?L1C3$VF&JkHlKnTL`
zx2IozvFpK#nL<QVw~!*gtc4PT{dHNZF8u~9%l8?caI4Q;MJ^hw=uS)XEVXu5xI-lo
zBp04QPd$>9)dpH%Syh*e1y!k&Rs*%h3RwuJ^v@u%-_apX|6JIiHn;_xl|p~<m}ViE
z>T3uEcWHkwpvR#KtpPzO^nfh48^j{UXcf?{M3|k|(1HoOA|p91oMj}==%~acC0vOS
z95u5pab`;_gkzP`U2yoq%ifhU!jb9V99Lz|R<T(9tMkAitw&HYQ?FLZDna_HSZH^3
zOLkW5!3cA*pndXDkTS=a5reE!dok@%ms^FOg?xXrOJ{L)=5t|<HKuLKxCk@P=1ZvA
zaIIjo%lNvmm4Qf#Q<hv10kvL*m@x!tHGUusiKj9H3(l3Z$3Osx(|NOMXswV|qjju+
z?BFSU4m0^-K_(lK9|=xLTQH=?r9UbyV~DtUvZ6?#8y(m=ZcSi#7COMwoC=Dwmn6gU
zQ<8tMJngUoaQDHnQ>h8CASDF{_|-t2xW!vzq%*=Qu`;mts(cg77}KmO$@^(Z_>^Vo
zazNiVYBVA83UZLG0r9j^V=d{<S36}>f-^C_KWBG#&b*Cqqhsbly5TAFVBO%5d2nvy
zjClYTAF(c~eVNp7u~6@Sz{w1eiz}bYHn^8l<pC{!HxWeI8}n}?u{K~dZ@v`HO*nQ(
za2zs7Yr?4o%S}06H*5W)<QTA+E)|*o6=dMu!`whM5U>#XOHaWmxcmGq*15x|ZAGod
zvYI#5+|^>nuVp3FK@riEB)ANj{dpoXxdC?21745>4WFa6z_<sgQ+;D>CplP$_H<K$
zTN)gHA>rc#cldjO;Ro(>Pc<unECI1ZqSScNEw*{1B8k;CotK`LGtIeC&*%s)-_w$d
zU#Xb>sH#Na@i`US*Mj}%_O!d>R#T+#gKG=g_!3gIv}(6)Kv$Z#oTcPc`$E(`aNjOa
z^LUjv?0{UOql{wi(kRZ$1<kuvH*7u4xw@f$yfuEIokF`cO19cc?S`-v??O(Uh^Yf9
ztv6u7GEz33C7hQF2JKc|b-G#EGNvAnCF9<Tp#m-#f*zUAwsWS!Fw{)<{Nfg%W%JjK
z&)eQE&EEE=xb$sT8YPAv_5DXhOOn2<BpN<d?gliU98Yp)U%&cDk_wz58w7)31<Tlf
zWd2VQ#6pdB-`Azvv;a7zoO+&6?gKtfuRazf;oNtmar<+9Av+SzmbrsiA@>X`hv+!p
zQ9LCdq7Tc>5`Oa*MW@GDVIephi&Yn*D9M<V8?VF_p_8c?qQPEMHXz$H3qZ<Qd*W_!
z5tlCGY72R1OSv31n#nmWBzgLR<y@41n0mBjXOWH3B|?IfGnxZ}`=P{%FX0QV(!vTg
zT*at*zVeG0VuN$K15JHjvYEQ}{oP<gMfvMnhox($FAN2)LZ3eeveX95gt}{6x@j$k
z&MsoGMPjM|3jQe7yEh$b!9^1n#QK{s?u(hZsjlaDyOvFw?@O+uTeHl&Rja&zWm~V_
zD{BpJMM=WOQiMC`b{F@*c(bgs!|UH6223GV1{u_F)+}M(D@Z{>?E)6;%k9KlTB9#N
z4NIjVjUYFR3f9DQ$eD1d<g-Jg&=gVzRWZ#{FEUIU<Vqr6z3IL~+6~!&wwTWJWwLga
zFMNZ*?fQ~>)KbTi>XKk6=Q!Md*N^=Wx_FjV@06j0q$K^ot@Wh?pWHw2EQ|jF2f9DQ
zIUN%&_(p+Xmc)PE+k5t`5&wH|@Z>)K$DKUa*NyuQ7W^l(-tzeN`+XBcE=CVD`o9nE
z{P%d4o&PDpX+}8j^UGw@C{RoD{|uVvfA8sFaDV>q;_0+?SsMGvMt#<Q(Ib||adLs0
zZ588%A)OY)^H~C`Gq~pM1a?|ugqaN!z20at6Y{2WAREM%>KpJk3Noc*{vV$V(HoXa
ziruk{HdOso2oqqh=&&vhj$6k|@vV-Fk_ncuY>3{!I5Bc9Tuz8+SY5BNFq3yDFPhwg
z>HMTDl1(}fFgF^(VDH-ly}?G8eCYu&f3knD-;DqGZ14X5zmq47Y|N^=cfTz8Kz}$Y
z=&?>^jfT&|8O;N^u3K<UJ93V90_{#xzPu5Wse38#I;D32sFU{={JlJNf-R-508?tU
z1k|We8<26^r_6TODdjl#Hr4S^$Sd5OAdt>?w^PW^p*m(V7u16ywl46NvL;_pf6Xbh
zFx+S`M>?_rM)eL^N|jnLn-QX+>UThUuH<~^&1f@QiJPgzaWA|nfq5gk^199{uoOdd
zjFmRaL6@3uLxj;{2;RKtBm)anBnH@&ap9$id7$HDLGJF?lnd0`bz)QXL7k@NyvWd_
zF)g`(O4~~Gq6j>Qc2!#f$io7Af0T~BLsm!se`M^|oUgSb``)&Z>jcaZ`?W3)Ah{U8
z>y#&L?nJ(g;s!~mZP-LE%M=&t8R6uDG-Cy{dg9($Z5vaC9@_>4wF1sX=>cN}U=srN
z2P#Im2ckQMQAlELJNIU_t~iaX+G?Kqo4nu2;hKFd3@Q<s#*WS=TTrJ)e~otQ+zb4_
z=Ch3c*I8`)Dsk~<Y``-4|FeU=ru=_@a4-MAlc#aa^>R0|TCW)O-LKq1m%VWddHFl<
zirTmxD$LL<kPH0F#$4A3v`+NxL?P(A&SVZUUv>SLo&O>o-8cc{lJh@!cJQ>x|L^VH
z=l{Kvr^CpCr7tNjD=;JZSFTDYjvl};b45Bj)gB#QWV~(=elWaMFiNN&9eCxWUG#5&
zUA}ZWhwIug`4KD8qbcV9B=dT4do!9JU1FMnBxgHR0Dt^B$8`}MlHGqjM1v*|rCVOy
zm;dVlAAb{;zPhB41xQ_ey4CIieh<3KwR*GGEwB{-^Wsb6|NSRV4_f&DKL79CJlBi!
zzngbJ<tYE1Hf?C`5HCf<(aEt!(>(qWbJSBD#O~!_L<An}o-`r0E(O0rjpqGow}9kt
zC(}=t)qi{H7K<8Dw~hak)>*eyXh|<=MkXY!lYdx1(%%#F;T2DChE*0auLMcmbu&cf
z!xulk{q@bmsA1;cM-Q!8>O=D;Xl!Y}8cRX@LfQA)pT<7?Vcj8Pie8hvSWHiJzQ0`}
zjA}Lz>eVm1zOVcyHuCK@+cxiu+>^bV#PjVm3kC3wU-~bOPhQk7$|^tNKXalfg|d=Y
z*nh)!^6gPRe+Z<+YnoRdyT4aOk&zk61<roZ8Csp9KUG{nakX$TN0tiNLf^A;L{o&*
zl;#s8rUXGgQAqU~TV7>Gb43cMXNErx(bL1jgTn}+F^5*~wo$VX?-&!17<bMEnVD(b
z^iur`JxlNZ&CR~-v+VwV_Uy2I|KIC>?|<aEUOWHanr8V<l|Um)Eap3H&Q3yCjz<ct
z*v$>qehc9=lgr(@1`sWZgx2g?<|+P`5*Ll`-n9x4Ltw6-Sh~<dzCHbQwSf9{g?*rX
zP(bVFRC`4JfE2RpRM#A^`%33z>osyb2a2o`mB;UDD~;PiPo5SuMc#c!b9sl#34c^w
zYrS5rZy{(sU$5AR(NvN@D#B}lrXJmjQ=x)5_f}qIFCv61TyYP@sz4Ulv8^@vwH~kj
zz0P#E^7*ZiOnBM-U$Tsh)N*c22P~8S4)z93`|rcS!TtSz7f;RaEX30K78;jq_J26b
zkIGWTne6xb-GW>YB)H<*2er8N9e>LVn((ge4X(!rH_p2IAarY~YpELjP7;Nk`pC0)
z*Vz)Gr_0;x$N*{0C)T<#p_V+E@5mS~&4Mc438^Ws#FUlvPasF)i*I;LS%h@&bzmSl
z|L#OJ{fjG3URhGi)-ae#I{@9Q>HqT2GW>7s2fw8K@4?_nlmC1AZ0{cb-+#r^;cTE+
z{q}r+G{8;WeFD|Lj)#x#$SO`fe$m_Y<GBHkwRm9GwMRALc=`lfNkVm&av*kZ=|m03
zCweP5FILzJZuQQ&U9yM_r{CcW=Se+a|J|Zdw`*_I@F_4u??AHI?t=T(H#mKe(6kH~
z{jSyqL`AyRKo%$vH}>obn17w$nlqP%y{6w&N3DRDQ+Ja$bs2NPd>Jn>w}s6nXiZ<R
zCHOu~sR~6Rp{<56n{^go&L#)n&}1%<WOnUWU6d2?juaV9aC5nx5{+nL1xx#zxMVIk
zJ?-9<>VN0VW}Mgn8aMXC>t0E&VyyXb3>z;OV}e%wpzX1;Dh7-2fPVzUKoiP3ymxOg
ze8Xo&`X4La^^4g54h{x~E&Jam_wt`Rc>;&N7FE<?=9D$a5-z|<L~bb02`D8tmap8v
zjBf?bBrsEpITR;W^@y>orB}d}U|^8o&**!0K_G+TqVFN(yA0m76N9w7W1(T*W=A)G
z|35%8e>cxk{J&w$Cx7=@jQ^h;9PYL4|L)^I-OaN+*hH5M2p0w4t*?N(##(`3R<VU!
zA!>?`c7tlUTi3oX9+;|LyW1`wgB28YY2?4APcA33OH#gIvjUd{_5Sf34dVT0@yDLy
zNAEzBoKbD1uQlR9JHdA*A+NT2h5=tqN&b>#M37XEwajrjM}Ix_vWI%_h`=;&U7+rK
z7MF=C{x&}qT>WWgR5oy$;OzF`1GE4u({$e4ELP8#_5;vtWk=#f`1V3xz^3#il}r00
z<${&-&LEMYaz?6@{)BTp0ei#l)Dzxxx2tGoQO~HJ8;AJpv;t!3Q4{aTr-geKp4|qN
zRYGxR-kNQMf`6Q_{tJfp+QmN0M)A6dcv@{3<b%*68FEol1{ofF*Lfw^YJ3XYHv|B*
z%v%CzSH-s{rQfFaIxJ0SR1CG%LVSaGaM0iDHO$@rStGpo2P*WRb!V<^-iSv{!(zB!
zHJ$sK<`;Y$%#N0qL!Xdfr;zhz8}<G(r`bPx+jW!e3V&X*n6|%psDiOC4oLmHo!#ca
zHs{xFgHzH6`b+Rj%M&Akt@v?HMJT5c_1-VgbcCR^^OFRyOyWTAz!Zz3TDRjV_m@x|
z3x%0^JI?;{aO_T$g4KHtxr5@AP6%&AI)E=e3RnuKBn9JC-dpJN=l@!#rtLv9YhF9N
z!;L#OTz{vgz>`p~nh`Z@4kmLkuhqT6Rt&V|S*$Jq^%ZlS0p2Jltz?h={*@%6NZL<n
z`8=G>5gcQ6B&IVR>7@t3T6T8_`_JONcrP9dzuo(G5Au@BQTN*22`4!2%$x5u_*`DK
zxfpje`|sRoI9_2URzH1S9(>dYG$N-j1KPij(|@!ioIl@#ZtbnOffqmz_FFZnM%u5+
z?D_Sz4Uy$dSXbMs>d$4?ZftSzrDX{Nj><_OnV<?)6HG`e2U5ptdhUg5Y61xbkn!uc
ztAv((g;bEs#;JI`m$aSuw|SP@ISM+vun>Qc{L-&M^2^)93Ab_*yx0w9HoWp4S+ePI
z+kd#X;gCXkGi27yz^%9IR=qO31m8ZGB{}nNvLjaQouA_0hvR?y8avia(j2&8ywA;e
z537Rpf<M#^EKZtk(`~wtzUVUjZSqP7-DB6Ekrfi*-fV~7TDl!{+sU8MzfPLsYcKe6
zYpfe{W!>09ms^Xc^6GT*PhrR#@k-qd4u88!Ngl|Fmil6fOA#LxMJ=(p8Gqz8wmL6l
z6zyy_!_D^e%P)2@SOHUreCifY<d;qe$^CVis&F6lx_qDE2{+mI&?;igU`2OYnun>i
zy}D$YLB2~9v1AmNtP-TJiaigBG&}jW6_=$n3X)I{w6|O=csi;}#)8gBpfeqyHh<~N
zsq(yAwL_f#xv)cRa0|FPh0x<M%|bBM*EaU;QrSU&L&&-{oC1q!putWMix{$1056MG
zvBFfz9h$J5vy8+U9hJDGge&2Nqwd!w&TNT=aIA4a7aYFuhIgf#a9lh1)m2%-l|mu^
z#X0Zxz8zss7GNb~9dAS*tJGdhc7N36R^ef-3HPEg6st3w3u~+~Z4gK$$S|8Pp=QIi
zg3T`D<-%bQL{glx<bnvO^(vInPz8Pdp_x3>&9vHm^MKF~r}Jjj&{`p_I_p>g*}+rz
z9A@mp!b>(HKN6ghwlGMIOMg_F#SmHZWJNJT_hGbi+?v4fEOdaUITaLVFMmmf=L>Qu
z`}^S7sni5mEKA4igX&1etj9=agjHf?VDDA=CYUj%Syhtv(~|Hh%hKh5zHiiMLgW<$
zXjlW{X`{wk5}mJh%5;#v`*U_z=giv(H#%k>q#K?x57rG1nFr@K&X@;q@e%7ZakGNB
zaO&N~0=@qMCo{xEu6!=r;9-K)vkS2WaB<#g^#C2KiUdj8&U5*-@WCp_#oL_C3Tq<-
z4_a|Egy6yQi*F*qwm0VAMq2F&GnFysGH%#04wO8BmHPDjeBwRyDBu&=8L#XS#6pIk
zm7DfpdwYASAbB&FYxV&d7;^(nLcpTwFFggP5Q+6~vCbVvc-@Mt#h0A+0UUoF^nmL~
z|7!s8k5H$+$yj-Euw(7%rb0T#BGVt;fKP+H)nu-oGFbvy0-|Z;8FqeG-@TB%Vd;_n
zym&>@oV#}I^0BW%fLrAkue()SsblY&q&B{Uv_7rcZBx{hwq4Fra_WWQLpm@)okpee
zY<iV9?0{U3ql{wil1<Lb1<ilERX1!s&AGaGyfs#@7PMSfTdCa;`r%zzrxW9JV4L*@
zELcX$rlW=Pa>1b8s;f>nD_b_*CgMQb@!=>J)DLJNA5&o%KJ8uei(7z}&0hy_I!5G=
zWxef9ap{}VG)fFThTxBimLz>yNgR8sydG#iIiBRqzJB$QBo)MmZ_s}Mf)y-dllebM
z5DPWheP5SuU-973;-^b;AMjFo^|2^btcVsnton0(Av=PLq7i>XT~(}*dxn)mbe!)f
zHkS|4hvh~Rzj=$IouXG*2+qc0)rBZZGA8B5D{)2WWC~GWn&JxCrda?|&e{`qi;K8)
z8CP4#J6p=-sL@Q$X(4~9&KE4_qQulA89R$?j4qL6bZ0aN1ouOU6JO{UTBU^*YPep;
z2DFq%H#jH6@~Rr&mu#l4eSbIDR1p69TB@&o8`v6#SJv7*IaV)|a?oh0yS63z*7C6I
z(s;J$N0qX|AEkQNl}&ch#09bbCj9tf9?c}7@Vi}$OWR2*R_K4&4eax7)i!V0)~ol*
zTEkmWK(MiJ;10Uo#ndm}EUWDB`ge%CQizomDs)$~gn3_w)@{~b#BzPPop?)Y^yQ~v
zsgPrFa5b-BO-yeTGTu}BT-L7q?~P%Q2^ZK17No|sD1n12;k$67MfM=8%7kl+&z5w!
zftWYR8KIur%p8B=%OpDPsTI1~O8#J7&{ywZGl1!mzL~%gdQxsNpM&3UP|MNGCZM~t
zQBHxiCc2qF!mE6PEE3)T{9F>w{5J@eTgof38d7RDZjh^g&Ybly3BiVKVPF$!>5{M}
zPV@+8WzB~Wc34)uQ&t#~2KN7+QKy#0f4VI27tjCuG?0J)cmF>B@0~p1gLg?vK@*%E
zRf6#ZXEywVpWS3}!bhwt(|n?n5bRzKc7M^JPgq(*Z{>ar*7eZM($XU$@V<La72y$V
z|E5VK`<Dg&7swW@A_eQD5Xd9HdOBQJSE`&)#4n8&+X23sh*On#Ns5fkXCxQRI2oJ8
ztg4C>3*vu<g;H-+HljAV4{X}Hf=dCu9glnH6Z)fKCLoldCEUgwi{^|blmsO*fi_$9
zoTf9%1w?HDBIpwmC7mrwBlP9Ze;EJAQ<BXn$Rux}jV1Vh?{L4F|L^c{?>_&-ojhCU
z1PejRoFl=IT5^bvhDH_5Ag^YDlM6f{JdU=|`ze3rkSP=*bMq<5GBnB9NJ)HYKG{Jf
z$*`c81SCz)dz`1y7Rt#4cpdae+2@f|am@d=9V1Zpvm9#5E}?>yD5E)vqxj|N*{NV9
ziMG%SHk+{={qo`zrL^QxJfUJ2{#D(N;?bYwF8pg=OeeeYAM=x6=DRhZ5l$|u0*z@#
zc=Ufb=2u1ZI3D4P=y5D&MfCXpMO)|>TvAqXbo}xakK&?azmr5nF--~HRpm<ddlbF>
z_06kyr++1iFns>iIBu(rW#@me*QEcR9PHia|Gbk27e&b~!Su9`W)sHJoNylX(S+i>
ztVWbYCAp;JYGIMDJ&OBh(<glX-@Q6|`O|-^c$VHu8_VMV9z1>4JpWIh+~5Cq@@%0K
zyX;Z)q5kpPqp1)DAMWnD5x&^&_71}6!;6enDSD$W`WI|gR6>#p-?J)D;eM~HCwVf4
zib!9ZJBV_GkxI4AAz=qs;r7ss<y5dzf>NJjbSzN9vWz5xqZtt;O*o_>)MEOoB&mPq
zdpN=ZP3R@b5zPfDFLB0q5V^!zg$3b|Qyh_6DZPVI%8Lxoxk?>Qc$EnbgbGS<E{XHW
zgp^29^@2kzNH!y~U6r3i4ug$=5lAKRG$IgZBaR}VlHgRK5o3aj5*KpFt4uFSEgOYc
zE-U@hs>W5N;qI=dE#Ed-noz|}9`t_?Kay-#w;{>-m`}G2Er(_hNwtilXiM$@0u~~i
z3c{nPkLniDARc`CA5kAkc<3O0_8(B=2O`kBI^4o>K4wvLetxbUfFs!+DoMc*PE%Bm
zu%EEmtOC1<_VDYEl9roRBRL-uQePn`2dd)hWQ$RBc1j5PV85v@wT8Z%vV?!b5BTRy
z7Tw)OV^*5*3Mges1?lg>WBm*UdYp5CvkXC)h$uQ0xP*-kH0z}f88LVo@9n^}*Xyg7
zUt8Yrdj1g25i3(t0==!lYu6pg0?%V~0(x+iOi6Nq=Bz5wx$N_~B(34gh>Rtfu4}9Q
zw&&jf|M2eB>sLpoug=~a{q%q8x8Q0xtKd$mIb!-mZ+XAB(THU1N=}rs1iI0s^RLUT
zummqjK_q)DS?MVHZf==rQJ*pmjiWku(2hJvMDf*X{|x2U{s5<0Z~wZNdc!4b7Tl2T
zHry2@A-gk7b8~UJAh%^3@_6<^qSDtW>y}z-1BUh-KsifEpL~@3*{y$#uM2#$?V{q-
z2^QoE&x0*r;p~ExeZgicx95P|j-vNWqHH|M2%I*vz{wn?U^wNSh#ka<K<Dn_7|GW8
z4mxj7rTevO$hHjJ66fKb)`bK^=MX{nJoZjW-Sedfr7pU{S@}7qKEi6^genhX1$FA-
z-YUtAT@sFDAvw#=WsrZcS;2CW%d3`imQXAV|1L|avj}~Ixaj6yRc1Zj1lWEo9ltHP
z%JAj2Aoszg7SbhCGQ;ujoaIq;gg%_N-=BAMK(K-)-0a9LRih6wf^85Lpeg2PL`W`i
zjv@dqaYp66q$ff*hJKxr9GRx)c$S^l05IaBtP)X`P%EDh^oW1PB!+tvqnuo!F(p~L
zW4<b9JuxrH4k99nw|CHtrF1+;p~0z!W;m~Kmdz0>QCa2cHbHtw6OtpRZ|EO^$%Bnd
zaxQx*msEWMGA^T&+}#79HLAz{j*Qh!r<T3QstMH{=+_-M52A|;TvkOv@$}g@-|p=;
zs;JGN;km~ie#n0*1x1A37LyW#D68vKKmoGmO^Nz_-EfN#(EyikZdGpi*4{$z8QOmu
z@7Y6YXatqi(cFoKBw=II`-*^M@A4qtlT?cABO8xtLUD#Z%;-d2=4et;x4%A73cYsN
zL$%1ew)XCpGgSxuy}td@2e{ETV1*B+*EzGqZ0F_V{;7ZK@m+x@yJ{qA#%7WXN{PTU
zQ){i}=}^rRLFd*{a>fLCM{xS#x40@ZjlR9Fzm`-G^BE2uM>)GP(oUnhp!p<5M_I<M
z<c5-+IENZ)$4g3XiZDm#W^e(^#+ZD>vmzsM#PVV|%IApWqNIdN>QGDxC+KQQlPM}n
za!Famv$=m!45jG&`ubcR<@3*<&(W;nLUJC2C%7;N@%;K4^{%gbNS1(+$`_wMs~08V
z1xY05CW*~gx?$B`N>lL9Znq1k+vsol8NDEg&vSu4qAQwZP-#RE9*;>PNa`%c6S)}g
z6dl~=EFwKOXdqWr?pxW;nR{!WL3Rq9kknA5GhBb@(7wS<^gEr+XgcRC-))xPRulBW
zJKA6rtG+L%nT%0#@SQ`-%+lTNMz-VV)kjfcbL9IO%?ZNg1kODN8yY&MBt@4Lqw`fl
z3ZElf!pVYL8Vf3^B)RsmJfo7}iyBMId!@T~h6C9_r9t1oQ)+vg8_m!tW204O2+G70
zw(WoMOEY|-HX?{Ei&7FG2&cbSTmZwYdrB6}t+O)^)Xr4<@6g+SZR+sMvKpdfX(e|f
zMw}E_BT!xQycvs7V+J_bS3tiCnkVLl9D0|L4sjTPA=89%QO<|<uR4*x!{-iByQcvz
zL0wSCV}wysalvK=T>*W-O7!COF&aZKE+BuJYY4F+j$7l}L51EWvWnSN8ZJ%}R>~_k
zo5#@boK>(vD|;88g^B005Ixyh))HY#Y9bd!5mh#Esse|d<U`tIQE}{UNrOuj^_m(s
zyY8~>)D9x?Bvy+z!h9OZ2}?w#t0FEq>SrB}4bQ`aLH*p7fA#wb<_S*8b5<5poU4B&
z{F#%I!$jirl5$0NDgnKv1=JOS5>`q~&vNLx5l5(tv^6y6RP5W!v)z47UYskdg?jcC
z&yXs?oNT;csm)mg0x?oTi#xCpV50R@L1}&4xJCwYSJoB<?GB?8QjS?UQ|m&x_7;&x
z5inkYD^Aek$BsxwFvJBb(74KhJfwg5<nd!v<$@|s$B=<kaXPYlzF4KP%4*N;th(50
z1<f=M%rrY!qPDc0;!C3DRmr(vk;hEZ97?c<4)g-Zvr*fRqLC!MixMY-dU)ESK4B-E
z$)abr=&ovccRP+w)zy<ohGEC_Xoiad_-hU(3~)9wb~TKmPw4IIm#Fc4LT`Uw{n~u#
ze2zZ#15fa!^Evu7B_$PjLj1Pc6R!w|v_G25w$#>d_R!2p=&P*t!P;>cqWZUBTZZCR
zwQy0ihug6=>b4ABysQ?m8+k&YmV2m_kU*{wQ-@#TlR2v%UJ_4EUgNJ7k6lizY&(b*
ziNfyZWtAUs2aHY}bdDau*`$A53v7T(*&Z%GRr*A=j!(ETQC8%9A=LViwm=?@g`_T~
zSfEtV4>%DO&dd;p-3()&I%L#pl2vp5_ssdf1)8?rs#loT)bePq=(fKUvAa_Gj9Vjh
z|K=p_;9I%NoGZ}Y*v`#jFxcgO{A4dajNJ+zfg(3opx!=E&WeA;DK3BHXLU_|xl4+u
zIr?A@qO4>{@DB0{K;FJY+-YJ<u>Stu-Zl^#M6&Q$0M(JQ9fLL{`C~d=PxHSiRN$x<
zb0w=%GC5Jpz1y^Xy{3u))KnPI@PH(LYKXT%D!oAbt@`qkB^RVr90?K_?*57!=(rA;
z4x*AqheuXR6Gzd{In;mS)kxj7>KO1g^$40^zm#k>XIJK08!;i77roHBh~#0^HRNn`
z(_744g{q?RQV?I2SdhuQJ$r(o-aDc)p7)%Q>>$pR8c#z&5YdBG!t`gvK1zBq<auRX
zqt4O)LctPmN57Lq@bmVx&>W5NC96u=j;#xoe!@8&6E67qjy`{Y3C_(e#_^1V`eU|1
zd;U41;vr02M!1@IxE8UbrybdUNsyW!xMR$cNxXBEWy+9F_WImOBMohzqm-7w6FBp(
z+Ln7#)RSb(#Wjz0Gf}No)_yC|m3J2pzL8kc>}UBa-jkESkt>F>Mhce6@pOr|ieEg9
zVvH33EQz_99J_xpLy((aGkt~`*GgmAJC>!s_DhKZ&7Iiz<f(QMCy7Bru5Mt=N|e&^
zn3N<>h+OYC3|Kg<j#g7pb#4KHoYZeo-X?18^$|)*N)y;rrq-jD<jVsAh}K&JG8+-l
z#ys-%e$9Su$5Hg1i;(4kwsQ!E+$d#N3hB67KD&<{oWg(5`QEuK2?nc@C-o^u*t}cl
zI7fqL@kdLT>Q)rB+iC)mm#Lh*&-Wsu!?>xw;?mpW{vmkg9fD`|A#g9z_8ItUx9yG2
zg#)K?EW(X#d_ca&E_?c~vdf;ecNwU#tQie#BiD?kKEZmYar6ju4eoK?L7q-t=|SOE
z^6*K^7{`CCvr&K;u^2bo85C>QstLrEH4R~nP-66p)8lv#DSf%$Cv#8)>o(8$QisGh
z(zwYnk&s?#K;7rWYws_0QV#!BPRi5vNjdcJu~JVM5wEtZko*wrVwmwArHuzUov0b$
z5AHdz=64CpFIDQ5bri8hm1Vo%esi$j-c`!TpzePm>*}OjV32Ui%UiOG%EV1q3~dCn
z4+z9XQk<U>hbp+h1Mg@tm9h>pCV~NesatAaZz3M!qUez78X=q`N80I-{RWt|uvlNO
z`M2(pe;e;1oTglxfvCt4$`Av_2nVP(hH_T<R1x|OXC2^u<Pn!s$;POxa@Z@_t*SRW
z&B0I)=i(b~ZA*bUOG*rKU~|}k%*QzsQ;E%V$*U>Nh+~T?`4EkP<*6q)nL1M)%YhrC
zBq*-BaNcBBjCKaJO_EzED=@3la|g%e2!sIUR2?dpXb1uwf3UhtfI0P~P;lxT5Chr7
zu|ROM$ek*0k<>N)g#KaEf|dmDAR}r~vkgkaNv*!IDtF0(#>k38oR(9TbQ&2ix98B#
z`^w6~wWyJtcu54Nuy^3(%9}#Yj3+p9q(dKp*8?QsU<dy~*X_Zq%83HqAy{nl7`=c?
zN#5#mkPVv^fAnEW%9Slw_TxQgn34@p8a3eH?M6}4t3}@$k%%dw+7{e)&0sk&(^A_)
zi+RM9%z+oL#pH6IzEXxC=qJ+!xn+4Z({ritBF<YY-WF{cIlja*z9AyZ((_o}ZdRmd
zM!?+qa$VF(y&$A$Ev6A7SUfw7qCu=I>`3bxmTg)?e?Rn6qa}+jSdPdgDd)8i0gVW!
zslLgICjQw$oX%*5tz6b8DU9w3q4V=|Nliq^+fK@VS0fIsiD(r0o@OR+h{q_-XPJ(z
z(G;I`0Cg#(jv@{l(NRK;T7NV`ZWA8EWD3hzg0nhf+7Lb4-<#UX%>i*6BE&fm_2`h=
z!1@>5e?fy-D}H=bWQA?|WH@&3hw<KjXgpsuu<EfQ)m)0tSP8(cumq^YbG*Wta=XA8
zS1tp=4QAC}fG(BQR=*_JIDo{E8?)XMt+DGFjpJDVrC^*%80KRiRb@6r+R?)A!Y(f8
z?&Sb-DfzHq1`$GU&GAvH2!ik>rWu?DaH^GufBcV19)-4U!j4Z_ExvH~d;}uz4==!Y
zgZ^o*RuH)&O)zO+1)5Jfgz9jg?ZSecfeqqTQp4+uDN)QtU*Rxg+(`4uHeAx25G@JR
z9Rn()P}c%%3}uN&QlxG=!FSLl<y6!g=pjcRoK5lDqj=Z(xxHgdRFw^!f9y4(#{>E}
ze?Dc_^kgM1+<&tQ&G6jdnQRWE5vW~8?6Rw6KxC49QHSA!YsS6hvWQj%Kn3?<8Rg8W
z!Hp*@MH<C`{_Cg?2jw{uDS4zd^z=Ij5;(AUaK{gwP^S%}OI%VS=JGh#l&TGU02alP
z4J_FuO_i#6uE}&`OOgmT#FakdlETy+f8Ld(pm|c#5kYc21gmw=s9-7A6uRnC`oA@8
zp)O9KzH+Fis7b$PaF^C~;T&mEH`eydMtThTjfqA!p`oS(f}AQBFwN8EN)IS`(bh%l
z&9pYId0|7q;R%)prCH0f;f0ZY(7e!@0=On^=JlfSYs-hMjcx0ppYikyG#Y|0e+ep=
z@{r3A+>dfQIJQ7w?e4@u)7L(18qgD{3*Vr2H(HAqb*+K(Dce=;4N*_B3#|*0vRxGq
zbJrNk1qwi#n%*~i-|Y2j<iV$`%2KVEb+0M|^Bj#ZC#lg~{rv8=I;B8mDf6iElK4K2
zaSISD#kpy#=6%%MlwuW#zJ%VGfBmtt*_4{7mS0QV3u|edCmG{PFO{-NUIGwF#bUN8
z1_QPu<u>^p5m$udz?9O2a93vlSK<fi+*@1vhq{Tj<#q7E+I;=?Xv_X>3d}Vkm*{&|
zWr9lbT91;M=zpM*(ySiksKBM5NoDc=xXS9=S&`tX?{eSe6S!<y4c$s6e~qD?;(KHC
zz2t5cg}+m8)-9I`inf4ah_(!rK_A*u9~-2cCgfmGn&LH?0$+y+=P=Rwbrbyldf@k0
z0uP7acDxNyf9w&7{c&hwoY&rftnB37cSkRp1k*bvIW)PQ<zL@Xu#c**0d7e&qsqjU
zVDcsc(>HZQjCfHu9)k;-e|4wfL{x=pTkaggFd9O)z$Km$K}vL9j&KsIcAjg)D3GUs
z<;&cPJ*cE@lY~`Dj5*TsXDc-^Wk%4pFjSyzh!0hlX+n+^7#?3=J6zZ2&$<_`Yg+9K
zv8bM8G|w%=i)X+XU{sW(Z@JaR7~&}U2YUSYJuMzT9-{x&SGH$xW@E^i^T&OCj7pXf
z?Ii{M@;;2zDmq?Na0)+I&GB!KYMnC>VTQsbn!UZsHJYk#a5xZA1pE9atw^NYx0@?j
zHJSPfU&&D{yibj+pmA|-YeWR5*N>EO%v=#Y*1D4BzP1#)c)o3yU=9Klf3$Ek+Prq-
z;W)@=;XurhQ$yGSAM8m<I7jbapBhv0TG)uQj9u~i?5fi&J66hTkX+(SZq)a$Pf;S5
zV+<;0jvkSC5~C0DU4M}`@b5%$fs>0}x8(M=)lK-jxkdEBH8&&46z7!B8u+88j^DpN
z-9ckoa-p%2>Aj@fFUTDIe=oQ9sKB(;;EAN2<n%m}T!%zMSCmh+tVfVU$mJoq28%Gv
zgbL(r?yov(UC@A1*VJ`H#@ot~zI@y7%Pu~bw9l?!yCUPUe1ZD?3o`d!Uy!*r=5$<(
z6#R!Aso4Km-n_LEBPE>5ojYY*K!0~k@7;~B%}m@KW4RM%HjeUte`xz-I`m~NkD&^Z
zx)$YL9D}XtPC#aE8f{!Fx~4DqkuV|yvm2BhtttAGrok+mM#r`=<p#dnqy)k1TirR>
zDFge%gw0my37jAAe$`b>HXuVC)|*@3s?AO2c1~nY*W761!5wCUvU+1$G%iaY==4h}
zyk8VSf>C*4nY2tge~pqnQqCN}N<wxV5D4TXvD^t<7RcNd66^i58WCkkZQ1$J9I-r`
zLk#3XXdRe^0y^h_*5)Y75Y0!d%F|}6t<s>Q=0f%p5Ft3;y|*f&To11Z4R6PiY}gb8
zNuF}41;j-qDXWZh8=m0agaRG2qXW4Jbe_8(J+ng{ALV%5e*jSL-9{%L8irAac-gT8
zKZptq$<^3(^@#MywQ;JtE2xO?16G+Q9RF#d;mvMs=($=O%i{kI4hMexr~QM2y~F$X
zPj~S&#3zz79^=GB-^pk~a!!WmsKCjT^!MYvP@(*S578$b^j`&gRg&pbV6`-+wsQ3~
zZC$)jznA+_e{Fj_M3;kjuov$|O7K`H#mJE|)2&s`u8&5&kE1D*JzZk_;FP~0^D9=S
z5C_kF?_NKVynJ*nL|Kl^FwKT_sJ#E0$QN)snYg%h7(H7&nU<2J!g<UEu2S+}T;TC|
zggNnQCh)bcRx&0y&Qnnm!vCvaTo4wg#Fqb)lvD^Bf91_f)*X$Fs^4E@YQ(%CkjN>M
z6sn{TF3l3{$6)mJwKw|x6MQzo{|@QAQX7l$|Ni0O!9f%MA0FQ0|2uiM&`T3Kq!tZ#
zgf%kpe<6I|e;@tyy03IMlFV057!q2NNuu-;msApTM(I;v&JCXre3+HffVlERF*K5J
z!!vM}e+M5n-yp{`Fjf}jMKRRQ$Q-bmN%#Va?KWJ&5U)mDP*DkDIp}efWr{%oyC@?d
zj7&uG#Xy0paUrKQ<oY|9%^1M;wGY{P|GWPEe^hu5LijM^MQBShfjJXEd$;^@fXi?^
zbF^O!1dE?&^?y-inaMJHJbuH(Nl7@#g&gZ!f0M|lU}-B)Y}85|i$44oMOq995$WMx
zc%g(f$0w1K^?zUk)}Oeqw!ox9y*k)enGR(g#Td#PDS}eAV}0~O=?1N=bV_gv4lHzR
zf-i8?d&6>2041g~YSIy+#mfq3rvfJz9rhWr%=dUkGl&BJp?7?8`Lwr#<o{24zqtkG
ze`X$gCm<QJkfEiF;q*J4;XJYJ`!5x}^bU-q)Ld?%U#A2VqJlLf)F3;9AQVl>@r4S3
zX_aUZRFof2Jt^;dS<*-&8f)zkh7n|ktm#B_{kc_KpTUBquT?^WW+B^42d<GhFMw^T
zY54l*;x_c?8g=yBj;hUUICemd_Z`*if4GB)<d?K$IoKjwEEuW$TevjKx`mGFDxTwn
z_2sqxoYB^nte{m(L-n_{65865RCm8`dzz3~V&mt#DHhm87O{L0EN|kaK0lmAHRwQ3
zk8>)VWZz)NNCm|i{gc?;wzZ{z_=U}W4$WCogM6e@if>0Ii<?_to_xb%u%k*$fA{-E
z$v!GPC^-{lH?^h3LVciM`&vZ$eE99&xBKqrs^Fp|c=lYI`+$wrlyNb%*hrV;7qsZ(
zN=*ADnUIgq|F5GlwuM+haz3SF(N9T6<gE9rGULy$d%L~ib#GF#s^|@Sb(D`dVI^T)
zQr5klp1B};Lnl23;k}*SB`HU}e_?MzL=W;+Y?-9pLuA|BWzapCj-lj>fLGf>3Vk}$
zBD?A&snEE0-}!F%1$Sz_bX%riMrYIqjnItD;NluQ{fRms+{|3<!cV-i2qi@|MEiR)
z{qoXD$M3E$;ItE^!6zbdFG(d%^e#&+MBMVmsLJ)5#iDw=Dj(Dq`jseCf3<90+w#K2
zEAM`-$us(_TFVFqCJbdn+0qze--P8np{!CJN~R3Fsx;Y9acjN}VlJ8|r84|Yrt+TP
z#&4ypz-q=pIoc8{qe5f^VB4<j*x+P8(VSjXBVvsBQOeL2&b^U1)v8?EbNLpb06n9*
zETZio#FWfr135_u=eV5je`t%|88endRhiAvsKhWg5P9KYJ=G6m4b<IMdN0_`VD`-6
zp58RgtpybZ?Ft97LbQeYeRN9XOp#GTs126nT6j9boF?+hoswK=uGShzsjm_N>4-dX
zO=q}>uE@yKL)+csS1?_bE3MBO=KPA4X%uDjlH^+H;A;%PG-ad$e?$Q(^h2GpQ`@oh
zcc%nrVmddkUD^s6Z2gjCcy1F74^%d3L1%<j!hIc;1gG={osso#sVn|9t|m|itAX%!
zib}%BCvhC(nOY&E{<7ncY)!4xmb<h8Lom5eYHuDp#CDz<fivY=FJu@PjwU20C8$7Z
zR|vyVSnkJ&W;}~ee`3^5juD)8!)8}-UL`FE5u+tkS=FT=ys*%6r=zMcHb}B;NygT`
z)puF}MX%hFDs1Df?#8aX(H%|L))soD&WKhI!OUz$0m^v`9sPQWj$VIPN5Y1*Fl>x=
z9|JM&XEf9sNB{L6xQAn-g@6&6_(YNJ2*kmVg}G9Cf)ysXf60KwxxCE%Ltfhfxu!ox
z{h^|TIngS>h|8G#$bkY`BJUiRBGLVRtdI2wCl@47>#IrwP$T6$>z72ixHn6v`?%ty
zUw1+e)ghDZgl{$N-z2c6zmi%bnCc<QCp7;UEGRPG$BFFVL%Ek9>Slj5N=Vh{iaJQA
zhgMy;rBrn;e?jW$Ah)*KdPd#o+G<9peXV8OYHJxgNCU6KXkn)X%XHK+cQ+7-f;mKQ
zn9lG|G_X3O{i~0Z3l7Kr4NDEXp`<U)Sq4swb2@>`U6y`lPA^}2e8DeMMPZ{Xhf^$H
z*~I<8#AvU^7l2gJAd2MZk1{IB4QEKS7^2=_A3S>Fe?d==$114n3GR&<Q@#ql`rQbZ
z?mGi+FCN7E@xd}^%1XZh&b*X!0uh#tKif?C-(cm!riZ8O2_$QwU9@WEXUF=Xn#h1U
zz7QcPNddWnIWoZ6L7e6ZL0lU-Vszf*yUr0#O2)aV!coeIaumBDq_F0he4Z!roNR4@
z;UJKPe??UmjO!?Q3C;~I0+un&uvef_)&8o$dO7<>(jyYG8`(?V3k0WNw<XDyI?Pub
zb;R$2**zsmRcfD6K|UJOG#mC>w%d0$EbyybS9+o9$Q2#)A0z`bL{AS751vE_L8Fo!
zYP@>G@^_30E0|cb3pFz-tNw^D)k5i5owaCEf6hXqn|dqga|qVQN(-+6#*zK|v@t+=
zn6{9*qfbhDNi#AbuXutpO$Vw8-IAOTPT%I)T#ga!p&-+V9_?0OTDCgp<!B71>~quK
zHE~74@`MzEH%z(|kbc2ZaP8jR!n&D0&eJ~51?`(Rk@-VQM7F@6!7Bp$xG2e`VIa81
ze~G0MP8JzX!0^D?zV_&7>uGQym3@KZ^4=ISqaJ5t(L*zWb6y)c*9~am?{NXbxW{s<
z0P&^^Ktxu9Az-<gk(${S(WnwAXJ}I466b;dZD;PjW_PBzOc!*Aa`af!LFq=FvF)X<
z&>r=A%2vhr0~f6|;7s)=XN?cakI~vJf7LdEkE$GGs9YI}otqlx+p-f%Bq->SUH+az
z#mD1D1CD72C)$uiu!3c5GXE!;YuXw%uvbwJm0H)2IzH2mvWV4|)@Y1rR+Xf$@8uB@
zxZ#ZbC(B8o)9>qU3>&nNxr$&+rX1o0c$-PyU6hzgZrdP=wT_!4HZz7(zALNBe}DRB
zO8TmezSG8TWImq4w-@y%BU5{2t_cc4?>Va;mc|7;pu|;Dr%>=Z!)5)XL{!5NP48s6
zttDAXC@+Yl)I~X0GMOLWzdxyY7$E%N$SZRk!O)n9WNL0i#b3QQAfWt?-RVZ&wgcY8
zTB&4GNIKz$<@o)GH3GZ^StU#be}o0%0+*s+70_senmzBC=6Y&i-{UNkM7{OCa6El<
z2hDjg(F~PpMhjLY3(GZ)3rP%!o*nhWJq5;VHum%yDz3Z8xMC8|-6J4}tk#-xK^dC8
ze|@SZ(=??N9a}&PD*(ebsckv|{E+qCg<ykuS}>Xm&&8p$)h+aPtQ9|Nf9*XJIFSod
z?!I(QX?Jl!<5{{TGOl`T=z232dG~;jh2WBupw{>vOge9}cFOYXy%I$X(ScpSpLN{j
z0&|X(LO?U<CSr_^ym`{_?aVU8sdyI5;4vU6awBy>`tZRn2m3v__^RpBMKQNDt92zg
z{s=jOc~{#Zr{o=Y{=?XQe`g~V1Hm}uY7RzAPz;qTkD{6_n2?6%@<Z(gxg>W`Sp8`;
zQW0=pbs0L$`?#<4i+#cRYB9GX$z|lMGy^k+xRS4h9-D|IHcFvjVAcW`6^D(_>-<|2
z!W|~{g9h==20gh=e>*j!XTGl=mm^YN>Q-I84JV5Fl&pu9<WI=Qe<6A(Z>Y0JDJC<P
zb0R*~F*!aJEd6BB{3l6yd~yP%Z^!@fP{UHF-OT2Pvol%i?Cdu^r|)hsnO|lW8?KU|
zY!A&_YhW`X@R{TDSg`a=P7I9rH!~fI$B?}B|MqA5|2~QzZ$HrQ)V2iRL!j$`)G+12
z@<A@c5IrzDD6@?ED{B-vWG6RHNBU%*u=FM6Wd(Y+@2Ye{1YkDwXh!oR<Bz^O!ykXn
zt$X@*mjfLFApuR7B^?4HT%->FuNAy6GE8R{1`szpaQ~56A?7b>*&)<aRovFV;lJI0
zme9^v3I_Z}bOsr*k(e?STfsU{o%{kJedaly(L`|=oU)vh<|wTywXG+rujLuLW+<vl
zKgk{qwU?tE0x|>cpp%!_9RfCghiLx?x_b3f9cBlPV|$WxsFC`xqW^SX{lnJKe#pIk
zFI1`5+p+0{xH1B3ZELMR1ZY*Rdw?FfQR3xs&<*8PmhDL9wb__LY*dd$B4DwDk||?W
z<zh%Y=Rm~>J(?8zh~?<$*HbwHoTs=<5xBJgoFD%AY6nyo{|mh>NDd}{JlnNM+3m(q
zPJ>>8(`r;lxMky2mP9bM9V}@%t};nlgSR#mdC1icsv+yRQ-G-KZm33@b?HUg+C&}x
zmfZw=)c1<Pb#PRjT3Xe<sH(e(D_-vMDK5z_l;HL*Q<ARQ#K_Z)s-$O%4Ay$<l5k1O
zKw4qXdqwBQg4=Hx0cDeaW$fz6c)oC}5UVN8AB?FWM6Ax|juVmupgh5hG+bFVW|Twh
z$bzN2wzMgt<5p$t$}}b+tE-sTp-><YWhE49As^)c=_Rqz6EiFzN}9wn0$%`AnvfLa
z$C2kcV|B-7sE)?c@4O>1Z}r+$WWe2{i5kz|LfdbrGn&_m8kVkq1p^nw5Y6VeDC9~X
zl_j353r>_6{qq}+m<n<2h^-%)?94iEk5P+myYvkRfTk=<5zY}dVC6o^C!l%1B61g4
z_>mtP+sH^>(=kcrNk-6=v5Q7rk0>)=jUcxu$*Ew4+-ne(i6r_@WWvD=(TCpdh~~R|
z+S@_Bej@+n86gFKI@s&|_Sdj@-^BjAcCmi*_Wi5VSbP)<+gRfNb1)d}H|)O;_x7IN
z+kfB1Gl(IXw@x@=yf+|R$!KnMY9<_$3BYuH-IsTii7ana%tp}r`7@L#A!BK?5NKBs
zn6XK6_WD{vdeAH-GFgUSUn7!BfI5>R`uzF&x?LJXi@H^RRbKs>aS&5!r41MXE8F58
za--tYgv1g9s$Qw!mgvpfm#@xF-oAVP{J|sR3oZGde!sTrzP`373-vmz=56U7bRYE@
z`kk{}cKLblI+g@X3>JDH_I`_v?ephe9cE;eMvP&JYGb=GisO^U7-Td2wnst*nZY2q
zz@p-@wz?#L@J|2u+=IR)Q)YOX2fByD2X?|c*6y`qD7|R?5JD0!4biaxPf@sJF&dLA
zG^2SXw3CC}@-9epd}7p!hAEC6A7dN8;!5*xDtBB35-;bdJap%oUnZ!3wZRHLtXJ^#
z)w^GgUj!BrfZuQl*YBCP>JP8YV!KxC=2*&gr^V-ghpi>AhcuLjy0MZl>dq5veF;`L
z!Y6NELKvFH#DQ|{#+yGwy^gTItAbOI0>OiAh~Yr;*k0$cGf}YswmN8L)N(fZV^&^C
zF6V)n7GsMCYt#D$BK7GdvX&lT2yHY2Ah&j|iJpsazxGXb|7`NyjQ%^DlB^&lk43S-
z6>y1v|KI-M)29FT;j_WsJ^gnV&-L~0V{}PpLlCu$X+|U#eLj=Zl1#}EJ>CUWy!$wM
z^|7!S032Ic*eh|Q%k{N1X$j)%*M&hk6Dt=rz;OnxyRLWWlVpAK1U)@~Kk4kW8jtBm
z)a&;egrDl{8_zS32xCc7JK?R<VU76vaJe*ph~JhopDv~fE-Pg(Ij@q7^VKMv(s^p9
z&-|^%{K5pkFtaLe?m7CS!kNmihl>K1E{=XBYCfU7kh3b6k)sh&c~c=rgcI)r7F;Jq
z$0bn~`bMuuIeMfuo-f~=%CZm)tRTsD9378sBw+wzZ*t|HudJno6#%_JLchA2gd4c_
z%3OVKf7O(VnILDKn%<md+jM?kWy{Hx(|<pJp$wm|zNhOx+DTDBns<KG+7#<{t|)0P
z#;Eu2y#MdK*MOxOUHycG|Md2tv$zsxn26Dsd-`!z3e<0_FEUgzE8H5GJLl?e;}84E
zD9=#uKYFNl)>|8==&>~sU?6f|#mUO!@%<X!e{^kMznBi=hZ<<~kxACS0xiGY1v+;&
zox6ujBR%~`ivSM-SiDaROzmyC>YV9nN(!l_%gg6GlqCJKxzHOaR{dLA+@!NMjmFOT
z)m!bT_P+l7IqJ+6483bt`K02gHl}M)c4Gy|oMmG^qU(b^-K>!H%hiJw?7#6WtH;o_
ze@s?7zUBfoC#xSEiBc-8F!wdL6o6v5C4V;Fv^Sv|(mNumGH<6?wLxY;I^e~RT7$ar
zLSNM|y(7)Z?2?o(*sPFOY40D;2l12s-VXZDLHw-0Cy^K~@Q7wqP{Lz*3u`Fx4^%iC
z%p!KwBOe9H<$Jz+IT#Uv2fZc>-Dvgye{SAb9W5-r_(pB)!Gb$NP5VnVaVIaobEbOb
zc`edW*K9uUM{sm<tV{9uN6b-AE#dCvU^igR&}$6M7Vf@9okER?UOaN+BeTKijhJ)w
z{WSRYi>z&UD?x)#Zn43@23~!;FJ6VFf9A?-(5$Fd0K7WSa3!W^mGbMX1>X-Ye|FG=
zOGyzLEZl?<H@rwSjgKB&pwFKHolOP!g{G+2ldu$-a-ytQd&AypW0noDlK#2gfW2Dv
zetQ7pl%u*JbH2{dY;9Rt1v}Ni%tzw`D+|y(B_CG?ui$!(eEvL?Q)yv#-vwMnPcKNa
zIzD3QX+aV-Eo};JrAsYD_^B&ye_^x^M`F6DV3-VOnq$dQZ5u6Uqk|r4!F2q^<agJ7
z3<_IP;}go|qUHkaFN4{PD<ccFV$EoNcoX=6@D$L5AFyKe29j2#c5{AHi$T|%KKwA|
z7k=O$8v>%|YzcT3J6SB%G4MYNJVBqDe5yyh_G<ViPIRCaq&jpEa^x57L&5)o&9D(7
z`K9p_@0f$9E-*U_R`SA1ANWx@=|)7RF19I^!aW2aMt`(n$CmX$1zx!#Bb|^~$7vxV
z(PpZ<S7g-Jmp~>07k^;C6(tiaVc8J9e{m8TjfqF#s&`GX2j=4oHk+|rB5pRLqFona
z1)!de6VNj-%=eQzlt62F8Zhi!HewDK=W)45^(U(rwk4S64eJtG*<?yMTg()Z|NlsE
z3ir%fS9#q}U4PhYXA^k!GW!?1qpMVgGeh(p#IRW5E^1u%4}Z`nG<y1k<VkaGoSo+{
zR%o`oPInxs!QKi@1YT)S%?%hhtIJMMW4qgs7s35*zjkc+x^~Bow*?k$`6iV6J%7LF
zoju>&gd1-9#+EY?i|j^q0zNGm%%VHdYoW_^+EfU*jNeAH*0Qg@b81t+>vcdkqfoiq
zQd<OTi+j6jjw6w*OQp4}*KIjVd%=uYo8Corbt$Lj8sv!TeNA=*d+tyuy_a|=0#biO
z2R5Pk<am-Z`}!56=%y^M&xdfmtlfRw>5T27J&-%Qt84cs7RmJ0$D$;h*U8`N+v55{
zwilK;?>K>2j`JPuMm0nq))Gbk=IL*j%&rPl&^@~<Lcs>pdqwDEDj?pObLFRYT1h!`
zr{-p>v0y!xt;k)kN#`N&aHUsAzRQ<MC;}OOkNC+iFWwu=v*B}4z1sV|5#go#J~3pk
zXYG(Pv9L8yPSLsy8y8Y%lZK~ld{>@VdOLx8SS@5*1l4uiQkKJOl(mBA6*i!6BH6;c
zMuLr+9yehuz4+elxU*GYE1NXh33Ih}|3lsC>Z9vv)V`HMg*t93jYF62v462SvMURJ
zo>E=YcKt7FCV4aazuIMdQ8s{O`CpzMH0}SMKH0yI|9>ZsgWfxD3edXODOhk(@ZHNn
zbV2iU==gGbX?Zj2Af}J(lGD|&=y31AC+aw@Y%I_^s7}C|4J^GQUXVmb<%ghD9^K@I
z&+8!CjZ?e&?7FyjUi(i1h?jdrSHlZ`Z`EmT8?m(5FEc;79cN90Y@Qz*z9tr1d6^ds
z_nS_sg};$*VKaTx5_}n07lXYR|M?RxFNiqFa6;k{g{;KKvLYQ*@Hz>BG8<&o?pftw
zYxeK{p12wQhl{;GGp?2$m%tMIzqjAY|Ml$P@X0;?zl-O(<)`O+&&sXX@Aqqe!b{8x
za?DXr`QKU`tIu{J5B7sF<!cH&lG|QmfqMV%ZF}|p)#;|c%X72yZw!+br-EAM|9f!Q
z%>Q)wY=8g${NKfMy^<&I11Em9GR|3x1am>0uu`}-Q6aCt2f7;|)^^H<+<i^i+N32=
zA#v?pnk~Ga7r{y<0=cbINB$0%UMd16AoVR-P1@|xzTs4RL$+rXqOR7Hs_g|KR()V+
zIUe%}^_Qe70wI4+8j5Iyme2iz)hEAx>Qn)Z*5A86;fs3jMeP6L{k6gVo2@yA!^60(
z`dX{sdW%qA%|@j3K%6wx{mwi%)LE-@Z&vGym$zWGR@+MHewcIigF!@2!tj+b*gXZg
z__-PV=X*(XQGv_kf6w;zn*873@Zg^QyNjnm|9So^8_<6--Tp5QHREUF|FTlUMdOPb
zL9|@@M5CTQgx>0_f<}1OUoXHzL&Fj7ij8L0*$13uH)y!VuwzU!)O(wQ|Kho6_Z+bj
zoi`@r+=fiFk&)wGfSkD{!mJT+>`Mwcooq%b)R|{QTbs-^BaGO5r3(ySR@h_m8JBFf
zp=9(HFSUQ0;r}8Xt&j$K8UEiJJZZ=Oy4U~Q$<x%#2Lk@Ce+x9d^&H$E@WK1L>y7S8
zaT8FyhnBP3xa4c^#rx;(pBv(TC*Xc@nQW&289Zyrf1f?s8{FgnyLdGI$9ak#EiwYw
zUT(bQ)n9C2wcWf_tU19+$n<Nm+_TlxzqkN&g&}{`u^N{5Hb9Gi)$6VmV?J~*wU(@|
zw3LTy8^Al!xV;*W$R7~QWu=<i#y+DR&b+0}3=~>uq3?IFx6r_@;dkLCHwJl|g0-wg
z`X>YnTzb9V4F4+=x@9cDGX4LPXD$8T;lVxqe<#lh=9ED^t(>qu#JoA?xosS4dercy
zU8$GDECLjNAfW%hkN<r)kM<(qZ`h9nry1e=^fGxrF9_(kAss>^@Ujy_yWfo+U|%ez
z+f4k6zZ|uuJN{QD(yoKS<>JHyS5}SLpFv@0qww{$6>%^0I{`M~(G>G={O0gx+}>{W
z=ncyW+CrwJQA95BS1@hS;$?+1$m`;JpU~oaJfj(ZCERllT~NKQ(O!4`Z5{}qu>jQE
z4XNRcMi@1BckJt~?dpZ-HjC!J(}7=>I(>v7o&wSO4(Ai&2-5Y{>_2VwkkGUY83Zi`
z4(?>vy7m&66-T<iK(_CD#n+PlwG;t{m3CYKy%nmFXDj@ojs0IkG;e}kXcuppHnc-~
zIH)IoH2zw}?+Yz&DxrMxx1pE*ZqKdIe>(DM7a6!r{@2d`@@)U!{`+p8FlKK@nO#KY
z>C&rFdm8dzPe$ht;4X;2&H!;YCIfFZ!rb499sVEp+zS5JY2Y`+{|EaAE&H#7!M*+e
zojhUuuQQOloRND0)M@`?m3SOdbT_XB4de@dtM|K@6ElQnGV>71Ua{sE;p!JLSf(d+
zrlJ7yU#*U>zqsM`;f>pf6iA*H%mm9=!e_ar#9bGy83@e<DKBwm%A4OVvl=ukUIdgU
zQ&M+9{kjpr5y2%X;a>cn*0H7<uW!_Z$heYBn+o<tC{)%4k+NEIRN{iXr!&H;I!Ko(
z`*PuM>d15*!yy@&5mC-vKLIZ}e|KG{*s7yxCCN7x+u8Ho*(@^jD3|*#0vvzb?6}{J
z36tv$@U`#7|0&N6=|3&k<qMU-OZ7ibo;BltJRRKg|9A2<2#@t*e>esI?nay|2LEXK
zPOaVD`zRkPk8+hLAGa5pW4RfUr$)N0t=CNaDyxEM&h|z&Z42gqMNiIvCuDOOZoCkF
ziwi=fx(gMsAv2v>%aE+8nOT3sfXu12i4mC|Q`nRYb$DOi+^8(Ls)1#0h4w`OLo=^a
ztD2kL`(FOVo=xb#cuKMvg}9_EwXw|pubuz(;Batn|8pnL7CON~kTT~;Fr*e0T}?@j
zMitFcnom%HlM6f{JdU=|`zhs!R|Tll5ucJQLz9e+6s1D*$qq2Hf?j_T5CAyuah^t7
zC?^wTSoo-bEJh?%7vH~a$LMXI%@NC?rtA_bNQp9<lQ@cBo}QfwR+4B7>7eJoyf{TE
zEqN4AsMv*nRrjNK^k=yX|C$%m$*%mz{N$JUZVhOJlZ&c=+_yY>9P_IpdK{1NMf5lp
zvm$!@|DrAQ3oa?EI68lR`HDwzQL^7jBBGe41n;VHCHp;!w$R&O-@JNv3cw(bT%AKT
zQlGx|f;XN`&i}htM=yVR70=QY+gNh`4-Z@V-+fv9{`}v;vxQFVBBK*0zfc56U1ew;
zF($YualsLG%YSex{Pswvj-OC5twx{`aCVflf3{H_HWaZOVf25YJ|z~67a@Av7=EFO
zOOzz01bz6CWHVKq4|jKU{?BcLu8>NTS;kRxlp|IsNj|E(gwB0E#W_lFjz$D&I(`T7
zDXX#+%~^%6D4&`v_>k~ek3}J`56+yt)lsbLo;eeuv?cDjGC{Am<0#tNLO&3J-qp#Q
zj`J~#{`24ZeI$R#N0HH7^i#@Z_mCjvjOGxo8uk1Ch|bT?6P9z95lDq98CHgHnmQxy
zCu}yWARf8tTj*n~J4_i&YF{A(2WnNMSP<D_6rG(Cf<D-9t@YSVS;FB5{BtG??QR2V
zlnvrMMJY=vxffIpkh8{k)oQ>Hx3<u6&IQgg1SzYc)}Vi>{`}$HtJklNPG6n9Ir{0<
zZ^0?(KyL1+64ws=w?|vv?`<?98M}(lygASvSUL^5+>)7)BmOz3i^p8$;ZduRz$q@t
zj9n6rWFdKUoW$M<n-wf4x!?$M&Jv1+xsvM)&CoZJK?RjWUFBHyhHm?@bnv$1D#I@(
zB?dC2YxsXqfZSloQNOSI)7sJ+`0^2{a?8iFh2Ar?AMeF`Q3L}*M<>TNJ@yoHG$JH7
z?LvO_%YDQdlE@AnAj(lri2O1x*$n0E3b8znqL(bWAf-y!h6J9-f{<w&im3!|bICa4
zI?EfRb4R1OO$3*-t2m0xXXquu8JB1T7jjzw%2j_t0@xF^^Z|_s7pN$4B4}c;cx%F7
zH=W6%XSV3Bk~!>d$LLfAnMiP!&3Cjc0?lwy$mORTtkFrT&fU=432$G&M9t^<KhT?3
zzefEPpJ+--D&+L}Fc#%sj@0pJwd>`gjy~ALH)f%K3j@|)BU}`r(S-9RL?*lb($XeR
zvO#|gq$Fcjk{x*+lN`<%Q+bi)p_sGk;U%Q&2b?GOqQM6{@MlqyOQ4BeaWN~MfY7j2
z<rW?hjXvb!$u`XfkE7^#jLw@<=OG&7jFWTp2<}>{u#VoQ+y2taF(x9@4QSE=^<k$!
zUxees4U4iO=L=ilg0BMpXe`MUF~tI<Ol5zYPDF(>GxT9MD(h3!fvMKM$hIVx<EFcf
z0J*(@pd|E9LrW=C^qpE8eaF&#(s7JwE=slwl-L>Iz^$Z)*B4WwNQS;zYlB>AKG}{X
z`s0MaO=PcAdA}<HjjNj{B?8loq<~4~-L!))DW{^|f)6?RpfZF2TKnx$yzBhj-jRPB
zv8-S>^Li62RHe}~53B&6vMZf=WbL{B+LZie&qDqWXQULGj^3>=k#*ZxX8(IIX!?H*
z_6PU=pLg;!6bQH!bc_>2|7SEIIVVGORN!Pv`up)-s8D{vhv<{mZYUwY!YImbLkpCv
zG8>`*QxrUCF6ZId9`8pr2{S~Od+~q%vv@B`2~SE2IAn<4PYF75wl13DJk5aqB_Otv
zchhK&l8nl~Z~<C8g@1UJOc90)Cqgc-%Sm}DxydP$!)x<Tawa00$o9?05?^Uvs^X-S
zQ~=3Ei!rVt)O^<rOJ;W$b56X2d6uyW>nEeb!_nw4Ie79kF7ioqLFQMiln8&V@0jMn
zy=5orp^8}<@AdZ{Ml($7e8qi4W|(GR)yD+6*gyEMiF_eDYBjI=TU|KEoRHani4y0W
ziWnD#Evr6VR9S|nk$UAKlE~^F`ipmihkhdE`Q)rsbZN#mhzAGp;4g}Rzw)y>{&()z
zHQQK>|Mw3M4-cF8|H-ra_%DBV@@yfwp#2QzlL}8rU!l1ndH^<&__<zn^(+3Jvpm{D
zFEzucDJ9ACx?9C63MfYy{rAyNulr+G&ajXSz?fzv1{g_(OM)(ONhJlyHKR~Sq?aO^
z3nqDx(poC;IEq|@iy<0B(H43G0dEl-BbKFTN;wG51Vg1HB6Il{#5jLMCCjoAPA;7O
zJ8}>hitI2aLe?4VMUuaf2<Arx^EI7O$g>xzRP@>^M2qT%=#L7|CGPG*U<egXCiUa-
z8zxRlBJZLIp)K_Gl9VM)wS=W+<gccTTi(a8LRu_iFTyxNvM?x^qb>A(m1T&06r{{?
zhJJqc8eK_l&s!t}av^`5Oy%V7Xkh^>K^p=$dK`@~CqKV?t)SW@>5#ZgG8RYHKH9%+
zRcHv6K$NT5rn$U*>+<TGBKB1b5gsFx>)*tjoZ-B}SvE(?3rX$?7`!#niB+dmJ)M?S
z<>A_@Q_;c4zEbYU4_;<dNNlP*pug5RS9|7-lPAob!F~XCNpOGqHqYjYk<>foq{=cq
zIOw13nOSaV$5;V*FSoYpk(v*PdAp>x@xGeUWU6IzCXeqG%`(M$OO_bsFKR(li@Vq#
zNDamJMjFC^wZuj?HkEt6MA(=>A?*}sr064J)-gi*FAZ4&a*d0Gl3NSKH8;RDJjGNJ
zy)7X5<k%!02-JVlqWc)i9;<X$@}T29)qR1JRaRsNVFieCG$A=DVdvFa2eVWbEm^Wh
z9lcYzgNu?f$nR)Fz|-76d<9FRRw)k#R~bM_*;(H!q3S{e)mCoFG5?`tRWU?Q4-XHX
zL}_l!#?9=(t^mZ(hk7IT(IDQB58@~An-g3nQ{sHh`5=Ghmx&1i&`+5pDr52y&x(xL
zVzYUi<~&yQV_uEN^do%K{JsNF(T*vzC(&l~?(O#)#Ymd-y=cm~ILavI#69=47^2=l
zas}~TJTNt7+1!{yD^R^LV{yh3oYmlaBV4-g47j}*rehhjlFXPO4RGdVAnWHAN}TZV
z23T6Mq6U9_^!hdYZBWZQ#>Dp$<;=MtGkb<Wl=U;0ceh$*{pt<NWevZaw;!S!F`p2*
z1>{^d5d3jY#S0_GRHgzs6%=RmPokuOERD9d6hih3hrlHsDEG8$S)4qbu_7V>jj1bK
zF!{bJ5dZ(#`_t~WZS7GUKCksDaOIpQc8^JU$k2ak-JJXLNzyj!Wbm@np67S7a#Ko#
zB-9ka5}+M5&He2Eg^hs#2@aBFC+#&~Bo>Kb1K8Nu*dvMYG|DZA5^{l2gtDA|TuJaa
zo{P;ZdUm!B96C{2o{yZ;MAqjxS~4lKTSN?~L`-r#<)%3}YxOv*V@${;b~5`r+4`kF
z#7KYs4bCy*v*2k|GWYeWSt$hS1ToPb6lKhar#f=RK)3VV!FR`HNR3nd?tv#P#Bc~i
znlUnmi9;_=rICm_FQ5-WGVM??Z6P4gyZ6BKq{&LHtu)*dOIL|g0U8V`$9r)qX#<%_
zrEDZA`;6v-)axMCQxi8KM6VPtQ828zjWT~4!xJ5hK@ve7Y+)ezF{Lq1R;t|<f<>1x
zap=ruXQVX@{+Ln0MbQ*ZXxWtjS!UdTFcg3(Fo+DrMU)7XpI$(y5EBPPuDsGiD`B|w
zeX@d+yc@nay?iv>N8<kn!}oRp6K`aA3VEeX%W%H95xziUCC)%`#EIiOi^RS$ODliA
z3qBE9#{MqDr?~RLjz-E;oS(^e(lM+ujw-&wbO_9us8vUjg%MZ=K|<uJ1F`_03K=;n
zJ%t(t-Ec)6NGSV$hEpmo0c0kX`+DdxW+az4lbjYDTQnn&W&+bV1-uF1$UtHy)p>X&
zxHaPvCwh@+0M*~h+Io@H)|9Z=J4%05t8U<d6}`MRxzmcZX`MKTUaFcQD^1cErE`*g
z^cLg^3!*8sEshh>J|w5nmd!FXjdK@NjDZv;p?YGPz@czu5t-2Ch2SQP4pl1%RVEO9
z=A*#j(WUZ1aUuav3_oE&-O*h)LE5oNQk{@Vo)vIHEu&0e1MC#v?lAF*+~a>JtRb?w
z|EQ%M?CAAw-ByyDFbt;v7%q~sD%L3IqDR-^0gZl71jdUSyymVo`%}_}%o?cb5)nD^
z-~~~EA5t2ff&n1<{5kma3Efk*)ph>!=diKfGgv2S&%6U&sFw7YeZZ6pwTLb;`Xz8X
z`~}*HvJ9t6?JgR^X{<0@_Aq}&LwoHcpQpenJCMgs+y;(nRaPCNVTpP}Ip;DvlQK9G
z4e4<}<|s9AYbOP0R91wvM{Si__m-kUaEFIQR?M2d0lj^Bj;1*0psDA$CjDs`uW7UQ
z^<M7sb8BZ0hZ;J0M#XC1`|(ii(GWeAc3rS2oX+J%6}SO0j-V9K?AU)@y1UJL9Q*c0
z8$`~|P<zAEUzoM-3|Ut)gnqOflm`C#iuWHeemUPcmTJ`)7+k?qEB;0cnMx6YxE~9S
z42wMjM`OfLBrt+a2`%KhP8U@331R{YhI7TbgYgJS#R4-7#)Rn<E2BaN`dOMHoL-Wg
zrl9AQtCA4T)g97+vTuJhGp|TW#HkdDi@ab1V`?}-Jrb*0kt!v!yuMSxY?5>ittW!-
z-bYdVtH4RVz)R6ViUlVc<twmRR>o6O>{jH-3Qh6|<^~k}_sgliAF4)|q&#M(SusY3
z2M0?ne8NkR79Jjb`--R`mVOsjjcSGCqgP}w5X^>g@&yXbX@Y-qO}_<0BUp=+@RgC%
zozfUZDJOyc0)~!RjxY7B7)gR;wzDLfirwxz#+bGdVS+RWaKwEG<S(%;6-GlwXMBj3
zI7$`ub$e1`p>Hx^P`{C!6gLGBzoKT}WHc82>N}$D8BGd~Qi|q9lt(GY!2V@9y(BS?
z4Oj}CMU=-a;1GX?z7Z=yavX02OtrtEJPfqCW>#ASMkO36t$YA#ZH|)C00%Cf;E2b`
ziCJV28G%sCZG|vRvBaHO$_qKoz+m*>cx9h0PDM2i!n8T8*tK(@ocofhNycg)5(yPK
z)}o&Y=26As=y#f8572K*Fvb-IQ*#zDCS4A(Ok9$I?C^g)5)3uUG588dJW!@$;@U5B
zb+4S^A_?Ix+mka6bXnZ}#3T{8(4#XvD;2jcOwx3Xrc<18HoBtug}70$kw66TPoVn=
zB%FZ-=V+imp2N4N<tIyIwTwQVU*M}TI#ipU+cVU2o@GsOEB`5F5hrX0dX+JHMqg8Y
zu25MOgBgFbqXkHoxZ-cB_~aH_vWjYVz${xT-%W342k7^*SgK5g;@D((O4C^Ck)$9y
zLMgtoSOc+pN;$HaNNIUZ3yz|6B^n`|m0~3{%_FuDGz{1vaW;sq<#u8u#yO5rbQzIE
zOi`#6LV!XCXjgP+?Y~+DaY`^sQ}I9HN|O?=_R4>~BM!e5MM<`Zl$|9|)^ZZjVR&?e
zij<Q?{P{o)T#+EPcQwmpS*X1t>6z&3T+W&3aE2pZ<QPoSH^pT!b2&{CoI6haqn)K(
ztpElXsFfNlT`0!rU@&l9gkiZe8o#tI6Wx&Uh+VKzUZjDg=pPvp7-aEeH1H&~F>KB<
z`uKlSYSu|_s3l2H>~{lY0wxbk<IO0gX@<|!%84B-DFu=akLX;wMIw;h%R(<^;shiq
zcn;KDIsd2q>Yt{D(l!o*p|8?#xUcX+9U~0It2A1YsXXQwp{e3!ptT}Z5TIS#U=q<>
zca#=MvM-LDYG=SYsVm!#D7`QEI%@PD`fz_Y{o)+h9eDw>TN{hf`0_vmNZ`zWa>DVO
z6xe%4e#c|<@IY`ja*?YT1kik6o;p?0pE~VPmXk|y8Hpnv$*mS?PW)29EgSNfn@png
z_lQgrTEyb-ivWtV5zjFm33{t-A>h4I`LW;%PZpG3DD((fI7TONth5^F7de<$QTBhT
zkfTwCr9h4vTasTwttSXA*uXp(>g816@Gy#(Bpvpy6~%ErMngRTvWlu$YH_6IWBl#W
z!9o9~*#*ghOPrJ0$`T9pt1Cr6!;%sV<%~X8t1U0Fzv3xZt0}Q9iKZ7HqKte1ld}8w
zK0#|^S!5(|U<73XF|&cR`r7&F?B##w`x?)D8-1S8351o>Lb7T<_Xk$s1cTJ~L5b{`
z%78;)0>yJY#Y8LCN(GkMPJ#ZcgkQQ(38aydfrv}+VJQ}H{MU*W_sdTRF`UL9#6={z
zG~*F{(?SP$nCG;}K3ql8f`M7@%5Yi_mns;M1gQbY9A`M<R<+}WJl3V*8B>3PvsY23
zI7fMlJbiQiRw{eYPiHS{r<C6uP&-F?-&s3!8M{V=0)QaL;%LLUU_j-oWt5%4%dw%D
zaF>_%?52#WX>k+43y2GWrA^nw&m)H0X=@9(TUA%$LbY&r8(>wS8!^TxUFIm>>8wr`
zLdufl@*sTl2+TcO3|Hj+U&DW;R7ekxkDG>|FU#iA3%DU~%(9BX3O|ETFq{YTg2Z?<
zrOT|~I4~FRk)9D(`k~b?rR@rIw2pp9Myik&Cc3$wt#^u*x9v`#j282_HYWwkM{E)0
zcvLA=H6Ce)(~_IGMpR0j>d55G8foyKr<We6zkl<_K%<oJ|2jDvKwN(sS9x7h$*Kn1
z)nU6@>>he-C{ovDo7Yu+w)x=dv`aEAAQdn;Qg=b0$LNm$NY}=w(1ZvcH0Xf@J`~sp
zItQ>0nD8>=t7jxP*RyToTLs&yxK_n9jv4<xkCs^6O**xQu>M2soFY#9;TVY~0#*R~
zsSv~|5=cj$KxQo;j?sTmIjX=%spX;RKKz1aaExP6oCZOFe#SW`(<lM4+DXAFn~ISS
zF4g-}8kcY7B{~SuPYk1<Pfu#Xa^C=VN(rrFkRzw<ew2U`k&{b&AHGR<Tt%N%Y57ht
z-(xfs@MxP9xVh<2R)>y^)osC|>Is=z)+xY?=#TQAa{rtAmb8CB+_sX0Ug6l5A=E{o
zs&q{ts@_K*TUzlp@$lflX~JA;<FoQacsHD8#c&@DWv$_Ry|B*#%f+fn4o2;wQyQz^
z=8_qwtfIR8p5%=Ghw#OZl=0V!O<l;p0g>f){?f+2o@Z_QZ_5(6Zy&Ap--ic}A3v_f
z|2um8;4c2ltvr99BnegK-a~aq9FIm~fdjSJG@p;+Jeu*~;PFV6+?N$O;RzmAHBjoK
z<&`6fY{@Uj<CSBeS!DnWorpW5eyipB!!deitPF;>Ex9TQ?}4ATU$};^o-g(*OPFN8
zmYlGR(e>WU4v53W@P=dbsS1Jp$~T)&-Rl6#B5`bToU?z>>bZGZtcfV6XINe#hVLuo
zEHlAeTqOj<H&n+~rD$dsaEGDiUiaer?i=n47-U&71XZ`z)XOOV?O~4Rgz<c}t8PFb
z{!+r?-3H@)>9-$)6MaZ%bpmS>$#_oE`LI^#bG_cMygaQrR#6d2CdHLdpCnh&3apjJ
zz~XZ4@vnaj;BXB7ul7w1QNF<W6=4|E;p#3cxrDgya2rbDv{*V@t5)JQzBEL^Tfhdj
zt(+Wrecn;It!j0Y6a(hf?xxq`@o3(A)dY`Mb<D8BD_nDytzmdTANYS+LmHY}aVKTb
z+>*MOD=oOXuxmBHAwO$Un=aBI`|LgGRaiU0>j!^kUvN!1!Bn;t@WKA{^d~*9{o$^`
z-$aY_<3VfFhT?(O1^g9MyA9aAU+QmtTUTT3`l!?&*J}g1L#Dp~GW8&)6>(T6N!4CC
za3{qd%VAD$h>Y4&x!yaVbms!ltR{36mz-u9hM+;M!1o(O-@%mN<}_Oyzg{XaS@Upu
zV_1Kb=h3RGFyVOFK8{+uU6_j+vA6k4Un1!f#%_Qx+W!w+5Gmy{0;X)vGTi_XD2~NV
z4oqcenyfmJXF_R$qqHB#W@N`3V*O7qo}pb)AH8_C2bTXbjEtpziE1~j8pz-;BrSw{
zf~@4)*O_`htSCY$O#@gIu+7~5bc5)9!})*yLCiNaa6=Q`gPPky{Z3M@>4~hQU77o{
z#Xcg^LNuz~|GZwes23G>WdM+nU>^;QzM?7$Ks|}JY^j~3*F{9OAFrBZPUV2xD0MGt
z+Q7e9LtPhIs3~I|>&1{j-x#c#X0HWmx#@^Avvtx;(vmczC5`(Hq>*T#jd?7bUiN?9
zjDF?Rt!>KZn{|&i-JD-+Kl<kR#t<De4r_xe?XPbX-i^>%iGaH>+8<d8j2}Q^Nz(a9
zO8rJoSi4abdt>#%kHDQmr=beME(-mh-QC@H2f=sm|FO5)`(NhoE9>vr`g>vhy|n&j
z_ItMXzy3JbyXVeu1rvr~rre0MYYu<nT@?I&68!HE@6{g%!FM0te{=7T{}YB`2OMBY
z)r%5<egiD8NIG`|4{o^o`|N9Np|$pADP4YK1JcDljkQXKH_F1%b$7QkKbx#~j0u>P
zwf|(LY-33}rAzS3lrTp*mbPt{yH~GKbY1UyUhVn`bWQ1dIi88qJ0nXWr1pRIsN4YS
zUjG_qT`<)oU6ZW-M+bLNQAjk`pc^w;9uO-g4F6ULa?6M`U{7g`8~JzS;~`p#mQwK2
z3$O3c0Z5#8$rvj8*_her>e7eAOvNGsX~L{XW+X{~QxyfJD`Q{o>4q?GOE^;+kFGU!
zKhi6d&~$D^3rSW;G*eO;lv01?NUFW8Be{3MunG2a>jbuL9&-Y2Fj{Tjy77o%oGRKe
zQ{j~>!;L1i;3&mchS~yV<rqb=@<Oi7hV3Mi>S=YG6&M*M(n$uQi8I`BbGm_9te6Sk
z=rqnFl8S2$;r_8BWehee1OiHrH#wcRJuAzC;}4uHv6-0lsL@-plmdUBR0-M&?p)!D
z7Huy2^AMb9%E{$TPL%B6FECRuu=S?qf8(4Ynxm!IQqu)VVmUqi&ggAVN2_AMly2RM
zk~v>@Li^w0;4ifRP29L^P1JSAD`Qs52s7Z|*lf0=Wt-Itp5cWKD_@k;-f)Z#yjRh!
z8yNZ5M|R_dK!uj<gyDbr8bK@@=g-TBI|db%Ps-Vhd97N^4c##)S5;&P54-q#zidl;
zBy`Sz6*bLoVU41E4rxYM2xi7nK4-=`_I?oD-$x+IyMKXKV<{cEkJu{Z(Z@A)j^&Jf
zYLM7f!*Q-Ny5<<7>q+fODBo2r*jfa7*A|iQgHl+9D!D-c-7SAexv$fO3ZJ@G2fgll
z9;>HTILfuSv9b0O#Bcj{yOHp*8i%%XW4?t9FMzNrLLURiTTaV}6lhr_oPbwuX|Sln
z`F^E)_SPilu9nk|r=&#FwK@Aja%ns8a3@-rK*UnYt~DI?xFAOq*g;<7K=wjf4U@bn
zwDKPKTM;E-EQ^1lEQ1kj8{S&5<^BL$84}BI*INd!E$DN%L6gt?09uT=%;2RoqZ0e=
z4iFbT$O!LX&QIg}Or~E2bCJez`YEV2P~#F<9csmdzbEI*P)QkNT3g%{mbzWizm5UE
z40%#BzVEd6lGQf19_bOdySL>?L$QX1@+_FCVmbTu9$SC!SmM{TTJy5QZG&k&L%KAt
z4H3<^9L@Yo8>u@n&3jl?s=!vYVCj%=tr9SO+w`**zr8=a-T?8p0&^`ud?(PSG&bJf
z#(ecU<gSa9&DOLh6FWuKsT}kfoGew~d)tzAB6;bYZa>?xN_?wq5iNr_IUFl?`i&SO
zu0Q!d+$4XPJ&1-$XwZqv&t9Kbk^x$%vSl>3k}C9`O>NF3;FNXIi&Jre$r!$!)7U1R
z?ID@n^p@d4C7m&1!=a1HDs11MY1AsK#YTfxb#HvMo-NVQHCjtx-|y0GO82z=N4+lL
zO@pj5Q{|w$Z2wVT1kq26hYYmUZPeB_2*<eXCP#nK_;s6JG*$wa-j<%C4vJ)@n=<G8
z(duI>HeAk@AlYzVjvbDOjYU$V-4~|jRBR3sZ>INhUT@6es~qw=aN7$HwY}h%qx&;y
zbvL^s-MsIaU!Pa)*e_LblL@V(0m?)LWd!6X*S59I+g7VZqvhr^T4zLk(k9)8q};2!
zlInliFJ?;a%*~C_9KWi&3(iWYJv&(T?SbASaD)&3uOxVcZ}=@GJA+6-sjfg0P^f1x
z2`JkZPy#gvl|X2nz!Ip{9v31JZ-AjtPv5(h_-K8^{7MeOCPOfvg@jY0nfB@#GUgH2
z*uG!)EJ6CQjd&`VxQtVkyUgTT>-OwMH#vVjijm&Z^!WV9oB|v9l=Vj<KQkquT6Y-V
z=d{^3yKN{sp9`lbqgf#cf5Y%d`j=b(R_|V?<XWD-*F^vathENz9Lc9`G){OElH*Nj
zqJK0cOlu9L>n_uy=V}wJCwA=|t!XwICS;5Ew@U8Nb?y`W@}}NhDDEy4zPfi8iduiE
zy9>qLg~BayccHkuQ0TXJ7mB+Jg{RfK3&q`q!aE~h=t8mO$gVz}MDI1S;Y!FQPBCMr
zIh}MH$GudgQ6`G7XJOVbEm2JR_kX5~Zw&w)9=uyYCrvxIW<v}`_vJahwk7e6nB4X?
zwXNfSv%bBjrL&b!f4gzL#pL#d;*@{pTxY!0`>gNOtYyNdGP#{z7dV{}ZmYm0G>ZQf
zB~d!X`HR!u@EIr27pH(-jFEX-I(IW`g~h$|rPa$;SKJ2w90=bTBsl9mkQb*YmnqR8
zUrs`=RF*`&Tigly6B)jxG{$S;oK827bWI4NLdDqx3tL^(*Q(gfT9T>+?VW!VTcwu2
zQ8Q?j7pOmSr7<Mr2T{xmlWAV(7us&v&uOF0d*_sinqGIS8bs^t&F!9A3fQflS_`^P
zFmh>vmc}x&q~B(_FO=IN6Wykt>lky2`Pj$~5~c<Ozda|yJD6?Qa*DO-8S1%u<ZisG
z-of+<OpW^An``a&iqc_ft$}|9ZoMwYac?c(%x*B3PMhl>iT!jSjMIl0?b|j^wy~yf
z#Bff2v0?Wr*<Gr=#LYxN=Pi+iYWMq>P3|LqZc^McSb`~E4QJ!HDT1TBn3uON&u^U~
zw;!@?gD|H`DF~@8_g6)e`)<-3-&8&LYQf~6;{;DRt$V=L(22$Zk7R#oSd5Iu>ejdP
zgtF@;i{UiEc>{k~+va82b-I@e?(IFAfzYh3cdfCcsvyb>tsB_F;4>PZq@0}eh2m6n
znQ{_nxO-l7{7$J_6FY<$IdsOs{UOTZnrNzz`>H*Vw=|;(ov;3lyT_!<q6@sT)$dt#
ztX-pPKrh+)d6wfSeoB8+#`B2uiGXC_Vo+7gw6428^7S|1Skq@^8GSszz*l1BxHakf
zXee&$Kcy_<gv~(ZBVIz-TC?FdwFuFj_Bs(8@BOGnTfkco$lJ>%W*7At+EQ>Nv$3Ah
z*OZ?tA9ykU`tOr;brr3K@7IFYUA!%^BNc4o)5S{&<GeNBK)Zj<Ugv*b-5|QPQ&Jmo
zo#P%(J!M%BOA3xNB%Qa%72HfN)l1USDIn=F9YE}x`|2;v=`#sU5Hw&^O?f3_l5ely
zXN2ViH2<$6p7%fqac0M+5}H7*8x>G4qmMtO(Pc!ER-(3<s$fadlWjEJ1J9Z)raG*o
zCK%z5cv`5ODgA$vx!t_Snw@~S6KBe@9wNdx6`i6u;?Z@qky?-~xIgmy`k{?F1>qY>
zu*K-2Ife)<-A%70iUyU=D;l@)Hea6#2i9iuiRiV_1d3gQrcbQM=)9Ut{QCO(o*7y;
z@AZZ?K>sNtv8ganQG#<9(q)t(nxm9<Ytq)*PV<CLTEc(4S3&&&idTqE-v}6M*$Sw@
zR%>X5?B&(fWq7(jkwR7{bXjxUCJ{`JxCb{f@;_~Oks>9(6|O^qp3AQ>I)@Ks8j~EM
zW_0PB=m_;*<c)&8_dkA?QFewC8g=t~uV_j*%^8xxrCvoDnl7aIhF}3t-<-dd96$Q$
z?By3G{r-PMtY*YP4nwxwP|DzrGSuicqdWS87jHcxV)N*>YFW_k@YBcH$BMVHF2KD4
z>$gE~y12eY*yhu{UJ$xYW8_vtWH4nF`%{^?Zhi7w43qm%p=O4p7KOH8oGuLu!cf6v
z>g|(0u~FI>UGPBs`8JZ?u4Ad*0O48=lCoueS+IXnn%1rhw-kA0O*#7w$0*;BzwCk5
zuwc(`A!BO~=NEUoG5&oXE%6o2FS@s!SGf;Pji*}=5V@T*UIVv@soxe)@-5ikRd4rA
z(_S0Sb%e~9Vuhwra!TWqf>SmXSLRMU`B~M1iP!Zy`QV$zmm6H(98c+TiPO0CM%kbV
zZ)<;8I{kKdC2w@|*XQ)L+wM#KPH8OZNB4>K2Kp+kzzb%%^p_FT0KHrpNkT3#ic=;>
zg=h|O@m^yN^sO&1Fp&R#9{la%@L&YV8km)FSiiA@u#F5KGJ5^y?ep`Hf8>Ab_Z%D?
z96WmP0RBHXIH>-Ae0+5Hx5EdIA3lEY@WFrM$47rVI68WKbnrKH(6jw(Jq6=Y{<ni`
z_f;L-pX50V(GOT=X^1jNVFqaS)7eYGY34<ms#x*NC_mVE@aa>4$P9%)M@fNMsLbX=
zMWN8=&rkw<9nd|9EIEEsD-E_<qAWsX=@4vc<=X}4*{4sUqkGl5JP~Esr%wo{qQ8If
zX!Plm><ZdNpFe;4BpWMxkVOa8KNE&UA5)$5VW@o#h6ZHqssmP*&>sGni96EkH_x7b
zIDK>W_Q}27i(-POJVA5JQ4pB49Y_ozohC($(a;HNXo?I`h(3Qt0Y$$unhKzw3_pb|
z!_yEPs^1;F54E4f=b`qEV9hP-xc+~#;k^pHFHS4aLW<t4zzm$Q0GIKI7c4ZPtHnF@
z<MR*znl31;@OU)3r@$KDGxOQ7G`4R~+wvfU1eF@27aT3472?qaMiH9fE3_nO!7WzP
zZc=#|2~I>SA48j@{x>bqG)mExN%1SkDHvL7yWGDvDzM8b3a<Jt@cnXu&!2yv{ruvo
zXN{r7O+e`h0}28oEFXUQH2m~Q?dV;S#`q)B7-73O>FtaT_F%(?uxsVs9DerTNjbW)
z*xr@phY4uh)la2I+l$j4+xqm)vk$LNUOlhOVMgOkw@HGAQI>_GwLHZfLsoxL>Pc%G
zvig3#DoGg^b115ZXE?zT!y$hd;(q=-Y}}Pg%p*|eingu!9sW!h;d+`6j~<5y;X!!V
zGRfM6ZbggSJ~;%Fp{H!4nG)>>Gn!vTd5rGqg+R@ajK4jwN&1&QQ2%7lCj8%r1x_-Y
zvyf*=pFTSHzXy+wk1G7%@uS1Xcl_UNJfA*|zCo8{Ife{EGm>CI44;22#k5Qpc#OUo
z0Yx2sGkE?n1JjqP7#>o+4OF=Rfmp^*%Yw3qxPhYZDbxkBrFXZT;0^tOcwVGa^ynD=
zB+K(+HX|R=Fc?-iISJxZrS>*GG^TnR{0Ganp*$Boh=DLP!P7_(Hb$2i{oBx7<#0xD
z5;I8A4&r4ktRM{SPF8;=D1RC)1sfn3xV>=jVuo@_pk*WGNP?MD`I$JnB1r;au$X|8
z32voG5(RDh?3O37o?(kQuV&5D6W92?&!mgfRsDSr1~7ioe^pBu%~Z%nst1{b(|Nfj
za9K`LK10L5v*7P+SZPak+8@XKe>#|FEveWmmpEsTqP`T~n=OBXz|OX7X`yJjuGR6_
zQ!W4gS#|jb%5j#6qj&g^AsT)duD_Y+a!FGOChGuG7Lsr-aIy^9LLMUH=96CyEtH)%
z6w-bm$_`VP4rJtiHRh8n)5HG!c~EDT)G`1pA^HRTR#1*BW3JbdAjH9BB`a#&(Gewl
zbEeIv`^{Q)aDjgp4uMTA(^#^Jp1PV%bVp!sFCP|HNxVPzT<75IoQtoU$dg+vREA5H
zgJQSy2C~=GU}}%mq71reBM$A=K*R2TCMQ7qxJMaL_}DQ=TAWc<sBiUD%JxV)4==uz
z=zQqkunLOPc+ww&ES`9K2cgT;D2pZ}A)H_qo}9i=rC5LXW5m!<27?@39*#~u_R3WX
zY)ZG%X;W%~c~l!_ZNw)aJ*Dzs5l60*KhIn(dN3#I3gSV~S{7GRsJjFVG4LH^@>UdB
zgR1_0JN(}!{J&A9hpTAW;|9>d{~sP6KCbZp4-W76|J!*g$S#-G7UY)1VT>*h2Nxub
z$E8KoKudoV#sh>p4k}k(G(hT%9D{%j;P6&U%*p=;N=X{yl%ofwP*?H+4*0fS5z1N0
z$+9<2|2tYHP0cDYgGwUOaRgg3jDemIr_gGdjL{#e`Fj#l!8X$+;gtcDy1o)11+K36
zM|psK`aE>TP!*})yTGe`bWf%Zv*hrlVTq~$CDDK9&tvpQV5UjcYn!Ay>C2z@*@XUU
zuB9LK@1*}nM-Qs>|M=1I@g4oYji;X`@1CIDuhl)j7j=hP>~ad0gci}M%IfXorIEh+
z*ktHMo<@r8_Mb&1=r?rc7~sD2slzfn9jk^sOKL)P$sW{elYx3{i`X0LI3PB3BQ>)F
zgt&h_%}Tl3R2HEC>=;yyN-axKET5ouk+*9Z2*p!|Hjx7?f9o=}L75*AgQ05-4sdc5
zvL{eO*FXdnivbsu-D69`=vRc7;}$Pv^QCILd~`^mvcy|kBdVTBG`+xSJg!)}sGV7T
z-Mp3DM{MYNU8JmtWqnN#oa&V&yW=Zv^|^n>`JdrD$DsJ@-~_t#KL>|Z{m;WkkB{!o
z|J!&J6_3)mdPJY%{7fyc<_0RX&r?F5{D$__?S8CUrj)5C<%?D&g<((O{U3;=+z3kU
zX+Yap3{zP3F3YrnRn}RX>+xQeUlPW<d6S^Ft2Sf<K-oXG4Y0^Qx(8z@Qce;*$v}T^
z1LU$$f&y>MlHJoZ+#YP>2@;6kq&y4O9P7QZrp?p!;p*;L%-6SNGg|EFV2Y}wbQJm$
z?kys))7PfMkN7*O@s6+#Hvibzxm~pf1e!@~hNZ&uiO0(;c2}zn-eRbb%PmzJ6Yo!R
zJR=`%L<#)`pV4JRQkSW4*(_9LwXA>5k%^5_Y1PAeA(#E)St6?5^KwEq7k00S3q#GE
z7;59jP~ZJj0jhyLE1MHjR#~{9incVbP8CnsdC5{Yee|CcvT2^wP=dLT1~-8re&p{3
zF{<AydNh;Opsg~&N*}UzCv}$GOLi(;^_S5%+&y2{vkCv7#gpE$zrS_!{|A4MkE;Ct
zk$82-|KGw>k>YqFPxY44RaMEBgwCTN{<4~*>&Vx%)rRceiaXcMf!3{AO2{77bUkg0
zQr0`VmZ)Tt{jYcvWew6z3Oe`y;X(EOfB5K5|9dM>Uuzui&Gy_Wz0QvI83)~%R=6^#
zFD|H$3QoZ_-JQR;^a7`j7`}h4;FbiW*VzBtlK&k&eq7uCj~*Z1?f=_&){_5SM@m;0
zyw&<q_K$0c(E2b8K@DMVN3>QMil8hG-E5bYb&c%a4a(5AAVqVQeLVqJbJYz6TyBF?
z?Fd%3VO}XcRaf~&v7TGADPfp3?F}V7f~qNrbC6Z7+lLmQKm+YV@Qr^d#nmpsUC#EW
zGgYw4)b=)yW-~ICPU^ln^%iV_1>9h5F;PusrAx`)n#>K#vOLP?n4dxos~MNMUyqw_
z*b&HN=VzE#?6Wf(2iMy190ZNS`V1?d#$ki~tfv3hIRASa0CnmAjt{E-|HqFXKfF8t
zZ{um>>%Z(3y_u1>bTWV4+`7lW!`tQ;zZEo??`Zf)_N<7Ka~@4ET!}QvzK@n9A(%<c
zgeyDnRWEDQhoQc$EYjVhsg+H@otfaq9Hr6cx_OzMY?unIoOjBj$8Vg}*=GH?Y&(uU
zM{!u%{kR8gvrUn8kOk#=)qY$x993CPIi1pEjNU#yb-2fhDu;i}(5_(cckyrjWhf(F
z)ZA!H+=)Gl%T%wtpqqT2O^12o(x@OhIp1t&yC?T%GB{{C2!d8|$2Be@3mnCX)U$u3
z^zk~B%i^M6(-hx2wwFrE-8uM-aqk6n4;}8IT_a;L(Uwjz&e>kMr5oY3axDA7Rs}MQ
z^MFsgN1)1^vfF>^yNK(3|Mbk?w=Vl<+pS-kf%=m_8}a|vb*9f1pq>9eIzBk4>i-@*
zJbZA+|KG-=?ew2obj4#!S0Ow0@fc+p8<l5dnV0A*^9{4ID}6o8zB-qfL+c%BDs-_V
z=^2jV)j6KhG<Hi@zR3zXz9eFKek6?3eD#tn39s}~FW`Tp%-dFPDujByDchu}(AX<H
z?Jvb_1J#k;)bPk8g{qeFpi8YKN2papI*W-(Y1Jvv1g`fPBuy81dclgN^38Rob{Cwh
z(Y^4kn!E5{5yOx*cv$h}75qQ?1F=PP^zacYmaX9X=ceX-x$y+qlH9GS%o+fPi0Y?B
zl1Pgx3-o{Lm+=}y@_3_E)t;N_NWEi-Qzrd#%QEKGwV<x`w4jWiBqU<CnAv)1Q;O^M
zWv7mHub}5%QSEj6V=8rG?poD3uWhkIW2^Ee;_Qqvb7_gM`b9|<)SGcr;~t>vt!zk=
z4Ct1qpbEOo-D=mVl(4Ngb#(J*MNZPW%1cSo`HO#fO3mx%kVj2$6IM-e4YKlcI=j3%
z4=k$LzdGqG>n5;pz&-z%<(M&-65D`$x)2cfW3%idn&CVWt)my|J_3hnHb(Dyglu_V
zSql}lux<7sgKp2+&vHD&`Nq?Kg~@!u$LR3jpfW3>Pd)iKU)CpW8!OkjcKufGHrKC}
zv}Audp*i8Jr*%{L+NWM5#%aAV1+gV3XezQ@5^Ckzw)-|OuX%({3z#XIa{Q6|+bWUm
z+%4YRi8BHaZoEhdH+cwbj=*_;t-(winyE$PXl4F_@^)nh1e40brgqYr(Kv8AQkU3N
z35tmO31viF8_?&^<Idtdnu8*;(v#q+w3dINyU)y&uC!HKyV``Q%oOfmaeC>}iiXuY
zJaX%KPE3TNe9r2vDYKg0MZ^SoYlZJ5pEI4IDwvT3Lr4$G_tvQnQHgOJ#3VP>t5h{W
zL12}8GQxc7$a!kRsEyXSqpSg*%)1j5xwvL{z$(8#sRg3_?%=!QQ81E4`hwUV{-l2y
zQV(opaFi$FPuZBK%NismTTnB$HNazPc3@*G@;m9D+`1K$3OQ1zeDw@!9AqaL6{79d
zZlvhdiCTAC+G&Qo+p{_9kvl6&QVyjm3<lgaPr)thI$Nm~DeX*6zWN=ARBxks9viO&
zl~;{N&L-<>WQ|Qnbrnj_N!4*Ol_!7EAJsUePVmUqQ>xaUb11bPE_%97-#q*9;<SQ7
zKuo^RsfUY(c(Z4C=3{F;)`gzR5;axq^^C@q-Ye+mKP$bfWs0teOkQdslWIGq)XSSZ
zqy=GDX`sR7^GW;eZ8-62=XVI_xA%y%3e->DQ8irH8uVj3I!^~wDe(`Z7*c;EF&wD$
z4Nu<P+m(2{_kOIRdOY=MCF^Y^kZjyEbO49@L61h-2j4MpPo?!e`>QQz``^;`w*`cj
zDakO-pEP;$hSd*R5PrQW>pq4m2+}qI94~FIs-vcN=+MTs!EfjGZic(7P2416_@}d%
zUalKYjM*zNxz=&gP|e$?mv4Xbn!_UdhAA03!ADm`IUchFXKdT1Esotm#YUn5>~3^#
z8;7sU(llZ#U6xiAEi0FhOPpfHPIEfJo$QcPy5+FTaTJsO&AP=~+wFUE>2p*0v+&|>
zkT0MbQt{(wzimFaE>WofB?_6J^^&ZZl;zZqdMUAfZ_-4uqxx4*YNda{Ra{TY{B?0c
z&J3-2LD|ZMq%N=X$?7&#gQzsJ9YVP_SzHZ4r#fV=i~Z}`MYPVz8pzv@xH9mB3u$*G
zz54RdOeHd`l+f>e5{AB4&}KwzTz_BDz9`}AuFUvsomEsGZM39ucXxO9;O_434uRkv
zXx!Z)xVr^+*WeZ)xCer}eZzk)&RR2T?)$F0-|pJG>Zz0T+k2a|T70P`{u=l6D8D?@
z-16Ted{N~pDUnPquG^Ug+JGZvqSxhyyk}_9DHi8L^k_RyS_6ZAn`o2$n!s~^p30?N
z(XEFLni9lGRb0&l-ZSx+x)=>r9w`1a{V=09Ld)KhsuMQ02iOkGa0$P626V%}BR|5I
z;Ou_Jq}LBwzr<(Yn+Q=p<N3dw6R`Q)AvSj%D+vGi4Y)Si>~5RNF9KL9<ZCWJscj=b
ztGffm_HV~BsPUwmYrxj126?`6=iLk!SUJ}No)5}v_PrLHtv980{zYUj!O(2gk&ebi
zHQ!OR10(%oiD@<bdxf!mBb~38304otxCi!>#@DOw_)nXqXDE#uQ!Dgp^5yCi#<AD6
zHz;_P<_^Sh7X7p<3>e*kb_ZOTKUPD!o=DqnG*3jvU&{Y?fI~Oujv`qVnvyL~j4bj>
z(3vh1sNg6xk(%vq`(8ZRNLI!h7dPA=u!!~8<76<cbIy<Jlw&oJFm>|!-593=iNf4R
zzW|vEzUQc7d@s_%V9c(sGC%X3@T-WvA4@^E#`+G>ak&E3u&@I{<a2si1bu>IslmJE
zxnEDBK@V4E+#f@`A;n!!sBJgr1&fhxIps($(FZq0)zHfGC1mgiOH)OsQe0z9MCS!<
zh=XX19IE2vt^IPrNAS6_5{Ah$k81HLktqsDE{U~|Y6PgBs?o>&j>Sg!sJLUvMj%o@
zatJ_-N2#z34Bm=Y242pE7cM^+;63IV3n4DKN&a}dBO0Ny32|0_g8N9@K^>g9e1`j2
zX2rQpdXfQIW}H?y*kUNLMkBeB{v7y1-Zcrc9h!1tex)>?vFDVX@;UGV3H%llk>M+Z
zmSD{jvI$|EI<5Dfge8x1;YuEHdpRTPwgfZ?_UBDiOG2kMZdT=~UoJsEk7;L(g-|oD
z*Zti`0H3>pP7o@IaCaAId-7+9vV+p>PUt|LpALnDEM4?zv+kazaq9LZ3-9c2Z!TAa
zICFk2I*Em6xH^PCQiVO&JNYO7AO!r2q*6!WtvL)xBov9-Q?RpXB;T;D3hdH#JOOP*
zTsree)~nAem)ud~wRlnI5#znxgYdJZ`AX{JTnsB<pwP2Fy;NL$;(W}*U+4e0Ua4eF
z5*E`>y9pi!6Am9>97mQA&6fV_3<6`NOg=BxU=Ox|Hu*=HUHk?A6}%h@krxIesWxZ}
zO(czxqfD-0M?jg(G7i;zxc7qy0C@4vKW{Bj$T1Qn(a(YYNr?bF65%J<)Ms!vcWr|1
z9$6cAwx`1klQJ$Vu7Sh|{6pSix@Zf{IxRBYWr!TPzleGPSWq5nio=u9=@4?5HQLky
zw7x`0!Z{YPTkqz=AL<lQ%CN{M<N^I6q>`2MB-!(ZQ(T5jh$8)DCMB^lfLw6DcD=A*
zk#L`Y-^b1K#PjX{%#eUf;+pD(=7RL>4ho&|p8dBi3Cx^1M({W$N3RV&S*^M;UO-;%
zRW@cxM4JzTH^Z&FB%>h-L(~%SYngl2JXU#5VI(_0HTo*8Q&u98=@7gonv>Sb%N%}Z
zP_f%pnPvX2&8;BBw_?EVNfk^7_hoaDRApwXS4OPhr3rVX?l*ER(<<^Aim$?_ACin_
z({z?&GWFeeEooguqm$@eK3xH$9#2VT`Npr54$VkP(Z=yh$KEzyJJJVu6U9uAk={s)
zLCPcXrv;FiGC96%%6sY0gfXx8N78XpUa}~gCEesP8!Hl4q$MEj9LpjXTGcwX0<WfT
z3a_83jv|Zi!Xanb^v0M>Wt+TzQY85c%cRiyH`GtQp$?iqm#NX$`nMc%CndApqFK($
zk7#n}(-!cf9G!`$i^WV+cIh$x;YClY!7l7Z1nO@|`(^mZ;PnC5rSIV-zx&7rRpr&h
zHC%idtck|R88U%_f!=5wKF{}UQ_Oy<J@;rCXv$N;NDhu@mvjrCbC~}uaLvU{DxyUh
zJ2zJ+wkmmADvrK<c>ODW`fSP>2VNeXlSXkLVK#fdg|_^1$H-mDC4%J`nWzmCUS(E(
z;3lR%c+i-(Do*~Nr-67QAO5H)Br-WJ9*q)8rerPNEf7h?E3Ixnv?kn%W#cG^bjf+A
z%nuP<ar^#_w<+Laz$G8IvZ9~OH6E#_&cTq@!a=M)HN<RI;&1qK-^Uv$H8zJCP4{+w
zOJ?;QR4@t>@qW5u0S(m(Vh0P6kd>75SPb7n0JV=RT{Z$LXCJsWQeZA_!PG~5SxrfI
zS$Z<Bz+x?kkH6{^h$q=R1bWlTi$L+N%GUFmCT|!VBlJTS?#WV%&?xbPkS2w9!4pdl
zr3(@yPaNT8>T0+?9Mb=C^n6g(b(F^*c5Kn`BWl_C5l~4(VMFkK+9~gZlKx<{AohcP
z<sPftxucqj60z1K+Gc<;4rX-;*4!Nkw*T=0AoNos9&V6_Aa-{ab?|;bE~h_*l<j4I
zdbh|Llt07*Cs$yCOS!bcgHqXJ(Gy&63}k71n#ra>`Z(~`?xWCD(lIbnD1Gl21vM?P
z3lOxRG+b|zy}?w&Xk4pG-cG7(fcSfC`7Xu}arVP&cQR02g0m^pb1<^C3`}TC34aKn
z(36QeRO~bq(uH}<lkaf~IF-%%uAhQJ_V@Q0KwfuOCoG`ZT0w!6EY}FFwq*QiAwOZF
z)ZZ?`)0B-7K|-n0@&(?xn4`DLzu!vh@;N>Utm-c(QLxi6aQ_N$IW<d=+}c--ivYR^
zBb;<tu#;cMlL#5i6!$vTeE)hgd&+<}t}&$Y?`#!Px8j#usGh$nxkE35DoABtA9hXI
zR8FYmN5K{iqH%a9Vo!ppLhBE5lW(AB4iA$GtD&=4z?}8Ea7>v(kCZ<>gyf0^_Nhg5
zv&Gm&oOg1ADOm{l^Bj|S>pf5D(6RLxO!Wnx#G@nEgL4<^hE3(_9ni-WHDo|nv&??N
zw^j?{eQL0XIFtAt#OYQ0t<{E&60b_M^+p<&7}p$Eq2nA1->BQ1;om!ClGK=BXE3u!
z*(ebq;AB~%?8@M|kLV_7G}LPBGZ>vWF6ihINsa;FHBcs|STceH=X7E?>0)OT4V<#t
z5JI<jV|3X^sqA+mjCJnk`E)=ry9C*N;0g`2oVV!007^3!CJ*+$K_Py;cal^8k8`?6
zXCg4JU_v#1qd_Q^-30s@csN1K%{Y?WCqyW($ZJ{hkM77Dx<kC5XifU3+PPm3nB?(D
zkS0|#BFy*lS^8^W%8;!I4lH63w;Xzt8Em`cz|9o#n(<LQRpV_Ap}c`meT{5om(jJ8
z=p)=cd&GKg<rJu62h9h*_4(XELsLxBKsGMHVltf<cuiu7#vA+@$AL};q)8WiB}6HG
z=iY=1f&0s1yVN2m8TOqGY$>0lGB%!prZNqw0Loz;uHzy`af`+lK0R|W4UE`}e6y@H
zrPeZzW~oSK=vjdT4oN^=R1!Q%b3Ui~IxeY>5ogDvF=xlHSvdud*^)>VTsIyXmEj}W
zG$V@shvZ_6n2)wDCRwf({Nl#RmFW(uu&+0nufH4~tW|~!rqp7n?v15#92fFy<}7h0
z#T&c6H9Sc%S>h)P5}?%!T%?Z^>%oPBPfK!tKtIx8$Jb|0Rs%*$=J@hCGl$`&IrU4}
zF?4&ur|K<7_fQHGS;@ud=Zr=nDc@iiXiibi5y8=A(MQaZ6c)rd<88^y<syD!>AJeU
zh=2OdG?a@Z9XpOHGM$A{Ya|yqDxTV4w@JW|mt*Ly|CI1zq%h*VGE7=LrgBaYDejTV
z;+naN$r@Bo)&Z~r){J5!UAr-hQ!+#TR38A_cPCsnKHBhdvLqhn7|Nbse9k))5a8t>
z@myp{vW))8&D}l8a^~rarOAJKd956MNDs0spj#vI&J{Rc?(j=?XsN}kuU-uqj1Pqw
zhznrU(`(KD%6sJyyO7^(wMZ^H-Bp%_tW=S}ytJ{H1_F)oT#(Y0b1BQ{#gXvZ$_42K
z?1(k{DOFQd2VcSH&f;f=lgY%ivPRW;Yfr|4>`B9|PkMQSOcZh@eQ*?uPIWnbZg#Xn
z&q1(?i)($#dHS5;OFD6jMSC4Y=2YXDFt_r`g)ASkcn-MN;LwpqiA<b*h2+<aqAB7z
zU!0dTu7OdduT@A;7=q;VIU+d}gO5`e!$gR_<ZD&IyT?`goD6V_(KtQ@X7G}=K_m_O
z#2p|=ckL3kMRSgP8t5?}ELOSbrW`|#RCA{GaIhYq_nW@u<`g|UWJFpoiWLmEW(8|4
zStL80azQX<s1$NM^s+XN)MCD15TBI!c;sRaIDkQ2EB*kHGu+5qm@X-83^hr<ENtVu
zdr?eBDRR&}p2?dgiAY)9f|ko_n=~B!0U=3+-3(f#fCkW_0-EGXHd4Ri`j+al%Una4
z3hB^7zQM_ZLH(l-W7|zV$`n7rCleQlkD>7W!h}x3sj-J~jQNy}HVTa%B5Qwz5BH{*
z1ei+f=69B7iuyFh3D=3=k&4}7mo8<__TSX1FD)P=_DV!oo8Rqkw3Wk^yGYAT&e!cK
zj8yGH#cVUeQ8IM>M#Q!$erFC!f=s~|!*$jFRoa>+*B$N%wlP!*Mw@o>B1i<sJ3=Fb
zt?Jt@^sk2_@mpT@@kec>_Kp0BF#@emDxeIIYDuGx>;!oEppgU+k_^P$WUqS8V<NVK
z*BA0f^nT5OQPE|iUV}IWXM`L3HDnFO+y_&<n;(@MEax?YKpHeRgTfDs{5Cnffw7T0
zq@>D`GRkU<6H$%HsY4ybvw~$OMNjm>7Y^z0m^$jW9BACs@e@TjN9H^@?iUv<J`e{P
zvP`*2)jdcG%^A;U>s@UUj6WSxQDgtAn)^x-cRB}WlX`P07rYkj(yfVw^y_RyGUw<Z
znaVpp|EFE5q<XO74a*{3iWjlEFUuGoxAGe}zt6KP+h_X^t=&;y$Oq-PK6r-6J}Fo@
zY7WECsI(4;RCX>?Tn!hc_TgmvA;8~FUW13a*|h5VG&tIbAzjxkp|E>$z)n<MOdHR7
z&lBkjqKCpv43?UhKZ~5QMh9x(98KsgRP_on@9XH^KWw=u-ECDOGe-S_%%W;K4`~Z6
zM)gty*eh#I#nyJG$p_5jXz>LOi1SNHTzVWugVg#|ACljka=G7=Xc@(5Oo4D~qT`bQ
zzQad}#q(rauN&gfGClBtn2eVZ4A!8n&%JqcX41OwiB+k7?q_sM@*l52W>nF4BzzvD
z8!!IwP~N5QP`MLj0p{M?R1L9CCV9p5GkjS|^h9vxC@fde$PBw0R2mGkZT7z~^K7B!
z2j39r;m<Lw*wBxg3NFxZkN_ba7-7Xf6Qu=J$xjA`I?L=VvrXP6WAEXGXUxZJE@Vmu
zrW46@Buxu7mM7xVJW;trsm)R@F`@Jq>>M?5E0@FRR8p_Kndj*Gi{MK6cDJ~RWTpM^
zL2z-EhG4;z>O=^U)WemKZJsW}a(Y%7Tt&GE!QE<6ByO(sPk_I5JfKfyw*1^wNA0>0
zV2-CmIk)|OOe6$)<nwj8LEzQ(;W;TbZtTu0gxeW9i4L3Rc*!kumfS@wtM!9kPFfL*
zhB(oj3bMz*+jbrx&osJUFIl;NdEBXcL&NCE6<EJb{wSQHqiu+Q<?Z20v=ci<bu!L<
z1F6hz2@0(m77*9F0Ao?#u6wZSUCJ?@&1)(&c&DR-sFiW8ur1cT!|G;<n&KUf8BTd8
z>3Jr)*$bDr;h)o#mmHO_(^zafrL-7|uMM{S2EK!NQ7w)Qd((_}nrcC|>zVUex@?t5
zuT%962e19YXyA(Trsv50{K~r2z`evDJWUD@-<x>Vin?~j1Ct~J-y2q{iA?g1eb%}+
z&+N{2?v}S#JJbIS*rv8kS*4=2KkBxg%acydsd?Y=3WE7&>@nsD?1-uK6eu|JA0s02
z%ON<y53kN+^g+S#Kx$9oIw9&OPU!SYY3tkSEEJ9Is-d4u;bR5auB=yz9P;+XVlcYK
z<^;D{M%fM20*}sypwta1FVEpkbQCjX?7~3CwIrokY;H9V%Suwd*?5QK;JM&3eo)e@
z7|I^fP;6vO=-L%rch_I1HTR%gTV4SH*{eV5IYjU)WRu`0h&l4AEeCRrvRW$XkWI{g
zyO<~UQGYpb19SD)XuQZiIU%B9X>pT7xh03t?O3(4fC{FYqJ1NtVWwy=T$_Mhg;A@m
z*%qOdmLX{_QB2`lGP%Zp-;PE>v-S%iRRbDmoz%PN_VxGExHE@esi_B=n%OZi%hv8*
z+<p;tCK)GIp#}k^zlzM{z`E1d!1O(3U1J&;p%NtNjSR7=M4fF}w56_rnVJ4cICbC1
zRXi3_pvx+bwz$zq64-)?6;Ml;dRDJpXeF@n<}aOc=yI(4ol5%v&H#scXF<^sp_a^C
zBtJ=v*0uA*RnD0#N+HT4{n*#hr%WhsZ{ET#{b<48)8Fw?wy}t*&%-;=t>f3x{*B3H
zZKvP5Q|nEX`d`aP&m=gcm7}b%YN>vMGc2DKFsO%Nv_J$6{$l)5`fWPx<J{m@Bav@%
zWBf~cDLL4o8y0>~YnSGI85Q{m1`pqp^neN-z~ze|Qq@9LVX@Jw7A-KT2T>XC(9Qvt
zSwly;P`=n;3>I5cXvJN0ASXRjXv(d$gmQrDm**<uP0OtGhoz($FT^Wmg|I@Q;KrvC
z=!Rxce`wX1O`&H6KE7)N2<6in1b>Z8P&F>0MQX;kxI5V$+J}AFR6#mEtj=ot^))+B
zZBog?KA%1{W0CT{%Ld~z&G&cV!6wB~Ekb5riFb!m`yX=s3mm4^k;zh3y{J?#&$+Jz
z7XHW>w@Ak*7M3XHF~UDJ*m4*jYg0$ffu*R}79Ij#e5^PO1Dh<j6|eVzY52X9W9cSz
z-C`^Vs!YQOg1|QIzYVpX%qz*TY6P%W6ixH}%JOCK9m;YMc$RXI16?yEo=S=G8YQul
z07Pywb7Bv)wi85m*>^|zF<V-Lv|kojW3DnC;aZ+E7h;>=3#$ubM<KtoRo6W&0KfUU
zmKsAf0?pXmf=O$rhxRq~`_bnTQ9ZxQU6;%oixef|+L^9pZAen&#X>pE!c8F-NP`&m
zI?RK#OcUu$d1Feb_|&2$r{YY5TX<GNrGnIhD-J`=XeRd)=2NTnlhbgUoh98;_xV05
z_H)>3^Pva9r)71{-Kl{CJZ3}|fLrcqpNk%^V|Z7T=X()jTJ*8!Ng9lNEE)HayNN5*
ztY%{!xUNm4RUl2A9?Mk~h36s;^um?Yr0M0)f%vkDrc1Q<YR$o@BKw-?H%`e#OKNIs
zG9Hdc_BDjqAK8fpYRho8CVz5Rqn<3o3xm{d>BXq{CX*==M6sJgdneiLfr3Lion}#;
z0%y5#XqJC>sSM6ho-N2wouFZ`UwPeKpW10o*}2{1BljZ0>?y#+p@;Ueh{=yN;Bpg}
zQa~)W<Q59?!SJkp*}MOtm<T}*U&k|U@`J%Bi#`*}kY$<zL&EHH=&8GeD-oxz=5Gi6
z+%S-#>VNz3ktdBKr(#$Fu#VglOE^lgB9@=C6$-JRt)NYXJ1UH8@%R`ax!JOh%`ZsT
zy{!J*&E{q_kmfy`gRJp8HP0njZ)2hpQ<b&pNzC+e#ZQ7du++$wU8!E%H6If%@Nb}x
zQuLV8CmTzrPFiSRgrMu@$UuR$ata<nB4XyuDtDep(!UClhoJKZf|qA=%K8?f-q2;d
z<ut;z=97mK`&!!7KJ@2u-dL`LCTxkac>QjQJN3<;r`*ACLjS5XQ4tlfPHs;Hhy2^Z
z&SRqMamEwWD;k!1)-Yz;HI};*AgJzB1oLERIa{QnPyo^1r;j%7;?eZ8XQJMqI_}qr
zRBRV@TYaw+o}hjMY6}FD>r;F6-jQ8}?~5(B?hqp{Q3~-i@m0UOD<%*r4*PH!jdK&8
z7aT+Q$@0TerKVApPEpWU#fzExFRW--HB<RpFd%YAa?+p=C6JJ@EsQow`Yu<shoDS$
zWAf-S^oL;y@jir^BDAvxaeH3T%!U``7DZt*yWS6!9`x@3A>0ke@)xHyW~Q_*v7TvW
z`y_a3>)}Z`5FR8!jRj5CF2AVK9u{)w3Dgl*FwN}rdFSjTxr$#5<u`Zf8j-(GElR@t
z4El%4)6l7M?2R#8`iEasLz8%ds5kR8eag0arjYtfk<LUG5xIHz*^so>x2cw<x)y)P
z6m;6nX!PR&K%1Ut(5E?S{t4#HyY7h8^;T3*tP~rvES=j1GlgA^X|oOyA+d7XCi0uU
z15!vZs8#e_1VRREeDCYHwfebOsv-~4XcI$y`%Wf9NN#RZK;;wGa`no$FSci%De2$7
zd_DH0)c)2QXD~8Y`)&J3zpbOyk$Z}#l3D%yV5Cjj5kSd-LZh3?Hh>p5G>Yb-g_XEe
z<$CII6lJ8*T6dtkoW>|e85)A!^@7;dN0?BmkR=(C^C|Wiy5vn)va6{rNmP$Q>1L@f
z-E^l;PdJcFW8)mHq>6xG?XNP{@vD8)c-Y0XZHU$CMQNDT!Dn0SJnvUu;>lqudnc{@
z-N|542E3kXcHI+oUYZ!Na2^hyj*qFwTX}OFXWkQqZv{>We-W`$vneu*sZE~Ow5OHY
zm=sn~x6-OH{L+Yca-bu4Xl6HPl#MHnL)iS)VMIP!-4hOKPSPi_yl8Va&sAqRCnnXU
zV*IDJMB%!qwyg7G9iR5Gw`m%DjY9a>P-6@sGT;!RuB;TSPk4eQoIt0v(N`NxdMd7(
zsUWB_c9!Wl?2)@miNh%Mkv8l;eZI`jDs~2IAhFTg?e>)_&P4u}TP{Tj`*eiA4wuN5
zmQ##x2ZG37QvTUyI^6hkM+ZqYnKMptWC@<_Q6iU9ruWGth#p=ON^I_eO|DxEalfb>
z0R-F1z2wxJVlk!=6ipzPewFLWOVQ#<!FQy-?i?>-Qf-P41W@c5l6@(F=%vy)oP_{O
zy8CsLTkBb0>#D#Mi`}1G3XWdEW0dCWJ&0EF*x!iMz4|9uyGZ}v@WK@KpTFZs4qk=J
zXu0+PY?xWm%GI<3%tZkGE|vUn{yMw|9WdKhSU@Y`IKcesF9kh-OA2-9`m0u|m@H5&
zz%jn1g=^IGW_*DtZpU<%eFZiN>4dLBPxF#2fv-h=ANH@HK%)s+b;g_rm^OGNGzB6a
zqg4S1jTRY`m_eziZHSWeH$!RqtRTV!aEK=+YynaJ^4^6oCI%e^_Fju7RKev2JK()M
zZOsgJE$X``(>U`N@e@t|Rz?QW46v<2@`44`ufIJ4#$>DT<X)=HuN-knHJFHW^*rsH
z1ri{WF}}$#;1wgfN*(b<$)MQ;4SN$DTG*Y}49;V0VWR9|A;Vrcu?kiV-HY<KX?Zl%
z#yD&rWNR^%O+GW=m<F%iV^<&gZ31eh{P0+4LFY*4-@sI#^#{Qsa+D$IGmQ-h8#z^#
zGE-Z*S8Q>TO2)4@q~h0tX|C~zQA<h>QTbg;pROt6Yf`$nP&BfVqe|pwoiS=>u2aj{
zQ*iPZ?zg)6u`YGNJ+-wn%oUvN7;U13LmPXS7Ewd6DXXYKJp<^1e+J=Z41pYUi3%Hn
zkLa<hQpmG6xjc`3ku<#m<369)H^Bo^9~)BQYfwB&LIT5eemtp2=M>0=F=6a2nGK6v
zI*@bz(YF036&c1CF>EIPwTV+i>|oLvLjPCuqi_->QQF4-&*6vC>VcNZXWD#g`bgWv
zEtA+#gd<|Yys@~Gk-1@u0HDrQul}AIl-9x-b><<oAhoQ+$Ct<&b|gsDEt~cmA7bG9
zi{<y(xw+zhE<ZWLj7Avspd~!{khKz{*$Nlw>?SV1G{JT^84Y+4F@!f!QJDUtstZg!
z3{d|CbrxyG1jT)X={zioNOozqW{hM{?RJ{AkcvIk6f!Z{sz5_z$p>I<$xK2BW#GwV
z5>pX{dX47sHxa5$P~80u4H2UbN!@R#!_4;o5X93Ix|oKDF;lRh|BaCii4R5d6sYD|
z*)OZJAP|67a7>@V6aTlY-c1kddyq!mAAyd4NqsRxK5*nqjLJTKR&4H+hN*>2OvFQY
z;!?+G0bpE0p1&cvh>C#6N$T}z=K^lU;(KR}5r?Egv{>9bA~&$z`ed9lP?pW@EocaW
zHmiN@>RkW24>ckF>vJE8pszbF=v6yUC0}~GK%t2!q{LSm<ChM8Koiy?htUrEi#62R
zh4eO39`MV(Kw!g;(3zU3!Zm0Gn~T^$0xK0-%$sqDUz|clq7IOfD=v6}yzZ7QKbdEL
zlS@AyagY`ke|hMi9HIS4FA!c{H{FaVFk`&?%*%1;NTph_MLJ)RG8shN7~YY?49`KS
z6bG9PpDdVpn4WM3r|2g8tB%=L%M8xdO>SJD-*?a<5}YHcJPwLgN~Oi&DUfCPOYt}8
z)WnJs(*)|wJpfsU$;M|BjWc5J^NMvWi@F7?=Mq$u_xmKVmTx5>2m|MAxujZNJ7ERg
z+_tZfnTJ$|oLp}Lh#xcIX)Bg}X9b3f+b9g$UP_0lI>v-OE33#0SDkjHo92ZaiExS-
z>OTd$Xv}P1cl%bCnw7u(Rdg>+DSWZ`U7a+#mg*w%UIw5fuQ73Zkf9miz|)H9jdSQG
z@0O)wvVAr-j=rk1k9>#iwJhb%?cgRAv!S1*g6VZ=3rb09#(rdap@3^&Ig@5U$)wP2
z!WwscoyV_WbNHk6P?iBO>T$eC(DI270Z8*#L(Y&0pb+gVB?{>>ellay29KMk*?d_3
zQ>0kSKY)*%1|*6V$wAfEgkLEbuqkOj3UsUUd(sq*>l)z&OjuK;_)t%32t^tD>Qe-_
z6(mcfb`(<Nw~NSJJCqeOtwhdgzIEX_)=rY1v<15wPNW&EF?iBRKI30AiFKtp^msP*
zU}yqAJki9j_1^1j;vTq)KT_#DjiXwBC-8JF{skzfzEOb-Id~0!s7G^n>lEjGbP$XE
zWj-Nm{yK}rKlVp*P|8yh_Q(ZVrp3p-FQN&&Qj(=j<WH~!BNp7jYb#|4T!m2LWVALH
z>h%Ep#k_uF>`(Ho4Ye<w)mr8znK1V3?43WVV9MAWmnpTmxQ-TPFYS6`hw*je6yl9b
z^uU4SjLl3%J_7kzuH)9|q;FdIMOP`45MOFr9)0Rpdn?;2SB<PqwsX}7ihjJ$qiGQ@
zZ=Lf!4_`ak>iluq`UNGxX(+uWV5k2?Vov^RIP30|(_sTluS-2weq5-qP%~@4hgrtk
zAAF0YA%}^$t$E<8?D5<uOY{k&N$Q|b@_`8W+i+6hnVIl0GYZ&%?jJEA->^4Hrgq|O
zSFf@<=M`c^=u~2R<S_-abxid3=Md-MYr>BagY205ps&NLucXoo#zMDm9KPg9w@`Mw
zq~NPH06<#u-cju#y;n8i^eU*u`uA!<$R;u6MGy6RB5*(Sied2lU~N|G_>op?N(uyD
zl|t8=oc`>1GYQ{oFsji;wkzbn2f-#V-hjr&#=M?EPKRn#O!E8c9EXy*^Ca9|Pi^5C
z3@p>C6vNIcTPzAwVgkm$MD<X8i$;IrgklfccXdOg7)|I$s=mWGu0BJSQpLGU&W8}B
zeEY#r6>q>Y7loej7W9W^TF4aH=r7O@ztT~*0FYf6F7PN<6>fs@rUi2O!{}tdXNd_X
z&!w}w{vzPEh>yNld|<zmz7oq9A&jh^>Xc?YtP&AVXVS`dR(CN<K+}vtv1G6hZ48Ep
zf>E}s8<K%FeKX^x)~Mscx6tL_AT~sfWiI2wFK$y&`RCzACA<E0_*{80xDA+U>fYxH
z{$LaT;e^^NbdIX*)4i2j2izPJ9QQSUX;LrYvI;w&0lilEevpz7Z{>p8uDvUGd5IZ4
z3U6nop&`A@UvnZj)CLC5NR_uZ>T-l1r~ZPHdH0E4O|GbLY-=FAzHU^eqa()>O7azC
zlZY#2rNoXwH&j>n89H*YoB=!LVa=^Xs1VRSgiJkNxWdqP_iOkDk}suRBOrlU?h{}J
z0+YUko7@@pUBvsXJsb4CyD#H)2ht{~7hj3;F~gtIejBLDGv%S*4%LNj^0FvJkV=Ey
zYLT64RZchPPXFtZIu!A*RO38G-59!~%Yh+Uwlt+m(&6^qiBH$l5`c8t293##jcGm4
z4#7rvJ><9D{5Ig9<e>3xVaPVn^ZtiezDGVOIF8as(I?DkWX$}li>2@hQ$2)5eohwd
z6Yjm)?Oy(C&f&IfJ!6x^P2Pvrmn`Mi8VZX;%Q+2gYbg41&6Gz{uE<aWq(@I6u$*0(
zVR&&ieWmeYDxyTu1bnZSE4u;QrHc%R&!CX4EyxZi{)Ugg)H2V|$H^~UDFv?B(@))y
zJK9em4N{i47LTNl*vph$Ce~;^1gnCJI$@p^bK|FmQ9D9U<>f%NYCE3!>$L}b>0I%j
zWc+a3Q(Kh^T$bIN1H&dPD1_(IbPOafGmI8?Gd8->mo(9s2QVjAv&ToHjj7zORz0d%
z5w&yv!PZ8;SGa^~$IF!``Pom1M)L;*^Uf^NnG{~4^a_Y}AvYN-toY8AEHU{wR&(ln
zDh)4NuT_<qjke2z<Fy=Z^c7QSR0c-U9OHCJ<ww7lqqT@t+WNd7sA)@I4>^A>)GcpK
z*^*>8g)1|p0QNe^<+LhJ1tR#$wH$oD-<*BdB)`{U_)j!o%^EPoUy$TZY>Pj(=%@+T
z=a`{z@s~1J@o2ElE9Yr$6nVW`1qO>c4AABacM!Je&-cP+T<cXUWu2X3#)Rq}f<*h&
zlZ$pg8ZetCJG~)^bh<LaEJZDFGQBr=*gib7cW-J;0b~XftUoYwHI%)`!cH-(P)!yK
z>ji5If~RaT$Y>{QaUNibBP}m|Her!OB4W#VBHZ3(OTUHeto&HRv=u>lz5rP|b?9sV
zPct71mJ|r%*F%<BjFbJXtry7>2BZ2>N+ZHdWeFcQn{!C!EWTPD?d|9!=Ey|O{HfsU
zeD#|RU^G%E;d<>)Pe|a7{rrMF{2WPV8;PP3Y;VcLb&6lt%gJVS0ApdR`~Y}Q8w{D1
z>K+Z-B!-GK*M4z~(;8e=T<nQU?u`ALW{b#B_GgFP^}*E%JCui@1D&NZOGasRo%Cze
zr4=$z;-OdxwrVA%>R99#ot?ELE$che--%TMNG%zKjSTywT0t6cAWwku$4y;4uJ6Z_
zw;uxIjt;|XEG~?n8=<|cQ;GLy$jz0nx|G_Kv!<$=)DkhJXE!yp3*~RF33d4d<ZVK<
z2Vh->^uIy6)20@#-cHfaGmV@|d+oy)?`f}p`DQ2ZBP*fBH#g66l4Z;5>?acRJCqs?
z@YY%z>rhOO{j9pxsUmP*elF0mT!6!fiko9IB-}h6BjUl9ZI^heK0SBkyEK6kcnn!b
zK&B#cAL;OLuokDS&>7-l-p<{Bf*n}-7p<;6pp_emL<?eM`Sa<&8xroMEk=eHUKU`2
z_O|8L`8R>#P_YvG$mdGZ{vmK^$@5np7zhWqO3r3-PQ4nryr2zHL4H)Tl$v<GgU8kj
zzkRr#T=+(~)$gnHv_pU1svR}Dx)iVR%dwE8tG+VHUal?IzPYbV`;RLzVFONqnn<m|
zWaT~Xy2eF&Z>JJ<|He`J4XRg)&|#~4oYEmr^J$%{!J4;0$28YvweRQmq4|OWXj?b2
zCDej>SpG)|zFlQU*>c6tY*1-7{^Pt<USsvQVp=-Src#<U&z5qU=lVlR{O{uqhE(#4
zX`$UKFrOj^u97B?rwRM?4PURgX>Z?0wzkb+3{4Fotzb?V2GfS`>&pmfEc|ImN{3&x
z`TAq`L`R{Ki+E?)EmQ~~-FUXF07(O>QSbQTLriw?{rPd#dYAWp!j53B%rBUg>IfRW
z?++VJM&L49scO02dZw0XZc+pRLE^XKD;L}Mgx)r3*&M%(2LEbp)Sjq8Dx7=7)Vh>E
z_>|Xq4At@FMlgFF{QHwkcrlSTN}O7$iL``m^E(9jie&4BDQQ>ZA8S^h8{p%+?4%u+
zG<>g-fcdT7lk%C4-qB?Jk7i$%b}K{!HOAJ@d6r<~(iUMc`7i8W&PPn5iXPot3}Sk9
zo*M$NKDq=DKpACMXBGtZ=;|+WA70EJP9c8*FPZy3ma6Ud!L@pg1iLMLY41|wUus6Y
z<b6vKWr?O`YkxC7tXu9+EP=1X(q9ApW~=|4a#Y7za|ZpxX`FZJra9_#zpTqyR<Mgb
z6MlZ!aA7vz|9mmcoN{P*>$4FJSnJm^xTA8cxe9NWeQ4-bG_pDJWQO@931XhgIy!nh
z3cAoYSvTAWYmGXYTN-9Wj`ExNW&P6z_$z-ZO&)eBIh=*)lNwEJegh6WVPGu|Eq;zQ
zB~=sN{aj&NH@d9~IW4{0Itt_$I48(gPF*d+HnEV{94S3{bhrS~F5YGR31(IfH2Ua^
zh=9cg^~sFMpkBOzzU@EX$<ebBS$s`FQvYlwh3l5NGy==)>;L)u!8*Guns*e3Rqz!g
zA{d~$2}+2MzkC2W3Idxvz%m=_=(UNlW!>fdC7Zj+pL(6n%HD~hZ3M&XLDJ$^Y`es4
zhA7a<?eQznNk{YJ5+s~Ndbo%Ux}F!~{#Yy?+8^_J1@YvmY{Y<ctuYhX$*9wuLj>1D
zC0oQ7I<RT~vLGCUtC3YJlV4DX_lvKs&Y<{)FJeb0OOCin0x4<f_<rVstuUsV$jvIX
z*sP7%@><F!2mAu7hwnWGJfolc6&jQUZd?1%12PXUoBpW1-^4@nD|P7^bG`?|A1h<|
zy_u^{bB-VTq?vjS$1>6uUl{DpUJOe8_5+Q|!(lxX+mqVyTf`8@x9T_?R8PW&1@6x}
z-mbMG>3Kvzz)$Z5>?au^qia%B)T-;gc+%}dpgZ?igV|w>bMOWN;}%pMd7N4O2X<!{
zPdKj0RvZH^lkmUnTm&B?5Q|43|BLj$=-k;qq_1D#HU3N!9W!$b2=X_##U8K-zQ0iy
zA>PNoEGENM0aa`&Z)pTLcu(<jMh&BVGj7N)Di%Pk-$gs5=jLaX{nzXNvT_G~Z8zQ*
zK)?D#SnU@0>jF@)vWMnOSal3jG3O<*wCTG+cDhk8c|X*|p>{SJ_|>U!%ZHlA@RP`w
zyu%kiwovJ+I==^V(wnNZc?s@EggNh&`u3+R>P({%{YsvV8TqI8^WI(M>)zeS&l@S@
z5`gxcHhftu6Zg|8@>-8DIy;=P$|Y2sx*dUeODz|Zpv*_-mRz^vmt?hPoN_~_Mt{?z
zw3Xph>~35&>^1kum7j<gMPBZf6_KtUe^gXB_gjEPj$gXeW`g5|S2}@2STKNB)OOU;
z`PAT_<||{2+)Ex+W-Z>Bf>4jih}6NwGe9xRJp-geYoi2C-}gnxB%Hl$%b;HVmp<#g
zdhRox2_#g&A#?WG3<Z~>a1@1fS4j;(#JBQzu%LbI5wZcX(CA_#0Ayv|%s<@pt7yPz
zIESxpFpgDDIbvL6!$Fb}ySqbIWW0DUWI<G={H5T8#a@qx44c4Z=vi&*04X1!Y-Z)r
z!EsmB3WSyY5da$~5){wi&2M1Ok+{6TMH*5t!ZhcZIN<w1%lWkMdQ^Yo5ckn`5O|sj
z5~?`_e7={1`f`s|q(DymHos`b`tNT?4T~Q+N)Zp3Z)rW&#Pu_3sXRN1*G+bR^1Zh)
zWeQ;QyU&C6hqB+t2KEJB07gJX#o+nJ%-de}5a4n@RlA<oE^S?Uc8K?WjcU8jC)cbi
z>$XUnb8M;Z?C{KK^!20JctX$lUH_4PCFnx$G*Vk}vi@s~&6h{Pb^(*RTf>l#HbnoL
z^4$M^)<r7*0whGjy^EjLU5jf_Ygm3RWb!femPD8546e!GppX?^0YFLd&)%<ev-i5>
zagJq}m;~h!EYolK;`}^?taEE)5e1=#727It^5RHA05WA~Udc&Q33M{y)I8zhe!1=$
z_Q>R;c3G&68qeUtO~E?<SKRRFlSOMOT^3B1=!0<N(TAPs!XCK*|9g0}9zHt<XNduM
zTfm&AeVxloQ~t*mG64O6^f-UT@QH-D>hV;eN7kj9%eMK4T!KrnI0=Jx!1bP{?E5I9
zR=XUeid>5-PP9v{gn!YeUMj2FOk#z9E2i1n1+GY=_q#QSfzX(g0aI_E|F=0ohcqb4
zwCx1~9h0XtgV&_RfuZg2o*eQ;UW0@hKaPCwl}p}vi%{Aq3@C9U^;Vj$N3Gy^{U_qb
zqQ8u^>_3++yaMaQSYpb_0Vap_g85bcHnZd*=`W-dPbWB=rChsafQe1L-gFJ>P!pO?
zt9w8gEuuUtRT`@%T<}&TF)KXgNy<K75R<nfCd}k(>$g=>sR>gf8;U7yp1}Sa6pHtO
zla^%$M<+0%IG~=7vnc5Pbs8#Sl2^H-c_E7iUC$U14TxEdaHtk_gg}k6un6J@M_k$>
zlVc7A@}Ji?;X2Qh(Bi(FXxZ%j;h(kU?q=6C7cS>I>;NklL7an7E*()KOPT)ARwXgQ
zr06QWCpY8An>!+_py4?+m^`gp?MS+>-RPP`=|)-L0SYTOS7;LF1hWw#I#4Jp>|63S
zzfGM<c;Zu2ePAfc$cz!jLXG?Xw}q+kh&$t)ZW;9(q8*amIztgQ?8|3zp2TLhhmK!F
z%sF~W-eH7gp%*9YedIPuQ|30!(7cvLv+Jyl@Lg*56B38@c_gKujnn@9CsTwy+}2{V
z!eZbQ2!tP`j}&p$rqX)dk5^wA{}<MGt9I&LM+<Ude`(BPdA|(F25k>Tczuwz-D)0y
z91#MmeES&_>lwgf&q2mUPklPmG#%+=eOSMorkHFM%)RRI{3Qg)i}lDjD}yTKZj7*h
z-KRqTR)dmdy=wia`bIxWP&tod=cYh)x%8j~IBs_d5EA4~pZ3KE&(%U)6oAH1Nr<)Y
z`w~cmI*UKmE|;WdaOt~(x4NH_hoKH{$m8*%;G|+r<V_E+3*L7(2~i*Wt@^Q$E6I;U
zfpTljgE+5U#!al#K@Zf_!kX~Baq2z9mp32XFYXJ}|C=rRb3#S+Dy*LzY6@h{mx1ec
z`RWy;w7s<6NE$fV*;~mN)(>xucTo3uau_T@X4GJ=jo4t9#gub-F2tQ~Z?$d?Vk_?M
zbTxVkqxvNMjb+009_o9{&bTj{{(@qWYpuU`m^oShI{n>dS|094_{q61J_f-EC_0%g
zckgYavPf%20MuH&OxPM4{0M0AN5nkfpS1qnTsQG(piawmkT?HgWnDj-7874%lv{2+
z{v+k{m_lb4skgJ&Tk;-toLs4TDO+I?au-V16@r+z-u*;iKr12DPlKeA<@(~^A47cK
zwu|=#UM~%N-Xvu<yPLrZsG%y{`Y;Jele^n5w-*p|US>Eql?-|ue*=q-1m*Q3lt<Yg
zY||RO-{7Ls|Hhf&{ng`UsC7uT9Lg}>=fU{u9@x8z)^VZ?2R7Ss3Q}j+CR_x4A~X{0
zKSai0y>7M*d<ZTFcbfu28fL-n^%}f2vMnYD>5by6XhY1qKorTL`ZENx?rHPRRIsOi
z&i|pkJXm?F#C-W$$OQ;=o$Y2eTaW2~zhcboM>Flczjru6<^AFiqV{D8(7gGuRVjEc
zBl&^zNj*?bCw8%Yy~~+@a;&|boI1O6LaP@SF7-a8*28#psD{+#o7NB2vzE2~(mtT|
zwZ0ZFgho=LPwwl<0H;EWgUNKGg@8EeLy*E3GuU}uNG8T_=g2^46!*&Nw;Z#Sz4n<B
zA89)I2&(@)D#@+EWr|rSN<A)kw=*pAV$%e<&m)CG(llNp23fuJ9;La#*0D2Z#*iL_
zf4TLYwh2-3T~*#w+gQrzEnuy}zx0gSRy`6JxBQHgp}~*(&&SgFjI8%7cGh?8YosS-
zkM!xO$9@otEl_nT`c<zw6Tjl#6)F1hEQq3V5g#TmyyR9p@NXEhZi~vd8%Zg7uT|Lc
z)xD*vf6uOu-vs4+`c5bOF;h&u<ZnD^Df=qz5}$Q9=!sJs#;bqrtjE-eFXurmUs&&7
zUxiM<LD%M#(OXJe89TNXSjF_fe2sSUVyESubV0#rz69hJI;)n8tSJ~seQVuX8jaoN
zz=CY9`ma4$f|m1AA!?DsYg&(UV{YYzr(ld1`ofvzYvnQErqLK+eu7>Ich}>Z!di^K
z#c^^GJvwqkd?-6*h%B-FVT#c`J6vg(+`MIGkM6zrmZG!t4iKLgg&&>m;{70h8B{EW
zIaj!j>jggg@XmBGMt|&*F#g-dfUNZE@h558y2Ul8<R&u-OmX=8(wZfQN@PMQqW5L|
zv>wzE{*l0mX-Q#=46|$na#4)|y_{SdeH?H22ruvV`F^tFz68SjOw79=Ah9Y4Q2>Oe
z3lL&0U+05b4xNARz9KsvWv*6B<3r(e2K+h?_y#n?py7*#Oo;SbU9$9UnLMviygRwW
zoEL#25*VNR5>Vqwi2uz0_csLg{@8K$&K)20_36pc0^y=4Xj|w^_{SnhA;*oQ7Ru&!
z3%v6UgkpbfLMp=lxhHaCO!x=dOxhekSk+m$-!=9LS;2Gp<l<mZF2SoSyze+F6Jv_J
z0{Slsc<Ae=>%_Ozpo2qi`3!}eQC^$uAFSKn$n)z=b9Y*z9UEfz^h!RG>N)vU-u5(|
z5g%8+o3Tx$M8#uhO0ng-uyl>XC3y+&(A3<8DoXDw&`C|gkAakZyumddgd0fhR(I&G
zYZle!&og;BRpp{Keg-*%)N*I4*<OUAfL`k=a%nTRR!%12q_JVO3`3s3Q$6=|MQ-(v
zTfQS>N-@2^S@1k(DFX7HEyBBhJF=pg;(1#)E&hG^x)39v{jVNWGX)Am%wd`kEakh{
zlz|0#U0q$7g?%D!oijj(o_WOX1TOKnspQH@hPv)8{q)&bR6(IX^|*Q>k21qT0OC7O
zF}#wwQa+nVX6NJrA930R;U6Wp{&Nnlu2E_@*J1a<^7{iQ^4CNx1GZnLu4BIsH&T5C
zS+GhvEm(%xB5*^?(hc#+%SI20J)OS|@s;zDoEMb4ca+e-JfHGK%gw;-=3Jq_F%FQ1
zrflD$zg3$s9Z_B<d`z$`s;$jY0ole__}NKN|8Ib6?f(<rs%*DK701}OrJ6dtTNR;9
zGxP%G3yJtV{Pk&%T|Ftb_>^|OpVBVE>#@(k*HhI$X+D8huc#aX7A6FjeqSw_ZCv1e
zMuRtdKecb$$T_d^+LntJ_^zhdk6+`Cd1Ja@{6ASJQZ^YI-r`v2?E1MFcWGGAEdT|+
z_e7~8I~kJ6HV{)t_H?|HVG{7U$D4;j9p(#l%~8V|X~eFkMq4eWp#C1lCEJ@&7@RVf
zWJ{lj=hVXROf$c4dbLYraX0gw5th+7%z-`nG<5*=={SUrYaNi_%%+?#Y&RTp*B4!I
zNdyb1h*fL)!6wO0Z$ER7p(&%ZbnIm_Ya%Sd2Yl?_PgEaY_PFh2dEb3YmvnpBBFV;l
zx_!Thzx6{^au%;2M4geOBjZ07Pdm#*VgH-2z94)-ai3rq4;5cV#Cl3?EsKQ#_v#c9
zTyz#&#(Rh)6${MMN3{!omy{C)OAHz24MIq?C6-`&{l9Zk!H{kL#iX2E*8W*{jZsW_
zBv``sP}~yjO%~}XXGFRLZ3<^fBGzh}vpqTK7ucm{&!=#WC)-Akg$$TQZcVdC2vwfI
z%Gun#U(68Q7JMg+Z1Yq7gXCF0x5x~%eURwSQ^@E_wJjo|K5}ca<$8;Z=pblJ9x+yr
z(RT`>pbmx%h<?-`O8%0uXH6Ik@gHVOzw_vfT;Nka`R*UgpH1b?q3#STvpaBdnm}6*
zcz@hXqwaE~SGUFnV1IoCH9lT!IPS~tU4gzM)TFNc7NR*cNH+FQ5!zS&vnUMwi0S*i
zc{@GvkReJ%<)Vo00Fhj){NnY%{c!&v7XYgT26sg<k-@w8^N2J`YEPXGEUZf0s0?pE
z?0Alz*`fQNYDtv-`LTvITHeX^(Hn+*LPzq@vZx2=5ZP0B_op~$7;Xrk!>_3u5ndY<
zL4jk9!thprAiU4;(QmR8cnSx23ximHCmX8Y>yZnqjW@5Z4tz;_sjDqWsS}+ZN6ZL^
z24{N0MQh-BUsj|&=ei*#WUSNC*yPH0KM&)|peF4%e*$|gBGvg9<~r$2A4X}*s_5vq
zfzEf#HWAIDw^t=A%sS_Vd!jl>rNkNLs(LLKw!x2$rV${AQz5_Ze6|my>kwl0iq%Oq
ztk!yF2nP!DFapi-(P(thBmF)5@lU#6FD)c{4KM~unoS6U(&rWL_fe9fjrZ3(6@Mzy
zo`QdvXo>qB%EQAC20~j+o#zA8JVlG1SUGM#n3B+uvbrU5*k+KtIwpvvT5;&9Q@`Ii
zO$ZO(Sn0THTRISyhbIFG$_<MNQ2VMw(Fx_Df3x%#^gMN*|EXy#<s>#(a<S8VX7Sab
zooISUp83dzXBWSP^tUm^li;*jlU2OtvPD(Hv?@7fBil<dCK04@B>==re~~OFew#`!
ztHPFj^n>B6{}@rnWN0CG5r{l_q|<pf&P%(=moRb7Ye+Pr-<ts@!RMx@lSRIngRYyc
zL5;xG!Ic=uja7x&5Q^D~zpN2Gu8GUK!&Jgmlg_@pJ-Su=ISem(_GKOJ6eq6+PhD9f
z%_j?44spO%XvDDa7ot!L>0D8R$YYUH@jICr1&ao+T*Lv~h>oBh7IWn~?G^({nW0!G
zMp01J^+4V0PB6gC>XQ}Nn7^%ia)%i@+?zkInQy8ZHEo-XJV90J!$(^BHj8;Les3?=
z`>u@*N;}d>YO+(XyRBp}bY+2_#*}gy$wy?N+E-K0%6yxg)STp+(>oS;@HVaA7(6S4
zD~{(^v}$1c>48T~BI$>E@J4#_Sz{~n;kF2A%KZ*By#nrSB%n)G|9}F}<JH}S!oTqX
zD};RWm)mbnVCrIY&l~e+I=h(}oD9?oqCg!&x221;f;3LEBK8<6E+VBg0t1wSY_>wY
zVLLZ<G@IuiG$brCuW47=fUHGo{Ryq)R)ty^;TDP#6~#<k%}voCk_+%1Ij#dWL(&Z6
z<tim~i-2LgoYOVzJSF-Kr_6&X`{Q^D`MNXiEfXhsw92ScyC8E`Kj9WtE*p8FAtw}x
z56Eq<e(+-OQI#9#Q}dCanL&QxGXECPlOdMhoi!_6L-k$JJ3Y~kL3A7Zrjg%x$wX7`
zsN_J8r|4QrRjIZZIz&&K7frE>->*w-0;iJT4nX})GfYNMg$geHN(kXP+ktU{s9LO+
z6`VDPVMWPOUNa1-lQ?BZpfX{|wt&va7JRhBliz?<wU9H{RHDG$sq&)RgdIT1sSnrW
zaa{`+W@zo;7vbC&pGeI+;2889ZNCM@8BG_w%Uwo7)}Vc`cc@<z?A#+@ErPYXTl>}#
z8F*D{WuX**LD@slZ!#pvQBZD&cd_(D%W@^h?k^kg^8C6R%<+P*y^0`tP_JRF2{C~p
z_SK|i|ID@EK$<pilHE%NV$l@ZvxKN7xf?r7Rh?cTGAI4Juo!bq0jKps+-JGu3w8jn
zh=@=Ogi1XdQtYA=$1o8Uf|9@MD3#eW1;FehtWi-lj*iWi<Q<t5T$X4Ue;7ml94bxV
zf3rB>l~R0ZOpNL>ghzzZV!KJDE}Uhb5mbnWmNxROxg1Z&IV4A2$x3?;Kl4SWGSR+6
zhx|x3r!+JjQ*~gFKeEdjTi^MPKmsG21Jf)AM?*W@JWrm+Qx?zqI|hS(uS9073vi6*
z=sOT5D}%3LgfK@KhlhXblb1-(xZ!i^sd;xCtc;~kp0udOHy~A4UT5mUZ;Uap=Tlh`
zyF$0SE4e%=6;BW|6p!W!TcEu*kfhcKe#oGv)9x{u;<yoHpJ*iKa6wF{19?rk8HA&%
z?m`ZOGix@GGG|{2Qzqv<Qg=|m3S>fUn!d;I^GoP!AronIbCR;@X0l<zaPtzDYKHQF
zH&=Xd@*b=?*sYjpJqk;tF6ONGKLM07Yt6GAm<aFR?(Ob2ngxwFALFG+rG4Y2)b-FD
zP{%2A=?DdybIMB@k&`j#`F89pRPv3O*{meZYh9>m)2EUf?>@2{{0H5X+2^(HfgF&3
zV-r@5oFd2-%VLo>Vqn)$@{vYf$!L=1OejJC>(jP^{eAoGx8HuT!8SXrhJ5OMYe9gc
z=Cj1>uZ+yaoMzdwvKA#dN6hM(Hr$Y{4-iRCGDa5+m9tdQ{Fvt=PWfEu#^WhhwAn1V
zxnO047^a!vB+b=vAsDE3^Oy;9MwRn_obcQw$y({1rBY^0w{F4NF^X04I?YqH4FSzd
zJ|_t$mo)cA<5ZjHT6yl@R_OLKHOo7MCV!s`C^3WMfW=G*S}ws#MPDM~gw4xrsmM8C
zXsou?;|k@EBirmOHG%y4gv7;MF;KfR^J2zka4tMOe4W~n;=xw0)Tnc?|2oxwgz=~%
zYM2d?K-6qumRJ3Jj(tLT#u(DupD-;i-s>77j4xk9gPP+|a2T!!%7oah0TH`DrE)qX
z11Mm>s2%k-&z3qW1p**5q1Uz0Hwfpi&YUF(w}sS<jpsV+DJj{Qm6~#^p=Lt6VdKR#
zHeN9;aJ!R<7g@@3c{G>P9d%BBswMH_h{UXv=@>5qW@-_P7;Hqh-6*CflFcG}AViy=
zY=cyYITM4uZ=VGa2LLCy!J-f!M7yOCO=r%);asPAbvLQ8GUaHWrEr)^HWS14VeTkl
zXQ9S>!IrSVosW^~5F1o<9X=!e;io?1ji{DD@sn}I9O}7ps!W&^nrBRZoH?xefHo8}
zh?O1-X9XC#3CG%K*;vu(nE1C!G85KV7p0mgu=wlZ4gZ5_$)$Z+Y$3-$Gj&qpQqUZl
zSGTI6im_5+K?PA<%35h>3Id}3tqS9-exJP2CvS7EAsni~U$@RqF?4=Y(xO>Q;d){M
z;!N3^1_K}+$dY@8A%Q-Bria+)3)QrOnOY7$74`%i*)zwT6o)vNF66RcHhIwtlhy;v
zoSZ7gu4DpPK}cid7IBk===m}-umK5J3MCyl{D4N38nuAiS9?kea>=rcY`r;FGN-rn
zwl#V9QB=`<)#2Pjs-%`G+>o2QW)}d$^K7ZGlQ5B%YFinW?B6thOIG0n0am@hp*&7m
zmZ-+nQFxh(De_B_P?DtMF$1~K?F(B|i;&Ny50cN`k*!_<@Y4}rpwR3LtHLOTLS_k8
z(nn9hlZd=l^b}~8CRw~-c~>vIBt64U_6#z&PICFSJOg=tJMa?;Rj6@S_o{hyS=kv)
zT~M~(9B-THjXcJGwu-mb?*k7>a#X#j6(^iUN=yo&z|A|9&$CRgXv-Gn9$yYLE`tR5
ziasjg3c{j|DW=%QPjB<1EIYC9y{+Q#0dD+nMZ3}O$g*b|-nO{l?di>Ws+(Tr>|`X5
zK6yE(84;4k7rs2^chm2$lAU6n$E=Vxd4LFWCNFt;k>-<sK{BUV2puS)$z~jP@_%(6
zrEXHP_q~(T#navnQU4$6>+O1;vEC^xQ`>S+5Ayg*vQptymUKK$V^W|ig|TVa($r>$
zyy7t)5KLD&#~QW=P_mrC#(aZ=)NUDSD-MG`N%IL%GLB}?p3tLq2O5`X2!cMzIbm3%
zVC5{8ij3!fZp$sl9SAMDBUC|!Fr(fYYFCrUDXruft-O^SraPf*#&f}BV6-OvK59_l
z57JPd1l3|wQ0M?Tozq#5p>Jgy$9=B{Q|3mgH*YFMNx|)gkZ30=d2KVg(G~k^ZYO!c
zN-BBT`VOqG6p<OcbWP$0v`C{_()Yu?;|8onmDdV?5O)Ab{{Df-AX^7uB750b<|8W7
z7};Dsll6#DmLtZfS(@y?o~!~F{`l?{@JHG<2v(?=@_Ck6o)L(&qGf45(b8GpkUQOq
zT_@Fzf!TXH6sL_n?>0~mChx&`1m-|EFUE*RO_cHFS9=FgB_i?;P2U7LtuCe)`_aLZ
zXctv~SL*onU`J!4*N$-z(YfxNeeTDUGXh*Q44?T@1^U#=$67qhy<OqVKqK#jy^|+L
z)t|NVz@XFkZf<D~5SDVUD}zXHyWzIyOxYP|FX57cK*o6n^e{x|Q4&|wG`II9_$46%
zjgEZ6Mq_m#AqQ4Xb=Aj^?AosNZuPpRRga*5JZto-r+tH7W!1df>*>nD8Pd?!x>lFs
zXtaCHf@UeGquj-(-Mq<uwEs*m!kk^Q(gP2A+6cOg<r6t|paVYazCcu5+$(_KX29aL
zz<ogr-keQv73Z0l?PJzjwP6e(%p7z2R;}z%Rou}5(6wWu3RnQ+M}cCXGlm&m0v}<2
zRXJ%+1fQ{*LU77TP`s5OJ1$tcB$?V4dd1^?+ZYwy$L9RAnKa1O-tO-1AGgVfO;bfl
zi2@|E^eEEmVCF)mq%d?bafMWU2_`O6^j|~Wl%Lf|QL(C_9cWw;0h!_@R?0xNG0!Sf
zcrA5RGPJ$@s^Mx%7t9gpaBU*|-z%Vhb0KLSvmK2rSgAP&ZI&w)K|MnACCPX`QNjmY
z&(6}x6m{ctJZ7<k#ryxhBEQTLYCP*uOr*MZl#&dPoxB@LXK19I=DI(15~6vpmKDuf
zj*NUR3~%Wg-a{)<3+IO&IV>#VXNRz85?N-Q>fwV)L)E7}$(8)4Rez4{)=CC{v`-9x
z+BDbMMIgH9Qm3^vLb9Z}09~G@GFmEiZst#ULU^vRfM-F}$tPkj&LQlctexAm?Oer{
zEF+}wWbp%<1@$+)<``Wl>gI;@w0s#}Xgw2z-K*`5^Da5qA)t*!nKG@@|2rSyiKKR<
zzX0`iX-#nzb&4Bj!0rxA9%a*iZ<7@@e6f?18vJijhl2-`b&WBz58CzKz@}{0)xI+<
zwKn?zBYtfiFS&2@uCR_gxcffkxw*f1%@x7T$9&l0G-suEJSLQ=?vb!T-*nu;>nkxB
zbilAS=LlfQXriS6A|cVIi!ZxEoJrM+<eag@*c55y6IcyYz9Cf9$qcT4CGZD;`|A-B
zB4^RP)kk1dlcHLb7;uEKJZ6Il%T+CwIK@I*q-wA29}fBm@daC&-4ZVLLbWC9B9K;B
zR|q?Qbyhzoa8ZG4c7>%Wb4)CnB9z{cuK$5TqpWy!(9pUKd`SValQ5mpG4r6r9q+zz
z#`9Jc-M7NVkMCaHf*1RL8pFi_K>u6~a^I09@fur6x@-cl;a<F2g0)OJ+~51RClPs>
zmWmc@q9H67VeN8SX4aE{v9A-8jzKZIa8g&iR3%tzQ3ftx6_0_pt|?0#Jpa#s{kOJ&
zGK9>gdPoI`=25%U*(WA50$#6bhGEKVJ1~y6?sw{&coP6>Qm%!6;s>7dQoR<E&I(~d
z{Qyr2Mruw!B~vhHO|z`(6lkpjysZ}h)LDfcPyG&@aQ(V-%__uG&V{yNM56yc|MlM$
z-;jg5Tq-KBF;7Y4^wmfU0C%J?7Rimr*AM6Cr~CF0#Dg?)csrd*!J_G9$qNuTkTawu
zgE=YZd9Kzu+4>$=JlJ-~**uOJOIWgPHrjFHCMaq<cvh*6FL`;9ahiyM0zv%~X6cy4
z%Q$0$zWP~AspbU6X(n0u4gqsU@I9CWykm*pLe`R}nrgj(tnC?E5df~p!POO)@U8+%
zf0sl_7YQvBmqCS_ClSF}%*%9==G9*NJ0HO+)dq*4brys!Xqv$?Tci{g^oI{}R(z;v
z>4(4b(Fb70tc<ZaKjIhzgB`J~@g+4bMUV6YzV6hR^~q~jXSM<6(|p22#ZI-W+zco5
zCDm6oy_F`fUr1|JQ&;K3>yDIFX2aa@e^mE%Ro$T7SW|Tu@U<wat^w)BYO1>cwN*>i
z?-S!sje-@1%s7*ZC7yt-hF~)A-wy57{yPr7(LZ9G4FY!S_P0s;di7&&iO7)b1wq~3
z?F(AFeMwulFKg-cMeN*ME4Mz;_G<fR<Oa52+FtF+F4(yF7H+n}UbDi1su1`_f2h?(
zeX01RQksic|02@S13JcTeR66Hl}(t&qwJC{1u+*8+n?X&icy)D?DHG8U}d1YF}JsP
zi|@xk9y+G7slzSMT99RjbFQpy@Gr}Zp+xK2C)C<NaS!os_+EzbNp$q>RA}o0itVI=
zSb5ZmSYiB0tPPj(1FYEu;CAY8e?0*1LBZui39_rbf~r|ls}9CON5Ovj<jKLI+T`>6
zsP)|&p1<Q<S_Hw%9|bE-xuDZHI;gA-RTJN*852u^=2ZsUu@l+WtVfz8l~=~u-_Aaq
zpS(T}f^tOTVa<R;qx@e%1c&GZRa6SC&#zB#SM5`t5HkXzEdu<;HsXYFe>(sNYz@ox
zyMT~F6vv*46}&pCO?Q9}0f`M*sgGvRJ$qiAx(rJQpG%P@m4Uc1hk%?Bp#DxvW240c
zxCI1NrfXn?`mke#uc+1=ddh_)+NdE=KeXwDF@Nckvnj<Z0xVmUT+uXg^0HC@LB-RP
zmz|Z;BCeG_Iek%CV3OCke+9Km%VPm9wcy}JaAlFL!M2i_2deG>zSb?gp;=gu;<ce3
ztTrcLodyiqlwU$@naZBmS^(--hE-D(4=w;|-GM&1WC|e#od6NgIIU<YFQNX95n$5=
z%a&0^Ewu|EEfKgkJZC%P2QK6}w>}qmbbObhbOYiH8o)coX@YRHe@_7kJ-3ZnNxWk4
z%Nc5=c#eB<BjX{-OFCf#v|tp2KA<QxBS-ZSnkHAThV_B8PPAH1wTV`*oXLg~t&@FP
z^4OW|ej8pl#%b#a(59#Xv{;H7%wj1Vkk$8Ah|iYd9sur>BO%gBPAHiu$`2+S<8cZx
z+C)5M$sA0!A*6}1e+@Pqn;PPgDa@{PAf@kVsg^i=MP6=^mU2!rxRlA1<bsi>Z0oAs
zd7gp2mA<mb$!JNYO2~yxRe{9pZie+71?Cf)I_X;n1Jw}T5F63x<-APu$(il>1cFZL
z*T+{Zo&#=lEo|#d>xa)-ITO_<bud8y&F?|<c0b_93$`5Ee>)b4z+Edsh*4G!$w}V$
zi1S=;7u!bpE>!CzgqDLoaZV7efu~8rT1=84%Td9TBj4(<PrgsD;Lw4qU6Jui@|XWO
zHphsGIVCDn-q6V{;L`*_$1IdQWQ#PG)^HI{7g^GEHdCO&+NztkZ!4IcE5D%M(i~oI
zp}(yoQM5FMf1apbdz+)MGP1LOH4pH<aUxQqw}W-AQSnAg@aoRMx0^K=Bp{x&-e?ka
z{t9*Qo2nyz73lW$U6?&NQ6MBQ-?Us`xI^tSILC#P<nAR#AJ1w~f9tgxlD%j@I*1Mf
zg#cQ{Q)a*9VlNVlI5G<;;WL`%k#>93g=Whr$wh>9e<Lv;kJGE5Z(Id!Q(zFBCtM1>
zMPS1WNpHXB6=6v(c70OkZfi)kXfDqPCDY}oOcS%jgML47ORJ6IFLf@4N}`)zA-n2-
zR3jJ?I!m4&x>D3c$#SG%Wy(<@058V#j7V0_(p(?A+Iqyh1wGhR04os)IR;1N9ypc%
zq8dDfe-6%A%=1JTxk>VjmDR2f2?HyGA$h|!T|^~eMVpQlw<BQpqF!3@r8@9u#lN_a
z&y*xPVb&HoSjjt}(`Ld(^9lYNIsr-s3B#6IsN{K`gHPue<->tH<k#5gDXM8(y-Pgr
z7~#5WQaMFcLUR;~;I(xFj#UX;44jW)#wV*ge?p<+dR=L`R|!vnzmQMMl!LgHQ6a$c
zUhQ8+KDC0UPl|ex>g0D^l`F3b<FKq&zV85xn<@-#NWdsb#f6YmiU^}OCt<?CH2nGh
zzg5!N=Zy2>^EmmuHT^6;FSe8SH2n4F&-r4;{_{VRKj!M6Vq5+DsHJfwKSJCJWMp``
z0(?G~ueAaoe`#jYEd4u@8sI2l0sP7QX};WqMOJO76{tP<Lb)uMCTggT>-EUiOQRim
zY0&Yu1g{=ez4@$`h<&Yod_Lpx1(Tm&OlkQN=H~Nv8ILdUZ|uWy6#SF@TaU+g75t1l
z$*JWsl!_buTw_K*`+R6~*^Sc)gpj~92pUCCwxIf0e+$*|C;al77S)t=j3E%M!9M;}
zIc#-TkEa;$*P7peb-k6x9U)bn5#~oNG)Vg{6WZAybYsS-L@^5N3PsufM_=fm&S%GJ
zevlOG)U-K7(u;~KN98kY0^hGj!70*&#k6cJ@qCdcDGif&GOOaYz&vAY1zlj^6&UVC
zhtUBRe_OcwM<2+haXBk27wdYZs`m;-xcAV;1mSZ~<v{K1(K`H=Y=nkvh{ocsQ;*sL
zuY5c=ASo;1yhD2O_4ejTp2`>1f(7s1RHigDHwpz$ECuxoYgJO8yh;}=2d9{lk6@o<
z`pv0&0a{2r$<L=H6H}fgLvj!x8U2gNyR3fvf52#BS|&{|1`XOvmeHl<cXk7!c`W;C
zPrVa!Fg9|!+*9W+S{+nHVFd3?@PTRwHXgz6V+@9AGdXF%^r{lvyr{sP@#b0++H|=z
zy{ocdfijEdsJH+|7q#FR#aS1l(sfTjOU9@Qs#0m}*{qODvL&Z1*TmS|9912{eVfs>
ze`{&W?Pptu1u{FAuqzr%o!i1`$k=TA3B9T#1RcOar$AV+5_D#H%>0-zl^hBxT=4tt
zm<=VTYU>uC?~jW)=u+@vCTP#TrDG9!_aJFJwE!61k#h-RTN#4AClgX&s*lqCKFSlg
zSkxxY%{*I;f`Owy)efFlXbQ;^H>7}`e{w}hyhK^%`q00|GIvsYyXF?l?IF$A_fRFd
z+N1|~)lAXkqIZ_&>5OL1HG0WFbTOFE8Oqd3zE-pkAo}U_h~QOfsg)LLWy4Ycg^97T
z>#O$P=>~C!x8HJAt1!_3qka(ND3+jMBAEPxAHJleWC<*%6)hM$W~ZG5^kjh1e=HrN
zKfG$SRZUHLZ^vVB^+dv^{(Q&qzNLps%AO)7J#!0={k{gHVfCTX7tLs%j=|ceGFGR;
zh8e>%=(Q<iw?PPTPy02y>V*mIr9(U$X42k#Rz}Rov@~LInrIs8vtJYgalkv$161@J
zJ(XtoaXrL*#vCJ@%2hjX!+<zre`yW%(I+PQKm~**i-^d>{ayRPgidfJVnY1z1%8MD
z9pRupgj#5mF8Qh}bjixmw1q8c3tHkZ=GsaEmSa)uSZ%Kof`NUFB%Po~zoHko@)OPk
z=ufl(nP9U8o^;my{%gm7yjlFuDhuqJx97)ak-U;C`dF9$^~tmSTKvx^fBR4NAL4)B
z$Fmnf3Z7aX2(V2YEsa^H`Yf2q`5}gZPMxT?p&&gI3ZZB76B?H*h?D@~G_@@H=IzVl
z52tV6oj-rHbuk~YSSn^pk}#|+_`URqozX~Z8Cprm$=?Of3o572d!Hgvuo#@_#rxf#
zBNL(Fx1Ldbiw(Q+b1`n$GDdQ8S{n!6N!|HqAi|Fth>%pyMP%>T)jR#;H*lS0@su0O
z@kbiQ;UkOoz^1MAX7Cl4c)9{Ge@Ue=|AuiYg6k~A$1bMDA|~PGjb`z2HH&A*?|wRY
z(K3<H{H>?)CeV3v|M-)c^31_!q=P!B*-wk#9ycbw8rIOsQR~H+FeyG8Yr%%p*<d@L
zzI_Rah-%0K1@Rqhf{gUq-Lal;-XONM(`?6hQL470cRJM*sJMUot=G8$f4%!wXUp||
zN<}Ko1nliUi*}>kXm9v$d%L^FeFp*`JA}5U?|Ky46vW|}mzT6m?f`X<%*<fm94DD;
zP|JMVnx{pTYvlcCW`Yq;jHh7`YTIey_>rUnatA@|)*vLuxtN!%l2UaDF4tepq~0<~
zTEMAukyc@)D4L&bSJ}I&f2>3$&lm<s5dtruK7Rao({w2}*}SV0s#MePwNHM0Zp;6D
zn6j*3rHEwF847+i|F`$#>0Ukm|I@w0rw{z!eLSB&4Zb0ZbT$M-f^nKLMd6>%6k6gb
z8<KAZa7+xo368G{u$r#Nh=thcfi4$n0cb5r4y)pzVAC<!f%+Q4f8@qNC!dv2mdE7j
z0sNWH&fwOb^uk^(Sv7)-H&le$9@I8nl3(UDL+3SG6a*c6|H`m!C@)nHYEVK+&{R=v
z2vp#B!l3ss-k#7>Tj?8vyHt=Z?O*!x&6z3-ar_DvZ%4t&*v~9y&s?2k4Geju9|jQ&
z(-rU<+RZUt5hjCee~0SV1I-&Gc7ESv0(3TX_4gwf%<%c<GhD%F(SnWC&t`<vdwEUZ
zO!)slh!7G0cx_>)o3FR_KfP7xOfOigX>9@(HqvF4gHn4!Z9dIVt(xQd*j%*Z-zI3l
zXHX?77Nhsa9_fAPU4N5dtbMeOx(3Kt0bw>d_Fx!8#qH>Xe~Igd49W4EeBF%Zbi$Hw
zw1npD?3$2@t(9zk&?*FAvrs`x8S?RlP&yg>H!5%3#9wLbL<Z-W`M)hoMH57;T~Z?_
zpUE$CE?LVm#WwXmbS>31xU$H|mgIk<vy4RB<WWl#4mEM@!PI9PC8LG4Ub$hc&D6Em
zR2_R^D|%2Ve|X*L>y{nXj?gCr_0zM)(rP*3TBCM7GTwAid%swuT@q?%@YZ^qIK1w5
zSL3;h1c&IFZhHEUhIHB5K*u^cuTs2R7iCbb6-%he6;o=u9Md$@d0XK1n3tn8Nmz~%
zS@8p=fPt7ij3&LhT<tfm3pe|A)1{bP9nIrv@CPyce}nil5cX9S{Z5?>xm$L!SEs<)
zt~DX)r2fhuO8fEJ0<Qt->p|))DF^5q&c#=mhz)Rl&j{a~CBh6gt+Af8icnkVCpsw1
zY@W%~(TBJWOJIC78^M)}P8WDRNkpqmT8Kfz-m1<acNTD`#XA}h{>@lMb5dZPwll*7
z;@o_|f4W9^9|Lz9Y>6M4*RgS(vNy$V9n}~v+N^rl<yyGWo{f!s1JC~V2pd52gbK09
zXF0C<s(a5<9~iYR2F-D^S06mD`;`?dA9(fN^@v|zt>&6;8)&$!uWzdEI&Rx)`jmGx
z=53De!DCD`991K7k{5Hx?zWYru_QfQPnHVme^cD4(j(C)ZP*?++WT$$x(tQavYGsn
z<`YJ?VxGrTwjLBtHPU#qjjDFNo!BpAOD+rccC47M-i#LSG4t8aHhwty^c(OWAt;SC
z^R7j?sx7mB%oVvoy#Cs`Z^F%KloNdG8i*`-^7Tnn736RuDz&QkeG#e(Z%raqeS08K
ze_x(J;Y=CRUDsl{Wo9~Mx`r)sgQPtAutOeUFumb(^2iEOjheN6j&-br<=MhipY2O5
zQ`yB-Ma;Vvd~5<?-G2GLz)Z(}<;sBB?Z-81u6O6x*pTO~yR=r`rji@CRuY8d=&xti
zxmErAbzU;-+X|Ki*Py1lL*uB5OUQR!f4#ojYKP0J<E(moRg}zJzImRi>_S9zMt|iw
zy~JR6F`pH4iS8&t(`EGymnV5p_g1ZZRL6)azn2@frLi1p4`T1o+l;wp<%A^~w<&YB
z?4#ODs131R)zX+gb&!usK7&&|Y*XXeRTa8?L*zM8huVw-0Q;ao5ll8g?75YCe`E_r
zrw-H0GL@`R-tWWvwe3J-5L&@j@Z{Q{Idyt%Ep+#k%k)OQIrVy7E!7u{`?qGr8jaV>
z-uwOEZSQ}z4{OOY)|n1`js4%=-tLpy{qM8ggNOUydwKNcpm{>J*e{hje?()WB$nlz
zZF^r^4Muc1)Vf!u(9n_>$u+w8e-<w)_5y7ljce!~&sgA^Mqfi!@0(y$>5J?JU*AM#
zFI_&9Jk1l9OL7QT8OC-*wF3;qYCIqSbwiU{;AO-?)B407We^j&WQ&wt3df*CHKpy_
zp>A6@bxg15Ma;n!216sS@2x{7{Mw87;kog1hxC7x=1H1Qn#aI8`hT!@f8f*qgWZE?
z5BA^p^8AC*|L<@OdB?yVl5*!vxwc(jpw{?1Hip1?n&z$;USOSnoYSp-X|5{I1v}QU
zzEqhSnCptVTBci#&LQpkP!Pi))MN0&{#~=9wj1iGf>&qtxRH_T!zpyz=eG3U#wP0I
z{@2m}gTrSH{{QLW(+B?le_kG!RMVmm6;*x-GkeD5o$=)UZr{xQ#@+09d=xaaCv9=I
zuxKNBsw2~Pv}|Z;!62HbaDqD#)RVn(2D9mKnigVJ=TD6mbOG4`en^Gn<<e1ITT`uO
zfewt+B058%W<2L>po3T<KQyt@y>vbe2>cjw#JC_eXJiE!-&WN;e^3bVSJdrRmD5Z6
zI4bKp58k?&-HH|+$j!PUWL<P#I9SV^mP-s02Y$I^i<e#2SF4&^%>r)wi1rXrk0)bG
zwuBA7@oYBH-Uwc0%eDlqs_sEIYrQ2dNmV-a<CWZISWOOULkhZr^=ci^%II!Yy){AL
z)}S%&K*}R0+c+6Mf48f)eaV6IS*u&yYAMCpQZ_J=7l(w{M~5Za2-Di8Fml^>!fBiM
zY7QAj+o{5S^lQ>`;-H7<$YlkU)2JwUJQmNZaJ22k#8TK&Vkx{rH94dfs<;hTUehJ#
z(zdOBv^9>-?l1VPfItoZ{(LVwjCRA_9@&aH&6tQQHvnS~f8VexYcoFUf@+?yMWhZB
z2QY}oq&^JPhX$D5x?K5M^>WEZ5hiC3wZrZ6_m8%IczbsK;pBAt=i#SM{u*v+xk)~b
z%86(z*+L@r_BR5y(N9<8biZ0B9li!ct?)oza37br?=<GTZ;iFNb{FHL19Muh%a%s#
z_PB;<wC3CIf9zow+TZPJzrEV`C7%sz9|(F7X^letX+#rgt&A7q+C3QKn70AezRLAA
z{RLa@kVhENZTP%eocW@;2dew|3%2Y;k@}A9Io=0rfvSw0R!=?hFJ4t}@^4>b9lp;#
zD_|bGQPlSBtlO+-GCvN<`HRza+o2Jj%$d_hkS_-Wf3IFtFIor6iwxF4@-;V?T3KuM
zR&$B@0m)kGIA$VKDCI6cf3$iuk<((cJ9l|vgO2@(|2PX(m&EnjDB3wTOv^c_zcuS-
z)j3c_W&8Ar%!`7RYetR5>&>*ra_d|#Ev4%X7ELa$wW*?=Dbz!21dZ!#r(U$)R6WvM
zXG4BLf4`Y#B)#fcx!wGV|MdH<Hr)R$8?Iy6H`{Tw#%{IcYHi(o&(#{b#ipyZv})Hi
zSkNk5UTt^QZltT~H{~{KJFY8ucl+jBB@lbn{c2sIyA|@<zpbtB$ctTHH$+C`r5{Gu
z#d}!Ap^Ixf$PJm+E_k+Jua*_1!{oBrP0jo=f4T;lsBA#1yr=cy)urK<(KU;-4z5a|
za=&A14DF@@JtCwb!na_grA#YI+-|=<PF9OPo`td}mA9EEw_&c$RJj9<oo37J!)Z5R
z?wEj;Ce3$<?;E1D-75Wl@p)Iv!-*$<FJrhV%C$>TH;fxWcO$r(O0HE~>2~U_3J<l#
zf7Zg0JmSWDSwLJ8a1&d2P8P;fYXeXCRws=|j*0eBS<>Y;*@`?bkk8f+AWMbZZv1XS
zotO~K7G|w%-T+8l^3gWw)%1J4%8ap7KiI43ubn!pwAZ0Kqi8tp;XbOywC&FK?uz>^
z^J={`)u!RE1u}Cm+|;wL>BZ`7+ZN}#e>$HHR@SX@7<!uy8fKA&H8pfsh`*Kw=7o?Y
zqqFCYICV`aYS5?+=nHLdw@`KR-08e_N2C5dHig?nGfc;#C~7!PGxmJIWIU+NmM$=G
z%7L*-8v{i1qyrY2RXo4t?lXaomaA?&WG2Fxl~MyJGchR2bU`H>I0LVmQe{shf17o+
zr7MRQY`JNZ7i`(q;znbZnRo#q_KxPRTvLHdyMV>Wd|^yC9(ik1*I^~rize-BV+Hft
zy`b)8{Zxi>Mb=Ue2aK_qy0qoBgeKK2+zGGa9o8*$Yt_+xyL+ltm!m!)tFKB|>e#%9
zF15agq~~<m8oi@BomVw)LTmi?f7@Wq7@TMuzx_5`Q&`do`R%tqiz(fI@^oEc9Ad97
z{5S4Oen%s345q$<TJL=}yTobivBq^#)7+r_(r5z}uaYL)6_Zo_<r<ewofp*I1HbO6
zywRXey=JaC#G66XssX@>>nV07oHClp>94&FF914}_C{NbA#43_#qCFef0}F!>Ust9
zla>0}Cz}$&>u6wIy1u5d2kq<~YiHM;$@OdbhIK{v)qbbn+E=*gU$-)R5N~b4;zUEa
zUI$(4yF)x}*bAm(;#gWXBfhMO2xHr-f4Q#3YBNO5HNxa{K(B=N4XhWvH2x0dbl&@g
zA$5PP;OWUrzYt{XuN68ue|=FEqE3*5>tL$s#=pW$)3+ZtX^X2eRVHH(irbpCddY=t
zv3e5WyX&uHkkF}4*}T`+H=lLV1XrbMxr1*!2Av3L*w6*lF0O1|M2~Li+h(t9`}NVv
z`fkzdU(s}2&#dfm9f7*l&BrDh?p4rL^-QTwiBy;K@{Z^S^VPQ9e_L!qly7@mu?Y?!
ziQvn$^l>m_Njjem$!n8d@3s(ry{WnZ%<cCkn}BIk@%nJCt9TQ<HZM&!0kBGrR)6>A
zW-wmIVrXN<*g7;`+hr7ctM#*fL@SkMcc3uaU^d#Dt_pSQ;vfl3U0&32hdzC(vce%-
zMOw7Nv$>FD1bOSDf8Hwfai=!W*`hb8z6rEO;k*u5Q|@N4uC3j<a@sY`?$|o(+z_p6
zDsO)BbX|@%9m7`gJ6`*@@c+E6|F69Yy0QQ7?(VaLr*;3|C%exc{D1G`sco?;ZBs3b
zgLMnG%B_D+w_q_J2`yfS#OBy@-BW#Q0}o+_2&KguVaQWle_zv80X2}2)62f{{12{0
z7;e4)A-k$gp4&<V*6sh@XZ8F~&z|lbKJ5SdcoZApFK92%v06l77@B+_kx2t`2Pe<N
z^N;Y{cK_$7z$-un)WHL+i~n@ESI__Z>~QzV!~VaIr*{79=|qj5E1<c&fG(8glSU|~
zH*WoZ3J&4X2nK;e%yCWcK9`Tm0yk(=xRkpQqJGEEZRx)gUA|KQTtok#9`5he<-e!T
z4j$<LeLSBwNrTXF4mi8Ny<Sz=F(>Nj^`efCn3s%WB=E%^B(A_?<kYtD)y|OiR1{w#
z4pqy6(t*w-N!3|GGe4Bj>O-aVSou4bF3SQeHq)--@XpSk#wlsnTFVIti9@O*_=c>|
zri)EV8c$#A-KW_Z@7=XSe{I-v!IN`LBI2y_+RJN~kjnxYf9rz013%tnT&1+Weaj;%
z(irT-ZB6^?uH$mG_Rna^N(eNDdUpqo`ltJVM`jI!4*Tjp`uF0>I+iW&>-&I%s~#Qm
zC;WXMJ;Pn*k7eepcm3wB);y%nT2QA4^X9I4nDU&L=jn_INoVf$ckRQS_E!%!=)AnE
ze(*#;M}t(Cf7m&%@2ano0RxrhZm=xp<$bJ0%nJRk4U)#ETfw7^#-%LwJ^l<MA8o>_
zL*1&uahge1zMJQHnoqnYAtL1J7QM<&n>@?-<vW(7CB%xpE}*sgH#h}-OJDqbL%jd*
zRRi2w{uf2KE(gpy{qOGXLF4}C;6eVsm*-Q{@6C<<3-7%vL~*P&0b9`vm$J+PHh+~X
zhTMfXuam|2X;~h#E6H*|&*Ps1*Xe@1e_Zgy7_I}>Qig?e1{U?ae>@k=tLcb>8w!Hm
z;r_q&5`1{R;&aFJzcmNUI{LrASJVF<?Cm{$u>ZN2=d05HyUi1GN5{aOoC3E`6?5D1
zR7qUGEV4a~%k5O^x4)QuIEB9UbAJc)e}&~IK5OXz{^4%@{_n~Dvj_W+dwKq0=)Yg1
zx(D>@{Zp8fY?6z{Ap8rYqAALBk!Ebdk|Anp0z&%aD9iXIiFwJi>m2x5i72SK(uL%)
z^(1+0-WZ1``=ThhI(=AT-=KGe{h9E~{F0W*(dkK5Nv#DTS+2dBUSu?#*?+Ib4@tf7
zTuODc6YCUe#$;VdodTzo6-!8FX+9*zigre?hUDp!CkIcIm^IIj#E*jM+qXVBWhErr
zms3{7Ss;?Dk~ncC=dwbrAXJb`mSqt%prpbfdHhZ_dz3F9!<FW%G@oCY4$h~k(0hPT
zA;2L(bp|=V2`w3!i!`5*qkp0}DrdYTC6!YJ!j$IZ>=@eW?rUBY8Jn?O(o74bZqe6s
zA)z?p8tg%>Ce5r2nka?~V1l7eR6CKqjP!6>!{%5Z2Xvo(nqWBKVwq-4EQMq<vp633
z4)fgh{C9l7X0(G9SgZeg+OYpVc=C|{^Io1!+zq>2L0*`1p#4<7t$#z|ZI5UJP(5zk
zkbM3l5RKM*RHI=#lCn%kbLqN}-#T5TX{aN+hv|E0GCoz_<6=IlzTPOor#pyS=Lr4U
z%l6^9qvy8t-`L8mk^$Gre@_qU_Ww`!4)-4D|9w0)`fsMQ!{XDDeyvIRrx3?lEc{p4
z_-8jYy}VDqfsR>Ci+`7Mnw?1+U--`VY4JUsrCG}G9>3-_&{n;w(F8|-Teie?T+!6B
ziY`;TnQvR4SCAbrJ1^;YoW^con$}OPKy)_Z%~}<1q*mR;Ci&E!LftFY)2iK*)82NY
zL~OochxVr*rLnDaFQ^$gmK&Hgx-ov6Q6Afa59%>)tr_JTo_|2QJ+e)<axTdhXa*Xk
zb6swGn>Z1#&D&O}&BqmXGZG9$J6oted)8!)%v~FL<N7wqx3>pA{3;6ZJ39ZV&K-Lr
z`S0+sVgK=D??L~2FVBYh-&%@b{WV;}9+-=!8*&LNve(`jzi=l;AKgd0&8d8MC;ZxM
z&s`v_O6y!5V}IRwp>Gnruq|xiX2`yafQ4%Y;KVQ7Z(%#spW#2dhVYK)|4JXgHT3`R
z;933t@7a?l5B7ie@^t(E&2HlSH@mIppC(RU+xzby!u4<V59s$dTkrH&BMECA|7KlY
zf1BXui#UsI(y?sxDsR)}Ej%1&za#g?jh6e}dmge|_<#Jl&U-76Uvv4}WT0Qg-EP+O
zwfjEJ9LQ@QZsox<`<jk)voGsIHv6&;WV8G7vYLHu7pvL*`By#M``4e_^8X7~$~2}~
z!4oB5ikN1sE(WZ-|9P@^P`CfyefIQ$|G$sNRbH>L=`-`|#eM2+lP$BS&009+$x*cy
zwEWO8_<w6{PD=qlwYBt5aoN-iIH@`F28C?LX31hco3Xsg$nL(mHe+OL3iK@rRCn?S
zp*xacn(PM*r0fl_i_W)?LbX)#EMv*LW?Gt-k9T|atb<7_mRbP9FV{bA+k2eRE3k8O
zLtt0$?qkfeG;cy+-`yAjl!UYcgm3Lai$V;v$$ty(^_NtMif8Qh{s<cmdR`<{dRcnh
zH`m-kzjuz}X6Ju2W!Ws9<h*1X^s(mr-+i+8q^AEncy{>U|8*}<pPW)DS(ytWIl(C<
zms6IL(LBw-{I;O+1)VSv1=>tm%nP__CSuC6j7%~<LXAb5Pj*0Lkm-U!WE$r^&6A){
za(|{%lW!Fz8>d$+!7ckQ+Yx~z=RAj+3M5jnl4NPlq9A&C_TfzOk_CP8g3o3=CqKP7
zBS~6{Aey9d0RJNRK{Wcc9KgTk#dI=I|Cpa*kq@edMl`;d7i64fOa$LV;<5<7iAMAy
z_$HFGBKYS21by-oEmJ-h<mBbC2qJCW9)Cn>!sr0YmHh9&M+$JW{r~Rx=;iC<XqIf$
z$C~~B^su4-KiJ!S(Es1d(<i5PlF1vMFmh}-y1@BjW}b|BNv5<+E@{a?YIu95rE@GK
zSVBfi^39u*|Bqa-GH03CA(v$;CCf>glfQ7>??pDBOq5`tYm-<pSh3`#h=Ksf41X*_
zGU8kcS<*rf>caZo1NP@Foz8la%ISOr_X^H>R;%}e8N)V7faMTO5}p%E-v5WyecN_C
zb@;Zi$<a<2a>~g2A6PcS;$k=$r~@$)(``d7$&BW7!pbNJ`hD^jCds=h0qRLU=E0x-
zB@BsVS29a;878R!Y+yP;p7F_&gn!|`2OmFvjCn42#sbv^DOte@O%melO~wDu^HeU0
zfu`+aq*0S{05-%u?zD<rkm@lAKAbT|-rH}DaSjq53-|&5d{Bi3+ps!RhiYLYJf4Hg
z33$4GsErq;LKtGdPfl_nX_k=}3Z|ej=v04x|L*wJ@zL4whc`#BkAH4OL4POBa>s=h
z;d4wg_VZTX{7&=9HW{&uUq&B19B2U6qCuBig9$a_AM<qenCE%>sBs*yK}t5`3nqvv
zq?Tm0j8)eK&si=7p+fLDrP7?V;KBr33t(dzQ~)0vmN6<=<PF`zv3Bsb<R-%}CM5;#
zqHFk2fZb}!Nf>H~8jD&tzkhyASZ@7@`s5(GQY_SAbQJ_=l9p19Zd~#iS?HV4!)Q0!
z-2qg8RDfEl`cY3vDqI5NOlKwICtCMVLGEAN0sJw~V^&Bp;0snRQg%7e@w!8`0z!_S
z;e#0XpAZ`yY)9mL%1Sm?9N?1A$&@ab8WAoLfT<#!qpF<7QRGdcf`2NOnW<b=3^OGI
zKJVP7-t31d>73jf?EaH60xSUVlJLu%#B(9}jJ)?Ro-6dW9w;F%SV<)>Ti=Z`J{rtu
znh##O3uQoyG@2!S|9*6v@RGc*0^WYfo~v-I+dHIy%}!V@<|WLtLAso>v?L$R<=#g!
zPFa=+LgSd1YR_g%Rev136WOI+j}dNy@6~$W$DMGXcEXD(WS3BdG2&O6Plm8kmUNZ{
zwJeC*R}&^n@)hL*6D2LN?wyz<zvKl)31dip;6k4B7e;G^&G!4+ZwbhK5CBbh0gE90
z)$BbWO5{6S<N9z)^GOG}NOM{80qoolKsx$y)m|v44A0sS_kWC`N$RkP$T=s1F(Bdg
zR8j{cFVI*FNOr;`O*57dqykdxkVPs|S<&*xg1ld#(nI0v=dEbq{M_DAi>#dIs)As|
zJO2z-6T>DI7E^wSxqih>_M2J}wY+pe@HajuG0pY-k&j(Xe6+W=V5Q4q02b-v$6Bi&
zBl6vn2qvZd+JEq3!-euu(O=74UZ$BMQANg=gc4N+?*<(oU(>f<89og%5Jtf{x9((2
z?Gz@&4!mKxOk*lF#VOe@bI7Z*wMZ$U<fCtl_Ysa6c134J#<p?tDf#Hc1^KA2!dXJZ
zJf0FNoLzGBcq(myR66D*EE!EqoGZwZ<V3n6y&m})Jz#pB7+1z51R3$FrLHb|*aSwv
zvhKbUCUIH8maVM-gEY}fKSw3a<6j50Is;iUHkeU`gn_9)Fo1{DdH~|-KU2g2x1xxC
dkFx&5^YA=850Cr&-v9sr|Njolyd?li5&&jNwYdNQ

delta 178248
zcmV)mK%T#@uM4uT3y@ELvfFNt?wN@zQ)-WnC0i@X_C0sD!v?EB60NF24S<rw?sdez
z#=hP@$qgic`b2&4LzZW(h?zF43W>}_B9TZWGOrIt`{M=Xa=64{@TaZ(jYgx<%b$LN
z|BgnZ@_!FTKfn0X!B0QGIC%Ec%NH+S{%Le@@N)F?pU`MK=oJ5d5+O1F(`fC!%EWyq
ze>jSm#FDZ|91alju*3nI4?QepK!%j<dxT3mqr^W%G3GKN-1(VLMI7MeUW7w(h~6HI
zoL|idmI+s|cAoDzzqn4OWbcM>L0NQ&9{=?(=wNv8^Ki5`dhGn3lYn4BOuyF$qXCZT
zN8A49*#O6J`t#?1;fvw(flp!*`6Tiv5r>04<gv)75<ZAI3yEBiL<|MtH-ryKgr@=V
z2MFmNvM&Y*aS}5@CF9FOw4>-r5r6h_crY9dd?GwfV-5T*7Lr8&=YRcgq4<N2vBc;c
zM|e&`5=nFsU^!zv94wgXXdz`R4)^!3p_L+aKs^O!MgwwxxWA8uAX4nBXJY^QU^I-Q
z`9N{+qnmjlrjf)nA{>Y&A*R8hqFrK7{@-aYDWUqw>H9&(*_#3%M+bv%ExbSe*8a=%
zf55!!?ex*2|3}Y9qq6>g@$&f({eK^SWo5XMmZNhb<RKCZ{OrZc!#@-M=b8WWiv$19
z-k-haGyf-l|G@k6==p5)(i@SVN3)lI_Ppmm{dx3k`eOQOG(9*N;e$VuS2OSDSF;!7
z#b8b%!m)&9;@Rlgi@njaz0u37XU`804i29m3}5{D)ytn>{`Bhk|GV=;1+Dp~=Kl>2
z5+b%|05;G6=RZF`cv+hN&qgnP`Z53S<L?oe6DVSTG!ilKl%;~kER2~TAEN7s-9~T8
zQtTEVeFT9SJVM80hLb=dEkS6;xH1%mgGcCUK?R}$Vf0@|=VyD$u)$IiAIz5_H1z_^
z3A(|YDicc}$<UObSQ$1xqLE~1$r6qv3F81uB8GzjpJETpR8FuYhe+~-43wotJ#yrE
zEQzFldi@AZV&W;QRiN92Qe+%qG%0+C#DXP(ue#LG{4!hx=W0PfB_cLMazV;4BtwZH
zL-_P`h9V}BAQIuoH=q;?6tG={H5@9CPdL3HK1u|Q<^a_gvAUgFjNw}`OpURfoxwnO
z1=43Y5DLebQ^u)W9-`4;5D|IH`1J(~sJE<tFlsOl*c1ncmNL~NCxC%p9mtq^*9yVw
zgAt-3o)a-tjh4v6k>VP=A)Hg+ClSDt3<+TR5@FaWP%jBEN1V*5kV~LV;<=&;peZbn
zd8<~IxyQl&2eWfecL<+IJU>K_AH%=nBnS*~=qR|wOZ5q+e2(Lo_!eZgTtTx~EmsPE
zs%JV4)!1ENxi~~S`(Y%N`79)sWCvawlRuRLgdV}@`ea5U;_o6M8OL)n4zLjKV0``~
z|LCu|HcA>KLpysru4X$syXba7y#?~A(38MlMmVINT7hq<T4iZ8&%sL~g9Un$8@8v2
zaobgt1i>zfSfx7{9z=zOhE$7P<SiI~O9j!2LE1avLxi5p<7bFP=;+f#QGp{Lb04uN
zgY@R@$*y{h{u_E9lV~Ebcm347hX3S|F;)aZ*z<@G=gcRE=#pUn6Q`2Ak37wEL4PNQ
z=-KEE)q_SP;WV1-AxvMJw`OBld}+G*jZKB~MZo6s3PgApGye=vNgxi<A7Ax<@1xvC
zSwDRA2u+AY6xgn0MU7=ZkTG8rPZuNz5sTGNruNNzagO;lkrx5>a&!36BgK6|?DR9L
zNvRX15!GP$pfGmLcQ9>1T_#FdPL~=8Cq7zWi9+ZkR-M@CW;lT7b57<;+u@jsbY9^^
zO$PI08n9_VXT)220SRG)%F~yBmeJ{N7R~59#PJ>{0mFX&h2$&<2(N(P%UH7Xr;o*A
z$}sn*vsvz;#G%qK*%NY?{+ry8NM_iRJK`mhW#7&?izJCMWE91>c$xmD5tZo=kPrLg
z8b?Z3@IA>`P<@;|I2aYbu)<`2r}AnaFfUenbrz5~Nai%klp0>n*=HYrlaNJ%WO!vp
zc={;SZOU4=4?%UMzmj;)v7i0EnQ|IQGUp(>IHozK@F|`XPYsfnXJ1Gpr{12RKJl=9
z3{rHF1i^%OJjF7HqZtZGc%;`D^|xRGK1Gjy`R~W?)GC^_*fR^a`7~xcqaC3s7UaX_
znR#Lsw!@r){!HVWmv#<+4IVwxnrA_05^<JDVnj31gbxSsPytBwdpiBl-<Z&AF06d8
zB&)9nmH<!+nYj~Vxu|>@>jh<Jpq8YHvQW*hlPTd5QKk%K`!W!F*n?$2DUTiV(E`Vu
z-7SXzmJeA>BB6*fPBx(2W9%9vpmWP94zODP6t<Di*_1{K&mgaV<N!soJk(lfpsj?n
zNs*5Ogk&HNiwmV?q-ya=DIm#^&k&7}r_35QLpVY-62wcC;^KHVqaGsuoFGYfNFxgx
zrC*)+b8?lvvy1-DCGjaIp4>^hBVfW%QN`8jQQL<`G1ucE+EGaC3<f^AJGE9x&L&xa
zQBv9i`{a)LacakZsNaKuRS;K7DRc&9TfqwhuBd?qPNQc)qd6x+xD3Lo?4>qj^VkWP
z*w!*Zj}$-kGk~DFvdcGmbgB`^sd*%qael_2M+Qm6roRzS!V3#2;ej#0cF?1Q2icTT
z=B82CW>Q@(V};Ra7zf}f1=@^(?<t~;)$$s9*GlOdVnDZlSUuz*x4@TF0hxbSULq7F
z;Z!XEBcq80OL$8MIHqqnOX3`yYpRx|^k-(?lO(_jm@<lDY2ctoU{}C|M0AEuKAaty
zFNi-F1k@vuFvF!3=F6WDi9Du^1tHbylNk@wrEx$H240ZBTBcaXLQJD~DHdT8NSb?J
zwuNI(L(G?dhh`x!N?wU+X81vgE7--g!fxfNV6^A`&`j_Tr^m2&m@7t7A55PaXJKw3
z(PkEGoN5es&?!_d$I33aOGlX}(UJHd)Tq9E@#6VU`N!{Abjg^^0WmMkh~^v2st-Al
zB+@$O`N-Gnx!s4zk1R;SRCJuSu{B3u83T8g1cBmz?t8uKD){L3G{**oWm9cx_OoyH
zjY&af^v?BuF!&9Vd1=s7l`<!hJbpJZ8_{fP+2#HM*6vrMk(wOJ+^9Uv49}yO>Nf|Y
zXD>zyoKi6$6Zlpf!JgnPS)N+!4c`iFa-^@a7pFM9WC6(@i~~v{Imu}<cr#~g9+0D$
zX07#qqYKWIZc01TPivs~%)2Ih3`>mTkydCLliw3gu1JKV3^Y8`kX_FTW>w{R4hwj9
zY1EIAyX?gznWjfhr^l`)=W~7%`7xtWp|_)B_fy*}1r}0|Gr?x^B$6DTmYbDdSK1re
zSmK{VH|bLuhyn+0M66c!5^(cWP1z{ph<SQ{frYqb+%G<La&eH~O{xW%tL+*Hhf<|~
z*Sd7i>e6en{B;0Z8j*yApZfZ<SPReLf0%!Krv6{G7+#XOK7uo1ncMYMMD{$}tfg8X
z_R^l>QM!*nM%kl~`NXzV8!P|Jt^)bSdeh~XTbZ9)V2eztX{aqKYY3<nI%3ftxfaNO
zEE8gouC_TBT+8YZGT(M;EC^w?9iZ%O=jqU(C&s<;MSFX`XcrZyH&~KAvpZ16qr^cV
zp2Dd53oLWYy}-+P#-mGk-NIwt{aA01lohHhHUAJDyc&(rBa5*93VG>gO4C#3EBjXv
zk43&nVO=C*VWB*K>3|X^V&QDBR5jCo(*-?3f=B_okGBUS{R%ohJx*8mOx6Q7KO;9J
zI7Bp>vBAJ9?Kfsq?64spp`&P-xq8g-=1ohdp=mZ!Y6P`mQQT80T#qhJQMz2s{^3W5
zRm0)YB#9L>hz~ZU&|9n*&-X$c$As^u%g&x386TlG5%n(Z=<;3KrIP5Q@j04*OwN#r
zWbm*wZW9_g&_YiFhJ9o<O#G=?fhK2T!sXHBJIzyYn5gwa>EELuV7F&fnZ1Aib?^wG
zJ+uQa4tDato+<RESWxfCwC-evFJ!C~n-5F7kH{SrFeCJL(8PXHYM@O(>tej6L6CZk
z6n_8}aQ!I#%dSb(fES~FGup;~(B#J4LytaOo+0bQe}8&BPQNhrk>1CZKeq#7wg4#a
zBM=^oiP?WlV(bwlNQ~j6Q1_reK%D#|q1;fJ2sO25Y=}<ou-ZZ#qMewt84ZXIg4ju&
zEz0cP5k$@6&seK6wGCPj^A^O+_}x?=M5vx`saycs1tN#3vw#XzggMlI>QP$)$C?~t
z7aXHGy&;h@)+-Q!8XZ_;TiX>ggP@<R0wuTaQ$vutDv$vwL0vM4ArUCWSIzZRx=zdz
zJ`OMqEd`i{dABCkD$agdXm<gYtZu0Ptub6+kq40uj%|n76rx~!y@@Ei@)QEvHKyik
z4z+jY2nZuD5t4=AYdSrDMq?I5YHJHEfj)Bvq9&+<t09RDXddsQATaOK$*B$W3~?&V
z=1(&9?uJA#2(y5CQVgx*ktLORRGoH@h4~Z_V^nEn3m=(P-l<}AH;>K}ArXzdAn{3l
zw(sWW@~)YKyQzHd8_NNfb&KlIq3O&cAt;NEjR)rt?Hnw2(4%vId`H71G_zcPgM91S
zD;`6t33q@NEU}7a#)(*5Dg9>FmDCD20X2p$^(P3vK|+5tM913O23u$2Vo-|Ey44yK
zc)=KgQAt-&b8wiK@Apct8h+JGZZ#!ALuXQ3g4i;j%^;-Hp#!kgFQ1B*0;I%C$+<qe
zQ9|<eVDwmIUu$1~w`EeLtvN@1Z$Bs+1eyPDe3WNtB1rM%wfMTcWTGxA%*c{dk}jM&
zDYraS)lN30^G)=0F1;)@@~|=`#8D#I$(`ib(~=IJo=0eGJeWivI)kOqcrkGzS%@X|
za1bn&38Y%0@loEc5!sNwA75AtUCp+@$8oL1av~(=@`Cw)nSpHPMo|UL7*|qa8`#lQ
zHUx<jYTE5;q$y_p+LDy>zh}bnj!h<Kc>?T<$u*5X5>98!(g%R<)!8KfY)T{l_+1KI
z{k-^8`Z=kpC?yILg1NUi%pFza03kG^0h|@350Z4lnm(fbk(BvwK-x;rRGZQxwL%ci
ziElT-h4&zTbE{x?j-|ICTv!uU{q4aUfNvjJix-~N;P^ew#_NO8kss1XF;ml?Jp<p0
zemG#@P{F~N1x!se->4&STUC$P9B#;ght)()&r1(;j`_^MP_rrhWH7)n6}gUl5(jK)
zLF$+jJztM5P7OxJ+ipw>bA)Ug4j}L*<^*UMq7Q<9pvN>)4c?H5aO!E-<ZJ9*C-Fod
z06s>_$c8;K?63*;hXdW{tvRbOUpk$K5Xz#g^$9WOjQWsK30&cjT_2}w^zFBxbU<E_
z+Tp9MnUap;M|A*i$#lWk^(5y{j*U<9)kyW1J7>2>m0luKrw8l^VPpQ})o3(&IvBKZ
z>tBI?2XjsRL_4lE`G<BBsh!036zhWdV=$RDR;cD}F1o^eVy+5++)uH0J%^LabF5}s
zq_*alNw#RdB})`4`xIn7AmBP+$R}!Xy}^<U6<@)oRm_Ablg<yt)S+``s5gM*IrwOr
z=0lF6!pBZ=&@P`dIwO*T26z@i)JY;1#wl}u8cD)$aBzrro{vC-*#jqGqnu#>nFh9m
zB+LSI!ODn}EYO99w8N(ZH@&WNpodDqJU=fd5st-z$;12Vyc|%WR5pZlSeM_kgO_j`
za!p8lj_-~<<2^etha_Hl5vL+GgNy<-vj=8Ja$&;%3Q=W)xcXGJ$*(18&`fG(y)!X?
z7KP*d%A5dZ5I(f+uNItOUpOa)0-<GUthYjY2W?<ILG7?z5+NBU;(~C^sM<b4d^cv1
zmvBxZ+iaWx5?wmJ0g+j+&o?gV>(skd?CbUa$u1A3%R*>X{Wv>MM{{SRN;=Ua^hqg9
z6ZJ_Dj+W@d<m3{t;)!;AgH4C6Ri{vY4)L5oXreOpc@jl7)R07yFTo9=!(Le!;>ggJ
zo~N35QF|mSi082|zR><WJ43ZM_%ex<ZaPkP?xonbI(`fUC82s-2oKDiiC1kq{Q*mS
z`&!2WT_22a;#0YAp5j|Ed7ecWl<Y$z3WtM6K@mo(PVUr-+$twtDk4f8$1E~`cQ>qr
z)PXxh&ztd>R}CQ5daT)0gN;)=TU44MDp}~unI6cDSquSHHB9M@L`94Az`?dMSk!@P
zM<S;~+fneUdeYs#y<hDG?B2C?B9{BFh0~4#=o>wlt=;FoH61%!n@;U|cS+)adRXWg
zQd$KM(W?PMwaQ$#X<Fj+7d2~tk$!2R=lNsbzfeX<da755fhvb;bhn9~k4EP-Z|gi8
zjlu@Q=-^G^Yo)`(%;c}pZ%S3OL=LAxLSnU@)*7H@=%(=UO1CkC*9E9yX$@4a-}VQ4
z3|o#GsCqxrAL!p0yRI{<)RwL@L~lX7>q`=|3+7)E>@Vvyf&H#CWFfJC6fIEUo6Zo)
zOqelh0ZV4$f(bjIo#CfDoF>?@dHo4fS%hqYBaX4e)&ca|j+ZzouIHvp*uNHq`Vjr}
zBLCD7aftNhpd?o1uR$)<B+L()rN}%l42*eJWvzi+<jEmAP!E4&Q$@bs*x*}XqMno)
zC4^E=EFig4njPJNrthPFGPulM<oaNAqkirT2ILOTj{Kt-ylOje)n6=yB;n33(mzei
zVEQ{^KG}oIQR$;NnFiELe{#mI_dF6Wc77cU<{Zy(g!7?kT012?FwRJGdkGF;BufK^
z^))DSLSfqmOB+%`eDp@c)=wgj4AJQfQTbS;F_yc?^l!5Uq&^9Muq=mz0g2%9gW_2h
zObKB}k8-~d71=30fKo<t)>fgY<36ATx+cqku`kErbs9SdPJ96;2}hqMXng**1X#n<
zj`s>M7_}>oBSGa`vdjgb72l;%Z-blg6XvkmNGz;+I;WA6>%joRzSPS^SeyKOa++;I
z5<z|;zP|T+>XS%+!kso_lIyU%!`$j;KQV0#N1dk|)Q^ihgLLPP6CH~?0D{0x0HIks
zJE+g!Bcx`7-u&ERfu<~pd>hPAKKX-_X0_u<eS-ST#%wSu!BlW4nZ`;t-~cx+!Kr0$
zaY=^uZ!q8INn}o8#eVS)g6YcOwy#eGZ>e0E&=`;T5O*AZkeNi&07utK0r)<|o}-<G
zl=0#IK5%cS|6kmAhp(QEMrBkVp(EW4WX~rz5Mu>b1T^7VsI0q@M&@_Qr9tIjq3ht-
zNuZ2|Tg+jv8DmMOG@x>6LfUSJ=o10uz)8q%2x5^(&@Dld1OdW9U{3xC7y3*LE^?-;
z%pe^BD$s&|-R2Hijl#*_YqbMJXXx##2^^nkcFZshG>2{%SQ5nvPOxCnaG-O0P%b~7
zgT*Cs&MkzJXvPWoJzEHOUW7Xk`enDUHYzuFx%Gq5f%?j7s`bz;NJu27G>a4%qQ?f*
z(876~DmN3EXLKCOntvu~^ro6*4a>4wZJg_Ii0}S?Q@<{(H!g5+JbB5OJdM(2+4$I;
zpmX2blMJ)EYVFYg&#v+$UXYM*99(=HzrP`TL9o&(qv65MVBlkk_0kSk8Ms<Vf)BBA
z(Y(q%JZ86%<MHc&dDqSc@TSy?2uVZWkiIg3eH=@A1JR=9pC{QT3r@s>1wI(~qtQs2
z=t7cz=$H!iUw%nEc0+Wm|34DyUBg99r)zRXW8rXgXa3~z<+1C7+!o}ru=xn_-T2}|
zs;NVKcb@mUn)#!L;)3~;n0WB&Ti>St{{C|LAB49cAs+rFShU$b8uLFqfBE9s!Ox}q
z56_=Jd-)^(!+reyF+gbN-}KP$m?d2t?(ZvqDcCa-!T5aN=XfUfpN$Uwyf^yuzWIJv
zHC8s2YN^j7^|P3>m~csn*f~Uhz#QJ;Q|zU`-0k#pDg$_N`TA&FywI0@luN9oJ{{|1
z3(!Ik0zm}X#|~`ZxsG}+Jj?fQqr(6V^=Tdh7Zz7+KDQ05VykIsiJvkS5L^KZ>TRcg
zaQ6tIuY>%5zv?DCMQgDagG<RQd?J<kQP1Rbt5j^bGNZfmVAnZ7X4K1>JsQVomBb*~
z9l);{=pAL5){&$muj?q<*>Tg;oNT07^g87!*+Pzzoi_3G`c3+YIg3K(FiQPbNRDYF
zMK1}h2eV~)1=FTcVAXbeG8s1x=qDq8os!v6!YNUPraWg%Xmx4ag<Ep%>2Mu^5X?k)
z9f2b^ag*^lO-9o^1?}CH26|FJE#g&3c+*SJ-sM~NkgP(xZ>{?B$f&OSNmQwI;hv5S
z6=)j(ol>Y5=ifk+G}y15hj1)Y$HG!K#jf7k+(kt@qM1?S1&-#L3+eH75z{7rY~h`~
z_g{I_yhfCUf5(**soKCnZQ8#Bx{FrpkZ?dK0Qg#jw<Ga<O%gkiqq<pv64k5`{VcP>
znpEht3=Oo5ixCkbm(-yzWm!udJ{<%wY3rneL`k@Fi2h!Bj?m8O>>ZOAoCs1fF3kHH
zqL9*^H-zt$p8r~8^}zM-{3?`xrtMm3W*^zsh|OjJjfnNsx0~siF7E@RdAi$_9^0D@
zkmDfNQJd5#i?GxN<i%3@B<26pBGo;IF_&F!rGdOivmziJ27&aFQdyFlhjLzARDje9
z=<Xw$rifc}K#S?+>PNSh3xEj36ZO^;Hls=vHUMo_jmA^gM83;-LCpq#403I-n}^9s
zskUD#4Mj6e`9vGro2a!zX~Lx;iB2ntS?<8cdyjXWX#ruMX6~pB`y>af$@FJW2Z!hh
z8O~8n(m!{uzh=f~iT>7Pdm&5UDr0bzVbXItWi8#4s@KxnOo#d4eH1Luaa2|Hc>wT1
z^GaNv1@!lIhvC`i4eiB$edx0%!&RF)RyPu8vpF;o=~$AAG@RR%5cd4GN|bAXa?+J9
zQWx1;X@MvL!%|;Whz(0s)0lP{*UH#BhPF3roa61{P3Dl=HB)q$Gbn~214b>CrMzgI
zRDYMn!ep*oODe`1#(fBdSM2JW%0!Dmv~y(}@-SRiAbw-hMl+y)RT}=2O~rkP!f&~L
z9<m&?@Z&)WfeC9^OAgL7jQbFUpxD(zmWFn&JPd(o-{IP1(0%r|8K3_6TI0ginM8C7
zR+F>DnCUnOOtMCF!TgR}U}1BUTrj^2)L{`U(b;iC#bB+>iy33E{lmQ8SMX~cCvz7)
zx5Ca`QmRe!v@7U;Z@}0>Uh&PJTU`?WZ^g9Y#-HAH&eJ_Py8EQcI5k)CE16S<RXzB{
z%VOK}7917&NtI>k23_mI@xey*#@M^Ypm)uny*CWb-GE+Dfo1`oBOI`3u5WuAwOSCQ
zzreWJ8-JqUH_&{Ia7cza?hyb|fmjr1N23iCL~+7nCWy#aA3yJAKI`<%dB%8XGao&E
zVh~Ebl*7!A`SgF<w*X*h&nlko|A*lpl!N>0;S*ii>L@J%_w;{0(M=?tKYiTdv`E(W
z{xywzA{ReK`{9hXtLVY@M*p?5=o`lZ0x#FIu^zkwe|e3)>uMT_ZY!?kkhR9A239Bi
zRce&7tEkI{-IrdQetw-ej2epSQ`?vAyEM{?lNsS8@`#V7%R-2eh4~~*lx_%?h}?NW
zBIpg#F-u>pq<ncg>>tNbZ-JmLRtV}~i6ECXVhJyiS*5_mHv_}PCipKf5!*go`Scym
zNyjQ(e__LB!X8Y8+wK7@@66(jyUR;QqPqmQ)Jy|6O#rY9O-DL5r7u-Z&@DoaT80;O
z9AeaEn2T(=V7wtv$;FqnMNif=C<q<@qtt^F2Zvl}j_I(W4m@*JTdrZ+s4LIvL!Ron
z25mOTHyo0Bt~s7opY^NclCJsNSd^Rwg^QO*f0^TC9qySC_^wu^l<;jXOSY4aDjLW1
z4QEMwKWo#a<-pO!DVjsST}V&uw6vL?hTSEphQ+m8fb@&&SE6qJWB-2b#OQ14%#Vh)
z$YkiU3xCxv=H57Js(ijqylYZ9szsgod4C2~%Fh)nsy_VetKQw7p+Ww?)-z6$0QYi>
zf1i9fJL>J&_B;~TdOg<g1Z%~o!6U$IN@k4rsAzo@p_9np`ydEM0rf~E2*PttV6Tdv
zD40(X6$qn%%yE!=Cl^?vImeMyZxaOorywK)7bcDnj^luO+E>ds5^N@KF(+^xfeRES
z0<xV60IA*Uc|ziZdkZWesgWTH{>?b@f7xvmFznN4-p~<Zw^1fq);xjQwLam)wo_h1
zkV`~LbI3Vwa`{jUXJ(v*rsPxOVT$FX?gg<a+!yf+?F*QC+BMfpn5{dn+ZoS<NaQuQ
zsG9*k3o(rx-sv^nU&jEq;AORZXmbPk^-Wu3B1{5FS7G<LYPi?J!rEA9g<)8Le;}4Z
zlCYio>jg!ZD{)u!Pb*?hx)zKHf^I9ZcXiN^$HJIJkk=STKJsvkr!=5IuG4oGa~k6M
zFn~s<S#hWgq#gm2*|3E!NZtKq&QrwJ;X@rP@w^j3CUH8ovC`-5Sa%y#(G_&#2Cc@V
z*;oz@Gr9()PDfgX)STML0vuMLf6%y}-B*CNL}zyX>$>>UKyaa9>JoNR{eK}coDb1L
z%2*uk@0+)9BYdbeaQR4~pZ(^%ir6K%!Q6n#-9_xHk7*S~hX|}G_SU^L2{5`TpHi#T
z>h5t?ejf_REF>jthv*aLk+OdFQklJ_K0z_zAr+z$$I&3RIhCXd%6E48fBI-#9R9TH
zLj<^`H<z&o2Iegd0)&Hr-R9wBc!BEkIF1R_^+Yt%r9NNjvttosZ-pz#%6hGM278Oo
zL__H<K(2P%53(p*A8mpos#rQHtO$W=*r=r;MxM&$m_?G@HD=Lj^%qvUMrG)&G`L2o
zE37tGAWxzrq4sEPu7oBhe{^mfU%q(p{HJDjLfR!dJ?`X9m_UB90->k?q?5k{TD)V?
zC1b5;G95jiE}=zE$7jCp9==W|)fP^7syjJ2H$1@5=h`EjLg_^8?7k_Ttxx8xiN-<G
z@9Ob}B+&+L#5^BWou+OBCGD_Hg(<?*uhsfVnT|2Y*;I|RrN!K(f36I_DV3bTMK>Do
zO4_&snAWoU+ABPEM1XZ2#PUG4ohj#f1cxo88+Tex7azx61w70CqC;yTwaYE1k_eOk
z1?4+NH#kT-riu{s_q9CUS?VVkBQ#O)I*~<x2j>w9r^NS(?^uZSu!BsikyK3hNC>t*
zJfu_oRPEUEn7w*Kf7jImvm^+V_4(f9)LBy<WLvMjI-{$>*zrjmuqAksJMFhE(&_0y
zJIF?6)F<5N!vnQ>-Om`Y-;D(}84XH!P>tGiQQy=UVVe-hdbkNk9*)pd9}NgW{I*1;
zWJd2c&W(<m7CJ{FNSwgy*pO?s0t0$@7=FWK-qX+fpU|YEe?!51EIIac=Im1Lk#CUd
zLfe={#M;9ui<w4Bt)2T>JSUMnemB|dnSkjz1>T0Z{Sb6?E!s}ms0K5(3&-1o5%>X2
zThaOQo}Ks?)!4B{3pU5HSEJF$&9pr5G(6a%*c>WaR?Mms)C|ul4c4Ew75ehPH$h)B
zyc%hrb27)0fA~i+U4zJj(X$sdR93psMP=smTo%iI#6o8}WY7Vsb$UR0x!%*mwyRT_
zxo>(O#ovk}SQ6fn<!P<%Tut#DeVUl{23?b7dGF^^J(U*4YC!6BX4KS3)veG;0aLOz
zPn5Z&lVRGIFq7G^j(}4fUb0}rN5cw*)1z|)kel#5f4Y2U4}fhO&H{q45J{**2b91`
zrgn2P#zTaoC48C|W~!xZ98eO;N!{J7HA%GDAgNpcJ{~8&+DhX9j!5?z@5TX}ZUG|$
zQD@@_mJo75u&?;Dz&EgiV>WmK73b0}s)`~U)aC}*$)-7D^MD-1bmOx71|UOh+}jqR
zeaE7`e=P1uke5Fp5_wGR>E4VlkPWjw@;sJA66QbyF&CUE^|omRW9Tu^yC|4S3&hM7
zP#l58vxp$7|LLH!iN^aAZ9_y(y0;<Cc`*dJEf1xW7cvmr$PcRw#L^|pEZr;Ip+6X*
zQWel`FlEZ5-c@;oOW?{iS(==?ocM`nu5?=Ge<k8nTqBI8R4Tn0F^N3vEwt-LLlG8?
zu!1+mVu2P^K$==NoAU{3HyuHg%bnZELZcQqiS=E56KXa?OO|kC;p9}X;$sp7Ha)M-
zbD#sba4tiyNs!S>_vSAT7HDt3J_wohBtyk!Ga8VbbI?evqOxXH{5|31ibOctxPCnP
ze;wka0Ct;pEPY!tyx?W4>7~BXYH&N0cmTT_C8_3)i$?}E2ya7a6_B2^C$lagesR%k
zCzg@lvOT4V+3uQCkf2>um>Sx4s*G4YZ)`NS>!@oZBb$b7SMMj3`H@D3>oY7^zaU`v
z77L>(vb&^j(`=QF2+T5-lVqCqbb7oEe=<d`hgKV__^n#eU^U2VmkvXAKIbQqA2S+l
zWlE+47vc!d2}i_s)@clNEAXq^hUwUuIV`bvt>d$!x^yT&@X_%$={!2_Mw$8Alk|q5
zW0<LoFHykeG|C_}QDJ$r9SN*pmJVR2rJ$*~(mpztTyaaXYZBGCt3v8=CfH1#e?*ew
z(=83$x$Ol(Hwwc}L+EJNW%$ZOZEGAI=ye^#=BC}p&nz7*@lT?g?Z_!WM<>w@<tz$2
zn<~y`P8x1Ryda!xNAzwc0KA*Ll|Kdr2ol$b`3FJx=F`wLV%mt$1s39#@eNz6mN~J7
z-i4F)<BpuXKg-V|xMka~Bq6(~e>6m3|CNU=<Io`g-}GimwZd<QTPcpBy-istE8llN
zvg9OYTz$K7SKp<D-0GfwUG(npLPMtndMpx2Ncg5Vd1C{&O>5@9vo4bv;~|D39BNPx
z|HJ&_Gxh&k>x;f5^J)y(2Au2$Zigd*&zC1}PT%YFOJPZhYSGS>gxcCUe}V2JR(*8z
zn42?>(ABV+68L!YhxR2hI$`g@LY$6-y>b{bzljL78Su|4_aZk)hu(0ccOW~CM4?Rs
z5#|f+RNK~qVy}A|Cs|#xyo!P3prio8O_G^I)@#4gg}16!FTiY3P^FBF<=Nc`?OWeI
zF?Rv_;Oyi=H!uY#_j}PTe;wmV0i}*P97(PKOz4Kx_d*Ly(oL_alCvP4Jn8b@9>2uU
z7hT`<OTL8Oo-GPxZlBj?o%R=4<`nP+Ue=yetgam|iI4t<Wl3|l(&lc~L04+_jde{<
z%AyO1&|Wog<yBpDj<(*Am-b^q!J9YA5IJi`xY`yyp-|wEMZS32e?;9yA{J}W_55WE
zU2!57{VB?|>Of1(S;#iM&3}6^f<kYsi!ZeNu|Db27Lt-S4~H?P^QbkmzHtJV7UdQ5
zE{t85dh61fruuD4r1~AOxj;8mP`GHmEGAqC*!+y#kf0}yG@3C7o@Z>10svQwWHG6F
zkTxh_WdrZb;c&m)e<n7xcy1ckqLSWqAf+a0EZot>X*IsCc4N4;T-iDpwTxx6HKW(@
z3T4e3mDO^WXKAq)g_2>e+A#Hr&dVBK;>gF~L8#UhYmQNz{ll-_AvWR<_2F>j7t(6v
zGaNhRp;@*TtHW$EDYt859rwl6#e+^j8VyNVO~1QAB5mYJe<k0pi<n6gtM!cd=}c11
z4t3SA7ti-X9LIzs#?vXc=esU;+Z?<*JG-V7W!hLhDKzd>*r>R%olMTggv+DLcboSw
zOeSYY0Y?gY<NojRU3RqgX@ZW%=g`<w!aSp%QcQ3g%lLuvLeZYM1}B9GlJ*7RD3J>i
zNt;%w>gcPTf4jx{0=NLDeK~*wW~df+M(fjsW6rCp+z!Xze=WSAl7tRjP#W62oYd{>
z1td=e424bspfAUnaMuFi&0~#%BCy*9Q^q(6r-TcHIZ44A*peymk40SvwJGMx3FkC}
z52|wvo<A$9mi%0DC#jxdLA|4-K0K*$>3FSLmqf&!e;mK#x-nf5;Ht?CO2&q(`&K2X
z+X^@CCNElXPC+;Y2nf__=O7;X3>1zr5_7NsE2#5i2Cd>oX<T*gqX<R*s3zkUoYu52
ztZDwi2$4G~q;_HG5)_J`X^bV-acy%F5e~sB(BDD=BU`T1rC)802hJ(ejRQw+!9X#l
z90?L*e@!lAO!Zix;4U!7o~-1?XkAp{bb4jAaHU!!U7(?1GPV06>j7<3DQr47j_k$`
z7fV_p)Gl8=2b@vA_cG94z3F{Sz@0E=QA9ks36bam@_Q1F-YjYmlTN(pCNL$vXp?Sk
zHOblg)8jF^Fg<ljY?jYqR%qQ!4L3Dww@QuTe{RYD(3z&3)lloga1kav7CVzsY;uH5
zC#`$O7{dvQU6yifixJyuQ7d@XQizRtmz7MyLQg_WgMOukW6r`#R^Lv1DzZYu>9&`?
zS`b~fhRxD;3{B0Z&`-dv-#+itVG<-Dp8SmKj=1Ve5l1yOo=q-a*DD?5<9JcRqSq+s
ze{l1P;~Q;QUfrSi$hF$oFVURds0DYKX_mN?X7TDH^tVKos0QmdkY*0EH$mQZw+fdw
zwYbhi+KEQ98!#IIHJys%4_32-ca0=llY1Os8g6+=Q}f<~&bnw6_%g3Zu)fu0L3Ja}
z6u!DA>S9-!EytZDohAe}cMB}?M8b|Pe@|v9$#&tDW@aNFz;|*VBdqH@bQ|6*;l7s$
z$wDyia@L(5ddN<s!x)vsLo#>ml<Gk8y^Oo2x#OT81wralqd}lXT(`_dotgwwIwF(Y
zsG01sXckaUwh$e#IZL){_5sPdA9r}Ni)v%@!TpnhI({rFu)et$M{7_W*`#+Ef2lvF
zqoO`fghVv*g2d1A`G2@P+eJCceAgI@yU5xJ`!<<D<fCjPTlfJvU5{;&iS?Lr;K=q=
zvW<0r%AD)Ab34a(G)zL|Y&}HB=EPVFJQe5wEm+dJy_s<$7T`QFCpg>P$^!D2x>w_~
z5vJd+JJ(tWLv&09Y{!+oVo>Uxe}0$6BoYfcTP?s&Dc*@{jou$6a$)mS_4a1;fRi4^
ze+TZ1Rany`3q82Bk~5<*<PvSt-K}^1W^<%1ne-02KsYiKY6aKXAjnrk=?eP+>{=@9
zP}98Iwiy(H$2cb<W|42MV>tNmP_{2lTDvZfSGnTag_8}rL0+VDW$R9`e}1(J6!FR&
z0y`h_R>AyMWR?$58|h0m{&uasR9E$(tw>f1<FRlC1h}Z95v1)P<D>0rd9(IHAj1ve
zI*!5Q&hYd;1VWS~%gE@kPtQ^g%7iOmvwl6aZEB05&D&;DVrpxQj|#ya&N*7n($l&#
z5V}<4j3tqeutZ<J?B8I%f6tT1n8RZKI=zHHq-@`40iy)=Jv{Wd{PN}7?;Ea)`2w70
zx5f-E#j4Z_lDWRu59+<Sd$eP^o*^IpS=~J!9=NAxQv+=LEcJ|Na@?d5f;HZo2jCvM
zFIh1zq7_8Oo*(5Pw3vW+Ot=(BiDV~tlIxl<_fh8rJniF)(jp<$e};yISW*v>44;lW
zr9Lq8XNqYZo4(uVz{j=eX&QIX<-8XAXU9hu?k!z&;9Yk(-%$)ecdEKdMh`x%w1wtG
zNX+F$<>JkT88l;DZD^3`&+dM4Ik;6DRTs<=C0AllZ;0qgBFHQW(CvamD2aV6t0%R_
zANurPd(X9Cm5ARBf6|rSQ-CX0Htp-N7VVC;qf!{UkOdAJfaNdjqc4iKL-lcsC2e<R
z@7QG0ILPZyj#JZBiZ}4T%kGO7>4n=GR6x$h1cv?UY|@R)$u*5Xs%_hH>*T7gx@;56
zl(mb0k3DDwc=NVOsTjq}tup57Y=UCWB=eYKyHO(c(*hh(f4X9`GF*^a)DQRfl>nsG
zVvG%$b1V^#X3WI2PnS9ooM90*`A*^RVu<oRXw0Dtk?W)Ezb~<EN+bWce3t`lVSl1@
zogLt8kKRvs7HXM=<FAB@1@VzG%%9jj$<s`!wsh3Wk&92;-J2J(`h3x2@TC*|X-lWe
z!-Con6Yj@-e_P4jYxCgNhvU1WQJP?EnO{l<Cj@h^9My|j>~>V$p$UNF%C+mF-Qt*Z
zXxdgpOBt<BWzc23TgMz#rh)1&b16uMw4GSA4}c;_lv~qdWsU&Ys-kG`paS1nC65NO
zz24(yn56rHeM1}vOKlfxj2obr4nmFf)eK8lEVg@?e{P&e+-cjk#ETDkInje=ti}xO
zE(|%6lGABouL$ayAI6xcP8$+QPKnq6hp4Z5yC42!bkPW5pyaUtT9(?~Cl)LTd=%o?
z>bFD}07WxO0$(?CpA<UzXeJQeV85N13clV4%~!zi-nm-SYbTzniS?jas%^-XIJ&9M
zIx#Zle`H2DC%#oz51Okfwx82g_`apK3kp@v51M{E9qb#h&McMM0lu1<)~W4-w9~2v
z)piWB0*4-^SvE1q=`Oo)p^xzeCW-6dsE%|san7;y7KFFfzO7~hNI!93{;xo&nI`6|
z7SYXN+@KgsJvI!Q`Lb>3EI_BKv=)igRLvdLf3GcNI9lU{iI6B%qXQr4oDEX)vIsN{
zy8d$vy}>F4`e6787;S=~1wc-YT3K3wq0Z;7r%u+_rqQVK$L7P(D_e{y7bY_S&+0~N
zlJu$xn!-^*qK<ECb?~4q#7eYfDiUBTth5EZ$}Kl|<(}5GO1@nj5CnSk3;*dKP}J%!
zfBO;o^CR?UGoe3ghv)o@#Q(h6Ug*!j_3wN*%k{zN$Pa0xgtj*KpCeV(ni;8TGhJmX
zjl#;L1`4QXDT$LNqtXp-7YtU|ImeMydIEq!zR8AcRE-RJqb26Samd^h?7^bid|j(@
zYmoo1&DLh43&t#99+t$P*vx-@Qn;mFfASPeedY1$AwR5mxvK7I#DiCXmVv3u>UJ~b
zkV#kHOT#g($bv=s<Lk>)`(+&EvK}@LP>Qdb)g3`J1)gmvA6Pd`Y6vQq)$akUXYgSc
zwda&m4|{}5ElXh`w69${$48JC(MG%LOg-l~u9eC3i~MmYE`-cO?2#f#DDmWsf62mY
zoX7>^R4&^E)>*lyyf#B!)0Fro`OLR?`%0i~(1KbP)xv_>GO#$NVilDGF*ZjRr}mnH
z{!pah9_7KEc4~#_4B>zi>@W3Q;SL%{SMaP%)2@ky%Q3kbiJuk(>L^$6g=HY^wnba%
z$xUZ2vNefAWR#i?g3;I6IWe_Xf1!Z0{=RK2X{0`Tiz6x|;S=f;5A!ag>Z@%dX!;UE
za`$`EPY#jo0SVm&(jD7a+FQo21BQKc!TkC(q8Y#;`XC5;tbx2C5#iMP$buv!ud#QX
z#D<W^D8?K^UVB?~sa-hSDtvQEr&nS{qoicZKrh%%t1J!Qo<Q;)R(5}Me+$X3K<QFQ
zIm^^pZLY9SpO!;jELmWYXo?jl1XY}{GTnIz2dB{)o|2$3*;U=)NnPT)HU{Op?P371
z84BQQ9Uh>dWE_GT+P4epEgX_Sg%KCOAQa_ITk8%-b6_nwDT3%HB&D`CB>y`Uh7u)f
zNrE|dNoTrUH&S_km`f`Yf5LEx^v>ycOQs9Pt|vM)dX=%C6a-TVq6X;-x2~50(FaP?
zNVjFOa25L~jq$6|t5N+ZpC?jB_ZKnLLE=%Oc8l%qiR@d%@*^7709U)rSn8yBq!QED
z!<uhfYI|9N1`N`0kOs7tX^;uT24H_9%RuC?W3v=xv)B=yWj2%yf5n8u-2pebG?J``
zC2=49|5IBVZZ15`)#iukai6Bg_aqrV?2sRJ$V0b7uFVejg85@OnyO5S6$^r;TjvYr
z+f%QgDEyVt&wmA4K&^CXq0Z?t-H-1y({SXh6171>@@1%6sL2<H!oIIp`)+j22$l)&
z=@tA%H$t-jH&l=*e|%*Qas`oq%fYDKbem%Ddd^uA`R7>8pa@4ExlC${TCMB>e4TcL
z!mKA`Sku7@LsK^do<zcC)#W5+f=UKK`_=kmZ4*b=6WpG&&(tflDp5@g5-&(dI1YMx
z_|*DQ#rZ+{^(yvqm%*+Y*$~Br<wBR@41sK+gAz(ibgqZGf591@5lL4rUi>VqSu5c}
zo-RFkOOUr9-nF^!%L%x+ExyJ8)WOeFC9xs9Y4Loo4cy6)I1vj|m+Ul>gx}y`MXo#_
zi5j+CBw}H6>02bJ?W~Pt`yuSPh`z0t1EPb*b3N46EEO!_Ud5v5W&;)0jIcO;E#!VC
za@xwQ_(Eq^f2ARnda1mw@3OnGWPz_0<=%<-w5K-Hs24QD)7pftZE^7-2^nABPlRF<
zVH%Irx~u7_GoQMEYpmY@UmU!lu0YsdE6-ffpI)4NbG8cP#mT0a+5uPxmUd+5py_ud
zaW*K0?N4FT&qgM&QDpxd(^uFD2UM*uXzkGcWhU>2e>mC#>b@p!kA1q^aPPG<Tzwlc
zS;MN{@;;(|=V+bqxMouzNf<MZ`4VZ~>P@-5>Ht;YmFO79JnR`QooWZqSxDr9B;8H|
zwvNO%*u3bBo@&c1vz-Q>ftwO`6scG+j&Ou%<kK7KCpgFv3mXx$;n4Dv5!IYt?jE}T
zW*eX)e{D0cG9pi3>{I<$_B0*EaUHl@*d}G@v~F)8owj4LG;Vcjsozd_Ti;nV5wI%O
zeHpb@KM%=(yJ{z3m3`Qz!2YwCbRGE7e_ys4px^KQ%rQaNR9-GFZ>g8>ObM*8o7)i7
ze>oMfVGe(PyS%xMZkR~M@!SN2trQ7nAi&{Qe-b0?NqUn{e%rn+(}`1h7`7E0Zghx-
zh;S?xOy-fOCWfgDFqBToBC+RgptZJj+wt8zA9**i(AEgLvoIi8G2=w<<l3%&b+<?@
z1E$3QJoOb0f}AFPi-janem^-xlO!fw5MQ4*A3^ZY1@l$+?UJybjo*Pyy^ciMY}2jt
zf2oOAXk(^+1KWBYpmc`xJ$YX{O}-VZ_l?2*XIZ<uX}O-}`(}WCzvg@El<au4(rlpL
zizY<hvu5aSZ*B<cznoUsFo(ZGiyreSo)eD+mDuWb6Vo(CrnTcvuOm{V+NhePr~W1{
zCLxP1z?oiW?ztjnbF%a7;N@skV+&SMf75>ZW{ZzV7g5IJ|Aa!VMi%+vX-#4bLgI6L
zr*&AZ5!*u5!KjX?b9{$zR&+r1)<%v%p(!O?Zs;TcH)Gytew%_qsr*&8B+bHPnwQwm
zxae*U-)C{23bpM^X!X)>70Al7-?epWhzhM<DkxTp0UcPkSt?U@X}{BP#vzGhe_E(G
zi+8k``dDI6v|TW*(;hMAI0#7aA=bB0R-0<C+>(4@fK#C}B`J)NUK<kAU$=eZg54^f
zEYXYxL?91Gkj4sN5J($q>98qgv#x561kLxy>^8bz%Kfy*b!fLxO4O&BySmc<I$+-Q
zeGmRrb&5jfuPg@uVWWZojJPLhf5_3l3Bf2bV_nH0LedcY30IovRnEz=k7G%1$|;3X
z-JkY>&WT(weHZRnVKxC?eCQ<>aP3CJVKbBwP)K*D%Zn+nxoRJ6%&>H12wyEY5epWq
zYHK|ojcV<ZBhwqo@h9zXeHO_AC@9NjJIwLSFtP`~oa?Be_<~bN!!r)Be-Nd_mn+`x
zIo5AcTmfC{vn4v+v|ra!2b=^!%}QJCX>+zg6_@thV>JZmM1<6<p<<<sMG92!tZ3F|
z>7D?M+z~HX^&YEjoR$^rVJ~OJEEU3KNZn251rzcek++Or-;3ECsl_AG9il|wd3(+@
zo0$pfMp#14wYDX)Rkrhhf17hyYUk4!>TIufTXXNg@v`Q=Rh1+8dsioxE{&WL*)C<k
zE0?aoV?p@P@=0l7><ibet41D$_-@Q1FX5a-@>2Un#)4W`Nuy8lUKy8RnYwSrlhgFj
zP9P=vrR$Tux#?w;8(xSD!u2kHBdmSnIwE|~Os+X3-3-4q(Cx7Le^Z*c-~n?tOGmH?
zc3NmFFx2gU$Qhbx?$haPw$dV)2hg|>{u8ZY1)BS;WUa#i)mN2)#Ue@W%IjOV5h=ka
zTSZw|d9w{~E~T#ut?}49iH^hv;VhxjXAYM=twlbhy`a<M*5NhZ)sTjG5+U4@TYDxT
zpYm2|`emXMYj>c?e|`!%*x79)+_ae$poKQz<vSK#GS+BxtzB0CGT%`fiKmfoO5+2O
zHDhOPE9)Ud5sUU9YilA1Zz)(Si082|zTj*|gR)BkwM@t&T@wuo8Ca-3T}<@^Kq(d5
zJ~r(;PD9i(74t-F;xO<si6jk)*($dj4VGzwzPcO$)^bHbe`sP&1@=m(cX>a}e9p;S
zt=TxHD_#IU7@;DVf0bplMD_X$sna1OC<%MH9-u*;uR*=+aY!1l`CQGLRRqJfZCa!O
z9rK~P!b+pSctIlEmCU+pHVdO&S?`%o5uPh!Ibd@nf`rGlxVPaC@9Pf@Q5T^{?W+@V
z$v!QSvp2<1f4wE~sYI@!tK-Xw$;#FRVCFEoA(8B_&vwhh&yvQ|)((TOAhZoVNGW{U
zEUT!?c*j_}N-LrjR;%lS5wLf^WuZDw%jK!g5seHnCc(Hc5!B!d#W#w)fH_EWv1T>U
z+Dm@RDJ1-A6o@JkJNQ;ip0}~Eq4ZuZWB?#_q4Vg|e*{gQcbxO6gB+mtxsSTef7DF}
zAeSC6gtgCm7gri!v`%&8nC|Xpn+s7g9*JJd>6vL$x1yfuFhoHlg7~8wxDf8}o766{
zUh06EL^vL^=!S5yMgULIHPq}DYIO;vcN)ALUQJ7StsBTfI=PD(mmR%81?NHyfK^Wv
zYYv?uf9D_^Zvf_q%}_Q%*5OD1hdTFICF$XcFr930-sgA_vQp!et(NKNB{%bG=4dtc
zV{L3Wq-WTHZxuKz2g|uRWT5WdQlB`-+@0OEqdct-y`4j27FXA<hb2}lUT#Vi)k{-X
zUG$CQXeE8LI@ET#v0na%EIH<!V>RKaoDTJsf1Nr2-$-=qq0fe8rwZ02%>kJrzPYSX
zBT`=dVedDQr2L_-Ue8vPo;+bI$d0@DeM^qwM$!JrifTD;>-83*PCYm|6mxb%eZn7<
z_~=csMQtqs(nXcmk)c`$_bo;di}tD$YjZ->0lt$#G{o}<Wd8s<Ygjuua#oNQXY2cx
zf0R>&#6)s}!`#uIX3VD6t)@QA#lk0aNQN*Hu$DcA8-{kF%e|EBX{*s>L!>TA98eFh
zDrq&l*moww{;U$4XRe`}PMbJZjDn3S5ckB5SIXkX8I-0q*DQZy(-z`QeAs5g#?xRn
zsi8Z9*}9TyA;g4N$nH;dZ6M6OdN4v9f6*BcQU@g)=@q+3`|DYhM*pni(&*d?dP44o
z=$)+rvx|<Q)MZE_xr-(eOEOD>36Z<#Bjqx|!8!I8G$J)O;F?0^?v=}G-7%IhEc=2o
zr~}k#Wm^-rcCTxugDY0q-DQ7Kx2?&y^RV^YmaGa?GY3cIeM$2S&Kpl_vFODHf2MF6
z{J7OQ+|<h^Ch;Ku-|SAYPF&wBTa8Jl-x777tNUgel!Mo69rpIaRZhj{#m;)iNRT^8
zc!YzCO%(g7KN!t-lU{q7*D$J1zTV#u&Xu`kFOa+%p-zAcaNDC;)=b-DI`5mFr@mrA
zKB3WciE<tEh%wwqY8}(_3aNDJe_B4M)H%;bqjTDF#+x7BRnp}2Z2sNky?8bng*{l;
zJMm4Qw%>7noANyAn9ruB-GiE4N>F>xtsZGmdNuxT=GDQd|HN92Y2ROp7+blg-&IOm
z-k_sFm%Eyn*0k?x*=gJViiU(GwYL|x?)x+SD+@a%VcP3}xZ(?x8su;qe<UR4G?MyA
zxU(0~Y@8knX9}a+bEnwO8?*oI?ocNIkq?tM8nw-_<{030=FEbz>j%k~n3FxIGOA4V
zm<g$WZH!NUW9+*5+H1jUwIJU0C5hRC<W-8@+U!XoT`>QWV1L;?-a=w29wc`Fv$Z(`
zP<nHP0E$3$zs$r16INe6NcI#_TritYWF`!#-pq<kgHM>s2gxeQSU{t>K2p&sShzxX
zHBO~vl=^YWl<Gak5>HGTir16XMm_<RlN3iHe^ZSsyOc}E2>ufqp^!$2B;qM>KOKyG
zBKI~mu`X=q3@Dp{EApc@HDqt3t$n){j+B8nvqYPJ-&#V9QM(m>lwdcr1FXDNlZS3f
zJhV(-aFW`y<_Qy0Kib|*>d<Sm!E4v2Z^Ojqnshffpgxvq^ha7deTm4OT0)|7rlZxE
zf4TuI>TTwS%wUsuG*6PknF>k0jfm?y-Pal1CG+#!=)wlV;HupMa{^Y+YKQ6fhlP{N
zMbmZFShMvwjDr9%Z9>*l=_e3h@sSW5+VCGvZYa4$9t%SPrX{^2{$}~UGHz{*|BX%6
z?r6p2l{M$99f|T-7zYF{gz88uW5?oXe~G*W4Se()o9-6MUP3iY46zEou_?NxL7+BG
z9*#VswkaE6_2#h}qSG0QK(8kRLAC_Bi*R~I&SvOfgcdB}B5kV%v~6>NZ-w3i^x9q=
zeVVlGEL@+|Z6&Y}Nk}ePK#uJh)<$LNIJd!3n>8WQ8cX`J2bQLc!>5U@hI)E*e~vf{
znwRRU1yKVJnab0VIe1}(VHYeM$d_u;nWrE5YEK=~NcWrn#G>b0q|Jq46ZU{*irNtU
zqBfw+OO(zq6h@G#R#^Z_pQ!$cPi1otC6ad$Co{bZUPu{>!~K1qd18of#Sn-1cNPsj
z7Ve)Oo$m)&5+V0L2*Tea)F=DYfB&pNh|h^2!-WikNBJk86;gZZ=U#~K_6#CJr1+>=
zgFTPLQXp)@DQ7GQ*sW$0MuJB3fFN&yIrb#syXbNF7(G!0q!W;F^mt(&!i0D_L?`A{
z3(?365}&AzR;a#wwy0gQ^}hC_lC4q}(mo=2eK5MIWQEB@Q;my~x|3fff7Vok&ry_5
zvFcPsCe3Pn>$a)?d(thNc{c4;i`I$n{HSi~C&H%9IiH-a=pm}4ZOJhHV3Mj>HF>W6
zROr+vk)*QONd_EdI{W=znr+8tM4*UC6cOTsI`O#D#m6;W)T!g$0uz2AzE(piW?SP$
z+SMvtpplXd;ya-9T6gA*f6aq_()R|Mw27bj3MX>WSqN=FqNT*p*02sWhlXhsY|h4v
zK^fdGkz)E2P|h77_J{?%$9fZ8Sn=e|r_*1a+RP8FF)&4W?9u@h#+&P>ofP^g2l!CG
zF`Zp&bWe)IMS63qI@&JMx;MPX<Yp~FDObyw=sOPtRq+Sm{dD?Ef2SxFyP`=0^3=b`
z094vLbG$ec`)q^i1%bpRB=U$c%8rdeNue@4iF_??y(m}9wq<5V@KwGHntt~x&BXBx
zN4TGo)@^zvFSl(v$J^Lw;FYv<@yLUd02VRH(ir1l31?k6PzuB122a{Ncc-(;_j>f^
zM2Z~HTPhcj<wk7;f2h!^DN(j9GCUs|h4mM$W|3S_fo7Bhep-bibw}BF;!gMvyRQ=o
zFEbc*m`IJ2C})gZp6N?reR=*+_^#9cFHs*t%8567%taD;d>NNalJ@C%k~V9bkquwg
zRx{!>#C-Xd)EcXe6ESNJTEJ2m%@se@D47q?HEFg`bAV{he~}172`-q7v^L01^8w$A
zad`cfEKeJ4r}gH=mD$ma&)+KSl-@5f2g*$t{NI-FcMq&cI1wq-B8v)O^K5CfkYJN}
z#c?F4d`p&&?ePX#0y}Udb#IDf^sc-&cG0by86<(1kuBY!Ux6ps7|)%ly>RE@+X|_W
z^RFA3`6iu6f9#=pZo*Hvr=#HGxoVQ{zI$19ENtxGIbHRB+{>Etr@Ye^xTNvy=x1+j
zjWR!Q+y3{)R;%gGQy9?}EnXS+nyUc~m()B?*70}MD0_{VhTiVms($VCn_%DPMAROo
zw_v)EGCthjhmjcS{}(sj;j3q(Q6mwy*Y<OQrJ05#fAV8SBUuw9%_>>8H^OWah=q<k
zxXF$#+q~K818q0mVu7YCiF{j$%HBJ~1{SDN9Qp7MxV@=w#M-pDPC^Y3gU^-P&N$TR
znzRGhvL5Ws3ggT>M347xFyH4%w6CR6>|ZBS!XqMy7*e)xXfk}+hdtWkw#lzRe571{
zJnvK<f2ww_n!B}qtgl9cKbmnuey@oLZ5x~7FnlnuiV9O-<3;8kZ~J{Gg$Y>gG&09z
z#(F1rv35hk4hRn0v~#o6#bc2MZ^20nzIA;yY+SEjglm}XcW~U`AH}hAs4?d_GvRiq
zBw=|yEOOlTl3M^QqS<vF5U@S56q4lc6zRt_f0~!nmwp~GpX>z$3sQL%C)0p>mB*a1
z>phRe=@H7W)m7_^3OJm^F{BQWwwUi!?N>E#Y8SH(ZS#c|O?49V-?T(f*amtm64WoA
zU#EFpD{0DmPeHZPIz17UyxID@TqbBo$uoDJ+(dv+s2hkLLA6dDJqr>N$tjhe(?zR}
zf3y!G^EsfjUAEYDSs$^ZVLr$vU~{pnw%!qwS#e3VjaOq{#}f3!JQ&(9{-Owe>Sk5j
zI@2=6Lwxt2Isn3Pc-^n)Vr@vcI~@GnoaYwKaergef*o2nxoRW8O*BVs=(nYN#<)i=
z8Iz}xjg2k`Hr7gG-8n*E4qPU=z-;Ipe_?@mzKTjK-8nkaI7L$my$=t{ZF{o8O>2R^
zT;O>dk-sRs1caNwl}|_<XO7UbU`)wud6={`Op!biFGxr@4lX{9-`^0vPz>lN+@s-v
zV=pr?3Er6js+|$GH+1oFTrarRR~{4Ykw_{qG*T1_l4gd;fg)T$xTCaLZN~wof8k@1
zCYd)^%y$tP&W9+z@sOau6Z9AK1de+-zJ&)*(Z8c72k8HgzPPyZ<!O;~*AO{%OojR{
zza*Zbv{OQox|QZ13H7eenP0nA=xgn5^BB;%km*uP|6S36EN75q4Vn=w6Ha!ucE?j1
zP`LyVHQ|2|@rV%M^*R`(H{gX1e{r!{c<jfpkchJJ;IQ+`3v~mEYj|&G)NTHC9enp#
ztsWE5Fh0MWUQEyveR>+8(`d%HDOG%-6PBrUb|P`)W9~oIWwqHXbAk+O_GLN#LKlvP
zElf<~JI9yD4~m<W;s~$;Trgi*IUt{fC$DJ)MV^6-F2kZUnlS=9f>wHPlO#~?fBfku
z`0r>mD*gA_%hBkkKOOw^^NWLLKfQeM^5vgK2hX1$jQ)g18^xmLFA);+KaJMzt4!Q?
z@^`hs(KTAK1SYnLzJMcbuwVYq|N7tBvW2_YIyyI0`@xF<OJ&`nKmI_&@d9%>{HRM6
zp|4;6e}g~%*i-so_z^6Kp)%oZe{=}?`gJh)FP5O(@n1Ao$~rY|htQrx`rG3|jJ}B^
znZW@Imc<}@y>lE=wm%#U{-#6uu?Lxgl}^%x7+2@vpp2z)?hf^izksKXbAiJga11{d
zse&`DAb&MyK|uHrU4SbXVF9e=1MG)1qC)Bm?3U9!(Z*r!-a!sovkDFee}hkC`r#A>
zOmD;vQA+b4f23IK{1;1jic9K7tkAY#LZYu<^G%1B1kfG6Q>#I_LBfLzEEm9y(+FYT
zrwWVR!Vr}h$yp*ve!R;RxCppD80|qr2lg7E!o3UX`s-L@z26;e>yI@FzjAWW^5N_s
zel&!&R6)HeOPX5$^uSWMf0;+Inl*HW7*9c(1G1qE#6+Lm)^&z&#bk0eCR`p}zC&NX
z0x$pg1Cc-w^Hco-5;cpvpbg&@xcT+#{v#*zbU)qb#ORD+|1}P9<f)1A3pICojI;T%
zKqvpt)yd_%qce1Rp{Lp50HH6}$&`39KyxCIxbbYd(miq~(cWHme{fnxTR;8!740#k
z?8h&IqX^Q5BdVsVxe=o#^M}i`0s3Oju_q^&A5X_8pDi+<PcLdX@}*v$@}hOc5D^kj
z11c5>B03|Y)BZ}PP_YGTGkh$`U*H}ij+BB*+0cpPm~pu`WBgW)g<<f%&GY(d^lEgN
z69)5qXuca3lEi-ffBMCYuinLG=R?*k#5b4*uwlpYP_uD^GA;5FeDLh&;b=G-9vmtf
zYKKL4uXgoM(tg1EOryE#z+5dkqaKL_K~E8S0yj}A-v;^%9qKwsLpsn?tpktF;RHPO
z3!6)yX6e+66x?o+3@z{t_*z2>cePB>ajb?MrjBHTm~dD}e{+E_EJ7!*CyJC^MUnzW
z{9U-Gq{y2*PZt=Yp)iVBK)vMvJP&F|L^<*E9qY?<R_Kg?2{a{vS$Cww_8ujGQm8p%
z7lwnum&^BOC!gOPouB;W-<}kvY2h><<z%fGyI@rg+KZZ|?{9)dN{9bt=MObD*vAqN
z;VetD>F<xpf3^4@=1v{H75@Y7)xq^R%%jJ@e%(R;6XDxywD${oy#E+I{sU>x{l7hV
z_sdiC_3_g$gD?12Ac{jnzrI{&7_g^*0kS*)_D4$f*B!KHzEK^a|G0R6b~^qqq~87Y
z%V2P6um63iF-^?1KO->v_*U#?^~U#bw7gvqPU@cPe|v!%UmDH#a)Yeq{vNp&dwE$D
zUk2cnU=UK4IwXf`^{ZXKjUzZ)`4~q}U~^agX6Uha31vJkk|5BtMLb1Mx_$Qb>tN6E
zH@GAryTJjv#XM3g0^D(2kRUYS#9x}genAVYL>n%KhwMgs0!$%I^ipY(XG55N5kmos
z=5SRcf41I-FSH2niw)z+Im5HaouQk6npGjkO{IEDES+OM#dBhgZy6ubP^t9GBr;ya
zr%$`J(@`7!+i@Z(Ct0JfUkCQYPZ3=hjW4a(e%W<=R7TDDQ2~!HgK5CLYhgoKq!k5E
z?K-TF5;UzD^Ekksb;DMHn<Ob;hE1lRUAo|!f9KKhi9KDfmDpN7<)v0bEd%|cuQc0}
zRnXLSnav4s5_>GvB_}{%?xI`uUMD^9VGAc2sCbWYu9IwtSQ#BRL?f_^=#UI|EgoVR
zQjasiX7VJG9G_+wwM%sy$1aUu==6A_Jj=j79IoYXYG+%f0W9Neg5C?}j}swTc!sAW
ze-QQWkFqteKWqP{SZn6Ymzu7>05hv^a~*$yU2!}6adiYz<3%z3%RFFH91LUT7y8Z~
z7dn*;iarOLL+Z<%K>&745a^x0wp(N73#4HM%ML<qMrRILDe~rOv2N5;G+KxA=y4g~
z<8H#-#?7?+m;=74)7xpeD)>ZxBc8Nje-sny6A$zJ)_!#+G=km~M|3A|s&$B~{jJEM
z+%!2Sl2dP^OlpI^DL$p=!*#v%<W6}C*(8stXqsf1W3?k#dp<Qn-`3<Zh19men-Je+
z#RyIIt8uOj=@uB)*5#(T*i<#_zF7LkS=RlYnCtF*(`>G(E_PoWwy6c~i>YaUf1BoG
zZ5_e&IcZh=uuutMZHBqQZi+9p#SJ#bjbizO&9S2hcWeAe3mR;UA%&6$o8w0T?AF*}
zix_N-8@VzEo8v_e=+-!4$`ovj5#>S#o8v|q@}^nhC{3_2uH=gsY>p#&sGH_SsT{$^
zIN>Z<usN1E!Ec&3t`Y<rW00drf5GP1;{d*C=9H@rtjn0xLQjn=Wu1;$WL)U$+j6Zv
zY}$IWmpxA))P0l2o9$t~ovlPO_)W8EUUicc%GYm&S-Q^sb~vSBZ(o|W%OShx*ba{@
z^sVnaH_jw)lO7Ql&@K8rw!)CuWRBZBS1OP<%^II_;>oRY2hMdjtZi~Ie>csM9O!kp
zq0mS}Tq?J1o#(>U&z{yF)puf772>9ip!DMHs&4$c8@cNdUI%qk<Tu{G?aGR89fSPi
z@7w(q<NrVVWJV*Z?|aHP*i0WS@&7+Pd-iiF{{O}3#m_(D|L^1Pk3aVR9gUe!a=H9*
zB3Xzf_2AST9luBK-d~}Uf8*1uA^P`yP@Vh#4gpkY={6IUpXP;}E|CW@1B43*1YTrH
zaf%^>p1!h-W&xgy;oxdPIGHg{cF~MT2yN2^2Li}r!qF0kfez`hA&C%!g~Wm-fe)Rt
zh-B$4=0w`l%YRqB$AqI<5^3Ey9Q?vKGB>~UeWmMz5x9nJ1wP%ef4yy>P_iLKImnm!
z28K0z2qqDMi1wik6vl!5ZU^ms{W{|e^3WpdD6rai&jBNk7PN-^+|z(f13Dw#(hG<#
zA;^)3B@Wm;cNrml!<VsSStRdtHbdkF%B9#76;zIu()loKeh?cVn-%Y&ivJQzf^Mcf
zmp2W^w22;3pk+Sie`K!Y4#!m3IPa$B<Su4{_*IS+XzPcOA|fC{Od3#Y;QD5`UEr&Y
z+g^dc9)p_}B^C`_s2>gxgpD7fSEJE^`k}K}9vTV;8tMAa0KGw(l*0GV9ANXL7CwIN
z__#uRJvw=Y5Bl)vjIrw^){N5K9uD@LqdnNGjND+aFm{7He-;W%g@6IDO}*0mZA3K_
z!=sB+Bbnyn5RPL}6dPT^!f(_k`YL-0O#f_ZV5&Fh&+U)K1}vZ+wGGUV)&|R%6G3FI
zm3`9G6tZ{D7!T8?g(po-(=(Z=zWT45SDrQwPU2IkIcPOe_MlniKn4{-yo6J^R4Rnr
z83JnF^#@m=f2;YE<^@R2HX3CzlRjx`=2Icl7V1YMBeh7EMZ9tNz(Z*>EWpsglfF%l
ziNrK;K-l;7n|9vhk<d>%AW>+VN1_0s3le5%FLRn8Kje80(Pn6{H1OJ>0*^XTlW$xk
zCl8|wJvx*;kB5HJ0gXb_JQf8AU69auaq>v$CmoO|e>BY_QGn1*ymF!NhMVe1mjOwG
z>~*^&>eZ+)f@#|>IO{oNJXY1|X)d;Qo~1=V)yZ0f*Nv$<yse6%dD9(5Cn$&T_eW9}
zugfE+pL9SfiRT>q1*tKQIy6=`MW%)0xC{9gkTEJxug)RWxv7I=8bT*dY2IE|a4|1B
zqvQgVf5*%PuM2|tG+LIe>4UBf^N8f1cR>KG!gNsKSEDtCg}5e5ZHMW9w-`Zkk%>$q
z7mZedzPtVQV05NE-IJQbS%CJu7bqM4mp@0y0ejI67!=|M3BVi&0SP|D3Mhbh)e{6n
zdE#IU+kH94-hxc%@8tY7KpU+F?c7|4EQ5P7f9ea+2Ku_uTN&Qk2<pS<*U4-~_%Add
ze<RrEjD^2owci3*2g8G2vf;P`kULn>AUk4LE4XU_`&e^ax(ckZ^PF)NNT;qts8s+R
z*PZY60`_Knj7i9%3&JVW6Y|-?%dSH8X8e|r_#EHm7si88_vWVEiAjN{zK4W%y*P1F
zf4n}>N2^qaw-S!Lg3_!=-rDMSby!E$Vz%n@m!q&7A|}M@bulU#VEoik`<Fo&VhkP~
zWu**6hrh0cht3ZSBHs^*ai#G83P2`>!uBfwIQeB#F5}+L4KHAcZ|mV1^Ws*ZxhYfm
zd%_#%o^dqW3!26cT6F8~i5u^5fROtse@gSq9h!V)UYs1FKaWE5Q)l}-L<g@%=X9WK
zpA=y3-!)*KSD-voP>d7bHZJ|Ff%UQi>xF`a(i4U~q3?9*RuE-SgmCa|R3YotNCT<q
z^q{_l@D?P*duHFU2eH1Zpl<=th{}fcFUsvTC(Dlcl&5ts>IS@m-b;WFo?_e9f8{M+
zO#%=qLhjqT?4a%q=edTHcO0z-Bku~g5M0kX^ZjRyS;eKk8msJKjBQ>1-5J_Tjh19A
z5Dg6vDq?z02lg<~c3S@371mD*hu_#V9jg4l`-;$7^Dfgly7Thy&d7i=F$a*gap~v1
z5@ydpZRh3Rbwl;6PL9{Y22PPuf6;}Lq*b|60M&1bH?6>75=d$+eUl$h8xO<AbwBh@
za_OkFo&Kt$p`Mio`cNv#13S=0LlV#DM~P461sp!9ji)^b-h*=;llN!1#9`2Acu*1o
zpffgCP@qzi`f{&NE46X9dz7Yjc6MDU<pVpmD?Hc!h2g=$vtcvaOvr{ke=9zTZa!kY
zD|>q|`h0vkIeL9|a{Sq3NSidlVljy(3p$hIfRae+{5d6n?=Mc?P5yTJ%hl)c+3Cr<
ztIv~@@#V=?M?Zu9*9E7HQ@I=mSO_S$rrI@wxSJG`P^GP|4@P@Fx!Y6!6}ST$<D)U*
zQfCJ{$8ics$Ghx#cyF3Se||vrz}W4^E*1$Ekc%Lh(<lR|pYFx*xIdurWeV#5WADwI
z+s3s-@&5PuQ=nMs8auz%VrRMCu9sI&mS|hCwM3HT*z=~;5D80+D3VQ3ww0v6`>(K(
z00~l*?bx|9ovAyWh*-`792^{+<rX2htgsYRmB)@tS6Do>Zv}k7f6e1@pN4*jZk+ou
z4C6ui1M|53dD3r;PD}LXm0^dsmORGEpmE&jHYUSylji9vF%VC?eu^NuUdV%)pGS?0
z(dlGhe!4J+qsgh+Xqkh;#m~oVtfG0rfb{>BAB~7Vg;2dg;a1_@n1!N+?%CX3vV|ut
z^K*%=qw^tI-?8i)f1M8}&B17L+&(Wu($V?w46T*kXXe$$-t;QRq(-|XNsPwz#lRGj
zqTSj!#0Ys%JH*KBHp&f=BfAtxHp?vEv8^O`U@U3K&y`IUa?+^Dz2}O?s8}Jgi{FJ=
z%A%ITaLAV96G`a`2eB+Ne@c!Io13>;T%JlKmXgLeKEE)#f1{)JXkvC-{a(APkn^S8
zBLBzyN%{XWN69Dj{rzQ=|L^|$gZK4%%K!K6LH+GN{=d)hhr03(P_zm?3?N_?2xxhe
zx#Z5P`1)r2TxTfCsFBRn1^^wu5d>so$0N{$iVk<NW$wVfC%FjoIY{pcc$FR+9DZOu
z$qc-aa|6&{e@Vnos(>9UJHsK$8}$Q#49x7OxY%KgR3fQzq5KZM_>Kn*V8pU9?!&3R
z^ly<=OkZ_uj*Bz$*ehFNj@mNA5EenwN<nlS`pa_%M=};#;yNC!51Gf<>JmC0_zrO3
zIuR{1DRAUtVri@@<&>^5ZyiE!hBR;}%)$wi?wn}uf3G6xw`u`b@YdW|pfyW1S)MOf
zjn27X&KA75f=l;#c|m>Xzf%mz<d0zkSa}$g<N}Y$bCH*{-vjlWvA=`JzhZz!p|b?v
zf#-NO@*+@ACP;5*mf6?PZBQMnnYh#Y=L=41*8q;Av$Rr>hXpkBPXB@@bW6y*%?lKe
zX=*!Ge*_G|Zt}a~(vAFz@2+^HGCRMRAW96x<4G|{$1W5SL5*~H3H0&Pp<W(s{GuqQ
z;whd0b5j$cQAmJHNXLt?J{<(|6l*{mSW>(gvRz(+8kr!HC!j`CADF_aK~JYNH8im-
z1=Lv6BlQ(O=Sol`IfL`5L63L;Mg*B8C@+b^e<-T_J0ZZx@;zH=l7!2RXx@G5X2l|X
zea~I9wAFEIR>BO1h!!S@X}k?d<v12j*9-|+n~kIvLsio%!z0v{B30$aaU&EWI{}Y!
zH&!HSuW3PYS~drW#=vE*r3(XBWjMR|<i8OOgR@5lIF~w!c2RpxR6PsPTZ+3T>P%`W
zf6$`(p2RGnmN++*le=?>(*R}Zw-?XJXJt47qV47_Ezx?j0w*b2X)-8Eb^2pffhyS}
z5}eSs0rH}7O)DFvX(MQ+K>^*9WspKd)fQ9W$ZBJZQEK6QpgE$`zh=mvMKvE$_1_s4
zxAq!@R9F-(OBpW}wu~;E0=+;ZmLYn$e@>isJP%j}VMi6vwb!66F4S_Hc<E2qz>nrA
zRFaGnX$Ea_O`4++f!8&8%Zm&8L>W)q?+xXmSbGgRD>rf~+zVSBN;Lq`XGc*$OMn-J
ztCS5uKYd~d(0@0UR)Ha)_L|i(OGBqEh4vKC&;iNWY{fVG#|_9_PpZ^!{NPE4e@urX
zt)F^=+i55bso{?0dlroHhKZ||D8GJ>%Z-s$xwpZTkiVBEONbYxHWX?2bo+_Ut23HC
zdPix@Y6TE%U?OW&ytxY5#|F^yutUCV$H&_19RL&-t^svoBWfC=Y=L0r+#(N1EfPh5
zfGi~$INYH$QWdVap8<A>YP3Y*e++?Lrqs$`jbX22R-27}<EVY!9$guGdpp{619B%>
z1x$(8Sg}%c2MLdiZm66Id1@S=Z9=-!Ggz5d9zQN4uHp4VVB&kL3}D=Fl?z(F8OyWL
zeX66pI+FEe<XtJKD=yht<3^v=uNXJ_K!o5@^@*-Aa?g^>hLI0bh#d>8e=rI$fDxe8
zxz1Ko6nZE^arsFQxX?quMYqU}%aBduYGqZhBd#?DIS&m2Oll-iDT&wG5yAnl0vhH(
zLEhPg7_XMJm@rxN`_+TrDL(tvgFp7@-^9TCb$NpjOrR)vN4}HMC~#z?on-%1Gwb^n
z1}tT)p-L%Q@~zsG*ivouf7{&K2v<)b1_rb_EkiV8bvPa0t1f=WRmZR0?oUw!_iJP5
zIyS9F+7Qi|BapENb|1QP3Do?Vl{*hfj5YT5_B1-1q^T5WcCz#>Hh9L%j;$e@$il(A
zuw3?fNn4RdT5=2dN*mCo4e~ds+Jy$0G>}YbHa(kMtm!OlW$4F@e<4)mbBtCLk|k<`
z(Dx(IYyb;|k#pmaYaIxYOOx8Lko+YKh-4x>#yd&PC{f%W*;%nlp{rVu3>puTY;cJp
zsWz<6ooJWhtio3vPYXGkpx$ftQyAkUe-A+S5f3?)PbTfj;adTNACvA$N6ltaR)8NM
z56_*O*dmel*@8_ne|lpT`DOx^ysXp9J{S8F6j9kB%9oSBZ(@7id8x3>6Mhzo4wUTu
zoV8Hh6Vg;hXXCPvcDHkrk}&z~sHze}=~d*SrhA|%)LpS<NyV3PqyV-oQ72c1iV4Dm
z`Ho)`WhpDzvJ9|G*ZU1He#Ptur3~a=a_220-#RFy8Hy}_f4TH&)hAIRiU<`O1+Kqd
z(&RfVfmDDjvQB^>+9>3vJ?c;hb|N1HA$6q%{w)gcLMP&Hu5npSHgpvb8bike*ojaj
z9y8Sp>=1=LfEd$^e!P?*&%FU429VJTvK4JX*Cl7I6QQa;p;UrRU)0Q!S+gshM0;Sj
zD!^ea)8`ocf7*fJ0!4inTBtg8XzA~^jXbiCP^jAe<j!;CE~_q|J+BdU3!}xiBv6&c
zDL$9ttX%P{Bzt#a{+3{`G=3hBcXW-xk7RVtM$F^3)O;`2O6cWfwX88oWF(AYdl6Je
z+z+UF1Tl4421aeMU$3wZ^!3=-V><R69=v;xSIfQZfAGw=tmN>bre5CI>dQz<AeCBo
z`8_r+KIVfbixV1mkL<XloG3X*>&$7nm|6dVd8**PWvVASq0JkfEwY8OZYd;U{?qjy
zm-9@O(o@e?hG>aHV0*+J4?yq*`yOEBWlK@wBhKg+B@rP#H?=K|pR$1;&Ry;P{E;k{
zi$FdFf1gX!VM}I9aF*hDK3+L&&vq!*9r+~>QBC#+I<B~=vXx#-OZ4PwKtwm2mtU`U
z(~EC!2V!uCT$jju5tSiVGv)nq>Tc%PbhcSIxw^WZV5Mq|%50znGid$a;_{#j-?$KS
zD%G(?sSKtxi?I!`vs}3m^pL;8?phS?)s_Iwf2$s<D-*g+ZBQd~McqWlO=Vg&va5)C
zqWtMo5{{3#sp6_yRrLXsD!Q7_5wkb=L9(ZuW#A&B*&rLNFj2r-=sxe}ZKM0fiib~$
z8@E(Gx6CEfwPB#Vx#V5QH&{>zGW0ofKenN8ols{+A&9xCk+P#Odn~PxFAT8;{ingQ
zf7aLcl4fL*bM7NTjrSXDFUsf0Um!34v+vjiogYF_Zn1TK1Fvo&_2ftppiKzp=qL8C
zR~BglZF`>+q{_(ho!gG-KLl;!0cMffdSB#nXPb*YXap`_bkRCML?VX>VB{i;T0nb*
zgT9C8SCQdYSRKVoNF<3*{#Hr<mByTHf3Y}H#<&J=m9cV(1w@A7xkmn3K~J=T^xR~2
z9%YQg*_16T!L9h}7x{p>tpR9R2vfm%wqF-3C~vhO+2$#)3uc!GjyDU*XqF2xW)`mG
z9Luf|-ke54CTF15Jjt6@*~p~9A~yP09lxf0KP39AzUO!F*UFC&*eEpfF(NnWe*jq;
znHeCfEuj<#KJ94EVil}ijFz`3Z2HT9oH54#`2hB-2mh+n4WK>_&<J7nI#A{RWjn@6
zO<X{Ojkwb%+q5kxgRWvmA)V(abRsz8Qwx)r@L8b^++`KdYt|fw5o^^Xf2C$KKm&}$
zFB~`U9fT-wp@o3){~5rT&;<&Ef1s+e--|I;2Gq24JRCvKN&%VQo~6RDE7Nr@TItIY
zv-eb&FtX-}<!Iw;yQWu#fuzHXSJcp>Q8*E|vks0LO?e&`jLk#pYP?Y;oI<POPro25
zI^=d@&4MxS1G2W$W^Kx6jfKclHime3lo1pQm$dBNqA+x9L_LUBo(0~&f8owV!`01=
za}SJ4-XnOE8Fyhk$IXgd3IAF_mmO^|2q?tWolC?<r|ly$2Z5d_vKAz&C-#@hLnFnL
z>bp!WWR-91I6P=~x~4Q}b%&%a(G!V$*sEq$MFNycl2>$eazK`)jiMMb%k-}}Wtir}
zKA4PY_6jFC$fD8->MM-0fB0d2@VZVaij)*pc!!yFmu>!C>WY{u-^>SOZxZsug76+&
z?AI$|#N=e-PZl|YW!?i~9waupgkjaaLZH%bWvLMj{uiUvAo=$dJ$vGk2W9yrI^-l9
z*vu~~DbF1XdAJ<Q)Hd;8`o?*!T{a<mF-k&?w_Fj04A-q-iS>nme{W=8pMZvy3x6C|
z7(3qmWqVbk@@Khbds!<=N_j#&AIS*|b7!L|54=o=G(vwBp?7a8)Hysfz^?2SQaBoc
zjn>(+{Uv01AQTNG9|Vm?rUE6pR&0Xa?$!{={j1Oo<}h`{&wU(uPXTZdkNqWz=4gch
zwn7*P(;N`t%k(v9e<4Mx>dk3EJkF2~BVVeRtILEjfE*r@Cl52kk`M92E_a7Z_@($<
zse^rp&z0)0aS(%yWd(fkr;~(;i~TxI6eOBzD0D1531Boo1U3Fo<)PY8lh_&AL1<Ps
zbO`2A6p+4=izkeXhulAnmIpu+yl{faEef5R^&vHq>;N!De=tPhgkB3LH;#)AK{lg+
zvMl)ATx!;6Px;w91CwM}V&BM~v^a=78&L&BFr1+zIng!*U;||6Tfw(hmHbNiE1&o{
zfV4#w-&*v_sj~I&zYpKOeIvV#$9Sbf8x>_lnthi!mhCFB6ZsJ{>Z_MD&|X!z-mB9G
zei$ip%WIhTe~tHQpEQ0#h{$j%;a@!s)yc2w=*q$&f7r$9Fb)=wvSza_mYEhvp#>aF
z-DZ3a;WVOayvg5ce-;r{K$KWQ_5UXcD0zb)|78n~WWM$JCX~OGph-m&B2B0HAYW6+
zHu@Elz4B|Sf8NeYvtBn31^ELo-oAZf6nP^)wS40tf9)G&oC3j*7jYYaB13)$kw0WH
zk`H0qt0&|cBZ&GOO8-GrutQl2Q>f@CR!~d&)Q_cWIl-Bgip-{gGuJ9fT5|hFJEE5G
zzgEsIbP>B?-OZV=%#M*r#VWfq#!}Vx5f;6<JFBoZkcmQcgF@t4$QI!fjtAgQ+#QD8
zQ_#6Ze{4z=qT1aYG1up~or9Ufj!hT9Z}k2~E>g7pPP!=*=r({+6^!N%21^7zLIv*o
z!^$A~H;PFDdiIXiEJ0wjog0cs1Z)%_>Mc&LHX;x~59<!iR6))J?#Z1dJMhEAMVmsh
z=}@Zb%}x@7k{d;;*CR|&C6<xcJKW7(GS2f%e;sl|6mCXT2n{{LyNZoSV<y@}5e|k&
zeI4_^3oA)Xy!^*jOpX)t;=Dl?0JJO=5IWpC5Liol$Mk5WU<}a8g;mR62GCp6WlVoS
zOXyIih1g=v%yK&+4;HY5FRA#Tr5_!OHPBz8$#(`Dv&(WYW3wm+j0%|;6hnd8Ndrlb
zf6<i-WxNe_O3|0xWC^Ca@fisoGCJ#-HiSsHNq8BCfWR>FuD*<^r>taY<O3T;C|nXE
zleOIFw?T^@09hWuz+s=X)L&r~A0{>#hMKG$ze=Cp#1lcq07f;noZ0zPNux;m#^&w~
zxAzl7WY;~QRn31RV689;!5#D>3?hGrf4(WWuJGX|OP4=i_%~n`;3!0JxkGznBDXw0
z+7XXusZ3Ppo@S_&6s_GEiqak&e5gbLu+e?oSD2^vq@W&sOKQYQ*)dexlF~Rik`oDX
zNW_PJ^Z^QdI)nZ*P4imaD}1iV4p-!X1)Xq4vl>*BAk9oj2Zg%!t0dWqdKXg|e`NgN
z(__jm%3FZ)brmAcWHM=$2mY)#Hl%+|fmM21+Buo4H11j{pl4z?6{8>kveCU!dJvHy
zcqeZi6jFU74I?-MV(^53-=v@jg<hoj_w++eBM8I`W;|4`cmY5Nn7FdCO)Jju70A-r
z3Hg)bXlJAQW8Pb2%#3qgaJsb|e@nS&yb}0`2FxEL*<mbZQ0Z>m$dgD>gEbu9)@*cN
zyF*hQE2YSn#eSWpnrHars56WGdXf@aaT_lq4>Kba3q`p(Pt%+TNDb5UpsGDfNXrbA
z8j+c4BjjdjupT2lD^Ddpa~YDpoNwCBTR<dlY_aCbiPE?=lcxptg9l2~e^TTq6X&EE
zB(?BpJBm$-kpJvTD_k<goGC|QB0mcVtk^gf`*mp#lyaFCLMNT-yHNP}R*=ma{vaW=
zF$;N-NJ@jTy=W>Pp`?h?QbQxEvK)E<gg=e6D#5uQBp9}wdE?TzVFZ`{EednjJiU5|
zRu8&>P!&WOVe|4%&$!_-f1>MBas{j1a!y&bQJL#W-q0_0Ny+EJ^ITQL)Fm%0aq}N@
zZ7D^K4VRa^F*H{g(W>|&le5ywAG6!tXJQhITaA{$MThJLQb}@#J(`J9ZH2;yH65~+
z4;DDtQ8o)5-OMEfkFHxu;gju}BY?6E%L<{qDPB|%<#XrBgwbx%f7<77xNQDdKJ0DN
ziCwsVh+ry3of5(+Z=CGnRJZ45DV4Jve~_e73I7A7RT9E-IRvx_34NuC!(H-1x!@h9
zt@C2JL^L?O!wni!afa4yTlbmyD8`Lc-`!F{T^iU@wN}#hb7^|HMof28mY0(A6HXo@
z8-*}JHp{^vvUq*df8<`Fj9=kwmn^(eZJmdOzex-yV}Z`F&3sMxT?n*WO1M)l|4Hx8
zuzl%7b8(GoX=xp!$D5HEpA>SKq={gpc?b@oU{QukyEN;oZe^z{4C!0&GDh~^-ZOAh
z0cV@toW`Y@+1r#B^0L)pS&U;L2{_abCj-mEhQ#wI58%Tne**puD=^GSQoJ_!096+A
zN&96b9i@gQpHSY`kJAe6<#)^OCaIU0n?<mxyNTd~sGkLC{2Q3AB9N6O4hGQ0zT7m9
zCbs6jj}h=aRLz>j%AlOtMbC~f^gvQ~0SG{1tVM;7vM9$GlS3^R1I?BxgSg16k|dkj
z+oLk(`RKc+f5zG#`O#b_LkJ0YBm;<7QX*L3Ep%KsbvX}w5spi#?)rCm^xn9k<Hr$E
zZMOJ{gsMK7(wW<vD50krX2UH?+h_AFDyLhSTa>n|?iQtOSn3v4FvZK=q6)e5EG8W>
z{Wgy$N|zsG+9^w!O*g25ak2|j-J2V3Q29&o$2?uDe`J4-3)G44&s+p9{cz#>P!gB?
zDBhI0kqPeEopYlk)J;={&QiVOvxrHOIUbxG;{oWzzxCPa8uF952sy_NqIICZmTgAP
zu>%^)^e{E?nCA%Ej#cz%^ZYHa6={Ab!ZFOH6i9{t@*(dbZQGcfDb-2NcaTOmA4`_s
z$b~Z+f8*fT0ZXjmU_jH{db9XAC;C@X<qwqSoL;}o*;8k~55bYY@@yai%y}>&82Jn2
zfnB(OgdJaKJ`jDQy~LsTw;fiN#i5D6J#cc_K9)%!qPE+1pZuJ}7vwGIfK5GY(3u{`
zU@1fU7W=?RfRvQxhutArf*;#Ko`n(@=P9Lse>Q5C(BHwpq5dz(W-F%5_J^y7iZ+5Z
zTs`orEH;07kuXd+C&iw)57>(0Tc6eFKsIOy@|55DX>{`zMtUuk+x&F&g1s-r=<{0>
z#C(mXr5V3P#SE2keUk03P-2TSXbVFI10;K2Pum?>yGGy$i=!OIlP0x;k03_x-x`I(
zf9wH+rhHa22Qw~cr(LcvP5(8eg9GGQzFm|?|KSEnHZ8rN4*At{BW<*H(VX1o4+Eta
zYJkbP1S@>qaQD?<oAh`P5}Gy14;^l5^!$i!2~m8BH){0T;0&#c7c1ZQC0N4eY^QSC
zsfh)0*SCyxCf~e1EqzfIZ*_pj7%jK8e^YAT9Uf|;DeU_LtS(RVx_~!t;|%t4aM#25
zHO2w0RI>%gZdn&S&oowb-d<Fh&-;FXQK&}Tq#E=g#&>@B5M3b$1(}qEgx9ox;KPza
zdun%L$_n1vz<*16)6OuRfKh-?n{Xta0N%6TF$jGZm3oPxb1#0!8-SzZJp~yVf8~hA
z$_VO*VDUR<$^OdIv$P;eQ-6aPQK_M^i9g^<U-&p;x&F$2z~cz*m!d-1bcQ14Jqb-0
zDFZ$GH}HxMJqd(vnkg7WJ`2rNTgE81;>!e%gZ&txe-&@osp<9@c(HY!jrBv4T#_S+
zD9cb(IEceT8B+vEJoRN<sC<*Tf1QQXgSEd3K`fbG^U&FCQ)7yS<a@U$jFLpTHwZ@L
zFk(sa7yI>!_~j5RVep@<%<O+1(reKQ8G83((MPNyu@Jo9z^hxjMAFl7e$eC*G|c%n
zPD4}CqLX<kbZ$fqTnDEV@VqUb+ycacr7y!|<xStewUGtB(;5NL@h~tPf7eAb=!&sz
z7(qkp|66+<mvMrCCvS=&a%fC24gS4xTtwsx{Rd;?4lB{=MHn~{E4p)smr|ZE_KTW{
zO3#BCiul}G@tc>3EUf?<S8v8&?UO&E>(3v1SC{*4&pDdgZ#vQR@^}po#&zrDetvau
zadv%jT)(~;udZAE?Bmz=e|@Lbh&nAZ>a>n8I<3Zg{=ZeH)wsKKEY^P9tzUiqSnoLv
zuk)pG-)q+I$p1RyPj{V`&;HkZd)H|l!H;*r^7`_)Zh!vhT3`LMcJt`V^yH8IYjfYV
zPsVF_`Of38ox#gb@7pKGZ>;rx1mAp$x|f~%PRm_hw=SZq%Xa;0e_gL%jm-M_<wxi0
z;8WBc&E9lQE)K4~F6y1H1E=X7t)~Zr{i`>h-nUJB-)RKv>(AY~wRFGOC+_Xk>%4ED
zyxX6i+@0CW@!C3YZ>L}Unf=9F5qO(kH@H4{H@8p6>+6v}yLxkN+N191^3?qTM<4y+
z@;HEB2X98Fox9QEe~+a#>K>!T)%~aa;IH$qgO8ny>+!XF^m$nSXpT;U)%9|IfIc4|
z_f9TuJFV;c?#Unh?qcANPmhP6+^aX^<L<}K*YV=h*N<<Z>$>nHcw=4O-FHvBXQMaQ
z>#;dFyZ+ogz8u@@&iMHL`eb}E{xWXa2m7bi*ZJw7KK|N0f9a0Ki+3MCeI8?U(j8r#
z{NZ08+#g)HgO7t{{ce02T=dN7Z1mL~j!wtxi<A5H;EQ|G@dEFxKDg~1T&zdSu?Lse
z@6l+y>Ren$_QBix%Zsi%y|CXxZ+;9HxNd(rdUJl@{xv*t??xw|zFv-x#@83~cjM(B
z%j?sDZ=a0oe^<--@Z#j-(byZ0pt}e^xvn=@xZd#ckGl(Z9$b0B2%4SSX%pAc=-9ma
zYOP1D>(AZGP90s`cP@{Q_J`x+PZw{Fzg%1noGZ`0`?POgU41$3jouu+ftS%)XA$5*
zJ(_o1duSb-Z?7+oKXxzvxcsz;{<{7gtghc2_hH=~e_S;G*dH7pMZ?d>NBvR#%up{(
zTtz68Fm6xRY*TW#5<Ag8`J;Y)S$~Qhxb6(=cfDch9q6Ldfom<_&8OylaCI<VSqB$v
z=iT|U_NmxKgVAuG{N8?h^>w!HTz-0Ye))0PZ8f59%Y1v?+;^@<N6z_ZcHjAO<XnHT
z-dvC7f6Lw{f7U*UTy$|AOqaH6c}HZI*E!zrJ6{&{ZmV(7Yc1|OU(Ng8;`sB$`j76_
z=a1p_=fU0d<oL_=C<v@K-Tmv&?dW>xuC5QpYwPr5F!eskQo=>2pQ6s?#eHWqcCWv5
zqRzq9y3?%JJEM>8`DpgF*J?+drMcgwZLIy?f9TjPBPE(nV>Vs>vAF)+dEahYUq9Xj
z2iKoJeubBRta{GTL1*~(?)*#R%sOzr>5|d5=Nv7N8J&0E1pSN8_Sfs<qu$j)d%tVm
ze;pspZ!bP~FVW@oaNO#ij!&=a<HcY#*dO0c561UoS6vOG(bd7b)6tjfVRvaS?PYXn
ze~$*Ax~KEEgXMUCbbS5k;?3e<?0vjK=6!Eu?hlBB=^h71!_#qiwLI?HZ_IZWpXVpt
zMQ}1)jz3RF_Sa8KI~rY#gUj*9gQ0hPJwCS99k=Vl#kF~{Ke$9+uHIP(ACE?#yT_di
zyFMP-pU>7&dvvm>+unRV{W6|kE$sJ$f5qVR`tqGKFyBSi=Z~L8Z|os_^RaD@+|$wV
zr~S+2^{CrAzBsSXk2+tv*VmqlM;Gtjc217nvxDf}=;ZqL`g3=6_U8EP(^uQI54!!!
zFY~v^{NwHPc<^!XX0W<!UBA7!c-I;&-Z@ua=EKhN-RJ4j{n8!V^`7aP*1@<ne|Y1b
zcg*p4aQVm8dHs(s-QzjF9FIfz=J@1O{l0IH=c~(B=N=tjcdz%m$Dh2hd1>As+i$Mk
zoE;3@;nKRD)`Jeb{KFidnzxr1-BqXVdT9B_cyQ1ibxy25`k(v{MxKe~l~4{OjY#}d
z-hwGc(OWCyIX)zRrRojxtPOU_e>fB2ZuQu45w4z~2pB@C*pnvSd|ML=QHZd=3M~Xy
z7|swc(F$pi6P``m7AhAC=}&s?MvOy?Dj_Ug-(QJO+*~6Ptf#6Ku_uE8Z>vorBnAw8
zyUWwnRu}vA3GX`ze0w5iz<d=0u5BKFRXYiADgTosRGjm>b4XoiwO9$rfA-|J@6>=F
zK%7g720IszlR_bTeULy>(m07>aT=&pCl1EOzA7MFAh_kox$Xe`ueH~peFHo{y>Qth
z$sNS;{p~kk`}F=G))`B2BmlttDJovgwbv~D5WVJMUOJW+`&fA*+j26%bj_zCR~#6>
z-Yw9YJ?uFcpk)xP!7i%Kf2!cmN`;IR_pknM-sAs#_;W9T!nsM)lcwJ0oep(NG{4~e
z0Z3^^=&#&-SxIVObwU96j^?QWtzdNsjC!@czab?{!?tl;DlpCx&-27U%ko1?xyYAZ
zxo~c(q0}((mVA{Iep5Di^0T_TIhOqlTvD0>!%$akZl72n=|;<+e@fUu#Y?4T{{kb6
z@}7RDXD3h5MB4ZoNX2&DZcMEw5?Q<1o`3(nllhUE6tr!>rM&sr-)YkK4J#s>;6`zW
zl8zS5!#MI#=vZUlT`kejg8`oVQ6jFysYdPzOYU%YCJ)}BKM%xCk@Na)J9J@s;;jd@
zf>j3CX8+=Gkdi^4e*{b_RW}gzoVM8tP<7a+gfxeo4~MaslsdQ8J3m~|N?08^TuQsT
zsr8JFEx^+EE?kcE6r)1qQrlTs`w9&nFqujTer##*kSc;b2PO}iu3*_ciZg7@Y(gg4
z<qzbEZfQOZLmq{|_7goZAJWpL+^V7?VmnS0i?K(s;;C?Wf522fh8v}q)WiAk<on_A
zpl>_LgU*@wXlV{wI^8L5*c`N^E8ZZMhw#1=AMgpW#jk}zYU7Zl4)+qnHTxH7@HPq1
z;=vvO7{4$y=*6_}+rt1^3Q*ie(C7~{<t|E$v>p59c%M|+P3`+tUPVtyTS|S(TggiI
z?SY=%VuJTAe|3uFj-I*t-Z1h*I73I!TC4(A!jCjQ84puq=yW?>=O-ZYrs67v<!5!|
zmcAF$Tpp+lBDL2$=f1yK1@s=vvfr{NbK&l7iR9n~nf$f6#BZ&0N3kO2w1~YR5}O}y
zAikE#S<bLfYcl}VXM$%^{|&st$nrfKlH-ugkeV~Oe{J*GhN6Q6v#Ye^bKr#&$P>`P
z)#>D*8urpf&mLiw6s%?SW1*W#&Mu9&w+D8G6>_V7f{L*fa09v@01N`MYI0jhC`$+;
zxom*)59ai->mo0A%so(7jFfrn=L2&s$@?t$o)7y5gJtf>`DVL%k;5EW#e6R{h2a#p
ziIA5ze@oyC#_5dYkJ~F6)4XOtx}lENec#?ZuGs4Z!*WEG-6La}NJ+61w4kKA@TH*+
z{{dLOXTd1_yVxq52Hw-G0d=JB;EV5gi3?Q`rz04lo0U62I1=<vGh1nMYq9ULjM;8U
zq)5HXe9Ty$Y{nrY)!9%+|E_X7Z>^@B$@b(ke_A$0iUQmy#N@E@EEI>|<%rK1g_sa2
ztYop^V2QM(?HuCF5ZbyIGD{5bN-W+iR?=KU!YUVG{E!LLoy*P2jm#-T>8YUsC@s?U
zYbz1x`tNCUHpuk!ZqW}~a@R29FuHN>`%rkgW@4#n**PVQlfYM#bR*UxfYDsewX9Sv
ze_(REPv-(g%}5n!sL7?@Q}NPqd0e&jV@*>*cNMz*r-VY8D_hN}_|-V}@kO2$uBom7
z7HD14Lz*9@XGl%dBm1Z)<4Ub*4x!~jO>d-cN&R|9A@r~louM^*{&)iabRKd><Cgm?
z*JX}DSbo~Cy#{06j3rS3!OC^HBRO@4e}urIYBp&3)&hm1=#`VaS+X|_Y3u6z_ifsn
zIVcr=r0a&E|G&g|a(bC;1r4zycIAK<IW#`OeNSy9jg@MMc}T|p;>9j`fp9%7)Cb(@
zDw4~V@F*bGbj7QRugK1dq#PKmx;%`49&Qn%XZc}>tjJw6Pu>6ZO>w%|A|Y}bf8FG1
zGW{h}Rz3$p{@m4pYg%i68ANMF3tHmXUk1>Mz!bUu9k_E`7tEn&yF8p!en@`w;*nnt
zGsq-*Qs&bx#gf)OMOJ9+>4dyyyzFn^V|2fRmFN5=Kb>Y<|NZw)`nN+>L(p~Mdshk3
zWo6gda$}G9+?AQ{&k9H?Pi{KSf0XO8X2H-WcrYW-tT6bp!V#}^OxJ=(zf#r`89Va{
z6jMZ&y}bi@x)vEDp1of#o|p5eu7e|4yg@Q1wH{?WcCzcf3idSGJAD;S4VKp2Qr|OU
zD{7P!KSP5Xw8=ey0e0o4ym*kztAsx~P94$xHRp9@;<|(@&tmowRt)O~e}y5hbH$26
z?a)$uhqc<wiRP<m)$*6ML^f6|f4N+FPPDGgk-MzWF1R*z{b`M8ay9-#(xWD(#<d9p
z23MoNjjOrDu3S<my(k8gQ|BNl=r3zWNj-@T)&Ie6h-T>i*zs&&-2P|1^2dMufB*0Q
zRa1X4HV;(ntItB^gCO*Sf6$@T#{x${K;z)Kew0O0d`UW_v_R@~p@P@ww|QG!J%tz;
z9*XY#aN&5f>f(1={P1?)*aN#5EpLg4Tn1zT82{%3*st#YQN7PpS&*q*-AhVCD;~t!
zS<*qHL~kqx7Trh4qyMhm?oUw!_YF;`X+g7$cDMn?Z0B5+v5f_*e?UO1sNDb@5iJ8G
zXcRD!UQwp5k{w6!zSMEMx>rQn0=4!}F&f_uN6=az&;FC^XaNe{HCcU27)8it87^YA
zSAzw24b={sb2ZU7Rv42?ZmI8)6msM`-G=6|184eHBnR2k9A<y=k^iJn{3$yA2`pMs
zoa!um41O5pk+mu^e<Q?kR#ii*fJvBdiM5J_oN%(_K!G1d{P5Vm+iE#Qp}hBHVhY@O
z2-2Tql0Sh@{zm)#xq*DjTz^WG%hK*4>n2A00VwBS%$5(sldc_sXtHwR-LxI@MGHy4
zlvD@nE$@NJr9>_{%!ZD$8p^a5R;=WfB<ibH=YIA^ple4Ee=Vwh$XC2Vc$w~w#|C0i
zs(e(X$|WlsPBk0C4Ib|ZU<5E(29dKw#^&2m?e$KJ5)D(8eT6`~MJ{Sn1R%x$r9fK0
z&dg)?Ht4!>IZe2nLX4s9hmwEn4)w;R7aZi_RVd}lIoq%Q2bO!;K1%L}u46?!ZLPNk
zKHXeWTUtBMvk=}1SAU*I;}h9RqezMp(0bh|8K%wUw-J~0t1b5HMwS@-V!>R3X?8hY
zTUC%5qo@k9=bzNHN*7=1yr9oM>~5miOOp)ZvV%6yXGiqqOyeZoo$Ayb=LgK|rAt4^
z9;K2QUuB!6fg%@4=pt+(=|^K`g;mElGM(bl)Nb+5oFNsKq<_wc3Bd>OUAyTor;dm0
zfkYJ}H4%GA;8wK_*c6QXAs>IW@_peLsg#8!h%0U~3PK*zPoOim>lcP9&4(z8==M?D
z67iB*A@nW{T;H3a5a3lngc-7_@kT!**`)~Dh88a!nv{MKoaL<6I6YxZj#tu83XRC`
z`7}{_<&%RnD}ReLZTld6$-TMnyN;E&Nu>rU?6Y4KB1oU}X`ve<pCnT2vXqg#Y)2rC
z5hfAI7nq$vJc8f30qxNDrqEl+sp_&anK!B`*&`EMZJI`6%*1qWJ65!p(M>hB=?y0=
z5XpPV>B)@E5u8=QF?3ukP6x%xnZ+iPinEe3_KnzPihreS?sm}Fg`^C)%88YXthrre
z1{UeN2qvOXISm$J1-au>U(63<LKAAFUp~~6L<J;&xu^tlJSSVrtW@G-(z9A3*>Tb?
zli)Z5k=(YDNgkWYYMeALSxc?l+%KH7I7?W~yPHOYJw>u&I(MlY#kA#*NljcxfDLOp
z-8Z|6NPmmXFRt|cIkOU9(Vr)TZIcMjCeX7dbBO2kuwukep059IUT4ygpY6G0eg`*B
zNWCkh5f7CSNvHG}VrbF5lAIs4*T4)za%G^e0wJP0JGzfT2m%LL2!lHWY~TBj2&_CC
zh2&xpUtAe}uWKdfF>#T%0XNd3kT$w865Q18+<$Xy78OHuu$O5gPj;}UoM2Rj$Ju`_
zyyRGClwfAFL-6ZgVE0$NXNVO*AK7*F1><VM&J1x!yL|eDh_XK6p{fz;sgmgwlXnjJ
ztw14~03~ITqE|8T?YnewFz_56ynBCWq|LvZXjQFN|1U)>S_fzY$@Jz8ioyqwKqY$#
z2!F7$PyWfu9}<EApT9aLdO3R_V<fZuW#D_rqgGwkEbx;IJ&@MMS9d_DxpbvgH02ll
zi?Wq#DP}Mb<bHB;pp+p|zHMeZs)S2^|G-vAwrSRY^on;-;b9&t9CFr@PDGum_<Aq|
zXwuCt`6LcJgUuj5MC63teWjKHH;g^;oqw_2ke8*V6`n)Vge;Zp_dV*N_!0Zw4#?3$
zMZRC1_8eaWB_YX|ITfSPD)f*Id=F$*Q<}00I*AHBIF(W&>0Wb^!!V<xSF;7!!nt(x
zYowTw(%`EyQo1o>1EwF%W&1a`S0(1NQp)|ak@X~mH_(IWdrUDgWoq%~+XY(x27g}N
zii8O<wb}4hQJ+zkfwT%e`xC#I`c)g<)@<LZ&HVl9{_lsBcn0)rgT8l@D;pxS(C0wc
zCEJ~qqhYD{2nQk*E*+0FKrnRI@g&s!CJ2%3Smfg!#9)b{-vIUr9qC154sThK0Onf3
zk~ljd@bA22Cg`#(VBVTLu%HmflYdYkXTErU1^*imG^*lz?A#NRdf|9>8v|nr149rn
zZ912HT3G`lb^S~=X00?2AbH16yv&ji@8oJF))wa_5WJ*@s0CW@X@F2)9`arz9%PVz
z&fSri#vi^xUL|(=mSa&RCUC5U#*7aP=%O%M(iByp!LrU*s4HZJmnt-XA%D3Nc)pD)
z=$`5gq53IU;rR?k=nk%p68kj`<UjlL-*=x%3+m;!=yAJ0Om9!spRd%0ym11YyBV1?
zhe%)P1UQLK+1>b9raSxPG3e;|Zjw)W>hpIZA7F&Q-5k+(t6|&h0N0<*cplAM+a$e&
zJ7{TYO_Q=Cpo5lGK4Mk8c7LUP1X7Lsl}#&tzR{X4OB*d)i0yi6k`YMZxxaGhZj5}I
zfs^`Nb89d27O}}KBp2gzHc*qHa_qQi1+f(7sVm)XVJDg>bdyz=jkR%{w2!%w=K-+=
zZ6R2~dzQ`=J71BYF?So>hLl6+>%SQ}DZ-B?XOb_L#(L5SM(PVe6MtII5$FZT8_u1Z
zC{yf&J8o+2?S6nfOnUK7yidB6E`7RBtbvuqe!U{n(W@5QoB?A)peBm5qDhLoHIj6Z
zr3=>3>~I+;?dh71wZbR_D@;>9&5>N$1g@faf{1YJ;4|sNMGMi6DX6c<Zln7gVu{67
z2v8v<nGNKxl@lTxAb;<c=!f*2zJ;Mf)-%m0#xs1g<8kTRh|y(-^zJxT=wtsT0w+Ww
z`mQyHjz`a-0kXj<jQ#^Nz6{TEoD}%*WOOqDVJsk^Mi=40e9|M$b^v3=Au#rh_*<`U
zc8A0B$#HMcG$*9pq|<AeYU7kppogdJU^3GLEwMb;Sz|adyML4B;Hp3BP5Qm_cJnG3
zOzKqVL7gnxspGozSfts#ZyXc?7fz8YoK0+-siLA}4$J<{s?;heoNsPWnB(suzY$dV
zgzb2~ZEBMXDMaV5B(9hhn!m0RvPhgtg3KZK_Du=U*(|n{btqhX+_fArA?|S(gY%p;
z)vUoq=;l6e@_%c6?3uI*T_xnKs9}+}ysA9L{z@A4hir!%cZIxY>O`bFt7IW3*8h!p
z{@ghjiO6(nxXkuKx5%RtMj~ThjxH*?ipm*9ny5IN;!YDW-(I$nKvk!X<_{!$&7nxr
zsp9ddhE3D!>&=#6Gqm9EzX8~=(&(ANEx>2{b?Mk>`hOnwT?G2>YUX%=Im>lmpkI2v
z=*PRUUU8?q7ph-z#o}Igs-)MC7mNGNTc|W*qw^uKP)If|xwdYD-spVTL}65bT;$>k
z8T{qY>xcfmro>V{5VS)9N&)%)!uULFHPWt6y(A@aZ9w!Pcs^or(gB`&g_g&bNiQPV
z`0+?fNq->bvxy_<y6l8kbya>H$O(GFaYNPPCHb8`O-Y%Xr2{@M3?qHt*$}T`F>**c
zrV{x9fCi`!qEgD{>x>9#yF}#V$F#Z&^*^QFLRtzY^T;<m%MuaF{2&pgvGi3iX{Z=K
z3*gs0Ix-h1rBixw{PMzo7W;KMAZxK-PqIi?qkq7CiaF}_dj0*|xAedDdR_hR{+qY&
z-|YXg|Mp++_7C2^fA{|VFZKO*2lazrK>aBu-}GmNBN+ZtfAm~w<o-?mq@+nDX1*La
z$#PE63>#8r4eF52(lv;d<R5hXp!+BeW&HN2#4M$<rzj~sR4DYRJsy+OgNd_*P=|6-
zrGIqBj=W?YoUmaer)gFoPePe_{13l#^hu{|>K2+mCZ1@I23N?=2yB!gPehST)A0l}
z%+KtiCnH^Z#gitJ8H#8!WXKJfGzKTDA;2-R$bVPrf>oqZ^Mak}=_4)p_$1aRb5^#I
zCX2In(!6~pz>mKrn8z8J<h4PXDL-iUD}P(XQrLGq&EJ1l@U5jhq$nA4l;x06SEefe
ziM!8z=cSOr@3K>M91+djq1AMB`99g-;(8VF#0H$rLNp`W00s^=<XK=i<7wU*x<;jf
zk+lj@g{+bf(wt(SC4)5rhttncM<AME#dg9EwP+dC$eipIh3rMQ%Jk%#q@d!Ok$-+z
zQ%gn2&m2`5d^#Om*-lgmC<!Vzj*C9jP-NAT@aWpNZ|Z<>HfxYhjBM-$p(>+67c6~>
zVHM+qMM8Qg<dZYeObxaS4%(pt?{EdbQRuhng(X8qdAtBd^9`fXXN5c@sDiv58njEn
zoT~jl2YT0^F_xrRkoS;N)%r+_9)FZ;=l+beW!ZkH?`z@I73_R1J3o8<C=UZ~zn7wW
zUiQxwMsfWGyU}lFmNKP(;8bj%2onNyl8L~8fz$GZkRcPM1Z?gsTpHJ2?_45UwI4)t
zR*>CwEQgxz#lyI8y61NVni`TD@%;dWF!Dn%Urp&V{S9<n$D8etlZ09MVShyZ7o|`)
z`EddLwSuk_ty#*J<hG{d)McUGQAX^@5_^v|d8PigmoL{ib%jWKl@k9(y5Zc%(T94K
z{$Ga7g`zb^O0HS6E8U#&t;J64y{x*H-yTcJx{42+xF(K~fMDbo!7<X)rw)HjnV;mi
zlITrH%Qd|%PM=DmCK6UCXMbGLd6O)g4TGgQtrT=hKqMVQ-*r(Kd*f^vSfSC<G8GNW
za|*5AItaK}EuQz_?ZLrYX{`pKANiK=9)eM`U)=3oZntl0P!;(@H2^1CH<_w=sJN-n
zAmM)K+&V6rAro7WNr^*N09|PtB53zKcRld^h!(I~;|MKvEiK7>qJPdu{@9@(9D@He
z8t3Q6f5l&2=N5Sg<9_H*(bj7ZfXE7lzO_Ip1cR+sqBNYdME)vb=|b@#c&A;Z%&Y1o
zGbxPbhoE*_ugwv3qxn}oNSgJWH~qejvj8}r6FJarAs4RWwr}cnK|T+aBOhU{BT@f{
z<EIB)ha~cD^{c^#cz-_iVQ5cpZc=MOQuNigWA;cH-?&Zhb_~Om7E1o`M@_jux%8#`
zGvz}2M9(2+nY2_;4RnvJRpf^TFlI2E!WpuNxU$$!8u1lZ!ZBEULQI8ZBI&qQ>e|hG
zf99ef^uHi0VmY4VTG>E(tP+XDSf@tdoS`+Z_~hW^Wt`?sVSj3b+M~~=Y1`RME%a=h
zEfCL<CYNhsePa)abXGI=Ij>AV88e=intpiz`D}qIG1^jNj@97@0F2r#3~S-atMR#N
zQZ|5O6b!3hu<sd)u-DVM86q2t0{B(AI<_FR3h##)dk$*Fu`|s%#2WzS;}Cswf!4aq
z{YJohVJ_(EzJEID^-j*sNu%FCZ#NsGcCR~W4$PL>9km<h!<?NYq4Gqq>4D>vY`3y-
z9EbigeI7ANo}u*s-DJ<I#9)xD-IS~#e->yRw@SFHX($qOA5wdKj;F+P%ML#TTG>H;
z9dMfL`ilItEw2@ya3~3Y)iYQ>Lpfni`!cc6ZWT-NM}P1=EsdmERbixE614TiqRl6c
zT^6em^59R8RYZZ@0xNm^tuZS^?9q5-nZ-s>ls?%{#1Hd#L1);$bfURfn&q~R3}iF4
zjrMr%s@%@U$Y%b3%(p38D+m4FPqUwx^Awd5<@QUdQ(`0iw!r_#?!1!tKkv@^0i2UJ
zPu}UK-G8d0R?$i5uL3>W8rK&Cb22c8y^BH9oSY1L7yW0)Q`k`^GXiK??1rl;wnB%h
z0PR*0dc%vOVRO*#Q`PDzHJOt5VF^<GJ}hKkXBL`?1KMULb{gHri8+{<-B!QX?v7rL
zpImK<{pU28YqB!aK^m<X=k)ib@Cr7)D1_}+8Gqt5S}#EkL;##P_QMDu_}^}AB!Sel
zm<VE#yaW;AWl??$G+lpXo8E0PUd{8~1>x`bB{nyGV45KBR*zQh5zF-&Ud2pNZ1lKZ
z49y9{w`CqTF3v}j&akb!9U7AA#?r2=u&Ais8Maf;Bb!tKoi<b!&||Y@4jLn~HEGl9
z?0@L0G`yK<bzp0~rYoTKdS?`8D0u^Do=QO9^s(?1<Z&r+sex${8F{#~Uj;qSU4zhf
zsW<V?K^4%fk?;;rpk*P9CkwQmIL!B&{L03YKC&VZDB5{b1r66F^OE6yd&n44XhRO8
z?ywv+lfBckw-k<GVl>)yS-~>ncHaO-Y=08S)<e&1&O4mB2kfa{f9dJ60itp8*;Lc2
z4I@}3)Y>cfo}uHW#u@VN>8@mPn$W&j8hokHXj}ez0AK_Ni6YRr9D;VE0|sQN_#yo_
zn}OE8r^!BNEP9dpP>}C@z@(X>i9OAdi{4qtO^H^pDMga4h_PGDk0+pa`tDRfZGRV9
z3#{2IeyHCnMw(#yTzEgsEVM)s3h5)&CJWIkWwR=#TX=^n!st_C!|6}N%i*NaY?{O2
z<jlN!(gX3^w>0p%CXF=THd*fUcnr<vz#K{Fyc8~(<+eROXZ!UD!KvNoOa{I4Cse@7
zqe4XLmNwLQhv*i)v`s7+LD!$<TYp7$_UJq3MotyM&a5I6`DJf#cHV0w>V(iR$i>d=
zHjd6s&3ZrNBX0o3v4dzGpr-((-O^m5RWCJai?51kJfY-pt;g}bs$&OL0#AAKKEna7
zo`jl>3oRwLMggw!wKe92wawy4J5RC^9<xG~8bRC+DLFrc>mc&Er7`(A9)C9dK{-d#
zALIO04#Js_spsUqVqVkAUYYj+Ewjh;s?cb)1{?TE$E-rzrsXL%Prvvb!xeWkD*?d8
z=rl+0X`rB*cfn|9zmwBpFm5+Zay;}dx}(XccV>1c{l@6D)D&tUGc9Y}XI_Gu?WVI8
z(_v_x;}jWkEW`|Q3guG@|9>=A8&3h+a6$p!e4lz!EveweOiN%KkXu}Ond{B|ys@k#
zrCCC?FWxRk1LI%wv@p#i`I^{x*grJ~<`1wtkrO|QM=rlv%ftqi59-Cx9CRC<Cst0j
z2X%!}Nb@J;gW7KlhnKy<6RWq|gBn1L@BA=h`pGyK#R!;#VY^pS1b<i}wz3#>9u#on
z%yNL`C9ty4q#r;sVcpw5fIJb*8A!@#u96**J7MSV&*u5XaAXc9<rn-DVa6e&3q0Qr
zs$^bL5TFfZrftk|QB53E_v^VUG!FE5C3_qy0as);`D12X$k&}_qu)4cpSMSCGuMkn
znMrc~QlTmd>SPJ=qJI!x+M+bjlTKrJRt9o5ae46N2~T^&(PTJo=FKBT^JF|YsotR-
zxj!(E+n<ZHA%#YAjo@ktm)v5fU=_jPs4+5+FU~iaehX_`XL75MYX=JZzTF(OaO{bV
z2h0;2SC{a<gO;h%Bne<<|J3Z5gU0!!-)l`ejn9*g+35|gCVvC-(}g)4X%_4cln600
z9RW4Rqd-2CAV9N!K{HmUe@aoK*}r&sQZ)M)9GwJs>F&2_ktX`7er;YHndA0gG#Pg$
z7v1B5X<nO?QM+UIE=uZZPlPh9j_8EZxPvde;}D^*Xv7?rABo|oi+1yD(rOPI^q?D<
z&ED7?T;*Fzet#g6f2|yA(Q+^(N8bQh{w)gEJaA3_Dq8Z&ofSn}T&?{OY^p!}1a*V;
z+-Y|jC+4JoaegigokSDKJ1N1gT*w@xlS}B!*Rrx2EN^xG9WM)7r`IyiC&N*1U`|@?
zK`vA1o0_qwt&pve;~De6I0a}d<YK>$BR}MJx@>H~kAGjIOW#H=g~4|6)Uyl?Vsn4K
zkw{D9R%6tdbjXIB(3P<1n4a;sl_l9Zq9lqW-hVi(Y&o3wPA2E(*wh^7Kaevm7{MW7
z%(*{1N4Ll=2J*Ol{^F1xJ8lAP;cj~wKwW?4#;{3xg;*m*v!E|~=WvQ#oO6aYx@~&4
z5WS&!F@GHOI+OFpk*RZA|ADxi>0vI=o-$ZAJkO6HOUqmu)ke458&P}t3*#$6U%b``
z@bsAJH_AEz(TEi-u=GoxMlUT<1nJAKCwvBSZUg7-PMc71*lqNOr@hg{{M_#iM#D+p
z984O`(Q}(d&i3o)&eDlcIP_qE=YC|;EaJG2!hZ&>ZoUDL_!UK9^b??R$=_rIN*j@p
zWM{uIXq=y$=aY**LF;)n;r)6nKl?C*u8Z7@fMBu(+^yba_oslo<==T*!hUq#Yo7fq
zls|HPYq2%?845oQ6DShpIbjY*?GAeZ9bNUG*Dff7Z{o;VQh`2N2YIqog1gab^hfQn
zihscAz#N|T&R>oR4I2iLb1P#r4-uaGZV6VLm|bd;X!g1zvpbqJ8_iR5GHhR)lg`nL
zp>#r%L%THm+l!jen$tuV3Pc+a>X@Sj{rRWDsKZb2txy`6?7u%3j|PZd;vT{yfzVIJ
zBaTsd9trJ)uDNz|GVYyUbj-<7qj`4GXMY+BfB$$P6@{)k#~S<YYKe}ZwO9p2OX2xu
z9-=(HEIwK7u^cL#F?`+q445#M@D*1ck>;?SQh{F<jV5+v^|u@nt@gldj(#dUT26?p
zXnRzcd9m5+w||ONMJ-lMKX6JcDd{<4+?@2r=HS$PW>xZRzitL|v?M2Ef86ZdqJMCX
zauvwFIT*HwBeUBy={Z6vf8H2AvsGZf-cO9K<lG=6cOk|au&JN$a7blO@7$cUE|}xr
zvqIds95yf}(#CgDYsK6KW1lPLbd<PL%MM41FI~#9D98UQb<(%m!^Y7$*&&_&z#Kli
zPlkNFw^$~WroRkAgsH1W4g!i5s()jS2JPmsy#1J!P8+hSb&?HPHyeKmqxKCx-@t6N
zO8Q_w-IC@{VVB}vaDbq_)&VR5$_O(Vwp(ViF?f;pt{C2qOmp$zwGH$!m%Af#Fm61r
zl{iMDpH$If7~!@Tq3{+arg-VqfySyZZ-~r$wL*~O;aVh7!__5wxBt%SPk+SW`s#3!
z0eAZWbLB%37i9N<pI|AeegZNN^x;E~W{VZ9o{%T%Xb)hB<e~5ra3gV5_<^i&i7NGU
z`y+3-hwl!md;SF6V0(jVo<E))PqHtxV?A(J{488(_Akn^KvO%RRF)BJSzWk9B{I(`
zL9H}TwPkGqnCfk%b<51T!GH8xlVRU%4kyi*QAF+%#fdMr=Agy(5TJA^M47wDvsa|P
zZw~`xDb8hi8aIzsXYXM#IiBC^Hb#d>!Z-TEuIgeguLB7m`NsrXO^itS`-+Gw%7j#;
zlS&p|Y`$p=tp&ba_+r0b7q8cZ7ccQxzh7sM)_no#j*bIm5Z(M}uYY3uV(;}5%JNga
z7Vq4Zm0BxtK${Zf#urx3!bwq5L@ifo-Nif#4$OXUFyhq?Q$$k&tF*%vVx~ADWrK)v
zd3w^Ev>IlI2o!VB?mfG0=%m?#Xz6=>6gqyMRp_KSIWx^Z^`~Xx@7Y(~N%IV$pabuj
z+}0U_IHVlF7dfIRpnn{~e3#H%f6&}jB21y?XR~=R>J8|NXruM)T;L{9lY=~(hX~qv
zywKUx)#rg1buE$1>e3TIDNh;QQ^$+ql6mRa&f(|hK}7iblto3@_Kwak%>JO=9r1_3
z7qaagxhq7|`m=Yy(m-<tyfoCD>ZQSMndj!{#i4E?7e(cPK7Z}?&YoRxreQwy{Y9SK
z6d*TG&F0yJ=qxX8vu@6jwHTnlkImM_pbtll(eTBg9!4<2B_TGChq24VOT%p*5BW|k
z0$#kIuq25s{vyOu2@I3<{z8fnzdLqlB#TYohj?=Qcn>HVlA1qo3GYAp(@W??;w>%y
z#48|Fzp(H5I)9Vk?8n~G<g)S1cBF)v9FJmWW&$s($3E!wMw50|l2<RJa3A}jg$BMK
zwY`{QLif(9v^3*ZZkSV?6YmbQXrd~*!R&|}!<9>ed~&p3vM<?@K4EDmp55G%1@*!B
z&zP$af6!*5R%!l<0^R>)Jfv%2%zYutr`>oW0-TJ8gn#k3%<WN^ZR2qS@NZEVIyMSc
z(`+s~L5bej91PkmlahlaNEw@h_OYllP&%j96A?uK-Cs>z$2vpnV?R6@4<AgK+vOz;
zQ8j{i!39Uh$y*iU&Shg@PELBASjctS&zy&Wf;&>6EeKL6Dv6fLEY@#NTD?x=nemCM
zt`#8h1%INMQVUOm!pDYrLheu}Ce<``FM5ihiH`|q$ctLtq29I>i_cXwXX2tk{#FPG
z+aiq%UDW(T^NJ86(&;M%k{m*kFU4n_P+Ug6-U~%njeOt5)N5oX&cCpmO0{62Fk)jZ
zVc>~ur270DjixymO`5&#ar>mx=;xeKjPV;oR)5JZ7?|f~V`vr*lzIj#qV(}ampxj%
zM9LQNjBvd2sQSQbrss=CZ5*_u96H_?WJMacTk#kvHip_kFhA9*;N<OGj2feM_hfQu
z9+6vPiNt&*2O6CZCv?rU+RyIB*jcekj+baU_x;7_eAq-`)N=BC7&E~4dxK|Jrc*%o
z{eMuGQeZbff1ds^EA<fZP+vU$GT0xqdxQ4qig`>vzovS&U*}JP{m}7gZ9f-c9ILGI
z%ago&gc-EJ<EVrrf6=@niey(Dii%=qOH;uLR;5VrV#!7n{1X?R#~`md)oif<sCoIt
z*-s71Pk{e6tbb|Dg`Y|W?NYC>g;__-J%7Unp}$1Y9IaSA%}v@e^*A5&I_Buqycibg
z%c&es$}EnBs$4+>fB#)U_jz`AX)660rl{swT*PGjzqER#HdR*6q(?-hyBKKmM-@&y
zg&187&XtE~7o)gRBT!S(r`-#Z@kHUx>fFcKJSUoVfgeVXWL;Tk%1l#&Z5xpJ5q}IT
zm@>sVAh{7#vTg+_UM6Of5Z*u!Cc~~mH%A{i88nU?-9`b_%2whdUxaST=d8T5gSOu4
zx46!1K{6fN!HZ!4E!1#P81+$TAumemD(jfjY7fsQH08sjaZVKIzBy=`x|F0^4sDz~
zwK~3~DwU?HxR%T$m-bazxsf9(>wgEKvxMPV<16?rDVCt^sg<m9)z&8TXmxfJtpbs%
z5kL(1l=Rx`uOdJPa=aP1K`>f{h~0;EbA4dRk<(%)zsf@)%AO`G>GsfL6w$i$q6r-}
zi-A1plVRX^vk+mN+TahvgB5Tgm_QHkfeY|RrrwB6>N?k)GzVs5WRmMjr++cf7qTh5
z%{E2XLi@x<)^C)=(nRg<$-o>AO9<mljLO;J`VH=f;8m682D@3gxz!zu%h6_%xY1mf
zaV>b&JNlMtqaA<ci9-AIpm%Nnb?(jpFooE$s9lhPqE0K>OlT9|u`R`Ns6)m^_l;B*
z@V&hxmn#zyxE#zsm2D><%zqrVrfh&JZIx5hw*uA}!&T&?`zVCe)Ri_F=7XRR=_aJ{
z{<g6NmCIBP;5vNZ+xpDoyh8G@K_7W!d>_c|Ouj;uY}i3dQ>u(mJd2`%NV`(%B{|o}
zK>Yo8B|i3}3T7`)k_=grIaunaVuc}Ys4MNR$$G5WDHZ8bC%)@JF@I`HFRIDyaw?rA
z#1;ZYHzEI4i5GJ*A=vDs@y1!Ti95x#HjE(kW2jirnxo3C@8(SyEd$+LKa~U#Xf3%h
zvU10)krlf2^_bOAWYsWsYqU*`_mJ9#2--c*U2mvblXkCXhsYMC2}&LtdCQgdNWc3i
z94x4ruk<&zLH_B^uzwsmp~`W`wv_U7ifW=t3hEGX1B_pB?N^*mV#;aIazYBjZt*Os
ztDJ@?=|{kr3RXb@haxPSN~yCSjjeXJ%~+SI=draqrXdjDD;3BpsN@nMA89RU&wDNl
zWTyVgvnv>~m)h+&D<=l0MeXFWeO!LWKI|n`TBxbGHw9)@l7F&deH9B<rYp~OQ8hqI
z8Bn~MvW~ijn@%;Y1}4B1AG3DZwA}Y*j(5-gf0Z=Wfv5eNqVi)QAkC_FO?1nJC9i>=
z=|!jX!!<vFBb?3P%66i_cO7fJ8PmmTib4-X2-h;T&}Xv-8LCf*I(FQQu!||Meb?=2
zBf_2bv|4O@=znsBq=K175>H7JWM?yCEHb_gDx`5<ZH9`X?PmK{gSe&GBer8jz*s_u
zNFYj`2}fxX`1XWtY$C+yIi!5&#YR!cTN!EO3_$C8NQ4*fFyal)ND6=aE@6edTlwYW
z+dqXrerVy3^d0AkE4z4`O1r4n!Zh;Fd+q!8KI=;B7=Jq8UsT7C>m`;Hu5x8W+C^7=
zW{>^6`7QzWveMc{_nQQ?jqc?{MLM<KwPB#!PnN%2LeD+~|7p}#IIOw81>M@z@oF}@
zH+};KeJ3P;AwTf5vc~>XUBjho{8!nns}ZPAxQ}IXk$RyCkca2aO{9bA8>@sa{@M0u
z;d2XO1b_S+&<l_^Bwc?45JYGhxG+Nec^x<ytT3{H<KYNFo3w`@aG~Rg7B_wfTIjx-
z3?Bh<<~Sk300P^&xj`X8hBE;~KA0j9guaC^8QSv05LuDCPKKcCtpxLEeT@q8qHs+M
zgAop9I7&o;jqYpKO`4@SJj=cJ2|~$L|CEFi-+xl&%yU?jzI5)DZmqAI@rXKi$_|U?
z94Zwtm0M>T03aMGq%xAl3$*CU{S+uYaN0aX^7Dvno@axF^O@?pY4iY^nKY{a%%e#5
z{fO1hz8^-1;P?9P^#TKPSz#=R{Nh`Qrh#lxbN!i*EAqinXm7C5{V~6uF`EPU`|nyb
zM}JEs^n;p~>0-)_7bq@c{<~c1Wi^5P-M=9m1N2Z&7hk50D56zzztMiS(T(FV0#xFK
z#mhLe`;pYZ@ti1WRhc7bbAJHRl2*by`~a%tjwDsZlOPZ+$v^1z3EfAuOZ+7s{oKLy
z)2@6$Q#+<FYwVsTU%80*<PDl)VBGflq<`&qfCJZw=sX6HD$sfe*|_aFQPSm<VoJcd
zfqWs7rXloZ2)x1zC-^N<ybeF4(GVl^7DJ)H9ez+tT|XXIKJoxzaat6itGHL?XpagQ
z8zspG0)C*XZ!)zwlQNWf;Bd*hc9iyjEmc5<BDziPZYj%AS@kXeFcuLiIGLxvhkxzY
zob6a<?{3_*vBiUI!Ng2n!MB#dZMy%S+xy>r&p!2zRZo7hN-`?Gbo|ld)JFIGltiIq
zeSqOiQC=!sO{fGgnt#Ys_>~S!m*gGtFWOUw+|%jL^zZ#kWfTwHsZ;B3kGh#@#iS3Z
zG1F$kd@dUaJ0vdipZGO7G5Dn~gMZ~$(spJ^!C2#g*2p~bRGzAps5V+1t+Gj-1o^6H
zY^q6C!1i_;sq-fL%!czR0caJ>LTDp(17T#XXuJwzqk21%&6L@D6SVE@j}>s-yX>Y?
z#Iq00)83^T02i*j2EM>3JOumodR_SjUDv<sht93zq8T!=1zj2jeaQ5i2Y;=6gOkA6
zcIoR(_*xkz7XVFJ^0x<g`)wq%_@P@V$EK04=PC2*`HO1CGyfp7bP;n)*{Cx<$|BQV
zW?N!wj+U?@SVtAVXO-*!E{j`7s7Ebwp&aXQ{kJRqpM|j9ZPU=`QKOv}$Yq?3OGHAe
zl-nE@{lZmBvjF{^LJj;JrGGYGB4quRhp5N%{jBm`y6@`cyzXY4y7AMyuftN$KFLl0
zDemYT@?W0k&tkt`6E8=&HX-t#9xsy!&Z<%1KE)jMdcFSs?OXcadcB_hZ@vER-7ouZ
z|MhPF;O+Z&@8ADY-+#A%@a`8-e~QUB{aN7%hQHJwJy#mJf0I8c6MqoXEk<xgLu>w3
zeOG-W#fH2zu>bsd@;{pWA7_AmqV2z7{~!G8U+><h_kaEEn}7EIbNr!)5vv{=A>j@T
zaDXgvY}H<aDYD>-xg5-+D8Prc+RTaOt7+Bpm$eh-bnN;oyYIs2#t)aZB@7oR3S4NR
z%Hnrifk9A-eBZ@22Y=%g!nOVP?{@AGn8RBHA|DVYL|}y-Zx%mAhA8mE$nj?UMV31<
z?D#jr@jz%R+2rNvzVQ((pSz+pH*_l}d{w#$m9uxt`2mE2Lr0R$-Wo%=98yo3iz*sC
z;$8$k)9)fa@0A}Atp&Qm7%cY`-<rPbTQEX)+$ioIPN5}tk$>X1$tMw#Tgi($f`P+x
z86AS#{hfv5*@qymTNkm|lco!u<&MyFiSigLyV*2O^k;Ty(W{oX6^o7sfJ^HQklSN&
z^PD4hS!ExT7xlN|9%T8;!1s_BrAOW&Yn=cGEem1X@oiyhtAGK5_GRcqsOM1yJ<gE9
z8i*VzLNDezFMpkZm)a<Dufxt)1a=9a_XW)))s}Qn4E#ldOO*qaXS`kX7ceSD*}nV@
zQ2wb)`C}OJ`&?e5Vh6(%kj744@O`CH$*A%-8aKC?SQD4O9VyQ!{8>YOMPaK&c|su*
zvK8GFcdGP)mlyQ|mgAQDARhK+<+@V34<WzAg-$@k{(pH0zNgnoRy>}e*m~p;2qjCi
zxZ}+%;aD=Wf<wuGWBGP0Te!c`8CvU$Nu(!C*-cnY!_>r{Z=*@%#P{-O9iT(t#8D~%
z#5kIV{%S_9l)~JBJexX{#k*1r=X(>|!HcbEk_nXI(JX2BQ<J8rWJ8g^X8dh5yF%l5
z!(eMU;eR1uZx;05xVD;3Y5qj<gVqg3?i?+H4V_hE7P=3d5Df|5Ha-Mz-q-6}5io~*
zTwW?aCQFO2#I?Nk;?`XrB0z{$Avcy~P~rayXhPB|3<4bZ5z$SgXG#yRmMCo7`t_N7
z&#cbmY#hOGh9WFBmaq=U5=V)jXJy3Z5EFuAkALjy-kuQux{vZY_?Bd4Ao9DKE}cOn
zU$hJeCGUyU%UFP^!V?>+tNdio%PqtZWzx@(M*a?>&{@jjtWp@HCjFHWODBytNMb1(
za@Ruy^=yC*)o1peml7pOkdJr6wjGt}#T1a3AIE6@bSTr4T0ShvW~{|3VhaVXzg{9Q
zdVeat5Z_uqP9+Rc;5rt>tU*=$Q)oNn$~0Ruxy25r0b-gn`HWZrB=&g;BWr%Hfs#5E
z`pc#7Ri!ox!0!`*oDVV=^(!xjLgJ2pD9+oM_~Z{v>RBBsPf001Ou;?11eWUgE<J4t
zw#Xy0ye=r5#cna&<=hsi^Pgi}rH3^mTz`2+(cNorFYR<$jD<{Y4FZ_}Cb2Sr?&bd5
zHxT((aOtKmapW&bTkS(2R#d63SnaW2zadVmVWy$t-JKJ$mf)R!_4}R{1*r_0(i7f$
zWfrAd{EEr0+?qA4y-M;UKjr(TDqsII94D$j(plmWPsoprczj8ph?KtkW1qFusedxs
zw3WNQwGzABB6&)mgA!{*b<iwp413b`l$!p53n~*vk&2j*$f32wNkh5LE%Fe?{m`Ex
zd6mwiC^$hW$rSLVQm@SsbffuK_3O5iGtuclw}o7|jxTC|$Rdf?jfp?*Z`xKr!^3la
zFxQQ{LS8g=B9q^`iz^5JK$tU-WPh58dtEA<!OvV0K)Txh+xg(UP?(lF?mtoZKQ0Pi
zKjCR_IGPN{&AfRs_ayK$`$RpX&(XL44z+5s5V9IHtSHIkxP7j5pQGAZYy;K#{HF&T
zjv6DTXFkY?E6r_at+>Xf&{acgzs>O<9A0&s1mcTfj%KWmw%D)h209runtvuQ&^*bh
z)S0p?bJ;u#p@o9H+REKt%bZ*c8z*MTQR!>I3d0$i%pIbJuL}f!Y}bW%cz|Y(@8v9%
z%i&~To@jL)y`fkcumk`<s3>=dnHk}ltPr;&%3SAfX$H)s**iZsd7b~9vfM>aJem2*
zrHo9C(qG|uNqGAg!_x;rDu2zf9f(2bFa35aAF}?S*XdCTwoAh#4Jw;czx`8W;CYJ-
zd`lM?`1Vh6fuFy)z&A~@dgUoj40-2=3v$J`JM_glFEOe}(v{m#i{)i+aApo@4c(48
z8nl~}VY_8E8-o|ALwl)3RTQ4x273O_^Y*bhYCrQuPmcxr$GLNZB!B;aZIBsG+TD>k
z7&o3*>yNP^htCW~=nk$KF1YPQD7=Mk!3mUhYAe=#hZh}lpgn<}AVW(bC=$ZrUA^My
zmK=kX9pvrqN%=~qKM2~mU1fpts%Af=K4A%^!gVa<VZ@$Y^HSZ&YU`zWG-<cY?x;Pw
znheb2fjK<o)nW5)Jb&4E*C6!ml@(R^>^1)12~DJ<yADu=xp!_(8iSHIzb#p{9YG}C
zIdC}%eODWjRc!62Qx@m5k*|tH&sab13E>gzCQd7QhnGPm#d19u8&`@hVfnM9f0r3r
zo|m!sR#)KG9(HnPCqm2A+hQdadf5|z+5PoqhPY?O*GM}^rhgS1@9}IXB$Lu7%l)U@
z4uQ^(IQ6_se(Dzb2|w@NVcSFn62~KME#Zn?U$+P?OI+M@g32`UADo)(`R^%WKsLmG
zy?uL7Pse|}fA>%P$Fuw)D`w{uxd946<bxTC$VQI?LFgjb8O;%}Q3M?q1K$I4{|-cR
zg!yLxLj<PC@qcDu#sf+09R~x)15@PscYua`?1;z_o?`<>F2vY@Ue!ZUZ5sM_7}d`9
z>y@|lH}7{c@fzxzc7;c#?A)>0$zF({;}IC5Ibv3C?Rz#RSc(evz=^=!9C>6I$HNhH
zU6x;S4#SA1#|)7T<}d<MJWCa{Z@?V_w(mtdEPiE<n1B95-GiJP2iahS5kN3>9Tb8a
z*T4IXNFXNy4*rdPi{@yD^@+&%4o>=36YS%2iEYMP{w&7}SIF@hGz%pmLkj6|-l3rP
zT_^>z$kYUfAAn&bu^|zh5k0PjZgA=ok)fI?pcBqu5Foo67ZG0TXZj#z)1!&I_v`IA
z-jEKx2Y<e^f(zwmGHQkztz#S-Af0ekH`rGlW#Cs9|4Q8&$ZpVgU4=-jCwcC@JiHlB
z@#xhM%^VzY=#!t>)D#2h*9guOgdR-WLgH!w%O$H4hEbYR@v>GRKSOImYzEkFi0CGx
zAu5KEBCf%=zc$53JeZNB8`iC9nNT*mkCPKKLVxY)aojMEoa&7S^hiX>c1_V?!ZtR0
zb}ij|>+J|$v3cTczbp9~*NoU1Jp~mLKE|FLd8APE@4t7F#Lr5(ltZF}{ECh8fC?C7
zNO$pS3U*!ODL?Ol{XMX!LZWj_W;=#5a{HB964gUq8K#JQnStc}EGNz`7$n!n{(<Oa
zr+-(4iZn+hPNA@QffkIP(9Fn}uSJqo-ItkTk9Dnz@Ca2wuB0?%RjGK+v<pAYAC3Mm
z{`p+--*4U>WaGcz{G<Or%b(5h-)hV>k83s3M_6vmbmDei-dl8=bfKvnE!+kX`;wEk
zmcI<36>XV@Q{!0sfK;4M5-FXZ=1CtOlYb$?mI2f%Z8k^FXy*GtVb$#P5hrcA96~w(
zzsCXEWKHbx*lOwLviXT<5Vxc(l<l@DJo_O7Jw8_Zf#5$jaQlY`jHQGS{rXSL82cW_
zjOmE9McCN4Z<U=_B9=>v4vRB5?*JaZm70nCPE8tkwTuh3RcQG(Zg-ceF7EOR?0-lo
zDMt_^njg&2_g%t(6%E;A(Uo&}@a{ccE%$czb}CupaFPQ#L^LT$-?zCh2t9`;1Rabb
zpheXPeb-$g1MG&-vm0(Ohuzf@yxYr^(HBPI;*dBc$WAxomf>z?g7!52w#inJSj<+P
z!d*?sUM|xW>a$XjNm<BJ)m>wmsedV5L@hMO$Y$2aHV-JzsqMtfId^`zaD8Z3MfiDb
zh2<2DdI49Ck79?Wi1#ePidjoZs&sK`2gEUpq7ii?>Y|7cD49+AF;lFH-9}4|r+dK2
z0ad<~7gby=!bxrVRG1Zvx)HxL@VQv3WsnPSlp8)3hPh*I#7_lVDi8JS;eWH)1`i9H
zO`Vg^89kdxVR@J^U{?ct?oB4YG(>y}d*pb@K(*I$=;I>*PDW7%7tR2W7&&2Sg^%`l
za%9J3gFWs+H@<)CD|qB10;D8n|7|Mpu<P>^l-}XmT{?yTOBeEpRUALe0!LG#<Q4(9
zLS(0}@^SI(bje~?Qs4DwGk?dMNfqPsD4kcMhd`8pDpPSk4<>?SZe5b?s^9CU*vlz=
zl6IBZ7Hv%}&W!$AfS==iK~_YKaE`@hJc8C@6{Nk63wn!S&QzC2aZ*FzRQ<DjUaI96
zt$=mJa25IJJ_;cX5y^Ca4E-Nc*i;KWcrYBrh14H}Rhc6CNzUtS%YW(Xx%XtdV4G6t
zk6a1KY01yMXDH{Tf|PYm%zvr-Q3bp-I>+|sexVOxp$DPXf3TGIVA=qXEac40HjE(6
z+F!AtHAe)|cs8^QqBYHQ_f6+@&1O+=B;xSPw>U5$bhd`f$)+(c$ONP9E2P7Y>LhrW
zaV3oJFTx;gr~??P#ea%^pvNQ5b0pLmx-y4q2JB2FUB|YRs<M*#p)@YL#Y67p0GUNC
z7oYr+u|<eAX>m;y=9bOfh+%nX^yVZjQuzg<e<m))P;RvXi_6XZ1b9&Zalt~;7qs0V
z3X=}`>)@d;o7wz2PjnXnX@_p@J7d0U_eRI=v|D%KJ7#ua<$vCVn&d9j<J(%6((&Oq
zTOb}Aboe0=xvaM+11FiKsEI}lzERY0PE>f&|MDwV0!zD-o<T#brnN$;zMjAG><Wez
zR(3n)G8+M<QmiRYyy8zKWwoP|9v1QQ&be{y0IuvDTfX=MSGI#Z3mpO_qLgwhHuZ~l
z0sc_n_+HhqgMTVq<yrZ~ADR}Ic2HB}rrWW24XG^o<BCh?m6k3LHlnF^w@|5&y{IG;
z#V=~9kd}f8(_L~_Z9MxncLW_R;A}>C9R)N;*%pB6JEp)*?f|&$jph#SGcEdI0(VOr
zmvcimYiyU%LzAHhZ=Sq=W(08&`$S5sq<bC<DQp_Kqkn^vSwFTmcx-3mkix)L5u|aP
zcW65I{Y8ZuA4&?|3`)Fr4jCAam`<L9dZ7)XnzcLRmagBRRj3v9GXZK!cv?0FEgPY>
zy~3s`$Ew`P)YiHRt=nCQY;<pE;A6#k%PQPYe=&b)ufFnsQvRP(u7#)a{@fV<b#QR-
zHs$~M_J3b*>i_tEKF1%jtY5zdoyMqn3eFox=J^o3e*Jm}fNpPO9)i&vF-Iis1OnzL
zL}2$%7zBS(`S)kYoUi`eqmfv)bBn?m@*<)LEO!76j#37|C<4<p{e2bSC`53{0<Nln
zNK8N@$H*mtCQby{@hk-34v>7o{sV(Qae%C<aDSNkllEE?u|IVYh3jm;P9-yRLj>(L
zm?Go>Ja>YCX1|~todvP+sH&YE02%}ma_fqG{!z>zpuclm7c3F<SlkwLU0`vm0S3zz
zj=&OnE9koG9RO_PqKL(Z_2Z2t;Q^-T#t#wCZ|r!p-@x76vE~FD2(S~asE)~_&HjT3
z$$vZOvB)%k6(%!N;M=S|(r<J=!l3G6HASI^B65QIH6n94&$1tB_?u^;KRKd1fU=Vx
zS~hSzHmoEdm<w75MUXkB{0SV7$n8Jp|37>0|J=5%ERO!JzXBhfo|`x?l5EFGde!Nh
zQEeynjg$CUPBWkB?bt90NvJ7;1xVR$l7IjG4HjPr@QX;<vXk_fXHH|0!0uuJEEbE!
zE{Wy?U$A^qO#U*+>kpvQ#o&|r_sc*PaZ2dR4^k4H^~+ZROQiVTa6ND=Onf7PQzyUX
z-O)pMdGLl_(coH+BNREPYq08)1;4%e@}^~$%er{E2Yo+3*M)*`XzYrODKWDdfqxfA
zYiV;Tnx7N)wPoUe(&JB4XEP?ZMm@DR0%h<PIGWb~&6m##>;KEG7h4bO|9w24%%#QJ
zJ+~I571tQ@^jK@ihgH9mZ{zH3kQWWccsd<Pm@0z#D;g=I@eqB64Tk4<F3a^Vegt8<
zP%*Ogbq%NtFW8)>;}lQx%M9IPb$?yqm;{6_NT{Ob@GQ!UK%mzlvIRxL^5_wT%MY^r
zl(Q@uqOLk57yS#$`uf&9WqDMdye9g+dk*_&U8DOHbpyGYN6rg!l`x(<FX+7Rf)hAb
z^WLP?f04!J*B@nilcXK7I02{loK_VvRO45fv>bw}U%*kZd|xKSUUj6T9e+XEK;qV`
z0K1U;&Q|aeEW`!5&VeilKZh^M*I%|JOG5ouB3DEChte12UsICmx_0=yW3d@CF^i8i
zx(~;PUKkt`RsM<lt{7XrhXyPmF;3`UvHhg-^)v6ajv)W!VVVA?J%#l@p(Y6DE!TYa
zX;}Zap6wLZ|D6{vcOKUN`+s=AtYt3Ks0c9nE~wn@<@z8R9UbUH!h!x5vGYGkkP6Q;
z#@gcSND}%I1Ifd4=DBh6S9zL`q$U$CjjJ-@TI~R;l$C>?cbZyM4s`2AM+cSJ*LvDt
z*T0}fb&w2oVw7tPN?XVoRl2e!btfDpGrZN;=Q4fIL*0fqH;LQ4i+^fbVNn|{doiW{
z5@$ipG8fbqxgMuz=^(Shtw0piIMTlEZ)r^D*?fq$RW2mmV~S)?eapK`n~tsO=Ntm*
z1UQ;dgJg)dBy1YPWdJh1pvlSM_&37o<l5e1D4KO2)~SZam;WIqbE%u^kaBCn(Io%3
zUX<;>o6jHQ|9w24YJcOfhcleM&BI<D;p-_{epeR;&zRi&s_w<sW{=P2NiV_IQ?`aX
zx(bewe0P1l)=<6t((Ed2`q4k-FJbZ%5|$H;<wtFK4fW`VEOlwWL?0@gT7lquK}hys
z+2_Bbu80Upy66w*Gv-qP-=4jAzPTC7j}HR*+k6W0-yTh@bAJJ7ivRd*tEm4!-+GY$
z_wzs$MHBx;pnL#;WD#)G^d=7oDd7Bwr8C0wS0W2$2#b#6NhC{kO%(lZRYXHU<7q@j
zuJg3NKk#p!*-zjU7!e^(E&iG`|6@~fS$<__{}Hi3YM_m9cTGtj?u4^B++NkEKYn8H
z8d$FH<&yNzzJDvI8)j$tb2$UKGK1=j(I)+PMf*HJ&XtS76Er4i?tck`!2Yn+FJ~lf
zlLCnfby>sS{muJP-?5XU<%brKY(jOP^olXDvEd}}7(78A1VLvJozs+XdlCIu$L2Ug
zkKs7@90wOYaH&lxq$Rsn$He9cIV1@uz(W9hR)VvEet#v=93_}zP^9F3TA8skPEef9
z&k09tVq=6T#_H`YI*3t#1(5~jRLJ?EmQ+jkCtXyo=wEW;3pn9~`kcTy``Ol6UjZ2t
zf^Z}lnq)B;aM78e;uR%P_=<5o4$lyc(Uc7Y4+hrG3CFn?lnqkGA~Dc**dUDthT{Q_
z2sdf8rhlyO_qJ`Z4RL7t+YJY0+SK*>ccYk#h5Y3JjA`Tq)bNoNarHGPSHal^YZ>oW
zp}rgTqx>7Pte@5=aId^%>JyB*W<qtHxz*))>-<PGMn=e1d0_I0(Y2S=ov6|d;ZAe>
z6lSIB_6~DRZR2xm|8}GOtsu|}9$X!7t*c(@uzyX;Z{=Jcoq#6@<^)+m10rjN7o@Xg
zX0x-%Efv=Rivye%qP3bOt9~iisID=x1TU>y2$$k_xlTmVRq+v3DqI?8#Qe?&>)MB^
zy07gF(=CV8He<%=-mk4neV31~|5tebu3;b0WdGUTD#m|*vGel5|L<O&;z@qtpnnYq
z`+seXKUJRR2DSaxm*33k{qN)b<KGT;_jA+3uO}x*r(-aXqxZ4@`Vh29wAqLM`QMJ-
zAD^J@o$c-C9R>N|-O-1W94`2Rr9qzft_Bz!O-ML98qWI<CuKk)4Oy0ZJii6+$S2Ec
zOlU+(<<0L`G$K`L(;Nlb=2t;qzDQNBAAd2aTt;llnUuvITUQ5#J{b#?iDV}qt;Dhm
z<LLmX&<p(&A}4OWhF=fD`)fS~`M)fJ-i>iI`hUNCUiAOkdHx{(@8$W1<bUDfn3etd
zy(gp8A*hu*2(I>%xagQF_thq6B*^A3U(EfHQw8EDcVk%)d$Edfrd91znk-(pW`A&v
z^7rBJkKrxw7Ooho&k$=2$qi04V<P>jW4}-TrU_#4Pxi&XR26}q^rwHrN+Hl=u+1c#
z2ok3oklTdd5U~jguVXx?0URc9B0RSs3Hns(<}?5dxo;C=DYC*LN3C|(@ZbI{okva;
z*qc!nqk+>&@=5visUq@+j8pi}00sTLv$>O#tHwot+R-f`oHKqZS2&S|gmZL>xn_Mr
zLu9k00X^!!{e*_5_JYKzaN4i&1T2nKj%0zhHn(-lzo<&HG)<f;W~L2D8fY|gIw$?~
zIw2xwnHgO2HFDhR1}sQP+Edpo^5QBeGc;@vlEpx2BtJQWFb*Ymyn%K>NP;7}Ag9_L
z483@NzUg%NzfhX-7_rGj^^ZBgmkj6H=}{ENIoypEvXTR-qS0~;^uxgu7z{r>C=Kg+
z{Pka30(#^sy}$Dxx$2kV|8Ks0SpV<i0n^&PUaF#NM6MDhNN6(wOc+OcRLGSIJa79>
zCZ8L+Z8?jrStnmBEPb_y$V(bk183<>d!_q-Cq|XN>2)qxPEh^j>WDKH3O-oIyU7$O
zn5Mg&Whr_7tT)F=LU<QFwl`K$x3<-jzrq-Vx;=*pV=+V;R#914K?U<-bXVv)MM9kN
z8dD)C>#_=EXN(%6!vLi~TEAG7Vo_IBT}J4o7>^Hk2~S7I?@S#t=*~%s3-_b&rRYTr
zhrM$gf8jVFyeC8iSG&FYOm~9@61omyaTjeHr(@o}<}6EYgct(t^-S#C9=Pm@#>Q5m
zE$FGvPvd{0V%Z-u9R8xwcMwvo?&Mx5dHdz3p+19fA_JJvDrqEi;FGrfva|CnKY93Z
z(>+H(D1|(!M+Rq6YN^=#o_A1blK(>;SSr{5By~FfHLw3KUOX?_e|NUG9`1kL%hRxk
zn*mX|nCID2e%##LbdwXwI00LeOvxw#?vr)N?;dT|M)$J<{f7W27<>R}!4Xsi>dQZN
zi_+RK^3B%flY+|Cf0ge4ZErv1|Gk$7Htf3FM+rR;V--Se__HsY&B&m-fGeJFzw!5H
zwZWxN0t%+%%5#818MTraIND0_3l1*ea!S8=kI~!mm|A%OT|;fG57g)T^o($Xg&|Id
z+p;0eos`PDNY@9tQE?jJlB;XMJ}ln~w=&Gv3NUpZZb<g6f7R*|ckf*FiSQQXW%YE0
zUcy<*0v4%NVO(dWt{7E~2OL!emmX}GJd4i8Fd@N#!%?$wwqUk3Y87v^fY=|ep6@o}
zD4#_pNUqt3_`0$WB|rO7C<|#|4X+B?ws(==8IH!pfx2fZsvs5lI}<9fx;X~(S-*>H
zSUN`^C~chOf7?PqcVbk2{^X>k(IwR78y5t;ae<VI)E|4){8YR({n5Z&Q_LEz68bui
z!(e{p^sI&Z25ANRm3;Hz%Xc@2FKf49UaMRf24NZ%Hic=VEwD3YZ2&#L9j2}<p>_dY
zn<k8-lf$vSt7T+g0W;LLGow<ObBV0YgW-e+>w(g2e@1}Rl|2npE6+~UV?R7)5pBjJ
zaLxUUQcmYboJ{By>JGa4#W<Uo7hk>%I=+&A0w;KGfaQaE5)rwNR*~)#63__^%6u`k
zeZBqM6+DGWU8Qjpm409J_!Gal&8m_g74y8(6kn1V)r7pOMXU=PEj9RiSQ^(TccjU`
zE612yf5<;(Ut!PS>;Ji-=KkV;>^yt1U5fv-^Wgt;KhL-0|LYhD4aPm3;&IA2Ib_pA
z6$Q_gPvD)|^^H!p$}1YxR4ddlwoq@5MY^V6v@lzB*up&Ni+*7jYE`wixF-u1&Ss>)
z3-Pc=Nuv8AFTa{$vf?^<1(+3#hP43wYzXt9e_Nn*13gyPH){$g8aB)|^m!JgbXPIV
z-KKdIRuob+7P`#xc+Nr+!Oi86>R##&2J<+Tf)6ew>Ko5J$_8>TVq;(V$eoZ_+QxXX
zwP{D*9u;yy+s!?!ho}n|9lM2+N0{R%BGHE=VmR~$pv`jEPrO0}6LA%^J$4zlfM<%e
ze}MQ)#Da@fL^>tg!fi>eS9S^PeUZ{RC@fZ?DFY>5p?YAW5GN^JxIkx|h#8CO$i?+F
z>d~k>$&lxY#OW>$W@JqNCU1W!k9jS{-n6M*nhX^<-)aGWL!=eemts9ufdg*X(%RZ>
zaNe|~_0>yQ-)wEFJT|{%lL_H+3Hp`be~>dae}%!rVF|+JHA}cgAIBphvN<_s5!usw
zmL+-a^xJYBKjqz}P`W@LmkL&{g;T(jyXl#jFMSn|_(a_l*g%_>L;BS(QAWUOrP|$0
zd2Lm%0oC{`)&#5R-#JP8wnYEjFSBHwYT~U9ztMuZdhp(;DY|YodwmjC<nOwve=2cU
z7rF(DRVd~b9NvS1H)@KiTFqY%|BCEgFG(flsxr6W?ToRD7M%T+u?umdRzS^azB;&9
z<mx)fDe)AF+=8WW;Bib6R?pX6Q{;$+#{`GhtF)z5xthC0GTO2D4k<H?4vM92!E3ou
z5cPZ>%g;AyiC3|jzb@)_yuAZze+*BBTjCb{BolGOgpt|xjNN}V)@5$eo^tJK7FSZ!
zj@Nfepy4{1h(fVjus+csK4O~IGyWr7TlL!122wkwEdg$teCZXbZLS2X$$1Nj8$;0H
zbyy@TjfFluu5QP?MNOB24nnpCZ%N8&ptDoDSgi5BfUQ`kl=t$o60|Mme{rIk4E5uX
zPKe~@YShfVx=lnCN>|f%l!=+Pp{v^BAWjKi;Al0{l1$9>O&|lHiN2~TUcxHJrLY==
z$+;oQN4fdXJ7Fvm2P(R*yV;wP)HWwCQ`pw2nekR<Fa4;Jm!2GscL`4+g{JcF6(Sly
zPSSzSZ`v&zCtK%OHS@86f7Kpm<aa!N+-whB6Q*ME!1-!}IJg1&Vm{bbIIXOxk&PzU
zV!+}c<DA6lIL65?i?xAPxB~J}6_zE$jHUaKVn-YiJ__1x$D3hzi$EiB4NU%8^op9o
zt1n#!;?x~_hL)<nsTiXYzcw4M(&FWiD%)L6WxG!Lb_g$3SyQ*|f3k#<cJt{5t*!;q
z++ao6P3O{`(^{TQ>+Kh<Usm;uU*Kkqt%K3rFQ!hrp1F5g7d3@%-YtQk%VgWG^Z91&
ztA<d$<~T*$b--66Zyl^pI9t##pPE(t--EzIw`^lAkjiG3$ZFRWUxCuFuJq0O1g`zn
zt{MmV*PFGk5<q3!e;h*E@&D`4){5sj4!KK<7!KV&TU{}%hf+!IWo_|R=S?<BvkAto
zw|~1Vi_?lhvagGs%s9beJ9}<*Rj)Nm$!Ir3?ufEt(0g5G^+{N6;v8S?+Kq@gn{B;f
zIqT%=gKQa`hK^~XdgZn4ei~A-&Xp?MRj0mgyV)wKORF=ae+I-2I<=bW8|sdC(~w%t
z@oxLmi0G;=G~aI3_F5n}=tfIyyPms8`io0g`~FiDzur|T(~bzIENn%eU&W(liupO7
zl7K}jnnpi#N|yXoUhlpkBzcRk6s7H!n_{Kq_%FP&6%^<%RhII43j9jTDKH7NE9~Wp
zhW%tl=7i(uf9SW}_Y1;jq~M1}Dhiar9Odz`$10OF-1-?dgwhsH*)q^Q)##&Qgp5{v
zs;lhrE37HB)ali<!vr3&{kfZol+A5Gl8Ou3P}3IpAJOElS&Mn(U*Yo6J0F+O;FM}2
zq=V2!c20hyJpJvh_z=J1g#2wz23z!oTX*8t^$#HPe`40a)6e`0g+b!@-5Mx!eDy!<
z{3E8R_1aQNlgK<tua^|t*eD*%=>py$t^nWakgp1sIo<nHeOt!<zcLzJ>`{T`R_2%l
zY(e;S^)a5DTE&umsQ;FQq(%}H<4!OhkYmQugV-D~DE|!8s#kdddpPLI(I!C4d3FQn
z#d6D-f9ag2>f@~4<Gm_o+Jd{sdzCV@`pC=$TRtc&b31oABom=b&A-Wcll#e+-&c6o
zH-o7>{>j4&LOa4ylIVVR-we^CPoL1AjK-+@v|Cr{Q4^BI{3GV1pJHKrklvbn%IedJ
z_obqhOCY$Iy`FJT9%XNWpsYx0x?Swj%8GSie>=A;TWqSo(pks6`wTT7D-Y(20G3Rl
zWnfjM?qaLI+28Cz{_AdueSUNq_sn+532=#X(}j?;aiN^R*#(K)%m!`m)@p<r$9*Zq
zI1NdXonMe^MXz~xl$}R3ctfsVG5-3uv9EKq0M>9q3O8E)b<HMY+1K%aVI70|rB6Di
ze|Rkt|Kk6I;56d|CSb4E>wH_6lMHqGdQwrfFrO>tlp6up5qw!X>$8N!Vn!#admev3
zZC9-d$yG~U7<A4BK@*jq3Xy4hW*&)P5R$7ddR(}8TGRRvi`hBDJp6EcXhR@t1=-x`
zR54~%h%I<^NzTnTxJGO8@eF_5{81(4e~H+1O1MqEtnPWycw$l^PZ*!$bcj+F<{26n
z!{)(WBvx20rMe;w%kLCZ-zOv<J8u=c@_VTcuWEQ<|N3xzXjlP|B1+=)V9(>TxE3jy
z5A|Let3Z9je~aP2iy<IXNBUXhEUIx;pudeWb`{~lqu|pgG$kpC7wCVx{}%r%f8}Yn
zATpTY$*u!rKVJNX;bMb_2QFukApLNBP%)qe0gj?`99-OPWI;#7DhS2yXjy0ErBHq+
z9j>}n#I6c(KzM4?=BOYk>gv}<9fC{{pZN-tWd~!aq|oM?(BU=)#dsQS{|^G(4|rM(
za>gX;Z5#aYf+nLR;cS7Uali?Qf1U7vDh-J0E;|*}0DtsmYx9va4V2Ptfa>v~UaDW6
zQpY;s82uiW1op%t7%VmijE2F$RJwV0FBQL0h?D<F$qNm?BcW>&#h79tt-Sbj^-7o9
zqudMDma1@H0qC1Xbh9b@aC|saAI&vQ`L-_>)Ah=F$s1>UJ3n>I#=X%|e~oZ2UDnT;
z?OxY+#m_r79v{}!@yb+H9$(PpH^S-Ux&cC7umA~Sqn#X%YwDZNZk2NyhkNg8DyWae
z;zu8c=$C_cd#6XE@%ZEW<Gs_P!_n^kukR1{_K$7JOb|XMm<O|=7f3>oT6B4pzAEQp
zMrcB#v}&;})>Y;Fy7F@=e*jZuZBx>(Ps34~w!p2*`E|)0)2Ll_Thxaj>1hYRl=SN-
zoJ<JkB>bQo*A7@^H5W2uAy~1KojR-cvRk>Tn;Y8ZR(IQzhx=JtMY0AGHWDt%!^?ab
zx?!jqB9;Dg7xC&fsWvElzCsrxoU8R!E)HUaRrZ|5m|yQ{I1nX4e<dm#{*3ys;4iy>
zRT-YsEQtu}LaD(7FKEExeiBc+=3QZ#vhPKD9TCwFgs|2JFJg}>r542@`rOkoUNk}d
z*Cd5ua{gk6#6gAq!u)k(-uVIC+v+DZAz4+ce#1PEA70i65-4<pA@ZwbN)@=*98YkJ
z$BUp0(uspNRmBRMf1nzxi;d_Eah!i8IJEP%hKggaXikYH<Z%P&Ja%71MY@4LYwIE^
zo1^N<m9wS|t)skLGodcfwNP1^J7O8RvOtN>R#2PW{qwWu%Akcc6zMA%QV5vAW&*9t
z|HEEuS>-q6y0-2Gx%P>@-}pbJ_)jE@@OlHlHpGA3eDSgrfB$v!#Y6n3dwISs6RRA1
zb~TavG*$1FUG=&!I@7Dv3*sb~Ie&8x#c&Xi1Sa;k*UBDjOsg%)K>UP~C=^{(6*Y8?
zf}%YCMG)L?{O7Hgn=cCU|CxOCF#qr2DK3ja;DlW^$(K|{I0(CQmF}`wq#V;Y72Z5D
zdFEW(DH{}Kf0vpBrD=k`e39esCesf`5xe}AiFA)@m%F1Vo6>lQ!0wuVKRDVgy?duJ
zJeS@d9qg6gsT6+B+apdFG$K>7F9ICt06bOS!(9{K-uq6%T_*yX3J1FT>-&%I;ICKj
zKfVLoNDu9ec2D2`wtswlu(#hafqcRn)t(3yW7ekZe>=|Nkr>6-9g~X3)3)SzFdrnh
zO(L0N#y}g=rw_VSCZOsbXGxj3(cxi-OKcy6GSd|Z5af`?*_9q<RRyxd1SE}Kt7L{%
zP=bKXlOxVxucT1(EKcd13^eaLa__A_RiB@H`cxL<U%m|6<wkN+1vptF;8(~l<4erL
z(a{0?e+IXlJ<8#S^$kn)HM9uRx%$G{pCm|0s7O{D^0lap1^LesihF4!ATQ>+@&GjD
z|J^Fd|L4zNJmmkom*-yyN3elPiPB>bn?QhP>zs>DW)Lemh8<zbhUoV^)mu+2g1*&%
zp4NTni$#F`P)P!?^2rfz<XA()pJ8i>9=lt2e_8k6qKmq6+33yL0<OB0^{S1kY7$qQ
zs$afz{)NCpLbg4?NDg^r(tGyeISTPL@M3`@8q)Myr#r@$>?w(NM<oJ!0WKil0B{9t
z7S-;%pSvE@x=+z~^zLWNCOB(sqKfd;rE5&5F$v|4wM1WuxR^%8K9PuQOY0LXgAh{E
zfA@WY|H{hg8HdOhC^uQ(tDQjk>@DUOBt43(eqGA>r{Id&03sv|Q8(eFM`MxVDC)Y>
z({4D_PF@9Zwmj_vA6;YHk~Ed8@kDL?zjc;CiY}ieZ@_UV=g8NVVh_(vAAkLiXh32?
z?s@;Wy<N)xyY>8G|93BsmL)1QGvny7e{;J9#sVy|*8iKNgwuH1$CpA$n<O#|adjDp
zrgXRrl*XfsGvhpGf{q1kgq>ppN;$=muGVc@pzhhW1GM!tasEnRsZbyD^9uC1wsjk*
zoD-wzZ0GAVymga(6FEt3NA@39lKX#r`9EK`=?|XO?f=iVb{_2i_wqRM-%92ze@dxN
zR$zVOdiF@|2mR?Fo-o+HF?Nw9sJqzeqOOuXl{>EPJm~4FVEpbnFzLhx+ta=d^4kQ{
z2z5V>j^7=;dp$&NC3OZ6vL55}Or(gDIi@i(G-H7x7Ek5BsocYwO7c(T`b9#NGK5vS
z0Si=_g!=y*@6&WfI0~uI<$X94f6nHxSFWlq7t>7WZv}4tobrrF%<6ZczG+k6<&YHm
zJ!b*v-HH8wu7j}YNNV?E|9Sr6*~_B+=jDrs{EzqYe9H66tr|FRc`!a#aC|)@Q-gge
zU~$S>6cMiCey(n2Y760p)}|&yQw92avNyFdHC2-5S)7cqshyq4_jykve^FsxDdAMM
z?3)={22VPAWa^ZDnIHm&?yn@8_Y8wWv^yF|CiKxki~=l(WSTatsC%+0%WsA}?a&m7
z8Ox#&of9-?3$+kQm`Dm<Sd|uxh6u+fOQsx$L@u<6Nxx@7A(luA81HwU49d14|2%I+
zi_lZ~x5nPiU{<!3RhW=Uf7YYoP6mf_3VCxlnNpFei^lznAB8?pR0E?BFm%_=-FLgq
z&qKFYcl+v_LZKFeo?0Rp?`XwB3_HCg#q>SyK4p@2Ga8P`f|5%;O2iQTE>+H_Qt><|
zDc<V-(LtarW}KK@-v`r}aneCZV%VQdNRWylddFhYF&CP49S{D>e{`p1c_J2pQ=*w4
z$fiN>4y3*XT9!>fud<-;>^xI<67Vls97YPDo+3X4+6WEMZ0<;edU_Zbe(WCak52X_
zPd*&&$-n+6q!xuzPu$l9cK%`AeDy_F`935`#IENgPKAUGiLxeHB#8Q*e^zImqWecV
zcjqd>h*zy_dtppef8dY8U^TCeTW=}f@5=B$qu95WEQ?#w2%nwH0zUEnyPHy8fV_<C
zPj1TGR+?RXTZ=W;(m~BYZ_q16pttOb25^o1Fa3Gv`oF*bi<Li20^)ORrl95fzpb4Y
z+uOzc-_G*~`_H{RpwF9a|EXS{Z32HU`1<2wbpF;+*l!Uve}2PSJ)F6#hpAfS9Yx1g
zB6S%WPfMEPJGXkp4nnuH7m~Q`4Tu|PnJR0%T>nEWThOO3@J14La-A3-BArU!u)(`{
ze6h9Jr@|_R>dG<X()aJP`i*YnRGBN_vevWCeZ7Fif<>f<gFw>Oj!#vM29;xu(_p3}
zM_C;N0F<FAe}?Nc$cjS~&gSj~r_!>bo(e4T@wb(x>3!AiQj3d+Fzezk@UaK_ur`a_
z@8G+AKlnYNewQ#b^abdpWmf3%2Oe-nYxYy6bC$AzMMHG5d*t3@G>Ie%Q3p%cQP$X%
z0cS#3(tAMp_uiMaJz3k24Y=;E7v=sPoxI<B4=(?5f9uB)Mw19n<pw*=c&zOBY%=L1
z*gmgSMCxlly_EIlL62N10>6#^x2C^}eeG8mB4)!~nOFZ##*d#sI@rI;hffzQlVxoq
zV$-SYc{9}3EG#s5B_(<W$+t0FT66)=;=B#YGV+zB$iL8`A_vhp$x`^-dWdZAY;W(Z
zRQmZ{ldj+z12#ABlgr@e0jHC*;amZ@lMv!8f6lYw{hycH5B}fx^Jwj>5Uw{!R3ux0
zvy|z9V6xv-Yw0GQQpf^Gdj^wl*~cTC&Q`s~(&)xi<Hb}i+q)!mI!n7l)ZOY<d=5!O
zQqof=aor(0ClkgA%!M9oh$xGn!Y`2p0U;p?)z1m05gbzFkt2(NF3iMoC!6Ao@}Fs`
z6~$C}M7m)96fCx$di~-T0Nm7nkDHUw;=ci>laS*a0ezFL<CFojlS1S{7d9bD>w*02
zB@_d{=Q)-G_4jUnaIv+SlbYmgAi3t)`rpG-asI1rIVBK9eJyuDo8mw2Y;P6Le_w39
ze3K^SxB*?0-{tjxf9K_PG5+t%&CLh-e=pB1<v&gmk?Z?=cFf#d+5ax2zm|~xwnrzK
z>a7w7g%c37Vu-doQf}6I^B339fX(MD?mK0?X1>T3;9E9ynZdFl>L75bXrYyl&o-Sj
ztS5q?+OVWD!xc<7sK)Hsf;m4HEQ7Zj2d){lZ0GcBR5#jx<)M0uCkqm<Zk6S;bUj|t
zWGOu=ZVhd<nw#&|vSy6Mqv#S}3#Wwe69)RIn=<FQWtV50b4vz=Y;*1ta+VCy@7>Yi
zp<~Q-y?F{qAyIP)Ops(lw6!@eyq=Re<JUv<eDf`JKB*jVZ&?<XdB4(l(5Z(jhlR@{
zC+)jKoW!qx_xVQMxeYPZI{J;s$@S4(g)S5q*|{oQD&b_<TRT&A@_UaKVbhYVso%85
z{g#Dfh<3I&Z`zRM9b$72`mI@Om)EqUaG>PLh%grBy>_B{MY%}r=AlM<nADYMYjZPa
z7-W=u$6_fX3WF|BHtARKQ$)JFvAHDWLcXVyMVd-~mB(N$(m^5wF^tLd+O-NEvnZnR
z^aD5m!h7z%F;va*)rS}_FpcneM22Yl`M>io<BU)ByPNJlYW07x39iQq)S&-wm-9cp
zeEDqqLI1yx=br38t*yP^ffcA|mA(&Ckd;v?fXb=PM<Uf~w6(dt^OH70prXOZGZ|Hw
ziYknMH7Ga5{J8n!=1+x{P?kQ01L&LatM8sH_`u;ZE@d$q6v#nHA5xqqSO{q0a4>KI
zK~{#ku`&E{bF<Knd=dN7iW6lM)SYvqXybBJCLyA-k*lJPGIW*edDgD4%=z!ta`w-7
z8rJ`{SOJ^te>+=+^Z)J5t>+K+zk7MUIs0FK`ONp5Ui{03ysdA?kXPpAgEg;>k3q9Z
z?^Xu6e~bl9O>9stR<t)lEFm9>0wxuVmWIf7X3QL{XbJbL*##@jW0lRh{f?>;uhbQ9
zjl0eWc3b;hi-y(MzG@9`>u2sw+O(=+a%ppJV6|LI#6Qk5_ptG3(*I4!&O40%w7K<v
z>_svE=gXa)2m9Z>JnORm8CS}sSH#R{IwvXi&(7gXJXMzll-%mAM|%DzY(Dbs#)`W0
z8fhtnkt}I*CWfT>S)qKTm`_QnG&x(dSE0cb{dwB}6A#k9>Zz6gYmxlwX_Wt)rTZTb
z@&E4W`6}`sN6Bp63&5>q|F<jlD<pn@g{)13WQjN|-2idrqkjE0mJ#1N1xmj52{<?c
zk|6c#XfmNOO|NzC)(1(xw#S$M31@SX&PXQi@&3p2ty2E~7cU?DfA8mUXS#~I52@a9
zN{;MUP)3d}>X&mP<pZX#&O*Js|0)`@n$D*on`0WI;m@eswO=98yuIbDO7>NMNw639
zoT$z|oS$vBc}V5ouZ*eu13$+BgeEW33$YHgfxBmOfaQJ+g=Owm8O2x2oLyx#cWyYB
zd2Vf8?-zt~8WIyu+Yszjxt>SHJwaWSHdYo9aGa1+NY1gq(GYFT{V)2W#}I988bzEe
zaFoFcU#_QX>73B{jqN|#`Dw0y(rdk8kBWdT2+wm4$d9KYEY?>rG9Ce&%n;DW(r)^b
z{=Y?EEP{UvID#H5HU|+E=@^JQfwfQeQ@J0C<Ls`}*p%6lWMVeb>2z!a1%zfSW*j;}
zq<Ef)f=NwhuQ^S$x98?S!qG`>dU!e==n}cHP3mSrHG`FQP_lLRT&CB5b9)uW7Se!J
z4RYwS-BGxp!sKKw^6XI_2e}tuRq|2Z(qKl)rvParbmQG-2KW?gkGbQHj+QX+LoI7v
z7AvFTAi({=@vS{4m=k`QvI`R52wv)3taTHVR!)f?;!L85S?JhU2}q-=(khzwP|2}5
zPQ1g9DY+V=(^Dz$P93~|685Qr__+W7Y;=laMSYVsaTszU#ObLAHi>XR=Aarn4cGQ-
zId+Eb*-a0rGni8?YSHgC6v^)YqfEa?A}W#SPL_H)2RNaF#nwO~5`!N;ZG9PlRn*L+
zff;FLAXiUkJCbYW>Qd2ujs^K}e2Bh$S<Ce8Ml8V5jEQvk-<$t`z1j7hfU1+RCP`%@
z)Z=LUHrQ5?0~cGHCYP2b-I<Sd0<75FhAEIwf`o;oLmiMnrIxYF_|#dKOAhO1KUBfT
zYE+hqL)5j5`I%giAWIqVHc!ol$+={DCM>L)o$Y3ltZYwGAxYC|oXyV(|HD6c)|6ck
zQc2a1{~LaK_He3y@?AZ(`#%u`YYG0+CjQHd;{E^U&$qT7_J8;BEOq*^i8$P2-(41q
zlw%sF!rLR6)8SGqm^JL2s`o_hXjN;E?-~>C8kuGsUf}z$Or$z5RO$U5<toLXvQFtm
z!G1mhvs>}y!Cnc@!O^aHx7-EC_)G0^mh5^iI6buc>-&#??>as7=HT$K(?f6HynDab
z>7nud$%g~|$LoW=j@F?@Vdw!szyHzEInzt;6HXZid)j6vKZ~~(xVM=|kDb%|jv$9L
z&aRw;e|sK35~KLKV>|%LUqqH95hzqR(gC&0g{(hFFZbK%^iaqy<4erL(a}MthsZoh
zulFeL^iU#y2c1YsoT}d1jWC^eASctGBuGiv>1pqWPA0VLRu5^;`<nLf)2H%g<;$00
zd2l%nYhQcTuJ5Ur|Mz$P^L(dx|Nq6amoFaV|9w0vSH3aSrwmO=Ot}184*+n6L=(o*
zViRulnGZsx&R^Xim@tt}C}a#Y8Jm64o+omJc*y;Kj7Jci&_ZBRWo-$Bvn(b3#H+7c
zpwf|6TL(4qW)|pwA!F@IXJ9MZ{k&6`0y&b7*dCYk$W_uRhhXC|O?#YB*`x_vp<3zG
zs^lL~KC;SF>3O}SiSSOZHvfCG<Z}(X)+JOH8s&4OemulZp2DShHNTflkT3tiCcY-E
zKYx}I%m3}omoK*q^8eY+i_Hi5e;<=n@4$b0>^ljW)1Pq_f(@r&B?TL3<I9(o8nP7M
zY7KHSRF;{4KSQsmnP?sM_?OXcy?;%;B}5NBmA%T%UFD?E7L2E(D4AjOIAC#r(~`h-
z#g#8GHWUGH{0Fy|rCydV5k6lFH)wjO`=r}3>9On!k4m`8!|i#gnivHrkDfg8p~!z1
zB`Do)xn_O>-~&*C2>zUs6#k8<NS%T4{f>xO=s~ek;<GY4<=R-m()?a<fv1L%nTc!C
zLy+~%;clBQ)5k>>fSpcLDI1nS#tDVY01%|PPgw<~3+2t=U;<b`1Q6biUTct2rmP^s
zbY9VdR>1TDaqVDr+U<>7hwrWMcqxBR)`$vngH+)Albzq3B{s+Y@(HX7E(0y)`>zrd
zstn`+p+#gB1JJUf7Hb6(6DGTE)B#WaIZM+#xbf;_6mV}{GV1MpEJ>{=C)EDu^w~KU
zG-%yn-uCY{ol<PYISwweWTc>X)iyPUUte^Oq?kqxH8>F|<D?aIzicb;<Vt_4PpzPP
zMOy(6a2$}R9qC!TV!09p`4xfE=1<=WsDVl6t$E-Tt)##X8awT(W^MKOG}eH14o*EL
zjzE;R8a}FMs}6ReZ?90Y0`yHJT%EdHTC6LX?a1nNvfHf5%NqC35x_cA=z@~V_G0*s
zIFGZC>eN#WV=+<Jwwp>-^kjccsq2IjL7Jvl%5f|vjL(~ko<|u0_tkS{Xlf`fr!Afm
z<Jl0X<L?_)szO+yTo(49-@9pS?Iy7$)(_V{wh9_3Xc1g&Z4LpRa3+~CUrIRri>=L(
zEbu`P4l`{vbh4Vq-okv$vD$M@7yDG=8ATDh1k-ILWlBn{PMXh&3fg~s!^n3zB3HGG
z+-&GJk6BB{!?3-_Vf($y(|j|1$0F4t^0VBw!&U5<TMW|Gk?MhZUqkiwT&bbZ`IAl%
zj>F1Bw8t?^8!oqPlqL7~sT7wz@@{F{uG;&s5Vk$~FLmF;`JLZN@NAO4RnMBQdq}%5
z=|Xh|*OF=VvfA=Yu2O#z%U%<%xiU9tmfK_T4@8R7tV~o3D!%_k|HdQdu2%mtK`Uhw
zuWHZA$Dhjoqu~Do&T{K^0BZ98eDSh)|NGg?t%vwe_wp#`5ZUdnBcyuaT+38N3cj3<
zUr?6L_SLuC0i@t2sUTD*ianO!S|*SOIQmjJTp!o8InhQ|xpIG93Q{8BrtJUXc?9Ap
z_T`ahIk{2%k0RZwtoyYdyNBO+Rl;pP@RU>l<!>F4NnNG;^r^;2_6Nr~_A^R3ogZ;B
zp;xFo=;{~aY+_z~`7+QxoWqh2rgr2^+0fB++{Cx4Kc_e)msnl$R_XB}0AR-kpVbtl
zk?`+Gr;*b;emO@PgQ<n=hf{Jw_?*Vjn<}=dVcXI|F7sMLEQGHu)0O5mt=DS)s))0q
zw1=TWJ6wxvsW1OcV)*s001f`1&!6u+FUbF$?d_9O^f6{*&)G~>$CtulFcGOX)E20w
z_}E53_3CUC*Cxk>A1)2uW3Uf=DSFVVj=B@|KEZ!w#76GGm*P}s@VFq?r!)kR=GK_h
zdDV=?mtq9P-jM5q5KSnFLPUiv`G30k9lz=-pV9e?9h2(xPk(E(M*^+~o*#}vk*+qZ
ze+m}c0ogBp0YpuldECq!+Z!A8CXlLWK4nY_D=iotxq#{fgQ~GBYbd6>^)|k-PEy3`
zka*QHLb<o~rWd3qaNqVxk>d)|D4}wOdFT4o4APe=-SB@vmxE3hS%U6Jm2l-t(=4kJ
z<?ia@Qu7UU6o1gTOq9F6)OBqX#qo$Xa{W(9pxU}`#|Iy2I@^sXiPM8Ue=^inQl%BQ
zc1v?eEdjFJX#fS6EI>K5w(E~qqk8!%>A*|I$FiolElEj?8(VS$g;r^atx>a(x?I$u
z+#5Nm8nY@lb*+{hwLcVv#(;P_Rpu^d^VqGydaSE}fq!gi^F?+p0!|YZF)VBaeeBdZ
z*jozT(muyAo)Ug)tg<UL<L#91>v}cVNStzfO2b<CkBcV@9-`5ng<t$WrvYbzP11dd
z;=mT%Xrjb6z0B1nVobXa_8Q5_i`EfjhB?b5cNT3sc~@50j~6u^++G`4h-5~}YsHdn
zg0A6CoqzIX;Tu|KG`-7K8ePO6o@GI!i`l{0M$8oJRF48fKqd&cmb_X5KIl@b5Mb*p
zCm_K>TryrK>UFUrU1}8qY@M5qS8%e0Q$=GjEeuxg<Pl1b<X?GKkNX;#YNr4c^dvDY
z2dv$~W;)7Q&i_J_W-0X3a{kxVDf0iz7k^Te`+vfN2!ZwhqGNEpH>LviTQODZH>-2O
zJyHfvFd7CPBg&)D7Wo>3u#{|zhJk0`X)Q{fu&4_f65ccML<=L-HrEvVaD3Q2Mk{Mo
ziz!Y*%1Mwm5?~6hMu1yuiAkltn*(Q2d}l)+sJFe60$o-2U~dI_ZIx<nX}p!nb3NTF
z<9}bGK70DI2v|bIQaV(T6)4aZs@tD%Hctw=riyxTs)HFV8Hw|xZm~9tGz3v9K+n$W
zKzg+rAgfcQIz_M=u0DyX1`K<X3VQ2+=H-_GT!l=hLJdeAx_&R?`GJoGyEUsF0e-bM
zrqJS~pKu~(Cvs&OXGtD4rQ*Y~6~vDBNPmz901(Qo4uU<dOgW9Gds_7RURFc&x##$0
z{jkg-%bt$eLj&hPmQ7ifOVh?)RORc$V~Yj!u@BcCZtEp<13iXPWeICb7Da58@>gBD
z-Oi-SxT_sydRl5IEu{MR-LAM(lIC>yo+<t*OZBPxQUdxbp)-h@_3g&aS;FaphJW+v
z6Z*ksy_N%J_;X3>+qz!CX5n95Pa}2L@ZrzJGx^8P@5d`e)7tRrN?2a|HmW!H#dsc`
zSID|4&b<?EPORes{7+C&P3-l5i$O@Px(#e;t95!^R-xiOHfWXUzgq{mte_QYYV&qo
zeMh6R6{pJ8R^Kf`WR7W63&7EkEIELJhE!K|i58@A)=k=VD?%l}H`0U@+iGF2Pa*O_
zE}`}A*Z);FyitggC7WIN{GYMWg{C&HT91p9Y5DFG%@;3<@qb@zJ$s1%doRzYPlG3u
zYWkxe1c+Wn--ITjjBdUCU!4DLYK(iz|MTqSvuCCJKQA7WEc<g0v9WaA#du1>LmJ54
zKiVjhuKOVY29wbHMFMQ-lNbCW0yZC$Jp3?!O%v2)omYSx^uL!oJ4O9(=f%!L{D*sa
z){_702S0hN8%e@sgM#$%F^+5otxwAmahY1=s;X9=w%`;ew6?O7-5{YpgxjYe3s}Sg
zAi=W3&4e-~c6Hk|CAI9;EAoW1IfQwzAjwt2L<@lXs+<qb&*rkWOlfmW<5L~N(#;Tm
zly_YuaSne*I7y`3d0a*DF%jt!ayL+S!X=J4>>@8fmygAo+ls7$C1-{O>X*6b+@Jel
z9-LOyB!8hk>dIDf7Da^X+e6)49WdASW*Dv~SM`1$ExT3Tlo;-Z#>{XK$Ve=L_2hgj
zWplIO?>1MPEK?8`uA$l7lBns9$BgHHhdMO=lLYB&DXwUs(t!Q~QNYJEBmvG74;E^?
z(Md)M#cVwJytQI!b4|MXLi5ZV`*HKf&HTW%frd+RK4a`+tdh(DTiUm?TzR8pnf7JY
zp`NqL#nmE^<+=qS;7G2*RK1|dQ#k?x7KfN$D+D3ADkAPXGZMb&JL0x{r3|Tm5TkX3
zZMal;y{d+&_i6cfcIfLbAJgS>l{SVx>PBojrSY`ulcwJ;rD%I+dwZvZ-@GkA>bV*8
zmqC193GsO?{pFeIw`3ml+Q<rTYcdb^ou$5uVj9)3x=l6TP2bB4S(0~hdj&FHRRDdc
zg}DFWVr$bbA{#~(GI4nTikcUH>slABvegWBIY^Uasaxt;9i6GGS^(h+QyOQ){5C;{
z{&{Ph$A(;Q#0eGM^14v52$aWpQ9@KHtrbo{_qN*plNW~mH@z6N5=pr%Sz@3L$<-)J
zX9bJ&O4D<Qs+>b=r|NB|r9!6L4CaoOI_J_czkK#dO{|*fmH?BGUdKm&J~(pu|FyU1
zcls3UKR8)``riio&(7BNRw@7Qv+b7;_MiKBKCPV7RY|87DS=!$gu^+7du^OdsYrPt
zO7J;Jv5{22sUUGQo{mf<6?w5jc4^;Foh_uF5Uy*8t`#a1Orwkw6YB95rcno>IZlJw
zE{i2CG)}cK+eFbgRw1K*m08#g!;BF6y{lqh^)D!MG7J8pOGBt&-EJ{Nzjqf~I7()C
z%PGMU!nF-u!rMLGAD!%XpQ7%EqdoaoUNR5o447^1ls~}NNioVX#SfmKlNmv~`-g~J
zC0t!46zH5p>{5AYBqX2{8X)LW0d_r|o(LtFV>kv<TLv6O>{7XZf}9iUk0C2y1lRDv
z|MaN^iKFPc=%gXxY;B+ukjD8MgL>#7HI{S-xLhc*NH9*L>k=k}<51bqZ9Vc=h9gO!
zM61R?js(hXZ=hq<JQMofFtkX6AgS_tk*XM-7@GQ^cdKELvvi2M4B|ESW$R5w>;8mB
zDdCT=o}w%L4*mRpGkT;M{Ai<(qv$bzie^|m<~A*qWqV((T6W3ZK>zh$s6{!6M3ZBt
zNZ+zyqpJtgoCtxZa?+&5?w|tU{47hK!o<K;GdOf}a2%p}CQ`{U`B~sOL0D9FKzH42
z`#*Jj<JDcffj)n(<X=sBi52?4f@d%SsepZ<Gcyc(bgJfme7^Q;$6XeOgctc*Jr2A1
zw0^}nQi<Z8B9$!dDN;%Apig{o;wf~9F9!6KSK)A#I~6o)h6Qp2r$qi}O43JA;*oZa
ze`H(sRC{?*p(W;oa1sY3)D3&2NXWVU$P6VNKNq?ljcFVZ<9e@X5{Q8-CXSxEWKSp;
zsgYN7V%_zBb0@Jra7S_DsS*(YUA@UE0SVZQBc0(?5`2xw6&2|^B!KEUJ(7tY$wX)V
za|Whv8w^|%VxDm2y8if4)w=U&qi=fVvFR-FXd|EhOVBt%0{(0&x}g+-$1psgEpi$>
z-l&@{AtP$S%<zIZV@wV)6-?B2rd~t{$Q?z59?Q3Xl_F}gXx3BBda4r+-ZAUz(Ue%<
zQ1rf7uZUO^>(%_ztUuSRKkpZ(C9u5a+nsbvJ(^OtG!(tBZZVR6E#1<7UA+tDFTqpd
zepA`|V!yw-I;--*1W|AV!Ud_dWC1QNzRH48y8xd@EVy{fLUL5U5<9CfK+`L6QJ61V
ziHm4|yyaMVuhlQfRh8GMKet^yi)7sOGFrsfW<9N}a|h!X@Sr&hN$WMXG@|`szrG=j
zc}gcZNZ&6A=kz8cyCfEt4ec6qD~<599>!g66l*1OO`GmqQrF;ZCApW?y@MH0*X`{j
z`(S`h-tWEFjsU~KKr;@f5f*~txF3^raL(BZr67YhTbsS@mphl~0s+(k#+SYW0hj?4
zw^sxKdjbJ!m(vCTr~+r3mwg8TXAG?u&o`g@^MCur%gvYY2LUeuqL&~D0T~h2X1~)x
z=tDeVJk4U9lIZ%Wmr4i$A%FCk#nCmIM(i9%{U=}^fiI_0%aJcQaq4dXaUdb*1jnLC
zkcp3!f!>*t@F|*O>m6YTwU+?jY;ATB`YWR;K|wY@Cmb3&VI1~Y0zJ03@3cr&7s~*N
z?E@O4c^0KKf!HaKdPi8iG(`l9YguPbMb0V~OLoZ;j3XSgbVj&p-G3;8{#0HbPd#=$
z5;jSQK!FKT6J#P~bNaUlf`dcL&yG<75sgJkaM(w`vP-fcTmrUS%#ta`p<$E3Cf6Uu
zoAZo^B$mACn0+7cQzKSkuk?LA;0-4|EOmcH5}2<51<}20?=E%_+(twZ>_Aiy$vl<A
zgp<EA5(n4nm9k?g+JCYn1TMe|2SX8<_fb`quwyi*aj4sAbE{lpp>{QJ{W0KplG<T|
z^#}zPs<B~ms>Pwk=#Dtp#=^BqIUKMMd2<a9fhf5(lEW4(0&Jc{R45{!!UT1C6(yJp
z@I`_n*EobUFo^L`T__}1NyKQX8w(R2HhV%=l<I(<RVhPE-+#1qMhuPfiI?9V4dqZg
zzwRK5Jg)(4mzzoOLkdVpWZ$d3{NubBFhcgkoPnnkNg_zWNdz!=hGPT+Tx@8xn&<+e
z8J*62Owbw10?|QDbh$hcOtVk;?T5ht6B>A`$+7I${1s5HgH$1y#<A{%ltEA^J4f_T
z(9T%3lNECUNq?m!Nm44!@WM_vNe!7yNRXP~U9d?v5+@&UYJ`uD-yOVrJp|vm7$Sbf
zAyQdN7{5j$<ynw|h?!K3{Qz?^$s*_<6@*g_T6HB>^(58lbQH0sZP0^xlm3s*@aN@X
z$~6&4{Xp`_?>5~-uB$*E=uoRH5dA--L5jM&l7C(EOMfNC>E`vi8>p){u({U<>M9Dl
z6{KvKJbylV;GV>4)mw*pl{luB+6^avMP4LPsgj33qwYW|bB^Zb<blw+X)Jy}1B4}Y
z@Z`x8baedw?f%KH`ya;WaP-Um;TS!6@??<1I+XzCgip!)1>u)mit921I!G}SOaa}1
z&F3tBOMg;)r~}339}()}B<cI6hcYi58$?BUx!B-1kagU)LWPZv{C{mD$NR^>?H{A}
zzwI9%AMEWHn=6N|1ZCm~xT!|UL$6f&bDn-SFWpn6oet6g<c?WH-nB+nS1HHor0nng
zTXc(=kc!l9xI+QGm3^!ic9gJCNB`B?JmYKRHh;(jmQ-b)qRSc4(ka5Jxtu;x0#~Fc
z;goT?adcUouuu&TJHpg3aWZ(7nUGh?n_Z}+brV~14b61&VBNT_qa4PH4R&j`Xth&(
z!wo5IGv)+=NsiacLvR=Hcm$%Zm$}Nsj_ipb=z4>$V$6GEaATu{sOQ)PR}?y$MZWAg
z$A5x+I6mwy<Ebv=FtaRUHxxMaqY0obwG^bzES+ac+vsR{Sv|A6wSvNkS*h&5#ff>X
z7qW}3O}8ghF=eUm7G*%UEEaUb&GhLyGu3`_dazsU(hB+eW^2=x!MpF@y*haPc68J`
z-amXl+Cv9#N3Zv#B-V#CdN5<kr#MMS*nj6FVS-Bi!!H4+6@6{oul$zcX~k>NS6rFn
zq{m6baM<ytYu<IX+^H&e3iYinp*Ug)=$7VVRTG>+QYh^=XTtzD6}zU-bFy`}rg+*d
z1kAtK+Jxhl6Zz?fjgBJ*=|q+d$yFtOQGsQ{6BUiz`58U7hXP&-4@ge|WcfM)G=GBX
z_bZa-f=F;W>!R-RuI}0zrtXGLA@Dzf#d1GYkV!=eYWntXCt>Hx401K1eEgJ9WSo@R
zp+Nb=zA#W$fdj7%5Ex0T)HV}LakG+jZRNQIeXKw`pA3!Oq|2N87*d8cGv4y7U0G+w
zf`vOs(P#80qp_0SIm22&GkofXbbm@9p+<8ZRkT^4YNhroh*4(?P$NLq68V+Irn9$O
zQD9b2{Zi{|roY$tTS>(x0ve@Ykp=f7|B4Jih32&uevT|C$h{S%UxiR{pfrj<r}`Qt
zpVlK+mU1q8t7TiE#Em4H2V<!m^GYt2UP@LSeK<Ts<Ne*^{gbgHxJ;JxkbeaigsbE_
zOFkXpbXFmqj<P6H8J9iT1m8}REQ(GQFt8oKrVRMoFza)u?vSqoYExy_mS};axIdEm
z8{?&%@-9o3ew6&mHM-jn4|@#~IJOOMA6E~!_LDm<vzY$n3830q%X&i8m{kg#cK6nH
z94MGNwUsfaHBeDc#}a-DvwzdprZDija!4?2)xbfl2$EK`ORpGC!@8CDD&<wKT<jl@
z55_0^?{+H`iiB`MMG7`?kur{_WH-XXR{>U&d=_M?l3w~k&_%L*BVGXGkyo!k)HNu#
zCH^y9moBz82gm!Py|?@Qd3Z-SmY@H>+}U|n^#9q~dcO5={(m3Ozkkph@H~7ZV3Owt
z`u$Glcl+sLYx9rCCK7JQ0+G9+4mMQ$%Mhm+MRY=f>mVXXr3M9mA#p8IGFSP0q6l5H
zj3ak?>C>8y%~aSs$AW|iD_2hCgWKu+>tE>P@Ta}wpE{khv$KH3f<>hBgK|#-^M4c}
zMb_YAYZLW)Qeys`|9=Tihd-+lJ<24M&L|A2a$b(Ep8^N8RRNp;7MMnGLQ7+G6yX%&
zaK4YpBY~bgIp8ctzu@@d$rCigJR~ZEk!}Mrs#m{r!Yp~2(8p_nXhctSx+EQlR2`*(
z8Fa$3IPCmBBb?Oo9*)J*fd)UIoW<ujzUa@=d9<N;b`YnWg?|cYM|pawW5jdDQjv0;
z2!9A9rlBlG82$dn9<wMahJ%53^0Hxb-$3I!vK_z6VU!aM2?E7z10^`PkXpaa8><LB
z;sngcf~G`tIz5zQL|gssXQ(Itd7&Ev4K-(!aA?<Y84NxG&^$%`>o@y39YMshus>yN
z8j*g$=7W61k$-qfV=}OfS?3t5r!Pjok3Nob0`aBj<2nAD#X#N$`u&0>BL6<6=`1^k
zZ+RaKWSNbgvfqbmZUE}_;OtqejQCQFz%%9zxjqPg?*8y;^l^MT+TGnBk5Aw1|KHPt
zy)Rw#zupFF#ixW&sVo+)L8`V04(=~q#qIwWJ$Z6MlYb{qh6u8X$`<P*L7^w$8L&gD
zbZ0QEKE$+cU}fghAS4md&KPGGTbpODd>U4<TUSuLO)@?uiok#U3+=jYL2_0)S<_Go
zB1cjud><nDI#1GOoTJ`sZFba<!f`0yP;QkPdx&q{`O#;zM?}CW+?Rk~P_)zQ_0VTz
z|JykuS$~B4I0#6Ro_$6iXG9&wGo)Q+)F-t6;c#Tm>ou#e27Lxetj;tjP~zk3GxQnl
zsz1S(ppT9ViN_`ird(A31qmgrcPzG`$Q;v10g6+(F@P5<LW*cWVnHOBL-i*Tsq%d}
z2dNN(0YnQ&ry@Vc=D18&E_3Gim(i|1J#-T8nSTsnEK>dx`aS@xi&E}>MrSF{B!c`n
zt^i-3(P1<uLB?r%y{mHXI(ZB&IGyly6a*}bVJl<1L&7&_k`lw1=#jPrtUbg0jLx>6
zOCUPiZa>6gcFr&l&nJ`qjEVFeNiP|{@MxbA<d#E6EEH&tuTdt{l!{qMP^@Ztv>G(z
zihl%I%J?!Arpyh%`$?adA@NJDj7oQi>EO?3tS`I>bg8l6LgzWz;f$1b28$0?PAN&T
zb=A>Qq5v^vl3s|{9WyCz)29fl3UEu3(*+50b;StK+*wlHG3h(gg2q!$gm6Y~xn){j
z<zvB3=6IDbsrD@>MjDpOJ_Ft~@V&Wo=6|;GK-beD`Q=<Fq4XP_8a`2&I`hg_D>?NU
zoqckTuD|p&O>X1m9uXvyp6;e4dD46YWrpZXsvK8mPtn=y-Tku)M#?cL-@p3*_THh#
zq(ALHg_WmIuJAljD$LmiG*S|%wdMuoX@(;tYgYixcyxr*nS}e{_z)#Homr8wXMcOe
zV3Rt+*@gt;HrxRx>z`aFh3<wBFcNZloe<j#h7~rD{bzJ`AR8ig39x2p2!VsZ@w1RP
za(%tn*VuE3IQ#U)0g^_->@xJKp<H6+zUAa_3{zK9Sz>)@^hrocH+feahZ2zbqy|)(
z_j*<S1qT--4*PoM)=&l_Q!nG^s(*(17d)^r(zUC{xMj}cd8X5DkSn<Y(M9f83@cO}
zai)_jbsPOEe$+InN($v9JNLoQuPYn+*d`;@H$-*Sp5{QYyuP-wQ6-ORNK6>_r6pX7
zy%DiZJO;>TF?f5QJw^A`Hige?9lW}$_DNpeW$Q{qa<vI##m*hgnBsJ9HGg4jn@oyn
zPo#{F4iMY`R$XRWAe&{@s6vwg>7z$2Fka9&G@}FLbO8t4`nbVVwGh_P)zyOJo{6k7
z3DduUF1>p)-h=YBByj<z=3E)ijnHO3z#_H1`I=V44{(YjHnn)h8Zg$N0kSS+r?LcD
zM{6aPKiRohjzX5WIsAxCr++kVXoW6xb1bm0ZA4>A-5ig54B+ZJAsRbhz_Hfc(15#?
z68q6_yP{%5885nmC{wpwj327HDWda2<0vvaQrLM^!5sNIQyH+UE3F2-$_pds#dUsP
z)Hzp{?Prq-<XC!a0c@141t7Jm&paiHBX#-7=vew@j<Vnhqz*H+t$zeiCY&zhZaJr<
zk3I-xyy=mEpUGWGTzh(KBtgGOnsdZt?!j4o(a>lw$T^2_ppYBQunC}CQkwv}OL_~C
z+Qrp{`itD$$ZY_dRAMMV)tg$q!kyA&@j^n|S5}X+gCqG{WC;-Fm^I8As4cHcE}1(k
zyN3E2>Qr1f&THKam4CT&EOA+&nlU`zxU7g@v8xqwoIyKBSxD6tC&tm`jLp?Xb`PnT
zMPPy|(+9WBQWA&C7653gjkJK{<Jg4UxFFXOc)lP?wDNm?!F$7*_Vsqy3b=Y^R@Oei
z^J5kPw@1hC%zj-0I2gUvMlm6>xmv>|H&Z5;O*o0b@ii1xaepTuMs_8V-H4Jn9eew;
zlbID6aMQ?2j1p6x*0cx5p--q`S(yga^P_}n2EAi(FV`>xd9i~?95C5yuXm4(Q3e^S
zj6_-o^oTRL&s7}?7CSvO^#|Fj`o7c*o2apR1=5jJs!&$&@$Zb26B6TCBOCn<*R<eG
z#n^$b4WmbvQGcD|g0!?GiG;hfUcL?#>K+{}8F$6{je|lHx%U*g)nEu{mh3sLuEA)c
zu~>!Pyg=|qEduH$Cl=PEXSXH!@t3g~*Wejv=hl*cum|J9c_Ud$V|Co>bzuY5Z>M}e
z4iiS>)T7-w(Ixu3rCIk$ih~PeZerEp8SS~?Rm~BE27g9-_DW&IrZmp+)Pge9spi)J
zv&#O#9$Zre^FA8wso+?m0{WZ=oC!8b_v4h~1CQdj<{N^K5@;i}MR-2h6%bb^S&wy=
zh5PZsWe2=N`|*Nu7DM+{&b5U|W`q;BrHe7V^1EBLwYL5TA+-oK%S`=DziU(f2n%t^
zc<9zo^nbfH^;eqhMFO9eQOcQL;zJp`t37G~T@?7fhN=wk&?4mtn`BXxFL0voUdlID
zyw57}fj#%EfhcSAl^XCF9J2OQysetTKPNbyou=#nfk1x0RDIC?=>2OvkIv5EPO?_{
z%bIuIpg#JjcS1~ie95f^oz%4C>`W>)!jt6z4hT=JH@ttf2)uL5{=4SdQ=xw`l6C0>
z0y8KF6qND|u84ESQtz{lx|X_2uol2(AQ_{+9n9whuKPu7D$s%odQKxBfZdzoOL0u5
zl*M-W9(^329`C<Cc>k_?e_8=#&O&02JvobzKEi}84hIX>W4)0(Q~RtlcPG>{hf;du
zB{r&XC|ESREQ*K<(n&aFxzaHwDW`$Phyq(o>S~mQ=rM&Y6^la!e(T50%`*6-Ow5)7
zPBJm81NrQid>H}30oIp38Uc_3*5;Sc8UeU}KaN>Up32D~NSr>^8aLxQc*`kPrUO`u
z{Z}PI0==D9$`jR_k11Wqade&cg6SpKlvdfYpkNHpK=qQeCcusR2GBWebENcI8y!X_
z?nao-4H1F-;dY!8w8vPKMRr~b><EGlD9bN|9f0QKam4_p4S{8$`hIZUCq+?RBR~j$
z+7?(TY>pq~Ja?wKf+ZQFw-j<rLOdcZOqZg`+ct_KD}GIcEclo=jtb=x3C2ZE77)LR
z#gm8zX+0jHqUG*se@)o3<10GP=6d$(fYYIg^CtD)S%oB-a3W@4*VP(=W9SA*$Et|7
z{TfqxNx0e28zp<WD1_$rrKDU-ow;s*PPAc^CL|t9nCQJE)=?5_Q2Tyo#T}WEhuHX=
z$pOa+<S&R*&;}JAHSbESw`htJ9t0Y2Ct#ctkuc>&X@Z~?@V0{6YQC=nsqG29m`H?j
zL9xe#I_zLPZCa{xnD(y%Odp)>-bZ4I4(P;mi3JHVPIgBCld0s9Y%&22b3wR&QZRK;
z!$8esbDo%wrTXEM3F5mXDokVGJyqkEtBGnHD|bhpYFpVAMf3Jq!>~O=nNZ#yaNPo7
zS!J-me897KpluZXg@=I#p?iA};C{f<v$G|Q4X{+(#VAYJ{#D9VDDz@-p|1QRq(X%S
zl+$wesL*a9r!br2lm>D`rGdGB^WD1fJ6@tdP!!^%M)fM%Ob3U1qodm>V1SDgkz$@6
zscrrVlXc}hLHdJ{76lAuJ{`%;e<sKzi_}>y#6zsmSk%UJqne2IO*#N)j(UG(LY)iP
z><1vL&B4~5;-H>qdItuFS!WW$&`AF>0yFjAvGMp&S>S!&6$2X%l&Ok;s;_)jPY%b`
zJTNfF7c}`zPTp$`d&QYuLSKmu`u5~-tUae=<6R)f;!`Ax3<m=@)U?Lp%2QC4R8j%C
zY=KEZ(}cCFB`msq4+GGmPzVP{znac-8i#xD%$V3y8^nx?83|!Adu-I5jeM{ehU6lr
z$d6KoN;F3wts|b<=T^#puQNl_t#Fl>wb)ymYnHgXB~3DOOfU~%zfN+-%U>1T2OBd;
z34cOK2udSuz@pN2cn)>y6?nQNNpx*IKxA?2PiK#f8o+1HNyjKnIX%x(;trH~g1J>?
zNt|-+34ddZG?aJ%pXLU(cxj9<V0t6~*R|?j?Os2}iH(XYsX5qxGgo9}HKp1#AcrmI
z8t?<0m9a}kuK~HT?yZPB0slfyLUXpY20|>%)BJF(4Oy_ix&16sPNhwA$whYC$t0&l
z^>(g=%4PA1Lv+sO(r!Y5ekAl&j=06Vaxuz2c#G3urmbs-+P0>;B*BzB0f)_^1-Vpo
zcLNg?5&f00!4Ersp4@R{=BhuE=9x$}X1jGe1K<kC<xHLFnNC=N?H*YU$O^g)x0?vd
z8`qvLg;}orvKLw!S9SWKR;EsS<xBXt-9RH&28!R!Cs-fJRhnPH^|t~c3&bGB;zA5;
zob_J9!k)cZJTRbo8q{FJ+JKCnYYVHJD_x$&BO!%N7Y)&W*5>BsQ`DUZur_zqi!V#s
z(YMw0c`u0j8hkv95f-1(nS|O1)H<{%KbAFso#ZfIjTKZFPV6!k)xfQ9wF8}!x%D;H
zN4D-hr+h>6lG9Wx{0L_uO_8z%!9gxa%#dX%dMwNd6U)*hQzlPy@6JccvJfsq!BLVG
zJob8(P{Fr<6)wO6f?l24=^IQc`{!qHP=$hnYBcy#jGrxUpCC$gt83rr;~0&fIjy0w
zB;hrQ38#Syl=2JY-5S%71ejM@np7RFlnYhP3xJ@vEsi6fMt~Fsq);Fl>x2;CVQCzX
z^P3Y5q?NK=^+68hp4D=f%_fdJwX$008)fJX<xp&Y+L1So3S{DmgNvr7)4gTZK%na1
z*3{{B)iOj?cW4A9-q30KK{<l9Bj}Qx&lvmv+4~bX$+D_I9Igfdi65ckGB7xZ*Jz+K
zG4j>hm+Go^q9P-!f{t8>$gHAzq3UJCjmX#e;=SO#7nv2^wDvd)Fn|jPIx3qE4Kuj#
ziH?GQ8|e6{fQZ5%%b>{U2rjsx0<!#n_uPBmyDyf^tnTXWswRqYI`YPiyPSLWd(OGL
zEnZKU#Ttt#LgHNgVZywH^mp7qqe<2D+5%Ip-<EAck?dL|&Etrr+gYdhju-k~-%H{<
zrQ6$s;T<pR<9-;8?#zXn@xEYR)9zGau-le@jWF9RpDIniVb`V`Y*+cL#IgIDSO|M&
zo>sbk5q7P>9mG3fa)rCeCXNo>7b6Sy)Ez%t(hG`4;Qk<t+-SsO^9gETn&m8^)^LEM
z7_+BY@^1`tAi-lHQ#fOFCnTbDe}aL~WA_tpiN_$aDlWvV2?OTC?Vz?ha3Sc$qa2xk
zv6I|<gUIW<Q7$ZCV%iud!$BJF=n|DKKRp{H7t1hh5^j-gu>Nf^WQRvePyHoJMM^{D
z^S{qD30l*c4kX0c?<#V><{lYkfjfs5fy_6u(0Uppl@^JCWR!L!dEv}a#dM3q$IWsc
zh(KZGJfPxCeuA-L2ExFTbq9oLpu|Cc?r|Flop+;vaET@A(qxWFxQYS&Ow24GN8XOy
z0jBJp2t(gTyLK!xW#O!a6}vu;5?(<@z~$xIMzdC}Y}S@fh}&S-E5h0@i6dMRuWk>U
zZF&m-?76|c%e>eOhGTj7kae72&-8V$*e&}0<OADwZird)2vx#^u!EQAd%X{T6w<jN
zu6W9a2;8&gJHq+~!+3`aoCgFDVSp=~?x6?95!Oa&wp!`zd2twB(bikJpUxUT_kPP5
zL#lVVf0r6}!r)9H0bUb?iBKt{j3V3_wo``$XX7`;s5=bWbZjr7e3D78$psx~VvPZP
z+;&8lgx)NDU~=h9r7;ad(~rJ?gtahehG8<ciW)ZprY<D?&4CNKGEk&O+|gjcx?eqD
zbgy6q-3LE?gcBU_J3L`RD3h5D2PN^+zGTRfCU;8Hca%hKf_oz=3ZV?u7CikW_1(*@
zVbnW_(80Z*CiYL=4f9^L-9W4%<8Ft0n59d{V5zx%U<@Iv&%?um0{#$x8QFm%%g?;h
zEo=p8DZQ(?kzqD0U#sx$8&Nmftcc7}R?UMqXRNNe10`S6w^p+EQ27Wmu!&6H6d^Kw
z9TRm*50@|XF1u12!#j~1rX`~`vJ`Y?eOGx5&rDjMtewg-tY_mqn;TGna!SaLCq@?J
zy<cIm)^X|{Pr6QT6DPEP)s1siiEsn<xS1ETOWQOn0mnRpUmTUi3Xubxer8jjTRGss
zge9d34J;c>cs-A!SQd>+x=_E+<SQ;y7dHNY%NXcH9+lzo(HAoDsL#|z2nolt@g=pt
zhmlX+Wo{z6IVd_Yf~W3X>ggDN>})zd@mF{bUIcrLC-#TEt2%vuUT4eD=IZEflT;^|
zGK{7(m&M8KqzRVZBArZKb@cC}_%wLk=JDbq1fI8xuD{t1j{{xl?JxkB((#;Wd7Rot
zOX+4Z_j-JM5xo%Yxp24I!2{;^3<F*{k#;N4$a|5eKJemXFqEjk(y^zO>yoaxUKg+$
zI^y7g6zV#j{(N?S>8vK~;DEwebO1l~QO^3U&mUeBe|F?*TY0#Rfs>5F!&YjY9^S-J
z-wRyo-QpH(c8J?}$KCTn8eq$RhvN1QCQL1IyIl|5VNDj!otr1g#-4N;k|hfrcoap7
z1-R40P)@S%ft}215H>MX2aP8O%yb;ycPZX$Q}u?+Fs{3QFoz$MVR<3aCa2lliLl!_
zaF&F2K?593%y`Izb~Yh*M{{pzyn&-i8pyT*?qGlq{D8#{wTBVB5!-hIuZ!b^>IE?$
zqRb-9!XWc@FW}1(++2ebsEn3VwpB*0#7%H_=(liEM&~Huth((TFTe!%jcm2;*b^7Z
z68A1;Iebfh`$WP`TWhsdM|sC@7JZcRGq`*bPMspv1D!GmgC#O;eDn!<*BUr4uIMmW
zQ5@>_5K>Mdx9-3xu4GRK&63+mZ}OhvO6Qt>t#rVg;0djU0}o&6RPZKGD~Yh%7w)>K
z*Oj^N7d#0|s2vVQ5L&UwURI{pd%~AVxOmVSIYl&o=`SAyy|KBkHo0k2$?btGm*76b
z7f6(dy)dAKy%_dGXbIg0L=Qw^e~d=Q*drb7fvknCgP)ghKrkz$lCk7IcHRe1`~YZX
z*4$$gXDGw3GCGjMnC5Zj<UvQsZ)74&C@%q8N8<HyI83B%e~94;PfAFWW3i5qncMe*
zVS;0Ss@I(6zvQrS+bMGE#<VFIq#n>598SU{G&Oi)mSrf#{eUK6RlE<~$k{O5og#*h
z462O?!`-SI@bldW<AgS4bF1R^+B>+t+r)!#BkVM>+ZkQK^x2)FaG98D1ADITfyaj(
zqfpHY5-BmO?~z+hoVZDR)tACj%*7>;iM%*}@!FFh!QGf))YV-G#Bl7m5e8?|Y&soB
z4?55TSc~iX!t>`dR>hoN=P;2*OmiEPDB@!73b)U@-jrMMnX71r#Bc#~k7|xQ1Und^
z_KxRwh@x0VZWjU;QnPvB0z11a+)gvG+HTOsKIYYznQMhsdnh9}wIstXQe?Cf4x>1K
zUqw#{6WfoeO(D^WQO(fDVr~}y%<G)e<SZIfnYl8yX-O%7b&%F}lE4eu_X5c7N*AdZ
z94@@bKI*d!u(XfZm}Y|U%AquA!cByUR>BB%!uBw&evI60atJ%&K9Hb?_hB;J@six&
z6X|ASdq6S9DEDB<*t-(-$|`?3WGlvh(V3yw!N<MMMe^hL;xNYWe#nht%SE!BCGzJ|
z-@Uw)2Hz8CQ3&v05SLpXt{?IQGZ)2P(DSj7!F}mc|I(!eD15;Yj+lg(b}n5)&<rTB
zh<NgAd;*zrpY&08((CsO6L2@C!s;BsqUjQl9CvM{#d+Eu;2Vz%*i~d`xKy}*wAVlH
zMp#PRcz2T$#;P~PF62Z*7JF`${A7&wOv0FO(2hpn*x`W&w_?cUul9G-`fQWytghb5
zOSO^l`6w);iw7s%nyVMqbE9pyhZ(~RBdO!!{zL%}*6RqRJ5+^A(}{6+F&?bCm#In>
zrz3OxbhCUB(o+c3n;408ou0>k$WnV)-&{Dr?r<9uh4kENoSG@pFz7}Y-;LR!U83b#
zy+AmxjAjU4<^rnDt;RHn6)qOKQFu2FSlFsiZnuwy0|{-0Xg3J=Q6IFAZH5JXH$k`e
zLPFG;lWVZslX{`l!F$Ka0&d)Jqd4VOi`=uArn<ZkT{8Mm`~e;V?NkPTgE6JTO`~DO
z_mNm4FaKGVv70%wo<+I22erA{VGw(rtk}>BU4G{9a?yzhcTZfpP+4stH;UZR$z4Uh
zm<@3Y_-t-3k)v3m!9k@mqJOebn)GkDW{3LmY13f1?R)L?&nOIcm)dx+Q@Zm~;ZiC!
zSD`4(0WpZ~l)%Hobqc6|F0&DKcw8cYgchIyNN(gxU@}+gj78C(HM}k+=Q~NwjJQM*
z$!B7G+Y370p4S<=zOYybYmRU~+~cR2UzFOPy(F?dRyCv^Bski0{mFH8!MF<A^xBI2
zgrGQI8iZu#XVm0)_LL7<XdF=Pl*8opg81=s7bIjDHp4Kf2dRdCEikGT@^uXQ3mJr8
zg+h^$Oe0T17QsxbL_vgqh6qem*<dfCq!&<AY%ZqM+@8Lk0&hPY%>^E}cW`IudqHmr
z?|HC=<AboX#K&41L>Tu$v>d;YH^TUfSrr>7=&Q)WH4lX_9_-*gj$D7d&hKD+R}&Wp
z{2n0kI@ioL;jSisEypa}X>qhj_q%bfN*2F^-A<N(3sl-BdRPx5FCbVEX9Ekcntq3R
zQ;gU>B}d~j!ctE{8|SL@%JURjfVv%#yAKVE=-FsNLEnL<FAT)5EGY!p+{6VdLmIe|
z>-*T>8bJ7Q9@~i0*e6&`ris%Fa_CAc0P&ym3?%A_<ss*P_SC7C!~NjMlXY0<vFQX!
zbohj){jj}z@CLU@m#elznDDS|=BK>!ebVsDWiKZGjheU}?%`-8y<q6IcUQv>o+j7`
z(LR@SK>T-z|4>wfy51l@_*M&&C{nRb*cwaXS*dTdXnnA-n`y4%;3==KHkXe+%P_|1
zQZ5Yn5=-}gaf6}n3b%voO&l`6D5YnvAQduACM=}Bd%3!?b%_?_K-G;cE@8diPQvP%
zLxRD?ins}Jgc(*raPdi~7<-WOFpin)JN2!D@!@FISkW%t9;N)3rzbE8naSiUT?P1p
z#ih`40#|)K1$Yb(-W*N50kf?mue}??n|KkXPmAt<yCX<3VYW1V)DEs<T{Lq0J}utm
z1#yDi4y}m=ulzxk%S%#W#fu0_Zij=>@d2SFJ_Kkvto9eXN$rm=vPbjC$cyx0Kk~7_
zib0$xAe67LeF9B;29b6fE1J!_PCi~pp9W;kg@Dj0oqF4icM1sMU@snS#|b()wnB7E
z)^IU@9455!S<f1K@lla;uReCC{3v~^GR8?}u~Xxoy1oHWWh7J&y#z0x@uMf)i9<cN
z`h(Vjgj%Gm(BP^5=py?l`CgkY3?5^QG2E4L1QQBc^T3FOR%MZ>bx<+g^<(<Nm(YNo
z(^_AnM;>6@Ni8Q<rIn!st=(Fn4+7@)61x|Fck$@dGZt8R*QI?K#qQEB9!Yn_VX%0}
zc8~JPrdUP%)HCRW6bN<dxM!8W$BUh8V?PXNf|rX1tStDHn&3IRm%kV4#mEoaG-MV~
zkftfaAUDNOT|9qlz>Q_sk3(MHsw2kXiSIjH3m}}@B`vFd>LlCjlGnKfp#4Zc&HS)`
z{M%Jz7Hk8se@Nyy`2BDCIsg8*D$B<F{qKk4A31+`Q#HAqJXCWWeEz1Xm=o{6Yo<Cs
z|A*t>t(DehZ4K4dmeE$L)<lhZwYJu(p~{(Nt+rZQ+bkA}^wscM(4pDn{I%Rlk67l!
z7zQnkzh~>F&D%KH$2ed&Q)N^S+EN*Rxy8aV_T7Cq!l)WXgOC{>3nkjGv{(j3a1;*F
zLWxa=c`J?+ciZ>k9q!e|Q9mvghCwHFukoMcUS(~C-2|p2gDmH+T^8J!sH{-wkciOz
z#d5LW1#N%W;U)6IVM3i!^cOHG&3_C78W|U(2>UKCh{G!;LpfF$Ey3W&9?}PYb_O^~
zMkpfILtI83FNPY3IEvA6_UarN@whN2JomisMr6PdjM%~bz)MEVVMensM`hF_S{Ou6
z`0jq@O>+fLKNOeug;dUBf!_w~VSmJ2kF-7s*$vUey?_^;ET!izl?ZY$jH#hY_13lZ
z^Nrf_nOY0gH__Qj3!SYjqs_B_HMG95vEJO=TB~nfK%48RSvyy+oriByL@T3>W_`U`
zENreLq8M*%R@SODw7!Bi&(>R6KZ)aL?WWd&9Z|hiEY!}`muqX)+A=zQLHyzJ`uVlS
zdS$u3cBYJ~>l+u~Lw&8aS!p!tYiAHzZ=$Uh`9xMp$)s3lt*>mJuQY3a5~{DD3+r2`
z(j*(-B>mRc(COOQN@ImArGl#Ks~eTI3uWlmtZg)FEwZT1vz1N$%VMFjwRv{ES--8e
zOu%xwzDB{tew)s+ypGn^H|f?$$4aAtHfzn*7T<NTAi$CJ=3AuuOE*`hJFCG&d_QGW
zSzAUMwdQJNt+uw=xKJ#AEY}*f&3rG3oVOyO<=RSpt-e`bUu)481(hnaeE!|I18%Y~
zh)bxC-5^Hrgfzh<+};Viw(BF@ANb)2<CKP=j9mzCnimTx{qmy5@sLKFf?mrX5y;pK
zTrs9U0*jPVFTD4Tiv>1G*JCySp_&L2-Jai6@!BqKf_&`83BmP$K@=vGBq-*GF_`(q
zLN|<(9qL8#;*1M2;HWuJG;vG_KjN@(39-{^Dq(~|aE3sKGRim(lzAXD*&hsnqYQjE
zf%*x&jBH%y&lTLw9!#Q_|4GOO<Q#}sZ7UX12AJ$b;jqV){~b37u%EVtX{ovdM-h#-
zNUenw#9mx142DsEd&eb4BHOoyN>u^Is2<QOF)s|#%|mux!0vvKm-V15Fr>xGiv@PZ
zWfVrPPZqW3#e{PL47NuIdtlTIT*5_}w-4+b2_bP2#e%R35C;q~%4mC-*3P4$TZGe<
z)4Bj<G>AON8WdJp=4S%==wUB%`*9hi&MY!4SSD0ZT_#L_-iyI)l0$ehN)QkI#0?1d
z-wne3rJZn}$~PYK!AONHH1+}<$7R&@0yk(A*h0PZDC`W|NwLtud)N;LR1jy2mC!*4
z(g`u$JOc=FgAoxb8MJ^V=u??(>_PPs3h%ZXpbqZSx8V~^&cjRMlrAIO4x>(t7L>(e
zVc(6Zl<N+EeSZX71tj&7RIG;EzSk4$4d%!c9RBndak0R#WEf$PNmS_bCqL<T={j#l
z3+f^{VtA&b9g=gQh{qRFEO4|BLbM-+L9aXXk=ss-IF9Z7X0)I!Le=DLqSXldq8)Lk
zSUB3Qm^&re@u1#4fvP~xP+Mx3u)X$9vEZU?*Ef@Y%`E7PwCV><cfdj7j}SwG>;=^E
zQ)3G&7ShL3S>eSDL8jAV3TQ^>Ix6MVr<AyZ5v@A!0bY<ndPA>6NGbQwBf;HajH6<K
ze@(+<*-PtTf(3q@x)pLPE)x)}(p1LX*dh&tN_A1^+Tc1@6Lc=V=z*JHAi@rgy<U+0
z-3|wTBc`4e3rXa5aNmt~<1(5>QX(Bgf9_`}qdsskuIvE=Ai$!OevoDewA2d#DTw|R
zj1V|_q7lJ^yM~b$cc=&>qzlKsA4YzM0l`G2wXlOT(ZgJNgPl<fVi*`J%|6LwO`it%
zrgKBU+xCbMi>O7D@rHr-f*~fj=e4nf$Yfc63`Mw4WPTWdK&2;`o*UeI7YpoB!}Mu<
z(y5&O33)sbqD0;f`+ZvI6>bc2BA;#7LZuqj#j_o=719IidMr2qyX_s2!(Px%I3s0>
zLyY=vhv*DxW@(0c)H|EypE4QS5oLEg>_cddKum<@dTvCGBSIx{9JW3B=9`#;UPfJi
z>?T79)TWw2rlGLQ%{EFxdJ=4_Z0|NI!Q%-nDvS6raX`fU*gDwv_ApcH)8oi^DcN1I
z;KicK#r%LYDm&)Ue<7KUi9T-axMQl2gGw7zO%RMl0Ug;J2ynPKqLPhwD<dzBaM|{8
zxmd_slW81YUh&J9>;^N9U*pnM0#<c@i4mHDl!20S{V`Ue$fz_9PdG(ZoF|1X$D<lI
z2swI)u;!L(UUe+PNMMEvY+Tsr)N?BqGTtmurXPoy{!3O$vyS6Kn5k4OtT0Hqd!g5X
zn3%AOI^l3TDf4@NFGyjP&KU2I)w9qesz_`S$+olsk|$?*Ps36UXa$v~{f+~Fy^SMy
z1TO_R+e519vKv@0>J$q^=y^;NWBZP$ijH)eGQZNxv_x1fku6h~tD+Li=T0#?!jwwJ
zQHkOvTQ8CAG0ON0p=kOr0#q|hh&JM8`F8CvPH3DZoh?0EN+CgqCP!qX!XykIpJ<Rh
z)b%bC;nv<Ezw5j3b}XDQ6TD@A)b|2lI_%FdLIK`KefO>~A`A?gV<|-@vMa7Qhk>7}
z;pvuB>=zh6lYX4?vRC#y7-r)n6n4AtN>!X=i38>biSlf-SU4EkBh;qlrUbtXXFdK1
zcG_hENdS8{l`D#dN?UPy%0w4s_Yy9#4&4NE7Rk$q=Za#{#bp{w8Tp}q+bOenY623t
z94s>%VGJk3hzP2I?@mY*VnC$1Fho_%O$%!;7Sz;Pg3dH6Ynx!@H*2lUX1$u4@2aGr
zT9Dvq5D{~Q9hQVpD-!~#8!i^32vZ_T9b#bHa0Uol7x^4o$OI+T7gKoWq#fCzFyk=B
z6BHF=xL@XmI7X9_1_&g73~;dkISX+)bx5XMfRGPGl*KZ~81UKUnS~2xEA!0l5n)9B
zP9ismyEp=(TfmpwctGqap=LUdejebcPpqR3k^NqezQW0%Q!HfQp|YXHeyr$3_$*Y?
zpDdPP9WhujIEX2Er{*h;`o#jra1l+Z#yy5vUci%hiRDU7YeL9>#Gv&tJctmDpF$Z8
z10M>kvV2&kn6`<@mth3ofQ}Y6F+AVgDHeqM-9?F_or+qC8zq@bSwaY0%`qE*N)})*
zLW$v=)aTs4Sm0yL66e4}bB<YN-FQ&rk-iSeW0=Ekv0yNbmcWmG%VIghE>cv~4})YU
z&c*#qqA9m)sA7eG``d8ioJFg((-rY&a~X?ej%1hcMS>H2zy->u$=LvJUQDN8h1T}n
z5v{7g^dm^+A!;^T8lP`_lx;#n^)6K_1^Gx_>|t6?g{&r+!YFv)MLBmc#1!^@wByp(
zOELKwzg(XrRf;#fx*^D6_<7808<N%KoNaKLf=4P}Zj`-$Z|}C-L(nj3(Q)br><`9$
z9l$8ka?-$@c)v1}u8`c2Ru2)Du>~X>5E<@8?O~rDBFkNI#}OPdVZd`TWQIO=1y@VX
z!<P35q;A8p>kK%RQO=b>rP&BY*o_G%-QRJOIK+F*gjXdE)%IL}NbT_lPI^0TobsDa
zepP8?vj=v6GR~%>Bs7&6sXj}o5wMm{9|kOTUz1VC9mQo@&pefVobE&~Lz(E=z^TB>
z-Y4jaFB1*Pquvt2QhDSrL%W5N02P`vQCegN%+N1ouHs&aF$fFY7OMY?J03=Zkm^nc
z;z}^(RE~%*V6r_F_<~r#$%A1F6O83SvxQ<I<qP9~^f<ZV)YD0pKC$p(Vam!8V(=wA
zl(EeT+{n#RVs6ejv+u-hP-04jW_i+hr9F7AsqeE*k2$tfNlzEq6ci>2p&C^`_#+FK
zAxJsXJEmHl;#CW;oJWKU{E;a?P`h&+X_D{+LJQs^c*@GCA9lR%s7zF7caVS!EQo!e
z%t)YrK~~JBgW*MDZx0++yYYnBq=sm*kn=R&j21kP$h$pq_6P?(FTgk|qYftA8e-Er
zUhKv(?h}<voVi$VlLWKp4?A8Ak+f70XYTv)Wx#|mBRqph4Wk(QKG`Q|W%=E4g^;`N
z=&On2hEW)yiEZsI5|zFm?t%Rbe!$4Xi5rc7$e}=?;xOXXR#J`QpdrbKsk^)55tsn(
z<x*Zmk1sF**B`}REU4+_%yFDuBNIhBXzzeWbTN1DomaT>*addOh^fSchy|0?clTrF
z2ks4hcH!*>XwnD(w@dDcJ3b%1=gYx?5sg8JWe^7G``m=%Z84d5U}!)tx)FH%s92bP
zyy=8rQq4bwZT8}zpe>9O{5A$tj;_tmQVysi81~FO7)e%Y{ors03I<S!a^s!=YGpza
zP8O;v!6z2|O+LbO%t7prz?@6Hu@e*1iw0te#$%5~(g@rMVp=Q~CcojicyNoySAuY`
z=S3kkm9o?h+HHa{xIu>#YZ@Rzjm!>z^>(;kK)ti=9q?>J96fl}+{7&w1OSu9v}hz4
z^&MKfC`JJ$c;~X$O!!gW6lV_r5<@2orFVnQ@erz6Gd#-nk*OV&nmt;2jr^A(t%<e*
zu<M`-M~u!uTnB&yUI89Q-c%8r#_B;qC<%Vn^d2)#y=*SKcOhbm;7<p~?a14Ira)g_
zsWgiP)lel>wU#Vd(HGps1!WQBt=nd*_cmNigaK4z^1JNOPjAojJvTsZ4+rfLH50a^
zmQ*YVdtzh6bm0fBl!J9jpJE~Nbm!=J%$=RZ?~M5;+&G78#e#05s<a|CC8Vg5s;Fq8
z%GbjoPwTtD*9tLsd62`ho4AXAoL*OO2S=`7EL6xoV``x`1!lKUTB$TkbSy8438oTc
z3#0fz5QFmzTqyutk(8D(k<{GPu#CH)HY}8u*OyC+*(nH!RV-YUQ%L(13r9GGNhi_R
zA)xdOiUn1*BukZ54%X%MWwcUh!h`ER`}HIMsV_{EP-_dqkmz3uO8+f?XF<#0u$YVp
zqikW)ANI-n{%g)7MsI+}knA9rSUDfA77w@kUV>gQ#1VI26A8g`BcTcfdlZ&@p444q
zf*^Dd_S!k+Ogx_jvL<M~h+=^~LJJQ+xIRkL_4*@ek93jRVSiELui5i(iS!zQtbp6M
zWTAqJoNAWwG?|Cs;?Jjlh6?ClYzD?hm)N`Inf{!jLweB}VIS|g1h*shtTGe_7;qbc
zHZOegz8_nMPb*>6|KxqIS)A?zBqJ6JJXnV+8FAjnNZB=<cLq1#BMi-@^_;>kvr*Ed
z?janXo21nk_V@QC8nO-#iPCYFc+knxfL3=OhZtPxY-2&4PeMe0h>IqoG3|pn`+Pt3
z(KFAGC~Z1pm`(*`hd+Jq`y(XYebU!gqX`9FxNjoLIG{FH>{zj2ioDF&is9g3g&33*
zwsl@v#k)MyoyOf;umU&X^GS$Ov6@lwxC4+KlY}O0!W~z*otxq}%wKkwArv*UTgP5l
zrhvUwkyE^=hW-A35Mncng_Nk;yfLG#<MchN<1C3`SCN-EN;v8wjZtF5x1mZS>J44+
zl@M%oQ?-MV3ljt}Y`H~q@m#dy^>%QSb>XD8P19d+r<?~1-8w6eOCv;}PyjX6X+YFb
ztaWm%*^R49(ADcg<VkYig)8}=E<tc3Tvm_|^|i`oeSM98ex(57QU?;KDpOc0^Tp3*
zP#J$JGa3Uq23MYxztp;27W}si^^*zvCmpA_z>5X!M!rX%c^&tKPu`xV-f>B#!ljHN
z47ItufIg55A%+w*!)>C34Me}gIAekv+su^8*xf?Bh!#LwE)kHG7A5uoDZLsc;zsZj
zZ%&0J+Qy@QkoF+*VsbUxBVHMZ9CLP`lV1h_pJ2-k+!56`2+n4|$?&C%iR74l#Hpbq
z9B;8O=|79P>FEV+uQPUGmBSB?lSK5#2|ZR?4+WZ4NnK1OMf&4Or%?8Dl>4=|Sf-X9
z53;7ntRmrBL_(-01~$S?bia=~9^6!B7&mcm#21!-UWJR-8`K_PZwH6M_zTJ+kBkHE
z9Qu1~uo4fL8wLb^X(SGp34M$cP_nWxw^*<{gr$`s3XkTAyJ&zD3S}=q+itKM4F?Gk
zpbOd}nhZMWdUWP4F=>$(?1la?0G~)Y4mpHuASQm9o)Y1>?FAk7_&+?imfqjcAl}hZ
zmk{`Wf^IA_&+>x4h`O#v-{FD^vM%bogz>pP+KwP_i1FF9ncln6H*rPAmc!RnFZTfQ
znoMV;0<Mj{0VwG#hO$_oP9LWCj8e;$t^jU@7mUSp3I2$EgX4))A$uJUKg@^p>5|5{
z9V{n@kXwTg>K%H#qE=KaOw_`iAk55}Tn49q1K20<v_OoY%1sic{>^FDYMM|iVt;4I
zd?D_LpdoVxx>=}mr&wTqH;(-iA=-3canv@^Ex>=k+y^<I6*va^gM_-!+F_7*!I1iA
zr`<_U`j4nf3trex!eSwf=t=dlS>c3Z&aXij^QvDI(UK_i+3D%1HH`MWJ=bS00a{Fd
zh-&}sSvT<jiA?TbKmbA({I}GNES&t5BFHhOrB_`a&?X)`{Sy?q7N%p@Vi}ReFYwhb
zmXU!LAOZ;GBY+l>Q7kM}^H{uCMh;q7-w$vU?|6g7GE!toWdn?b5YaC+v~Zp!&=d>H
zY0eG#Qb7xie5y@@XVj3dRWdO3u=8SnOB{dKQ(7Y($!4KQCvytuXn_G}k!d%Egf`FC
zo6BgU(%ifND$e>wZ4I^7x0=-~(*jjlwA0i`sxX=!nuHcIbuqgHr3IsggRGqJB73uy
zdZoBQC)lp(fZTDFappZY^1@-92C7dna=ktjOD`5!EHWifn%+Sf*+ILS2oD2)tfqX2
z9nG}JkSiGy?pMXElAy!#ro;ehF07{yJr>QD-h{@f`pK^8yf{_)jG5?}#(ZQrTr3=d
z#3+Zu=?D|JOqAUWnaR4d2$Kvyr#WJX-AUmh0KHf^1nT6#a@SCTcA5_*q63kmn1vH#
zP!^08@D5NpEnF-l8K#UOC9e;E*5QxM9eL91Xc-Ng5~{ARt<;xmYn$~-qrQ0ot>scu
zfVooV{b)9e=aFHePR3BjjS26Ka2)$1!R!ar%pDPRFQ<KTQ3GC(zH>VxM}i5A@mv9F
z5kcw{cxT)`MjcG%gk%PGjm&)JQwJ`^2jt<nL`xyV$Ko)cxa=Pw5yLKj^1WSLECdh{
z$WnL$6oe>$olecO9XFt19LzoGbE!n%#!4UdCHhgyWhOvD_#aUwc|OFI@0MM-58$Q<
zK`lp!dKc?5grFuZxQl4Y-I5p3V`#f<`tdb-aX!EjEo?6``BaLhq#mWocFcG@XkebY
z%M_$V$jJ+E`qXx@kc5<fl4hP;7EVTuVHyqr&#MppuE(#I+=NE$5@_ZWSa`G`YI`y7
zmja!sdqNa6(|;n|3%#IMEQkZ8SKK_*aO$3ENJ)0Uvk#VWz;R?a0e0137{x<3NNpMF
zjttXRk(pb*SRg1mjFNILcV-W#mnHmynekyzEq$~dc1GpQ6UzgCLWqf(-;Nj+l_nJ-
zF{cRiygl$0rnJF~51wf-zQHUf3&s+&lK@N9MHEuf6A)tCjXjDigwB23V_9rMP8)p~
zFqV)Qy2~;*gxnFLuR_K$3z-J(hTgRYz8CNdQxB@(N4uCMwNOimb8t&SE45k+tq{7H
z?n%$Q)j4lVnzWFAb8tX-0WrWjXohnv3qH+xBC`NgSXsTB_r|4{s$=oZG;Pfd(3Diu
zGI&pD_-5u&Nq0l+Xs?Ysh(1{XciJ>uWpXIKrXZZ=?&DFlf=_vtLoQX9=`wP0RO9Yf
z2ssNnWKxRxGu(y6LWu^;w|CsAhf8D04CH^dgtl6hGc~k-T-mJTBEo69I|N@3`$Ins
z%5i(W2=^c<g(={}*zMtBL8v(nVI3X%GA@Kn+>L3k@fDUS$$5Q3r~nC`|1}5`N*Gz{
zo)`chOX6Zdk>Km<AU6nuQ6J6;O3lGRgNR|ARS17CBR7+*gi<3+12`xUm}}P^(0~&+
z;ec}_w0?ent=4Rvt#6=8jHcw?2qMR4*==P6*E;MzBEf{wrs69D%A|>$rNgD$X7q}>
z!zl3L9hyouo|=_%e!2(<LP{&*LK1GULv#XK_mWJ2!)}?U?hw7R*TXS%FB4YdvS43~
zJKJu17s4>Y@#M8EnQPqm9}7zm)555WndKCwxqvi(-H^+%H2s&znc2CEV6HPqR3eJI
zGAjVZEgGPa2r~}C#Bg>M6h@hnkXdL#!VF}Y$Ab1Q2?1jSmfIs5T?a`h;8}?xycd$b
zBNpkNnaTiyEG#lE7YhLKat3aC$C@4qy_ga~pAD8f1R=S7N_7vhv_%<}R@iLpuAQt(
zgm$riFa_M;Uk%wsKK*$Xa+lZDxk#p=tYwJyOx?1~b-3%%)0uSBmeYcY+atm^czx$G
z!f_G~2G}oy4=#;4WAv)X5^B^}>zlP@biUGTR@RtrVY%L_HY)YiTC>IaDX75`2DlxW
zNnBQ6B%TO&pYU4}HHjr6<}XUp*i<39hmdA}=Bi{tQrTe=lQP-C!4iK4W$XaSXr<KX
z<&n8GAejbA`6HCwE)t$1B<e#ELhuW_S*-mO54j{7rfI4NBC1+vL~mqV!3CVN>jA7@
zoJ%}nw?&-)4(Kt0Q8mjb!Cj(eFq<|a(iu^eap1e{@%#<=qC13KFCTJwT{H+IQBs0`
z9x!mdJpUS3O}S(jy!KKmKB%?@%ws}+K(-r;z~xCOyh05}kny-C@Ndj;8cd_7v74^3
z@YSi-`&f?AH2=?HKDivE5K$-MB`+>fU6qFb!_Ffw-W5Gh5?TwBeJ|MoGm_8byFqVA
z)Bs*`gW6iOgvPi=luHH-LcV3Fz(MGLK7*x~GLB*aI0ra7n0t!MH5Ce(Z4l<QO{#&>
zN3scPa(Ub#*+R$dyFIW5L>UKenn<V-JL&upSa2q>r}_3JgepSz?BuqKg>2s}#c@<d
zZba?BG(3Qla@d`||17?eR&Ei184ZIVH<lRJ+;@Xv*KH@mh}vshGJ-jj&p4NVB@IpS
z#Su(?UbVKdiB{H|P(EjZGjBB4&()V}%cydC{ameFEU+qEgk#q?TM(zzsMne;v|72f
zhSt`zpRTW<%Gw2VYkh6GjLx5}ZJw<)QSEsf&04EfM)g(lyXA7R(AunQZf&kNFQD}%
zS|`2E*ITtRYStPRs8+POo-6HtL%MCQvpPp5GI4!vv$j@QtCIC?G}l*ZtyX<~t<p#b
zM6Fu$T)kRr5dlIs(Aua~>nrtYrO~*M%AOXKD`HD47T8wmH7H)RTx-?Otd-Gftyw)=
zS=+3ft~ctN7s_a*zPVOwwE&0}@RrxBTa8K+ZEQ6+*2z{j>zj>Qu|R--wzj^uR9{<Z
z*4NIk8c{PLN?K@6<a)EkOC_;2q4j35FjlH52c+}$MgyI$p_OKh{D14K==9c^7Ql}5
zB{OZc(r(4V)*69gv$?fF&VRj$YR%?)bBX+1qSdN00gYN`37je$8;uKOQRnNMXIq<<
zwPjX=s#sX5)Eiq(R_UsLhH9-AbwF~EaOB|l)~v18mIZ7(TWi+pYZ61xVxiJP1Wi&r
zoDDQK#2Chqo~Tr5p?a%SES#>i>H;e8-?RkuC1*~yg_<>jDVr1tv)hn#=*rr1u`umk
zgzGyB({~^+1Q4lFXQ;!zSI9OSTLfpx*VS5cvr=C}%azs289-Tofk;m`YnAF*ijb`u
zWX2-1SXdbI@-C7S<lj4JAvKW}%Lvui$VO}D2;#u`*XlqdbY}z^$O;=ZiqLBpP<?H=
z-mFzO%c#1()~Y>si_TL<wdd7VHyV}Zg)*fl(pF!q!a{)j2#z-DQ1py#2Rbyi09613
z)?1rk^p?p-*cZWnOTc~d6`|+)W~+=U&3dc8cBWVWWL|HM@dvS-T6uzBEU#C$$Tx5Z
zW!O8aub|de^=z>~_kHVH?L0v3?D|$?8J(@1tD#%h*3YkTB;HtWwd(ZX(E1A0CaXf%
zX06g%U#pyMT!3E@9t6OxEtg@2^d#ANs{%p*W0`i)WX7w1aM)x3da$Jy+FU26Qr%kJ
zB9J@B4w~+WffwbVOKZK2)v9BQOY5-}3uDk-&-iUd(Wfskaw}7uBfN}kw?@mzRaV!x
z$k;2z0=T<2Ds|vO8<h)yib6@e6g*i)xZDE7`HO`!^>buf&3dcG1qpC5LIvcH&GWU!
zxf)tf)J3#^y1uq~mhkaLWBoj@r&n89A)q}6t{FnrSrtJ7k{0EssWh6!zG2gVRBP)Q
z2Y?N8DT%h$mTOJ2{7MT|2<O>qY)-2x$d+EMP)5q<E*9!*%eB=t5Ni|?ryKP%l<}0a
zC1wa9EQHRTpQ%`&jQ(_{7;ss<waUqYXYC*5*ouXJBc2;N+OZW2S8#4Xd)ibkE};oA
z2E3`Vc4n(`CR@S!+GexTyg(N*R?3j;6#y}U-KQyd1wP6M9W`rbDorjdf!z_%tZ&qs
zDNi8XVWmrB@@8eLxmItTtu0SIF}_WGjKx%F4FxIB{8uZ&@tkh*ZC5K>OhQ*_Fym}q
zu)5xVB%-#mhSt|=aGh|WR%xQj%4Uty=z6uf)oj+%s+YB5fzCbUfKz1TqEjUb01boR
zJj5>tsa?6sjo@+22L*svA2JEpTfe+Wlke`wq7Q6ZAyuA)K%*v#g-X7HSf!l>^b2K^
zge<W#3t=7)Q^0IMYFLnEjir`Re<Q7@<>7dLBItT7U5!;^69=LGVtxxvUG=oaVVWl-
zR$-(oDx(N5@sD9tEU?ub<|3Vb6#Psz37x5})tZ$C`%^({A*#R~k~Gb0OFf8gdp8L8
zecb8cY&W^vB(~QbZy;3Oopuq;y&sT>omQq3YkQVyW?B#?keZddj~^Q>y{r&(pXtSa
zTF=|Vto|drFQm7M;XZZ9(_0N8N{R)OkDi`{Pw%)RTC_zh%|bB&$^{k+9gL|>$fIQG
z>j30O#LADMJpk9}U7;5wXb%TqD?-h<r-u-Zly}kbUwLhB0M0cCMWnw53psIjy`V>H
z`)P~px<6mzlDqiBZmzvV_R#g(Fg@LWIRSKb=Uaw*#3W{JBwFAAE*R-$9LvXrD1vy{
zrvVFM?Lsk?ixtX&cw_eBfCxc;9Nd?{uOr6F4=9?XqUu-;nTER$Nz4Q(Sv|z5;T@3S
zkou#G1<GP3*g+U|;9e2O<JqZRluLjWBO%X=?1{TR1m}7d8OXh)G{R&L2ee>+4AhTH
zSm5CJs^Lim?%<r7?#f`9&-xSY1jKrO!oI@ju=tw8?kUh@wl5NseW?Ql9_*rpr4RI%
z6OO;<@+w$^$lG(<qcXe+!>euZaAn5&ShZAmCcb-+FQ4O&MxSv*tL|NRD7p?gdUl4i
zF6_V^p?(<PQ5gj}ddj>*%mJ2vD<?`_vfNwWbv=JbW63(07Gk0tLck-!^^!OrZ;%Zc
z1|q@4N#yMk(u}+?fwHbp-m2?|VW$iaNA=6a0=_)(!<eBo3!XefI_$eqIUfu_U&<^a
z>_*AX3x@74D<GKOsuc@ucL<co!lSdGe$o9bJjVn#`!qy|!CYr~g5>;v8}9zi=o}7M
zMDBA0#N=f}rtor)Ua?~ct*2=cLe@Bt1jp5c<^EJ%-|L1^;JGPcQqLp^+$c>U=T6D?
zPUyAq)5Gr5eRm&4L!ai&4<avUdjlWyq*>0~Ge0x1n_?loy<k+h#?G=D287WwmRMy%
zEvqdE&n(igR@X-@*QarRZD+!;lf4+c6?ky*k!FyJ(IlIZ8^rwORHF8z;VMvmg}P0P
z1r|Bc<}taDpp2;tnz=|1jHup*$bp357rWu`Q-to)991$bq%hFPl=N8`(yiqNiHoYf
z8@Z@T5PDQD7KBscTjc;|w}eED<Lt(P#zMJ%u7oN4c8?$x+y+H|*h}f%K=t4*DEYRB
zQ4{+f?v5R#ptulvha>^+%if1fDC+QLRo?ImhGc*AZYMp&>~e?S{pS;RCaxb2;hO~S
zg%Jb>>IL1%3wnH<@%VhICIwk!O__S4Q?;4a(cz^%QYJ6(&hd&6WAN$@BjAP^+{zpa
z@E*$;rV1}lIq<T76Numh7+fKbjH|m4&PNCEq6i{ow&7*2yM__rBo$8e{-}(mFl1U5
zhHxdgCQm{XW4t?MZbJL9*Y|ukLihzkFM)aBJeksl14yM3IN42Uz*ttI1xj=WkcxER
zS?A9ejxdR{Rl=1T78x$3({w?(j7l%zh;5=;ka&?8R71{x{=Dn$v1qn@JT42Bz?XNt
zZL$EMF9M|<m+BlroOlVZ`Ge`$ZtnMKfmB|RW+G6Q#d-+Y3Z1dCnZn%@&EBO}SKmzt
zSEErD=?xD=ixms$DnMV$G|^ON1D2De5ejp_5#}c;7U;VGtO`(vF`7w`F~hLE;|9H~
zhR5V10tB6ZdMx^TJIvA;#m!5I7*(k{(48nl&*Bs@peIK_rnaZ}5>IE)EYr80(9+8L
zfC4NydOL=vdXqHE=jN2rru|?Z#=){Hz9Wvu@zFvpqNlT9aS5Ti$P-v)8nMLbxCyv}
zefpR#LB?T}WZ{cYjEeAlD2Lu3V2FIl2>@zp4Fd*$Ia=M21%{^6azVyArEwX&aGzND
zD5k|vD7?qah7^J<`uYIsAJ3KP4t*c-!|fCcG<W7u4x4ANlrN>*@?u&MJC0evBpGKK
zBT9Dghy$VL1t`G1F!7k0LW2}y#t(`84v_<}iF7W0*fy2mI3iQUGf9WlDNQSov)BD;
zURm~k`*IqS1X?Dmn-_=K@AGwxg<JaVQL)f<+rZE9VmZ?oi7^g8L}BFhyukI-*sUzt
zo_lLj)&~_o`RPLJ`dD3RO>)p__E=FZJG<#xD}U7p(r2>!b1xW1S%~a54sh2K-VI1o
zM?^&^3Cqj`6*^>PDp+LTSgFvIHWe9Vl|Tu9E5c*BqM4AQImccYrF@PnVAE0#7DPBQ
zHE9^6b^*0v31Kgm)1a<NO$hDpgtX=seH1rI1w2pN^n55?vOUTN68J8A`2w;8X^}4Q
zO>{znKIuUSiJ1KP$0->r=>ctHv=@3EsaO~f)fhAD8KVbuXWJ8aH5rhdE<2zO_Gy5B
zC~4^o(<;-`Q(?zaK>6up=OKjDO)VYU$59VQL}rFj&kel0({#L;S{alYBFfhjmq(RC
zP$sXD;l?peQuB)LQh3&a2NXggK$Z;#Op6I$hNR3*6i*wcbcA$ZK;}pK$+P)C;oq(z
zABXhp<6U>pYlnd}2zpm}jzivm)O1CE9ee*zQxtvv{@=s#?<E^+XNrYyAw*fMpIvT}
zosj?g+Q%O|cI^CPKL4U)$Bx|)H_x0t_S5fs+NX~lJGOzJSMRQ_9((q&W5>Ss*kf+^
z#$%5qU5?#w?AVLEV_yTGj~#m!4F1^H-;jO#`p2Z-%CCQH_L+42oxeE!jmM6E-EhI%
zd|vXr)y9c-*q7W+xQ(UD{Q(Sh^74tx{XrimF1p<JgZRYdQzhteB8X3r=Hn#<U6S2X
zrRS|~plTRlWJtOsmu@K_gic1C?uq8|3j2A~>7FX>B*}nP<=NMyFzOvw9LG5>tH)J!
zDe82W;!%*emzRS0Mmh)|XBlUIg)qq9?shm#PL)apB>bZjC0;k1DTvv&+F}1V`R2GH
z$;Z>N$?&B0#Cqg$^XL}k<nf6%zLw)-i=jI`&bE3>;pFiYY_}8|zkbt&W5*u%*!ps1
zbLVk?{k+@#Z^qwzORxK}zrIudsSm&SKfd{w(TkOH%hE@l|Ndi@?GN^UU-Co$ru45q
z@S#7r>FJ++!|y-kkKg&^e_Q$fn-)Ivc;(yAexUHipDNzv|BtV~<-ebO-0}Nf@&`{I
ze(ZhU{lzc$f8np*`@ZMD<30bkar0~9ul$}9e>wj0;t%YPp8B`yC-6JpbKei$aQv~)
zfBetB@7S9@@RQz&U;Tl97hCd6cP>2n+~=H+e(b4VG@pC^7ys!KA9>?B?;HN~Bd`1I
z{Wrb%%@+$xZ~OE2-n#y>x8M4VH+|t1Z|mBR|NUoO{-b5}o8I!hryKux<I|sb!v~H3
z^x9Xv^vm4~&;7;kY25Z>@B62xy>9e{i?93WS5ANGUrznWC#tW1j6eINW1q9Wa_fKm
zra$^WANZ*^{L<fk??1i&@-r^o@k^s`_`CQ0);E0HH@@vlKk_YadCkvQ7asSC|M}aW
z{lUA?{li~;>F59cdCvN6-}(06dFD@i`;GX$|HBykY*<mBYJH*q#Mj^d`OiJ}!{7Sy
z=b_tP@wETntN;FgRe$%Eul;}bf9%KW-ml;AUq1Jjul)Nv|Bd(0_r3IcU;e=leW?4S
z=fCOB!QMxn_8)#H{G#$)ck9)k`LoAppYE=F#J}%-H^z4_kM8@?554GD|Kh1%`_o@=
zzW24?{9fn2cm3si&b`6-l~=s=d*1k~KWTsIUvB=Bf&A%z=fC+g-}2F){NeBW^xwba
z0~dqaKJ<0pIC|y#zwpUV{q&`^Xa3wfjLow@dE2GY8$SMymp%Lb@7;Xg?&qVpa{QGq
z-2TJb4{4wJ-#_xV|LNH`eZ2U4i}(Gw_tBSq^p8I&zwGJ1`JykJ_?BOd-~UY;A6H*B
zxcS|G^Iu+nzPRZv-ZWihR2{$5#vMw5Qrz9$r4)C)xJxN+7ng-1r8pONm*TF)io3f@
zad+qC|2yaXvYE}EWOts)$xbGjnVX&>-$%i<$0v8cH)Rp2*H_^2A?u;R$cp*wMd}Vw
zgvIwo57%MQZ<-T0x_G;acX{MDa=+r_9b0|vbN5?sd>i<@_Ht}iWO!Sk_j)fpe)Rn8
z@aNoS?e>xNC5!gY(N?41E#ms~Hf_gE25Uw8!+Ox_i?YwcV{IkiEq&o$VCLYlOXm6Y
zf%5I%2si+pRRU$_8rKWa!Y}iNns3{cPcO8uv(ms`H|tw!d6G{zs^QD-`YO+v&=W0f
zoWs*%<BQwfuREWYj+du#zgJ%)k1cGa)qAmrNM+CYSLJ6#&xeIQ!`FYn+bZLYrRZ%|
zCisof?}1m;aSNdJySVR{uXg~JM1fPvGmlY1d%q=1qlSx>j7nkOCt8s==8Q9j*NvYd
z4+dwF4sQYOZ-Q4L^I4BSgK4w)ZV4-2?^*rM`5V(w*01~4y+$&WJ#PfFDuuV@1NYwK
z_gL*8M_O^$UA91HBEF{~%H@xd`}B>zhc_Kg4~csnY(V?fTrlAAZ_H8<mAAERl9kmr
z@;$D6$99&{W4!3|REOdE+fB64X?uO8&#OTeoyfyp$LmEUyI;8u33J<ais)@(Bd~QU
zpXE27<tpOaotAl?s^zx}w3Yj}jNi8fclbPiZlm>G7w#JOnU6GD@m#V*0aQJ=u`_+<
zD_^>5fm84K7v-jH9pKqx&nfU}x%@5o_2NMJb?EH1!>r?t@vh@xmi29QUifOp!8=dg
zVeS5Ex#NcT?F6}z_ROd7Ia2v~U|jf4+UQ2wh~YKl;*!^AeZ75$bS$Gx#P#2M)-U&!
zM`_WQf5Q$WD;@W5(cVcSd<^Y=PsnX!YkC>$!0X7^ll}e7IN0ww&G33F>kz$tFZfo_
zu;GGKwD$hiecsRYpDgYAHL1we(h~~k>13Qg?$1q1<)aR>*DayneMdiVmGN#0;}p7W
z5uJEDmF~D2t>--zy=@~Ud6^0K+w5*UdYNwr9N$Q9v+mEL+zFLkvu;xQm)2jW?tC7A
zj<$2swONnR4;>|s@_^TwsL#P&Vu$0gL&u4z&yLgjv+l{~vG$SYt1P6o%Wc4GZ|m%J
z)aC8Q;q^*c=%p5Da(yH9yXz332Rz>%)_nmn&!_R#t1<bp!C6*<^^3ZB+;#8YIUD0I
zdnf(CrE6Q-+vT0#E~CTC5TnQoa0Wb<eikmgy?4*L$MP$^pj6g*K5}@<%hGaq%2Xz#
z&62?zV--Dc?h7!yI_q%mmOAe)>ezN@KVz4unX$1M7WI9cx)aJZz5n=>bO4m0q>$cz
zrC)1J71-!{%rgC*$Y1fM^Z5L-_w(QSphxA;TcJOIz#pFyDoT9*hF==JbQge}cadCJ
zeta<xr=o?Lg^mcx*^Qh&`&FB<d!ar2`j5XZHG!=c%(T(nz`(ljj;m4v&kBj5njD={
zuH)w{26z+y2P63>L)t}tkeXca(Syhv#K$l!L_`Gi*P9PXkhoB_ntVBjRO&ObsiiK_
z%dP?r2I7xLSLY2H!D5$^x)Na60yIgD&J7+kCoL_>uZiaHQG1|Wj3t^OBSqH;#vPQ%
zZ)8ddMf>u)JYjL~0Meq)@XM1I00)0Su%1A`E0+`PCOU@|aB8Voma7V!ixTW4BH}%4
z(JANS4}~*v<c<0}_5Sg3qsZPT)j$53%!q>IP#akH8zfYlB5-c4RDpDP70t;(vHfT-
z6MuyFwfx0zh+Pc#AtcZ?&WD2<burbPay1d>QkL8f<3U|A%vP4bY9_{XsV>V@H$P8y
znF@9>#GJerOodG!BI_q9Di~%?CP`y}vz(Y-J&tgccQGC^sEH7hJv`<ROezd!?xrDN
zlSn}`$qp$QJ~ji*0z`u>j5Q4SGPAaW^n&J~l5etJi|m_44e$m7It&dg^cERq<26+1
z7)I4}0$fZwHFT!QiRPWO>PZnb6bAzuRHbEdxYi3H`Einq#jz|Z&&QY%8{dsJk4rqc
zxbW7Sbqk?ruyvnne?xtwg9Mk*^va{B;J%P84nQ`&(KXEl07&<1@zlwbC{Efo4|F6*
z(*ixaB$g%2RJ939n<0!vC$vjj70DR-x*>m>l6^`v=#%LE3w9ZkdYSElu1=#$x8qPt
zeqM=*oYZ1Gj`==Blg5RRAt0K9zBor#ZjszW&w#>T#n|kcQlcMnHi$6j!LZyMT*4O5
zkY>)t@rPj<fCQt#2&LGL%^5ocITQSyviCOL@%!V>cVZI~ht<K8@K`jOz+$<m#wcYa
zU~8vXqp;k7Q(LxQnE$=y+xKE?LWo^T$?v#tdK~5kZbars5EH(zilk4gu^Q4zpNJPr
z%;`f+@xvCD*oX%cnMWskG{4FvE*Pgmey63D;cp2A0b^Xts^;SQ8sh9!DWf}>{>6!f
zsm<S<P@8wb-zAeYK<?(;jcAgww&F>4-6JPraX9L+cGB+7X))B{XxY}97?|=Q=1VPw
zj17TFI0osim!-B^+v`>ktF)2=KAIAxXQe5eX%%$TUp6t+;@paons!uW+TZPvp0HC(
z!&nX)fb!pk%sk=#@_X0>!SK6L60x?@)5N0)eLDj!Rsy<<G1NNsM8jMG(t}|PX$<71
zgIu<tIBs(Sh%G^)$+E?2yzTTH&MLXBLN!;figP*oaI9@Fhj~9%T4@6X|FL%PH@yUK
z3*TxYcvTbJ{k4H<5x4BCzMgm-b$1m`|J-mCz@pP&M#w>ZOMmUOOpc~ENhMAjuf}65
z>tt@g8M?2EGsuoU%0S3~FRR6b3X(0YSPUr%JsNyGY}nCmv54U@nBr2e&QYy))k{+3
z@Tb?Qp&o8Q0!dC&b#r}Mr7@Lpx9zS|l$Zd;+V!gS%$1nhKx_pY%Kr%nmgEmc6)af*
z-LYtkU<K;=!(vEYT4FBjn{t|q1|5&3hD=cK)_zEA-q+<=uonl#CrEEfn3YxYZi#6r
zL?I`ZP&`%x<$ae~FOjJ?R*`dDg-P03W7+w-Cigd_qO`>h^PpHhRb1)a%x6-BS93_#
zt3d_gR?wqo453IV{FZ`3LCmE-$t(@nmNSHjSE<k(EAJ~%#eCC_${^JK4zm55X`X^<
zId_~4p{OO-&{3n)SqL%LZZRE1Pz#;g{GMtTS`O-Eqne&%k{@^FVV13THQ*d>U_MB+
zEykt$5@N!iD5*4C$8F%IQ9@Vs?Q2YnH6zCXlYCe?LyZ~_)1WG|WSpJEhTRd+QlMvQ
z1DZq|oK)!Na?Swd^5I9B>(p4M^1z7M4rwlGP%ZK>OH&i7fCme=0`>*M3Wv?h@rjdb
z%#&+OOBqs?z>PT|s1iH;pm4^-o#Yy7>=B$)<O{(dPjbn6D$qR9bO0p>TCbXG{(h=C
zcKkrS=BI9mt&XY!<NP9o`X?ZZsF-LjU(baIRfZKYKeU5}E?tZEW92KSswfx~9GR9#
zg$-3IF@s-{cL1l3Cas2}R}W2%q+lm08D=jVB9~vkpbOH_Q$uEDm#O{zJIc;lW~IJN
zzQk%dHJ~tXACsjBYxoN%c=4mV#;3GjkYdKve`K>$RC?SRKTG7ptmuHKFpcgQu4Oh0
zbWOAGCAo|et6Ws*$ypTGzqbY&0yTm$St8`)1-jXZrg8L`)gi><)g~WxYE9%C3i!jy
zC_w5|y)o!|pBK}u_aSx*i6%Q9xz+@bUA)B9BO87Qg6WTQT}gF?PrsvRtitScH5b{a
z^b!=8t5ra*q33R3X<ERe@_S+lo&ZI8i`@B274_-_lYwf?;XXu)y)T}6mfddnEBdS|
zm3-|dMP}@ezf*R;4>obAq98q>Q2kztGPjo4WWXMsVYg6JjkVT;So1}dBr2*;q0PD>
zscSN;PoeiuaK*xaOc(HjtUe~EgxL;-z(|{`4KmdIkTh2PMeYX7nafhDGg_#}5itY@
zOAW`E8#pOY)C7M^JLg@j859BQOfl(b+5Jt|SX2Y`ij|niH&8H!f!xdoY4pDY`Yu4w
zSGp#t<T({*t78urAPW5;a~%kJ&7?l#=4j0~8}pA}Yrl1~4-2UMQj!nKXK;3yC3DuS
z*AVVM1g*vp>C6J5D2!m5_;K@4d-+7G19RhC*6ILcD8=5yK?WQ}HRQCpAry9yt9U(k
zybU+?G#i(*9E$2+*JY}e_sMaY4Fu1v(F*|wVruKC63f<u^xy@^I3_eewF-P`rYQsw
z3dx_cgL6|MxoSe1p9XX2BpwBD(jAo)poezVT|qVP_J>*Y4WAObBS(dhofs)e+wv0J
zSf~=KJwa5T9||TVg(let3jZ*b@>4nwHHJqrA_^HHvZD!QplO^zDv5$FKU+x<H}^b4
z8ibOu!7e9c!j?~hB{{?@JEV{Sf-I1~pg)TvJ!P&_OI)o(DgDJsi_EinHr`y%g=kd@
zy;?^l9SHum3gMD=*ASQd>+@rZkx5A-J-B@2yQZQn4>PF2?tRp94}zIiH5Bu$O7hiC
zR6*3z4QQ(rRnye49svtW6W|G>0a=t$5c&W-n;MZgFLm5GydZDZL@ILyIoDo;DYgjO
z0&OZns-29$<k1aLysf$#EqQAFt}Sd1zhGGju)vgFrg$%c2cp0=4<9yBYe>K!-B_$a
zkE8(4rGISx_8l@>rZEa3lCLI4x9WjvWYPn@&!gY)A!FB0Ih<^22D6`Hp{>4zD@Cao
zPq!4{Pk`dU{Z;1JRt?mHIG_4;nR8tkJG;1k?%%?t_aKqmFfz8tl@U&px59obOw-i?
zCIb{1g4kRl8wv(m5(u?;fBh>;-4SAv=0Fa;f>WMhFJTWaSJ&wy_vwoP$*L;qHFg;~
zDoE2{Eyi%m?g^No{MIieUo6Za%m?971cO1ea*Y-EGaej@i|pL_dWHG)Vb*)MdDwzI
z?4S4@oc2={>fogZQ)pYz4hz0+6zNI;KKxNM4FV1M3?=25Q#h%LdNmreGoN6QVNt_k
zlyE-%VB^0jE_v6g2vceFOlxy6O<@d%Ak;c8IMZsqnqn$iE~6#+r6C7=12Mng<$^2A
zWJ^qw!vfIo>2zt6<Li0ApaeAMhSc|Q08*^^J(i29gSduaphY!HaY!0!4&nrG`Vq(o
zHN>%WOIr$L5Ry4ejZCvRpsi$TEbvl;!P0R!CH?*s6<CoGo&7NyQVAvW{9!bD`J9{f
zGrAgzx%N7VVc>p>DV!0LgngP4%H?8qVq^#L(w02=4g5)o?mu#xUvVC53gi<l(n8G0
zGZwnBTYfthezkd@m}Td2q#J<uDc?YCUp5>T`?Nf@WpgJTb~?!ouO7c7UnQ@nE)>S(
zH{2w8cRaYn0ePs@B=y}@E}<gMMOAV1O9=WgL?vuOm)n96Y`ct=rZ`K*kZ+P=p47rb
zSdwm2|BJX#r^O;SWP+)xz`9~FQNy5th&ZK0tf6dhMvu;>hFWkygBuvE3Z<ZJ;8BoF
zQaJrBlU7=oD~G_&RlkB4MsYAB@OckgZ@QN|=$n{c1<EK5bdd@6%a|jP?6k$|$l_&4
zxhzM*TW+ueru;7g6;n&`B=aG6c({+c#NrTiMRqjU_l6&{-!-YgkQ`YCbrDWuybz|v
zh%GpO0)ZT`L88kj2oR@~^0#7mVCRyCd{UpDUGXusK~TwAWT(>G!~QnfLa9STCYTY!
zYl-r+3hnQmg?J({A+imwE+Im!D-LhaZb=UI?nZJLgfx&2X{La7#Bu<F;4G!BXC_df
zNUpruK=Cpl(g`S$MBjNej)?yvz3yOorBsp<i7Id-GCJYM0K(s9nQVk!#piZBpZmKn
zl;zwUNm=cFW_)ZZ@}Fo}UOSQ8WZP#FTj)UsQ=UTJR`tJxHhxc)dOZ#itC?|q$`lm{
zu;1e5d3O&bRP|8D&**(6QTo%MCsj?@BhMc7=X5mK8x@|%X5-YZb+XK})gT!x_~#GK
zSyP7N8yqB70BAyc`+U=|3f~;D@D?}ItAiTR)_Q@Q|2=TnYFgyhOK=c5e}Kbk*#tPG
zIl(^NEIx{RaQmZ#h?sA;;U-`>K`F0dK4s_g`7?Q^xs|9hVpUGm=MO&aU>Hx8L_e$L
z56i7vwqZ=7R}+f^`ZDbMEo6`X;HGw9aiLtIl_%X<S%C|l*?~6?#MT&G7iAK|5+Qg)
zgkY`pNH4>xI$|2x1<|gJSRUHV4LC?IJ%YXe3!{KV;EC5(a%3-&M;*J2Eo~Q8rJ?UY
zkXiB6-4AL6qgg)V8EnCwKgPBqKeqX{+maAs=iT#CsCsEuLj*2qRWK2>^|AGGn`ly?
z`Bz(HzX174Eb+?BOyD6Hh3WKUM_Z!AYfc+D*Mh@^diqikq%fa}z|Td3+~ua>9VhSZ
zs`My#SMdoDoL-@@x&dOE%^rs~V>X3-AE>K>ffJAJd$=ij?FU)9z+pNJ-^xJyGR@NM
z&;xjOB_u?$s;nOwH5NMyn1Po&KP3BlG&>K}%>V_YWGT4;NX1e}!G3C!LCf@SKK3U(
z4#)KUkP{RA%*$YT7i@S(3&E1I86so7?jWXE%CiNy_SR9ES2hycFd_Ic%4IDXQaRDC
zlGS7ASgL#Hnw>{OR=xnA6-A7tvNQNrc@@3aOm>8V>8R+sd*7b7k1v&<n+<p!qup0L
zECE4qo{~>`f%fH_+`Hrbx&I!Y${Qz+4(K2I%lH(RUB#O)(HoLM{DzZNYNL(-bp8*O
z!Mm+|FwE-MNR_wRa#@}5^>aQ+yb@VKdcE69Pox+kQ^uEq0%~wb?k8Pc2IN&X972YS
zFS1-cU!S7pQ>G5<yR+pyKH$gI>VZ^;WB~364mI4~9N5MWE?PAw*_JtB(Roz3Pt^7^
z-Lfs}b0`JEa@kx7y|?XYb?yvZ#b6j$1JS-_R_sRUFK$m64|9`HxDYIjL_D|3rYN1&
z)8Mx?9phE`CUMS3`1|-4!xgs|)P=|m_>5UL88<mv%(Awb@RhEyZ+MTtcx4FNFo4Aj
zlq_Vk5nRK|HsL?Gr{Q``0du%Tc%3F7>!0ms7^W-uhy!>Cwh|_!w1OVVUF|dBf5xQn
z_P!V`;fqt%pn*OUuv{@$bquNw1hacgo#5*}x;MODJ1z|N!|3J-VG*^!?|<5~Z-Y&y
zA!2%>QrM+-G^h3;^uwWTicU?AiUJx;8-H?kI%<Ue^%bC6o)?z>X*b{PhnUHD^lx+6
z!$T<Q+)hgCZl?xU{sj}Mn#<8Qoyz0)NvqRweeX)2x64E}tCJ$ej^XVVgAie~VB;oT
zy406HggQeEX~{_UQ}IgZx#}?()9ou8!7MU}xnCmOm)!Eg#)oL%_Yq*|o$mm>!B7%B
zRogyb{l*9I-Dqet=lZuNoU6P=w(0HP6I3k{)Lky2P9}+jdFRL`rg|_hD>pRVv3_;B
zyZ*1e#oZR!+)Sm^7IUg5(5KO!t6g`>E3+8nc^Gs?w$$-&Rk6W3!dJQp%kb8e?*4CK
z@&b#rJI_skO_clJ7jzlcWLKc>q7!{CL<IAR3oRVGvF!-H&5H3r3;`+T5>Df3%Y>w<
z&z$z}h0?yeX_PoN_C?oUdw1Kil%QF6L|E2j2IHxRZ_|~n#6MrzQoeNabp;9`=D+o6
zF*$~+vHs;thQbsRnkR)U{>V9t_VqsVxC^8Sb==F|wDa^iUs-p@E%XH_!*osUr3?|(
zwUq{<Qk(}#;^Z}aYC^1>WmCwL)HvuTi~Rd`<qky0a|}9!|6QjD4|<~0SvO<A#^S5-
zDz?Ms{6@%v6yr?a#Kj-&X!d?&y8V$E-H(8gXAUtx&43yLVf9F`55XZ$$_w%l965VJ
z;o*LGLXAz^fTv5r>;DYAM+WT0YwXU(Hd6T8bK}7K=+45j3n-3Tzz=ajRC#2jHC7kC
z9v7K~1rT1-)Gr_wvd7388~8AA{br#uB<<(BbQGE=*wyXUx4}e6w?TI)-$bbkA<7Pc
z_JENiURfidPH)crDPJ_eO_Z;p?NYE6tHsbH@^KR{?B4Ky@d$xP7MR_L-`FFA+y~OB
z6_yjR*}5xLA836F4yA4e4yBwIB3ug0D!?NNQSXs<?N*wnoQPW((hqdsmDKt$Y0Xl;
z1x2TEgU#FDg4yj#sM6ksX;oD`U8$4A1>Rl1oT@%-XL_4HwtAoWvaN+*b{CrwBU7}7
z{oz6qWdHdWcD4=p-h0T_qPCIVo*2N1*C&`@$of~97da0RJ+}+vwA+jvZsUU#ecLTm
z!q|;*09UfBw+EenVsw7JvH%hy-`9wSJ?kg!#^xmvt!2wH&x(fe*<0zzO2<Ua%CY)K
zn-wiSdG)75)u||$OnkR-*q}+*@2JG^GC%0AXHDUWf7M9<tFOACBQ09}^Y7l*owJWN
zl=|w`h2hlHpB(2^{(PhM2643)igUqJpFkITh<QZOi&8gVhcW<^$4{HD;=f;rOAHyL
zwcaX9epp7TLY(l(7pIZw^E$DF>RR`Hke8Z!&4b%2nU{KT@cu?%N{e)FF|Be(U{|JD
z2bj63(~qnHj48LSL4w^phFLW<s%InHiD!MkLJvHB5Dvp=N8DRVJ^p%)(x={Y?7&7e
z{=4OYz7G&R_Uz)<rO5!hP)TygX&LnYiFkrtk1UicN(UH;5HjFdze_JfUcmTL-*3Gu
z5X2ZPTiJnvpOI5r+5zQd(mv!UrBziggeMQ_-|vZxHiTTIk!!9U5#3MeR=uA%Sq$MO
z-S)O(g-s|BNRGoZyNZ-ae<^2$Wb|Hhd!{2H7!H*UMpbCpXAoNaUCNRgJxIEo`No%m
z(Jpjgu%(h`uA<AJ=;M86vce0`Z$S~PBbrGcm`I|7&(%vCN+R{vT~7hju|Jp*slI++
z(tjNR{*8lTMb}-We;;{?oc^ggL9jc1nhz(^4FHV?V?H^v1Xb{pgU!mFm*&!sR52H&
zKS{WVe`g8Bz>>JA;Kd`N2&+J}n$CSn4kx_*r@x}_vbEcC(?Y+bS`f*e#N%ScskkJ;
zr}P&|l;Fi)v8BFw+wQ$bSaNWNz*;;dq0la%4>u|~G5b+$KI4e_lcdYK-sx~NQOoYm
zgzK@ldIIGTg{vPbSCS;+Q0~#{QzA+_;)Y)<&({kLGl3I^6cW#qpe+!+(n#L<uBykp
z8cwG5ST?yQ%iHedng1{?%{ED-p;%wZq!5FHeY^p$)S~Ml5mEF|8hvznvry`AUMT|*
zT_N~+vq?YI8^y(FEO?5WHon44dGo$tmZ>X$$)$_yvw}3H!hCCoqyFPa-tDE)SnoJD
ztzU&6>#D@en!-WeNWr-NBN15f2DDL>CVep)Jat1EU!g9&DuJ`E5Su?HIi*i!U=Ryl
zZ8_Xk^>t|mXABe^Eokw+yH~06jK%@!yEO+gH3ySh<*l!I&s=r_%r+@U+e^PL^Tt#)
zT7{5$i(2-&{2rPsX`4Mp1wM|7r-xz(<&Tr)KcLU)(<yxl!&_L$n{*w(yIwI1?Ry<%
zuC-ByF~}q7c6xBp{=UxikT)j&w0pUCIFNNTrabU(VnsOl|HX>liU@qbme}Ui;)I_R
z+Ozsktn;nvG4g5B7W-=}qTFUbY=W6d33hnmSoK`mh4zN0?`!6PI)UQDm*zlgdqRC$
zihTiB6~&;s(LdxV-o?8x`-e!`M`Pl>@RKXz3GXiouHdH!6MGlaz$|=|%WbCTN|Hd7
zeV3(VZ||rpVFge)JWa1PXz0@H_IFk{kFV=R8kD@GUnrVt{x}P^--Y5v6XL7;j)xR_
z<2dk$9Fj9)jCUne(p;QHQYwN*f|6v(o3Qa~zW?*0`mvTIvPT!Dbe<xM{z^9X?Re|!
zX&}UaFz2jZx|l!xw(cRYT27G9UV6<x??JzAR5ER0(;E2I&>cQw2-Mg;OF1OkPVdFy
zx-9ajHwbGJ-adXZ|Db5z$IUoV0h$BMT37Aem$ZgnDr1BlqOqRYt}L%YpBMjF+b%>_
zJq^@u*0bplKE7&k^D5<Tg1@b}Vb6c?{)}kO?(`#YXUlN^!_&QKf4DnqA8cbJD~8!h
zGZLO)1~FjNdR#Bp_;ai)b3*eOG-UY1vf?@H+&+uiSN~=c`jPbT)pI|=QQnVj`)778
z5m)<5cAqHK<=+&%XB3MWC}}$)st=X%&QWv)Gl2y&u5|KS8IC~Qw08Gu;XIs~7r1@C
zgz#jGF4OotMZYD{BAQ}YzV@Fo@89G>(vZ+-m`xy1*IYb~qIeI(`(BkLu!4B-vKVwx
zYZEBmR3toqVfCaH7zJoG5sT`6dfp3KzR+*Yvbl@H9;tu&JuOnR)W%`>*?5<_OTP`^
zD!${C7{94pjvmfvHU*fG5~M3lMKjAe!X0#7dNUgUZn|5)g(J_dygASH?B%r5JC_?j
zXW&P(m#FKKv}RkDj717{VO_J=+jo^SOVsQmqwXvUUlJ_pw<QSo)fD}_Py2=hMgVt4
z|KZhMS362X;G$FFNtNiiFz@&6@DoQos=M=ee}*TDl#PyPFpO~vhXy{HPvwc4MpKF0
zTl)HLi--@wldCSBIYpT-Zfi!7?dakO7vR>4OEb^XZ-5$Dz&}6Qp5kI~Q7IjDqy$$w
zzSXjnel*s6ic``0>3X&EL~QM-zSns=K{)96R^Y<cNbvPg`fPMlLS}<W$xCLS_xbQ#
zz&xF^t<h-%V=IHL8IRUv=k~mJp_P!-QBhkeh&iJrk81(H*Kql!(rVo<`~;)^575f4
zyI^c%n9jM#ALr}wcj+6uj@g*G)l>Q)NvHWsm3!O80)oM1dheLdaW@V$Z+P$6)x6G=
z7Hs&x=vpCydhJKkVf~*OoD0%4ZZ^1q8U1**xBP)^72FF%fG^o&sWw;}Zlhb*Wg+=O
z;`Ob6EzO}Zk}@*ysxb>DYo&wL35ceaUxVyFaa>)c@>N?%Ursr>lOj@(BeTm^Ax|`<
z-}2vapB}B!HX{-u+w0mc{^FeB=Om6Z2IWBESc{u*w>MH$@IS{as?|~Ye{6-JTf@g0
zAvAZ0`~|XNKNUx04=G86rSH{jVKSj%(yabE6q*)|zh>MLd~Yjp%a0;s2uO6=TBFqG
z&Ty@%<okWwt(@E#2*7oY?RS>Yo~c3&L`S?6o@FWeV%CeX;rbK(pN3miQd;Rsca+P%
zIBKm4bh00m9SaCG*Fd!ux?$2@rE~QA1FlOfE8SP3ke67yig)cj^U&y<f57oQ38`cj
z-(+7W>0h$S&(EXy4La5ZlE9ho58*!eua`qL`@;3vfeq{y(5E3N1}uVg=PLOMGoJ;>
z=B3l21gx!9NWFYohh$l!mf5}=n6kDi%|7{k`D%nRw4&-bI>`3%q?({`&z!{+J^9+}
z?l*&OG1(9H60+nk#Bg~UUt>yfVc2AuNF!7+T%H7w|N3~Qd`aTZhjIq+GG=6Inbmrz
zK@%4(wWulFUmgVg*UA}IO;B4r#UU!3jFwbQ63`12IsG(gDSlskaM;r2?L>MJbRhF)
z$>|@+Yugstn#ypaQ`p6O-4{;-R;ttdgu+jvh3etH&+dS%3G|EphLcH4LdT}o=!R-I
zdYyoBGMf_BB*Mao`@I1bP58+rK+}35`4J<+76Wnmc+K!)RIybaPm7Twvgvtkp32eJ
zafc$zy&J9Gi$LZ0CgV7@SOu%f=fX#8U`HqpdM5#rDT9y092==qhNJV`vB)DesRa%!
zLwyCvDZ6^>wFfzD%*dZimWX7So)v67wHa;t{3&Y5y0eS+;D9>3_OG9fWVP6#i5j3U
z3|agc&DpX3l<id&(0N+mjNc-U45cIMH1J!U*msveV9~;=q+8zo7S(P%_niB7NND6@
zc~ONDU(`}*3anthS*AwJWbk(fL6KvOsbYl5(2ZtHt<aBV?6BsMSSFVeUx4$6V$LGQ
zxzb~GGd%fz83JvuEi)O|p_xUeL|<?X;wFOUEcT5SOvoA%P{WwE7O#JVRJ8MK-f`cJ
z2g6svp|mTmkWmqes?4w8_-D0!%j{<Sv@&q1R~>!jOVq&~(Z40Q073dzu=|Gjtd&#b
zJ?e6Ea{Ry?D0TPmYA$-f($#yv?LOTd@mArU=?tcgH4A72Bt#JRUwt&!$1=z5t}#W<
zo|ApP@qM}b_kQ|;{eA>`J!!mElqQRw^3JmE`JSDRnQT32_RP;*^YbCabk*}k{KwwM
zpVpLTMQ#H2=StTf7chn4m&1e$*4bgN79WW{yD<)`VYMACELJG=@RjT7e3LA6B@Zk|
zTAX5n4d{TD%#`5*Y%CvlTJxw%>v&RUd;REdsj(jo*j`qq*y)^|Ks)9UsS?qt39(WS
z1LCuR3!Y=!*BQ>1nI7>>`#J-jbFd(7AuZp#>4=1u^81G<4PH+n%A47%VQIbbUupje
z^2&KpoQ4D*ODz_d0`^lvMxD>_$I*XquYAi>deaBAwV_tYJ?IaSgl9;donme5S2*du
zJ%ct77JEqwVa;LjKgoI0YeNY$oJniN@w*OHfMen@AX8!-lZJ)@GIEH&LJa;_$hJrx
zkjdU$>m<7r1e!xE*S+KA5RpB2%s>J%nE`=RFSb~SgO6!bVvsM_*a9+_*phw>(!Yi@
z0D5AYg6@29^8R~a4mOheIfy6pPN4+-S8EQ8cmH7|ril}JTFcWAQ0T11FP$>EL?fbU
zrmgNTj4w+diG$0{8Z?7=uU!{i#t#Hm7W~Y=j@fCT6Q(-g`H#lgq8Fx8Cu0((D)>qD
z<V|v`e?XqHvv@~RFeMH{o;j+WKmys@Aouho{V?ctKrT!6m?A{goRI6s@ZlGe4k#%G
zfadywKmu7Qp{hi6l0zIU{f`Syei>(Zp*IZ-EFGJc|3F#6EeNDqE&PxED)bJ+I}?HV
z;F$k0k%S3A;{wef**<=mp%N-t3DKlLsy+L{tP!!l-rD~mXdnLGuf6(zG<oJb!tj5m
z#MA_2YC85z#u6|fvYEbTstm+b8;cR312Rtp49GJBm6;G#<<UD|0sDKGF*^n&&vDH%
z5})NsWe+F^?NlFSrtIYYN7MJHKgtvWU$h@(-tTYkgqT{Uq&Ws_&xGX)qTz(nsu_H#
z#=E2;dOyweaR-m4q~FEF`6%-m$kO<*=|fYXXHH`uJ5`|C!X=j^bx@BNdG77OypO{Y
zj&JQhT*}X2ye4*}Ws}F<d6S?9t3c*eNI+)3Ul3?8@~I8#<rBpa3tdg9<urgw(6UY!
z=zDz|jgo{2Xq@^Pxx8tllJd^?XjVfdc4}+mA`A22*D>|3>lxXKhjg|d;}^qt%p!hl
z>%{mc$}q0Ytw7NEa9K4&D*vMTEca6VKjOmbx_>aCr`d^Xe5Rg}r+aUA;pGELoN?ve
z#_Ps=C`Lf8YEn9LlsCi@;1Lqv;oEt%MEO-VH+2zB5q^K;Os?6rUmrxF?zB1j5oL)A
z+nwI--_ybn^kpp9E5&drWZIYzabW6kFZ+@*WqFBXE>|a|N7a4pRrP`TaXWfw)q~SR
z8TA1l|8Mwu9J3sS(s;se3PowT)3rFWG*PVn++S2A`bh7qy@)szU|o2z;YKBTm=!+U
zFF(nGC74_bYNZ=GuF=mq=Ahzug-m{-*f`vSiA;&wK5yW|Ks{UmO*~E5*(%00eT_QP
z*y<hwy^X;3xuS!esh*x52#}7`Ar1@`DZ8H#9}8U64B?Vb(l~&4F(heZeqj+-E08|C
zphy)#VcKE8*pnFsOmM45>n7bY+?Of`AbNz@%RUB6HnI}qoDDjTu+1ZfU&Z{7!%t(#
zAD>c}^*_?v$v@ZTo;~|(hfa-Xy_K-;>~s{|>}}&6O~r=5Wq-nyg9a0k#r^|7RsTqR
zz^Q-Gd`K5hDUj1H3Ch+$b}dz-W&-_HqmCfK)eOcf#ZIIJNFbq^SxS6uUz@J^S~eOT
zM4YO)|FqipJt6qMvGnsl5!Z=q<Uz>{rB2+*Q?uPvXuw#6t08l(C&_KNsKSW-hWGo-
ztYRChz7O0fo_WM5JNjBgyz;iT9PnRNX+Wtzd*Hx3TEBdFMxDuu6hMSKDZtWVa4Nt`
zn*XD*B}ZKWXly|`EX#WS&ASoj^|qxL*v+ejKULQ?Q6#NIS9bT>Hz8U(y3lj6huIB~
zA;l2u{vsM8rG!@XUQ<U7jr5`vFcZnc>B%a>I-x<f#Q`I1d34FZ-+lzI1~D9E8`^hU
zfpm<lzr6h#V!EY6S!n9cZ)RYf*W>X*6V^U5@C}^<jxgKJ6R+?KxlK7Xt%@%1Pw<4y
zD3<O00`}At$HeZCEDW5DT<_&lB@(>TDckI3q<LQ##DB?O)f**cZpq|s%q8d0Yr9U5
z!n?w#*%sFC%yDD*#sEIIBKLVHQ)Z64N_|haJdA((jah|Y1jdS>!<1atlCHH`@pxta
zzH!R~GmDCDM93EyLerDsyj|5ta0a7z&7Po6b*06HXn~6HtBo+eoU~gRy65TPGii|%
zVL(^n<k+Ir`76#;f_WYVTDk`hihmT%h>xsdU8;1tn0t^-1{R{SOUW}ij(nTv%5i1+
z>%iZ=emz9mcJb_0v3S$1m!@#jT6CPq?3e+7HpQs6$2xV=?3|@?6yc)GrcpsNIt?Q`
zL)3J={;?-;3cGJ++kWQgUrGU0E@^kQof%3ihJY0BF_V9=eV)}gPe2mOpO4hdtaxsd
z@=6nuV5!%y4ALd>e^<|jPqRF&ez#3HVPFOl!@=69$PnBz(blQT*Y6gGrEe_cp@ks>
zY&xm|GOR5{l`q$hZ#%|&rbp-buIXkT>UGHF^4)p7)-^Bwfh)v6lAtdK;Tt<~o%@Aw
z2oK>CT0zbmdCKdrs{E_AZ>paA3V1qfTkJ)$6-$om{I!ei`^R7b@1NyoB2K5A<ULix
zx!2*7VMh58a8=PP68<Kt5q}U3M64tL&|JLF`TZV7yX0+fg&{*&TM077QL_j`1ADI3
zh(enEqfdBv?#gO_!#dW?`YN;U6YkB%DaN1Y+tK~&RRavyIK{d-lP6;{;LOMJ$@D3|
z&1r;oWp^)p?83x*dv&aL?p3PDr5fP#wTsv68Bc$YpgN<07(hg_fhphqBNH9)Soc3B
z^ceg%Fa^D)?@_{4%>i{s3>h6lGALBU&*8+^l-fsuPWmXYS`sla*k=(`5iv1Z*k}=S
zDpEX*WPqO&*EEE*sx9{)%}5DWk5QG{uX(S_c&Iu*9$dgQxGd$6&<fcf!Zg6oWfTWb
z4rd8U?1_C=CDr{t*--;X^$wqYf~1i=-l26#&V-$(6?!C2@^bFDfdzbHPS|*Bc8zon
z=ydS~hC7+WEiLw$tc^m(u(XFK7QYKwEY4B=JySb^_D=J|r)8v?%Px+H`?tlkZElfX
z77>@=RKuZ^XsgmUh;p9fRHK?7=*=3&p~OSjW09`V=5a3D(B}n^s}a-M#5>i%<-R}3
z<6CqOkBS$oQ{~J?%S{lg`~J1F)Q@K5Q<jS^++eMx@yaHrs@lc!>RE@r{`vgpWSau5
zi3h9bjC$TEcaFUg63o}B*-2>2b)2H%p(bsFZ}^`Xw@p=_I9L)pb^Cgyw&}M`WrHmA
z(fm1BH2Zponihcg;^8K3{Lk+&HZ8ov_&@r+$vcdFz3(tKCBMV?yl~&C?OTr)L5-OZ
zP|d-niO@IHnf!PxD#(VL1qEvs<^RIRUfnN>SlDgyK@c_(`G@c^*@8Zb-C=G6l3q`l
z$Kf-cR)ZCYS{GUMR7oS`vDs+xo5xK5qK0S_;LuKXj7Z}&s_bCA_S84w&9G|2FL!4h
zHI|VS-f(N3KGeox!jfvyr$eo-e*Xx4jo1Q@hN-}NPoNg!9Sf6*4O<!mMHwyW)cJ?z
ze?OJ#a_FR}U;C^{GdyThCUId+xLCxv*CSj6HPcf8@%5phriEIvZp5LpaxP{g5DPE>
zS=9_d88zHJ6ER(iHr?fJm=qy`#8`~R@93XrR7JO`<EZrBOXbZKmxD5sOak=R1H{-d
z3%)rP#5#L)qgKN{iR~ZAgRaihP9&EF*N<6d?A?usT|%t$=WH&E^mTcgn+DJYm3>Z*
zW^{Kv;PWHzncPFjzThS$49qR^{%!_naS$f4>qGlT#17hG8AatiV&h@^?upDkpIpKV
zQ{Ytc^8B*YVtGq<yYyA5>xhJKYzy&kYq$;~eTILT^lADqv-j7Kphdm5-s6<vCZ1#9
z^-Ar}`w^IPF<F9fb!>%Ja|h?T?m@1ufA#N|c+z^*haOoI@a8CeyKl4v%vS)rY-W1s
zcerq^n3?cho6?n>J7js{7r4#)5HhaHDRkkr;Kb2aX&>NVVXbWsz?VqWnE%G=s~AX%
zt^FqEMIBz(vru|v<nUIk|8*!vt9K`Qh<Kj#>Q8h5j3+DnWor|;)xHwnV;uUc!b^As
z$+<Vi-`yFJzowsv@9Cf>?yi8B9|m~WCJWNFQ?YVd+Nn<bzDx!ty_<U%1S)1<(TlHx
z6WXg%7)5GVa#`?9CI%P73s>z)TDFy27l~Y2<Si%KGQ@g`SlVz!k27Dgoa%P^ony_3
zFtDwWD&<KBIVbS^oJj}cg1hrc*q2tF931*>eX)OOr0LKziRQnN3)2B_9}Pocde5y4
zFfB?j=w7g+6H02^g)|>LKrOU>Uo7&#$`W=`$Hp@RWP;!r-$}}Vh4HHSB*G=mYxU!m
z`(y`k3c<PHF6tVwXt+)(jG=TdMq=E)Gj9PVxh%MWZ9^sLVTG_Qg)n5EL*9a<4Sd^`
zf~4#TWH!^r%sE1~7i1tcYcVD(wEFEM?hD^1YwKx0mS7gCdgSuq2}D6&5oA0*{{^#w
zz|0)Ie?$VQ>e&oF1NwNC>j}J<)hrj^x;NCIO4z>J?tP*mavUj}q5eSJZ?hs)NF_au
zq_0I}P;EbqY*mAo8nbMQ@XhGuQ?79`R?H`_UoUZ;2WY~Kg0#87nx2Fr;SGZ>FG7wc
z9-MQf%y(lP{sB`ut@U^q2&+7;&S&Zh?epPYc&^@#YExRB41Mozk~zWncSTyoag%a<
z_eee+SCNPHa%TrUXzDkw1akC_Kqw-;z|c1s7xAB)L?K6;!!LAmpA~x92<G9I^SVgp
zEnKSI;%|IWV9{Cuj7KW}olB7~!WE%~V-xVj(M?_&I$;9mx6z`n#ebe(qD3p-p7&th
z?xuF8m5E&{_eKUf6sC5t_88VP^i38bhgmheYT!(JDd%VZfeey!|Au;L%lhn@9jPV4
z{mNR!`XD(?j!Q~P=vsw-kS$-=pNl1jdUB)G*y=p(SupnofS4$EPhVAEGq2qji&^;>
zzLH2rhvXSn&d+OU^#VsXUXLA-v-N$V1f`X81jD6AHb+Nq#k>T=!!~bFH_~|n_rdX9
z8>Bag+j8!wDbFI6>1#`8YgJe4B1C>7Hhe!luIBt21?$!`Fz&|fpT~!ba_W69FP>NJ
zU!Hfkgw|<3y?ki&=0#j4JT~_JNo;$TNo4C#R+_XO3C#dqnuHMr{eHyj15@RRc9Ws#
zTTAUy5?>TF8T3t(P82kee!?wgX8qy$vEuhtNVK<Jnu&We^SNKsYV)h($$IA7tqFc+
zeY&z`dF5)t^u(G8hCtN5uE^U-H}l&orUMHpShMo3!``PZk+||`NQ7u>v?GeJynfE@
zX!@bGK4~%v8W&n5X+H{@g4Uim+kKA|BXM4Lub=Q{dmGv&YesA0Vq@Tv=ZA7qT>y)N
zPn}Jrb`pCuG&WEl_o-;Io$5x}68%G)sDXps2NB}d2KOmG;>--9GB81F(cI}?+Su67
ztLZ*|+h&Ka-h16VOIC12md9B3S+5rBnLyPzhP@u+7|$Pb@2sB=iLI7<n4W2k{YCGw
zQrh^d*U=Fin_q6OuWK+I^tz|-NE<eX4jTTQWD@B=8hro=@}XB(-6#0Z(zCe7PNZzE
zu6f^TP8OIwY=9cpmrvKP;Q2KjRNZ9ajJcQc>5SW=iup%d!CUF4($yMGU6Q4>XUF5E
zGS@91zGeHY+>Gh2qT04u<&KB`^5MYEqJMo3S@s!Si?ZH#9<A&Cf~_I~ghUN~g3Tho
zYnA6t`i6i9hqN2F?duoIdEM%<g~>syQu}#5SR3!V?Lpb6l2+dqU;TAYm+N1DGM?5@
zZ({xQUu&Vn_dfClRA0V<bYEFnD=XtK-{}4LFFWj;$FiRchfc57Z?*3-u5O-fPi~*%
zfQN_1hG`MK)_4xzJ+BCb&nL=3&#!gujTY!18t#CKyJ%kf`!}UV-ii+$LvJU*YLmzU
z^;)9$sn2WqYSqg0a<|CAS=(NXR}#tA=!8gXj$VZe{$vxVLqzE5kC$U>ty|O)@6YA5
z(^n^NM~^>U7}4&U7$K3v-P<3UT)j_8i0&NpENRux5X-kCkC-d}X|M6Gqw<QfHdY+h
z)_Vb#4`AlpK|yz>%75-jTJv{nK>Olb%SRI1`^NJT3=1QrxjQ$Jb#UACOWf*o{n!QK
z-0JK3X{WGVdVAwK@#~y`18Ej%dS)4Xmgbm~cM5S9&lqd;(H^iUcv5a}=F)a`WA5SA
zAg|2ozIr>aem6ZB>CkMGHg~WwwPfX;bpfP}C+@9--9!-k1#jN70Cc!GTEDr~*vyYB
zAFu1SYQlP@NoTBTzIZ&0KJK;DyQ$nME3KVX5HkrL^%o^E+Re8Ji>|J|`S|#GHwZ7(
zwXGg?uk-w<U034$Fs3`-FUY(%U8A@>+~Drv<F(Ac=qlQJ5*WCxcn4lIv~NARQT{}0
zJ1fG!?!f$1=j%Pxaz>zcGQC=#qyd3u0t(umH}h5((4yV%GzI!w_p%7HG(U_R8f7u9
z*NwZ2FafViMz3HS;J77HeECWL=NV#?%h$Q6Xi@!)wkOA#3z70n?=<G4qiolPWy3e0
zIT1dQC&%TB<F1FHgWUt~B3I{zR@;-6KMpT*B8PLziR11Bn_a(ay<2?S9kMdE-;F-J
z%ugPUOKT!8&kwwoPgm8xo_=~j?JV##eT=C8D!yKcfV9L?(tJy~fyel!Rdd;)I`l^S
zK>Pu7BeCU@)~kxul%Ug{>?pR=0L~BZJ}B3kw+92ey)WA2GdziDC<}}znbv|7PG~Fb
zGnBe{JS_~GSQ5-WG~7YekPLS|@cp9-s=#|VSV>jJUlfdJnAze(F^rht;5{e$FY&QZ
z%rJ!NGWaN9nrRikeF%#i8zIaT=XaQiJ7OkQ(wzF{=IF@Bx4XCJj$i#CR8OW(TmTpI
zJG%KOO^}bjaL8loqs<5c*_RqBMzBOF?t#zJ=i|e#L;S|Z4UxIa8dFHb0HQVqvR#Qz
zfyZA2q-&TU+b!qE>UmT$3$gF)V`w&Cs)FI5sm%SqGIk2vnpBdyd=~IGO>#%6H9;r(
zh^W_HLcGC9<zOJji{^=gDs{yk)rSJ}fx{<QVTm{Dwnuu%Mq2EHm=X#+*A7~4_Gba5
zgvS9>v3;0u4;=LnA)6+=YJjq<T@p%MN`HVVkNb*0>6#8j+6Z(`OQ6`xyAfxDbNv-j
zKhHh^woyz*l}rUr_<PRM$_fjzzdTG7uN;mx9Q0uh6dQ$yEq3^ib;O8=y5_o`w~|3R
zG4!|sQ6t<x+V?s;PfesrZ$NP9&@4w#1*bPr-oH0zGdnwe=C}EyVW8j{2s7fk9c}hJ
zZ`k1F{U9KycapJ<v2bon<|6jBc|_WmhgVee1J9ViZ`R$C4Y`MjH2p`!&`E+ng@lR0
zbT6SH-nT?hQdK#~3`8h6XI<0;KicfhIlchF6u5njXs>Hh?cyOmPrAh;(48S7)-a@M
zUWzans&K@qxxXdgMH;;lpb?>gvPzg8ogOJ3k49HG0lKEGp`{S&+@Gd)cjw7EPfFNX
z!(own6>v%v+@9TLJ7UrQkQJe&Bu;dq25=l)f)%~?qq##T8QJAsWBoUo8;K&MVu-6}
z@4D7*>BN$4`Mt3UVlw;{9!~P})zIC(?KH%q-M_m|?lB=h;D*kdR>SfD{%HE*C}mK{
zlYO)ZNgqNivg4@3di7w=nFME$TU9^w3=~SFUZjpY90!mi-;5+)wI?6X%ty0hBEA^+
z*Y?hO^>&+RugY*og@}!^Bb3XN#l@AWK8+y7)E=+(xtUZ_<)h0dCoS`R!KLiN<jaq4
z3r+lp(z*Y^av6EFB0U8JOhkU+^l(Tk<;x!?yY1|2n8Dn~dEp>i%~PiY-9*Nq$MnZH
z3zsm<SYwkD&Pebu|5Ont0n!u3QgI~$zB9FlU-V*0cqD*drF&9X$T5Co=4c`b8LM~7
zO^QG`e-#oz6UQ8(61deXx&(MnR%33n+l@i9<!-~$>@+ZAnW#;(e{CWQ+6l@e9(3Oj
zCxQy|!8`bgsog_PQiZ_guL)LG{$><vDFX>#4i!6AIagD!WlLgBhTaE^yn4jL|C&Vz
zHPGE%OMYn@0LS#QWY?wRDlEl*ZrM^!m|xU*w*z<PNCI@(lj|^U*IHQZhfy_(lx$0V
zo+Fu&<_*;7IVVJJ@~}auk?oF0?msVdC*|e)%n5Fs1S9V05cr^FV>i{mBwiYiCe|TY
zvAcR<uQ`*sq0;>BT~7fhkqWlO0l_W-{v0|?y`nzO%-lSvn{!1B*~{P+d&KnkWVY)5
z)O`9j2<wA?)1X$a-t+{Cs)oX!1=uhT`~!?HYcxq~R#aIJeCnIV1eX>RFx)Uq8UC7+
zjxaRgZox!rjzqy&`eyx`$2XG8$-T)iu>!0sanLPW)1wrI<6Qu5TDpp4*LP~4y^xEK
zE}eqSSrOp4Gy|za@f!n0g5A6sl$=?5TdzB{BPEHO;%okik8(YUUm(<8@qID&&zKqH
zt5*A-5}E14tIQw@5w=uG@216Np)A9tc>>0bk5%kFH?K8qsY#Vq4%kV0L8iY`btS!s
z!e~=}WOF@KgB<}jPbL)KEI9py3C^!uPgpTAIrRx8sJ^7|M)#UGlCTv^B*b~5bSoRl
z4)L<uMDfU0E0{*pN|pdBylvj<klxsd<}p0~k$+@4?8Lz_EGj(O-918C5A7|7zLK@w
z;3O{vx>;wm&L%NP{vX+8y~3ZqCyaxyMZ0-lf+tiJLEnHyXR?Bj@F5SBK93ttyHVi~
z_nUn%<G47x6&uC!dc5$Cv~+~EGv*cshbOOIOA@?avw}3-%}4NB?E5BXbPsRtas*xf
zx5F!feKML6<7#@DPuMYxIQodm<RwycvSC8537g8*LFw@QrnSy>FYe%$gl}<hDVsBf
z$|QYQj5NTs{%J;-6(*77b@7wqKc0+@ACR*T8{%VLc*_px;G)h`C9pb}A%Fkl6Q`~w
zmAC{YL110Knon{2bgNQqNTDvQh3of8I%V1Z&(M9k#m*;MIVYx0;F(^EEm@n5WL7kV
zfS)mTeemXvjp6>uZeL?56c~Qw3{65Z6$L29(lCIOPf}QviL|14{b#-@BO=vbGzZV{
z=NS0HUgHg4Rn1W&BZv;q1Y6!(L=PpYe?JCel!*<0^_#2o<JlP2Fy|gDfHoJea;fQn
zZYid%&87>C!ftky3Xfoix-9nf59xpU_Hq8_8ryhwyh9IBc>tXU;}9;?N}Pmg$#*F;
z{a6A(HxsM(05cP!&me@rOe0KROD6tf`Qv`Od!h2{S&gbu4Fa1nn0_rXvEe>0#Ue0r
z@XbKy_q_Upk<GA8<<N6w(LFv5j!{jFO~-_3V3l6CL>8Le4|GypSPg@U*((Ciq&no+
zO!ZU#{ahMMP9$)TQud0I$p%-zSmUwTMYANJZ?*<v-fGGDx#(!+Pt?dj`wiywm$Ht3
z_Aqx+<$x)6H_t0SqHh@rHdoi|CDHZE{dj_Io@Q2UY_t%eC$3Z-KkZ5cPof%(0G%;M
zCjp*y7}dBBJr9>bKSd!+Wh=KN2hHy&BdZpI`aZdnc`E88lg}XfKs1m+4~*?3n(!h!
z4QGLMdBd}SVgmFaB~J;3swl-zElG4sxlL<3?rvUK2<cQnO^o!UC081~>+pNZss96e
zK!m@SznuX?e<esMO6(dJ4(XGs)m>ZbcGs+x)%BY1_2(|p@R|g+SVeJH=BfsJ=lCp*
zR^W?&y=~MQZ)){w{l%OMu?S6~KmZUMa})G2^n$R9$^Y$(o!TO9G-}bixcM#g1{9+~
zPHX)tZtUWKPzPSs2GG78V04x9)o%><hk=2?gA^h6fB%Y#b(qzl??-LrtIN=Fpn)YI
zgi+|(EI^3<U!PEhNX<quT`0he;kooooKw0rXU1r8mykr`8XE}4HZ_*QxVC&*Uqs6~
zxAkR|XS9?ftE6US93Gg9m(IEn)ZcsmeD1$d`kzCr%UR$UcmAu<$m)NqW&Zz@{L+ff
zQ>ZbGe+bW0s3-LZ+tVo=jXa!>szlW1Y}`kbH31#K<+b%DTz|E)Y`?N!Eu%GPy<S;g
zURi6r>eg-e>ecJz)i*14Z+)fr=1skB!F6l-)$3Pqwf_3ma?f6GtgNh9b5Rmd6I7P#
z%WKtoqgr1+ZmcyMjpkatw%mBVUVl}suQluSe@ZEbpXo1O{>ze(vvL58l>d#D<>j^Y
zwESONDdqo@{N@24<f;R`ehB-hDx&~R@QbY9_g2jW`B&{L6$z!=>M(?SDSX3*r7$-i
zIgcUuym7E!m1i?WdO3DbO+c_57@){8rxPN4ZdKR-dyL3bZdDEt(c0Wx(1liW4yfpa
ze{ws{`NZxZD-19j$|JD6iL&LiBY6(Hu#b*H$C243RMfzokGu*M@xJPd6Rs+We{NoM
z6niM;g_n+W(QAviKJk#pXiYOk^dx%zLLQqPg1<uO;2uV{baBqj&(9^H3ipfRzHn+J
zddVLsQl-z)^xJ@McXQ(5{5&}H86Y7OfAN5j5toDJreo@)uN5F0c??5`*7T=)EJ~cv
z#ezjvj|xpi;5rGqWoD(A35x*t07Xne1f#x)MrM8<Y}nE=hmQ1|3Kl}fpfwQxa-2A*
zFvmAW;vFCc_eERT`}uirAdO3^lBExz4=hn!o(hBc=&*Av0gE)f`FYSry>b31e|ct&
z1i8<+?Y6`X)FsQclY2KOpc){DKpO>otmPvY`fc%$kMR6F(7A`vTlEbmGo&)^DW6dB
zflwRxpC^GMW`YERyerOj%Kw1_;)%Tf#LD8!N*{<;$-XG4fi39q(WZz2NX7h;l3(OA
z(?tnAKu`rdRQfzHDHhWQc~?<Uf9ZHpbq)`9PB+@>DUfrd2`F)q_-Cs5(MG3pcG%ud
zw%-ki+l(FoMZ-rl<fCUi*UQ5l(l}{Nzq&-jRNk3>BO|}iiKZhkBv~_B89h~eQ8O?(
zS`kO(`tb<kT-8U-6cF*BNGwUwrNEB>7^Rsg0J4+m4<>;mB%BFKJkVK{f2KD2R|tn(
z-5j$H(z9FwVzA!?SM}PfH#L11+B`TLAP-3Wl<x|BzKMnC5wD6|pA94V!D%w`w?fB}
z>GbO3mjUX-z;+O&;+!b#%P$vd3YS)bE4uh42cfnFu-9u5b`&6yFq&jp)QuO^;F&0V
zD-!+rKcb`_KOkKtRbs0Jf5hJ%k$^S9>$<uPF7do2XQ}#36Jbce5km-re#qB0)t_}F
zBfZdZ<Y83RK=7yMz&=e(z8e<6ji8_0Fh-%ik|A<iom#;t3r|MTw{al1)G45fouLTe
zf!q=&1z7-VOSdz?={cEWpb4v&MlFB@dj#2_36>DEq)(03Y@-Pcf4j0lG~?#wkjpJ-
zG<+^v4?Sm?k_TFy5krq|bRIIaZI#keI7O24O~cueU=qWw@?U5=X~b9uoI30wN*95H
zuMq#2tk=R|z(QXw0}U{-o5o%}E=X)*(Ip1yC0(*~+G5owb~U2Zc&<@ZBlJ~;uqqKQ
z>0y?kR@MB7zthr;f0OYJv1U{l*Oy~BK+s`>+xW3qsOB0LTMXBAQ4_pBK0eY?1O-^A
znZ&bc6Ew7F6UCFEvyB`$jNUFw$|Cxonl$l3@hpKmr4&CcL3z7VbO<g$B5^>@FHw^@
zJFoJmRY*}#?T6S#OI+y=8LCFQ;*u#4qNnkeCvnC-2bLdlRD#|3iHlsZC$7~G@Z4Oi
zp3l$cq)uhFZGl>f8I_DR_W&hbDk6OI#7a}wYI@2*iL%MYtL$R=C*KNGlj-hKiKPfY
zpo*=FN(V3bC>jqou_&&+AeT#|0Y86uSy@tZxv~JN+|~qcNEzrOCNxyysV}#ZDN+Hx
z!Vc<7wOY|EatK8g49?9V2^V!fO%Qq>??;?}PF3EaT8nC2`A^u)F1$q4*fYR22`)i3
zI{QPx^?(4I2qkj>uaKs1BO;G3f^NvbHS|~l5+kYv2LeQ}6$gM^dj?Y%MgD&eSNBO&
zG~pWCsAe$wGYP@LN#__qhY~T2#-Jz*gLsGvjtT-*#S^aZdA1-+#{s2kcVu`DG#=j9
z9d%OCm`E)ZQF9ULDf&ctkkN}Hn`OyOa-q$|Yrvep`O{YuXC>)5RA?f5Os7{7&ygo$
z0^}e_k&%Db6J@J(EVKqThdO`zP#C)gM`3_sZpoFo*V7PN5kO9H>Z>kc18La-7X^L9
z<tmLW`~=W6yyOB;4zT(Vyfo&D5u)bwSIx<@Py;QQLWp}}QivJA2wxjfeY2uPCVLzc
zAVjao1{snth@MNnQ*0v(23uMRQ&8nPlPnNs#ZP6<VkS#=9(+W@rBi<~Bd!N1K%zPj
zmZydkZ16>^jsN=*4gd8;j<-6Ar)bNNp<e(1u2I+6L-ZyiEivHrv3Db$AGW1BZwn!K
zxDm2J`s5iS#=;qoneflK0(CPqQ7g>a;uEcwWwXQ|&8t_nMs3;n5^_7j_`3?K)llW;
zyj9zEWBFCBUaQv{%{PDbH}zCw-lhs|J3y4at&4W`=Ii?FMxtG<Rx|$QI!Fp@*61<;
z=-t=oe&Vek5JoKGG{N!Kk?|&07P!uw$62LIN3-r&`6*AOOSGEO-J_EVs+l}6m4-TE
zIwj#Z!LNJ)ROOMZs?49BU>d~p5Byy<`upvhuKNcnQJYvjuWEm?E1(AM?!<@3W>3D1
z`sfRAaeu&oL&zls4!)E-rlv~G!OFL9pmwUf%~DL~cD)w6D!|=cbJDLE?1Q_zio&U;
z)m$Na)##4a^0Z4uYzu}vWwbNJOtujEDHn`<I~T$_N<~vir^4|Tr(<$?#OIRCJB9to
z?tD5YOUlJE%E5n9z(3c8o*iwc@=tB*&(CLtGv5%1Fl6=V4*hZFh2a&I+ptn!_px_L
z0pG|i$kpp>l}>HcjRdeON^PoBT7V8n=-8Y?*!wCj>5*_nY{Dn@ivoY^B5)zI2J&zT
z0(9sxc*7aFO{_~40Ff@K^uDu=c5AQot|_a5$}D3FLXUq&$G3#eq(+KfV&9i?<l}29
zJI}}XN<`J`k@|!(J&zp>^Yh}M^GSPOosI;Mf$IUb21(~Iu%vHTYH!G{aXr5mI$9;S
zxJJYO@uGT-y0z%wR~R@i;u@k5P$!g{6QD$%JK!I2W|5G}TAm(sI6YErp^SG{pDj?j
zqddAh6b*l3lR)T8mdJY(2wom4XYPWS8N72R?R|4b+{D;apLs78lEku{p9cqU$a&7y
zM4`U#d40ZDfdQdR8+ctvQ4)vYrOL>Q-070it<@n~X)L(V3!&o-rO*`0lbDkb1n}CZ
z+{GK>9-^$KN0@(%peNOEF_c);b}a}InC^X3+ed%3ehpA2O1S2IsZ8O>nYO)iaCq^q
zy|Z(?*LoM3Hp=l|d5;{2#AliffRzkRd9r*2&L|<cv(s*E9PDUpiKxMRe$ZgPFlI2H
z2pQ;8*G7m#Y#{qwlO{dsViks!wl(y$^kD#9#85yNd57d)$JHLWHmj<*?pxTG#S7$1
zbv%ErCZ5&;#JIvoyqXJdstmj6?TYYC$i~u}QtM#{y%pX``M}KC9J)??uxXbQ8(S-~
zFTzbK-ZWL3wOGxPNC)?jHMATZHZb1_O}z?zESMlBc|aU$SbKbkMJr5MAj=KEKR!MZ
zo(;M9;!?w*XURo_*-+OT)=1^ec3hgqDX)L=@gy5lVMvSpOLnvt1(x#YHGM){Dk+vT
zYIkcMsXD~E6xB46-P+s+{Ea@~!GRZjISRowbgC9{{Xi9#6i6h66qqkm5lnF!u?h#=
z&T>c}ygb|3U&yB*1zK;vkjWS-u*?!tvdj<ha`xI-T<vz|v?tr}f#=UMflY2LqLP2O
z9TmC~ns0ZQ@<ed$B%bf013qK}1xBbcQfDbT7a6(cwML|U7hI>4U?ac$98f0=qk!If
zat(UI0q8Mqr4vA{0Q&l<95rT>Ih?Z5h1j*Opwk2m*M#U0uMa|xVTW&g5}@)jipfg>
z3G?9bcO+y@(5Ta53PsSAE8Icoqym32@{Kr+l_YI`z91P~_)ZO-RHRt2rNksj{WTvT
zmoRi8=42d>=FiUfBNbhF43vQ!R|8`kK~rU%9Y#JCH7fpZWdQO8M?!W%dKV<HQ6R?b
z;u?E4xo(0wojD!oMpz_)Rz^Z9g38Km2(B>9ZYKI0y{;mCP{T4h<HDN@<9UBWBrU04
zY{^0&LRxdtg8~^Q+E=lbrM3=jEOk^YNW>Y8O<XC9Dq4Dlg(E`%jO)DdNiCxc)&N<T
zRL0)B=)FXllTje5RFMGRMkgE-nFW<i1OpU+jm@p?9oV&O)L33wUCU9;Mp<=cly%Y=
zt75YmUzM~OJCK~XRVmT~WFdbn>~L`#c!t0|53{X=%Swfs@U2w4ePSo@CO<Hi#>ifu
zrb4kXyu2{%WYF^9Obmi6*Fvi2kn~=?O9gY|>0zOO(W;GuXkw%TxW;J%D~iSDg>m^a
zP0P4%vr*iU!RIu+QB*9K>Ws4>pH?H_Tm&^s=D5L775(C&Q2B6FcqV_<XY#Eyk+cP&
zzN9jw(nYZ$qsz=HD=zZj)->1TmxU~o7^+--p@pNY$Qa46xL%?R(N}XJ=khGhFN@TE
z=`W7L3Yda#-)e2?Rj+X*cX!oq-%^gMXw0-yE*nZDg40}R=C)E*8br7&%8*=&J#cd9
zg~v#OV+6DgkE6nl02+V2(9X`-Ba?$MX+{T7XX@qFoG^gDjQ=UC4iLxI&2~Aj7c%R`
z%<GfkQq5)|_==-BLOeSTAl<LXVpQJTB2y;#mwBZz^tb6K4wlBgnE@uNNo4z~{Q}xc
zqo#On+E)}-;nQn3ag`4E*IUr2HC_vgUHP73X8_U^Rh3ENpg?~p0fys9HZXl;97_kG
zg0zgTL;6e0_2v3feRZk6yo6o8Rf~ESw8}`84Nz5Mg+8uguNniWa$1+><C<Thxy6xJ
zNv{e${i*hGrl`~54$a_VzNTwIDW0YiVD*ws_EDj&3BuwKOI}mv&?>YzWiR+pznFxy
zbmD3z11UL|RYHG*surnelaWyqmJWA|tTP#_)ow{eyZXzBd5kBPZ)Y-dS;%Ug`6%)|
zz)O{Q%?1Gp`vbsyXF-G1x~D4YCjxmID5fAjHXC)FqcWv80OoPenk`CPsS}m@ef-ee
z^Q4Peigvwj_@AQw6s9uB%Gdqn>u3c<-yDn6gSuRs>WzPtUi`I+1d0Pt(!fH&P`dXL
z%6RN-2&Gng&CSzm5?n^1{dh8}qORJDTr1|Rm>+y!O73&2v%f~H=|bxgd3G`hRzR2Q
zh*GDjOPprg$SD$1RE=qzV6q(VcTygMmts)Ch<P&grf*Ie=A<V~dWTj?bZV1h4mCO}
zC!F!1c*cKetzL9@J9eRV7~dHCvQV0EBFMibRCy4!jZ`&0W$h8lHXIBo*N7a4TvHvg
z71xW&c)8F>B=4|C^)6<aF+T&2Hljrbu-^ogD2Q5_GkYtTm<)whkc=GiZtA_dML0s@
zL>ID&xTEYmwFbxz9pPFdz$3O64V*G<{)|iOvxt9ZA)nEu7+MuwVd2hO5`e1Ev#T))
zOObUQQ<Yc%!t+|WM8jBF)9J@eP}%t_gwEe0H-u&lz^Fu*e2jWMWU(fwv`9yihyFei
zw}TlET4d)2Ss_C&8?|*IP!<y08>#5{#0HR3+!sFT8L&(O6WNh`L?UkSKRTkOEN4R;
zp5%Y{dt6myL)}#Woo?naT-EPHOhA{w6#I)}M<D(4z5~T&bJ-pTNF2td(Z<9zFHT)8
zjxNcxnhGU7R#9<?DD)E}QcBLRz8H~T<s@WL1Hi6{#>V-~F)B?i!YMMHJOcV544}u5
z*c0?Vl_h8Z1A7EPn1Ww*395UMV_>w+BT_7&QjzMR@>a`flNb*j9rH-)h4A*p%B9Ye
zwZY5K6Fvx$^W=dqI_FP)_+=rNov;Bg2Ny+qC7l*Qm(;KUIsuZG53vC!2>9$=vLmo`
z$(KH{0X2W%B_I7rgBY7W9)w=is0LxCliS^;`G^D|KlM0OeL;nyzL?A=*z3KQ?<8-`
z1XmA0M?{aAAu$$Zu(CoK2`($O$p%dJL`TNBy)KjAjLwKka=wGA5vF(y=VSCjHxfsd
zQqhq~%vPh$<5EaR)Os{vsY6h_xrokeYggN-(@lRxX_;CT)UhtDCB~i6Cq*oijKnQ$
zLi#eugjyb-Je=1l@Zv>BYLRIZzd!>P;j1hwR9w^LT2jI=63HHb4G0xIiSE}pIt3&E
z_Rxbaw&b2fG0|r<rb=v&IZ~AzNoKZ7(hfLfagqEsg0=|D9C{X-zPnj-*2!A3lQVBJ
z6MlbcxDm5u5pv_OoUYwR3j>JB$r{g9WqdD+imKX_(Q`90X;gl<nxJ}j?vl{6m2sz&
zmmzlVH{*m?QxpmUDl{4~&UAS4ucrr2@omEV;(s^6>vwp1P`VnbF6x_MBu$m(ZG!(b
zAN?yOC>Q~iY9;TpN@Y=H4k$f}X4h8~p%;JfLQnfrUK&Y53-W@7D6X@}wXQTe;d}!)
z>Jhi7*&?t8gixK^6=i$GtGfok%f7$Nwd0Mm4)2AkRZhGZ(z}m4i=yiEe~W7R;(D)z
zMBYGxoF-?;^aG<0QE<tSH!gDWs#d&F6Z~)H*}v|`%?zAr*y$=&+F(Zxt;U+_gx!BQ
z;ehleXOYNf*EfU2VM{D`B#HC|m5VUOfT^$y#1@!XL`Iw;8m;_I6=+*7i#hWJmFFnB
z2zka#6YdmfUqR18nJs0kHY;aW-p(>llaxgsM`e3z<67){%DovoUerl~CfAAh3auoX
z@7(D06!V)Z_$G~hBin1yu=)4AMOA-kq6vNnHo5|Tg1Zq6ZW-IagV-vPFU=zhQcsdT
zZ)^d5flO+an&A?yCN+y!uWq6@6E2G78Mw57-sca^TtnmfgVYhxTu%i}*i?D$a}3=Y
zbm1-W;58M#*nlJpl`GWyQJsdVux3I##upn73YaXZ9VC5^kz>QCN@W^R9Tk5j!9A|U
z5<5OXtLzVMekLkDr8o8|9XHaT;C5D(DpbnIFiov&Rg(OuMWPSVGmuo5W=7mR^nDn(
zB$zQ+iY$w`{;Z)6sl}WKsQw2~*lPNN8g%?Y+JzwevB*A>cVmf@O-=CP*B8@4Q9F_W
zr3qfxB9B|Yiy>;}#vpTC8@YcFgV1BxMKMUj@C2RMjNvm}xuCXWB^rcmy$btcDhGfK
zpa&Y@B}H7gIplgFPMwNB<%YX*a)xdf1$^5ijtvHwiam}I5Fl~8rL4e0u0cQ?rwgsi
zC_pVXYa@aweO>X{1941RVV2_cy@aj=S))E)kVWC+OmsRe!N!7$^QC_^toTU|FvEPz
z+S6($P)(!@E;<ee&D3m>0!3`&O4g|0j_{VLz=23Xgbs@Rt3o#kkRDH&@G~-`oF`li
zvkiz7RCau8fp&Ww1~v+i%}vH(TyDV-wjv8mIU8jie!~xF+Tau=HZA>`HcRuRUy4MK
zj&8<cMV+kdw~w}>;HZB=k({P5<YSGgMMOML9leDfq1C@a6yT^-2?rA&{?0udpQ5Ev
ze^YNnuja*`V!ny=(U=`CXput$METvobWqI$|H|4%4&tVJhf(=YS%oC=q9dk@jTj1C
z>>+)mMMI$p8jeo4<oODbO)WI|AVflSm&=?#5<OoKOtqkh3)z3<Ix<^01yL@x0euk!
zh^s^lUm<5$i!E>I;`?W9YV9=kWX8!3TxX3?F3rb0l`It;twtO*Ct)5t%~8(bYV!PR
zUJOL#KdO2KsyK$oUet+toL6ud)oPZRzfWB!Lk8L`zr(jICXzIF((_!j?j-9tBx_gf
z8C5QtV5OdEaFl;6`LLF0aI7<&S2M46Wi;S;5Fk1rj@<++nKqqJxVVfqd=(~2f8@}Z
zc%LG%v6gOd94BF?U*(gSXp&E1wg^X#l<~9713E@xqLgw_&81X%je=P^vbx5@Yip>j
zJyBO9T~$Mr)L4#6YUp|z%k}z!I*OqviVZ^X$y&W0XNP}8RX7^U(N{@ClYA$f=k3&O
zs@&X@yPR!=lk@?03SO$yD8gN{^RcraHxzXj;#O-fZoy@yMHWQaw5S+`l3-QefgXx5
zb%z3;B{oE$YQ2gp%>;CAHN60PM__AjyDdfy+UjN=aE-bHagdfvbN;nTMA73hAe6Nb
z<4;X7CeMFV7%z=b-=aKiCcKzRbyElOcX2@38D@j`@<Uk`1Tt(v$Ke~6?NO~on4d_L
zTz?fwv?P#cob(?}AP$5_jeJ!YYYs&JG|b#n6bOXEwA%<75sH$w5p$$!etB^ieW@$=
ziKxq!f-VGY+(s7I6>nmcX+01?aC)?%@(t4ofRTT4WMu5UL|7a<HFbKT(@>D>u|<_X
zB#)zB>3}a?C=Szwz6}{tJ~2+K_PH2G;~gyPI|G$t5xr6dNG88Vnjrclz;-L04U|%?
zbB^pv!{7F()Zh&#gGgNwt&GK6<?2FhrM4RRn_yrKP@;uL8#Q`m)%2}ZDuAp4%SJ<Y
zShIgUT9YtpH0<dcL+6vX3C|lBi+DC+W=fGxDOs+}B^x5!qxC3_Xmq8n94`n>73Gpr
zGxRp-2}MB@tgo%Dti}&p#A_46j4*|G{7&A?6gTcAA5BG`Sw2kLSR*TlDWy24KB7mW
zyS<8*LtYy0s1V`=R*jkvdq)Y^t3IW<cLaY_oe4yfr=7EVrnV-`i1qZ|Rh9f#^`xl9
zUSB_3nvYIOV?UiPDxU8h8D;Od7Q6`^=vh(k(vRg8J8e<uG|HpOv!JN-yvA7|E$zRQ
z$!%MjiE*mr49zXm*vd7v3JtAdGi$F0LJ>TGrm+rQ8h_|8-&<ksEXMgWeEcI*Deixh
zrEWDAM<ydjuTJ}6M3poWi6q*l!{}N=QlV@cGAPX+!)R$sAS0Qe5H&$Puk4{1gShOJ
zN~i1?nZa=q@sTK%66e*W-$Yx1D)=8)mqBrbRNt(rA|J^ElF7v5T<y~*Hjt*N+%ftA
zw2)GEBg-Uy|Bk;-Dd{Wq9OYI-atwddS$qOs>e!L4rJ=4x74;MvYruv>YWTs_*G*7q
ztl5<ek{4+#6yKs6h%eO*J+85W%|-BWa}gYDE`oQPi{N;35gctUf}PD;231D{SSzxu
z^r!<9I(1ak{tX=@j_OkIQm!^*qg8o{;>4#<<ehyBbNmx=t|F?7JSj4D7*&_wx&cE0
zl9wa90XYGhmtDI7LjeJop}PSu0gIQ>y8#pd1efN!0lk0l64y}8xK({osA3Co#LJ6M
zy2KhGQg!?JOtW#XhXSr9rRvuy%n^|hOrs-ehts1j%@#<_zN;q0)0JuUp|}X%7tzFp
z{ugl`u#1Fa8;ZQoTFml}$q>PhxZ9(tL^nR6s$#2Z&xu5y?Gx;=s1}NvqK4&Q#3H2v
zDw4qUSbcwqAbgR<MLD;{8`TeeazmVfx<n|7zpCmw8b73zSXkI#N;}UZCL$u#`8W|c
zy}0<)SEtgx2)Xw~9gX5fj#479*LRS?3nLUpbx{|2Fy3)Eo8E5}G_K{Wx);XzL+E40
z?H6;=vWnkdP&<Dq%7li9J99=jM~5_ZIS_H>vp9d1&O2L^l{cmPa1neBDU0&?<t_4o
z%6SKj7*GYPzSLqlp<L|(sEJ;%@_4@k{u^{<Ap<4~^@>_8YGUeQCrML9l-jXa2pzSs
z4XE)v$Y12~>9$BXBn&#fZVhlriKM-par6I<S;vJp7v&LLVIT({*I5mSM*UZLaw37+
z=y-qRdlczBM#=Kf(`Ty;u)_1EBq2Ct0~B0iiWZ}4pd6@j21%n%T|lD`Ir60<Ei41*
z|K?4wf5l_V9I76glg@%-*KC5ND;O*Vp{Gx%r@RPi1*+TImn>Mb0%pJw7O&XS#n~5&
z@1i|b&`#7&Lr$+sai8nu%DW8>3B0wT=1PA8q;!LVtqpOxg%?d}13KUuWlu|PkyB6u
zEyCnQ@(E~#U-9wtgt5{O#G%uG={xJKP?UA+1(32Jv{)D<Db!L?ofi_~u8ZQzPuv8F
zovgN*MphFw)hy^G0FLkC5QLsZTn<7fCpz5ZmVGyY8UMzf?8^nc#Quc<I5hlr{3n0c
z^@Uj1_nH&pOH*ikM97az4UZ7(Njbn93jrj=xs(A0RI%kk+m7lXi32=*UpIuc^rIO&
zA+&8V${JNt4vwZTW~$oV@};+oHC<@`-|rU}E@JS)SeDW0(nXMcsgQ|AdG9sl7o01i
z)t?EKO{xt|bGOw*_t8yL_wRpVkpF*^5c5TwnK*p;qTGwhy{O!a%Dw1$?nM*p-h9H$
zO(yQOywx^bp3KeJ0*I})h>MrCe=g)$;_@y3Rz-#`E>fU<2U;RYE^*3KSD2(%R&#ZA
zW!kNY)0N#+R6kOrf()t3!oBbz8;qiN3Ho^Hsv&OQrc1vxmSjEm=+3E0_M(5P1??+L
zNl<P|<)&0_O68{XpS3CJN(PCwEQ}(NIwd$vJOSN73^Z!5YAgRVzTQx`hDfJkO2TYN
z$to9>s*+%QtFB4m^HsXyh-0HbU-vEEiR+EHgj3RVfXp2rDP2cy4b9cYo7L3*V9b0X
z=N$o}yj@Oul|=$XXzopsn9_d`(WUj3m2#_3_v4AS`X#-In-lv$ywhV5MF1E9(Dzj>
zWRXur^&w~M^%0fs@)*qT3QjxnssH(McGYiX2QE?*X2G1Bxh<MTi`0~|1L7NR<FPPC
z4U-F9MC5OkfqNm7%r3gA0mkGaKz&TSzjNLYn)eh2)*$b>j&xqIp+A2K-dp0Kg;9}<
zjLRn*zc`lnQbpkqbqK{!lXOTTDZ-Qz5SO8eAV$Rq35O+sCd1810)7QwlG8*Y`qBi4
zT(~N<ad1i0j+D7K@|Y3n#UUQPg?w2A=*B|6NCC-(U8N4W{$iX@lHUPHMKq!|iZ-s1
zerbxl&jE^JO%YcFOiO>1<q<l9I5aBm0!9XlRNZs2S9A0-h64T@xP&rs#{=&<l4Xg$
z#H!L4omZ5I+Kr%>i;XO`zN(h)5eB|!8S%v|$bso7pd?^fpnRK>5ipswYN%5>UC9h3
zMX6StOA#}m?+3&WFl5LXj_g+e-HZQ?E?4;1h#?V?viKSXGd6$bMYm#zD|ftM+-{6*
zq{y#EE9*rhQU=5$L9`{r>5JfjVW|hYL$${<UW^wpPq{Rab80#_XF_G0DIFJljph@R
z5a5qa3}5j1bf^t@<o+$c&+OcC!x78=-wU&*nJ@4AQ#?}R$WvPKXpS_jQNH)$4v>J|
zzXL_uou>WY3on2F-E970|8wEr|MQanr&z1{rP2Ilc?Qbq1VhH<Sw<U75Obkg{nD5r
zMFkr36w#IY4pg%E=j4dZ$jyCmn>BPN$LtfkNS&Xe+lG0WtFk%dI;*$+k1Q<+sXPp#
zE_M|KXMw}v2l2Kh&xOguLh2>Zw}Ctx^-rp3Q|N$7hbw<ow^DVRR&^6|Z8H5WbMMcZ
zn|>GF;j>bw&q?tcp>RE|_E#!g8M;e_t5mp3h3lT(HWaSJmSFg*{g4j&kfCchoUt9R
zJN{(CToiGbPK+D9k2O<u`E*iU(bsr&Mdc5zj%kf=(}C7ym)w9IRb1;icpC-3w4y2N
zc1)pXj?sTHCiDuKJAl0DsT<E|A%hb0#3gpf=hp9hJG)rEx%u-aotP8o7t!AH=g2Ke
z3Uc{00r4K8p{|<dV<<CGjv`Jw{eR#+=CSvY{JmllQ6!JkgXv_9PwcVsC3AXYrqK*>
zYrqKUvKYZDBN<O%4l6H=x=m5vXQA(iR|j2;vTlE7iCR8pZyNRGFXN7>h*B=IRW5vD
z&rE)EUF&;?1}324X~F_y2${}8EjB(UvR)rd?+;*|PDd{ZSe_NjKf?a>eCHPD|Ga$p
z`$lyaR(tj8n?Jub7FX|@&3`X^Yb?IHOTQRl5x)5Sm*qd3zcgM<Z4dvbTzUCB?>9Hm
z|EPcc{ma6_w~_t-Wx1I!h9~X&{nVK;v-*h*cuvjpGv0*>{Q&D(7aN@pqd$N&KjG;J
ziNfuFi!yo0M)u#k5Ie~Jdy8-#k0E;!+5VlPHChqPMs0*bCyzm?+{><3ZEO+JK|u{{
zc>3Nzvrv^dWfgtGpmiDGD-^^PswG%iLPvk3hHf0~aUDh8QmFJNrIp0P^<(S9dEuRL
zN^z;n{!qH?4;3|eVomsIVkM;(T56#Ylu`>Vwa`)voeJYmriIR{WA$;7wN&k%MEO-w
zOldy4-UI^50ui+#Li^F@xS(wV2>u4J$5l;n6LrTZ*hZUk^IBV#=#8kEc7(^OYJz{D
zxg2P+ZsmMoAT9$^mkKKgk<2FoB(kPhPIyGV%GPC?SL0|@Wr}OG=|c?0Wy*8<z(7X9
zm@k|Wi3r7f?)YZn6UETdQH6YfMob~u#e5MtAFU2UY>gU~=9@-ijnBvpJ|*PYz-Tr(
zC}8R17~<s>!8Wi%d1<FAyGF&CG~<7UiMe@gBw-J{U)nGW9g2jvI5$ZbO4YTWx*>~i
z;Z;?<#DCP$lxPyF`hB^SHr4!0v);D;oJ$@Tsr_@|5Bs0$VUoSJH8-b9zQ%X{#C23f
zAzaQf(gQ8CSzJRssv9}4YcJzlRXX>hs7s%!k2?=`NnjaQs&m-UA9f6QuE&4dwe%ZR
ziBesL??MmvM1lC|mK2e5=m8i6a41*wfo>FCQC<aqD>gtMpUUHDO>osv4==H2H<S0b
z$Q2E3$e><5iqp|_OqW-y3gqgw`JuW%zbc+ZH-FE~D~$Tk9_axZcC7*Alg=nwxy7H<
zhR}6HQA%?z@(-%wi}(N_A3uLtTTYa)l%@12$~_ck5U(n`v*FSJIj#gsb@_4ZEvW~|
zl`ubN{@t8Ql~_)YD$Q9UguPh)j)UxpCs9-$KDtgr7j>5RK`zVtAdS1M9=U4u{Jb#!
zs-kReRh!69J|0;b_^4!`X2xbD@iQ5#`FV43Bri34ay}JN!nsxSF2jGbWFKZUp@S~8
z<RtZ}zms`gSm0cIB79{>0lvZx>Z2WML0Mh5U=WN%n(sOUW<pPL0E{;o_M6nti23v2
z(AT=EO6*BqX{VlUq+N(PIXcNarGJ#a8UHRD_3TtylJm7DJVLPcl@jkEIO_F!eSLLR
z{I_1Or~bR%SbnwokH&xMtF^}R>iXLH`akN8SM_@1AD}+FZWjMS%3$!1`h#($JNHa}
z-^9YJ{33_C(gYQC9}pk(s+s^K=u2-qoUh0vl?ogBh_{w^pXjH4KztN1jA*3^zD2fe
zB}X4mG{^%Py}VmY0aD7(SO|;Bw*|yS@0B3SeVG8?CB#9{t7Ly#-7RLJ8miTJ$hm}1
z+JUGYSKdapNZ^znf^27^PUXJIKF#fXMss{B9w^OnayE#{D<~MjhkS|zkXXBYN`y+w
zo*ZT2#GM!=*Y;=G#YyMZT>f9CXpjn*3;i~72+S_y2TO;m@pD($%M;3lXt#Z;B~hgG
zPClM#$vi<nBN%_<q-zG*gC?u+4QvEC+e{(82X&64+tL&8fP@~K0&~HvnHaIW&wLvP
zPmc2mdx~AypJG=Vxn!c&6E2;oy^Z^bj$betYR2uc`Zt0BG0malNWbCtr6WK-p_q~2
zJJZ2n{}Blo*`oOEsG00Rcb4kes4ZK&e`hEKAD|5eVq<?k37qjeUQw?nQ3R6i>S8@0
zC5$p45;3e|FlkavI7zSj{a^^ecN98KN7lc)SBJ8W$sf>qnqX`b;g#pv1;ZwK*4-%Z
z@6Nh6Q){g=)|!i)!Lw9kA0Sg7$7vCCq4iV@jve&hgQe5Wbi)_@1FqVffy{c^pKMsO
zzWndtlbU~Ecys6aLxq;O^Y)P?aCFt<{amT?7LQr?9IESOC!S^#O=HvTJHZT|!VS}f
z6rHs9AE1%u099qR+r$yd-=WIoo-q>Qy3m_IU`)XcOJ{4`M_^2cK{KT_${M;SV>pT<
z$Obcq`!G#pA}lH^f7gM1I{CzzVvOTE)*fw;qg#L9XAX9Z<KtfAid>%!w{fvw`w_x3
z``E=(I9?w!Mk5sub&K>q_AV!w3{&YKv-X^$8|3;9oMa=IW_FEt8Q&jl<Qm==>28mS
zVT?=mehg;;6ar~dumvjwGvtn09FxrW3FkGZ`aPkH?*xy<l|2u$Exj*10(|N7c`WKD
za^inK5c+HZ_d>_<9!;g{JERLI@J`NVA3#^o3FYw;eMatS+`_4Yc~6Q|o%s7Pw!Q(O
zY{S8j&Ult`xGKYY#(U}LDA<fA=!DU(nM{u<qFOTwjZ7T9nhCy1qEt^Z=dsrh5PdQ?
z5S+lqC_;TNMt_GqgE2~72IGS>4Y)@0G*N$dF3Fw-lRwH{&mek`sDW&7Ea5!G!k=bl
zjN{(}*1dzTkcTKe3P>02%1dUB2LYl3;!NN~Doo`Xi;Jts7&_a?$#I&`5YG_`un4UY
z&z?ZM-5-%SK1%76Fz<Mbx^zDjBQp^0r8#@VMjhlJi;>CwC=)@B@@JW}C!TEM5`%wy
zK<sI<Cq`MnQRDGea0c!q=_>b2M)~RYXG|IP`dbdf?$Zc-=Lxj|mz(Y*J>3~}53=EA
zn^-;y6N3!(LZ^e+L=lwPA`iPW=II0WZJ*eW=BF318Qz#UW~Vw@AX<?Z@-_B*rLqVr
zl=K+??*ImN<<EjIRIsC>Dg;bT@iBk#i9`Csk7&j*0iW30m<FLZ$F>>Tee`4rCr>LN
zU3hci!7GRzj&)+BzmMO$M$VN)%dy7<`0vlhT3wIfk{_SrRRsQrG`Anb;DF6O#OnvB
zhi_&cxAy}~L}1r}ls*R4q>J7oXwN!SAOLqn`L5Yg93W`pr?MK8$R5#bOd@}JOuI3O
z>5&b`B(le`90MfIuNS8@XTVRFcZgiVP#fhO-^u`<Vtq)kX91ohCu=IWqN>dn*TQGc
z=y9q0_u7~O#4YJj>8tmY6AEl+l!b6l&{vpZ;=RX|kzhDFapHcwrsWaU$3plYbVRi{
z`}WC{zo<ss5ec5iZU5x{Bb9$!xp(w5zJMnWCyCl-dq+<*dj0m%*3`o`#=SZ1naW8y
zoFQi{r}b}=Q-o@%@`W=!B@-F2V5E<B^xGfB-{=r%Z$bxp*3+#(6K6;0L~ZExr}xU=
z3;8tDVm8|*MU<;MV|{WNtg~>pQpDO)r!A#|q2NC=iNIzX+<u4xgl&Ih!C;yU$!V+^
z1^!s%12c3gs#eVy1%m+#{iBiRm!7o;xHqX+CxiAua?YQ~?J`@OD*5mckUnIM#G$U|
z?Ir$UwCDkXwlgZnErafH_ONN#Ttw1Lwy}xS{2~g*!w2_ZPW0Wh8-0e%i8p-xn}A~x
zlKYqi844#>1|kY4YB_(t)g*IcLh~VN{}}VLG`=Rm<rDir9D#L_$DT4*+P|{4k%JgI
z^g4{ne?E~YPonNvaEci9;}%|^j0CWcW`E3-vH&vFf3lGAk7F$`%kL2D5;37|k1Gms
zzX%gUfr~w{DZdM#^{CN5MjRAOnzu7W*ompEmyRDGXm1gZPZ@ta>oZ)8+TGdOQdfLB
zTF}`D8KHbBKiQGnN6<efo#%7;e;NEyN2BBk&M^fYMwEDx^&BQE2$5vx_@WLDf9v%x
zg3v+Yj+xm`40&tEj8kwDcj7$NMB@y)=;e+<A?D|oG_20@Sp}uh3MqQ5o=$A3+{a3(
z=sSz1vumaq1^s`U&@!ncuQa+JU6YJO;={?uB^TdR)@1bcJ*~<ZyS(D*ULS*puqy%N
zeyq!-W18ud{!M09-v5iqThGkEy{~Y4fR-8{iv;!~?uG*F13*rqaj3FjmX&|@|AG2K
zL20SUpihb=YWMUh2&1ceWpF*n0)Dz`u`pyr94P4|X2*XqxkTTk+F{W=o|FH7SKbCQ
zgJ1srFHA+$=u+$Oc&AfiH|zm8M&JL^SYKOP&))yCT;Bik6u;vE0!Q&(i&Am}3wq-E
zP?4{!u7MX<h=2PAYNzUQAknm@wvw9R!v%MD`Udj&zWD7{M_ld)dI538osL-C$Q}Td
z(bb&$_6<wuiI=e76eeB!r2=Z;?ykm3Y0GrvT9l8>U(hS7reM|_VnJt)L&m){<*E`w
zO*scZ_3mzNmlH=qM&;G(NE5dxub7nFIce{|qzjkF&;f0KUS5V>WHATy5d+m~eD7q@
zXn-mKUn%i?$OdmK-)huHR*gfYzt{h)d5V_1ioO$!f~jV~LW;`0qZExC1HBieLTTqj
za%(H3HFb3=63^5hcNIZ^H6TC@?=Oms<}VS~;*m{^!@iN%G{IPKLEHp;47hLz7`#LP
zf*!gCF7`ryhN!rZjgP$v7VI4XM#M_iC%kIWKKhx2Vx3<@W)0-D5gi4jXU?z}CO7Go
zH6bsrryIu?bMZiScG{<VTRCGnG4`oYC&vB7H$B{D+L>O=eB`lz_aZasG0DwIC1k;@
z*ox9y!NlwH=y3a@wQ;bMVwX?sNoT$TD$w_9@eS60HB6THhi|#$^eiW|lbnp%x0wA<
z-$VR1jS$@3RSK7xz8O})mJ3VwW};4TR#bZ=xQ2lZe$hMuZ|ZOArkI`65;4Wybe(}{
zTS$rK`C0!IL;%3qM!U7wde;O;@tt7+Q($8%Ncpe-`Y*9+#Wjr%p-AqZoN3^CfII*|
z3S#ts<IB4vcMzZ09H<V2AiFk7uTManWv|mapBkOyPHooxH3uZ6wIr^@okVv@z}4%@
ze+1PffoNt5OakikYD|J%qm`LlOgSn|Z31OxBZYS6dQ9%9{-D~-h>7vj=`>@;<)_hX
zMvUpx=r<z>cswm9cXaQq>rA$WpGxCNP@|ZC+0oa@Cun^hn$Sw|wp%USV2m3~e?Fy1
zY)S`e3@28NOo+4W_2|)gi9H+L=s_BB1y7vtu<&G~Lu{Z+UI3Y#1_qFVE<#>3R$Th3
zk}rT_K9D0u2Qy$JKR^~A2mpHw1>o{E1&!MB+COU`q-YYA)qFk$|HP#r1rUu%VP0N;
zvmi9XG?Hm)98VO-X;uVU7y}V|z=CpF0LsJ-?+Dodv(bA0)68<E*p3((^U9snyiQpG
zM<E@&Q#aX<G6E*WrBCn5A|{mwm<Bl(w28~usx>2`O{S2(h5MNh6LVVEi8XmX-n1}a
z6j&DbAV3x&U6|hDFlWTQ431w6k}l|fm31LBk>=Zb%pnmU6C502$>ihvuGY(A&E22I
z${8_c&(X4Ztnr??1@u^i&fZeG|AsT(a2hW$W@Rglb_Gwz<3)?OKJk#p-X>V^^cGR0
zK<74flwA@4mjno4uSWt`=v`bD(912>K^DOkrkFLwK1G{LOUYaCe!z@{aq<6uive=D
z0a#<cb6*_e;{UJKmecY7^;eBD{{IxeZ{L=F1y|T@0*V;uVFz&m^48^Su?DCKeq9o)
zVd>Yoof{u|w%B!q%1e4u|Kqc#HmBNExq*khJP}ci8wd-qwk5t4?hx&GFz<E&e*+eT
zo(0xd#6Pjy341+!11i-R7+<4*RcS~p{W`ZLGP5K}l1NVR6$&U{vXFACQCOi7;Xs_=
z8cn`v7^Cz9?6DrG{2yBVKeUqUhWz)bLijfbkneCARQYEGR4yv_?~*)dCNzeave8r%
z*Ck%f<*I_JaVfy&yS<tPTdEQ1%lT6Kx0)Hz3r2M&^l%R&JHJyP+8ZW+>mOopbobQo
zOB&?>ZTP+(BW_e6$F0$Ul!JwgP_v+b6Fv-BmGmZIBkzxJ73fJXdvXwUM6>~ne1@)*
zZ|B5J&1H=WX*vd53dm9|6O%+?%x6ND>9r}TnqWdkGoYE1aO6d^Yb1p^Jt~-uFp@}I
zWgLRPLg>i(34LEkk=opU8IlWEv}b(z^65Z97g;c*2vFi8@G<Iy@(Ez%*pwT<z`-tN
z$mW_o8(<1vDjB5w2V9Hb*4V;mK@_XBh8?NdlfD`&YE#%?B4NapPyNR)qFc?klZ)^?
zdsjk9N{fir#M7w>OpE3OG>LZ_30(B=)bvSDo2~fz*B@&7q^_lZ&7DPRkrmuvt3}C#
ztw-@XJA9)AR5F-#-+@U4Y$T6KAe=y<hb_oBAGyL{4Ul!onT<Re1_-bLWZ;YW^%o#+
z7T_b;<CXynhQg~vgkKsnDd71Kg%kzC{TOA^jvS+c5S}?w1pz4CB#sOgg#*U`NUW$z
zl4pd09tk~r^jaBJGYr|R#vf^wWM*9PDj6$si`xBwl6R!&%-ez=CY%f9^Sx0`B(vWk
zCT5V<{sQEZD?Ty&0993SW7EtZJykAaNRki$k_Ha+VHZ1?VMJ>N+Q>k78JB(60T}^M
zmzUQ8B>}pZz1IORfB&DockOQ5<`RX!^H*Tx%!!?`=vywW&g5C+CTZ*Qq={FYwrf`2
z9vdPd2{lEq1ZYQfa(?@}uyG+kf|O)C&eM+hA+bnc<G!))JCIf)*kg%myfr^OKGKDF
z{3GUQpk@X};E&Sz(0vM>Vq+q3U>dGFCFK|=fjNNJ*Bhy-e_DwdE9sx=P&&)!kE*|H
z-+c7dyyYn}W_0aYGGCe#rO*nU0CBRpWWIvid<$)IGQS|@3pOw0T{-y2bF>%leH(uS
z*=?Kf@^D+cwWT{EpOwy(DrRKY*XXk|>nk+smG&07QJH)cB!{MhwU(_dotX7Qlp`*b
zex`FJDL;WCe_k7ZI5Qqv@_6f7$ja#&uL{uXnHM&pMNd~vouft-x9hA#o5Aka<CL8j
zWkuwcgYA0l;i|>y+PUAXymOaaj-hEYDI!;xu49u;^6xrLnv8FXeYLU*VdW)iSRbR(
zG>&9OlCzZLt{qNcpK2H4F5=s9UbalA>SulAEgcpde}0>>+*;N`?#eZN^kUnxDXrE5
z)`@jqs>uS=3SXG0bX%6$qZ1I|1KT-aWm2c;kh?LU6_ePD^e>BTCP>`2L0UnR-~O;=
z&E^cu^gq-rmv7T50k#}vlnc4}oX>)xIm@YF<!a;L1D~PNU`Eds@OrDs6KO^Rl!4w{
z4d$fcW#pAjFzAUukb7$fSQ_23dp{}jm<KuZ=XXYPG}vzWg*kOUAzoxuKq>EPc8B&{
z5+ZWq-Itr9$e^JITgd5v*?FN~?NKx{!FXd?-i0n1x!!N_7V5o|uddL%;^IB~Kb++r
z<i3|q+5sCA=_+ysHy2I48=beU{irvF+m+FmeA)pSe?e7d1N6x*od>AB7Ft))TWqD3
zct>#Bvk>t4HrD}C4K<fRzU*HG=ttKgz{lnqD45<7$XB5ifcoJDP*9f5f3Q@C?ZGnr
zzZUJ5EF<v(&#z?z(69gB-QR!w#Ml4t@5=w~_5XM9EV=MD$-EGY)$hG6t<f`N>&W+2
zX^8<qWSW0Y^K|5DO(J9OGm4N_5|8ZN(nHK;R^Rst<up%8F3@9j6nk~tEyW0Q3*zvM
zLL@;ey`%MuSjL?DVwaucR-Q<G?+p<yC}eBWBOjugafKH)L74eou+${7f>tO|1usZB
zwwHR_0U-n~8t>+ppW6W(f5$~@a^%-35%zD1{Ou1gxa=Hfy)=XRWs6tqoDJK{9c63S
z(f!-$Yf5>-E=ajp)+;-;nVs?VdyupIod*5$yVq_%%-RmRAUpf(Ya_|O@w3MLKc;yq
zck|k0z>@oaZ|`x#{%?POZ}0K_{eKtFweJ6#-P-y}6vB6EFaB!~e+s;UU~<s(5UIZU
zG1Q<>7INn$+aUvs4VP}`z1Pglu+Tumu#CJT6WKF!8H`Y;t|LOIO^aP?O74;OU*uVe
z|L50c`|Ps>|37{Dbhlyu{q*VnvwQr17mvpOVJxnQ<)3h2tV+TN{9?}_Xj9(7%Pniy
zCTz!-RpB`&o@b5Bm$=*kC4XH9{hO;1XBoR3@|+e05kq%^(O`lzP6k^3#h3uOmKBL<
zvDZ0SY@-JkayDGKmt>J4;=GY}K}q!a^T?eKUGEdpbFv>WY3^^wiEZC*>62m6$sg)v
zGxob#f@#La7(6@GNE@rGKBG^j+rFvM|CbNy5j=Ht1tCx^X)MwL%mUL(mtNfgCVvM%
zkdJTxN_&iST9r}Xr~sN(dB|U#YYIi371h1}X7wp-^$;QZs<YX;(rRt@b)%Ua!p@W%
zgkR+x7<sbbULdwRp@sCjV~>?i)6me9ZRSjv`$L`Ftu6m|JOv?yRW?nvOu`kbR~h*y
zoPGJ%FXsGfOrYxxYrJVHNIV5t$bSe;tkBMdwAPUh_>()c+CXK&+3T)lwZvDS2mL_$
z(AltKtHAYi;w&{c-6*o9CCvd3^=arG@J$a?C`8*<ql`WkZqa%-nB*eiBM)ES5xB1X
zK`kw2SACsjSG&mTX)iAFN;Xz~Y4HF~(0j)S!fL;mQ=XcH4<jcs_7F)HZ-0aemfE)>
z<GQF@GQof(Mrh{(mpf&Z?{JcoMDQKo`9?FM+OA_K!EsUw3ujDlNy<~f&PjePcu>=V
z>s)dhe5fQ7`tj#?uj^SsV4icTzG!T)R`u3$%WDy~PJ4!jNJ%eGHEoGLoSsVJ_S9J!
zOLhI`OgC8eI=u_|B|F7&B7cCEJ}0DDtMP)R>hmcs3iktLr^Y>R)qdSUm*iZ9yJK;q
zyMTk9wO!ew{`N+dm_){>1uMmAUd_j(3=C)R?e4b+gRWM)jT)B!ecSxsGX7uLeBVq4
z(9i!r-rIk&*Yy8>vUkt_-^rs9u%zLd;fCwH#9nOCPSNdhPXR}k`+w4wXvhlMmPR$O
zRYV1r310=smlr176{pV&lE}Vtl95EPQuW*Mf*m;)Vyk-s*W-DrdZsht^N?q*{`Law
zL3Qa1DwqC8D*3v_YdWVvpWaZpJ`*~VBU6<zzg+gGtAe^58g#DSIf~})sHuWb4&D)+
z{RMsgT(T^q`Sj-^#eaf~P+n!()m4CxLU!@>syIrEt`Qb2ZS8irNSZsoch@(d)T{YT
zP%I^%%-b#3+WOx#iLK!9tgrhjqtLRpo;FCHHd{5lKHuAo@t;58@|=j{3@0QWQ&_np
z35rgrQnCbqt5el6gp#t7iiI_luY1(`G(v;+rVjxa1o*(_hJQ?EB&{-1`fYlzgY7jd
zhT3Y`knhEN2gBVy7qlO!aAGNVi!PbPrep+e60IG3P4jb5A^x#KIpF6`AivQT8vJKY
zvwsY>9HC6B!bp;Y#OaaGT!kutEHv^qRggbyE9<VW*wb?*uf-#-@+Y;-e*020Ik=&x
zR0!)XgW4K)cz;8JFySbt;)S7(9ehQ-_dOUo1jXl%Tg#$eBo6crq+^YK-jR&qG<H_U
z320k01O1nFeNzuRqf@wFdRot0OxNl?r*k|daZ0Cz3m*o2@ln81I3+0<r}FYepFjWC
zIyG$%2906($L&@+Hd?2qz|&B#e8yjQ>bS}>Wr4S5_kRjoG0;{c%1b9GyM>K0pgaTQ
zV`Evl|IwB0bgG~B_S@U5H3PWxWlHi042NLEMbcqP%jY{pBs*#V4PXy6+kRS=85%uD
z104cyZ~s}m8}G(@qi=V=-Q5}PlrZW+yE_1mKykkzMO#p86KL?cbt(@w`|sRoI9_2U
zRzH1q$xMjz=JbDM5UYBq!%aTlg>LPxxPg112m7s>R3jZ$W%k^Wr+5?A)wZhobD6ap
z>(|Wnp;n2}56dZU_SFdeJmJ1OkXpMZ2NEt9#xTwL?JA)q55DvhVJsV`N*eQ$maWk?
z&ytB<yFwRw@dwE-{2C;`xILV3D<=UQB%7GUEANpd*F79=*Y0gw=80T8t=j>&-mY8q
z%E;&i$qDDjB^x)Fm*N2=0p^#y;sG9i0ci3k@Put526gUKH;1ZV<0t{Ma*V}ngu)bw
z*<Ww-Y~itg=vqkKn);{?w=sLIk6xYF2iBlX_&3HU3)!FTlDrz%<@Aqssd_48G4tz|
zH;;4ug{R4lWw_RMabDdjbJmSCOzzHgSSzniCmR)pd@Yu#yTL&6!I~BN)QlZ}RR_Vm
zDVOB6wK_*+Ede12zu%sI`NggWD`pB2QQbm{{Gt|0?Cr11T6O6+U|GJ;@RVD9<|=a0
zU`2OYnrErCyTTnRi6FV~1bXU`q^vg30?VqpWGtvkowORLHCD(%IH7+AiT#caar$R(
zhuYwJI4gzz;t9<{FxA%(3hvT>UO<mS6<Py=Q0M_!Za0WN#%LALtwfle*HF)dU6Qe!
z7S1vfXLMZRk`k`O2#%UrmpHX0df`~5bQc`nd)d2kMmRDZoa3s@*(w&Re{~)>r1c0&
zX6n@{StZC&6$|aIZpqGyJs4w7dfF!+1u1i!88OHzwfkw0y4))KEaaPiT{?@aGoQUR
z)|j>#<08yFn=hee!?l9VF5~OMRt6#|PFQkI1k`#JV#W}p)%bxlB%aC)EI3!r9s>a&
zP8ZFpp|wI<jn=UOvV$k^In3mT1(|G2ek3?0ZNZQlm;R`<j3MIY@rojaZggPhxHW;{
zS?B;yb1Ep#UXlziPDsLk^0dPWz}*K&PNgQmf|L{-;8z26>=tj0k<JOL#LB?ltMW}S
z6HK$JB=2V>;WL({%K?4gsL_PTE672%2E>y_jkTmZU+t952+qXp{+!*}IrBEcjgFZI
z>4vAwgLQ*L=E1p*Gv)#8KVn@}`!cCvzfkXgz{w1eiz}bYHn<>{R^<UKf3G8mv^VD8
zMq+KiXx@A&oSSg$j^H?Ckk*7#3znO5yl&R|N69f@F<UA!|0~GAyN7uV)j+^P=r275
zC*bb$w^-*6qqY^b8p~?lRC8C08NZg5PzOasQ<C5^WcKHY$m9mtMh|#F5;S^_)&k=m
zq)zpXv7O{#9XilW1#W3@e}sgO58UDJ28JKF&pp+w1hNFg5{XjdMYq`Ijfx~z*K}Tb
zTFx}*Mm?h=xO`7bE`FtA_M@s2g~#VqY+noZqubN&j$2KU!Vj)3XyZ#r(bB5jwgFvf
z-g1_b6YUF8_rQJIqvr7{U$X;pjSe%4xl5xsFMFDIt6sD9H0SDufAZG&g?0+<)+pI(
zE43TKQoIW}bt0w?q_p0E1<Od;be3>l_6*vsy6SYZvSmy?nMlUH6+;DFFa$j`pKa$%
zg;A)P?)k+nK+EQ@8=tqmU7Ece%y8-3t~5%FJnH+8ik2jOSxGc}qTCH=K0TV|%)Wm0
zkt7v3LpBHo!3vhKf9c|%B#4C??Y^%|w`l=zN;&a7q1*?2oL+q_O2WDCNaObB>Rfgt
zoGo)3u|n<{R*uk7zO8slK0+Usn<f0_Es9Q$vBE-dHW8~XL{X9nDX+Z}mxNAdVubc~
zo3a7frda?|&f61ri;K8)8CP4#J6p=-sL@Q$Ng>J87cA$Zf5g<IEjx=`8(ktKNI9oD
zAh;h&ocI#H&?@y-sNpI`)$^6_V~7pT=?*mYeaYtP+V^*Z4Hf0DZylDdoxU&>xC(v#
z9LQ1|Fca#oZRw`996Gy*!4`?B0x0;SRPWw&s0I5bE{OH7!?^b|b2DAf?{+PlG~bt8
zN4I8~cdJ%;f6KOBy;s&6-infhYfBOCpxa&CfB$A#Wrx?lLkyTgtPC=!;jCH0yjPHd
zg4!My?91)MTUw(pKMhNzA&nq6eFbY`I^;~aRPx!OQD_P&gQ}QjsTUch4RR%suikXu
zA?=22KwC`b`Z8I&$``&t;C6jUJ!+|ANp(pulye;Jf9uD72wgnOs&~pzLQ;}p;MV%m
zfluxqc$UR~fdf69<D5<i7yMd*V3x#x-Q9imtP%fv@8IA*|Hqv?S67Yu4i@|;v)=Of
z4u?Y%L@q`TH2S{}?)>+7mYx3@!D&V~AM%Ujx>2B(=KtAip8wsay9f8@|1O?RTbHG=
zpKR1;e;qwyX&fgPsM%IA?hWbG6VGP}tj^$?w-eZDjS*%xO!RuA$xO(b&VgJbw$#vo
zzfq7W9rOR_c!b`tTvF_gWwfE{XF`|&dqszJad6x^UW#vZT$D_(gk>Z2{>8D8YvFQA
zM8oQOjfI)MJATpR9!%$_WszK`^8oW&BiP&h1a^1tT9<w40Wg2Of3V+-|M>LT{r!I@
zPZ-&lRd?@xS@MDYa9GeIoyr=Go`*A<2XbAv;GA^i9Pb3$ouqtuBPLV#Qs8w;?*LFI
z?=ARydFljPN?!q{)M^Q+QKL2><F-$k?XFYGaqexZ<DrmOxH&-}o$qd^ke@?!%w+b|
zgCe#r@RqVB@2P+06zUB(8qAT7Y=BX{LzYsd7R>bs(NOg}pgmV|KJ;d^nXSal)Zw@n
z-ju++5nXvzXBAkAAv(rNo8_QO&9@=Ks2_qiFFMIUkBY<qn=vlD6fqBUoGi%Q{hD%t
z20Kn{sv)S;)SMR?+MLjm3#hcEL@$cKgJ@T^C4f9Eut$IC#5-hl^#4s`x8{7U9ocuc
zj9e#RjySA!c>u}90A8m&X>%v?Z4@_1LT$q)a#^OhP|p}A=cE}cpw$!i&T8A3D)iVk
zAgC2^E=ms=D*&4ius={S!aWe(F^obIbKAK$t98X`WYt#l)ZgU8P7c@XYhh4{$TW6z
zHd#-d8a02~t#dE%|C-M-`d??U9je5|*JA^g$^V}n>^9~9`@8q@|2uga$6POWBdhg_
zQQ!T_9dy|nw~&{=^RB3k+o8e?%>uc=ziiBPjX>)}-%b>Qq3cZMAoEq%f7$sj((#QG
zKrT7|d(RG@HuFC|dv>4y_fDP;BMX+kq`a)ajO16lDxErd0K?1`>G(u@ba;{Rx<UBC
z@K(Vnp?-AWmE(5NzX5jn(&-$oYRBYFR-(-r=Kmy%dT|GHnjc<Znt>!|D^vh~{5i*U
z5gn4<e?3BbO&&_O+~1b$0Uv*3mcF{6kOfFxeY(}|0)7v=%e8v5)-A9U|MTKY<Ny7~
zPY;^%-`)HCzjyOo_2+*#?|{lt{yS~j(A*(jiipGGBaNnc{3GUQpg4$~i@h-scyH&p
z39)r4_!Vk2?^nA8B!4@Ze!8sw+f&ysYDC>O{*PN{-BO_?y`UMHlC*zLVgX5ikIjcy
zJi!@OS;)K+Bz4!#5Sb5O{P_0QHxHwRng0+yv}UOf&6}XHrTuCw1?>xE-)nyw`|yW#
zhm0wDP4Z$fJJ$LBc8D;l*+8gQzwG+H^4GDEZ@1aDdGB*i_HGi-x6>>Xz&m>Bzc@O6
zQNJjw{E+|5iKZ0FN?w0q58uhRhxy_mkP@$HUVZHTUKK?~<|G$5`$1=Db&CE}aRJ5E
z!oeI_Dr5tF&&n}P5l&N@Pm!1r1o=cE)oW~dl{w87DWIM?{y0KUpFBBu5+O9<(CXbb
zY8K)hV*(Q6F1R3bGp*OXRR2QH()<7VW?%MMcK<(n_N0CP-|K&W@8r2!JOAIBX8BH)
zKqE^m<~wc9jzd?DM+&Ui&1<Utdf_ya%iX#L5cNeuYxXSj6n{&Ji$-_vS_Oz9FxO8k
z?e&mvPk&u4pnhFpA7~#G(E2&mHpw55LUx_%nge!U>6~nXMvmt|kyWDd_+4$KaqIQu
zX+cxu-FGyXcc_1yK-IO@>(%-ef;RB=ij5deCHbQwycTHc(XBWYDv0x7<yH0~Lb$>e
z_fV_~q{ohJt;w(Tc=hjfrn{BTZ;fQa%kKY@Wn`?D^V)R4GWqY`?q1XW`^oN;`}_Yc
zo|@n3#nSo~nv`t*e>lqz%TmRe91e%wf?N<JxZ>IewYY!w9m@=w@UHD^T#pZKoOSm>
z=+;u#QZ@daBnmqXk!SC&vn4`Lm$%oE0n(aJtaW2TEqOBEkqKOy1y#HgQd3@u87t|Z
zK#s)c-|(2S2<hJIz(8{T-HB@Y7gwCTvZR=;VK9|;0J>Mx|K*=$_}|zMeo6b^gT2Qs
z``@Sg_xOMRE}jl&1HJ0E=li1pUf10xQ2pz8_~?$T;?(08y<I<^8}L~D1GBC@su9Q2
zC*VpFs<V^>v3pA=YB)O9Tfup;!d7srch2pSMPxYr4re$|>H+)j`bOQZeXWL1fEjuR
zlFfD(+^@dD>4Su(Wx(inwKgCs(v=3%qd>g2XIFo~?EKc8xisuG{hm5%1-zWPo4l#Z
zm<#61c!{|!TyKKb^aWdj@6(j3P$UxCY6!Dgrw4O3IrxSqvqzHIwO@5nPQ*J>WHiCe
z<#tLmqKOqO9bU&Jv*+}*dsC|aoim$pVgqR0*blFJCAo^R=EpH?yzIvWt@=URV`Wtg
z7U6#Z35bCvly&&v-eUNM&x-UvR=n#MvH#sW*n85l|2?>u|J=zFIP|rsq7E~stU;D=
z0Y)NnLwQa>DRFK2$_>o;R^UtmGu6+bII*h7jAbpo0<HuDg9Lv@-?MW985H}zhmh|w
zcvnsg((aChhIyMEy$1aM0h;-{d6we;YsP<ka-V+u|M=j^ZrlFvKK|3)Jj;Vkbjg5l
zQShDm3aD$W6$oY(TeuaXrub+#sFu5R?R)>gRQ1~3cKH~rpr}hD|22JbIhkLO@&%h0
zxFl%skLPGF-hUQ<95{aT4m8Ob)mHjiBObI9d}k8!YO7}$@a2r;FG)rON%dIE9G8C!
zG*B-GXz-2*O!L+S>dt3zk*MNt^Ao|<pJqm711Aa2ZVx^{3$QXx=gsTI>iN=s0Gh4r
zNSp}YUdRjBl)j*HX@8_#uyWBEBr;UaNR`r`aE_;7Z`hrB!kg}P70oQ_8P#*+5TBh^
zKrB6M;vM<4a8K{qZ9rKi6nEyW*|mRAkQ3IwXLzq&?6YhXubYUc)rLVn2=&R3i;^<P
z@Zh`7E4fzVQ`o*C0H9^w5<t5uzC9`ZHoezjX+oo7sI3;_+l%)OhP#7?x%)qBgctun
zh5obd%$3a>vDq{%hWl01xvyz{&bPqqXn8sG2?=%rId8Vm;6HPk{bR6IH`#x#;3bP`
z`<sU<82jRY)X&@5Z656U{Mv1BO8P*534UpLVkEE?Kgy{H<usz+`yNe42ueFYNdU_v
z4)hL8(HGUa9Zz|<gzD%OX6EfU`^&?zJ5dT&?>XcSic>lzyb<XDzW69$DV&lNj8l1U
zq0gWHYn__52hFT`?eGpa?%025otgqqL%nK7)UY|2%*DJ`_X=Av(3WSh+5_q<<~jqs
zQBGUQ9*4tANkox!n9}ljIGZCl#_C8+r#jNh0D`sb?CkA7i+AJQcyILW?zg*;mt2l|
z(C$t+!EtBae6PXh@~X|nq@&q?=T5`%3Nx|#>GSg7qeh?+Iei(>{zHG9rX}J0`7U&8
zcf}3d13lPp)ubBfuqw0XS64PfmN#KtZL6w3msz{9{@_c?5(XTW(?Bvo6{;qfkX8<)
zj@R_u3)j>H5(*&W*Kbz|E%^$mAeW6(@pvz3JMnMxEVXkKbatT^e~|pbuR-#Q+rtUB
zauU4Q4Q4jH@*Y`o-Q$0D?cRn%3gyj^SvLc>-mY8q%J33=`(T#j%)iNwShaV4ihm!D
z|Ltq+ST{*?;DYf!H{(653f2q$P&d$@G~K4#bRm7wW%}FXl@7Ycu0JCyB*MMf4!yN>
zJLtBPKcRn}G{sk5@a5K6ug#TpV+&nwEuPA&)5$-DAzzDE>TZ8<)KyCIKu)yO7c*Rn
z_^>EyiOtRUBd@X5c_E`{XY)C3wx?fyv5Ub9m_p=Jw|FAIa6(A#ugg@0`=Hn5`wUOH
z$-akH5n~1`y3^7;Os(zJCDRP@U7Cm`<G5s%AVXE`c}S$$$+xYzETvJ9gnFR8<zm6p
zaa}SNbWQ@D=>UIqoz9#n&%0GS#Oa^C9cqK?;p!AZk0&$>!Bk({*tbh%2mK8p>(+1z
zEM|cQJ3;g@WUByP7OP@~sggT1VL4|Ri8DGbaY+eR!V5>;uS=ZT61{M&aX=Rw-h0El
z(oHz79sKI5Ea6I_kpJSGcYEKCF(*A($ymo5(Z?#a`^kTfy4)%}tTo~88$+==!`WM7
zjcJ2GDnW+Xd<iuht`%%{87~(OgCLUPgeB)hK&@AyjD{-c^AFABnQo@l?wbdMemGq;
ztA^GJY1LWB3djzgz~?Yy9~NG+G5L|;l(dCGYFzrG(kzC^n#U`O5xNhfo#WO7hG(Gz
zJk6<~ID3CdGQ8-?q3rL2Bd1amV6iM6vk$5x8M7WEofB4xm4Uri<(pt8m}XT;-p@+H
zXDmyX1Ny#EqY05$5TIcVh$oF2Ye{sz+9}gP`tHx!U7a&;Bi!hid5~^+$~;&%IAk82
z+c;w$!2ToFY2s!DapBav{Q|xJ0VgxWM6P@;+u&h>)Uyk*1+YKww0eM!RYig%ZRffC
zTKHg<<Kk`3W`(s8f(Na*8A9-2`Ngjz!L~Q%-$q*P2{V;3<}z;BF%FbGftC6U{CwgA
zv>EUT?2K2o39*nNXytW#u(h?dRFHf<mu&U{85r{#nuLHw(_eZDP9PHN-(sCRjPSY@
zSN)fr_5mD!ZS;WaNdId9@sCiazR6g5a<F3^=%zwC#v;=n-GEPfyQ|4uJ!P^4vIIoa
z$TRHxuD*LAd&ANr{keZd(ww_??eej&LV#Q4``6v7t<<r1O;Q_QLRz0z?Y1fEO4}}H
zDLL`N@F5+TpiZOGc{aVu*X)2?j>C*%?vhQ;%bw<c-Ky7YJ<Ykgc)T@MuX<XptF6>-
z2>tLbtka2cI<U=p0~RbJWz*5ZdD$~)x9Y0X&B~Tdw~08=c6>O@1@!|O$j4L|g-?6e
z{Nfg%W%JhooK6t=V_9zpGhF(nG>sA?k0JP@q9sXRRuadaD6a>aPmiWKv#(!$BuNGF
z;Tv>+fM5m7*mUtv62wA{cHh^f+gCg|wD{?g+y}grUVSV|6)U2}4y*oLoy(5kqG-h5
zP*)Wz<ep*W2p#3yip}LC^kKP?#BbiBXs75E7J{>hSal(al1xZ>?UlGBbUK45FimlV
zY||_NDd+8pyTwIZx{RwW<ee?$a@1%h=cJH-RObtpb5UaIk&K;1u8l5{WOU~=2L$&+
zi4$Mw7+R&?3N>6WV*^^sqZ^zPVtG}K?@KmU*S^0SY$^zUeJ$13z71>*!z*iTo*b)}
zNjYe=)Lq*WeQSAGc4<6Y^rK2y;g3?i>&hnEH*rC%e;t0jpGPxEDEw~M;?j1KiWNG4
zb_4soTeZzww)N`0vexic6cAinIB*Bu?qcfuH_IwJy#5{Ht`uTrg$mu(EMeZ)p>><}
z`&h0ow-aw^jlTReEERI}2Uqh7*2MI+LdJV)pNra+|GhB`GT{On!GhG7`Vu&(621#J
z>azz~RVG|pe72;+4a9t%oDu4|&CC&hzD%Oyo?4-+t>h2Z1%34nHUpS0>6-~0p(o`Q
z^Evnp2ell{Yy!GV*UBld)<ie+M|hQQkVV29fS*gkng0gCa!Yw7Rzph7#tm}y&zZ9x
zCL!3UEevcTEnO1U#EBl^tgQJE!Vb%-cghMw(!k;0GwRf`_)ixF{^I$6pSJRU|32H@
zyU+i7Cr|j`U64}H1ZRhpU_8N@4L{*$H|bCKh;?O}PjwQ4or}GlUo_}rme$Z)xgUdd
zJ#@3Q^q2^|@19ddcm&(OX%fldMS=eXvIVP1!8$1f^2o1&4%gL{Dkl{2OQXehfUhRv
zR3%=LB4dj=$wf0x#`R)WRYi(_1#!bdsW&PcQ5)R{Hf>$Or2yYfCIj>d{ZTO!5X#UJ
zZexx`b4C+Nf)bfPo2`0I(;4LgqP74L^a+WQ&im2`efjer#{cn*WOE8K$y;b+3I5-G
zvfs@A_vG=j`}_}g@@$}EECeZYjs!z$$ssx#8do%fyqX10&heD+INCse?`M=lrcj8?
z&1WRb&@^LXCGn;CbQ_f<!-8HAkTf~(ah^sSC?`|kb<n1=&m*bgnE!1nMxgFzIn<P0
zLIo*NMspHJ@ynCb6TwOnZJ-xyK4&@l<;4j~Y00B_O2rQRtGXY><3GzC_}9FcO?Tu!
z<|n_%cWOXmoSat$n$V1Y@aR#@FN^3=JjUnIqgc#~=+Xa+HqbA)q^#oT=;bRO#YM?}
zCy9t+ni9OD%9ZT*D0=(rn^*5n{z?>K`24GJ+*TXQ&i~$Slm2_W|Li{h=bb#bC`xt#
zrl&(RpE8!_g!5>KrWEI8HKr^o$ps~sy+ywEDDI!@KH>BK?$zOc%b#Aw^Ym8QSQh{H
z;OVpG`G0zFfB)afvw@E7vPaQ}`p0jZGa(8-+Szd<e6gLaZG_Q>7a6Nk^hRCuFW9`O
zgd`QdXH}lU{a#m3@?-)Pk-j#!5#<OYm1>(q!Va#&?V&l#sbHl9r9Q{#NT7se8A$|3
zb0SKba7aU_#q?EwNm9-CaD)Y#(hHI!nhR21;EZo0a)Gl73&J6%I3l%DdK;yb7a3k~
zl{%d8Dia(C6_nsy66ez?DUqb=1&3IWY))jmDnE%F1{(t-kV@idOd!ri97RAS!Kp%H
z#sn87F659`nO>AyHVUy^R{Ez^jjKwdogGhGzGbpBp^BS-Jm?>OB-y-fLz43`pKTdh
z4$UEwY8gk-hTH)JEJQdJgh$a3)h(jEc<<Z)h=xeQLkID*|9~1l5P{y+;TDea35%k$
zvoq}g9Le@jNeYH=nxcAy!-UP}71&L*hhKk`wA`#3%lVLyh6+JBP!(S%Ta2R96GG4j
z`%QJJHT0c-lqDQ~z(1$5=*||Ju+oHAKq*TqNPiC=>!&c#qnrzzWeCDVMA3=BC2Vw{
zSub?Rh`p!r?lw$&y}o++wdD=3=MT{wu`(qk(AyfkcHNOI@FGUXpa)0Ej3no1!KxCS
z$v&S+(i*;u$wZRry0+?Xd;SgZ5AR;Resy^A>h#Tj;ZLuA3$BK<3htzuBc@OEhWC35
zjY-BX<wQA4pc`E}|GL}?OYo8uM6$<{m5!qC7M7V7^(oWPII438ZOem16ko0O&q!|V
z4{)0G_OE-XH(bKz!42td!yQo)vNOjtHy5W1a!a-$kLM61DnpI3ZmFd<U}(<)l(Uo!
z$w$e5pWWK{y1+NvE-F5oVnHtPBG~dJ&dy0W6l}h7dk)C0D0<H%%Esf2z-coJoGefZ
zhEv{&*hZWPbmlIOk!+o9qqFu@x?j77Y|FqcaTe}rT}Uu=1`%}6V(*mHJzsiI>Y^*0
zm7jC!BdjJ)sPZsYP^TX5t&+^y1>r~*lC$i8Tm}i77c3{aylOdT3B|(j@3N#ii_kZS
zi*D{!W!B?OfbGZ9@!OKC3}0Rgavxl1Azd;fa~%K9Ssq1)=)+n2{aHr`1S@F5&5qnq
zHHIJ~*aA@jnqiK{gya(EC<5RDXH?!xdLndV=+_y^k!gB?=h;~e03$BSDiKu)wel%{
zL7OxtG2ELN<>V4gD9O@o^Hn+PiA6!S5fMqewT<R1rIQ5;4Nf&Q$9aXbY=Kyb$|_g4
z3DQHFk{mgGL;na&9&BWibJ<I|r0NrpaT%TF?j8WGQ9br|WTI|5wd_S!O{wm{u<pQF
z5M7+(vMLISXV1R*c6X;yMQsKR&pq~k@Iy{1C?fQ>n3fnsSzV_B3XnB#N;DkmhFgS)
z2Dp54t8&Y?_6B;-(EihS*B(+sBdDZ~=1w#u37eSSR|F(`7YFgKq*7!b*<?Z!iZk?K
zPN(WJN7IVB{q>1b=(WQhszu(hwRbk0sX7?$4(*pAz>T&5D||4$&Y2}<J1-}H_fK7q
z?+85IQ6o_^HkV{jN(82vT5B~=Pt-gSbY>kT=S+}y1g9T<i>orz=-d1HYe@w$pW)DP
zl(S1C?KHXznonbNm}TrzZYbG_GpM0<yrkr22y=911{bhwjLAnlFES!WEH8$`e1S+V
zN=mq-4#kXcf-Yw?nW3U27nD_hJX;vWP>Rm3uFm99KKuOn49zPpB<DeRf(vsH&#tb}
z;Oc6CWC<9leDV3SdQlQykVJBBlGuEu8&>V5GzI_ccDr!8js9ks(Q|_MA{Y20x};eK
zmBs|&$%G_=q|RbImW%OD(ZOxbBGPk%_T;L{eJk5Jb#Luc$WDP1k{XJCbdC!h+Bdj~
zey8&}O&6TyJI(T2YJxs^M;nY{)%WEzlQBvTzH>;KdAifx$W|P^`Y1|lj{GpAIYGFb
z!nx;QLqjK&r09ZTbhb)J;WLCwI9YH@V?iaAB-b96XIv6|USnx_uXOj$a3I^LH0T?6
zN^Ng*qZt}!Y`n@0L78}e%C<ayX^zj;Mg*~CQAz>?;q>>43t*UaPf5?*Iy>_~?M$`*
zo_PDOO&y+ERzs95t>kXRh?4?q1gdMEHDeKK%m4@b66jY!^TgbcBkwZOAr2!jWSUYg
z%Eie3RVVUy_}md{_cXvIs0-?7f-p)dF4)|lE1(ZpiC(-uLK6so#sx%k4Iwtfacf-L
zsL;DaRx!Iu!^KI$N_pjGix?VSunIP4W$)tCF!6jEq9;4cS|UtIP2{2|qRJ*tRp79b
zd`O!tDvsSPX>h5cUQ@$n*Il-q+D0Uv#%l4#n9m|PVTs6eRm25H!>q%x;dyv4Xqdb5
zui-GkJi#e>&dOqchI6%qKXX!Ym`I#nP_F1sC7`#ofVx6Z!b*whSq@z{;s|w-wua`M
zihX-|w!5#%i!)`lP|v>N8B!&flZ_WFwK<DGAVx}PaT_)QOthXVD6MZB*T_Kb%G#o!
z-C=Z0$_XpyYF#MT-XiiS0>(>l#R+=!$Pvj1hPYq_np8P|kcTv%K6-?zTu{a77&4G5
zPDggn7ppW@S?#&)RTo>Wpqb`9GtJJGs4XpL_=2c;RdOy^<O!2BhZ5|e1HAz9Y}EFn
zXe>$ZqQr@y9-j87PuK~kvgoNTx}#d&*@~kRb@e2YVc0f3n&YAX{+fdc1DuVFU5=vY
z6MFmlC2Bl>pU|6EzcybwpQBI1z!QAwe2zZNNJ#~r62GnX#4Exf9gY{WEw%NVJv4I?
z`YLOEuy!1VsQxY3mZ7*+EnF1s;dX3|x-CN&FRKOYMxGF;<sK>}B#<k_)Zv%-WWlP3
z7sQj3*Z6D2W0w;v+YVwyqOki}S>=b^0izQKouN&CIGdDffemmeTchQtN}s6K@d-C3
z%8H!zLah&J3*_NMNa|vS1xgkDfD=*S%nWhV%`gtBLq@G8SvBW>*PQ=bplR!^dWm^W
zEsqz9Zu?6SyDO#7xHVGuZ%*RweJgjFa|PNP+qqc`2D{jgAMeIbVz+`vpvcV?sJ9Q4
zv*I6raf%E1SzS|K?vf&Ejy{-!C@UEfyo0;~khd=pcbeD`Y`DL>y9I;>kt{qGKy{>S
z+n`NJ{+LeJ)BJA=6*#KJT*<1GOit8t?>22;uc;ycH5CRlJRr%R8scq`O81DrRbO7R
z<eZd>BS8Yg-CuD79oGTVK~&P{@Yrf;;wbumIfr_@8mqfj9RuE`9zhfAmy)gK?9yCo
zV<sf?q8C~hkvxpLhMbLVdW*TMP*qf33gW903o>1_XHPIRct=#m^MNyxZN!;U<7o&8
zB6_e&nEs5}M@cV+Jg=;4)EW9;C|Kg{_;->Be%78AnxhH6U{xvGv2~%+PdKL&!UaEn
z+tvp#!MVA`IG&SGf6O*$&p$_0JcNnM2v-vi*CLkmv?Kd32~zU|cZ^vwiFXdOOc~P2
zUY|K>q@nFIl+qG-0%zV;+j38edXj9pxaP5LCaSf{+HWPg^6uijZzPs9`&s^qcjY8-
z<cguJk%DD%JYC|g;ulY&7$e0$OJZ(+F2`=n5aj09OrK%KwbEGjj%BH@{ZgVpb0;=F
zd8%E+Nn+5Ds~ecG5~Xx9AtlKZBG>y30~QXeqtz5tomoI2C-qyDw~1PNeS}hy(gZe@
zskPaXe0d-M(Ryn@=3@fdm`z{r*X-9;97W%`2w5IzJBMJ%jZ${0kdCY6v-{Y8!6^)#
z?Vib!V6ZBAQlD~!&AWk)a<um>{%8qP-HM`iTTMXnGL@6}`EF!%7&p~dTzGrjKLpRb
zL-4FV1nwo;J_BFvw!P80aNsnKMYyqRACRxH%bxzL?6PO=T?Q&FYeoax$Tg#>Pq5x;
z9BqQG!9C8~$kWLyJt*8t9zJP*8RM9BHVP0U7UO0+gJR8EHG#OYrXj2mN{oJSdK~W}
zr7!pUWDbg8-R2oz>X7(G8aFv664EOTsQa9F?fs=r%9DSUlk&8EQl5DDSg9wBh*#TH
zNPY-*G0gb3(#C_FPSgzW2lpIU^SgxQ7b^A2I*Qn$%Cenrzd6`%?<!?~WKj2zb#+oM
zFi1G%<t^DoW#XnQhBkuP2L$3GDb7!cLls=$fw#4oN?8XP6Ttw#)Gf8IHxZ9<QFKUk
zjS$X}BW-ucegn)}Sgfzt{9AX)zm0bhPE)SUKvd)iWrzV|gacF?LpiH_q6qzlvkve+
z@`%f+WD`_YIqVheR@Iw-o#x<&bN&stwxz(FB_#$qusQ5N=Hr}+nZ#zg<mHTJ#IZ${
ze2B)t^3)TY%$%u?<-m<m5)@ZmIBT*iMmq!ACdn<76_{1&xr5_!2tojJs-7sbOlu_w
z)QmIO{rIDvq_)`v@Q_B;XVxIa0?RSXvARrvIrXGaaOxZod$NgtBZ1&%kvmo1BB^Wo
z3H`&S1uY5QMn=@4W*d}-(^`FFRqm1njgb|HI4!3v=`=E4ZqK2e_m!1}Yf&RP@sbEk
zVei1nl{bZ)8BcKJNQXWGuLnrN!4Cd~uG@oIl@kTJL$KK9F?s=)lDyUBAR9I-=);VZ
zD_gGY$GgrjB^#iBG-|-X+l`{8SBt(iA`vq}wJo^qn!$2lrlq!p7W0T1SpY9yi^=6a
zeWeUP&`+ida?A2+uIEzWMVz-*ye--?a(szrd_zQ*rDw6c-K<E_jDWfI<+`YodQM2u
zT1+EEuy}S9MSHQbup_N&Shi^m{m@H|mMpqpIU*ONT+~8;1T-d`rurr;n)qiMaXP0N
zwsKjYq%gWCgwD>+BsCEsZ#yafU5z-jCZbW~dzzWRAs(Z+m}fe+MpJy&0o0|CI*K@K
zL`MlVYW>j&xlMQslPN4?3C`+_X(RM(e|KgpHwVORh!E#M)T2Xc1M6RK2kpgL@#CW+
zD{Rvz!?AmRe-iKhhsN_o1FIe>Qq86KjFkZF3QK@WJjW}XDYpxpapf`)++bGy1?W;)
zZ4FC;jRQywxiRZK(Hgs+(KwFvUkb*lgke4oQB`Imq#Z5%F6`if?p*9aE+rop%pgMO
ztvNnQ6+sZbz%+x?08X{?kpEH1qtMn(*zqZ=#TV{>o{vD}{ow@|Z_q!@)e0h4qzNYN
zt3dN<hfp2vvmIElQ?NnYNNRXPF(Zn(7%CiQj2me_-GWP+6QU)7x?@0v6zW=ljiD^@
zNQ%@=C-^qHpqz?&13l#EgR?1q+l+UdpIh6;L{-_q`Nv)pdOV<y<1=PWPgc^x{Wq)7
z94`!ip2-$K8iCqn%r3fG21F*w7j+muxMtiNE{kYY090@vmQl`}7~FWwQlwD~=)Vr@
za8RBjk&;JRLr=ehAb|sm2Y39?33b{qy1*qRVj+)nO{v<z2VhYw*}#%r&{V047n)2r
zwj_ygLtN=IE-6gS;ay4!nkOY46C~F|uv+(jj0%==O`)qUrT<&g7V6>z>MMtOikkF$
z26t&)7tWCubz^PMY^2Aa-<WD-6B=qtAjqk50n<EfuJnMC7j0d%-b`!bnin<%9G+r%
zP@1(o8(tXc2h9teDu8R!W?nBEzczfx+Ss-p`YBJpK%*h}lAv-a54jA%{V2DCV+#a-
z*6vOmG=1&ErU5;Hy6_EZccZm<QP&zcpRyg*-UtmOyU@B2Dce!;Fn5fhT%Z7?sTq8;
z`_1m4Mjm{|sw~xtS@)_kFwf8!bCMd()z9x<t5XV8mNJhjFNp8c7`FhiQk<E#YTif9
zO(|A^=u7C0*&i#LO{s}$`L)!&u$IPud6F@%^inCS<Rt)+R4itjVK87jRBn^s5phXK
z4ooRc2zPY`a3y}A&b_svf2f;iOI`;btj*VNn;Z6TQ(&PHxkTUdDic(a*Lsx9ME?Vg
zlxFoPM+GhgO)87`CskJ8&WZ$AeV6+#pTcF!YUoxnX$<WY-y5UvC3mYR{Ox*wvu?Ol
zP_zLQL$qO_><ytU^|3+9X+jS6q$ysLDe!fKa1Il#UpK+;uLpjACGc<vZpYgY4JRIv
zIGltg#(C`x$jVOMeRuexNie-*l0%c*S^o7M1^cM_8sL^hGpbBn2_|nMFnv=;#E2Jl
z<1x6PS$7&vL{+G^<<2n-qak#E3tZwk5u`+C<rpWiYUjB&i~@NISiUT**n>*iHc42e
z#F%3(f3{K+Q)Ucp3qu9khWJQznI_~=f#LDhmBV#?{;Yf9x~A2>5PkI|qj_c-UOWfJ
z0HdNLL(8o;#t=u*KhUE`?`iSq(FpywzOp@o8$-^VJsRp`RI-d{FDdAMm-k_;R?+dI
zf>ZdxYL0)~taZ*ngc%B#X!iCp*J!G~!Qnte5$yAyv?7sm-)^pC)pX`7d?iQGd!HIv
zLF3}w(ufF5uQ!!(%t8@8*1D4BzP1#)c(!G?EacjOa(W&cy48ZEzBHy|JU)NaI~r|X
zd+p&k$ftK8=E$ibY=94c_Ov9NqxY{*j4637Y{Xf{E_r=+)oGR;E9EsvE^sC{>igFx
zD3QxC0TnYxn<Spb=!1MW?DGcxod_;)a=zo1+}g6b34b@Yh(5UH<|LWnobq`Cf7I0R
z``0JiXhKUaG&VB5mz4WCS)l*r_8t|OmKr>fw3D2kP04jgG;~RS`Ao}t1WANk9+GRY
z2*XUMK+fj=s-xBg4JdU@T}NcRtsEK3x5J_A;&Vy+><G3aG9JqpXgEA43-9$gS!iQU
z$F)eof5?%F{g36%TPrbA!l~T3GsXq<ciZ&d-T2zf#N9ELJ7H$yDF27HKc+)p*76vt
zAgOCn?!^h%nr;VwWag&P#<ikr`hp(`BQh|%LD|uoqCaUG%(7{8VhdAl;JZyq5WK$C
zor9e+us=-Le1)FC`SI>oUBzSrGSp$cx%I8u++=R&MCNqOjW!<KVKykMH>SRES^7Yy
zUsB=yq6iX<$_vY+WzuPs<dJgb09F#R<A6XQCyC`w;Icq}=C+Vn@1NC}C_`$?&W{&}
z<=FyaAQwXGz$_HdIR~^hhgpVbK4w*(Hd}3#1|2mQvY&tm!SU|BRT1TSctvP<+m>X*
zrXWc2luIojE-Fb`Wu)8i1otKs=$LIC$VH&D-2Ld89qRZfN0SDCdha$m`Oq+oI>gJi
zCHO&9Xh^Pq#;&VJq(`oeQ`KETMSLHy$~@utPrZgWJGG(bYHciw|GW2O&yWAKf3W}T
z*?s({yLcMn6UiA*aAKnGWHcc;CnI!N;ABRI`|)n5P=3xw=#vimuY$cQ$@B@ZS{hSZ
zx%!&6E?%hLi~Xp!JszQpy?Ado-i?&tu~3SULuICaTdSO1AB}n+M>8gSy2SXwDSu8D
zm#j=74xanoy?!Ej`RH7TvK*OXnvLpEdH*$)FW`1EadGP~dbW5nD<w;X^Oy@<rR2Z3
zz>~=sbK=!Z;A>s2WK3|Jr=lc;|5w4dAS_OaE&nGesSq^Eo0qIR8XHxAxW?3oML{5u
zQzj{YR7oFPm?hee!RYI2Z}j^o_*@77JEZeUZS>>+{U=Wj4x0G?$>V$ce<#lddTBz3
z)S}^zutp~SFNE*=@57&750&mllKILBLqbb3Nt9mTl1hTkD18ddx#9DH53_O_5LX^6
zhDH)@cn;3;;KSw{<ah?g%A&j|M%o#f16DJC312|5-G(a|;?<Z7Dk?!N2R*5>Ofe{6
z7i9#5k%>s&4-~i>7jjxduD^rXi~($4`;e{ozw6)sM}-$4gbyQLgf=7-m@@&icgrsa
zxD3ZLNBhM<u=uG~{})x3nJlwMlQ&EpmxPmC$g#dPiHr)Cw(`VAt;DhD!*5Zf#efih
zksj`a7fM)jbR0QZ|MzUb`eXOi2AEW+R|oql)1j=R7(;m@MNrCiY=~Yc-Jq3~&InGy
zfrU;?@CA+rZ&(frpu}`WO*%rfcv<1>MBwDS!#+cn`5w<{22tQY433U3o({H={QvRb
zH@CpT%;Vq~BtsT5w3IQNeup!hC$@cm|D~dr-hq*nn#&FJ>x_UxRIrAG8f0e>grX@q
zK35?ytr9JQit^)$C*^%FOB!iJW33&+FoNumHJymAKDUbNGgz?nwMuBvEM$A>z%?@G
z9@wUuhOdA2x1mSZsH5L@RBdL%u>)$n@2FnK9YiF*pe4(}7TIFKNaf$crCHX04Rlyn
z@f;_tFR%6Ij5ao81+7{dslTn2(8h+Ox`#vC(}ctl8$aJkvA`~}h~<l5c@r=7`IC86
zgAVlcD5t_n_6>H7R8XAJKZ)IK8ygCUU)b#D(3~YT$W5J6d@C|p+}!%|<Qo=)9adtt
zKP*c2QQ<+!nJBxd4J{TL0tGvN)FRU7qi=V=-FH7%1s5g3^XJ;!2W+fnjEj-QM!F<F
zr^OIgVm2(vlze>te;tjnEyN0v^BJ9pVM;P0XMI?e8Gn8?*cptj2Gf#N#b7k3qkO~(
zD+%M0vL0*?%mpzRIq5M7A8ZdUNI4#i22&yikgsCHB<&s{+vW~~?!k0_j3i$KyxIm*
z=+l`N*;OY=g~q-6&UeEvxKrz;+cE_+I;TEpgyv)p7uVj?pQ!V}&CJy<{MajtP*PMQ
zw7)yoFE5;Q{O<Y!PCHf_d?FI}l2qbE@3PcF#0_tZs@$+yEUL$=@<DB&Ux_kR%NDgQ
zFI>Fx?$??;qtB|fj9_4Y!caz(EsZhuO<2wo$|}{NWX8a&N|Oy0x8~a*=AwC0D#PDo
zChrMu{8q{etY#dPqb;#ADnv#Aw(ZKc4NmqG&FOhHCdP;#r3_u-+#88gt;)4Mmv0dY
z&@-CLBH9i@%*b3ekduUPj?2Ziw&<NRV@Xt%*#eDA408jK7arDsQ~fa3K;3Pn_k!IF
zX3sp?)tjcdwV=XYyTXC25N)905S<V?Q)Ju_YJ(-Y7M_kVr-{6BXCxPztF;DF>Z?RR
zIwFr;(>X4pOEUKK(02Fu6--y<O6#+RIlp9O8buksAh}jL_!<K+O&O~IQ9ug)P^awF
zb}Yl48Nr#DEzE0wm$pI%TfZb3Uf4v#dn%i>pmV}1;l7Saf>U~f&dB<=)D{04R}-j%
z)j;?<MI~Y6lQ@p?Os$Ynf7x+Jwx-r;%U#-lA(&h!wKtC(VmnWbz?pKb7cvYCM^loM
z5>z0yD}>=FEcatXGoHmKF={8r2u{0Uvr9Oyk`{!B(GseEtm;w_URY?k(@|9z8zfn_
zBok}j>N~A~qE~K76}E9lcVkE1=#D0AV*|ZXXGE)qU}iR=0Oh=a4u3sChp)e@BVj{Y
z7&bvWkAN8WGaBlRqyKsj+{2O4LcoYje4<Eq1ma-G!dxjm!3q=HWWeHFUgrKGukC<b
z(;uV$P|?DFoM;tb#AQr=<UoNek#~+uk?4Lu(#Lv?lXH@%^;M+-sF8A>4NIb2+?yrT
zeOz%etUIBH>X6BH!Z(`sZxUG3UrDVIO!WxmQ<{Ga78DsD;zV}vq1?+4b+bPjC8TO}
zMIEHmL#wXaP^vnYAoX;R8yjssqi%F<HKWtM)-rB?w6%;Kq=DCA)Z1ynG97iy-3<hy
zV2;omrZfB#4Xn;+|LP;<g2S<Y!&1X;DCvuHmVp!FoKE3#m!;pC)6170U+~LRQP?QU
z;S|ePHgP{NG1{x~1t3+l7e#XPhZ&XRhBG8ujL=|jA3S>Fy@4K&RZ!OxJeV-1d=&=u
zyD=_*-FF7uZoC)o#|O)xDJ%U3IP+4@2}D>n{%mvQe}k0^n;xFBCy=a#cG0StpKa@h
zY9a&b_(FuFBn9LO=EwkN8*!Q^1aWQTh|yV-?>a*`DH-Rc3P&j;%2Di`kiwd0@<pD=
zbF#4khJ!#F7FAg=uA}57I5)HiSjIHNUV%n`Rr{*~>*eelNsma#Ze%ZcFA$u9-IgR*
z>M&n%)Dgc6X7_|7RjGYO1^H-9(`?vl+3wKUu)wc!UFn6YBUg07e~=8&2t9rB<lu3H
z5Hu>up~kB>EPuzCu!4y-yHGQevg(icLM@bz)me)s<t#M1skeeYhhTlIwD1~W9NE8r
zPZ|T1hiL<;JNme!7c?VN@`@)o({!Mk&<)86;q+~uE#w%%9ttv@=+SNjre&jZUJfT<
z%DyoDT@zO%EKf)wc*CSi0T~u71=sGK4Xm3P;yfMVT+pF;6PZ7>L}UZ}8N4E}kBgFA
z7zToCoLDO1WRc+n3=f>`Ymbh$o(30xQrQ<cF7J&YGa7I<5d$<QIOnyIbKQU@{vH(|
zjC&-v3J`C)07PUp7y_1?8L63V5sfQ>a)zcAE^#gh(01nTYj$Ub%e1FEl%q$Q4oa`p
z8QWg!3hmKgplnr)KXB1n1I|=`a@P2u{1~mxQf(u+S>+%@<;qa(%+xsBlATb0B0)h9
z?eY&4Dn6Pt8gNWIIMIeAf)y-d)5Sl@Leti;fxU`)sMNZC)bW|Nl|`(!v_=z5v#KOR
zeJ_uRzzt{YKUq!!oqk_;W7MF9%vA(qGUX62z}rmn?xMt0a@z(`taaQZv6(TP@*P=K
z{xdXFGE{90oi=tN^YH|}y{JEb8JXHEb4^eXdM{Y@urw~%0VS@II)#GQ87}K5C88RI
zXnH5hZ7s=CLU}<Xr7p^alF9t|{{3;y!vNtAM_!rZ2!<v^Br|g(D*o!d0RiQ=?M^rH
zwr%hx)=DLlLedF0EXVIhtP$WX$SPqfAS@6UxD>;xfJP(K?D@bnH&6qA`yOYRB<ijA
zh2!a?J7~^}iDsx&Gg`1JSy--VTu5R-^z5h~?kO-{v$3bwP;uQw#ubxz<{kk#WVP0m
z3(C;^{p%AonWibF=-2>SSOFNdNo~^!;D@a5E(9CQ(}K}lcrFf|t!|*V6Rr4JYwwxB
ziCmC!=cQ{(yMqfF&(jTmk#W^yL)V+J$h!xGECiRN1hvNZVA6S$wNsX7@0BQGgbwTi
z{;cCJ7npOT6atz-HxXlW<jv!TZ)cV%PQ|le29E(rksGN4(uWUrIoR*X#aB(2E{eIO
zS*<I{@khuJ%)8nSIVJDF^B>0cI~%JQ2*xQ_b1+(hVyIks6xD2h!Gtt4mmg|3$R)Xh
z!s<_(k&1x(s>{$}KEy+%UmOZHRExP4NiHL2r5Ttp#Fcz4^w>l!u~7;I1G5&ms5oqV
zUgzJM67DdmA2f(}Ht5N1`rD})J@tM4xEzuCQn%{zZ8%ZXr(`{>B!5aij?hDSL!EA>
zn9NzuiTG5<<oHy7u=JBf^PeQ;@yQ94z7_w+Lk&xzb~BqFPETd6)6?JdoW8rkWPX`h
zY`98-vOP3!t%1#nz^9JSW5Lo>IWaKe-^_F<9z*ih|J$GK|GODK+Ipbhsci|sM?lvB
zsbR{4<%3*?5qe;BP-YqR*C=wxPHvoz^vOJC=}XGX3iNCk-&N_92*7M;b58R^<Bz^G
z#~**rt$X@bmK_2i0Zf-79Rea;xDNlX6}&GpOy?E`5I5U!|B-ni7B6YpA=Fe=+}6P1
zzukbA(9T&32K+{J1{txDm@ySw!8%VJ{{kU>7CD~NL~$6LvYeFWD6J~BttV=z<rzC>
zD5^_8$sUcgm!KU2G6Qa-<CoPP0ycj~X#WSgdi4_>W(SUAdy;ghk@~Qr|8!sd!`9G#
z$b;b^RB15Sw&{epG6HLDYpp*7XjQIzfHvJI@$xw6hVm-Qwk7l0Y)m0Gs>dP`u-Hb)
zj4`WnF(jUIpkjnJr^P;EIXe9HM2-OGDK1k4ZY==khkw4>2Gzy?LT?L_g9(4nRxMI?
zyD^f}pqJpJ8rKnS*<_U^5ln3dOIl8<Op?~%tqnyUa<zkM$U5#6AS$~Xs<CEW29dTl
zQHQ@}Hvu2@y<%`3995^5R<-w4bvJRv%N;($CE0-z+}>qM(p8%ndAd=R^h}Y#T5nwv
zE@>G^E9`l%=-gOv`;8)?Y_flhT^<_G7j6||HKqB3F%^V})%n74LXrTKCzz3jE33wg
za)=#Suyn_kHbr#Ys*GKl#w28Q74te23Iw98ghDOkqZ}Z;AU1kph6O}PlUPRJb6`pn
zl7jp=@?2-E?$`{~(OCMOcO>SmUb~76xO+5F<Jnti`|Wg2^IB2E(zSnJ;G!6z`2rV(
zT<OEI#0z!7i4voKe!~${A+8;<^`^<rtn>C5wdj^h-+%yU#<CRQ9AN`i?vs29n)gd0
zcY%c;`Ju6mjN~<)kYtf$1kD&bZ^ZS8GV|34a*L9j2v*3w22q(vqW?rD9LxxP80?H`
zzQbpOZ8R7r@?V}2QlNi>-NA2v4U6~d*nih9)^Fave{~XzkD|AYCH_ALdwcs0`|l_6
z^S%A|9Xxw6B=gn@Cye(7gew^@tWM2@V=@7luC9jijxv$ujf&X_dOv@L5+!6TZ59IU
zDgrY$NzPtfNk|Wxr9>vn@T)6CatTmpQbeCWUtP6JgJ@B=s>*+>KQj(uDy_5uBVc7)
zJV0(#e43D0VnEd^72FcNdHeF!>G9il@1H-|G``T1{}~QztM02Si?Yz5!)o4^9zgfe
zkfGl>%Vn3J53XWKz{Fso_hI+9*w{XQ9@Jq*R%yf-mZ&zi8lyNmZj3=T!*6>eRFF9g
zf(tAv9&4*h0`GtHkIw_>TQXyYmwBLjIC@|wykqTNJBHGI>xU4Mcxi-=1bB+VC5zF7
zT%tM6E1{hn<d%0qqN8J@Ry0g;?D!bl_!XC$e^a^RDv)?NN9CbA&-@}m!^>-|;KO<a
zPhP$I<>*CV5druOmvH@_d8_{L$}F~P#cqzJTz6W0e%OCn@_I-kd8ivJ38U^j!Pb{x
zg(H0Y_9cX&X-pg_*KWM|Gc@Q3`@1SQ1t}0b*oGJmB##|*9y=2i3t+2*W=1V%V>n^u
zrQ~uRm}xP#c(68uUm#MSULtGh0fx{<GXQdH=b9L}2={B>WcSZ?o}1Bsr!$fjq~x(E
zdRzgQ`2T<HKY7~p|9<jpcmJOLyNl=QYUdHUpz{%kS|&6j5{o{c%V|kwWP~2=04m;j
z6utUb*bD%Utt{-7IMU^YTAH*3@eS+3Af1VoiyGiKgVtTwJM>AizIlS49>AY;eo{>)
z^dlM!2Mxkcb@q+tnMZ`NB&nV7*6FZD{6n~08pMBZ%b8CXQw5imvX`7!$;J6<6i(?p
zwbN(*R%3o)f?t?fl{fbS{ZZje<=4YS0ZSK0zY;Z{P+rJcmCMM{n5ev|kR!s0_W=v8
zlcM92C<}d~*P|S5YK`a1Hz%?z1OqEbvK2>16B|hwfY_T{x#ufuX<>z~CgBFIy)swd
zTQz^BVkXF0r=~Zj**2ZuSJ`rM<@DbVU?`*KtMBQ$k9JZNkmj8qwKm1NohwS3iwPS1
zJ0Jc#A2eX8Mpr*!;Xl1S=q#?p8H}A(P+V=)rE%9_!QCMQx8UyXZo%F4009!*2`<6i
zT^b24!QI{6t%vXb=VtDvFHco>*Qq-7_U^r&wHA#j$9{HzelpbE%5fx0@)%Mx-2O!C
z^U7mi0NV&V$73ucK_=S#0KJc$0?g-Mt6I)=*Is_0Fm3~2Wr3xr?=cUKV2xw=Su1z1
zxlQ<BqR90j&e}W|Y=yZg0`d0pw|jOyrF<f-s;D5&rme%Ti&AEqB?GxL-gFLB*ss86
zJ7aa4Y1BD~W_xk+FDHLOzh|=DBUy<d#>TAexsH%gc%O;z2Gf9a_vm|Qg;5nrg)un#
zKt~{~%AyXKzT(6y;nnHelulAL32m)zErh`CV}7c?D(Xa>i(AK3N%rRNFGFR6o`z%z
zm?iiqVSg?QJ0iAL+{Y{M>)8+Okc9_(b>Rt-oIB)$S0i&!J*hwS!II2GA<23%IhvqS
zzXu^%{?Pdw1Gk$`*6R1q^UM8!_-3a_VyHvIGf)j|XcIFt34$f<Pdl^uMHOD;IGqPs
zK(0kTd)~~`&I@*emr_n%eg$$@k5Xe(!pvI}{p*U|=_Zq()0tQOBl$uJu-1fJb|_t=
zrwCaOj$f=VR#@tqwklyz1-ts;pb5S1&elOl3gEHig<Kt#N(e9a>}}aGMaI1a9po<3
zOh@1&2q%GpL%Ri$(!nd<hJaLnM=D1MnlA(K5?Nu&n9PKpZBJXL7ESWU+yE1yG4-2k
zC!}xV@!LJb0KJsEBCcOn-qLbi9g;^`P+IH&ye4k0x2#|lieb+k!PBcZRq=H1X%})!
zM7Cj^xx3%r>BL|v8{K8>RoUOVzb@6Z^c{f)G%3?%t*`QM9OJd-rA^Ve4O1eq4aR)$
zrq}H!f^ebCrB{f1E-J1;_rH7W29o1Lb!)$K2>B5|23=xLhLF~n-oYhk7J9e_sJ-Rd
zDv}0#zCjkcj75cHb!vj?h{$3}IsW{Z1DpLvNkMRq(h#2W)r^);8CjK>4}teO@_thk
z==r{g5dYfy816aNqlTB71<UAdQi%Rqlj%W8p@z4TB)dfdg^@4R_I)trP6XDlmC7tD
zPJ7UroMP&G8UJtdZ?nGzX`t|ce*uiLG}^s&m_Fcb9u5Mm*lvxBbW`-P!T$)^R`FFk
zMTzz=f02ZtiD`|EjZ-fM-RXknuQ`ktTkZZ5eVy2Gi9J@*WU-U`I!-uG-B352<kXZ(
zPXPwUZ(^UPHCA1><+Qz*EKRs?&W)ZLoyJtD;!i|PdSdjMhPIbDF9`v{Ig^h^W(l<8
zt<E0VAnm-RYrZw-f_o1wD~e0mA2tr%-8u#y!2~O7VI2tPo-d7NeG85J9v#e+&3hTj
z=MS%M*`D`)u2_byGu%y?;o9chWmuP`mS6on|1609K4~b$aKZ;gf3LJK@;{g@3eY+U
zbdbz*X)bI+n8$tam?NU3)cGxIt5dz=l5!u6U(40$@9s`tyic(E>)2nx1IG7UneNAL
z4_YWy1a)|>yr)~M^xu=TP^8kQbAx}VG8cw7j#svi^_%cgcpdqJv}3OA&m=iTN#{RF
zfcK9ae~(omsZR>DGl=$Z7Cj_P9?1)Lupf*loi!x5oGXrxYvx=2=B9(92hg9cSXkBx
zN9(6tl{=STIx)8jUj$jrt1Zvs*r!&~X^X84!lIE&>t*_8xVjksF?MEk3sm6N-HEsp
zHz(~~5?EAjdWWJOW=J=Et&TU&FB(+%EcdXnLhRXuWM`2m$!}6Me-4!B8Th*iL@zh1
zmM9M@6gnSH3*57CNqJcG0BU8n%T@0d<5Z5{!CLK64;IkcDd4>$k(u|4qn*x|N3iF|
z(AarX1X1am6%309yV1HBIboe0LuBN@!tD5+`0s7JflC_!F7Y|>qc(AIax|<i{2ZdT
zE2`YZFFdL#l_zq#WGU{CO*7vwkDb{n!S*lbSqtww5ZiksQ*)QSfS!B$iX;>B{peV%
z!=TO#S;oO&Sao>6rs00}R=^B><0bbrvt5y+ZZHe<iJv3)0Pr3%>PivAo*CyQPtJH1
zUm;D4-JvL&I|irI=&R|ynEuudqIC!ZZ<&%#M3-9(QrEzMFV35<0Reum*IN?sM!)Oa
z^~_DD<(}q;)sz$1qQ-^g-L}eob!3j2vuuxpe-TOj2nFTZYg*9GT?e=88Fm8hZATZ^
ztEaDoeFg98%A>CUdN#+6kbrm7!{htw#|Jhh&|W~(1~jrw=tRP}iV)SSws5JCSA*c&
z2+8I>M#5J86_%C@sFlf`&kWL;JB+Y<WNDyUE7hdl(SGYQKz)=ZGwUcUpH6mdsr!mG
zS>pVunole{gC*DWH@4&@xj{fBmv6E`WbkS;F=9OpH$DsS-n>u;{Z+NMQ05J{L-4bN
ziXn`!3Q76*_G69~6mYB#89l$zF1Y32`9N_GT)i(FgU9DH`?gG0HT^5+96KfGs`t%Q
zeaK=6j{_`8h>n4Zx&JY_kLuOvmfIKJejVd|=^>+_HF+HQe3~763OGoDpA0`4sBf}8
zZPc%=(SVyD9)|_qJn@u%yx+WPRf!C`y?}UTqjI9bqq3+k19;rQR;{<;k^*7~ot)~h
z(U*2DhJioB!YEg92*)ex(RoH4CY_>9Xj8viU2?&LfqwRxb9_^3K3n;rG}JUJO3J|>
z5WKE(Av%<si@&j5_?Dv7OW6PYYT`<>mHb@$B<qV}q`7Ezot9)5pfG&MY-q#X2bSP7
zBuBkvdj+*Wv;=`kg+2@u0JoAFJ1N3r`#baG?YyfK&<%faQN`WH*smabMWQ?5u#-^T
ziFc6$v;z*mz*&JW{Sqz$Z~xZoQ(hmIdg_1t-y}C4rK#^ZnBDU(JIvJqprDT+0M*)k
zm_hQH>VQ_u@>0MV@(@X^#Eg^a!afieT()4qIN*0^Xv3^yU`>y{z!m8E$Jv+j!*h)>
zW>J`~Hz1f#Jke1&hJt<EIQhWObI4f(*ghJx3`dKs7a23##=j%>K>aqn__(E!5C?qZ
z8hJ4IQAZB^VE!@fff6lYT}Q~WH5C_0OuGd4TkVN#eP%C<3`$+kc+hLzQC<iWM!5yR
zvR_=--@t~#V1N|-;y`jH(Y;Yaim1rm`!p<Z9iW0S=`6+<BDrZn8+Knq$PaXP9Tu<1
zzea+H8jJYfwP>cRf_wJ1|H5c#Mla=vm{{ds&L!hGKRjnaWYqBXeIo+#cHlQR=?eJt
zxdd~?(OYB3%e~^r>-{INpj@{-uG2O=e#k45h!3k`zGVxX%O_PJW++GwA7SRzID&Pn
z5EWO?!LIY=D#Kq6^;Ylv0P&+m>5LS@HX=slg_9s>44Hw^`1_0|I-<g8oQSfJlM`+G
zbmQ-q3ZCgVlBKQ-93#2s1yz{On#<0xx0)rA*_D@(T=xL#R0pC*o<WDj@+8{XR&Ms>
zqb&}IrJ<uV<oaqO%<#Egpji}rG*oP0{_z|e@q<U}-+W&#+P!;$)J|fHrr5EWLaqFJ
zj$Kf8)C6g_0S1r-x$Phiw{8>C3c})l6*_Old99x5Ho^jvo{~14g3vrJ&cGMDh&w=5
z(CS{)Dsryk3u*b^owz^k-pp2HM%tYl{h6uc9EoW^mG2`sK?qtKgT`suvuP1fLqH>6
z*ZX$Z!cT4oN>zZ&TlXv02a}Vtm;TAqpy4|i2VOx(cN)E8K>L`@WK9b?oznM$^WbN9
z%0RPVIo00IM}bN+1x~|_62y3C>NGB#(@5o#3S03Jn{kzJ<m>E@9HL_~gY(h#t=ae^
zzA!O1HrhY>Edfx5F7M}UinSV2GqMSe3{CY1?e#k5R_wnYzd#WI9qY~@LM)mE!cE(a
zNU&Nq;WVIIHR_w(Eq5mro5Q&Sd|T^0__$wd43d-ncPFIxwP+qKl=rFIEZz3@2Ngk0
zl060$K?fF&K^Jx^rD!)5z3Q|_4Ncgok45HE!`&D-B0CdOX=tBq)r<TU*H^T#4H>6~
zoIOitG_ImFO$X=;94mDvreqT+s-ed}zU=B~Rnc+MfF4~%I*Wt~`)*jQ$;sXR(D@oE
zu#gAd#vk6t-cG2R9bkI_dAu+Dp!I#Y7y5skL@HAsR&Fc(DW<|FY#bimLABl;E9lM~
zl^8FLKw07|{9!hZ@kMPF296vDXm-X!02UH5@P_2Tx*^DgO(QHc1J<0CqO|St{liQ2
z5$P4AjmBy5TUkUlX)5!t%Io#+t$0m>IH5GW0QmpcO0?UxH<h1iggce*74<J)sx}pG
zDj$sZAv-zA==4tkQ=?knA|eys6hC41b5MIpB{MEvs5Atvzd!HKwPQiRdG8(*mBl~b
zHsW<$=^wm;eBB?fi?y!48PrBoAApAwQ{FwnM?C^y&kq%tuPHJrChJuclgK?e&wVU)
z^Unufy~qsiDZN}NQY02CG}Vk2q1-&Bvjp4a@!8Rt^7aCUV*avBpIJn2Q&?X`aemXu
zj3GQ<QV#Ez@sOUK9=_)2!5NSz)6_@hAAXgpP)_hu_e9Kk@`+$i+9ZlboOXNV+Gf|Z
zpx3QIGEfy{*SRF$swIgOH6+dC^)AoXUJ!7l5x16Gb+rgKbnI7Ys0|7rgX%0#<R;$3
z!hJgcq5cG<<6<fDTR#^ijh>T>jPQ<=>vIyIfibhPvZ$F3m?-0rG}tOowm94+zkLu6
zh9ciwW|}7lwLMeWQfKo-;m~Hwq-)9Q`sw%t$YK0zHgr#F6YE0y&>s)fahI2%X6Xq3
zdPk_HsJpO~5Rnx}UzN=Tk~`St{;z#URa2r85K()3>TB1kHX_dM;PZEVoGIT3R+|i3
zT~(p3B7XdUiPkTeIcV_Pqm(*%CyBNBP}^1$(&8xJd5ho7s;)0f=A<{Vf16KyL6EA8
z`^KkedJ!^?oRX;T6!Jf&75!oNu<wV2!@0q-f2v$6e8igHwE4XBT#~o&W<EjVPjdo(
zbixibyH-52Z`StKsD4ks)LZv<mV__xmt#Nt>vX}8c^_#i86>`8yaZSY86M=I=YGL$
z6dCiMXc&8RwBi9DzlJd`9^u*~Qd4p%nTe{@c4AOU79v9psQv1}&7tO*&RKh?)2;be
zy)?n2OBO^D`|P)$wxZ-Xf{|O9A@%?Ua>&zg-RHo85M=cv9!w5a?G8?pnhZsYDK$Me
zsbM0ICR4XR!SYl*qqr-&xIz0Zbi3DTX!D0u8V3%$XCckiMt}BiUP%wf%Z>84B9u5N
zsc~GM{XY9Y{ibyPrhDeoT9S{>brr31xX~MUw}5~rVa2i4ffzqr1!`y*PP79spy`K0
zlFjuD2dRFt52zcOd(+`o_;^7cJwqN0cUoQcaJ}jz?Lt|ZYUz*3(vor5X|#q8isz%Z
zdete^_w3N|rRUZc&3cE>@a*iO*!LR9;ml91xQ!b5@D7NZw?QiC=8~V@9{BSJuGY{o
zy3DUY;rZcQ{=|~0`h|~6XTbohxKS`<rsc)9sVv3)L6dL1muMnyCE{MQhZ#D9g`v&^
z2y|uh{#?v1AM&T{&%~I?yQ<U?=l)fMgm<9g?8r;Slwd=d(<R)My*biknj)ozaiH+c
z8hJ6mw9;SuMvs~LoeEZ-;iAaiO@tTc4%csJ3O<<}W^&mv<0|IH)m9I1_*)meHg=*=
zp`0xF?^_L&-@q65{rJX%XIr)F1z(>hq0D$yD?Xp%F7bJLv$VI19>W>1tt0TT4!%*$
z4ugXH9jxeNdI*l9p*k=RK|{_Q8*&m_N5vWW_k`d-y^Kn|tMysp$=)i+<%7b+HjW5}
zAK&}-ZDr@JgvLbj(3BhaNX592q~DT}f&3XY`GPO<b7EeCJ+l~p5(M*C^V)%cML9v`
z3Ga(=Wbq|>bpn2`)0X(qo;xo+3l%r7nTwbGyUc{RIM!0vllHdUxSU32QUVfLs}<`2
zXGr=*y4mpQx$#7}=T{|mE{i_%*WF>SS1MkwSB@{&)^7jNG)Vx0{bA~UPp1X#abAQD
z{so#Rsidp?iC@2%_<rhl<GDc?-VLG0>QX;)ejCo}XFUU+!OXZPApFxoX2fT_Q08*M
zEG?Zd%XptXiiDwKlCZb-9x<W#Yd@EHhPJO}|HWWzcY^4k-bel&KW?-dE!gFgf-i);
zuXkmzz(N5&qyTtNF&mW%&n<P!Pj`zRpMis06uq0~lh8tWRX{(;HARZ>u<-k5&O$10
zL(g(;3CKN!e6Zl_(VbK82rq5|Wa?zpUkJ)!Cz(muFQo+#t>3Yc!f#c@U3;j|RdwZH
zNu=U!omfSE|2xrzyY>Fk{IZ}=S3wJA?@^`?AJTt^1z6EkhU@G;MCD>|3=vEi1^-xh
zocp~8<?x0y%uRmqQ~Ct`?oy;WgO5GV9|?EL+Yh?tlcy*7*AOJy#OJA9RIEYjcu$p(
zNjM*0k&%QV-CkAp>)-4H%ok?b<jg6xcqT;TI-jw}rr@5tM%cs!kyQ72#DqY;(O;;W
z512ne0j(H{-(9Yo8*2iSb5Vl`1!4wL6LU5?HI?lX+@$qs@FT@+NzXQ#7&t;?$wubv
zX7ty)+`aD<FkcwL5Mtwp?;K4PC!7tpnDof@La82LP}b8A|CXthWh;)BT|3#&mL6{I
zDARlH!n4%VQ*q4^Pa2(MmP6kR3}fw2Y<`7k2dH@bGc1w&rH`{*^exgzh;Ehc$C$Vq
z%qjvqeiIVjNsq(-?J!VX@iLmQVw<VsO&okk_?~9kNiBzRgV#t_)_?W@uPS!c887+O
zn7KASdVDvV1(S<LS(+b~fc`l()jcZiT}~_|P=ALaZ+BkQc^uUVRf#oO+!0z@ke4eQ
z9)N0WI1~)4lVVs){&vWt<ZiTSo{Y03sSWvuNI^zXcG0_WzK1DULN4W0Me0KQeDhBM
z$~FHo#wEuCx>3(`iN?r}9t}8URgd`x*^)L4k;Y^_mtKHQM<Z%-=7Z59k+OCe8yG+B
zse<_XPs)c9eaf(dl=N@x7B_8+{P(|4>A+2Asu2|pLibmTgp&Vt#hFHq<2k3_XwSuZ
zbEZwkUaH)@pb1Ox7ma0$XH5Cl2w7oMT2FZ9<L_*L%}>R8Se-Eqf%8pZ{N=eLpr)2G
z9!=i>#hLmQ*OIA62Q}d9K;g?o;7YU!Uy2Cha3<n3gry-|U4TRGUqn*Jz(Q(((Wd)n
zwNc*&Tw{lsydR6oL@+X2vn7JKj*zRjXSv0E^+#~s{N<?k3wasl4Qsrf@Pq|)59ywI
z$5&H%3x+r~5obv-l`O%~w3V3{xjD!QL4P~QMX5cde|QF;kpgNmwXGL6@uGYiY<Z#7
zzSC3-@7!XvP~4rg8e7;foUjWpm$IKfmD<x@S+npZBnAZR>^Lh+lptY78Y3vzZF>p6
zfHzG);`Zf|aryDDLMth1^&#-^@H{0lY0P7g;r}FMe+p4Ctck@#`X++wax;?MSqc3U
zZKCW(<!egWbMPjP7F#>@zA*JC-MH48@g5!90Uc5^*?+%&FKvv@SHF@2G{=rkG4VOn
zO8JSc)mq~+<damtO0RNDOeMc@#<NQnWnFlH+KobIc{naeV0uNP289cFi;+`#Znu^3
z!w+wup5v%yP;q8(prAT^(dCs=3=bPM!hBthY@8W{f8_0Yv7q7D=hDj3N8(rrnS@f^
z(MaE|4k-MZVjP!C%KYpA<VOr#{)I797N3OC`%E7oZyPm(ymk&7ETP5fycj+@L1+8<
zn$<EP(iA_vwu}+6Zlnd$gzlrl1%p>sHd8h!Cr7jdgAiW4vSVJ%)}-ay-z7M)<D&)l
zn=eP#&s{M3z{MIA*ZR;S#<lE9%9h_1rC-p1Y<AG~uf##mn7yuAK#mb4Cy2>A@GjU_
z+<HBgA~GVTN>u7O!dk%<!`Id8COwvRq#+d%8m|o}B05_JT?dhagwJau&<_Xu<|H8?
zUGf|t$wtEhc`Hu;Fg}UZYn|sn1Iq~OY$X|_L{)?c=Y`c1AG9lfd~>PqVmnW*c>iY-
zq70<bI8Jd?S!(PIcqUb8Zgf-9`gohU9B|ss&^X6+&T@(=rWeqU;BvftW};Ii+2U<r
zj>TFMq$*}j8E4>(_Qacw3i?Eo_uVvoDBno~GkJ0^beE<AZH^AXod&~oKYwUvD*0N(
zl_Fl6S;$0Wjm@B0WVv33Eiq0e3&%;c(&<Yrq=&4P=i;L{@a~Mwjj^;2+)l?djrn*w
zd~6A{!_=Tq@MJWSKV#oc<zHL|N`i_%?d+khJ1vC0m0F3Nqo{j^m!x}L2AA}p(?_HA
zKwx~NYWhEioF6Vf^MRjSS9LG&D-!E0*Mq;f$$cLqH!cg+-DVFC2!BNbf;^nE6Xna-
zEX1hfIKs*Sk|L|qs;uoB4jv8o;})5=?y1VMGBu7WWygwreGAKJIH@{vcC;a)LiqF3
z0tAJ!h`9Tba@B+NX?2A2%bKBd9d_>AW|r8gOl&BQyI_t2A?BS%d$g|ga)W@66r`&~
z;o^xB@r#$QB*y{-`Nbnu$hZ<Up=~8l++>588c^u~bF&=K3>&*MxqcWtw1V&B2=g3y
zGm({d%n<f9DkXoUdqe-~opP{xznx6BG9BUvqqoiY#%FRhYSFj{v*CEmR?AJRzeFbC
zn0|^nrStAx=3z>4SjsM{R`bMBQdTs0saRiW#`eVtaa<<<)uF_nM&U9+3smbSCn4os
z#Nj3ZzMAYe5#QCbWotWz<hZ_?q+oGSI+rD<X;PG*@F$MZjN?xFFg%_6BG7_lGqL6B
z5{S*kUH-JRKxA0he=Gd!U=eSas}p46Alw5qrysZ1I=D%cn|;szt=7=o-p<xbTL)#m
zwf^2*T|#2I=eadoqSXQdN5n`bEY&D>3FpBAaxx}|&E{5Aw(%;?CVOr_nM8Q7IM|H3
zCs|pB($a7kWt7J}vbS4T&+^Qo2njL2$oznjTK_5hp3tId!m)oU9yJxQDX(S(qGiT?
zrh$jMBkY$!)Po3j{r;dZ@oA~Ll`=hhssfwN%t~b&$}$+@<u~5x$E;RsZ0(fNBF)zg
z<PrH(Y6as`Eg_`(0A}u=Kf8{1)FNck^RQ{YK+G<aP$xs8>3{3NRGNftA0lIe%1hZm
z+6yxs=C4n{LrVG4a|jv^^=<OPx#OYZ-mh_4_!8){uBNWQs`)?`udIVX`J9FsWQ!{W
zs*i#R4A2W=tz=CNs}E#NbNO{}oq%EvNMUQU&6bdDGUi?iXG9F!f=1^2w@~ru5t^T3
z(w%chug_^|!+S$Xh~pDwolp7-<QKHLXj?ZET{SaD2w`)i#pA%@MLE(v_`FVvlKVTX
ze!jZ?F5;SuuUC&rnMzaH>$kmGc|kW7HY0jZO8A4p*I1L~@>A^h>EUM4BW<67u~b54
z;o85PfZ8~%=VHQ~dOPL$qH3svkDi_|=mS`^WJnsMp><86mW?fdS^8|TyJ~{EdtSOb
z<U*0W$H@rWyA)~{f@Bz;JlWChM{oVPM&#Nq&Y=A4ueB&r0-0Z!HA68S7ZSN}o<Re1
zyX(DCe(*PH9<#L99HdGanJ*qdStlhr=;IHjk*U2UVp3ze_(!qIMLruAM=~Hd3B5oi
zePPh&!i#HDZRJ7r!l&s<!~cz3I|&vt@m9fE=R?4oPQuPs1Do3xYBB~xO8OK^GLlBn
zFB3=m;hAWkXHv6djfxAIL*1we(vL8?V83C>LFIo-Q;-ZQ;7S?)h`<4aEIhKt!gQxj
zyZyPRX^fA%8`h&_KXM<x<!3IsB&d?@UH*zm)}w-2>SVax7S9gkfc_U0#(3}__%Sm-
zxjf*^fu=zadtu!%Ifx)NED@&VRu#jms8i&PZ&f+Q0b{konJQlKmDs`}eLYc1v6J06
z>o(b5E~Sh1iSPRz$v)uJ{FVT<NbC;js+Tb`6>=>sF1<YlATbPOpe*_-0<>zkPFgNp
zHt{E)VJ7{IviRJmas<y*3@6#W@nvedZOTph!gFL=G{hiX6Y(bk2Hmpj*y4d4N##r>
zagibMX+1M!$cx62Sg8Z^Ci7GEe5tV=dOqn-m2<+NlAey<C!kz4T9PmYir2<o#y>nd
zo6N%)`o_3K>uY$QS!RV57l}SHtqiM#89QWIM3uI+bJD)q^V$3P`DM`){dhjR>SQ9a
z6ca~9)u*>8M%k~L?9ckuO>KYQW%os^i+Y=||0xM=W(Ghc*0p;IirA`Ym{T|#Ls?Mp
z*2mX<6y_cs?g0nwaQ{RJ{p0KKLz3A<>wJVfr4%<|B4<5C!cWsi0>zAx`jOdaXX)k{
zU{lr=<DV)*jf#|D3z8Fpe#u>%;Kw_?F2FKgXy#ySQ^^SqMN0d8AEbQwUWj;EL#Lev
z@C=Rw2k~E&Iq9Nn@qLbmDuo>i-i1LfUVba&n@`@tUjTyZwRjdX^V=jyx_AT1lLQWn
z^FOlU80^rjGV_BkGKt${{U}8dh1D^<8{$RTa*yYb4x}z!Z0KoL_mTzLne%P=R$(ro
zu0=PkW>Bw?e{D6jEkm7aE@-qUv#f5wY2&0yR<O$E@X9*zog{|FHBs@dM3V|Yx&A}z
z!*K_5I|0@>(|s=wD`Cc8M(?MQTk;&n$|CwBzW(?)!o?#KXw2Cx%R8{C>hLbZ(=d&m
zO=ek=&yd_2VgjTj%9L?widu8BJkygs&lGc`FmE2YXsKCf{KAphN^!~vW8M0Wh7|lL
z87dX;%w0U9Q6B%**F(&1fV|D}rbZqBVxnlWFF<s4M^%Zr!H=_(8h_?{2mvl^>*Kn!
zlQzMXfJ^sfoV1iU+0Wlf+YA1w-Acg}*qW(ZiG@HApa=(JAlboW!E2+-n<qy`S~k=y
z)Rzx56Ew{^fAqBnJ6-t)X^F2Z_%!~kc{kh1q)>Xf!XBofFob$3#r(_oiC!vO+Jc!>
zX$sKhFYA^n+%s7cc!V8~3!%#8iT*Ie$|H#!@W9qCi_m}08I6yfxP1{zQFol9=8KqA
z%FN9{M<?jLo`h&-K&-Tk%P%_nq9_thcZlDLyphCTRrIf|!G|{Of}TLmD@p-rbyc3O
zTtI2yxOr3gE@^`J1bb6rOv+uU^<~^ZN*5q=)UzI$kl7x=NdKd3&_<3icX2fsqZzF5
zZFTJ~z2^7wZV4aedh~%eZ`aR(viZkOoyCK|Jr@le_<YYPa=BYa-(h(+L$$R4CFC#f
zV*S@r1O2w+MPKGN0*7q)0c*33?)s*;W;4WZ4Y7(Z7oBT^v7`$-;4`5BCqnR^WHz7_
z5n|(dQQJkSNQ>3l9dBr-$wVU)q$J+(;`K*vT@42ohaP`{Q~5c6Cz&!*Ki){On{iOo
zH6Hq_9nD45er5bgZ1G`MBirZprrkEG4)}m&|1H8UxUQCJB9nv{UFTi~$pv42eloP*
zeS}I=#e6X5<&$=Tch%5zgV&4L1)D(ajO$AS50;9;zm_)9sEvgY-tWO5tb%lyV?}JG
z?$j#tCVJmk=MnX-0LLoc*P${~lro3>QY|%z<-TAhI=ue=k4E31M>*ukX1%DJ<c$C*
z#amX3J48EqDm>V6+#Sihf8#zo$JY(}+7=Q8sn|xM{&Cqm$TgbjP?3yLgCKw_kP`6`
z)W*&E_iqCBK@yho&y)6w?N14LefIPcbuN4Mm6G8LyJMe1jUn-7t6Xe$$GxTInrvpL
zR8dm3nlnTqX)jGL%VbEZ&r`QTv|4tV`1=q71(ComVH{1(+lC{iE!6(33%XAJCfqgw
zasl%NT>b?jcf4NHCpGuM+$g|U-sZAPLg^_3M)2FwmeO~_pM7hAplIAQ+Q9iH)N$x)
z<VVI553Cw^5XVMXQ&rF6or*P26*rt)q&xs=P9Q9AyIo_LVAJ8UsVFO`*_UaAh3{VI
z^21YjZvr-#S0R<|3+$*Xl*kXhAX2Vhc|S_KnYFvP0y<|+>+ZKu2EGFN*pGjzzv7tB
z3B*XY`=>_g);7P5DpTNp8gK~wIsiu3$H2#8fGV<?U|oa2q?6fIK$Ex7PBFZt_!m{1
zv}yNw@Vmtzq3N3vOLm^U4r!-X6LbogAu1|ApeLG86WaU|PZhTpT4dhkY*gO=vu23O
zKpg@utQ~uGK%2;I*OnguCOaS`XemM@6&^Rp3t*w=z7^MCs~YQD+Qz^<A|tpv2MnwA
zIDR3$ut7*mJE2EccK!MC0Vjkv*_37!a7&0+kydA$_sj;i)7_ETEcb$V#0>CsOG-_N
zGy0W<jR-5kzE{KAG#-_3*DFlR*GF*V<H&`f79?BcMtd_QWT67<Q6_t{(e@(;8Sb%M
zYneuNLSg$)%NWEQXtqDfPphkO)}tqNA_HH(@)7AEMUe`d%GCFZ%e>JTYPZV}`(nM3
zM|F3K7T2QnenEcAIXgS^Y@hPH0N1+K-hfUw4kk9jZyu(feD_|**B<;1fVbLq*TI}E
z0-C5E`Boh31tQ=tKhawN#@hw@#U1I#TS?ae*MnFv)}S*wk+BTtuTOyi&`i}<O_$K<
z4lOS~Pi@We8t=cC>IbMpkMs-5MafDwjPy=fcs8>MWmI}b$)q+mf=@+P2Bz&MG&g^j
z8V|s#G}*_rFXXD+8eG5`o`oU0*&p%4^2Qf7)5M5MUjSz^jga%5?~P+^=4IARG&*mw
zi06Ou<33mQaD1=-MrJs{^HiC%o1$jXon0H!aD74dSIiB&vS2eAZ+$WkI<DX_k#+XI
zp0l2HE*U*MD}ox%x>qJGdy)fIQ3F@KDoU)i*tWNWu{UkR%dN8XB|a-Z$pV>HSK24Y
zoE;}w1Rt1*DHs?fDDOlLQ>e+|r>$|lS;TVsF-7n)A1#HlGdmU2idL;p_$9kmH8(0#
z&jvYF10w|MEOa#$bwP%Pedd^(k@ZvYhz#7HaMx*9*S0X7iZn!{6OJ!m$9EgUA}$x>
zx#0Nesi7ERxjD1A1sKa!<IsbvetlHol}zcisX_rc^2p1wTLxPrX!c*8Z!n0y;oY9{
z(aO4C;-%7mUi4AB0m<}WFiy%kls+XCg{NnmSl((VNfn!Rr<|`wMDQAUivHZ#+GOd3
zuwQL)RG9S~EH~9GLtx+BTy$tMGtam~&fW{Xw=rs%S@(+Y_@On$$o&<mI`)_bAqb6m
z3Aqor;SAPpnlOq(e?Vcd$!Vy^N7rp!By6)(t|~9VAaS^QFj-2ul0M9Wq_xpq>?PPT
zg|wFRLis+>qV04-<jWm#zAi>K((Wt!rAU^~1@9_Selyngn5Z28WtO70{O69orP~>+
z_(I~chH_WAUX44#?H6VW5WK7jaoH{btQ$8#w$~+($LDvfON`QX0b7yHw^cH~y*$7t
zj{(dzuSAE$-tjba65cSIdqIZGVLtQltRrbk6bP5I;b3>TF#eFhns{JbtLLWSeQ3;d
z_(si~?l885mmt?3^wW2$7mh+x)gyn)X%Lq8PdD22CwLc(X`j?xg*=Ui?hV<@;94f2
z*Bgzp#m0-UC*>#fskwATuYnP(mw`ym3u?OPKKvvFF2j%C^HB_^p8Ue1_qh}uKX`@Y
z&RvoNaK<Eb2l0z?Cxk2IjQvYEvEG9+S)_0*l&$S$^t6v1WWaoIj|{sqeUDuW>v9?^
zt3Kw!o98_#l+69QxC}MMO%Xe%++KFT53_KiX&dGtG*8r`8<eA&jwW#q(6-gS(X#Yf
zq_tponJRpf4UF7RKikH@BP|6X!mE{^eS|0&0OeP1sJ{<T{zIQm-t5P<Sj5hsrI&`&
z@6BC`5BVB@2>whgM0+*Xt23mk&YW30u&Ma8VWTHLNT!H77@ift9QNx(=^cFmK-`D;
zV}eC+yM0~1FxY4wh*qZ0O299J1NX1!W9{Qq)^^yR_pL`AWn<m?G+_cQZp^`F6d^ZZ
z_;c;nq=f}>)5Sjyo2)t0e36s31;OR+l*1!}O6nR?kE5nS_~rL}k>8h1BJ*jbHk1BM
zU@N-d)Z#udxaDJRn-hW%%T<poAm8fEC)tog5$bnON_HJuZ`rhan(O=Ftur;3{(4I8
z(_=OPKM^KjWPw#Pi+o?{A_-NG{KZ^{VMf0e=dSyv2OfzHd{4FHgXQ$GgNIaGz(#$I
zVD-AQcG)g1maY_Z(kRk0!jM{(!5r6xZY5fDO3pv4EKF3H3^%NV>)dl$pwtqSO5e)O
zy&&n@TXrtUW1DxsYP`e^{~XwjN&W~**u>1+@=Q8KrGPAahLRD^3+kcDwbK$toF!3*
z%5#U3%T@H%|0Ui5873;=dNIG9e}{R)$cwOo(j$ud$uQhw+4lQTx|F`@OTbz^%+Vm%
zcB%R{TaVj0TZV1rMm?bcaByoS`5aM1yDPPivp7_2$MY#PjUI8X?c=#IKI>XC5MzDP
zhY{l)m6LhY3zMn`tv-ADJor#AT;FywL3tTha^~Jk3mSaLYZ;TlcCuJ~`K89XwsiiU
zX^;X78He9$2@kBq>ZjPqwY-4xJv4&@K~^Tm<FnB1dr{0XU*9~yDygkgdDW2a^;0um
z#0qk#_s7MSPGuO~&i}a_%zhpE1zU?~iL)T_bBE-Y55F2E{?==aaecr}%kMUh5sRxk
zrZL?jSXwtPuvF1wGNf_uj|axXB<q9ZB@D4C-(w=9m4ruKd553r%Uo9=gAKvS>80Uf
zpwYQ=Zx<~T*p9>LHSgefu{)ftu;?vjZzVRw<w?XmmkpA`S9}ju%N&=v+IITtH;;JR
zPi~BN;1;hjv9_vX;(g(Fbn8;ccpeO(gj^te%0wj@iWE~XNwSJ#p|v>Rll!y8{0{RL
zj<Ug)64&T7QIH{3L<6H@a%~qJTFG*3YjEnrEaM&w+#5zzs*M_z<2Otoa}c%G!F;;@
zLAM_|&f$2CY+%3m&%1ow_abRHUBt5-PW<F_yj-A>qejcehIxsvXDAs_H>G4K!6aiZ
zPuUPB?U4ITe=t>TVo=f}?kgwRBQXzVPmg{mbFqF#P+s<l)cHU;0nu1o_pH@pXY15^
zE*)_bFi)Vpxp3l2gg%cnehTM$)Yyua(4vIi>*YT*)pfRQu4fx2iE^-uM|hu`@K)F+
zr>_L#HifBE;tT?o_64sGX!@alP%mEJIdNrYQ1G;kdViqsj|22B59BMH2)<?N!EpmF
zfCh*6Ax-DK0%u@#iu^mP%&>k<5xhQhmNo@&C7m4BKcw@=(Z5`nu3e<=bC0TO!{yIt
zd&6XdV&BHip7kq4gz<Er1vt4f<UfBn+JYEA`%NVLke~dKr%W{Rg<XUa`k^~gaglz`
z%5)He@@E#p2k|5^jiG?*Y~&7qowCPd5g7?2zO$y)9VY3w96xjj&UZ~U=Ki*M<6%Jn
z6tnB1BB5r;G2@u@iONROxZD?{y0+kmY@aJCE(dqiT)t>2@+1bJNAKCc6-SwgJRz3&
z?aCqO*>b-Y;gT24h|rpzbdtJTA&bL9!TK)!J^jNgriD#3>`-BO%850&3~x9AdU_#i
z=NZJ?d9dv{VOhtirR22xbh9Uiu;XU|bOkwN{FngewTZZy6&J8>^U*+O`jpi{reG6U
zS~VTUFt()W+r$+VY6-I$^93$8KXB@&vzvcfCbQ}(3A>i<rvkMF<fs@XO}>Ig%vmAG
zchj;KWv$>Et2BgLdr5(jOZ*~hT9p-fjha78JsKPW5dW5$ihL>xzQe@Fnj0Pine=@L
ztp=dM^o+n3Jj;(Srufh+vi`sz`{COcV4BOF$G&$3SmhgvJW77D<K^oh!w4z_9W{zi
z<xYF|Cwy7oKT+H2UbYj&{K1tjUMn|wn}&sNFq;@|WN0MxRcv&>)36@yP)LJ{ix>{6
zxZsl9V2h|0%A&$3v1#5zx4;gV$K3BkJ4RRTkaP=^?A9LD6ozlo6=U4}Qe9frJM$Kf
zT}P8Qn!eK%ZVdNVpd}?9Y~2@`g#T7~OZ;g}KOlOFSCnoheHWoIe{@n@%IcEB5&P8t
z@v6S}2~!6D{NTZ`HVR48sUTRcvzIrWCHX1L91?wl2&6$I^xyUaj|O<#60h+1s{$$J
zv8r6Q8N)Dps3GZz0?*QQ{p;6Re!J>uu*1(B@(Dr3j%asC5^QY{vd>EY9&;~O&iP&N
z<Q)N}CjrF|`tsGB<-d0$w4lDP-Uv80meK?&R&rk!N9xFklJyJM1wVfxER39jMgN=Q
zNO5$=mvYREQME@_s>=oZhNUgE-f43Zi`SY@syA|tx<-8(g|tFNzJG;dYeI7hxN0WE
z+raaZn9y-v2JHop_&eEr>$rx9*K!>o+~i`tYwt~bMLNAWZhmR9c0@T~6WwQT6?M%d
zsoTxPj{3Kk+={0ZFyCmrt<Y&G_}F%}NASCu%(Y23p6RGVrO68DZ70xF1PK@p6Ry3E
z^ZFk({Zs{srO-W30j8ZnT?~wu3H)E)G+;P|S&SqTrqzNIqRLgsHHGy%7Q`X^2}h8l
zW<fbp0RP%bmT(>1xj7M+<0_dQ*62@pLy-5&D-SMd|3;WV`^PJm<Xa%v)6??=ya57%
z9-2GhV@c1?03om2%c*?O+4;psUniJwnRxNNFgpQR|JD9s+J6rIf!6!p^cGr0hrkJq
zehgwffX|1Xcl^&78!=<H-X45TjG%u6hJeV`KOSbp*v2Kl3VQ74SA5yPYUnoTc<N#$
zg2En6xfF>K2I3zIl|Jp*6yRGK54U1Nt%5of@GW9IAb-!DB`@f&Y9P{ncypkXqi&{w
zUUpdWZaETuYUYq27!_UJvlwir@7_J~X_=DL)mzHvZGY(o{ikEhx?pR)zwX44eu0$;
zOaw(n6Z9~-`Avg70)ejys(n0b#MHq*I@3d~2{y#r#H-@e19OreVt4Ip54Bf`kKeeu
zFgrRe0IUTg&JML75B(;ny3$j=)L)@#nR@o1A`=F=+#3Cg0Y4IG;T!57IN6Fco*ddU
z{2qdODFb(BN4g{-aRsVsx1zZ?UBXZ~pF*Y(d8HWBlY31#*Jv7l#_x(pU9)<~90T>A
z#+}0^>?4dg6^AGJR`$*dRf2NHRon#Kf-W?X0l(MR!vj1eXj>F!2dEL@&&t?3CQpwu
z#aG2jK2nY|Oys2TJqQc^!*-Sp?a+i=VFu;*`;V>=N@Y_Dd-qk$Lh`~VRRLw+mJNx}
z7UzFDX8U{jUmkngqq(NowJE4_40w}_&PPNcK<T_$l+tF|mmEK&YgiA2W{T+u2vX4Z
z0GWS{f4w~2w76?k{p!x0NVey{;eStaVHo4MI1`Hbufn3*EFl_k4VDr4VK+`bEUhm3
zyKEC_R?RjM9%7prE>xo!+ndJ%^^wuD@LQrl#w9?SLNzYaV-{a5_I$VnCi&I|GTH&3
z3oWm-?|~h*pKh(MQTg)A>CG|t^62A%zn8<ZilcrqMTZ%P%Cp1V`3Iz~U;RrXx5(#K
zq<=?Z{Ick6U@D6kBBYDR5j7yw`|jC}xIRfLjcvgt6?@*7<L0iPojDn6MHFqDnF)1O
zs_DBzqN~;!{Vt}y^5Om=*%jtVkLOJZiLS>H0XK1I@n@<e&=9FM{P0>rV5E}*R_c)n
zlZ5&hhvB5*9B4^8c|<}fCd)8=sd~naUge>(W;jB>YU}q7Q#Y#?m4-F>dXy(Fj@9&K
zF4XU*h1<RfnosW?m4UmUp;HC%yUK8)JQ&m|?|#Vl9ChkrwRGgB@rdkzZVoT}^ljzb
z`G^L40iV<ZrqWeL%Yx0gKV6@I^%dqH-4jiY)_GQqRd-h{YL)NrI-XDP4AR*n`JS(_
ztOUU4YEasuO+Onf%>|?yj;hlanYM^0Rbq;n`$QvjX3eZ-Y_<ThWwe>381-F1VE@NA
z?!Na|?^*MdTQ&$L)@SH9O*Ro5GlzLqGODRlQ4Nk3GYZ*|{jpR9^o&N}dGik$(WeZ)
zqFPfdXm`|%!`SXMLvp67#7C#|*7crNUOc1bcv_Hl1?q1b_<oNIRP*A>o-yKbF?{(M
zO(MRMpp-SRyh7lW^C0is<08A1WTuLSmBXF<@V!;jFC~!1VF%uN4M9YoITumzw=`H^
z_`FfI%pH7%(%g_i_@69*8$Aj57cW7%aa>}3=dek)VXI=0{gEP{z1;Y(?r0M(Nk52b
zwIVcJ?_Hm#o6|W{2-iQ=WRNiS=FW|w&vM-u`I90=4ifR~CC?il?6Q3?SWm;pFGvg8
z0YcyvyuQA^LjVRFU!;IRX~kiuHr56r4iZE~hjxx`vi0V=I^sZdl(-3>XvsnD^_~P}
z!M`DTghhxL<Hp(SS0Fd)JK`{mk20b=4(Vpl#W7A^W`1Uc57sH@ioxDiGZ9}MGd`Pg
zG2SF<EW|7Hi{=sbTV4hzpDfvqT~9@YP`L1<9AbJiJpxdNUo8G-=7{1R|D2`f;*7qg
zQrbtv>t~_;hY=9|uTUHN4RgtQ`mT-UNb~vnz@IA*9A=9z`R02Bet-YL_XYx6fw!37
zK;f3DG#4=iYt?rG0EYWd-B&xbln}J3($V9!ox<d<utoDji7d(VGqfBDoWljTeeKPz
z+tNN)ww&WIC^;K3k5ZCb+l(Ne<A_DQV=uBMw|tIzfHEY6e_Xe9MH4p<;q<dxv@Wxh
zN=0^wbG)am&PR4cD3=O!ML-5yw8#=E#*aKl6cQ&J>@r$qF>YZPoJd%_q%}3EzK^|{
z)=mnG#!a$KyN|qdUfEwgEy}VS{Op_rrnGq`gWHJ;ki&-TJ0-VU{g-LYzhzx{@P>EG
z32WCl0Qa;0_Uk_x6%6IqJ0~dr=bW|9w)card?|E?f8Y!+4xB+9RiQuVGR_6R7o4Cu
zm+|OK6a(aZ(>;U~ne|5I)vhIq69#IEFW=F{*-c=nJyCKEn8KJVe6=k2ddiL~#_wQQ
zMp@|b-a2Gv7c~g$AahT1+TgTrN!p;z=-5Tn0QO;FN6OuL<pe0lv4k~Nj#Xm26U0x$
z8x4HO^F$|EWksVis9VS9JYx&Z8tjs%M<x+f1@74UpGcS}YT0Lt24h3`tuJG0(7u2d
zms|DRAz;E}?0yyw+zitWG2Uz0qO6;g#QkHQBS^eJM|KevYWwx+C$gX!qda>~>E#lW
zI$+tDIUYY6tzygB?L(gP_Q{)}d>zq6^b4LxaWt~nS?1^C?SaY3H+AT;P=WIFL^Vyl
zmXesJiV~${=_luY)n<Q`9PBddcrNAOmpI9VAaavkQW#d7bw)UjMDE;5_8wi*IuBZf
zlyA}=Hu`tJr?^)IjTY(=!8x?`J#`?^9dH9~k9|0K1;6if>b-*{v(vF@F}!VRlB%j?
zJ*eCuVXuDA5gAB!eXrnBe^6X)4M1zK9#<8)FUdPO(oHH`e=iiL&Nv0eGpuam0#qm4
z!4DoM58zIz=I0GU?=amR7{{hT!y|VOw;`Ux<%Zry5r1b9fiJMo3vR&sdYxJV;BER?
z6|6-?*7^4x#PGE7zB3s820om6TX_Sp{^?$WMx~F^gPSFVmfxM3F_$sI$Zg0@$A8V+
zh{Y%M=Vz?d)pf<MwMybI<48|+SQsgF&l$RlLH^#@T;&PYuwT^DRhrZ4(x^CCu#@||
zFYhZC9++#Rm<VOAadK}0LpLc5JYa~LjYxOOIsJBhJF>(1!`|4*d^wDm#YlTMnF)vN
z(GBHLQ<YjmUe8vj?r6Ucr=b%R35)qtxzBpQ@_b=uU(W-kZs~~^lk?>?lX|MqqXR-@
zr-ip~x!8HtRLJ%aOg#baffM$B2EDYqgTXJcqyk+6V8`vF?Gw-`PG=Sn@9D<&w(8T}
zO}V&_2f}Gcz4-iS^<MG!sJ8n?&4@zb=He=%D9NcX?a~51?^q*x|Lbit@=rH(tK(kk
z&2@PM+nDKN*R`%OLoWGf&2|2>DJ(9<WBYn<eGlTnpnRUH(|}j#rnRCW-l0Fo9mj%I
zx-n%P#=+w{d=id1BtENvnL@Id(qxnQW%ID(mPHALA;+qf-D)`T&(YcH;M^6zZ2O<y
zC)0;ye4&eWmM^pq-`RMqcq9HOIuBBRp^ytsR6kk*sXlw*kL)>3RqIGP5Uns$@7;f3
zq~e#sZ9nckCYzFL7p>%ehG6>@FHcuq^6{qh8J|G$l1otSzfn#Cd-hA^$L;dz{@`1t
z)n@t^%aux_^q}X&k3|=F!u|UYPHx7318ck90$9MS<>m0>Bo7~4JQ8w0l<iKblJr>J
z!93v2QMWWt{(Z=JgX&tx=r1tVCHT8V>O{br!L9bs5@yeEKWkb&)0NypS1A%KZ@!Cn
zz(+gU_BOSFiVAR&uR|uDR;}Avig|ojWS5vHI+J_p)`DG+tghrS(@mLyU1rD-_$4~!
zTb?HL5fKfInR~G?VT+)79EVZD6FrO8GWSBpM>AQKq~~_C&-pfBqDW?Y*|I;%_ypX-
zZ_9OnFELrPvNnGn6m9vnUcs~`tTL*lHA0|a&Y_QTXaKkxXoq(!Gn`@Amy)IB0^Bq4
zaD#E?`cHeB7N_NMB5Q}%!!110^!rt*OWsGS5u^8eMKO2Pxq~7qXBICzeD0=OdUM{@
z2DM_g<;OJJXHg8U)}ht=5)wGK8P<9`khvL^cG3w<hcP9&Xl)~F$MdDhPL<pWZa0<|
zBK4sYa=?e25GgTmdU6marQm|4sNjw2a_#EV-XVa_WU~nJIbzD7sd4HS0H@-GxaNFn
z5A@?p#t1R1Uln7bg-xl<$6FGBL7VZ5SVu)zy6$Si<+CwaI2D6i3#!k-+YP}cR08wn
zMHZ(1>0Db|t{4&=-%T`~%WNpuZe4FAZ1Ul51p=}Ps9ES3OIo~^Ig%ay2*gc0=JnJt
z_+5gVD7556v-DRSHtzSRV<){4+56c<1S6dEaO#L(`d9d`Bq4gE@$hlD(1S)Xy)IZd
zQ@!Qbqkj=)jTx!0RjmdZ%jzu7E6#r<fLD|{`n19zg6S<}k~v}v{ru{^tf#*TOGjZV
z0LWyISm8gvjM*RQ>P0u&%BN1qZ=t7{TMAZM>2!AbgA6zSiX-45uiGhP%-ON9{@$&`
z>iS{YqYzeh7*Yfy>hra>UeW!Rtb77pUTCFZaT#U=Me%APBBra-#LQ<&vxaqI3)D;X
z^{f)6T~0~}&AT@lN{kPYW@9Z!981HT4*0dUrL;_r+N}vI<xK%rkA`it6E>}fZ8XzE
z{?_yz{UeVC^!t6dT93U{neuLA;a~2&$bGO1<#NE8W`to*iF<Ql#&^0Fft7rcr}{tC
zd&*@4#@z-t7^}Ts>XZ56r^jcp%Qk*Uk8>>_)ZWP|`_B37+SOHQ&M$hXFXW+QssjSF
zYVM!jRASYRVPj9f6%w3z|5RPrGA%l}9Ir=bL9?ZU`MdiP4BKM$i`!RRQPj@9yX~v8
zPF_(=XLfzTyf5loucd`kqumr|JiRotx~hG3Qh;~X&jzYfK2(ktKf$B*PG(xeo!6MH
zS2Pl5#i0FR{?ebwdOrg6qbFvdHDrKSvrOR#Dn*K{uC3vA{uQKH&vhkt_1I$aO7r?k
z?1bo*Fpn*#4dO}ZhfQBNl9GllOP~|h46L{G?h!c2O3h2&pU9=O-tyjq(96PY@iwT8
zD$+(H9G5(*aW{*CM!ej@@wm3Se&^&F9iH(qIq>=5@3sw(rFTLlo)FP8&jG>ya8FIS
zyi6{RsS$aJer^UySYPEX2R!B)`s?{imZTd3*J95Nb`ack(j@g|ekW^442~4uMwy4)
z^aYPgv+(aGpYxm|1!M7b=zzQ|+r=Eeh&eC-xQ46f*Rbkh^Z~u6&7<(#)C`=t=HxH+
zItjn)%QD}mn5Y*n6jE$FW`S1%=}MHA^pm4hkf7pFMjj^%ot6u^^~i~6T^s5g8DF$r
zta6nc?t<`SD`MJ-8Mw^@Gt0FO?%IR03hCRH*fOb1b?Y~#g>V#G>amx&5R*fk24YOT
z1tE1eI@yr6ayG%|J<&H_3qncEXf)fbz3XgRode!0XT`0f8SI&472sUYb+pYM2I<^i
zYd8iY`yb*#wYDgM3gXEhcX+Del=ei=wI`Hp8X6-{)G6%1uH~Vln3)ZklQu6{4Y6D`
zYxPAMkjQ>yR|E<4PJlAM$v2OMYTTYeoeq2H%DAR>t580>;*0+!BvSt<<@iGvvDgQB
zy!Z`UV!bGlKQIBWgyT9X@&AXdvudj=+?F&1hXe@j65KVoyE_DTcXu*@;O_43?hb+A
zE<u93yUXge_j&sCP2bHwu+|t~je4uN$$9Ntq0g^Dt80F0v7oo3{`YmA*Xc}8>%Do|
z)QwEotvCuuvgvE3#vVM_=-Q#PdE(h0CQn*_-|)u#dPqbP?HKlRlHZK~2%Mx!&_`^n
zCyQV9{Jj+J2;W#I<a#7bC(IuW9I+#f+I#)ZO*Ul5x6!-Ri102r4!nN*`J_nv4z&67
zeg&O=*uBN#ds*KRo4)_AghPSYlntesdZnUzT)2IxB$|2ye^qWrlCIK;V&|y_6F-<_
z8lH^P=CHccgJM_t9<jc+Q{71a<fP?iFf#s0U094j5veJF+-Qa%*((sn$t~+5^B|nN
ztNx<UZR-<I!CQ=!1G1Ngu=(=Q8+U8Y^&Xo_uBTjwuh$sc^W=a+ytFHL#=qPd4RR!#
z#^M<iiTk!I#axtvoy{a2Voo7XTB;v&Sn4V4$+s%vkeWoMe~=d>;wwFe!JxvS8q&tD
z^G_5;x<1bWdWVGf(kUgXMM(my&#ur86D5^ALJv%8^0Isq<`~Z_fkxOb5~7)u;)}>7
z1h}xOND3K>ZWBJ<?r<oYwhBFkhoC>yw_<lzF2Nt)nNlLd--h4zELMuFEknQ^;mGZ=
z&qtYQx!}ac9b5rIKlI4tw@ge|mX`xiOv}u4TVB=P(NN=|FUBFvYx2YpbqPX0x_Xyk
zFA%fCCSZY(9wlKW5!}H5RI3?3eF%F0ygFOF^-Qi>mo#`wl|(st1s=D5uf2kz`E-u@
z7Vn~vxz0K~Fj)ta@`EPFF-I4~pWh!;!m<>p&}(PNja;Hx*>&W$DoA`WR?}lX!Z#Sh
z|59o1(1QyZS8lj=Zu+wI!08M723&CRKx0S4t#gl98d*JgAy6Q?#?Pe@|4o7k8to~`
zk$o7Zs8(J|<ph@et2Rc}#20Q67`lC%m4DWEipgV{dE9h}tk?<o<abdRVdjDKN#`BG
z{#DHKm-(XHffmJWZK0Y08+&hX3CiELao*9llN#~3vP#G^MN8)Bh1qrHa4pC80nYCq
zp6siuBB3yl)3^#S+lBFop}tHTK36Ezw@_b?%2+*p;<M{!k5UbOrZ+}4CJ7OltHouJ
zW|5a^S4uThP;e!(V>i4|Bb+p3jV32Eh(}OzRnxjFJaFOpaZy5dzYhI;D;7aZM8=yD
z{qP3_MpP0BT?Y`!=CA7MKOlbjf>XW%<}m`Q^<6yGfS(?BZ~M2ub`Od5iMzZ%1h_N}
zijRe=*<H-?<9)_oyMLLJn;oLzsjr^5c*J%5^LP44n!Sim(ekXaCU<1SHXWKWBrEnG
zL0+0zp|!vrg_cZn;V9KiOKg>qLavL)pdD%DvGF_mvOX}&3ue$pu5QHxfPghid;tuS
z`{19Ccf-F5TQ8L{j(h$EyU{&}R*v2O?g-vs1v?_gq+6F82ijW<YI){fEv7UQ4UVnF
z6OpDGq`Th~C=kUC(=w~hIextHqNMf<3aOKe*U^=>IoTlgpu><RVwS9!_Q+74XP*s%
z)g|$O$t1A^QqeZezAi^4fMgC`2F+E1rDBbUmrBemfWpe?4>Sn{mTO9d>GL7G{A?A;
zQ<KO<R92z;GI^ty2%>1)rWNLH@qt-N!%Cc20PA(&IY|bo203CBrhxkKyi*P~J=30m
zDA#lIo`^zfK$0&;k)4D|U!{SFRWB*c15=oD5=&BpTux2~E|qi?Aj4?oSXLk!;|Jng
zhGq^Y&rFmawQ31-RG>l_MJk9{w^W`Bl525&K#;ma%RWE9yew-xDVJrEBwO}Y1S{MT
zA2o_Unk#2}N5Z@GEi)7v#m8%k(y7xv9YCGURC_Jzlc$IgO3Z#<Wz)$ukIdGzS5SbT
z5t1FD2%$-Ys!^f?NI%UdkxNP2LHCAE?P=+J{oP5>ts3J`a^l-dsF;<@>-Z1bjFQeV
zu#4<>6<sdJD2_pc%ef)fRa}SphXWT#uoT?^No>m3^>Nk%v}tz*LLm}pn*{$?DMlMA
zO2S)NU1Ee6kQ<zK-#@fxl)8ZF=Wl^++_Mp3fm6?7&l6QZ;rsDl(Ag#Do!~2q!>!=v
zi0VABD>8%5$BEsWG$s9K6oYWjvxj{4XBR$gQnqvQYLAL{8I-}$%mVF6gH&l*CR^o{
z@Z;F=3ej0?o!fFo!Mo?Ba2Kx(d@eSI!c%!SD@Xm01_Pu7X$8gltUZ&dz3Xa|t>V3?
zA}MSlhV*)%ycSZoUMZiDm4^cRuqtjCC|XMZ>g4q2ty*xzr$z-MlonT|8j_Z1NmN)v
zXwcg7dWT#!wkY)8|5nH$SWt<G7&lugnO?44x>st0`^3oKYYWID(~?^DWO~YED4wDy
zLCvo$>BDr!NECA9xA8BX+yn8=dyyPzgqWyH@h3pk)P%7>)FZeY!$C1C(|4&D^ebK9
z@VEqoa<SQKa0q%JzSukfwZ~f^@y}n>y=XWOMD*pvN@BVbOe4`hGS`KUNg-g=B8`bV
zu`~n6r==0jrNv34-e^LNUqy6|h7f4k6rlgvOwR~5{br1<go1EAK(Y%SPt^n^^D1;Q
zDFFIxPMW9+tSorn3%v3@E+usy7Vv&QN-f1E`Mr9wgD*rO^E7>TDftxAE_5AvG?>^Y
z3Zr1B+R4qx>~q3YDnwhwIy^I$s0$p}Mff#e3DW`|8>UC-4BAiSYOiI$qG^Cza;<dp
zCM+^Csf?~nCltx6%dx3DA@!_X#lD}r0-!BpT%Qdp%(UYk_JrxvKTY*}8i;7lK>2>g
ziK|N+1ddo4cM@hbI?!bvoRU(W3DP78Dl<hhoZpHUpTG8G|3schO^K6t%TJz?L?^8#
za+9PN)CNEC)qRr5KN(dv5RLxIQWmKp3{g9@e~P3#?nsNAT-Z~ed1@9^)joF(00mhT
z1OW?B+L_7hm|rI)bY@gUo^@j`KV_rRj~PR4n97QZCBWy!{|j3>R$+7s_nnXy7T!t+
zyG)Mu3`p8Ubq%ARBGIt9(1WgU8nn|jx^4Cl6u5DtE0j`woOf~=`>S9}zL?|fndnMw
z*gEB_&DbZR4Fow`vJu(k2WF|E1E{FhlUo1lXs=}GLW7Z2Rk@O0JTx75MRXCi^@SLl
zeF_WEJ*HA}i`pMMEOLZ7?O>)JR%d4jir#u7>Ns8OjRZq=H2nx$YuuvZ>1NCvqYdUR
z@;_O2WHsPdFwMgMt%5B_MKm<R9<gC#V<p=2xU0-NbfdS7jxm5GY#24E3T=i7e-90-
z+y196#vg1dBTHHtdBqV>w2*XRd&2t$IPU3L4PZGhrlN5m9b%tewtYpyr?b%UYPMT%
z<y3YIhPtyVlRBexA)X4!yx59-(AT~nBR<wMxzseGKx$j7=_&i*>*xVJ<h?#dv7Go^
zduUkN_$ae=d=}tT6Ermx_?vtRp2x^6g(Q3*zwS-joc<CO?^y*;{nNTSYr}v;o^ixQ
zUr!ur0ERLVR`54MdhD=d>kK(A*>DQ5hP>xZMUIY9>OI~pITUp3wMU+yAw1N({_c)#
zS*9h&y~{BapQYQreAp)SraDFGQWp-8=mkx}<l9zTcLGFbY1z=2mw%X$r-`C3NuNQ#
zu6<hlC%IV!pu?N&w1|$?rvlc6u;97wTazHeMYQ)5P4~{5<<O{LbgV|tBSkloABD5I
z6%2ijM!VSy6?26Ve=3nSA@?#R?Wms@jzL-%nXd4Z)Hn~XBw!b8>B(}u|H-nZw5+}`
zGX0tP2@AkElxj3oL*!Q{bP8!R-6yw}#%m;}6e#bhqV0k8cfL5%Wkg6&OU9=Uo{#V&
zIDRm)Ot~0Ge`=nSR<r2;JY5<xstQ+2X$lfF%!v7LyIM$RDeA?`O2Ld>M6D-Rgr1;-
z`PH#UwqK{W2ZurWQ|9*HM@YzCE&Qa6*G8Z6^d5jOSY6J6Dm5Bq?)U*8Qr7mvjp|Ty
z4rxduIg9TvAu)?|8l$F`7;K8v5?(sw>7w$hpopXyEE@yWt(7*S%9g1(TN3tNRAChA
z=y$QB$<tI&b!m2v+ESgPbEz{!xX{{N5pp=i<V_M>U%4qOIoZIZMu>Bj&{eOY6f!PC
z3mYKPP^3Dd=l_d5o@ybYVkA<CJ8AWBg#Mpikjsl`|5(<zs&osplXm3nbwaY$w__$D
zF*fN}fPw7_PWh-bL##x8$Rqzp2IegW6U35>A8TK1*(ag792t1@X)R%#pd83=P5bTC
z1s=PI+X$@`Q&KFyYH9XG&{)EXU~>cdh?4=DdW?^9AVNARb?s<ZJnDnYs;49g_Lf_-
zXEB1O!)Vll+DSd|r|;_nYCQcY?j-bTi*LE^_XM=(*G~gs6^!o2lPfrYtl?gtsl;4x
zU@}s%-9BQi5q{sp6>Xn1MW;ZFB$`6IGzvu$r2VvKZB$Zb>2^CncOBe;_L4fF6#z6o
zUnZ^|<>UOjoO0jocG&gvRMxxgVDxtG=h*u0dN||pYaW#*_5dt4ecPeH41!z!oVTB9
z$UeYUukO4*rL{|j3SJ(E^8$M7u3Prpu^rLXCW`JOe++G(44$h?=SQ=NODH3T0>WDm
zYXYXD3jAQ-#YI^t3U*rVO?dVJHDDoaTJLR~5%goP(DY9@#21HmS=WIG_#f(e#1*?r
zMJ(ue+hHu%{PGCBTY**VFi^MN++Ras_zP*Y;tqXdRIA8GFfUn$+dEEY#$32*(%g1p
zXZpue3*#mE1Zdbm40puROEPV5S|A8!UsSnFdEMo42~1Hacb3GzL2LzO9Kb)$L;78p
zF_{|tT&DDY#m?bh9&suw39`WYwP`Rqqr<Rc<4o&b!31jJ!XcR5QhkMhx04B$3b$Vm
zbeY!f>Mp=dKE)p=I}1#vHaa4(*s#p9HY;&Eh1ftyOk}vstawi{Z-{G%f_UX!5tksJ
z4~ayw%Yl24lc6%eIu0gB2be{v0x^#4zwdjPter*RdE77r9e5%1NB%e%im3A6;PbwU
zSdH%xI8rZ`$bNmTE!%LiXGWKQ=4!C**twMZjNnxk4A1jJ{(W#%I(>k($ImP3pa}IY
zXlh$1&c#uN@u>_;K%Axc#J6&o?`yd*D%nJBe8LEWG7S1PBhm{|J}@<7Vz>2sKU)`}
z!aBTn-%Xu(_k>>dBE4;s*|l+>j}p1aO13}~ZBle8L;bU!?J{M%OIu2drG32fB){?a
zD$cvYj+9E&W#lB05j)|`T|5f_iJ$_Tg&H=~HU&e%{cSSeUsEK9$I&KLGAlv-L7J?i
zoMZ&Q`3U?ZOaO6O00%{)Xd1aphuQ^{=Tr(a1iwBm1c#5Fdt+xKfBop|uW0NixX;-C
z@>%>7@vaNeF6KwJnWI>|s(qCY#iH_(aK@)Jwefg+G@MOO8j>`<_tm1m_cxDQJ#VOp
z?cKbqw-F!tY`RLzzsVA^wML@yZbLb1kv~A8k`6gU_>42re}T4r@z$q}@V{;9k-jX8
z3p6>0`y*dV#~U(O?7BrbEs(h-TRf8Q2=>`CO*fa7PC|m-#>`(@N+M~o+2;!wlN<N!
zj=D_+{CQQ5P0*abjdqx-gOjAuzMFb&m};yR^^hm5OsLke4;7%LPaTqjqrss4WSxA~
ziEmyUI+jSh^nl$8NoHc(yNW-YML(3kUp{y*b91@eqcq!_`Y_|2pF4-BB0drgr|6xE
za<9fd5)XF@U9vhWAfoUcS)sbpjA9ud3zbT3e+hWPs~wT`H)JzR_Ps92gGu-OqPtfV
z{6N9rO#q1*(4HmyHO$;D>xE4?f-Q?D-eduztC(&;W*g`V-F+z?VCZP3xQuaxM=C*p
z(H(uz^R6imuPKyyrxxqEOuz_Ap=W!JeM7NEm4r4I(<eU*k=$Be^c_Ex-4Xx2vMQ2r
zsIg;8uLY$GF;hyenuj-<xDnTpLknlBv-GH=HcXthg7;ylxy#~+cfti1fLM#C9?Cme
zf#gV`tqkN)KBTc5v$Qb>_<ptb7*p!Bp6&1AT&-y1=J}2#+lVPz^6Rm$RLZ7$f>X+n
z6yzotwy^i;bRC~~x0f8UC@L16-P-0E8TmIRGR814ha?JFD{z9J&<gIft{PH%l-I~D
z9p_6NtEQa+GJ~kTAD!^brG$<S85Nn-KIw*Gn+R~0!j_XoVgL2^nbz>%fLBapvVL);
zbyDJUR`pG#-EH8s_z6*7!j+I9M}kk(yl=P-jfc>gNW$;H>=_I+$QzoD*U5Fa)fpA^
z(rB8F%(`b9nhDPNob;KBe%!CWR_XTKOvEc-B^l?dcj2t9YUwT(k#VRmMQ-957XyNI
zM(6<a+@hx_OzMc4#}g($o0|K>jf~vD3FUQ(9w+)QkY#a&BYVwj#WkFzGz>rLM*BGt
ze~LW6kE%W?*A@$9ceF&y{8OGplX6r0-3-}hx}8Ovt1#{j$y^Z<zc`Wr$ITxSc+ak^
z6DN4)Maj3F-N1g`sWfN&X@fz+A&)6w^{^Otz$%kkT+?7vEa`X)zLgKY_YJT`=phvl
z5l<&{oH3W1Eeu7u6lA{qxl>f8pA9|UWxn#&WPqdOF<rvzJHJe?PtlcrWhlSQ29t4*
z3gm4n29pOus*l+Cd*FVFW;+_KP5jLgmiHu@agDHZ&i23UEJh()7E^Z_1;q27<a#k6
zhDW`AiIR-zSAn{5CcVqXOU-62zcAnXKe6whY?6fip)*fsAg-3A3EhkJ#+xy|P9>Dd
zh;iVyOOJjg<)k@A4W+jt@#IWjU_?+ci%4R-S2R^=5U*$*IhGInn^G%(inDH78R0c3
zUErSNpt*l=M)Z9W`vq@Ii}l8(Gb4ftsIC^3C6wfX!GUF?dhVBC<?By^A%OYvY)O}d
zp@@6_g$z+VT|6ecT^9UH78`hox+#FRzN=-`vc%GagYExH#jTOBr$&cH$Qg*svZ{%X
z1tTL}prNGDMz1Ka(>~LTLC0jZ9fVm%f^;)G$h|Egh!g~sp<J`P68xf!+C&=+%#p{(
z-Zt&sMGcZIUImn^(d2aI|HY%`4xGrC_Z$7nH$U_OyOl*61DU~U&P{>+y*{&^S}BA{
z2G%Dvw&k<9y5I1TK{A>G)}qPcUM^WmF}92`tTCAnv1)Z+Tl$yw;8O{q$Gyqts4+!%
z99SIwTtqSLJU#}b&lP!?ck0oz07SKfSHFxaGGb~{PQsXiV&$hFmTSvGd7X;%eQ%?k
z^A29n=VCsO6}^o<P6WNZRIM9{9$eF#<D0x5`y<Gxr7Pbk68Je^Z1{=l-pfKn*chAi
z3R`-|7|$>!Wb#wY!}pcAxXEDR@As9QC@X8TNQfDq5Gx!uHrH833XZ~KfxG0k9*eT<
zqy4QUd`edm^K~5K_By?<&g$~|SikwS>EZR;M;70_-P#T&#xTjUT#mrB#$CMv%DE1a
zI*DbGi$3)PFV}B&819v<;)r`|kG5rJ)FYzhBtxC`dMxTN6X~Mw7gf-RwUfoW%8Qw%
zEM$t~a@e@K&PiClMTro!K(66?qv1-eZOKpav?|R%;f&f&I47-NIV%igHD)#`dP=!v
z>!KS=1x_k4m3wXB428=;MRc?zF9k2%v@pvT*@-I&^{TP`suZ-kYJ!VHXcx%~T_)il
z<FJO<GMxg7EPBC$$F20z^ux?hG5tT4033XeTVYVjKH;v*yEMZ#;6Q<{***7S{?0k_
zd>0$x#l}R^!y9BgV<vPx%f@fbtO?I&Q1Kn#F8>hC$Fc>2TrC-+c%0=2>oB#m0Pbly
zt#(2?i+Zs3ATHa)XdxVYRFiZ;oPI0qWnLleWe`#dvSYp&N{%0C+NTZGK5bslObgL@
zg_S|Do9ey4bgyp<`1Rd!ONQvE%FGZ>I<TeLXcrkrxg#V#5YjEjzdo<U{Ca}C`C%@H
z237@j3Ejy|n~T*->~rCZuJrmgwbK{h%6T!E#(;Aaj=B=XOV5PC;#D3YRae3xf*vjw
zh99#U-J-IK=`8hXSa_D=5y9Nrlcv1#OFE4q{oC_iI_(_i0EtE(QkTrR)gi=|Q_~NY
zvy;en_a+u(1$_ApJo+D53SCx_e8?*ko87Y-LxgGD(oHbNps!q?gi@45854Jq3yd3#
zm}AtvCSis(aP92W@9Bn0tMpslJ0)~lPn%pj^?6%u>YZKe{#j$$%fE7Lc1*U~f!ii&
z?BdO-6nmSk0hcXue<ALrf7+-!rz%n0+&JFD4gHsTP}<z(W9Fhh4jNp|*q8iay@~LD
zm8I-N<Zrm7EAgv|e-1a=j-i=Q1UJdJVz_!$pOx6u`(jX41g9g6VsIyULTcQXtlFIC
zI->{#z>aJ0XF|O0e1kJzO(NuuSWQVBY5|cY>in>n0PX|{@mh2ELGL!hW+fS1=+By?
z_4JAdgpC2enQ@r8_YO+wPi)z3+tr;@XwHjlb=D4PDykyYPbobhGv8$nzSYRJ(cOxS
z82@UiuGSP+u0RfeSfxfeQFDD=nZ2k8aZzSPCiGgeqF%xuK|r|J{9gJ(5Szss?=pH7
zJwsOj2NdZJEVf{5{ViP{THdN))tHv;vut*1hGAz;9*y7ay6Q1%l|CFl`6#O2U|DUd
zmYa>I#G%D<Fan58M`g`=N-P_y3%WE*Cj-fLO(|*Mbp5X-i;{sU+cfoQEig|!5kPCK
zh?S@H8ZwBR(cIcuDV?<jHTmL`x5C3ueV8KwOt^S>|6nhq%i_^6JiyDd5FnGG<spMF
zy^}lt1?EiSoRMH&5$J=&?1f;QB@S0}VIT@t;&*v<E;lsyH8j&K{V`>szA2e>RNP%9
zkx5+&qhWg1cEc2kxvheqRCH~Nv*>l}!5Sv6mT!dYA*0&6oK#d>7pcm^PP8C)g)$Ss
z?IW6k9~U3Ve({oy5~1gfgeKL(o&g^QGU~zRwyHXr1@?zz%C;proR3@>cbJ;cwDRu)
zZzLFSXdj-S(qVh}`#1IOz#6zZJSjp{?mjLWsAiUOSR<HK+Akv5wzST>h!%Iy|2*kY
z`z(%^A;-AylWF#p+9e{c88ZF0$^#~WBf;zmWStTDy~cf^i?**Kr7w*-%CBu=SIE(j
z$$un%+u!gS7aJF?)MoU1==s{#d+wR8Sj}8~3%8UA#xFOFP&nq+!(dMr%7V#=<7O-w
zTh<CKEH)+~SfIm;ecKfFbPYWXa6PLyG1N(Y=FhazXiVcdtkm_#-A?^crEw__NXDO&
z&k2cDu+?=!3N6~eKoK}oekn5b*0UR2lHxQ{UFFa$M3<XyAaO{A*_KVARCNW4=otX!
zaJv0iVgz@Ei!m-a3z?D#T7EK`9xh67P=T(NFYRBSS8K(dU5aHbZoM%E(xmDvh8NU7
zFLQE&pEY92;@=+eB(JUzB^>vF-6#SPw)v|cd?8GPnum%vRrsLtu}}9elWT{=^-t8^
zuSema)?N>w7YlU!u^Za@ENH)nkY=C~!@PsRh3*m?!YhmT%?V$ve>Rnnpl62kX}gQ1
zmC4@W$P<<)oI<(5)}*7P#+zra{@T8!^(Ex@+0jirw=GsA!@8bX!2J?Hd)%bGUx-*`
zn<edAdm2tt(OWSZ;7e15dVM5bGBkw>e=tvV>J#z@(k?bPo92Q}f1DQQw$ZEVm)amr
z=57;N@8%%kRq!dI{f?4TQfXRXb7I#gk(5_0uWwqC1;(UDEX4j~u-c!zVk;lel;~Du
zr?bqubkzwb7<D^MX@ydN-&_1kSVzGFTx07b+az6$4-3n7VpNgLmFTe&&7W0res@S)
zK0M!Asy()~BGHFdM->~&;vk!1tZYGPtQ13$Wz$_gDF@|P=&o>`WcG}jDMwI@2Dx8i
z)JT4Cgk!S=Db;fCpR4uHR68mMH#oX}R)xpZ6MBN2xoa~*nemJQHf&NYsRjaOndO&$
z%M&(=2aD9{&met+2<ny5t^!%)OiqJPWD^c<%*k$Khd>)^y_+MT`>omEYfqb;H@+|I
z&#>9Eix}jKRO}Qx->4KdoV5>RS;aTyNY>W(GG}jN+Yww3dF-HS2FdgoSvvw-Ol+bG
zDoEfR)HNlg_AEz%W_l}3HGo7pX@!8l0|l5{bn*h*)I?q$Mn;FIKpJ@h-&YOiLyL^C
zk6O`6X@9^>x!{QLy`U&pi+Yj1#zE~^N*uK9K|8hFXcFSQAW&Epj0lvOL@ko-Tk0I1
zdp^8qroeo0S2*CkE}JW;kf@@F8|x_`ShmrS$U{!-v#|t1C!ED=C-=Ax^PVlK{w7&5
zFk3#5Cd7X@!AY?CvHAuOa-A2IX>_sYVpeUeHA7AyWrU-%fAGeBObs_Lsr8=b>8@=O
z(Jpz&pC|p*$N#nT7iI3M!>;(<xSk^}%oa_hlW&c~$ntT!cYdi!+Wth|wK}o>!-TIa
zerZL`N$@vNf*i3@#qLIes*_xvr>s80qN%c7qQS=8J(K?@RE1^IS2EwU_)B&>8?mxO
zc^|n%zHMuKYJ3y=Bf-lzgtpmJV?sDNbb58fy_VlcpVe?$FK9jHD|?&iao>#+2=cE5
z|5&~mbwLJ$`l+AH)8^X|!Z@LA6Zt-F596hIpvcm}{L$Q<zezG&`^9SEO%d3jJD{j!
zyD;4^!@=}-Atc)YYs`uCoBJF}UgG9o*&Jf>Z)4xCisg$hl~9{?;W#Foaoq7+^<r9-
z_fhV2Mxo31$ExixIWY=eqQr6v&b3?gTbC7JtlQ){;q%|B0M14UxQtnV7K67&T!%m+
z^W6&g5^pA$;E&rPxZ_A8j~iGyD+l@)O)`lkhq~Hqfk=pMM7I5nvj7UEEwJzp-^-@S
zqQA<wA8W++{q^XG&^Laa@xtT_kW%X6R2iXfTQHADRhmO9ahL05`0tC>^-Q)<(P=pE
z@{3Ta%PkpS>9p}~j}ITKG>yDqmv$2hv9<Jpz&$hGe3yVfh-ByO)h0!}>VK#|iW>VS
z@z4D>aGM-5>@wVbto&^~lxsM02b#pxC8Ifc^#z=6@K;kFGdZaevT<u2KNQljdO|hf
zscz(6?r>Y|g0l3=6)E;|XOt?&t~Zj&y4oQeQpMy`!gW@SJ=r`T0_8}2!=KUMsN;Eo
zP)d3pYl4Hs-rM8NXW+eiz~524cbK+~3@r4OSlvx*qg0@qlr9DJMZVBk5ST-H2YkQs
zC1uXu_aNDD#OxVC`<!-#pL4!6U*;6lYR^iCh<sTqqw=q(`P06=Yhmz9@51L$yt}$i
zi@{&5rZ_jXKRpeM={En-S2a)eHeeC}BB(u0dG~aF9I2p6C4!pBMR8f}GW~bZ#cl?;
z9P<6O^%>-_H%tE6LYgA|reF#uHpA{lM;3uF)w~MTxU0}UHF-Y|pUJ$a8V*X?L>FlQ
z&&W+rKVY=Rj6tl->zDiKTL5bY1v&bW@Gof(c}%xqLhPf32-y#zpNS7dbs>y^+aAoR
zuIjO1f(N4+e(A!@PlzmSp$yVrHe*3&B*Zk9l{nn)(W@+yl8?tPIB;Z7dDFQJgZE~7
zg~`^7#H5lb)(Tw3ZT1rI)?#oCm|q6Cgab^WLaUg!3(1&295YmCeym2Z5a6aG)WH71
za!FB`T`LW}=<q@#-~DdvQEEpDESsrsxZnu`n)#Ehotqb5;7WP)9TfixKD&h98m!=R
z)2OUAh&&vE{L}<Nj}I4{IUvq!=rS%YLL0aI$Ej%;C=cVutWefAjIDbVDhJFTQ(3R-
z_W(`Sb<8`HCz>q#Qb1?)x!Q1;#L|}nJS9<-{L%^8Kf6%NKNbXQIPg*d7sqQAEgc2P
z_>c{h6oIzLxKA%PXHj(D-sd`ZK-q_AcfDKj(HL{-sBNJimjXX^r$HZA*S~dM05U}-
z($k?X$0#$K4?{Oa=F}tyk*aTtoy{u21*=e(Dn<Jh3Mu$qDH&dBzeCT>RL;g#gkjoy
zZFwT3suMfJY;WH$xilXDQ>e=g(BtFfX6-mYB(U7w4C;y>UZ3NdZr@uxvAi(dc4NxQ
z2rauI@p+4Qd8u;ta$~-12-;DU`tm|8Oh?MBLiF=}E}K@gaXb^xz};g47rpx^z?Rj5
zv#oBvAvbIJtHeShBd56g_UGS33zMI=)onuco!V<Te=F|)dS@R3T<@3S<jz4y(SuDq
z-x2W6{s@goE_{i<*ZGm9ikp12y#`TzuM)E_y0nx)C?+JeFBw@K@jYf_hE%JP06HJm
ze}!^J(t?#5PPPM4gWn6mHhXpIwZie%-nINyP3i4$sL(zF;xv9RACi(&NEY3)Y7IhE
zt{Fr0psQyuI;^J!FeXW;Ws9%I{3Ug;U3;l!fLX=87R&SXRrwS?n;=o2%;PR00K@GC
z8bQUhtxah2{AX)qi;ih`OqE-!e7V;3s)9w&%+jU(^tpXnmWSo$Y+oaHC0W%_6r`F4
zKRIt@Sl035f1GT!DEj=Z#Mb41D-H*xJC{6b3%qc~@O;Vvxf4A?Vj{lokPkJk=GDEl
zcG49s{A)Lv&lJC9_%6%1UVQE-L5Lj=T?0b}?jc??;L~o|hFqf<r`Md__{MrF*zea4
zlk5Ak=kU*4{E<j^$fBClthQ8<0PP?N1ob{<8S>}xPj}qn5(Umy+eSBS(I>pykw0th
z0SK-0$Uh7L7<{GRf~^++1A=S4D;S+F@;Ls)C74Of$wY+4<xc?!^UKhE8oHGrUWKrc
zV|2C4XVpjxnP2Ow8Z92ImO~H3Wsh(>UNYkFeAp>eH>@<<ZU**|e8B=2XH|+~Cv*4S
zd~?kK$KR7$J^ql+%%Rubub%L-G*EoKIdD;TzE+h0fHj=!3>Ja4&PP;KT?QWQa)?!7
zkELJbmwi9jxxJh%)(E<J?;S7~6ll2eJeDAe5M}<sN~rIQ2JIU=zcAzqHHTyJ*UW4E
z%B^^`&}x*@C&@WG7YxaZ@nHx)8{Kboy<a>Mxc*hO9a|Mn^L^{33jRd?PEnaRaTRg2
z4_7l42y_kWIIUaeimkBSlPLk;-_SAXYiN3MxNg=U>*@<u<K!pS%LUvaE|Z*1{&|T_
zApLATUMhFiTI4{y88~|O8KY5?75Mpu?oi^`c9u4X#9nK>5@H?64Cn6cMy5&D>1B4^
zd*G-o`660pW$NI;q)@+>D!nBVW&MRfw4YfRP($d|qa*ukDI+PM)_U=q=#}PC;hf!a
zaBR02_1P1i0dYqWJ<1)=v~z)ty@$Zf8EPxozY=bQO_A+eCa;%$;eEn~VHb`)12Zg)
zVFynToqdiS!!OBZA*bk@48eCtFzW%XEzHFuNP*>Z&!~LdgXeIyS$ZY#LeT|vJJaF=
zZq<h4{?6j^DbS_H&z+#r9o2C^3~uEc0Y4G5oWug3u8O8j3FbO|d;w_0*XqTB>*nTN
z%v&AHKNmJOMf!6Nr9|ho)tJ4y)3CPCmh6g$DL2;d!4FA-HMRDt(pNRkvcaL9qd7M^
z9fKv{nd$oDx!Sg?`ptaxQJoDuAb0?ec!P7Mrf6%Z*OQ0%pvwX~GPf%pLY;E6k<7DV
zZPnCex#kp(b@^s<jtzxo_l}3e@MY{aS~b#(bABTSY?uPurlN-Xr%~^eHFJ;ZNoa2r
z=GON>v;`&p#XvR*9>Y5Cjzz>~M(^a$cKe(f+<j3AQbRD&j$lpumZ~~{TL-vgZK!5F
zEFkf`7gOkSWvySZS>?N;>>>GbFey=?Hjw1d`~IL~(5H-Twm_winZ~v68!w@mH`5ar
z{pxWGyP;E@|M?-c?&snI9qd9MqR+dr&A)QdjdGjyI(&sgr(wcpYx_}#$33B4qOk>9
zFlo<5)CUWV;^2}}c2$0n$_M;w=jqPitXz`XIk5VJ;PIm~*;g&eo!ZX6a#Mkh7qaae
znn2yGK%jnUGpVqQAWQ4nkU@9>ifgk@WY6E{IwOpaP8~#0YRT293El~+N{IA_2cero
z;0fR%d*91gu?ZSjtG)HN+R&EpOxB-J)$=6ny$fxLGi+ITN!>PY2ERW|Z3ZQ50(_{-
z{vESb4pC8|tq~fVY(UFT$RGFXc~z#?2eJFzthdff4E`Z>wfMaOEi0|eiS4eh-@s&n
z1~aZThJ`)cUZkn0^+!CQ+#{?B3qjt+$LCbYgQ3HqXP0xe&6U^MC=sCNvyzVsq5UPV
zVv(9u>5;j-BpEI6k^*$Djk$e6{xdp!5MxI6gY(Fu+Q_x@U=fZ@>ew$C>g2r6!Ix55
zKUBjv`imQWs_}ATJ1AFX-ogdRoeT2e8FX=ezVrqnTHo|>Jq3B7PnRlc2W;c&teM6+
zqlhbG@Oe8x^}WI5Og;i`$dV`Q4#g0Dub}OBxchgI<>mJI2hbZ{x_MAbbTGv8Q5iY0
z-~GWKauNA@Ps_Q;$^B7H{+;QKrb8zY_PAW-DOLdJc`c1JZg~D6MtfG~_q!%0J_p+)
z`Byu8JvzZq#j~s1HF2fwCtBE|0<@oTlBsb=8kQ}NJ7Vh+0soj0P1k7#4aDFz%U-}I
z(`hO90LP3Iz%$0u-N^J$08VT+B#s-@y6Wkm>{*aXDjRnD#+3ZC<7G_r^%9m!_%FFH
zDO#l5QtR)yR|Q-T!;Y@am5UTjxZF-{_t&LN2lx2*nV=vzbL_R(_{PClnbr0Wh2ws%
zttG21VRZBw3VR8Y8MKC0Z0>sMJCW_|k9*zsC)z;_ATt-_#d?bLR+!uK6zkJ@|77q;
zym<h0r5~!2*$%UfMWUhIf-2>(#E$;KZEfQS4sqwqVthLI1NJ@K8BOgHvq+i*KmQk<
zYs_}qr8J6sP2UX^Hy7LD_ZX+X_%<_b@U3HJt4xqEJTIga5oyrC$}k|<fp{I(=IxX(
zH4gyMvveHh@EUHuJ9yN71pyw98XrDnid!FW^vT-GFNBWN?{L-(D3HDR=Jx)0eyw8b
zwH}z{@3dvkw{=zW3mq(59Xgio`jH5!U>iV*sc=HMa|OX-Q`^^$N>f!2xV{{6wTH<0
z+)j2UQQDSI`bZ^ahAB)21OoR41U;S_-2nC2nLlVSTmU|jl|t3^QGIkM{_Q5iOfo9G
z)6ux6Nb7l)4$cg@0qIHqpuOv_>8Da2@t<|0ohJ-aSjjTJNPg21xbkrX&Mit_mbmDa
zr1%ll-MbOys%l;-;P?O<@4Kt*_fWDRg*HS+zrt)hz>HgZb3W+`iE(61?(&DzSD@Xm
zX9T=z<{ri;LK(WeUv7NtmV7*J@2=f~D07&6KWbCiwpJ5hq;&N;jfB!^@n_)I<BK;%
zB(xIWm&bozPObEg<IV=}5SKArjvaKRoFMogBkY*ENko*|ChrF3T?>K}mmiroqTPo{
zrAVa9rLFo(kJj~?Wjr>0w!Ll4fDuVyR!uF{8pLkvGlP5@5VBA>ee4V_jkz!4;Y?>I
z1=ZEuLQtAKt=H7S=;xlhp65!w9}*y5=f1l!5D~{sFJI3hXmjGWv;g!so6S7YWb4Mu
zgmKm<c@E|#B{;D|S6DlhPWsGQwz+q}!sX>sllhU{|F{smapFA?cgETS$6!w_l-+(U
z?`@<5GH7U#iPPF=2R~iCCRO!rSTN7(lAOhu^tU`Qyz-0|P1x?VYxy&qH-$t0q|N;4
z0(8e=GMP4aWls%5&icRGtq0%s2^WNyO@=$C9Q&8vRsbZd2f8)9oUI0<WkjJM4~DmY
z1aSq_qsXi7E<HhLSQmh$C?xt<tF>i1JCtau?q4mW7gwHLP<{W(Jr2!tp=a->Vw{w4
ze9OxM)gCwvR&bZ0V}E)VdcO<{{VbG^DdbIUq3hZmiG)RI{^__-UWw^7s*!p#z)2OH
zN9D?h@JY|qQ2$X!x-ITkS(d+@?ORCRsEu&#+*3D|d0?fyk7P2?biA%<JpDw3mutde
z5VMK@m^9`u4r%AP)Gq`}+E8r^A>7|!uwv^7Vq4cnhhLw0A^Go}V)QDxLM*VsE$fgE
zT6ysTmU+e0=*Jhe#j6*kl@Ywueyp_-iWfzS&hHpuK{wpIWJBV^B{w?y#H@L>^yplZ
zTA#jd9&%9(83H)+m>CQrTg~5l1@czUJf6;;Ef<;9P=sw>HHo|ENMSPLA*BkKvozT>
z$k|<D7f`7yX21C7)6pi~yt4XCTA71G&5FAk%pzS_by(di%6!X3Q9nzZnTofI<%09+
zO#4qWn3Xm>+&Vv~X<<)U(Y2ZzAfaPCPzjO$<W+0f_yAB_n$Dx?@n5Po9T>UQ7^Nta
zlBf8FT-|7d1{m~-8t7oG(LFU2G?5l?HS>^RrL9N@Ug;MuBxdyN12r3jYbntWlW%Pm
ze&dT$9J)-gDoZ(rG(r$=EolFPW?ei3A6K3dP}>=*Q4l!${W;)-IqRi2WfVNxr>d(Q
z);HYTw*a@emM`+_EgS(sn4Y8vdpuEjHH%*EuMD*)E4T_)Hxy|xIWe3#2ys62&^b(h
zJN|r0Kakk{wXJGIet8E+Y`>wHLXMt+<@SkcnPwExSz@#uE)^|5dNVYmMz&PDPPW{W
zMJ(guBp>(t`IP^RaR0kxrAr|?hv0#t2+69Z;0eIx=xrG2h`19=kZiU7(N>zo=IpWU
z;HT!DGd>F9jry5Yst9_`+Xg*eZC8VaC;7fV1F4_#YKY(w_fBOX=w5s0F+MIA8l`I}
zMrxsNf0$vpiW@)X;rNO2l2&SggSVmP<Mv)@)5d9#!b;(l^tbfh7uQv)zN=I+%pIgi
z^#kRE6{|fiJ{(PanezZTOuhlkKT&W)fM?T>zaRncCLdYwT(b&4gO+_wy(&V^IC-jZ
z#JY?<gqgCd3OniMbK>&76%~T9-mv@g3tsF)iMP~94I|3qEA2Yg@qh=4T7K1^fDwut
zBrx;zkKL7(;(yUXK^}z3-eEc*L#2RqwF%->qt=>zdufyL)9ey&Mu#I=&0k{&jDdK4
zpLB+d0NJJRGqeUowjs6@&*MK6mxgOUxA98guhunrb3;3%?j=&f1GhKfCda*J4|GE7
z71#)`oo&HAoaQ~P<_tmdvaarppJ{%N_Buv1a?|J&SZnWhBRO<RbUR4`)K5yqCT*6)
z0rr(E)vt@tI^cAm1NLiGb7X7X&ZDx`doSzIF8=4%2kiLU+YGZ9ae2dkEw+W$me%WY
zCYvVVoMfnWSQm%=1~Y?Kb8o~NaxZ3Qy~OO`#DUArRbX=jos#F}zziCKkW{GqHT&OF
z+};oXO36;3cg;z+?>GVUg8A1=oL+eNj2Vwn<^}doL*kCgHt<67)71-?#wevZM2^4P
zf2)^3IpSrAkF*blxYEt|sAV^4W_jQAx$^AY1~r17{yQ>H^|<uEJD^_R<_XGTIZPoA
zc=B0PO23=V*ghJFCCrRyp{Lc*;>GNcbZ2(si)?m(zQnmU2gs7l9Xy~25|_@F!%%*j
zvEh80Xl>7l{tbEfM~^upBqUa5op>F=b(7s>zCbXJ`lx~m`8+PiC8f*GRo}-e{exj=
zaikQDsk?~oB*zX+k(6qMGLIvVUcd^rS?@NZo6Lk*;&50o@I#xI$Ddd7yW1)r{U&ux
zr~F5PXXC#=2t;>>FxM}=tj4n0suFOfH}%1r9jBQGVpwpU(^`(J9nak1$Ff|W7oaUv
z&1z{9@EDp}|L9Ube&zYGN@qEI)J?>$)SE9{_~oJdI*#;lK~enBc$L*&$=s98GOFbz
zZ+nq<&C@g@{z*B^w>NiFY3S@JEA>~%5eKVfQh+`u5pa}X7J}@W;uf(Iz{6CU=h;g@
z9l=BRb;}AIz5`vRwH&zkv`3}5P~__4=LpN7P`Ii<?Q!`hQSEbP&Np_JA+ypVO%K+H
z(+t?;*yhYRVT91GiqAE_j%d{grIgm~If!DV+9Q-^My*yw+|?cy&5^X5xh(5io)#Go
zqP7AtNC4s2oRaKHZ6<4~f(N4+p1=6`>~IXI(6A^32A61D=QK1ktA=IPy#4K5HT#XW
z+Z4ZTmh%@XC<2&2=bJN!*7jo7=+WscAMO9)5*>HiBzM8NxHEqih5CKp5EiX(5AM0)
z-$X6MIk}+p5}ybC?PtWZ>>-M&CoEu^V8`q0!2mXKPC$|MF_=bOL>Ki-A75DFO8#aZ
zl4kM)q#Sb)H!xhIEj11q>7V<qzuzRv|H|5a$(20<LAMH17EBo``GJRc^iypt5qM?n
z0k4c~A2u_-<1SE^EJ(OVHD8rrz1!{%=RcqHN!1V&YU;!c^Y?6CnG1_G(oT`q&Fq_)
z11K(q&HiN&c)IV9j6SW`_u!@y%sG&TMW4V+?_*mE==I~`<M%sQ??Ru(&I6Hpboc&Y
zaYP{QtxOACv)pQ(?wCHf14Us3PTBOY1bX-jfO^*@-u@29KG@%a{*COu0FR~~jsy4V
zu6|vr>v>-!2*9~G1Mq%<>?(rLne)TI;B<b<2bx5XeTVzBFAbj;OnT#Dged||+x9^v
zr?6-fBNDp{=FEk=lHU|-fR#jqD52t{#3M7Yer=|5OM=N~oPy}<q%;VMm^Ah)r?$Kz
z(mSiN%@>lnr9()^1#HE*W_y!N$kqX3(o}vYT8+zpqvbw`cP$>ls%-^Y=rXT>Jrs52
z!%MzeOF;(ut?0_Q&Ar%gBk@_YIZm^QpNjzHH%sy|8UDt8b5UnW@zy0OT_{e~bSh2M
zzx+#njg;MOW{V#$(;aUHUF63RjI0`Q{eE{>Kqty0(bALP^Dx7I-bDY8+QP#6ztq;Y
z?f+0)!2e)dqKJAL@G(ybMKoZ?eaTs)RZAOOhP?1J{8+sv&;P}?91$eeyo42wBon9`
z9t7Qu?<i%NQ2+nr)?HGy2EC}DAio3x!xOc>5=#Jp`Bdon-~;}cjNCW=24WF>*5W9~
z12VRst<nq8GtdNHC=U+743}q!qU7eFadK?Wb8jKT9UCJx9k=)O88`8eSO1>455|1Z
zRyggCIs;IYn)CWQaQC*gQh9hyt5q1A^A2(Z3HyOA*Ec}+M=K(e;u3-huE9An1US+9
zrn+0~`*9vGdU?$HadKUo`iSwj$EFQHp0U<cA8wU1I-=p60w128T|RM`kR-W97NUl3
z9`*_X{`)lOtN4Ffx{A}o(8eg3LJE#@3k`lgn@zD!sjwy-qS8uDp(>zJX~>e-N}5Rw
z!LX793;e-T7^7?`mNM#^uh_{njV+uFH4&NNeXYi;^2NN}2P0z0f?K&L4Ksi#Tz1{3
zQRMx79-~{dgqUB@SE6=N5$i#uW74xO_9=M+))j)iyxt!-&;8f8|CJE|;;dhNgM}Vc
zH2PPM7vR|U+{@P1u1#J`2^DuD;EGZNYL*wfLwDMBL>UC;qnuK;JomtS6gwuEkNQtb
zm)J6(gOQ{ME*DGRf(Klt4ls~ho<<V<AxPk)r4TVmW_bb(AL=<>kt8p->_$m{Ph-P`
zK(*REDf#PeH*`)u#EK`M5|3hei(|tKCX0i8=%kF~?xBVW46Z8Svq!yJ;Rjreg{4|a
zrJf2Ug|qrm8w_Fo{N=}RlM2hP=hZM@mG3zc96a*c2+uUEN&p?ZcS6_xu}@zK*Qe<D
z{{2-NmEU=f%CeCw&#0}=F+4g0gEyBk5+?u|)efnOPYdzohG-V5xWS=p7K79n)+zeJ
zD7{%@cnB}JFN{hN;PZU{eVgj=GwesWb~EM&XxZoSyv2#!=?M^k(HOHmBTBqskgn|+
z&2gf-u*#hr0u0VBo)1i4Wl7Kymh<5`AV)Q*p0oX;{kr`UHia=EK6OdmP)xbjK1&+M
zw_zX(<%7WrgN1+cEPs%u^HsH%J=gN3(3_X1OD9P9W_Kr_VUmbkC_*a(PRv7uufBNc
z-xL^z8-2-V)6|RfYX}AiQ1#I$u2P^mPHJzPOh?_XfG<uWP=KMVv+$xt@RJznyuJb4
zrrJqoOQ1r>r|)Fbx_DU7bz8Z@eXDnzY}s}5BObO@ZTj+V^S*QS*mJrmz7UbyglCaI
zb(^urXnq%C#N>4|H=o-{?q&TZr|U2cul)AhCA6uRCyJ2BK8Z0VJVb?Qf2t-V_Y9+z
zM{D)F8i>`=x08E<ZO7`@Z(Y@Uf$-j}dfVWk70IK<f_jYM-SMmLe*F4uFAbeI_tOqq
zTY_!zkynh?JKE;-+azmt5!@4?j&Pn#M?nq`g_Xq62z(?jhbgQnJ5Jd(h)FP;-XJ>-
zaIyW{r}V&B(Jo3-y4mQZ@Ie_*)tl3bueZy>17tRM`xQ3PqeQ>Z3FM$vSXfJ2tk~_h
zO3Ev{hzumm4yI-0l}llErQdn)9r~jRDt3PPwAsMrt@$q_An(FsfV>88nWNc?qwH(7
zn6=s*--n%2C0iVY$uC@WQNpwrC@51YJ1klGvW1YrbCQD1Lfv~GFO4w(*>BWqK*YT~
z4B(}M6XN8Q{b&n+AKuM)AO7es{N?jLoz2(m__ZnNIPH%F``BFCe&Cl;<@~bj9okjI
zed575-?_gMQmt2}LvhX-6%*sOQrhqmr!)tMX8K3v@BUc9@9o%r_~&p4=uYVa(mdpn
z)IB?+1(wo_0@oT&%=?IQ$*5n{qCMQ#;Q-?0o4`~AoY&{*U<E;8sk2vH`FjM|<mIT6
zl{h(-jMQ7@F%XY3lUi-c-kO8@^`@l&CQW8b5=U;u0L7uo44*Q_kGJM65ms<fM);^h
zm0YnLRJL1>Ni5t$2SXQL1oKJRZ#7sXHl5JfZQ&*l#VJsD&gm?$C&<YUp)n7V1Uh3q
zPOm}8IehJ{pw7fn#T*++SO(Q6jQLy-AE-D)kx{`I{T}$?t}JC5txqp5>Ra5AY}%|1
zd1e({Kif2MSX7iqHAUuho%aT+X_SNNcS8*GAlhwGL~l;B7-wZ_5}Nd^zh9MOlKL4B
zbmg7Eu97Dxj0`0qnG<rT2n+lq2gK74oaMYD1;dHL<8rwh;3C^4b3V_8bf#IPBPjc_
z{v6u38in4tqC5^lK-kY9y&74|{q+;m9lIyAq8{~@``#ZOzb*f(%k63R=a;=jUk+o6
zZIgk<AURdY7v#9u#p{BP0vT2+is^>0(Sp#63q0D)X=cGt{Y4dxt@uf{@j!(z$lp%n
zb3y(Ks$o+vDam6NT|f`Scf4epGz11^jvePQ89qmt_Oz1gqzM=@!un5SmdN(E2(tOK
zlL!p59cqQIWw8`G+idBxB5~Cyn-NMQW`9~d;2%%nwF1%qVTFBR(LaTN3&5<C^<WQb
z3Z^^b{VWIO%ntv<nT^wZ2R4`LHcd}izZG4Q)Z|f&7x%aC1!ba2n#0A@V5>md;`y4i
zVlh$|5*xWy3yFOQm`PB?ouM{8sPpzP!pYdXekvny@gQgZqG2dG)=xXCqYO`x+z>Qk
zHF}7?Fo4KoLb;BEJ6UY79eR5^-$;FRhxogX>zz_`LbzaNfyzP-4M<^{OE_c;u81H|
zhC~k!#i6l89NpLK!AXd<ESjYfB<$wqez_RBM&*p^-&TrTlK-}!SniIC69K8Lbtd5x
z;RM4uLbIr54wD^F4#Xptr}$tR#|&!8SaL&R(pUXzv(d<hk*sAQH=<_y`p1gJ%#8Y=
z+|)QU$mkDMe!)I(5HO145i?tYtsCZ=#Ijfn(LEa$&ystHklxUcooX*B4lo{x<zu38
z6DFhU?s=aeVwLVve5KDxjTp0xMk7*CtJd8stLHj{H}Zh6P9`M4#l%;tL30b%Ddk&f
zAuNMkDIPr7sB`*`DmX`I2}yxTJlMCxP49`O&9K<Vj!?T?3=rJGB<A5)0m_mVQk4|}
zCJ`P7P_Rho<^y@K7KKR>GnD>V_Xn7YX~}#9iz`cAs12sBux>3-=-cmW;7k#T#=PqT
zlP-+%CWo%14x$XG6D~7G!h9hY1uq&hXI5DL%^1I6nVzp~naM?7)kxp%Ueug-*CpM5
zf$}n0U%Qt0fjB5<+kuLBRp@qOE&4f$&u4ft0&^pDxbkyZ2;%UDeybXFz5lsEtTAyc
zn};sODRw(Bz&kGZrg*+*$G4}=)9Yv~6_6i>Y4Oj8;5XbuejAnka}=2GoI;yHe5*T1
zlZ&+O$+sWDkx9XcT@{7;n;ku?sGWxq8fwv=h|OpUD09w1&*>!BqU&x{8;d$#V&LMH
zsF%?%@v3Mc&GQ;PB;Vc(JopdQa;r->{l12{{<Fl~D|BWrwcQ_$jSE?GA}DYF{{(R{
zj?NOSRP-exPT0K6mWrGMhQ?}JJ*-gvFtW|gQWMCpPe@$M6$7<9GcRUr2Is=#!<VTY
zDIRR~N{u=P`+qM}O&E_VqK4TJ2}I2nW_i`m=h!EdXN)1e{Rz|Z;=QgR!uawfG^jZa
z1&85!piGF}8W6GjQ!1xJGJpd1i`r4I^K7Z3QXl{_6M9_>eS>iR;>=lsa9c>t*m$n9
zo|2M{S*a<v8fqrA8#Z1{W8)Rm0=GMvc$TFsmq&9s-G5Q%q*@Zsj!4W(nU3)?V5Szq
zh`~m5+l^v+BH1jm2ST*@$u>xZm@_fh`}RoyaR6|F8!QU(L9|;M(RAhv9L{x`S9g;d
zD^rg4Sqg`#WHT{rALfn{b{1;9AJ`HWxbrbm9b$uuuES@<Km62Zyb;wBD1I`om_t2R
zPL&ChLVxp&i8F^)AJB$k2C>pZ;j92dH{n<tEgLI39TWdnNoK+t>!MT>1r~o@yy1T^
zExEKWi!J0BXr@j|Tnd^)^XgVLR54acET|xgOIa)JOhG`@zg1y;)$fy6`s8iSHH1So
z`0Li$DTdB(N?J5)DO^uXK%6OC(_jFk16gv<Fn=V_$Mg{Ue5RUKFjLFHr^23qBYWn!
zlj0Bu(}i3X%qA~-X3~0KnUhn+*p*BmD+p<f+#+t05ItW;1~wo8OQEC#hab?0Qll1d
z`)W^VK`vO9k*!z9O6K&I-nJ$WKZ+`vuR5H2NR`x5g&T5n*X#m7c%Cg4b`mDiQf({4
zl7Ic1X2~jiAi$~@IF!dJ%M#VNItnjRF-3k!5=xSEJZ2ylx_x15Y7z3e^g;63JF?X)
z0Dd~+3ly52VO1E#P{=I7O8V$2coLD9ik<?^(j<!)Ebr=tm!xOd$(}*x)=4g3muDc)
zZwG!Np$awb>RvUkE-O2usSC>1tK)4my?>F%*jDk@`hDObNsg))wc>=cNQp@y6u5bZ
z@_Cl&6>ZtV+~doE#$}KoU(rV;TtQg0F~t<y_~~_ilw~LOy|+~yKERFtt!Ov;9a;8F
z!`l`Yygj{HPj%C)oSls1(I?O6G$TUN_=7Kx`Q7yUt7NB`=P@g!O&%b^oXHDbet$^w
z$sn22EQAh}&}1`?JNdslk5V@&+1uX9>Edy3hp7J#_4Rf=&sgsimZ@#Irw4g_DOsuT
zDoZ*Zr!gtemBQFGY-wt<LtgM04+y5KoMR2!11MR}U}L_*L29=QwH1d!pQQN&C>cky
zXHV!+y913&Gz3AP<eV_9QLu8BN`FPhbGPM|;|_!t-4UvwLYPr+4YjLD<djx&j8@)C
z4%3}bHsiTqGB8?`ejha`@CRwAPl9T(DJXP+oX+X2$I!R3jpM%8gDG>P)SEYzqNLz<
zLrAm}mAtkY-RO$_HMf(zU?r8jY<&mTSBl6Cp1US-16rifEb05<-f;ugqJPS31&BKU
zB!B<JW00)_Fp<4%Eb|c+X^d>Hp2>PdD9aIJ)GSSQU{6+o3x9m`0{A0s8w4v<O!+)Z
zEYAo;TG6sJpJ?f<Z^)f)#jca;#=z`79g5S&o_8Cl2b1?;JOXndoEKxnqbADu@~gcA
zs1gx*gQjnSoK_dpi~Z=}QGc|Hsw;K;da$Fh(M!iTi0E8*&OY~J${7K!8HUe%sRDg!
z<zp=#=H9MwW}uOG!rsY~qw3Gvd0^0Kd^fi=2M9~K*Oft}x7~2tbEfPJw3l#6K_KHi
z19})D^eBldYMR^o68w@7fksC@VWY7+kdOnbrn>55NOo=4dbfIA(|@W*P@Xk<)ziK~
zud-_1?e%o!;0$SKYh9~LaWvY!W<j$Q)KTu@({A2mKiYqy7h%pWSm}WWJ#7SC#`1}r
zI?w?hc2^)OF75?Da6Mr0THvmr1#iwKxQg>k%=R&Bt=cdK5N3`!eXCY>s48yh0O;DW
zQ3Wi3@uNU7&>6#wE`NcKu&SIiCxXvdO(8gCB`DrXkR2DST#`&}3%%m;zHN+(?qhTQ
z*-RQ_Yj1aV_s`p8#HOjDq(lLdS$Y&{bue=wQ&JeZn7Bf!z628&Df+LWZpzPUq^MZc
z&<-@Nh=5G-5-Vk(+L&jRDZG}tDjC||e${X_r3>Z=bhtJV{(tWk(7BK_kJ*k!7Od2q
zgEq^Ril82$`I2NjpD5u2u4iZIWQw|RIv%rF!s7jZUyxtt2sNH{C?-<fJ4#6g$WGo3
zr86|rPIKL#ItkIdSIdfKEk{N^7lyZV4ez0qsD<;xjvN*i@v}o%G>I&;PWAA?q@n85
zp5#jY)2ctmc7JOn1KKABKy8}q>>?0dbg9!?8X;NIT!1c5QyDFlIydvDJRv;SSirL&
z>f{r#7v~UmPu9+D+IFsDOO_E*c(V8b&4T(HUUQ5t6m@e$dRo2=FSMQs!tT}f#(9?<
z>=4jKqD-0A>Hoq<cp|AC=`TRNU0PFIMV;ct8L+zplYd9q^xI@b4PWder3U|7)ZyU4
zWL;y-?1Of_H?S$2b+zvdORdd5z=&U4$4l-Ty(_FE5AMECd2a46UUEfn^D!T`IL%q<
z9ghhms(U1C&^H}-@cK#&1|2Z0%{c;CGMZ>9fJjL6>Eg?-5NA@gA~|O)F*Ze7`2<!2
zm2U_Yb$>F0YYF@T;Qo4qgveQRuk{fa)ugBvB?cT}ERWe>!g5uMB~G!B7OC26`-g)*
zLi~X(&29-7d!gErbrDFbt1E<^zc{O(6S%0rHM_#nlsP6AO%Y0ONZ0>Bp;1=6I%sI!
z2EL>K*-4nr=$Ls>;*NLUIOBP(itbxs<Ht8IZhydweU0Jb0HA-a2D$IZl6Z}+BwaQE
z*l;giF2P!+9PaP^+oOm)PfJCMHPH~3i?DV%Ei>y$z}VM`Nyng=T{x*LUaAtTwI~A@
zu!_gPTi28&4xaz#zy4cWKp8@2Q$3^tMDwU!>g*Gf83C_XHN!AvwjCHpTlYKlO}q&J
zHGe7BLh%F7d8u9tNoR#Hp?-iT1tT@5pOPsUw5C~BbqciB0p3=Nf9kBlj;DSHPPl&E
zxn>pODd$4lFe1_apa1&rif_olT`m=s*O;dya{6kd1%NwJ7>ne_<Lig>^V5BM2;xB+
zIlP_Dq+rqXyyOK49LO2clEIvm^E_AUoF8m`4<2kg<ZK?tj3q4DHXH4@aT64^9XzYl
z#uvQ&ke9En0vsO(0dq$1J(vW%VTs;C){>{1YQ2E0?HO7T0ItZv<t3Nut^!Jb7eq-H
z2`v+sL4}(q5y4r^%XE_F)n5CBk6@K*gG10d3qlt(&0v`=QVI+D-8(re-c_{p-7kFf
z4wx}3V{FckIL5$WM=Wc6NsUX<BYlUjJ2hr~^3v6rZGibSpD<CeQ|&4@!wG#!^;J!8
zrOE3T(puHjRr>I{C1sV_FxNbP)qP!6H)z+^RNV%AEsCluK)SJ->NY@a)l&8Q#Q0OA
zV1*$w&ZJ_ACt#}~m<;^4LwmLVhJ$bPj~HizfZe+NZIZrT{+L@LG9-IJP`7vcg4S+d
z($?+ETDpA^J2%(LtxvSQ+CCb&fi0M}S9`PzHg3L!o2{_dtZ<+z1ile}YIRXxDt@Vy
z<|5X=h;;OTj<H*xoEk%A6Q=PfyP!)!%mu{ur`Ne+ROTi7^olK58R%}z?JeHo`!SG*
zj;U<wa0|2+WZB`ID{CA4%Q9mq(Yp2twKh=PL%bWlmtlMo9eq0$+PZ*ZJE<U69(5vC
z7=IFL!)5#cYc>J6ojP294}g16aQRSz>}s!|YSz@MgR#(2upd8qba1FP`8+>refNsz
zZ#b70LGbcN!Aesu=roQFDr-a4#P?~&#8RMnmBDuGM7A~SktRvym2viuvv=nwFOP$u
z9MO1KGvLrD|5p&fAv!@7l|t+D>l55n`;;fdjDTp10Kc(~IAPp>4!{9h!*cyDAfyn*
zv1eihua0Wd9iT%%Vgpv{qZxG1o>!+X!xF;hQlv>`Aa2YdAZG-qzths#XfXk90YR1N
z8W^EI>{#I|s`ZARav_N}Y6#R1Z8~AhU;5;1O7V&S%N8Y9G>x1*uM|K~@$}?*XQi}=
zYo$+4pH&u^<Rxx@LG9A=P=HG<IJgm9S!8Rltz_nbsyl$MbqjB37S^M9X{ZOQ%?Vhi
z0Yf(B7Z6*fvgfrHfclkT)fB~p3xHa8pbsvYLP$X;Km;^SD_Y7+sJ~+b*mS|NWmHj1
z?E*+k1nw2j*$(-E3wh41&jlVG-=!$sfH;E&@Q!hsARO&~Q$Rw`ZDUpvuNeGthFU3}
z<6hjzcu4Y+PS^k~7{#CuC<@KUQGJA_$<?c2eITt9t(H@5qSY&BvY|xlWS^Eib|$;u
zhS!a8+ByQXDQW;MmZAo;SPBPZ^}QA1v!%ELfcxY~h;)(@N+yc(g9*oYoI;E?5l>k%
z2a|0GX<}@DgAK=~hInKOvr8RF>3dqLB@SPams_NzoYM?0WilnXVB{&=x@vcxXJBuo
zuPkyhT9T;}a$!?dAThg}VLeBI`GlrU`qsffHH0_BMl^apFVlQ-W_vz?pp*Lb@g<Ar
zfE!&4+d9+w;d55bMD<A>Ob|fxdl0?d5BTu|TMq4i9ScO@t`#A~C@Y8LByW7gd9JsM
zZKHe_s&x`V%R!$wCy3U-(<EUnCP|RxsNl(wZ*|xw-=~*w=)l#k$oK{M+kYIJW5mRq
z5|t@$=;RjgX@a0*7D^tnMH)+MxCp0<Ea^I%DNtc;)y><t70k|+U(j!94zIV+-`0^R
zS{g%tPgJkH%~4nx+1bCE2YBB&5vkGJ!8+Hdc%vnFb!Xt)&6*1m5KmffG>JNYg*y06
z)e*l8bo=@)%$}Sm5R&JwTCOkLp>`RZ<HAXD_Y$LzXEmt5^;!+dUbG(_M2CSw04?Jw
zvtM$t7l}n2nFW;a8BOy@yFKbcvt^XzBEq_Vk(iIi>1EJ2u7b8HFbK{QE`{DAuwjOz
zx8L)Mup}3|KB;rJH6&X!muG~M>2g%2iCN-7zaO}z)kg7`Iu}DF(akTBUG+bz5ex~P
zC65nXDQco*Ia07P<){#V7vp(GBr9iWu8&=9J>uPh9_%WBl?a3!gQIc}oXUSw4W2@O
z2WKqic_NJ5BzeZlYS)K^ftA6KyyBWJqLQ$pO~;Dc5wLqvFRl1e9r&~2UtGv%N|K#0
zYl|GL<Q>pyGhw6o1pf`4040NjVaqI3@;uMMr*n+*;lLg8OYHO%)wHeNC7ySTaNRYj
zoT4hBISNJa+PVS9s)Q{D&c`t0lhqx6p-^$PuC&~%gr~q?$fsq>LEOry5MX()_OBwJ
zTEWvNMZHLM@;k1|l~;vvSXL|FcL2ss6^1q>V3efdgOF5;2%|SAVZy*P{OSL{Rnpm~
zjPv5tIQg_S{Ukmuwv)Fs{O#vY`C`WY^FNb6=jxwgTmAc>rEw)cLfi^uWO%s(d^(q@
zwE`f2WoFVW{X3Ex;3#1M{KfofzFdbzR&A&is6F^Xxh$9_YN(Fu^~lz9qaAr}(DAwi
zuO3#t`J|SJeXV|cI^*#NCO<u!((*aX&8P1&9)G~Uu@A>l@GtgnJs#gx@DuJNr<Ti5
zDsJ>sjT!yq^P$aUH%=!ILITeqXcRr!g6d;`EmX%}@XJeDR8!J1hCs9i`}j-cu+?2X
zo?^gXYkmXP^;RBtgj97#m>;#!Anm(MXlH-WjTxg7#VD{#6lMP(eW8OopB=0DK~k_&
z)8-IKKU7>fDxYB!_<l7CPLU=ore$M^=ZiE+X_&;5SrxYh<{4uv=mG<;z;G`*j1I7W
z*uvdE`am{~%UNN$Sl266y;ms0y@xg?2%m#02Wn@J*5S8gBQ#_~G!}QAdejzp<>R>l
zNm&W!Ez*;(w>MAnR6eT~EO_^(GNqZhQ7Cv~DX3pqtCITUMY>=)IK`BF1p6e@Z%)+<
z&_d!#em*UknDQ(cl7j%r=-*7<W%c8K2SyXqGHH4-XwaUsj4my|vl|f2W7$`G>YbQ_
zv60i|o;r8Y>YyqLBY0zi4^%_2@d$n&V=zpc$w>pISC!!AMFsARH`kibrpu-2O_c=;
zlvzAS#RV|Bs0GI;&bk<tu6qJnGDcNUl}cmJW`$gmEjeYmCdTIGsOk{z+l;P%T}xYT
zKifJiklDF}UD8<U+!jtl#%9}3=v5sd=l~Wv1;T=rpfk&3=EsDo<WNxIg5Ph)Y$!QZ
zTetXpe_YH#mx32FL3{Qs9gE1j2T9|p1;FTzoJ$bf$`I^5nUDfgeU$e1QJ%oXqBe1E
z=Gkf#3>^KbcJRDJQ%IJ$AqDh*lq*W&CCW0_hyFE|xs%%4HMdx94{5%>hbqa{COyEb
zW{M^ky|Xk=XEbxJ(MtxRi@|)(P^MP$wW56h(NCvG1g}y{t+Y@p8<qknOpJ|PU$y^6
zH;6mD{g$g*g^30j^@AWsu>=hh!Q>zO@FguJOJF&zXu;SqJMAQ(Cj*RsX6YFH;Z>`x
zYHHGZJsyLrClWUG=NpFiEj?6H_7pMcnOkt|_azt&s}GgFXh!pN4AwrCu{sqt%ov_Q
zFHIr44MK=}+OOGFFHC4J9pc$AllJDbGGa!ir4ftMMAJ~8{h}C%1KyDyprYsKsWiin
z>mlYd<{05ruG)bc2E-YEOKYf)J~7b;Dj+mjL_{9$@7fP0bb>1p6XJ(2@Iwsf2nY2c
z)Iytd$yZ&WOID7iEo@0!&=Q9+*H#j+9E)PdYI~Is4D4$p=>$Fc6}`ZfpKvBXf1(Y@
z1e-1Jq_gJtUpxNe_2Pe4SzuqiK0iK-<fUBE$GZHlkDlz;;(tDW+CMzJkN<fW&t3#6
zcxrhdz&3HTG-jRZvtTCYhZqJrb)w#eg7i!%gr3b$Xk4x!QUZk2)UxQS*UyjNoxXl^
z{`A4thxv%bQZZAKgkfdD@1;lVj7D0^&`Ls1ei1w`sGL6SeT+oGVsNGxZ+Cx=OoWEd
zJ)`;-8+PO8V%)AWjpXFCHV(X#y7kdOgda5!A*q~;$lkH5clyU?aGhoGlpD+O2O7rV
z1B>>+rmgg5@CBE0x&knNL8USOhH)x_>ny~FE~dpICgH`kX7OP)i)Y7gemZ&9GLg{y
zji>QC(0OzJ@S~aX%)w`*gF2|$Pm9kF8xvm*Yv|;t^<qqz6rYW?U_<I`u$@m|KZis_
zHROSU_!c%nMtbe;SWh=^5Zl^mwqv{~Ra?;;o$3ix+@C-9Iyazyci-x4x!zByNTr#8
zz5OTAZnPWi4gYO#ch|V@K;UDC(Dw9Qk3yS*I2`lxf|kiGpzeX084R4`By$aFnQvS3
zw5W28ydTX>Fv5xPGz>y*J1rbPl2kzMAc)->gyc9E^O99kst&>B`m34LTP8^hICU=4
zDy$Sm^Rw+Ldsmfzm8j$y!vHBl;04tC_wTQpF6BC#cXdLQY8t-w$&b%X`M-BlmKCfN
zkt{kx!LR23_8vXntLOiJymz>J&;Q-U^YP>08?s1eLog&5rx{Ze{^?AiC7!Y&`DOse
z#NeCY__6@2>3WP<h@Bqja-kN0){^9~Dh>)Z9fKXHuOUo-ZX9&-NeN|nOdcP=pXuxj
zZtY1g?A4N0Be-}&MX2pTZPO+Bbxt#MUZX`p(6RUL4BLkCQuUw)C6okB71f471&${S
zdJp662`#mizA?B<1=-U6rO#iTsj?8quVC?Z6r7Cx%yRb3)k)UCkXQO)5Wz5A0k5Im
z9MctHGT3&1sD3@ryg_2;_e~~1XG2$iKY+mupKd<G6^s@w*hu|sMmW8fR|L+4|NoN+
zApwBb7IwP%dTamFTZPW_g0-5~CQxA`T~;|LwI|f((+t(BIj)b*MLYg&f(Cp7Ria`s
zdVlVb-n-t_HyOs-N9(97fQ%IoW|LzNhA~v!j!u|=xPHix9KXre&1g<1ED1+TXwJ^A
z38~mx$>s;GLI5@k6||HgA8!bylfi$Z^2Sa4g~m=~aE_V(+p<(NLA2T>HFENa{5t27
zwJcL?Q}099QcZ&^i;QeZ{tr6KNVH8Jv^3#R6W1P0eYR0DT3G9q8^+p9U3pE_u@|<Y
z2bF?<SDn6Y*<tMneL_$_J!>qjmJ_ZtYS$y<RTs7Qi$&Tcp>_sut;dPO>uz^7p1VkJ
zh_30Tr~hb3m#qzStdsL9#miMu2Gv@zgqmD2rKZa<O*5Uh1zwMNIZBg+<rt9_KVS+N
zh{?lf(yPnWe&f1uvu`(DipkZ{Jgx?R62m`#iN6A2UsciX)X9*$WhZ-e3Y_g)6OvBq
zul%93AFnO&8j!voq|TCZfWGEje3gmV0Oxm%@Xc8w%wW?R>q)B!wS|77gTl<_nM@sh
zi0iNf#z(UeT)F6Ufmf46w92G~7&Ppy>Kt-s0e4!wqXFUHjAb+@1=eXhGfW`P%?GT1
zYlL?(aHqkR_>p-X8&@fNUHsNjjp3rrs&`$kg&XbJ*vL2V?0=820W?pj5Q}`4<C?F!
z_dNB1QR`yR95;LQ!SlLbS+VkgSMObq`1RFluIaXchRgc;rs}Tawyma5c}HX3=J*~w
z#zezWH6kZ@F^BAKTS*#A(!=#+sh~c8#hofW5`EN$?Qx^M&)ZjJD7==<<d-y`FtQc%
zJf^bspm3^@#+z+awd?J~ekEISS+Lh*#eDT<w0Mh|&wjS?!^y|bz<-3GG}g?!7Uin8
z%>FS~<OcEjYv;ZRH>Xif@U1H#vf#<rCs9?9!;Pras^WJ=s4BcQiB$FNo<Mznc>;wq
zWlVQni{+M?>6Gajw#W^V^5ESLd4R$6hEK@@D@ZkJ*7iBpu@aVN3sZfzFR@Hz7gH56
z?^^J&350d~<+}ni9s89l17^1$*Q~kTonK=^p11DOT6vpFZroZ)5R#+6pIPTt_4BuR
z$*gZHSQcD?n(7XXqbe>T-*xqW>TatYE~}2S>hWb!GIROnd8)DxBBC?;8_($l2E&W_
zte8u5M+urPtFO2`$%DGLYUQIkMpXH|T(d2W<xqPNdxzd;%rz?~EYY}4nX_dd)Mi3$
zi1n(L#`LL!d|dJwoa$kl8qcn((B&H<&xtzJW*h+6I|YhhvI%0(t<)obTQE9xm|m2r
zWR3EEAKtHR2O5LW3bukLR|d_g(`##?yQf^H*Xqrw*XwGjzF^$HH7nL=yk7Rs@BeOk
z|EqmiOP;aLbl_|3|MvEFAJy)EpX?so-~Zmpqc;c56SBpAt<?D=8XG0CEaz<7``T(S
zqRXMyy)uP{mb^%=(T8t;@uFfc(B{#&hTiau1+HoI6;$=U2}YH^$ZqiUO=R}c<rB%%
zJYl&chj5i)Y)4c(z(B0V0|HPtG^qt%MjSM)PwY_!F_BBQNZEyO3`$f}+P)p?wslj-
z^om}@99&^AH1hi1I%LAHy@>ChYd^P0|3_(_r1_+I46LL72YUy9KK(z~J$QU?|9vOV
zKN<c14%d)(4BR3qcg~b6+w}!%jlW@I2%M*B?uy|B*7?Ud-RhU-s`6a0V;$>Dm8pTb
zuBfYJy3yzy(yk8$F$_XI20!fI6+3FXp^hqebykmS8M)q{LN|SGO8;$aqE7CA9sNHz
zeA3|mA0Ixx=l}12<Z($gEecUl<>xT7XH4E2Pwwyb&FpX7&3?;AK|_1e7H12KHj<}0
zGJQwOhL#o#qKOJ8xD!D=*$Zbdn+~UGAy#$%*l0l)kR9NMR7hSf9o4lp)oK>#z(_5k
zGZbpZbG`yPh$Zqv6D!?I=hJ||k0D2l3sQ4NR)FzsRm}r`g%E#5-E37ky|j;`vaa*s
zt()1cXwiY(tSds+MdyWswajU`#2|6tmrJ&I*=2pTs=3uH;I@xw4*~UfGPYz(*x+l=
zW)tm=;8nJ4OVFz79(1$TTjG*brBgp%$xVjU<e)aBpetCf)&Z@I?pD=X69jGz8siS6
zJaDp&li^c;yK38)95|n~y0xvAQk*Si0~2|1NQixOSfY(Et!)Y;w|ys^wu!IikYTi)
zD(pwUCM_opdWeo(R!}*Oijv1;@w5s@+g?m8g)JqP!YfphLu#Rl+i>MIU2-mM+v-PK
z<LK=EjL!-P)bQ_5_oBmSH{9)!t(en{iMVnDF!u0&4ZE^7<FhWP<_TLw>M(HtgLq8p
z!$5s#fa$Hvm9JGV7i<(^a`sR=+&+E#VC#q1XXo!uPPcy^e*EaK;g*)0<m0HEh_;d~
zBw}xWBVZf-bVW}0t98=hD?ro=599^+af$m*W6t~5Set8iF+Mslr}esQX|!&SYluc`
zzWvUB9(JMq-LCfAt9@Vc*|7G3pa+rGDAb=uG?CWIcp<LcgE5YI8({6LTwl|FV9Ooy
z03*5$pH_=AUo`hXbwB@sEjv-9zGHii_rY4ADkG=WQ;+<MR~4N6+t*l!@3YSen8$7u
zwS7D5HtU(pk3(|)>~!6BXoM$o=Cl#y%K^cEs~6Ra)`9XOgEf$R#m%Kw)|$Q5Tw;De
zvX(lInaC7Mxy#QVtsYI}wAk#<U7pyWV?W|Q&O+5CalJN*c8(3xat`Wm&AM524pdRu
zK7J(gqG08kQDgCXGp(`QI@e1}>3V}jlZ$I@s%U2l_0SqY<2u`^7p*r{k2KfWkYCV$
zZ>AYZuX<K)H^1T^e!ta*`@dzwbqxD@JFeE)jka8^t?Tc(T0=M3bhVaN?YagFT7}E2
z?atbbbXEPj+-7aZbp`Kk-+ZeCVz0Vitt)i5LSFl~we=l&vFq!G$Y{Lu!|1wr534wI
zacu{=A=BCg&lc>}vZ8dDTsFI@nO{bKS0EFW4QQ43v_8DLG~6<}W|7vxRS8t?c5IEI
zU00w-gfv9>7L2r%X+??K?bpZ2YSG8DQ1+zqHuK~*%(a;+cc8J;Y`J|n?Iz3}6R^^x
z`4;hgO_a7<rQa<+Z)<rt@#ODh4A(`ub}8zHaU<xi1y@tawQ4KfOx;!Cp|;q6S~!vi
z+?X#5h)V))Vhhj7!gy+J;0fRAr18Kp(LO3my4)sPk>>^S$@&3gsgT=^-%Y3!6QbF|
ztd-3h0I5qp*e1Q2ey>-VF?Q+)do}&FQ)iX-I&^0g4aYs)N7b0N-TB^Kao=TLt(T_S
zH2k$dW)6m%diFKFSe<R#;#^mM=aa$8x>XKCZ_`1;EV8hshVBaS*V4ee5VB-+_OubF
zt|>(g8npp^p$+a9s!pCdo!9PY)W653aGPj`=~xs+4aaH5o(`Cd2esMK1qMzzFg9sp
zfM}j{z#_AX=eOK_CeYDx)s2VDL>RMDY5-*>21S`JsAL0Y;8jzq?1^N5v#z#u<?sVr
zZrbDrwrp#0qcO`&JcAH>M{`%MslcUOz+z;+Fs2)iytS#TuoCM<llHZ-f_d#;P<OI^
zDnq#<YpI6=#@I|<+VWaLlWG=jh1c;8>lV7T>gc}NJ=LnqQ6G@iSEVa;Y+gi{THiy`
zbGmGe-cg;-tC}~VH9miT9;_LI6K&)3=i!>dl1|9y&wmwDy8r0$y23cbUS0Ta+?D)}
zM&1}qeFe4N`)qcJ)7WE;>!PN)LHniA1}a`9O|~m0r~1nkE}J?psJjP#)l+$+L7jTd
zTycokgQ!&lfD_kK>`XXiG?UZcdK+E<bSUkOwirX!`rnG1j|4S;*&5XK3g$;E^|OyQ
zC4^Vez`AsOO=I`k*<04mt~-<K*YXYPitelZPQSIUaMQnTW%wZ8*n-80hH|wIy4H7x
zc-pWROvl8rv}{IvSrZY)wpIUfRg2YTh?*;e$?1Sz3GW+NFM4VG9m?sv_X|Vn{#wD)
zljnXR$k<;ibaMKCtSUsEAO}~$RMU-rg_)*rKW@?%S7oY9#vT+mHEZ>f3)^D#B*M4X
zU&$b$Q=PJTudi-C>!b;;O4V`)UwaHX5z?@s3#wgQ*}RAz-O{(sUfK5Rqm}jDqF2A7
z>A0R*+2c9_b)%b)O*GuApsVVcQk@d1F6ZSP(GTXUZM(OB*n}wG^tNIX96%Dm=V|HV
zV8)VkJ{yvkCcWNGA^dt%bq$!??@cxV)28C};apeoI(Thfnrs4Kl^m`9?$z~Ryo$xp
z#)`3ZXuPt^DE3zCXZ?s)D$Q;|VYb0+v^QN9>ej_U5}3NYsN)WO{8(j$L$->vXoY8U
zA;}2x)<?a6RqEqTZJ@J7uTy;!XpO>o9k8a{^<Z6FyL08VYnt7$b=J8iTGv$G{N(An
z9Bn#=t>kyS_HW?-c~k#idlhtT|KHu+CkKz~{=biQ_wN0F@8YR#u_|p-EsTS83%1Iw
zKc-u-n2&@OuR~&U?78l#zO{jeFhhjWVvR85DXy=7=&FDkNXY4BUwQrqS0W5I-v5wY
z)h5qvr2^~r|L&7|{--C8cOT#H|GRh;8{jW!FVC@BL}3`3d?1lY19A%|&;9ey@Z5C&
z=cvFdKn2vn1FVbxbhuZ~|NG?N$&>s2e-}^f{MXZo8a-D)b9n(>D9tC0P)@Jh`hN%x
z;lTz6fkVu3O>aM!ipl~ve^I!U+YzFE$IngazY|@)Qvh5;{~sUj@73kM$B!S~)Bn48
zK5mi*q2nBIc7J=ls<2~D)YI!l9Un0-8OKQAi#<qOfyc<HZR4w*A?>LszC;|VmII{&
zok^0avxH`TD52GdO6#%m3m-unfDAh`?b-5rYrryXRcBa*j;`Djmq5z`6*l9p<M7tb
zpT;R^*ILU72#G_gBlw!E(58z`N*YgJ>fNW=8SmYdLw{}9bHS5yOd{f}^4iNQmy62+
z8Gq@5yaPYpWn87SzIn?dD$*G2#BELc>bB!@wf4_w$w~+`hI)4gj{2v&fJbHxgAV)Z
zF8cT4$~u-U?(4gNgR34L^C$d$7d^vW=8t9Otatt9w$?nP&RS5X2lM8(dYJN@m*?q>
z2}x(}^>^*Vt@c+BHt4*(t$y%CKSzU9mmJtRuWzfbk^uvi=5DYo=jC0jMa&BQrVWzD
zryG|)%mNrzndf<$PrN1}BIN28y~<9TJj?jS8<wOc#EQNuptbtfI0b!6U;KSdy#Mc2
z1Ke2t7e%-(2h2MC@9yqF<Njy=UjDz6=VR0F&5ix<y(>g<tTh2!(KDB=%mOxllq-hZ
zhB&X2#rSDi9<ocxazM|+p99zFg1miL@WdFd1J+W8g>(iM^}KyJ7tE{ah=Lmmg5BZ%
zzxEQmf4<^#%k;lB2h2M9zrR=0{~qk^J-)a9xs&Is(*N7d6LU+)z^$ADH%}FF)A3YE
zT)-@{J&nuFRO&asn7u!RzV>r}3-o`5<tILC=>PuVZvFo6(f;Fm`;R+${%PpHU!%GQ
z^y~d0OiDJ%MPm^D1ya!zWx7Z+HetySH8lYteR7m#{DQ>1WZHEO{H#P2)LiL8^3Zyc
zJTz~N!;^hclw6%YEU|CUyTblV_(gs}%jD?vq^hLWf{-lNUQN$3n$GNhSL27IUU)90
zI@*bK3N>T0uB1+Z)5?k^B(pRh5@SU>qnAVS_|c<-M@r0^=SSj4!SwB0pPaH1lI_bW
ztKuvW$yG_5xRP^Op;izo$OX%?2pUjQ;gCFhqnbU+mk;4e^F^A^FHHyM(^Tj^K&TMl
z5TH7PoZp0&jLb!vPsmY!Q5=;sUXqf^sRCh2b8>bJZFToGFN%!KST1R%g;KZZ%ejzH
z9B~cypjMM+Rt8NJ!v!$GP$#OL$X-TzxU6AwERX}b%RWso9B{ErGbWZovYA;N_k4$W
zZhHPZK43H2!3wO^|2=Nle;*v)=l{HuXA^hBE?1Ce<{W50m2c{QP<YcL+5l9K8#g4M
z{tQH;^&Zt|*p8$u)6rbIF61{(S7{pR$nIhK9-53#mG`)qkE*ZNO7Q6p;>I~bzxJ}d
ze{SiyDg8ILGOJ|3b@JcigS!3y<Gq7}d-{JDPmTVY>Fluhw4`5alKv3lSc`@K3LF3I
zx~7+R={L|Zt7-9nd``17N#hT`^L<);PiJYCGQ7vHc@4BxuWB^G(chLWaUEAQwXCAc
z)Nbb6*5@T;2h7e(Iv%I78<?i`Q!5aijd-(Gg&V0=H?c`Rwx>|{iuJT=_vEy<-6#>8
zZ`h&z=|^d7E8PofMvmnMW{qx)-)5A@_TYnhj9Y6)`HClh&~A@xldYUfvIUxfM(JFa
z+ukNl#B1}m6>9Twh24w<1JTYFs?VM^StE1ThTgcoP4dm{fe*imLj0D_f2woGUQ7Nv
zJZ#v1Jleh2|K7>7q5ij)B3OS7*RTiXqUoAk!iwy*x5h8riqS{+(Qb1p-`)woHrsO-
z2&>XMSI1a?cV6i01TSn0TeumrZzEvgngKZR3-?>t4)tgFN7oSE68&H41Gt9%A09lZ
z-~T;%ba-$7cPCG`|KIF7&VRF;dj4tR^tHYJ{wZAlX8(kKf3x*Ye>IY@*70xF<@L7-
zZoY`K*d`szMz8WFUEaXMarQfMZ`^3P-@fM|yMfPtpX<E00{JzUzfA`ERov}nO<%k3
z)69Xq_TfezJhQLqNH_bkK4h~m>p(WUD=(|r*LJa*-JO5c{k?zvxhem@V5LlBniV`z
z0;Y&*#_D3gy8E9;dk1y<@7*W6_x%4|Jg)M3jZL4KUoY-cZ<}nHJ#E&)DNl~7wV>sP
zhQVKdYjau(_^GX>Kg4BIGvK7=%o`N49h)VK`E17WDkHo5=E{tbu_@5EBv9SSBZTfq
zhH0`NFp#o0z%Dx9J_^-R$+L_lZ<=XoT0Y+H*|QENtypRS2)|tYxNYxoMlZq6%?*KF
zy}OGs&(gdJfqi#v2v8Ez4iLVz3oQyU&?YZ`xYwUkB`Th=oBJbdIOutiQ0Zmqao=2V
z3;o_XitC;K(UfJgbdvLuZP3S>^MCiz-lLlS@8HSdz5mypJbiLXrDSC;h~xyPlw3?%
zPDb-I1M}O0#vkZ}i73!!%3@x?O*0WwmStp;@eyh)(tNT5B7;m93?kDw?`fU{eUdYO
zotk{BDA_o@WC?EBf7y-*Bsu3f)Knmmf|Vpoa~1{B^Rstnl9w##lV^N3<2m{1*%?XF
zQUuW?l>_(}!4IO*Z{+~~H7}-<f%?b%6pMUNH8i5}hj~H9X~snGO(ZUg;G1YfKLp=I
za#jT2{GXstexhZ{=YpI(KNdlxt=oftC`}k0V7Ze2@_VEJ*W3SZj*p(dJdS3`Mt!W=
z|BnwF`u~I7C-?gQJ9+x#)J`&a#S=!34M!I^U(C#tF)zuKmdOPz8AuJU&$M)og#=5;
zXi2_#b@Km_53I~tCU(e0nM%oWlIG-Z9QS*X%_kEj80gw0Rt#1wc`2eG05SuAi;#>s
zmqM1b5QMt0zV(3pc}u6Wo}_X*AHltXv!2!JeP_n7O%h-^1e1j4gp#-aVRhfO9Zwy;
zZESM16Na2J^7aRo&9Jx_4hHH#jKp-?P)jnSIi0XF3W9#0{EbQSrb>W%l8<@tmwyRE
zBH5+P(p-i~DgYapPLOAOvLs=D`0v5{_wQq#3!bq+bwNs2a6*%WID1p^|MNVROJbmD
z`xt4|q#S?^agRH#A{V5341#xOjFGqYTVtGqgvSDYz(4O)p}{t+4%MMr7zvN(;Bo?<
zuJ3B&MX3;m*zc2*Tu7Q_<e7pgXbd{lpWnVYesO$scKq(u(aYnXTT#$|NweH>p+)!{
z(~SMR)i=M>e6meOEaMl^I}ZmMfVF7Q<<?+AjrhkrT|MS`-acv^2W*g%&G>=|q6(=c
zSuJDLb-{C%OF^g*JWi=JCoQ-z!PWxUSOyiq$A)E$3Kn@ow{WZ-ye+xO@QX=FfxGA$
zJ``X#nsO3`8luLc*3GYf9}|{aKcYT4h%OZibr@X+!I`9`RHGZ0d`1@fCiF1cjdphc
z)$bLcma4wj6Osy-z&O)c$@q!ZJyekU7k2=E%=4HPQVjTlm5Y>J40OEiP_2NFqi6Ua
z2L30+1_#>_IiIqUjTHyD<a08m3#LYdO9Wu52<NCOr*RZ{lc=D7ie+XhR~5rd$$(Eg
zx2ZS#VM;nD_ZqwZWQ+g{0K6ppA}8@&NIoNP{fp-cy{!jI$O~3d$;;Mvql}LRGn(du
z=k7uo&?1dyN#DO8-6p&wZ>xZ}U$W;a9P9QDDPXe`mWz1_^K6hVrz|bWdvm$>o{UqL
zC4$g6=B3)R*-{mM2k%67q1R)Co8Wu3-uH1Q9H^b}Yzo;WRAG$xmFANntdu34WkD?q
zqW0B<$&!3Uxxhq8ORRe*Cdn^(K~cgOk{`H`=lq$`T4A&OzV=%Javuah6Q02$NPjbX
z4~P=^4%fIooYH*KK`zo<mV5v^_Z^Uqeq6N|$|=LMHpD%DV`!2(Y$9^biC_#!xILBB
z!N?0V76X!<FiF#lB?PH}6gy;*id0s#{GlLk7pU}5`1*M(8aO|<chn*)=eepN81c?O
zL)FBvNrlCfUtq3Zah?69Rzxi?T@d_(&q+*kJ%8kVR}=5;tu0vTvKW9x`uM)q>idX%
zw<Ll|X}>mqyx4G|yjS$sGM5)=rbtwg@g<=|Rl&PK$H&+7tyhLmgA9aGaL%ne8B;rj
z39$ojST56;N=<P}_Ujz-s%$M%N+@~n8{@r)V}@PQS&^}AoP0{&J8?nY>#J~<5HXLZ
zgbHVuTtA*lTOgH=c?nBK6BFkOvLrc?u1K#(enyX9UMI$tF$qCNylSbdiyk(C5wNVg
z?}SNQR<LDjE5IO4w9?N}N%Q!(L9Na}mW&N%R3Twt>JJRyA+;WWc>2#2F~F@TqTi#e
afB)P+_s{*~KL0lW0RR7Mz{AP_N)iCioac}L

diff --git a/assets/kasten/k10-7.5.401.tgz b/assets/kasten/k10-7.5.401.tgz
new file mode 100644
index 0000000000000000000000000000000000000000..9943b940785fc32efa7c4d57554aa67198905c5c
GIT binary patch
literal 186353
zcmV)lK%c)KiwG0|00000|0w_~VMtOiV@ORlOnEsqVl!4SWK%V1T2nbTPgYhoO;>Dc
zVQyr3R8em|NM&qo0POw!avM3aAd1i5d<y*J6KnhYB#QD^dvwoCTs5Wk=vcC~qHN!D
zXFF`L3MA30D%1cdN$g%n>}%}n?UUR<0;o^a7e8cq#)_C}v#OBDOe7MCL?ZM0V6;D8
zU@nJC90q^d%HL=-8ohe)0{%N1jmrN$82$9}PX{l4dim3fmoI+$>Diw~2M4bXUj7M<
zwu4UbFA);+KaJMzt4!Q?@`s~{Nh~Rg#NhxT4@(@d`Ow2s24qOtzDKyEGfMnJ6k{$U
z!kwS_RKx*Z?nO8xhv@CW$obWbV3}|QYv=in^NZ_bO7?CD7nDVZ=<#3wf)0iUKMhBF
zqsPwgISB|B#PoZ8FdE>Pezfgxo(*sur$2uhz8t<7_#`HgPa=;JaX8pR9*cY`;e(j7
zkjMo|#841^L->$Hcp4CYfROGX`(l6)CovOLGQK=SJBpqZ@n^4w2gA|8C&J@2*1+Fl
zAxZRq{@4E&ia+QWON`EOgy$qAkwg~(mNUk~!Gfud7E;FIaDV?AS}9To)Kg$)G$4oj
z`&bAf#lCtb_OA~{!#J7`6!$*5nHORjNlYWcfoKw98XPLxCHCb1o%WIvs-K*`A7q@p
zDe!T0F!<KO`{QrzzfAuJ%)8!BA1(TS^n5fb>;IQO9sJP$_wiR&hAU|~IwwLNBC){F
zUcNf~Gx2|#`9Hlp@c-=n*?T_oU-$>!pGVJUqgURD{4|=q`m^UffAQzhv+2v}>(TV!
zV1y6;OkU5tpI*;il9z)yi3rCMmWgMhXD|0g&-R|Zyn6QRaP;i(`HSK6*9Wiv{L@db
zUjM&4KUC0~e`@~U;2<Gldj??h{D1z_^MhBV`TuP6>e-L^e;<F3z??u4qmhV-rz{mT
zW?{?(`4C-4>^6E!mSVT~=pzWs;1N0|Gn@nxX$e9z#+9Kk96Ul-3n~y52&4ZxIzQV}
zh7FdI_+Y*ap{W;OPS6eJRGC-;Nrt8b#mcbp5sf56OO|jXNf-xM5-}VM_!N6!rgDNM
zIYg2tWS}fH>X9SQV@V{{>qlr36Hi&K0^Kf@BI5|7N#Q#r7Ay&T)uo2!m*FZnR|^6v
z5wRJP3sQz58A=2h!l$P*6fubekqAe=0i{@=fbAlz;ZT8m!s!k1Q6gwG2dKt~)$P<`
z4Bv`jYK-md3<kn0kUqnKP&me%GEU|45RC?dh{#*UuP<0Yy=8?_gL%NFI5@PFsUA52
z4E*Xq#?-r32woqI5DoF1h@on<L>`V5*Vql=occbA0G?z>0MnNU!%l&ENq{-xWKM-#
z0&Nn{6-@w5VS&tBwX)1T4)#BooqM`N_(bCQA$t56{v9VlV2DFU!7W~@PcY?k9LL1B
zAhYEPn#F3lQcyk9X{g5T0?WlA+Sv~ysmx~~u_Qb2+L-*Q6d?2nM%O1Z8WDdN3CTE~
zlW~BBcn9P2ANfar&9za|AQ{@(+i^A9+1W+63+gS9PlcWY{xZTL_0$S{L)9uvqj?Tq
z5*aMeliaX9MU307q9h1*QN$|U!SEm|EHtEA>>_W$SSpBC4AR~SA0qT*9zR1YLPwt_
ziV7V0nEQxD8KgIFPj=O7^xx3?m_!qaz3ZpuHT)-!jIkmR!k$NjIA=aNM3)5npE#A|
zedKAT3;H`bM9)TVs2(&T38&Fq4`KS+yfquc;!D%bZ)_@@F9J57S0KW>nE7XTN&<0+
z{`jhYALTa6`r)HTXhI~Sz;-1oYAgeSjQOH?x*$P_Sgd|BwQuH&bIh-aya=$Do5PPD
zDeenmr=L+xN}VW;s0PCag|TbCgJ}!uGEvHMy3{~8@zDZH6hbGl>cmbr!vQ>>b23-j
z4#!la^9m<wGMFFJfK3BBBi_;rNC+ELp1!n<PJgp#M&}`p_c#d{_VX_!XF))C1q5Hl
zlBGX=EEZFSxj&uFat|dAm4?Zlkh}EX<c35t!=Bs`FOe+!cE(vGNt7X@D89wZ^f!&D
zOn-oU*dNz8Qo4fgNydWe<Ltq~sQ85yCi^>;SNni@vD&M%fW$#Er%|TV@N&*R`<R3*
z5+uVbGs4qHscuu&x_t<$EB%$kbB_J&_sx{kNRl}R*~Kx<F@;a@oOo)Gygd6tB02T;
z1oerB?PHLlizEmp#N#QJIULPUNWvq%#;Csq6Ywc|^vi!gey3K^ti_&LxXq_A;~DJ;
zO|c*!F3-#pv#=fJ6!d2r-@LMOXz=Kf);tS3lZdlK5+j<4CVV)6hYCQd-_z-b{>Fq}
zb7AF!C0Ttvumpfo$jqG>%SGkOST86$1GOYol!a=3olFUjh%#j;+n0gZ!yYUHN_p&<
zj}|!Q>~1*(uzbj35(!0=ak2sB9%I)a0i9b;ae&qOr?8ED&Zaa{cm{bT2Pl%|q1HkJ
zZ6%ydihLX(Bm;3+TqrFgRf|tb0ZE2@hG>L5W!A76!V#j8AYP&r7ss<1^$_vr1WCd}
z8d=aN{p!S@ldJ5VUG#S@iBCE4<WAZh0TYIbDy~+K+CDUjxgHPEjzVH*F!0IUskKUS
zHpv2vlF}a7CwJ73Q#(fe9t^C4xKc`?Gbq~%UKnsi4K#2XJp&reIT6BT5LRU`wIQ3w
zPQb*rmI->K_^F=(1l5&YzR{yojX+M#Be{(8GX^~}NFp}<jd&7XSV##Ei~+WT9wj`;
zrj#-_jk-3I>S`G)j84Ni08c5<W(<5!5oN5FpRsqXl)fPbbc@wP4sr{8NfnU!cjYBQ
zQ4&to0x&X~Sg?e*bbw>}hO;Ej!MUbtSxSFq<~>OQtbi$_D3%5edIWX_Oh`m$=;XuM
zk@<r7gF!$&5(zV0N@2cwfk@;rWh@A(R-epxm@bV2dNA;U1lBUeIu>FYy-TqOlR(nk
z`?4(@a~fj4JTwb=QSwSmGs6!`T){4`6?Q9E1*1Lhhh~C*I6a2F!(1_v`e6FZI16(N
zi8ixf<5Xk7gHEAxIaYSTT{_A<iH^hvp+@!9%a_kz<R8Cd(IsOt2gJNEBbsk8t3KpJ
zl1S^A=ObUQ=XM_=Ke8YRQ_*qS#?~BtZ4BI55(J97@Aa;$;G^5q92*ptO|_}n&%W6=
zCIy+%JJ<Wc;5SU>r9n?s%A7><_}#>8M6;=7m-`D?yI+q+YH}!Zqw+8_Jda|k-yDpd
zy&NfUO2vRo;9GG7dxE!Qd1|dUd@Hock-o}aoZ|431tfbg4k(G_B&W&X&784$K#pRX
zwbqX=I8(YQ?My$df#Ngon(#3!F^)%Cp=nHhPdK?E5sos@@JvH?Ju8@1mFGDu;N7KB
zKSu7d7n5X~9yy&JyPBNO`AOu*j7Ejtj*i_=ZL<_uNIlL3o5_<%a(r5DR(@S+Z)jtQ
ze-hoKPh}tq9Jmp&TG>m$%~LgHql_cw=>-<zmT|xM)XBv`emAKWWUjVrARJ1S{$1<R
zJ*!Kv$@13$Y-vOi5`OCI&tfe+hyP*z@tOL6)na%_=K2WEh-GfqR}tCsY_pbXeb`HT
zibv@_0vTnGLgo|OQf;jKGrJ1p8|zJ%Uv6c7YJn{>rKX{_sH`ENR_KUDd*oUmvrLFV
zy4vPka4oAt$b8$Wu^@!mc7U?Cou@;Co*4JW7wzr&qFq#+-e5`g%<e!Lj}ixgcnYKH
zFR;up_X02H8ILaEbqkMm_hY?5QdX$4)ciwq@Om^tk1WFaE99l0DNRqAuk2qzJQn#P
zg>{jLg@y9`l><tgh=sGgQq@dP7xV}TA_eR|-X4tfE9m(2I9=T{Sr6F!jNFjm5YcGH
z1_P_K-<VCY!-jl>j-qAe>M_HcH!YoprrAiT5!8l7aZjaiJ-RqW>2fvuhaVkQ4TndQ
zBv#BIKG>8(Z?RrJ-wSaZ6TX`+J9~a)e1zIW)Vs8!%Xev)N}`X(=V&rHLne~J!_v4-
zXyiZ(JqZ~0k=Zcur)CA3oQ(;WN0;w3Pr+fL)(fS7kAi^Ro>67?{{7d%BZT(Q4!k(n
z$^Uw$(3@gGy(81QlNr8{u~KY4EbTrbcT~WP(BDB5`$?&RHUX`R@s<Wb>M>IM0aU>C
zqx3JkCQ$=kjQY)J8$**Da}PcGaCwHT5C8q?@i_g$*hhLFSN_}%h}i<5ypKS5EGB0E
zF^RE9kRUOJlS18t{s3|EkA!kVWg^tnp0Oc1xx;D;afo(e&So?qItXGXb+#z8dq)s8
zi$7zn%G5S!LCjkaGvjwteGs8~zNK;jXcvearp^K?P!Z-(t4D1K9BXonU2u%%^oB&r
zSg$|?YII<YZEaV~41#{L3Y6TwPYprpsz3&$1a-+EhD4wgUp3cP={hk>_&C5cv=m?(
z=G~fDt2p~<q1^>ovbv%Ex5jXRMIJ;tIJO;PQ;34`^(Lb5%2Nnv*O;2GIn>^nBOr{t
zL`W8buj%v{jad|_tu3?!`pg-KnxG1<h9okedAyH;z`Rc<r#8?t#HlcwKgra)8xp}F
z%mV63F|>|HmQ?0Zb=o}^=2JwBQKgkFd}LO6r;5?tJUUN=L^Se(#3%XLzMG%RyJimV
zrt-aSEC*QDEviF@rZbO(pe#Bz9-Kq8bFkP!kIwNO4U^E!a{UeRt!uA%45=pE0a~!c
zDw-K5VsWMPn^{*<E8qmw7`oJ-AovCe{m~E|Yi}EDosEk@DMIU3Yf#_?V+ckiT|v#k
zVP3x9E4^y?RWrHOlmrc(No@&Y%X~J2kWPmVz*4__Dq0GV5-%m^`s_vt$=id`W08HW
zechHxmA2*_^}YR|Xb@!nzwuF?rHLTLlh@+w@{)<Vs4yc-Qc1dS>ZIKAP*pqGl+HKN
z)4BAr)X2liln_UWWG8o$V^2#uczPb8vGHIMf#?jDLgU56iDV&`)WborR3?yWiN;5H
zyGCR~`hI+2Ep#>80w2e<63dB@n9B?1X9lvF8$}f~V_ZpzZD2=J*$^aBsA;#Wk*1jW
zYfDnj|DFlQJ2sh|<q5DaCf79nNI0D>OCJEbS7(#_vnh@I<98`=_4DFW>F1=XqLe61
z2<G16Fn3gu1BB3w25?rCK1k9HYx;=#M^fg$0ck5eQ*BC*)Cxg3C%)YT7v6)+t%BV-
zmfnJJVNF=|w+C+kzI|jZUU*i6<M%WhuMb8?en=z5Oig?C416p4;edfd1qWjmFg4M9
zqmICBRXt*JxFH7~RueTnFFnjT<}(9B&8GB|!2rip<T~<69I&MYsbfy`d_B52H5eIh
zyD=%u5wdMKfWVuW6QE&;J_v#y(?~UVLn6Ydr(KgjWA8eNC;9;JF;Yf0?2%!IO|U;4
z=tghNS%vx1={$r`7G<qZh&gA}hm1<#3Wx0aI9;P}zXhcO@`}_BUv15lbQC|T19(fO
z3&yS|Ie&6&e3Gw6s=wShyEUrx5}7(ZU`GfW^Cz!IqtVmBpp9Gq3Otx=>L=Q9t;s*M
zn@H^>wx?JZ%pZfvtg%8hZ*$QV<`Z*O0OWp(z3VxgT%Kb!(;~Gszf7`4^DSATP}!#-
z>j44R0Yg4fi|Y-RWT^NGHmzbNOqq0kD5egbGef-rB+tP|(=;D)6cs*pii39foY5JP
z6g0rI5TZ^Ju`o`V(?}A2gM&k~^Lzvv%pN!i8|4K1&or<lBw-ey3sy#)WPvU;q#ZsT
zxaoDB13gp<=J|O!iEu0yOdj4>=jDJ3rLrNc!@B&Q9lV0mkZVHXb9{H?8SmMFIVADY
zi#Qdj8DtcwnLRK&k_!|5SBNSb#MP&&O@1v&gJx1Q>z#?QC>-Zk<^(W<@S$ygwcrH%
z!Z|4v2rW}%y%pL!XanmBYKQHT2+24R7ldm@)%FqMyD^KrgmV(vX5$Qy=+f~Gh|GF@
zzHv!kr{1k%U$6g9c6l&e7DB7)$Ju#0nmZd+(up3SPfB5$s851$v_u~!CzpT~PqgD3
zY&vYMI)!qG=LA9%m8s8@D6*l3B$9jyZU`Or%EAywhPL!P)y#|9BUwQ_kA?At_UG9d
zs=dLNNu+esak_Ia#lF??V<0FA)!RaNVD3!3YTM}#SmN8)Iu_{qV1yH&%6;<`--^le
zEW)5<9~x0O95f1wFj94Lr&i=vIq^~vQQ|mek-58JC8Q4AA$s17$GmC)sn%o7rW$OV
z+S#Jg3{lBKU(WPEX3Sy;sH$N~XCx|Gqz4YRmBFG8R67zm9omk9SJjj5_U-*@FJSks
ztrM}_e=VGL6hPnT!EEh5_pRyJ+1hk!*Skv+2h_tt&ydn8c!*vP5UN$?x=qs(r@yFK
zi}XtiJ<lKe{-rWP(o?-c3{*K(qq|M?d^9?zd0Xe%XcRUWMh9;SUn?CRW+s1)ep9NN
zC2}|o5)!NJwAKJMLpOz&SGtWEye>cuOKYHV{kA{YW7u-kK-K$^{y_i6*ma#*rM7gP
zA$kkqU0;%zT`>QWV1HSs3G8>BAq$D6Xn_jfbcRS~!i-T1STYkAOxOYK3_soBG{KI|
z>ra@<B4iUBaf~Il4xpdyc!`tZdTzRe{cBOE57CR4`KN}6L!>tcC9x`h4RWC-VSdOg
zMdo>7V9c{BYYpTgPY%(6diWcgD)RNl2Hy%3^`y)wA(V1r0m+@x?C1_OeIJ#<W%eT1
z2csMHb7wFhcW`#(AI0ER+kvb8VksmEcXpBfX<`P`-x2f49$bz}AH~TupkDfuGj_e_
zk$AE5>tHbFc!ndK4^7kBDdB-}Mw;78Z~!A&8ZfM{L75W@+csF*kP_mfHyXBn5_x2Z
zPG^Y9$0Cif+(o8;n>8TyNq}WJ91KVVmmd_*vS3OGJ9?D+g{a6*=>e27nzObFMIHA6
zEzmVt4vc*{4zJVLIdI|&I7vAAG(qF@w<W+Do_4%ffWfF;aU2OM-;!l60Im2gjd~m0
zgr6{n)kb1r)zdkRlw1!65cZ{BCc@g}=abWH6Ost>3-R^6-&3DN67IAalU#@89p+X)
z`-y2|IO;szpnhE38KgURoak8G0T2Xk0tn68*+G5&9w9Xw^ycRl3p8a(<lA6|^2r~Z
zG^-s?>J!vwHfDoS38sQW$uw5F0SCBo2~I70i%T-Je}nlxPa<;)EB1?b5KLDFw|#vo
zcuVENgvNNxhq&W_%p{ryIJ#B}!1p2c9PKQmj1TwsfqO&!|Ki3weEn=RDx>-c9qDEu
zdp@~=7%R9Upb6JPW!;T5GQU$U4Jro<T?fZb0%bJZVh(%F7)v^(0hLP=(snyUp9m-i
zPC|A=5Q{v5ZV8ek2oMeebMjBP&}U+BkuzOo2I&Y;ffnpGcgSiKPX1o29UwYGZ(mQ~
z_)N27hH0QVbi2TkC{A#K1&f9Qo!f(Q`SBbqE|GI?A(TWjPRQ@sLb&rX+=0+9yM?t;
zxw*@&AB+yvS5{N4hh{-SA~~g5q`(k8HlT(U&f`?MnaDh&<51T8GfAU2)g)_Jmd$G8
zT#rM1_n-Q8VZCvIgX76d#^h;~F3ZNp<^-Ml-kxNb)m3Yc26%RrC-H)WgyZ1i<M{mz
z;R}M5P8kgkb_N3<ORSf6xXQrQLK1w4jf>`W?%^@JjU11E4w!fCYyfXct%#5`1P<vd
z6WGVGq&E;PYW{hWeX`(0ELh-!fj=6Jl!-1RiH@mI|K*p&V>d*{`u`)L-Zfm*bh;*I
zG!_m=cjiwXUmm+Y$ZbI`3!9G+-;FOmq?$U!cjtMptC>G~C@z>kiHQfVzV&VT@9!^{
z|3P>Q65`=+f<>F{qcQ)(^H(pQ9sE?v|M2|z^A|tzKitRP9|MGT{!I`4j#<*h;r_mo
zf;}S<jL-Ldj%RZJ+34WUd!s+^o9}m3V`WpRmijzWKZ`kw373?JokR2o%;6nA#a{Z$
z-A+HJGJqGCKOc>Y7y7b~a*4Inr(>OL0a^$`Ac!FQ*ntf^*HO=fXZikZbQqwaKFwp`
z!s3d}=eB`WY&9({@l(bEf-7J_z3mk49wGE~kpJ&j-DIa|E%st?DVc>&q%uG1nVfEw
ziVat0bax)?ItR#%dO5R4;~1@y7$my`_%#E)qb$=pl62&C9Ys4kZhD%NjWmm1r#vNF
z$WgM>CZ1luNk1`XQOF!dss9SeF^#0?C870Twk)q;+B6ER+HOxK<HiB~WTaCvJ4!eu
z%FvYOj0vqSjk|D5u00*DBM^d_2(Ke><R)%19;eA@nx~+>yV5{U3aCZA3JGs|3EI1S
z%N~+dX!osEUmh9Nbw7zJwJzM#v7rKO1E5n1_2T>+Xp#o|wet{;W$IX1>ZaJ$TbsM6
zXh$?NYP`VFTyr5kzAj?gge|<Y_x>wyn%9WZ@b9>CB2^nWs7?EKKzGq<9TE-*1pr@*
z@OC7guSsGja#S}fP@<YOqMv0}Sd$8!mZ5=`aWNu7<dQn{r7UZy!>5A)CT*Q`kSGav
z4$<FB&k@==oxNl7f)hbX#)WxbLljcF^M>%9((_-7tRA@jonM90v|TIB>?7M6vDqx3
z5wV{7b~8QG<$ZuOPj{QrV|%j!avbD3YLgme5tiD3yjV(~r2Kzcq`K!Y=CZ4;G>{i*
zRs^KOAdp^CDob+nP|k~s3Xoa>-F-yU6me?~XfeH9{pi+m0T6+BqTYJKW>l%d2B6KV
z(Rk{b$afhpsM&x)t_^ncFgYpJ_DiLqXr?KjXk&X5wRR{?xHKfuX(chs9r$?f@vbv1
zAneo39kpSf<bXAq{_N@C5IrHoIjTwe=g#%l%=j$P-<oVMWC>hl4308PdQPXTrF&BK
zT6&x5Fdw{+g5^1ms;WK@06u75iOaKq{=V)oJR7~Cy|@p3_GGwfQ^)E?0&O;jCL$e6
zQjvypn-apF-&TooEl^In(nabbTPrOPMPOL!s|vAUscIV2F5_AmTgTA$W{q>aUA)O0
zQoCk~4s!;@5M;oprLvS4jg#u{vRIhRm1{}GSi`svq40`beN&le5r}rKY(pM~>k7ng
zY}#lBv`WK&vZ=TaQTQ#_&qJ1j7JfWPAuwSLYstZxhH)RF5EQ$5$kNcxm4_h^?K@nX
z47$($HsjMDUu#^rI+KV_!D@1r7&9FQfl1bgE|}kO3oLAIk_+Z{fjTULB|1Bfs2Hr3
zc`;)Qwttw{`wD)o<7Dol=T_L6OG>qAo^}QO4H#R<E57-2t4relt(aEa_|x0YdAcV@
zcb`-lr{*etC3DKKst3P#S!{dWf}=t|sj@8Hple+?KG>+<7<<<k^sX7S_lCi_8_)|X
z&@8}ngaa1M^=)sXRttjk7Z^8t<4+X)2AZ!C4#`l*Jpw=~5Q_rsXtaTXC{B3H1QGe;
z=iSU_ot`<*7!PgcqsLDSLaCQ>nE5fE{!jZB01WL}#nb)&F#LmZaDP2~qAOb+r6u5=
z{?8}6iNy1#k6WA;$=cq(rg2Z?;>Tz|oY8g_J=osp|Lo}PhcrAKY3Sf9SWf`TTjn2Q
z{_V%SRLNwO!Ox%f7J&5`=mz=u9;Kj_>%}rLTby&{u71qE2Q>SjD9{!MAK?EO@rN_w
z`Q#+q8~5W}FF!{AA&tH%@U_jMH(mU5k9!NB$=wz?Oz!@bd8^CNZI8Vt0RNwx!{3+I
zvguy7IOe8@AEW+oM%|W^+}^1FVtV*7>JMksO(Lc34f>m6iHjd&{_V${MpUll_c0kD
zp}_19Ur*0~oAstsA^POUT>9p7saVH!i`Rq-{j4kj-N0lC>jlx}57gJY#gaof2+}I9
zh?4*c6zPL*$|5z6vXF_%C(~rUizH{sG$3NZn1s4bF{dHn>G&fo&@BmqZfxH^!+%V+
z2Q=ACIr8m|y6xe|s6U)h?-0DW-k_Ib_<oG}Hy`sZw;R?Q^h$jHk5T{Tqt3k8W07D1
ziGyTLqwS48-06bKTw~oKx_};kNWr(4f*3F7?6WQ@A;?NQ)sA-<iyi%QYl0S@rzO(2
z$nLC^{l74$)7j*{ys#l&U*>xG=jQhJrQ7rk`K=B6M1lV?-VbNIlX%YY+84qbM*M^B
z;K!IhoH4HyO5EP)e=K+P&n*XSM_I+fWZOK`D)#iR%ynHOZ%^nddRyJE=lc1V;`qSz
z@5%+TizEni(b>)B>ntVpg3MedNqx)3I9-f;LA^zGpx`s_ns8fo69$4q?aEvRC!Oc~
z%k{x%k9hnGx?PaS^eBcJfQ~%Bz;fZZ5?jmyS+lX}n71jvXK~%GD-mt(<Hc>wnl9zp
z4E1Z>);_Um?%PmtQITEH&ato3sO=K=f(h5=9d*zNs7)`l6RUcMY1irQ^@K=w<4W7F
zRd72o<KK`{C|VmO;k1;@v?Hzg=AEdWVnIG!o_#xlEdnbLYnxUH9W?!JSHUJl>q<(-
zWGL;WVWP%1jp_yRk$tA|&8s!@o>lHr7s)b-&!D3=jiZJM7E#Ge`2^jr%P0);|Fs!g
zIZFx~?e>JNnM)YjcFoD2s>-bWCG?%Ps7v_jPCmDRi|i+N%8c-{!l>wmVog<}Xr;Mx
zO?KR@eU>bo7}yy^=X7xB{x!{zzd7}}OODbn(^S6=h{o0Ihif7VqhHNs=)&~ECNFG3
z5^pP=gvK=wz76GkdWa(Cg_hmZK@>|h$w2I34^qzWD1A^>919$CcDEctr+mm_5(zcy
zRBMwb@UzF*wVrM(0GZ+d>olJ`P>h|kDQ(CX>P}S=Y$2739xQ;|I!vYxePM*sY7MIn
z)#{l$WItY%NWMCo)M(>6@+&QxWVL;<TsJ{zw}tZRY|^?;=F*#!tX1O%okmdknw<D^
zaz%JZBdiMwZ6G7`CDB!En@%G15M~{tjtQYZEij~2@fp-l!ve}a;0RfQkmPtaqaGsu
zoFJL?Pz7C|qw*b#oT({~f`Hw+UeuC|vWk25uQ^3!9^>_fK{23V2=dIIWHoI{(5m)W
zhi3JRb>ajIt`Ks;Su(HY`i0{$Q?YTS#M@3&&?k4NVKKLUyES-B?g}~eYYjkMYGsM)
z8`Rl<HR<!anjiB8<jt?qoEbXKEcq>2NsBE(d8Pns%5BtU2k%OcPwuE6cOb`^9K0hz
zg(Tr^B+;;;B11bht)#SCvrZyX%hrj$a|YOG*(=5Z(SI(aQNB7fvfH#E5_M|#O=d?i
zYJ0O2#RYp?bH?`7m(Yz(p&rDpGn-0L_HJ6=y2NeGIo5-|+A<qmiF8z=Xd$kqyhaU)
zPFbh};au38ifOnDX;h17{Mw?cY;Ej53hGq1>FBaK@_l4_$rZ43H?7l7TicOaQo8QR
z6)_Bc;h>zmQSEn5ON6>*cUz^vv?r?Mh)S!UH;{GP(-mc5ZgltQ-bHpnzkUzuZ2dj$
zKyz6`G0>O@lBaA4uD`~OPgdc2n*qLNPAC+0hwjs$`qGKARBg~eDU{Q<M9V<@{nufR
zur9lm{PDrY%PiW7-?{*%oXXQ`TkH8zsF{{d#hMdW&rx_}L$qXRv{1FaNJUUh#dTWK
z_z*>N8r|)pH{+B0a$;LT+=r883V!+T$M1CEb{vwuDb~u4%LE4ip`#yfXaD+OG&HY=
z9t&%h;~eD)4;*EIHbne~%d>X(xcw-t`Ix3S>O*xqrK*oBP1Y);o~q7666saf=nk)i
z0YDdY(6)xCIhTH&&cd?s(#3K+xx*Eo)y@ScGkRBkT0>JSD-BzI#@=-`jYPK<*K){O
z<5L5xlm03-O4(J^Wy9`EuT4L{P8>!JMfIue%l2Iw>BPy5a1wdMN7H2?#K^*Y5++JF
z1WQEjydV+uhUl23FIG~%JRSCr<EXblP!}r%b+AN`%NntSm&mMA;NqKs;bIf~7nq1`
zAFh1*4(Fs}m9DU1Ghq*=!fp2emUm|H#@*$mBhg)gTWY3(n<fC*g{C7No6?smC+HR-
zM=isPIu0@FGR#G`Trl1csN~{H+M*|G8We<%|556}iGxEfG{<z<PzRp5sx8+rZPb-#
z^&wC7T!S_n<Qoo2J=YvhtIzsXa!J?xZ7fPogTlqjqs(!#4)@Fmd{?VdO87RHCEH0y
z6^&#1hO;ETpS9`Ia^UFV6wRUEE~KY+TG~uc!|sw)!{XX4K>Ee?Yf-oVv46jIV)Qk2
z=0`(YWHNNwg}-VSb8j3qRX%@CylYZ9szsgod4C2~%Fh)nsy_VetKQw7p+Ww?)-z6$
z0QYi>pL{qw>h0L}JQCM>J=X99YsII*BfxA*W{mf!Xnho+lgQuuAP7eR^++TL!gEew
zuZo^1m`@QE2%~_^agci_7g(Y>$B|TT69oXLAS449CXNt}<A8eFSIamOY$k6pCvY8s
z3lt^-vYiP4som>&LgIvb3oIb1ks%8H%{cPeZ4@x<(`eq%5n{JdCR)}!f!eh`;ls95
zUPF*eL`rkWId5|LPz+~goQ0<3Q{!QZ<)rQfu_@da@eAz>n0neZ*GrhKJFnXr&xA<i
zHMgjn0X_>cjU3+THQisw0Jq>}wR~uE1Nrq$TVx_k0!de4_ql4g*TTZuSZIY|Sb!jw
zLXxnZ`|AZomn(5s^iL~dPP!J134(4bv3GUQkjKK9MUdARM?Ug!jHfi9K(5nw7IPZn
z`Y?b-r&)2R45S_bli9F^E=b+|WzJK?*5N}PEb+V(K_+oJwXxFY?O1mkRM8c5;|8t9
zq}f;w4Kun1rA|j$hSZ$e$O0TzpwPIV-B*CNL}zyX>$>>UKyaa9>JoNR{eK}coDb1L
z%2*uk@0+)9BYdbeaQR4~pZ(^%ir6K%!Q6n#-9_xHk7*S~hX|}G_SU^L2{5`TpHi#T
z>h5t?ejf_REF>jthv*aLk+OdFQklJ_K0z_zAr+z$$I&3RIhCXd%6E48^U=6C{At&R
z2yjbpE@KZ2%v%}+2nPYX&BMv?0@den922PPiD;xteZJOb$0Ekw3RjYq^;+=^_7<Os
zhSFPrT<x|WWKp(0+5|^bv2;>c5dzb&QA<ONJeA8aizK;g%%aumFRXNp%FtVBaE($|
zSZ%IAo<v7N?a|s?2~AGu+&I2^`SSUTW_Lo`B|1Is<V~1Bez5|fr~ssszXV#mW6>pJ
zt!FYFJ)bV2MNY?OzV9BsPAAnCPIsz1IXE{wz|iN~Bb-9%MC|OoDV?oP=B$avLDTQ*
z@rESP25!VWA61>EZUZIluuX+2!qczS`bn9NG053ejkKl3+@-DzzbTcR!9_P3@Jiaa
z1DMvb``Rl!c0_=69mMiLww)>GdIX0pq#JiyP8T1?T?IVL{-Q%`A+^gbr;-Sh{{`hc
zMmIP}I;M&c^!K$q-dXA=7$Y=M@H&x2e+TCg38%#OiSJm5^{|6XtC3Vp_(%x0K0KsT
z{Z#GP@|eATL)X;<vm^+V_4(f9)LBy<WLvMjI-{$>*zrjmuqAksJMFhE(&_0yJIF?6
z)F<5N!vnQ>-Om`Y-;D(}84XH!P>tGiQQy=UVVe-hdbkNk9*)pd9}NgW{I*1;WJd2c
z&W(<m7CJ{FNSwgy*pO?s0t0$@7=FWK-qX+fpU|YEL&1D3Irens>{9NLZ;<Lj+n7bf
z+QTY~nMO*jo%>llCy_jUH`(l&fay5}-iEmS5Oj1c+D_T11~aw`$J>Ju_yJ5?(fRV8
zo%k2k*s(?nHpjBpqtVFCv^?-MJlLYx94cB?%&HUA49_VI)}OW&`traxL0>bx8fl+%
zGRKnmM=@Q4$b-?dmo-#Yy3j>s=JQ+@%YMW{XF6oi0jhO+Kzg~})5Er_Q<=GMdLPB#
ziX&JO-jd~Mt?pb+@f>}cnDqu-lVy4D=TbeD7R72n>UCz+)JWB>&`AMPvNlhYxula}
z+Lths*|3g)QygBhV8chl3Wd|7a|Do^@IAVGXAgjF8_oiPun<Y8LkE<=Nv3vlGsZ)N
zqa}Qr7G|oYY#dM$$w}SatTjor*&wN006rckzS>IT0FFra8Slmcn{ELk15sz=2$m3X
zL9nm*v%oj7gJU*$0u|@dE~<(m9Mt9p*vY0jWAlI<#dPDc`vxFGY~0%xp?$}qy)5oX
zkXJ7di9DwEbZ^EN$c9-Tc^*q533H%<m<!I7dfT*uG4vSdT@*~E1!Cq3D2_nlSws-k
z|8&sVMC1L5wjm-X-P@4nycmMqmWR^G3mJ%Q<cC!TV(F4)mhKhq&>xIYsS4;em@;Kj
z@2Wh)C2-}MEKSZ`PW;3(S30fp5^*Z75k^xgmEMe)L>~4Q+V!KM2n$A7!JA^SKnp4$
zO|6^F`2@9_jv&hA&TV9&Q45^J`mVkSHJhO&OE|J{aw=HyF$n^jo>%8N&;eXHm!a1r
z$Y`Z|^Opw;w6|X$gv@%9p<=Tc4M@&8Xe3rqS+gqso^WzSA{=d8KOX%KaZ&)gO*@vp
zEg4?$veoobUuiYC9ZEca-Hnn|bH~LagBpalp|lD}Pui1Nmk__WXtoo}$Zy%6(!^|c
z%_&IGE-Fk7Z97#)te!VE8ryZ$wULocL$<5;6UzKZBg6F>7OY<oFno)J(G=NT(zj{0
zN=F1{naW8rO?x^$-UgW>*F&p~Rs2@1Xs{aOwM&N~JD>BD$d4I~wlXEtfeUej=Y%6-
zJL@!tx)u1<ZNqfz%p8{3yVmj9QC&I|Ao%Ebn{*x>ccaXF?MZq=&@s$Z#+N8ya~fq3
zny9e6*^UHOFiQup(^AmXTxlO2ORl&j*)@r3+*Kj<I1_9pPa?_j>6QlW-1dT?8--z~
zA#}9sGJIvCwl$6p^tz5=bJOnQXO<3@_$SfLcH|VGqm$@{au$W1O%-P|Ck;0uUJy>U
zBYHOz0NzdB${&LQ1c__J{DUBT^J!=rF>S=>0t<1=_=c@j%beIk@4`v@aYs(xpXFx}
z+_LRgl8{|g8X~a&%EOj%XpsMJdNZY3;kU!B6i3nCrYw||@4FvaauPGHzTLR1@6tkU
zbx;3X^zQLOL#G6KED}jb_@*~`V*|HMYv#VQE|VGKA%-FxYETdV!~Ekj_5WJyi@qfD
zY7E#0oa_c}ha-W{mnUyd-|O^CVM&T=(ax2G+S)mR?ju%xbo7{;Gmg;Ju$dD0c=Lz$
zB{Di;@4-Txj)c8(7&5<!2(=mT&novKH%N!xaHMx2JB~!5O#>0;3++_f)`DWMdm1NM
zU9!B2f#jg10K!d@nM2lVztV-bs#Y(+Y*A39jEv>k-3aYl-##&S0s7$V<U%(v1t|A>
z(JdY0NdcvfIUGr@08HqH)b~OQOwvuSsgkoGojmFC-X6ci&=+0b^h>^k-kvQAWp1C>
zW}WsISmqS)1zy&kRIIKYFNu%-hGj`}x6<Zr)<IWl_KkH-PRgPSh|pd&aOHJfbdI*(
zkeBvjLcyCi$`CngM!4D*J)uzGkVU?D+C<$&A{J}W_54)}U2!57{VB?|>Of1(S;#iM
z&3}6^f<kYsi!ZeNu|Db27Lt-S4~H?P^QbkmzHtJV7UdQ5E{t85dh61fruuD4r1~AO
zxj;8mP`GHmEGAqC*!+y#kf0}yG@3C7o@Z>10svQwWHG6FkTxh_WdrZb;c&m)CN{Kq
zZW`C3lHPS7r6y@C+|k8pHNLKPW4N_k**X}tjAgSmqu22YWz8Fv)pD0-X|WfDl3}je
zF!hPf%Nk$e$j9J8sMZy0j!~Tb!>`>THsTNU;c(;^(rV;096RNqS+*9d!)!7sw`*e^
z_r=x4gHAvi4M|x|zq>&qZRANM->!?8NfN8|jQHtHQq2x^)v%Y(_d*=Ugd@h&DYxgl
zE_T}-ygNI)rW9q`SUo8;?o`;QxUro~&c=kxqsw=j_b*H)XGj4@3VP%I@A6%CwDxI&
zj>hNE*i*thqn=Vsa2w0`f$~Dpp11}lg$R=N1>q=>3ld42R;lXftDU>W`U1EBr+qnq
z17@fec1G*dg=5aEs@x98-+wK<ppt|RT~Hd@yqwhS>jflF1q_8w0iZ9(nQ+$v;mu=>
zf+Dcn1yja238#b$ggHsU8`zR5@Q+1Z2em2Y$_eK*gAb~644ywLs+Rm*awn;tVnMy5
zq&_^Uaq0M3wJwQ>J2`&Gbz{0Bz*UnOl#C5m_pM4&w-s*OO<uI(oPux)5D=)<&Oto%
z87LfMB<5fNR#4~33|hsF(zxo}M-htrQBB4zIIU@4SkwH25h8a~NbSPVB`6d>(-=#v
z<J#sVA{>HMpudF#Mz&n1OTXG051dn`8wZZuf`MX8IT9qsnq0`3>ajq<U0{wqS;>vj
zx~RhG^vY`CO0`D1Ktsc1YWGFf1KOri*mQ0j*^M18mb5~sUA}q_IHP{=WuU!!)BBi!
zJ7LVCh<I`nBGCop_aq#>S=1mVop{qtU`l$?Cf(d>lC$@x$76J1dg_$eET6-y(7Kr#
zZfe$Ul^Vs}lK-JIO*yNf)`j6BOn5AICZpKo2$@b=_l_}!6BN5F<=Pe_w$-9m@T{c}
z8}lwJnS_O&gqQ~XN)5-Hg_W$no%mE_g@)5@FMYKjx@--brR^A+noXgffLp(P-lxMP
zNI*RK8P^?g)t4fUYHB>2T)wVXI>^WIqJ%}SQPAP$6~{N)u)MlM@sVq_v0tJ&y-^G9
zGSe(^C(Yv3N9b>fEKv>CZy?PaW^aPL?QRt=ZEA6yiL?`qW;b9q0%|%H#~-X_2k#n5
zwkG#Dz%<<Qkf!Fn2c31%DDY)okzjqR%Yy1goGE;DPt?V(GFy&2OFB&mZ0;6V<cWkG
zU7pNRlI_AP&CEtVfbZl!Mp)N*=r+7r!hJ6hl7(R2<*YkB^pKrMhcPONhh*;BDb<1G
zdl`34bH_nH3WC(9MuR|&xNez^IyDKVbVMe(Q8U?N(JY{zY#};ebCzt^>;sZ@Kko2k
z7uCk*gZn21b^KUVV108hj@F<$vPthSQh!WGMSY$KiD={niJ#^3|8RM>i*lCvt}zyO
zk+l={Z8C$%N7+cW@B?zX9@``n>oMiPk?pBu8|(g*IoECHc8>38n1smLdWeqAiLn-V
zD$oI1u%vZ+Gvh=oz<FX$aJIXZ1>`Svuf}I1Out=suC)+`=$H!Fjw^e`pwv74E{jPd
z7Id~+fSppj6V)2MKT71n=BeuK&FBFqJ&gYj+!w2`rb!lhaA_rHMq|h&+N8T%@A}Q=
zNLw=L9dv<kWGK`MuCqaquZGeU_5;|pRM?@WdADsdC<KpjPDIQi-(1IV@Zq6sU!1gd
zT^_G;#kC738*+oZNaxDdonZZH6)57BIRth-<gJ4Ft;j4Npf=K%YW(e5d#SGKLtBxo
z6vkuW3<z*hM<YnvLB>bh)$(TTg+PWI!gU;j$(`ZpeF%goNtTh(VV|C*9Fz%Hz-Ik=
zXxr2lLz}nFq{P(L7#|gaJ)Cp2oTaCAXCQQ`$Qer_A7P2UeA&Oje4i(gF^9$eb$SVZ
zNZG#80!9h!dwA$^`Q^*E-#1(p^94B1ZjBjSidCr<By)YQAJltu_h`p-JwrbHv$}ge
zJaA9XrUuyfS?U?l<hV&A1Z%uE55PTiU$SCcL@S7lJwM7pXfXltm~bhM63I^PB-b@z
z?xW5Lc-qGorA0!h4Gjyiq#hy}J{@;TePHI#6w^93eYeqpk89J@H143wc`f$Oj*l+f
zTe{}JyY6tlqZokhRCSe%9(-D93(bj;n9GaG#hVQ?XvVnO&>+*F-TmTnaH}?|E|?=q
zuEe0;5YdxFkXaI-+XabG68l(IPil=n^y$C$o@>D>5x*OxE4`-xSFCK>*JCZ(9cxFW
zFmxdc95evSU)V=q6m5s<;}%QW?#$k?$)s_R*Pk4xrmGZh;D49h7cJ5Yw>7AMoR0|%
z`_<W`8<~@98h=#Vw&m8zRb6%2CYC8{7yll6&<gP8ZIx0nikDku%+=Wh#hgjzF~@eJ
zMC_*pIHGjLW@We_wWuHN?<)aFtHl@_GUr$#9L<=CX`e22A~?e$Z1SDL;l&W;d(fCe
z7b4e3*?(VR+muHBarrI>+QR-s={h^W*&e;0@GR6a3&&px6$|1cWtcy)dy=P_Qf=v|
zl_M9Qw!1ekWcB%?$KXpR`qP$9mxl$lAtv09`?iw1*XF^k565>$qcp+TGQX4zP6*~+
zIjR@6*zKsgLlXeUm21~UyTvi-(6p_HmNHtM%Am`5w~jfgOas+l=2DOhX*;oK9{@#=
zD7U7^${Yc(RYlR>K?T0EN*)bld%efaFiH0X`-V6Umf9}X7&kyK9fTU|s~MKASZwz&
z-8hlB)3$Ai7a#I+q6f`bjTzcq7;+>fr_;n<5!5q3j4@B0HYAdq60rdeQD60TKm5t)
zq7lMC$zuVuEVa8&ELalwD8#YVZ;37die{7qzHa6|DRlDDOd!0$emgN0e7z5vuYlpb
zbG4?|PCQi;>p`<r+mI`9bW@#mVr0z8jBrkTtF9h2S5s_1r>pRNOKlevs+=D*{dPLo
zH(;GvDzyWAH8ZVK+Xrc<RSl}`7-R(wJxsG~Vvy5acHu%F;|oj@*TGR8>1yJfW9cmj
zZ>@b>%?6Nu;=cS}flxC|%vUX<o5Q$4F_wC47&P-`+t68nPE~0w60512JE~t>%5b#C
z3lkwxs741q&^a5V<Yf_P8g%{V7<z+M3iQG76ENBYLkobM9JR8v0z;k8T~D2?uT7&-
z<&VvWp;xvTQ!Y$q0-n{4)+Fgw6EuaRf<ztP*6QFvTZolt%Ty%5R#<5Zc$Hgj@X9@{
zX_b7tI3Ni0=okLeKcJ}9UG^jN=SS$zW<r0~4$t`)iT`=Cz0jY5>)-ismg|Gjkss1X
z32kleKS!#nH8WDxX1dB&8ikcf4HQt(QW7UkMx`6vE*Pw^bB-ga^aKEde3K2?s2Umc
zMoY|t<B+*2*n>s2`MOr+)*%01o2|`87mQiJJS>Snv6=t+q;N~U<SCf?%H!2TepvBx
zRo&Bw2d@Gx15=mP?Pkg$ldis(hGSZh1&j2@pD$1CmvNNKde}HXDZXk}cLdQCc($Q@
zVBIjOA*ftdzX!0M!G~Sco>NXe>=7=tEQN*8zIN#xA3<J38||($^_=6lRwmOg^2edL
z5Hb(3M~Wn&#FH~73$Jk^7mQQ6Y!_H(<(~4|40TOY;+y0%-{S3Sfwn;lYFShZ3u?>2
z;+Tq6R1U=099^8+YYO^9k%oJe2Y1@36{0hQ15U8N)OUqDXdGR^vocM)CKfKo<Ypv(
zS`etCT)`KXfwbEeZKWqSow>-?Bo2{LYB~r;UuWmU)LMlC&iebdv80ju>@AL{kc3aD
zPdv=KjH<7;jiBjE49VT^Nk2J6wg)717f5$(V`*<0zYZAo(FODC(}-pOhv<VK=&=U!
zhD3x@?;{J6ko=6j>m)XWJVr6*81mZNqD$?<;a1_BOFF$0D;gywTLyZ;c3Nd=`1S;n
z@36A_qgzOJ1xlAf%2}q)YIB8s`m`MKV#xxFL{qFdA*kYnmFdn)I5>^Y@RS6N$*$@S
zPwEoawJ|8)Z5IQ8%}@Ye>+k>tCF2m((7s(zZ{d&xDvY@J1)(T!+FExwngeUeNfAUp
zAt|-BA^G2-Fq9}+OA^evOFGl-x{=BQ#9UgL5QamfcTUG!GF>osJ<*}jtBn1mAec%J
zHAq*ub-fgbK2VxQx-FB1tJp_rj9-slkLpMHJdrxOzlfm@5|0wKTWohvWZxo|AJMP|
zxY}jLQYXbDm6*OB)_mJi+shI(V33A`G@!LigG?Yc0Q(zR1|o+Yo24k5#g6bSv!P@t
zCLHb#xXGoFWIZg2`{@6l+S+h);bE>eKTMDNG(Em2$@pQ1{IEkFx*c+DcDNVJAH&g9
zWm2qI5G>s~UohXEdId${uZ({FE6@UJrArHSPM7I^e5aX)BWIPU4HA+sL)Ah}zBm;2
zeZAUuqiaU6On6VP;4iunngzI_f=uBnbC4^D1Y8bA?WWrld)IT$lE^>DY6e9(^2lXU
zThwZ058%&fM<~pCLWVURtS~fnL*PjyY*t-PVkW3$5VT*dKh`#JbUnfCIr~h#LaP$h
z#31p4goNXur-x6iA61+mq+hRMFLxR2s*w#*Tv#r2Db5hc7CI=Q#6;(Ms2iNo8Ig45
z;>FLxnza%x<mu9rw*+|$;$55jzMO!I+u~~sKpp%%RT3Mrn-<Ua+Q6L*i4(Cfb;(X6
zN%##8R^-a_k*HzIMIsh9m%c@k+RoZYwjaWti|E^WIUqV{Jl8{A%~HV<?o}*`ZZ=S1
z%?OLr*Fx@RBB!m)iZ66#RT@&Mm&)t<F1s5`7Wi6G?wyEFdulU{dO<Thtxf3K78f6q
zkn!dHL?|{9rtwIvyPBRl^QjBC#`+EL#laiu3WWW&^2`<e>BY%6XRAP7oNS7z9e{OU
zX-9?*ntoRjXM<AM{uDO-Y-9o(MfT4zeTAKHK-Kz!)(-7oX7X-`qb;EBYvT6Ur@IaJ
zUOU6pw-J*ytm-ZABkFgK)(MYmHU*M|G2@sok>;)5l-sKgP!(Q@j&aPxp3%~&cJQ2q
zL@r3u?Id99NPL6Mi_Yk&w#+iyY2X>SDPc#EiUs2cM~Fr~y`g@BgB-E25iuJMEk7Ai
z&FSUtq5E&P0V>iq11lr)^u<2ae`Qb8Q5@HSyM=91hED7D2GVIeCQIX1r<VHdbhq`L
zRTBZLV%?WfYxVPx47jUy0#@0FZ3^r^i%HjkAN}`bn*sX$?#~<(bWP>u;_{Yy`OcKU
z3cI-tLH(Cg0UPG<_qWTN>*$7wWE{^;K-fx=U<LvlekC!&o}@SV<hSkHGMzZ3hhba6
z;YNpOhzQ4G!DJqZYGRnm07L1NEE0R}23l)dw;kWj^O1KG3vG>{I|~Dn6*ErsPOk0h
zS9golGGJN^z*Ar0AjoOrw^&FL<@b|AG)ZE@1@ZN1^AQ9OT`*sD-!2L3+4vpU)ayv3
z%{JXSpPG1uHfHKKu&w6-N@qylllQgL<Xgdd-x%C~mbJT^mg{N0ZwBc1YreNm$&N=W
z%?A3tXhQToYliOj=7ymD%V~uTbND;7=rNz-Iq_IfiLGuoF->D+T08FaIwD1?jjCCC
z>TmL560+z5oauGuo-1NDCp*s$UX4aIwqO-C?YD2X_=t27Wjy{*DAa0XkuRRsB*q{l
zKF4=jht(RfEmR$h>WDhWcL--i2UKru<Omd+Qo`kiP6BW<=8fjJDJYc6Uu8?uEKH_(
ziT#X=?&k1)7U!u@+rETWFa1`5tUUW&Tc?Jo(CVdvVx<_+fpwduGG&+cI~`{nl1Qe7
zinDk}i>Z$#21VNi(>m=DV~&G>1Rr933uU#b_S!AU7X~;LI#ZIu80obkG5vMhH!j$%
z;>i-tXg~z=a0F?r00x1yv6c>-Vm9ll=19<df6Q*9`=#7Zdt8Th3#CMTnz^eh{XYlH
zyT0$ipQ=t#$o!S%03d8s5P%W)Bn>(GHz62BW~?h2L`WKfKjBIfy~;T`_HiufO*y4d
zs{7ME&^eI{rtiWXE6gUqix0iT0<PU?IBbS80t)Hwba^oaHdpPVjTx4X4B@K<Ct|^Z
zRc)>3qfxD0a%6f#IsT;mt<NG^00m{)Y==3X8AkTtmvbF86kl)(X?Vr~7NV5+a>d&{
z$NDXbE1+wAwnV3!_Ul^efRiAoS!t_1ZO%5R;?kabtcC!ch>&_URIHS-NP+5|70uc#
z-4mdZJK`m)-ea|m)3Sm+?B%SOr9!w2sk_O%U_!nl@|N-Idoi0MwRl9jLzD<SZ_k-#
zGc!Tm2urBB*0w~p%61-ba}G=Gd>TWY?e%VJ?j1N@*4($MawLE6>crBeky9eur3`rG
z(iM0Bi9mM0EC?T3J}E7Xec`%w)ySg|-;G)1C7hE;UTVL{SWxRKY4l0nE8{XOQ}@ky
za+)6638X~7bbYcnH@%E<!wYdixZdS&gtc#6M}!ZW$u)<ho8h+xx*b-3N)s16VD4t=
z2sXh^3vC64x*ZTXLo>~NI-Si{S_Ja|8W+NUqE)OwbDx#0bvU5<sxq)xB*|TQed{(N
zB^YI^C<`lZw&BgC^i`oX9(yOzk@z5-B~<#%;j*W-$cMBSbb8!6yym+a(hyG~gj;fJ
z&jjRC-YQMMOmt%H4iwo>AqP9Vjf9&vvjVix2E2U7qD#gajjpxJ>R;wNY9sM9@=a-c
zAhKrc%xz^ogeYRs9%OAz1mP_OYX$K<7RDEx&1g_|NuZVqS)^;CK_LSR)u)T8o&YGN
zV%x{2eaC5tTBc&2h)o;@UM7*GAu(I!mZQNkP0&}D1Hf9YC<slgslZ<8^e*qGna??y
zt2G<Pbj1tc2P0Gj^RKdumZ)BTA$2;01SMfF*8?=D^EIfKJq}3&HlM3`vx;EYwoQvP
zpkqFCS6FEj7%xbKyOLRV&1PY=E9*V;DZ+DQEC+0kM3C^f7WX#%;eGv~A?hOZsC{)p
zF4?Cga`vVes<$LQmB=-8b$mH7S=qV(%p68HB$EC0*=~9GS<-mg+F|e&gtnmvDTPm)
zWfgT9?-)y0X+^ZcYIS`u0`~5=EL6v7xjfZ5qLCrSBp4Saf*O3G_(qWzFb8Qa)~p6v
zd&zG(g@j*?0#QX`2j7ax^EMVXl-|pQ3;?7qbRK=0pvm)&a~^e&1JpkEQP=s8y6FJq
z(gTLD_IdB(N&}46sg4}e-TiEHAxg$0(Q7$9Gi~Zt)H5B1D2PN5e{=&E!X18-+C|n&
z9Wav!$72@V5H8jT;3>L>n%zRJE}`^JgO|grX-Thj16fEXcQNC#qZg>)T&MxC>WN~_
zp)=$hgyRjs9I+Y7M#wrG3E)uY9;+lhToI;|4bJ-<4?<RIoU+w29lhjcUd<e>#(u1g
z4Ttm$JMgUnXXRiyH-`+=y<6%N=a{>*yLObP^`W<OXw2g3+V!x+ip9%KsiJym>Z*&r
zksPh0k5-4;E;rW8|BxleoO7%uJeAX-zOqvX;2VjKJ@nbI>{P*;q&Xl{#5b2UYDCJb
zKkWS`l9WHx)$7@c(vv4_1=(>ozi-J=+$h=~Sy3(LZN1(?)Tsw2hholds89HV5+A)O
zwy3QoK)R^%Ix<uX;l9NvV$oi8Vr@={I>2`_h=zFnfb1VYXANs7N6re;;%t52l5(n$
zm`F}=m^=E@jM>z>)zpW%Sonkv$q+^Y*0QH?!_Y2txtEeXZ8e%~h}0#C1M1;bC9P%`
z`_5$8pH*V>%r$h=X%okaQLs@3;-0wiN?F`EgVMC-n&oe7+CsdE58G_mcpA(mHFQTX
zTUSyogqZLO+5M@m4TQN@4@QV1IwL~rpkyPxVi#$DJ&V%lpLJXsojXBK$lVaVvo&CL
z(J_>|3`rz+(L`cNW=Sw1au<E1TqZa;$KHZQq~-=(Q>fg%a#^iA#uA2QUr+{hfI6*g
zYr@v<b<K2e#VWhI>@VuJHTiZPww~LPRe@^e;HbPWX`aD(<7q7xz1+YQPJ<t}I)|Hj
z*~BCs<o}!9Db|VWdu6LJ>GWHo?sIkDOoMXpdac9Wez?l1_`KLz?-&VkCkc;maIuME
zKlKNr`EJr{FY_8k)ydcU8^XCVx9kOy*CW&kZ~<<66w8`vdraqj)AQ6<EXXG`nl4eU
zgB~%48%eEWdR`%wPF>3fl{)A7Xmn0n&Uo{~yGojzp3T3Tycf?#qp%0-dMCc=)Al>g
zZ&RKp9rM}Lw0lsqO9^W4xz!^LO0UM>&Ad7o^`BU)G41<H5o0U&^t(!F%Nukw=yF#R
z)0*~OEjw-dU(t}Tr1tj0)_s4be`R5(Busl95LbMGQiB{$gM`GKMp7RMclH9BjnhNn
zOks3;?iAa3WA?w@9qJ??@?r8uqqaHL90R=0oLMk-{UG@gbFv3jMwO`^Ga>b_jq&Mk
zj9oWhdo6ga7R0;0Br$uCyh^cKn>{I{3+7)E>@T~=TSzR$gX9iiwl-$~N^h=^nYduW
z>Z=FIo+65C^NGxa0o9vXv1#xLQ~4lSB^e87G}lKeIt2??2(QMew2V?eE}2rj$5`Tt
zNkj3oRchj7s|AeEG@*gqqdBW5>pGVUshl0d#g_D*PMYhiA8;fRZ-KBtW1d9bVyQF8
zC`q1kBG7vfW2RG#zI`nOj(m>WyqU5hb?w%#k(AaXB1P+$&5-G=L;P{cCR}k+yr^+y
zmvZSC!GA&{6w)Y>L_7uVr-PAC<ld$x)`jhy0cA6AMSj$#hU|^BwQsk=kuvaRmT2?u
zTT6&BYPZ6V66|JnfR(pu^3Y9*hnDFJPEvc;JYhoWN86i89eQmxc<uW1ZJ5|xlkNrw
z)W<T7{zz-5FA=#@OGs4CbhH{%H-JUG&HRuVZ1RrgNm4jdA*r_!ab2hTI)l4petsKW
z*gzOuwOe3L!0K7;F#Z0paB{h5x~>{)wjPIZ5Fn;a$a*UM1mY_`5`se;{=>-)CAY|9
zVMxHVq<6&MEZ<kgt&Q=&v8mb}t(d&B=6tmyQ63B9fWU=N9cg9kSR5^px1fQKeq+<!
zLfK2GhKV6o;Wsu#w=@XUrpd#RN7OcD1FYUWRzq|;LlNlpgdoV4Aa@Z?&&b&f9gNU|
zC0wL!)qu8bF7U0;dw^csi=$7Iww;CRle(=079t7BB@4*0J;U0lEFI@IIBK&dL|S7>
zU-rP#lyUepvDHvdkIoTiLGx05wIFKXAyaueG6yfMFzkYb1Nl--I`i}+U+t+w8tH!X
zpIG#Ki?q2gY{DL}Oi>%6U(^Pad5O{)hQbIk)hY`>=@ZpI@u_U?p+xd7;$)_G!3!y4
zak#(lGfxchtr+4E|IVVJ$HM*7qx1a$OCsd{2SNCog!*Kk`kxgD@i`G>xR7D+DF5WM
zLTXR_+zavDo<U@Y6dyHfu;-Cj3WRMq<%|UZyVY#MNYH2=5acZ|$DSm77d;LiqbG`h
zbOJJt9xu#8m=I5g=)|0AAsTr>;uE#e3e}g-7PU*Z-q(IqvQ^4L+D9a>4@NhYtT35q
zs&P?Lck;``nriSlit;H|ovO&BS*>r~HuZl`x@9xZroC#>I`N$!)lL0G*t9w4lhYMF
zM3uBH8O9$>QWdKv&$XWlo%$q_R5m-wfWu5@zu!x<?f8rc6fub+LVQps9#^{fxTcFb
zb-Y_(!Y{<vYAD5QYrIIiT7?TVQnEpO2b5mx&YZD%&`<i_K$AA{Ghg9EE;<XL4M?<<
z7}^@vq2|yqje^bDm@z1W+a*#=e*((61H>M&fcIE$q6;gYy!mwc%Tt^Ap*04kD34t_
zpu%`_{j`%pALRfa>NlpdYmM$nakxltZdFIyMOycU_n6$QB`D=;854cyfuJh>AiSSW
zf9VvZVplY2K%V*+8GuTAXO0(VVxMhLy&#adghU=OM%l43C@EBiCy}qktrz8L*|yB=
z2)@dfLDTPErI|RM;RyFr(z;Er<mI+a=Xe_%4ZM<eE*^Ps62KxRSsG&;Ea9vR2TEaB
z+~7%@=k9b?`CgCSoJf%adQ0U3vfQYR02Nv_CCau%hUY`0u>PXeERqW<(2SD6PpfdG
z?kF2i+zJ0-_jMxSWd@@T6RB|$<&2TbGkqznFV7ze-*x)`CF(;+Iq_zXxkw_9FXNI)
z(mowe(q?Tlvf<0xYDS!fm@nUwT4S|wB4*7&3s?%Hx#Fi9CG!EgCe0RV4iL>b5@9I8
z1(T812DxcI;9D^cuiuj8X`}75-n_UnJG$}tTZNs{`z7W;xe0^++Y<inffWfSB86IH
zQ2}h8EsYiuY%;Gnjs%r&$<nbs-XKe02acrfO_7Y=mG{Ojx^**yB=9n_r91R1@B|y<
zxihsF?mT>3Ar*4|bt5z1q!WofRL@QL3HNjqd^}f8^4)hYtB!?@{X3_t-j91#bN-Zf
z+5(p}o*n({t*ue!2X5Q{-q>n2-FXTl+M>lP!(MYWpy865$H_YWt{P>p5!2AyeOuM9
zoqiMS`<#f{qx2R`7gEND`};5wL;e5a#yfodY&2>l!uHyJPOvo7kVJmWXe4Wbq**1)
z_C}a(0<qAM2RGT#Wt%r!eW2~8TP)C&C6R9{QQ3Qk*uVl+iX$KX0k=2xjaZu&*GZ@W
zV(__A+Zl&CU6XbITh@cUSz(-chv@PC4d(kiiT1TLiv8<kN_a#h5kt!M4NZnG`>;oQ
z+&1|Yh>w)ZkLR7rL)FezbGNpS_0?$bM>9^y?==yjZDUg$h7Sf-QDN$9yvW?+ZNKlN
zFafKbM&_8zSnuR6)^14H0l{ILc5arscr4Q3EjWq6x2~^-jqCNxa1FEl4vriAqd0aB
zHRc>=Cfp8{BrLCoMULBEatnY(G`p??0=6fXLX!NQBK?>~^OE|~&m-oOy?|grDzD;X
z8c?tDm@{_0=aD!)Lix42YMoI5hm$yl)FILq^PQ^ws^(4YV%DK;zR;qnPJ;fMmIw;l
zK#xU&`o;6>G_PwVO?mGrs8(91C!&%!TYs0!1nnq!=FXFw2=EDY1JNU>)~TasK|&%q
zrSfySXw{MSL1aD$l(x$jyDsY^b~MZf*#vAZcGcE9Vlpc(skZTI%<EW!o|p$i`^8@r
z!B5?+YFlSorg(_&{!<4)I1aD-6<w?i33rEspPTdC!a445Y+A5G>n2xi1h|Rjs15zL
zbk7*~$R%U)G_tYL<-o>TX{<X(=*xl2Bo~+sy(26T&sR}tr8`GQ8mDMVq4(iIxouB2
zxM?lWmkT^^Bk~u8mw<2+xbg{!<IE9y7K|yGEf15HhAEOq;spr_$HB$N@%tOX7m5M>
zgnKkRaO`C!Cc!&1K(#Z%_J%G#j_U>2`pRR%JrYR;hDM4)LDI|+IZ%WP2zQh=tL-?z
zG<+=5B=hEq`7R>E`4Gi79uo9-g8qV@z;Q3fxA5R8`gio?0R8{b7Z+E)JS}qW8X~8T
zsZjsrm&8+)c1lQ6x6=G0q2Bd5^J}*XeXYH19s@cTGF^)4zbiVB<qWc{K{JA7!pW}I
z?s!TADwiOlCj2iV9uWe(UI(M}2E5QAE;b8~{TLP!Q8peNc3yd*Za{Gj@9m7b&A+aL
z?;fkwV*(n+=a<uq33{SWPXlxs%@{YOiZ67+GPTZ5B#wN{{inLDHk)NmkYUZfEXQBy
z!qKpWiD`W2`11HcakEk!0akzu<|``)<g@VPXBt6~XCR}?uqcgYjKGedl^&dP93=tf
z<?J;1%RXrwC<K6FA(%&DrO+oOI{fpfDI`CghnMcmGu@5?tR>T&ai%#K)5~RQ+${#&
z>0`!fQX0Lb4Dm8GEolUcW`U{QRceUu&g)WXY{)}wIn|O>W@T0Zr&8b>U>HJeNhMq<
zIEv{cToqC;K5U=KO&Ms`<M8<6!~L<hg}Lr^EH}pu(~3xJHbB?J&K1>LtDE>L7cx<7
zs=b)Gcr<1E+91GLTCuv2y-N%cogos&a=BXw8a%p~ASw_Gsgw<oZ3FecuY*7R_`Bb~
z>x0q0TFD?5dH>z}tCPu4-pP&jF&d3VuU@=>|BgnZ(tn@58jW83>EOjrFMoRR^2JX-
zJ^Rz>;Q8}|SARmIjbc&rmk5dZpGIr<RVMB``MX-+=o&3q0u$RrU%-(z*f0O*fBkQ5
z*}`3H9i1Dh{oqA_rLu0(AAg|Xc!9Ybe$=Ik(ATg3zri1W>?wUP{0J7rP?_*HIs|?F
zIvD&HOHl6kFPbZ5otm~oXip;j?QtPS-$atk;D80oVvxPwISwh?9}Wh8)1my>gG|9n
zCuu^AtMhPB#?m-<hkD0fz*EP$z+nzJh98Sm!I@T&znZfkAbf}}z!i+J0M_yW_Cp#`
zA@v1z%W0ly<1lycAcw431&4#dCo=tTiUOuLVuvWD`Hw$REO!2jB|OC?bt6`2TQDKf
z*RT1e!%G6_4&SNOpxhwg!3CBJ;Kpf$u<uia#cpAUN{r+zkt9FfWeQvbTpx_~prHeM
z4N&3U1$F&(tg+tjj<)s3nuK3DIcWKC_76WA!dj}JUX>+Ht$%u8DcsDXSj`$bLyV^&
z%>mg^24bR5ZtFV3w_-9m8xt;%F5jWAUxAl@{DDXyi21300g0N$UC@T_3f%nqb^no*
zdAgr&bYgVIu>Ug-aOA0p@e4I~dW^IAu|OyP&(+E0yQ4F7dZDM;;Q*m8*U6N4GC*@8
zk+|_}y3##zC(+(sc5qroTR;8!740#k?8h&IqX^Q5BdVsVxe=o#^M}i`0s3Oju_q^&
zA5X_8pDi+<PcLdX@}*v$@}hOc5D^kj11c5>B03|Y)BZ}PP_YGTGkh$`U*H}ij+BB*
z+0cpPm~pu`WBgW)g<<f%&GY(t^m=rd69)5qXuca3lEi-f`o)Z|-o<9;L)I+BH<$*n
zVaM`NvvGqmE%Fk4@a(7IXgC@k94Z=Wheda<cJ)uve!%-oqq*w9TrD}H9*G1&PZ4?o
zH&H6z2Koyf>N-h7I?z+C1CP$(1U&T%n@gW&>C}r9+-{K!E$|KaT0;tVwM@}*tcDz>
zj%0(Fa9BrkfiNsWCqGXVDZ7d!1&sK+a8F5*H+h~eFh)aR6tjSO%K>;E)Q*U9;^#Zo
zm+7p~837Y$N&>U)NQvz|N&ux$bHpwT2ZJw{@6S#?zdJfV`OCjODNNJCX+FxyS}}IP
zsvNWzHBH~&1dEgo|I5xFYHYBNB_6_AmS)r6ACqhGKg^vvd@KG3+^d7@ahOMsfBm|H
z{wKn>*J$q-^mzX<di)2{p8J1$^6r<X=<DOBUj|?Btw0oqhJJmy&M;t4{{m!p{_T&H
z>aRO!&wQggLjQ5`{_J%8Ur4?C>zBdc(q8}jQe&E!Ykx*y_VKOQ%j%8q;b?igAe_`a
z*Y^T7zBHQe<px>J{XKFm_VThQz6`)C!62k8bx01?>Q}pd8%J=q@-dE{z~-*}&Cp}<
z63Td7Btf8Oi+GBjbo=b<*TJ6SZ*WOMc7p?Si+QA01i0h4AVFxtiN7>~{el))i8fpe
z57~|O1eija=#|nW&xSDlB8CDM&Ecv@Y`qU(Xc68Q8^)7!hG&sGLpK36t3r;OO7)aj
zI>&s9=foV}GCriCQt6jTWW0z^pLT1fqc-}t<3v(UvPNIO4(y4aBDyddUs|#Kvg`P$
zjGFVK0v=xm(|~!`!iKU)D+-?4byy!IXj(JoaezJRhOGiONm9NHn@mBwbip;xqvI2M
zx?U@>wS3A;t%h0#`bA%9wkNBgsqHeG6W}EFSg1=*fWF*Cx9Yu4df>wrPBKvO9^+gm
z*$}ZZI&O$YU>DIL8SYv<#4w~DXM)Y-NhCQw%`j@0>NbvD8o$u#@kV);fqgh!%i+|{
zwoC(9#@PhD7t9|gLbC7-Pe~x^-ydabV1L&BO|jO@nJ+b6e*tDz-{w000=wdN_T%aZ
zq{fS4`j>gYrZ^bJ%rEqvJuY-A85DgEG>6oeIfDS~m>|$QeQmeK%oj+*3YHy&+KkQ|
zvQp&D)neVKr)abe=h5Rbz{lN$xs97?`7sB4Q>VAna#iq&{6;)!!zd=yCm!bct^Mju
zXav0}j_6L_RO=8|`&*GixoL7vB&Xg+nbZb-Q+!I#hwFOj$(`~PvPm9O(KN|2$7)Bg
z_IzrDzOBh+3aM>_HzB^uiV>RZSL0k6(k(Eot;<bwv8ig<eX;b7v#k3)G1uMsrrBIm
zUF^O%Y*P!|7gN*zHqFP{I)dwS(yI7jp%TK{40D6s6klqK8*Gdl#qtN6V@DD0*7%VY
zG}stJ3MCIV$BzQot+B%vG1wS4a%B!S$BP`$t#QJXDcBez%7qLz$Bi=NO|!&NnqXsG
z$rmr!97pm{H_eSwIf9LG!db9jb1ZR!-!yMrB?vagAV-mc&9TP;eACP+R~=ZFF{y=~
z8du6X9ka-|(AT%+T6@^E^=2=7o<OMkCXF}S!+bkiiDvMdX4AatCMlG!-wLyIo%`)@
zO2gj1G;NndcF(aL9$DyH-+6AFN!}(sA}*j?^m%NBA+gCEw|TBqAa9yAKIO!dTjdU%
z>uy-v<X~=^BRSCPa6_SyhPYI2+d9vMtDilsKdSG<t}4V$8$s#C+g088bvJU?BfJjk
zrpRx+f7_K6-#P~Q$KSX6E5`qS_Q{M!RNwcMaj=;_TH^m-JbzJ+|9?4p_3}sj|9$-Z
z@yGtZqcQVIE|)(}Bnz>m9-Nw^<M-&@`zv&Ee0nuR|Gp2ZbN}BVfGREBW}@=bypYo+
z@*rk_Z~=k9i%cm_F=WuwSC-K%z;iJiTrCJEGsej-nh^=1ZMxt<0C`L}TH-L!Aw4!E
z5n`~ASg<7Up>r0IEWO2?NPBwu@2dBha5PIIts94fUl>Q`=9j*&bbT-a*RZX?r#rT{
z4HQZ?q$mgZGT*?kW)Hz6A`sC&w1L7nu;1;Vy{}(qoIxI1WE}-o8}B(_<k5oGke_=R
zuxUVN#9Mj+(Io^q^034Ko98Ygq;L2#mMn|poz7;6+(5Y$d!mBMu~Ir8hRqLR17x$}
zJyh{uVoA`=l;`rM;g~kjBMP+4=bX%y+~JrC8|U5BoZQ7s5WmWi0&V>;QbYtqh)Dx#
z4P4(0w+no=aoa2K*JE(gqQs(s3-!YRg0S&J^m;TpP(O4Q%R@uKKqFoM8K5^PlT!Hp
znFDN|)WXNl9UoVSuSX}(@IfCQoiTQu#F|mM+rz=0bF>G0m603l6~=Cm$3lUr5HJ9?
zsaKl6ji_c~cyw`UB-30R!f`B$Vxucq_>KBRUu92$>7PvvO!Wr+x&6`DfCbc}wt@N4
z+F%)TB8bejvQL_tLiWxX<6+vg@T93}dL}c~SO0bM%G1WdNqj0b2dyT`9yF^Q$e<#K
zmvAbVN`;U+LqN^D{@@C9HGk5)0IAtVqfBPfCr!<KDrDM1{b*#Q7U{BxHx3_oC~bxX
z7&>^;x9KsFm<A3A`@VkD&YL_E`bh^Q3QhA!6d-g#!VK+YP7~yZJg*_z3=NhBUK>>4
zQ73Bhjf>>uVRWHKhmz;<&`&y`QD~aSq5z=_5;`wV9tr)V0}_R%c_a!Dx`|gV6y9)C
zJ?SzaX^_2cmqfi96-F>^+XZJmhm6OnIz7$B*3PrE2&g()i}1QJRfo4#F*I+wqv!<X
z5dQv1>f&{I<n)scNG0){W4|CZ=23^n%BIM)a2$6b{{k{b<>}Qqq&hcsa7;t!#3{|&
z%L*>$MQ4;;fby8R;B`STpGM2FHGR;vVIGnE^DYR0RhSMc{A#quun^Z|sqHZR?-nCS
zE;5lx<f73k(08}r9*oYkr+ZR!I1A98_X1_Z|MKSuIbbil0fR#PAOV=;ARxhqSOEnP
zuX}=kC{G-WVY@HK*jtbZ{hgfu4A4faK|43sA<N)ij`{+;ViE@_7~rCTb<iJ}jT&~-
zx-z`AsnsXhKPR&p;lI#;{Ec9rGZy}W)#go8J3QzmXpRd7xl<YqvLkl2vtSKiA8XED
zSAjKl9$Kyf>C|<iwF;o)y2HX=z}}3HF$r08K{#c4c0W6K)m5n8jNcLxpX0myDtj>M
z-rTf1G5Pe=_mCa07bi}NcM<xisOs=mVw+dcz!k|`TbHj6>!?~8SAG6!6m~<z#B2Rr
z3~>e+FFGzIWe|oKgGWbMDFe~5v}@s^lMRE&_d{Y_j@euV$fQsue+2+1zf8(C;oG_4
z1uXGxaXn+J+zK=|H7|cpc;nnNUTb^X(>PU&KH@!b;~fqVaz90BvbsZ){LG7!L-glS
zXnyL{frsee_2`@qlp&P@%>BCt%<~GAX9|ir5wML*KWkvUs=#`wV4?K5Vo&G`V!9QC
zEEFLeJR4QWdOgxWYC1irZy~$|3GtrU#Oy)f@G9tA05qbqq5aEpd(FwRmp|oc-HW;b
zub}q|;Dg)QwspClSCasQije!ZE_=Is!+EaZ<h@X<!N~j7Ed<xI&V2t#V^;Ccuf{5S
zvSVA9e|LuVN~0wi3q(W1gNm4*(}6u%w4IiJcZKyr;qV)qrbCtgcV7`&Yu;r#M|WQS
z-5D8BCgwELHZJ|VSHkRps_ne|yKbnS)yeT%*uargD!OniwJKK%p!!YmrWH6$0!fXf
zZ;}ma<6+pi?uXt<F1MAo(_eQq)U#ScA4>IoU<cZ0NaFeYDDkPhfRik>@wBJPdvHi(
zk_Zi#I1CyM4@yD+bjIci3Y2|PU+(p3r8drXkJ8l6&aNw^d|=0Rh3DE?F+4bUK5S;2
ziT|(%&nMB%N33^cZx2SFk54B@KcAf(e>UmXCQYzdOrptx&g3|tB$7HAPYK}ri<5Vg
zzn%Va^?7`Ddh+h-^W<cFd2-d!&!GQx!71ZZF2?~D0&2IZcFiE}CWVYvX{+ml(VkE4
z_SAm`?tsSlXiT`&sm9K6oC4CpGkYH1n<kMTkUcPVyRnN!f(7IvNai%k0RDgMy?b-p
zxRNM-{=NPbC|0J{&TsUv^Ozae&8;g-w5`~BM3Uv$d$%+Y2}_J9l0#6om1MsAuka!P
z5~L{Gv2%7OTW2Q`@#t<e8jVIj*sqm<{=EG_%|SfWEkbZvVfm~oj~$nCSUj|E1$@BG
z<8cRxeu!?I`!NjTLHYypxczz3Z;Vb$^yg(}hqsnI#>t>@+~_tY!*P=){VFjK&*6TG
zAh}-1gPEU4jf>IgWMF=}Fo&bbso7|mgF@!#V>VXNykJ23|H_X>#GgW_-k@-+@NUdP
z(L(oZ?k?HFla~3pMAy;zknndb`$p%(Npmoo9JkNQkaToDJVR@x_nCRMu{XWSF{#mR
zNfM)ReK9bFq-eJ`4lzO=)DAH+yNz-~<j5`slFc&9cWf(3L>NmN@^fXAxt%m>a#y^f
zF)CJw?BYjemj9^bFdVYA{X~Yl!a*#H%%76u!{+8~7T3BGS*oNlj?XX5?&zpJnwZ^I
zzt`?6<a}u#%b)pA%Kw)+N<N|Q@4q(r|L(s(cweul{D0pb>>vE&|N9(&s4MRPMXS)m
z00LHlfR;CzOYXdiuW!cBb%vsh=EtmK0MPLpK|uCmJOWLq=x`TX<__$8l8Z2(gY>R|
zSLva_;Rn`}%)lEtHvs*WMEs-**s-!R9HP8YKLE(U%zlcC9mYr{!X+2V@8FB?c)$Qg
zEY9LSoa#&e7D>hQRmbMII3tg}vZcjQTV@u7MUb>o5FLm9^4!6ZjD?oCjz{Z5<}GY>
z2^|l72RLw@h?bcYIPx*EG**?al&&#v9YSx0G;k=3g_A|PbE3JwilpDF1*?L$UX2A>
zvs9Di*X63wITwqw#adj!rTe^VL4D}IQw+%Dk68w=@-Qm73OpvyMPAZ=57cwU{thDl
ziUAsh&JuhFp5xibi$Fb@AibSgW?w_ML3K;b#GT$hU#z5-2XGvnrIms_ETExx`WI_L
zw}ia5d4U2lO>M`DfI*g<{BF2(BfsLiD;}xL&Mzj25(DvgQVi0u3xz~bBOP7>ef)H&
zmq#1FD9WjLiYLI_)I?|$5+D=O@ghr~4gz@!9?%As6f;A%%S%ur6GZX^)M)AhQ#du~
z>6E61CYGgu8f$u_zT)Rx32G!~a6UEY@$TP<Ad>{;B~chfm47D$7+Jn&D@~Gcxe?8~
zPd%epq_6L}YnHY;Zp})V!4T2H1Tl@bA*me4!s(hJA#1ad)MBV=T4i{Ix>BU7+&FH8
zLS!f4(bbI=iP~#gkersy0irQ*S!?OSz*QN(Tzv9hiH5<KM+P{TI*E2sdree53(;GO
zyC&*PiWO*4eNS2}p_Vu|bR~D^5T^mk(r+)Glh4X<1Vr1-V=d8ovjQh6T4^#UN_F~U
zRe>tmBNCj@wgK{@a7`;4rD-E*ra=MS6E;X8qH2pNaAdVH#wf)&A83x~^sgE6XHm^Z
zRQ-2G#jU*tAr%%yY$@ZV!j{p6Q=k`U#4<z=*NM}P=K-rA?5F~|_8PRsg<5VCv;K4q
z{Ai9sCCNCEX3!?rq&W%^cwLjXyttrGl<~y<-cT-zwb!7tawDh0y|C4xR09BgDHH{?
z1b9)nO4$JP(<g=i{dZ$&6&M0)uUQ?lG<4chXiotR9gv*OR(!L6+<?qmq)Pq951w?$
zbU4!bsVBIdhSHFl)v<iff>GWuan%y#*Y9z;F~XI58%zoLdug(Scu{IYk%mvVpXj_g
zquHZ(l*X)90KtYuWQ~e9SK;!p0kmt_Az!vz$J*;10F)(M1L}81)HFnw1%jD#i##B;
zNE87AvXo@taEH=JRk-4Q2G}L4(GrC-1a_HHD}ObHy^dLJHu{aD_IZ1BW$f+kXwwbI
zon#d-C0=92O3@u8JTkhWawg=daeTH3=}ymJWnOvwxQw`Ftsept-&<t><A$qT(DKb#
zo{jEP9cAuF_{+$<Qc&+%va`mGKC53bZuEf&!KLaG<uP*4lFNpX4^xO83#>2-F@O=E
z)w#}AQxtkALUH*?5V+7oz(u#njmwZt<7#D9up_QD200H60!(ToQ7MVn+7ZG5uL2sG
zKtbNwg&41vw3skq`u*y`?-ZZ?>cJm-^lxI|{kptC2qsXJyd&SqXcRay(oV8}su}*i
zg#k+$Yp7C+mVB!=rDdr$`fctYgsZ0z0|VNemLZz4I-HL0RTsbGs^iyg_opa=`?WE2
z9h+7oZHVT~cgNTRyAR#D1Zw^=%Kd$$g*Eo}_B1-1q^T5WcCz#>Hh9Kt$9RY)vT!gj
zESJ4r(pIFAmfS+V(gw6?gZxdZcA-Hg4J1>VP0uD5YdQ<#4E>lfgsOaw(TYOCqBaP9
zKLX7LuuvE|Hx9Yhfe^VgsSOLsU&4S$CbGtOC#e}Fiu)rwD^@9VRSS|q<3W-QE>R@a
zhSj+f?NTeNtgCKK3s*Ejz1QrgFvdy#9)Rv69&#$5Oxlyfw*m$~Cf$>cn$4zgfFB?a
z&z+mtB9Zsmf=x1dV-@*k0+!6yX|~VB{scu-c8K!j<nNo7J@33!mdq2b5sD6!?EM^G
zsO|}ADx<TJEu`J;+@vH-{&G}RiJ|l=@+#9k&=l&f*s`SJOF2>iTb8JkD?`NuVY2v+
zUlV01E7-COuuJ*<1{l9!_JdLeaxb~_mXU8A6w(YumcLy3wCa;65k-WGjRMzSFKO}}
zmOv^%7U2`%hc*hiX^;8<f}O|*K}fw{fq#p_yU>aFn`>NFlMP)3gvQYE0Cpl&iN{Pe
z13N@v4<N=gqaQCN$a8N1hyi4@f{ddr=(^;rbs|*NCzMLC>5H0K^3v=|C($0*tqO2h
z%k()0zjk1_KvCa?7OGAiTKc<fBaiGO6sopAx$_*k%c{#~&uc_IxoGh%2~?$VYMo21
ztX%P{<nr#s>sw-ZrSbFDct_V5{K$pQ*@$_oEj8bZwGw)HSuJZ!5*f)tvAqbYBkl)O
zJ%X5e83UuX*soVu2l{$!>@gjC4iDbF$E)RDc6jCvR&sbzQ!j69^<^X_kV^4gevggJ
z$K2**aYEznksX(m6D8+pojL6)X82z$o+`L+nd*s7X!C|=i)^8+TMCJI{VBi4<vdfR
z^whJJAzI=P*dB4m0}y<{z6V%&*;17Fh%>rHNkmA`O>Il#r)=Pduda4~{>UYki$Ffb
zI+v!ymWwUHS!%`e@yc2DY=>gqkzeu<)nsp=<BE$a<Mdiuq9<1aBD&eU{Cd5cX1={0
zh`}9lT_W#AAcb7bl=sW2yP0Ft*@kg)b#*<#O4S&Zmw^(@p!I)?%Y!m}<3h}-RL2&j
zGMLgV#x}sta^*(QL;ec8Yf-pYTLLt%dZ?~U=r*-Mjm#Bw6CF2|Y1PQCBI=3qr%y>Z
zKIW#1t7=u%2T-c$YCcEI-rxtxo^qCfi-=}}Y_P&a0c)ZAyqmX;?i(u}@g#2CQu*96
zmr&P+f%4{(cOl<kK_SS{=gj@shQf71of(B7=AuT*j>7D*v_ifx#2WOU2FqGs-%Fa2
zNzS>C2sPesu)QdsBY%Os{Lj8)7j%9ILAk}&`4zmnh18QHL4Y<PD@Q-Ef4#Cu8))16
zoFG+3mhaqlO#dNh6Av(p)YkhVmpj{B^g$zVInzb!01=5CB7l*LENTJmkrnhkM8Ap*
zzryM$W<nxKeDb$S`mZ!hYzyW{8RHtfRmRFC7>EqR(}VoOK~Ka%`qgB19%YQg*_1Js
zSgrW#7x{p>tpR9R2vfm%wqF+<l*cVdwt32Y!R+$D@n#_z&2k~e%)*tNV_6>I&1vvr
zat3P6le}q_jZ7LWVxxc6@oUQWL!!UxdwvIht^5dqjY2aYBXXk-kfo8C0kYZ>N^z{x
zj^->@!P>=Wd5glPzYNG3WBi{FV843sTcvIQ^>Kg(^|IH2D*rFrF-~gY0vc?@oj%#7
zZ9y4y6*CIyJV&7u!5N=gn8bw73T@ynt9V|s<}i#{t0ws?HJbq%6D)q=xPk8=M1cz}
z1dRXB0LFweC=7zCy8K>@u`-~hrQ_iUdR7X^{Prw+g<YAhbJ0p)mYBV#x`dH6Pb^0p
zU)wdkDhwnYX1t<?9*x3@xSe%y)M(1{u=r^n1y|#ZD&Z7b6@U5#S<xZ46Kfd8yblO(
zr_I`Qoi!FBPuUpa;Za6VFfM7?yG3E>*ob-%tvn07f5V-LhO3(!=N=f9yhrdRGw#B8
zj++&^68^P<E<4&_5KxG#JC}%!PTNOh4gx(<WGzTkPwX$1henDg)pwa%$SU91ad^<~
zbWLf{>JCX;q9+phuvg8hiUcT?B(Lb`<bW(o8$~f>mg!$`$}r7`eJ~l*%PXAZAPXcX
zsIM@};)nI|<~pe;vPe|n9cI>Dw)uCdD`KjAGarz>NyrZi!h3A7U$2M}laq}<S>z0s
zc@K!!AhFRU3s&7L1S<VjmKxFEe=$l8l7C;(FHc<ZpzJz{4mtS&Hm?_zl;@6xJX~(c
z)Hd;8`o?*!T{a<mF-oF@x8#Vz1=n$~wDg65Z(P1U0Szk`{y3~KcD(z`_NqkX&#s#7
zWvwVF<q7c=A}1^|osFhE@G>3J2>n%r-o2?%=kU+~yRuhE;b;UlT4&4lmyo4yP&ANy
z5HuQ@3Y6$tu?c#+TSFxGuR=GN!_*N!_i^Ms1;9mX>@QI?M=K1l6~aK6=70!armsN@
zDN<E$P7C63hIAPDQpH?dCTs!7;URhQFheZ)5I^j4cerG|6rU?~un+OMQvD?kVvw<{
zfG_@Zk`QsRU&o1pM6&~hj)f-yjOK@+#{a22R2ypEIU_p=O{9hn!90or(l>JPgpu)(
z`=`<J0BC|2PB6Jep>wl7q(+h*0Hz3rD4fu1;pE0~(ILnt0Z`b2&&{P~jrNqEy)!UL
zh9&lm>`9A*$P)-vKm@}XO7aP9LjX2FhQ1YiYgNgwbbaL$9|w@OsN!3TUOCle{rm63
zw{PFbZsRdt>Ci?+8Ifk+WsYULO6){_#EkmtB@MJ!6|VQ{^no8n%G@#!^S<$3?UTk&
z2oV`hCH$+Wp*s0h9bI7@@`qil4&z_}DQh;{Vwq`y6k5Q+)NRJ+5Kbe?<4yin`?H9s
z0;0qcs{cPpK*<~Y_%B<mNakCgZ$kN737S+iA<}f35ArpIY@=T=*(<-K`seMe^wR6*
zp&)+%#@n}Vj3RHur<QL#q<w>oQy}>9B5ngvWXSIz@`o%&@*&Ii>Iv735k!3srT-u*
z*r6<iDOB_mE2t%X>c`TxoZ!q#MP}2$nQN6KExCQ89Z^g8Un}Ppx`<t{?&i!_X2(dR
zVwK$)W2tKU2#em_omE&H$V4H!K_T)iWQ*_##{+OD?hZrlDd^lHHYEyC?QV{k>vP=B
z!OUUDrVQ{ay}yx*6m7qgZps9@4PaCSqq&2@5<!npf&2cjGKl_-Vv>NKy`wct5EyOe
zh9VLH8wH4Zi<7I32t?4sx<fNnkTZdMa;M1-{4jCRrjTqpl&X5Ole9p|jUv_S5hkb-
zY$Wy$cXOAF^E^|B+z^GE5fws1kMOQyBhr|OHc^Cw;Za}5{O`g_5)&`~u@#f!#Jo6f
z5C(vjg#to{TL%JbY44aGtrUy_TDh=l`O5%$Ys$v-2egC^by|om*32xo6Y^jIOZbwC
z4_f-su~-BBC7OI^ura$V2QxN{a=@sNi9s<Gn4L6`^cY>aP{!L(rxbn3O_pG)8=sNj
zA)~XNX+wyFn}nBP2nY-#@9N7I^^}z?jeKCE2!%^RWWvjhejBvt0gzn-7&z>cmijA<
z;={xy!%&m8<5%g^n|LCq7{I8e*qNO_l{AW^Z*1<~aC<*NM0VW+TGjkl0@ezn5Zpm8
z!XWZ@=$nG;3LkF5y8QXVzX7WNM<IgC9oiccx#juMj(9vvWuij&G^wPdXzk8Wl=k4@
zLnR7;jqc;V!aTJn1@-7#QX^K%j-lF?l*Y-CoJf#EB0lt^4^ZIK8T6lNX4dLn;d4cH
zxFQcM=!7$x)u5ULX=Xw?DAcuIB*|9PyO_ct;|HG}Q+83_0+g?-5b;GOlU8})&w67+
z`qva#rKhExletRcu9X7%MeL?x6a+vvx;IJ>B69lf<nciv)i=^Gf-@inPYC!;3W`wZ
zMVfz4Kh!jWK)hhaL*<GW0EB>vD=XWyNDSvdmd;MdpBzU!8{HrC-Xh6moa=(qt>swC
zMdOvgM>Jsm7|9M}F@s8X<3^rDiW;op@U~{7``R6v>XuT9d|B+*X?A#qPmVgX*smv9
zoE5k6GV(ApLa|VkoAb=diGb8BnjTcOX9;PUfl?zfGi`+2EDhFUq-W)+#Aoh;q%Y^2
zw(}Mc$s1enTscu1w`TIRz<%&RiCT&rW#XJPgQOUbwxigT2>H))S|Q66uS_`-6Zu&{
zV8zC<*sn`_pp?tB5IX7X+=ar&w}Nb<?*|E?jfumHL{b`z?L|}Z2qi_7mKqvSm0h6+
zK={*0s}d{sg9O8tGjC*l8%A*H-=Z*==jqi$w0h75gsLFQ2%FhEJ>!PUh^|XX4pzJ6
zoU&@8GS`#5p<nEhlD`Vib5#*jm%OmV&40|br4%(bTwe0V&|G0etKy4H4yTnrX1BY~
z#3UBC8ZCi~4%rQ)lH?3~G!xa;3WW`8I%F*$EO4@;Y!*7YnM(*BUAL0LC)+hg0A(AN
z6+(Gayr>|`U!5ltM!QA4&);y_{IPu4+olt{aQ_g&REjz!gj3!)S>{x?=VmFD!;U{l
zQmKUhfzm1oVYwUvS~rBgQpMped7)hJ4%60ov0Ne=9Nysujj1?8>$a`?%zPB%Myl^_
zsh}<mY^m}nY5Tb}y<FC%yD7^{$@$4j9wQrtFhVxV!634DebeM#p$osl*)CalrE)kA
z3xAUqoQwrJ!#49Z;ddd>ZYkkTx$94QcZTgtCz^|ER7*?i7(L#M%=n~`!z4`vBh5o_
z5H*G}tF%kAzUnwTT@*;)f>$20_x7G)H5G8S+0AKOnwh;#X(6+%7RzEB3rWDCemEIe
z7B(cFM|l7rMiKCDSWRF~l49QA15{beC+(M&bd(yJd_s9!KTa#Om)|YBo1|W1ZWh6&
z?k0i{qJ9>n@vmUIia=JDI2b?|`*PDbn%J8AK1RUzP&I27D}!=o7d<<|&;v=`1t0*4
zu@)6R%Ay=&Ob)eN3^ZG&4B{fMN|J19Z;#5D=cDhQ8f$yxM{}JFAtd0D3?SyDM6keH
z=(up|@-^^9I4-5S>)++kd*g<VA4f!i*y1M=s`_NAU2bopgq~)Y4Yw$5pUt<ZoNi@q
zQQEG$Ta>n8sasUR6fbv+DqNjsG3kiuw|P8Ky8Iy1PFc!qx<M6;lVwbGZ*I6j<+I|C
zdAe4~{u~#m6W^b?2weK%!u6pfF8NWsDRUze+_O99MoFlfrVO2>ddFuGlO%III61}x
z(20NRv(q)?Cvy>UjvYknKz}XUjGSW!G?eLKYT_}^5wzV>(WA}tx4>4U`Jo8MFqcvw
zmGzeoc@JsZ#^g+?PIA73G`jg%viwFaoY5Eu#|~Ix4F?07=GL3V$2rlzk}7|o{L1O|
z%bY!R_WKYV`76%`BEXyn6M~VyKpxnI3rLpZ3(W_jZ?u;<6#u%z%Ca~#@wW#~F5Aa4
z2}IO(+wPN}llX!>h7Q=&!v>w{aSJSEXy0NV7zvP)()_SHBunsPJIJ$8;^I7|^v_1k
z68bwBIMn|I*^Fb#Y=5|VsAwZt!_@<?%3|}UnS^1&S5oYW`+#v2-}<aZ2eLs!kf;3C
zPota17-?QAxB2Pl1$$qL(dV}&h&hj^r5V3P#S1Fq`Xt+5p~Mzv&=!Ua21xe4p0+!%
zc8$Oh7DqXZCrxSxA3==XzcmVn*#ibm`K)FRW~-o`cDced{nwNZ4v=U0c2OGrhZ`i>
zwDf{H<X6v)w9(o{b8?$M43u7|0Vd}XtgP#XyRQb@q{oAh(C{QbbhxR}^CP+?MDZow
zsL^kOGqf&dR=)2`ED4{poyuvaCKkx$ZyD)KzIlCG`l2k}>Hv>1T5fBn)V@1B)I?L*
z_Xk*Ap6GP}Z{Efk?B(FDhppEb2eeYn7Atnky6D$TV^!zvMPc~7?-v+_YQ#;dK_6m#
z=Z6o`6>?CJNm)pEP5TEvEGe|7b|<E+;H?e(x1=}i4ATi11^BcHN8$<KJ^LMl(05U(
zml!(t;&;3OI6B@_kdaZ2XsnE&eh3!7W0vf%JUvSbqBQk4h!K?<8k_h7uJnbEBbMv0
z><2uK(0(Z@luc(SV&0R`bdfU9vwsDz=+Kiu=%$&1LFBX0T(xD4Vk^E(;5gWi5&9SL
zhMk&jkAW9k=h;|4B*`T?l8CYlMTLVnJd`bp0Ewr*j0=@-GPkpEda(9aA&4c@YaTkg
zZE8%xNWOQA!YE0UdxKy^4kMN%f3aV$h+huD5(fXt%FO=PA-xu@kfC=k7JUQ{2}baK
z1+Q)?i=?OH>p_!8&@kuQI1Noji%#aH(76#ca2=dd!1K0zatja)OJ9Zw=S|<gwUGtB
z(;5NL@h~tP*F`hvim`1NK||~RTYDXsae{y+Z;ByuXiP8-{=IQrMC1$o2V2G+R-)63
zFmNJPbmtB)r95Hm7c~==ehp?Q;&W@oZ(bs@v;t^cy%~SCPyUFmKY#39UGBR*=V)%f
z=|t1Z<25`O*R7NL`PIS2+4aeB{rY0Ox^DTik6+vOomM02w9Kf}I=<+%8t?i4R-IPk
z?$WVX`*F8^_4#AH=QO;|m&SdsS-&Iy>x@6$by`0AU-Ru<r*#BB-UZ9+%j3HJ`J-!n
z_0QVPqc78wKlZQ9eb+u2ui@o8kHdBbFF(C+pB%rj*835B^C{|HcJ4bZcX{2qh^{W%
z^{aKgel;@d=a(OytAkHbcQkv`Ik`Bv`nsrhz7CwGceI`!4EC?ye0twD@qMQetgk<J
z>(<i!VxPFTQ?K*Bee!O9dUAJWFUM=^z`dP*@n`lIb4B27dfnjq;N9Fl9j~uP{_N__
zwP}yKqsvqG3mkp)hs)ytejU6Sop$a<i$9jusC$eSSNEUxgTKzd4nB4+uE*Ez(dS|P
zqd7VaR@ck<0s4G=+&j6r?X<4%yC;A2yNiK8K0O|Oa<ATukGmf`U&o72Uq8NuuIs{+
z;Ei>8ci%njo{ipIugB)#?D})}_;PHoJLBW~>yz=x_{+FuAMBr6U+1TT`uJ=2q&pff
z-hKS^d5qCXcXV;`hkt!=e{kUrJ`R@kyYXdk(KDm7(N}jkIvuYsPVU!(FYZal3%s-X
z;I?ycu^uhQ9$a3(N2Bqob8#Kn2XF5$FS_pZ!hQ?A`7vDJy8Y$o&G~`**YL!>8=ZXm
zdO1ECUti4MjhBBcuTKZQeKM|JE$73FlaEJZZ#;tTBK+jK-eBQ+!^=PJF5G!=<pm>X
zc5bIlTt}m0^XjX$9<{DNcP~42baCIgJU-eVj*mZGygB}IaXE0VJooO?zI}D|<+wL`
zbMyvYMrWNxfCu$x-f``rb!@)9zBvBaz4+tu(<1uo`g5?leskQ1b$4*l{9}J`d=w2o
zA0PEc^)o}gFmV;3Ov1Q5U9(Ne-Ae34`{a-M^=17jcHp`*tl#y9rFWo<P6w{Fd^ew(
z_rcY{cx4@2u$_13&)TPA7Y#<kee!$z?bX-Wx^wyI-TCFmWw+Icx-IkVb#vdj8XY<3
zquG7u%aL>a#d>o+nlF2w{8{@Xa?!<gFkRZN<sFe-Ugvnf?|fO*yRF7SueG@Ed^PWT
zi{sB1>p!|zpFf7zp9go-ljASfqad)}boZ}6x1;N&yShFYudUOM!PNUCO9>a9eu_Gm
z7x$gf*uDPJi8=>Y>rS&??~FdW=cC!zUaK8-mgat!wz2kmqhq&>lxRAQ*>w5G;`(#v
zeY<IW{dgA~Tz~%f6<+?a>N!UTo#ETN^Dm7v>%jG<OGewCbF@Habl!av^e;Z!U$2jk
zdRGVS{jPccb$l?tz4+X{M3>jYajSbeKE1Aw7lYMce|$SV7~hj!bv2AeR|oG-M_;ao
z-KD*>m(is?8hq-W&fgA}<NeX`^{0zBi-WQE@d}yuy^*;;AQGl~92^Z#$KloTxNE;L
z-(7s3pL7?&$#6OTJRR9zKP~NObTJMt#~%-d-tqPL*jjhot`8U2=EeTt5`DRPXB~Vz
z8h!2_cP{Mucw~P*TSx8D$)aw1^Y!%0cz(68-wzgp)9cH3&cJ*ZS)V_C8ojZH@Xg1z
zJ#tS+$Dj5um)E0i>-gflK0oSw>0V!ZE*@RHd)qlVcFzu?ccYW*+w0HW)!Cclvrk`b
z*FNa>FTc#+BJ+>8)8oO%!JEPAvUUCT;^JLvw0P%SeVGqC%XgorOZQ86Y}b3HYgz~6
z*5HkM-Z97H!Q~%U=k-6nbdTrway$;<o8yyD_4~d(p06%joqKeA-M!xL9)I%2=B0Um
zY`?jBb9OLrhfC{rS`Rw#@(*)-YTjO6bXT3a>!IZz<H139)H$*K=zsD*7<nd^S3)_E
zG$Qd+c?+f(MQ^Q)=lGEPm8v($vo_cz<4lCR)nms+xO##jU<jpRPnvl1ZA~adA;SJD
zv=CTfI77TdE2KqEcs6ZYs9Y$dKk2m_F%B)Ngs^mde<eO~bB#!_o~l;Fo(u-Otu~2}
z7%=edE>BlmUF_E<yzeCN?TMTL^HmJEwt4(j?IggZ>z^c{;w!&9ht!2ui<N+EPk#GO
z4fp}Xxs+(IbMZJS6tdR`2_z+rlNc7Kfl77aU~KHG0<r~yTaKLT4#59fdkxw*!1L3L
z%N|MYAdc^EzXIE*_XojeEX9!k0Q0A)n44>_S^6P*&BMHOEHC!4@<g`fWPs_KPerac
zFn+yTpf!8gb1*>5AX<Z6RGn49pOp$3DehnW-@M2F`S9mn0)=yvrYB9k%{v|HSTw)j
z{Q*d6M(D5Hd|63qV0A(O_>ShO0j*$l2#k8QzP}+QOT)HtTq-cm63_F*K+Ez&O1a3F
zUb%2?s-e^{@s@m*6n;}SdGfQmyE&Hq3|vy00>e<bHn&eKkaVNvPbF-i;-ylve}R!j
zc~8I7vy-Q2B5iyPq++{nH>TDTiSTZ==ih(tWPW5O1#R1JDQ`aZcbfEl14m>N+$io)
z($S)M7)Kro9c%2nt0fwGFu-#^O2m~o)yO?z$sO*_<iR`i=YiNMa$etUhb~M{y!D_~
zu*v}2>|Z<%QZne1fJvq52BMzRHd_Iz4*Qgl=8*H@Fcy<i=hk}XhYMN>s{pe=Our+C
zOKG{ATF=<n0xW&+LUyF57!@Ly+Rh5^D>Qh(WGW^2v8BO7stEQRm^^5@0=9e9$}pbU
zgiNx_AGjtu)_j@;c@zTMPxQp=kd`jxxQdF1?N*{#j6G^8o(hKtO!Z?{qclrBd>x*A
zKRh1vZ6|rqITIf(%|T12JH-u~gO+r~8^rPu-gn{yJ|VXFwNOZH9J18mUShar{~`_E
zCIMPJ*aHCL7lsDCnD%{p7$8dlirWYp{b8ouMTwENTYfp-CslS+`+k*I(NofvQlIiT
zS?Rt#(6d`i@V=!^k=)TUSKk{(eh6pi2wIC(z)JX$#wX)pY7Cujr|bL#MBY?frLg?0
zj@;7sVw%eXl|iKTdgt8t7ps8YV_EiF_GB*Hy)BU(ydaamHkbIVb?zuu#GDqf7er$7
z;|;{uGC9i`7HVw<p!!VkOzOXaR~T8oXG3xvvKdlyCbw-q+fa0nV0M+3d=9*D0(k;D
zxH_F2RKs4n=-DHzl45CD{aEN`lCw+W?d^eGVTIhPpP*uF1>At{2LOYBa7}It31taE
zB$o|P{=u9+c3tG<j=2Zwijgvpe?BnRlDyAi-Sc7JV6e;`Ip1toFLIb8T+H`UQy5Nh
zn+SPnvjo0aIGvIFaeGB$n%4|SH`LL(@7tTl6??s4SdOT&dt@vVDJgb>7L-&M&Km0Q
zAAse17L3xri><P0;5`iws3Uy`Uwp?)T&RjxI)V|pS-As*BSHW4Vk>QKE%sfOG25|3
ziqyNz$BgC4W-DZ*IvdL9-__O5<JFWi*`9nx%ce+CfE$IF99Eu%;_$m1@fo8K6C#C`
zEEXIrk(RWbL!22xTlYd<5(B&v%$vnZnrldw%0(DIWWsdka<g(Ha|%&<YG?pTi*!A2
zB?4XlJ&n!=nV#M)`aw(X8fF|uH_m+@3QyNeEHy1Vr-X45_-c}F#99O}n#;MCm8u0y
zZujY2z^ECi0u42}^m{5^Ixdf^)_$yMD(J34xBrw-D05}2ITgPe$3DKuv%)pi6~F?m
zOL|E2qx1}^iF#xo^<-SBHO(QkT&U@d^ew4h?<j;GcA_)1X3rl_;GfPz&S>0nf91N&
zF$l{~`?c3#%$u<!3LsdyE_WoS?vM~zRLur0-&&wh6uokiH%s=0A#Giq|GrIoGY6%@
zkCbm1`u|IeC#RRmR?rYTVpk4$kwfDX-1pQ*(pag6n1^KiFJA1D7YNtWLVduUt|GZ?
z36BC|O;^0C_=@bTNXmi1s>{O&=;0PIdX^uC$co%G^VI!c-xQ~dEfON9(M_Hv(_b=W
z<#Qn9&s`n3rnUB$L9}MHpe2s|WdN-ROp)u~fjh@_!5n(F%fm_KhvY{ykNk3&K_=0Y
zGM{!SmbCUMvO;4|C*(EbWq<n~qx&7KJm)X@=``E=@4t7_za6R?g02hSyGn>IE4$9v
zjXmOXS7yFHD<G*nx#>7luFD#Rp-=E&Mxa??@MVP~UhA0hf=9p7r6n?U<`XEUh_JoA
z19`d@86%#(UoM`P^Qf+aBVpbk8IxL%G9EiwzORBkjrLAog;Rs2HMi9F%-D(=CB@Is
z;0A4S4`6^@xhXFmB(GJnKDw1UqWf#k>&nD+30I!Q>?5og)(r|nUgwGxh1#K|_zr8e
znG?-d)2ih!Yl&>ESpIUk@|<X0n<IBwp<Qro>iW|f(d26UhonbMOpR+31`Mu7fg4wI
ziCwv*P<l}eCa2CpQqW)4j*@y38>;_<-4M;t{juZOz_|U-dgYJ*`v3ml|Es3{Vr(9$
z*jJy0$_GK{2cbi&j|Gl^fX2ad{V0p1_>y!;X@S(~LItnUZ}YaedI~WxJQUse;llA|
z)y40$_~Grou?KcBTHX>7xeN#c82{%3*st#YQN7PpS&*q*-AhVCD;~t!S<*qHL~kqx
z7Trh4qyMhm?oUw!_YF;`X+g7$cDMn?Z0B5+v5m!2fq+&~y8$>NS_VkaC|E>#MVY!v
zb{xg~Qn%XGy&}>UsI`BJ(fDpSg4P0g_Mcow3sC5;3HL2w6d{{sxQNwW4Hn!rR6A(S
z)kNP|S(sFEOMQ=|kR#XWHZ+eNIMcTxImn*oF#D5_{3nItPtoyDV9|==RA=F1@WUvN
ztW}X2A&#@E8d?QR!hB1tRV?I$lO+cV{4nB&$M)S;%P9)wy)P3};Lbyk{v?z934HQ5
z+V9T|<WuJQQ=(j!b`Rm381V<7oP#lAABHF89f4@VIq`1V4*4QR(zBB4V7=u%Fu9b-
zC5PG2aaKc_*20RF+>%6n)#}{O-UxK<2%<&R4>`vxgqP{=cx)gRrOHQDs$8<N;Z(CB
ztHI+P0gM19Y!Eq1WNf}2)n4zkDA6!g*;fd(TjZiPMF3*#%sh5)gRUEw(}c?@#2DIs
zDEY_kP;Xp%!9gBgg;Ktpv;F#iV7Zs=qvUSrI#$Hf)_QB;)6FHdrM2@s3*nt`<#{wd
zk#QPDQj~z!>rTlqZ7#o!xTIfgv0pc`#NZbT<`PV^%kkQ(g3K62RggXZq^4EMe5vz-
zKKrn{iDEBJGKk9#+B}~f(U&uglXQ2gQ+J#nFt3*`{UCdkN@jeOZI%X#TqL23u!W=_
zjhPiz9pA`wibqqs#Xs`}sjwt<Mob7kfbZH(e>rtLWDg{&7^#WaLjt#|ZNR2r<PZ7y
ztCjBy$4I3tEJ0jxlTi@zkbVN4xn0i~sx%*>D5Bd(ZA-*UhC}FG8o0hULm|McfCw{W
zQ{#<(MzTv0v<)p@Iy5Q$A~?(8);K+3OpaI5PYR95@A))QdgYUYG%JfVZTld6$-TMn
zyN;E&Nu>rU?6Y4KB1oU}X`ve<pCnT2vXqg#Y)2rC5hfAI7nq$vJc8f30qxNDrqEl+
zsp_&anK!B`*&`EMZJI`6%*1qWJ65!p(M>hB=?y0=5XpPV>B)@E5u8=QF?3ukP6x%x
znZ+iPinEe3_KnzPiluDscF@>`qzt&qiIt43xm{!i7U{bPCZbR|4HjVqx#Lq`%nxHi
z6KbSiKGc&$1tgzcRDwC4ldWY|D)BMtSuK(5IBAzjaGZfiZd=JDkIiH?PMVjjrB-h4
z7tUFnC9LM%O(VjdB3Ut=yHt*1+VaPwCN3nv2A)p$&2kZGvH8W7zCUL;@fH1fLY8e3
z!Px|Q_GAw6oE}z;7|PT2|IO=6I`XqUcg*kL#tEr+g*4)!G9u}e9zzT*x>u6(qxKq@
zVMwkF^i?24RA)!`Q3yfcAPZq|hk)&S{}F+eXQPl@EaHnR!|!#i1U)7$@;2Z`S`^Yo
zH%5Y++MRoj&7xw64)!u_<jD^9loO1~@HqR=g_j)bj1tUjb_jm?3+(=a_YA=S^pRax
zUofsF?932%w9BVYi0INMYp803da7hP#pInsek)LjCO}D<r07*leETk491J{%2k+h=
z8fo+ICR$ai)&ENoi`D_!Kr+2~gQD;OBv8p-0s^e;lYhebLqag%^H;}2FJ}*AjAWL-
z415oH)T+yx1%8sD2h!U3>JA7sm#!2?)Agc%QMPg|wHOQpxu2XIC}l{LZ=2bUD&dmf
zKQIo-Hq9E4UhxhpJj`Q-L(W>#iKtT*=LbW8Cf)3kPvXEc*bL%BL{8}4S86G6!`Ktw
z*|HllTWVV2IV4R8t7O0LQ4htB*!OlojutBN{pz&m_!=k)NzUd}j7F=_LpJa|kX21-
z$|~q2D)it~N{OU<%}EZ!jE-K-7GMkK($TMxVn#}XugXa2#)u7=el(Zu-`rl6n9oWn
z_s>SwlMvoO52o)i#l)1U#h-5%X#FdAbt@7k#MEZPS4DkBSq9Q7^z2XkV(M3IbX&81
zt2XoZtNXtnQsNoVvkm&*O|EQ+%tD_7U6*WkR*r_H-Xkjzp>XMVqyd7VyN)NJ?l(b*
zY{w!W?;r+C6#WXYPv}T58gqEdk_0f<3YNs#34wp-B{M;nWdZZn+<^s!IG%(8IrGK)
zEBN1lpivdyW9Ocj)C<S6+ZY&27#M<pY16sn)5;ncsq1H|F>9rH0LeRkVm3=cypyYy
z;4QwEK&&M-L@m&IPXmPd@{so$@gRfzbMB7BH2&}n@+z^@w;YQqF@a+(G-iBYKo^D4
zlBTE%4VHDjLR}#%yi}n949S(i^KDc?_f&5P)lb0+&u1_~cW`Z#*sp0I|JkSizWY>S
zsF&ZO$L;<wy**WbzET_V#tCrlW@OGBB7LP3;3PU_cjIH3?(CPxprhxzNj~YR&)<oB
zfDr<Bb41^*hHbM0Tz@v>c{Fovlk^hqprxrbP0Egd4q8_Eh*k00mG%)xHS$+Bt@!yy
zYq~6Lv}_@^>#0dbAcg1t%B8z8@@WQ6>T}Jlz06z0Cby7WjL+FXO@_*`<E9nFQkbW%
zbi0L}Xrj<fR$VsM#&Oa<=0=_e#1^!LU<vP8I#cX?MS{lMZEzb>4xO+6X5^#@Kbo9L
zzE~RTNh27kF9c0!Jx8DyAa6K#ZlX-F6YjXFwYU2L@-XSeJMlj0Qo8i%KCuQ?7W?&z
zNJp<)Y;y*T4S|{{&Wa`}?$$_BCQBErq1oXwPTJEo9czVA2v(S;e3~P<vI$&8^8^v$
z*uiJghl>`X9aB(WkKIQ1Im8moRR~ZaC7BK6uay%b8zAqN=!f*2zJ;Mf_?c!D;~Bo$
z@woJD#OSg^dUqTv^s#>vffFJTeb<^p$D`-a0NLOaM*o4?x(v^AoD}%*WOOqDVJsk^
zMi=40e9|M$b^u$7LtyM1@wZ;z><)+LljGi?X--JHNvGE`)y65IKo3vb!DOZhT4H&w
zv&L{_b|=ljRe#i*^n2&+=2bG7)Tz*eI$_$W<GS=%q}jc1925c<PLV5|O>CQ~qM~FD
z%l^%()G8^QZ*EYS<L@EA5mfnv?RdUzYLg2oMCY$0u9y{?zpfIpNSsQ7%pv&pO$pH1
zEVdLr6fQpQT8@|y_qdC}c}|*Y*5D#^bDuZ)wLbPtT7|9>a#qx^$Xi}j9%Fwcjrv2j
z!;QN_UNm(g(w$YZkQ3|w$~=GW9E?O{IyGEod!bw8(Fr4wu`fp#6<tN;j3P}`oK113
ziI{IM+eo0QQ%Ca$lD+0oB<WP~cvQot>GkzyORyPQ@b}*UY~VC{W^fDe*?wI*Hk!VN
zeHVegyP7#3V9s(K80cBg7yWoQ)+_Fm_d@jxu2|d)PnGog@nUhmc?*?BY;-;Z77EG6
zCD+z%&>Ni(n<$J5kc(VgA%njhdi~J9*OXYw2ZDAeKq(;KUl^Z<aU<>e)GR5HYXhPW
z!SfN!Ne6gp4lR!@lU_u!@#B$}l0eL76GzZ>*$J=es{A^T6ZC}RhN{O)@;iN+k}@|-
z2Yg-_M*6<9Azs5`<dAesCGrCR4NxCMrIgLr84=QUiO9*1X>}Lse@eZDv=mI{k#BgG
zB_fphK_X0J>8oJUP%(ZMz^{39WG+xjr!;f?>xKU;_Um#$)?&Y&WRb2$f%_D5)a&*7
z`?qiDf9v(S`rrLG@Alsw{A>U1Z|{D4`|j;;za9LmzW?r^{{CN}{uGmM`m@3j4F6Ss
z^jvA={!RX*q)8=Sd^vEE<(!}yHl)lN)FGXvYY;8TKPdm8`zQ`&{Pw8CETyuiC@DQu
zDD<g49+T69iL-=IhjLP-bjFUnWF4HaVI-$%Rv=G8nR)yVzjO3Sr)=sLnm;C<XpaV0
z$j%6Clp#+<kxkR_1T@Ug?4l<l<-OublgSK4G#N7FhD;iRlhqL57+K`MD|Nvt(x`dC
z&h+$=7(PCU^~s!-ZKTQKterG(p9%2eZwcmcMkbjzNHgUJ?S5rkEQNi?)BOE+1>aiA
zLyD3yM`4GAx-wPyPuzX(J1>O{ewUr9<A`YH4y~r6%lFCt7T2qYCpO@07NQy11~722
zA<qKC8Bg=h&^0O*jI33NDuhcuNOOvPmJHSi98Nz&9f4?u7263v)S_ijBXhD>6tWlH
zD$|o|l7fnBM*3k*Efpa@b5v#U>2z>qJ5eQ|B&ggtF8WYIkyT5=qif&3sRP2<tU)?4
zvauJ0s*DC@So##hD#i(mg!E9zCugFW8f+OHv_l2n;R=4E&~MWVONNZ{cma&&8%Cqg
z3VBFS1$jF(XqSRHRr`Mq^sYZ+OOjrKyoa2s)<;_OpsRN7&q!OA?T7ll7EWEk&eyW@
zv)7OEF!1(!DZ1xn|6E}d*I%$3{dR_xDg6VdV*5mx5TKJx1O^P8mM?@1nJ^__b7$ew
zxb}MI649#tAeys+?5<-u)O0T%#)Z>8zbnwxklcvx2PlM*AA<R6N}uU(pyN8;Y=@jA
z%*qcV>c1$3y2+0V=&u!YooLNcwj{STC8sV6^^P)PN0!)otjR0&x4nG1#;Ger+N+fK
zH_{E~K8`-rtMvaeWG)n~F;a5PnqBGUjBhP=V((?uwfy#2O4e0;;KVg?j06NDzX*<z
zo<4Q>Ys&m2$CX5HLRzlrZE^Zk5;c)5g>uFfoi_>FY#1!P(n>+61Vqv?^j#N)u{X|!
zffX7pEmP63Jg3m=t%HDz)#7;%-X0vhm3TD>{m8d`_YjPl{o-!#a=U#~gR00MssT9B
zy2(_{L&Z&n1_}2==hku244K%1OiCQG0_aNH5J9`=x$A-NN3?*|8b@fUYiUX56LmiF
z#}57A5d5dnI6pW3EB@*_x5z^n_d|b*w&pzmA}bjB)&ivv47TD#X*g$z{8hx#h2lf-
zPRpgttLh{(DU9ZapmtlY%@K5?`Byzi8h*~3eqXn;063l#InZq(7p~*BZ|ZeHJ`a^6
zA6Z&QqW%xZPY<{bN#xz?xxt2bKJ{T}Pj7BgydWw1>f14Uq>OLerguArVM+@nfB2)O
z+@D<f(*2oop?#v~5VK5LDyRm!N7gFxLjxEy7*62~Swvh}>?e)*iYwt5EIuKoLNbwb
z+$weLX1+gjQ4soHkQK2UPjannpgdNIL}IK{BXG{pnpb>saPl%v^QJI0LhaFK)3ohu
zrWSfO&K8L0NR!JovA(f~L^`V(`<z#%pNtt#OHIE#fPA(<l^AWQF~{og0{}+t7KXKO
z<<<CHH7OfFG75&(FWC1CMcC`<+zgS8MFIS(Tpe2wT7~yRj6Dan;@Fwy9O4ZC^Kpp2
zxj<{(<$fdJy)YMabzhzIdMD@Rq|xu6x0{VoyVspG2WHFcj@pg$Va`sHP<bNQ^uTdS
zwp&>^jzfQ$K93kB&(L~+Zn9@pVlYT}Hzg~`p9NaSt&-K%G!zNC52-yq$5Z0DWrrUE
zt?Zz_4meGAeMNrSme-0;RwxO8)i1DqhH}E3_GMzB-71#kk68D#G?Hdjg^`veXzPhZ
zn@=3OELJ1r!Ji(hhyu9<R`U2;V^)aRqw&fv78^lP`eZ*5Kg{0+oniaZiROYe%WWMQ
z$YyFA?eW}Ixt))Z&HVqEZ&S2Z4*I>HW<N3KDJmt(?Uz!g#76pUf&Y))c_s0G-ktRW
zR!-hLd8eCptBP7hC!xOz^vl+`z8IL3fjR7544UTTWYD|lKRcenjxw1MK+9q`TureR
zI#dN{w~EjkUK|aZgLa>)R!^zPl*A89km~ng;qrB6p_w?KZC=DqquV$!2NSc~>i62+
z(aWtTSDRx0ISuBTtju(fMk~fS{e3CCf=w?9VY^j^IE~gzkOL6_CyxCv0*Li*w>FYM
zYFbPL!6Yw1gqSVLZ-J)kuWZx1Eyk;P-n$^{JAR4HO&^#h$h*~}m3zc;y@ppYQxqFL
zt`|dd!tiaG$Bm2g(WEnM>u!gJq`I-RD=RE2s&|I%)bq$DRY0c=l?C+JY?*_`$ZSp8
z^g27bDh+RDS{>M0ujvY?z1|tc8A{#&nx_)bH+?KT1$kUbTxwvNL`EL&>{mh0bJrmB
zUFuD|b5I2|Yb3nG6KGio<H-W8Cl2$yCcm=rq>ro!1d4XvR6)aa$-HE^Umr4t6xxup
zP<L34n#tbj*;@)nFfkhKx~yQCal3B-BQ^<S>!D{h=N-=61NKy}zw~t30MR)4Y^rJ1
zh7qh1YV8$#&(LvG;|zKCbXT%CO=w@R24@u-ZOdN|0E_@3Q3M*7L(pz?z<{udAJTub
z8EEZ$n(TANq8F(T1^LbgOqv;**wZYz=$(b!lxPK;QY6`m7`w&m@dWfv-<=Am?LupT
zHG9Pm^;^YA6HK2A?}wR%mMB6YeWcoCA$p~3R>gD+?{GyJeM)RN{fT%voHUwEb2yxw
znO9GGAb$In20quMkzTh=mODKjL$f(BM-n<Og-eFrw#Vmezdj*2wHuwupm+X+3Rrnm
zh)CVih8ph>9n(wO#DWoY{aL<MRA-OAb8h5R5$wz=GLc{Q250BJMxss#4TD_l%x>f8
z+|=;<As=}ID2^RO>i|6kDD9T!60LfvQCoafMB@o1hig5K?^PW;s1kU}oA((GaP=hA
zY+Pt5xit!Km9MQaFRX2tBkerNMtBT|Dm8+*9a3_B2-iX6b4z3Lb3APNgL00fKgRj1
z9E39;Q_snJ#cNF~du84Sw2M8aSA|BaHQ2D8bj&KWZCajU^Yn|~F<fysvl0MYj81a|
zp9Tu5c^8a!_B%Np2IF?qB*#PVqC1+5dS_;L(r=7TOHH8$GSjlgedZ;o*={;pF&&21
zIZlxw$3n~?r%*nn@K0m4@f4s9Clv6__o*k<k_ukTv;@Whxy7Z~TyOU0jb$Y%y(Coo
z;_Y%YF#a`93)4)JuZfL^{Zn&b{s6lZIq|c2<gPbsnb@H6LA@B7gKneq#LCI`psp|q
zY5s(KQ2UMH@Uk~}V)b@=Py>kZogZdQKN;tu7y)xIZ1+lv087MH7K6@%0&bjH4zRog
zRu-D{14t&Ud;15FCxSTxNg2&mvLkXQ?EL-NJii!@%)z8Q!#@#b95Tw_`F2nx^OAx9
zZ746=#vB*b#4&Zhp39+epvNoO<4_5>BD2XKGkhUmcbbiU<EVY!9<|L}FBWAc$@xo#
zswAkBCB%zDcxj8$Ku<c2;aM5T*~I0+mnS^!4M&sVxS2PP6wQ<I;G}wocI5uRJZ^t3
z(uNco$u)wjC0ufgoq|;ahoi>GJia*JWcn?vZJo)jLarSs?E7|e(894NHXblfY+PN!
z`wm*BN|Pjjnf+6<V-6bUlYXx?=`=o1I%cOgxS9;iPZ#EJq+!?}C=p_0Is$5rM}d4O
zL4aoef@Z8x|CFLevw!jOq-gdpI64XN(%o+plP3D9o;NR!%yD}#nv6S>i|+BjG_TFc
zsNFGp7bSJICqkK4M|8qy+`$*#afr}YG-3|RkHqlPMZ0-6X|;z9de9BbW^Zf`uJSD<
zKM={kR*to3IT(_oZ-6ZS7KLjbxTb#<EqUe6ilQy9)_w>!)gOL>y21L@X?GeY=A?gd
zel851L=(w7DZ#E>$Q-1TOX$njva%X1Z*~41FAG|y*D}v1!%=TwPFn3j?xN5)HDga(
zAzLHIGv<GB3eZ@{#eN+}e#q@~+1P*|&!bD<MlOZHcJkD-3=Lv)f4-4OOXF5!)R=V0
zhMZ7N*mO+K_}j{o>>N=NMH25n99G5-=e?83xj8m9$N3LjnHG%TkSxr(KRZXa$Snr)
zxPAWOkRCg30&U@Ldl^7of9A%pNqU9g5u#bpm%Vd1MJ~=cLmS;TJzI$0(7YIqdY#F6
z<H*#xt^Yt=&h#)BXipg|8=mJ!kfmiVjcTLY?Tx6t{DtwApfBb%0z5rt`i-(qKr~`S
z3oQN8r_oDG6hZp(>j|HMoZG;8yVE9A9CjQ1;c0I)F+cZvgVAu(HwTkObM)M%k+c2!
zxwCX46b?NY;JF`}G>bUyqp(4%n{PlQenk-&{RF67@;4cQ(ne$?+1YOl8t3Qc`Q)Nc
z(0X1?c)uRY&pr&H>mv6eAed|ccdK{V{V5=C`FGxyupgcGnrA-?<&Rw7T5L^zhQd#?
z2o#C(D`5^t?GAeZ9bNUG*Dff7Z{o;VQh`2N2YIqog1gab^hfQnioof>9G>>hUv3c^
zHVh)?R>o!?B0Trq5=(JncBx6C+3SwX?r73%G*8XRuzhV#I!7;t(g{rt?b7gXFKR+-
zP7_@y5N$xHV~!g1=bs9r4nM)SLTS_+krhhtpr_(XVl(n1=*BqE^RNse1C#yt=VG=2
zqPNk9Fq=T=Cu25_QF&$)Y8Kr*?dD|MJHP0dlcPrS?4r+9E&h=6Lb?{+K8`i^-PIBu
zL2I!Jh`PlS=R8CUep!67YH&GJ_`-0$`x!7{OTsy>JR;3uJEhCNEE-Mh$a;J^BwFo(
z*&O{;c(j}lS<&{WFgt0p*Khw6Tt!W9O+Ro-u$1(!GHy<KV{>q7KC@1IwqG}cIa-n<
zzCUjEZc#W#xteg_91PpTk=bpU^c<m-KW_}5*}Sn|?<dw{a&8ckyAWdy*wo>9IHa<t
zcWzEv7tDk4Ss`v*4jUK~Y2&-7wPOB{vGW-7o=W_}WzQ+aDKO<BmE%a3I_X>OVdLnW
z?2t}>U=E+%xkNtRTP&qZ(_aQ5!qn#^2LZ*L)-gwec5_(X5YB4A4O#g;$r!GijX&v8
zLk*vAU^ZGMoynh$rTLrQrFh^RAZV|3084-}!c2zkmf36!UgY5}hPNZrT)f<E1AV;8
z-H|yMH=ftr9i!1t$^kNraNCPecngy^1?l;O2Hh~Xj?BZmLXhMIUSxyA)g^O4_|6Jx
z#CZqQ;Ur7+_5<e1hoV)G{TzM*R#F`v<TcR8K|Oj|tYGzoYod<!fCZ6UEq;R4NPI4S
z;8M6mm3q4UkvH7KcL&uye}dIudxL78KYlr$WM62<df=}3SyrLhzbLx|nj#RT(xqU_
z>cS-|kwQ<2&ZP;rEo%$FRJSp$e`(GQrq`Mb`(|@EX}*jia+fGhoY|U#7S}_7(xnh(
z?(5H<!}`8G43MRG$>nL>Jm{W1?8W4Ge)r)R9Uju(=nuQ9ue{6$5<c>e3AUPGm-6=&
z5g?U`4M}ImEWFr!(^iZNe7n%~V81S&;mKOOgxA4-oxQ&I1*AK=6)1z~X72+P+ZS^@
zkWiL=4zzgZa#o60;>bKDT#qwW4&$UKDZ;O-w18wD1qWuoHyH7<jVYoj5n|fm3Ncf>
zsj|^fxodjToU|HdhX@pN(C$6EZRn)gf@tY`eH1!=o>l0iIXN@UK6MOc;_unH?xcB!
zP|$(*Om6E8K^#&J;ENnl6i^OfzHe);V{0y#2vex}*=$~ndIS2j+h{%eDsU61$w3~?
zLj>)-wb0qq)#rg1^^uXx>e3TIDVHDJQ^$+ql6mRa&U5MKK}0w%l|@C^_Kwak%>JO=
z9r1_37qaagxhq8L6R>x{(m?YCcxk9P)k}ljGSAJ?i$mQ)E{e(necJ1tJ-gsc!+h%d
zi#)k0KyIFz&9e#7Szg>`-JBz9F+hPIo2`pMAC4NM;fq5(j9`RILTnxnW0#4ShTA+I
z@|{=&ym&uh*&bW`MTq4@7$*GwLW&T-J9cPDj!oZ(c$WWo4=5Uvnh0?T??3v}OXx)6
zEiL}UOF2}(u<!XglUUi0y`#xx<C*P9$zpOmioLQ4ysWVNpw}Bs+FeOry^z9v?1vT_
z_<q#(;uRCRcUGmPsl#&Pwc_M{cbJ7mRnZM*N8}i;TpF#Eqy3V7$&U01%b)S==9Vm|
z55|AST!r|9HXF4{6LA#i{wL!h<$*DG>MWl><cSDyG9HqJzh(ZLy0jsWBY=O4!qBl%
zu$pF*@(D`x#^zwqZkd!EEYr)_9JG%`!GzMu!JddH0_gr~>N?gLS|9u2$$0o+%G@q5
zVTh^`#0xGsI!+!}j60W&fjK$pbz&jcX+Lv92@38=fwmyprl_`CDn(kqJ!$nijc3Lu
zE+1Eb#21KWN>M)z3LhKh3Asa^m{il$z33^1CO#&dAunomhkDymEIwD!oQaDD`CB0%
zY>PB5bm9LGO^`x}NT;t5NOA~Cz7(HzLU9@OdM^|vHu8NJQ?HSoIFZC|Drba+!ibHv
zgn=j0s_GMoG@9mMG->v_$L*6&qn~p|v4!6ldrNk~z&tk_L$h$8)H6^KrH?PV?9t*S
za?glogyWS*)dybuJzqR(1G**U(DA+?E7G{#ipNN?G1LxX@l&k|PTtPNs4;4HPbQb<
z5xF&%$S_!PpwanoLV2dues(v;&We?!yhPKv?=ME@!zK!&mXqhhm;t`u8$7!*odUY=
zhq~MdyZMO#^^aMphlq#z;_;Wk{-E6(v`1IWWAgbm)wBINe-iA6j!%mex)9@7WtCr^
z<lQ68pamXBB_#QaCQwl%yW&t(6a-wF3RbWxMS>U0nxf#JxbQp%dDW?A3kIO(<riOm
zYEXUx{I^;9m&RQ9sbtVD^$J^<KDFF4Y!LcO6wT3!6$ag;EmM#4L9b(uPR)y9k-nTt
zR;A41Sg6VsH1PM|6?C6xcbBHppJ9q>p2bB>#{WypaB6dY<xF}+RJx0SHW60g#8ZgT
z#o%0dh;}iGOHKkcr+(VKAQ?|o5UtLAoK4uGX&3lm^vI<v3r(46N-Wz3WPZeg6-=30
zIUu<aRI+XbskKbZCLz3m9!!Q^g>H^Max!QfH@b}isFkh6N4^N%l+RgtX9sQJ*l%&c
z+=8q?wu2YL09vTwqA=>C&_Z666o}R>POCjUo6y`9lg2qwp!?>aY3g#TYFB9E<SFj>
zmMXcLDo0x~C0^QBW#vW=&jDEtLT3rXwZ>QQTT=Bw+fyr9<?^#l=+QFsC|U&~=Olm_
z@G0rF*Iz||4&-<<aD!m93K6>x>*o5vvOK57PJX$HLX<sCde!Zr$0(u&_C*sqY8C@|
z(kH{f@n#{yIJLnah6k%eLok6J-~$)nkxac2o78o#IcW~e#>gbsl}=-zugFt)n{A4&
zh4zV!OTSSPOB1!bCj)ahEFp|HEmY19*Kcq?1h1+z$=S`y%`H<|Tvs=fjgBVmjEmZ<
z-qE*I8}0ZjFT#gO9yI3$Q0MLp08@w^i`oS#DC)G5&4f1b9oteYhdN|zbl*s&GvC`w
zlF~8}fy=@CQ`vU%!OU6Klnqd&t#XR`R=^r#xQcvqABB*by3!`Yd=L~O-GnsW-!`_O
za+wkcT!#;QTc1LmmwFyH=p&De?*msmlXy`j8+OprluA4l&!T7`(yo+xNzU~#5P$z&
ziI4rLg4xTHBtw>D4wl2JSYe18>T1+$(l={%N=3TViSK$)jM~zRYI3`rl5GjGg+S3w
z$iG!$W-cZKo1HY?IIA`TshHM=5u|<$6$@H(RJrxtya}UapquNbk{|-DB{xP^?wB>Q
zLbtvivl@!58pdvowyE(RQri$gyXU#<4dr*z?)B^t*`mfm$zvmrU1^W>yN|Mh1;ziB
z{>C=QKiwIYBPUcj?%0-6M^8~rR7pV{B5r{33$Fcw)7e-#4O&h}Vc0F6C3Th45GDNx
z7*oM2s6<hOWmBoy_M@@Y&bArrGKERDR>w31;(Mh6St*!YBIF~j1?_pyWr57pUwL)~
zL-ta;{buFF;IycnT(*zP@7RaEq)LpMihEOFRwXH`I#{t_WxDcg7gYnalmW%7DeI_f
zxam~WYG49P@iA+cP0M|6=6Lt)|5r(49eCQWDJnk}0@AE%*F?8mSn?X^7rp3|ez@i*
zaD=lNT-i<(_^xBEH)Fb3O;PBf2;o|$sQYZzAVc-(P{)p&5q2>Jw(q(<ZA7@!o>q&E
z4_&U1R4~&>;wfpS?`%elMaH*5g)~kO&QMXb-E7}#5VsV2#CEI*7)$672}G$g;V4Z4
z-=46IO@tUdhm`NUYAOnOD<h4Z0ce2|iSXhbM!dlpNd=SNC9IHlE5Dq4`=^4*53OL5
zzT-S`i5hQHjT-e@m`472uYLdCXI*I>LkIke>KJn2$CAQTF7Zga=*sBqv7a~JCBR-*
zTHEM;lYq9-y_~2>r`EeR40QX+@|R2K*@xgijoJ!_HP^SGTbnvw%|`deufU-1gyb*e
z2Yy!8*ng^PxO9#GD!X+x0`&>^v1~3<FEj!2@Z7nHbTEBmCEdk8+a9gpZb6KIe*<~}
z@`j}AuK<DwEdv)uh(E6b2ZI$xHgG%~A!w8K5CkrCJkjFD4?zpvSCio*K+YT|L>NF|
zJ2y8dB*^eZ0Fe)-2n3;TAxwt0{4hjT<gSw;D8H3hJX$EEg1jhP(+X!~1v4v3M1hU&
zYt~JANpsdL_ueN6C6_N$5>9+e)n(6FqV%P6uXJmD0gy)&>{E7FJm*j;?Wx>4(*OYB
zNFmk3EN0N6EB8~N^uTHJ5XsLYvU#2j7S3lXP^ZxYXlBx^0x*vv+4mz>JNteZ9fIHM
zzt;;4%w>hKB=U=IC7K4ZMa}hRKCZ|IN1?sJM)$}3dd6%H;P1a{(Ht$2&<|?bMHf?U
zyg+do^WWu4FRKaU@BR&0F+dOXbQNjZh$31g_Z#hJ8{Ie_BS0l)EMAYA-H)UOj^{*4
ztI8ZfoBIQhmb9eb;RjG9cO<F2p9FzuN&Z2vPv}0PUE(kC=;scmpLXR7n%XgaS!4G!
z`N~DaCvVUc1LL;WCvCq29Jo$I=P`g(O4mck#%<4uk}jtdQv%Kn<cvs~hR~ZK@Cq-S
z;MYX)I{c7ELyXK@421%B_(84N{dipY$ODAMX;Fl(;$D@bJt|;qlq4Gn_<^dv$<*RZ
z%24Kk!zFy}DD44bRX~O!x=rqGDZ8Sw>RkX}EFx5JGEaXG+pjs>vCQ7xxM^dH2iby&
znY@B;ErZ*1|2?<&zx$qj>K&_|{Dey~D!z35(c{!c_xzMZp=5o4;Y?9pDqKyd1TdO^
z$W!>04osKi9r7>QQ-|Es>Cg1<{YzyO58bI#>u-;`nQ7^#52-QJX2SecHj?F#R+<0A
zugQtQFMSy-&q>>vCB?!T541++nWyqptwgoa>S&cs>LkclMPpM<!U5acX{64Z>@yqA
zrv#u?FbkoL)D47@wW9GVY#G(tk!+^S-kYFpXMe1K<KAUAl_H*fXrA^i)d09~<u&jH
zM&TjYuh;9!H|V<lT|abg9T&}zi7n{TFz7?3-#m!(4Nd}MTh`Z^@U=2bu4J0B<Zln~
z_S;Ba;)iaf9GgbEFsZy&&tDxhp7{rvrHdA~l#M#$qbxG*Wws@@=4c5kV(F;j_pEaL
z--Wq#gnAT{3*}gcEB9l~5Ao%tFrGiwkVEFB(qUvFY<Jr<G<wu%rv-8uXX6r)&?@CN
zhef||xz#K{Kc`RwKS#~bmk3$E<ss_vd_Svvm+rfIIj_4Jr*8c8?(4ABvrlr<e~LRg
zhx}jv{P~IhEcWX)@!*DQ6LM_QQ+X1>Sv3mWr<kK&uh-wdeM|pauh-N6t=HeZ``7;4
z-`@T9_TAgxemnSAegED5n>YUg^{1G8)1MWNVEC{4qvuK^_iyqiWjSLi*$B>PMAC27
zch$F2NX<(F`_G>z|D)OeapLSJ+Ws5%|G{s+y?dYD|MhqK|Lp(g_(RWdRy{UC!iyT<
z09oR+ue}CSWWg2l)R;$6fDdc6nG?-d)2ih!YbVTC+x1s=--XeQA1-T47%os0xX?nC
z#qYQRgP;=mzKd%P#w&zt`|scF+#xWBw+KW&Ad3)z6?VK?{DK>zzz-wGoAHNi?*Fml
z-w1yVq2y(AzNh=fnv1Nih}QglKv9gU(gm{IGl85|LFk2aB>A;K^L`*_A|TC0@e!V=
zK*WpF?;@=6l^+mg54ysJF837Qn!f8>FhX|RDDECkp(S^b!rsXz5y@Q13)X^x!&5*V
zg4_L_h2z<WATIY8v5=jn3!UYTxF8UnJH8`ivtQAl*<DYsk>6G<IvxNnEz>|Q-N}W0
zj@)IHeNY?`-iqs^<u3!@Ltc~~d57>i0S;Og!notx!a`XA0|f2M(1}pbqxYIPu?TA*
zQp<?z1ivcK8F+<~BCka3d_`cF0D520Ou7+}4$8Yo(cn_SMdkH#7ySi{icz*Ne>#<a
z>eBTw4Eb3zuTimIW(r7SCog9~rBcb<fNnJ2fibZrE`M@UUZ41Dko@?>xJ7w+A`>!>
zZi=gDn&D-pegHdexewxDZ&t1=Wl0h8OWcD6MC_l3;Cq@+vf}X!#YQ)WKqwjL#npIb
z34ffK6&y--FUz-M*}~nl&d^$4gCjj*%G|_CL8d15d>c(7CpKq9>i``BCl2ljAjZ)=
z^j9--6Bkw@<k{2@FW!}6INzJt4qj|UlT3UO4+2WVpPDp1B^!$THRGnF*%capB?eo|
z2@e5#>Y@L}wbgV=(@u&XwBAE<=V%#h=&afR(S6{AXh`t3@gaEgzFyyofH~yj@>2OR
zVJ*&yYnk`r)?FT1L5Ni$H<o2k;r|L~9@i=i0vz}e(M_b+T@SC8C~Vt${!G4SxHCB$
zM=+eB2#bv+j4HCkQPK{u>T7d|2|=<)c6D!0h=1KjnGe1t$t;NcuBI!F5Xl!U147Ar
zBK0zcbE@#f_Wde9+4E8|F+`d4Go+EfgD7;CvN)?0#`Z~nWyI1+;|-En3L@S05J5c~
zmqhiMz2~JwNfPAa-LP#(UG!oKNQ)nbw*7P{)00|0EXii9#VTS81+KqdA}@L>y%678
zKTahKQQ$fj#H>M8{8MN<<jOQ#Gr7eMrvYM`Gx>~I-6-~X2_tKMu7Q&JV*1Oa?^UHX
z3c&9Zft(LA7xgPIheG0xe<;q|nE2!mOv->ADlc#;_f@faYUMCBU_g2i6w4xy$kO4U
za29(LaZi0)pw54eah2X9jd0}|MR%{gy|k}tF%~kpH3($lz656gox{VoZy@ro;L=TB
z;>cf=w%Yeotf*35!R>K4gdt9=VWy$t6rU65m*Aa#Ed8Dq1*ycN(#z+2WfrAd{P@eR
z+!`L%UM2aFpK=*gm9PI9{wCEQ>0|PUm-oj8ioT>PNlIV-v9E#ZR2gmB%H?mZ#4g7q
zPwA>rf=5)p*0RR1C*`Nq^bcgHO!P@A&_p7K))FTT<vO>>Lm2l%e~M%-okvk{f>M$x
z;H*-w%@K5?`B(Mpwv#i_=|H!IT)2)eYJbQgiI>}nKkjeZRzJggeSQqwjk`i#G<71A
z-@1znF8@H7GmvDOiF;it3B=D_NkO{W|J%7Py-;+UI_^Ko3w~Vk0{w)iz2Rsw95?gk
z$=s8`&+JO}jILVW{yUWT$wJ6V_pn+nljHWe*6WaJYq1Sf7b=k+a5!p=n4b9{Bd#>J
zp|#=~n<9P<t^GE~?Q(e4Z4!tthB=zCI@)5tt{doN&}f>xuJt6Rz-h{^%w_W|gcb_&
zN>X=wEpu`)Y@C=SN2RX;D-367GIxj?zAg~_v0WG5;Q^XCzL&!&m&3`xJkjbpdPA`?
zU<m+zP%ZNkGc&?9S^aWHR0q%B(hQhMvv+=OvPwgF)y#{Ycrx>q%e0vqrN6@SlJNE~
zhNlmLRGMQu5QETP`t4ReWc@*})1wq@mxf6iR5qu6`=>U;^VVkgmafb2?Vp+qKYvYz
zZ<-wc%2S*e^3D$z<ce>1=!<h+K3S35EVrQ+%gf&2%pB0t!yR)pXg4RrcFSxw1}{>+
z_fm_hsMos<^!%Ua?PGJ)e&&mw9t-x5bLR$0{sG${Gn}-$BXclrJg?RtV?z#~8H~^!
zTr*s7+lx?m3*CYfDDBi%tosfxI_5xo0zE-un?g_|gvGmh#nG`GgOwfR?e0nW0<b>_
z+PGb1f%1xtKcuW<38lhyEaYLto?Y`Y1j%aarFk@Ix6JOSJ-V6<%;SMMJmp1o^KLxZ
zFySEd?UfZ(`0O?Q-wDk>q`MAKg}HZbP8x%fH@_{HYCD2RYv;h_B=lWvBwMkypH5kv
z21vdt7CmGAxF>{1@J*bJ^$stCN@~gVU~J?RU7q)6$(k=OX!*5_#kb0VTYK2aot+3R
zQ*VovSm<R>0A}~sn;GJs8DAsqAemNdyvHv?A(@mu+0}o#?GWhvh*QtI<fm?-pYZeU
z9kxwWAaOk6))KDR^>vGgyu`&lCl*f=|G}xrp8uXA24qA0*W0%T^>qBl`}hCEe>}?{
z!ZACi$PG{kA|K39L^gUH2tt`)XEaB^MiF#e415pF{W}oN5$2x(3=x<j$D4r}4<xa7
z91I)}Op)u~0UGkLBO*t5Y7!W^5Mu{=RS!kAY3Sc!R6E<RSKij&yx+;hYp8G96&{(g
zbH`>Udm)03M_`ENh*`b0@7b7ODGL7sCjxhK<dI<<4@b~-Sz6LL3?rIVG(<L-!w5+6
zELG6H0e1-4z8CGV_?0<g`VVyva&8=CgB3;q!O(S32yR^e?pGp#oCrAhSNbiQqaD^K
zBI7$a>03>(kIyBx8E^Ts9Iy8w$7j&worDZ2q{DfKg5Gzb6v!e|6C8d3hLOaEL~us*
zxE8v>sZT_PYNmirID<ie>}p(ld99!6gOr4j<~!f7x8rz2I`kg+&gxW@pUJ2hYP61V
zXn=H{THRn@b(Dc$S^O(?YaqKp-*put!B6tsdwF;>oZ``|A(}Zj;?O5Qv#BWt(ytMm
zDF{87wuQvi0G3NuB@CnVO2urgKz@eSgxCzQ-4M}DMnhB#BSl<;Z+~rOlz1>B$<nOj
zX_-(qx{q@@GeYg@aojMEoFR_~^hiX>c1_V?!ZtR0b}ij|>+J|$v3cTczbp9~*NoU1
zJp~mLKE|FLd8APE@4t7FeA!BsnM0z3{DO`0fC?C7NO$pS3U*!ODL?Ol{XMX!LZWj_
zW;=#1<o29e64gUqP^XA|nStc}Eaw|97$n!n{(<Oar&ooFG)E=QJh7QU3&u}qX5`D)
zBFU=m%gnLIx>iMagsLD{QW~<VRQ!+3R-w`V#Xp}b{`<|lgKYfw+kf=`XZf=^{#%Wi
z=5eh?`UuO7nNHl!%X^D%lVvrP+J@U8VqbF7*7BDDw4yDumuehqACSTHNg}25vt#MQ
zV=_e8GJsm8&F07%&3r#7teTxZ;-oE?dPxW1_c%bC@WdXEt(JZ+o7Ra2aZAcV*>0P{
zvmY|h<72fS2>xROw|{uRSV{=dum8l1vF~xrn2tzWgpGasR@r$aV!5Q~usHGc4&d=y
zshP;{)TDt|%ecN>g;u@ec6X^*<u1R#j)anO1Tms%)eL>#B@9@tl|2?+Ifn=D-s9DB
zZ)b0(k~Iz|siQ+glalm(oBM*$b7(@)!6*V+RE^Mg-6b->ZU{ZQ;RbWqT`j@8J>_PS
zuJxWD5~l>&>1NzA+^tN|p2puc*(%Z!Gp<usR}-?AyXXq_S%uA{nr5k@xUtOCRD7Zq
znqy=$Yh;@Tl;@PhV&<GXKU}yzw5uZgytcw}W=p+*E4Pkfho*@4EWwIdOG&EYb7}{~
zF^i%RbtCGch!7~5P5LoY<BQ!!OO2;{z{mkrzLXagsw~1uZTeK06^yzOzclc<SgO^d
z3viShJ{5+!V{XJx1zW1B_3YuZ*#-{_n@ydQ&lx?N$^3bkEWoY?_}rUJenpM=686aP
zl7VWk<<Q4R0Gy1X3@)4j9x-yVq!m8e<H?a7lMVK`2i^GotuK6%j|h;GnEkgYT*R)=
zPf)RlYj^3&2QOX!Bvx_!Fbf<_iIQ78-3pPNzRJfn$J3RbX)zVU^=C83n@NTC^C+EH
z+K51ufock|V^O`DKV0U)M3Bra=MtC87cRIu)Z;>*`YHBu>cym8Wwu3IQ^GW(zZT%<
zcwdkeQ6rpVu^Eq`wO9pduj7K=BA7GP<xwlCA#kc}T>e_BRV%H4b;NKL`RG0hAq^49
zbbk!}A5sri3q5!+9L4qLAA}XV8ELLV%56!c3g>quTCqyEeCZ0o`qg`~U9e3B`A2d>
za$53p?-{C~sUT&Y6Z2o{epKBvjn1+CxnJl*Sm;5h^&c$dJ(xBCB#fMy*@h9M#SSVK
zwC0E)8qbE7LA0is?!M`~uGuW=jYJ%N`4$HTgwEEGIoUMk1({&9eT8(`QJn-2Gp>a3
z{Y4n04RruRwOG*)^mxR1j)XcxSLRU7fSoBo?AVr4j8`&0l*VPZc*wmRAhW3D;*(!#
zw+OK&tx1Z)+-k!cF)R;_-khXGD!;Dw&$LQ0lv{CNah1NG051w4E?^{m9pDY3FzJxb
z2M>MO%;wj5qPqx4J9KN`8S`DcH#&Bw-MS0kF|&-7dlzbwyHJmBYgtOihvRI4cx=$&
zheYJE-lBS*WR{{P8Zr1rQNvfF0-5EhJjY64X?M~yXo%IcRw$Jv^jDr;!LY)rmB*{h
zMnI_)YswR^_)|$)?dYV3MeBLz+&FdsS9XpqU;Ke9+d-a%4uKL;N>?m4^^11_{!rlf
zUe&RKDqQ7R`Nbca7MFHVQ{$%Fv3L!sn)~Bwa_3d#E)X`Nsdl$esgS*>BooCiYN?Qx
zf(g@Ia=130eVaRijuvn>BWoQ6G)LJMfa*J@z)kJ|xb2PR4(>B8`e6chOB<JSLpN(|
zm(fF$p$KoDynki{anbULlvYXiyd|WtY2=O$N@o4o+TgLBjYA3pTSbt@ao(Zn-1iq1
zYJ4aucrz&R-Z^AoYs7T&9MlVK5Y?>RA-CfH2CYI?Kr{hrN_bi}1}z(*w!OlpsbZ_#
z$<)@m!nWI8h-`FkXy9Wtjms+BPk%9gX|KNWe^UORQm%!k^8VZy|8;P1@HXZD`S!Or
z@Bi`te2zbatzW+eoyMqn3eFox=J^o3e*Jm}fNpPO9)i&vF-Iis1OnzLL}2$%7zBS(
z`S)kYoUi`eqmfv)bBn?m@*<)LEO!76j#37|C<4<p{e2bSC`53{0<NlnNK8N@$H*mt
zCQby{@hk-34v>7o{sV(Qae%C<aG3g&_F59LKXnm>>ukSHB{OtG1no7LBIE%)cY=Us
zzn~kP1+np{s+}DG8Uzw@>xz8-QOqEqzjIs{ED`ir+!l0QU~#Jf2Fn$Wz!G{Z=(_72
z0Bq!<h{cEX<BcWZ0jB824-wCA?0B<Z!QI@k<^&rEuoJDQj>)6V{(}g~JLs{<G=CK)
zGgIK(|37>0|J=5%ERO!JzXBhfo*O$alI+Aude!NhQEeynjg$CUPBWkB?bt90NvJ7;
z1xVR$lK=e;7GDVPi%8kBlk}KpPGgb4?qUHf7K_EM%8&E}@W~G9Uu5Tm$0U_2C>uzb
ztNX0{5w5?*0XfqR?I7q*y=aAq#tN(>Ae0N*Tasesm~w__Eampuj70N+FIYY)CVv^^
z^#{=DV(>}*`(>btI3@Ju2Puip`sFKuB~pBExE?qbCcY8Dsgqyx?&u-BJa|K|XmBmZ
z5sDntHCT1Yg5O?!dDAk>WnH}7gT9}i>q0>|G<L<tl$hC!z>A}`v^f>c&k6h5GVwp@
z@u#V?8IxP1p4uCMGI$FdP3!;G%V&l4|K;|Jmk;azeLSDcrN!Dkw-%%o*BJ8jSZm0K
zRlk#O<Lqsa7Y)XEIvq)vDuVed8Y!dk5PgOXhUa)L%k?jQ1Yx>RF|ze_4X6w+*qo;0
z6i@TZ4BcaOUE!Dngf2*^qUP`{%8Njt*CDb6MZ)sv5rxYSviy{@EE%G%IwTkU3(ETX
z);wi-RGz#h`n`J&`)6IF`vi3Zxtd4L3v!h(o;ok+yzqh(I9K!Dq||?r#pc%^WqOmO
z9kDn8r}&&!6){xfSDCaNf~sG@QL%hqCd6KKq@*1|+Cbvgs{p%@`_5MI5-h|8xz2$s
z2tS7}%GY1EB}+p6S0YzK`G?XM<zG{h>biFLykoH$Gck*gHM$SShh7*Q6IK4P`>q&U
zy@v)YAu&$qVDa>E<?CnOYaK!U@xwCxPkRdMe?m<V&Reee?$faTZ$H~9uKznPx1K(%
z|M&5LS<76eQ4wJDT~N8*%k@DtIy%sYgaC;^cE1DtFJk9^k{}hHXN<MQ*^wmlB?gj*
z=gf2C=CATJA4yFnTpCwp!nN7~R4FS5J?}KNs2u3ljgAf~v#<5Ezpj5ljp`s7>clA5
z7?ie<GpclDP3lfKN@jSwug_)ro`<>(Z*CH|c^B2R!lE`@_F_u?CC-AHWiF^Kay?Gb
z(m`g0TY)I3aio3S-_n@Qv-uD`Rk@IKk13Kp^)2r%Z92B9pK}PL6X0k<4U!?+mau6I
zmjTH5f+i=2<KGCUlWTj6p=j29Sf?5uU;c-f%%yIsL&~iQN0a>Deo?mnZa;gF|M&5H
zs*S@Q&T#rR4|{clucv7FU0oPFV{-GWx)<A9JwBT!y#!xR*&6QXDmX^+-SzcaL-q1Y
zv#Ye}NB@++gvn1xSWYmOAGPH*)T1M^)TR9reW-A11%mGdA=!gvpZ|`!A|fQ|qCcF^
zm`??Kd-me_)>bG#J_zJ*^C`%Gdo;1m1)wSZ<FoCe{{MXYLH^&*15p%B{1<`p0RWOk
zz){niJRqci^COnd2+v=MESMoII*uoiEY&qp^t)9N4F!#-5gED8)BgUzzj<aqfm2{a
zggCYMYtsCWP03~Xm7V=Z!~&^-Hp1OCC4IOP&gO7?RiFO&iNR}NxxSZ6(m(sIpl+C*
z;m_p^<jM@HGe(>A;}z}m06AAK29MF0q`Chk3<CSZR==E)xJ?QqD%52Sd-pf*M}5am
zj+P%<K(YzdebOt&#O9`xz+><jeGmklMRZP6!tF)$V;!603~j)1@Hq}Hdf-x<Qb<d7
zt&WM!5pqZpPJo91_^bqH6a7k}IZ80cph(I6v@&C7oS-<HpA(MQ#Ks6wjMdv)bP%He
z3nB~5sgUzSEvc67Pr9gF(ZA%x7jVJ}^*Moa_OtD?z5+5P1mQ?9G|6Hx;G#1_#Vbmp
z@D<~F9G)Q>qbVB*9t^CV6OMB)C>x}VMPi`sut6FP495c;5pL3GO<CXXZQEiS;?VTB
z8xG2}sq6LcW-%8F`O5(q)5r;^;Ug>J>T6D}g0l_QGT!Y%eK+h!`8Q-)Kdn#TUU|vX
zCm40jgz7qTtIPA&`H^UhjF7GJz~m95YcH!iQKcQio#yx{%u3bm9p;+a#^=`l?MC}s
zL7){pxH{fiSH09>o0Q+mxjs4pPY}!rvVsOg)(kI5XWPtXXOUYft^*baI4wkLHA`0g
zQm|QFV`K?lTDK4`#qV;Rh@`9HBdS!mG|q_moe$Qv4^?$v+Zm?Y4ykR%jMKeeTb24Q
zA7B5k@cv!HKA_3|^K`oy|NX_z%Lo6zdwGf{`Gtf2H5}}>HU3n2o*UHmTVH-Nr}w{)
z_m6)&*xk=f55JzA9G#BAK#tzW{_8`~Cec<O{^x%?dVhR^p6)z-`n;ncAG|yIaFW9X
zU$8XD6W`SUgQE!vXGg<%|KX$zNTeala*yY?;2rsRS&a#eNU6N}{fb7UDs7shK->H(
z=*t(W%Jm~AmCJ}tIg_&3W9#am&?jSoGLh`$qm@{8VLTlG6?&n6Lgd8l*YN8>cz>;@
zApe&|(7Q2?M*r`Z&x`(FJI^2F|Ghllko+%P9J8`tzxQO6Is~<H2f@{T5*Hm)<-XeF
zj0D;I<%_vLa;iZ5<ZdhrVlP%P&a|q1N|VJ4*9@*v{yrT3F}wxd!WBdH8DfngxxtBM
zOr$?`?Dy&4G(jx>$-elPsv^+i{`7BHDFoU8+f2fVAaS}0xlITT5u2d!I>vJvz+nO>
z!gC9fpiiZ4P6NP@`!+F_A}btn)M|GP|LxDxdE``qy%}XO8aSOKpOjypDk6W#IEDWV
z(9b(tJ2}`d9rIrhLte-KD-(pP_dlV3p>#$C3MnT+N*4rf0Ze1YNhrJXl0d2zjA9n|
zpbb!&#%PZP7lhkYRb>S|O*jjP5JaFI-4en%<EL_k6KO~|N0*pu)+aPXHcJ}NqyF1Z
zXlQCLNSq3%{Tffe;#lQK7HE6xsc!ifRcV%{iBrYQv;j#2jb={gq@P|VMC2?pgG;_f
zj(gpJ1u02;>Y7DfTm@x@h7Cfp7$}Y8Cub1Gq2!J?&@Ko`a6}j6RJ((r7tgnxF8>!w
zGae&0nW+9T2l$fVTsu9A;y8!9u|igIAXPM4j)8tScnpK#rw65BU5~&1YfC_nT&4GS
z{_}L_MREOqzP0`QVg0|42TW`GdZ~)85xGj3Afe3!Fku|&Q6X0<@VxCinS5^Ow&g6g
zW}SSku=Ld)A}?uF4V<Mj?UnAI7*+bF*STOhLG_obBhFMP_+T0DCR3zfn(lIzrR4du
z-W(?h;a#+0Z>*wjZL24Lg)s<qdkz!EVu&=XqO!1p3g*S=uF!RgggE6jrb1BGWfjWK
z7&SzPu_(o&uBy6>&`U8MAMO&Kj*j1%I%d$FlN1;3N8wA+ix>`j=QzS~KzL7x2(ET}
z_nGbn4J33O!s0I4HcrR9ea%^x+z2rQ+UuFvxjk^%6OE0nLR-*Nou9`4M8&c{WH|gq
zqwgT3THVRLQ1bT6PeXkM;Y0>7p;gjI=)fm!`(<b6S$^{H<Cc4lfKUo~QjZMIqSR8c
z`91HT(j@<fI<Qo(|Lb)AYhM3fym(%;|L#29ez^a2FHgfFZU#i<VxDJ9`EhG&%W=`L
zfl!tM^LEHpuGZ^V&6lp+E8kHw6^+=dlyJU)^VzXJfmHTOUpa9~Bhzl`cbRKO)oja?
zq--zu%gpzR1&wQk#3W`{Sv*r*JvBz;QPno-gMRHK$H-4yyY__CzT3Q)tPmb!?>uIH
z-r)O+mai(7Jz{%>5$Q6iKBiMm3;g_n)n2=widh<p3XW4&#cX{mSzQR+qliu;q2s!G
zCN(d6K1qW?8i}q~f)gCRk0WzWqGn{Es_UpQ?&+MSh0tw5l6k765$+a%a<&ouAj#ao
z03P9F&iHjZFsf`dq+-UfwiKFrx2Dkos;82~i>fX?eE<6NaR0acLk}qgzIer1A?>{r
z0O}37J|>gmXV;Ow5QfP-5CSS<Q@B-HLC|me$K!+d@9vcxb3e5heV8Vq9BK+x2?P>P
z7!Sy+gQM|&yr7)LQu_RcIhD12`LMlJ8{N+e^dAD8VDJH?1xHX7s4xH6ElO*{$T!<t
zr@N!0(Ju#w2PX&n<1$C}((hub9E2;7dOFAAVkx~)qBYT{Z%5-dZ75fWS0leV#A8KZ
zv`SKoS2pylR3@T5hznMn%bIqZ(rF2WBwqLfzLyX7(n!xod2v~Z=z_#Vh$GI<iCanP
ziLd=QXC?xhxx(##TB<7Mj|gT&67%cH$&uP!FI#!W{x(@XG^Q!V(H@ELwGD6i+*u)T
zNWZ5x*+gy;4X%f16kXzL;c6DGR%aX4Js%KD7UgmjyV_9EOK{$UbDO{ar}2~%vDV9f
zE$)B3d{(;u_w?CA{@;6fV8gDveU#7xF;*eehClnV*^CUT3%KI>_8WhHRvTRUB%okA
zt~>`Qlu;{*fupSyzu@2kE~oU1_ZYn`kExXx&^6S?`apfYPtOQPSQz4TxGfvf+)1gd
zi*$XUn-!-4F1flE?8EY{a4W-ntpHQ!;f7@2TCFZ|_s&(H2yandR!>*xC7h)!V3ArC
z#&uTeic!^gz)@9j>A{A{v*>IL6A~Oa95owf3+Aatt>TRq5c}iR^WA0~<+I2H$u;{B
zUsv{_<Yzw$Wg!i$;Z;G~_Ac@}!_k;HQ1?tl6{I46XF>&5H^*Q;>vxe2OXuhVrH!+E
zTPWyGjLOfSoU}B$gt~m=f`B(JkW!KQV~?7jinpde8klQ}S))}#U*~Zc%&(lDwQ%1c
ztzf^BZ$5na?&k1i?KaG7l?%flOryf4FpabYcE+p?py#*4)RiUFF2HNkgmH9oIJS4S
zjO;65hT3*!R4Q{Wk+pd+obX^hP@2sMkh-#`VQS^siF)jZr!1n)cm%GwpHa%`{D_kY
zy+YkVSHBo%6Z7KBmqEu@(of(7&keAAFi#>P_t7fSeL?~{p+T81rnaxQpSyymFsZ9F
zj-t}<iynXC7q?ke@}pv&SDNBWGNYQ1ceRLhfup4ce-BIJ8s&~O`FG_Qa|`*$>?`aU
zeEmN+)ZAbEkDVR)cR~N(*?PGDeJ{_q<Nxaz2@S?QoZ@lHI5}j~Llp(jl~3TE+4YT1
zw#q9S)l@6gFt$){jzzkrU$ih=b=bl@>5G107iv|twzww?7S3j*zYFoOM@gdlA}_z1
zVY1>nc?FmijE1!U{cH&Hpj)7H6K$yLn>7U#4V&f~`aFwLx~mxGZqqypD+(zZ3teV;
zJZB+^;O25jbuV=XgL#}v!3UQT^^NBqWdpevv9Ygw<W5K|ZDYLH-m)Waj|#b<?dBfV
zL)3+fj@?4ZBg}CWk?2DbF&ugW&}O;oCtjg~iMR^d9=nWNz%#{KK>Q_Q!9^<~osw<g
zwj|dpy9D;WNa-9D7OT*dffBD!J+M)Tlawx8pfgUyj74?i;`$o(Xw;o#$a6*FbQcFR
zGNyl%x4)Ffyq02b+SD#hh6<c-wSd1N(u(R!v7WFLN4D@GozwK~FQ^s9%Bo9|9jhn>
zH)LyV?KU`X%GUboC9H3@w^Y)cU$V)BaJk<7N^r;-o4>-~PO${x@|q=FqmSc}5ZRm@
zvxw~J4bqaNdirg-j-OxeQYgivk4ptB7v3r0$$bJ%fSJCEete>?C2XQC%OU;hmnb7(
zB2(>dro6VQ*MMsL6$_BvR@^yB`f5i1+%L0aQEcL^j`h)kxq9&4s42Q`HG6#$R^;!x
zsVZ?;7rF(DRov$m9NvS1H)@KiTFqY%|BCEgFG(flsxr6W?ToRD7M%T+u?umdRzS^a
zzB;&9<mx)fDe)AF+=8WWx^hesR?pX6Q{;$+#{`GhtF)z5xthC0GTO2D4k<H?4vM92
z!E3oI5%qi?%g;AyiC3|jzb@)_yuAZz3{Qny;uicQ6LG|Zk=gZ(-G4RKWp2`*a_wps
zS5niC*LO;w;X0X!La|%0KG7gPVw%=7{v+Ix_1e@1Qah$C0dAUn=@qGMt^}*ec?(%0
zL(t)M3??g$g+8gSZpXYuO_zcWLbe5ONy=%UQ(?MT>`6fZTd__l$>wDxXj{zVL^T=e
z$03~%$<5WMnR|7ch$@t>rtK&bGi|U}wZ%c4628FEYNREZnCWXr20#;iRaLy~SdRZ<
zH3*a7LzK^r^PzXbSR@WqC|`H8HzlcUPF|+4ty44OtxlEtQDsU!IUMg2o<hD(<xDI@
zG=K!C1D#B@TegI@PUvdpV*#r@JIODU{J7N~x+Y8o{(-~X261o$^u^?}t#DddQ6n2o
zWXFKTLB=_W({YTGT^4I=uy6(Bp(-p(h#5=wA)k*pB779I+m1KG@D_na;u@IzwdfT!
zg;!s?48*BB^b9RkeN!<;C4OzAUZus$Ayu}!n#y*a^z9H{s<NhT+hqwQ?dH=BT3rjI
zxxtFCo6e;>r?otr*4r;yzpUyRzrf8JTL+`LUre2LJ#+80E@}$jyjuc6m&vwW=kv|l
zR}G<h&2fsh>wvFD-a1&HaJHafJ~gZOzXwr{ZrR3KAeGH5k=3p%z5=CTUFn<m3EVNP
zT{RB!uQzL7C4kDdIfS(1|JR|d70+`Va+ek{9J+nBx?)%lrIOss+TyLwn`}sE6Zu_l
z|8`jxrxk-_Ul%)>ae~8k_T1{KUTc<;(Qb&`5oN^)`?}2Pld#;xIlkJp8xeCh+j_-v
z*2&ce*)li{9n(bh%4^&GG^ApkD^<9wPJP{WvsF@;R%b{Jh#PcjHPtuN9q*<gwVLDI
z_NNiiRb6Pl-Ky=iKyJ{Dme_VZcaQWJm$3Hzrzn2CtMaoQ5l&gyiax)JN6i%Tb37#h
zi&W^2e(01e`Ki3#eM3m{7GEh!+buW6O3U$Icx5Xn&|j)7<@FT!m6lUrvUOM3%M}g#
z$&Abi$I;PmyYCl-&q%@PjZ_pUgE`8BagSBnYPe!FY>3+}oU&!0d#ce##c&+0_*7Tf
z<5yTyXsL&-X@`k&V*7J96Dgb9=qDAo!J(!t@IRu-H?$V>$iFY<qjx?op}{HDL`Vmr
zi|m~IMtS<%Tk#=&#R>V_oD8<;4Y%&Zt?M5^=Ebamr=R&13WLOP@-<NA`09Vy`A1As
z>$RmaG?96dUN0%Oxmi4z(*?XiTmin-Azu|NbGrAZ`nHVye`Ped*rNi=t;{hA*n;ru
z>SH`PwTdPCQ2#9pNsS~Z2DxB7AjgcQ2eCO~Q2rUFRj={__HfXZqfLO8^XvxDi{+Lv
z(>YDm$633_dsWP|1$U44DrIQ(k(mp&d{9>AcJ6XWCPJB-f0OejcgionuW;pW22*+b
zlgBcIc7&rO(f#bc8KOs@KA}GujZybWx31EoCM1jbN6bk-#lrX?y*0_3)u$8hOGPV}
zKyWd8J>#A{%H9M)S&>2YX|YQyE7rvbeOlRKQ~i}rapql~sQFlVFkb|)WC|?<t15LD
z+x@NnRu7VGcT4Q^L)o}zwo6WcOPrf7gq)2F<#Em~NZe*NXnVI-Bh)zVODV=_NRsUQ
zf?O+l&AX%QJfguHa{Y?&*T0Q@oudV?h7(e_KI^Y*HuKBA4n7R)7}PI)(h1CKk@!&t
zCIqJ$Colnfy<X?rx(Q{d(|4hYs)hMnF{j*cyN=+?(pjG+Bo;F|N!|1K`)RvsRY<N{
z^1`5VZX=o$091%f+cWd92ZNAYb<sxQmTOJxLo8<J4D;~A@u7{ktQBN)fm8*wRq?#w
z)g?JM-{8)!N&YkZaqCBw0VrbADd9HHv$|A9<B7?;JYjr}(;-S#OlfFb44VggYgu8n
zl<JB!EWcAseV>qc?7UU%$}hn>ysF`a{p-W=p<x9;iYSTGgFTPW;##C+KGb_@tfB%A
z|1F09F2<Ws9qFg6v#7>ZQ3W^4*i|?QkAhF1(3GSkUZDT&{#*R7l&9T-$Y6#iyAF{3
zc<~#CiwzzgxCusr^uzH%#ef<FIEv13aB;hl1sxHqh!?w~Wu1|iLiq)FxK~#ZC@a7L
z;i=8hqaw1XduE$;2r@x@<||B=9gL-tLYvq^$MzT$gLk<7KL~I?;At_U8k4A>+DMZZ
zG#MocXA2yS15QZn#3EEVM^ty&sh|e<qc_`IkDO_slx_o5j}P@y{pyrD)`|V-_pl_e
zCl<kAu{B^c3<jps&AWT4_>DrG{6|V&X!sooU6Yl@6botP#iy%Ry4)V+USzmb#TE-d
z-!!6|P1%Rz!=d_U?u5#>eX*FXSJq43IOE&-sRKmrjgD%BdnqzN&TKa}fGd99vGMq@
zrjA#ps`B`PCchC*C)W)S@`43O5Qy#Ma9mU0e0Hmx(>UCFS5rZKEEYfdI7Gi3yxTiH
z8jZ&v-yiRt9vzN$_kVqVxVL|7OJ;)bF~K~T4ZWxpg4CkRtMpYl7c)W=8l_c>ZLzK@
z=hu~=OVOSxYnzgOeHxC^v;}Te&aX@6m`3fY+oC=MNl!Zfrlem#;bcNMC*cR(xOTuQ
ztGSRN<-v-b?9^Gkm)*)$-Q3VNx4PS&Jhsr%Dv~vj9g=WS9$x0l(2aT35Ek{HyNFk>
zNwpE^^A)-nPF=09a&ZtVtg`1c#{7Cu!-0?tDl6LXXViZMf7$)3N++FWNkmW=N)0A>
zK?4@|lX%)S?+VM5eJ|4Mh=_h5gtb0+;ek{swI~kJ=bjEIqY3K2CMgV)^A|fL4l3*y
z=C2#`&W{$~RzInU|EgN`8|Hbi^0GdVK%pZHVP-8;s=&SGc!Fa*UIb;3PSCxnDpuG8
z)mU9@_-F_k{VTztov$@i9D7A`N;DxG4WRQtfe{tyCi<+ci>PdlswY>@nl`kK@^a0D
zx<J=LWo4p@W#q~NB|2L{ZFcw1&z>tIB-T)*uV6?aU<R9s>Ms8ed#z=a-;nFtx)<cy
zC$=2_iDVI8Zvfba_^(?pUY6p&ZoPcS|8_6Ww`KK|W6uhBxph+YUfG4H3!^i=O1&UX
za^>;&+fWP#0ZCx4eS59!!CtZ2xC_KjD2YPRMO9Hl*BBGJJpV-y+;9Bn?U!3G3iJQj
z%k7<q`F|fzait0ZC+xCGzN9k3K_r~3beF{<<(S5)@aB=pGv}H!*`P4H)FdcP6ZGYa
z9CtUFemIKQ<*!VndsKVD9Yxuc#zO?A(ER(s(QfJ8JC)(N^#15zul!D>@N?cCak`)p
znUZ}G;7G^Bsrnx7n)vqKcM|S85ztgP(A{6(e|!gjy?X!g9hfV6Xm7N8`u?~5<Ku(9
z{f>#P6W*xyM5q|EHf7&&7LUXzzV4V*Je~q1$AkGGxor~395V(Aiarp~tug^s_c%++
z#ElLQJ6vLuyY&hJ1UaN}cBO||Re>xq0ZF6RDw$ywlptX9<cKraz9`f@i&Hu$1I@dR
z+z#tc)khkiK9$AzmoLM1xsjYy0Z!Hk_!Y9t_!9GQbaVi}!Bb|Ba`<80wNiaEEW&iI
zzHs&@2~rX&lGPsh(>k&P6y!fkDDI_^fV`ON$^+1p|9872|DQj9@sR)TUY>s;9KoI@
zB}$J$YyttEt-mZfnL(`N7&d7s8=~LyRBt`82>Mq4c~bYGFBSp%LnR5o%1uVRkz)-F
ze}>&2+HiN%vhKe{7j@;b(VMdc+&(GmRhw1SB(649zkKQZ3xU&uY<qx_9P-M__Uy%T
z6yj^(#R5k(r0KOzcZ@CBQxflvN(A%*TtL1F;0o9*s@-=#cRi+cpP=#R-OrXyaQxRq
z72&B%*O*RY63R_viM|qXF^!6SA`#h^)+bm7A*7`5`vm`$mD4j0kuOkgvc6aQW%Aiu
z%r8iK6j}Ycl=Dx)6|(^ZEf}J1!by+DBE?bEb)~1>aH!3-3gT>e+6O+m_OB&rDp%u)
z+KqqfEP)hVK1<$!FHg>quPwzMo|``Y`XAAN#Dd)O{_pA2QvC1j7Z3ZtdwH}hQK6X`
zM;p$C6BrAy$Xb_dk`hkiX&+w-C2f+(EX37iAi&Y#GEf?iGR}<ioC!J>v=MfW4JhRl
zN4i?KX@R<D+YZpy)5Q5Jfu%xy%#RSzMs4dhQ8_0@({an!X?W`<`&Mg`+K%i$tR(mU
z`0{_gZqpw;tK0vdZ9jjo|KH2w$bT!DvnZuHS%Gy|>)BJTAM~e#c*0=&#@I!cpzdP3
zi@HkoRPMOC^Ps1zg7LfSz@!r&Y)`u%$Zr!&Bh>vkI(~QX?)4D8mDCwP$U1S)Gm#=r
z=9tFF(2NC&SUi>grg9H!D#<^UHx>y|$`DrR1}soz66*hNyid~^;V7g+m-pdJIGe*>
zxvIKcOf#Xs6}b6x$}=J{tKWtCrcHg9LsIDXoCTnFC-(ojj*F&)o86E7=lP3gFN^k{
zmoFdkKi<ppDbFjnYAnCy@$p>2@%4;M4fdsg#VKb|M7RpYxw@IDErc6do0<$w73lBD
z-qgy}R7sv^aWclHc6KJ;4LyxSg?XifQ`xd_W@s5a?&y)JQ~G6s2pGD*l4#yD3=Yxm
zXds!;M+Y$qupp9Y+OVRouBI%%tns8nQzT|Ai$Zix(3~yQLL^}#DR^O3S}+<S9HT6m
zavT!5&?YARo&|+iA}L_J-+4SJ+lKt}ycI1%PvqYkdpm<!*;ZCzLMmC0iaQw`&MD;0
z;bclhs_y>wFMbsIKv4~hLJZGcH+SFdHa`#DUfu1hZwiH440>vbV7#Lh3o-2UmK4)h
ztNWBm+RbP<CJRa~^(YZT^t)6!pGd{?oTPZW`$q?XvY2sVa(y36W5!7bA&FssG9f`K
zhUguONypqV+I5`jE7P5p<%w7XPKjoIAe#ogJCOPoXjwJ^y~={Vv-3<{6TrV@aTqCp
zdW!rIXd^U0v$-P?>gi!%__2GuKRVf$Jo#|6C;$4RkXjT<J$7Fg*!hR`yw!J4<@=B%
z5xbs~I295$B+8m(ks#`K{#l)MitZof+?}h$2VS+Z?S(N>u{a8Y)x0*IwxxW(E5rYc
zV&7V_ER;kee0DAi_{96~Zc2Fp@-nhNxhZp7X?FE(E!J2|2Q>q|L9Y~n-m)tiz%}x}
z^yi)H|Nj0jR{k&vh|jf|f|l?9ws&4UeOlcA?Ywxf|J=(1`n=ippX%k=Ch+&-p>Gre
z=C=-vev3fvo7U>#%w0W9)hh2OI<69_%g}gQ(j4Ep)hl)ox}Cj{#BDDn+(64zS>xsU
zA6nUhK7D~VlCYEO#P|^DRPu%m-d*5}?X5l)Rxwn!fFYN@f5p^qbR(zATmhH0o^|f)
z1uPaUB0U@glD2kys%kW-9CMroGabyy>L3813{5dyr$JU6ns7FE?;Mqu74=kLk&nNv
zG)?cTc9&XQJcL;ne}RuZ(1*2I<bDU=?fb#+3H7^#p`kB8FD<h|k3aB$Gg`BsDxI^G
z1uPn(lieftYN5&PPzVHAx*@X0t_(O6!jj$t%D?x%tnJC#er&*XcfBb0@95<H-g|KQ
zms>xMFq%YoDmU0^#$#p2XOl@E!S;ErB2wSP>7}eU4|?QE5%_KNzcu|;>}$Wm5HTC>
z%Dnn_GJgC7(!u^!K76`hnJjA?5t~kB&zqsPW?`YhD=E=4NWP8X(xMA^7UykHmXWV4
zMgD~j6*-8;NtVLr)<fj!&eNwmE0unJSNZ^qhi^-K)XdkLX=+ZlRr9$d^c${Y=DU@x
ztvl%q97R2x&~KwJVB+EFloQF85GPbPmdX3-64MnqA)|zv#khR9*pOqc7>KX7;9c~t
z$|)y$26-=G;rF3}+u>lG>dJ!H-y&5C;TjRFw%6e=*FziZ@RnnxsIwLQ8}9Tx`c6iU
zwx9I0{o?x?G<63Yx0Vq#cBSebuLy7!lB-b$AsX(;q+vAmkX(I7o3vc`>(D3bn(0fl
z@kWwbjtU6dwa)n`S@6((l|b*L?}{_`hdHM4Zh8fAYs}RCAz%>;<f?H<1sIaOIFMQt
z@0vp6MIg&5uFKZL$%=-hg5Ug*a5~5Q`U(0$kbuP@=GO*x0o!^-gcM^MH(XL)1bU-p
z$*8y18Q$D@6k6u4XE0XMQy7%x_O5Mswxz@lN2mM61x?((hko}*g5#hn$Adc8S7R?E
zSA|fdr6H*M(BruoikmKCO=Q#3=g`nkoES9Ko}BCU>TLh`=YK3ndI1K9DY^6HI7oZ9
zcLZ%X|9igkta$(D<<kfM@B4YQ_Em_W8zd^YtiV~y^gu8PX{xn!6XGaj0c0YB$+zs|
z5l&~TUSnx=W2*6DDwpkD5;~ow-6863cPl=JBqAy4sgt<w5S^0=;{@hH4>m-U#ZTau
z$bx{7kc8^z1k(r(De_>B#XuKkV!4w|aYp&iwA5m%JR)5%e+m{`PrZKe3jl8Fzm4V|
zw0?ZWn@UUi)eW2Q5A5FxA<B5mPAzhcpW^_6q%ltauJ(h}Nf(b<M80!oIw!6Ao`@Q+
zJq{7#I@a^8=R36NNX2g48STjCxv?djT~PuqYdE0-d<=vxxFGx-3Qb8W3q(>M{o^Lx
z@z3f9kN@5fE*7foovN;|LCcjxp%N|+U9qeyv<}`gj=v3^QY^kw_dIk+iw==1Z_f&n
zhVJkSKXk_3tiEO$?d9^NM?%_u`MseGD|C&rn9JUAJLw7PUdo-Z{39`cWJxHC-lzke
zh5r{ChcuqveRn>+%kGp@s8^>1bVLTuw7PpLbxDM7qL;NC8Z08mWFoPb^{%!WOzw%l
zq=#=hng5xCpkhl@`ueR6jk+=MFcxk#7D_rzTixe786Wj3-or>)ZKM>`t#(S;cQQ)q
z^v;Jd(lAD(CfIACGPZSP|CWc#N}BOaM$Wm^VDnM(KkU5v@T`^f^G|kuvmixl9E7(Y
zW%a}QS=XM~nX?vsVCS%G`CzGMn|xMb-H+x7%aEjZHYw(*xi|ZcEUZ6pIn3><!x=JH
zsrbiE8kd{46(Ksu(~4M97u#EqH}yb%_HulI-}4;Hf%<#5Ke*W5N@YR00kd*d{xFCo
zMmnJZPKmHrViCf83j4cWEDP67G5M|6)2E$1*~+TYwxDUCotRz~ZGJDL`s?fbPnNbd
zp2s*WKFXp<ox<F>+Y09zhSuUmQys#xfOR!;T7vTKgr4Kzf=woebWYPD+FEmL{qNza
zIR90*oDztlzLq<nP4ORho^BV;e_uS^dN}{RmuJN*g}uTpOFdXhG5>AC4f$0C<geBb
z@^I>Y>Q=Yr?y(bG{YH9%ck!hqRtKk9DMKof2w$r;@Hay69KC@^6-YNxNfeunQXSE1
zrLcqQB227KP+q%b^a=1w`EL_sLS?`^f{+x04nhfMSJ%d;2S*f(A+o8_&L<OH$x{r6
z=z|~}QjP1+#H8W23ud9UE4TPa(p75qYE4I_5F6#5`Fid*U;Qb|e<k>HedP8_K$HA`
z{<IkX|Hbo%_;2^~+*1Cx%JElJ)N7=?f#6N}JM!nf^^#y)IHmDbUrrX2BsrmBo<AEt
ztN->B8vX<&2<MESMr?`(Az2JW8nP^f<iYy;g2bs%u>e%wWAw?0V7M6#b<N|z_{pft
zng`AUS>O~kb2=w|DFB5juP;uW%9m!ZlO&Pc08thXSdfymCsI!E+*G+BB*76~kkgdT
ziKHLBc>a^KWhC4ZjUWUciIMln)d&d@{j{{y@5A9A!*Wp}qEly=rkW_3E?=4~d9}q)
zFUWPF_yxJni*v?ORCuIp^i*S0T=mk|^x?eCQ!D@Ts7|+D02<`~&daC8_`ff=wjbpG
zy*#&+|2RoRuJ7;JF>`Ze|GSX>T0;8U9-U;Ww@MroPC(3xA$r=8a<kT(zqp15Y(8gk
z-znoY^F^)z-?E|043-U12Z2jP3$1*7w&|o{JrM-eh9#95u3)-BHD=Ei%=xik8NA&%
zaLuS?JEv!(y3sBV)muDSka%^gET5(8@rou(=}~cOXsgxSe7BZ0V=Nv;m-t#ZC4`?a
z&_~^rInOP-JlmXGGALx5bDxm2WQcz6jt&nUW3KDXQ$Py2lS^QNBpagbt$E?~oXi=&
z9-`-4Z>jT1<$!z3vbfCqmBxe423$ETTpl@@*d5{|e!b5(>dtM5sn*eNL{6@c<|=fd
zxX8{`;Zg}F!`|ANs`Jr%v<RD)WKI31HSV`8Btx|GbnB)KS>7Qw_n_aJwRU+;O9}@{
zo{R`%Vcu&es#lbY)NUSXq=!jeiMF@4a)v=h$#*Q4GNLf(@??{K6+cC!%Nv_ZQZD3s
zI$5NtRCx^6A{`_`5W|>EuU)I)F^eJ^Pd|VIAiU@98$;C`Uww%20@DbeM`VbeKL2<A
zWt{P;es|N|N3H%3Ho^5+fg1Gxr{(-lFJJC#J?Q`U@!XUBr?s{BJFo&3t<v{l3bHav
z1yDKF`ADQ%jkdR*?);>U5U6M{@=Qh*rlJaC4a!Y1KW_cF^;2Obl%-GM0QzS9>boZk
zK5)2<OIeHt1#%G5hZLs?76Mv091L7Qkd>isYz%+g+A6doU&Ow&;zZd5b?4kD+PEB*
zNr<Ry<f^En3|-}Vp0(>MbN+j^oc%MNhV_3fR=_6v-_Ca7{Qv3J_KOGm-@QEFoc*tS
z=KD=A{$)en_P1lmEA#Tfn%Bn1pxLB%D}&rW#)76MHmDXW+8ZI3kdH(GlL|&lLu5NM
zW)4=gg!|R(f|cg6%I4gDN7aZ|>Wa6<U1tQlt^KY=!)k0_wT8F#GxsKKTGcSQv^h7h
zS}rBxA7`0+*myMQ|0ZPT9map!+J5$;nE&(T&hrQR-@QERvi})Z%B5Gt%xF3%DfZ9K
z;Y&PKmj;yF>a9n5{wHic^6kcoy7L-oDTI+MX>%rqr1@E)e5IIANvbqCTeDZ8!4>^^
z+W->}(!T1cmH%sz{OW0x|6Aqz9}n^W?&tX`@*hXZY~2gMt!4kWEA}fSeub<}gJg*~
zEZqQc<)eQ6HI@<IIt5C;_6ayR0+Jy0>u55eF-@;^?$!rMzP87g{|RSvlFmpb?(zP|
z^X*dp{}(SG{D1G~ac8=Ux(}(|aY~NtSWrfeF6x(aBjp38ug*ffy#Fd1vzpGQA)8|w
zqv6k}+qGXI(Y(FotV;G(Nw639oT$z|oS$vBc}V5ouZ*eu13$+BgeEW33$YHgfxBmO
zfaQJ+g=Owm8O2x2oLyx#cWyYBd2Vf8?-zt~8WIyu+Yszjxt>SHJwaWSHdYo9aGa1+
zNY1gq(GYFV{V)2W#}I9A8AY5daFoFcU#_QX>73B{jqN|#`Dw1wYrSEQihwN$&vOpQ
zkEbFm)>kkx9s!%o5YWfcZu*n{zeQgxf`1D*f*vfk1`!qM7>GK7wNLg_xgUz-?5@+;
zl-ZJGVm8w0bZi6#gk~&e96CXyc%F!YNlj<3IZd>;=hi^N(MfH3csd>E61lNW>SjST
zgOzqrvUT@drq^?O6~-3QfK&}~=(F8XxS+!1WG?dTQ62}m7hqNLQQp#EM#`rEX(V*x
z-DU>(6l{;V<BpD&Fz`byYh4yAqv9aI{lM|9JtvqGewwli65j}3>RhaK6O>j?i5}ui
zqKH}O*jNcjqpH#>n)gu2u{ln>!;dMs8luxvDeq1lyb|`Qg1FKDe>OYCv7)}onm7zO
z5#sdJ1DixRAahU+orY`swH!M`_w1&J)EUgF7PaX28j581|52vjBN3HIbSFzaodcZE
z!D4$L5sASMpSHgYz$$8H(!h)~GmxvNvmMDbb9Jd`KgWW6I6g#QzN}^Xb|V(xXvRc3
z{O_&*-s<{JK-I}ulccf{>TxuF8*Hn{fs5@elS@mJ?##zJ0ak2o!xYFTLBhh)p$<r(
zQp?z7eCn*rC5LshAFAMEH7d)*A?jMj{7kM$kfn@wo2O>O<Xkd66Bbs@&UQ0NR<<Xp
zkfiA}&gSQY|KT4zYsxMNsif-1{|!GqdpK43uAbWcp9q4r1b=B0|K&yT{{Qpm+b<vX
zfA{e$b^5W1INW33T^5U!V;ZNz+asCN;ZiJ^HSC<K_eAb!Rcnv$8WZjsnPwbb;QOyk
zq&hED>HQw%D#f6(PU%I#em(-TTk++=UJ1^@(XM&7+y%$@OYL!%?0POZJ+%Al`;YHB
zJ@n?_@UYWEZ{NIozt`!Z@&3t&1O3PAgT0Q{p+;fo0YJb1(a|~6OYaj-83%jXRwqA;
zw-&g!nMjYF)BBDfhcwQvoP&RR9zPPJ__|{}0LouPmLw4<R5;QBwabO9KS(e4+vxOA
z$S&hc%)`;qL8phvJV~$jDDU)8A_tvFNt~+Q+Kn)scOWOzpCm|0*y(BShfXH6>sAkG
z&ik77@YARAX64J5VR>*l4r^a~)~@fVm;d*7{_}jNc>n*!&eqO@{J)P!<;pjP`jnw5
zi3yi~>j41HkZ8g<T5Q3sKJ!7S)cLC$1QRCG35AS-CS$WN+Ve!N5D&SZ@d%<5S_n+4
ztSy0XmZhYhc=dG)R65dX>!2py%mV!{WUO833~WWapLgm~AV<;>+vAcRxk_5)5NtfA
zX^#^sn>2wdR4biYmHY$BM^<?%J+HSk5#H(5)_-r6e6C^Fx`fI?qkN9kkB8XFQ@Av*
z=J&D*^5s9+#Mh+t=g)Ha|8z^rd|&=QlUsrZ`F{_O&EcvNxLOg36S`*)Z0sbmZ_R;=
zF05`Mj*bq5oEXEOkw_w%LR!u)>K0rJoYG!G!5^F)@)A-L7_W2zQj%C|S`eg57hq)R
zYy}v)v=2imvldDNjJ&iDC8Q#4Pl+k*!{9`UPa11t8en*(eLz(FhLe$s4t5?9Z+I+l
z(uYGtZ+JM`fqUkbAGwwD*tCvOe<yoO8!Ww*7qLzCg2OqD-MH*+;;JvpCgTIn<IUGb
zo3HS9SrV0?jcTI%FJ>v)@STLr>Cd<d!KPENl7daN`Q^(>4OxnBwFWsED$C5jpP^UO
zOtcPr{L5&!-oK{a5~7Em%3kH>u5wan3&zt?l*};N2v{88v?Op{apen)O+^44|G}+g
zsh8zTgwNN)4VoV6KJIo*dMx|GqY|$2aC=^=CPo3uqsNbYDDp)KO1E3CnV$go0F)qt
zKc^&xe<LbVXJCB4BO(@hP^^^rtjtciHde4SzZYEKsbOSh;+pgjWIc1Z+osF(aZv?e
zr_)r*hGmd(LLoB%1ZnP5R)Oh4c{4be02UAdgtw#D8l;pdD~K?iSG1rNFnvH=J6N4|
zd*jyOdn-I%%9Aysg4`e#`2J+)H)n~>vA=u*Yl6!_OZon*1cfRCIY4L;S;YXftf<9W
zfy9K#t{Zj0lYh?AG!JgPIvEArTbGP_dml?u>&XeV|2chjjs*=`cbK>RyG^GQTXBwq
zi!2!_=v}o<&EeM<-6JWcQ9}(*M9Mg61>G;(3Ou=z>QgJ|UeQ*-0~`k=YDan&uUM``
zL4HM`wE5Gw0%~B=d21ecMJp+=gT_v~s##k-K8-bCor6=4i6ao@t%i>(+Ny({=-Vrl
ztN?uz30J2smlo?vW;?Qao$NMi^0LPLa|E!?6uO|~vb`9-BhKS2q&oFf!&pqzwe6--
z6+Kx~>N?>>kf!OCavX~Z<MZaC=TSz$ef3-!ni`7BX^W@Ccs2y;`1?kcst{HvmxcZ3
z_ih?nyGd+`^~1G~t%3#$S_Bu{TSI^+oJnTPml96@VtZ>O3w#iS!%SNZovh}uw=f@b
ztoB^f#XgmIMp48r!E{?mnUWH#ljd`xf;QhU@?DO|RqY}-8@kP7*3$7XZ0~W{e(&-$
z-%Q`JNVSOkEVu1&6+7k@gLHMIdZ6CdP`y1@YAAI6q!WbWu<{UXBW7vC<+jbT<o-UD
z;<88HEp6LXdmk3UwnzV^?t3`D^IHj?P13jOS@U%dX%{A4sLtS8GOb=#Tb{{PN@Ce-
z!ZlasCe3ntEdGH=ahjEhYC*;Kzv$n1<lNQjUnXd!Y~oezS^4-=`F|Arf52I8-3~xa
z{+};i7Vm#Qd-?Ps{?olY$~i=KyXy$4UO3k>Rgr=(r{fotrL%qYEq4GZxJfDq)rn${
z<+qjz<N=Pp6b{$NHEm9`kyWl-mx7c?xGDR;cpiZ`ihX(HSx#;g|D#B^D(il&$L`@b
zUX^g04?HCmK>1roWKvh@K7Fe3k^RAOj{S^MPUlCQOz0Kr4!ZiqIGdOkU%m{q59hGt
zgQ*=kQ#N!o9XIi<>dz@o$t6~oyj6O92msiz!Dlr^X(aqR(rM)Mj$e+(U}_=z;gp;Z
zKBqDCri!g<*tWEg%e>YQ3*l?abftMs>$RG{D&njt?O~|U4%gyZ>dSwV7=FDgK!gA1
z^XEIy3-W*G>9eN~^8Y>_7`H}tk$A#*K>C8l(})BS%ff(@&<n3oQyBl9aZ+E{4=r*~
zNaycWQJb9&&)G~>$CtulFcGOX)fT9x_}E53_3CUE*Cxk>A1)2uW3Uf=DSFVVj=B@|
zKEZ!w#76GGm*P}s@VFq?r!)kR=GK_hdDV=?mtq9P-jM5q5KSnFLPUiv`G30k9lz=-
zpV9e?9TErVGx{rIChE7uuPQiX)YG8&XTi3mqgbtqmf}sty!HW}OO;!nX28vC$BDn9
zpjz5$vDEIuod_TXYRG~M!d29mr61u2i{6QUBSY_Ed#gtRt_PkUjzW>HHmrXN7TW>Y
zFMa_;O`O?i=8f%*&3Y3^)ij?nCWVz2431ntb%H_F*p)RD)7^TT-&iLpVs%KoY8j#2
z+j`Rr(i6CE`=rQm1!<H}Im5hj{b~m3%am^TKcLG&r;98>cce<V@}+5(Rf%$Ub#bZr
zhB^vpTqeq0U+TIxisE=go4Nj{Bv5VLx8sA4G@b26l*H-5o<AAtDyh<nTf3z>q?Q0#
z?lgdcOBSFUTHE!<t5LoDlyu-F<6~J<+?J#y#*HmGfkLaa#MY=;NL?=KQ0|SKRE=4c
zo4Qs@j@loJLSsNYohoyevw7^+U_I7Vz(BUN`64?P0jG(I7#6mIK6dIH>@5XvX`ka5
zPYFLYR@s%B@pj7hb-fyFBu+U#rC}}njpE6IhiJ5C;TONpX~3CalXPFAIIsmbn<%kO
zFLSkt7}M^9y+(5KqICqBVa_tiokiPD-jx;h<3&vex7P+1BAJo$TCrrCpli5Or@UGC
zhSnKP@3NIf7x9N@S<vWWb}+UPGsQa9qrec53Bs)<ua<xhy3{HJ*gDGzNU#u>jMs^J
zUF=AgT7>{x=ceNooNVD#(O66igVj5EgwiAVSDw}5zDB0nDF6jMNleQDYqzkOj&hds
zztE&v3jMU4|8;eW{QvUBpA_Z3@E}5<J%H#K9Pf>(fc;iX)%wlqTyT$+ffI~|fyapQ
zD6~bs#vm*u+oECM8F*TYQYS3xf`)|mOgz!T2(`^M1wR}gHjmNDTGe8TlaO)}q>Tia
zf~yhW)>>jxsqf~%Srp&d&<E;mucSa%)jil-fnHmsnp+xgrSe=)_saN}sL!6hECQAg
zv6K!~WCaRzh3fVvoXwMhuBoD4oa$gkOGe^6savegA`L;53edCjI*?wi2FU7EsZJ5B
zhO1AassY2^q=Mc$pn3Ua09PT?sZaw_hpyktcz)nx!EVoLM}S|gjVZJ^=_j0s*@;|P
z##xd_O{w^>Yz497Jrbk=0E9BDgJ6#<Q%>XQo)*2nm(>t`?m2#0KP+>|vZrJA(7-v6
zWmA^r(zLM`Rrxyc*kS?Q@Zs9SZM}qUq75ijmaw*DQN&g$f7PYi?M$kSyV_Bvr=^C{
zLaLA7?TR}kX-<dlnc|<aRG+FZC7{0&I)kWL-)`)jC7dp3IG;YDA8giZIbeoAm!!U}
z>lJJk{?+v~Qg;m>{#-nh-*A3!tQ1Xa)2l0CdF|V*-ryJGd3atS>!vvOPPjR-jtlTV
zK|wXK*Z(aBA-U={u%)fm>2+C!inn3VD${?r4scmPE7a8H?YjDoMrA8bm8-43TZG6Q
z)2J4Jqaj%U1r4dL>JlwT;jEjq>sEwHfN!J;DYn(ZUY|nbgIq%E-LL<vZg`^*CrdWF
z@cBPuqYF)KT(vfe(x)VT%KU2~rc0T}{Z*yiPPt_Z?q)G+YWA{ryXy5<ZepW`aI1D2
z9sOZxX;@l-v1?vcJeccSPyp=O){-3BKW-U0r*U}nar~7`_aV7jalugZ)=DAuxp`~j
z7QVp_yW+Gi;dGAq^&4{S9@5<_H%T1uYdDVXX=-{G<a$L07nZynrqjYcz7)Ij3+0}N
zj5}U1zqlaR_2;V1pq9A5ReM}42fdIKoNycqn!X{B6IfFVUsCnuf?QkerZv@7pqEnb
zVzk+HEIR#R6|6_OZ+tVu>W1^zcJf{Fl>EOlPEPaaZv8a5y(4(T{hzHDFN*PhUu-{n
zi2r*p&!<m=$DNZI6$o@7Dx_8sqLiTtrV&bK1WCc@1pJc%As{@(G)4=UMhJ6)1WD25
zj0Q9Lt0PyzfXx$}(({O@`z~0e2q6xvey1}kzm-&kWI|&SA}kP#31Sl<Wy0k8P2=gX
z(?bWG#po9tUvzrt)xpuY1M%oP5YgU#bAr^nTPoSOKIJSv$MMB$jwd+Am5%GB!g*TE
zcIA(MeT(@8Ng=P86Bl>z7>Hg*--ITjjBdUCU!4DLYK(iz|MTqSvuCCJKQABdf85Jc
zq15`<XzfjN@0i#`<CS`aGrpC#YUS<K+H|Td{rXEM3gklc@f`onVtgt30h<pvi%1Xi
zYVT(sUVE?OS0sdd7~z4`25EX-_9`t>2K69EXvA>Xr@G?6-}yGV!&V<U-^Qr4)~L`G
z$1UrR61};(blk;wO2R`L$lX8MEElRC$zC{w8;;WQ_&<{4e=Q@n8TK8Fi1mlpUf)5S
zOVK9suH)1}_RdLLm9o2XunB<jQ#{u5DRK9`=yFD4v;?}OwE?-+y}EVLYub+0Iy-Vm
zu5Q`AHP@v}C!-}J<PDEXTb-0{Zt67QcE745(F_YsLgChPp|Y-9-|rrcV#cy4gw6r2
zR;s0MwznP$lMe=|)H2oAgnb1|_}Af?#M?7w;EYq*V-?4Kg8)a-ISwug=Y6Ouz(d31
z>wk+a6Vzm#SAZMzzn42ZMg4E*#q)>w5BKt{CI8nCe)3p1l7z_y1?k~q9N7$7pOz)!
zGPTH6RjoX2!6{B?ZDl9BK|*~9w@*P9u!sdff@O!B31v#`>b7f2YT2t-<OyeU2=ib;
zlB<M?76A8EIUk&#&1G$w(&m`Pr#ghCn;|Igx=7+2{)}*vNV&67Me#8a=@N1`QFp>6
zjyUWhFF==%#hTlStb!$Hh6U=Ex#--V`(YlOR@Eebp+4%$R&o|agzMWw-CP|o*Y;)@
zt|wRZejhEnRo;{s?uW+Aa1h8yEQ0mqd@E&hv*7PGSDP$T5EibX+1!$->5dJ?^FtjP
z|4D-MwG>x0P-#Gafhgc(8j=9#i3bZc-smJFg<>|IeBN5Iw7Di-eW7_~j{Ugx<5qs)
z+Cal4IiE3hF;+?DfGzFYS+2ZUvP}Cj>rl_x<>G1)$a39+5O5?{VX9ux<cS;s0gFS-
zuN8ujTon=bof!#V^c`_qzEXx%h|xO2HeD*bUR6WX`?P#KJM{IJkLhx`N*hBTbt5*N
z(s<hSNz-qaQuK7^>C>GOe)F~fspn?UUk34cCB)~o^p|I*-;#OIYa=VXt;sytcb57t
zifL5C>NeGUH+?TJWJ%u1?G?y)RRQ#&7UKSgi|sADh-?~F$i(FVC~97;YhAR;Rx{Y;
zAWf2`ZmDB+bf&Iq0fZ||X`B)B+XNl@=dE!b8*;r7CscIH>q5mMP#)(+2~nlARyYCO
z+iLqyUKsk{^kUFTB;~SXiGeyKSEDSQ6)e&#P0t~!at^7Ts<)k%3Yl&*m^)hPoJ+_2
z^4TXfv1+DU0!%`B9UuAN$mRdn-lE^>Q?UQwWc}%X8|*(j+fTPk`G221d;VbmxsT`5
z$~j$?bZU_j$dyAloKv{h#>te5loz4|pOX|DN%flw5=Z0d$W&617b|3!_Wjh^Li!2e
zx`yalp)$cV$~ZBh9$#S^br724G??wOSkgk{R2#ER6pdpQGFq91-7w4uq2IeI_ErCa
zGAFa(AG$Pz3fAowL-c!hv5li-hPRy(EFoOm&?UUx<NeXee)kFLemL5bf8{0faL$0)
z=1%zoe4P}d98>(@F*=zMw7Y+Z$W_ACRYHNzNyILdmqtPYI-voAE)`(c)9Hy&f;om`
zAhl({QN%8lE66#q{ur_XMsN)u{7;`)kT{C2i%uF6&h{oc0co7CF{p<QQe#PXfXjs<
ziv;5|x-MZtI1ZH!-PR+2WjK-qO0;SW<Vc|G(@k`&nrA}a8-^BX5F}MzFH#kw6GKxU
z^lmi_a+VHJmqEPdzHGh8Xx*RCC?$O3>Iu5i@6gXbqeq&-k2d=_iZ=KYG{a(p+q6)Y
z?R~Xs*(G-q{nvk?7Ud)oO^%r&eanW;t{zNtA_ShwNs|`4g9?Q6vn+iI69ZSx;Ly#%
zafs%bNF~SQXMyJgVNuxu-F36=|J3n~S9kFy`uw?)e>LSLR_Ol<p1}yD0``T@%rNZH
zshaco+OHjVSsW5x<ZJaf?B>(@72`-HihF`ova}~iCB1__@xh5F&>_AU&{JN8!&UB7
z(5M*}$Pt_p`J*XGA3=#n+ByD_ZP^p;<wb>-m=nTD9FR~q?2#fN=k_Brlyv-D=z27!
zaX^ggy`o7V2CkSmdg78jp<JX!UeSql*Uz2A`oJB<jVDS(0Ce>xrvxNmGmdnIQ%UeO
zB3D$T>yQAd=k!P>dL$E_`Og`cx@|CUO^A8ImFxP(qpEf1(PrQD%!cVK@n|!j|4Yy~
zLIVD5D!Qo@fejcQ&=xrWpg>>04K_CGrc20(nlLlGAkG+*Lret|wVkOK5dv~Y5uwNO
zZKa5sESmLHv!3dNgLlmOdNd{0Hx#`u)+-{`#CkRVH0#eb>(BeeX$dT^`F1DWQjez8
zEe%EQt6PkuUrV>NUsvyf`AhJWxZhOvzS!@tuFk4_FhLX?fp9@;Em?qzi?6a^)Gom1
z5eqKfvXC6ruf)zO4AAsSTomTZR^lQWZ#h=pYxPTVRpmA6&uv%FA{lqRj27{=Sx+nL
z+`%{oJZR2B(t3?8jc9+^uWv|Wp3(^p()SC(IlalqE{TO@L%RmuN+Ue2hjEu1#ahW+
z)22I@)HQfpN$zEJ?_dVhb$dI>J{X{r_j~WPBfxMl(2T=rgoU6u?#Cn@oO5<5$l%TP
zR`2P{9WXN^1h;8m{s{yw$C55KDelqq7>5Cl-oHEizlg>WjS0&0+3M6K`A*w@GW&gn
z?2<+i5~=(zaIP9vzF(7E(#S^d_HwAlWYPwmlnx4*+)xEr5ZHt2{eNzjQgne!C0UR-
z&A>!7VH}Apm?2}#%4beN0^L#oxgA|#Y+qvW>|Pi)h%lP+Viu!1#_&)Tc?0`s`*KWD
z$xJ~E&qypXPSoa7olsaT%8#^q1i+S+6Ny0XbCp0V3=nI#YrTao!2c=|ET^H?Oyl&I
zgqAA9S=ujfdGkh6LSF`uU0LM%n4~M~e|NQ5=EKZL>$R?pg^{qrdRRGvBtxn{DTuf<
zL#RM=9EUh%{QA2cfat&e>n5wNm$=+pdP^uu3v6|X+GX?>>*x)pMg18>^%T(K-5>;e
zK0vei+AHjgGsZ6Rv0XLn!;I5-YSt=`STp_sNYO5cgV~a?576>@_M&R6Y~~q{W%H~O
z&Ejze?RtV({7RigA;wX{$*+uE7}^pNq;x@|YjjQ~U{RL%B>A#+IUf|K9C1-MX+C{2
zmj>=+_5cHN%S~;OzHVooX3G1<AE`JyY@7Y5@#x>?cQevF-+#S+S#i_FUI@9#w##&s
zH&ftvgp;0TwIs4!plUjOn|*4>^!@g#Mf*+ltEK86(5+fN-FLTYwBJ~_8e!eOTff@k
zS2R-pr>uQn<>2o|)3tCGvg|0N_AI0@k?Ts_<&xWk^P8H&jVo^BvC2BS`bNiIZM*tT
zSK?-@-&A)uEyVwX-oC>Hx*6*?*4xY1=ZfC`YRhx^Anre7d0yuN+V&8zFqi5|+~p$K
zg!7x4M~#bQqc_es(Vcg?5H@4|rn<CgA^cu?^bQxhW~|>>k1k*AYEJVT*1Fb9omqgi
zYj6*Zl#eG1#|a7C_0I?ub<&_#L%mzp%ZNG$(C3mpvw17{wz@v8-X^bRgQtLgE$_~C
zsDRkz=uMCD6_A95lIljEHxFeS&$n`gJ2<xYht}#!{9TBwyY8GOlx-Y~zJ<>DDvrB%
z-8oGt+qm+63!Sr8*WML8mF~EE8gaJsP5K5psMew^*FPLZ)?sD^=K^;-rrb{a+Z}41
zmO$jYrT%wSUIYNrT;-53^pSqciyTgkCLa_SU+w_4wUy2ECQfhA5Cz8{Q<Zp1<EXw=
z-PpN>Te90x{?JMC{;0e!q_+R=<X_|UpgEnYn~abY@DWnMOxJox$Vai#RUyCXSMo~s
ziKvl)-oVrmVVhJ0A8;ETp`ykeh&hV|L0-Xc;BL=)x}Xto8%^LF=z<DGpn9|D%%o*o
z#KQJa&CofXl4FuE>nL5JzCSU7Mr|u4_;W(yTU_h=?zVkJKHc>_ry{;K+rG*=w;Qzi
z_&F#Jl%^eDAu{e)iA3-VjYAqwR|-e~X>e#f?K;s;WSMu3fehT6{z`=uL-hL|iLd`K
zfeh^JVs+)-cIw!Rd7=yN=hmR14K&b07v#E_C)T@7Zi|}u1&j~TJC+{A&KH#sV(7e)
zpz9;bd>=_t{=ttQ|HZ_tH?i(@@OwE!ZjlJ4DgVo}tz!J&moFdUzueDrv-~d~^*BLh
zpddj~DJa!q9J92OXMgE;$~jK7L?iv_C7twXnDo=@gj8l!DHp|AXcMV)IuC;5Hjh95
zKPmbBWsumkGlO7;c`62<)W2T_s)$qKRK2N}5X<NP_KW9R&;9xT^u^1qhx||X^1%E@
z=p#*MNU%9%T2kTcCj_T(W$B#IcxqC}hUi?X&?@LA`c;YsH87r_bjAdMR~@8ZqL|nS
zLQ03txOyR18g=pM&GuHm(?RG%JYhV|Vw{rb`iUh*N+6wPN&-{0Ei83cEj!ofFemY&
zw1c#Q3Av~ACM7Sl!Q$u|O(S-WqyA$skHD8xspZHQoH+G2fjE$mbAn@0B*?@^%0TZ-
zN%#cKvGtBHgxX7hZ??BO2>q4Ol%OD+pA!xZoiGl2EP*!c?K>?})x|PEV*7x`Xr4tW
zO(1p(q}~x0FHI4_;#$_3Q<1ZZ#gbjJ1mg(DES(XqS~rTIKb4oq6OUbwgiR76P+)@8
z1er+Loc?Ws;NZ~mvtyJ%L}QT>9QM(#?2;@9mw+u7vt-I~XxL=1$@NF^<~-vei6w73
zX5R<=)QDBsD}7%Nc*98#OWj|Q1m-J1L3HohyNewJw-HeUI}jB_GEe0&;pDH3#KE<C
zrR-RWwk!#O3$Vh$Pz2_ER8=MH7|m%M>UP@PDwkNOT@74+3^<;ocGzG&LV<;9Y?z#C
zai}r6BM!E)aII1f2P{P1T*E^kN^Xthumy_%n<o(!ipVE0L7iSj3FZQPk>JQR4j~N;
zVmwqA3dvOxF`DYe!i0y-o{$x#I-qA&$`I2xZJiNA<9y=fw?{)c6wj|a$Rf{c0Ndqe
z68w+?5)#?>YA?T$7XwDfo|rT6bRtOvDL9D$=FV`8V1SEFjaCy~Ks2M%nU4uNLs=j?
zsEIC@CxU7A3BUa?7+^vJPc=D~{hGf5%5{(`1k*UyoscpJ3T5Yr9tzqSt9G(tP9UkY
zBuPr88D7}wCaEEl2?<gYybCtzM&jfHPL1%<@w<a}uZQ3}7emCaI7BK-3FFsDq&y2!
z5HXXAu^(VgCRqgiqk?d%L94FBs-C1eosJ^bv<-SNZ_@v<8UDOnOt~fksUJul`Q4^_
z$aNLS108CW1)~3lG)Pf*SMslGeyPMb-Mn6R6Ls|lHuw5KT}45+f|N~@=g&tE+>=<X
zdh1ZH635h1yXoYw$crQ@Rr2s>)E!7=&e7bQJP<lJjm7V0fUu+v9zTAJj*j2I-9Pzt
z|HBv^j(*uc9HYmN9}jX^rxL)N@F{t}ApDX`ab0FW2PtNPDWDs$`JBaXNs143pxFE)
zLS39Bec$v@=7nQ}s3<QN8yp9+j@wqKu-TFSuWjUb|M<84WAy&F{o~_<z5QZy<<OO&
zOdJ6>)kt~hl}dlk)6eFmd#be4K{|lkF^kB%*2wBA<v5*`{k?ySZZQ*5k=jjnD4@5p
zkM+Wi5*F&{zdD;|e2v@&nZS~&%oB7uBU(B|I5n5kCraRo6eXN8E;o)Ys}mNg;bBLZ
z8YWH#uQC(zN_n#jm9%bRORk}rP9Cfqw{?`mSh2xw%@(b8if_6hrESKXATY`CdU*)$
z0v?Y*)b%n~nb?s%5d>Xt&{d3iZwzj3mJszEyWomKN3+P6J?B`E566eyWjxho9A=hf
z?4|;zel!8JrIv!!nWghgX`3A_FRN#Ew^mRXF)Nk*w>UAc^+I;Bz2)|VDyA&;-J%TW
zmc@c@xS2j(XQtXuP7ijAU0NZ3-)wKWGI;m>yH^LV-;R!Y$NPuxM|<et?dbKsl*Iaw
zMh|98`4lG!3HzKROi-zR_$A=9qOXnnmETf4t#~c^iYs%R^f-wa4m;j-&AZN)J5}XQ
zp}y566h{mJ-O_xlYJxLJ3Z?z#Y#QLEV%PL}PPXpW6i>T_fcY2OTX5WRB0v4G*>S`m
zoyf8wxvIo3DzI#NqN0&IKcfwMDBz{=fb<kVmah{)BdC7AB55v&1gEnu>Mrl<uB~C}
zZt4^Q|07r|_frL#RFt5mZ~t}@cCO4IS0l>DPYFfFNvRzQlt1hX17#IB@Y(=@k+e!}
zGr<%$D_Pf8o?Fnz3bgad(CAINytx~YGOU^LmS^qCIx`k5+(C*yqdysqmGsUT)&iR0
zQ#Yhj0tq#m>!_m50#z%uUqOsITYwq?s+P#FEH<6J-HHOUdg_;2Uo-u^#@|XRHWAP$
z1&b`WANf~g04g-EweWLfK|$`VDE%sgiUXxl{5jRvDEYJ=xw4dV*;_5!3MFnN(L5MS
z<(OA;sq|8^>gdDaAsX-R9`B!w9l>R?q=ziHAY3KaS@P)!r?U#_bd*Jr%DC*wCir%m
zWKndgfPw7*Hf6xyhFPCOb%%T%P@5{VwnPgY#r=`g-xx3Dly_OO^rPfguF>6wc-U)@
zz_D$3`?z|*wV&K^nZ@)kPXN`{TGkVy#;j7{w7a*q<3PdGsjZATt$~VqI+pNLn4PvZ
zg@M<VLxN$e1`c9HkhG#*dc|-W)~&=>DX((nV*hx2Fh1FTw_Bl5B!mkpQm~1OlyN*I
zyAc+?3b2~wvmjHI^wJlCE|TRN@d6l+ym|$qu0gpi@t@(kbg{iPINl%az1{E6!#l#U
z{QUpr&d#%<|IhaJ^Oq0j|M&6y3%vo)!$$%pd48bZ?{t2*pDwny{@5^)a6=Y|+zoZG
zsp4OTIK?QU6B1kp5kV?7DEJGBYmt(<%I6bB=$d65xzkIZ)^u#9!rnO+Bt%%baw;F(
zPUm0$LMMkm?H&Kr>71RN1uPaUBAp+UdlH!cqX;Ro1{d2~sMnJc^XL3ea60^1mFQ6>
zp>#%JNR{()bo~T4psfnv1hBv~f)iRAqoW9?5Qp=9OdbjJ`0)W}G5Q6^7mpvK8Rj8T
z8H{urkWsz*ofBrs%Y;5&6GS6=qSGbmK&0v@4a}eumc?P`_Zi`&miKThmJT%d0p%<{
z$MHpfmd>M1#j}Gr<t$V{JId2b9V4DImWq_)MEFA>F%4xg!sz!m_LxOcF&qrMlb21K
z`vw}<k?r_h4x^lCNDwGyn<&A-h1B|W-dIK85hq|i7BnTI)9IlcBiimieTI7SpBK6@
z&`@(m35Rwam%-p80L@d>zkaiy(-A~03;R>XrV;4}Y(B_G9EqniCIj1;b&j!m`eO9^
z=;Jsi5MPQup5wn+4CHO1-!E7q^6yic&a!j(miNIxmf7qn`+d0P2B2OK&Yrc(h%dzm
zJY(LF>x1y;?hl_vAIGPo-QE51`1H;G|2;j}`_e`K>usP`d`bwF%3{$Pq-u-c;QrE8
z-2Q*j<Hsj7dHi^YAgicsu|5(MdIFvSJETf?2E*z@OzQ?#W<Cu<5)ti;adxr2b>_;a
zVHLY|1;yJW<5Qvt{MWzGuIm;gXQh)h4W%G*Bz3~~A(F52ByGky>dp36M-3?)hw=^O
zR;jUv_|}~teMWmk1f0Ts3HSv?JH1{HeMa`boima}xQ~N?B<a~_^l?ViVLU_HWk!8M
z`yUQR=Dc3B3Tx13ki_atg90T!zCJ^r(XRRvd<pvKxR7{kqF~BZ1yGPs!g|MI3yRD!
zjTE3bl^X+iu_C011|$|lf;m)wB9SWJmvfK`As9fkaC9p2b8L>wWaTnvj(-{L>eE9f
z;hxD5#v<iEq3;90x+vxDXLOeGOd`mS;|lQg868Gr5@ejF*SjkBu9L^mg3}3KM?t`{
z7`8IDJ0yH_CMhwDi5_W7z}hp+&**IXxdfuK?e;?~X6Fp^@O(1q&zMNxk@S-B3y=00
zL2fy8#6p4Q_!?zGO{tiL1jVYRN2@_Yu1Jujj4wlB%G?0FpY(Yd62IiisC0*z4*rbB
z`ofDqml_K$be@wP&PaJ@u=rr*l#&!%R~;=S3J_B!>4kXRF_YppeS)y60JkJLU63$W
zSBwD7oh8*BlfE-8XguXa2xsJ$Tc+hzJ{H_$j#mkjYTtrlq+z-2GvG}F-<wNkZYvLT
zJspx?&V>?6ztO4T6NRZWuWYrFQ=ie<C-><3OHb3}HeT)#K{Dy-Zd#Hj%|}pXh|Z+S
zadq|toxR@OKdWG*9E0-xtN(BB9oiuMY5xhVJbiM7=ZR8b&NiWul0dCBFDOql93fe|
z0%*pgBb?48+z-cxD8cE>ii|zmD+Zg?5zaOx7`NdLI9dPXIw^EFgn*Hd)9ZxTUNEe%
zf$Tq{vjf=>xl4dGLqiB01dgAD#F6Xk#lFU#OT^iyFAk725@wg7R}JM7EB7rYhhvz!
zlFAb6OQTOhQo6~z;y9Fm)F(Bd%DmUB@-H~JAaU5&Gq;8^5Se-zKUX!>zu<w5k*-}m
z#w~L;=9x~rL9XNqL>IYVF|1H^#F<XA)NS^w_)*iODk+qc?A!-GzpiZPhD}DQZ;0xu
zJ<Wk)d3|kVvq~P-keD#;OG~&Edn00-cnpxwV(|7pdxGw(Z3>^)I(T(g?UTH`%hr{K
z<Z2Vfik&-}F~#ZJYQoqynH1BWNEsa+Ah-dny3DpfHp{G0g(d^iM~_-yyr6MtMhD30
z0uH$Kaf7L9A*`dTs|CqD6Io>vrhfxndiP|!2jy!?;sQ*~xiX#`q0M}NMe6C+Yg!FI
zz$uQ{)Z!Uyz*vI@$hwf7$`WK9t(92*WanZz3R&Xj@FO;z(zu}&y3ozBz`nK-jVX0=
zJnk`otM7zp?0f;oT604K?ovwZN5AcgiV<bJ=nA4t-EuL0sOqMO&I^sB$m~dA=TQZ7
z<m*gjz^<;e8uThJjGPzO`F&C6Tv@iCO(u|IX~P28ELjUcYE_?kN)$)x@{`fA^vxV)
z!4pUwW@=jrpiDSj$lY>INgsU>%6QWw0Y8(wlDPKt*hqqYku>Ls$=rjp`l6xHUXXJR
z;Xolbnqd<_xuiA$beHrNAhnCD3-uSdxslrdHmSr=fT}mOdWAcs$>N2Cwy&%nX9q{}
zx5yG8%rR@2HBeh#ms~P;R(1{bHPorNaGck=87gz<SmLrkHDh?baaj?+Vpl8VID>YM
zvXH7PPK=|=8Jnw(>>g4vi@*d`rVnnLr6dlOEdbC~8)*T@$FT{yaY3#n@O(j(Xyy0(
zg7>B~?d$EZ6>#;;tgL;2=f^ApZjX-Nnf<y1a4>qSjbcJ%bG3#`Zl+8wn{X0=<7+6Y
z;!Z$}>`ElN5hZat_V#BdGb=LSrjeBxC8j*7X%CJ=pHRcHG7YNdM+wyoddK2ku3-rB
zVh52pV6xX<?;aVW3^G<3iL?&r5odCrt2z`cc6w;)53*PFeW@8XQDgNAq$8<Rp{(HJ
z-x((-B*w8uHu@W`X~CO{u>)TlMvp9`I>!ZRX-N_ZcWJ$R9Vpa2I$ARBiuD@@g(h<E
z3398!5YQ~yb6Q=4(L`gh3cY!O;Eh@Y)J;w-tVz#qOY-9{V>7P7GtSPfCI4U##)b1n
zvXsW^xYg^z2CCmq`F<QGjK--)yK|yT^mj|M?voS;7s%Yis>3tdbHS^cBM1$Q_Ux6y
zh)rpn<EaH@s8h|a0cMr`gFU#W3g&$@+Ec-?L<RIY4LB2QlJ3VT#|Iw8Z_PIZA0^O6
zYK!oEvMV62PO={BEDQJJh06|jhxX$I<t&EotDI{Kk<17uZc7(qc;$DuYHMx%4?=1Y
zYL=P$nSR%%{t*`9lJU^3pXhgO>aR50iv&I?qm(nh#D_9=S9{a~x+w5{4OJQ7p+(9Q
zHp!wWU*JUFy_9dRc%N0`1AFdS15wuKD>dLVIAraqcw04ve@<{ZJ5AZC`k?*M``36L
zot?p*WUca-HSfGZee_Z9gqZgDl3NQpscFgCnN)0qC(8pI5T06Zcxw@O=a~I>&9$dO
z|6(NT(g_4+P!1?4<r!QN=ZvM^XB~Adb(df*fXzTMMtwV&&k0=ji`Z141r_w1Mm_+$
zH^rCYm`o{)?eabPI6ghze|_-&UG@I70?3?&#2kBa79o9v30oWv7OD-skvmiStTT5f
z)H8=tdgCQFt8ge-yDW-`3erh9Wx3KZCn=|a#)tx2OzLWsg=mAqmWsup0>Ay^)>aw(
zQ6^?f0VkQ5)q#BW!UrigEKIL|5)v3(<U6wpf(|_g$8^b~0M8Rlr=Apb`$@U5Lr@L3
zvk<tC<o#rr4>|Uot%navu9@Lse$;HCspT|m2E$1>!>L2m5x$;UP{$-hzsfPcB5}Ha
znmN9>tR+!T@she_wvMlHN-puWa{}m|w8Z%qbE*p3jnnApz_W{4zkvea!eP)j#c_y1
zNaywpqmsDrYUrH&6~<Pc?6J9AV(rv67UCjp%V3%P<XG*2NoZRtzYNhCXIV;~KkLnL
zk`R7|7)KUTFI26n!yva{<HKFT)6wxevyZY0*vBy%?Y>3h@u4TwT=m~=ji*#f$=5%}
zf(9e`SG9Q^zJrjId(j}@`Ib%TP7fA9&r(=e)gB<%3m|*ES#c9gIT9qn9Mod4-3Kg!
zaHN>yAYDege>P{<2pD@*!0aDaDFRqUKbw-6D6A?th^DrP?qYju6wYZ3+PpfJRQ};?
zqRjO|Zsg_cBM{&RoC&8K#}YD@HBm$sByz%Fs*p<_3#%|n?W%xKMGd-~vD;$--Ezqg
zP_bmSbLLG30;A!wA@)8YAg^~>9LpW;Ixy*wNnBgLJ{%uf2=5Q}c5{nLffp74Co0g1
z13+tIk^(co%Zs)T1p;|!t1%9UGroZe^%;2^YuT|hp0GaJSLgjhxU>cX75tsLwb<n9
zm!!qR9racld_gdnEMz{1H)0l(CvtKK5~okJ#?816-g1hS=>XPZ|5b^QKyRm&@<jFK
zV@elt99`$VV0y_lrB${pC>R4YP`xCr32@`S0d!8=94WolMu(A!yAh^yLqs5dxE<#N
z?J*W*k)789JAz;X%JK_g2cS85Trq%YLtt5`z8{?TNl{eS2oQp{1y%~1;|Dp<ooTLM
zNyg|cg&dO*k4OvCrD*cDjiShkUlSn<KIV<1Lb*hOagmb+#IIuUB%(oDk4LCzxqI4Q
z6SnO5iq5mSp1nHYbZFwdNxgSgAxS2jh#A;*wT9prx&hL$Dxz(_#*|(XZZ`Br$zCoB
zp}Bo2Dc4eGuA38W7^Mk`#}X!bFNt-Ogc{Vo-&t`-X5=9@{$_H(aRT`Z;uN$&g-6Z1
z66-CR;)Dl*2HXi4=R_n-c~P1mXa&5j;I^9Y>p*IILN6u~p<GbxF`*7S7*Cs)>Kvy1
zs{qpnXS?^2SfT?uF<oLof{c^h5x`_Bc_f=mK*L-Rt`tli)G$yp*_<clW2t`lWP<oE
zi3-ygcu&>%<!YiD$I9K2r`lF_MbW%{)-Y_(P$rbO2VA#6SXLP<Fdy(N9%vhdf8k-E
zLFnEd1h^mY^z3X&V*@PJb}`CQwttm!70SHWT&OGm2&qtE0p+yZJu0+Y$SKU`IHiHy
zP-$T9e7A1=j+ZD96oojcQN4;b)4}21=;$^I7~tYWq?o5iYMXz;WL-H=kp5t#MFE4E
zPe*d|p9wO_B6U^^@enIC7PT?mtR`Z8lMcX{quyVcQ0D?R`vJ&mbFj6iIH>2D-hshk
z)|rGbG}6C}z)Zb&Y&<?x7I@!x#lVIGWvZg;E1%Vq!*Mka49xKbO@5P;_gceVab}m$
zS7L*{Jvkg}&*|8B7s#>r1j!=9!N3hQt+BZB6jUXZR6s6UU{cUDVeM)Oi*Db;0JJC+
z!okt6rt_S};odtlCic_@F{5HeLRic;jJmU#4;I6aT;vq_QR+~M=IEn!#54QcO8IqW
zXu1`y^0F3tYje#KcekWTW{wHw0qoaF&UpE&g8N`&1}WiBC<#Gnqzzb9+78d5PQ3z8
zmn4a<jR%M<ZvE-(u~7r~%sJ^8r75T9SxVf2GEXqKsw|09u07#zjFE;C58%_>z!oo!
z5e7_;1mL<>{j1&U=Qy!ZaV0eed*+Iatfo|(2IR2iTmyc9vodzc=rtf$*1Z*RC*WVm
zNodZt)<B4bd72-NwIK`kH@BZf%Bi$zF1g5VJDKE^sNT+%P`NBVafr^@T-r@2(2s<^
z$`QAiS1v}`2XAp2%(QjwP}|m2mn4{SC*ZJIv>=y??rva$BBH+%Huz!3lRJ*gT=hrN
zJQJzLY`1P_09*mNoT)QC(+MlE-6P8ZSwWZKb`xQF<J!}uFw2!+_CibJs!l)D%G7DE
zd<p-y8)(GJK=Hfz1nVQYO7knY{#GDlff%G%T!?{<v))Ts*t0i_2L@D6gBomF8<5d+
zZDDnDrOUH;B&4wEq9NMe+S+=8x)TA`=B|42Wl1~wwz@v=1#w@4k7qH$;xjsvP#b|-
zhZg0>vIek|9OkRBf(pZlUB;psxb>}epi?rpzQ+2<*4^inZ)jd}nrej~;Vh&nQnnyC
z$OVZRvMfa#!kjR%EKM?H@-+AEe55Q3;W88)C0W5^uU82bd|TlHEFkFBshz&Tq_Tg0
z1_xCrIH*R0FU9!T^7aX$RJXeJjXsXi_?goh8cPyhlbCQCs6Z*dK;Eq}{r}l}6F5n-
zvOv5C1SEf?uE&D7h|e5gsxT`$?xUxB-0ZBZ?qsqKGON1j8HVnt%$Hd)6&aC4L{@dq
zFgmO50t<M6psRA}GO&vWf6-O&0$u+qAfm9yu_&^-f(KrxfE@dK-+M3OMIKevGd(li
zLpJM9*2|ag_}+KF@B3Z{x7}!(r-}ZCDdjQkmn(q4%oZV#k4=E+42VvFynsCj0TGrw
z@HoqyIAm!PuU$#NhqB0OVr7S2A)K0etusRzPJ;#%^L=ES^J2v7i9?7cTc?<1cE|$h
z`5t+7Os=K?p+6Va2ueI(CqD-o2zs;y?c?p8Fx+kNdcrK$SWFQT=jsm=<}IYZ;|3Z{
zs;1W#m}>pDY!ixP*CJ^iM=agWI>pa@f$#ObB)&tsy*(H{_XU0252Mi?xll9S7wl`=
zok|RL+p-a6o8?ob={M}!bc5|GpOrXvUlR*q&&<<G*Du1Z6}W?VCrqwzH`&C|q5EQF
z!JfL~XG?lP(FoihgpnJKcx*mF4NS9~CDa-Ya1>+qG)w-CVGbmCEMy92tnP$Fl<rS3
z5PIx>;w|wQL{`Oxm^ER*e7GIdb_Xs5y?B%(Gj@`jZxDHXH_C+tOiUZ&WH?CU9bKZ*
z<)>$Z<YF17O~Ng*4c5OchV1Z2>8ZbDsYq#veE#>DCP8aD(}9FI`&~uO*W4qcEO6)0
zB9Qq;7FthZq|zcWkc`rfBrlvfs+ewZ__$fl0}&{!oCj2#$xkp=%s?1;vhIK|4U{;@
zJ#HhR^KKLnF0n*in#?f?S23WUiJ1lD$lH-Sz?9t+Vd(p4*N#P|ES$BlV%Nt}!YjxK
zxV&83Xx6Hg&D!z_aU1M<MOgbKafD0a)$L)kO;6#UJvX>_nHQVEa4ZiWvX1lXnZ6Dd
zyG7rhynoxy4KZsTp-OlVcJLB?ulN2!Iyb}>Px&B$d)9nMSl?h6?{I;0zW^c(aD~%7
z_`o>A+9=IdE1f+r4x=mDdMo$SS>xy4Zy94q^)C1CQsYh-oGB#0Yl1KlDrJ;Wgge7_
z>X6`U{H7Rnhe4Z;?In~?GU+wBpaV^;F`$pzj_8umo23s-E}f|~reSFM(U-6m2F)-`
z##T||M!?jCq`x_EAy)>9)QCG8ELiue2aN6&tf2eAr;l)g1Ad1mObBH%v*Dm5UfP!o
zS<>WAY5I<m$W3r>Bt;>Vq1u9{zofo<xiyS>2N62B_tV7wsk>p`tF{}6HDuiFa1XO|
z=@=|Ew-1aVWc7J?cu>F}A|pFcWcle=x`nMEEv0ugH!{qI<!cq*eIx2dn-!5c%Bp$r
z=8V-<ccA2J`qoPJ9x5MU1~!rDn<7M}uVbQ4>EZIF-ep&6V|XWW!?a}7MwWuktnVt1
z;h9P6leJS>hV^WmXLAGUPfiK>@x;i2y!R_C);dnz<4M=)ZQ_Ksx^b>55pKX9H}hh4
zX`5yx;FxFdi=(nwA##Az&ur>*D+e5yu%tAhfn|dUujg?T%c4<97wQ+9e8pwz!p0wP
z83UcjqcS```a&ii^_jW|A>nv7zNGf|F!HIp%uPf$2Sq1F@YKCaJssnZolVCl{tC~*
zi(rrO#Qv~%Rj1GEY#G{I9o=n`>I74U(RAjrIGLR^!O~l#lc}qY{(Tgm2Cv&ZUVMbW
z^LEkoH{0QHpewx{2H;XUo--|vQ`=}M-Av|QkB={+7oa^C?p8Z^!2F(Jz$+)xZUq{7
zFY?s;Uz`kv5*1iF_SAA+(iPY10#-vu9NeEmUB}a(&n}(SgdH4EIExP8r#{MAzxDaU
zYvRw2Tx}~4w=r;%QFz!&t<%GsIO=<WOTAm%g3S(b8}GP#UPuFM`R`EN-ob>aMQ*q2
zfjg|p!nt$vB-z-LE<>_pp#zViNU;ESdKk({_C2tZSq;J_hU%d4<bauu!}~79du^)T
za2dvR7v}JTGAu7Z+T=8wI}vs}2hNhvE@*(Gi5U->(9S00?r81}jW=*qNdwt7z#R<m
zfgiBgq4qF>H)8v4;B|4FP`x1LLzG#BSr}yA?ge~Vf}3k_0+rEn%C^d=mADD+4*eER
z%IF*=oK?5I;{}-DzLBlA9ed(JS>oQMEQfDtpGdfAYpu5GDDU{qqK{I32A5C5sZ*r7
zzf%TbutcVfk3J#qS_9|B6&(gEibLHVLdq%R)*U#-mF(%DS#mq+P2N*n>0HyVl@6E_
zJfYQa;NdHs3f|;tB@uS}!d(~jx-$3uf+t}KwZp*(LMs;8%gXe6Pxvwk7Y|w^r-&x~
z<pZEMHuu#gH*G4p-Jj(W+-LX#i4w6F2DGpj!+r=Yq1%Ayfhg>c(dZa^q@&%RwXk*Y
z^AZjSW`$HTmfXkA`{0T12hGfydu-wiW%yM_2XYwGJkFdv=m`0ZOoR#LB|z&)ygm+x
ziL~txF+AZ(32AaH))6vu`(7|ia7^`@)BKklHf}pbZrzwR1%uT6nuEhhn1rSVPt39m
zrMU0cB&>?}p&L0HhPzY5@R32a5n;Gnbpw9B8)2N#rfhCi++KSJw|AR(5N?E>CU!fc
zE0{jJQxq-}Q*B_+^*!+TuwxXec|js2X7xRC%ZU>=iLd%nSc<v01Tv8qCtiCJB)A(h
zjJmoDff$Y*H^Sg-noXzU=s^d%A8T=aUwHm}#;Tap>l`N1h-q$P5=C6ho#FO**PC)H
zK64fAkQgpt?orK=hhPUI)ZX#@4p9`#$n8SFLTWY-TwrH+hTCZ-R@)8Q*vGv3GIOoa
zY7b@Prj}&bMT(4e!eJEWtLO<~V*4?*DI{7ksu}uN%+2DTd7V?5oJC_QGgrnoEhz=C
z4$|6A5_lo|UI5u$=^_<_!-W^wM}3w7mi7@F(@Zd4Ig}<%xQQ^)N*JL|*dC_UkCD4g
z4q+$U2NLw~K1_x?UXmMpBHe6k4=BbM<sJ+fdsm`fS>-Q>Y{fV_GxR$6xYxNzejHyM
z#u(lYxlwGnNS3oi{#@$2mzUDudjc&A0UiwEa?8W@L!MyfqSy<1J{B^#FJ0<iy0id=
zFF3*xlkn2crAr8!0R<KjPkxP0AXDy>KI%?-{hnb0?#5JDog-K@T>_HhuC25<Pul~0
z<8cAIiVO{x3YYf!=iLZPi5u^3Qo>mErr3p?XvkvEt&*RN(Vj^d6As$Z2pl^+(BM`K
zx%}1sZd#vha-G%HTY0HAGCm)Lg>>=Ygj;j<!g_AB?e;KZm|-M!T-={1;K6zwp>&6;
zP-!|b?k>iIRrfMgsp52Gj-PIpFG6|>fqD}ov98ne7+Go$>zfM)*d1<TqL7|jjZ-s4
z8V216<GV0Bv`e%+s}~68mC+2r%UnR!xz(5kvBJedHwy2<0Sj9d%I)^ia3G=05bXxx
zKI((^vCXic?<VN>UPy>Kb8-!Kdr~iyI(Y9mS-_1OZWO27YLR;u(^Quipi4#{ia)?(
zpq<KKFs4+vX*8_(J`zjh<v+_Zb~9(zGblIrpf*=K3}Ua76&qTi%g-EME;<q6?uknm
zDyt3TMv*%@xvR(*vmtH)pUv$hauiE6IH*)c^iLK_ll~3Y>`*^GZ5j->eXpJV8HM5Q
zQX3C;N_Si;TuP<pDinn|AO_K$5_ovHP65?rHo^{%O9YV60yF^0ja&&#=1QHhDEhO8
z*Tv*~C#jhcmnb6nOpI@PLC4$kIz!hN77Jm`5$=b3{5126Qv0))M7GDOhSY-uM|-Y6
zxvnl4S3#RzTalj-6z5BWkj(synjFub@<9uY1InFpn7m#PKYs3lgbc%G7$)@~)vyId
zwL-p*L4P5G@T*WLGLmWJNys9YX_Y95@Xru|sVW=nMU?acYKqOpl$zVq*Hhr_hoiZ`
z<Ms~j41F)?E#W;6ws3q9c9!^9OM?jGK8Tj%H}Xape=)0K0|k8*S-9q*5XOTY+{cmY
zkJtGfjPGjV;(*@+L|*5b*(Ti8q~(}}J1veD>3%oPRmtLau-nNJaDhtOL=Wp><OKvP
z;%s06R@3iLZ;BDSr{ri{Mp)`eXyaU!UU{BE3sAQsa`&NO5j_(vDCpbK^o4==l_iBB
zo13^`Wk>@za(y5BTLTC`&SM)<8v6vR$ux0#K@MGM1t9)&o`FO?u{`A5o;uZXxE~yO
zvJUG!Hk}}e4xjL}AGUW7-rzRra@BSS6CSqB{FGO|Pa1x??8W52Q4_brJsgds=MTO1
z?rPY<(*zqK+Gmpvi2n}pABu`l*BitK-)cb;MJm<_TVqK)EA@>Qtq&G<GtE^TJmvM(
z=JL^J8O9i0%7r0cV(C6^F!WvFc96Y^L*^Hy^vo5cLZ-=th17R1S2wmU(SjVPy0OJ2
ztk>H~SY2~SFql{oHzAHN!zu_aJ_!|L4{#pFF>`&VzI8A@9IYBF+Qr+Wl>hSd1STOf
znS7<I0AH}U6k1N;s;{R2kKw_aqlq_QwsqvScVl=HFT(U`(S3IWDJIO8rjOdeRji9f
zZr`WHySyMyu-l<EvEY?IsB(EpDy(=BVae@qFgiXUw8V!1Er-?qVmGP%(M9%X9vOL&
zKI}(67FaQe69t6w6}C^HY0n_iZevBWdDqFu3+dB<%()N{I;B%@yYWr|Asp<*!|gah
zC&yNZZpj)hhQow5KI0i<FFq=A?$yWclpm#URmM2UEOu(#Q`a{Ds*Hr{p_kz0Gk)}h
zJ8`JzR)5f1kWh=16&gI%A6;Z0CEsh)g~4NtF^0P`j$lGTYaSS}(5fsFwGJw#yM9bx
z_!1h>vs&wG^vDB@JE`Tws<bkcptV~I^g+PfUSjv+E*_nF+5#)@y0kB&*j?JiBk9gK
z3>FXB?onRZ6sw4zdK#UO0-;VF_pI{wc(Idh?1uqO@N&_Bl?9(t6Fg`4^7lf$82MqF
zhRgyA(llil<fa&^i|20*xUuZ|amedib;LM4@qLGD0fbY#q-E7lon)I`@;bKwv>)!L
znIDpWyNb+$Z2<NU${Yv3|4l#V-~U!+MVr6>{ZRZP=MQhHCYO^3YmS4@-!v6-;{A8c
zlIQ3DQ2e{K(%P)8q1xIq+G^FBs8O%h)><`GIn%7wR%>gU#X^z38eR)JG@G2imRso&
z%bXa)pr!HmY~8eZ8z=i12kd65jOsyKDkHa8SjN7)??xC^!)OpP!(*XD`;`{Upa_n_
zAzCQ0$uMulapG?KUcAG-x;W~`#lkS?r0zBTliaJUt+1QGlw^?Q+_lSs8xxfkDjgCL
zy1!U17QCSC4?Da>UN}ssQ;PlqCZ+k0VL&6}ViaND<pptg#bhYQ3Zo?${MbYKz|H_i
z$p}TndWg%Y<Hb+|5l1mP&R(4(BOVv#gy)|3-G~f0f)P8oA9%@#Im~Dl=BSK%L<@uH
z3E$n%ylJlB>4)O-zL3gUEb!ZaJ?xK|>yg$cA-f@(xEJuElcn_Br4m67hA}l%souJ_
ze!fv#K2vL<`X)MCX`!=~Wwd#=hSoPW)|;DKYxT_wXmcGkYv<~<^YBfIXl1m~tgknV
zh0S$D6yuG}%38IC)>qKx*?KGMCvhCD-PAg;BdWKGh1$9La&4_zTSliZh(BCjKfl&k
zuPoQs&XiGged7XrsIRp)D~(2d?F>TeO|;b_pU5gHnG_4H^_9)@m1a#s^%ZnseG65Z
zWaFEp-})LlT{~N8tdONtP<4HEqq26P4BeWwjb^Py7PWb{vdMp0EL65O&#pJ?x7C&j
zSWeg1D7e^f(^;0+(c1bZ-5TjwX*AGgt-0FbyDk<4II`Y+i*$eK=E`(uHJFI+r;I9V
z%V?w4T&=9t);1d#iiPD`qqdpvC6V)1B(z*xsjt;H>+5SR+M=LRg_h613wOXx76x$%
z^|2eo2%eB8n1tIqf!B6@g!=<O9ATW&5R|bC;Z5^mA*Ekl)Hoi}Xj9N@`6B`un}I9F
z^haQkQtE~G-f^+OCh2<21|U=uVWQjfn<`%0#Z8cp-8dn*K8V7Ek_5&4Fa|TfSm=gP
zvO~QnUYv131{^g9iYAT;;YS=6E+KYWO(l#_2+k1bP(~TYfie$-Ci{aSaFl`XCQv_t
zmywOj{JDa=*n>&*@;?dLfSd#Is%^zW$^es{C>-{f^1tH-0ru0jFfCP=;3%Te7OAz6
zg4m0Tg~2dt@3_QBWc$`osVcx2)dPAZ=7mAJdC1NS*xe8EvL2KLhO}6DvB1u_jKawE
z$)fhWm~c*j!S)DY4~&|DOSmZW_JN%vAtWxMSP)hL;(#GW8Ep^K+Ici|i*UMfS{I;<
z29XC@gTgAy{7fJpJ?uqpKQ5!xnMH;L%Y+K5%Y?~$F}O`~2v0@{;-R0o0pb3;LAbxP
z6Yf*_#$!GhsgQ-nUV!7cjJjUn25kacsFxmvonbpE7CLwj`{95J;%u=JI_N+;A*P#W
z06}grB0?pD7SIHJDzl9}s9r+h-F5@i!F~ERe1ge&cuAbnWrW*d)QQo8vREwayD^n=
z-J$P~V5@+nUXqH{aNGBKV!go}nS#Tg{vs|G7?unp3^Iudeg5Pp{VrYS&1gYgBu5O-
zbhJZqE)?<jLW%{B_CbjDqcG@ohdy%KX%WY<o!^WWv_+_zyiK$kVPCW(?i340+ZA)C
zBs(6|yC+Z;$Qf!&?Gm=v-YFJbl<oRvvY7>akyibn=?*wZ{1IYEkiCF9erjxC#X|a6
zDl5F0A;@%kOaaa4Tt}sx`jirPFrroGJ-`bxNN?zM2r1<rdL+0zjB!*f@ULljEPH7^
zOt8R@Q@28n#bpA5Rhr7U8(XA-P^m8JTpL{HYJ$$i7d>zj3`E$$vDXW-zuVzp#MHB5
zA&J}$?z_=$Tt>4<N~B}x&;1N#)CVrcl|5hp1Xz^P57G>QmU;mo1<}8P5dud~G$MF#
z=P>f(4i#a9bm7?d!^rP2AegAM7IttZdYDUZurrE53<G1O*(aH->C*t;bZ!WE+a3{O
z5w&PC-Z1c<Kg0z0yf&5)nJkN;2=|H14<it$^aRs$gM05{fjw%NK8;U0mD4{Vk0(Nu
z$lGDRPYb=mjX_T2v+Y`_RHM3hwqv$JdSG3T1qWcay#sRC3)%^1q)c&$QQz$logvLE
z%}|eeXS4iMCSyCI?2d<h2+a|QiO^inji_-%s3eZVwnyK56I0O3sEgfX2!YyEGsrX)
zcDdO`Nk~tEZI$iaMkRPWp+#j8KPC={m>*jQ``#XAYJGYf880QfD;B(1RJoWRkVa+4
zJo+yr(=pM<tsQqv6>?B%gQ^LFu_&M;djkOu7e`dG@or`0r4cUMJ}wsvd22F_!^<mv
z`I6mWrtxcBx=O&RE-^w=kTOtmu0O^~6d9Gq;R&b6iu0tf<#<%%1|dfe5!T#N&8v=O
z7zxZ!fsG3roqBG?LdKf~%Jkzf(|^fIY1VOk2s4$6g%t)VcQ5oh5EB!2Q70U3CuM%m
z?*%EW(i!6&vU(PJL=}lmBH5NUK=R})?`c@d0j;3YwBK={w{ZlI;H3a(dq_21b_450
zonnCqJ&$Q(Y~S%z(UDG5=2v=|mI$jQvSsRWRa9d6+$ly!m{Q3&DpA~I>m{;1Mj3x0
z6ipvSfNF*b(MH@X->x0T35~O)v!!QCDJ1C7<cN$^n1tcu6AiM5y540X+}b<jcYPP$
zj)fCug13zNUI0vo{TW6m!2780-Wf)OfkAUDrN~5f#TDl;@KZHB-ExZk0^?`Wk5gXu
z%6<pKY@CF`ZWmsuigPS+!2BRlo^2Kj2Sa;=+O*u1;Fsa7#~;B?yG$SnVDF}KMbS`c
zD^5?D=%Vai!X?(Bn_$i&c^UCsQ7pQ+OhYLnKXf}~7Eet;0+)kjW+RN@WEc@aHSpaD
zi9!sBG#7@bin(cF?ZtwcI!n-*W@T*?to&xJwb`s!Q}bPw6jTcm91S93uCT+B5Nc&Y
zAa%pVViaLYM5#jzY#Yu1Ve2BFLkpRpr21kC@0_$FI}~Od#(09FVhs1o+z`iTQqll{
zgaIxVAZH;irw+-K3lQ?5h_YDb7y~}LJhO1YY-OIgJtB<A-$~>KaTiBGbPM=$8xM#*
zCDcsk(a!@M^@(-VA+q1=(N{Pbbc%%xJXAKc*pC&R2%m*Y`jf>ntRn_11_v=E@6>$7
zQNLK=7%rkI)wstn%L{lCFR@&yX-x>37_>fy2N9z2Qz)Zh;6s5`mJiDm(>5{rGK}CG
z(9yyshUc3*#e$H(yC_k#Q&B5%qa<@FO9+9hIc5V;$pY*}C^4Lq`keb03w*3u;v9Hr
z&N0iZ8xLwc($^t*40G5m77V7*68O<?SuAJRMT(00VUX;^xwxN6H05>;RjhD-8*ZGl
zXtj2_BK~YHW3kMU>=M36aDorGK>0K|8{o~0=@hKc+P*uYRTY?i1gShk&1OsE^KFl^
zO-QKTrD~-hAE}EyOv|Z|)dW)*1rNL^=MILL!oH7oT>5$`CO_ks>yxBP@rGA71UU>p
zk9loFvbvnJ4Ng<=Naf3oviI%Xc6$gKCM`Nn{eb<!xUT~kMOsc8m=o_;X3`as8`A0_
z!ZNmiWCJ3@y{J9x(?evrEABXgLnaJ(PKM0T$FAUN$$8lF9)Z+tICh-@r!va95~wsA
zp$NM%;iUUJZW4!hkD2hQq@miL>kp|te*Z~t$Bk2d)5)(YjcoS7PR7}El!T@dBh_aq
zH3HVs>BE4<?rSpYxTCmC>zSvrkJFv#WhfIp8#onM+4}@t@nxbRdDL4%SSpYFWoWlh
z5}-npCQ6I!fEoIw%vIbgF$Q6w+d}n!amT}G5K`UgKwJr?oXQdL1x&UF178peIC&s!
zVS=$dV75>!q<mqV9w%3vdOFF{Cl+2TOj$WX48DYiGPXH^8@X9Z%*`2R_MNy5N=&KH
zEKeG*v<J^M^?kPKF~^oF>FFYyg2E&rRHNz#e`Mh@1Sw~F$5g9RylUZ<^N4VPKQiS9
zYIlw!O%k3!Xu(?qPgxoD!;aS-m5B=N4ia#I1+fp583{DVirI89yh!Zrfx~Jyo)DYV
z5G@vRp2nNeg69!=w@1z%;h^UQ7)NE)!Gv2wY+A>Q-8ja5qLPU-7YlBZVD|iB$BQA7
zmI~s`eLubom=I=!XAr4j6l32f`vk2lzdNoFa`zp5HF4Z93L`YJt-VE}()YtXu%E#X
z7<o8xqY*h2C{!FqyxK~taU3)x88LNtcRT_Uz`b0`i|FwMCgA#`*oy@<y_`9Yvuk9c
zNC)j5@Q5zv?!EI0S01~-ZWu9@m=LjGvik0R%>2N;q0cV7y#P%b0pNDYJ#ok9qxXC{
zI546y2(b*pAbp>kaJ(%h^9~FR$VE2-j~^8alQ*64ORD*&u+3f^6tsnLg5Snq%F(s?
zS;_%*1jC-02P4T!tsflDK*0bCQEuE5K&?zj!pTBaCHTamzsX0KjyZ_^5twtSH+EuT
zdeJ~E(Rl2!NE(4VK}?Iq!sItR7Y}an_(~8C_Pi*hrc##LLAy;b1~=$%Vod`?sFB&B
z-VWCbsCTx#1D<V&qX*BLo4Cb-0ASLX7L5d>zC&vl#VEi8?_Bnp2|vo4;_LxHV(4U{
z^ls2O9zr#1hDX^xGPQ$Jvqwv>k^eHJHPKc8b{$mVh|w8{>i}@TE5PH(n<`?{SUo5R
zCBe^{-ebn8m(6AOE<{Wb{ORDh9eLXn=*ugWX0f0es-&vck|itpg1fk&EP}js+f4P|
zhKq?XfND&Bmp%IF?RmcE2FUH<pgp2y!j{yMiUna$Y>b#L{GgR`uukbyEM%VU9379j
zv$Ob}G5>@c=Wwl9&}~$eR-~qc6jf3c6)jZxdN|~1eHZvzAqFoGa#(f~cahWU3hv;@
z^^1iH*=I~G)TY4f7D_9XW{HmFB{9KNf^1<F9|&S_et|0mfGd*HGA5FmyBd~p7u1G@
z((?LpX)!wm0kMjOt8xlypJL$%r!eUx8ao7(o<Xsos+MG_vdY1_yuOT9DouEB-Dkg^
z1R(W=X%cE}K^PMKOF`+s<t%6!92S!iVU#UQ`olhP?|;d8#OMw17?K_25-aD!)#BlH
z-%HT*hdAQyYa$_7ZX{HpV2{F*&y%`qOb~<)!d^S4oQdbNK-L7U7f~#*M`+>U2iHew
zx?X=I?U620JM1q?{55+XE|Fd%kQH$ImMm0IkyFhwo+k4UT>SaePyro`&A|BR5_`8i
z)1OmxNH01g?BhL`;C95GRfggK18zgm=7mq(`{V2IX(f#MpSbtci_?98WW-{D2kTHJ
zBhLF6DZ7UA&fw;IgrT{#o>SOmHcFb*J%r<Ple8Mc{{Fs1L)PITQ98~N4?0;I(CY5v
z5Q8h7Z7itsNr(t>(L^++eK2RA@25U`<{1*DO=k?#setV8r|*4#gv7f~`ub`#p`Z)*
zO+*<7)aHsED;7+Vml<0z92~3=gL1;Q&MT{UmuI@uxO)p$;3j-N2~jFmGb$c;0J39}
z(1cC6;|jNPQ~ZYc%kDCSqGopM*bB=Pu(v95iWk+e-ycG3X0ebGRhu_vv~`@mXLXz<
zG3+Yx5=RL~U8FHeZ1^@*X+*uD3%(M9t!}DzP;y~{AcifsXfB?McD&vWj<PPC)V68*
z3+|NjV4+)Q<#B0*2owsSraBFXI*PSUjy1b+bqTt9U5GqM4!m$B|I;N1ZiLGU@}a&~
z*{rXx(XSLhT<SmqRb>iGWxn{?3@YPKWkzEl$KcA7@|Rk-%Yy%wp?)%9|D@v-7kIIN
z-N^UoGq2;m@X6cr)H^PzRJfE;grPQ<7tjZCA;ge^X1Gn1uz~1z7-vjyW1E>$8M|AE
z7tsP}%OwJ`(xSv3Af;EMMBE5|;?1eBMB8{2(jG)!Os-~o#47`lW6th#^2;FL6KuJG
zJEHmq!P)FL8NPHeksPy+I5m`n<1H2@{bw;ZJ-wjqb;d5Na`?e<l8F8|p~p(=p+K`L
zsf($kNPj%(6v}>%a=+FV%hb~2LDm$RRU}-CNC?%$z(%-<?)P!WgPY0><0kHn_`=ew
zaPfMB+5_zE;7}NUL0ROHaloBJe~%4T;sJBRfWR+}#Njfbk8uJ@Ru<+K3wDRFv@%5D
z(L8Y%4RAuC>;-7s4R)j9ARz*DL0d$VK_^|0&fFy?E%JiB&>sfi6G_J*hmZ}##4poR
zA{@89pu-;jhv(MP`x_d>J6h@z0$<RLMdn#v&=*nH_2@fXP(jv3eU~sk*GJnC1P(Di
zn>N#XH~J>7$k=lDn(E~qKwgvSj8wq2u{QuEoyAZV3)Jbu^qx^_xzZKDt?+`em@dH|
zv2SoZaVli5<Kc(-kUm|~7`KDv<PdUe5JJ5}k5|-+iiL?<xD$k#Ig`uabO8GVo)(A^
zRJlpQ)W12+T1^v*MeOeknJ>g05j14ZKsO6@EPZo)B~9~hk_|WZ#<uO8*x77wVr*>N
z*;pIfwvCN#oY=PQ+&u5^{?#?}nW_Fx^|Y$0tG@P$<ClZAzNBL5Nc2%Flx<K?$SJSH
zhxHIcLcTG-ur>J*(3pNGeV#S&9ZP?rI-B>ve<?xf3s4101v%+5?8cutU=4NeBS<yT
zf&}>l2pWTDvYHQH#wmm%;1tih1WqXliDO3y5MYIdzy7qg*r51qB}ksZhP$%UZ!7(V
z#lHTei@i=~n)GCKPf(pN1FWpm5Mp4tUXatItl>dH7K9PlW5dGmr?22qI|Q~h>Js7f
zrB;5mD5Nii!B~^^kZA_`JQJ-XdbDP_u?mgmSCP0kjWW<hgf6;PVY`<eGL{8o%k&t>
zMnAy`7?{BrSkDJz{!=13;#jMsrDF>XXl#~L<}SRb)~6Y3=FmpCq~S_qN`OS;r$vew
zO_FmOe$Uy(B%<pY*)}OvV{jcou5u8>@Kv!+{yUV=<&Fdi-P1@^Eru8z4?skS7eUH^
z_^8SF%+%1g_5J1(E^G2rv2YwHM0?-MQh;bq>R+K~geHRS?{bIomS@waxq*OXj!f)g
z+H4kd0Z>XbLP$iAXv~j&J8lAfh~%)kbP_fVS1kRw?L&4+gjzltZO9yK_z<B?eDw=l
zndzUmxnfSl4jA=z1_-16wGbQNw8cRYLF9c2ECqY_J-lzVtz-&m1PuB5$|Cdkjfr1s
zGV6L>^Eoc2oJMV#@62i^|A;0`uK8Kz=0<*;w6JV<phg+`lBc};rL~gfUF<j5GFo)Q
z&$`-}?nyEKVacKsVjz{ugt&}c9V!VJ$%q;6u8K{a@;d1*eDdSRPd1}5dQ!)S#z=nu
zMsBbq-r4-6;{hXu(D<(4=Z~^q4JvhS+J$D13}~hDW=uR<RX^_Q6a&b#jzdzzev*xn
zPldGHtk=Omg0Eqal<dPQUK;2Gqs$dRxuVLqYTZD1AXq2M13D#`CSla`g3iS$vt_Om
z=JMH>qi~{O5XY5WQ~euYdECK&X0I?}#l<MijysO^j+C&-^^t73-{)@LKh4LbPnYOG
zOk_a7M`MXuGabAu<*+#`g!-GjC<J=uV&8>B+2`Dar-$JFTxUb189{P;=wU_TjzXa7
zuEIsgcRPYEWe{DD)qkO7bsWQnhZGM{RGQqMJlnpj3)Ev~6GSL0jBe_iEXi;;a2JAQ
zVYyvJ&Ci=HASFM*$jxeo>FiD5Ou6o1LmcEv**EG@H*i7w9o7~qBI5xeV%1(N85=a+
z8tq9RAwO)MkNj;A4NcTl;~+SOPvj0btZqUA%2}Uof9QUM@X<dJ#(Xowt}no{ps`1?
zkv1z-wamp7!3GH&r#AB*T7Si5aX><XWg>=FhncX8GVUqnQ82>t`%YKxdb`nbr{qlE
znOaoY3Z52cp$UBnhqyV;PkU?=N^st24>LnWxAikUxLgitU=bq_wC2rUrg}v)<uF`$
z!m1;|7-g~c{++~BI7Ci{#W%RUMxA=*_wz#(-o2eUed?dLsibMua)+YeB)arOZ82_n
z*O0AKecz*EVIG@m>}^8wLS`thAMFC#^spR5U&lH`^#+4t!rGb7IXZh;DR`<CU@?h%
zZo8oMMc~L}*U`Ui8A@x@Q=@t55bQzgGoSSF2$%A3o1w5o)_>o=G~P3bOZ;UKXbuJg
z1>tz!_6^r=hZ5f|DsW+{dOoeP{vJ^!Y$jn1Pk8T%zP&PXOEY9$l01cZMa9clD3v|7
z-l@fDHBwj6^#_#hKT+k8LFIa-Nd;_hVJUNQZK+;Fm(ZU=r@C=)c1sMma|C&=4<6jX
z7skC7+E`~1_NJ@Wmm)tTxU>ExQ8@m^`!v*tGtm6u%u=7x%Z?pWgy+DMRP>3)!^Y=|
zI_`WBDkEmEW&)MdBL0mXO@B~0<;P@|e=oH%8Y{fKRLURvTlMJ;3X<QE-432&`KQEi
zQ2ca?fsZ1yuKlFzY|1!7F+t*k`v%~|x|7}Vm+Bz0Tx@01qxv3)5MuIXh0+U>q$cY8
z+3)Fp*Bj%3VbhFQMSgg1<s|LH#egZ1i<>rH>=E{aMueHHQmv#`Bv%0s-gui82hCsh
zo?=hX)tA~5+&_DJz+R27dJ0)gBXuz~ME<^5c-J>YPO7C%jN;xh&@XDuOB8l$S~jTz
zpg7cf!J5g~!p2S_`q8&9(0yd{C~L*~-^8VH(`m&XQD(=r6X~UB`Q!|gDEYY6ccyY8
z35anj6L35DzoLkcgM?^&1M61BdzAylys1TCee}5^8nbsulEwPi<?n^WfTxj1e<SHy
z{2W~b{N^JZ!z9m|LT@+01tgfuOmHY#Wakh}KoVlSWM!;KUd;koUEq37Au*@>qKwrM
z(E8*uGSlCntCA1(cFSmz&-@p4Wd>m8oBZ76hLML|3{hM7;eymkwqaQb7a>3XetGzr
z-?6)ZIIuc-=RJtVSkewYHO8ru129NW#QyCKP?VM5p!{BP-y3MpJCqi&)UUgw;QK9c
zlj_BFgcyd~Eo<{jD<Wz7$6~0%h@bFqGXf?z?7C^qozkEpJ=h_bB#fg%Y-^DSNj+lk
zzb0u8<`*eWeR;-cK60(27Vl=51wZQDZh3S#4g;!800jIb`2+iAXW%dK;jGLxm)e-~
z^g`~a(c!-(@5#Y1c1lR?pvUY1wb@Yy2<Ci!l)XW;-LzL5=CihQqaTW%e`O_@LvC;m
z>k4vdI=THvrb-t$IcG*a&_@sD><<1Oy!>Y(!2$lP&Mr@kfKm;LuseG(f!|5Mz1OS{
zQl)ENm|pRC0NrD%Xtev;R8})2&pg*RPSiJ2mI;{VYgjgpmUPPaG;1?rX{IMmR8HI<
zKs9WLofa%Udz7n6Olamq%!hL>Iu?3MHBUIJ9+rqvR#jUsEYMm4>pH(Gm#LgDtF8v(
z9{ZI5EwjqiEE!0Jj-WO18ZEpFbt~C%v6YrV{tn_+<^vF`G9AzZ5lNPnFR6{Jnw1>o
zrgWC+iJ*H4?^_X^$~mq@i%Kl8ubJ+~!?|41JnwJi!65JQsEK#IA{`d&^uoeo(upPA
z#LEhfDwzePm^A!En6_<`TPb-HWy1zN)}Rc>zMoU)hFK1XqhYop_S4oIGjoF%1hEv`
zX;f6Hx>BjWq)GP6inEz>__>-(v2t14mN7P4wm}m}nWOlX1W?)7FyH<U{fU?Nt(9ec
zUDLS5FHCs4L=VIA5n7%3UzPKDNK!~>QTX^@Svuxd>in!tEhjX+<qeL$tVWulInv=F
z^?wF~fAsyBMNgz<P_g~epn?)rb%dZk(v$o;_r^z>e$`7b8^@FCyWqtk>1b$u_2%^m
zJ8wz-7bM7FFj9^a1m~s4@5?5J5nJ@nZJL%gswb9at#z6_->B(Oj*m?$l>}r_>wp2{
z>PA@b@P@h@;tu|Ao-hmrl(Pmnxi7fOX6N|A_}rhG1fhW!k;LCL^z$W9J<cJ@su>p3
z8&6DdfQyToji$CU?xQ6S87n6e`Lq9i72S!goLB<YVPlATW+Vv0vue+ULI$yNzW?s_
zutbmCV10&tC3S;qQRpPS)84d7R4ml6onM^9fcG0eonZMOPEw{*xQf`nKf!v2M#@F-
zl)T5BTPe$8z&h%*)hW+}Daq8?w4l$gPjuvPI$e2r=7{RYJFQgBB*fR$`?F#MJX)y$
zei@GwL4V<|=z0UdS{nCR$78a{`D}qgu)pa+NNMA4m`LdeLdZ>XBI&1lDrH*bT96Kh
zOTr)mma9B`C-chYT1{swdvk#%1AT<HQ=F~|>X$nx2^-^Z$H3&+^93`U*3pv}EF8~5
zbuiaOi9#f8vwR2eUy9UW$^KO3u*q6}+`hGTMLtnh<zJuHLJZC*QR4Sj>)yG*ttJW|
z-WIC5xX3w$Cb(f%k$rf7XF*2?*>Kp+AzH#)PAVldoA<_^C{e$}WrZ7KVJ)x=R-?~I
zF|)AZP$`|HXP*0gn_uhiggFpudA1yLRO)$cK*Za+wW$r-;IGJzQ@&3yYnDS(KLU8*
z*8<^|4HG_LCVLX&8)HPXDv!oh#d|)!R;^vXqo^cblfm})NklV+^w9wdc9KCqF5tqX
z6>!psPF-)+N;M7ph;&c}$Dsp)Sfb{Y9jdxp5+^s`<Xo<BB#5Gh4<haUuO{0*TmfH&
zleyeRg%!u*No9TGeks*pb7^#K%J<4#;{DW53vuo&kbLL4g>i)R5iO!g#ss|TV!GIz
z>caGkCSnyj;~cHLipFw<BCbxgYIE9zrsjQ}D*be8F}_`Rq_$I;7<i8UReH$NK5-+R
zS}Q7l)N>Bl)rlx2xaVmyw)xHayZYT9dAfqpcoefavD#lFYAEFm^?p9NR&g;DswO1k
zyZYZ#5Ty{|>ndvJSWj#V?i={=6(Dt@3(IRQtaga!^u}#-OUttsxaDpG`)MPc#Emhw
zDLz;t!=akm`m_r`(f-+`l(}q;jhgkdzkO-V7{oAJMB|FwtxI8MtS_OrJEQpoGR`So
z)B7LVb`b+d+d+(Zt&iW(YC)q;2G&!o6LRpqkV^FqkJp9)g~^x(7i=Bsr|zC9^S(xp
zL3gSwYsE<J9_1ur(zU;DW|ZTvN(o%WBAP-AHK-|tTDuK$16Ug2+!N@%3H;td)t^}!
zV772O*zWux&$q#>#7l4<=TLfMZy0$$=&H{VyIY}iL+=)UlTck$Vc(fq1FU0p9uF<G
z9k6|uCK{863EOn>ii-KD{3b8F#_Xa~`p5r%#b)S+BI}4Wd~QJzM?rpN|1DghLtW%h
zE5d_fJFbh5LNXj3@QU{2+^_x&E*`I<LQqZuvU?;6OC_c#58>wc_l*@_$=9h?NMjt5
z4>liZjc&({pKm_G0j|b?e9t{rz<x1gOM8m+TWfNHM9SH=A6Dd_7kfB(e0)6){?cxO
z3}uiG4*ji$Z*Qib`lZ5>+7ALOJ;x;hsI>71af3Q0=bY{UorapbKOYXg*N@t|P?jj}
zo;IE;!Cd-ojfjL*<LX4^N#CdXU6F709p7e-*lf(^JJ6BE7fB?iCSw+Y2wKSIkiYTM
z<`YXQq`HRkbUW;emC7c0p0-yVBAe4|z<@;L5=3F$#9DOG4tEjjNcx1xQ@F$a>4>Do
zVpINFz#P?berG;Q*xoMjX;tq|hVl8qmSEBoZz>hy%|&|{0DdH!Y8<#uz3l!my>1Kz
z3DRmb$UR5;gQnr;gf++1mK}7MvSpGT49k*oO0N);;oG;~g_GF_9x?2l<d^a<au`GR
zVusEIA@`nLUSt>-CT^=Gt!6E|?9_9e`8z+CxZFu9<R833n!Poe<qfzFP9KXU@3PB_
ze6u6azh~h+C~Mm-!z}i(RL=ubXcuMrf@bW<?~6+ss(pUU9)oD*awW!%P}`~ExC<vQ
zCHpVzRp)X)T<Wj`njw%G1!obISkjEx90F3hGGykm*tMZXtA90{*LIUqt?*M~qb0C7
z3$tM#|3RH!Md67-c{AX`_X(fYNz0cB4#I%OO^p+T7j0`?BeqwZcO}CH!ihwW4*1*2
zc$MRKpC!eF+GnhDPpeZeP9-u2ZC;=j_^;-`deU^@l@PAMQEWaiTNrHit=9%%U|@?}
z#*lY=FTcjXi4$y8jN<ux#GFNMoEL<o=v-X2e|qgq_TTrBc*SpZF#C54b>!f=3r9z@
z5oRmQ7Z68O&?qZ7m2rZ2dH*#?j_yHi@aUo%An2~^L#{CgXr&s0Zy4hAsci4l!05U_
zpk{yt(0!?NoUwbKkHB;>gbT(w|BX8zGLvQ$^p<WACC*?3%Z>G-R6#E8NrxIlx)zVi
zn*knPvMwcH0lr5R%*Yv3$}4tYr793q?KFr##$+0V!Y;s+Vv+by-=2F>DeaqNT9o=o
z`wE@X7^#yLk16nL<-crjOlScX!^_#O9RgSrNzp^bxoA%}QO)vLV0T|>Aa<29$wJYY
zwmE#6305cG1sP&S>1O31N9)v)Nwjj=R5_JfJoA>@=T1)A;kGT<M@c)j|CrSpkmx`i
zS*B8^omh1{)Uk``BXRe>kq<z4WBUQYPnadx;8;z5G`X(jB+p-^c!~MtC`XI?+J<Q0
z=C`=Rq2|*9VcO7*k2Eq!q3`x!hvyzJ^mdLB(u`l4&^0yPiGKM(N!kuwso2JuJg;T2
zt~3yh_i?Mc47m1Ra|>#gh~GJ3(KC{$V7o(<%aJ8<6L5jM)+i8xD2BNs<LJFm!xd4p
zkoTuwzahjj@qi1-SL$~YOP1r+bx%8KG7hU3voi)@U!c<w4KzH#1wE!L$B4v;>k$dP
z@3yjjxjB&ew0s$O4<_+P^=}c9ZVH{Wbmiy_hFIWJ$am!o#YT__?TPRHfkCxkQxYmG
zo5hHXKatdKk~n~I#!e0(uNI-<OB$8AQ6AUu7MepjJhTBO=*E2Xej3IJjTt%L?l8Z4
zcShCP$#x0QVzt@eJ@M$$o8pqO3~q-|NB+ygZt=lwPo!9Nw3Q!y$=RU-=!EJJmCII2
zBk@iU(v=yTa_Ly^SK|u5$hr7lK=o0>$F2{8UwHJkgPWg(mcUZzr>5qJgjC2uMIhkQ
zVW!O%k>*#RQR|Dl(W|keE3qFg!RIGT*+W@rj`sM&N)}Nf2Fx+$aMF{U4LIP=ag@U4
zzGucPtmQ@TP?q`~nx|(W7s@tCJ_|u?8Z+q$B@r{sLUo4yl$xdzfF(hV2Yhl<7*Yu2
zSVumHRFh%C@8;qfng|%)`CV9fLR3?Js{<Ls%=HK&qEIko>T4Q%c+j4yf2Rgyp7969
zw3QYbzH*;zhYpW3pS1pQRZEM)R;CM35*2&)*tscDf*sxCU|r)Ll(x{F(fK~5dF3Y}
z1vy;T<7dvYJr<MD8n$D;n-CR)gfRSO2XN>7q<UKg?(N28dH*}Ta6e~`ffl}`ow6T(
zjZUj7F}(aV4=<bC{Pd*$=x{SUm#e*+2&9g<uOE}IL%;FWdtWjfipunzJJfYMTdKv|
zIY<Q!`5bg8JkQk{4sl*No~+N$8&2`NoGqyldCno~`JT-bjMd^r5qRdho|SLi)*4Rv
z^$@+c;nmsdJ(k>QJv&EF3dTouy(SlTeS9%wbW5L-&Z=MGo<VwzTZL<`b!r9p<^I$a
zv~L9*?e>c&zxtqLw|JF73jBn;hMV>J7nmbk=UH}_F^{N%NEV48oxC^802MerQUVf~
z(bm-mMDwmI7iN;<)RghRreR2Q?1t}h4;kOLlrf5DUMTT@M|-?cLfMpp+1{n!tw4c(
zUR_5D87WmN^$YZM%IiNhVS{2>RpmP)qT0k)BY$?|<;2Nq$Wo8yw;^25%itHB8C-Pm
zvSM*69$HqlrODvW@;^@!+2yinvpZWdB-GKXvbx|uu+4I8|NQ%eXM5}nc;RwA0=(y9
zdtaveKy^s*G}C)OxnJ_BE`JDp4glWd3w>`tkUzHN72d~BKewcPZ=$F^+DDPs8m^9q
zXg6IR-h;T_oUVU<cKMz&e4d{fMs2?C0K9gt@-N@3n7m3qBYfYp9tAJYFFyc()Aa~^
zpC2=yWUrI4eC>Si_PUe-QJdEnp1x1PyU{)yhQ1daLmN*Y**8DmR**Y~<Miqrx5Ewv
zPrdf?6+Zl*&u+W!riebT@Fv~$9!-gS&M(ipuElNJ)YUys_5K|$+$VRQFBErN-!l1H
zF8Z7i@$cRcF_mv#9bEFQKNaI;zdYdy{(c);{P#woccSa|z~t?^+eGAh2>|Rj=1=K)
zolACly~KZdoG1Wvy~W>BsqkMb?)SC29`Qb&e7io2^*+aZAH6@{I>!{+@7DAPz1KIp
z9-F%^w7Nbj_1<P|eQwKr7uv2;qCcZIpU08c!!GbXW@QB*k*DkzY+s|A-!DMEH>)=N
zm(Q1jTZg^jFGi=g??YV|om1WqGej>*$pSFz4>!eczSS=wY9H_ET`!*-k2BdNo?Z5R
zz8`0L9Xmu9Pn4H>7v3X}9cSN&-hMyAO?mDT1au$+_C0;L-u!Q@Tu*`7AGea`*(X(A
zOI?p0T!XF*(HHNv$emY<A2%a<?`+wwotGS&PlSgXt{?O5Qym*m^T}QN?VDGY0At^4
zJ=+h^pSRM(j$_c~TWt1A?B(Yi;NR0bcEGCO6NetaW8hWrGfd%Qys)wO^KJF-L_NTH
zwQ%MX@bHi<c-wio>UDW>nAhU)hRL+_k-vg$nf;~*cyax_PUZ5hczTU^{0MxEP4?MS
z5G3ikEA6`PoyvYX(2Ll7M8qRf*5he;*71GK)@y1xX4rUsD)u^A-MoQued|^bkooxI
z`w^7=zMyB#aQSZX2m_$>K2OKCUG~`p`M%bE?j|_CXy`fKg19EvKZ0GoKAYc<4ma<|
z4U2VO2DCo*)~Al&dTl$m$~Ruxm_9CtI&OEGy$(V)?$D{a_6eBEI*-$PFFu9<M(@vy
z|2m#LXKNP$-ZA`DZ`-~vOkHoIkMjUcH&%~3$?TU?rpnKe#kZc_&lj?;*W6_9`GttC
zi|1+&(4}>{YsNb$ex&(hP0P3V^{Kt<Ve`GuRPb?Q3h-fHZ1d*#7EIOQ_(}EI^v~<8
zp6PYg_o*uJg^lQaN}=U)zw1Wp5^x>g<@9D)xY8`JuP6Ar-Q4wZ&jr|LV_J86m{iN|
zeBaG}J(zUG@;wU3ewuvDX@1{o|LAb<JN@~-+l#J%|2m=OeU>bERiX7W$kwaR7H|?p
z)p0^F1<HCD=(+u9yiMlve#wlu6ucgF%@lO)qf&d9xGPu{d~VzP=QVb#i?V5d+6(A3
zIAqHVN?+eNQcLQT`BXUE{9s~opC$6X-mJR(91J0Hyj)2JJWfVqXFtK~y)LQYb#2f`
zCvAM(5&7P(3i>P-Ds<dV@nyGd|Bd#%rxSb!Y-$Rv7r%e>>Ipo+Z=iR6UTm3m-3~IH
z@$Z9zx+?x{+bjILUHrVldF;IH91?iM@x4($WC?g(sr(H4I4)IqySaSdH1xeHf9yC0
zGQD;z3ck->y5%d|t~^DocI}^k-rF}*UAncs-A8|3O#xnqbf1Ux=s$|C>lS@KH#?q)
zrZOu8-S>UHhnhEEh5)yPW45?!%}<|09kN6}F!h?>TXan?8742iJPtd!ylzbS0N032
zUNZ`h(3|fNujfqbPa6tMo##4@dRp$iBV0aH#d?mmxfWgL8m4j0{O^f?V(}@j_vp9g
zC)=(*kAwQ)A>G%Im(9;5*MFrC!S9k?hobq}KHE$_M=l+oX^)5(ulXOlpYPW;yCWBD
zg70RptGYKAOz(@>Z@YYW)gQ5Hs=m)t7tcdXA0Ib|(eLZcK2sq?w|}c=e6G)AC%T?S
zwk81ArmplK8=Hc!n;#2ZZ+pssTS=|Q_Zips^e=<!L-wQ2BW6PL``h|u%U*`|yZ`mM
zg1h{+Kr-(4k2BvDpED}m)%NFVpHI`Sx1_IMT>0~Gvdd>X-y+(3F^p-a`3K;oV4&-H
z0q_BJ-*owrV1IKRxcxSY&S;8%H2=9h#$^QwaClk$e0U`iCztJLYI<WUX7YaQqYWl%
z@=g61DvNp6XG+-VC@=j+Sn)}dWRbf2l5IS`>FXo)ks0~uVK&wGTHH5QEW;WXYnUzt
zj6|z$a4jp4k_oe51F28~llFJ7b*uX^**4)_Oixs=7^wNF_*(Eb9d5YaLf+Ozbq`g{
z`_8v13Ilh@zq?+SDxpB9d^R>*I>%)yf8A`$y1Zo?IV?0g+Eu3b7ZOkd(#OTbt0Q>P
zcZwx;DH@ouofO-)BQDXSg0ZO!;4PLZZ_`%A)S3Mynk@HFTP8#MO5I15=o?2cB8+%5
zBLp;yl@s$AiwheD+v`Hq3I0@d2F@OHwH1h}J^jvsw)UGTyJH&%2jrj^pSD#(@|m5t
zd>ikv&#y|K504L!LV<SOrlw#2!oHkQvq(s%PAKuNT-fmY)!#-IBWO%YKO1YH719_p
z6F=~y1RL56#X}e^n|2vmBcG9Hm~(_mxh|$snse4#nj{-z_8<lTEErBIh?PL3DUyGs
zDH7*RYmjG+v6jM8l9ObOHAvZ0yQ|Naf>tt`6|c1(!Fjc+5ybtpO0hBqgKIl`Q+=8d
zU1YV&0~bvgL4md?X&V<*1y01C)sdFR{ZW}n%BT}nEwo4~NG3q{vCx_h$|y8AjZ<0}
zd7+n`-MYez$P?|0qlh34HkXF>Vs##&ri+V`6R#UBGs+FNmg3b&_=|fCF))SH0~-Zx
zGEkK!DH?E{S#JFOH*4+yApJYaA5x7H3#ET^G3GPKaewJ?Iv0P77m@LtMboY`zKhoK
z*q~3V8v_@>%5abKsIh|R{uJgN#RdI{#0&z%60()$6+k0<7gfLhwh8DNWgQp|u1s`>
z=Rhc~kmW7IEiy`wmlh6YG&g2#{@N^2$NA%?6(kV&H_uZ*z(R3K07RVVpR=rDB8%%X
zwMxE=mexr_ll7I?F=z}EcgK$$SRp=0P#2TXpEtcqUJQALfI3aMX|64mOMO?gj~$X2
z8VwSP`W6<*#~Q3<S;oR`WWtLqgM-VONS2dI(|FCBC`1>GhlHCLaf0)YJTztqq@A5K
zW@0O4k_@PmaziT-L9tfLv-t8>6a_|Mh($E1ZKWe=B$J{?a`gn_oc-b)7@~2@a!BBz
z7UpHCmRQX(mOn#Oouq-zlB$klzc5BPot8Pr*9h6ASumGfoT!@NH0p-I%1rjbYK^3d
zDlOX#_}rvt1~jO;MqM~QGAUD=N;Sg`^G^CN$>muP=WAkGpfy-kKq^M_620L;3&Ayj
z+}5(AIGfcpixq=<*cK<jTt)TY7g87_F6`?wR=?$<D$<Mc6A?AyfMd0C=xzxWC3U4}
zq)BppsvH`kMI<9d`Z!HG3-TkJ*77q1y@MFC$_NyTD>e8ds`R2R^tG)Pba8!AK(i*G
zba4d8T6)o1oQvLQEY7-zw!e{sU4s=t*50b)>?qEduZcw2AX|i}nV`1@Q=ZjHgvPip
z2}5#$BOsJeJQg1`T~U`C7wa@o_bajCB+a@cyd|rm+D102Pz%}|L?O?HiHD1+)$F`X
z{w*brLaVMK;unxzo>fkH#+o$PX^2y9RSZ%Gb6J&M+^UkciE^aLa8<LaK3^v7OubBp
z6MrN|en`ckGK!X`&76k!>a&4IGRVMDB1lY~I?Cn;4{Za1bTJi~5{X7eX-ZO(Wfg4`
z?Fa^LD+`8nVGj0Tz43?={xbV5!hi$0WFvzl6I~kZaa-9cbZk^x0ngst*mqQyaFTK)
zB{^{=U|&OGodI>6xkXYb@vJZ#=DI`wLRlU+B)oC&N8qFwgn97(QtO`})d9*g=_ELN
zlZhxA8df}!uS0HeLDo{ig>*?)#6e~RQANwaOPW9gQC5P9x;t%CP@Ia^B1gT|YMjkT
zu*Dw;qaR6z8ha}8S|DS|!f*&nO32dkCerxHx`L%LQaa<lIQ)4f_GJmkjixHCHi{-y
z%!wHM2`4$SMGcDZ_-&~qit-|JGL-%zt3-M6IBSrDN*%a(vK1|1XjQ&ho7_U$%pV%r
zU>drnvb<w4S3FIqoRuWumKFo)C>kx+9=Y69lrGT}Y$X+0CFcni0&dd2U-Ur9@G5Ce
z;V^AWAPfCS66QdILnecULyFV1k#v)atRq-AZI4@}+~l+!`xx;s13UV?s2Xso#ax;d
zyhcVWGnY5*C-Z<Exp*xQ@0Wk~oT^H}QIb)Km}W#JP`r^M@d_<~Jw5GYsVKN#XRNIt
zt*H{nj5ic%+kv(gfn7A2z+Mtqn@SzlmZyQF#2{Y>6m>3XD@Y06DUsqpkgi8mUii%s
zTtwR@GAA!O>-S8<8cQ2x#U}-X-R^A>D`ms)W09|&XQfzX!N9|c<-jX4(n`x8rd8q)
zS3+2>agLoR4Q5;pw#Jc&qADvQF^|$OZS71VGbg5mtp>6WsKlO_#T6|T87Cr&)&Z9r
z2;hOh5LjDDS113+aFf#TT(a4+a>yw}ty#p0Sxl(XC`NM(Lpcp40#FnE+%E$0I(Ds@
zIabuzH0h|MNILXFznE&FxUzGpA_<Ht))_eh<pm7P(k6=1;N237Wp;{*U)CYa#$RaH
z?GWVAX?{@zX9}la{YfnyF0!Jw6QfM55TR3t#7g{OU@D))&f2KN$uW|vq;A%LAiaP&
zL{6$@)&%Dp&yap5noKbf=R8k2E}h5#1mYLqHW|^?<*6G>CRz1Du`h)%EO!&&%h$1k
zR0!}&qZme<w8fJsmWlBu8qqfBEt@2;NZ2ho@#`zd5|0|hq{>JiRS`)|fwJ?C6}t0?
zBeB50B{d?ZBF}QcM@>elNk5?}U(oPUz@}BKQY%De$P;VKD=Scxfm|wDqOGdRtcapy
z#RVu7+RgI4I!@A!h|0iUqCk3SF4#YbnDenJT8+S*Z=~PkfgEFj^)yMPJ;Q+-;F{EB
zG&HmWhQL_-aFK#)(H^+NevBL|L7*CiteVO?*ktia6Vi~86q32hS2wgkh095E>8$Uj
z8pbHHz=ckmR6*JnOM|QU**Ly7V%A2QI;TCN$sr#rC!&ITHl(ToRCcVaqv5GDSjDn{
zod_1)^EXd{wlFIrP0bMvp8(3+lglS@tfHoKI6z{!Ld9Wg$xAnJ49!^2p`=571@2#9
zkal#E<WM0Wr=srY-4PqmSQ?EqnNKhRDH*Ry0Bbek<%VYE=f%>BWN7CJfj|eNv1tYf
zJ{?v+?60Xr9_BqLqhMNl-cK8hY=Ff{nH5g2#_<-ea(M?=#L<S1bGy&aJI_34Ik*75
zLw8Degp<M<El<O8k`pDZzOO8NqIYB^@G?M=!a%sG1)tJbD|H4Ti(z$|TEuh$C)P5U
za(P^4o_?ejV|6A*0>N&q4)`^AS|pJi%MoGoej}R)>Y(DpKsOxiea)+tT4~@q9MY}`
zvYfFdT5)oU_7(G_n#~aSa*m-k3f<C?D0NMBdFB0WECh9YDEe)siI@aS1tPF)i)LEk
z6<V$K&hhF#Wzv&<4&?EE+zMA>1o^o2OT3B3_`RkG8i^S54bFIHP(w~eq_Kz^@lI82
zMKPm|xN+9FZNi#CBuY|h&UsF!X~KW0KnVoOqHV@9X?Z0sHUQpQQGDgtTda_(5iu>h
zgbeq*u^e4mNS`wC{^VUVgK|UJvb>e=B=Wh-4HU9Kc^#G*=9(PXV=+Y%*m&jWvbKDw
zrd;zn3QoN5B$U&I^cry-k}M2BD@;gdj>QU@Hj9*~0EATa9F?chv;x}T(jUVyfAXCD
zr8O+ShOQA})AFzhpw2vb`U(B_Sm&+tX=iaIhP<z2vZ@@S_EunZ!W`tejb&QlMt(G8
z4-^kH=rO_MTEV#*Qm*XMxgH4AJG3*yuwDq##ww+0artI-;=Je=5|!ff<R?kSrBbf+
zr1CxZs$n*HymfzZL9thy4P|_7kXfkm?BnG|6k@qdT5U!eP3GKKvta`Kx#{0cX&Y3X
zCt{uC?TzRbHRdUTvKqLVw>Qd4@qSM7FngPaD5mGieCLpni=akHl0jK#mXj`iNy_<$
zTSUVXsCLZDgFQcoV6@cD2v-PO2~=(p9%^E!T~?9L6TwZAb}1dJ%N=c1O<&SaE7YR=
z>J1QDWd~{2((}e+GqI((Mq_Dm9YJ-JT6F<(z<7iRY6k<$J{6~ty{zztRtwrPBNS2P
zvA?<0aX%{^?FDN&bhJgyup0KurmfKIa5-l#5r$&fbrvQv7;Kl)$d#X&G@qbr6H34-
zTsWPii@el?P;%#4$d{)v`j~%xy$GIW`IF1+M_K{vKHIlo{o%L?>YrdGx#%*B#ypGK
z9P9>=DMfKaqK@PmEF3x$6I4wmV3=tHqIJ%K`U@3&amEmJAUJo&B0JbIVlO>TqvhJz
z8k5{ceH0Bzdr`A0TwZ;os8Z@@mQa5o9gkkGV0v?6)4)cKBIOl~8w?w|+32%xZ-;x=
zZq=@1{0UFspJO|K9izQnb&H|v`K;ZVC%uWf!CipSM8=RWKgMT)5zOQDtjiKkZaX}z
zb^H0cE(TJ-BwC<+h7i{d<MZYORG?c#k@?<~%@1-}o#xBueDotqT|*F}K?7<KSK^Gu
z+2wY>WxFv(yYN4Z-Qm*>?Uv$Szw4ndHk$Az(wbL;q?`N3WUr%E;T{!;aY_Tmu6z}3
zS9M~>Lf-+>IvI`KOYQL4LgAb(8Jy>a)y?r4LgDoBO#~0cHnW1;gi&pRskTF>PIf{o
z&^E=pPy%(3;*{%yuJ))9a!C(lu3&g4Zr9zel2kD;#>dG`?=>BClSRWfAmq%y<3Sh!
zRq%OwKZ)f9e}gkWK4Ex2-k{kk|9y*gt${aZaXs8F997;j{^fSRUUCQ}yQ&`-_>PW1
zXzqxH^pjX4!(a<~sVh&JbE%3dYFT~!k0f3|zY7}u^~rpQ9Ct9SH<P--74Yvj34vPC
zN%+A7GVUn04Nvp`qDZAlD_PB2myr2FK<WDpaMV(STgKtUfGX1=#ZLA_p67Z+is`%A
zC&J){2KA)@^%B3-%A$1A>rMi4hG7KU?Aw$<v`tT|Hb3r@^Xvc$8Z^?1<M~n%Yx-zE
z-xlDZ`vNCnnDxTfqPQXzh%@~YvjbUMB6p@Ad5;Dy8hN8qbWwH#?Z6;jX_jcTB%%;m
zs1+F1jpVGLG6XpW1O3bk0_l&-tkuJ-!d46UGQ-j9qe;FEh1o0-4(`+FwXkz3f~hs-
zkIGDdH*v@fqw(BC$#1o<M(!c+_7n{(Z}Hc82i@h~p;xR-5TZ!?Gf~M_UEcen4-c*H
z<xITj*0e)5?q3ob{^C7<vWwUZc_*6r^oU(`{`TlL^w+gXl<TB_NF$u$v)aiNANtWV
z>f1d)G!_UX1bx!Ws~x;-ie5)gi^CBn7rCbwq6^W&CVDabl%bkFA4h2CYn+f-6`fKz
z5k7`g8r85Il3)Ab)IAHQqNyojO0Ah&SQs~rC|a943zr}!O5bqlmPu2o%ZE@F_!z^&
z(+<Qej8y5PCNoyV=e2ufcBNQF@_;UT;+8R})!UH}$SB}5uKcx<4=JOpVRhLq?OBW#
zDMR&Z@!l}wmDS!8(x`be)|LSAHwlffahU#N=xNIQIpNbK0n|cAARl|ao}WVL>45cO
zm)|<9?z9GCfKjm%M9+$B$1uT}Rd8;$TR_9iY0P@*RVwqK)i%ZEYM<qHXUhPZnYDd5
zIKFD3%hBrv@nELCU!;Dw1jd7XT|fxV+1J~rR)O|NcZHcOVx(igoO8EXHz8ir@q@H~
z1W>JK<reyyo+==RWO~u(aEy}m<ZAipqFyZU`I-0j)G72D=|V`V`ZsS&+WWtjgdHE5
z(YbhXe?yQAqFyT&t@B>@c3N@~ICI@<t<xp!j0_pth21o9a&~33ter#tgChHFaY))f
zd8HF?NLOpz`X3bx;tSg1p3sFcQ&n&Mb&DfjRIfQ?e|v0UMO|2!ACvs?95FA{G4uHt
zqVAEu6Y=+cw_<CqvZo3!5yEWh7*f}+#K@yRr~@W%k2+J2i!e5;vJ%QZ8)Pr!NNAlf
zQgS~|MY-2x*rAjH!R(P?&@mEyG7Ad$-(LkT89#I`$~^~@ggBuaN1;g=_=a6iC3edx
zDi6an6N`U7A?3YmZRi-44=%X|(rp_v1^Y8ug@>IxIGHLFwH&xnt!?_<`D;kxA+P<m
zKKfRx&{xB4zuK-lo!%5jXygY*qaf7CM0oJWQqF}G|1!{r>VTV_1(k^Y%w=dWO<LXC
zmHEoQ6oN9-mh-)B)&2-M9*#W{oqyO-=*8A+03w9?o-{H54h*&5@tq`<;m6CzQuAY^
zE5OVj))fhNBWVa`>ix^BX@x7VgyO(t&zU)BKkzK&%V&?JRcwIDGKDfZ0mp%cA|B2A
zyO~v0!pANC%KfVH&+O&+j77h^q*G>;R1#;<9v@1Y#T8AM42upxy7i|G5WmNO>FC+b
zYKvKhQu-hZE=QX}SPmm!&JLxcAt1k&F&V~B|GK6Nr4>%sFD}g9t5)ELZlpaQ0`K(z
zxt#W=OTO>Wj={&`owjO@92t&ryp!1cUxt1k-l88Z!nR5g9lp5VQXv-xibdj2M0W1&
zBgv4594qy!IK~^H^}Aaam=|%Yge-@_Eq?e><;?Y*pDXsJ(s`6Pg=_Z-%LH+#(GvO;
z`k$hsM&*WH4hUX^%p8&ao=oBG$<U7XDLD3kCV(p&Kzz09RV%YmiLS6A51HUr<2{fW
z(mqb1BLEF%(h)4?miMMs0hdO#%iY`>!voeaTsLuSvOO5*7R|TKrYzC17AV!(JZz2$
z?F{hG`dVHuQa&!SJPAV|^WIQS)Fu6gt4Ns;dw-7S+W9&&Y1Z;aR$*`#R~v631YiFw
zT#T@rlJ7kN4=}3<c)e1G1%LXcC{ryUROl%1ix|;losjT*&OVv>c|1}tcoa(hdFzVc
zf^}8X)cga^mtWtxW8*vOE?q|9e7R%g2ks;0<m_ChLqbEopK0*ABS7DYU`0d{Jnr{*
z??QE9Nm2&I<}TIwmw7mB{uRP?-^Py>*hQ6!V*_bvs5K6ZYK;+H%)iygDDuM6?L@S?
zC|QQ13et=M6{DN5uRblGzb$-2%92NC=DW(vwloYAjPNC-9-Kr*scRsS&o5ek57VY@
zaOhlGM!2v*1v8WN$4=F7%eo@%_MaAMZl$cNe6N3$De@-Ro~-%1SX?1J$9LPZ-)>K8
z;6a%Er)>xBHuHiut47x`oU#+)8En_OwL>1vXA9X=*Dfkanra<iIyQ0^xX8k^`_b*1
zUph;3xcNOq*t7?J1=YpypO7A0XUln$Ye+x@_tDm*xPMXA<>vZBh`oQl@)U!>UvDp)
zQn}47{`)mFqvLI)3;t%OsdI&PH&n4zf(Xfnz_1@~HB27R*@E8Wg5J0;SfIr{d(t0n
zH1(8xZMv<_HVJT+zPKF4dZWte+eW-kHwCU?qJQIr%}d#@&jmv4H!=1S!Z1wU-HH%2
zJ=~0^F|vt0VBe7!!{25G_oD5^p7YHepV^WDYT_SWhmNv3i?{ZNP}W>#hMQfwd(+=5
zJQxF)k{wB$Cg5`MzMSrw4z#2FhXu=s)9^$bg`HxE!(BUiwonwE1f<fj)`zs$YM2gp
z4${!M7AqI!XQF7WBU>9%Wz)@PDSPeFB%WfATrFoSCkSl6I1<3-p3Yqt;V*Bo9Fm$b
z`d3B4wq0o3mQts^ZaC;o?oV@2g;W`CrkCL>VwK)%<+RfC{=(9^+-O$WT0?$ZZA1+(
z#s!(Hjob}eQejlf*c%WAaYgsGC*@tKI6@<iI6iYF`@(1ovfw;Q-F;_O{d=J3?wEhp
z#xh!^e7NPNvLWZbH@-ikO{fEOcUo_S9onB=Q%-qxU`(ju$#o*|{654~X#z(%p9Npk
z`kUAPciYB$(C(}$VPo>A1EWtB&$Z*a$1!EzgNY20F{Agv>|u^&Sv447oj=_6iv>}x
zQzq{TW!{rXIJq-p+yUwFNqE8O0+1{EBz>&#RE$w)sIx7sq%*b7JZq0VSza<uJ{rSz
z{hnyQ*c@c8F{Vwl_%ngXIVx{uUzl2OUI6)FY|2|;WWaJE%#3hHEQ6Tb8=7Row&p;@
zzU)_j_aI?dmFQs3A)zSygRM=fjwjj??){IbvFtvPSCbJUXTlY(uO^oK(026^VGKFA
z=vn*!ZECqB;Fdy++tr#z6MDd-@V_Q)+sO3SUg0MdeLVOm#X;AmvwEH;Zcg=DPP^Ub
z(aRc4?)V^^7Y1HV5vVw>Zt<cDFO~*akQP`UAdakwa$pOoNrLIP64Ek;9uSs&)kEVn
zA)R}=B+7x>&8dtwA)nhy&MSqcbIC}{Xj8Rn$Dxz;vsLCHZLAT!Y5{iu?gEh4J9ohP
z9!n0YE^=gpDbe5R$rbMt5~>IhSx{g`Foy0+IaHhwf4@_|*T4GR!rxvBsqjy*b2!VO
zi&m!l>(nBywZrxfbY_k3#=R?1%-IU8ceQ}X#CAjR1W_n(rN^G{1{#0jFwdHCr5{O6
zwt+ym;Nd0SdY8+i-Y8u#x*=t(DYfqW&q~c=HL<51DO;7sAD7Cy54_cLmv&I6(uHr(
znY(AgR!9mUU2<>g0BG1}6Sy9djaVHtvNHYHmDg&IhFHwD+mznov((N_91(_&PmcX4
z;=442&8Pd%lZCLw+ROgO?xcA4((&2Tig7itO~481A+Twu`q#sX>-MBp(ru+KbJe?^
zXyntc$EkqoK&_i^H~>h@{haG_81@g6SnSFEEj8+VXl{#LVt2E`1V=HNLPGk&Dp3uz
z%fQ$4j6vKB&JM~Sp#0ko)pav$$!o}fslC}odQS`u-82T@Hq=464`wkhNLZpdQoJ+_
zVFA~rzGyofr*o+!$%^o79X$MAf%DcVh1D)Jr#HU7^QYLdEdbqG)Zxmzc6)Zl@2Yi$
z%!lpyi^S_TFg7N*gOhhM;f`z)k1F4FAMJ~A%vVd{5`G8F*K4ap4KGj{-9y7Wop9}A
zpY9YqVeRBA^!kQ&M|SyRJo@<jYbi+Z-^sfe?HD~v;l%u_q`wD13ryz|_XFejHi!Co
zF{vUo`Dg3FEfkdlY{fCZYBm7*0rNNhcvQVr$orqmR$)9ntB^k8*7RaXm1XP^$WQMU
zbTCk2?&$9=PwV8oULf%0@QrivJ{Po94H6+i*FUdcI_EdGoU|#fU2SA;b>X?t{6Rm_
zYV$CWaT@L`;HB+Ks_u=oIDeq+I_X?&w_cfZ32lRXqg&08lwNfvY}C9MX8O8vtp;$g
zMWPacFtwi*6=6J33t1%D%{cD(`^^>QGH_&o8;-0wglTX?=gH5qm-WT>tmD~bm3x+(
z*Y}m?YUKUZ;8DG9k0PRzi49O4hOXs8&P3q)Xitn5hY}B&4rV=Op6#f&+qvN#=UEfG
zRWy*4$t{}624aCz#r!Um%ZbsV?(r%)K!iZklyfWkYQtCNniF7)s?M#%&Xgq5gi)su
zzo1HPv?xnLmz^x)5*Xtw_1QYI<Sp$$V<3zADu!bxPTIuZRh9Kg6{_ydGd5K+Fp8%o
zL(qg#vq|MzF4djHGkD@o^E<l{Iz6WPaYk<<uaELucEiDyM-S$+<@Hyz?TPJ>@uWNg
z@W>@hq3g+<-y6i9mU0y`5%xs9p)4wm_);`Yv&L|2`nBPhN)l^c<5$oihJI7Bx+z7W
z8&U`pW#tmg!lLV7(t9>G-@nk3NDVO&{7GcJdBHkAthie)OI>)NaOqsYs`;#_i|Yb9
z*0lEtT{1+8G*b}ayYIf4IhJaooQJO<*8Ft|fUuDmYfg#q5=Px&K8v<;46<drQTb&3
zhF~=G_(c8EAI1s&fdcK`v1L11GoeJs;Bkq5#=?jar<NpsSqeqa@RtVOj!WgpVL3M_
zgw!~%a~ix=a0hZ)Q90mcdUqB0)5Cr(SojppbJ@9U<IDT^Md{Z;l)vTA;4ri3d1e7B
zM^wx1g2i?P;EV_qYNR4m59A5)k3uwm?M4(oX@lqAkq#-Vi_$0uV`GqQ<0McqeMbcn
zY1Xl%jHUiji<vsZ72u<r;CD8_V<fHV3B0(#Gz}iI9*XbXSa1TI%j0+7cJlqUwJmOG
zIEUl@5%%qQ!KR*11os#>x{XKT&~}cwAn!%3-|cEx`R<ic2$fS-D}lCnF?At%XupTf
zB{Yf@_=8TXzu))YCy*+soN;di)X|16eAFxT4bHj#Hge=nF?oClx3yW(>21-BHSgbl
z?4<m28bF4v_z%ydWFF*aP<?5%C>9jww;yrXE<$;jia=bQa3?mJV-{vLZcsS9^EuJP
z65g4IXQXrW36BHEST!J%q=6T)j0`#uGT1iN9P886V1vd;g~EXr5TME#xWa6El4%Qv
z+p0kfZLWc>iW!iq`8B04t9Ua?opp|$lE{NzXXQA%vK|bifcb%;AMHdItW$7uJGmb@
zA|RJQYK!GY|60f{F9U)cpJc}=<#P;%0~f*1$j8Ts{guX7*s7eyH=-vYFv+aOw{t9&
zNV18OZO%>B$a`yt*734`s^t2U*dwdW5lq8LUIbe+IoDS|<j;~SBXwP<DF`07?PVo!
zb8#Jjjorga{lsY>5M%Wwq~oXz=JSx|j#RB;M>b|VAUOGG|F*zP7;*VqmNX?X?Njth
zFDUDRV`{#+{;(MVcRhJZ3qYDZf1dle<G4Yv#I{}k5B{#xYvTj;89(RsR>PamQ?PkP
z^y%NN;Z5o`*w^zrt3z9CFkX6smmeu!MUiXSGdH_KTMd3*da7Nou^Kuh5psPuL&_2u
zr$l9c|7EWnxAgGMNd6YR!?2=zNbng#7&kq2-9zLn7()8plbC29VfB^7G4D<%$sDsV
zo8@#+7|SL1$isv&`KQ#?dS(nyXPKhUaI3vQnz@98Q_r2F>`>0|05CS5#R5&hLRA8H
zp9~p@Y;edE4RRgLbl*{|%P}Q6)Ie6zzt+BAS71{;Y1%pDQ(E7<j+|4QVj?;>{<%ia
zL~w4Lk5XKb-=!Knffkx&zC{0+b-hNc-e=8uayK<FAU;jt52Yx1l=~4A5uxq4n<dP$
zTMfZA%=o}eK#VtB@@rJK2jWQ49nh9GUaIU;7*OC8lYkT#_HZ*Rti&tDe)hj&mO%za
zx~zDrH-nCVJf8n`BVUDAs=FSid{+1d0iXQXG@e^Zx08l|98L_78$b?F+$(lSD3ME?
z)mP$`lL-m4`6?tH3!PFTdz5+QiiFhvyDR<h$UojbtIs-8e<>hS*ayj<UQ0_rIn}Kn
z=ZWTNB{Sl2%py(vlFCondMNKps}RQjr0F3ggDh<mF)JEpqx?UbBx_cb6{>euRLMiC
zuIo^LDv>ZwI?MY~kye0wYdI2lOyZ727`OO%9rKS~;6HfrA>_?Ua|-(;u@vQBypBmm
ztQ9?^X0886)AWCF{et&D)?e_>TEDpeAH0zN!4n{#>K2XDO5AfM`FTw24*XhJh5As!
zNZW)RW{(P!TFNIQ#mx%Gt>!t!6s&&9@k@H4#ZEDDe`@|G*0W3Z6vx5<qd3z|&jcA5
zI5$qiFBVyU0?3<bN4R06H4@3gjt(7S_SPou;(4UpkY!<{kBPq!^8SbLKl%$H?|%q+
zrM@oz6JYDC@c%~`@P7jQLMR-k7i1I}vgh1!7ekKnu1y&CPd3q)6+7(6;FyfYo4l1l
zhDf?i{(p3kn+(wi2COWR^fB4UM^=cq+KUvW`$LCh>0PX!DVu6x^d8TXl*4IE<QS>D
z&dYz_D?v2kJH5{d$e1c{iWu)_P-<hBNtQUCrS8DWNA*FjhRW<UW)VfSGiH#48s{^6
zxA1O&esXA>149qZDusr{(X^|HX#I-J-6bNn3?+_rZRH^>`iN&-6TR`FxP7w~J-U8*
zdXX)2yL*tfM2pqK`U8H9G<S$HAgS=l^EASG7-cD0;2RLE`h_?Tdnxx#av!HWSo#~c
z9%0gpVJRS7uN3e<Lh$bgcWWFsSJXjjo6CU7(;9yJr?5WS***Rm5q~?$ivk?y%W(bk
z;MI7rX()b(_NN?4Y@;UchoTW`mo7~|?T?PEUq-Zy|9C`%(~Wi*3oE^dw0MLB;|BGN
z+<^|bR=Z#tnxFV8KID#CT7#PGbn)CLldAyQE-~LX#a299=u2}F0GX)Uv1gsQbpLTH
zE3n{LYGmEh!Rl6WN1Z*kKLDO&l<2R$(sn!5Y7^m!{d3{(ndrN^@j~Xk?|z=#zi$>4
zkXY9fGx3bz@Gz}VqoMjs`>ipa!CRAZ<^pHMt~*x$2#ULe5465&Qy9ye;&&cb%3E2U
zTAo~*v6dU6%!FVPc?`QVua3r;9LLe>C@Jj6jiL`1N|xP83FwM}B>x2QQ-0u^^Nf==
zrE;!R-Tr*V)NnX8G)S+O^<)S;av$V`w;@i}(4mHn@tz@I74y||O)n=cv`+O^y~`v*
zfmcj>KGC}$$argR`0&Cv)DfJG0c(H|q4A6QMqZa;15o|NmYv7BNt^9RUH|_8YCx60
zR0&I!5R@vRZdIy;rAk<;gweyost{v!!t%sJ64CS138z;GmmfzL{PxW!4z`AOcg=6#
zpzq)1IA_0u)(3nP07+RB`hKYdrrwoGplnepf#&;C34AU}ASkuK@1g~YEpiI|@4o3B
z5Aq4VTpgqT&8}{G&O9s?z!X0oMFE^z{{#O5^=G5b0YQ7I#Fa{1sl??qFO|4bi7S=3
z<nI|Parw1f$7peHW>?#_)Z%_DEw0EV_v7nuu^aAz8r)n8O^jk2G6(`>hgKqo^2bO(
z)SmZL0%D`yh|ZYLC<XE7sYJU;0viRLfjC|;Qh|L0T{of1I;fZ1a9UN?mm1K2qB4s;
ziUKz7FlnyJ%k`Fx9zze-de<JJ^*V$vnU#EoX^ognc-pBveme%wn8>!9U*Ne^lXK8L
zLRpvGR~^2RCQ;=c=SXiG_0f$#_E6&TeC^ler#O-*xHV>I3Rc~8b3vVe6q{)+xpj?0
zALJjOy$}AVg7g@ixs&m}z0C^mG1v=_fR6KNfTB~K_a!~n3&stS@PEw`b#{{-M?$;<
z&vf+SO>pcwL02<IZeA7elv6hLqmJwIJh&oG=%zgq3jg%-`;kw3&z}}iJA2uxoDhX{
zCE2J511Fx10-&P_Ghb2@t>zJD&>i7gr^Lb2oGO0^#Zqq`H~VXAKeF)o@z%kK?+|Er
z5T%%SKklN~Yy(9jC?xVp=GQE-nr8GEyesRoK|Jf)EtA#brUPi_kJxvuKJlRRgfaEF
z8})j5W+{p2$8c=hn8L1uj?oP}3t*w!Xxg()V8Mkqq9peP!!BCj1YJaD<S(Rhq)I8=
z{l4P<nU|K@3mxYGG1x&cum**sVb5|x8?{txj;hEBjy=ktm;jR%6^Qhrd-~c>5BE<F
zb}qIKPg=)0hBrl<(7H4{dZQ-W4>-u(Ay^2IPcFCxwwOESq1aF_sNAiR10Q|*_K(Wx
zX8VuILubOsf)S57O>)(S`_7ro_C;r>)7d+0efNoTp9vv`T^6NZidOs*Wh8)obRhx^
zOJd|b=<-P;s<Ni!gU3I2@GY`0boEkE>{U$=S<m%Rv5gT;V`kcP)8|`U6y@#?eEXK5
z{_bx1+qb9(cXwdn+c%@rcXv6|O*YY5hwX!n{k`*@?ThV`_Qo-vaGRemI>(3Yjdwd2
zTl*WG&c*)W^tDl15kGUP(DG4J9RzZCfI}?#3VJr+eFL&@V1dh#<paFA_*7|PWdQCw
zB%75Hx=fogLT56pjL;PVE+cfhRT-g^jmrpK8KIj^Z_5bXeNdMXx-vp1ag`Cev6Pk(
zx-vpnM(Cy>qm0mHag`A|^I_rHld&PX<X2^gt_;zYA-Xa|SBB`Kmp^xi&Vw$ZKD5x1
ze`Sq|m)$EQH$C+48G?(b72!8c@hqcnX2|X6bowCMVQys2zp~O%v@&#-fmw#m%FtQV
zz6_luu$G~-(Rj+Ttx1I6rPc%XHvKYAR!FQtQ5h%8#aYJ5$~ajWCoAJ*Wt=S8pp26h
z;4kB3qeut$UKC}VY&M9?IGK9!;FD~PmxV}moUBpC$r6alIN6NiWZx}1QU=jR&44n9
zRtC|c2?4MAnJ`y;&S?oG&z^yChtEVw#cy}N|8jA`UteIZm0m&Tr#*Jo-Z<XLoHKhs
z_)Awu2b_IVoGvTlVi}laT&#?XMeWPDSORMq7aNVIjEf}^mT@rv%D7k=7c1jpQ=%^8
zVr5)R;ws}}V<|1;Vr5*cjEhY{Mj02&;ws}}=EK7CW8(v3^|dlEmOxYn#>&8085k=A
zW9qa2?7&!j0t}2f0`}v?#2)_~m=1?M><m~Y2==gpU~?(7sf*eoY!S2Ksq<r8*``&M
zXeC6sJ5d?x=YD0I;ZYxFQ~lt+`GT+?n8Y<dy@7e}8$<7@bg$<q-D^2IcU~^q`m1p&
z_v(bXXqFjgl}t_H>j%&u=oT<QFx}v5NEz-$3V2QotU>~eJQl?P^P2c5u#m^L23$HO
zqQ6{H+b~FnO)BDANOV}xGt+3uPD=+;)*>Q`nO-H?bs$zN&5bcjmeEOeTNx@edzruc
zh-p8Hnb+7x`*27?mNiq7bHR7QKK4#gKo#Q~jas9&UU^=I1#*1{2E{;>n!%Mu%Ha(!
z#18BSp{FlZ&A&^v7j5r+v%65c-F<b;8LE+5ugRZsY2D=FA~)<j@wKm0Ymws>kT&A8
z+!=xZSzJ~kTW8;-=AKX(L{HQr9y14}_eQS#Ea62`4jAKej9s+L7xaiwyx!O(o?W^8
zbK1%GLDBv;O3IA$<cw3*B_muE^hfjIK2V<vduixS&DP?%tJG7<Ap6ft@%ph9!3QO2
zJWow9?UKF8(GDlm1XtE4(*#p~)Gp)`Cxy|4H>ddaJrW5BO|V)|E2l2@%m$5@x$kwF
zSGtqjhEAmG-BXu*j+)_#*TasJF@ALmd@EDKa{DV#C6Xmel`wWiE=10nMd_6+(h_5@
z&VRlAqjCu;LtYh=KPq=zf6VhfmI~y(6v*%5hNPi8;pk5`_%rn{x_ZFxIS89m`v{9w
zbl{@^K;O^z3wB}9hhZPhN=GVPVQI$Y^s#h>6^Eb4Ye0<&HK5WLR{FwbuK3Jyi@IQh
zK__P~ns&Q+=#D?_W^>HxE}cR5b_Nx5xb#~5uzU7@#?g`=%SDoLI83M^ye@qt&p>1N
z$$cbG77mko#AtWNy}cc?^-UyFZDysg{E+^K^q~Alcp(ZD!>4sYl&LzP^iMois?N)m
zvC7A*(mnA5DjTJHB5E^Y2cy;i*`b5%iyjHYeulli+|Zt(pJM06$9x+S*|9DRE|Cp-
zBmg#YQ0CNI>98<<-_v1H`XoRe_i{Q~W>OSqQcSQ>zbU;0&tT&&y#$3$fDya(wBCT}
zPtg3#hWtc~{g1Hd$Ei?LoAz@lbTO(;XkCUr*tzjZz`y~-9z!1V4BaZ{(9xU%RpCSC
z!g&3zzLAf0i8mVtmjY0QL1R0wFyVk>W~DB9=r~^E<}oEXnnvKd;^>NXTTV!m#n6P@
z7BevW>aP$5!<2xm&`a!}1Wsq@S=l)e_1+?C+Nf92x-kf~!XS`)MM49k$UzoEx%#FQ
zkbGG>$+{?U#e!chE}$v?jTJk|>g3uR_ORZe9PDC-f(svcHeX-jv}m$<ktZi_Ae2tM
zAxd~8*Fii;(NQ)Nm>W6_=P+CkU+zb-zF;bb(YPkq9u4-mE}M(Bqpa^!7+~0S&?f;T
zm-hkcaYZzBhAu#T#MPt9a@2vhfBf-BW#RWf{<!}0pNst8%acz(b<Dk<Gb8^pNs~*Q
zt9*BIg<&@?zfkGP5{MO#Tvu1tbYY4LBkEx#@tu#YOIZ>mes)Vd6itU%e0*%w!8W9W
zF3}!~N+>O~*E`+r>P_dBTK`wEjF`LoNBMiw-({n|>|hId6g?V_dc9tMxwa<$Td&vC
z|81<TH~!IBd$s;*ZGG+4tCfG$8;zCK)qjBcqfuo1Ldsz9kNSggr91abexFxQZ|!$)
z*!gcC4nLnYoI|{MYroqa+V4(>`)4=)=atjYS~>Z6{%*H^esUU~Z<GFq+r68E?G1LY
zy~7T+cTWzsH(sj$g$LUk*Js$0?N3|v&%b@BAL0$~;OoZlV5@$8(5YV^oPN4K*e3FS
zTWi+`+neyiweOyv?bhwzJ~-Ab>36+T+THMdj?Y?c4=k_kSh!w4|GKl*+WzpB!)o1r
zYV03>y7_#3!akqv4qC&;;9z_AvUU4u?eo{&uLrjqAFcNvuFl_|ezmtrzjM2Dz2$vy
ztkw1qp0(=m>`iFhl8<{^n_+jQE%1K0-MRj7?cbjN_F)B{wVY39t*_nH)6m{w4mytL
zS~>si!!7^*5O1y=bk?r-zixcARvfSE%03+8&A*Ntt@YM+>(lwW_49+>)2(yNPN6e6
zv`-r3WM{Y2ZG2cczw~d<cAQUV-eB`=x3vY|`5(I{*EcPvMQr@~>h!ihJY8uWpm*mV
z4p!D%=f@lM<KqEqpVU{;@!-hvHiA!=w1F;fe6(w?T8{5o?s=zsytxC<oSpq4W9_f)
z^^;Yn(Y_@0PiGAey+3`~+8%s5c5UyZaXLIZIauv9c2BL{&o`Z&59g<ibJ%j<g!ayd
zZM4$}PS4mS+&=xwzCHh7pB>z`R-J8l$@V@E->h`c&LQ$PZ;ww0!>)UCV!s;<;7a@J
z>FH%1-nNFP?>}tA)zfXu+dVnB^uHc7NCUdN@1S$uIX`Qh+l|)d>2LmJ+p$~l*8XH)
z`m5;u>8`!A9<(q!I<5O#r#tOWU9a`ocI=P#SG#4cwmh`G`Qg~LS?k34aJJn(MLVa1
zPiK2;pMLX?TbBpJPb-bzKHWNlvy=Aj@piufcXoYrHaKkkc5;1EXP>Owjn(ttHtX%i
z>HE*FwQ8NQqm$EC-LAI=*7okllauyUcl&hvxW4n|=o5K6_q`YDBmKDiX90%JBW?m?
z<^QX+{9jpl)hOlvQ~Yw|f8BDOLHE6s-RHmUvF<zP>-pLG?fEDF^7C(Pr+v15DP{W3
z^%$8h+Mfvd{psc2mNh)s-n-sE-nilaJKf&6KKv^GxBqqH`e2uMTkg5@`L}k%a!+p$
z`=r13p3CZ8dWbhe`|O5pxz1%o<5vCp@a*&2!R^laIj-LvZg0B#$L+!4@di6Q-dQ~u
zHZBj3Kj7BwxqEQjzipkJOuZkpjyJBiyq05m=X@{R{Jhe-vd`A*ot4w|h$ipcvAmYw
zU0Hj%_x|(E{@0E0V8g$KXLcz2a`JL-=krb1JKaCoJzeh{e_-A15AP1#)5ht0``zJh
zt@HNr`N8SQdhluW9Jg24@oD4y^0<Efm%Y>8>NYlCcD|krPtSJg>E*85{(9<uI=S&J
zcYV`39b8&FZSOOF^V#zJo6gSX;CQEg(^>I%4o>agPIm43`HB5oYu9Q(Z}X_L+o~V0
zym|S#Zml2G{gadTyXyxl&dcM|%hk4P-JYNB?teZ$zdhR?Y}(%L_2F+D!P#%8n+IpD
z>*Jl4^J&GV?G@WQJU+ecob0-v-S)x3@uqvaVz0E__RCKvY|TD7-*2t>w0(QZy6+lW
z?bF@$c6|_hKC{XB?p|>E?&cPqw2oUlyO-VHPB#yC&WU|`a((W#H|^hA^={)}wY~D;
zqutmHk9YT0JIA}{pBtan4$od+pRC-p&v!noeE!;B`E+Z4?7EFZ+xuLH?+3VZLe`Iu
zKU|%?`*76pKCPX5n=R|>pmny}e);*VeQ<pC;kM)1gY(tX&C~Zz>*Q>A#oD=f-}<e6
z)UBVaobNQkgHvbsbo+eYK0C*shi_W;@!+(*efs(HZ_f7TWBc;_w*F?T|MsWZ54ik?
zzF!Rxv|Utl?MJ{dR{pPM<^M`4|DWV{JV1b3>dK$!!M=!T0N;VEM*?>V_+j7^imKfZ
zJ52Z*KZactc!(jo1pI(pVH;5(?w;@iOp#HZ2rvX)3ZMrNq{AvB)sUhkKrQINu7j3D
ztt5)9FhGC~DMPM6&=sD?<p5De0<;8dOd(|`(3wm_`Jqd?*uiWFNY9`NK;L(;ynKY#
z=H@;&>i^&W^ZzCuS1shR09*W7K%g~{HJcFf0rnW`YwE8t8-M`GlC01Xty-k>X<x9b
z3n}M-f!Q{SZc|AkbR1wgB($k!mEs8-AkYgCvWd&-$6hahlm(&1I5VsP!4?t(kdOfi
ztpNA1g}r{vUFZOcUEV3ohBa_R9Bd7%c7U&tymbZLFyv7z7|q8x8Y>7q$nX_1Y2P^7
z6CWwB9R)oEIVlv-kTZyaUg$Vg>LZH<p$jbHQA`=~tl?6`js*Lb01O#%A(M>O%;#Lv
zqbMAGRl%QVG!@@~Pp(nW3mtHcx>XL`1|da(KoRtyg=%wiyCeWE2{_&;QD6xKsD}c;
zh~TkJEDC-fFy_<d@-qLcCZhy3OqTy#D0s2>v&i>xKQ90O3K5m7We8no_Bck%|CPr2
z`bt{<ziiY?`TrEZXzZJF^Wbg4Z*CrRcDC9(#~rZY*+AxkgmRgW`fP4~ejaR`by8o<
zRl$|=p*Oko4-lg@cuhAf3sL$J4fpIh0E}Qm6I3`9DBgohGz5FwU?D(%g(4Qlw+#N?
zM!rLaeEV9g%mKiLK57CVQhH4S4p9Uhnxd&h1wIN;a{y>qaS&YG2cr-t$gdRA-x2?e
zdNHmK^2>+yL!vagGpoMrLAOmDl<h;i#kVUiSvj=5jRO!62LVWF=pq|*hhnQ?1o$Z6
zG8sT`D4It5RxR!n-!8qr(WQLo59$=Wrt)=7(#X5Dt*2tTd-?^Z0s>V%6)<v%JkUoT
z?}6+j$I8bGdJ&by-Qp;Lfiv3~l}6PBmCC)khI&+nYfm|t7Id>C*YS~sdl=D(y*s-d
zrD}mI{+TEhTHFiXT*ZV17NF3K>dj@NE<lg#6&Dom2<bZrYzb{(0*TQV?Kga!x7ONv
zQSJ4BiuM9b)zU&XAYKAr+-sqdIM_pR$6Lg!sxASph`d|_$g_xzZ18UD2y{?z#g(-U
zOGFRF+V0^ov-X`PK9?06w_FLFL~8Pe$H;>o%M+RcjELH^9FZyB<_eqi&>w3MqgP^<
z>LLNdTW&cRjUYQ>tM7xo?NNd-*>d(IN+CM|ney97Nu?U>%*bsc8SsC{KhIeb@+}ar
z#bO6+02#Q36j%WgqK!`sE*}ibKqpHSi?;;eS$3!scB3AMkxhv-<29e(*aJfn>X|L)
zeKFaouODL|4*J24XN#-#iig9nx{+!e4TG9v3|f~!CMQ{=_L&hNXW6}t?ZRG3NE?<g
zFSl`kEJlJMa7Z6}5iKJWfYBe$wiB9NIWw!E8-Zr<-ZocpNS8tEfsJjcA<!xMWk9+|
zr$(yk8zCDYk12C|R9leLCPFr-iELU9p@uyEI4hksEr<fqSbP`bizSHgD(U=>h%;S6
z90WZ>tq^#?rht{AeI#cRO*sNOAlDZ(>}s3l0{5b0A;x3coC9D)#|KQvZCfP5q^5;%
zK?unSJv)-`z=t>h6!|dH4<WFKLp)#&U;wS?o}SFU5YLb#7q=0E*r8xSQ?odlXgRf&
zMwTX<KNcFT2ha_s410ZTIfxCwA|9W}6hNW47@Dr|fN2uUE<_XD*xCd@K|*$3i3Kw0
zypsC1^!dzYb{z|dn*!nk=2*601ltoYmqQ<kZEA~n9<ta>JIG-hpdZ}R2d<`wEz0K@
zoV53ICgw?dKkD$|-u4zaQq4zCwM0`OK^Kz{AX|vt@g#7b_aQ^qa5xPmZG~VgCDbB5
zqB%r#d}tv<fC#X%HAv{}T>N0KM`~c_2D&~+@x>2_ShdK7*!eO6y%8BBht2g_4yDHf
zB!F{qA{+6Iu!}flHn2mEFg>LgJmR4x;W0)YTatVF5+Gb;I>=%dP+CrlChf=zUGb;N
z>ujoQ#wy^@qCXVS=x+f#`YQ=vbw}Bz5g2XbJZ8^EGTV}d&~^^Hr2)c)Mqjw~yTf>`
z=%poNGL8DU9Y%Z<1Dt@Q$nYs3OL?$nOIn1qm^!@)Z#fXV1(Vd`@5~W|(($3conW1u
zP!x!*Q{x#=(NTbU_$G%W`9f~D15QdznAl@Y(v)7wmwZ6n<SWswX=slqDkfg+0Y$uw
zbO#`BlS}V3lFxjcsc<k2`7#lK8UdD0K&xmt0h2|$LJn^@jzS5pvEy*|`l4;jVoZTZ
zofq!O0A2CvW)ZLFV2e#osG?xB625c8_=q{+o!n1Gy2;HhBlV&Bt|krhQEG+I>J&D;
zd#QCNqIy*N9OwuoVoM;&5<N;|NH>0n&XDdj^gJR@&gJfwDiI$T&7wWr>}{S;FYRlM
z74Qhy7~*<=*<Q`d*R;2Z%Pm5&R86fSJr2baO+iqa{8&0Tm^>DRzE1+KO6VCO@qGzM
z$k6&~)rG!~f-iil`l10>ZI6!89~5qI%s0v;EDp+qG;WBmX{WQlg#xzGZsjfKb}ROR
zoOQs))&b~r_JM^0hI@PiR^k(T87?Qaw&ds=k%lqg$E@&<s-<!e`C2Ak<9&y8p;Plw
zphD=VrYf^+IgnDrMP)n%W4!vAw&otgyLxoGmFJ<DG#HWXZ^|C>qa#K&IS6qFnY^1V
z-OB>MT&5#}`UpDjNR|)AN8%gNZAO%1Gxd25bPy9}u-Fu&iV4US3a$gp5LF|TBt@RO
z%J8RHLe7F?u~|9V{yRF|O0!9V%y4S2Cl6zZ6_aT$_fEw$2#z9p)P1;en@(^+$@d5F
zA!j{|?Y9QHQ($)|x+yvpQuK)Z87(W4A)*nDLE2*}K2+c7U8hJxQ>}rrI<#n%r=;VH
z0Anpwx%R8jcCk1*>S7V`q&0BN7Y3%lL&!Gc0y4PUML<kDp-2%X6~R#DXi3i|9TDeE
zhs+8ii4n__AB^MozD#DHSRkw9_Y7+l97TUhFaIdAg+@jW_4gg!f88JTqLNhoLI>8M
zWg$Q7S3eu@Wh%0o<kA4LA=o+D-vC|IlUY!dLC1+)IHN_z7yx<HK0w3ceY1$`LvNU8
zP|7!Aj@CdFycJ~&0Paa5F;z69F|J4rEl-K!bO=vLE)^bw7L%ToS&$*Y?Fe+=JJTos
zciE^fTLTy{x*YFD%Uk@(%(B78<o~X&*6XSKul1Fe>t+7eQ~V4QiZ5BnwO?qlLD;Qf
zqECi4!G;g50jjRl>UoX4OWFi~&nfpDbWszC83a0FCs6LVFmRec=Ueu%_}n6{G4HAt
zaoy0vY`8o?j$4%zGXeL+rz}9w<(kV^WU+~18~>bxK30VZn&4_>4*Gul=W4A{tIyfU
zN1ly53nSW`6K+NuODO>z6fhZJ4Gc9!l4rgY8=9_T5mT4f-I^j9lT^pAG+m8aW3~2c
zl9J1?i>j1ChN>=N0k&v{o@|quQng-Nd7Y-pfaDPyRgtJ4k;AK^hBKvbt+tlon*qrW
z=|EY?qv$i5&6K*8TH|Hy*SW+lWT@nPrvWbUI4-V#s1$kV*??hJ_&T`dr?anXa|6N&
z&(g$6n8OwauU`i6TG1C$6j;RLN^$X;G5X?)T>NE7DN5`b7Y^x@s?}Xz?{?R%)wP#3
z-|Np^qTw|OY_W>suFO>p_RjHH8m+(=|9ab~HQv<f)%uG$7h(~bM1cSxHs&ViW9S88
z7nA?n7dy2@+-TIIcX9Ju=nW`FgPhj-RovLc0ih1OsturhJHY5F=d0fs?hgY4g9j->
z?*A1P>oBW9-;dhLSC^sVKm$ua2&2%mS%47zzdoT1k(!NSx=?@_!*l7GIHz=L&WzFG
zE+L7=H8v28ZE7rqac%jszKE7}ZtKe^&uBSER!PmuI6N>HFP)b{P=D|J^SS><>3<Hf
zE@y#b-1)CYBdh<dm-+us@=Gf^Poc&%B0Nu_p4203Pp5D+@^C(?5>cPCaUW6E1atsb
z)?YT^%U7!__AC3<3R;KO>(!SltLu$d-MS55y?VW}_GZ=Yy<F|Rc~h@j@TIl#>h&wQ
zR)76!rDwlvtgfzFb5Rmd6I52}E9=#Iqgr1%Zmc&Ojplm2w$gb0vi_=CUvJjyl~N8r
z(_g;)mn9)*<p3Bd{~N0-E9)=Q@_&7;l>blin+JT5s}A(~A?%~7i~=;lFS35$TQw8p
zU$w7PB$RHe!w~YN@C_T5!rXl1Jci)&#=(A7p3M~L<=8<r0l{)$fFj47PKfZiRbd0{
zF(OmBRXIRJYjbl!7h26ZprRAX?KtNXyMwGSz-%aw!15-_meY>pIqbqdItm>}W|vS=
z19v|1DpbV#sxMBsswDoodC^hqp_CV1I?_e2E#msbLms0w%@om-==lqIY<39#3Za90
z7}?UrIX6E)mxL<ZFN*uZsgdX<f1pT}K1b7U1HRqOiHGy^;LvA)giOQ(LPlH;nwyTP
zlfG7fY~(Qv9a__$?y)FwLKh1bSv@K=6@lv{=$4t4VkRsB+yfLb1rdz;A{v?bd9Yzi
z%N#n=b1GN}8H3h9{L69Tpu!yA7>Rd)7~B_aW$)+b!GSa`sY;eUfIhH9ad|2X=A*;T
zu>>sA^ycS58}-KdqvV-2668MPw%al{P?s&&PVU{DfNFpo0&NuVv6hcq=(oi~KEm_!
zK<6GtZ`C)P%#g~sr+h-i2SRP&f1U)6m<bXL@~$}BDgOr!h$r&?6Dx}^D}5kZCHtbF
z2DYHbN1GxBAQkgVN`8^gOqV3|06`V-Q0eo)q*zQJ<XuHYrQ=1_IXu`o-Ds<)K+cgS
zpu|PupQ+|Y8=cPCVS78-em5X)GkOFR4Ij~vkDl>dFAsM}<D@nH>Jkl8d1v~KjQm0;
znvTGbWX))0^i=Uh&A{YnMI4pu$0Lk$RUb7|K*WC{u_Q&80zU#^lxCs;$WEp|m;{oL
za3(16Kxb8&+UQ>)9CCGY%sNQVatVmReiK~PYp>qa^j&E4;B0_AAoWweEAaUy7NSSI
zDsp``jN}KW$;jUd9Y?0qtB)4~)Q5rXAWFqKQP`JXF4hz-tprze@k<UuZ3|$p*COmF
zKq6r@$+D;$FQ~yYQTSFQ`tyH8Nj-i*x=O0VRtt!~J0byVg4cC*8(iXfOU_dDnI^)J
zfFp(w2K|t)ZK^-(NJe_0<H*CPs)687&w+iKn0z-ZfEz(SxnYb#eI-NWwmP+fQ5K$z
zqHp6sZmCm16+1%_zyrA@P71OB)|PH(fYWm_$3PQSFO6CN3HAuGK@%(^W=WqKt=UEs
z8g^xaXvWRUA(vawX!u;T9(v9&B@eVZBZeN`=saX-+bX4{aEc`7n})L`!6b%V<-gE$
z(ulDRICa=Vlr8}WUm^Z4S+9k`fQ7zV1{z>uH;uh|T#(qrqRR}@OS)|7w8g4V>}o`*
z@m!;-M(C>wVO1hr*264At*ZGEf2XAxC*vJr&8RT0FUN3zpu+~Y@nf-2%{45x7_RH0
zCU}2*e59oa3b0T!iD%O$XlT(UiYG&78#!<oy<L%%Mf5*4Y2t<ASps)TDSldl@^+`_
z5L|#n;((lAq9${8Ugb}#kfNa453!AwxzZgnRE>1SWm6zTPvb35;*5I^EI;G~yYUkj
zxnfUTuOHyKxmZ1)pU+91%52*LwG=Zd8EftVO1e};_~wa~rmofWlz|dulZ{u|#qv+S
z6{sfD-K7#s5r9AyTNjlM7WgO{4>qwVuDvMRS9LEKk#Im2Tyu3vm|74RU+4rT`Oc0r
zm?$`G?SIxBo}UM;%_is~3v#Xb8i}MO1xn_Ad&JYHJx|*EFDO{3EUUR(Sp-#XYXUc<
z4D=Bb8Y=PBms`mcsQ_PL2lb^|t!NfGgrW)t=jM=vOFEw>2tAMYBhEjkD(_IOMK!Mc
zCv0XHULtDj8Q_`(m!KM*{h{D`K!8nzk~x4^NYl3wkw=$6H)P-%dMp8n5mkZ%0V3Fn
z13<1lgQ-g*|A(vlBr2M4jcrsj82y=q;NYZl44^}a7)E1Il!ZY&L<L6$fvVyOSNJ?z
zkfq~*QnfoWJO>&N@9T~_sc1~3mWrski1ZYFqCCjx#gWaj<R-b$=HfMA&fom$tBJFc
z^c*TQkv*o<tBB{w6EOjD5TwY+zw3#zRXP@01DivgeJG4wgQGA&F}LK(-0NwGtq35e
zIQ3PRuz|GffQy1Y;&PS77JdR~8eVdNCkI%42o{XFVuYwU{Z(`FEY?6vrV!$um=t0L
zFv8bHRNt&<k;xv%1PIY9vO$I<45H_f?-bj}g29%S!W2}w&Lj(jS@BbuvzW<}od+M$
zaQRfsi0c6gkf;uX<*6YB8+_4f<Ntm{!+(8|<E>8ODcUk*=obKhYt%LN5WUGrOAL5@
z?A?gxhi$3O+d>E)ZiH-*K6%E7v2ey?Cj4`*K-~;Y)C#k<_(ZD}*(~u#^XgTtQCl&-
zgxroW{;q;*HB`AdZ`F3)Sb0^e*Xp%K^G*FtJ=K`EsY2Th5T$SHqFufDy8gP6XjiM%
zjK8@KlERubx=a9i_cgkoc<Tp*5sNrYaJ+S7yor?st~2LxR_W5wtUFeI%2VkQt)_JM
z=%j*bCJ#)dp^lhNN%&3hD_;Orc_gbU^QR}62J!p@e^-tEe*32D{((x=CRWd@n(PXw
zfxA2L;j!71FQY#C0$ki5FyIh!Nr8he<&LSTQgg8K?Hj0_DsQtC)45%*#jXl)ch{Ws
zD+c@E?yjP6s%bS>$X+$NqqRKkQW4vN;Z7OtOfi!!gnr5eBj3)2u#QsERMM$%yv6C5
zTpsbcB=b&TKe9WY&dHK;v5a!C6!6b=p=U?isr*x$`t$Qy;mkJ#A`Dr5x<h}Qd0}`(
z<u<I;*M00=QouKI3v%`PTBTDPbt3`nic*{Elop@^5;`{L5ca-`OL`<+5u5Od{i49%
zx&&OvtbsgSf&d+Q4Bl`?ZWHSg1wf=rD!uP)quttTy=%&9pfbytg3zPU@hzb<sga_W
z*!QIz`S_a3&hs(85>fSfq&}fc&tnI}{Jc2meA3=mry~Jm;Cg_qLDD%4Ea@AT+8eTK
zT+i=?j#kMnuF>#+yr^EIZY?_a6$Z|WxP~YM)Cr~L1SpZ`4){l$StO*gmZt|DPLEVu
zDC3>gXA6|>D39(AMT6KR5c-lO^4<i3g+t}cT@*8eckZOUZ_bFD7@O)d@1;VLSeEni
z-~bLe&$*f?)b~BF&-W@YAe3nXuL~(k;xN2a8F`UAT~fNWIz%gt1s8fDbey3SnnHOJ
za}t68UK^FWcthMnl-2YI^N$hqq#7=U5{ufd1t9{{y>Dv!sMfCm%0vm*yf2k0968gr
zcMc9O-nDmjj`v#cBGX1W{wwd1<B<4FvjMP@!6{FckH8rv1b24Yt&M{njV%#1n9mOy
z%ooNC<`W?Ued^i>afl6MpKH>jCta+<u+p}Mo|Zlgpo<s^=o0Uc-0Qg7BiCkC71w<W
z`?7d}e5sDd)x^_UfEZW!h*xvrO_gC6y<HW)3E5bBQ))fzptr(1DIb_Qn?u)$4>s*`
zVq<GX_C>f!#ha!|vlgpa66xR`vWAwU!v^L%p{ZA)j|CINBoBx~4Qr1Nv1o-U3uL+B
z_s7Ra!m}Y4UtDT9^enk(FdOQ6!y2i)*^W!oIOR1yo@8Sx3~8}{$&S{dz)~K)rca1V
zCB<?^?QYE@RfkxYqMAmsTbtW}ztIOgIPjt`M<KX|PSql=AE?5T0*R!M0`r9`f+<cT
zR^fo#Sq|xgg|m(Q#e51<p!N0(nT(+V%Pb)!%lr^8XRnRL)oy1_d$J85c>XLC*yPqC
zDv8@sp(~;Jc84iX1lLaD`7S!(LpD%ggeoI-mZEc!k!xOSMA~=3bvg+)^2^Twb;2+T
z=)EV`peG!F9^+Oz0n`ehuaC-6V>X$?DH~mgUF!-uP0(;nhz{}kAoLh^_{JvzDlem$
zycCcy4<3I<Le>P0IxVJ91WmcZ9fVFQ5F_7+(^yH;=I0BN!G-VC&`Cv#1zS!`lGI=G
z0dfgL7h+Dv;b{Ksj6YJ*mB&CC$Z<6=wh=T{#@S)yQ&FSh|5gSdUvMO37o>MV0viQl
z%r366XOrtDsMDF#fo_CF5@=;4q#~%S+=k!^!|Z0FztQU|(g!sxqcbkNxiFqLMADM#
z#g;7eA*3}IJt&Z2qJ0%>S#Iml#&So+f<&Cb*u<5xsG_A;SU55Sz_`vEpVTtSU=5IU
zNoDN4i{49=IT;0_N)-w4ZFIshky%jLL@+=B*x20K-ho}qMvax#we=j;Y?M`JMp-9~
zu_`v3@l{Eiu>;A8Ta_X`Ko-Kn4i~q9X9(Q$FxyJFtW>B8-%7RHCw2mF@&jXOjO_Jk
zDij;T%L~I!1}zWH#2~nGEu?x5N$=IWR4_N59u^81t=c$<CPq4dYn(Q)qF8KR7?(fO
zw2b>U8^s+Nd`{CFMa6Qd&NvJ5X*B}QMNqS3jvEYB(Jvkfl@CXSXHtD8-%1lnTM+6?
zDnlw=6dN+S%&fBFA`fm&b4`9($TEqc%GDQIILeBQkqnFLCCU(eH5YO&&*J>DNbQ&Y
z;wY?uDfsrS)|OuN8b@+>SN--a<*16rOe^KGp+q7$&4p%eD^;aIgu9{)$>rDsCx>2m
zj3hWlK<n^0D(ncL(F^VDj6E_r7?Wmn0ClEbZp{e;_(J?oS#^Lowr;k|dA*ofFJ@k!
z43}y)3&B?$%@N|+aRBLlMHZv-<`$VU!N1HajiJ9yM{%$;_RS11Sxq9_SM3+jUK%yU
zbJM<}unM1EyNRoGz`x#tMy>H$SnSI86gvZurl_h+5(foB2{0T-vVrL%<5)Tf6{KZ!
z9nxQ3sjt+R>ubyPm1XSmty<KxpjAeyY=Ej7EA(*{d({{~mD9RBAJ_a6%`J|+N_ti3
z=})zfGew;acW4F|^EF)yO7S$E0IQd5vX2UFO%N7`Sn`@OhgPA*DSN?(`o$!qr4v^(
z8A!>wtP&bjwMa#qjEtJFbhuk&oyl0Oc1tSS)n7);V?42ZJCm8qLRRa{N0ILV7F6Oj
z8w4cm4*>I>MGaExo~o#y2;^y?n1cA&Y}9p*%9P#!n8!V9wkUC>PE_jm@k4XZlP+c{
z+V#5Oe~S83n93k4U-y@<qZJf=b1Y5|>T+$WH&S}>*D4Yy4nRo*3k5^z-b*Osv9lqR
zTJ1GAPp?UE8HM)a$*79DYA<rFn6qMj@O>${&#BJ-8nLDetxM$D$s||-U9KZaovJQz
znr$PeNJvpNrg4JFa=hP3c?=fBpn?(eWa>@doHEQwPnh%$t&-@}CdV9VbXHC{<3aI^
z(^|dg?sn`#?J&ME_GO_o;Y5&sOQ`Z7Y8$C)e9GD*lx;W|Qmzp>4!Nc}WGk*0lksw)
zkx1TQkLq2_GGl%Q9Bo944q(3tDp3%%GH3QyFfkbltsogW<lWSJb&GI>#EC9s6LCk`
zd1?)i9Xi6bMu10bEgCpw+WZ-p)@KpVLO!F*F|;bW!or=mEC5xZXIEnqmLuyrrYf-j
zgy*$#iH5PVrqhp`ptAE<2%W!0ZV1g9fKiDq`55(j$YM=UX_1a35B+^4ZU-|Sw8+j4
zvO<Oy8nu@~pe!c1H&W5@i47p7xG#LvGhmqnCbA>>h(z4te{@7mS<Z$yJjwC*xT?s8
zx~cv<-OOXSs^5v2fG&Y4_7}yDK>Fu>2a3z)vONxvIE+oBjfrbsoVr>ZU6N@v6-s)n
zqT&!y=qE;`l$>9EF(SXpNywrGfL#-fjq{mfRGM6bQ)D`M1oT4~K#w7@C+K}DOV9uY
z_6UM71;6SNRQDpsz-XICq(G%2)kEd2meVFN9y&Vak<<&}?TeL5ohNI9h0qf|2$A#T
zfiF7ePks1hF$(1P#NO~2-iYQ!q{{F0QrP1CT%ITq<->?i9MT_tL__mnO5#H^@T4M#
z^6(AcS(ik6C7qT)4`L?_P*n-#E@H5jTqd`&G;<#D$1yR@lme&4qA}++>45s;7>h+b
zF4tr67NB13{^CtRuS)1u1NyQMaPoCWyxodl8qSa-VsB#_ghCnH3~iBqs8X{d3MZ2$
zTp<xhg_im3T(%>yblKo#8e22ZK#5$0Cmy_l*pa2P8u~f*HZo7=LFh?m-tdUnJBmdz
zF+iLI)L#IKJqv+Gjqht<fscNqL5xiw4??eMRD&?n$?fj)d_;nfpL(3CzMw);Urc5b
z?DgKucak?|f~yChBcjL5kQhrcSXrTr1ecZCWCJF9q9bG6UYE&lMrTANIp0Cm2va<U
z^D%m%8;K)Jsp!ZgW~))>aXF+TYCRgT)FCL|TtsKKwX1E^>87HzOsxv)SeMok<Id=l
zB9=);;uba`eHmmzEsswg&g&F-@uDNO$h3)HpaF~URhAVhuIX|uDPb6iWDmdwgo>U-
z_iG%T0ulgw=s_1-a!;a|=rbBqCAP;LsY;F{GutI;2b{9FNPZhZTZCl}Jqu0W-K;t5
zWG&grnKzjUKQ-Kl*|G?^aac~*?xTeP#N=d+=c+QkmqbNXZOZ7m8JRRHzgtaEy*qbF
z=-JA+)5*&ayZ4)M!mB9?1pyTrjTmP-Jo(qt1E=^lVSe$yo8a|3JUu8~4OJKQ%`lRt
zO7k|s|C*2fl@b(;fJ(KJ_gST~q%sGT9!0b3D~iwyc%i3#DGNr@(4xGcA&ToPajh$j
zPB`BHj(Wr`YPJNd0U=c9c1779@#?Mtu+aBcxOTj8*5SQSwaSSXLwfgdXGv6@{%=uD
zUtI6Cn8+JQkkjN0nSNmOAqp-T^2S9@Ue$^>YJ&gGJp0%ExS4@74Le<>N*nCRq19MZ
zov<4x9FX4REE4(b`eu+gY>DNLB$2+LauLQDFcp@8*a8!a$cQsUqm{p@0&UA>F=xJ@
z@*G7MA<vj;!kq%`E9hA$v!#sHX65Y4+gavmlCsF-sBBMdT#J2Axi@3Si#kcr<T?>w
zp_N4Qog1B=Vt!Kv-=xuRWP2?cHvgWtq$*7`!SBFESKv=@H-f<}V;gu7TSfAvd1OKA
zNz&(yEub%uNzGC-T%y&aX7TFPP4s5MMX@{smln|b{Gpj^Xk34gIwG3ush|m)D$jk6
zp<9D4yd@sIrotB+kYu59g?c}#(=Zj*OlZgWV#7fJlO?r-r0+3uY#3FkOe3nJ!X&uI
zwOC@u2WXZ3!OhP^#i#VfKBePE8Wh~ls#1kY85yRjm90vWAGJvIL3##~>e9@Jn}@y+
z1D6Cd21}7;5!atJ)FHK)69Lu#018`8e^7&tKS;X}gg+M9NAhkgak8liUi|uEIw)#K
zGN3fU3tQxI>vu6k&D<Ddj%y<qVi0-^yC?=}7@nXLn=yQbD;Lz3tVDy5tyf`ROyvNu
z0rWrvEKtOSn?tS_<J776Q*O8`Cuit(QNXuN;@Dt-so3Kf0Ra-XTgnP7<QfFTak|jD
zi~`hRvo<1_($^KAJrKvF6=o@3-%IF9kTvS#1z8k6&P1ov5^OA}IA2=Bil5{FGt9@V
zJ*{>E)kM1BqT_JTOwAT4P{cN_WQ_{$2ydAR9EcP|=%CoYDs+<o>G6~aKO;lRdBVjo
z+kiMhWyiM`Xt&2<V50!p++-Za<rWNKE3&|pvr*RJH~fI64Ng&F)6$=5vov4&rAP$n
z=w>Wd)XB<z`)Df)jv5rnX$nI=)|gsE#PihATj&v5{VPNPj!KnqF!AB<+{5uHS{n5?
z^+xn+UhFC6n@Asx+3|uFIW$0&-wjL$)jaU8tZn2VZn}3EmH(7gND?nPV!GIfp}@r+
z(nne}6q=yn=yXe-uMpYPLW2)NBvf~~%=shH^F_f_3yQdqO|B!eg;NmaVjIwxK!CVP
z#PAhzhPBx8mM*@3)~41@V^3zB?7(%_2<7s8%u~ry!O?2OQF9XJvC|yo9IhtMzvjh2
zRQ{u?SD=bxi0nn3sK<E)hf%F&nfd$Fbuwh2&GI{Z%VHu)b0<B|Me9zojzh9`#hy{+
zq6t>(nFdG6k`L>d2FE(Xc`fs5S4IPl2LYl3;@C~FnrYJsg^SB*!&hOV^hXYjiT5cI
z8|&!?$8i#N`c*!Oi6;3JW{Ys-NEtuNJfLGFCQ2y>)m%!I*C?2!BdcpXytang+7op(
z(p5D?NsX1Lq=v4iu~M%esG}H)qSzo5pRCvGadt>lg`=?&eU(Hs$#=qe-cH@7%FR8w
z%h^UaNgrURU_qTm5$>9ukDW!ip{TnMw_1B~3obJ)vM9=?Ma3wT1grWE^iYJUI~4FN
zu^|Fg>s4H7CZKbx=>^z30$Y3AZ82)lRyXs2Yt$WxgS1?l^RHDRiXM*vp{#`%e`<;`
zd8Wd6X@vTg<Y_bE#Z;=BI*`AM1Io@Y8@!hv%CaDkVGBAA->__tYAwS2M55&St4N|H
zfjr}+|7ZenAUta1tHM}wAo{0a=ANQJAQYzEM#zXzl(dbQBUSUui^J$kUAa$0U9J>#
zA!y?^vcRr*6QfM)fdGQjqYagBm`(tUlp`Z!ZvkO(?9|lhiB3a7uE&;C{*XM5dZh!t
zbg?*07y342NcqG#t=i{e9F2FdtnUm|jz#oJ86cVb8fk*)lK|VTbT&{*waz)RD-D0!
zqf&!6oD3p$MYJ*&Z<VVHwbj~M<Zpt3H9(0L9&Oa<l~vQXR;d883M?B9-C@o4XidVX
z(Xgj)44qHjCOmIkEaKUOnJGm&rDUZtmu!e^kJh6!qS2MQa=aikRg_Cg&CuJRClm!u
z@N#{9buE6_B3_#iW`rrk<9G6Arnqr0`DiNg%<^H{#u`~cOew`V^$|T1-R)Jh9P-j|
zM}-h4uxiwV*gHzNUiB%>y(6INOdy&(?VQ~+wKZWztf%*`s^q__Cq*sx`uf@Od~{M8
z`{{I1@qF*dD0|1X;7#a2&x(4Nek`xpX^TRqQ65#E1x2OjHO>NQY5%26ZrjpKj8i3N
zXl|LtR<5a4XlNCiS$jPYir@h>jdieK{Gr2qZ-u$D6z9+I@sCWUxKEb4)mR*vj2yi>
z?S~On(nutdXqyhBYYj<-vTewqG<yuAr7eMsWP(D}1ogbKhhhxkvQsLZvSVZh$4SIT
zqEt$pSC@VhZ3U{}e_UM##T8P0v!;rCBo9a?6OVJXPoLO8nx=Bc=m*e3O4*Gpllc8R
z{yL?kuhw&vTM@}IOlR>4SkSQ}T}wk<iz@0VG}eI)ht%+csjr)$(pa}E86+>#SSY?l
zH4tB_8+u%01)EFY<K_}L*jxhdHkZKh<`OvCTmn0rwG66`2(VUUS?N&+CUokksQnu{
zNF3FrU_q`nW204hiQ>ekPvo6_i*x)Fajqh&i##bZbr@BykPCSZW`15Frusaq(nq2k
zb)3jt@5vJ#^Ye4Exx}RC;X-XPdUSPcbworR*%uxuniCpGO6Gf<y%d23?Da21vfZ){
zHAGKpL)TH8&Ahr}yqVGp_B_hCJf=}fuJ|&Up(~)qZMUU&B`!yVZv3DLLLa<+3+jnC
zJrXp*x|?|BM8UWC8JDA1C=l}9S4TjjSE;++%&!tRP`&u}4g4aZ*RY}$+}&~M_LX#j
z@s|I2cPFkA6>&71Tzjgznf6?+0~dQC-zQ(BDGgm0a`WtkW(X)i%)!1;Zs(n&_RiME
z@y<5b-r3za**^xS8~Z0aOF*SVq8lzkF>}Oal6-d%b>zj&Tmrr<#U|XhnIYEWZu*nk
z$RdILD6=jQpcB(B^~juev+Q~fnmIjTRo9c}`?Z$pASoE)JR`FvKt9-PyIjtTE^Z<&
z<k&S)QjgoXMz^&}86cNj>1$Yp?P{lPB+zvjG9*T4=W~ft2Tl^A(CF+}(!I#s$Q4az
zQ6?q*k^E4V6)+$2#}2We!;Rvmwuj|5yOET(QPBpmCCG}Bh7{$tq8Wx!+HfrbC*lkt
z70FOO3}gypLYj*r^y>cJ_)Y_`fNQ8`+^W7LRI$Z4;^oCBU1E(8sk;4qrrEgHLjhNl
zQuXT;=7`7$rqL0#!|73%W(%Zd-&GUh>B_YFP+SD>i)i9P|BE;e*hRvz4MpB(EoOPg
zWQgEL-0jg+q8p!3Rk2mI=R_jU_6hb_R0~B-QNwaDVv$k-6-nTFtiD7LzR2RDoZI4!
z>W4nLA<jTuA{516RdpSWA5uyzENn2Po#zn~5fSQqoCus=Tzu-QQ)yp>-20-AMsXuY
zDG}J~JILUL5elQasEa%p?>L-I?>7n>*K$_f3*-DD^s(ahi@9i7#qTeuoxc=iLPNxz
zIU}5-Lz=oAh`91uoJ!}Nt;x!p(tWrDzJ`=V`TX)0`9S5o14ay}f>mE?v7At@b^+8x
zFIaiJ-vR#(y0VY~6NP$3trj&gb+MDAsUk}4SS*B&TG$5Ecpl_0^7wRHBpeb39bdNw
zxTHkVUe37rf5)uj!kdfo2(B=Y1CQ&h21KL&t2{Z8Ky7q9@;!=l9;0M==;^an23X;F
zQ<4xIvH=RNF-1#JHBb&zIfJB8r!Jt;haCA*krtK#^nddv*uUbjWe!yj%}HlLv1>NL
z@)Zo0gV56_)KgvrwF1@c?aLOdSphTP2#Z&2>Ei5*#dp!3DrhHary-|TrMS=aa^>BI
zh6LW)P;(^#Qo2FG)`qy;!i%P~0UdCSvZp1t$SJ6S7Gd%t`2@7WulV?R!dU4C;?QZp
z^quuqD9XC^0!Ud9S}Y8b6l$rc&I<`~*F|yVCvJkoPFCAYBddv;Y8Lbo0LOQ62tv;y
zE(f8L6CG}H%f6eyjDKTK_T_?JV*f$_92$N*{*&waLagh1%?a_PDKtJJ<j19kM~L;L
z9N>+G021O{$^ZkZ*m9w5NA-}z0Uo}u8^T)p(TtrC+O`;FjVdVzN7ENGRqby1(p$!w
zF0}ve_lpY`F?eAt%jk6J63D(($V8*O_nPtx&K1$>&xFb*)rO|I+iIfw=%%Ur_dhYn
z|4E4XqRmVkzI;*cMde;p?nUKZ^gQ>XiFI#2Vdf?i_gda+8!k`g=4=7PR$IiyLhYZ6
zIhMG5%fD5Tp^J+YXy1XBNRmsOGSw9(>6O)7TU(uWYvOceHx<>76saIXs<Ln|e8>i)
z=v{_BUcPFG+qdcRFO6kc&po<xYLdOEYC-!7QxcS$Qn@LWn^L(c{by}Tx{^U+EeoSa
zq)rJA6Hh>Q5Ce_ctJ>;6jjuP<ts&B>n36CXQnJcLrK%(t->Pd;_<WVFIO5nS(ARy7
zcj9^@F5#3k9UyZDNJ`g{TSIfL@n$WxKNvHg$azPAC~udOUS*L05t@5bB&IY(bou4#
zYPr>?`|(6u{j%P~&53;=-s!Q3A^?m4==-V`vdE{R`j9jB`iM$*c?{-v1*aYP)c;(V
zUG-bpfs53HSv2QnZi}YTA~mJ#fcVDScr1)j!{kC25&2tX;9kfivx{zOfHAoUP#+WT
z@0>S;<~@ahHOPCeBb^s)=ud+8mUw7!ROBM#^2x?8j^({nQ8+{$LNU}N9g;|jFr@^<
zWoROZQ87ZoVF{qgaC4G?U%{8;G?9qDG{GSkt_p1&ToSb-W$ukUW<+{%h=*?>UzPy6
zv5+rPKyqPMsY9;680VAZcK}imji`;HjccS|nj-IWfTCDa#1#S45@mUWjvx+=io1Z3
z!6H@nT<p~xy^NuN{{}9hOx*FndyZsTqA#(k^hM_tC8BmC=;dM~ORcY}rF(>dFIq-?
zF$;2FItnNWSQaSXrep+6CaoIklulPNLrGDp73WgK4Cwm-@dFGQa)u-O6+rjmf1}G4
z{xxDqM5HXfhQW-DdC{#H;>sOw7`Gc^8!7Uu(aL%eiIf5HNDyraarz>7U|8yb?ojRV
zj2GiY%u_B+<eZw$&6!ZyW=h8eU!(cNBn0@Q6T=sLJ{@WU9=U(Z?=w5M+;GIQ|M%jo
zY39rO{uGbYIP#R1Jeng7Yn1Q3xC10$_wPWFcBg6o_u|68o6SG$e=h#}e-`+EinXd=
z8qHr;W}uu-Fl1bwWwgNrF&C=UFO3;eRG=|W5nZ|OKqZTRPL9}&+}szpSwnYn%s#P;
z)cGm8ZJ3w2Dw{*DvwGYA$kKw4%EKV)Vpmac7C0P!5N~VpT$ns8q+SAj8_2U!|D=jG
zg$}56xKed1RkvwXH!;^H)88`p{;a#{chMa_t9AOE6u%J)*VAf$rNWh=yHvPJg{xG!
z?%8ca;Yw@?hOgQW>7Wl8x`x9U+wr>NPbSPo5r^r-xY7GqGgX&QC)E{wjaOGx{?O`}
z*7!CZXkB*64cJk|wVs2wQSeJEnzC-k6nf?u9b-bTkhufMo1VJyj21E|F;84#hkS1R
z&bPCRm79dU)0Spk7p)n#GHlznGsCuRX4poCZQHhO+qP}KJHCHcYjscubph*Owl(>T
z-uuW9@SP9i^7r|5#pfHnnO{hlB8P%>^9%dD+=BlfGs+R=e&YfFa@z>slVEIzhWwYv
zJttqP?C|R#K8+r8iI^$&6jBRBWGubZuTJLpJFw&0`~K1m)F*HB_h>ig*&)gc)8x`4
zqvv7;y*K9T)NslpX04-sis#8gj+LfvS95(3>}+yc#(%MAw2OuZj>H#FeUINj%V$oH
zKY2bHb)O`cax<>B_TMx8{WmyEI_f_bx4++?%j%jPR_uVT*Q&b5bNVmCAd%Po7d_Q)
z>+g9trY6460tb^l*X_Ty`2dBFkCdUIza$@k2}u?MIJxzgk1`e`(<c<1+syP6vrbr)
zci`m)dUkF+QC}bnpZ<kk$iW)`bd&qosLLK#BA3{&7xX=D{NK-{^<O+9R*l5zQR`5_
zviO0DZ7Dic>#M|tfdSa7w~t-^rg_x%<J9j#LKn=vYLuZg%2KuULDAyyTb%0$+~J)?
z@@I0AG+`kZBg-KV{X7SW`-&-Fc}{Bt)Ry;y>9-4ml9F_di^3$7Md+HAc}3{lXu~<u
zuvuy&=Lf`AW$S!l_Z9i6^IlF}&|rz+#FoE<o(pE|g*G6NKH>FaD$@7K&!ZJ;qu5W5
zo0_TTa1>aspkh>(z=RyRW{tPT-}(i$AqwfyRFR0&<iNy@W$H3-L%ou!CRl5R=Ss&>
zSIieeFe4`tPaggKBLkT9I7yIyg}-gyO$}0n=M@#eya7d}3fD)x5j*f};{992W}}|s
zh#Kb3iNo=d9BuHQvv!d0ogZNuoS+G?(GR(wmsN3z3TLqxhDULHSQqcdckAgiK<7q<
z{%da=PoG$BCE)xUeW$;o+${`HT0k{Ns{HifKxI?@mS);z^Tn0IORxBGvQO|VurxsG
zX=7z8o8%RB^BHzg8ZO+LX;KKOY1+{G<0{~A&|T3TZYg)V7E?&!S0Ql4zl`r?u2w#&
zEfBcGyw#3ru{z@@M=olI+X=?M4g<NHqoX1|nFVEp+Lf<91>K@-&+ml!R<-uy=T910
zNZ&2b!`C&Ou_eFx8%Kk^9xK%4fm%{<mP%iviZ;4r_3+!--$#Wv!uC5mLk;sOk8d87
z^->dblp;%^(IG;h3_kB7G(YiJ`;b6+2;&Y|kl&}iIg`?WO6p7@(UWqTP*=spY~Tpk
zK^r>p{Qh87OBFGm#=vL#vx6&zx-OGYCB5MflxN*19^@K|Tz)C9ms8e1`g7WwK<&5}
zA#7I-K8L0AH+O?i6_K^ga`w0!FW!3ATZJ+HsmLkueKTg&hlk^Rab3&jLoe$5AjgWI
zL)dJLf6`nSQpbEu;#|p>;-S5^x9#=M>v%MXS1{h97|&ureY<TRA!Zosjx*F`Q1&4Z
z=3nMZj<TFz4<~(jHO?wYs|lU+vV2=VOw7^2Dc)TYK<Uf!t;2r4R@O*+VkP4iq<=+2
zw*A{~@#5)yqKWNp$D=Fz{bpi#yrRjMby>HnM^j7B^U3mv;AyzR<7-Jk(A#B;_B%MS
zZ<pW+@<7t{I_<MNELiPL1i`ron);ldkpEPL4Oo0OW!r^QFHV9Qjs5Z0U%DIqIk_*t
zS4w@%IY|_+2<r{WX#Q;TSV(3M_m)JE!o-|9q~!R&u%Qv#G(yQA%)s4Jp@F$-V~y=v
z<HBsp6?d_Y&^e8u3Ov=FQPy$2RD57-(|@wYy%W6CH{K$TUzK^~(~l0Vk&@Kp83PdC
zP@xIyTs{(^l9Ktj#{0u~m?W#OX6hpnrmNaMd!*+G(daSWZ4QxAb%qg>5!4P&s%ujy
z5@F|TKa{2N#m}<5co*W`1AIgohb30v>LF!R_i$FB9GcUFy%5iF#afCec7cCV)4-1d
zG+3An-E-d95wdYlP@YjcY6XU>*&W9IR8eSiD|q6({KD(eXI_llFnan625Ol8dnC?h
z;6_T!&r6tzq|dcDu<x4$nXz8vZbN}(E%2IlsX;-j*#$5y55q5r12;JAh0J;2+L^B_
zmk&j{wKU`*D2ZtzNNT7)q(5JnZWpin^3jJBa6{>o8C~h?T7zJMmmrY)#M-w?-cK{r
z0Q*nov9d#9cPGpFZ}GCGStT0=SD;zhD8FDafAj+JsqjS^CN9ru52RE{#@RoHcS!9f
zF3_~6MuD|jQ}4H(J_@$J+vDk{5Ewf9lPeOb-P7`sk2b|4I{b!fF6EU8S>7q~^x@(S
z*8nWuV4PxDDsGD#0YQ=};PP?HmN1gUp5I9md`6^$&UqaEy{Q2>$<xcNF}<k>fu@pH
ziEK`C!*-}*vGAq{F9zwOf7F##zpFt%obJO|hA>B5EBV$5#ag;&a4#`OM!JU4+W2v7
z4-9*rNrKFt>mo|*I{8f_MXB-6(a(MqFtUtT#q&a@S6pHoqfdC8W1@^xm)JMV-2$tl
zY@H1ATlgpgm?@WEnA0GXVDp9gu&Pj|qj(LR<Y{*((^j%ip2Ao=(D)HFp7^F(9(rzI
zuk$Al>WgxRgT921YarLb(Fc6#l1r}Q7_z%rnN$3J)ww9+2W0P&n+vVMN{|oPsAb%D
zFGkkhpu%ha0*SKjXpihv{=G!L%+D#*V#&=y7wE90;Vb=VGDXEs<Md!d@k;npmTf$3
zR6{`cZfr})=^v#K^sXEEjo=Ppl-Le83~7dK7j<lrf2|$Q2T$&s*p)5xNT>k1wyWOn
z9v&<(HHkUW16k?$BQ``-@IZ~FUr$Pz#6<-8138%18>XB(&W4Vm7RTh&9G7swnnRRL
zf~x;ZlO&tZ->pM{*xoB~p2A@J4%7L}hf>s(a8t_hIW&s<$BR#r@S#8+fO|B<Y$3<H
zHcSTb=C`_FEEietQ!so`wF|c?F|Tr+5_!LHGn2}E`P70Nx>fS)bsEJIl%8Wt%%h#<
z6yJDYioMPYl^g==JXjX8E{vG6K?L8$Y;pnea)ZB)U`mcbpQV$@ep1%CQLvGi;n3>x
zMbZRXnevS3dj}Zqay$oIuT)=5L<K4}ecxywCFC)LU@p=KgukwZ30~Mf+J>d^<8%yJ
zHd|G&{q}e;Pz{L(_hL}om!QWrDw8HG*(e73b|)vMsU3fSOn`r+0_qdd!d4)(4>-d+
zbOli!ac7d(_69OFw6_|R${Vg+0;5Z8Hru&W5a>GeUZ<gmQ*d@z&V-FTjxT>L_0MCf
zixKhy2~M<xaf}fcgm|VNgRI50Uk?2ZQd>|S`#4v35-{)3d#wHp2(N_fva+3sN(NnZ
z@J#01f#S<e6BBr-)_lRd+6@&2>gqHl>|S<m4dc+DXABidpPkeG;Fp`s1W9>J@U6gU
zsHOe$RRWc-LR2dWGH=|*_t=*hb&JEzsf8D?9KI}a)6{cxw&~;hRY6r*h)txY<2p-H
zf&=I8X?59)9nuo0CB-9HGY?5}X8k^Kf~(UOf$*L=qS@^rgvZJfEr0Uq=-IIK*$cUw
zq#lfWi{c^cW|?qGHP_+yLuPfeJ=>ztrXpD_N$}r&zNX0jQ|zr@NZ?Tai2_-%;uq9e
zU_R?cAx%$}m8;U3U?4!z-^EB~82GFZ?fxp($U<BN9%c%}ZJ0E3s@(695PFYdhyB)>
z*^v4iFrNbjvoTYS)`HkNxHMR(Z3`_-vo=C0dlNy83_-l^%RKF{;CP2iL;3sq&H+3^
zO!~qE%Zw^p3HJw8cG1DBLgIKh==k^IH`B41g_lgg1jVyIC&&eH44+ALqpyh#2_%!#
zsq;_C!HZZS`_ES0E-KUc2wkTj7PLOW)ORYC39xY~z?kTOU_?_td5373%usj(Uk!EN
z=NI`u5DZU4B_9mI3xxvTNKVRB*1u-qwJ1s&40r;9v)ez8HD<SEvsTQej)tb9>Q|@6
z+=gGw!f%Q`^&~AZxxTX8Gbi@|=GTH~(J_=vBN*;T$~)2vF6o~u+1T`*2p;bD@`WB)
zUf>`eOG6gs{c<!`$u8;jpnG}PFqYHY1YV%<<P3v_de%_`jAX%&Uq_uUYgMr=CP{J5
z6<x+`MVbZXog>dgQ9{?kNuZq^D`GGtAx4V6yR35T^ukj!iOI!%XrYTA0?|MXWb{it
zMQVg~f$A$`va%C^k<gNz=I^Pu_Y6eGCWsDwDYgj@z6$A=`R731q>q*ca0vi?3J#c8
zOc2UJm0G+$Q$i9|dl}#Lhz0+2S~4^k4ds-dmzaz;atP~|Y8uFQ=cNDusypFLA$mSP
z^iso1=Z=>5?qo}bZC63<BD(=acMjfPCdc0?qFtSUBPyQ}P_XFz4)mf!2=vFnr#xak
z4INO1Y9zoj{G#mAkzl@sj13vvKnU#h^&|Y@o%h{FRdnkn;v>j@I1gT3YaAaCbwLH!
z%N5Qn3WGrpm2~^F6!>EAmQGZ{eDc|76D2`fPp+D(OkX9}V8AqPNTjF5xC&WNx&wmW
z`PSAZJw<d-<aotO9J#H8E)!Lo<NUT>ZUhiS=z=yl@Z)<aR6C~-;`R0MVi$L3LN}=8
zF2;APZ!|B@d&zHijN|RHi{l28pKl<yh<@<Tfwl?gpI`DtKtomOb1JD$ez;=Dp`P!<
zEHKn`hEj5#bK(vX(_uh@%a7ny16NrQ1q07_8+z#U1N8N&pzopnmTcXw_2#UCNq#kn
zZv4i9ElGdb&PghU^X7Lhe3yAeCUiu0phf$X8}yk(j<yxTMWg+<BNX!*9f{kT(B{+I
zxzWPR&SN^l345`Ta{s+xh=@L<gj(H=k`Ei~j9R7Z)3y@Y2Jk^>bArL?5(5b#>ima;
ze=BQ`4v%bu!9GU=kr<L)py)Q46MRVv*G<<DH9$D5hem_UvzV>ICS*L0r^lwOEJPhd
zw7C)T@LVl)Rb|#?Vty!>q8xnhXW-kiTuC#S^53uac*bEprXC&_BG>DyT8o@j>F+<e
zJGFYxt#htQ)cvf<LY5t1w9}8KSBML2@`=xZ7HtQQWR!IY+2KpAai7u~BA*OVsOxL$
z;0fs+I2!$l;37{J1qx1@az143fnJCn^K3tkCk|(&$!UwQ)P39bX~9Oi!aon6mA){<
zK)e5sA~m4kb(+zSs+I|@@N>oYD@DC&KV39Lp7cd-n$?a^5FdyToaz1UXe*8<RL&Yf
z8B#b_2d8L-f^fQi<t$4sO4gx-{o*?vG=5$aS#4i7zk_u5-1$f#;5=TCl?9v}*x7@P
zysvt0T$;WZH>sH2pSdAUn8%Ti+*R3E-o|ur@b%0oo$26y!JM6B_|f7q;};ljc5(tw
z`^&O3xz>PO(H&{2!sO-Y#UV-~Kcb9zliNlWx-H`{e6c`|A}M<jDBC}j3Q_Vwjc1R?
zQ(FBQQ4Wt-QSCky3SL_NwNoUV(|8O)@)CdG!rX{hj3~5}?(##}+*HKF(78Ui)ltOQ
zAxMy3{NKQ>UNS-j&Gp|i*icmIe@xhN<oX2csl<W*7%8TvtkA+tF-93{VvnE<*{7rV
zqmKv<;@9SCqx&)25AX=H_gXh@16UihshUYdhdUi8*lLtidlkeXZx&^q3nKj_?9UcD
z>O&=tfQyBq!EN@Ln=Pk8%@e2!|K9nK4-RH7I~&Sm$8gZWVS*<Q@j=Ckh+~wra86>`
zGXx%B1Qx=2nCL*s6uv#<JBkmEfI*6>GrzrdS3KRTJHC|EIfzECIW}73TXmY*0`sBg
zHMAsN_v}S-WDZM3YOF~X==3ezxs4H5%kdu8wLqiuc8M%f&bG<mnWTXAk^zIPUc~jH
zd0?o4KRQG>$CB9vQ<=)t$;}<#JKUpp5-=JWXnz6>{cvr8mQ!ywF-BTn0ToY4PM?6I
z3N@2Y0F}>9Hyr?`x^@E$m1%YWVISnMYGTb0ULNJMomO?=zQ&P<ga6UG?gA<)<+1R4
z#7xdcwyDAa6w%Y2I3Jq>30>bt%8P1~X#Gxq`wHY6f)<Jowo@AoFlbA0`E(0ks%)h1
z6{T84RQGwYnLIifPbxvoHKazF>oq1kUL|S}EE)uAA7I7$mTwR_k61h6k$dlJ{sfqn
ztjD?EDS_GBAr$N$Fp)pXL6dJQ-RzON&rO@fG#nRIlF?3aV@s)kDIYEZ%D8#9M7J&z
zEo3;6y4tZc{lkE{lr}rS7kT+9>u>%ywbD1VZ*EIzfWaaWv~lmlBeGS&AGbvmQV{{2
zS$HY{MD~?YUu8ZcD5_JSUnQ5K>vBwJ@z)##<2_cpY<Ct43tI{sb>SJN^^fVeNm?2?
zm?;NZqj;sb&@uoTYs$}5wm%MIsyYt!__0)<y<eQzKFR(+I~U0b#iKWoh^3>MIKB2<
z_TAA$2`IRZabGO4U|2-&NGZxVg<qVJk}VJ@WJfAdhSjsRAC<a1v-lfgD|%m5-OyYB
zrK$xyk75IbH=F8Wac$q9{!p5n_ZYoDE$M$LF!tP^tApYb(SKEil_;U4qEA7aBj2zh
zx1R2loh4+mYu!E72rNEI=tyPoL@W~1wDze+#6xSv>^r->ib9tfGhTFqCP1x<<0lAm
z`U@j!#oF^b1ovSRUc|HDxU<3`>4T2;Vmw?h2yW8$iq($Lfuh3&tA#=Ju$n6NJ`llB
z!32FUjTho^iGmaHIu^o!$hS-2V$s4tMgzyHD<qN5K!Nfhdpw^uF`Hu6YeWgmQ;$uy
z?yE4X9-=pW0F&K_&!x413rKTfjGuTGq>G#O{Fa_1toi~UB~$Y<d<8Bq-ybec6Ywb4
z9*!j?0wRUSJsqHTVH^luhHH%TuSLq`Z(keAhNo8RS^0rvzR%mv9X488sNXduy>Sh$
zSM(9dSK69cNo>s-g;g_>ioP!G%c~?EdT?>ELFvTm0r3UgZ^Q0U4<08H-Tq-b(29wd
zoE2MpF@wbZVPPACod(l--}ia|G?nku8py_#*)2y!dYH2HVRzly&fMBIhjJz)uvya}
z+nZ{oY2ngQkzDG1$cX`R_hKB$w8`w$KqC7nJE{oD3?m%Fa>A+Nxg`!o=2o&~E-B;$
zGDA2G;&prY!Xzj|TJb236AH7Ea-<laLENXKQ9;B{U2cMO*E}U_X-Qnne>Ne7m<ODU
z5Vsy3+2iFA4#P0-9h-^Mk8fR;3>)nDHf%R;p^Z2?-iePX=YkUT!W6xkm(^G`yUaVk
zJ2EFz3f+c}+c;@Hd_BVv3I_fbyySLNvFPI4L_9yE67QcimKZZtb!>x}nJx0Lo+mw%
zw<)G|GDtwkKw4F0XmQUygiwlgCO)SPrxkvJguB^%9!I*Fj~8@Rg(d}J>mBN^EHFq5
zN1!V^XDvvgVK}SiZV|pW=YYJ`t0UDN>bKc$>2Pt$(7a?!)3{FUVPdmq5!VmcWt~~a
z`z{+OT6?KnRYa;lO=#t7KF*QLc*jXwIV{(2KKD~qDme$YhP}DaGvE*@?_0EV?hOQN
z)xaiuUTBVL|LE*>rM1Y5mPC88%cdQ<)OR)aep-CmOh9=$fxvhn@laHT+Jqz2VS}nN
z33Z8oG^UycOxoZTDzLs?AzE%*%Z{*q=b5&-WzZTTO(;mZQ=#WPv>BUEGi%o8YYDjR
zV3eY!&M84}(zDf(IREuyk&mb#&ZOmZH$aB-phh~(UI&g7ZMw{so98<gf_VKLH~;tk
z(d20$yM-8fLPeLC=*rrm<4KMAi|O`yVvAWWFAvglR7kL<bGF8Vp*&5$v%69(PeQDE
zS*tNbbLKDuhgI+P9{xiw(**yp*+zNiTh=sn*U+(N!j1+OZBELzDQ8CSoK3pH0;4M+
zBVxE(^u)%7uRM4!pV>n*2jOEWG86HcN}JbtM<jw+1aVN3xM)YvSE11Ru}?Y+vXmcV
zTy;*fazQ#1C9_c)%&U9C-B0=Vk_8gOh8gg!c{<pudKM`3LI%hkH7lsR0534|c>5h<
zvgIwGx*0&Nd@G=cRCDi5l^^Kp8L&4uHz3yi1u%a-9UEYH27I_J<GOViXQxzLpKNE>
zpIS6KAMU7>l>rN8_=+?bA8N{YtnZjD{vH?SWj2$7Wl6#I+<{D-qb1S^!ym6&wLGZC
z5(T0Q9bkc}18aJWKGq%N-rH2`z|CB`|5NVx*UwItNGsv|4M?L8O*a+H;N5c?IcpR~
zGw%<&cD$iA3?1j4<-lE)fUT3wy2%;HYq%P9i50lg9k>_ImtMeUr=H68l!V6YYVu-q
z*)jN7eCAwb<KIEXR07Fp2kOxQqv(hA-Ow5(#q=KVI}U-~z52Qw7t8l&6B$*jpGcA;
z|3@}!L4d8D3}wt(JZgordRm^$ROsJmq2YQ*@b{C46ncCQ+Yg!8tf!~8u*00!wcSsG
z1=?Q~?ndnTQ*XX*ueJLCS0^Vor^lnuo*1)=hn;XO&z!K|ud>xczVM>{41}q;tbBsV
zY6AbTcZ~@-@ay5ZYsIC`OgFW*CL5vPdEunSxYD2|9}O6Vqne}fg`IV+D~R5NI{}0<
zn(qQTnwKmy*zbVXy90wEz{lOeftcPYz?(PxJEW}DI9YE`+cPN$`t@EO#aw4QZ-VXb
z3bpkKeMO<8EU%o@WE6*Wu)e3_=vF3By)Bg4eK+kb3!RYojbe)|N__RdB>`jh*p_A@
zz`OaN#dtL&Z-Kk)xIa&CsX!kUg?ACauoA2*Ss{$7X$4K=ssK`o3A=h*Ds&XdUiYFS
zm-PMB{xCYE`~|p-i3_HcwWZ}?u(_t?Q7Gc{kmIc$`$I>rkJZEoj)TWUj;4V|pa2ou
zW@qWNr@s5D&uByy2}EUKn7F9d%av}Msz~_Z{4sIRK{b8lOOv-!cs^GFDbs0CxLllv
zxG$U#pG<DJ5Al%C+OOZ5BuUj|ahb-?R2qL@?I2TF!AunGdB=&MANwCvnp)J<y5!cn
z?eBtg-2TW!oFKhpTuk@&T~$Jetl2;Br>QnY^Q_93#vNERPj5u7*W1|up7a3Ze#{@c
z5XD~k5(d>9&!zX>iooNyTB6_*j(U3;4HP%HvN(-Q<otAS<6JVrCWWhLlkj*z!HV{T
zde~q7=MDeHxCWsCMgN1d{xr+#xzU9tvL^_{J=R<H*J?;=)O?#7MbRsmmQo#f?ly6^
ziGdYIkddaHvZkTQ%D>E44ruPF&GW=H#wN=v=!mmmO)ibZliLyQBPdz728Vx!@d=6c
zqvWTNADX4xsLzulnUKPMajWm|=c*e+W)6Z=z4`mTi9+X(*BlTID`+P|OsDP!px#Kj
zh}2i@3dw+0+mFlK<^@Qfe*Ek&>k2}<*$=Wl3XA#$=S^qmBgC{>?@)-bi@M!Pon#&#
z*ID|uJ6tSAt<`#&dk{0akR7vK#wDE5QoBVpP-7gHyk=pap9m*yAO7{O?;g5po!7u*
zOsWP>a5hd9wL8o$S$yX=)oOLJ#-H?NB5(9slOu&tP9=b=+l>PsrHUz8_zOU{)!W~!
zPX_Pqza^mNDF6a|e1WoYfE+%acN@T)A%?g&Af)0SPP2Ph*J^%L`Nk6mIIhmMqf&l8
zO{pighQ5w6xG2;O$l(GF%C*$|30D|+b!H(cy#~>pi)~*tE@Is^hrf+4zSN|$s26^F
zT17V>sIR<=hs4k#Ks;Ex#Y5tR)vbg>xq2#C_GC2C<dH$`)1sUZF$5;3LN)rZ4aahv
zF!9SVzrH6oh5$CXm^I@&lcJTBB$4jN5l>DiM#S=Fsft@5qJ-#}yr{~9OS*)%(|%4P
ze`)Q5qAV3g@uWJTDh0@(Za}-tZoAkn!jN29o`)EV_o(QANL0A~c{b(QhdmR2e$Z%Z
z$KBIb)f&IPhzLO}*9)lI@v^xNLMZDCQ6!=o@_A}2vy@PASPX=sCZaWJWA%7ONM9{L
zJzaQGg5?q*{bVfgWXBoD#rOYR@WivO(PUawog({U<mSbP+pul?5|pA~4dloWey*g}
z+|^ecZcbtC0EsyKi#P7?<_3Hg|11xv!IA+i?>IW~Ho=he86ZQF=&8c004-V8G^1L2
zR@;7TY|EAoOJ>%WXcrrmyZ>r2@o*5Akt##_r3cxxe03WDwl!!WI$@T+<}ym~wB3UA
ziG-@RiEu3+WC-a23eUp-=Y-URGc0q>e*ZvoEk6sg77~!lv>N<TRP<CyKHxl(IenM-
z2RaK`_nmP!LJnlPpGth16U~h4{q;_Oz088~RIPpQZwrr*b)&=-vfOX=HxIDj#WiA?
zqTf6JPLGNWbE_n0Q$^)Xp{;g=>mWxz#v2^~1r^kmjiz|`ODSqLV0L>IrGx00aJ>|f
zq=7-`a){zs1fvMbethyH4;><L`EyE(YQLTkVzU1Xm}BBacjNi+@M7Yk&R+Q7WyNmM
zmx9BvzAkPmAhLh_-L&95XGGp|%}Ha%W9s7eq6+H9FFj3?3-Md7Jpi%w#~;*Ur}E@h
zM?F&#<2!&?SK6pQpApggTe&s6BB}{4B0yE#8D6nW<k1Y$Lb9w*$&E~pQOvmX{zRQe
zh1mW0U|D%lGAZ<siQcrW`Vx;2ya61n`Yu#oq!(yB(NO^HT92~ZZIV>)cEs0gym8gc
z*6fT%?XcB-4Y6rjQGF2?H%~SObz%mNqlW#&zjYOU8m=Q`CyX=u(BmDAHX)^*7=gQv
z$mDmPYaam}KXTl-iP{N2tiv^t#T@l}*XUNFM2agx&8&Ri$mc^s6C}+G9K)(2Na&g;
z>{t-J(wYoOb=r;#Cy!Aqe`Q5Zqy2tRpb<@hBl|b<9=A!$@zwPte<+0WaL>Ge!susZ
z%3(wuU5U@4)LI_W&|?jcF7Nam20l3l>%Qp3kh^n9zXr?PY?&a(uc}V&C_`n;dsSj3
z$3TDWf2yeO^6(-iMwZ*ElK1Q9^uMr1ghS76T1s?%>JR!#(}bm!8{&zzG>ZoJ=8E%G
z657Cuk3LZ4+L&To6dE9C+6NT3q?(q{L`w<D#w6wPC<yw-seKvj7VF6h;>V?>w*+k%
ze?#<xfANi8au5!l-Bdv>^)-pB#(#>Sr2o?&uOUL-G=>9?{EcRb7chDbtYga(%HCHB
zd#b5BHEdLB(px>I4hL&S6{g5dZzlwuVhJ{4StZ%YLZ-QgiQ|fbyX~>s;UT)p3?FZ#
zwpSSedP$%IfuO+`kdDQp1+JB7Oc)WYs@7myLIPnlDIxW7=q(WrSE30&U*y7bV=&<y
zXGY|GwXSeU@727#s=sO)nPRY~;S0@%Q;lZrlBJE|qDgu188D<)7^KM{+>aSRizg5p
zKCI-C1U@pZVU!CrI99I7#;PWsHivC0NazOq(}T`OJ#K9HP%HpNQ4Ma)rz~cE9MjMi
z-$j{<H35`mxCt08Mi|sBeJ+0gkxSz4JYbMk3Of^K)7kD^xg2CtLTHcQn?v5r_D+-F
zEVEW*4QmxgqZ`IFz@nXUG($t^HL_^TLvTmUQkm!;ypVMRXkVmgSadyWrg_2?tmNo&
zg1@81`<O0B%Z3GUp3XH5@&Y|$GSCsja}sp5dnmp2*;#YIrD)qXFbm5NgXd;~yOj`d
zEnErg)c6~onmx!bAz36q+WDaSQ~NP@!sQO#tf_w(tS>NmCz{Z$_H%!Ol6WfYtz=H!
zicykX5B7u|xubv+fvZquPkqQiC1!<I6F^A{p*_7^J_&&0zCE_JHNb{)gZjz~*#)sh
z{GvK;>np1&P%+Y(+R(hNOuut<hyDp{WF=yv7q<1y4wt6&^M3R@Ar&nsF(+ZX7PVyE
zG2f9u*v|7_Qr=Dc=b3bS=fCk~ko)2Pu*ot7Lue&fIY+6Y%UWThJJD<0T>LQK;6RSG
za*TzBbnK~ld!N&o`9)dr*#G57y&MDnFgMhQWp6|k|Je5gUgZUirD@r8!JnHoOlJh$
zCa*?A3vs=H&Jv^ME(JD-n^lPFm?CDc+st~Sx>f%~dT<|ffBc%(ZnSQ#z`VrWgp;q>
z8OF(mTnv%ls1YKS9G~y;((k@DZ_#48vS%tXmFB_xE5MVE6n68J@+|DzI(7j~G|x1B
z1Y-rL3a7`^L$`-lX{cFXAo!+3k&5ZQ^=1dXk#OuGm~a5&z8!d~xMU$RZG~Yw!424z
zh6e8Um_u^?+4&8rcrf)<cU{p%C(x#S+bz9n8>044sy;sh)X8@jE=EoUjlVeO+cCdk
zn>tG+X5NCe-gu%{&~~+})ay_NYLZRCz#ltyst(ydy0Oqy&DmjA!X*t3K?or#TYlzB
zazIqaPyQVP652dbTjclK#SVNHi-C@Du+NWJ6K)#%=Xc3bBF*F}P)UWU3vf`Ih~UxQ
z@OtLSnl$RIit<m@+bz(8>Bp=iRqx&Uj_#Kq6@7oQ?@v}l+bYa{!wvNb69_=WZ$oSb
zrCZ^2TNHfc$xP};4JF=Te(H|9*5FJA*nnabzHdNXU-fTFFFnjPw@Z9^PuV+}WxKnc
zC$-p~tu@svyl`70H!l-!g09QV`+gXn)%RcB!~&5+(*y=tb5<qK-jEgM<~NIgeK^tF
zMIWCoAP#8Sh?AMhY6(q9htQ)`FL|-6qn1mK=Ta4Go@<0#1nYziRjf>ziFXm95MV5{
zaZ9sT--pQ|aq8qK#b{ZkDyksk9%X)fJTnmpL(a6HM{y^{CL1GhHt{>-CJCH3(0{{T
z_V(eLISIRswZMQikbhs;y&g)CeZTD84KTb3TpzWymEp=W?$tbcMSQVi!Z{(eLGj5y
zzDwDi2#hq?0%o9O75m@(7!GU-1goY1j_O;0fsv39z2~2|M$|Nwm61SN=?wMez&fWa
zy?j?C@h0|s8CmuWwt7?_+YNc`0tBD5OzP>BN5Xk5M-<)~ar2^JV2?^H71{&f(K<-C
zLArJ|nx?^Yz|5o!^zsP)y0_1#0*InJ!%nw0eux$?k7H)Kkr)O;Nl|sPkRvtq>}{=q
zx}zp82i?6B{vOD&0v{Kl2M^zNDL9fWsrfNuYPPx`x|HbZiA!L5HQi<rQ@Ik|<k>M{
z0N^sy{-9?@+${q%%60-6C^#sv{2ZYeU^oGE@fsKwm~HWWh>Ss=4@k($sZd+7dSFkR
z<BvM)1Uk;eI(GgtcZ|P(iaM3vvhv?Z+y>5--PUT&Jvsx(P&tF0DsCam7f9L=4nIlh
zL+F$wI^wig3WNyj?wteqb9c36X?r0o%>}M0B8I276KaL0cNV29m9lM`Gm3FD1B))f
zXiOwwGj1^D=bgXwdb+gJokp3nX@zB!4YVP;X+b=wdL2bgQP(C5vpy!NP5?_TwGa)L
z;stQfQ;!Ko$ovM)VAA!VGQ=<KRgLZVAUh&EC*bTWgwO}X8)cW6y9&eV3K#K}dBnlt
z2bI(pd)8^_N6m+|j9EVdbgs;gy_z^?LOeBVP;Lou)emq49jN?55=-!HNxPHw)5S+k
z)XC^CXyNa%4qn5R8D3Tx?Pn_6l}brtoFjUgQrk%Rc6ERZg?kMIhoN2sSt0RY%39$a
zYC7`vS?8OUXzwuIauxcQF4`9h3#HMVozOL;@T9P(=HK%30GTt~-+Cr>c%y?u8)3i~
zj{v#o5S1^$+#bf)&mT#$sV?q_Uurj6bnS5f)q7s2J3PASWUxK3ZDpKl5Tw7A!*SI4
zC7*G+0gc0G_t%$eu=C=xW&_~P-0ci9%Ju=c9lJXy{}jOW83TAS$OWo_No6bP()QjQ
zbcirJUjk{SP9)p~w+HM6*IPmCiPc;PD+s%>&L%Z@%n1NHzb&5O+Fr`+>--QctYcpa
z8lJW<t|{5%)Z*N+HCVLX8{g?#x_raZj~cPlTI%0r$s0JzwV7)1MJh!kFH(ZCR@MU}
zT#<Dv(JwZE$>?eA^xnhq7*a4Aeur}<nl|*iMzh-0|E5GsdNto?9^_;IG5Gxa)pG!b
zH{Y9+Hj5cR^$u_f3B%^1`)}`mZd`b>)3Ru3$8#~M1>K2+2+1Kviu(hB4b+3{dAn-0
z#@jV6kbk~ynZH=u&Q?OIb(TWYv+fC&pWF9@VcQF-(&7hAv-}Es%-#oJ@efcZXpMED
z<69q!(<W=Ozg`yv^n8~pUXKuG)rMmpX}-u$@hrM6SNI=<xewEG*7H7SB4VHMT4)*Q
z&CIBGc7UmxEZC7UmKZwTj-G8Y*Dq|Avlch5Q9LQaT(OkoP<wg2uX{N8JWcgbBQApg
zlVSU);lZ5!-P{;|<?5HzdL=sx*Y>?1UPQ7>jAiSQO9V>cs$}QXex|5Bmp!BCKiD;)
zod!c`l%RwlQzhkTr~t40*mE}K`teNDc(m9V+#Z6wkr;eDfpa3(z1j0G_Hv5-%sOP`
zgK9U4V-NKfK4pO5%=&|`XA8qaB@ZBn*Iiiv(6j1$bJVuR3E27P^C+7nNMfbEiQ_#z
zEi4v20^{_@QK~_YCezZPji&`Dzj@X~Wm0kGwk5f(G}m*7To5j<QMaz}Nz&8%)uzes
zt!aQ;K1H<m{6u+!tValDO{Sa%deyrqzVwNPD;rd#J!tMuq3TG-s>?$ukbJG<#+-aw
zp2-inY5l^sH8}UlyTg#IR8h!B3&|EOz1$TqL|9bk+BMsRAt<my+nz&2jgZdA8VA0+
z>0oUq1J0EWcn4xEXeA2(E;Xhud$R1+%l&n;cUyZ7_&U9Pop|#lh)HtQENkQrCI`;|
zFih7c<j49GK?Vvn5M!W1SGPa=tE^-<C?`PQtZwhSdD&f5b|4CuB=aVtALvQYmMs9e
ze_vB~5$U&gcl}F@8um6UKtZt#%W{_`w=+Lh9+wqIc+1bM3;0I36nA=pkD<IE3hoL&
zBpKepD?Jb11*c$uqcOEKmn@<O@@859?BzH=>U|*kNCI{a20~QcZtfEHFy4I$<OWPY
z*)CjNU&MenpWEef-%r~13Xskm%0?JGT3+02iHw?DC$+EQqBuFcLDVFKotGsEO>N31
zVM@#_sW=(9X~A1O4pytv{`^b0u?uflby@XYS-$YNs>1FDGC0L$&2UEDtmz&&3rr;!
z={;-F!a*876$Q3nBDD2xpxJftF-vJfy@bEvV_SsTbg;C&Z&n-DX3RNGPTlBt`6&kJ
z)UrMDOO!_95$8ISq%LvOB{op^snMp<rB4<=m4`bhW+(6#F;&a9DCHx6)0mCvXV9e4
zb(BQQ5CL4Dt;fT{-0Uwr-KJQ^OypSwZuO5$c*shZ5a02oY7B3o5X}Wy8x=i5UV7Z%
zcJ9wc0Y+3EKFENbfr9}tHo#7Z-lM?FJs5kJippxM-8_zQ6lyLTam(TfSR}I6g_`Z&
z@QM&Kbfj`e&^}lSK1=fQC5)Q_vz_>@*du%gaqNBVm1pQ{b)f437`%-r?c!9&A1ByX
z06gu(%R^-mKx^2`A;;w%aQiw}dkuIY`(F6sy$F<HJ@d26egO3ZTgAo!4>;S0T_Lgz
zmvad;{aFFsEw0k4Eh{!FFMX8Z>9qGb53=+W4`fu?b?(uy0q_4SBNR}~eRMm<Z2Oaw
zl3Wzk(C!Nf^f_h;sk!t04yiFC^^{dqjQ{i0G-_8T?EO|B^L|n|$XbDyd+l~Sp^grq
z>Y!}<REjAz-z6SC+v<Zf2UaNdaChwZ$x(a9_d}+^VaDrkG1~`PE=p0BzKTgqsZ?hZ
zb%sk?&@4Jco4!T;gwJpkaU0O7$qy1?%eS<~J#LtT4JD&cX(!3XzOvZrK%>+#G%MN8
zv=Ir&<ou-D@;p<_aqe={AmeRfXT1|Dl?lnjNEDKU0GxL&TB+~{f8l@tSzglt*VBN`
zC;ShaER!o!|64Er)je=}>&AGgwz&nch1PuprCZ8DPs2$#HE20khdZg*chsA|48QT;
zn0t3P1*KjCCoNn1{nca2`laPN!>&=YYvNkA!-1$W`#l6)mD5sx!Myr>zpf)LY5Ch1
z#@)i3oa7cwV9FdzQut5T3te(FQlf`&98gji-YI-yJ{_DhAJDx%{K{PU<m9>k-O7lZ
zYd)&e2yXn>|KLcN6Of)4axJ>7ki&2pXUptJ44_UzCQyiNN{6p=pz0Tnjbg*#0+Q-d
zC^or8Jbx;OFark~sEs>*1zj$`kppus&QN1=mOW!Dx-_Z;1T<atzXgW=A$7E{v#jvP
z`4D|NNXQT|xqJiGNCdH+pBt7ivHjeC0K`sofB4UfZlK(dLPk=;KT|*y54;$jX#U6b
z1M*6NWbQ8}FRI&b&`eVBz0WhGS!@^WUb@*pw+V6+Ip=F1JmLwQ+Tv!DrJRVyZFSGv
zBIjS<a^V()A31O;D3gRV+=d5id{6ysD*izrqpwdFD#A+JM6L(zK9X2BTvcZ0Ro6ux
zivFUgnrDz>$v*J$bT`rDn`5%Kh8(AJx8t7HW6c{jKW8sdaJ}Vd<%a);^^!9mb7$lx
ze=3{A_1^~KcEgjC!<W6+9sZGU=LTv>1k4*pw(Z|)wYs;E8-kw6jtK+{!H*IpXL1Qp
z+-`g>55LZ0+n!x$9;fdQayzD%gT9^bVRqd5QmnkUG^wqM(aSeQnUmB?6ntQQZ%e9L
z+S)BDOO6W4HZGd6XeZ7|WNSrDT^*9t)LqxdvNtxo;i_#YF$k>n>7z;$J(p?l#nELU
z#fxRYs2Jcbc6#OPQ>~oc%VV&a*5>ojE=?(G>B?|V<!%<GsxwE!G*gZVqI+U1TCk7X
z;FT23Lc}9MoHuJL-y2&?iIQa{05QYoHVYjKZ+BjVBbD^D5GzBj5HCpt;LDg}2T=7a
zm;Fr`L%4<ib)o6%pgj!&&mLfoGTIKLi&2q3ARmT?-4NN3_=gG)qct~3>L}RgT8(Tw
z4Y|rL(oyg~h|%A%F0)z<e{ZQ4SF1#MDA0PSqu267EMQgUx9>Ec=6-O+#(%iNAPUx1
zi{Snm#LOxR{vSL@85p?f7ulk9t7`3<bG<evoG{i225mPn*`miUNg>KWet`Ux%UQ9g
z4ZpkKSxACPlcjleEOQpyq@Um|2!9CpN9}!l)L0A{MPW5u{Ffp@kqOh_GVf)nsQGrJ
zX`~e>CVnu)Eo%YU(3xZWzKYbmkuP2*cTzdfgY#R0w><n>g3A9trT{Zv{lAz3`#(&f
z9NW$CaoPQx)`Dc)G{r04vT1@}sb$TKIIVNZgsA_4Zslap65eW8z3CGCKTd&6{C_#c
z%jFNJu$DumBiJ=Ei6fNSXk`$<;5)6?=^WCis$~+o%{^)%fx@Tld1c48b~OC9Xk5x>
zR^m3QPWXp+B1nXSStYk42ed8L;m_kAbvN!pgw70BwTT|s)z#G$et1RdeR!V611`?&
zaa#Utzd)GcANIbYnpSghjGi3iC$>P~0Yy)Ue34_Ajgxts4zG4)>#Ezev5r$^c>nOq
z%4X;AKZ-#g9<3=O{l)Lmt5OJn_j}bUo!c(#;^lg+dsa~*!ZFG&kFo7788G0;sxXsA
z7hLu$<#zwa&@*wPJGx!_EbeWa6GwVbt=Hi;S%I{x`S$G2VM^0>rIWHao)WuMqS|pC
zzHYH*LQ909i^*RIg0jj=9p$-D(Mbkk$StcF-ZsI`#h{h$T4B595pVB)>*h$S*VJfT
z;cUtA$Hxt2$)b=Ge$li6A%&Jq<S9S+p}uIrcBy(`Dm-1TC7M&d=hZGgX%W$!5MRdt
zb^A)@Ai~OTIZ6-Ij$7!k#d-DFto2sMf|^V;Tkv)x0G-sm8;SK<c-td)?eRyQ^zc69
ziOfLA?-h(lsWGj{uJe@zRwiGx#nJ5a6&eCd=hII5;;$viuzeC7iKc)OLdMUb2J$QO
zB<U6BzV!d)72$3F;}!A$@d{_E_Wv)hU<n0LQc(+Ke*%j&)Fo);$sBB2ShXR(v7uf`
z5ar{<Xxrt^sf$bjFUFr(RX4VB2n)*PDZxT&C4j;GkQ|w%ZBnhZ>xzUouZpa;kQF~n
zV(VsD)yDt$wqz_L{Cs26*85^*WNWOftaQ(>(Ir31T~Kti8F;jD8mJ%J*Ek?B8Hedf
zxz|x*Uu*V<Rs6C!ymP^lp~$<PYd)X%hz~~y-Rc*(k@bF9rsL~SWk1&y1MgcN_xBX+
zkSP7DN2{aS`h^!?O=@7$2Dha`m$$Pq+rIQ}L%dR=73Rt+mg9rDOwF|(Sm6#%$I_)T
z>Na!P(5UvdV?IKNM_-FfEB;(Y=O0MBr?)3+^G&GZ+`oL#P>ffNbZp}wI(kCSBKFE1
z_Rp~#w7lsM@fgO#6|4eSdS$m5RIF5}ZNLk`XF!NXj4i`Y*rFm61P9)U%{NHx4PAq@
z6XCUuH1n>8k=8X)EgwgroV_}%qGu-aZ5Fyu)Y(Ko$-FF{kwW$n%FOgB1j$)ltxG`-
za~=ZWJ5!-#dB|7u_%-1K;Eg*9@O&f#+;s8oMYWKMNEl^i(@G8-Wv1Vv__!oI2gRtX
z6t5|h5pk;H<A474=Qj!q)}8pmth|WJXet^h92C3ePl^<){n{Xp!=-inWQe6x7ll!k
zAc`IFc~WVuE>`Bs3)Ks!T?X}1fi9uF%RHpgnvzgeJutS$Xt0d?sTSF)Q@)9sl9VTW
z^yW9AX(Qa0j1|W4=kB0OLk7)v25qDs%w^7}#^;KX&ze?cFE~lMLn~<cLBIQr2TX6w
zLwUb{5flUFA`2a1xW{<Rjo`ls__@oEe+Fg#N(LC{;^jGoOCh6Tj+Xp)nE2a?l~s2Z
z_1^NBv%6oZzhE1|gQWnMIat`(mY>8TyqF3{DvDvM_@k7NivBF#uXxNorlGJUkeL}=
z1M*4|z#A_f_U3yj0yX(X8<-A4mY4ui#7d&T;Nf$3oo@_&c9m;p&2NVFKGFc2I2-Vi
zPeq5gs~6_OfDO>a?d^FVvi2bSo)dUu=Bf1?=IquyG#6It_tX>n<i7F7i@H;}xhTy%
z>8b(rY$Low(o<^LIlX^^--x*P`H<PKMVJfU`qQe_>UnnMe80U9y$unBk-**fuElg%
z8f|?G;Htj$gpB+LuWpX|e)KqGt=R~(UgPTVzotDwS&KMn(2d4Dz%>*dwlohNU-l;&
zu28lCCk(RLJs!WN5_l|(bUt?uM&!yr06zrmKl;OSIw|d0^RoQ?YT~Mz%te5Q+xn|}
zwQrlh|MaRMkq-G$6aR5$l~*q@K;<=?t{!aKRf}(WA6og(`Rb-vB1xoixeWp|Pb*wY
z$T4jJ84Vca8<%hiS-3`eeCwgP?0CR1?mQAT+gCneSiC1^KUw-uRR(EFQjykv{N<O%
zzLURHKT!!M@iJvs4D$E`YE7#&p6n|z9Ty`t<#3w*bcvE8Vc${;uAxvp*RQMbPttrG
zYq$VG;?xo*e@+~Q8c1#AOKMir%0m->$GIc=fe2(0QKIB9Nneg)dkqUGyIqZm7pG+M
z#$9g2_YDFG?iL#;7ykVQzNv{ku0M)&`MQ6_DuF=oi8GUfUOYgJwf=<6?X~!x!N>ZA
zL>Ex_`eO^kB4=&b!IrEAJ$a<0q@07;$u)++#Ipn?fUV&p7_#Ru^#0A?_Wn?~b!Zq;
zj|}l+jRhO`r#|AIGpu>J4nTTb_DY~!YWIn)O&vgdJ;|c<s0|^noZUl{@81V6><PiS
zxXCRj!D6saCx$|qyU<B&^$SMey-*B}<n+RYe=%6S`Yb<F%jVdOCdkJ!6cL8mZ9#K$
zb`}fmt$@n%$HN_BLDtJd(?UH}-1VYTw|ZqJN9ilBSV!J@f3@2EJEPa>W$$pezjcwI
z#^3`z{f`CqI`^Ee*yS<$#S<|~V!V1tkV`2STZiYnTswryP1b>U(1=L##bc)`l2K<}
zr#RQ%*b(w7BI-|}Hr>jMIPFzSZN}1li+VXYMuWSZQ2WGfE-e&Ss!{q`-~xCX#X8c4
zBM^3yKe2}Eq9Pt+;|b8Xx-i6HSM1DnrLW9xh0O^pf5v{i_JK<6kyWN{oS}TZ`^htI
ztY_CY4!JlxehHXMM)s~-FtT0dy~`l~e&L^#>qGOY<s<&~O2nd%rm~4*xJ={}18JMQ
z_&ll5Tu&_bjzPn2mx9%Nyyx*5tS4yIBy!q%MwQqO{OPKI$+dVpQkXCW7lgpnDaYhE
zY22pFhSYt<iJSbw%?Ll7L6Mb{a;J+sh~C}0W<arV%5{X1P-S3|;`|T`^T=FHrb*W}
zw1=mLukV_l;FtrpV;8ZjaTM?=)U%+9pJ{3V6H!_&S3I!#eqy+z1bmPs+?S&$b76+=
zp1X$yu>RnL;jfek5K9xK02hm&WJwOD@lm#P`FQe=_lnL+wQ7g@7;!8y&kyryWNwW-
z`4i*cj+u0J>D5Ry@^zz!76HmB#iYLxY)}9C_XP$^Gt<|iDp3mn<D|@69REa&VXt-P
zB!uyv9X6hv8A_sofJXG1#A<8r8OEKU&SZN%T;1j>iqJ!V&ul&4{)VH%BwnmfMaNXu
zkm&${iG`PwWW_A~XB8O=(&}SB;c$`ijNmaaJ9l7i&R%x>%UDs&o7^%vNQU(p79_pv
z$etBdJG?hehMcvSQ{?Z76E&hEtByQ|UJey_CElI9?7e@PckKb((w#mhqaFlMOADm(
zUez$S(Z4hs-pow_6+R#N{WJf|Fx<K}{Xk?z!}RgC<by}?XcVE8<NU+Sq{GbJ!z+fl
zd~vk5=kD)@T(Y?wg9ZD<I;*Oy#b(%a84{=X;!90hO8-H!#aJ3$I|r5^uJ*+&ST}aj
zL%!@2s$YEQkOLCU!lX2?lC8T46Igp-Iy2_HzukqB6Y1RA=l|t_>1=OmhgW&M-5rpn
zGq_QaBK8|)UPQUMI|jaUaCnnS3d#*d#1I@s1l(p03Ok@o9>XrxS~KK9Z_ZS=z;<YD
z{Dq+EA`Y#oNA3|@VU@|7PbK6{i)|$hW5GfkGR~CZZ>86GTwKll%~WBy74EX#R`Sd<
zD(i0)ZyxOw?TEI{(HiPg^uQ&fnrQ;Lbnoflx9y>YlWBPL^2D3qB8kxLsGjETFuOUb
zyXbk>O<TKtADCzgwr2?QksXK#pCuokOEz>`FD1Sw6$HDgVJCSI4?{08$tOM2O87di
zXklN?YE(iN>#b~l56@h5-_o`O6{W;}%`7ZWo?g!<r<;C2(}pBulZFuhEX4Wd+$V*U
zidI}`Vx5)bPODa|?Hkkiq;`U^gQZYFt6q;(@ry*(p%SXJ++8C|q?8iW`qFAwPbz)r
zJqXu5Bo4-Y6;!O4>d2%HJFUl>*jH>CFORzzm`Vs=z62#mp>vlk!^#2t6PRYUA*I9|
zq_5S_q8W*J3U}qbDaN5m@()^9IjT19NF|b(ZF_j`9-3A!h)!z5t4^xB55_(P&IC5O
zw57~op?L8)sch12ZGxA08?9v67G0S|*`Y29ovBtLyy8dbp9OK*ZOjJ^IXHFg;&SSJ
zGO@tMJ;Q+oJF{6r$0xl&p-A^gl>0=qH#jo~7~kW<UB*~W4MqAl*|J=YPCs5@`AHa|
zGYyDRE9W3yaVs51m!UW=-iuS3=Y2&Fy4AT9=HJ9<j`??)WaMVQC<n!X>8=Na{rpvb
zgBLAX9B^ZWs#x&BoI@3`C`zj{r923?wbKzd6U%pEGH?p%`CgS8Oa5~kb70jl?!}+C
zet%jqk4sXP<W7e#RGj~H`evClPCLQYvg2HT1b1%0zc_G-8#cb+@Gs?0bj6}$AE{jG
zE?1!;B3=bFlIOsCOn#ky*8|81+0$v`h<CrF8%20GiwL6e1f-|JjW9l69TMg<o2X;v
z389{&oq=ChT>XVY%?t3?<2_e7FTv~u2B5OriT{Nk4n*#@=%MY!KomxEpXzR-9I?|F
zH@?q}Y&~A8Cp-^7VOCAyqU!EoR{DvdubFj(&T5ah#<j)3Vzrr7ud^CG6h}ikH@Ty%
zFkWyHDIr5|HUUk`tBEu_dvm@fdV`)sv<0s){Ey<xgkfBk9b}{=u2Yzc!C%E{RCdCm
z%c$iW>ZStA4T?>54cbu?8s!cND?&N)qFs8^)<0o~1a{i=cI6$Mmgty}iv|Vl7OGF*
z1m|DAki1no<twRLw(gzrUK<4AYgdW<2h-|X0$dTEuT|<M)4$ARtxt^SP_2LZ<>HFQ
z5dR+ljX-k0w}Qu@h{YACcLbcXlpk?|bMaXoQ=jgTB65u0>WwHWX%@VJy#kPTuMu~e
z*eTiIXgJ&hMuP|u9+$v%By3-kO~L+Xr0p>O4@n9f(_$udRZ=HcTD^Cjx3_aD89>E_
z0S^yE@>NB>4O;0I^|!?3Ig77IAte%2VmSL3Ttmk;U^=KuDhQ8_l_u)-e$JpCUyS8h
zE4Kl!bB|yN_DhLYGj^?ywJ|G&@S-MK6%jIwJcgWwuCc}3HK<B1F9G#cflD%7)km*n
zsDDmm#`C_@lYPXQG~+1<2qJp0MXB)_v-g5u4BfmkSEDY`zoTG@pT@tExa61hVWAnC
z;3ZoWq8(EgD!sxPoe*B~%YC&0W1Q(zjN>^8;iH#9ef&A1<ySCpDdBS9;aJ3ipLTTr
z1wnFr;Ed5zCg{#dno37Hf%T=6MjG0_L<ucGCUC}Gwk_6VX$Q%ai>!=wJ5{YQ)_yC<
zm3I~&ej}))UeDrJG!%otk*kI>P6|fI@ob5AN?$ySVuYmpESR~u=(~195Q|?4eOee-
zMq_~;OB3JvB~^j?OsstJOuLAaSd$^wHZWlYO6X)l3X;V{%=c>sA{>@mtE#BFG=M-)
z>bEFP6FK*43ne6>F)S)wYqzHP@<0Hg_2z)g#{{e~yT0A8iq~G$>wV`EWU-;m7=j}=
zO4zj|I<A$^tYe3!FmyS*6eYo7Rmh}1=Lm~;2c2f<@JaOEFs7;%$?evffaGN|C-2i?
zPunnVYp+;(Yuw)iPrOa=#BKuj5UuZl&vx40YF{{TD%&F5*w!25bF8w*|0=8ONqv=p
z3Cp<Az%p{(XzUJFD~+RFur;{bc^`Q;d1(iQQ^}(zHD??>&)NW@)nZ&PXE3Z8uO?7e
zS{}kUp+x8(4#v?CNqf1ElinyLYj)50RGY+i(zwkw5s+ReK+XHaYwr)WQy%@R?3Bm#
zo$|<|$I?8ZRlLftLdZj~iebd}r8OS(bfp!5-@5z2xZlMrTguccn;2sAMVcOb`_1uD
zeN{;(1B)SRLQ+gHXgI~;EyP9X;-)Hw7J^;}1mYq|$xo_7C0vk!_m!GTdIxD2!GOHf
zthKj`h(|cj8??Gw3FqjM_8WA+0bwny)>m`>tvlu4Mni;?gex}?8972aVn82Z16gM%
zXO=G{qhGnK1G10U;$kS-1Qm-6)(Up3s>Mz-xQBD~4L81}Ae_Yo20gIe?7-&ZjFmG%
z%~Z+j8BK}fiz?(0MS;bxCpextLmi2ZYo{bAE>XCwiYwYW1J))XEffoIt5RbJ+vNn5
z0D4zFl5UyCOAxpjr?W@Vdo@UPw+WCTwW&|fL4r#x`Y^}xFahDz(?Y?nb3h!5CQeHP
zCyQ9A;uJ|-*H6F?>lTzIcpqt1iyUn*8cwbG#+clN2pS=y4slveSlsAjyxyNfUEY^o
z7OqE)ki-j8VhU>qcCI)n#K?GxBS$;*9%MZr5)O6n4|LTYjH(zYupNTOHjmIVIF!Vx
zE;?E9SwU}Sr0DFqauf}nZVE9#TGT*-Hw#4$uTp(0LQ>8MRleW`HBIHfO-n8drRFJT
zWCgOgRg;T#`a(K>pjR3Nv1IvTuEtW*MV!@Uysp~PdVE1=d`Co<CYO;o-Hb|6_kg+e
z#k|O!dPPWHn@p`lFm!g*>m5eY!;aLBVbP{>^h3`TSu*5;Wr!?Ev9d}8G$x!T>Lkmn
z^k*M&I;SZ%dRd>P(6%RpE-x<yH_=1ha+3FV72!~ph)R*~X{rN<c!J_;o~qayRrOf|
zP?tk$DB_3_4JBl+)km%5*5NU9rm&R7IJFtmM(D}WaAqo3JH$<h5NAW!-XXbw)h{@M
z4kKmw@kx<UwyB-r_`N@hhJR6XKCe*KQ^~5i9G~_QfK_1_P(kPT0;lrY1x~rVG7wx~
z#{323QhIF-3WD_okO*>P+BH$@yBg6biqu~c#ybH+e;lAik&ckMXyK!9fOC4VJcL|I
zJ}ekPgwRiV`$$s+L3oL23cCR=)rw92+d^!Gx^2SrPkJprbJu(iRNil&f%69aT_3HW
zaz%<^Qg;<-Hf>O<!+CZ96ZQ^#5O-n=Z&1#N6fOpmhH2+UnoalMkmiIaO`t*yxR6{P
z3$QSxCmu<VJn2flkCv3v(k`H{IC|?WieGl41Lx=7zIIWSK5+iFSBxGH*yH$&8P}6e
zR=EFU3pB?oO=r>-uts2Z8M9?m%RtBk`yw~PTi1<y#}yHc34oT|hoy}(7n(Mnu>>g+
z1NN^I8xG35NF?=<#?jM95HxV$@!<9!kdV6#qa`jVDOX}UTTaykJ^+tmAqEy~NfT)*
zUMV(R`;x?^8{$gsalv6K3GZ5P&^#{am>@A9C9}3?l(U2@4qc*@{7=PO$b%EOuMFx*
zZqmmL&Qe<!_K{L`W984RwZ~xJm?~lu>S{tD$f>*nrexYo+5v?uT03aHkyg$%&rAq7
zJjG(8RBL%YywKCPN)~!20dB~fd013_?f8(Dv#ss=JDz-kMnmugL*;TFVj6<$Q7i|?
z7YMxFoj7Rf*oQ>}b^>|eYtrsUYw@D4RcJnC2eQ2p>I-q9b|6xAAmd>kXh*p~0Z3ER
z|7Q5juy2V6pRq-nD8sCKRB4!(XpA{YwB_pO^Otg$0+%J-qlzW*?=(g=K&&V)bz4^U
zkz-SoT_E}zdhPbdifU7GplbJ8EEdMoIEz!prClmv3vmcQBo#y1W*8jUPUN-8??`z~
zNCrYFjR|*c25=<4rOvsvqkhPfXippmZ;j8_FS|SDZ(U%e2)Q8N^F>-x!CtFgG9CR7
zEK*9;qa5Y9C~3Sfbbqo)?ddF8aEZHEci9vUTV|mf&7^j;lX7o_z8BK1<nZ_HV%>4M
zpxzE}480u<<!}IP$&VFQPBC(@CUtSkroh(`!Wj&-dR+y7v>EuLPT*k^+|6x6G?;iy
z;$RXQ80WRuA)`Av|L){jm0>z(LP8VES^V`K1^*~}3~<AuX;UU%luVpN;QA)Fh*mGE
z#v{0bX0Fq4QZ91Ywpck@VAPCmjte{|B`MHlF~)Hu+j*)Sqd=bmo-Zq-_Mn2djbpZu
zYRs|HKO3!yE;EL<OU(tEhWJRLOk;8)!SLwj#*w-{epFbvSJUiWh_-q{(7ZGPFP?*7
zfKgtMfss}#eTaI!zoD<cena!GzaF9gR7bYwaHH9o%dZD&8x<@i>XsDX<$V~-S#)ku
z!7hAjEXTj>TAMR4VVc7wO1!<!6q&LoIBbYs57zlBWk{sl_nRx&Vmk8;zCxmCJx{f+
zpmK2TDMAFU*Spd=W+j;(<6TKJ-&zVNUhbJC3%PcnoEpc9Z8c|!uZ?Nwk1rp!_C~qa
zZrvS+__TIJZ#mh89k_!%EePl6&C3hzN^X^nI8E6#w|iIaW`S5CjzO}-saU9QUS6PB
zOveOF%pC2KXd0on;@zO_Ht?^c<Ry-;4&0J^d&V~5ujU%l2glr;#50^xKCjRZ%N@UY
zd9jZswBV(pMjCs;xnGeL`ga$5lw(>b@I>%VVt96i)FH^wHRUs<>nTZGis>Pl0*f$=
zgbd`Y&o3LbF6cn1YN|SA%In6Ffp|L@2o#?R-shlX2W845@d6D7S7hbAz9K8-%;{V$
zlJLLcNXGuh;^ehPjD&D1R_=`P67b#E*t-i~xtX{t#z-ejFC2OQp?)9J;V-Q|hDu2C
zSQKk<0=}mE0iC&Sv~sMdn!e&k!02h1&7e$gb<tOf2Qy+CotVOuYxr)H0tC0Gy0ftp
z2L6XJn|Htj_K$bIswz4gkme5U;#Q|>b&<Kqm8pZ88*Mze!c0(BuTO3LGW>x`za+!^
z^?HzCR2*13Et5*4B({_@1~8M59S0Nw8HtT_0*3|Cr-h(;e_xD=bfh-o{CI^}maZTM
za$YJMn1KQ|=YZAbBux>`#%z%#)mCez!A8wXfhQ0`xOn%*n20jfy*$*teZ#V0T@W;R
z@=7fbE-F}A>7-k^3GNLj@G<);kV}a!GxwwCcBtZ`oK7kL?Aom$`IQzJRfv~;!|;Qu
zP_tZ>RcCvodaj&P<yk??=u5yV{e<H`t??;1u&$n6+E^F=_weyUKmOCv@uP>wU*bRA
z$5T<C2+4SYV;y}br7_7k8KILL$1^fGiiV*=*%cq54=U)t4E8ED(-$CWDN1eh>KppH
zc%gomM?LF%JVJ-jH_=f~svUD_7CDhly4K+ANSod&?#-CMwB7kZ)Ocsseea5_u33>l
zC_EpSdj|Ce#zNi`hmp#SC@PUTrs>Fr&ijw4cmb!Cj+1M{>Y3ud<7~z$nFUJgPquKu
zSjlmglm#LDKXS%P!lH!O8l<3QNqbrKsP#K!qU#Sf8=`WR6Ugb53T9QX3QIj(52J_2
z(cu^3`!DotNB<q>xkDT6^#9TD@o-q7{||>>;{V>yvxA=N&>>be+!*~xM*xNZe*by$
z>g7OMZv>++uVDyyaVpr-B`&C7>9pA=$DC_PA0#oOsfl{#-n+f_{@Vht<aKxVwtI!_
zSZamP4$|3PB)4jBu3XO;x2h(}(ajCY3!0S^)L;G^@1scaGbi>^3q%Dk@l+Ye^F^BK
zJglda*Q`7%2q#(DLnxtB!b>REtL0HeZ-43Sm@}~t-v<KNKuSA(Ai^4N0HVX7doO!C
z==EYgCU6CWr3so*4nC@I`&%3@(xoP4*Qj7=I>zx;&rYqwxT|0UT$>UOhY;UYboxgL
zQ>D{59QJzCl#MZ%&B4WLM$+6kJJFPuD=DBW_b=&6D_QLYCrH+=C60{%97Iq-ghExE
zAzTy~jFUI&STYqpqB+hv+P(UQ4|ussiL?^Cb!6^fj&>m)Of17X%YZ>pK{o03CY1A5
zzSomw5jbr8as*#ku@U$XU>{^~86mXe3|x*28`w_Fqp@}99b}XT8sNFvT5>@>GukI`
zQ!K_f9^?gkzfuvalt8wxWGb=aD+L`bla%p2=Vrk)Ad)3Hqgg2_2Qm41q~NMTXDV%^
z@f9>`?nUWW`0>q~vx^8cQ|I5EJUbIeh=Hv+)PQ25L?m0%f@R<qY{?OpIwpCDfi8^$
zjO9pYe%V3)I5|H(`R?V5k=!tP45iW`M5KH&H7;-#|9(&zFRAkoL}fXQ4h7>1rk5GE
zzB)~G2B!Wc<>1(EgB+qbrOr)S&*ENhd`DUmq=jmP27@x?gP7(sQVjTlmW1!4!60Q*
zh;t_6i$OK*nwc}s<z?GqYE1GI&{WJw5$2`CL$R~qcq)d~x;u$QuBJ|zMRa0fZS0VT
z6GkT6xGa7m#d>C_KPaK?7-<(3pj?Gi80?<0WUrd}Sb{qz6WbBrsaHmZ!~BXHB{&)6
zEE$*!*asRUydv+*gB?yv@U5wS5l80$+p0Y$<wPYzJS<F@i3`VK1QuXpAQEq0vxFdf
zyTIHE-(BRqEC`-Mojq}&fl>P#nMl?Lt8F{V?@oab6;wT`q7x$obuAsiGUX&I%E&58
z^(&(n)ruYyrbIWP^+#YrllC^zTx2%*j|!CD=auGx9H1A9;&5~(QMN3L8MHA`K5Jt&
zcm=@;g{bCW{eQnQP-J`GeDlpWpRBX>25pzmyl;U4uvyS7@%kr`K6UBJIvs<zuozi2
z)0!Ky=1}m2VJIci=|_7d$1LM9WecT)M)8cn1u(Vb7TkE6gGP>K;<(@h+?KMKaD7G<
z3vlppNV0MoOKDlAN-b>B**B5YUeSz-ZK!V?poF1ooO!)*sx30*eCE5aD)_0G<$dk8
zQO?L5jsp@C&T+BYR}RQ?rX8OaMY<B?97YHNMSNw4{Hw@-ol~un-a#nN7m%cRu3yZ_
z9L|Nu4_{H!Q#VtctyHUXeDsPc!gykdnv7v2?Ptalp?W^YKB2rIDsF(z0||aLnh496
zGFhhLI0PP=>wz+EGB?4wK=WtPg9ZwiFJedil%*?c>)6==<B?p~T=|W@d3oV1L3y=Y
z_f1|NDoBZR)@<oFFTkjzx-tT>1a6rYu#2bsSxQM(o-E4QzBnhvl6ZFF+0oo91uonu
z#-}BjN9I6?x}R(Zl=B7Q2Z!H0={XjT8jFH_6wQ{F!*t<vT)N9UPT^`)W=!U15o1V8
zGUuakH}{3GvxLhqWF@1U+mDfG&`InnKFjfkpX!X)qFMsQPbZc+RCDE2fk^Dy`eWzN
zwgE5%Gbk&474pe|V{N>ut!OH}7Y+9pm8l6_pro3pXU4CIH~c$Ml1q45?CLD7;-r*I
zL2+naU0XvGBSk3-g5k3$E2W(&=ppg1Ei7N{?4Z}$tD-j7J=A0#^LTD$C38TPW|)-}
zZmp7b%GLnv0qKw|xo-nh$Mi_H`3x-YaHB|b@Qz)_22$t+453aF<ti5gD%FV3q?!Np
zOqMx4)8=k@0IhQ36^ZrVcD}R>tWg4%LP!S=KcEIm^qPbBvN@$Wx+ZCgc3-~`GN-rn
z_7r*enG@7k(8b~0msCkCRk-eAu0c5nNV_2A+O8cLmh4-_lG*W)2>;C0p{&AfOgvk^
zAYj<sr}R53p@~Jv7Nw7p&)%Wkeh&D93p8}k>6RVQH(-h*iL9iKo}49-G*26k2%I67
zldP!~R-nFSC;NIZcTcnOr{V(S`8|`-?yNF2?&@xvSC^HYW9p)^`})P6p5Dk~Y^^8g
z&JOU9D3huevEsP1NP*o}OlGG39HDHHrfNkSwlMSfa-ebG83P;<277Nwiiuz{dPsfx
zDLYBiQ}f>2Dh?mudd&*jtpc`b_Dtcsg`cd-OQ<D}9rS#GQv|*+zC7kPv$NACJH;%E
zNnXl$AT%a?U@gxF$pWVX>1?y3zYD=T7cF0i_l-v>&A-QUnnIGkxBb(z<>UT768}H!
z|Kb){Y2mtm2Fuhy?yF9|cwdr2jB8oo$%Mw*bgtd)b``bRM=x0{4+x^Fypc6b3!r4V
zfQ{)JyTw)<^>(yxiKGQ^P+Fl!><;CrA~ERgpo}3RYviPu(^8Oe&(t0`?m%d9oLB@u
zCuY=JLt!<E^w3r3u~Ob@KPOD)EaRl?X|2i5j?|#QAE>52>Dk35uux$x8>iC>?=S5t
zM9539+3!oYm0#Hy3fVVSQIa#WAxd?xh*dVD>-W90#yZ(C>eqAE3+w>rG@2)RL93q2
z4agEnN_8it0>tfrB!B<HeJFz+fH3V=M}W{6a~exFSIy*@;DQuy*cHjX2j?rz5d(vv
z$qwvE;QW3r(h)e(E3Z>fKZ+G<o#TxvMBh7%Twfy##jF!+G0=POmF$`cUFrhR@2q0p
z!SSRlaXgdrqHiatuw5}*5+_MfgwAzN827g9QFQz$8cNlbIDS3cF+hJ+NsFIB9#pf>
zk#pJJ3UG35oCm(>97#s`D35?QbWYd;3;^7j0ew`c$&ai}9-Y`fE9Ze8&U3}z?<x)u
zmU7<)yNzO25XNDxE)V;A_3X8F$}T{ADYJRQO&$XDaG?BzKoS?!G&A-ReP@V6%?e?Y
zzFCq3vr}!`7@?tQTJ2V^X>3~r<yoy&ottWXtEC0+wtCjuIZYZu(3QGW_C}@Ggd7!u
zX{%q==IAIodZHF#My^TWp$9E>!Y(D*w46EE0Uvf>C<-p_C19`}vMR&IJz)#6+3M&D
z&NI>5N3S&}I<!KB=wnV<)rtmH#T^|0O*=NS$O0Naa}`*^_F;}!(s5O*a%d(4(fA6%
z8IhOg3y>Y*&Uh-eg<A2_-Zqhn?iVKhk5T#V9u9}YzwDtgnb8aaw9{;Auk1uh9ZX!z
zgcK$(th++0GJ^4ID)ZM$-PDCo*GlF9+6Ul}C4ovK7L~US7paYPRKLuwtzVU~f@?@t
zpp$D;;{Ux0$$+z11~D&)mxIBTigX0d6-rq)mBBgU8Jg4SOzOsE!UkBp|IbUfnk=xE
zXPp!iv1(mPNgByU-c3qpz@&*emhFj?P~I)q!NK)8qUCcpVvNiYqM<|q&QCVvu&{D`
zWLS2?tYg)EaA~k@nv-0}e@gY|_-?f_pgTw-s3PyXp2|XyP^Hd%-cE=U83$dSqB2S<
zbu9B|EI~|PgU}b+oA^Z8igO6NCu`$24V|kJl3|40!0l4AApVBeOh%}Tnz<o0EuV%L
zTF(T@=HJZpvM-su)eSxp@-~GS+h5sOo=Eb7q`Lssb_quFi5kU?3t)EzK`mL#OuKbf
zRP)7sL8A50pW$-m+>F(?H?f|5(60CO1y$4NcbcVEZXY-^bPxoEML8o`DHWPx)Flt@
zzK5)V64)!5PH@6TfxL`suK?}nh8uW&eM>;DO?9~q;x<Sr0F^=v@W#um5NA@AA~_?(
zTqRe^C-53D6hdt43Yn2>334og{aQuFb{5@F>IjS~QdB^RVQz{aOi3nck;ExBkTD{n
zqlX7O65}hf(z|7_JRFEESrvhly4ns{?Y@OxRB%t#j?#=cE*5nWN^QtRIb#L=-4Dnn
zd3Dgxx&S_<0NF^GF7SkSSjrvmzH$2VlPG#*gpHriU*3Wj`yAbs9f0<k=;V<jOG-1g
zkaWq^i9+&zr7k5M9e(>LLeC*SE>}c@8!p25<pgHdlYnJgr%DDya2Z>i)RvcWZk<a}
z1`M!*$FKq0?KuD6|NVcI2b3mcTE5hwn4_@Nxr3C%sm!a2VX%Q>WIsa9*K)3QL7*b#
z8Z3Tf87stVUgCKU*Coq>rNEPdlbX|x3Lwc1x2Njl(pv|3TP6O<z*q=wEqM(ng|5@M
zVin>UV_f+#N}~UN|M&l~d_xB5kSVuOS3D(=)0SozoOb@H`eLKV{rKk1*^xN}<v|)b
zyxoswnIAdB^t@oX3g!Wkp;aJ$6-+KdyWc|un0<7yh+{$$lI-b?_M&D9ib4lZo7(uA
z6;~<42|o}hh<^qtosf7Hr{rKq{LE)qaRL*XmZUhBh&es@9$W&>Nusup@#L{ntrn2+
zJyW??#8{!@_wP}mD+dQ|;y2)OS<0>`A&EV1uWqZuzQA+tQUj&Ad8T5fi<3RiQ`q8K
zpP@pI8CD~7tW_?z<0Rq655cI0lvFt(*GNbg2`&<sL6tf2;65p01)b8&?zLap7*?rr
zI0UUTcY+@+DTW38?p-<0oor6;er4l#z>FCgqdPxxt0*ar8nYdBf3N$<(`-t(Wv9X_
zH_ZusO7&GmZ>7lVC(>F~)K%*6x+7(k-Y{F9>b|b38MUo7Rd<13KvA^;rk&MPcY$h9
zOSQ9uo|)(hHnYNo&a6NuLb~qxZ%4+of6gH0i;O7PL*Tb=eoOIgj^F>B86q-5hrM3a
z-|Z86yM0Puw@>To_DTHQTramBr2N&6q>~%?f+>HsM?>&&^F7>5g~NJ<V^N{!JE2-b
zeIfXzqSS_1-w^5O0Uc+z9dxE0m1XLS5jsh)@romDfY|%+QzjUdML|BiCQDNER5RLo
zE3No`Oq7x1DoY)10c*9OD(7&{*4sw@WtcH3(YpQ#6&O<7ljE-WULvE;syoh<EAIj<
z;ZTl@JnBT>)%Qt^50}0NSn&yv+o|E|0dNljFCR;gU5yE<;!Q0YnD8G8w#Y~5@uNq_
z55*>5WGBIQuUU4^SZM|bUjEEUq099eouhl!+faaj5F;xt-K+Fy$2iAuWrY&69&wV`
zTNxMsdGYSe>8lsLUNOe;sN%q(hWy__1c!h>W^?qEKEFD_O|{Qhf^-jb+yNh0Cr(&y
z2jGB>W4U_QLn!C@3(v(0UY%5?yC*LMIAO2lc>=m;?^dTxugMlAr-^kC*X|H0<z;V2
zN6D2wT7<*3fS!>lB_p&0JC^&3YPF$fjF<ZEeoy>Rt`pk*MTQq6wrpN7LDSIbb0@?E
zxM80@Z>&V~xKjG`?3wkzM6cu)R99NQ;&7!_M!1nH3+*2437Ppo)IET&RS$0f3+s`;
z($s@g<^;UcfFYZ)YlsGF{dtWCpn9cQH9_&f08nWT^uYy$2FdYM=jifjDJ!7<ekBF8
zp_V#%Yax+)%`&o&eq_9S!_1uvd31b7rE~-0jC6o^oYOdB(mw?x^vnP=lDK8?ZR|(6
z7dtr*$%wcI(u0v7?7$EWbkC*wNV+E5SEFi2f)g#4Q)QyXD`&EyL~ydt3Klz)y%QSO
z&SM(vf%GY=A<b93f-_%n2W9a+i1EdW-vh!s=!A1R%@9UYLHWUjV*)WaSD+G47O4rT
zt$l+v$0oXXq6?Gv5HE<M?{OiPIDD17+>#cMvr(*@l<1Tm7P^4D$RMqiz9^KT@e0j^
zkPDm2qGUrO!FrB*`jd2ZQdS3z)d=1oV0UOilIM$pX44DP^64~V=Jg9mVIamv)snC-
zlz#XPDdyaM5(m>9m+|a-5WU?G^5Yd*jf{;2LbO$iAf%O*BXpY8KI$aY)%OCnl<x*&
zoeThSZ^sQztJ5tcDxSUXl9aQA_i~n;_+E!Q=zIDe4jnM<@|0bpAO8NrMDtS7(z$iz
z9SGI~Qgaj)n+(SjGAP-AENNUC$3-|@$^x(RnF1BoZq>bgPvGpB{CYb9aMHXb@7p>O
zMF5z*iR!`YK7`iE&iqwBz;{eY&|*PMXB{)Dv}keW1Y`I7X0?F?#FL;!6LJjjN}ju(
zg0F00=H!$DA$tBgV7_p>+L#gt7EY46MvNVKR)hLmt<?cKjE<t?=pjV9#6>(K=1ay8
zBfg9yy?|6aD0S^o6`HT2B;%2+8}Y?tLf`jx^i@Fv3LJv7gq2)v5!f&z)IaKbMM#qI
zp-<}EZ7oD$V?09`%~s=rCVGkYc6NGh>5+;)Z<jjbBO%c(-b;4X|0sGeLU^7$e&|Y3
zQz6TtoD`Hvg#f&mEK*dGVoo!YwH~}jJS*t&P#`QsAjvT}D)*jK`3C{;3>vr~G0PIJ
z<))IQDi=5G`T-)~WiUdonWBqQNoZ-)3&HJh*uAyvCYFD3F`o-bc1nyda<7$lke4<S
zGG0vOzXK;g$w5LSWQZouSq67HCsIB<aJ&3UHhL!2w87gY-t8DSz-NxjnN%gzdm#v3
zs2R9em5}9u^Kp=}X?sI9+E@3cl-w(Xr=Gu%&kD*w+)6R$;CV0huOOdF!Lx(%Y7u+#
zJ6DzMtqOf%S*(2j0<hdvgF(zvl{`M7{EC;j<Pntz=^!EC8vgYE-7WC^L&{kGVUm2<
zoqgaRmV3!tJox>W57}}~{_DSzzhvT{d{6xQAOKv*j}W)Q<ePkYP%JVxTzsV$iW@i1
zJRnaf+C8XWy)``)3{>rg-HxRoe+9r|?EWT64RDmO0RF1~)L*t?kp&E~0@V$^0Yp`o
z@T5Af-$%R8wRYsW9*&<1xYa}Kn-5}%nAhURhYJ>8k@CZ{87`i~+<f>hW$~5#Tejg`
z6#T3CTlL4kD)>R}B&U|kPzrAJLxmar;PavNWhYZV>f=_09F4@(*pHP^9e<5=cvw3n
z4SneGV6czB+6!CF)nifL^+T4iE^YdCBczHmLjS0Q1_|#nt}gq7ZcICs2u6Xtm!j<d
zR0bWX^Vv6=A4v-KE7}}X;w#IQOXV|c0{>o(z?0L2#JH#}@oY&GiU&zNo!huAFwZi!
zf+}#}6&M{x52IsQZ0YVFbs%ft<vcfBta~d}yca_x_n!1Ik@z`7<zVgX(JKCiYz#En
z;I+kFr5=?9Ztr+@AStbQ-XT5te0%dWqvbQZVBvNzEh$d5MImR2p`d<YrApdCFX@tG
za4Du>W7sFDdUGaTfEH4o<ZosL;WL&dBXr!8Wb_AlM^yg!k>Er_M)g|^3bp4X#Vf<_
z40}lNSmxECc*hsuY~(a~D9&B!bzqA^56*S)0ow%=kKm8d2hFrCNdXpSaJ{mEo6bSk
z8e6KTE1$9C#8hp%(sXW;sey$cXPH!70HZ6l;4*!dD&|IHCd!jBvO!g>#-7aca)ovw
zC5RiKyl@%>dz;p^D{0GZXHSI%(mNNC_c$)$k{59SX`gNL!d%f(1P6qvfm2|h5?bOc
zCVos9D~H-#4-K;+<W%L|;`9A+z5rc{G|Z@YB!!@Q$+<PV$yh|59fZa+n_flfjvOP1
zfiePrPr^$M)=0P+B7dJ`2^bcYi?gkw4LG%eJx714E_lAzL2%uW0&2<yB>{uti7aBw
zhrSt0+oTSM+KT12K(qBN&}@?y;FYwH+B<yy@Xl#Q=QwrD=sFRp8hITASIF0b_5nu!
zI6G0v+6tw#5Gxy&0w_#O2xkHRTmh6jJZ$B1(--Ol__!c4&?8BtV<Ncx!#(^G7o|$+
z-vUAVF*|S)(38Q4rgWmR44knfsHR5!pC%Ky>M04E_|xR>mrBaMASQin1()r<0;gf|
z!Rm|VI+ecTtd6+}GuHF-?VD{dfVihS6~F4G4()YCvt(p*4H(O(bz+uGODz_sj;0|#
z`$c6S4tR(9Fcf`9Po)@sxgKIRcQcULtJ*y`42aX0V5pBBq@xd5BotYc1Nrc1Xg=uB
z39dwpkRQIl4>6!398|kd32o9OUp0j;Y3)rYY)L3+iNlyX8A5TM?;CBe5Q2eyjY>R~
zH~Iy=kSjl7L}mz84rH9nm-3`D?)RTN{^NG>KW&nY*FU{^aS@g8%a%6Q#D6}1^yH`#
z|MSt&qoXhJKkwr?jL;7%UyY*?1K-5)%H#;v>G*U4zMGo?#J7;!kfXj1h0sTlJh3Bv
z<q9GtKsZe$i@yHp`HOdFKb^mM`e0Y*n3$3h4F=YO|K`T1(NVuK8mTGYM-lq?5e*pn
zm9s3z<?LzyCgM4X;W9mcJNzZm5gI=BZ33rm&1eq_*~(s}C#PqXen^|to%aSJ{D_Y5
z5|;}e85_HJr+$2dtFt7YG3`12K;bxgV1^wgkEERVGx(C><U5=S&a!BmMTC&p^CNUx
z!bLUE3rMHYIn5TO!x6b4(dn7yQS^DFlW@YLvjbh@QoDacKLx>c7UEa#Nb_Zk2G?87
z;#YPSFJ7Gg<MdfzA_4rZr*RwXyt)7CMo)R_jAx{RI*8e)`Nywn6K}gUy1A*%C-nT|
z$A-0FLh5wb&SyV8hg4sc!2<>H9c+RW^&66_cLyk81(LLzRPJJg&Q<ziP;r0!*l*l`
zp1sxCa{Yfmu2VGuheuDMVKj^mN8cU}hx+;s1U_~Mt<E$ohD~5Rn6Tm+7s(wA-2*){
zGH?#ebe4#@)8t#vtshZKiQA%FHTsshV5XwJf)UfkcpCKvCijWGM*>OGrStqnZ-8E8
zd{H<V2~`L#_r4leGPUx)m#LbT6j$?$?b-Z5#`_T!EG05P3g^-Qb$NN&li7~J7KL*P
z4rqc?MEyScMR|f-0ar(J;s@JoUKMd>Ns6(P-DXNkK*UbN=RW!6b6fuJ-HfC;DR@-o
zjiKP%`M<+Qj}M<z_`k=84<CQw|L)_txjFb6E$Ms&jsz2$5<%gg&c(3AGcrP7AHXqj
z@OAIS`&?zq^<%_B?DU>0H&6o5T9Q1l#X-TQVz2}C)r857gN{B3p)8Bh<74=f&M&}f
zkNShYImrxtJNUZyOs4|UEr@NpLcc9=Dlf0$JV)|k?>~uz4dqMGg6I?%5;PW68v+$L
zH(})MVQD?Vh4RwZ4tJEJU3I_o`RfZ&7UKBjB;Jd9rxWjjyFGJdx)SNgTl!%T!7*JR
zudwYt(v~pk(RQeQHPE~s#K!MkCP1(f>hA~8nbFhkGi-4*!y<uH&t{3I_i{tzbol>&
z;{!+l;K7oOc3*GdKfP7xOfPt=DQyDgCeo$ZO8O>L_i2V|c8;rkbBA62t%C-909B%3
zG5UY$qyD@8=9^5$+Lzu@8=x#JNSt+!dg#VTa644x1zg)@ao+aoe4R`Om<+}%0B2@b
zhg1w!GTBaT2*7%w92ez)O*&#}nSx%Y^7@+iOEo%?9&_Mxf>|o+C>rgO=sEfzlQRdF
zsf4Naq3fxp&@J;6?Uw96@jOM*9(oV};ZPITA545UQ8EIob?b&PK2sa7sp{wrg2N+~
zf}2iXv+S_8hdv>wo}PiUzY9(_>a}|#<8>3Y_lv14z^HNt@2(#chu7U}0-m{p;1FHi
zOke#`lP-e*8rI1ho8o2DA%kkcQIeWmKEt}n38tya+XAmAtQgZIA(@QGDnG~+Fc6c6
z;G|!bt9{_AaJ_9eU5d`tQ9rH@{*90RjsFJ__O^<Cqc%5%xdMfD+f(4|RX~(@T7Bhr
zC49UF@YN`NK1`h@<siM~Tzr;^=rHE@JmB3~BALM^80$%?2$hF^qJqLe=6y#W;$Bz+
z=cD-;OfD*2;AWDDQkevZLCxQ)${{xvaHqvP8YKSRSVk{vZt%>|fjGN&Sk)NZN5>t2
zf%uVGbu>09yY2W^hgyb<)~nvVa?Ran&)P@6HqQR{NCJ@V33gy5pXFT57tMP&^?^}q
zV$hsx_Tqzg>%O(3y#p`ayEo$3SF2o2Hvno^*4KloUL7~E>UYW;fO(tad$=*iYZp}`
zbeiQ0$nLhA(6~f>xt<IaRHwL8rH`T;<=7tA;C<ZNl%en->&Y*0HYI2`W?78O;6dS3
zL$x=1Qq``u6ZsA8maClnG!e{Ke~$CFGV|FlCVn`&`3U^S0F=gxc~_#Gg{Ak8Hj(Rr
zS6>_V&7eDta)NJdFpxP*K0k@FK@K}nskY+xMX2n!)rpk-_Ju%wdIBY9O1tj59?OB5
zX_V<|zQ{F_^5ES*dLV=8jh><hMv$u2tn71H$4FS7FO2<cUdl4oFUA(p?*ik|1;eWU
z@_nI6Cw^t?!0fi;x;0mu^J{eEd8=1i?QPSN>1(a1H$W%<yfBwr#n0at1u=J9!Lwik
zYN{I47ggmF@~^ILer>hk%Bpi&^~L+VAlmrm-Bcx4Ji>GQJInC342Bo8dA=y+b(CKH
z%Ia%Yo@Tx3ZB=_mbs~q#Z)HnZYLo}+2C;YObz`ncF(ru_TS}ZQ`=BxtVneJ~wbZ6h
z9ORRN&EZrZgw%LuRSjIeA@VL!50o1RAofn6!bw?2vF}#uqh08oI83h#T9R6MzYXu#
zo`a1ZP>Wm6l8sSw>hwbpnp?_Bx>ajVy?zs<>Vk3qR;*YJc(v@k+y8EB|5bNb3zm|`
zbl_|J{|*m_k1F=xC&S|}_TPJX)aJlhf_BMoR-He_u~rh7#e(d4UxN-Ks+`oiTUTg+
z<VA9guD+3mio>3AkCtoboTa4ax<+rHs`p(mZ2BUz!PkRGjnU-;%4n95tV9pNl%ah`
z1RP)>+Q&g6P<1q^1YVY7Q1?DDM;XLKF36ISYwkFd2vEwu9qNXfsg86@D|`W0VPt6J
z^{q9?gr9p6e|ffk?vVbEX_nAzT0aKX(f{MaW1s#X509UG@&CS;=U<Hee<#<FcMRMi
zDR<74js5z1VvV1Z2?WklG`FRDJ#+cTIo+y8b5VK0$qN<hOO&agxvr?IWx7@G9MY~1
z1wQHxR3H4Xe;YOwvQS4BUzOEkD<{`4r_gPm+tPm%o2ZfdUq}CsA3mw^|BoL&{=)y?
z%j1%2oafw9<>xT77o@y1p4{K<-TZId&3?y6K}~xSinAq)){>_>GJOMNO-pkE(L}iu
z+zClN*-NK0UAt5F5VMUx)>_adWC!?>@{$!RM|Evnwdw^LMx+wa84A_oId3o=$PoFF
zj+O4E^QmFr$B;w%3Q~PWTG05$R`XCn$X`*nTUAag;eJ@}IuGBfn_UY;2Xnoy5Ly?V
z7Y^1U!^KJliGzE&XqOdD-dAnl+F8Iof1teqsK%2qB?DoDx1P=Vu-AfDnX-YPRn`vL
z4SFChi7ie2cqO;#R-J?DNI_dzuV9B-qr2I9Yl6V78OFF_P#!qh#?k1hS+(IM2ba%+
z*V@{p6lY7Bz(igg5@a3~mZ;N6E1$y1h3|yZ*74OGGAw<ka`VxziHoT-JV-?@%W*l2
z@`A+^{?vw}4Hx4pZc6bL_X<_ykV>fH&{%n(3&u(VTl@$CmzUk2v3U-G8vge5FnSmb
z2g5$vjTue}kL@)8?GIn`D+@WFHDR?#$TAX#iGvu#V-g<@#D^N1-nwjkEn2xI<47iF
zAE*nrPv1V+{qd)ZH}6i*_I?@N-1uua0J%;+PKqfHl?;%G!=p~f*4k-`obFd^q{ACv
z6vPMeg8O4B_njI!?^|tcuHD7*QGq$lt;+z=sz0tK8o_+~jV%lT{;&ytxZ3vxn~y3V
zki0>pGz!(H7EL5rSsKLE^<WvtJcL+yl`Av-6<O`02Qs4D=&4<t*|NR|tbP89tQv<%
ze3$T?+XrirvQAFzQ!n`!uPR*f53jL?yU#u=pdYhQ#P)5hTd$`xKaS9wXJ_lSLoGa+
zGpDs6Uk(ahy{KBWij)@_tTxCSZZ5I1*6gkN67vI+1?o6%A~PuEE<eAwsyC4XvEH1!
zJS9NKf5d;Bg{n%*^;#?1*f*J$^Pu`xubZ}Wz(!@exj~COC&ijx%i>iq!B}pM>m^XS
z3NWv8aY0adm?>0Us|Af~gi|eA1yzkS*9gcj=!2<8(z8$NcJnL#>GxZuyZ>D_Ttm0F
z+i?|Ox7u<QSljQp3ZPqTx(cMWT~}j4ZMeM3?yOj(ZS`%r&B~5z3f>*wd~E`;SKY7H
z6uMgsUijPE`i{KV^tIz))L!~wblq_u*f?}?We2$-)53yhVDu_kQ5sw>>&;Z$FQW~}
zg!KWnc~7g|t4hOx-qni)J7*K9+;87%UE5ZmmjhB0;R7QQC=(nKx7p7>Chek+=b`LL
z<stXv(8z^cl^ce!(QP^0ov;gY!vwUtG~eNPZ#kr4uk`yJ&%0V4PCWU0>BF`|uC5d{
z<Jbwit?;TVx!ShU?bKa%94d<~z>z#)+I^WrToSk@w)8Gp=$l#{Zo&sIX*_UTv`>lx
zulCSx<lO@KVD15=l$U$8-*v1L9irLbtdz|ikW?if?4f=|zt^{JjE(xieno%n)M?XR
z58N4*j^p0gN48IU?tBkh>|OfRdTA=8;jaWTb4IwXXJ6Bb(b<L;=ejx{^r);`<<Rwz
z4jN{W3@U2qrVxJt0E?WL1;O*DwK#QkDe9nB8-{OSg1ZewBTt>iD>fSO?+aZxB$~-|
zEP|pACNw2a4@emwRAx&RIB?2=vq^{n!dcRQOPN}p-*ERSmlrMDEFNXb2Qev1g<zTT
zgS?<iT#^H);}(=Cds>ot6D(DEa79*KL0*wn2x6x`mnnY+A@)udu3Tf$#ZAb{$b5qs
zckX!*)F!ONdeJ1jHd>h1<^^>x>&H6E<!PXv?68c@)TAx1Bs8(Ja3{QucUTALR@>2i
zJ3CdIanwho-BjADWAh@qRN5Y)zSCqddWSuo+raD48XrF%tm%UjZR6v|(VD^~o}!N*
z|AWu)(WA%f3d=6`tHOWHR`Lhxd95?m6%@4lbTi`A_E^naRChNB8;v@sc!e|>R!q*+
zmko?fjRxxGj&FJ@ck0xc2WG=AZii7&10W}^FW8yEjNr7K{oe0r0BBI!Yi+R%S?hnx
zZ{HKC$yTVYS1><n)z3caN(eX6z`AsO4X`iT**n(Gt~-;fX8D?TMYCzY@!r~Ju=KB6
z89s`)_F!?Mp={Pb)B0`@Piy{ybb=gD%X-9@H4$M9tm>CdJyz=>YBmUy(}2AY-aB|N
zdTIO}%IUoK3q$JuO2M<!=YAo`*k37hdiKl~!cLHbO-8DIjlacB)At|OX^U+co5|S2
z;<j$BUUFemteQml?%FE|By_4$Ht+T3?z2vsU|Xt^J9z6ps6<Gknl7kfxH5SWJ-Vf=
z&0g8C`KYzNTXb_1O@n!+wZ(M=>Q<JIE*kDO>})+<s!<|U<-EKj>XG?sLw1WUMESPX
ziY{XSNd%wM!XJY<N$6reLa%gsz1w2=`KD?MoWpjLE@+xmygr`mDsD5bb)!ia1Z{G(
z>buw5;kb#%P-n&1x?$Y-%BXCu($4xGwJOc-Kw;KlHo~B7p=MniB!Q{Qiz@EW&5g|p
zC)p|#&<f8NyhLNjTOak?)W?n5Kxd0?Q@sneTH(A7SzT^BT-VlaTsdJ)v)i}EI$I9w
zn#$czo+jgH{bE=vzvIEb#r@CQ-v2eGpsnx!4u?;UA6M`HJ{msxa{u=}p2`-pX`3ox
z9L%*~quly)UJK@nF<0XC0GS+n?)6mP+rS$zO@wH^Mi}xG*Bf3{kQzwH>1AGd_YXEA
z47c9@kX_Xz&ka(6b^Cw#q?-Tf$>YO^U-tifJc14I7qpk>SS+H!V4(AXL^=(~9h^L0
zo_~esw);Pm3cMUtKn*;=y7*5I53BiqpFA8s`m+D;<EfngYC5Gx&lS*IUO*M1*|ZkQ
z>9t$`Pr)HP=nyzWAJ_Qq<A$g-uMXx-lch@fJV(Xo5w20gqwYH}sIn|IJ7~yg?QuPl
zM7&w$#Doie0qv_Fr<wkhv*hBQ!lm4e5cLOsZcG22=<<yM;2Qe>_~FrERsMVY<oFBy
zzmMmpOB#fRbHLgC;d-{P<4)99>qQ(NF)Ij@k-(RSkhnq~BWDK2XFEf}sVF{09IC*9
z(lDG!Ld98vQ$LhY`=Js%R(@q;fB}PHW+t31ufGN@4a=Tkb~u`HPqadG`k-v?Yocd$
z96t@kO$pMfZ+qNy9NyXaQ#&QiS__<jkT}F1!CSIIT^Czf;&}E-?LNiMc<(k2{nfGM
zoF#8$5)o&WS6*)1wtz3QdKv}RsMmp&@wG2q7h2`|uyg%*BLjKE_;|)RtF*p7<T2(n
z20w9A)4aOtxLm>Z2`)$hfySiX-NB>!=|1o&)0#tvd37J{dvRqQ&ldOfec-`Fi;nw~
z{CyuSgDvytB6ZfgdUIE69#Us5vD1Qnb5||QSjLJsbWV7Q=dSs?^5IU~s|Fi%UfxwZ
z@<e|l9a3Fl=e)kFwh96a6wTaVS<cJ*Sc@_%^mz!A+NWFLqnyUeGC%V8Ga31)3#$%w
zEx-v)OH!OKvW#X^4<tl{Y=`Joc3`qJW!L8<p#{W>-W1VF{Vh&G-_uwA-g4ak`>FwM
zE&ua;ur3G8I{oi(cwDpp9DkAj@8!9v-+Oao|9kIpp1)9<fZgaB&heP0;36BHoSiB`
zpGQApE(E`n#;b$n;h2>8@ZkSv@6Eg0#<9fF{+piyBYB?fj7iB`(yce?U%Qf2l}~5!
zv6HGdznqK%k&uKoMX(6aw#vzT_IGdrkl-d#@{&r8`9~s?ST2Bzi;KISK<pYYtk#~y
z+xcbR4v^nDb3j!rATjY)xnj^=T<3MNm||L%O>!+r1k<zm$+4X-(8tY~1;%h4W{nb6
zNM~S?&&SP_lR{1FD%kNN*c|TvTchCP^9`RnrvJ4$VA|;a-fl_$yT7~p^wIw3L7s0)
z|L-<W%pDyAcXA5cK2^+Z$CD><0kg>ZG%mLjso!2P`*;d{>*o&W{}Rhj^|a9cy@O#{
z|980e?9u+?L7qPh{V&$Y^?=2Ce+rY5F1cvTgx^CdnmD1CG$d0JjFhCtL8y<8!jN4d
zpCv@Q&Vip5_neX|or^XzPm)dZ#yC7>FXDvB(}x7v8|7V*{TZ;U=n5yn(aCXMN#X(*
zB+_0@FG5V`*;nI-BwrL<N_Di8%qi52DRU*Y3Y_FtEH0YUXoQRv?Hpf^(9^@i{X==p
zN~0tGffKEL>!TBrK(c)?BYB(!B$zCz7A|2-<WtKL=IDxqp$84fTj2<8p2}vAqQxet
zG+)ywy*3@ZpHZ&&0K%MuLxAiIa(*M65R`HnP0>*tA0=~^pahGV1Yw3FboL6`YVIqI
z<B-frBygxNrFPLbDHl*&%{ADAW|B06890y(7r+EVoyvB+Oc`02%hGI4xZ;2wvQHBX
z2V5*^Nce&aGB?Qa$ak3Mw&%a)12)GEtU#;$?`g&Ud;jn;|L21|UEB?uTtQx#bD;iI
zzO6&yZI5UJP&sbg2z~hvAR4uLR3l+K5+b4FRM;-$w@z1S8fwVyVfr4Kj8D1uI8Vp<
z*R>LS+Jm@tj?iz7wvW#pJ-4O*##Uz89kA{G_jJE(|NnINVE2*!Kg3g_|7JNGEIu>R
zuO&%;itAX7h5r&8|8QN?%ZKzEXjoMmzf5s>Ca`}|biSwYk9bZ)N|YYI<TX%NJ+Dy(
zM}J$?#C2TK)FO{AQ_{@W;pa7E2MpgQcru~B9hj!}Q!NmUjTBZb4>wY(Zeo+%)TdA{
z6zgfx?(s=)yHdh8-&BX$pT#JRb)|bw$;dJ3VAg2I_^n2HtPeh@$GFup%C{_lc6(?W
zZADC=EszXUN=Lff_BOI2UYobIP@9iS>}CWQh&Hy6e=b;)RWf&V^u{gPB;Vd1_~4re
z#P8_*$2xcHTKB($gNpsf;qIgS_d%YH^50U5VExr?VGoR=X-zI+N%q=1;}`D4=%e{)
z&vGi?-3i~C?YRkrWoe!BW2`wZ^g6){>%taxo9w#?SlBWED}Lc#4cj4qx_@>F;T_Tc
zr9OZy^#5T0Sy})0?C|i>{_jDaX8*tWI?jLd+j{<K;`FV(|NaoJfAc?}-`~95>90f*
zS{?u9O<sRp=H_0U#kzDXD!q!^ba@L8$N6{U-q;D<@80u}+`{M2cHUbu`6ZXXE(850
z?soI4uicL{v>-2ixRnRb{98KG&F|NTY<|BEWb=pevYLNu7pwWh`By#a{maj7`Tt9j
z2<qc7W`Vq5avz7Jd<|&R{~Ye_m+ilY&z?T={}1ul!s`~BKC`}sxKF)pv}N|R!G#kR
z9Oby6?++D&zuM;XE#Q~Bmi`pVrfR@R&6!syWc_R=#Aow4iSmr>_M4R%BV$vbwIop8
z$|I!Qkqpz6eNcgv3j=JT^Yx>UEhQ`rNpM<COH=dlZqJ@Jn6zN21|aoi_2ag_$2q<R
zJ2yK7cK+@m#yqD{6@u*D+7PIlkamD5TD#yl<^yf=qW1brEU$`Z<o5mu9S5Dp0TzWU
zJ@%Uwx6t>_QLK0VdovQw=`>;q>Ci{Z`9D0|JuJ!p_MaU*`hPvh(?=&*2$Dn`35L{?
zqN^E+&^V<bnBT_Ozra(%Jx7}<^E3ucGvYH6hG-hHv65KOXu1Pe20<?gM5eLc<0x?Y
zC?YyF`Bt2e3B4wP+Oq$)?IB2V&LXHOK|(P}P)H-<Io`{&^E1H`;`GrAHlMQy{qo`r
z1vKG~H>F|#|0?huZ~S{QfPc-4*>oWPF@N&QXplEF#{NYbqX`WOcb<6sDt4ZDV|?K}
z@x(lKp8Su~N59~NvXrCam#?_vY3p{!qXEGKRW4!w`W`93di($M)zQm0ue^ECsgIWZ
z|MZ|D|KHyoKFa?e<msc6Y?0Ah77+BxaCDCK#jHG<umsI;5?tYgz^&oknZBK?LYxF>
zyg*Oh9{+#nf+P_M`3|~Ds1PJVG(tZywcq0~olfP&K-WgTWUzd}67D$;kQqQiG-gb2
zk>HpkY{UAo0PLqNoz8kn#Vj3zUctg=iM{7$4BIFGmV*<4ScEY8_|HuCowZXChi@C3
z9PNZ5W(0lwnS^syoR0<rc_4axwr!{-n&SvhN#Z$9zmI+*0-fdwP>-VtbN=(+To(y)
zEkYUzH=rD5L!}dBA)79c>;B#O{Q0xbBF;kM$SzPqVuo-KAZu?*{y&YVSReyU-A7MP
z4P^kVtM<6ns^WrVkB)PGMhN<teXERf5HO#^AMnq)EHu~#?2sKw#0Z$5g3Aebx}KND
zt8Rrb#C{(gM_k}AL@y*vPG!(kfBty->h-ImvsdSDkKVlcR67NYG|L{BvItLAnz2t?
zee*YsrrT&tLU!ey7v?|%&^iseT+2+z5r2s2@-e4T{ixMAV1p!N&MpZ@vXDf{9F1ky
zF^fnfIKrGWpJHK7T5w^4tp%`=5GsI=4G9V6#48LvgQIouS;;QLkEaO+?xJb<PyppX
z8oz+tYRQr7YKSUGt($KjlPcFfqCVR9t|bd~;9Wb;nZSvVqnjjbjxMz(^uQZ>!yTCF
z&l1p#s(#iBLb**~tmVw__<@!^<d7E?cL2Z7BA>*957;G1E-ASh=y=_(!~mBm&+vf{
z{Ew>|9Bg~&{fs1JB00bXOVJEp5;-D;A^=lPILCQ8Jx5+)5hYZ<2u<a@q8rLP;Pb|9
zT3CITqQ=EtWA`6V6u=w+PY}C`ke_nF=ICQl@tjX@?SbO5m?T)Rr1sr7WaGgc(`fM0
zMw9`LsW%V$Mg8bDVhQ?~2fV${p7U_5+dC+R&5lUK(*)MpOuCp6nxM}{x%U}OC<z0O
zu<x@(?%8l5i-UI}xzhOPsZH>s#P>b56ZYj!crk<Q60)$0_(h}X2ry-V=b=-|f~b8p
zVX*{TQqD0^(t^yrQzgkySd7&TV}yQYT)by5jMPds+wW_?B_Q{X12o|UAOZc|>^&e#
z=m&-4`f#Grw1HgENF;0kJNFz&N8iuebH$9Pv({C6#?T~r*m&qYL!1yG;n}Gq4@MR%
zV=*Av0TGynBtVJ^2)=_ZDW@W*<(nLRyi`IDIbWZ)yn*%S_KrldB#mSRPEg_eGgOU_
zs#KWI*p<rl%h%a&5+h1^=^W?3Sc-fc>GeaOo0|BXX>Gwum-qmzqK}_Tt$y~<4-3SJ
z5ZTv?7n?$q&yxOT%;gmgC5ehdwm=xkDoQtK`S_Z?HD(lPkb%&1-m}b|jL4lrINyOc
zBofreLQ|ZC{FXvqm90yP5k{Yj#(1CMm?77A9*1OGEj~t{t+*hcwJMwhh^PJxVQ%e`
z_2a431yX5P7dIg|FmbLROOh4o3iW#Elk(`bVq6)M5XFe+Ej4w~Q%$G{Sed);ln8}Z
zuw_daU?z>%($8^%Bmeh7sm?$ogbe0bPQt*{9~i)0oOuAM(|<0Bf!d1P`yTK5bx+s(
zf1L8!6bo{N7XzS<tx-Snr_KI*_poyR-+#>i@-R=y4q39T6YQIdVn}@waWX<jv7|Zf
zo;R#36kYHU`l7W&ih8IM^bB^A-oa@Sj?i-ECO=s0D{8^Se9ysgY+0OpyF+j21cdtu
zjn%n-gyh{^lX$sv^B$0e$IgsNNS8u1u*+YN#T82e2=8aVcdZT_$$hD#1Im#(rr`)p
zDUOnKOxZuC@`darBedDKytqG0C>In*9v3(b$UnHilgU_K&g_~#e9fyRj0ujTK+-k-
zkC<^mm>1-+q<$v}6@oey0&kBdQ@Ob-OpS7q!f_nR!;Z4Zxim|(=j}fAhJO}%`Dc69
zq5l?V*{P4^^ndU0aKG&TvwwK_NdF(?>7$q03RtuGMS5wkd#3-P9AWfdM{i!c6PC=e
z5F`NYi7fDv_#sXRy2J^UY&WQt#stNfa}ppL38pyV%!EkZ9MMU_E@?mz21<o!gyInU
z1hGj2FaYOg9LJ;2`UVPA&Dg$<P_I|hu3(6#V=kyj1%W2uVw#4bG76FXWsIw16wJ#T
z1<Me-<sff4|IQ+-;p}y>W$;fKfmMbP6_3zwDPG7^wt?^>)JJrJA|~YZ2jyp@y0t3-
zRL-y|5fceONk4^d5sK3=G;XrTlebKqB!rVl$g#eQmE}2#S%At8G*$N=^zoD9Xl{R$
zInQR!uTGY}bojSjr|7Y%U-d0F(EUA?<<uDEs>9lWQW;<_dVwQ}VsczcKS6L163*qs
z09MOU_ujII^h)lvJqO&CGhbwN*~l)8CX!UqLHc9w_~i0wZwJZ$5A<E7?DO0^NyvmG
zS<BE<$Z+rj4sqmX{TE*<e(6*NLxQ>NqhDu4MS6l8CYxh0X$Tie;DNA-6@s)6CKBM$
z1v^dRV9bIRpD_@il-Jr~44s$-RvfYsy7^iuuJ>Tff-K2Eu}}u3)voc+TGF<urrXzl
zF7HE+u2e_AZKzs~J(dlq^uD2b?xKN6bV(By%}FG3D(I+8-#9VL+DAuu6`QW*k_Vhj
zL4?PheqUD5H`I~(EfRc`Oga38T;#eLq(1Q^HGV#j_j#LGc=APUd1JBs{BZ8%P1itr
z98r-8)Rf6UL<Pkm{hegk*6*uEiiHh6*Ug!qH@U@WKzy8Rt2RpY<<2)(40e=?*`5|F
z$q({oqD+JPT4dk?2kYuQ&d*1G8~$z2{+z~KBm~c&Ypq|%d>qag7o&_C>5}|{#x739
z%uUFYTtENsf!2E3g;-1?KBE)i1|%eM*4;D-`SY9Jpf|edLHM%XsNM~#x6?BRL~mpn
zJrUm9>0Od!+#B_#MD)M_N%p8t3zYRafUGQPI!5wd1b4N*oo%|0j4Z{n@zb<-&-!kO
zfU>DgY+F22Fa)ojQK9Ob%;DhLefox4AB^OyzVJbzEJA*qj?mt4u3xGMgdqAYtgn*!
zLI$J(5x#v$s(6Ei!_pNYw|Y@yROQ@qF~^c$-KZ)5RUR=Zklsum0|&1>`(xtM$s%*9
z%4&m>O)wM^(56WC2}}0LXA$=)OBF!=j7cJA*oKso#8bQ$4!PW8enK!OAhwKrqQ#dS
zM7k`pNsg8nhg67A1$N9p*)bAB^oB<CA{`SCX^lw0&=rmfBeANbk(N6b#rV*ANF!MU
z2meYre4on>BH|Oyak2ojAFZfV(&{t`7igSdn45_p3EIr3dehU5+GwS5Awvd(GlxTs
zG-cF+3cJ+``?7-5N3M&`h@2@hE{eh>gUgIy8eDN~5iVuXj@%N!`(=(gAGoAiu%>ey
zJ6B}<!frCdo?-<9s$6Nk*D&W-ED0PZq?aVpIbX|4jyPdsqPP@EvVO|*V5vM{19vbZ
zI25ymd2RDn$WZH-B*cp|;<G5=a;o5)P|hUwYbPN%ptk@<*1scAipRK`z%xKrN;taG
zToNwD9zcA?(lC(xp$b|cSzq-l8;88sC|+Ii{}M|}Z3re8O5x_Q#cW4`Zb~wkvay})
z0>jaiL?i*Vd#=+pH;U}`V?;9ry%aH7f3r=9#0(3BAt<KYuaXx89fNFDR<$_@tzS|y
ze~IZRjiL7sr>|w%giI78U9UWrDCtg98jyhoV<1m-D-m(Ok5n9Bld~6Qrtj2n&V6+B
z>lr$F{R3=Lnh>tc0@(x&o&YnBIajQ`x{4^o(ZAlq?csQCf|tq>=_U6a4TxkCpfGSF
zaYACEC@#4q$pV7D7B{(<U1C#CCTXaw9kqg7t6VaMRBl@mWa0Qc6<;X9^31V05)Jng
zy{*UCzaUYNA62>mHB!z)H_?fY$|cl!oO0skK<J@bY;rc?{c<1)*;sK=^}=~D)gu&5
zX>?s%P=wsYz65Yn;_{~M_GiWgTv%17=#3=w@<y*HVIXf=8V}^8Y80>_luMAoR*;-}
z0h?nQflO01{{Hn@X|>dQ6H;QXJD=l7oy2-mBN`Pi+*bc0w0c*^y;_GR)}R0|S_-sa
zAxX^DCBp_XnGj!$&|7xq&q$E!lNceRs2`zM*OUtm+a3(rbXYNvzF2!1ZepC%DID&y
z^r_js4YnWF_641qQsYw=!7i4svdp4ziAe~^Y+oq#`>q43_M?zWcEcJHjYp`ryZ6i+
zdP8rwr^hohxRFnAZ^D=dd~`2=H^zzm&NMglcD+4szpXXNJ_u53&b*X!@~hmziOx_4
zYB~su%p!vH@DL7JG?iBiZGM<ves)kmClivueN9EWhIq>nApr@1xRS)Qvx7K|e1iB4
zOa2{U^tpWR`i!ujFd*Jgg`<EG4u{4CA#r9c$rq6?_esBxegwXcaulaY%sANrB5x_l
z!DI-6QlAMdB-J`2;<GZ&0p&GZy)3+u{D^GXDh}rY!GWZ`z^=T6suHg}r`)!o;EvjR
z5P=;o4dhyAi5?E*=9e@#<ulhpSh%m6ltwR9osks=8e%jb6ryYwU%h3~DPtlNOsoh(
zewmb2f5w+;p*V@LJdd+WxtxU(m>L!IK4gJn-}44NC;NR?8lc=veWcFl6B7pf758zd
z`9L+H{pQfrFxr02wDcS2<!CaYVEC!wU6EE~c47sRJ5Y_dF$+K~Kj>rKjf<ne#gU+{
zdE=NLS|ZX%Cm=hriU1zR3Ar>E2(D>jqJ)!ih<$J~u+TT#I!uvuE_o&i3v3t3ttq))
zkF$yBp*g`3S3FX&1I_$Bi9s0mM4}2XZ@K^yS1h9tu-wc@&9WZRI29;jXqw^#M}h!v
zXU@JdI5V6COTeKVJ<)tnuof^`e}OHuN4=i5WYI>%ab*oSQ}9Hr^a1QRRPAwY7(@cJ
zl|~>#<v=;mXH(<zwgf_n1O+|HmcOS+@$sb8LCzA$rj((nU@=%Y|C1~<Zw&}ssHlfZ
zIpEJ2?3|)0Z1)}8N@fR5Fb&g$xcXck6M;+7Onzq(sR8<Z4#ud&3z?$`#$?JN9?QK8
zcXyFsDsS6{P^`4wB(oVZ9PojxD*tiKl(?!7*Xm>7n2%@h?M42{$kbk$V}gRvd%@Dp
zEMq{85?4u`>MRJ&ElV3Cj_P=N%Y8PNWGSJ%Ad*uT$wJ9wet!S{B)`J|;}2W@YDWE;
zT=@wR{>+?+>VEa!Gy&yzGE6t}wjDIXnNrEP5ZR`QbW$KCfOHroEET2#!UA!D6XB|C
z0+LNELEban_0+(A#9=6zdSm!#Srixm&3@5W(m<(ZvQQAaL#}yT6Ho+ZN5>7Zb^%0o
zpwZMT=rw?A`J4sKC>V;#A*;2fTu_GQ?_Zy($uwOlMMuAHMct^f+6D-?4;d(6w3(S3
za4K!R_R+hER{X4ld&YVd%&}_iS4GIP=<tQH$g>B8ETz~bw_3YWh>iVh0Y7lfbzshs
zjsT=C=!ssfvEs-qcNKjpS2q<<fEt$)!F2E+BXvM}^8uDiQUQyvx=w5ob4Rn9SCZp*
z5Gu!;%IEi#NahE|_AfRD<_HEBWf~eIK`~se+=^<pU_wfo%a3OU&8#mi7SOgtH}l*e
zU}kGy=rDJ&tMrSmV6IxsZKsq8TX9nAUaS0&bi@<AHDC>J94nJ&u1o}t@jH#Cgj<)?
zkGhFGPDwr#E8dAY4y+-8B3zW%u;O2RHKXSmzH<$q98onoN`7y{zT!UR)gzPSPs#NN
zZORksd@Hle{}N>PfiE!&zGP(ni{w1MaD6%8L~MKiv8mfqq}|Ns$MbVp>-_wap3~D?
zOy>Q}VsZMmonnZaeBLSpn-hW0^F#eSX2ChQmB|r*GSi{%81ioY{}yNazqh<6+Z+0w
z6)8-GQ2<uMln2WPxeOz;VRTSt8TD7kvDi+oNQf{pkP{ZXq&!JM&-OzaOo;%>hPLK3
zI=aL(ln44?j;}vN*!;Qe6hxaso&mVFDc}`lIZLD(SIa4)5hs+vEh&@pIbbAWFb$mv
zc_*7L;J|RW{wp^fI3=nNr=p3~lE~wUmb}`BKES9d4&;%B(MeVtX$3E2m&)1z=4J=Z
zKa<R=L8z&!*u6oRvT6rfLOW*x<nb_~Gw_H;V#YX#o5{62J|zYG1+fGLiwMuDuWlHe
zvWO&RD|MCH<`d;=dB(sDMS=82LS%w^oDv-TnovRBMg9tdgV`%6^Gz3JWq#Kdvx)Gb
zX|pBd$c^OK62g_S!7D2#)UpO-LL(CFpp#!-WWqxuGt7jDngr>*XXY|AW@!|Fz*hkV
zL$-LS4r5X#8Y(py)@OL;s-i^3pp)<1Ag8|*(~A5(LVG{a?$yr(OYjs{kMrszarHUh
ztmr@OSAWlH0Eu9z=l1F<^?Ey+#n%^7UPWuIKZMrONJD_OM1Hpg$0*%Vl!oDsyu6k>
zQ-qD`u}A_ec91_~EK|7{7SGyH9zt8wcn`4%9sPPHM}VUMCjnxSY3HYZzS;rR#s7oe
z#Uug~p6y(uY=be9)1a5&EFCMcK1&v0yVkxWf+=*!Sj$NoO4eG!t`KsQD-6n8rb?U$
zget>^bgZu~Jx5!c=(K%hy9xNH&lN-KV5?fSw5oksRU3&@o(%X5Cu9I6cy^X4Nmp)S
zRM3qopGw6BYrS<sxa4IZeng}a{2`MSJ+lfNIl$S3A-g&XL-m7a3bCBi{K=RK$~z~H
z7WvH;8c<GJMjEcH8bitjEF234S!q*5@h>Vfo$5@std3%yyKKo@z&sU-w2*5#Ksg*R
z1ei%aSxB}YsEoiDa4Gdk0P<r;k2y<Pp>)S)sFudE2)rdRuRv`pGD>kpb9)PIza7kJ
zlq+gjuu>a1jz?&|z;P^B`Y1{8LLG1-!RViV<w*OTT4L)hA~_f!#vqb5YSC?*zX1Wz
zjD-Qh5yGZfi6_xC%d;r|*X=7jeuE=A0jmHlBY90H#9#O!K{LiKcuDggny*HX8z<yU
zuvp@n+$Yz>*FTYQm>Z#wy}_7913v5Rpq}f?e|bnqjP{4UPv3{d`#SdDdGx=x@7}*U
z^Tf4S+DD83&;IUiIsen)aQGPi??Ikj4}w!j!en`Gpbw|7(Rh*R)QsDxaTF~@4L2%g
zD^$2F0ZBb8g+RNi;%G^B_U1;mv{5c4AgVIIxzW+JMuUM4x^{C@Ee)c@nh5?O2Qiga
z+HgBTO;a`>q`mUd+jlQtou9lregAx8%XqWP`;VIk1#irvXLG8h=z+*(=wF;g66EK-
z8&5JY5OtV;9Dd5O+<fh2HV2(LDaJzEE{)>&q%;PVRrZcYLIs(_Ah^IH<({^>B=AoE
z@wErA`7>tjG8-Dg(MC4m4Quz>GL&Aneh48+mqzGVUbYtMki}?1uF#xDsnAXi66NhC
z(ea5<E1FBOmj%E>2pPZSD}8?>NR3k-M%Gr@wC9;$`pCUnV+A+!6+C-&`pfZ)nni@h
zZ@Gl4LsnSz%^S1WwiUbCmU7)`{B^Uk<oS?B4I#LjcW|Cat9=Wfyn6|8LrN0|%C%b~
zf7lc^|9RKuR7*S6R*Xzlw&b1as4O}vd9QKX85eG7TWvHmYB?M3ge6z<ma}1|#n|G(
z+Vp;bhyr?vGD{CIgf^N1kXu{FMDM!~fB3)txgGy^J|kgF67Gq3i7Q}>|KHx>)3X2f
z;j`W0Bmegh&&|!?3A&{75r|qQG$fLWKA+2J@n>X&o(zB#51u%$u48kDwQXeqS3F0T
zbG0<7h48s~VU>MQxu^k+Gi2R%y+dE*)i?6d(|!0!=V$3;La$NJ?Ufim1?<~`XP%1m
zrea(fC%jbv)`Z{9lbuWoU>2PDbTL)1tyFf%6)M>@UyZ^o1fF$EDXP?%UnpB-oXx5{
zxfkfS6o;VIl%yM$&U1bxYCfU7kh3b6k)tv3v842z%?t6wV8KlspoAz3eWTZ-9BpZh
z=gYTevaDo;BxAenImZ(dS4=gMo#e_rUs+3wOy~;gQ;-E@UYXr-E9X?)YU<FkH>W|H
z#_wHFPA5%~zc*kgqvzdmI)^cv6xB%i%y%kCu_|zJLL)Ijy?^KKzw=(HE!AoF9ajId
zfP>cJN}6FJpkZFnkE>Fke(S!-P|2)tWnlK4tKWGZDy=+2z5nQ;-g$3jnxe;6CV*A{
zOF78S<EhJXScAUx85m1sbgM3Eb^|Y8$wO<Jjx40JaVSd{rGGT$*()@#98XM}+S{`0
zoat&N?~t4>6OjwhqcMVb4I=5x_N~RM$&Rc=QmA&6dtXDcgEC)#X(vysRQZB_OPMIo
zT(uPySu}9RI;*kS%f@^}*Dt19F@Cvvuvu*LmSxJM<0~#ud9vKvkt_}NUVmGvX~o=@
zinH;yiiB!Nr$nSlWF%e*ixUc`V4ksV!V;r=0Nul41@6X{-&<Mm3R{|!`6WqSuz4(x
z(%#>n?|KLBa0mV8uJ_CxN+M?G;gF}WZpHhF3Jbw9!j5|6T962Gbqp?d$3)=WUik`L
z>h-_Z?@SM}m<OZ{lU}NcJ9+toHPxNxH4es2v$@fdwnQ!A;Bt3RW6jVj4J|9&e2Q9y
zN)x?&<i<y4jnNx1XLo$s{oB2)Z9OVMhX;4qVGROzNB8BcQ1;L4yawfpY6ZZn^BkvQ
zcAhG~&Rp=laj}CoE+t23sBpOrujECld3>~SfxdnPayAp-7aE{mPqwAlloMse+8gz{
zjrquq0@!)Lg<3hjZNNC?s4mEYuQIf(wyZp%2^Xd@^U?Ug$^tYB$aUxDRl9{wzJ49a
zsm$7JJ_|S)%!Bb`XL`hfvzYj5TB;mer$enVy>;gd&s|bFm$I&v%&}yts*RS)Z&S~Y
zRNA!s#pHL}eavY{qf(b`xzOe+sifCwza~5dbWsdg(Y*t|QmNWqv8&}xm-6Wt^NV8O
zpDYAK&q4`!<>di{^foAd7I<o<<*j30dwKgOR&=0BOL^!Z)RfRRi+o~Akmz!>N@CJH
zuhC5<MR^viq>)mXx+XM86NJ#nY8g{2fVIJ(0<T<=v8Rj=bet9<d~K#WxFTa$e}jmw
z4SiXEX2Cs>6@4*}O=2t-%HckCvu|<21oK%qLhoOk)Q!f(Be2!Grr3u0sB@`|o+CD=
zqFNVX1)!de6VNklnC~ZfD1plIl-kJVvJ`W`IFCyl)t@rGa8@Eq`<j)|$|h67LNQZB
z{{J(<ka2BerK3EDQ`aAr`&p;Ge3^>}yQQmChBG7d1H`cCa2Ayg`wjF3jh`Nn$S==L
zA<LM(Saq{i0J>pI?G8J1QS(YSRYt&?z1p^eO6Z=2yr{+Z>}vzU=d~L!J}a;c<;$%+
z;`}4dTR2}v!Zne;gmR@sj7d59;u>dSp@$~dX;Y!bW&AF>%`E%!GbcCoyIG~_aug~X
zEwx3kwz$t$%`%d;xwMM)dR8vuy<kQ%o8D!0bt$Xn3hao2K4&{>A-6b`UgwOH6>H+|
z+*KvRVxeI>hJ`Fph-q<)OMw;3Lw>hId#u)Kkwq;z9p{%f^FrSEj2pFcvou@2U1y~m
zga(WJ)(DpNU5C<T=Wb08l;iqKNSvVqo6u-_3`zC$>sQyrPr+3w!!TicS=)Hr=!|WX
zJ&-%wtDE5`7XIwjb(|2+%^KOK#m$B6uU_W7V+CS4j&`&g)d+oDNfiC5pucUIT@|RH
zd3IHVf;Fc1iqPpyK)f^S$Pcn<CCS{Ln%k|$lJ#g?k%wNB#!cSfO0Twjlb`)9$VxfH
z2ndWSCtb(ZwL_Pwv7wJ0MP`rq$uBS78_ToNb5Olz=X)u_OY?bR*xrJ*L&U_=-U@Px
z%3)YKkQ%!*ciPf-<$0yi3EabSA=|Q6ZO1KTIlMyIOz_+R0gEP*70PQQ*r@DrQ%|Lr
zpW6**whC-zCdm$SwKDv5U^T&Ldm2?wrMf~5CzYn5tvL1vo1<)H!BeVf+HU@^W|FtF
z|I1y*mt_NJ%m4E1a9FbcdwQ_<nE&}f9*ev;o)n;UucmO<>Dx0DDCCd|GY2ufWm|Sv
z$)cks>3U~lfyzd;0@kcy>Fw~C_&O>-1f?qQO?LRa2BzIOwX4szi~9<B<`LorrmN(I
z*L9k!Ml6-<mzf{kkF}<?*SunE_?%fR#id+&@%w9|)S`$;cYsWPtr2`}WrLZ9Y>Y!o
zHxf`^pluKT{st!(M4W*AnAHOQJxz$4tE1hNOU6fAJi1i&Nhg%Z<Nl^#o6;=pG5FSX
zw3#llvX~u?o!ilWIN05}akXqX1X}3-aIcd8>)HO{!6W^Di07u_r&sizmAK=&Zq9g#
zMNE!4>M8%*jK=D{9m|cqQP26B0$UPKH5JGacDP-r_ebZO{w&Y!_P;SqTAm83&Hs1*
zu$=$t@Y&wp<Nkk$=cbb<?}in>S{di8#DdvPoUlaLHc@q6e;XPM5Nlgy>)d@!+1#Y1
zrh;$VyOeu)zlduqnF!=rojme)U2*GciDB-*v({Po!PF@xTiXs6IP9v?jA^6Hj#XH(
z6}ZknAs>HpM^=*vl~E7isv=}{R<rE6>b<rXgjn@8m}Pm)BjiGuY}FG~DCmZZis6C?
zHp7>VBBmBgv}!ABm6Iq7fp1N~Nl6iHaomk_ztMg2^CwRgQ0o1??GwHX`a;D1dxtj*
z_FwMJ+8hOnTdA+L`jxi`Md^I3ZW~34TWO-qomGH)+YOXL-hytuR+Z9j{mr=;3_{*b
z!&NERBL}(sxgGyk^pa@e0$b&O!?OJE+3w-~BmeghPl^94_^+(N$29xDSlrB8yU;yL
z4VR72D+STA`4dfgTnN48s)9y%=B^gtp`_uc2PKPU)(8U*!&`KmQ`iZnA?m%0z<=?x
z>Gv~Y3Hn@`kk47j#4Iwh*Q;S??uaof1suCiA*YqiNQF8p7}4e?bL9vlS-#RGhA$m(
zOg@u@&DWHS-r=EkJNh37;|^({+vxvr_n;d8>oNcHgFI!;d`-aL)lY%4x1L4&Ykctj
z?0TbzQry%i-s_gL*|_9e<KpA<@XsyjzZGylzVz4A|Li`i$bX+540j*t|3f^Q{^KY>
zTg!|9w%d)j3iX#8SZ$XNmCT&rq|Wqfx!kkT)gN2{+F=NJtcG@IYk2W*dfZiF%-5Yu
zl_kq7wcg>X2Jlui?m~?%@*4zm=~Q#u*k@G3nOBsVHHDU1=obO(Ej6$!`CZt_jX~a~
z+G^{O{tm$cTaWkK(SKz^*LDSH)BhhltLXm@_aFKH2YEV}Q`XXH<%C@z%<EI0yQZ-Q
zqLMdlC*Z1a9=yyk>`%xp-**2ixybGG|GPE%|Ht^>5A$d*0{)i$OmGkq&d)CW_luZ-
zjvLY;lmahXF|^%g>Hv7LoNqJnFTOi&O#}WtGif)q!R0*P1Xos_Wq;NRLraBkZZZ+~
zQoj?pCTz_xuaDnckBr;f6^P!lh@d_)C5<Ao#b3enMdOz#4k52g(ffqPKjJwJDd7e8
z&?VLL8r5~z-xf6iG?p~AutRDTMk9=xyE*oC6S@{cbelyhzSDtUTAe=XT08@$^%O@_
z;|S99)!?7DdhltG)ENXVZyemoZglMymlaF8zeKiQ^oq|V{VOQ~%vIWQ1uU#kPCP5&
z7qi&^d5h*vEeO@(71M@lXb+3@)Qvw^@fU@bx0O&H{Au{5KihLB{GX0|+QbI7$^WYP
zU!Ltf+J8UHQ%~8eQD&F1dAf8rZcn%T{mJNx19%ALuQ5Q}t=YgkjWG9Tx(@%Zd+vn(
z>oo9d(*OOv{fhn9{_dmw|ARdB^j~Knw{J%F0g$Kt_f+C>NYPzB7IY)`tln?BoR}e$
zlbP3%?2a|><yOD!f@L7dGZobk|88}P`iom0ABAxnkphW=n3-T1E%z+jl(^}jH3OlM
zAju^TO?mUTeOawFEMC?q_h%#rLH%{B2FC;^B!P4BN1Df)D!sl{7b4_JGHohkFX}>N
ztr01!GDiuH$$L5{EX{*-*)Nw4Cyz|mFdPz+IT6Xi_7f;1=WniS73(^hN|Jn2v6?;K
zp3OK!TXmtTGH=C|r!}d9kTi7OH8fdm&R1<}1Sw>4)5i6-`@@(p+1>!(`ds|q^4yaD
z({f$DR0-Uw|2cS8j{os=_woM!AWw<$SS|L4Rq)Sl#Mv?UN7;93WpE#(d~_aVmna{1
z7fYkv45^?-y3DQDO#G@$1yP>uwQSm!%zsBu&Kgh1@-p0dA&NaN36*LuRE-Up0cIsb
zva)7o1p_jx);dOHdQA1EWT?UW^7ck$wX0gQ%$3l-sK(H&0903Vvq#^{@9bHJ|MO-f
zoKuKP+NqB=`@d@b*ZsrYNBf@#dHU!C3qg{IBf*ebRCF~X5gMm73}`e(G4?O;lyJ}K
zqxUn)5l>@KsUtokVTh(78!JwQM$;X*%nEu*KmcI9$5G()QADQ7uy8AeEJh?y2j9PK
zd+1#hE)a{LrUVJaBtapKi061O&(6;TONi4)I_UW?FV0Xv6Yh9ZDhBYc0^jk*zb6Cu
z*Swfb2l5~DC%=pac|&9DU!*bQzU9snk6*>k6K{+!oF|@`$Ig@gar)>NoKTi>bo}xa
zcf2@Z|02F{JQ@%@P~{T#FURSlcfY=Ub$SMkK_0n0hpMAKed`4;J?rfM(^p3?-@NkX
zLB~E?_W$8wMgO}ei$CuF2YCAEBwJ*3V&xZdV5_SPtz*Un7YU9z!gl$OR)tSnI(7V%
zidi}ajevzw7XECbJZvap5yI$WzDu%Z3K62Wjo}wcxg<$qM$pHfNjO)<`DifE`9HS}
zxk4&UX5u-{QG{5mB>5-@34Jc=DLx|~M`%ot=Hqt|pRqIy(1NAtit?Gsf)5Fg^;i_~
z`e@C`I~~P3hs>G~r7f}dl?i&i?Kw`rkA5Noo#x4#j-v^4{`22l7YTALLK+D-pj?87
z1WD#Jf^gNyb^q>s{`}cz5oaNRRH*X8$`B3$Ys9Y4=JOQdksH|RK6)Bp%3xAmMGUM~
z(>TC_$Q~W%{EQIvG5c0ok3qnE4u8Nu=d#dX8%U$<5Jv$Dn4d~qP&q)(OXF3m0YmKf
z(Q(8D4nqVftDMT9ss8-&^wsNEM`y3j-yXer^{I9W8i<=cD&MvP|FqRF{Jo9FBxG0K
zd0`GT0Ik!Y%eBme9Px*UE+2Cm)sI?@1a@&k=IoMiBn!!{V<q<X**s<ui3CTObLLYl
z%#oaDXa?9w2o+Qkbrr|5F!T(L*1=~by9_^`CK%X|rr|>Ya*HKLuB+jxptNqheMG8U
z`*`~3Jwtom&>K1q3<w>a9B1jVXPBcgA(819@~dC&A<mE_c4!|_jv_+jmr26rC}LNL
zMV{llWc~$7RKhkS@KhFrOxsXQC3suNi!;u%yg@p5G+t!EP9t{ZIga@ZP$C?1Nk(ui
z(E>=W5)uGT<kAN;CS0I6!M>orq2iSZ18h2%MbERM10{19Y<uWT1)1=17%q0SECS7O
z9LwdW9IVkvp!VIUfC=wjzeMHd`QOpoSHC)L$H$qGgbF!*#Wt4ZUv|{?sPtRNMeTgd
z65p7G{#4(v{_5a3t{Y8#-UP>F*KaLt@+2F=KoT-x3E7dyF^OQ0F_jltZi)p<H!mSw
zKhQjhi-sQTz|S}#m%tO-;$oIq0igj^B?^y;CLeO~WS<7XJ;ynopwDHg^9W6F$jN84
z1!pZ)R7a!fc5&(D7=01y4m4|lT)_0_%V>Ok$0A9|=cPSx!MiknG?DCzm|=kerm{`@
zBE_K@`ly+dxfC@}s+AA2zP#nw>24h$ZZ9Ax3H{yhQi>G)pw>p8u{4@CY-1XUgbjcb
zI|mxr_w)8#F(Zm)aMfBH;!30GwkOFSCj?HS>^PO@yJFC|I(Y&jFbzonlvJKgJLr;f
zDsmLu<mjWy5CUZF)0Q`|{@mV?h?t~+%{)h9MXEG;<~1w8XY5L69$9&=zcnYn-m~=n
zheMJG%|{RNLuA!H+U$S#cgy}?yL-Ej{+|!>loSX!5p;rm!~ciWClMzjbQEKMM%+Db
zSXU^z;3M=!Yd4gTUr`k0x1j~fX%dc5&84VzquDo)g6;91ld~`*bUF0)o_RwjAly$V
z(2x;&KO^YKLR~b&Q4j+EOF(QT&!+JL`5~3Ra12^JMSpne&k%+K$3ga8my_gD-X>>E
z4zGHDk~85@U-oZ4CiqI<rBY53$pw%|R4&GO3;Dfkj^$-{fH^0Hjd>ojDRcet;o*3E
z=<gpq_2OviT#&^TOC&*aEz>+Wx3Y=aR52^Pp*!4k=9uRBid{tJn1*20#{{|9+yBQ@
zzL0=snpgcTFC1Y`$owB7!4apz!*QIIRi7@>FvK%Qy|M|3lj$DZ<=9XlKaTQzvewGE
zG-KQKcK5yA@00+4<EK0Qx6aoU`&dr@_YMya56krb;MrsRmj`+JNG_-w;%J)UDRC8<
z8=(!biNw$Ks;j@ee{mK$ee_aa7&WIP@4PmuWQqdH5k~)Y^yalYVaXf|c>$Qvka*CB
zAL4|dOPo;20djp&h$Ybr5RC+rcaS8rRN$WD*ajCPwCgy1^cDi%A~r!R4A6{n5S$5y
z63IkH@)yK7L<tMSG4?Mk_$@gI3`GLWiI8=6hmO48NCNY-YV$RnQ^>RDs8saYDnyIw
zM(DQ`FC^`5B47x`Rwni1$y+8)5+ctc2cbTCcS(|j23o?BU*xZ5jAwTra~0BJnd~6+
z93%^ag4yY#AJZ^I<XVs<!Xf%_`Wjuy+g@Rj5XgnFKa-QcqlE=50c{AJ=$<pioP0Qa
zty;~Jq(kB|d9gUk?4ygPtqKjH5{Pm&+cc7=Z(d$~Q_Q}KA;LXma{Zf_lXD!UI1Cp^
zc_B%hfWc=bI-UYb)zfKNRUWQ>o{A1Wx=OhtKNK>XLSj=5fc~22T<w`RR-Q0>2Hl#r
z6M}<xQMgbSNsTEdX&CCk0eliNv)s^+u>vZ*?DzALnh%H-uq3zfzM4^gre$*`kM9)?
zLv{6*S7Mkyr_!QY+~xj2YA8i-q!A2QOKfCkGl}yF!o~y&X{SIVMIRHhjt<hlbjz|K
z+qg(5xwTNY=2CMdPcfB5uMaGr9Gj#AHMO+p-h;BoD&3Xb=r{^AEU>eZl<Xj^8loIc
zNkkIByj<&GmMSAl8QY__-kHSUIH3&kJ7yu^X;j>NF$<hZsX`lEWdJ2fWBo!2RTm<t
zR&q;D_)iH-;}Lp#c({My1d%ZtH?s#=0fe8AG$Olb*W2^<y#x506P)-nVttMHuE#HZ
z69m8wm}DwFa*gM4NU~z{g%?EJQ}sQbPA2pkKI;3v)u7@X1D5T?ETeaCuU9HYf`|{D
z8ROz8q?i+X-_v-6db{#g;0?W9Q&X0Wj48BgsyAWG3z?6@y!qZ3C-ytj+|YyRXlpGY
zb0$csIrFk6>t`SNR`__+Sdg$dZ}{l-Yxr$Q%PC{xM@e!PT#$LThd`9|fy=X7Ewg_0
zmPN8gv0MQkoSZP95QzeEE=vUdIHKZ(5o0P-frtu<L;5>W(m)nC{k|f|#lm&X`GuzJ
z-L7SEa(8-)i2yRDj&Q-``!q(J2E@mS1yM*Z2*M~%*!4nzC&*N8UfFYD>%gIdqx^gn
zjD@PcAb8G|%x;D`P>Fyh#1~m}aMqe}md6;<OH#<}U&z+4{2>PFH#o=0&yuIn$=p|~
zW~C6Q62#DWP~<TqUYN)kj%nv_!@uq4AvI3SyMvmr5WOA{Y0l{sCJr5+C?gSlUO*p`
zWZI!(mW6;oA3p)p6NL-Cw#sl%E?p^31!ypo9Pju<(FQtEN?EKZ`-CNu)SDpHeik>u
zLvJ)Mk#b_VjXWB|a}$g~5kV7d!BPB}))<Ei-R=UxqN|uVY+|!B${L1T$4qijEJ9<J
zcO^kq88;vd1z-vcB1S=qLy7YK1%wL8;((}?*Lr9z3|GESR&bJ!z2lS1r@b8{|3Bz`
zvI}JKMtUcZS2}AM&X;0@FVI-YGf*CJ^7xLi+&9_M%I}g-M3%9Ck>S%^xzjgDc|wv?
z^-ej4mBvxVSC|foIb*%*NU<;y%OFUIT6I7c;8P(ZN2w>zpkOgvQ412PzF(4v$x8s8
zDCNExdO$c$)XgMesUQ~3Nbp2rnqYu8E*u$1&ZIsMuOzpYxx~p{6dFMF_o}v8B)v5i
zEcTAl)yf;#v7(n(Cf6@nn^uW~?4_(3veG1tP&B2{b!|Zrau@s1wmeQ``;eT*ST?KF
zG=;mMW(<@t2~`u*xCIKA7f}gajwLsd=}?V=P-g-$XFhTZJi1aoXimfxVa88np!QAI
zO^~*1lE@@vQfCF6P;(qhY=E6ow>z@<M8)ICs~~cA|Ith9^v!xN-Bya5$QVuuFkB>6
zRbo)Eh#qZ+2Q>O4l^8E?@P@lK>`zV`Vr!tfOGMSggBL^zen@F_0tSHS>sR;Y25sot
z`a1vhtJhfXC9IROXYNB6x+OE_I$-jJn&C@=KD)&ZKSMh>j!C4|?y?~g1scOu4<ppG
z*G}<y8l1cXb=(BYz|pO$sw33PQLm@wTxDm{21l|XGY-fcr3Y^9Bo__xijekbS*4|W
zOH(1Z!^0wLX3gAy-oHLWK1l><>IJDte;US{wb}W4uXg#FwX=IY1D!gf0=@6+@lfwk
z54})!U9c#EP1QvexB)p1Hy6<K?JkSEt@b#s+Z)RuD(nosH){Ix;-x!7)m02(Jz6@s
zfxo%p{VK<=<~t!utr`G>D|u?o-xwiNE<%v^W66;bxo6;L#2jIX5!|ONRqN`{nBf!T
z1f-lKnso=`5gN$_<^+rhBcEuaLJs;_79kQ{(u75z=T)l`QX%vmG6Q8N)6Be~5tXNs
zCol4n4GdVu37U~u)zU~Sk=6B`NoJEqQ)oSueD@B*!M`L<iW!;94k98sQJgHmW?36g
zDY09cgbOrIFw6}o_&4*Z-t=^%bDAGBew>cb?r=Ca!Y48ZY2ohPU*AwY#N6+~s!^`6
zzxReZj$}46Ctsk@f`ue8^jk7ClC_AaSY&d#6BZyG3F?|JVCWbp<kHMaCP`4tb{t|~
z?)JK4j2jyfE=hv~N8X1({u0<yVbtSnB6?^}aHOeku_rASdJ+SJ`b2S3A}fHz70dQb
z%mUf3xg(mM(Kr<-VrZJ;1V@4Z`xhtdk_IHmz|!E%a1ty5hjR2pt^`d;uof`o{(9;#
zFy@+ZWf3@2a73*10jPC$l;j3DaPb63JVB4LMFx=(2(^l>P;MxeyfZ6#p<po>jQ*1>
z?6aj%QICUiV-72K?Gz~Ij-qOcvD$$|LTN&b=x0m>E?FG?&LUC+^!pr)QHjAcoCS=@
zltVn0mt-J2BEgcOMhO950fh(JR7_s`Rl@B>VYo;^xW%{Cj00VkcRx8v6fX4WluUBP
zZ4oAAy2c`(#DWj5SaKn66nr2NLH^^Keq05oYr#2i%*QkM_9FjeiLB=M`s{*SjnJ;%
z^unH@j`OT)%3Jw|h+{$d1oSE+^pd@0;!LBmE(SAZM+;Caamn9Q^T|tW$x5nShg-H(
zbvM0!AL#cyo$E}6^4R3WXHlT^NJ@~6QADmR)<Eu_T#hU!QdwTJR3IEJWFu7YT&#rr
z1oN4sVZa8-vq5&PwiBlTNl1Y3C8nXABF`v<0ELEVOLk}Nze)vpN^r&^`9Bp}lM*bp
z^SvVvzX;(lo?&fg36wRTM6~Pe?V&UhG?YIN^uRR<(tFpiT$Y8}8ycO;zRuK~$qpw3
zi!>o%lD;l3%b8197?Pym)IaFY)oQsgKv%DnGcQ6hLPN(Xx(LH^$1HelT_)Ng6PRD{
zL6SzUrRX1IB+!k6@xZA`YLl@!bA0_F%GSwjs5y;}?01ef0aFKN=FO<2X&IkqloNd`
zDFspvkLXOfMIw;ht3t;Uc>>Z1JO?VSod0RR`g>MGYa4rRudY(Bx1;ewA0r$EiwMuD
zuZ}rRS)_RxXf2I21Zc}Pm_#fw9Ytvv?#Lsj+!?S=`pVXqrFSG>$1=T#Ioz{;NdoMS
zx`5fOjpS(R@<6yq;>@oJ735t6>^-NylMy-`O3p?tav6gFnjiC1r!4x@r#*@jdMPg>
z0Tx(oHEcNXO9{7XsK(r6jHBN%^+T2h^7n-c#rZ%agbXCTHMS7&UaS1Ldqu`G#x68^
zc-$MIqae^)4fI(J<_(VDq-r$UuoTEqV@v9bXY>S~1sj+LL%oDa9PZ&@PNQDuS~v)j
z5$c%<P*rrrT#KVLAEUqS4Ts&E<`*<}FG)ft3rj52t*#RN^m0njQ#1NXueQ3x{)_lR
zucpGb5c?PBIHu=dQntBq1Felzk%7d40hDp&%(}|ztN-Ej_18^<XLTEW8nQ8jl`=xI
zazC4n6*wV7>P=807ffZqAuxpE3GoRvinUyUrMHu7K5OBZ=~DrjNy$LOCHb(3NI3qn
zVCiQ52_a6R;9Oor!pm$tvTv4}01wlIrSbU{Ru&B0dY6aOI-KiZL<*z^AQKW3EUaq#
zGj*&h!!xc0XK!$<IY)JiJb8EaUMYLfhtt=UQ>xw^&^SlczO#1dJSZ9wN&wu1$fJ!U
zk^xn(<~Tlum!phg!d+h3vu9;=O^cfVUO-+5EN!|Wel=pa{<5}!yVZ3SE|d$mw*giK
zrjg7TrOh0rb~?+Gg^;!+xg2^=pMtsP62ldB|2J@H71H7Ue$x=lWjVX_0&b`qv#OF|
zMLmO%a+0{ylm=wrvw55f;$|1{ftit_^uwrMa@!T?XchgAid3O2OiXjXSno6|Z`++f
z86)N?+MJ|38SoiS$e>iHY&^0YPD^f5G@{b#)PhVdTO$MhtLU-@>L1^|%b?N9_aBZ<
z9f(U)R9@#)vaG=_>adGi><)TtC{opBXRpip?Ce8Pr=62&38{pkAa$4Yd4#^WK)TjO
zg(gI(L4yuRP=^9*L015*1tv0&#o{GRvg_Gh<68;a%D7g>G(oudF~M^p?<TF<Ls<Ww
zaZZt^eQ$(h6E07I{nQ9jDB>zd9#>^8?~PDTJF37(rR8DK4*UhpkbnfBICWhY{X!B!
zeH?;V?I;zD`*P&YrG9_Hg8Z$zM7u8fzzO>0<ftMnuNz=Lm(Ugra@4eK;t-UGf?kqM
z_@>-(HGS5l)jP?2k5Es-V{B63=4L`!?G|LL#TG289#Y@3P61xTd{p<8%_p0dv_Rgr
z!jN5&z?LCYMWMQMMIfr*<Lf1@)HZQA92T0$F15jFej<GA`ElCYK|NKg_sJ~mE5LHO
zs)~cryXb@k`tR(L8AQCKy8V$RT>MJK>}STsTg|4<)Nep!wVl7Uv2V?@vi-MZ3EZ`h
zrS{*u!)MQ)mE-^IJv(@e|MDQujUu7i+`Fgmh@-(kF0iW?n<djhkl=}MhtCGO<c_K+
zs0c}~tbx)WEw3C|<c|DuYP@nXXcjR5!^ZN?Xx<vRes6?6W>yA0+m>9Hg!jNt+b@cS
zuQgxnSC%lzeyuoR6{G7@Haj2=m&5Cg&`lWv`&Hd+z9?P?P>kiVDM-RStLNrvu_hv)
zo?d>1=zS`cv&;k&d6ke1Ur!%frJ}K2pg0UO_okP+?{&jHhC${PJy3NUO}&}|&>kja
zO1VfDTlxkB;x8>M-fA$;SAP2eIMI8Ql_#(=kz6D+n)WJ%zE<n?^2^hTW0e(=Vp56{
z>Z9-qFTh%91T3yF9{<_^js)QUYTwil6El)rQBFV|uJ5vnO9;9Sx1kh?(s^NPRZ6@i
zml;v0EntJXtehHob>30Fttxf26a(hf?xxe?2|Vq*YLdq*J7!qn6>d4p)-Y;7ck2JL
zhSbY$#jTXZa7+4PuC?I$!fw?38Tna}+O&}d)o15PFT>gjUN<nif}53-Oy#lyb+ErU
z`C#U?JKPocn`n`FYS21sL-W9^0{#Z7Jp}BvU#f5Gwywe0)lsQCu2%;1h)jP1Wa>an
zOX9Frl4`ti;7&@e^I`h;L`H3?T<0B-yK@0(Rud+QOTyxqK+vG2z;_!&*TLlACM;eV
zzg}xGS@Uo@V;D{nyl5*-1(`1&N2T31%tejZ+x(>~k*pKOu7NPd{|{Uc851f3rfSYI
z-2f3N3FJ)<Ol4RUE?SXi%veZp)Qw}yWXEe_{fFb1XiL^d$1k_R@?V9KvD7cPa>J^C
z4E{pOLbxNyTCRPYsjr6>VHB~*g+&3|%)6g%5WTNC-#^Luh6e6w!aGoNTd3bk$_+hH
zm5eKMcec2Wh%6x*<?er3ty|QI3KwMnkdR;p^)h`$SrmXe5^dGea*|#Z5!rscdXfcG
z171d{J5kdH{>2*Vs?b7B73<h6h64KDU^O&*B~bHCM+-AsCCxO-Ni&+WpxZzii3VDm
z$0E^X=gnBJoO-ZL`D(rH(Yl-So9)NCdA>J92aUtZ;41s;dxdu`bk-u^HjJ*1ECt37
zAhD#;bfBbugF;xlK^c1k{h=O#TZK+N9fVyL`tPl+t&c<ZZ=e2Sd$Ik0vfo$M@4)&!
zvwqL5-`sxBxBt(V;r2#xhD(^x12g4Dq+M|kAF=!Uk^6toKj|Ms_iyK)o@{*iZ_o2u
z-~daiPLu%j8(?`wqiHel;F`O?%f2=iS}Sjs+~r3#pj_;uz^G(IqbwZVc6TfDv+-)j
zn1oqd`;QmeHkL*{n}c7bf*B`7*|u5kUY$nKcD?I(wd*F(%}Q@1WFkxV2bMxe@9jap
z0am^KHO#tXs%f+$S^d=nchONu4A)>9%d$Kmo{l;BEtTY!Q)R#&v4Ax4@2HN4SW+~X
zg6Cd%U55@plB7+>P}<L#nT@Hgd`PmXm|>76Oww>d!w@)CSx~t$cIBS#3G?m<XL94w
zm8R}zc7;L~O|57l;R4BKaw>x&rX5L*mo-*<7Yv(VKQEoYrJE-^0oNF<v2R^_#4t`B
z?U?KE%BA7rF-rxC$W=yd0kaZ<aG<@AE3;uc$wX#ai_J=m#G!JMfoS5KwA`HTVHQhf
z!uL9jQ%oayt)ZfR>_{7fO;U+~%HvH<=R?oRJQd_z&^gH_W;JT`p3arPC(?qpR1~go
z=@M-&`hExw_65DX&xukU{0U|X2DaMN{9lqV#1b@@Tgso&Fi_Le?To(b=~${5$VxBW
zii$a3bwaz};oz5EfF^FdXie01$ID|@st7aS;Mi=oV`Q7<3tq+x?Uuf1r@h_?4QsEW
zcWz)*zdov)S_pJ#$yOL%tq{brasF!g@Pa`_>63Og<F!^T*$us5P_C<}5FU2%PxZ1b
z<B`xh16I_udJAiWlPRPb;U1V7<7CP+=h#ix-P}PS%G<mki;<F!Y$Cph1ioHT=a|pf
zO@qX)9FB99(KW{qT}^72L;106!L~%8cWV*(4k(3nsFHgW&^>^Z`!-$Z@Tn_x(CNNc
zWA(HYj(jcdZLHk{@ppZ@T}${_jzinJG2cUm7eH7Yp^t;(tzdaX3N%kcLBT6GH&`^`
zeE*<(_Q53QMJ=ZtPf3fWD|7aZ<kEKF;a0TB0ud`IyU}pi<ANMfU<Y}N1GyH`a+u_G
zp;h<5-%=ccu`I%I3?sN}cq_q{y8~=xNX)}s-!XX0f<Ct!G}W0OK#N$Y3|?9@s<7Yg
z014THitrBR{4ChyD*Y;$i!_e2o`PBf&0GS@LoJ!`cjSCI$|-|NYfGBKQZJYEuVR3&
zLY`EN?_2G?RJHZ3M>+)V?rb^IP^@90Y8EW3VmbSD9$V*F;<vO~t7V6m4QA;X(x!QB
zh-iMt(agWKk$NGfc?YXX9oVW8EFJQ#l>(;UHT|r_Z|@FoZGiX(fw>YOz7^;b7G&Pv
znfdB%$Xy#Lo2+P0CU=UiQ#$BlI9bZTceW*KMe^J^-G1)ID)GIxMYIg!)NriW>GxuY
zxccP(be~{$AR1XhgH~LA`Sz@o4A4TAJ4RzGsY2)3H0DeaPE{8jpU4wT#qe#N#%0pk
z4wBh*Zy7bHWHLsqIdoZBhwb~GMy<12tTkv|_ufZavn5)(Mk@*IyIs1o(j9I8QKw6I
z(;&;tR6gi7+key*LCmwnLk8MvH)>lph=Ot3eU75>>s@-$SP5J@TYAbm2&+o>WzPAt
z)yJLKa22)$je9$4>~KV^Es~<kePJq2#o0kpo9R8D*L$=0%7?rP-1fpl?OO2j(S1)^
z-SzHB_wRdFug@!YTrX8BCKFmk0~E^&+6btiT)V4nzHGIYXtav?j8+*@m$XR_At|rb
zT`BeKH!~$K%+0;goO)Gv8=R$3dv>twhXcJs;D|c-{~*C5>W06hWNQ!!DAg870t$5u
zCIMxa1(ZO|K_w7cC9niqYL5$%h}XbSsAuloT70xRV*Wu6!X`toItz(HiDuesW+*d{
zxW)GUW6u(#A6tv3Qi;n1)49vCTx;!~-RM52M>EoQG(B~GWQ782`IL1>qIzaZLbd8J
zeoR=iZ}zgGn0zjRp_s*~B>WA-qtTyk{g-<87D}$<>3drQD1f!nfSM!uEE`QBya`Rn
zx-_wVG&xKw4W;ca)1l{b6H8C*$~jumY&1;B9p2wcxkFdEPjt(h`goyuyinBDeY{Xq
zN<CgE9xoKd5|0;(#|wpd`*@*vyinA%`goyuyinB6$TzxB+;L>rI-Nx4HL~Ff=_QE>
z=O+mpw;RX3)}>J_i?3#3)-WwNpxygFHO21$#6Ua03;+`zyj?-3Ogrz)h8T+OsB?T}
zOX7Pmx$SCdTgCroeS1esXDgrn-NyBnliL-F6P5^*@zU(Gu2Zv;37^j7c5++bOh&jn
z1ukSb_yLDF@=0=h(iy(Y3H0~`u#0m#jdJI1ZmqDqcfPiIxziQ5!9N4ScM1v4IuGRd
z1SKjZ8sy6f*_F<cXm(3+g1#few}=H~C7d(q=8>rhK~$JLn_ywfi~3d<yI)IEouIvy
zV(ZlM_i6^M^8$58t|)+n{2+=s&N9uL{6cpd_S0{)d2gLES+myNsshm}d-HBjEe-6Q
zo?0`uN-%O|f))iTvShu@a#twticGYdey(E7Dd%G?J4l!s5d3zWh}yy2g)OICn~tHL
z%SZ0ot6DplE`h00_j_}t{Z3IjvRW%(L9t$&<9KbYx|v;LE(>k0f+Y6Sf-r?X<Y?b7
z<769a){Pj>$!|97P9@t*EiZ9D5zxhw$U>F-{p%+8k?)%ncMO)0l`n_0DYz+uqr04!
z_pi?$oFXqjWS0#hJ5_Q)NM*VIP&B#gCcXDf)q$^;O#T@Oi7!~y1FnKjERcAlO2cBr
zEYP>Uc}*z0PO=!mLXtG_hm~!fmtCcMwcxeA;|U1Os(RN7OR5W^BsIE$I~aV-f}=>#
zqpnb#$Sxy6T?2Q=i%z{$s?o&uAVv<G2ylPENl+0@b#Y&{2lAf9EM(KgKS}$TOj&e6
z7Pk65E|0ZsbPedGT0e^uf`b<<;v&JcO9Z40E)G@YOq;r^BVTs|jum}Y=J@*Tf?Ua!
z6V{~fpq{*~e~361lutnABVR(;+HAwGYY}2P?Q|kG-uuxKZGl*VK()QBV|G!Up*sqW
zlx?h+>@5>#+6P|FzxjO>Ew1pQ_h}_~i;H(h>_`clgg<)?VVv*GH_&dg)A`?3H;5kW
zlr%<MXQYEuPhPf$B?ZSB8cmnS6<kj))k)IQDj?}F9YE}x`|2*u=`smT5Hw&^MR}!S
zlHXmwFDXw_X#R&Zn07!2d1eP$B{YUw_bQ;A<LeI*zQi<KO4Qa<70hXLbQeu`z_TWc
zsTM1#F+t>-_^HmB(k+?W{d=t035Z*9CNEn<M7UtGQxsr<Z=;Pgf^5nC(cf1OZPY3V
zUrT~5M~9~bBCxbKy^<&zR61{1u#C6)<Ee09ZPuTNP8&_4*ez)K*ourU%E`oUudnZz
zp=JGE?^y%%YaWSBhk?Q&Ns5rpag11kBG#@+TWLE@LpEL#=DiH+Pf)x>bh<{sSjkpE
z2ew*4D`YRPsjkA)eMbselh9?wac7BOI>bG=myv(B;YHGj{+1RU63krw5u<a|p-f|v
zBh-v8T@xLl&WpTOu=noA&m706BxJaq-+RL%Dp<mi3NG~q$H<>4^9{)Yp1eDIuQ-16
z;q>)4CjIq^ShEqk2@KhCL&<|Xs!*eM8Qrlyc=4S_L~I`2omv(wclhbz>|@2-SQX$-
zf%TU`pLKD2i?H>ld$k~Rt;Wbp4Uxf=Rqju1;(F(kzr--P3l(Z+NGefiQ!dy%V?j7d
zxk|l#)Fn2`GDa6X5Px}yq_?YBsy9Hml7pmb*<2Q^l%|#I!UIKKSy9e@&oRo^<S#p*
zH7wYx2gumk!TF`Q-MIKM!E<uOl8g2&SF79yr^b^z4-k1bXS@M!9aFzMJjw6C{;qtx
zZ<_YXaBd@HzLYEE<M4z9N2y@kmsjRiJo!b}f{8cvTKVAn#+Q3s-h}vUJ||JI^hVjB
z318N*a{6uYN?z;cZ_epkx80Tcov=XBkM<Mm9rTr3fv4PZ>CYpm0eTf>Bq6;ZD2TWk
z6=Dg*#d}Kx(6_F<fTRBX>ip$mcQ}A#4cy8&Y~I*G*ajINGI;y${i`!iT#LVSdxpc|
z@ae$;{68EH%m451@9q9&_u$##vxCEfXV3QjGThsHwm19>8g^{|R!_<WPX02ybzkMd
zeJ9VZhkha|O9PG}g&CmPhtt=R(@fGR(y`)sru^U|=jO&mbb`EJaF`PAX|s7xQz-QH
zE0h3V2ebi^B}dOIrNLH9mPIHp?SW0LdOH&$zPXVdZItVZP?q60H;6>CztLcDbECR~
zcG1_bH#e%Wya!d(DgO*Pk$w0k=|j)>8uT)djjIk=Swef{I+k~&x9?uQIzM@L`u_RG
z)<rrdz6jBj2;{n1+72X#5cy#m5Y#J#HOz|ikcYm0MJ_}C;w+LtKkwamJSM&e4%Hur
zpFHCy@wI1sBY1PmCa%9~c)JAe@kt3<NYQ&IFaswn!Q}#rlzUm|YWYt8@wEp4`7;J9
zJQ@r(G+3jJY(5*7#`f)5wmb+SNu@^USfDvxAb~Fk!e~OS(40o8uvksIN$p`IIT53L
z^lXy)Uo1sFj?h(>;#ZARGPKrq*}OF>@Jk=LS6vr)Ghg7dSEs)mzo=PbXmK4-I>LZl
zHxrikZf<%vH+n~J(I_C-$Y6x+;$*fn8g9de^<dYkz1jO(gD3guMsj<XmLDddaaX@k
z9&N`b9k%t!yO-y0kKVj0&0)-fb+<`~dN__f*;*12K_IKYEcJY88>;$FwJMFckaH-j
zd#5BMm=g~Sald};HSWqe5g63DvTbXAd%sXlg_-8vy=UIg8+yA-CfS(KEm)e^Cx>J*
z%#^J)Q?h+`!jdbT1Zcx71Zsw4^w*(H(!ceA`kg)N@PFqs62>Iqo`}OPeYEg@2T%9+
zO8npc)7@u}{NF=7H#dVP=#tJykU?ldLn4Xc^SPWBe?~^=$p9$o;ED6<ItJ61vKSsx
zy*av^i$E+>Ps`lAh`fO!?*-HavSoI+o!||9K_W>bA3fcNpLBkfPA2pk_1s>GlT#qR
z&}#3jhsIQI&aXtZ4dsRGK@NnYG4Zh^Y@E#r`e#OSwZj=DVZb3pJBXK!u!3^5HC|*v
z`6E1+Y=C6owms)~f)YibRU_Gv1T&}eGYND>!w|w?aS11v+)5gT8rtQvo1esHhArm2
zoHfr(T;umHlP*tJ{d)rjFnZp7RdX1#sZfoS4>AR3;pK|J#R-kX1oi%%yZ_F6rM6V3
z-Epk`X94r9C6#;Sk|Z2b)aSzcY|9|9vu#^iD4MTpc|7)1tKYxqF2A6J#GyQTd;ifx
zz4PAcn~BZmEK*?d7BE#I1?P-}bC1u|Au?({`Ss8|)p<i9;|HScFimM!MgG@gK8j;A
z?5|&)Dzl`Q0buda7xY`o1SyTVT1$ZtxZ{PYXmH0wl&G6CV>aDw*2;r(YvGXCv}77{
zHnFCzVH1lZu(wwo7MDqUeeSu|!Pz+%-!_q_Vlht}E|m_7t=1dJc2k3qJywe{n5Hvv
zXr~4mcK=H?0mjE2$5i8E%N!YTMqZ)1)gvX_qtVp6_^U$a-TDoyp*RV~-64pBac%D)
zba{beJf<NPlyL9p<XD&D-p`n$o(cvzxZE9_)YvPRDR5SLDV@$rjfudOVOB<b1kzKc
z4i<Uj7V_t1SBnnJiN1o=AZR6vYgVYe1PsxwJIK_n$h8Jl{{1lg-#Yw%rb_n~c;4X#
z(8B-k?(RM-@&5<AkNp3`JSAjTOKS^qbK)>Um%Gjdje=2b5#<<(!pK3W<)A9ciyWlS
z$PozG0FK&fVRrI=K@p7t5(#vW3w0GAPypZ7D?&L-Ihpq+*ni=9*wm~hGbkq_El02=
z!*I-m6bdco;Rt=v&2K13CELvARFnpg>-utlG`ObXm;3;``PwUtp)6A0xFCxiw4qXm
zS#tQ?utZmYlIZK#5&Gh0)1>Pyo1{nS%lG@NL;nre(vAAJ(*M1^gEIZ!f4aZ_NdF(=
z>88oskhJ@)zUOzM?of+g`d~?D5uLKE-acL$>1!RE485q+NVDDbXHgFNJ)JojaNqjW
z;W6<?x}lmS%|dpm9`x%h1NF!ju{YEyfY{KD(#$#t345Bga<{20LN3@b=o+P3mZDfa
zZsj6x*UBK2PafJt4KV-Pl&K6V`vYPyw2h$voEnAd3DnRP5JAO~feXs+k)>g*SA^%|
zmM>NFxoSIqOh}=;#CuyKs-H3TFGv)ON|r8qXO>?#Z>8cRH*~cw(pJQ(zM%(&>ZK)n
z<SQQZxyAV(lO!Ra_-o+=+Vnre-Ln4Y@aeO?$MgRo9!<q@6qJwX6Ox?j<u%+uiT2f$
zFeiUTd#ZLnR;{d5R!_+ntx6ihUcmb=h(;n4lx!G4m$4XGVcokbvlOhn&dOX*?Pd8j
z<)WQ8aVxuOO*R0O{Uh4|i|(Ke7(*Hf8k$K4dh4Ph3neM=+AP_Iq2cym8&42d{!R0<
zV8yX+<TY)ct_xSUVKHBS&6_b|&jP0CN?J!@F5$IBBzD%dS>Q+NJE`!Funso=*x0#U
zwF3l(No<Ct#Pi9gmRD@ARvEm-P@y8XRBBAVKS{`hUfYP`)farp=9orBrlQDZp)#vw
zZH`!Oj8dyLtQRV>Um^}=)s0$C$mYT}nz%63%!#38+!*S*pGrVAuxEL5a>_~z=a$iy
zCFQ9SAwSDm>ZXtNCxvQSgcX$FMM&NIz>s?6?*uWb-YYsZ6IY-uGr?LPvT`R?mb{ki
zl(_0|qi=Y8{#egC{C^ybJInt5($4=6pY4_T|2_HYk^g^yrzFLxi9FR=N>^4TTN1h&
z1@X7l9Nk8~W~??;_g37wb`G>^&5}d*w4&=-wkUbMy<3S&*4h7>H__H0?WCY}|L+dV
z_y66ekNV#SdAeHT)ZT2*3Z+-s(RIc__ofvt4eFZ<>TxO<xTY89?>)O9Q9%s9tl%99
zNN=(K?@Io+_v~3^|37`U`?&uf;#o=lcN-~PRq$5nN83NHBtq-LFt`<jeHhVNX(*Di
z6zJx1Sy|i2Httb|b_Y_l!m_U>;A*bArhu#1pl=+(@;0(pT2IwhzEP}Ktl5+>%$oLw
z5;cM<p9TrYs#fj82vDGb<wK|&Q$)&Lg1emUPnT68I#b*G1WzW^S5E46b6Q()2`u0S
zYm130GAmO`_10u=ke3xWnG$gVHLPZe%>8QIe8Y}FS$2L-M9DroW`TRF9WOx8*sIR4
z_G#=j*v}gJe~a_KvjI?>{%?O+_W$31_U!QS{C|jN8DIZxujtK;yrq+A=hkZsJZjtg
z=C^_d^Bn^pjbElXJQLWzC`zPh{3D*zkP@ym6GhoUUG=<1br|~F!Xn)rnp)Tdyf70Y
zGe>Fkxo%$OLN-i|R)u%kqo>|DskP1Oak=a`t~rXm-0r7%z&6_ySqGV$pI6I|tA?X0
zPMBam3rFbvi<1KPSW@NC3EGkj{ucSIei`zJ7Zo>}Ebhd%#bxSOwV-GDJev;l#--6g
zbP}=N&MuzZ>&f7tW!H6=iaTy`5t$Jjgi6o;2c?g<p<EUh{gy@K!LdD8Qf^JbXH3*y
zP`A<UHrmQ$ELpUr6G9Tcop0$zc&!}E^<e7)F(HX7{Pq#(@>$ut>N^dpeSdga-?u6I
zz3tX-%|LzU&szMyb)D&Q1z67i@9htVW&Pj5;qJjB|Njt=vD1HH(Ulrox)Ry3k4GHG
ze2|}!d0wJFm~WVsUFna*?CW!h7ifJ!nhIUaX>>|(us9<=i-Kb5(l=EhA(vDx&(D+#
zmMmV=ITfWoss-vO^IfYqHA1~zmu)gsXjCga?JmV!25LceQ^BJwDO9;s4Z2iXDhRbI
zNM|uI5i2_dW`XPL43hjA@h^Bf*S@)hsoetSYP8|K*K_CnfH{Gz!M&0%ujK#H7sO|H
z@9-&4=S#t_pPP#F<=PWuOLFf_W!3;VL{vXX!%$gNS)iA{j8+&@jW<eJ?YW+gv~~<Z
z#FbxeUM72WE2t|y%@`L)A;sJlGg~ihN^#r1?9{QvE9hCRsP?w~ah*CbDO%MPUfW`a
z##Yr$q_8vc%%wTLnin}$&~HXfjn@EOZDmc8l!0!E3d*3X+^u$<QVH97(?mCanI<%v
z>b#URnjTLhmc4!jdDJ8~Vbzq^AS*v-VV5`OfkhSj*FrkWstGI{aIdc8gm7M@#5N!|
z7ZQT{*epAU#U#P9b#xr<AaI!GBlNLD$d*r~wa`%um(4z8(Cs+;aY7~}S$q1g2%XNv
z2<;AsrCE`En#m{0ygF%jv2v|z*KPG4a{ZQ)mN=m-p<?l(YARp()QQ9tT5n82Y{?0l
zirg&;wQ_CSeP=Ikd4&2Y%oK|Rxfb<p<;ZqcEZ*EnVFV!DIF6{u@(|b@LE-(a2IDt0
zQ;Ep2l=*Y>+m#&<OeqVS+KDPg<G|@CU1C!uC?fACj8l1SKwrO(T8j%j1w~}3C&^P8
zEkk>saaOw2R%Puf6Q(m$6bDP9%Ob64SiRl7V!fIZ6Cs>Td9^idR<kw3T#~n?@Es*n
zZZcH46B-f->A}SID%Bw>F$vs&CRz0|Rdtc;TIHS(i0}(?p2{#Pqb=M~Rsc`s-Eq@I
zUNdUI%D+Fa1fu=h@NfGAcc6-N1#x-!lV(V3V9SG}JeNOJV>Mk?Ajz@?HDg-?JXy^a
zY+Q=`h4fFwx+RkeHPS-)@)^`P$W|~)M7vnKk)oF;YSnFNrx~i<p3PB@inF36<xr}`
zV8C7T1l+=Ivz3-2rJbp%u6_$5RoiHu$Hpr`=~d&Av(CC^vc{&Px(sE_N!4;P<tNdX
za-7ma@W`d7RHePbp|tF9G1GPO?&bOMNeP93nEaTq8ZH{*&7P7;9a~#tU073Dp{9<#
z9<!j-dkOvO&&t}>%8IUtOtsWPCDksJ(l77xkd}m9r-25S&*#f`Z^MaKIlnzPziW>;
zt3dVS9hAd`tw2BSM(0@oRZ09k96*XBPF$V7;rYjnErrM1pGG>W$BR0xWVNjjl8t8#
z4dHMfc4%bz;9CY>Q)zY2{&EY({x`S%T>`?ADTxV5o;P{&dgTvB5PrKUYd?lc2(oMf
z1ex1hRZGp<p+g(D27fuXcR$=+W#Yz|lMkn_Yq@SR&dgqc$+eD?hHABa*79w&=CH`V
zVJe1B^3i2cPK{YYVQhCzTMBjuB^!wbu-nmn**NOD%uOTiq|4l@V#&&d^pZq`^OJ;)
zNh>>4D81ycO9&2V_hyU5m$uvW=F;V+^1bll#UNimHI(9~p8dA@;HpHW1e7e4{aG!^
z({Wx-|4}U^*Y8~vYIfB8)sb2ma5dMnWd7PXp~4KUctN?73rSU8S0}4mQw^fi$hHXO
zmdWBO2<n@Vxkc<>)h=S`oUDMn%Mn)vo+v`v9!amdJS^6U3`-@<`#K3j*DGi<A~vpn
zUD2*6QP*9b@v&I0u0N}6#VDfEVX3oN-t#2u?2{tSDLj1<Vmdd<{mk65Y#V`U_r9%U
zM+o~q;rtB?NF^#^S+s6}WYw~F^3a~o+SA13>n<Uh0<fqyvby8+cha~ng@URf(5X}^
zY?0p}^F>?50s~`zP&=X5v)8W_!KGTfX-JKbHoIumb=XYb$vhT|moyono3BL!rf+S5
z_V|3uXC3=bA@?l&>-sE;h!4q*n=L_G{J(aGPs{P2pC0T#eYF34h^It83+d8Z(*T^X
zpvK6v*VU}Agh9P~G5aiz=nrG~S=Rg-%6&B@LX&MR<sPSeF=p5Lr4fswkDIdS<|q9g
zq?_pDX2-c-lGzcOOo-eT!brZ~l1q|2#^e1HKI_o`%eXD#NAYQ+|A)i<O8l>b$M_!)
z@|5U5$ohR8p0MC36^#251)9zQtV<M9Q|Y7Om%4^-<q=S%wl&F=ntf>NN0kssOi2`E
z5(E29Q{4BiZ8cx9t6Y5MEDL^InZB>i%L3&=L@ZAWw1y<1(;TI7fCaI2oc5dQiP^oe
z<wtAB1ypxR8@%GX6#*<Y_`f0NO?Ue5%}6+>U^lvAA8qm94iC%mA9fG+9^*ee$kRtB
zSO}6t90`Wh@}jF5iO@KuA>`DHv44T5gnLdOy`NEzcp8He3h@~ULo^N9SQ+BdXu5+E
z5@JCw3B*CR-s326`Y0k(;I`40iib-A#jgL`wueBF%_68NK|(P}P)H-<Io`{&^E1H`
z;`EWuOZv-;GZfH-JKmIv0sO1Lcm99&zWq6BT-pD3{}sA3oJ+#No;)CMQkSihh3qbM
zflVdsIp13p1sYp3BjT~VmYgula{u;ksr9hr$BbtZ0?UnmfQ&7*TCY~C)%tWa{-YSd
zzvjhkI+FjGpZp>lRfNVkJ}+~KeawS<5x>lXd(jx52lpZ|mw&T@PJ?^@8w}CEa6wtg
z(er1=Jc#mweIT(2BAO69QppSUA&4$`%n~vRf-<8*?Uuh)DbauapB^7QdwCqqleNoO
zh5vH!pg#Y19zML?|KG?nL`UvPPjJLx*1f3)Lqr)$SX|CYrZ&oNw`M}*{BSh#5{(iT
z>mft4=?Jz8!XHB0hrti%^^ACBq8ZMTlyDU-k0UM@-0=d%DV2ZW98Q|mmYtXJ3}KGM
zj08WR6I(o7tRh8(o(m-KIpHYA1%$6nNK$G7QV2~8R^~<=p@Nn2wInwWeo&#j35r=!
zkXT4<kkAWKAesp>Rle(%12V@ny^l_04W5-^aUZb){hITiNk)m}BlrQ~l(QN;oTem;
zAyR3UAeznS7*5OOH&y>A2!=y+QV_T~!>J%V2%I?NyV350zeAdzi9n~7!`t(0!h+!a
z`}Z-+I7<n{VMYbX8Nx||s=f-Ps#?Njl4eI%AEiK@m1Ehnl2WK-f<slQbF#!Bcy~q!
zdh_0Xd|wR`6Al`Nhx`HmypyR$+i1cHW7F_QS@aGn`8?wSrzrwoy=L{O{`}_j_{H(j
z+3~wqM=y`xwpP|Z(sa01Cv#<?2lvqXy^Y2sWtWm0mD(+KWhHgG9`*b!qswbrX6<!V
zHGy@xAaiyB6Dfs(?2MY2&2yHKOmKubXEDXXth`k~a^Q`mkU_rHQR^eG>Xwg{mA5JT
zR6m~<7_^P9>O%rj@8~yAe>pmR{T79xF3as$H{)t<Rl3!@4$*6dcB38H=yvqXajyN>
ztAh0WiP?PgfzIbNS#Xw(>gl&DQy{v;+(d1+vEtu&V;SxTsEnj&Ey_u5t~Is369plo
zIi}eto+qR3Lbjve_@gMWX_8PXWC#~iXcrC#h;%|pf-WdVb>CxWg{VBRq%6#sfI*1`
z9j7W-{v}OQG%g4}uLfpDE>SmcQrVo4!U*m+`iSvL?J`c;xKF!4nrO<l5zP=Q62-<G
zpR4fcIL`}~7jm8<oO~#`kj-T{B_9RpYS9SB)%&)v-w+i0J)#_C45ciStEX1RNfM!w
zOBvjj(Gkb~{Wq8d(1;|9$*ANsn}#^2qlDxIQOj;PEonkVLmhnr0=<M6yL)@vYOQ+e
z%F7^tsrR(xg3ak4dUaK^8vRHna(kg=I?bjXvyx__V2YV{FhhrNMK2UHq86iY4D`&@
zr`dEnl9Q7Y0y5AFayi13%K=wID<J~Ylq5)5Z3MrMF63HU3B$V_y-^nd!PNP7D;haJ
zw_&+2%1mb91bIt_=~sT(6k~kGF7*Y&o{Q8M*8lqJ|1lkTQy_HOV|f{?_WwH#{r|zk
zhqv(`Zse&6?85*dZS6foqA1C?x^KOGuIE`g|K(Z{0&Y$?C!(M+AE`St>zw|qKL6R<
zYn=b=9o)u$zLBSP{*4PkCpb16zm&!#<Kz$><v5;^a4*_vOO%~+723W!^iT`F!qC)5
z)Mb$#qUD-dwGO&lPS5vXFTnP~)*;%9b{|ALK|*+3P*~v)?Uu1QdZqd`C7IOpl*&my
z=1eZ%8UrsS7bHbGaWG@Xr@qE;r9!pMkl>swE?FU$|4`GCf3Qq$(`hyhLTBX<LR3);
zq)KVM0zzeDI79*$^!JF43p}Iqf6mL4a5fQ=6MKpVNp>IqW2eeB$5~0ze-<T~Mx?YU
z=ki6BD!~^t`RC5ZB#!39CQ6t{;z0e~tYKh1`N9oaM*+e*R-NF&bmqfo?{TzqyW-sB
zv#$K_t@Jt1a{2#Ye}BKO|Lr~8yN&;IBhL^$)7N43u4KZBmN_2<)#x~j3oPd_sE5i)
z2@YPTl#60<X#djNPla-)t(0x@q-B@|2o2Hm2`V#A1ng@s(BJiiT^>~n0GydmwHGd*
zVf|O`T-tp;dBwy@K{&}o5H!%d(3`ix(5_ko_#Vpqq4IAZ1i>_AW1JoWPp=u8ku<la
z3z|}~P<u)yW~5M?M~*IMG@b$DDt7~5ECO;zY054Up^z142p0ujAT~jt6hFDm@EOf<
z&e7KSV;*v`NQv5lx_P*e%L_+abGgZm)!`Pbqbh?c(ydK9y4lcK#w!MPJHPC~7gnrA
zzKyU?vbC!a8afS^<AP+uw7Fo2U67)n39(}kP{}02hTy3krh`Ecz#x-DOfVSE_mP-U
zt}Iar$y2sy(;_fO*mb`ERYJ@NO0dAeP#dy{0<FW~XOJ%B@GKINARHHrbM#-et91Ma
zl(U2*uzCQsaY<7V(kvJPrG)ZW)^C9(1dFoRKsOm`jz|&$H&PqXXS$Tju|z)Rq@ZB%
zOieMScJePU+#xQo9{AG|7dR7y@Cc$>8LHkka)MJ%f}n!B+?5UgbOvrU&}`7sU?1Z`
z>Soi0I)ZjdN)8jsfo2p8Q9&kE1GE^mVwS}u7kqTdigUTOg;%0rX-Wz{s>&P<O`*^h
z#Nq=`js~X;>`K4EQO7{`d`=42u&xus;kZK6Lf9D2@1wh3{<|o~8A=IGV7y&2RFqi;
zb(1P<7Hjc~5udR_$f77q<kS{)PNYmp3A%eqR8%%aO-E?Mh|i_YJH<Jo84N_pkvgI|
z)Ac(<Ca>&(SLJ+63Q3)%37RP!P{~+9qz)?o!Z6EZlZ|nF9#m_E(*WwSEahez?d}Ba
z;G?@cveXxp3pnhu*F;gAQpcVwn6;*nHsx~&O+-H8d7hF(6ozV?h0{N19+E6(2^{Z*
zVagPe&V58gEE~fdi{y-RWppm492#*<(1ev)g5)UQK;_pqW4VXWgD<6FWzd}`fi-@E
z6jO2s=7r=4tcY^4D3s`6xj?K`&1B##<tRBic`o}qA(@~!)l;q;6%*FyzzHO+K*b;L
zJl+8rYC2Q4xD9b68&`JrB`y+wm9xPdY~UXV7hz*TC||4EtOq}4CqTuU!Sj=ggTZ|y
z|9>!e>n5-<Ck7{Ak+ziOl3v9e*lCFZ0jvH{IgqG9tL`KjdwVUC#H3(zZMl7Z!k5K;
zP-~6@Y!4;5n`ZRsGg!fossXLx_k}umRr9F202L@(w#L*|*Kvk&L)5z0lB9n%tC|6=
z)g=Vxw@F}`ah5d8Ms=X4vLntAm#Ul`T2jW$h`}e-n^mRP08`E$oy#skQmS$@N@2BP
z9|KJvs%GWBT!CMyGl^;~7~}ZRD0yn()q?ClL1{Yu@#v}3Vn}~AV_IfBQ&q%LJP~lO
z6b$l`kCel7ksnZq_&LpU`x^+!Um+Toa=n42p2;_USX1pFkdiUYVEqvcQE|U2PPVa>
z7fP)vIXTt^pE4<!7OX5n!%HZ01*XEfchvk3(P^1MOUuT5nwEkTIGNK7<psUqC?iB_
z4I%pV)r<ep%}ytkH!Q5&sq9N4&=#H4IkBQyuJXV*l}d(GM7WvCkd74y{ud0%DkH(R
z10+*AiQEo2N)ow3&8b3O1j(U}eNIis-9<R3KNqabxm=Ybg^@!oLT58priqllz!A-)
z?Eg?^a34esKSdH5no93NFSRP>9lQWr$9iReA7RCSls%OZCW=`>7(mZ}5E^<{6w#YO
zHQ))iDK1DchOa5*LJBcJQiIPR;7`kxSPB2sU&Z8*m(%FuB0~R`GG9wdGx9ljzSWXC
zXTwtOQ0A%x{qp+t2_jjNGnxssW%W|oYa}J|_X1!<RT0~f)@;muOHky%Wk$+{f|XNs
z+RD|qhG_uP!^;3Gl`Q%!3M8L$lAcH|TeLlMdnHiUJdMu%dx;lnOXzP3#|6&fKSs6M
zLo(RkUF<}=kE1<!QEl^<ZS-V^ZJ=xD!lCSjrXf-u#x$RiBIG3%gtw>}Aj_|yXtcM)
zu;l7GXHAblXgEY?a00)ucw2J13)l%NWzyb@SIJ@P#O+o|4I8J4%t0wE{sn;rZ0m$2
z+jT%MMecNk9xgCH=Of$9Va}4!j_Q#i39raUsf-f=C%pA9;e-_-uCls!sLtAu#tbyV
zDP!U%ni9U?g3Pr91NVB_5GMt_pedP>V;<uaD+_X^yTmwGdmUQcTuusRFY$-y=*5d5
z@Px-F<>o&`|CVB{gw3D59{`RIf@!yjh23ma7#c8(ncOB^5GA!?zZtWP$CQ;^6OU(1
z&QjUMMth9ZRt{DJnn|(3375NL*jeaZa#3c8N$GPz3zn&Q0D?B9LZn1fx9r@v9&ayc
zMrHp-atT|o5+w{>;>@d!lda73**dT{VY0F1epAs;X(kgX&j|3plSO1iDs8w}X!ktu
zXHsYKWsxqVn1B|V2vVTCRg>S1EZI3V*U5(n#d!(f#dGswPUawQ4j#Ouwx;eK^eR&$
z&;H&^s%M-FW}+n@M^;T&`kld$kc(QIK<A3oZ=6iZ6uR;Ci!&6HLeL3~VL^~>a84FH
zsKKWwrBtnNb<7iyngL>r`881zx+y9!5pT1g_YrChJ<|?8T<*!0p{f@6TW(kNGOpIL
z<i5fEhN_z>=P7YuO`8#=l4u>WMph|wkx`rE%;DPFqP0cJwf2auYGclK633Ea?!MUQ
z5$2==NS_+_7qB2@pb3Eqjq6wdQX|qD3YaD2ssp=rxx^`3<tl5$aw!P*Ms0d5=!Mk(
z&6+t{VhO9am$NNVjrJQSD8_Jp_wO@w{NHEj`O!<zVAa}SmU^x7wp2wjAK^<L;W_?;
zWw1n%b8ftQrPNX0L0STsP|Kkv35stt698sc-!|!fz4|_QReT6FxV=5vaV7uI1uiJe
z;eccpmNR4M{Q1|HNB{5S^w+0nMhkTD8iyXb#ZL}i<FJN&aj2zJ6z65&nA2rit(bOh
zp_?s-oF&`aN_rRNw3=k!SSWQPLO!su-mU4R>I#~ns8i)EdENG2Dj%R7sqirgnMkoN
zRn-u7mPA!qt~Z&rHmNU(R5tSzJWa8vOr~*6azPR;(1%LntICkue^az($txOHC4&24
zqf}MDKBbC^yj$wY(#n~we;ajU+k@KZ+b$P4rLgaDeA)GRC`WtI-lJ#-<XuKCN#U^v
zCH3MiCD~NW9PX4Tydf4};W>E$9Bjs{vM=5gw_ua6v5TCr(7vTb*Q4c#z--PS37}b<
zOZ}N3#RX0s<QUZiuj!nyQaJBnx&EzilMaV+?+A;qU|LYXmTb?J=USTRJSx>MLgag{
zNI_`EG86yE|DY;yN}xsLM#4^b1h>1IZ+Sc;9vaSYh@{S~%*j})2DkvG&q=0OHI^qm
zA$2~L4#c+1?^9IEAGp~X{h%N52s90~oP$AyS47p~PP1wQT$xtXO%uCJ8nYN|n83aW
zyF2BmT~TyK-mluLxLG?@7b~-sLZ-oc;8Unit;{zFU?Kl?KZw-C_i@J~C+Xy+=G7aB
zdUW27#oMv?#mAy!n4lAc(FseC*{36Y!Mfeo0L|r|u-Z%nJ**7&v@ZwB5Le$?5cIoX
zI1HSKAk_`=hQigRZaMYIS>h%!pRa?*A<lDL%ylna7g0{)n9cL+rMcj-NZkcg3LYrO
zBDqI6&1bk4atF*VBsnSAgr*P(kRPJE_wKGkLt9N88i(j^!s2sMm~V!jY0!$`n228V
z3c1~wlZs&AD%~1CP+NOlbFaRDf%0X8JkY6@jKU%E(nOOKU$6p&A^J)ErFYG>^4wkX
zQ?NOz-N-%1(-4?yyC^bx<rb;)#Wbbm940y3je?($esA;?e$;a*Ru5g@MrH1(S_!N=
zig2w0&{#O9>Q1Lsy?_~&!`NzM%A=f~LBe{Ns3F7;JI;h>yi=Ygei6!AOyG8lIXBRo
zKz-+>_7<c_Robu_CsS?y+T%^NpYyduOYj}>5h}{;h{I{dAv$>YaQ}gM_Zufg^=i_Z
z<`v6M855S6o@aW<tL9PXyQga0>*HZhlCL%~U#o%nYnqpr8JAa>mRB2=n`Y(8sH{!O
z!y$Ub5@NPNvYlbw;havvY|*E6N=^!WeJf*$taYle)<%IBLD3#!n<#T$|E^!IT|vC_
zxsf6QeUt$}f{k@(7<lc34!hQ(WnYRAXGvHEA{zy6P%<OPO-MS#Axat;-c2O6E3#C%
zBIQi|6Pl20p(-tON|Wq$#cR`NjBc=1r99#!Q8UVSta4*^2Tk{dRfKYu1b%E+lktW1
zb?C_B7^h%_LCZ;fun`PTFy#S9;e<RGwgtsgPJ8`?LQ!U+<7e&)iDW#Iygj45C_x(i
zSSC}g0&8Fp9CDIlWl2u;L85bwU`)(utc68^R8puFloKw~laDwSI+s%Ar7Rq=0u^LR
zJ{p`8Zq8>xZ~z%~6+2s~9|b}4QmB(8@-a?JPA^ClD8ff3Q+4pXoO^u&C2Npbce<}x
zgJ(L~stP!3h~t2!oLSDvqGon89tFzrMcH8Q@?dBrswz7|KURluGO4bs7XKWvEL|vz
z8JLaieoRq;dNT{Th3ig0_vOy{g33>}8ipC&o{B|Upgb)L3`aq8D66WYVOrI4!Af)q
z2QDc+CzYR`J_?+pE#m`$?mn>$^Cxf4AM+6CguC~vzq9*M6urGKr{0q{IM3h8-`jU(
z&5jVK*)%0mJvZmqx<26hQB{RzTxh>W?SGXmY!i%2p}J;<WmP!2AO(^6WmRz|v(Fun
z50`z#)xEcOx6NQt^28tXmAQUJRhJGgXH2;;p*=^|jSVc9w`&?)70IiPFi#c>g6Hnw
zYJR=GvF5bOH4ivv(SuR<!XI_IYL9tXv7iT?^FochqYF$^u#?3sRjOC_g^QsxfbN4&
z3AWiCZ-Ih1o<#b@os}TrwYzi_RHaE3GxScG=`@2)jyeSobPzywCs_Y1SoVR9)sF;|
zIm<ZFNh=LQ{Wj)C^=rlo`iC6vY0eUCarV?ly|p6hmn{H12=$+IP6ePZs^9ZcfbZTV
z8P6Cy_Y^#pq8f|pr`lM;zLJ`EEYW{i0Cu5H*W(n^dHW~*mL-YR7{;J6*bnLt<Ku2V
z=-)EE<9x0^sV@AzWCE*K`n*~H4R${Lqf*|?3&3{=C<dJd4n9^ikE#q70>?AeXTcC1
z%h5x#DGWlDNlCgKb7gZ3L+6w6o~qE2%#Nu_)M3sTV@?hpAaK$qi5m2ps@#JHRon@e
zEe&v?Ob?!aA-DqGSIk;JcpGO!%T7sR!OB8^@Fh7Y_}~rPvL$aRtfOK_NrJYtW8*eB
zQM!(if`N1%fwQ3YX7Su4_35QuQw*mJyeFc{wJ<PYM2w<(tgP;^l(-JQ)oP-^Y+(9>
z53DKETb`tFsiqFd6rD#YhtDU5a)q|)Em|tin2DM4&_HuiOwH128rvaRr)C|4+gIl;
zb+u_5u>vjdJhiKx!+@vJUPra7FJ{}(r8qb=nz}W3t~iBw%@%qZvT48j!LZT}O!efj
z1!4aYGy)hbZG>DU#jQl8WJ6^fukzXz9GfK=4y*jt!Kch#_jdb&zHVRA)9uUpxqT5Y
zH`m9l=Hb@#Z}Yv|eBZW)XPY`L((2^-V|#24ngj?a$D3OlLj1E7<4z8a-jO8ulj}e$
z8&&yi=-ZpsnA(kYA4LC<18zwoH3_xI<0P$iv_AZf=h>7c#!Cw6BhjGs%4_8}UBmKG
zny5BrCL~khP>u`msyEqQ>H8`7;S-!-S+9HpurC%lDAOiw;2hL;tSpxPFHBBd9Wm4Y
zbYiac?E3FtIag+?hBL^=%8q4qGH;n}SqxhNliRNODUUjfhApQ`&N6j6DQRo}JSCNN
zvZ~+YEMVggBo<NS!d<x+LKGXcWqrjeiBc5^0??v7s8!J|XIo!aHJXdEacJaOhft&^
zkOK+s?==tgIvzS{LT8iVJE2!X4@9}-tE(&EUY}AIBQsW&vwB{_h*lF<dq9IynVdS8
z7v47fHfcPo_D_1$J5HOH${{+{0z+Z(7WVg1mb_5zYf2{DEb12PVKZT1E}2Qm0UKca
z5$VG}r!`Ek=PU`3Omn1?*p&rj)}9e@MrQ5q>}V0^mO!)BCD3f064d3M2IjfjymOk-
zIZhofFtZKNEuRr(6&(|VQ+lE1!M{$9kh&HM{u5XTIk;gckP8~?`z*i^%}$-Wv-RSQ
zS8g>56V0$vX}|<(TvydOJmm<&dyqr{?{!l!ho}ynMBQ?QYjt!2zPms*LMP_FgC1cr
z*WlO51g`sKR8XACKg}i7fm;6tQl1Qq2e&HsC6fYQevp#ObGMd6!2qN0wRzsw${B;J
zCCg|uQiDAs#4JP#&@*UwR1Z;$JGBnu2giACV82jhuee*mSdFD6968K5Ap^BDsb*mg
zr&XGTWxOfm#yQUD1g`N|CP2^9*a7Nt>PwTzk#da?<3k&L;HlxwoPRoz9frsa<TG?Q
zcdijaq589%QQvV1;T;;lP#TyMb`#$bt0P95eb5TNd&S2livlOgPD6GVNk}s)T%>|S
zbWShnw4lida29AnVq6?5XJ-vZOGQsUsFySf{NJto=mOVc>C8Q<gK1sn_ie0Mtzzn!
zud)NigkSw&wR&#~3T+{wW+GIDf!_@<s$MG|V39LnAf?jlo<<A<O~Qt>ZKy^QOw+O;
zuV)3}GnOWYXg^S%mOq=omGZ|g1UoBt<s7CXB~vApo{<zU&PdF%ge#9vb@kr9+LiBk
z34T^ik#b51<tt~CK7_iyFwGB@l{IPv|NVkBcz6vpIQ7SjtU@!=@HbqCuMMp87kSpj
zf2yKDz54a_@mVB3ij`%o!2jFZ-QTO>KkYv{xQ+jDBTtL_CFKYsPC+v<`)Js+q+k-a
zpbE};+0n^!4Z#oVjoE#1yF<rgIFpzWWy?0MYig^fA&<@NX1l9zT$l~6j?7`BSPXS>
zl?T>qdq}5`RX!?UWpkOtzjZw_N%dFNI1n#|6(S0rXWHxxKro*^*}G?G&~n=2M`wyw
zC9g#ljQB+yX^@I2Wid{d#P=Jy6<)Yk!3_=-M|p}Vcst20AVj$zmlLTv5`~4J>wE+k
zG0+UedsNX&;8@9SdSaIGa$XfMUbueARDdmq!F#Md&<i!<D0e}^!FXr=sj*8$2a7Ph
z69qvnf|Pe*-2^oI{5c5fH|}i*%W5lUDVP#Q0|`P4K41^KG%(Vox*Z>c=s4rb$5HR}
zO)QI2%t$8m^-kg5$loH-Gy(|q+NHeh3Jl#E7ZsF+bH;E8P|*dz55P%}3wwYD1N2s3
ziFObU%n8$Iy|Jk=TND(6y#+lb0$BK7!eafOc{X4F-_1yx%bktLuY~`-ySLwn|MlSD
z;1>V;MxIZfM)%MKogadwdO}ko7CCt`m(3E-$RWBnf@pW6d%^L?+yLFVm$qT7M1f8h
znzMqgWov-KDj^te6|5r!a<t-FrnCoCe<D$oS&R<$;ZHh0D<>2B5yH2JPAoq8w_^3F
zISn>tNEx<3zn3^wu_|z$LnWf%-$YS|^g@;)E5y;5#JJ=HaW?l<9jN+*k~C3bAC6;;
z*CXX<OULba_UcTgg%j+Y#M@C&ouVot))PoYUr`s>YhFfh94499-1ceZN?x1Ban?ce
z(KfD0)0v=G>jRRJ{&5Fta`>cw2RnS)Mp0C}FrO8#-rKbq%nO={2^##3hkxUP8Z}k!
zIzz7OZ*M5pXH9LD*S9u$^{)@o@T#k){bZ4LkO*xMQrkUSHel%T#echtv<YtNHFT|z
zf&OFAi%4f{D%{U@R|lnRRws2}5Sy2&pkbBBaadAtQ}Z#nUTCQCzEVsp-(g#@(#Dy&
z(;nf<R4t7dwne)Qy@;es$DSi!qyRVPx>)0YX@R9uf!(&BoPi93&ROM7diA%qC8Ix0
zkRvqs`v48z4K|SQKbr%-G3GQjfOvh_Ho@aRe-2F08K}wO%1xTCaHQfO*RS@dI4Mau
zUiblu&GB<<CL5RQ(8A6)6Xm!NA)Bmb(24Ks1<!94BFZE1g$<?eND$RsM;2zeop+1d
zE^FJ!@+bPeWP;RU<<_Q(3x%jYBax?Qs}`--O}1UJ+D_92A(Wr>?`G8K7Bc!zHN?(p
zXp8-1v)`<3V%bL$FxB>J+@4BHhSuI_hJRi@K$;W`2<_S}h0chuNVv#Fbl@#l!BL|f
z{qK<?pbn9%=?}Z$$bkZZc;7BEh~&D3Q<c#{^N=4raF3-KE1V7a-bLM5ovns_VF@%a
zF;<hR15;R9O~i^0V!r(Ri4}7!*T6b1IeMPuC0Jgz5*iCMP$SZ=+ZrR?$udCECmjVY
zZqWO@-D}=7X_|gl(bu<PCRKDhKRQs=QRB_F7f+o0j<)3f=GTc-X9jbezfrD*ZvhKo
zBG;r(pJCdD$eERTRYLv>4XLUa@5^F@H#^|<jHt#kxTPJAH@#c0RSASI5uf1}N#wSn
zfkj7+#eDQPe)u>3&%ae8pgp5sVg>Gqwyd6Mh+a7QLA7FR*GLFFt-o^WVLD(Xvxc9q
z#HQ2z4#ykz!dK~n9u0oOt=+jAHJ0$sNoGyK?enX$6n9UpmUK5d(b~$tQVX{c^hWoJ
z8uy-(?VNw})%zM#`Q}<-t!e&^^<W=?@U;!C-{`Zs{a-<GxL2$e9butXp8xMWs@eY^
z?eE{l|G$w(i!huem1W99oiR6Rw#e@tDKsw4Kn;k&w%T1*o`Wu4OrX67TTo+M55k&Y
zb+5dFl3j~hh){C}?dJItWi(4jCeVY1lJ2@H>VlVSpi^ru`4jmh?LJ_Qv(&%?>s<5D
zKahJa<r}Atp?v_H8X!%d$~A35wvq>m+X^Gc_EGo9(da(QK1QtwKIrpj%W=J1*Pv4M
z`T=rmsb+;!2iHx6pawdS&1eRU0}3PwoUp>cM~C42;gC`xSGt@r92=PdR|98@n5Bp4
z_0to#-#iPFxiw;Er=`$ZWR>2#G=l!LMw`bwk9YgCQ!THztLtC<xx)Id{EeItDP2(^
zSI7T7sIULKd%L&m|4lqCQXDQF>*GT2ogWJZ_QdWw4{2~I;MPB^ycMpTS@)~#KdLd~
zE&E?_C6>cj19uzWsU<ZE>@|q0LXC3>-DF-c9-qNgN&V$&qk1_D7cZ5!<zWzN?tQTI
z-bJ(>Kwn**aZRLOdsh74d9EP;3m#gekfi~ESIGaJM~~|9-yc3YxRw7m^0XevdYBiE
zvuy1?Sp6oLE6O(!R-r20dZ|KEeFN`GqUE|)mK)rbns!vxhv{WP?8{WG2jqUYX%vxK
zA$5z`=JVgVV7Ve1`11L`zqh|%xBonRuzTzOc_WWIrE#8fsjJn8xf6xg-Ee9hqKbp;
z=_~5%v+ByLGxDw~DE@-dV3j236a>b~!@s<Br;5<*>Zax{yIbdsiIu|x*<j8txUfUn
z4^HeDBkEC?n<l&V2*V!N%>?be*3G@ra$jvWKGhxUrzxiM*G6RO`;T5t4AnyuputWI
zg#3ZJ;b492nsX|r5?y@@&{|LBcs^uZlx!thj8r~aY?Z9BM7AxGwal$7)EF?+1j<+%
z49XcL%Mw;4c>!#l+|K(dadU5UrTtW^`Om|nZkhn=Na8?%$qCRw0u3|`aKuzy(WlMp
zUEV<SwHaHGe4U2u%-A}}yz%Q_s;?5(F53r72lhc{4V@U19+5k`%fO0y_yh@3WVl$M
zf9(8Y2W@rOdL3KqPS>GkrE5Ed`9@p6xLvones<ozWrsc2=Bz$o?a1gMWz|Eni%Q6u
za!-DJ_U_fu%VYbY7J99ECQjJ3#(Rb4VI*thg)*rZb#`*}^b3@y;M8i3W7>vf7hS^F
zNzqpfEAzZ_#Id?Wuko*;_{J+-OlxbH$BhYTi|S;WDVB>TO<R`kz6?<q$|?Bd(<gu8
z)-$^M;0m9$PRedipEx4SN&hGMz-WdB_XjIEtMyAOz;V5Jl}G^^^U&gLyUeuH>E^4Y
z2OC_qq2P9~<}C5c_-mzjMJ87?+A?mgshteWVh0BXrm@L@&A3+icN~bw!zZX-@~4iQ
zDGhZ`dD-5{fQl`@CEuTj=P4C!?76%=k()`$ulsUK<SCSKXM24iQn#+x@krNZW~HON
z-81&#mQFnCwcd9yvZWC6+H+oV@mofJ-+16PF+RJC_XZ$bwOB%>VrU!PS&yex3%-)c
z$&))<X6fCof2+85Qo#bfy#^x{C~+4XRf;DgmW$E(V?KgxBWrqGr?7@TRWHw~W})0b
zJlWlQ1fY()9f|D9<*Rh{-dMikx2lG}u;xgqF}KQ#piW|S6Ll-8ot*S+fpsOw5>t1b
z7mM?#(uS^O8iM~nQDAXR^YzHF-}c~*71e}nj@<3);}YhbR4&GyC&WDPyG^G~70aqN
zQIH3t=g%o8Q7!oR7w9<`rL*Hyp^f8?zPt|BJt)K0n_pgvZY$2};cjojXxvJ7$E|#4
zbNjK8Z{<xg?HAv+>vJ3h+XbQu`0aWbxlU6W`B3e;PgeL(xqE7dpfM{CW<unHKC-BF
z{509<mO-{i-9m$_NhcQouZ_7nK%RM;h-_}-xkT$J{mOV4ZXG<f8o+dRfGcjUZ5@?I
zHK4dgdaa+nyN~WDv>~adwpL3s9y#RdB{_x-P0ijuN8SV5e=nViMqNwTQK4K(lNrIO
znEl~@vg4^^KZ+cbyicD{ndhWfUSE~kr_l<m*EJqm68qF@Xnb9CyktIwCU##Jk$Os>
zP95#9i;ACa#RO~sG@57Wl=5<YM{~-r*Ect*BzxC6rP`~z$(-^jU13uBgf^X3K9!B9
zl~1O7UNs>?&9ihC`PsgsX;iD&H#d(Ye~Ye(v_#igGL<^2yvbauk-EZUs!`f>Hr2>%
zJe_KEmdz)F*w?aEs37j`K4EtUwV-TtgtGPY$$FIAW^tWlT1szGZdV&hP~+&S2F@62
zz+m+(KUSy}vGS0iEB(et4$z_`RJfoaPLhIf{-hI_vvV&aX_Yw_1;O(tvH=c9BP+cQ
zn+x8^H>5$kS)@v3OnLnH@nhe>Q8#7O8(t+CIq7_pM!P|wyCWO>@8%ACWtPTau-}FC
zt+t=B<rr9vUO(9yd+N5^scY@98<)<bC41!S*(G=ElUs;;L#CE7)LWcE4>h25@iuFT
zf=_k7<n4v4)vLL)>O>MZPZKBH?d?wSQAygqvbigNx2#;sz%_~Ro<vs(^t!BVGo-8*
z=2pG<o+NtDt9EP2_qra|Ps0D>R>FVR5`O)WhL#v9+eQ9AmgKz&ssE2#ssC+B{nanL
z`5L#l=B?#~SDlM_M;9LCm;TTN31-RGzw~#jZK9K{fsNL|_jc>y&MLQBJekPR?g$(6
zrq#vVr0!jm*LxXDNb^p<`}VMb*tm`EY*?CLDJkmi!p_SpmgO{}U^z?Kba9qTiS?9a
zTojmki%4gZwr1|8w+?q-<m{Jk`$QX?Zs%Co#2;&Kv?fb^4}(omXIGS~cboXuhmA5;
zb@y^F*EKX4Cmx$ymyNEvK{;zxWBJv*dS!YYdS7RSRu;IbekM@fl2h?DCe$r1MZahB
z`+q7-pN%cJ<PzYj`@g%pJGJ|N2m5;uZtwry#PjKsKEUvtt!*$!Ifue9Y+ZV90bss^
zXY=`At;3;O%{wK)s`>wL|3Q8JAMEYl&i|WuR{Q+bVP5RTf3=ah`mKLYq5JChdet@6
zUvvC>Nou$757FJ4HApv=8vp3?=evJ76qC*8e;?#W^{m2wJlLt@KOOAuKf0a&H}QPB
zKK#cjnt;N9R8qnRd2|Jdrb4r+gA;X&0=XdyWc^Zz--!TNsLC1+(KC`Q5KdE#=ZMA&
zV>52Scw7p=s0l1@S_dz2DVI8(*~qOd+@x<W-SIIV4v`8RWOA^~8p*-x?ze!4;<y^a
z(LG(QHla=A#QxsLpT63y-*C12PkY5|b)APZ9PGP>7ttaSJs%q>ViTf8TP^rRSy7|2
zYNGcptgx}VSV8oX=+Qf?vnhIrXhF1(SbbMnt86*G-<&gN=FFV`;GKDA-g)MI?(4ps
zLzVq9PRmQQFP5JzhF)t6;aMw?W9wn?(kT9!+BEw%@7KL!E2IKx$DDNfV3Z@bjuIka
zLrX0FXma|lQz4L8M}k}?oxC^BrrzuYYlIj)wIkmdanOoN3IoX8D*hxpV4p*6=M@le
zXeGAs<eb+3a!`f`G$_cs{^XVlVgt9|k*k#+%3|o+(c><)ZcaP0E?~lIkSy33D&ghz
zT*UN#fqLRzp=EtP7SoO(I>*a}+BDExwNMu3JXa{#-KBZB_qyvGB|@uIzO{#bSBRnl
z9Z~OlIF)$)`FpHs`NdhSYKd*Ev6pB@OAPcTjh9@s)2g&iTUWtNDUea>txD~5l|2p_
zwO8q$+g>-8-bW4l`JUG~KJ*Qf2$Ha&nUr`kk~yyb;ap7bgL0J(hhxxJ_?ntnlzMim
zY5>7;=vxKxFv0OtVti-)%bo&@%Vi?HYf>ZaYq2A%eRqinBVNAV^mS`Im-FPd=Igld
zm*27;Xqw99R?0RfGD@XK@$Fz`Kh52%^vW1L7*Gws;a16C0ELWZD?eqR<?VICz^(t@
zMe81gvjbBWFjY^?%qbza<;4MDWy<1W=+qO6VsLOLdHL&6`YZ+ilJ0eb9hKi@N7~~8
zo%9<nar=W)b@z&@<HL8=dtWW=_Kt{8#20<6(8bPgJki1f`T`KL*|y352<Bqi?z-S;
z{{5HKP*@!+K(b%jke~A4RF5}mw@W*{72B4eJckC!*I+XxRRv~9ics<)0gyI$%wV1T
za`eUvUYI{>{fbRa-kZ4+1jgg`=!*MzF7{75_^g+oZdB`H`HKcI6N17}WR8fX>y*qS
z?xrCLAAFm*nLzi|Eo$G9`N$3{Rr5@D#$7+5mR_{8{~0#;aUBDoNsEldf{DsOw-<*g
zz!2E^Fnnw9QfERmQx0!8SY}@ys_uY=#F2>#$tR|4_FNM4$0;ndyqO4DLU!#`_=eTc
zj?dA28qDR*en=o|%`G$AS@5`5_|ZyGSo^R)?OE^d&9x^Ze<=G)<jC{0@yNyh9P&{1
zymx06)BlD;{n=&47<g1FVz=5F#PK*z)3V>zwMy*6F?gQ(_bS>BnAL71HilGUEZf=h
z^j9e)loe4|Sn2j0O4d`|CgC*jxOXB4NU%lHzSUeEF3DbO+j{!^vq5I<%sQxIY&}No
zL39B-k9Nf0pSas*Nj7Yv4xmcyJ}zMI3ztKIO&gvr{HRWS%a&+)Be<J;a6+=}9bKmR
z*Cw>3zhbGMoq-N8zeVPK%`J;ZK%eLJyEH(8D7?BtI{Qb|jPpIT!<dBLIl<VGEp5v8
z!x1>?Q3nv`5E*SPW5l_NZ*LsrG2<4=7~~wj^h-@=#z!4yU0!B`gW*})Eauv}(8v`%
z{|vxCp@~L@#~Tw4g>%iwZqdUX$;!p>3)BbYYM!KR&)@SBGtOA38rtb403mREb0(3K
z@%wL33zAbkfW~Pv?`q&_SbF<Lvc<>P5J8m3+;M86b7H=bpsgDNVu?l}+ekE4U!{zr
zXhp>Rv22&E>F#+;IY)Jsl!Lk>4RhXtO0zPsy9|mvp&M;jPY}7!SZ(ViDs3#P`5-M*
zFYl#%FWdb+j=HhA7Ks){W#MPl^xJ<uc^=wSqIYi|V*y-5wsk^j8XO`Gb@|8KXXkEx
z2Ks{*B%QJa_!USdZ$P_K0$!i9`7T0-uJrIhL`(5<t8~{~{JEs!b%#xZI;uFmJi~S}
zYKv*=BwadVDzx3%^~@ta8U9^c%&={xJ?r)H@I23YCGCN&>Xx|yj!v4&_g!?~fk%y}
z)kh~U7VP(rh?K4-p4V;d%GoJ8E*8yca_F&VrpZiNqKZ9fjGnkwWWb{Qw0Or9s~BC$
zmLo{YU~>QX4YON5ycsH!akybm=D+fz-}DA=to}RQ$9h!cLD%dV(mS&fKezoL;vR20
z=lJw4MLRD%&w2U`8`)3ljlJQGh5sHkYNCiK0Lt&&Xy#epi3QA@z(2VXmun&Ktwxe<
zxi{)YL^g9q_iLPvualy7hp6+**|TCm%gTuM`4?0N%+ymNILANJb*1LsC3?0c-xX7!
zxvkiVll+C2!nHXoGLR!`8qz1UP9aA|E}oxZ(P(rHu{Zt`%^YLLNoU)$#qG*9+vuh>
zvaqO+R|8)q!SCBD?tAPTx1kVJJpBZMSm>nprJ|e@TO<;A^Jg?%@wtk{b!f8o`px6B
zqk^qX2g4ski}*>&h&BH^`B59nt8%)62CSa)S%FPvayhSeyx(#)<3S}{qW{3IhZeIW
z;pg9aOkCFM($AHC7aHXsH~%LZDA{Z2dJ*q_U%hV;*|HW=j-1kR$gbxkcbj!q$AXtF
zkb#53=#hqOTfF;Ox|}-;n0Irx3}_hh{*G@#Qx?a#eslHVQj314Mh}`z;Ivi8xqd<^
zx~aygVc(3VwWRp{H>m?vrxU)~y3O+6_@M2LE`?K6j~L$qhI8cByPOQzLNl`3Q+KEA
z_Nh!pFnffHWZOsj<-)hC>3HSpwBxE%xU$PXl>NQsbNKS$q-enL*vMaijKAN&E)?Vr
z?hU@BkfjwKS}eev5-c*X^29Chw=GM*`x^;_7ah5;tr_A$a|$p1$}y03GX^s@PH@?*
zJ)m~4whQZ|Y2Tb-0F0;qp;!r-0!Ju|^zTl12=J3vUVFVVhXMQ1#UcLmtF=_;O~wZ=
zO<DSjv%W*{=_*x=%kiK>)~2%3_D52;N>yMAp*No{FJAKo9y!ry`8)b5iaw~Zs29KU
z+Rnb5x*0Y1;rcukhHfNSD(ZYzYwyk?UBI$bgX_dcO^$#b>eyEOAvtXunX7f(U0P>B
zE7M;;Nr-h9_;1&G>e9Ja&9T{M)THKLS88)xYl#$hxyN%Z4TUg@)J(;lOe1+asn6?g
z*v3RL6*bUVGJEabd=uZYG^;dLf8F=D@lU9mfDuHBy`-&gt1$|!%gL<Ud%$s&u5KKY
zBYo9fCibK}JBPE*<g}+$aSzlScx*$cEY~kL^RygUY8z$=-A281b)J_J6_D)OGJ)iF
zo8h;kJ*^~5HHmy`Jt*k%^C1sXUS@aYCfk<DNQR+I?Pj8*2D7m44u2D8pv~>i=!<D{
zgP&VzZ}cvK3d5M3co9paemG7|L<=?J{K*U>)#!=(w!hexk`Vsgs99Raclv?gjA!CM
z+R~8;107aBRjxw1Dj90K*B?3T2|izZ39fyo+5S|({L<#9)@ph(?ZgW;*fp`pCBhW^
zb$nE=))$b}CQG}a`fk9YlR`7)*?7ELBr`Mg(G8yEVNst=L7^Y>9_1bjHJ-kvZ=L4~
zwOa|Rsj4+l7KUOLH`*pR#d2-_rU?_U^mmq%i}Zf3G4ldbw*~134(Dj{RYOpw43v}V
zt!dyPwErMb-H41T6y@>i;YBv&7S~lv@$~m(Ed4Sin;G#6p-&x~2Y5(8!@If_GIgq8
zZL*eI$%}O%msD%@<z|Vw&jYA(eK4=z`A3S?DpB8uNrF|BHWK=W(lFTvR}2mSQqG({
z=<5<^O$j1cp1)%)HOF^&L}DYB%+Gi7uesUr6K?YcTQbuL?T3HK6=eNhElY1#SY_`-
z=+toMHURKgk*Lg0ybka^7!1!JIL5Kh<Pc6U5Fr!DV@v3<f1e+W&>*FC2ev#Q;S;S8
zK09#*<+6er?-<`Wq#!sD{n9?IGm3qc7jT8^#90V^DCz+2weE|B*TwCx^x;kX!s@N}
z3ckn5z8Er)<~zRnlY#U@OHYiQ;#PcYEz8=mI<H75J?R(H9Nq9w1(mF5<kl@U%NL0p
z{Vi!p6}HISI3UcP<y0a&5$wjb_~mtQi<jEmaMDC^0@s?LH~^HC-TcQMuKMiD=A>-6
z<+qd*CGQuIu!CzBJ8TPy?Q&#>hTZu04KNH?k5tyD1)Kd9<)0(n-i!sWG!~(9wEqZI
zN{inaw(+Wh@Qn8mYNU(H^SAPkxLIrT5RaxMnZOH9uZ;cN!_d?I66qlbTHm^X4)2+?
zo2bfp0;Rf&qAr;_wk2gxyJg*fmE?_C-T#tv38$}s$s^yNs0JXS@2dBw*l7j|cjTp9
zLu%(d?VGzbfC<(L=D0So!~KWlX(lJ)QlRCUP$mczqIl%!V!sTP72Le?$9y!8AghhI
zH$2DzM!N`!4Mv6Y$FsRp8h8tBn*t)t>EuA#0uO1mTs4aB!h%lrb?OmURFBgxi$7E;
zFjx#56n8hrP#gj0yioc77%Hhk!Bup3ob3j>+a+;4GBhO%gYKqWkJ+?sE2v)IJZrMQ
ztrmh_*HDOad5Y6475Ww1Ta;$?>VJ_b>0xtm%AI}1@^Q-I0%`fWqUzMH!!gq{%x1+c
z8Wr4ssGr!jNpC3In&8mag_>*@Iptf(GUL%<aVxs2TE>>dlD&VSq+?0e&9wDIBXj~S
z?1Qd3&X&R&qnZ4UuQZ#1eYjLK<})t#f54<?cW3VzC+FSE<7YP27C=E9HNH`EXUr>U
z<meA;TyjYoU8*Kqy8pu^+4q{Hr`Pc*0YSnWI2v-uLw02AL=>kcmw?PH<6CV8d1kJ@
zS1t070@*7Cfa<9BEd;FQ(qZ*~2&GmP?JvbL?>Y3(EKzQ^ahQdgLP97I`D|FU_?3;S
z%LCKaXgySsoI?$KWb+V~X%YI}MAy#s(O{l6OOgYhoE>F>S;Zn?Od^#r=`lvQ%slHG
zq%4XG5R@EMl1xQi!wzVA*Hvk$WNNxpwrfOs4Yf1(>8!lLI4B*|sT~w(ZQL;}&0Ulk
z00q<v=Wuu=wIvsKA|F0`QIW=gpu7Mj_&T}kH$B$()nSgblX>c0rq-7?br|WyeiGy^
z3*xI@iaFc^^P|#vGs@bhr<OICOu6D*0u&|>>TOj)G7$txzY2(!de2NKqVO%r<>5Rd
zHNLlj{Qztb+HiC4Hzbb*WV^;aR>to*iKpFm$!k2&JmTF~S17*hAL>3oJN;It3^`K6
z&)<S4hshZIB_<sC)Yt2vRaK8&?w9R&oGVUkR>nRv8TNTy$;#CDz1%fK=%xkwFppnD
zI_k4sfc0*n2!256C2cBji5jg&>Mo&u)*2Z)7(u7>kSQSkkMkTZ-a{w!HSh1L(N~^~
z`98FbkPjUa!VGqO%CvpZ^VluDEZ0qlL<+PnqeCh;Xp}Z59)Yxb+!Yxjo+tz>%wm;J
z`z-#0siG9cTR3}7-eMReWK}xo+}_d2<R@^+CK-d}vQDEs7CJaqB!l8b(*!FpQ)Wgs
zdOD|c4P0njRE{-_3bs5-T(U8~QXs$<c~a~2^@69Hz<TZ*A<OzX+!G)oBr{DQq$D3g
zku};mW%8OgHYpPC56x;5lk2(bt39&Mjy?|Z$$LW3?oN>)wvxN=vG?iwv&${KUP20M
zm=ahuuq2~K!sFLNkSF6tjWr!~#RTSGTcIUB<uAStNJa(fUnXw4Yfn#x4X1XK>+i~n
zi#{ASDWUe(h@^r6@2(HHqVD2EBJB%OEoE37FY?(6HLmOALS=HxR%@QRS*-|@?Ttqy
z+5TnJGE8{0iTA%a#CdXPi<GZN8Baz);NQZg_xvw@E1||wWFiFs08l7~pm-oahYj#w
D1k2Bc

literal 0
HcmV?d00001

diff --git a/charts/codefresh/cf-runtime/7.5.5/.helmignore b/charts/codefresh/cf-runtime/7.5.5/.helmignore
new file mode 100644
index 0000000000..bc71d4240b
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/.helmignore
@@ -0,0 +1,3 @@
+tests/
+.ci/
+test-values/
\ No newline at end of file
diff --git a/charts/codefresh/cf-runtime/7.5.5/Chart.yaml b/charts/codefresh/cf-runtime/7.5.5/Chart.yaml
new file mode 100644
index 0000000000..1581d4a711
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/Chart.yaml
@@ -0,0 +1,28 @@
+annotations:
+  artifacthub.io/changes: |
+    - kind: security
+      description: "updated fs-ops with security fixes"
+  artifacthub.io/containsSecurityUpdates: "true"
+  catalog.cattle.io/certified: partner
+  catalog.cattle.io/display-name: Codefresh
+  catalog.cattle.io/kube-version: '>=1.18-0'
+  catalog.cattle.io/release-name: cf-runtime
+apiVersion: v2
+dependencies:
+- name: cf-common
+  repository: oci://quay.io/codefresh/charts
+  version: 0.21.0
+description: A Helm chart for Codefresh Runner
+home: https://codefresh.io/
+icon: file://assets/icons/cf-runtime.png
+keywords:
+- codefresh
+- runner
+kubeVersion: '>=1.18-0'
+maintainers:
+- name: codefresh
+  url: https://codefresh-io.github.io/
+name: cf-runtime
+sources:
+- https://github.com/codefresh-io/venona
+version: 7.5.5
diff --git a/charts/codefresh/cf-runtime/7.5.5/README.md b/charts/codefresh/cf-runtime/7.5.5/README.md
new file mode 100644
index 0000000000..312ec0a510
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/README.md
@@ -0,0 +1,1296 @@
+## Codefresh Runner
+
+![Version: 7.5.5](https://img.shields.io/badge/Version-7.5.5-informational?style=flat-square)
+
+Helm chart for deploying [Codefresh Runner](https://codefresh.io/docs/docs/installation/codefresh-runner/) to Kubernetes.
+
+## Table of Content
+
+- [Prerequisites](#prerequisites)
+- [Get Chart Info](#get-chart-info)
+- [Install Chart](#install-chart)
+- [Chart Configuration](#chart-configuration)
+- [Upgrade Chart](#upgrade-chart)
+  - [⚠️ Known issues](#⚠️-known-issues)
+  - [To 2.x](#to-2-x)
+  - [To 3.x](#to-3-x)
+  - [To 4.x](#to-4-x)
+  - [To 5.x](#to-5-x)
+  - [To 6.x](#to-6-x)
+  - [To 7.x](#to-7-x) 
+- [Architecture](#architecture)
+- [Configuration](#configuration)
+  - [EBS backend volume configuration in AWS](#ebs-backend-volume-configuration)
+  - [Azure Disks backend volume configuration in AKS](#azure-disks-backend-volume-configuration)
+  - [GCE Disks backend volume configuration in GKE](#gce-disks-backend-volume-configuration-in-gke)
+  - [Custom volume mounts](#custom-volume-mounts)
+  - [Custom global environment variables](#custom-global-environment-variables)
+  - [Volume reuse policy](#volume-reuse-policy)
+  - [Volume cleaners](#volume-cleaners)
+  - [Rootless DinD](#rootless-dind)
+  - [ARM](#arm)
+  - [Openshift](#openshift)
+  - [On-premise](#on-premise)
+
+## Prerequisites
+
+- Kubernetes **1.19+**
+- Helm **3.8.0+**
+
+⚠️⚠️⚠️
+> Since version 6.2.x chart is pushed **only** to OCI registry at `oci://quay.io/codefresh/cf-runtime`
+
+> Versions prior to 6.2.x are still available in ChartMuseum at `http://chartmuseum.codefresh.io/cf-runtime`
+
+## Get Chart Info
+
+```console
+helm show all oci://quay.io/codefresh/cf-runtime
+```
+See [Use OCI-based registries](https://helm.sh/docs/topics/registries/)
+
+## Install Chart
+
+**Important:** only helm3 is supported
+
+- Specify the following mandatory values
+
+`values.yaml`
+```yaml
+# -- Global parameters
+# @default -- See below
+global:
+  # -- User token in plain text (required if `global.codefreshTokenSecretKeyRef` is omitted!)
+  # Ref: https://g.codefresh.io/user/settings (see API Keys)
+  # Minimal API key scopes: Runner-Installation(read+write), Agent(read+write), Agents(read+write)
+  codefreshToken: ""
+  # -- User token that references an existing secret containing API key (required if `global.codefreshToken` is omitted!)
+  codefreshTokenSecretKeyRef: {}
+  # E.g.
+  # codefreshTokenSecretKeyRef:
+  #   name: my-codefresh-api-token
+  #   key: codefresh-api-token
+
+  # -- Account ID (required!)
+  # Can be obtained here https://g.codefresh.io/2.0/account-settings/account-information
+  accountId: ""
+
+  # -- K8s context name (required!)
+  context: ""
+  # E.g.
+  # context: prod-ue1-runtime-1
+
+  # -- Agent Name (optional!)
+  # If omitted, the following format will be used '{{ .Values.global.context }}_{{ .Release.Namespace }}'
+  agentName: ""
+  # E.g.
+  # agentName: prod-ue1-runtime-1
+
+  # -- Runtime name (optional!)
+  # If omitted, the following format will be used '{{ .Values.global.context }}/{{ .Release.Namespace }}'
+  runtimeName: ""
+  # E.g.
+  # runtimeName: prod-ue1-runtime-1/namespace
+```
+
+- Install chart
+
+```console
+helm upgrade --install cf-runtime oci://quay.io/codefresh/cf-runtime -f values.yaml --create-namespace --namespace codefresh
+```
+
+## Chart Configuration
+
+See [Customizing the Chart Before Installing](https://helm.sh/docs/intro/using_helm/#customizing-the-chart-before-installing).
+
+## Upgrade Chart
+
+### ⚠️ Known issues
+
+Please check the following known issues before upgrading the chart:
+
+- Charts **7.1.1–7.4.3** have a bug because of which the following feature does not work: [“Secret Store — Kubernetes-Runtime Secret”](https://codefresh.io/docs/docs/integrations/secret-storage/#secret-store-setup-for-codefresh-runner-installation).
+
+### To 2.x
+
+This major release renames and deprecated several values in the chart. Most of the workload templates have been refactored.
+
+Affected values:
+- `dockerRegistry` is deprecated. Replaced with `global.imageRegistry`
+- `re` is renamed to `runtime`
+- `storage.localVolumeMonitor` is replaced with `volumeProvisioner.dind-lv-monitor`
+- `volumeProvisioner.volume-cleanup` is replaced with `volumeProvisioner.dind-volume-cleanup`
+- `image` values structure has been updated. Split to `image.registry` `image.repository` `image.tag`
+- pod's `annotations` is renamed to `podAnnotations`
+
+### To 3.x
+
+⚠️⚠️⚠️
+### READ this before the upgrade!
+
+This major release adds [runtime-environment](https://codefresh.io/docs/docs/installation/codefresh-runner/#runtime-environment-specification) spec into chart templates.
+That means it is possible to set parametes for `dind` and `engine` pods via [values.yaml](./values.yaml).
+
+**If you had any overrides (i.e. tolerations/nodeSelector/environment variables/etc) added in runtime spec via [codefresh CLI](https://codefresh-io.github.io/cli/) (for example, you did use [get](https://codefresh-io.github.io/cli/runtime-environments/get-runtime-environments/) and [patch](https://codefresh-io.github.io/cli/runtime-environments/apply-runtime-environments/) commands to modify the runtime-environment), you MUST add these into chart's [values.yaml](./values.yaml) for `.Values.runtime.dind` or(and) .`Values.runtime.engine`**
+
+**For backward compatibility, you can disable updating runtime-environment spec via** `.Values.runtime.patch.enabled=false`
+
+Affected values:
+- added **mandatory** `global.codefreshToken`/`global.codefreshTokenSecretKeyRef` **You must specify it before the upgrade!**
+- `runtime.engine` is added
+- `runtime.dind` is added
+- `global.existingAgentToken` is replaced with `global.agentTokenSecretKeyRef`
+- `global.existingDindCertsSecret` is replaced with `global.dindCertsSecretRef`
+
+### To 4.x
+
+This major release adds **agentless inCluster** runtime mode (relevant only for [Codefresh On-Premises](#on-premise) users)
+
+Affected values:
+- `runtime.agent` / `runtime.inCluster` / `runtime.accounts` / `runtime.description` are added
+
+### To 5.x
+
+This major release converts `.runtime.dind.pvcs` from **list** to **dict**
+
+> 4.x chart's values example:
+```yaml
+runtime:
+  dind:
+    pvcs:
+      - name: dind
+        storageClassName: my-storage-class-name
+        volumeSize: 32Gi
+        reuseVolumeSelector: 'codefresh-app,io.codefresh.accountName'
+        reuseVolumeSortOrder: pipeline_id
+```
+
+> 5.x chart's values example:
+```yaml
+runtime:
+  dind:
+    pvcs:
+      dind:
+        name: dind
+        storageClassName: my-storage-class-name
+        volumeSize: 32Gi
+        reuseVolumeSelector: 'codefresh-app,io.codefresh.accountName'
+        reuseVolumeSortOrder: pipeline_id
+```
+
+Affected values:
+- `.runtime.dind.pvcs` converted from **list** to **dict**
+
+### To 6.x
+
+⚠️⚠️⚠️
+### READ this before the upgrade!
+
+This major release deprecates previously required `codefresh runner init --generate-helm-values-file`.
+
+Affected values:
+- **Replaced** `.monitor.clusterId` with `.global.context` as **mandatory** value!
+- **Deprecated** `.global.agentToken` / `.global.agentTokenSecretKeyRef`
+- **Removed** `.global.agentId`
+- **Removed** `.global.keys` / `.global.dindCertsSecretRef`
+- **Removed** `.global.existingAgentToken` / `existingDindCertsSecret`
+- **Removed** `.monitor.clusterId` / `.monitor.token` / `.monitor.existingMonitorToken`
+
+#### Migrate the Helm chart from version 5.x to 6.x
+
+Given this is the legacy `generated_values.yaml` values:
+
+> legacy `generated_values.yaml`
+```yaml
+{
+    "appProxy": {
+        "enabled": false,
+    },
+    "monitor": {
+        "enabled": false,
+        "clusterId": "my-cluster-name",
+        "token": "1234567890"
+    },
+    "global": {
+        "namespace": "namespace",
+        "codefreshHost": "https://g.codefresh.io",
+        "agentToken": "0987654321",
+        "agentId": "agent-id-here",
+        "agentName": "my-cluster-name_my-namespace",
+        "accountId": "my-account-id",
+        "runtimeName": "my-cluster-name/my-namespace",
+        "codefreshToken": "1234567890",
+        "keys": {
+            "key": "-----BEGIN RSA PRIVATE KEY-----...",
+            "csr": "-----BEGIN CERTIFICATE REQUEST-----...",
+            "ca": "-----BEGIN CERTIFICATE-----...",
+            "serverCert": "-----BEGIN CERTIFICATE-----..."
+        }
+    }
+}
+```
+
+Update `values.yaml` for new chart version:
+
+> For existing installation for backward compatibility `.Values.global.agentToken/agentTokenSecretKeyRef` **must be provided!** For installation from scratch this value is no longer required.
+
+> updated `values.yaml`
+```yaml
+global:
+  codefreshToken: "1234567890"
+  accountId: "my-account-id"
+  context: "my-cluster-name"
+  agentToken: "0987654321"  # MANDATORY when migrating from < 6.x chart version !
+  agentName: "my-cluster-name_my-namespace" # optional
+  runtimeName: "my-cluster-name/my-namespace" # optional
+```
+
+> **Note!** Though it's still possible to update runtime-environment via [get](https://codefresh-io.github.io/cli/runtime-environments/get-runtime-environments/) and [patch](https://codefresh-io.github.io/cli/runtime-environments/apply-runtime-environments/) commands, it's recommended to enable sidecar container to pull runtime spec from Codefresh API to detect any drift in configuration.
+
+```yaml
+runner:
+  # -- Sidecar container
+  # Reconciles runtime spec from Codefresh API for drift detection
+  sidecar:
+    enabled: true
+```
+
+### To 7.x
+
+⚠️⚠️⚠️ **BREAKING CHANGE** ⚠️⚠️⚠️
+
+7.0.0 release adds image digests to all images in default values, for example:
+
+```yaml
+runtime:
+  engine:
+    image:
+      registry: quay.io
+      repository: codefresh/engine
+      tag: 1.174.15
+      pullPolicy: IfNotPresent
+      digest: sha256:d547c2044c1488e911ff726462cc417adf2dda731cafd736493c4de4eb9e357b
+```
+
+Which means any overrides for tags won't be used and underlying Kubernetes runtime will pull the image by the digest.
+
+See [Pull an image by digest (immutable identifier)](https://docs.docker.com/reference/cli/docker/image/pull/#pull-an-image-by-digest-immutable-identifier)
+
+## Architecture
+
+[Codefresh Runner architecture](https://codefresh.io/docs/docs/installation/codefresh-runner/#codefresh-runner-architecture)
+
+## Configuration
+
+See [Customizing the Chart Before Installing](https://helm.sh/docs/intro/using_helm/#customizing-the-chart-before-installing).
+
+### EBS backend volume configuration
+
+`dind-volume-provisioner` should have permissions to create/attach/detach/delete/get EBS volumes
+
+Minimal IAM policy for `dind-volume-provisioner`
+
+```json
+{
+  "Version": "2012-10-17",
+  "Statement": [
+    {
+      "Effect": "Allow",
+      "Action": [
+        "ec2:AttachVolume",
+        "ec2:CreateSnapshot",
+        "ec2:CreateTags",
+        "ec2:CreateVolume",
+        "ec2:DeleteSnapshot",
+        "ec2:DeleteTags",
+        "ec2:DeleteVolume",
+        "ec2:DescribeInstances",
+        "ec2:DescribeSnapshots",
+        "ec2:DescribeTags",
+        "ec2:DescribeVolumes",
+        "ec2:DetachVolume"
+      ],
+      "Resource": "*"
+    }
+  ]
+}
+```
+
+There are three options:
+
+1. Run `dind-volume-provisioner` pod on the node/node-group with IAM role
+
+```yaml
+storage:
+  # -- Set backend volume type (`local`/`ebs`/`ebs-csi`/`gcedisk`/`azuredisk`)
+  backend: ebs-csi
+
+  ebs:
+    availabilityZone: "us-east-1a"
+
+volumeProvisioner:
+  # -- Set node selector
+  nodeSelector: {}
+  # -- Set tolerations
+  tolerations: []
+```
+
+2. Pass static credentials in `.Values.storage.ebs.accessKeyId/accessKeyIdSecretKeyRef` and `.Values.storage.ebs.secretAccessKey/secretAccessKeySecretKeyRef`
+
+```yaml
+storage:
+  # -- Set backend volume type (`local`/`ebs`/`ebs-csi`/`gcedisk`/`azuredisk`)
+  backend: ebs-csi
+
+  ebs:
+    availabilityZone: "us-east-1a"
+
+    # -- Set AWS_ACCESS_KEY_ID for volume-provisioner (optional)
+    accessKeyId: ""
+    # -- Existing secret containing AWS_ACCESS_KEY_ID.
+    accessKeyIdSecretKeyRef: {}
+    # E.g.
+    # accessKeyIdSecretKeyRef:
+    #   name:
+    #   key:
+
+    # -- Set AWS_SECRET_ACCESS_KEY for volume-provisioner (optional)
+    secretAccessKey: ""
+    # -- Existing secret containing AWS_SECRET_ACCESS_KEY
+    secretAccessKeySecretKeyRef: {}
+    # E.g.
+    # secretAccessKeySecretKeyRef:
+    #   name:
+    #   key:
+```
+
+3. Assign IAM role to `dind-volume-provisioner` service account
+
+```yaml
+storage:
+  # -- Set backend volume type (`local`/`ebs`/`ebs-csi`/`gcedisk`/`azuredisk`)
+  backend: ebs-csi
+
+  ebs:
+    availabilityZone: "us-east-1a"
+
+volumeProvisioner:
+  # -- Service Account parameters
+  serviceAccount:
+    # -- Create service account
+    create: true
+    # -- Additional service account annotations
+    annotations:
+      eks.amazonaws.com/role-arn: "arn:aws:iam::<ACCOUNT_ID>:role/<IAM_ROLE_NAME>"
+```
+
+### Custom volume mounts
+
+You can add your own volumes and volume mounts in the runtime environment, so that all pipeline steps will have access to the same set of external files.
+
+```yaml
+runtime:
+  dind:
+    userVolumes:
+      regctl-docker-registry:
+        name: regctl-docker-registry
+        secret:
+          items:
+            - key: .dockerconfigjson
+              path: config.json
+          secretName: regctl-docker-registry
+          optional: true
+    userVolumeMounts:
+      regctl-docker-registry:
+        name: regctl-docker-registry
+        mountPath: /home/appuser/.docker/
+        readOnly: true
+
+```
+
+### Azure Disks backend volume configuration
+
+`dind-volume-provisioner` should have permissions to create/delete/get Azure Disks
+
+Role definition for `dind-volume-provisioner`
+
+`dind-volume-provisioner-role.json`
+```json
+{
+  "Name": "CodefreshDindVolumeProvisioner",
+  "Description": "Perform create/delete/get disks",
+  "IsCustom": true,
+  "Actions": [
+      "Microsoft.Compute/disks/read",
+      "Microsoft.Compute/disks/write",
+      "Microsoft.Compute/disks/delete"
+
+  ],
+  "AssignableScopes": ["/subscriptions/<YOUR_SUBSCRIPTION_ID>"]
+}
+```
+
+When creating an AKS cluster in Azure there is the option to use a [managed identity](https://learn.microsoft.com/en-us/azure/aks/use-managed-identity) that is assigned to the kubelet. This identity is assigned to the underlying node pool in the AKS cluster and can then be used by the dind-volume-provisioner.
+
+```console
+export ROLE_DEFINITIN_FILE=dind-volume-provisioner-role.json
+export SUBSCRIPTION_ID=$(az account show --query "id" | xargs echo )
+export RESOURCE_GROUP=<YOUR_RESOURCE_GROUP_NAME>
+export AKS_NAME=<YOUR_AKS_NAME>
+export LOCATION=$(az aks show -g $RESOURCE_GROUP -n $AKS_NAME --query location | xargs echo)
+export NODES_RESOURCE_GROUP=MC_${RESOURCE_GROUP}_${AKS_NAME}_${LOCATION}
+export NODE_SERVICE_PRINCIPAL=$(az aks show -g $RESOURCE_GROUP -n $AKS_NAME --query identityProfile.kubeletidentity.objectId | xargs echo)
+
+az role definition create --role-definition @${ROLE_DEFINITIN_FILE}
+az role assignment create --assignee $NODE_SERVICE_PRINCIPAL --scope /subscriptions/$SUBSCRIPTION_ID/resourceGroups/$NODES_RESOURCE_GROUP --role CodefreshDindVolumeProvisioner
+```
+
+Deploy Helm chart with the following values:
+
+`values.yaml`
+```yaml
+volumeProvisioner:
+  podSecurityContext:
+    enabled: true
+    runAsUser: 0
+    runAsGroup: 0
+    fsGroup: 0
+
+storage:
+  backend: azuredisk
+  azuredisk:
+    availabilityZone: northeurope-1 # replace with your zone
+    resourceGroup: my-resource-group-name
+
+  mountAzureJson: true
+
+runtime:
+  dind:
+    nodeSelector:
+      topology.kubernetes.io/zone: northeurope-1
+```
+
+### GCE Disks backend volume configuration in GKE
+
+`dind-volume-provisioner` should have `ComputeEngine.StorageAdmin` permissions
+
+There are three options:
+
+1. Run `dind-volume-provisioner` pod on the node/node-group with IAM Service Account
+
+```yaml
+storage:
+  # -- Set backend volume type (`local`/`ebs`/`ebs-csi`/`gcedisk`/`azuredisk`)
+  backend: gcedisk
+
+  gcedisk:
+    # -- Set GCP volume backend type (`pd-ssd`/`pd-standard`)
+    volumeType: "pd-standard"
+    # -- Set GCP volume availability zone
+    availabilityZone: "us-central1-c"
+
+volumeProvisioner:
+  # -- Set node selector
+  nodeSelector: {}
+  # -- Set tolerations
+  tolerations: []
+
+# -- Set runtime parameters
+runtime:
+  # -- Parameters for DinD (docker-in-docker) pod
+  dind:
+    # -- Set node selector.
+    nodeSelector:
+      topology.kubernetes.io/zone: us-central1-c
+```
+
+2. Pass static credentials in `.Values.storage.gcedisk.serviceAccountJson` (inline) or `.Values.storage.gcedisk.serviceAccountJsonSecretKeyRef` (from your own secret)
+
+```yaml
+storage:
+  # -- Set backend volume type (`local`/`ebs`/`ebs-csi`/`gcedisk`/`azuredisk`)
+  backend: gcedisk
+
+  gcedisk:
+    # -- Set GCP volume backend type (`pd-ssd`/`pd-standard`)
+    volumeType: "`pd-standard"
+    # -- Set GCP volume availability zone
+    availabilityZone: "us-central1-c"
+    # -- Set Google SA JSON key for volume-provisioner (optional)
+    serviceAccountJson: |
+        {
+        "type": "service_account",
+        "project_id": "...",
+        "private_key_id": "...",
+        "private_key": "...",
+        "client_email": "...",
+        "client_id": "...",
+        "auth_uri": "...",
+        "token_uri": "...",
+        "auth_provider_x509_cert_url": "...",
+        "client_x509_cert_url": "..."
+        }
+    # -- Existing secret containing containing Google SA JSON key for volume-provisioner (optional)
+    serviceAccountJsonSecretKeyRef: {}
+    # E.g.:
+    # serviceAccountJsonSecretKeyRef:
+    #   name: gce-service-account
+    #   key: service-account.json
+
+# -- Set runtime parameters
+runtime:
+  # -- Parameters for DinD (docker-in-docker) pod
+  dind:
+    # -- Set node selector.
+    nodeSelector:
+      topology.kubernetes.io/zone: us-central1-c
+```
+
+3. Assign IAM role to `dind-volume-provisioner` service account
+
+```yaml
+storage:
+  # -- Set backend volume type (`local`/`ebs`/`ebs-csi`/`gcedisk`/`azuredisk`)
+  backend: gcedisk
+
+  gcedisk:
+    # -- Set GCP volume backend type (`pd-ssd`/`pd-standard`)
+    volumeType: "`pd-standard"
+    # -- Set GCP volume availability zone
+    availabilityZone: "us-central1-c"
+
+volumeProvisioner:
+  # -- Service Account parameters
+  serviceAccount:
+    # -- Create service account
+    create: true
+    # -- Additional service account annotations
+    annotations:
+      iam.gke.io/gcp-service-account: <GSA_NAME>@<PROJECT_ID>.iam.gserviceaccount.com
+
+# -- Set runtime parameters
+runtime:
+  # -- Parameters for DinD (docker-in-docker) pod
+  dind:
+    # -- Set node selector.
+    nodeSelector:
+      topology.kubernetes.io/zone: us-central1-c
+```
+
+### Custom global environment variables
+
+You can add your own environment variables to the runtime environment. All pipeline steps have access to the global variables.
+
+```yaml
+runtime:
+  engine:
+    userEnvVars:
+    - name: GITHUB_TOKEN
+      valueFrom:
+        secretKeyRef:
+          name: github-token
+          key: token
+```
+
+### Volume reuse policy
+
+Volume reuse behavior depends on the configuration for `reuseVolumeSelector` in the runtime environment spec.
+
+```yaml
+runtime:
+  dind:
+    pvcs:
+      - name: dind
+        ...
+        reuseVolumeSelector: 'codefresh-app,io.codefresh.accountName'
+        reuseVolumeSortOrder: pipeline_id
+```
+
+The following options are available:
+- `reuseVolumeSelector: 'codefresh-app,io.codefresh.accountName'` - PV can be used by ANY pipeline in the specified account (default).
+Benefit: Fewer PVs, resulting in lower costs. Since any PV can be used by any pipeline, the cluster needs to maintain/reserve fewer PVs in its PV pool for Codefresh.
+Downside: Since the PV can be used by any pipeline, the PVs could have assets and info from different pipelines, reducing the probability of cache.
+
+- `reuseVolumeSelector: 'codefresh-app,io.codefresh.accountName,project_id'` - PV can be used by ALL pipelines in your account, assigned to the same project.
+
+- `reuseVolumeSelector: 'codefresh-app,io.codefresh.accountName,pipeline_id'` - PV can be used only by a single pipeline.
+Benefit: More probability of cache without “spam” from other pipelines.
+Downside: More PVs to maintain and therefore higher costs.
+
+- `reuseVolumeSelector: 'codefresh-app,io.codefresh.accountName,pipeline_id,io.codefresh.branch_name'` - PV can be used only by single pipeline AND single branch.
+
+- `reuseVolumeSelector: 'codefresh-app,io.codefresh.accountName,pipeline_id,trigger'` - PV can be used only by single pipeline AND single trigger.
+
+### Volume cleaners
+
+Codefresh pipelines require disk space for:
+  * [Pipeline Shared Volume](https://codefresh.io/docs/docs/pipelines/introduction-to-codefresh-pipelines/#sharing-the-workspace-between-build-steps) (`/codefresh/volume`, implemented as [docker volume](https://docs.docker.com/storage/volumes/))
+  * Docker containers, both running and stopped
+  * Docker images and cached layers
+
+Codefresh offers two options to manage disk space and prevent out-of-space errors:
+* Use runtime cleaners on Docker images and volumes
+* [Set the minimum disk space per pipeline build volume](https://codefresh.io/docs/docs/pipelines/pipelines/#set-minimum-disk-space-for-a-pipeline-build)
+
+To improve performance by using Docker cache, Codefresh `volume-provisioner` can provision previously used disks with Docker images and pipeline volumes from previously run builds.
+
+### Types of runtime volume cleaners
+
+Docker images and volumes must be cleaned on a regular basis.
+
+* [IN-DIND cleaner](https://github.com/codefresh-io/dind/tree/master/cleaner): Deletes extra Docker containers, volumes, and images in **DIND pod**.
+* [External volume cleaner](https://github.com/codefresh-io/dind-volume-cleanup): Deletes unused **external** PVs (EBS, GCE/Azure disks).
+* [Local volume cleaner](https://github.com/codefresh-io/dind-volume-utils/blob/master/local-volumes/lv-cleaner.sh): Deletes **local** volumes if node disk space is close to the threshold.
+
+### IN-DIND cleaner
+
+**Purpose:** Removes unneeded *docker containers, images, volumes* inside Kubernetes volume mounted on the DIND pod
+
+**How it runs:** Inside each DIND pod as script
+
+**Triggered by:** SIGTERM and also during the run when disk usage > 90% (configurable)
+
+**Configured by:**  Environment Variables which can be set in Runtime Environment spec
+
+**Configuration/Logic:** [README.md](https://github.com/codefresh-io/dind/tree/master/cleaner#readme)
+
+Override `.Values.runtime.dind.env` if necessary (the following are **defaults**):
+
+```yaml
+runtime:
+  dind:
+    env:
+      CLEAN_PERIOD_SECONDS: '21600' # launch clean if last clean was more than CLEAN_PERIOD_SECONDS seconds ago
+      CLEAN_PERIOD_BUILDS: '5' # launch clean if last clean was more CLEAN_PERIOD_BUILDS builds since last build
+      IMAGE_RETAIN_PERIOD: '14400' # do not delete docker images if they have events since current_timestamp - IMAGE_RETAIN_PERIOD
+      VOLUMES_RETAIN_PERIOD: '14400' # do not delete docker volumes if they have events since current_timestamp - VOLUMES_RETAIN_PERIOD
+      DISK_USAGE_THRESHOLD: '0.8' # launch clean based on current disk usage DISK_USAGE_THRESHOLD
+      INODES_USAGE_THRESHOLD: '0.8' # launch clean based on current inodes usage INODES_USAGE_THRESHOLD
+```
+
+### External volumes cleaner
+
+**Purpose:** Removes unused *kubernetes volumes and related backend volumes*
+
+**How it runs:** Runs as `dind-volume-cleanup` CronJob. Installed in case the Runner uses non-local volumes `.Values.storage.backend != local`
+
+**Triggered by:** CronJob every 10min (configurable)
+
+**Configuration:**
+
+Set `codefresh.io/volume-retention` for dinds' PVCs:
+
+```yaml
+runtime:
+  dind:
+    pvcs:
+      dind:
+        ...
+        annotations:
+          codefresh.io/volume-retention: 7d
+```
+
+Or override environment variables for `dind-volume-cleanup` cronjob:
+
+```yaml
+volumeProvisioner:
+  dind-volume-cleanup:
+    env:
+      RETENTION_DAYS: 7   # clean volumes that were last used more than `RETENTION_DAYS` (default is 4) ago
+```
+
+### Local volumes cleaner
+
+**Purpose:** Deletes local volumes when node disk space is close to the threshold
+
+**How it runs:** Runs as `dind-lv-monitor` DaemonSet. Installed in case the Runner uses local volumes `.Values.storage.backend == local`
+
+**Triggered by:** Disk space usage or inode usage that exceeds thresholds (configurable)
+
+**Configuration:**
+
+Override environment variables for `dind-lv-monitor` daemonset:
+
+```yaml
+volumeProvisioner:
+  dind-lv-monitor:
+    env:
+      KB_USAGE_THRESHOLD: 60  # default 80 (percentage)
+      INODE_USAGE_THRESHOLD: 60  # default 80
+```
+
+### Rootless DinD
+
+DinD pod runs a `priviliged` container with **rootfull** docker.
+
+To run the docker daemon as non-root user (**rootless** mode), refer to `values-rootless.yaml`:
+
+```yaml
+volumeProvisioner:
+  env:
+    IS_ROOTLESS: true
+  # -- Only if local volumes are used as backend storage (ignored for ebs/ebs-csi disks)
+  dind-lv-monitor:
+    image:
+      tag: 1.30.0-rootless
+      digest: sha256:712e549e6e843b04684647f17e0973f8047e0d60e6e8b38a693ea64dc75b0479
+    containerSecurityContext:
+      runAsUser: 1000
+    podSecurityContext:
+      fsGroup: 1000
+      # Ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#configure-volume-permission-and-ownership-change-policy-for-pods
+      fsGroupChangePolicy: "OnRootMismatch"
+    # -- Enable initContainer to run chmod for /var/lib/codefresh/dind-volumes on host nodes
+    volumePermissions:
+      enabled: false
+
+runtime:
+  dind:
+    image:
+      tag: 26.1.4-1.28.10-rootless
+      digest: sha256:59dfc004eb22a8f09c8a3d585271a055af9df4591ab815bca418c24a2077f5c8
+    userVolumeMounts:
+      dind:
+        name: dind
+        mountPath: /home/rootless/.local/share/docker
+    containerSecurityContext:
+      privileged: true
+      runAsUser: 1000
+    podSecurityContext:
+      fsGroup: 1000
+      # Ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#configure-volume-permission-and-ownership-change-policy-for-pods
+      fsGroupChangePolicy: "OnRootMismatch"
+    # -- Enable initContainer to run chmod for /home/rootless in DinD pod
+    # !!! Will slow down dind pod startup
+    volumePermissions:
+      enabled: true
+```
+
+### ARM
+
+With the Codefresh Runner, you can run native ARM64v8 builds.
+
+> **Note!**
+> You cannot run both amd64 and arm64 images within the same pipeline. As one pipeline can map only to one runtime, you can run either amd64 or arm64 within the same pipeline.
+
+Provide `nodeSelector` and(or) `tolerations` for dind pods:
+
+`values.yaml`
+```yaml
+runtime:
+  dind:
+    nodeSelector:
+      arch: arm64
+    tolerations:
+    - key: arch
+      operator: Equal
+      value: arm64
+      effect: NoSchedule
+```
+
+### Openshift
+
+To install Codefresh Runner on OpenShift use the following `values.yaml` example
+
+```yaml
+runner:
+  podSecurityContext:
+    enabled: false
+
+volumeProvisioner:
+  podSecurityContext:
+    enabled: false
+  env:
+    PRIVILEGED_CONTAINER: true
+  dind-lv-monitor:
+    containerSecurityContext:
+      enabled: true
+      privileged: true
+    volumePermissions:
+      enabled: true
+      securityContext:
+        privileged: true
+        runAsUser: auto
+```
+
+Grant `privileged` SCC to `cf-runtime-runner` and `cf-runtime-volume-provisioner` service accounts.
+
+```console
+oc adm policy add-scc-to-user privileged system:serviceaccount:codefresh:cf-runtime-runner
+
+oc adm policy add-scc-to-user privileged system:serviceaccount:codefresh:cf-runtime-volume-provisioner
+```
+
+### On-premise
+
+If you have [Codefresh On-Premises](https://artifacthub.io/packages/helm/codefresh-onprem/codefresh) deployed, you can install Codefresh Runner in **agentless** mode.
+
+**What is agentless mode?**
+
+Agent (aka venona) is Runner component which responsible for calling Codefresh API to run builds and create dind/engine pods and pvc objects. Agent can only be assigned to a single account, thus you can't share one runtime across multiple accounts. However, with **agentless** mode it's possible to register the runtime as **system**-type runtime so it's registered on the platform level and can be assigned/shared across multiple accounts.
+
+**What are the prerequisites?**
+- You have a running [Codefresh On-Premises](https://artifacthub.io/packages/helm/codefresh-onprem/codefresh) control-plane environment
+- You have a Codefresh API token with platform **Admin** permissions scope
+
+### How to deploy agentless runtime when it's on the SAME k8s cluster as On-Premises control-plane environment?
+
+- Enable cluster-level permissions for cf-api (On-Premises control-plane component)
+
+> `values.yaml` for [Codefresh On-Premises](https://artifacthub.io/packages/helm/codefresh-onprem/codefresh) Helm chart
+```yaml
+cfapi:
+  ...
+  # -- Enable ClusterRole/ClusterRoleBinding
+  rbac:
+    namespaced: false
+```
+
+- Set the following values for Runner Helm chart
+
+`.Values.global.codefreshHost=...` \
+`.Values.global.codefreshToken=...` \
+`.Values.global.runtimeName=system/...` \
+`.Values.runtime.agent=false` \
+`.Values.runtime.inCluster=true`
+
+> `values.yaml` for [Codefresh Runner](https://artifacthub.io/packages/helm/codefresh-runner/cf-runtime) helm chart
+```yaml
+global:
+  # -- URL of Codefresh On-Premises Platform
+  codefreshHost: "https://myonprem.somedomain.com"
+  # -- User token in plain text with Admin permission scope
+  codefreshToken: ""
+  # -- User token that references an existing secret containing API key.
+  codefreshTokenSecretKeyRef: {}
+  # E.g.
+  # codefreshTokenSecretKeyRef:
+  #   name: my-codefresh-api-token
+  #   key: codefresh-api-token
+
+  # -- Distinguished runtime name
+  # (for On-Premise only; mandatory!) Must be prefixed with "system/..."
+  runtimeName: "system/prod-ue1-some-cluster-name"
+
+# -- Set runtime parameters
+runtime:
+  # -- (for On-Premise only; mandatory!) Disable agent
+  agent: false
+  # -- (for On-Premise only; optional) Set inCluster runtime (default: `true`)
+  # `inCluster=true` flag is set when Runtime and On-Premises control-plane are run on the same cluster
+  # `inCluster=false` flag is set when Runtime and On-Premises control-plane are on different clusters
+  inCluster: true
+  # -- (for On-Premise only; optional) Assign accounts to runtime (list of account ids; default is empty)
+  # Accounts can be assigned to the runtime in Codefresh UI later so you can kepp it empty.
+  accounts: []
+  # -- Set parent runtime to inherit.
+  runtimeExtends: []
+```
+
+- Install the chart
+
+```console
+helm upgrade --install cf-runtime oci://quay.io/codefresh/cf-runtime -f values.yaml --create-namespace --namespace cf-runtime
+```
+
+- Verify the runtime and run test pipeline
+
+Go to [https://<YOUR_ONPREM_DOMAIN_HERE>/admin/runtime-environments/system](https://<YOUR_ONPREM_DOMAIN_HERE>/admin/runtime-environments/system) to check the runtime. Assign it to the required account(s). Run test pipeline on it.
+
+### How to deploy agentless runtime when it's on the DIFFERENT k8s cluster than On-Premises control-plane environment?
+
+In this case, it's required to mount runtime cluster's `KUBECONFIG` into On-Premises `cf-api` deployment
+
+- Create the neccessary RBAC resources
+
+> `values.yaml` for [Codefresh Runner](https://artifacthub.io/packages/helm/codefresh-runner/cf-runtime) helm chart
+```yaml
+extraResources:
+- apiVersion: rbac.authorization.k8s.io/v1
+  kind: Role
+  metadata:
+    name: codefresh-role
+    namespace: '{{ .Release.Namespace }}'
+  rules:
+    - apiGroups: [""]
+      resources: ["pods", "persistentvolumeclaims", "persistentvolumes"]
+      verbs: ["list", "watch", "get", "create", "patch", "delete"]
+    - apiGroups: ["snapshot.storage.k8s.io"]
+      resources: ["volumesnapshots"]
+      verbs: ["list", "watch", "get", "create", "patch", "delete"]
+- apiVersion: v1
+  kind: ServiceAccount
+  metadata:
+    name: codefresh-runtime-user
+    namespace: '{{ .Release.Namespace }}'
+- apiVersion: rbac.authorization.k8s.io/v1
+  kind: RoleBinding
+  metadata:
+    name: codefresh-runtime-user
+    namespace: '{{ .Release.Namespace }}'
+  roleRef:
+    apiGroup: rbac.authorization.k8s.io
+    kind: Role
+    name: codefresh-role
+  subjects:
+  - kind: ServiceAccount
+    name: codefresh-runtime-user
+    namespace: '{{ .Release.Namespace }}'
+- apiVersion: v1
+  kind: Secret
+  metadata:
+    name: codefresh-runtime-user-token
+    namespace: '{{ .Release.Namespace }}'
+    annotations:
+      kubernetes.io/service-account.name: codefresh-runtime-user
+  type: kubernetes.io/service-account-token
+```
+
+- Set up the following environment variables to create a `KUBECONFIG` file
+
+```shell
+NAMESPACE=cf-runtime
+CLUSTER_NAME=prod-ue1-some-cluster-name
+CURRENT_CONTEXT=$(kubectl config current-context)
+
+USER_TOKEN_VALUE=$(kubectl -n cf-runtime get secret/codefresh-runtime-user-token -o=go-template='{{.data.token}}' | base64 --decode)
+CURRENT_CLUSTER=$(kubectl config view --raw -o=go-template='{{range .contexts}}{{if eq .name "'''${CURRENT_CONTEXT}'''"}}{{ index .context "cluster" }}{{end}}{{end}}')
+CLUSTER_CA=$(kubectl config view --raw -o=go-template='{{range .clusters}}{{if eq .name "'''${CURRENT_CLUSTER}'''"}}"{{with index .cluster "certificate-authority-data" }}{{.}}{{end}}"{{ end }}{{ end }}')
+CLUSTER_SERVER=$(kubectl config view --raw -o=go-template='{{range .clusters}}{{if eq .name "'''${CURRENT_CLUSTER}'''"}}{{ .cluster.server }}{{end}}{{ end }}')
+
+export -p USER_TOKEN_VALUE CURRENT_CONTEXT CURRENT_CLUSTER CLUSTER_CA CLUSTER_SERVER CLUSTER_NAME
+```
+
+- Create a kubeconfig file
+
+```console
+cat << EOF > $CLUSTER_NAME-kubeconfig
+apiVersion: v1
+kind: Config
+current-context: ${CLUSTER_NAME}
+contexts:
+- name: ${CLUSTER_NAME}
+  context:
+    cluster: ${CLUSTER_NAME}
+    user: codefresh-runtime-user
+    namespace: ${NAMESPACE}
+clusters:
+- name: ${CLUSTER_NAME}
+  cluster:
+    certificate-authority-data: ${CLUSTER_CA}
+    server: ${CLUSTER_SERVER}
+users:
+- name: ${CLUSTER_NAME}
+  user:
+    token: ${USER_TOKEN_VALUE}
+EOF
+```
+
+- **Switch context to On-Premises control-plane cluster**. Create k8s secret (via any tool like [ESO](https://external-secrets.io/v0.4.4/), `kubectl`, etc ) containing runtime cluster's `KUBECONFG` created in previous step.
+
+```shell
+NAMESPACE=codefresh
+kubectl create secret generic dind-runtime-clusters --from-file=$CLUSTER_NAME=$CLUSTER_NAME-kubeconfig -n $NAMESPACE
+```
+
+- Mount secret containing runtime cluster's `KUBECONFG` into cf-api in On-Premises control-plane cluster
+
+> `values.yaml` for [Codefresh On-Premises](https://artifacthub.io/packages/helm/codefresh-onprem/codefresh) helm chart
+```yaml
+cf-api:
+  ...
+  volumes:
+    dind-clusters:
+      enabled: true
+      type: secret
+      nameOverride: dind-runtime-clusters
+      optional: true
+```
+> volumeMount `/etc/kubeconfig` is already configured in cf-api Helm chart template. No need to specify it.
+
+- Set the following values for Runner helm chart
+
+> `values.yaml` for [Codefresh Runner](https://artifacthub.io/packages/helm/codefresh-runner/cf-runtime) helm chart
+
+`.Values.global.codefreshHost=...` \
+`.Values.global.codefreshToken=...` \
+`.Values.global.runtimeName=system/...` \
+`.Values.runtime.agent=false` \
+`.Values.runtime.inCluster=false`
+
+**Important!**
+`.Values.global.name` ("system/" prefix is ignored!) should match the cluster name (key in `dind-runtime-clusters` secret created previously)
+```yaml
+global:
+  # -- URL of Codefresh On-Premises Platform
+  codefreshHost: "https://myonprem.somedomain.com"
+  # -- User token in plain text with Admin permission scope
+  codefreshToken: ""
+  # -- User token that references an existing secret containing API key.
+  codefreshTokenSecretKeyRef: {}
+  # E.g.
+  # codefreshTokenSecretKeyRef:
+  #   name: my-codefresh-api-token
+  #   key: codefresh-api-token
+
+  # -- Distinguished runtime name
+  # (for On-Premise only; mandatory!) Must be prefixed with "system/..."
+  name: "system/prod-ue1-some-cluster-name"
+
+# -- Set runtime parameters
+runtime:
+  # -- (for On-Premise only; mandatory!) Disable agent
+  agent: false
+  # -- (for On-Premise only; optional) Set inCluster runtime (default: `true`)
+  # `inCluster=true` flag is set when Runtime and On-Premises control-plane are run on the same cluster
+  # `inCluster=false` flag is set when Runtime and On-Premises control-plane are on different clusters
+  inCluster: false
+  # -- (for On-Premise only; optional) Assign accounts to runtime (list of account ids; default is empty)
+  # Accounts can be assigned to the runtime in Codefresh UI later so you can kepp it empty.
+  accounts: []
+  # -- (optional) Set parent runtime to inherit.
+  runtimeExtends: []
+```
+
+- Install the chart
+
+```console
+helm upgrade --install cf-runtime oci://quay.io/codefresh/cf-runtime -f values.yaml --create-namespace --namespace cf-runtime
+```
+
+- Verify the runtime and run test pipeline
+
+Go to [https://<YOUR_ONPREM_DOMAIN_HERE>/admin/runtime-environments/system](https://<YOUR_ONPREM_DOMAIN_HERE>/admin/runtime-environments/system) to see the runtime. Assign it to the required account(s).
+
+## Requirements
+
+| Repository | Name | Version |
+|------------|------|---------|
+| oci://quay.io/codefresh/charts | cf-common | 0.21.0 |
+
+## Values
+
+| Key | Type | Default | Description |
+|-----|------|---------|-------------|
+| appProxy.affinity | object | `{}` | Set affinity |
+| appProxy.enabled | bool | `false` | Enable app-proxy |
+| appProxy.env | object | `{}` | Add additional env vars |
+| appProxy.image | object | `{"digest":"sha256:cc5054ec572a33bb3545cb065c2082ecf988113efffe8235e57ed93d27b861a6","registry":"quay.io","repository":"codefresh/cf-app-proxy","tag":"0.0.50"}` | Set image |
+| appProxy.ingress.annotations | object | `{}` | Set extra annotations for ingress object |
+| appProxy.ingress.class | string | `""` | Set ingress class |
+| appProxy.ingress.host | string | `""` | Set DNS hostname the ingress will use |
+| appProxy.ingress.pathPrefix | string | `""` | Set path prefix for ingress (keep empty for default `/` path) |
+| appProxy.ingress.tlsSecret | string | `""` | Set k8s tls secret for the ingress object |
+| appProxy.nodeSelector | object | `{}` | Set node selector |
+| appProxy.podAnnotations | object | `{}` | Set pod annotations |
+| appProxy.podSecurityContext | object | `{}` | Set security context for the pod |
+| appProxy.rbac | object | `{"create":true,"namespaced":true,"rules":[]}` | RBAC parameters |
+| appProxy.rbac.create | bool | `true` | Create RBAC resources |
+| appProxy.rbac.namespaced | bool | `true` | Use Role(true)/ClusterRole(true) |
+| appProxy.rbac.rules | list | `[]` | Add custom rule to the role |
+| appProxy.readinessProbe | object | See below | Readiness probe configuration |
+| appProxy.replicasCount | int | `1` | Set number of pods |
+| appProxy.resources | object | `{}` | Set requests and limits |
+| appProxy.serviceAccount | object | `{"annotations":{},"create":true,"name":"","namespaced":true}` | Service Account parameters |
+| appProxy.serviceAccount.annotations | object | `{}` | Additional service account annotations |
+| appProxy.serviceAccount.create | bool | `true` | Create service account |
+| appProxy.serviceAccount.name | string | `""` | Override service account name |
+| appProxy.serviceAccount.namespaced | bool | `true` | Use Role(true)/ClusterRole(true) |
+| appProxy.tolerations | list | `[]` | Set tolerations |
+| appProxy.updateStrategy | object | `{"type":"RollingUpdate"}` | Upgrade strategy |
+| dockerRegistry | string | `""` |  |
+| event-exporter | object | See below | Event exporter parameters |
+| event-exporter.affinity | object | `{}` | Set affinity |
+| event-exporter.enabled | bool | `false` | Enable event-exporter |
+| event-exporter.env | object | `{}` | Add additional env vars |
+| event-exporter.image | object | `{"digest":"sha256:cf52048f1378fb6659dffd1394d68fdf23a7ea709585dc14b5007f3e5a1b7584","registry":"docker.io","repository":"codefresh/k8s-event-exporter","tag":"latest"}` | Set image |
+| event-exporter.nodeSelector | object | `{}` | Set node selector |
+| event-exporter.podAnnotations | object | `{}` | Set pod annotations |
+| event-exporter.podSecurityContext | object | See below | Set security context for the pod |
+| event-exporter.rbac | object | `{"create":true,"rules":[]}` | RBAC parameters |
+| event-exporter.rbac.create | bool | `true` | Create RBAC resources |
+| event-exporter.rbac.rules | list | `[]` | Add custom rule to the role |
+| event-exporter.replicasCount | int | `1` | Set number of pods |
+| event-exporter.resources | object | `{}` | Set resources |
+| event-exporter.serviceAccount | object | `{"annotations":{},"create":true,"name":""}` | Service Account parameters |
+| event-exporter.serviceAccount.annotations | object | `{}` | Additional service account annotations |
+| event-exporter.serviceAccount.create | bool | `true` | Create service account |
+| event-exporter.serviceAccount.name | string | `""` | Override service account name |
+| event-exporter.tolerations | list | `[]` | Set tolerations |
+| event-exporter.updateStrategy | object | `{"type":"Recreate"}` | Upgrade strategy |
+| extraResources | list | `[]` | Array of extra objects to deploy with the release |
+| fullnameOverride | string | `""` | String to fully override cf-runtime.fullname template |
+| global | object | See below | Global parameters |
+| global.accountId | string | `""` | Account ID (required!) Can be obtained here https://g.codefresh.io/2.0/account-settings/account-information |
+| global.agentName | string | `""` | Agent Name (optional!) If omitted, the following format will be used `{{ .Values.global.context }}_{{ .Release.Namespace }}` |
+| global.agentToken | string | `""` | DEPRECATED Agent token in plain text. !!! MUST BE provided if migrating from < 6.x chart version |
+| global.agentTokenSecretKeyRef | object | `{}` | DEPRECATED Agent token that references an existing secret containing API key. !!! MUST BE provided if migrating from < 6.x chart version |
+| global.codefreshHost | string | `"https://g.codefresh.io"` | URL of Codefresh Platform (required!) |
+| global.codefreshToken | string | `""` | User token in plain text (required if `global.codefreshTokenSecretKeyRef` is omitted!) Ref: https://g.codefresh.io/user/settings (see API Keys) Minimal API key scopes: Runner-Installation(read+write), Agent(read+write), Agents(read+write) |
+| global.codefreshTokenSecretKeyRef | object | `{}` | User token that references an existing secret containing API key (required if `global.codefreshToken` is omitted!) |
+| global.context | string | `""` | K8s context name (required!) |
+| global.imagePullSecrets | list | `[]` | Global Docker registry secret names as array |
+| global.imageRegistry | string | `""` | Global Docker image registry |
+| global.runtimeName | string | `""` | Runtime name (optional!) If omitted, the following format will be used `{{ .Values.global.context }}/{{ .Release.Namespace }}` |
+| monitor.affinity | object | `{}` | Set affinity |
+| monitor.enabled | bool | `false` | Enable monitor Ref: https://codefresh.io/docs/docs/installation/codefresh-runner/#install-monitoring-component |
+| monitor.env | object | `{}` | Add additional env vars |
+| monitor.image | object | `{"digest":"sha256:3cc7b3d41f841604133197a44f016db499f3e91e26448da36ce739a0b1171d05","registry":"quay.io","repository":"codefresh/cf-k8s-agent","tag":"1.3.21"}` | Set image |
+| monitor.nodeSelector | object | `{}` | Set node selector |
+| monitor.podAnnotations | object | `{}` | Set pod annotations |
+| monitor.podSecurityContext | object | `{}` |  |
+| monitor.rbac | object | `{"create":true,"namespaced":true,"rules":[]}` | RBAC parameters |
+| monitor.rbac.create | bool | `true` | Create RBAC resources |
+| monitor.rbac.namespaced | bool | `true` | Use Role(true)/ClusterRole(true) |
+| monitor.rbac.rules | list | `[]` | Add custom rule to the role |
+| monitor.readinessProbe | object | See below | Readiness probe configuration |
+| monitor.replicasCount | int | `1` | Set number of pods |
+| monitor.resources | object | `{}` | Set resources |
+| monitor.serviceAccount | object | `{"annotations":{},"create":true,"name":""}` | Service Account parameters |
+| monitor.serviceAccount.annotations | object | `{}` | Additional service account annotations |
+| monitor.serviceAccount.create | bool | `true` | Create service account |
+| monitor.serviceAccount.name | string | `""` | Override service account name |
+| monitor.tolerations | list | `[]` | Set tolerations |
+| monitor.updateStrategy | object | `{"type":"RollingUpdate"}` | Upgrade strategy |
+| nameOverride | string | `""` | String to partially override cf-runtime.fullname template (will maintain the release name) |
+| podMonitor | object | See below | Add podMonitor (for engine pods) |
+| podMonitor.main.enabled | bool | `false` | Enable pod monitor for engine pods |
+| podMonitor.runner.enabled | bool | `false` | Enable pod monitor for runner pod |
+| podMonitor.volume-provisioner.enabled | bool | `false` | Enable pod monitor for volumeProvisioner pod |
+| re | object | `{}` |  |
+| runner | object | See below | Runner parameters |
+| runner.affinity | object | `{}` | Set affinity |
+| runner.enabled | bool | `true` | Enable the runner |
+| runner.env | object | `{}` | Add additional env vars |
+| runner.image | object | `{"digest":"sha256:bcc6e7495186f1f9c3e885afa891a3bda11b5374a577f069f34ddc75142342ef","registry":"quay.io","repository":"codefresh/venona","tag":"2.0.0"}` | Set image |
+| runner.init | object | `{"image":{"digest":"sha256:b256d150ff8a636851ddc1d5fb0490114d5036cc5bff357eac6a9899fea87562","registry":"quay.io","repository":"codefresh/cli","tag":"0.88.4-rootless"},"resources":{"limits":{"cpu":"1","memory":"512Mi"},"requests":{"cpu":"0.2","memory":"256Mi"}}}` | Init container |
+| runner.nodeSelector | object | `{}` | Set node selector |
+| runner.podAnnotations | object | `{}` | Set pod annotations |
+| runner.podSecurityContext | object | See below | Set security context for the pod |
+| runner.rbac | object | `{"create":true,"rules":[]}` | RBAC parameters |
+| runner.rbac.create | bool | `true` | Create RBAC resources |
+| runner.rbac.rules | list | `[]` | Add custom rule to the role |
+| runner.readinessProbe | object | See below | Readiness probe configuration |
+| runner.replicasCount | int | `1` | Set number of pods |
+| runner.resources | object | `{}` | Set requests and limits |
+| runner.serviceAccount | object | `{"annotations":{},"create":true,"name":""}` | Service Account parameters |
+| runner.serviceAccount.annotations | object | `{}` | Additional service account annotations |
+| runner.serviceAccount.create | bool | `true` | Create service account |
+| runner.serviceAccount.name | string | `""` | Override service account name |
+| runner.sidecar | object | `{"enabled":false,"env":{"RECONCILE_INTERVAL":300},"image":{"digest":"sha256:a30a8810dde249d0198f67792ed9696363f15c8cecbac955ee9bd267b5454ee7","registry":"quay.io","repository":"codefresh/kubectl","tag":"1.31.2"},"resources":{}}` | Sidecar container Reconciles runtime spec from Codefresh API for drift detection |
+| runner.tolerations | list | `[]` | Set tolerations |
+| runner.updateStrategy | object | `{"type":"RollingUpdate"}` | Upgrade strategy |
+| runtime | object | See below | Set runtime parameters |
+| runtime.accounts | list | `[]` | (for On-Premise only) Assign accounts to runtime (list of account ids) |
+| runtime.agent | bool | `true` | (for On-Premise only) Enable agent |
+| runtime.description | string | `""` | Runtime description |
+| runtime.dind | object | `{"affinity":{},"containerSecurityContext":{},"env":{"DOCKER_ENABLE_DEPRECATED_PULL_SCHEMA_1_IMAGE":true},"image":{"digest":"sha256:33c343dd01e8a24f0b4a872bbe62884320719f9d9dc27b7a8fed9f7e9fc7e80e","pullPolicy":"IfNotPresent","registry":"quay.io","repository":"codefresh/dind","tag":"26.1.4-1.28.8"},"nodeSelector":{},"podAnnotations":{},"podLabels":{},"podSecurityContext":{},"pvcs":{"dind":{"annotations":{},"name":"dind","reuseVolumeSelector":"codefresh-app,io.codefresh.accountName","reuseVolumeSortOrder":"pipeline_id","storageClassName":"{{ include \"dind-volume-provisioner.storageClassName\" . }}","volumeSize":"16Gi"}},"resources":{"limits":{"cpu":"400m","memory":"800Mi"},"requests":null},"schedulerName":"","serviceAccount":"codefresh-engine","terminationGracePeriodSeconds":30,"tolerations":[],"userAccess":true,"userVolumeMounts":{},"userVolumes":{},"volumePermissions":{"enabled":false,"image":{"digest":"sha256:de0eb0b3f2a47ba1eb89389859a9bd88b28e82f5826b6969ad604979713c2d4f","registry":"docker.io","repository":"alpine","tag":3.18},"resources":{},"securityContext":{"runAsUser":0}}}` | Parameters for DinD (docker-in-docker) pod (aka "runtime" pod). |
+| runtime.dind.affinity | object | `{}` | Set affinity |
+| runtime.dind.containerSecurityContext | object | `{}` | Set container security context. |
+| runtime.dind.env | object | `{"DOCKER_ENABLE_DEPRECATED_PULL_SCHEMA_1_IMAGE":true}` | Set additional env vars. |
+| runtime.dind.image | object | `{"digest":"sha256:33c343dd01e8a24f0b4a872bbe62884320719f9d9dc27b7a8fed9f7e9fc7e80e","pullPolicy":"IfNotPresent","registry":"quay.io","repository":"codefresh/dind","tag":"26.1.4-1.28.8"}` | Set dind image. |
+| runtime.dind.nodeSelector | object | `{}` | Set node selector. |
+| runtime.dind.podAnnotations | object | `{}` | Set pod annotations. |
+| runtime.dind.podLabels | object | `{}` | Set pod labels. |
+| runtime.dind.podSecurityContext | object | `{}` | Set security context for the pod. |
+| runtime.dind.pvcs | object | `{"dind":{"annotations":{},"name":"dind","reuseVolumeSelector":"codefresh-app,io.codefresh.accountName","reuseVolumeSortOrder":"pipeline_id","storageClassName":"{{ include \"dind-volume-provisioner.storageClassName\" . }}","volumeSize":"16Gi"}}` | PV claim spec parametes. |
+| runtime.dind.pvcs.dind | object | `{"annotations":{},"name":"dind","reuseVolumeSelector":"codefresh-app,io.codefresh.accountName","reuseVolumeSortOrder":"pipeline_id","storageClassName":"{{ include \"dind-volume-provisioner.storageClassName\" . }}","volumeSize":"16Gi"}` | Default dind PVC parameters |
+| runtime.dind.pvcs.dind.annotations | object | `{}` | PV annotations. |
+| runtime.dind.pvcs.dind.name | string | `"dind"` | PVC name prefix. Keep `dind` as default! Don't change! |
+| runtime.dind.pvcs.dind.reuseVolumeSelector | string | `"codefresh-app,io.codefresh.accountName"` | PV reuse selector. Ref: https://codefresh.io/docs/docs/installation/codefresh-runner/#volume-reuse-policy |
+| runtime.dind.pvcs.dind.storageClassName | string | `"{{ include \"dind-volume-provisioner.storageClassName\" . }}"` | PVC storage class name. Change ONLY if you need to use storage class NOT from Codefresh volume-provisioner |
+| runtime.dind.pvcs.dind.volumeSize | string | `"16Gi"` | PVC size. |
+| runtime.dind.resources | object | `{"limits":{"cpu":"400m","memory":"800Mi"},"requests":null}` | Set dind resources. |
+| runtime.dind.schedulerName | string | `""` | Set scheduler name. |
+| runtime.dind.serviceAccount | string | `"codefresh-engine"` | Set service account for pod. |
+| runtime.dind.terminationGracePeriodSeconds | int | `30` | Set termination grace period. |
+| runtime.dind.tolerations | list | `[]` | Set tolerations. |
+| runtime.dind.userAccess | bool | `true` | Keep `true` as default! |
+| runtime.dind.userVolumeMounts | object | `{}` | Add extra volume mounts |
+| runtime.dind.userVolumes | object | `{}` | Add extra volumes |
+| runtime.dindDaemon | object | See below | DinD pod daemon config |
+| runtime.engine | object | `{"affinity":{},"command":["npm","run","start"],"env":{"CONTAINER_LOGGER_EXEC_CHECK_INTERVAL_MS":1000,"DOCKER_REQUEST_TIMEOUT_MS":30000,"FORCE_COMPOSE_SERIAL_PULL":false,"LOGGER_LEVEL":"debug","LOG_OUTGOING_HTTP_REQUESTS":false,"METRICS_PROMETHEUS_COLLECT_PROCESS_METRICS":false,"METRICS_PROMETHEUS_ENABLED":true,"METRICS_PROMETHEUS_ENABLE_LEGACY_METRICS":false,"METRICS_PROMETHEUS_HOST":"0.0.0.0","METRICS_PROMETHEUS_PORT":9100,"METRICS_PROMETHEUS_SCRAPE_TIMEOUT":"15000","TRUSTED_QEMU_IMAGES":""},"image":{"digest":"sha256:cfb0ece760033f95f37a40ca17614d91c928b4018705ad46fd39392daf578bc6","pullPolicy":"IfNotPresent","registry":"quay.io","repository":"codefresh/engine","tag":"1.177.4"},"nodeSelector":{},"podAnnotations":{},"podLabels":{},"resources":{"limits":{"cpu":"1000m","memory":"2048Mi"},"requests":{"cpu":"100m","memory":"128Mi"}},"runtimeImages":{"COMPOSE_IMAGE":"quay.io/codefresh/compose:v2.32.2-1.5.2@sha256:9177054614f6db006a3500d2b9b8d2cafac4073ce891929d93e117714fccbd4b","CONTAINER_LOGGER_IMAGE":"quay.io/codefresh/cf-container-logger:1.12.2@sha256:b3cbe2088f8fd0c48a0fa6df6c9ab8ad9d1d3c840a57f2c89520a655e2a8c116","COSIGN_IMAGE_SIGNER_IMAGE":"quay.io/codefresh/cf-cosign-image-signer:2.4.0-cf.2@sha256:5e0993207aa809c25ed70cf89af444d9720892fb4a29deb82db45618b0cae4a9","CR_6177_FIXER":"alpine:edge@sha256:115729ec5cb049ba6359c3ab005ac742012d92bbaa5b8bc1a878f1e8f62c0cb8","DOCKER_BUILDER_IMAGE":"quay.io/codefresh/cf-docker-builder:1.4.2@sha256:8df63d741e7997902fa2ee7a0c68b3c3fd9003429bb093a3a9563b2cd2ec219c","DOCKER_PULLER_IMAGE":"quay.io/codefresh/cf-docker-puller:8.0.18@sha256:1a15c3ae0952d3986de7866a3def8ac7e3e39f668fe87fd46c63d886ca06c6d7","DOCKER_PUSHER_IMAGE":"quay.io/codefresh/cf-docker-pusher:6.0.16@sha256:05efc1af8b1196f1b9b3f0781b4dcc1aa2cdd0ffc1347ee5fa81b16d029ec5c2","DOCKER_TAG_PUSHER_IMAGE":"quay.io/codefresh/cf-docker-tag-pusher:1.3.15@sha256:3a3e90cd10801c7ec0d3cf3816d0dcc90894d5d1771448c43f67215d90da5eca","FS_OPS_IMAGE":"quay.io/codefresh/fs-ops:1.2.8@sha256:dc05888d84a959787a738caef914f83aa7392ff49c16767e612a29e180826f35","GC_BUILDER_IMAGE":"quay.io/codefresh/cf-gc-builder:0.5.3@sha256:33ac914e6b844909f188a208cf90e569358cafa5aaa60f49848f49d99bcaf875","GIT_CLONE_IMAGE":"quay.io/codefresh/cf-git-cloner:10.2.0@sha256:a3ec854823f17d0fd817d978219122e644b1abd6db778fd835688fcb6d88c515","KUBE_DEPLOY":"quay.io/codefresh/cf-deploy-kubernetes:16.1.11@sha256:b6b3fc6cc5fad3ba9e36055278ce99a74a86876be116574503c6fbb4c1b4aa76","PIPELINE_DEBUGGER_IMAGE":"quay.io/codefresh/cf-debugger:1.3.7@sha256:3391822b7ad9835cc2a3a0ce5aaa55774ca110a8682d9512205dea24f438718a","TEMPLATE_ENGINE":"quay.io/codefresh/pikolo:0.14.2@sha256:97874aefc46b58caf5b9d0edcfd2d6742db247e671424433363a1367020a8a65"},"schedulerName":"","serviceAccount":"codefresh-engine","terminationGracePeriodSeconds":180,"tolerations":[],"userEnvVars":[],"workflowLimits":{"MAXIMUM_ALLOWED_TIME_BEFORE_PRE_STEPS_SUCCESS":600,"MAXIMUM_ALLOWED_WORKFLOW_AGE_BEFORE_TERMINATION":86400,"MAXIMUM_ELECTED_STATE_AGE_ALLOWED":900,"MAXIMUM_RETRY_ATTEMPTS_ALLOWED":20,"MAXIMUM_TERMINATING_STATE_AGE_ALLOWED":900,"MAXIMUM_TERMINATING_STATE_AGE_ALLOWED_WITHOUT_UPDATE":300,"TIME_ENGINE_INACTIVE_UNTIL_TERMINATION":300,"TIME_ENGINE_INACTIVE_UNTIL_UNHEALTHY":60,"TIME_INACTIVE_UNTIL_TERMINATION":2700}}` | Parameters for Engine pod (aka "pipeline" orchestrator). |
+| runtime.engine.affinity | object | `{}` | Set affinity |
+| runtime.engine.command | list | `["npm","run","start"]` | Set container command. |
+| runtime.engine.env | object | `{"CONTAINER_LOGGER_EXEC_CHECK_INTERVAL_MS":1000,"DOCKER_REQUEST_TIMEOUT_MS":30000,"FORCE_COMPOSE_SERIAL_PULL":false,"LOGGER_LEVEL":"debug","LOG_OUTGOING_HTTP_REQUESTS":false,"METRICS_PROMETHEUS_COLLECT_PROCESS_METRICS":false,"METRICS_PROMETHEUS_ENABLED":true,"METRICS_PROMETHEUS_ENABLE_LEGACY_METRICS":false,"METRICS_PROMETHEUS_HOST":"0.0.0.0","METRICS_PROMETHEUS_PORT":9100,"METRICS_PROMETHEUS_SCRAPE_TIMEOUT":"15000","TRUSTED_QEMU_IMAGES":""}` | Set additional env vars. |
+| runtime.engine.env.CONTAINER_LOGGER_EXEC_CHECK_INTERVAL_MS | int | `1000` | Interval to check the exec status in the container-logger |
+| runtime.engine.env.DOCKER_REQUEST_TIMEOUT_MS | int | `30000` | Timeout while doing requests to the Docker daemon |
+| runtime.engine.env.FORCE_COMPOSE_SERIAL_PULL | bool | `false` | If "true", composition images will be pulled sequentially |
+| runtime.engine.env.LOGGER_LEVEL | string | `"debug"` | Level of logging for engine |
+| runtime.engine.env.LOG_OUTGOING_HTTP_REQUESTS | bool | `false` | Enable debug-level logging of outgoing HTTP/HTTPS requests |
+| runtime.engine.env.METRICS_PROMETHEUS_COLLECT_PROCESS_METRICS | bool | `false` | Enable collecting process metrics |
+| runtime.engine.env.METRICS_PROMETHEUS_ENABLED | bool | `true` | Enable emitting metrics from engine |
+| runtime.engine.env.METRICS_PROMETHEUS_ENABLE_LEGACY_METRICS | bool | `false` | Enable legacy metrics |
+| runtime.engine.env.METRICS_PROMETHEUS_HOST | string | `"0.0.0.0"` | Host for Prometheus metrics server |
+| runtime.engine.env.METRICS_PROMETHEUS_PORT | int | `9100` | Port for Prometheus metrics server |
+| runtime.engine.env.METRICS_PROMETHEUS_SCRAPE_TIMEOUT | string | `"15000"` | The timeout till the engine waits for Prometheus to pull the latest metrics before engine shuts down (in milliseconds) |
+| runtime.engine.env.TRUSTED_QEMU_IMAGES | string | `""` | Trusted QEMU images used for docker builds - when left blank only 'tonistiigi/binfmt' is trusted. |
+| runtime.engine.image | object | `{"digest":"sha256:cfb0ece760033f95f37a40ca17614d91c928b4018705ad46fd39392daf578bc6","pullPolicy":"IfNotPresent","registry":"quay.io","repository":"codefresh/engine","tag":"1.177.4"}` | Set image. |
+| runtime.engine.nodeSelector | object | `{}` | Set node selector. |
+| runtime.engine.podAnnotations | object | `{}` | Set pod annotations. |
+| runtime.engine.podLabels | object | `{}` | Set pod labels. |
+| runtime.engine.resources | object | `{"limits":{"cpu":"1000m","memory":"2048Mi"},"requests":{"cpu":"100m","memory":"128Mi"}}` | Set resources. |
+| runtime.engine.runtimeImages | object | See below. | Set system(base) runtime images. |
+| runtime.engine.schedulerName | string | `""` | Set scheduler name. |
+| runtime.engine.serviceAccount | string | `"codefresh-engine"` | Set service account for pod. |
+| runtime.engine.terminationGracePeriodSeconds | int | `180` | Set termination grace period. |
+| runtime.engine.tolerations | list | `[]` | Set tolerations. |
+| runtime.engine.userEnvVars | list | `[]` | Set extra env vars |
+| runtime.engine.workflowLimits | object | `{"MAXIMUM_ALLOWED_TIME_BEFORE_PRE_STEPS_SUCCESS":600,"MAXIMUM_ALLOWED_WORKFLOW_AGE_BEFORE_TERMINATION":86400,"MAXIMUM_ELECTED_STATE_AGE_ALLOWED":900,"MAXIMUM_RETRY_ATTEMPTS_ALLOWED":20,"MAXIMUM_TERMINATING_STATE_AGE_ALLOWED":900,"MAXIMUM_TERMINATING_STATE_AGE_ALLOWED_WITHOUT_UPDATE":300,"TIME_ENGINE_INACTIVE_UNTIL_TERMINATION":300,"TIME_ENGINE_INACTIVE_UNTIL_UNHEALTHY":60,"TIME_INACTIVE_UNTIL_TERMINATION":2700}` | Set workflow limits. |
+| runtime.engine.workflowLimits.MAXIMUM_ALLOWED_TIME_BEFORE_PRE_STEPS_SUCCESS | int | `600` | Maximum time allowed to the engine to wait for the pre-steps (aka "Initializing Process") to succeed; seconds. |
+| runtime.engine.workflowLimits.MAXIMUM_ALLOWED_WORKFLOW_AGE_BEFORE_TERMINATION | int | `86400` | Maximum time for workflow execution; seconds. |
+| runtime.engine.workflowLimits.MAXIMUM_ELECTED_STATE_AGE_ALLOWED | int | `900` | Maximum time allowed to workflow to spend in "elected" state; seconds. |
+| runtime.engine.workflowLimits.MAXIMUM_RETRY_ATTEMPTS_ALLOWED | int | `20` | Maximum retry attempts allowed for workflow. |
+| runtime.engine.workflowLimits.MAXIMUM_TERMINATING_STATE_AGE_ALLOWED | int | `900` | Maximum time allowed to workflow to spend in "terminating" state until force terminated; seconds. |
+| runtime.engine.workflowLimits.MAXIMUM_TERMINATING_STATE_AGE_ALLOWED_WITHOUT_UPDATE | int | `300` | Maximum time allowed to workflow to spend in "terminating" state without logs activity until force terminated; seconds. |
+| runtime.engine.workflowLimits.TIME_ENGINE_INACTIVE_UNTIL_TERMINATION | int | `300` | Time since the last health check report after which workflow is terminated; seconds. |
+| runtime.engine.workflowLimits.TIME_ENGINE_INACTIVE_UNTIL_UNHEALTHY | int | `60` | Time since the last health check report after which the engine is considered unhealthy; seconds. |
+| runtime.engine.workflowLimits.TIME_INACTIVE_UNTIL_TERMINATION | int | `2700` | Time since the last workflow logs activity after which workflow is terminated; seconds. |
+| runtime.gencerts | object | See below | Parameters for `gencerts-dind` post-upgrade/install hook |
+| runtime.inCluster | bool | `true` | (for On-Premise only) Set inCluster runtime |
+| runtime.patch | object | See below | Parameters for `runtime-patch` post-upgrade/install hook |
+| runtime.rbac | object | `{"create":true,"rules":[]}` | RBAC parameters |
+| runtime.rbac.create | bool | `true` | Create RBAC resources |
+| runtime.rbac.rules | list | `[]` | Add custom rule to the engine role |
+| runtime.runtimeExtends | list | `["system/default/hybrid/k8s_low_limits"]` | Set parent runtime to inherit. Should not be changes. Parent runtime is controlled from Codefresh side. |
+| runtime.serviceAccount | object | `{"annotations":{},"create":true}` | Set annotation on engine Service Account Ref: https://codefresh.io/docs/docs/administration/codefresh-runner/#injecting-aws-arn-roles-into-the-cluster |
+| serviceMonitor | object | See below | Add serviceMonitor |
+| serviceMonitor.main.enabled | bool | `false` | Enable service monitor for dind pods |
+| storage.azuredisk.cachingMode | string | `"None"` |  |
+| storage.azuredisk.skuName | string | `"Premium_LRS"` | Set storage type (`Premium_LRS`) |
+| storage.backend | string | `"local"` | Set backend volume type (`local`/`ebs`/`ebs-csi`/`gcedisk`/`azuredisk`) |
+| storage.ebs.accessKeyId | string | `""` | Set AWS_ACCESS_KEY_ID for volume-provisioner (optional) Ref: https://codefresh.io/docs/docs/installation/codefresh-runner/#dind-volume-provisioner-permissions |
+| storage.ebs.accessKeyIdSecretKeyRef | object | `{}` | Existing secret containing AWS_ACCESS_KEY_ID. |
+| storage.ebs.availabilityZone | string | `"us-east-1a"` | Set EBS volumes availability zone (required) |
+| storage.ebs.encrypted | string | `"false"` | Enable encryption (optional) |
+| storage.ebs.kmsKeyId | string | `""` | Set KMS encryption key ID (optional) |
+| storage.ebs.secretAccessKey | string | `""` | Set AWS_SECRET_ACCESS_KEY for volume-provisioner (optional) Ref: https://codefresh.io/docs/docs/installation/codefresh-runner/#dind-volume-provisioner-permissions |
+| storage.ebs.secretAccessKeySecretKeyRef | object | `{}` | Existing secret containing AWS_SECRET_ACCESS_KEY |
+| storage.ebs.volumeType | string | `"gp2"` | Set EBS volume type (`gp2`/`gp3`/`io1`) (required) |
+| storage.fsType | string | `"ext4"` | Set filesystem type (`ext4`/`xfs`) |
+| storage.gcedisk.availabilityZone | string | `"us-west1-a"` | Set GCP volume availability zone |
+| storage.gcedisk.serviceAccountJson | string | `""` | Set Google SA JSON key for volume-provisioner (optional) |
+| storage.gcedisk.serviceAccountJsonSecretKeyRef | object | `{}` | Existing secret containing containing Google SA JSON key for volume-provisioner (optional) |
+| storage.gcedisk.volumeType | string | `"pd-ssd"` | Set GCP volume backend type (`pd-ssd`/`pd-standard`) |
+| storage.local.volumeParentDir | string | `"/var/lib/codefresh/dind-volumes"` | Set volume path on the host filesystem |
+| storage.mountAzureJson | bool | `false` |  |
+| volumeProvisioner | object | See below | Volume Provisioner parameters |
+| volumeProvisioner.affinity | object | `{}` | Set affinity |
+| volumeProvisioner.dind-lv-monitor | object | See below | `dind-lv-monitor` DaemonSet parameters (local volumes cleaner) |
+| volumeProvisioner.enabled | bool | `true` | Enable volume-provisioner |
+| volumeProvisioner.env | object | `{}` | Add additional env vars |
+| volumeProvisioner.image | object | `{"digest":"sha256:ede6f663c912a08b7d335b5ec5518ccc266b27c431d0854d22971005992adc5d","registry":"quay.io","repository":"codefresh/dind-volume-provisioner","tag":"1.35.2"}` | Set image |
+| volumeProvisioner.nodeSelector | object | `{}` | Set node selector |
+| volumeProvisioner.podAnnotations | object | `{}` | Set pod annotations |
+| volumeProvisioner.podSecurityContext | object | See below | Set security context for the pod |
+| volumeProvisioner.rbac | object | `{"create":true,"rules":[]}` | RBAC parameters |
+| volumeProvisioner.rbac.create | bool | `true` | Create RBAC resources |
+| volumeProvisioner.rbac.rules | list | `[]` | Add custom rule to the role |
+| volumeProvisioner.replicasCount | int | `1` | Set number of pods |
+| volumeProvisioner.resources | object | `{}` | Set resources |
+| volumeProvisioner.serviceAccount | object | `{"annotations":{},"create":true,"name":""}` | Service Account parameters |
+| volumeProvisioner.serviceAccount.annotations | object | `{}` | Additional service account annotations |
+| volumeProvisioner.serviceAccount.create | bool | `true` | Create service account |
+| volumeProvisioner.serviceAccount.name | string | `""` | Override service account name |
+| volumeProvisioner.tolerations | list | `[]` | Set tolerations |
+| volumeProvisioner.updateStrategy | object | `{"type":"Recreate"}` | Upgrade strategy |
diff --git a/charts/codefresh/cf-runtime/7.5.5/README.md.gotmpl b/charts/codefresh/cf-runtime/7.5.5/README.md.gotmpl
new file mode 100644
index 0000000000..2238e5e0ef
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/README.md.gotmpl
@@ -0,0 +1,1071 @@
+## Codefresh Runner
+
+{{ template "chart.versionBadge" . }}{{ template "chart.typeBadge" . }}{{ template "chart.appVersionBadge" . }}
+
+Helm chart for deploying [Codefresh Runner](https://codefresh.io/docs/docs/installation/codefresh-runner/) to Kubernetes.
+
+## Table of Content
+
+- [Prerequisites](#prerequisites)
+- [Get Chart Info](#get-chart-info)
+- [Install Chart](#install-chart)
+- [Chart Configuration](#chart-configuration)
+- [Upgrade Chart](#upgrade-chart)
+  - [⚠️ Known issues](#⚠️-known-issues)
+  - [To 2.x](#to-2-x)
+  - [To 3.x](#to-3-x)
+  - [To 4.x](#to-4-x)
+  - [To 5.x](#to-5-x)
+  - [To 6.x](#to-6-x)
+  - [To 7.x](#to-7-x)  
+- [Architecture](#architecture)
+- [Configuration](#configuration)
+  - [EBS backend volume configuration in AWS](#ebs-backend-volume-configuration)
+  - [Azure Disks backend volume configuration in AKS](#azure-disks-backend-volume-configuration)
+  - [GCE Disks backend volume configuration in GKE](#gce-disks-backend-volume-configuration-in-gke)
+  - [Custom volume mounts](#custom-volume-mounts)
+  - [Custom global environment variables](#custom-global-environment-variables)
+  - [Volume reuse policy](#volume-reuse-policy)
+  - [Volume cleaners](#volume-cleaners)
+  - [Rootless DinD](#rootless-dind)
+  - [ARM](#arm)
+  - [Openshift](#openshift)
+  - [On-premise](#on-premise)
+
+## Prerequisites
+
+- Kubernetes **1.19+**
+- Helm **3.8.0+**
+
+⚠️⚠️⚠️
+> Since version 6.2.x chart is pushed **only** to OCI registry at `oci://quay.io/codefresh/cf-runtime`
+
+> Versions prior to 6.2.x are still available in ChartMuseum at `http://chartmuseum.codefresh.io/cf-runtime`
+
+## Get Chart Info
+
+```console
+helm show all oci://quay.io/codefresh/cf-runtime
+```
+See [Use OCI-based registries](https://helm.sh/docs/topics/registries/)
+
+## Install Chart
+
+**Important:** only helm3 is supported
+
+- Specify the following mandatory values
+
+`values.yaml`
+```yaml
+# -- Global parameters
+# @default -- See below
+global:
+  # -- User token in plain text (required if `global.codefreshTokenSecretKeyRef` is omitted!)
+  # Ref: https://g.codefresh.io/user/settings (see API Keys)
+  # Minimal API key scopes: Runner-Installation(read+write), Agent(read+write), Agents(read+write)
+  codefreshToken: ""
+  # -- User token that references an existing secret containing API key (required if `global.codefreshToken` is omitted!)
+  codefreshTokenSecretKeyRef: {}
+  # E.g.
+  # codefreshTokenSecretKeyRef:
+  #   name: my-codefresh-api-token
+  #   key: codefresh-api-token
+
+  # -- Account ID (required!)
+  # Can be obtained here https://g.codefresh.io/2.0/account-settings/account-information
+  accountId: ""
+
+  # -- K8s context name (required!)
+  context: ""
+  # E.g.
+  # context: prod-ue1-runtime-1
+
+  # -- Agent Name (optional!)
+  # If omitted, the following format will be used '{{ `{{ .Values.global.context }}_{{ .Release.Namespace }}` }}'
+  agentName: ""
+  # E.g.
+  # agentName: prod-ue1-runtime-1
+
+  # -- Runtime name (optional!)
+  # If omitted, the following format will be used '{{ `{{ .Values.global.context }}/{{ .Release.Namespace }}` }}'
+  runtimeName: ""
+  # E.g.
+  # runtimeName: prod-ue1-runtime-1/namespace
+```
+
+- Install chart
+
+```console
+helm upgrade --install cf-runtime oci://quay.io/codefresh/cf-runtime -f values.yaml --create-namespace --namespace codefresh
+```
+
+## Chart Configuration
+
+See [Customizing the Chart Before Installing](https://helm.sh/docs/intro/using_helm/#customizing-the-chart-before-installing).
+
+## Upgrade Chart
+
+### ⚠️ Known issues
+
+Please check the following known issues before upgrading the chart:
+
+- Charts **7.1.1–7.4.3** have a bug because of which the following feature does not work: [“Secret Store — Kubernetes-Runtime Secret”](https://codefresh.io/docs/docs/integrations/secret-storage/#secret-store-setup-for-codefresh-runner-installation).
+
+### To 2.x
+
+This major release renames and deprecated several values in the chart. Most of the workload templates have been refactored.
+
+Affected values:
+- `dockerRegistry` is deprecated. Replaced with `global.imageRegistry`
+- `re` is renamed to `runtime`
+- `storage.localVolumeMonitor` is replaced with `volumeProvisioner.dind-lv-monitor`
+- `volumeProvisioner.volume-cleanup` is replaced with `volumeProvisioner.dind-volume-cleanup`
+- `image` values structure has been updated. Split to `image.registry` `image.repository` `image.tag`
+- pod's `annotations` is renamed to `podAnnotations`
+
+### To 3.x
+
+⚠️⚠️⚠️
+### READ this before the upgrade!
+
+This major release adds [runtime-environment](https://codefresh.io/docs/docs/installation/codefresh-runner/#runtime-environment-specification) spec into chart templates.
+That means it is possible to set parametes for `dind` and `engine` pods via [values.yaml](./values.yaml).
+
+**If you had any overrides (i.e. tolerations/nodeSelector/environment variables/etc) added in runtime spec via [codefresh CLI](https://codefresh-io.github.io/cli/) (for example, you did use [get](https://codefresh-io.github.io/cli/runtime-environments/get-runtime-environments/) and [patch](https://codefresh-io.github.io/cli/runtime-environments/apply-runtime-environments/) commands to modify the runtime-environment), you MUST add these into chart's [values.yaml](./values.yaml) for `.Values.runtime.dind` or(and) .`Values.runtime.engine`**
+
+**For backward compatibility, you can disable updating runtime-environment spec via** `.Values.runtime.patch.enabled=false`
+
+Affected values:
+- added **mandatory** `global.codefreshToken`/`global.codefreshTokenSecretKeyRef` **You must specify it before the upgrade!**
+- `runtime.engine` is added
+- `runtime.dind` is added
+- `global.existingAgentToken` is replaced with `global.agentTokenSecretKeyRef`
+- `global.existingDindCertsSecret` is replaced with `global.dindCertsSecretRef`
+
+### To 4.x
+
+This major release adds **agentless inCluster** runtime mode (relevant only for [Codefresh On-Premises](#on-premise) users)
+
+Affected values:
+- `runtime.agent` / `runtime.inCluster` / `runtime.accounts` / `runtime.description` are added
+
+### To 5.x
+
+This major release converts `.runtime.dind.pvcs` from **list** to **dict**
+
+> 4.x chart's values example:
+```yaml
+runtime:
+  dind:
+    pvcs:
+      - name: dind
+        storageClassName: my-storage-class-name
+        volumeSize: 32Gi
+        reuseVolumeSelector: 'codefresh-app,io.codefresh.accountName'
+        reuseVolumeSortOrder: pipeline_id
+```
+
+> 5.x chart's values example:
+```yaml
+runtime:
+  dind:
+    pvcs:
+      dind:
+        name: dind
+        storageClassName: my-storage-class-name
+        volumeSize: 32Gi
+        reuseVolumeSelector: 'codefresh-app,io.codefresh.accountName'
+        reuseVolumeSortOrder: pipeline_id
+```
+
+Affected values:
+- `.runtime.dind.pvcs` converted from **list** to **dict**
+
+### To 6.x
+
+⚠️⚠️⚠️
+### READ this before the upgrade!
+
+This major release deprecates previously required `codefresh runner init --generate-helm-values-file`.
+
+Affected values:
+- **Replaced** `.monitor.clusterId` with `.global.context` as **mandatory** value!
+- **Deprecated** `.global.agentToken` / `.global.agentTokenSecretKeyRef`
+- **Removed** `.global.agentId`
+- **Removed** `.global.keys` / `.global.dindCertsSecretRef`
+- **Removed** `.global.existingAgentToken` / `existingDindCertsSecret`
+- **Removed** `.monitor.clusterId` / `.monitor.token` / `.monitor.existingMonitorToken`
+
+#### Migrate the Helm chart from version 5.x to 6.x
+
+Given this is the legacy `generated_values.yaml` values:
+
+> legacy `generated_values.yaml`
+```yaml
+{
+    "appProxy": {
+        "enabled": false,
+    },
+    "monitor": {
+        "enabled": false,
+        "clusterId": "my-cluster-name",
+        "token": "1234567890"
+    },
+    "global": {
+        "namespace": "namespace",
+        "codefreshHost": "https://g.codefresh.io",
+        "agentToken": "0987654321",
+        "agentId": "agent-id-here",
+        "agentName": "my-cluster-name_my-namespace",
+        "accountId": "my-account-id",
+        "runtimeName": "my-cluster-name/my-namespace",
+        "codefreshToken": "1234567890",
+        "keys": {
+            "key": "-----BEGIN RSA PRIVATE KEY-----...",
+            "csr": "-----BEGIN CERTIFICATE REQUEST-----...",
+            "ca": "-----BEGIN CERTIFICATE-----...",
+            "serverCert": "-----BEGIN CERTIFICATE-----..."
+        }
+    }
+}
+```
+
+Update `values.yaml` for new chart version:
+
+> For existing installation for backward compatibility `.Values.global.agentToken/agentTokenSecretKeyRef` **must be provided!** For installation from scratch this value is no longer required.
+
+> updated `values.yaml`
+```yaml
+global:
+  codefreshToken: "1234567890"
+  accountId: "my-account-id"
+  context: "my-cluster-name"
+  agentToken: "0987654321"  # MANDATORY when migrating from < 6.x chart version !
+  agentName: "my-cluster-name_my-namespace" # optional
+  runtimeName: "my-cluster-name/my-namespace" # optional
+```
+
+> **Note!** Though it's still possible to update runtime-environment via [get](https://codefresh-io.github.io/cli/runtime-environments/get-runtime-environments/) and [patch](https://codefresh-io.github.io/cli/runtime-environments/apply-runtime-environments/) commands, it's recommended to enable sidecar container to pull runtime spec from Codefresh API to detect any drift in configuration.
+
+```yaml
+runner:
+  # -- Sidecar container
+  # Reconciles runtime spec from Codefresh API for drift detection
+  sidecar:
+    enabled: true
+```
+
+### To 7.x
+
+⚠️⚠️⚠️ **BREAKING CHANGE** ⚠️⚠️⚠️
+
+7.0.0 release adds image digests to all images in default values, for example:
+
+```yaml
+runtime:
+  engine:
+    image:
+      registry: quay.io
+      repository: codefresh/engine
+      tag: 1.174.15
+      pullPolicy: IfNotPresent
+      digest: sha256:d547c2044c1488e911ff726462cc417adf2dda731cafd736493c4de4eb9e357b
+```
+
+Which means any overrides for tags won't be used and underlying Kubernetes runtime will pull the image by the digest. 
+
+See [Pull an image by digest (immutable identifier)](https://docs.docker.com/reference/cli/docker/image/pull/#pull-an-image-by-digest-immutable-identifier)
+
+
+
+## Architecture
+
+[Codefresh Runner architecture](https://codefresh.io/docs/docs/installation/codefresh-runner/#codefresh-runner-architecture)
+
+## Configuration
+
+See [Customizing the Chart Before Installing](https://helm.sh/docs/intro/using_helm/#customizing-the-chart-before-installing).
+
+### EBS backend volume configuration
+
+`dind-volume-provisioner` should have permissions to create/attach/detach/delete/get EBS volumes
+
+Minimal IAM policy for `dind-volume-provisioner`
+
+```json
+{
+  "Version": "2012-10-17",
+  "Statement": [
+    {
+      "Effect": "Allow",
+      "Action": [
+        "ec2:AttachVolume",
+        "ec2:CreateSnapshot",
+        "ec2:CreateTags",
+        "ec2:CreateVolume",
+        "ec2:DeleteSnapshot",
+        "ec2:DeleteTags",
+        "ec2:DeleteVolume",
+        "ec2:DescribeInstances",
+        "ec2:DescribeSnapshots",
+        "ec2:DescribeTags",
+        "ec2:DescribeVolumes",
+        "ec2:DetachVolume"
+      ],
+      "Resource": "*"
+    }
+  ]
+}
+```
+
+There are three options:
+
+1. Run `dind-volume-provisioner` pod on the node/node-group with IAM role
+
+```yaml
+storage:
+  # -- Set backend volume type (`local`/`ebs`/`ebs-csi`/`gcedisk`/`azuredisk`)
+  backend: ebs-csi
+
+  ebs:
+    availabilityZone: "us-east-1a"
+
+volumeProvisioner:
+  # -- Set node selector
+  nodeSelector: {}
+  # -- Set tolerations
+  tolerations: []
+```
+
+2. Pass static credentials in `.Values.storage.ebs.accessKeyId/accessKeyIdSecretKeyRef` and `.Values.storage.ebs.secretAccessKey/secretAccessKeySecretKeyRef`
+
+```yaml
+storage:
+  # -- Set backend volume type (`local`/`ebs`/`ebs-csi`/`gcedisk`/`azuredisk`)
+  backend: ebs-csi
+
+  ebs:
+    availabilityZone: "us-east-1a"
+
+    # -- Set AWS_ACCESS_KEY_ID for volume-provisioner (optional)
+    accessKeyId: ""
+    # -- Existing secret containing AWS_ACCESS_KEY_ID.
+    accessKeyIdSecretKeyRef: {}
+    # E.g.
+    # accessKeyIdSecretKeyRef:
+    #   name:
+    #   key:
+
+    # -- Set AWS_SECRET_ACCESS_KEY for volume-provisioner (optional)
+    secretAccessKey: ""
+    # -- Existing secret containing AWS_SECRET_ACCESS_KEY
+    secretAccessKeySecretKeyRef: {}
+    # E.g.
+    # secretAccessKeySecretKeyRef:
+    #   name:
+    #   key:
+```
+
+3. Assign IAM role to `dind-volume-provisioner` service account
+
+```yaml
+storage:
+  # -- Set backend volume type (`local`/`ebs`/`ebs-csi`/`gcedisk`/`azuredisk`)
+  backend: ebs-csi
+
+  ebs:
+    availabilityZone: "us-east-1a"
+
+volumeProvisioner:
+  # -- Service Account parameters
+  serviceAccount:
+    # -- Create service account
+    create: true
+    # -- Additional service account annotations
+    annotations:
+      eks.amazonaws.com/role-arn: "arn:aws:iam::<ACCOUNT_ID>:role/<IAM_ROLE_NAME>"
+```
+
+### Custom volume mounts
+
+You can add your own volumes and volume mounts in the runtime environment, so that all pipeline steps will have access to the same set of external files.
+
+```yaml
+runtime:
+  dind:
+    userVolumes:
+      regctl-docker-registry:
+        name: regctl-docker-registry
+        secret:
+          items:
+            - key: .dockerconfigjson
+              path: config.json
+          secretName: regctl-docker-registry
+          optional: true
+    userVolumeMounts:
+      regctl-docker-registry:
+        name: regctl-docker-registry
+        mountPath: /home/appuser/.docker/
+        readOnly: true
+
+```
+
+### Azure Disks backend volume configuration
+
+`dind-volume-provisioner` should have permissions to create/delete/get Azure Disks
+
+Role definition for `dind-volume-provisioner`
+
+`dind-volume-provisioner-role.json`
+```json
+{
+  "Name": "CodefreshDindVolumeProvisioner",
+  "Description": "Perform create/delete/get disks",
+  "IsCustom": true,
+  "Actions": [
+      "Microsoft.Compute/disks/read",
+      "Microsoft.Compute/disks/write",
+      "Microsoft.Compute/disks/delete"
+
+  ],
+  "AssignableScopes": ["/subscriptions/<YOUR_SUBSCRIPTION_ID>"]
+}
+```
+
+When creating an AKS cluster in Azure there is the option to use a [managed identity](https://learn.microsoft.com/en-us/azure/aks/use-managed-identity) that is assigned to the kubelet. This identity is assigned to the underlying node pool in the AKS cluster and can then be used by the dind-volume-provisioner.
+
+```console
+export ROLE_DEFINITIN_FILE=dind-volume-provisioner-role.json
+export SUBSCRIPTION_ID=$(az account show --query "id" | xargs echo )
+export RESOURCE_GROUP=<YOUR_RESOURCE_GROUP_NAME>
+export AKS_NAME=<YOUR_AKS_NAME>
+export LOCATION=$(az aks show -g $RESOURCE_GROUP -n $AKS_NAME --query location | xargs echo)
+export NODES_RESOURCE_GROUP=MC_${RESOURCE_GROUP}_${AKS_NAME}_${LOCATION}
+export NODE_SERVICE_PRINCIPAL=$(az aks show -g $RESOURCE_GROUP -n $AKS_NAME --query identityProfile.kubeletidentity.objectId | xargs echo)
+
+az role definition create --role-definition @${ROLE_DEFINITIN_FILE}
+az role assignment create --assignee $NODE_SERVICE_PRINCIPAL --scope /subscriptions/$SUBSCRIPTION_ID/resourceGroups/$NODES_RESOURCE_GROUP --role CodefreshDindVolumeProvisioner
+```
+
+Deploy Helm chart with the following values:
+
+`values.yaml`
+```yaml
+volumeProvisioner:
+  podSecurityContext:
+    enabled: true
+    runAsUser: 0
+    runAsGroup: 0
+    fsGroup: 0
+
+storage:
+  backend: azuredisk
+  azuredisk:
+    availabilityZone: northeurope-1 # replace with your zone
+    resourceGroup: my-resource-group-name
+
+  mountAzureJson: true
+
+runtime:
+  dind:
+    nodeSelector:
+      topology.kubernetes.io/zone: northeurope-1
+```
+
+### GCE Disks backend volume configuration in GKE
+
+`dind-volume-provisioner` should have `ComputeEngine.StorageAdmin` permissions
+
+There are three options:
+
+1. Run `dind-volume-provisioner` pod on the node/node-group with IAM Service Account
+
+```yaml
+storage:
+  # -- Set backend volume type (`local`/`ebs`/`ebs-csi`/`gcedisk`/`azuredisk`)
+  backend: gcedisk
+
+  gcedisk:
+    # -- Set GCP volume backend type (`pd-ssd`/`pd-standard`)
+    volumeType: "pd-standard"
+    # -- Set GCP volume availability zone
+    availabilityZone: "us-central1-c"
+
+volumeProvisioner:
+  # -- Set node selector
+  nodeSelector: {}
+  # -- Set tolerations
+  tolerations: []
+
+# -- Set runtime parameters
+runtime:
+  # -- Parameters for DinD (docker-in-docker) pod
+  dind:
+    # -- Set node selector.
+    nodeSelector:
+      topology.kubernetes.io/zone: us-central1-c
+```
+
+2. Pass static credentials in `.Values.storage.gcedisk.serviceAccountJson` (inline) or `.Values.storage.gcedisk.serviceAccountJsonSecretKeyRef` (from your own secret)
+
+```yaml
+storage:
+  # -- Set backend volume type (`local`/`ebs`/`ebs-csi`/`gcedisk`/`azuredisk`)
+  backend: gcedisk
+
+  gcedisk:
+    # -- Set GCP volume backend type (`pd-ssd`/`pd-standard`)
+    volumeType: "`pd-standard"
+    # -- Set GCP volume availability zone
+    availabilityZone: "us-central1-c"
+    # -- Set Google SA JSON key for volume-provisioner (optional)
+    serviceAccountJson: |
+        {
+        "type": "service_account",
+        "project_id": "...",
+        "private_key_id": "...",
+        "private_key": "...",
+        "client_email": "...",
+        "client_id": "...",
+        "auth_uri": "...",
+        "token_uri": "...",
+        "auth_provider_x509_cert_url": "...",
+        "client_x509_cert_url": "..."
+        }
+    # -- Existing secret containing containing Google SA JSON key for volume-provisioner (optional)
+    serviceAccountJsonSecretKeyRef: {}
+    # E.g.:
+    # serviceAccountJsonSecretKeyRef:
+    #   name: gce-service-account
+    #   key: service-account.json
+
+# -- Set runtime parameters
+runtime:
+  # -- Parameters for DinD (docker-in-docker) pod
+  dind:
+    # -- Set node selector.
+    nodeSelector:
+      topology.kubernetes.io/zone: us-central1-c
+```
+
+3. Assign IAM role to `dind-volume-provisioner` service account
+
+```yaml
+storage:
+  # -- Set backend volume type (`local`/`ebs`/`ebs-csi`/`gcedisk`/`azuredisk`)
+  backend: gcedisk
+
+  gcedisk:
+    # -- Set GCP volume backend type (`pd-ssd`/`pd-standard`)
+    volumeType: "`pd-standard"
+    # -- Set GCP volume availability zone
+    availabilityZone: "us-central1-c"
+
+volumeProvisioner:
+  # -- Service Account parameters
+  serviceAccount:
+    # -- Create service account
+    create: true
+    # -- Additional service account annotations
+    annotations:
+      iam.gke.io/gcp-service-account: <GSA_NAME>@<PROJECT_ID>.iam.gserviceaccount.com
+
+# -- Set runtime parameters
+runtime:
+  # -- Parameters for DinD (docker-in-docker) pod
+  dind:
+    # -- Set node selector.
+    nodeSelector:
+      topology.kubernetes.io/zone: us-central1-c
+```
+
+### Custom global environment variables
+
+You can add your own environment variables to the runtime environment. All pipeline steps have access to the global variables.
+
+```yaml
+runtime:
+  engine:
+    userEnvVars:
+    - name: GITHUB_TOKEN
+      valueFrom:
+        secretKeyRef:
+          name: github-token
+          key: token
+```
+
+### Volume reuse policy
+
+Volume reuse behavior depends on the configuration for `reuseVolumeSelector` in the runtime environment spec.
+
+```yaml
+runtime:
+  dind:
+    pvcs:
+      - name: dind
+        ...
+        reuseVolumeSelector: 'codefresh-app,io.codefresh.accountName'
+        reuseVolumeSortOrder: pipeline_id
+```
+
+The following options are available:
+- `reuseVolumeSelector: 'codefresh-app,io.codefresh.accountName'` - PV can be used by ANY pipeline in the specified account (default).
+Benefit: Fewer PVs, resulting in lower costs. Since any PV can be used by any pipeline, the cluster needs to maintain/reserve fewer PVs in its PV pool for Codefresh.
+Downside: Since the PV can be used by any pipeline, the PVs could have assets and info from different pipelines, reducing the probability of cache.
+
+- `reuseVolumeSelector: 'codefresh-app,io.codefresh.accountName,project_id'` - PV can be used by ALL pipelines in your account, assigned to the same project.
+
+- `reuseVolumeSelector: 'codefresh-app,io.codefresh.accountName,pipeline_id'` - PV can be used only by a single pipeline.
+Benefit: More probability of cache without “spam” from other pipelines.
+Downside: More PVs to maintain and therefore higher costs.
+
+- `reuseVolumeSelector: 'codefresh-app,io.codefresh.accountName,pipeline_id,io.codefresh.branch_name'` - PV can be used only by single pipeline AND single branch.
+
+- `reuseVolumeSelector: 'codefresh-app,io.codefresh.accountName,pipeline_id,trigger'` - PV can be used only by single pipeline AND single trigger.
+
+### Volume cleaners
+
+Codefresh pipelines require disk space for:
+  * [Pipeline Shared Volume](https://codefresh.io/docs/docs/pipelines/introduction-to-codefresh-pipelines/#sharing-the-workspace-between-build-steps) (`/codefresh/volume`, implemented as [docker volume](https://docs.docker.com/storage/volumes/))
+  * Docker containers, both running and stopped
+  * Docker images and cached layers
+
+Codefresh offers two options to manage disk space and prevent out-of-space errors:
+* Use runtime cleaners on Docker images and volumes
+* [Set the minimum disk space per pipeline build volume](https://codefresh.io/docs/docs/pipelines/pipelines/#set-minimum-disk-space-for-a-pipeline-build)
+
+To improve performance by using Docker cache, Codefresh `volume-provisioner` can provision previously used disks with Docker images and pipeline volumes from previously run builds.
+
+### Types of runtime volume cleaners
+
+Docker images and volumes must be cleaned on a regular basis.
+
+* [IN-DIND cleaner](https://github.com/codefresh-io/dind/tree/master/cleaner): Deletes extra Docker containers, volumes, and images in **DIND pod**.
+* [External volume cleaner](https://github.com/codefresh-io/dind-volume-cleanup): Deletes unused **external** PVs (EBS, GCE/Azure disks).
+* [Local volume cleaner](https://github.com/codefresh-io/dind-volume-utils/blob/master/local-volumes/lv-cleaner.sh): Deletes **local** volumes if node disk space is close to the threshold.
+
+### IN-DIND cleaner
+
+**Purpose:** Removes unneeded *docker containers, images, volumes* inside Kubernetes volume mounted on the DIND pod
+
+**How it runs:** Inside each DIND pod as script
+
+**Triggered by:** SIGTERM and also during the run when disk usage > 90% (configurable)
+
+**Configured by:**  Environment Variables which can be set in Runtime Environment spec
+
+**Configuration/Logic:** [README.md](https://github.com/codefresh-io/dind/tree/master/cleaner#readme)
+
+Override `.Values.runtime.dind.env` if necessary (the following are **defaults**):
+
+```yaml
+runtime:
+  dind:
+    env:
+      CLEAN_PERIOD_SECONDS: '21600' # launch clean if last clean was more than CLEAN_PERIOD_SECONDS seconds ago
+      CLEAN_PERIOD_BUILDS: '5' # launch clean if last clean was more CLEAN_PERIOD_BUILDS builds since last build
+      IMAGE_RETAIN_PERIOD: '14400' # do not delete docker images if they have events since current_timestamp - IMAGE_RETAIN_PERIOD
+      VOLUMES_RETAIN_PERIOD: '14400' # do not delete docker volumes if they have events since current_timestamp - VOLUMES_RETAIN_PERIOD
+      DISK_USAGE_THRESHOLD: '0.8' # launch clean based on current disk usage DISK_USAGE_THRESHOLD
+      INODES_USAGE_THRESHOLD: '0.8' # launch clean based on current inodes usage INODES_USAGE_THRESHOLD
+```
+
+### External volumes cleaner
+
+**Purpose:** Removes unused *kubernetes volumes and related backend volumes*
+
+**How it runs:** Runs as `dind-volume-cleanup` CronJob. Installed in case the Runner uses non-local volumes `.Values.storage.backend != local`
+
+**Triggered by:** CronJob every 10min (configurable)
+
+**Configuration:**
+
+Set `codefresh.io/volume-retention` for dinds' PVCs:
+
+```yaml
+runtime:
+  dind:
+    pvcs:
+      dind:
+        ...
+        annotations:
+          codefresh.io/volume-retention: 7d
+```
+
+Or override environment variables for `dind-volume-cleanup` cronjob:
+
+```yaml
+volumeProvisioner:
+  dind-volume-cleanup:
+    env:
+      RETENTION_DAYS: 7   # clean volumes that were last used more than `RETENTION_DAYS` (default is 4) ago
+```
+
+### Local volumes cleaner
+
+**Purpose:** Deletes local volumes when node disk space is close to the threshold
+
+**How it runs:** Runs as `dind-lv-monitor` DaemonSet. Installed in case the Runner uses local volumes `.Values.storage.backend == local`
+
+**Triggered by:** Disk space usage or inode usage that exceeds thresholds (configurable)
+
+**Configuration:**
+
+Override environment variables for `dind-lv-monitor` daemonset:
+
+```yaml
+volumeProvisioner:
+  dind-lv-monitor:
+    env:
+      KB_USAGE_THRESHOLD: 60  # default 80 (percentage)
+      INODE_USAGE_THRESHOLD: 60  # default 80
+```
+
+### Rootless DinD
+
+DinD pod runs a `priviliged` container with **rootfull** docker.
+
+To run the docker daemon as non-root user (**rootless** mode), refer to `values-rootless.yaml`:
+
+```yaml
+volumeProvisioner:
+  env:
+    IS_ROOTLESS: true
+  # -- Only if local volumes are used as backend storage (ignored for ebs/ebs-csi disks)
+  dind-lv-monitor:
+    image:
+      tag: 1.30.0-rootless
+      digest: sha256:712e549e6e843b04684647f17e0973f8047e0d60e6e8b38a693ea64dc75b0479
+    containerSecurityContext:
+      runAsUser: 1000
+    podSecurityContext:
+      fsGroup: 1000
+      # Ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#configure-volume-permission-and-ownership-change-policy-for-pods
+      fsGroupChangePolicy: "OnRootMismatch"
+    # -- Enable initContainer to run chmod for /var/lib/codefresh/dind-volumes on host nodes
+    volumePermissions:
+      enabled: false
+
+runtime:
+  dind:
+    image:
+      tag: 26.1.4-1.28.10-rootless
+      digest: sha256:59dfc004eb22a8f09c8a3d585271a055af9df4591ab815bca418c24a2077f5c8
+    userVolumeMounts:
+      dind:
+        name: dind
+        mountPath: /home/rootless/.local/share/docker
+    containerSecurityContext:
+      privileged: true
+      runAsUser: 1000
+    podSecurityContext:
+      fsGroup: 1000
+      # Ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#configure-volume-permission-and-ownership-change-policy-for-pods
+      fsGroupChangePolicy: "OnRootMismatch"
+    # -- Enable initContainer to run chmod for /home/rootless in DinD pod
+    # !!! Will slow down dind pod startup
+    volumePermissions:
+      enabled: true
+```
+
+### ARM
+
+With the Codefresh Runner, you can run native ARM64v8 builds.
+
+> **Note!**
+> You cannot run both amd64 and arm64 images within the same pipeline. As one pipeline can map only to one runtime, you can run either amd64 or arm64 within the same pipeline.
+
+Provide `nodeSelector` and(or) `tolerations` for dind pods:
+
+`values.yaml`
+```yaml
+runtime:
+  dind:
+    nodeSelector:
+      arch: arm64
+    tolerations:
+    - key: arch
+      operator: Equal
+      value: arm64
+      effect: NoSchedule
+```
+
+### Openshift
+
+To install Codefresh Runner on OpenShift use the following `values.yaml` example
+
+```yaml
+runner:
+  podSecurityContext:
+    enabled: false
+
+volumeProvisioner:
+  podSecurityContext:
+    enabled: false
+  env:
+    PRIVILEGED_CONTAINER: true
+  dind-lv-monitor:
+    containerSecurityContext:
+      enabled: true
+      privileged: true
+    volumePermissions:
+      enabled: true
+      securityContext:
+        privileged: true
+        runAsUser: auto
+```
+
+Grant `privileged` SCC to `cf-runtime-runner` and `cf-runtime-volume-provisioner` service accounts.
+
+```console
+oc adm policy add-scc-to-user privileged system:serviceaccount:codefresh:cf-runtime-runner
+
+oc adm policy add-scc-to-user privileged system:serviceaccount:codefresh:cf-runtime-volume-provisioner
+```
+
+### On-premise
+
+If you have [Codefresh On-Premises](https://artifacthub.io/packages/helm/codefresh-onprem/codefresh) deployed, you can install Codefresh Runner in **agentless** mode.
+
+**What is agentless mode?**
+
+Agent (aka venona) is Runner component which responsible for calling Codefresh API to run builds and create dind/engine pods and pvc objects. Agent can only be assigned to a single account, thus you can't share one runtime across multiple accounts. However, with **agentless** mode it's possible to register the runtime as **system**-type runtime so it's registered on the platform level and can be assigned/shared across multiple accounts.
+
+**What are the prerequisites?**
+- You have a running [Codefresh On-Premises](https://artifacthub.io/packages/helm/codefresh-onprem/codefresh) control-plane environment
+- You have a Codefresh API token with platform **Admin** permissions scope
+
+
+### How to deploy agentless runtime when it's on the SAME k8s cluster as On-Premises control-plane environment?
+
+- Enable cluster-level permissions for cf-api (On-Premises control-plane component)
+
+> `values.yaml` for [Codefresh On-Premises](https://artifacthub.io/packages/helm/codefresh-onprem/codefresh) Helm chart
+```yaml
+cfapi:
+  ...
+  # -- Enable ClusterRole/ClusterRoleBinding
+  rbac:
+    namespaced: false
+```
+
+- Set the following values for Runner Helm chart
+
+`.Values.global.codefreshHost=...` \
+`.Values.global.codefreshToken=...` \
+`.Values.global.runtimeName=system/...` \
+`.Values.runtime.agent=false` \
+`.Values.runtime.inCluster=true`
+
+> `values.yaml` for [Codefresh Runner](https://artifacthub.io/packages/helm/codefresh-runner/cf-runtime) helm chart
+```yaml
+global:
+  # -- URL of Codefresh On-Premises Platform
+  codefreshHost: "https://myonprem.somedomain.com"
+  # -- User token in plain text with Admin permission scope
+  codefreshToken: ""
+  # -- User token that references an existing secret containing API key.
+  codefreshTokenSecretKeyRef: {}
+  # E.g.
+  # codefreshTokenSecretKeyRef:
+  #   name: my-codefresh-api-token
+  #   key: codefresh-api-token
+
+  # -- Distinguished runtime name
+  # (for On-Premise only; mandatory!) Must be prefixed with "system/..."
+  runtimeName: "system/prod-ue1-some-cluster-name"
+
+# -- Set runtime parameters
+runtime:
+  # -- (for On-Premise only; mandatory!) Disable agent
+  agent: false
+  # -- (for On-Premise only; optional) Set inCluster runtime (default: `true`)
+  # `inCluster=true` flag is set when Runtime and On-Premises control-plane are run on the same cluster
+  # `inCluster=false` flag is set when Runtime and On-Premises control-plane are on different clusters
+  inCluster: true
+  # -- (for On-Premise only; optional) Assign accounts to runtime (list of account ids; default is empty)
+  # Accounts can be assigned to the runtime in Codefresh UI later so you can kepp it empty.
+  accounts: []
+  # -- Set parent runtime to inherit.
+  runtimeExtends: []
+```
+
+- Install the chart
+
+```console
+helm upgrade --install cf-runtime oci://quay.io/codefresh/cf-runtime -f values.yaml --create-namespace --namespace cf-runtime
+```
+
+- Verify the runtime and run test pipeline
+
+Go to [https://<YOUR_ONPREM_DOMAIN_HERE>/admin/runtime-environments/system](https://<YOUR_ONPREM_DOMAIN_HERE>/admin/runtime-environments/system) to check the runtime. Assign it to the required account(s). Run test pipeline on it.
+
+
+### How to deploy agentless runtime when it's on the DIFFERENT k8s cluster than On-Premises control-plane environment?
+
+In this case, it's required to mount runtime cluster's `KUBECONFIG` into On-Premises `cf-api` deployment
+
+- Create the neccessary RBAC resources
+
+> `values.yaml` for [Codefresh Runner](https://artifacthub.io/packages/helm/codefresh-runner/cf-runtime) helm chart
+```yaml
+extraResources:
+- apiVersion: rbac.authorization.k8s.io/v1
+  kind: Role
+  metadata:
+    name: codefresh-role
+    namespace: '{{ "{{ .Release.Namespace }}" }}'
+  rules:
+    - apiGroups: [""]
+      resources: ["pods", "persistentvolumeclaims", "persistentvolumes"]
+      verbs: ["list", "watch", "get", "create", "patch", "delete"]
+    - apiGroups: ["snapshot.storage.k8s.io"]
+      resources: ["volumesnapshots"]
+      verbs: ["list", "watch", "get", "create", "patch", "delete"]
+- apiVersion: v1
+  kind: ServiceAccount
+  metadata:
+    name: codefresh-runtime-user
+    namespace: '{{ "{{ .Release.Namespace }}" }}'
+- apiVersion: rbac.authorization.k8s.io/v1
+  kind: RoleBinding
+  metadata:
+    name: codefresh-runtime-user
+    namespace: '{{ "{{ .Release.Namespace }}" }}'
+  roleRef:
+    apiGroup: rbac.authorization.k8s.io
+    kind: Role
+    name: codefresh-role
+  subjects:
+  - kind: ServiceAccount
+    name: codefresh-runtime-user
+    namespace: '{{ "{{ .Release.Namespace }}" }}'
+- apiVersion: v1
+  kind: Secret
+  metadata:
+    name: codefresh-runtime-user-token
+    namespace: '{{ "{{ .Release.Namespace }}" }}'
+    annotations:
+      kubernetes.io/service-account.name: codefresh-runtime-user
+  type: kubernetes.io/service-account-token
+```
+
+- Set up the following environment variables to create a `KUBECONFIG` file
+
+```shell
+NAMESPACE=cf-runtime
+CLUSTER_NAME=prod-ue1-some-cluster-name
+CURRENT_CONTEXT=$(kubectl config current-context)
+
+USER_TOKEN_VALUE=$(kubectl -n cf-runtime get secret/codefresh-runtime-user-token -o=go-template='{{ `{{.data.token}}` }}' | base64 --decode)
+CURRENT_CLUSTER=$(kubectl config view --raw -o=go-template='{{ `{{range .contexts}}{{if eq .name "'''${CURRENT_CONTEXT}'''"}}{{ index .context "cluster" }}{{end}}{{end}}` }}')
+CLUSTER_CA=$(kubectl config view --raw -o=go-template='{{ `{{range .clusters}}{{if eq .name "'''${CURRENT_CLUSTER}'''"}}"{{with index .cluster "certificate-authority-data" }}{{.}}{{end}}"{{ end }}{{ end }}` }}')
+CLUSTER_SERVER=$(kubectl config view --raw -o=go-template='{{ `{{range .clusters}}{{if eq .name "'''${CURRENT_CLUSTER}'''"}}{{ .cluster.server }}{{end}}{{ end }}` }}')
+
+export -p USER_TOKEN_VALUE CURRENT_CONTEXT CURRENT_CLUSTER CLUSTER_CA CLUSTER_SERVER CLUSTER_NAME
+```
+
+- Create a kubeconfig file
+
+```console
+cat << EOF > $CLUSTER_NAME-kubeconfig
+apiVersion: v1
+kind: Config
+current-context: ${CLUSTER_NAME}
+contexts:
+- name: ${CLUSTER_NAME}
+  context:
+    cluster: ${CLUSTER_NAME}
+    user: codefresh-runtime-user
+    namespace: ${NAMESPACE}
+clusters:
+- name: ${CLUSTER_NAME}
+  cluster:
+    certificate-authority-data: ${CLUSTER_CA}
+    server: ${CLUSTER_SERVER}
+users:
+- name: ${CLUSTER_NAME}
+  user:
+    token: ${USER_TOKEN_VALUE}
+EOF
+```
+
+- **Switch context to On-Premises control-plane cluster**. Create k8s secret (via any tool like [ESO](https://external-secrets.io/v0.4.4/), `kubectl`, etc ) containing runtime cluster's `KUBECONFG` created in previous step.
+
+```shell
+NAMESPACE=codefresh
+kubectl create secret generic dind-runtime-clusters --from-file=$CLUSTER_NAME=$CLUSTER_NAME-kubeconfig -n $NAMESPACE
+```
+
+- Mount secret containing runtime cluster's `KUBECONFG` into cf-api in On-Premises control-plane cluster
+
+> `values.yaml` for [Codefresh On-Premises](https://artifacthub.io/packages/helm/codefresh-onprem/codefresh) helm chart
+```yaml
+cf-api:
+  ...
+  volumes:
+    dind-clusters:
+      enabled: true
+      type: secret
+      nameOverride: dind-runtime-clusters
+      optional: true
+```
+> volumeMount `/etc/kubeconfig` is already configured in cf-api Helm chart template. No need to specify it.
+
+- Set the following values for Runner helm chart
+
+> `values.yaml` for [Codefresh Runner](https://artifacthub.io/packages/helm/codefresh-runner/cf-runtime) helm chart
+
+`.Values.global.codefreshHost=...` \
+`.Values.global.codefreshToken=...` \
+`.Values.global.runtimeName=system/...` \
+`.Values.runtime.agent=false` \
+`.Values.runtime.inCluster=false`
+
+**Important!**
+`.Values.global.name` ("system/" prefix is ignored!) should match the cluster name (key in `dind-runtime-clusters` secret created previously)
+```yaml
+global:
+  # -- URL of Codefresh On-Premises Platform
+  codefreshHost: "https://myonprem.somedomain.com"
+  # -- User token in plain text with Admin permission scope
+  codefreshToken: ""
+  # -- User token that references an existing secret containing API key.
+  codefreshTokenSecretKeyRef: {}
+  # E.g.
+  # codefreshTokenSecretKeyRef:
+  #   name: my-codefresh-api-token
+  #   key: codefresh-api-token
+
+  # -- Distinguished runtime name
+  # (for On-Premise only; mandatory!) Must be prefixed with "system/..."
+  name: "system/prod-ue1-some-cluster-name"
+
+# -- Set runtime parameters
+runtime:
+  # -- (for On-Premise only; mandatory!) Disable agent
+  agent: false
+  # -- (for On-Premise only; optional) Set inCluster runtime (default: `true`)
+  # `inCluster=true` flag is set when Runtime and On-Premises control-plane are run on the same cluster
+  # `inCluster=false` flag is set when Runtime and On-Premises control-plane are on different clusters
+  inCluster: false
+  # -- (for On-Premise only; optional) Assign accounts to runtime (list of account ids; default is empty)
+  # Accounts can be assigned to the runtime in Codefresh UI later so you can kepp it empty.
+  accounts: []
+  # -- (optional) Set parent runtime to inherit.
+  runtimeExtends: []
+```
+
+- Install the chart
+
+```console
+helm upgrade --install cf-runtime oci://quay.io/codefresh/cf-runtime -f values.yaml --create-namespace --namespace cf-runtime
+```
+
+- Verify the runtime and run test pipeline
+
+Go to [https://<YOUR_ONPREM_DOMAIN_HERE>/admin/runtime-environments/system](https://<YOUR_ONPREM_DOMAIN_HERE>/admin/runtime-environments/system) to see the runtime. Assign it to the required account(s).
+
+{{ template "chart.requirementsSection" . }}
+
+{{ template "chart.valuesSection" . }}
diff --git a/charts/codefresh/cf-runtime/7.5.5/files/cleanup-runtime.sh b/charts/codefresh/cf-runtime/7.5.5/files/cleanup-runtime.sh
new file mode 100644
index 0000000000..c1fc5f3682
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/files/cleanup-runtime.sh
@@ -0,0 +1,37 @@
+#!/bin/bash
+
+echo "-----"
+echo "API_HOST:           ${API_HOST}"
+echo "AGENT_NAME:         ${AGENT_NAME}"
+echo "RUNTIME_NAME:       ${RUNTIME_NAME}"
+echo "AGENT:              ${AGENT}"
+echo "AGENT_SECRET_NAME:  ${AGENT_SECRET_NAME}"
+echo "DIND_SECRET_NAME:   ${DIND_SECRET_NAME}"
+echo "-----"
+
+auth() {
+  codefresh auth create-context --api-key ${API_TOKEN} --url ${API_HOST}
+}
+
+remove_runtime() {
+  if [ "$AGENT" == "true" ]; then
+    codefresh delete re ${RUNTIME_NAME} || true
+  else
+    codefresh delete sys-re ${RUNTIME_NAME} || true
+  fi
+}
+
+remove_agent() {
+  codefresh delete agent ${AGENT_NAME} || true
+}
+
+remove_secrets() {
+  kubectl patch secret $(kubectl get secret -l codefresh.io/internal=true | awk 'NR>1{print $1}' | xargs) -p '{"metadata":{"finalizers":null}}' --type=merge || true
+  kubectl delete secret $AGENT_SECRET_NAME || true
+  kubectl delete secret $DIND_SECRET_NAME || true
+}
+
+auth
+remove_runtime
+remove_agent
+remove_secrets
\ No newline at end of file
diff --git a/charts/codefresh/cf-runtime/7.5.5/files/configure-dind-certs.sh b/charts/codefresh/cf-runtime/7.5.5/files/configure-dind-certs.sh
new file mode 100644
index 0000000000..a1092eb1e6
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/files/configure-dind-certs.sh
@@ -0,0 +1,132 @@
+#!/usr/bin/env bash
+#
+
+#---
+fatal() {
+   echo "ERROR: $1"
+   exit 1
+}
+
+msg() { echo -e "\e[32mINFO ---> $1\e[0m"; }
+err() { echo -e "\e[31mERR ---> $1\e[0m" ; return 1; }
+
+exit_trap () {
+  local lc="$BASH_COMMAND" rc=$?
+  if [ $rc != 0 ]; then
+    if [[ -n "$SLEEP_ON_ERROR" ]]; then
+      echo -e "\nSLEEP_ON_ERROR is set - Sleeping to fix error"
+      sleep $SLEEP_ON_ERROR
+    fi
+  fi
+}
+trap exit_trap EXIT
+
+usage() {
+    echo "Usage:
+    $0 [-n | --namespace] [--server-cert-cn] [--server-cert-extra-sans] codefresh-api-host codefresh-api-token
+
+Example:
+   $0 -n workflow https://g.codefresh.io 21341234.423141234.412431234
+
+"
+}
+
+# Args
+while [[ $1 =~ ^(-(n|h)|--(namespace|server-cert-cn|server-cert-extra-sans|help)) ]]
+do
+  key=$1
+  value=$2
+
+  case $key in
+    -h|--help)
+        usage
+        exit
+      ;;
+    -n|--namespace)
+        NAMESPACE="$value"
+        shift
+      ;;
+    --server-cert-cn)
+        SERVER_CERT_CN="$value"
+        shift
+      ;;
+    --server-cert-extra-sans)
+        SERVER_CERT_EXTRA_SANS="$value"
+        shift
+      ;;
+  esac
+  shift # past argument or value
+done
+
+API_HOST=${1:-"$CF_API_HOST"}
+API_TOKEN=${2:-"$CF_API_TOKEN"}
+
+[[ -z "$API_HOST" ]] && usage && fatal "Missing API_HOST"
+[[ -z "$API_TOKEN" ]] && usage && fatal "Missing token"
+
+
+API_SIGN_PATH=${API_SIGN_PATH:-"api/custom_clusters/signServerCerts"}
+
+NAMESPACE=${NAMESPACE:-default}
+RELEASE=${RELEASE:-cf-runtime}
+
+DIR=$(dirname $0)
+TMPDIR=/tmp/codefresh/
+
+TMP_CERTS_FILE_ZIP=$TMPDIR/cf-certs.zip
+TMP_CERTS_HEADERS_FILE=$TMPDIR/cf-certs-response-headers.txt
+CERTS_DIR=$TMPDIR/ssl
+SRV_TLS_CA_CERT=${CERTS_DIR}/ca.pem
+SRV_TLS_KEY=${CERTS_DIR}/server-key.pem
+SRV_TLS_CSR=${CERTS_DIR}/server-cert.csr
+SRV_TLS_CERT=${CERTS_DIR}/server-cert.pem
+CF_SRV_TLS_CERT=${CERTS_DIR}/cf-server-cert.pem
+CF_SRV_TLS_CA_CERT=${CERTS_DIR}/cf-ca.pem
+mkdir -p $TMPDIR $CERTS_DIR
+
+K8S_CERT_SECRET_NAME=codefresh-certs-server
+echo -e "\n------------------\nGenerating server tls certificates ... "
+
+SERVER_CERT_CN=${SERVER_CERT_CN:-"docker.codefresh.io"}
+SERVER_CERT_EXTRA_SANS="${SERVER_CERT_EXTRA_SANS}"
+###
+
+  openssl genrsa -out $SRV_TLS_KEY 4096 || fatal "Failed to generate openssl key "
+  openssl req -subj "/CN=${SERVER_CERT_CN}" -new -key $SRV_TLS_KEY -out $SRV_TLS_CSR  || fatal "Failed to generate openssl csr "
+  GENERATE_CERTS=true
+  CSR=$(sed ':a;N;$!ba;s/\n/\\n/g' ${SRV_TLS_CSR})
+
+  SERVER_CERT_SANS="IP:127.0.0.1,DNS:dind,DNS:*.dind.${NAMESPACE},DNS:*.dind.${NAMESPACE}.svc${KUBE_DOMAIN},DNS:*.cf-cd.com,DNS:*.codefresh.io"
+  if [[ -n "${SERVER_CERT_EXTRA_SANS}" ]]; then
+    SERVER_CERT_SANS=${SERVER_CERT_SANS},${SERVER_CERT_EXTRA_SANS}
+  fi
+  echo "{\"reqSubjectAltName\": \"${SERVER_CERT_SANS}\", \"csr\": \"${CSR}\" }" > ${TMPDIR}/sign_req.json
+
+  rm -fv ${TMP_CERTS_HEADERS_FILE} ${TMP_CERTS_FILE_ZIP}
+
+  SIGN_STATUS=$(curl -k -sSL -d @${TMPDIR}/sign_req.json -H "Content-Type: application/json" -H "Authorization: ${API_TOKEN}" -H "Expect: " \
+        -o ${TMP_CERTS_FILE_ZIP} -D ${TMP_CERTS_HEADERS_FILE} -w '%{http_code}' ${API_HOST}/${API_SIGN_PATH} )
+
+  echo "Sign request completed with HTTP_STATUS_CODE=$SIGN_STATUS"
+  if [[ $SIGN_STATUS != 200 ]]; then
+     echo "ERROR: Cannot sign certificates"
+     if [[ -f ${TMP_CERTS_FILE_ZIP} ]]; then
+       mv ${TMP_CERTS_FILE_ZIP} ${TMP_CERTS_FILE_ZIP}.error
+       cat ${TMP_CERTS_FILE_ZIP}.error
+     fi
+     exit 1
+  fi
+  unzip -o -d ${CERTS_DIR}/  ${TMP_CERTS_FILE_ZIP} || fatal "Failed to unzip certificates to ${CERTS_DIR} "
+  cp -v ${CF_SRV_TLS_CA_CERT} $SRV_TLS_CA_CERT || fatal "received ${TMP_CERTS_FILE_ZIP} does not contains ca.pem"
+  cp -v ${CF_SRV_TLS_CERT} $SRV_TLS_CERT || fatal "received ${TMP_CERTS_FILE_ZIP} does not contains cf-server-cert.pem"
+
+
+echo -e "\n------------------\nCreating certificate secret "
+
+kubectl -n $NAMESPACE create secret generic $K8S_CERT_SECRET_NAME \
+    --from-file=$SRV_TLS_CA_CERT \
+    --from-file=$SRV_TLS_KEY \
+    --from-file=$SRV_TLS_CERT \
+    --dry-run=client -o yaml | kubectl apply --overwrite -f -
+kubectl -n $NAMESPACE label --overwrite secret ${K8S_CERT_SECRET_NAME} codefresh.io/internal=true
+kubectl -n $NAMESPACE patch secret $K8S_CERT_SECRET_NAME -p '{"metadata": {"finalizers": ["kubernetes"]}}'
diff --git a/charts/codefresh/cf-runtime/7.5.5/files/init-runtime.sh b/charts/codefresh/cf-runtime/7.5.5/files/init-runtime.sh
new file mode 100644
index 0000000000..eb3488af11
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/files/init-runtime.sh
@@ -0,0 +1,80 @@
+#!/bin/bash
+
+echo "-----"
+echo "API_HOST:         ${API_HOST}"
+echo "AGENT_NAME:       ${AGENT_NAME}"
+echo "KUBE_CONTEXT:     ${KUBE_CONTEXT}"
+echo "KUBE_NAMESPACE:   ${KUBE_NAMESPACE}"
+echo "OWNER_NAME:       ${OWNER_NAME}"
+echo "RUNTIME_NAME:     ${RUNTIME_NAME}"
+echo "SECRET_NAME:      ${SECRET_NAME}"
+echo "-----"
+
+create_agent_secret() {
+
+  kubectl apply -f - <<EOF
+  apiVersion: v1
+  kind: Secret
+  type: Opaque
+  metadata:
+    name: ${SECRET_NAME}
+    namespace: ${KUBE_NAMESPACE}
+    labels:
+      codefresh.io/internal: "true"
+    finalizers:
+    - kubernetes
+    ownerReferences:
+    - apiVersion: apps/v1
+      kind: Deploy
+      name: ${OWNER_NAME}
+      uid: ${OWNER_UID}
+  stringData:
+    agent-codefresh-token: ${1}
+EOF
+
+}
+
+OWNER_UID=$(kubectl get deploy ${OWNER_NAME} --namespace ${KUBE_NAMESPACE} -o jsonpath='{.metadata.uid}')
+echo "got owner uid: ${OWNER_UID}"
+
+if [ ! -z "${AGENT_CODEFRESH_TOKEN}" ]; then
+    echo "-----"
+    echo "runtime and agent are already initialized"
+    echo "-----"
+    exit 0
+fi
+
+if [ ! -z "${EXISTING_AGENT_CODEFRESH_TOKEN}" ]; then
+    echo "using existing agentToken value"
+    create_agent_secret $EXISTING_AGENT_CODEFRESH_TOKEN
+    exit 0
+fi
+
+if [ -z "${USER_CODEFRESH_TOKEN}" ]; then
+    echo "-----"
+    echo "missing codefresh user token. must supply \".global.codefreshToken\" if agent-codefresh-token does not exist"
+    echo "-----"
+    exit 1
+fi
+
+codefresh auth create-context --api-key ${USER_CODEFRESH_TOKEN} --url ${API_HOST}
+
+# AGENT_TOKEN might be empty, in which case it will be returned by the call
+RES=$(codefresh install agent \
+    --name ${AGENT_NAME} \
+    --kube-context-name ${KUBE_CONTEXT} \
+    --kube-namespace ${KUBE_NAMESPACE} \
+    --agent-kube-namespace ${KUBE_NAMESPACE} \
+    --install-runtime \
+    --runtime-name ${RUNTIME_NAME} \
+    --skip-cluster-creation \
+    --platform-only)
+
+AGENT_CODEFRESH_TOKEN=$(echo "${RES}" | tail -n 1)
+echo "generated agent + runtime in platform"
+
+create_agent_secret $AGENT_CODEFRESH_TOKEN
+
+echo "-----"
+echo "done initializing runtime and agent"
+echo "-----"
diff --git a/charts/codefresh/cf-runtime/7.5.5/files/reconcile-runtime.sh b/charts/codefresh/cf-runtime/7.5.5/files/reconcile-runtime.sh
new file mode 100644
index 0000000000..21e4373557
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/files/reconcile-runtime.sh
@@ -0,0 +1,38 @@
+#!/bin/bash
+
+echo "-----"
+echo "API_HOST:             ${API_HOST}"
+echo "KUBE_CONTEXT:         ${KUBE_CONTEXT}"
+echo "KUBE_NAMESPACE:       ${KUBE_NAMESPACE}"
+echo "OWNER_NAME:           ${OWNER_NAME}"
+echo "RUNTIME_NAME:         ${RUNTIME_NAME}"
+echo "CONFIGMAP_NAME:       ${CONFIGMAP_NAME}"
+echo "RECONCILE_INTERVAL:   ${RECONCILE_INTERVAL}"
+echo "-----"
+
+msg() { echo -e "\e[32mINFO ---> $1\e[0m"; }
+err() { echo -e "\e[31mERR ---> $1\e[0m" ; return 1; }
+
+
+if [ -z "${USER_CODEFRESH_TOKEN}" ]; then
+    err "missing codefresh user token. must supply \".global.codefreshToken\" if agent-codefresh-token does not exist"
+    exit 1
+fi
+
+codefresh auth create-context --api-key ${USER_CODEFRESH_TOKEN} --url ${API_HOST}
+
+while true; do
+  msg "Reconciling ${RUNTIME_NAME} runtime"
+
+  sleep $RECONCILE_INTERVAL
+
+  codefresh get re \
+      --name ${RUNTIME_NAME} \
+      -o yaml \
+      | yq 'del(.version, .metadata.changedBy, .metadata.creationTime)' > /tmp/runtime.yaml
+
+  kubectl get cm ${CONFIGMAP_NAME} -n ${KUBE_NAMESPACE} -o yaml \
+  | yq 'del(.metadata.resourceVersion, .metadata.uid)' \
+  | yq eval '.data["runtime.yaml"] = load_str("/tmp/runtime.yaml")' \
+  | kubectl apply -f -
+done
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/_components/app-proxy/_deployment.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/_components/app-proxy/_deployment.yaml
new file mode 100644
index 0000000000..26f3576b77
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/_components/app-proxy/_deployment.yaml
@@ -0,0 +1,70 @@
+{{- define "app-proxy.resources.deployment" -}}
+{{ $cfCommonTplSemver := printf "cf-common-%s" (index .Subcharts "cf-common").Chart.Version }}
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: {{ include "app-proxy.fullname" . }}
+  labels:
+    {{- include "app-proxy.labels" . | nindent 4 }}
+spec:
+  replicas: {{ .Values.replicasCount }}
+  strategy:
+    type: {{ .Values.updateStrategy.type }}
+  selector:
+    matchLabels:
+      {{- include "app-proxy.selectorLabels" . | nindent 6 }}
+  template:
+    metadata:
+      labels:
+        {{- include "app-proxy.selectorLabels" . | nindent 8 }}
+      {{- with .Values.podAnnotations }}
+      annotations:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+    spec:
+      {{- include (printf "%s.image.pullSecrets" $cfCommonTplSemver ) . | nindent 8 }}
+      serviceAccountName: {{ include "app-proxy.serviceAccountName" . }}
+      {{- if .Values.podSecurityContext.enabled }}
+      securityContext: {{- omit .Values.podSecurityContext "enabled" | toYaml | nindent 8 }}
+      {{- end }}
+      containers:
+      - name: app-proxy
+        image: {{ include (printf "%s.image.name" $cfCommonTplSemver ) (dict "image" .Values.image "context" .) }}
+        imagePullPolicy: {{ .Values.image.pullPolicy | default "Always" }}
+        env:
+        {{- include "app-proxy.environment-variables" . | nindent 8 }}
+        ports:
+        - name: http
+          containerPort: 3000
+        readinessProbe:
+          initialDelaySeconds: {{ .Values.readinessProbe.initialDelaySeconds }}
+          periodSeconds: {{ .Values.readinessProbe.periodSeconds }}
+          timeoutSeconds: {{ .Values.readinessProbe.timeoutSeconds }}
+          successThreshold: {{ .Values.readinessProbe.successThreshold }}
+          failureThreshold: {{ .Values.readinessProbe.failureThreshold }}
+          httpGet:
+            path: /health
+            port: http
+        resources:
+          {{- toYaml .Values.resources | nindent 12  }}
+        volumeMounts:
+        {{- with .Values.extraVolumeMounts }}
+          {{- toYaml . | nindent 8 }}
+        {{- end }}
+      {{- with .Values.nodeSelector }}
+      nodeSelector:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.affinity }}
+      affinity:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.tolerations }}
+      tolerations:
+        {{- toYaml . | nindent 6 }}
+      {{- end }}
+      volumes:
+      {{- with .Values.extraVolumes }}
+        {{- toYaml . | nindent 6 }}
+      {{- end }}
+{{- end -}}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/_components/app-proxy/_env-vars.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/_components/app-proxy/_env-vars.yaml
new file mode 100644
index 0000000000..c9b9a0e36a
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/_components/app-proxy/_env-vars.yaml
@@ -0,0 +1,19 @@
+{{- define "app-proxy.environment-variables.defaults" }}
+PORT: 3000
+{{- end }}
+
+{{- define "app-proxy.environment-variables.calculated" }}
+CODEFRESH_HOST: {{ include "runtime.runtime-environment-spec.codefresh-host" . }}
+{{- with .Values.ingress.pathPrefix }}
+API_PATH_PREFIX: {{ . | quote }}
+{{- end }}
+{{- end }}
+
+{{- define "app-proxy.environment-variables" }}
+{{- $cfCommonTplSemver := printf "cf-common-%s" (index .Subcharts "cf-common").Chart.Version }}
+{{- $defaults := (include "app-proxy.environment-variables.defaults" . | fromYaml) }}
+{{- $calculated := (include "app-proxy.environment-variables.calculated" . | fromYaml) }}
+{{- $overrides := .Values.env }}
+{{- $mergedValues := mergeOverwrite (merge $defaults $calculated) $overrides }}
+{{- include (printf "%s.env-vars" $cfCommonTplSemver) (dict "Values" $mergedValues "context" .) }}
+{{- end }}
\ No newline at end of file
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/_components/app-proxy/_helpers.tpl b/charts/codefresh/cf-runtime/7.5.5/templates/_components/app-proxy/_helpers.tpl
new file mode 100644
index 0000000000..2d4272ca92
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/_components/app-proxy/_helpers.tpl
@@ -0,0 +1,43 @@
+{{/*
+Expand the name of the chart.
+*/}}
+{{- define "app-proxy.name" -}}
+    {{- printf "%s-%s" (include "cf-runtime.name" .) "app-proxy" | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{/*
+Create a default fully qualified app name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+If release name contains chart name it will be used as a full name.
+*/}}
+{{- define "app-proxy.fullname" -}}
+    {{- printf "%s-%s" (include "cf-runtime.fullname" .) "app-proxy" | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{/*
+Common labels
+*/}}
+{{- define "app-proxy.labels" -}}
+{{ include "cf-runtime.labels" . }}
+codefresh.io/application: app-proxy
+{{- end }}
+
+{{/*
+Selector labels
+*/}}
+{{- define "app-proxy.selectorLabels" -}}
+{{ include "cf-runtime.selectorLabels" . }}
+codefresh.io/application: app-proxy
+{{- end }}
+
+
+{{/*
+Create the name of the service account to use
+*/}}
+{{- define "app-proxy.serviceAccountName" -}}
+{{- if .Values.serviceAccount.create }}
+{{- default (include "app-proxy.fullname" .) .Values.serviceAccount.name }}
+{{- else }}
+{{- default "default" .Values.serviceAccount.name }}
+{{- end }}
+{{- end }}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/_components/app-proxy/_ingress.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/_components/app-proxy/_ingress.yaml
new file mode 100644
index 0000000000..4a4b5c159d
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/_components/app-proxy/_ingress.yaml
@@ -0,0 +1,32 @@
+{{- define "app-proxy.resources.ingress" -}}
+apiVersion: networking.k8s.io/v1
+kind: Ingress
+metadata:
+  name: {{ include "app-proxy.fullname" . }}
+  labels: {{- include "app-proxy.labels" . | nindent 4 }}
+  {{- with .Values.ingress.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+spec:
+  {{- if and .Values.ingress.class (semverCompare ">=1.18-0" .Capabilities.KubeVersion.GitVersion) }}
+  ingressClassName: {{ .Values.ingress.class }}
+  {{- end }}
+  {{- if .Values.ingress.tlsSecret }}
+  tls:
+    - hosts:
+        - {{ .Values.ingress.host }}
+      secretName: {{ .Values.ingress.tlsSecret }}
+  {{- end }}
+  rules:
+    - host: {{ .Values.ingress.host }}
+      http:
+        paths:
+          - path: {{ .Values.ingress.pathPrefix | default "/" }}
+            pathType: ImplementationSpecific
+            backend:
+              service:
+                name: {{ include "app-proxy.fullname" . }}
+                port:
+                  number: 80
+{{- end -}}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/_components/app-proxy/_rbac.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/_components/app-proxy/_rbac.yaml
new file mode 100644
index 0000000000..87bd869ba0
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/_components/app-proxy/_rbac.yaml
@@ -0,0 +1,47 @@
+{{- define "app-proxy.resources.rbac" -}}
+{{- if .Values.serviceAccount.create }}
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: {{ include "app-proxy.serviceAccountName" . }}
+  labels:
+    {{- include "app-proxy.labels" . | nindent 4 }}
+  {{- with .Values.serviceAccount.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+{{- end }}
+---
+{{- if .Values.rbac.create }}
+kind: {{ .Values.rbac.namespaced | ternary "Role" "ClusterRole" }}
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  name: {{ include "app-proxy.fullname" . }}
+  labels:
+    {{- include "app-proxy.labels" . | nindent 4 }}
+rules:
+  - apiGroups: [ "" ]
+    resources: [ "secrets" ]
+    verbs: [ "get" ]
+{{- with .Values.rbac.rules }}
+  {{ toYaml . | nindent 2 }}
+{{- end }}
+{{- end }}
+---
+{{- if and .Values.serviceAccount.create .Values.rbac.create }}
+kind: {{ .Values.rbac.namespaced | ternary "RoleBinding" "ClusterRoleBinding" }}
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  name: {{ include "app-proxy.fullname" . }}
+  labels:
+    {{- include "app-proxy.labels" . | nindent 4 }}
+subjects:
+  - kind: ServiceAccount
+    name: {{ include "app-proxy.serviceAccountName" . }}
+    namespace: {{ .Release.Namespace }}
+roleRef:
+  kind: Role
+  name: {{ include "app-proxy.fullname" . }}
+  apiGroup: rbac.authorization.k8s.io
+{{- end }}
+{{- end -}}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/_components/app-proxy/_service.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/_components/app-proxy/_service.yaml
new file mode 100644
index 0000000000..4c3a93bf27
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/_components/app-proxy/_service.yaml
@@ -0,0 +1,17 @@
+{{- define "app-proxy.resources.service" -}}
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ include "app-proxy.fullname" . }}
+  labels:
+    {{- include "app-proxy.labels" . | nindent 4 }}
+spec:
+  type: ClusterIP
+  ports:
+  - name: http
+    port: 80
+    protocol: TCP
+    targetPort: 3000
+  selector:
+    {{- include "app-proxy.selectorLabels" . | nindent 4 }}
+{{- end -}}
\ No newline at end of file
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/_components/event-exporter/_deployment.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/_components/event-exporter/_deployment.yaml
new file mode 100644
index 0000000000..62588b4d3d
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/_components/event-exporter/_deployment.yaml
@@ -0,0 +1,62 @@
+{{- define "event-exporter.resources.deployment" -}}
+{{ $cfCommonTplSemver := printf "cf-common-%s" (index .Subcharts "cf-common").Chart.Version }}
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: {{ include "event-exporter.fullname" . }}
+  labels:
+    {{- include "event-exporter.labels" . | nindent 4 }}
+spec:
+  replicas: {{ .Values.replicasCount }}
+  strategy:
+    type: {{ .Values.updateStrategy.type }}
+  selector:
+    matchLabels:
+      {{- include "event-exporter.selectorLabels" . | nindent 6 }}
+  template:
+    metadata:
+      labels:
+        {{- include "event-exporter.selectorLabels" . | nindent 8 }}
+      {{- with .Values.podAnnotations }}
+      annotations:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+    spec:
+      {{- include (printf "%s.image.pullSecrets" $cfCommonTplSemver ) . | nindent 8 }}
+      serviceAccountName: {{ include "event-exporter.serviceAccountName" . }}
+      {{- if .Values.podSecurityContext.enabled }}
+      securityContext: {{- omit .Values.podSecurityContext "enabled" | toYaml | nindent 8 }}
+      {{- end }}
+      containers:
+      - name: event-exporter
+        image: {{ include (printf "%s.image.name" $cfCommonTplSemver ) (dict "image" .Values.image "context" .) }}
+        imagePullPolicy: {{ .Values.image.pullPolicy | default "Always" }}
+        args: [--running-in-cluster=true]
+        env:
+        {{- include "event-exporter.environment-variables" . | nindent 8 }}
+        ports:
+        - name: metrics
+          containerPort: 9102
+        resources:
+          {{- toYaml .Values.resources | nindent 12  }}
+        volumeMounts:
+        {{- with .Values.extraVolumeMounts }}
+          {{- toYaml . | nindent 8 }}
+        {{- end }}
+      {{- with .Values.nodeSelector }}
+      nodeSelector:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.affinity }}
+      affinity:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.tolerations }}
+      tolerations:
+        {{- toYaml . | nindent 6 }}
+      {{- end }}
+      volumes:
+      {{- with .Values.extraVolumes }}
+        {{- toYaml . | nindent 6 }}
+      {{- end }}
+{{- end -}}
\ No newline at end of file
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/_components/event-exporter/_env-vars.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/_components/event-exporter/_env-vars.yaml
new file mode 100644
index 0000000000..d28d0776f3
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/_components/event-exporter/_env-vars.yaml
@@ -0,0 +1,14 @@
+{{- define "event-exporter.environment-variables.defaults" }}
+{{- end }}
+
+{{- define "event-exporter.environment-variables.calculated" }}
+{{- end }}
+
+{{- define "event-exporter.environment-variables" }}
+{{- $cfCommonTplSemver := printf "cf-common-%s" (index .Subcharts "cf-common").Chart.Version }}
+{{- $defaults := (include "event-exporter.environment-variables.defaults" . | fromYaml) }}
+{{- $calculated := (include "event-exporter.environment-variables.calculated" . | fromYaml) }}
+{{- $overrides := .Values.env }}
+{{- $mergedValues := mergeOverwrite (merge $defaults $calculated) $overrides }}
+{{- include (printf "%s.env-vars" $cfCommonTplSemver) (dict "Values" $mergedValues "context" .) }}
+{{- end }}
\ No newline at end of file
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/_components/event-exporter/_helpers.tpl b/charts/codefresh/cf-runtime/7.5.5/templates/_components/event-exporter/_helpers.tpl
new file mode 100644
index 0000000000..5b8b5eff7f
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/_components/event-exporter/_helpers.tpl
@@ -0,0 +1,43 @@
+{{/*
+Expand the name of the chart.
+*/}}
+{{- define "event-exporter.name" -}}
+    {{- printf "%s-%s" (include "cf-runtime.name" .) "event-exporter" | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{/*
+Create a default fully qualified app name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+If release name contains chart name it will be used as a full name.
+*/}}
+{{- define "event-exporter.fullname" -}}
+    {{- printf "%s-%s" (include "cf-runtime.fullname" .) "event-exporter" | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{/*
+Common labels
+*/}}
+{{- define "event-exporter.labels" -}}
+{{ include "cf-runtime.labels" . }}
+app: event-exporter
+{{- end }}
+
+{{/*
+Selector labels
+*/}}
+{{- define "event-exporter.selectorLabels" -}}
+{{ include "cf-runtime.selectorLabels" . }}
+app: event-exporter
+{{- end }}
+
+
+{{/*
+Create the name of the service account to use
+*/}}
+{{- define "event-exporter.serviceAccountName" -}}
+{{- if .Values.serviceAccount.create }}
+{{- default (include "event-exporter.fullname" .) .Values.serviceAccount.name }}
+{{- else }}
+{{- default "default" .Values.serviceAccount.name }}
+{{- end }}
+{{- end }}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/_components/event-exporter/_rbac.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/_components/event-exporter/_rbac.yaml
new file mode 100644
index 0000000000..69d7b6b2fb
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/_components/event-exporter/_rbac.yaml
@@ -0,0 +1,47 @@
+{{- define "event-exporter.resources.rbac" -}}
+{{- if .Values.serviceAccount.create }}
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: {{ include "event-exporter.serviceAccountName" . }}
+  labels:
+    {{- include "event-exporter.labels" . | nindent 4 }}
+  {{- with .Values.serviceAccount.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+{{- end }}
+---
+{{- if .Values.rbac.create }}
+kind: ClusterRole
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  name: {{ include "event-exporter.fullname" . }}
+  labels:
+    {{- include "event-exporter.labels" . | nindent 4 }}
+rules:
+  - apiGroups: [""]
+    resources: [events]
+    verbs: [get, list, watch]
+{{- with .Values.rbac.rules }}
+  {{ toYaml . | nindent 2 }}
+{{- end }}
+{{- end }}
+---
+{{- if and .Values.serviceAccount.create .Values.rbac.create }}
+kind: ClusterRoleBinding
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  name: {{ include "event-exporter.fullname" . }}
+  labels:
+    {{- include "event-exporter.labels" . | nindent 4 }}
+subjects:
+  - kind: ServiceAccount
+    name: {{ include "event-exporter.serviceAccountName" . }}
+    namespace: {{ .Release.Namespace }}
+roleRef:
+  kind: ClusterRole
+  name: {{ include "event-exporter.fullname" . }}
+  apiGroup: rbac.authorization.k8s.io
+{{- end }}
+{{- end -}}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/_components/event-exporter/_service.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/_components/event-exporter/_service.yaml
new file mode 100644
index 0000000000..6fa29ec1a0
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/_components/event-exporter/_service.yaml
@@ -0,0 +1,17 @@
+{{- define "event-exporter.resources.service" -}}
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ include "event-exporter.fullname" . }}
+  labels:
+    {{- include "event-exporter.labels" . | nindent 4 }}
+spec:
+  type: ClusterIP
+  ports:
+  - name: metrics
+    port: 9102
+    targetPort: metrics
+    protocol: TCP
+  selector:
+    {{- include "event-exporter.selectorLabels" . | nindent 4 }}
+{{- end -}}
\ No newline at end of file
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/_components/event-exporter/_serviceMontor.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/_components/event-exporter/_serviceMontor.yaml
new file mode 100644
index 0000000000..6092443f0a
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/_components/event-exporter/_serviceMontor.yaml
@@ -0,0 +1,14 @@
+{{- define "event-exporter.resources.serviceMonitor" -}}
+apiVersion: monitoring.coreos.com/v1
+kind: ServiceMonitor
+metadata:
+  name: {{ include "event-exporter.fullname" . }}
+  labels:
+    {{- include "event-exporter.labels" . | nindent 4 }}
+spec:
+  endpoints:
+  - port: metrics
+  selector:
+    matchLabels:
+    {{- include "event-exporter.selectorLabels" . | nindent 6 }}
+{{- end -}}
\ No newline at end of file
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/_components/monitor/_deployment.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/_components/monitor/_deployment.yaml
new file mode 100644
index 0000000000..7efa6557b1
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/_components/monitor/_deployment.yaml
@@ -0,0 +1,70 @@
+{{- define "monitor.resources.deployment" -}}
+{{ $cfCommonTplSemver := printf "cf-common-%s" (index .Subcharts "cf-common").Chart.Version }}
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: {{ include "monitor.fullname" . }}
+  labels:
+    {{- include "monitor.labels" . | nindent 4 }}
+spec:
+  replicas: {{ .Values.replicasCount }}
+  strategy:
+    type: {{ .Values.updateStrategy.type }}
+  selector:
+    matchLabels:
+      {{- include "monitor.selectorLabels" . | nindent 6 }}
+  template:
+    metadata:
+      labels:
+        {{- include "monitor.selectorLabels" . | nindent 8 }}
+      {{- with .Values.podAnnotations }}
+      annotations:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+    spec:
+      {{- include (printf "%s.image.pullSecrets" $cfCommonTplSemver ) . | nindent 8 }}
+      serviceAccountName: {{ include "monitor.serviceAccountName" . }}
+      {{- if .Values.podSecurityContext.enabled }}
+      securityContext: {{- omit .Values.podSecurityContext "enabled" | toYaml | nindent 8 }}
+      {{- end }}
+      containers:
+      - name: monitor
+        image: {{ include (printf "%s.image.name" $cfCommonTplSemver ) (dict "image" .Values.image "context" .) }}
+        imagePullPolicy: {{ .Values.image.pullPolicy | default "Always" }}
+        env:
+        {{- include "monitor.environment-variables" . | nindent 8 }}
+        ports:
+        - name: http
+          containerPort: 9020
+        readinessProbe:
+          initialDelaySeconds: {{ .Values.readinessProbe.initialDelaySeconds }}
+          periodSeconds: {{ .Values.readinessProbe.periodSeconds }}
+          timeoutSeconds: {{ .Values.readinessProbe.timeoutSeconds }}
+          successThreshold: {{ .Values.readinessProbe.successThreshold }}
+          failureThreshold: {{ .Values.readinessProbe.failureThreshold }}
+          httpGet:
+            path: /api/ping
+            port: 9020
+        resources:
+          {{- toYaml .Values.resources | nindent 12  }}
+        volumeMounts:
+        {{- with .Values.extraVolumeMounts }}
+          {{- toYaml . | nindent 8 }}
+        {{- end }}
+      {{- with .Values.nodeSelector }}
+      nodeSelector:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.affinity }}
+      affinity:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.tolerations }}
+      tolerations:
+        {{- toYaml . | nindent 6 }}
+      {{- end }}
+      volumes:
+      {{- with .Values.extraVolumes }}
+        {{- toYaml . | nindent 6 }}
+      {{- end }}
+{{- end -}}
\ No newline at end of file
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/_components/monitor/_env-vars.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/_components/monitor/_env-vars.yaml
new file mode 100644
index 0000000000..f58c7fa250
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/_components/monitor/_env-vars.yaml
@@ -0,0 +1,26 @@
+{{- define "monitor.environment-variables.defaults" }}
+SERVICE_NAME: {{ include "monitor.fullname" . }}
+PORT: 9020
+HELM3: true
+NODE_OPTIONS: "--max_old_space_size=4096"
+{{- end }}
+
+{{- define "monitor.environment-variables.calculated" }}
+API_TOKEN: {{ include "runtime.installation-token-env-var-value" . | nindent 2 }}
+CLUSTER_ID: {{ include "runtime.runtime-environment-spec.context-name" . }}
+API_URL: {{ include "runtime.runtime-environment-spec.codefresh-host" . }}/api/k8s-monitor/events
+ACCOUNT_ID: {{ .Values.global.accountId }}
+NAMESPACE: {{ .Release.Namespace }}
+{{- if .Values.rbac.namespaced }}
+ROLE_BINDING: true
+{{- end }}
+{{- end }}
+
+{{- define "monitor.environment-variables" }}
+{{- $cfCommonTplSemver := printf "cf-common-%s" (index .Subcharts "cf-common").Chart.Version }}
+{{- $defaults := (include "monitor.environment-variables.defaults" . | fromYaml) }}
+{{- $calculated := (include "monitor.environment-variables.calculated" . | fromYaml) }}
+{{- $overrides := .Values.env }}
+{{- $mergedValues := mergeOverwrite (merge $defaults $calculated) $overrides }}
+{{- include (printf "%s.env-vars" $cfCommonTplSemver) (dict "Values" $mergedValues "context" .) }}
+{{- end }}
\ No newline at end of file
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/_components/monitor/_helpers.tpl b/charts/codefresh/cf-runtime/7.5.5/templates/_components/monitor/_helpers.tpl
new file mode 100644
index 0000000000..71cc1c027d
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/_components/monitor/_helpers.tpl
@@ -0,0 +1,42 @@
+{{/*
+Expand the name of the chart.
+*/}}
+{{- define "monitor.name" -}}
+    {{- printf "%s-%s" (include "cf-runtime.name" .) "monitor" | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{/*
+Create a default fully qualified app name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+If release name contains chart name it will be used as a full name.
+*/}}
+{{- define "monitor.fullname" -}}
+    {{- printf "%s-%s" (include "cf-runtime.fullname" .) "monitor" | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{/*
+Common labels
+*/}}
+{{- define "monitor.labels" -}}
+{{ include "cf-runtime.labels" . }}
+codefresh.io/application: monitor
+{{- end }}
+
+{{/*
+Selector labels
+*/}}
+{{- define "monitor.selectorLabels" -}}
+{{ include "cf-runtime.selectorLabels" . }}
+codefresh.io/application: monitor
+{{- end }}
+
+{{/*
+Create the name of the service account to use
+*/}}
+{{- define "monitor.serviceAccountName" -}}
+{{- if .Values.serviceAccount.create }}
+{{- default (include "monitor.fullname" .) .Values.serviceAccount.name }}
+{{- else }}
+{{- default "default" .Values.serviceAccount.name }}
+{{- end }}
+{{- end }}
\ No newline at end of file
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/_components/monitor/_rbac.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/_components/monitor/_rbac.yaml
new file mode 100644
index 0000000000..88204796ae
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/_components/monitor/_rbac.yaml
@@ -0,0 +1,56 @@
+{{- define "monitor.resources.rbac" -}}
+{{- if .Values.serviceAccount.create }}
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: {{ include "monitor.serviceAccountName" . }}
+  labels:
+    {{- include "monitor.labels" . | nindent 4 }}
+  {{- with .Values.serviceAccount.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+{{- end }}
+---
+{{- if .Values.rbac.create }}
+kind: {{ .Values.rbac.namespaced | ternary "Role" "ClusterRole" }}
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  name: {{ include "monitor.fullname" . }}
+  labels:
+    {{- include "monitor.labels" . | nindent 4 }}
+rules:
+  - apiGroups: [ "" ]
+    resources: [ "*" ]
+    verbs: [ "get", "list", "watch", "create", "delete" ]
+  - apiGroups: [ "" ]
+    resources: [ "pods" ]
+    verbs: [ "get", "list", "watch", "create", "deletecollection" ]
+  - apiGroups: [ "extensions" ]
+    resources: [ "*" ]
+    verbs: [ "get", "list", "watch" ]
+  - apiGroups: [ "apps" ]
+    resources: [ "*" ]
+    verbs: [ "get", "list", "watch" ]
+{{- with .Values.rbac.rules }}
+  {{ toYaml . | nindent 2 }}
+{{- end }}
+{{- end }}
+---
+{{- if and .Values.serviceAccount.create .Values.rbac.create }}
+kind: {{ .Values.rbac.namespaced | ternary "RoleBinding" "ClusterRoleBinding" }}
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  name: {{ include "monitor.fullname" . }}
+  labels:
+    {{- include "monitor.labels" . | nindent 4 }}
+subjects:
+  - kind: ServiceAccount
+    name: {{ include "monitor.serviceAccountName" . }}
+    namespace: {{ .Release.Namespace }}
+roleRef:
+  kind: {{ .Values.rbac.namespaced | ternary "Role" "ClusterRole" }}
+  name: {{ include "monitor.fullname" . }}
+  apiGroup: rbac.authorization.k8s.io
+{{- end }}
+{{- end -}}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/_components/monitor/_service.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/_components/monitor/_service.yaml
new file mode 100644
index 0000000000..f6ae9bb0f7
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/_components/monitor/_service.yaml
@@ -0,0 +1,17 @@
+{{- define "monitor.resources.service" -}}
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ include "monitor.fullname" . }}
+  labels:
+    {{- include "monitor.labels" . | nindent 4 }}
+spec:
+  type: ClusterIP
+  ports:
+  - name: http
+    port: 80
+    protocol: TCP
+    targetPort: 9020
+  selector:
+    {{- include "monitor.selectorLabels" . | nindent 4 }}
+{{- end -}}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/_components/runner/_deployment.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/_components/runner/_deployment.yaml
new file mode 100644
index 0000000000..e1fb9439ab
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/_components/runner/_deployment.yaml
@@ -0,0 +1,103 @@
+{{- define "runner.resources.deployment" -}}
+{{ $cfCommonTplSemver := printf "cf-common-%s" (index .Subcharts "cf-common").Chart.Version }}
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: {{ include "runner.fullname" . }}
+  labels:
+    {{- include "runner.labels" . | nindent 4 }}
+spec:
+  replicas: {{ .Values.replicasCount }}
+  strategy:
+    type: {{ .Values.updateStrategy.type }}
+  selector:
+    matchLabels:
+      {{- include "runner.selectorLabels" . | nindent 6 }}
+  template:
+    metadata:
+      labels:
+        {{- include "runner.selectorLabels" . | nindent 8 }}
+      {{- with .Values.podAnnotations }}
+      annotations:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+    spec:
+      {{- include (printf "%s.image.pullSecrets" $cfCommonTplSemver ) . | nindent 8 }}
+      serviceAccountName: {{ include "runner.serviceAccountName" . }}
+      {{- if .Values.podSecurityContext.enabled }}
+      securityContext: {{- omit .Values.podSecurityContext "enabled" | toYaml | nindent 8 }}
+      {{- end }}
+      initContainers:
+      - name: init
+        image: {{ include (printf "%s.image.name" $cfCommonTplSemver ) (dict "image" .Values.init.image "context" .) }}
+        imagePullPolicy: {{ .Values.init.image.pullPolicy | default "IfNotPresent" }}
+        command:
+        - /bin/bash
+        args:
+        - -ec
+        - | {{ .Files.Get "files/init-runtime.sh" | nindent 10 }}
+        env:
+        {{- include "runner-init.environment-variables" . | nindent 8 }}
+        {{- with .Values.init.resources }}
+        resources:
+          {{- toYaml . | nindent 10  }}
+        {{- end }}
+      containers:
+      - name: runner
+        image: {{ include (printf "%s.image.name" $cfCommonTplSemver ) (dict "image" .Values.image "context" .) }}
+        imagePullPolicy: {{ .Values.image.pullPolicy | default "IfNotPresent" }}
+        env:
+        {{- include "runner.environment-variables" . | nindent 8 }}
+        ports:
+        - name: http
+          containerPort: 8080
+        readinessProbe:
+          initialDelaySeconds: {{ .Values.readinessProbe.initialDelaySeconds }}
+          periodSeconds: {{ .Values.readinessProbe.periodSeconds }}
+          timeoutSeconds: {{ .Values.readinessProbe.timeoutSeconds }}
+          successThreshold: {{ .Values.readinessProbe.successThreshold }}
+          failureThreshold: {{ .Values.readinessProbe.failureThreshold }}
+          httpGet:
+            path: /health
+            port: http
+        {{- with .Values.resources }}
+        resources:
+          {{- toYaml . | nindent 10  }}
+        {{- end }}
+        {{- with .Values.extraVolumeMounts }}
+        volumeMounts:
+          {{- toYaml . | nindent 8 }}
+        {{- end }}
+      {{- if .Values.sidecar.enabled }}
+      - name: reconcile-runtime
+        image: {{ include (printf "%s.image.name" $cfCommonTplSemver ) (dict "image" .Values.sidecar.image "context" .) }}
+        imagePullPolicy: {{ .Values.sidecar.image.pullPolicy | default "IfNotPresent" }}
+        command:
+        - /bin/bash
+        args:
+        - -ec
+        - | {{ .Files.Get "files/reconcile-runtime.sh" | nindent 10 }}
+        env:
+        {{- include "runner-sidecar.environment-variables" . | nindent 8 }}
+        {{- with .Values.sidecar.resources }}
+        resources:
+          {{- toYaml . | nindent 10  }}
+        {{- end }}
+      {{- end }}
+      {{- with .Values.nodeSelector }}
+      nodeSelector:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.affinity }}
+      affinity:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.tolerations }}
+      tolerations:
+        {{- toYaml . | nindent 6 }}
+      {{- end }}
+      {{- with .Values.extraVolumes }}
+      volumes:
+        {{- toYaml . | nindent 6 }}
+      {{- end }}
+{{- end -}}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/_components/runner/_helpers.tpl b/charts/codefresh/cf-runtime/7.5.5/templates/_components/runner/_helpers.tpl
new file mode 100644
index 0000000000..2608cb67ee
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/_components/runner/_helpers.tpl
@@ -0,0 +1,42 @@
+{{/*
+Expand the name of the chart.
+*/}}
+{{- define "runner.name" -}}
+  {{- printf "%s-%s" (include "cf-runtime.name" .) "runner" | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{/*
+Create a default fully qualified app name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+If release name contains chart name it will be used as a full name.
+*/}}
+{{- define "runner.fullname" -}}
+  {{- printf "%s-%s" (include "cf-runtime.fullname" .) "runner" | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{/*
+Common labels
+*/}}
+{{- define "runner.labels" -}}
+{{ include "cf-runtime.labels" . }}
+codefresh.io/application: runner
+{{- end }}
+
+{{/*
+Selector labels
+*/}}
+{{- define "runner.selectorLabels" -}}
+{{ include "cf-runtime.selectorLabels" . }}
+codefresh.io/application: runner
+{{- end }}
+
+{{/*
+Create the name of the service account to use
+*/}}
+{{- define "runner.serviceAccountName" -}}
+  {{- if .Values.serviceAccount.create }}
+    {{- default (include "runner.fullname" .) .Values.serviceAccount.name }}
+  {{- else }}
+    {{- default "default" .Values.serviceAccount.name }}
+  {{- end }}
+{{- end }}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/_components/runner/_rbac.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/_components/runner/_rbac.yaml
new file mode 100644
index 0000000000..d95b958d54
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/_components/runner/_rbac.yaml
@@ -0,0 +1,53 @@
+{{- define "runner.resources.rbac" -}}
+{{- if .Values.serviceAccount.create }}
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: {{ include "runner.serviceAccountName" . }}
+  labels:
+    {{- include "runner.labels" . | nindent 4 }}
+  {{- with .Values.serviceAccount.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+{{- end }}
+---
+{{- if .Values.rbac.create }}
+kind: Role
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  name: {{ include "runner.fullname" . }}
+  labels:
+    {{- include "runner.labels" . | nindent 4 }}
+rules:
+  - apiGroups: [ "" ]
+    resources: [ "pods", "persistentvolumeclaims" ]
+    verbs: [ "get", "create", "delete", patch ]
+  - apiGroups: [ "" ]
+    resources: [ "configmaps", "secrets" ]
+    verbs: [ "get", "create", "update", patch ]
+  - apiGroups: [ "apps" ]
+    resources: [ "deployments" ]
+    verbs: [ "get" ]
+{{- with .Values.rbac.rules }}
+  {{ toYaml . | nindent 2 }}
+{{- end }}
+{{- end }}
+---
+{{- if and .Values.serviceAccount.create .Values.rbac.create }}
+kind: RoleBinding
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  name: {{ include "runner.fullname" . }}
+  labels:
+    {{- include "runner.labels" . | nindent 4 }}
+subjects:
+  - kind: ServiceAccount
+    name: {{ include "runner.serviceAccountName" . }}
+    namespace: {{ .Release.Namespace }}
+roleRef:
+  kind: Role
+  name: {{ include "runner.fullname" . }}
+  apiGroup: rbac.authorization.k8s.io
+{{- end }}
+{{- end -}}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/_components/runner/environment-variables/_init-container.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/_components/runner/environment-variables/_init-container.yaml
new file mode 100644
index 0000000000..6dda110f78
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/_components/runner/environment-variables/_init-container.yaml
@@ -0,0 +1,30 @@
+{{- define "runner-init.environment-variables.defaults" }}
+HOME: /tmp
+{{- end }}
+
+{{- define "runner-init.environment-variables.calculated" }}
+AGENT_NAME: {{ include "runtime.runtime-environment-spec.agent-name" . }}
+API_HOST: {{ include "runtime.runtime-environment-spec.codefresh-host" . }}
+AGENT_CODEFRESH_TOKEN:
+  valueFrom:
+    secretKeyRef:
+      name: {{ include "runner.fullname" . }}
+      key: agent-codefresh-token
+      optional: true
+EXISTING_AGENT_CODEFRESH_TOKEN: {{ include "runtime.agent-token-env-var-value" . | nindent 2 }}
+KUBE_CONTEXT: {{ include "runtime.runtime-environment-spec.context-name" . }}
+KUBE_NAMESPACE: {{ .Release.Namespace }}
+OWNER_NAME: {{ include "runner.fullname" . }}
+RUNTIME_NAME: {{ include "runtime.runtime-environment-spec.runtime-name" . }}
+SECRET_NAME: {{ include "runner.fullname" . }}
+USER_CODEFRESH_TOKEN: {{ include "runtime.installation-token-env-var-value" . | nindent 2 }}
+{{- end }}
+
+{{- define "runner-init.environment-variables" }}
+  {{- $cfCommonTplSemver := printf "cf-common-%s" (index .Subcharts "cf-common").Chart.Version }}
+  {{- $defaults := (include "runner-init.environment-variables.defaults" . | fromYaml) }}
+  {{- $calculated := (include "runner-init.environment-variables.calculated" . | fromYaml) }}
+  {{- $overrides := .Values.env }}
+  {{- $mergedValues := mergeOverwrite (merge $defaults $calculated) $overrides }}
+  {{- include (printf "%s.env-vars" $cfCommonTplSemver) (dict "Values" $mergedValues "context" .) }}
+{{- end }}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/_components/runner/environment-variables/_main-container.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/_components/runner/environment-variables/_main-container.yaml
new file mode 100644
index 0000000000..a9e3b78de4
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/_components/runner/environment-variables/_main-container.yaml
@@ -0,0 +1,29 @@
+{{- define "runner.environment-variables.defaults" }}
+AGENT_MODE: InCluster
+SELF_DEPLOYMENT_NAME:
+  valueFrom:
+    fieldRef:
+      fieldPath: metadata.name
+{{- end }}
+
+{{- define "runner.environment-variables.calculated" }}
+AGENT_ID: {{ include "runtime.runtime-environment-spec.agent-name" . }}
+CODEFRESH_HOST: {{ include "runtime.runtime-environment-spec.codefresh-host" . }}
+CODEFRESH_IN_CLUSTER_RUNTIME: {{ include "runtime.runtime-environment-spec.runtime-name" . }}
+CODEFRESH_TOKEN:
+  valueFrom:
+    secretKeyRef:
+      name: {{ include "runner.fullname" . }}
+      key: agent-codefresh-token
+DOCKER_REGISTRY: {{ .Values.global.imageRegistry }}
+RUNTIME_CHART_VERSION: {{ .Chart.Version }}
+{{- end }}
+
+{{- define "runner.environment-variables" }}
+{{- $cfCommonTplSemver := printf "cf-common-%s" (index .Subcharts "cf-common").Chart.Version }}
+{{- $defaults := (include "runner.environment-variables.defaults" . | fromYaml) }}
+{{- $calculated := (include "runner.environment-variables.calculated" . | fromYaml) }}
+{{- $overrides := .Values.env }}
+{{- $mergedValues := mergeOverwrite (merge $defaults $calculated) $overrides }}
+{{- include (printf "%s.env-vars" $cfCommonTplSemver) (dict "Values" $mergedValues "context" .) }}
+{{- end }}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/_components/runner/environment-variables/_sidecar-container.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/_components/runner/environment-variables/_sidecar-container.yaml
new file mode 100644
index 0000000000..3adcbe5d49
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/_components/runner/environment-variables/_sidecar-container.yaml
@@ -0,0 +1,22 @@
+{{- define "runner-sidecar.environment-variables.defaults" }}
+HOME: /tmp
+{{- end }}
+
+{{- define "runner-sidecar.environment-variables.calculated" }}
+API_HOST: {{ include "runtime.runtime-environment-spec.codefresh-host" . }}
+USER_CODEFRESH_TOKEN: {{ include "runtime.installation-token-env-var-value" . | nindent 2 }}
+KUBE_CONTEXT: {{ include "runtime.runtime-environment-spec.context-name" . }}
+KUBE_NAMESPACE: {{ .Release.Namespace }}
+OWNER_NAME: {{ include "runner.fullname" . }}
+RUNTIME_NAME: {{ include "runtime.runtime-environment-spec.runtime-name" . }}
+CONFIGMAP_NAME: {{ printf "%s-%s" (include "runtime.fullname" .) "spec" }}
+{{- end }}
+
+{{- define "runner-sidecar.environment-variables" }}
+  {{- $cfCommonTplSemver := printf "cf-common-%s" (index .Subcharts "cf-common").Chart.Version }}
+  {{- $defaults := (include "runner-sidecar.environment-variables.defaults" . | fromYaml) }}
+  {{- $calculated := (include "runner-sidecar.environment-variables.calculated" . | fromYaml) }}
+  {{- $overrides := .Values.sidecar.env }}
+  {{- $mergedValues := mergeOverwrite (merge $defaults $calculated) $overrides }}
+  {{- include (printf "%s.env-vars" $cfCommonTplSemver) (dict "Values" $mergedValues "context" .) }}
+{{- end }}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/_components/volume-provisioner/_cronjob.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/_components/volume-provisioner/_cronjob.yaml
new file mode 100644
index 0000000000..20bd2d56e1
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/_components/volume-provisioner/_cronjob.yaml
@@ -0,0 +1,58 @@
+{{- define "dind-volume-provisioner.resources.cronjob" -}}
+{{ $cfCommonTplSemver := printf "cf-common-%s" (index .Subcharts "cf-common").Chart.Version }}
+{{- if not (eq .Values.storage.backend "local") }}
+apiVersion: batch/v1
+kind: CronJob
+metadata:
+  name: {{ include "dind-volume-cleanup.fullname" . }}
+  labels:
+    {{- include "dind-volume-cleanup.labels" . | nindent 4 }}
+spec:
+  concurrencyPolicy: {{ .Values.concurrencyPolicy }}
+  schedule: {{ .Values.schedule | quote }}
+  successfulJobsHistoryLimit: {{ .Values.successfulJobsHistory }}
+  failedJobsHistoryLimit: {{ .Values.failedJobsHistory }}
+  {{- with .Values.suspend }}
+  suspend: {{ . }}
+  {{- end }}
+  jobTemplate:
+    spec:
+      template:
+        metadata:
+          labels:
+            {{- include "dind-volume-cleanup.selectorLabels" . | nindent 12 }}
+          {{- with .Values.podAnnotations }}
+          annotations:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+        spec:
+          {{- include (printf "%s.image.pullSecrets" $cfCommonTplSemver ) . | nindent 10 }}
+          serviceAccountName: {{ include "dind-volume-provisioner.serviceAccountName" . }}
+          {{- if .Values.podSecurityContext.enabled }}
+          securityContext: {{- omit .Values.podSecurityContext "enabled" | toYaml | nindent 12 }}
+          {{- end }}
+          restartPolicy: {{ .Values.restartPolicy | default "Never" }}
+          containers:
+          - name: dind-volume-cleanup
+            image: {{ include (printf "%s.image.name" $cfCommonTplSemver ) (dict "image" .Values.image "context" .) }}
+            imagePullPolicy: {{ .Values.image.pullPolicy | default "Always" }}
+            env:
+            {{- include (printf "%s.env-vars" $cfCommonTplSemver) (dict "Values" .Values.env "context" .) | nindent 12 }}
+            - name: PROVISIONED_BY
+              value: {{ include "dind-volume-provisioner.volumeProvisionerName" . }}
+            resources:
+            {{- toYaml .Values.resources | nindent 14 }}
+          {{- with .Values.nodeSelector }}
+          nodeSelector:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          {{- with .Values.affinity }}
+          affinity:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          {{- with .Values.tolerations }}
+          tolerations:
+            {{- toYaml . | nindent 10 }}
+          {{- end }}
+  {{- end }}
+{{- end -}}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/_components/volume-provisioner/_daemonset.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/_components/volume-provisioner/_daemonset.yaml
new file mode 100644
index 0000000000..b24814702a
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/_components/volume-provisioner/_daemonset.yaml
@@ -0,0 +1,98 @@
+{{- define "dind-volume-provisioner.resources.daemonset" -}}
+{{ $cfCommonTplSemver := printf "cf-common-%s" (index .Subcharts "cf-common").Chart.Version }}
+{{ $localVolumeParentDir := .Values.storage.local.volumeParentDir  }}
+{{- if eq .Values.storage.backend "local" }}
+---
+apiVersion: apps/v1
+kind: DaemonSet
+metadata:
+  name: {{ include "dind-lv-monitor.fullname" . }}
+  labels:
+    {{- include "dind-lv-monitor.labels" . | nindent 4 }}
+spec:
+  selector:
+    matchLabels:
+      {{- include "dind-lv-monitor.selectorLabels" . | nindent 6 }}
+  template:
+    metadata:
+      labels:
+        {{- include "dind-lv-monitor.selectorLabels" . | nindent 8 }}
+      {{- with .Values.podAnnotations }}
+      annotations:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+    spec:
+      {{- include (printf "%s.image.pullSecrets" $cfCommonTplSemver ) . | nindent 8 }}
+      serviceAccountName: {{ include "dind-volume-provisioner.serviceAccountName" . }}
+      {{- if .Values.podSecurityContext.enabled }}
+      securityContext: {{- omit .Values.podSecurityContext "enabled" | toYaml | nindent 8 }}
+      {{- end }}
+      {{- if .Values.volumePermissions.enabled }}
+      initContainers:
+      - name: volume-permissions
+        image: {{ include (printf "%s.image.name" $cfCommonTplSemver ) (dict "image" .Values.volumePermissions.image "context" .) }}
+        imagePullPolicy: {{ .Values.volumePermissions.image.pullPolicy | default "Always" }}
+        command:
+         - /bin/sh
+        args:
+         - -ec
+         - |
+           chown -R {{ .Values.containerSecurityContext.runAsUser }}:{{ .Values.podSecurityContext.fsGroup }} {{ $localVolumeParentDir }}
+        volumeMounts:
+        - mountPath: {{ $localVolumeParentDir }}
+          name: dind-volume-dir
+        {{- if eq ( toString ( .Values.volumePermissions.securityContext.runAsUser )) "auto" }}
+        securityContext: {{- omit .Values.volumePermissions.securityContext "runAsUser" | toYaml | nindent 10 }}
+        {{- else }}
+        securityContext: {{- .Values.volumePermissions.securityContext | toYaml | nindent 10 }}
+        {{- end }}
+        resources:
+          {{- toYaml .Values.volumePermissions.resources | nindent 10 }}
+      {{- end }}
+      containers:
+      - name: dind-lv-monitor
+        image: {{ include (printf "%s.image.name" $cfCommonTplSemver ) (dict "image" .Values.image "context" .) }}
+        imagePullPolicy: {{ .Values.image.pullPolicy | default "Always" }}
+        {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+        {{- end }}
+        command:
+          - /home/dind-volume-utils/bin/local-volumes-agent
+        env:
+          {{- include (printf "%s.env-vars" $cfCommonTplSemver) (dict "Values" .Values.env "context" .) | nindent 10 }}
+          - name: NODE_NAME
+            valueFrom:
+              fieldRef:
+                fieldPath: spec.nodeName
+          - name: VOLUME_PARENT_DIR
+            value: {{ $localVolumeParentDir }}
+        resources:
+          {{- toYaml .Values.resources | nindent 10  }}
+        volumeMounts:
+        - mountPath: {{ $localVolumeParentDir }}
+          readOnly: false
+          name: dind-volume-dir
+        {{- with .Values.extraVolumeMounts }}
+          {{- toYaml . | nindent 8 }}
+        {{- end }}
+      {{- with .Values.nodeSelector }}
+      nodeSelector:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.affinity }}
+      affinity:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.tolerations }}
+      tolerations:
+        {{- toYaml . | nindent 6 }}
+      {{- end }}
+      volumes:
+      - name: dind-volume-dir
+        hostPath:
+          path: {{ $localVolumeParentDir }}
+      {{- with .Values.extraVolumes }}
+        {{- toYaml . | nindent 6 }}
+      {{- end }}
+{{- end }}
+{{- end -}}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/_components/volume-provisioner/_deployment.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/_components/volume-provisioner/_deployment.yaml
new file mode 100644
index 0000000000..9252b45200
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/_components/volume-provisioner/_deployment.yaml
@@ -0,0 +1,67 @@
+{{- define "dind-volume-provisioner.resources.deployment" -}}
+{{ $cfCommonTplSemver := printf "cf-common-%s" (index .Subcharts "cf-common").Chart.Version }}
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: {{ include "dind-volume-provisioner.fullname" . }}
+  labels:
+    {{- include "dind-volume-provisioner.labels" . | nindent 4 }}
+spec:
+  replicas: {{ .Values.replicasCount }}
+  strategy:
+    type: {{ .Values.updateStrategy.type }}
+  selector:
+    matchLabels:
+      {{- include "dind-volume-provisioner.selectorLabels" . | nindent 6 }}
+  template:
+    metadata:
+      labels:
+        {{- include "dind-volume-provisioner.selectorLabels" . | nindent 8 }}
+      {{- with .Values.podAnnotations }}
+      annotations:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+    spec:
+      {{- include (printf "%s.image.pullSecrets" $cfCommonTplSemver ) . | nindent 8 }}
+      serviceAccountName: {{ include "dind-volume-provisioner.serviceAccountName" . }}
+      {{- if .Values.podSecurityContext.enabled }}
+      securityContext: {{- omit .Values.podSecurityContext "enabled" | toYaml | nindent 8 }}
+      {{- end }}
+      containers:
+      - name: dind-volume-provisioner
+        image: {{ include (printf "%s.image.name" $cfCommonTplSemver ) (dict "image" .Values.image "context" .) }}
+        imagePullPolicy: {{ .Values.image.pullPolicy | default "Always" }}
+        command:
+          - /usr/local/bin/dind-volume-provisioner
+          - -v=4
+          - --resync-period=50s
+        env:
+        {{- include "dind-volume-provisioner.environment-variables" . | nindent 8 }}
+        ports:
+        - name: http
+          containerPort: 8080
+        resources:
+          {{- toYaml .Values.resources | nindent 12  }}
+        volumeMounts:
+        {{- include "dind-volume-provisioner.volumeMounts.calculated" . | nindent 8 }}
+        {{- with .Values.extraVolumeMounts }}
+          {{- toYaml . | nindent 8 }}
+        {{- end }}
+      {{- with .Values.nodeSelector }}
+      nodeSelector:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.affinity }}
+      affinity:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.tolerations }}
+      tolerations:
+        {{- toYaml . | nindent 6 }}
+      {{- end }}
+      volumes:
+      {{- include "dind-volume-provisioner.volumes.calculated" . | nindent 6 }}
+      {{- with .Values.extraVolumes }}
+        {{- toYaml . | nindent 6 }}
+      {{- end }}
+{{- end -}}
\ No newline at end of file
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/_components/volume-provisioner/_env-vars.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/_components/volume-provisioner/_env-vars.yaml
new file mode 100644
index 0000000000..e1f5dfe603
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/_components/volume-provisioner/_env-vars.yaml
@@ -0,0 +1,88 @@
+{{- define "dind-volume-provisioner.environment-variables.defaults" }}
+{{- end }}
+
+{{- define "dind-volume-provisioner.environment-variables.calculated" }}
+DOCKER_REGISTRY: {{ .Values.global.imageRegistry }}
+PROVISIONER_NAME: {{ include "dind-volume-provisioner.volumeProvisionerName" . }}
+
+{{- if or .Values.storage.ebs.accessKeyId .Values.storage.ebs.accessKeyIdSecretKeyRef }}
+AWS_ACCESS_KEY_ID:
+  {{- if .Values.storage.ebs.accessKeyId }}
+  valueFrom:
+    secretKeyRef:
+      name: {{ include "dind-volume-provisioner.fullname" . }}
+      key: aws_access_key_id
+  {{- else if .Values.storage.ebs.accessKeyIdSecretKeyRef }}
+  valueFrom:
+    secretKeyRef:
+  {{- .Values.storage.ebs.accessKeyIdSecretKeyRef | toYaml | nindent 6 }}
+  {{- end }}
+{{- end }}
+
+{{- if or .Values.storage.ebs.secretAccessKey .Values.storage.ebs.secretAccessKeySecretKeyRef }}
+AWS_SECRET_ACCESS_KEY:
+  {{- if .Values.storage.ebs.secretAccessKey }}
+  valueFrom:
+    secretKeyRef:
+      name: {{ include "dind-volume-provisioner.fullname" . }}
+      key: aws_secret_access_key
+  {{- else if .Values.storage.ebs.secretAccessKeySecretKeyRef }}
+  valueFrom:
+    secretKeyRef:
+  {{- .Values.storage.ebs.secretAccessKeySecretKeyRef | toYaml | nindent 6 }}
+  {{- end }}
+{{- end }}
+
+{{- if or .Values.storage.gcedisk.serviceAccountJson .Values.storage.gcedisk.serviceAccountJsonSecretKeyRef }}
+GOOGLE_APPLICATION_CREDENTIALS: {{ printf "/etc/dind-volume-provisioner/credentials/%s" (.Values.storage.gcedisk.serviceAccountJsonSecretKeyRef.key | default "google-service-account.json") }}
+{{- end }}
+
+{{- if and .Values.storage.mountAzureJson }}
+AZURE_CREDENTIAL_FILE: /etc/kubernetes/azure.json
+CLOUDCONFIG_AZURE: /etc/kubernetes/azure.json
+{{- end }}
+
+{{- end }}
+
+{{- define "dind-volume-provisioner.environment-variables" }}
+{{- $cfCommonTplSemver := printf "cf-common-%s" (index .Subcharts "cf-common").Chart.Version }}
+{{- $defaults := (include "dind-volume-provisioner.environment-variables.defaults" . | fromYaml) }}
+{{- $calculated := (include "dind-volume-provisioner.environment-variables.calculated" . | fromYaml) }}
+{{- $overrides := .Values.env }}
+{{- $mergedValues := mergeOverwrite (merge $defaults $calculated) $overrides }}
+{{- include (printf "%s.env-vars" $cfCommonTplSemver) (dict "Values" $mergedValues "context" .) }}
+{{- end }}
+
+
+{{- define "dind-volume-provisioner.volumes.calculated" }}
+  {{- if .Values.storage.gcedisk.serviceAccountJson }}
+- name: credentials
+  secret:
+    secretName: {{ include "dind-volume-provisioner.fullname" . }}
+    optional: true
+  {{- else if .Values.storage.gcedisk.serviceAccountJsonSecretKeyRef }}
+- name: credentials
+  secret:
+    secretName: {{ .Values.storage.gcedisk.serviceAccountJsonSecretKeyRef.name }}
+    optional: true
+  {{- end }}
+  {{- if .Values.storage.mountAzureJson }}
+- name: azure-json
+  hostPath:
+    path: /etc/kubernetes/azure.json
+    type: File
+  {{- end }}
+{{- end }}
+
+{{- define "dind-volume-provisioner.volumeMounts.calculated" }}
+  {{- if or .Values.storage.gcedisk.serviceAccountJson .Values.storage.gcedisk.serviceAccountJsonSecretKeyRef }}
+- name: credentials
+  readOnly: true
+  mountPath: "/etc/dind-volume-provisioner/credentials"
+  {{- end }}
+  {{- if .Values.storage.mountAzureJson }}
+- name: azure-json
+  readOnly: true
+  mountPath: "/etc/kubernetes/azure.json"
+  {{- end }}
+{{- end }}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/_components/volume-provisioner/_helpers.tpl b/charts/codefresh/cf-runtime/7.5.5/templates/_components/volume-provisioner/_helpers.tpl
new file mode 100644
index 0000000000..e3d3a0d3f7
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/_components/volume-provisioner/_helpers.tpl
@@ -0,0 +1,93 @@
+{{/*
+Expand the name of the chart.
+*/}}
+{{- define "dind-volume-provisioner.name" -}}
+    {{- printf "%s-%s" (include "cf-runtime.name" .) "volume-provisioner" | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{/*
+Create a default fully qualified app name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+If release name contains chart name it will be used as a full name.
+*/}}
+{{- define "dind-volume-provisioner.fullname" -}}
+    {{- printf "%s-%s" (include "cf-runtime.fullname" .) "volume-provisioner" | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{- define "dind-volume-cleanup.fullname" -}}
+    {{- printf "%s-%s" (include "cf-runtime.fullname" .) "volume-cleanup" | trunc 52 | trimSuffix "-" }}
+{{- end }}
+
+{{- define "dind-lv-monitor.fullname" -}}
+    {{- printf "%s-%s" (include "cf-runtime.fullname" .) "lv-monitor" | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{/*
+Provisioner name for storage class
+*/}}
+{{- define "dind-volume-provisioner.volumeProvisionerName" }}
+    {{- printf "codefresh.io/dind-volume-provisioner-runner-%s" .Release.Namespace }}
+{{- end }}
+
+{{/*
+Common labels for dind-lv-monitor
+*/}}
+{{- define "dind-lv-monitor.labels" -}}
+{{ include "cf-runtime.labels" . }}
+codefresh.io/application: lv-monitor
+{{- end }}
+
+{{/*
+Selector labels for dind-lv-monitor
+*/}}
+{{- define "dind-lv-monitor.selectorLabels" -}}
+{{ include "cf-runtime.selectorLabels" . }}
+codefresh.io/application: lv-monitor
+{{- end }}
+
+{{/*
+Common labels for dind-volume-provisioner
+*/}}
+{{- define "dind-volume-provisioner.labels" -}}
+{{ include "cf-runtime.labels" . }}
+codefresh.io/application: volume-provisioner
+{{- end }}
+
+{{/*
+Selector labels for dind-volume-provisioner
+*/}}
+{{- define "dind-volume-provisioner.selectorLabels" -}}
+{{ include "cf-runtime.selectorLabels" . }}
+codefresh.io/application: volume-provisioner
+{{- end }}
+
+{{/*
+Common labels for dind-volume-cleanup
+*/}}
+{{- define "dind-volume-cleanup.labels" -}}
+{{ include "cf-runtime.labels" . }}
+codefresh.io/application: pv-cleanup
+{{- end }}
+
+{{/*
+Common labels for dind-volume-cleanup
+*/}}
+{{- define "dind-volume-cleanup.selectorLabels" -}}
+{{ include "cf-runtime.selectorLabels" . }}
+codefresh.io/application: pv-cleanup
+{{- end }}
+
+{{/*
+Create the name of the service account to use
+*/}}
+{{- define "dind-volume-provisioner.serviceAccountName" -}}
+{{- if .Values.serviceAccount.create }}
+{{- default (include "dind-volume-provisioner.fullname" .) .Values.serviceAccount.name }}
+{{- else }}
+{{- default "default" .Values.serviceAccount.name }}
+{{- end }}
+{{- end }}
+
+{{- define "dind-volume-provisioner.storageClassName" }}
+{{- printf "dind-local-volumes-runner-%s" .Release.Namespace }}
+{{- end }}
\ No newline at end of file
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/_components/volume-provisioner/_rbac.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/_components/volume-provisioner/_rbac.yaml
new file mode 100644
index 0000000000..fbcbc684fc
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/_components/volume-provisioner/_rbac.yaml
@@ -0,0 +1,71 @@
+{{- define "dind-volume-provisioner.resources.rbac" -}}
+{{- if .Values.serviceAccount.create }}
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: {{ include "dind-volume-provisioner.serviceAccountName" . }}
+  labels:
+    {{- include "dind-volume-provisioner.labels" . | nindent 4 }}
+  {{- with .Values.serviceAccount.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+{{- end }}
+---
+{{- if .Values.rbac.create }}
+kind: ClusterRole
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  name: {{ include "dind-volume-provisioner.fullname" . }}
+  labels:
+    {{- include "dind-volume-provisioner.labels" . | nindent 4 }}
+rules:
+  - apiGroups: [ "" ]
+    resources: [ "persistentvolumes" ]
+    verbs: [ "get", "list", "watch", "create", "delete", "patch" ]
+  - apiGroups: [ "" ]
+    resources: [ "persistentvolumeclaims" ]
+    verbs: [ "get", "list", "watch", "update", "delete" ]
+  - apiGroups: [ "storage.k8s.io" ]
+    resources: [ "storageclasses" ]
+    verbs: [ "get", "list", "watch" ]
+  - apiGroups: [ "" ]
+    resources: [ "events" ]
+    verbs: [ "list", "watch", "create", "update", "patch" ]
+  - apiGroups: [ "" ]
+    resources: [ "secrets" ]
+    verbs: [ "get", "list" ]
+  - apiGroups: [ "" ]
+    resources: [ "nodes" ]
+    verbs: [ "get", "list", "watch" ]
+  - apiGroups: [ "" ]
+    resources: [ "pods" ]
+    verbs: [ "get", "list", "watch", "create", "delete", "patch" ]
+  - apiGroups: [ "" ]
+    resources: [ "endpoints" ]
+    verbs: [ "get", "list", "watch", "create", "update", "delete" ]
+  - apiGroups: [ "coordination.k8s.io" ]
+    resources: [ "leases" ]
+    verbs: [ "get", "create", "update" ]
+{{- with .Values.rbac.rules }}
+  {{ toYaml . | nindent 2 }}
+{{- end }}
+{{- end }}
+---
+{{- if and .Values.serviceAccount.create .Values.rbac.create }}
+kind: ClusterRoleBinding
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  name: {{ include "dind-volume-provisioner.fullname" . }}
+  labels:
+    {{- include "dind-volume-provisioner.labels" . | nindent 4 }}
+subjects:
+  - kind: ServiceAccount
+    name: {{ include "dind-volume-provisioner.serviceAccountName" . }}
+    namespace: {{ .Release.Namespace }}
+roleRef:
+  kind: ClusterRole
+  name: {{ include "dind-volume-provisioner.fullname" . }}
+  apiGroup: rbac.authorization.k8s.io
+{{- end }}
+{{- end -}}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/_components/volume-provisioner/_secret.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/_components/volume-provisioner/_secret.yaml
new file mode 100644
index 0000000000..f361a79910
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/_components/volume-provisioner/_secret.yaml
@@ -0,0 +1,22 @@
+{{- define "dind-volume-provisioner.resources.secret" -}}
+{{- if or .Values.storage.ebs.accessKeyId .Values.storage.ebs.secretAccessKey .Values.storage.gcedisk.serviceAccountJson }}
+apiVersion: v1
+kind: Secret
+type: Opaque
+metadata:
+  name: {{ include "dind-volume-provisioner.fullname" . }}
+  labels:
+    {{- include "dind-volume-provisioner.labels" . | nindent 4 }}
+stringData:
+  {{- with .Values.storage.gcedisk.serviceAccountJson }}
+  google-service-account.json: |
+{{- . | nindent 4 }}
+  {{- end }}
+  {{- with .Values.storage.ebs.accessKeyId }}
+  aws_access_key_id: {{ . }}
+  {{- end }}
+  {{- with .Values.storage.ebs.secretAccessKey }}
+  aws_secret_access_key: {{ . }}
+  {{- end }}
+{{- end }}
+{{- end -}}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/_components/volume-provisioner/_storageclass.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/_components/volume-provisioner/_storageclass.yaml
new file mode 100644
index 0000000000..62e910c87e
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/_components/volume-provisioner/_storageclass.yaml
@@ -0,0 +1,47 @@
+{{- define "dind-volume-provisioner.resources.storageclass" -}}
+kind: StorageClass
+apiVersion: storage.k8s.io/v1
+metadata:
+  {{/* has to be exactly that */}}
+  name: {{ include "dind-volume-provisioner.storageClassName" . }}
+  labels:
+    {{- include "dind-volume-provisioner.labels" . | nindent 4 }}
+provisioner: {{ include "dind-volume-provisioner.volumeProvisionerName" . }}
+parameters:
+{{- if eq .Values.storage.backend "local" }}
+  volumeBackend: local
+  volumeParentDir: {{ .Values.storage.local.volumeParentDir }}
+{{- else if eq .Values.storage.backend "gcedisk" }}
+  volumeBackend: {{ .Values.storage.backend }}
+  type: {{ .Values.storage.gcedisk.volumeType | default "pd-ssd" }}
+  zone: {{ required ".Values.storage.gcedisk.availabilityZone is required" .Values.storage.gcedisk.availabilityZone }}
+  fsType: {{ .Values.storage.fsType | default "ext4" }}
+{{- else if or (eq .Values.storage.backend "ebs") (eq .Values.storage.backend "ebs-csi")}}
+  volumeBackend: {{ .Values.storage.backend }}
+  VolumeType: {{ .Values.storage.ebs.volumeType | default "gp3" }}
+  AvailabilityZone: {{ required ".Values.storage.ebs.availabilityZone is required" .Values.storage.ebs.availabilityZone }}
+  fsType: {{ .Values.storage.fsType | default "ext4" }}
+  encrypted: {{ .Values.storage.ebs.encrypted | default "false" | quote }}
+  {{- with .Values.storage.ebs.kmsKeyId }}
+  kmsKeyId: {{ . | quote }}
+  {{- end }}
+  {{- with .Values.storage.ebs.iops }}
+  iops: {{ . | quote }}
+  {{- end }}
+  {{- with .Values.storage.ebs.throughput }}
+  throughput: {{ . | quote }}
+  {{- end }}
+{{- else if or (eq .Values.storage.backend "azuredisk") (eq .Values.storage.backend "azuredisk-csi")}}
+  volumeBackend: {{ .Values.storage.backend }}
+  kind: managed
+  skuName: {{ .Values.storage.azuredisk.skuName | default "Premium_LRS" }}
+  fsType: {{ .Values.storage.fsType | default "ext4" }}
+  cachingMode: {{ .Values.storage.azuredisk.cachingMode | default "None" }}
+  {{- with .Values.storage.azuredisk.availabilityZone }}
+  availabilityZone: {{ . | quote }}
+  {{- end }}
+  {{- with .Values.storage.azuredisk.resourceGroup }}
+  resourceGroup: {{ . | quote }}
+  {{- end }}
+{{- end }}
+{{- end -}}
\ No newline at end of file
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/_helpers.tpl b/charts/codefresh/cf-runtime/7.5.5/templates/_helpers.tpl
new file mode 100644
index 0000000000..72f44e36af
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/_helpers.tpl
@@ -0,0 +1,51 @@
+{{/*
+Expand the name of the chart.
+*/}}
+{{- define "cf-runtime.name" -}}
+{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{/*
+Create a default fully qualified app name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+If release name contains chart name it will be used as a full name.
+*/}}
+{{- define "cf-runtime.fullname" -}}
+{{- if .Values.fullnameOverride }}
+{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" }}
+{{- else }}
+{{- $name := default .Chart.Name .Values.nameOverride }}
+{{- if contains $name .Release.Name }}
+{{- .Release.Name | trunc 63 | trimSuffix "-" }}
+{{- else }}
+{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" }}
+{{- end }}
+{{- end }}
+{{- end }}
+
+{{/*
+Create chart name and version as used by the chart label.
+*/}}
+{{- define "cf-runtime.chart" -}}
+{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{/*
+Common labels
+*/}}
+{{- define "cf-runtime.labels" -}}
+helm.sh/chart: {{ include "cf-runtime.chart" . }}
+{{ include "cf-runtime.selectorLabels" . }}
+{{- if .Chart.AppVersion }}
+app.kubernetes.io/version: {{ .Chart.AppVersion | quote }}
+{{- end }}
+app.kubernetes.io/managed-by: {{ .Release.Service }}
+{{- end }}
+
+{{/*
+Selector labels
+*/}}
+{{- define "cf-runtime.selectorLabels" -}}
+app.kubernetes.io/name: {{ include "cf-runtime.name" . }}
+app.kubernetes.io/instance: {{ .Release.Name }}
+{{- end }}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/app-proxy/deployment.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/app-proxy/deployment.yaml
new file mode 100644
index 0000000000..90341b3059
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/app-proxy/deployment.yaml
@@ -0,0 +1,9 @@
+{{- $appProxyContext := deepCopy . }}
+{{- $_ := set $appProxyContext "Values" (get .Values "appProxy") }}
+{{- $_ := set $appProxyContext.Values "global" (get .Values "global") }}
+{{- $_ := set $appProxyContext.Values "nameOverride" (get .Values "nameOverride") }}
+{{- $_ := set $appProxyContext.Values "fullnameOverride" (get .Values "fullnameOverride") }}
+
+{{- if $appProxyContext.Values.enabled }}
+{{- include "app-proxy.resources.deployment" $appProxyContext }}
+{{- end }}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/app-proxy/ingress.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/app-proxy/ingress.yaml
new file mode 100644
index 0000000000..56ab5e95ea
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/app-proxy/ingress.yaml
@@ -0,0 +1,9 @@
+{{- $appProxyContext := deepCopy . }}
+{{- $_ := set $appProxyContext "Values" (get .Values "appProxy") }}
+{{- $_ := set $appProxyContext.Values "global" (get .Values "global") }}
+{{- $_ := set $appProxyContext.Values "nameOverride" (get .Values "nameOverride") }}
+{{- $_ := set $appProxyContext.Values "fullnameOverride" (get .Values "fullnameOverride") }}
+
+{{- if $appProxyContext.Values.enabled }}
+{{- include "app-proxy.resources.ingress" $appProxyContext }}
+{{- end }}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/app-proxy/rbac.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/app-proxy/rbac.yaml
new file mode 100644
index 0000000000..4db87dcb45
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/app-proxy/rbac.yaml
@@ -0,0 +1,9 @@
+{{- $appProxyContext := deepCopy . }}
+{{- $_ := set $appProxyContext "Values" (get .Values "appProxy") }}
+{{- $_ := set $appProxyContext.Values "global" (get .Values "global") }}
+{{- $_ := set $appProxyContext.Values "nameOverride" (get .Values "nameOverride") }}
+{{- $_ := set $appProxyContext.Values "fullnameOverride" (get .Values "fullnameOverride") }}
+
+{{- if $appProxyContext.Values.enabled }}
+{{- include "app-proxy.resources.rbac" $appProxyContext }}
+{{- end }}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/app-proxy/service.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/app-proxy/service.yaml
new file mode 100644
index 0000000000..0b9d85ec0d
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/app-proxy/service.yaml
@@ -0,0 +1,9 @@
+{{- $appProxyContext := deepCopy . }}
+{{- $_ := set $appProxyContext "Values" (get .Values "appProxy") }}
+{{- $_ := set $appProxyContext.Values "global" (get .Values "global") }}
+{{- $_ := set $appProxyContext.Values "nameOverride" (get .Values "nameOverride") }}
+{{- $_ := set $appProxyContext.Values "fullnameOverride" (get .Values "fullnameOverride") }}
+
+{{- if $appProxyContext.Values.enabled }}
+{{- include "app-proxy.resources.service" $appProxyContext }}
+{{- end }}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/event-exporter/deployment.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/event-exporter/deployment.yaml
new file mode 100644
index 0000000000..4942882407
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/event-exporter/deployment.yaml
@@ -0,0 +1,9 @@
+{{- $eventExporterContext := deepCopy . }}
+{{- $_ := set $eventExporterContext "Values" (get .Values "event-exporter") }}
+{{- $_ := set $eventExporterContext.Values "global" (get .Values "global") }}
+{{- $_ := set $eventExporterContext.Values "nameOverride" (get .Values "nameOverride") }}
+{{- $_ := set $eventExporterContext.Values "fullnameOverride" (get .Values "fullnameOverride") }}
+
+{{- if and $eventExporterContext.Values.enabled }}
+{{- include "event-exporter.resources.deployment" $eventExporterContext }}
+{{- end }}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/event-exporter/rbac.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/event-exporter/rbac.yaml
new file mode 100644
index 0000000000..6a9bf5c65a
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/event-exporter/rbac.yaml
@@ -0,0 +1,9 @@
+{{- $eventExporterContext := deepCopy . }}
+{{- $_ := set $eventExporterContext "Values" (get .Values "event-exporter") }}
+{{- $_ := set $eventExporterContext.Values "global" (get .Values "global") }}
+{{- $_ := set $eventExporterContext.Values "nameOverride" (get .Values "nameOverride") }}
+{{- $_ := set $eventExporterContext.Values "fullnameOverride" (get .Values "fullnameOverride") }}
+
+{{- if and $eventExporterContext.Values.enabled }}
+{{- include "event-exporter.resources.rbac" $eventExporterContext }}
+{{- end }}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/event-exporter/service.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/event-exporter/service.yaml
new file mode 100644
index 0000000000..c5d856dfe3
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/event-exporter/service.yaml
@@ -0,0 +1,11 @@
+{{- $eventExporterContext := deepCopy . }}
+{{- $_ := set $eventExporterContext "Values" (get .Values "event-exporter") }}
+{{- $_ := set $eventExporterContext.Values "global" (get .Values "global") }}
+{{- $_ := set $eventExporterContext.Values "nameOverride" (get .Values "nameOverride") }}
+{{- $_ := set $eventExporterContext.Values "fullnameOverride" (get .Values "fullnameOverride") }}
+
+{{- if $eventExporterContext.Values.enabled }}
+{{- include "event-exporter.resources.service" $eventExporterContext }}
+---
+{{- include "event-exporter.resources.serviceMonitor" $eventExporterContext }}
+{{- end }}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/extra/extra-resources.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/extra/extra-resources.yaml
new file mode 100644
index 0000000000..1a9777c649
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/extra/extra-resources.yaml
@@ -0,0 +1,6 @@
+{{ $cfCommonTplSemver := printf "cf-common-%s" (index .Subcharts "cf-common").Chart.Version }}
+
+{{- range .Values.extraResources }}
+---
+{{ include (printf "%s.tplrender" $cfCommonTplSemver) (dict "Values" . "context" $) }}
+{{- end }}
\ No newline at end of file
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/extra/runtime-images-cm.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/extra/runtime-images-cm.yaml
new file mode 100644
index 0000000000..f269c84b2b
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/extra/runtime-images-cm.yaml
@@ -0,0 +1,19 @@
+{{ $cfCommonTplSemver := printf "cf-common-%s" (index .Subcharts "cf-common").Chart.Version }}
+{{ $values := .Values.runtime.engine.runtimeImages }}
+---
+kind: ConfigMap
+apiVersion: v1
+metadata:
+  {{- /* dummy template just to list runtime images */}}
+  name: {{ include "runtime.fullname" . }}-images
+  labels:
+    {{- include "runtime.labels" . | nindent 4 }}
+  annotations:
+    {{- with $values.annotations }}
+      {{- toYaml . | nindent 4 }}
+    {{- end }}
+data:
+  images: |
+    {{- range $key, $val := $values }}
+    image: {{ $val }}
+    {{- end }}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/hooks/post-install/cm-update-runtime.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/hooks/post-install/cm-update-runtime.yaml
new file mode 100644
index 0000000000..46a306c560
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/hooks/post-install/cm-update-runtime.yaml
@@ -0,0 +1,18 @@
+{{ $cfCommonTplSemver := printf "cf-common-%s" (index .Subcharts "cf-common").Chart.Version }}
+{{ $values := .Values.runtime.patch }}
+{{- if $values.enabled }}
+---
+kind: ConfigMap
+apiVersion: v1
+metadata:
+  name: {{ include "runtime.fullname" . }}-spec
+  labels:
+    {{- include "runtime.labels" . | nindent 4 }}
+  annotations:
+    {{- with $values.annotations }}
+      {{- toYaml . | nindent 4 }}
+    {{- end }}
+data:
+  runtime.yaml: |
+    {{ include "runtime.runtime-environment-spec.template" . | nindent 4 | trim }}
+{{- end }}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/hooks/post-install/job-gencerts-dind.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/hooks/post-install/job-gencerts-dind.yaml
new file mode 100644
index 0000000000..4a08a229c8
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/hooks/post-install/job-gencerts-dind.yaml
@@ -0,0 +1,68 @@
+{{ $cfCommonTplSemver := printf "cf-common-%s" (index .Subcharts "cf-common").Chart.Version }}
+{{ $values := .Values.runtime.gencerts }}
+{{- if and $values.enabled }}
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  name: {{ include "runtime.fullname" . }}-gencerts-dind
+  labels:
+    {{- include "runtime.labels" . | nindent 4 }}
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-weight: "3"
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+    {{- with $values.annotations }}
+      {{- toYaml . | nindent 4 }}
+    {{- end }}
+spec:
+  {{- with $values.ttlSecondsAfterFinished }}
+  ttlSecondsAfterFinished: {{ . }}
+  {{- end }}
+  {{- with $values.backoffLimit }}
+  backoffLimit: {{ . | int }}
+  {{- end }}
+  template:
+    metadata:
+      name: {{ include "runtime.fullname" . }}-gencerts-dind
+      labels:
+        {{- include "runtime.labels" . | nindent 8 }}
+    spec:
+      {{- if $values.rbac.enabled }}
+      serviceAccountName: {{ template "runtime.fullname" . }}-gencerts-dind
+      {{- end }}
+      securityContext:
+        {{- toYaml $values.podSecurityContext | nindent 8 }}
+      containers:
+      - name: gencerts-dind
+        image: {{ include (printf "%s.image.name" $cfCommonTplSemver ) (dict "image" $values.image "context" .) }}
+        imagePullPolicy: {{ $values.image.pullPolicy | default "Always" }}
+        command:
+        - "/bin/bash"
+        args:
+        - -ec
+        - | {{ .Files.Get "files/configure-dind-certs.sh" | nindent 10 }}
+        env:
+        - name: NAMESPACE
+          value: {{ .Release.Namespace }}
+        - name: RELEASE
+          value: {{ .Release.Name }}
+        - name: CF_API_HOST
+          value: {{ include "runtime.runtime-environment-spec.codefresh-host" . }}
+        - name: CF_API_TOKEN
+          {{- include "runtime.installation-token-env-var-value" . | indent 10}}
+          {{- include (printf "%s.env-vars" $cfCommonTplSemver) (dict "Values" $values.env "context" .) | nindent 8 }}
+      {{- with $values.nodeSelector }}
+      nodeSelector:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with $values.affinity }}
+      affinity:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with $values.tolerations }}
+      tolerations:
+        {{- toYaml . | nindent 6 }}
+      {{- end }}
+      restartPolicy: OnFailure
+{{- end }}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/hooks/post-install/job-update-runtime.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/hooks/post-install/job-update-runtime.yaml
new file mode 100644
index 0000000000..955e882d77
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/hooks/post-install/job-update-runtime.yaml
@@ -0,0 +1,77 @@
+{{ $cfCommonTplSemver := printf "cf-common-%s" (index .Subcharts "cf-common").Chart.Version }}
+{{ $values := .Values.runtime.patch }}
+{{- if $values.enabled }}
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  name: {{ include "runtime.fullname" . }}-patch
+  labels:
+    {{- include "runtime.labels" . | nindent 4 }}
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-weight: "5"
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+    {{- with $values.annotations }}
+      {{- toYaml . | nindent 4 }}
+    {{- end }}
+spec:
+  {{- with $values.ttlSecondsAfterFinished }}
+  ttlSecondsAfterFinished: {{ . }}
+  {{- end }}
+  {{- with $values.backoffLimit }}
+  backoffLimit: {{ . | int }}
+  {{- end }}
+  template:
+    metadata:
+      name: {{ include "runtime.fullname" . }}-patch
+      labels:
+        {{- include "runtime.labels" . | nindent 8 }}
+    spec:
+      securityContext:
+        {{- toYaml $values.podSecurityContext | nindent 8 }}
+      containers:
+      - name: patch-runtime
+        image: {{ include (printf "%s.image.name" $cfCommonTplSemver ) (dict "image" $values.image "context" .) }}
+        imagePullPolicy: {{ $values.image.pullPolicy | default "Always" }}
+        command:
+        - "/bin/bash"
+        args:
+        - -ec
+        - |
+          codefresh auth create-context --api-key $API_KEY --url $API_HOST
+          cat /usr/share/extras/runtime.yaml
+          codefresh get re
+{{- if .Values.runtime.agent }}
+          codefresh patch re -f /usr/share/extras/runtime.yaml
+{{- else }}
+          codefresh patch sys-re -f /usr/share/extras/runtime.yaml
+{{- end }}
+        env:
+        - name: API_KEY
+          {{- include "runtime.installation-token-env-var-value" . | indent 10}}
+        - name: API_HOST
+          value: {{ include "runtime.runtime-environment-spec.codefresh-host" . }}
+          {{- include (printf "%s.env-vars" $cfCommonTplSemver) (dict "Values" $values.env "context" .) | nindent 8 }}
+        volumeMounts:
+        - name: config
+          mountPath: /usr/share/extras/runtime.yaml
+          subPath: runtime.yaml
+      {{- with $values.nodeSelector }}
+      nodeSelector:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with $values.affinity }}
+      affinity:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with $values.tolerations }}
+      tolerations:
+        {{- toYaml . | nindent 6 }}
+      {{- end }}
+      restartPolicy: OnFailure
+      volumes:
+      - name: config
+        configMap:
+          name: {{ include "runtime.fullname" . }}-spec
+{{- end }}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/hooks/post-install/rbac-gencerts-dind.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/hooks/post-install/rbac-gencerts-dind.yaml
new file mode 100644
index 0000000000..4907dac380
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/hooks/post-install/rbac-gencerts-dind.yaml
@@ -0,0 +1,37 @@
+{{ $cfCommonTplSemver := printf "cf-common-%s" (index .Subcharts "cf-common").Chart.Version }}
+{{ $values := .Values.runtime.gencerts }}
+{{- if and $values.enabled }}
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: {{ include "runtime.fullname" . }}-gencerts-dind
+  namespace: {{ .Release.Namespace }}
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  name: {{ include "runtime.fullname" . }}-gencerts-dind
+  namespace: {{ .Release.Namespace }}
+rules:
+  - apiGroups:
+      - ""
+    resources:
+      - secrets
+      - configmaps
+    verbs: ["get", "list", "watch", "create", "update", "patch", "delete"]
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  name: {{ include "runtime.fullname" . }}-gencerts-dind
+  namespace: {{ .Release.Namespace }}
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: {{ include "runtime.fullname" . }}-gencerts-dind
+subjects:
+  - kind: ServiceAccount
+    name: {{ include "runtime.fullname" . }}-gencerts-dind
+    namespace: {{ .Release.Namespace }}
+{{ end }}
\ No newline at end of file
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/hooks/pre-delete/job-cleanup-resources.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/hooks/pre-delete/job-cleanup-resources.yaml
new file mode 100644
index 0000000000..0e3c7659f1
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/hooks/pre-delete/job-cleanup-resources.yaml
@@ -0,0 +1,73 @@
+{{ $cfCommonTplSemver := printf "cf-common-%s" (index .Subcharts "cf-common").Chart.Version }}
+{{ $values := .Values.runtime.patch }}
+{{- if and $values.enabled }}
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  name: {{ include "runtime.fullname" . }}-cleanup
+  labels:
+    {{- include "runtime.labels" . | nindent 4 }}
+  annotations:
+    helm.sh/hook: pre-delete
+    helm.sh/hook-delete-policy:  hook-succeeded,before-hook-creation
+    {{- with $values.annotations }}
+      {{- toYaml . | nindent 4 }}
+    {{- end }}
+spec:
+  {{- with $values.ttlSecondsAfterFinished }}
+  ttlSecondsAfterFinished: {{ . }}
+  {{- end }}
+  {{- with $values.backoffLimit }}
+  backoffLimit: {{ . | int }}
+  {{- end }}
+  template:
+    metadata:
+      name: {{ include "runtime.fullname" . }}-cleanup
+      labels:
+        {{- include "runtime.labels" . | nindent 8 }}
+    spec:
+      {{- if $values.rbac.enabled }}
+      serviceAccountName: {{ template "runtime.fullname" . }}-cleanup
+      {{- end }}
+      securityContext:
+        {{- toYaml $values.podSecurityContext | nindent 8 }}
+      containers:
+      - name: cleanup
+        image: {{ include (printf "%s.image.name" $cfCommonTplSemver ) (dict "image" $values.image "context" .) }}
+        imagePullPolicy: {{ $values.image.pullPolicy | default "Always" }}
+        command:
+        - "/bin/bash"
+        args:
+        - -ec
+        - | {{ .Files.Get "files/cleanup-runtime.sh" | nindent 10 }}
+        env:
+        - name: AGENT_NAME
+          value: {{ include "runtime.runtime-environment-spec.agent-name" . }}
+        - name: RUNTIME_NAME
+          value: {{ include "runtime.runtime-environment-spec.runtime-name" . }}
+        - name: API_HOST
+          value: {{ include "runtime.runtime-environment-spec.codefresh-host" . }}
+        - name: API_TOKEN
+          {{- include "runtime.installation-token-env-var-value" . | indent 10}}
+        - name: AGENT
+          value: {{ .Values.runtime.agent | quote }}
+        - name: AGENT_SECRET_NAME
+          value: {{ include "runner.fullname" . }}
+        - name: DIND_SECRET_NAME
+          value: codefresh-certs-server
+          {{- include (printf "%s.env-vars" $cfCommonTplSemver) (dict "Values" $values.env "context" .) | nindent 8 }}
+      {{- with $values.nodeSelector }}
+      nodeSelector:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with $values.affinity }}
+      affinity:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with $values.tolerations }}
+      tolerations:
+        {{- toYaml . | nindent 6 }}
+      {{- end }}
+      restartPolicy: OnFailure
+{{- end }}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/hooks/pre-delete/rbac-cleanup-resources.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/hooks/pre-delete/rbac-cleanup-resources.yaml
new file mode 100644
index 0000000000..468ec2212d
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/hooks/pre-delete/rbac-cleanup-resources.yaml
@@ -0,0 +1,46 @@
+{{ $cfCommonTplSemver := printf "cf-common-%s" (index .Subcharts "cf-common").Chart.Version }}
+{{ $values := .Values.runtime.patch }}
+{{- if and $values.enabled }}
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: {{ include "runtime.fullname" . }}-cleanup
+  namespace: {{ .Release.Namespace }}
+  annotations:
+    "helm.sh/hook": pre-delete
+    "helm.sh/hook-delete-policy": hook-succeeded,before-hook-creation,hook-failed
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  name: {{ include "runtime.fullname" . }}-cleanup
+  namespace: {{ .Release.Namespace }}
+  annotations:
+    "helm.sh/hook": pre-delete
+    "helm.sh/hook-delete-policy": hook-succeeded,before-hook-creation,hook-failed
+rules:
+  - apiGroups:
+      - "*"
+    resources:
+      - "*"
+    verbs:
+      - "*"
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  name: {{ include "runtime.fullname" . }}-cleanup
+  namespace: {{ .Release.Namespace }}
+  annotations:
+    "helm.sh/hook": pre-delete
+    "helm.sh/hook-delete-policy": hook-succeeded,before-hook-creation,hook-failed
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: {{ include "runtime.fullname" . }}-cleanup
+subjects:
+  - kind: ServiceAccount
+    name: {{ include "runtime.fullname" . }}-cleanup
+    namespace: {{ .Release.Namespace }}
+{{ end }}
\ No newline at end of file
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/monitor/deployment.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/monitor/deployment.yaml
new file mode 100644
index 0000000000..00c9fb2f91
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/monitor/deployment.yaml
@@ -0,0 +1,9 @@
+{{- $monitorContext := deepCopy . }}
+{{- $_ := set $monitorContext "Values" (get .Values "monitor") }}
+{{- $_ := set $monitorContext.Values "global" (get .Values "global") }}
+{{- $_ := set $monitorContext.Values "nameOverride" (get .Values "nameOverride") }}
+{{- $_ := set $monitorContext.Values "fullnameOverride" (get .Values "fullnameOverride") }}
+
+{{- if $monitorContext.Values.enabled }}
+{{- include "monitor.resources.deployment" $monitorContext }}
+{{- end }}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/monitor/rbac.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/monitor/rbac.yaml
new file mode 100644
index 0000000000..f9812d565d
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/monitor/rbac.yaml
@@ -0,0 +1,9 @@
+{{- $monitorContext := deepCopy . }}
+{{- $_ := set $monitorContext "Values" (get .Values "monitor") }}
+{{- $_ := set $monitorContext.Values "global" (get .Values "global") }}
+{{- $_ := set $monitorContext.Values "nameOverride" (get .Values "nameOverride") }}
+{{- $_ := set $monitorContext.Values "fullnameOverride" (get .Values "fullnameOverride") }}
+
+{{- if $monitorContext.Values.enabled }}
+{{- include "monitor.resources.rbac" $monitorContext }}
+{{- end }}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/monitor/service.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/monitor/service.yaml
new file mode 100644
index 0000000000..f99706614a
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/monitor/service.yaml
@@ -0,0 +1,9 @@
+{{- $monitorContext := deepCopy . }}
+{{- $_ := set $monitorContext "Values" (get .Values "monitor") }}
+{{- $_ := set $monitorContext.Values "global" (get .Values "global") }}
+{{- $_ := set $monitorContext.Values "nameOverride" (get .Values "nameOverride") }}
+{{- $_ := set $monitorContext.Values "fullnameOverride" (get .Values "fullnameOverride") }}
+
+{{- if $monitorContext.Values.enabled }}
+{{- include "monitor.resources.service" $monitorContext }}
+{{- end }}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/other/external-secrets.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/other/external-secrets.yaml
new file mode 100644
index 0000000000..dc24e24e51
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/other/external-secrets.yaml
@@ -0,0 +1,2 @@
+{{ $templateName := printf "cf-common-%s.external-secrets" (index .Subcharts "cf-common").Chart.Version }}
+{{- include $templateName . -}}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/other/podMonitor.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/other/podMonitor.yaml
new file mode 100644
index 0000000000..4319b722b9
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/other/podMonitor.yaml
@@ -0,0 +1,2 @@
+{{ $templateName := printf "cf-common-%s.podMonitor" (index .Subcharts "cf-common").Chart.Version }}
+{{- include $templateName . -}}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/other/serviceMonitor.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/other/serviceMonitor.yaml
new file mode 100644
index 0000000000..29f890fe2b
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/other/serviceMonitor.yaml
@@ -0,0 +1,2 @@
+{{ $templateName := printf "cf-common-%s.serviceMonitor" (index .Subcharts "cf-common").Chart.Version }}
+{{- include $templateName . -}}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/runner/deployment.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/runner/deployment.yaml
new file mode 100644
index 0000000000..85777c487f
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/runner/deployment.yaml
@@ -0,0 +1,9 @@
+{{- $runnerContext := deepCopy . }}
+{{- $_ := set $runnerContext "Values" (get .Values "runner") }}
+{{- $_ := set $runnerContext.Values "global" (get .Values "global") }}
+{{- $_ := set $runnerContext.Values "nameOverride" (get .Values "nameOverride") }}
+{{- $_ := set $runnerContext.Values "fullnameOverride" (get .Values "fullnameOverride") }}
+
+{{- if and $runnerContext.Values.enabled .Values.runtime.agent }}
+{{- include "runner.resources.deployment" $runnerContext }}
+{{- end }}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/runner/rbac.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/runner/rbac.yaml
new file mode 100644
index 0000000000..d5f8c13233
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/runner/rbac.yaml
@@ -0,0 +1,9 @@
+{{- $runnerContext := deepCopy . }}
+{{- $_ := set $runnerContext "Values" (get .Values "runner") }}
+{{- $_ := set $runnerContext.Values "global" (get .Values "global") }}
+{{- $_ := set $runnerContext.Values "nameOverride" (get .Values "nameOverride") }}
+{{- $_ := set $runnerContext.Values "fullnameOverride" (get .Values "fullnameOverride") }}
+
+{{- if and $runnerContext.Values.enabled .Values.runtime.agent }}
+{{- include "runner.resources.rbac" $runnerContext }}
+{{- end }}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/runtime/_helpers.tpl b/charts/codefresh/cf-runtime/7.5.5/templates/runtime/_helpers.tpl
new file mode 100644
index 0000000000..6ba04fcc3e
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/runtime/_helpers.tpl
@@ -0,0 +1,123 @@
+{{/*
+Expand the name of the chart.
+*/}}
+{{- define "runtime.name" -}}
+    {{- printf "%s" (include "cf-runtime.name" .)  | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{/*
+Create a default fully qualified app name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+If release name contains chart name it will be used as a full name.
+*/}}
+{{- define "runtime.fullname" -}}
+    {{- printf "%s" (include "cf-runtime.fullname" .) | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{/*
+Common labels
+*/}}
+{{- define "runtime.labels" -}}
+{{ include "cf-runtime.labels" . }}
+codefresh.io/application: runtime
+{{- end }}
+
+{{/*
+Selector labels
+*/}}
+{{- define "runtime.selectorLabels" -}}
+{{ include "cf-runtime.selectorLabels" . }}
+codefresh.io/application: runtime
+{{- end }}
+
+{{/*
+Return runtime image (classic runtime) with private registry prefix
+*/}}
+{{- define "runtime.runtimeImageName" -}}
+  {{- if .registry -}}
+    {{- $imageName :=  (trimPrefix "quay.io/" .imageFullName) -}}
+    {{- printf "%s/%s" .registry $imageName -}}
+  {{- else -}}
+    {{- printf "%s" .imageFullName -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Environment variable value of Codefresh installation token
+*/}}
+{{- define "runtime.installation-token-env-var-value" -}}
+  {{- if .Values.global.codefreshToken }}
+valueFrom:
+  secretKeyRef:
+    name: {{ include "runtime.installation-token-secret-name" . }}
+    key: codefresh-api-token
+  {{- else if .Values.global.codefreshTokenSecretKeyRef  }}
+valueFrom:
+  secretKeyRef:
+  {{- .Values.global.codefreshTokenSecretKeyRef | toYaml | nindent 4 }}
+  {{- end }}
+{{- end }}
+
+{{/*
+Environment variable value of Codefresh agent token
+*/}}
+{{- define "runtime.agent-token-env-var-value" -}}
+  {{- if .Values.global.agentToken }}
+{{- printf "%s" .Values.global.agentToken | toYaml }}
+  {{- else if .Values.global.agentTokenSecretKeyRef  }}
+valueFrom:
+  secretKeyRef:
+  {{- .Values.global.agentTokenSecretKeyRef | toYaml | nindent 4 }}
+  {{- end }}
+{{- end }}
+
+{{/*
+Print Codefresh API token secret name
+*/}}
+{{- define "runtime.installation-token-secret-name" }}
+{{- print "codefresh-user-token" }}
+{{- end }}
+
+{{/*
+Print Codefresh host
+*/}}
+{{- define "runtime.runtime-environment-spec.codefresh-host" }}
+{{- if and (not .Values.global.codefreshHost) }}
+  {{- fail "ERROR: .global.codefreshHost is required" }}
+{{- else }}
+  {{- printf "%s" (trimSuffix "/" .Values.global.codefreshHost) }}
+{{- end }}
+{{- end }}
+
+{{/*
+Print runtime-environment name
+*/}}
+{{- define "runtime.runtime-environment-spec.runtime-name" }}
+{{- if and (not .Values.global.runtimeName) }}
+  {{- printf "%s/%s" .Values.global.context .Release.Namespace }}
+{{- else }}
+  {{- printf "%s" .Values.global.runtimeName }}
+{{- end }}
+{{- end }}
+
+{{/*
+Print agent name
+*/}}
+{{- define "runtime.runtime-environment-spec.agent-name" }}
+{{- if and (not .Values.global.agentName) }}
+  {{- printf "%s_%s" .Values.global.context .Release.Namespace }}
+{{- else }}
+  {{- printf "%s" .Values.global.agentName }}
+{{- end }}
+{{- end }}
+
+{{/*
+Print context
+*/}}
+{{- define "runtime.runtime-environment-spec.context-name" }}
+{{- if and (not .Values.global.context) }}
+  {{- fail "ERROR: .global.context is required" }}
+{{- else }}
+  {{- printf "%s" .Values.global.context }}
+{{- end }}
+{{- end }}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/runtime/cm-dind-daemon.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/runtime/cm-dind-daemon.yaml
new file mode 100644
index 0000000000..fc7f92905b
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/runtime/cm-dind-daemon.yaml
@@ -0,0 +1,10 @@
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  {{- /* has to be a constant */}}
+  name: codefresh-dind-config
+  labels:
+    {{- include "runtime.labels" . | nindent 4 }}
+data:
+  daemon.json: |
+{{ coalesce .Values.re.dindDaemon .Values.runtime.dindDaemon | toPrettyJson | indent 4 }}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/runtime/rbac.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/runtime/rbac.yaml
new file mode 100644
index 0000000000..a51b125262
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/runtime/rbac.yaml
@@ -0,0 +1,48 @@
+{{ $values := .Values.runtime }}
+---
+{{- if or $values.serviceAccount.create }}
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  {{- /* has to be a constant */}}
+  name: codefresh-engine
+  labels:
+    {{- include "runtime.labels" . | nindent 4 }}
+  {{- with $values.serviceAccount.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+{{- end }}
+---
+{{- if $values.rbac.create }}
+kind: Role
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  name: codefresh-engine
+  labels:
+    {{- include "runner.labels" . | nindent 4 }}
+rules:
+  - apiGroups: [ "" ]
+    resources: [ "secrets" ]
+    verbs: [ "get" ]
+{{- with $values.rbac.rules }}
+  {{ toYaml . | nindent 2 }}
+{{- end }}
+{{- end }}
+---
+{{- if and $values.serviceAccount.create $values.rbac.create }}
+kind: RoleBinding
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  name: codefresh-engine
+  labels:
+    {{- include "runner.labels" . | nindent 4 }}
+subjects:
+  - kind: ServiceAccount
+    name: codefresh-engine
+roleRef:
+  kind: Role
+  name: codefresh-engine
+  apiGroup: rbac.authorization.k8s.io
+{{- end }}
+
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/runtime/runtime-env-spec-tmpl.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/runtime/runtime-env-spec-tmpl.yaml
new file mode 100644
index 0000000000..b0d08664ef
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/runtime/runtime-env-spec-tmpl.yaml
@@ -0,0 +1,235 @@
+{{- define "runtime.runtime-environment-spec.template" }}
+{{- $cfCommonTplSemver := printf "cf-common-%s" (index .Subcharts "cf-common").Chart.Version -}}
+{{- $kubeconfigFilePath := (include "runtime.runtime-environment-spec.runtime-name" .) -}}
+{{- $name := (include "runtime.runtime-environment-spec.runtime-name" .) -}}
+{{- $engineContext := .Values.runtime.engine -}}
+{{- $dindContext := .Values.runtime.dind -}}
+{{- $imageRegistry := .Values.global.imageRegistry -}}
+metadata:
+  name: {{ include "runtime.runtime-environment-spec.runtime-name" . }}
+  agent: {{ .Values.runtime.agent }}
+runtimeScheduler:
+  type: KubernetesPod
+  {{- if $engineContext.image }}
+  image: {{ include (printf "%s.image.name" $cfCommonTplSemver ) (dict "image" $engineContext.image "context" .) | squote }}
+  {{- end }}
+  imagePullPolicy: {{ $engineContext.image.pullPolicy }}
+  {{- with $engineContext.command }}
+  command: {{- toYaml . | nindent 4 }}
+  {{- end }}
+  envVars:
+  {{- with $engineContext.env }}
+    {{- range $key, $val := . }}
+    {{ $key }}: {{ $val | squote }}
+    {{- end }}
+  {{- end }}
+    COMPOSE_IMAGE: {{ include "runtime.runtimeImageName" (dict "registry" $imageRegistry "imageFullName" $engineContext.runtimeImages.COMPOSE_IMAGE) | squote }}
+    CONTAINER_LOGGER_IMAGE: {{ include "runtime.runtimeImageName" (dict "registry" $imageRegistry "imageFullName" $engineContext.runtimeImages.CONTAINER_LOGGER_IMAGE) | squote }}
+    DOCKER_BUILDER_IMAGE: {{ include "runtime.runtimeImageName" (dict "registry" $imageRegistry "imageFullName" $engineContext.runtimeImages.DOCKER_BUILDER_IMAGE) | squote }}
+    DOCKER_PULLER_IMAGE: {{ include "runtime.runtimeImageName" (dict "registry" $imageRegistry "imageFullName" $engineContext.runtimeImages.DOCKER_PULLER_IMAGE) | squote }}
+    DOCKER_PUSHER_IMAGE: {{ include "runtime.runtimeImageName" (dict "registry" $imageRegistry "imageFullName" $engineContext.runtimeImages.DOCKER_PUSHER_IMAGE) | squote }}
+    DOCKER_TAG_PUSHER_IMAGE: {{ include "runtime.runtimeImageName" (dict "registry" $imageRegistry "imageFullName" $engineContext.runtimeImages.DOCKER_TAG_PUSHER_IMAGE) | squote }}
+    FS_OPS_IMAGE: {{ include "runtime.runtimeImageName" (dict "registry" $imageRegistry "imageFullName" $engineContext.runtimeImages.FS_OPS_IMAGE) | squote }}
+    GIT_CLONE_IMAGE: {{ include "runtime.runtimeImageName" (dict "registry" $imageRegistry "imageFullName" $engineContext.runtimeImages.GIT_CLONE_IMAGE) | squote }}
+    KUBE_DEPLOY: {{ include "runtime.runtimeImageName" (dict "registry" $imageRegistry "imageFullName" $engineContext.runtimeImages.KUBE_DEPLOY) | squote }}
+    PIPELINE_DEBUGGER_IMAGE: {{ include "runtime.runtimeImageName" (dict "registry" $imageRegistry "imageFullName" $engineContext.runtimeImages.PIPELINE_DEBUGGER_IMAGE) | squote }}
+    TEMPLATE_ENGINE: {{ include "runtime.runtimeImageName" (dict "registry" $imageRegistry "imageFullName" $engineContext.runtimeImages.TEMPLATE_ENGINE) | squote }}
+    CR_6177_FIXER: {{ include "runtime.runtimeImageName" (dict "registry" $imageRegistry "imageFullName" $engineContext.runtimeImages.CR_6177_FIXER) | squote }}
+    GC_BUILDER_IMAGE: {{ include "runtime.runtimeImageName" (dict "registry" $imageRegistry "imageFullName" $engineContext.runtimeImages.GC_BUILDER_IMAGE) | squote }}
+    COSIGN_IMAGE_SIGNER_IMAGE: {{ include "runtime.runtimeImageName" (dict "registry" $imageRegistry "imageFullName" $engineContext.runtimeImages.COSIGN_IMAGE_SIGNER_IMAGE) | squote }}
+    RUNTIME_CHART_VERSION: {{ .Chart.Version }}
+  {{- with $engineContext.userEnvVars }}
+  userEnvVars:  {{- toYaml . | nindent 4 }}
+  {{- end }}
+  {{- with $engineContext.workflowLimits }}
+  workflowLimits: {{- toYaml . | nindent 4 }}
+  {{- end }}
+  cluster:
+    namespace: {{ .Release.Namespace }}
+    serviceAccount: {{ $engineContext.serviceAccount }}
+    {{- if .Values.runtime.agent }}
+    clusterProvider:
+      accountId: {{ .Values.global.accountId }}
+      selector: {{ include "runtime.runtime-environment-spec.context-name" . }}
+    {{- else }}
+      {{- if .Values.runtime.inCluster }}
+    inCluster: true
+    kubeconfigFilePath: null
+      {{- else }}
+    name: {{ $name }}
+    kubeconfigFilePath: {{ printf "/etc/kubeconfig/%s" $kubeconfigFilePath }}
+      {{- end }}
+    {{- end }}
+    {{- with $engineContext.nodeSelector }}
+    nodeSelector: {{- toYaml . | nindent 6 }}
+    {{- end }}
+  {{- with $engineContext.affinity }}
+  affinity:  {{- toYaml . | nindent 4 }}
+  {{- end }}
+  {{- with $engineContext.tolerations }}
+  tolerations:  {{- toYaml . | nindent 4 }}
+  {{- end }}
+  {{- with $engineContext.podAnnotations }}
+  annotations:
+    {{- range $key, $val := . }}
+    {{ $key }}: {{ $val | squote }}
+    {{- end }}
+  {{- end }}
+  {{- with $engineContext.podLabels }}
+  labels: {{- toYaml . | nindent 4 }}
+  {{- end }}
+  {{- if $engineContext.schedulerName }}
+  schedulerName: {{ $engineContext.schedulerName }}
+  {{- end }}
+  resources:
+  {{- if $engineContext.resources}}
+  {{- toYaml $engineContext.resources | nindent 4 }}
+  {{- end }}
+  {{- with $engineContext.terminationGracePeriodSeconds }}
+  terminationGracePeriodSeconds: {{ . }}
+  {{- end }}
+dockerDaemonScheduler:
+  type: DindKubernetesPod
+  {{- if $dindContext.image }}
+  dindImage: {{ include (printf "%s.image.name" $cfCommonTplSemver ) (dict "image" $dindContext.image "context" .) | squote }}
+  {{- end }}
+  imagePullPolicy: {{ $dindContext.image.pullPolicy }}
+  {{- with $dindContext.userAccess }}
+  userAccess: {{ . }}
+  {{- end }}
+  {{- with $dindContext.env }}
+  envVars:
+    {{- range $key, $val := . }}
+    {{ $key }}: {{ $val | squote }}
+    {{- end }}
+  {{- end }}
+  cluster:
+    namespace: {{ .Release.Namespace }}
+    serviceAccount: {{ $dindContext.serviceAccount }}
+    {{- if .Values.runtime.agent }}
+    clusterProvider:
+      accountId: {{ .Values.global.accountId }}
+      selector: {{ include "runtime.runtime-environment-spec.context-name" . }}
+    {{- else }}
+      {{- if .Values.runtime.inCluster }}
+    inCluster: true
+    kubeconfigFilePath: null
+      {{- else }}
+    name: {{ $name }}
+    kubeconfigFilePath: {{ printf "/etc/kubeconfig/%s" $kubeconfigFilePath }}
+      {{- end }}
+    {{- end }}
+    {{- with $dindContext.nodeSelector }}
+    nodeSelector: {{- toYaml . | nindent 6 }}
+    {{- end }}
+  {{- with $dindContext.affinity }}
+  affinity:  {{- toYaml . | nindent 4 }}
+  {{- end }}
+  {{- with $dindContext.tolerations }}
+  tolerations: {{- toYaml . | nindent 4 }}
+  {{- end }}
+  {{- with $dindContext.podAnnotations }}
+  annotations:
+    {{- range $key, $val := . }}
+    {{ $key }}: {{ $val | squote }}
+    {{- end }}
+  {{- end }}
+  {{- with $dindContext.podLabels }}
+  labels: {{- toYaml . | nindent 4 }}
+  {{- end }}
+  {{- if $dindContext.schedulerName }}
+  schedulerName: {{ $dindContext.schedulerName }}
+  {{- end }}
+  {{- if $dindContext.pvcs }}
+  pvcs:
+  {{- range $index, $pvc := $dindContext.pvcs }}
+    - name: {{ $pvc.name }}
+      reuseVolumeSelector: {{ $pvc.reuseVolumeSelector | squote }}
+      reuseVolumeSortOrder: {{ $pvc.reuseVolumeSortOrder }}
+      storageClassName: {{ include (printf "%v.tplrender" $cfCommonTplSemver) (dict "Values" $pvc.storageClassName "context" $) }}
+      volumeSize: {{ $pvc.volumeSize }}
+      {{- with $pvc.annotations }}
+      annotations: {{ . | toYaml | nindent 8 }}
+      {{- end }}
+  {{- end }}
+  {{- end }}
+  defaultDindResources:
+  {{- with $dindContext.resources }}
+  {{- if not .requests }}
+    limits: {{- toYaml .limits | nindent 6 }}
+    requests: null
+  {{- else }}
+  {{- toYaml . | nindent 4 }}
+  {{- end }}
+  {{- end }}
+  {{- with $dindContext.terminationGracePeriodSeconds }}
+  terminationGracePeriodSeconds: {{ . }}
+  {{- end }}
+  {{- with $dindContext.userVolumeMounts }}
+  userVolumeMounts: {{- toYaml . | nindent 4 }}
+  {{- end }}
+  {{- with $dindContext.userVolumes }}
+  userVolumes: {{- toYaml . | nindent 4 }}
+  {{- end }}
+  {{- if and (not .Values.runtime.agent)  }}
+  clientCertPath: /etc/ssl/cf/
+  volumeMounts:
+    codefresh-certs-server:
+      name: codefresh-certs-server
+      mountPath: /etc/ssl/cf
+      readOnly: false
+  volumes:
+    codefresh-certs-server:
+      name: codefresh-certs-server
+      secret:
+        secretName: codefresh-certs-server
+  {{- end }}
+  {{- with $dindContext.podSecurityContext }}
+  podSecurityContext: {{- toYaml . | nindent 4 }}
+  {{- end }}
+  {{- with $dindContext.containerSecurityContext }}
+  containerSecurityContext: {{- toYaml . | nindent 4 }}
+  {{- end }}
+  {{- if $dindContext.volumePermissions.enabled }}
+  initContainers:
+  - name: volume-permissions
+    image: {{ include (printf "%s.image.name" $cfCommonTplSemver ) (dict "image" $dindContext.volumePermissions.image "context" .) }}
+    imagePullPolicy: {{ $dindContext.volumePermissions.image.pullPolicy | default "Always" }}
+    command:
+      - /bin/sh
+    args:
+      - -ec
+      - |
+        chown -R {{ $dindContext.containerSecurityContext.runAsUser }}:{{ $dindContext.podSecurityContext.fsGroup }} /home/rootless/.local/share/docker
+    volumeMounts:
+    - mountPath: /home/rootless/.local/share/docker
+      name: dind
+    {{- if eq ( toString ( $dindContext.volumePermissions.securityContext.runAsUser )) "auto" }}
+    securityContext: {{- omit $dindContext.volumePermissions.securityContext "runAsUser" | toYaml | nindent 6 }}
+    {{- else }}
+    securityContext: {{- $dindContext.volumePermissions.securityContext | toYaml | nindent 6 }}
+    {{- end }}
+    resources:
+      {{- toYaml $dindContext.volumePermissions.resources | nindent 6 }}
+  {{- end }}
+extends: {{- toYaml .Values.runtime.runtimeExtends | nindent 2 }}
+  {{- if .Values.runtime.description }}
+description: {{ .Values.runtime.description }}
+  {{- else }}
+description: null
+  {{- end }}
+{{- if .Values.global.accountId }}
+accountId: {{ .Values.global.accountId }}
+{{- end }}
+{{- if not .Values.runtime.agent }}
+accounts: {{- toYaml .Values.runtime.accounts | nindent 2 }}
+{{- end }}
+{{- if .Values.appProxy.enabled }}
+appProxy:
+  externalIP: >-
+    {{ printf "https://%s%s" .Values.appProxy.ingress.host (.Values.appProxy.ingress.pathPrefix | default "/") }}
+{{- end }}
+{{- if not .Values.runtime.agent }}
+systemHybrid: true
+{{- end }}
+{{- end }}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/runtime/secret.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/runtime/secret.yaml
new file mode 100644
index 0000000000..2366d3ccf6
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/runtime/secret.yaml
@@ -0,0 +1,11 @@
+{{- if and .Values.global.codefreshToken }}
+apiVersion: v1
+kind: Secret
+type: Opaque
+metadata:
+  name: {{ include "runtime.installation-token-secret-name" . }}
+  labels:
+    {{- include "runtime.labels" . | nindent 4 }}
+stringData:
+  codefresh-api-token: {{ .Values.global.codefreshToken }}
+{{- end }}
\ No newline at end of file
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/runtime/svc-dind.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/runtime/svc-dind.yaml
new file mode 100644
index 0000000000..098edb4e87
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/runtime/svc-dind.yaml
@@ -0,0 +1,16 @@
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    {{- include "runtime.labels" . | nindent 4 }}
+    app: dind
+  {{/* has to be a constant */}}
+  name: dind
+spec:
+  ports:
+  - name: "dind-port"
+    port: 1300
+    protocol: TCP
+  clusterIP: None
+  selector:
+    app: dind
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/volume-provisioner/cronjob.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/volume-provisioner/cronjob.yaml
new file mode 100644
index 0000000000..db955bc771
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/volume-provisioner/cronjob.yaml
@@ -0,0 +1,11 @@
+{{- $volumeProvisionerContext := deepCopy . }}
+{{- $_ := set $volumeProvisionerContext "Values" (get .Values.volumeProvisioner "dind-volume-cleanup") }}
+{{- $_ := set $volumeProvisionerContext.Values "serviceAccount" (get .Values.volumeProvisioner "serviceAccount") }}
+{{- $_ := set $volumeProvisionerContext.Values "global" (get .Values "global") }}
+{{- $_ := set $volumeProvisionerContext.Values "storage" (get .Values "storage") }}
+{{- $_ := set $volumeProvisionerContext.Values "nameOverride" (get .Values "nameOverride") }}
+{{- $_ := set $volumeProvisionerContext.Values "fullnameOverride" (get .Values "fullnameOverride") }}
+
+{{- if and $volumeProvisionerContext.Values.enabled .Values.volumeProvisioner.enabled }}
+{{- include "dind-volume-provisioner.resources.cronjob" $volumeProvisionerContext }}
+{{- end }}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/volume-provisioner/daemonset.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/volume-provisioner/daemonset.yaml
new file mode 100644
index 0000000000..39927149e8
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/volume-provisioner/daemonset.yaml
@@ -0,0 +1,11 @@
+{{- $volumeProvisionerContext := deepCopy . }}
+{{- $_ := set $volumeProvisionerContext "Values" (get .Values.volumeProvisioner "dind-lv-monitor") }}
+{{- $_ := set $volumeProvisionerContext.Values "serviceAccount" (get .Values.volumeProvisioner "serviceAccount") }}
+{{- $_ := set $volumeProvisionerContext.Values "global" (get .Values "global") }}
+{{- $_ := set $volumeProvisionerContext.Values "storage" (get .Values "storage") }}
+{{- $_ := set $volumeProvisionerContext.Values "nameOverride" (get .Values "nameOverride") }}
+{{- $_ := set $volumeProvisionerContext.Values "fullnameOverride" (get .Values "fullnameOverride") }}
+
+{{- if and $volumeProvisionerContext.Values.enabled .Values.volumeProvisioner.enabled }}
+{{- include "dind-volume-provisioner.resources.daemonset" $volumeProvisionerContext }}
+{{- end }}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/volume-provisioner/deployment.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/volume-provisioner/deployment.yaml
new file mode 100644
index 0000000000..522fa8791f
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/volume-provisioner/deployment.yaml
@@ -0,0 +1,10 @@
+{{- $volumeProvisionerContext := deepCopy . }}
+{{- $_ := set $volumeProvisionerContext "Values" (get .Values "volumeProvisioner") }}
+{{- $_ := set $volumeProvisionerContext.Values "global" (get .Values "global") }}
+{{- $_ := set $volumeProvisionerContext.Values "storage" (get .Values "storage") }}
+{{- $_ := set $volumeProvisionerContext.Values "nameOverride" (get .Values "nameOverride") }}
+{{- $_ := set $volumeProvisionerContext.Values "fullnameOverride" (get .Values "fullnameOverride") }}
+
+{{- if $volumeProvisionerContext.Values.enabled }}
+{{- include "dind-volume-provisioner.resources.deployment" $volumeProvisionerContext }}
+{{- end }}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/volume-provisioner/rbac.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/volume-provisioner/rbac.yaml
new file mode 100644
index 0000000000..f3ae9609f9
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/volume-provisioner/rbac.yaml
@@ -0,0 +1,9 @@
+{{- $volumeProvisionerContext := deepCopy . }}
+{{- $_ := set $volumeProvisionerContext "Values" (get .Values "volumeProvisioner") }}
+{{- $_ := set $volumeProvisionerContext.Values "global" (get .Values "global") }}
+{{- $_ := set $volumeProvisionerContext.Values "nameOverride" (get .Values "nameOverride") }}
+{{- $_ := set $volumeProvisionerContext.Values "fullnameOverride" (get .Values "fullnameOverride") }}
+
+{{- if $volumeProvisionerContext.Values.enabled }}
+{{- include "dind-volume-provisioner.resources.rbac" $volumeProvisionerContext }}
+{{- end }}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/volume-provisioner/secret.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/volume-provisioner/secret.yaml
new file mode 100644
index 0000000000..accf601d13
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/volume-provisioner/secret.yaml
@@ -0,0 +1,10 @@
+{{- $volumeProvisionerContext := deepCopy . }}
+{{- $_ := set $volumeProvisionerContext "Values" (get .Values "volumeProvisioner") }}
+{{- $_ := set $volumeProvisionerContext.Values "global" (get .Values "global") }}
+{{- $_ := set $volumeProvisionerContext.Values "storage" (get .Values "storage") }}
+{{- $_ := set $volumeProvisionerContext.Values "nameOverride" (get .Values "nameOverride") }}
+{{- $_ := set $volumeProvisionerContext.Values "fullnameOverride" (get .Values "fullnameOverride") }}
+
+{{- if $volumeProvisionerContext.Values.enabled }}
+{{- include "dind-volume-provisioner.resources.secret" $volumeProvisionerContext }}
+{{- end }}
diff --git a/charts/codefresh/cf-runtime/7.5.5/templates/volume-provisioner/storageclass.yaml b/charts/codefresh/cf-runtime/7.5.5/templates/volume-provisioner/storageclass.yaml
new file mode 100644
index 0000000000..77a7602da1
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/templates/volume-provisioner/storageclass.yaml
@@ -0,0 +1,10 @@
+{{- $volumeProvisionerContext := deepCopy . }}
+{{- $_ := set $volumeProvisionerContext "Values" (get .Values "volumeProvisioner") }}
+{{- $_ := set $volumeProvisionerContext.Values "global" (get .Values "global") }}
+{{- $_ := set $volumeProvisionerContext.Values "storage" (get .Values "storage") }}
+{{- $_ := set $volumeProvisionerContext.Values "nameOverride" (get .Values "nameOverride") }}
+{{- $_ := set $volumeProvisionerContext.Values "fullnameOverride" (get .Values "fullnameOverride") }}
+
+{{- if $volumeProvisionerContext.Values.enabled }}
+{{- include "dind-volume-provisioner.resources.storageclass" $volumeProvisionerContext }}
+{{- end }}
diff --git a/charts/codefresh/cf-runtime/7.5.5/values-rootless.yaml b/charts/codefresh/cf-runtime/7.5.5/values-rootless.yaml
new file mode 100644
index 0000000000..cb35a74fe9
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/values-rootless.yaml
@@ -0,0 +1,38 @@
+volumeProvisioner:
+  env:
+    IS_ROOTLESS: true
+  # -- Only if local volumes are used as backend storage (ignored for ebs/ebs-csi disks)
+  dind-lv-monitor:
+    image:
+      tag: 1.30.0-rootless
+      digest: sha256:712e549e6e843b04684647f17e0973f8047e0d60e6e8b38a693ea64dc75b0479
+    containerSecurityContext:
+      runAsUser: 1000
+    podSecurityContext:
+      fsGroup: 1000
+      # Ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#configure-volume-permission-and-ownership-change-policy-for-pods
+      fsGroupChangePolicy: "OnRootMismatch"
+    # -- Enable initContainer to run chmod for /var/lib/codefresh/dind-volumes on host nodes
+    volumePermissions:
+      enabled: false
+
+runtime:
+  dind:
+    image:
+      tag: 26.1.4-1.28.10-rootless
+      digest: sha256:59dfc004eb22a8f09c8a3d585271a055af9df4591ab815bca418c24a2077f5c8
+    userVolumeMounts:
+      dind:
+        name: dind
+        mountPath: /home/rootless/.local/share/docker
+    containerSecurityContext:
+      privileged: true
+      runAsUser: 1000
+    podSecurityContext:
+      fsGroup: 1000
+      # Ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#configure-volume-permission-and-ownership-change-policy-for-pods
+      fsGroupChangePolicy: "OnRootMismatch"
+    # -- Enable initContainer to run chmod for /home/rootless in DinD pod
+    # !!! Will slow down dind pod startup
+    volumePermissions:
+      enabled: true
diff --git a/charts/codefresh/cf-runtime/7.5.5/values.yaml b/charts/codefresh/cf-runtime/7.5.5/values.yaml
new file mode 100644
index 0000000000..e604919916
--- /dev/null
+++ b/charts/codefresh/cf-runtime/7.5.5/values.yaml
@@ -0,0 +1,916 @@
+# -- String to partially override cf-runtime.fullname template (will maintain the release name)
+nameOverride: ""
+# -- String to fully override cf-runtime.fullname template
+fullnameOverride: ""
+# -- Global parameters
+# @default -- See below
+global:
+  # -- Global Docker image registry
+  imageRegistry: ""
+  # -- Global Docker registry secret names as array
+  imagePullSecrets: []
+  # -- URL of Codefresh Platform (required!)
+  codefreshHost: "https://g.codefresh.io"
+  # -- User token in plain text (required if `global.codefreshTokenSecretKeyRef` is omitted!)
+  # Ref: https://g.codefresh.io/user/settings (see API Keys)
+  # Minimal API key scopes: Runner-Installation(read+write), Agent(read+write), Agents(read+write)
+  codefreshToken: ""
+  # -- User token that references an existing secret containing API key (required if `global.codefreshToken` is omitted!)
+  codefreshTokenSecretKeyRef: {}
+  # E.g.
+  # codefreshTokenSecretKeyRef:
+  #   name: my-codefresh-api-token
+  #   key: codefresh-api-token
+
+  # -- Account ID (required!)
+  # Can be obtained here https://g.codefresh.io/2.0/account-settings/account-information
+  accountId: ""
+  # -- K8s context name (required!)
+  context: ""
+  # E.g.
+  # context: prod-ue1-runtime-1
+
+  # -- Agent Name (optional!)
+  # If omitted, the following format will be used `{{ .Values.global.context }}_{{ .Release.Namespace }}`
+  agentName: ""
+  # E.g.
+  # agentName: prod-ue1-runtime-1
+
+  # -- Runtime name (optional!)
+  # If omitted, the following format will be used `{{ .Values.global.context }}/{{ .Release.Namespace }}`
+  runtimeName: ""
+  # E.g.
+  # runtimeName: prod-ue1-runtime-1/namespace
+
+  # -- DEPRECATED Agent token in plain text.
+  # !!! MUST BE provided if migrating from < 6.x chart version
+  agentToken: ""
+  # -- DEPRECATED Agent token that references an existing secret containing API key.
+  # !!! MUST BE provided if migrating from < 6.x chart version
+  agentTokenSecretKeyRef: {}
+  # E.g.
+  # agentTokenSecretKeyRef:
+  #   name: my-codefresh-agent-secret
+  #   key: codefresh-agent-token
+# DEPRECATED -- Use `.Values.global.imageRegistry` instead
+dockerRegistry: ""
+# DEPRECATED -- Use `.Values.runtime` instead
+re: {}
+# -- Runner parameters
+# @default -- See below
+runner:
+  # -- Enable the runner
+  enabled: true
+  # -- Set number of pods
+  replicasCount: 1
+  # -- Upgrade strategy
+  updateStrategy:
+    type: RollingUpdate
+  # -- Set pod annotations
+  podAnnotations: {}
+  # -- Set image
+  image:
+    registry: quay.io
+    repository: codefresh/venona
+    tag: 2.0.0
+    digest: sha256:bcc6e7495186f1f9c3e885afa891a3bda11b5374a577f069f34ddc75142342ef
+  # -- Init container
+  init:
+    image:
+      registry: quay.io
+      repository: codefresh/cli
+      tag: 0.88.4-rootless
+      digest: sha256:b256d150ff8a636851ddc1d5fb0490114d5036cc5bff357eac6a9899fea87562
+    resources:
+      limits:
+        memory: 512Mi
+        cpu: '1'
+      requests:
+        memory: 256Mi
+        cpu: '0.2'
+  # -- Sidecar container
+  # Reconciles runtime spec from Codefresh API for drift detection
+  sidecar:
+    enabled: false
+    image:
+      registry: quay.io
+      repository: codefresh/kubectl
+      tag: 1.31.2
+      digest: sha256:a30a8810dde249d0198f67792ed9696363f15c8cecbac955ee9bd267b5454ee7
+    env:
+      RECONCILE_INTERVAL: 300
+    resources: {}
+  # -- Add additional env vars
+  env: {}
+  # E.g.
+  # env:
+  #   WORKFLOW_CONCURRENCY: 50 # The number of workflow creation and termination tasks the Runner can handle in parallel. Defaults to 50
+
+  # -- Service Account parameters
+  serviceAccount:
+    # -- Create service account
+    create: true
+    # -- Override service account name
+    name: ""
+    # -- Additional service account annotations
+    annotations: {}
+  # -- RBAC parameters
+  rbac:
+    # -- Create RBAC resources
+    create: true
+    # -- Add custom rule to the role
+    rules: []
+  # -- Set security context for the pod
+  # @default -- See below
+  podSecurityContext:
+    enabled: true
+    runAsUser: 10001
+    runAsGroup: 10001
+    fsGroup: 10001
+  # -- Readiness probe configuration
+  # @default -- See below
+  readinessProbe:
+    failureThreshold: 5
+    initialDelaySeconds: 5
+    periodSeconds: 5
+    successThreshold: 1
+    timeoutSeconds: 5
+  # -- Set requests and limits
+  resources: {}
+  # -- Set node selector
+  nodeSelector: {}
+  # -- Set tolerations
+  tolerations: []
+  # -- Set affinity
+  affinity: {}
+# -- Volume Provisioner parameters
+# @default -- See below
+volumeProvisioner:
+  # -- Enable volume-provisioner
+  enabled: true
+  # -- Set number of pods
+  replicasCount: 1
+  # -- Upgrade strategy
+  updateStrategy:
+    type: Recreate
+  # -- Set pod annotations
+  podAnnotations: {}
+  # -- Set image
+  image:
+    registry: quay.io
+    repository: codefresh/dind-volume-provisioner
+    tag: 1.35.2
+    digest: sha256:ede6f663c912a08b7d335b5ec5518ccc266b27c431d0854d22971005992adc5d
+  # -- Add additional env vars
+  env: {}
+  # E.g.
+  # env:
+  #   THREADINESS: 4 # The number of PVC requests the dind-volume-provisioner can process in parallel. Defaults to 4
+
+  # -- Service Account parameters
+  serviceAccount:
+    # -- Create service account
+    create: true
+    # -- Override service account name
+    name: ""
+    # -- Additional service account annotations
+    annotations: {}
+    # E.g.
+    #   serviceAccount:
+    #     annotations:
+    #       eks.amazonaws.com/role-arn: "arn:aws:iam::<ACCOUNT_ID>:role/<IAM_ROLE_NAME>"
+  # -- RBAC parameters
+  rbac:
+    # -- Create RBAC resources
+    create: true
+    # -- Add custom rule to the role
+    rules: []
+  # -- Set security context for the pod
+  # @default -- See below
+  podSecurityContext:
+    enabled: true
+    runAsUser: 3000
+    runAsGroup: 3000
+    fsGroup: 3000
+  # -- Set node selector
+  nodeSelector: {}
+  # -- Set resources
+  resources: {}
+  # -- Set tolerations
+  tolerations: []
+  # -- Set affinity
+  affinity: {}
+  # -- `dind-lv-monitor` DaemonSet parameters
+  # (local volumes cleaner)
+  # @default -- See below
+  dind-lv-monitor:
+    enabled: true
+    image:
+      registry: quay.io
+      repository: codefresh/dind-volume-utils
+      tag: 1.30.0
+      digest: sha256:506915ccb63481cd6b249e9068235100ea2ae39d4c811c3e49851c20cbe5ee6f
+    podAnnotations: {}
+    podSecurityContext:
+      enabled: false
+      runAsUser: 1000
+      fsGroup: 1000
+    containerSecurityContext: {}
+    env: {}
+    resources: {}
+    nodeSelector: {}
+    tolerations:
+      - key: 'codefresh/dind'
+        operator: 'Exists'
+        effect: 'NoSchedule'
+    volumePermissions:
+      enabled: false
+      image:
+        registry: docker.io
+        repository: alpine
+        tag: 3.18
+        digest: sha256:de0eb0b3f2a47ba1eb89389859a9bd88b28e82f5826b6969ad604979713c2d4f
+      resources: {}
+      securityContext:
+        runAsUser: 0 # auto
+  # `dind-volume-cleanup` CronJob parameters
+  # (external volumes cleaner)
+  # @default -- See below
+  dind-volume-cleanup:
+    enabled: true
+    image:
+      registry: quay.io
+      repository: codefresh/dind-volume-cleanup
+      tag: 1.2.0
+      digest: sha256:1af3e3ecc87bf2e26ba07ecef68f54ad100d7e3b5fcf074099f627fd5d917369
+    env: {}
+    concurrencyPolicy: Forbid
+    schedule: "*/10 * * * *"
+    successfulJobsHistory: 3
+    failedJobsHistory: 1
+    suspend: false
+    podAnnotations: {}
+    podSecurityContext:
+      enabled: true
+      fsGroup: 3000
+      runAsGroup: 3000
+      runAsUser: 3000
+    nodeSelector: {}
+    affinity: {}
+    tolerations: []
+# Storage parameters for volume-provisioner
+# @default -- See below
+storage:
+  # -- Set backend volume type (`local`/`ebs`/`ebs-csi`/`gcedisk`/`azuredisk`)
+  backend: local
+  # -- Set filesystem type (`ext4`/`xfs`)
+  fsType: "ext4"
+  # Storage parametrs example for local volumes on the K8S nodes filesystem (i.e. `storage.backend=local`)
+  # https://kubernetes.io/docs/concepts/storage/volumes/#local
+  # @default -- See below
+  local:
+    # -- Set volume path on the host filesystem
+    volumeParentDir: /var/lib/codefresh/dind-volumes
+  # Storage parameters example for aws ebs disks (i.e. `storage.backend=ebs`/`storage.backend=ebs-csi`)
+  # https://aws.amazon.com/ebs/
+  # https://codefresh.io/docs/docs/installation/codefresh-runner/#aws-backend-volume-configuration
+  # @default -- See below
+  ebs:
+    # -- Set EBS volume type (`gp2`/`gp3`/`io1`) (required)
+    volumeType: "gp2"
+    # -- Set EBS volumes availability zone (required)
+    availabilityZone: "us-east-1a"
+    # -- Enable encryption (optional)
+    encrypted: "false"
+    # -- Set KMS encryption key ID (optional)
+    kmsKeyId: ""
+    # -- Set AWS_ACCESS_KEY_ID for volume-provisioner (optional)
+    # Ref: https://codefresh.io/docs/docs/installation/codefresh-runner/#dind-volume-provisioner-permissions
+    accessKeyId: ""
+    # -- Existing secret containing AWS_ACCESS_KEY_ID.
+    accessKeyIdSecretKeyRef: {}
+    # E.g.
+    # accessKeyIdSecretKeyRef:
+    #   name:
+    #   key:
+
+    # -- Set AWS_SECRET_ACCESS_KEY for volume-provisioner (optional)
+    # Ref: https://codefresh.io/docs/docs/installation/codefresh-runner/#dind-volume-provisioner-permissions
+    secretAccessKey: ""
+    # -- Existing secret containing AWS_SECRET_ACCESS_KEY
+    secretAccessKeySecretKeyRef: {}
+    # E.g.
+    # secretAccessKeySecretKeyRef:
+    #   name:
+    #   key:
+  # E.g.
+  # ebs:
+  #   volumeType: gp3
+  #   availabilityZone: us-east-1c
+  #   encrypted: false
+  #   iops: "5000"
+  #   # I/O operations per second. Only effetive when gp3 volume type is specified.
+  #   # Default value - 3000.
+  #   # Max - 16,000
+  #   throughput: "500"
+  #   # Throughput in MiB/s. Only effective when gp3 volume type is specified.
+  #   # Default value - 125.
+  #   # Max - 1000.
+  # ebs:
+  #   volumeType: gp2
+  #   availabilityZone: us-east-1c
+  #   encrypted: true
+  #   kmsKeyId: "1234abcd-12ab-34cd-56ef-1234567890ab"
+  #   accessKeyId: "MYKEYID"
+  #   secretAccessKey: "MYACCESSKEY"
+
+  # Storage parameters example for gce disks
+  # https://cloud.google.com/compute/docs/disks#pdspecs
+  # https://codefresh.io/docs/docs/installation/codefresh-runner/#gke-google-kubernetes-engine-backend-volume-configuration
+  # @default -- See below
+  gcedisk:
+    # -- Set GCP volume backend type (`pd-ssd`/`pd-standard`)
+    volumeType: "pd-ssd"
+    # -- Set GCP volume availability zone
+    availabilityZone: "us-west1-a"
+    # -- Set Google SA JSON key for volume-provisioner (optional)
+    serviceAccountJson: ""
+    # -- Existing secret containing containing Google SA JSON key for volume-provisioner (optional)
+    serviceAccountJsonSecretKeyRef: {}
+    # E.g.
+    # gcedisk:
+    #   volumeType: pd-ssd
+    #   availabilityZone: us-central1-c
+    #   serviceAccountJson: |-
+    #          {
+    #           "type": "service_account",
+    #           "project_id": "...",
+    #           "private_key_id": "...",
+    #           "private_key": "...",
+    #           "client_email": "...",
+    #           "client_id": "...",
+    #           "auth_uri": "...",
+    #           "token_uri": "...",
+    #           "auth_provider_x509_cert_url": "...",
+    #           "client_x509_cert_url": "..."
+    #           }
+  # Storage parameters example for Azure Disks
+  # https://codefresh.io/docs/docs/installation/codefresh-runner/#install-codefresh-runner-on-azure-kubernetes-service-aks
+  # @default -- See below
+  azuredisk:
+    # -- Set storage type (`Premium_LRS`)
+    skuName: Premium_LRS
+    cachingMode: None
+    # availabilityZone: northeurope-1
+    # resourceGroup:
+    # DiskIOPSReadWrite: 500
+    # DiskMBpsReadWrite: 100
+  mountAzureJson: false
+# -- Set runtime parameters
+# @default -- See below
+runtime:
+  # -- Set annotation on engine Service Account
+  # Ref: https://codefresh.io/docs/docs/administration/codefresh-runner/#injecting-aws-arn-roles-into-the-cluster
+  serviceAccount:
+    create: true
+    annotations: {}
+    # E.g.
+    #   serviceAccount:
+    #     annotations:
+    #       eks.amazonaws.com/role-arn: "arn:aws:iam::<ACCOUNT_ID>:role/<IAM_ROLE_NAME>"
+  # -- Set parent runtime to inherit.
+  # Should not be changes. Parent runtime is controlled from Codefresh side.
+  runtimeExtends:
+    - system/default/hybrid/k8s_low_limits
+  # -- Runtime description
+  description: ""
+  # -- RBAC parameters
+  rbac:
+    # -- Create RBAC resources
+    create: true
+    # -- Add custom rule to the engine role
+    rules: []
+  # -- (for On-Premise only) Enable agent
+  agent: true
+  # -- (for On-Premise only) Set inCluster runtime
+  inCluster: true
+  # -- (for On-Premise only) Assign accounts to runtime (list of account ids)
+  accounts: []
+  # -- Parameters for DinD (docker-in-docker) pod (aka "runtime" pod).
+  dind:
+    # -- Set dind image.
+    image:
+      registry: quay.io
+      repository: codefresh/dind
+      tag: 26.1.4-1.28.8 # use `latest-rootless/rootless/26.1.4-1.28.8-rootless` tags for rootless-dind
+      pullPolicy: IfNotPresent
+      digest: sha256:33c343dd01e8a24f0b4a872bbe62884320719f9d9dc27b7a8fed9f7e9fc7e80e
+    # -- Set dind resources.
+    resources:
+      requests: null
+      limits:
+        cpu: 400m
+        memory: 800Mi
+    # -- Set termination grace period.
+    terminationGracePeriodSeconds: 30
+    # -- PV claim spec parametes.
+    pvcs:
+      # -- Default dind PVC parameters
+      dind:
+        # -- PVC name prefix.
+        # Keep `dind` as default! Don't change!
+        name: dind
+        # -- PVC storage class name.
+        # Change ONLY if you need to use storage class NOT from Codefresh volume-provisioner
+        storageClassName: '{{ include "dind-volume-provisioner.storageClassName" . }}'
+        # -- PVC size.
+        volumeSize: 16Gi
+        # -- PV reuse selector.
+        # Ref: https://codefresh.io/docs/docs/installation/codefresh-runner/#volume-reuse-policy
+        reuseVolumeSelector: codefresh-app,io.codefresh.accountName
+        reuseVolumeSortOrder: pipeline_id
+        # -- PV annotations.
+        annotations: {}
+        # E.g.:
+        # annotations:
+        #   codefresh.io/volume-retention: 7d
+    # -- Set additional env vars.
+    env:
+      DOCKER_ENABLE_DEPRECATED_PULL_SCHEMA_1_IMAGE: true
+    # -- Set pod annotations.
+    podAnnotations: {}
+    # -- Set pod labels.
+    podLabels: {}
+    # -- Set node selector.
+    nodeSelector: {}
+    # -- Set affinity
+    affinity: {}
+    # -- Set tolerations.
+    tolerations: []
+    # -- Set security context for the pod.
+    podSecurityContext: {}
+    # -- Set container security context.
+    containerSecurityContext: {}
+    # -- Set scheduler name.
+    schedulerName: ""
+    # -- Set service account for pod.
+    serviceAccount: codefresh-engine
+    # -- Keep `true` as default!
+    userAccess: true
+    # -- Add extra volumes
+    userVolumes: {}
+    # E.g.:
+    # userVolumes:
+    #   regctl-docker-registry:
+    #     name: regctl-docker-registry
+    #     secret:
+    #       items:
+    #         - key: .dockerconfigjson
+    #           path: config.json
+    #       secretName: regctl-docker-registry
+    #       optional: true
+    # -- Add extra volume mounts
+    userVolumeMounts: {}
+    # E.g.:
+    # userVolumeMounts:
+    #   regctl-docker-registry:
+    #     name: regctl-docker-registry
+    #     mountPath: /home/appuser/.docker/
+    #     readOnly: true
+    volumePermissions:
+      enabled: false
+      image:
+        registry: docker.io
+        repository: alpine
+        tag: 3.18
+        digest: sha256:de0eb0b3f2a47ba1eb89389859a9bd88b28e82f5826b6969ad604979713c2d4f
+      resources: {}
+      securityContext:
+        runAsUser: 0 # auto
+  # -- Parameters for Engine pod (aka "pipeline" orchestrator).
+  engine:
+    # -- Set image.
+    image:
+      registry: quay.io
+      repository: codefresh/engine
+      tag: 1.177.4
+      pullPolicy: IfNotPresent
+      digest: sha256:cfb0ece760033f95f37a40ca17614d91c928b4018705ad46fd39392daf578bc6
+    # -- Set container command.
+    command:
+      - npm
+      - run
+      - start
+    # -- Set resources.
+    resources:
+      requests:
+        cpu: 100m
+        memory: 128Mi
+      limits:
+        cpu: 1000m
+        memory: 2048Mi
+    # -- Set termination grace period.
+    terminationGracePeriodSeconds: 180
+    # -- Set system(base) runtime images.
+    # @default -- See below.
+    runtimeImages:
+      COMPOSE_IMAGE: quay.io/codefresh/compose:v2.32.2-1.5.2@sha256:9177054614f6db006a3500d2b9b8d2cafac4073ce891929d93e117714fccbd4b
+      CONTAINER_LOGGER_IMAGE: quay.io/codefresh/cf-container-logger:1.12.2@sha256:b3cbe2088f8fd0c48a0fa6df6c9ab8ad9d1d3c840a57f2c89520a655e2a8c116
+      DOCKER_BUILDER_IMAGE: quay.io/codefresh/cf-docker-builder:1.4.2@sha256:8df63d741e7997902fa2ee7a0c68b3c3fd9003429bb093a3a9563b2cd2ec219c
+      DOCKER_PULLER_IMAGE: quay.io/codefresh/cf-docker-puller:8.0.18@sha256:1a15c3ae0952d3986de7866a3def8ac7e3e39f668fe87fd46c63d886ca06c6d7
+      DOCKER_PUSHER_IMAGE: quay.io/codefresh/cf-docker-pusher:6.0.16@sha256:05efc1af8b1196f1b9b3f0781b4dcc1aa2cdd0ffc1347ee5fa81b16d029ec5c2
+      DOCKER_TAG_PUSHER_IMAGE: quay.io/codefresh/cf-docker-tag-pusher:1.3.15@sha256:3a3e90cd10801c7ec0d3cf3816d0dcc90894d5d1771448c43f67215d90da5eca
+      FS_OPS_IMAGE: quay.io/codefresh/fs-ops:1.2.8@sha256:dc05888d84a959787a738caef914f83aa7392ff49c16767e612a29e180826f35
+      GIT_CLONE_IMAGE: quay.io/codefresh/cf-git-cloner:10.2.0@sha256:a3ec854823f17d0fd817d978219122e644b1abd6db778fd835688fcb6d88c515
+      KUBE_DEPLOY: quay.io/codefresh/cf-deploy-kubernetes:16.1.11@sha256:b6b3fc6cc5fad3ba9e36055278ce99a74a86876be116574503c6fbb4c1b4aa76
+      PIPELINE_DEBUGGER_IMAGE: quay.io/codefresh/cf-debugger:1.3.7@sha256:3391822b7ad9835cc2a3a0ce5aaa55774ca110a8682d9512205dea24f438718a
+      TEMPLATE_ENGINE: quay.io/codefresh/pikolo:0.14.2@sha256:97874aefc46b58caf5b9d0edcfd2d6742db247e671424433363a1367020a8a65
+      CR_6177_FIXER: alpine:edge@sha256:115729ec5cb049ba6359c3ab005ac742012d92bbaa5b8bc1a878f1e8f62c0cb8
+      GC_BUILDER_IMAGE: quay.io/codefresh/cf-gc-builder:0.5.3@sha256:33ac914e6b844909f188a208cf90e569358cafa5aaa60f49848f49d99bcaf875
+      COSIGN_IMAGE_SIGNER_IMAGE: quay.io/codefresh/cf-cosign-image-signer:2.4.0-cf.2@sha256:5e0993207aa809c25ed70cf89af444d9720892fb4a29deb82db45618b0cae4a9
+    # -- Set additional env vars.
+    env:
+      # -- Interval to check the exec status in the container-logger
+      CONTAINER_LOGGER_EXEC_CHECK_INTERVAL_MS: 1000
+      # -- Timeout while doing requests to the Docker daemon
+      DOCKER_REQUEST_TIMEOUT_MS: 30000
+      # -- If "true", composition images will be pulled sequentially
+      FORCE_COMPOSE_SERIAL_PULL: false
+      # -- Level of logging for engine
+      LOGGER_LEVEL: debug
+      # -- Enable debug-level logging of outgoing HTTP/HTTPS requests
+      LOG_OUTGOING_HTTP_REQUESTS: false
+      # -- Enable emitting metrics from engine
+      METRICS_PROMETHEUS_ENABLED: true
+      # -- Enable legacy metrics
+      METRICS_PROMETHEUS_ENABLE_LEGACY_METRICS: false
+      # -- Enable collecting process metrics
+      METRICS_PROMETHEUS_COLLECT_PROCESS_METRICS: false
+      # -- Host for Prometheus metrics server
+      METRICS_PROMETHEUS_HOST: '0.0.0.0'
+      # -- Port for Prometheus metrics server
+      METRICS_PROMETHEUS_PORT: 9100
+      # -- The timeout till the engine waits for Prometheus to pull the latest metrics before engine shuts down (in milliseconds)
+      METRICS_PROMETHEUS_SCRAPE_TIMEOUT: '15000'
+      # -- Trusted QEMU images used for docker builds - when left blank only 'tonistiigi/binfmt' is trusted.
+      TRUSTED_QEMU_IMAGES: ''
+    # -- Set workflow limits.
+    workflowLimits:
+      # -- Maximum time allowed to the engine to wait for the pre-steps (aka "Initializing Process") to succeed; seconds.
+      MAXIMUM_ALLOWED_TIME_BEFORE_PRE_STEPS_SUCCESS: 600
+      # -- Maximum time for workflow execution; seconds.
+      MAXIMUM_ALLOWED_WORKFLOW_AGE_BEFORE_TERMINATION: 86400
+      # -- Maximum time allowed to workflow to spend in "elected" state; seconds.
+      MAXIMUM_ELECTED_STATE_AGE_ALLOWED: 900
+      # -- Maximum retry attempts allowed for workflow.
+      MAXIMUM_RETRY_ATTEMPTS_ALLOWED: 20
+      # -- Maximum time allowed to workflow to spend in "terminating" state until force terminated; seconds.
+      MAXIMUM_TERMINATING_STATE_AGE_ALLOWED: 900
+      # -- Maximum time allowed to workflow to spend in "terminating" state without logs activity until force terminated; seconds.
+      MAXIMUM_TERMINATING_STATE_AGE_ALLOWED_WITHOUT_UPDATE: 300
+      # -- Time since the last health check report after which workflow is terminated; seconds.
+      TIME_ENGINE_INACTIVE_UNTIL_TERMINATION: 300
+      # -- Time since the last health check report after which the engine is considered unhealthy; seconds.
+      TIME_ENGINE_INACTIVE_UNTIL_UNHEALTHY: 60
+      # -- Time since the last workflow logs activity after which workflow is terminated; seconds.
+      TIME_INACTIVE_UNTIL_TERMINATION: 2700
+    # -- Set pod annotations.
+    podAnnotations: {}
+    # -- Set pod labels.
+    podLabels: {}
+    # -- Set node selector.
+    nodeSelector: {}
+    # -- Set affinity
+    affinity: {}
+    # -- Set tolerations.
+    tolerations: []
+    # -- Set scheduler name.
+    schedulerName: ""
+    # -- Set service account for pod.
+    serviceAccount: codefresh-engine
+    # -- Set extra env vars
+    userEnvVars: []
+    # E.g.
+    # userEnvVars:
+    # - name: GITHUB_TOKEN
+    #   valueFrom:
+    #     secretKeyRef:
+    #       name: github-token
+    #       key: token
+  # -- Parameters for `runtime-patch` post-upgrade/install hook
+  # @default -- See below
+  patch:
+    enabled: true
+    image:
+      registry: quay.io
+      repository: codefresh/cli
+      tag: 0.88.4-rootless
+      digest: sha256:b256d150ff8a636851ddc1d5fb0490114d5036cc5bff357eac6a9899fea87562
+    rbac:
+      enabled: true
+    annotations: {}
+    affinity: {}
+    nodeSelector: {}
+    podSecurityContext: {}
+    resources: {}
+    tolerations: []
+    ttlSecondsAfterFinished: 180
+    env:
+      HOME: /tmp
+  # -- Parameters for `gencerts-dind` post-upgrade/install hook
+  # @default -- See below
+  gencerts:
+    enabled: true
+    image:
+      registry: quay.io
+      repository: codefresh/kubectl
+      tag: 1.31.2
+      digest: sha256:a30a8810dde249d0198f67792ed9696363f15c8cecbac955ee9bd267b5454ee7
+    rbac:
+      enabled: true
+    annotations: {}
+    affinity: {}
+    nodeSelector: {}
+    podSecurityContext: {}
+    resources: {}
+    tolerations: []
+    ttlSecondsAfterFinished: 180
+  # -- DinD pod daemon config
+  # @default -- See below
+  dindDaemon:
+    hosts:
+      - unix:///var/run/docker.sock
+      - tcp://0.0.0.0:1300
+    tlsverify: true
+    tls: true
+    tlscacert: /etc/ssl/cf-client/ca.pem
+    tlscert: /etc/ssl/cf/server-cert.pem
+    tlskey: /etc/ssl/cf/server-key.pem
+    insecure-registries:
+      - 192.168.99.100:5000
+    metrics-addr: 0.0.0.0:9323
+    experimental: true
+# App-Proxy parameters
+# Ref: https://codefresh.io/docs/docs/installation/codefresh-runner/#app-proxy-installation
+# @default -- See below
+appProxy:
+  # -- Enable app-proxy
+  enabled: false
+  # -- Set number of pods
+  replicasCount: 1
+  # -- Upgrade strategy
+  updateStrategy:
+    type: RollingUpdate
+  # -- Set pod annotations
+  podAnnotations: {}
+  # -- Set image
+  image:
+    registry: quay.io
+    repository: codefresh/cf-app-proxy
+    tag: 0.0.50
+    digest: sha256:cc5054ec572a33bb3545cb065c2082ecf988113efffe8235e57ed93d27b861a6
+  # -- Add additional env vars
+  env: {}
+  # Set app-proxy ingress parameters
+  # @default -- See below
+  ingress:
+    # -- Set path prefix for ingress (keep empty for default `/` path)
+    pathPrefix: ""
+    # -- Set ingress class
+    class: ""
+    # -- Set DNS hostname the ingress will use
+    host: ""
+    # -- Set k8s tls secret for the ingress object
+    tlsSecret: ""
+    # -- Set extra annotations for ingress object
+    annotations: {}
+    # E.g.
+    # ingress:
+    #   pathPrefix: "/cf-app-proxy"
+    #   class: "nginx"
+    #   host: "mydomain.com"
+    #   tlsSecret: "tls-cert-app-proxy"
+    #   annotations:
+    #     nginx.ingress.kubernetes.io/whitelist-source-range: 123.123.123.123/130
+  # -- Service Account parameters
+  serviceAccount:
+    # -- Create service account
+    create: true
+    # -- Override service account name
+    name: ""
+    # -- Use Role(true)/ClusterRole(true)
+    namespaced: true
+    # -- Additional service account annotations
+    annotations: {}
+  # -- RBAC parameters
+  rbac:
+    # -- Create RBAC resources
+    create: true
+    # -- Use Role(true)/ClusterRole(true)
+    namespaced: true
+    # -- Add custom rule to the role
+    rules: []
+  # -- Set security context for the pod
+  podSecurityContext: {}
+  # -- Readiness probe configuration
+  # @default -- See below
+  readinessProbe:
+    failureThreshold: 5
+    initialDelaySeconds: 5
+    periodSeconds: 5
+    successThreshold: 1
+    timeoutSeconds: 5
+  # -- Set requests and limits
+  resources: {}
+  # -- Set node selector
+  nodeSelector: {}
+  # -- Set tolerations
+  tolerations: []
+  # -- Set affinity
+  affinity: {}
+# Monitor parameters
+# @default -- See below
+monitor:
+  # -- Enable monitor
+  # Ref: https://codefresh.io/docs/docs/installation/codefresh-runner/#install-monitoring-component
+  enabled: false
+  # -- Set number of pods
+  replicasCount: 1
+  # -- Upgrade strategy
+  updateStrategy:
+    type: RollingUpdate
+  # -- Set pod annotations
+  podAnnotations: {}
+  # -- Set image
+  image:
+    registry: quay.io
+    repository: codefresh/cf-k8s-agent
+    tag: 1.3.21
+    digest: sha256:3cc7b3d41f841604133197a44f016db499f3e91e26448da36ce739a0b1171d05
+  # -- Add additional env vars
+  env: {}
+  # -- Service Account parameters
+  serviceAccount:
+    # -- Create service account
+    create: true
+    # -- Override service account name
+    name: ""
+    # -- Additional service account annotations
+    annotations: {}
+  # -- RBAC parameters
+  rbac:
+    # -- Create RBAC resources
+    create: true
+    # -- Use Role(true)/ClusterRole(true)
+    namespaced: true
+    # -- Add custom rule to the role
+    rules: []
+  # -- Readiness probe configuration
+  # @default -- See below
+  readinessProbe:
+    failureThreshold: 5
+    initialDelaySeconds: 5
+    periodSeconds: 5
+    successThreshold: 1
+    timeoutSeconds: 5
+  podSecurityContext: {}
+  # -- Set node selector
+  nodeSelector: {}
+  # -- Set resources
+  resources: {}
+  # -- Set tolerations
+  tolerations: []
+  # -- Set affinity
+  affinity: {}
+# -- Add serviceMonitor
+# @default -- See below
+serviceMonitor:
+  main:
+    # -- Enable service monitor for dind pods
+    enabled: false
+    nameOverride: dind
+    selector:
+      matchLabels:
+        app: dind
+    endpoints:
+      - path: /metrics
+        targetPort: 9100
+        relabelings:
+          - action: labelmap
+            regex: __meta_kubernetes_pod_label_(.+)
+# -- Add podMonitor (for engine pods)
+# @default -- See below
+podMonitor:
+  main:
+    # -- Enable pod monitor for engine pods
+    enabled: false
+    nameOverride: engine
+    selector:
+      matchLabels:
+        app: runtime
+    podMetricsEndpoints:
+      - path: /metrics
+        targetPort: 9100
+  runner:
+    # -- Enable pod monitor for runner pod
+    enabled: false
+    nameOverride: runner
+    selector:
+      matchLabels:
+        codefresh.io/application: runner
+    podMetricsEndpoints:
+      - path: /metrics
+        targetPort: 8080
+  volume-provisioner:
+    # -- Enable pod monitor for volumeProvisioner pod
+    enabled: false
+    nameOverride: volume-provisioner
+    selector:
+      matchLabels:
+        codefresh.io/application: volume-provisioner
+    podMetricsEndpoints:
+      - path: /metrics
+        targetPort: 8080
+# -- Event exporter parameters
+# @default -- See below
+event-exporter:
+  # -- Enable event-exporter
+  enabled: false
+  # -- Set number of pods
+  replicasCount: 1
+  # -- Upgrade strategy
+  updateStrategy:
+    type: Recreate
+  # -- Set pod annotations
+  podAnnotations: {}
+  # -- Set image
+  image:
+    registry: docker.io
+    repository: codefresh/k8s-event-exporter
+    tag: latest
+    digest: sha256:cf52048f1378fb6659dffd1394d68fdf23a7ea709585dc14b5007f3e5a1b7584
+  # -- Add additional env vars
+  env: {}
+  # -- Service Account parameters
+  serviceAccount:
+    # -- Create service account
+    create: true
+    # -- Override service account name
+    name: ""
+    # -- Additional service account annotations
+    annotations: {}
+  # -- RBAC parameters
+  rbac:
+    # -- Create RBAC resources
+    create: true
+    # -- Add custom rule to the role
+    rules: []
+  # -- Set security context for the pod
+  # @default -- See below
+  podSecurityContext:
+    enabled: false
+  # -- Set node selector
+  nodeSelector: {}
+  # -- Set resources
+  resources: {}
+  # -- Set tolerations
+  tolerations: []
+  # -- Set affinity
+  affinity: {}
+# -- Array of extra objects to deploy with the release
+extraResources: []
+# E.g.
+# extraResources:
+# - apiVersion: rbac.authorization.k8s.io/v1
+#   kind: ClusterRole
+#   metadata:
+#     name: codefresh-role
+#   rules:
+#     - apiGroups: [ "*"]
+#       resources: ["*"]
+#       verbs: ["get", "list", "watch", "create", "update", "patch", "delete"]
+# - apiVersion: v1
+#   kind: ServiceAccount
+#   metadata:
+#     name: codefresh-user
+#     namespace: "{{ .Release.Namespace }}"
+# - apiVersion: rbac.authorization.k8s.io/v1
+#   kind: ClusterRoleBinding
+#   metadata:
+#     name: codefresh-user
+#   roleRef:
+#     apiGroup: rbac.authorization.k8s.io
+#     kind: ClusterRole
+#     name: codefresh-role
+#   subjects:
+#   - kind: ServiceAccount
+#     name: codefresh-user
+#     namespace: "{{ .Release.Namespace }}"
+# - apiVersion: v1
+#   kind: Secret
+#   type: kubernetes.io/service-account-token
+#   metadata:
+#     name: codefresh-user-token
+#     namespace: "{{ .Release.Namespace }}"
+#     annotations:
+#       kubernetes.io/service-account.name: "codefresh-user"
diff --git a/charts/instana/instana-agent/2.0.13/.helmignore b/charts/instana/instana-agent/2.0.13/.helmignore
new file mode 100644
index 0000000000..b4fa6cb0de
--- /dev/null
+++ b/charts/instana/instana-agent/2.0.13/.helmignore
@@ -0,0 +1,23 @@
+# Patterns to ignore when building packages.
+# This supports shell glob matching, relative path matching, and
+# negation (prefixed with !). Only one pattern per line.
+.DS_Store
+# Common VCS dirs
+.git/
+.gitignore
+.bzr/
+.bzrignore
+.hg/
+.hgignore
+.svn/
+# Common backup files
+*.swp
+*.bak
+*.tmp
+*~
+# Various IDEs
+.project
+.idea/
+*.tmproj
+# OWNERS file for helm
+OWNERS
diff --git a/charts/instana/instana-agent/2.0.13/Chart.yaml b/charts/instana/instana-agent/2.0.13/Chart.yaml
new file mode 100644
index 0000000000..94c9b93052
--- /dev/null
+++ b/charts/instana/instana-agent/2.0.13/Chart.yaml
@@ -0,0 +1,39 @@
+annotations:
+  artifacthub.io/links: |
+    - name: Instana website
+      url: https://www.ibm.com/products/instana
+    - name: Instana Helm charts
+      url: https://github.com/instana/helm-charts
+  catalog.cattle.io/certified: partner
+  catalog.cattle.io/display-name: Instana Agent
+  catalog.cattle.io/kube-version: '>=1.21-0'
+  catalog.cattle.io/release-name: instana-agent
+apiVersion: v2
+appVersion: 1.290.0
+description: Instana Agent for Kubernetes
+home: https://www.instana.com/
+icon: file://assets/icons/instana-agent.png
+kubeVersion: '>=1.21-0'
+maintainers:
+- email: felix.marx@ibm.com
+  name: FelixMarxIBM
+- email: henning.treu@ibm.com
+  name: htreu
+- email: konrad.ohms@de.ibm.com
+  name: Konrad-Ohms
+- email: fredrik.gundersen@ibm.com
+  name: FredrikAtIBM
+- email: jefiyamj@ibm.com
+  name: Jefiya-MJ
+- email: milica.cvrkota@ibm.com
+  name: Milica-Cvrkota-IBM
+- email: Nagaraj.Kandoor@ibm.com
+  name: nagaraj-kandoor
+- email: Vineeth.Soman@ibm.com
+  name: vineethsoman03
+- email: Rashmi.Swamy@ibm.com
+  name: rashmiswamyibm
+name: instana-agent
+sources:
+- https://github.com/instana/instana-agent-docker
+version: 2.0.13
diff --git a/charts/instana/instana-agent/2.0.13/DEPLOYMENT.md b/charts/instana/instana-agent/2.0.13/DEPLOYMENT.md
new file mode 100644
index 0000000000..510dea06d8
--- /dev/null
+++ b/charts/instana/instana-agent/2.0.13/DEPLOYMENT.md
@@ -0,0 +1,54 @@
+# Kubernetes Deployment Mode (tech preview)
+
+Instana has always endeavored to make the experience of using Instana as seamless as possible from auto-instrumentation to one-liner installs. To date for our customers with Kubernetes clusters containing more than 1,000 entities this wasn’t the case. The Kubernetes sensor as a deployment is one of many steps we’re taking to improve the experience of operating Instana in Kubernetes. This is a tech preview however we have a high degree of confidence it will work well in your production workloads. The fundamental change moves the Kubernetes sensor from the DaemonSet responsible for monitoring your hosts and processes into its own dedicated Deployment where it does not contend for resources with other sensors. An overview of this deployment is below:
+
+![kubernetes.deployment.enabled=true](kubernetes.deployment.enabled.png)
+
+This change provides a few primary benefits including:
+
+* Lower load on the Kubernetes api-server as it eliminates per node pod monitoring.
+* Lower load on the Kubernetes api-server as it reduces the endpoint watch to 2 leader elector side cars.
+* Lower memory and CPU requests in the DaemonSet as it is no longer responsible for monitoring Kubernetes.
+* Elimination of the leader elector sidecar in the DaemonSet as it is only required for the Kubernetes sensor.
+* Better performance of the Kubernetes sensor as it is isolated from other sensors and does not contend for CPU and memory.
+* Better scaling behaviour as you can adjust the memory and CPU requirements to monitor your clusters without overprovisioning utilisation cluster wide.
+
+The primary drawback of this model in the tech preview include:
+
+* Reduced control and observability of the Kubernetes specific Agents in the Agent dashboard.
+* Some unnecessary features are still enabled in the Kubernetes sensor (e.g. trace sinks, and host monitoring).
+
+Some limitations remain unchanged from the previous sensor:
+
+* Clusters with a high number of entities (e.g. pods, deployments, etc) are likely to have non-deterministic behaviour due to limitations we impose on message sizes. This is unlikely to be experienced in clusters with fewer than 500 hosts.
+* The ServiceAccount is shared between both the DaemonSet and Deployment meaning no change in the security posture. We plan to add an additional service account to limit access to the api-server to only the Kubernetes sensor Deployment.
+
+## Installation
+
+For clusters with minimal controls you can install the tech preview with the following Helm install command:
+
+```
+helm template instana-agent \
+    --repo https://agents.instana.io/helm \
+    --namespace instana-agent \
+    --create-namespace \
+    --set agent.key=${AGENT_KEY} \
+    --set agent.endpointHost=${BACKEND_URL} \
+    --set agent.endpointPort=443 \
+    --set cluster.name=${CLUSTER_NAME} \
+    --set zone.name=${ZONE_NAME} \
+    --set kubernetes.deployment.enabled=true \
+    instana-agent
+```
+
+If your cluster employs Pod Security Policies you will need the following additional flag:
+
+```
+--set podSecurityPolicy.enable=true
+```
+
+If you are deploying into an OpenShift 4.x cluster you will need the following additional flag:
+
+```
+--set openshift=true
+```
diff --git a/charts/instana/instana-agent/2.0.13/README.md b/charts/instana/instana-agent/2.0.13/README.md
new file mode 100644
index 0000000000..704d2fd7ed
--- /dev/null
+++ b/charts/instana/instana-agent/2.0.13/README.md
@@ -0,0 +1,810 @@
+# Instana
+
+Instana is an [APM solution](https://www.instana.com/) built for microservices that enables IT Ops to build applications faster and deliver higher quality services by automating monitoring, tracing and root cause analysis.
+This solution is optimized for [Kubernetes](https://www.instana.com/automatic-kubernetes-monitoring/).
+
+This chart adds the Instana Agent to all schedulable nodes in your cluster via a privileged `DaemonSet` and accompanying resources like `ConfigurationMap`s, `Secret`s and RBAC settings.
+
+## Prerequisites
+
+* Kubernetes 1.21+ OR OpenShift 4.8+
+* Helm 3
+
+## Installation
+
+To configure the installation you can either specify the options on the command line using the **--set** switch, or you can edit **values.yaml**.
+
+First, create a namespace for the instana-agent
+
+```bash
+$ kubectl create namespace instana-agent
+```
+
+**OpenShift:** When targetting an OpenShift 4.x cluster, ensure proper permission before installing the helm chart, otherwise the agent pods will not be scheduled correctly.
+
+```bash
+$ oc adm policy add-scc-to-user privileged -z instana-agent
+```
+
+To install the chart with the release name `instana-agent` and set the values on the command line run:
+
+```bash
+$ helm install instana-agent \
+--namespace instana-agent \
+--repo https://agents.instana.io/helm \
+--set agent.key=INSTANA_AGENT_KEY \
+--set agent.endpointHost=HOST \
+--set zone.name=ZONE_NAME \
+--set cluster.name="CLUSTER_NAME" \
+instana-agent
+```
+
+## Upgrade
+
+The helm chart deploys a Kubernetes Operator internally that reconciles the agent resources based on an agent CustomResource (CR) that is created based on the helm values. As the Operator pattern requires a CustomResourceDefinition (CRD) to be present in the cluster before defining any CRs, the CRD definition is included in the helm chart. On initial installations the chart deploys the CRD before submitting the rest of the artifacts.
+
+Helm has known limitations around handling the CRD lifecycle as outlined in their [documentation](https://helm.sh/docs/chart_best_practices/custom_resource_definitions/).
+
+This leads to the problem, that CRD updates are only submitted to the Cluster on **initial installation**, but **NOT applied automatically during upgrades**.
+
+It is also worth noting, that CRDs must be removed manually if the chart should be removed completly, see more details in the [uninstall](#uninstallation) section.
+
+To ensure a proper update, apply the CRD updates before running the upgrade:
+
+```
+helm pull --repo https://agents.instana.io/helm --untar instana-agent; kubectl apply -f instana-agent/crds; helm upgrade instana-agent instana-agent \
+  --namespace instana-agent \
+  --repo https://agents.instana.io/helm \
+  --reuse-values
+```
+
+This is especially important when migrating from helm charts v1 to v2, as the upgrade will fail otherwise as the CR artifact cannot be created.
+
+### Required Settings
+
+#### Configuring the Instana Backend
+
+In order to report the data it collects to the Instana backend for analysis, the Instana agent must know which backend to report to, and which credentials to use to authenticate, known as "agent key".
+
+As described by the [Install Using the Helm Chart](https://www.instana.com/docs/setup_and_manage/host_agent/on/kubernetes#install-using-the-helm-chart) documentation, you will find the right values for the following fields inside Instana itself:
+
+* `agent.endpointHost`
+* `agent.endpointPort`
+* `agent.key`
+
+_Note:_ You can find the options mentioned in the [configuration section below](#configuration-reference)
+
+If your agents report into a self-managed Instana unit (also known as "on-prem"), you will also need to configure a "download key", which allows the agent to fetch its components from the Instana repository.
+The download key is set via the following value:
+
+* `agent.downloadKey`
+
+#### Zone and Cluster
+
+Instana needs to know how to name your Kubernetes cluster and, optionally, how to group your Instana agents in [Custom zones](https://www.instana.com/docs/setup_and_manage/host_agent/configuration/#custom-zones) using the following fields:
+
+* `zone.name`
+* `cluster.name`
+
+Either `zone.name` or `cluster.name` are required.
+If you omit `cluster.name`, the value of `zone.name` will be used as cluster name as well.
+If you omit `zone.name`, the host zone will be automatically determined by the availability zone information provided by the [supported Cloud providers](https://www.instana.com/docs/setup_and_manage/cloud_service_agents).
+
+## Uninstallation
+
+To uninstall/delete the `instana-agent` release:
+
+```bash
+helm uninstall instana-agent -n instana-agent && kubectl patch agent instana-agent -n instana-agent -p '{"metadata":{"finalizers":null}}' --type=merge &&
+kubectl delete crd/agents.instana.io
+```
+
+## Configuration Reference
+
+The following table lists the configurable parameters of the Instana chart and their default values.
+
+| Parameter                                           | Description                                                                                                                                                                                                                                                                                                            | Default                                                                                                                                 |
+| --------------------------------------------------- | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | --------------------------------------------------------------------------------------------------------------------------------------- |
+| `agent.configuration_yaml`                          | Custom content for the agent configuration.yaml file                                                                                                                                                                                                                                                                   | `nil` See [below](#agent-configuration) for more details                                                                                |
+| `agent.endpointHost`                                | Instana Agent backend endpoint host                                                                                                                                                                                                                                                                                    | `ingress-red-saas.instana.io` (US and ROW). If in Europe, please override with `ingress-blue-saas.instana.io`                           |
+| `agent.endpointPort`                                | Instana Agent backend endpoint port                                                                                                                                                                                                                                                                                    | `443`                                                                                                                                   |
+| `agent.key`                                         | Your Instana Agent key                                                                                                                                                                                                                                                                                                 | `nil` You must provide your own key unless `agent.keysSecret` is specified                                                              |
+| `agent.downloadKey`                                 | Your Instana Download key                                                                                                                                                                                                                                                                                              | `nil` Usually not required                                                                                                              |
+| `agent.keysSecret`                                  | As an alternative to specifying `agent.key` and, optionally, `agent.downloadKey`, you can instead specify the name of the secret in the namespace in which you install the Instana agent that carries the agent key and download key                                                                                   | `nil` Usually not required, see [Bring your own Keys secret](#bring-your-own-keys-secret) for more details                              |
+| `agent.additionalBackends`                          | List of additional backends to report to; it must specify the `endpointHost` and `key` fields, and optionally `endpointPort`                                                                                                                                                                                           | `[]` Usually not required; see [Configuring Additional Backends](#configuring-additional-backends) for more info and examples           |
+| `agent.tls.secretName`                              | The name of the secret of type `kubernetes.io/tls` which contains the TLS relevant data. If the name is provided, `agent.tls.certificate` and `agent.tls.key` will be ignored.                                                                                                                                         | `nil`                                                                                                                                   |
+| `agent.tls.certificate`                             | The certificate data encoded as base64. Which will be used to create a new secret of type `kubernetes.io/tls`.                                                                                                                                                                                                         | `nil`                                                                                                                                   |
+| `agent.tls.key`                                     | The private key data encoded as base64. Which will be used to create a new secret of type `kubernetes.io/tls`.                                                                                                                                                                                                         | `nil`                                                                                                                                   |
+| `agent.image.name`                                  | The image name to pull                                                                                                                                                                                                                                                                                                 | `instana/agent`                                                                                                                         |
+| `agent.image.digest`                                | The image digest to pull; if specified, it causes `agent.image.tag` to be ignored                                                                                                                                                                                                                                      | `nil`                                                                                                                                   |
+| `agent.image.tag`                                   | The image tag to pull; this property is ignored if `agent.image.digest` is specified                                                                                                                                                                                                                                   | `latest`                                                                                                                                |
+| `agent.image.pullPolicy`                            | Image pull policy                                                                                                                                                                                                                                                                                                      | `Always`                                                                                                                                |
+| `agent.image.pullSecrets`                           | Image pull secrets; if not specified (default) _and_ `agent.image.name` starts with `containers.instana.io`, it will be automatically set to `[{ "name": "containers-instana-io" }]` to match the default secret created in this case.                                                                                 | `nil`                                                                                                                                   |
+| `agent.listenAddress`                               | List of addresses to listen on, or "*" for all interfaces                                                                                                                                                                                                                                                              | `nil`                                                                                                                                   |
+| `agent.mode`                                        | Agent mode. Supported values are `APM`, `INFRASTRUCTURE`, `AWS`                                                                                                                                                                                                                                                        | `APM`                                                                                                                                   |
+| `agent.instanaMvnRepoUrl`                           | Override for the Maven repository URL when the Agent needs to connect to a locally provided Maven repository 'proxy'                                                                                                                                                                                                   | `nil` Usually not required                                                                                                              |
+| `agent.instanaMvnRepoFeaturesPath`                  | Override for the Maven repository features path the Agent needs to connect to a locally provided Maven repository 'proxy'                                                                                                                                                                                              | `nil` Usually not required                                                                                                              |
+| `agent.instanaMvnRepoSharedPath`                    | Override for the Maven repository shared path when the Agent needs to connect to a locally provided Maven repository 'proxy'                                                                                                                                                                                           | `nil` Usually not required                                                                                                              |
+| `agent.agentReleaseRepoMirrorUrl`                    | The URL of the agent features repository mirror. For more information, see [Configuring the agent repository as the mirror](https://www.ibm.com/docs/en/instana-observability/current?topic=agents-setting-up-agent-repositories-dynamic-host#configuring-the-agent-repository-as-the-mirror).                                                                                                                                                                                           | `nil`                                                                                                              |
+| `agent.agentReleaseRepoMirrorUsername`                    | The username for authentication for the agent features repository mirror. For more information, see [Configuring the agent repository as the mirror](https://www.ibm.com/docs/en/instana-observability/current?topic=agents-setting-up-agent-repositories-dynamic-host#configuring-the-agent-repository-as-the-mirror).                                                                                                                                                                                           | `nil`                                                                                                              |
+| `agent.agentReleaseRepoMirrorPassword`                    | The password for authentication for the agent features repository mirror. For more information, see [Configuring the agent repository as the mirror](https://www.ibm.com/docs/en/instana-observability/current?topic=agents-setting-up-agent-repositories-dynamic-host#configuring-the-agent-repository-as-the-mirror).                                                                                                                                                                                           | `nil`                                                                                                              |
+| `agent.instanaSharedRepoMirrorUrl`                    | The URL of the agent shared repository mirror. For more information, see [Configuring the agent repository as the mirror](https://www.ibm.com/docs/en/instana-observability/current?topic=agents-setting-up-agent-repositories-dynamic-host#configuring-the-agent-repository-as-the-mirror).                                                                                                                                                                                           | `nil`                                                                                                              |
+| `agent.instanaSharedRepoMirrorUsername`                    | The username for authentication for the for the agent shared repository mirror. For more information, see [Configuring the agent repository as the mirror](https://www.ibm.com/docs/en/instana-observability/current?topic=agents-setting-up-agent-repositories-dynamic-host#configuring-the-agent-repository-as-the-mirror).                                                                                                                                                                                           | `nil`                                                                                                              |
+| `agent.instanaSharedRepoMirrorPassword`                    | The password for authentication for the for the agent shared repository mirror. For more information, see [Configuring the agent repository as the mirror](https://www.ibm.com/docs/en/instana-observability/current?topic=agents-setting-up-agent-repositories-dynamic-host#configuring-the-agent-repository-as-the-mirror).                                                                                                                                                                                           | `nil`                                                                                                              |
+| `agent.updateStrategy.type`                         | [DaemonSet update strategy type](https://kubernetes.io/docs/tasks/manage-daemon/update-daemon-set/); valid values are `OnDelete` and `RollingUpdate`                                                                                                                                                                   | `RollingUpdate`                                                                                                                         |
+| `agent.updateStrategy.rollingUpdate.maxUnavailable` | How many agent pods can be updated at once; this value is ignored if `agent.updateStrategy.type` is different than `RollingUpdate`                                                                                                                                                                                     | `1`                                                                                                                                     |
+| `agent.minReadySeconds`                             | The minimum number of seconds for which a newly created Pod should be ready without any of its containers crashing, for it to be considered available                                                                                                                                                                  | `0`                                                                                                                                     |
+| `agent.pod.annotations`                             | Additional annotations to apply to the pod                                                                                                                                                                                                                                                                             | `{}`                                                                                                                                    |
+| `agent.pod.labels`                                  | Additional labels to apply to the Agent pod                                                                                                                                                                                                                                                                            | `{}`                                                                                                                                    |
+| `agent.pod.priorityClassName`                       | Name of an _existing_ PriorityClass that should be set on the agent pods                                                                                                                                                                                                                                               | `nil`                                                                                                                                   |
+| `agent.proxyHost`                                   | Hostname/address of a proxy                                                                                                                                                                                                                                                                                            | `nil`                                                                                                                                   |
+| `agent.proxyPort`                                   | Port of a proxy                                                                                                                                                                                                                                                                                                        | `nil`                                                                                                                                   |
+| `agent.proxyProtocol`                               | Proxy protocol. Supported proxy types are `http` (for both HTTP and HTTPS proxies), `socks4`, `socks5`.                                                                                                                                                                                                                | `nil`                                                                                                                                   |
+| `agent.proxyUser`                                   | Username of the proxy auth                                                                                                                                                                                                                                                                                             | `nil`                                                                                                                                   |
+| `agent.proxyPassword`                               | Password of the proxy auth                                                                                                                                                                                                                                                                                             | `nil`                                                                                                                                   |
+| `agent.proxyUseDNS`                                 | Boolean if proxy also does DNS                                                                                                                                                                                                                                                                                         | `nil`                                                                                                                                   |
+| `agent.pod.limits.cpu`                              | Container cpu limits in cpu cores                                                                                                                                                                                                                                                                                      | `1.5`                                                                                                                                   |
+| `agent.pod.limits.memory`                           | Container memory limits in MiB                                                                                                                                                                                                                                                                                         | `768Mi`                                                                                                                                 |
+| `agent.pod.requests.cpu`                            | Container cpu requests in cpu cores                                                                                                                                                                                                                                                                                    | `0.5`                                                                                                                                   |
+| `agent.pod.requests.memory`                         | Container memory requests in MiB                                                                                                                                                                                                                                                                                       | `768Mi`                                                                                                                                 |
+| `agent.pod.tolerations`                             | Tolerations for pod assignment                                                                                                                                                                                                                                                                                         | `[]`                                                                                                                                    |
+| `agent.pod.affinity`                                | Affinity for pod assignment                                                                                                                                                                                                                                                                                            | `{}`                                                                                                                                    |
+| `agent.pod.volumes`                                | Custom volumes of the agent pod, see https://kubernetes.io/docs/concepts/storage/volumes/                                                                                                                                                                                                                                                                                            | `[]`                                                                                                                                    |
+| `agent.pod.volumeMounts`                           | Custom volume mounts of the agent pod, see https://kubernetes.io/docs/concepts/storage/volumes/                                                                                                                                                                                                                                                                                            | `[]`                                                                                                                                    |
+| `agent.serviceMesh.enabled`                         | Activate Instana Agent JVM monitoring service mesh support for Istio or OpenShift ServiceMesh                                                                                                                                                                                                                          | `true`                                                                                                                                  |
+| `agent.env`                                         | Additional environment variables for the agent                                                                                                                                                                                                                                                                         | `{}`                                                                                                                                    |
+| `agent.redactKubernetesSecrets`                     | Enable additional secrets redaction for selected Kubernetes resources                                                                                                                                                                                                                                                  | `nil` See [Kubernetes secrets](https://docs.instana.io/setup_and_manage/host_agent/on/kubernetes/#secrets) for more details.            |
+| `cluster.name`                                      | Display name of the monitored cluster                                                                                                                                                                                                                                                                                  | Value of `zone.name`                                                                                                                    |
+| `k8s_sensor.deployment.enabled`                     | Isolate k8sensor with a deployment                                                                                                                                                                                                                                                                                     |
+| `k8s_sensor.deployment.minReadySeconds`             | The minimum number of seconds for which a newly created Pod should be ready without any of its containers crashing, for it to be considered available                                                                                                                                                                  | `0`                                                                                                                                     | `true` |
+| `k8s_sensor.image.name`                             | The k8sensor image name to pull                                                                                                                                                                                                                                                                                        | `gcr.io/instana/k8sensor`                                                                                                               |
+| `k8s_sensor.image.digest`                           | The image digest to pull; if specified, it causes `k8s_sensor.image.tag` to be ignored                                                                                                                                                                                                                                 | `nil`                                                                                                                                   |
+| `k8s_sensor.image.tag`                              | The image tag to pull; this property is ignored if `k8s_sensor.image.digest` is specified                                                                                                                                                                                                                              | `latest`                                                                                                                                |
+| `k8s_sensor.deployment.pod.limits.cpu`              | CPU request for the `k8sensor` pods                                                                                                                                                                                                                                                                                    | `4`                                                                                                                                     |
+| `k8s_sensor.deployment.pod.limits.memory`           | Memory request limits for the `k8sensor` pods                                                                                                                                                                                                                                                                          | `6144Mi`                                                                                                                                |
+| `k8s_sensor.deployment.pod.requests.cpu`            | CPU limit for the `k8sensor` pods                                                                                                                                                                                                                                                                                      | `1.5`                                                                                                                                   |
+| `k8s_sensor.deployment.pod.requests.memory`         | Memory limit for the `k8sensor` pods                                                                                                                                                                                                                                                                                   | `1024Mi`                                                                                                                                |
+| `podSecurityPolicy.enable`                          | Whether a PodSecurityPolicy should be authorized for the Instana Agent pods. Requires `rbac.create` to be `true` as well and it is available until Kubernetes version v1.25.                                                                                                                                           | `false` See [PodSecurityPolicy](https://docs.instana.io/setup_and_manage/host_agent/on/kubernetes/#podsecuritypolicy) for more details. |
+| `podSecurityPolicy.name`                            | Name of an _existing_ PodSecurityPolicy to authorize for the Instana Agent pods. If not provided and `podSecurityPolicy.enable` is `true`, a PodSecurityPolicy will be created for you.                                                                                                                                | `nil`                                                                                                                                   |
+| `rbac.create`                                       | Whether RBAC resources should be created                                                                                                                                                                                                                                                                               | `true`                                                                                                                                  |
+| `opentelemetry.grpc.enabled`                        | Whether to configure the agent to accept telemetry from OpenTelemetry applications via gRPC. This option also implies `service.create=true`, and requires Kubernetes 1.21+, as it relies on `internalTrafficPolicy`.                                                                                                   | `true`                                                                                                                                  |
+| `opentelemetry.http.enabled`                        | Whether to configure the agent to accept telemetry from OpenTelemetry applications via HTTP. This option also implies `service.create=true`, and requires Kubernetes 1.21+, as it relies on `internalTrafficPolicy`.                                                                                                   | `true`                                                                                                                                  |
+| `prometheus.remoteWrite.enabled`                    | Whether to configure the agent to accept metrics over its implementation of the `remote_write` Prometheus endpoint. This option also implies `service.create=true`, and requires Kubernetes 1.21+, as it relies on `internalTrafficPolicy`.                                                                            | `false`                                                                                                                                 |
+| `service.create`                                    | Whether to create a service that exposes the agents' Prometheus, OpenTelemetry and other APIs inside the cluster. Requires Kubernetes 1.21+, as it relies on `internalTrafficPolicy`. The `ServiceInternalTrafficPolicy` feature gate needs to be enabled (default: enabled).                                          | `true`                                                                                                                                  |
+| `serviceAccount.create`                             | Whether a ServiceAccount should be created                                                                                                                                                                                                                                                                             | `true`                                                                                                                                  |
+| `serviceAccount.name`                               | Name of the ServiceAccount to use                                                                                                                                                                                                                                                                                      | `instana-agent`                                                                                                                         |
+| `serviceAccount.annotations`                        | Annotations to add to the service account                                                                                                                                                                                                                                                                              | `{}`                                                                                                                                    |
+| `zone.name`                                         | Zone that detected technologies will be assigned to                                                                                                                                                                                                                                                                    | `nil` You must provide either `zone.name` or `cluster.name`, see [above](#installation) for details                                     |
+| `zones`                                             | Multi-zone daemonset configuration.                                                                                                                                                                                                                                                                                    | `nil` see [below](#multiple-zones) for details                                                                                          |
+| `k8s_sensor.podDisruptionBudget.enabled`            | Whether to create DisruptionBudget for k8sensor to limit the number of concurrent disruptions                                                                                                                                                                                                                          | `false`                                                                                                                                 |
+| `k8s_sensor.deployment.pod.affinity`                | `k8sensor` deployment affinity format                                                                                                                                                                                                                                                                                  | `podAntiAffinity` defined in `values.yaml`                                                                                              |
+
+### Agent Modes
+
+Agent can have either `APM` or `INFRASTRUCTURE`.
+Default is APM and if you want to override that, ensure you set value:
+
+* `agent.mode`
+
+For more information on agent modes, refer to the [Host Agent Modes](https://www.instana.com/docs/setup_and_manage/host_agent#host-agent-modes) documentation.
+
+### Agent Configuration
+
+Besides the settings listed above, there are many more settings that can be applied to the agent via the so-called "Agent Configuration File", often also referred to as `configuration.yaml` file.
+An overview of the settings that can be applied is provided in the [Agent Configuration File](https://www.instana.com/docs/setup_and_manage/host_agent/configuration#agent-configuration-file) documentation.
+To configure the agent, you need to provide the configuration via the `agent.configuration_yaml` parameter in [values.yaml](values.yaml). As all other settings, the Agent configuration is handled by the Operator and stored in Kubernetes Secret resources internally. This way, even plain text passwords are not exposed in any configmap after deployment.
+
+This configuration will be used for all Instana Agents on all nodes. Visit the [agent configuration documentation](https://docs.instana.io/setup_and_manage/host_agent/#agent-configuration-file) for more details on configuration options.
+
+_Note:_ This Helm Chart does not support configuring [Multiple Configuration Files](https://www.instana.com/docs/setup_and_manage/host_agent/configuration#multiple-configuration-files).
+
+### Agent Pod Sizing
+
+The `agent.pod.requests.cpu`, `agent.pod.requests.memory`, `agent.pod.limits.cpu` and `agent.pod.limits.memory` settings allow you to change the sizing of the `instana-agent` pods.
+If you are using the [Kubernetes Sensor Deployment](#kubernetes-sensor-deployment) functionality, you may be able to reduce the default amount of resources, and especially memory, allocated to the Instana agents that monitor your applications.
+Actual sizing data depends very much on how many pods, containers and applications are monitored, and how much traces they generate, so we cannot really provide a rule of thumb for the sizing.
+
+### Bring your own Keys secret
+
+In case you have automation that creates secrets for you, it may not be desirable for this Helm chart to create a secret containing the `agent.key` and `agent.downloadKey`.
+In this case, you can instead specify the name of an alread-existing secret in the namespace in which you install the Instana agent that carries the agent key and download key.
+
+The secret you specify The secret you specify _must_ have a field called `key`, which would contain the value you would otherwise set to `agent.key`, and _may_ contain a field called `downloadKey`, which would contain the value you would otherwise set to `agent.downloadKey`.
+
+### Configuring Additional Configuration Files
+
+[Multiple configuration files](https://www.instana.com/docs/setup_and_manage/host_agent/configuration#multiple-configuration-files) is a capability of the Instana agent that allows for modularity in its configurations files.
+
+The experimental `agent.configuration.autoMountConfigEntries`, which uses functionality available in Helm 3.1+ to automatically look up the entries of the default `instana-agent` ConfigMap, and mount as agent configuration files in the `instana-agent` container under the `/opt/instana/agent/etc/instana` directory all ConfigMap entries with keys that match the `configuration-*.yaml` scheme.
+
+**IMPORTANT:** Needs Helm 3.1+ as it is built on the `lookup` function
+**IMPORTANT:** Editing the ConfigMap adding keys requires a `helm upgrade` to take effect
+
+### Configuring Additional Backends
+
+You may want to have your Instana agents report to multiple backends.
+The first backend must be configured as shown in the [Configuring the Instana Backend](#configuring-the-instana-backend); every backend after the first, is configured in the `agent.additionalBackends` list in the [values.yaml](values.yaml) as follows:
+
+```yaml
+agent:
+  additionalBackends:
+  # Second backend
+  - endpointHost: my-instana.instana.io # endpoint host; e.g., my-instana.instana.io
+    endpointPort: 443 # default is 443, so this line could be omitted
+    key: ABCDEFG # agent key for this backend
+  # Third backend
+  - endpointHost: another-instana.instana.io # endpoint host; e.g., my-instana.instana.io
+    endpointPort: 1444 # default is 443, so this line could be omitted
+    key: LMNOPQR # agent key for this backend
+```
+
+The snippet above configures the agent to report to two additional backends.
+The same effect as the above can be accomplished via the command line via:
+
+```sh
+$ helm install -n instana-agent instana-agent ... \
+    --repo https://agents.instana.io/helm \
+    --set 'agent.additionalBackends[0].endpointHost=my-instana.instana.io' \
+    --set 'agent.additionalBackends[0].endpointPort=443' \
+    --set 'agent.additionalBackends[0].key=ABCDEFG' \
+    --set 'agent.additionalBackends[1].endpointHost=another-instana.instana.io' \
+    --set 'agent.additionalBackends[1].endpointPort=1444' \
+    --set 'agent.additionalBackends[1].key=LMNOPQR' \
+    instana-agent
+```
+
+_Note:_ There is no hard limitation on the number of backends an Instana agent can report to, although each comes at the cost of a slight increase in CPU and memory consumption.
+
+### Configuring a Proxy between the Instana agents and the Instana backend
+
+If your infrastructure uses a proxy, you should ensure that you set values for:
+
+* `agent.proxyHost`
+* `agent.pod.proxyPort`
+* `agent.pod.proxyProtocol`
+* `agent.pod.proxyUser`
+* `agent.pod.proxyPassword`
+* `agent.pod.proxyUseDNS`
+
+#### Same Proxy for Repository and the Instana backend
+
+If the same proxy is utilized for both backend and repository, configure only the 'Agent' proxy settings  using the following parameter:
+ ```
+  --set agent.proxyHost='<Hostname/address of a proxy>' 
+ ```
+
+#### Separate Proxies for Repository and the Instana backend
+
+In scenarios where distinct proxy settings are employed for the backend and repository, both proxies must be configured separately. The key is to ensure that `INSTANA_REPOSITORY_PROXY_ENABLED=true` is set.
+
+To use this variant, execute helm install with the following additional parameters:
+
+```
+--set agent.proxyHost='Hostname/address of a proxy'
+--set agent.env.INSTANA_REPOSITORY_PROXY_ENABLED='true'
+--set agent.env.INSTANA_REPOSITORY_PROXY_HOST='Hostname/address of a proxy'
+```
+Make sure to replace 'Hostname/address of a proxy' with the actual hostname or address of your proxy.
+
+### Configuring which Networks the Instana Agent should listen on
+
+If your infrastructure has multiple networks defined, you might need to allow the agent to listen on all addresses (typically with value set to `*`):
+
+* `agent.listenAddress`
+
+### Setup TLS Encryption for Agent Endpoint
+
+TLS encryption can be added via two variants.
+Either an existing secret can be used or a certificate and a private key can be used during the installation.
+
+#### Using existing secret
+
+An existing secret of type `kubernetes.io/tls` can be used.
+Only the `secretName` must be provided during the installation with `--set 'agent.tls.secretName=<YOUR_SECRET_NAME>'`.
+The files from the provided secret are then mounted into the agent.
+
+#### Provide certificate and private key
+
+On the other side, a certificate and a private key can be added during the installation.
+The certificate and private key must be base64 encoded.
+
+To use this variant, execute `helm install` with the following additional parameters:
+
+```
+--set 'agent.tls.certificate=<YOUR_CERTIFICATE_BASE64_ENCODED>'
+--set 'agent.tls.key=<YOUR_PRIVATE_KEY_BASE64_ENCODED>'
+```
+
+If `agent.tls.secretName` is set, then `agent.tls.certificate` and `agent.tls.key` are ignored.
+
+### Development and debugging options
+
+These options will be rarely used outside of development or debugging of the agent.
+
+| Parameter               | Description                                      | Default |
+| ----------------------- | ------------------------------------------------ | ------- |
+| `agent.host.repository` | Host path to mount as the agent maven repository | `nil`   |
+
+### Kubernetes Sensor Deployment
+
+ _Note: leader-elector and kubernetes sensor are fully deprecated and can no longer be chosen. Instead, the k8s_sensor will be used._
+
+The Helm chart will schedule additional Instana agents running _only_ the Kubernetes sensor that runs in a dedicated `k8sensor` Deployment inside the `instana-agent` namespace.
+The pods containing agents that run only the Kubernetes sensor are called `k8sensor` pods.
+When `k8s_sensor.deployment.enabled=true`, the `instana-agent` pods running inside the daemonset do _not_ contain the `leader-elector` container, which is instead scheduled inside the `k8sensor` pods.
+
+The `instana-agent` and `k8sensor` pods share the same configurations in terms of backend-related configurations (including [additional backends](#configuring-additional-backends)).
+
+The `k8s_sensor.deployment.pod.requests.cpu`, `k8s_sensor.deployment.pod.requests.memory`, `k8s_sensor.deployment.pod.limits.cpu` and `k8s_sensor.deployment.pod.limits.memory` settings, allow you to change the sizing of the `k8sensor` pods.
+
+### Multiple Zones
+
+You can list zones to use affinities and tolerations as the basis to associate a specific daemonset per tainted node pool. Each zone will have the following data:
+
+* `name` (required) - zone name.
+* `mode` (optional) - instana agent mode (e.g. APM, INFRASTRUCTURE, etc).
+* `affinity` (optional) - standard kubernetes pod affinity list for the daemonset.
+* `tolerations` (optional) - standard kubernetes pod toleration list for the daemonset.
+
+The following is an example that will create 2 zones an api-server and a worker zone:
+
+```yaml
+zones:
+  - name: workers
+    mode: APM
+  - name: api-server
+    mode: INFRASTRUCTURE
+    affinity:
+      nodeAffinity:
+        requiredDuringSchedulingIgnoredDuringExecution:
+          nodeSelectorTerms:
+            - matchExpressions:
+                - key: node-role.kubernetes.io/control-plane
+                  operator: Exists
+    tolerations:
+    - key: "node-role.kubernetes.io/master"
+      operator: "Exists"
+      effect: "NoSchedule"
+```
+
+### Volumes and volumeMounts
+
+You can define volumes and volumeMounts in the helm configuration to make files available to the agent pod, e.g. to provide client certificates or custom certificate authorities for a sensor to reach a monitored target.
+
+Example:
+
+An application requires the usage of a customer provided java key store (JKS) to interact with a monitored process, e.g. IBM MQ. The keystore file is created as secret in the cluster.
+
+To create the secret, the file can be uploaded with the Kubernetes `kubectl` or Openshift `oc` command line tools.
+
+```bash
+kubectl create secret generic keystore-secret-name --from-file=./application.jks -n instana-agent
+```
+
+Create a custom values file for the helm installation, e.g. `custom-values.yaml` and adjust the following content accordingly.
+
+```yaml
+agent:
+  pod:
+    volumeMounts:
+    - mountPath: /opt/instana/agent/etc/application.jks
+      name: jks-mount
+      subPath: application.jks
+    volumes:
+    - name: jks-mount
+      secret:
+        secretName: keystore-secret-name
+```
+
+To deploy the helm chart with the custom mount, specify the configuration as additional parameter.
+
+```bash
+helm install instana-agent \
+  --repo https://agents.instana.io/helm \
+  --namespace instana-agent \
+  --set agent.key='<your_agent_key>' \
+  --set agent.endpointHost='<your_host_agent_endpoint>' \
+  --set agent.endpointPort=443 \
+  --set cluster.name='<your_cluster_name>' \
+  --set zone.name='<your_zone_name>' \
+  -f custom-values.yaml \
+  instana-agent
+```
+
+See [Kubernetes documentation](https://kubernetes.io/docs/concepts/storage/volumes/) for other examples of volume options.
+
+
+The mounted file will be available inside the agent pods after the installation.
+
+```
+$ kubectl exec instana-agent-xxxxx -- ls /opt/instana/agent/etc/application.jks
+/opt/instana/agent/etc/application.jks
+```
+
+## Changelog
+
+### 2.0.13
+
+* Fix rendering of agent.proxyPort in agent custom resource
+
+### 2.0.12
+
+* Update operator to v2.1.19: Deploy operator as a single instance to reduce resource consumption
+
+### 2.0.11
+
+* Update operator to v2.1.18: Adjust logic when to render configuration-opentelemetry.yaml and increase default k8sensor pollrate to 10s
+
+### 2.0.10
+
+* Update operator to v2.1.16: Add ClusterRole/ClusterRoleBinding to instana-agent service account to enable prometheus sensor in Kubernetes
+* Update operator to v2.1.15: Change deployment `controller-manager`, and RBAC `manager-role` and `manager-rolebinding` to instana-specifc names `instana-agent-controller-manager`, `instana-agent-clusterrole` and `instana-agent-clusterrolebinding`
+
+### 2.0.9
+
+* Fix rendering of the agent zones
+
+### 2.0.8
+
+* Add option to define custom volumes and volumeMounts for the agent pod
+
+### 2.0.7
+
+* Fix handling of opentelemetry settings, if `spec.opentelemetry.grpc.enabled` or `spec.opentelemetry.http.enabled` are set to false
+* Update operator to v2.1.13
+
+### 2.0.6
+
+* Rename flags for the agent repository mirror configuration
+
+### 2.0.5
+
+* Add flags for the agent repository mirror configuration
+
+### 2.0.4
+
+* Update to operator v2.1.10: Add roles for node metrics and stats for k8sensor
+
+### 2.0.3
+
+* Fix k8sensor deployment rendering
+
+### 2.0.2
+
+* Hardening for endpointPort and configuration parsing
+
+### 2.0.1
+
+* Fix rendering of the `spec.agent.env`, `spec.configuration_yaml`, `spec.agent.image.pullSecrets`
+
+### 2.0.0
+
+* Deploy the instana-agent operator instead of managing agent artifacts directly
+* Always use the k8sensor, the deprecated kubernetes sensor is no longer supported (this is an internal change, Kubernetes clusters will still report into the Instana backend)
+* BREAKING CHANGE: Due to limitations of helm to manage Custom Resource Definition (CRD) updates, the upgrade requires to apply the CRD from the helm chart crds folder manually. Find more details in the [upgrade](#upgrade) section.
+
+### 1.2.74
+
+* Enable OTLP by default
+
+### 1.2.73
+
+* Fix label for `io.instana/zone` to reflect the real agent mode
+* Change the charts flag from ENABLE_AGENT_SOCKET to serviceMesh.enabled
+* Add type: DirectoryOrCreate to DaemonSet definitions to ensure required directories exist
+
+### 1.2.72
+
+* Add minReadySeconds field to agent daemonset yaml
+
+### 1.2.71
+
+* Fix usage of digest for pulling images
+
+### 1.2.70
+
+* Allow the configuration of `minReadySeconds` for the agent daemonset and deployment
+
+### 1.2.69
+
+* Add possibility to set annotations for the serviceAccount.
+
+### 1.2.68
+
+* Add leader elector configuration back to allow for proper deprecation
+
+### 1.2.67
+
+* Fix variable name in the K8s deployment
+
+### 1.2.66
+
+* Allign the default Memory requests to 768Mi for the Agent container.
+
+### 1.2.65
+
+* Ensure we have appropriate SCC when running with new K8s sensor.
+
+### 1.2.64
+
+* Remove RBAC not required by agent when kubernetes-sensor is disabed.
+* Add settings override for k8s-sensor affinity
+* Add optional pod disruption budget for k8s-sensor
+
+### 1.2.63
+
+* Add RBAC required to allow access to /metrics end-points.
+
+### 1.2.62
+
+* Include k8s-sensor resources in the default static YAML definitions
+
+### 1.2.61
+
+* Increase timeout and initialDelay for the Agent container
+* Add OTLP ports to headless service
+
+### 1.2.60
+
+* Enable the k8s_sensor by default
+
+### 1.2.59
+
+* Introduce unique selectorLabels and commonLabels for k8s-sensor deployment
+
+### 1.2.58
+
+* Default to `internalTrafficPolicy` instead of `topologyKeys` for rendering of static YAMLs
+
+### 1.2.57
+
+* Fix vulnerability in the leader-elector image
+
+### 1.2.49
+
+* Add zone name to label `io.instana/zone` in daemonset
+
+### 1.2.48
+
+* Set env var INSTANA_KUBERNETES_REDACT_SECRETS true if agent.redactKubernetesSecrets is enabled.
+* Use feature PSP flag in k8sensor ClusterRole only when podsecuritypolicy.enable is true.
+
+### 1.2.47
+
+* Roll back the changes from version 1.2.46 to be compatible with the Agent Operator installation
+
+### 1.2.46
+
+* Use K8sensor by default.
+* kubernetes.deployment.enabled setting overrides k8s_sensor.deployment.enabled setting.
+* Use feature PSP flag in k8sensor ClusterRole only when podsecuritypolicy.enable is true.
+* Throw failure if customer specifies proxy with k8sensor.
+* Set env var INSTANA_KUBERNETES_REDACT_SECRETS true if agent.redactKubernetesSecrets is enabled.
+
+### 1.2.45
+
+* Use agent key secret in k8sensor deployment.
+
+### 1.2.44
+
+* Add support for enabling the hot-reload of `configuration.yaml` when the default `instana-agent` ConfigMap changes
+* Enablement is done via the flag `--set agent.configuration.hotreloadEnabled=true`
+
+### 1.2.43
+
+* Bump leader-elector image to v0.5.16 (Update dependencies)
+
+### 1.2.42
+
+* Add support for creating multiple zones within the same cluster using affinity and tolerations.
+
+### 1.2.41
+
+* Add additional permissions (HPA, ResourceQuotas, etc) to k8sensor clusterrole.
+
+### 1.2.40
+
+* Mount all system mounts mountPropagation: HostToContainer.
+
+### 1.2.39
+
+* Add NO_PROXY to k8sensor deployment to prevent api-server requests from being routed to the proxy.
+
+### 1.2.38
+
+* Fix issue related to EKS version format when enabling OTel service.
+
+### 1.2.37
+
+* Fix issue where cluster_zone is used as cluster_name when `k8s_sensor.deployment.enabled=true`.
+* Set `HTTPS_PROXY` in k8s deployment when proxy information is set.
+
+### 1.2.36
+
+* Remove Service `topologyKeys`, which was removed in Kubernetes v1.22. Replaced by `internalTrafficPolicy` which is available with Kubernetes v1.21+.
+
+### 1.2.35
+
+* Fix invalid backend port for new Kubernetes sensor (k8sensor)
+
+### 1.2.34
+
+* Add support for new Kubernetes sensor (k8sensor)
+  * New Kubernetes sensor can be used via the flag `--set k8s_sensor.deployment.enabled=true`
+
+### 1.2.33
+
+* Bump leader-elector image to v0.5.15 (Update dependencies)
+
+### 1.2.32
+
+* Add support for containerd montoring on TKGI  
+
+### 1.2.31
+
+* Bump leader-elector image to v0.5.14 (Update dependencies)
+
+### 1.2.30
+
+* Pull agent image from IBM Cloud Container Registry (icr.io/instana/agent). No code changes have been made.
+* Bump leader-elector image to v0.5.13 and pull from IBM Cloud Container Registry (icr.io/instana/leader-elector). No code changes have been made.
+
+### 1.2.29
+
+* Add an additional port to the Instana Agent `Service` definition, for the OpenTelemetry registered IANA port 4317.
+
+### 1.2.28
+
+* Fix deployment when `cluster.name` is not specified. Should be allowed according to docs but previously broke the Pod
+    when starting up.
+
+### 1.2.27
+
+* Update leader elector image to `0.5.10` to tone down logging and make it configurable
+
+### 1.2.26
+
+* Add TLS support. An existing secret can be used of type `kubernetes.io/tls`. Or provide a certificate and a private key, which creates a new secret.
+* Update leader elector image version to 0.5.9 to support PPCle
+
+### 1.2.25
+
+* Add `agent.pod.labels` to add custom labels to the Instana Agent pods
+
+### 1.2.24
+
+* Bump leader-elector image to v0.5.8 which includes a health-check endpoint. Update the `livenessProbe`
+    correspondingly.
+
+### 1.2.23
+
+* Bump leader-elector image to v0.5.7 to fix a potential Golang bug in the elector
+
+### 1.2.22
+
+* Fix templating scope when defining multiple backends
+
+### 1.2.21
+
+* Internal updates
+
+### 1.2.20
+
+* upgrade leader-elector image to v0.5.6 to enable usage on s390x and arm64
+
+### 1.2.18 / 1.2.19
+
+* Internal change on generated DaemonSet YAML from the Helm charts
+
+### 1.2.17
+
+* Update Pod Security Policies as the `readOnly: true` appears not to be working for the mount points and
+  actually causes the Agent deployment to fail when these policies are enforced in the cluster.
+
+### 1.2.16
+
+* Add configuration option for `INSTANA_MVN_REPOSITORY_URL` setting on the Agent container.
+
+### 1.2.15
+
+* Internal pipeline changes. No significant changes to the Helm charts
+
+### v1.2.14
+
+* Update Agent container mounts. Make some read-only as we don't need all mounts with read-write permissions.
+    Additionally add the mount for `/var/data` which is needed in certain environments for the Agent to function
+    properly.
+
+### v1.2.13
+
+* Update memory settings specifically for the Kubernetes sensor (Technical Preview)
+
+### v1.2.11
+
+* Simplify setup for using OpenTelemetry and the Prometheus `remote_write` endpoint using the `opentelemetry.enabled` and `prometheus.remoteWrite.enabled` settings, respectively.
+
+### v1.2.9
+
+* **Technical Preview:** Introduce a new mode of running to the Kubernetes sensor using a dedicated deployment.
+  See the [Kubernetes Sensor Deployment](#kubernetes-sensor-deployment) section for more information.
+
+### v1.2.7
+
+* Fix: Make service opt-in, as it uses functionality (`topologyKeys`) that is available only in K8S 1.17+.
+
+### v1.2.6
+
+* Fix bug that might cause some OpenShift-specific resources to be created in other flavours of Kubernetes.
+
+### v1.2.5
+
+* Introduce the `instana-agent:instana-agent` Kubernetes service that allows you to talk to the Instana agent on the same node.
+
+### v1.2.3
+
+* Bug fix: Extend the built-in Pod Security Policy to cover the Docker socket mount for Tanzu Kubernetes Grid systems.
+
+### v1.2.1
+
+* Support OpenShift 4.x: just add --set openshift=true to the usual settings, and off you go :-)
+* Restructure documentation for consistency and readability
+* Deprecation: Helm 2 is no longer supported; the minimum Helm API version is now v2, which will make Helm 2 refuse to process the chart.
+
+### v1.1.10
+
+* Some linting of the whitespaces in the generated YAML
+
+### v1.1.9
+
+* Update the README to replace all references of `stable/instana-agent` with specifically setting the repo flag to `https://agents.instana.io/helm`.
+* Add support for TKGI and PKS systems, providing a workaround for the [unexpected Docker socket location](https://github.com/cloudfoundry-incubator/kubo-release/issues/329).
+
+### v1.1.7
+
+* Store the cluster name in a new `cluster-name` entry of the `instana-agent` ConfigMap rather than directly as the value of the `INSTANA_KUBERNETES_CLUSTER_NAME`, so that you can edit the cluster name in the ConfigMap in deployments like VMware Tanzu Kubernetes Grid in which, when installing the Instana agent over the [Instana tile](https://www.instana.com/docs/setup_and_manage/host_agent/on/vmware_tanzu), you do not have directly control to the configuration of the cluster name.
+If you edit the ConfigMap, you will need to delete the `instana-agent` pods for its new value to take effect.
+
+### v1.1.6
+
+* Allow to use user-specified memony measurement units in `agent.pod.requests.memory` and `agent.pod.limits.memory`.
+  If the value set is numerical, the Chart will assume it to be expressed in `Mi` for backwards compatibility.
+* Exposed `agent.updateStrategy.type` and `agent.updateStrategy.rollingUpdate.maxUnavailable` settings.
+
+### v1.1.5
+
+Restore compatibility with Helm 2 that was broken in v1.1.4 by the usage of the `lookup` function, a function actually introduced only with Helm 3.1.
+Coincidentally, this has been an _excellent_ opportunity to introduce `helm lint` to our validation pipeline and end-to-end tests with Helm 2 ;-)
+
+### v1.1.4
+
+* Bring-your-own secret for agent keys: using the new `agent.keysSecret` setting, you can specify the name of the secret that contains the agent key and, optionally, the download key; refer to [Bring your own Keys secret](#bring-your-own-keys-secret) for more details.
+* Add support for affinities for the instana agent pod via the `agent.pod.affinity` setting.
+* Put some love into the ArtifactHub.io metadata; likely to add some more improvements related to this over time.
+
+### v1.1.3
+
+* No new features, just ironing some wrinkles out of our release automation.
+
+### v1.1.2
+
+* Improvement: Seamless support for Instana static agent images: When using an `agent.image.name` starting with `containers.instana.io`, automatically create a secret called `containers-instana-io` containing the `.dockerconfigjson` for `containers.instana.io`, using `_` as username and `agent.downloadKey` or, if missing, `agent.key` as password. If you want to control the creation of the image pull secret, or disable it, you can use `agent.image.pullSecrets`, passing to it the YAML to use for the `imagePullSecrets` field of the Daemonset spec, including an empty array `[]` to mount no pull secrets, no matter what.
+
+### v1.1.1
+
+* Fix: Recreate the `instana-agent` pods when there is a change in one of the following configuration, which are mapped to the chart-managed ConfigMap:
+
+* `agent.configuration_yaml`
+* `agent.additional_backends`
+
+The pod recreation is achieved by annotating the `instana-agent` Pod with a new `instana-configuration-hash` annotation that has, as value, the SHA-1 hash of the configurations used to populate the ConfigMap.
+This way, when the configuration changes, the respective change in the `instana-configuration-hash` annotation will cause the agent pods to be recreated.
+This technique has been described at [1] (or, at least, that is were we learned about it) and it is pretty cool :-)
+
+### v1.1.0
+
+* Improvement: The `instana-agent` Helm chart has a new home at `https://agents.instana.io/helm` and `https://github.com/instana/helm-charts/instana-agent`!
+This release is functionally equivalent to `1.0.34`, but we bumped the major to denote the new location ;-)
+
+## References
+
+[1] ["Using Kubernetes Helm to push ConfigMap changes to your Deployments", by Sander Knape; Mar 7, 2019](https://sanderknape.com/2019/03/kubernetes-helm-configmaps-changes-deployments/)
diff --git a/charts/instana/instana-agent/2.0.13/app-readme.md b/charts/instana/instana-agent/2.0.13/app-readme.md
new file mode 100644
index 0000000000..0e26c86231
--- /dev/null
+++ b/charts/instana/instana-agent/2.0.13/app-readme.md
@@ -0,0 +1,5 @@
+# Instana
+
+Instana is an [APM solution(https://www.instana.com/) built for microservices that enables IT Ops to build applications faster and deliver higher quality services by automating monitoring tracing and root cause analysis. This solution is optimized for [Rancher](https://www.instana.com/rancher/).
+
+This chart adds the Instana Agent to all schedulable nodes in your cluster via a `DaemonSet`.
diff --git a/charts/instana/instana-agent/2.0.13/crds/operator_customresourcedefinition_agents_instana_io.yml b/charts/instana/instana-agent/2.0.13/crds/operator_customresourcedefinition_agents_instana_io.yml
new file mode 100644
index 0000000000..2dc9540dc5
--- /dev/null
+++ b/charts/instana/instana-agent/2.0.13/crds/operator_customresourcedefinition_agents_instana_io.yml
@@ -0,0 +1,6195 @@
+---
+apiVersion: apiextensions.k8s.io/v1
+kind: CustomResourceDefinition
+metadata:
+  annotations:
+    controller-gen.kubebuilder.io/version: v0.14.0
+  name: agents.instana.io
+spec:
+  group: instana.io
+  names:
+    categories:
+      - monitoring
+      - openshift-optional
+    kind: InstanaAgent
+    listKind: InstanaAgentList
+    plural: agents
+    shortNames:
+      - ia
+    singular: agent
+  scope: Namespaced
+  versions:
+    - name: v1
+      schema:
+        openAPIV3Schema:
+          description: InstanaAgent is the Schema for the agents API
+          properties:
+            apiVersion:
+              description: |-
+                APIVersion defines the versioned schema of this representation of an object.
+                Servers should convert recognized schemas to the latest internal value, and
+                may reject unrecognized values.
+                More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
+              type: string
+            kind:
+              description: |-
+                Kind is a string value representing the REST resource this object represents.
+                Servers may infer this from the endpoint the client submits requests to.
+                Cannot be updated.
+                In CamelCase.
+                More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+              type: string
+            metadata:
+              type: object
+            spec:
+              description: InstanaAgentSpec defines the desired state of the Instana Agent
+              properties:
+                agent:
+                  description: Agent deployment specific fields.
+                  properties:
+                    additionalBackends:
+                      description: |-
+                        These are additional backends the Instana agent will report to besides
+                        the one configured via the `agent.endpointHost`, `agent.endpointPort` and `agent.key` setting.
+                      items:
+                        properties:
+                          endpointHost:
+                            type: string
+                          endpointPort:
+                            type: string
+                          key:
+                            type: string
+                        required:
+                          - endpointHost
+                          - endpointPort
+                        type: object
+                      type: array
+                    agentReleaseRepoMirrorPassword:
+                      description: Sets the AGENT_RELEASE_REPOSITORY_MIRROR_PASSWORD environment variable
+                      type: string
+                    agentReleaseRepoMirrorUrl:
+                      description: Sets the AGENT_RELEASE_REPOSITORY_MIRROR_URL environment variable
+                      type: string
+                    agentReleaseRepoMirrorUsername:
+                      description: Sets the AGENT_RELEASE_REPOSITORY_MIRROR_USERNAME environment variable
+                      type: string
+                    configuration_yaml:
+                      description: Supply Agent configuration e.g. for configuring certain Sensors.
+                      type: string
+                    downloadKey:
+                      description: |-
+                        The DownloadKey, sometimes known as "sales key", that allows you to download software from Instana. It might be needed to
+                        specify this in addition to the Key.
+                      type: string
+                    endpointHost:
+                      description: EndpointHost is the hostname of the Instana server your agents will connect to.
+                      type: string
+                    endpointPort:
+                      description: EndpointPort is the port number (as a String) of the Instana server your agents will connect to.
+                      type: string
+                    env:
+                      additionalProperties:
+                        type: string
+                      description: |-
+                        Use the `env` field to set additional environment variables for the Instana Agent, for example:
+                        env:
+                          INSTANA_AGENT_TAGS: dev
+                      type: object
+                    host:
+                      description: Host sets a host path to be mounted as the Agent Maven repository (mainly for debugging or development purposes)
+                      properties:
+                        repository:
+                          type: string
+                      type: object
+                    image:
+                      description: Override the container image used for the Instana Agent pods.
+                      properties:
+                        digest:
+                          description: |-
+                            Digest (a.k.a. Image ID) of the agent container image. If specified, it has priority over `agent.image.tag`,
+                            which will then be ignored.
+                          type: string
+                        name:
+                          description: Name is the name of the container image of the Instana agent.
+                          type: string
+                        pullPolicy:
+                          description: PullPolicy specifies when to pull the image container.
+                          type: string
+                        pullSecrets:
+                          description: |-
+                            PullSecrets allows you to override the default pull secret that is created when `agent.image.name` starts with
+                            "containers.instana.io". Setting `agent.image.pullSecrets` prevents the creation of the default "containers-instana-io" secret.
+                          items:
+                            description: |-
+                              LocalObjectReference contains enough information to let you locate the
+                              referenced object inside the same namespace.
+                            properties:
+                              name:
+                                default: ""
+                                description: |-
+                                  Name of the referent.
+                                  This field is effectively required, but due to backwards compatibility is
+                                  allowed to be empty. Instances of this type with an empty value here are
+                                  almost certainly wrong.
+                                  TODO: Add other useful fields. apiVersion, kind, uid?
+                                  More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+                                  TODO: Drop `kubebuilder:default` when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+                                type: string
+                            type: object
+                            x-kubernetes-map-type: atomic
+                          type: array
+                        tag:
+                          description: Tag is the name of the agent container image; if `agent.image.digest` is specified, this property is ignored.
+                          type: string
+                      type: object
+                    instanaMvnRepoFeaturesPath:
+                      description: Sets the INSTANA_MVN_REPOSITORY_FEATURES_PATH environment variable
+                      type: string
+                    instanaMvnRepoSharedPath:
+                      description: Sets the INSTANA_MVN_REPOSITORY_SHARED_PATH environment variable
+                      type: string
+                    instanaMvnRepoUrl:
+                      description: |-
+                        Override for the Maven repository URL when the Agent needs to connect to a locally provided Maven repository 'proxy'
+                        Alternative to `Host` for referencing a different Maven repo.
+                      type: string
+                    instanaSharedRepoMirrorPassword:
+                      description: Sets the INSTANA_SHARED_REPOSITORY_MIRROR_PASSWORD environment variable
+                      type: string
+                    instanaSharedRepoMirrorUrl:
+                      description: Sets the INSTANA_SHARED_REPOSITORY_MIRROR_URL environment variable
+                      type: string
+                    instanaSharedRepoMirrorUsername:
+                      description: Sets the INSTANA_SHARED_REPOSITORY_MIRROR_USERNAME environment variable
+                      type: string
+                    key:
+                      description: Key is the secret token which your agent uses to authenticate to Instana's servers.
+                      type: string
+                    keysSecret:
+                      description: |-
+                        Rather than specifying the Key and optionally the DownloadKey, you can "bring your
+                        own secret" creating it in the namespace in which you install the `instana-agent` and
+                        specify its name in the `KeysSecret` field. The secret you create must contain a field called `key` and optionally one
+                        called `downloadKey`, which contain, respectively, the values you'd otherwise set in `.agent.key` and `agent.downloadKey`.
+                      type: string
+                    listenAddress:
+                      description: |-
+                        ListenAddress is the IP addresses the Agent HTTP server will listen on. Normally this will just be localhost (`127.0.0.1`),
+                        the pod public IP and any container runtime bridge interfaces. Set `listenAddress: *` for making the Agent listen on all
+                        network interfaces.
+                      type: string
+                    minReadySeconds:
+                      description: The minimum number of seconds for which a newly created Pod should be ready without any of its containers crashing, for it to be considered available
+                      type: integer
+                    mode:
+                      description: |-
+                        Set agent mode, possible options are APM, INFRASTRUCTURE or AWS. KUBERNETES should not be used but instead enabled via
+                        `kubernetes.deployment.enabled: true`.
+                      type: string
+                    pod:
+                      description: Override Agent Pod specific settings such as annotations, labels and resources.
+                      properties:
+                        affinity:
+                          description: |-
+                            agent.pod.affinity are affinities to influence agent pod assignment.
+                            https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/
+                          properties:
+                            nodeAffinity:
+                              description: Describes node affinity scheduling rules for the pod.
+                              properties:
+                                preferredDuringSchedulingIgnoredDuringExecution:
+                                  description: |-
+                                    The scheduler will prefer to schedule pods to nodes that satisfy
+                                    the affinity expressions specified by this field, but it may choose
+                                    a node that violates one or more of the expressions. The node that is
+                                    most preferred is the one with the greatest sum of weights, i.e.
+                                    for each node that meets all of the scheduling requirements (resource
+                                    request, requiredDuringScheduling affinity expressions, etc.),
+                                    compute a sum by iterating through the elements of this field and adding
+                                    "weight" to the sum if the node matches the corresponding matchExpressions; the
+                                    node(s) with the highest sum are the most preferred.
+                                  items:
+                                    description: |-
+                                      An empty preferred scheduling term matches all objects with implicit weight 0
+                                      (i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).
+                                    properties:
+                                      preference:
+                                        description: A node selector term, associated with the corresponding weight.
+                                        properties:
+                                          matchExpressions:
+                                            description: A list of node selector requirements by node's labels.
+                                            items:
+                                              description: |-
+                                                A node selector requirement is a selector that contains values, a key, and an operator
+                                                that relates the key and values.
+                                              properties:
+                                                key:
+                                                  description: The label key that the selector applies to.
+                                                  type: string
+                                                operator:
+                                                  description: |-
+                                                    Represents a key's relationship to a set of values.
+                                                    Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
+                                                  type: string
+                                                values:
+                                                  description: |-
+                                                    An array of string values. If the operator is In or NotIn,
+                                                    the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                    the values array must be empty. If the operator is Gt or Lt, the values
+                                                    array must have a single element, which will be interpreted as an integer.
+                                                    This array is replaced during a strategic merge patch.
+                                                  items:
+                                                    type: string
+                                                  type: array
+                                                  x-kubernetes-list-type: atomic
+                                              required:
+                                                - key
+                                                - operator
+                                              type: object
+                                            type: array
+                                            x-kubernetes-list-type: atomic
+                                          matchFields:
+                                            description: A list of node selector requirements by node's fields.
+                                            items:
+                                              description: |-
+                                                A node selector requirement is a selector that contains values, a key, and an operator
+                                                that relates the key and values.
+                                              properties:
+                                                key:
+                                                  description: The label key that the selector applies to.
+                                                  type: string
+                                                operator:
+                                                  description: |-
+                                                    Represents a key's relationship to a set of values.
+                                                    Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
+                                                  type: string
+                                                values:
+                                                  description: |-
+                                                    An array of string values. If the operator is In or NotIn,
+                                                    the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                    the values array must be empty. If the operator is Gt or Lt, the values
+                                                    array must have a single element, which will be interpreted as an integer.
+                                                    This array is replaced during a strategic merge patch.
+                                                  items:
+                                                    type: string
+                                                  type: array
+                                                  x-kubernetes-list-type: atomic
+                                              required:
+                                                - key
+                                                - operator
+                                              type: object
+                                            type: array
+                                            x-kubernetes-list-type: atomic
+                                        type: object
+                                        x-kubernetes-map-type: atomic
+                                      weight:
+                                        description: Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.
+                                        format: int32
+                                        type: integer
+                                    required:
+                                      - preference
+                                      - weight
+                                    type: object
+                                  type: array
+                                  x-kubernetes-list-type: atomic
+                                requiredDuringSchedulingIgnoredDuringExecution:
+                                  description: |-
+                                    If the affinity requirements specified by this field are not met at
+                                    scheduling time, the pod will not be scheduled onto the node.
+                                    If the affinity requirements specified by this field cease to be met
+                                    at some point during pod execution (e.g. due to an update), the system
+                                    may or may not try to eventually evict the pod from its node.
+                                  properties:
+                                    nodeSelectorTerms:
+                                      description: Required. A list of node selector terms. The terms are ORed.
+                                      items:
+                                        description: |-
+                                          A null or empty node selector term matches no objects. The requirements of
+                                          them are ANDed.
+                                          The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.
+                                        properties:
+                                          matchExpressions:
+                                            description: A list of node selector requirements by node's labels.
+                                            items:
+                                              description: |-
+                                                A node selector requirement is a selector that contains values, a key, and an operator
+                                                that relates the key and values.
+                                              properties:
+                                                key:
+                                                  description: The label key that the selector applies to.
+                                                  type: string
+                                                operator:
+                                                  description: |-
+                                                    Represents a key's relationship to a set of values.
+                                                    Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
+                                                  type: string
+                                                values:
+                                                  description: |-
+                                                    An array of string values. If the operator is In or NotIn,
+                                                    the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                    the values array must be empty. If the operator is Gt or Lt, the values
+                                                    array must have a single element, which will be interpreted as an integer.
+                                                    This array is replaced during a strategic merge patch.
+                                                  items:
+                                                    type: string
+                                                  type: array
+                                                  x-kubernetes-list-type: atomic
+                                              required:
+                                                - key
+                                                - operator
+                                              type: object
+                                            type: array
+                                            x-kubernetes-list-type: atomic
+                                          matchFields:
+                                            description: A list of node selector requirements by node's fields.
+                                            items:
+                                              description: |-
+                                                A node selector requirement is a selector that contains values, a key, and an operator
+                                                that relates the key and values.
+                                              properties:
+                                                key:
+                                                  description: The label key that the selector applies to.
+                                                  type: string
+                                                operator:
+                                                  description: |-
+                                                    Represents a key's relationship to a set of values.
+                                                    Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
+                                                  type: string
+                                                values:
+                                                  description: |-
+                                                    An array of string values. If the operator is In or NotIn,
+                                                    the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                    the values array must be empty. If the operator is Gt or Lt, the values
+                                                    array must have a single element, which will be interpreted as an integer.
+                                                    This array is replaced during a strategic merge patch.
+                                                  items:
+                                                    type: string
+                                                  type: array
+                                                  x-kubernetes-list-type: atomic
+                                              required:
+                                                - key
+                                                - operator
+                                              type: object
+                                            type: array
+                                            x-kubernetes-list-type: atomic
+                                        type: object
+                                        x-kubernetes-map-type: atomic
+                                      type: array
+                                      x-kubernetes-list-type: atomic
+                                  required:
+                                    - nodeSelectorTerms
+                                  type: object
+                                  x-kubernetes-map-type: atomic
+                              type: object
+                            podAffinity:
+                              description: Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).
+                              properties:
+                                preferredDuringSchedulingIgnoredDuringExecution:
+                                  description: |-
+                                    The scheduler will prefer to schedule pods to nodes that satisfy
+                                    the affinity expressions specified by this field, but it may choose
+                                    a node that violates one or more of the expressions. The node that is
+                                    most preferred is the one with the greatest sum of weights, i.e.
+                                    for each node that meets all of the scheduling requirements (resource
+                                    request, requiredDuringScheduling affinity expressions, etc.),
+                                    compute a sum by iterating through the elements of this field and adding
+                                    "weight" to the sum if the node has pods which matches the corresponding podAffinityTerm; the
+                                    node(s) with the highest sum are the most preferred.
+                                  items:
+                                    description: The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)
+                                    properties:
+                                      podAffinityTerm:
+                                        description: Required. A pod affinity term, associated with the corresponding weight.
+                                        properties:
+                                          labelSelector:
+                                            description: |-
+                                              A label query over a set of resources, in this case pods.
+                                              If it's null, this PodAffinityTerm matches with no Pods.
+                                            properties:
+                                              matchExpressions:
+                                                description: matchExpressions is a list of label selector requirements. The requirements are ANDed.
+                                                items:
+                                                  description: |-
+                                                    A label selector requirement is a selector that contains values, a key, and an operator that
+                                                    relates the key and values.
+                                                  properties:
+                                                    key:
+                                                      description: key is the label key that the selector applies to.
+                                                      type: string
+                                                    operator:
+                                                      description: |-
+                                                        operator represents a key's relationship to a set of values.
+                                                        Valid operators are In, NotIn, Exists and DoesNotExist.
+                                                      type: string
+                                                    values:
+                                                      description: |-
+                                                        values is an array of string values. If the operator is In or NotIn,
+                                                        the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                        the values array must be empty. This array is replaced during a strategic
+                                                        merge patch.
+                                                      items:
+                                                        type: string
+                                                      type: array
+                                                      x-kubernetes-list-type: atomic
+                                                  required:
+                                                    - key
+                                                    - operator
+                                                  type: object
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                              matchLabels:
+                                                additionalProperties:
+                                                  type: string
+                                                description: |-
+                                                  matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
+                                                  map is equivalent to an element of matchExpressions, whose key field is "key", the
+                                                  operator is "In", and the values array contains only "value". The requirements are ANDed.
+                                                type: object
+                                            type: object
+                                            x-kubernetes-map-type: atomic
+                                          matchLabelKeys:
+                                            description: |-
+                                              MatchLabelKeys is a set of pod label keys to select which pods will
+                                              be taken into consideration. The keys are used to lookup values from the
+                                              incoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`
+                                              to select the group of existing pods which pods will be taken into consideration
+                                              for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming
+                                              pod labels will be ignored. The default value is empty.
+                                              The same key is forbidden to exist in both matchLabelKeys and labelSelector.
+                                              Also, matchLabelKeys cannot be set when labelSelector isn't set.
+                                              This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+                                            items:
+                                              type: string
+                                            type: array
+                                            x-kubernetes-list-type: atomic
+                                          mismatchLabelKeys:
+                                            description: |-
+                                              MismatchLabelKeys is a set of pod label keys to select which pods will
+                                              be taken into consideration. The keys are used to lookup values from the
+                                              incoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`
+                                              to select the group of existing pods which pods will be taken into consideration
+                                              for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming
+                                              pod labels will be ignored. The default value is empty.
+                                              The same key is forbidden to exist in both mismatchLabelKeys and labelSelector.
+                                              Also, mismatchLabelKeys cannot be set when labelSelector isn't set.
+                                              This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+                                            items:
+                                              type: string
+                                            type: array
+                                            x-kubernetes-list-type: atomic
+                                          namespaceSelector:
+                                            description: |-
+                                              A label query over the set of namespaces that the term applies to.
+                                              The term is applied to the union of the namespaces selected by this field
+                                              and the ones listed in the namespaces field.
+                                              null selector and null or empty namespaces list means "this pod's namespace".
+                                              An empty selector ({}) matches all namespaces.
+                                            properties:
+                                              matchExpressions:
+                                                description: matchExpressions is a list of label selector requirements. The requirements are ANDed.
+                                                items:
+                                                  description: |-
+                                                    A label selector requirement is a selector that contains values, a key, and an operator that
+                                                    relates the key and values.
+                                                  properties:
+                                                    key:
+                                                      description: key is the label key that the selector applies to.
+                                                      type: string
+                                                    operator:
+                                                      description: |-
+                                                        operator represents a key's relationship to a set of values.
+                                                        Valid operators are In, NotIn, Exists and DoesNotExist.
+                                                      type: string
+                                                    values:
+                                                      description: |-
+                                                        values is an array of string values. If the operator is In or NotIn,
+                                                        the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                        the values array must be empty. This array is replaced during a strategic
+                                                        merge patch.
+                                                      items:
+                                                        type: string
+                                                      type: array
+                                                      x-kubernetes-list-type: atomic
+                                                  required:
+                                                    - key
+                                                    - operator
+                                                  type: object
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                              matchLabels:
+                                                additionalProperties:
+                                                  type: string
+                                                description: |-
+                                                  matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
+                                                  map is equivalent to an element of matchExpressions, whose key field is "key", the
+                                                  operator is "In", and the values array contains only "value". The requirements are ANDed.
+                                                type: object
+                                            type: object
+                                            x-kubernetes-map-type: atomic
+                                          namespaces:
+                                            description: |-
+                                              namespaces specifies a static list of namespace names that the term applies to.
+                                              The term is applied to the union of the namespaces listed in this field
+                                              and the ones selected by namespaceSelector.
+                                              null or empty namespaces list and null namespaceSelector means "this pod's namespace".
+                                            items:
+                                              type: string
+                                            type: array
+                                            x-kubernetes-list-type: atomic
+                                          topologyKey:
+                                            description: |-
+                                              This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching
+                                              the labelSelector in the specified namespaces, where co-located is defined as running on a node
+                                              whose value of the label with key topologyKey matches that of any node on which any of the
+                                              selected pods is running.
+                                              Empty topologyKey is not allowed.
+                                            type: string
+                                        required:
+                                          - topologyKey
+                                        type: object
+                                      weight:
+                                        description: |-
+                                          weight associated with matching the corresponding podAffinityTerm,
+                                          in the range 1-100.
+                                        format: int32
+                                        type: integer
+                                    required:
+                                      - podAffinityTerm
+                                      - weight
+                                    type: object
+                                  type: array
+                                  x-kubernetes-list-type: atomic
+                                requiredDuringSchedulingIgnoredDuringExecution:
+                                  description: |-
+                                    If the affinity requirements specified by this field are not met at
+                                    scheduling time, the pod will not be scheduled onto the node.
+                                    If the affinity requirements specified by this field cease to be met
+                                    at some point during pod execution (e.g. due to a pod label update), the
+                                    system may or may not try to eventually evict the pod from its node.
+                                    When there are multiple elements, the lists of nodes corresponding to each
+                                    podAffinityTerm are intersected, i.e. all terms must be satisfied.
+                                  items:
+                                    description: |-
+                                      Defines a set of pods (namely those matching the labelSelector
+                                      relative to the given namespace(s)) that this pod should be
+                                      co-located (affinity) or not co-located (anti-affinity) with,
+                                      where co-located is defined as running on a node whose value of
+                                      the label with key <topologyKey> matches that of any node on which
+                                      a pod of the set of pods is running
+                                    properties:
+                                      labelSelector:
+                                        description: |-
+                                          A label query over a set of resources, in this case pods.
+                                          If it's null, this PodAffinityTerm matches with no Pods.
+                                        properties:
+                                          matchExpressions:
+                                            description: matchExpressions is a list of label selector requirements. The requirements are ANDed.
+                                            items:
+                                              description: |-
+                                                A label selector requirement is a selector that contains values, a key, and an operator that
+                                                relates the key and values.
+                                              properties:
+                                                key:
+                                                  description: key is the label key that the selector applies to.
+                                                  type: string
+                                                operator:
+                                                  description: |-
+                                                    operator represents a key's relationship to a set of values.
+                                                    Valid operators are In, NotIn, Exists and DoesNotExist.
+                                                  type: string
+                                                values:
+                                                  description: |-
+                                                    values is an array of string values. If the operator is In or NotIn,
+                                                    the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                    the values array must be empty. This array is replaced during a strategic
+                                                    merge patch.
+                                                  items:
+                                                    type: string
+                                                  type: array
+                                                  x-kubernetes-list-type: atomic
+                                              required:
+                                                - key
+                                                - operator
+                                              type: object
+                                            type: array
+                                            x-kubernetes-list-type: atomic
+                                          matchLabels:
+                                            additionalProperties:
+                                              type: string
+                                            description: |-
+                                              matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
+                                              map is equivalent to an element of matchExpressions, whose key field is "key", the
+                                              operator is "In", and the values array contains only "value". The requirements are ANDed.
+                                            type: object
+                                        type: object
+                                        x-kubernetes-map-type: atomic
+                                      matchLabelKeys:
+                                        description: |-
+                                          MatchLabelKeys is a set of pod label keys to select which pods will
+                                          be taken into consideration. The keys are used to lookup values from the
+                                          incoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`
+                                          to select the group of existing pods which pods will be taken into consideration
+                                          for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming
+                                          pod labels will be ignored. The default value is empty.
+                                          The same key is forbidden to exist in both matchLabelKeys and labelSelector.
+                                          Also, matchLabelKeys cannot be set when labelSelector isn't set.
+                                          This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+                                        items:
+                                          type: string
+                                        type: array
+                                        x-kubernetes-list-type: atomic
+                                      mismatchLabelKeys:
+                                        description: |-
+                                          MismatchLabelKeys is a set of pod label keys to select which pods will
+                                          be taken into consideration. The keys are used to lookup values from the
+                                          incoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`
+                                          to select the group of existing pods which pods will be taken into consideration
+                                          for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming
+                                          pod labels will be ignored. The default value is empty.
+                                          The same key is forbidden to exist in both mismatchLabelKeys and labelSelector.
+                                          Also, mismatchLabelKeys cannot be set when labelSelector isn't set.
+                                          This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+                                        items:
+                                          type: string
+                                        type: array
+                                        x-kubernetes-list-type: atomic
+                                      namespaceSelector:
+                                        description: |-
+                                          A label query over the set of namespaces that the term applies to.
+                                          The term is applied to the union of the namespaces selected by this field
+                                          and the ones listed in the namespaces field.
+                                          null selector and null or empty namespaces list means "this pod's namespace".
+                                          An empty selector ({}) matches all namespaces.
+                                        properties:
+                                          matchExpressions:
+                                            description: matchExpressions is a list of label selector requirements. The requirements are ANDed.
+                                            items:
+                                              description: |-
+                                                A label selector requirement is a selector that contains values, a key, and an operator that
+                                                relates the key and values.
+                                              properties:
+                                                key:
+                                                  description: key is the label key that the selector applies to.
+                                                  type: string
+                                                operator:
+                                                  description: |-
+                                                    operator represents a key's relationship to a set of values.
+                                                    Valid operators are In, NotIn, Exists and DoesNotExist.
+                                                  type: string
+                                                values:
+                                                  description: |-
+                                                    values is an array of string values. If the operator is In or NotIn,
+                                                    the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                    the values array must be empty. This array is replaced during a strategic
+                                                    merge patch.
+                                                  items:
+                                                    type: string
+                                                  type: array
+                                                  x-kubernetes-list-type: atomic
+                                              required:
+                                                - key
+                                                - operator
+                                              type: object
+                                            type: array
+                                            x-kubernetes-list-type: atomic
+                                          matchLabels:
+                                            additionalProperties:
+                                              type: string
+                                            description: |-
+                                              matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
+                                              map is equivalent to an element of matchExpressions, whose key field is "key", the
+                                              operator is "In", and the values array contains only "value". The requirements are ANDed.
+                                            type: object
+                                        type: object
+                                        x-kubernetes-map-type: atomic
+                                      namespaces:
+                                        description: |-
+                                          namespaces specifies a static list of namespace names that the term applies to.
+                                          The term is applied to the union of the namespaces listed in this field
+                                          and the ones selected by namespaceSelector.
+                                          null or empty namespaces list and null namespaceSelector means "this pod's namespace".
+                                        items:
+                                          type: string
+                                        type: array
+                                        x-kubernetes-list-type: atomic
+                                      topologyKey:
+                                        description: |-
+                                          This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching
+                                          the labelSelector in the specified namespaces, where co-located is defined as running on a node
+                                          whose value of the label with key topologyKey matches that of any node on which any of the
+                                          selected pods is running.
+                                          Empty topologyKey is not allowed.
+                                        type: string
+                                    required:
+                                      - topologyKey
+                                    type: object
+                                  type: array
+                                  x-kubernetes-list-type: atomic
+                              type: object
+                            podAntiAffinity:
+                              description: Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).
+                              properties:
+                                preferredDuringSchedulingIgnoredDuringExecution:
+                                  description: |-
+                                    The scheduler will prefer to schedule pods to nodes that satisfy
+                                    the anti-affinity expressions specified by this field, but it may choose
+                                    a node that violates one or more of the expressions. The node that is
+                                    most preferred is the one with the greatest sum of weights, i.e.
+                                    for each node that meets all of the scheduling requirements (resource
+                                    request, requiredDuringScheduling anti-affinity expressions, etc.),
+                                    compute a sum by iterating through the elements of this field and adding
+                                    "weight" to the sum if the node has pods which matches the corresponding podAffinityTerm; the
+                                    node(s) with the highest sum are the most preferred.
+                                  items:
+                                    description: The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)
+                                    properties:
+                                      podAffinityTerm:
+                                        description: Required. A pod affinity term, associated with the corresponding weight.
+                                        properties:
+                                          labelSelector:
+                                            description: |-
+                                              A label query over a set of resources, in this case pods.
+                                              If it's null, this PodAffinityTerm matches with no Pods.
+                                            properties:
+                                              matchExpressions:
+                                                description: matchExpressions is a list of label selector requirements. The requirements are ANDed.
+                                                items:
+                                                  description: |-
+                                                    A label selector requirement is a selector that contains values, a key, and an operator that
+                                                    relates the key and values.
+                                                  properties:
+                                                    key:
+                                                      description: key is the label key that the selector applies to.
+                                                      type: string
+                                                    operator:
+                                                      description: |-
+                                                        operator represents a key's relationship to a set of values.
+                                                        Valid operators are In, NotIn, Exists and DoesNotExist.
+                                                      type: string
+                                                    values:
+                                                      description: |-
+                                                        values is an array of string values. If the operator is In or NotIn,
+                                                        the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                        the values array must be empty. This array is replaced during a strategic
+                                                        merge patch.
+                                                      items:
+                                                        type: string
+                                                      type: array
+                                                      x-kubernetes-list-type: atomic
+                                                  required:
+                                                    - key
+                                                    - operator
+                                                  type: object
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                              matchLabels:
+                                                additionalProperties:
+                                                  type: string
+                                                description: |-
+                                                  matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
+                                                  map is equivalent to an element of matchExpressions, whose key field is "key", the
+                                                  operator is "In", and the values array contains only "value". The requirements are ANDed.
+                                                type: object
+                                            type: object
+                                            x-kubernetes-map-type: atomic
+                                          matchLabelKeys:
+                                            description: |-
+                                              MatchLabelKeys is a set of pod label keys to select which pods will
+                                              be taken into consideration. The keys are used to lookup values from the
+                                              incoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`
+                                              to select the group of existing pods which pods will be taken into consideration
+                                              for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming
+                                              pod labels will be ignored. The default value is empty.
+                                              The same key is forbidden to exist in both matchLabelKeys and labelSelector.
+                                              Also, matchLabelKeys cannot be set when labelSelector isn't set.
+                                              This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+                                            items:
+                                              type: string
+                                            type: array
+                                            x-kubernetes-list-type: atomic
+                                          mismatchLabelKeys:
+                                            description: |-
+                                              MismatchLabelKeys is a set of pod label keys to select which pods will
+                                              be taken into consideration. The keys are used to lookup values from the
+                                              incoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`
+                                              to select the group of existing pods which pods will be taken into consideration
+                                              for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming
+                                              pod labels will be ignored. The default value is empty.
+                                              The same key is forbidden to exist in both mismatchLabelKeys and labelSelector.
+                                              Also, mismatchLabelKeys cannot be set when labelSelector isn't set.
+                                              This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+                                            items:
+                                              type: string
+                                            type: array
+                                            x-kubernetes-list-type: atomic
+                                          namespaceSelector:
+                                            description: |-
+                                              A label query over the set of namespaces that the term applies to.
+                                              The term is applied to the union of the namespaces selected by this field
+                                              and the ones listed in the namespaces field.
+                                              null selector and null or empty namespaces list means "this pod's namespace".
+                                              An empty selector ({}) matches all namespaces.
+                                            properties:
+                                              matchExpressions:
+                                                description: matchExpressions is a list of label selector requirements. The requirements are ANDed.
+                                                items:
+                                                  description: |-
+                                                    A label selector requirement is a selector that contains values, a key, and an operator that
+                                                    relates the key and values.
+                                                  properties:
+                                                    key:
+                                                      description: key is the label key that the selector applies to.
+                                                      type: string
+                                                    operator:
+                                                      description: |-
+                                                        operator represents a key's relationship to a set of values.
+                                                        Valid operators are In, NotIn, Exists and DoesNotExist.
+                                                      type: string
+                                                    values:
+                                                      description: |-
+                                                        values is an array of string values. If the operator is In or NotIn,
+                                                        the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                        the values array must be empty. This array is replaced during a strategic
+                                                        merge patch.
+                                                      items:
+                                                        type: string
+                                                      type: array
+                                                      x-kubernetes-list-type: atomic
+                                                  required:
+                                                    - key
+                                                    - operator
+                                                  type: object
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                              matchLabels:
+                                                additionalProperties:
+                                                  type: string
+                                                description: |-
+                                                  matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
+                                                  map is equivalent to an element of matchExpressions, whose key field is "key", the
+                                                  operator is "In", and the values array contains only "value". The requirements are ANDed.
+                                                type: object
+                                            type: object
+                                            x-kubernetes-map-type: atomic
+                                          namespaces:
+                                            description: |-
+                                              namespaces specifies a static list of namespace names that the term applies to.
+                                              The term is applied to the union of the namespaces listed in this field
+                                              and the ones selected by namespaceSelector.
+                                              null or empty namespaces list and null namespaceSelector means "this pod's namespace".
+                                            items:
+                                              type: string
+                                            type: array
+                                            x-kubernetes-list-type: atomic
+                                          topologyKey:
+                                            description: |-
+                                              This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching
+                                              the labelSelector in the specified namespaces, where co-located is defined as running on a node
+                                              whose value of the label with key topologyKey matches that of any node on which any of the
+                                              selected pods is running.
+                                              Empty topologyKey is not allowed.
+                                            type: string
+                                        required:
+                                          - topologyKey
+                                        type: object
+                                      weight:
+                                        description: |-
+                                          weight associated with matching the corresponding podAffinityTerm,
+                                          in the range 1-100.
+                                        format: int32
+                                        type: integer
+                                    required:
+                                      - podAffinityTerm
+                                      - weight
+                                    type: object
+                                  type: array
+                                  x-kubernetes-list-type: atomic
+                                requiredDuringSchedulingIgnoredDuringExecution:
+                                  description: |-
+                                    If the anti-affinity requirements specified by this field are not met at
+                                    scheduling time, the pod will not be scheduled onto the node.
+                                    If the anti-affinity requirements specified by this field cease to be met
+                                    at some point during pod execution (e.g. due to a pod label update), the
+                                    system may or may not try to eventually evict the pod from its node.
+                                    When there are multiple elements, the lists of nodes corresponding to each
+                                    podAffinityTerm are intersected, i.e. all terms must be satisfied.
+                                  items:
+                                    description: |-
+                                      Defines a set of pods (namely those matching the labelSelector
+                                      relative to the given namespace(s)) that this pod should be
+                                      co-located (affinity) or not co-located (anti-affinity) with,
+                                      where co-located is defined as running on a node whose value of
+                                      the label with key <topologyKey> matches that of any node on which
+                                      a pod of the set of pods is running
+                                    properties:
+                                      labelSelector:
+                                        description: |-
+                                          A label query over a set of resources, in this case pods.
+                                          If it's null, this PodAffinityTerm matches with no Pods.
+                                        properties:
+                                          matchExpressions:
+                                            description: matchExpressions is a list of label selector requirements. The requirements are ANDed.
+                                            items:
+                                              description: |-
+                                                A label selector requirement is a selector that contains values, a key, and an operator that
+                                                relates the key and values.
+                                              properties:
+                                                key:
+                                                  description: key is the label key that the selector applies to.
+                                                  type: string
+                                                operator:
+                                                  description: |-
+                                                    operator represents a key's relationship to a set of values.
+                                                    Valid operators are In, NotIn, Exists and DoesNotExist.
+                                                  type: string
+                                                values:
+                                                  description: |-
+                                                    values is an array of string values. If the operator is In or NotIn,
+                                                    the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                    the values array must be empty. This array is replaced during a strategic
+                                                    merge patch.
+                                                  items:
+                                                    type: string
+                                                  type: array
+                                                  x-kubernetes-list-type: atomic
+                                              required:
+                                                - key
+                                                - operator
+                                              type: object
+                                            type: array
+                                            x-kubernetes-list-type: atomic
+                                          matchLabels:
+                                            additionalProperties:
+                                              type: string
+                                            description: |-
+                                              matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
+                                              map is equivalent to an element of matchExpressions, whose key field is "key", the
+                                              operator is "In", and the values array contains only "value". The requirements are ANDed.
+                                            type: object
+                                        type: object
+                                        x-kubernetes-map-type: atomic
+                                      matchLabelKeys:
+                                        description: |-
+                                          MatchLabelKeys is a set of pod label keys to select which pods will
+                                          be taken into consideration. The keys are used to lookup values from the
+                                          incoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`
+                                          to select the group of existing pods which pods will be taken into consideration
+                                          for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming
+                                          pod labels will be ignored. The default value is empty.
+                                          The same key is forbidden to exist in both matchLabelKeys and labelSelector.
+                                          Also, matchLabelKeys cannot be set when labelSelector isn't set.
+                                          This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+                                        items:
+                                          type: string
+                                        type: array
+                                        x-kubernetes-list-type: atomic
+                                      mismatchLabelKeys:
+                                        description: |-
+                                          MismatchLabelKeys is a set of pod label keys to select which pods will
+                                          be taken into consideration. The keys are used to lookup values from the
+                                          incoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`
+                                          to select the group of existing pods which pods will be taken into consideration
+                                          for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming
+                                          pod labels will be ignored. The default value is empty.
+                                          The same key is forbidden to exist in both mismatchLabelKeys and labelSelector.
+                                          Also, mismatchLabelKeys cannot be set when labelSelector isn't set.
+                                          This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+                                        items:
+                                          type: string
+                                        type: array
+                                        x-kubernetes-list-type: atomic
+                                      namespaceSelector:
+                                        description: |-
+                                          A label query over the set of namespaces that the term applies to.
+                                          The term is applied to the union of the namespaces selected by this field
+                                          and the ones listed in the namespaces field.
+                                          null selector and null or empty namespaces list means "this pod's namespace".
+                                          An empty selector ({}) matches all namespaces.
+                                        properties:
+                                          matchExpressions:
+                                            description: matchExpressions is a list of label selector requirements. The requirements are ANDed.
+                                            items:
+                                              description: |-
+                                                A label selector requirement is a selector that contains values, a key, and an operator that
+                                                relates the key and values.
+                                              properties:
+                                                key:
+                                                  description: key is the label key that the selector applies to.
+                                                  type: string
+                                                operator:
+                                                  description: |-
+                                                    operator represents a key's relationship to a set of values.
+                                                    Valid operators are In, NotIn, Exists and DoesNotExist.
+                                                  type: string
+                                                values:
+                                                  description: |-
+                                                    values is an array of string values. If the operator is In or NotIn,
+                                                    the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                    the values array must be empty. This array is replaced during a strategic
+                                                    merge patch.
+                                                  items:
+                                                    type: string
+                                                  type: array
+                                                  x-kubernetes-list-type: atomic
+                                              required:
+                                                - key
+                                                - operator
+                                              type: object
+                                            type: array
+                                            x-kubernetes-list-type: atomic
+                                          matchLabels:
+                                            additionalProperties:
+                                              type: string
+                                            description: |-
+                                              matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
+                                              map is equivalent to an element of matchExpressions, whose key field is "key", the
+                                              operator is "In", and the values array contains only "value". The requirements are ANDed.
+                                            type: object
+                                        type: object
+                                        x-kubernetes-map-type: atomic
+                                      namespaces:
+                                        description: |-
+                                          namespaces specifies a static list of namespace names that the term applies to.
+                                          The term is applied to the union of the namespaces listed in this field
+                                          and the ones selected by namespaceSelector.
+                                          null or empty namespaces list and null namespaceSelector means "this pod's namespace".
+                                        items:
+                                          type: string
+                                        type: array
+                                        x-kubernetes-list-type: atomic
+                                      topologyKey:
+                                        description: |-
+                                          This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching
+                                          the labelSelector in the specified namespaces, where co-located is defined as running on a node
+                                          whose value of the label with key topologyKey matches that of any node on which any of the
+                                          selected pods is running.
+                                          Empty topologyKey is not allowed.
+                                        type: string
+                                    required:
+                                      - topologyKey
+                                    type: object
+                                  type: array
+                                  x-kubernetes-list-type: atomic
+                              type: object
+                          type: object
+                        annotations:
+                          additionalProperties:
+                            type: string
+                          description: agent.pod.annotations are additional annotations to be added to the agent pods.
+                          type: object
+                        claims:
+                          description: |-
+                            Claims lists the names of resources, defined in spec.resourceClaims,
+                            that are used by this container.
+
+
+                            This is an alpha field and requires enabling the
+                            DynamicResourceAllocation feature gate.
+
+
+                            This field is immutable. It can only be set for containers.
+                          items:
+                            description: ResourceClaim references one entry in PodSpec.ResourceClaims.
+                            properties:
+                              name:
+                                description: |-
+                                  Name must match the name of one entry in pod.spec.resourceClaims of
+                                  the Pod where this field is used. It makes that resource available
+                                  inside a container.
+                                type: string
+                            required:
+                              - name
+                            type: object
+                          type: array
+                          x-kubernetes-list-map-keys:
+                            - name
+                          x-kubernetes-list-type: map
+                        labels:
+                          additionalProperties:
+                            type: string
+                          description: agent.pod.labels are additional labels to be added to the agent pods.
+                          type: object
+                        limits:
+                          additionalProperties:
+                            anyOf:
+                              - type: integer
+                              - type: string
+                            pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
+                            x-kubernetes-int-or-string: true
+                          description: |-
+                            Limits describes the maximum amount of compute resources allowed.
+                            More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+                          type: object
+                        nodeSelector:
+                          additionalProperties:
+                            type: string
+                          type: object
+                        priorityClassName:
+                          description: |-
+                            agent.pod.priorityClassName is the name of an existing PriorityClass that should be set on the agent pods
+                            https://kubernetes.io/docs/concepts/configuration/pod-priority-preemption/
+                          type: string
+                        requests:
+                          additionalProperties:
+                            anyOf:
+                              - type: integer
+                              - type: string
+                            pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
+                            x-kubernetes-int-or-string: true
+                          description: |-
+                            Requests describes the minimum amount of compute resources required.
+                            If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,
+                            otherwise to an implementation-defined value. Requests cannot exceed Limits.
+                            More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+                          type: object
+                        tolerations:
+                          description: agent.pod.tolerations are tolerations to influence agent pod assignment.
+                          items:
+                            description: |-
+                              The pod this Toleration is attached to tolerates any taint that matches
+                              the triple <key,value,effect> using the matching operator <operator>.
+                            properties:
+                              effect:
+                                description: |-
+                                  Effect indicates the taint effect to match. Empty means match all taint effects.
+                                  When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.
+                                type: string
+                              key:
+                                description: |-
+                                  Key is the taint key that the toleration applies to. Empty means match all taint keys.
+                                  If the key is empty, operator must be Exists; this combination means to match all values and all keys.
+                                type: string
+                              operator:
+                                description: |-
+                                  Operator represents a key's relationship to the value.
+                                  Valid operators are Exists and Equal. Defaults to Equal.
+                                  Exists is equivalent to wildcard for value, so that a pod can
+                                  tolerate all taints of a particular category.
+                                type: string
+                              tolerationSeconds:
+                                description: |-
+                                  TolerationSeconds represents the period of time the toleration (which must be
+                                  of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,
+                                  it is not set, which means tolerate the taint forever (do not evict). Zero and
+                                  negative values will be treated as 0 (evict immediately) by the system.
+                                format: int64
+                                type: integer
+                              value:
+                                description: |-
+                                  Value is the taint value the toleration matches to.
+                                  If the operator is Exists, the value should be empty, otherwise just a regular string.
+                                type: string
+                            type: object
+                          type: array
+                        volumeMounts:
+                          description: Set additional volume mounts for the agent pod.
+                          items:
+                            description: VolumeMount describes a mounting of a Volume within a container.
+                            properties:
+                              mountPath:
+                                description: |-
+                                  Path within the container at which the volume should be mounted.  Must
+                                  not contain ':'.
+                                type: string
+                              mountPropagation:
+                                description: |-
+                                  mountPropagation determines how mounts are propagated from the host
+                                  to container and the other way around.
+                                  When not set, MountPropagationNone is used.
+                                  This field is beta in 1.10.
+                                  When RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified
+                                  (which defaults to None).
+                                type: string
+                              name:
+                                description: This must match the Name of a Volume.
+                                type: string
+                              readOnly:
+                                description: |-
+                                  Mounted read-only if true, read-write otherwise (false or unspecified).
+                                  Defaults to false.
+                                type: boolean
+                              recursiveReadOnly:
+                                description: |-
+                                  RecursiveReadOnly specifies whether read-only mounts should be handled
+                                  recursively.
+
+
+                                  If ReadOnly is false, this field has no meaning and must be unspecified.
+
+
+                                  If ReadOnly is true, and this field is set to Disabled, the mount is not made
+                                  recursively read-only.  If this field is set to IfPossible, the mount is made
+                                  recursively read-only, if it is supported by the container runtime.  If this
+                                  field is set to Enabled, the mount is made recursively read-only if it is
+                                  supported by the container runtime, otherwise the pod will not be started and
+                                  an error will be generated to indicate the reason.
+
+
+                                  If this field is set to IfPossible or Enabled, MountPropagation must be set to
+                                  None (or be unspecified, which defaults to None).
+
+
+                                  If this field is not specified, it is treated as an equivalent of Disabled.
+                                type: string
+                              subPath:
+                                description: |-
+                                  Path within the volume from which the container's volume should be mounted.
+                                  Defaults to "" (volume's root).
+                                type: string
+                              subPathExpr:
+                                description: |-
+                                  Expanded path within the volume from which the container's volume should be mounted.
+                                  Behaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.
+                                  Defaults to "" (volume's root).
+                                  SubPathExpr and SubPath are mutually exclusive.
+                                type: string
+                            required:
+                              - mountPath
+                              - name
+                            type: object
+                          type: array
+                        volumes:
+                          description: Set additional volumes for the agent pod.
+                          items:
+                            description: Volume represents a named volume in a pod that may be accessed by any container in the pod.
+                            properties:
+                              awsElasticBlockStore:
+                                description: |-
+                                  awsElasticBlockStore represents an AWS Disk resource that is attached to a
+                                  kubelet's host machine and then exposed to the pod.
+                                  More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
+                                properties:
+                                  fsType:
+                                    description: |-
+                                      fsType is the filesystem type of the volume that you want to mount.
+                                      Tip: Ensure that the filesystem type is supported by the host operating system.
+                                      Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
+                                      More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
+                                      TODO: how do we prevent errors in the filesystem from compromising the machine
+                                    type: string
+                                  partition:
+                                    description: |-
+                                      partition is the partition in the volume that you want to mount.
+                                      If omitted, the default is to mount by volume name.
+                                      Examples: For volume /dev/sda1, you specify the partition as "1".
+                                      Similarly, the volume partition for /dev/sda is "0" (or you can leave the property empty).
+                                    format: int32
+                                    type: integer
+                                  readOnly:
+                                    description: |-
+                                      readOnly value true will force the readOnly setting in VolumeMounts.
+                                      More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
+                                    type: boolean
+                                  volumeID:
+                                    description: |-
+                                      volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume).
+                                      More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
+                                    type: string
+                                required:
+                                  - volumeID
+                                type: object
+                              azureDisk:
+                                description: azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.
+                                properties:
+                                  cachingMode:
+                                    description: 'cachingMode is the Host Caching mode: None, Read Only, Read Write.'
+                                    type: string
+                                  diskName:
+                                    description: diskName is the Name of the data disk in the blob storage
+                                    type: string
+                                  diskURI:
+                                    description: diskURI is the URI of data disk in the blob storage
+                                    type: string
+                                  fsType:
+                                    description: |-
+                                      fsType is Filesystem type to mount.
+                                      Must be a filesystem type supported by the host operating system.
+                                      Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
+                                    type: string
+                                  kind:
+                                    description: 'kind expected values are Shared: multiple blob disks per storage account  Dedicated: single blob disk per storage account  Managed: azure managed data disk (only in managed availability set). defaults to shared'
+                                    type: string
+                                  readOnly:
+                                    description: |-
+                                      readOnly Defaults to false (read/write). ReadOnly here will force
+                                      the ReadOnly setting in VolumeMounts.
+                                    type: boolean
+                                required:
+                                  - diskName
+                                  - diskURI
+                                type: object
+                              azureFile:
+                                description: azureFile represents an Azure File Service mount on the host and bind mount to the pod.
+                                properties:
+                                  readOnly:
+                                    description: |-
+                                      readOnly defaults to false (read/write). ReadOnly here will force
+                                      the ReadOnly setting in VolumeMounts.
+                                    type: boolean
+                                  secretName:
+                                    description: secretName is the  name of secret that contains Azure Storage Account Name and Key
+                                    type: string
+                                  shareName:
+                                    description: shareName is the azure share Name
+                                    type: string
+                                required:
+                                  - secretName
+                                  - shareName
+                                type: object
+                              cephfs:
+                                description: cephFS represents a Ceph FS mount on the host that shares a pod's lifetime
+                                properties:
+                                  monitors:
+                                    description: |-
+                                      monitors is Required: Monitors is a collection of Ceph monitors
+                                      More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+                                    items:
+                                      type: string
+                                    type: array
+                                    x-kubernetes-list-type: atomic
+                                  path:
+                                    description: 'path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /'
+                                    type: string
+                                  readOnly:
+                                    description: |-
+                                      readOnly is Optional: Defaults to false (read/write). ReadOnly here will force
+                                      the ReadOnly setting in VolumeMounts.
+                                      More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+                                    type: boolean
+                                  secretFile:
+                                    description: |-
+                                      secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret
+                                      More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+                                    type: string
+                                  secretRef:
+                                    description: |-
+                                      secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty.
+                                      More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+                                    properties:
+                                      name:
+                                        default: ""
+                                        description: |-
+                                          Name of the referent.
+                                          This field is effectively required, but due to backwards compatibility is
+                                          allowed to be empty. Instances of this type with an empty value here are
+                                          almost certainly wrong.
+                                          TODO: Add other useful fields. apiVersion, kind, uid?
+                                          More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+                                          TODO: Drop `kubebuilder:default` when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+                                        type: string
+                                    type: object
+                                    x-kubernetes-map-type: atomic
+                                  user:
+                                    description: |-
+                                      user is optional: User is the rados user name, default is admin
+                                      More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+                                    type: string
+                                required:
+                                  - monitors
+                                type: object
+                              cinder:
+                                description: |-
+                                  cinder represents a cinder volume attached and mounted on kubelets host machine.
+                                  More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+                                properties:
+                                  fsType:
+                                    description: |-
+                                      fsType is the filesystem type to mount.
+                                      Must be a filesystem type supported by the host operating system.
+                                      Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
+                                      More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+                                    type: string
+                                  readOnly:
+                                    description: |-
+                                      readOnly defaults to false (read/write). ReadOnly here will force
+                                      the ReadOnly setting in VolumeMounts.
+                                      More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+                                    type: boolean
+                                  secretRef:
+                                    description: |-
+                                      secretRef is optional: points to a secret object containing parameters used to connect
+                                      to OpenStack.
+                                    properties:
+                                      name:
+                                        default: ""
+                                        description: |-
+                                          Name of the referent.
+                                          This field is effectively required, but due to backwards compatibility is
+                                          allowed to be empty. Instances of this type with an empty value here are
+                                          almost certainly wrong.
+                                          TODO: Add other useful fields. apiVersion, kind, uid?
+                                          More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+                                          TODO: Drop `kubebuilder:default` when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+                                        type: string
+                                    type: object
+                                    x-kubernetes-map-type: atomic
+                                  volumeID:
+                                    description: |-
+                                      volumeID used to identify the volume in cinder.
+                                      More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+                                    type: string
+                                required:
+                                  - volumeID
+                                type: object
+                              configMap:
+                                description: configMap represents a configMap that should populate this volume
+                                properties:
+                                  defaultMode:
+                                    description: |-
+                                      defaultMode is optional: mode bits used to set permissions on created files by default.
+                                      Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.
+                                      YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.
+                                      Defaults to 0644.
+                                      Directories within the path are not affected by this setting.
+                                      This might be in conflict with other options that affect the file
+                                      mode, like fsGroup, and the result can be other mode bits set.
+                                    format: int32
+                                    type: integer
+                                  items:
+                                    description: |-
+                                      items if unspecified, each key-value pair in the Data field of the referenced
+                                      ConfigMap will be projected into the volume as a file whose name is the
+                                      key and content is the value. If specified, the listed keys will be
+                                      projected into the specified paths, and unlisted keys will not be
+                                      present. If a key is specified which is not present in the ConfigMap,
+                                      the volume setup will error unless it is marked optional. Paths must be
+                                      relative and may not contain the '..' path or start with '..'.
+                                    items:
+                                      description: Maps a string key to a path within a volume.
+                                      properties:
+                                        key:
+                                          description: key is the key to project.
+                                          type: string
+                                        mode:
+                                          description: |-
+                                            mode is Optional: mode bits used to set permissions on this file.
+                                            Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.
+                                            YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.
+                                            If not specified, the volume defaultMode will be used.
+                                            This might be in conflict with other options that affect the file
+                                            mode, like fsGroup, and the result can be other mode bits set.
+                                          format: int32
+                                          type: integer
+                                        path:
+                                          description: |-
+                                            path is the relative path of the file to map the key to.
+                                            May not be an absolute path.
+                                            May not contain the path element '..'.
+                                            May not start with the string '..'.
+                                          type: string
+                                      required:
+                                        - key
+                                        - path
+                                      type: object
+                                    type: array
+                                    x-kubernetes-list-type: atomic
+                                  name:
+                                    default: ""
+                                    description: |-
+                                      Name of the referent.
+                                      This field is effectively required, but due to backwards compatibility is
+                                      allowed to be empty. Instances of this type with an empty value here are
+                                      almost certainly wrong.
+                                      TODO: Add other useful fields. apiVersion, kind, uid?
+                                      More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+                                      TODO: Drop `kubebuilder:default` when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+                                    type: string
+                                  optional:
+                                    description: optional specify whether the ConfigMap or its keys must be defined
+                                    type: boolean
+                                type: object
+                                x-kubernetes-map-type: atomic
+                              csi:
+                                description: csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature).
+                                properties:
+                                  driver:
+                                    description: |-
+                                      driver is the name of the CSI driver that handles this volume.
+                                      Consult with your admin for the correct name as registered in the cluster.
+                                    type: string
+                                  fsType:
+                                    description: |-
+                                      fsType to mount. Ex. "ext4", "xfs", "ntfs".
+                                      If not provided, the empty value is passed to the associated CSI driver
+                                      which will determine the default filesystem to apply.
+                                    type: string
+                                  nodePublishSecretRef:
+                                    description: |-
+                                      nodePublishSecretRef is a reference to the secret object containing
+                                      sensitive information to pass to the CSI driver to complete the CSI
+                                      NodePublishVolume and NodeUnpublishVolume calls.
+                                      This field is optional, and  may be empty if no secret is required. If the
+                                      secret object contains more than one secret, all secret references are passed.
+                                    properties:
+                                      name:
+                                        default: ""
+                                        description: |-
+                                          Name of the referent.
+                                          This field is effectively required, but due to backwards compatibility is
+                                          allowed to be empty. Instances of this type with an empty value here are
+                                          almost certainly wrong.
+                                          TODO: Add other useful fields. apiVersion, kind, uid?
+                                          More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+                                          TODO: Drop `kubebuilder:default` when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+                                        type: string
+                                    type: object
+                                    x-kubernetes-map-type: atomic
+                                  readOnly:
+                                    description: |-
+                                      readOnly specifies a read-only configuration for the volume.
+                                      Defaults to false (read/write).
+                                    type: boolean
+                                  volumeAttributes:
+                                    additionalProperties:
+                                      type: string
+                                    description: |-
+                                      volumeAttributes stores driver-specific properties that are passed to the CSI
+                                      driver. Consult your driver's documentation for supported values.
+                                    type: object
+                                required:
+                                  - driver
+                                type: object
+                              downwardAPI:
+                                description: downwardAPI represents downward API about the pod that should populate this volume
+                                properties:
+                                  defaultMode:
+                                    description: |-
+                                      Optional: mode bits to use on created files by default. Must be a
+                                      Optional: mode bits used to set permissions on created files by default.
+                                      Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.
+                                      YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.
+                                      Defaults to 0644.
+                                      Directories within the path are not affected by this setting.
+                                      This might be in conflict with other options that affect the file
+                                      mode, like fsGroup, and the result can be other mode bits set.
+                                    format: int32
+                                    type: integer
+                                  items:
+                                    description: Items is a list of downward API volume file
+                                    items:
+                                      description: DownwardAPIVolumeFile represents information to create the file containing the pod field
+                                      properties:
+                                        fieldRef:
+                                          description: 'Required: Selects a field of the pod: only annotations, labels, name, namespace and uid are supported.'
+                                          properties:
+                                            apiVersion:
+                                              description: Version of the schema the FieldPath is written in terms of, defaults to "v1".
+                                              type: string
+                                            fieldPath:
+                                              description: Path of the field to select in the specified API version.
+                                              type: string
+                                          required:
+                                            - fieldPath
+                                          type: object
+                                          x-kubernetes-map-type: atomic
+                                        mode:
+                                          description: |-
+                                            Optional: mode bits used to set permissions on this file, must be an octal value
+                                            between 0000 and 0777 or a decimal value between 0 and 511.
+                                            YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.
+                                            If not specified, the volume defaultMode will be used.
+                                            This might be in conflict with other options that affect the file
+                                            mode, like fsGroup, and the result can be other mode bits set.
+                                          format: int32
+                                          type: integer
+                                        path:
+                                          description: 'Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the ''..'' path. Must be utf-8 encoded. The first item of the relative path must not start with ''..'''
+                                          type: string
+                                        resourceFieldRef:
+                                          description: |-
+                                            Selects a resource of the container: only resources limits and requests
+                                            (limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.
+                                          properties:
+                                            containerName:
+                                              description: 'Container name: required for volumes, optional for env vars'
+                                              type: string
+                                            divisor:
+                                              anyOf:
+                                                - type: integer
+                                                - type: string
+                                              description: Specifies the output format of the exposed resources, defaults to "1"
+                                              pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
+                                              x-kubernetes-int-or-string: true
+                                            resource:
+                                              description: 'Required: resource to select'
+                                              type: string
+                                          required:
+                                            - resource
+                                          type: object
+                                          x-kubernetes-map-type: atomic
+                                      required:
+                                        - path
+                                      type: object
+                                    type: array
+                                    x-kubernetes-list-type: atomic
+                                type: object
+                              emptyDir:
+                                description: |-
+                                  emptyDir represents a temporary directory that shares a pod's lifetime.
+                                  More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir
+                                properties:
+                                  medium:
+                                    description: |-
+                                      medium represents what type of storage medium should back this directory.
+                                      The default is "" which means to use the node's default medium.
+                                      Must be an empty string (default) or Memory.
+                                      More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir
+                                    type: string
+                                  sizeLimit:
+                                    anyOf:
+                                      - type: integer
+                                      - type: string
+                                    description: |-
+                                      sizeLimit is the total amount of local storage required for this EmptyDir volume.
+                                      The size limit is also applicable for memory medium.
+                                      The maximum usage on memory medium EmptyDir would be the minimum value between
+                                      the SizeLimit specified here and the sum of memory limits of all containers in a pod.
+                                      The default is nil which means that the limit is undefined.
+                                      More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir
+                                    pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
+                                    x-kubernetes-int-or-string: true
+                                type: object
+                              ephemeral:
+                                description: |-
+                                  ephemeral represents a volume that is handled by a cluster storage driver.
+                                  The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts,
+                                  and deleted when the pod is removed.
+
+
+                                  Use this if:
+                                  a) the volume is only needed while the pod runs,
+                                  b) features of normal volumes like restoring from snapshot or capacity
+                                     tracking are needed,
+                                  c) the storage driver is specified through a storage class, and
+                                  d) the storage driver supports dynamic volume provisioning through
+                                     a PersistentVolumeClaim (see EphemeralVolumeSource for more
+                                     information on the connection between this volume type
+                                     and PersistentVolumeClaim).
+
+
+                                  Use PersistentVolumeClaim or one of the vendor-specific
+                                  APIs for volumes that persist for longer than the lifecycle
+                                  of an individual pod.
+
+
+                                  Use CSI for light-weight local ephemeral volumes if the CSI driver is meant to
+                                  be used that way - see the documentation of the driver for
+                                  more information.
+
+
+                                  A pod can use both types of ephemeral volumes and
+                                  persistent volumes at the same time.
+                                properties:
+                                  volumeClaimTemplate:
+                                    description: |-
+                                      Will be used to create a stand-alone PVC to provision the volume.
+                                      The pod in which this EphemeralVolumeSource is embedded will be the
+                                      owner of the PVC, i.e. the PVC will be deleted together with the
+                                      pod.  The name of the PVC will be `<pod name>-<volume name>` where
+                                      `<volume name>` is the name from the `PodSpec.Volumes` array
+                                      entry. Pod validation will reject the pod if the concatenated name
+                                      is not valid for a PVC (for example, too long).
+
+
+                                      An existing PVC with that name that is not owned by the pod
+                                      will *not* be used for the pod to avoid using an unrelated
+                                      volume by mistake. Starting the pod is then blocked until
+                                      the unrelated PVC is removed. If such a pre-created PVC is
+                                      meant to be used by the pod, the PVC has to updated with an
+                                      owner reference to the pod once the pod exists. Normally
+                                      this should not be necessary, but it may be useful when
+                                      manually reconstructing a broken cluster.
+
+
+                                      This field is read-only and no changes will be made by Kubernetes
+                                      to the PVC after it has been created.
+
+
+                                      Required, must not be nil.
+                                    properties:
+                                      metadata:
+                                        description: |-
+                                          May contain labels and annotations that will be copied into the PVC
+                                          when creating it. No other fields are allowed and will be rejected during
+                                          validation.
+                                        type: object
+                                      spec:
+                                        description: |-
+                                          The specification for the PersistentVolumeClaim. The entire content is
+                                          copied unchanged into the PVC that gets created from this
+                                          template. The same fields as in a PersistentVolumeClaim
+                                          are also valid here.
+                                        properties:
+                                          accessModes:
+                                            description: |-
+                                              accessModes contains the desired access modes the volume should have.
+                                              More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1
+                                            items:
+                                              type: string
+                                            type: array
+                                            x-kubernetes-list-type: atomic
+                                          dataSource:
+                                            description: |-
+                                              dataSource field can be used to specify either:
+                                              * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)
+                                              * An existing PVC (PersistentVolumeClaim)
+                                              If the provisioner or an external controller can support the specified data source,
+                                              it will create a new volume based on the contents of the specified data source.
+                                              When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,
+                                              and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.
+                                              If the namespace is specified, then dataSourceRef will not be copied to dataSource.
+                                            properties:
+                                              apiGroup:
+                                                description: |-
+                                                  APIGroup is the group for the resource being referenced.
+                                                  If APIGroup is not specified, the specified Kind must be in the core API group.
+                                                  For any other third-party types, APIGroup is required.
+                                                type: string
+                                              kind:
+                                                description: Kind is the type of resource being referenced
+                                                type: string
+                                              name:
+                                                description: Name is the name of resource being referenced
+                                                type: string
+                                            required:
+                                              - kind
+                                              - name
+                                            type: object
+                                            x-kubernetes-map-type: atomic
+                                          dataSourceRef:
+                                            description: |-
+                                              dataSourceRef specifies the object from which to populate the volume with data, if a non-empty
+                                              volume is desired. This may be any object from a non-empty API group (non
+                                              core object) or a PersistentVolumeClaim object.
+                                              When this field is specified, volume binding will only succeed if the type of
+                                              the specified object matches some installed volume populator or dynamic
+                                              provisioner.
+                                              This field will replace the functionality of the dataSource field and as such
+                                              if both fields are non-empty, they must have the same value. For backwards
+                                              compatibility, when namespace isn't specified in dataSourceRef,
+                                              both fields (dataSource and dataSourceRef) will be set to the same
+                                              value automatically if one of them is empty and the other is non-empty.
+                                              When namespace is specified in dataSourceRef,
+                                              dataSource isn't set to the same value and must be empty.
+                                              There are three important differences between dataSource and dataSourceRef:
+                                              * While dataSource only allows two specific types of objects, dataSourceRef
+                                                allows any non-core object, as well as PersistentVolumeClaim objects.
+                                              * While dataSource ignores disallowed values (dropping them), dataSourceRef
+                                                preserves all values, and generates an error if a disallowed value is
+                                                specified.
+                                              * While dataSource only allows local objects, dataSourceRef allows objects
+                                                in any namespaces.
+                                              (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.
+                                              (Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.
+                                            properties:
+                                              apiGroup:
+                                                description: |-
+                                                  APIGroup is the group for the resource being referenced.
+                                                  If APIGroup is not specified, the specified Kind must be in the core API group.
+                                                  For any other third-party types, APIGroup is required.
+                                                type: string
+                                              kind:
+                                                description: Kind is the type of resource being referenced
+                                                type: string
+                                              name:
+                                                description: Name is the name of resource being referenced
+                                                type: string
+                                              namespace:
+                                                description: |-
+                                                  Namespace is the namespace of resource being referenced
+                                                  Note that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.
+                                                  (Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.
+                                                type: string
+                                            required:
+                                              - kind
+                                              - name
+                                            type: object
+                                          resources:
+                                            description: |-
+                                              resources represents the minimum resources the volume should have.
+                                              If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements
+                                              that are lower than previous value but must still be higher than capacity recorded in the
+                                              status field of the claim.
+                                              More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources
+                                            properties:
+                                              limits:
+                                                additionalProperties:
+                                                  anyOf:
+                                                    - type: integer
+                                                    - type: string
+                                                  pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
+                                                  x-kubernetes-int-or-string: true
+                                                description: |-
+                                                  Limits describes the maximum amount of compute resources allowed.
+                                                  More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+                                                type: object
+                                              requests:
+                                                additionalProperties:
+                                                  anyOf:
+                                                    - type: integer
+                                                    - type: string
+                                                  pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
+                                                  x-kubernetes-int-or-string: true
+                                                description: |-
+                                                  Requests describes the minimum amount of compute resources required.
+                                                  If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,
+                                                  otherwise to an implementation-defined value. Requests cannot exceed Limits.
+                                                  More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+                                                type: object
+                                            type: object
+                                          selector:
+                                            description: selector is a label query over volumes to consider for binding.
+                                            properties:
+                                              matchExpressions:
+                                                description: matchExpressions is a list of label selector requirements. The requirements are ANDed.
+                                                items:
+                                                  description: |-
+                                                    A label selector requirement is a selector that contains values, a key, and an operator that
+                                                    relates the key and values.
+                                                  properties:
+                                                    key:
+                                                      description: key is the label key that the selector applies to.
+                                                      type: string
+                                                    operator:
+                                                      description: |-
+                                                        operator represents a key's relationship to a set of values.
+                                                        Valid operators are In, NotIn, Exists and DoesNotExist.
+                                                      type: string
+                                                    values:
+                                                      description: |-
+                                                        values is an array of string values. If the operator is In or NotIn,
+                                                        the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                        the values array must be empty. This array is replaced during a strategic
+                                                        merge patch.
+                                                      items:
+                                                        type: string
+                                                      type: array
+                                                      x-kubernetes-list-type: atomic
+                                                  required:
+                                                    - key
+                                                    - operator
+                                                  type: object
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                              matchLabels:
+                                                additionalProperties:
+                                                  type: string
+                                                description: |-
+                                                  matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
+                                                  map is equivalent to an element of matchExpressions, whose key field is "key", the
+                                                  operator is "In", and the values array contains only "value". The requirements are ANDed.
+                                                type: object
+                                            type: object
+                                            x-kubernetes-map-type: atomic
+                                          storageClassName:
+                                            description: |-
+                                              storageClassName is the name of the StorageClass required by the claim.
+                                              More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1
+                                            type: string
+                                          volumeAttributesClassName:
+                                            description: |-
+                                              volumeAttributesClassName may be used to set the VolumeAttributesClass used by this claim.
+                                              If specified, the CSI driver will create or update the volume with the attributes defined
+                                              in the corresponding VolumeAttributesClass. This has a different purpose than storageClassName,
+                                              it can be changed after the claim is created. An empty string value means that no VolumeAttributesClass
+                                              will be applied to the claim but it's not allowed to reset this field to empty string once it is set.
+                                              If unspecified and the PersistentVolumeClaim is unbound, the default VolumeAttributesClass
+                                              will be set by the persistentvolume controller if it exists.
+                                              If the resource referred to by volumeAttributesClass does not exist, this PersistentVolumeClaim will be
+                                              set to a Pending state, as reflected by the modifyVolumeStatus field, until such as a resource
+                                              exists.
+                                              More info: https://kubernetes.io/docs/concepts/storage/volume-attributes-classes/
+                                              (Alpha) Using this field requires the VolumeAttributesClass feature gate to be enabled.
+                                            type: string
+                                          volumeMode:
+                                            description: |-
+                                              volumeMode defines what type of volume is required by the claim.
+                                              Value of Filesystem is implied when not included in claim spec.
+                                            type: string
+                                          volumeName:
+                                            description: volumeName is the binding reference to the PersistentVolume backing this claim.
+                                            type: string
+                                        type: object
+                                    required:
+                                      - spec
+                                    type: object
+                                type: object
+                              fc:
+                                description: fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.
+                                properties:
+                                  fsType:
+                                    description: |-
+                                      fsType is the filesystem type to mount.
+                                      Must be a filesystem type supported by the host operating system.
+                                      Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
+                                      TODO: how do we prevent errors in the filesystem from compromising the machine
+                                    type: string
+                                  lun:
+                                    description: 'lun is Optional: FC target lun number'
+                                    format: int32
+                                    type: integer
+                                  readOnly:
+                                    description: |-
+                                      readOnly is Optional: Defaults to false (read/write). ReadOnly here will force
+                                      the ReadOnly setting in VolumeMounts.
+                                    type: boolean
+                                  targetWWNs:
+                                    description: 'targetWWNs is Optional: FC target worldwide names (WWNs)'
+                                    items:
+                                      type: string
+                                    type: array
+                                    x-kubernetes-list-type: atomic
+                                  wwids:
+                                    description: |-
+                                      wwids Optional: FC volume world wide identifiers (wwids)
+                                      Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.
+                                    items:
+                                      type: string
+                                    type: array
+                                    x-kubernetes-list-type: atomic
+                                type: object
+                              flexVolume:
+                                description: |-
+                                  flexVolume represents a generic volume resource that is
+                                  provisioned/attached using an exec based plugin.
+                                properties:
+                                  driver:
+                                    description: driver is the name of the driver to use for this volume.
+                                    type: string
+                                  fsType:
+                                    description: |-
+                                      fsType is the filesystem type to mount.
+                                      Must be a filesystem type supported by the host operating system.
+                                      Ex. "ext4", "xfs", "ntfs". The default filesystem depends on FlexVolume script.
+                                    type: string
+                                  options:
+                                    additionalProperties:
+                                      type: string
+                                    description: 'options is Optional: this field holds extra command options if any.'
+                                    type: object
+                                  readOnly:
+                                    description: |-
+                                      readOnly is Optional: defaults to false (read/write). ReadOnly here will force
+                                      the ReadOnly setting in VolumeMounts.
+                                    type: boolean
+                                  secretRef:
+                                    description: |-
+                                      secretRef is Optional: secretRef is reference to the secret object containing
+                                      sensitive information to pass to the plugin scripts. This may be
+                                      empty if no secret object is specified. If the secret object
+                                      contains more than one secret, all secrets are passed to the plugin
+                                      scripts.
+                                    properties:
+                                      name:
+                                        default: ""
+                                        description: |-
+                                          Name of the referent.
+                                          This field is effectively required, but due to backwards compatibility is
+                                          allowed to be empty. Instances of this type with an empty value here are
+                                          almost certainly wrong.
+                                          TODO: Add other useful fields. apiVersion, kind, uid?
+                                          More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+                                          TODO: Drop `kubebuilder:default` when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+                                        type: string
+                                    type: object
+                                    x-kubernetes-map-type: atomic
+                                required:
+                                  - driver
+                                type: object
+                              flocker:
+                                description: flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running
+                                properties:
+                                  datasetName:
+                                    description: |-
+                                      datasetName is Name of the dataset stored as metadata -> name on the dataset for Flocker
+                                      should be considered as deprecated
+                                    type: string
+                                  datasetUUID:
+                                    description: datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset
+                                    type: string
+                                type: object
+                              gcePersistentDisk:
+                                description: |-
+                                  gcePersistentDisk represents a GCE Disk resource that is attached to a
+                                  kubelet's host machine and then exposed to the pod.
+                                  More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+                                properties:
+                                  fsType:
+                                    description: |-
+                                      fsType is filesystem type of the volume that you want to mount.
+                                      Tip: Ensure that the filesystem type is supported by the host operating system.
+                                      Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
+                                      More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+                                      TODO: how do we prevent errors in the filesystem from compromising the machine
+                                    type: string
+                                  partition:
+                                    description: |-
+                                      partition is the partition in the volume that you want to mount.
+                                      If omitted, the default is to mount by volume name.
+                                      Examples: For volume /dev/sda1, you specify the partition as "1".
+                                      Similarly, the volume partition for /dev/sda is "0" (or you can leave the property empty).
+                                      More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+                                    format: int32
+                                    type: integer
+                                  pdName:
+                                    description: |-
+                                      pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE.
+                                      More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+                                    type: string
+                                  readOnly:
+                                    description: |-
+                                      readOnly here will force the ReadOnly setting in VolumeMounts.
+                                      Defaults to false.
+                                      More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+                                    type: boolean
+                                required:
+                                  - pdName
+                                type: object
+                              gitRepo:
+                                description: |-
+                                  gitRepo represents a git repository at a particular revision.
+                                  DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount an
+                                  EmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir
+                                  into the Pod's container.
+                                properties:
+                                  directory:
+                                    description: |-
+                                      directory is the target directory name.
+                                      Must not contain or start with '..'.  If '.' is supplied, the volume directory will be the
+                                      git repository.  Otherwise, if specified, the volume will contain the git repository in
+                                      the subdirectory with the given name.
+                                    type: string
+                                  repository:
+                                    description: repository is the URL
+                                    type: string
+                                  revision:
+                                    description: revision is the commit hash for the specified revision.
+                                    type: string
+                                required:
+                                  - repository
+                                type: object
+                              glusterfs:
+                                description: |-
+                                  glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime.
+                                  More info: https://examples.k8s.io/volumes/glusterfs/README.md
+                                properties:
+                                  endpoints:
+                                    description: |-
+                                      endpoints is the endpoint name that details Glusterfs topology.
+                                      More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+                                    type: string
+                                  path:
+                                    description: |-
+                                      path is the Glusterfs volume path.
+                                      More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+                                    type: string
+                                  readOnly:
+                                    description: |-
+                                      readOnly here will force the Glusterfs volume to be mounted with read-only permissions.
+                                      Defaults to false.
+                                      More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+                                    type: boolean
+                                required:
+                                  - endpoints
+                                  - path
+                                type: object
+                              hostPath:
+                                description: |-
+                                  hostPath represents a pre-existing file or directory on the host
+                                  machine that is directly exposed to the container. This is generally
+                                  used for system agents or other privileged things that are allowed
+                                  to see the host machine. Most containers will NOT need this.
+                                  More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
+                                  ---
+                                  TODO(jonesdl) We need to restrict who can use host directory mounts and who can/can not
+                                  mount host directories as read/write.
+                                properties:
+                                  path:
+                                    description: |-
+                                      path of the directory on the host.
+                                      If the path is a symlink, it will follow the link to the real path.
+                                      More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
+                                    type: string
+                                  type:
+                                    description: |-
+                                      type for HostPath Volume
+                                      Defaults to ""
+                                      More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
+                                    type: string
+                                required:
+                                  - path
+                                type: object
+                              iscsi:
+                                description: |-
+                                  iscsi represents an ISCSI Disk resource that is attached to a
+                                  kubelet's host machine and then exposed to the pod.
+                                  More info: https://examples.k8s.io/volumes/iscsi/README.md
+                                properties:
+                                  chapAuthDiscovery:
+                                    description: chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication
+                                    type: boolean
+                                  chapAuthSession:
+                                    description: chapAuthSession defines whether support iSCSI Session CHAP authentication
+                                    type: boolean
+                                  fsType:
+                                    description: |-
+                                      fsType is the filesystem type of the volume that you want to mount.
+                                      Tip: Ensure that the filesystem type is supported by the host operating system.
+                                      Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
+                                      More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi
+                                      TODO: how do we prevent errors in the filesystem from compromising the machine
+                                    type: string
+                                  initiatorName:
+                                    description: |-
+                                      initiatorName is the custom iSCSI Initiator Name.
+                                      If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface
+                                      <target portal>:<volume name> will be created for the connection.
+                                    type: string
+                                  iqn:
+                                    description: iqn is the target iSCSI Qualified Name.
+                                    type: string
+                                  iscsiInterface:
+                                    description: |-
+                                      iscsiInterface is the interface Name that uses an iSCSI transport.
+                                      Defaults to 'default' (tcp).
+                                    type: string
+                                  lun:
+                                    description: lun represents iSCSI Target Lun number.
+                                    format: int32
+                                    type: integer
+                                  portals:
+                                    description: |-
+                                      portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the port
+                                      is other than default (typically TCP ports 860 and 3260).
+                                    items:
+                                      type: string
+                                    type: array
+                                    x-kubernetes-list-type: atomic
+                                  readOnly:
+                                    description: |-
+                                      readOnly here will force the ReadOnly setting in VolumeMounts.
+                                      Defaults to false.
+                                    type: boolean
+                                  secretRef:
+                                    description: secretRef is the CHAP Secret for iSCSI target and initiator authentication
+                                    properties:
+                                      name:
+                                        default: ""
+                                        description: |-
+                                          Name of the referent.
+                                          This field is effectively required, but due to backwards compatibility is
+                                          allowed to be empty. Instances of this type with an empty value here are
+                                          almost certainly wrong.
+                                          TODO: Add other useful fields. apiVersion, kind, uid?
+                                          More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+                                          TODO: Drop `kubebuilder:default` when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+                                        type: string
+                                    type: object
+                                    x-kubernetes-map-type: atomic
+                                  targetPortal:
+                                    description: |-
+                                      targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port
+                                      is other than default (typically TCP ports 860 and 3260).
+                                    type: string
+                                required:
+                                  - iqn
+                                  - lun
+                                  - targetPortal
+                                type: object
+                              name:
+                                description: |-
+                                  name of the volume.
+                                  Must be a DNS_LABEL and unique within the pod.
+                                  More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+                                type: string
+                              nfs:
+                                description: |-
+                                  nfs represents an NFS mount on the host that shares a pod's lifetime
+                                  More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+                                properties:
+                                  path:
+                                    description: |-
+                                      path that is exported by the NFS server.
+                                      More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+                                    type: string
+                                  readOnly:
+                                    description: |-
+                                      readOnly here will force the NFS export to be mounted with read-only permissions.
+                                      Defaults to false.
+                                      More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+                                    type: boolean
+                                  server:
+                                    description: |-
+                                      server is the hostname or IP address of the NFS server.
+                                      More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+                                    type: string
+                                required:
+                                  - path
+                                  - server
+                                type: object
+                              persistentVolumeClaim:
+                                description: |-
+                                  persistentVolumeClaimVolumeSource represents a reference to a
+                                  PersistentVolumeClaim in the same namespace.
+                                  More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
+                                properties:
+                                  claimName:
+                                    description: |-
+                                      claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.
+                                      More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
+                                    type: string
+                                  readOnly:
+                                    description: |-
+                                      readOnly Will force the ReadOnly setting in VolumeMounts.
+                                      Default false.
+                                    type: boolean
+                                required:
+                                  - claimName
+                                type: object
+                              photonPersistentDisk:
+                                description: photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine
+                                properties:
+                                  fsType:
+                                    description: |-
+                                      fsType is the filesystem type to mount.
+                                      Must be a filesystem type supported by the host operating system.
+                                      Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
+                                    type: string
+                                  pdID:
+                                    description: pdID is the ID that identifies Photon Controller persistent disk
+                                    type: string
+                                required:
+                                  - pdID
+                                type: object
+                              portworxVolume:
+                                description: portworxVolume represents a portworx volume attached and mounted on kubelets host machine
+                                properties:
+                                  fsType:
+                                    description: |-
+                                      fSType represents the filesystem type to mount
+                                      Must be a filesystem type supported by the host operating system.
+                                      Ex. "ext4", "xfs". Implicitly inferred to be "ext4" if unspecified.
+                                    type: string
+                                  readOnly:
+                                    description: |-
+                                      readOnly defaults to false (read/write). ReadOnly here will force
+                                      the ReadOnly setting in VolumeMounts.
+                                    type: boolean
+                                  volumeID:
+                                    description: volumeID uniquely identifies a Portworx volume
+                                    type: string
+                                required:
+                                  - volumeID
+                                type: object
+                              projected:
+                                description: projected items for all in one resources secrets, configmaps, and downward API
+                                properties:
+                                  defaultMode:
+                                    description: |-
+                                      defaultMode are the mode bits used to set permissions on created files by default.
+                                      Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.
+                                      YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.
+                                      Directories within the path are not affected by this setting.
+                                      This might be in conflict with other options that affect the file
+                                      mode, like fsGroup, and the result can be other mode bits set.
+                                    format: int32
+                                    type: integer
+                                  sources:
+                                    description: sources is the list of volume projections
+                                    items:
+                                      description: Projection that may be projected along with other supported volume types
+                                      properties:
+                                        clusterTrustBundle:
+                                          description: |-
+                                            ClusterTrustBundle allows a pod to access the `.spec.trustBundle` field
+                                            of ClusterTrustBundle objects in an auto-updating file.
+
+
+                                            Alpha, gated by the ClusterTrustBundleProjection feature gate.
+
+
+                                            ClusterTrustBundle objects can either be selected by name, or by the
+                                            combination of signer name and a label selector.
+
+
+                                            Kubelet performs aggressive normalization of the PEM contents written
+                                            into the pod filesystem.  Esoteric PEM features such as inter-block
+                                            comments and block headers are stripped.  Certificates are deduplicated.
+                                            The ordering of certificates within the file is arbitrary, and Kubelet
+                                            may change the order over time.
+                                          properties:
+                                            labelSelector:
+                                              description: |-
+                                                Select all ClusterTrustBundles that match this label selector.  Only has
+                                                effect if signerName is set.  Mutually-exclusive with name.  If unset,
+                                                interpreted as "match nothing".  If set but empty, interpreted as "match
+                                                everything".
+                                              properties:
+                                                matchExpressions:
+                                                  description: matchExpressions is a list of label selector requirements. The requirements are ANDed.
+                                                  items:
+                                                    description: |-
+                                                      A label selector requirement is a selector that contains values, a key, and an operator that
+                                                      relates the key and values.
+                                                    properties:
+                                                      key:
+                                                        description: key is the label key that the selector applies to.
+                                                        type: string
+                                                      operator:
+                                                        description: |-
+                                                          operator represents a key's relationship to a set of values.
+                                                          Valid operators are In, NotIn, Exists and DoesNotExist.
+                                                        type: string
+                                                      values:
+                                                        description: |-
+                                                          values is an array of string values. If the operator is In or NotIn,
+                                                          the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                          the values array must be empty. This array is replaced during a strategic
+                                                          merge patch.
+                                                        items:
+                                                          type: string
+                                                        type: array
+                                                        x-kubernetes-list-type: atomic
+                                                    required:
+                                                      - key
+                                                      - operator
+                                                    type: object
+                                                  type: array
+                                                  x-kubernetes-list-type: atomic
+                                                matchLabels:
+                                                  additionalProperties:
+                                                    type: string
+                                                  description: |-
+                                                    matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
+                                                    map is equivalent to an element of matchExpressions, whose key field is "key", the
+                                                    operator is "In", and the values array contains only "value". The requirements are ANDed.
+                                                  type: object
+                                              type: object
+                                              x-kubernetes-map-type: atomic
+                                            name:
+                                              description: |-
+                                                Select a single ClusterTrustBundle by object name.  Mutually-exclusive
+                                                with signerName and labelSelector.
+                                              type: string
+                                            optional:
+                                              description: |-
+                                                If true, don't block pod startup if the referenced ClusterTrustBundle(s)
+                                                aren't available.  If using name, then the named ClusterTrustBundle is
+                                                allowed not to exist.  If using signerName, then the combination of
+                                                signerName and labelSelector is allowed to match zero
+                                                ClusterTrustBundles.
+                                              type: boolean
+                                            path:
+                                              description: Relative path from the volume root to write the bundle.
+                                              type: string
+                                            signerName:
+                                              description: |-
+                                                Select all ClusterTrustBundles that match this signer name.
+                                                Mutually-exclusive with name.  The contents of all selected
+                                                ClusterTrustBundles will be unified and deduplicated.
+                                              type: string
+                                          required:
+                                            - path
+                                          type: object
+                                        configMap:
+                                          description: configMap information about the configMap data to project
+                                          properties:
+                                            items:
+                                              description: |-
+                                                items if unspecified, each key-value pair in the Data field of the referenced
+                                                ConfigMap will be projected into the volume as a file whose name is the
+                                                key and content is the value. If specified, the listed keys will be
+                                                projected into the specified paths, and unlisted keys will not be
+                                                present. If a key is specified which is not present in the ConfigMap,
+                                                the volume setup will error unless it is marked optional. Paths must be
+                                                relative and may not contain the '..' path or start with '..'.
+                                              items:
+                                                description: Maps a string key to a path within a volume.
+                                                properties:
+                                                  key:
+                                                    description: key is the key to project.
+                                                    type: string
+                                                  mode:
+                                                    description: |-
+                                                      mode is Optional: mode bits used to set permissions on this file.
+                                                      Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.
+                                                      YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.
+                                                      If not specified, the volume defaultMode will be used.
+                                                      This might be in conflict with other options that affect the file
+                                                      mode, like fsGroup, and the result can be other mode bits set.
+                                                    format: int32
+                                                    type: integer
+                                                  path:
+                                                    description: |-
+                                                      path is the relative path of the file to map the key to.
+                                                      May not be an absolute path.
+                                                      May not contain the path element '..'.
+                                                      May not start with the string '..'.
+                                                    type: string
+                                                required:
+                                                  - key
+                                                  - path
+                                                type: object
+                                              type: array
+                                              x-kubernetes-list-type: atomic
+                                            name:
+                                              default: ""
+                                              description: |-
+                                                Name of the referent.
+                                                This field is effectively required, but due to backwards compatibility is
+                                                allowed to be empty. Instances of this type with an empty value here are
+                                                almost certainly wrong.
+                                                TODO: Add other useful fields. apiVersion, kind, uid?
+                                                More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+                                                TODO: Drop `kubebuilder:default` when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+                                              type: string
+                                            optional:
+                                              description: optional specify whether the ConfigMap or its keys must be defined
+                                              type: boolean
+                                          type: object
+                                          x-kubernetes-map-type: atomic
+                                        downwardAPI:
+                                          description: downwardAPI information about the downwardAPI data to project
+                                          properties:
+                                            items:
+                                              description: Items is a list of DownwardAPIVolume file
+                                              items:
+                                                description: DownwardAPIVolumeFile represents information to create the file containing the pod field
+                                                properties:
+                                                  fieldRef:
+                                                    description: 'Required: Selects a field of the pod: only annotations, labels, name, namespace and uid are supported.'
+                                                    properties:
+                                                      apiVersion:
+                                                        description: Version of the schema the FieldPath is written in terms of, defaults to "v1".
+                                                        type: string
+                                                      fieldPath:
+                                                        description: Path of the field to select in the specified API version.
+                                                        type: string
+                                                    required:
+                                                      - fieldPath
+                                                    type: object
+                                                    x-kubernetes-map-type: atomic
+                                                  mode:
+                                                    description: |-
+                                                      Optional: mode bits used to set permissions on this file, must be an octal value
+                                                      between 0000 and 0777 or a decimal value between 0 and 511.
+                                                      YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.
+                                                      If not specified, the volume defaultMode will be used.
+                                                      This might be in conflict with other options that affect the file
+                                                      mode, like fsGroup, and the result can be other mode bits set.
+                                                    format: int32
+                                                    type: integer
+                                                  path:
+                                                    description: 'Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the ''..'' path. Must be utf-8 encoded. The first item of the relative path must not start with ''..'''
+                                                    type: string
+                                                  resourceFieldRef:
+                                                    description: |-
+                                                      Selects a resource of the container: only resources limits and requests
+                                                      (limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.
+                                                    properties:
+                                                      containerName:
+                                                        description: 'Container name: required for volumes, optional for env vars'
+                                                        type: string
+                                                      divisor:
+                                                        anyOf:
+                                                          - type: integer
+                                                          - type: string
+                                                        description: Specifies the output format of the exposed resources, defaults to "1"
+                                                        pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
+                                                        x-kubernetes-int-or-string: true
+                                                      resource:
+                                                        description: 'Required: resource to select'
+                                                        type: string
+                                                    required:
+                                                      - resource
+                                                    type: object
+                                                    x-kubernetes-map-type: atomic
+                                                required:
+                                                  - path
+                                                type: object
+                                              type: array
+                                              x-kubernetes-list-type: atomic
+                                          type: object
+                                        secret:
+                                          description: secret information about the secret data to project
+                                          properties:
+                                            items:
+                                              description: |-
+                                                items if unspecified, each key-value pair in the Data field of the referenced
+                                                Secret will be projected into the volume as a file whose name is the
+                                                key and content is the value. If specified, the listed keys will be
+                                                projected into the specified paths, and unlisted keys will not be
+                                                present. If a key is specified which is not present in the Secret,
+                                                the volume setup will error unless it is marked optional. Paths must be
+                                                relative and may not contain the '..' path or start with '..'.
+                                              items:
+                                                description: Maps a string key to a path within a volume.
+                                                properties:
+                                                  key:
+                                                    description: key is the key to project.
+                                                    type: string
+                                                  mode:
+                                                    description: |-
+                                                      mode is Optional: mode bits used to set permissions on this file.
+                                                      Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.
+                                                      YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.
+                                                      If not specified, the volume defaultMode will be used.
+                                                      This might be in conflict with other options that affect the file
+                                                      mode, like fsGroup, and the result can be other mode bits set.
+                                                    format: int32
+                                                    type: integer
+                                                  path:
+                                                    description: |-
+                                                      path is the relative path of the file to map the key to.
+                                                      May not be an absolute path.
+                                                      May not contain the path element '..'.
+                                                      May not start with the string '..'.
+                                                    type: string
+                                                required:
+                                                  - key
+                                                  - path
+                                                type: object
+                                              type: array
+                                              x-kubernetes-list-type: atomic
+                                            name:
+                                              default: ""
+                                              description: |-
+                                                Name of the referent.
+                                                This field is effectively required, but due to backwards compatibility is
+                                                allowed to be empty. Instances of this type with an empty value here are
+                                                almost certainly wrong.
+                                                TODO: Add other useful fields. apiVersion, kind, uid?
+                                                More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+                                                TODO: Drop `kubebuilder:default` when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+                                              type: string
+                                            optional:
+                                              description: optional field specify whether the Secret or its key must be defined
+                                              type: boolean
+                                          type: object
+                                          x-kubernetes-map-type: atomic
+                                        serviceAccountToken:
+                                          description: serviceAccountToken is information about the serviceAccountToken data to project
+                                          properties:
+                                            audience:
+                                              description: |-
+                                                audience is the intended audience of the token. A recipient of a token
+                                                must identify itself with an identifier specified in the audience of the
+                                                token, and otherwise should reject the token. The audience defaults to the
+                                                identifier of the apiserver.
+                                              type: string
+                                            expirationSeconds:
+                                              description: |-
+                                                expirationSeconds is the requested duration of validity of the service
+                                                account token. As the token approaches expiration, the kubelet volume
+                                                plugin will proactively rotate the service account token. The kubelet will
+                                                start trying to rotate the token if the token is older than 80 percent of
+                                                its time to live or if the token is older than 24 hours.Defaults to 1 hour
+                                                and must be at least 10 minutes.
+                                              format: int64
+                                              type: integer
+                                            path:
+                                              description: |-
+                                                path is the path relative to the mount point of the file to project the
+                                                token into.
+                                              type: string
+                                          required:
+                                            - path
+                                          type: object
+                                      type: object
+                                    type: array
+                                    x-kubernetes-list-type: atomic
+                                type: object
+                              quobyte:
+                                description: quobyte represents a Quobyte mount on the host that shares a pod's lifetime
+                                properties:
+                                  group:
+                                    description: |-
+                                      group to map volume access to
+                                      Default is no group
+                                    type: string
+                                  readOnly:
+                                    description: |-
+                                      readOnly here will force the Quobyte volume to be mounted with read-only permissions.
+                                      Defaults to false.
+                                    type: boolean
+                                  registry:
+                                    description: |-
+                                      registry represents a single or multiple Quobyte Registry services
+                                      specified as a string as host:port pair (multiple entries are separated with commas)
+                                      which acts as the central registry for volumes
+                                    type: string
+                                  tenant:
+                                    description: |-
+                                      tenant owning the given Quobyte volume in the Backend
+                                      Used with dynamically provisioned Quobyte volumes, value is set by the plugin
+                                    type: string
+                                  user:
+                                    description: |-
+                                      user to map volume access to
+                                      Defaults to serivceaccount user
+                                    type: string
+                                  volume:
+                                    description: volume is a string that references an already created Quobyte volume by name.
+                                    type: string
+                                required:
+                                  - registry
+                                  - volume
+                                type: object
+                              rbd:
+                                description: |-
+                                  rbd represents a Rados Block Device mount on the host that shares a pod's lifetime.
+                                  More info: https://examples.k8s.io/volumes/rbd/README.md
+                                properties:
+                                  fsType:
+                                    description: |-
+                                      fsType is the filesystem type of the volume that you want to mount.
+                                      Tip: Ensure that the filesystem type is supported by the host operating system.
+                                      Examples: "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
+                                      More info: https://kubernetes.io/docs/concepts/storage/volumes#rbd
+                                      TODO: how do we prevent errors in the filesystem from compromising the machine
+                                    type: string
+                                  image:
+                                    description: |-
+                                      image is the rados image name.
+                                      More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+                                    type: string
+                                  keyring:
+                                    description: |-
+                                      keyring is the path to key ring for RBDUser.
+                                      Default is /etc/ceph/keyring.
+                                      More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+                                    type: string
+                                  monitors:
+                                    description: |-
+                                      monitors is a collection of Ceph monitors.
+                                      More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+                                    items:
+                                      type: string
+                                    type: array
+                                    x-kubernetes-list-type: atomic
+                                  pool:
+                                    description: |-
+                                      pool is the rados pool name.
+                                      Default is rbd.
+                                      More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+                                    type: string
+                                  readOnly:
+                                    description: |-
+                                      readOnly here will force the ReadOnly setting in VolumeMounts.
+                                      Defaults to false.
+                                      More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+                                    type: boolean
+                                  secretRef:
+                                    description: |-
+                                      secretRef is name of the authentication secret for RBDUser. If provided
+                                      overrides keyring.
+                                      Default is nil.
+                                      More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+                                    properties:
+                                      name:
+                                        default: ""
+                                        description: |-
+                                          Name of the referent.
+                                          This field is effectively required, but due to backwards compatibility is
+                                          allowed to be empty. Instances of this type with an empty value here are
+                                          almost certainly wrong.
+                                          TODO: Add other useful fields. apiVersion, kind, uid?
+                                          More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+                                          TODO: Drop `kubebuilder:default` when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+                                        type: string
+                                    type: object
+                                    x-kubernetes-map-type: atomic
+                                  user:
+                                    description: |-
+                                      user is the rados user name.
+                                      Default is admin.
+                                      More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+                                    type: string
+                                required:
+                                  - image
+                                  - monitors
+                                type: object
+                              scaleIO:
+                                description: scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.
+                                properties:
+                                  fsType:
+                                    description: |-
+                                      fsType is the filesystem type to mount.
+                                      Must be a filesystem type supported by the host operating system.
+                                      Ex. "ext4", "xfs", "ntfs".
+                                      Default is "xfs".
+                                    type: string
+                                  gateway:
+                                    description: gateway is the host address of the ScaleIO API Gateway.
+                                    type: string
+                                  protectionDomain:
+                                    description: protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.
+                                    type: string
+                                  readOnly:
+                                    description: |-
+                                      readOnly Defaults to false (read/write). ReadOnly here will force
+                                      the ReadOnly setting in VolumeMounts.
+                                    type: boolean
+                                  secretRef:
+                                    description: |-
+                                      secretRef references to the secret for ScaleIO user and other
+                                      sensitive information. If this is not provided, Login operation will fail.
+                                    properties:
+                                      name:
+                                        default: ""
+                                        description: |-
+                                          Name of the referent.
+                                          This field is effectively required, but due to backwards compatibility is
+                                          allowed to be empty. Instances of this type with an empty value here are
+                                          almost certainly wrong.
+                                          TODO: Add other useful fields. apiVersion, kind, uid?
+                                          More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+                                          TODO: Drop `kubebuilder:default` when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+                                        type: string
+                                    type: object
+                                    x-kubernetes-map-type: atomic
+                                  sslEnabled:
+                                    description: sslEnabled Flag enable/disable SSL communication with Gateway, default false
+                                    type: boolean
+                                  storageMode:
+                                    description: |-
+                                      storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned.
+                                      Default is ThinProvisioned.
+                                    type: string
+                                  storagePool:
+                                    description: storagePool is the ScaleIO Storage Pool associated with the protection domain.
+                                    type: string
+                                  system:
+                                    description: system is the name of the storage system as configured in ScaleIO.
+                                    type: string
+                                  volumeName:
+                                    description: |-
+                                      volumeName is the name of a volume already created in the ScaleIO system
+                                      that is associated with this volume source.
+                                    type: string
+                                required:
+                                  - gateway
+                                  - secretRef
+                                  - system
+                                type: object
+                              secret:
+                                description: |-
+                                  secret represents a secret that should populate this volume.
+                                  More info: https://kubernetes.io/docs/concepts/storage/volumes#secret
+                                properties:
+                                  defaultMode:
+                                    description: |-
+                                      defaultMode is Optional: mode bits used to set permissions on created files by default.
+                                      Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.
+                                      YAML accepts both octal and decimal values, JSON requires decimal values
+                                      for mode bits. Defaults to 0644.
+                                      Directories within the path are not affected by this setting.
+                                      This might be in conflict with other options that affect the file
+                                      mode, like fsGroup, and the result can be other mode bits set.
+                                    format: int32
+                                    type: integer
+                                  items:
+                                    description: |-
+                                      items If unspecified, each key-value pair in the Data field of the referenced
+                                      Secret will be projected into the volume as a file whose name is the
+                                      key and content is the value. If specified, the listed keys will be
+                                      projected into the specified paths, and unlisted keys will not be
+                                      present. If a key is specified which is not present in the Secret,
+                                      the volume setup will error unless it is marked optional. Paths must be
+                                      relative and may not contain the '..' path or start with '..'.
+                                    items:
+                                      description: Maps a string key to a path within a volume.
+                                      properties:
+                                        key:
+                                          description: key is the key to project.
+                                          type: string
+                                        mode:
+                                          description: |-
+                                            mode is Optional: mode bits used to set permissions on this file.
+                                            Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.
+                                            YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.
+                                            If not specified, the volume defaultMode will be used.
+                                            This might be in conflict with other options that affect the file
+                                            mode, like fsGroup, and the result can be other mode bits set.
+                                          format: int32
+                                          type: integer
+                                        path:
+                                          description: |-
+                                            path is the relative path of the file to map the key to.
+                                            May not be an absolute path.
+                                            May not contain the path element '..'.
+                                            May not start with the string '..'.
+                                          type: string
+                                      required:
+                                        - key
+                                        - path
+                                      type: object
+                                    type: array
+                                    x-kubernetes-list-type: atomic
+                                  optional:
+                                    description: optional field specify whether the Secret or its keys must be defined
+                                    type: boolean
+                                  secretName:
+                                    description: |-
+                                      secretName is the name of the secret in the pod's namespace to use.
+                                      More info: https://kubernetes.io/docs/concepts/storage/volumes#secret
+                                    type: string
+                                type: object
+                              storageos:
+                                description: storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes.
+                                properties:
+                                  fsType:
+                                    description: |-
+                                      fsType is the filesystem type to mount.
+                                      Must be a filesystem type supported by the host operating system.
+                                      Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
+                                    type: string
+                                  readOnly:
+                                    description: |-
+                                      readOnly defaults to false (read/write). ReadOnly here will force
+                                      the ReadOnly setting in VolumeMounts.
+                                    type: boolean
+                                  secretRef:
+                                    description: |-
+                                      secretRef specifies the secret to use for obtaining the StorageOS API
+                                      credentials.  If not specified, default values will be attempted.
+                                    properties:
+                                      name:
+                                        default: ""
+                                        description: |-
+                                          Name of the referent.
+                                          This field is effectively required, but due to backwards compatibility is
+                                          allowed to be empty. Instances of this type with an empty value here are
+                                          almost certainly wrong.
+                                          TODO: Add other useful fields. apiVersion, kind, uid?
+                                          More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+                                          TODO: Drop `kubebuilder:default` when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+                                        type: string
+                                    type: object
+                                    x-kubernetes-map-type: atomic
+                                  volumeName:
+                                    description: |-
+                                      volumeName is the human-readable name of the StorageOS volume.  Volume
+                                      names are only unique within a namespace.
+                                    type: string
+                                  volumeNamespace:
+                                    description: |-
+                                      volumeNamespace specifies the scope of the volume within StorageOS.  If no
+                                      namespace is specified then the Pod's namespace will be used.  This allows the
+                                      Kubernetes name scoping to be mirrored within StorageOS for tighter integration.
+                                      Set VolumeName to any name to override the default behaviour.
+                                      Set to "default" if you are not using namespaces within StorageOS.
+                                      Namespaces that do not pre-exist within StorageOS will be created.
+                                    type: string
+                                type: object
+                              vsphereVolume:
+                                description: vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine
+                                properties:
+                                  fsType:
+                                    description: |-
+                                      fsType is filesystem type to mount.
+                                      Must be a filesystem type supported by the host operating system.
+                                      Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.
+                                    type: string
+                                  storagePolicyID:
+                                    description: storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.
+                                    type: string
+                                  storagePolicyName:
+                                    description: storagePolicyName is the storage Policy Based Management (SPBM) profile name.
+                                    type: string
+                                  volumePath:
+                                    description: volumePath is the path that identifies vSphere volume vmdk
+                                    type: string
+                                required:
+                                  - volumePath
+                                type: object
+                            required:
+                              - name
+                            type: object
+                          type: array
+                      type: object
+                    proxyHost:
+                      description: proxyHost sets the INSTANA_AGENT_PROXY_HOST environment variable.
+                      type: string
+                    proxyPassword:
+                      description: proxyPassword sets the INSTANA_AGENT_PROXY_PASSWORD environment variable.
+                      type: string
+                    proxyPort:
+                      description: proxyPort sets the INSTANA_AGENT_PROXY_PORT environment variable.
+                      type: string
+                    proxyProtocol:
+                      description: proxyProtocol sets the INSTANA_AGENT_PROXY_PROTOCOL environment variable.
+                      type: string
+                    proxyUseDNS:
+                      description: proxyUseDNS sets the INSTANA_AGENT_PROXY_USE_DNS environment variable.
+                      type: boolean
+                    proxyUser:
+                      description: proxyUser sets the INSTANA_AGENT_PROXY_USER environment variable.
+                      type: string
+                    redactKubernetesSecrets:
+                      description: RedactKubernetesSecrets sets the INSTANA_KUBERNETES_REDACT_SECRETS environment variable.
+                      type: string
+                    serviceMesh:
+                      description: ServiceMesh sets the ENABLE_AGENT_SOCKET environment variable.
+                      properties:
+                        enabled:
+                          type: boolean
+                      type: object
+                    tls:
+                      description: |-
+                        TLS for end-to-end encryption between the Instana Agent and clients accessing the Agent.
+                        The Instana Agent does not yet allow enforcing TLS encryption, enabling makes it possible for clients to 'opt-in'.
+                        So TLS is only enabled on a connection when requested by the client.
+                      properties:
+                        certificate:
+                          description: certificate (together with key) is the alternative to an existing Secret. Must be base64 encoded.
+                          format: byte
+                          type: string
+                        key:
+                          description: key (together with certificate) is the alternative to an existing Secret. Must be base64 encoded.
+                          format: byte
+                          type: string
+                        secretName:
+                          description: secretName is the name of the secret that has the relevant files.
+                          type: string
+                      type: object
+                    updateStrategy:
+                      description: Control how to update the Agent DaemonSet
+                      properties:
+                        rollingUpdate:
+                          description: |-
+                            Rolling update config params. Present only if type = "RollingUpdate".
+                            ---
+                            TODO: Update this to follow our convention for oneOf, whatever we decide it
+                            to be. Same as Deployment `strategy.rollingUpdate`.
+                            See https://github.com/kubernetes/kubernetes/issues/35345
+                          properties:
+                            maxSurge:
+                              anyOf:
+                                - type: integer
+                                - type: string
+                              description: |-
+                                The maximum number of nodes with an existing available DaemonSet pod that
+                                can have an updated DaemonSet pod during during an update.
+                                Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%).
+                                This can not be 0 if MaxUnavailable is 0.
+                                Absolute number is calculated from percentage by rounding up to a minimum of 1.
+                                Default value is 0.
+                                Example: when this is set to 30%, at most 30% of the total number of nodes
+                                that should be running the daemon pod (i.e. status.desiredNumberScheduled)
+                                can have their a new pod created before the old pod is marked as deleted.
+                                The update starts by launching new pods on 30% of nodes. Once an updated
+                                pod is available (Ready for at least minReadySeconds) the old DaemonSet pod
+                                on that node is marked deleted. If the old pod becomes unavailable for any
+                                reason (Ready transitions to false, is evicted, or is drained) an updated
+                                pod is immediatedly created on that node without considering surge limits.
+                                Allowing surge implies the possibility that the resources consumed by the
+                                daemonset on any given node can double if the readiness check fails, and
+                                so resource intensive daemonsets should take into account that they may
+                                cause evictions during disruption.
+                              x-kubernetes-int-or-string: true
+                            maxUnavailable:
+                              anyOf:
+                                - type: integer
+                                - type: string
+                              description: |-
+                                The maximum number of DaemonSet pods that can be unavailable during the
+                                update. Value can be an absolute number (ex: 5) or a percentage of total
+                                number of DaemonSet pods at the start of the update (ex: 10%). Absolute
+                                number is calculated from percentage by rounding up.
+                                This cannot be 0 if MaxSurge is 0
+                                Default value is 1.
+                                Example: when this is set to 30%, at most 30% of the total number of nodes
+                                that should be running the daemon pod (i.e. status.desiredNumberScheduled)
+                                can have their pods stopped for an update at any given time. The update
+                                starts by stopping at most 30% of those DaemonSet pods and then brings
+                                up new DaemonSet pods in their place. Once the new pods are available,
+                                it then proceeds onto other DaemonSet pods, thus ensuring that at least
+                                70% of original number of DaemonSet pods are available at all times during
+                                the update.
+                              x-kubernetes-int-or-string: true
+                          type: object
+                        type:
+                          description: Type of daemon set update. Can be "RollingUpdate" or "OnDelete". Default is RollingUpdate.
+                          type: string
+                      type: object
+                  required:
+                    - endpointHost
+                    - endpointPort
+                  type: object
+                cluster:
+                  description: |-
+                    Name of the cluster, that will be assigned to this cluster in Instana. Either specifying the 'cluster.name' or 'zone.name'
+                    is mandatory.
+                  properties:
+                    name:
+                      type: string
+                  type: object
+                k8s_sensor:
+                  properties:
+                    deployment:
+                      properties:
+                        enabled:
+                          type: boolean
+                        minReadySeconds:
+                          description: The minimum number of seconds for which a newly created Pod should be ready without any of its containers crashing, for it to be considered available
+                          type: integer
+                        pod:
+                          description: Override pod resource requirements for the Kubernetes Sensor pods.
+                          properties:
+                            affinity:
+                              description: |-
+                                agent.pod.affinity are affinities to influence agent pod assignment.
+                                https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/
+                              properties:
+                                nodeAffinity:
+                                  description: Describes node affinity scheduling rules for the pod.
+                                  properties:
+                                    preferredDuringSchedulingIgnoredDuringExecution:
+                                      description: |-
+                                        The scheduler will prefer to schedule pods to nodes that satisfy
+                                        the affinity expressions specified by this field, but it may choose
+                                        a node that violates one or more of the expressions. The node that is
+                                        most preferred is the one with the greatest sum of weights, i.e.
+                                        for each node that meets all of the scheduling requirements (resource
+                                        request, requiredDuringScheduling affinity expressions, etc.),
+                                        compute a sum by iterating through the elements of this field and adding
+                                        "weight" to the sum if the node matches the corresponding matchExpressions; the
+                                        node(s) with the highest sum are the most preferred.
+                                      items:
+                                        description: |-
+                                          An empty preferred scheduling term matches all objects with implicit weight 0
+                                          (i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).
+                                        properties:
+                                          preference:
+                                            description: A node selector term, associated with the corresponding weight.
+                                            properties:
+                                              matchExpressions:
+                                                description: A list of node selector requirements by node's labels.
+                                                items:
+                                                  description: |-
+                                                    A node selector requirement is a selector that contains values, a key, and an operator
+                                                    that relates the key and values.
+                                                  properties:
+                                                    key:
+                                                      description: The label key that the selector applies to.
+                                                      type: string
+                                                    operator:
+                                                      description: |-
+                                                        Represents a key's relationship to a set of values.
+                                                        Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
+                                                      type: string
+                                                    values:
+                                                      description: |-
+                                                        An array of string values. If the operator is In or NotIn,
+                                                        the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                        the values array must be empty. If the operator is Gt or Lt, the values
+                                                        array must have a single element, which will be interpreted as an integer.
+                                                        This array is replaced during a strategic merge patch.
+                                                      items:
+                                                        type: string
+                                                      type: array
+                                                      x-kubernetes-list-type: atomic
+                                                  required:
+                                                    - key
+                                                    - operator
+                                                  type: object
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                              matchFields:
+                                                description: A list of node selector requirements by node's fields.
+                                                items:
+                                                  description: |-
+                                                    A node selector requirement is a selector that contains values, a key, and an operator
+                                                    that relates the key and values.
+                                                  properties:
+                                                    key:
+                                                      description: The label key that the selector applies to.
+                                                      type: string
+                                                    operator:
+                                                      description: |-
+                                                        Represents a key's relationship to a set of values.
+                                                        Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
+                                                      type: string
+                                                    values:
+                                                      description: |-
+                                                        An array of string values. If the operator is In or NotIn,
+                                                        the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                        the values array must be empty. If the operator is Gt or Lt, the values
+                                                        array must have a single element, which will be interpreted as an integer.
+                                                        This array is replaced during a strategic merge patch.
+                                                      items:
+                                                        type: string
+                                                      type: array
+                                                      x-kubernetes-list-type: atomic
+                                                  required:
+                                                    - key
+                                                    - operator
+                                                  type: object
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                            type: object
+                                            x-kubernetes-map-type: atomic
+                                          weight:
+                                            description: Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.
+                                            format: int32
+                                            type: integer
+                                        required:
+                                          - preference
+                                          - weight
+                                        type: object
+                                      type: array
+                                      x-kubernetes-list-type: atomic
+                                    requiredDuringSchedulingIgnoredDuringExecution:
+                                      description: |-
+                                        If the affinity requirements specified by this field are not met at
+                                        scheduling time, the pod will not be scheduled onto the node.
+                                        If the affinity requirements specified by this field cease to be met
+                                        at some point during pod execution (e.g. due to an update), the system
+                                        may or may not try to eventually evict the pod from its node.
+                                      properties:
+                                        nodeSelectorTerms:
+                                          description: Required. A list of node selector terms. The terms are ORed.
+                                          items:
+                                            description: |-
+                                              A null or empty node selector term matches no objects. The requirements of
+                                              them are ANDed.
+                                              The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.
+                                            properties:
+                                              matchExpressions:
+                                                description: A list of node selector requirements by node's labels.
+                                                items:
+                                                  description: |-
+                                                    A node selector requirement is a selector that contains values, a key, and an operator
+                                                    that relates the key and values.
+                                                  properties:
+                                                    key:
+                                                      description: The label key that the selector applies to.
+                                                      type: string
+                                                    operator:
+                                                      description: |-
+                                                        Represents a key's relationship to a set of values.
+                                                        Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
+                                                      type: string
+                                                    values:
+                                                      description: |-
+                                                        An array of string values. If the operator is In or NotIn,
+                                                        the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                        the values array must be empty. If the operator is Gt or Lt, the values
+                                                        array must have a single element, which will be interpreted as an integer.
+                                                        This array is replaced during a strategic merge patch.
+                                                      items:
+                                                        type: string
+                                                      type: array
+                                                      x-kubernetes-list-type: atomic
+                                                  required:
+                                                    - key
+                                                    - operator
+                                                  type: object
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                              matchFields:
+                                                description: A list of node selector requirements by node's fields.
+                                                items:
+                                                  description: |-
+                                                    A node selector requirement is a selector that contains values, a key, and an operator
+                                                    that relates the key and values.
+                                                  properties:
+                                                    key:
+                                                      description: The label key that the selector applies to.
+                                                      type: string
+                                                    operator:
+                                                      description: |-
+                                                        Represents a key's relationship to a set of values.
+                                                        Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
+                                                      type: string
+                                                    values:
+                                                      description: |-
+                                                        An array of string values. If the operator is In or NotIn,
+                                                        the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                        the values array must be empty. If the operator is Gt or Lt, the values
+                                                        array must have a single element, which will be interpreted as an integer.
+                                                        This array is replaced during a strategic merge patch.
+                                                      items:
+                                                        type: string
+                                                      type: array
+                                                      x-kubernetes-list-type: atomic
+                                                  required:
+                                                    - key
+                                                    - operator
+                                                  type: object
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                            type: object
+                                            x-kubernetes-map-type: atomic
+                                          type: array
+                                          x-kubernetes-list-type: atomic
+                                      required:
+                                        - nodeSelectorTerms
+                                      type: object
+                                      x-kubernetes-map-type: atomic
+                                  type: object
+                                podAffinity:
+                                  description: Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).
+                                  properties:
+                                    preferredDuringSchedulingIgnoredDuringExecution:
+                                      description: |-
+                                        The scheduler will prefer to schedule pods to nodes that satisfy
+                                        the affinity expressions specified by this field, but it may choose
+                                        a node that violates one or more of the expressions. The node that is
+                                        most preferred is the one with the greatest sum of weights, i.e.
+                                        for each node that meets all of the scheduling requirements (resource
+                                        request, requiredDuringScheduling affinity expressions, etc.),
+                                        compute a sum by iterating through the elements of this field and adding
+                                        "weight" to the sum if the node has pods which matches the corresponding podAffinityTerm; the
+                                        node(s) with the highest sum are the most preferred.
+                                      items:
+                                        description: The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)
+                                        properties:
+                                          podAffinityTerm:
+                                            description: Required. A pod affinity term, associated with the corresponding weight.
+                                            properties:
+                                              labelSelector:
+                                                description: |-
+                                                  A label query over a set of resources, in this case pods.
+                                                  If it's null, this PodAffinityTerm matches with no Pods.
+                                                properties:
+                                                  matchExpressions:
+                                                    description: matchExpressions is a list of label selector requirements. The requirements are ANDed.
+                                                    items:
+                                                      description: |-
+                                                        A label selector requirement is a selector that contains values, a key, and an operator that
+                                                        relates the key and values.
+                                                      properties:
+                                                        key:
+                                                          description: key is the label key that the selector applies to.
+                                                          type: string
+                                                        operator:
+                                                          description: |-
+                                                            operator represents a key's relationship to a set of values.
+                                                            Valid operators are In, NotIn, Exists and DoesNotExist.
+                                                          type: string
+                                                        values:
+                                                          description: |-
+                                                            values is an array of string values. If the operator is In or NotIn,
+                                                            the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                            the values array must be empty. This array is replaced during a strategic
+                                                            merge patch.
+                                                          items:
+                                                            type: string
+                                                          type: array
+                                                          x-kubernetes-list-type: atomic
+                                                      required:
+                                                        - key
+                                                        - operator
+                                                      type: object
+                                                    type: array
+                                                    x-kubernetes-list-type: atomic
+                                                  matchLabels:
+                                                    additionalProperties:
+                                                      type: string
+                                                    description: |-
+                                                      matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
+                                                      map is equivalent to an element of matchExpressions, whose key field is "key", the
+                                                      operator is "In", and the values array contains only "value". The requirements are ANDed.
+                                                    type: object
+                                                type: object
+                                                x-kubernetes-map-type: atomic
+                                              matchLabelKeys:
+                                                description: |-
+                                                  MatchLabelKeys is a set of pod label keys to select which pods will
+                                                  be taken into consideration. The keys are used to lookup values from the
+                                                  incoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`
+                                                  to select the group of existing pods which pods will be taken into consideration
+                                                  for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming
+                                                  pod labels will be ignored. The default value is empty.
+                                                  The same key is forbidden to exist in both matchLabelKeys and labelSelector.
+                                                  Also, matchLabelKeys cannot be set when labelSelector isn't set.
+                                                  This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+                                                items:
+                                                  type: string
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                              mismatchLabelKeys:
+                                                description: |-
+                                                  MismatchLabelKeys is a set of pod label keys to select which pods will
+                                                  be taken into consideration. The keys are used to lookup values from the
+                                                  incoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`
+                                                  to select the group of existing pods which pods will be taken into consideration
+                                                  for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming
+                                                  pod labels will be ignored. The default value is empty.
+                                                  The same key is forbidden to exist in both mismatchLabelKeys and labelSelector.
+                                                  Also, mismatchLabelKeys cannot be set when labelSelector isn't set.
+                                                  This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+                                                items:
+                                                  type: string
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                              namespaceSelector:
+                                                description: |-
+                                                  A label query over the set of namespaces that the term applies to.
+                                                  The term is applied to the union of the namespaces selected by this field
+                                                  and the ones listed in the namespaces field.
+                                                  null selector and null or empty namespaces list means "this pod's namespace".
+                                                  An empty selector ({}) matches all namespaces.
+                                                properties:
+                                                  matchExpressions:
+                                                    description: matchExpressions is a list of label selector requirements. The requirements are ANDed.
+                                                    items:
+                                                      description: |-
+                                                        A label selector requirement is a selector that contains values, a key, and an operator that
+                                                        relates the key and values.
+                                                      properties:
+                                                        key:
+                                                          description: key is the label key that the selector applies to.
+                                                          type: string
+                                                        operator:
+                                                          description: |-
+                                                            operator represents a key's relationship to a set of values.
+                                                            Valid operators are In, NotIn, Exists and DoesNotExist.
+                                                          type: string
+                                                        values:
+                                                          description: |-
+                                                            values is an array of string values. If the operator is In or NotIn,
+                                                            the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                            the values array must be empty. This array is replaced during a strategic
+                                                            merge patch.
+                                                          items:
+                                                            type: string
+                                                          type: array
+                                                          x-kubernetes-list-type: atomic
+                                                      required:
+                                                        - key
+                                                        - operator
+                                                      type: object
+                                                    type: array
+                                                    x-kubernetes-list-type: atomic
+                                                  matchLabels:
+                                                    additionalProperties:
+                                                      type: string
+                                                    description: |-
+                                                      matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
+                                                      map is equivalent to an element of matchExpressions, whose key field is "key", the
+                                                      operator is "In", and the values array contains only "value". The requirements are ANDed.
+                                                    type: object
+                                                type: object
+                                                x-kubernetes-map-type: atomic
+                                              namespaces:
+                                                description: |-
+                                                  namespaces specifies a static list of namespace names that the term applies to.
+                                                  The term is applied to the union of the namespaces listed in this field
+                                                  and the ones selected by namespaceSelector.
+                                                  null or empty namespaces list and null namespaceSelector means "this pod's namespace".
+                                                items:
+                                                  type: string
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                              topologyKey:
+                                                description: |-
+                                                  This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching
+                                                  the labelSelector in the specified namespaces, where co-located is defined as running on a node
+                                                  whose value of the label with key topologyKey matches that of any node on which any of the
+                                                  selected pods is running.
+                                                  Empty topologyKey is not allowed.
+                                                type: string
+                                            required:
+                                              - topologyKey
+                                            type: object
+                                          weight:
+                                            description: |-
+                                              weight associated with matching the corresponding podAffinityTerm,
+                                              in the range 1-100.
+                                            format: int32
+                                            type: integer
+                                        required:
+                                          - podAffinityTerm
+                                          - weight
+                                        type: object
+                                      type: array
+                                      x-kubernetes-list-type: atomic
+                                    requiredDuringSchedulingIgnoredDuringExecution:
+                                      description: |-
+                                        If the affinity requirements specified by this field are not met at
+                                        scheduling time, the pod will not be scheduled onto the node.
+                                        If the affinity requirements specified by this field cease to be met
+                                        at some point during pod execution (e.g. due to a pod label update), the
+                                        system may or may not try to eventually evict the pod from its node.
+                                        When there are multiple elements, the lists of nodes corresponding to each
+                                        podAffinityTerm are intersected, i.e. all terms must be satisfied.
+                                      items:
+                                        description: |-
+                                          Defines a set of pods (namely those matching the labelSelector
+                                          relative to the given namespace(s)) that this pod should be
+                                          co-located (affinity) or not co-located (anti-affinity) with,
+                                          where co-located is defined as running on a node whose value of
+                                          the label with key <topologyKey> matches that of any node on which
+                                          a pod of the set of pods is running
+                                        properties:
+                                          labelSelector:
+                                            description: |-
+                                              A label query over a set of resources, in this case pods.
+                                              If it's null, this PodAffinityTerm matches with no Pods.
+                                            properties:
+                                              matchExpressions:
+                                                description: matchExpressions is a list of label selector requirements. The requirements are ANDed.
+                                                items:
+                                                  description: |-
+                                                    A label selector requirement is a selector that contains values, a key, and an operator that
+                                                    relates the key and values.
+                                                  properties:
+                                                    key:
+                                                      description: key is the label key that the selector applies to.
+                                                      type: string
+                                                    operator:
+                                                      description: |-
+                                                        operator represents a key's relationship to a set of values.
+                                                        Valid operators are In, NotIn, Exists and DoesNotExist.
+                                                      type: string
+                                                    values:
+                                                      description: |-
+                                                        values is an array of string values. If the operator is In or NotIn,
+                                                        the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                        the values array must be empty. This array is replaced during a strategic
+                                                        merge patch.
+                                                      items:
+                                                        type: string
+                                                      type: array
+                                                      x-kubernetes-list-type: atomic
+                                                  required:
+                                                    - key
+                                                    - operator
+                                                  type: object
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                              matchLabels:
+                                                additionalProperties:
+                                                  type: string
+                                                description: |-
+                                                  matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
+                                                  map is equivalent to an element of matchExpressions, whose key field is "key", the
+                                                  operator is "In", and the values array contains only "value". The requirements are ANDed.
+                                                type: object
+                                            type: object
+                                            x-kubernetes-map-type: atomic
+                                          matchLabelKeys:
+                                            description: |-
+                                              MatchLabelKeys is a set of pod label keys to select which pods will
+                                              be taken into consideration. The keys are used to lookup values from the
+                                              incoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`
+                                              to select the group of existing pods which pods will be taken into consideration
+                                              for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming
+                                              pod labels will be ignored. The default value is empty.
+                                              The same key is forbidden to exist in both matchLabelKeys and labelSelector.
+                                              Also, matchLabelKeys cannot be set when labelSelector isn't set.
+                                              This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+                                            items:
+                                              type: string
+                                            type: array
+                                            x-kubernetes-list-type: atomic
+                                          mismatchLabelKeys:
+                                            description: |-
+                                              MismatchLabelKeys is a set of pod label keys to select which pods will
+                                              be taken into consideration. The keys are used to lookup values from the
+                                              incoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`
+                                              to select the group of existing pods which pods will be taken into consideration
+                                              for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming
+                                              pod labels will be ignored. The default value is empty.
+                                              The same key is forbidden to exist in both mismatchLabelKeys and labelSelector.
+                                              Also, mismatchLabelKeys cannot be set when labelSelector isn't set.
+                                              This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+                                            items:
+                                              type: string
+                                            type: array
+                                            x-kubernetes-list-type: atomic
+                                          namespaceSelector:
+                                            description: |-
+                                              A label query over the set of namespaces that the term applies to.
+                                              The term is applied to the union of the namespaces selected by this field
+                                              and the ones listed in the namespaces field.
+                                              null selector and null or empty namespaces list means "this pod's namespace".
+                                              An empty selector ({}) matches all namespaces.
+                                            properties:
+                                              matchExpressions:
+                                                description: matchExpressions is a list of label selector requirements. The requirements are ANDed.
+                                                items:
+                                                  description: |-
+                                                    A label selector requirement is a selector that contains values, a key, and an operator that
+                                                    relates the key and values.
+                                                  properties:
+                                                    key:
+                                                      description: key is the label key that the selector applies to.
+                                                      type: string
+                                                    operator:
+                                                      description: |-
+                                                        operator represents a key's relationship to a set of values.
+                                                        Valid operators are In, NotIn, Exists and DoesNotExist.
+                                                      type: string
+                                                    values:
+                                                      description: |-
+                                                        values is an array of string values. If the operator is In or NotIn,
+                                                        the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                        the values array must be empty. This array is replaced during a strategic
+                                                        merge patch.
+                                                      items:
+                                                        type: string
+                                                      type: array
+                                                      x-kubernetes-list-type: atomic
+                                                  required:
+                                                    - key
+                                                    - operator
+                                                  type: object
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                              matchLabels:
+                                                additionalProperties:
+                                                  type: string
+                                                description: |-
+                                                  matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
+                                                  map is equivalent to an element of matchExpressions, whose key field is "key", the
+                                                  operator is "In", and the values array contains only "value". The requirements are ANDed.
+                                                type: object
+                                            type: object
+                                            x-kubernetes-map-type: atomic
+                                          namespaces:
+                                            description: |-
+                                              namespaces specifies a static list of namespace names that the term applies to.
+                                              The term is applied to the union of the namespaces listed in this field
+                                              and the ones selected by namespaceSelector.
+                                              null or empty namespaces list and null namespaceSelector means "this pod's namespace".
+                                            items:
+                                              type: string
+                                            type: array
+                                            x-kubernetes-list-type: atomic
+                                          topologyKey:
+                                            description: |-
+                                              This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching
+                                              the labelSelector in the specified namespaces, where co-located is defined as running on a node
+                                              whose value of the label with key topologyKey matches that of any node on which any of the
+                                              selected pods is running.
+                                              Empty topologyKey is not allowed.
+                                            type: string
+                                        required:
+                                          - topologyKey
+                                        type: object
+                                      type: array
+                                      x-kubernetes-list-type: atomic
+                                  type: object
+                                podAntiAffinity:
+                                  description: Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).
+                                  properties:
+                                    preferredDuringSchedulingIgnoredDuringExecution:
+                                      description: |-
+                                        The scheduler will prefer to schedule pods to nodes that satisfy
+                                        the anti-affinity expressions specified by this field, but it may choose
+                                        a node that violates one or more of the expressions. The node that is
+                                        most preferred is the one with the greatest sum of weights, i.e.
+                                        for each node that meets all of the scheduling requirements (resource
+                                        request, requiredDuringScheduling anti-affinity expressions, etc.),
+                                        compute a sum by iterating through the elements of this field and adding
+                                        "weight" to the sum if the node has pods which matches the corresponding podAffinityTerm; the
+                                        node(s) with the highest sum are the most preferred.
+                                      items:
+                                        description: The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)
+                                        properties:
+                                          podAffinityTerm:
+                                            description: Required. A pod affinity term, associated with the corresponding weight.
+                                            properties:
+                                              labelSelector:
+                                                description: |-
+                                                  A label query over a set of resources, in this case pods.
+                                                  If it's null, this PodAffinityTerm matches with no Pods.
+                                                properties:
+                                                  matchExpressions:
+                                                    description: matchExpressions is a list of label selector requirements. The requirements are ANDed.
+                                                    items:
+                                                      description: |-
+                                                        A label selector requirement is a selector that contains values, a key, and an operator that
+                                                        relates the key and values.
+                                                      properties:
+                                                        key:
+                                                          description: key is the label key that the selector applies to.
+                                                          type: string
+                                                        operator:
+                                                          description: |-
+                                                            operator represents a key's relationship to a set of values.
+                                                            Valid operators are In, NotIn, Exists and DoesNotExist.
+                                                          type: string
+                                                        values:
+                                                          description: |-
+                                                            values is an array of string values. If the operator is In or NotIn,
+                                                            the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                            the values array must be empty. This array is replaced during a strategic
+                                                            merge patch.
+                                                          items:
+                                                            type: string
+                                                          type: array
+                                                          x-kubernetes-list-type: atomic
+                                                      required:
+                                                        - key
+                                                        - operator
+                                                      type: object
+                                                    type: array
+                                                    x-kubernetes-list-type: atomic
+                                                  matchLabels:
+                                                    additionalProperties:
+                                                      type: string
+                                                    description: |-
+                                                      matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
+                                                      map is equivalent to an element of matchExpressions, whose key field is "key", the
+                                                      operator is "In", and the values array contains only "value". The requirements are ANDed.
+                                                    type: object
+                                                type: object
+                                                x-kubernetes-map-type: atomic
+                                              matchLabelKeys:
+                                                description: |-
+                                                  MatchLabelKeys is a set of pod label keys to select which pods will
+                                                  be taken into consideration. The keys are used to lookup values from the
+                                                  incoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`
+                                                  to select the group of existing pods which pods will be taken into consideration
+                                                  for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming
+                                                  pod labels will be ignored. The default value is empty.
+                                                  The same key is forbidden to exist in both matchLabelKeys and labelSelector.
+                                                  Also, matchLabelKeys cannot be set when labelSelector isn't set.
+                                                  This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+                                                items:
+                                                  type: string
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                              mismatchLabelKeys:
+                                                description: |-
+                                                  MismatchLabelKeys is a set of pod label keys to select which pods will
+                                                  be taken into consideration. The keys are used to lookup values from the
+                                                  incoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`
+                                                  to select the group of existing pods which pods will be taken into consideration
+                                                  for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming
+                                                  pod labels will be ignored. The default value is empty.
+                                                  The same key is forbidden to exist in both mismatchLabelKeys and labelSelector.
+                                                  Also, mismatchLabelKeys cannot be set when labelSelector isn't set.
+                                                  This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+                                                items:
+                                                  type: string
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                              namespaceSelector:
+                                                description: |-
+                                                  A label query over the set of namespaces that the term applies to.
+                                                  The term is applied to the union of the namespaces selected by this field
+                                                  and the ones listed in the namespaces field.
+                                                  null selector and null or empty namespaces list means "this pod's namespace".
+                                                  An empty selector ({}) matches all namespaces.
+                                                properties:
+                                                  matchExpressions:
+                                                    description: matchExpressions is a list of label selector requirements. The requirements are ANDed.
+                                                    items:
+                                                      description: |-
+                                                        A label selector requirement is a selector that contains values, a key, and an operator that
+                                                        relates the key and values.
+                                                      properties:
+                                                        key:
+                                                          description: key is the label key that the selector applies to.
+                                                          type: string
+                                                        operator:
+                                                          description: |-
+                                                            operator represents a key's relationship to a set of values.
+                                                            Valid operators are In, NotIn, Exists and DoesNotExist.
+                                                          type: string
+                                                        values:
+                                                          description: |-
+                                                            values is an array of string values. If the operator is In or NotIn,
+                                                            the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                            the values array must be empty. This array is replaced during a strategic
+                                                            merge patch.
+                                                          items:
+                                                            type: string
+                                                          type: array
+                                                          x-kubernetes-list-type: atomic
+                                                      required:
+                                                        - key
+                                                        - operator
+                                                      type: object
+                                                    type: array
+                                                    x-kubernetes-list-type: atomic
+                                                  matchLabels:
+                                                    additionalProperties:
+                                                      type: string
+                                                    description: |-
+                                                      matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
+                                                      map is equivalent to an element of matchExpressions, whose key field is "key", the
+                                                      operator is "In", and the values array contains only "value". The requirements are ANDed.
+                                                    type: object
+                                                type: object
+                                                x-kubernetes-map-type: atomic
+                                              namespaces:
+                                                description: |-
+                                                  namespaces specifies a static list of namespace names that the term applies to.
+                                                  The term is applied to the union of the namespaces listed in this field
+                                                  and the ones selected by namespaceSelector.
+                                                  null or empty namespaces list and null namespaceSelector means "this pod's namespace".
+                                                items:
+                                                  type: string
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                              topologyKey:
+                                                description: |-
+                                                  This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching
+                                                  the labelSelector in the specified namespaces, where co-located is defined as running on a node
+                                                  whose value of the label with key topologyKey matches that of any node on which any of the
+                                                  selected pods is running.
+                                                  Empty topologyKey is not allowed.
+                                                type: string
+                                            required:
+                                              - topologyKey
+                                            type: object
+                                          weight:
+                                            description: |-
+                                              weight associated with matching the corresponding podAffinityTerm,
+                                              in the range 1-100.
+                                            format: int32
+                                            type: integer
+                                        required:
+                                          - podAffinityTerm
+                                          - weight
+                                        type: object
+                                      type: array
+                                      x-kubernetes-list-type: atomic
+                                    requiredDuringSchedulingIgnoredDuringExecution:
+                                      description: |-
+                                        If the anti-affinity requirements specified by this field are not met at
+                                        scheduling time, the pod will not be scheduled onto the node.
+                                        If the anti-affinity requirements specified by this field cease to be met
+                                        at some point during pod execution (e.g. due to a pod label update), the
+                                        system may or may not try to eventually evict the pod from its node.
+                                        When there are multiple elements, the lists of nodes corresponding to each
+                                        podAffinityTerm are intersected, i.e. all terms must be satisfied.
+                                      items:
+                                        description: |-
+                                          Defines a set of pods (namely those matching the labelSelector
+                                          relative to the given namespace(s)) that this pod should be
+                                          co-located (affinity) or not co-located (anti-affinity) with,
+                                          where co-located is defined as running on a node whose value of
+                                          the label with key <topologyKey> matches that of any node on which
+                                          a pod of the set of pods is running
+                                        properties:
+                                          labelSelector:
+                                            description: |-
+                                              A label query over a set of resources, in this case pods.
+                                              If it's null, this PodAffinityTerm matches with no Pods.
+                                            properties:
+                                              matchExpressions:
+                                                description: matchExpressions is a list of label selector requirements. The requirements are ANDed.
+                                                items:
+                                                  description: |-
+                                                    A label selector requirement is a selector that contains values, a key, and an operator that
+                                                    relates the key and values.
+                                                  properties:
+                                                    key:
+                                                      description: key is the label key that the selector applies to.
+                                                      type: string
+                                                    operator:
+                                                      description: |-
+                                                        operator represents a key's relationship to a set of values.
+                                                        Valid operators are In, NotIn, Exists and DoesNotExist.
+                                                      type: string
+                                                    values:
+                                                      description: |-
+                                                        values is an array of string values. If the operator is In or NotIn,
+                                                        the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                        the values array must be empty. This array is replaced during a strategic
+                                                        merge patch.
+                                                      items:
+                                                        type: string
+                                                      type: array
+                                                      x-kubernetes-list-type: atomic
+                                                  required:
+                                                    - key
+                                                    - operator
+                                                  type: object
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                              matchLabels:
+                                                additionalProperties:
+                                                  type: string
+                                                description: |-
+                                                  matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
+                                                  map is equivalent to an element of matchExpressions, whose key field is "key", the
+                                                  operator is "In", and the values array contains only "value". The requirements are ANDed.
+                                                type: object
+                                            type: object
+                                            x-kubernetes-map-type: atomic
+                                          matchLabelKeys:
+                                            description: |-
+                                              MatchLabelKeys is a set of pod label keys to select which pods will
+                                              be taken into consideration. The keys are used to lookup values from the
+                                              incoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`
+                                              to select the group of existing pods which pods will be taken into consideration
+                                              for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming
+                                              pod labels will be ignored. The default value is empty.
+                                              The same key is forbidden to exist in both matchLabelKeys and labelSelector.
+                                              Also, matchLabelKeys cannot be set when labelSelector isn't set.
+                                              This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+                                            items:
+                                              type: string
+                                            type: array
+                                            x-kubernetes-list-type: atomic
+                                          mismatchLabelKeys:
+                                            description: |-
+                                              MismatchLabelKeys is a set of pod label keys to select which pods will
+                                              be taken into consideration. The keys are used to lookup values from the
+                                              incoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`
+                                              to select the group of existing pods which pods will be taken into consideration
+                                              for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming
+                                              pod labels will be ignored. The default value is empty.
+                                              The same key is forbidden to exist in both mismatchLabelKeys and labelSelector.
+                                              Also, mismatchLabelKeys cannot be set when labelSelector isn't set.
+                                              This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+                                            items:
+                                              type: string
+                                            type: array
+                                            x-kubernetes-list-type: atomic
+                                          namespaceSelector:
+                                            description: |-
+                                              A label query over the set of namespaces that the term applies to.
+                                              The term is applied to the union of the namespaces selected by this field
+                                              and the ones listed in the namespaces field.
+                                              null selector and null or empty namespaces list means "this pod's namespace".
+                                              An empty selector ({}) matches all namespaces.
+                                            properties:
+                                              matchExpressions:
+                                                description: matchExpressions is a list of label selector requirements. The requirements are ANDed.
+                                                items:
+                                                  description: |-
+                                                    A label selector requirement is a selector that contains values, a key, and an operator that
+                                                    relates the key and values.
+                                                  properties:
+                                                    key:
+                                                      description: key is the label key that the selector applies to.
+                                                      type: string
+                                                    operator:
+                                                      description: |-
+                                                        operator represents a key's relationship to a set of values.
+                                                        Valid operators are In, NotIn, Exists and DoesNotExist.
+                                                      type: string
+                                                    values:
+                                                      description: |-
+                                                        values is an array of string values. If the operator is In or NotIn,
+                                                        the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                        the values array must be empty. This array is replaced during a strategic
+                                                        merge patch.
+                                                      items:
+                                                        type: string
+                                                      type: array
+                                                      x-kubernetes-list-type: atomic
+                                                  required:
+                                                    - key
+                                                    - operator
+                                                  type: object
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                              matchLabels:
+                                                additionalProperties:
+                                                  type: string
+                                                description: |-
+                                                  matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
+                                                  map is equivalent to an element of matchExpressions, whose key field is "key", the
+                                                  operator is "In", and the values array contains only "value". The requirements are ANDed.
+                                                type: object
+                                            type: object
+                                            x-kubernetes-map-type: atomic
+                                          namespaces:
+                                            description: |-
+                                              namespaces specifies a static list of namespace names that the term applies to.
+                                              The term is applied to the union of the namespaces listed in this field
+                                              and the ones selected by namespaceSelector.
+                                              null or empty namespaces list and null namespaceSelector means "this pod's namespace".
+                                            items:
+                                              type: string
+                                            type: array
+                                            x-kubernetes-list-type: atomic
+                                          topologyKey:
+                                            description: |-
+                                              This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching
+                                              the labelSelector in the specified namespaces, where co-located is defined as running on a node
+                                              whose value of the label with key topologyKey matches that of any node on which any of the
+                                              selected pods is running.
+                                              Empty topologyKey is not allowed.
+                                            type: string
+                                        required:
+                                          - topologyKey
+                                        type: object
+                                      type: array
+                                      x-kubernetes-list-type: atomic
+                                  type: object
+                              type: object
+                            claims:
+                              description: |-
+                                Claims lists the names of resources, defined in spec.resourceClaims,
+                                that are used by this container.
+
+
+                                This is an alpha field and requires enabling the
+                                DynamicResourceAllocation feature gate.
+
+
+                                This field is immutable. It can only be set for containers.
+                              items:
+                                description: ResourceClaim references one entry in PodSpec.ResourceClaims.
+                                properties:
+                                  name:
+                                    description: |-
+                                      Name must match the name of one entry in pod.spec.resourceClaims of
+                                      the Pod where this field is used. It makes that resource available
+                                      inside a container.
+                                    type: string
+                                required:
+                                  - name
+                                type: object
+                              type: array
+                              x-kubernetes-list-map-keys:
+                                - name
+                              x-kubernetes-list-type: map
+                            limits:
+                              additionalProperties:
+                                anyOf:
+                                  - type: integer
+                                  - type: string
+                                pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
+                                x-kubernetes-int-or-string: true
+                              description: |-
+                                Limits describes the maximum amount of compute resources allowed.
+                                More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+                              type: object
+                            nodeSelector:
+                              additionalProperties:
+                                type: string
+                              type: object
+                            priorityClassName:
+                              type: string
+                            requests:
+                              additionalProperties:
+                                anyOf:
+                                  - type: integer
+                                  - type: string
+                                pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
+                                x-kubernetes-int-or-string: true
+                              description: |-
+                                Requests describes the minimum amount of compute resources required.
+                                If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,
+                                otherwise to an implementation-defined value. Requests cannot exceed Limits.
+                                More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+                              type: object
+                            tolerations:
+                              description: agent.pod.tolerations are tolerations to influence agent pod assignment.
+                              items:
+                                description: |-
+                                  The pod this Toleration is attached to tolerates any taint that matches
+                                  the triple <key,value,effect> using the matching operator <operator>.
+                                properties:
+                                  effect:
+                                    description: |-
+                                      Effect indicates the taint effect to match. Empty means match all taint effects.
+                                      When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.
+                                    type: string
+                                  key:
+                                    description: |-
+                                      Key is the taint key that the toleration applies to. Empty means match all taint keys.
+                                      If the key is empty, operator must be Exists; this combination means to match all values and all keys.
+                                    type: string
+                                  operator:
+                                    description: |-
+                                      Operator represents a key's relationship to the value.
+                                      Valid operators are Exists and Equal. Defaults to Equal.
+                                      Exists is equivalent to wildcard for value, so that a pod can
+                                      tolerate all taints of a particular category.
+                                    type: string
+                                  tolerationSeconds:
+                                    description: |-
+                                      TolerationSeconds represents the period of time the toleration (which must be
+                                      of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,
+                                      it is not set, which means tolerate the taint forever (do not evict). Zero and
+                                      negative values will be treated as 0 (evict immediately) by the system.
+                                    format: int64
+                                    type: integer
+                                  value:
+                                    description: |-
+                                      Value is the taint value the toleration matches to.
+                                      If the operator is Exists, the value should be empty, otherwise just a regular string.
+                                    type: string
+                                type: object
+                              type: array
+                          type: object
+                        replicas:
+                          description: Specify the number of replicas for the Kubernetes Sensor.
+                          type: integer
+                      type: object
+                    image:
+                      properties:
+                        digest:
+                          description: |-
+                            Digest (a.k.a. Image ID) of the agent container image. If specified, it has priority over `agent.image.tag`,
+                            which will then be ignored.
+                          type: string
+                        name:
+                          description: Name is the name of the container image of the Instana agent.
+                          type: string
+                        pullPolicy:
+                          description: PullPolicy specifies when to pull the image container.
+                          type: string
+                        tag:
+                          description: Tag is the name of the agent container image; if `agent.image.digest` is specified, this property is ignored.
+                          type: string
+                      type: object
+                    podDisruptionBudget:
+                      description: Toggles the PDB for the K8s Sensor
+                      properties:
+                        enabled:
+                          type: boolean
+                      type: object
+                  type: object
+                kubernetes:
+                  description: |-
+                    Allows for installment of the Kubernetes Sensor as separate pod. Which allows for better tailored resource settings
+                    (mainly memory) both for the Agent pods and the Kubernetes Sensor pod.
+                  properties:
+                    deployment:
+                      properties:
+                        enabled:
+                          type: boolean
+                        minReadySeconds:
+                          description: The minimum number of seconds for which a newly created Pod should be ready without any of its containers crashing, for it to be considered available
+                          type: integer
+                        pod:
+                          description: Override pod resource requirements for the Kubernetes Sensor pods.
+                          properties:
+                            affinity:
+                              description: |-
+                                agent.pod.affinity are affinities to influence agent pod assignment.
+                                https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/
+                              properties:
+                                nodeAffinity:
+                                  description: Describes node affinity scheduling rules for the pod.
+                                  properties:
+                                    preferredDuringSchedulingIgnoredDuringExecution:
+                                      description: |-
+                                        The scheduler will prefer to schedule pods to nodes that satisfy
+                                        the affinity expressions specified by this field, but it may choose
+                                        a node that violates one or more of the expressions. The node that is
+                                        most preferred is the one with the greatest sum of weights, i.e.
+                                        for each node that meets all of the scheduling requirements (resource
+                                        request, requiredDuringScheduling affinity expressions, etc.),
+                                        compute a sum by iterating through the elements of this field and adding
+                                        "weight" to the sum if the node matches the corresponding matchExpressions; the
+                                        node(s) with the highest sum are the most preferred.
+                                      items:
+                                        description: |-
+                                          An empty preferred scheduling term matches all objects with implicit weight 0
+                                          (i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).
+                                        properties:
+                                          preference:
+                                            description: A node selector term, associated with the corresponding weight.
+                                            properties:
+                                              matchExpressions:
+                                                description: A list of node selector requirements by node's labels.
+                                                items:
+                                                  description: |-
+                                                    A node selector requirement is a selector that contains values, a key, and an operator
+                                                    that relates the key and values.
+                                                  properties:
+                                                    key:
+                                                      description: The label key that the selector applies to.
+                                                      type: string
+                                                    operator:
+                                                      description: |-
+                                                        Represents a key's relationship to a set of values.
+                                                        Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
+                                                      type: string
+                                                    values:
+                                                      description: |-
+                                                        An array of string values. If the operator is In or NotIn,
+                                                        the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                        the values array must be empty. If the operator is Gt or Lt, the values
+                                                        array must have a single element, which will be interpreted as an integer.
+                                                        This array is replaced during a strategic merge patch.
+                                                      items:
+                                                        type: string
+                                                      type: array
+                                                      x-kubernetes-list-type: atomic
+                                                  required:
+                                                    - key
+                                                    - operator
+                                                  type: object
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                              matchFields:
+                                                description: A list of node selector requirements by node's fields.
+                                                items:
+                                                  description: |-
+                                                    A node selector requirement is a selector that contains values, a key, and an operator
+                                                    that relates the key and values.
+                                                  properties:
+                                                    key:
+                                                      description: The label key that the selector applies to.
+                                                      type: string
+                                                    operator:
+                                                      description: |-
+                                                        Represents a key's relationship to a set of values.
+                                                        Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
+                                                      type: string
+                                                    values:
+                                                      description: |-
+                                                        An array of string values. If the operator is In or NotIn,
+                                                        the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                        the values array must be empty. If the operator is Gt or Lt, the values
+                                                        array must have a single element, which will be interpreted as an integer.
+                                                        This array is replaced during a strategic merge patch.
+                                                      items:
+                                                        type: string
+                                                      type: array
+                                                      x-kubernetes-list-type: atomic
+                                                  required:
+                                                    - key
+                                                    - operator
+                                                  type: object
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                            type: object
+                                            x-kubernetes-map-type: atomic
+                                          weight:
+                                            description: Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.
+                                            format: int32
+                                            type: integer
+                                        required:
+                                          - preference
+                                          - weight
+                                        type: object
+                                      type: array
+                                      x-kubernetes-list-type: atomic
+                                    requiredDuringSchedulingIgnoredDuringExecution:
+                                      description: |-
+                                        If the affinity requirements specified by this field are not met at
+                                        scheduling time, the pod will not be scheduled onto the node.
+                                        If the affinity requirements specified by this field cease to be met
+                                        at some point during pod execution (e.g. due to an update), the system
+                                        may or may not try to eventually evict the pod from its node.
+                                      properties:
+                                        nodeSelectorTerms:
+                                          description: Required. A list of node selector terms. The terms are ORed.
+                                          items:
+                                            description: |-
+                                              A null or empty node selector term matches no objects. The requirements of
+                                              them are ANDed.
+                                              The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.
+                                            properties:
+                                              matchExpressions:
+                                                description: A list of node selector requirements by node's labels.
+                                                items:
+                                                  description: |-
+                                                    A node selector requirement is a selector that contains values, a key, and an operator
+                                                    that relates the key and values.
+                                                  properties:
+                                                    key:
+                                                      description: The label key that the selector applies to.
+                                                      type: string
+                                                    operator:
+                                                      description: |-
+                                                        Represents a key's relationship to a set of values.
+                                                        Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
+                                                      type: string
+                                                    values:
+                                                      description: |-
+                                                        An array of string values. If the operator is In or NotIn,
+                                                        the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                        the values array must be empty. If the operator is Gt or Lt, the values
+                                                        array must have a single element, which will be interpreted as an integer.
+                                                        This array is replaced during a strategic merge patch.
+                                                      items:
+                                                        type: string
+                                                      type: array
+                                                      x-kubernetes-list-type: atomic
+                                                  required:
+                                                    - key
+                                                    - operator
+                                                  type: object
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                              matchFields:
+                                                description: A list of node selector requirements by node's fields.
+                                                items:
+                                                  description: |-
+                                                    A node selector requirement is a selector that contains values, a key, and an operator
+                                                    that relates the key and values.
+                                                  properties:
+                                                    key:
+                                                      description: The label key that the selector applies to.
+                                                      type: string
+                                                    operator:
+                                                      description: |-
+                                                        Represents a key's relationship to a set of values.
+                                                        Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
+                                                      type: string
+                                                    values:
+                                                      description: |-
+                                                        An array of string values. If the operator is In or NotIn,
+                                                        the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                        the values array must be empty. If the operator is Gt or Lt, the values
+                                                        array must have a single element, which will be interpreted as an integer.
+                                                        This array is replaced during a strategic merge patch.
+                                                      items:
+                                                        type: string
+                                                      type: array
+                                                      x-kubernetes-list-type: atomic
+                                                  required:
+                                                    - key
+                                                    - operator
+                                                  type: object
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                            type: object
+                                            x-kubernetes-map-type: atomic
+                                          type: array
+                                          x-kubernetes-list-type: atomic
+                                      required:
+                                        - nodeSelectorTerms
+                                      type: object
+                                      x-kubernetes-map-type: atomic
+                                  type: object
+                                podAffinity:
+                                  description: Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).
+                                  properties:
+                                    preferredDuringSchedulingIgnoredDuringExecution:
+                                      description: |-
+                                        The scheduler will prefer to schedule pods to nodes that satisfy
+                                        the affinity expressions specified by this field, but it may choose
+                                        a node that violates one or more of the expressions. The node that is
+                                        most preferred is the one with the greatest sum of weights, i.e.
+                                        for each node that meets all of the scheduling requirements (resource
+                                        request, requiredDuringScheduling affinity expressions, etc.),
+                                        compute a sum by iterating through the elements of this field and adding
+                                        "weight" to the sum if the node has pods which matches the corresponding podAffinityTerm; the
+                                        node(s) with the highest sum are the most preferred.
+                                      items:
+                                        description: The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)
+                                        properties:
+                                          podAffinityTerm:
+                                            description: Required. A pod affinity term, associated with the corresponding weight.
+                                            properties:
+                                              labelSelector:
+                                                description: |-
+                                                  A label query over a set of resources, in this case pods.
+                                                  If it's null, this PodAffinityTerm matches with no Pods.
+                                                properties:
+                                                  matchExpressions:
+                                                    description: matchExpressions is a list of label selector requirements. The requirements are ANDed.
+                                                    items:
+                                                      description: |-
+                                                        A label selector requirement is a selector that contains values, a key, and an operator that
+                                                        relates the key and values.
+                                                      properties:
+                                                        key:
+                                                          description: key is the label key that the selector applies to.
+                                                          type: string
+                                                        operator:
+                                                          description: |-
+                                                            operator represents a key's relationship to a set of values.
+                                                            Valid operators are In, NotIn, Exists and DoesNotExist.
+                                                          type: string
+                                                        values:
+                                                          description: |-
+                                                            values is an array of string values. If the operator is In or NotIn,
+                                                            the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                            the values array must be empty. This array is replaced during a strategic
+                                                            merge patch.
+                                                          items:
+                                                            type: string
+                                                          type: array
+                                                          x-kubernetes-list-type: atomic
+                                                      required:
+                                                        - key
+                                                        - operator
+                                                      type: object
+                                                    type: array
+                                                    x-kubernetes-list-type: atomic
+                                                  matchLabels:
+                                                    additionalProperties:
+                                                      type: string
+                                                    description: |-
+                                                      matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
+                                                      map is equivalent to an element of matchExpressions, whose key field is "key", the
+                                                      operator is "In", and the values array contains only "value". The requirements are ANDed.
+                                                    type: object
+                                                type: object
+                                                x-kubernetes-map-type: atomic
+                                              matchLabelKeys:
+                                                description: |-
+                                                  MatchLabelKeys is a set of pod label keys to select which pods will
+                                                  be taken into consideration. The keys are used to lookup values from the
+                                                  incoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`
+                                                  to select the group of existing pods which pods will be taken into consideration
+                                                  for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming
+                                                  pod labels will be ignored. The default value is empty.
+                                                  The same key is forbidden to exist in both matchLabelKeys and labelSelector.
+                                                  Also, matchLabelKeys cannot be set when labelSelector isn't set.
+                                                  This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+                                                items:
+                                                  type: string
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                              mismatchLabelKeys:
+                                                description: |-
+                                                  MismatchLabelKeys is a set of pod label keys to select which pods will
+                                                  be taken into consideration. The keys are used to lookup values from the
+                                                  incoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`
+                                                  to select the group of existing pods which pods will be taken into consideration
+                                                  for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming
+                                                  pod labels will be ignored. The default value is empty.
+                                                  The same key is forbidden to exist in both mismatchLabelKeys and labelSelector.
+                                                  Also, mismatchLabelKeys cannot be set when labelSelector isn't set.
+                                                  This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+                                                items:
+                                                  type: string
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                              namespaceSelector:
+                                                description: |-
+                                                  A label query over the set of namespaces that the term applies to.
+                                                  The term is applied to the union of the namespaces selected by this field
+                                                  and the ones listed in the namespaces field.
+                                                  null selector and null or empty namespaces list means "this pod's namespace".
+                                                  An empty selector ({}) matches all namespaces.
+                                                properties:
+                                                  matchExpressions:
+                                                    description: matchExpressions is a list of label selector requirements. The requirements are ANDed.
+                                                    items:
+                                                      description: |-
+                                                        A label selector requirement is a selector that contains values, a key, and an operator that
+                                                        relates the key and values.
+                                                      properties:
+                                                        key:
+                                                          description: key is the label key that the selector applies to.
+                                                          type: string
+                                                        operator:
+                                                          description: |-
+                                                            operator represents a key's relationship to a set of values.
+                                                            Valid operators are In, NotIn, Exists and DoesNotExist.
+                                                          type: string
+                                                        values:
+                                                          description: |-
+                                                            values is an array of string values. If the operator is In or NotIn,
+                                                            the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                            the values array must be empty. This array is replaced during a strategic
+                                                            merge patch.
+                                                          items:
+                                                            type: string
+                                                          type: array
+                                                          x-kubernetes-list-type: atomic
+                                                      required:
+                                                        - key
+                                                        - operator
+                                                      type: object
+                                                    type: array
+                                                    x-kubernetes-list-type: atomic
+                                                  matchLabels:
+                                                    additionalProperties:
+                                                      type: string
+                                                    description: |-
+                                                      matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
+                                                      map is equivalent to an element of matchExpressions, whose key field is "key", the
+                                                      operator is "In", and the values array contains only "value". The requirements are ANDed.
+                                                    type: object
+                                                type: object
+                                                x-kubernetes-map-type: atomic
+                                              namespaces:
+                                                description: |-
+                                                  namespaces specifies a static list of namespace names that the term applies to.
+                                                  The term is applied to the union of the namespaces listed in this field
+                                                  and the ones selected by namespaceSelector.
+                                                  null or empty namespaces list and null namespaceSelector means "this pod's namespace".
+                                                items:
+                                                  type: string
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                              topologyKey:
+                                                description: |-
+                                                  This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching
+                                                  the labelSelector in the specified namespaces, where co-located is defined as running on a node
+                                                  whose value of the label with key topologyKey matches that of any node on which any of the
+                                                  selected pods is running.
+                                                  Empty topologyKey is not allowed.
+                                                type: string
+                                            required:
+                                              - topologyKey
+                                            type: object
+                                          weight:
+                                            description: |-
+                                              weight associated with matching the corresponding podAffinityTerm,
+                                              in the range 1-100.
+                                            format: int32
+                                            type: integer
+                                        required:
+                                          - podAffinityTerm
+                                          - weight
+                                        type: object
+                                      type: array
+                                      x-kubernetes-list-type: atomic
+                                    requiredDuringSchedulingIgnoredDuringExecution:
+                                      description: |-
+                                        If the affinity requirements specified by this field are not met at
+                                        scheduling time, the pod will not be scheduled onto the node.
+                                        If the affinity requirements specified by this field cease to be met
+                                        at some point during pod execution (e.g. due to a pod label update), the
+                                        system may or may not try to eventually evict the pod from its node.
+                                        When there are multiple elements, the lists of nodes corresponding to each
+                                        podAffinityTerm are intersected, i.e. all terms must be satisfied.
+                                      items:
+                                        description: |-
+                                          Defines a set of pods (namely those matching the labelSelector
+                                          relative to the given namespace(s)) that this pod should be
+                                          co-located (affinity) or not co-located (anti-affinity) with,
+                                          where co-located is defined as running on a node whose value of
+                                          the label with key <topologyKey> matches that of any node on which
+                                          a pod of the set of pods is running
+                                        properties:
+                                          labelSelector:
+                                            description: |-
+                                              A label query over a set of resources, in this case pods.
+                                              If it's null, this PodAffinityTerm matches with no Pods.
+                                            properties:
+                                              matchExpressions:
+                                                description: matchExpressions is a list of label selector requirements. The requirements are ANDed.
+                                                items:
+                                                  description: |-
+                                                    A label selector requirement is a selector that contains values, a key, and an operator that
+                                                    relates the key and values.
+                                                  properties:
+                                                    key:
+                                                      description: key is the label key that the selector applies to.
+                                                      type: string
+                                                    operator:
+                                                      description: |-
+                                                        operator represents a key's relationship to a set of values.
+                                                        Valid operators are In, NotIn, Exists and DoesNotExist.
+                                                      type: string
+                                                    values:
+                                                      description: |-
+                                                        values is an array of string values. If the operator is In or NotIn,
+                                                        the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                        the values array must be empty. This array is replaced during a strategic
+                                                        merge patch.
+                                                      items:
+                                                        type: string
+                                                      type: array
+                                                      x-kubernetes-list-type: atomic
+                                                  required:
+                                                    - key
+                                                    - operator
+                                                  type: object
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                              matchLabels:
+                                                additionalProperties:
+                                                  type: string
+                                                description: |-
+                                                  matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
+                                                  map is equivalent to an element of matchExpressions, whose key field is "key", the
+                                                  operator is "In", and the values array contains only "value". The requirements are ANDed.
+                                                type: object
+                                            type: object
+                                            x-kubernetes-map-type: atomic
+                                          matchLabelKeys:
+                                            description: |-
+                                              MatchLabelKeys is a set of pod label keys to select which pods will
+                                              be taken into consideration. The keys are used to lookup values from the
+                                              incoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`
+                                              to select the group of existing pods which pods will be taken into consideration
+                                              for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming
+                                              pod labels will be ignored. The default value is empty.
+                                              The same key is forbidden to exist in both matchLabelKeys and labelSelector.
+                                              Also, matchLabelKeys cannot be set when labelSelector isn't set.
+                                              This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+                                            items:
+                                              type: string
+                                            type: array
+                                            x-kubernetes-list-type: atomic
+                                          mismatchLabelKeys:
+                                            description: |-
+                                              MismatchLabelKeys is a set of pod label keys to select which pods will
+                                              be taken into consideration. The keys are used to lookup values from the
+                                              incoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`
+                                              to select the group of existing pods which pods will be taken into consideration
+                                              for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming
+                                              pod labels will be ignored. The default value is empty.
+                                              The same key is forbidden to exist in both mismatchLabelKeys and labelSelector.
+                                              Also, mismatchLabelKeys cannot be set when labelSelector isn't set.
+                                              This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+                                            items:
+                                              type: string
+                                            type: array
+                                            x-kubernetes-list-type: atomic
+                                          namespaceSelector:
+                                            description: |-
+                                              A label query over the set of namespaces that the term applies to.
+                                              The term is applied to the union of the namespaces selected by this field
+                                              and the ones listed in the namespaces field.
+                                              null selector and null or empty namespaces list means "this pod's namespace".
+                                              An empty selector ({}) matches all namespaces.
+                                            properties:
+                                              matchExpressions:
+                                                description: matchExpressions is a list of label selector requirements. The requirements are ANDed.
+                                                items:
+                                                  description: |-
+                                                    A label selector requirement is a selector that contains values, a key, and an operator that
+                                                    relates the key and values.
+                                                  properties:
+                                                    key:
+                                                      description: key is the label key that the selector applies to.
+                                                      type: string
+                                                    operator:
+                                                      description: |-
+                                                        operator represents a key's relationship to a set of values.
+                                                        Valid operators are In, NotIn, Exists and DoesNotExist.
+                                                      type: string
+                                                    values:
+                                                      description: |-
+                                                        values is an array of string values. If the operator is In or NotIn,
+                                                        the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                        the values array must be empty. This array is replaced during a strategic
+                                                        merge patch.
+                                                      items:
+                                                        type: string
+                                                      type: array
+                                                      x-kubernetes-list-type: atomic
+                                                  required:
+                                                    - key
+                                                    - operator
+                                                  type: object
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                              matchLabels:
+                                                additionalProperties:
+                                                  type: string
+                                                description: |-
+                                                  matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
+                                                  map is equivalent to an element of matchExpressions, whose key field is "key", the
+                                                  operator is "In", and the values array contains only "value". The requirements are ANDed.
+                                                type: object
+                                            type: object
+                                            x-kubernetes-map-type: atomic
+                                          namespaces:
+                                            description: |-
+                                              namespaces specifies a static list of namespace names that the term applies to.
+                                              The term is applied to the union of the namespaces listed in this field
+                                              and the ones selected by namespaceSelector.
+                                              null or empty namespaces list and null namespaceSelector means "this pod's namespace".
+                                            items:
+                                              type: string
+                                            type: array
+                                            x-kubernetes-list-type: atomic
+                                          topologyKey:
+                                            description: |-
+                                              This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching
+                                              the labelSelector in the specified namespaces, where co-located is defined as running on a node
+                                              whose value of the label with key topologyKey matches that of any node on which any of the
+                                              selected pods is running.
+                                              Empty topologyKey is not allowed.
+                                            type: string
+                                        required:
+                                          - topologyKey
+                                        type: object
+                                      type: array
+                                      x-kubernetes-list-type: atomic
+                                  type: object
+                                podAntiAffinity:
+                                  description: Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).
+                                  properties:
+                                    preferredDuringSchedulingIgnoredDuringExecution:
+                                      description: |-
+                                        The scheduler will prefer to schedule pods to nodes that satisfy
+                                        the anti-affinity expressions specified by this field, but it may choose
+                                        a node that violates one or more of the expressions. The node that is
+                                        most preferred is the one with the greatest sum of weights, i.e.
+                                        for each node that meets all of the scheduling requirements (resource
+                                        request, requiredDuringScheduling anti-affinity expressions, etc.),
+                                        compute a sum by iterating through the elements of this field and adding
+                                        "weight" to the sum if the node has pods which matches the corresponding podAffinityTerm; the
+                                        node(s) with the highest sum are the most preferred.
+                                      items:
+                                        description: The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)
+                                        properties:
+                                          podAffinityTerm:
+                                            description: Required. A pod affinity term, associated with the corresponding weight.
+                                            properties:
+                                              labelSelector:
+                                                description: |-
+                                                  A label query over a set of resources, in this case pods.
+                                                  If it's null, this PodAffinityTerm matches with no Pods.
+                                                properties:
+                                                  matchExpressions:
+                                                    description: matchExpressions is a list of label selector requirements. The requirements are ANDed.
+                                                    items:
+                                                      description: |-
+                                                        A label selector requirement is a selector that contains values, a key, and an operator that
+                                                        relates the key and values.
+                                                      properties:
+                                                        key:
+                                                          description: key is the label key that the selector applies to.
+                                                          type: string
+                                                        operator:
+                                                          description: |-
+                                                            operator represents a key's relationship to a set of values.
+                                                            Valid operators are In, NotIn, Exists and DoesNotExist.
+                                                          type: string
+                                                        values:
+                                                          description: |-
+                                                            values is an array of string values. If the operator is In or NotIn,
+                                                            the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                            the values array must be empty. This array is replaced during a strategic
+                                                            merge patch.
+                                                          items:
+                                                            type: string
+                                                          type: array
+                                                          x-kubernetes-list-type: atomic
+                                                      required:
+                                                        - key
+                                                        - operator
+                                                      type: object
+                                                    type: array
+                                                    x-kubernetes-list-type: atomic
+                                                  matchLabels:
+                                                    additionalProperties:
+                                                      type: string
+                                                    description: |-
+                                                      matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
+                                                      map is equivalent to an element of matchExpressions, whose key field is "key", the
+                                                      operator is "In", and the values array contains only "value". The requirements are ANDed.
+                                                    type: object
+                                                type: object
+                                                x-kubernetes-map-type: atomic
+                                              matchLabelKeys:
+                                                description: |-
+                                                  MatchLabelKeys is a set of pod label keys to select which pods will
+                                                  be taken into consideration. The keys are used to lookup values from the
+                                                  incoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`
+                                                  to select the group of existing pods which pods will be taken into consideration
+                                                  for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming
+                                                  pod labels will be ignored. The default value is empty.
+                                                  The same key is forbidden to exist in both matchLabelKeys and labelSelector.
+                                                  Also, matchLabelKeys cannot be set when labelSelector isn't set.
+                                                  This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+                                                items:
+                                                  type: string
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                              mismatchLabelKeys:
+                                                description: |-
+                                                  MismatchLabelKeys is a set of pod label keys to select which pods will
+                                                  be taken into consideration. The keys are used to lookup values from the
+                                                  incoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`
+                                                  to select the group of existing pods which pods will be taken into consideration
+                                                  for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming
+                                                  pod labels will be ignored. The default value is empty.
+                                                  The same key is forbidden to exist in both mismatchLabelKeys and labelSelector.
+                                                  Also, mismatchLabelKeys cannot be set when labelSelector isn't set.
+                                                  This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+                                                items:
+                                                  type: string
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                              namespaceSelector:
+                                                description: |-
+                                                  A label query over the set of namespaces that the term applies to.
+                                                  The term is applied to the union of the namespaces selected by this field
+                                                  and the ones listed in the namespaces field.
+                                                  null selector and null or empty namespaces list means "this pod's namespace".
+                                                  An empty selector ({}) matches all namespaces.
+                                                properties:
+                                                  matchExpressions:
+                                                    description: matchExpressions is a list of label selector requirements. The requirements are ANDed.
+                                                    items:
+                                                      description: |-
+                                                        A label selector requirement is a selector that contains values, a key, and an operator that
+                                                        relates the key and values.
+                                                      properties:
+                                                        key:
+                                                          description: key is the label key that the selector applies to.
+                                                          type: string
+                                                        operator:
+                                                          description: |-
+                                                            operator represents a key's relationship to a set of values.
+                                                            Valid operators are In, NotIn, Exists and DoesNotExist.
+                                                          type: string
+                                                        values:
+                                                          description: |-
+                                                            values is an array of string values. If the operator is In or NotIn,
+                                                            the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                            the values array must be empty. This array is replaced during a strategic
+                                                            merge patch.
+                                                          items:
+                                                            type: string
+                                                          type: array
+                                                          x-kubernetes-list-type: atomic
+                                                      required:
+                                                        - key
+                                                        - operator
+                                                      type: object
+                                                    type: array
+                                                    x-kubernetes-list-type: atomic
+                                                  matchLabels:
+                                                    additionalProperties:
+                                                      type: string
+                                                    description: |-
+                                                      matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
+                                                      map is equivalent to an element of matchExpressions, whose key field is "key", the
+                                                      operator is "In", and the values array contains only "value". The requirements are ANDed.
+                                                    type: object
+                                                type: object
+                                                x-kubernetes-map-type: atomic
+                                              namespaces:
+                                                description: |-
+                                                  namespaces specifies a static list of namespace names that the term applies to.
+                                                  The term is applied to the union of the namespaces listed in this field
+                                                  and the ones selected by namespaceSelector.
+                                                  null or empty namespaces list and null namespaceSelector means "this pod's namespace".
+                                                items:
+                                                  type: string
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                              topologyKey:
+                                                description: |-
+                                                  This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching
+                                                  the labelSelector in the specified namespaces, where co-located is defined as running on a node
+                                                  whose value of the label with key topologyKey matches that of any node on which any of the
+                                                  selected pods is running.
+                                                  Empty topologyKey is not allowed.
+                                                type: string
+                                            required:
+                                              - topologyKey
+                                            type: object
+                                          weight:
+                                            description: |-
+                                              weight associated with matching the corresponding podAffinityTerm,
+                                              in the range 1-100.
+                                            format: int32
+                                            type: integer
+                                        required:
+                                          - podAffinityTerm
+                                          - weight
+                                        type: object
+                                      type: array
+                                      x-kubernetes-list-type: atomic
+                                    requiredDuringSchedulingIgnoredDuringExecution:
+                                      description: |-
+                                        If the anti-affinity requirements specified by this field are not met at
+                                        scheduling time, the pod will not be scheduled onto the node.
+                                        If the anti-affinity requirements specified by this field cease to be met
+                                        at some point during pod execution (e.g. due to a pod label update), the
+                                        system may or may not try to eventually evict the pod from its node.
+                                        When there are multiple elements, the lists of nodes corresponding to each
+                                        podAffinityTerm are intersected, i.e. all terms must be satisfied.
+                                      items:
+                                        description: |-
+                                          Defines a set of pods (namely those matching the labelSelector
+                                          relative to the given namespace(s)) that this pod should be
+                                          co-located (affinity) or not co-located (anti-affinity) with,
+                                          where co-located is defined as running on a node whose value of
+                                          the label with key <topologyKey> matches that of any node on which
+                                          a pod of the set of pods is running
+                                        properties:
+                                          labelSelector:
+                                            description: |-
+                                              A label query over a set of resources, in this case pods.
+                                              If it's null, this PodAffinityTerm matches with no Pods.
+                                            properties:
+                                              matchExpressions:
+                                                description: matchExpressions is a list of label selector requirements. The requirements are ANDed.
+                                                items:
+                                                  description: |-
+                                                    A label selector requirement is a selector that contains values, a key, and an operator that
+                                                    relates the key and values.
+                                                  properties:
+                                                    key:
+                                                      description: key is the label key that the selector applies to.
+                                                      type: string
+                                                    operator:
+                                                      description: |-
+                                                        operator represents a key's relationship to a set of values.
+                                                        Valid operators are In, NotIn, Exists and DoesNotExist.
+                                                      type: string
+                                                    values:
+                                                      description: |-
+                                                        values is an array of string values. If the operator is In or NotIn,
+                                                        the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                        the values array must be empty. This array is replaced during a strategic
+                                                        merge patch.
+                                                      items:
+                                                        type: string
+                                                      type: array
+                                                      x-kubernetes-list-type: atomic
+                                                  required:
+                                                    - key
+                                                    - operator
+                                                  type: object
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                              matchLabels:
+                                                additionalProperties:
+                                                  type: string
+                                                description: |-
+                                                  matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
+                                                  map is equivalent to an element of matchExpressions, whose key field is "key", the
+                                                  operator is "In", and the values array contains only "value". The requirements are ANDed.
+                                                type: object
+                                            type: object
+                                            x-kubernetes-map-type: atomic
+                                          matchLabelKeys:
+                                            description: |-
+                                              MatchLabelKeys is a set of pod label keys to select which pods will
+                                              be taken into consideration. The keys are used to lookup values from the
+                                              incoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`
+                                              to select the group of existing pods which pods will be taken into consideration
+                                              for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming
+                                              pod labels will be ignored. The default value is empty.
+                                              The same key is forbidden to exist in both matchLabelKeys and labelSelector.
+                                              Also, matchLabelKeys cannot be set when labelSelector isn't set.
+                                              This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+                                            items:
+                                              type: string
+                                            type: array
+                                            x-kubernetes-list-type: atomic
+                                          mismatchLabelKeys:
+                                            description: |-
+                                              MismatchLabelKeys is a set of pod label keys to select which pods will
+                                              be taken into consideration. The keys are used to lookup values from the
+                                              incoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`
+                                              to select the group of existing pods which pods will be taken into consideration
+                                              for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming
+                                              pod labels will be ignored. The default value is empty.
+                                              The same key is forbidden to exist in both mismatchLabelKeys and labelSelector.
+                                              Also, mismatchLabelKeys cannot be set when labelSelector isn't set.
+                                              This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+                                            items:
+                                              type: string
+                                            type: array
+                                            x-kubernetes-list-type: atomic
+                                          namespaceSelector:
+                                            description: |-
+                                              A label query over the set of namespaces that the term applies to.
+                                              The term is applied to the union of the namespaces selected by this field
+                                              and the ones listed in the namespaces field.
+                                              null selector and null or empty namespaces list means "this pod's namespace".
+                                              An empty selector ({}) matches all namespaces.
+                                            properties:
+                                              matchExpressions:
+                                                description: matchExpressions is a list of label selector requirements. The requirements are ANDed.
+                                                items:
+                                                  description: |-
+                                                    A label selector requirement is a selector that contains values, a key, and an operator that
+                                                    relates the key and values.
+                                                  properties:
+                                                    key:
+                                                      description: key is the label key that the selector applies to.
+                                                      type: string
+                                                    operator:
+                                                      description: |-
+                                                        operator represents a key's relationship to a set of values.
+                                                        Valid operators are In, NotIn, Exists and DoesNotExist.
+                                                      type: string
+                                                    values:
+                                                      description: |-
+                                                        values is an array of string values. If the operator is In or NotIn,
+                                                        the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                        the values array must be empty. This array is replaced during a strategic
+                                                        merge patch.
+                                                      items:
+                                                        type: string
+                                                      type: array
+                                                      x-kubernetes-list-type: atomic
+                                                  required:
+                                                    - key
+                                                    - operator
+                                                  type: object
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                              matchLabels:
+                                                additionalProperties:
+                                                  type: string
+                                                description: |-
+                                                  matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
+                                                  map is equivalent to an element of matchExpressions, whose key field is "key", the
+                                                  operator is "In", and the values array contains only "value". The requirements are ANDed.
+                                                type: object
+                                            type: object
+                                            x-kubernetes-map-type: atomic
+                                          namespaces:
+                                            description: |-
+                                              namespaces specifies a static list of namespace names that the term applies to.
+                                              The term is applied to the union of the namespaces listed in this field
+                                              and the ones selected by namespaceSelector.
+                                              null or empty namespaces list and null namespaceSelector means "this pod's namespace".
+                                            items:
+                                              type: string
+                                            type: array
+                                            x-kubernetes-list-type: atomic
+                                          topologyKey:
+                                            description: |-
+                                              This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching
+                                              the labelSelector in the specified namespaces, where co-located is defined as running on a node
+                                              whose value of the label with key topologyKey matches that of any node on which any of the
+                                              selected pods is running.
+                                              Empty topologyKey is not allowed.
+                                            type: string
+                                        required:
+                                          - topologyKey
+                                        type: object
+                                      type: array
+                                      x-kubernetes-list-type: atomic
+                                  type: object
+                              type: object
+                            claims:
+                              description: |-
+                                Claims lists the names of resources, defined in spec.resourceClaims,
+                                that are used by this container.
+
+
+                                This is an alpha field and requires enabling the
+                                DynamicResourceAllocation feature gate.
+
+
+                                This field is immutable. It can only be set for containers.
+                              items:
+                                description: ResourceClaim references one entry in PodSpec.ResourceClaims.
+                                properties:
+                                  name:
+                                    description: |-
+                                      Name must match the name of one entry in pod.spec.resourceClaims of
+                                      the Pod where this field is used. It makes that resource available
+                                      inside a container.
+                                    type: string
+                                required:
+                                  - name
+                                type: object
+                              type: array
+                              x-kubernetes-list-map-keys:
+                                - name
+                              x-kubernetes-list-type: map
+                            limits:
+                              additionalProperties:
+                                anyOf:
+                                  - type: integer
+                                  - type: string
+                                pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
+                                x-kubernetes-int-or-string: true
+                              description: |-
+                                Limits describes the maximum amount of compute resources allowed.
+                                More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+                              type: object
+                            nodeSelector:
+                              additionalProperties:
+                                type: string
+                              type: object
+                            priorityClassName:
+                              type: string
+                            requests:
+                              additionalProperties:
+                                anyOf:
+                                  - type: integer
+                                  - type: string
+                                pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
+                                x-kubernetes-int-or-string: true
+                              description: |-
+                                Requests describes the minimum amount of compute resources required.
+                                If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,
+                                otherwise to an implementation-defined value. Requests cannot exceed Limits.
+                                More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+                              type: object
+                            tolerations:
+                              description: agent.pod.tolerations are tolerations to influence agent pod assignment.
+                              items:
+                                description: |-
+                                  The pod this Toleration is attached to tolerates any taint that matches
+                                  the triple <key,value,effect> using the matching operator <operator>.
+                                properties:
+                                  effect:
+                                    description: |-
+                                      Effect indicates the taint effect to match. Empty means match all taint effects.
+                                      When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.
+                                    type: string
+                                  key:
+                                    description: |-
+                                      Key is the taint key that the toleration applies to. Empty means match all taint keys.
+                                      If the key is empty, operator must be Exists; this combination means to match all values and all keys.
+                                    type: string
+                                  operator:
+                                    description: |-
+                                      Operator represents a key's relationship to the value.
+                                      Valid operators are Exists and Equal. Defaults to Equal.
+                                      Exists is equivalent to wildcard for value, so that a pod can
+                                      tolerate all taints of a particular category.
+                                    type: string
+                                  tolerationSeconds:
+                                    description: |-
+                                      TolerationSeconds represents the period of time the toleration (which must be
+                                      of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,
+                                      it is not set, which means tolerate the taint forever (do not evict). Zero and
+                                      negative values will be treated as 0 (evict immediately) by the system.
+                                    format: int64
+                                    type: integer
+                                  value:
+                                    description: |-
+                                      Value is the taint value the toleration matches to.
+                                      If the operator is Exists, the value should be empty, otherwise just a regular string.
+                                    type: string
+                                type: object
+                              type: array
+                          type: object
+                        replicas:
+                          description: Specify the number of replicas for the Kubernetes Sensor.
+                          type: integer
+                      type: object
+                  type: object
+                openshift:
+                  description: |-
+                    Set to `True` to indicate the Operator is being deployed in a OpenShift cluster. Provides a hint so that RBAC etc is
+                    configured correctly. Will attempt to auto-detect if unset.
+                  type: boolean
+                opentelemetry:
+                  description: 'Enables the OpenTelemetry gRPC endpoint on the Agent. If true, it will also apply `service.create: true`.'
+                  properties:
+                    enabled:
+                      type: boolean
+                    grpc:
+                      properties:
+                        enabled:
+                          type: boolean
+                      type: object
+                    http:
+                      properties:
+                        enabled:
+                          type: boolean
+                      type: object
+                  type: object
+                pinnedChartVersion:
+                  description: |-
+                    Specifying the PinnedChartVersion allows for 'pinning' the Helm Chart used by the Operator for installing the Agent
+                    DaemonSet. Normally the Operator will always install and update to the latest Helm Chart version.
+                    The Operator will check and make sure no 'unsupported' Chart versions can be selected.
+                  type: string
+                podSecurityPolicy:
+                  description: 'Specify a PodSecurityPolicy for the Instana Agent Pods. If enabled requires `rbac.create: true`.'
+                  properties:
+                    enabled:
+                      type: boolean
+                    name:
+                      type: string
+                  type: object
+                prometheus:
+                  description: 'Enables the Prometheus endpoint on the Agent. If true, it will also apply `service.create: true`.'
+                  properties:
+                    remoteWrite:
+                      properties:
+                        enabled:
+                          type: boolean
+                      type: object
+                  type: object
+                rbac:
+                  description: Specifies whether RBAC resources should be created.
+                  properties:
+                    create:
+                      type: boolean
+                  type: object
+                service:
+                  description: |-
+                    Specifies whether to create the instana-agent `Service` to expose within the cluster. The Service can then be used e.g.
+                    for the Prometheus remote-write, OpenTelemetry GRCP endpoint and other APIs.
+                    Note: Requires Kubernetes 1.17+, as it uses topologyKeys.
+                  properties:
+                    create:
+                      type: boolean
+                  type: object
+                serviceAccount:
+                  description: Specifies whether a ServiceAccount should be created (default `true`), and possibly the name to use.
+                  properties:
+                    annotations:
+                      additionalProperties:
+                        type: string
+                      type: object
+                    create:
+                      type: boolean
+                    name:
+                      type: string
+                  type: object
+                serviceMesh:
+                  properties:
+                    enabled:
+                      type: boolean
+                  type: object
+                zone:
+                  description: Name of the zone in which the host(s) will be displayed on the map. Optional, but then 'cluster.name' must be specified.
+                  properties:
+                    name:
+                      type: string
+                  type: object
+                zones:
+                  description: Zones can be used to specify agents in multiple zones split across different nodes in the cluster
+                  items:
+                    properties:
+                      affinity:
+                        description: Affinity is a group of affinity scheduling rules.
+                        properties:
+                          nodeAffinity:
+                            description: Describes node affinity scheduling rules for the pod.
+                            properties:
+                              preferredDuringSchedulingIgnoredDuringExecution:
+                                description: |-
+                                  The scheduler will prefer to schedule pods to nodes that satisfy
+                                  the affinity expressions specified by this field, but it may choose
+                                  a node that violates one or more of the expressions. The node that is
+                                  most preferred is the one with the greatest sum of weights, i.e.
+                                  for each node that meets all of the scheduling requirements (resource
+                                  request, requiredDuringScheduling affinity expressions, etc.),
+                                  compute a sum by iterating through the elements of this field and adding
+                                  "weight" to the sum if the node matches the corresponding matchExpressions; the
+                                  node(s) with the highest sum are the most preferred.
+                                items:
+                                  description: |-
+                                    An empty preferred scheduling term matches all objects with implicit weight 0
+                                    (i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).
+                                  properties:
+                                    preference:
+                                      description: A node selector term, associated with the corresponding weight.
+                                      properties:
+                                        matchExpressions:
+                                          description: A list of node selector requirements by node's labels.
+                                          items:
+                                            description: |-
+                                              A node selector requirement is a selector that contains values, a key, and an operator
+                                              that relates the key and values.
+                                            properties:
+                                              key:
+                                                description: The label key that the selector applies to.
+                                                type: string
+                                              operator:
+                                                description: |-
+                                                  Represents a key's relationship to a set of values.
+                                                  Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
+                                                type: string
+                                              values:
+                                                description: |-
+                                                  An array of string values. If the operator is In or NotIn,
+                                                  the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                  the values array must be empty. If the operator is Gt or Lt, the values
+                                                  array must have a single element, which will be interpreted as an integer.
+                                                  This array is replaced during a strategic merge patch.
+                                                items:
+                                                  type: string
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                            required:
+                                              - key
+                                              - operator
+                                            type: object
+                                          type: array
+                                          x-kubernetes-list-type: atomic
+                                        matchFields:
+                                          description: A list of node selector requirements by node's fields.
+                                          items:
+                                            description: |-
+                                              A node selector requirement is a selector that contains values, a key, and an operator
+                                              that relates the key and values.
+                                            properties:
+                                              key:
+                                                description: The label key that the selector applies to.
+                                                type: string
+                                              operator:
+                                                description: |-
+                                                  Represents a key's relationship to a set of values.
+                                                  Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
+                                                type: string
+                                              values:
+                                                description: |-
+                                                  An array of string values. If the operator is In or NotIn,
+                                                  the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                  the values array must be empty. If the operator is Gt or Lt, the values
+                                                  array must have a single element, which will be interpreted as an integer.
+                                                  This array is replaced during a strategic merge patch.
+                                                items:
+                                                  type: string
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                            required:
+                                              - key
+                                              - operator
+                                            type: object
+                                          type: array
+                                          x-kubernetes-list-type: atomic
+                                      type: object
+                                      x-kubernetes-map-type: atomic
+                                    weight:
+                                      description: Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.
+                                      format: int32
+                                      type: integer
+                                  required:
+                                    - preference
+                                    - weight
+                                  type: object
+                                type: array
+                                x-kubernetes-list-type: atomic
+                              requiredDuringSchedulingIgnoredDuringExecution:
+                                description: |-
+                                  If the affinity requirements specified by this field are not met at
+                                  scheduling time, the pod will not be scheduled onto the node.
+                                  If the affinity requirements specified by this field cease to be met
+                                  at some point during pod execution (e.g. due to an update), the system
+                                  may or may not try to eventually evict the pod from its node.
+                                properties:
+                                  nodeSelectorTerms:
+                                    description: Required. A list of node selector terms. The terms are ORed.
+                                    items:
+                                      description: |-
+                                        A null or empty node selector term matches no objects. The requirements of
+                                        them are ANDed.
+                                        The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.
+                                      properties:
+                                        matchExpressions:
+                                          description: A list of node selector requirements by node's labels.
+                                          items:
+                                            description: |-
+                                              A node selector requirement is a selector that contains values, a key, and an operator
+                                              that relates the key and values.
+                                            properties:
+                                              key:
+                                                description: The label key that the selector applies to.
+                                                type: string
+                                              operator:
+                                                description: |-
+                                                  Represents a key's relationship to a set of values.
+                                                  Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
+                                                type: string
+                                              values:
+                                                description: |-
+                                                  An array of string values. If the operator is In or NotIn,
+                                                  the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                  the values array must be empty. If the operator is Gt or Lt, the values
+                                                  array must have a single element, which will be interpreted as an integer.
+                                                  This array is replaced during a strategic merge patch.
+                                                items:
+                                                  type: string
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                            required:
+                                              - key
+                                              - operator
+                                            type: object
+                                          type: array
+                                          x-kubernetes-list-type: atomic
+                                        matchFields:
+                                          description: A list of node selector requirements by node's fields.
+                                          items:
+                                            description: |-
+                                              A node selector requirement is a selector that contains values, a key, and an operator
+                                              that relates the key and values.
+                                            properties:
+                                              key:
+                                                description: The label key that the selector applies to.
+                                                type: string
+                                              operator:
+                                                description: |-
+                                                  Represents a key's relationship to a set of values.
+                                                  Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
+                                                type: string
+                                              values:
+                                                description: |-
+                                                  An array of string values. If the operator is In or NotIn,
+                                                  the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                  the values array must be empty. If the operator is Gt or Lt, the values
+                                                  array must have a single element, which will be interpreted as an integer.
+                                                  This array is replaced during a strategic merge patch.
+                                                items:
+                                                  type: string
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                            required:
+                                              - key
+                                              - operator
+                                            type: object
+                                          type: array
+                                          x-kubernetes-list-type: atomic
+                                      type: object
+                                      x-kubernetes-map-type: atomic
+                                    type: array
+                                    x-kubernetes-list-type: atomic
+                                required:
+                                  - nodeSelectorTerms
+                                type: object
+                                x-kubernetes-map-type: atomic
+                            type: object
+                          podAffinity:
+                            description: Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).
+                            properties:
+                              preferredDuringSchedulingIgnoredDuringExecution:
+                                description: |-
+                                  The scheduler will prefer to schedule pods to nodes that satisfy
+                                  the affinity expressions specified by this field, but it may choose
+                                  a node that violates one or more of the expressions. The node that is
+                                  most preferred is the one with the greatest sum of weights, i.e.
+                                  for each node that meets all of the scheduling requirements (resource
+                                  request, requiredDuringScheduling affinity expressions, etc.),
+                                  compute a sum by iterating through the elements of this field and adding
+                                  "weight" to the sum if the node has pods which matches the corresponding podAffinityTerm; the
+                                  node(s) with the highest sum are the most preferred.
+                                items:
+                                  description: The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)
+                                  properties:
+                                    podAffinityTerm:
+                                      description: Required. A pod affinity term, associated with the corresponding weight.
+                                      properties:
+                                        labelSelector:
+                                          description: |-
+                                            A label query over a set of resources, in this case pods.
+                                            If it's null, this PodAffinityTerm matches with no Pods.
+                                          properties:
+                                            matchExpressions:
+                                              description: matchExpressions is a list of label selector requirements. The requirements are ANDed.
+                                              items:
+                                                description: |-
+                                                  A label selector requirement is a selector that contains values, a key, and an operator that
+                                                  relates the key and values.
+                                                properties:
+                                                  key:
+                                                    description: key is the label key that the selector applies to.
+                                                    type: string
+                                                  operator:
+                                                    description: |-
+                                                      operator represents a key's relationship to a set of values.
+                                                      Valid operators are In, NotIn, Exists and DoesNotExist.
+                                                    type: string
+                                                  values:
+                                                    description: |-
+                                                      values is an array of string values. If the operator is In or NotIn,
+                                                      the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                      the values array must be empty. This array is replaced during a strategic
+                                                      merge patch.
+                                                    items:
+                                                      type: string
+                                                    type: array
+                                                    x-kubernetes-list-type: atomic
+                                                required:
+                                                  - key
+                                                  - operator
+                                                type: object
+                                              type: array
+                                              x-kubernetes-list-type: atomic
+                                            matchLabels:
+                                              additionalProperties:
+                                                type: string
+                                              description: |-
+                                                matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
+                                                map is equivalent to an element of matchExpressions, whose key field is "key", the
+                                                operator is "In", and the values array contains only "value". The requirements are ANDed.
+                                              type: object
+                                          type: object
+                                          x-kubernetes-map-type: atomic
+                                        matchLabelKeys:
+                                          description: |-
+                                            MatchLabelKeys is a set of pod label keys to select which pods will
+                                            be taken into consideration. The keys are used to lookup values from the
+                                            incoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`
+                                            to select the group of existing pods which pods will be taken into consideration
+                                            for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming
+                                            pod labels will be ignored. The default value is empty.
+                                            The same key is forbidden to exist in both matchLabelKeys and labelSelector.
+                                            Also, matchLabelKeys cannot be set when labelSelector isn't set.
+                                            This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+                                          items:
+                                            type: string
+                                          type: array
+                                          x-kubernetes-list-type: atomic
+                                        mismatchLabelKeys:
+                                          description: |-
+                                            MismatchLabelKeys is a set of pod label keys to select which pods will
+                                            be taken into consideration. The keys are used to lookup values from the
+                                            incoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`
+                                            to select the group of existing pods which pods will be taken into consideration
+                                            for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming
+                                            pod labels will be ignored. The default value is empty.
+                                            The same key is forbidden to exist in both mismatchLabelKeys and labelSelector.
+                                            Also, mismatchLabelKeys cannot be set when labelSelector isn't set.
+                                            This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+                                          items:
+                                            type: string
+                                          type: array
+                                          x-kubernetes-list-type: atomic
+                                        namespaceSelector:
+                                          description: |-
+                                            A label query over the set of namespaces that the term applies to.
+                                            The term is applied to the union of the namespaces selected by this field
+                                            and the ones listed in the namespaces field.
+                                            null selector and null or empty namespaces list means "this pod's namespace".
+                                            An empty selector ({}) matches all namespaces.
+                                          properties:
+                                            matchExpressions:
+                                              description: matchExpressions is a list of label selector requirements. The requirements are ANDed.
+                                              items:
+                                                description: |-
+                                                  A label selector requirement is a selector that contains values, a key, and an operator that
+                                                  relates the key and values.
+                                                properties:
+                                                  key:
+                                                    description: key is the label key that the selector applies to.
+                                                    type: string
+                                                  operator:
+                                                    description: |-
+                                                      operator represents a key's relationship to a set of values.
+                                                      Valid operators are In, NotIn, Exists and DoesNotExist.
+                                                    type: string
+                                                  values:
+                                                    description: |-
+                                                      values is an array of string values. If the operator is In or NotIn,
+                                                      the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                      the values array must be empty. This array is replaced during a strategic
+                                                      merge patch.
+                                                    items:
+                                                      type: string
+                                                    type: array
+                                                    x-kubernetes-list-type: atomic
+                                                required:
+                                                  - key
+                                                  - operator
+                                                type: object
+                                              type: array
+                                              x-kubernetes-list-type: atomic
+                                            matchLabels:
+                                              additionalProperties:
+                                                type: string
+                                              description: |-
+                                                matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
+                                                map is equivalent to an element of matchExpressions, whose key field is "key", the
+                                                operator is "In", and the values array contains only "value". The requirements are ANDed.
+                                              type: object
+                                          type: object
+                                          x-kubernetes-map-type: atomic
+                                        namespaces:
+                                          description: |-
+                                            namespaces specifies a static list of namespace names that the term applies to.
+                                            The term is applied to the union of the namespaces listed in this field
+                                            and the ones selected by namespaceSelector.
+                                            null or empty namespaces list and null namespaceSelector means "this pod's namespace".
+                                          items:
+                                            type: string
+                                          type: array
+                                          x-kubernetes-list-type: atomic
+                                        topologyKey:
+                                          description: |-
+                                            This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching
+                                            the labelSelector in the specified namespaces, where co-located is defined as running on a node
+                                            whose value of the label with key topologyKey matches that of any node on which any of the
+                                            selected pods is running.
+                                            Empty topologyKey is not allowed.
+                                          type: string
+                                      required:
+                                        - topologyKey
+                                      type: object
+                                    weight:
+                                      description: |-
+                                        weight associated with matching the corresponding podAffinityTerm,
+                                        in the range 1-100.
+                                      format: int32
+                                      type: integer
+                                  required:
+                                    - podAffinityTerm
+                                    - weight
+                                  type: object
+                                type: array
+                                x-kubernetes-list-type: atomic
+                              requiredDuringSchedulingIgnoredDuringExecution:
+                                description: |-
+                                  If the affinity requirements specified by this field are not met at
+                                  scheduling time, the pod will not be scheduled onto the node.
+                                  If the affinity requirements specified by this field cease to be met
+                                  at some point during pod execution (e.g. due to a pod label update), the
+                                  system may or may not try to eventually evict the pod from its node.
+                                  When there are multiple elements, the lists of nodes corresponding to each
+                                  podAffinityTerm are intersected, i.e. all terms must be satisfied.
+                                items:
+                                  description: |-
+                                    Defines a set of pods (namely those matching the labelSelector
+                                    relative to the given namespace(s)) that this pod should be
+                                    co-located (affinity) or not co-located (anti-affinity) with,
+                                    where co-located is defined as running on a node whose value of
+                                    the label with key <topologyKey> matches that of any node on which
+                                    a pod of the set of pods is running
+                                  properties:
+                                    labelSelector:
+                                      description: |-
+                                        A label query over a set of resources, in this case pods.
+                                        If it's null, this PodAffinityTerm matches with no Pods.
+                                      properties:
+                                        matchExpressions:
+                                          description: matchExpressions is a list of label selector requirements. The requirements are ANDed.
+                                          items:
+                                            description: |-
+                                              A label selector requirement is a selector that contains values, a key, and an operator that
+                                              relates the key and values.
+                                            properties:
+                                              key:
+                                                description: key is the label key that the selector applies to.
+                                                type: string
+                                              operator:
+                                                description: |-
+                                                  operator represents a key's relationship to a set of values.
+                                                  Valid operators are In, NotIn, Exists and DoesNotExist.
+                                                type: string
+                                              values:
+                                                description: |-
+                                                  values is an array of string values. If the operator is In or NotIn,
+                                                  the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                  the values array must be empty. This array is replaced during a strategic
+                                                  merge patch.
+                                                items:
+                                                  type: string
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                            required:
+                                              - key
+                                              - operator
+                                            type: object
+                                          type: array
+                                          x-kubernetes-list-type: atomic
+                                        matchLabels:
+                                          additionalProperties:
+                                            type: string
+                                          description: |-
+                                            matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
+                                            map is equivalent to an element of matchExpressions, whose key field is "key", the
+                                            operator is "In", and the values array contains only "value". The requirements are ANDed.
+                                          type: object
+                                      type: object
+                                      x-kubernetes-map-type: atomic
+                                    matchLabelKeys:
+                                      description: |-
+                                        MatchLabelKeys is a set of pod label keys to select which pods will
+                                        be taken into consideration. The keys are used to lookup values from the
+                                        incoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`
+                                        to select the group of existing pods which pods will be taken into consideration
+                                        for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming
+                                        pod labels will be ignored. The default value is empty.
+                                        The same key is forbidden to exist in both matchLabelKeys and labelSelector.
+                                        Also, matchLabelKeys cannot be set when labelSelector isn't set.
+                                        This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+                                      items:
+                                        type: string
+                                      type: array
+                                      x-kubernetes-list-type: atomic
+                                    mismatchLabelKeys:
+                                      description: |-
+                                        MismatchLabelKeys is a set of pod label keys to select which pods will
+                                        be taken into consideration. The keys are used to lookup values from the
+                                        incoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`
+                                        to select the group of existing pods which pods will be taken into consideration
+                                        for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming
+                                        pod labels will be ignored. The default value is empty.
+                                        The same key is forbidden to exist in both mismatchLabelKeys and labelSelector.
+                                        Also, mismatchLabelKeys cannot be set when labelSelector isn't set.
+                                        This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+                                      items:
+                                        type: string
+                                      type: array
+                                      x-kubernetes-list-type: atomic
+                                    namespaceSelector:
+                                      description: |-
+                                        A label query over the set of namespaces that the term applies to.
+                                        The term is applied to the union of the namespaces selected by this field
+                                        and the ones listed in the namespaces field.
+                                        null selector and null or empty namespaces list means "this pod's namespace".
+                                        An empty selector ({}) matches all namespaces.
+                                      properties:
+                                        matchExpressions:
+                                          description: matchExpressions is a list of label selector requirements. The requirements are ANDed.
+                                          items:
+                                            description: |-
+                                              A label selector requirement is a selector that contains values, a key, and an operator that
+                                              relates the key and values.
+                                            properties:
+                                              key:
+                                                description: key is the label key that the selector applies to.
+                                                type: string
+                                              operator:
+                                                description: |-
+                                                  operator represents a key's relationship to a set of values.
+                                                  Valid operators are In, NotIn, Exists and DoesNotExist.
+                                                type: string
+                                              values:
+                                                description: |-
+                                                  values is an array of string values. If the operator is In or NotIn,
+                                                  the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                  the values array must be empty. This array is replaced during a strategic
+                                                  merge patch.
+                                                items:
+                                                  type: string
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                            required:
+                                              - key
+                                              - operator
+                                            type: object
+                                          type: array
+                                          x-kubernetes-list-type: atomic
+                                        matchLabels:
+                                          additionalProperties:
+                                            type: string
+                                          description: |-
+                                            matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
+                                            map is equivalent to an element of matchExpressions, whose key field is "key", the
+                                            operator is "In", and the values array contains only "value". The requirements are ANDed.
+                                          type: object
+                                      type: object
+                                      x-kubernetes-map-type: atomic
+                                    namespaces:
+                                      description: |-
+                                        namespaces specifies a static list of namespace names that the term applies to.
+                                        The term is applied to the union of the namespaces listed in this field
+                                        and the ones selected by namespaceSelector.
+                                        null or empty namespaces list and null namespaceSelector means "this pod's namespace".
+                                      items:
+                                        type: string
+                                      type: array
+                                      x-kubernetes-list-type: atomic
+                                    topologyKey:
+                                      description: |-
+                                        This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching
+                                        the labelSelector in the specified namespaces, where co-located is defined as running on a node
+                                        whose value of the label with key topologyKey matches that of any node on which any of the
+                                        selected pods is running.
+                                        Empty topologyKey is not allowed.
+                                      type: string
+                                  required:
+                                    - topologyKey
+                                  type: object
+                                type: array
+                                x-kubernetes-list-type: atomic
+                            type: object
+                          podAntiAffinity:
+                            description: Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).
+                            properties:
+                              preferredDuringSchedulingIgnoredDuringExecution:
+                                description: |-
+                                  The scheduler will prefer to schedule pods to nodes that satisfy
+                                  the anti-affinity expressions specified by this field, but it may choose
+                                  a node that violates one or more of the expressions. The node that is
+                                  most preferred is the one with the greatest sum of weights, i.e.
+                                  for each node that meets all of the scheduling requirements (resource
+                                  request, requiredDuringScheduling anti-affinity expressions, etc.),
+                                  compute a sum by iterating through the elements of this field and adding
+                                  "weight" to the sum if the node has pods which matches the corresponding podAffinityTerm; the
+                                  node(s) with the highest sum are the most preferred.
+                                items:
+                                  description: The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)
+                                  properties:
+                                    podAffinityTerm:
+                                      description: Required. A pod affinity term, associated with the corresponding weight.
+                                      properties:
+                                        labelSelector:
+                                          description: |-
+                                            A label query over a set of resources, in this case pods.
+                                            If it's null, this PodAffinityTerm matches with no Pods.
+                                          properties:
+                                            matchExpressions:
+                                              description: matchExpressions is a list of label selector requirements. The requirements are ANDed.
+                                              items:
+                                                description: |-
+                                                  A label selector requirement is a selector that contains values, a key, and an operator that
+                                                  relates the key and values.
+                                                properties:
+                                                  key:
+                                                    description: key is the label key that the selector applies to.
+                                                    type: string
+                                                  operator:
+                                                    description: |-
+                                                      operator represents a key's relationship to a set of values.
+                                                      Valid operators are In, NotIn, Exists and DoesNotExist.
+                                                    type: string
+                                                  values:
+                                                    description: |-
+                                                      values is an array of string values. If the operator is In or NotIn,
+                                                      the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                      the values array must be empty. This array is replaced during a strategic
+                                                      merge patch.
+                                                    items:
+                                                      type: string
+                                                    type: array
+                                                    x-kubernetes-list-type: atomic
+                                                required:
+                                                  - key
+                                                  - operator
+                                                type: object
+                                              type: array
+                                              x-kubernetes-list-type: atomic
+                                            matchLabels:
+                                              additionalProperties:
+                                                type: string
+                                              description: |-
+                                                matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
+                                                map is equivalent to an element of matchExpressions, whose key field is "key", the
+                                                operator is "In", and the values array contains only "value". The requirements are ANDed.
+                                              type: object
+                                          type: object
+                                          x-kubernetes-map-type: atomic
+                                        matchLabelKeys:
+                                          description: |-
+                                            MatchLabelKeys is a set of pod label keys to select which pods will
+                                            be taken into consideration. The keys are used to lookup values from the
+                                            incoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`
+                                            to select the group of existing pods which pods will be taken into consideration
+                                            for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming
+                                            pod labels will be ignored. The default value is empty.
+                                            The same key is forbidden to exist in both matchLabelKeys and labelSelector.
+                                            Also, matchLabelKeys cannot be set when labelSelector isn't set.
+                                            This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+                                          items:
+                                            type: string
+                                          type: array
+                                          x-kubernetes-list-type: atomic
+                                        mismatchLabelKeys:
+                                          description: |-
+                                            MismatchLabelKeys is a set of pod label keys to select which pods will
+                                            be taken into consideration. The keys are used to lookup values from the
+                                            incoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`
+                                            to select the group of existing pods which pods will be taken into consideration
+                                            for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming
+                                            pod labels will be ignored. The default value is empty.
+                                            The same key is forbidden to exist in both mismatchLabelKeys and labelSelector.
+                                            Also, mismatchLabelKeys cannot be set when labelSelector isn't set.
+                                            This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+                                          items:
+                                            type: string
+                                          type: array
+                                          x-kubernetes-list-type: atomic
+                                        namespaceSelector:
+                                          description: |-
+                                            A label query over the set of namespaces that the term applies to.
+                                            The term is applied to the union of the namespaces selected by this field
+                                            and the ones listed in the namespaces field.
+                                            null selector and null or empty namespaces list means "this pod's namespace".
+                                            An empty selector ({}) matches all namespaces.
+                                          properties:
+                                            matchExpressions:
+                                              description: matchExpressions is a list of label selector requirements. The requirements are ANDed.
+                                              items:
+                                                description: |-
+                                                  A label selector requirement is a selector that contains values, a key, and an operator that
+                                                  relates the key and values.
+                                                properties:
+                                                  key:
+                                                    description: key is the label key that the selector applies to.
+                                                    type: string
+                                                  operator:
+                                                    description: |-
+                                                      operator represents a key's relationship to a set of values.
+                                                      Valid operators are In, NotIn, Exists and DoesNotExist.
+                                                    type: string
+                                                  values:
+                                                    description: |-
+                                                      values is an array of string values. If the operator is In or NotIn,
+                                                      the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                      the values array must be empty. This array is replaced during a strategic
+                                                      merge patch.
+                                                    items:
+                                                      type: string
+                                                    type: array
+                                                    x-kubernetes-list-type: atomic
+                                                required:
+                                                  - key
+                                                  - operator
+                                                type: object
+                                              type: array
+                                              x-kubernetes-list-type: atomic
+                                            matchLabels:
+                                              additionalProperties:
+                                                type: string
+                                              description: |-
+                                                matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
+                                                map is equivalent to an element of matchExpressions, whose key field is "key", the
+                                                operator is "In", and the values array contains only "value". The requirements are ANDed.
+                                              type: object
+                                          type: object
+                                          x-kubernetes-map-type: atomic
+                                        namespaces:
+                                          description: |-
+                                            namespaces specifies a static list of namespace names that the term applies to.
+                                            The term is applied to the union of the namespaces listed in this field
+                                            and the ones selected by namespaceSelector.
+                                            null or empty namespaces list and null namespaceSelector means "this pod's namespace".
+                                          items:
+                                            type: string
+                                          type: array
+                                          x-kubernetes-list-type: atomic
+                                        topologyKey:
+                                          description: |-
+                                            This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching
+                                            the labelSelector in the specified namespaces, where co-located is defined as running on a node
+                                            whose value of the label with key topologyKey matches that of any node on which any of the
+                                            selected pods is running.
+                                            Empty topologyKey is not allowed.
+                                          type: string
+                                      required:
+                                        - topologyKey
+                                      type: object
+                                    weight:
+                                      description: |-
+                                        weight associated with matching the corresponding podAffinityTerm,
+                                        in the range 1-100.
+                                      format: int32
+                                      type: integer
+                                  required:
+                                    - podAffinityTerm
+                                    - weight
+                                  type: object
+                                type: array
+                                x-kubernetes-list-type: atomic
+                              requiredDuringSchedulingIgnoredDuringExecution:
+                                description: |-
+                                  If the anti-affinity requirements specified by this field are not met at
+                                  scheduling time, the pod will not be scheduled onto the node.
+                                  If the anti-affinity requirements specified by this field cease to be met
+                                  at some point during pod execution (e.g. due to a pod label update), the
+                                  system may or may not try to eventually evict the pod from its node.
+                                  When there are multiple elements, the lists of nodes corresponding to each
+                                  podAffinityTerm are intersected, i.e. all terms must be satisfied.
+                                items:
+                                  description: |-
+                                    Defines a set of pods (namely those matching the labelSelector
+                                    relative to the given namespace(s)) that this pod should be
+                                    co-located (affinity) or not co-located (anti-affinity) with,
+                                    where co-located is defined as running on a node whose value of
+                                    the label with key <topologyKey> matches that of any node on which
+                                    a pod of the set of pods is running
+                                  properties:
+                                    labelSelector:
+                                      description: |-
+                                        A label query over a set of resources, in this case pods.
+                                        If it's null, this PodAffinityTerm matches with no Pods.
+                                      properties:
+                                        matchExpressions:
+                                          description: matchExpressions is a list of label selector requirements. The requirements are ANDed.
+                                          items:
+                                            description: |-
+                                              A label selector requirement is a selector that contains values, a key, and an operator that
+                                              relates the key and values.
+                                            properties:
+                                              key:
+                                                description: key is the label key that the selector applies to.
+                                                type: string
+                                              operator:
+                                                description: |-
+                                                  operator represents a key's relationship to a set of values.
+                                                  Valid operators are In, NotIn, Exists and DoesNotExist.
+                                                type: string
+                                              values:
+                                                description: |-
+                                                  values is an array of string values. If the operator is In or NotIn,
+                                                  the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                  the values array must be empty. This array is replaced during a strategic
+                                                  merge patch.
+                                                items:
+                                                  type: string
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                            required:
+                                              - key
+                                              - operator
+                                            type: object
+                                          type: array
+                                          x-kubernetes-list-type: atomic
+                                        matchLabels:
+                                          additionalProperties:
+                                            type: string
+                                          description: |-
+                                            matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
+                                            map is equivalent to an element of matchExpressions, whose key field is "key", the
+                                            operator is "In", and the values array contains only "value". The requirements are ANDed.
+                                          type: object
+                                      type: object
+                                      x-kubernetes-map-type: atomic
+                                    matchLabelKeys:
+                                      description: |-
+                                        MatchLabelKeys is a set of pod label keys to select which pods will
+                                        be taken into consideration. The keys are used to lookup values from the
+                                        incoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`
+                                        to select the group of existing pods which pods will be taken into consideration
+                                        for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming
+                                        pod labels will be ignored. The default value is empty.
+                                        The same key is forbidden to exist in both matchLabelKeys and labelSelector.
+                                        Also, matchLabelKeys cannot be set when labelSelector isn't set.
+                                        This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+                                      items:
+                                        type: string
+                                      type: array
+                                      x-kubernetes-list-type: atomic
+                                    mismatchLabelKeys:
+                                      description: |-
+                                        MismatchLabelKeys is a set of pod label keys to select which pods will
+                                        be taken into consideration. The keys are used to lookup values from the
+                                        incoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`
+                                        to select the group of existing pods which pods will be taken into consideration
+                                        for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming
+                                        pod labels will be ignored. The default value is empty.
+                                        The same key is forbidden to exist in both mismatchLabelKeys and labelSelector.
+                                        Also, mismatchLabelKeys cannot be set when labelSelector isn't set.
+                                        This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+                                      items:
+                                        type: string
+                                      type: array
+                                      x-kubernetes-list-type: atomic
+                                    namespaceSelector:
+                                      description: |-
+                                        A label query over the set of namespaces that the term applies to.
+                                        The term is applied to the union of the namespaces selected by this field
+                                        and the ones listed in the namespaces field.
+                                        null selector and null or empty namespaces list means "this pod's namespace".
+                                        An empty selector ({}) matches all namespaces.
+                                      properties:
+                                        matchExpressions:
+                                          description: matchExpressions is a list of label selector requirements. The requirements are ANDed.
+                                          items:
+                                            description: |-
+                                              A label selector requirement is a selector that contains values, a key, and an operator that
+                                              relates the key and values.
+                                            properties:
+                                              key:
+                                                description: key is the label key that the selector applies to.
+                                                type: string
+                                              operator:
+                                                description: |-
+                                                  operator represents a key's relationship to a set of values.
+                                                  Valid operators are In, NotIn, Exists and DoesNotExist.
+                                                type: string
+                                              values:
+                                                description: |-
+                                                  values is an array of string values. If the operator is In or NotIn,
+                                                  the values array must be non-empty. If the operator is Exists or DoesNotExist,
+                                                  the values array must be empty. This array is replaced during a strategic
+                                                  merge patch.
+                                                items:
+                                                  type: string
+                                                type: array
+                                                x-kubernetes-list-type: atomic
+                                            required:
+                                              - key
+                                              - operator
+                                            type: object
+                                          type: array
+                                          x-kubernetes-list-type: atomic
+                                        matchLabels:
+                                          additionalProperties:
+                                            type: string
+                                          description: |-
+                                            matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
+                                            map is equivalent to an element of matchExpressions, whose key field is "key", the
+                                            operator is "In", and the values array contains only "value". The requirements are ANDed.
+                                          type: object
+                                      type: object
+                                      x-kubernetes-map-type: atomic
+                                    namespaces:
+                                      description: |-
+                                        namespaces specifies a static list of namespace names that the term applies to.
+                                        The term is applied to the union of the namespaces listed in this field
+                                        and the ones selected by namespaceSelector.
+                                        null or empty namespaces list and null namespaceSelector means "this pod's namespace".
+                                      items:
+                                        type: string
+                                      type: array
+                                      x-kubernetes-list-type: atomic
+                                    topologyKey:
+                                      description: |-
+                                        This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching
+                                        the labelSelector in the specified namespaces, where co-located is defined as running on a node
+                                        whose value of the label with key topologyKey matches that of any node on which any of the
+                                        selected pods is running.
+                                        Empty topologyKey is not allowed.
+                                      type: string
+                                  required:
+                                    - topologyKey
+                                  type: object
+                                type: array
+                                x-kubernetes-list-type: atomic
+                            type: object
+                        type: object
+                      mode:
+                        type: string
+                      name:
+                        type: string
+                      tolerations:
+                        items:
+                          description: |-
+                            The pod this Toleration is attached to tolerates any taint that matches
+                            the triple <key,value,effect> using the matching operator <operator>.
+                          properties:
+                            effect:
+                              description: |-
+                                Effect indicates the taint effect to match. Empty means match all taint effects.
+                                When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.
+                              type: string
+                            key:
+                              description: |-
+                                Key is the taint key that the toleration applies to. Empty means match all taint keys.
+                                If the key is empty, operator must be Exists; this combination means to match all values and all keys.
+                              type: string
+                            operator:
+                              description: |-
+                                Operator represents a key's relationship to the value.
+                                Valid operators are Exists and Equal. Defaults to Equal.
+                                Exists is equivalent to wildcard for value, so that a pod can
+                                tolerate all taints of a particular category.
+                              type: string
+                            tolerationSeconds:
+                              description: |-
+                                TolerationSeconds represents the period of time the toleration (which must be
+                                of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,
+                                it is not set, which means tolerate the taint forever (do not evict). Zero and
+                                negative values will be treated as 0 (evict immediately) by the system.
+                              format: int64
+                              type: integer
+                            value:
+                              description: |-
+                                Value is the taint value the toleration matches to.
+                                If the operator is Exists, the value should be empty, otherwise just a regular string.
+                              type: string
+                          type: object
+                        type: array
+                    type: object
+                  type: array
+              required:
+                - agent
+              type: object
+            status:
+              properties:
+                conditions:
+                  items:
+                    description: "Condition contains details for one aspect of the current state of this API Resource.\n---\nThis struct is intended for direct use as an array at the field path .status.conditions.  For example,\n\n\n\ttype FooStatus struct{\n\t    // Represents the observations of a foo's current state.\n\t    // Known .status.conditions.type are: \"Available\", \"Progressing\", and \"Degraded\"\n\t    // +patchMergeKey=type\n\t    // +patchStrategy=merge\n\t    // +listType=map\n\t    // +listMapKey=type\n\t    Conditions []metav1.Condition `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\" protobuf:\"bytes,1,rep,name=conditions\"`\n\n\n\t    // other fields\n\t}"
+                    properties:
+                      lastTransitionTime:
+                        description: |-
+                          lastTransitionTime is the last time the condition transitioned from one status to another.
+                          This should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.
+                        format: date-time
+                        type: string
+                      message:
+                        description: |-
+                          message is a human readable message indicating details about the transition.
+                          This may be an empty string.
+                        maxLength: 32768
+                        type: string
+                      observedGeneration:
+                        description: |-
+                          observedGeneration represents the .metadata.generation that the condition was set based upon.
+                          For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date
+                          with respect to the current state of the instance.
+                        format: int64
+                        minimum: 0
+                        type: integer
+                      reason:
+                        description: |-
+                          reason contains a programmatic identifier indicating the reason for the condition's last transition.
+                          Producers of specific condition types may define expected values and meanings for this field,
+                          and whether the values are considered a guaranteed API.
+                          The value should be a CamelCase string.
+                          This field may not be empty.
+                        maxLength: 1024
+                        minLength: 1
+                        pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
+                        type: string
+                      status:
+                        description: status of the condition, one of True, False, Unknown.
+                        enum:
+                          - "True"
+                          - "False"
+                          - Unknown
+                        type: string
+                      type:
+                        description: |-
+                          type of condition in CamelCase or in foo.example.com/CamelCase.
+                          ---
+                          Many .condition.type values are consistent across resources like Available, but because arbitrary conditions can be
+                          useful (see .node.status.conditions), the ability to deconflict is important.
+                          The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
+                        maxLength: 316
+                        pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
+                        type: string
+                    required:
+                      - lastTransitionTime
+                      - message
+                      - reason
+                      - status
+                      - type
+                    type: object
+                  type: array
+                  x-kubernetes-list-map-keys:
+                    - type
+                  x-kubernetes-list-type: map
+                configmap:
+                  description: ResourceInfo holds Name and UID to given object
+                  properties:
+                    name:
+                      type: string
+                    uid:
+                      type: string
+                  required:
+                    - name
+                    - uid
+                  type: object
+                configsecret:
+                  description: ResourceInfo holds Name and UID to given object
+                  properties:
+                    name:
+                      type: string
+                    uid:
+                      type: string
+                  required:
+                    - name
+                    - uid
+                  type: object
+                daemonset:
+                  description: ResourceInfo holds Name and UID to given object
+                  properties:
+                    name:
+                      type: string
+                    uid:
+                      type: string
+                  required:
+                    - name
+                    - uid
+                  type: object
+                lastUpdate:
+                  format: date-time
+                  type: string
+                leadingAgentPod:
+                  additionalProperties:
+                    description: ResourceInfo holds Name and UID to given object
+                    properties:
+                      name:
+                        type: string
+                      uid:
+                        type: string
+                    required:
+                      - name
+                      - uid
+                    type: object
+                  type: object
+                observedGeneration:
+                  format: int64
+                  minimum: 0
+                  type: integer
+                oldVersionsUpdated:
+                  type: boolean
+                operatorVersion:
+                  pattern: ^v?(0|[1-9]\d*)\.(0|[1-9]\d*)\.(0|[1-9]\d*)(?:-((?:0|[1-9]\d*|\d*[a-zA-Z-][0-9a-zA-Z-]*)(?:\.(?:0|[1-9]\d*|\d*[a-zA-Z-][0-9a-zA-Z-]*))*))?(?:\+([0-9a-zA-Z-]+(?:\.[0-9a-zA-Z-]+)*))?$
+                  type: string
+                reason:
+                  type: string
+                status:
+                  description: AgentOperatorState type representing the running state of the Agent Operator itself.
+                  type: string
+              type: object
+          type: object
+      served: true
+      storage: true
+      subresources:
+        status: {}
diff --git a/charts/instana/instana-agent/2.0.13/kubernetes.deployment.enabled.png b/charts/instana/instana-agent/2.0.13/kubernetes.deployment.enabled.png
new file mode 100644
index 0000000000000000000000000000000000000000..9358f6f1428da753b468891bb443da5b607c0c5c
GIT binary patch
literal 71985
zcmeFXcQl+)`!+g>AkiX;7DNdVB}nuxdL4a6Cy37IM3+XQchRD^8KaM0g6PqWHfq!v
zEm5PN$NM|qS!b>D{d>+jf4o@hu`ILqz4v|J*LCe{KVP*plt_tai9jF_sfx0^4hV!t
z3<BMeze@o8MeKf56!0LhR8x`%UEh3Xw-hCSKujPNc^SQT8Qb$d@ASNW*Z$p5&r)H+
zzbkpKMW301Lx%!0OMIKk(~G<9$Sb0Z^1(pWq^VaIWIIs%#WW?pbpe+w2+NwE@F`yG
z@{;8xxoF3ohYy#oOsG@dt|#t2exD&;^my4-<OMJ_s2G-9(5iIvTeihhs+;Gx|33b^
z1^=yr|2D#ZvEctBIIKdSfI?QlFKKjwEaLX-s2w+UA10;f_cPvQrze{_838TTTc8Zy
zR%0eagcQI2b#q9akiYjgYRli?hg;9xYC^mTqF|=%qjbI+YvbtK@3SrG1fl9CEDfeG
zLuc>Dih(iYplHT+EoGTD^EGSh*%ptY=A<MC3c5U=Cpr_gkb^S@2G{0q3NJuPz<gZ%
z;+lvlXDB;8G(yOEqEvx+=1KG!11%`yWxuLwVoD}5_rvXHKZT)LuuKZZsp8f!eEO{~
z_)E(FE^l!gRvKX<yo-GiP=|yxPDE7oIVig|F(sMPYMd=;d$wRV6I0@Go_NOa(Deli
zRY)fUYL@eP0NPJ|7p^<Z5dL-TxdCWIYt`D8%VV4k<%~AD^z)AE>X0-I>3kW%`2KcS
zPHD630X0v`JXR;>s>RwzWXoR}6mnT(H*dsKXG}L$mNdLEwUpr3xAgl}c6YB+cId@b
z2o;YpN7Hx#Ebxq+2sHA#>p2_TanFpCeW3*6C_H)M8e;XZ5;XBzgnlwUYiy194!Xhi
zzG3Mk?O^ag)D-S8PVR7L%ADbknZ~40rj+{^s$W_9YI*pepF$3$WTuS{9yYbLZ*8V-
z#v!{I$Hx16E%lyW(Raz{%`Y7X{NHsHd=<E(NkD&$AEpaJ25S3MudNd}TNch3$XwN#
zsY2NCZ{I>1wi$98)k)<>q#C2_^GwCPH>32;in~T{fyfHMs#V(>VPnBFdW&+mqB%^K
zNaXG33rX<hEKnMvRhU00u*PV1PUqoO)1KX&p)JDM9p|D!M{?(IblV5z`S<>8a%xGL
zq@UgES@J0HgY8}cpLxHCA&HHEH5*$jro2^8-Klh_Vaf6cyJ*gTby^QCx-QLM=N3F|
z+(Nh5?)3(!QFBjhU$+*NI;Y}BN)mwoeR#z9^5uR|klFXv3(x4*tdpn!sVu)EY!Mx-
zRpI+LgQTPsEaQ0L=GZ-byV3i^HJic2Z&5~G-Frjm25K{tyuV?c7A@z;bZ59~O+6!>
z+!|&%FWh6>5~Xq}?HEcBSyzR@M4_p_vq6i|6CDgYb99j;-sn>AZSv1=UgmRS+$VCu
z=|;ZM9c%jLi2C|>ga4*h2s3xPHf%Q6sIT&<xQ(&!t+JE>?Bt{CcUm58|6cG7!YQS(
z(wdjL<^lVa1X&X5m^$jsz46`AELgq9DZa1R&acIi`g&zu*fruqdp0X}i&uIo5p(@C
zYq2PTH=VU;yucrJp3r)IoDSb1z2n(q4x8M!R`dM(NrhI_uQZw0xHPPA;gN4}UkBsi
zQlO9HKw*^FUPlBv$LjguyM4Eolc97$+UsABHMa^jZ0vq4F*m;bO*vZ;)UtcA#oa$R
z6z)(8B1ir#1XDi3D5vw+d*Av(r36&RDm4`c`CYhS1Qn`EA_kKuJ$HD0cw&EI*M8wk
zE3{8Bjvdp#ERE>VoXGEMOJR*-5ZAzR>9Yr}4b$@PM)rEb>Xi7+{J>NZ3UW%36W}Qm
zj-r8rp6`Cp_{6cY7KZu_GHYvVxWYlQpIi4h?JK{?-EZz~tk?`<o-sV#-H|Qcw(R9R
zMJ|3TgnLyjHf_sgtgll^HU8|r^0*`KaN^=dL}{H$LSfo*OwZd&1J6lcYIbs>%|U(h
zNzn~+)}~Ik-oMnV8`#d7YJsbLgl89e3JUg^6#+N?p}*WaKRuiGrDkw11!+A};WlRX
zII#KN0+Rn~0LqPRYcZ&dq8-?EotWiQihhjHl)idBe0gq8D`HoH6}V1&r5nF`a+;Wx
zg#d2}+nwyr?-O323)SfO1opw@z6Z(i`OKZ6N((OO881{gdk4nLo`^$CO!AjmdWuV%
zU+{si-+x5CxssryrsiO-{8}oMZWgp_`1!U>W@2)o)TO3Q*41;Bcur0P&ybYwYO%wj
zQ&<+C;=x7`a&C_PSy4WN`vn#e1pTo$HDbZ?bii&-L_>2pKtZEOZ7ayozqgW&P3Y?x
zKVir}HgJt~CjsT|bU{Aby(3Bb>~;YA*te%4x!>yRjm&q!br%p}lfZ_BpcP1F<6_*0
z7NIipB14z9GW>&9$V(bM%&Ojuy2i)Z;IJ9X62DEY2q+Rfm0G=V_?@tD&f+Y{Ugc}N
zu8!bQPS_ESco^GW;?rkYS!}!4+GuwnUqJepHnkRAJ~;~aLQjeNY-_oz;+T7~vJzN2
zUnXY68##;mw_Vwvj>$zQ830)zE7H{{(rxliA}4-L@dclWh>|i%)yYh}h-rsc^cjTO
z%sq7>@SN0ZZw4{zpQEKbzT0a0_bd4Dq$f+KhsSi)&ENCjs4XQ2r^zhn;L1L~@>e;2
zH~61hL9Ju(k8^*YRzfn`-1i?t?Tpu<+{QJ^<^gAwg$urj@4m~BXF|@LD*LAh#$|SH
zjyP69HPvv33m~9n*LsJd#fCj-jrE#!6>V~H4-rUkdA}Y4)izx01V!J=C?%9{XS_Sn
z|9Q}c&E%Eg-@o_LPWOu7Ev<g&Vb0#+alznvZ2)f)dUmv5l8@9z4ia$%Om8`+n|KKq
zMRKR3UzGT+PT`Wc1XucctPNfmHT-@KZaIK{mSqOO6@8i#ITbk02w|rf>pt3gIxt&v
zmEtg9c62~Av+XVDGRg=4TeN*I1j3~+pR8>Lg%9wGC@~Iwr$igv$}TL0reCz3SrCFe
z0*df+$;ra*|FaKrc59eF>tuA%R_so0;YwgF$gfS9Umh7#knY_(;P5vtWJvR?Yfdur
zZ3(-6RO$Uh4441j{%kexeqw4RWT9U*@NASY?eD~+a82dJE=%nmjm*Q9sscZ3!(&d)
zIi9xRBA2!^lTeG|z#@$}>%r4EwNyO+%%rk32U2)O{r8#+4tSd7sUn`i|DG_$7EX9S
zIb0Mr*N1s0?;q?R{*q=);9Z)kcu*uS2n7|t>YP5;<PMQr5@5}~MI-c^f>fEV)LM;7
z!OW4Ky8LfK*@VAKOU{XH3wHz>uEvv||2^;wduscA;+O6Bu|1cI6$|7ZZ{1=Z_C#~k
zOW%YIfrh(^l#UOHs7)=nR<rg!dW5*AuRe+3l_)w{@YNM+G6kwi-^{;d)@L(+zR5==
zen{k;UQ*~XC@Cqqf7jKnw_>^RciNVNz!k@R^{E<v*wpGh>H(nQJ?eHFFL%!;8lBzs
ztnfh~ub#VM_Kr(h3)kDmUbsoquPTGlXN@gMN&UUkx!yZs^1I!7CI;+9JxChOUk|v&
zg~iqIPfs1tg;8nG1f`cQf9J|N5B!QW`9z<k<@IW5cfQH9Z%<=te*CH|r&G!9pqtbI
zU5k`}4O_%WOY`b`r%Sp^%7cO09G$JOiJF7T*<boioM?rF!ft?^U<m78;*kPFo1G({
z;L;ps8l#MAVF&4Z&xP#aKiLS)Q*IJDWEymEY1gyZtT4br%LN?J12g^rjsfTgMI|V^
zTLKodn|7An=)GqKNC9AlU&doW6W<15Q-8Gcw)|;;V|=vR+grtW8yR9cd##s>f%ox1
zprtQBFF&D?a)_K|E1Jad70q7?&;PZBQJ)$A3;53zp?4<U8}DW4EXn~>iCF%;twp%o
zcJ3V|cH~J)=Nrz7Ei-l*#ZOTmnH;1$0-zn9n`>hKF>G^|&LtV`ki@#Sv4$Pc+}J$#
zUF_XBDACUfYFu77Uj6zNEzKCD4A2oL1rg4rZZ6;d`sz!DcbHV#Wmz)Ml?;ZDAB|GF
z4^&jHo9*`}kCg<rNC|F-nM9}BZTJUIil?0%rMNd{&<6F>JYy9a<#il8I;Xqh<r^GR
zAQn7tbK!6_E)?^`<$Lhd%U=?bMEZ&Ul47j3l>&i6(g0;8R^j<q)@y5qYySvfe-7d2
z#$-*pMOlH-e08u%!o4ef04HdJPa#AEw;NY@g%NHh89d)#su-rGp5Y=ik47f^4}Y*|
z7Ax&Z88!K#E^cKJkTGzkqYJ6C(sN>@Gmx)}qQ}3D4^M<!4;=oKW=I@#K!0<yl}DMW
zXmj_d3mgn){H<9CK6w%)>Xkt&7(G5PJQzE^rXy>a(CglMweKN$JR;z=hc>1*7g9k0
zBz_|>U~RTWt50!q&S5hfK<=XH7q#E#{dB0r_HCFYS`F()^4G%9vx3<8{9lpC{=V5l
z$Feq+=l2;oRB+Nv;PMs;-JmSZqVGY;K*wuPu2J4_fQrr;Jj?6vzprTmrzi3GqgFi}
zfonts<rfXJ8dvR;#tCZ|vpMTr08SF_UFxTp2O_&Qn`PrYvH4t{gP+uDPTKzhnA0M%
zVjo2#spzBLU>@%|ginoq&*8Iqlww}&-Ba-K|BAN~ME|T)<1yvTXi|RSgdQ-9VSHlj
zv^+E&%qx9TD*HZLLsd-|AlDMj>x3W=-~T<4YnKbBt*x%V-6~oeI3CQ3hcmRC)4R7G
zLZrEtP8<)X$DbYu!RU)_`mnRnD?Z<=trX(s78e>rpI5bC)$4glNH+Q5^gs_F{GXCa
z%w(u1KyMsBApW5}R<FI{V2;`L#+PGO(Fu_KP$+d+VHUV7Dk*ZrWB7vVXnS6tIx4Fe
zkfh+0I=4%)LBDe^?r$eZKotW0({CgGr~I&el5WslsLZ(NIb$Zn>Dl%Hk6z3|AepGS
zjM?{XvamEEHF)jSCpPdiNSCaJcQWhER(*q6*{i6qQvKgzu{0nHD*AoHhD+JZv&jvR
z0V?h>>a3vB5}yUQt=T(B$&R>Qx)24C{p@@lmsI7~tE+#yxaooj00>~MS0{XL<y#i)
zlKJg6`}~|I3FCa{V48Xd4JI)Bi=d?BZRkq<zut?}2GO`he+dXR^WycN6;<b{tB}9X
zc72>XbEKp}Ag%L%yTk$@F8z!An@P3U^K1J`#IEE2HoBbU5q*}Otq+>NHC}FZR86#h
z;5o<$(*tk?V0j9XJ2l)^)g44iHxaD3iv5Q}^_}t*wFjr*UUZ*3Esz)3qTaI$sjSKT
z^6-FpAyI|+#7b)qlvk-)gAV`qfQ;8bPQL%mq_G2udE@dKQ@GJ;!-HDd%igDfQi12_
z4L%aN9dWOC)~;?L9gSll;J8xa>>dv6Z!*uB3{d7X7(Sp$o7Rwr{aeULzZQ;?9WqDJ
z(O*6~vrIR<9WgvS;<Gq}E+pML{3CZ#;_5H+R&+<qb3z4g{IE}nksT1Vz*+e0Fz>#=
zO38DItXOt6QcH{L;pacGDj?7Vk>xErki@IXG}o@TH~PKt;`f2)@=Ou-NZ)KCY09kp
z_zB$7;^$^1ytsJchJ+ld?Jx4Vj<8{STg~H2TW1JfeTQ?h#^dhvqqfrnfrHedTq74C
zDV;_d0tbdjC^&GF(P6eGwNNuXS9<=C@G+mj?yu^#<86O}4s%$W(qNk4IKY{O#6$Fm
zqO5oFavBVUjxNPB<KIrM1N!?_9R+wnpqI9vP8K@Jf4KNvSG%A~jD4Q52_nXiD5xnN
zjBN@@Isw54|NZD8yoC`+S<~CPhYue<gUtI0uvkURqPCdMzl-BjQd9L~-MG3RJv#Ec
z?;|=ov~l2PU5&A>G!VGF;s^(Dobfuq7-fBv0VZj4<ZO+0b^f|`Oki-^RRHM6uTVk9
z)mmEBt*N}$u-gKj)go0O0j96uG`MEl6>h$6@m3C#3N#%#8(jgw-v-b8Q*m5;;&hFD
zl<cx{vPZ?~{(-yKkbTi+gr;<IC-z3sXh4&bxy|yUGn?ouN|TY8VgM}2#3}Oeq!~dV
z*SGa_4@1O8n-$ce=mnvg7b`M@zSpK*J<si&&p40N)W+>?GfWpd0sPcvq5@5%w#~WK
zv4L9^rFo2V`}c`Vy}KZ|*_NVGsAJ%LQV>Y~J)nGx((3F=_=lwGTEhTlCBvKgk3s$t
z@I`>H|2H4jh&^CJCKai2eev+{8vhM4K<IET9dOZ*OrBJ@Qalc2MxfbJFdUjrEM3po
zIHj1isko#ucW}g&0D0@LSr_!rHbTTB!mTT5!ee5zBk~p9#hk0E65h$)3oCfdR2;6F
zrRu#icHAssSV|@6GNX#riMK{oVQ$kqUm)>76A`a}l$UZFLt@hr(=;iK-p&O-e=1fP
zL;|)C?cFxs?B<Ki{-L2!;PWWwMKf@^aEiqr+dCpgU+_UcwDlYPQzpyJxaBOoa1%O%
z={@L^*b&go6Cso{MvvQ=jg!TyskYR-9I%bNa0{kTx~7*uMt}S@1wIPV)5=Ckm+R#j
zq!5tUX|gZHItfLHdD@k=2I@i#&ERP1D|QzJg~0p7BFyB(ppd*mCSiTR<be!8|Kb)}
zQ2$Bay`I=<gOsylaNHmp^6KjwP&9$%Es(3;_Cka1V>%&r(T0-Qx|L=RdWNvhvW1p}
zHTM}549$s;_x{F)GFkZ~4SJn<0M)a*#CZzZ&l+%W3_3_$Kk-o?|E(~9Xh{Yr%(TgK
z?B6}=V#lc=l;8xx+U1G#s2Xo;&e&L0ucK*`_ZaxvC(7?|6B@&UFbB@r^G$V=;gpYO
zEBsK6hr8f_+g_gx05oYp(h2phRUte!lEYdeKYe;<dJ@LPs?z>iD-~09bm<e}IdI*i
z>ob2uP0IKxzcv)Z^unZGUQ_ZkLow!Y&MPZLc0m+U$Z0P3@pX{4&*EwJ_w-X<LB~l}
z+#0xHgBhat?x;8K1if4wbF<Xld5m3GIFj?%uzocaH_l)AhZ}IJ22GSa`K&P8U=`+f
zq9K}#$?g96P5?Id&7mBe@$M_E$t#>8czcodWkuE;Y$}eduKnM|c!R@2bLwvMfo7Ef
ze25k{Q}sDb&^b39)(nZD=AD|c&4Lc+m6}&p@}QiOvYpd~xhm~-cVq8N+`59^0^!s}
z=%L+(QL3upx+WP#lPQbE+L3IU-?K3;S%ti<{}eYeeF|9tgJbjKi8MO?*+5ciY5{D%
ziJcqSHY8%@ggT|>H7fI2yi~^2T9;V$9E<H;R13U$z1VwRcj*idI%yhDO2|Ysm=Ei#
zt4H$GFF74yr_?m1Pcz2Gr`S0-RHn>)d{N^cY}$mCvVx9L?jHMz@ng^go;G>8utJFO
zZWncC5qEkWZmZz{qHR_p^HFn*R9HRQ<glfsLYXJ!AjElh5?Ni=?B1OATrkSdm?3c0
z9%+JtE^BE8pB~INUbi=`x;4f88F!)4iBGrpZ|7NiYXf&aKL$?vOZA=jL!c0`>gsv}
zKtL7b3rHUR47307BdBV|X|~2qZ55TuZ$3`U+ge7&9q&1~#|v0iV=VWj3wYc93Gof4
zm=BF-`YiC44<poi%$bVDOT=MWg{KEs)TuUW;hvHQhw6dH*eO~u0WjcZVXw{^(TpyQ
zVBb@GvCBwZh)J`Y&w^XqhxRw<#;jm4zfE&~j@<a+hV)|bYNAl%c^RSL$<`@4`FyqQ
zJDS=&AaA@U3fdMVDR|x@>UWNuiL-A6Bw%FZi_5L7VTbWTZlbWxxRbJG93QFr7UNOv
zA#NW0_1<5Hx%$d6f=pJ7+ac@Q^ugRo<f9uX(R!)3*m)~jyl1$L3KT+6RLo@l_wOtB
z270ervWTwSLhvI!EiH0iXLP?HZ7}w<aUVXws$$g>J<*?pKslgkGlgJ@zzJCLBrC<M
zzu2O2<9nNG{E+nZi+TS&&zAju46Sc}Uz~NrJZvyv*}Tf&1+7rPm$If~Dp6An$<tL&
z6&;7Bx8O`ZQ%sdR#mZm1$tFfzKUa_A*jkEme0SuNlJIcV!Eb-#f#!P9KtAPwa_Fv(
z>07Q)i?4;v7Xp2yFnNBy#iOsNSh)V{RMulXAgBJH$PpH8%A!by{t_o=jq&IQ3t;$Q
zb2OJO?Uq3Qd0`7SruweK&L(nwoB8;NP##K^57Q@2zukWR6aXbHTW>0Au4fIqJ_}Al
zO}|%GSj?}_Q<Yd%g0jqkoXyr-RI940Qrv~k+j#8o(&+*DD~gmbv|d|_J0&37F5hc2
zF8=-diK@DKEGsF41e5#V>w|Tb`1}M-28z_@4bF}#Ix=SOy?1!x7B{9s-k)n&&jvT(
z<9`PF7YEY<qK^9XfwiEp77d3uJ~i)oC*gPTl@Mj^5t{tsQkyH-45^@&yw$Wv4aZjV
zV*82;5egCOg0smhN%I!Ec?Nafl#hsCJF@_{#9kf7+Bt8Sio2t>j_2NG4VUkHRuC)F
z4eNEJn{=7P?ERYbISAGQoGW+tbO-9T_0?6?_}vztMl7G2YX4L5>GM6iJ$nL_lYP)e
zX7gNtD80AWw!!7x=_C?f$oqmb{HN@SViX)~RfnMz5RED{J*Pl9X635!N}2<EarV2q
z!S4*4>UW%)BH%T<a}%LqUN_Iqtf|qB86^JmHYi&|&#xt(HKl1+Lnc07fjFh#7z^3p
zfmD(ceHO6pms3?%9$|^m(B0s90yMAJ3Td6{GF&%A;yXMfRVpxC2U9>_@$2W$KqU?b
zcf#i>1JBx|v#ZAVy1IH4%!Ye^#j^@J$J3zQJv<IPF~}2acY4`mEHfTUIk2aVOC5_?
zj0=_BW$2*bLh?!~W=AXNYWIwRz;$l<wk<$5)8}tZ(^0#vXs1Q9e0?)tW2AAN&J<53
zs|ptDn3UCK3P9H9vtyD`e7FDgF2D{)3<mj{DLXP!y|1`YS){?4PGu|^nX0PlKzo|h
z>Jark2-nbSuOyh1F{ilfY9M{x+&H_{c2Q*(wL*(9tlrd!v!AUg**_pYocEEwSQqe*
z(V9Tl(mOf{sjWWs0HMNI0Df(J0H1wTj(onAoT9&pC<jWbBd3Chm{`#N_&L0^c%sc#
zf-|fdcURFt)p+KKH@9K4iKM?LB&gk6@;Xa@_2^8`(9o+UFEC7xlzv*@L+VWSBjJ6$
zi1oq4HT{Fb-w`f$KmW9cwS1I(iOh;mz-&ed+X9A&2C#@+Yqj99W*2I^j-L^EW@YoR
zaRutkyt>8jNVczE#hmBZQFh<+Gv*`$|Fzp1wX9RmyAK=zd7qv(aGt9-6cuf77|lI(
zqka$?>EIK2TTA>#nY_xWe;0OjHS#E~98>FzjAIGIO^hpYJSzaN9(B7#3A+96I@`nS
zZ2=n+-{mlBy~3-tCnYIp)g5s*4AlSqDa}dex=U%ve@j+r0cdcQ5fXquvCG3(jaQ+F
z`~Hyt(Vu9vfKR}I29J2oTeiuXE~MIqBu~`A-&`%Ck_CPD?|klL9!xuWzYuUR-@E1Z
z*X^wHD8Xx}!B*ZZ!p2xJinfrEiU*zlb!zKl%!1a6Vr5uMCP;%`@f!&t8TN9x6;cG7
zPx>}d3TSG2{&3=2$Ie+nTB&AC&hs+71=aFe8z<d!Z;q<HhAk~^i%JuQ6ibP72J)1I
z1jI%2j>CLmQhdC_hK3kmrvU;3<v#^OIi|oBqb$k%4GRjaXKT5Q#eH^lstdu1@o6ub
z<}Yjm!)B9#DvOWTdB#c~JoSnKwunTvy>%SvjSI{0?o1POHzqAO+H#{%B%mL+0gNV)
zs|jGw;KmB9P*Z6FV2L-4P^1wYf=EU+!T^k)NUTLwl}=C7cx_FJ!tL*)xP{Vp>PhfH
zUK{_!EFJ*5`ZbdI|MAudX*YI-XH0yr*&JwR(6$U9z-c3O6-jjgG?CLZ04^nbmFupK
z7K}{S|9%=K{L$_z%nEw_(d~SvZsLR-1UkPNlC-<!<igZSQ&OQ*i6oA7{<yBB@n7yi
zjr9REP|~NBv!6@Q?vG02a%dlr*!cYB=AE;P>T-eLt81W+(M6h?my3+$+JL0^-|>9~
z=BWKV%b_oRt^e0Aow{Aq#N<hH+l*I2e9?B3ba(HNHPG{q4xKDCc?kII1~iyxMA7(G
zrLnTv4W@YkHK4ChXxMDmun>5{;*3cyh<<|EYCaeq3%M1Tw?I}s+_U1%IC?Dy>Y)ZW
zW8}>XvnrE$fA6S(7I%e4_v(XHR}s%i!y<>RN%g@Xm*|JTR|MR~x`^)FZaga2rJ$Zt
zUg2$ejp6e+>`Ga*o2^kgiV2=Wn6)(71C#HcU#il1#ydgNZH5BCj6wfWHJ*s;6nz&`
zmF6)oQDO*Eg+@S%qUb2me$Nz8z#@K~WZ9Ze`tJ>nPFJ#^MatsL-dza-1pAC_*I%*Y
zMxRI*Uh7Kwd7}$}{yBrA8dr|(8_##!>{dCRE1{m)WZegC#{^RX2}wgcpd)P=695nE
zTiyRKtV%o|e^p{;X5Lm=n_OoYX)<f3rw(JwMZfX>`30>oEb^-EO(iF1bK~LI!7~*E
zv~2XB+VE78zA2jut+;nSw9EtvK}_ml`lP4*9IG<S#U}zzPcZ;o(VL2%@_{p4<5;m(
z_o%V`DpOqaWk#WOV~CBbgDQ>3g6b!82l^^wryE%X{(G5a01AsgBo3PecApS*taMXx
zH4j+A6umv4aR8zlC~6j!8`>ST87CfYE7W2tzJ+%VH@{xMO|_l4@a!!POFUHpV(uT{
z9qA@bhv?|!zJ5u5<d<it0fT){<~46{xk{|X%^)z$8^$PyDBxDQJNohCRN*o=mP`q!
ziplatRu!Z30Rl?uy%7!;O{k%-@7u=rc;{Q^dsJ`$#~wa<lsiiX5}~;%iEKgGMDgsD
zcav%R8|8S4Eb<~khI(Dz*2B=<rag-r3k!!fO^KE^2jKUm=|bpH`q8m?_0jwVBLxY;
z4MRXN?-$AL*8;vxb<jMU<kfT=i+Ps+ZtDL8$kodmJ8z+1Z3BiQr7KlrS5E+djn4=6
z3Dy|(?3s0(fyjh6=tuj_k&Ix_@)g-x&}?=>qR=L*wT+E^-*3jF8C&zM-6n>KgW+r4
zo!O%Qaj^Om!xCd-vy~V!3x`a_dRM%+y6Ip^9q1{KiX+A93}!h3+>VdgmtQO1O?hd<
zYwjFN_ls-t^#B4>S|1+Z`f{<bQqp+W_w0~E)mcA~?ir-1c3CTn5kyZiYzP9;S3^sc
zr{;Ymivb5~bycWw^S8(0lH3V91(AZr%#69;nbF#Y%M@zLG^aJtzkkJ>i~KG-3yUsa
z$A6qgkqokD&jh0`946S=;HO3?SP5`PLCH17vUPBNp=yp2+V^tDz-_giX3`9upI{M_
zo7kf730)m^J|NV`U@!>OQ>u|UYd^D3nRa^N$ob+$G9ba`$~XF6l6Y-TXv9;{(IK|C
zoz_-YIRTyaf08F4`wR_58?RfH{==QvD8H5x4(Izf4wkU%8|i1y>qZZNYV$pyvRerq
z^xNFiEUu_vugW-nq9f?~#(eN}li2$0+dg9~Iz!Zav!uwDlbN|yv9jWN;}MaY-@_2x
ze`t`4jZIPCB<Sna`Qm+nt1-vJCJ(kvwEp5Gx-Bc8?8d;FD7N4%|Kl+BbIZDNMgZW&
zw1d$Nv4dY~UW0<d2ta+!yLO__u9`mI5TgQW0btMn1Zj&hI{NX^r^J3-Uefj2>a0!r
z3LHw3>DEotFkjYN1#8;5=HMv#%4Y7BFeG)(cXNust>)O@@TcS9<K64i#N;GKKLXHm
z3Kn`YrQkVA5t)|jnL6AAvgu($8XCAcu~Kwv_jWdDQtS-#K^%BdQc`m9^Bad+unQI-
ze?R&SSXy`Q=;`RdKYfCGoVFyHIS)=39`ES9UGyl*&h4;lkl^WhC!t+_;+pbkCqSxP
zQ>f|Y9{j$<pKq2{5{+w`!g|I~4UMw>gIa`FI`l?O9ZjE{Yz=Q1=+y_-O<u(#WmuFL
z+-FH0CwrX*6DP}iv}qo@s;76w-3W|wl?3^tttqv@^J57n3f4ZGY6#|m_y6$WTP4$Y
zfDucz+3EY-$%M><g5GOLUs?tp&rG?CJONHCfTMyQdp3YB@d(391{As4(bnR5g`AAo
zpMzT=Er7oTK&CPv?`ggIT_yMb=$<Wo)TCf!EEmMKZRWoZ^g6>@;r!o$G+qL77exAN
z5!Pm?4`wL09)K3-HtVFA2Yqey+IoRN8!gJ=xqi5zM7xkQVa+i^+e|3HtF9kb(ts;6
z5U3C+lK(#bf42orN0LBH8lFNCrW#FZ-UvBpC);Bk5qce_%@pCKBwnqOijE^mb<lGr
zfDuCcEURbNYI}Muy!u~8I_y0Tg^;BKKWgn-rJR@6a1uREdNTC5-K~r-H`$KnYeF-p
z%v;gkvni!QSY|}6RrM5)ne(`0%QENQ`l0<A;6GOi8opzCl|Q|(hxZC7nVox&5yh;<
zS_bZ-FK{Dca42|tR@@pQAP_&W3oU4qU3gs}ySy~INCSFKaubl4XR&fGH`(TRf%Vzh
z^YW^Q51fe7Mxk~~<-rwhT%6@p0gKfHKbkoViECwrMmU=b+~Hg$*5jmkN(-8h`p*dD
zVAg=<e3LA0q}KXzc1K%dkSIm6yU(Y@rcMOo<XPfmSJ__{D|B_H9PB)3bjgl2Wsn6}
zLDCgbv;e3Wa?=(lJ9E~by)ZAmh)=Et{g?+MJ!<`je{+efDHVL?Wg3J_eYpaS>b=7V
ze7x)~lw<r*9{oGhbfi#U`bziNxqX6u2zKL;6+n2vILoHmX1qt1E;rVyeD`y~hs;}n
z^~HJ~RK7{Z0q?~3&4LXM^nFpTNd1qEVxBV`mALUCj+8tHQ^@Fuvc^q7&u#)zVtRNl
z8g87u%S)e3<Z~|QDAOQiVvy5eit-?2F@Jp~)q+#*4ABq*(^KZXH<hR|Ml3A)=UeQ3
z9+Afj>AbO`UBA&oi{_%?<55A#dVy@=R*vy==|o3;!+8lUZgLXGQQjbKvpTg)u|ynh
zoYr1TzwU)UnS()O%jnX~BU0-*cgojM0C9sRVmsI4dl*>K(Lq1_KR4m|dBI9-c#E|@
z?`=wWiPDp8^+esetal6ZLvf9+<yi^lrl@&4q6JB*I-ka{D8ibQlHR*R{`HHFftWaN
zR;K-GwMKO9DoVMRbKh~&r@+reW=%Wd4nLyyj_1Ze(?o&SSGMSAbngPJ;do9Gpv8ur
zSMD=#Sc4IkcOw}AA`1uhc!`Omvsi4tmw^Q^yyeh)ute>p@uq98sUkH_6r$83<M*Sx
zp(ru_;*#<`Xb;pn?IovTo?p|N`*svT#N08Bs59*Jb`tzg3KtF0#6j^b0r{KI*ho67
zo<Ec*jH`IngE$FdpPI|!gqY|AD?KFZroQV4ws}3iFpZpAhbnY#O2K?H&NVdMXC&RH
zP4@9QA=q*)rq%KdZ9F^Wo7Oq@r~uO6IU8&0#cFZISsw0y-Bt7&1cot%zCLMdFm?$v
zF1(j#CD0tE79|O((*)}If(oc-5M<}2xRXYM6T?iY5X4_Ymc2AeRI245Fm=6r-$4ma
zGTxQ_{TqX}xA+1_C{tXrNtv2ry<lmR@!v|D(IrShTZSD-!xdQ0(kH0oL%4Z8J+Kp^
zQ$^Q7=7kN?{-~yC*n7X4&mChplD1uc$!s3yey?TM7!B+iR2F6DI$-b7Pxm!6B!9)~
z{FZzSu-6%}B%M!-202pZS<(yqSpVT!IQJc3k*C&aO}RSONk;;`VpK$7C~xD}_nRAx
zt7j9pa+evRc2}SQ>JR}Mc|6yS8z<;_VqhFOFu++|`<r51$C~g)lKrmcf?o?hZnTz%
zE1Pf;-dMOCANNYkDn#iOPXx&hBPq}62Ovj)Kyl3lE@wc`?{vOgt!Y5;m|Q_vKXs1r
z8k)6Sfm2&AXSm9*e}4UBj>({&IP~$}O5#=XI-RD;6c<s{=vlBUJ|j6X8`oOqVxbLL
zp$D!)M9P4h5&#5%6(PF(ew-s}p}3@SHNoHl&74Pd56EJhSn|VclQ!4N`vu(eB8M1h
z^Ju2NZwU0pj<3VT#>k8HL`OmNbvL5P&3><hA1HFFJU`Y?9Tv#B-{X#piMU`y;67pT
zr$wC#{`}xTtz2NW*s%w%&gPlw9@6b#0$ry~sxTS*gaJSa_Awr!SL|+02m#4=HL0Yb
z5)Ec~csr*e*`;{Gcrn?2raOeQxu@IXA<mfn#oFFoEH*~<aLC8H(e;~Bo7w?8N2`Ny
zM=W#LAO`@}!LfFr=;t@tuYZFwSgUAQt$OmVF^-pfZ0soMY|m%y%q`D+%`BRgKDuS}
z&vsA2*;1H$rufgiYC^w>r*4`8G;PtL`;wzSHc06aHw%0<82dmp{?8V1O3VA$WaJ5M
z$G5<!QuH<JM7)+kKL?S0H!y~)_UEA|+moqy5)SCqA9jE6TR2aW*lCC+f!3lYyII#S
z;D(k#sno<fCi3!oy~#2$wg_z2B2}l(C3LR2*+hp%WprfQ1em}@BRD-LnNo)6$@3<`
zPJEFqKAP@*HkBp$?$p#Wcs(~H=K9MWW3^iApD&q1PNE|1QZhlDm12kWYx`gl?>h08
zlHe#y^FQbftP4r35gjG*VAi3sB#uj?i8Gv%=s+4@B>Cn@ViiA+E2bj4dadj-$cz3p
ztQLcL&cjGt6(Q@lzQV_iSsLF-`N{RH1c#l5Mt~WVSd#pF&<A&KO?)b7B?MlyS$4%p
z@<qa3ta2(2hfWIo&hq$VbKV<N4V9lSOy}gzpO-;gXH5xB^lxWd04*><D;GZ)Yv~mF
zn?Cem2IM-b@^O`M&En&=A90mNrB%jH;>xFN`~(jUbnt!QMj!VN)<eFZzFmy_)N<bg
z&vhH<0Qy&Q@$*l+L`eia44=MVs-=x{wZm1hx7+vH3w|M>f0f?FAPOfZ2|L=?FW}@T
z-;iman9FKDd*-;vPrVHd`=<{Q@dg$i{RJ3g@9V9Y!Pvia=b%v56tvc(q8$0$TS~n)
zD5apRIL48Fqy(rmhqL7F*7;%JGh5X3+lxtQ3J@*5<*gqUZU*^xY$2@m&V;-F2s`7Y
z4UQJgJ+3%uL(-}YkGnc11KNmu+|IP+YMBDfe;JZQylC^YV+aY2KtzHjzKlDtPqK-s
zN0V&x+~4X{SWBy`lEoSa5`~dIRx~ihh<U2IqztJ7Wj&<hY^Z@)C4S6#6t+eh>N~_m
z2C%`*ag(x;<i|WB()q~`+5Igtz8R3XH+3QuclUqcFBt%e<V!d(MK{~{co>mS*x_id
zd&_}oYPb&}YL9jtzL@WFWDgECFAvm(SC7p#zBP!P6~deh4=?0VT*c<_1sf#E<B{d!
z{60$#L+*whtteXN<Q(AVn^#@n7IQeMoS;qeT%eviz&5z>>3Q8*u6xQ{BvP!IqGxy9
z!RNeK8O%!0PC@3VZ*Sldq+59N_c>4ukJwD!F}KtCq;=f3e;zYA)H=lO$9uSj4E$`o
z-pWTyT<xFk*vRRH1#)&<_nHjiBU@!u%108>A(2gL_XlW0LJ>XIx3K$wN}@b_r}B9}
z0*^524!^jXoS&^(N$XXKtkrp==Rz!vmxFbJ#Wpo5nOu-DMBv@WW!iGQp7Kjx*uu9*
zTJ2>kj$z~0!mAZ@Kw>!p=r0=<6YKWw#-c3~x+>U}Uw}v%DnU#gBdz06^vO6MA)>GX
zXAIt%om)feze=431)0w=u9}5*`dWLxc*o}`lW5VHf`d?~!bkKz!tU+^(rMf4h;)A9
z!2PqB9chYCX5Wm^v>xN6$*vOS`Hb+GN;`o1q)U-{XV5n9q_EZd^cYOTW=cp0{H)2j
z7}uEahFxp1^S0|<0KOiFuGVY=kp4skAklsf671z?z|Zd?TBAZ=37>SB$_$>hs+*S=
zj}$M!Ohta>MI*PXQsw1*vvFwzxywJ_zIsu$>+?KwjV^ld(IS$nZ|CJi3Cgt7uYRH}
zPtJ69daY*f95cm_&LIx-)zf=877mu;Hq$Tp?AXG&@FZTCTxva9j3VWeUNfegEec^d
zY=au0TXMs^mIExG=M@fsBKUHLqv>Vwed;7^LIEY`^n=oazuWBh?2oVExfY&`Dcv!V
zkfwF$%yHzPMI1euoK)`eCu_`J$zbbi<*lmd%q(?d5)Pj3-1nK8Vhv%sc;cdHiRF<x
za_6z$+*g67wBu9Hf|*JMQvs2-f&PFtLk=HvkxK}5Fw-X|yBu!ST=`qJTc$9}nWWwk
zaQb=M_4e$waz}ZV2RX^-B!Iq7s1mU&U2B{?qGuZvdpyM0kBt3Cr&UBzI~$XfR+dTe
zdX%JNt#)5b?t%p}UT&Xfen^DSXsIZ4N^Q))%m-?fc5JX9XFd~$S<v3ulmX8;ho05=
z6l?m2l}Wb5?fVcMb<&nol_4kMkIa&w0^4nOv5%!PCl^^%s%ZRq-OJ7y<v}6=H*wAQ
zvocS@djBGn_(D5%cB8Ww()0^O)%qbi&}(svq}B>4Gn2CNpwjTrfu5hmfy7Ov{@tx7
z*wOcrqgq4r3DJ&#RZlHkK6vQpW7v5vz3T?u8M(iUo2X#mLBSl72KO<V!qO(8%qZmw
z+=m27F_$k&Nmp=8FOPv~Nx@c2|BK?&K|<W@St*=_SqQ<5=;B0l!L?!yK(u_8w?uBy
z#G63nUa`e7sho;`@Uw=MNEzvs5xL-DnqpUv!jAgl-2+dpK6f8_IgV}8csVw?6ph-%
z{icUt^w*!$MjMC1B_p}>ek?M1hjNEbz`sITFrota>1y_wPaL)@d)@9Rkvm8bs6p~c
zww5PGU>cBr9sTTg?M98tlb!!Kc!g>fBpqE_AgAeLrx>H@pVb&{?-TlJ5RAkEFQB>o
zie0UG9FBTil`h{=+mUUSX$;U~f6P~LBp|{9TT4yMuk~`4B{S0m#GrwgJ@K%48$AWN
z?FGA~!~B(SpsOvm&p$T1I$!R*ZF~|cR#Su6ySCjcTUq5SCy2h@eUfDu<1!~1`}zYb
zGpk5Dw{p(s<fjGiDs{58Qc|9BCl(rTILGBi#gVhdzW#LAEd}h&;<&=EzaYK4yRGhR
zRl(=pnx$#vy*`vFUM=pC1$=)WpX!@t<~d6eWB<eXRmRm=2lA(ZGW5{(WqsI3E{)^L
z;qq!vtH@!ff?*5yP;`q?`ke{4!MEoNG#?ucFRAiH)5)=#AMly0VsF3OCX#B3H_$Hr
zZr@Sp9u*w;@NIVrb4TSbI<RA7-<<V>_405&n^;PLNZf{cvqt)Dd=31pnb_~FGIHx4
z#iZ|Zq)T<p(2XVT&rUhz{6uIZe{^l$;%Q8r?ma0U{BAapLGfcnXLG%39NCgtt>{0a
zkEjl^&G6;Q3qZZ<Uf&ln;<CBTZSX|%4zUnA6kbd-<|6Z@=2`m(azl9tZY(N|<e@s$
zCFY>JnVgX)V(Gs1RiEfX;nTMYpA@!oBe$o>1*W%nq%aihuI%r2CUGhjgYqfa%vLkb
zq(!AD@!y|jnXJn+Z3%(M?Db=>-plGbaZ;?6cskqK8fYdAuF)bTyDHrD>E|n=y9%eZ
zDAVr{%jUnjNA;=qHX-ptl1Hrzv>Qj7w*zW9Rl&3rJi>Ka6RXup4_aqwtlpYGPtpA2
zrXKv9$KTYf<__s&O>I3V2X{A*NM)|!aL5^{+4o0Fi;RTW(b1ui?_}L%Zm;T_5{^G}
zYWVvpk`>;&s*stH$^@42!r+m0C-6$OLzIw;f>D#ChKNo41{4=mE+io59`{LE|KW?f
zaqW8e5<-sT&B3wR>3@!rY07~_U8S)LzTYN(cuXBm6Hv?75l^bEc;xYFjg_(I&}X@f
z&PsJ8wn0xp#lE|?tn_G$(us4E;HN+WsrZW1^y7_rd}c9<S(>@|_HXZbqUlz1t#U}q
z#ZfLQj^myQX|Y}zS;)vLPu<9<rr%MwUqC9^sEn#LI}3?EriCbeH%_a*7k7`<fcz=m
zGs1i4)I2?;TmAD054>N-l+54Ox60~1xz4M1{yw^ih|gM<A@5A=Ph+Vtm#E#{DSXn$
zT8o+EIJ$T5(U6M>6cQ5&hAcIXAC%mq4QLhXU!av7Rq*ve4edH)#^}qtic%1G`M5d-
zJ3?|>3%r|o1S{uU)WYrA1Z6&c-m(m6<?N^$eB}+nMcuxYPQ;MXA5!M6!LYoJ9F}z|
zvuimS7XVN0M2?~Y<vfI#<<H{Z$b2DjuV7+^r<U@Lzw?5H0CN~gDzH3Juw=_B53jN_
zjf}g@0E#Iv^Iaw>R^?QMpOiV(UfH<slJa=s=e^ovzHFjMhNabSS3H(!ef>x%^_nJB
ze!50Yj=%H=Gp(>;Ek}11_|=uvxTgKrC@aEx5w|Z9ukcJ({q-hni0IWH33R^gVaU|f
zSN!LWgjCE;*qTFrY-o$tW+fzqHa+GaQP^nQ9rZ}Ay@FigBUUmb=5UlboX|G>`Pd+!
zK3Q(+6Lcga8wi%I`Ua!)Z#~PQWR+jxo1HgT=RdUsCw_L!qaR=F5-eJORaO2-({$vG
z8WC+rnu^wk(3)I!)qeDb!j^!g^FN>68m`Fgt+zle3uh#0&PYWKLlsl&I6HnHRVEHE
z4XI}OP=9*oBXhTI++kA4`%A<l!Y1teX?o@dmRAV{>6TxI2GhA}@CqMzIoqy$YKL``
zRYG0&>&NoSENu%E)%o2-DfA!;5T{M$3MP56n~fJJ<Xl2=yn8})KBeK%=;d{Qj`<MK
z{8YW!tD285-lC(!OPi{!`a>w<`6&(m$mfAka)H%ng96GUu?!RwiGH7t#I5YBDavwR
z*ByHos#kbm-!Zm-X}=KEmbw({$US;>the>`>2Kv<L`H2UbZdP+7l)f~tS(*(_mFzN
z%B?%d#yd4l5+j~cI1NA@y$hcHVV6tN2m9DQpGhx0-SsaAcIJaxsSpf4*>rJ4*NQ-H
zWe#<DBlznCY#%*!Rsj}4t3&x`@<_$5_5D|w|Me~ayk}fL{de=>`>bJoh0$^Ai9`#k
z@|dc3fr$@VGEF>;7@m`QJ>Tz#+@l>+y-c#L&~Zt2(HNE~fXlY(uN`VLXo$|ry|k=w
zFwXGx;_`Bywm;&33Few!)GMnjnKLpi=`C^xP{t~({_z4vrYV4q&b!;NnYp{jT*;tK
zmxW$%B>gTqQ2=MBzZi|=NLOFyyeE6jvU|RHNNlOto2oi!o=2r1N!+@VY(6hgIm#?V
zOCAPKQqY$ghoSc(CKY^xpdnpbdG;RGg5%ta^eej?oR6mm+kG?#tj4rq^j;5)0!Nmr
zjR)s%kIf;$tio0ij$-C6D%YNr=|uQuNh^d6K&BL4I#pPefB*K_pqfR4$tmh0&n+R`
zA=93?^Ow=XoDsy5JNrZ^_``DdKsuZ#v9_AOIpyOcf~LplVHK6uv~SD<6z0y6{H3<0
z&u!7sx$NJN4KEVNe^=bpO<Dzq*0zq@u6{x`w&D#qQGcDlu=bUzdh(9_14o~qzME?f
zW;n|Y_*W?nx;2&3^zsROQl4~KuU|~xFA*b!Nvprt!IXa^)4{rwj@=fn_mkQs=}p|K
zV)i)^8|@p2yi%@+>Lw%2Un1KF!a;#NVY0&--qE`&Z|BIVFB^@j?|U0R()`8@b&AeQ
zXA>$YTl`?D#Bc2<^Tm?|U@808knEoYg{7_(Q(!6cCu>Qfx1i3B%~FkaL20lmZ>0<+
zbL4u`{f}P!qzoBei-}~E;hCICukgUPL!rR2?}&&PYJ2r&Y)fZzd`2T{$eV|LtDsp&
zGoLH4L8yDd$Z`E=VaEuAMmLG4+ixvuNwH~;eQUF+O}v=~-e_q%twdYIxg@3l;B$Lr
zfX~NXzi08{m}n6c(`+>!2pf3%Deoa`jSx7@%i4{>w;=6tM8}+$8}mHI7!TUyaM=pa
zwMqAE8x)+RwB2f%B25^ioDuxyIZe^%Q!(E1F>_qe_uYD+^ziULUhJN>@9)BgM9s*N
z{2WpzPT}I>QI3AZxzh~2Jj#`hF^SwVc;=LpRi3~NzNBJ=E9QIiXG9vF+WPXvds(^&
zN4Bh>C(G?AoHLb077ZLJ;P!dFwFWzHC{L3YJlwIuN!O1`SeOvP{3-$;dY0~SZ9P(@
zEC8$WFqiwY5qnd*&w$dkvtsZMG&dRn-$X?`rE<$d?9@*!qiEsa5uA8|;s@7374m6=
zSq@u%b)csAM)2Bf&sBsVX?qsj2&*jn<?v~iD)VeCJcP@BCeNDA>X!jU{A*^?z~-kN
z9|T8#4wIp<*3JqZs?OcD4vvRR7@M$5>9d(DNQGNUvO$fEHiZ*k6O;UG8~|fN`Le1?
z>-G^HUlCJJTYd^A)JfmZd3=ONSFzXDinN2)=3fzk%*zJL{64d-8PsTLTUQiyb8bSl
zDll*RHU6h`oO|Ou?Tz@=r3@d~cji3^t16Jq%N<kwsLfQsZYm%Rsmy^-rqf5!ZBM6M
zI`^Nr@W-xI-WKQb^4^YX1X7)vf%{}9*C$EYe~kT<JChlciS>p!IH_=YF0?%lwKMZZ
z%LFQDI!`NOh6V@wBz^?ja*cliuaUOPx<`eRKb7n)(fA^i%MM-eZvixjd_jt=5&tpW
zw8%5k5`|~?=}+_=@3_B#3@REbi~dP^DP7_d`T^}Cb2m;3ApP8^;@A7|FX>#K98N<Z
zfHT<$T%kXvYI_op6bfD61?)`fdCqMqLlj44c><p4>Dk}u@bV&7b<l1i&)re^$0JWy
zi6H8uE~G{}rY4!4rHE~gul<q24G8y4LrNI`T&)l^viA=}j{YrEZBZD50-%29DcdPS
zK^aVjnMd2Kx|*X_J{W)gr9lh#`4%PUm!bkOTkJf)L6akC?e65`S=}3T68)b*S<U0f
z6u?3|4!}eJKCI7<@85UC5So`+>aV@m9Fvw1&w9|3G3aH-?XVv28gYl%9~eW=j%3f;
z^fEE^bFzh+k;fvV&`hN;Ayn3~E%gq+unm>NM>fpyPny~BGnkw5Jb(fU8XmGWajU<l
z1;u~UaO+`8*|XtcCwp2`yl9qb{q$?coQTS+*!D@H5@S32z9XU}6ak&L%HLoiV-#|k
z-&%KvJv^Z7lQK1+^hOEv@SRj0+&p+pWPVX0YK8NEP8+{`*=OD7yM;OK{^Hp1_nti;
zF$dubBSt0RE%AIcAONg9(EYO^V0*jnLOQl|E_W72apM<ej56iC?rdHVuD?4a;iT!a
zBazNm@Hu6f4|7}9TIE7-E9%%d?xyImGLMA<!nfvD6P#5i=r`>PvqiqH!CdQ!Q1#<U
z0g4Z5^Rfq3B|;RmX_d~HOcpNYogVcI&0~zdW0jC~x5f?de5Mc~9wmt1qU8KYaPDBt
z!|1PHFf;}Z6P|_>(O-y6?nT=E+AlLUa;+`od{g1qq*(NH3s+ZNw!k8{kXB=>|Kw}N
zQ45LybF!+@B3qXKWQVsb)oGEMP$C4fTAKZ)zex3q&~pH9kxth&Nd<I9$8c=0H1XfX
zVcEf|a`VfkLc`+(?C-R`T1mGb_!HMs)>`8x@w!@^aDjf{_3oCzu0p3Hs<N-{=)TEd
zL^vq~G8%=)yY}Lf-4i}v9(k^6j>$GZbLU@!6cOrmuFjo%gM}gBR&aXPRTpxr-!jVo
z{@ZGLq#<a!LhU)N<6W|C2b&k;FXU?z#?#4>zY00OzG0^4pJ^2L2^X&JYkcx5S0z=W
z>XXBP@@_fkPuJ|+S%3f$nLE4DT}6`GZP-68l{R3{KHltk)vD$6>z_+o$f}1rY(!n^
zwTZ$cZwq=Ge5d1aln!!YO$ZMz(r5bma<}h(vViCm!O|U+`u2CxvTtvTw%i--kB>+n
zIL66aHRv{{f}d*h7s%DfC0T$yDloLFSnq8#2PVb1{qPFErGerF4I7|`|EbUXhc9G+
zv>C<0LnN`QCtb9Le1f`$c<K2C43zdmll1f|zBuc1fr~-i^y{6}rTcXqvl2*?W%{qF
z_UJ#bc3kL;n1Xg?NflWHxik1b1998GE_qyGp${_^92Dwn{|+~}<o_vL1c=Qg*VFaG
zdxfNruKw7NmIpul$p~whdF|20XyiasPFG>$pOMvK(sh=JJ&@EhE6{xue*^cA?#+C*
zQy_z=+#v?~W_^E-bK#fJ8bl1moN&ARNX-jQK8U0^x3NCbuedViCrNfz&60UxAgLB~
z?nk;8_+b64dSApMmN=}%7w_ll*H6iJDb%z3UH)_s1}$7k$g`(ORTI4tEHOa|4&D2R
zT>gsUOMU@<A#WU?3T%qD`va$f#W#+`LS&D)HODR1YF8Wa^I^-zb~H2{t+biA*M5p-
zh}y3DEtjOZ6Isfw{xsnwm%bPI-)#1~o0;@4Y=p~)NDED~L6fh_W|NKTvQ>c=byl?j
z7)+sWa9SwYR#EtEjBYzj{IGBKj;uD`3g|Iy_-(V4F^A_@^{|IuQQLH-ShfM7E?^Dl
zjKMN?_V85QsG2lg_x`?6_o#V6?71Q>K|qZJKwR2Gl0yStwyUF+BgZ>FbGH%9_F}(`
zA1{}WUkv^qguQi8TwU-j3M4>)Ai<pg39i9CXmEEY5ZnfL65J&O3GRctySuwP!QB}c
z-r>8y`(D+nTXm;^KNzVwz58^pwYqn2(v=z@<U>kBatjQHL@-2Za9*?M=i6LUYbq9B
z=f@pmvXJ4d^OU170<IbF0UH3-pFu&)L@t~H_y?*c#)l^-2g+0L-xPJTID(Q8^-C--
z_7*GHqAavKW8`Xm`u}3Q&Cl5}wT8yTst491VuosI90}=v*aWZ`6aQrJ`19zSt$)YW
zhTlj1p1dV~j%$2l+j<U|F@!By1h|ZrCizm>>pg&}queU;3CQ;4sZUj%PqRwzJA&fB
zZY$z!VKRDAa@LY7Fvm4<rcfQ1&ADHuX+!URBpr<pnRVIY)!8YYujw*3TbGZu3nH_4
zD<vHon(D=``(lzeN@ZYV-@IaWdZ{t9b(K=CCJ(AFDxXZNilxCis}Z3pflgW{Y|}~X
zUJ@-#M4W2E<Cz^YT!wmoYr7^c{B^y~YWRb0?XyWcHSd<^816+8&U`*>36UW#Y89H9
zNbA<4m9jx-0=W5KW483~lu9*KBGpH>Bg+i#3i#q2-7j+}n#16tFxo=N^`A!g3#wL`
z3*hQVv_QIDwF9jkFP7M(!EeKq46E4N$HuL?F256PPfm!{8^^dxv_ksia7#ij@BaGC
zSx4uXozD+<*pB_lKrPh3$d>!>k_r?Q3h!<bu9?4J2itjTDX;o{XJkt(?oL_K7RvCs
zMtVlL1=9$<gpd{!T!>Xn)TX6%uG$a~Fw7LA;kP_0{RE_;2B((j>ZlvVKd$E%L6niK
zr9Mck`pH;^Yx7Fk7b8*1txWN8L5-L~DfyvPH^?G2w6DGcf18W_X*J+85rvHhfABDS
zX-$xKZ7}Jh#5Prv&&IDXBW-_bGq!RW-;a!o+*ZEDb$ua6RPxP!a+QZFHU2GlTBGa>
zP0mEib+)2PYRFetG$-nk<)mqqi)ez1Q5GL`U5b<R)ztE32aGo#>EJd;e3<J`=iHu3
z2~8Q197k#0Q&|=Qmlv=13||CM5Tz-<$QGY<A7vo8pM_)0{u)77z!5j<dPn`Hnd2=A
zh%(5?)V700j57v6Z0a#95v5dy6<{hh`D4)P&cWT2o6tLA2c7AFDsM!=LXAgfQnx~6
zPx?H{`hPHvCsEwLDgbK2ZdPmtmv5w~x4rj#fKsun`gnUV^b@+eKbwPPi52?9${1$a
zgH=pH0?_R|YIk=Fb(ZbvCZ{(Ec2S_0aJ5wSk>0!U0kA=#f8Rx%drSrcw4yUY+z5JM
z^s}mU@hW((wsmMUPQ@&T;zCgZrx_(S@)fn<04$4s84RFUQ`zDas?h|5?1Ks$SJReL
z$~>ZqMv<IP>qE6J16zzpR8&bA^G<Vi3!O{O%l5n^@AuauJKuOt<;gVnl%#}8u^fUs
z^dhn~1$f##r3J0(`yag2jx)#OXn|arng@t`Q4W)uWb1s4(b@d9n*x%gcqzGJD9LCj
zb7D!nlpXUr#spd|ULWE010g{1xJIx0vQddqR(3dQy&2=L>}%xz#a5`FWt}m%HQFV1
zl+sSuRnR7n-D^2!sv_&afpzfpx+%(gQZqHaxW4N9uBn$k*E7V~ct11UX<t!HH~K>u
z;yF(#{m27pJYqh!!}N5#^?ICu#-ylHoQB|g7GqEnS!!(mL%%18_fKCj`Rwyc0&*nv
zTG?*3T5JT9zHL}h2M72O2$R&H6kGGR**?i&#x#tr<<}+0&8Jfrt@8+<1N*XZf_Cc8
zW+&fc1(yOKGE1p~#j1~ivt)gN6EVp&qN#%%Kdi#(0U?2D{VU{FJk@E7#lz_=K(BVY
zO2@yS=`$K>Q&r4zdMO3=Xj$j>8e!Uci+XoTMqtB3s@L`NR+e`y?+cW><0#{8sF^~^
zpRLsG6)!Vo(Z^T|!WoGo)*m<k#PWL$bu7U}pNdkpn+B6lfP~Mf-N+%&@?CjH1qg_0
z<aGww&r08-Gws&fY@7m0DY20+4ydottaQ}WSl-9^!7+;>+?s6sB*n(tg~f<?RKnpy
zONmeTQdOR^%sjHE@ls|}X>2ERG`zI}xtmE&H|*J%GowQiizt!ik>&&lcgi?zhmn<}
z1d7=6RHar3I|Tr!7)SorU`~}urxh`1){3#$6)We^87l5nBjYApj?EQ1n(;c@J{w!f
z)pBrnJr4dlt6x-gTJ6{deW~z8N4P#pP_9=TXF>Iw)JEnPF9<^w|8*60Rq3G<Q7<?i
zG20WRD$5r7IWiWt+F9eq(uO2V^|X~e11%6$G}fM9OckYmQwfRu_7&JMGBhqY%QW_#
zzSrl{Cte9F1$nquwW*U7`F)SS`^T@Q#`^wEaJT&WS{|a_2im`;JxCJIJB`Rn*zm!6
zo3|)onyog>RxShad$RvPMJpg-LI0*^toq(-nyiH^4Sg(;8m8CqWi;43s&l(f(Ec`;
zyQ23fJC$$AKU=ewjuWTmxRu3AG3-0eQ4!7c*>b$_o95{p9kA%F_JV<IIHtO&Tbdxu
zB|lxXuHFEnZ=s1@q*v0H**{3H>P_OlWhoJ1XMsV26b=RIYkWqjDvrUXuP}6W$yazc
zJmyW9mGo;oZw{x9-kgWKKC_6k$@NUyB9STJ4M!@!(LUE&VyF~1X;0Y_XsOgx?^#A~
z#YY&n{mGSalY!oC41PP9r}4JtNz6OQg7B@eGWerd)2o<<`-i`H1D)u&<PUbPbzPmT
zu|esta{pS}Hqk)IsOO<pL9%)12B9t!SA6qbg-`8^&e=4f?A&*i@XEqDi=z=^FYATE
zi)fzC5*=ywl=wQ8hr!;!9rr`CBw3M*kF0X)p;#1p|6PrAnZ|-{nM#^b?<iVxmt5Qx
z!P>C<fQ@nTU^!IJyMt*A5dZIVwI!RM<}5a!cAIE?Q=lh^Mc*j!ITzIOrgQvnW)DX?
z|5>{<lQg$JC@?l<VTH_55!TTnd%Z+>ah`@<9n4QP&|@{EAxG=$iOt^*M$S`+Z9$mf
zKL$urzb04_Y-KZC&iMX|;4k!=ia7hry<-JF!DzS?tXR=9@X2VnsV;#=0%=aP7HNh?
z3UbT3QwCLnL!dV$P6W+GnRNLxh3s(+q?FiK+m1Le8_rr9h4m+eCRXB6a+@aj&2pPT
z)!q@u%Zd{v2cSX~K-AvZaAqdg4z8W^=^j5C`b5TsSF)D>IV>4RndmaqZd_ZtI_nl}
z<%xJ_p#C*WVQt@u^T3>1Lt#kf$vO$)mpNk)yFM1h$$!SHOc<-dr}C<l2upG7ETc<1
z%;bPkK1!|*{f84Wmq~y+iuw)x+`fC!ePO3nUZ&e)$$g`W0z1!W;6ub*{u5dt#(~Uh
zoRxHFdu-EATVk*+`$TBHN@Aw*qnkmQX^ydmeVQFf%#vj!XeI}x{~u^l^G=xb^O6We
zBpw3BjybcD6nfw9M_VllC?Hf|R&wpH&(hpC>eiv#=u-N&OcTxvb<IW?M}LY}8AX=u
z^nAc_n*e$ynAMQJm<k*(b(j~IW7iLt+2$bs66#fqJPC*0D=k`7-zY*^_Cvn{V_r@_
znZ$6Z>zurP7L`Uw()I8#v-51NpmW<gt@EmkQ#b$iD*gji^ev3@=pyz6+u3}^ZMOE?
z=EDw^`HE7#wlq&>`ke%`q6L+-Wj6Qr7hxn4WHnN+!ekOpopya`wT<5wq*Nrkax3{n
zyuTz%vDr~#jb3vk{0utA5#wsoU#k!z1ct>4{$XVaK)){;h@A1S^5)$v2<^}N1ourZ
zI}jI0GL?m#sV+x{&g;r}cY4|bZ<y7wBKJ-`^|im}IEJE{5vA=?zjt*wDRf^rYI`>-
zCR|;j{aGwOmi-f8E{8)YSvIX&Iphb2!7=GbJ?Cl$2sk(N-wzIJl+0P@7qy=k-Tb<a
zMRyzM*o^shczpHg21x}fEJuXpy*DE*<`iOOaVkj|j33?Y8-CPFuqQNYa62mHtxHNh
z$58Ag<jv1A&oFmesB8ii5CX32iDzN4tD(CBK&gWj;N=8tZ}EYG)uM$;EdMv~F{9Qm
z9)Y_=+dOG#vEi~<bEoD>a?<(|8Z{9Oq@S@-V4UH{UE(wJ^~LVcN~hmeq<5E16b?va
zDTu3OdjA>%`Rk?%4s`?dsFt!fFP|4w_ccwn1B98zxcj<+GSCu^CWI%(D|%?sJN5N-
zmCt(EZnK;ao$5twAE&bD$v4U7EkRz0$gzdFrothn`M;M!tc=BVdGG&aG6SkQl;EL2
zTGYSI&31mJuECr?LeF`_MYDI8B>b4)OO4$1sTSF{!C5fCznRZ%bL@5mO4nspO!0JH
z;>C+yL=$$CS7ERBXT4Rwdv3K*yq`3&>rQ@jdkZ8O=0(?J1dkr?lLnxI%foN5HMvf{
z@c2{HodSv2UuwW?7bMl*(S2w7<-!*JA)6z{x~aY*`V<YUvT0vs3CodU4_;m7@1ol0
zUFnT%=ilIzaJpv%fJ{<ka1?K-0z`wOjs`2va3or<*0^5Ff`t;&)Ch7Q_4VMJD5C$3
zdV0FiL(XLCi}SBqO)1qSiN9|cpa@TgOW%F&d-VN29Jyh`+w!&l4DWv^D424$lxO6-
zwY)w(-nc{(v~A9W0U}H<`cr6Trj;jOdqaLw*~y7l149?0ffjv&9O=pCo(A5g`R?4N
zfAey~-IPeG^SIS_%m{=Dr^0zmis{!d!X{Iu5prZYlnkM81#}q~jU()bl5#Ct2V0VS
zi;d_x#eG`g(j$C+p!j#>+UE|rn$w9aw(=zMP1)SDn||JR#+wt;Cf&qaXEX)MA$ZX@
z7nj7v>m3DcOjOYqRn6Lab!K;!AYkN;XaG<HO7igZEE8gjMsGs~?CQL(7Uy-nZ@xF`
zF6?uqEk_ZO^sJU-psO<Sx8DOZtw%>Y{oCgJJnpt5SFV@%ck=9|tVCU0kz64jZ=}hQ
z-^}|KyuS-ma<V~jiZw<Rrg7PU>N!M&zs%*f%*2%%Z(2m6PR_Uoa*{RVCN^#q{6fFN
ze#GW@_@?*M{%|0u1q#%}&YQ6F8Q)i1XjpnoEs=msnb5YKXk>YZJY=QXhW4RMz+&2s
zpycK9BvZ9~;rf~x&)dg$jEwFJjyWYE3>!4o4p8J@pc`inFn52=CL_Nc14&$Zc|F5Z
zw_U!bgE#5bEy6!t65~!EqNFnh3KF^M=}PYXp5r+wT_>Q%uy|TruhcNJiv$$<C^2+D
zSiRDZrh`G|IpHWlNI>1fD0!kj{7nin39=1PTvmN_t~;?^0aPUUQZ-9<YtBF``HL?g
zH-~MGNWj5posmUMP^CmMv;TfJ*sU&R$xMlxT}}p9E^>jaeeu5C@U(pX1T2-&cG;Uf
z{0z_3#3=F7=B5#@+Cu)Zl^-_qZ_8-LCHA(0?uKGAD`x|Zg^!EgfLGx=ewN9fHWmEL
zc&QHhih`bRB}yfMwY}S5iuo=Dd-vCTo+8l~+H-AKS+&dqSeNG$!FoSAHG4iBAaUA{
ze46T!wgQcQ!e>2i(7vtq==zAb&L<!Q`jy*uk!&k@n1`|WsxT%mLh091`MXy0JG(&s
zsk*KnP$L_iIt@Pa3j0Y-W=apUzNH&Byx?VaP5ilO;q+!BPT@F|($cY>PZ*_nii~~v
z+TiB6AooVg?7sDUL~W<|FNt~<4&oGQ@Zj!b`-oW_-FfEHV?cg@sQP;9va!leIAN`_
zfEKW=>1Ye(4V`0Ld9_`riVX^ZtijlmG9&g09|dE6`LtR7-Q<@~s8S)OxNIYTMsfyo
z1h97pzcD6a->Z%ZWs!4qzolpzVW@%co<R~LN;s=o-YAlCPj#p%7SE{v_Kj$aO8OJB
zHyyBm$Ayzvql8D{2}jehziGd|DD#EAitbLUxpamY?{wHONsx)gNuB8GV$UoZ&r-Me
z1DBZxzyLA2kk~TH2GN@1QV<QklK?^^QQ@0zrq7&huG*xxBLiz6)_-Tyr24ibW(g1?
zD1$^j7;5qWL_&=6iO~N+m#$t<QSzmXk*jeHXp}I9G%K6pS<|JuM<9Ylji84?j{(ec
z5}`*_;HYcGeHj5pynltMJ`srB0r1Yzi+ZKiMjEM6;+%b`&RmvVE{Bo|6t#toJS52L
zLX^?lh@P1B77{B(Dlxmn0Rz(i-2k#56%&~h&!#Q}sYrJ%;v}T9ok@fi)bNP4+pW9b
z`sxNL+1R|$uj@%4uL$M+<aZrTMF1*#%gi(z_rgqJm#Ry<I@NM2@|Q|jEca(-Sv_??
zedovME%&!Oki(HXJP<6vGzxjHW_;*CCW=OL!7YiZvaXKb$~idy*Mc$GFbJ?><1HoI
zuq##I=QaDNVR`Q}#u(?(A;<MMG@7R}f5^no7yhVB4?ikm!dj>WWc(h~g2)tX-qIjl
z+u$w|JY1mS*mr0%l}n@Jd}O$Hi-Js3)XZxQCp`Lzj#knJa5`)hLzNS5YxUL9kTu)W
zmW6(1{TnXN=dMJn9DJ&$i$~1cS;7UIIXVe|mB*dURh5-&dUlX;-p{sM-9OBVr@FQz
zPDfuTlCaPWYJe7S)NLcLhJ7`tEs0=W<(Vf2At7$IjCG&(fH1n^f(9VH`U)aBbQyA;
zASZKS5H5B1jmDwaFCIbL<l+oxqD==}lQ9<mBh8YMY@mXTVyhM)H}@$p(eAA66)&i)
zdK3o&EeT1D_va3wu4*Jt4Q-l4KQw-rmN+T<;?&i;=_0!t=t{OTp&Ar_Sp787W66<i
z0~qO*<f{Y}EhzrHiW)XM=;J<PGGF_CUtoH<P&^Ar5TiiW$97W#BosDdrKH(qBJ{HP
z_}<3NL2uv=NXdcl(q0!aXxmk|iAJC&1gOBlSA?Y+q>~sv{KE%FUrrP*Nc<@6{6<gl
z+G!D#MkrV>lGpBDcJE4~>V7^XB7GT0SZ*=pCKsan@s-FGaGGu@;vC|==P9a>BN`jq
zyDOh(=Y6REqb1WdqCLe=eQox#XP5A7LZtTVXl%gjI3_52vBBsW`dL+yIr#%M#!cKA
zlUS#A<^C_)UTdcH?l8tkPh2meNp4vKY}3c=ZphPY(EGJV{vMr-V6;|N^|0mNsH_Rr
z=EV5zcfFe@+x82pfdHt?G_dGizk_-+1Yj)6SOVlvm`ag^Lvl=n=Z>2>G2%`tu8iS}
zPebsT>~+@MvotD}<@dsN*I2>t+5z@cU+0Z9UR}V6E<xqHif!ugZmto8OTW1H&l<VN
z&f5o5?Cd}bs+muEMs>x6g6zPy=>K&_fc^8|hX~Rbf@kEO&YS)HjmhG0`?<W7znV96
ztc7>7R-0}i1#>YTGu1h9Km_YJ`u$OGQK~yt*WE#|u4&Tml{MVG7QN|1_DzSvxF1LZ
z5z85}tvm<cj+hA650$rR{F(A%%>5g{(YTd-dKm8LoI`%IpKGMw=2?UntOtki^OVH;
z={SsHW$e+<Tjdq{_`gD*__y0svAMz~^O!_Jtt}YQx`QK<Ou=0WOpGS>cR@bLlh1x4
zv1{*D`pHVAa;IsKby-=XLn+%HO4c8%xYr+6Nz*;Rb>a!kHjIE26kNuTo13}mC!zZK
z`Emb!K6`xnm!|eOKw>bjHpX0!DC&5i_TYgm1of#lA#s4J7ZW$I8D*wRgT8+vtXpij
zX@Lv6HqU;(G<w(n+Tf*9r$DWu@<`$mNS2<~U*L1vV*?V9ped|O!=P~e&mdEB1#)y=
zYHEQpeeQqx`#jGP!)m^GWTvE0<FW66jA!%AmBBHw6c-q=J3%%l!~lUNJwbLn!!9hc
zKLyz`5$wsVm?rUd7LbYl_oW@qQWQftaoLpl9(hlYUG-FBss!654FvcW8;`Q#E(K5z
zjG+xuVhMsn=ITs7qA&hR&-|~l!bAEBk6aO*EdIZ(gezowph|<Cdy$O6!|2)uA1Fy_
zH2NuN#w=?Bd^s@N`v-dg?UH744v-D%Q+2+sKNFV2=Ur&`vB~)x)*y7(s6QxSb6??;
zwLj^@w(>4v4sV&#m&<I1A?cGg6@`e{DR0+m9u_Hygse~|ehD;xLxoXrbbef=l@rss
zO7e8S;^lMafx4OWUT`{c6=6Oty?>CB@Unq}(pgJ4c9C6_68|P{k4{XfB*?}%*o|Ou
zeiUL5lvK?=G8GAu#je^+ETfsIRNUOjSxFUG8s0c93|s{XsB4Uq2MqjpO%f6jO;D7R
z6=dfNxIJQ^9;%i4;)U50bG=dX<$wk~F-pOvMV&EnzDiy-+)%~FE$tz6xrHfyxNi@%
zc+c;&`Z3{iyHl`Sr>zxl=T|QFr`SVvK??H!)ds|w`&W^KjTS^pqv`&OD@~;%UysnB
zB(m;iGnDsDGf%@+c9&Q;6IQXjFk$%*up&bMk{gM8ByZ`mHC;NxIPT0fH`Kfqpn~Ku
zuZdxFwtUoJd{4Q-SNcQVNtKt_Z}Q7lI&^&{vEbZzkO<KC1bhl>oIQi2O)ednFoqys
zo(4CQQ~5JVav%oMmujG`=Uq?fBfNs1pz<9WCuvJ|l4nMF583ZxPn!eiaG3Jk%DPYk
z)*^jbe?g?G5s*@B<gJTH2HK>}x@RV@xj_QyH0QV?As&F$VyP^@Q@JGi<($IZ?nBXh
z>`h4(+D^vz<tzRkCr@8;JDVsASF`I6^W<A(AAs2P63}o&cBlY2NFk>QKMvutz5<<I
zOjVRJ0)1IK!DhSEgyjTOGtvP24#41%05I6p02Fn31uc+>dXKFnaXT~G$|g`SzU;)>
ziMDbRM8eD1ZK1KRYYjC0phA4|@WbFvkX4&%>thqCP%EUDm+v1qdfkXo%NaAJ{`<_v
zZ&NV=l59q!J!K;4tAqtEG>VOY8S4eBqrGcwJheRCn5h#ZuD&z`zloOVWzV7lpq}2J
zL{r29B<+4zAljvJ_w;70mE{51@5i>c6I10Isv}p+r`>05&XXw`8?!x#*$&8wj2dXH
zah}*ndmvv+C!<)CfbS8E9s<bQWNj{a5t58>HHJtCaXe|_MF0j8m3pV+rP}c?J(3k~
zDe^JS_h$-ZyPFq8(%d$Gf|C&FIr}vmIfAk^@0{hdTMIoA`6xa38aLiD1IaODxUj;=
zEY+Nt>b>h#@fq%G+v&Q##t7?ks`Yw~Qk_DMCn6DmwPKX1Cz6Q)XbyBatzc+u)iuD@
zg0NJ+!@rtY5~$QkiUwJrDxQS->D4Mb%kvD479qJm8OvwRMgy`B-<_WNYvBxBZ{_|H
zj*(Ts;o-uE{o0OOZrKtx6tHOvy>?+_!wnAYm0Q9oc-l(-E`e@;0Va}OP%Q)9`C0)a
zv9i#9?Lz;wwI*g*;gZz~gx`uot*i<!PjIj~6z5GN6*+JD8dw0UP_Y3`f3&5iVJ^=@
ze4J{V-}Z1>Obw6poi(r<_QjZi)xT?dck!>qkU|kAq(=_uS<RVRcQX-kbq}yW5$!ol
zAY9e3IzRQp2!l(Lv3}Z=qgRBPK)rVp4`9Sm_fX#3nmb{eY)|oD9vknER|PB5N6rUe
zi0p9x)xw~N6nBdIN{pO32Qz2nA6!Pah3LB^>i*-XB>1%AwRP|<p!`raFTLz8(Jc7{
zHv(L-yNLvJJDb0DfS#fXkIIX;OmklN=fo;)ej#h3Pl1^^+gM5TC+3W-2oSEZ)XTKH
zmu8QMR?`zR6kedM2dm9y;bh%@@Zk$ub>SZ<gQm)TGbHZp)@tI*+qB0D!Sb1z6`5M;
zS3)oDDdhf$EM7e^ri&RE6nw87IT>XRhu`xEIlURXnEx{EJ21z+?GODEV{g8;zs1ke
z=2}V*YdI{`-7RMxfm(9^=jb&S+4tSaqZP%a(@#T2Dz9pO5EX}hIKkYPLJBU1r1lWs
zw#!G@Goh;ymHR;fAqgezQ#*&gnnkb61Ft5Rldkm)Ut}<wGkgsWz52!Vv<d-erot2j
zSKsSGEnnB=7ohlu`2W}TX!bp?n|lVxO!Bt8;Gfj%g*Itw{)hdN-yT&F7X|f#wlw4}
zS>0ttnNd~)ip;maN|>~_zdTEM+#aI+%s)6@(C-UpZX1dqaKz{IVlm6`)($5V)mmiI
zci-hGYd$T)^<^Rt0QMpSp$vgVwjhjvHqD=z<ZL&>n4j@w1>v}~a_X0d(@5D7ig9q$
z!)c*=XrEQSh4WN`-@ldI1y$AA$2}*Y38x;<b=?~UCLE8^s-`vH!g`_NZ&;Xs+$l3Q
z8di88%sIsWPy7k*{uMAjp7mdY@%?!F%kW$&9~z{=%F0r!%7ox(-iCsd&mMeW&)o$)
z!4l!Whe>+qj707r<C69eIPg8$2-PH9@8$*txjtQ^BdV29hO1Be*d0)kHHf}P?4Rt6
z7z>mv;abhAg=tIA-*WmmNRh+q(<`&UwgcD*657w9s`eQ(G<OBM&b7YX*xs7@4nbO`
z`Mg8n%y1y)SE!9`+l6fqDw&9q61iQ=1=?P!BSQVkrN6)6I*IGbK<zq&HTq@U!0kz)
zo!|UWg#mXD7#p$ud}sFA)@r^ifbXm+6iXg|`ke4P$mb3MPJ(QL@q>hY+M<uzUec)U
z+_}qT-o@&e0NU4k%sDx@i=a;HX1I7hCWcHEso~z|d?Y(>(riu>d+3G!n9y2y|02sz
zpa~Y?&R#J!k;i~qzrJg{j3!%0*)Al+6f;65^CKaCP-lu=Td)y6t^e*z+XJbBkU)GW
zb@bj}vzLL4mrGAx=hKcf*QY<DDRueB+u`uxZjkmf$6GD1!=nWj`a^0Ouk+55Rk_K-
zW&B7I>t5!v;PZ^*Na_Rm-I^=?Sqp?t1uQ6Bt}ozrpS51~W4Nxz#rLUQ=<4EI#)bb;
z`M*HCmk~YJ)h;1@pGfmh$yM!??s@>=AO~WO34S|(<U4;<BOHr*ayOo|c#%RhI5u(V
z+}7GOwq5OJ&f~&S8X><$#)LYD6Od8GE0yDxb^!tFLAnU;FYB&-w-!9{^!VR>Fh;Rm
z%UoUX=cR>=jO4I!tGrwBZC3SiU71p$uk&Sk4d+{qF!b?zd5O^8i7fxdyEYxHXzyb@
zbo<SR^-W-LF1K}jlN!9&+obiq4#uzdCr>J(x3^@*e%z);-yg9t+ixM|&@#|j*T}iM
z!%ydrnqKZqb8knezzmGvUF;j*IYQkvE}|0+w$0F2Utdx!be{waFUuHaZh!YPU7$H@
z$(sMV+Tio8Ywqj%@&SmJqI+g<HnD+_uuhJ5Xf#OAy@h)?LwSB8HJ|ytihd#655H(w
zJ(390{VtXgwa9-As9*-iCdUkbkAmQ0`w+20|CX%bnn6fQmEx<Btd~nSD});Y35ioV
zmWFq!A&N&-B2HMAc^Anrew`RWljp8pGXtB~XY;|~Ogwny{m2xYc57klWF{Ry1-))&
z!~XOqCb*d1_{dbC5igvDz`?_)sWn2%$Q-BTTrWndneErT>$#Rpf!S7oJ57E=S7=<_
z22B^cM)!<#UH&L$dGC)z9WA$bdcPeltVU$|Ci?pIo(u-!lgY=@vTny%6=Ag!{demE
z9MQn;0Iw<vhkX(+Q9#<N1U3L<^T&JDhuJ2nB1A~A5su4WT^+Og#z7XEbhi20?V9YT
zST^bbiU$GB6HUwx>fzxSmNT0pJOPYwrg5(g7=}^}5w53QSA*?%fpUc(OcQ~ToKKcM
z@9ssBEcxab9|&clC+d2TmOt;=jB$G_Z*SAAqjqF=J`=6Zx9K4r&Dp#)yt6&3R##R1
zQx&;t+kfJ~aeVg9An|{gK~UH}6)fr{2{Llbo_YghOQh~(Zb2Dj@{AD`U?CE}o>>$c
zHF{7&qp+J*jI3fw@0Tp4Nmw3Asi<n5_x5=|;fUvMg-!dqvFv#*-s@>{j~{x^mg);#
zEbLcGOs=u9BG7Acl5ezIZHja{oPqrq+g0P!Ey3%08na+JJa-b%wHfqWyLE&qVv;aY
zD2Xk?ju`<)b7`)tzL=&Dv**zUXKCdFG8>=*1E`&dP*40QtoO4j#<y&Za?*mLA-{)k
zW!q?R<CV)CPdDg;FXysj;|dcn+>^@Xcwvypt|i66AY-i+M)Okb@ORnnE{>|YI;+#d
zN0`T(Bh-$nJOi-x-R#y(f9=25uYd~_IR^}HP?vvCn@ij}JM8sFqEI+4!UI&yRaR61
zc{SiLY4Q6F3593;A8g0Yz&NcMb0jviF>;J|Rfe4ur|mCFbEV4z4VC>|M^}-gY++L1
zR59`1(?83I?~jM~S#y$Zp@?3*cCfLM0XEAn=P3q4zorj1s)m`~8lG>!0<*c;r=fSS
zj(a|@&f9yb)&hN8<|alRgfD$=3c&a)3V_W4`yeC^R)5UIFuBTPMgy<x#NCwdPiMo5
zI%N7OL|ikYjC;7B)CIp(!odS-+WHK7d3%r>L!X`R)u;1MFsn`Rmsj7;j5|8oMxkEy
zPy2`rj}Az+(62)$=qtW_?N2w`{7=;e)V5aZZ2>}pP?V*5W~mjImuJ_@0m}B>%5N_)
znm5RIE1vYs{4bU%ZA|21ri!xDe^l}@g3sr!8?VXu1Aa%5ptXXCE*7xEbk(2XzOsCG
z*q(-H*4FM4*5x&mlAJsp1YvqmIj5IJf^Um37{LyAq`<`8-unyx<wr$rF*P*~A}-s`
zZ4j&Z1dKK3au(SP937oYwapP45X~j)ZS!c0iD%j5;%t_O3JMF2I)1h_te(C(W!BT5
zk6mg8C(K$6aoctUh}t&$%+m352C`BH*LB4r#ZKxc0u5?aVq#oKJ*9qTFc~_VW*XQI
z%hmBfYZUs${;|r2O5@#B*PpNCB|yP$(km=HocnemXZew3f2NQUNEQ71oMG7$)n;59
z6T=Pp!+_7^A_5eOLMBPG7$Wxj(h9-J+5Yae4D5K6bLv97;w3L=jKI!-O2AbD#m1z2
z2jJsi1pprpP)O)?b2jUA>L*6CAJA|GY4yaN%~UuV+>W#S!7f;FbAjC>*^{zpQO9D-
z&C~+k$1U<okA65|73CnDtk5B=2k%WwG#yO$j#*{AeciQkNtfn^dxKX|hz!8gS1iDX
z<^6vD-&Z+0^MpPtk$2=hT(2$nS~R9Vg-m~+S<|?kE-#LGC*oFt=L`XM`gP&!u%FBc
zr+DX{`hkWeSSB=b2MvoV(o-p9rP6*=xz28RtZ^?rwEMu^>1C;wNb}*wk}8!y!R16c
zc|r7Oxzd<=xjqqeTuG^tz$u{n>uZb_n^4cL3#<F(LFB1Hqa~`9M!B7nr@oKiGvqGc
z^(>vX-uHG9Pxa4PzBj}rm3^~^D#P*av~>jHBnSgebx_X!kP1N4SNS3V*_^5fPVk#(
zN9HT(&NI$B%8VXGpu(7weM+98-6>im8`<?o7u>pLqv9Z7V9;;*Q|Jppe1mXn6>Dg8
z8k})?GsN+9-#<_0u<Q+?bKf^>H@!J@ZdkQVMdL#kbmQueB5)TQ=kdJl=YPIdg$a63
zDtRVY=>GzLg?BNop)a(tJ<flH?c*>Wt#mj?=(D$a!0>oUuWO5E97Qy{Lnl2Agyuv8
zC^`(K#QS)lw}2r|M=e@pCuylcN)GK7n?=^jG>^)ZB3v}Q?($~7_+kCUlw_{%#cS8u
z<+Ny{+}As`ejSSF4Y}JiczHPcAhb6^;JClCsJ-PrSJH^Ma(d?L`+L!G?fY$NeG=;x
zYQDU;A80$uxG#c7Hbao_hfd<MI6LMK=pIVS%KS>>m3?FN3tRw3qcp&Ht8^vV7O_|h
zLjQ{09G_@gC#gTG*{pc9!v0mlSQoL8W0Xl?Fn(^5>oLCYx2^YjkhUzcQnp18?Cv=v
z#e4TQw7=G0&_KMG6qtCt59Av8#5ny{4@EsS$BF)9yQ_btC3?-jXcG;@+I?F8vh5ka
z&pG%`(wm=MG$#a}7S3pEZGfEWz-YFZYYo+%EZ62Jtm}`YK`e5ft(O`CPnL)A*-U3X
zkQ8H3I7$-!#^C8-DgB}5Pxw*PoE(h?H~i{aW&8pPL1lwGS&Fyc)8hhlAsJ)Vmuj|!
z;pyK~4=0vOzaMyA8r$}5s#JNz`t@5FU}h`aMvG(l&MlwqR?F2G|Hf4mw<XP0hTgzd
zuM92Y$w+Xu(7!2KJmSg9aRBL|1*gSPM^R%VU)AsFn;uNzL=Za97zqfH&MT_LOMd$8
z&|G#To6H@Rs1HT&RD72)pVDA=`t1q;N1%~{ocrszhi^_TA|WFm0nqo3ylSZ{P)4)D
zP$|b3xE(l_ZUKaB{BH#P6_&a0t!n(`y+QK0Iqd94e@<Z3se?7dM?e?4B$CBS_uZt0
zJ{%e}LWAd7tmbrqA-(uNgUO&sSk#gI2Tm-`hghlnpcUchi|p{RJiv_nw+m#A4}HLv
zGB7nTb$ZUIT|#gE!Eo*yvFi#eHtr4^pen-%-f!e|d$btgw><pw1kepI)>Y*cP|$!Y
zrX&r&T5MrfIfa;?^7lmvkaCDN@uQGOrH(KF@n*m>THrCbd#S9Y#m{2el+FFpA{Ep}
z3$wEaal5XB@VvAX-}eufUsMO5n%<oXsA|lzSWHP>?;AObwQYrkgLqRLQsrTqTp05T
zDqye!1-(5<E*s~|*CiPUbL#SOGsgRKq6NO{r=L|AY$qBpWfc`At0-i=)6`2tL?`W_
zCi5LTsb5_v$ln-Okn7#Mfx(FE*KBoQtcAh=6UsNc!pEf+=h)={^1@<hXdsvjp#^97
ze0g2_>=J9d`c;oN&2%ngx0T4`Uw~Z+|E)`$0u&*-{(??$8a%$)Zr7H0@BaTGzQwWs
zjrc_Rqe%9r^4QK=1R|G`wdJ`%>^Txq8vtH@mgv751YbS$=J*;;WI}a0cSWGr_iRt6
z^$O=eQr$BsZ|mIpJp8atM#i@<XgZSQ-@k48^~DFk9Iz}N*OKbx`u#2LDBQa<NVLm{
z{^aj-vZS_^D1)cl4ak_9c63`v72?KOL0fK6!5f?>=*Nc#LBYp;He{4b0{4-3E^;ZW
zJH`MCc-?v&fT2~YaYibqpT|r~EB(;eveLvWXm0-^v0P`T(FL@K!UDcao&Lm8-VWt_
z#p{dJLK13f5)t@arS+>{0YZZYS=g%N2G|_i_3>hw5Okf{p8NPM9Bew|Nao4=ke)%S
zDk8nLiOh+Nqt*v^#6Xh2477_Q1jPOlbU{mOh84&4((6O_^XF5$t^m-}%_81kE;~W9
zG-o=;y)omJd#nm6<lh)tukGyt7;rR2N9Yy*KQKss;Rw0?yy7(NyyCW9YYm7L?it>l
z#eflWgkA*3+s|i=g!XPve$1%OpQjZw$*~(XKV60|)PPXR+a3{M5_KKcgzqjkkD~!v
zYuo$`5Lp?(mtRTsmbgq|NlA8Y?tMjcF>M;3tKoi(uowHC%H#DxZ<*e1D*r{kU9AGJ
zn>7y3jC`u6<lx146R#>c1j8mz;Y=Tf;epQiVB+!;nU1~~pVu10@J8YOl!L3<N`psQ
zPp*q&UUqXvg{s21f9wsD#u9dYf6-?e`sKe45Wu!El88m+;oLC<Y^7_+z-@_}^NlR+
z((aN6Y=n<MHfGUse89yDn&M7i(CS>alglY+h>4~A#y;%xKb=ZbJ@m}7KjyCQbWGOC
z#{Z78DL@UvkNGqPJd>Ug{;wz!An^g+M(LiXKZ=SiC!EuOaiW(8;0!kFg^#MUytTM^
zcv|%Dyl>$-YN1pa)iQ}=@9`HBEv5xGfT{IL`ud$u4=C>E;P##a7iCr50m|s7C~e=&
z!G1d+R^J?PvL5`2!_rHPOSA7X2XbGvAh*4L9VM$#m!|Br$-fbvRCZ`Uj}?xH3G>4r
zlvt|MrZeGuU3a<gW6$0B;Up-unX&3jm;7v#Yr^d~`IfZd#RUPKXrNmN!eN%d5qRc(
z_w9J4G5mjECu~V_AlcfvK-<%IRy;i?RI_vtEdW?ad7TdjR)rcrSC&_9N9EMiunBpd
zYXHo{OinN(n}+{>W7X+wEs`2~tx?vp70iEmZfDO;{PZy1zFpaWYBruO@bnbBo_*wz
z(?6cXgZOh=p09E6xp~z#N(ib6w6y-AnSgRG)iN6`RCK}s0r#nX&A{<D+82?U_r2_L
z4_-*1cXo0aGB2H?GzSZt6GXnEO=USW(p%DcEZ99p)!R;u?*c`S7pneF*$NB{kK0{d
z)N;&PuU7pf74THjoQX*xMh?DTo>us>=TGo-)PA<<&{)YwOgr9e^sEh>8Y2q=N##6~
z9)O4~eS@zAiO076vp&v3ZYOIYo#9f>a>m06ayxr?6O}4^5_e={M|?A$G|B3ET7yeC
z^!R)(hJAX!$_f@n>q`0dXBsI1xX<bS<l`Gts#B+=q9X&ACpnk~o5d}kthFY(oP?ok
zzq7`d&}&lRc!u0q)XWre*IZs&a@s6)S8n%_IxOE5t8Z4)MiB7S;6%xWMBFw3`;=m-
z%38ND5zq*_6v!Sv!*F?@@evET5ObzPx~_Q%#3Fic=BYGnCM;t`Lp&Ch^?jf`ZTf8t
zm7@n{a{m(e&N>gAF5}47NBVB8U>n>n51#JFJd?bjfdO6Q&@--f!$CX)4CG)Knv=Q6
zaOURUgL?)^3oo0b{hOy}U(xO^D$W0Z$zBAi&E)%8-UBD94REZ#kgL30Vkdg<5i<RC
z`0;(Ye%&o{F9U*7X^#DqNv|0M$ls<D6Gq>zAJMK!!~7lRZiqv~I9f=}h{#4`5B^_Z
z4@6r)`SKd@c0OK!#w-^UNn2Rp0r`damNiVZGAXG0vv3Q>C}TC#&AV9R{Pq{7VvW)r
zbOnL#YUZ}C3*-KaxuX}O)uq{=&K#F`=t3|wPd9nKmtE~^8%;#Erne&pBWVICKQja`
z@v-E2aKO`pY~wHfaa3BP`TFUP8n{eJ;~YW_zcki8GK3VoV{cFR&ab!I!4B(dl)O=t
zs|G5-#rs01$&v&ddFNN}DWR87!@929qfgI^LRjzaS>upp)_t})(!CEsRI>c>)ES=X
z)aievfs^za_HM~4e@ypLdUzvxp!asVx9F>ilLNbwZn8p%G2V%tKccnA0$tzduSlEl
z%ESBV5nbVn$-+C2o73Uhc|G)wf01*BuCC%dvubMB2lLUV0v?ljHS~#k?i};$Ui3`h
z_&&v@Qog`I@l2ZQ)8*)=Cpeg67sS`+@pK&sK7T&hU-tcor_hKw&A!-Xv;2XiKlZeo
zHu&mZ?+4$#VIMnF;}adQcAvc;Z_TC(&FrV6&m^^eQ4u3w4TY-^e6fD(y880*4Fa0!
zMobp}Q}Mb{64msYCnQ9F{nwf($Udy-w}$3dXXlDiba4}&X_mq=G-bu>lZ0R#5q2sI
zNs-*jU;c>O7o1KijEuF(G$(~Lh?&OVF(=xSA>gP#DH~_h{z#Jk$(*RoE*UVf15m6Q
zr0ZE}G)4sWS!8+5%L^t!g^tFarT?Ni69+f9m+Ej{%vrt2^Y@w7Uv2Z9@f`Qt>DoCj
zkZ^d&4qZeNq$KCGIA2M?`3M04+i+1sM){PU@nk4@wphiMFLj=}?eCTg$wK81EN=+m
zg0+LUbWMae<Ox4W3e@ak<4q%CLITJTlE&_BGZf#|Y7-I*4HCbqsX@<Y*jgTz+LQRK
zsDQH=LyL;u6M?XWnzn5LmD{nyo7vzI=fw?bSE6}~^D@5X-CwV^?)l~=HEUM@lTUst
zzLh*i9D!g$Bx?j1oRWE6*E+Gbc3bDYpZWC{%5GiWIO8rYwzkCIz=|yLm;j8bJEvo}
zv({4gxvOAnt*ZD1d25*}!L#{ryx2U)>*>l*8RHL;cCyyQU#hEFY1y!P#lb-<QJtsd
zd5r`*_12fGoGBx16)Z_7L`@27)Fy9n)2p;>Vs_TbtDBazVLJNB+M*Ra;DR$kvEIy=
zl8qeYRI~Yr@X|FS&3*aby#T|~N;>mlgK=&Y-zam6ir}SaX<2l*SyRm$SQ#(^E8C9p
z5&7KZNVrJXAyD6~X4e;tAD?>{8oi024?{xd`)}?x%bD98mb_mM(4&Rto%x@;h6e`I
zkYN_uUAgMK>mEv$Sd*R^TkKiap52DE>Z!>W`Fb*|viU!<%&2P!tEjD?<eo~`x;~$`
z+XH93rr+Yf-@Tb!j5Q%3h@;NQZo#zJ#xml(8b?Dd4+?T|TGUJ8vXU=I0X(i!A&JH>
zjoanz`oq7`g3`jE34wIz9A8_cbD|G{ni>wc^plQL5zK5nP6PCa3nD)P`|<3)vf8r0
z@zkzj+04{EQA)tc(4b@7_4Hkdd`f&AiV}9Ena0M_EonWG5ESZqv9+E-pxSKiCOa|`
zVErYlq=a=wE{j!Sn*C1#=SN1$H>{PQEL*h6q@Iee*qx^1Y3ShTUwi2fC`;NpSr&ws
z3dH@lHae_8xNeuOqE+N4Jzj#s^YSjm#__>R4G!LaKf;}voy#n%LpU<<g+Fr{2ach#
zK+=XebQ*K^^<VY*SHh!NV?rS4aYn*_l}H`qyTv{Ca;4UC+vNxgk&%)D%(edW4dixX
zI$FrDwHV9O^`ysJ=miM?vXx%Dy`sEhUtf$R{i&rftMcVVy}gMJkKB*V-SC5cJw0jT
zW3cdWQO}H$6IL&f$zpekDfP6kKEHW-xOnLto!5tz`kiS(m@l95>!oQ=qpe@B=J2~$
z(}jWC`I@H}2VC3pnNSDHxL~B+>Jtad+Q!Asx_*afJM=TD=e^G-Dr%$6z;MJ_v_%tM
z@H6TUNXGihN9beEOK<R58<4)-NaCo>HZ{-%!aRL%DSH;adqJLV@7mC#`~CZUA?t1}
z5VN>1)%Gvl(MFFWTA~6o!qJ<G@rm)2LhXhF%aJ(p%_Mm^vyzfEohDlu8NW<&!5e;8
z;NT_#qvDzpSQ{Ic5kWgxlfO4OAri>++*qhx=BoCBczS7RG|Y^`-@YMEQRPy)4%KAF
zn-CEl#{T9V(~wf1cg9ZT{}mA$7ds<B_I2J_RZZP+Dt8bzE(md3_m1n&iL+kt@@^1g
zUr=9=$I9)E)x~|Bg7N9o72NIO(vsiQ)_2WP+>um)y9hNW#GEr$;xKb`6qcW5V`v4W
z@JL9U1Nn{+y@(&R&Z7fKF=6z~I)sP$0eP2~5~`}~MoY(wl5%{G7cGXGoqx?IUjHzJ
zgh%(U!0(~nH(Xd8z}AZ^^&B@|L7o}t`SwbdKxGgjb4XN_%hP$Y>lVF+o_|Wad$3*O
z^e7RR+n%-TkuMG>4-focxN;EmyZnD&=Q!2cWX}X$M~5P|?0|-eJ9O?Ju51P;?7=~3
zmaVepqxp8aA{RNsLDMf4u;t{+%&!#!wlO*yjL8WW1`MShNlD3`YXY{5sVm>^(4229
zo~QhO{$LyR@9A8mHNQ|A;$sF<D`B#FkLju=By7zTBG=UO#iX#2QkDG{d$Yf9pIy*^
z#+2yy7X|ktIW6ss97P!NlM7XL$mJD;wC9v$8MNP_f4p2x)Tolbu@+3)I}|=2&}6~>
z_HScjNM!UkanOg`6J}v`7rHN0pQ`PNZnm8~6qP0efS3Tdn=v#MzGA`pjh&=ex1Z6k
z5Q?xt>%OAeqYBHDCPl8mF{PmfkfgM{gxrtML&L?2N^1c#Gu)r3`ze{mki*4I-9o+u
z8GTi8=GL`!a%q@YSqZ&$L1a*;HyugoM;;X;@2L1HCPq#vjY+k)^U?Uygne!{r?&6|
zSbkQ_+o&Z!9}T7h&mi?ZNJiva!jDh+pN#*t6iUiUooevMhDacG!+rP=nEGiriNzh0
zN;dti==`QVccvTmelqWQpRuB73KxTH29}LlDEt5wfhjOq0*!+L8Rb2Sm>9PDTO~1T
zT_=rg4jl%VpMNek8+F+}h@+z+e5L>%*_rsbA+HY_njrYse^4NY0T=)J@cXX$@%117
zr<XVbZ=xx23$I$ta+@h&9Qp@phJ|5_j3l=mG&fe_%(n0T?{dL~bc9ETlS?ZhW4CDd
zK_3pO0#!AF>-`*!^z}n@FnND7kkfvK-=3O^P5KQdj3Ki6DZ2m&gn*%PtOzaX=#_NT
z;9(K^BE!G+MZE9nT{dJLj>+98W?ZhEB*IlMO(xk&h+yhw$t>h0W<uxXOEtGR5b3<w
zuFxzUNasWyEG*2jrBIqN0<I%F#@xbE1n>Y=adDUb9N?P`_eW-7jE^awJ|$U8hSVEP
z<zhGJlKx5L+MK!AmXwv3IK4ioun)nUEZD67^5H{d)6kSMb~^X3TrnbC=48LYIAsEC
z8k*wSh`(&qfOh4ONheRt=LSP!W0Pfzt2DF0#Rj~IP;Xi($rY|vO)ZJln8I{q;OF3o
zye*-oh#%@+Mxy_p9d2x5fv}*ZB}J}K8oG0$<d6`FKqLIuduwctlOZW1G$0@ec#a~1
z204ktiehM3jz+*4`S&Ms4o1eAQ3}H8*Yz`3RgI6&DlH^%+zX_ldAdwQHyS^E11lsW
zLlmsV2HyUsQ`TRi#U`=iUf%ks?)Cid$o`0tD`EheqvUeyX5JL_+Ye5&1h?n&r=TV&
zF=O0UcZ+OD$fuf7RW<C32$hr$L)GH@9T#`r>f25NlUYazoK1ewTeo_D5$zM`dG<`J
zuIHsRu!Ku{+J2_Qoo4$4MMn>+A!+2Xu;;~2<psf^;4%j>q=+n$W>@~_UlM=HEDC6t
zL_9n&r=~?c;kh|E5fb%Wq&miJTW=&*u6$4X$;e)OHEZ0+tvRhiw7-dxzk@R!9qNES
ze=eY76dk)h$g;)!FKvp6Q5NM_VHRb7q^72ykwc;r6vTC1b4T&H2oJ6RZR6^Cp5U}W
zZjS|j0%PvK{rG{CFPGwHRo;vlj+=%KQ^7~<wzJs}8fN4&+#73MXmn)$B-N$S{`f=J
z^;u*5KGm-M1{PXtgk@=U7?YM3YPaS>2^^{c2XhapX3nY|?l|UQdsF9r9V<j(y!Cd)
zeUGtWZ?C;mO+zm#`B2+>?V9Jiu`%fR#-P_7Wp8_sIvwy&cS#wUZr65KqJLv2rL*?=
z^KW48o}RewA5rJCYjWSGaQdQwy94uvnR-@T*O8=tp9ilCh353jcTI3ST~oLBbw{s+
zCt)xd(@9}EI7}&OYKGT@5`=_CqG;)a^wE_Ci2){&P*IyvS0ktQBpxwpIh@SyMIj&l
z5*9A)Ed<$#E4`mBCk<NO?vvv(Ko9TrGk|W9d$l<u!hBWZI9_WdLl?Z}!%qCO`FPYG
zW-;w>u_q)H&INrqwa7TK8*d8$r+bhNCo*>`_*{CM{7~pCKl6T@!sU$ygP$Qtii#>{
z&zsg}V`*twX)(PwFd&HtLoDD$?CXAMw{TuAr`hI(L`al!ao+9Qf$nRMet1Y^|De$p
zkdUDMbeM=PI$a~&nx6hFcmW1izOJ6nA}@n3H~Q-`==+}7z;rypSI7QN4G0K$%b?{!
zZbEzAK7D;H*3+x4q^6B~n2!-DmG$xm>%(NytfmG!ECLYggPUm0K7~>AMaoEsioSvA
zIC0qi+urt*!%AbT4dR0U({S2Ef6?(Kdb1bLp#PAA-fKBOpK80ly%jy1X6w+Z4Nh(P
z{BqcCqv@zDV33$Qs;#n;z^=>}-E{@T*5<w(3G-8iNe>k~9r$XPBc?`tD|P1ns8#C8
znVGF+TL_+~;g><pMu)#=W}GRgz7R;p$1n=@vZi<Ikke?RO6~I=tY}ym2Z!qO6bPB<
z4>i;;Q_~2~9)KIFC<viBx-Jh7(Zwcez`!&dSIJZuLr8%e>{W{Ec03R6+!>@DU@rL8
ze-gC#9m&}-q!0U+0pr7Dh=q-9PXp-UgOa^mf}EtZG#pIo2(y@s4E<b*K5TRMCdBSy
z3q?^~{TE>Ob(dl$eKe(GZ|~yylCK(xBpkIj&*|Ieo5qU#$heGxLK}PGcm_X#SF*FS
zlasT;4h~A0TUy_)wtGWt8MK{Xx3)Z}gPC>e2JTu84%T)>HA*xOn}z5dF<~;Z%8Vq-
z_qJw-y@g+|@r#lQ)*1(@vhp^07@T%W3Zf6o2UH}_*BB<Y-xO7Li)J!1@XlEUVdsLz
z+}g5lb{Y)#^K9q-7a}Rj<NcUC-|ye8akbQPsTlSK<0o@-oF--pXbt6Mb)=@%NYnXp
zNKJAoj%-uY{gjM0#Fr>7)c1ZLKQfoYwBPSWzp0awIyfmk7^EX0_+@jznlwLM-5zj%
z{}Uohg~cw1-lW%nAr31gRk?3&CH~k0KpFs-cfF<~%B}<ZuUtR|3bchgHauCYMYl~P
zVl(yV7LkppAB`4p5du~ZA|UwrGm=ZNtNgG29E6qm*&m27x!~xd`m|Zg!0dtw*TvYR
zndUF5?&3HwhPswvcQ4z@AJZ`_jr;ZA`N1rHGJXjA3=6>&H<~E7V=3RWz9o|1+A1lq
zJ4SY93+YQeKf|M<$PUSM<A;F>=V$?ji*s^rzdCHL6c(#hzU#wiiL71pR|_rpsj0pP
zD4!1lx&rj!?@yy|0NICy@Hy<fm8DwbVjnP2pECjQJLNa|w@>^+FW8uvSS&s*T!xZW
z5r6)CvR-c^TCP9qtNIZ>W-*(U)simxqjErT1ps#b<|Cm`c8CB(kny;q<5$K{3*jY}
z_j)`~|L?czg01CoD5U{XmXY072K(|n(8{7S0`rqr#j(Qe;^BVdIg*CC+;4fe50T8e
zCnMvD2uLV!@@4D3c5i?VfH%?KI@`R1Fa8mo0dc1s*#oZ4ZBWGIhg=_hd0S{xlLX)%
zt)6IxM`p{f;S_a&iqVE2jf^+!|6%W~zvAekXu-yz8+Uhy;O-hAc!EpN0KwgZy9W{=
zSfB}k;1b*&0t654?$WqU@x6I(&06!``~_3L(p23#_ndwA+4s~vvM7nG6UsALlLwT4
z4oDP@jL3^iN;KcSgBW9dUsHlI-{}O<Lf7z?)BFI=;!2X|C>8kXRoTr^{_~8ND6bnX
zAoVA3e)4f>zeNH%Gtr5i4{S8R3?+l;mAKFmfMzCW$4&POaEZ<5e>gY1o?%Sx9>S(P
znU&_fZx?Tm3_~T_nPa?H1+P~-R~|6y{WnCpzNrFXQ{K1@UUVIrfv3#O$beT$HmlLE
zvY!jzd6-AJ_eHJ-c47|~Yq3^ZE;(B6pV$<muoCByKMQ-uFh8J0n1!v)2y1%#Sa(~e
zOZZ{Fo#+D)Ob#c%AP*;;307%4eHctd-Uk4zrpZi{QVJ98t1>T289xQ4^5*SK@6%2b
z)80P?%p9!UK%aJL45A4S3WBfGyEZ3Mj*gh?8x{!1&o&#BppFtwiO5<214UO_9ePYg
zHHwO3{{H2lXJW#5Sk;`Enhj35oz`pey$nixH9Qomid$*9wy0@CqABN>A`UQ1IcqK#
zb7V#}F<6Wml-c|)j>XzvWu<?|(mLmid$~Z1%w>8y4a2uR6bLk4Z2i>kmqcLTg^baH
z>5eF}XPb9Gi<DT74Qu<kcm>f>uOTnAV_ZL~YVNcH;o9`yAxU@J%5dqRqS~9DnQ{tm
zMGTyA#s5gD2!t^uZrV;KZXke{XCm@bJ1`hJ|9>@f|MAtz|6<n6Vrky4@&l}{X1T33
zAMfDb`%u7r&@D=$qM$_oJ&Cy)Xn%AT7;q(3lqoI8NBzGDFkV)46tn%&d@a_&ia(Y~
z`<Vf|VI8XE<6wo$QLV1|bT82@C2Sp1(Yfck2Gk^8JPsc_uLe^3!QW$%%lO-~bKL(a
zXgKS$qegA@2)O>=5|5MS=b3AX5VrO^20j74jchN89*bufi1K;E<n)rPT>hgHiGafs
zxmqMdIn6k#`J@dmnI6M-CGh4kMacJ%9^JTGJ@DL4>|vl4Fc*BCeuE_eqbj&GTtjyz
zDpAlsW>j(ouHLZIXJ@24@Zod?n~Y3v%%Nxj-JSgS_SOm6e<ai=r+(!Q^gLgQR?F`(
z@b_<zpi?sru&N7hoNZTE$>sIu0Qmq|`TmNc&nW;V3D8$kU=tJ(B;>wJ46NVql)45w
z!RyfKpzn`oSb@^gPb`Z!mv-EKe^nkX_jb<Cm7Q*mpZ||kBl3j1KXGgAYue04G*gbW
zfiLN>6>kEiL;|oGz$f6i7&63Z7#R-PSv#ti=s2io72o|dYQjavGN=S3ksZkeL^7$H
z0Sk)IC<_IcKOg|dJi}`4s{)_R79ZjdsvMVC4<(&ZvBWPTCn?)I?RnETxW?=#hhYy#
zb7`kj??x?d&lzq8)!PzF4+n29TN6!TKSxKsTcVjSW@`YvH`_T~+h{mxQ*fTvPTN>H
zx%-z?|GnN+fb!FYgo%1c>reu~hBzFX_Cx?6wSKyT|5s`peSdsU0(#*HJqTE05kOB{
zaZ}-`i3!)1o5XfRqpdW0G<ESup<ydLP;O}{E>N2X0@V+RueNbEAL1U)wxOsMk_j%k
z8;?0i%r~IiMf<M^5Nv4|m6vy3AKx+Plo<g$<+KZS+7(+Nea6h?QQx~FwXoYHvAY2f
zNU<^4?^>_bk;{{{1X0Jnm#G9f4;GZHxi|gyx=Rd1_W|mi34%D`|B?IfuN(d9<{N#l
z(uLhfpEe}h+;r}5&eLX)(S@5#$8Tq^dO4=1rt`~cDFCR{tMNqw8sDFAzmNdVx+58Y
zMZA5R3<qM<VL$R(_dVO+YD=*K4Ga$UR9X0df>Lh7Lzlf0O&4r3BEEdF{PI=%rtb3x
zlEA<#hTY-_`Pk9^E(oFN8WPY7rnc5Y$a&SqDYKdvs6FZ7b#%KqJ(I4#RH^XEt)r0e
zM~_kHg!Z<|W<Go`%*#XD+uKn017_*>OVYz!+5$BDOUlWKNbxCrVKP}+rMwdFXMP7r
zDyyoZHHcgEX@R8dl*w%E4nQEF@s{4$qlf4GC#J!<#>elXG!hc4b%T~6KleaE85#4^
zC(R0#4ur1^DJoSxuPh&~1E0a8;?H18|5Gn)c^ufzXeU6HBR>ogu4zegKi%9s!yMd3
z_;ptmB%iK%9eKah<?Qh@F)-zv`Rv;sm<eQZIm~|v`UDgs0A2H@77rni|EKkbI81<Y
zft~BqvW50U$)_{Uo5}A1WMj%>y2hU@+EeC!_H73(eEm8N3Ywa-{9Rv<0HX9e4A|VX
zx?V7O^Jao%fhnfYNm(V%Vc;IKZscldx#UXnzGC6i!V4u%WpBkMAkYTzm0G}lHq2z@
z9yRCFRiMkbeC*ks<n!@D;fNKPb7tP}|IEBoWl*MpPjJN{ikpJ_Y2k~m796PW63tT%
z|GiM>x2UMDKkM=k9E+N@<L37Gjea%r?g-VkdmyP9|F^u>eB|B))R#;;QQabi!_}*2
z4Jg>#v-1Gj7@Hdp=%i=&_ivZB=LD*u?v%g)WT^L5AnB;pN@rb_9=nax$*BV{-7XJz
z%L=&%BGuK58xa*I@d}i!SWV>{Q@_m9Uu_5N#3m+EIA^YjU?NDU|1aKRp9WN;qeY_;
zO9m|JQ#sL+`urz#r2Z>642O+=kF?GSfTLJ~GrPMm0xG-F4C@^ge0&H169(oXlSEuB
zH$Qi!jx3ngFH{Ad(AYm+xEZ;P=mLv6*9TinLQV-Ps+M+~tu1Zm=Ea-U(D)lzN}w!|
zXbFdhcOHv!a9~bPPXonl@@kGc?G8X%sG+5`zhDJC3&0%WK))*nKK@#%Gv?Wrk8Ft2
z9l!S)r5AX{1iC%Qk$rP|l?iFt?0DY$T&hk@^UKV594@(m3?&y54l17ag(+TMh5RLd
zGdqZUz7_WemI)xK2%waFzD+z`I#~)fd0eLvyI4H|=!DBzFPrloLy4xz3UTEUQ1czf
z^z^_k@^tS4TAubgZrHF|dHg>Unw`b%&O<+-QfIc&j;hV)z}WlxQTNWltut9Wor?y;
z>(jLzs70K$e#Mgx*rL{MIqPdqQsqH6?yql$sj6g?im{_xWv&Tf0_zA$fEyO&!^nyA
zkYF1^${b>E{%VF@dB>}I|08=WUYvN`PA+u1sd#Fz*NOcN`lR)!^qct`KvH8i|INn-
zJ+-6+lpOKW`)Lmfpqwy0DF?Y`>%#8r08k~8UE`?IaJh7rO;lB1?H`bGe>|7_QGjvc
zoF05tR?I3Q+MJY?HRY5!Q7oXxPH5yaHxcBJk!h%*sfi(tos^Ot{bO^r!VXyW`dx^3
zecX)|<UjC>%mbQYX6Vh$BvFbenQA<R&^MF#f)ZV<o7t`wu~~XJWx~G{{{*n(rJbs+
z0VRw!hB;>7Pli}gziKAoL$P0CG#)RP%lZKOwD4Hl2YpOb@YBK+-!YJQ*xJ5n|C)o$
zlkO0)A%uP*24$vY5`|^ughsulLILCA0GFo5i=zS;KK=^@0WPH8mjna2q+LP)!AKL8
z;Oi9d<p<BIb*;xMP*9=(vYLC2usGi2PZjdoIvgBeLj{lmHDvtJ!Lh|5%es1-s12<*
zA>Z=H>1k=HFlAp9yu9CMN`PcTcIpxxU8P9&oo{s`Dk=i+<%yb6BRQXuG{qjjTWaES
zTkHJY<&TOgBKyDpl<^Hsc1GQ=z5F1Z+hJA4T~4k${zVOB?!m=d=i=bU3Bf*m54X|B
zK<k4o`xUt7|M*AZba6Ja&WR9a)O1l^>kBeDIm8z(1+C<A^JUB>dkk>w=y1oBriEhv
z5B7&pRi&dcOpMZ5;U$e76ixCgDz+w~@`D`y$bVvFSI?pT9LU#?2oW`1oR`fVgBDuU
z|6(P4#-FO$h|;I`lkBMJ0v>O7N#*1;6aO2airy<mOY5Jq`0}XGpsZ4Ny;s{Bg0WFh
z;{V=^_!~bjUW6G4nal09RZ*s_oTeJ42LhmR7R^j$MJLhYa0Rh60+|6Oj=b=HBj=*c
zq*ocqMg?&VKJco_<@Gwz0Pn-aYX{VWJ~0phA|1tlH%=e?qXO~3i;4mP0yi)(6iS<S
zbaMEVHxB>JshsqG)Aj#7@BjZ#09*ZU;^F^gmoMb|$k^kvw4fw8DO^NU5IU&IOlrFI
znGw2*C>=)s1{(<{2-H26M@GtL4DpzZVvYfBF<yy{)Ikf5`V5!CEQP%afke<q@q-F&
zI|@j~(n+KI=`};->pIyDY0zj9I~VqxI)co0HTaP@deP)z9j2R%P|ZHT^>%(R(f4E^
zrpq}=oic&25j)sHRy9F-#zEP6!2`fqw$&KP%$Ln3K_KZQ(^Q6ZO9=i5LRvqZ{B;M{
z%^D4Kyc4*GwLCs3mY!M%lM)vsB?xE-So(;#B&5tS82Gp#geJJC04j1g_~B$E#>_b~
zQvAsJ!r;8%sMjwZj1kQY(rHgxRi6&tXCx3+Z*neG2`+|DMjRgGvA89N@bnLIc?BMD
z@oD`2EQh8ej7*q90L3Q8J><ZUuLZXW9lzGjNA3od62cAbq*rpy#GEO)UXQgMk5O~;
zVUO>c>QO_baS%H^Gm>)mq~t?m((2sTHW1Vr#DkeQzLPtz?<FFZrrY(tvNPuvTtI(!
z-IyF`<7|UWUVL55I<7ZPhHJl+lIGVaCgMrdaQY{egPdhN_tFOz*w7#Cf@XZP&%@?u
zL=gGAr(?`CwWT{HD+VEEe>)4Amedn~L-*J4piFjZHA3oZG_)qTFaLhs^#A0r7uyYk
z<~+&uZgE%MCgFXj@HF2NV{>e$$K2V<pz%C;M;MGaPWJkcRTe>BLNm#fx4(mR!9OL{
zuP7tfp+EcO7UY~We`k5ert&tz)ycj6BJp%NYu3n0EI#L0o@1QwDp{q|^J=LE%T{&g
zH+9zbN7*#I>{4mK2NBPSy69u_(5zX04Iz>|>avc^*0}6E(G?7G=r@}691aIssJry1
ztvh$}@%}j8NkXLV+{9q=oPO~JK&V%Y;_mOFU7$t{rlORetlEmgd%pP%xz(06#I5ai
zT-_SMY^mvvE=e^w13JN{i~ZefHc3@cOiIq(2WL?_*_f&$;AFD_Fa)N)LKhTKRTMH>
z?=1N~ch-wWB=)B<JL*tmuWK2eh$G9fv+Q8K(mu6!#*YRp)xuI)80<#MoTUUsFZor-
zM047`alU(VQHfV!zbE5ThWrT?u9>rW2spb>^sJMTsI7W7CX+Kk{ur_5BtV~!W_ccu
zl>F3&<L^gmXw8e$gIbt&xRZm@scAYv&bedpy7lu_6&)Cnem81jd=#^Wt9_qwv9_%;
z&*E9LFpB<XEdYO&9{=cm=HwV2sktTG-{Udoh;cQ!e6?dtG{U)gr-skn1sf@{m@ReF
z3Dv$7`&^9gfg#;-X5DNCk=c#%Zfs9irE?Fi&v4+am!WA~5;x$ZECQ2^g8?9}=9d)2
zldLe}#y~|4K7`0vac_qbihJ;qbHnRnx$ZJzA-&DMXjiOlOCQ<pKR$$dO=JvcQdvqt
zWlVfFeMu3LI2eNZe4V!EgzpYST^fgenN6B8y<gau(r*QOAjWce3Awk_4~3U0Ea}yB
zgj7_-^_HqAUuPl1Rolp9F~I4(Q@3&M{x6_AfrTvQtu+|Uak?Xq7VG`<VgiCZ9U1PO
zD;qK<L9+{VF<$?h)nXF|Cfl~2DK82d#!?9rH{X~|G6P<zEBY|-HH)H6z1^&9PxOpL
zeZGIXA1?BQqu}W>2a$y2c3+Gz;bH?TVGZv{5<OgN9u1C83Rw4A&Ia(WC}dzK5&y$q
zd|acL;81zWma372$8blXNSB6j4Iiyln_nnCqxGf%<w$~M3BA?&Ry_+XOxDSuo<Vr~
zWKi06HtNWj6rED4O650m(^U4y2(nst+gab?Xu)>pRjse2P(t5Y50V?33dn+bLzQa+
z@HIqC?;$&{N^<>3H8b7cWYp;&9R)&bn#SlDa_$B|{A$YJwv>>~g@hp%_IHfGJ?Ys3
z#?v6S##^pG9W2}HNdC&hLb{v;7*2QcH!J$Si-?HX<FQpsn_M$SsUZ5nLJYJK3R2*;
zd+v@f@xz4ZFQx%Yj7tdCQFvKQi$NTlgfMxTGEI~HWJ1wg2=TO1;sG<L#hL}%#EHIB
zbY?+L_~LsyVI_J+(D2&b=(2IbeO03hMd6JB&<rCkQ>Wj&*B*k~BpXUh&u1f|n^{<c
zM~qtvS3*XDJT~#m9EL-*ynHNWrs^FY)+UnO(SFqkge*$Qc81GB!E*H2&*RG&;K^3|
z|5;8>9H1zDML9{>bdWYuWN}~;x(mQhXCIlaHk)N9J8FKAbyU5@Qv2e=#XA}1R2to#
zfuz%8(89^1_Y&9`IUxOHGu~d$YkI^0@A)HAiAB5q1<@?#608k(im)Mz)k#@Lf6t!y
z+8smZdxn=t05|$=aVvenImkpk3RCuQrR96!fbsm|OhZ-GAnt+v*Y|2ZrxV*8hp(ba
zlg82<K}>A;i_eKVD&H-;0K|5=r6p5I21)OVV{$L$<;CU&Bd=zsU_)x`gM&J-5+}<n
z9uqiP&KeQ;UwwXj{nlf3GITj7f*&^0aFnb!JW_Yp#@UibLn+{fo<)gbR2-^Yjw{a{
zfdu7-S|0|e0A1DhI_fq!T7EY|6yAvCeOyIlE!8<)WpnU;O5s?1D)2U{nnhN=uFqT*
zL?8Oa!>19*ICuy_`{W_Q-%`7jFjFToHpN}HER<no3Nv$3?~W0+0{%<Lh--Sk*#!T`
z@fbFw&^%JvOdUa!577Q%oU1`S87<w8A(!-kox+I(J=U~pUDdQL=%nTIV-!s6x?{h4
zuK%lbX)v$CsM0x+#u+0cHCoD(CfVo@{X0zm&5YMClI(JNF>gKF*z>_H6YrG;JN-og
zSqBl5*zDJp7)aqz!(*~Hd-j|tqB6c*PsRo?UtI-4t8dA(CZ+J@f%&KX!hV%7f<=fc
zKyiLWk3Yj|Chp?Xuon^h=QTmQ$x4K-#6g!TkzXVeL%$D`4CIu9!tN_#gFAv}Z&2ip
zxTai?K2Nu8La-9gHJRho*w6JPW6ze>$>?oQ3Sa#AHcfs6zjFd|4#(aQa+3Pe*zTA{
z9mRk=nm%$AyX$==fSD{sK{<(_%s}RVZ>C~?O>hn%^qRowoF>ux<%#eK5rP;}d25kR
zHX<5xMeB(tzc;=wG&y${3;A!!u)W1=sS!qkt5kw#hk^uUyVIGZf|LZhtzv@NGwxN5
z${pXH9y_8)%pb^E7`g)yu^1ElDIA>ewbsnBF3gZKy1QCmM{hIdYyXd+u~nVyG4}}M
z|F(3QWwKc4-Gw~tMYsDT>pk)+MVe$~OqwvY1Z;06MUV8_ml7(<qB?as;yN38mKk&(
zWkY3=#4<V=bo)`Iu}zcNmuNbtIO(+nioKocDafuwHCJq%X)CDG%vYs8$KVkhrKcTr
zjM$l1+Sd^XOzz2qLNX|qhX!!R$AD-E=Z0(TjxUv#k+DllIAU7#hQ)H=Yst?z=jTme
z<W@`fKDSK<dwB^vUrrDkdFEm44dNnRL?D--Hh6UW9m5`Pq3Hxx{8SaV?s(s22-WdX
zSHvU7)a#r5*K{KQ|7afzwfF$u-Vt)%*e7Ps{2*Ui0Pr6+js`6zS%h(7KyJp5KnA0|
zG8U1L-0xZtC1);rn=21XkFL?sDO``f7CBvZL@75Q4ISeAZ6*^V$cGAV`V~=+zN3tr
zPmc6C2QkGG{y{dxF}J02A?0*XnrPpU1UI6q%v-km^IIgygN$retsvj*a8+e`DS)~b
zsK82?&YjIjPmDaaJyx|>32}0&&o45F-glYq&TDz!n{wh68NtAPv;UTCBDqNx0bW)%
zZQWQrI#NswEd*3!89cq2-EcU%kh0o&M}g_@Iu`!ZGa}3_uLv0vA2_;EtJ9~^bFoDP
zdB|!G+k&9kZ|^Pw8D)nLTb>IDd@h=fW<*<~BoQ<UOawA4k+bbO4*Z$(H%rbX_8Mnt
zSfZy_YNF+h%*Zn)_@PsXXd$aqq=>TwC&?w~AJ+;BDTCzekROZ$gEFj;Dgyq6Ct@{>
zIqq;e3VqA~)-y0BVXeg)zGz#O03p#x9ZetZ?4)UGnX|XZnvOAzBR5Vq#>)^sn_lS{
zU(M`Iovl$aJvELb{COP__E~2Jx>iBuu^#UL;C6j!yn?xkQ+9+<3P=ewkB^XrLPkli
zDbvD$R&9CyILs9^uY<(tKOY`=<k7je#%cG1f>qO{=m!O?`l!Lfm|cf6D!AbOUImw-
zM<0)-0jUAsI?C{koa{@~A)9Y?<eGwJ-3OwXmQSQq@tRK*4DAXN+CMFZUoKGGbZVnD
z`0ArK>Bfht66TUfMRwthY2Z;)|4YWk#?Nx382vOKoF*We%Vm<-w6Vn+aO*F+y)%0@
zS;1f$kWgQ*5ELY&46kJzUd%${$bf?pP7EYI@}f$hb=6?DTCqzrl;dXwvQU|*T93V(
zql2THZo?yIKy)S65Bj!}Lu1W72Vcxt?`eB;W|Dcf_!>D}LsaMIy5x7q-hPzB0Le?_
zh_>+4DCU;4Q3}nd-ivSfr~fcT-!Gd-M%LnXg*Xy>+ci@Fobh}_8yo55Bwj`-Xxb9C
z<m&A%c4b9&MRZ>5(Xd-d20WEQ$Y?@TSDH}ukueuf)7wIi8cYKhB)>1dSL*ohbdkx}
z*)2+0Z`@;bYxGb^f83AO_A?^tFocFKmWMvii~cCJTg_g4AJZ(BIsKm+f_lpWTKzn5
z$bf!bmKlT=EC`Sb8hY?@!COE3*%P^UWRaBN`IyZK^<E<W%7roTrsjI6B>MYheTU9_
z-d=?%@@U;!0bgT`eF9n`Z=c`H%i*^HU@fCa=%;Y950VgG-K@?sJM{jAQkK2U_5&XD
zZiV0R<J5rp$&YQQ0YPE0IE_6<cC;aP<+YYmMI!wlZ0|d1eD0f%3}BjPrRrA{q_&1a
zY`j_80>7A@b{{Fe-C&UNFt!sUv66~cx}iN+);)%ii8Ejzp(e?5^eN)A+!Q7-%eCnK
z^mC$Odnfcuc({=O;j3z^S?6$0coLATLYZ$JPuMIgWE$*__{OHj@8`};j#Hz$08vFV
z3N^%w_-*3Dn{bPAx{hV|=QaH00;iAegUN&S4?h*gU5aDGUDy8RlL{G3G)o1sXEcPd
zYKECgQfo#j!mqa9S-syHV83Nn4&obNTP?Pdnp6*L*H6eI2y&;;_`P=Wi=|w9O%twW
zQPfGAEO;kx68619V*v^+J3x0b07HtA@wM3WyxOko04pHEAuH$Mg^L4mhkf>)ykrj<
zGmG@w2dd|zYVSptkBhmK_Z>qHHy63E-`A42kNCqw(Q*6}lH!{^2%NRR$vg{9?plH+
z1FF{npEBe+dMWcXw<JySige`P-Oqv{AC++5Zph>RE7IuKz#b{trQl$U#+8!}af~Zl
zp%~YDDT}3jO37r){Ebs0#HJkdA<51klkZ0#JtTBlx9Hnz8-I;=%@N6@y+nk1gFY97
z=1!)s%5-T1khql)t<(g}_Shjhe{0PhQ_+&?bC=33)Pe17m=Tb?NV_Rm7EXLZ0`o1M
zUb_EDMl1eH>npdGU>3}b*dqZW@ciyBYwhJPH-?e>JMa3(2s;?tG^o9GoW={wWUq>i
zlZQ!=sW)1Pb0)5U_f>;U9TM;+>_0oq0tQ`ZIZQ0O(>N+S_x^p>{bhRZB8W-Ytf^I&
zFu>LP`NtkSE2-E(_9{>{Cz%x&)dg%uYNAH%W>=UJOSw=m*}P6RW-`91=j@lk4m*zC
z59%7n&zDK{^&=3;Cf#44+pukBhtvPaL%5ky<zI&caUD^NBQQ%vIfhG-qyEciK8Ow>
zRIl$ip3t0xnq4aiUgfxMSQg;ozy#d8JIYgHO!SgyP-)RI<!QloF9Aj!3-2pJh(FRX
zo;=VZLRz-Jz~?T4LEqyY7;U8)gu7>9Mk^=9U1v*>eRV2+jK)p-(`ul>G^75ST2%G*
z+fvjs@`!S@5J92gbb9kXdOXJ#A;NeHQnfEEvjJV<Enp;V)qN5oR@8zVGYcpv3W}(S
zo%gb0^S`*$X+?#p7YXw(ibj`awff+H((gUUi~h<MzN5NmlPMeGcRf0+Bx5esaanUe
z(RL)XCZm8y9C&;3y=+|s$+-L!4FW~|!SE(sK(i0vNbFhWeLY$vRsTL`?pW|c2FRJ{
z+_K_0O>AT>00%K35QP~5nY8qWln6D28-J@re81d}LCk&!9~7a8s@9{dnnD16k$(6T
zTeYPde~378?Iqe&Qixevw>2y)642g;AmC=H;(Y9$u!xqtRFMBe?F<6Rs^=m_ln&a|
zy%lVCwba2T182&2gju4&+=lhI`$I@lRMWq(%7UeX@R6v+m1KOA!vN`EY;Q{QeZ{(B
zG>Yi?B6FGU_+no8@0q+G?-dH)Nxx~Sk5nWaIi<d6SD+Pn2|7(iaL}P(?0EaYjH1o{
z*!UE;m^I4R_!jut4a={A!7L{y{9W6bugRZf-e;JZnyl@%Q^~_cCE{?iXm`oil<Dy;
z#qFi2C?-JKj|;prqkM#|hKIN}w)tI(9N&J{%`@Fm62v5E9G@uY-Xd8NECY%Ui*%gF
zOOGq52T$M2tVKpL8@(hPJW4?)#raS;0x`Hm#e48#+Xrg>EC=_2fJ=gmd2RRj^V5t)
zG@kPJq@fJFuYf6uAeY{1W*8Uk6k${C+lsZfsXq|XI_zXZ$)5F{LaOKSJy~kK1#@If
zFL87NC?rU00Tua=;*)-;o^^AW63yDuV__0hfO4b-M|e_@4B~>ET9E)B5QYy68XQqj
z#-CO2xp)JpRqB``!00UsCPRehtn^g7gjMw@Rgpoeyg+(qp^!t?tls2OG%H>V6d<vZ
z5-?}LrO->^Gbln)jW_<+%RSS+AITQUi2N9Z9nTS|+z%)lJRHB_PBG=zO=CXOp$4a9
zDj$ezAg3ouF7i<b>Hk`_EC@*x@S@@GY|h#{7uGT2Tfj|~{S0zyhLjNayDWw;-8z!9
z!NS~^yFR}q@JtK-p$7+#s0c-i>07s#TLX$9ZSXJAb@yC~qVVo%zZSz4T(-&%s6au|
zTpjbibh7wzQ6ZbnpDJxG{5H+m;mMDeO`P2#6EN<xZ@k;_s@YB7*P*fP05v74NW6^S
zs3V-eylpn_@1(`@%yzffQ6kzmsLef5tzqxr;wna3HW2mTtMyC5w?hJ@)8iQpgXPR#
z@@IUdB|I}YCx+Ghf(Ho6;DfpzL+3r!(5pD~XLI|Q;tjdmT}(q9q}6&a#%?RZ%A*Fd
zd&m-Vv1YFA@-n?VzjM)SXg33;7>pB+gk_l^I(7KBsdNH~65ZkffMq_RF@O+oIPA9J
z9F5|c2FI_6su+jk@}%W-x%(AX+Hf6CNX|yKbOH_SW&Npo@npDP{>OpqBVIVei__CX
z;C;8{L>5JgGlUw2lL@p~fkeNQ5t#pvPcVWv`(hdje#G&h*<tt>9SmvGw}kmbXsxg9
znDq|@CPf5X0|CN^OV&U8+AX!+!JB$GFjo~IB4ciatt<<%Mkk7a8F^quLIE!UFclBv
zZN_S?CZ+^PrV~OWJE~_oiEX9^rk6I{h{n|Y$^?s*)y+bg)Y7>0Mab<~(Oo#*@Z-$q
z6%}LiA98bJ#37$m#?ik_{Yp>S6aW0drS3BTu$Jw2U=*-6GmTiqp`rXOplaFJOgdN2
zhGzS4WR+@Z%s@LqtD5Lj^&g8QOU({6iEu6CEei+rB>I~V_ovVS80&0xaYrb!8&5JR
zF!gGKpu~y+cQD0zoBr39FiBLpuj`jpX}U!(@LQI%w~G6ci0{UKbR7S~aUy7y9hM_8
zbrFD80?Q{~%mb64uAp6hTc0onXQKJ)DoeeI9yT=?Ig%EGR}-5$y7k4LOJ@9*y;e9$
z*&KAD#(mn#78)x*Y1-d*Uf}^cDlE5HKU9Gm5Qmiu6H?W%FbVvyt?{^6ru}5v{p$$c
zG5t|g{sOO~>*|B9#s5o4XFEIBNGm_LO%+R`g;}Qu7^1SZ0U%T&rSuO0K0p(;2CgV9
z=KJkw6Lo_5hH)Gb%ZSF200#-E8s~c>*V$}uo7j50_8d7*54kzsa!F6KpggUj?Cm)D
zSD*h=_(t!1QwT@$(SY{ty28%H_R~8@v1_H7C`olC*^`5>h*F3hmt_%Y^aI$4C-;3^
z=!cxBE0n_e@Qej-05mpR^3mb*vSBXQt}5(^Z$)y{613ahEyo()y13#X)M9zbRO9eT
zYIs#&7InOL4CJimrs~0DfHxU5-?f*};}EAYo88Ib0kpyt(6xm3c-Vh(si1rUJZ}0G
zxO&1jrsf;+Y)F($I1pi92H^cK3GhdxG=Uzpjj`}tZq;ajEs*_7hb*Z3XyH*Q3E3Ip
zcGS7)=;Xn^&(3xbS66=AtF2~JY8-f91hdMLHutLsb$U@_5!Osvx&*Y4Ys&y5XjnlF
zyK@5uAUz1_?RF9|88MgWjyqoe<<{VL3cmo{`8%aMJbXy`drN+ZqAGS3^-P?$TUmPc
zhptU6VRKvYn}w8<PWc*hkoV3j@7NmozLQku3_$&k$34L&IB7R*7Hae<E&4b<<~Z{i
z|3KW(!liDF5iu-$<HKje9<DxGAWb0w);K^S68iFw?IjB^`Zf7cN)yAWEa5npx<hoB
z<&{#``5Ym8rbFjq>1Pw;k9=RIid%c<5OI>3WoKxwua)_9UX~Ty=fR50G7(lXV#2<d
z{122yV)cF_-awe^K&fTUODddmo$a$!VraSeyTg8wF#0>lqi2Y^le4>STsnA?b6mB(
zE>Y^JZzGQcSXg?dLkRw#E)2Td;z7|C)>oP#)Tl{vBw&DG%|<^c<H_N49bQMal}c~X
z&vI{eu(bO^0>l;Fk6YNbyt_kw0)Sxwv*h8I?g6-)*<9%|O`t$*&;p=&gc!lnAz+Zk
za&CTkf!9-XG>kB+3-<*Cl8_Lyq>hDf0E+tY^baYY3DRQDx;>wm<sf37UtOZ|cvXdS
z-1Wd^V-)u5Sc&+k<fi4yRTJgVs4kR98k~4|eSH5RqIqNFeFHiRjpkw!Z;MO{6LKn{
zMH`W^S<kzf>9w(!lp5QDB%62dPv5v`A4-goGfR-tIi@sEG`!fM2r1!{ZYJ40{%p3z
zeM7>L?#xPp7*@Idb~gGluamSzD-!gj9*z&}+gF7kr5fwio1zFvb_rtFm4`!sXjJj(
zui2b#gNr9h#|`?4Zm~Y%A&ujt-WYE}Ykylvl`!I<$x2RG6(wbh{1#u&TnmiQ5`gE*
zZZk!>{El{FLx)%i+aceH-MP#avSQ1>hQx%+TYLbbxFZZy#I>aiR7s%!Dppd6uPD@B
z)u4xRy&zJTZ$!a`(0d6n-F=o8Ak)}oslXnA5gKt2ovUwmZwOysH`4pgETe$Z6cm8C
zA+#Xlun;G|nEqFQg70bx;M(cS<LQR!y97<7Co#xbN$+J@pqei6;6g)%EbTC6P%^a?
z2`p6c4%V<VTfN6?zjQ9l!^7A?8?B*@Q7v|1?*F9wZJ~)Tt2iO9QDUcS7j|NUiq$_P
zrpLR23`&wG38C(YiXc+MrvVbk*Xc_5{xAZAX7}Ij&ZrZ5T6#y)%}Y{Q^@}o7MAnlY
z6#V@BL2zP^*Q6@nMbK(~TGR2miS<aQk_jkTt+cZNjAMURGB~c!ZBw?F(xz$6m{JFz
z73RRioC4c|d|eN*RbQt|ibT6(r12a1D43lzxB*~ATI!L`X~Q$op4QaRi+>1tGr)-V
zQ*E##>zn?-uuA{lYrE)>-OLIQs2SG(g#E)5N+b5$ecxtJi(6v6S*3g!AQ@&a02Fph
zWKm-KZ|z*J)8v`CmUlFKtEN@H)>1Qwp192ieOzs(RopfPx~iqga1LQLt<itkv$s;o
zj03ji;S$s2<^U4|i<_XFg5Iv=Lmx<u>{nmJoel+q2WcOZZ)EmhGFnuEiJ+z&u!%@2
z4FwGZ=%!=gySl>kbf$lFmXTHt$XvG|0nm{jnE<V8<8a3yM~dM&)z4Y}q>-g2m_WhV
zx0Wxj_$ID9Yi=$bD0GNMt4eC>FGrBdG*)nNaK9KJ`Q#`k`_G*X**1d!w9M^aZ6g6g
zmg6g))l}mPdGI5^ClJ!_EWfNO%{7p=yRL5dq}vJ2JLBy8H&ve7#3Irq^IO~bxJtDB
zx_P`A{BMk@2XB19bQFFZ^_;5y{d6g`8%IASlK}@<d1Ink5T4g`JWMBPnC6c<O)TQ%
zJDOk)Q4|H>zXb8Dp4sF}Iav`p7$X!SjPyQ<Y5MSo0R?b`>_$OIdR)a0qz)8EN8XKx
z)4UR|zaZ{rxXha=%6z}Pg0baWtGxMQ85$5{tKC3Ak$TLjnqnDZ7@r)Zh`;^fVM&49
zb?>yn2BLIq>;uU`WIBDOTSf;#i5@=a<Sb`d0_^lXQ4I$%-j?XJ-sq9>C|UWGgrHTq
zMijT27N#af=^zlDtvcv28j31AgTmjbkI#U*1S3F4n0<#WZ$|URk5Ggh;8FN0BfH;V
z79nKi*!3|{ARvr!CcTK?=!b&E-#ncv)I5e$E>`joLdQg{<)cgEgzORFg5VUZg?<#g
zYfZ^){Z7%WEGuhwq2+jNXia1A+k;d{yUffs;#wfK1}7Zr<#x2O%PGB-elTGZ8q%qH
z+g;Z^#mZ=GM5%;{b$g%?JEq$B?5n&i>z{3kkj=-_srm!vvc#M<=0{&bnaMcKLNck3
ztte9HpcB8K-npnQ1OQ-B&%Q4%?(u0Xk&Ejp<m)SChurCmkP)tC*RRLrxEZIvA}noo
zfAv#kL|)er1+2b}(db+Ayt&;(NI;RWD{dC|(``$fiD2<lI2`b)7b-lxbcC(kC^jDy
z_)a(}>U9+G(=JjVm1L%f#r;6e0qlXaw%gU<8?({sm+1^=h(oMuwo2=WfJJN8kK#bX
z#r>5ax$0VO#hn0f|7A;ubpX;TJ92<mAM<LHkuHEQ6g~e7?@l4~c0Je{JDZlWS1Jv5
z5j;>pJnJ(Nzu7R}_}T?3=HA_gN!a9kCI&$Sxn3_K{naHQ*Z)G}jwSup1EK#9v_zqN
zWr03sS<sWnx!9m{on-kP9-%cI7z@bP>2jU8>$>I#9%2h^kaO;T*y&vXxVSMsvk>vY
zWbIfk9A5Rh4F$22jC_fGON{xcch*3ZkFQ=~oR}jwFgtwgH!VH6BLdPim~gZb4n+Ug
zkQxjDD$e-eRiLYexNil6mT2_4Qe+AnWfk5<UenhXdIcl*2kt8Q<i`|m?~=C7T=xjg
z|4o6E_;Hqc`+f7ykioZoz{iaTJ>P-jkLF1tcgBF@{eR?D=Xu@4ee1PBQ6(H{3)JOj
z(U>|FG88}uyq0IZdoV6Q@bwj1Nv8I1kMPm!$?_DidwW=q4+N+?1~73L5fM{b#ON?s
zlt+PPTz|qHVJp71+xkJb4?2m5#FC5LeVnoe>*PjX9mEoGzW$!+Tr|MT>ZXAnXQZ|3
zy6^2N%jEbhi^odZW&J*C(jm8Py22|M5Oy|!V2jWnCBCGT_h8jZ&`lI+hWVC^#=rwq
zID-9~e@dn?CB+9bcU%Z4<M>t6^>=l_jWyi`4Fk!CqXWT1oAh=OvEpDL2WxmdV-$nA
zFwHkzRAvyZ=>W?0lk8`eHeq%-eA28{6~1Bm&U=%@d<OPD!uaA0exXHVbM_D?5B7*Y
zUf$?d-OnYN{J+D-Pl*FD>w~ebgen0ldXU<`+7xTf&Eeu*-Wso^DWHmy@TK7lP*H_6
zc7vHzBD^jOJ|Y8|56B!2l+64R^rf^In(n|>G^y2-tQsGJ(EGkh?D%;K5z=}7%^yDP
zR{3Q@3v;Jbu5ZV4p|x~k-SDg8zbc%jPY)y1?1k669DwQpt6&1|)U{S{KsjC(1_E>0
zyR-d&9QG22GLdxti60Z88OxMpCu4kQO@vQJjHD$m2K@Hyk0j5ZdydG>Ds1H25&dmg
z`a8loXW#bQi>M-1_`P|V|5*!=x7YED6$z_-J_6%@<mO+2i;z<ck}SKy5pNb}<1g9n
zNWZKXtr^&Pgvo0y6qY4Z%YNuYf+qcsS8~&rPpFMIsHT^?^5gYhf#5h_k;y>EGK*-B
z@;5Xw{>v<@P|`T7*XoqllZ4eM&ku+b%oG8OjwUvqo~LqT6_ef)WJP37lc$$Ht`N!b
z-TjZ@Q~A}P|LBRev4JdUxBd{qiRKQyw^*3U>pT{D{MHM|H-zsjvwG*2kTYcT#@Ln_
zP5s}VY<(b1B~3RYZW}BeJX^lbFpMtU*mfoZ%1RJS$h|hmfQ{Da31a&G=uk|I9iC48
z>7bOalwvh`cz%#YoP`o$2D(ba2pB<>%uC*#ewi)kedf>hFVGB2)dIBGBtW?G<ob|H
z>30Gt13pLsl+@>|zn1I+{NJyhoU6}*@Y;Rz_$^1jf2O75Zxj6C;t1>DlMQDF*!yrg
zGmtvS>3_1!ITNU}^ImVo1jO<lFOJymVxNCC;Q3IW1!824nc}r@_2$zjN)$01!pete
zcrGU1Q_<Ix-FDjSP@C>Haj4n$o}121LAbS7veai~{GbEf9z=8{H@AT8Ap9~f?x0N}
z61MHvueroix@?i!{o4p6Kh+`i{}Dq_)1%z~*w*c^S}<bVaC99HBv6#&fYyR*E@xCX
zu-#lnCc-DqgFrW~*9icn*-z3Sg_E-N7Mmudl5NAPz16*n*~!^z%Ty$`9fMEx{0Pof
zc4ktJy+|c2eY$pQKef*Qy(oVF=YX0)6Wl}K)iJMFOtszWO`w(F2f;b_H@K*1h^S#4
zruk9S)Tqqz<0w@vgc@2sA*Kpce!U4nM>r7XBKIl~G{k*RJSizGwJFnbX!zc&n^75_
zK1n7S)?DsCJI8W8d}y^ZytpF~=)h@u<S6>c$>VYj0vfOtSW6LMF}kZsk|uZmf*t(y
z|M}|AniRv7UlAs9Xjj>%5yZ?`4%NfI{(Q#3@ma+wV!$c=As<CHb6mYn^71<QV!yok
z;UOKWfq+*I>Dx5C(4(2j`+kj`?h*XX&D4vKpe8nf>wMKiI{neEKSen5o%NF~S^j(B
zKNr2io7-Q{^MtlS-x_qm`dU5v0^LKHBu9(*gW;vF<xCuRNp^k84oH144f*R7QQ?3i
zCpB5XMk4>r2O*cC+LX-_>8nz=f2OUT+Q5nESU*2@o680@x!V)jz?DKi*HX`vB>E-_
zFuuMP(6xwVO~te{;FmB+?=GvL`f%1HRssL<?iVkS8}-tln~BwVM`Zu4p8{O%uL~*v
zFP|eLkv8m@@2Ec3?!0LW!6pLjMbOJJj0KZNCL|VnH_>^-TyN#rvA5hB3*2hYRtPN=
zr?|G*C!RT6@zx*Mr0Q&YXxHNjYX>rTC{sa}@E*nJR)qKl>W1_<w(|BkTp`s}H<7ul
ztjOAHeQfY^Y5SIYcOm<Z@59I4XTKkB&OLwN39RL;H~x?(%e#X6oq!@+rKIn=q}0E;
ztFOvlx6JPi0dCRhSS2-Wcg)P(Kz;{}v0!)u_REnu4CC$tzwN^Ae-VQ@DN#K5YeeS;
zy-G^8uR<kHILRcPm=_WqQ!j^!W;sXy_VjD;Hid0|XE^<3(<+)lJS_^cSUUr5;JM52
zx*yki$9b-5&JFFfCN~#**J-t_Q~FR<ymNUf1E)0g>(VdS%oThcqwwy+pq%gP@ux<<
zY!iX)8XE`7=6B?^9EzY*m?kmrn9R<$ys(5?8bXP<LWByzIy?<<?&sHmU(%_@OjD!T
z)q6YnTvkEhp$gfhbNc*VN^a+TuB^MrOJ|1$Qzv=wy#jpatF_YU5E#Cigg$H1k8L-d
z)q(CJ(z9z9FX<TY_1a)&NaIN;x~qNdNrTk_-}Zx9fgUHhJ(9@DLwdYUY`f=-(c$Q7
zZ0u`H(OXNU8M`wzh-SAUiY*PRew(rvQv+ceW^GYiyFk=#)P#a84u9;N`r5bWFz<NB
zl$|eP;jn^yi<%u@jKYlBp6_Qf23$q_8+-p6h4``Z1W>@)nPeoq)TokF*9B4K2YL`!
zXWIl@$8XqBA>i1YBKXF_#Se~i1Cb~dkUn)}#p3Ze<ZwR}lu3cQBFZ3RH%aXzjkSl5
zO%b)!{k(tMiaU~&;TyMcC2gG=G=M$ycRn^YTxO|IYS9(5{M=a^J((!TOQU%$I0`Q>
zdWEXyF!A{tH@`qg?G59{vY((w(aeT6g>gl34vOl-3@y8IDYdf7XJ50(Px8T$kr87Y
zYQE$Dv?N}8TiRg1BE9wbIhTzzOWrs=%SzJ&@K|a&0v7_t7Ta*5WMqQZm*CBF^WJ8;
zk<Y{jLv-CC;?Hu*5LEfzN>SLLo1S>ZNC2z)GgH_p^(|US^izciNPK}1Qq9k#<5$N-
zjW1)Qw<%eMtzFbn;OC)vcCG1swXI>kKV&?SK~Fo|G5L%}Gq!2$ty;{dn<LgdT@w2y
z1-VVk#{%0*@|L7TsfnQ}GFls=o>^|UNoeWUlz~RWA$D$}6UAyJ%5cj+TY9?gke9v*
zEqu*&&!R#~@)mkJ|4X}BzIS503iv(2-u}P7Vc^um3Y@T>@Di7>;2niXQ?Y_mgEM+h
znx1flr(UpT?;A25-n`FPz;zxs&dH$yMB~r*!R}7RU&aonXx@P<w9!;&1_no2|CoRr
zk0}&SFaxaLYiKn~rTpO)M6uu|;%u=>>9UiV0=*y;1|LN=d6O>fVJ-(_#CyloupP+k
zSBeLcC8iEu_rjmDR>9kYvN&H)EW2PzPZF%x7??jj;?Q4t=AFYd8v+%nDKZGRth3o$
zn9S<1i6maUhmi?Vm;LaIj~Ku2y#;^-jmo|>wtzFagt8;zdlHG>h7E9_jc9YMn9;46
z!CDf)f;?*?kUYZZ-<*8K@CeO!yqn3OQ9e~KvsVMJ{~IXk%RuALA$U3JV4hzpEfVQ{
zmp@Dw!s&a=SM$s|`C^#&WoW`@if4X(S`y`hSuavU0wi#`j1)!qU~4(S^2Y2Q?yi83
z6Ap>v$QaGOGz-emS0|BYl9(9y6dH=gH#h^6S+&q2_KFWr7-@l2d{ADiwJkU>Fzc%E
z!>5oBhBJn5xZ)v+A<lIXr&A>(J>%CgImM^QJKsH}mWd^JKU8B_rM$*ZV~gKNiUZBq
zYrwP2?#&r68DCD!tUyl!Y}%0<JA%Gzd%l^R#oof`1D+oJB@BSn7^J!8hLoTW9TlqV
zHfZ9#SEnICNhO^hweR!h<JG$cFJS96A9#QpL6UWSju{K!1d70F#sSK}{MO4Mg%Q)G
zs*5~P(z?h{rgoHh$MZB#{Qy4syDwr1yaD7*Fz@#k^IM3t6++5u<ad&C0n5d)#T~D7
zk({+rQmiwS-I6oEzd{?4nUXqR(TakE8F!bMX3puZbsmI7B_=ojn5JQt+WM9$i+0MX
z<2~{#g(-Z7L&zuL9k_1#dh45JCr`B=|K9k&G_nd*Ic;_1x#KRo436-bu%c+d#_RCr
z;tU__q@#kFoWP9q8g0eegSlO9`LfY0|HA233R2k6Mu_N*XR30N`4(!!qy3PP6gxC}
zGX(f}_9BwZ^CR}&0u8-L|9W5Phhb~8^ygV<byRSf&{Rcp;zc0ChKWd~m(`bN6!Hx1
zBt?4fH6?q1HWl;~F6X0;qGZ?eE`-Y-?WJF-TrfV}c)X)jBf4lGkds*xx_LfiH(itT
znavg{1_MAe`D*<8DhL2_BX&It3loFO_%G%f1jpp2d4>njwtqQhjtn{trXQPP7em-X
z9%MBM2;_qeeNn1j4Gvahf{RNja5|CiJa|64_YBT2A-Stx6xxMQby|hXDj2gHfA9Zm
zsqkyaK!sKJH>^<hok<A17LObMzY~_#8P!|-FK=m#v~wM@I6sMG*btkqdMCtgJ#W|e
zT2CK2xdbzM`)Xn1NXw@YA|;4bm^p@H^Cto@YGkTLXb*Wu5Es+@=14pHVeXSq5@+g`
zj$t$D4Db125w?NgnKWF2wH-6~!uDizY{;XpHE_`lXR5vCTd=WeQL(7BkjSD`jxp0f
z=|o|uWOl|q_tuaKV*;v`lrG+_CxuDAOvM%Wljyf}AsFHUW@>=6_FNOg9e0!08TZ=K
zE&as(Zr6^xaOIpE>IDQ@N}GVum`d)?8Q!5vc?JiUrWrCLI)?de`>oOBwA{78lchdC
zuzavBlo<K_`X;#Zfj6-B8p+-N2bOvwIPU`;)gdN86JDpwe>i1ejPUZ}+Dk!Cup~SR
z9R~?sp>O^zd6oWvpJ3IfacXwTVAXcF6r;``7jiK+MvZInh7f40J!KETgA1Ii?XlcE
zwh59poJnXG#Us1DvTLQI*YpZM-#tr<vmJ98>3yZW1?6|np)JLq$lx$TEe@qqy3zON
zwm_S8DILc_>+?dLY6nsmj5x6X3)DxEZ)5z~J&bKCPxPS_gP0F-V4!c0>(K`*$L2p>
z`MhdcKCG5QuO$F9noSu)Kc;yL!1Rdb>Og-kDfevyLR%#@6=2fsHIi>x1LaM4a|Pj4
zOs+;MPkf<eN}gKUYk#hu;wWs^f@!1=g*Ht`&Ag<@ZQg$4<4I4A_t$Ir*H<{?I#_KR
zW{4iw+9#7J@TAftksi&<TS?>@elXvaD0+vIY(3+%mZ|dZ*wqWx_~R=TfX!XzZ{Iws
z>7-`*ej^!U0Bvm+nPouiq!aMp<3S0N62@eVa@DRrOWwLs?N*!)7h&&5>O5*h>3VTb
ziu6VDH-o*;GTG}W+@0AMdaKxpL{ljI>)6v|6_h<G=CjvV%Y5bzg%4L1f5rkoz3~hu
z$cMZ05;$8I{8oA+`27N%2qjVE)?S|@QoX?j??ASw!1h@@+(3(xoKz(=3A$nDvA?O5
zBNGn=n2BNQ-9UXTY^P0{P^C@VtA1&-<n%9=aOrIFXqA0D-8T+^4}G|LLzYMQ)hsPj
z9OkKhLC4(}8HhFO<K`%E|2CU^^xy2)_0>lGZ}e1d<3J31x*V7LzeYemp$uxT_%qBP
z%&wog^CV%_tXDbTr`ryk$6h()VDX9gUCU`kIY5n8r;2y>a<QT2K--=kq~ZOkK~B#q
zQUWW}bBxaP$C6{2j{e-S{P^bQr>w6!)ujb1EbL{H&rX@J!Mcy{VfLcCZBfc1>z0!N
z%`=ms`Ewi-yhb<ota6Cj#u}R^C0w4l;eXGT!)IK7oEpS$Qhs6@;=N0NHXtn9aq?>G
zce(v>AqqTUKfQY|WL)X&K<OFzx1cP>)ttj|FEUYcZRgU*a?>}koyV0wwRBWgdu>AJ
ziCOB=6yZ!$f_%ia%3Qf^####{wS0)KUx(l8f-J09%+0NmDUak$f*M0u(cFLd`}5$~
zk*l}=@+4<>bay#e+jD2k#(9SgWUs`!lHJwauPotExz)_+Fv0U17cQdvS2Nys0xup9
zZ4Clq*N>nXBYTd08J9Op5KUMEA5kOH+-^7(57kR>h3-ytU9&6e#QmUCJ1n4Qu-<MG
z%GiPiM8Q3GF;Q?|F0E8d;C}a@@MI7j^N7L}H05FrGtgpZ3}-Ld{@U;S)*vGGu;mXH
zA^f8@B_*Mp{Ug+3zuXU4!o!MG{~NikLGP;J9ir<8zh~A)<znVl6YsSgU5&O9Yh9KZ
zwx*p{-j&*lVrwRfjmL(XK-1_hJGDJq;|+iqz9%ZDfnx>oD%!e$t-=EWp*K|G%99<(
z&Vd#F5J|THrgoFULGA(0tYZuJ9WD|KFtT>%+Jy3B!bgz;WLAPf8;yplv}m>kB9B5>
zTeVUo;T(`Es^)(O=wq19EUFW$o%1(A>iA=eA7Uw0BeS}iznE!fDQL_=>Ecw#apY{O
zL<n_QT69V_=USV4diXE4f)5tyP_=(jr-T^%nd!CBK;>d-_zhjX-@Im{&jtFe42rPT
z!BeFDOmUiV5%PHWM4+ClnUyF_)6st3RswWN$S>opfB)f3#cif(Ao+#2$<!XCnM4^3
zZ%<Vb4w)2DnXjIGrU^sRKAxFfo0|K&eyry1qTF6HZ0tsiahyk)DNm?9@Yic^Q|p{U
zU$fTz4Wa!(s?GW_931nTEhO}_afx(gG(~7P#uS9dnR+BTpNn}3xJkeicbg><i*_)k
z>L*S7+06Zpg3fVvA`+eWN~zGoSW}k~+IYkaR;QJ9Qc~~TCew#cF-UV)<m4PmHiS@t
zmyT1U^b5!0an=iZCdXvtTE8CejY%K0gcu)2S`ow_OJd*QU-x>cx}L0>`u=7i#an*o
zT}HY<&)Pp2;=mMnrbW=u)*RlJ&B_@_Lof9~?iz&N8}LE34J>$#iHMZyH~>>IIdg)m
zgU^OD9tO<(6u_T&l^1A@=UMo-f^11$QEk(vbV*yvJIPP0V0{UP0LgKmAgEVMSn?!~
zFuc$a{L@TNQxsNknt@%LF$HJ?$m79r@bRdDUsG;J5Sr3w)Al!GO;{^##w7u)JH{fD
z<rIXCe_9)Uoa{U9#>7X;5I9|1N0eMn&+NUjW&NS^zIFcIO*Ro4W(CateKz|n;VMyB
zNb~()i<!u3&P(EEEM5QJ)9!xbxF(*YQ|hnnbp)#$`COH;(T>qihZ2XT$HmatgG)cK
zUNuJ|O<IP}Mmd*N#qVU-VR<72I>9S&4*-$lUF6BJ7{pu$UTkS~=NnB!BYMNELjs$5
ztCW|&KE0!=W;NrZ&xh;7s2lsKRJFg&fuiH*8SbQv>av#fG9!K2r=@uNB@O>qd+!<5
zRM-8BVi%DjC`f;hrqV=u7Z4F?qSB-)O?n9gLRD!Z2+})IkRmPgUX<QKhtNBO9w0z~
z068nq`<^rIz2knrAMXDH3=(!$_L^(<IrscwR`YID9*~=x<oat*KFl^vE^M})wQ?4o
zY%S_WPPvs|v3l25o_l{&+?=~zN2svOY=aTD(Dof{4yZGuNWT|<MML$Ms|^&Yuv?3F
z&X1>|9e<OUubi3?o&*^#P^jHedbhQG(Ks=Bx$`xNd(p|t6fZEXiu@wjIk&%6hLTtP
z6)X$e@L0&vX}n?Cd-#B&a;o$(jEk5LAt-U3xVp-5s!Gi-0QEivQKuq*SjE*%F4J?9
z7z=60$8iXgX>}9f*2rTpgPqQwTb1Q6d`3Q`3AzH=86%}&{(V&YYmUXpqHTd`<;*(6
zT9N(M--i_0`1Iu+XUtEA*_7ngV6svP;}@+{KGqsnWui42jBqta7u@5svl}}8pmJhr
zHji)IcnLdPp+Y=;m3-ScPtkR6Q|D&xEfas%8~xH<@geM=Jx)UNUn$c{qWRV&<q9fx
z+ef_@GQM3-eDf;2mMAYtCVN;*Bnsx|O99b&Yt68x==4$HSz%jRvqrc@^^2Q}c^gHr
z##Cnvb2h9j@`UXwVA)MI=y&Upu|)5S{x{kmu6ntue5S0#mCiw4%!|b9NDv$YsOZ4+
zS^+sf^C_5Fuc!sOcM#9U?&<Z2UUB2~*5^w7uI?_&1NlM`9#N5bk<LlRS`^v6^NZOg
z4Ua!xcA}Jm&CdNZ(L&2e)9~o0zCvJ);*bc?a(7S3@4mrlni4`Uj`{Zg)oq-7SXL2~
zrRbRzy8p_CEv9X4P{O;Zb)Lq8RqK9tRxz})zGc7EN4Y!WT|!rL^Jh|0@#9|#@kI5+
z7B$EFlwA8QE|H(ly9&Gh&qL?$@eC^3b2Z&PHyeI^Q1j4z_g4xC39d>Qgxy*)Buby8
zuIa5#O`&;JM`gI=0^1$0->Z-xD1IQG2`0LyL!*hT+mopXEp9RN&vjDlBLQv)9QIc-
z%S_0m?dHuUy(3o5_Eg;bcj-XM?rq*bEB8H5Eq28o?FN~?Umq!YSO0L_UN;f=NaI31
z`L7||UscmSQ@Ihbr-q%N<cLDyhN~XtdQ`}Jnel8-7EhjW8MCStRj)d$7AkU^1j*)N
z_qIgARmBHB^q^ET_YvYJtUK4QBD=EWQSnS2GY7S}Cg)K7utP|Aqm$o|U;PGxR4bmC
znc(}59xlG4I!I3O61E-pl6R$Mn)Sh-+0<+&oB49X2X$QH`bB(`JSvq|20|J5%cjC9
zlkQelCH`!EEb}80`c*bNB5rn<E=7F1{&)4k!VloKEI7sXL{KRVI}l@Hveha$|Lxng
z1~ZQ*K&Ir%qONl7yS%SWtFp9(cDngHAW8%=)a{Hl28m<+RZlH=S)|M*o^lX6^LK2r
zi1141<f!U2ut!`}o}rJURv6YHE~@$=@PO_su8@9sq{l7(nuoSW0nb%e5yAB?5=@ir
zl_U<~Q0kN<kQcjlqxrcXYwWe4%R{-&(;HoA;P$-x@KJYOB)EH9<9hrfgD;XQAX>GF
z9NbQkd&KeO=k&!#!#}_LbmXQ15!^h6JrMPDd`W7rg9nP1zBks<O`v<Buvmlr(7T!a
z$ie9!lxw+1mUYduLZbVsk>^#Z9+0yPGN}^K>w9h{_wfvOSQu!ZCUePpA42%?L$;2$
zGK1b-b!d3}9q3QNW7;dq6|Y?+1MYuArul1$ESNcg%o_!6e%h<)$WEVPmXH`Mf`Ix4
zy}3fn6Kr3g1yLj&qo+Q%n4BtgQee&^a7EH-OC;UAZ<;<-8{8MUZwM()1lsyEdC9bO
zMY_aJa^iuH%WWkIwA7buey_cQwJhD++Mh_GUx2WuECS0m^?oN;$hidA7^{p8N#H?U
zJ`VP{Q4x5Rp~}(eI(yBP9d!7`QB3iot4#_<`N(zFKUy&+ZM**KiSNa`Hy?sf%CiE?
zF54CS#1He%%pS@E)%`1BuX$a|>tE(_EeZd)PUahU!T(~w)!hB(`x(mVto*6ihPi60
z`(JD2EUW`pnHbDf=0&t9_>n3O@}jf^(>JX?yLK<xB%6Y7O?%(<mH4n)zEGQy`{R`-
zuEjg}n{+K8wgPeag3LQB0+)|JHflX^Rxy1!CyXK$Nejn^C{!r6KY-mxPhsMh0&I2p
zNdHmpj0D-&i&tYN@Y4e#drYt;2^Y?v`qwY~yUfbNn|Du*OhrFyX}`2xa|;j0tAxCE
zN8ewnT?+Xu?oJV(x>=`o>V3K^l=SHS!>_NT+Aj~dF*B0~cgr_4bCur?pfV;NMBLCP
z>3EF>vYWZ#@>({_k3LAw4NhxPb3CKEBR^!cG+wYIWq0=td+z(3*iRK%wjXL#sS^XK
zGKr3eq{6in2Jz)rZ@;*Jm9x7qi09TmP`IwOY_mxI3?OR&WRs^?fPEw)OM$l^0{u#S
zFW}!#|G&IB@cn7QBTV-3(}3WCt&(oASb9{?u_Y}jX@T`ngJNdB-}qqbW&O{qp1-|=
z)}!(_nQkkwbx`YN9lLK&HIMR5s;Y@4s<*VYQPI))H#Yhyi4AoRW;W8?zTLqY?|RjA
zcfsU38TrqRRyyr<Xdsna^kuSiog>qU_A>iuy$64r7Bb~Zo#qu-K8(~fp^S8S2^REV
z%DUy|8BH&Y*`((*VP0(NjrCv9gya28Et;!bQZMHV_N75jYVF7I+4CoF-%66)y7dkq
zc{1uAZacRvj}}gLghe!pZ{aUk3Teun-A}EB=Jy}cifwd{3x`-Qk<!ZI_j#z_mJ?~D
z^#Ghkc@soaCZzTK?-)17v9b_1TLSnCbq7o>f4}<~zI3lVsT1ae-wjr(6LMpit~F{(
z5Uh-fg9ZeW`K=tIP1@g+{!&G0SQ)j~V(JwX6d-*Yb*J7?yV+J%fqLXpI~*O%+Sp>A
zJH>sITjpf-?DEyPt<Eo03Ni6ZykFkVr)w}<kEgE&OQCEsfBYaJ$wRiq6&Q5(_DXE+
zB_<~3PZoU&3%iL}(@7?;oi_T?X^CuI+u`q8a;YAxHe;lx=YC;?7_n?M9-}Zw`(`v*
z8I=q<fu`8|SiK%yE)eB;5KNKg<D<dth1*<s?m1zNf>fN9E{{9iW>K_t&<HW}kc3r8
zQ*bdq87jltWOT3X=d*KjCo>yVeuu~FW{HxRTUnGipS?ZYoCs-lz<Kt?Sv6ZC`HI7`
zto0xeX{>?0&W$~+48GhC!{S<>Bc3*5X@NQ{(6b+fOn|Z-W%)o9XX9Xvn`)Xb^q!2T
zaod5IVRsCg>%z`~7^J(5LR-83{9=zKe@)J%=3vUUHP;fijd1F2@l=h&&2df7lYv*L
zHQqygWN)X%WJT%{ov%ahFC+ZZq}KMh1mDvmQh=`ae3bqiS8d1-ru(Tsd$vMf8JQZ3
zTtOOicJ)ZwdIeCGhk|NZdDBPR;K2&@dx-j@izLm@W?JsZ)R;ZGn{a@vOk<tX5({4%
zAf@z-GiZFrj`7*QwIOP^-vinDVe4^P9CCDg;xcJuHdYMbCUKwgq`|3s#C%dLY>u;9
z{1%^Pb+$e-wr5B3RK%vGXv6XS-1iOX4OXv>`~1~)j92|Xu{I=cjkme6JIrl6FUnwJ
z-F&ja(QIA0Qios3<25L`u0Hf7M;AUoaHkuZ^$Xrm{$_bZE(Tjk6+;_XYIw~;ZZXhL
ze+h|@Q&)JO?6Nh>j+<_tncg-Nw=*^A6O?8Sp6+E7AjB^>@+%GrU*w~8s9)TEh2~Rb
zymq+VdmuL5^Xbe>zxKpYSiKpAiWdZa(Vrh|+4jNH4(R6Jjzv4!tkOeGP3#_X^C5=b
z`eG!q-gxpjKK&NL%IOn5j{vI%CAqUdQjT>^-Hr{acnvzi!%?j=+t~|p(IJ_kv~xw1
zq+}6u#o1X!zQ|c`{0O06m>hs<dQEu*-DK3-LjSBNnPlD^FOAqxHVn<BofZfUv3_c9
zu1Jv`!}2{=I}OSFB}vWKc&L%E&7I|QDsgzxorM0*ozA6p)?aQLacQs<W05dMN2a#(
zGnIV((uSSV^=5z|wvc3dk_JuAIERSwtb36B?_L1Xg10;SLlGCh!{L1fj=q0@Cc3o!
zC(G@<D!^iNSXf*nDOz6M?dpE5Uu$`(qG?V-QZnim%A|Yl@0rZTxjR-=_IODZV1=$6
z8y;Y0lXoe@TTv*qH$^N}deC=nvh>jthZ#z{nUX+Fx$`fW#<W(zM%YF~gXIR)-6cKC
zTFqlq(3N?`7kh^c?bCPUjN4oM9LQ@}cljgA_*CEw56X)lmNHRUgNt1=B;K-T?B~aL
zfoHSMVx=p+==wD{^)0Ok_gU{)n)V1-x!J%eD}cw~LDXX}u=<|J5g7_%<=0%8s-zON
ztZ!o7RdWjPD%wgoL#upx>g(jN5C>KWrI4(5#MBhi{(JWwH1ar(auybyR)6xyZ9;A4
z+*I;_QFv}(7w2L+I|G;rpx7w`Y>1tMgJu6j6OZuuwYq}|)%>F~U58p*-XU4S*Ii1@
z_oG&DkL@0~Dq|zwl9sD9(LLL*YmycD!>2to;bcPfwAQ-WdUAJuSWK_RgN;(%^Romt
ze(!IOzz1r^_84yNNLN!<l6t)Hw=C=Yx5ZPo<98Yf3Qy}#%C=q(JD%ZYec6spsWk~W
zi#9n)dce+0!K`x;ce?2btLDajIK?FHvV{!y**!xi9W*Sb;I`7dKc%r%%X7>V>)Dx0
zzp}D!4gDIBKuEE(M+242)j|EdJ5EVclE_dqKJJqBg{!^SSQ~o1FpV$#gANjQ<`y?+
z<Cn_A9UD`FJM9)StQ~jGuOSA0nn}%goXLR0f4c&$!}q#^L4<$LD5sF9*&Z-pfA?2r
z7WNc^fUP7-EUFTbyS4~8))jBugQ2W?m3q(ly0g(>Cb@0j$G@!^H07|=H55W}uwVfz
zpO#ejZvaJZ_GmeNIeW4WSpP^<`Qf)0E?iLa!Wl`H*(!UNT24W5MkJdP_18WQmkDd6
zbo{UgU1@1;8@w->H0el>Y+hvjGu!8*`zXuVOhHkBBrt&sOgED!x%*Al&~FH7D0S-D
z)YN1>TF2S!P(^Bll5p*>^@<p0`V)#!&vZ+MwzP>Xu1sPsn-XTyL+khQ5yBSwvLc*`
za5@3=qYlEO)1c%J6ZsOlhimO)c$WS3^=PZ^ML)PkHu$Wx@EYmcGCQU2(GY-{!SkV}
zw+X%yYfDIH5aALRzkEBe%5pc&OfRWyxcT%DOI^t5dx_nFNl7hQuf}K~)R~6mAPG@t
z9|m+>FpF1I7BXq*@lTQHw6xEy)Gd`JacMb8ah?gSWWMQ`kxSLNgeO3UEhM#Khp_^e
z9&MCrl6;u_$v%JUKo3Ytnnmejp(FRjtDXmI8*XUHM~}Wg5UAHc7smJd&HW<@-Tpi@
zKNrcJMqEn8ZZhq!VsM5v!?i=q?@{c_<m02e))Ty=w)+|W*P>y&t(5>0&A_p~SZyQm
z<WO1qwEuNl<D^4<{5wTQ`61UCZ~T?8XE=X+U7fcqev^lq#z1hl7;ioPI86s=nJH}a
zfLrP@Hr}H^?B2bU5E|AW`laI3)JfQ-Xv$mWq~@dfn6BZ%=HS=*bw_j{0Ew_gFh4mv
zxwXGN6dlPP92FG>fEDqbArS)|-^3`)R*U2V0t2aM>mINdvVJbyV3JO__y+)ib@p_m
z>wBl5JG+TjZH`UuVh{LU1G^>y9v!4E*O_b?O+a$>Z6rMVcHy}ygrN6K)b4r4>W79j
znc$utUeCkTw$@ZBq4l;%D<d4US^EViafw8Km21ycWqSHTX{%;=N9mY<Smfy>d@W~x
z*fkxV(Ru=pxA0N9b|{FOM96gC4STlDQ}>0xd(X=q10Y2t-PYDe8Vci0whtt&3C1oE
zmoJV3pVb*hz3S=i+(CwK%``uYvmj`=)%c9pz-W@P2I^6<##j^YH49_9nPq#kJW=}{
zKB%)9#dVGbB~{>i+%Na3h1w|(2~W81uo$(Oi{4^Hh5b6iUvS5T8~dE>omHAdCPvCX
z|8PG~hZkH{SeFY&l^_?A7j^BPBa3#NfJZ9Zpfpfc<V5mV!~Dm~WAx8L$QW}^noLAr
z<53(*X(AYu83j%)#Yg^+ov0b<p2ox8u3k1Co@DY3F&aA5<&S6h=#I|f!E~k9qIO3p
z+w+{9ATXqO()R89<jaU{86d2}j<+-iKPg(+ptg<hQ}AhMi1AP`1!GJ9JAY{eh6Tby
z^5DU54o>EKd?Kl>q2R&MCIbDz28#W037cGx!E>mNXuR=gpa%1#pxx0w0sltq>7yl=
zJtM+@<=*(nUHnE{TlVaTU6$ZNOGe9Q`FEiez!@tsOFcRsQ2sDlwq}j0hb>-hNH`WG
zI81z$_~(0@dJ@%il_2o!9tt{|{z;tF8a+rA_f47gGg^UdZ7gn((sq@cb}o$tMQRyu
z2_7dux*K|a2dJ@&MIPr7yfXAow`uMyPpfC};@xwHwz@k-g8~9zNXJK@uY;$ipWl%&
zBb_lmAzQvVXmdvUG3lLuWRUgev;}WtJp`ohrN{)rc!5?wwCY8fl-RUlZZf$r^Y{^B
z$Fh)LY-us&hE7f&Lfn4muDfl9=6%J!jNh874o1VhzU}X4++=YPshozg1F~8epNC61
z9x{-VPQggbwv+y#;XcT66gfcs9eg#dSjw+g6r&XC`=B^&b+tpN;p&I}A1t-dEq=jz
zVe2(zk`IHwmaH18zA;wrtZ|o))xmhcnk_9)hjO%py$&~VJsG(V9RYmScqzJg6TJ*Z
z>@sO<TcZj^aB@y!#l?aaHqlh+mLMrJ{Pt_QM?L>m`fuNQPig7%3oM><zEI3~H=;XU
zXmO~|!((u<=WHc!s1Uz}GFBK8mOb6~18Vh>=~hys{;ol1=%<ph4Bm|m4=uVCzVm~W
zNt)a14SF)Jk2-lwpR231ExURe2M1K686mU&H}86HSx3mj4l!@CC*$X+a22@C85RE^
za+#s%s6#L6%D&8R`ud#8o}C@y@~#i$pYB3ASf!tvzbQj`c|o^-85dWyiiC1kSPSW#
zpYu#3R$H^kH>$P@i#bPO>&_3=cNKN-02!D7<e-$>zrDMw4m)qu>|c`JyZu!tS<SWn
z=w1UbkKs%bFPekMualBrottrXfBfNPV`=_{l9CctweF4%4oS(}m}=D<H(aiL3w}LB
zRGmW8Hl@z1rZ?1+gxk#b(BDwAibJlJJt^z38+(082dC$FR^yG(FV~5Bie6|%^bn)E
z5TTuyC}K<TI?X3G5nlH?OO%w&Mzm9(%55}AJ^8Nmsb|#dS1)e|(jph>A?*agB0sq(
z3Kr?D@2OtUEso`W`JnK-Yt@ggja4kqzCz0-V~tGo;~kk68_25OrMe@($mtgBdot57
z2IuDHpWDWwT)pHkEMlso`z+OXUf1?2m3rV(C;Y@b-D}6Ipj)tV=k_>0WAso`a&z1_
zM(g2UD!;eB*sjZl1O3IC2TWLsxO2*={e-7FX1Y=?S**}%{*?8?3s-qbx)B(QO)bjA
zE25}~%Gk^7Mc|bi+*jy~^U=%IG<#-dX26;>686q-PLgeg)#9`)drt>#PXO*-oorrp
zwT`Ic#M_mYjTPiHeEJ(>eIo(hlhRt{#o9XWTH=M0jf$oe@@_HJ`~e))n0ez$yYXJW
z3=Ery2)UBhhY8-efegnVnwT^WZdTciqBeyu6Y`(0XjzpzPSPeL+YB%b?IASuRfhbc
zgxWxhMu1CtxFzkg)ZE<URGpHKw-Om2*9W}H$srsA?(xOj^>>4>D231)0*Sg~*W?yk
zNDcYHqbkk~8$26(d^B%|sy8@!kKXYQ&A_|D3k(vlNZy7M*DTZt@G<D6UBx%f^^tv{
zbf!q;JEV!<-ck$c=1jGJcTH+_lfAWqVzblO*6Bg}i;_}JISnu1HW&_P@`Tczw(Ob2
zM<z!%$Eh<OpHJ%F_4#_@9AEj37@D3{&dxcxJnjsR@|aKLcB)DN(^dE~D>7i+mnGfn
z132Z*I&x#XJNvp9`~P05J72&aot$`*3z9i0Ve$Z~r9Qm($D&dyX+(}LD23&&gTQlq
z*Nj`-^?qPL98$l`lztX@+_~Y{85N~@t-IMy^wRglHD3iPTG}q4YRtDL4tVwV$iOL`
zpL_8|bE&^W71q1fo>C*0ahv0PQm^H>I5}e#gI{?#bb;s4G|sW`TbvczNk>QG{I&UD
zYy4)ddvX#kOLrk?e$&67GYx09-hbx()Y8^UMa|H&H>(>N7pDPI6|>$#@fgcm|LL$W
zHSi!(fk7pQfItL*+vFBvCyVcHt+1EUuin#~C{x+#Vh1@)<3VzjVg20Py}7eRkL}j@
zs&o^-n^!OK$A<>c@_DR;w98<PU`m<|NixAGlVbs##I)JatS_$K`(!tGO48*nNdfib
z-uAv`;$91fvFG-K&x(qx9$N8_%bQmhA;ud#eS0);&$x)JhR##itPn8wAr7~jmmUc0
z95qv#iYCfz)SVT26-{mtDPCtR&R64nQ&R><jWpnj!M%i7<5*7X%-Q;6&sX)^aehm?
zR!5kj2<$?s=EZIAz+f(!zjQ*fhe-%&`#Rv(RX85UPok@pV@Mxe+nLLVwjQq9=O){R
zO1JV5eB#h)9z8;Q(&;P$jRy`Praz3&u9j`|M*_D3av)-bdHhC)D1Lc<m3EiF-1$bm
z;yna4Mp;Q|5HVX#$-~Gpzb$(>6cM^MHgI-%y--Sdv1k%@oca6D8xjVQuM6W3A_mee
zgb>U4gAF9e863|C2a;S)KmssOaR#x&Z3=g;Xs!r!E8WaOqLuNXTJ2^@q4epF&quGP
zIknq0f%HR!c6G5D<q%c7)IZ9sjelQjHnd>-8a14rQ_&d>f2!SXh!valfd5of_BvN?
zYj5A(VPEXsA_1z7Nhv<OAU(XhxAz^U!N=Uv;uih*ciP=u&g}%G(LUq5gN>mwB{FcR
zb1eSe=);1i&qVJ1dc^u<NH~g;nM1N>z?w!^6YY)CO<NXG&-ka2BznAMfPHOBdf_cG
zIHI1cz`eD4)<$}WnGS7iWaTs9^gKK>WR{82(DP`~M=i4KiG<|$+)S!`{%6))a;whD
z){KxA|JY@iZ^{#W_Z4Nf)9I>KQd>K4$E1-A^_kh3E~}>0<P4%5HCjE^7yvAOW^w+u
z`ZED}{BsI@ZkM|uor0iI4lnV-i`KXcB;GfsvoJR=amQRx<C3GMej6ixu6xMPq)wp!
z%j_O@PekOKnX+bonSQhjr!if8YOK1;i-+V4!|c-1`7QXQtYV*b{&aSBnd&=9S<b8d
z@6t0EJ%jv^oyAeEbN}d%j|+cz2?tO*hTk>sgfk;8@!_}mx5u&h*zK7L@@V;=w(TvY
zy*y8u#SGGTzeoz)?@(x`*y@usIeI{+o0~iMaG(}blbhQj93qnqO~IV>R(M09w76*)
zqb?;wQ-@ZiN6`4GMdv->K=L;n|IXtO77pw0<rH|_t6hIW-X#oAuiAL~GRQ|jlaW0m
zU6q3uuI?WcDf~gtB_L_R4kqdgvXzQK-*R@IT*$>pfBAZcfk6S?%iJaG2r?Y^*csD&
z+Jvs(ph$PyS=+D%0HW_V0;q>HkN`XC;)fxfi?VF%#Qbay`{&P}t!L6XO}rnc79@)e
zJS-;1A8x%H*_*94+Z0DQJWt<D^EuU`;I0kTBd<T-6p;iu-7iT`K|Nyqdx)lN_iWy|
zX>*OpY3YgMLXzn6?gN4Tg7!Nj(`7G)9RG+2Yv$C|re7U-g2+1=be#JkX>dpXO;{dc
zTd_OfsI>1s=tz6+LK|@3zdF=61C}=$Fd|3LatO%b;jof_!wF1v`m3IXoyRf%O(fG@
z2A$XeROy3fXSlb6LlKY6J3dllEG#T{y9IcFC2u(MjJ4f|3s@n4D&n6~(=4wk=@*=P
zG24#jvx|tN{`o`le)0WX@wtbe6+h?IT7!n#?;t}5a@A|J0)_y#!~4~HPaR8I8ZPNh
zJf^P&)mJ&y9MF4oL?&uK^-2qw|G4q2Cdz&0_-Io|rw9%AOI3-^+Cjq!FJHd=Q)uLM
zY`((la2IxskgxA|c;`CXI@7-?@He5+pA=pVvVrOPzE>$W4W`v|9~)HISpjXWU4zV2
z^<6}n=m1b|@}3hL21MhoG~D-)g&5lFeRu?Xmpge#olJXb1;ZndF(#(lHLl*cM#+Ue
zqM=!xM8u=;I(f05PcI^@ld>X{ZCmG^;%a(hVw&y7OU}aR>NK*WWxNif(|pT@arQ9S
z7}@5>+PnHMUgXxwh$dUr@CigPOF<)}&1AB-#`gA#CYebxxBJE?JYIpQAz93klSgPH
z44Yc!F#YWG?5z6T(#zXQyJ``(69Kk}`l}#goHmW`Di?TpZuUA3YGq|n>U+io#Y_Ze
z?C9NbufcKz<ak7tf|w)yMe5DlQPHnGP7*_0H=xcTuxH;GR8joQiNeS7ePzSL!VWAV
zaUl`YnvK5oGD8upeWp|O5heDM8YJG{VN-6Xf}4!89k!{nemI&T+4Ct#<o_*Gw@r@)
z^XMzM0M?lV#21X`J`r@7VxDrwpBX~+b>H}RO=0K&RwGGs5aq&*7v??++9vmC9HJ%b
z(XSrn=fvxO4JQC$Buv+R)091qLMB(jCI%Y)9NXl?X-!PvLoDvu-AcZ`vQp5^EHh=y
z#c<TkZRJU5K}h%>|7G2{!<d7yn9ONtt-t$hV%zDllBQ8pb92H@zaD>m*#>>zPzPh7
z+*Sh_TW{)r*v$eQAs)x=+*eP~wfXVV7})MV)VDi$5VGB2iLckDs%bFwVyS-T<Ex2i
zJjQon+C6({<LkEf&iqCl?mQ1@fe2Dc+1_&>72^#9APOr!a_|efxStqpB~9rS0llt6
z`&tjLb+VoWiP&!bjV^bH?|XEw%<@F<kfxjhf~R(IW21S0%@Lx6aIi4e84^zOUEy?P
zw)EYjFzG${B86c<g7hU2s_s6I6wkw|n*ij-c=-%xRdj-J(<|8KCb5hT0YNR*oBRa`
zEPQ-CTwQ<iY+GtbuVhJ=OBO08cPbvbHZ;p6DjJjx_e{KWjUsMMnw0Hf9H<pvXUh#J
zv{p;l;Q+2Z@LaE8<I^fswO||^!stM{v|kW3MN6y5yM<rZz&|BQ(HFnR$M;#meU#q6
z=OM1mXV5m3t4)^X<@>m%P{{9`8galZ=ldBa=lu=OT9r)8mki5FMp_#C*xv{VDfkj<
zON5!f{HMX^T331M>gs)k&;C#Tb!`7pHBF3{aap>bNUtv(8o|z$bt^KGyn46oT^O^M
zly5_Wm9z%2aM04e&HcyDvUig;QP}#1;?;<SLaBD_bPBw#h9VZ1kh(=Yd~549Uc;)e
z^E0m@goz_>97&RBs6`hfn&fB!>)7p@7C?1JwT6w9Eg*-QA~>3TO&N9&YjwPV@H<-1
z!z9R_LE6IW&+0}e%Wb(4vPbf9Pe7r;WoPak$stDb9(VhTP+IlzqIna9MMgS934o<S
zSOYrH&<y3YK;Lo-x0~<b>cYdrFV8)HXL7#hkX=>6Z_wx~0}R1lb6p@Pr9jp!j8=z>
zjY9Z!vxg9Hyn?jE@uOrh`*%ZG1*g01vvs%`*M>7FKgMr|VSfJI@=Sawb8<<U7r^=Y
zkn}8=V#er~8kZkXpD(2K#iwD^3U7G-qufZfwP6Pb55VbVTPQ%zkF8`NmW1c%-qckv
zaYsMCGCpec2Gwoz2Z9AEYG&srwtOVkzt>23{~KEiVmiqtqt{WP_uZsEeVS>m$ql^l
zwQvJnmb%bYlb@SgCv%`=*_YN{0*^1X8+Uo5ooQ4%Iz{+14a$BgP{yRJpZ9No=B^yA
z+us<J1Wip%ZtRgI2x9$u63^JdeRNElIq=~cQvQ2H$|TP}jMTLp-fL<eE4M|U%7#+8
z*`Bt7;wC6v#y&c^tMc5*<oe0c-Ne(Q%i9fJ7X=#kX@xB7d`8nvgDJCPW$SmEDymYY
zaQ#2t$&e^0OmEb?Po>^u7{;Vbnw+j(`53-^aN=F@I?aOpUejHvLugxA^|v#8)REbU
zjU_UvImXJwVuc$MQ=_H>r9hF>w}K4LU9ny%w#mNPh=B~{y=KZ#agRsKDTm8;?OD8A
z6c3~c*P>s23ES5wn<=*y0N#s~trTD-O<**s6yAi6josa@GZW_4FyHConW3xx`B$Dv
z#<RzEBF?Wewk8cIGS6qI3+~hhKNTO8si^JPDFgIoe(yo2sQN#>AOy5n=@H<0@7`-G
zWnl#Ej@z1ge8TbyNaYO(%d?1vPqOu1Q7PVI8{)U=n9RY1_%IOiJ~$v%cW~gRsP#`s
zSjEo74+7>_UwnT-ukl?pssxBZig={_`{V!@``6dC1pi~Q>;anj({_!mBf#$oVvawp
zJiB#}<0Tf?RA~uapMEKNi=nw!`Uus-Zkv-{AH|IQ;67fIMUI#Y#vZ$TVb9pb!s;kK
z78SiLtatdw7FB4~8D-LeEZ@V;+7cxa<YY1@m*d}bG{jg*{rt%$zDWUele!L6BQf57
zx`q=5gQ+DSN&qPbVQPi_WM@~b-(Z&d#az!5_yK?(iY+U1WvL<v5+ks+HDzMxW)jC|
z)#R`F{_*ipt!Cc~2}=uW_s}@x>R>qy8Jf`3C3nsxCkH3ya@SfbcMlGTh+a~`rS}5F
zO+efPm}&WCJ-#6RnbvI<FFR?1JKo3p=&zcj>jy<UyPK7>vR|1e-FE@xUdH_!1qS8j
zdyABNM@wkce6!)4Tc^h;xhd!NOCP2F9%shG_tv{yP^lTtV_S8ngKtb9k^n~E-Hd5}
z=*p2=;(*?Bper@+L`WaEkflkIS?KF%YXdwlof+>%pCAh6Z+}hyEW6xdWo>Vc2$M3K
z^u(=&OwXI1w3|GF4ML1D<u)S#=#!O0R<>{o|BBYa9=D{jc#H{k+}n>9@XS(r8nAnk
z+(&ck7PQTNb(OP5k(8|$o(^AYtfIR3@&EX2@v@}~G1^c|u1PWbg(y{nIWysuA<4nP
z@bugp2ODsiM1bX)I%UY{>@0ZqW~QS6D3{cGQJOwJj{M%gP=-xKfPHjCngs+0d)Ax8
zSwLL!Ihe(t>p(>Tzh_$yaanoizD$|kp6mZ<PLZ9ph(T*+JR?_Kx}MVA5Tm3&nVRMs
z;IGmNtRno`xAd+u$KSu{nZ%vKLirm{|F7;kWP%bnt>eVzoU6oNzQ-__-P_WjL+1CS
zB?-B;66tZ1l>({xcGp5uB~#sufquJRI{qK`<<(KL+TF0LE+trEn*v2gXKy>xUA<`}
zRr)9>sel8|Bqb$VYzdiKcL>T^-h^^XRKqR@r%E6|rQa8P8PNN}^9PLI6RkPrW{s!S
zZ<XtLdUAmp?e~{NH~hnYFJXK4?&ugF9pk#WDMaQ>k)rV}CWdA>BJ8P1hs8IlJL(PE
zz<fUZmVRG2Bm$6(x1_{wWSU8fjFXf3%A540mN)LN19D>jBXqwNnwv>U$t^GquEOe9
z=V<P5i;2O9hi@{7*?;}}Pi96y&dvXPt7|bbIU0^JMHLROJABRI+=K$Oc}|+!OlnX4
zuY%>-Z2118>Lo$pl{Um)+?ThuXz~jcT4PAK!d_Kg`<t+)T1*#G;mtiF$u9ZlE)13f
zI#7wcefj*ldXgA=?yuSABs_fh@*Q-OgL@GSE5C<jF0-4Y^)Ei1j&MZ=%18YSyic<>
z$NiN4u8+5q1k=d$O*WgllgP-sH?JOUO{t_I<rO~T%c(3Plau=@>^pOEBU{2#cZ5<6
zES$2NLlB%lJ{xd9-Qsu$E-@t)HY<IbS4*!jd}AI2xw$@4U|xrQEtGX_O@CyX!}$|L
zQsi)3-D<Jz(oymyl}*>}PZvKTE!iLS8-C)uoqia_O{Ned@A3T6wO50=#AO&h$^R|e
z7z|uGyEaxY6+7HaFKl!BnO@Zu?bvg46VkywDlJXrMHlH4&O#-!dkn(j2&TZP6gxu=
z?sshRcTg|cYy^pv@$Wd9-<<OLIF-V5kuPrDA)KoG^T4X29d>0n;w#7Tp9|1U>9E{~
z0Qr;Z?rH=au5}WN60D)1$PPV~mXa8UEiJ8p#(^AGdZjnf2{-6j4q67x64cKx8(if1
z(W)>^<TI_SKiTB<E?#=BslxV%?PpCg`_qE=6xV+#y=UCKa>blUP6KLrbxj%KbX(lH
zI%Q;9S}X9j(qGd@3yyouOm`Lh6CNovHN719O3EM-A8KZ8-O?_a`~84ai;mcXL|<+<
z8sL^(Ni&{vYvoBbJLgj+>;X1I{>^Rj^mL+J#7TOuQmsll3+~a=q~|Xk7gAXai|1Z=
z$M%<LtTekO`5p)aQb5;+in<2ZPZ%$7vHoSRn?&LSLkku<k-c1eoSFZ*FwE7+icpw(
z`3OHy7UC*Toh}XdI-N=3GhdklOZ(q?uTE*-bg)6N=1q#taeoo1V18yAt;~s1s^xp&
zDbwZQbbT5IWf9Z9@GU(^NnWi4ke%K+r&rX<uV1eX{wxps$k8G}?B|8_7ptqT2VO0;
zAF|Y7lF^w)-cq>ke8U};VZ_1BIndw+VHl0b+2$hEVt-ImxG^$)oz3Q+5$f0-&vMAc
zNi+S6R7+6st2~b}3CZ0cm8bG=?ugdGL6{8D{SNOtPn9ZOS?bSJv?T?@-`z_&!6RML
zTXG3aam-$VCntkd)~}oHEhz(|k?X(W;(XN4_6k(-<}jM^;UR+u&%a>V!CvmLHU9X>
zCw1tu>LmH;)2F9TpHVZggd^Z4Zer@-X6ga6fg5itE)(u|qh2txW|({)l^7`QN92ge
z$0aUf@iA&ICbU4}&)3)YC|Mm;)}Hv50m`KV472X}KbEEQE|P-Dr`Ch_qpA|_|IYa5
zX)DlcU%KW7g~P4PBV%LzMFd!bn?HFEfe$T!raIYY?6j&RfV~H&pMU8hKGpkgt5^D)
zQj1mE|2BjD{#OwZU&Oos34?!w_^1EhznM;JfbDx5cXnbBSO{4wG0`ir(+@0s9pkV&
z2-iO}XiaMzw416+Y*qEk`s0Auw-5QMm4<m|kvf}u;(dcHH@>)r@t=SkX;x&y-^0|}
zRfq-Rh5@>k)i<DfIo$*<d#9pzJt`%tY2twK!)yh)b8+#=bPDy1Cr*a<)2ID4ZD%w>
z*u?jMTs4kw5!FhzOGb$pwm161zuzZs-G!CO&&L{Q!!_BS9uU>g7fD;tpRzX`gVrmB
z+PjG<y<tCQx(*)L1#R2^Ns8Q$1;yBOinm1`g31vr8IbI7;OLoyt*EGKS`B|=7i0)M
z=UYOfu?L$HEuz*<pl!sf0QBql8Ww$b+YtL<%};GmX*uSGT0n0Yy!WcbZCWhnYHyC$
zMvQR@x~_TOVxFwTC0QMJ#cs-dZz&LqSeW~1zS5K0-D)HW0S-#ZCTdoCYqG?Rhe!9U
z^XJm-x55$Gj_{eMO3&iFk^wHZ<#CrB$&u{=!`|K=y~KO*^Yim%8?h%gZy8D(;oYAu
zsU%$LX%Vw+>;LOddZQ#}&3m<`_p6*vu{GAx^@nP<hT&9sw>4TowU(AoAA|;m(+C0E
z(L#$6xS#Vqp=hZ6#3R=ZQv}vqvXRf^Z&JCfiloPvRe-%+yY$}kU~?YkH;!nGOo@86
zF7X^t1P~^~dMbejvAUM%zVGMo9<@DvTH$>qQD1+5b0#&k*0s&_QIYrZ3mrmf-07+J
zM7e$U+^0(~N1||LT_psIv!0k`h?6Y(XC2%~eF!vW(fJh^Be(0ltVc>XQzc!0Xe)HT
z>eGic1fvIi?-S6#39cpTPG+HlGs=YX&g}j5aeqQs-38D?=+`H=F$!tkd1p+=A!@+l
zsOA&g;N$6ah3xps@s!v+n@-_L^p_o{l9JM6>-l>P$zl<dSq<uEo(Iy{b4(rrX0|Q`
zJlb`or$wf_@AoO)o`v7-HKUYUs=k}j=p+dEi&z1U(D1!zgt8v{aUtHs^8v)~G}3Rh
z0E7X?utoLL(^IEv!yc2eF9e?h5x6@1nd_T3)fEzGJj`yajP&EIZoc_)t{lA!@=2f4
zd;Q6JhvutoVYTp!wW(uV>L5FRD(-i|#1GHM+8`7Q-s$y_-GoYMN(%+H$`NipF?~WJ
zBzqRd<LTNy?;4ZPn7?&0x41U81wA*cPhv$2{KLx|0~!T<QyM?Q<jz|_Ly`Q453AOb
z`#o5JM}7nM!0mmw&5WG29o<2uNDv99YjPye(9rOUNw$aa^(-68#$qa=wtiF)*A6E(
zcB=XAM>e74N?b<ZgxQ(Yc9=HZ39BC^<kOQUN?J7^zFtp~%t2L0tJ+j8MX8ciPdzRO
zu6|`*ZM)KdsNz_1DOVceMZM|i3awPaLdl=YKbiWbPNi?2B+)4MJ<?hBzR>eVepz@#
za76Gd#=8;i-Rmu9!h&{dKznnmtE*S<CD{&Ts>Xvfz@y3;U*$tqN#Rr}f~v3UhCN8>
zKo}Sqv85(cvD^f7p9J1(cB}tTU?T<A2rCk1-4~BqDhMQljA=FRp|jJv80x*O4n}nQ
z6e$T0!P4U%{XeF}7w~H!M(n;jftB4{J(`q~`xN`~N`6@b^yt=zD174g@}WgDA{XF|
z=bCAX7u(p`*&S5XoCMj-)WHhU<jmT7atj-Np7g44S58&p=o<7!M#SED`S^Y~*gx9U
z*47>Y4Jq2GKId1ojeHc{y4GfGVVh=+cq47y*_X_F2hDlbL)p6EI><`T?{K;0Vd82v
z(3Xz4b{6-+2gDDRBf}MQyAd@tC)n4T+K9$;PjI>0aAmml@wg0b+627fGps7INJWL8
z$_J0aW-n2`aXTO%v3H*uu&JFa4eQ%>f1=$ueK<lU&@kpQ>qj`J{P$*Nl;{M`T49qT
zsBbyM{W&tbdy5b^l$&eQQ{_D3;Dvcj+>IjT>8s$j@*}qi-*`>k#q$$a@RcH7hm0d@
zR;fnBE3DGIjFV^27A%bYhWvDhUv6!cGV)lHmRIj(s_VpB!KjeidYKJ2s36ZLXd7i&
zD_cqUG!kdvXizU}3t}rwU69mfje#55$X%C=mN$om`Ao08xv*B7xKxEAv~as_W7}qX
z3O0fjsMFgj!>189(2bp}J=;nYQcb?5TAJSGj8BzA5ckm?WTGu1CPt(x0N_M~OKb=H
zdq%A?xC-eC8BDW#W5X7`pVta^(W{zi5waaN=gvF2D_I7<3Da`*w*0b~DGN#R<@yvz
z+ZvHaI8@^Kja-^4Bh*oaMi7EOrNwBzz9RzS5w#TH$eJuNdrlk2BICJqTH33IFqXlF
zdTpyiAdtLeigD*)CZWw$J3$X89RvGv9Xb4HQAP>Q>QF7pb$d$Un%}XiN|Y71hT(gu
z$;MuHgHa1%5s~HU2d@Y7torf?@Trc8<IoMwr7_2w-OBhwpT2{hR51a$<F&1|(v_s@
zohis*EiRq?EZM$9MMG+>g(AXMC7a35Q1tkyO(n{>-g9M`Mzcfm>|`13J{vvmST|tF
zj9o$Yk&Den6&lqn?Z4KrN#r)Fg(4-aQqr`&4!Vf{X=`iSUn{j_Sl_@-#XLw9hPiY<
zPD_5wNyDw)1)a2u9?>x>AK43LcJ`2M#K^8ql-oj&mZ0PBos6QE`V}d9(YR^u>00;h
z_E95l_>2XbqcecCj~{g?(4At9xFZrCNJeM55ftQoz;i7#D~n5IFEYZL<JvZ^m7^0J
zZ@(pP_ul^z#b~{cu}0d<O{xOjd~)Y1vJ;h#{Nnih;n7ik)IBepu}m^*q`U^98qYue
zerHZtObjGDO}g^OONFfWmTr!j`sWW}OoXg@Q{o6K$mDoFu~})v*_NX{^yA?Kq%X4&
z7d`1Pxqb*plvz<BDo}s=BFfbxRn?~Nv5l>5>A;UqiK0H9;gTx}(mVY*Jt@bYQA>Fy
z68D3d_Lp&|GO}kqLWx3F8qjH2wkSHm&t=kn2-JWnzS*i6G;U1o=^%#41S;r<me5>i
zq}XiFivPx7H3Y3Amse1L<YJu_C!^!<2^FYM;TX4#n2zQ>nIW{&5(rj@V+F{)$_bZl
zol2CkZ2^ZhX;LdKTtUd~q-=TO9G5J#RerC1H}leAUx#gBmrY(_(iJjV^F7Gx$0v<`
z@f!r}3P)%mv)*7y9c8@L=~g2APgl1HSy7Z1WP9rLr~;m4)t3f4C`Y*vE>Tu6&3nrs
zwU4iR&z7V3XBwAR{ITuaX&uAXL$53b!jZo^qf4hXR0;e??yS=+Rr4P+WuYVP%$bG1
zf2-Kr+viqBEb!0B+hQc+hi5Ddop+Tauyt5$u$*if;TTKcQW0elzF)gt_nKk~6I#$K
z=vUb)HKmHb{C+pwRk<ye1C&whuxn~j`zC$^ZnyoCB}LrE%SQTWF{Ta&jszXU^Q&ig
zG|tak8c}!hLUgs!7dm78ytiSlDa>;TC9zk8;8uAiv-ezQZAL~BI`$KZMXi@w=1qo1
z{6Lg+Jye~}`n8DI!Xpz8-$pKeu(9cKWI01j9hSnEL*!(}sjp>{9YtGsvGVsFO$q_c
zAFub3@{<6o#}kU9g?{h(kA#lac$3Jjit()Fn9sPq30nlGwbxU~$v%B+d*f+Wdd4r?
z{q0l@kx<#HDZ6O(8SHhu=SE?z+T?eR@<7Kn{lRO+y@&jZ89w-xnt5Hz^)l;YWJbga
zrJwh`h%?aTzK%yNS7s=qgT)L@PM^V-Qkj<rHH@Nq;Bt-2UmTPx3c71$>GfQyRR-O+
zGBKMXqHzMoKIdDS?6h!b`3u}OeaRvP%xSn8=Fk;0JUqNK9ui%GG4{#?={)<i*#XUR
z$&-nO*_2}|hIXKlWAUuskCN?cti#XRitIoo_NraK9HQayEyc;iPd=<gu?37siEQb{
z`@C@$z884}ib;5?S@QCuXc~O%fN&#NqHLdq^<0TJObYFl%3c;smE@cFWH2^1wm$s%
zfvSX&71&{-l%p{?j{1=^O;8{AN%cK@3%zaPxg5J$GW1<ksz*~!NLI)Mo(R+vADXto
ztUkiWt{OF-W&!FdLVaPZ@K1~m3FRmIo#%?dmIN@P#qa!-$zz9&UI=Q)rIC~(e@V=+
ztA=*#rR;7t_vGm&vKk^}f3hD3IhQK27qaZ_0bS)2-ZeW@F=zumhzhHhmztl)X^1yA
zhuz=|B)`Mxr9@Rqz|gk0+q1S2GJA75!Pp)4Mu+jA)3$xnp_5ZutSz?qKIw3=nS^K}
z#V(!T`Y0Wb<nwY)X0y*<dH4Q5#Hz$#;lmP&;{3&^iDSL=(N6R6mftsrYCr$;4Q`dT
z2zbAX$?Mmzw@+KARgE?a<m&53w$NE>ojiz!q#!?pCS2AwOBazg4*2IWD5*+|SgPf<
zYrqBBgPEWn{MGM|TukJOe}xy8{{CI9*qtEh_BQ-<MUWminguK<plxn472T(@v86i`
z!jBp_E-&jEcka_;n8;^<>B=9db>~t`8CzN1vUfktA5kh{p023fu5BFIqBHguY-E;^
z1iRDhOS30XwEVenY0wHOf<<M+9jedY7iYJHb#98ybc9bj&aUt00x6KpLo|32#qHVI
zdgQ*5*VZXs$DmyQaPLUDCz}&3|H>DsGc0b2OiSfhYj}av>9YqCSKoMQ5mf=-;lvPR
zy(<sH8fCCFda#fyM^r@rt-CTI1@bo#hDC}+a~RxYN#Qu2kwC8y?G=31M>AY@Wvp(0
zue<g2hZ=WG9FhB!;*HXjmF423Ff}~Elz2;^s3H6Bg3G11mlh)chPQgS-0|=f?$0II
zN#ZVS?x&W-QGas@=;HB48_XX4sVtV+m@+*(SBa|Kt`>8j_A;4yTUBJ#J@%phkDa*b
zlkEod%+zTHtJT6U6_{mH0I_k2{-A@MUf8J_D5*1!&P6}Z$6lNG>J*Q4YrYN4Xn{cx
zGt46?IT>5t9MN-$@>`clTNo1O=j8Kj#>p&M^YR29zd8K-b&v_fzOcdJDGOmJx*FYp
z$Br~dJlEEiz}9AG{sIz94_&$y+UDAF>v#m=7j4C*)&bl*xLJgpV5*dRZ={J_*$9Ma
zmGFhN=1rwELg(XFrMOq;2@`v7wXoLK*dO~z1v$<{gE!>9RW4+?S!L)m{UwZ9jNg6M
z-GoBQQ;$o!c9jvdL#0ivH?3Ltur^GVgg4fM<B*UbCzUm4Sg-7w@!F2`@;iRQ&*-bI
zA-BA=dA?>OWI0uJx|Cgs4ukZnM-hosSiP{fiCgxc;5F+Hx`a)Xfp+iMBDy0S>iIg;
z+2c@#&ajH9h15n8gUazNdgp_k6wkIqiRFEvx7)1!jebEUp3cdRUylDNvr1)j6uvLz
zW794zc~YF>J32o8u6Ap%+&$jH_*u3_s>?vN75Wz@Elm}{MEsfA8$*gt3!~v~ZTM|r
zzxh%)^79qP<tU!Qo{((5lS}5)HE!K^=uBd6p=Q6suq$pKCZo&`Ms&Idl$p{(1sd<M
zJ5~vHrVkAg-KCp_lXkz&PNrnNvVZ@6Kxgc!-{7;L!iPhQWNSJwI2$E9^1q->{pz~0
z<^Jn+w#IRj70##6emm!m2s}=d@;q{J6`U%+Bqqfh{VQ5%FNl%&^V+~5*(m5{XKcK2
z6pf|~UqrYsFPQaA@4LpS5_jfPCB5j_cY0YzLqvNGqCTf+JyUlKgATUruMV)Ep$srS
z?ykvzlj4ibW@Wc5|GZ+I9UDskE@GFeKx2vsN{`*ZPSzuk3AVi|X$9o0E%2MY#-tu_
z9D(bTxJ$D)*e#F^oT`n&Apu5^=wJCfjC+j#Cid8JbBy>E$#!+lHFfQQ8QqTyfh!&_
z0a;lRqm=pHNI1g~6)Z8F+WjW>FwOVPWA~XlP*1i4?VyR|*X+JW6x43N@(XtCO-<I^
zE>o>IZsFcLo7d&VLfu=wCTRjMoY3J6ESH=a;lwpJ_r-Kpa#>B#2jG>IOyuTO9J_o5
z9QVHsZ5Q+V3#Oc9=DeruQ=WKc3BrP^%Q7dORY$me<KsIY3DMh54AdmdhpVgYkAeO_
zooh>e?9_bWc$i|6Kmbs<tp5~~JP9`PT;5TGogWi-mYw3{U8_-laSje2`c9&wAW(Po
z3dm&1x#vbf|ADlSuQw>+fB$spY8~1n@9G?Z1H}uTGE#Csk|HA^c@n7yUVLr2NJ8?G
zgO-Hk<Go_=`gX__5|SU!|Gf@OPbIkzCcOU7rT;^L|DnMDA1Sa(xRA;AvD#*B-~rGL
OBq~Z8PYV@HKmRYfyRwo1

literal 0
HcmV?d00001

diff --git a/charts/instana/instana-agent/2.0.13/kubernetes_deployment_mode_diagram.py b/charts/instana/instana-agent/2.0.13/kubernetes_deployment_mode_diagram.py
new file mode 100644
index 0000000000..b3c304cf62
--- /dev/null
+++ b/charts/instana/instana-agent/2.0.13/kubernetes_deployment_mode_diagram.py
@@ -0,0 +1,20 @@
+from diagrams import Cluster, Diagram
+from diagrams.k8s.compute import Deploy, DaemonSet, Pod
+from diagrams.k8s.podconfig import ConfigMap
+
+with Diagram("kubernetes.deployment.enabled", show=True, direction="LR"):
+    ds = None
+    deploy = None
+    with Cluster("Namespace\ninstana-agent"):
+        with Cluster("Deployment\nkubernetes-sensor"):
+            deploy = Pod("2 Replicas\nKubernetes Sensor")
+
+        with Cluster("DaemonSet\ninstana-agent"):
+            ds = Pod('Per Node\nHost & APM')
+
+        cm = ConfigMap("instana-agent")
+        dcm = ConfigMap("instana-agent-deployment")
+
+        cm >> deploy
+        cm >> ds
+        dcm >> deploy
\ No newline at end of file
diff --git a/charts/instana/instana-agent/2.0.13/questions.yml b/charts/instana/instana-agent/2.0.13/questions.yml
new file mode 100644
index 0000000000..bf9d1a46d4
--- /dev/null
+++ b/charts/instana/instana-agent/2.0.13/questions.yml
@@ -0,0 +1,236 @@
+questions:
+# Basic agent configuration
+- variable: agent.key
+  label: agent.key
+  description: "Your Instana Agent key is the secret token which your agent uses to authenticate to Instana's servers"
+  type: string
+  required: true
+  group: "Agent Configuration"
+- variable: agent.endpointHost
+  label: agent.endpointHost
+  description: "The hostname of the Instana server your agents will connect to. Defaults to ingress-red-saas.instana.io for US and ROW. If in Europe, please use ingress-blue-saas.instana.io"
+  type: string
+  required: true
+  default: "ingress-red-saas.instana.io"
+  group: "Agent Configuration"
+- variable: zone.name
+  label: zone.name
+  description: "Custom zone that detected technologies will be assigned to"
+  type: string
+  required: true
+  group: "Agent Configuration"
+# Advanced agent configuration
+- variable: advancedAgentConfiguration
+  description: "Show advanced configuration for the Instana Agent"
+  label: Show advanced configuration
+  type: boolean
+  default: false
+  show_subquestion_if: true
+  group: "Advanced Agent Configuration"
+  subquestions:
+  - variable: agent.configuration_yaml
+    label: agent.configuration_yaml (Optional)
+    description: "Custom content for the agent configuration.yaml file in YAML format. Please use the 'Edit as YAML' feature in the Rancher UI for the best editing experience."
+    type: string
+    required: false
+    group: "Advanced Agent Configuration"
+  - variable: agent.downloadKey
+    label: agent.downloadKey (Optional)
+    description: "Your Instana download key"
+    type: string
+    required: false
+    group: "Advanced Agent Configuration"
+  - variable: agent.endpointPort
+    label: agent.endpointPort
+    description: "The Agent backend port number (as a string) of the Instana server your agents will connect to"
+    type: string
+    required: true
+    default: "443"
+    group: "Advanced Agent Configuration"
+  - variable: agent.image.name
+    label: agent.image.name
+    description: "The name of the Instana Agent container image"
+    type: string
+    required: true
+    default: "instana/agent"
+    group: "Advanced Agent Configuration"
+  - variable: agent.image.tag
+    label: agent.image.tag
+    description: "The tag name of the Instana Agent container image"
+    type: string
+    required: true
+    default: "latest"
+    group: "Advanced Agent Configuration"
+  - variable: agent.image.pullPolicy
+    label: agent.image.pullPolicy
+    description: "Specifies when to pull the Instana Agent image container"
+    type: string
+    required: true
+    default: "Always"
+    group: "Advanced Agent Configuration"
+  - variable: agent.listenAddress
+    label: agent.listenAddress (Optional)
+    description: "The IP address the agent HTTP server will listen to, or '*' for all interfaces"
+    type: string
+    required: false
+    group: "Advanced Agent Configuration"
+  - variable: agent.mode
+    label: agent.mode (Optional)
+    description: "Agent mode. Possible options are: APM, INFRASTRUCTURE or AWS"
+    type: enum
+    options:
+    - "APM"
+    - "INFRASTRUCTURE"
+    - "AWS"
+    required: false
+    group: "Advanced Agent Configuration"
+  - variable: agent.pod.annotations
+    label: agent.pod.annotations (Optional)
+    description: "Additional annotations to be added to the agent pods in YAML format. Please use the 'Edit as YAML' feature in the Rancher UI for the best editing experience."
+    type: string
+    required: false
+    group: "Advanced Agent Configuration"
+  - variable: agent.pod.limits.cpu
+    label: agent.pod.limits.cpu
+    description: "CPU units allocation limits for the agent pods"
+    type: string
+    required: true
+    default: "1.5"
+    group: "Advanced Agent Configuration"
+  - variable: agent.pod.limits.memory
+    label: agent.pod.limits.memory
+    description: "Memory allocation limits in MiB for the agent pods"
+    type: int
+    required: true
+    default: 512
+    group: "Advanced Agent Configuration"
+  - variable: agent.pod.proxyHost
+    label: agent.pod.proxyHost (Optional)
+    description: "Hostname/address of a proxy. Sets the INSTANA_AGENT_PROXY_HOST environment variable"
+    type: string
+    required: false
+    group: "Advanced Agent Configuration"
+  - variable: agent.pod.proxyPort
+    label: agent.pod.proxyPort (Optional)
+    description: "Port of a proxy. Sets the INSTANA_AGENT_PROXY_PORT environment variable"
+    type: string
+    required: false
+    group: "Advanced Agent Configuration"
+  - variable: agent.pod.proxyProtocol
+    label: agent.pod.proxyProtocol (Optional)
+    description: "Proxy protocol. Sets the INSTANA_AGENT_PROXY_PROTOCOL environment variable. Supported proxy types are http, socks4, socks5"
+    type: string
+    required: false
+    group: "Advanced Agent Configuration"
+  - variable: agent.pod.proxyUser
+    label: agent.pod.proxyUser (Optional)
+    description: "Username of the proxy auth. Sets the INSTANA_AGENT_PROXY_USER environment variable"
+    type: string
+    required: false
+    group: "Advanced Agent Configuration"
+  - variable: agent.pod.proxyPassword
+    label: agent.pod.proxyPassword (Optional)
+    description: "Password of the proxy auth. Sets the INSTANA_AGENT_PROXY_PASSWORD environment variable"
+    type: string
+    required: false
+    group: "Advanced Agent Configuration"
+  - variable: agent.pod.proxyUseDNS
+    label: agent.pod.proxyUseDNS. (Optional)
+    description: "Boolean if proxy also does DNS. Sets the INSTANA_AGENT_PROXY_USE_DNS environment variable"
+    type: enum
+    options:
+      - "true"
+      - "false"
+    required: false
+    group: "Advanced Agent Configuration"
+  - variable: agent.pod.requests.cpu
+    label: agent.pod.requests.cpu
+    description: "Requested CPU units allocation for the agent pods"
+    type: string
+    required: true
+    default: "0.5"
+    group: "Advanced Agent Configuration"
+  - variable: agent.pod.requests.memory
+    label: agent.pod.requests.memory
+    description: "Requested memory allocation in MiB for the agent pods"
+    type: int
+    required: true
+    default: 512
+    group: "Advanced Agent Configuration"
+  - variable: agent.pod.tolerations
+    label: agent.pod.tolerations (Optional)
+    description: "Tolerations to influence agent pod assignment in YAML format. Please use the 'Edit as YAML' feature in the Rancher UI for the best editing experience."
+    type: string
+    required: false
+    group: "Advanced Agent Configuration"
+  - variable: agent.redactKubernetesSecrets
+    label: agent.redactKubernetesSecrets (Optional)
+    description: "Enable additional secrets redaction for selected Kubernetes resources"
+    type: boolean
+    required: false
+    default: false
+    group: "Advanced Agent Configuration"
+  - variable: cluster.name
+    label: cluster.name (Optional)
+    description: "The name that will be assigned to this cluster in Instana. See the 'Installing the Chart' section in the 'Detailed Descriptions' tab for more details"
+    type: string
+    required: false
+    group: "Advanced Agent Configuration"
+  - variable: leaderElector.image.name
+    label: leaderElector.image.name
+    description: "The name of the leader elector container image"
+    type: string
+    required: true
+    default: "instana/leader-elector"
+    group: "Advanced Agent Configuration"
+  - variable: leaderElector.image.tag
+    label: leaderElector.image.tag
+    description: "The tag name of the leader elector container image"
+    type: string
+    required: true
+    default: "0.5.4"
+    group: "Advanced Agent Configuration"
+  - variable: leaderElector.port
+    label: leaderElector.port
+    description: "The port on which the leader elector sidecar is exposed"
+    type: int
+    required: true
+    default: 42655
+    group: "Advanced Agent Configuration"
+- variable: podSecurityPolicy.enable
+  label: podSecurityPolicy.enable (Optional)
+  description: "Specifies whether a PodSecurityPolicy should be authorized for the Instana Agent pods. Requires `rbac.create` to also be `true`"
+  type: boolean
+  show_if: "rbac.create=true"
+  required: false
+  default: false
+  group: "Pod Security Policy Configuration"
+- variable: podSecurityPolicy.name
+  label: podSecurityPolicy.name (Optional)
+  description: "The name of an existing PodSecurityPolicy you would like to authorize for the Instana Agent pods. If not set and `podSecurityPolicy.enable` is `true`, a PodSecurityPolicy will be created with a name generated using the fullname template"
+  type: string
+  show_if: "rbac.create=true&&podSecurityPolicy.enable=true"
+  required: false
+  group: "Pod Security Policy Configuration"
+- variable: rbac.create
+  label: rbac.create
+  description: "Specifies whether RBAC resources should be created"
+  type: boolean
+  required: true
+  default: true
+  group: "RBAC Configuration"
+- variable: serviceAccount.create
+  label: serviceAccount.create
+  description: "Specifies whether a ServiceAccount should be created"
+  type: boolean
+  required: true
+  default: true
+  show_subquestion_if: true
+  group: "RBAC Configuration"
+  subquestions:
+  - variable: serviceAccount.name
+    label: Name of the ServiceAccount (Optional)
+    description: "The name of the ServiceAccount to use. If not set and `serviceAccount.create` is true, a name is generated using the fullname template."
+    type: string
+    required: false
+    group: "RBAC Configuration"
diff --git a/charts/instana/instana-agent/2.0.13/templates/NOTES.txt b/charts/instana/instana-agent/2.0.13/templates/NOTES.txt
new file mode 100644
index 0000000000..8243ecd20d
--- /dev/null
+++ b/charts/instana/instana-agent/2.0.13/templates/NOTES.txt
@@ -0,0 +1,73 @@
+{{- if (and (not (or .Values.agent.key .Values.agent.keysSecret )) (and (not .Values.zone.name) (not .Values.cluster.name))) }}
+##############################################################################
+####    ERROR: You did not specify your secret agent key.                 ####
+####    ERROR: You also did not specify a zone or name for this cluster.  ####
+##############################################################################
+
+This agent deployment will be incomplete until you set your agent key and zone or name for this cluster:
+
+    helm upgrade {{ .Release.Name }} --reuse-values \
+        --repo https://agents.instana.io/helm \
+        --set agent.key=$(YOUR_SECRET_AGENT_KEY) \
+        --set zone.name=$(YOUR_ZONE_NAME) instana-agent
+
+Alternatively, you may specify a cluster name and the zone will be detected from availability zone information on the host:
+
+    helm upgrade {{ .Release.Name }} --reuse-values \
+        --repo https://agents.instana.io/helm \
+        --set agent.key=$(YOUR_SECRET_AGENT_KEY) \
+        --set cluster.name=$(YOUR_CLUSTER_NAME) instana-agent
+
+- YOUR_SECRET_AGENT_KEY can be obtained from the Management Portal section of your Instana installation.
+- YOUR_ZONE_NAME should be the zone that detected technologies will be assigned to.
+- YOUR_CLUSTER_NAME should be the custom name of your cluster.
+
+At least one of zone.name or cluster.name is required. This cluster will be reported with the name of the zone unless you specify a cluster name.
+
+{{- else if (and (not .Values.zone.name) (not .Values.cluster.name))  }}
+##############################################################################
+####    ERROR: You did not specify a zone or name for this cluster.       ####
+##############################################################################
+
+This agent deployment will be incomplete until you set a zone for this cluster:
+
+    helm upgrade {{ .Release.Name }} --reuse-values \
+        --repo https://agents.instana.io/helm \
+        --set zone.name=$(YOUR_ZONE_NAME) instana-agent
+
+Alternatively, you may specify a cluster name and the zone will be detected from availability zone information on the host:
+
+    helm upgrade {{ .Release.Name }} --reuse-values \
+        --repo https://agents.instana.io/helm \
+        --set cluster.name=$(YOUR_CLUSTER_NAME) instana-agent
+
+- YOUR_ZONE_NAME should be the zone that detected technologies will be assigned to.
+- YOUR_CLUSTER_NAME should be the custom name of your cluster.
+
+At least one of zone.name or cluster.name is required. This cluster will be reported with the name of the zone unless you specify a cluster name.
+
+{{- else if not (or .Values.agent.key .Values.agent.keysSecret )}}
+##############################################################################
+####    ERROR: You did not specify your secret agent key.                 ####
+##############################################################################
+
+This agent deployment will be incomplete until you set your agent key:
+
+    helm upgrade {{ .Release.Name }} --reuse-values \
+        --repo https://agents.instana.io/helm \
+        --set agent.key=$(YOUR_SECRET_AGENT_KEY) instana-agent
+
+- YOUR_SECRET_AGENT_KEY can be obtained from the Management Portal section of your Instana installation.
+
+{{- else -}}
+Ensure to run `oc adm policy add-scc-to-user privileged -z instana-agent -n instana-agent` if running on OCP, otherwise agent pods will not be scheduled correctly.
+
+It may take a few moments for the agents to fully deploy. You can see what agents are running by listing resources in the {{ .Release.Namespace }} namespace:
+
+    kubectl get all -n {{ .Release.Namespace }}
+
+You can get the logs for all of the agents with `kubectl logs`:
+
+    kubectl logs -l app.kubernetes.io/name={{ .Release.Name }} -n {{ .Release.Namespace }} -c instana-agent
+
+{{- end }}
diff --git a/charts/instana/instana-agent/2.0.13/templates/agent.yml b/charts/instana/instana-agent/2.0.13/templates/agent.yml
new file mode 100644
index 0000000000..fd0412545d
--- /dev/null
+++ b/charts/instana/instana-agent/2.0.13/templates/agent.yml
@@ -0,0 +1,309 @@
+---
+apiVersion: instana.io/v1
+kind: InstanaAgent
+metadata:
+  name: instana-agent
+  namespace: instana-agent
+spec:
+{{- if .Values.zone }}
+  zone:
+    name: {{ .Values.zone.name }}
+{{- end }}
+{{- if .Values.zones }}
+  zones:
+{{- toYaml $.Values.zones | nindent 4 }}
+{{- end }}
+  cluster:
+    name: {{ .Values.cluster.name }}
+  agent:
+{{- if .Values.agent.mode }}
+    mode: {{ .Values.agent.mode }}
+{{- end }}
+{{- if .Values.agent.key }}
+    key: {{ .Values.agent.key }}
+{{- end }}
+{{- if .Values.agent.downloadKey }}
+    downloadKey: {{ .Values.agent.downloadKey }}
+{{- end }}
+{{- if .Values.agent.keysSecret }}
+    keysSecret: {{ .Values.agent.keysSecret }}
+{{- end }}
+{{- if .Values.agent.listenAddress }}
+    listenAddress: {{ .Values.agent.listenAddress }}
+{{- end }}
+    endpointHost: {{ .Values.agent.endpointHost }}
+    {{- if eq (typeOf .Values.agent.endpointPort) "string" }}
+    endpointPort: {{ .Values.agent.endpointPort }}
+    {{- else }}
+    endpointPort: {{ .Values.agent.endpointPort | quote }}
+    {{- end }}
+{{- if .Values.agent.instanaMvnRepoUrl }}
+    instanaMvnRepoUrl: {{ .Values.agent.instanaMvnRepoUrl }}
+{{- end }}
+{{- if .Values.agent.instanaMvnRepoFeaturesPath }}
+    instanaMvnRepoFeaturesPath: {{ .Values.agent.instanaMvnRepoFeaturesPath }}
+{{- end }}
+{{- if .Values.agent.instanaMvnRepoSharedPath }}
+    instanaMvnRepoSharedPath: {{ .Values.agent.instanaMvnRepoSharedPath }}
+{{- end }}
+{{- if .Values.agent.agentReleaseRepoMirrorUrl }}
+    agentReleaseRepoMirrorUrl: {{ .Values.agent.agentReleaseRepoMirrorUrl }}
+{{- end }}
+{{- if .Values.agent.agentReleaseRepoMirrorUsername }}
+    agentReleaseRepoMirrorUsername: {{ .Values.agent.agentReleaseRepoMirrorUsername }}
+{{- end }}
+{{- if .Values.agent.agentReleaseRepoMirrorPassword }}
+    agentReleaseRepoMirrorPassword: {{ .Values.agent.agentReleaseRepoMirrorPassword }}
+{{- end }}
+{{- if .Values.agent.instanaSharedRepoMirrorUrl }}
+    instanaSharedRepoMirrorUrl: {{ .Values.agent.instanaSharedRepoMirrorUrl }}
+{{- end }}
+{{- if .Values.agent.instanaSharedRepoMirrorUsername }}
+    instanaSharedRepoMirrorUsername: {{ .Values.agent.instanaSharedRepoMirrorUsername }}
+{{- end }}
+{{- if .Values.agent.instanaSharedRepoMirrorPassword }}
+    instanaSharedRepoMirrorPassword: {{ .Values.agent.instanaSharedRepoMirrorPassword }}
+{{- end }}
+{{- if .Values.agent.additionalBackends }}
+    additionalBackends:
+{{- range $.Values.agent.additionalBackends }}
+    - endpointHost: {{ .endpointHost }}
+      {{- if eq (typeOf .endpointPort) "string" }}
+      endpointPort: {{ .endpointPort }}
+      {{- else }}
+      endpointPort: {{ .endpointPort | quote }}
+      {{- end }}
+      {{- if .key }}
+      key: {{ .key }}
+      {{- end }}
+{{- end }}
+{{- end }}
+{{- if .Values.agent.tls }}
+{{- if or .Values.agent.tls.secretName (and .Values.agent.tls.certificate .Values.agent.tls.key) }}
+    tls:
+{{- if .Values.agent.tls.secretName }}
+      secretName: {{ .Values.agent.tls.secretName }}
+{{- end }}
+{{- if .Values.agent.tls.certificate }}
+      certificate: {{ .Values.agent.tls.certificate }}
+{{- end }}
+{{- if .Values.agent.tls.key }}
+      key: {{ .Values.agent.tls.key }}
+{{- end }}
+{{- end }}
+{{- end }}
+{{- if .Values.agent.image }}
+{{- if or .Values.agent.image.name .Values.agent.image.digest .Values.agent.image.tag .Values.agent.image.pullPolicy .Values.agent.image.pullSecrets }}
+    image:
+{{- if .Values.agent.image.name }}
+      name: {{ .Values.agent.image.name }}
+{{- end }}
+{{- if .Values.agent.image.digest }}
+      digest: {{ .Values.agent.image.digest }}
+{{- end }}
+{{- if .Values.agent.image.tag }}
+      tag: {{ .Values.agent.image.tag }}
+{{- end }}
+{{- if .Values.agent.image.pullPolicy }}
+      pullPolicy: {{ .Values.agent.image.pullPolicy }}
+{{- end }}
+{{- if .Values.agent.image.pullSecrets }}
+      pullSecrets:
+{{- toYaml $.Values.agent.image.pullSecrets | nindent 6 }}
+{{- end }}
+{{- end }}
+{{- end }}
+{{- if .Values.agent.minReadySeconds }}
+    minReadySeconds: {{ .Values.agent.minReadySeconds }}
+{{- end }}
+{{- if .Values.agent.updateStrategy }}
+    updateStrategy:
+{{- if .Values.agent.updateStrategy.type }}
+      type: {{ .Values.agent.updateStrategy.type }}
+{{- end }}
+{{- if .Values.agent.updateStrategy.rollingUpdate }}
+{{- if .Values.agent.updateStrategy.rollingUpdate.maxUnavailable }}
+      rollingUpdate:
+        maxUnavailable: {{ .Values.agent.updateStrategy.maxUnavailable }}
+{{- end }}
+{{- end }}
+{{- end }}
+{{- if .Values.agent.pod }}
+{{- if or .Values.agent.pod.annotations .Values.agent.pod.labels .Values.agent.pod.tolerations .Values.agent.pod.affinity .Values.agent.pod.priorityClassName .Values.agent.pod.requests .Values.agent.pod.limits .Values.agent.pod.nodeSelector .Values.agent.pod.volumeMounts .Values.agent.pod.mounts }}
+    pod:
+    {{- if .Values.agent.pod.annotations }}
+      annotations:
+      {{- toYaml $.Values.agent.pod.annotations | nindent 8 }}
+    {{- end }}
+    {{- if .Values.agent.pod.labels }}
+      labels:
+      {{- toYaml $.Values.agent.pod.labels | nindent 8 }}
+    {{- end }}
+    {{- if .Values.agent.pod.tolerations }}
+      tolerations:
+      {{- toYaml $.Values.agent.pod.tolerations | nindent 8 }}
+    {{- end }}
+    {{- if .Values.agent.pod.affinity }}
+      affinity:
+      {{- toYaml $.Values.agent.pod.affinity | nindent 8 }}
+    {{- end }}
+    {{- if .Values.agent.pod.priorityClassName }}
+      priorityClassName: {{ .Values.agent.pod.priorityClassName }}
+    {{- end }}
+    {{- if .Values.agent.pod.requests }}
+        {{- if or .Values.agent.pod.requests.memory .Values.agent.pod.requests.cpu }}
+      requests:
+            {{- if .Values.agent.pod.requests.memory }}
+        memory: {{ .Values.agent.pod.requests.memory }}
+            {{- end }}
+            {{- if .Values.agent.pod.requests.cpu }}
+        cpu: {{ .Values.agent.pod.requests.cpu | quote }}
+            {{- end }}
+        {{- end }}
+    {{- end }}
+    {{- if .Values.agent.pod.limits }}
+        {{- if or .Values.agent.pod.limits.memory .Values.agent.pod.limits.cpu }}
+      limits:
+            {{- if .Values.agent.pod.limits.memory }}
+        memory: {{ .Values.agent.pod.limits.memory }}
+            {{- end }}
+        {{- if .Values.agent.pod.limits.cpu }}
+        cpu: {{ .Values.agent.pod.limits.cpu | quote }}
+        {{- end }}
+        {{- if .Values.agent.pod.nodeSelector }}
+      nodeSelector:
+      {{- toYaml $.Values.agent.pod.nodeSelector | nindent 8 }}
+        {{- end }}
+    {{- end }}
+    {{- end }}
+    {{- if .Values.agent.pod.volumeMounts }}
+      volumeMounts:
+      {{- toYaml $.Values.agent.pod.volumeMounts | nindent 8 }}
+    {{- end }}
+    {{- if .Values.agent.pod.volumes }}
+      volumes:
+      {{- toYaml $.Values.agent.pod.volumes | nindent 8 }}
+    {{- end }}
+{{- end }}
+{{- end }}
+{{- if .Values.agent.proxyHost }}
+    proxyHost: {{ .Values.agent.proxyHost }}
+{{- end }}
+{{- if eq (typeOf .Values.agent.proxyPort) "string" }}
+    proxyPort: {{ .Values.agent.proxyPort }}
+{{- else }}
+    proxyPort: {{ .Values.agent.proxyPort | quote }}
+{{- end }}
+{{- if .Values.agent.proxyProtocol }}
+    proxyProtocol: {{ .Values.agent.proxyProtocol }}
+{{- end }}
+{{- if .Values.agent.proxyUser }}
+    proxyUser: {{ .Values.agent.proxyUser }}
+{{- end }}
+{{- if .Values.agent.proxyPassword }}
+    proxyPassword: {{ .Values.agent.proxyPassword }}
+{{- end }}
+{{- if .Values.agent.proxyUseDNS }}
+    proxyUseDNS: {{ .Values.agent.proxyUseDNS }}
+{{- end }}
+{{- if .Values.agent.env }}
+    env:
+{{- range $key, $value := .Values.agent.env }}
+        {{- if eq (typeOf $value) "string" }}
+        {{ $key }}: {{ $value }}
+        {{- else }}
+        {{ $key }}: {{ $value | quote }}
+        {{- end }}
+{{- end }}
+{{- end }}
+{{- if .Values.agent.configuration_yaml }}
+{{ $configuration_yaml_string := .Values.agent.configuration_yaml }}
+    configuration_yaml: |-
+{{ $configuration_yaml_string | indent 6}}
+{{- end }}
+{{- if and .Values.agent.host .Values.agent.host.repository }}
+    host:
+      repository: {{ .Values.agent.host.repository }}
+{{- end }}
+{{- if .Values.agent.serviceMesh}}
+{{- if .Values.agent.serviceMesh.enabled }}
+    serviceMesh:
+      enabled: {{ .Values.agent.serviceMesh.enabled }}
+{{- end }}
+{{- end }}
+{{- if .Values.opentelemetry }}
+{{- if or ( and (hasKey .Values.opentelemetry "grpc") (hasKey .Values.opentelemetry.grpc "enabled")) ( and (hasKey .Values.opentelemetry "http") (hasKey .Values.opentelemetry.http "enabled")) }}
+  opentelemetry:
+{{- if and (hasKey .Values.opentelemetry "grpc") (hasKey .Values.opentelemetry.grpc "enabled") }}
+    grpc:
+      enabled: {{ .Values.opentelemetry.grpc.enabled }}
+{{- end }}
+{{- if and (hasKey .Values.opentelemetry "http") (hasKey .Values.opentelemetry.http "enabled") }}
+    http:
+      enabled: {{ .Values.opentelemetry.http.enabled }}
+{{- end }}
+{{- end }}
+{{- end }}
+{{- if .Values.prometheus }}
+{{- if .Values.prometheus.remoteWrite }}
+{{- if .Values.prometheus.remoteWrite.enabled }}
+  prometheus:
+    remoteWrite:
+      enabled: {{ .Values.prometheus.remoteWrite.enabled }}
+{{- end }}
+{{- end }}
+{{- end }}
+{{- if .Values.serviceAccount }}
+{{- if or .Values.serviceAccount.create .Values.serviceAccount.annotations }}
+  serviceAccount:
+{{- if .Values.serviceAccount.create }}
+    create: {{ .Values.serviceAccount.create }}
+{{- end }}
+{{- if .Values.serviceAccount.name }}
+    name: {{ .Values.serviceAccount.name }}
+{{- end }}
+{{- if .Values.serviceAccount.annotations }}
+    annotations: {{ .Values.serviceAccount.annotations }}
+      {{- toYaml $.Values.serviceAccount.annotations | nindent 6 }}
+{{- end }}
+{{- end }}
+{{- end }}
+{{- if .Values.podSecurityPolicy }}
+{{- if or .Values.podSecurityPolicy.enable .Values.podSecurityPolicy.name }}
+  podSecurityPolicy:
+{{- if .Values.podSecurityPolicy.enable }}
+    enable: {{ .Values.podSecurityPolicy.enable }}
+{{- end }}
+{{- if .Values.podSecurityPolicy.name }}
+    name: {{ .Values.podSecurityPolicy.name }}
+{{- end }}
+{{- end }}
+{{- end }}
+{{- if .Values.k8s_sensor }}
+{{- if or .Values.k8s_sensor.image .Values.k8s_sensor.deployment .Values.k8s_sensor.podDisruptionBudget }}
+  k8s_sensor:
+{{- if .Values.k8s_sensor.image }}
+    image:
+{{- if .Values.k8s_sensor.image.name }}
+      name: {{ .Values.k8s_sensor.image.name }}
+{{- end }}
+{{- if .Values.k8s_sensor.image.digest }}
+      digest: {{ .Values.k8s_sensor.image.digest }}
+{{- end }}
+{{- if .Values.k8s_sensor.image.tag }}
+      tag: {{ .Values.k8s_sensor.image.tag }}
+{{- end }}
+{{- if .Values.k8s_sensor.image.pullPolicy }}
+      pullPolicy: {{ .Values.k8s_sensor.image.pullPolicy }}
+{{- end }}
+{{- end }}
+{{- if .Values.k8s_sensor.deployment }}
+    deployment:
+    {{- toYaml $.Values.k8s_sensor.deployment | nindent 6 }}
+{{- end }}
+{{- if .Values.k8s_sensor.podDisruptionBudget }}
+    podDisruptionBudget:
+    {{- toYaml $.Values.k8s_sensor.podDisruptionBudget | nindent 6 }}
+{{- end }}
+{{- end }}
+{{- end }}
diff --git a/charts/instana/instana-agent/2.0.13/templates/operator_clusterrole_instana-agent-clusterrole.yml b/charts/instana/instana-agent/2.0.13/templates/operator_clusterrole_instana-agent-clusterrole.yml
new file mode 100644
index 0000000000..a12081b7d9
--- /dev/null
+++ b/charts/instana/instana-agent/2.0.13/templates/operator_clusterrole_instana-agent-clusterrole.yml
@@ -0,0 +1,187 @@
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  name: instana-agent-clusterrole
+rules:
+  - nonResourceURLs:
+      - /healthz
+      - /metrics
+      - /metrics/cadvisor
+      - /stats/summary
+      - /version
+    verbs:
+      - get
+  - apiGroups:
+      - apiextensions.k8s.io
+    resources:
+      - customresourcedefinitions
+    verbs:
+      - get
+      - list
+      - watch
+  - apiGroups:
+      - apps
+    resources:
+      - daemonsets
+      - deployments
+    verbs:
+      - create
+      - delete
+      - get
+      - list
+      - patch
+      - update
+      - watch
+  - apiGroups:
+      - apps
+    resources:
+      - daemonsets
+      - deployments
+      - replicasets
+      - statefulsets
+    verbs:
+      - get
+      - list
+      - watch
+  - apiGroups:
+      - apps.openshift.io
+    resources:
+      - deploymentconfigs
+    verbs:
+      - get
+      - list
+      - watch
+  - apiGroups:
+      - autoscaling
+    resources:
+      - horizontalpodautoscalers
+    verbs:
+      - get
+      - list
+      - watch
+  - apiGroups:
+      - batch
+    resources:
+      - cronjobs
+      - jobs
+    verbs:
+      - get
+      - list
+      - watch
+  - apiGroups:
+      - ""
+    resources:
+      - configmaps
+      - endpoints
+      - events
+      - namespaces
+      - nodes
+      - nodes/metrics
+      - nodes/stats
+      - persistentvolumeclaims
+      - persistentvolumes
+      - pods
+      - pods/log
+      - replicationcontrollers
+      - resourcequotas
+      - services
+    verbs:
+      - get
+      - list
+      - watch
+  - apiGroups:
+      - ""
+    resources:
+      - configmaps
+      - secrets
+      - serviceaccounts
+      - services
+    verbs:
+      - create
+      - delete
+      - get
+      - list
+      - patch
+      - update
+      - watch
+  - apiGroups:
+      - extensions
+    resources:
+      - deployments
+      - ingresses
+      - replicasets
+    verbs:
+      - get
+      - list
+      - watch
+  - apiGroups:
+      - instana.io
+    resources:
+      - agents
+    verbs:
+      - create
+      - delete
+      - get
+      - list
+      - patch
+      - update
+      - watch
+  - apiGroups:
+      - instana.io
+    resources:
+      - agents/finalizers
+    verbs:
+      - update
+  - apiGroups:
+      - instana.io
+    resources:
+      - agents/status
+    verbs:
+      - get
+      - patch
+      - update
+  - apiGroups:
+      - networking.k8s.io
+    resources:
+      - ingresses
+    verbs:
+      - get
+      - list
+      - watch
+  - apiGroups:
+      - policy
+    resources:
+      - podsecuritypolicies
+    verbs:
+      - use
+  - apiGroups:
+      - policy
+    resourceNames:
+      - instana-agent-k8sensor
+    resources:
+      - podsecuritypolicies
+    verbs:
+      - use
+  - apiGroups:
+      - rbac.authorization.k8s.io
+    resources:
+      - clusterrolebindings
+      - clusterroles
+    verbs:
+      - bind
+      - create
+      - delete
+      - get
+      - list
+      - patch
+      - update
+      - watch
+  - apiGroups:
+      - security.openshift.io
+    resourceNames:
+      - privileged
+    resources:
+      - securitycontextconstraints
+    verbs:
+      - use
diff --git a/charts/instana/instana-agent/2.0.13/templates/operator_clusterrole_leader-election-role.yml b/charts/instana/instana-agent/2.0.13/templates/operator_clusterrole_leader-election-role.yml
new file mode 100644
index 0000000000..2a79075c0c
--- /dev/null
+++ b/charts/instana/instana-agent/2.0.13/templates/operator_clusterrole_leader-election-role.yml
@@ -0,0 +1,27 @@
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  name: leader-election-role
+rules:
+  - apiGroups:
+      - ""
+      - coordination.k8s.io
+    resources:
+      - configmaps
+      - leases
+    verbs:
+      - get
+      - list
+      - watch
+      - create
+      - update
+      - patch
+      - delete
+  - apiGroups:
+      - ""
+    resources:
+      - events
+    verbs:
+      - create
+      - patch
diff --git a/charts/instana/instana-agent/2.0.13/templates/operator_clusterrolebinding_instana-agent-clusterrolebinding.yml b/charts/instana/instana-agent/2.0.13/templates/operator_clusterrolebinding_instana-agent-clusterrolebinding.yml
new file mode 100644
index 0000000000..7791c4df44
--- /dev/null
+++ b/charts/instana/instana-agent/2.0.13/templates/operator_clusterrolebinding_instana-agent-clusterrolebinding.yml
@@ -0,0 +1,13 @@
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  name: instana-agent-clusterrolebinding
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: instana-agent-clusterrole
+subjects:
+  - kind: ServiceAccount
+    name: instana-agent-operator
+    namespace: instana-agent
diff --git a/charts/instana/instana-agent/2.0.13/templates/operator_clusterrolebinding_leader-election-rolebinding.yml b/charts/instana/instana-agent/2.0.13/templates/operator_clusterrolebinding_leader-election-rolebinding.yml
new file mode 100644
index 0000000000..904203ce6f
--- /dev/null
+++ b/charts/instana/instana-agent/2.0.13/templates/operator_clusterrolebinding_leader-election-rolebinding.yml
@@ -0,0 +1,13 @@
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  name: leader-election-rolebinding
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: leader-election-role
+subjects:
+  - kind: ServiceAccount
+    name: instana-agent-operator
+    namespace: instana-agent
diff --git a/charts/instana/instana-agent/2.0.13/templates/operator_configmap_manager-config.yml b/charts/instana/instana-agent/2.0.13/templates/operator_configmap_manager-config.yml
new file mode 100644
index 0000000000..70ceeb82dc
--- /dev/null
+++ b/charts/instana/instana-agent/2.0.13/templates/operator_configmap_manager-config.yml
@@ -0,0 +1,17 @@
+---
+apiVersion: v1
+data:
+  controller_manager_config.yaml: |
+    apiVersion: controller-runtime.sigs.k8s.io/v1alpha1
+    kind: ControllerManagerConfig
+    health:
+      healthProbeBindAddress: :8081
+    metrics:
+      bindAddress: 127.0.0.1:8080
+    leaderElection:
+      leaderElect: true
+      resourceName: 819a9291.instana.io
+kind: ConfigMap
+metadata:
+  name: manager-config
+  namespace: instana-agent
diff --git a/charts/instana/instana-agent/2.0.13/templates/operator_deployment_instana-agent-controller-manager.yml b/charts/instana/instana-agent/2.0.13/templates/operator_deployment_instana-agent-controller-manager.yml
new file mode 100644
index 0000000000..b173068706
--- /dev/null
+++ b/charts/instana/instana-agent/2.0.13/templates/operator_deployment_instana-agent-controller-manager.yml
@@ -0,0 +1,66 @@
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/name: instana-agent-operator
+  name: instana-agent-controller-manager
+  namespace: instana-agent
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app.kubernetes.io/name: instana-agent-operator
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/name: instana-agent-operator
+    spec:
+      affinity:
+        nodeAffinity:
+          requiredDuringSchedulingIgnoredDuringExecution:
+            nodeSelectorTerms:
+              - matchExpressions:
+                  - key: kubernetes.io/os
+                    operator: In
+                    values:
+                      - linux
+              - matchExpressions:
+                  - key: kubernetes.io/arch
+                    operator: In
+                    values:
+                      - amd64
+                      - ppc64le
+                      - s390x
+                      - arm64
+      containers:
+        - args:
+            - --leader-elect
+          command:
+            - /manager
+          image: icr.io/instana/instana-agent-operator:2.1.19
+          imagePullPolicy: Always
+          livenessProbe:
+            httpGet:
+              path: /healthz
+              port: 8081
+            initialDelaySeconds: 15
+            periodSeconds: 20
+          name: manager
+          readinessProbe:
+            httpGet:
+              path: /readyz
+              port: 8081
+            initialDelaySeconds: 5
+            periodSeconds: 10
+          resources:
+            limits:
+              cpu: 200m
+              memory: 600Mi
+            requests:
+              cpu: 200m
+              memory: 200Mi
+          securityContext:
+            allowPrivilegeEscalation: true
+      serviceAccountName: instana-agent-operator
+      terminationGracePeriodSeconds: 10
diff --git a/charts/instana/instana-agent/2.0.13/templates/operator_serviceaccount_instana-agent-operator.yml b/charts/instana/instana-agent/2.0.13/templates/operator_serviceaccount_instana-agent-operator.yml
new file mode 100644
index 0000000000..c23ec50a4a
--- /dev/null
+++ b/charts/instana/instana-agent/2.0.13/templates/operator_serviceaccount_instana-agent-operator.yml
@@ -0,0 +1,6 @@
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: instana-agent-operator
+  namespace: instana-agent
diff --git a/charts/instana/instana-agent/2.0.13/values.yaml b/charts/instana/instana-agent/2.0.13/values.yaml
new file mode 100644
index 0000000000..a2bc39963e
--- /dev/null
+++ b/charts/instana/instana-agent/2.0.13/values.yaml
@@ -0,0 +1,282 @@
+# name is the value which will be used as the base resource name for various resources associated with the agent.
+# name: instana-agent
+
+agent:
+  # agent.mode is used to set agent mode and it can be APM, INFRASTRUCTURE or AWS
+  # mode: APM
+
+  # agent.key is the secret token which your agent uses to authenticate to Instana's servers.
+  key: null
+  # agent.downloadKey is key, sometimes known as "sales key", that allows you to download,
+  # software from Instana.
+  # downloadKey: null
+
+  # Rather than specifying the agent key and optionally the download key, you can "bring your
+  # own secret" creating it in the namespace in which you install the `instana-agent` and
+  # specify its name in the `keysSecret` field. The secret you create must contains
+  # a field called `key` and optionally one called `downloadKey`, which contain, respectively,
+  # the values you'd otherwise set in `.agent.key` and `agent.downloadKey`.
+  # keysSecret: null
+
+  # agent.listenAddress is the IP address the agent HTTP server will listen to.
+  # listenAddress: "*"
+
+  # agent.endpointHost is the hostname of the Instana server your agents will connect to.
+  # endpointHost: ingress-red-saas.instana.io
+  # agent.endpointPort is the port number (as a String) of the Instana server your agents will connect to.
+  # endpointPort: 443
+
+  # These are additional backends the Instana agent will report to besides
+  # the one configured via the `agent.endpointHost`, `agent.endpointPort` and `agent.key` setting
+  # additionalBackends: []
+    # - endpointHost: ingress.instana.io
+    #   endpointPort: 443
+    #   key: <agent_key>
+
+  # TLS for end-to-end encryption between Instana agent and clients accessing the agent.
+  # The Instana agent does not yet allow enforcing TLS encryption.
+  # TLS is only enabled on a connection when requested by the client.
+  # tls:
+    # In order to enable TLS, a secret of type kubernetes.io/tls must be specified.
+    # secretName is the name of the secret that has the relevant files.
+    # secretName: null
+    # Otherwise,  the certificate and the private key must be provided as base64 encoded.
+    # certificate: null
+    # key: null
+
+  # image:
+    # agent.image.name is the name of the container image of the Instana agent.
+    # name: icr.io/instana/agent
+    # agent.image.digest is the digest (a.k.a. Image ID) of the agent container image; if specified, it has priority over agent.image.tag, which will be ignored.
+    # digest:
+    # agent.image.tag is the tag name of the agent container image; if agent.image.digest is specified, this property is ignored.
+    # tag: latest
+    # agent.image.pullPolicy specifies when to pull the image container.
+    # pullPolicy: Always
+    # agent.image.pullSecrets allows you to override the default pull secret that is created when agent.image.name starts with "containers.instana.io"
+    # Setting agent.image.pullSecrets prevents the creation of the default "containers-instana-io" secret.
+    # pullSecrets:
+    #   - name: my_awesome_secret_instead
+    # If you want no imagePullSecrets to be specified in the agent pod, you can just pass an empty array to agent.image.pullSecrets
+    # pullSecrets: []
+
+  # The minimum number of seconds for which a newly created Pod should be ready without any of its containers crashing, for it to be considered available
+  # minReadySeconds: 0
+
+  # updateStrategy:
+  #   type: RollingUpdate
+  #   rollingUpdate:
+  #     maxUnavailable: 1
+
+  # pod:
+    # agent.pod.annotations are additional annotations to be added to the agent pods.
+    # annotations: {}
+
+    # agent.pod.labels are additional labels to be added to the agent pods.
+    # labels: {}
+
+    # agent.pod.tolerations are tolerations to influence agent pod assignment.
+    #   https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/
+    # tolerations: []
+
+    # agent.pod.affinity are affinities to influence agent pod assignment.
+    # https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/
+    # affinity: {}
+
+    # agent.pod.priorityClassName is the name of an existing PriorityClass that should be set on the agent pods
+    #   https://kubernetes.io/docs/concepts/configuration/pod-priority-preemption/
+    # priorityClassName: null
+
+    # agent.pod.nodeSelector are selectors to influence where agent pods should be scheduled.
+    # nodeSelector:
+    #   location: 'us-central1-c'
+    #nodeSelector: null
+
+    # agent.pod.requests and agent.pod.limits adjusts the resource assignments for the DaemonSet agent
+    #   regardless of the kubernetes.deployment.enabled setting
+    # requests:
+      # agent.pod.requests.memory is the requested memory allocation in MiB for the agent pods.
+      # memory: 768Mi
+      # agent.pod.requests.cpu are the requested CPU units allocation for the agent pods.
+      # cpu: 0.5
+    # limits:
+      # agent.pod.limits.memory set the memory allocation limits in MiB for the agent pods.
+      # memory: 768Mi
+      # agent.pod.limits.cpu sets the CPU units allocation limits for the agent pods.
+      # cpu: 1.5
+
+    # agent.pod.volumes and agent.pod.volumeMounts are additional volumes and volumeMounts for user-specific files.
+    # For example, a certificate may need to be mounted for an agent sensor to connect to the monitored target.
+    # https://kubernetes.io/docs/concepts/storage/volumes/
+    # volumes:
+      # - name: my-secret-volume
+        # secret:
+          # secretName: instana-agent-key
+    # volumeMounts:
+      # - name: my-secret-volume
+        # mountPath: /secrets
+
+  # agent.proxyHost sets the INSTANA_AGENT_PROXY_HOST environment variable.
+  # proxyHost: null
+  # agent.proxyPort sets the INSTANA_AGENT_PROXY_PORT environment variable.
+  # proxyPort: 80
+  # agent.proxyProtocol sets the INSTANA_AGENT_PROXY_PROTOCOL environment variable.
+  # proxyProtocol: HTTP
+  # agent.proxyUser sets the INSTANA_AGENT_PROXY_USER environment variable.
+  # proxyUser: null
+  # agent.proxyPassword sets the INSTANA_AGENT_PROXY_PASSWORD environment variable.
+  # proxyPassword: null
+  # agent.proxyUseDNS sets the INSTANA_AGENT_PROXY_USE_DNS environment variable.
+  # proxyUseDNS: false
+
+  # use this to set additional environment variables for the instana agent
+  # for example:
+  # env:
+  #   INSTANA_AGENT_TAGS: dev
+  # env: {}
+
+  configuration_yaml: |
+    # Manual a-priori configuration. Configuration will be only used when the sensor
+    # is actually installed by the agent.
+    # The commented out example values represent example configuration and are not
+    # necessarily defaults. Defaults are usually 'absent' or mentioned separately.
+    # Changes are hot reloaded unless otherwise mentioned.
+
+    # It is possible to create files called 'configuration-abc.yaml' which are
+    # merged with this file in file system order. So 'configuration-cde.yaml' comes
+    # after 'configuration-abc.yaml'. Only nested structures are merged, values are
+    # overwritten by subsequent configurations.
+
+    # Secrets
+    # To filter sensitive data from collection by the agent, all sensors respect
+    # the following secrets configuration. If a key collected by a sensor matches
+    # an entry from the list, the value is redacted.
+    #com.instana.secrets:
+    #  matcher: 'contains-ignore-case' # 'contains-ignore-case', 'contains', 'regex'
+    #  list:
+    #    - 'key'
+    #    - 'password'
+    #    - 'secret'
+
+    # Host
+    #com.instana.plugin.host:
+    #  tags:
+    #    - 'dev'
+    #    - 'app1'
+
+  # agent.redactKubernetesSecrets sets the INSTANA_KUBERNETES_REDACT_SECRETS environment variable.
+  # redactKubernetesSecrets: null
+
+  # agent.host.repository sets a host path to be mounted as the agent maven repository (for debugging or development purposes)
+  host:
+    repository: null
+
+  # agent.serviceMesh.enabled sets the ENABLE_AGENT_SOCKET environment variable.
+  serviceMesh:
+    # enabled: true
+
+cluster:
+  # cluster.name represents the name that will be assigned to this cluster in Instana
+  name: null
+
+# openshift specifies whether the cluster role should include openshift permissions and other tweaks to the YAML.
+# The chart will try to auto-detect if the cluster is OpenShift, so you will likely not even need to set this explicitly.
+# openshift: true
+
+# rbac:
+  # Specifies whether RBAC resources should be created
+  # create: true
+
+# opentelemetry:
+  # enabled: false # legacy setting, will only enable grpc, defaults to false
+  # grpc:
+  #   enabled: true # takes precedence over legacy settings above, defaults to true if "grpc:" is present
+  # http:
+  #   enabled: true # allows to enable http endpoints, defaults to true if "http:" is present
+
+# prometheus:
+#   remoteWrite:
+#     enabled: false # If true, it will also apply `service.create=true`
+
+# serviceAccount:
+  # Specifies whether a ServiceAccount should be created
+  # create: true
+  # The name of the ServiceAccount to use.
+  # If not set and `create` is true, a name is generated using the fullname template
+  # name: instana-agent
+  # Annotations to add to the service account
+  # annotations: {}
+
+# podSecurityPolicy:
+  # Specifies whether a PodSecurityPolicy should be authorized for the Instana Agent pods.
+  # Requires `rbac.create` to be `true` as well and K8s version below v1.25.
+  # enable: false
+  # The name of an existing PodSecurityPolicy you would like to authorize for the Instana Agent pods.
+  # If not set and `enable` is true, a PodSecurityPolicy will be created with a name generated using the fullname template.
+  # name: null
+
+zone:
+  # zone.name is the custom zone that detected technologies will be assigned to
+  name: null
+
+# k8s_sensor:
+#   image:
+    # k8s_sensor.image.name is the name of the container image of the Instana agent.
+    # name: icr.io/instana/k8sensor
+    # k8s_sensor.image.digest is the digest (a.k.a. Image ID) of the agent container image; if specified, it has priority over agent.image.tag, which will be ignored.
+    #digest:
+    # k8s_sensor.image.tag is the tag name of the agent container image; if agent.image.digest is specified, this property is ignored.
+    # tag: latest
+    # k8s_sensor.image.pullPolicy specifies when to pull the image container.
+    # pullPolicy: Always
+  # deployment:
+    # Specifies whether or not to enable the Deployment and turn off the Kubernetes sensor in the DaemonSet
+    # enabled: true
+    # Use three replicas to ensure the HA by the default.
+    # replicas: 3
+    # k8s_sensor.deployment.pod adjusts the resource assignments for the agent independently of the DaemonSet agent when k8s_sensor.deployment.enabled=true
+    # pod:
+      # requests:
+        # k8s_sensor.deployment.pod.requests.memory is the requested memory allocation in MiB for the agent pods.
+        # memory: 128Mi
+        # k8s_sensor.deployment.pod.requests.cpu are the requested CPU units allocation for the agent pods.
+        # cpu: 120m
+      # limits:
+        # k8s_sensor.deployment.pod.limits.memory set the memory allocation limits in MiB for the agent pods.
+        # memory: 2048Mi
+        # k8s_sensor.deployment.pod.limits.cpu sets the CPU units allocation limits for the agent pods.
+        # cpu: 500m
+      # affinity:
+        # podAntiAffinity:
+          # Soft anti-affinity policy: try not to schedule multiple kubernetes-sensor pods on the same node.
+          # If the policy is set to "requiredDuringSchedulingIgnoredDuringExecution", if the cluster has
+          # fewer nodes than the amount of desired replicas, `helm install/upgrade --wait` will not return.
+          # preferredDuringSchedulingIgnoredDuringExecution:
+          # - weight: 100
+          #   podAffinityTerm:
+          #     labelSelector:
+          #       matchExpressions:
+          #       - key: instana/agent-mode
+          #         operator: In
+          #         values: [ KUBERNETES ]
+          #     topologyKey: "kubernetes.io/hostname"
+    # The minimum number of seconds for which a newly created Pod should be ready without any of its containers crashing, for it to be considered available
+  #   minReadySeconds: 0
+  # podDisruptionBudget:
+    # Specifies whether or not to setup a pod disruption budget for the k8sensor deployment
+    # enabled: false
+
+# zones:
+#  # Configure use of zones to use tolerations as the basis to associate a specific daemonset per tainted node pool
+#  - name: pool-01
+#    tolerations:
+#    - key: "pool"
+#      operator: "Equal"
+#      value: "pool-01"
+#      effect: "NoExecute"
+#  - name: pool-02
+#    tolerations:
+#    - key: "pool"
+#      operator: "Equal"
+#      value: "pool-02"
+#      effect: "NoExecute"
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-ha/107.104.10/.helmignore b/charts/jfrog/artifactory-ha/107.104.10/.helmignore
new file mode 100644
index 0000000000..b6e97f07fb
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/.helmignore
@@ -0,0 +1,24 @@
+# Patterns to ignore when building packages.
+# This supports shell glob matching, relative path matching, and
+# negation (prefixed with !). Only one pattern per line.
+.DS_Store
+# Common VCS dirs
+.git/
+.gitignore
+.bzr/
+.bzrignore
+.hg/
+.hgignore
+.svn/
+# Common backup files
+*.swp
+*.bak
+*.tmp
+*~
+# Various IDEs
+.project
+.idea/
+*.tmproj
+OWNERS
+
+tests/
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-ha/107.104.10/CHANGELOG.md b/charts/jfrog/artifactory-ha/107.104.10/CHANGELOG.md
new file mode 100644
index 0000000000..2f477c5f4e
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/CHANGELOG.md
@@ -0,0 +1,1515 @@
+# JFrog Artifactory-ha Chart Changelog
+All changes to this chart will be documented in this file
+
+## [107.104.10] - Feb 07, 2025
+* Added new RTFS service
+* Added new Topology service
+* Added new onemodel service
+* Added customVolumeMounts support for frontend,event,evidence,jfconnect,topology,observability containers
+* Added ingress and nginx routing support for rtfs service context
+* Added recommended sizing extraEnvironmentVariables for access container
+* Added default extra javaOpts support in system yaml for topology
+* Modified the RTFS chart and the topology probe values
+* Fixing secret based annotations for RTFS deployment
+* Fixed `shared` block in system.yaml to include all properties
+* Fixed RTFS jfrogUrl issue for platform chart
+* Fixed disabling onemodel using `onemodel.enabled=false`
+* Removed unwanted database support from rtfs
+* Added hpa support for RTFS service
+
+## [107.102.0] - Nov 26, 2024
+* Remove the Xms and Xmx with InitialRAMPercentage and MaxRAMPercentage if they are available in extra_java_options
+
+## [107.98.0] - Nov 06, 2024
+* Add support for `extraEnvironmentVariables` on filebeat Sidecar [GH-1377](https://github.com/jfrog/charts/pull/1377)
+* Support for SSL offload HTTPS proto override in Nginx service (ClusterIP, LoadBalancer) layer. Introduced `nginx.service.ssloffloadForceHttps` field with boolean type. [GH-1906](https://github.com/jfrog/charts/pull/1906)
+* Enable Access workers integration when artifactory.worker.enabled is true
+* Added `signedUrlExpirySeconds` option to artifactory.persistence.type of `google-storage`, `google-storage-v2`, and `google-storage-v2-direct` [GH-1858](https://github.com/jfrog/charts/pull/1858)
+* Added support to bootstrap jfconnect custom certs to jfconnect trusted directory
+* Fixed the type of `.Values.artifactory.persistence.googleStorage.signedUrlExpirySeconds` in binarystore.xml from boolean to integer
+* Added support for modifying `pathType` in ingress
+* Added fix for database credentials secret in non-unified secret installations
+
+## [107.96.0] - Sep 18, 2024
+* Merged Artifactory sizing templates to a single file per size
+* Added metadata and observability standalone image support
+
+## [107.95.0] - Aug 26, 2024
+* Adding missing annotations to primary Artifactory Service [GH-1862](https://github.com/jfrog/charts/pull/1862)
+
+## [107.94.0] - Aug 14, 2024
+* Fixed #Expose rtfs port only when it is enabled
+
+## [107.93.0] - Aug 9, 2024
+* Added support for worker via `artifactory.worker.enabled` flag
+* Fixed creation of duplicate objects in statefulSet
+
+## [107.92.0] - July 31, 2024
+* Updating the example link for downloading the DB driver
+* Adding dedicated ingress and service path for GRPC protocol
+
+## [107.91.0] - July 18, 2024
+* Remove X-JFrog-Override-Base-Url port when using default `443/80` ports
+
+## [107.90.0] - July 18, 2024
+* Fixed #adding colon in image registry which breaks deployment [GH-1892](https://github.com/jfrog/charts/pull/1892)
+* Added new `nginx.hosts` to use Nginx server_name directive instead of `ingress.hosts`
+* Added a deprecation notice of ingress.hosts when `ngnix.enabled` is true
+* Added new evidence service
+* Corrected database connection values based on sizing 
+* **IMPORTANT**
+* Separate access from artifactory tomcat to run on its own dedicated tomcat
+  * With this change access will be running in its own dedicated container
+  * This will give the ability to control resources and java options specific to access
+    Can be done by passing the following,
+    `access.javaOpts.other`
+    `access.resources`
+    `access.extraEnvironmentVariables`
+* Added Binary Provider recommendations
+
+## [107.89.0] - May 30, 2024
+* Fix the indentation of the commented-out sections in the values.yaml file
+
+## [107.88.0] - May 29, 2024
+* **IMPORTANT**
+* Refactored `nginx.artifactoryConf` and `nginx.mainConf` configuration (moved to files/nginx-artifactory-conf.yaml  and files/nginx-main-conf.yaml instead of keys in values.yaml)
+
+## [107.87.0] - May 29, 2024
+* Renamed `.Values.artifactory.openMetrics` to `.Values.artifactory.metrics`
+* Align all liveness and readiness probes (Removed hard-coded values)
+
+## [107.85.0] - May 29, 2024
+* Changed `migration.enabled` to false by default. For 6.x to 7.x migration, this flag needs to be set to `true`
+
+## [107.84.0] - May 29, 2024
+* Added image section for `initContainers` instead of `initContainerImage`
+* Renamed `router.image.imagePullPolicy` to `router.image.pullPolicy`
+* Removed loggers.image section
+* Added support for `global.verisons.initContainers` to override `initContainers.image.tag`
+* Fixed an issue with extraSystemYaml merge
+* **IMPORTANT**
+* Renamed `artifactory.setSecurityContext` to `artifactory.podSecurityContext` 
+* Renamed `artifactory.uid` to `artifactory.podSecurityContext.runAsUser`
+* Renamed `artifactory.gid` to `artifactory.podSecurityContext.runAsGroup` and `artifactory.podSecurityContext.fsGroup`
+* Renamed `artifactory.fsGroupChangePolicy` to `artifactory.podSecurityContext.fsGroupChangePolicy`
+* Renamed `artifactory.seLinuxOptions` to `artifactory.podSecurityContext.seLinuxOptions`
+* Added flag `allowNonPostgresql` defaults to false
+* Update postgresql tag version to `15.6.0-debian-12-r5`
+* Added a check if `initContainerImage` exists
+* Fixed a wrong imagePullPolicy configuration
+* Fixed an issue to generate unified secret to support artifactory fullname [GH-1882](https://github.com/jfrog/charts/issues/1882)
+* Fixed an issue template render on loggers [GH-1883](https://github.com/jfrog/charts/issues/1883)
+* Override metadata and observability image tag with `global.verisons.artifactory` value
+* Fixed resource constraints for "setup" initContainer of nginx deployment [GH-962] (https://github.com/jfrog/charts/issues/962)
+* Added .Values.artifactory.unifiedSecretsPrependReleaseName` for unified secret to prepend release name
+* Fixed maxCacheSize and cacheProviderDir mix up under azure-blob-storage-v2-direct template in binarystore.xml
+
+## [107.83.0] - Mar 12, 2024
+* Added image section for `metadata` and `observability`
+
+## [107.82.0] - Mar 04, 2024
+* Added `disableRouterBypass` flag as experimental feature, to disable the artifactoryPath /artifactory/ and route all traffic through the Router.
+* Removed Replicator Service
+
+## [107.81.0] - Feb 20, 2024
+* **IMPORTANT**
+* Refactored systemYaml configuration (moved to files/system.yaml instead of key in values.yaml)
+* Added ability to provide `extraSystemYaml` configuration in values.yaml which will merge with the existing system yaml when `systemYamlOverride` is not given [GH-1848](https://github.com/jfrog/charts/pull/1848)
+* Added option to modify the new cache configs, maxFileSizeLimit and skipDuringUpload
+* Added IPV4/IPV6 Dualstack flag support for Artifactory and nginx service
+* Added `singleStackIPv6Cluster` flag, which manages the Nginx configuration to enable listening on IPv6 and proxying
+* Fixing broken link for creating additional kubernetes resources. Refer [here](https://github.com/jfrog/log-analytics-prometheus/blob/master/helm/artifactory-ha-values.yaml)
+* Refactored installerInfo configuration (moved to files/installer-info.json instead of key in values.yaml)
+
+## [107.80.0] - Feb 20, 2024
+* Updated README.md to create a namespace using `--create-namespace` as part of helm install
+
+## [107.79.0] - Feb 20, 2024
+* **IMPORTANT**
+* Added `unifiedSecretInstallation` flag which enables single unified secret holding all internal (chart) secrets to `true` by default
+* Added support for azure-blob-storage-v2-direct config
+* Added option to set Nginx to write access_log to container STDOUT
+* **Important change:**
+* Update postgresql tag version to `15.2.0-debian-11-r23`
+* If this is a new deployment or you already use an external database (`postgresql.enabled=false`), these changes **do not affect you**!
+* If this is an upgrade and you are using the default bundles PostgreSQL (`postgresql.enabled=true`), you need to pass previous 9.x/10.x/12.x/13.x's postgresql.image.tag, previous postgresql.persistence.size and databaseUpgradeReady=true
+
+## [107.77.0] - April 22, 2024
+* Removed integration service
+* Added recommended postgresql sizing configurations under sizing directory
+* Updated artifactory-federation (probes, port, embedded mode)
+* **IMPORTANT**
+* setSecurityContext has been renamed to podSecurityContext. 
+* Moved podSecurityContext to values.yaml
+* Fixing broken nginx port [GH-1860](https://github.com/jfrog/charts/issues/1860)
+* Added nginx.customCommand to use custom commands for the nginx container
+
+## [107.76.0] - Dec 13, 2023
+* Added connectionTimeout and socketTimeout paramaters under AWSS3 binarystore section
+* Reduced nginx startupProbe initialDelaySeconds
+
+## [107.74.0] - Nov 30, 2023
+* Added recommended sizing configurations under sizing directory, please refer [here](README.md/#apply-sizing-configurations-to-the-chart)
+* **IMPORTANT**
+* Added min kubeVersion ">= 1.19.0-0" in chart.yaml
+
+## [107.70.0] - Nov 30, 2023
+* Fixed - StatefulSet pod annotations changed from range to toYaml [GH-1828](https://github.com/jfrog/charts/issues/1828)
+* Fixed - Invalid format for awsS3V3 `multiPartLimit,multipartElementSize` in binarystore.xml
+* Fixed - Artifactory primary service condition
+* Fixed - SecurityContext with runAsGroup in artifactory-ha [GH-1838](https://github.com/jfrog/charts/issues/1838)
+* Added support for custom labels in the Nginx pods [GH-1836](https://github.com/jfrog/charts/pull/1836)
+* Added podSecurityContext and containerSecurityContext for nginx
+* Added support for nginx on openshift, set `podSecurityContext` and `containerSecurityContext` to false
+* Renamed nginx internalPort 80,443 to 8080,8443 to support openshift
+
+## [107.69.0] - Sep 18, 2023
+* Adjust rtfs context
+* Fixed - Metadata service does not respect customVolumeMounts for DB CAs [GH-1815](https://github.com/jfrog/charts/issues/1815)
+
+## [107.68.8] - Sep 18, 2023
+* Reverted - Enabled `unifiedSecretInstallation` by default [GH-1819](https://github.com/jfrog/charts/issues/1819)
+* Removed unused `artifactory.javaOpts` from values.yaml
+* Removed openshift condition check from NOTES.txt
+* Fixed an issue with artifactory node replicaCount [GH-1808](https://github.com/jfrog/charts/issues/1808)
+
+## [107.68.7] - Aug 28, 2023
+* Enabled `unifiedSecretInstallation` by default
+* Removed unused `artifactory.javaOpts` from values.yaml
+
+## [107.67.0] - Aug 28, 2023
+* Add 'extraJavaOpts' and 'port' values to federation service
+
+## [107.66.0] - Aug 28, 2023
+* Added federation service container in artifactory
+* Add rtfs service to ingress in artifactory
+
+## [107.64.0] - Aug 28,2023
+* Added support to configure event.webhooks within generated system.yaml
+* Fixed an issue to generate ssl certificate should support artifactory-ha fullname
+* Added 'multiPartLimit' and 'multipartElementSize' parameters to awsS3V3 binary providers.
+* Increased default Artifactory Tomcat acceptCount config to 400
+* Fixed Illegal Strict-Transport-Security header in nginx config
+
+## [107.63.0] - Aug 28, 2023
+* Added support for Openshift by adding the securityContext in container level.
+* **IMPORTANT**
+* Disable securityContext in container and pod level to deploy postgres on openshift.
+* Fixed support for fsGroup in non openshift environment and runAsGroup in openshift environment.
+* Fixed - Helm Template Error when using artifactory.loggers [GH-1791](https://github.com/jfrog/charts/issues/1791)
+* Removed the nginx disable condition for openshift
+* Fixed jfconnect disabling as micro-service on splitcontainers [GH-1806](https://github.com/jfrog/charts/issues/1806)
+
+## [107.62.0] - Jun 5, 2023
+* Added support for 'port' and 'useHttp' parameters for s3-storage-v3 binary provider [GH-1767](https://github.com/jfrog/charts/issues/1767)
+
+## [107.61.0] - May 31, 2023
+* Added new binary provider `google-storage-v2-direct`
+
+## [107.60.0] - May 31, 2023
+* Enabled `splitServicesToContainers` to true by default
+* Updated the recommended values for small, medium and large installations to support the 'splitServicesToContainers'
+
+## [107.59.0] - May 31, 2023
+* Fixed reference of `terminationGracePeriodSeconds`
+* **Breaking change**
+* Updated the defaults of replicaCount (Values.artifactory.primary.replicaCount and Values.artifactory.node.replicaCount) to support Cloud-Native High Availability. Refer [Cloud-Native High Availability](https://jfrog.com/help/r/jfrog-installation-setup-documentation/cloud-native-high-availability)
+* Updated the values of the recommended resources  - values-small, values-medium and values-large according to the Cloud-Native HA support. 
+* **IMPORTANT**
+* In the absence of custom parameters for primary.replicaCount and node.replicaCount on your deployment, it is recommended to specify the current values explicitly to prevent any undesired changes to the deployment structure.
+* Please be advised that the configuration for resources allocation (requests, limits, javaOpts, affinity rules, etc) will now be applied solely under Values.artifactory.primary when using the new defaults.
+* **Upgrade**
+* Upgrade from primary-members to primary-only is recommended, and can be done by deploy the chart with the new values.
+* During the upgrade, members pods should be deleted and new primary pods should be created. This might trigger the creation of new PVCs.
+* Added Support for Cold Artifact Storage as part of the systemYaml configuration (disabled by default)
+* Added new binary provider `s3-storage-v3-archive`
+* Fixed jfconnect disabling as micro-service on non-splitcontainers
+* Fixed an issue whereby, Artifactory failed to start when using persistence storage type `nfs` due to missing binarystore.xml
+
+
+## [107.58.0] - Mar 23, 2023
+* Updated postgresql multi-arch tag version to `13.10.0-debian-11-r14`
+* Removed obselete remove-lost-found initContainer`
+* Added env JF_SHARED_NODE_HAENABLED under frontend when running in the container split mode 
+
+## [107.57.0] - Mar 02, 2023
+* Updated initContainerImage and logger image to `ubi9/ubi-minimal:9.1.0.1793`
+
+## [107.55.0] - Feb 21, 2023
+* Updated initContainerImage and logger image to `ubi9/ubi-minimal:9.1.0.1760`
+* Adding a custom preStop to Artifactory router for allowing graceful termination to complete
+* Fixed an invalid reference of node selector on artifactory-ha chart
+
+## [107.53.0] - Jan 20, 2023
+* Updated initContainerImage and logger image to `ubi8/ubi-minimal:8.7.1049`
+
+## [107.50.0] - Jan 20, 2023
+* Updated postgresql tag version to `13.9.0-debian-11-r11`
+* Fixed make lint issue on artifactory-ha chart [GH-1714](https://github.com/jfrog/charts/issues/1714)
+* Fixed an issue for capabilities check of ingress
+* Updated jfrogUrl text path in migrate.sh file
+* Added a note that from 107.46.x chart versions, `copyOnEveryStartup` is not needed for binarystore.xml, it is always copied via initContainers. For more Info, Refer [GH-1723](https://github.com/jfrog/charts/issues/1723)
+
+## [107.49.0] - Jan 16, 2023
+* Changed logic in wait-for-primary container to use /dev/tcp instead of curl
+* Added support for setting `seLinuxOptions` in `securityContext` [GH-1700](https://github.com/jfrog/charts/pull/1700)
+* Added option to enable/disable proxy_request_buffering and proxy_buffering_off [GH-1686](https://github.com/jfrog/charts/pull/1686)
+* Updated initContainerImage and logger image to `ubi8/ubi-minimal:8.7.1049`
+
+## [107.48.0] - Oct 27, 2022
+* Updated router version to `7.51.0`
+
+## [107.47.0] - Sep 29, 2022
+* Updated initContainerImage to `ubi8/ubi-minimal:8.6-941`
+* Added support for annotations for artifactory statefulset and nginx deployment [GH-1665](https://github.com/jfrog/charts/pull/1665)
+* Updated router version to `7.49.0`
+
+## [107.46.0] - Sep 14, 2022
+* **IMPORTANT**
+* Added support for lifecycle hooks for all containers, changed `artifactory.postStartCommand` to `.Values.artifactory.lifecycle.postStart.exec.command`
+* Updated initContainerImage and logger image to `ubi8/ubi-minimal:8.6-902`
+* Update nginx configuration to allow websocket requests when using pipelines
+* Fixed an issue to allow artifactory to make direct API calls to store  instead via jfconnect service when `splitServicesToContainers=true`
+* Refactor binarystore.xml configuration (moved to `files/binarystore.xml` instead of key in values.yaml)
+* Added new binary providers `s3-storage-v3-direct`, `azure-blob-storage-direct`, `google-storage-v2`
+* Deprecated (removed) `aws-s3` binary provider [JetS3t library](https://www.jfrog.com/confluence/display/JFROG/Configuring+the+Filestore#ConfiguringtheFilestore-BinaryProvider)
+* Deprecated (removed) `google-storage` binary provider and force persistence storage type `google-storage` to work with `google-storage-v2` only
+* Copy binarystore.xml in init Container to fix existing persistence on file system in clear text
+* Removed obselete `.Values.artifactory.binarystore.enabled` key
+* Removed `newProbes.enabled`, default to new probes
+* Added nginx.customCommand using inotifyd to reload nginx's config upon ssl secret or configmap changes [GH-1640](https://github.com/jfrog/charts/pull/1640)
+
+## [107.43.0] - Aug 25, 2022
+* Added flag `artifactory.replicator.ingress.enabled` to enable/disable ingress for replicator
+* Updated initContainerImage and logger image to `ubi8/ubi-minimal:8.6-854`
+* Updated router version to `7.45.0`
+* Added flag `artifactory.schedulerName` to set for the pods the value of schedulerName field [GH-1606](https://github.com/jfrog/charts/issues/1606)
+* Enabled TLS based on access or router in values.yaml
+
+## [107.42.0] - Aug 25, 2022
+* Enabled database creds secret to use from unified secret
+* Updated router version to `7.42.0`
+* Added support to truncate (> 63 chars) for unifiedCustomSecretVolumeName
+
+## [107.41.0] - June 27, 2022
+* Added support for nginx.terminationGracePeriodSeconds [GH-1645](https://github.com/jfrog/charts/issues/1645)
+* Fix nginx lifecycle values [GH-1646](https://github.com/jfrog/charts/pull/1646)
+* Use an alternate command for `find` to copy custom certificates
+* Added support for circle of trust using `circleOfTrustCertificatesSecret` secret name [GH-1623](https://github.com/jfrog/charts/pull/1623)
+
+## [107.40.0] - Jun 16, 2022
+* Deprecated k8s PodDisruptionBudget api policy/v1beta1 [GH-1618](https://github.com/jfrog/charts/issues/1618)
+* Disabled node PodDisruptionBudget, statefulset and artifactory-primary service from artifactory-ha chart when member nodes are 0
+* From artifactory 7.38.x, joinKey can be retrived from Admin > User Management > Settings in UI
+* Fixed template name for artifactory-ha database creds [GH-1602](https://github.com/jfrog/charts/pull/1602)
+* Allow templating for pod annotations [GH-1634](https://github.com/jfrog/charts/pull/1634)
+* Added flags to control enable/disable infra services in splitServicesToContainers
+
+## [107.39.0] - May 16, 2022
+* Fix default `artifactory.async.corePoolSize`  [GH-1612](https://github.com/jfrog/charts/issues/1612)
+* Added support of nginx annotations
+* Reduce startupProbe `initialDelaySeconds`
+* Align all liveness and readiness probes failureThreshold to `5` seconds
+* Added new flag `unifiedSecretInstallation` to enables single unified secret holding all the artifactory-ha secrets
+* Updated router version to `7.38.0`
+
+## [107.38.0] - May 04, 2022
+* Added support for `global.nodeSelector` to artifactory and nginx pods
+* Updated router version to `7.36.1`
+* Added support for custom global probes timeout
+* Updated frontend container command
+* Added topologySpreadConstraints to artifactory and nginx, and add lifecycle hooks to nginx [GH-1596](https://github.com/jfrog/charts/pull/1596)
+* Added support of extraEnvironmentVariables for all infra services containers
+* Enabled the consumption (jfconnect) flag by default
+* Fix jfconnect disabling on non-splitcontainers
+
+## [107.37.0] - Mar 08, 2022
+* Added support for customPorts in nginx deployment
+* Bugfix - Wrong proxy_pass configurations for /artifactory/ in the default artifactory.conf
+* Added signedUrlExpirySeconds option to artifactory.persistence.type aws-S3-V3
+* Updated router version to `7.35.0`
+* Added useInstanceCredentials,enableSignedUrlRedirect option to google-storage-v2
+* Changed dependency charts repo to `charts.jfrog.io`
+
+## [107.36.0] - Mar 03, 2022
+* Remove pdn tracker which starts replicator service
+* Added silent option for curl probes
+* Added readiness health check for the artifactory container for k8s version < 1.20
+* Fix property file migration issue to system.yaml 6.x to 7.x
+
+## [107.35.0] - Feb 08, 2022
+* Updated router version to `7.32.1`
+
+## [107.33.0] - Jan 11, 2022
+* Make default value of anti-affinity to soft
+* Readme fixes
+* Added support for setting `fsGroupChangePolicy`
+* Added nginx customInitContainers, customVolumes, customSidecarContainers [GH-1565](https://github.com/jfrog/charts/pull/1565)
+* Updated router version to `7.30.0`
+
+## [107.32.0] - Dec 23, 2021
+* Updated logger image to `jfrog/ubi-minimal:8.5-204`
+* Added default `8091` as `artifactory.tomcat.maintenanceConnector.port` for probes check
+* Refactored probes to replace httpGet probes with basic exec + curl
+* Refactored `database-creds` secret to create only when database values are passed
+* Added new endpoints for probes `/artifactory/api/v1/system/liveness` and `/artifactory/api/v1/system/readiness`
+* Enabled `newProbes:true` by default to use these endpoints
+* Fix filebeat sidecar spool file permissions
+* Updated filebeat sidecar container to `7.16.2`
+
+## [107.31.0] - Dec 17, 2021
+* Remove integration service feature flag to make it mandatory service
+* Update postgresql tag version to `13.4.0-debian-10-r39`
+* Refactored `router.requiredServiceTypes` to support platform chart
+
+## [107.30.0] - Nov 30, 2021
+* Fixed incorrect permission for filebeat.yaml
+* Updated healthcheck (liveness/readiness) api for integration service
+* Disable readiness health check for the artifactory container when running in the container split mode
+* Ability to start replicator on enabling pdn tracker
+
+## [107.29.0] - Nov 30, 2021
+* Added integration service container in artifactory
+* Add support for Ingress Class Name in Ingress Spec [GH-1516](https://github.com/jfrog/charts/pull/1516)
+* Fixed chart values to use curl instead of wget [GH-1529](https://github.com/jfrog/charts/issues/1529)
+* Updated nginx config to allow websockets when pipelines is enabled
+* Moved router.topology.local.requireqservicetypes from system.yaml to router as environment variable
+* Added jfconnect in system.yaml
+* Updated artifactory container’s health probes to use artifactory api on rt-split
+* Updated initContainerImage to `jfrog/ubi-minimal:8.5-204`
+* Updated router version to `7.28.2`
+* Set Jfconnect enabled to `false` in the artifactory container when running in the container split mode
+
+## [107.28.0] - Nov 11, 2021
+* Added default values cpu and memeory in initContainers
+* Updated router version to `7.26.0`
+* Bug fix - jmx port not exposed in artifactory service
+* Updated (`rbac.create` and `serviceAccount.create` to false by default) for least privileges
+* Fixed incorrect data type for `Values.router.serviceRegistry.insecure` in default values.yaml [GH-1514](https://github.com/jfrog/charts/pull/1514/files)
+* **IMPORTANT**
+* Changed init-container images from `alpine` to `ubi8/ubi-minimal`
+* Added support for AWS License Manager using `.Values.aws.licenseConfigSecretName`
+
+## [107.27.0] - Oct 6, 2021
+* **Breaking change**
+* Aligned probe structure (moved probes variables under config block)
+* Added support for new probes(set to false by default)
+* Bugfix - Invalid format for `multiPartLimit,multipartElementSize,maxCacheSize` in binarystore.xml [GH-1466](https://github.com/jfrog/charts/issues/1466)
+* Added missioncontrol container in artifactory
+* Dropped NET_RAW capability for the containers
+* Added resources to migration-artifactory init container
+* Added resources to all rt split containers
+* Updated router version to `7.25.1`
+* Added support for Ingress networking.k8s.io/v1/Ingress for k8s >=1.22 [GH-1487](https://github.com/jfrog/charts/pull/1487)
+* Added min kubeVersion ">= 1.14.0-0" in chart.yaml
+* Update alpine tag version to `3.14.2`
+* Update busybox tag version to `1.33.1`
+* Update postgresql tag version to `13.4.0-debian-10-r39`
+
+## [107.26.0] - Aug 20, 2021
+* Added Observability container (only when `splitServicesToContainers` is enabled)
+* Added min kubeVersion ">= 1.12.0-0" in chart.yaml
+
+## [107.25.0] - Aug 13, 2021
+* Updated readme of chart to point to wiki. Refer [Installing Artifactory](https://www.jfrog.com/confluence/display/JFROG/Installing+Artifactory)
+* Added startupProbe and livenessProbe for RT-split containers
+* Updated router version to 7.24.1
+* Added security hardening fixes
+* Enabled startup probes for k8s >= 1.20.x
+* Changed network policy to allow all ingress and egress traffic
+* Added Observability changes
+* Added support for global.versions.router (only when `splitServicesToContainers` is enabled)
+
+## [107.24.0] - July 27, 2021
+* Support global and product specific tags at the same time
+* Added support for artifactory containers split
+
+## [107.23.0] - July 8, 2021
+* Bug fix - logger sideCar picks up Wrong File in helm
+* Allow filebeat metrics configuration in values.yaml
+
+## [107.22.0] - July 6, 2021
+* Update alpine tag version to `3.14.0`
+* Added `nodePort` support to artifactory-service and nginx-service templates
+* Removed redundant `terminationGracePeriodSeconds` in statefulset
+* Increased `startupProbe.failureThreshold` time
+
+## [107.21.3] - July 2, 2021
+* Added ability to change sendreasonphrase value in server.xml via system yaml
+
+## [107.19.3] - May 20, 2021
+* Fix broken support for startupProbe for k8s < 1.18.x
+* Removed an extraneous resources block from the prepare-custom-persistent-volume container in the primary statefulset
+* Added support for `nameOverride` and `fullnameOverride` in values.yaml
+
+## [107.18.6] - May 4, 2021
+* Removed `JF_SHARED_NODE_PRIMARY` env to support for Cloud Native HA
+* Bumping chart version to align with app version
+* Add `securityContext` option on nginx container
+
+## [5.0.0] - April 22, 2021
+* **Breaking change:** 
+* Increased default postgresql persistence  size to `200Gi` 
+* Update postgresql tag version to `13.2.0-debian-10-r55`
+* Update postgresql chart version to `10.3.18` in chart.yaml - [10.x Upgrade Notes](https://github.com/bitnami/charts/tree/master/bitnami/postgresql#to-1000)
+* If this is a new deployment or you already use an external database (`postgresql.enabled=false`), these changes **do not affect you**!
+* If this is an upgrade and you are using the default PostgreSQL (`postgresql.enabled=true`), you need to pass previous 9.x/10.x/12.x's postgresql.image.tag, previous postgresql.persistence.size and databaseUpgradeReady=true
+* **IMPORTANT**
+* This chart is only helm v3 compatible
+* Fix support for Cloud Native HA
+* Fixed filebeat-configmap naming
+* Explicitly set ServiceAccount `automountServiceAccountToken` to 'true'
+* Update alpine tag version to `3.13.5`
+
+## [4.13.2] - April 15, 2021
+* Updated Artifactory version to 7.17.9 - [Release Notes](https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.17.9)
+
+## [4.13.1] - April 6, 2021
+* Updated Artifactory version to 7.17.6 - [Release Notes](https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.17.6)
+* Update alpine tag version to `3.13.4`
+
+## [4.13.0] - April 5, 2021
+* **IMPORTANT**
+* Added `charts.jfrog.io` as default JFrog Helm repository
+* Updated Artifactory version to 7.17.5 - [Release Notes](https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.17.5)
+
+## [4.12.2] - Mar 31, 2021
+* Updated Artifactory version to 7.17.4 - [Release Notes](https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.17.4)
+
+## [4.12.1] - Mar 30, 2021
+* Updated Artifactory version to 7.17.3
+* Add `timeoutSeconds` to all exec probes - Please refer [here](https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#configure-probes)
+
+## [4.12.0] - Mar 24, 2021
+* Updated Artifactory version to 7.17.2
+* Optimized startupProbe time
+
+## [4.11.0] - Mar 18, 2021
+* Add support to startupProbe
+
+## [4.10.0] - Mar 15, 2021
+* Updated Artifactory version to 7.16.3
+
+## [4.9.5] - Mar 09, 2021
+* Added HSTS header to nginx conf
+
+## [4.9.4] - Mar 9, 2021
+* Removed bintray URL references in the chart
+
+## [4.9.3] - Mar 04, 2021
+* Updated Artifactory version to 7.15.4 - [Release Notes](https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.15.4)
+
+## [4.9.2] - Mar 04, 2021
+* Fixed creation of nginx-certificate-secret when Nginx is disabled
+
+## [4.9.1] - Feb 19, 2021
+* Update busybox tag version to `1.32.1`
+
+## [4.9.0] - Feb 18, 2021
+* Updated Artifactory version to 7.15.3 - [Release Notes](https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.15.3)
+* Add option to specify update strategy for Artifactory statefulset
+
+## [4.8.1] - Feb 11, 2021
+* Exposed "multiPartLimit" and "multipartElementSize" for the Azure Blob Storage Binary Provider
+
+## [4.8.0] - Feb 08, 2021
+* Updated Artifactory version to 7.12.8 - [Release Notes](https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.12.8)
+* Support for custom certificates using secrets
+* **Important:** Switched docker images download from `docker.bintray.io` to `releases-docker.jfrog.io`
+* Update alpine tag version to `3.13.1`
+
+## [4.7.9] - Feb 3, 2021
+* Fix copyOnEveryStartup for HA cluster license
+
+## [4.7.8] - Jan 25, 2021
+* Add support for hostAliases
+
+## [4.7.7] - Jan 11, 2021
+* Fix failures when using creds file for configurating google storage
+
+## [4.7.6] - Jan 11, 2021
+* Updated Artifactory version to 7.12.6 - [Release Notes](https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.12.6)
+
+## [4.7.5] - Jan 07, 2021
+* Added support for optional tracker dedicated ingress `.Values.artifactory.replicator.trackerIngress.enabled` (defaults to false)
+
+## [4.7.4] - Jan 04, 2021
+* Fixed gid support for statefulset
+
+## [4.7.3] - Dec 31, 2020
+* Added gid support for statefulset
+* Add setSecurityContext flag to allow securityContext block to be removed from artifactory statefulset
+
+## [4.7.2] - Dec 29, 2020
+* **Important:** Removed `.Values.metrics` and `.Values.fluentd` (Fluentd and Prometheus integrations)
+* Add support for creating additional kubernetes resources - [refer here](https://github.com/jfrog/log-analytics-prometheus/blob/master/artifactory-ha-values.yaml)
+* Updated Artifactory version to 7.12.5
+
+## [4.7.1] - Dec 21, 2020
+* Updated Artifactory version to 7.12.3
+
+## [4.7.0] - Dec 18, 2020
+* Updated Artifactory version to 7.12.2
+* Added `.Values.artifactory.openMetrics.enabled`
+
+## [4.6.1] - Dec 11, 2020
+* Added configurable `.Values.global.versions.artifactory` in values.yaml
+
+## [4.6.0] - Dec 10, 2020
+* Update postgresql tag version to `12.5.0-debian-10-r25`
+* Fixed `artifactory.persistence.googleStorage.endpoint` from `storage.googleapis.com` to `commondatastorage.googleapis.com`
+* Updated chart maintainers email
+
+## [4.5.5] - Dec 4, 2020
+* **Important:** Renamed `.Values.systemYaml` to `.Values.systemYamlOverride`
+
+## [4.5.4] - Dec 1, 2020
+* Improve error message returned when attempting helm upgrade command
+
+## [4.5.3] - Nov 30, 2020
+* Updated Artifactory version to 7.11.5 - [Release Notes](https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.11)
+
+# [4.5.2] - Nov 23, 2020
+* Updated Artifactory version to 7.11.2 - [Release Notes](https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.11)
+* Updated port namings on services and pods to allow for istio protocol discovery
+* Change semverCompare checks to support hosted Kubernetes
+* Add flag to disable creation of ServiceMonitor when enabling prometheus metrics
+* Prevent the PostHook command to be executed if the user did not specify a command in the values file
+* Fix issue with tls file generation when nginx.https.enabled is false
+
+## [4.5.1] - Nov 19, 2020
+* Updated Artifactory version to 7.11.2
+* Bugfix - access.config.import.xml override Access Federation configurations
+
+## [4.5.0] - Nov 17, 2020
+* Updated Artifactory version to 7.11.1
+* Update alpine tag version to `3.12.1`
+
+## [4.4.6] - Nov 10, 2020
+* Pass system.yaml via external secret for advanced usecases
+* Added support for custom ingress
+* Bugfix - stateful set not picking up changes to database secrets
+
+## [4.4.5] - Nov 9, 2020
+* Updated Artifactory version to 7.10.6 - [Release Notes](https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.10.6)
+
+## [4.4.4] - Nov 2, 2020
+* Add enablePathStyleAccess property for aws-s3-v3 binary provider template
+
+## [4.4.3] - Nov 2, 2020
+* Updated Artifactory version to 7.10.5 - [Release Notes](https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.10.5)
+
+## [4.4.2] - Oct 22, 2020
+* Chown bug fix where Linux capability cannot chown all files causing log line warnings
+* Fix Frontend timeout linting issue
+
+## [4.4.1] - Oct 20, 2020
+* Add flag to disable prepare-custom-persistent-volume init container
+
+## [4.4.0] - Oct 19, 2020
+* Updated Artifactory version to 7.10.2 - [Release Notes](https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.10.2)
+
+## [4.3.4] - Oct 19, 2020
+* Add support to specify priorityClassName for nginx deployment
+
+## [4.3.3] - Oct 15, 2020
+* Fixed issue with node PodDisruptionBudget which also getting applied on the primary
+* Fix mandatory masterKey check issue when upgrading from 6.x to 7.x
+
+## [4.3.2] - Oct 14, 2020
+* Add support to allow more than 1 Primary in Artifactory-ha STS
+
+## [4.3.1] - Oct 9, 2020
+* Add global support for customInitContainersBegin
+
+## [4.3.0] - Oct 07, 2020
+* Updated Artifactory version to 7.9.1
+* **Breaking change:** Fix `storageClass` to correct `storageClassName` in values.yaml
+
+## [4.2.0] - Oct 5, 2020
+* Expose Prometheus metrics via a ServiceMonitor
+* Parse log files for metric data with Fluentd
+
+## [4.1.0] - Sep 30, 2020
+* Updated Artifactory version to 7.9.0 - [Release Notes](https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.9)
+
+## [4.0.12] - Sep 25, 2020
+* Update to use linux capability CAP_CHOWN instead of root base init container to avoid any use of root containers to pass Redhat security requirements
+
+## [4.0.11] - Sep 28, 2020
+* Setting chart coordinates in migitation yaml
+
+## [4.0.10] - Sep 25, 2020
+* Update filebeat version to `7.9.2`
+
+## [4.0.9] - Sep 24, 2020
+* Fixed broken issue - when setting `waitForDatabase:false` container startup still waits for DB
+
+## [4.0.8] - Sep 22, 2020
+* Updated readme
+
+## [4.0.7] - Sep 22, 2020
+* Fix lint issue in migitation yaml
+
+## [4.0.6] - Sep 22, 2020
+* Fix broken migitation yaml
+
+## [4.0.5] - Sep 21, 2020
+* Added mitigation yaml for Artifactory - [More info](https://github.com/jfrog/chartcenter/blob/master/docs/securitymitigationspec.md)
+
+## [4.0.4] - Sep 17, 2020
+* Added configurable session(UI) timeout in frontend microservice
+
+## [4.0.3] - Sep 17, 2020
+* Fix small typo in README and added proper required text to be shown while postgres upgrades
+
+## [4.0.2] - Sep 14, 2020
+* Updated Artifactory version to 7.7.8 - [Release Notes](https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.7.8)
+
+## [4.0.1] - Sep 8, 2020
+* Added support for artifactory pro license (single node) installation.
+
+## [4.0.0] - Sep 2, 2020
+* **Breaking change:** Changed `imagePullSecrets` value from string to list
+* **Breaking change:** Added `image.registry` and changed `image.version` to `image.tag` for docker images
+* Added support for global values
+* Updated maintainers in chart.yaml
+* Update postgresql tag version to `12.3.0-debian-10-r71`
+* Update postgresqlsub chart version to `9.3.4` - [9.x Upgrade Notes](https://github.com/bitnami/charts/tree/master/bitnami/postgresql#900)
+* **IMPORTANT**
+* If this is a new deployment or you already use an external database (`postgresql.enabled=false`), these changes **do not affect you**!
+* If this is an upgrade and you are using the default PostgreSQL (`postgresql.enabled=true`), you need to pass previous 9.x/10.x's postgresql.image.tag and databaseUpgradeReady=true.
+
+## [3.1.0] - Aug 13, 2020
+* Updated Artifactory version to 7.7.3 - [Release Notes](https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.7)
+
+## [3.0.15] - Aug 10, 2020
+* Added enableSignedUrlRedirect for persistent storage type aws-s3-v3.
+
+## [3.0.14] - Jul 31, 2020
+* Update the README section on Nginx SSL termination to reflect the actual YAML structure.
+
+## [3.0.13] - Jul 30, 2020
+* Added condition to disable the migration scripts.
+
+## [3.0.12] - Jul 29, 2020
+* Document Artifactory node affinity.
+
+## [3.0.11] - Jul 28, 2020
+* Added maxConnections for persistent storage type aws-s3-v3.
+
+## [3.0.10] - Jul 28, 2020
+Bugfix / support for userPluginSecrets with Artifactory 7
+
+## [3.0.9] - Jul 27, 2020
+* Add tpl to external database secrets.
+* Modified `scheme`  to `artifactory-ha.scheme`
+
+## [3.0.8] - Jul 23, 2020
+* Added condition to disable the migration init container.
+
+## [3.0.7] - Jul 21, 2020
+* Updated Artifactory-ha Chart to add node and primary labels to pods and service objects.
+
+## [3.0.6] - Jul 20, 2020
+* Support custom CA and certificates
+
+## [3.0.5] - Jul 13, 2020
+* Updated Artifactory version to 7.6.3 - https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.6.3
+* Fixed Mysql database jar path in `preStartCommand` in README
+
+## [3.0.4] - Jul 8, 2020
+* Move some postgresql values to where they should be according to the subchart
+
+## [3.0.3] - Jul 8, 2020
+* Set Artifactory access client connections to the same value as the access threads.
+
+## [3.0.2] - Jul 6, 2020
+* Updated Artifactory version to 7.6.2
+* **IMPORTANT**
+* Added ChartCenter Helm repository in README
+
+## [3.0.1] - Jul 01, 2020
+* Add dedicated ingress object for Replicator service when enabled
+
+## [3.0.0] - Jun 30, 2020
+* Update postgresql tag version to `10.13.0-debian-10-r38`
+* Update alpine tag version to `3.12`
+* Update busybox tag version to `1.31.1`
+* **IMPORTANT**
+* If this is a new deployment or you already use an external database (`postgresql.enabled=false`), these changes **do not affect you**!
+* If this is an upgrade and you are using the default PostgreSQL (`postgresql.enabled=true`), you need to pass postgresql.image.tag=9.6.18-debian-10-r7 and databaseUpgradeReady=true
+
+## [2.6.0] - Jun 29, 2020
+* Updated Artifactory version to 7.6.1 - https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.6.1
+* Add tpl for external database secrets
+
+## [2.5.8] - Jun 25, 2020
+* Stop loading the Nginx stream module because it is now a core module
+
+## [2.5.7] - Jun 18, 2020
+* Fixes bootstrap configMap issue on member node
+
+## [2.5.6] - Jun 11, 2020
+* Support list of custom secrets
+
+## [2.5.5] - Jun 11, 2020
+* NOTES.txt fixed incorrect information
+
+## [2.5.4] - Jun 12, 2020
+* Updated Artifactory version to 7.5.7 - https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.5.7
+
+## [2.5.3] - Jun 8, 2020
+* Statically setting primary service type to ClusterIP.
+* Prevents primary service from being exposed publicly when using LoadBalancer type on cloud providers.
+
+## [2.5.2] - Jun 8, 2020
+* Readme update - configuring Artifactory with oracledb
+
+## [2.5.1] - Jun 5, 2020
+* Fixes broken PDB issue upgrading from 6.x to 7.x
+
+## [2.5.0] - Jun 1, 2020
+* Updated Artifactory version to 7.5.5 - https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.5
+* Fixes bootstrap configMap permission issue
+* Update postgresql tag version to `9.6.18-debian-10-r7`
+
+## [2.4.10] - May 27, 2020
+* Added Tomcat maxThreads & acceptCount
+
+## [2.4.9] - May 25, 2020
+* Fixed postgresql README `image` Parameters
+
+## [2.4.8] - May 24, 2020
+* Fixed typo in README regarding migration timeout
+
+## [2.4.7] - May 19, 2020
+* Added metadata maxOpenConnections
+
+## [2.4.6] - May 07, 2020
+* Fix `installerInfo` string format
+
+## [2.4.5] - Apr 27, 2020
+* Updated Artifactory version to 7.4.3
+
+## [2.4.4] - Apr 27, 2020
+* Change customInitContainers order to run before the "migration-ha-artifactory" initContainer
+
+## [2.4.3] - Apr 24, 2020
+* Fix `artifactory.persistence.awsS3V3.useInstanceCredentials` incorrect conditional logic
+* Bump postgresql tag version to `9.6.17-debian-10-r72` in values.yaml
+
+## [2.4.2] - Apr 16, 2020
+* Custom volume mounts in migration init container.
+
+## [2.4.1] - Apr 16, 2020
+* Fix broken support for gcpServiceAccount for googleStorage
+
+## [2.4.0] - Apr 14, 2020
+* Updated Artifactory version to 7.4.1
+
+## [2.3.1] - April 13, 2020
+* Update README with helm v3 commands
+
+## [2.3.0] - April 10, 2020
+* Use dependency charts from `https://charts.bitnami.com/bitnami`
+* Bump postgresql chart version to `8.7.3` in requirements.yaml
+* Bump postgresql tag version to `9.6.17-debian-10-r21` in values.yaml
+
+## [2.2.11] - Apr 8, 2020
+* Added recommended ingress annotation to avoid 413 errors
+
+## [2.2.10] - Apr 8, 2020
+* Moved migration scripts under `files` directory
+* Support preStartCommand in migration Init container as `artifactory.migration.preStartCommand`
+
+## [2.2.9] - Apr 01, 2020
+* Support masterKey and joinKey as secrets
+
+## [2.2.8] - Apr 01, 2020
+* Ensure that the join key is also copied when provided by an external secret
+* Migration container in primary and node statefulset now respects custom versions and the specified node/primary resources
+
+## [2.2.7] - Apr 01, 2020
+* Added cache-layer in chain definition of Google Cloud Storage template
+* Fix readme use to `-hex 32` instead of `-hex 16`
+
+## [2.2.6] - Mar 31, 2020
+* Change the way the artifactory `command:` is set so it will properly pass a SIGTERM to java
+
+## [2.2.5] - Mar 31, 2020
+* Removed duplicate `artifactory-license` volume from primary node
+
+## [2.2.4] - Mar 31, 2020
+* Restore `artifactory-license` volume for the primary node
+
+## [2.2.3] - Mar 29, 2020
+* Add Nginx log options: stderr as logfile and log level
+
+## [2.2.2] - Mar 30, 2020
+* Apply initContainers.resources to `copy-system-yaml`, `prepare-custom-persistent-volume`, and `migration-artifactory-ha` containers
+* Use the same defaulting mechanism used for the artifactory version used elsewhere in the chart
+* Removed duplicate `artifactory-license` volume that prevented using an external secret
+
+## [2.2.1] - Mar 29, 2020
+* Fix loggers sidecars configurations to support new file system layout and new log names
+
+## [2.2.0] - Mar 29, 2020
+* Fix broken admin user bootstrap configuration
+* **Breaking change:** renamed `artifactory.accessAdmin` to `artifactory.admin`
+
+## [2.1.3] - Mar 24, 2020
+* Use `postgresqlExtendedConf` for setting custom PostgreSQL configuration (instead of `postgresqlConfiguration`)
+
+## [2.1.2] - Mar 21, 2020
+* Support for SSL offload in Nginx service(LoadBalancer) layer. Introduced `nginx.service.ssloffload` field with boolean type.
+
+## [2.1.1] - Mar 23, 2020
+* Moved installer info to values.yaml so it is fully customizable
+
+## [2.1.0] - Mar 23, 2020
+* Updated Artifactory version to 7.3.2
+
+## [2.0.36] - Mar 20, 2020
+* Add support GCP credentials.json authentication
+
+## [2.0.35] - Mar 20, 2020
+* Add support for masterKey trim during 6.x to 7.x migration if 6.x masterKey is 32 hex (64 characters)
+
+## [2.0.34] - Mar 19, 2020
+* Add support for NFS directories `haBackupDir` and `haDataDir`
+
+## [2.0.33] - Mar 18, 2020
+* Increased Nginx proxy_buffers size
+
+## [2.0.32] - Mar 17, 2020
+* Changed all single quotes to double quotes in values files
+* useInstanceCredentials variable was declared in S3 settings but not used in chart. Now it is being used.
+
+## [2.0.31] - Mar 17, 2020
+* Fix rendering of Service Account annotations
+
+## [2.0.30] - Mar 16, 2020
+* Add Unsupported message from 6.18 to 7.2.x (migration)
+
+## [2.0.29] - Mar 11, 2020
+* Upgrade Docs update
+
+## [2.0.28] - Mar 11, 2020
+* Unified charts public release
+
+## [2.0.27] - Mar 8, 2020
+* Add an optional wait for primary node to be ready with a proper test for http status
+
+## [2.0.23] - Mar 6, 2020
+* Fix path to `/artifactory_bootstrap`
+* Add support for controlling the name of the ingress and allow to set more than one cname
+
+## [2.0.22] - Mar 4, 2020
+* Add support for disabling `consoleLog` in `system.yaml` file
+
+## [2.0.21] - Feb 28, 2020
+* Add support to process `valueFrom` for extraEnvironmentVariables
+
+## [2.0.20] - Feb 26, 2020
+* Store join key to secret
+
+## [2.0.19] - Feb 26, 2020
+* Updated Artifactory version to 7.2.1
+
+## [2.0.12] - Feb 07, 2020
+* Remove protection flag `databaseUpgradeReady` which was added to check internal postgres upgrade
+
+## [2.0.0] - Feb 07, 2020
+* Updated Artifactory version to 7.0.0
+
+## [1.4.10] - Feb 13, 2020
+* Add support for SSH authentication to Artifactory
+
+## [1.4.9] - Feb 10, 2020
+* Fix custom DB password indention
+
+## [1.4.8] - Feb 9, 2020
+* Add support for `tpl` in the `postStartCommand`
+
+## [1.4.7] - Feb 4, 2020
+* Support customisable Nginx kind
+
+## [1.4.6] - Feb 2, 2020
+* Add a comment stating that it is recommended to use an external PostgreSQL with a static password for production installations
+
+## [1.4.5] - Feb 2, 2020
+* Add support for primary or member node specific preStartCommand
+
+## [1.4.4] - Jan 30, 2020
+* Add the option to configure resources for the logger containers
+
+## [1.4.3] - Jan 26, 2020
+* Improve `database.user` and `database.password` logic in order to support more use cases and make the configuration less repetitive
+
+## [1.4.2] - Jan 22, 2020
+* Refined pod disruption budgets to separate nginx and Artifactory pods
+
+## [1.4.1] - Jan 19, 2020
+* Fix replicator port config in nginx replicator configmap
+
+## [1.4.0] - Jan 19, 2020
+* Updated Artifactory version to 6.17.0
+
+## [1.3.8] - Jan 16, 2020
+* Added example for external nginx-ingress
+
+## [1.3.7] - Jan 07, 2020
+* Add support for customizable `mountOptions` of NFS PVs
+
+## [1.3.6] - Dec 30, 2019
+* Fix for nginx probes failing when launched with http disabled
+
+## [1.3.5] - Dec 24, 2019
+* Better support for custom `artifactory.internalPort`
+
+## [1.3.4] - Dec 23, 2019
+* Mark empty map values with `{}`
+
+## [1.3.3] - Dec 16, 2019
+* Another fix for toggling nginx service ports
+
+## [1.3.2] - Dec 12, 2019
+* Fix for toggling nginx service ports
+
+## [1.3.1] - Dec 10, 2019
+* Add support for toggling nginx service ports
+
+## [1.3.0] - Dec 1, 2019
+* Updated Artifactory version to 6.16.0
+
+## [1.2.4] - Nov 28, 2019
+* Add support for using existing PriorityClass
+
+## [1.2.3] - Nov 27, 2019
+* Add support for PriorityClass
+
+## [1.2.2] - Nov 20, 2019
+* Update Artifactory logo
+
+## [1.2.1] - Nov 18, 2019
+* Add the option to provide service account annotations (in order to support stuff like https://docs.aws.amazon.com/eks/latest/userguide/specify-service-account-role.html)
+
+## [1.2.0] - Nov 18, 2019
+* Updated Artifactory version to 6.15.0
+
+## [1.1.12] - Nov 17, 2019
+* Fix `README.md` format (broken table)
+
+## [1.1.11] - Nov 17, 2019
+* Update comment on Artifactory master key
+
+## [1.1.10] - Nov 17, 2019
+* Fix creation of double slash in nginx artifactory configuration
+
+## [1.1.9] - Nov 14, 2019
+* Set explicit `postgresql.postgresqlPassword=""` to avoid helm v3 error
+
+## [1.1.8] - Nov 12, 2019
+* Updated Artifactory version to 6.14.1
+
+## [1.1.7] - Nov 11, 2019
+* Additional documentation for masterKey
+
+## [1.1.6] - Nov 10, 2019
+* Update PostgreSQL chart version to 7.0.1
+* Use formal PostgreSQL configuration format
+
+## [1.1.5] - Nov 8, 2019
+* Add support `artifactory.service.loadBalancerSourceRanges` for whitelisting when setting `artifactory.service.type=LoadBalancer`
+
+## [1.1.4] - Nov 6, 2019
+* Add support for any type of environment variable by using `extraEnvironmentVariables` as-is
+
+## [1.1.3] - Nov 6, 2019
+* Add nodeselector support for Postgresql
+
+## [1.1.2] - Nov 5, 2019
+* Add support for the aws-s3-v3 filestore, which adds support for pod IAM roles
+
+## [1.1.1] - Nov 4, 2019
+* When using `copyOnEveryStartup`, make sure that the target base directories are created before copying the files
+
+## [1.1.0] - Nov 3, 2019
+* Updated Artifactory version to 6.14.0
+
+## [1.0.1] - Nov 3, 2019
+* Make sure the artifactory pod exits when one of the pre-start stages fail
+
+## [1.0.0] - Oct 27, 2019
+**IMPORTANT - BREAKING CHANGES!**<br>
+**DOWNTIME MIGHT BE REQUIRED FOR AN UPGRADE!**
+* If this is a new deployment or you already use an external database (`postgresql.enabled=false`), these changes **do not affect you**!
+* If this is an upgrade and you are using the default PostgreSQL (`postgresql.enabled=true`), must use the upgrade instructions in [UPGRADE_NOTES.md](UPGRADE_NOTES.md)!
+* PostgreSQL sub chart was upgraded to version `6.5.x`. This version is **not backward compatible** with the old version (`0.9.5`)!
+* Note the following **PostgreSQL** Helm chart changes
+  * The chart configuration has changed! See [values.yaml](values.yaml) for the new keys used
+  * **PostgreSQL** is deployed as a StatefulSet
+  * See [PostgreSQL helm chart](https://hub.helm.sh/charts/stable/postgresql) for all available configurations
+
+## [0.17.3] - Oct 24, 2019
+* Change the preStartCommand to support templating
+
+## [0.17.2] - Oct 21, 2019
+* Add support for setting `artifactory.primary.labels`
+* Add support for setting `artifactory.node.labels`
+* Add support for setting `nginx.labels`
+
+## [0.17.1] - Oct 10, 2019
+* Updated Artifactory version to 6.13.1
+
+## [0.17.0] - Oct 7, 2019
+* Updated Artifactory version to 6.13.0
+
+## [0.16.7] - Sep 24, 2019
+* Option to skip wait-for-db init container with '--set waitForDatabase=false'
+
+## [0.16.6] - Sep 24, 2019
+* Add support for setting `nginx.service.labels`
+
+## [0.16.5] - Sep 23, 2019
+* Add support for setting `artifactory.customInitContainersBegin`
+
+## [0.16.4] - Sep 20, 2019
+* Add support for setting `initContainers.resources`
+
+## [0.16.3] - Sep 11, 2019
+* Updated Artifactory version to 6.12.2
+
+## [0.16.2] - Sep 9, 2019
+* Updated Artifactory version to 6.12.1
+
+## [0.16.1] - Aug 22, 2019
+* Fix the nginx server_name directive used with ingress.hosts
+
+## [0.16.0] - Aug 21, 2019
+* Updated Artifactory version to 6.12.0
+
+## [0.15.15] - Aug 18, 2019
+* Fix existingSharedClaim permissions issue and example
+
+## [0.15.14] - Aug 14, 2019
+* Updated Artifactory version to 6.11.6
+
+## [0.15.13] - Aug 11, 2019
+* Fix Ingress routing and add an example
+
+## [0.15.12] - Aug 6, 2019
+* Do not mount `access/etc/bootstrap.creds` unless user specifies a custom password or secret (Access already generates a random password if not provided one)
+* If custom `bootstrap.creds` is provided (using keys or custom secret), prepare it with an init container so the temp file does not persist
+
+## [0.15.11] - Aug 5, 2019
+* Improve binarystore config
+    1. Convert to a secret
+    2. Move config to values.yaml
+    3. Support an external secret
+
+## [0.15.10] - Aug 5, 2019
+* Don't create the nginx configmaps when nginx.enabled is false
+
+## [0.15.9] - Aug 1, 2019
+* Fix masterkey/masterKeySecretName not specified warning render logic in NOTES.txt
+
+## [0.15.8] - Jul 28, 2019
+* Simplify nginx setup and shorten initial wait for probes
+
+## [0.15.7] - Jul 25, 2019
+* Updated README about how to apply Artifactory licenses
+
+## [0.15.6] - Jul 22, 2019
+* Change Ingress API to be compatible with recent kubernetes versions
+
+## [0.15.5] - Jul 22, 2019
+* Updated Artifactory version to 6.11.3
+
+## [0.15.4] - Jul 11, 2019
+* Add `artifactory.customVolumeMounts` support to member node statefulset template
+
+## [0.15.3] - Jul 11, 2019
+* Add ingress.hosts to the Nginx server_name directive when ingress is enabled to help with Docker repository sub domain configuration
+
+## [0.15.2] - Jul 3, 2019
+* Add the option for changing nginx config using values.yaml and remove outdated reverse proxy documentation
+
+## [0.15.1] - Jul 1, 2019
+* Updated Artifactory version to 6.11.1
+
+## [0.15.0] - Jun 27, 2019
+* Updated Artifactory version to 6.11.0 and Restart Primary node when bootstrap.creds file has been modified in artifactory-ha
+
+## [0.14.4] - Jun 24, 2019
+* Add the option to provide an IP for the access-admin endpoints
+
+## [0.14.3] - Jun 24, 2019
+* Update chart maintainers
+
+## [0.14.2] - Jun 24, 2019
+* Change Nginx to point to the artifactory externalPort
+
+## [0.14.1] - Jun 23, 2019
+* Add values files for small, medium and large installations
+
+## [0.14.0] - Jun 20, 2019
+* Use ConfigMaps for nginx configuration and remove nginx postStart command
+
+## [0.13.10] - Jun 19, 2019
+* Updated Artifactory version to 6.10.4
+
+## [0.13.9] - Jun 18, 2019
+* Add the option to provide additional ingress rules
+
+## [0.13.8] - Jun 14, 2019
+* Updated readme with improved external database setup example
+
+## [0.13.7] - Jun 6, 2019
+* Updated Artifactory version to 6.10.3
+* Updated installer-info template
+
+## [0.13.6] - Jun 6, 2019
+* Updated Google Cloud Storage API URL and https settings
+
+## [0.13.5] - Jun 5, 2019
+* Delete the db.properties file on Artifactory startup
+
+## [0.13.4] - Jun 3, 2019
+* Updated Artifactory version to 6.10.2
+
+## [0.13.3] - May 21, 2019
+* Updated Artifactory version to 6.10.1
+
+## [0.13.2] - May 19, 2019
+* Fix missing logger image tag
+
+## [0.13.1] - May 15, 2019
+* Support `artifactory.persistence.cacheProviderDir` for on-premise cluster
+
+## [0.13.0] - May 7, 2019
+* Updated Artifactory version to 6.10.0
+
+## [0.12.23] - May 5, 2019
+* Add support for setting `artifactory.async.corePoolSize`
+
+## [0.12.22] - May 2, 2019
+* Remove unused property `artifactory.releasebundle.feature.enabled`
+
+## [0.12.21] - Apr 30, 2019
+* Add support for JMX monitoring
+
+## [0.12.20] - Apr29, 2019
+* Added support for headless services
+
+## [0.12.19] - Apr 28, 2019
+* Added support for `cacheProviderDir`
+
+## [0.12.18] - Apr 18, 2019
+* Changing API StatefulSet version to `v1` and permission fix for custom `artifactory.conf` for Nginx
+
+## [0.12.17] - Apr 16, 2019
+* Updated documentation for Reverse Proxy Configuration
+
+## [0.12.16] - Apr 12, 2019
+* Added support for `customVolumeMounts`
+
+## [0.12.15] - Aprl 12, 2019
+* Added support for `bucketExists` flag for googleStorage
+
+## [0.12.14] - Apr 11, 2019
+* Replace `curl` examples with `wget` due to the new base image
+
+## [0.12.13] - Aprl 07, 2019
+* Add support for providing the Artifactory license as a parameter
+
+## [0.12.12] - Apr 10, 2019
+* Updated Artifactory version to 6.9.1
+
+## [0.12.11] - Aprl 04, 2019
+* Add support for templated extraEnvironmentVariables
+
+## [0.12.10] - Aprl 07, 2019
+* Change network policy API group
+
+## [0.12.9] - Aprl 04, 2019
+* Apply the existing PVC for members (in addition to primary)
+
+## [0.12.8] - Aprl 03, 2019
+* Bugfix for userPluginSecrets
+
+## [0.12.7] - Apr 4, 2019
+* Add information about upgrading Artifactory with auto-generated postgres password
+
+## [0.12.6] - Aprl 03, 2019
+* Added installer info
+
+## [0.12.5] - Aprl 03, 2019
+* Allow secret names for user plugins to contain template language
+
+## [0.12.4] - Apr 02, 2019
+* Fix issue #253 (use existing PVC for data and backup storage)
+
+## [0.12.3] - Apr 02, 2019
+* Allow NetworkPolicy configurations (defaults to allow all)
+
+## [0.12.2] - Aprl 01, 2019
+* Add support for user plugin secret
+
+## [0.12.1] - Mar 26, 2019
+* Add the option to copy a list of files to ARTIFACTORY_HOME on startup
+
+## [0.12.0] - Mar 26, 2019
+* Updated Artifactory version to 6.9.0
+
+## [0.11.18] - Mar 25, 2019
+* Add CI tests for persistence, ingress support and nginx
+
+## [0.11.17] - Mar 22, 2019
+* Add the option to change the default access-admin password
+
+## [0.11.16] - Mar 22, 2019
+* Added support for `<artifactory|nginx>.<readiness|liveness>Probe.path` to customise the paths used for health probes
+
+## [0.11.15] - Mar 21, 2019
+* Added support for `artifactory.customSidecarContainers` to create custom sidecar containers
+* Added support for `artifactory.customVolumes` to create custom volumes
+
+## [0.11.14] - Mar 21, 2019
+* Make ingress path configurable
+
+## [0.11.13] - Mar 19, 2019
+* Move the copy of bootstrap config from postStart to preStart for Primary
+
+## [0.11.12] - Mar 19, 2019
+* Fix existingClaim example
+
+## [0.11.11] - Mar 18, 2019
+* Disable the option to use nginx PVC with more than one replica
+
+## [0.11.10] - Mar 15, 2019
+* Wait for nginx configuration file before using it
+
+## [0.11.9] - Mar 15, 2019
+* Revert securityContext changes since they were causing issues
+
+## [0.11.8] - Mar 15, 2019
+* Fix issue #247 (init container failing to run)
+
+## [0.11.7] - Mar 14, 2019
+* Updated Artifactory version to 6.8.7
+
+## [0.11.6] - Mar 13, 2019
+* Move securityContext to container level
+
+## [0.11.5] - Mar 11, 2019
+* Add the option to use existing volume claims for Artifactory storage
+
+## [0.11.4] - Mar 11, 2019
+* Updated Artifactory version to 6.8.6
+
+## [0.11.3] - Mar 5, 2019
+* Updated Artifactory version to 6.8.4
+
+## [0.11.2] - Mar 4, 2019
+* Add support for catalina logs sidecars
+
+## [0.11.1] - Feb 27, 2019
+* Updated Artifactory version to 6.8.3
+
+## [0.11.0] - Feb 25, 2019
+* Add nginx support for tail sidecars
+
+## [0.10.3] - Feb 21, 2019
+* Add s3AwsVersion option to awsS3 configuration for use with IAM roles
+
+## [0.10.2] - Feb 19, 2019
+* Updated Artifactory version to 6.8.2
+
+## [0.10.1] - Feb 17, 2019
+* Updated Artifactory version to 6.8.1
+* Add example of `SERVER_XML_EXTRA_CONNECTOR` usage
+
+## [0.10.0] - Feb 15, 2019
+* Updated Artifactory version to 6.8.0
+
+## [0.9.7] - Feb 13, 2019
+* Updated Artifactory version to 6.7.3
+
+## [0.9.6] - Feb 7, 2019
+* Add support for tail sidecars to view logs from k8s api
+
+## [0.9.5] - Feb 6, 2019
+* Fix support for customizing statefulset `terminationGracePeriodSeconds`
+
+## [0.9.4] - Feb 5, 2019
+* Add support for customizing statefulset `terminationGracePeriodSeconds`
+
+## [0.9.3] - Feb 5, 2019
+* Remove the inactive server remove plugin
+
+## [0.9.2] - Feb 3, 2019
+* Updated Artifactory version to 6.7.2
+
+## [0.9.1] - Jan 27, 2019
+* Fix support for Azure Blob Storage Binary provider
+
+## [0.9.0] - Jan 23, 2019
+* Updated Artifactory version to 6.7.0
+
+## [0.8.10] - Jan 22, 2019
+* Added support for `artifactory.customInitContainers` to create custom init containers
+
+## [0.8.9] - Jan 18, 2019
+* Added support of values ingress.labels
+
+## [0.8.8] - Jan 16, 2019
+* Mount replicator.yaml (config) directly to /replicator_extra_conf
+
+## [0.8.7] - Jan 15, 2018
+* Add support for Azure Blob Storage Binary provider
+
+## [0.8.6] - Jan 13, 2019
+* Fix documentation about nginx group id
+
+## [0.8.5] - Jan 13, 2019
+* Updated Artifactory version to 6.6.5
+
+## [0.8.4] - Jan 8, 2019
+* Make artifactory.replicator.publicUrl required when the replicator is enabled
+
+## [0.8.3] - Jan 1, 2019
+* Updated Artifactory version to 6.6.3
+* Add support for `artifactory.extraEnvironmentVariables` to pass more environment variables to Artifactory
+
+## [0.8.2] - Dec 28, 2018
+* Fix location `replicator.yaml` is copied to
+
+## [0.8.1] - Dec 27, 2018
+* Updated Artifactory version to 6.6.1
+
+## [0.8.0] - Dec 20, 2018
+* Updated Artifactory version to 6.6.0
+
+## [0.7.17] - Dec 17, 2018
+* Updated Artifactory version to 6.5.13
+
+## [0.7.16] - Dec 12, 2018
+* Fix documentation about Artifactory license setup using secret
+
+## [0.7.15] - Dec 9, 2018
+* AWS S3 add `roleName` for using IAM role
+
+## [0.7.14] - Dec 6, 2018
+* AWS S3 `identity` and `credential` are now added only if have a value to allow using IAM role
+
+## [0.7.13] - Dec 5, 2018
+* Remove Distribution certificates creation.
+
+## [0.7.12] - Dec 2, 2018
+* Remove Java option "-Dartifactory.locking.provider.type=db". This is already the default setting.
+
+## [0.7.11] - Nov 30, 2018
+* Updated Artifactory version to 6.5.9
+
+## [0.7.10] - Nov 29, 2018
+* Fixed the volumeMount for the replicator.yaml
+
+## [0.7.9] - Nov 29, 2018
+* Optionally include primary node into poddisruptionbudget
+
+## [0.7.8] - Nov 29, 2018
+* Updated postgresql version to 9.6.11
+
+## [0.7.7] - Nov 27, 2018
+* Updated Artifactory version to 6.5.8
+
+## [0.7.6] - Nov 18, 2018
+* Added support for configMap to use custom Reverse Proxy Configuration with Nginx
+
+## [0.7.5] - Nov 14, 2018
+* Updated Artifactory version to 6.5.3
+
+## [0.7.4] - Nov 13, 2018
+* Allow pod anti-affinity settings to include primary node
+
+## [0.7.3] - Nov 12, 2018
+* Support artifactory.preStartCommand for running command before entrypoint starts
+
+## [0.7.2] - Nov 7, 2018
+* Support database.url parameter (DB_URL)
+
+## [0.7.1] - Oct 29, 2018
+* Change probes port to 8040 (so they will not be blocked when all tomcat threads on 8081 are exhausted)
+
+## [0.7.0] - Oct 28, 2018
+* Update postgresql chart to version 0.9.5 to be able and use `postgresConfig` options
+
+## [0.6.9] - Oct 23, 2018
+* Fix providing external secret for database credentials
+
+## [0.6.8] - Oct 22, 2018
+* Allow user to configure externalTrafficPolicy for Loadbalancer
+
+## [0.6.7] - Oct 22, 2018
+* Updated ingress annotation support (with examples) to support docker registry v2
+
+## [0.6.6] - Oct 21, 2018
+* Updated Artifactory version to 6.5.2
+
+## [0.6.5] - Oct 19, 2018
+* Allow providing pre-existing secret containing master key
+* Allow arbitrary annotations on primary and member node pods
+* Enforce size limits when using local storage with `emptyDir`
+* Allow `soft` or `hard` specification of member node anti-affinity
+* Allow providing pre-existing secrets containing external database credentials
+* Fix `s3` binary store provider to properly use the `cache-fs` provider
+* Allow arbitrary properties when using the `s3` binary store provider
+
+## [0.6.4] - Oct 18, 2018
+* Updated Artifactory version to 6.5.1
+
+## [0.6.3] - Oct 17, 2018
+* Add Apache 2.0 license
+
+## [0.6.2] - Oct 14, 2018
+* Make S3 endpoint configurable (was hardcoded with `s3.amazonaws.com`)
+
+## [0.6.1] - Oct 11, 2018
+* Allows ingress default `backend` to be enabled or disabled (defaults to enabled)
+
+## [0.6.0] - Oct 11, 2018
+* Updated Artifactory version to 6.5.0
+
+## [0.5.3] - Oct 9, 2018
+* Quote ingress hosts to support wildcard names
+
+## [0.5.2] - Oct 2, 2018
+* Add `helm repo add jfrog https://charts.jfrog.io` to README
+
+## [0.5.1] - Oct 2, 2018
+* Set Artifactory to 6.4.1
+
+## [0.5.0] - Sep 27, 2018
+* Set Artifactory to 6.4.0
+
+## [0.4.7] - Sep 26, 2018
+* Add ci/test-values.yaml
+
+## [0.4.6] - Sep 25, 2018
+* Add PodDisruptionBudget for member nodes, defaulting to minAvailable of 1
+
+## [0.4.4] - Sep 2, 2018
+* Updated Artifactory version to 6.3.2
+
+## [0.4.0] - Aug 22, 2018
+* Added support to run as non root
+* Updated Artifactory version to 6.2.0
+
+## [0.3.0] - Aug 22, 2018
+* Enabled RBAC Support
+* Added support for PostStartCommand (To download Database JDBC connector)
+* Increased postgresql max_connections
+* Added support for `nginx.conf` ConfigMap
+* Updated Artifactory version to 6.1.0
diff --git a/charts/jfrog/artifactory-ha/107.104.10/Chart.lock b/charts/jfrog/artifactory-ha/107.104.10/Chart.lock
new file mode 100644
index 0000000000..eb94099719
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/Chart.lock
@@ -0,0 +1,6 @@
+dependencies:
+- name: postgresql
+  repository: https://charts.jfrog.io/
+  version: 10.3.18
+digest: sha256:404ce007353baaf92a6c5f24b249d5b336c232e5fd2c29f8a0e4d0095a09fd53
+generated: "2022-03-08T08:54:51.805126+05:30"
diff --git a/charts/jfrog/artifactory-ha/107.104.10/Chart.yaml b/charts/jfrog/artifactory-ha/107.104.10/Chart.yaml
new file mode 100644
index 0000000000..acda1e3b31
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/Chart.yaml
@@ -0,0 +1,33 @@
+annotations:
+  artifactoryServiceVersion: 7.104.18
+  catalog.cattle.io/certified: partner
+  catalog.cattle.io/display-name: JFrog Artifactory HA
+  catalog.cattle.io/featured: "2"
+  catalog.cattle.io/kube-version: '>= 1.19.0-0'
+  catalog.cattle.io/release-name: artifactory-ha
+  metadataVersion: 7.118.2
+  observabilityVersion: 1.31.11
+apiVersion: v2
+appVersion: 7.104.10
+dependencies:
+- condition: postgresql.enabled
+  name: postgresql
+  repository: https://charts.jfrog.io/
+  version: 10.3.18
+description: Universal Repository Manager supporting all major packaging formats,
+  build tools and CI servers.
+home: https://www.jfrog.com/artifactory/
+icon: file://assets/icons/artifactory-ha.png
+keywords:
+- artifactory
+- jfrog
+- devops
+kubeVersion: '>= 1.19.0-0'
+maintainers:
+- email: installers@jfrog.com
+  name: Chart Maintainers at JFrog
+name: artifactory-ha
+sources:
+- https://github.com/jfrog/charts
+type: application
+version: 107.104.10
diff --git a/charts/jfrog/artifactory-ha/107.104.10/LICENSE b/charts/jfrog/artifactory-ha/107.104.10/LICENSE
new file mode 100644
index 0000000000..8dada3edaf
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/LICENSE
@@ -0,0 +1,201 @@
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   APPENDIX: How to apply the Apache License to your work.
+
+      To apply the Apache License to your work, attach the following
+      boilerplate notice, with the fields enclosed by brackets "{}"
+      replaced with your own identifying information. (Don't include
+      the brackets!)  The text should be enclosed in the appropriate
+      comment syntax for the file format. We also recommend that a
+      file or class name and description of purpose be included on the
+      same "printed page" as the copyright notice for easier
+      identification within third-party archives.
+
+   Copyright {yyyy} {name of copyright owner}
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
diff --git a/charts/jfrog/artifactory-ha/107.104.10/README.md b/charts/jfrog/artifactory-ha/107.104.10/README.md
new file mode 100644
index 0000000000..e0ef540164
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/README.md
@@ -0,0 +1,69 @@
+# JFrog Artifactory High Availability Helm Chart
+
+**IMPORTANT!** Our Helm Chart docs have moved to our main documentation site. Below you will find the basic instructions for installing, uninstalling, and deleting Artifactory. For all other information, refer to [Installing Artifactory - Helm HA Installation](https://www.jfrog.com/confluence/display/JFROG/Installing+Artifactory#InstallingArtifactory-HelmHAInstallation).
+
+**Note:** From Artifactory 7.17.4 and above, the Helm HA installation can be installed so that each node you install can run all tasks in the cluster.
+
+Below you will find the basic instructions for installing, uninstalling, and deleting Artifactory. For all other information, refer to the documentation site.
+
+## Prerequisites Details
+
+* Kubernetes 1.19+
+* Artifactory HA license
+
+## Chart Details
+This chart will do the following:
+
+* Deploy Artifactory highly available cluster. 3 primary nodes.
+* Deploy a PostgreSQL database  **NOTE:** For production grade installations it is recommended to use an external PostgreSQL
+* Deploy an Nginx server
+
+## Installing the Chart
+
+### Add JFrog Helm repository
+
+Before installing JFrog helm charts, you need to add the [JFrog helm repository](https://charts.jfrog.io) to your helm client
+
+```bash
+helm repo add jfrog https://charts.jfrog.io
+```
+2. Next, create a unique Master Key (Artifactory requires a unique master key) and pass it to the template during installation.
+3. Now, update the repository.
+
+```bash
+helm repo update
+```
+
+### Install Chart
+To install the chart with the release name `artifactory`:
+```bash
+helm upgrade --install artifactory-ha jfrog/artifactory-ha --namespace artifactory-ha --create-namespace
+```
+
+### Apply Sizing configurations to the Chart
+To apply the chart with recommended sizing configurations :
+For small configurations :
+```bash
+helm upgrade --install artifactory-ha jfrog/artifactory-ha -f sizing/artifactory-small.yaml --namespace artifactory-ha --create-namespace
+```
+
+## Uninstalling Artifactory
+
+Uninstall is supported only on Helm v3 and on.
+
+Uninstall Artifactory using the following command.
+
+```bash
+helm uninstall artifactory-ha && sleep 90 && kubectl delete pvc -l app=artifactory-ha
+```
+
+## Deleting Artifactory
+
+**IMPORTANT:** Deleting Artifactory will also delete your data volumes and you will lose all of your data. You must back up all this information before deletion. You do not need to uninstall Artifactory before deleting it.
+
+To delete Artifactory use the following command.
+
+```bash
+helm delete artifactory-ha --namespace artifactory-ha
+```
+
diff --git a/charts/jfrog/artifactory-ha/107.104.10/app-readme.md b/charts/jfrog/artifactory-ha/107.104.10/app-readme.md
new file mode 100644
index 0000000000..a5aa5fd478
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/app-readme.md
@@ -0,0 +1,16 @@
+# JFrog Artifactory High Availability Helm Chart
+
+Universal Repository Manager supporting all major packaging formats, build tools and CI servers.
+
+## Chart Details
+This chart will do the following:
+
+* Deploy Artifactory highly available cluster. 1 primary node and 2 member nodes.
+* Deploy a PostgreSQL database
+* Deploy an Nginx server(optional)
+
+## Useful links
+Blog: [Herd Trust Into Your Rancher Labs Multi-Cloud Strategy with Artifactory](https://jfrog.com/blog/herd-trust-into-your-rancher-labs-multi-cloud-strategy-with-artifactory/)
+
+## Activate Your Artifactory Instance 
+Don't have a license? Please send an email to [rancher-jfrog-licenses@jfrog.com](mailto:rancher-jfrog-licenses@jfrog.com) to get it.
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/.helmignore b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/.helmignore
new file mode 100644
index 0000000000..f0c1319444
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/.helmignore
@@ -0,0 +1,21 @@
+# Patterns to ignore when building packages.
+# This supports shell glob matching, relative path matching, and
+# negation (prefixed with !). Only one pattern per line.
+.DS_Store
+# Common VCS dirs
+.git/
+.gitignore
+.bzr/
+.bzrignore
+.hg/
+.hgignore
+.svn/
+# Common backup files
+*.swp
+*.bak
+*.tmp
+*~
+# Various IDEs
+.project
+.idea/
+*.tmproj
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/Chart.lock b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/Chart.lock
new file mode 100644
index 0000000000..3687f52df5
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/Chart.lock
@@ -0,0 +1,6 @@
+dependencies:
+- name: common
+  repository: https://charts.bitnami.com/bitnami
+  version: 1.4.2
+digest: sha256:dce0349883107e3ff103f4f17d3af4ad1ea3c7993551b1c28865867d3e53d37c
+generated: "2021-03-30T09:13:28.360322819Z"
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/Chart.yaml b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/Chart.yaml
new file mode 100644
index 0000000000..4b197b2071
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/Chart.yaml
@@ -0,0 +1,29 @@
+annotations:
+  category: Database
+apiVersion: v2
+appVersion: 11.11.0
+dependencies:
+- name: common
+  repository: https://charts.bitnami.com/bitnami
+  version: 1.x.x
+description: Chart for PostgreSQL, an object-relational database management system
+  (ORDBMS) with an emphasis on extensibility and on standards-compliance.
+home: https://github.com/bitnami/charts/tree/master/bitnami/postgresql
+icon: https://bitnami.com/assets/stacks/postgresql/img/postgresql-stack-220x234.png
+keywords:
+- postgresql
+- postgres
+- database
+- sql
+- replication
+- cluster
+maintainers:
+- email: containers@bitnami.com
+  name: Bitnami
+- email: cedric@desaintmartin.fr
+  name: desaintmartin
+name: postgresql
+sources:
+- https://github.com/bitnami/bitnami-docker-postgresql
+- https://www.postgresql.org/
+version: 10.3.18
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/README.md b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/README.md
new file mode 100644
index 0000000000..63d3605bb8
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/README.md
@@ -0,0 +1,770 @@
+# PostgreSQL
+
+[PostgreSQL](https://www.postgresql.org/) is an object-relational database management system (ORDBMS) with an emphasis on extensibility and on standards-compliance.
+
+For HA, please see [this repo](https://github.com/bitnami/charts/tree/master/bitnami/postgresql-ha)
+
+## TL;DR
+
+```console
+$ helm repo add bitnami https://charts.bitnami.com/bitnami
+$ helm install my-release bitnami/postgresql
+```
+
+## Introduction
+
+This chart bootstraps a [PostgreSQL](https://github.com/bitnami/bitnami-docker-postgresql) deployment on a [Kubernetes](http://kubernetes.io) cluster using the [Helm](https://helm.sh) package manager.
+
+Bitnami charts can be used with [Kubeapps](https://kubeapps.com/) for deployment and management of Helm Charts in clusters. This chart has been tested to work with NGINX Ingress, cert-manager, fluentd and Prometheus on top of the [BKPR](https://kubeprod.io/).
+
+## Prerequisites
+
+- Kubernetes 1.12+
+- Helm 3.1.0
+- PV provisioner support in the underlying infrastructure
+
+## Installing the Chart
+To install the chart with the release name `my-release`:
+
+```console
+$ helm install my-release bitnami/postgresql
+```
+
+The command deploys PostgreSQL on the Kubernetes cluster in the default configuration. The [Parameters](#parameters) section lists the parameters that can be configured during installation.
+
+> **Tip**: List all releases using `helm list`
+
+## Uninstalling the Chart
+
+To uninstall/delete the `my-release` deployment:
+
+```console
+$ helm delete my-release
+```
+
+The command removes all the Kubernetes components but PVC's associated with the chart and deletes the release.
+
+To delete the PVC's associated with `my-release`:
+
+```console
+$ kubectl delete pvc -l release=my-release
+```
+
+> **Note**: Deleting the PVC's will delete postgresql data as well. Please be cautious before doing it.
+
+## Parameters
+
+The following tables lists the configurable parameters of the PostgreSQL chart and their default values.
+
+| Parameter                                     | Description                                                                                                                                                                                                                                                                                                                                                                                                                                                                | Default                                                       |
+|-----------------------------------------------|----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|---------------------------------------------------------------|
+| `global.imageRegistry`                        | Global Docker Image registry                                                                                                                                                                                                                                                                                                                                                                                                                                               | `nil`                                                         |
+| `global.postgresql.postgresqlDatabase`        | PostgreSQL database (overrides `postgresqlDatabase`)                                                                                                                                                                                                                                                                                                                                                                                                                       | `nil`                                                         |
+| `global.postgresql.postgresqlUsername`        | PostgreSQL username (overrides `postgresqlUsername`)                                                                                                                                                                                                                                                                                                                                                                                                                       | `nil`                                                         |
+| `global.postgresql.existingSecret`            | Name of existing secret to use for PostgreSQL passwords (overrides `existingSecret`)                                                                                                                                                                                                                                                                                                                                                                                       | `nil`                                                         |
+| `global.postgresql.postgresqlPassword`        | PostgreSQL admin password (overrides `postgresqlPassword`)                                                                                                                                                                                                                                                                                                                                                                                                                 | `nil`                                                         |
+| `global.postgresql.servicePort`               | PostgreSQL port (overrides `service.port`)                                                                                                                                                                                                                                                                                                                                                                                                                                 | `nil`                                                         |
+| `global.postgresql.replicationPassword`       | Replication user password (overrides `replication.password`)                                                                                                                                                                                                                                                                                                                                                                                                               | `nil`                                                         |
+| `global.imagePullSecrets`                     | Global Docker registry secret names as an array                                                                                                                                                                                                                                                                                                                                                                                                                            | `[]` (does not add image pull secrets to deployed pods)       |
+| `global.storageClass`                         | Global storage class for dynamic provisioning                                                                                                                                                                                                                                                                                                                                                                                                                              | `nil`                                                         |
+| `image.registry`                              | PostgreSQL Image registry                                                                                                                                                                                                                                                                                                                                                                                                                                                  | `docker.io`                                                   |
+| `image.repository`                            | PostgreSQL Image name                                                                                                                                                                                                                                                                                                                                                                                                                                                      | `bitnami/postgresql`                                          |
+| `image.tag`                                   | PostgreSQL Image tag                                                                                                                                                                                                                                                                                                                                                                                                                                                       | `{TAG_NAME}`                                                  |
+| `image.pullPolicy`                            | PostgreSQL Image pull policy                                                                                                                                                                                                                                                                                                                                                                                                                                               | `IfNotPresent`                                                |
+| `image.pullSecrets`                           | Specify Image pull secrets                                                                                                                                                                                                                                                                                                                                                                                                                                                 | `nil` (does not add image pull secrets to deployed pods)      |
+| `image.debug`                                 | Specify if debug values should be set                                                                                                                                                                                                                                                                                                                                                                                                                                      | `false`                                                       |
+| `nameOverride`                                | String to partially override common.names.fullname template with a string (will prepend the release name)                                                                                                                                                                                                                                                                                                                                                                    | `nil`                                                         |
+| `fullnameOverride`                            | String to fully override common.names.fullname template with a string                                                                                                                                                                                                                                                                                                                                                                                                        | `nil`                                                         |
+| `volumePermissions.enabled`                   | Enable init container that changes volume permissions in the data directory (for cases where the default k8s `runAsUser` and `fsUser` values do not work)                                                                                                                                                                                                                                                                                                                  | `false`                                                       |
+| `volumePermissions.image.registry`            | Init container volume-permissions image registry                                                                                                                                                                                                                                                                                                                                                                                                                           | `docker.io`                                                   |
+| `volumePermissions.image.repository`          | Init container volume-permissions image name                                                                                                                                                                                                                                                                                                                                                                                                                               | `bitnami/bitnami-shell`                                       |
+| `volumePermissions.image.tag`                 | Init container volume-permissions image tag                                                                                                                                                                                                                                                                                                                                                                                                                                | `"10"`                                                        |
+| `volumePermissions.image.pullPolicy`          | Init container volume-permissions image pull policy                                                                                                                                                                                                                                                                                                                                                                                                                        | `Always`                                                      |
+| `volumePermissions.securityContext.*`         | Other container security context to be included as-is in the container spec                                                                                                                                                                                                                                                                                                                                                                                                | `{}`                                                          |
+| `volumePermissions.securityContext.runAsUser` | User ID for the init container (when facing issues in OpenShift or uid unknown, try value "auto")                                                                                                                                                                                                                                                                                                                                                                          | `0`                                                           |
+| `usePasswordFile`                             | Have the secrets mounted as a file instead of env vars                                                                                                                                                                                                                                                                                                                                                                                                                     | `false`                                                       |
+| `ldap.enabled`                                | Enable LDAP support                                                                                                                                                                                                                                                                                                                                                                                                                                                        | `false`                                                       |
+| `ldap.existingSecret`                         | Name of existing secret to use for LDAP passwords                                                                                                                                                                                                                                                                                                                                                                                                                          | `nil`                                                         |
+| `ldap.url`                                    | LDAP URL beginning in the form `ldap[s]://host[:port]/basedn[?[attribute][?[scope][?[filter]]]]`                                                                                                                                                                                                                                                                                                                                                                           | `nil`                                                         |
+| `ldap.server`                                 | IP address or name of the LDAP server.                                                                                                                                                                                                                                                                                                                                                                                                                                     | `nil`                                                         |
+| `ldap.port`                                   | Port number on the LDAP server to connect to                                                                                                                                                                                                                                                                                                                                                                                                                               | `nil`                                                         |
+| `ldap.scheme`                                 | Set to `ldaps` to use LDAPS.                                                                                                                                                                                                                                                                                                                                                                                                                                               | `nil`                                                         |
+| `ldap.tls`                                    | Set to `1` to use TLS encryption                                                                                                                                                                                                                                                                                                                                                                                                                                           | `nil`                                                         |
+| `ldap.prefix`                                 | String to prepend to the user name when forming the DN to bind                                                                                                                                                                                                                                                                                                                                                                                                             | `nil`                                                         |
+| `ldap.suffix`                                 | String to append to the user name when forming the DN to bind                                                                                                                                                                                                                                                                                                                                                                                                              | `nil`                                                         |
+| `ldap.search_attr`                            | Attribute to match against the user name in the search                                                                                                                                                                                                                                                                                                                                                                                                                      | `nil`                                                         |
+| `ldap.search_filter`                          | The search filter to use when doing search+bind authentication                                                                                                                                                                                                                                                                                                                                                                                                             | `nil`                                                         |
+| `ldap.baseDN`                                 | Root DN to begin the search for the user in                                                                                                                                                                                                                                                                                                                                                                                                                                | `nil`                                                         |
+| `ldap.bindDN`                                 | DN of user to bind to LDAP                                                                                                                                                                                                                                                                                                                                                                                                                                                 | `nil`                                                         |
+| `ldap.bind_password`                          | Password for the user to bind to LDAP                                                                                                                                                                                                                                                                                                                                                                                                                                      | `nil`                                                         |
+| `replication.enabled`                         | Enable replication                                                                                                                                                                                                                                                                                                                                                                                                                                                         | `false`                                                       |
+| `replication.user`                            | Replication user                                                                                                                                                                                                                                                                                                                                                                                                                                                           | `repl_user`                                                   |
+| `replication.password`                        | Replication user password                                                                                                                                                                                                                                                                                                                                                                                                                                                  | `repl_password`                                               |
+| `replication.readReplicas`                    | Number of read replicas replicas                                                                                                                                                                                                                                                                                                                                                                                                                                                  | `1`                                                           |
+| `replication.synchronousCommit`               | Set synchronous commit mode. Allowed values: `on`, `remote_apply`, `remote_write`, `local` and `off`                                                                                                                                                                                                                                                                                                                                                                       | `off`                                                         |
+| `replication.numSynchronousReplicas`          | Number of replicas that will have synchronous replication. Note: Cannot be greater than `replication.readReplicas`.                                                                                                                                                                                                                                                                                                                                                       | `0`                                                           |
+| `replication.applicationName`                 | Cluster application name. Useful for advanced replication settings                                                                                                                                                                                                                                                                                                                                                                                                         | `my_application`                                              |
+| `existingSecret`                              | Name of existing secret to use for PostgreSQL passwords. The secret has to contain the keys `postgresql-password` which is the password for `postgresqlUsername` when it is different of `postgres`, `postgresql-postgres-password` which will override `postgresqlPassword`, `postgresql-replication-password` which will override `replication.password` and `postgresql-ldap-password` which will be used to authenticate on LDAP. The value is evaluated as a template. | `nil`                                                         |
+| `postgresqlPostgresPassword`                  | PostgreSQL admin password (used when `postgresqlUsername` is not `postgres`, in which case`postgres` is the admin username).                                                                                                                                                                                                                                                                                                                                               | _random 10 character alphanumeric string_                     |
+| `postgresqlUsername`                          | PostgreSQL user (creates a non-admin user when `postgresqlUsername` is not `postgres`)                                                                                                                                                                                                                                                                                                                                                                                     | `postgres`                                                    |
+| `postgresqlPassword`                          | PostgreSQL user password                                                                                                                                                                                                                                                                                                                                                                                                                                                   | _random 10 character alphanumeric string_                     |
+| `postgresqlDatabase`                          | PostgreSQL database                                                                                                                                                                                                                                                                                                                                                                                                                                                        | `nil`                                                         |
+| `postgresqlDataDir`                           | PostgreSQL data dir folder                                                                                                                                                                                                                                                                                                                                                                                                                                                 | `/bitnami/postgresql` (same value as persistence.mountPath)   |
+| `extraEnv`                                    | Any extra environment variables you would like to pass on to the pod. The value is evaluated as a template.                                                                                                                                                                                                                                                                                                                                                                | `[]`                                                          |
+| `extraEnvVarsCM`                              | Name of a Config Map containing extra environment variables you would like to pass on to the pod. The value is evaluated as a template.                                                                                                                                                                                                                                                                                                                                    | `nil`                                                         |
+| `postgresqlInitdbArgs`                        | PostgreSQL initdb extra arguments                                                                                                                                                                                                                                                                                                                                                                                                                                          | `nil`                                                         |
+| `postgresqlInitdbWalDir`                      | PostgreSQL location for transaction log                                                                                                                                                                                                                                                                                                                                                                                                                                    | `nil`                                                         |
+| `postgresqlConfiguration`                     | Runtime Config Parameters                                                                                                                                                                                                                                                                                                                                                                                                                                                  | `nil`                                                         |
+| `postgresqlExtendedConf`                      | Extended Runtime Config Parameters (appended to main or default configuration)                                                                                                                                                                                                                                                                                                                                                                                             | `nil`                                                         |
+| `pgHbaConfiguration`                          | Content of pg_hba.conf                                                                                                                                                                                                                                                                                                                                                                                                                                                     | `nil (do not create pg_hba.conf)`                             |
+| `postgresqlSharedPreloadLibraries`            | Shared preload libraries (comma-separated list)                                                                                                                                                                                                                                                                                                                                                                                                                            | `pgaudit`                                                     |
+| `postgresqlMaxConnections`                    | Maximum total connections                                                                                                                                                                                                                                                                                                                                                                                                                                                  | `nil`                                                         |
+| `postgresqlPostgresConnectionLimit`           | Maximum total connections for the postgres user                                                                                                                                                                                                                                                                                                                                                                                                                            | `nil`                                                         |
+| `postgresqlDbUserConnectionLimit`             | Maximum total connections for the non-admin user                                                                                                                                                                                                                                                                                                                                                                                                                           | `nil`                                                         |
+| `postgresqlTcpKeepalivesInterval`             | TCP keepalives interval                                                                                                                                                                                                                                                                                                                                                                                                                                                    | `nil`                                                         |
+| `postgresqlTcpKeepalivesIdle`                 | TCP keepalives idle                                                                                                                                                                                                                                                                                                                                                                                                                                                        | `nil`                                                         |
+| `postgresqlTcpKeepalivesCount`                | TCP keepalives count                                                                                                                                                                                                                                                                                                                                                                                                                                                       | `nil`                                                         |
+| `postgresqlStatementTimeout`                  | Statement timeout                                                                                                                                                                                                                                                                                                                                                                                                                                                          | `nil`                                                         |
+| `postgresqlPghbaRemoveFilters`                | Comma-separated list of patterns to remove from the pg_hba.conf file                                                                                                                                                                                                                                                                                                                                                                                                       | `nil`                                                         |
+| `customStartupProbe`                          | Override default startup probe                                                                                                                                                                                                                                                                                                                                                                                                                                             | `nil`                                                         |
+| `customLivenessProbe`                         | Override default liveness probe                                                                                                                                                                                                                                                                                                                                                                                                                                            | `nil`                                                         |
+| `customReadinessProbe`                        | Override default readiness probe                                                                                                                                                                                                                                                                                                                                                                                                                                           | `nil`                                                         |
+| `audit.logHostname`                           | Add client hostnames to the log file                                                                                                                                                                                                                                                                                                                                                                                                                                       | `false`                                                       |
+| `audit.logConnections`                        | Add client log-in operations to the log file                                                                                                                                                                                                                                                                                                                                                                                                                               | `false`                                                       |
+| `audit.logDisconnections`                     | Add client log-outs operations to the log file                                                                                                                                                                                                                                                                                                                                                                                                                             | `false`                                                       |
+| `audit.pgAuditLog`                            | Add operations to log using the pgAudit extension                                                                                                                                                                                                                                                                                                                                                                                                                          | `nil`                                                         |
+| `audit.clientMinMessages`                     | Message log level to share with the user                                                                                                                                                                                                                                                                                                                                                                                                                                   | `nil`                                                         |
+| `audit.logLinePrefix`                         | Template string for the log line prefix                                                                                                                                                                                                                                                                                                                                                                                                                                    | `nil`                                                         |
+| `audit.logTimezone`                           | Timezone for the log timestamps                                                                                                                                                                                                                                                                                                                                                                                                                                            | `nil`                                                         |
+| `configurationConfigMap`                      | ConfigMap with the PostgreSQL configuration files (Note: Overrides `postgresqlConfiguration` and `pgHbaConfiguration`). The value is evaluated as a template.                                                                                                                                                                                                                                                                                                              | `nil`                                                         |
+| `extendedConfConfigMap`                       | ConfigMap with the extended PostgreSQL configuration files. The value is evaluated as a template.                                                                                                                                                                                                                                                                                                                                                                          | `nil`                                                         |
+| `initdbScripts`                               | Dictionary of initdb scripts                                                                                                                                                                                                                                                                                                                                                                                                                                               | `nil`                                                         |
+| `initdbUser`                                  | PostgreSQL user to execute the .sql and sql.gz scripts                                                                                                                                                                                                                                                                                                                                                                                                                     | `nil`                                                         |
+| `initdbPassword`                              | Password for the user specified in `initdbUser`                                                                                                                                                                                                                                                                                                                                                                                                                            | `nil`                                                         |
+| `initdbScriptsConfigMap`                      | ConfigMap with the initdb scripts (Note: Overrides `initdbScripts`). The value is evaluated as a template.                                                                                                                                                                                                                                                                                                                                                                 | `nil`                                                         |
+| `initdbScriptsSecret`                         | Secret with initdb scripts that contain sensitive information (Note: can be used with `initdbScriptsConfigMap` or `initdbScripts`). The value is evaluated as a template.                                                                                                                                                                                                                                                                                                  | `nil`                                                         |
+| `service.type`                                | Kubernetes Service type                                                                                                                                                                                                                                                                                                                                                                                                                                                    | `ClusterIP`                                                   |
+| `service.port`                                | PostgreSQL port                                                                                                                                                                                                                                                                                                                                                                                                                                                            | `5432`                                                        |
+| `service.nodePort`                            | Kubernetes Service nodePort                                                                                                                                                                                                                                                                                                                                                                                                                                                | `nil`                                                         |
+| `service.annotations`                         | Annotations for PostgreSQL service                                                                                                                                                                                                                                                                                                                                                                                                                                         | `{}` (evaluated as a template)                                |
+| `service.loadBalancerIP`                      | loadBalancerIP if service type is `LoadBalancer`                                                                                                                                                                                                                                                                                                                                                                                                                           | `nil`                                                         |
+| `service.loadBalancerSourceRanges`            | Address that are allowed when svc is LoadBalancer                                                                                                                                                                                                                                                                                                                                                                                                                          | `[]` (evaluated as a template)                                |
+| `schedulerName`                               | Name of the k8s scheduler (other than default)                                                                                                                                                                                                                                                                                                                                                                                                                             | `nil`                                                         |
+| `shmVolume.enabled`                           | Enable emptyDir volume for /dev/shm for primary and read replica(s) Pod(s)                                                                                                                                                                                                                                                                                                                                                                                                         | `true`                                                        |
+| `shmVolume.chmod.enabled`                     | Run at init chmod 777 of the /dev/shm (ignored if `volumePermissions.enabled` is `false`)                                                                                                                                                                                                                                                                                                                                                                                  | `true`                                                        |
+| `persistence.enabled`                         | Enable persistence using PVC                                                                                                                                                                                                                                                                                                                                                                                                                                               | `true`                                                        |
+| `persistence.existingClaim`                   | Provide an existing `PersistentVolumeClaim`, the value is evaluated as a template.                                                                                                                                                                                                                                                                                                                                                                                         | `nil`                                                         |
+| `persistence.mountPath`                       | Path to mount the volume at                                                                                                                                                                                                                                                                                                                                                                                                                                                | `/bitnami/postgresql`                                         |
+| `persistence.subPath`                         | Subdirectory of the volume to mount at                                                                                                                                                                                                                                                                                                                                                                                                                                     | `""`                                                          |
+| `persistence.storageClass`                    | PVC Storage Class for PostgreSQL volume                                                                                                                                                                                                                                                                                                                                                                                                                                    | `nil`                                                         |
+| `persistence.accessModes`                     | PVC Access Mode for PostgreSQL volume                                                                                                                                                                                                                                                                                                                                                                                                                                      | `[ReadWriteOnce]`                                             |
+| `persistence.size`                            | PVC Storage Request for PostgreSQL volume                                                                                                                                                                                                                                                                                                                                                                                                                                  | `8Gi`                                                         |
+| `persistence.annotations`                     | Annotations for the PVC                                                                                                                                                                                                                                                                                                                                                                                                                                                    | `{}`                                                          |
+| `persistence.selector`                        | Selector to match an existing Persistent Volume (this value is evaluated as a template)                                                                                                                                                                                                                                                                                                                                                                                    | `{}`                                                          |
+| `commonAnnotations`                           | Annotations to be added to all deployed resources (rendered as a template)                                                                                                                                                                                                                                                                                                                                                                                                 | `{}`                                                          |
+| `primary.podAffinityPreset`                   | PostgreSQL primary pod affinity preset. Ignored if `primary.affinity` is set. Allowed values: `soft` or `hard`            | `""`                                                         |
+| `primary.podAntiAffinityPreset`               | PostgreSQL primary pod anti-affinity preset. Ignored if `primary.affinity` is set. Allowed values: `soft` or `hard`       | `soft`                                                       |
+| `primary.nodeAffinityPreset.type`             | PostgreSQL primary node affinity preset type. Ignored if `primary.affinity` is set. Allowed values: `soft` or `hard`      | `""`                                                         |
+| `primary.nodeAffinityPreset.key`              | PostgreSQL primary node label key to match Ignored if `primary.affinity` is set.                                          | `""`                                                         |
+| `primary.nodeAffinityPreset.values`           | PostgreSQL primary node label values to match. Ignored if `primary.affinity` is set.                                      | `[]`                                                         |
+| `primary.affinity`                            | Affinity for PostgreSQL primary pods assignment                                                                           | `{}` (evaluated as a template)                               |
+| `primary.nodeSelector`                        | Node labels for PostgreSQL primary pods assignment                                                                        | `{}` (evaluated as a template)                               |
+| `primary.tolerations`                         | Tolerations for PostgreSQL primary pods assignment                                                                        | `[]` (evaluated as a template)                               |
+| `primary.anotations`                          | Map of annotations to add to the statefulset (postgresql primary)                                                                                                                                                                                                                                                                                                                                                                                                           | `{}`                                                          |
+| `primary.labels`                              | Map of labels to add to the statefulset (postgresql primary)                                                                                                                                                                                                                                                                                                                                                                                                                | `{}`                                                          |
+| `primary.podAnnotations`                      | Map of annotations to add to the pods (postgresql primary)                                                                                                                                                                                                                                                                                                                                                                                                                  | `{}`                                                          |
+| `primary.podLabels`                           | Map of labels to add to the pods (postgresql primary)                                                                                                                                                                                                                                                                                                                                                                                                                       | `{}`                                                          |
+| `primary.priorityClassName`                   | Priority Class to use for each pod (postgresql primary)                                                                                                                                                                                                                                                                                                                                                                                                                     | `nil`                                                         |
+| `primary.extraInitContainers`                 | Additional init containers to add to the pods (postgresql primary)                                                                                                                                                                                                                                                                                                                                                                                                          | `[]`                                                          |
+| `primary.extraVolumeMounts`                   | Additional volume mounts to add to the pods (postgresql primary)                                                                                                                                                                                                                                                                                                                                                                                                            | `[]`                                                          |
+| `primary.extraVolumes`                        | Additional volumes to add to the pods (postgresql primary)                                                                                                                                                                                                                                                                                                                                                                                                                  | `[]`                                                          |
+| `primary.sidecars`                            | Add additional containers to the pod                                                                                                                                                                                                                                                                                                                                                                                                                                        | `[]`                                                          |
+| `primary.service.type`                        | Allows using a different service type for primary                                                                                                                                                                                                                                                                                                                                                                                                                           | `nil`                                                         |
+| `primary.service.nodePort`                    | Allows using a different nodePort for primary                                                                                                                                                                                                                                                                                                                                                                                                                               | `nil`                                                         |
+| `primary.service.clusterIP`                   | Allows using a different clusterIP for primary                                                                                                                                                                                                                                                                                                                                                                                                                              | `nil`                                                         |
+| `primaryAsStandBy.enabled`                    | Whether to enable current cluster's primary as standby server of another cluster or not.                                                                                                                                                                                                                                                                                                                                                                                    | `false`                                                       |
+| `primaryAsStandBy.primaryHost`                | The Host of replication primary in the other cluster.                                                                                                                                                                                                                                                                                                                                                                                                                       | `nil`                                                         |
+| `primaryAsStandBy.primaryPort `               | The Port of replication primary in the other cluster.                                                                                                                                                                                                                                                                                                                                                                                                                       | `nil`                                                         |
+| `readReplicas.podAffinityPreset`              | PostgreSQL read only pod affinity preset. Ignored if `primary.affinity` is set. Allowed values: `soft` or `hard`            | `""`                                                         |
+| `readReplicas.podAntiAffinityPreset`          | PostgreSQL read only pod anti-affinity preset. Ignored if `primary.affinity` is set. Allowed values: `soft` or `hard`       | `soft`                                                       |
+| `readReplicas.nodeAffinityPreset.type`        | PostgreSQL read only node affinity preset type. Ignored if `primary.affinity` is set. Allowed values: `soft` or `hard`      | `""`                                                         |
+| `readReplicas.nodeAffinityPreset.key`         | PostgreSQL read only node label key to match Ignored if `primary.affinity` is set.                                          | `""`                                                         |
+| `readReplicas.nodeAffinityPreset.values`      | PostgreSQL read only node label values to match. Ignored if `primary.affinity` is set.                                      | `[]`                                                         |
+| `readReplicas.affinity`                       | Affinity for PostgreSQL read only pods assignment                                                                           | `{}` (evaluated as a template)                               |
+| `readReplicas.nodeSelector`                   | Node labels for PostgreSQL read only pods assignment                                                                        | `{}` (evaluated as a template)                               |
+| `readReplicas.anotations`                     | Map of annotations to add to the statefulsets (postgresql readReplicas)                                                                                                                                                                                                                                                                                                                                                                                                           | `{}`                                                          |
+| `readReplicas.resources`                      | CPU/Memory resource requests/limits override for readReplicass. Will fallback to `values.resources` if not defined.                                                                                                                                                                                                                                                                                                                                                               | `{}`                                                          |
+| `readReplicas.labels`                         | Map of labels to add to the statefulsets (postgresql readReplicas)                                                                                                                                                                                                                                                                                                                                                                                                                | `{}`                                                          |
+| `readReplicas.podAnnotations`                 | Map of annotations to add to the pods (postgresql readReplicas)                                                                                                                                                                                                                                                                                                                                                                                                                   | `{}`                                                          |
+| `readReplicas.podLabels`                      | Map of labels to add to the pods (postgresql readReplicas)                                                                                                                                                                                                                                                                                                                                                                                                                        | `{}`                                                          |
+| `readReplicas.priorityClassName`              | Priority Class to use for each pod (postgresql readReplicas)                                                                                                                                                                                                                                                                                                                                                                                                                      | `nil`                                                         |
+| `readReplicas.extraInitContainers`            | Additional init containers to add to the pods (postgresql readReplicas)                                                                                                                                                                                                                                                                                                                                                                                                           | `[]`                                                          |
+| `readReplicas.extraVolumeMounts`              | Additional volume mounts to add to the pods (postgresql readReplicas)                                                                                                                                                                                                                                                                                                                                                                                                             | `[]`                                                          |
+| `readReplicas.extraVolumes`                   | Additional volumes to add to the pods (postgresql readReplicas)                                                                                                                                                                                                                                                                                                                                                                                                                   | `[]`                                                          |
+| `readReplicas.sidecars`                       | Add additional containers to the pod                                                                                                                                                                                                                                                                                                                                                                                                                                              | `[]`                                                          |
+| `readReplicas.service.type`                   | Allows using a different service type for readReplicas                                                                                                                                                                                                                                                                                                                                                                                                                            | `nil`                                                         |
+| `readReplicas.service.nodePort`               | Allows using a different nodePort for readReplicas                                                                                                                                                                                                                                                                                                                                                                                                                                | `nil`                                                         |
+| `readReplicas.service.clusterIP`              | Allows using a different clusterIP for readReplicas                                                                                                                                                                                                                                                                                                                                                                                                                               | `nil`                                                         |
+| `readReplicas.persistence.enabled`            | Whether to enable readReplicas replicas persistence                                                                                                                                                                                                                                                                                                                                                                                                                               | `true`                                                        |
+| `terminationGracePeriodSeconds`               | Seconds the pod needs to terminate gracefully                                                                                                                                                                                                                                                                                                                                                                                                                              | `nil`                                                         |
+| `resources`                                   | CPU/Memory resource requests/limits                                                                                                                                                                                                                                                                                                                                                                                                                                        | Memory: `256Mi`, CPU: `250m`                                  |
+| `securityContext.*`                           | Other pod security context to be included as-is in the pod spec                                                                                                                                                                                                                                                                                                                                                                                                            | `{}`                                                          |
+| `securityContext.enabled`                     | Enable security context                                                                                                                                                                                                                                                                                                                                                                                                                                                    | `true`                                                        |
+| `securityContext.fsGroup`                     | Group ID for the pod                                                                                                                                                                                                                                                                                                                                                                                                                                                       | `1001`                                                        |
+| `containerSecurityContext.*`                  | Other container security context to be included as-is in the container spec                                                                                                                                                                                                                                                                                                                                                                                                | `{}`                                                          |
+| `containerSecurityContext.enabled`            | Enable container security context                                                                                                                                                                                                                                                                                                                                                                                                                                          | `true`                                                        |
+| `containerSecurityContext.runAsUser`          | User ID for the container                                                                                                                                                                                                                                                                                                                                                                                                                                                  | `1001`                                                        |
+| `serviceAccount.enabled`                      | Enable service account (Note: Service Account will only be automatically created if `serviceAccount.name` is not set)                                                                                                                                                                                                                                                                                                                                                      | `false`                                                       |
+| `serviceAccount.name`                         | Name of existing service account                                                                                                                                                                                                                                                                                                                                                                                                                                           | `nil`                                                         |
+| `networkPolicy.enabled`                       | Enable NetworkPolicy                                                                                                                                                                                                                                                                                                                                                                                                                                                       | `false`                                                       |
+| `networkPolicy.allowExternal`                 | Don't require client label for connections                                                                                                                                                                                                                                                                                                                                                                                                                                 | `true`                                                        |
+| `networkPolicy.explicitNamespacesSelector`    | A Kubernetes LabelSelector to explicitly select namespaces from which ingress traffic could be allowed                                                                                                                                                                                                                                                                                                                                                                     | `{}`                                                          |
+| `startupProbe.enabled`                        | Enable startupProbe                                                                          | `false`                                                       |
+| `startupProbe.initialDelaySeconds`            | Delay before liveness probe is initiated                                                     | 30                                                            |
+| `startupProbe.periodSeconds`                  | How often to perform the probe                                                               | 15                                                            |
+| `startupProbe.timeoutSeconds`                 | When the probe times                                                                         | 5                                                             |
+| `startupProbe.failureThreshold`               | Minimum consecutive failures for the probe to be considered failed after having succeeded.   | 10                                                            |
+| `startupProbe.successThreshold`               | Minimum consecutive successes for the probe to be considered successful after having failed. | 1                                                             |
+| `livenessProbe.enabled`                       | Enable livenessProbe                                                                         | `true`                                                        |
+| `livenessProbe.initialDelaySeconds`           | Delay before liveness probe is initiated                                                                                                                                                                                                                                                                                                                                                                                                                                   | 30                                                            |
+| `livenessProbe.periodSeconds`                 | How often to perform the probe                                                                                                                                                                                                                                                                                                                                                                                                                                             | 10                                                            |
+| `livenessProbe.timeoutSeconds`                | When the probe times out                                                                                                                                                                                                                                                                                                                                                                                                                                                   | 5                                                             |
+| `livenessProbe.failureThreshold`              | Minimum consecutive failures for the probe to be considered failed after having succeeded.                                                                                                                                                                                                                                                                                                                                                                                 | 6                                                             |
+| `livenessProbe.successThreshold`              | Minimum consecutive successes for the probe to be considered successful after having failed                                                                                                                                                                                                                                                                                                                                                                                | 1                                                             |
+| `readinessProbe.enabled`                      | Enable readinessProbe                                                                                                                                                                                                                                                                                                                                                                                                                                                      | `true`                                                        |
+| `readinessProbe.initialDelaySeconds`          | Delay before readiness probe is initiated                                                                                                                                                                                                                                                                                                                                                                                                                                  | 5                                                             |
+| `readinessProbe.periodSeconds`                | How often to perform the probe                                                                                                                                                                                                                                                                                                                                                                                                                                             | 10                                                            |
+| `readinessProbe.timeoutSeconds`               | When the probe times out                                                                                                                                                                                                                                                                                                                                                                                                                                                   | 5                                                             |
+| `readinessProbe.failureThreshold`             | Minimum consecutive failures for the probe to be considered failed after having succeeded.                                                                                                                                                                                                                                                                                                                                                                                 | 6                                                             |
+| `readinessProbe.successThreshold`             | Minimum consecutive successes for the probe to be considered successful after having failed                                                                                                                                                                                                                                                                                                                                                                                | 1                                                             |
+| `tls.enabled`                                 | Enable TLS traffic support                                                                                                                                                                                                                                                                                                                                                                                                                                                 | `false`                                                       |
+| `tls.preferServerCiphers`                     | Whether to use the server's TLS cipher preferences rather than the client's                                                                                                                                                                                                                                                                                                                                                                                                | `true`                                                        |
+| `tls.certificatesSecret`                      | Name of an existing secret that contains the certificates                                                                                                                                                                                                                                                                                                                                                                                                                  | `nil`                                                         |
+| `tls.certFilename`                            | Certificate filename                                                                                                                                                                                                                                                                                                                                                                                                                                                       | `""`                                                          |
+| `tls.certKeyFilename`                         | Certificate key filename                                                                                                                                                                                                                                                                                                                                                                                                                                                   | `""`                                                          |
+| `tls.certCAFilename`                          | CA Certificate filename. If provided, PostgreSQL will authenticate TLS/SSL clients by requesting them a certificate.                                                                                                                                                                                                                                                                                                                                                       | `nil`                                                         |
+| `tls.crlFilename`                             | File containing a Certificate Revocation List                                                                                                                                                                                                                                                                                                                                                                                                                              | `nil`                                                         |
+| `metrics.enabled`                             | Start a prometheus exporter                                                                                                                                                                                                                                                                                                                                                                                                                                                | `false`                                                       |
+| `metrics.service.type`                        | Kubernetes Service type                                                                                                                                                                                                                                                                                                                                                                                                                                                    | `ClusterIP`                                                   |
+| `service.clusterIP`                           | Static clusterIP or None for headless services                                                                                                                                                                                                                                                                                                                                                                                                                             | `nil`                                                         |
+| `metrics.service.annotations`                 | Additional annotations for metrics exporter pod                                                                                                                                                                                                                                                                                                                                                                                                                            | `{ prometheus.io/scrape: "true", prometheus.io/port: "9187"}` |
+| `metrics.service.loadBalancerIP`              | loadBalancerIP if redis metrics service type is `LoadBalancer`                                                                                                                                                                                                                                                                                                                                                                                                             | `nil`                                                         |
+| `metrics.serviceMonitor.enabled`              | Set this to `true` to create ServiceMonitor for Prometheus operator                                                                                                                                                                                                                                                                                                                                                                                                        | `false`                                                       |
+| `metrics.serviceMonitor.additionalLabels`     | Additional labels that can be used so ServiceMonitor will be discovered by Prometheus                                                                                                                                                                                                                                                                                                                                                                                      | `{}`                                                          |
+| `metrics.serviceMonitor.namespace`            | Optional namespace in which to create ServiceMonitor                                                                                                                                                                                                                                                                                                                                                                                                                       | `nil`                                                         |
+| `metrics.serviceMonitor.interval`             | Scrape interval. If not set, the Prometheus default scrape interval is used                                                                                                                                                                                                                                                                                                                                                                                                | `nil`                                                         |
+| `metrics.serviceMonitor.scrapeTimeout`        | Scrape timeout. If not set, the Prometheus default scrape timeout is used                                                                                                                                                                                                                                                                                                                                                                                                  | `nil`                                                         |
+| `metrics.prometheusRule.enabled`              | Set this to true to create prometheusRules for Prometheus operator                                                                                                                                                                                                                                                                                                                                                                                                         | `false`                                                       |
+| `metrics.prometheusRule.additionalLabels`     | Additional labels that can be used so prometheusRules will be discovered by Prometheus                                                                                                                                                                                                                                                                                                                                                                                     | `{}`                                                          |
+| `metrics.prometheusRule.namespace`            | namespace where prometheusRules resource should be created                                                                                                                                                                                                                                                                                                                                                                                                                 | the same namespace as postgresql                              |
+| `metrics.prometheusRule.rules`                | [rules](https://prometheus.io/docs/prometheus/latest/configuration/alerting_rules/) to be created, check values for an example.                                                                                                                                                                                                                                                                                                                                            | `[]`                                                          |
+| `metrics.image.registry`                      | PostgreSQL Exporter Image registry                                                                                                                                                                                                                                                                                                                                                                                                                                         | `docker.io`                                                   |
+| `metrics.image.repository`                    | PostgreSQL Exporter Image name                                                                                                                                                                                                                                                                                                                                                                                                                                             | `bitnami/postgres-exporter`                                   |
+| `metrics.image.tag`                           | PostgreSQL Exporter Image tag                                                                                                                                                                                                                                                                                                                                                                                                                                              | `{TAG_NAME}`                                                  |
+| `metrics.image.pullPolicy`                    | PostgreSQL Exporter Image pull policy                                                                                                                                                                                                                                                                                                                                                                                                                                      | `IfNotPresent`                                                |
+| `metrics.image.pullSecrets`                   | Specify Image pull secrets                                                                                                                                                                                                                                                                                                                                                                                                                                                 | `nil` (does not add image pull secrets to deployed pods)      |
+| `metrics.customMetrics`                       | Additional custom metrics                                                                                                                                                                                                                                                                                                                                                                                                                                                  | `nil`                                                         |
+| `metrics.extraEnvVars`                        | Extra environment variables to add to exporter                                                                                                                                                                                                                                                                                                                                                                                                                             | `{}` (evaluated as a template)                                |
+| `metrics.securityContext.*`                   | Other container security context to be included as-is in the container spec                                                                                                                                                                                                                                                                                                                                                                                                | `{}`                                                          |
+| `metrics.securityContext.enabled`             | Enable security context for metrics                                                                                                                                                                                                                                                                                                                                                                                                                                        | `false`                                                       |
+| `metrics.securityContext.runAsUser`           | User ID for the container for metrics                                                                                                                                                                                                                                                                                                                                                                                                                                      | `1001`                                                        |
+| `metrics.livenessProbe.initialDelaySeconds`   | Delay before liveness probe is initiated                                                                                                                                                                                                                                                                                                                                                                                                                                   | 30                                                            |
+| `metrics.livenessProbe.periodSeconds`         | How often to perform the probe                                                                                                                                                                                                                                                                                                                                                                                                                                             | 10                                                            |
+| `metrics.livenessProbe.timeoutSeconds`        | When the probe times out                                                                                                                                                                                                                                                                                                                                                                                                                                                   | 5                                                             |
+| `metrics.livenessProbe.failureThreshold`      | Minimum consecutive failures for the probe to be considered failed after having succeeded.                                                                                                                                                                                                                                                                                                                                                                                 | 6                                                             |
+| `metrics.livenessProbe.successThreshold`      | Minimum consecutive successes for the probe to be considered successful after having failed                                                                                                                                                                                                                                                                                                                                                                                | 1                                                             |
+| `metrics.readinessProbe.enabled`              | would you like a readinessProbe to be enabled                                                                                                                                                                                                                                                                                                                                                                                                                              | `true`                                                        |
+| `metrics.readinessProbe.initialDelaySeconds`  | Delay before liveness probe is initiated                                                                                                                                                                                                                                                                                                                                                                                                                                   | 5                                                             |
+| `metrics.readinessProbe.periodSeconds`        | How often to perform the probe                                                                                                                                                                                                                                                                                                                                                                                                                                             | 10                                                            |
+| `metrics.readinessProbe.timeoutSeconds`       | When the probe times out                                                                                                                                                                                                                                                                                                                                                                                                                                                   | 5                                                             |
+| `metrics.readinessProbe.failureThreshold`     | Minimum consecutive failures for the probe to be considered failed after having succeeded.                                                                                                                                                                                                                                                                                                                                                                                 | 6                                                             |
+| `metrics.readinessProbe.successThreshold`     | Minimum consecutive successes for the probe to be considered successful after having failed                                                                                                                                                                                                                                                                                                                                                                                | 1                                                             |
+| `updateStrategy`                              | Update strategy policy                                                                                                                                                                                                                                                                                                                                                                                                                                                     | `{type: "RollingUpdate"}`                                     |
+| `psp.create`                                  | Create Pod Security Policy                                                                                                                                                                                                                                                                                                                                                                                                                                                 | `false`                                                       |
+| `rbac.create`                                 | Create Role and RoleBinding (required for PSP to work)                                                                                                                                                                                                                                                                                                                                                                                                                     | `false`                                                       |
+| `extraDeploy`                                 | Array of extra objects to deploy with the release (evaluated as a template).                                                                                                                                                                                                                                                                                                                                                                                               | `nil`                                                         |
+
+Specify each parameter using the `--set key=value[,key=value]` argument to `helm install`. For example,
+
+```console
+$ helm install my-release \
+  --set postgresqlPassword=secretpassword,postgresqlDatabase=my-database \
+    bitnami/postgresql
+```
+
+The above command sets the PostgreSQL `postgres` account password to `secretpassword`. Additionally it creates a database named `my-database`.
+
+> NOTE: Once this chart is deployed, it is not possible to change the application's access credentials, such as usernames or passwords, using Helm. To change these application credentials after deployment, delete any persistent volumes (PVs) used by the chart and re-deploy it, or use the application's built-in administrative tools if available.
+
+Alternatively, a YAML file that specifies the values for the parameters can be provided while installing the chart. For example,
+
+```console
+$ helm install my-release -f values.yaml bitnami/postgresql
+```
+
+> **Tip**: You can use the default [values.yaml](values.yaml)
+
+## Configuration and installation details
+
+### [Rolling VS Immutable tags](https://docs.bitnami.com/containers/how-to/understand-rolling-tags-containers/)
+
+It is strongly recommended to use immutable tags in a production environment. This ensures your deployment does not change automatically if the same tag is updated with a different image.
+
+Bitnami will release a new chart updating its containers if a new version of the main container, significant changes, or critical vulnerabilities exist.
+
+### Customizing primary and read replica services in a replicated configuration
+
+At the top level, there is a service object which defines the services for both primary and readReplicas. For deeper customization, there are service objects for both the primary and read types individually. This allows you to override the values in the top level service object so that the primary and read can be of different service types and with different clusterIPs / nodePorts. Also in the case you want the primary and read to be of type nodePort, you will need to set the nodePorts to different values to prevent a collision. The values that are deeper in the primary.service or readReplicas.service objects will take precedence over the top level service object.
+
+### Change PostgreSQL version
+
+To modify the PostgreSQL version used in this chart you can specify a [valid image tag](https://hub.docker.com/r/bitnami/postgresql/tags/) using the `image.tag` parameter. For example, `image.tag=X.Y.Z`. This approach is also applicable to other images like exporters.
+
+### postgresql.conf / pg_hba.conf files as configMap
+
+This helm chart also supports to customize the whole configuration file.
+
+Add your custom file to "files/postgresql.conf" in your working directory. This file will be mounted as configMap to the containers and it will be used for configuring the PostgreSQL server.
+
+Alternatively, you can add additional PostgreSQL configuration parameters using the `postgresqlExtendedConf` parameter as a dict, using camelCase, e.g. {"sharedBuffers": "500MB"}. Alternatively, to replace the entire default configuration use `postgresqlConfiguration`.
+
+In addition to these options, you can also set an external ConfigMap with all the configuration files. This is done by setting the `configurationConfigMap` parameter. Note that this will override the two previous options.
+
+### Allow settings to be loaded from files other than the default `postgresql.conf`
+
+If you don't want to provide the whole PostgreSQL configuration file and only specify certain parameters, you can add your extended `.conf` files to "files/conf.d/" in your working directory.
+Those files will be mounted as configMap to the containers adding/overwriting the default configuration using the `include_dir` directive that allows settings to be loaded from files other than the default `postgresql.conf`.
+
+Alternatively, you can also set an external ConfigMap with all the extra configuration files. This is done by setting the `extendedConfConfigMap` parameter. Note that this will override the previous option.
+
+### Initialize a fresh instance
+
+The [Bitnami PostgreSQL](https://github.com/bitnami/bitnami-docker-postgresql) image allows you to use your custom scripts to initialize a fresh instance. In order to execute the scripts, they must be located inside the chart folder `files/docker-entrypoint-initdb.d` so they can be consumed as a ConfigMap.
+
+Alternatively, you can specify custom scripts using the `initdbScripts` parameter as dict.
+
+In addition to these options, you can also set an external ConfigMap with all the initialization scripts. This is done by setting the `initdbScriptsConfigMap` parameter. Note that this will override the two previous options. If your initialization scripts contain sensitive information such as credentials or passwords, you can use the `initdbScriptsSecret` parameter.
+
+The allowed extensions are `.sh`, `.sql` and `.sql.gz`.
+
+### Securing traffic using TLS
+
+TLS support can be enabled in the chart by specifying the `tls.` parameters while creating a release. The following parameters should be configured to properly enable the TLS support in the chart:
+
+- `tls.enabled`: Enable TLS support. Defaults to `false`
+- `tls.certificatesSecret`: Name of an existing secret that contains the certificates. No defaults.
+- `tls.certFilename`: Certificate filename. No defaults.
+- `tls.certKeyFilename`: Certificate key filename. No defaults.
+
+For example:
+
+* First, create the secret with the cetificates files:
+
+    ```console
+    kubectl create secret generic certificates-tls-secret --from-file=./cert.crt --from-file=./cert.key --from-file=./ca.crt
+    ```
+
+* Then, use the following parameters:
+
+    ```console
+    volumePermissions.enabled=true
+    tls.enabled=true
+    tls.certificatesSecret="certificates-tls-secret"
+    tls.certFilename="cert.crt"
+    tls.certKeyFilename="cert.key"
+    ```
+
+    > Note TLS and VolumePermissions: PostgreSQL requires certain permissions on sensitive files (such as certificate keys) to start up. Due to an on-going [issue](https://github.com/kubernetes/kubernetes/issues/57923) regarding kubernetes permissions and the use of `containerSecurityContext.runAsUser`, you must enable `volumePermissions` to ensure everything works as expected.
+
+### Sidecars
+
+If you need  additional containers to run within the same pod as PostgreSQL (e.g. an additional metrics or logging exporter), you can do so via the `sidecars` config parameter. Simply define your container according to the Kubernetes container spec.
+
+```yaml
+# For the PostgreSQL primary
+primary:
+  sidecars:
+  - name: your-image-name
+    image: your-image
+    imagePullPolicy: Always
+    ports:
+    - name: portname
+     containerPort: 1234
+# For the PostgreSQL replicas
+readReplicas:
+  sidecars:
+  - name: your-image-name
+    image: your-image
+    imagePullPolicy: Always
+    ports:
+    - name: portname
+     containerPort: 1234
+```
+
+### Metrics
+
+The chart optionally can start a metrics exporter for [prometheus](https://prometheus.io). The metrics endpoint (port 9187) is not exposed and it is expected that the metrics are collected from inside the k8s cluster using something similar as the described in the [example Prometheus scrape configuration](https://github.com/prometheus/prometheus/blob/master/documentation/examples/prometheus-kubernetes.yml).
+
+The exporter allows to create custom metrics from additional SQL queries. See the Chart's `values.yaml` for an example and consult the [exporters documentation](https://github.com/wrouesnel/postgres_exporter#adding-new-metrics-via-a-config-file) for more details.
+
+### Use of global variables
+
+In more complex scenarios, we may have the following tree of dependencies
+
+```
+                     +--------------+
+                     |              |
+        +------------+   Chart 1    +-----------+
+        |            |              |           |
+        |            --------+------+           |
+        |                    |                  |
+        |                    |                  |
+        |                    |                  |
+        |                    |                  |
+        v                    v                  v
++-------+------+    +--------+------+  +--------+------+
+|              |    |               |  |               |
+|  PostgreSQL  |    |  Sub-chart 1  |  |  Sub-chart 2  |
+|              |    |               |  |               |
++--------------+    +---------------+  +---------------+
+```
+
+The three charts below depend on the parent chart Chart 1. However, subcharts 1 and 2 may need to connect to PostgreSQL as well. In order to do so, subcharts 1 and 2 need to know the PostgreSQL credentials, so one option for deploying could be deploy Chart 1 with the following parameters:
+
+```
+postgresql.postgresqlPassword=testtest
+subchart1.postgresql.postgresqlPassword=testtest
+subchart2.postgresql.postgresqlPassword=testtest
+postgresql.postgresqlDatabase=db1
+subchart1.postgresql.postgresqlDatabase=db1
+subchart2.postgresql.postgresqlDatabase=db1
+```
+
+If the number of dependent sub-charts increases, installing the chart with parameters can become increasingly difficult. An alternative would be to set the credentials using global variables as follows:
+
+```
+global.postgresql.postgresqlPassword=testtest
+global.postgresql.postgresqlDatabase=db1
+```
+
+This way, the credentials will be available in all of the subcharts.
+
+## Persistence
+
+The [Bitnami PostgreSQL](https://github.com/bitnami/bitnami-docker-postgresql) image stores the PostgreSQL data and configurations at the `/bitnami/postgresql` path of the container.
+
+Persistent Volume Claims are used to keep the data across deployments. This is known to work in GCE, AWS, and minikube.
+See the [Parameters](#parameters) section to configure the PVC or to disable persistence.
+
+If you already have data in it, you will fail to sync to standby nodes for all commits, details can refer to [code](https://github.com/bitnami/bitnami-docker-postgresql/blob/8725fe1d7d30ebe8d9a16e9175d05f7ad9260c93/9.6/debian-9/rootfs/libpostgresql.sh#L518-L556). If you need to use those data, please covert them to sql and import after `helm install` finished.
+
+## NetworkPolicy
+
+To enable network policy for PostgreSQL, install [a networking plugin that implements the Kubernetes NetworkPolicy spec](https://kubernetes.io/docs/tasks/administer-cluster/declare-network-policy#before-you-begin), and set `networkPolicy.enabled` to `true`.
+
+For Kubernetes v1.5 & v1.6, you must also turn on NetworkPolicy by setting the DefaultDeny namespace annotation. Note: this will enforce policy for _all_ pods in the namespace:
+
+```console
+$ kubectl annotate namespace default "net.beta.kubernetes.io/network-policy={\"ingress\":{\"isolation\":\"DefaultDeny\"}}"
+```
+
+With NetworkPolicy enabled, traffic will be limited to just port 5432.
+
+For more precise policy, set `networkPolicy.allowExternal=false`. This will only allow pods with the generated client label to connect to PostgreSQL.
+This label will be displayed in the output of a successful install.
+
+## Differences between Bitnami PostgreSQL image and [Docker Official](https://hub.docker.com/_/postgres) image
+
+- The Docker Official PostgreSQL image does not support replication. If you pass any replication environment variable, this would be ignored. The only environment variables supported by the Docker Official image are POSTGRES_USER, POSTGRES_DB, POSTGRES_PASSWORD, POSTGRES_INITDB_ARGS, POSTGRES_INITDB_WALDIR and PGDATA. All the remaining environment variables are specific to the Bitnami PostgreSQL image.
+- The Bitnami PostgreSQL image is non-root by default. This requires that you run the pod with `securityContext` and updates the permissions of the volume with an `initContainer`. A key benefit of this configuration is that the pod follows security best practices and is prepared to run on Kubernetes distributions with hard security constraints like OpenShift.
+- For OpenShift, one may either define the runAsUser and fsGroup accordingly, or try this more dynamic option: volumePermissions.securityContext.runAsUser="auto",securityContext.enabled=false,containerSecurityContext.enabled=false,shmVolume.chmod.enabled=false
+
+### Deploy chart using Docker Official PostgreSQL Image
+
+From chart version 4.0.0, it is possible to use this chart with the Docker Official PostgreSQL image.
+Besides specifying the new Docker repository and tag, it is important to modify the PostgreSQL data directory and volume mount point. Basically, the PostgreSQL data dir cannot be the mount point directly, it has to be a subdirectory.
+
+```
+image.repository=postgres
+image.tag=10.6
+postgresqlDataDir=/data/pgdata
+persistence.mountPath=/data/
+```
+
+### Setting Pod's affinity
+
+This chart allows you to set your custom affinity using the `XXX.affinity` paremeter(s). Find more infomation about Pod's affinity in the [kubernetes documentation](https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity).
+
+As an alternative, you can use of the preset configurations for pod affinity, pod anti-affinity, and node affinity available at the [bitnami/common](https://github.com/bitnami/charts/tree/master/bitnami/common#affinities) chart. To do so, set the `XXX.podAffinityPreset`, `XXX.podAntiAffinityPreset`, or `XXX.nodeAffinityPreset` parameters.
+
+## Troubleshooting
+
+Find more information about how to deal with common errors related to Bitnami’s Helm charts in [this troubleshooting guide](https://docs.bitnami.com/general/how-to/troubleshoot-helm-chart-issues).
+
+## Upgrading
+
+It's necessary to specify the existing passwords while performing an upgrade to ensure the secrets are not updated with invalid randomly generated passwords. Remember to specify the existing values of the `postgresqlPassword` and `replication.password` parameters when upgrading the chart:
+
+```bash
+$ helm upgrade my-release bitnami/postgresql \
+    --set postgresqlPassword=[POSTGRESQL_PASSWORD] \
+    --set replication.password=[REPLICATION_PASSWORD]
+```
+
+> Note: you need to substitute the placeholders _[POSTGRESQL_PASSWORD]_, and _[REPLICATION_PASSWORD]_ with the values obtained from instructions in the installation notes.
+
+### To 10.0.0
+
+[On November 13, 2020, Helm v2 support was formally finished](https://github.com/helm/charts#status-of-the-project), this major version is the result of the required changes applied to the Helm Chart to be able to incorporate the different features added in Helm v3 and to be consistent with the Helm project itself regarding the Helm v2 EOL.
+
+**What changes were introduced in this major version?**
+
+- Previous versions of this Helm Chart use `apiVersion: v1` (installable by both Helm 2 and 3), this Helm Chart was updated to `apiVersion: v2` (installable by Helm 3 only). [Here](https://helm.sh/docs/topics/charts/#the-apiversion-field) you can find more information about the `apiVersion` field.
+- Move dependency information from the *requirements.yaml* to the *Chart.yaml*
+- After running `helm dependency update`, a *Chart.lock* file is generated containing the same structure used in the previous *requirements.lock*
+- The different fields present in the *Chart.yaml* file has been ordered alphabetically in a homogeneous way for all the Bitnami Helm Chart.
+
+**Considerations when upgrading to this version**
+
+- If you want to upgrade to this version using Helm v2, this scenario is not supported as this version doesn't support Helm v2 anymore
+- If you installed the previous version with Helm v2 and wants to upgrade to this version with Helm v3, please refer to the [official Helm documentation](https://helm.sh/docs/topics/v2_v3_migration/#migration-use-cases) about migrating from Helm v2 to v3
+
+**Useful links**
+
+- https://docs.bitnami.com/tutorials/resolve-helm2-helm3-post-migration-issues/
+- https://helm.sh/docs/topics/v2_v3_migration/
+- https://helm.sh/blog/migrate-from-helm-v2-to-helm-v3/
+
+#### Breaking changes
+
+- The term `master` has been replaced with `primary` and `slave` with `readReplicas` throughout the chart. Role names have changed from `master` and `slave` to `primary` and `read`.
+
+To upgrade to `10.0.0`, it should be done reusing the PVCs used to hold the PostgreSQL data on your previous release. To do so, follow the instructions below (the following example assumes that the release name is `postgresql`):
+
+> NOTE: Please, create a backup of your database before running any of those actions.
+
+Obtain the credentials and the names of the PVCs used to hold the PostgreSQL data on your current release:
+
+```console
+$ export POSTGRESQL_PASSWORD=$(kubectl get secret --namespace default postgresql -o jsonpath="{.data.postgresql-password}" | base64 --decode)
+$ export POSTGRESQL_PVC=$(kubectl get pvc -l app.kubernetes.io/instance=postgresql,role=master -o jsonpath="{.items[0].metadata.name}")
+```
+
+Delete the PostgreSQL statefulset. Notice the option `--cascade=false`:
+
+```console
+$ kubectl delete statefulsets.apps postgresql-postgresql --cascade=false
+```
+
+Now the upgrade works:
+
+```console
+$ helm upgrade postgresql bitnami/postgresql --set postgresqlPassword=$POSTGRESQL_PASSWORD --set persistence.existingClaim=$POSTGRESQL_PVC
+```
+
+You will have to delete the existing PostgreSQL pod and the new statefulset is going to create a new one
+
+```console
+$ kubectl delete pod postgresql-postgresql-0
+```
+
+Finally, you should see the lines below in PostgreSQL container logs:
+
+```console
+$ kubectl logs $(kubectl get pods -l app.kubernetes.io/instance=postgresql,app.kubernetes.io/name=postgresql,role=primary -o jsonpath="{.items[0].metadata.name}")
+...
+postgresql 08:05:12.59 INFO  ==> Deploying PostgreSQL with persisted data...
+...
+```
+
+### To 9.0.0
+
+In this version the chart was adapted to follow the Helm label best practices, see [PR 3021](https://github.com/bitnami/charts/pull/3021). That means the backward compatibility is not guarantee when upgrading the chart to this major version.
+
+As a workaround, you can delete the existing statefulset (using the `--cascade=false` flag pods are not deleted) before upgrade the chart. For example, this can be a valid workflow:
+
+- Deploy an old version (8.X.X)
+
+```console
+$ helm install postgresql bitnami/postgresql --version 8.10.14
+```
+
+- Old version is up and running
+
+```console
+$ helm ls
+NAME      	NAMESPACE	REVISION	UPDATED                                	STATUS  	CHART             	APP VERSION
+postgresql	default  	1       	2020-08-04 13:39:54.783480286 +0000 UTC	deployed	postgresql-8.10.14	11.8.0
+
+$ kubectl get pods
+NAME                      READY   STATUS    RESTARTS   AGE
+postgresql-postgresql-0   1/1     Running   0          76s
+```
+
+- The upgrade to the latest one (9.X.X) is going to fail
+
+```console
+$ helm upgrade postgresql bitnami/postgresql
+Error: UPGRADE FAILED: cannot patch "postgresql-postgresql" with kind StatefulSet: StatefulSet.apps "postgresql-postgresql" is invalid: spec: Forbidden: updates to statefulset spec for fields other than 'replicas', 'template', and 'updateStrategy' are forbidden
+```
+
+- Delete the statefulset
+
+```console
+$ kubectl delete statefulsets.apps --cascade=false postgresql-postgresql
+statefulset.apps "postgresql-postgresql" deleted
+```
+
+- Now the upgrade works
+
+```console
+$ helm upgrade postgresql bitnami/postgresql
+$ helm ls
+NAME      	NAMESPACE	REVISION	UPDATED                                	STATUS  	CHART           	APP VERSION
+postgresql	default  	3       	2020-08-04 13:42:08.020385884 +0000 UTC	deployed	postgresql-9.1.2	11.8.0
+```
+
+- We can kill the existing pod and the new statefulset is going to create a new one:
+
+```console
+$ kubectl delete pod postgresql-postgresql-0
+pod "postgresql-postgresql-0" deleted
+
+$ kubectl get pods
+NAME                      READY   STATUS    RESTARTS   AGE
+postgresql-postgresql-0   1/1     Running   0          19s
+```
+
+Please, note that without the `--cascade=false` both objects (statefulset and pod) are going to be removed and both objects will be deployed again with the `helm upgrade` command
+
+### To 8.0.0
+
+Prefixes the port names with their protocols to comply with Istio conventions.
+
+If you depend on the port names in your setup, make sure to update them to reflect this change.
+
+### To 7.1.0
+
+Adds support for LDAP configuration.
+
+### To 7.0.0
+
+Helm performs a lookup for the object based on its group (apps), version (v1), and kind (Deployment). Also known as its GroupVersionKind, or GVK. Changing the GVK is considered a compatibility breaker from Kubernetes' point of view, so you cannot "upgrade" those objects to the new GVK in-place. Earlier versions of Helm 3 did not perform the lookup correctly which has since been fixed to match the spec.
+
+In https://github.com/helm/charts/pull/17281 the `apiVersion` of the statefulset resources was updated to `apps/v1` in tune with the api's deprecated, resulting in compatibility breakage.
+
+This major version bump signifies this change.
+
+### To 6.5.7
+
+In this version, the chart will use PostgreSQL with the Postgis extension included. The version used with Postgresql version 10, 11 and 12 is Postgis 2.5. It has been compiled with the following dependencies:
+
+- protobuf
+- protobuf-c
+- json-c
+- geos
+- proj
+
+### To 5.0.0
+
+In this version, the **chart is using PostgreSQL 11 instead of PostgreSQL 10**. You can find the main difference and notable changes in the following links: [https://www.postgresql.org/about/news/1894/](https://www.postgresql.org/about/news/1894/) and [https://www.postgresql.org/about/featurematrix/](https://www.postgresql.org/about/featurematrix/).
+
+For major releases of PostgreSQL, the internal data storage format is subject to change, thus complicating upgrades, you can see some errors like the following one in the logs:
+
+```console
+Welcome to the Bitnami postgresql container
+Subscribe to project updates by watching https://github.com/bitnami/bitnami-docker-postgresql
+Submit issues and feature requests at https://github.com/bitnami/bitnami-docker-postgresql/issues
+Send us your feedback at containers@bitnami.com
+
+INFO  ==> ** Starting PostgreSQL setup **
+NFO  ==> Validating settings in POSTGRESQL_* env vars..
+INFO  ==> Initializing PostgreSQL database...
+INFO  ==> postgresql.conf file not detected. Generating it...
+INFO  ==> pg_hba.conf file not detected. Generating it...
+INFO  ==> Deploying PostgreSQL with persisted data...
+INFO  ==> Configuring replication parameters
+INFO  ==> Loading custom scripts...
+INFO  ==> Enabling remote connections
+INFO  ==> Stopping PostgreSQL...
+INFO  ==> ** PostgreSQL setup finished! **
+
+INFO  ==> ** Starting PostgreSQL **
+  [1] FATAL:  database files are incompatible with server
+  [1] DETAIL:  The data directory was initialized by PostgreSQL version 10, which is not compatible with this version 11.3.
+```
+
+In this case, you should migrate the data from the old chart to the new one following an approach similar to that described in [this section](https://www.postgresql.org/docs/current/upgrading.html#UPGRADING-VIA-PGDUMPALL) from the official documentation. Basically, create a database dump in the old chart, move and restore it in the new one.
+
+### To 4.0.0
+
+This chart will use by default the Bitnami PostgreSQL container starting from version `10.7.0-r68`. This version moves the initialization logic from node.js to bash. This new version of the chart requires setting the `POSTGRES_PASSWORD` in the slaves as well, in order to properly configure the `pg_hba.conf` file. Users from previous versions of the chart are advised to upgrade immediately.
+
+IMPORTANT: If you do not want to upgrade the chart version then make sure you use the `10.7.0-r68` version of the container. Otherwise, you will get this error
+
+```
+The POSTGRESQL_PASSWORD environment variable is empty or not set. Set the environment variable ALLOW_EMPTY_PASSWORD=yes to allow the container to be started with blank passwords. This is recommended only for development
+```
+
+### To 3.0.0
+
+This releases make it possible to specify different nodeSelector, affinity and tolerations for master and slave pods.
+It also fixes an issue with `postgresql.master.fullname` helper template not obeying fullnameOverride.
+
+#### Breaking changes
+
+- `affinty` has been renamed to `master.affinity` and `slave.affinity`.
+- `tolerations` has been renamed to `master.tolerations` and `slave.tolerations`.
+- `nodeSelector` has been renamed to `master.nodeSelector` and `slave.nodeSelector`.
+
+### To 2.0.0
+
+In order to upgrade from the `0.X.X` branch to `1.X.X`, you should follow the below steps:
+
+- Obtain the service name (`SERVICE_NAME`) and password (`OLD_PASSWORD`) of the existing postgresql chart. You can find the instructions to obtain the password in the NOTES.txt, the service name can be obtained by running
+
+```console
+$ kubectl get svc
+```
+
+- Install (not upgrade) the new version
+
+```console
+$ helm repo update
+$ helm install my-release bitnami/postgresql
+```
+
+- Connect to the new pod (you can obtain the name by running `kubectl get pods`):
+
+```console
+$ kubectl exec -it NAME bash
+```
+
+- Once logged in, create a dump file from the previous database using `pg_dump`, for that we should connect to the previous postgresql chart:
+
+```console
+$ pg_dump -h SERVICE_NAME -U postgres DATABASE_NAME > /tmp/backup.sql
+```
+
+After run above command you should be prompted for a password, this password is the previous chart password (`OLD_PASSWORD`).
+This operation could take some time depending on the database size.
+
+- Once you have the backup file, you can restore it with a command like the one below:
+
+```console
+$ psql -U postgres DATABASE_NAME < /tmp/backup.sql
+```
+
+In this case, you are accessing to the local postgresql, so the password should be the new one (you can find it in NOTES.txt).
+
+If you want to restore the database and the database schema does not exist, it is necessary to first follow the steps described below.
+
+```console
+$ psql -U postgres
+postgres=# drop database DATABASE_NAME;
+postgres=# create database DATABASE_NAME;
+postgres=# create user USER_NAME;
+postgres=# alter role USER_NAME with password 'BITNAMI_USER_PASSWORD';
+postgres=# grant all privileges on database DATABASE_NAME to USER_NAME;
+postgres=# alter database DATABASE_NAME owner to USER_NAME;
+```
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/.helmignore b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/.helmignore
new file mode 100644
index 0000000000..50af031725
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/.helmignore
@@ -0,0 +1,22 @@
+# Patterns to ignore when building packages.
+# This supports shell glob matching, relative path matching, and
+# negation (prefixed with !). Only one pattern per line.
+.DS_Store
+# Common VCS dirs
+.git/
+.gitignore
+.bzr/
+.bzrignore
+.hg/
+.hgignore
+.svn/
+# Common backup files
+*.swp
+*.bak
+*.tmp
+*~
+# Various IDEs
+.project
+.idea/
+*.tmproj
+.vscode/
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/Chart.yaml b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/Chart.yaml
new file mode 100644
index 0000000000..bcc3808d08
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/Chart.yaml
@@ -0,0 +1,23 @@
+annotations:
+  category: Infrastructure
+apiVersion: v2
+appVersion: 1.4.2
+description: A Library Helm Chart for grouping common logic between bitnami charts.
+  This chart is not deployable by itself.
+home: https://github.com/bitnami/charts/tree/master/bitnami/common
+icon: https://bitnami.com/downloads/logos/bitnami-mark.png
+keywords:
+- common
+- helper
+- template
+- function
+- bitnami
+maintainers:
+- email: containers@bitnami.com
+  name: Bitnami
+name: common
+sources:
+- https://github.com/bitnami/charts
+- http://www.bitnami.com/
+type: library
+version: 1.4.2
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/README.md b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/README.md
new file mode 100644
index 0000000000..7287cbb5fc
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/README.md
@@ -0,0 +1,322 @@
+# Bitnami Common Library Chart
+
+A [Helm Library Chart](https://helm.sh/docs/topics/library_charts/#helm) for grouping common logic between bitnami charts.
+
+## TL;DR
+
+```yaml
+dependencies:
+  - name: common
+    version: 0.x.x
+    repository: https://charts.bitnami.com/bitnami
+```
+
+```bash
+$ helm dependency update
+```
+
+```yaml
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ include "common.names.fullname" . }}
+data:
+  myvalue: "Hello World"
+```
+
+## Introduction
+
+This chart provides a common template helpers which can be used to develop new charts using [Helm](https://helm.sh) package manager.
+
+Bitnami charts can be used with [Kubeapps](https://kubeapps.com/) for deployment and management of Helm Charts in clusters. This Helm chart has been tested on top of [Bitnami Kubernetes Production Runtime](https://kubeprod.io/) (BKPR). Deploy BKPR to get automated TLS certificates, logging and monitoring for your applications.
+
+## Prerequisites
+
+- Kubernetes 1.12+
+- Helm 3.1.0
+
+## Parameters
+
+The following table lists the helpers available in the library which are scoped in different sections.
+
+### Affinities
+
+| Helper identifier             | Description                                          | Expected Input                                 |
+|-------------------------------|------------------------------------------------------|------------------------------------------------|
+| `common.affinities.node.soft` | Return a soft nodeAffinity definition                | `dict "key" "FOO" "values" (list "BAR" "BAZ")` |
+| `common.affinities.node.hard` | Return a hard nodeAffinity definition                | `dict "key" "FOO" "values" (list "BAR" "BAZ")` |
+| `common.affinities.pod.soft`  | Return a soft podAffinity/podAntiAffinity definition | `dict "component" "FOO" "context" $`           |
+| `common.affinities.pod.hard`  | Return a hard podAffinity/podAntiAffinity definition | `dict "component" "FOO" "context" $`           |
+
+### Capabilities
+
+| Helper identifier                            | Description                                                                                    | Expected Input    |
+|----------------------------------------------|------------------------------------------------------------------------------------------------|-------------------|
+| `common.capabilities.kubeVersion`            | Return the target Kubernetes version (using client default if .Values.kubeVersion is not set). | `.` Chart context |
+| `common.capabilities.deployment.apiVersion`  | Return the appropriate apiVersion for deployment.                                              | `.` Chart context |
+| `common.capabilities.statefulset.apiVersion` | Return the appropriate apiVersion for statefulset.                                             | `.` Chart context |
+| `common.capabilities.ingress.apiVersion`     | Return the appropriate apiVersion for ingress.                                                 | `.` Chart context |
+| `common.capabilities.rbac.apiVersion`        | Return the appropriate apiVersion for RBAC resources.                                          | `.` Chart context |
+| `common.capabilities.crd.apiVersion`         | Return the appropriate apiVersion for CRDs.                                                    | `.` Chart context |
+| `common.capabilities.supportsHelmVersion`    | Returns true if the used Helm version is 3.3+                                                  | `.` Chart context |
+
+### Errors
+
+| Helper identifier                       | Description                                                                                                                                                            | Expected Input                                                                      |
+|-----------------------------------------|------------------------------------------------------------------------------------------------------------------------------------------------------------------------|-------------------------------------------------------------------------------------|
+| `common.errors.upgrade.passwords.empty` | It will ensure required passwords are given when we are upgrading a chart. If `validationErrors` is not empty it will throw an error and will stop the upgrade action. | `dict "validationErrors" (list $validationError00 $validationError01)  "context" $` |
+
+### Images
+
+| Helper identifier           | Description                                          | Expected Input                                                                                          |
+|-----------------------------|------------------------------------------------------|---------------------------------------------------------------------------------------------------------|
+| `common.images.image`       | Return the proper and full image name                | `dict "imageRoot" .Values.path.to.the.image "global" $`, see [ImageRoot](#imageroot) for the structure. |
+| `common.images.pullSecrets` | Return the proper Docker Image Registry Secret Names | `dict "images" (list .Values.path.to.the.image1, .Values.path.to.the.image2) "global" .Values.global`   |
+
+### Ingress
+
+| Helper identifier        | Description                                                          | Expected Input                                                                                                                                                                   |
+|--------------------------|----------------------------------------------------------------------|----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
+| `common.ingress.backend` | Generate a proper Ingress backend entry depending on the API version | `dict "serviceName" "foo" "servicePort" "bar"`, see the [Ingress deprecation notice](https://kubernetes.io/blog/2019/07/18/api-deprecations-in-1-16/) for the syntax differences |
+
+### Labels
+
+| Helper identifier           | Description                                          | Expected Input    |
+|-----------------------------|------------------------------------------------------|-------------------|
+| `common.labels.standard`    | Return Kubernetes standard labels                    | `.` Chart context |
+| `common.labels.matchLabels` | Return the proper Docker Image Registry Secret Names | `.` Chart context |
+
+### Names
+
+| Helper identifier       | Description                                                | Expected Inpput   |
+|-------------------------|------------------------------------------------------------|-------------------|
+| `common.names.name`     | Expand the name of the chart or use `.Values.nameOverride` | `.` Chart context |
+| `common.names.fullname` | Create a default fully qualified app name.                 | `.` Chart context |
+| `common.names.chart`    | Chart name plus version                                    | `.` Chart context |
+
+### Secrets
+
+| Helper identifier         | Description                                                  | Expected Input                                                                                                                                                                                                                  |
+|---------------------------|--------------------------------------------------------------|---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
+| `common.secrets.name`     | Generate the name of the secret.                             | `dict "existingSecret" .Values.path.to.the.existingSecret "defaultNameSuffix" "mySuffix" "context" $` see [ExistingSecret](#existingsecret) for the structure.                                                                  |
+| `common.secrets.key`      | Generate secret key.                                         | `dict "existingSecret" .Values.path.to.the.existingSecret "key" "keyName"` see [ExistingSecret](#existingsecret) for the structure.                                                                                             |
+| `common.passwords.manage` | Generate secret password or retrieve one if already created. | `dict "secret" "secret-name" "key" "keyName" "providedValues" (list "path.to.password1" "path.to.password2") "length" 10 "strong" false "chartName" "chartName" "context" $`, length, strong and chartNAme fields are optional. |
+| `common.secrets.exists`   | Returns whether a previous generated secret already exists.  | `dict "secret" "secret-name" "context" $`                                                                                                                                                                                       |
+
+### Storage
+
+| Helper identifier             | Description                           | Expected Input                                                                                                      |
+|-------------------------------|---------------------------------------|---------------------------------------------------------------------------------------------------------------------|
+| `common.affinities.node.soft` | Return a soft nodeAffinity definition | `dict "persistence" .Values.path.to.the.persistence "global" $`, see [Persistence](#persistence) for the structure. |
+
+### TplValues
+
+| Helper identifier         | Description                            | Expected Input                                                                                                                                           |
+|---------------------------|----------------------------------------|----------------------------------------------------------------------------------------------------------------------------------------------------------|
+| `common.tplvalues.render` | Renders a value that contains template | `dict "value" .Values.path.to.the.Value "context" $`, value is the value should rendered as template, context frequently is the chart context `$` or `.` |
+
+### Utils
+
+| Helper identifier              | Description                                                                              | Expected Input                                                         |
+|--------------------------------|------------------------------------------------------------------------------------------|------------------------------------------------------------------------|
+| `common.utils.fieldToEnvVar`   | Build environment variable name given a field.                                           | `dict "field" "my-password"`                                           |
+| `common.utils.secret.getvalue` | Print instructions to get a secret value.                                                | `dict "secret" "secret-name" "field" "secret-value-field" "context" $` |
+| `common.utils.getValueFromKey` | Gets a value from `.Values` object given its key path                                    | `dict "key" "path.to.key" "context" $`                                 |
+| `common.utils.getKeyFromList`  | Returns first `.Values` key with a defined value or first of the list if all non-defined | `dict "keys" (list "path.to.key1" "path.to.key2") "context" $`         |
+
+### Validations
+
+| Helper identifier                                | Description                                                                                                                   | Expected Input                                                                                                                                                                                                                                                           |
+|--------------------------------------------------|-------------------------------------------------------------------------------------------------------------------------------|--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
+| `common.validations.values.single.empty`         | Validate a value must not be empty.                                                                                           | `dict "valueKey" "path.to.value" "secret" "secret.name" "field" "my-password" "subchart" "subchart" "context" $` secret, field and subchart are optional. In case they are given, the helper will generate a how to get instruction. See [ValidateValue](#validatevalue) |
+| `common.validations.values.multiple.empty`       | Validate a multiple values must not be empty. It returns a shared error for all the values.                                   | `dict "required" (list $validateValueConf00 $validateValueConf01) "context" $`. See [ValidateValue](#validatevalue)                                                                                                                                                      |
+| `common.validations.values.mariadb.passwords`    | This helper will ensure required password for MariaDB are not empty. It returns a shared error for all the values.            | `dict "secret" "mariadb-secret" "subchart" "true" "context" $` subchart field is optional and could be true or false it depends on where you will use mariadb chart and the helper.                                                                                      |
+| `common.validations.values.postgresql.passwords` | This helper will ensure required password for PostgreSQL are not empty. It returns a shared error for all the values.         | `dict "secret" "postgresql-secret" "subchart" "true" "context" $` subchart field is optional and could be true or false it depends on where you will use postgresql chart and the helper.                                                                                |
+| `common.validations.values.redis.passwords`      | This helper will ensure required password for Redis<sup>TM</sup> are not empty. It returns a shared error for all the values. | `dict "secret" "redis-secret" "subchart" "true" "context" $` subchart field is optional and could be true or false it depends on where you will use redis chart and the helper.                                                                                          |
+| `common.validations.values.cassandra.passwords`  | This helper will ensure required password for Cassandra are not empty. It returns a shared error for all the values.          | `dict "secret" "cassandra-secret" "subchart" "true" "context" $` subchart field is optional and could be true or false it depends on where you will use cassandra chart and the helper.                                                                                  |
+| `common.validations.values.mongodb.passwords`    | This helper will ensure required password for MongoDB&reg; are not empty. It returns a shared error for all the values.            | `dict "secret" "mongodb-secret" "subchart" "true" "context" $` subchart field is optional and could be true or false it depends on where you will use mongodb chart and the helper.                                                                                      |
+
+### Warnings
+
+| Helper identifier            | Description                      | Expected Input                                             |
+|------------------------------|----------------------------------|------------------------------------------------------------|
+| `common.warnings.rollingTag` | Warning about using rolling tag. | `ImageRoot` see [ImageRoot](#imageroot) for the structure. |
+
+## Special input schemas
+
+### ImageRoot
+
+```yaml
+registry:
+  type: string
+  description: Docker registry where the image is located
+  example: docker.io
+
+repository:
+  type: string
+  description: Repository and image name
+  example: bitnami/nginx
+
+tag:
+  type: string
+  description: image tag
+  example: 1.16.1-debian-10-r63
+
+pullPolicy:
+  type: string
+  description: Specify a imagePullPolicy. Defaults to 'Always' if image tag is 'latest', else set to 'IfNotPresent'
+
+pullSecrets:
+  type: array
+  items:
+    type: string
+  description: Optionally specify an array of imagePullSecrets.
+
+debug:
+  type: boolean
+  description: Set to true if you would like to see extra information on logs
+  example: false
+
+## An instance would be:
+# registry: docker.io
+# repository: bitnami/nginx
+# tag: 1.16.1-debian-10-r63
+# pullPolicy: IfNotPresent
+# debug: false
+```
+
+### Persistence
+
+```yaml
+enabled:
+  type: boolean
+  description: Whether enable persistence.
+  example: true
+
+storageClass:
+  type: string
+  description: Ghost data Persistent Volume Storage Class, If set to "-", storageClassName: "" which disables dynamic provisioning.
+  example: "-"
+
+accessMode:
+  type: string
+  description: Access mode for the Persistent Volume Storage.
+  example: ReadWriteOnce
+
+size:
+  type: string
+  description: Size the Persistent Volume Storage.
+  example: 8Gi
+
+path:
+  type: string
+  description: Path to be persisted.
+  example: /bitnami
+
+## An instance would be:
+# enabled: true
+# storageClass: "-"
+# accessMode: ReadWriteOnce
+# size: 8Gi
+# path: /bitnami
+```
+
+### ExistingSecret
+
+```yaml
+name:
+  type: string
+  description: Name of the existing secret.
+  example: mySecret
+keyMapping:
+  description: Mapping between the expected key name and the name of the key in the existing secret.
+  type: object
+
+## An instance would be:
+# name: mySecret
+# keyMapping:
+#   password: myPasswordKey
+```
+
+#### Example of use
+
+When we store sensitive data for a deployment in a secret, some times we want to give to users the possibility of using theirs existing secrets.
+
+```yaml
+# templates/secret.yaml
+---
+apiVersion: v1
+kind: Secret
+metadata:
+  name: {{ include "common.names.fullname" . }}
+  labels:
+    app: {{ include "common.names.fullname" . }}
+type: Opaque
+data:
+  password: {{ .Values.password | b64enc | quote }}
+
+# templates/dpl.yaml
+---
+...
+      env:
+        - name: PASSWORD
+          valueFrom:
+            secretKeyRef:
+              name: {{ include "common.secrets.name" (dict "existingSecret" .Values.existingSecret "context" $) }}
+              key: {{ include "common.secrets.key" (dict "existingSecret" .Values.existingSecret "key" "password") }}
+...
+
+# values.yaml
+---
+name: mySecret
+keyMapping:
+  password: myPasswordKey
+```
+
+### ValidateValue
+
+#### NOTES.txt
+
+```console
+{{- $validateValueConf00 := (dict "valueKey" "path.to.value00" "secret" "secretName" "field" "password-00") -}}
+{{- $validateValueConf01 := (dict "valueKey" "path.to.value01" "secret" "secretName" "field" "password-01") -}}
+
+{{ include "common.validations.values.multiple.empty" (dict "required" (list $validateValueConf00 $validateValueConf01) "context" $) }}
+```
+
+If we force those values to be empty we will see some alerts
+
+```console
+$ helm install test mychart --set path.to.value00="",path.to.value01=""
+    'path.to.value00' must not be empty, please add '--set path.to.value00=$PASSWORD_00' to the command. To get the current value:
+
+        export PASSWORD_00=$(kubectl get secret --namespace default secretName -o jsonpath="{.data.password-00}" | base64 --decode)
+
+    'path.to.value01' must not be empty, please add '--set path.to.value01=$PASSWORD_01' to the command. To get the current value:
+
+        export PASSWORD_01=$(kubectl get secret --namespace default secretName -o jsonpath="{.data.password-01}" | base64 --decode)
+```
+
+## Upgrading
+
+### To 1.0.0
+
+[On November 13, 2020, Helm v2 support was formally finished](https://github.com/helm/charts#status-of-the-project), this major version is the result of the required changes applied to the Helm Chart to be able to incorporate the different features added in Helm v3 and to be consistent with the Helm project itself regarding the Helm v2 EOL.
+
+**What changes were introduced in this major version?**
+
+- Previous versions of this Helm Chart use `apiVersion: v1` (installable by both Helm 2 and 3), this Helm Chart was updated to `apiVersion: v2` (installable by Helm 3 only). [Here](https://helm.sh/docs/topics/charts/#the-apiversion-field) you can find more information about the `apiVersion` field.
+- Use `type: library`. [Here](https://v3.helm.sh/docs/faq/#library-chart-support) you can find more information.
+- The different fields present in the *Chart.yaml* file has been ordered alphabetically in a homogeneous way for all the Bitnami Helm Charts
+
+**Considerations when upgrading to this version**
+
+- If you want to upgrade to this version from a previous one installed with Helm v3, you shouldn't face any issues
+- If you want to upgrade to this version using Helm v2, this scenario is not supported as this version doesn't support Helm v2 anymore
+- If you installed the previous version with Helm v2 and wants to upgrade to this version with Helm v3, please refer to the [official Helm documentation](https://helm.sh/docs/topics/v2_v3_migration/#migration-use-cases) about migrating from Helm v2 to v3
+
+**Useful links**
+
+- https://docs.bitnami.com/tutorials/resolve-helm2-helm3-post-migration-issues/
+- https://helm.sh/docs/topics/v2_v3_migration/
+- https://helm.sh/blog/migrate-from-helm-v2-to-helm-v3/
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_affinities.tpl b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_affinities.tpl
new file mode 100644
index 0000000000..493a6dc7e4
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_affinities.tpl
@@ -0,0 +1,94 @@
+{{/* vim: set filetype=mustache: */}}
+
+{{/*
+Return a soft nodeAffinity definition 
+{{ include "common.affinities.nodes.soft" (dict "key" "FOO" "values" (list "BAR" "BAZ")) -}}
+*/}}
+{{- define "common.affinities.nodes.soft" -}}
+preferredDuringSchedulingIgnoredDuringExecution:
+  - preference:
+      matchExpressions:
+        - key: {{ .key }}
+          operator: In
+          values:
+            {{- range .values }}
+            - {{ . }}
+            {{- end }}
+    weight: 1
+{{- end -}}
+
+{{/*
+Return a hard nodeAffinity definition
+{{ include "common.affinities.nodes.hard" (dict "key" "FOO" "values" (list "BAR" "BAZ")) -}}
+*/}}
+{{- define "common.affinities.nodes.hard" -}}
+requiredDuringSchedulingIgnoredDuringExecution:
+  nodeSelectorTerms:
+    - matchExpressions:
+        - key: {{ .key }}
+          operator: In
+          values:
+            {{- range .values }}
+            - {{ . }}
+            {{- end }}
+{{- end -}}
+
+{{/*
+Return a nodeAffinity definition
+{{ include "common.affinities.nodes" (dict "type" "soft" "key" "FOO" "values" (list "BAR" "BAZ")) -}}
+*/}}
+{{- define "common.affinities.nodes" -}}
+  {{- if eq .type "soft" }}
+    {{- include "common.affinities.nodes.soft" . -}}
+  {{- else if eq .type "hard" }}
+    {{- include "common.affinities.nodes.hard" . -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Return a soft podAffinity/podAntiAffinity definition
+{{ include "common.affinities.pods.soft" (dict "component" "FOO" "context" $) -}}
+*/}}
+{{- define "common.affinities.pods.soft" -}}
+{{- $component := default "" .component -}}
+preferredDuringSchedulingIgnoredDuringExecution:
+  - podAffinityTerm:
+      labelSelector:
+        matchLabels: {{- (include "common.labels.matchLabels" .context) | nindent 10 }}
+          {{- if not (empty $component) }}
+          {{ printf "app.kubernetes.io/component: %s" $component }}
+          {{- end }}
+      namespaces:
+        - {{ .context.Release.Namespace | quote }}
+      topologyKey: kubernetes.io/hostname
+    weight: 1
+{{- end -}}
+
+{{/*
+Return a hard podAffinity/podAntiAffinity definition
+{{ include "common.affinities.pods.hard" (dict "component" "FOO" "context" $) -}}
+*/}}
+{{- define "common.affinities.pods.hard" -}}
+{{- $component := default "" .component -}}
+requiredDuringSchedulingIgnoredDuringExecution:
+  - labelSelector:
+      matchLabels: {{- (include "common.labels.matchLabels" .context) | nindent 8 }}
+        {{- if not (empty $component) }}
+        {{ printf "app.kubernetes.io/component: %s" $component }}
+        {{- end }}
+    namespaces:
+      - {{ .context.Release.Namespace | quote }}
+    topologyKey: kubernetes.io/hostname
+{{- end -}}
+
+{{/*
+Return a podAffinity/podAntiAffinity definition
+{{ include "common.affinities.pods" (dict "type" "soft" "key" "FOO" "values" (list "BAR" "BAZ")) -}}
+*/}}
+{{- define "common.affinities.pods" -}}
+  {{- if eq .type "soft" }}
+    {{- include "common.affinities.pods.soft" . -}}
+  {{- else if eq .type "hard" }}
+    {{- include "common.affinities.pods.hard" . -}}
+  {{- end -}}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_capabilities.tpl b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_capabilities.tpl
new file mode 100644
index 0000000000..4dde56a38d
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_capabilities.tpl
@@ -0,0 +1,95 @@
+{{/* vim: set filetype=mustache: */}}
+
+{{/*
+Return the target Kubernetes version
+*/}}
+{{- define "common.capabilities.kubeVersion" -}}
+{{- if .Values.global }}
+    {{- if .Values.global.kubeVersion }}
+    {{- .Values.global.kubeVersion -}}
+    {{- else }}
+    {{- default .Capabilities.KubeVersion.Version .Values.kubeVersion -}}
+    {{- end -}}
+{{- else }}
+{{- default .Capabilities.KubeVersion.Version .Values.kubeVersion -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return the appropriate apiVersion for deployment.
+*/}}
+{{- define "common.capabilities.deployment.apiVersion" -}}
+{{- if semverCompare "<1.14-0" (include "common.capabilities.kubeVersion" .) -}}
+{{- print "extensions/v1beta1" -}}
+{{- else -}}
+{{- print "apps/v1" -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return the appropriate apiVersion for statefulset.
+*/}}
+{{- define "common.capabilities.statefulset.apiVersion" -}}
+{{- if semverCompare "<1.14-0" (include "common.capabilities.kubeVersion" .) -}}
+{{- print "apps/v1beta1" -}}
+{{- else -}}
+{{- print "apps/v1" -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return the appropriate apiVersion for ingress.
+*/}}
+{{- define "common.capabilities.ingress.apiVersion" -}}
+{{- if .Values.ingress -}}
+{{- if .Values.ingress.apiVersion -}}
+{{- .Values.ingress.apiVersion -}}
+{{- else if semverCompare "<1.14-0" (include "common.capabilities.kubeVersion" .) -}}
+{{- print "extensions/v1beta1" -}}
+{{- else if semverCompare "<1.19-0" (include "common.capabilities.kubeVersion" .) -}}
+{{- print "networking.k8s.io/v1beta1" -}}
+{{- else -}}
+{{- print "networking.k8s.io/v1" -}}
+{{- end }}
+{{- else if semverCompare "<1.14-0" (include "common.capabilities.kubeVersion" .) -}}
+{{- print "extensions/v1beta1" -}}
+{{- else if semverCompare "<1.19-0" (include "common.capabilities.kubeVersion" .) -}}
+{{- print "networking.k8s.io/v1beta1" -}}
+{{- else -}}
+{{- print "networking.k8s.io/v1" -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return the appropriate apiVersion for RBAC resources.
+*/}}
+{{- define "common.capabilities.rbac.apiVersion" -}}
+{{- if semverCompare "<1.17-0" (include "common.capabilities.kubeVersion" .) -}}
+{{- print "rbac.authorization.k8s.io/v1beta1" -}}
+{{- else -}}
+{{- print "rbac.authorization.k8s.io/v1" -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return the appropriate apiVersion for CRDs.
+*/}}
+{{- define "common.capabilities.crd.apiVersion" -}}
+{{- if semverCompare "<1.19-0" (include "common.capabilities.kubeVersion" .) -}}
+{{- print "apiextensions.k8s.io/v1beta1" -}}
+{{- else -}}
+{{- print "apiextensions.k8s.io/v1" -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Returns true if the used Helm version is 3.3+.
+A way to check the used Helm version was not introduced until version 3.3.0 with .Capabilities.HelmVersion, which contains an additional "{}}"  structure.
+This check is introduced as a regexMatch instead of {{ if .Capabilities.HelmVersion }} because checking for the key HelmVersion in <3.3 results in a "interface not found" error.
+**To be removed when the catalog's minimun Helm version is 3.3**
+*/}}
+{{- define "common.capabilities.supportsHelmVersion" -}}
+{{- if regexMatch "{(v[0-9])*[^}]*}}$" (.Capabilities | toString ) }}
+  {{- true -}}
+{{- end -}}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_errors.tpl b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_errors.tpl
new file mode 100644
index 0000000000..a79cc2e322
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_errors.tpl
@@ -0,0 +1,23 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Through error when upgrading using empty passwords values that must not be empty.
+
+Usage:
+{{- $validationError00 := include "common.validations.values.single.empty" (dict "valueKey" "path.to.password00" "secret" "secretName" "field" "password-00") -}}
+{{- $validationError01 := include "common.validations.values.single.empty" (dict "valueKey" "path.to.password01" "secret" "secretName" "field" "password-01") -}}
+{{ include "common.errors.upgrade.passwords.empty" (dict "validationErrors" (list $validationError00 $validationError01) "context" $) }}
+
+Required password params:
+  - validationErrors - String - Required. List of validation strings to be return, if it is empty it won't throw error.
+  - context - Context - Required. Parent context.
+*/}}
+{{- define "common.errors.upgrade.passwords.empty" -}}
+  {{- $validationErrors := join "" .validationErrors -}}
+  {{- if and $validationErrors .context.Release.IsUpgrade -}}
+    {{- $errorString := "\nPASSWORDS ERROR: You must provide your current passwords when upgrading the release." -}}
+    {{- $errorString = print $errorString "\n                 Note that even after reinstallation, old credentials may be needed as they may be kept in persistent volume claims." -}}
+    {{- $errorString = print $errorString "\n                 Further information can be obtained at https://docs.bitnami.com/general/how-to/troubleshoot-helm-chart-issues/#credential-errors-while-upgrading-chart-releases" -}}
+    {{- $errorString = print $errorString "\n%s" -}}
+    {{- printf $errorString $validationErrors | fail -}}
+  {{- end -}}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_images.tpl b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_images.tpl
new file mode 100644
index 0000000000..60f04fd6e2
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_images.tpl
@@ -0,0 +1,47 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Return the proper image name
+{{ include "common.images.image" ( dict "imageRoot" .Values.path.to.the.image "global" $) }}
+*/}}
+{{- define "common.images.image" -}}
+{{- $registryName := .imageRoot.registry -}}
+{{- $repositoryName := .imageRoot.repository -}}
+{{- $tag := .imageRoot.tag | toString -}}
+{{- if .global }}
+    {{- if .global.imageRegistry }}
+     {{- $registryName = .global.imageRegistry -}}
+    {{- end -}}
+{{- end -}}
+{{- if $registryName }}
+{{- printf "%s/%s:%s" $registryName $repositoryName $tag -}}
+{{- else -}}
+{{- printf "%s:%s" $repositoryName $tag -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return the proper Docker Image Registry Secret Names
+{{ include "common.images.pullSecrets" ( dict "images" (list .Values.path.to.the.image1, .Values.path.to.the.image2) "global" .Values.global) }}
+*/}}
+{{- define "common.images.pullSecrets" -}}
+  {{- $pullSecrets := list }}
+
+  {{- if .global }}
+    {{- range .global.imagePullSecrets -}}
+      {{- $pullSecrets = append $pullSecrets . -}}
+    {{- end -}}
+  {{- end -}}
+
+  {{- range .images -}}
+    {{- range .pullSecrets -}}
+      {{- $pullSecrets = append $pullSecrets . -}}
+    {{- end -}}
+  {{- end -}}
+
+  {{- if (not (empty $pullSecrets)) }}
+imagePullSecrets:
+    {{- range $pullSecrets }}
+  - name: {{ . }}
+    {{- end }}
+  {{- end }}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_ingress.tpl b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_ingress.tpl
new file mode 100644
index 0000000000..622ef50e3c
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_ingress.tpl
@@ -0,0 +1,42 @@
+{{/* vim: set filetype=mustache: */}}
+
+{{/*
+Generate backend entry that is compatible with all Kubernetes API versions.
+
+Usage:
+{{ include "common.ingress.backend" (dict "serviceName" "backendName" "servicePort" "backendPort" "context" $) }}
+
+Params:
+  - serviceName - String. Name of an existing service backend
+  - servicePort - String/Int. Port name (or number) of the service. It will be translated to different yaml depending if it is a string or an integer.
+  - context - Dict - Required. The context for the template evaluation.
+*/}}
+{{- define "common.ingress.backend" -}}
+{{- $apiVersion := (include "common.capabilities.ingress.apiVersion" .context) -}}
+{{- if or (eq $apiVersion "extensions/v1beta1") (eq $apiVersion "networking.k8s.io/v1beta1") -}}
+serviceName: {{ .serviceName }}
+servicePort: {{ .servicePort }}
+{{- else -}}
+service:
+  name: {{ .serviceName }}
+  port:
+    {{- if typeIs "string" .servicePort }}
+    name: {{ .servicePort }}
+    {{- else if typeIs "int" .servicePort }}
+    number: {{ .servicePort }}
+    {{- end }}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Print "true" if the API pathType field is supported
+Usage:
+{{ include "common.ingress.supportsPathType" . }}
+*/}}
+{{- define "common.ingress.supportsPathType" -}}
+{{- if (semverCompare "<1.18-0" (include "common.capabilities.kubeVersion" .)) -}}
+{{- print "false" -}}
+{{- else -}}
+{{- print "true" -}}
+{{- end -}}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_labels.tpl b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_labels.tpl
new file mode 100644
index 0000000000..252066c7e2
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_labels.tpl
@@ -0,0 +1,18 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Kubernetes standard labels
+*/}}
+{{- define "common.labels.standard" -}}
+app.kubernetes.io/name: {{ include "common.names.name" . }}
+helm.sh/chart: {{ include "common.names.chart" . }}
+app.kubernetes.io/instance: {{ .Release.Name }}
+app.kubernetes.io/managed-by: {{ .Release.Service }}
+{{- end -}}
+
+{{/*
+Labels to use on deploy.spec.selector.matchLabels and svc.spec.selector
+*/}}
+{{- define "common.labels.matchLabels" -}}
+app.kubernetes.io/name: {{ include "common.names.name" . }}
+app.kubernetes.io/instance: {{ .Release.Name }}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_names.tpl b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_names.tpl
new file mode 100644
index 0000000000..adf2a74f48
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_names.tpl
@@ -0,0 +1,32 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Expand the name of the chart.
+*/}}
+{{- define "common.names.name" -}}
+{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Create chart name and version as used by the chart label.
+*/}}
+{{- define "common.names.chart" -}}
+{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Create a default fully qualified app name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+If release name contains chart name it will be used as a full name.
+*/}}
+{{- define "common.names.fullname" -}}
+{{- if .Values.fullnameOverride -}}
+{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" -}}
+{{- else -}}
+{{- $name := default .Chart.Name .Values.nameOverride -}}
+{{- if contains $name .Release.Name -}}
+{{- .Release.Name | trunc 63 | trimSuffix "-" -}}
+{{- else -}}
+{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+{{- end -}}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_secrets.tpl b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_secrets.tpl
new file mode 100644
index 0000000000..60b84a7019
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_secrets.tpl
@@ -0,0 +1,129 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Generate secret name.
+
+Usage:
+{{ include "common.secrets.name" (dict "existingSecret" .Values.path.to.the.existingSecret "defaultNameSuffix" "mySuffix" "context" $) }}
+
+Params:
+  - existingSecret - ExistingSecret/String - Optional. The path to the existing secrets in the values.yaml given by the user
+    to be used instead of the default one. Allows for it to be of type String (just the secret name) for backwards compatibility.
+    +info: https://github.com/bitnami/charts/tree/master/bitnami/common#existingsecret
+  - defaultNameSuffix - String - Optional. It is used only if we have several secrets in the same deployment.
+  - context - Dict - Required. The context for the template evaluation.
+*/}}
+{{- define "common.secrets.name" -}}
+{{- $name := (include "common.names.fullname" .context) -}}
+
+{{- if .defaultNameSuffix -}}
+{{- $name = printf "%s-%s" $name .defaultNameSuffix | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{- with .existingSecret -}}
+{{- if not (typeIs "string" .) -}}
+{{- with .name -}}
+{{- $name = . -}}
+{{- end -}}
+{{- else -}}
+{{- $name = . -}}
+{{- end -}}
+{{- end -}}
+
+{{- printf "%s" $name -}}
+{{- end -}}
+
+{{/*
+Generate secret key.
+
+Usage:
+{{ include "common.secrets.key" (dict "existingSecret" .Values.path.to.the.existingSecret "key" "keyName") }}
+
+Params:
+  - existingSecret - ExistingSecret/String - Optional. The path to the existing secrets in the values.yaml given by the user
+    to be used instead of the default one. Allows for it to be of type String (just the secret name) for backwards compatibility.
+    +info: https://github.com/bitnami/charts/tree/master/bitnami/common#existingsecret
+  - key - String - Required. Name of the key in the secret.
+*/}}
+{{- define "common.secrets.key" -}}
+{{- $key := .key -}}
+
+{{- if .existingSecret -}}
+  {{- if not (typeIs "string" .existingSecret) -}}
+    {{- if .existingSecret.keyMapping -}}
+      {{- $key = index .existingSecret.keyMapping $.key -}}
+    {{- end -}}
+  {{- end }}
+{{- end -}}
+
+{{- printf "%s" $key -}}
+{{- end -}}
+
+{{/*
+Generate secret password or retrieve one if already created.
+
+Usage:
+{{ include "common.secrets.passwords.manage" (dict "secret" "secret-name" "key" "keyName" "providedValues" (list "path.to.password1" "path.to.password2") "length" 10 "strong" false "chartName" "chartName" "context" $) }}
+
+Params:
+  - secret - String - Required - Name of the 'Secret' resource where the password is stored.
+  - key - String - Required - Name of the key in the secret.
+  - providedValues - List<String> - Required - The path to the validating value in the values.yaml, e.g: "mysql.password". Will pick first parameter with a defined value.
+  - length - int - Optional - Length of the generated random password.
+  - strong - Boolean - Optional - Whether to add symbols to the generated random password.
+  - chartName - String - Optional - Name of the chart used when said chart is deployed as a subchart.
+  - context - Context - Required - Parent context.
+*/}}
+{{- define "common.secrets.passwords.manage" -}}
+
+{{- $password := "" }}
+{{- $subchart := "" }}
+{{- $chartName := default "" .chartName }}
+{{- $passwordLength := default 10 .length }}
+{{- $providedPasswordKey := include "common.utils.getKeyFromList" (dict "keys" .providedValues "context" $.context) }}
+{{- $providedPasswordValue := include "common.utils.getValueFromKey" (dict "key" $providedPasswordKey "context" $.context) }}
+{{- $secret := (lookup "v1" "Secret" $.context.Release.Namespace .secret) }}
+{{- if $secret }}
+  {{- if index $secret.data .key }}
+  {{- $password = index $secret.data .key }}
+  {{- end -}}
+{{- else if $providedPasswordValue }}
+  {{- $password = $providedPasswordValue | toString | b64enc | quote }}
+{{- else }}
+
+  {{- if .context.Values.enabled }}
+    {{- $subchart = $chartName }}
+  {{- end -}}
+
+  {{- $requiredPassword := dict "valueKey" $providedPasswordKey "secret" .secret "field" .key "subchart" $subchart "context" $.context -}}
+  {{- $requiredPasswordError := include "common.validations.values.single.empty" $requiredPassword -}}
+  {{- $passwordValidationErrors := list $requiredPasswordError -}}
+  {{- include "common.errors.upgrade.passwords.empty" (dict "validationErrors" $passwordValidationErrors "context" $.context) -}}
+  
+  {{- if .strong }}
+    {{- $subStr := list (lower (randAlpha 1)) (randNumeric 1) (upper (randAlpha 1)) | join "_" }}
+    {{- $password = randAscii $passwordLength }}
+    {{- $password = regexReplaceAllLiteral "\\W" $password "@" | substr 5 $passwordLength }}
+    {{- $password = printf "%s%s" $subStr $password | toString | shuffle | b64enc | quote }}
+  {{- else }}
+    {{- $password = randAlphaNum $passwordLength | b64enc | quote }}
+  {{- end }}
+{{- end -}}
+{{- printf "%s" $password -}}
+{{- end -}}
+
+{{/*
+Returns whether a previous generated secret already exists
+
+Usage:
+{{ include "common.secrets.exists" (dict "secret" "secret-name" "context" $) }}
+
+Params:
+  - secret - String - Required - Name of the 'Secret' resource where the password is stored.
+  - context - Context - Required - Parent context.
+*/}}
+{{- define "common.secrets.exists" -}}
+{{- $secret := (lookup "v1" "Secret" $.context.Release.Namespace .secret) }}
+{{- if $secret }}
+  {{- true -}}
+{{- end -}}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_storage.tpl b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_storage.tpl
new file mode 100644
index 0000000000..60e2a844f6
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_storage.tpl
@@ -0,0 +1,23 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Return  the proper Storage Class
+{{ include "common.storage.class" ( dict "persistence" .Values.path.to.the.persistence "global" $) }}
+*/}}
+{{- define "common.storage.class" -}}
+
+{{- $storageClass := .persistence.storageClass -}}
+{{- if .global -}}
+    {{- if .global.storageClass -}}
+        {{- $storageClass = .global.storageClass -}}
+    {{- end -}}
+{{- end -}}
+
+{{- if $storageClass -}}
+  {{- if (eq "-" $storageClass) -}}
+      {{- printf "storageClassName: \"\"" -}}
+  {{- else }}
+      {{- printf "storageClassName: %s" $storageClass -}}
+  {{- end -}}
+{{- end -}}
+
+{{- end -}}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_tplvalues.tpl b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_tplvalues.tpl
new file mode 100644
index 0000000000..2db166851b
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_tplvalues.tpl
@@ -0,0 +1,13 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Renders a value that contains template.
+Usage:
+{{ include "common.tplvalues.render" ( dict "value" .Values.path.to.the.Value "context" $) }}
+*/}}
+{{- define "common.tplvalues.render" -}}
+    {{- if typeIs "string" .value }}
+        {{- tpl .value .context }}
+    {{- else }}
+        {{- tpl (.value | toYaml) .context }}
+    {{- end }}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_utils.tpl b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_utils.tpl
new file mode 100644
index 0000000000..ea083a249f
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_utils.tpl
@@ -0,0 +1,62 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Print instructions to get a secret value.
+Usage:
+{{ include "common.utils.secret.getvalue" (dict "secret" "secret-name" "field" "secret-value-field" "context" $) }}
+*/}}
+{{- define "common.utils.secret.getvalue" -}}
+{{- $varname := include "common.utils.fieldToEnvVar" . -}}
+export {{ $varname }}=$(kubectl get secret --namespace {{ .context.Release.Namespace | quote }} {{ .secret }} -o jsonpath="{.data.{{ .field }}}" | base64 --decode)
+{{- end -}}
+
+{{/*
+Build env var name given a field
+Usage:
+{{ include "common.utils.fieldToEnvVar" dict "field" "my-password" }}
+*/}}
+{{- define "common.utils.fieldToEnvVar" -}}
+  {{- $fieldNameSplit := splitList "-" .field -}}
+  {{- $upperCaseFieldNameSplit := list -}}
+
+  {{- range $fieldNameSplit -}}
+    {{- $upperCaseFieldNameSplit = append $upperCaseFieldNameSplit ( upper . ) -}}
+  {{- end -}}
+
+  {{ join "_" $upperCaseFieldNameSplit }}
+{{- end -}}
+
+{{/*
+Gets a value from .Values given
+Usage:
+{{ include "common.utils.getValueFromKey" (dict "key" "path.to.key" "context" $) }}
+*/}}
+{{- define "common.utils.getValueFromKey" -}}
+{{- $splitKey := splitList "." .key -}}
+{{- $value := "" -}}
+{{- $latestObj := $.context.Values -}}
+{{- range $splitKey -}}
+  {{- if not $latestObj -}}
+    {{- printf "please review the entire path of '%s' exists in values" $.key | fail -}}
+  {{- end -}}
+  {{- $value = ( index $latestObj . ) -}}
+  {{- $latestObj = $value -}}
+{{- end -}}
+{{- printf "%v" (default "" $value) -}} 
+{{- end -}}
+
+{{/*
+Returns first .Values key with a defined value or first of the list if all non-defined
+Usage:
+{{ include "common.utils.getKeyFromList" (dict "keys" (list "path.to.key1" "path.to.key2") "context" $) }}
+*/}}
+{{- define "common.utils.getKeyFromList" -}}
+{{- $key := first .keys -}}
+{{- $reverseKeys := reverse .keys }}
+{{- range $reverseKeys }}
+  {{- $value := include "common.utils.getValueFromKey" (dict "key" . "context" $.context ) }}
+  {{- if $value -}}
+    {{- $key = . }}
+  {{- end -}}
+{{- end -}}
+{{- printf "%s" $key -}} 
+{{- end -}}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_warnings.tpl b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_warnings.tpl
new file mode 100644
index 0000000000..ae10fa41ee
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/_warnings.tpl
@@ -0,0 +1,14 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Warning about using rolling tag.
+Usage:
+{{ include "common.warnings.rollingTag" .Values.path.to.the.imageRoot }}
+*/}}
+{{- define "common.warnings.rollingTag" -}}
+
+{{- if and (contains "bitnami/" .repository) (not (.tag | toString | regexFind "-r\\d+$|sha256:")) }}
+WARNING: Rolling tag detected ({{ .repository }}:{{ .tag }}), please note that it is strongly recommended to avoid using rolling tags in a production environment.
++info https://docs.bitnami.com/containers/how-to/understand-rolling-tags-containers/
+{{- end }}
+
+{{- end -}}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/validations/_cassandra.tpl b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/validations/_cassandra.tpl
new file mode 100644
index 0000000000..8679ddffb1
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/validations/_cassandra.tpl
@@ -0,0 +1,72 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Validate Cassandra required passwords are not empty.
+
+Usage:
+{{ include "common.validations.values.cassandra.passwords" (dict "secret" "secretName" "subchart" false "context" $) }}
+Params:
+  - secret - String - Required. Name of the secret where Cassandra values are stored, e.g: "cassandra-passwords-secret"
+  - subchart - Boolean - Optional. Whether Cassandra is used as subchart or not. Default: false
+*/}}
+{{- define "common.validations.values.cassandra.passwords" -}}
+  {{- $existingSecret := include "common.cassandra.values.existingSecret" . -}}
+  {{- $enabled := include "common.cassandra.values.enabled" . -}}
+  {{- $dbUserPrefix := include "common.cassandra.values.key.dbUser" . -}}
+  {{- $valueKeyPassword := printf "%s.password" $dbUserPrefix -}}
+
+  {{- if and (not $existingSecret) (eq $enabled "true") -}}
+    {{- $requiredPasswords := list -}}
+
+    {{- $requiredPassword := dict "valueKey" $valueKeyPassword "secret" .secret "field" "cassandra-password" -}}
+    {{- $requiredPasswords = append $requiredPasswords $requiredPassword -}}
+
+    {{- include "common.validations.values.multiple.empty" (dict "required" $requiredPasswords "context" .context) -}}
+
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to get the right value for existingSecret.
+
+Usage:
+{{ include "common.cassandra.values.existingSecret" (dict "context" $) }}
+Params:
+  - subchart - Boolean - Optional. Whether Cassandra is used as subchart or not. Default: false
+*/}}
+{{- define "common.cassandra.values.existingSecret" -}}
+  {{- if .subchart -}}
+    {{- .context.Values.cassandra.dbUser.existingSecret | quote -}}
+  {{- else -}}
+    {{- .context.Values.dbUser.existingSecret | quote -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to get the right value for enabled cassandra.
+
+Usage:
+{{ include "common.cassandra.values.enabled" (dict "context" $) }}
+*/}}
+{{- define "common.cassandra.values.enabled" -}}
+  {{- if .subchart -}}
+    {{- printf "%v" .context.Values.cassandra.enabled -}}
+  {{- else -}}
+    {{- printf "%v" (not .context.Values.enabled) -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to get the right value for the key dbUser
+
+Usage:
+{{ include "common.cassandra.values.key.dbUser" (dict "subchart" "true" "context" $) }}
+Params:
+  - subchart - Boolean - Optional. Whether Cassandra is used as subchart or not. Default: false
+*/}}
+{{- define "common.cassandra.values.key.dbUser" -}}
+  {{- if .subchart -}}
+    cassandra.dbUser
+  {{- else -}}
+    dbUser
+  {{- end -}}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/validations/_mariadb.tpl b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/validations/_mariadb.tpl
new file mode 100644
index 0000000000..bb5ed7253d
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/validations/_mariadb.tpl
@@ -0,0 +1,103 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Validate MariaDB required passwords are not empty.
+
+Usage:
+{{ include "common.validations.values.mariadb.passwords" (dict "secret" "secretName" "subchart" false "context" $) }}
+Params:
+  - secret - String - Required. Name of the secret where MariaDB values are stored, e.g: "mysql-passwords-secret"
+  - subchart - Boolean - Optional. Whether MariaDB is used as subchart or not. Default: false
+*/}}
+{{- define "common.validations.values.mariadb.passwords" -}}
+  {{- $existingSecret := include "common.mariadb.values.auth.existingSecret" . -}}
+  {{- $enabled := include "common.mariadb.values.enabled" . -}}
+  {{- $architecture := include "common.mariadb.values.architecture" . -}}
+  {{- $authPrefix := include "common.mariadb.values.key.auth" . -}}
+  {{- $valueKeyRootPassword := printf "%s.rootPassword" $authPrefix -}}
+  {{- $valueKeyUsername := printf "%s.username" $authPrefix -}}
+  {{- $valueKeyPassword := printf "%s.password" $authPrefix -}}
+  {{- $valueKeyReplicationPassword := printf "%s.replicationPassword" $authPrefix -}}
+
+  {{- if and (not $existingSecret) (eq $enabled "true") -}}
+    {{- $requiredPasswords := list -}}
+
+    {{- $requiredRootPassword := dict "valueKey" $valueKeyRootPassword "secret" .secret "field" "mariadb-root-password" -}}
+    {{- $requiredPasswords = append $requiredPasswords $requiredRootPassword -}}
+
+    {{- $valueUsername := include "common.utils.getValueFromKey" (dict "key" $valueKeyUsername "context" .context) }}
+    {{- if not (empty $valueUsername) -}}
+        {{- $requiredPassword := dict "valueKey" $valueKeyPassword "secret" .secret "field" "mariadb-password" -}}
+        {{- $requiredPasswords = append $requiredPasswords $requiredPassword -}}
+    {{- end -}}
+
+    {{- if (eq $architecture "replication") -}}
+        {{- $requiredReplicationPassword := dict "valueKey" $valueKeyReplicationPassword "secret" .secret "field" "mariadb-replication-password" -}}
+        {{- $requiredPasswords = append $requiredPasswords $requiredReplicationPassword -}}
+    {{- end -}}
+
+    {{- include "common.validations.values.multiple.empty" (dict "required" $requiredPasswords "context" .context) -}}
+
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to get the right value for existingSecret.
+
+Usage:
+{{ include "common.mariadb.values.auth.existingSecret" (dict "context" $) }}
+Params:
+  - subchart - Boolean - Optional. Whether MariaDB is used as subchart or not. Default: false
+*/}}
+{{- define "common.mariadb.values.auth.existingSecret" -}}
+  {{- if .subchart -}}
+    {{- .context.Values.mariadb.auth.existingSecret | quote -}}
+  {{- else -}}
+    {{- .context.Values.auth.existingSecret | quote -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to get the right value for enabled mariadb.
+
+Usage:
+{{ include "common.mariadb.values.enabled" (dict "context" $) }}
+*/}}
+{{- define "common.mariadb.values.enabled" -}}
+  {{- if .subchart -}}
+    {{- printf "%v" .context.Values.mariadb.enabled -}}
+  {{- else -}}
+    {{- printf "%v" (not .context.Values.enabled) -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to get the right value for architecture
+
+Usage:
+{{ include "common.mariadb.values.architecture" (dict "subchart" "true" "context" $) }}
+Params:
+  - subchart - Boolean - Optional. Whether MariaDB is used as subchart or not. Default: false
+*/}}
+{{- define "common.mariadb.values.architecture" -}}
+  {{- if .subchart -}}
+    {{- .context.Values.mariadb.architecture -}}
+  {{- else -}}
+    {{- .context.Values.architecture -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to get the right value for the key auth
+
+Usage:
+{{ include "common.mariadb.values.key.auth" (dict "subchart" "true" "context" $) }}
+Params:
+  - subchart - Boolean - Optional. Whether MariaDB is used as subchart or not. Default: false
+*/}}
+{{- define "common.mariadb.values.key.auth" -}}
+  {{- if .subchart -}}
+    mariadb.auth
+  {{- else -}}
+    auth
+  {{- end -}}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/validations/_mongodb.tpl b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/validations/_mongodb.tpl
new file mode 100644
index 0000000000..7d5ecbccb4
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/validations/_mongodb.tpl
@@ -0,0 +1,108 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Validate MongoDB(R) required passwords are not empty.
+
+Usage:
+{{ include "common.validations.values.mongodb.passwords" (dict "secret" "secretName" "subchart" false "context" $) }}
+Params:
+  - secret - String - Required. Name of the secret where MongoDB(R) values are stored, e.g: "mongodb-passwords-secret"
+  - subchart - Boolean - Optional. Whether MongoDB(R) is used as subchart or not. Default: false
+*/}}
+{{- define "common.validations.values.mongodb.passwords" -}}
+  {{- $existingSecret := include "common.mongodb.values.auth.existingSecret" . -}}
+  {{- $enabled := include "common.mongodb.values.enabled" . -}}
+  {{- $authPrefix := include "common.mongodb.values.key.auth" . -}}
+  {{- $architecture := include "common.mongodb.values.architecture" . -}}
+  {{- $valueKeyRootPassword := printf "%s.rootPassword" $authPrefix -}}
+  {{- $valueKeyUsername := printf "%s.username" $authPrefix -}}
+  {{- $valueKeyDatabase := printf "%s.database" $authPrefix -}}
+  {{- $valueKeyPassword := printf "%s.password" $authPrefix -}}
+  {{- $valueKeyReplicaSetKey := printf "%s.replicaSetKey" $authPrefix -}}
+  {{- $valueKeyAuthEnabled := printf "%s.enabled" $authPrefix -}}
+
+  {{- $authEnabled := include "common.utils.getValueFromKey" (dict "key" $valueKeyAuthEnabled "context" .context) -}}
+
+  {{- if and (not $existingSecret) (eq $enabled "true") (eq $authEnabled "true") -}}
+    {{- $requiredPasswords := list -}}
+
+    {{- $requiredRootPassword := dict "valueKey" $valueKeyRootPassword "secret" .secret "field" "mongodb-root-password" -}}
+    {{- $requiredPasswords = append $requiredPasswords $requiredRootPassword -}}
+
+    {{- $valueUsername := include "common.utils.getValueFromKey" (dict "key" $valueKeyUsername "context" .context) }}
+    {{- $valueDatabase := include "common.utils.getValueFromKey" (dict "key" $valueKeyDatabase "context" .context) }}
+    {{- if and $valueUsername $valueDatabase -}}
+        {{- $requiredPassword := dict "valueKey" $valueKeyPassword "secret" .secret "field" "mongodb-password" -}}
+        {{- $requiredPasswords = append $requiredPasswords $requiredPassword -}}
+    {{- end -}}
+
+    {{- if (eq $architecture "replicaset") -}}
+        {{- $requiredReplicaSetKey := dict "valueKey" $valueKeyReplicaSetKey "secret" .secret "field" "mongodb-replica-set-key" -}}
+        {{- $requiredPasswords = append $requiredPasswords $requiredReplicaSetKey -}}
+    {{- end -}}
+
+    {{- include "common.validations.values.multiple.empty" (dict "required" $requiredPasswords "context" .context) -}}
+
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to get the right value for existingSecret.
+
+Usage:
+{{ include "common.mongodb.values.auth.existingSecret" (dict "context" $) }}
+Params:
+  - subchart - Boolean - Optional. Whether MongoDb is used as subchart or not. Default: false
+*/}}
+{{- define "common.mongodb.values.auth.existingSecret" -}}
+  {{- if .subchart -}}
+    {{- .context.Values.mongodb.auth.existingSecret | quote -}}
+  {{- else -}}
+    {{- .context.Values.auth.existingSecret | quote -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to get the right value for enabled mongodb.
+
+Usage:
+{{ include "common.mongodb.values.enabled" (dict "context" $) }}
+*/}}
+{{- define "common.mongodb.values.enabled" -}}
+  {{- if .subchart -}}
+    {{- printf "%v" .context.Values.mongodb.enabled -}}
+  {{- else -}}
+    {{- printf "%v" (not .context.Values.enabled) -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to get the right value for the key auth
+
+Usage:
+{{ include "common.mongodb.values.key.auth" (dict "subchart" "true" "context" $) }}
+Params:
+  - subchart - Boolean - Optional. Whether MongoDB(R) is used as subchart or not. Default: false
+*/}}
+{{- define "common.mongodb.values.key.auth" -}}
+  {{- if .subchart -}}
+    mongodb.auth
+  {{- else -}}
+    auth
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to get the right value for architecture
+
+Usage:
+{{ include "common.mongodb.values.architecture" (dict "subchart" "true" "context" $) }}
+Params:
+  - subchart - Boolean - Optional. Whether MariaDB is used as subchart or not. Default: false
+*/}}
+{{- define "common.mongodb.values.architecture" -}}
+  {{- if .subchart -}}
+    {{- .context.Values.mongodb.architecture -}}
+  {{- else -}}
+    {{- .context.Values.architecture -}}
+  {{- end -}}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/validations/_postgresql.tpl b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/validations/_postgresql.tpl
new file mode 100644
index 0000000000..992bcd3908
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/validations/_postgresql.tpl
@@ -0,0 +1,131 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Validate PostgreSQL required passwords are not empty.
+
+Usage:
+{{ include "common.validations.values.postgresql.passwords" (dict "secret" "secretName" "subchart" false "context" $) }}
+Params:
+  - secret - String - Required. Name of the secret where postgresql values are stored, e.g: "postgresql-passwords-secret"
+  - subchart - Boolean - Optional. Whether postgresql is used as subchart or not. Default: false
+*/}}
+{{- define "common.validations.values.postgresql.passwords" -}}
+  {{- $existingSecret := include "common.postgresql.values.existingSecret" . -}}
+  {{- $enabled := include "common.postgresql.values.enabled" . -}}
+  {{- $valueKeyPostgresqlPassword := include "common.postgresql.values.key.postgressPassword" . -}}
+  {{- $valueKeyPostgresqlReplicationEnabled := include "common.postgresql.values.key.replicationPassword" . -}}
+
+  {{- if and (not $existingSecret) (eq $enabled "true") -}}
+    {{- $requiredPasswords := list -}}
+
+    {{- $requiredPostgresqlPassword := dict "valueKey" $valueKeyPostgresqlPassword "secret" .secret "field" "postgresql-password" -}}
+    {{- $requiredPasswords = append $requiredPasswords $requiredPostgresqlPassword -}}
+
+    {{- $enabledReplication := include "common.postgresql.values.enabled.replication" . -}}
+    {{- if (eq $enabledReplication "true") -}}
+        {{- $requiredPostgresqlReplicationPassword := dict "valueKey" $valueKeyPostgresqlReplicationEnabled "secret" .secret "field" "postgresql-replication-password" -}}
+        {{- $requiredPasswords = append $requiredPasswords $requiredPostgresqlReplicationPassword -}}
+    {{- end -}}
+
+    {{- include "common.validations.values.multiple.empty" (dict "required" $requiredPasswords "context" .context) -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to decide whether evaluate global values.
+
+Usage:
+{{ include "common.postgresql.values.use.global" (dict "key" "key-of-global" "context" $) }}
+Params:
+  - key - String - Required. Field to be evaluated within global, e.g: "existingSecret"
+*/}}
+{{- define "common.postgresql.values.use.global" -}}
+  {{- if .context.Values.global -}}
+    {{- if .context.Values.global.postgresql -}}
+      {{- index .context.Values.global.postgresql .key | quote -}}
+    {{- end -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to get the right value for existingSecret.
+
+Usage:
+{{ include "common.postgresql.values.existingSecret" (dict "context" $) }}
+*/}}
+{{- define "common.postgresql.values.existingSecret" -}}
+  {{- $globalValue := include "common.postgresql.values.use.global" (dict "key" "existingSecret" "context" .context) -}}
+
+  {{- if .subchart -}}
+    {{- default (.context.Values.postgresql.existingSecret | quote) $globalValue -}}
+  {{- else -}}
+    {{- default (.context.Values.existingSecret | quote) $globalValue -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to get the right value for enabled postgresql.
+
+Usage:
+{{ include "common.postgresql.values.enabled" (dict "context" $) }}
+*/}}
+{{- define "common.postgresql.values.enabled" -}}
+  {{- if .subchart -}}
+    {{- printf "%v" .context.Values.postgresql.enabled -}}
+  {{- else -}}
+    {{- printf "%v" (not .context.Values.enabled) -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to get the right value for the key postgressPassword.
+
+Usage:
+{{ include "common.postgresql.values.key.postgressPassword" (dict "subchart" "true" "context" $) }}
+Params:
+  - subchart - Boolean - Optional. Whether postgresql is used as subchart or not. Default: false
+*/}}
+{{- define "common.postgresql.values.key.postgressPassword" -}}
+  {{- $globalValue := include "common.postgresql.values.use.global" (dict "key" "postgresqlUsername" "context" .context) -}}
+
+  {{- if not $globalValue -}}
+    {{- if .subchart -}}
+      postgresql.postgresqlPassword
+    {{- else -}}
+      postgresqlPassword
+    {{- end -}}
+  {{- else -}}
+    global.postgresql.postgresqlPassword
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to get the right value for enabled.replication.
+
+Usage:
+{{ include "common.postgresql.values.enabled.replication" (dict "subchart" "true" "context" $) }}
+Params:
+  - subchart - Boolean - Optional. Whether postgresql is used as subchart or not. Default: false
+*/}}
+{{- define "common.postgresql.values.enabled.replication" -}}
+  {{- if .subchart -}}
+    {{- printf "%v" .context.Values.postgresql.replication.enabled -}}
+  {{- else -}}
+    {{- printf "%v" .context.Values.replication.enabled -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to get the right value for the key replication.password.
+
+Usage:
+{{ include "common.postgresql.values.key.replicationPassword" (dict "subchart" "true" "context" $) }}
+Params:
+  - subchart - Boolean - Optional. Whether postgresql is used as subchart or not. Default: false
+*/}}
+{{- define "common.postgresql.values.key.replicationPassword" -}}
+  {{- if .subchart -}}
+    postgresql.replication.password
+  {{- else -}}
+    replication.password
+  {{- end -}}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/validations/_redis.tpl b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/validations/_redis.tpl
new file mode 100644
index 0000000000..3e2a47c039
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/validations/_redis.tpl
@@ -0,0 +1,72 @@
+
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Validate Redis(TM) required passwords are not empty.
+
+Usage:
+{{ include "common.validations.values.redis.passwords" (dict "secret" "secretName" "subchart" false "context" $) }}
+Params:
+  - secret - String - Required. Name of the secret where redis values are stored, e.g: "redis-passwords-secret"
+  - subchart - Boolean - Optional. Whether redis is used as subchart or not. Default: false
+*/}}
+{{- define "common.validations.values.redis.passwords" -}}
+  {{- $existingSecret := include "common.redis.values.existingSecret" . -}}
+  {{- $enabled := include "common.redis.values.enabled" . -}}
+  {{- $valueKeyPrefix := include "common.redis.values.keys.prefix" . -}}
+  {{- $valueKeyRedisPassword := printf "%s%s" $valueKeyPrefix "password" -}}
+  {{- $valueKeyRedisUsePassword := printf "%s%s" $valueKeyPrefix "usePassword" -}}
+
+  {{- if and (not $existingSecret) (eq $enabled "true") -}}
+    {{- $requiredPasswords := list -}}
+
+    {{- $usePassword := include "common.utils.getValueFromKey" (dict "key" $valueKeyRedisUsePassword "context" .context) -}}
+    {{- if eq $usePassword "true" -}}
+      {{- $requiredRedisPassword := dict "valueKey" $valueKeyRedisPassword "secret" .secret "field" "redis-password" -}}
+      {{- $requiredPasswords = append $requiredPasswords $requiredRedisPassword -}}
+    {{- end -}}
+
+    {{- include "common.validations.values.multiple.empty" (dict "required" $requiredPasswords "context" .context) -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Redis Auxiliary function to get the right value for existingSecret.
+
+Usage:
+{{ include "common.redis.values.existingSecret" (dict "context" $) }}
+Params:
+  - subchart - Boolean - Optional. Whether Redis(TM) is used as subchart or not. Default: false
+*/}}
+{{- define "common.redis.values.existingSecret" -}}
+  {{- if .subchart -}}
+    {{- .context.Values.redis.existingSecret | quote -}}
+  {{- else -}}
+    {{- .context.Values.existingSecret | quote -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to get the right value for enabled redis.
+
+Usage:
+{{ include "common.redis.values.enabled" (dict "context" $) }}
+*/}}
+{{- define "common.redis.values.enabled" -}}
+  {{- if .subchart -}}
+    {{- printf "%v" .context.Values.redis.enabled -}}
+  {{- else -}}
+    {{- printf "%v" (not .context.Values.enabled) -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to get the right prefix path for the values
+
+Usage:
+{{ include "common.redis.values.key.prefix" (dict "subchart" "true" "context" $) }}
+Params:
+  - subchart - Boolean - Optional. Whether redis is used as subchart or not. Default: false
+*/}}
+{{- define "common.redis.values.keys.prefix" -}}
+  {{- if .subchart -}}redis.{{- else -}}{{- end -}}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/validations/_validations.tpl b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/validations/_validations.tpl
new file mode 100644
index 0000000000..9a814cf40d
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/templates/validations/_validations.tpl
@@ -0,0 +1,46 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Validate values must not be empty.
+
+Usage:
+{{- $validateValueConf00 := (dict "valueKey" "path.to.value" "secret" "secretName" "field" "password-00") -}}
+{{- $validateValueConf01 := (dict "valueKey" "path.to.value" "secret" "secretName" "field" "password-01") -}}
+{{ include "common.validations.values.empty" (dict "required" (list $validateValueConf00 $validateValueConf01) "context" $) }}
+
+Validate value params:
+  - valueKey - String - Required. The path to the validating value in the values.yaml, e.g: "mysql.password"
+  - secret - String - Optional. Name of the secret where the validating value is generated/stored, e.g: "mysql-passwords-secret"
+  - field - String - Optional. Name of the field in the secret data, e.g: "mysql-password"
+*/}}
+{{- define "common.validations.values.multiple.empty" -}}
+  {{- range .required -}}
+    {{- include "common.validations.values.single.empty" (dict "valueKey" .valueKey "secret" .secret "field" .field "context" $.context) -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Validate a value must not be empty.
+
+Usage:
+{{ include "common.validations.value.empty" (dict "valueKey" "mariadb.password" "secret" "secretName" "field" "my-password" "subchart" "subchart" "context" $) }}
+
+Validate value params:
+  - valueKey - String - Required. The path to the validating value in the values.yaml, e.g: "mysql.password"
+  - secret - String - Optional. Name of the secret where the validating value is generated/stored, e.g: "mysql-passwords-secret"
+  - field - String - Optional. Name of the field in the secret data, e.g: "mysql-password"
+  - subchart - String - Optional - Name of the subchart that the validated password is part of.
+*/}}
+{{- define "common.validations.values.single.empty" -}}
+  {{- $value := include "common.utils.getValueFromKey" (dict "key" .valueKey "context" .context) }}
+  {{- $subchart := ternary "" (printf "%s." .subchart) (empty .subchart) }}
+
+  {{- if not $value -}}
+    {{- $varname := "my-value" -}}
+    {{- $getCurrentValue := "" -}}
+    {{- if and .secret .field -}}
+      {{- $varname = include "common.utils.fieldToEnvVar" . -}}
+      {{- $getCurrentValue = printf " To get the current value:\n\n        %s\n" (include "common.utils.secret.getvalue" .) -}}
+    {{- end -}}
+    {{- printf "\n    '%s' must not be empty, please add '--set %s%s=$%s' to the command.%s" .valueKey $subchart .valueKey $varname $getCurrentValue -}}
+  {{- end -}}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/values.yaml b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/values.yaml
new file mode 100644
index 0000000000..9ecdc93f58
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/charts/common/values.yaml
@@ -0,0 +1,3 @@
+## bitnami/common
+## It is required by CI/CD tools and processes.
+exampleValue: common-chart
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/ci/commonAnnotations.yaml b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/ci/commonAnnotations.yaml
new file mode 100644
index 0000000000..97e18a4cc0
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/ci/commonAnnotations.yaml
@@ -0,0 +1,3 @@
+commonAnnotations:
+  helm.sh/hook: "\"pre-install, pre-upgrade\""
+  helm.sh/hook-weight: "-1"
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/ci/default-values.yaml b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/ci/default-values.yaml
new file mode 100644
index 0000000000..fc2ba605ad
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/ci/default-values.yaml
@@ -0,0 +1 @@
+# Leave this file empty to ensure that CI runs builds against the default configuration in values.yaml.
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/ci/shmvolume-disabled-values.yaml b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/ci/shmvolume-disabled-values.yaml
new file mode 100644
index 0000000000..347d3b40a8
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/ci/shmvolume-disabled-values.yaml
@@ -0,0 +1,2 @@
+shmVolume:
+  enabled: false
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/files/README.md b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/files/README.md
new file mode 100644
index 0000000000..1813a2feaa
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/files/README.md
@@ -0,0 +1 @@
+Copy here your postgresql.conf and/or pg_hba.conf files to use it as a config map.
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/files/conf.d/README.md b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/files/conf.d/README.md
new file mode 100644
index 0000000000..184c1875d5
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/files/conf.d/README.md
@@ -0,0 +1,4 @@
+If you don't want to provide the whole configuration file and only specify certain parameters, you can copy here your extended `.conf` files.
+These files will be injected as a config maps and add/overwrite the default configuration using the `include_dir` directive that allows settings to be loaded from files other than the default `postgresql.conf`.
+
+More info in the [bitnami-docker-postgresql README](https://github.com/bitnami/bitnami-docker-postgresql#configuration-file).
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/files/docker-entrypoint-initdb.d/README.md b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/files/docker-entrypoint-initdb.d/README.md
new file mode 100644
index 0000000000..cba38091e0
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/files/docker-entrypoint-initdb.d/README.md
@@ -0,0 +1,3 @@
+You can copy here your custom `.sh`, `.sql` or `.sql.gz` file so they are executed during the first boot of the image.
+
+More info in the [bitnami-docker-postgresql](https://github.com/bitnami/bitnami-docker-postgresql#initializing-a-new-instance) repository.
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/NOTES.txt b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/NOTES.txt
new file mode 100644
index 0000000000..4e98958c13
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/NOTES.txt
@@ -0,0 +1,59 @@
+** Please be patient while the chart is being deployed **
+
+PostgreSQL can be accessed via port {{ template "postgresql.port" . }} on the following DNS name from within your cluster:
+
+    {{ template "common.names.fullname" . }}.{{ .Release.Namespace }}.svc.cluster.local - Read/Write connection
+{{- if .Values.replication.enabled }}
+    {{ template "common.names.fullname" . }}-read.{{ .Release.Namespace }}.svc.cluster.local - Read only connection
+{{- end }}
+
+{{- if not (eq (include "postgresql.username" .) "postgres")  }}
+
+To get the password for "postgres" run:
+
+    export POSTGRES_ADMIN_PASSWORD=$(kubectl get secret --namespace {{ .Release.Namespace }} {{ template "postgresql.secretName" . }} -o jsonpath="{.data.postgresql-postgres-password}" | base64 --decode)
+{{- end }}
+
+To get the password for "{{ template "postgresql.username" . }}" run:
+
+    export POSTGRES_PASSWORD=$(kubectl get secret --namespace {{ .Release.Namespace }} {{ template "postgresql.secretName" . }} -o jsonpath="{.data.postgresql-password}" | base64 --decode)
+
+To connect to your database run the following command:
+
+    kubectl run {{ template "common.names.fullname" . }}-client --rm --tty -i --restart='Never' --namespace {{ .Release.Namespace }} --image {{ template "postgresql.image" . }} --env="PGPASSWORD=$POSTGRES_PASSWORD" {{- if and (.Values.networkPolicy.enabled) (not .Values.networkPolicy.allowExternal) }}
+   --labels="{{ template "common.names.fullname" . }}-client=true" {{- end }} --command -- psql --host {{ template "common.names.fullname" . }} -U {{ .Values.postgresqlUsername }} -d {{- if .Values.postgresqlDatabase }} {{ .Values.postgresqlDatabase }}{{- else }} postgres{{- end }} -p {{ template "postgresql.port" . }}
+
+{{ if and (.Values.networkPolicy.enabled) (not .Values.networkPolicy.allowExternal) }}
+Note: Since NetworkPolicy is enabled, only pods with label {{ template "common.names.fullname" . }}-client=true" will be able to connect to this PostgreSQL cluster.
+{{- end }}
+
+To connect to your database from outside the cluster execute the following commands:
+
+{{- if contains "NodePort" .Values.service.type }}
+
+    export NODE_IP=$(kubectl get nodes --namespace {{ .Release.Namespace }} -o jsonpath="{.items[0].status.addresses[0].address}")
+    export NODE_PORT=$(kubectl get --namespace {{ .Release.Namespace }} -o jsonpath="{.spec.ports[0].nodePort}" services {{ template "common.names.fullname" . }})
+    {{ if (include "postgresql.password" . )  }}PGPASSWORD="$POSTGRES_PASSWORD" {{ end }}psql --host $NODE_IP --port $NODE_PORT -U {{ .Values.postgresqlUsername }} -d {{- if .Values.postgresqlDatabase }} {{ .Values.postgresqlDatabase }}{{- else }} postgres{{- end }}
+
+{{- else if contains "LoadBalancer" .Values.service.type }}
+
+  NOTE: It may take a few minutes for the LoadBalancer IP to be available.
+        Watch the status with: 'kubectl get svc --namespace {{ .Release.Namespace }} -w {{ template "common.names.fullname" . }}'
+
+    export SERVICE_IP=$(kubectl get svc --namespace {{ .Release.Namespace }} {{ template "common.names.fullname" . }} --template "{{"{{ range (index .status.loadBalancer.ingress 0) }}{{.}}{{ end }}"}}")
+    {{ if (include "postgresql.password" . ) }}PGPASSWORD="$POSTGRES_PASSWORD" {{ end }}psql --host $SERVICE_IP --port {{ template "postgresql.port" . }} -U {{ .Values.postgresqlUsername }} -d {{- if .Values.postgresqlDatabase }} {{ .Values.postgresqlDatabase }}{{- else }} postgres{{- end }}
+
+{{- else if contains "ClusterIP" .Values.service.type }}
+
+    kubectl port-forward --namespace {{ .Release.Namespace }} svc/{{ template "common.names.fullname" . }} {{ template "postgresql.port" . }}:{{ template "postgresql.port" . }} &
+    {{ if (include "postgresql.password" . ) }}PGPASSWORD="$POSTGRES_PASSWORD" {{ end }}psql --host 127.0.0.1 -U {{ .Values.postgresqlUsername }} -d {{- if .Values.postgresqlDatabase }} {{ .Values.postgresqlDatabase }}{{- else }} postgres{{- end }} -p {{ template "postgresql.port" . }}
+
+{{- end }}
+
+{{- include "postgresql.validateValues" . -}}
+
+{{- include "common.warnings.rollingTag" .Values.image -}}
+
+{{- $passwordValidationErrors := include "common.validations.values.postgresql.passwords" (dict "secret" (include "common.names.fullname" .) "context" $) -}}
+
+{{- include "common.errors.upgrade.passwords.empty" (dict "validationErrors" (list $passwordValidationErrors) "context" $) -}}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/_helpers.tpl b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/_helpers.tpl
new file mode 100644
index 0000000000..1f98efe789
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/_helpers.tpl
@@ -0,0 +1,337 @@
+{{/* vim: set filetype=mustache: */}}
+
+{{/*
+Expand the name of the chart.
+*/}}
+{{- define "postgresql.name" -}}
+{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Create a default fully qualified app name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+*/}}
+{{- define "postgresql.primary.fullname" -}}
+{{- $name := default .Chart.Name .Values.nameOverride -}}
+{{- $fullname := default (printf "%s-%s" .Release.Name $name) .Values.fullnameOverride -}}
+{{- if .Values.replication.enabled -}}
+{{- printf "%s-%s" $fullname "primary" | trunc 63 | trimSuffix "-" -}}
+{{- else -}}
+{{- printf "%s" $fullname | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return the proper PostgreSQL image name
+*/}}
+{{- define "postgresql.image" -}}
+{{ include "common.images.image" (dict "imageRoot" .Values.image "global" .Values.global) }}
+{{- end -}}
+
+{{/*
+Return the proper PostgreSQL metrics image name
+*/}}
+{{- define "postgresql.metrics.image" -}}
+{{ include "common.images.image" (dict "imageRoot" .Values.metrics.image "global" .Values.global) }}
+{{- end -}}
+
+{{/*
+Return the proper image name (for the init container volume-permissions image)
+*/}}
+{{- define "postgresql.volumePermissions.image" -}}
+{{ include "common.images.image" (dict "imageRoot" .Values.volumePermissions.image "global" .Values.global) }}
+{{- end -}}
+
+{{/*
+Return the proper Docker Image Registry Secret Names
+*/}}
+{{- define "postgresql.imagePullSecrets" -}}
+{{ include "common.images.pullSecrets" (dict "images" (list .Values.image .Values.metrics.image .Values.volumePermissions.image) "global" .Values.global) }}
+{{- end -}}
+
+{{/*
+Return PostgreSQL postgres user password
+*/}}
+{{- define "postgresql.postgres.password" -}}
+{{- if .Values.global.postgresql.postgresqlPostgresPassword }}
+    {{- .Values.global.postgresql.postgresqlPostgresPassword -}}
+{{- else if .Values.postgresqlPostgresPassword -}}
+    {{- .Values.postgresqlPostgresPassword -}}
+{{- else -}}
+    {{- randAlphaNum 10 -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return PostgreSQL password
+*/}}
+{{- define "postgresql.password" -}}
+{{- if .Values.global.postgresql.postgresqlPassword }}
+    {{- .Values.global.postgresql.postgresqlPassword -}}
+{{- else if .Values.postgresqlPassword -}}
+    {{- .Values.postgresqlPassword -}}
+{{- else -}}
+    {{- randAlphaNum 10 -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return PostgreSQL replication password
+*/}}
+{{- define "postgresql.replication.password" -}}
+{{- if .Values.global.postgresql.replicationPassword }}
+    {{- .Values.global.postgresql.replicationPassword -}}
+{{- else if .Values.replication.password -}}
+    {{- .Values.replication.password -}}
+{{- else -}}
+    {{- randAlphaNum 10 -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return PostgreSQL username
+*/}}
+{{- define "postgresql.username" -}}
+{{- if .Values.global.postgresql.postgresqlUsername }}
+    {{- .Values.global.postgresql.postgresqlUsername -}}
+{{- else -}}
+    {{- .Values.postgresqlUsername -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return PostgreSQL replication username
+*/}}
+{{- define "postgresql.replication.username" -}}
+{{- if .Values.global.postgresql.replicationUser }}
+    {{- .Values.global.postgresql.replicationUser -}}
+{{- else -}}
+    {{- .Values.replication.user -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return PostgreSQL port
+*/}}
+{{- define "postgresql.port" -}}
+{{- if .Values.global.postgresql.servicePort }}
+    {{- .Values.global.postgresql.servicePort -}}
+{{- else -}}
+    {{- .Values.service.port -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return PostgreSQL created database
+*/}}
+{{- define "postgresql.database" -}}
+{{- if .Values.global.postgresql.postgresqlDatabase }}
+    {{- .Values.global.postgresql.postgresqlDatabase -}}
+{{- else if .Values.postgresqlDatabase -}}
+    {{- .Values.postgresqlDatabase -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Get the password secret.
+*/}}
+{{- define "postgresql.secretName" -}}
+{{- if .Values.global.postgresql.existingSecret }}
+    {{- printf "%s" (tpl .Values.global.postgresql.existingSecret $) -}}
+{{- else if .Values.existingSecret -}}
+    {{- printf "%s" (tpl .Values.existingSecret $) -}}
+{{- else -}}
+    {{- printf "%s" (include "common.names.fullname" .) -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return true if we should use an existingSecret.
+*/}}
+{{- define "postgresql.useExistingSecret" -}}
+{{- if or .Values.global.postgresql.existingSecret .Values.existingSecret -}}
+    {{- true -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return true if a secret object should be created
+*/}}
+{{- define "postgresql.createSecret" -}}
+{{- if not (include "postgresql.useExistingSecret" .) -}}
+    {{- true -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Get the configuration ConfigMap name.
+*/}}
+{{- define "postgresql.configurationCM" -}}
+{{- if .Values.configurationConfigMap -}}
+{{- printf "%s" (tpl .Values.configurationConfigMap $) -}}
+{{- else -}}
+{{- printf "%s-configuration" (include "common.names.fullname" .) -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Get the extended configuration ConfigMap name.
+*/}}
+{{- define "postgresql.extendedConfigurationCM" -}}
+{{- if .Values.extendedConfConfigMap -}}
+{{- printf "%s" (tpl .Values.extendedConfConfigMap $) -}}
+{{- else -}}
+{{- printf "%s-extended-configuration" (include "common.names.fullname" .) -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return true if a configmap should be mounted with PostgreSQL configuration
+*/}}
+{{- define "postgresql.mountConfigurationCM" -}}
+{{- if or (.Files.Glob "files/postgresql.conf") (.Files.Glob "files/pg_hba.conf") .Values.postgresqlConfiguration .Values.pgHbaConfiguration .Values.configurationConfigMap }}
+    {{- true -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Get the initialization scripts ConfigMap name.
+*/}}
+{{- define "postgresql.initdbScriptsCM" -}}
+{{- if .Values.initdbScriptsConfigMap -}}
+{{- printf "%s" (tpl .Values.initdbScriptsConfigMap $) -}}
+{{- else -}}
+{{- printf "%s-init-scripts" (include "common.names.fullname" .) -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Get the initialization scripts Secret name.
+*/}}
+{{- define "postgresql.initdbScriptsSecret" -}}
+{{- printf "%s" (tpl .Values.initdbScriptsSecret $) -}}
+{{- end -}}
+
+{{/*
+Get the metrics ConfigMap name.
+*/}}
+{{- define "postgresql.metricsCM" -}}
+{{- printf "%s-metrics" (include "common.names.fullname" .) -}}
+{{- end -}}
+
+{{/*
+Get the readiness probe command
+*/}}
+{{- define "postgresql.readinessProbeCommand" -}}
+- |
+{{- if (include "postgresql.database" .) }}
+  exec pg_isready -U {{ include "postgresql.username" . | quote }} -d "dbname={{ include "postgresql.database" . }} {{- if and .Values.tls.enabled .Values.tls.certCAFilename }} sslcert={{ include "postgresql.tlsCert" . }} sslkey={{ include "postgresql.tlsCertKey" . }}{{- end }}" -h 127.0.0.1 -p {{ template "postgresql.port" . }}
+{{- else }}
+  exec pg_isready -U {{ include "postgresql.username" . | quote }} {{- if and .Values.tls.enabled .Values.tls.certCAFilename }} -d "sslcert={{ include "postgresql.tlsCert" . }} sslkey={{ include "postgresql.tlsCertKey" . }}"{{- end }} -h 127.0.0.1 -p {{ template "postgresql.port" . }}
+{{- end }}
+{{- if contains "bitnami/" .Values.image.repository }}
+  [ -f /opt/bitnami/postgresql/tmp/.initialized ] || [ -f /bitnami/postgresql/.initialized ]
+{{- end -}}
+{{- end -}}
+
+{{/*
+Compile all warnings into a single message, and call fail.
+*/}}
+{{- define "postgresql.validateValues" -}}
+{{- $messages := list -}}
+{{- $messages := append $messages (include "postgresql.validateValues.ldapConfigurationMethod" .) -}}
+{{- $messages := append $messages (include "postgresql.validateValues.psp" .) -}}
+{{- $messages := append $messages (include "postgresql.validateValues.tls" .) -}}
+{{- $messages := without $messages "" -}}
+{{- $message := join "\n" $messages -}}
+
+{{- if $message -}}
+{{- printf "\nVALUES VALIDATION:\n%s" $message | fail -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Validate values of Postgresql - If ldap.url is used then you don't need the other settings for ldap
+*/}}
+{{- define "postgresql.validateValues.ldapConfigurationMethod" -}}
+{{- if and .Values.ldap.enabled (and (not (empty .Values.ldap.url)) (not (empty .Values.ldap.server))) }}
+postgresql: ldap.url, ldap.server
+    You cannot set both `ldap.url` and `ldap.server` at the same time.
+    Please provide a unique way to configure LDAP.
+    More info at https://www.postgresql.org/docs/current/auth-ldap.html
+{{- end -}}
+{{- end -}}
+
+{{/*
+Validate values of Postgresql - If PSP is enabled RBAC should be enabled too
+*/}}
+{{- define "postgresql.validateValues.psp" -}}
+{{- if and .Values.psp.create (not .Values.rbac.create) }}
+postgresql: psp.create, rbac.create
+    RBAC should be enabled if PSP is enabled in order for PSP to work.
+    More info at https://kubernetes.io/docs/concepts/policy/pod-security-policy/#authorizing-policies
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return the appropriate apiVersion for podsecuritypolicy.
+*/}}
+{{- define "podsecuritypolicy.apiVersion" -}}
+{{- if semverCompare "<1.10-0" .Capabilities.KubeVersion.GitVersion -}}
+{{- print "extensions/v1beta1" -}}
+{{- else -}}
+{{- print "policy/v1beta1" -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return the appropriate apiVersion for networkpolicy.
+*/}}
+{{- define "postgresql.networkPolicy.apiVersion" -}}
+{{- if semverCompare ">=1.4-0, <1.7-0" .Capabilities.KubeVersion.GitVersion -}}
+"extensions/v1beta1"
+{{- else if semverCompare "^1.7-0" .Capabilities.KubeVersion.GitVersion -}}
+"networking.k8s.io/v1"
+{{- end -}}
+{{- end -}}
+
+{{/*
+Validate values of Postgresql TLS - When TLS is enabled, so must be VolumePermissions
+*/}}
+{{- define "postgresql.validateValues.tls" -}}
+{{- if and .Values.tls.enabled (not .Values.volumePermissions.enabled) }}
+postgresql: tls.enabled, volumePermissions.enabled
+    When TLS is enabled you must enable volumePermissions as well to ensure certificates files have
+    the right permissions.
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return the path to the cert file.
+*/}}
+{{- define "postgresql.tlsCert" -}}
+{{- required "Certificate filename is required when TLS in enabled" .Values.tls.certFilename | printf "/opt/bitnami/postgresql/certs/%s" -}}
+{{- end -}}
+
+{{/*
+Return the path to the cert key file.
+*/}}
+{{- define "postgresql.tlsCertKey" -}}
+{{- required "Certificate Key filename is required when TLS in enabled" .Values.tls.certKeyFilename | printf "/opt/bitnami/postgresql/certs/%s" -}}
+{{- end -}}
+
+{{/*
+Return the path to the CA cert file.
+*/}}
+{{- define "postgresql.tlsCACert" -}}
+{{- printf "/opt/bitnami/postgresql/certs/%s" .Values.tls.certCAFilename -}}
+{{- end -}}
+
+{{/*
+Return the path to the CRL file.
+*/}}
+{{- define "postgresql.tlsCRL" -}}
+{{- if .Values.tls.crlFilename -}}
+{{- printf "/opt/bitnami/postgresql/certs/%s" .Values.tls.crlFilename -}}
+{{- end -}}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/configmap.yaml b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/configmap.yaml
new file mode 100644
index 0000000000..3a5ea18ae9
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/configmap.yaml
@@ -0,0 +1,31 @@
+{{ if and (or (.Files.Glob "files/postgresql.conf") (.Files.Glob "files/pg_hba.conf") .Values.postgresqlConfiguration .Values.pgHbaConfiguration) (not .Values.configurationConfigMap) }}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ template "common.names.fullname" . }}-configuration
+  labels:
+  {{- include "common.labels.standard" . | nindent 4 }}
+  {{- if .Values.commonAnnotations }}
+  annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
+  {{- end }}
+  namespace: {{ .Release.Namespace }}
+data:
+{{- if (.Files.Glob "files/postgresql.conf") }}
+{{ (.Files.Glob "files/postgresql.conf").AsConfig | indent 2 }}
+{{- else if .Values.postgresqlConfiguration }}
+  postgresql.conf: |
+{{- range $key, $value := default dict .Values.postgresqlConfiguration }}
+    {{- if kindIs "string" $value }}
+    {{ $key | snakecase }} = '{{ $value }}'
+    {{- else }}
+    {{ $key | snakecase }} = {{ $value }}
+    {{- end }}
+{{- end }}
+{{- end }}
+{{- if (.Files.Glob "files/pg_hba.conf") }}
+{{ (.Files.Glob "files/pg_hba.conf").AsConfig | indent 2 }}
+{{- else if .Values.pgHbaConfiguration }}
+  pg_hba.conf: |
+{{ .Values.pgHbaConfiguration | indent 4 }}
+{{- end }}
+{{ end }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/extended-config-configmap.yaml b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/extended-config-configmap.yaml
new file mode 100644
index 0000000000..b0dad253b5
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/extended-config-configmap.yaml
@@ -0,0 +1,26 @@
+{{- if and (or (.Files.Glob "files/conf.d/*.conf") .Values.postgresqlExtendedConf) (not .Values.extendedConfConfigMap)}}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ template "common.names.fullname" . }}-extended-configuration
+  labels:
+  {{- include "common.labels.standard" . | nindent 4 }}
+  {{- if .Values.commonAnnotations }}
+  annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
+  {{- end }}
+  namespace: {{ .Release.Namespace }}
+data:
+{{- with .Files.Glob "files/conf.d/*.conf" }}
+{{ .AsConfig | indent 2 }}
+{{- end }}
+{{ with .Values.postgresqlExtendedConf }}
+  override.conf: |
+{{- range $key, $value := . }}
+    {{- if kindIs "string" $value }}
+    {{ $key | snakecase }} = '{{ $value }}'
+    {{- else }}
+    {{ $key | snakecase }} = {{ $value }}
+    {{- end }}
+{{- end }}
+{{- end }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/extra-list.yaml b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/extra-list.yaml
new file mode 100644
index 0000000000..9ac65f9e16
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/extra-list.yaml
@@ -0,0 +1,4 @@
+{{- range .Values.extraDeploy }}
+---
+{{ include "common.tplvalues.render" (dict "value" . "context" $) }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/initialization-configmap.yaml b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/initialization-configmap.yaml
new file mode 100644
index 0000000000..7796c67a93
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/initialization-configmap.yaml
@@ -0,0 +1,25 @@
+{{- if and (or (.Files.Glob "files/docker-entrypoint-initdb.d/*.{sh,sql,sql.gz}") .Values.initdbScripts) (not .Values.initdbScriptsConfigMap) }}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ template "common.names.fullname" . }}-init-scripts
+  labels:
+  {{- include "common.labels.standard" . | nindent 4 }}
+  {{- if .Values.commonAnnotations }}
+  annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
+  {{- end }}
+  namespace: {{ .Release.Namespace }}
+{{- with .Files.Glob "files/docker-entrypoint-initdb.d/*.sql.gz" }}
+binaryData:
+{{- range $path, $bytes := . }}
+  {{ base $path }}: {{ $.Files.Get $path | b64enc | quote }}
+{{- end }}
+{{- end }}
+data:
+{{- with .Files.Glob "files/docker-entrypoint-initdb.d/*.{sh,sql}" }}
+{{ .AsConfig | indent 2 }}
+{{- end }}
+{{- with .Values.initdbScripts }}
+{{ toYaml . | indent 2 }}
+{{- end }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/metrics-configmap.yaml b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/metrics-configmap.yaml
new file mode 100644
index 0000000000..fa539582bb
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/metrics-configmap.yaml
@@ -0,0 +1,14 @@
+{{- if and .Values.metrics.enabled .Values.metrics.customMetrics }}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ template "postgresql.metricsCM" . }}
+  labels:
+  {{- include "common.labels.standard" . | nindent 4 }}
+  {{- if .Values.commonAnnotations }}
+  annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
+  {{- end }}
+  namespace: {{ .Release.Namespace }}
+data:
+  custom-metrics.yaml: {{ toYaml .Values.metrics.customMetrics | quote }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/metrics-svc.yaml b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/metrics-svc.yaml
new file mode 100644
index 0000000000..af8b67e2ff
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/metrics-svc.yaml
@@ -0,0 +1,26 @@
+{{- if .Values.metrics.enabled }}
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ template "common.names.fullname" . }}-metrics
+  labels:
+  {{- include "common.labels.standard" . | nindent 4 }}
+  annotations:
+  {{- if .Values.commonAnnotations }}
+    {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
+  {{- end }}
+    {{- toYaml .Values.metrics.service.annotations | nindent 4 }}
+  namespace: {{ .Release.Namespace }}
+spec:
+  type: {{ .Values.metrics.service.type }}
+  {{- if and (eq .Values.metrics.service.type "LoadBalancer") .Values.metrics.service.loadBalancerIP }}
+  loadBalancerIP: {{ .Values.metrics.service.loadBalancerIP }}
+  {{- end }}
+  ports:
+    - name: http-metrics
+      port: 9187
+      targetPort: http-metrics
+  selector:
+  {{- include "common.labels.matchLabels" . | nindent 4 }}
+    role: primary
+{{- end }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/networkpolicy.yaml b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/networkpolicy.yaml
new file mode 100644
index 0000000000..4f2740ea0c
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/networkpolicy.yaml
@@ -0,0 +1,39 @@
+{{- if .Values.networkPolicy.enabled }}
+kind: NetworkPolicy
+apiVersion: {{ template "postgresql.networkPolicy.apiVersion" . }}
+metadata:
+  name: {{ template "common.names.fullname" . }}
+  labels:
+  {{- include "common.labels.standard" . | nindent 4 }}
+  {{- if .Values.commonAnnotations }}
+  annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
+  {{- end }}
+  namespace: {{ .Release.Namespace }}
+spec:
+  podSelector:
+    matchLabels:
+    {{- include "common.labels.matchLabels" . | nindent 6 }}
+  ingress:
+    # Allow inbound connections
+    - ports:
+        - port: {{ template "postgresql.port" . }}
+      {{- if not .Values.networkPolicy.allowExternal }}
+      from:
+        - podSelector:
+            matchLabels:
+              {{ template "common.names.fullname" . }}-client: "true"
+          {{- if .Values.networkPolicy.explicitNamespacesSelector }}
+          namespaceSelector:
+{{ toYaml .Values.networkPolicy.explicitNamespacesSelector | indent 12 }}
+          {{- end }}
+        - podSelector:
+            matchLabels:
+            {{- include "common.labels.matchLabels" . | nindent 14 }}
+              role: read
+      {{- end }}
+    {{- if .Values.metrics.enabled }}
+    # Allow prometheus scrapes
+    - ports:
+        - port: 9187
+    {{- end }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/podsecuritypolicy.yaml b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/podsecuritypolicy.yaml
new file mode 100644
index 0000000000..0c49694fad
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/podsecuritypolicy.yaml
@@ -0,0 +1,38 @@
+{{- if .Values.psp.create }}
+apiVersion: {{ include "podsecuritypolicy.apiVersion" . }}
+kind: PodSecurityPolicy
+metadata:
+  name: {{ template "common.names.fullname" . }}
+  labels:
+  {{- include "common.labels.standard" . | nindent 4 }}
+  {{- if .Values.commonAnnotations }}
+  annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
+  {{- end }}
+  namespace: {{ .Release.Namespace }}
+spec:
+  privileged: false
+  volumes:
+    - 'configMap'
+    - 'secret'
+    - 'persistentVolumeClaim'
+    - 'emptyDir'
+    - 'projected'
+  hostNetwork: false
+  hostIPC: false
+  hostPID: false
+  runAsUser:
+    rule: 'RunAsAny'
+  seLinux:
+    rule: 'RunAsAny'
+  supplementalGroups:
+    rule: 'MustRunAs'
+    ranges:
+      - min: 1
+        max: 65535
+  fsGroup:
+    rule: 'MustRunAs'
+    ranges:
+      - min: 1
+        max: 65535
+  readOnlyRootFilesystem: false
+{{- end }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/prometheusrule.yaml b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/prometheusrule.yaml
new file mode 100644
index 0000000000..d0f408c78f
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/prometheusrule.yaml
@@ -0,0 +1,23 @@
+{{- if and .Values.metrics.enabled .Values.metrics.prometheusRule.enabled }}
+apiVersion: monitoring.coreos.com/v1
+kind: PrometheusRule
+metadata:
+  name: {{ template "common.names.fullname" . }}
+{{- with .Values.metrics.prometheusRule.namespace }}
+  namespace: {{ . }}
+{{- end }}
+  labels:
+  {{- include "common.labels.standard" . | nindent 4 }}
+  {{- with .Values.metrics.prometheusRule.additionalLabels }}
+  {{- toYaml . | nindent 4 }}
+  {{- end }}
+  {{- if .Values.commonAnnotations }}
+  annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
+  {{- end }}
+spec:
+{{- with .Values.metrics.prometheusRule.rules }}
+  groups:
+    - name: {{ template "postgresql.name" $ }}
+      rules: {{ tpl (toYaml .) $ | nindent 8 }}
+{{- end }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/role.yaml b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/role.yaml
new file mode 100644
index 0000000000..017a5716b1
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/role.yaml
@@ -0,0 +1,20 @@
+{{- if .Values.rbac.create }}
+kind: Role
+apiVersion: {{ include "common.capabilities.rbac.apiVersion" . }}
+metadata:
+  name: {{ template "common.names.fullname" . }}
+  labels:
+  {{- include "common.labels.standard" . | nindent 4 }}
+  {{- if .Values.commonAnnotations }}
+  annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
+  {{- end }}
+  namespace: {{ .Release.Namespace }}
+rules:
+  {{- if .Values.psp.create }}
+  - apiGroups: ["extensions"]
+    resources: ["podsecuritypolicies"]
+    verbs: ["use"]
+    resourceNames:
+      - {{ template "common.names.fullname" . }}
+  {{- end }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/rolebinding.yaml b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/rolebinding.yaml
new file mode 100644
index 0000000000..189775a15a
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/rolebinding.yaml
@@ -0,0 +1,20 @@
+{{- if .Values.rbac.create }}
+kind: RoleBinding
+apiVersion: {{ include "common.capabilities.rbac.apiVersion" . }}
+metadata:
+  name: {{ template "common.names.fullname" . }}
+  labels:
+  {{- include "common.labels.standard" . | nindent 4 }}
+  {{- if .Values.commonAnnotations }}
+  annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
+  {{- end }}
+  namespace: {{ .Release.Namespace }}
+roleRef:
+  kind: Role
+  name: {{ template "common.names.fullname" . }}
+  apiGroup: rbac.authorization.k8s.io
+subjects:
+  - kind: ServiceAccount
+    name: {{ default (include "common.names.fullname" . ) .Values.serviceAccount.name }}
+    namespace: {{ .Release.Namespace }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/secrets.yaml b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/secrets.yaml
new file mode 100644
index 0000000000..d492cd593b
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/secrets.yaml
@@ -0,0 +1,24 @@
+{{- if (include "postgresql.createSecret" .) }}
+apiVersion: v1
+kind: Secret
+metadata:
+  name: {{ template "common.names.fullname" . }}
+  labels:
+  {{- include "common.labels.standard" . | nindent 4 }}
+  {{- if .Values.commonAnnotations }}
+  annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
+  {{- end }}
+  namespace: {{ .Release.Namespace }}
+type: Opaque
+data:
+  {{- if not (eq (include "postgresql.username" .) "postgres")  }}
+  postgresql-postgres-password: {{ include "postgresql.postgres.password" . | b64enc | quote }}
+  {{- end }}
+  postgresql-password: {{ include "postgresql.password" . | b64enc | quote }}
+  {{- if .Values.replication.enabled }}
+  postgresql-replication-password: {{ include "postgresql.replication.password" . | b64enc | quote }}
+  {{- end }}
+  {{- if (and .Values.ldap.enabled .Values.ldap.bind_password)}}
+  postgresql-ldap-password: {{ .Values.ldap.bind_password | b64enc | quote }}
+  {{- end }}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/serviceaccount.yaml b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/serviceaccount.yaml
new file mode 100644
index 0000000000..03f0f50e7d
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/serviceaccount.yaml
@@ -0,0 +1,12 @@
+{{- if and (.Values.serviceAccount.enabled) (not .Values.serviceAccount.name) }}
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  labels:
+  {{- include "common.labels.standard" . | nindent 4 }}
+  name: {{ template "common.names.fullname" . }}
+  {{- if .Values.commonAnnotations }}
+  annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
+  {{- end }}
+  namespace: {{ .Release.Namespace }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/servicemonitor.yaml b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/servicemonitor.yaml
new file mode 100644
index 0000000000..587ce85b87
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/servicemonitor.yaml
@@ -0,0 +1,33 @@
+{{- if and .Values.metrics.enabled .Values.metrics.serviceMonitor.enabled }}
+apiVersion: monitoring.coreos.com/v1
+kind: ServiceMonitor
+metadata:
+  name: {{ include "common.names.fullname" . }}
+  {{- if .Values.metrics.serviceMonitor.namespace }}
+  namespace: {{ .Values.metrics.serviceMonitor.namespace }}
+  {{- end }}
+  labels:
+  {{- include "common.labels.standard" . | nindent 4 }}
+    {{- if .Values.metrics.serviceMonitor.additionalLabels }}
+    {{- toYaml .Values.metrics.serviceMonitor.additionalLabels | nindent 4 }}
+    {{- end }}
+  {{- if .Values.commonAnnotations }}
+  annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
+  {{- end }}
+
+spec:
+  endpoints:
+    - port: http-metrics
+      {{- if .Values.metrics.serviceMonitor.interval }}
+      interval: {{ .Values.metrics.serviceMonitor.interval }}
+      {{- end }}
+      {{- if .Values.metrics.serviceMonitor.scrapeTimeout }}
+      scrapeTimeout: {{ .Values.metrics.serviceMonitor.scrapeTimeout }}
+      {{- end }}
+  namespaceSelector:
+    matchNames:
+      - {{ .Release.Namespace }}
+  selector:
+    matchLabels:
+    {{- include "common.labels.matchLabels" . | nindent 6 }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/statefulset-readreplicas.yaml b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/statefulset-readreplicas.yaml
new file mode 100644
index 0000000000..b038299bf6
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/statefulset-readreplicas.yaml
@@ -0,0 +1,411 @@
+{{- if .Values.replication.enabled }}
+{{- $readReplicasResources := coalesce .Values.readReplicas.resources .Values.resources -}}
+apiVersion: {{ include "common.capabilities.statefulset.apiVersion" . }}
+kind: StatefulSet
+metadata:
+  name: "{{ template "common.names.fullname" . }}-read"
+  labels: {{- include "common.labels.standard" . | nindent 4 }}
+    app.kubernetes.io/component: read
+{{- with .Values.readReplicas.labels }}
+{{ toYaml . | indent 4 }}
+{{- end }}
+  annotations:
+  {{- if .Values.commonAnnotations }}
+  {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
+  {{- end }}
+  {{- with .Values.readReplicas.annotations }}
+  {{- toYaml . | nindent 4 }}
+  {{- end }}
+  namespace: {{ .Release.Namespace }}
+spec:
+  serviceName: {{ template "common.names.fullname" . }}-headless
+  replicas: {{ .Values.replication.readReplicas }}
+  selector:
+    matchLabels:
+    {{- include "common.labels.matchLabels" . | nindent 6 }}
+      role: read
+  template:
+    metadata:
+      name: {{ template "common.names.fullname" . }}
+      labels:
+      {{- include "common.labels.standard" . | nindent 8 }}
+        app.kubernetes.io/component: read
+        role: read
+{{- with .Values.readReplicas.podLabels }}
+{{ toYaml . | indent 8 }}
+{{- end }}
+{{- with .Values.readReplicas.podAnnotations }}
+      annotations:
+{{ toYaml . | indent 8 }}
+{{- end }}
+    spec:
+      {{- if .Values.schedulerName }}
+      schedulerName: "{{ .Values.schedulerName }}"
+      {{- end }}
+{{- include "postgresql.imagePullSecrets" . | indent 6 }}
+      {{- if .Values.readReplicas.affinity }}
+      affinity: {{- include "common.tplvalues.render" (dict "value" .Values.readReplicas.affinity "context" $) | nindent 8 }}
+      {{- else }}
+      affinity:
+        podAffinity: {{- include "common.affinities.pods" (dict "type" .Values.readReplicas.podAffinityPreset "component" "read" "context" $) | nindent 10 }}
+        podAntiAffinity: {{- include "common.affinities.pods" (dict "type" .Values.readReplicas.podAntiAffinityPreset "component" "read" "context" $) | nindent 10 }}
+        nodeAffinity: {{- include "common.affinities.nodes" (dict "type" .Values.readReplicas.nodeAffinityPreset.type "key" .Values.readReplicas.nodeAffinityPreset.key "values" .Values.readReplicas.nodeAffinityPreset.values) | nindent 10 }}
+      {{- end }}
+      {{- if .Values.readReplicas.nodeSelector }}
+      nodeSelector: {{- include "common.tplvalues.render" (dict "value" .Values.readReplicas.nodeSelector "context" $) | nindent 8 }}
+      {{- end }}
+      {{- if .Values.readReplicas.tolerations }}
+      tolerations: {{- include "common.tplvalues.render" (dict "value" .Values.readReplicas.tolerations "context" $) | nindent 8 }}
+      {{- end }}
+      {{- if .Values.terminationGracePeriodSeconds }}
+      terminationGracePeriodSeconds: {{ .Values.terminationGracePeriodSeconds }}
+      {{- end }}
+      {{- if .Values.securityContext.enabled }}
+      securityContext: {{- omit .Values.securityContext "enabled" | toYaml | nindent 8 }}
+      {{- end }}
+      {{- if .Values.serviceAccount.enabled }}
+      serviceAccountName: {{ default (include "common.names.fullname" . ) .Values.serviceAccount.name}}
+      {{- end }}
+      {{- if or .Values.readReplicas.extraInitContainers (and .Values.volumePermissions.enabled (or .Values.persistence.enabled (and .Values.shmVolume.enabled .Values.shmVolume.chmod.enabled))) }}
+      initContainers:
+      {{- if and .Values.volumePermissions.enabled (or .Values.persistence.enabled (and .Values.shmVolume.enabled .Values.shmVolume.chmod.enabled) .Values.tls.enabled) }}
+        - name: init-chmod-data
+          image: {{ template "postgresql.volumePermissions.image" . }}
+          imagePullPolicy: {{ .Values.volumePermissions.image.pullPolicy | quote }}
+          {{- if .Values.resources }}
+          resources: {{- toYaml .Values.resources | nindent 12 }}
+          {{- end }}
+          command:
+            - /bin/sh
+            - -cx
+            - |
+              {{- if .Values.persistence.enabled }}
+              {{- if eq ( toString ( .Values.volumePermissions.securityContext.runAsUser )) "auto" }}
+              chown `id -u`:`id -G | cut -d " " -f2` {{ .Values.persistence.mountPath }}
+              {{- else }}
+              chown {{ .Values.containerSecurityContext.runAsUser }}:{{ .Values.securityContext.fsGroup }} {{ .Values.persistence.mountPath }}
+              {{- end }}
+              mkdir -p {{ .Values.persistence.mountPath }}/data {{- if (include "postgresql.mountConfigurationCM" .) }} {{ .Values.persistence.mountPath }}/conf {{- end }}
+              chmod 700 {{ .Values.persistence.mountPath }}/data {{- if (include "postgresql.mountConfigurationCM" .) }} {{ .Values.persistence.mountPath }}/conf {{- end }}
+              find {{ .Values.persistence.mountPath }} -mindepth 1 -maxdepth 1 {{- if not (include "postgresql.mountConfigurationCM" .) }} -not -name "conf" {{- end }} -not -name ".snapshot" -not -name "lost+found" | \
+              {{- if eq ( toString ( .Values.volumePermissions.securityContext.runAsUser )) "auto" }}
+                xargs chown -R `id -u`:`id -G | cut -d " " -f2`
+              {{- else }}
+                xargs chown -R {{ .Values.containerSecurityContext.runAsUser }}:{{ .Values.securityContext.fsGroup }}
+              {{- end }}
+              {{- end }}
+              {{- if and .Values.shmVolume.enabled .Values.shmVolume.chmod.enabled }}
+              chmod -R 777 /dev/shm
+              {{- end }}
+              {{- if .Values.tls.enabled }}
+              cp /tmp/certs/* /opt/bitnami/postgresql/certs/
+              {{- if eq ( toString ( .Values.volumePermissions.securityContext.runAsUser )) "auto" }}
+              chown -R `id -u`:`id -G | cut -d " " -f2` /opt/bitnami/postgresql/certs/
+              {{- else }}
+              chown -R {{ .Values.containerSecurityContext.runAsUser }}:{{ .Values.securityContext.fsGroup }} /opt/bitnami/postgresql/certs/
+              {{- end }}
+              chmod 600 {{ template "postgresql.tlsCertKey" . }}
+              {{- end }}
+          {{- if eq ( toString ( .Values.volumePermissions.securityContext.runAsUser )) "auto" }}
+          securityContext: {{- omit .Values.volumePermissions.securityContext "runAsUser" | toYaml | nindent 12 }}
+          {{- else }}
+          securityContext: {{- .Values.volumePermissions.securityContext | toYaml | nindent 12 }}
+          {{- end }}
+          volumeMounts:
+            {{ if .Values.persistence.enabled }}
+            - name: data
+              mountPath: {{ .Values.persistence.mountPath }}
+              subPath: {{ .Values.persistence.subPath }}
+            {{- end }}
+            {{- if .Values.shmVolume.enabled }}
+            - name: dshm
+              mountPath: /dev/shm
+            {{- end }}
+            {{- if .Values.tls.enabled }}
+            - name: raw-certificates
+              mountPath: /tmp/certs
+            - name: postgresql-certificates
+              mountPath: /opt/bitnami/postgresql/certs
+            {{- end }}
+      {{- end }}
+      {{- if .Values.readReplicas.extraInitContainers }}
+      {{- include "common.tplvalues.render" ( dict "value" .Values.readReplicas.extraInitContainers "context" $ ) | nindent 8 }}
+      {{- end }}
+      {{- end }}
+      {{- if .Values.readReplicas.priorityClassName }}
+      priorityClassName: {{ .Values.readReplicas.priorityClassName }}
+      {{- end }}
+      containers:
+        - name: {{ template "common.names.fullname" . }}
+          image: {{ template "postgresql.image" . }}
+          imagePullPolicy: "{{ .Values.image.pullPolicy }}"
+          {{- if $readReplicasResources }}
+          resources: {{- toYaml $readReplicasResources | nindent 12 }}
+          {{- end }}
+          {{- if .Values.containerSecurityContext.enabled }}
+          securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 12 }}
+          {{- end }}
+          env:
+            - name: BITNAMI_DEBUG
+              value: {{ ternary "true" "false" .Values.image.debug | quote }}
+            - name: POSTGRESQL_VOLUME_DIR
+              value: "{{ .Values.persistence.mountPath }}"
+            - name: POSTGRESQL_PORT_NUMBER
+              value: "{{ template "postgresql.port" . }}"
+            {{- if .Values.persistence.mountPath }}
+            - name: PGDATA
+              value: {{ .Values.postgresqlDataDir | quote }}
+            {{- end }}
+            - name: POSTGRES_REPLICATION_MODE
+              value: "slave"
+            - name: POSTGRES_REPLICATION_USER
+              value: {{ include "postgresql.replication.username" . | quote }}
+            {{- if .Values.usePasswordFile }}
+            - name: POSTGRES_REPLICATION_PASSWORD_FILE
+              value: "/opt/bitnami/postgresql/secrets/postgresql-replication-password"
+            {{- else }}
+            - name: POSTGRES_REPLICATION_PASSWORD
+              valueFrom:
+                secretKeyRef:
+                  name: {{ template "postgresql.secretName" . }}
+                  key: postgresql-replication-password
+            {{- end }}
+            - name: POSTGRES_CLUSTER_APP_NAME
+              value: {{ .Values.replication.applicationName }}
+            - name: POSTGRES_MASTER_HOST
+              value: {{ template "common.names.fullname" . }}
+            - name: POSTGRES_MASTER_PORT_NUMBER
+              value: {{ include "postgresql.port" . | quote }}
+            {{- if not (eq (include "postgresql.username" .) "postgres")  }}
+            {{- if .Values.usePasswordFile }}
+            - name: POSTGRES_POSTGRES_PASSWORD_FILE
+              value: "/opt/bitnami/postgresql/secrets/postgresql-postgres-password"
+            {{- else }}
+            - name: POSTGRES_POSTGRES_PASSWORD
+              valueFrom:
+                secretKeyRef:
+                  name: {{ template "postgresql.secretName" . }}
+                  key: postgresql-postgres-password
+            {{- end }}
+            {{- end }}
+            {{- if .Values.usePasswordFile }}
+            - name: POSTGRES_PASSWORD_FILE
+              value: "/opt/bitnami/postgresql/secrets/postgresql-password"
+            {{- else }}
+            - name: POSTGRES_PASSWORD
+              valueFrom:
+                secretKeyRef:
+                  name: {{ template "postgresql.secretName" . }}
+                  key: postgresql-password
+            {{- end }}
+            - name: POSTGRESQL_ENABLE_TLS
+              value: {{ ternary "yes" "no" .Values.tls.enabled | quote }}
+            {{- if .Values.tls.enabled }}
+            - name: POSTGRESQL_TLS_PREFER_SERVER_CIPHERS
+              value: {{ ternary "yes" "no" .Values.tls.preferServerCiphers | quote }}
+            - name: POSTGRESQL_TLS_CERT_FILE
+              value: {{ template "postgresql.tlsCert" . }}
+            - name: POSTGRESQL_TLS_KEY_FILE
+              value: {{ template "postgresql.tlsCertKey" . }}
+            {{- if .Values.tls.certCAFilename }}
+            - name: POSTGRESQL_TLS_CA_FILE
+              value: {{ template "postgresql.tlsCACert" . }}
+            {{- end }}
+            {{- if .Values.tls.crlFilename }}
+            - name: POSTGRESQL_TLS_CRL_FILE
+              value: {{ template "postgresql.tlsCRL" . }}
+            {{- end }}
+            {{- end }}
+            - name: POSTGRESQL_LOG_HOSTNAME
+              value: {{ .Values.audit.logHostname | quote }}
+            - name: POSTGRESQL_LOG_CONNECTIONS
+              value: {{ .Values.audit.logConnections | quote }}
+            - name: POSTGRESQL_LOG_DISCONNECTIONS
+              value: {{ .Values.audit.logDisconnections | quote }}
+            {{- if .Values.audit.logLinePrefix }}
+            - name: POSTGRESQL_LOG_LINE_PREFIX
+              value: {{ .Values.audit.logLinePrefix | quote }}
+            {{- end }}
+            {{- if .Values.audit.logTimezone }}
+            - name: POSTGRESQL_LOG_TIMEZONE
+              value: {{ .Values.audit.logTimezone | quote }}
+            {{- end }}
+            {{- if .Values.audit.pgAuditLog }}
+            - name: POSTGRESQL_PGAUDIT_LOG
+              value: {{ .Values.audit.pgAuditLog | quote }}
+            {{- end }}
+            - name: POSTGRESQL_PGAUDIT_LOG_CATALOG
+              value: {{ .Values.audit.pgAuditLogCatalog | quote }}
+            - name: POSTGRESQL_CLIENT_MIN_MESSAGES
+              value: {{ .Values.audit.clientMinMessages | quote }}
+            - name: POSTGRESQL_SHARED_PRELOAD_LIBRARIES
+              value: {{ .Values.postgresqlSharedPreloadLibraries | quote }}
+            {{- if .Values.postgresqlMaxConnections }}
+            - name: POSTGRESQL_MAX_CONNECTIONS
+              value: {{ .Values.postgresqlMaxConnections | quote }}
+            {{- end }}
+            {{- if .Values.postgresqlPostgresConnectionLimit }}
+            - name: POSTGRESQL_POSTGRES_CONNECTION_LIMIT
+              value: {{ .Values.postgresqlPostgresConnectionLimit | quote }}
+            {{- end }}
+            {{- if .Values.postgresqlDbUserConnectionLimit }}
+            - name: POSTGRESQL_USERNAME_CONNECTION_LIMIT
+              value: {{ .Values.postgresqlDbUserConnectionLimit | quote }}
+            {{- end }}
+            {{- if .Values.postgresqlTcpKeepalivesInterval }}
+            - name: POSTGRESQL_TCP_KEEPALIVES_INTERVAL
+              value: {{ .Values.postgresqlTcpKeepalivesInterval | quote }}
+            {{- end }}
+            {{- if .Values.postgresqlTcpKeepalivesIdle }}
+            - name: POSTGRESQL_TCP_KEEPALIVES_IDLE
+              value: {{ .Values.postgresqlTcpKeepalivesIdle | quote }}
+            {{- end }}
+            {{- if .Values.postgresqlStatementTimeout }}
+            - name: POSTGRESQL_STATEMENT_TIMEOUT
+              value: {{ .Values.postgresqlStatementTimeout | quote }}
+            {{- end }}
+            {{- if .Values.postgresqlTcpKeepalivesCount }}
+            - name: POSTGRESQL_TCP_KEEPALIVES_COUNT
+              value: {{ .Values.postgresqlTcpKeepalivesCount | quote }}
+            {{- end }}
+            {{- if .Values.postgresqlPghbaRemoveFilters }}
+            - name: POSTGRESQL_PGHBA_REMOVE_FILTERS
+              value: {{ .Values.postgresqlPghbaRemoveFilters | quote }}
+            {{- end }}
+          ports:
+            - name: tcp-postgresql
+              containerPort: {{ template "postgresql.port" . }}
+          {{- if .Values.livenessProbe.enabled }}
+          livenessProbe:
+            exec:
+              command:
+                - /bin/sh
+                - -c
+                {{- if (include "postgresql.database" .) }}
+                - exec pg_isready -U {{ include "postgresql.username" . | quote }} -d "dbname={{ include "postgresql.database" . }} {{- if and .Values.tls.enabled .Values.tls.certCAFilename }} sslcert={{ include "postgresql.tlsCert" . }} sslkey={{ include "postgresql.tlsCertKey" . }}{{- end }}" -h 127.0.0.1 -p {{ template "postgresql.port" . }}
+                {{- else }}
+                - exec pg_isready -U {{ include "postgresql.username" . | quote }} {{- if and .Values.tls.enabled .Values.tls.certCAFilename }} -d "sslcert={{ include "postgresql.tlsCert" . }} sslkey={{ include "postgresql.tlsCertKey" . }}"{{- end }} -h 127.0.0.1 -p {{ template "postgresql.port" . }}
+                {{- end }}
+            initialDelaySeconds: {{ .Values.livenessProbe.initialDelaySeconds }}
+            periodSeconds: {{ .Values.livenessProbe.periodSeconds }}
+            timeoutSeconds: {{ .Values.livenessProbe.timeoutSeconds }}
+            successThreshold: {{ .Values.livenessProbe.successThreshold }}
+            failureThreshold: {{ .Values.livenessProbe.failureThreshold }}
+          {{- else if .Values.customLivenessProbe }}
+          livenessProbe: {{- include "common.tplvalues.render" (dict "value" .Values.customLivenessProbe "context" $) | nindent 12 }}
+          {{- end }}
+          {{- if .Values.readinessProbe.enabled }}
+          readinessProbe:
+            exec:
+              command:
+                - /bin/sh
+                - -c
+                - -e
+                {{- include "postgresql.readinessProbeCommand" . | nindent 16 }}
+            initialDelaySeconds: {{ .Values.readinessProbe.initialDelaySeconds }}
+            periodSeconds: {{ .Values.readinessProbe.periodSeconds }}
+            timeoutSeconds: {{ .Values.readinessProbe.timeoutSeconds }}
+            successThreshold: {{ .Values.readinessProbe.successThreshold }}
+            failureThreshold: {{ .Values.readinessProbe.failureThreshold }}
+          {{- else if .Values.customReadinessProbe }}
+          readinessProbe: {{- include "common.tplvalues.render" (dict "value" .Values.customReadinessProbe "context" $) | nindent 12 }}
+          {{- end }}
+          volumeMounts:
+            {{- if .Values.usePasswordFile }}
+            - name: postgresql-password
+              mountPath: /opt/bitnami/postgresql/secrets/
+            {{- end }}
+            {{- if .Values.shmVolume.enabled }}
+            - name: dshm
+              mountPath: /dev/shm
+            {{- end }}
+            {{- if .Values.persistence.enabled }}
+            - name: data
+              mountPath: {{ .Values.persistence.mountPath }}
+              subPath: {{ .Values.persistence.subPath }}
+            {{ end }}
+            {{- if or (.Files.Glob "files/conf.d/*.conf") .Values.postgresqlExtendedConf .Values.extendedConfConfigMap }}
+            - name: postgresql-extended-config
+              mountPath: /bitnami/postgresql/conf/conf.d/
+            {{- end }}
+            {{- if or (.Files.Glob "files/postgresql.conf") (.Files.Glob "files/pg_hba.conf") .Values.postgresqlConfiguration .Values.pgHbaConfiguration .Values.configurationConfigMap }}
+            - name: postgresql-config
+              mountPath: /bitnami/postgresql/conf
+            {{- end }}
+            {{- if .Values.tls.enabled }}
+            - name: postgresql-certificates
+              mountPath: /opt/bitnami/postgresql/certs
+              readOnly: true
+            {{- end }}
+            {{- if .Values.readReplicas.extraVolumeMounts }}
+            {{- toYaml .Values.readReplicas.extraVolumeMounts | nindent 12 }}
+            {{- end }}
+{{- if .Values.readReplicas.sidecars }}
+{{- include "common.tplvalues.render" ( dict "value" .Values.readReplicas.sidecars "context" $ ) | nindent 8 }}
+{{- end }}
+      volumes:
+        {{- if .Values.usePasswordFile }}
+        - name: postgresql-password
+          secret:
+            secretName: {{ template "postgresql.secretName" . }}
+        {{- end }}
+        {{- if or (.Files.Glob "files/postgresql.conf") (.Files.Glob "files/pg_hba.conf") .Values.postgresqlConfiguration .Values.pgHbaConfiguration .Values.configurationConfigMap}}
+        - name: postgresql-config
+          configMap:
+            name: {{ template "postgresql.configurationCM" . }}
+        {{- end }}
+        {{- if or (.Files.Glob "files/conf.d/*.conf") .Values.postgresqlExtendedConf .Values.extendedConfConfigMap }}
+        - name: postgresql-extended-config
+          configMap:
+            name: {{ template "postgresql.extendedConfigurationCM" . }}
+        {{- end }}
+        {{- if  .Values.tls.enabled }}
+        - name: raw-certificates
+          secret:
+            secretName: {{ required "A secret containing TLS certificates is required when TLS is enabled" .Values.tls.certificatesSecret }}
+        - name: postgresql-certificates
+          emptyDir: {}
+        {{- end }}
+        {{- if .Values.shmVolume.enabled }}
+        - name: dshm
+          emptyDir:
+            medium: Memory
+            sizeLimit: 1Gi
+        {{- end }}
+        {{- if or (not .Values.persistence.enabled) (not .Values.readReplicas.persistence.enabled) }}
+        - name: data
+          emptyDir: {}
+        {{- end }}
+        {{- if .Values.readReplicas.extraVolumes }}
+        {{- toYaml .Values.readReplicas.extraVolumes | nindent 8 }}
+        {{- end }}
+  updateStrategy:
+    type: {{ .Values.updateStrategy.type }}
+    {{- if (eq "Recreate" .Values.updateStrategy.type) }}
+    rollingUpdate: null
+    {{- end }}
+{{- if and .Values.persistence.enabled .Values.readReplicas.persistence.enabled }}
+  volumeClaimTemplates:
+    - metadata:
+        name: data
+      {{- with .Values.persistence.annotations }}
+        annotations:
+        {{- range $key, $value := . }}
+          {{ $key }}: {{ $value }}
+        {{- end }}
+      {{- end }}
+      spec:
+        accessModes:
+        {{- range .Values.persistence.accessModes }}
+          - {{ . | quote }}
+        {{- end }}
+        resources:
+          requests:
+            storage: {{ .Values.persistence.size | quote }}
+        {{ include "common.storage.class" (dict "persistence" .Values.persistence "global" .Values.global) }}
+
+        {{- if .Values.persistence.selector }}
+        selector: {{- include "common.tplvalues.render" (dict "value" .Values.persistence.selector "context" $) | nindent 10 }}
+        {{- end -}}
+{{- end }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/statefulset.yaml b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/statefulset.yaml
new file mode 100644
index 0000000000..f8163fd99f
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/statefulset.yaml
@@ -0,0 +1,609 @@
+apiVersion: {{ include "common.capabilities.statefulset.apiVersion" . }}
+kind: StatefulSet
+metadata:
+  name: {{ template "postgresql.primary.fullname" . }}
+  labels: {{- include "common.labels.standard" . | nindent 4 }}
+    app.kubernetes.io/component: primary
+  {{- with .Values.primary.labels }}
+  {{- toYaml . | nindent 4 }}
+  {{- end }}
+  annotations:
+  {{- if .Values.commonAnnotations }}
+  {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
+  {{- end }}
+  {{- with .Values.primary.annotations }}
+  {{- toYaml . | nindent 4 }}
+  {{- end }}
+  namespace: {{ .Release.Namespace }}
+spec:
+  serviceName: {{ template "common.names.fullname" . }}-headless
+  replicas: 1
+  updateStrategy:
+    type: {{ .Values.updateStrategy.type }}
+    {{- if (eq "Recreate" .Values.updateStrategy.type) }}
+    rollingUpdate: null
+    {{- end }}
+  selector:
+    matchLabels:
+    {{- include "common.labels.matchLabels" . | nindent 6 }}
+      role: primary
+  template:
+    metadata:
+      name: {{ template "common.names.fullname" . }}
+      labels:
+      {{- include "common.labels.standard" . | nindent 8 }}
+        role: primary
+        app.kubernetes.io/component: primary
+      {{- with .Values.primary.podLabels }}
+      {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.primary.podAnnotations }}
+      annotations: {{- toYaml . | nindent 8 }}
+      {{- end }}
+    spec:
+      {{- if .Values.schedulerName }}
+      schedulerName: "{{ .Values.schedulerName }}"
+      {{- end }}
+{{- include "postgresql.imagePullSecrets" . | indent 6 }}
+      {{- if .Values.primary.affinity }}
+      affinity: {{- include "common.tplvalues.render" (dict "value" .Values.primary.affinity "context" $) | nindent 8 }}
+      {{- else }}
+      affinity:
+        podAffinity: {{- include "common.affinities.pods" (dict "type" .Values.primary.podAffinityPreset "component" "primary" "context" $) | nindent 10 }}
+        podAntiAffinity: {{- include "common.affinities.pods" (dict "type" .Values.primary.podAntiAffinityPreset "component" "primary" "context" $) | nindent 10 }}
+        nodeAffinity: {{- include "common.affinities.nodes" (dict "type" .Values.primary.nodeAffinityPreset.type "key" .Values.primary.nodeAffinityPreset.key "values" .Values.primary.nodeAffinityPreset.values) | nindent 10 }}
+      {{- end }}
+      {{- if .Values.primary.nodeSelector }}
+      nodeSelector: {{- include "common.tplvalues.render" (dict "value" .Values.primary.nodeSelector "context" $) | nindent 8 }}
+      {{- end }}
+      {{- if .Values.primary.tolerations }}
+      tolerations: {{- include "common.tplvalues.render" (dict "value" .Values.primary.tolerations "context" $) | nindent 8 }}
+      {{- end }}
+      {{- if .Values.terminationGracePeriodSeconds }}
+      terminationGracePeriodSeconds: {{ .Values.terminationGracePeriodSeconds }}
+      {{- end }}
+      {{- if .Values.securityContext.enabled }}
+      securityContext: {{- omit .Values.securityContext "enabled" | toYaml | nindent 8 }}
+      {{- end }}
+      {{- if .Values.serviceAccount.enabled }}
+      serviceAccountName: {{ default (include "common.names.fullname" . ) .Values.serviceAccount.name }}
+      {{- end }}
+      {{- if or .Values.primary.extraInitContainers (and .Values.volumePermissions.enabled (or .Values.persistence.enabled (and .Values.shmVolume.enabled .Values.shmVolume.chmod.enabled))) }}
+      initContainers:
+      {{- if and .Values.volumePermissions.enabled (or .Values.persistence.enabled (and .Values.shmVolume.enabled .Values.shmVolume.chmod.enabled) .Values.tls.enabled) }}
+        - name: init-chmod-data
+          image: {{ template "postgresql.volumePermissions.image" . }}
+          imagePullPolicy: {{ .Values.volumePermissions.image.pullPolicy | quote }}
+          {{- if .Values.resources }}
+          resources: {{- toYaml .Values.resources | nindent 12 }}
+          {{- end }}
+          command:
+            - /bin/sh
+            - -cx
+            - |
+              {{- if .Values.persistence.enabled }}
+              {{- if eq ( toString ( .Values.volumePermissions.securityContext.runAsUser )) "auto" }}
+              chown `id -u`:`id -G | cut -d " " -f2` {{ .Values.persistence.mountPath }}
+              {{- else }}
+              chown {{ .Values.containerSecurityContext.runAsUser }}:{{ .Values.securityContext.fsGroup }} {{ .Values.persistence.mountPath }}
+              {{- end }}
+              mkdir -p {{ .Values.persistence.mountPath }}/data {{- if (include "postgresql.mountConfigurationCM" .) }} {{ .Values.persistence.mountPath }}/conf {{- end }}
+              chmod 700 {{ .Values.persistence.mountPath }}/data {{- if (include "postgresql.mountConfigurationCM" .) }} {{ .Values.persistence.mountPath }}/conf {{- end }}
+              find {{ .Values.persistence.mountPath }} -mindepth 1 -maxdepth 1 {{- if not (include "postgresql.mountConfigurationCM" .) }} -not -name "conf" {{- end }} -not -name ".snapshot" -not -name "lost+found" | \
+              {{- if eq ( toString ( .Values.volumePermissions.securityContext.runAsUser )) "auto" }}
+                xargs chown -R `id -u`:`id -G | cut -d " " -f2`
+              {{- else }}
+                xargs chown -R {{ .Values.containerSecurityContext.runAsUser }}:{{ .Values.securityContext.fsGroup }}
+              {{- end }}
+              {{- end }}
+              {{- if and .Values.shmVolume.enabled .Values.shmVolume.chmod.enabled }}
+              chmod -R 777 /dev/shm
+              {{- end }}
+              {{- if .Values.tls.enabled }}
+              cp /tmp/certs/* /opt/bitnami/postgresql/certs/
+              {{- if eq ( toString ( .Values.volumePermissions.securityContext.runAsUser )) "auto" }}
+              chown -R `id -u`:`id -G | cut -d " " -f2` /opt/bitnami/postgresql/certs/
+              {{- else }}
+              chown -R {{ .Values.containerSecurityContext.runAsUser }}:{{ .Values.securityContext.fsGroup }} /opt/bitnami/postgresql/certs/
+              {{- end }}
+              chmod 600 {{ template "postgresql.tlsCertKey" . }}
+              {{- end }}
+          {{- if eq ( toString ( .Values.volumePermissions.securityContext.runAsUser )) "auto" }}
+          securityContext: {{- omit .Values.volumePermissions.securityContext "runAsUser" | toYaml | nindent 12 }}
+          {{- else }}
+          securityContext: {{- .Values.volumePermissions.securityContext | toYaml | nindent 12 }}
+          {{- end }}
+          volumeMounts:
+            {{- if .Values.persistence.enabled }}
+            - name: data
+              mountPath: {{ .Values.persistence.mountPath }}
+              subPath: {{ .Values.persistence.subPath }}
+            {{- end }}
+            {{- if .Values.shmVolume.enabled }}
+            - name: dshm
+              mountPath: /dev/shm
+            {{- end }}
+            {{- if .Values.tls.enabled }}
+            - name: raw-certificates
+              mountPath: /tmp/certs
+            - name: postgresql-certificates
+              mountPath: /opt/bitnami/postgresql/certs
+            {{- end }}
+      {{- end }}
+      {{- if .Values.primary.extraInitContainers }}
+      {{- include "common.tplvalues.render" ( dict "value" .Values.primary.extraInitContainers "context" $ ) | nindent 8 }}
+      {{- end }}
+      {{- end }}
+      {{- if .Values.primary.priorityClassName }}
+      priorityClassName: {{ .Values.primary.priorityClassName }}
+      {{- end }}
+      containers:
+        - name: {{ template "common.names.fullname" . }}
+          image: {{ template "postgresql.image" . }}
+          imagePullPolicy: "{{ .Values.image.pullPolicy }}"
+          {{- if .Values.resources }}
+          resources: {{- toYaml .Values.resources | nindent 12 }}
+          {{- end }}
+          {{- if .Values.containerSecurityContext.enabled }}
+          securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 12 }}
+          {{- end }}
+          env:
+            - name: BITNAMI_DEBUG
+              value: {{ ternary "true" "false" .Values.image.debug | quote }}
+            - name: POSTGRESQL_PORT_NUMBER
+              value: "{{ template "postgresql.port" . }}"
+            - name: POSTGRESQL_VOLUME_DIR
+              value: "{{ .Values.persistence.mountPath }}"
+            {{- if .Values.postgresqlInitdbArgs }}
+            - name: POSTGRES_INITDB_ARGS
+              value: {{ .Values.postgresqlInitdbArgs | quote }}
+            {{- end }}
+            {{- if .Values.postgresqlInitdbWalDir }}
+            - name: POSTGRES_INITDB_WALDIR
+              value: {{ .Values.postgresqlInitdbWalDir | quote }}
+            {{- end }}
+            {{- if .Values.initdbUser }}
+            - name: POSTGRESQL_INITSCRIPTS_USERNAME
+              value: {{ .Values.initdbUser }}
+            {{- end }}
+            {{- if .Values.initdbPassword }}
+            - name: POSTGRESQL_INITSCRIPTS_PASSWORD
+              value: {{ .Values.initdbPassword }}
+            {{- end }}
+            {{- if .Values.persistence.mountPath }}
+            - name: PGDATA
+              value: {{ .Values.postgresqlDataDir | quote }}
+            {{- end }}
+            {{- if .Values.primaryAsStandBy.enabled }}
+            - name: POSTGRES_MASTER_HOST
+              value: {{ .Values.primaryAsStandBy.primaryHost }}
+            - name: POSTGRES_MASTER_PORT_NUMBER
+              value: {{ .Values.primaryAsStandBy.primaryPort | quote }}
+            {{- end }}
+            {{- if or .Values.replication.enabled .Values.primaryAsStandBy.enabled }}
+            - name: POSTGRES_REPLICATION_MODE
+            {{- if .Values.primaryAsStandBy.enabled }}
+              value: "slave"
+            {{- else }}
+              value: "master"
+            {{- end }}
+            - name: POSTGRES_REPLICATION_USER
+              value: {{ include "postgresql.replication.username" . | quote }}
+            {{- if .Values.usePasswordFile }}
+            - name: POSTGRES_REPLICATION_PASSWORD_FILE
+              value: "/opt/bitnami/postgresql/secrets/postgresql-replication-password"
+            {{- else }}
+            - name: POSTGRES_REPLICATION_PASSWORD
+              valueFrom:
+                secretKeyRef:
+                  name: {{ template "postgresql.secretName" . }}
+                  key: postgresql-replication-password
+            {{- end }}
+            {{- if not (eq .Values.replication.synchronousCommit "off")}}
+            - name: POSTGRES_SYNCHRONOUS_COMMIT_MODE
+              value: {{ .Values.replication.synchronousCommit | quote }}
+            - name: POSTGRES_NUM_SYNCHRONOUS_REPLICAS
+              value: {{ .Values.replication.numSynchronousReplicas | quote }}
+            {{- end }}
+            - name: POSTGRES_CLUSTER_APP_NAME
+              value: {{ .Values.replication.applicationName }}
+            {{- end }}
+            {{- if not (eq (include "postgresql.username" .) "postgres")  }}
+            {{- if .Values.usePasswordFile }}
+            - name: POSTGRES_POSTGRES_PASSWORD_FILE
+              value: "/opt/bitnami/postgresql/secrets/postgresql-postgres-password"
+            {{- else }}
+            - name: POSTGRES_POSTGRES_PASSWORD
+              valueFrom:
+                secretKeyRef:
+                  name: {{ template "postgresql.secretName" . }}
+                  key: postgresql-postgres-password
+            {{- end }}
+            {{- end }}
+            - name: POSTGRES_USER
+              value: {{ include "postgresql.username" . | quote }}
+            {{- if .Values.usePasswordFile }}
+            - name: POSTGRES_PASSWORD_FILE
+              value: "/opt/bitnami/postgresql/secrets/postgresql-password"
+            {{- else }}
+            - name: POSTGRES_PASSWORD
+              valueFrom:
+                secretKeyRef:
+                  name: {{ template "postgresql.secretName" . }}
+                  key: postgresql-password
+            {{- end }}
+            {{- if (include "postgresql.database" .) }}
+            - name: POSTGRES_DB
+              value: {{ (include "postgresql.database" .) | quote }}
+            {{- end }}
+            {{- if .Values.extraEnv }}
+            {{- include "common.tplvalues.render" (dict "value" .Values.extraEnv "context" $) | nindent 12 }}
+            {{- end }}
+            - name: POSTGRESQL_ENABLE_LDAP
+              value: {{ ternary "yes" "no" .Values.ldap.enabled | quote }}
+            {{- if .Values.ldap.enabled }}
+            - name: POSTGRESQL_LDAP_SERVER
+              value: {{ .Values.ldap.server }}
+            - name: POSTGRESQL_LDAP_PORT
+              value: {{ .Values.ldap.port | quote }}
+            - name: POSTGRESQL_LDAP_SCHEME
+              value: {{ .Values.ldap.scheme }}
+            {{- if .Values.ldap.tls }}
+            - name: POSTGRESQL_LDAP_TLS
+              value: "1"
+            {{- end }}
+            - name: POSTGRESQL_LDAP_PREFIX
+              value: {{ .Values.ldap.prefix | quote }}
+            - name: POSTGRESQL_LDAP_SUFFIX
+              value: {{ .Values.ldap.suffix | quote }}
+            - name: POSTGRESQL_LDAP_BASE_DN
+              value: {{ .Values.ldap.baseDN }}
+            - name: POSTGRESQL_LDAP_BIND_DN
+              value: {{ .Values.ldap.bindDN }}
+            {{- if (not (empty .Values.ldap.bind_password)) }}
+            - name: POSTGRESQL_LDAP_BIND_PASSWORD
+              valueFrom:
+                secretKeyRef:
+                  name: {{ template "postgresql.secretName" . }}
+                  key: postgresql-ldap-password
+            {{- end}}
+            - name: POSTGRESQL_LDAP_SEARCH_ATTR
+              value: {{ .Values.ldap.search_attr }}
+            - name: POSTGRESQL_LDAP_SEARCH_FILTER
+              value: {{ .Values.ldap.search_filter }}
+            - name: POSTGRESQL_LDAP_URL
+              value: {{ .Values.ldap.url }}
+            {{- end}}
+            - name: POSTGRESQL_ENABLE_TLS
+              value: {{ ternary "yes" "no" .Values.tls.enabled | quote }}
+            {{- if .Values.tls.enabled }}
+            - name: POSTGRESQL_TLS_PREFER_SERVER_CIPHERS
+              value: {{ ternary "yes" "no" .Values.tls.preferServerCiphers | quote }}
+            - name: POSTGRESQL_TLS_CERT_FILE
+              value: {{ template "postgresql.tlsCert" . }}
+            - name: POSTGRESQL_TLS_KEY_FILE
+              value: {{ template "postgresql.tlsCertKey" . }}
+            {{- if .Values.tls.certCAFilename }}
+            - name: POSTGRESQL_TLS_CA_FILE
+              value: {{ template "postgresql.tlsCACert" . }}
+            {{- end }}
+            {{- if .Values.tls.crlFilename }}
+            - name: POSTGRESQL_TLS_CRL_FILE
+              value: {{ template "postgresql.tlsCRL" . }}
+            {{- end }}
+            {{- end }}
+            - name: POSTGRESQL_LOG_HOSTNAME
+              value: {{ .Values.audit.logHostname | quote }}
+            - name: POSTGRESQL_LOG_CONNECTIONS
+              value: {{ .Values.audit.logConnections | quote }}
+            - name: POSTGRESQL_LOG_DISCONNECTIONS
+              value: {{ .Values.audit.logDisconnections | quote }}
+            {{- if .Values.audit.logLinePrefix }}
+            - name: POSTGRESQL_LOG_LINE_PREFIX
+              value: {{ .Values.audit.logLinePrefix | quote }}
+            {{- end }}
+            {{- if .Values.audit.logTimezone }}
+            - name: POSTGRESQL_LOG_TIMEZONE
+              value: {{ .Values.audit.logTimezone | quote }}
+            {{- end }}
+            {{- if .Values.audit.pgAuditLog }}
+            - name: POSTGRESQL_PGAUDIT_LOG
+              value: {{ .Values.audit.pgAuditLog | quote }}
+            {{- end }}
+            - name: POSTGRESQL_PGAUDIT_LOG_CATALOG
+              value: {{ .Values.audit.pgAuditLogCatalog | quote }}
+            - name: POSTGRESQL_CLIENT_MIN_MESSAGES
+              value: {{ .Values.audit.clientMinMessages | quote }}
+            - name: POSTGRESQL_SHARED_PRELOAD_LIBRARIES
+              value: {{ .Values.postgresqlSharedPreloadLibraries | quote }}
+            {{- if .Values.postgresqlMaxConnections }}
+            - name: POSTGRESQL_MAX_CONNECTIONS
+              value: {{ .Values.postgresqlMaxConnections | quote }}
+            {{- end }}
+            {{- if .Values.postgresqlPostgresConnectionLimit }}
+            - name: POSTGRESQL_POSTGRES_CONNECTION_LIMIT
+              value: {{ .Values.postgresqlPostgresConnectionLimit | quote }}
+            {{- end }}
+            {{- if .Values.postgresqlDbUserConnectionLimit }}
+            - name: POSTGRESQL_USERNAME_CONNECTION_LIMIT
+              value: {{ .Values.postgresqlDbUserConnectionLimit | quote }}
+            {{- end }}
+            {{- if .Values.postgresqlTcpKeepalivesInterval }}
+            - name: POSTGRESQL_TCP_KEEPALIVES_INTERVAL
+              value: {{ .Values.postgresqlTcpKeepalivesInterval | quote }}
+            {{- end }}
+            {{- if .Values.postgresqlTcpKeepalivesIdle }}
+            - name: POSTGRESQL_TCP_KEEPALIVES_IDLE
+              value: {{ .Values.postgresqlTcpKeepalivesIdle | quote }}
+            {{- end }}
+            {{- if .Values.postgresqlStatementTimeout }}
+            - name: POSTGRESQL_STATEMENT_TIMEOUT
+              value: {{ .Values.postgresqlStatementTimeout | quote }}
+            {{- end }}
+            {{- if .Values.postgresqlTcpKeepalivesCount }}
+            - name: POSTGRESQL_TCP_KEEPALIVES_COUNT
+              value: {{ .Values.postgresqlTcpKeepalivesCount | quote }}
+            {{- end }}
+            {{- if .Values.postgresqlPghbaRemoveFilters }}
+            - name: POSTGRESQL_PGHBA_REMOVE_FILTERS
+              value: {{ .Values.postgresqlPghbaRemoveFilters | quote }}
+            {{- end }}
+          {{- if .Values.extraEnvVarsCM }}
+          envFrom:
+            - configMapRef:
+                name: {{ tpl .Values.extraEnvVarsCM . }}
+          {{- end }}
+          ports:
+            - name: tcp-postgresql
+              containerPort: {{ template "postgresql.port" . }}
+          {{- if .Values.startupProbe.enabled }}
+          startupProbe:
+            exec:
+              command:
+                - /bin/sh
+                - -c
+                {{- if (include "postgresql.database" .) }}
+                - exec pg_isready -U {{ include "postgresql.username" . | quote }} -d "dbname={{ include "postgresql.database" . }} {{- if and .Values.tls.enabled .Values.tls.certCAFilename }} sslcert={{ include "postgresql.tlsCert" . }} sslkey={{ include "postgresql.tlsCertKey" . }}{{- end }}" -h 127.0.0.1 -p {{ template "postgresql.port" . }}
+                {{- else }}
+                - exec pg_isready -U {{ include "postgresql.username" . | quote }} {{- if and .Values.tls.enabled .Values.tls.certCAFilename }} -d "sslcert={{ include "postgresql.tlsCert" . }} sslkey={{ include "postgresql.tlsCertKey" . }}"{{- end }} -h 127.0.0.1 -p {{ template "postgresql.port" . }}
+                {{- end }}
+            initialDelaySeconds: {{ .Values.startupProbe.initialDelaySeconds }}
+            periodSeconds: {{ .Values.startupProbe.periodSeconds }}
+            timeoutSeconds: {{ .Values.startupProbe.timeoutSeconds }}
+            successThreshold: {{ .Values.startupProbe.successThreshold }}
+            failureThreshold: {{ .Values.startupProbe.failureThreshold }}
+          {{- else if .Values.customStartupProbe }}
+          startupProbe: {{- include "common.tplvalues.render" (dict "value" .Values.customStartupProbe "context" $) | nindent 12 }}
+          {{- end }}
+          {{- if .Values.livenessProbe.enabled }}
+          livenessProbe:
+            exec:
+              command:
+                - /bin/sh
+                - -c
+                {{- if (include "postgresql.database" .) }}
+                - exec pg_isready -U {{ include "postgresql.username" . | quote }} -d "dbname={{ include "postgresql.database" . }} {{- if and .Values.tls.enabled .Values.tls.certCAFilename }} sslcert={{ include "postgresql.tlsCert" . }} sslkey={{ include "postgresql.tlsCertKey" . }}{{- end }}" -h 127.0.0.1 -p {{ template "postgresql.port" . }}
+                {{- else }}
+                - exec pg_isready -U {{ include "postgresql.username" . | quote }} {{- if and .Values.tls.enabled .Values.tls.certCAFilename }} -d "sslcert={{ include "postgresql.tlsCert" . }} sslkey={{ include "postgresql.tlsCertKey" . }}"{{- end }} -h 127.0.0.1 -p {{ template "postgresql.port" . }}
+                {{- end }}
+            initialDelaySeconds: {{ .Values.livenessProbe.initialDelaySeconds }}
+            periodSeconds: {{ .Values.livenessProbe.periodSeconds }}
+            timeoutSeconds: {{ .Values.livenessProbe.timeoutSeconds }}
+            successThreshold: {{ .Values.livenessProbe.successThreshold }}
+            failureThreshold: {{ .Values.livenessProbe.failureThreshold }}
+          {{- else if .Values.customLivenessProbe }}
+          livenessProbe: {{- include "common.tplvalues.render" (dict "value" .Values.customLivenessProbe "context" $) | nindent 12 }}
+          {{- end }}
+          {{- if .Values.readinessProbe.enabled }}
+          readinessProbe:
+            exec:
+              command:
+                - /bin/sh
+                - -c
+                - -e
+                {{- include "postgresql.readinessProbeCommand" . | nindent 16 }}
+            initialDelaySeconds: {{ .Values.readinessProbe.initialDelaySeconds }}
+            periodSeconds: {{ .Values.readinessProbe.periodSeconds }}
+            timeoutSeconds: {{ .Values.readinessProbe.timeoutSeconds }}
+            successThreshold: {{ .Values.readinessProbe.successThreshold }}
+            failureThreshold: {{ .Values.readinessProbe.failureThreshold }}
+          {{- else if .Values.customReadinessProbe }}
+          readinessProbe: {{- include "common.tplvalues.render" (dict "value" .Values.customReadinessProbe "context" $) | nindent 12 }}
+          {{- end }}
+          volumeMounts:
+            {{- if or (.Files.Glob "files/docker-entrypoint-initdb.d/*.{sh,sql,sql.gz}") .Values.initdbScriptsConfigMap .Values.initdbScripts }}
+            - name: custom-init-scripts
+              mountPath: /docker-entrypoint-initdb.d/
+            {{- end }}
+            {{- if .Values.initdbScriptsSecret }}
+            - name: custom-init-scripts-secret
+              mountPath: /docker-entrypoint-initdb.d/secret
+            {{- end }}
+            {{- if or (.Files.Glob "files/conf.d/*.conf") .Values.postgresqlExtendedConf .Values.extendedConfConfigMap }}
+            - name: postgresql-extended-config
+              mountPath: /bitnami/postgresql/conf/conf.d/
+            {{- end }}
+            {{- if .Values.usePasswordFile }}
+            - name: postgresql-password
+              mountPath: /opt/bitnami/postgresql/secrets/
+            {{- end }}
+            {{- if .Values.tls.enabled }}
+            - name: postgresql-certificates
+              mountPath: /opt/bitnami/postgresql/certs
+              readOnly: true
+            {{- end }}
+            {{- if .Values.shmVolume.enabled }}
+            - name: dshm
+              mountPath: /dev/shm
+            {{- end }}
+            {{- if .Values.persistence.enabled }}
+            - name: data
+              mountPath: {{ .Values.persistence.mountPath }}
+              subPath: {{ .Values.persistence.subPath }}
+            {{- end }}
+            {{- if or (.Files.Glob "files/postgresql.conf") (.Files.Glob "files/pg_hba.conf") .Values.postgresqlConfiguration .Values.pgHbaConfiguration .Values.configurationConfigMap }}
+            - name: postgresql-config
+              mountPath: /bitnami/postgresql/conf
+            {{- end }}
+            {{- if .Values.primary.extraVolumeMounts }}
+            {{- toYaml .Values.primary.extraVolumeMounts | nindent 12 }}
+            {{- end }}
+{{- if .Values.primary.sidecars }}
+{{- include "common.tplvalues.render" ( dict "value" .Values.primary.sidecars "context" $ ) | nindent 8 }}
+{{- end }}
+{{- if .Values.metrics.enabled }}
+        - name: metrics
+          image: {{ template "postgresql.metrics.image" . }}
+          imagePullPolicy: {{ .Values.metrics.image.pullPolicy | quote }}
+         {{- if .Values.metrics.securityContext.enabled }}
+          securityContext: {{- omit .Values.metrics.securityContext "enabled" | toYaml | nindent 12 }}
+        {{- end }}
+          env:
+            {{- $database := required "In order to enable metrics you need to specify a database (.Values.postgresqlDatabase or .Values.global.postgresql.postgresqlDatabase)" (include "postgresql.database" .) }}
+            {{- $sslmode := ternary "require" "disable" .Values.tls.enabled }}
+            {{- if and .Values.tls.enabled .Values.tls.certCAFilename }}
+            - name: DATA_SOURCE_NAME
+              value: {{ printf "host=127.0.0.1 port=%d user=%s sslmode=%s sslcert=%s sslkey=%s" (int (include "postgresql.port" .)) (include "postgresql.username" .) $sslmode (include "postgresql.tlsCert" .) (include "postgresql.tlsCertKey" .) }}
+            {{- else }}
+            - name: DATA_SOURCE_URI
+              value: {{ printf "127.0.0.1:%d/%s?sslmode=%s" (int (include "postgresql.port" .)) $database $sslmode }}
+            {{- end }}
+            {{- if .Values.usePasswordFile }}
+            - name: DATA_SOURCE_PASS_FILE
+              value: "/opt/bitnami/postgresql/secrets/postgresql-password"
+            {{- else }}
+            - name: DATA_SOURCE_PASS
+              valueFrom:
+                secretKeyRef:
+                  name: {{ template "postgresql.secretName" . }}
+                  key: postgresql-password
+            {{- end }}
+            - name: DATA_SOURCE_USER
+              value: {{ template "postgresql.username" . }}
+            {{- if .Values.metrics.extraEnvVars }}
+            {{- include "common.tplvalues.render" (dict "value" .Values.metrics.extraEnvVars "context" $) | nindent 12 }}
+            {{- end }}
+          {{- if .Values.livenessProbe.enabled }}
+          livenessProbe:
+            httpGet:
+              path: /
+              port: http-metrics
+            initialDelaySeconds: {{ .Values.metrics.livenessProbe.initialDelaySeconds }}
+            periodSeconds: {{ .Values.metrics.livenessProbe.periodSeconds }}
+            timeoutSeconds: {{ .Values.metrics.livenessProbe.timeoutSeconds }}
+            successThreshold: {{ .Values.metrics.livenessProbe.successThreshold }}
+            failureThreshold: {{ .Values.metrics.livenessProbe.failureThreshold }}
+          {{- end }}
+          {{- if .Values.readinessProbe.enabled }}
+          readinessProbe:
+            httpGet:
+              path: /
+              port: http-metrics
+            initialDelaySeconds: {{ .Values.metrics.readinessProbe.initialDelaySeconds }}
+            periodSeconds: {{ .Values.metrics.readinessProbe.periodSeconds }}
+            timeoutSeconds: {{ .Values.metrics.readinessProbe.timeoutSeconds }}
+            successThreshold: {{ .Values.metrics.readinessProbe.successThreshold }}
+            failureThreshold: {{ .Values.metrics.readinessProbe.failureThreshold }}
+          {{- end }}
+          volumeMounts:
+            {{- if .Values.usePasswordFile }}
+            - name: postgresql-password
+              mountPath: /opt/bitnami/postgresql/secrets/
+            {{- end }}
+            {{- if .Values.tls.enabled }}
+            - name: postgresql-certificates
+              mountPath: /opt/bitnami/postgresql/certs
+              readOnly: true
+            {{- end }}
+            {{- if .Values.metrics.customMetrics }}
+            - name: custom-metrics
+              mountPath: /conf
+              readOnly: true
+          args: ["--extend.query-path", "/conf/custom-metrics.yaml"]
+            {{- end }}
+          ports:
+            - name: http-metrics
+              containerPort: 9187
+          {{- if .Values.metrics.resources }}
+          resources: {{- toYaml .Values.metrics.resources | nindent 12 }}
+          {{- end }}
+{{- end }}
+      volumes:
+        {{- if or (.Files.Glob "files/postgresql.conf") (.Files.Glob "files/pg_hba.conf") .Values.postgresqlConfiguration .Values.pgHbaConfiguration .Values.configurationConfigMap}}
+        - name: postgresql-config
+          configMap:
+            name: {{ template "postgresql.configurationCM" . }}
+        {{- end }}
+        {{- if or (.Files.Glob "files/conf.d/*.conf") .Values.postgresqlExtendedConf .Values.extendedConfConfigMap }}
+        - name: postgresql-extended-config
+          configMap:
+            name: {{ template "postgresql.extendedConfigurationCM" . }}
+        {{- end }}
+        {{- if .Values.usePasswordFile }}
+        - name: postgresql-password
+          secret:
+            secretName: {{ template "postgresql.secretName" . }}
+        {{- end }}
+        {{- if  or (.Files.Glob "files/docker-entrypoint-initdb.d/*.{sh,sql,sql.gz}") .Values.initdbScriptsConfigMap .Values.initdbScripts }}
+        - name: custom-init-scripts
+          configMap:
+            name: {{ template "postgresql.initdbScriptsCM" . }}
+        {{- end }}
+        {{- if .Values.initdbScriptsSecret }}
+        - name: custom-init-scripts-secret
+          secret:
+            secretName: {{ template "postgresql.initdbScriptsSecret" . }}
+        {{- end }}
+        {{- if  .Values.tls.enabled }}
+        - name: raw-certificates
+          secret:
+            secretName: {{ required "A secret containing TLS certificates is required when TLS is enabled" .Values.tls.certificatesSecret }}
+        - name: postgresql-certificates
+          emptyDir: {}
+        {{- end }}
+        {{- if .Values.primary.extraVolumes }}
+        {{- toYaml .Values.primary.extraVolumes | nindent 8 }}
+        {{- end }}
+        {{- if and .Values.metrics.enabled .Values.metrics.customMetrics }}
+        - name: custom-metrics
+          configMap:
+            name: {{ template "postgresql.metricsCM" . }}
+        {{- end }}
+        {{- if .Values.shmVolume.enabled }}
+        - name: dshm
+          emptyDir:
+            medium: Memory
+            sizeLimit: 1Gi
+        {{- end }}
+{{- if and .Values.persistence.enabled .Values.persistence.existingClaim }}
+        - name: data
+          persistentVolumeClaim:
+{{- with .Values.persistence.existingClaim }}
+            claimName: {{ tpl . $ }}
+{{- end }}
+{{- else if not .Values.persistence.enabled }}
+        - name: data
+          emptyDir: {}
+{{- else if and .Values.persistence.enabled (not .Values.persistence.existingClaim) }}
+  volumeClaimTemplates:
+    - metadata:
+        name: data
+      {{- with .Values.persistence.annotations }}
+        annotations:
+        {{- range $key, $value := . }}
+          {{ $key }}: {{ $value }}
+        {{- end }}
+      {{- end }}
+      spec:
+        accessModes:
+        {{- range .Values.persistence.accessModes }}
+          - {{ . | quote }}
+        {{- end }}
+        resources:
+          requests:
+            storage: {{ .Values.persistence.size | quote }}
+        {{ include "common.storage.class" (dict "persistence" .Values.persistence "global" .Values.global) }}
+        {{- if .Values.persistence.selector }}
+        selector: {{- include "common.tplvalues.render" (dict "value" .Values.persistence.selector "context" $) | nindent 10 }}
+        {{- end -}}
+{{- end }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/svc-headless.yaml b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/svc-headless.yaml
new file mode 100644
index 0000000000..6f5f3b9ee4
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/svc-headless.yaml
@@ -0,0 +1,28 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ template "common.names.fullname" . }}-headless
+  labels:
+  {{- include "common.labels.standard" . | nindent 4 }}
+  {{- if .Values.commonAnnotations }}
+  annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
+  {{- end }}
+    # Use this annotation in addition to the actual publishNotReadyAddresses
+    # field below because the annotation will stop being respected soon but the
+    # field is broken in some versions of Kubernetes:
+    # https://github.com/kubernetes/kubernetes/issues/58662
+    service.alpha.kubernetes.io/tolerate-unready-endpoints: "true"
+  namespace: {{ .Release.Namespace }}
+spec:
+  type: ClusterIP
+  clusterIP: None
+  # We want all pods in the StatefulSet to have their addresses published for
+  # the sake of the other Postgresql pods even before they're ready, since they
+  # have to be able to talk to each other in order to become ready.
+  publishNotReadyAddresses: true
+  ports:
+    - name: tcp-postgresql
+      port: {{ template "postgresql.port" . }}
+      targetPort: tcp-postgresql
+  selector:
+  {{- include "common.labels.matchLabels" . | nindent 4 }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/svc-read.yaml b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/svc-read.yaml
new file mode 100644
index 0000000000..56195ea1e6
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/svc-read.yaml
@@ -0,0 +1,43 @@
+{{- if .Values.replication.enabled }}
+{{- $serviceAnnotations := coalesce .Values.readReplicas.service.annotations .Values.service.annotations -}}
+{{- $serviceType := coalesce .Values.readReplicas.service.type .Values.service.type -}}
+{{- $serviceLoadBalancerIP := coalesce .Values.readReplicas.service.loadBalancerIP .Values.service.loadBalancerIP -}}
+{{- $serviceLoadBalancerSourceRanges := coalesce .Values.readReplicas.service.loadBalancerSourceRanges .Values.service.loadBalancerSourceRanges -}}
+{{- $serviceClusterIP := coalesce .Values.readReplicas.service.clusterIP .Values.service.clusterIP -}}
+{{- $serviceNodePort := coalesce .Values.readReplicas.service.nodePort .Values.service.nodePort -}}
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ template "common.names.fullname" . }}-read
+  labels:
+  {{- include "common.labels.standard" . | nindent 4 }}
+  annotations:
+  {{- if .Values.commonAnnotations }}
+  {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
+  {{- end }}
+  {{- if $serviceAnnotations }}
+  {{- include "common.tplvalues.render" (dict "value" $serviceAnnotations "context" $) | nindent 4 }}
+  {{- end }}
+  namespace: {{ .Release.Namespace }}
+spec:
+  type: {{ $serviceType }}
+  {{- if and $serviceLoadBalancerIP (eq $serviceType "LoadBalancer") }}
+  loadBalancerIP: {{ $serviceLoadBalancerIP }}
+  {{- end }}
+  {{- if and (eq $serviceType "LoadBalancer") $serviceLoadBalancerSourceRanges }}
+  loadBalancerSourceRanges: {{- include "common.tplvalues.render" (dict "value" $serviceLoadBalancerSourceRanges "context" $) | nindent 4 }}
+  {{- end }}
+  {{- if and (eq $serviceType "ClusterIP") $serviceClusterIP }}
+  clusterIP: {{ $serviceClusterIP }}
+  {{- end }}
+  ports:
+    - name: tcp-postgresql
+      port:  {{ template "postgresql.port" . }}
+      targetPort: tcp-postgresql
+      {{- if $serviceNodePort }}
+      nodePort: {{ $serviceNodePort }}
+      {{- end }}
+  selector:
+  {{- include "common.labels.matchLabels" . | nindent 4 }}
+    role: read
+{{- end }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/svc.yaml b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/svc.yaml
new file mode 100644
index 0000000000..a29431b6a4
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/templates/svc.yaml
@@ -0,0 +1,41 @@
+{{- $serviceAnnotations := coalesce .Values.primary.service.annotations .Values.service.annotations -}}
+{{- $serviceType := coalesce .Values.primary.service.type .Values.service.type -}}
+{{- $serviceLoadBalancerIP := coalesce .Values.primary.service.loadBalancerIP .Values.service.loadBalancerIP -}}
+{{- $serviceLoadBalancerSourceRanges := coalesce .Values.primary.service.loadBalancerSourceRanges .Values.service.loadBalancerSourceRanges -}}
+{{- $serviceClusterIP := coalesce .Values.primary.service.clusterIP .Values.service.clusterIP -}}
+{{- $serviceNodePort := coalesce .Values.primary.service.nodePort .Values.service.nodePort -}}
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ template "common.names.fullname" . }}
+  labels:
+  {{- include "common.labels.standard" . | nindent 4 }}
+  annotations:
+  {{- if .Values.commonAnnotations }}
+  {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
+  {{- end }}
+  {{- if $serviceAnnotations }}
+  {{- include "common.tplvalues.render" (dict "value" $serviceAnnotations "context" $) | nindent 4 }}
+  {{- end }}
+  namespace: {{ .Release.Namespace }}
+spec:
+  type: {{ $serviceType }}
+  {{- if and $serviceLoadBalancerIP (eq $serviceType "LoadBalancer") }}
+  loadBalancerIP: {{ $serviceLoadBalancerIP }}
+  {{- end }}
+  {{- if and (eq $serviceType "LoadBalancer") $serviceLoadBalancerSourceRanges }}
+  loadBalancerSourceRanges: {{- include "common.tplvalues.render" (dict "value" $serviceLoadBalancerSourceRanges "context" $) | nindent 4 }}
+  {{- end }}
+  {{- if and (eq $serviceType "ClusterIP") $serviceClusterIP }}
+  clusterIP: {{ $serviceClusterIP }}
+  {{- end }}
+  ports:
+    - name: tcp-postgresql
+      port: {{ template "postgresql.port" . }}
+      targetPort: tcp-postgresql
+      {{- if $serviceNodePort }}
+      nodePort: {{ $serviceNodePort }}
+      {{- end }}
+  selector:
+  {{- include "common.labels.matchLabels" . | nindent 4 }}
+    role: primary
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/values.schema.json b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/values.schema.json
new file mode 100644
index 0000000000..66a2a9dd06
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/values.schema.json
@@ -0,0 +1,103 @@
+{
+  "$schema": "http://json-schema.org/schema#",
+  "type": "object",
+  "properties": {
+    "postgresqlUsername": {
+      "type": "string",
+      "title": "Admin user",
+      "form": true
+    },
+    "postgresqlPassword": {
+      "type": "string",
+      "title": "Password",
+      "form": true
+    },
+    "persistence": {
+      "type": "object",
+      "properties": {
+        "size": {
+          "type": "string",
+          "title": "Persistent Volume Size",
+          "form": true,
+          "render": "slider",
+          "sliderMin": 1,
+          "sliderMax": 100,
+          "sliderUnit": "Gi"
+        }
+      }
+    },
+    "resources": {
+      "type": "object",
+      "title": "Required Resources",
+      "description": "Configure resource requests",
+      "form": true,
+      "properties": {
+        "requests": {
+          "type": "object",
+          "properties": {
+            "memory": {
+              "type": "string",
+              "form": true,
+              "render": "slider",
+              "title": "Memory Request",
+              "sliderMin": 10,
+              "sliderMax": 2048,
+              "sliderUnit": "Mi"
+            },
+            "cpu": {
+              "type": "string",
+              "form": true,
+              "render": "slider",
+              "title": "CPU Request",
+              "sliderMin": 10,
+              "sliderMax": 2000,
+              "sliderUnit": "m"
+            }
+          }
+        }
+      }
+    },
+    "replication": {
+      "type": "object",
+      "form": true,
+      "title": "Replication Details",
+      "properties": {
+        "enabled": {
+          "type": "boolean",
+          "title": "Enable Replication",
+          "form": true
+        },
+        "readReplicas": {
+          "type": "integer",
+          "title": "read Replicas",
+          "form": true,
+          "hidden": {
+            "value": false,
+            "path": "replication/enabled"
+          }
+        }
+      }
+    },
+    "volumePermissions": {
+      "type": "object",
+      "properties": {
+        "enabled": {
+          "type": "boolean",
+          "form": true,
+          "title": "Enable Init Containers",
+          "description": "Change the owner of the persist volume mountpoint to RunAsUser:fsGroup"
+        }
+      }
+    },
+    "metrics": {
+      "type": "object",
+      "properties": {
+        "enabled": {
+          "type": "boolean",
+          "title": "Configure metrics exporter",
+          "form": true
+        }
+      }
+    }
+  }
+}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/values.yaml b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/values.yaml
new file mode 100644
index 0000000000..82ce092344
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/charts/postgresql/values.yaml
@@ -0,0 +1,824 @@
+## Global Docker image parameters
+## Please, note that this will override the image parameters, including dependencies, configured to use the global value
+## Current available global Docker image parameters: imageRegistry and imagePullSecrets
+##
+global:
+  postgresql: {}
+#   imageRegistry: myRegistryName
+#   imagePullSecrets:
+#     - myRegistryKeySecretName
+#   storageClass: myStorageClass
+
+## Bitnami PostgreSQL image version
+## ref: https://hub.docker.com/r/bitnami/postgresql/tags/
+##
+image:
+  registry: docker.io
+  repository: bitnami/postgresql
+  tag: 11.11.0-debian-10-r71
+  ## Specify a imagePullPolicy
+  ## Defaults to 'Always' if image tag is 'latest', else set to 'IfNotPresent'
+  ## ref: http://kubernetes.io/docs/user-guide/images/#pre-pulling-images
+  ##
+  pullPolicy: IfNotPresent
+  ## Optionally specify an array of imagePullSecrets.
+  ## Secrets must be manually created in the namespace.
+  ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/
+  ##
+  # pullSecrets:
+  #   - myRegistryKeySecretName
+
+  ## Set to true if you would like to see extra information on logs
+  ## It turns BASH and/or NAMI debugging in the image
+  ##
+  debug: false
+
+## String to partially override common.names.fullname template (will maintain the release name)
+##
+# nameOverride:
+
+## String to fully override common.names.fullname template
+##
+# fullnameOverride:
+
+##
+## Init containers parameters:
+## volumePermissions: Change the owner of the persist volume mountpoint to RunAsUser:fsGroup
+##
+volumePermissions:
+  enabled: false
+  image:
+    registry: docker.io
+    repository: bitnami/bitnami-shell
+    tag: "10"
+    ## Specify a imagePullPolicy
+    ## Defaults to 'Always' if image tag is 'latest', else set to 'IfNotPresent'
+    ## ref: http://kubernetes.io/docs/user-guide/images/#pre-pulling-images
+    ##
+    pullPolicy: Always
+    ## Optionally specify an array of imagePullSecrets.
+    ## Secrets must be manually created in the namespace.
+    ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/
+    ##
+    # pullSecrets:
+    #   - myRegistryKeySecretName
+  ## Init container Security Context
+  ## Note: the chown of the data folder is done to securityContext.runAsUser
+  ## and not the below volumePermissions.securityContext.runAsUser
+  ## When runAsUser is set to special value "auto", init container will try to chwon the
+  ## data folder to autodetermined user&group, using commands: `id -u`:`id -G | cut -d" " -f2`
+  ## "auto" is especially useful for OpenShift which has scc with dynamic userids (and 0 is not allowed).
+  ## You may want to use this volumePermissions.securityContext.runAsUser="auto" in combination with
+  ## pod securityContext.enabled=false and shmVolume.chmod.enabled=false
+  ##
+  securityContext:
+    runAsUser: 0
+
+## Use an alternate scheduler, e.g. "stork".
+## ref: https://kubernetes.io/docs/tasks/administer-cluster/configure-multiple-schedulers/
+##
+# schedulerName:
+
+## Pod Security Context
+## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/
+##
+securityContext:
+  enabled: true
+  fsGroup: 1001
+
+## Container Security Context
+## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/
+##
+containerSecurityContext:
+  enabled: true
+  runAsUser: 1001
+
+## Pod Service Account
+## ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/
+##
+serviceAccount:
+  enabled: false
+  ## Name of an already existing service account. Setting this value disables the automatic service account creation.
+  # name:
+
+## Pod Security Policy
+## ref: https://kubernetes.io/docs/concepts/policy/pod-security-policy/
+##
+psp:
+  create: false
+
+## Creates role for ServiceAccount
+## Required for PSP
+##
+rbac:
+  create: false
+
+replication:
+  enabled: false
+  user: repl_user
+  password: repl_password
+  readReplicas: 1
+  ## Set synchronous commit mode: on, off, remote_apply, remote_write and local
+  ## ref: https://www.postgresql.org/docs/9.6/runtime-config-wal.html#GUC-WAL-LEVEL
+  synchronousCommit: 'off'
+  ## From the number of `readReplicas` defined above, set the number of those that will have synchronous replication
+  ## NOTE: It cannot be > readReplicas
+  numSynchronousReplicas: 0
+  ## Replication Cluster application name. Useful for defining multiple replication policies
+  ##
+  applicationName: my_application
+
+## PostgreSQL admin password (used when `postgresqlUsername` is not `postgres`)
+## ref: https://github.com/bitnami/bitnami-docker-postgresql/blob/master/README.md#creating-a-database-user-on-first-run (see note!)
+# postgresqlPostgresPassword:
+
+## PostgreSQL user (has superuser privileges if username is `postgres`)
+## ref: https://github.com/bitnami/bitnami-docker-postgresql/blob/master/README.md#setting-the-root-password-on-first-run
+##
+postgresqlUsername: postgres
+
+## PostgreSQL password
+## ref: https://github.com/bitnami/bitnami-docker-postgresql/blob/master/README.md#setting-the-root-password-on-first-run
+##
+# postgresqlPassword:
+
+## PostgreSQL password using existing secret
+## existingSecret: secret
+##
+
+## Mount PostgreSQL secret as a file instead of passing environment variable
+# usePasswordFile: false
+
+## Create a database
+## ref: https://github.com/bitnami/bitnami-docker-postgresql/blob/master/README.md#creating-a-database-on-first-run
+##
+# postgresqlDatabase:
+
+## PostgreSQL data dir
+## ref: https://github.com/bitnami/bitnami-docker-postgresql/blob/master/README.md
+##
+postgresqlDataDir: /bitnami/postgresql/data
+
+## An array to add extra environment variables
+## For example:
+## extraEnv:
+##   - name: FOO
+##     value: "bar"
+##
+# extraEnv:
+extraEnv: []
+
+## Name of a ConfigMap containing extra env vars
+##
+# extraEnvVarsCM:
+
+## Specify extra initdb args
+## ref: https://github.com/bitnami/bitnami-docker-postgresql/blob/master/README.md
+##
+# postgresqlInitdbArgs:
+
+## Specify a custom location for the PostgreSQL transaction log
+## ref: https://github.com/bitnami/bitnami-docker-postgresql/blob/master/README.md
+##
+# postgresqlInitdbWalDir:
+
+## PostgreSQL configuration
+## Specify runtime configuration parameters as a dict, using camelCase, e.g.
+## {"sharedBuffers": "500MB"}
+## Alternatively, you can put your postgresql.conf under the files/ directory
+## ref: https://www.postgresql.org/docs/current/static/runtime-config.html
+##
+# postgresqlConfiguration:
+
+## PostgreSQL extended configuration
+## As above, but _appended_ to the main configuration
+## Alternatively, you can put your *.conf under the files/conf.d/ directory
+## https://github.com/bitnami/bitnami-docker-postgresql#allow-settings-to-be-loaded-from-files-other-than-the-default-postgresqlconf
+##
+# postgresqlExtendedConf:
+
+## Configure current cluster's primary server to be the standby server in other cluster.
+## This will allow cross cluster replication and provide cross cluster high availability.
+## You will need to configure pgHbaConfiguration if you want to enable this feature with local cluster replication enabled.
+##
+primaryAsStandBy:
+  enabled: false
+  #  primaryHost:
+  #  primaryPort:
+
+## PostgreSQL client authentication configuration
+## Specify content for pg_hba.conf
+## Default: do not create pg_hba.conf
+## Alternatively, you can put your pg_hba.conf under the files/ directory
+# pgHbaConfiguration: |-
+#   local all all trust
+#   host all all localhost trust
+#   host mydatabase mysuser 192.168.0.0/24 md5
+
+## ConfigMap with PostgreSQL configuration
+## NOTE: This will override postgresqlConfiguration and pgHbaConfiguration
+# configurationConfigMap:
+
+## ConfigMap with PostgreSQL extended configuration
+# extendedConfConfigMap:
+
+## initdb scripts
+## Specify dictionary of scripts to be run at first boot
+## Alternatively, you can put your scripts under the files/docker-entrypoint-initdb.d directory
+##
+# initdbScripts:
+#   my_init_script.sh: |
+#      #!/bin/sh
+#      echo "Do something."
+
+## ConfigMap with scripts to be run at first boot
+## NOTE: This will override initdbScripts
+# initdbScriptsConfigMap:
+
+## Secret with scripts to be run at first boot (in case it contains sensitive information)
+## NOTE: This can work along initdbScripts or initdbScriptsConfigMap
+# initdbScriptsSecret:
+
+## Specify the PostgreSQL username and password to execute the initdb scripts
+# initdbUser:
+# initdbPassword:
+
+## Audit settings
+## https://github.com/bitnami/bitnami-docker-postgresql#auditing
+##
+audit:
+  ## Log client hostnames
+  ##
+  logHostname: false
+  ## Log connections to the server
+  ##
+  logConnections: false
+  ## Log disconnections
+  ##
+  logDisconnections: false
+  ## Operation to audit using pgAudit (default if not set)
+  ##
+  pgAuditLog: ""
+  ## Log catalog using pgAudit
+  ##
+  pgAuditLogCatalog: "off"
+  ## Log level for clients
+  ##
+  clientMinMessages: error
+  ## Template for log line prefix (default if not set)
+  ##
+  logLinePrefix: ""
+  ## Log timezone
+  ##
+  logTimezone: ""
+
+## Shared preload libraries
+##
+postgresqlSharedPreloadLibraries: "pgaudit"
+
+## Maximum total connections
+##
+postgresqlMaxConnections:
+
+## Maximum connections for the postgres user
+##
+postgresqlPostgresConnectionLimit:
+
+## Maximum connections for the created user
+##
+postgresqlDbUserConnectionLimit:
+
+## TCP keepalives interval
+##
+postgresqlTcpKeepalivesInterval:
+
+## TCP keepalives idle
+##
+postgresqlTcpKeepalivesIdle:
+
+## TCP keepalives count
+##
+postgresqlTcpKeepalivesCount:
+
+## Statement timeout
+##
+postgresqlStatementTimeout:
+
+## Remove pg_hba.conf lines with the following comma-separated patterns
+## (cannot be used with custom pg_hba.conf)
+##
+postgresqlPghbaRemoveFilters:
+
+## Optional duration in seconds the pod needs to terminate gracefully.
+## ref: https://kubernetes.io/docs/concepts/workloads/pods/pod/#termination-of-pods
+##
+# terminationGracePeriodSeconds: 30
+
+## LDAP configuration
+##
+ldap:
+  enabled: false
+  url: ''
+  server: ''
+  port: ''
+  prefix: ''
+  suffix: ''
+  baseDN: ''
+  bindDN: ''
+  bind_password:
+  search_attr: ''
+  search_filter: ''
+  scheme: ''
+  tls: {}
+
+## PostgreSQL service configuration
+##
+service:
+  ## PosgresSQL service type
+  ##
+  type: ClusterIP
+  # clusterIP: None
+  port: 5432
+
+  ## Specify the nodePort value for the LoadBalancer and NodePort service types.
+  ## ref: https://kubernetes.io/docs/concepts/services-networking/service/#type-nodeport
+  ##
+  # nodePort:
+
+  ## Provide any additional annotations which may be required. Evaluated as a template.
+  ##
+  annotations: {}
+  ## Set the LoadBalancer service type to internal only.
+  ## ref: https://kubernetes.io/docs/concepts/services-networking/service/#internal-load-balancer
+  ##
+  # loadBalancerIP:
+  ## Load Balancer sources. Evaluated as a template.
+  ## https://kubernetes.io/docs/tasks/access-application-cluster/configure-cloud-provider-firewall/#restrict-access-for-loadbalancer-service
+  ##
+  # loadBalancerSourceRanges:
+  # - 10.10.10.0/24
+
+## Start primary and read(s) pod(s) without limitations on shm memory.
+## By default docker and containerd (and possibly other container runtimes)
+## limit `/dev/shm` to `64M` (see e.g. the
+## [docker issue](https://github.com/docker-library/postgres/issues/416) and the
+## [containerd issue](https://github.com/containerd/containerd/issues/3654),
+## which could be not enough if PostgreSQL uses parallel workers heavily.
+##
+shmVolume:
+  ## Set `shmVolume.enabled` to `true` to mount a new tmpfs volume to remove
+  ## this limitation.
+  ##
+  enabled: true
+  ## Set to `true` to `chmod 777 /dev/shm` on a initContainer.
+  ## This option is ignored if `volumePermissions.enabled` is `false`
+  ##
+  chmod:
+    enabled: true
+
+## PostgreSQL data Persistent Volume Storage Class
+## If defined, storageClassName: <storageClass>
+## If set to "-", storageClassName: "", which disables dynamic provisioning
+## If undefined (the default) or set to null, no storageClassName spec is
+##   set, choosing the default provisioner.  (gp2 on AWS, standard on
+##   GKE, AWS & OpenStack)
+##
+persistence:
+  enabled: true
+  ## A manually managed Persistent Volume and Claim
+  ## If defined, PVC must be created manually before volume will be bound
+  ## The value is evaluated as a template, so, for example, the name can depend on .Release or .Chart
+  ##
+  # existingClaim:
+
+  ## The path the volume will be mounted at, useful when using different
+  ## PostgreSQL images.
+  ##
+  mountPath: /bitnami/postgresql
+
+  ## The subdirectory of the volume to mount to, useful in dev environments
+  ## and one PV for multiple services.
+  ##
+  subPath: ''
+
+  # storageClass: "-"
+  accessModes:
+    - ReadWriteOnce
+  size: 8Gi
+  annotations: {}
+  ## selector can be used to match an existing PersistentVolume
+  ## selector:
+  ##   matchLabels:
+  ##     app: my-app
+  selector: {}
+
+## updateStrategy for PostgreSQL StatefulSet and its reads StatefulSets
+## ref: https://kubernetes.io/docs/concepts/workloads/controllers/statefulset/#update-strategies
+##
+updateStrategy:
+  type: RollingUpdate
+
+##
+## PostgreSQL Primary parameters
+##
+primary:
+  ## PostgreSQL Primary pod affinity preset
+  ## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity
+  ## Allowed values: soft, hard
+  ##
+  podAffinityPreset: ""
+
+  ## PostgreSQL Primary pod anti-affinity preset
+  ## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity
+  ## Allowed values: soft, hard
+  ##
+  podAntiAffinityPreset: soft
+
+  ## PostgreSQL Primary node affinity preset
+  ## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#node-affinity
+  ## Allowed values: soft, hard
+  ##
+  nodeAffinityPreset:
+    ## Node affinity type
+    ## Allowed values: soft, hard
+    type: ""
+    ## Node label key to match
+    ## E.g.
+    ## key: "kubernetes.io/e2e-az-name"
+    ##
+    key: ""
+    ## Node label values to match
+    ## E.g.
+    ## values:
+    ##   - e2e-az1
+    ##   - e2e-az2
+    ##
+    values: []
+
+  ## Affinity for PostgreSQL primary pods assignment
+  ## ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity
+  ## Note: primary.podAffinityPreset, primary.podAntiAffinityPreset, and primary.nodeAffinityPreset will be ignored when it's set
+  ##
+  affinity: {}
+
+  ## Node labels for PostgreSQL primary pods assignment
+  ## ref: https://kubernetes.io/docs/user-guide/node-selection/
+  ##
+  nodeSelector: {}
+
+  ## Tolerations for PostgreSQL primary pods assignment
+  ## ref: https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/
+  ##
+  tolerations: []
+
+  labels: {}
+  annotations: {}
+  podLabels: {}
+  podAnnotations: {}
+  priorityClassName: ''
+  ## Extra init containers
+  ## Example
+  ##
+  ## extraInitContainers:
+  ##   - name: do-something
+  ##     image: busybox
+  ##     command: ['do', 'something']
+  ##
+  extraInitContainers: []
+
+  ## Additional PostgreSQL primary Volume mounts
+  ##
+  extraVolumeMounts: []
+  ## Additional PostgreSQL primary Volumes
+  ##
+  extraVolumes: []
+  ## Add sidecars to the pod
+  ##
+  ## For example:
+  ## sidecars:
+  ##   - name: your-image-name
+  ##     image: your-image
+  ##     imagePullPolicy: Always
+  ##     ports:
+  ##       - name: portname
+  ##         containerPort: 1234
+  ##
+  sidecars: []
+
+  ## Override the service configuration for primary
+  ##
+  service: {}
+  # type:
+  # nodePort:
+  # clusterIP:
+
+##
+## PostgreSQL read only replica parameters
+##
+readReplicas:
+  ## PostgreSQL read only pod affinity preset
+  ## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity
+  ## Allowed values: soft, hard
+  ##
+  podAffinityPreset: ""
+
+  ## PostgreSQL read only pod anti-affinity preset
+  ## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity
+  ## Allowed values: soft, hard
+  ##
+  podAntiAffinityPreset: soft
+
+  ## PostgreSQL read only node affinity preset
+  ## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#node-affinity
+  ## Allowed values: soft, hard
+  ##
+  nodeAffinityPreset:
+    ## Node affinity type
+    ## Allowed values: soft, hard
+    type: ""
+    ## Node label key to match
+    ## E.g.
+    ## key: "kubernetes.io/e2e-az-name"
+    ##
+    key: ""
+    ## Node label values to match
+    ## E.g.
+    ## values:
+    ##   - e2e-az1
+    ##   - e2e-az2
+    ##
+    values: []
+
+  ## Affinity for PostgreSQL read only pods assignment
+  ## ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity
+  ## Note: readReplicas.podAffinityPreset, readReplicas.podAntiAffinityPreset, and readReplicas.nodeAffinityPreset will be ignored when it's set
+  ##
+  affinity: {}
+
+  ## Node labels for PostgreSQL read only  pods assignment
+  ## ref: https://kubernetes.io/docs/user-guide/node-selection/
+  ##
+  nodeSelector: {}
+
+  ## Tolerations for PostgreSQL read only  pods assignment
+  ## ref: https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/
+  ##
+  tolerations: []
+  labels: {}
+  annotations: {}
+  podLabels: {}
+  podAnnotations: {}
+  priorityClassName: ''
+
+  ## Extra init containers
+  ## Example
+  ##
+  ## extraInitContainers:
+  ##   - name: do-something
+  ##     image: busybox
+  ##     command: ['do', 'something']
+  ##
+  extraInitContainers: []
+
+  ## Additional PostgreSQL read replicas Volume mounts
+  ##
+  extraVolumeMounts: []
+
+  ## Additional PostgreSQL read replicas Volumes
+  ##
+  extraVolumes: []
+
+  ## Add sidecars to the pod
+  ##
+  ## For example:
+  ## sidecars:
+  ##   - name: your-image-name
+  ##     image: your-image
+  ##     imagePullPolicy: Always
+  ##     ports:
+  ##       - name: portname
+  ##         containerPort: 1234
+  ##
+  sidecars: []
+
+  ## Override the service configuration for read
+  ##
+  service: {}
+  # type:
+  # nodePort:
+  # clusterIP:
+
+  ## Whether to enable PostgreSQL read replicas data Persistent
+  ##
+  persistence:
+    enabled: true
+
+  # Override the resource configuration for read replicas
+  resources: {}
+  # requests:
+  #   memory: 256Mi
+  #   cpu: 250m
+
+## Configure resource requests and limits
+## ref: http://kubernetes.io/docs/user-guide/compute-resources/
+##
+resources:
+  requests:
+    memory: 256Mi
+    cpu: 250m
+
+## Add annotations to all the deployed resources
+##
+commonAnnotations: {}
+
+networkPolicy:
+  ## Enable creation of NetworkPolicy resources. Only Ingress traffic is filtered for now.
+  ##
+  enabled: false
+
+  ## The Policy model to apply. When set to false, only pods with the correct
+  ## client label will have network access to the port PostgreSQL is listening
+  ## on. When true, PostgreSQL will accept connections from any source
+  ## (with the correct destination port).
+  ##
+  allowExternal: true
+
+  ## if explicitNamespacesSelector is missing or set to {}, only client Pods that are in the networkPolicy's namespace
+  ## and that match other criteria, the ones that have the good label, can reach the DB.
+  ## But sometimes, we want the DB to be accessible to clients from other namespaces, in this case, we can use this
+  ## LabelSelector to select these namespaces, note that the networkPolicy's namespace should also be explicitly added.
+  ##
+  ## Example:
+  ## explicitNamespacesSelector:
+  ##   matchLabels:
+  ##     role: frontend
+  ##   matchExpressions:
+  ##    - {key: role, operator: In, values: [frontend]}
+  ##
+  explicitNamespacesSelector: {}
+
+## Configure extra options for startup, liveness and readiness probes
+## ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#configure-probes
+##
+startupProbe:
+  enabled: false
+  initialDelaySeconds: 30
+  periodSeconds: 15
+  timeoutSeconds: 5
+  failureThreshold: 10
+  successThreshold: 1
+
+livenessProbe:
+  enabled: true
+  initialDelaySeconds: 30
+  periodSeconds: 10
+  timeoutSeconds: 5
+  failureThreshold: 6
+  successThreshold: 1
+
+readinessProbe:
+  enabled: true
+  initialDelaySeconds: 5
+  periodSeconds: 10
+  timeoutSeconds: 5
+  failureThreshold: 6
+  successThreshold: 1
+
+## Custom Startup probe
+##
+customStartupProbe: {}
+
+## Custom Liveness probe
+##
+customLivenessProbe: {}
+
+## Custom Rediness probe
+##
+customReadinessProbe: {}
+
+##
+## TLS configuration
+##
+tls:
+  # Enable TLS traffic
+  enabled: false
+  #
+  # Whether to use the server's TLS cipher preferences rather than the client's.
+  preferServerCiphers: true
+  #
+  # Name of the Secret that contains the certificates
+  certificatesSecret: ''
+  #
+  # Certificate filename
+  certFilename: ''
+  #
+  # Certificate Key filename
+  certKeyFilename: ''
+  #
+  # CA Certificate filename
+  # If provided, PostgreSQL will authenticate TLS/SSL clients by requesting them a certificate
+  # ref: https://www.postgresql.org/docs/9.6/auth-methods.html
+  certCAFilename:
+  #
+  # File containing a Certificate Revocation List
+  crlFilename:
+
+## Configure metrics exporter
+##
+metrics:
+  enabled: false
+  # resources: {}
+  service:
+    type: ClusterIP
+    annotations:
+      prometheus.io/scrape: 'true'
+      prometheus.io/port: '9187'
+    loadBalancerIP:
+  serviceMonitor:
+    enabled: false
+    additionalLabels: {}
+    # namespace: monitoring
+    # interval: 30s
+    # scrapeTimeout: 10s
+  ## Custom PrometheusRule to be defined
+  ## The value is evaluated as a template, so, for example, the value can depend on .Release or .Chart
+  ## ref: https://github.com/coreos/prometheus-operator#customresourcedefinitions
+  ##
+  prometheusRule:
+    enabled: false
+    additionalLabels: {}
+    namespace: ''
+    ## These are just examples rules, please adapt them to your needs.
+    ## Make sure to constraint the rules to the current postgresql service.
+    ## rules:
+    ##   - alert: HugeReplicationLag
+    ##     expr: pg_replication_lag{service="{{ template "common.names.fullname" . }}-metrics"} / 3600 > 1
+    ##     for: 1m
+    ##     labels:
+    ##       severity: critical
+    ##     annotations:
+    ##       description: replication for {{ template "common.names.fullname" . }} PostgreSQL is lagging by {{ "{{ $value }}" }} hour(s).
+    ##       summary: PostgreSQL replication is lagging by {{ "{{ $value }}" }} hour(s).
+    ##
+    rules: []
+
+  image:
+    registry: docker.io
+    repository: bitnami/postgres-exporter
+    tag: 0.9.0-debian-10-r43
+    pullPolicy: IfNotPresent
+    ## Optionally specify an array of imagePullSecrets.
+    ## Secrets must be manually created in the namespace.
+    ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/
+    ##
+    # pullSecrets:
+    #   - myRegistryKeySecretName
+  ## Define additional custom metrics
+  ## ref: https://github.com/wrouesnel/postgres_exporter#adding-new-metrics-via-a-config-file
+  # customMetrics:
+  #   pg_database:
+  #     query: "SELECT d.datname AS name, CASE WHEN pg_catalog.has_database_privilege(d.datname, 'CONNECT') THEN pg_catalog.pg_database_size(d.datname) ELSE 0 END AS size_bytes FROM pg_catalog.pg_database d where datname not in ('template0', 'template1', 'postgres')"
+  #     metrics:
+  #       - name:
+  #           usage: "LABEL"
+  #           description: "Name of the database"
+  #       - size_bytes:
+  #           usage: "GAUGE"
+  #           description: "Size of the database in bytes"
+  #
+  ## An array to add extra env vars to configure postgres-exporter
+  ## see: https://github.com/wrouesnel/postgres_exporter#environment-variables
+  ## For example:
+  #  extraEnvVars:
+  #  - name: PG_EXPORTER_DISABLE_DEFAULT_METRICS
+  #    value: "true"
+  extraEnvVars: {}
+
+  ## Pod Security Context
+  ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/
+  ##
+  securityContext:
+    enabled: false
+    runAsUser: 1001
+  ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-probes/#configure-probes)
+  ## Configure extra options for liveness and readiness probes
+  ##
+  livenessProbe:
+    enabled: true
+    initialDelaySeconds: 5
+    periodSeconds: 10
+    timeoutSeconds: 5
+    failureThreshold: 6
+    successThreshold: 1
+
+  readinessProbe:
+    enabled: true
+    initialDelaySeconds: 5
+    periodSeconds: 10
+    timeoutSeconds: 5
+    failureThreshold: 6
+    successThreshold: 1
+
+## Array with extra yaml to deploy with the chart. Evaluated as a template
+##
+extraDeploy: []
diff --git a/charts/jfrog/artifactory-ha/107.104.10/ci/access-tls-values.yaml b/charts/jfrog/artifactory-ha/107.104.10/ci/access-tls-values.yaml
new file mode 100644
index 0000000000..27e24d3468
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/ci/access-tls-values.yaml
@@ -0,0 +1,34 @@
+databaseUpgradeReady: true
+artifactory:
+  masterKey: FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF
+  persistence:
+    enabled: false
+  primary:
+    resources:
+      requests:
+        memory: "4Gi"
+        cpu: "2"
+      limits:
+        memory: "6Gi"
+        cpu: "4"
+  node:
+    resources:
+      requests:
+        memory: "4Gi"
+        cpu: "2"
+      limits:
+        memory: "6Gi"
+        cpu: "4"
+  javaOpts:
+    xms: "4g"
+    xmx: "4g"
+# To Fix ct tool --reuse-values - PASSWORDS ERROR: you must provide your current passwords when upgrade the release
+postgresql:
+  postgresqlPassword: password
+  persistence:
+    enabled: false
+access:
+  accessConfig:
+    security:
+      tls: true
+  resetAccessCAKeys: true
diff --git a/charts/jfrog/artifactory-ha/107.104.10/ci/default-values.yaml b/charts/jfrog/artifactory-ha/107.104.10/ci/default-values.yaml
new file mode 100644
index 0000000000..020f523352
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/ci/default-values.yaml
@@ -0,0 +1,32 @@
+# Leave this file empty to ensure that CI runs builds against the default configuration in values.yaml.
+databaseUpgradeReady: true
+## This is an exception here because HA needs masterKey to connect with other node members and it is commented in values to support 6.x to 7.x Migration
+## Please refer https://github.com/jfrog/charts/blob/master/stable/artifactory-ha/README.md#special-upgrade-notes-1
+artifactory:
+  masterKey: FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF
+  persistence:
+    enabled: false
+  primary:
+    resources:
+      requests:
+        memory: "4Gi"
+        cpu: "2"
+      limits:
+        memory: "6Gi"
+        cpu: "4"
+    javaOpts:
+      xms: "4g"
+      xmx: "4g"
+  node:
+    resources:
+      requests:
+        memory: "4Gi"
+        cpu: "2"
+      limits:
+        memory: "6Gi"
+        cpu: "4"
+# To Fix ct tool --reuse-values - PASSWORDS ERROR: you must provide your current passwords when upgrade the release
+postgresql:
+  postgresqlPassword: password
+  persistence:
+    enabled: false
diff --git a/charts/jfrog/artifactory-ha/107.104.10/ci/global-values.yaml b/charts/jfrog/artifactory-ha/107.104.10/ci/global-values.yaml
new file mode 100644
index 0000000000..0987e17ca7
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/ci/global-values.yaml
@@ -0,0 +1,255 @@
+databaseUpgradeReady: true
+artifactory:
+  persistence:
+    enabled: false
+  primary:
+    resources:
+      requests:
+        memory: "4Gi"
+        cpu: "2"
+      limits:
+        memory: "6Gi"
+        cpu: "4"
+    javaOpts:
+      xms: "4g"
+      xmx: "4g"
+  node:
+    resources:
+      requests:
+        memory: "4Gi"
+        cpu: "2"
+      limits:
+        memory: "6Gi"
+        cpu: "4"
+  customInitContainersBegin: |
+   - name: "custom-init-begin-local"
+     image: {{ include "artifactory-ha.getImageInfoByValue" (list . "initContainers") }}
+     imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+     command:
+       - 'sh'
+       - '-c'
+       - echo "running in local"
+     volumeMounts:
+       - mountPath: "{{ .Values.artifactory.persistence.mountPath }}"
+         name: volume
+  customInitContainers: |
+   - name: "custom-init-local"
+     image: {{ include "artifactory-ha.getImageInfoByValue" (list . "initContainers") }}
+     imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+     command:
+       - 'sh'
+       - '-c'
+       - echo "running in local"
+     volumeMounts:
+       - mountPath: "{{ .Values.artifactory.persistence.mountPath }}"
+         name: volume
+  # Add custom volumes
+  customVolumes: |
+   - name: custom-script-local
+     emptyDir:
+       sizeLimit: 100Mi
+  # Add custom volumesMounts
+  customVolumeMounts: |
+   - name: custom-script-local
+     mountPath: "/scriptslocal"
+  # Add custom sidecar containers
+  customSidecarContainers: |
+   - name: "sidecar-list-local"
+     image: {{ include "artifactory-ha.getImageInfoByValue" (list . "initContainers") }}
+     imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+     securityContext:
+       allowPrivilegeEscalation: false
+       capabilities:
+         drop:
+           - NET_RAW
+     command: ["sh","-c","echo 'Sidecar is running in local' >> /scriptslocal/sidecarlocal.txt; cat /scriptslocal/sidecarlocal.txt; while true; do sleep 30; done"]
+     volumeMounts:
+       - mountPath: "/scriptslocal"
+         name: custom-script-local
+     resources:
+       requests:
+         memory: "32Mi"
+         cpu: "50m"
+       limits:
+         memory: "128Mi"
+         cpu: "100m"
+
+# To Fix ct tool --reuse-values - PASSWORDS ERROR: you must provide your current passwords when upgrade the release
+postgresql:
+  postgresqlPassword: password
+  persistence:
+    enabled: false
+global:
+  masterKey: FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF
+  joinKey: EEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEE
+  customInitContainersBegin: |
+   - name: "custom-init-begin-global"
+     image: {{ include "artifactory-ha.getImageInfoByValue" (list . "initContainers") }}
+     imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+     command:
+       - 'sh'
+       - '-c'
+       - echo "running in global"
+     volumeMounts:
+       - mountPath: "{{ .Values.artifactory.persistence.mountPath }}"
+         name: volume
+  customInitContainers: |
+   - name: "custom-init-global"
+     image: {{ include "artifactory-ha.getImageInfoByValue" (list . "initContainers") }}
+     imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+     command:
+       - 'sh'
+       - '-c'
+       - echo "running in global"
+     volumeMounts:
+       - mountPath: "{{ .Values.artifactory.persistence.mountPath }}"
+         name: volume
+  # Add custom volumes
+  customVolumes: |
+   - name: custom-script-global
+     emptyDir:
+       sizeLimit: 100Mi
+  # Add custom volumesMounts
+  customVolumeMounts: |
+   - name: custom-script-global
+     mountPath: "/scripts"
+  # Add custom sidecar containers
+  customSidecarContainers: |
+   - name: "sidecar-list-global"
+     image: {{ include "artifactory-ha.getImageInfoByValue" (list . "initContainers") }}
+     imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+     securityContext:
+       allowPrivilegeEscalation: false
+       capabilities:
+         drop:
+           - NET_RAW
+     command: ["sh","-c","echo 'Sidecar is running in global' >> /scripts/sidecarglobal.txt; cat /scripts/sidecarglobal.txt; while true; do sleep 30; done"]
+     volumeMounts:
+       - mountPath: "/scripts"
+         name: custom-script-global
+     resources:
+       requests:
+         memory: "32Mi"
+         cpu: "50m"
+       limits:
+         memory: "128Mi"
+         cpu: "100m"
+
+nginx:
+  customInitContainers: |
+   - name: "custom-init-begin-nginx"
+     image: {{ include "artifactory-ha.getImageInfoByValue" (list . "initContainers") }}
+     imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+     command:
+       - 'sh'
+       - '-c'
+       - echo "running in nginx"
+     volumeMounts:
+       - mountPath: "{{ .Values.artifactory.persistence.mountPath }}"
+         name: custom-script-local
+  customSidecarContainers: |
+   - name: "sidecar-list-nginx"
+     image: {{ include "artifactory-ha.getImageInfoByValue" (list . "initContainers") }}
+     imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+     securityContext:
+       allowPrivilegeEscalation: false
+       capabilities:
+         drop:
+           - NET_RAW
+     command: ["sh","-c","echo 'Sidecar is running in local' >> /scriptslocal/sidecarlocal.txt; cat /scriptslocal/sidecarlocal.txt; while true; do sleep 30; done"]
+     volumeMounts:
+       - mountPath: "/scriptslocal"
+         name: custom-script-local
+     resources:
+       requests:
+         memory: "32Mi"
+         cpu: "50m"
+       limits:
+         memory: "128Mi"
+         cpu: "100m"
+  # Add custom volumes
+  customVolumes: |
+   - name: custom-script-local
+     emptyDir:
+       sizeLimit: 100Mi
+
+  artifactoryConf: |
+    {{- if .Values.nginx.https.enabled }}
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2 TLSv1.3;
+    ssl_certificate  {{ .Values.nginx.persistence.mountPath }}/ssl/tls.crt;
+    ssl_certificate_key  {{ .Values.nginx.persistence.mountPath }}/ssl/tls.key;
+    ssl_session_cache shared:SSL:1m;
+    ssl_prefer_server_ciphers   on;
+    {{- end }}
+    ## server configuration
+    server {
+      listen 8088;
+      {{- if .Values.nginx.internalPortHttps }}
+      listen {{ .Values.nginx.internalPortHttps }} ssl;
+      {{- else -}}
+      {{- if .Values.nginx.https.enabled }}
+      listen {{ .Values.nginx.https.internalPort }} ssl;
+      {{- end }}
+      {{- end }}
+      {{- if .Values.nginx.internalPortHttp }}
+      listen {{ .Values.nginx.internalPortHttp }};
+      {{- else -}}
+      {{- if .Values.nginx.http.enabled }}
+      listen {{ .Values.nginx.http.internalPort }};
+      {{- end }}
+      {{- end }}
+      server_name ~(?<repo>.+)\.{{ include "artifactory-ha.fullname" . }} {{ include "artifactory-ha.fullname" . }}
+      {{- range .Values.ingress.hosts -}}
+        {{- if contains "." . -}}
+          {{ "" | indent 0 }} ~(?<repo>.+)\.{{ . }}
+        {{- end -}}
+      {{- end -}};
+      if ($http_x_forwarded_proto = '') {
+        set $http_x_forwarded_proto  $scheme;
+      }
+      ## Application specific logs
+      ## access_log /var/log/nginx/artifactory-access.log timing;
+      ## error_log /var/log/nginx/artifactory-error.log;
+      rewrite ^/artifactory/?$ / redirect;
+      if ( $repo != "" ) {
+        rewrite ^/(v1|v2)/(.*) /artifactory/api/docker/$repo/$1/$2 break;
+      }
+      chunked_transfer_encoding on;
+      client_max_body_size 0;
+
+      location / {
+        proxy_read_timeout  900;
+        proxy_pass_header   Server;
+        proxy_cookie_path   ~*^/.* /;
+        proxy_pass          {{ include "artifactory-ha.scheme" . }}://{{ include "artifactory-ha.fullname" . }}:{{ .Values.artifactory.externalPort }}/;
+        {{- if .Values.nginx.service.ssloffload}}
+        proxy_set_header    X-JFrog-Override-Base-Url $http_x_forwarded_proto://$host;
+        {{- else }}
+        proxy_set_header    X-JFrog-Override-Base-Url $http_x_forwarded_proto://$host:$server_port;
+        proxy_set_header    X-Forwarded-Port  $server_port;
+        {{- end }}
+        proxy_set_header    X-Forwarded-Proto $http_x_forwarded_proto;
+        proxy_set_header    Host              $http_host;
+        proxy_set_header    X-Forwarded-For   $proxy_add_x_forwarded_for;
+        add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always;
+
+        location /artifactory/ {
+          if ( $request_uri ~ ^/artifactory/(.*)$ ) {
+            proxy_pass       {{ include "artifactory-ha.scheme" . }}://{{ include "artifactory-ha.fullname" . }}:{{ .Values.artifactory.externalArtifactoryPort }}/artifactory/$1;
+          }
+          proxy_pass          {{ include "artifactory-ha.scheme" . }}://{{ include "artifactory-ha.fullname" . }}:{{ .Values.artifactory.externalArtifactoryPort }}/artifactory/;
+        }
+      }
+    }
+
+  ## A list of custom ports to expose on the NGINX pod. Follows the conventional Kubernetes yaml syntax for container ports.
+  customPorts:
+  - containerPort: 8088
+    name: http2
+  service:
+    ## A list of custom ports to expose through the Ingress controller service. Follows the conventional Kubernetes yaml syntax for service ports.
+    customPorts:
+    - port: 8088
+      targetPort: 8088
+      protocol: TCP
+      name: http2
diff --git a/charts/jfrog/artifactory-ha/107.104.10/ci/large-values.yaml b/charts/jfrog/artifactory-ha/107.104.10/ci/large-values.yaml
new file mode 100644
index 0000000000..153307aa26
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/ci/large-values.yaml
@@ -0,0 +1,85 @@
+# Leave this file empty to ensure that CI runs builds against the default configuration in values.yaml.
+databaseUpgradeReady: true
+
+# To Fix ct tool --reuse-values - PASSWORDS ERROR: you must provide your current passwords when upgrade the release
+postgresql:
+  postgresqlPassword: password
+  persistence:
+    enabled: false
+artifactory:
+  masterKey: FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF
+  persistence:
+    enabled: false
+  database:
+    maxOpenConnections: 150
+  tomcat:
+    connector:
+      maxThreads: 300
+  primary:
+    replicaCount: 4
+    resources:
+      requests:
+        memory: "6Gi"
+        cpu: "2"
+      limits:
+        memory: "10Gi"
+        cpu: "8"
+    javaOpts:
+      xms: "8g"
+      xmx: "10g"
+access:
+  database:
+    maxOpenConnections: 150
+  tomcat:
+    connector:
+      maxThreads: 100
+router:
+  resources:
+    requests:
+      memory: "200Mi"
+      cpu: "200m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+frontend:
+  resources:
+    requests:
+      memory: "200Mi"
+      cpu: "200m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+metadata:
+  database:
+    maxOpenConnections: 150
+  resources:
+    requests:
+      memory: "200Mi"
+      cpu: "200m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+event:
+  resources:
+    requests:
+      memory: "200Mi"
+      cpu: "200m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+jfconnect:
+  resources:
+    requests:
+      memory: "200Mi"
+      cpu: "200m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+observability:
+  resources:
+    requests:
+      memory: "200Mi"
+      cpu: "200m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
diff --git a/charts/jfrog/artifactory-ha/107.104.10/ci/loggers-values.yaml b/charts/jfrog/artifactory-ha/107.104.10/ci/loggers-values.yaml
new file mode 100644
index 0000000000..03c94be953
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/ci/loggers-values.yaml
@@ -0,0 +1,43 @@
+# Leave this file empty to ensure that CI runs builds against the default configuration in values.yaml.
+databaseUpgradeReady: true
+
+# To Fix ct tool --reuse-values - PASSWORDS ERROR: you must provide your current passwords when upgrade the release
+postgresql:
+  postgresqlPassword: password
+  persistence:
+    enabled: false
+artifactory:
+  persistence:
+    enabled: false
+  resources:
+    requests:
+      memory: "4Gi"
+      cpu: "2"
+    limits:
+      memory: "6Gi"
+      cpu: "4"
+  javaOpts:
+    xms: "4g"
+    xmx: "4g"
+
+  loggers:
+  - access-audit.log
+  - access-request.log
+  - access-security-audit.log
+  - access-service.log
+  - artifactory-access.log
+  - artifactory-event.log
+  - artifactory-import-export.log
+  - artifactory-request.log
+  - artifactory-service.log
+  - frontend-request.log
+  - frontend-service.log
+  - metadata-request.log
+  - metadata-service.log
+  - router-request.log
+  - router-service.log
+  - router-traefik.log
+
+  catalinaLoggers:
+  - tomcat-catalina.log
+  - tomcat-localhost.log
diff --git a/charts/jfrog/artifactory-ha/107.104.10/ci/medium-values.yaml b/charts/jfrog/artifactory-ha/107.104.10/ci/medium-values.yaml
new file mode 100644
index 0000000000..115e7d4602
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/ci/medium-values.yaml
@@ -0,0 +1,85 @@
+# Leave this file empty to ensure that CI runs builds against the default configuration in values.yaml.
+databaseUpgradeReady: true
+
+# To Fix ct tool --reuse-values - PASSWORDS ERROR: you must provide your current passwords when upgrade the release
+postgresql:
+  postgresqlPassword: password
+  persistence:
+    enabled: false
+artifactory:
+  masterKey: FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF
+  persistence:
+    enabled: false
+  database:
+    maxOpenConnections: 100
+  tomcat:
+    connector:
+      maxThreads: 200
+  primary:
+    replicaCount: 3
+    resources:
+      requests:
+        memory: "4Gi"
+        cpu: "2"
+      limits:
+        memory: "8Gi"
+        cpu: "6"
+    javaOpts:
+      xms: "6g"
+      xmx: "8g"
+access:
+  database:
+    maxOpenConnections: 100
+  tomcat:
+    connector:
+      maxThreads: 50
+router:
+  resources:
+    requests:
+      memory: "200Mi"
+      cpu: "200m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+frontend:
+  resources:
+    requests:
+      memory: "200Mi"
+      cpu: "200m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+metadata:
+  database:
+    maxOpenConnections: 100
+  resources:
+    requests:
+      memory: "200Mi"
+      cpu: "200m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+event:
+  resources:
+    requests:
+      memory: "200Mi"
+      cpu: "200m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+jfconnect:
+  resources:
+    requests:
+      memory: "200Mi"
+      cpu: "200m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+observability:
+  resources:
+    requests:
+      memory: "200Mi"
+      cpu: "200m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
diff --git a/charts/jfrog/artifactory-ha/107.104.10/ci/migration-disabled-values.yaml b/charts/jfrog/artifactory-ha/107.104.10/ci/migration-disabled-values.yaml
new file mode 100644
index 0000000000..44895a3731
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/ci/migration-disabled-values.yaml
@@ -0,0 +1,31 @@
+databaseUpgradeReady: true
+# To Fix ct tool --reuse-values - PASSWORDS ERROR: you must provide your current passwords when upgrade the release
+postgresql:
+  postgresqlPassword: password
+  persistence:
+    enabled: false
+artifactory:
+  masterKey: FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF
+  migration:
+    enabled: false
+  persistence:
+    enabled: false
+  primary:
+    resources:
+      requests:
+        memory: "4Gi"
+        cpu: "2"
+      limits:
+        memory: "6Gi"
+        cpu: "4"
+    javaOpts:
+      xms: "4g"
+      xmx: "4g"
+  node:
+    resources:
+      requests:
+        memory: "4Gi"
+        cpu: "2"
+      limits:
+        memory: "6Gi"
+        cpu: "4"
diff --git a/charts/jfrog/artifactory-ha/107.104.10/ci/nginx-autoreload-values.yaml b/charts/jfrog/artifactory-ha/107.104.10/ci/nginx-autoreload-values.yaml
new file mode 100644
index 0000000000..a6f4e8001f
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/ci/nginx-autoreload-values.yaml
@@ -0,0 +1,53 @@
+# Leave this file empty to ensure that CI runs builds against the default configuration in values.yaml.
+databaseUpgradeReady: true
+## This is an exception here because HA needs masterKey to connect with other node members and it is commented in values to support 6.x to 7.x Migration
+## Please refer https://github.com/jfrog/charts/blob/master/stable/artifactory-ha/README.md#special-upgrade-notes-1
+artifactory:
+  masterKey: FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF
+  persistence:
+    enabled: false
+  primary:
+    resources:
+      requests:
+        memory: "4Gi"
+        cpu: "2"
+      limits:
+        memory: "6Gi"
+        cpu: "4"
+    javaOpts:
+      xms: "4g"
+      xmx: "4g"
+  node:
+    resources:
+      requests:
+        memory: "4Gi"
+        cpu: "2"
+      limits:
+        memory: "6Gi"
+        cpu: "4"
+# To Fix ct tool --reuse-values - PASSWORDS ERROR: you must provide your current passwords when upgrade the release
+postgresql:
+  postgresqlPassword: password
+  persistence:
+    enabled: false
+
+nginx:
+  customVolumes: |
+    - name: scripts
+      configMap:
+        name: {{ template "artifactory-ha.fullname" . }}-nginx-scripts
+        defaultMode: 0550
+  customVolumeMounts: |
+    - name: scripts
+      mountPath: /var/opt/jfrog/nginx/scripts/
+  customCommand:
+    - /bin/sh
+    - -c
+    - |
+      # watch for configmap changes
+      /sbin/inotifyd /var/opt/jfrog/nginx/scripts/configreloader.sh {{ .Values.nginx.persistence.mountPath -}}/conf.d:n &
+      {{ if .Values.nginx.https.enabled -}}
+      # watch for tls secret changes
+      /sbin/inotifyd /var/opt/jfrog/nginx/scripts/configreloader.sh {{ .Values.nginx.persistence.mountPath -}}/ssl:n &
+      {{ end -}}
+      nginx -g 'daemon off;'
diff --git a/charts/jfrog/artifactory-ha/107.104.10/ci/rtsplit-access-tls-values.yaml b/charts/jfrog/artifactory-ha/107.104.10/ci/rtsplit-access-tls-values.yaml
new file mode 100644
index 0000000000..6f3b13cb14
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/ci/rtsplit-access-tls-values.yaml
@@ -0,0 +1,106 @@
+databaseUpgradeReady: true
+artifactory:
+  replicaCount: 3
+  joinKey: EEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEE
+  masterKey: FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF
+  persistence:
+    enabled: false
+  primary:
+    resources:
+      requests:
+        memory: "4Gi"
+        cpu: "2"
+      limits:
+        memory: "6Gi"
+        cpu: "4"
+  node:
+    resources:
+      requests:
+        memory: "4Gi"
+        cpu: "2"
+      limits:
+        memory: "6Gi"
+        cpu: "4"
+  javaOpts:
+    xms: "4g"
+    xmx: "4g"
+
+access:
+  accessConfig:
+    security:
+      tls: true
+  resetAccessCAKeys: true
+
+postgresql:
+  postgresqlPassword: password
+  postgresqlExtendedConf:
+    maxConnections: 102
+  persistence:
+    enabled: false
+
+rbac:
+  create: true
+serviceAccount:
+  create: true
+  automountServiceAccountToken: true
+
+ingress:
+  enabled: true
+  className: "testclass"
+  hosts:
+    - demonow.xyz
+nginx:
+  enabled: false
+jfconnect:
+  enabled: true
+  resources:
+    requests:
+      memory: "100Mi"
+      cpu: "100m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+mc:
+  enabled: true
+splitServicesToContainers: true
+
+router:
+  resources:
+    requests:
+      memory: "100Mi"
+      cpu: "100m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+frontend:
+  resources:
+    requests:
+      memory: "100Mi"
+      cpu: "100m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+metadata:
+  resources:
+    requests:
+      memory: "100Mi"
+      cpu: "100m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+event:
+  resources:
+    requests:
+      memory: "100Mi"
+      cpu: "100m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+observability:
+  resources:
+    requests:
+      memory: "100Mi"
+      cpu: "100m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
diff --git a/charts/jfrog/artifactory-ha/107.104.10/ci/rtsplit-values.yaml b/charts/jfrog/artifactory-ha/107.104.10/ci/rtsplit-values.yaml
new file mode 100644
index 0000000000..87832a5051
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/ci/rtsplit-values.yaml
@@ -0,0 +1,155 @@
+databaseUpgradeReady: true
+artifactory:
+  replicaCount: 3
+  joinKey: EEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEE
+  masterKey: FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF
+  persistence:
+    enabled: false
+  primary:
+    resources:
+      requests:
+        memory: "4Gi"
+        cpu: "2"
+      limits:
+        memory: "6Gi"
+        cpu: "4"
+    javaOpts:
+      xms: "4g"
+      xmx: "4g"
+  node:
+    resources:
+      requests:
+        memory: "4Gi"
+        cpu: "2"
+      limits:
+        memory: "6Gi"
+        cpu: "4"
+
+  # Add lifecycle hooks for artifactory container
+  lifecycle:
+    postStart:
+      exec:
+        command: ["/bin/sh", "-c", "echo Hello from the artifactory postStart handler >> /tmp/message"]
+    preStop:
+      exec:
+        command: ["/bin/sh", "-c", "echo Hello from the artifactory postStart handler >> /tmp/message"]
+
+postgresql:
+  postgresqlPassword: password
+  postgresqlExtendedConf:
+    maxConnections: 102
+  persistence:
+    enabled: false
+
+rbac:
+  create: true
+serviceAccount:
+  create: true
+  automountServiceAccountToken: true
+
+ingress:
+  enabled: true
+  className: "testclass"
+  hosts:
+    - demonow.xyz
+nginx:
+  enabled: false
+jfconnect:
+  enabled: true
+  resources:
+    requests:
+      memory: "100Mi"
+      cpu: "100m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+  # Add lifecycle hooks for jfconect container
+  lifecycle:
+    postStart:
+      exec:
+        command: ["/bin/sh", "-c", "echo Hello from the jfconnect postStart handler >> /tmp/message"]
+    preStop:
+      exec:
+        command: ["/bin/sh", "-c", "echo Hello from the jfconnect postStart handler >> /tmp/message"]
+
+mc:
+  enabled: true
+splitServicesToContainers: true
+
+router:
+  resources:
+    requests:
+      memory: "100Mi"
+      cpu: "100m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+  # Add lifecycle hooks for router container
+  lifecycle:
+    postStart:
+      exec:
+        command: ["/bin/sh", "-c", "echo Hello from the router postStart handler >> /tmp/message"]
+    preStop:
+      exec:
+        command: ["/bin/sh", "-c", "echo Hello from the router postStart handler >> /tmp/message"]
+frontend:
+  resources:
+    requests:
+      memory: "100Mi"
+      cpu: "100m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+  # Add lifecycle hooks for frontend container
+  lifecycle:
+    postStart:
+      exec:
+        command: ["/bin/sh", "-c", "echo Hello from the frontend postStart handler >> /tmp/message"]
+    preStop:
+      exec:
+        command: ["/bin/sh", "-c", "echo Hello from the frontend postStart handler >> /tmp/message"]
+metadata:
+  resources:
+    requests:
+      memory: "100Mi"
+      cpu: "100m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+  lifecycle:
+    postStart:
+      exec:
+        command: ["/bin/sh", "-c", "echo Hello from the metadata postStart handler >> /tmp/message"]
+    preStop:
+      exec:
+        command: ["/bin/sh", "-c", "echo Hello from the metadata postStart handler >> /tmp/message"]
+event:
+  resources:
+    requests:
+      memory: "100Mi"
+      cpu: "100m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+  lifecycle:
+    postStart:
+      exec:
+        command: ["/bin/sh", "-c", "echo Hello from the event postStart handler >> /tmp/message"]
+    preStop:
+      exec:
+        command: ["/bin/sh", "-c", "echo Hello from the event postStart handler >> /tmp/message"]
+observability:
+  resources:
+    requests:
+      memory: "100Mi"
+      cpu: "100m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+  lifecycle:
+    postStart:
+      exec:
+        command: ["/bin/sh", "-c", "echo Hello from the observability postStart handler >> /tmp/message"]
+    preStop:
+      exec:
+        command: ["/bin/sh", "-c", "echo Hello from the observability postStart handler >> /tmp/message"]
diff --git a/charts/jfrog/artifactory-ha/107.104.10/ci/small-values.yaml b/charts/jfrog/artifactory-ha/107.104.10/ci/small-values.yaml
new file mode 100644
index 0000000000..9da2419d80
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/ci/small-values.yaml
@@ -0,0 +1,90 @@
+# Leave this file empty to ensure that CI runs builds against the default configuration in values.yaml.
+databaseUpgradeReady: true
+
+# To Fix ct tool --reuse-values - PASSWORDS ERROR: you must provide your current passwords when upgrade the release
+postgresql:
+  postgresqlPassword: password
+  persistence:
+    enabled: false
+artifactory:
+  masterKey: FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF
+  persistence:
+    enabled: false
+  database:
+    maxOpenConnections: 80
+  tomcat:
+    connector:
+      maxThreads: 200
+  primary:
+    replicaCount: 1
+    resources:
+      requests:
+        memory: "4Gi"
+        cpu: "2"
+      limits:
+        memory: "6Gi"
+        cpu: "4"
+    javaOpts:
+      xms: "4g"
+      xmx: "6g"
+  node:
+    replicaCount: 2
+access:
+  database:
+    maxOpenConnections: 80
+  tomcat:
+    connector:
+      maxThreads: 50
+router:
+  resources:
+    requests:
+      memory: "100Mi"
+      cpu: "100m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+frontend:
+  resources:
+    requests:
+      memory: "100Mi"
+      cpu: "100m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+metadata:
+  database:
+    maxOpenConnections: 80
+  resources:
+    requests:
+      memory: "100Mi"
+      cpu: "100m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+event:
+  resources:
+    requests:
+      memory: "100Mi"
+      cpu: "100m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+jfconnect:
+  resources:
+    requests:
+      memory: "100Mi"
+      cpu: "100m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+observability:
+  resources:
+    requests:
+      memory: "100Mi"
+      cpu: "100m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+
+rtfs:
+  enabled: true
diff --git a/charts/jfrog/artifactory-ha/107.104.10/ci/test-values.yaml b/charts/jfrog/artifactory-ha/107.104.10/ci/test-values.yaml
new file mode 100644
index 0000000000..8bbbb5b3e5
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/ci/test-values.yaml
@@ -0,0 +1,85 @@
+databaseUpgradeReady: true
+artifactory:
+  metrics:
+    enabled: true
+  podSecurityContext:
+    fsGroupChangePolicy: "OnRootMismatch"
+  masterKey: FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF
+  unifiedSecretInstallation: false
+  persistence:
+    enabled: false
+  primary:
+    resources:
+      requests:
+        memory: "4Gi"
+        cpu: "2"
+      limits:
+        memory: "6Gi"
+        cpu: "4"
+    javaOpts:
+      xms: "4g"
+      xmx: "4g"
+  node:
+    resources:
+      requests:
+        memory: "4Gi"
+        cpu: "2"
+      limits:
+        memory: "6Gi"
+        cpu: "4"
+  statefulset:
+    annotations:
+      artifactory: test
+
+postgresql:
+  postgresqlPassword: "password"
+  postgresqlExtendedConf:
+    maxConnections: "102"
+  persistence:
+    enabled: false
+rbac:
+  create: true
+serviceAccount:
+  create: true
+  automountServiceAccountToken: true
+ingress:
+  enabled: true
+  className: "testclass"
+  hosts:
+    - demonow.xyz
+nginx:
+  enabled: false
+
+jfconnect:
+  enabled: false
+
+## filebeat sidecar
+filebeat:
+  enabled: true
+  filebeatYml: |
+    logging.level: info
+    path.data: {{ .Values.artifactory.persistence.mountPath }}/log/filebeat
+    name: artifactory-filebeat
+    queue.spool:
+      file:
+        permissions: 0760
+    filebeat.inputs:
+    - type: log
+      enabled: true
+      close_eof: ${CLOSE:false}
+      paths:
+         - {{ .Values.artifactory.persistence.mountPath }}/log/*.log
+      fields:
+        service: "jfrt"
+        log_type: "artifactory"
+    output.file:
+      path: "/tmp/filebeat"
+      filename: filebeat
+  readinessProbe:
+    exec:
+      command:
+        - sh
+        - -c
+        - |
+          #!/usr/bin/env bash -e
+          curl --fail 127.0.0.1:5066
diff --git a/charts/jfrog/artifactory-ha/107.104.10/files/binarystore.xml b/charts/jfrog/artifactory-ha/107.104.10/files/binarystore.xml
new file mode 100644
index 0000000000..d807bf2e45
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/files/binarystore.xml
@@ -0,0 +1,442 @@
+{{- if and (eq .Values.artifactory.persistence.type "nfs") (.Values.artifactory.haDataDir.enabled) }}
+<!--
+## Important!
+## Artifactory Node haDataDir (artifactory.node.haDataDir) is configured as part of the system.yaml.
+## The Artifactory Filestore is shared among all nodes and located according to the 'haDataDir' value.
+-->
+<config version="2">
+<chain> <!--template="file-system"-->
+    <provider id="file-system" type="file-system"/>
+</chain>
+</config>
+
+{{- end }}
+{{- if and (eq .Values.artifactory.persistence.type "nfs") (not .Values.artifactory.haDataDir.enabled) }}
+<config version="2">
+    {{- if  (.Values.artifactory.persistence.maxCacheSize) }}
+    <chain> <!--template="file-system"-->
+        <provider id="cache-fs" type="cache-fs">
+            <provider id="file-system" type="file-system"/>
+        </provider>
+    </chain>
+    {{- else }}
+    <chain> <!--template="file-system"-->
+            <provider id="file-system" type="file-system"/>
+    </chain>
+    {{- end }}
+
+    {{- if .Values.artifactory.persistence.maxCacheSize }}
+    <provider id="cache-fs" type="cache-fs">
+        <maxCacheSize>{{ .Values.artifactory.persistence.maxCacheSize | int64 }}</maxCacheSize>
+        <cacheProviderDir>{{ .Values.artifactory.persistence.cacheProviderDir }}</cacheProviderDir>
+        {{- if .Values.artifactory.persistence.maxFileSizeLimit }}
+        <maxFileSizeLimit>{{.Values.artifactory.persistence.maxFileSizeLimit | int64}}</maxFileSizeLimit>
+        {{- end }}
+        {{- if .Values.artifactory.persistence.skipDuringUpload }}
+        <skipDuringUpload>{{.Values.artifactory.persistence.skipDuringUpload}}</skipDuringUpload>
+        {{- end }}
+    </provider>
+    {{- end }}
+
+    <provider id="file-system" type="file-system">
+        <fileStoreDir>{{ .Values.artifactory.persistence.nfs.dataDir }}/filestore</fileStoreDir>
+    </provider>
+</config>
+
+{{- end }}
+
+{{- if eq .Values.artifactory.persistence.type "file-system" }}
+<!-- File system replication -->
+{{- if .Values.artifactory.persistence.fileSystem.existingSharedClaim.enabled }}
+<!-- File Storage - Dynamic for Artifactory files, pre-created for DATA and BACKUP -->
+<config version="4">
+    <chain>
+        <provider id="cache-fs" type="cache-fs">                   <!-- This is a cached filestore -->
+            <provider id="sharding" type="sharding">                   <!-- This is a sharding provider -->
+                {{- range $sharedClaimNumber, $e := until (.Values.artifactory.persistence.fileSystem.existingSharedClaim.numberOfExistingClaims|int) -}}
+                <sub-provider id="shard{{ $sharedClaimNumber }}" type="state-aware"/>
+                {{- end }}
+            </provider>
+        </provider>
+    </chain>
+
+    <provider id="cache-fs" type="cache-fs">
+        <maxCacheSize>{{ .Values.artifactory.persistence.maxCacheSize | int64 }}</maxCacheSize>
+        <cacheProviderDir>{{ .Values.artifactory.persistence.cacheProviderDir }}</cacheProviderDir>
+        {{- if .Values.artifactory.persistence.maxFileSizeLimit }}
+        <maxFileSizeLimit>{{.Values.artifactory.persistence.maxFileSizeLimit | int64}}</maxFileSizeLimit>
+        {{- end }}
+        {{- if .Values.artifactory.persistence.skipDuringUpload }}
+        <skipDuringUpload>{{.Values.artifactory.persistence.skipDuringUpload}}</skipDuringUpload>
+        {{- end }}
+    </provider>
+
+    // Specify the read and write strategy and redundancy for the sharding binary provider
+    <provider id="sharding" type="sharding">
+        <readBehavior>roundRobin</readBehavior>
+        <writeBehavior>percentageFreeSpace</writeBehavior>
+        <redundancy>2</redundancy>
+    </provider>
+
+    {{- range $sharedClaimNumber, $e := until (.Values.artifactory.persistence.fileSystem.existingSharedClaim.numberOfExistingClaims|int) -}}
+    //For each sub-provider (mount), specify the filestore location
+    <provider id="shard{{ $sharedClaimNumber }}" type="state-aware">
+        <fileStoreDir>filestore{{ $sharedClaimNumber }}</fileStoreDir>
+    </provider>
+    {{- end }}
+</config>
+{{- else }}
+<config version="2">
+    <chain>
+        <provider id="cache-fs" type="cache-fs">
+            <provider id="sharding-cluster" type="sharding-cluster">
+                <readBehavior>crossNetworkStrategy</readBehavior>
+                <writeBehavior>crossNetworkStrategy</writeBehavior>
+                <redundancy>{{ .Values.artifactory.persistence.redundancy }}</redundancy>
+                <lenientLimit>2</lenientLimit>
+                <minSpareUploaderExecutor>2</minSpareUploaderExecutor>
+                <sub-provider id="state-aware" type="state-aware"/>
+                <dynamic-provider id="remote" type="remote"/>
+                <property name="zones" value="local,remote"/>
+            </provider>
+        </provider>
+    </chain>
+
+    <provider id="cache-fs" type="cache-fs">
+        <maxCacheSize>{{ .Values.artifactory.persistence.maxCacheSize | int64 }}</maxCacheSize>
+        <cacheProviderDir>{{ .Values.artifactory.persistence.cacheProviderDir }}</cacheProviderDir>
+        {{- if .Values.artifactory.persistence.maxFileSizeLimit }}
+        <maxFileSizeLimit>{{.Values.artifactory.persistence.maxFileSizeLimit | int64}}</maxFileSizeLimit>
+        {{- end }}
+        {{- if .Values.artifactory.persistence.skipDuringUpload }}
+        <skipDuringUpload>{{.Values.artifactory.persistence.skipDuringUpload}}</skipDuringUpload>
+        {{- end }}
+    </provider>
+
+    <!-- Shards add local file-system provider configuration -->
+    <provider id="state-aware" type="state-aware">
+        <fileStoreDir>shard-fs-1</fileStoreDir>
+        <zone>local</zone>
+    </provider>
+
+    <!-- Shards dynamic remote provider configuration -->
+    <provider id="remote" type="remote">
+        <checkPeriod>30</checkPeriod>
+        <serviceId>tester-remote1</serviceId>
+        <timeout>10000</timeout>
+        <zone>remote</zone>
+        <property name="header.remote.block" value="true"/>
+    </provider>
+</config>
+{{- end }}
+{{- end }}
+{{- if or (eq .Values.artifactory.persistence.type "google-storage") (eq .Values.artifactory.persistence.type "google-storage-v2") (eq .Values.artifactory.persistence.type "google-storage-v2-direct") }}
+<!-- Google storage -->
+<config version="2">
+    {{- if or (eq .Values.artifactory.persistence.type "google-storage") (eq .Values.artifactory.persistence.type "google-storage-v2") }}
+    <chain>
+        <provider id="cache-fs" type="cache-fs">
+            <provider id="sharding-cluster" type="sharding-cluster">
+                <readBehavior>crossNetworkStrategy</readBehavior>
+                <writeBehavior>crossNetworkStrategy</writeBehavior>
+                <redundancy>{{ .Values.artifactory.persistence.redundancy }}</redundancy>
+                <minSpareUploaderExecutor>2</minSpareUploaderExecutor>
+                <sub-provider id="eventual-cluster" type="eventual-cluster">
+                    <provider id="retry" type="retry">
+                        <provider id="google-storage-v2" type="google-storage-v2"/>
+                    </provider>
+                </sub-provider>
+                <dynamic-provider id="remote" type="remote"/>
+                <property name="zones" value="local,remote"/>
+            </provider>
+        </provider>
+    </chain>
+    {{- else if eq .Values.artifactory.persistence.type "google-storage-v2-direct" }}
+    <chain>  <!--template="google-storage-v2-direct"-->
+        <provider id="cache-fs" type="cache-fs">
+            <provider id="google-storage-v2" type="google-storage-v2"/>
+        </provider>
+    </chain>
+    {{- end }}
+
+    <!-- Set max cache-fs size -->
+    <provider id="cache-fs" type="cache-fs">
+        <maxCacheSize>{{ .Values.artifactory.persistence.maxCacheSize | int64 }}</maxCacheSize>
+        <cacheProviderDir>{{ .Values.artifactory.persistence.cacheProviderDir }}</cacheProviderDir>
+        {{- if .Values.artifactory.persistence.maxFileSizeLimit }}
+        <maxFileSizeLimit>{{.Values.artifactory.persistence.maxFileSizeLimit | int64}}</maxFileSizeLimit>
+        {{- end }}
+        {{- if .Values.artifactory.persistence.skipDuringUpload }}
+        <skipDuringUpload>{{.Values.artifactory.persistence.skipDuringUpload}}</skipDuringUpload>
+        {{- end }}
+    </provider>
+
+    {{- if or (eq .Values.artifactory.persistence.type "google-storage") (eq .Values.artifactory.persistence.type "google-storage-v2") }}
+    <provider id="eventual-cluster" type="eventual-cluster">
+        <zone>local</zone>
+    </provider>
+
+
+    <provider id="remote" type="remote">
+        <checkPeriod>30</checkPeriod>
+        <timeout>10000</timeout>
+        <zone>remote</zone>
+    </provider>
+    {{- end }}
+
+
+    <provider id="google-storage-v2" type="google-storage-v2">
+        {{- if .Values.artifactory.persistence.googleStorage.useInstanceCredentials }}
+        <useInstanceCredentials>true</useInstanceCredentials>
+        {{- else }}
+        <useInstanceCredentials>false</useInstanceCredentials>
+        {{- end }}
+        <enableSignedUrlRedirect>{{ .Values.artifactory.persistence.googleStorage.enableSignedUrlRedirect }}</enableSignedUrlRedirect>
+        <providerId>google-cloud-storage</providerId>
+        <endpoint>{{ .Values.artifactory.persistence.googleStorage.endpoint }}</endpoint>
+        <httpsOnly>{{ .Values.artifactory.persistence.googleStorage.httpsOnly }}</httpsOnly>
+        <bucketName>{{ .Values.artifactory.persistence.googleStorage.bucketName }}</bucketName>
+        <path>{{ .Values.artifactory.persistence.googleStorage.path }}</path>
+        <bucketExists>{{ .Values.artifactory.persistence.googleStorage.bucketExists }}</bucketExists>
+        {{- if .Values.artifactory.persistence.googleStorage.signedUrlExpirySeconds }}
+        <signedUrlExpirySeconds>{{ .Values.artifactory.persistence.googleStorage.signedUrlExpirySeconds | int64 }}</signedUrlExpirySeconds>
+        {{- end }}
+    </provider>
+</config>
+{{- end }}
+{{- if or (eq .Values.artifactory.persistence.type "aws-s3-v3") (eq .Values.artifactory.persistence.type "s3-storage-v3-direct") (eq .Values.artifactory.persistence.type "s3-storage-v3-archive") }}
+<!-- AWS S3 V3 -->
+<config version="2">
+    {{- if eq .Values.artifactory.persistence.type "aws-s3-v3" }}
+    <chain> <!--template="cluster-s3-storage-v3"-->
+        <provider id="cache-fs-eventual-s3" type="cache-fs">
+            <provider id="sharding-cluster-eventual-s3" type="sharding-cluster">
+                <sub-provider id="eventual-cluster-s3" type="eventual-cluster">
+                    <provider id="retry-s3" type="retry">
+                        <provider id="s3-storage-v3" type="s3-storage-v3"/>
+                    </provider>
+                </sub-provider>
+                <dynamic-provider id="remote-s3" type="remote"/>
+            </provider>
+        </provider>
+    </chain>
+    {{- else if eq .Values.artifactory.persistence.type "s3-storage-v3-direct" }}
+    <chain> <!--template="s3-storage-v3-direct"-->
+        <provider id="cache-fs" type="cache-fs">
+            <provider id="s3-storage-v3" type="s3-storage-v3"/>
+        </provider>
+    </chain>
+    {{- else if eq .Values.artifactory.persistence.type "s3-storage-v3-archive" }}
+    <!-- s3-storage-v3 default chain based on AWS S3 client for archive purposes-->
+    <chain>   <!--template="s3-storage-v3-archive"-->
+        <provider id="s3-storage-v3-archive" type="s3-storage-v3-archive">
+            <provider id="s3-storage-v3" type="s3-storage-v3"/>
+        </provider>
+    </chain>
+    {{- end }}
+
+    {{- if eq .Values.artifactory.persistence.type "aws-s3-v3" }}
+    <provider id="sharding-cluster-eventual-s3" type="sharding-cluster">
+        <readBehavior>crossNetworkStrategy</readBehavior>
+        <writeBehavior>crossNetworkStrategy</writeBehavior>
+        <redundancy>{{ .Values.artifactory.persistence.redundancy }}</redundancy>
+        <property name="zones" value="local,remote"/>
+    </provider>
+
+    <provider id="remote-s3" type="remote">
+        <zone>remote</zone>
+    </provider>
+
+    <provider id="eventual-cluster-s3" type="eventual-cluster">
+        <zone>local</zone>
+    </provider>
+
+    <!-- Set max cache-fs size -->
+    <provider id="cache-fs-eventual-s3" type="cache-fs">
+        <maxCacheSize>{{ .Values.artifactory.persistence.maxCacheSize | int64 }}</maxCacheSize>
+        <cacheProviderDir>{{ .Values.artifactory.persistence.cacheProviderDir }}</cacheProviderDir>
+        {{- if .Values.artifactory.persistence.maxFileSizeLimit }}
+        <maxFileSizeLimit>{{.Values.artifactory.persistence.maxFileSizeLimit | int64}}</maxFileSizeLimit>
+        {{- end }}
+        {{- if .Values.artifactory.persistence.skipDuringUpload }}
+        <skipDuringUpload>{{.Values.artifactory.persistence.skipDuringUpload}}</skipDuringUpload>
+        {{- end }}
+    </provider>
+    {{- end }}
+
+    {{- if eq .Values.artifactory.persistence.type "s3-storage-v3-direct" }}
+    <!-- Set max cache-fs size -->
+    <provider id="cache-fs" type="cache-fs">
+        <maxCacheSize>{{ .Values.artifactory.persistence.maxCacheSize | int64 }}</maxCacheSize>
+        <cacheProviderDir>{{ .Values.artifactory.persistence.cacheProviderDir }}</cacheProviderDir>
+        {{- if .Values.artifactory.persistence.maxFileSizeLimit }}
+        <maxFileSizeLimit>{{.Values.artifactory.persistence.maxFileSizeLimit | int64}}</maxFileSizeLimit>
+        {{- end }}
+        {{- if .Values.artifactory.persistence.skipDuringUpload }}
+        <skipDuringUpload>{{.Values.artifactory.persistence.skipDuringUpload}}</skipDuringUpload>
+        {{- end }}
+    </provider>
+    {{- end }}
+
+    {{- with .Values.artifactory.persistence.awsS3V3 }}
+    <provider id="s3-storage-v3" type="s3-storage-v3">
+        <testConnection>{{ .testConnection }}</testConnection>
+        {{- if .identity }}
+        <identity>{{ .identity }}</identity>
+        {{- end }}
+        {{- if .credential }}
+        <credential>{{ .credential }}</credential>
+        {{- end }}
+        <region>{{ .region }}</region>
+        <bucketName>{{ .bucketName }}</bucketName>
+        <path>{{ .path }}</path>
+        <endpoint>{{ .endpoint }}</endpoint>
+        {{- with .port }}
+        <port>{{ . }}</port>
+        {{- end }}
+        {{- with .useHttp }}
+        <useHttp>{{ . }}</useHttp>
+        {{- end }}
+        {{- with .maxConnections }}
+        <maxConnections>{{ . }}</maxConnections>
+        {{- end }}
+        {{- with .connectionTimeout }}
+        <connectionTimeout>{{ . }}</connectionTimeout>
+        {{- end }}
+        {{- with .socketTimeout }}
+        <socketTimeout>{{ . }}</socketTimeout>
+        {{- end }}
+        {{- with .kmsServerSideEncryptionKeyId }}
+        <kmsServerSideEncryptionKeyId>{{ . }}</kmsServerSideEncryptionKeyId>
+        {{- end }}
+        {{- with .kmsKeyRegion }}
+        <kmsKeyRegion>{{ . }}</kmsKeyRegion>
+        {{- end }}
+        {{- with .kmsCryptoMode }}
+        <kmsCryptoMode>{{ . }}</kmsCryptoMode>
+        {{- end }}
+        {{- if .useInstanceCredentials }}
+        <useInstanceCredentials>true</useInstanceCredentials>
+        {{- else }}
+        <useInstanceCredentials>false</useInstanceCredentials>
+        {{- end }}
+        <usePresigning>{{ .usePresigning }}</usePresigning>
+        <signatureExpirySeconds>{{ .signatureExpirySeconds }}</signatureExpirySeconds>
+        <signedUrlExpirySeconds>{{ .signedUrlExpirySeconds }}</signedUrlExpirySeconds>
+        {{- with .cloudFrontDomainName }}
+        <cloudFrontDomainName>{{ . }}</cloudFrontDomainName>
+        {{- end }}
+        {{- with .cloudFrontKeyPairId }}
+        <cloudFrontKeyPairId>{{ . }}</cloudFrontKeyPairId>
+        {{- end }}
+        {{- with .cloudFrontPrivateKey }}
+        <cloudFrontPrivateKey>{{ . }}</cloudFrontPrivateKey>
+        {{- end }}
+        {{- with .enableSignedUrlRedirect }}
+        <enableSignedUrlRedirect>{{ . }}</enableSignedUrlRedirect>
+        {{- end }}
+        {{- with .enablePathStyleAccess }}
+        <enablePathStyleAccess>{{ . }}</enablePathStyleAccess>
+        {{- end }}
+        {{- with .multiPartLimit }}
+        <multiPartLimit>{{ . | int64 }}</multiPartLimit>
+        {{- end }}
+        {{- with .multipartElementSize }}
+        <multipartElementSize>{{ . | int64 }}</multipartElementSize>
+        {{- end }}
+    </provider>
+    {{- end }}
+</config>
+{{- end }}
+
+{{- if or (eq .Values.artifactory.persistence.type "azure-blob") (eq .Values.artifactory.persistence.type "azure-blob-storage-direct") }}
+<!-- Azure Blob Storage -->
+<config version="2">
+    {{- if eq .Values.artifactory.persistence.type "azure-blob" }}
+    <chain> <!--template="cluster-azure-blob-storage"-->
+        <provider id="cache-fs" type="cache-fs">
+            <provider id="sharding-cluster" type="sharding-cluster">
+                <sub-provider id="eventual-cluster" type="eventual-cluster">
+                    <provider id="retry-azure-blob-storage" type="retry">
+                        <provider id="azure-blob-storage" type="azure-blob-storage"/>
+                    </provider>
+                </sub-provider>
+                <dynamic-provider id="remote" type="remote"/>
+            </provider>
+        </provider>
+    </chain>
+    {{- else if eq .Values.artifactory.persistence.type "azure-blob-storage-direct" }}
+    <chain> <!--template="azure-blob-storage-direct"-->
+        <provider id="cache-fs" type="cache-fs">
+            <provider id="azure-blob-storage" type="azure-blob-storage"/>
+        </provider>
+    </chain>
+    {{- end }}
+
+    <!-- Set max cache-fs size -->
+    <provider id="cache-fs" type="cache-fs">
+        <maxCacheSize>{{ .Values.artifactory.persistence.maxCacheSize | int64 }}</maxCacheSize>
+        <cacheProviderDir>{{ .Values.artifactory.persistence.cacheProviderDir }}</cacheProviderDir>
+        {{- if .Values.artifactory.persistence.maxFileSizeLimit }}
+        <maxFileSizeLimit>{{.Values.artifactory.persistence.maxFileSizeLimit | int64}}</maxFileSizeLimit>
+        {{- end }}
+        {{- if .Values.artifactory.persistence.skipDuringUpload }}
+        <skipDuringUpload>{{.Values.artifactory.persistence.skipDuringUpload}}</skipDuringUpload>
+        {{- end }}
+    </provider>
+
+    {{- if eq .Values.artifactory.persistence.type "azure-blob" }}
+    <!-- cluster eventual Azure Blob Storage Service default chain -->
+    <provider id="sharding-cluster" type="sharding-cluster">
+        <readBehavior>crossNetworkStrategy</readBehavior>
+        <writeBehavior>crossNetworkStrategy</writeBehavior>
+        <redundancy>2</redundancy>
+        <lenientLimit>1</lenientLimit>
+        <property name="zones" value="local,remote"/>
+    </provider>
+
+    <provider id="remote" type="remote">
+        <zone>remote</zone>
+    </provider>
+
+    <provider id="eventual-cluster" type="eventual-cluster">
+        <zone>local</zone>
+    </provider>
+    {{- end }}
+
+    <!--cluster eventual template-->
+    <provider id="azure-blob-storage" type="azure-blob-storage">
+        <accountName>{{ .Values.artifactory.persistence.azureBlob.accountName }}</accountName>
+        <accountKey>{{ .Values.artifactory.persistence.azureBlob.accountKey }}</accountKey>
+        <endpoint>{{ .Values.artifactory.persistence.azureBlob.endpoint }}</endpoint>
+        <containerName>{{ .Values.artifactory.persistence.azureBlob.containerName }}</containerName>
+        <multiPartLimit>{{ .Values.artifactory.persistence.azureBlob.multiPartLimit | int64 }}</multiPartLimit>
+        <multipartElementSize>{{ .Values.artifactory.persistence.azureBlob.multipartElementSize | int64 }}</multipartElementSize>
+        <testConnection>{{ .Values.artifactory.persistence.azureBlob.testConnection }}</testConnection>
+    </provider>
+</config>
+{{- end }}
+{{- if eq .Values.artifactory.persistence.type "azure-blob-storage-v2-direct" -}}
+<config version="3">
+    <chain template="azure-blob-storage-v2-direct"/>
+    <provider type="cache-fs" id="cache-fs">
+        <maxCacheSize>{{ .Values.artifactory.persistence.maxCacheSize | int64 }}</maxCacheSize>
+        <cacheProviderDir>{{ .Values.artifactory.persistence.cacheProviderDir }}</cacheProviderDir>
+        {{- if .Values.artifactory.persistence.maxFileSizeLimit }}
+        <maxFileSizeLimit>{{.Values.artifactory.persistence.maxFileSizeLimit | int64}}</maxFileSizeLimit>
+        {{- end }}
+        {{- if .Values.artifactory.persistence.skipDuringUpload }}
+        <skipDuringUpload>{{.Values.artifactory.persistence.skipDuringUpload}}</skipDuringUpload>
+        {{- end }}
+    </provider>
+    <provider id="azure-blob-storage-v2" type="azure-blob-storage-v2">
+        <accountName>{{ .Values.artifactory.persistence.azureBlob.accountName }}</accountName>
+        <accountKey>{{ .Values.artifactory.persistence.azureBlob.accountKey }}</accountKey>
+        <endpoint>{{ .Values.artifactory.persistence.azureBlob.endpoint }}</endpoint>
+        <container>{{ .Values.artifactory.persistence.azureBlob.containerName }}</container> 
+        <multiPartLimit>{{ .Values.artifactory.persistence.azureBlob.multiPartLimit | int64 }}</multiPartLimit>
+        <multipartElementSize>{{ .Values.artifactory.persistence.azureBlob.multipartElementSize | int64 }}</multipartElementSize>
+        <testConnection>{{ .Values.artifactory.persistence.azureBlob.testConnection }}</testConnection>
+    </provider>   
+</config>
+{{- end }}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-ha/107.104.10/files/installer-info.json b/charts/jfrog/artifactory-ha/107.104.10/files/installer-info.json
new file mode 100644
index 0000000000..cf6b020fb3
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/files/installer-info.json
@@ -0,0 +1,32 @@
+{
+    "productId": "Helm_artifactory-ha/{{ .Chart.Version }}",
+    "features": [
+      {
+        "featureId": "Platform/{{ printf "%s-%s" "kubernetes" .Capabilities.KubeVersion.Version }}"
+      },
+      {
+        "featureId": "Database/{{ .Values.database.type }}"
+      },
+      {
+        "featureId": "PostgreSQL_Enabled/{{ .Values.postgresql.enabled }}"
+      },
+      {
+        "featureId": "Nginx_Enabled/{{ .Values.nginx.enabled }}"
+      },
+      {
+        "featureId": "ArtifactoryPersistence_Type/{{ .Values.artifactory.persistence.type }}"
+      },
+      {
+        "featureId": "SplitServicesToContainers_Enabled/{{ .Values.splitServicesToContainers }}"
+      },
+      {
+        "featureId": "UnifiedSecretInstallation_Enabled/{{ .Values.artifactory.unifiedSecretInstallation }}"
+      },
+      {
+        "featureId": "Filebeat_Enabled/{{ .Values.filebeat.enabled }}"
+      },
+      {
+        "featureId": "ReplicaCount/{{ add .Values.artifactory.primary.replicaCount .Values.artifactory.node.replicaCount }}"
+      }
+    ]
+}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-ha/107.104.10/files/migrate.sh b/charts/jfrog/artifactory-ha/107.104.10/files/migrate.sh
new file mode 100644
index 0000000000..ba44160f47
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/files/migrate.sh
@@ -0,0 +1,4311 @@
+#!/bin/bash
+
+# Flags
+FLAG_Y="y"
+FLAG_N="n"
+FLAGS_Y_N="$FLAG_Y $FLAG_N"
+FLAG_NOT_APPLICABLE="_NA_"
+
+CURRENT_VERSION=$1
+
+WRAPPER_SCRIPT_TYPE_RPMDEB="RPMDEB"
+WRAPPER_SCRIPT_TYPE_DOCKER_COMPOSE="DOCKERCOMPOSE"
+
+SENSITIVE_KEY_VALUE="__sensitive_key_hidden___"
+
+# Shared system keys
+SYS_KEY_SHARED_JFROGURL="shared.jfrogUrl"
+SYS_KEY_SHARED_SECURITY_JOINKEY="shared.security.joinKey"
+SYS_KEY_SHARED_SECURITY_MASTERKEY="shared.security.masterKey"
+
+SYS_KEY_SHARED_NODE_ID="shared.node.id"
+SYS_KEY_SHARED_JAVAHOME="shared.javaHome"
+
+SYS_KEY_SHARED_DATABASE_TYPE="shared.database.type"
+SYS_KEY_SHARED_DATABASE_TYPE_VALUE_POSTGRES="postgresql"
+SYS_KEY_SHARED_DATABASE_DRIVER="shared.database.driver"
+SYS_KEY_SHARED_DATABASE_URL="shared.database.url"
+SYS_KEY_SHARED_DATABASE_USERNAME="shared.database.username"
+SYS_KEY_SHARED_DATABASE_PASSWORD="shared.database.password"
+
+SYS_KEY_SHARED_ELASTICSEARCH_URL="shared.elasticsearch.url"
+SYS_KEY_SHARED_ELASTICSEARCH_USERNAME="shared.elasticsearch.username"
+SYS_KEY_SHARED_ELASTICSEARCH_PASSWORD="shared.elasticsearch.password"
+SYS_KEY_SHARED_ELASTICSEARCH_CLUSTERSETUP="shared.elasticsearch.clusterSetup"
+SYS_KEY_SHARED_ELASTICSEARCH_UNICASTFILE="shared.elasticsearch.unicastFile"
+SYS_KEY_SHARED_ELASTICSEARCH_CLUSTERSETUP_VALUE="YES"
+
+# Define this in product specific script. Should contain the path to unitcast file
+# File used by insight server to write cluster active nodes info. This will be read by elasticsearch
+#SYS_KEY_SHARED_ELASTICSEARCH_UNICASTFILE_VALUE=""
+
+SYS_KEY_RABBITMQ_ACTIVE_NODE_NAME="shared.rabbitMq.active.node.name"
+SYS_KEY_RABBITMQ_ACTIVE_NODE_IP="shared.rabbitMq.active.node.ip"
+
+# Filenames
+FILE_NAME_SYSTEM_YAML="system.yaml"
+FILE_NAME_JOIN_KEY="join.key"
+FILE_NAME_MASTER_KEY="master.key"
+FILE_NAME_INSTALLER_YAML="installer.yaml"
+
+# Global constants used in business logic
+NODE_TYPE_STANDALONE="standalone"
+NODE_TYPE_CLUSTER_NODE="node"
+NODE_TYPE_DATABASE="database"
+
+# External(isable) databases 
+DATABASE_POSTGRES="POSTGRES"
+DATABASE_ELASTICSEARCH="ELASTICSEARCH"
+DATABASE_RABBITMQ="RABBITMQ"
+
+POSTGRES_LABEL="PostgreSQL"
+ELASTICSEARCH_LABEL="Elasticsearch"
+RABBITMQ_LABEL="Rabbitmq"
+
+ARTIFACTORY_LABEL="Artifactory"
+JFMC_LABEL="Mission Control"
+DISTRIBUTION_LABEL="Distribution"
+XRAY_LABEL="Xray"
+
+POSTGRES_CONTAINER="postgres"
+ELASTICSEARCH_CONTAINER="elasticsearch"
+RABBITMQ_CONTAINER="rabbitmq"
+REDIS_CONTAINER="redis"
+
+#Adding a small timeout before a read ensures it is positioned correctly in the screen
+read_timeout=0.5
+
+# Options related to data directory location
+PROMPT_DATA_DIR_LOCATION="Installation Directory"
+KEY_DATA_DIR_LOCATION="installer.data_dir"
+
+SYS_KEY_SHARED_NODE_HAENABLED="shared.node.haEnabled"
+PROMPT_ADD_TO_CLUSTER="Are you adding an additional node to an existing product cluster?"
+KEY_ADD_TO_CLUSTER="installer.ha"
+VALID_VALUES_ADD_TO_CLUSTER="$FLAGS_Y_N"
+
+MESSAGE_POSTGRES_INSTALL="The installer can install a $POSTGRES_LABEL database, or you can connect to an existing compatible $POSTGRES_LABEL database\n(compatible databases: https://www.jfrog.com/confluence/display/JFROG/System+Requirements#SystemRequirements-RequirementsMatrix)"
+PROMPT_POSTGRES_INSTALL="Do you want to install $POSTGRES_LABEL?"
+KEY_POSTGRES_INSTALL="installer.install_postgresql"
+VALID_VALUES_POSTGRES_INSTALL="$FLAGS_Y_N"
+
+# Postgres connection details
+RPM_DEB_POSTGRES_HOME_DEFAULT="/var/opt/jfrog/postgres"
+RPM_DEB_MESSAGE_STANDALONE_POSTGRES_DATA="$POSTGRES_LABEL home will have data and its configuration"
+RPM_DEB_PROMPT_STANDALONE_POSTGRES_DATA="Type desired $POSTGRES_LABEL home location"
+RPM_DEB_KEY_STANDALONE_POSTGRES_DATA="installer.postgresql.home"
+
+MESSAGE_DATABASE_URL="Provide the database connection details"
+PROMPT_DATABASE_URL(){
+    local databaseURlExample=
+    case "$PRODUCT_NAME" in
+            $ARTIFACTORY_LABEL)
+                databaseURlExample="jdbc:postgresql://<IP_ADDRESS>:<PORT>/artifactory"
+            ;;
+            $JFMC_LABEL)
+                databaseURlExample="postgresql://<IP_ADDRESS>:<PORT>/mission_control?sslmode=disable"
+            ;;
+            $DISTRIBUTION_LABEL)
+                databaseURlExample="jdbc:postgresql://<IP_ADDRESS>:<PORT>/distribution?sslmode=disable"
+            ;;
+            $XRAY_LABEL)
+                databaseURlExample="postgres://<IP_ADDRESS>:<PORT>/xraydb?sslmode=disable"
+            ;;
+        esac
+    if [ -z "$databaseURlExample" ]; then
+        echo -n "$POSTGRES_LABEL URL" # For consistency with username and password
+        return
+    fi
+    echo -n "$POSTGRES_LABEL url. Example: [$databaseURlExample]"
+}
+REGEX_DATABASE_URL(){
+    local databaseURlExample=
+    case "$PRODUCT_NAME" in
+            $ARTIFACTORY_LABEL)
+                databaseURlExample="jdbc:postgresql://.*/artifactory.*"
+            ;;
+            $JFMC_LABEL)
+                databaseURlExample="postgresql://.*/mission_control.*"
+            ;;
+            $DISTRIBUTION_LABEL)
+                databaseURlExample="jdbc:postgresql://.*/distribution.*"
+            ;;
+            $XRAY_LABEL)
+                databaseURlExample="postgres://.*/xraydb.*"
+            ;;
+        esac
+    echo -n "^$databaseURlExample\$"
+}
+ERROR_MESSAGE_DATABASE_URL="Invalid $POSTGRES_LABEL URL"
+KEY_DATABASE_URL="$SYS_KEY_SHARED_DATABASE_URL"
+#NOTE: It is important to display the label. Since the message may be hidden if URL is known
+PROMPT_DATABASE_USERNAME="$POSTGRES_LABEL username"
+KEY_DATABASE_USERNAME="$SYS_KEY_SHARED_DATABASE_USERNAME"
+#NOTE: It is important to display the label. Since the message may be hidden if URL is known
+PROMPT_DATABASE_PASSWORD="$POSTGRES_LABEL password"
+KEY_DATABASE_PASSWORD="$SYS_KEY_SHARED_DATABASE_PASSWORD"
+IS_SENSITIVE_DATABASE_PASSWORD="$FLAG_Y"
+
+MESSAGE_STANDALONE_ELASTICSEARCH_INSTALL="The installer can install a $ELASTICSEARCH_LABEL database or you can connect to an existing compatible $ELASTICSEARCH_LABEL database"
+PROMPT_STANDALONE_ELASTICSEARCH_INSTALL="Do you want to install $ELASTICSEARCH_LABEL?"
+KEY_STANDALONE_ELASTICSEARCH_INSTALL="installer.install_elasticsearch"
+VALID_VALUES_STANDALONE_ELASTICSEARCH_INSTALL="$FLAGS_Y_N"
+
+# Elasticsearch connection details
+MESSAGE_ELASTICSEARCH_DETAILS="Provide the $ELASTICSEARCH_LABEL connection details"
+PROMPT_ELASTICSEARCH_URL="$ELASTICSEARCH_LABEL URL"
+KEY_ELASTICSEARCH_URL="$SYS_KEY_SHARED_ELASTICSEARCH_URL"
+
+PROMPT_ELASTICSEARCH_USERNAME="$ELASTICSEARCH_LABEL username"
+KEY_ELASTICSEARCH_USERNAME="$SYS_KEY_SHARED_ELASTICSEARCH_USERNAME"
+
+PROMPT_ELASTICSEARCH_PASSWORD="$ELASTICSEARCH_LABEL password"
+KEY_ELASTICSEARCH_PASSWORD="$SYS_KEY_SHARED_ELASTICSEARCH_PASSWORD"
+IS_SENSITIVE_ELASTICSEARCH_PASSWORD="$FLAG_Y"
+
+# Cluster related questions
+MESSAGE_CLUSTER_MASTER_KEY="Provide the cluster's master key. It can be found in the data directory of the first node under /etc/security/master.key"
+PROMPT_CLUSTER_MASTER_KEY="Master Key"
+KEY_CLUSTER_MASTER_KEY="$SYS_KEY_SHARED_SECURITY_MASTERKEY"
+IS_SENSITIVE_CLUSTER_MASTER_KEY="$FLAG_Y"
+
+MESSAGE_JOIN_KEY="The Join key is the secret key used to establish trust between services in the JFrog Platform.\n(You can copy the Join Key from Admin > User Management > Settings)"
+PROMPT_JOIN_KEY="Join Key"
+KEY_JOIN_KEY="$SYS_KEY_SHARED_SECURITY_JOINKEY"
+IS_SENSITIVE_JOIN_KEY="$FLAG_Y"
+REGEX_JOIN_KEY="^[a-zA-Z0-9]{16,}\$"
+ERROR_MESSAGE_JOIN_KEY="Invalid Join Key"
+
+# Rabbitmq related cluster information
+MESSAGE_RABBITMQ_ACTIVE_NODE_NAME="Provide an active ${RABBITMQ_LABEL} node name. Run the command [ hostname -s ] on any of the existing nodes in the product cluster to get this"
+PROMPT_RABBITMQ_ACTIVE_NODE_NAME="${RABBITMQ_LABEL} active node name"
+KEY_RABBITMQ_ACTIVE_NODE_NAME="$SYS_KEY_RABBITMQ_ACTIVE_NODE_NAME"
+
+# Rabbitmq related cluster information (necessary only for docker-compose)
+PROMPT_RABBITMQ_ACTIVE_NODE_IP="${RABBITMQ_LABEL} active node ip"
+KEY_RABBITMQ_ACTIVE_NODE_IP="$SYS_KEY_RABBITMQ_ACTIVE_NODE_IP"
+
+MESSAGE_JFROGURL(){
+    echo -e "The JFrog URL allows ${PRODUCT_NAME} to connect to a JFrog Platform Instance.\n(You can copy the JFrog URL from Administration > User Management > Settings > Connection details)"
+}
+PROMPT_JFROGURL="JFrog URL"
+KEY_JFROGURL="$SYS_KEY_SHARED_JFROGURL"
+REGEX_JFROGURL="^https?://.*:{0,}[0-9]{0,4}\$"
+ERROR_MESSAGE_JFROGURL="Invalid JFrog URL"
+
+
+# Set this to FLAG_Y on upgrade
+IS_UPGRADE="${FLAG_N}"
+
+# This belongs in JFMC but is the ONLY one that needs it so keeping it here for now. Can be made into a method and overridden if necessary
+MESSAGE_MULTIPLE_PG_SCHEME="Please setup $POSTGRES_LABEL with schema as described in https://www.jfrog.com/confluence/display/JFROG/Installing+Mission+Control"
+
+_getMethodOutputOrVariableValue() {
+    unset EFFECTIVE_MESSAGE
+    local keyToSearch=$1
+    local effectiveMessage=
+    local result="0"
+    # logSilly "Searching for method: [$keyToSearch]"
+    LC_ALL=C type "$keyToSearch" > /dev/null 2>&1 || result="$?"
+    if [[ "$result" == "0" ]]; then
+        # logSilly "Found method for [$keyToSearch]"
+        EFFECTIVE_MESSAGE="$($keyToSearch)"
+        return
+    fi
+    eval EFFECTIVE_MESSAGE=\${$keyToSearch}
+    if [ ! -z "$EFFECTIVE_MESSAGE" ]; then
+        return
+    fi
+    # logSilly "Didn't find method or variable for [$keyToSearch]"
+}
+
+
+# REF https://misc.flogisoft.com/bash/tip_colors_and_formatting
+cClear="\e[0m"
+cBlue="\e[38;5;69m"
+cRedDull="\e[1;31m"
+cYellow="\e[1;33m"
+cRedBright="\e[38;5;197m"
+cBold="\e[1m"
+
+
+_loggerGetModeRaw() {
+    local MODE="$1"
+    case $MODE in
+    INFO)
+        printf ""
+    ;;
+    DEBUG)
+        printf "%s" "[${MODE}] "
+    ;;
+    WARN)
+        printf "${cRedDull}%s%s${cClear}" "[" "${MODE}" "] "
+    ;;
+    ERROR)
+        printf "${cRedBright}%s%s${cClear}" "[" "${MODE}" "] "
+    ;;
+    esac
+}
+
+
+_loggerGetMode() {
+    local MODE="$1"
+    case $MODE in
+    INFO)
+        printf "${cBlue}%s%-5s%s${cClear}" "[" "${MODE}" "]"
+    ;;
+    DEBUG)
+        printf "%-7s" "[${MODE}]"
+    ;;
+    WARN)
+        printf "${cRedDull}%s%-5s%s${cClear}" "[" "${MODE}" "]"
+    ;;
+    ERROR)
+        printf "${cRedBright}%s%-5s%s${cClear}" "[" "${MODE}" "]"
+    ;;
+    esac
+}
+
+# Capitalises the first letter of the message
+_loggerGetMessage() {
+    local originalMessage="$*"
+    local firstChar=$(echo "${originalMessage:0:1}" | awk '{ print toupper($0) }')
+    local resetOfMessage="${originalMessage:1}"
+    echo "$firstChar$resetOfMessage"
+}
+
+# The spec also says content should be left-trimmed but this is not necessary in our case. We don't reach the limit.
+_loggerGetStackTrace() {
+    printf "%s%-30s%s" "[" "$1:$2" "]"
+}
+
+_loggerGetThread() {
+    printf "%s" "[main]"
+}
+
+_loggerGetServiceType() {
+    printf "%s%-5s%s" "[" "shell" "]"
+}
+
+#Trace ID is not applicable to scripts
+_loggerGetTraceID() {
+    printf "%s" "[]"
+}
+
+logRaw() {
+    echo ""
+    printf "$1"
+    echo ""
+}
+
+logBold(){
+    echo ""
+    printf "${cBold}$1${cClear}"
+    echo ""
+}
+
+# The date binary works differently based on whether it is GNU/BSD
+is_date_supported=0
+date --version > /dev/null 2>&1 || is_date_supported=1
+IS_GNU=$(echo $is_date_supported)
+
+_loggerGetTimestamp() {
+    if [ "${IS_GNU}" == "0" ]; then
+        echo -n $(date -u +%FT%T.%3NZ)
+    else
+        echo -n $(date -u +%FT%T.000Z)
+    fi
+}
+
+# https://www.shellscript.sh/tips/spinner/
+_spin()
+{
+    spinner="/|\\-/|\\-"
+    while :
+    do
+    for i in `seq 0 7`
+    do
+        echo -n "${spinner:$i:1}"
+        echo -en "\010"
+        sleep 1
+    done
+    done
+}
+
+showSpinner() {
+    # Start the Spinner:
+    _spin &
+    # Make a note of its Process ID (PID):
+    SPIN_PID=$!
+    # Kill the spinner on any signal, including our own exit.
+    trap "kill -9 $SPIN_PID" `seq 0 15` &> /dev/null || return 0
+}
+
+stopSpinner() {
+    local occurrences=$(ps -ef | grep -wc "${SPIN_PID}")
+    let "occurrences+=0"
+    # validate that it is present (2 since this search itself will show up in the results)
+    if [ $occurrences -gt 1 ]; then
+        kill -9 $SPIN_PID &>/dev/null || return 0
+        wait $SPIN_ID &>/dev/null
+    fi
+}
+
+_getEffectiveMessage(){
+    local MESSAGE="$1"
+    local MODE=${2-"INFO"}
+
+    if [ -z "$CONTEXT" ]; then
+        CONTEXT=$(caller)
+    fi
+
+    _EFFECTIVE_MESSAGE=
+    if [ -z "$LOG_BEHAVIOR_ADD_META" ]; then
+        _EFFECTIVE_MESSAGE="$(_loggerGetModeRaw $MODE)$(_loggerGetMessage $MESSAGE)"
+    else
+        local SERVICE_TYPE="script"
+        local TRACE_ID=""
+        local THREAD="main"
+        
+        local CONTEXT_LINE=$(echo "$CONTEXT" | awk '{print $1}')
+        local CONTEXT_FILE=$(echo "$CONTEXT" | awk -F"/" '{print $NF}')
+        
+        _EFFECTIVE_MESSAGE="$(_loggerGetTimestamp) $(_loggerGetServiceType) $(_loggerGetMode $MODE) $(_loggerGetTraceID) $(_loggerGetStackTrace $CONTEXT_FILE $CONTEXT_LINE) $(_loggerGetThread) - $(_loggerGetMessage $MESSAGE)"
+    fi
+    CONTEXT=
+}
+
+# Important - don't call any log method from this method. Will become an infinite loop. Use echo to debug
+_logToFile() {
+    local MODE=${1-"INFO"}
+    local targetFile="$LOG_BEHAVIOR_ADD_REDIRECTION"
+    # IF the file isn't passed, abort
+    if [ -z "$targetFile" ]; then
+        return
+    fi
+    # IF this is not being run in verbose mode and mode is debug or lower, abort
+    if [ "${VERBOSE_MODE}" != "$FLAG_Y" ] && [ "${VERBOSE_MODE}" != "true" ] && [ "${VERBOSE_MODE}" != "debug" ]; then
+        if [ "$MODE" == "DEBUG" ] || [ "$MODE" == "SILLY" ]; then
+            return
+        fi
+    fi
+
+    # Create the file if it doesn't exist
+    if [ ! -f "${targetFile}" ]; then
+        return
+        # touch $targetFile > /dev/null 2>&1 || true
+    fi
+    # # Make it readable
+    # chmod 640 $targetFile > /dev/null 2>&1 || true
+
+    # Log contents
+    printf "%s\n" "$_EFFECTIVE_MESSAGE" >> "$targetFile" || true
+}
+
+logger() {
+    if [ "$LOG_BEHAVIOR_ADD_NEW_LINE" == "$FLAG_Y" ]; then
+        echo ""
+    fi
+    _getEffectiveMessage "$@"
+    local MODE=${2-"INFO"}
+    printf "%s\n" "$_EFFECTIVE_MESSAGE"
+    _logToFile "$MODE"
+}
+
+logDebug(){
+    VERBOSE_MODE=${VERBOSE_MODE-"false"}
+    CONTEXT=$(caller)
+    if [ "${VERBOSE_MODE}" == "$FLAG_Y" ] || [ "${VERBOSE_MODE}" == "true" ] || [ "${VERBOSE_MODE}" == "debug" ];then
+        logger "$1" "DEBUG"
+    else
+        logger "$1" "DEBUG" >&6
+    fi
+    CONTEXT=
+}
+
+logSilly(){
+    VERBOSE_MODE=${VERBOSE_MODE-"false"}
+    CONTEXT=$(caller)
+    if [ "${VERBOSE_MODE}" == "silly" ];then
+        logger "$1" "DEBUG"
+    else
+        logger "$1" "DEBUG" >&6
+    fi
+    CONTEXT=
+}
+
+logError() {
+    CONTEXT=$(caller)
+    logger "$1" "ERROR"
+    CONTEXT=
+}
+
+errorExit () {
+    CONTEXT=$(caller)
+    logger "$1" "ERROR"
+    CONTEXT=
+    exit 1
+}
+
+warn () {
+    CONTEXT=$(caller)
+    logger "$1" "WARN"
+    CONTEXT=
+}
+
+note () {
+    CONTEXT=$(caller)
+    logger "$1" "NOTE"
+    CONTEXT=
+}
+
+bannerStart() {
+    title=$1
+    echo
+    echo -e "\033[1m${title}\033[0m"
+    echo
+}
+
+bannerSection() {
+    title=$1
+    echo
+    echo -e "******************************** ${title} ********************************"
+    echo
+}
+
+bannerSubSection() {
+    title=$1
+    echo
+    echo -e "************** ${title} *******************"
+    echo
+}
+
+bannerMessge() {
+    title=$1
+    echo
+    echo -e "********************************"
+    echo -e "${title}"
+    echo -e "********************************"
+    echo
+}
+
+setRed () {
+    local input="$1"
+    echo -e \\033[31m${input}\\033[0m
+}
+setGreen () {
+    local input="$1"
+    echo -e \\033[32m${input}\\033[0m
+}
+setYellow () {
+    local input="$1"
+    echo -e \\033[33m${input}\\033[0m
+}
+
+logger_addLinebreak () {
+    echo -e "---\n"
+}
+
+bannerImportant() {
+    title=$1
+    local bold="\033[1m"
+    local noColour="\033[0m"
+    echo
+    echo -e "${bold}######################################## IMPORTANT ########################################${noColour}"
+    echo -e "${bold}${title}${noColour}"
+    echo -e "${bold}###########################################################################################${noColour}"
+    echo
+}
+
+bannerEnd() {
+    #TODO pass a title and calculate length dynamically so that start and end look alike
+    echo
+    echo "*****************************************************************************"
+    echo
+}
+
+banner() {
+    title=$1
+    content=$2
+    bannerStart "${title}"
+    echo -e "$content"
+}
+
+# The logic below helps us redirect content we'd normally hide to the log file. 
+    #
+    # We have several commands which clutter the console with output and so use 
+    # `cmd > /dev/null` - this redirects the command's output to null.
+    # 
+    # However, the information we just hid maybe useful for support. Using the code pattern
+    # `cmd >&6` (instead of `cmd> >/dev/null` ), the command's output is hidden from the console 
+    # but redirected to the installation log file
+    # 
+
+#Default value of 6 is just null
+exec 6>>/dev/null
+redirectLogsToFile() {
+    echo ""
+    # local file=$1
+
+    # [ ! -z "${file}" ] || return 0
+
+    # local logDir=$(dirname "$file")
+
+    # if [ ! -f "${file}" ]; then
+    #     [ -d "${logDir}" ] || mkdir -p ${logDir} || \
+    #     ( echo "WARNING : Could not create parent directory (${logDir}) to redirect console log : ${file}" ; return 0 )
+    # fi
+
+    # #6 now points to the log file
+    # exec 6>>${file}
+    # #reference https://unix.stackexchange.com/questions/145651/using-exec-and-tee-to-redirect-logs-to-stdout-and-a-log-file-in-the-same-time
+    # exec 2>&1 > >(tee -a "${file}")
+}
+
+# Check if a give key contains any sensitive string as part of it
+# Based on the result, the caller can decide its value can be displayed or not
+#   Sample usage : isKeySensitive "${key}" && displayValue="******" || displayValue=${value}
+isKeySensitive(){
+    local key=$1
+    local sensitiveKeys="password|secret|key|token"
+    
+    if [ -z "${key}" ]; then
+        return 1
+    else
+        local lowercaseKey=$(echo "${key}" | tr '[:upper:]' '[:lower:]' 2>/dev/null)
+        [[ "${lowercaseKey}" =~ ${sensitiveKeys} ]] && return 0 || return 1
+    fi
+}
+
+getPrintableValueOfKey(){
+    local displayValue=
+    local key="$1"
+    if [ -z "$key" ]; then
+        # This is actually an incorrect usage of this method but any logging will cause unexpected content in the caller
+        echo -n ""
+        return
+    fi
+
+    local value="$2"
+    isKeySensitive "${key}" && displayValue="$SENSITIVE_KEY_VALUE" || displayValue="${value}"
+    echo -n $displayValue
+}
+
+_createConsoleLog(){
+    if [ -z "${JF_PRODUCT_HOME}" ]; then
+        return
+    fi
+    local targetFile="${JF_PRODUCT_HOME}/var/log/console.log"
+    mkdir -p "${JF_PRODUCT_HOME}/var/log" || true
+    if [ ! -f ${targetFile} ]; then
+        touch $targetFile > /dev/null 2>&1 || true
+    fi
+    chmod 640 $targetFile > /dev/null 2>&1 || true
+}
+
+# Output from application's logs are piped to this method. It checks a configuration variable to determine if content should be logged to 
+# the common console.log file
+redirectServiceLogsToFile() {
+
+    local result="0"
+    # check if the function getSystemValue exists
+    LC_ALL=C type getSystemValue > /dev/null 2>&1 || result="$?"
+    if [[ "$result" != "0" ]]; then
+        warn "Couldn't find the systemYamlHelper. Skipping log redirection"
+        return 0
+    fi
+
+    getSystemValue "shared.consoleLog" "NOT_SET"
+    if [[ "${YAML_VALUE}" == "false" ]]; then
+        logger "Redirection is set to false. Skipping log redirection"
+        return 0;
+    fi
+
+    if [ -z "${JF_PRODUCT_HOME}" ] || [ "${JF_PRODUCT_HOME}" == "" ]; then
+        warn "JF_PRODUCT_HOME is unavailable. Skipping log redirection"
+        return 0
+    fi
+
+    local targetFile="${JF_PRODUCT_HOME}/var/log/console.log"
+    
+    _createConsoleLog
+
+    while read -r line; do
+        printf '%s\n' "${line}" >> $targetFile || return 0 # Don't want to log anything - might clutter the screen
+    done
+}
+
+## Display environment variables starting with JF_ along with its value
+## Value of sensitive keys will be displayed as "******"
+##
+## Sample Display :
+##
+## ========================
+## JF Environment variables
+## ========================
+##
+## JF_SHARED_NODE_ID                   : locahost
+## JF_SHARED_JOINKEY                   : ******
+##
+##
+displayEnv() {
+    local JFEnv=$(printenv | grep ^JF_ 2>/dev/null)
+    local key=
+    local value=
+
+    if [ -z "${JFEnv}" ]; then
+        return
+    fi
+
+    cat << ENV_START_MESSAGE
+
+========================
+JF Environment variables
+========================
+ENV_START_MESSAGE
+
+    for entry in ${JFEnv}; do
+        key=$(echo "${entry}" | awk -F'=' '{print $1}')
+        value=$(echo "${entry}" | awk -F'=' '{print $2}')
+
+        isKeySensitive "${key}" && value="******" || value=${value}
+        
+        printf "\n%-35s%s" "${key}" " : ${value}"
+    done
+    echo;
+}
+
+_addLogRotateConfiguration() {
+    logDebug "Method ${FUNCNAME[0]}"
+    # mandatory inputs
+    local confFile="$1"
+    local logFile="$2"
+
+    # Method available in _ioOperations.sh
+    LC_ALL=C type io_setYQPath > /dev/null 2>&1 || return 1
+
+    io_setYQPath
+
+    # Method available in _systemYamlHelper.sh
+    LC_ALL=C type getSystemValue > /dev/null 2>&1 || return 1
+
+    local frequency="daily"
+    local archiveFolder="archived"
+
+    local compressLogFiles=
+    getSystemValue "shared.logging.rotation.compress" "true"
+    if [[ "${YAML_VALUE}" == "true" ]]; then
+        compressLogFiles="compress"
+    fi
+
+    getSystemValue "shared.logging.rotation.maxFiles" "10"
+    local noOfBackupFiles="${YAML_VALUE}"
+
+    getSystemValue "shared.logging.rotation.maxSizeMb" "25"
+    local sizeOfFile="${YAML_VALUE}M"
+
+    logDebug "Adding logrotate configuration for [$logFile] to [$confFile]"
+
+    # Add configuration to file
+    local confContent=$(cat << LOGROTATECONF
+$logFile {
+    $frequency
+    missingok
+    rotate $noOfBackupFiles
+    $compressLogFiles
+    notifempty
+    olddir $archiveFolder
+    dateext
+    extension .log
+    dateformat -%Y-%m-%d
+    size ${sizeOfFile}
+}
+LOGROTATECONF
+) 
+    echo "${confContent}" > ${confFile} || return 1
+}
+
+_operationIsBySameUser() {
+    local targetUser="$1"
+    local currentUserID=$(id -u)
+    local currentUserName=$(id -un)
+
+    if [ $currentUserID == $targetUser ] || [ $currentUserName == $targetUser ]; then
+        echo -n "yes"
+    else   
+        echo -n "no"
+    fi
+}
+
+_addCronJobForLogrotate() {
+    logDebug "Method ${FUNCNAME[0]}"
+    
+    # Abort if logrotate is not available
+    [ "$(io_commandExists 'crontab')" != "yes" ] && warn "cron is not available" && return 1
+
+    # mandatory inputs
+    local productHome="$1"
+    local confFile="$2"
+    local cronJobOwner="$3"
+
+    # We want to use our binary if possible. It may be more recent than the one in the OS
+    local logrotateBinary="$productHome/app/third-party/logrotate/logrotate"
+
+    if [ ! -f "$logrotateBinary" ]; then
+        logrotateBinary="logrotate"
+        [ "$(io_commandExists 'logrotate')" != "yes" ] && warn "logrotate is not available" && return 1
+    fi
+    local cmd="$logrotateBinary ${confFile} --state $productHome/var/etc/logrotate/logrotate-state" #--verbose
+
+    id -u $cronJobOwner > /dev/null 2>&1 || { warn "User $cronJobOwner does not exist. Aborting logrotate configuration" && return 1; }
+    
+    # Remove the existing line
+    removeLogRotation "$productHome" "$cronJobOwner" || true
+
+    # Run logrotate daily at 23:55 hours
+    local cronInterval="55 23 * * * $cmd"
+
+    local standaloneMode=$(_operationIsBySameUser "$cronJobOwner")
+
+    # If this is standalone mode, we cannot use -u - the user running this process may not have the necessary privileges
+    if [ "$standaloneMode" == "no" ]; then
+        (crontab -l -u $cronJobOwner 2>/dev/null; echo "$cronInterval") | crontab -u $cronJobOwner -
+    else
+        (crontab -l 2>/dev/null; echo "$cronInterval") | crontab -
+    fi
+}
+
+## Configure logrotate for a product
+## Failure conditions:
+## If logrotation could not be setup for some reason
+## Parameters:
+## $1: The product name
+## $2: The product home
+## Depends on global: none
+## Updates global: none
+## Returns: NA
+
+configureLogRotation() {
+    logDebug "Method ${FUNCNAME[0]}"
+
+    # mandatory inputs
+    local productName="$1"
+    if [ -z $productName ]; then
+        warn "Incorrect usage. A product name is necessary for configuring log rotation" && return 1
+    fi
+    
+    local productHome="$2"
+    if [ -z $productHome ]; then
+        warn "Incorrect usage. A product home folder is necessary for configuring log rotation" && return 1
+    fi
+
+    local logFile="${productHome}/var/log/console.log"
+    if [[ $(uname) == "Darwin" ]]; then
+        logger "Log rotation for [$logFile] has not been configured. Please setup manually"
+        return 0
+    fi
+    
+    local userID="$3"
+    if [ -z $userID ]; then
+        warn "Incorrect usage. A userID is necessary for configuring log rotation" && return 1
+    fi
+
+    local groupID=${4:-$userID}
+    local logConfigOwner=${5:-$userID}
+
+    logDebug "Configuring log rotation as user [$userID], group [$groupID], effective cron User [$logConfigOwner]"
+    
+    local errorMessage="Could not configure logrotate. Please configure log rotation of the file: [$logFile] manually"
+
+    local confFile="${productHome}/var/etc/logrotate/logrotate.conf"
+
+    # TODO move to recursive method
+    createDir "${productHome}" "$userID" "$groupID" || { warn "${errorMessage}" && return 1; }
+    createDir "${productHome}/var" "$userID" "$groupID" || { warn "${errorMessage}" && return 1; }
+    createDir "${productHome}/var/log" "$userID" "$groupID" || { warn "${errorMessage}" && return 1; }
+    createDir "${productHome}/var/log/archived" "$userID" "$groupID" || { warn "${errorMessage}" && return 1; }
+    
+    # TODO move to recursive method
+    createDir "${productHome}/var/etc"  "$userID" "$groupID" || { warn "${errorMessage}" && return 1; }
+    createDir "${productHome}/var/etc/logrotate" "$logConfigOwner" || { warn "${errorMessage}" && return 1; }
+
+    # conf file should be owned by the user running the script
+    createFile "${confFile}" "${logConfigOwner}" || { warn "Could not create configuration file [$confFile]" return 1; }
+
+    _addLogRotateConfiguration "${confFile}" "${logFile}" "$userID" "$groupID" || { warn "${errorMessage}" && return 1; }
+    _addCronJobForLogrotate "${productHome}" "${confFile}" "${logConfigOwner}" || { warn "${errorMessage}" && return 1; }
+}
+
+_pauseExecution() {
+    if [ "${VERBOSE_MODE}" == "debug" ]; then
+        
+        local breakPoint="$1"
+        if [ ! -z "$breakPoint" ]; then
+            printf "${cBlue}Breakpoint${cClear} [$breakPoint] "
+            echo ""
+        fi
+        printf "${cBlue}Press enter once you are ready to continue${cClear}"
+        read -s choice
+        echo ""
+    fi
+}
+
+# removeLogRotation "$productHome" "$cronJobOwner" || true
+removeLogRotation() {
+    logDebug "Method ${FUNCNAME[0]}"
+    if [[ $(uname) == "Darwin" ]]; then
+        logDebug "Not implemented for Darwin."
+        return 0
+    fi
+    local productHome="$1"
+    local cronJobOwner="$2"
+    local standaloneMode=$(_operationIsBySameUser "$cronJobOwner")
+
+    local confFile="${productHome}/var/etc/logrotate/logrotate.conf"
+    
+    if [ "$standaloneMode" == "no" ]; then
+        crontab -l -u $cronJobOwner 2>/dev/null | grep -v "$confFile" | crontab -u $cronJobOwner -
+    else
+        crontab -l 2>/dev/null | grep -v "$confFile" | crontab -
+    fi
+}
+
+# NOTE: This method does not check the configuration to see if redirection is necessary.
+# This is intentional. If we don't redirect, tomcat logs might get redirected to a folder/file
+# that does not exist, causing the service itself to not start
+setupTomcatRedirection() {
+    logDebug "Method ${FUNCNAME[0]}"
+    local consoleLog="${JF_PRODUCT_HOME}/var/log/console.log"
+    _createConsoleLog
+    export CATALINA_OUT="${consoleLog}"
+}
+
+setupScriptLogsRedirection() {
+    logDebug "Method ${FUNCNAME[0]}"
+    if [ -z "${JF_PRODUCT_HOME}" ]; then
+        logDebug "No JF_PRODUCT_HOME. Returning"
+        return
+    fi
+    # Create the console.log file if it is not already present
+    # _createConsoleLog || true
+    # # Ensure any logs (logger/logError/warn) also get redirected to the console.log
+    # # Using installer.log as a temparory fix. Please change this to console.log once INST-291 is fixed
+    export LOG_BEHAVIOR_ADD_REDIRECTION="${JF_PRODUCT_HOME}/var/log/console.log"
+    export LOG_BEHAVIOR_ADD_META="$FLAG_Y"
+}
+
+# Returns Y if this method is run inside a container
+isRunningInsideAContainer() {
+    local check1=$(grep -sq 'docker\|kubepods' /proc/1/cgroup; echo $?)
+    local check2=$(grep -sq 'containers' /proc/self/mountinfo; echo $?)
+    if [[ $check1 == 0 || $check2 == 0 || -f "/.dockerenv" ]]; then
+        echo -n "$FLAG_Y"
+    else
+        echo -n "$FLAG_N"
+    fi 
+}
+
+POSTGRES_USER=999
+NGINX_USER=104
+NGINX_GROUP=107
+ES_USER=1000
+REDIS_USER=999
+MONGO_USER=999
+RABBITMQ_USER=999
+LOG_FILE_PERMISSION=640
+PID_FILE_PERMISSION=644
+
+# Copy file
+copyFile(){
+    local source=$1
+    local target=$2
+    local mode=${3:-overwrite}
+    local enableVerbose=${4:-"${FLAG_N}"}
+    local verboseFlag=""
+
+    if [ ! -z "${enableVerbose}" ] && [ "${enableVerbose}" == "${FLAG_Y}" ]; then
+        verboseFlag="-v"
+    fi
+
+    if [[ ! ( $source && $target ) ]]; then
+        warn "Source and target is mandatory to copy file"
+        return 1
+    fi
+
+    if [[ -f "${target}" ]]; then
+        [[ "$mode" = "overwrite" ]] && ( cp ${verboseFlag} -f "$source" "$target" || errorExit "Unable to copy file, command : cp -f ${source} ${target}") || true
+    else
+        cp ${verboseFlag} -f "$source" "$target" || errorExit "Unable to copy file, command : cp -f ${source} ${target}"
+    fi
+}
+
+# Copy files recursively from given source directory to destination directory
+# This method wil copy but will NOT overwrite
+# Destination will be created if its not available
+copyFilesNoOverwrite(){
+    local src=$1
+    local dest=$2
+    local enableVerboseCopy="${3:-${FLAG_Y}}"
+
+    if [[ -z "${src}" || -z "${dest}" ]]; then
+        return
+    fi
+
+    if [ -d "${src}" ] && [ "$(ls -A ${src})" ]; then
+        local relativeFilePath=""
+        local targetFilePath=""
+
+        for file in $(find ${src} -type f 2>/dev/null) ; do
+            # Derive relative path and attach it to destination 
+            # Example : 
+            #       src=/extra_config
+            #       dest=/var/opt/jfrog/artifactory/etc
+            #       file=/extra_config/config.xml
+            #       relativeFilePath=config.xml
+            #       targetFilePath=/var/opt/jfrog/artifactory/etc/config.xml
+            relativeFilePath=${file/${src}/}
+            targetFilePath=${dest}${relativeFilePath}
+
+            createDir "$(dirname "$targetFilePath")"
+            copyFile "${file}" "${targetFilePath}" "no_overwrite" "${enableVerboseCopy}"
+        done
+    fi    
+}
+
+#    TODO : WINDOWS ?
+#  Check the max open files and open processes set on the system
+checkULimits () {
+    local minMaxOpenFiles=${1:-32000}
+    local minMaxOpenProcesses=${2:-1024}
+    local setValue=${3:-true}
+    local warningMsgForFiles=${4}
+    local warningMsgForProcesses=${5}
+
+    logger "Checking open files and processes limits"
+
+    local currentMaxOpenFiles=$(ulimit -n)
+    logger "Current max open files is $currentMaxOpenFiles"
+    if [ ${currentMaxOpenFiles} != "unlimited" ] && [ "$currentMaxOpenFiles" -lt "$minMaxOpenFiles" ]; then
+        if [ "${setValue}" ]; then
+            ulimit -n "${minMaxOpenFiles}" >/dev/null 2>&1 || warn "Max number of open files $currentMaxOpenFiles is low!"
+            [ -z "${warningMsgForFiles}" ] || warn "${warningMsgForFiles}"
+        else
+            errorExit "Max number of open files $currentMaxOpenFiles, is too low. Cannot run the application!"
+        fi
+    fi
+
+    local currentMaxOpenProcesses=$(ulimit -u)
+    logger "Current max open processes is $currentMaxOpenProcesses"
+    if [ "$currentMaxOpenProcesses" != "unlimited" ] && [ "$currentMaxOpenProcesses" -lt "$minMaxOpenProcesses" ]; then
+        if [ "${setValue}" ]; then
+            ulimit -u "${minMaxOpenProcesses}" >/dev/null 2>&1 || warn "Max number of open files $currentMaxOpenFiles is low!"
+            [ -z "${warningMsgForProcesses}" ] || warn "${warningMsgForProcesses}"
+        else
+            errorExit "Max number of open files $currentMaxOpenProcesses, is too low. Cannot run the application!"
+        fi
+    fi
+}
+
+createDirs() {
+    local appDataDir=$1
+    local serviceName=$2
+    local folders="backup bootstrap data etc logs work"
+
+    [ -z "${appDataDir}" ]  && errorExit "An application directory is mandatory to create its data structure"  || true
+    [ -z "${serviceName}" ] && errorExit "A service name is mandatory to create service data structure"         || true
+
+    for folder in ${folders}
+    do
+        folder=${appDataDir}/${folder}/${serviceName}
+        if [ ! -d "${folder}" ]; then
+            logger "Creating folder : ${folder}"
+            mkdir -p "${folder}" || errorExit "Failed to create ${folder}"
+        fi
+    done
+}
+
+
+testReadWritePermissions () {
+    local dir_to_check=$1
+    local error=false
+
+    [ -d ${dir_to_check} ] || errorExit "'${dir_to_check}' is not a directory"
+
+    local test_file=${dir_to_check}/test-permissions
+
+    # Write file
+    if echo test > ${test_file} 1> /dev/null 2>&1; then
+        # Write succeeded. Testing read...
+        if cat ${test_file} > /dev/null; then
+            rm -f ${test_file}
+        else
+            error=true
+        fi
+    else
+        error=true
+    fi
+
+    if [ ${error} == true ]; then
+        return 1
+    else
+        return 0
+    fi
+}
+
+# Test directory has read/write permissions for current user
+testDirectoryPermissions () {
+    local dir_to_check=$1
+    local error=false
+
+    [ -d ${dir_to_check}  ] || errorExit "'${dir_to_check}' is not a directory"
+
+    local u_id=$(id -u)
+    local id_str="id ${u_id}"
+
+    logger "Testing directory ${dir_to_check} has read/write permissions for user ${id_str}"
+
+    if ! testReadWritePermissions ${dir_to_check}; then
+        error=true
+    fi
+
+    if [ "${error}" == true ]; then
+        local stat_data=$(stat -Lc "Directory: %n, permissions: %a, owner: %U, group: %G" ${dir_to_check})
+        logger "###########################################################"
+        logger "${dir_to_check} DOES NOT have proper permissions for user ${id_str}"
+        logger "${stat_data}"
+        logger "Mounted directory must have read/write permissions for user ${id_str}"
+        logger "###########################################################"
+        errorExit "Directory ${dir_to_check} has bad permissions for user ${id_str}"
+    fi
+    logger "Permissions for ${dir_to_check} are good"
+}
+
+# Utility method to create a directory path recursively with chown feature as
+# Failure conditions:
+## Exits if unable to create a directory
+# Parameters:
+## $1: Root directory from where the path can be created
+## $2: List of recursive child directories separated by space
+## $3: user who should own the directory. Optional
+## $4: group who should own the directory. Optional
+# Depends on global: none
+# Updates global: none
+# Returns: NA
+#
+# Usage:
+# createRecursiveDir "/opt/jfrog/product/var" "bootstrap tomcat lib" "user_name" "group_name"
+createRecursiveDir(){
+    local rootDir=$1
+    local pathDirs=$2
+    local user=$3
+    local group=${4:-${user}}
+    local fullPath=
+
+    [ ! -z "${rootDir}" ] || return 0
+
+    createDir "${rootDir}" "${user}" "${group}"
+
+    [ ! -z "${pathDirs}" ] || return 0
+
+    fullPath=${rootDir}
+
+    for dir in ${pathDirs}; do
+        fullPath=${fullPath}/${dir}
+        createDir "${fullPath}" "${user}" "${group}"
+    done
+}
+
+# Utility method to create a directory
+# Failure conditions:
+## Exits if unable to create a directory
+# Parameters:
+## $1: directory to create
+## $2: user who should own the directory. Optional
+## $3: group who should own the directory. Optional
+# Depends on global: none
+# Updates global: none
+# Returns: NA
+
+createDir(){
+    local dirName="$1"
+    local printMessage=no
+    logSilly "Method ${FUNCNAME[0]} invoked with [$dirName]"
+    [ -z "${dirName}" ] && return
+    
+    logDebug "Attempting to create ${dirName}"
+    mkdir -p "${dirName}" || errorExit "Unable to create directory: [${dirName}]"
+    local userID="$2"
+    local groupID=${3:-$userID}
+
+    # If UID/GID is passed, chown the folder
+    if [ ! -z "$userID" ] && [ ! -z "$groupID" ]; then
+        # Earlier, this line would have returned 1 if it failed. Now it just warns. 
+        # This is intentional. Earlier, this line would NOT be reached if the folder already existed. 
+        # Since it will always come to this line and the script may be running as a non-root user, this method will just warn if
+        # setting permissions fails (so as to not affect any existing flows)
+        io_setOwnershipNonRecursive "$dirName" "$userID" "$groupID" || warn "Could not set owner of [$dirName] to [$userID:$groupID]"
+    fi
+    # logging message to print created dir with user and group
+    local logMessage=${4:-$printMessage}
+    if [[ "${logMessage}" == "yes" ]]; then
+        logger "Successfully created directory [${dirName}].  Owner: [${userID}:${groupID}]"
+    fi
+}
+
+removeSoftLinkAndCreateDir () {
+    local dirName="$1"
+    local userID="$2"
+    local groupID="$3"
+    local logMessage="$4"
+    removeSoftLink "${dirName}"
+    createDir "${dirName}" "${userID}" "${groupID}" "${logMessage}"
+}
+
+# Utility method to remove a soft link
+removeSoftLink () {
+    local dirName="$1"
+    if [[ -L "${dirName}" ]]; then
+        targetLink=$(readlink -f "${dirName}")
+        logger "Removing the symlink [${dirName}] pointing to [${targetLink}]"
+        rm -f "${dirName}"
+    fi
+}
+
+# Check Directory exist in the path
+checkDirExists () {
+    local directoryPath="$1"
+
+    [[ -d "${directoryPath}" ]] && echo -n "true" || echo -n "false"
+}
+
+
+# Utility method to create a file
+# Failure conditions:
+# Parameters:
+## $1: file to create
+# Depends on global: none
+# Updates global: none
+# Returns: NA
+
+createFile(){
+    local fileName="$1"
+    logSilly "Method ${FUNCNAME[0]} [$fileName]"
+    [ -f "${fileName}" ] && return 0
+    touch "${fileName}" || return 1
+
+    local userID="$2"
+    local groupID=${3:-$userID}
+
+    # If UID/GID is passed, chown the folder
+    if [ ! -z "$userID" ] && [ ! -z "$groupID" ]; then
+        io_setOwnership "$fileName" "$userID" "$groupID" || return 1
+    fi
+}
+
+# Check File exist in the filePath
+# IMPORTANT- DON'T ADD LOGGING to this method
+checkFileExists () {
+    local filePath="$1"
+
+    [[ -f "${filePath}" ]] && echo -n "true" || echo -n "false"
+}
+
+# Check for directories contains any (files or sub directories)
+# IMPORTANT- DON'T ADD LOGGING to this method
+checkDirContents () {
+    local directoryPath="$1"
+    if [[ "$(ls -1 "${directoryPath}" | wc -l)" -gt 0 ]]; then
+        echo -n "true"
+    else
+        echo -n "false"
+    fi
+}
+
+# Check contents exist in directory
+# IMPORTANT- DON'T ADD LOGGING to this method
+checkContentExists () {
+    local source="$1"
+
+    if [[ "$(checkDirContents "${source}")" != "true" ]]; then
+        echo -n "false"
+    else
+        echo -n "true"
+    fi
+}
+
+# Resolve the variable
+# IMPORTANT- DON'T ADD LOGGING to this method
+evalVariable () {
+    local output="$1"
+    local input="$2"
+
+    eval "${output}"=\${"${input}"}
+    eval echo \${"${output}"}
+}
+
+# Usage: if [ "$(io_commandExists 'curl')" == "yes" ]
+# IMPORTANT- DON'T ADD LOGGING to this method
+io_commandExists() {
+    local commandToExecute="$1"
+    hash "${commandToExecute}" 2>/dev/null
+    local rt=$?
+    if [ "$rt" == 0 ]; then echo -n "yes"; else echo -n "no"; fi
+}
+
+# Usage: if [ "$(io_curlExists)" != "yes" ]
+# IMPORTANT- DON'T ADD LOGGING to this method
+io_curlExists() {
+    io_commandExists "curl"
+}
+
+
+io_hasMatch() {
+    logSilly "Method ${FUNCNAME[0]}"
+    local result=0
+    logDebug "Executing [echo \"$1\" | grep \"$2\" >/dev/null 2>&1]"
+    echo "$1" | grep "$2" >/dev/null 2>&1 || result=1
+    return $result
+}
+
+# Utility method to check if the string passed (usually a connection url) corresponds to this machine itself
+# Failure conditions: None
+# Parameters:
+## $1: string to check against
+# Depends on global: none
+# Updates global: IS_LOCALHOST with value "yes/no"
+# Returns: NA
+
+io_getIsLocalhost() {
+    logSilly "Method ${FUNCNAME[0]}"
+    IS_LOCALHOST="$FLAG_N"
+    local inputString="$1"
+    logDebug "Parsing [$inputString] to check if we are dealing with this machine itself"
+
+    io_hasMatch "$inputString" "localhost" && {
+        logDebug "Found localhost. Returning [$FLAG_Y]"
+        IS_LOCALHOST="$FLAG_Y" && return;
+    } || logDebug "Did not find match for localhost"
+    
+    local hostIP=$(io_getPublicHostIP)
+    io_hasMatch "$inputString" "$hostIP" && {
+        logDebug "Found $hostIP. Returning [$FLAG_Y]"
+        IS_LOCALHOST="$FLAG_Y" && return;
+    } || logDebug "Did not find match for $hostIP"
+    
+    local hostID=$(io_getPublicHostID)
+    io_hasMatch "$inputString" "$hostID" && {
+        logDebug "Found $hostID. Returning [$FLAG_Y]"
+        IS_LOCALHOST="$FLAG_Y" && return;
+    } || logDebug "Did not find match for $hostID"
+    
+    local hostName=$(io_getPublicHostName)
+    io_hasMatch  "$inputString" "$hostName" && {
+        logDebug "Found $hostName. Returning [$FLAG_Y]"
+        IS_LOCALHOST="$FLAG_Y" && return;
+    } || logDebug "Did not find match for $hostName"
+    
+}
+
+# Usage: if [ "$(io_tarExists)" != "yes" ]
+# IMPORTANT- DON'T ADD LOGGING to this method
+io_tarExists() {
+    io_commandExists "tar"
+}
+
+# IMPORTANT- DON'T ADD LOGGING to this method
+io_getPublicHostIP() {
+    local OS_TYPE=$(uname)
+    local publicHostIP=
+    if [ "${OS_TYPE}" == "Darwin" ]; then
+        ipStatus=$(ifconfig en0 | grep "status" | awk '{print$2}')
+        if [ "${ipStatus}" == "active" ]; then
+            publicHostIP=$(ifconfig en0 | grep inet | grep -v inet6 | awk '{print $2}')
+        else
+            errorExit "Host IP could not be resolved!"
+        fi
+    elif [ "${OS_TYPE}" == "Linux" ]; then
+        publicHostIP=$(hostname -i 2>/dev/null || echo "127.0.0.1")
+    fi
+    publicHostIP=$(echo "${publicHostIP}" | awk '{print $1}')
+    echo -n "${publicHostIP}"
+}
+
+# Will return the short host name (up to the first dot)
+# IMPORTANT- DON'T ADD LOGGING to this method
+io_getPublicHostName() {
+    echo -n "$(hostname -s)"
+}
+
+# Will return the full host name (use this as much as possible)
+# IMPORTANT- DON'T ADD LOGGING to this method
+io_getPublicHostID() {
+    echo -n "$(hostname)"
+}
+
+# Utility method to backup a file
+# Failure conditions: NA
+# Parameters: filePath
+# Depends on global: none,
+# Updates global: none
+# Returns: NA
+io_backupFile() {
+    logSilly "Method ${FUNCNAME[0]}"
+    fileName="$1"
+    if [ ! -f "${filePath}" ]; then
+        logDebug "No file: [${filePath}] to backup"
+        return
+    fi
+    dateTime=$(date +"%Y-%m-%d-%H-%M-%S")
+    targetFileName="${fileName}.backup.${dateTime}"
+    yes | \cp -f "$fileName" "${targetFileName}"
+    logger "File [${fileName}] backedup as [${targetFileName}]"
+}
+
+# Reference https://stackoverflow.com/questions/4023830/how-to-compare-two-strings-in-dot-separated-version-format-in-bash/4025065#4025065
+is_number() {
+    case "$BASH_VERSION" in
+        3.1.*)
+            PATTERN='\^\[0-9\]+\$'
+            ;;
+        *)
+            PATTERN='^[0-9]+$'
+            ;;
+    esac
+
+    [[ "$1" =~ $PATTERN ]]
+}
+
+io_compareVersions() {
+    if [[ $# != 2 ]]
+    then
+        echo "Usage: min_version current minimum"
+        return
+    fi
+
+    A="${1%%.*}"
+    B="${2%%.*}"
+
+    if [[ "$A" != "$1" && "$B" != "$2" && "$A" == "$B" ]]
+    then
+        io_compareVersions "${1#*.}" "${2#*.}"
+    else
+        if is_number "$A" && is_number "$B"
+        then
+            if [[ "$A" -eq "$B" ]]; then
+                echo "0"
+            elif [[ "$A" -gt "$B" ]]; then
+                echo "1"
+            elif [[ "$A" -lt "$B" ]]; then
+                echo "-1"
+            fi
+        fi
+    fi
+}
+
+# Reference https://stackoverflow.com/questions/369758/how-to-trim-whitespace-from-a-bash-variable
+# Strip all leading and trailing spaces
+# IMPORTANT- DON'T ADD LOGGING to this method
+io_trim() {
+    local var="$1"
+    # remove leading whitespace characters
+    var="${var#"${var%%[![:space:]]*}"}"
+    # remove trailing whitespace characters
+    var="${var%"${var##*[![:space:]]}"}"
+    echo -n "$var"
+}
+
+# temporary function will be removing it ASAP
+# search for string and replace text in file
+replaceText_migration_hook () {
+    local regexString="$1"
+    local replaceText="$2"
+    local file="$3"
+
+    if [[ "$(checkFileExists "${file}")" != "true" ]]; then
+        return
+    fi
+    if [[ $(uname) == "Darwin" ]]; then
+        sed -i '' -e "s/${regexString}/${replaceText}/" "${file}" || warn "Failed to replace the text in ${file}"
+    else
+        sed -i -e "s/${regexString}/${replaceText}/" "${file}" || warn "Failed to replace the text in ${file}"
+    fi
+}
+
+# search for string and replace text in file
+replaceText () {
+    local regexString="$1"
+    local replaceText="$2"
+    local file="$3"
+
+    if [[ "$(checkFileExists "${file}")" != "true" ]]; then
+        return
+    fi
+    if [[ $(uname) == "Darwin" ]]; then
+        sed -i '' -e "s#${regexString}#${replaceText}#" "${file}" || warn "Failed to replace the text in ${file}"
+    else
+        sed -i -e "s#${regexString}#${replaceText}#" "${file}" || warn "Failed to replace the text in ${file}"
+        logDebug "Replaced [$regexString] with [$replaceText] in [$file]"
+    fi
+}
+
+# search for string and prepend text in file
+prependText () {
+    local regexString="$1"
+    local text="$2"
+    local file="$3"
+
+    if [[ "$(checkFileExists "${file}")" != "true" ]]; then
+        return
+    fi
+    if [[ $(uname) == "Darwin" ]]; then
+        sed -i '' -e '/'"${regexString}"'/i\'$'\n\\'"${text}"''$'\n' "${file}" || warn "Failed to prepend the text in ${file}"
+    else
+        sed -i -e '/'"${regexString}"'/i\'$'\n\\'"${text}"''$'\n' "${file}" || warn "Failed to prepend the text in ${file}"
+    fi
+}
+
+# add text to beginning of the file
+addText () {
+    local text="$1"
+    local file="$2"
+
+    if [[ "$(checkFileExists "${file}")" != "true" ]]; then
+        return
+    fi
+    if [[ $(uname) == "Darwin" ]]; then
+        sed -i '' -e '1s/^/'"${text}"'\'$'\n/' "${file}" || warn "Failed to add the text in ${file}"
+    else
+        sed -i -e '1s/^/'"${text}"'\'$'\n/' "${file}" || warn "Failed to add the text in ${file}"
+    fi
+}
+
+io_replaceString () {
+    local value="$1"
+    local firstString="$2"
+    local secondString="$3"
+    local separator=${4:-"/"}
+    local updateValue=
+    if [[ $(uname) == "Darwin" ]]; then
+        updateValue=$(echo "${value}" | sed "s${separator}${firstString}${separator}${secondString}${separator}")
+    else
+        updateValue=$(echo "${value}" | sed "s${separator}${firstString}${separator}${secondString}${separator}")
+    fi
+    echo -n "${updateValue}"
+}
+
+_findYQ() {
+    # logSilly "Method ${FUNCNAME[0]}" (Intentionally not logging. Does not add value)
+    local parentDir="$1"
+    if [ -z "$parentDir" ]; then
+        return
+    fi
+    logDebug "Executing command [find "${parentDir}" -name third-party -type d]"
+    local yq=$(find "${parentDir}" -name third-party -type d)
+    if [ -d "${yq}/yq" ]; then
+        export YQ_PATH="${yq}/yq"
+    fi
+}
+
+
+io_setYQPath() {
+    # logSilly "Method ${FUNCNAME[0]}" (Intentionally not logging. Does not add value)
+    if [ "$(io_commandExists 'yq')" == "yes" ]; then
+        return
+    fi
+    
+    if [ ! -z "${JF_PRODUCT_HOME}" ] && [ -d "${JF_PRODUCT_HOME}" ]; then
+        _findYQ "${JF_PRODUCT_HOME}"
+    fi
+    
+    if [ -z "${YQ_PATH}" ] && [ ! -z "${COMPOSE_HOME}" ] && [ -d "${COMPOSE_HOME}" ]; then
+        _findYQ "${COMPOSE_HOME}"
+    fi
+    # TODO We can remove this block after all the code is restructured.
+    if [ -z "${YQ_PATH}" ] && [ ! -z "${SCRIPT_HOME}" ] && [ -d "${SCRIPT_HOME}" ]; then
+        _findYQ "${SCRIPT_HOME}"
+    fi
+    
+}
+
+io_getLinuxDistribution() {
+    LINUX_DISTRIBUTION=
+
+    # Make sure running on Linux
+    [ $(uname -s) != "Linux" ] && return
+
+    # Find out what Linux distribution we are on
+
+    cat /etc/*-release | grep -i Red >/dev/null 2>&1 && LINUX_DISTRIBUTION=RedHat || true
+
+    # OS 6.x
+    cat /etc/issue.net | grep Red >/dev/null 2>&1 && LINUX_DISTRIBUTION=RedHat || true
+
+    # OS 7.x
+    cat /etc/*-release | grep -i centos >/dev/null 2>&1 && LINUX_DISTRIBUTION=CentOS && LINUX_DISTRIBUTION_VER="7" || true
+
+    # OS 8.x
+    grep -q -i "release 8" /etc/redhat-release >/dev/null 2>&1 && LINUX_DISTRIBUTION_VER="8" || true
+
+    # OS 7.x
+    grep -q -i "release 7" /etc/redhat-release >/dev/null 2>&1 && LINUX_DISTRIBUTION_VER="7" || true
+
+    # OS 6.x
+    grep -q -i "release 6" /etc/redhat-release >/dev/null 2>&1 && LINUX_DISTRIBUTION_VER="6" || true
+
+    cat /etc/*-release | grep -i Red | grep -i 'VERSION=7' >/dev/null 2>&1 && LINUX_DISTRIBUTION=RedHat && LINUX_DISTRIBUTION_VER="7" || true
+
+    cat /etc/*-release | grep -i debian >/dev/null 2>&1 && LINUX_DISTRIBUTION=Debian || true
+
+    cat /etc/*-release | grep -i ubuntu >/dev/null 2>&1 && LINUX_DISTRIBUTION=Ubuntu || true
+}
+
+## Utility method to check ownership of folders/files
+## Failure conditions:
+    ## If invoked with incorrect inputs - FATAL
+    ## If file is not owned by the user & group
+## Parameters:
+    ## user
+    ## group
+    ## folder to chown    
+## Globals: none
+## Returns: none
+## NOTE: The method does NOTHING if the OS is Mac
+io_checkOwner () {
+    logSilly "Method ${FUNCNAME[0]}"
+    local osType=$(uname)
+    
+    if [ "${osType}" != "Linux" ]; then
+        logDebug "Unsupported OS. Skipping check"
+        return 0
+    fi
+
+    local file_to_check=$1
+    local user_id_to_check=$2
+    
+
+    if [ -z "$user_id_to_check" ] || [ -z "$file_to_check" ]; then
+        errorExit "Invalid invocation of method. Missing mandatory inputs"
+    fi
+
+    local group_id_to_check=${3:-$user_id_to_check}
+    local check_user_name=${4:-"no"}
+
+    logDebug "Checking permissions on [$file_to_check] for user [$user_id_to_check] & group [$group_id_to_check]"
+
+    local stat=
+
+    if [ "${check_user_name}" == "yes" ]; then
+        stat=( $(stat -Lc "%U %G" ${file_to_check}) )
+    else
+        stat=( $(stat -Lc "%u %g" ${file_to_check}) )
+    fi
+
+    local user_id=${stat[0]}
+    local group_id=${stat[1]}
+
+    if [[ "${user_id}" != "${user_id_to_check}" ]] || [[ "${group_id}" != "${group_id_to_check}" ]] ; then
+        logDebug "Ownership mismatch. [${file_to_check}] is not owned by [${user_id_to_check}:${group_id_to_check}]"
+        return 1
+    else
+        return 0
+    fi
+}
+
+## Utility method to change ownership of a file/folder - NON recursive
+## Failure conditions:
+    ## If invoked with incorrect inputs - FATAL
+    ## If chown operation fails - returns 1
+## Parameters: 
+    ## user
+    ## group
+    ## file to chown    
+## Globals: none
+## Returns: none
+## NOTE: The method does NOTHING if the OS is Mac
+
+io_setOwnershipNonRecursive() {
+    
+    local osType=$(uname)
+    if [ "${osType}" != "Linux" ]; then
+        return
+    fi
+
+    local targetFile=$1
+    local user=$2
+
+    if [ -z "$user" ] || [ -z "$targetFile" ]; then
+        errorExit "Invalid invocation of method. Missing mandatory inputs"
+    fi
+
+    local group=${3:-$user}
+    logDebug "Method ${FUNCNAME[0]}. Executing [chown ${user}:${group} ${targetFile}]"
+    chown ${user}:${group} ${targetFile} || return 1
+}
+
+## Utility method to change ownership of a file. 
+## IMPORTANT 
+## If being called on a folder, should ONLY be called for fresh folders or may cause performance issues
+## Failure conditions:
+    ## If invoked with incorrect inputs - FATAL
+    ## If chown operation fails - returns 1
+## Parameters: 
+    ## user
+    ## group
+    ## file to chown    
+## Globals: none
+## Returns: none
+## NOTE: The method does NOTHING if the OS is Mac
+
+io_setOwnership() {
+    
+    local osType=$(uname)
+    if [ "${osType}" != "Linux" ]; then
+        return
+    fi
+
+    local targetFile=$1
+    local user=$2
+
+    if [ -z "$user" ] || [ -z "$targetFile" ]; then
+        errorExit "Invalid invocation of method. Missing mandatory inputs"
+    fi
+
+    local group=${3:-$user}
+    logDebug "Method ${FUNCNAME[0]}. Executing [chown -R ${user}:${group} ${targetFile}]"
+    chown -R ${user}:${group} ${targetFile} || return 1
+}
+
+## Utility method to create third party folder structure necessary for Postgres
+## Failure conditions:
+## If creation of directory or assigning permissions fails
+## Parameters: none
+## Globals:
+## POSTGRESQL_DATA_ROOT
+## Returns: none
+## NOTE: The method does NOTHING if the folder already exists
+io_createPostgresDir() {
+    logDebug "Method ${FUNCNAME[0]}"
+    [ -z "${POSTGRESQL_DATA_ROOT}" ] && return 0
+
+    logDebug "Property [${POSTGRESQL_DATA_ROOT}] exists. Proceeding"
+
+    createDir "${POSTGRESQL_DATA_ROOT}/data"
+    io_setOwnership  "${POSTGRESQL_DATA_ROOT}" "${POSTGRES_USER}" "${POSTGRES_USER}" || errorExit "Setting ownership of [${POSTGRESQL_DATA_ROOT}] to [${POSTGRES_USER}:${POSTGRES_USER}] failed"
+}
+
+## Utility method to create third party folder structure necessary for Nginx
+## Failure conditions:
+## If creation of directory or assigning permissions fails
+## Parameters: none
+## Globals:
+## NGINX_DATA_ROOT
+## Returns: none
+## NOTE: The method does NOTHING if the folder already exists
+io_createNginxDir() {
+    logDebug "Method ${FUNCNAME[0]}"
+    [ -z "${NGINX_DATA_ROOT}" ] && return 0
+
+    logDebug "Property [${NGINX_DATA_ROOT}] exists. Proceeding"
+
+    createDir "${NGINX_DATA_ROOT}"
+    io_setOwnership  "${NGINX_DATA_ROOT}" "${NGINX_USER}" "${NGINX_GROUP}" || errorExit "Setting ownership of [${NGINX_DATA_ROOT}] to [${NGINX_USER}:${NGINX_GROUP}] failed"
+}
+
+## Utility method to create third party folder structure necessary for ElasticSearch
+## Failure conditions:
+## If creation of directory or assigning permissions fails
+## Parameters: none
+## Globals:
+## ELASTIC_DATA_ROOT
+## Returns: none
+## NOTE: The method does NOTHING if the folder already exists
+io_createElasticSearchDir() {
+    logDebug "Method ${FUNCNAME[0]}"
+    [ -z "${ELASTIC_DATA_ROOT}" ] && return 0
+
+    logDebug "Property [${ELASTIC_DATA_ROOT}] exists. Proceeding"
+
+    createDir "${ELASTIC_DATA_ROOT}/data"
+    io_setOwnership  "${ELASTIC_DATA_ROOT}" "${ES_USER}" "${ES_USER}" || errorExit "Setting ownership of [${ELASTIC_DATA_ROOT}] to [${ES_USER}:${ES_USER}] failed"
+}
+
+## Utility method to create third party folder structure necessary for Redis
+## Failure conditions:
+## If creation of directory or assigning permissions fails
+## Parameters: none
+## Globals:
+## REDIS_DATA_ROOT
+## Returns: none
+## NOTE: The method does NOTHING if the folder already exists
+io_createRedisDir() {
+    logDebug "Method ${FUNCNAME[0]}"
+    [ -z "${REDIS_DATA_ROOT}" ] && return 0
+
+    logDebug "Property [${REDIS_DATA_ROOT}] exists. Proceeding"
+
+    createDir "${REDIS_DATA_ROOT}"
+    io_setOwnership  "${REDIS_DATA_ROOT}" "${REDIS_USER}" "${REDIS_USER}" || errorExit "Setting ownership of [${REDIS_DATA_ROOT}] to [${REDIS_USER}:${REDIS_USER}] failed"
+}
+
+## Utility method to create third party folder structure necessary for Mongo
+## Failure conditions:
+## If creation of directory or assigning permissions fails
+## Parameters: none
+## Globals:
+## MONGODB_DATA_ROOT
+## Returns: none
+## NOTE: The method does NOTHING if the folder already exists
+io_createMongoDir() {
+    logDebug "Method ${FUNCNAME[0]}"
+    [ -z "${MONGODB_DATA_ROOT}" ] && return 0
+
+    logDebug "Property [${MONGODB_DATA_ROOT}] exists. Proceeding"
+
+    createDir "${MONGODB_DATA_ROOT}/logs"
+    createDir "${MONGODB_DATA_ROOT}/configdb"
+    createDir "${MONGODB_DATA_ROOT}/db"
+    io_setOwnership  "${MONGODB_DATA_ROOT}" "${MONGO_USER}" "${MONGO_USER}" || errorExit "Setting ownership of [${MONGODB_DATA_ROOT}] to [${MONGO_USER}:${MONGO_USER}] failed"
+}
+
+## Utility method to create third party folder structure necessary for RabbitMQ
+## Failure conditions:
+## If creation of directory or assigning permissions fails
+## Parameters: none
+## Globals:
+## RABBITMQ_DATA_ROOT
+## Returns: none
+## NOTE: The method does NOTHING if the folder already exists
+io_createRabbitMQDir() {
+    logDebug "Method ${FUNCNAME[0]}"
+    [ -z "${RABBITMQ_DATA_ROOT}" ] && return 0
+
+    logDebug "Property [${RABBITMQ_DATA_ROOT}] exists. Proceeding"
+
+    createDir "${RABBITMQ_DATA_ROOT}"
+    io_setOwnership  "${RABBITMQ_DATA_ROOT}" "${RABBITMQ_USER}" "${RABBITMQ_USER}" || errorExit "Setting ownership of [${RABBITMQ_DATA_ROOT}] to [${RABBITMQ_USER}:${RABBITMQ_USER}] failed"
+}
+
+# Add or replace a property in provided properties file
+addOrReplaceProperty() {
+    local propertyName=$1
+    local propertyValue=$2
+    local propertiesPath=$3
+    local delimiter=${4:-"="}
+
+    # Return if any of the inputs are empty
+    [[ -z "$propertyName"   || "$propertyName"   == "" ]] && return
+    [[ -z "$propertyValue"  || "$propertyValue"  == "" ]] && return
+    [[ -z "$propertiesPath" || "$propertiesPath" == "" ]] && return
+
+    grep "^${propertyName}\s*${delimiter}.*$" ${propertiesPath} > /dev/null 2>&1
+    [ $? -ne 0 ] && echo -e "\n${propertyName}${delimiter}${propertyValue}" >> ${propertiesPath}
+    sed -i -e "s|^${propertyName}\s*${delimiter}.*$|${propertyName}${delimiter}${propertyValue}|g;" ${propertiesPath}
+}
+
+# Set property only if its not set
+io_setPropertyNoOverride(){
+    local propertyName=$1
+    local propertyValue=$2
+    local propertiesPath=$3
+
+    # Return if any of the inputs are empty
+    [[ -z "$propertyName"   || "$propertyName"   == "" ]] && return
+    [[ -z "$propertyValue"  || "$propertyValue"  == "" ]] && return
+    [[ -z "$propertiesPath" || "$propertiesPath" == "" ]] && return
+
+    grep "^${propertyName}:" ${propertiesPath} > /dev/null 2>&1
+    if [ $? -ne 0 ]; then
+        echo -e "${propertyName}: ${propertyValue}" >> ${propertiesPath} || warn "Setting property ${propertyName}: ${propertyValue} in [ ${propertiesPath} ] failed"
+    else
+        logger "Skipping update of property : ${propertyName}" >&6
+    fi
+}
+
+# Add a line to a file if it doesn't already exist
+addLine() {
+    local line_to_add=$1
+    local target_file=$2
+    logger "Trying to add line $1 to $2" >&6 2>&1
+    cat "$target_file" | grep -F "$line_to_add" -wq >&6 2>&1
+    if [ $? != 0  ]; then
+        logger "Line does not exist and will be added" >&6 2>&1
+        echo $line_to_add >> $target_file || errorExit "Could not update $target_file"
+    fi    
+}
+
+# Utility method to check if a value (first parameter) exists in an array (2nd parameter)
+# 1st parameter "value to find"
+# 2nd parameter "The array to search in. Please pass a string with each value separated by space"
+# Example: containsElement "y" "y Y n N"
+containsElement () {
+    local searchElement=$1
+    local searchArray=($2)
+    local found=1
+    for elementInIndex in "${searchArray[@]}";do
+    if [[ $elementInIndex == $searchElement ]]; then
+        found=0
+    fi
+    done
+    return $found
+}
+
+# Utility method to get user's choice
+# 1st parameter "what to ask the user"
+# 2nd parameter "what choices to accept, separated by spaces"
+# 3rd parameter "what is the default choice (to use if the user simply presses Enter)"
+# Example 'getUserChoice "Are you feeling lucky? Punk!" "y n Y N" "y"'
+getUserChoice(){
+    configureLogOutput
+    read_timeout=${read_timeout:-0.5}
+    local choice="na"
+    local text_to_display=$1
+    local choices=$2
+    local default_choice=$3
+    users_choice=
+
+    until containsElement "$choice" "$choices"; do
+        echo "";echo "";
+        sleep $read_timeout #This ensures correct placement of the question.
+        read -p  "$text_to_display :" choice
+        : ${choice:=$default_choice}
+    done
+    users_choice=$choice
+    echo -e "\n$text_to_display: $users_choice" >&6
+    sleep $read_timeout #This ensures correct logging
+}
+
+setFilePermission () {
+    local permission=$1
+    local file=$2
+    chmod "${permission}" "${file}" || warn "Setting permission ${permission} to file [ ${file} ] failed"
+}
+
+
+#setting required paths
+setAppDir (){
+    SCRIPT_DIR=$(dirname $0)
+    SCRIPT_HOME="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
+    APP_DIR="`cd "${SCRIPT_HOME}";pwd`"
+}
+
+ZIP_TYPE="zip"
+COMPOSE_TYPE="compose"
+HELM_TYPE="helm"
+RPM_TYPE="rpm"
+DEB_TYPE="debian"
+
+sourceScript () {
+    local file="$1"
+
+    [ ! -z "${file}" ] || errorExit "target file is not passed to source a file"
+
+    if [ ! -f "${file}" ]; then
+        errorExit "${file} file is not found"
+    else
+        source "${file}" || errorExit "Unable to source ${file}, please check if the user ${USER} has permissions to perform this action"
+    fi
+}
+# Source required helpers
+initHelpers () {
+    local systemYamlHelper="${APP_DIR}/systemYamlHelper.sh"
+    local thirdPartyDir=$(find ${APP_DIR}/.. -name third-party -type d)
+    export YQ_PATH="${thirdPartyDir}/yq"
+    LIBXML2_PATH="${thirdPartyDir}/libxml2/bin/xmllint"
+    export LD_LIBRARY_PATH="${thirdPartyDir}/libxml2/lib"
+    sourceScript "${systemYamlHelper}"
+}
+# Check migration info yaml file available in the path
+checkMigrationInfoYaml () {
+
+    if [[ -f "${APP_DIR}/migrationHelmInfo.yaml" ]]; then
+        MIGRATION_SYSTEM_YAML_INFO="${APP_DIR}/migrationHelmInfo.yaml"
+        INSTALLER="${HELM_TYPE}"
+    elif [[ -f "${APP_DIR}/migrationZipInfo.yaml" ]]; then
+        MIGRATION_SYSTEM_YAML_INFO="${APP_DIR}/migrationZipInfo.yaml"
+        INSTALLER="${ZIP_TYPE}"
+    elif [[ -f "${APP_DIR}/migrationRpmInfo.yaml" ]]; then
+        MIGRATION_SYSTEM_YAML_INFO="${APP_DIR}/migrationRpmInfo.yaml"
+        INSTALLER="${RPM_TYPE}"
+    elif [[ -f "${APP_DIR}/migrationDebInfo.yaml" ]]; then
+        MIGRATION_SYSTEM_YAML_INFO="${APP_DIR}/migrationDebInfo.yaml"
+        INSTALLER="${DEB_TYPE}"
+    elif [[ -f "${APP_DIR}/migrationComposeInfo.yaml" ]]; then
+        MIGRATION_SYSTEM_YAML_INFO="${APP_DIR}/migrationComposeInfo.yaml"
+        INSTALLER="${COMPOSE_TYPE}"
+    else
+        errorExit "File migration Info yaml does not exist in [${APP_DIR}]"
+    fi
+}
+
+retrieveYamlValue () {
+    local yamlPath="$1"
+    local value="$2"
+    local output="$3"
+    local message="$4"
+
+    [[ -z "${yamlPath}" ]] && errorExit "yamlPath is mandatory to get value from ${MIGRATION_SYSTEM_YAML_INFO}"
+
+    getYamlValue "${yamlPath}" "${MIGRATION_SYSTEM_YAML_INFO}" "false"
+    value="${YAML_VALUE}"
+    if [[ -z "${value}" ]]; then
+        if [[ "${output}" == "Warning" ]]; then
+            warn "Empty value for ${yamlPath} in [${MIGRATION_SYSTEM_YAML_INFO}]"
+        elif [[ "${output}" == "Skip" ]]; then
+            return
+        else
+            errorExit "${message}"
+        fi
+    fi
+}
+
+checkEnv () {
+    
+    if [[ "${INSTALLER}" == "${ZIP_TYPE}" ]]; then
+        # check Environment JF_PRODUCT_HOME is set before migration
+        NEW_DATA_DIR="$(evalVariable "NEW_DATA_DIR" "JF_PRODUCT_HOME")"
+        if [[ -z "${NEW_DATA_DIR}" ]]; then
+            errorExit "Environment variable JF_PRODUCT_HOME is not set, this is required to perform Migration"
+        fi
+        # appending var directory to $JF_PRODUCT_HOME
+        NEW_DATA_DIR="${NEW_DATA_DIR}/var"
+    elif [[ "${INSTALLER}" == "${HELM_TYPE}" ]]; then
+        getCustomDataDir_hook
+        NEW_DATA_DIR="${OLD_DATA_DIR}"
+        if [[ -z "${NEW_DATA_DIR}" ]] && [[  -z "${OLD_DATA_DIR}" ]]; then
+            errorExit "Could not find ${PROMPT_DATA_DIR_LOCATION} to perform Migration"
+        fi
+    else
+        # check Environment JF_ROOT_DATA_DIR is set before migration
+        OLD_DATA_DIR="$(evalVariable "OLD_DATA_DIR" "JF_ROOT_DATA_DIR")"
+        # check Environment JF_ROOT_DATA_DIR is set before migration
+        NEW_DATA_DIR="$(evalVariable "NEW_DATA_DIR" "JF_ROOT_DATA_DIR")"
+        if [[ -z "${NEW_DATA_DIR}" ]] && [[  -z "${OLD_DATA_DIR}" ]]; then
+            errorExit "Could not find ${PROMPT_DATA_DIR_LOCATION} to perform Migration"
+        fi
+            # appending var directory to $JF_PRODUCT_HOME
+            NEW_DATA_DIR="${NEW_DATA_DIR}/var"
+    fi
+    
+}
+
+getDataDir () {
+
+    if [[ "${INSTALLER}" == "${ZIP_TYPE}" || "${INSTALLER}" == "${COMPOSE_TYPE}"|| "${INSTALLER}" == "${HELM_TYPE}" ]]; then
+        checkEnv
+    else
+        getCustomDataDir_hook
+        NEW_DATA_DIR="`cd "${APP_DIR}"/../../;pwd`"
+        NEW_DATA_DIR="${NEW_DATA_DIR}/var"
+    fi
+}
+
+# Retrieve Product name from MIGRATION_SYSTEM_YAML_INFO
+getProduct () {
+    retrieveYamlValue "migration.product" "${YAML_VALUE}" "Fail" "Empty value under ${yamlPath} in [${MIGRATION_SYSTEM_YAML_INFO}]"
+    PRODUCT="${YAML_VALUE}"
+    PRODUCT=$(echo "${PRODUCT}" | tr '[:upper:]' '[:lower:]' 2>/dev/null)
+    if [[ "${PRODUCT}" != "artifactory" && "${PRODUCT}" != "distribution" && "${PRODUCT}" != "xray" ]]; then
+        errorExit "migration.product in [${MIGRATION_SYSTEM_YAML_INFO}] is not correct, please set based on product as ARTIFACTORY or DISTRIBUTION"
+    fi
+    if [[ "${INSTALLER}" == "${HELM_TYPE}" ]]; then
+        JF_USER="${PRODUCT}"
+    fi
+}
+# Compare product version with minProductVersion and maxProductVersion
+migrateCheckVersion () {
+    local productVersion="$1"
+    local minProductVersion="$2"
+    local maxProductVersion="$3"
+    local productVersion618="6.18.0"
+    local unSupportedProductVersions7=("7.2.0 7.2.1")
+
+    if [[ "$(io_compareVersions "${productVersion}" "${maxProductVersion}")" -eq 0 || "$(io_compareVersions "${productVersion}" "${maxProductVersion}")" -eq 1 ]]; then
+        logger "Migration not necessary. ${PRODUCT} is already ${productVersion}"
+        exit 11
+    elif [[ "$(io_compareVersions "${productVersion}" "${minProductVersion}")" -eq 0 || "$(io_compareVersions "${productVersion}" "${minProductVersion}")" -eq 1 ]]; then
+        if [[ ("$(io_compareVersions "${productVersion}" "${productVersion618}")" -eq 0 || "$(io_compareVersions "${productVersion}" "${productVersion618}")" -eq 1) && " ${unSupportedProductVersions7[@]} " =~ " ${CURRENT_VERSION} " ]]; then
+            touch /tmp/error;
+            errorExit "Current ${PRODUCT} version (${productVersion}) does not support migration to ${CURRENT_VERSION}"
+        else
+            bannerStart "Detected ${PRODUCT} ${productVersion}, initiating migration"
+        fi
+    else
+        logger "Current ${PRODUCT} ${productVersion} version is not supported for migration"
+        exit 1
+    fi
+}
+
+getProductVersion () {
+    local minProductVersion="$1"
+    local maxProductVersion="$2"
+    local newfilePath="$3"
+    local oldfilePath="$4"
+    local propertyInDocker="$5"
+    local property="$6"
+    local productVersion=
+    local status=
+
+    if [[ "$INSTALLER" == "${COMPOSE_TYPE}" ]]; then
+        if [[ -f "${oldfilePath}" ]]; then
+            if [[ "${PRODUCT}" == "artifactory" ]]; then
+                productVersion="$(readKey "${property}" "${oldfilePath}")"
+            else
+                productVersion="$(cat "${oldfilePath}")"
+            fi
+            status="success"
+        elif [[ -f "${newfilePath}" ]]; then
+            productVersion="$(readKey "${propertyInDocker}" "${newfilePath}")"
+            status="fail"
+        else
+            logger "File [${oldfilePath}] or [${newfilePath}] not found to get current version."
+            exit 0
+        fi
+    elif [[ "$INSTALLER" == "${HELM_TYPE}" ]]; then
+        if [[ -f "${oldfilePath}" ]]; then
+            if [[ "${PRODUCT}" == "artifactory" ]]; then
+                productVersion="$(readKey "${property}" "${oldfilePath}")"
+            else
+                productVersion="$(cat "${oldfilePath}")"
+            fi
+            status="success"
+        else
+            productVersion="${CURRENT_VERSION}"
+            [[ -z "${productVersion}" || "${productVersion}" == "" ]] && logger "${PRODUCT} CURRENT_VERSION is not set" && exit 0
+        fi
+    else
+        if [[ -f "${newfilePath}" ]]; then
+            productVersion="$(readKey "${property}" "${newfilePath}")"
+            status="fail"
+        elif [[ -f "${oldfilePath}" ]]; then
+            productVersion="$(readKey "${property}" "${oldfilePath}")"
+            status="success"
+        else
+            if [[ "${INSTALLER}" == "${ZIP_TYPE}" ]]; then
+                logger "File [${newfilePath}] not found to get current version."
+            else
+                logger "File [${oldfilePath}] or [${newfilePath}] not found to get current version."
+            fi
+            exit 0
+        fi
+    fi
+    if [[ -z "${productVersion}" || "${productVersion}" == "" ]]; then
+        [[ "${status}" == "success" ]] && logger "No version found in file [${oldfilePath}]."
+        [[ "${status}" == "fail" ]] && logger "No version found in file [${newfilePath}]."
+        exit 0
+    fi
+
+    migrateCheckVersion "${productVersion}" "${minProductVersion}" "${maxProductVersion}"
+}
+
+readKey () {
+    local property="$1"
+    local file="$2"
+    local version=
+
+    while IFS='=' read -r key value || [ -n "${key}" ];
+    do
+        [[ ! "${key}" =~ \#.* && ! -z "${key}" && ! -z "${value}" ]]
+        key="$(io_trim "${key}")"
+        if [[ "${key}" == "${property}" ]]; then
+            version="${value}" && check=true && break
+        else
+            check=false
+        fi
+    done < "${file}"
+    if [[ "${check}" == "false" ]]; then
+        return
+    fi
+    echo "${version}"
+}
+
+# create Log directory
+createLogDir () {
+    if [[ "${INSTALLER}" == "${DEB_TYPE}" || "${INSTALLER}" == "${RPM_TYPE}" ]]; then
+        getUserAndGroupFromFile
+        removeSoftLinkAndCreateDir "${NEW_DATA_DIR}/log" "${USER_TO_CHECK}" "${GROUP_TO_CHECK}"
+    fi
+}
+
+# Creating migration log file
+creationMigrateLog () {
+    local LOG_FILE_NAME="migration.log"
+    createLogDir
+    local MIGRATION_LOG_FILE="${NEW_DATA_DIR}/log/${LOG_FILE_NAME}"
+    if [[ "${INSTALLER}" == "${COMPOSE_TYPE}" || "${INSTALLER}" == "${HELM_TYPE}" ]]; then
+        MIGRATION_LOG_FILE="${SCRIPT_HOME}/${LOG_FILE_NAME}"
+    fi
+    touch "${MIGRATION_LOG_FILE}"
+    setFilePermission "${LOG_FILE_PERMISSION}" "${MIGRATION_LOG_FILE}"
+    exec &> >(tee -a "${MIGRATION_LOG_FILE}")   
+}
+# Set path where system.yaml should create
+setSystemYamlPath () {
+    SYSTEM_YAML_PATH="${NEW_DATA_DIR}/etc/system.yaml"
+    if [[ "${INSTALLER}" != "${HELM_TYPE}" ]]; then
+        logger "system.yaml will be created in path [${SYSTEM_YAML_PATH}]"
+    fi
+}
+# Create directory
+createDirectory () {
+    local directory="$1"
+    local output="$2"
+    local check=false
+    local message="Could not create directory ${directory}, please check if the user ${USER} has permissions to perform this action"
+    removeSoftLink "${directory}"
+    mkdir -p "${directory}" && check=true || check=false
+    if [[ "${check}" == "false" ]]; then
+        if [[ "${output}" == "Warning" ]]; then
+            warn "${message}"
+        else
+            errorExit "${message}"
+        fi
+    fi
+    setOwnershipBasedOnInstaller "${directory}"
+}
+
+setOwnershipBasedOnInstaller () {
+    local directory="$1"
+    if [[ "${INSTALLER}" == "${DEB_TYPE}" || "${INSTALLER}" == "${RPM_TYPE}" ]]; then
+        getUserAndGroupFromFile
+        chown -R ${USER_TO_CHECK}:${GROUP_TO_CHECK} "${directory}" || warn "Setting ownership on $directory failed"
+    elif [[ "${INSTALLER}" == "${COMPOSE_TYPE}" || "${INSTALLER}" == "${HELM_TYPE}" ]]; then
+        io_setOwnership "${directory}" "${JF_USER}" "${JF_USER}"
+    fi
+}
+
+getUserAndGroup () {
+    local file="$1"
+    read uid gid <<<$(stat -c '%U %G' ${file})
+    USER_TO_CHECK="${uid}"
+    GROUP_TO_CHECK="${gid}"
+}
+    
+# set ownership
+getUserAndGroupFromFile () {
+    case $PRODUCT in
+        artifactory)
+            getUserAndGroup "/etc/opt/jfrog/artifactory/artifactory.properties"
+        ;;
+        distribution)
+            getUserAndGroup "${OLD_DATA_DIR}/etc/versions.properties"
+        ;;
+        xray)
+            getUserAndGroup "${OLD_DATA_DIR}/security/master.key"
+        ;;
+        esac
+} 
+
+# creating required directories
+createRequiredDirs () {
+    bannerSubSection "CREATING REQUIRED DIRECTORIES"
+    if [[ "${INSTALLER}" == "${COMPOSE_TYPE}" || "${INSTALLER}" == "${HELM_TYPE}"  ]]; then
+        removeSoftLinkAndCreateDir "${NEW_DATA_DIR}/etc/security" "${JF_USER}" "${JF_USER}" "yes"
+        removeSoftLinkAndCreateDir "${NEW_DATA_DIR}/data" "${JF_USER}" "${JF_USER}" "yes"
+        removeSoftLinkAndCreateDir "${NEW_DATA_DIR}/log/archived" "${JF_USER}" "${JF_USER}" "yes"
+        removeSoftLinkAndCreateDir "${NEW_DATA_DIR}/work" "${JF_USER}" "${JF_USER}" "yes"
+        removeSoftLinkAndCreateDir "${NEW_DATA_DIR}/backup" "${JF_USER}" "${JF_USER}" "yes"
+        io_setOwnership "${NEW_DATA_DIR}" "${JF_USER}" "${JF_USER}"
+        if [[ "${INSTALLER}" == "${COMPOSE_TYPE}" ]]; then
+            removeSoftLinkAndCreateDir "${NEW_DATA_DIR}/data/postgres" "${POSTGRES_USER}" "${POSTGRES_USER}" "yes"
+        fi
+    elif [[ "${INSTALLER}" == "${DEB_TYPE}" || "${INSTALLER}" == "${RPM_TYPE}" ]]; then
+        getUserAndGroupFromFile
+        removeSoftLinkAndCreateDir "${NEW_DATA_DIR}/etc" "${USER_TO_CHECK}" "${GROUP_TO_CHECK}" "yes"
+        removeSoftLinkAndCreateDir "${NEW_DATA_DIR}/etc/security" "${USER_TO_CHECK}" "${GROUP_TO_CHECK}" "yes"
+        removeSoftLinkAndCreateDir "${NEW_DATA_DIR}/data" "${USER_TO_CHECK}" "${GROUP_TO_CHECK}" "yes"
+        removeSoftLinkAndCreateDir "${NEW_DATA_DIR}/log/archived" "${USER_TO_CHECK}" "${GROUP_TO_CHECK}" "yes"
+        removeSoftLinkAndCreateDir "${NEW_DATA_DIR}/work" "${USER_TO_CHECK}" "${GROUP_TO_CHECK}" "yes"
+        removeSoftLinkAndCreateDir "${NEW_DATA_DIR}/backup" "${USER_TO_CHECK}" "${GROUP_TO_CHECK}" "yes"
+    fi
+}
+
+# Check entry in map is format
+checkMapEntry () {
+    local entry="$1"
+
+    [[ "${entry}" != *"="* ]] && echo -n "false" || echo -n "true"
+}
+# Check value Empty and warn
+warnIfEmpty () {
+    local filePath="$1"
+    local yamlPath="$2"
+    local check=
+
+    if [[ -z "${filePath}" ]]; then
+        warn "Empty value in yamlpath [${yamlPath} in [${MIGRATION_SYSTEM_YAML_INFO}]"
+        check=false
+    else
+        check=true
+    fi
+    echo "${check}"
+}
+
+logCopyStatus () {
+    local status="$1"
+    local logMessage="$2"
+    local warnMessage="$3"
+
+    [[ "${status}" == "success"  ]] && logger "${logMessage}"
+    [[ "${status}" == "fail" ]] && warn "${warnMessage}"
+}
+# copy contents from source to destination
+copyCmd () {
+    local source="$1"
+    local target="$2"
+    local mode="$3"
+    local status=
+    
+    case $mode in
+        unique)
+            cp -up "${source}"/* "${target}"/ && status="success" || status="fail"
+            logCopyStatus "${status}" "Successfully copied directory contents from [${source}] to [${target}]" "Failed to copy directory contents from [${source}] to [${target}]"
+        ;;
+        specific)
+            cp -pf "${source}" "${target}"/ && status="success" || status="fail"
+            logCopyStatus "${status}" "Successfully copied file [${source}] to [${target}]" "Failed to copy file [${source}] to [${target}]"
+        ;;
+        patternFiles)
+            cp -pf "${source}"* "${target}"/ && status="success" || status="fail"
+            logCopyStatus "${status}" "Successfully copied files matching [${source}*] to [${target}]" "Failed to copy files matching [${source}*] to [${target}]"
+        ;;
+        full)
+            cp -prf "${source}"/* "${target}"/ && status="success" || status="fail"
+            logCopyStatus "${status}" "Successfully copied directory contents from [${source}] to [${target}]" "Failed to copy directory contents from [${source}] to [${target}]"
+        ;;
+    esac
+}
+# Check contents exist in source before copying
+copyOnContentExist () {
+    local source="$1"
+    local target="$2"
+    local mode="$3"
+
+    if [[ "$(checkContentExists "${source}")" == "true" ]]; then
+        copyCmd "${source}" "${target}" "${mode}"
+    else
+        logger "No contents to copy from [${source}]"
+    fi
+}
+
+# move source to destination
+moveCmd () {
+    local source="$1"
+    local target="$2"
+    local status=
+    
+    mv -f "${source}" "${target}" && status="success" || status="fail"
+    [[ "${status}" == "success" ]] && logger "Successfully moved directory [${source}] to [${target}]"
+    [[ "${status}" == "fail" ]] && warn "Failed to move directory [${source}] to [${target}]"
+}
+
+# symlink target to source
+symlinkCmd () {
+    local source="$1"
+    local target="$2"
+    local symlinkSubDir="$3"
+    local check=false
+    
+    if [[ "${symlinkSubDir}" == "subDir" ]]; then
+        ln -sf "${source}"/* "${target}" && check=true || check=false
+    else
+        ln -sf "${source}" "${target}"   && check=true || check=false
+    fi
+    
+    [[ "${check}" == "true"  ]] && logger "Successfully symlinked directory [${target}] to old [${source}]"
+    [[ "${check}" == "false" ]] && warn "Symlink operation failed"
+}
+# Check contents exist in source before symlinking
+symlinkOnExist () {
+    local source="$1"
+    local target="$2"
+    local symlinkSubDir="$3"
+
+    if [[ "$(checkContentExists "${source}")" == "true" ]]; then
+        if [[ "${symlinkSubDir}" == "subDir" ]]; then
+            symlinkCmd "${source}" "${target}" "subDir"
+        else
+            symlinkCmd "${source}" "${target}"
+        fi
+    else
+        logger "No contents to symlink from [${source}]"
+    fi
+}
+
+prependDir () {
+    local absolutePath="$1"
+    local fullPath="$2"
+    local sourcePath=
+
+    if [[ "${absolutePath}" = \/* ]]; then
+        sourcePath="${absolutePath}"
+    else
+        sourcePath="${fullPath}"
+    fi
+    echo "${sourcePath}"
+}
+
+getFirstEntry (){
+    local entry="$1"
+
+    [[ -z "${entry}" ]] && return
+    echo "${entry}" | awk -F"=" '{print $1}'
+}
+
+getSecondEntry () {
+    local entry="$1"
+
+    [[ -z "${entry}" ]] && return
+    echo "${entry}" | awk -F"=" '{print $2}'
+}
+# To get absolutePath
+pathResolver () {
+    local directoryPath="$1"
+    local dataDir=
+
+    if [[ "${INSTALLER}" == "${COMPOSE_TYPE}" ||  "${INSTALLER}" == "${HELM_TYPE}" ]]; then
+        retrieveYamlValue "migration.oldDataDir" "oldDataDir" "Warning"
+        dataDir="${YAML_VALUE}"
+        cd "${dataDir}"
+    else
+        cd "${OLD_DATA_DIR}"
+    fi
+    absoluteDir="`cd "${directoryPath}";pwd`"
+    echo "${absoluteDir}"
+}
+
+checkPathResolver () {
+    local value="$1"
+
+    if [[ "${value}" == \/* ]]; then
+        value="${value}"
+    else
+        value="$(pathResolver "${value}")"
+    fi
+    echo "${value}"
+}
+
+propertyMigrate () {
+    local entry="$1"
+    local filePath="$2"
+    local fileName="$3"
+    local check=false
+
+    local yamlPath="$(getFirstEntry "${entry}")"
+    local property="$(getSecondEntry "${entry}")"
+    if [[ -z "${property}" ]]; then
+        warn "Property is empty in map [${entry}] in the file [${MIGRATION_SYSTEM_YAML_INFO}]"
+        return
+    fi
+    if [[ -z "${yamlPath}" ]]; then
+        warn "yamlPath is empty for [${property}] in [${MIGRATION_SYSTEM_YAML_INFO}]"
+        return
+    fi
+    local keyValues=$(cat "${NEW_DATA_DIR}/${filePath}/${fileName}" | grep "^[^#]" | grep "[*=*]")
+    for i in ${keyValues}; do
+        key=$(echo "${i}" | awk -F"=" '{print $1}')
+        value=$(echo "${i}" | cut -f 2- -d '=')
+        [ -z "${key}" ] && continue
+        [ -z "${value}" ] && continue
+        if [[ "${key}" == "${property}" ]]; then
+            if [[ "${PRODUCT}" == "artifactory" ]]; then
+                value="$(migrateResolveDerbyPath "${key}" "${value}")"
+                value="$(migrateResolveHaDirPath "${key}" "${value}")"
+                if [[ "${INSTALLER}" != "${DOCKER_TYPE}" ]]; then 
+                    value="$(updatePostgresUrlString_Hook "${yamlPath}" "${value}")"
+                fi
+            fi
+            if [[ "${key}" == "context.url" ]]; then
+                local ip=$(echo "${value}" | awk -F/ '{print $3}' | sed 's/:.*//')
+                setSystemValue "shared.node.ip" "${ip}" "${SYSTEM_YAML_PATH}"
+                logger "Setting [shared.node.ip] with [${ip}] in system.yaml"
+            fi
+            setSystemValue "${yamlPath}" "${value}" "${SYSTEM_YAML_PATH}" && logger "Setting [${yamlPath}] with value of the property [${property}] in system.yaml" && check=true && break || check=false
+        fi
+    done
+    [[ "${check}" == "false" ]] && logger "Property [${property}] not found in file [${fileName}]"
+}
+
+setHaEnabled_hook () {
+    echo ""
+}
+
+migratePropertiesFiles () {
+    local fileList=
+    local filePath=
+    local fileName=
+    local map=
+    
+    retrieveYamlValue "migration.propertyFiles.files" "fileList" "Skip"
+    fileList="${YAML_VALUE}"
+    if [[ -z "${fileList}" ]]; then
+        return
+    fi
+    bannerSection "PROCESSING MIGRATION OF PROPERTY FILES"
+    for file in ${fileList};
+    do
+        bannerSubSection "Processing Migration of $file"
+        retrieveYamlValue "migration.propertyFiles.$file.filePath" "filePath" "Warning"
+        filePath="${YAML_VALUE}"
+        retrieveYamlValue "migration.propertyFiles.$file.fileName" "fileName" "Warning"
+        fileName="${YAML_VALUE}"
+        [[ -z "${filePath}" && -z "${fileName}" ]] && continue
+        if [[ "$(checkFileExists "${NEW_DATA_DIR}/${filePath}/${fileName}")" == "true" ]]; then
+            logger "File [${fileName}] found in path [${NEW_DATA_DIR}/${filePath}]"
+            # setting haEnabled with true only if ha-node.properties is present
+            setHaEnabled_hook "${filePath}"
+            retrieveYamlValue "migration.propertyFiles.$file.map" "map" "Warning"
+            map="${YAML_VALUE}"
+            [[ -z "${map}" ]] && continue
+            for entry in $map;
+            do
+                if [[ "$(checkMapEntry "${entry}")" == "true" ]]; then
+                    propertyMigrate "${entry}" "${filePath}" "${fileName}"
+                else
+                    warn "map entry [${entry}] in [${MIGRATION_SYSTEM_YAML_INFO}] is not in correct format, correct format i.e yamlPath=property"
+                fi
+            done
+        else
+            logger "File [${fileName}] was not found in path [${NEW_DATA_DIR}/${filePath}] to migrate"
+        fi
+    done
+}
+
+createTargetDir () {
+    local mountDir="$1"
+    local target="$2"
+
+    logger "Target directory not found [${mountDir}/${target}], creating it"
+    createDirectoryRecursive "${mountDir}" "${target}" "Warning"
+}
+
+createDirectoryRecursive () {
+    local mountDir="$1"
+    local target="$2"
+    local output="$3"
+    local check=false
+    local message="Could not create directory ${directory}, please check if the user ${USER} has permissions to perform this action"
+    removeSoftLink "${mountDir}/${target}"
+    local directory=$(echo "${target}" | tr '/' ' ' )
+    local targetDir="${mountDir}"
+    for dir in ${directory}; 
+    do
+        targetDir="${targetDir}/${dir}"
+        mkdir -p "${targetDir}" && check=true || check=false
+        setOwnershipBasedOnInstaller "${targetDir}"
+    done
+    if [[ "${check}" == "false" ]]; then
+        if [[ "${output}" == "Warning" ]]; then
+            warn "${message}"
+        else
+            errorExit "${message}"
+        fi
+    fi
+}
+
+copyOperation () {
+    local source="$1"
+    local target="$2"
+    local mode="$3"
+    local check=false
+    local targetDataDir=
+    local targetLink=
+    local date=
+
+    # prepend OLD_DATA_DIR only if source is relative path
+    source="$(prependDir "${source}" "${OLD_DATA_DIR}/${source}")"
+    if [[ "${INSTALLER}" == "${HELM_TYPE}" ]]; then
+        targetDataDir="${NEW_DATA_DIR}"
+    else
+        targetDataDir="`cd "${NEW_DATA_DIR}"/../;pwd`"
+    fi
+    copyLogMessage "${mode}"
+    #remove source if it is a symlink
+    if [[ -L "${source}" ]]; then
+        targetLink=$(readlink -f "${source}")
+        logger "Removing the symlink [${source}] pointing to [${targetLink}]"
+        rm -f "${source}"
+        source=${targetLink}
+    fi
+    if [[ "$(checkDirExists "${source}")" != "true" ]]; then
+        logger "Source [${source}] directory not found in path"
+        return
+    fi
+    if [[ "$(checkDirContents "${source}")" != "true" ]]; then
+        logger "No contents to copy from [${source}]"
+        return
+    fi
+    if [[ "$(checkDirExists "${targetDataDir}/${target}")" != "true" ]]; then
+        createTargetDir "${targetDataDir}" "${target}"
+    fi
+    copyOnContentExist "${source}" "${targetDataDir}/${target}" "${mode}"
+}
+
+copySpecificFiles () {
+    local source="$1"
+    local target="$2"
+    local mode="$3"
+    
+    # prepend OLD_DATA_DIR only if source is relative path
+    source="$(prependDir "${source}" "${OLD_DATA_DIR}/${source}")"
+    if [[ "${INSTALLER}" == "${HELM_TYPE}" ]]; then
+        targetDataDir="${NEW_DATA_DIR}"
+    else
+        targetDataDir="`cd "${NEW_DATA_DIR}"/../;pwd`"
+    fi
+    copyLogMessage "${mode}"
+    if [[ "$(checkFileExists "${source}")" != "true" ]]; then
+        logger "Source file [${source}] does not exist in path"
+        return
+    fi
+    if [[ "$(checkDirExists "${targetDataDir}/${target}")" != "true" ]]; then
+        createTargetDir "${targetDataDir}" "${target}"
+    fi
+    copyCmd "${source}" "${targetDataDir}/${target}" "${mode}"
+}
+
+copyPatternMatchingFiles () {
+    local source="$1"
+    local target="$2"
+    local mode="$3"
+    local sourcePath="${4}"
+
+    # prepend OLD_DATA_DIR only if source is relative path
+    sourcePath="$(prependDir "${sourcePath}" "${OLD_DATA_DIR}/${sourcePath}")"
+    if [[ "${INSTALLER}" == "${HELM_TYPE}" ]]; then
+        targetDataDir="${NEW_DATA_DIR}"
+    else
+        targetDataDir="`cd "${NEW_DATA_DIR}"/../;pwd`"
+    fi
+    copyLogMessage "${mode}"
+    if [[ "$(checkDirExists "${sourcePath}")" != "true" ]]; then
+        logger "Source [${sourcePath}] directory not found in path"
+        return
+    fi
+    if ls "${sourcePath}/${source}"* 1> /dev/null 2>&1; then
+        if [[ "$(checkDirExists "${targetDataDir}/${target}")" != "true" ]]; then
+            createTargetDir "${targetDataDir}" "${target}"
+        fi
+        copyCmd "${sourcePath}/${source}" "${targetDataDir}/${target}" "${mode}"
+    else
+        logger "Source file [${sourcePath}/${source}*] does not exist in path"
+    fi
+}
+
+copyLogMessage () {
+    local mode="$1"
+    case $mode in
+        specific)
+            logger "Copy file [${source}] to target [${targetDataDir}/${target}]"
+        ;;
+        patternFiles)
+            logger "Copy files matching [${sourcePath}/${source}*] to target [${targetDataDir}/${target}]"
+        ;;
+        full)
+            logger "Copy directory contents from source [${source}] to target [${targetDataDir}/${target}]"
+        ;;
+        unique)
+            logger "Copy directory contents from source [${source}] to target [${targetDataDir}/${target}]"
+        ;;
+    esac
+}
+
+copyBannerMessages () {
+    local mode="$1"
+    local textMode="$2"
+    case $mode in
+        specific)
+            bannerSection "COPY ${textMode} FILES"
+        ;;
+        patternFiles)
+            bannerSection "COPY MATCHING ${textMode}"
+        ;;
+        full)
+            bannerSection "COPY ${textMode} DIRECTORIES CONTENTS"
+        ;;
+        unique)
+            bannerSection "COPY ${textMode} DIRECTORIES CONTENTS"
+        ;;
+    esac
+}
+
+invokeCopyFunctions () {
+    local mode="$1"
+    local source="$2"
+    local target="$3"
+
+    case $mode in
+        specific)
+            copySpecificFiles "${source}" "${target}" "${mode}"
+        ;;
+        patternFiles)
+            retrieveYamlValue "migration.${copyFormat}.sourcePath" "map" "Warning"
+            local sourcePath="${YAML_VALUE}"
+            copyPatternMatchingFiles "${source}" "${target}" "${mode}" "${sourcePath}"
+        ;;
+        full)
+            copyOperation "${source}" "${target}" "${mode}"
+        ;;
+        unique)
+            copyOperation "${source}" "${target}" "${mode}"
+        ;;
+    esac
+}
+# Copies contents from source directory and target directory
+copyDataDirectories () {
+    local copyFormat="$1"
+    local mode="$2"
+    local map=
+    local source=
+    local target=
+    local textMode=
+    local targetDataDir=
+    local copyFormatValue=
+
+    retrieveYamlValue "migration.${copyFormat}" "${copyFormat}" "Skip"
+    copyFormatValue="${YAML_VALUE}"
+    if [[ -z "${copyFormatValue}" ]]; then
+        return
+    fi
+    textMode=$(echo "${mode}" | tr '[:lower:]' '[:upper:]' 2>/dev/null)
+    copyBannerMessages "${mode}" "${textMode}"
+    retrieveYamlValue "migration.${copyFormat}.map" "map" "Warning"
+    map="${YAML_VALUE}"
+    if [[ "${INSTALLER}" == "${HELM_TYPE}" ]]; then
+        targetDataDir="${NEW_DATA_DIR}"
+    else
+        targetDataDir="`cd "${NEW_DATA_DIR}"/../;pwd`"
+    fi
+    for entry in $map;
+    do
+        if [[ "$(checkMapEntry "${entry}")" == "true" ]]; then
+            source="$(getSecondEntry "${entry}")"
+            target="$(getFirstEntry "${entry}")"
+            [[ -z "${source}" ]] && warn "source value is empty for [${entry}] in [${MIGRATION_SYSTEM_YAML_INFO}]" && continue
+            [[ -z "${target}" ]] && warn "target value is empty for [${entry}] in [${MIGRATION_SYSTEM_YAML_INFO}]" && continue
+            invokeCopyFunctions "${mode}" "${source}" "${target}"
+        else
+            warn "map entry [${entry}] in [${MIGRATION_SYSTEM_YAML_INFO}] is not in correct format, correct format i.e target=source"
+        fi
+        echo "";
+    done
+}
+
+invokeMoveFunctions () {
+    local source="$1"
+    local target="$2"
+    local sourceDataDir=
+    local targetBasename=
+    # prepend OLD_DATA_DIR only if source is relative path
+    sourceDataDir=$(prependDir "${source}" "${OLD_DATA_DIR}/${source}")
+    targetBasename=$(dirname "${target}")
+    logger "Moving directory source [${sourceDataDir}] to target [${NEW_DATA_DIR}/${target}]"
+    if [[ "$(checkDirExists "${sourceDataDir}")" != "true" ]]; then
+        logger "Directory [${sourceDataDir}] not found in path to move"
+        return
+    fi
+    if [[ "$(checkDirExists "${NEW_DATA_DIR}/${targetBasename}")" != "true" ]]; then
+        createTargetDir "${NEW_DATA_DIR}" "${targetBasename}"
+        moveCmd "${sourceDataDir}" "${NEW_DATA_DIR}/${target}"
+    else
+        moveCmd "${sourceDataDir}" "${NEW_DATA_DIR}/tempDir"
+        moveCmd "${NEW_DATA_DIR}/tempDir" "${NEW_DATA_DIR}/${target}"
+    fi
+}
+
+# Move source directory and target directory
+moveDirectories () {
+    local moveDataDirectories=
+    local map=
+    local source=
+    local target=
+
+    retrieveYamlValue "migration.moveDirectories" "moveDirectories" "Skip"
+    moveDirectories="${YAML_VALUE}"
+    if [[ -z "${moveDirectories}" ]]; then
+        return
+    fi
+    bannerSection "MOVE DIRECTORIES"
+    retrieveYamlValue "migration.moveDirectories.map" "map" "Warning"
+    map="${YAML_VALUE}"
+    for entry in $map;
+    do
+        if [[ "$(checkMapEntry "${entry}")" == "true" ]]; then
+            source="$(getSecondEntry "${entry}")"
+            target="$(getFirstEntry "${entry}")"
+            [[ -z "${source}" ]] && warn "source value is empty for [${entry}] in [${MIGRATION_SYSTEM_YAML_INFO}]" && continue
+            [[ -z "${target}" ]] && warn "target value is empty for [${entry}] in [${MIGRATION_SYSTEM_YAML_INFO}]" && continue
+            invokeMoveFunctions "${source}" "${target}"
+        else
+            warn "map entry [${entry}] in [${MIGRATION_SYSTEM_YAML_INFO}] is not in correct format, correct format i.e target=source"
+        fi
+    echo "";
+    done
+}
+
+# Trim masterKey if its generated using hex 32 
+trimMasterKey () {
+    local masterKeyDir=/opt/jfrog/artifactory/var/etc/security
+    local oldMasterKey=$(<${masterKeyDir}/master.key)
+    local oldMasterKey_Length=$(echo ${#oldMasterKey})
+    local newMasterKey=
+    if [[ ${oldMasterKey_Length} -gt 32 ]]; then
+        bannerSection "TRIM MASTERKEY"
+        newMasterKey=$(echo ${oldMasterKey:0:32})
+        cp ${masterKeyDir}/master.key ${masterKeyDir}/backup_master.key
+        logger "Original masterKey is backed up : ${masterKeyDir}/backup_master.key"
+        rm -rf ${masterKeyDir}/master.key
+        echo ${newMasterKey} > ${masterKeyDir}/master.key
+        logger "masterKey is trimmed : ${masterKeyDir}/master.key"
+    fi
+}
+
+copyDirectories () {
+
+    copyDataDirectories "copyFiles" "full"
+    copyDataDirectories "copyUniqueFiles" "unique"
+    copyDataDirectories "copySpecificFiles" "specific"
+    copyDataDirectories "copyPatternMatchingFiles" "patternFiles"
+}
+
+symlinkDir () {
+    local source="$1"
+    local target="$2"
+    local targetDir=
+    local basename=
+    local targetParentDir=
+    
+    targetDir="$(dirname "${target}")"
+    if [[ "${targetDir}" == "${source}" ]]; then
+        # symlink the sub directories
+        createDirectory "${NEW_DATA_DIR}/${target}" "Warning"
+        if [[ "$(checkDirExists "${NEW_DATA_DIR}/${target}")" == "true" ]]; then
+            symlinkOnExist "${OLD_DATA_DIR}/${source}" "${NEW_DATA_DIR}/${target}" "subDir"
+            basename="$(basename "${target}")"
+            cd "${NEW_DATA_DIR}/${target}" && rm -f "${basename}"
+        fi
+    else
+        targetParentDir="$(dirname "${NEW_DATA_DIR}/${target}")"
+        createDirectory "${targetParentDir}" "Warning"
+        if [[ "$(checkDirExists "${targetParentDir}")" == "true" ]]; then
+            symlinkOnExist "${OLD_DATA_DIR}/${source}" "${NEW_DATA_DIR}/${target}"
+        fi
+    fi
+}
+
+symlinkOperation () {
+    local source="$1"
+    local target="$2"
+    local check=false
+    local targetLink=
+    local date=
+    
+    #   Check if source is a link and do symlink
+    if [[ -L "${OLD_DATA_DIR}/${source}" ]]; then
+        targetLink=$(readlink -f "${OLD_DATA_DIR}/${source}")
+        symlinkOnExist "${targetLink}" "${NEW_DATA_DIR}/${target}"
+    else
+        #  check if source is directory and do symlink
+        if [[ "$(checkDirExists "${OLD_DATA_DIR}/${source}")" != "true" ]]; then
+            logger "Source [${source}] directory not found in path to symlink"
+            return
+        fi
+        if [[ "$(checkDirContents "${OLD_DATA_DIR}/${source}")" != "true" ]]; then
+            logger "No contents found in [${OLD_DATA_DIR}/${source}] to symlink"
+            return
+        fi
+        if [[ "$(checkDirExists "${NEW_DATA_DIR}/${target}")" != "true" ]]; then
+            logger "Target directory [${NEW_DATA_DIR}/${target}] does not exist to create symlink, creating it"
+            symlinkDir "${source}" "${target}"
+        else
+            rm -rf "${NEW_DATA_DIR}/${target}" && check=true || check=false
+            [[ "${check}" == "false" ]] && warn "Failed to remove contents in [${NEW_DATA_DIR}/${target}/]"
+            symlinkDir "${source}" "${target}"
+        fi
+    fi
+}
+# Creates a symlink path - Source directory to which the symbolic link should point.
+symlinkDirectories () {
+    local linkFiles=
+    local map=
+    local source=
+    local target=
+
+    retrieveYamlValue "migration.linkFiles" "linkFiles" "Skip"
+    linkFiles="${YAML_VALUE}"
+    if [[ -z "${linkFiles}" ]]; then
+        return
+    fi
+    bannerSection "SYMLINK DIRECTORIES"
+    retrieveYamlValue "migration.linkFiles.map" "map" "Warning"
+    map="${YAML_VALUE}"
+    for entry in $map;
+    do
+        if [[ "$(checkMapEntry "${entry}")" == "true" ]]; then
+            source="$(getSecondEntry "${entry}")"
+            target="$(getFirstEntry "${entry}")"
+            logger "Symlink directory [${NEW_DATA_DIR}/${target}] to old [${OLD_DATA_DIR}/${source}]"
+            [[ -z "${source}" ]] && warn "source value is empty for [${entry}] in [${MIGRATION_SYSTEM_YAML_INFO}]" && continue
+            [[ -z "${target}" ]] && warn "target value is empty for [${entry}] in [${MIGRATION_SYSTEM_YAML_INFO}]" && continue
+            symlinkOperation "${source}" "${target}"
+        else
+            warn "map entry [${entry}] in [${MIGRATION_SYSTEM_YAML_INFO}] is not in correct format, correct format i.e target=source"
+        fi
+        echo "";
+    done
+}
+
+updateConnectionString () {
+    local yamlPath="$1"
+    local value="$2"
+    local mongoPath="shared.mongo.url"
+    local rabbitmqPath="shared.rabbitMq.url"
+    local postgresPath="shared.database.url"
+    local redisPath="shared.redis.connectionString"
+    local mongoConnectionString="mongo.connectionString"
+    local sourceKey=
+    local hostIp=$(io_getPublicHostIP)
+    local hostKey=
+    
+    if [[ "${INSTALLER}" == "${COMPOSE_TYPE}" || "${INSTALLER}" == "${HELM_TYPE}" ]]; then 
+    # Replace @postgres:,@mongodb:,@rabbitmq:,@redis: to @{hostIp}: (Compose Installer)
+        hostKey="@${hostIp}:"
+        case $yamlPath in
+            ${postgresPath})
+                sourceKey="@postgres:"
+                value=$(io_replaceString "${value}" "${sourceKey}" "${hostKey}")
+            ;;
+            ${mongoPath})
+                sourceKey="@mongodb:"
+                value=$(io_replaceString "${value}" "${sourceKey}" "${hostKey}")
+            ;;
+            ${rabbitmqPath})
+                sourceKey="@rabbitmq:"
+                value=$(io_replaceString "${value}" "${sourceKey}" "${hostKey}")
+            ;;
+            ${redisPath})
+                sourceKey="@redis:"
+                value=$(io_replaceString "${value}" "${sourceKey}" "${hostKey}")
+            ;;
+            ${mongoConnectionString})
+                sourceKey="@mongodb:"
+                value=$(io_replaceString "${value}" "${sourceKey}" "${hostKey}")
+            ;;
+        esac
+    fi
+    echo -n "${value}"
+}
+
+yamlMigrate () {
+    local entry="$1"
+    local sourceFile="$2"
+    local value=
+    local yamlPath=
+    local key=
+    yamlPath="$(getFirstEntry "${entry}")"
+    key="$(getSecondEntry "${entry}")"
+    if [[ -z "${key}" ]]; then
+        warn "key is empty in map [${entry}] in the file [${MIGRATION_SYSTEM_YAML_INFO}]"
+        return
+    fi
+    if [[ -z "${yamlPath}" ]]; then
+        warn "yamlPath is empty for [${key}] in [${MIGRATION_SYSTEM_YAML_INFO}]"
+        return
+    fi
+    getYamlValue "${key}" "${sourceFile}" "false"
+    value="${YAML_VALUE}"
+    if [[ ! -z "${value}" ]]; then
+        value=$(updateConnectionString "${yamlPath}" "${value}")
+    fi
+    if [[ -z "${value}" ]]; then
+        logger "No value for [${key}] in [${sourceFile}]"
+    else
+        setSystemValue "${yamlPath}" "${value}" "${SYSTEM_YAML_PATH}"
+        logger "Setting [${yamlPath}] with value of the key [${key}] in system.yaml"
+    fi
+}
+
+migrateYamlFile () {
+    local files=
+    local filePath=
+    local fileName=
+    local sourceFile=
+    local map=
+    retrieveYamlValue "migration.yaml.files" "files" "Skip"
+    files="${YAML_VALUE}"
+    if [[ -z "${files}" ]]; then
+        return
+    fi
+    bannerSection "MIGRATION OF YAML FILES"
+    for file in $files;
+    do
+        bannerSubSection "Processing Migration of $file"
+        retrieveYamlValue "migration.yaml.$file.filePath" "filePath" "Warning"
+        filePath="${YAML_VALUE}"
+        retrieveYamlValue "migration.yaml.$file.fileName" "fileName" "Warning"
+        fileName="${YAML_VALUE}"
+        [[ -z "${filePath}" && -z "${fileName}" ]] && continue
+        sourceFile="${NEW_DATA_DIR}/${filePath}/${fileName}"
+        if [[ "$(checkFileExists "${sourceFile}")" == "true" ]]; then
+            logger "File [${fileName}] found in path [${NEW_DATA_DIR}/${filePath}]"
+            retrieveYamlValue "migration.yaml.$file.map" "map" "Warning"
+            map="${YAML_VALUE}"
+            [[ -z "${map}" ]] && continue
+            for entry in $map;
+            do
+                if [[ "$(checkMapEntry "${entry}")" == "true" ]]; then
+                    yamlMigrate "${entry}" "${sourceFile}"
+                else
+                    warn "map entry [${entry}] in [${MIGRATION_SYSTEM_YAML_INFO}] is not in correct format, correct format i.e yamlPath=key"
+                fi
+            done
+        else
+            logger "File [${fileName}] is not found in path [${NEW_DATA_DIR}/${filePath}] to migrate"
+        fi
+    done
+}
+# updates the key and value in system.yaml
+updateYamlKeyValue () {
+    local entry="$1"
+    local value=
+    local yamlPath=
+    local key=
+
+    yamlPath="$(getFirstEntry "${entry}")"
+    value="$(getSecondEntry "${entry}")"
+    if [[ -z "${value}" ]]; then
+        warn "value is empty in map [${entry}] in the file [${MIGRATION_SYSTEM_YAML_INFO}]"
+        return
+    fi
+    if [[ -z "${yamlPath}" ]]; then
+        warn "yamlPath is empty for [${key}] in [${MIGRATION_SYSTEM_YAML_INFO}]"
+        return
+    fi
+    setSystemValue "${yamlPath}" "${value}" "${SYSTEM_YAML_PATH}"
+    logger "Setting [${yamlPath}] with value [${value}] in system.yaml"
+}
+
+updateSystemYamlFile () {
+    local updateYaml=
+    local map=
+
+    retrieveYamlValue "migration.updateSystemYaml" "updateYaml" "Skip"
+    updateSystemYaml="${YAML_VALUE}"
+    if [[ -z "${updateSystemYaml}" ]]; then
+        return
+    fi
+    bannerSection "UPDATE SYSTEM YAML FILE WITH KEY AND VALUES"
+    retrieveYamlValue "migration.updateSystemYaml.map" "map" "Warning"
+    map="${YAML_VALUE}"
+    if [[ -z "${map}" ]]; then
+        return
+    fi
+    for entry in $map;
+    do
+        if [[ "$(checkMapEntry "${entry}")" == "true" ]]; then
+            updateYamlKeyValue "${entry}"
+        else
+            warn "map entry [${entry}] in [${MIGRATION_SYSTEM_YAML_INFO}] is not in correct format, correct format i.e yamlPath=key"
+        fi
+    done
+}
+
+backupFiles_hook () {
+    logSilly "Method ${FUNCNAME[0]}"
+}
+
+backupDirectory () {
+    local backupDir="$1"
+    local dir="$2"
+    local targetDir="$3"
+    local effectiveUser=
+    local effectiveGroup=
+
+    if [[ "${dir}" = \/* ]]; then
+        dir=$(echo "${dir/\//}")
+    fi
+            
+    if [[ "${INSTALLER}" == "${COMPOSE_TYPE}" || "${INSTALLER}" == "${HELM_TYPE}" ]]; then 
+        effectiveUser="${JF_USER}"
+        effectiveGroup="${JF_USER}"
+    elif [[ "${INSTALLER}" == "${DEB_TYPE}" || "${INSTALLER}" == "${RPM_TYPE}" ]]; then
+        effectiveUser="${USER_TO_CHECK}" 
+        effectiveGroup="${GROUP_TO_CHECK}"
+    fi
+    
+    removeSoftLinkAndCreateDir "${backupDir}" "${effectiveUser}" "${effectiveGroup}" "yes"
+    local backupDirectory="${backupDir}/${PRODUCT}"
+    removeSoftLinkAndCreateDir "${backupDirectory}" "${effectiveUser}" "${effectiveGroup}" "yes"
+    removeSoftLinkAndCreateDir "${backupDirectory}/${dir}" "${effectiveUser}" "${effectiveGroup}" "yes"
+    local outputCheckDirExists="$(checkDirExists "${backupDirectory}/${dir}")"
+    if [[ "${outputCheckDirExists}" == "true" ]]; then
+        copyOnContentExist "${targetDir}" "${backupDirectory}/${dir}" "full"
+    fi
+}
+
+removeOldDirectory () {
+    local backupDir="$1"
+    local entry="$2"
+    local check=false
+    
+    # prepend OLD_DATA_DIR only if entry is relative path
+    local targetDir="$(prependDir "${entry}" "${OLD_DATA_DIR}/${entry}")"
+    local outputCheckDirExists="$(checkDirExists "${targetDir}")"
+    if [[ "${outputCheckDirExists}" != "true" ]]; then
+        logger "No [${targetDir}] directory found to delete"
+        echo "";
+        return
+    fi
+    backupDirectory "${backupDir}" "${entry}" "${targetDir}"
+    rm -rf  "${targetDir}" && check=true || check=false
+    [[ "${check}" == "true"  ]] && logger "Successfully removed directory [${targetDir}]"
+    [[ "${check}" == "false" ]] && warn "Failed to remove directory [${targetDir}]"
+    echo "";
+}
+
+cleanUpOldDataDirectories () {
+    local cleanUpOldDataDir=
+    local map=
+    local entry=
+
+    retrieveYamlValue "migration.cleanUpOldDataDir" "cleanUpOldDataDir" "Skip"
+    cleanUpOldDataDir="${YAML_VALUE}"
+    if [[ -z "${cleanUpOldDataDir}" ]]; then
+        return
+    fi
+    bannerSection "CLEAN UP OLD DATA DIRECTORIES"
+    retrieveYamlValue "migration.cleanUpOldDataDir.map" "map" "Warning"
+    map="${YAML_VALUE}"
+    [[ -z "${map}" ]] && continue
+    date="$(date +%Y%m%d%H%M)"
+    backupDir="${NEW_DATA_DIR}/backup/backup-${date}"
+    bannerImportant "****** Old data configurations are backedup in [${backupDir}] directory ******"
+    backupFiles_hook "${backupDir}/${PRODUCT}"
+    for entry in $map;
+    do
+        removeOldDirectory "${backupDir}" "${entry}"
+    done
+}
+
+backupFiles () {
+    local backupDir="$1"
+    local dir="$2"
+    local targetDir="$3"
+    local fileName="$4"
+    local effectiveUser=
+    local effectiveGroup=
+
+    if [[ "${dir}" = \/* ]]; then
+        dir=$(echo "${dir/\//}")
+    fi
+            
+    if [[ "${INSTALLER}" == "${COMPOSE_TYPE}" || "${INSTALLER}" == "${HELM_TYPE}" ]]; then 
+        effectiveUser="${JF_USER}"
+        effectiveGroup="${JF_USER}"
+    elif [[ "${INSTALLER}" == "${DEB_TYPE}" || "${INSTALLER}" == "${RPM_TYPE}" ]]; then
+        effectiveUser="${USER_TO_CHECK}" 
+        effectiveGroup="${GROUP_TO_CHECK}"
+    fi
+
+    removeSoftLinkAndCreateDir "${backupDir}" "${effectiveUser}" "${effectiveGroup}" "yes"
+    local backupDirectory="${backupDir}/${PRODUCT}"
+    removeSoftLinkAndCreateDir "${backupDirectory}" "${effectiveUser}" "${effectiveGroup}" "yes"
+    removeSoftLinkAndCreateDir "${backupDirectory}/${dir}" "${effectiveUser}" "${effectiveGroup}" "yes"
+    local outputCheckDirExists="$(checkDirExists "${backupDirectory}/${dir}")"
+    if [[ "${outputCheckDirExists}" == "true" ]]; then
+        copyCmd "${targetDir}/${fileName}" "${backupDirectory}/${dir}" "specific"
+    fi
+}
+
+removeOldFiles () {
+    local backupDir="$1"
+    local directoryName="$2"
+    local fileName="$3"
+    local check=false
+    
+    # prepend OLD_DATA_DIR only if entry is relative path
+    local targetDir="$(prependDir "${directoryName}" "${OLD_DATA_DIR}/${directoryName}")"
+    local outputCheckFileExists="$(checkFileExists "${targetDir}/${fileName}")"
+    if [[ "${outputCheckFileExists}" != "true" ]]; then
+        logger "No [${targetDir}/${fileName}] file found to delete"
+        return
+    fi
+    backupFiles "${backupDir}" "${directoryName}" "${targetDir}" "${fileName}"
+    rm -f  "${targetDir}/${fileName}" && check=true || check=false
+    [[ "${check}" == "true"  ]] && logger "Successfully removed file [${targetDir}/${fileName}]"
+    [[ "${check}" == "false" ]] && warn "Failed to remove file [${targetDir}/${fileName}]"
+    echo "";
+}
+
+cleanUpOldFiles () {
+    local cleanUpFiles=
+    local map=
+    local entry=
+
+    retrieveYamlValue "migration.cleanUpOldFiles" "cleanUpOldFiles" "Skip"
+    cleanUpOldFiles="${YAML_VALUE}"
+    if [[ -z "${cleanUpOldFiles}" ]]; then
+        return
+    fi
+    bannerSection "CLEAN UP OLD FILES"
+    retrieveYamlValue "migration.cleanUpOldFiles.map" "map" "Warning"
+    map="${YAML_VALUE}"
+    [[ -z "${map}" ]] && continue
+    date="$(date +%Y%m%d%H%M)"
+    backupDir="${NEW_DATA_DIR}/backup/backup-${date}"
+    bannerImportant "****** Old files are backedup in [${backupDir}] directory ******"
+    for entry in $map;
+    do  
+        local outputCheckMapEntry="$(checkMapEntry "${entry}")"
+        if [[ "${outputCheckMapEntry}" != "true" ]]; then
+            warn "map entry [${entry}] in [${MIGRATION_SYSTEM_YAML_INFO}] is not in correct format, correct format i.e directoryName=fileName"
+        fi
+        local fileName="$(getSecondEntry "${entry}")"
+        local directoryName="$(getFirstEntry "${entry}")"
+        [[ -z "${fileName}" ]] && warn "File name value is empty for [${entry}] in [${MIGRATION_SYSTEM_YAML_INFO}]" && continue
+        [[ -z "${directoryName}" ]] && warn "Directory name value is empty for [${entry}] in [${MIGRATION_SYSTEM_YAML_INFO}]" && continue
+        removeOldFiles "${backupDir}" "${directoryName}" "${fileName}"
+        echo "";
+    done 
+}
+
+startMigration () {
+    bannerSection "STARTING MIGRATION"
+}
+
+endMigration () {
+    bannerSection "MIGRATION COMPLETED SUCCESSFULLY"
+}
+
+initialize () {
+    setAppDir
+    _pauseExecution "setAppDir"
+    initHelpers
+    _pauseExecution "initHelpers"
+    checkMigrationInfoYaml
+    _pauseExecution "checkMigrationInfoYaml"
+    getProduct
+    _pauseExecution "getProduct"
+    getDataDir
+    _pauseExecution "getDataDir"
+}
+
+main () {
+    case $PRODUCT in
+        artifactory)
+            migrateArtifactory
+        ;;
+        distribution)
+            migrateDistribution
+        ;;
+        xray)
+            migrationXray
+        ;;
+    esac
+    exit 0
+}
+
+# Ensures meta data is logged
+LOG_BEHAVIOR_ADD_META="$FLAG_Y"
+
+
+migrateResolveDerbyPath () {
+    local key="$1"
+    local value="$2"
+
+    if [[ "${key}" == "url" && "${value}" == *"db.home"* ]]; then
+        if [[ "${INSTALLER}" == "${COMPOSE_TYPE}" ]]; then
+            derbyPath="/opt/jfrog/artifactory/var/data/artifactory/derby"
+            value=$(echo "${value}" | sed "s|{db.home}|$derbyPath|")
+        else
+            derbyPath="${NEW_DATA_DIR}/data/artifactory/derby"
+            value=$(echo "${value}" | sed "s|{db.home}|$derbyPath|")
+        fi
+    fi
+    echo "${value}"
+}
+
+migrateResolveHaDirPath () {
+    local key="$1"
+    local value="$2"
+
+    if [[ "${INSTALLER}" == "${RPM_TYPE}" || "${INSTALLER}" == "${COMPOSE_TYPE}" || "${INSTALLER}" == "${HELM_TYPE}" || "${INSTALLER}" == "${DEB_TYPE}" ]]; then
+        if [[ "${key}" == "artifactory.ha.data.dir" || "${key}" == "artifactory.ha.backup.dir" ]]; then
+            value=$(checkPathResolver "${value}")
+        fi
+    fi
+    echo "${value}"
+}
+updatePostgresUrlString_Hook () {
+    local yamlPath="$1"
+    local value="$2"
+    local hostIp=$(io_getPublicHostIP)
+    local sourceKey="//postgresql:"
+    if [[ "${yamlPath}" == "shared.database.url" ]]; then
+        value=$(io_replaceString "${value}" "${sourceKey}" "//${hostIp}:" "#")
+    fi
+    echo "${value}"
+}
+# Check Artifactory product version
+checkArtifactoryVersion () {
+    local minProductVersion="6.0.0"
+    local maxProductVersion="7.0.0"
+    local propertyInDocker="ARTIFACTORY_VERSION"
+    local property="artifactory.version"
+    
+    if [[ "${INSTALLER}" ==  "${COMPOSE_TYPE}" ]]; then
+        local newfilePath="${APP_DIR}/../.env"
+        local oldfilePath="${OLD_DATA_DIR}/etc/artifactory.properties"
+    elif [[ "${INSTALLER}" ==  "${HELM_TYPE}" ]]; then
+        local oldfilePath="${OLD_DATA_DIR}/etc/artifactory.properties"
+    elif [[ "${INSTALLER}" ==  "${ZIP_TYPE}" ]]; then
+        local newfilePath="${NEW_DATA_DIR}/etc/artifactory/artifactory.properties"
+        local oldfilePath="${OLD_DATA_DIR}/etc/artifactory.properties"
+    else
+        local newfilePath="${NEW_DATA_DIR}/etc/artifactory/artifactory.properties"
+        local oldfilePath="/etc/opt/jfrog/artifactory/artifactory.properties"
+    fi
+
+    getProductVersion "${minProductVersion}" "${maxProductVersion}" "${newfilePath}" "${oldfilePath}" "${propertyInDocker}" "${property}"
+}
+
+getCustomDataDir_hook () {
+    retrieveYamlValue "migration.oldDataDir" "oldDataDir" "Fail"
+    OLD_DATA_DIR="${YAML_VALUE}"
+}
+
+# Get protocol value of connector
+getXmlConnectorProtocol () {
+    local i="$1"
+    local filePath="$2"
+    local fileName="$3"
+    local protocolValue=$($LIBXML2_PATH --xpath '//Server/Service/Connector['$i']/@protocol' ${filePath}/${fileName} 2>/dev/null |awk -F"=" '{print $2}' | tr -d '"')
+    echo -e "${protocolValue}"
+}
+
+# Get all attributes of connector
+getXmlConnectorAttributes () {
+    local i="$1"
+    local filePath="$2"
+    local fileName="$3"
+    local connectorAttributes=$($LIBXML2_PATH --xpath '//Server/Service/Connector['$i']/@*' ${filePath}/${fileName} 2>/dev/null)
+    # strip leading and trailing spaces
+    connectorAttributes=$(io_trim "${connectorAttributes}")
+    echo "${connectorAttributes}"
+}
+
+# Get port value of connector
+getXmlConnectorPort () {
+    local i="$1"
+    local filePath="$2"
+    local fileName="$3"
+    local portValue=$($LIBXML2_PATH --xpath '//Server/Service/Connector['$i']/@port' ${filePath}/${fileName} 2>/dev/null | awk -F"=" '{print $2}' | tr -d '"')
+    echo -e "${portValue}"
+}
+
+# Get maxThreads value of connector
+getXmlConnectorMaxThreads () {
+    local i="$1"
+    local filePath="$2"
+    local fileName="$3"
+    local maxThreadValue=$($LIBXML2_PATH --xpath '//Server/Service/Connector['$i']/@maxThreads' ${filePath}/${fileName} 2>/dev/null | awk -F"=" '{print $2}' | tr -d '"')
+    echo -e "${maxThreadValue}"
+}
+# Get sendReasonPhrase value of connector
+getXmlConnectorSendReasonPhrase () {
+    local i="$1"
+    local filePath="$2"
+    local fileName="$3"
+    local sendReasonPhraseValue=$($LIBXML2_PATH --xpath '//Server/Service/Connector['$i']/@sendReasonPhrase' ${filePath}/${fileName} 2>/dev/null | awk -F"=" '{print $2}' | tr -d '"')
+    echo -e "${sendReasonPhraseValue}"
+}
+# Get relaxedPathChars value of connector
+getXmlConnectorRelaxedPathChars () {
+    local i="$1"
+    local filePath="$2"
+    local fileName="$3"
+    local relaxedPathCharsValue=$($LIBXML2_PATH --xpath '//Server/Service/Connector['$i']/@relaxedPathChars' ${filePath}/${fileName} 2>/dev/null | awk -F"=" '{print $2}' | tr -d '"')
+    # strip leading and trailing spaces
+    relaxedPathCharsValue=$(io_trim "${relaxedPathCharsValue}")
+    echo -e "${relaxedPathCharsValue}"
+}
+# Get relaxedQueryChars value of connector
+getXmlConnectorRelaxedQueryChars () {
+    local i="$1"
+    local filePath="$2"
+    local fileName="$3"
+    local relaxedQueryCharsValue=$($LIBXML2_PATH --xpath '//Server/Service/Connector['$i']/@relaxedQueryChars' ${filePath}/${fileName} 2>/dev/null | awk -F"=" '{print $2}' | tr -d '"')
+    # strip leading and trailing spaces
+    relaxedQueryCharsValue=$(io_trim "${relaxedQueryCharsValue}")
+    echo -e "${relaxedQueryCharsValue}"
+}
+
+# Updating system.yaml with Connector port 
+setConnectorPort () {
+    local yamlPath="$1"
+    local valuePort="$2"
+    local portYamlPath=
+    if [[ -z "${yamlPath}" ]]; then
+        return
+    fi
+    if [[ -z "${valuePort}" ]]; then
+        warn "port value is empty, could not migrate to system.yaml"
+        return
+    fi
+    ## Getting port yaml path from migration info yaml
+    retrieveYamlValue "${yamlPath}" portYamlPath "Warning"
+    portYamlPath="${YAML_VALUE}"
+    if [[ -z "${portYamlPath}" ]]; then
+        return
+    fi
+    setSystemValue "${portYamlPath}" "${valuePort}" "${SYSTEM_YAML_PATH}"
+    logger "Setting [${portYamlPath}] with value [${valuePort}] in system.yaml"
+}
+
+# Updating system.yaml with Connector maxThreads
+setConnectorMaxThread () {
+    local yamlPath="$1"
+    local threadValue="$2"
+    local maxThreadYamlPath=
+    if [[ -z "${yamlPath}" ]]; then
+        return
+    fi
+    if [[ -z  "${threadValue}" ]]; then
+        return
+    fi
+    ## Getting max Threads yaml path from migration info yaml
+    retrieveYamlValue "${yamlPath}" maxThreadYamlPath "Warning"
+    maxThreadYamlPath="${YAML_VALUE}"
+    if [[ -z "${maxThreadYamlPath}" ]]; then
+        return
+    fi
+    setSystemValue "${maxThreadYamlPath}" "${threadValue}" "${SYSTEM_YAML_PATH}"
+    logger "Setting [${maxThreadYamlPath}] with value [${threadValue}] in system.yaml"
+}
+
+# Updating system.yaml with Connector sendReasonPhrase
+setConnectorSendReasonPhrase () {
+    local yamlPath="$1"
+    local sendReasonPhraseValue="$2"
+    local sendReasonPhraseYamlPath=
+    if [[ -z "${yamlPath}" ]]; then
+        return
+    fi
+    if [[ -z  "${sendReasonPhraseValue}" ]]; then
+        return
+    fi
+    ## Getting sendReasonPhrase yaml path from migration info yaml
+    retrieveYamlValue "${yamlPath}" sendReasonPhraseYamlPath "Warning"
+    sendReasonPhraseYamlPath="${YAML_VALUE}"
+    if [[ -z "${sendReasonPhraseYamlPath}" ]]; then
+        return
+    fi
+    setSystemValue "${sendReasonPhraseYamlPath}" "${sendReasonPhraseValue}" "${SYSTEM_YAML_PATH}"
+    logger "Setting [${sendReasonPhraseYamlPath}] with value [${sendReasonPhraseValue}] in system.yaml"
+}
+
+# Updating system.yaml with Connector relaxedPathChars
+setConnectorRelaxedPathChars () {
+    local yamlPath="$1"
+    local relaxedPathCharsValue="$2"
+    local relaxedPathCharsYamlPath=
+    if [[ -z "${yamlPath}" ]]; then
+        return
+    fi
+    if [[ -z  "${relaxedPathCharsValue}" ]]; then
+        return
+    fi
+    ## Getting relaxedPathChars yaml path from migration info yaml
+    retrieveYamlValue "${yamlPath}" relaxedPathCharsYamlPath "Warning"
+    relaxedPathCharsYamlPath="${YAML_VALUE}"
+    if [[ -z "${relaxedPathCharsYamlPath}" ]]; then
+        return
+    fi
+    setSystemValue "${relaxedPathCharsYamlPath}" "${relaxedPathCharsValue}" "${SYSTEM_YAML_PATH}"
+    logger "Setting [${relaxedPathCharsYamlPath}] with value [${relaxedPathCharsValue}] in system.yaml"
+}
+
+# Updating system.yaml with Connector relaxedQueryChars
+setConnectorRelaxedQueryChars () {
+    local yamlPath="$1"
+    local relaxedQueryCharsValue="$2"
+    local relaxedQueryCharsYamlPath=
+    if [[ -z "${yamlPath}" ]]; then
+        return
+    fi
+    if [[ -z  "${relaxedQueryCharsValue}" ]]; then
+        return
+    fi
+    ## Getting relaxedQueryChars yaml path from migration info yaml
+    retrieveYamlValue "${yamlPath}" relaxedQueryCharsYamlPath "Warning"
+    relaxedQueryCharsYamlPath="${YAML_VALUE}"
+    if [[ -z "${relaxedQueryCharsYamlPath}" ]]; then
+        return
+    fi
+    setSystemValue "${relaxedQueryCharsYamlPath}" "${relaxedQueryCharsValue}" "${SYSTEM_YAML_PATH}"
+    logger "Setting [${relaxedQueryCharsYamlPath}] with value [${relaxedQueryCharsValue}] in system.yaml"
+}
+
+# Updating system.yaml with Connectors configurations
+setConnectorExtraConfig () {
+    local yamlPath="$1"
+    local connectorAttributes="$2"
+    local extraConfigPath=
+    if [[ -z "${yamlPath}" ]]; then
+        return
+    fi
+    if [[ -z "${connectorAttributes}" ]]; then
+        return
+    fi
+    ## Getting extraConfig yaml path from migration info yaml
+    retrieveYamlValue "${yamlPath}" extraConfig "Warning"
+    extraConfigPath="${YAML_VALUE}"
+    if [[ -z "${extraConfigPath}" ]]; then
+        return
+    fi
+    # strip leading and trailing spaces
+    connectorAttributes=$(io_trim "${connectorAttributes}")
+    setSystemValue "${extraConfigPath}" "${connectorAttributes}" "${SYSTEM_YAML_PATH}"
+    logger "Setting [${extraConfigPath}] with connector attributes in system.yaml"
+}
+
+# Updating system.yaml with extra Connectors
+setExtraConnector () {
+    local yamlPath="$1"
+    local extraConnector="$2"
+    local extraConnectorYamlPath=
+    if [[ -z "${yamlPath}" ]]; then
+        return
+    fi
+    if [[ -z "${extraConnector}" ]]; then
+        return
+    fi
+    ## Getting extraConnecotr yaml path from migration info yaml
+    retrieveYamlValue "${yamlPath}" extraConnectorYamlPath "Warning"
+    extraConnectorYamlPath="${YAML_VALUE}"
+    if [[ -z "${extraConnectorYamlPath}" ]]; then
+        return
+    fi
+    getYamlValue  "${extraConnectorYamlPath}"  "${SYSTEM_YAML_PATH}"  "false"
+    local connectorExtra="${YAML_VALUE}"
+    if [[ -z "${connectorExtra}" ]]; then
+        setSystemValue "${extraConnectorYamlPath}" "${extraConnector}" "${SYSTEM_YAML_PATH}"
+        logger "Setting [${extraConnectorYamlPath}] with extra connectors in system.yaml"
+    else    
+        setSystemValue "${extraConnectorYamlPath}" "\"${connectorExtra} ${extraConnector}\"" "${SYSTEM_YAML_PATH}"
+        logger "Setting [${extraConnectorYamlPath}] with extra connectors in system.yaml"
+    fi
+}
+
+# Migrate extra connectors to system.yaml
+migrateExtraConnectors () {
+    local filePath="$1"
+    local fileName="$2"
+    local connectorCount="$3"
+    local excludeDefaultPort="$4"
+    local i="$5"
+    local extraConfig= 
+    local extraConnector=
+    if [[ "${excludeDefaultPort}" == "yes" ]]; then
+        for ((i = 1 ; i <= "${connectorCount}" ; i++));
+        do  
+            local portValue=$(getXmlConnectorPort "$i" "${filePath}" "${fileName}")
+            [[ "${portValue}" != "${DEFAULT_ACCESS_PORT}" && "${portValue}" != "${DEFAULT_RT_PORT}" ]] || continue
+            extraConnector=$($LIBXML2_PATH --xpath '//Server/Service/Connector['$i']' ${filePath}/${fileName} 2>/dev/null)
+            setExtraConnector "${EXTRA_CONFIG_YAMLPATH}" "${extraConnector}" 
+        done
+    else
+        extraConnector=$($LIBXML2_PATH --xpath '//Server/Service/Connector['$i']' ${filePath}/${fileName} 2>/dev/null)
+        setExtraConnector "${EXTRA_CONFIG_YAMLPATH}" "${extraConnector}"
+    fi
+}
+
+# Migrate connector configurations
+migrateConnectorConfig () {
+    local i="$1"
+    local protocolType="$2"
+    local portValue="$3"
+    local connectorPortYamlPath="$4"
+    local connectorMaxThreadYamlPath="$5"
+    local connectorAttributesYamlPath="$6"
+    local filePath="$7"
+    local fileName="$8"
+    local connectorSendReasonPhraseYamlPath="$9"
+    local connectorRelaxedPathCharsYamlPath="${10}"
+    local connectorRelaxedQueryCharsYamlPath="${11}"
+    
+    # migrate port
+    setConnectorPort "${connectorPortYamlPath}" "${portValue}"
+    
+    # migrate maxThreads
+    local maxThreadValue=$(getXmlConnectorMaxThreads "$i" "${filePath}" "${fileName}")
+    setConnectorMaxThread "${connectorMaxThreadYamlPath}" "${maxThreadValue}"
+
+    # migrate sendReasonPhrase
+    local sendReasonPhraseValue=$(getXmlConnectorSendReasonPhrase "$i" "${filePath}" "${fileName}")
+    setConnectorSendReasonPhrase "${connectorSendReasonPhraseYamlPath}" "${sendReasonPhraseValue}"
+    
+    # migrate relaxedPathChars
+    local relaxedPathCharsValue=$(getXmlConnectorRelaxedPathChars "$i" "${filePath}" "${fileName}")
+    setConnectorRelaxedPathChars "${connectorRelaxedPathCharsYamlPath}" "\"${relaxedPathCharsValue}\""
+    # migrate relaxedQueryChars
+    local relaxedQueryCharsValue=$(getXmlConnectorRelaxedQueryChars "$i" "${filePath}" "${fileName}")
+    setConnectorRelaxedQueryChars "${connectorRelaxedQueryCharsYamlPath}" "\"${relaxedQueryCharsValue}\""
+
+    # migrate all attributes to extra config except port , maxThread , sendReasonPhrase ,relaxedPathChars and relaxedQueryChars
+    local connectorAttributes=$(getXmlConnectorAttributes "$i" "${filePath}" "${fileName}")
+    connectorAttributes=$(echo "${connectorAttributes}" | sed 's/port="'${portValue}'"//g' | sed 's/maxThreads="'${maxThreadValue}'"//g' | sed 's/sendReasonPhrase="'${sendReasonPhraseValue}'"//g' | sed 's/relaxedPathChars="\'${relaxedPathCharsValue}'\"//g' | sed 's/relaxedQueryChars="\'${relaxedQueryCharsValue}'\"//g')
+    # strip leading and trailing spaces
+    connectorAttributes=$(io_trim "${connectorAttributes}")
+    setConnectorExtraConfig "${connectorAttributesYamlPath}" "${connectorAttributes}"
+}
+
+# Check for default port 8040 and 8081 in connectors and migrate
+migrateConnectorPort () {
+    local filePath="$1"
+    local fileName="$2"
+    local connectorCount="$3"
+    local defaultPort="$4"
+    local connectorPortYamlPath="$5"
+    local connectorMaxThreadYamlPath="$6"
+    local connectorAttributesYamlPath="$7"
+    local connectorSendReasonPhraseYamlPath="$8"
+    local connectorRelaxedPathCharsYamlPath="$9"
+    local connectorRelaxedQueryCharsYamlPath="${10}"
+    local portYamlPath=
+    local maxThreadYamlPath=
+    local status=
+    for ((i = 1 ; i <= "${connectorCount}" ; i++));
+    do  
+        local portValue=$(getXmlConnectorPort "$i" "${filePath}" "${fileName}")
+        local protocolType=$(getXmlConnectorProtocol "$i" "${filePath}" "${fileName}")
+        [[ "${protocolType}" == *AJP* ]] && continue
+        [[ "${portValue}" != "${defaultPort}" ]] && continue
+        if [[ "${portValue}" == "${DEFAULT_RT_PORT}" ]]; then
+            RT_DEFAULTPORT_STATUS=success
+        else
+            AC_DEFAULTPORT_STATUS=success
+        fi
+        migrateConnectorConfig "${i}" "${protocolType}" "${portValue}" "${connectorPortYamlPath}" "${connectorMaxThreadYamlPath}" "${connectorAttributesYamlPath}" "${filePath}" "${fileName}" "${connectorSendReasonPhraseYamlPath}" "${connectorRelaxedPathCharsYamlPath}" "${connectorRelaxedQueryCharsYamlPath}"
+    done
+}
+
+# migrate to extra, connector having default port and protocol is AJP
+migrateDefaultPortIfAjp () {
+    local filePath="$1"
+    local fileName="$2"
+    local connectorCount="$3"
+    local defaultPort="$4"
+    
+    for ((i = 1 ; i <= "${connectorCount}" ; i++));
+    do  
+        local portValue=$(getXmlConnectorPort "$i" "${filePath}" "${fileName}")
+        local protocolType=$(getXmlConnectorProtocol "$i" "${filePath}" "${fileName}")
+        [[ "${protocolType}" != *AJP* ]] && continue
+        [[ "${portValue}" != "${defaultPort}" ]] && continue
+        migrateExtraConnectors "${filePath}" "${fileName}" "${connectorCount}" "no" "${i}"
+    done
+
+}
+
+# Comparing max threads in connectors
+compareMaxThreads () {
+    local firstConnectorMaxThread="$1"
+    local firstConnectorNode="$2"
+    local secondConnectorMaxThread="$3"
+    local secondConnectorNode="$4"
+    local filePath="$5"
+    local fileName="$6"
+
+    # choose higher maxThreads connector as Artifactory.
+    if [[ "${firstConnectorMaxThread}" -gt ${secondConnectorMaxThread} || "${firstConnectorMaxThread}" -eq ${secondConnectorMaxThread} ]]; then
+        # maxThread is higher in firstConnector,
+        # Taking firstConnector as Artifactory and SecondConnector as Access
+        # maxThread is equal in both connector,considering firstConnector as Artifactory and SecondConnector as Access
+        local rtPortValue=$(getXmlConnectorPort "${firstConnectorNode}" "${filePath}" "${fileName}")
+        migrateConnectorConfig "${firstConnectorNode}" "${protocolType}" "${rtPortValue}" "${RT_PORT_YAMLPATH}" "${RT_MAXTHREADS_YAMLPATH}" "${RT_EXTRACONFIG_YAMLPATH}" "${filePath}" "${fileName}" "${RT_SENDREASONPHRASE_YAMLPATH}" "${RT_RELAXEDPATHCHARS_YAMLPATH}" "${RT_RELAXEDQUERYCHARS_YAMLPATH}"
+        local acPortValue=$(getXmlConnectorPort "${secondConnectorNode}" "${filePath}" "${fileName}")
+        migrateConnectorConfig "${secondConnectorNode}" "${protocolType}" "${acPortValue}" "${AC_PORT_YAMLPATH}" "${AC_MAXTHREADS_YAMLPATH}" "${AC_EXTRACONFIG_YAMLPATH}" "${filePath}" "${fileName}" "${AC_SENDREASONPHRASE_YAMLPATH}"
+    else
+        # maxThread is higher in SecondConnector, 
+        # Taking SecondConnector as Artifactory and firstConnector as Access
+        local rtPortValue=$(getXmlConnectorPort "${secondConnectorNode}" "${filePath}" "${fileName}")
+        migrateConnectorConfig "${secondConnectorNode}" "${protocolType}" "${rtPortValue}" "${RT_PORT_YAMLPATH}" "${RT_MAXTHREADS_YAMLPATH}" "${RT_EXTRACONFIG_YAMLPATH}" "${filePath}" "${fileName}" "${RT_SENDREASONPHRASE_YAMLPATH}" "${RT_RELAXEDPATHCHARS_YAMLPATH}" "${RT_RELAXEDQUERYCHARS_YAMLPATH}"
+        local acPortValue=$(getXmlConnectorPort "${firstConnectorNode}" "${filePath}" "${fileName}")
+        migrateConnectorConfig "${firstConnectorNode}" "${protocolType}" "${acPortValue}" "${AC_PORT_YAMLPATH}" "${AC_MAXTHREADS_YAMLPATH}" "${AC_EXTRACONFIG_YAMLPATH}" "${filePath}" "${fileName}" "${AC_SENDREASONPHRASE_YAMLPATH}"
+    fi
+}
+
+# Check max threads exist to compare
+maxThreadsExistToCompare () {
+    local filePath="$1"
+    local fileName="$2"
+    local connectorCount="$3"
+    local firstConnectorMaxThread=
+    local secondConnectorMaxThread=
+    local firstConnectorNode=
+    local secondConnectorNode=
+    local status=success
+    local firstnode=fail
+
+    for ((i = 1 ; i <= "${connectorCount}" ; i++));
+        do 
+        local protocolType=$(getXmlConnectorProtocol "$i" "${filePath}" "${fileName}")
+        if [[ ${protocolType} == *AJP* ]]; then
+            # Migrate Connectors
+            migrateExtraConnectors "${filePath}" "${fileName}" "${connectorCount}" "no" "${i}"
+            continue
+        fi
+        # store maxthreads value of each connector
+        if [[ ${firstnode} == "fail" ]]; then
+            firstConnectorMaxThread=$(getXmlConnectorMaxThreads "${i}" "${filePath}" "${fileName}")
+            firstConnectorNode="${i}"
+            firstnode=success
+        else
+            secondConnectorMaxThread=$(getXmlConnectorMaxThreads "${i}" "${filePath}" "${fileName}")
+            secondConnectorNode="${i}"
+        fi
+    done
+    [[ -z "${firstConnectorMaxThread}" ]] && status=fail
+    [[ -z "${secondConnectorMaxThread}" ]] && status=fail
+    # maxThreads is set, now compare MaxThreads
+    if [[ "${status}" == "success" ]]; then
+        compareMaxThreads "${firstConnectorMaxThread}" "${firstConnectorNode}" "${secondConnectorMaxThread}" "${secondConnectorNode}" "${filePath}" "${fileName}"
+    else 
+        # Assume first connector is RT, maxThreads is not set in both connectors
+        local rtPortValue=$(getXmlConnectorPort "${firstConnectorNode}" "${filePath}" "${fileName}")
+        migrateConnectorConfig "${firstConnectorNode}" "${protocolType}" "${rtPortValue}" "${RT_PORT_YAMLPATH}" "${RT_MAXTHREADS_YAMLPATH}" "${RT_EXTRACONFIG_YAMLPATH}" "${filePath}" "${fileName}" "${RT_SENDREASONPHRASE_YAMLPATH}" "${RT_RELAXEDPATHCHARS_YAMLPATH}" "${RT_RELAXEDQUERYCHARS_YAMLPATH}"
+        local acPortValue=$(getXmlConnectorPort "${secondConnectorNode}" "${filePath}" "${fileName}")
+        migrateConnectorConfig "${secondConnectorNode}" "${protocolType}" "${acPortValue}" "${AC_PORT_YAMLPATH}" "${AC_MAXTHREADS_YAMLPATH}" "${AC_EXTRACONFIG_YAMLPATH}" "${filePath}" "${fileName}" "${AC_SENDREASONPHRASE_YAMLPATH}"
+    fi
+}
+
+migrateExtraBasedOnNonAjpCount () {
+    local nonAjpCount="$1"
+    local filePath="$2"
+    local fileName="$3"
+    local connectorCount="$4"
+    local i="$5"
+
+    local protocolType=$(getXmlConnectorProtocol "$i" "${filePath}" "${fileName}")
+    if [[ "${protocolType}" == *AJP* ]]; then
+        if [[ "${nonAjpCount}" -eq 1  ]]; then
+            # migrateExtraConnectors
+            migrateExtraConnectors "${filePath}" "${fileName}" "${connectorCount}" "no" "${i}"
+            continue
+        else
+            # migrateExtraConnectors
+            migrateExtraConnectors "${filePath}" "${fileName}" "${connectorCount}" "yes"
+            continue
+        fi
+    fi
+}
+
+# find RT and AC Connector
+findRtAndAcConnector () {
+    local filePath="$1"
+    local fileName="$2"
+    local connectorCount="$3"
+    local initialAjpCount=0
+    local nonAjpCount=0
+
+    # get the count of non AJP
+    for ((i = 1 ; i <= "${connectorCount}" ; i++));
+    do  
+        local portValue=$(getXmlConnectorPort "$i" "${filePath}" "${fileName}")
+        local protocolType=$(getXmlConnectorProtocol "$i" "${filePath}" "${fileName}")
+        [[ "${protocolType}" != *AJP* ]]  || continue
+        nonAjpCount=$((initialAjpCount+1))
+        initialAjpCount="${nonAjpCount}"
+    done
+    if [[ "${nonAjpCount}" -eq 1 ]]; then  
+        # Add the connector found as access and artifactory connectors
+        # Mark port as 8040 for access
+        for ((i = 1 ; i <= "${connectorCount}" ; i++))
+        do  
+            migrateExtraBasedOnNonAjpCount "${nonAjpCount}" "${filePath}" "${fileName}" "${connectorCount}"  "$i"
+            local portValue=$(getXmlConnectorPort "$i" "${filePath}" "${fileName}")
+            migrateConnectorConfig "$i" "${protocolType}" "${portValue}" "${RT_PORT_YAMLPATH}" "${RT_MAXTHREADS_YAMLPATH}" "${RT_EXTRACONFIG_YAMLPATH}" "${filePath}" "${fileName}" "${RT_SENDREASONPHRASE_YAMLPATH}" "${RT_RELAXEDPATHCHARS_YAMLPATH}" "${RT_RELAXEDQUERYCHARS_YAMLPATH}"
+            migrateConnectorConfig "$i" "${protocolType}" "${portValue}" "${AC_PORT_YAMLPATH}" "${AC_MAXTHREADS_YAMLPATH}" "${AC_EXTRACONFIG_YAMLPATH}" "${filePath}" "${fileName}" "${AC_SENDREASONPHRASE_YAMLPATH}"
+            setConnectorPort "${AC_PORT_YAMLPATH}" "${DEFAULT_ACCESS_PORT}"
+        done
+    elif [[ "${nonAjpCount}" -eq 2 ]]; then
+        # compare maxThreads in both connectors
+        maxThreadsExistToCompare "${filePath}" "${fileName}" "${connectorCount}"
+    elif [[ "${nonAjpCount}" -gt 2 ]]; then
+        # migrateExtraConnectors
+        migrateExtraConnectors "${filePath}" "${fileName}" "${connectorCount}" "yes"
+    elif [[ "${nonAjpCount}" -eq 0 ]]; then
+        # setting with default port in system.yaml
+        setConnectorPort "${RT_PORT_YAMLPATH}" "${DEFAULT_RT_PORT}"
+        setConnectorPort "${AC_PORT_YAMLPATH}" "${DEFAULT_ACCESS_PORT}"
+        # migrateExtraConnectors
+        migrateExtraConnectors "${filePath}" "${fileName}" "${connectorCount}" "yes"
+    fi
+}
+
+# get the count of non AJP
+getCountOfNonAjp () {
+    local port="$1"
+    local connectorCount="$2"
+    local filePath=$3
+    local fileName=$4
+    local initialNonAjpCount=0
+
+    for ((i = 1 ; i <= "${connectorCount}" ; i++));
+    do  
+        local portValue=$(getXmlConnectorPort "$i" "${filePath}" "${fileName}")
+        local protocolType=$(getXmlConnectorProtocol "$i" "${filePath}" "${fileName}")
+        [[ "${portValue}" != "${port}" ]] || continue
+        [[ "${protocolType}" != *AJP* ]]  || continue
+        local nonAjpCount=$((initialNonAjpCount+1))
+        initialNonAjpCount="${nonAjpCount}"
+    done
+    echo -e "${nonAjpCount}"
+}
+
+# Find for access connector
+findAcConnector () {
+    local filePath="$1"
+    local fileName="$2"
+    local connectorCount="$3"
+    
+    # get the count of non AJP 
+    local nonAjpCount=$(getCountOfNonAjp "${DEFAULT_RT_PORT}" "${connectorCount}" "${filePath}" "${fileName}")
+    if [[ "${nonAjpCount}" -eq 1 ]]; then
+        # Add the connector found as access connector and mark port as that of connector
+        for ((i = 1 ; i <= "${connectorCount}" ; i++))
+        do  
+            migrateExtraBasedOnNonAjpCount "${nonAjpCount}" "${filePath}" "${fileName}" "${connectorCount}" "$i"
+            local portValue=$(getXmlConnectorPort "$i" "${filePath}" "${fileName}")
+            if [[ "${portValue}" != "${DEFAULT_RT_PORT}" ]]; then
+                migrateConnectorConfig "$i" "${protocolType}" "${portValue}" "${AC_PORT_YAMLPATH}" "${AC_MAXTHREADS_YAMLPATH}" "${AC_EXTRACONFIG_YAMLPATH}" "${filePath}" "${fileName}" "${AC_SENDREASONPHRASE_YAMLPATH}"
+            fi   
+        done
+    elif [[ "${nonAjpCount}" -gt 1 ]]; then
+        # Take RT properties into access with 8040
+        for ((i = 1 ; i <= "${connectorCount}" ; i++))
+        do  
+            migrateExtraBasedOnNonAjpCount "${nonAjpCount}" "${filePath}" "${fileName}" "${connectorCount}" "$i"
+            local portValue=$(getXmlConnectorPort "$i" "${filePath}" "${fileName}")
+            if [[ "${portValue}" == "${DEFAULT_RT_PORT}" ]]; then
+                migrateConnectorConfig "$i" "${protocolType}" "${portValue}" "${AC_PORT_YAMLPATH}" "${AC_MAXTHREADS_YAMLPATH}" "${AC_EXTRACONFIG_YAMLPATH}" "${filePath}" "${fileName}" "${AC_SENDREASONPHRASE_YAMLPATH}"
+                setConnectorPort "${AC_PORT_YAMLPATH}" "${DEFAULT_ACCESS_PORT}"
+            fi
+        done
+    elif [[ "${nonAjpCount}" -eq 0 ]]; then 
+        # Add RT connector details as access connector and mark port as 8040  
+        migrateConnectorPort "${filePath}" "${fileName}" "${connectorCount}" "${DEFAULT_RT_PORT}" "${AC_PORT_YAMLPATH}" "${AC_MAXTHREADS_YAMLPATH}" "${AC_EXTRACONFIG_YAMLPATH}" "${AC_SENDREASONPHRASE_YAMLPATH}"
+        setConnectorPort "${AC_PORT_YAMLPATH}" "${DEFAULT_ACCESS_PORT}"
+        # migrateExtraConnectors
+        migrateExtraConnectors "${filePath}" "${fileName}" "${connectorCount}" "yes"
+    fi
+}
+
+# Find for artifactory connector
+findRtConnector () {
+    local filePath="$1"
+    local fileName="$2"
+    local connectorCount="$3"
+    
+    # get the count of non AJP 
+    local nonAjpCount=$(getCountOfNonAjp "${DEFAULT_ACCESS_PORT}" "${connectorCount}" "${filePath}" "${fileName}")
+    if [[ "${nonAjpCount}" -eq 1 ]]; then
+        # Add the connector found as RT connector
+        for ((i = 1 ; i <= "${connectorCount}" ; i++))
+        do  
+            migrateExtraBasedOnNonAjpCount "${nonAjpCount}" "${filePath}" "${fileName}" "${connectorCount}" "$i"
+            local portValue=$(getXmlConnectorPort "$i" "${filePath}" "${fileName}")
+            if [[ "${portValue}" != "${DEFAULT_ACCESS_PORT}" ]]; then
+                migrateConnectorConfig "$i" "${protocolType}" "${portValue}" "${RT_PORT_YAMLPATH}" "${RT_MAXTHREADS_YAMLPATH}" "${RT_EXTRACONFIG_YAMLPATH}" "${filePath}" "${fileName}" "${RT_SENDREASONPHRASE_YAMLPATH}" "${RT_RELAXEDPATHCHARS_YAMLPATH}" "${RT_RELAXEDQUERYCHARS_YAMLPATH}"
+            fi
+        done
+    elif [[ "${nonAjpCount}" -gt 1 ]]; then
+        # Take access properties into artifactory with 8081
+        for ((i = 1 ; i <= "${connectorCount}" ; i++))
+        do  
+            migrateExtraBasedOnNonAjpCount "${nonAjpCount}" "${filePath}" "${fileName}" "${connectorCount}" "$i"
+            local portValue=$(getXmlConnectorPort "$i" "${filePath}" "${fileName}")
+            if [[ "${portValue}" == "${DEFAULT_ACCESS_PORT}" ]]; then
+                migrateConnectorConfig "$i" "${protocolType}" "${portValue}" "${RT_PORT_YAMLPATH}" "${RT_MAXTHREADS_YAMLPATH}" "${RT_EXTRACONFIG_YAMLPATH}" "${filePath}" "${fileName}" "${RT_SENDREASONPHRASE_YAMLPATH}" "${RT_RELAXEDPATHCHARS_YAMLPATH}" "${RT_RELAXEDQUERYCHARS_YAMLPATH}"
+                setConnectorPort "${RT_PORT_YAMLPATH}" "${DEFAULT_RT_PORT}"
+            fi
+        done
+    elif [[ "${nonAjpCount}" -eq 0 ]]; then   
+        # Add access connector details as RT connector and mark as ${DEFAULT_RT_PORT}
+        migrateConnectorPort "${filePath}" "${fileName}" "${connectorCount}" "${DEFAULT_ACCESS_PORT}" "${RT_PORT_YAMLPATH}" "${RT_MAXTHREADS_YAMLPATH}" "${RT_EXTRACONFIG_YAMLPATH}" "${RT_SENDREASONPHRASE_YAMLPATH}" "${RT_RELAXEDPATHCHARS_YAMLPATH}" "${RT_RELAXEDQUERYCHARS_YAMLPATH}"
+        setConnectorPort "${RT_PORT_YAMLPATH}" "${DEFAULT_RT_PORT}"
+        # migrateExtraConnectors
+        migrateExtraConnectors "${filePath}" "${fileName}" "${connectorCount}" "yes"
+    fi
+}
+
+checkForTlsConnector () {
+    local filePath="$1"
+    local fileName="$2"
+    local connectorCount="$3"
+    for ((i = 1 ; i <= "${connectorCount}" ; i++))
+    do
+        local sslProtocolValue=$($LIBXML2_PATH --xpath '//Server/Service/Connector['$i']/@sslProtocol' ${filePath}/${fileName} 2>/dev/null | awk -F"=" '{print $2}' | tr -d '"')
+        if [[ "${sslProtocolValue}" == "TLS" ]]; then
+            bannerImportant "NOTE: Ignoring TLS connector during migration, modify the system yaml to enable TLS. Original server.xml is saved in path [${filePath}/${fileName}]"
+            TLS_CONNECTOR_EXISTS=${FLAG_Y}
+            continue
+        fi
+    done
+}
+
+# set custom tomcat server Listeners to system.yaml
+setListenerConnector () {
+    local filePath="$1"
+    local fileName="$2"
+    local listenerCount="$3"
+    for ((i = 1 ; i <= "${listenerCount}" ; i++))
+    do 
+        local listenerConnector=$($LIBXML2_PATH --xpath '//Server/Listener['$i']' ${filePath}/${fileName} 2>/dev/null)
+        local listenerClassName=$($LIBXML2_PATH --xpath '//Server/Listener['$i']/@className' ${filePath}/${fileName} 2>/dev/null | awk -F"=" '{print $2}' | tr -d '"')
+        if [[ "${listenerClassName}" == *Apr* ]]; then
+            setExtraConnector "${EXTRA_LISTENER_CONFIG_YAMLPATH}" "${listenerConnector}"
+        fi
+    done
+}
+# add custom tomcat server Listeners
+addTomcatServerListeners () {
+    local filePath="$1"
+    local fileName="$2"
+    local listenerCount="$3"
+    if [[ "${listenerCount}" == "0" ]]; then
+        logger "No listener connectors found in the [${filePath}/${fileName}],skipping migration of listener connectors"
+    else
+        setListenerConnector "${filePath}" "${fileName}" "${listenerCount}"
+        setSystemValue "${RT_TOMCAT_HTTPSCONNECTOR_ENABLED}" "true" "${SYSTEM_YAML_PATH}"
+        logger "Setting [${RT_TOMCAT_HTTPSCONNECTOR_ENABLED}] with value [true] in system.yaml"
+    fi
+}
+
+# server.xml migration operations
+xmlMigrateOperation () {
+    local filePath="$1"
+    local fileName="$2"
+    local connectorCount="$3"
+    local listenerCount="$4"
+    RT_DEFAULTPORT_STATUS=fail
+    AC_DEFAULTPORT_STATUS=fail
+    TLS_CONNECTOR_EXISTS=${FLAG_N}
+
+    # Check for connector with TLS , if found ignore migrating it
+    checkForTlsConnector "${filePath}" "${fileName}" "${connectorCount}"
+    if [[ "${TLS_CONNECTOR_EXISTS}" == "${FLAG_Y}" ]]; then
+        return
+    fi
+    addTomcatServerListeners "${filePath}" "${fileName}" "${listenerCount}"
+    # Migrate RT default port from connectors 
+    migrateConnectorPort "${filePath}" "${fileName}" "${connectorCount}" "${DEFAULT_RT_PORT}" "${RT_PORT_YAMLPATH}" "${RT_MAXTHREADS_YAMLPATH}" "${RT_EXTRACONFIG_YAMLPATH}" "${RT_SENDREASONPHRASE_YAMLPATH}" "${RT_RELAXEDPATHCHARS_YAMLPATH}" "${RT_RELAXEDQUERYCHARS_YAMLPATH}"
+    # Migrate to extra if RT default ports are AJP
+    migrateDefaultPortIfAjp "${filePath}" "${fileName}" "${connectorCount}" "${DEFAULT_RT_PORT}"
+    # Migrate AC default port from connectors
+    migrateConnectorPort "${filePath}" "${fileName}" "${connectorCount}" "${DEFAULT_ACCESS_PORT}" "${AC_PORT_YAMLPATH}" "${AC_MAXTHREADS_YAMLPATH}" "${AC_EXTRACONFIG_YAMLPATH}" "${AC_SENDREASONPHRASE_YAMLPATH}"
+    # Migrate to extra if access default ports are AJP
+    migrateDefaultPortIfAjp "${filePath}" "${fileName}" "${connectorCount}" "${DEFAULT_ACCESS_PORT}"
+
+    if [[ "${AC_DEFAULTPORT_STATUS}" == "success" && "${RT_DEFAULTPORT_STATUS}" == "success" ]]; then
+        # RT and AC default port found
+        logger "Artifactory 8081 and Access 8040 default port are found"
+        migrateExtraConnectors "${filePath}" "${fileName}" "${connectorCount}" "yes"
+    elif [[ "${AC_DEFAULTPORT_STATUS}" == "success" && "${RT_DEFAULTPORT_STATUS}" == "fail" ]]; then
+        # Only AC default port found,find RT connector
+        logger "Found Access default 8040 port"
+        findRtConnector "${filePath}" "${fileName}" "${connectorCount}"
+    elif [[ "${AC_DEFAULTPORT_STATUS}" == "fail" && "${RT_DEFAULTPORT_STATUS}" == "success" ]]; then
+        # Only RT default port found,find AC connector
+        logger "Found Artifactory default 8081 port"
+        findAcConnector "${filePath}" "${fileName}" "${connectorCount}"
+    elif [[ "${AC_DEFAULTPORT_STATUS}" == "fail" && "${RT_DEFAULTPORT_STATUS}" == "fail" ]]; then    
+        # RT and AC default port not found, find connector
+        logger "Artifactory 8081 and Access 8040 default port are not found"
+        findRtAndAcConnector "${filePath}" "${fileName}" "${connectorCount}"
+    fi
+}
+
+# get count of connectors
+getXmlConnectorCount () {
+    local filePath="$1"
+    local fileName="$2"
+    local count=$($LIBXML2_PATH --xpath 'count(/Server/Service/Connector)' ${filePath}/${fileName})
+    echo -e "${count}"
+}
+
+# get count of listener connectors
+getTomcatServerListenersCount () {
+    local filePath="$1"
+    local fileName="$2"
+    local count=$($LIBXML2_PATH --xpath 'count(/Server/Listener)' ${filePath}/${fileName})
+    echo -e "${count}"
+}
+
+# Migrate server.xml configuration to system.yaml
+migrateXmlFile () {
+    local xmlFiles=
+    local fileName=
+    local filePath=
+    local sourceFilePath=
+    DEFAULT_ACCESS_PORT="8040"
+    DEFAULT_RT_PORT="8081"
+    AC_PORT_YAMLPATH="migration.xmlFiles.serverXml.access.port"
+    AC_MAXTHREADS_YAMLPATH="migration.xmlFiles.serverXml.access.maxThreads"
+    AC_SENDREASONPHRASE_YAMLPATH="migration.xmlFiles.serverXml.access.sendReasonPhrase"
+    AC_EXTRACONFIG_YAMLPATH="migration.xmlFiles.serverXml.access.extraConfig"
+    RT_PORT_YAMLPATH="migration.xmlFiles.serverXml.artifactory.port"
+    RT_MAXTHREADS_YAMLPATH="migration.xmlFiles.serverXml.artifactory.maxThreads"
+    RT_SENDREASONPHRASE_YAMLPATH='migration.xmlFiles.serverXml.artifactory.sendReasonPhrase'
+    RT_RELAXEDPATHCHARS_YAMLPATH='migration.xmlFiles.serverXml.artifactory.relaxedPathChars'
+    RT_RELAXEDQUERYCHARS_YAMLPATH='migration.xmlFiles.serverXml.artifactory.relaxedQueryChars'
+    RT_EXTRACONFIG_YAMLPATH="migration.xmlFiles.serverXml.artifactory.extraConfig"
+    ROUTER_PORT_YAMLPATH="migration.xmlFiles.serverXml.router.port"
+    EXTRA_CONFIG_YAMLPATH="migration.xmlFiles.serverXml.extra.config"
+    EXTRA_LISTENER_CONFIG_YAMLPATH="migration.xmlFiles.serverXml.extra.listener"
+    RT_TOMCAT_HTTPSCONNECTOR_ENABLED="artifactory.tomcat.httpsConnector.enabled"
+
+    retrieveYamlValue "migration.xmlFiles" "xmlFiles" "Skip"
+    xmlFiles="${YAML_VALUE}"
+    if [[ -z "${xmlFiles}" ]]; then
+        return
+    fi
+    bannerSection "PROCESSING MIGRATION OF XML FILES"
+    retrieveYamlValue "migration.xmlFiles.serverXml.fileName" "fileName" "Warning"
+    fileName="${YAML_VALUE}"
+    if [[ -z "${fileName}" ]]; then
+        return
+    fi
+    bannerSubSection "Processing Migration of $fileName"
+    retrieveYamlValue "migration.xmlFiles.serverXml.filePath" "filePath" "Warning"
+    filePath="${YAML_VALUE}"
+    if [[ -z "${filePath}" ]]; then
+        return
+    fi
+    # prepend NEW_DATA_DIR only if filePath is relative path
+    sourceFilePath=$(prependDir "${filePath}" "${NEW_DATA_DIR}/${filePath}")
+    if [[ "$(checkFileExists "${sourceFilePath}/${fileName}")" == "true" ]]; then
+        logger "File [${fileName}] is found in path [${sourceFilePath}]"
+        local connectorCount=$(getXmlConnectorCount "${sourceFilePath}" "${fileName}")
+        if [[ "${connectorCount}" == "0" ]]; then
+            logger "No connectors found in the [${filePath}/${fileName}],skipping migration of xml configuration"
+            return
+        fi
+        local listenerCount=$(getTomcatServerListenersCount "${sourceFilePath}" "${fileName}")
+        xmlMigrateOperation "${sourceFilePath}" "${fileName}" "${connectorCount}" "${listenerCount}"
+    else
+        logger "File [${fileName}] is not found in path [${sourceFilePath}] to migrate"
+    fi   
+}
+
+compareArtifactoryUser () {
+    local property="$1"
+    local oldPropertyValue="$2"
+    local newPropertyValue="$3"
+    local yamlPath="$4"
+    local sourceFile="$5"
+
+    if [[ "${oldPropertyValue}" != "${newPropertyValue}" ]]; then
+        setSystemValue "${yamlPath}" "${oldPropertyValue}" "${SYSTEM_YAML_PATH}"
+        logger "Setting [${yamlPath}] with value of the property [${property}] in system.yaml"
+    else
+        logger "No change in property [${property}] value in [${sourceFile}] to migrate"
+    fi
+}
+
+migrateReplicator () {
+    local property="$1"
+    local oldPropertyValue="$2"
+    local yamlPath="$3"
+
+    setSystemValue "${yamlPath}" "${oldPropertyValue}" "${SYSTEM_YAML_PATH}"
+    logger "Setting [${yamlPath}] with value of the property [${property}] in system.yaml"
+}
+
+compareJavaOptions () {
+    local property="$1"
+    local oldPropertyValue="$2"
+    local newPropertyValue="$3"
+    local yamlPath="$4"
+    local sourceFile="$5"
+    local oldJavaOption=
+    local newJavaOption=
+    local extraJavaOption=
+    local check=false
+    local success=true
+    local status=true
+
+    oldJavaOption=$(echo "${oldPropertyValue}" | awk 'BEGIN{FS=OFS="\""}{for(i=2;i<NF;i+=2)gsub(/ /,"@",$i)}1')
+    newJavaOption=$(echo "${newPropertyValue}" | awk 'BEGIN{FS=OFS="\""}{for(i=2;i<NF;i+=2)gsub(/ /,"@",$i)}1')
+    for oldJavaOption in $oldPropertyValue;
+    do
+        for newJavaOption in $newPropertyValue;
+        do
+            if [[ "${oldJavaOption}" == "${newJavaOption}" ]]; then
+                check=true
+                break
+            else
+                check=false
+            fi
+        done
+        if [[ "${check}" == "false" ]]; then
+            oldJavaOption=$(echo "${oldJavaOption}" | tr -s "@" " ")
+            getYamlValue "${yamlPath}" "${SYSTEM_YAML_PATH}" "false"
+            extraJavaOption="${YAML_VALUE}"
+            success=false
+            if [[ -z "${extraJavaOption}" ]]; then
+                setSystemValue "${yamlPath}" "\"${oldJavaOption}\"" "${SYSTEM_YAML_PATH}" && status=false
+            else
+                [[ "${extraJavaOption}" != *"${oldJavaOption}"* ]] && setSystemValue "${yamlPath}" "\"${extraJavaOption} ${oldJavaOption}\"" "${SYSTEM_YAML_PATH}" || status=false
+            fi
+        fi
+    done
+    if [[ "${status}" == "false" ]]; then
+        getYamlValue "${yamlPath}" "${SYSTEM_YAML_PATH}" "false"
+        local extraOpts="${YAML_VALUE}"
+        logger "Setting [${yamlPath}] with value of the property [${property}] in system.yaml"
+    fi
+    [[ "${success}" == "true" && "${check}" == "true" ]] && logger "No change in property [JAVA_OPTIONS] value in [${sourceFile}] to migrate"
+}
+
+defaultPropertyMigrate () {
+    local entry="$1"
+    local sourceFile="$2"
+    local targetFile="$3"
+    local yamlPath=
+    local property=
+    local oldPropertyValue=
+    local newPropertyValue=
+    local check=false
+    
+    local targetDataDir=
+
+    local yamlPath=$(getFirstEntry "${entry}")
+    local property=$(getSecondEntry "${entry}")
+    if [[ -z "${property}" ]]; then
+        warn "Property is empty in map [${entry}] in the file [${MIGRATION_SYSTEM_YAML_INFO}]"
+        return
+    fi
+    if [[ -z "${yamlPath}" ]]; then
+        warn "yamlPath is empty for [${property}] in [${MIGRATION_SYSTEM_YAML_INFO}]"
+        return
+    fi
+    unset ${property}
+    source ${sourceFile}
+    oldPropertyValue=$(evalVariable "oldPropertyValue" "${property}")
+
+    unset ${property}
+    source ${targetFile}
+    if [[ "${property}" == "JAVA_OPTIONS" ]]; then
+        property="DEFAULT_JAVA_OPTIONS"
+    fi
+    newPropertyValue="$(evalVariable "newPropertyValue" "${property}")"
+
+    [[ -z "${oldPropertyValue}" ]] && logger "Property [${property}] not found in [${sourceFile}] to migrate" || check=true
+    if [[ "${check}" == "true" ]]; then
+        # migrate ARTIFACTORY_USER
+        [[ "${property}" == "ARTIFACTORY_USER" ]] && compareArtifactoryUser "${property}" "${oldPropertyValue}" "${newPropertyValue}" "${yamlPath}" "${sourceFile}"
+        # migrate JAVA_OPTIONS
+        [[ "${property}" == *"JAVA_OPTIONS"* ]] && compareJavaOptions "${property}" "${oldPropertyValue}" "${newPropertyValue}" "${yamlPath}" "${sourceFile}"
+        # migrate START_LOCAL_REPLICATOR
+        [[ "${property}" == "START_LOCAL_REPLICATOR" ]] && migrateReplicator "${property}" "${oldPropertyValue}" "${yamlPath}"
+    fi
+}
+
+migrateDefaultFile () {
+    local oldDefaultFilePath=
+    local newDefaultFilePath=
+    local oldfileName=
+    local newFileName=
+    local map=
+    local defaultFile=
+    local sourceFilePath=
+    local targetFilePath=
+    local sourceFile=
+    local targetFile=
+    
+    retrieveYamlValue "migration.defaultFile" "defaultFile" "Skip"
+    defaultFile="${YAML_VALUE}"
+    if [[ -z "${defaultFile}" ]]; then
+        return
+    fi
+    bannerSection "PROCESSING MIGRATION OF DEFAULTFILE"
+    retrieveYamlValue "migration.defaultFile.oldFile.defaultFilePath" "oldDefaultFilePath" "Warning"
+    oldDefaultFilePath="${YAML_VALUE}"
+    retrieveYamlValue "migration.defaultFile.oldFile.fileName" "oldFileName" "Warning"
+    oldFileName="${YAML_VALUE}"
+    if [[ "$(warnIfEmpty "${oldDefaultFilePath}" "migration.defaultFile.oldFile.defaultFilePath")" != "true" ]]; then
+        return
+    fi
+    if [[ "$(warnIfEmpty "${oldFileName}" "migration.defaultFile.oldFile.fileName")" != "true" ]]; then
+        return
+    fi
+    retrieveYamlValue "migration.defaultFile.newFile.defaultFilePath" "newDefaultFilePath" "Warning"
+    newDefaultFilePath="${YAML_VALUE}"
+    retrieveYamlValue "migration.defaultFile.newFile.fileName" "newfileName" "Warning"
+    newFileName="${YAML_VALUE}"
+    if [[ "$(warnIfEmpty "${newDefaultFilePath}" "migration.defaultFile.newFile.defaultFilePath")" != "true" ]]; then
+        return
+    fi
+    if [[ "$(warnIfEmpty "${newFileName}" "migration.defaultFile.newFile.fileName")" != "true" ]]; then
+        return
+    fi
+    # prepend NEW_DATA_DIR only if oldDefaultFilePath is relative path
+    sourceFilePath=$(prependDir "${oldDefaultFilePath}" ${NEW_DATA_DIR}/${oldDefaultFilePath})
+    sourceFile="${sourceFilePath}/${oldFileName}"
+    if [[ "$(checkFileExists "${sourceFile}")" != "true" ]]; then
+        logger "OldDefaultFile [${oldFileName}] not found in the path [${sourceFilePath}]"
+        return
+    fi
+    # path newDefaultFilePath will change based installer
+    if [[ "${INSTALLER}" == "${ZIP_TYPE}" ]]; then
+        targetFilePath="${APP_DIR}/../${newDefaultFilePath}"
+    else
+        targetDataDir="`cd "${NEW_DATA_DIR}"/../;pwd`"
+        targetFilePath="${targetDataDir}/${newDefaultFilePath}"
+    fi
+    targetFile="${targetFilePath}/${newFileName}"
+    if [[ "$(checkFileExists "${targetFile}")" != "true" ]]; then
+        logger "NewDefaultFile [${newFileName}] not found in the path [${sourceFilePath}]"
+        return
+    fi
+    logger "OldDefaultFile [${oldFileName}] found in the path [${sourceFilePath}]"
+    logger "NewDefaultFile [${newFileName}] found in the path [${targetFilePath}]"
+    retrieveYamlValue "migration.defaultFile.map" "map" "Warning"
+    map="${YAML_VALUE}"
+    [[ -z "${map}" ]] && continue
+    for entry in $map;
+    do
+        if [[ "$(checkMapEntry "${entry}")" == "true" ]]; then
+            defaultPropertyMigrate "${entry}" "${sourceFile}" "${targetFile}"
+        else
+            warn "map entry [${entry}] in [${MIGRATION_SYSTEM_YAML_INFO}] is not in correct format, correct format i.e yamlPath=property"
+        fi
+    done
+}
+
+# comment node.id in system.yaml
+# Add a commented Line above the node.id in system.yaml
+commentNodeId () {
+    local filePath=
+    local fileName=
+    local idKey=
+
+    retrieveYamlValue "migration.propertyFiles.haNodeProperty.filePath" "filePath" "Skip"
+    filePath="${YAML_VALUE}"
+    if [[ -z "${filePath}" ]]; then
+        return
+    fi
+    retrieveYamlValue "migration.propertyFiles.haNodeProperty.fileName" "fileName" "Skip"
+    fileName="${YAML_VALUE}"
+    if [[ -z "${fileName}" ]]; then
+        return
+    fi
+    if [[ "$(checkFileExists "${NEW_DATA_DIR}/${filePath}/${fileName}")" == "true" ]]; then
+        getYamlValue "shared.node" "${SYSTEM_YAML_PATH}" "false"
+        idKey=$(echo "${YAML_VALUE}" | grep "^id:")
+        local regexString="${idKey}"
+        local replaceText="#&"
+        replaceText_migration_hook "${regexString}" "${replaceText}" "${SYSTEM_YAML_PATH}"
+        local text="# NOTE: node.id can be automatically determined based on the current hostname or be set using the SHARED_NODE_ID environment variable. There is no need to explicitly specify it here."
+        prependText "${regexString}" "${text}" "${SYSTEM_YAML_PATH}"
+    fi
+}
+
+artifactoryInfoMessage () {
+
+    if [[ "${INSTALLER}" == "${COMPOSE_TYPE}" || "${INSTALLER}" == "${HELM_TYPE}" ]]; then
+        addText "# yamlFile was generated from db.properties and ha-node.properties config files." "${SYSTEM_YAML_PATH}"
+    else
+        addText "# yamlFile was generated from default file,db.properties and ha-node.properties config files." "${SYSTEM_YAML_PATH}"
+    fi
+
+}
+
+setHaEnabled_hook () {
+    local filePath="$1"
+    if [[ "$(checkFileExists "${NEW_DATA_DIR}/${filePath}/ha-node.properties")" == "true" ]]; then
+        setSystemValue "shared.node.haEnabled" "true" "${SYSTEM_YAML_PATH}"
+        logger "Setting [shared.node.haEnabled] with [true] in system.yaml"
+    fi
+}
+
+removeFileOperation () {
+    local backupDir="$1"
+    local file="$2"
+    if [[ "$(checkFileExists "${file}")" == "true" ]]; then
+        cp -pf "${file}" "${backupDir}" || warn "Failed to copy file [${file}] to ${backupDir}"
+        rm -f "${file}" || warn "Failed to remove file [${file}]"
+    else
+        logger "Source file [${file}] does not exist in path to backup and remove"
+    fi
+}
+
+_createBackupOfLogBackDir () {
+    local backupDir="$1"
+    local accessLogbackFile="${NEW_DATA_DIR}/etc/access/logback.xml"
+    local artiLogbackFile="${NEW_DATA_DIR}/etc/artifactory/logback.xml"
+    local effectiveUser=
+    local effectiveGroup=
+    if [[ "${INSTALLER}" == "${COMPOSE_TYPE}" || "${INSTALLER}" == "${HELM_TYPE}" ]]; then
+        effectiveUser="${JF_USER}"
+        effectiveGroup="${JF_USER}"
+    elif [[ "${INSTALLER}" == "${DEB_TYPE}" || "${INSTALLER}" == "${RPM_TYPE}" ]]; then
+        effectiveUser="${USER_TO_CHECK}" 
+        effectiveGroup="${GROUP_TO_CHECK}"
+    fi
+    removeSoftLinkAndCreateDir "${backupDir}/logbackXmlFiles" "${effectiveUser}" "${effectiveGroup}" "yes"
+    removeSoftLinkAndCreateDir "${backupDir}/logbackXmlFiles/access" "${effectiveUser}" "${effectiveGroup}" "yes" 
+    removeSoftLinkAndCreateDir "${backupDir}/logbackXmlFiles/artifactory" "${effectiveUser}" "${effectiveGroup}" "yes"
+    removeFileOperation "${backupDir}/logbackXmlFiles/access" "${accessLogbackFile}"
+    removeFileOperation "${backupDir}/logbackXmlFiles/artifactory" "${artiLogbackFile}"
+}
+
+backupFiles_hook () {
+    local backupDirectory="$1" 
+    _createBackupOfLogBackDir "${backupDirectory}"
+}
+
+migrateArtifactory () {
+    creationMigrateLog
+    _pauseExecution "creationMigrateLog"
+    checkArtifactoryVersion
+    _pauseExecution "checkArtifactoryVersion"
+    startMigration
+    _pauseExecution "startMigration"
+    setSystemYamlPath
+    _pauseExecution "setSystemYamlPath"
+    createRequiredDirs
+    _pauseExecution "createRequiredDirs"
+    symlinkDirectories
+    _pauseExecution "symlinkDirectories"
+    copyDirectories
+    _pauseExecution "copyDirectories"
+    moveDirectories
+    _pauseExecution "moveDirectories"
+    trimMasterKey
+    _pauseExecution "trimMasterKey"
+    migratePropertiesFiles
+    _pauseExecution "migratePropertiesFiles"
+    migrateXmlFile
+    _pauseExecution "migrateXmlFile"
+    migrateDefaultFile
+    _pauseExecution "migrateDefaultFile"
+    migrateYamlFile
+    _pauseExecution "migrateYamlFile"
+    updateSystemYamlFile
+    _pauseExecution "updateSystemYamlFile"
+    cleanUpOldDataDirectories
+    _pauseExecution "cleanUpOldDataDirectories"
+    cleanUpOldFiles
+    _pauseExecution "cleanUpOldFiles"
+    commentNodeId
+    _pauseExecution "commentNodeId"
+    artifactoryInfoMessage
+    _pauseExecution "artifactoryInfoMessage"
+    endMigration
+    _pauseExecution "endMigration"
+}
+
+initialize
+main
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-ha/107.104.10/files/migrationHelmInfo.yaml b/charts/jfrog/artifactory-ha/107.104.10/files/migrationHelmInfo.yaml
new file mode 100644
index 0000000000..016bea02d9
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/files/migrationHelmInfo.yaml
@@ -0,0 +1,27 @@
+migration:
+  product: ARTIFACTORY
+  oldDataDir: /var/opt/jfrog/artifactory
+  moveDirectories:
+    map:
+    # Note : $JF_ROOT_DATA_DIR will be prepended to the sourceDirectoryPath value only if relative path and $JF_ROOT_DATA_DIR/var will be prepended to the targetDirectoryPath value
+    # map should be in format example: targetDirectoryPath=sourceDirectoryPath
+      backup/access=access/backup
+      etc/access=access/etc
+      data/access=access/data
+      work/access=access/tmp
+      log/archived/access=access/logs
+      log/archived/artifactory=logs
+  linkFiles:
+    map:
+    # Note : $JF_ROOT_DATA_DIR will be prepended to the sourceDirectoryPath value only if relative path and $JF_ROOT_DATA_DIR will be prepended to the targetDirectoryPath value
+    # map should be in format example: targetDirectoryPath=sourceDirectoryPath
+      etc/artifactory=etc
+      backup/artifactory=backup
+      data/artifactory=data
+      support/artifactory=support
+  cleanUpOldDataDir:
+    # Note $JF_ROOT_DATA_DIR will be prepended to the map entry
+    map:
+      access
+      metadata
+      logs
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-ha/107.104.10/files/migrationStatus.sh b/charts/jfrog/artifactory-ha/107.104.10/files/migrationStatus.sh
new file mode 100644
index 0000000000..2ad7c9d31b
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/files/migrationStatus.sh
@@ -0,0 +1,44 @@
+#!/bin/bash
+
+statusCheck(){
+local retries=0
+# Max Timeout in seconds  default ~3600
+local maxTimeOutInSeconds=$1
+MaxRetries=$(( maxTimeOutInSeconds/10 ))
+# Wait for DB to start 
+sleep 30
+until [ "`curl -s -o /dev/null -w "%{http_code}" http://127.0.0.1:8082/router/api/v1/system/health`" == "200" ];
+do
+  echo Waiting for Artifactory to start --- sleeping for 10 seconds
+  if [[ ${retries} -eq ${MaxRetries} ]]
+  then 
+    echo Failed to start.
+    exit 1
+  fi
+  retries=$(( retries+1 ))
+  sleep 10
+done
+
+sleep 20
+echo "Artifactory started successfully...in Init Container"
+echo "Stopping artifactory in Init Container..."
+${scriptsPath}/artifactory.sh stop
+echo "Exiting Init Container..."
+
+}
+
+scriptsPath="/opt/jfrog/artifactory/app/bin"
+maxTimeOut=$2
+bash ${scriptsPath}/migrate.sh $1
+status=$?
+if [[ ${status} -eq 1 && -f /tmp/error ]]; then
+  echo "Migration is not supported ...Exiting Init Container"
+  exit 1
+elif [[ ${status} -eq 0 ]]; then
+  echo "Waiting for Artifactory to start in Init Container"
+  /entrypoint-artifactory.sh &
+  statusCheck ${maxTimeOut}
+else
+  echo "Migration not necessary...Exiting Init Container"
+  exit 0
+fi
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-ha/107.104.10/files/nginx-artifactory-conf.yaml b/charts/jfrog/artifactory-ha/107.104.10/files/nginx-artifactory-conf.yaml
new file mode 100644
index 0000000000..8c7c2a123e
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/files/nginx-artifactory-conf.yaml
@@ -0,0 +1,114 @@
+{{- if .Values.nginx.https.enabled }}
+ssl_protocols TLSv1 TLSv1.1 TLSv1.2 TLSv1.3;
+ssl_certificate  {{ .Values.nginx.persistence.mountPath }}/ssl/tls.crt;
+ssl_certificate_key  {{ .Values.nginx.persistence.mountPath }}/ssl/tls.key;
+ssl_session_cache shared:SSL:1m;
+ssl_prefer_server_ciphers   on;
+{{- end }}
+## server configuration
+server {
+{{- if .Values.nginx.internalPortHttps }}
+{{- if .Values.nginx.singleStackIPv6Cluster }}
+listen [::]:{{ .Values.nginx.internalPortHttps }} ssl;
+{{- else -}}
+listen {{ .Values.nginx.internalPortHttps }} ssl;
+{{- end }}
+{{- else -}}
+{{- if .Values.nginx.https.enabled }}
+{{- if .Values.nginx.singleStackIPv6Cluster }}
+listen [::]:{{ .Values.nginx.https.internalPort }} ssl;
+{{- else -}}
+listen {{ .Values.nginx.https.internalPort }} ssl;
+{{- end }}
+{{- end }}
+{{- end }}
+{{- if .Values.nginx.internalPortHttp }}
+{{- if .Values.nginx.singleStackIPv6Cluster }}
+listen [::]:{{ .Values.nginx.internalPortHttp }};
+{{- else -}}
+listen {{ .Values.nginx.internalPortHttp }};
+{{- end }}
+{{- else -}}
+{{- if .Values.nginx.http.enabled }}
+{{- if .Values.nginx.singleStackIPv6Cluster }}
+listen [::]:{{ .Values.nginx.http.internalPort }};
+{{- else -}}
+listen {{ .Values.nginx.http.internalPort }};
+{{- end }}
+{{- end }}
+{{- end }}
+server_name ~(?<repo>.+)\.{{ include "artifactory-ha.fullname" . }} {{ include "artifactory-ha.fullname" . }}
+{{ tpl (include "artifactory.nginx.hosts" .) . }};
+
+if ($http_x_forwarded_proto = '') {
+  set $http_x_forwarded_proto  $scheme;
+}
+set $host_port {{ .Values.nginx.https.externalPort }};
+if ( $scheme = "http" ) {
+  set $host_port {{ .Values.nginx.http.externalPort }};
+}
+## Application specific logs
+## access_log /var/log/nginx/artifactory-access.log timing;
+## error_log /var/log/nginx/artifactory-error.log;
+rewrite ^/artifactory/?$ / redirect;
+if ( $repo != "" ) {
+  rewrite ^/(v1|v2)/(.*) /artifactory/api/docker/$repo/$1/$2 break;
+}
+chunked_transfer_encoding on;
+client_max_body_size 0;
+
+location / {
+  proxy_read_timeout  900;
+  proxy_pass_header   Server;
+  proxy_cookie_path   ~*^/.* /;
+  proxy_pass          {{ include "artifactory-ha.scheme" . }}://{{ include "artifactory-ha.fullname" . }}:{{ .Values.artifactory.externalPort }}/;
+  {{- if .Values.nginx.service.ssloffload}}
+  {{- if .Values.nginx.service.ssloffloadForceHttps}}
+  proxy_set_header    X-JFrog-Override-Base-Url https://$host;
+  proxy_set_header    X-Forwarded-Proto https;
+  {{- else }}
+  proxy_set_header    X-JFrog-Override-Base-Url $http_x_forwarded_proto://$host;
+  proxy_set_header    X-Forwarded-Proto $http_x_forwarded_proto;
+  {{- end }}
+  {{- else if or (eq (int .Values.nginx.https.internalPort) 80) (eq (int .Values.nginx.https.externalPort) 443)}}
+  proxy_set_header    X-JFrog-Override-Base-Url $http_x_forwarded_proto://$host;
+  proxy_set_header    X-Forwarded-Port  $server_port;
+  proxy_set_header    X-Forwarded-Proto $http_x_forwarded_proto;
+  {{- else }}
+  proxy_set_header    X-JFrog-Override-Base-Url $http_x_forwarded_proto://$host:$host_port;
+  proxy_set_header    X-Forwarded-Port  $server_port;
+  proxy_set_header    X-Forwarded-Proto $http_x_forwarded_proto;
+  {{- end }}
+  proxy_set_header    Host              $http_host;
+  proxy_set_header    X-Forwarded-For   $proxy_add_x_forwarded_for;
+  {{- if .Values.nginx.disableProxyBuffering}}
+  proxy_http_version 1.1;
+  proxy_request_buffering off;
+  proxy_buffering off;
+  {{- end }}
+  add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always;
+  location /artifactory/ {
+    {{- if .Values.rtfs.enabled }}
+    if ($request_uri ~ ^/artifactory/service/rtfs/(.*)$ ) {
+      proxy_pass       http://{{ include "artifactory-ha.fullname" . }}:{{ .Values.artifactory.externalPort }}/artifactory/service/rtfs/$1;
+      break;
+    }
+    {{- end }}
+    if ( $request_uri ~ ^/artifactory/(.*)$ ) {
+      proxy_pass       http://{{ include "artifactory-ha.fullname" . }}:{{ .Values.artifactory.externalArtifactoryPort }}/artifactory/$1;
+    }
+    proxy_pass         http://{{ include "artifactory-ha.fullname" . }}:{{ .Values.artifactory.externalArtifactoryPort }}/artifactory/;
+  }
+  location /pipelines/ {
+    proxy_http_version 1.1;
+    proxy_set_header Upgrade $http_upgrade;
+    proxy_set_header Connection "upgrade";
+    proxy_set_header Host $http_host;
+    {{- if .Values.router.tlsEnabled }}
+    proxy_pass  https://{{ include "artifactory-ha.fullname" . }}:{{ .Values.router.internalPort }};
+    {{- else }}
+    proxy_pass  http://{{ include "artifactory-ha.fullname" . }}:{{ .Values.router.internalPort }};
+    {{- end }}
+  }
+}
+}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-ha/107.104.10/files/nginx-main-conf.yaml b/charts/jfrog/artifactory-ha/107.104.10/files/nginx-main-conf.yaml
new file mode 100644
index 0000000000..78cecea6a1
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/files/nginx-main-conf.yaml
@@ -0,0 +1,83 @@
+# Main Nginx configuration file
+worker_processes  4;
+
+{{- if .Values.nginx.logs.stderr }}
+error_log  stderr {{ .Values.nginx.logs.level }};
+{{- else -}}
+error_log  {{ .Values.nginx.persistence.mountPath }}/logs/error.log {{ .Values.nginx.logs.level }};
+{{- end }}
+pid        /var/run/nginx.pid;
+
+{{- if .Values.artifactory.ssh.enabled }}
+## SSH Server Configuration
+stream {
+  server {
+    {{- if .Values.nginx.singleStackIPv6Cluster }}
+    listen [::]:{{ .Values.nginx.ssh.internalPort }};
+    {{- else -}}
+    listen {{ .Values.nginx.ssh.internalPort }};
+    {{- end }}
+    proxy_pass {{ include "artifactory-ha.fullname" . }}:{{ .Values.artifactory.ssh.externalPort }};
+  }
+}
+{{- end }}
+
+events {
+  worker_connections  1024;
+}
+
+http {
+  include       /etc/nginx/mime.types;
+  default_type  application/octet-stream;
+
+  variables_hash_max_size 1024;
+  variables_hash_bucket_size 64;
+  server_names_hash_max_size 4096;
+  server_names_hash_bucket_size 128;
+  types_hash_max_size 2048;
+  types_hash_bucket_size 64;
+  proxy_read_timeout 2400s;
+  client_header_timeout 2400s;
+  client_body_timeout 2400s;
+  proxy_connect_timeout 75s;
+  proxy_send_timeout 2400s;
+  proxy_buffer_size 128k;
+  proxy_buffers 40 128k;
+  proxy_busy_buffers_size 128k;
+  proxy_temp_file_write_size 250m;
+  proxy_http_version 1.1;
+  client_body_buffer_size 128k;
+
+  log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
+  '$status $body_bytes_sent "$http_referer" '
+  '"$http_user_agent" "$http_x_forwarded_for"';
+
+  log_format timing 'ip = $remote_addr '
+  'user = \"$remote_user\" '
+  'local_time = \"$time_local\" '
+  'host = $host '
+  'request = \"$request\" '
+  'status = $status '
+  'bytes = $body_bytes_sent '
+  'upstream = \"$upstream_addr\" '
+  'upstream_time = $upstream_response_time '
+  'request_time = $request_time '
+  'referer = \"$http_referer\" '
+  'UA = \"$http_user_agent\"';
+
+  {{- if .Values.nginx.logs.stdout }}
+  access_log /dev/stdout timing;
+  {{- else -}}
+  access_log {{ .Values.nginx.persistence.mountPath }}/logs/access.log timing;
+  {{- end }}
+
+  sendfile        on;
+  #tcp_nopush     on;
+
+  keepalive_timeout  65;
+
+  #gzip  on;
+
+  include /etc/nginx/conf.d/*.conf;
+
+}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/files/system.yaml b/charts/jfrog/artifactory-ha/107.104.10/files/system.yaml
new file mode 100644
index 0000000000..152ac5b9c1
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/files/system.yaml
@@ -0,0 +1,192 @@
+router:
+  serviceRegistry:
+    insecure: {{ .Values.router.serviceRegistry.insecure }}
+shared:
+{{- if .Values.artifactory.coldStorage.enabled }}
+  jfrogColdStorage:
+    coldInstanceEnabled: true
+{{- end }}
+{{- if .Values.artifactory.worker.enabled }}
+  featureToggler:
+    worker: true
+{{- end }}
+{{- with include "artifactory.metrics" . }}
+  {{- . | nindent 2 }}
+{{- end }}
+  logging:
+    consoleLog:
+      enabled: {{ .Values.artifactory.consoleLog }}
+  extraJavaOpts: >
+    -Dartifactory.graceful.shutdown.max.request.duration.millis={{ mul .Values.artifactory.terminationGracePeriodSeconds 1000 }}
+    -Dartifactory.access.client.max.connections={{ .Values.access.tomcat.connector.maxThreads }}
+{{- if .Values.artifactory.worker.enabled }}
+    -Dartifactory.workers.addon.support=true
+{{- end }}
+  {{- with .Values.artifactory.primary.javaOpts }}
+    {{- if .corePoolSize }}
+    -Dartifactory.async.corePoolSize={{ .corePoolSize }}
+    {{- end }}
+  {{- if .xms }}
+    -Xms{{ .xms }}
+  {{- end }}
+  {{- if .xmx }}
+    -Xmx{{ .xmx }}
+  {{- end }}
+  {{- if .jmx.enabled }}
+    -Dcom.sun.management.jmxremote
+    -Dcom.sun.management.jmxremote.port={{ .jmx.port }}
+    -Dcom.sun.management.jmxremote.rmi.port={{ .jmx.port }}
+    -Dcom.sun.management.jmxremote.ssl={{ .jmx.ssl }}
+  {{- if .jmx.host }}
+    -Djava.rmi.server.hostname={{ tpl .jmx.host $ }}
+  {{- else }}
+    -Djava.rmi.server.hostname={{ template "artifactory-ha.fullname" $ }}
+  {{- end }}
+  {{- if .jmx.authenticate }}
+    -Dcom.sun.management.jmxremote.authenticate=true
+    -Dcom.sun.management.jmxremote.access.file={{ .jmx.accessFile }}
+    -Dcom.sun.management.jmxremote.password.file={{ .jmx.passwordFile }}
+  {{- else }}
+    -Dcom.sun.management.jmxremote.authenticate=false
+  {{- end }}
+  {{- end }}
+  {{- if .other }}
+    {{ .other }}
+  {{- end }}
+  {{- end }}
+  database:
+    allowNonPostgresql: {{ .Values.database.allowNonPostgresql }}
+  {{- if .Values.postgresql.enabled }}
+    type: postgresql
+    url: "jdbc:postgresql://{{ .Release.Name }}-postgresql:{{ .Values.postgresql.service.port }}/{{ .Values.postgresql.postgresqlDatabase }}"
+    host: ""
+    driver: org.postgresql.Driver
+    username: "{{ .Values.postgresql.postgresqlUsername }}"
+  {{ else }}
+    type: "{{ .Values.database.type }}"
+    driver: "{{ .Values.database.driver }}"
+  {{- end }}
+artifactory:
+{{- if or .Values.artifactory.haDataDir.enabled .Values.artifactory.haBackupDir.enabled }}
+  node:
+  {{- if .Values.artifactory.haDataDir.path }}
+    haDataDir: {{ .Values.artifactory.haDataDir.path }}
+  {{- end }}
+  {{- if .Values.artifactory.haBackupDir.path }}
+    haBackupDir: {{ .Values.artifactory.haBackupDir.path }}
+  {{- end }}
+{{- end }}
+  database:
+    maxOpenConnections: {{ .Values.artifactory.database.maxOpenConnections }}
+  tomcat:
+    maintenanceConnector:
+      port: {{ .Values.artifactory.tomcat.maintenanceConnector.port }}
+    connector:
+      maxThreads: {{ .Values.artifactory.tomcat.connector.maxThreads }}
+      sendReasonPhrase: {{ .Values.artifactory.tomcat.connector.sendReasonPhrase }}
+      extraConfig: {{ .Values.artifactory.tomcat.connector.extraConfig }}
+frontend:
+  session:
+    timeMinutes: {{ .Values.frontend.session.timeoutMinutes | quote }}
+access:
+  runOnArtifactoryTomcat: {{ .Values.access.runOnArtifactoryTomcat | default false }}
+  database:
+    maxOpenConnections: {{ .Values.access.database.maxOpenConnections }}
+  {{- if not (.Values.access.runOnArtifactoryTomcat | default false) }}
+  extraJavaOpts: >
+  {{- if .Values.splitServicesToContainers }}
+    -XX:InitialRAMPercentage=20
+    -XX:MaxRAMPercentage=70
+  {{- end }}
+  {{- with .Values.access.javaOpts }}
+  {{- if .other }}
+    {{ .other }}
+  {{- end }}
+  {{- end }}
+  {{- end }}
+  tomcat:
+    connector:
+      maxThreads: {{ .Values.access.tomcat.connector.maxThreads }}
+      sendReasonPhrase: {{ .Values.access.tomcat.connector.sendReasonPhrase }}
+      extraConfig: {{ .Values.access.tomcat.connector.extraConfig }}
+  {{- if .Values.access.database.enabled }}
+    type: "{{ .Values.access.database.type }}"
+    url: "{{ .Values.access.database.url }}"
+    driver: "{{ .Values.access.database.driver }}"
+    username: "{{ .Values.access.database.user }}"
+    password: "{{ .Values.access.database.password }}"
+  {{- end }}
+{{- if .Values.artifactory.worker.enabled }}
+  worker:
+    enabled: true
+{{- end }}
+{{- if .Values.mc.enabled }}
+mc:
+  enabled: true
+  database:
+    maxOpenConnections: {{ .Values.mc.database.maxOpenConnections }}
+  idgenerator:
+    maxOpenConnections: {{ .Values.mc.idgenerator.maxOpenConnections }}
+  tomcat:
+    connector:
+      maxThreads: {{ .Values.mc.tomcat.connector.maxThreads }}
+      sendReasonPhrase: {{ .Values.mc.tomcat.connector.sendReasonPhrase }}
+      extraConfig: {{ .Values.mc.tomcat.connector.extraConfig }}
+{{- end }}
+metadata:
+  database:
+    maxOpenConnections: {{ .Values.metadata.database.maxOpenConnections }}
+{{- if and .Values.jfconnect.enabled  (not (regexMatch "^.*(oss|cpp-ce|jcr).*$" .Values.artifactory.image.repository)) }}
+jfconnect:
+  enabled: true
+{{- else }}
+jfconnect:
+  enabled: false
+jfconnect_service:
+  enabled: false
+{{- end }}
+
+onemodel:
+  enabled: {{ .Values.onemodel.enabled }}
+  {{- if .Values.onemodel.apolloYaml }}
+  apolloYaml:
+{{ toYaml .Values.onemodel.apolloYaml | nindent 6 }}
+  {{- end}}
+{{- if and .Values.rtfs.enabled  (not (regexMatch "^.*(oss|cpp-ce|jcr).*$" .Values.artifactory.image.repository)) }}
+rtfs:
+  enabled: true
+{{- else }}
+rtfs:
+  enabled: false
+{{- end }}
+{{- if .Values.topology.enabled }}
+topology:
+  enabled: {{ .Values.topology.enabled }}
+  database:
+    maxOpenConnections: {{ .Values.topology.database.maxOpenConnections }}
+  port: {{ .Values.topology.internalPort }}
+  extraJavaOpts: >
+  {{- if .Values.splitServicesToContainers }}
+    -XX:InitialRAMPercentage=20
+    -XX:MaxRAMPercentage=70
+  {{- end }}
+  {{- with .Values.topology.javaOpts }}
+  {{- if .other }}
+    {{ .other }}
+  {{- end }}
+  {{- end }}
+{{- else }}
+topology:
+  enabled: {{ .Values.topology.enabled }}
+{{- end }}
+{{- if .Values.event.webhooks }}
+event:
+  webhooks: {{ toYaml .Values.event.webhooks | nindent 6 }}
+{{- end }}
+{{- if .Values.evidence.enabled }}
+evidence:
+  enabled: true
+{{- else }}
+evidence:
+  enabled: false
+{{- end }}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-ha/107.104.10/logo/artifactory-logo.png b/charts/jfrog/artifactory-ha/107.104.10/logo/artifactory-logo.png
new file mode 100644
index 0000000000000000000000000000000000000000..fe6c23c5a7f87edaf49f883ffa99d875073e2285
GIT binary patch
literal 82419
zcmeEu_ghri(zUjr(D-PRRRmf@LCGSLp;Zu&EGjt&2qIB(#vYX@K~O<57!VPVoP&~8
za#C_oa#AEp_-Z%Ky>q|&{t5Sod1eMU=j>CvcGap?t4@HLiX8R`cGs?5SOs~RE4y~>
z{R{m=fq|cdkh!+QzbNhGwH<ct;ysT3+3osL+IiQmySo%*&R=!iJ=5<ObFK3$|J<M<
zUDk<c<75Q`4H?{dna7-${ey3HkO|$cmI<z2zI?X&h>7qG?EbRjWh(<WCiwRYDoJm2
zt^DxzjXXCy<K<lB;HH1LX(lH=Z*FO(tlN7mwrsmXV@vMtuH6_i3LKvB@BbiFW3~;e
zXD#FZ`&YY&8XxV#|NW=``U}E0%tyONv{e7N&ELNx99B8-ANSw+g})x*Ft5Gw?*Du?
z>35t}4ga+$_{AeC&MH|I?!WK*&sE$M5&b`&jJMx?v#>sZ{GTuP=jz1$9Q*!{C(H0A
z?q?Lu+V%fg1YPua_}l;SWMVz}<6$-qhJP;Rk3H|6i9Py%JQ-JX_l(}RYRvy(5;fn5
zJ^#m(*%;M)gJQLI{r~#}%lT+$|9?FBf1B}N?(@IR_z!RY-^uu|v;4m>^&g?<e_`ss
z0_*>B#(!j>|0VGMf*k)#;Qx_$|A(gj3;+EO+Wtr4{ZD9%Prz_QhqAsNELo{;y5`4_
zuw}cRaYw`D`u*)%tMxjL=|SvvS;6`f%}9x*C7+7z+Y_TX`wS;4-qZTnuUB}S+?=`4
zd%rs&{&!j?(|&2scVl_&Ss#VB7af0Tm(=<6zw~k{xyUgct@_O&<YDxmb>LC}j>q;G
zQ}1lmB*QHmORQ{~liX9j0b%jSxwY1tXRj6x=x;`<&ANNPuSz02XSL3gbfwE@#>M8)
zVsOW%uu<R2g>lwsZ_7jVR8*{#_psMK@K?UEPVjrr`*pk1_j%ff1>GK<Hpw7&)jv6f
z^AS8WVCcb#od^=n(bD2>@3R@dppcchtQ7xl_LCaX-Q;UdQu#U0<sr3%DP6Z~Q>QJd
zomQWIOq-8iZEx=^R{tbN_Bx<<TgYX;qtlPUPfTCK(&XpZ_0Ye8-b*MOxHgYY?A|$(
zxD-NC3&UmEBqO?Vw)L7?mjS)4I`eVKg`r&U;T$7s`gHp*GnH@Vx82>h$H%tUZMh6q
zyI-w*=r-zRF>p>S7i$V&2>N5Ru(MEDy=e5``cuTn(o(Qm>v|g*tg75x9heBBV)Zf|
zo2`gicz%?jhDPXH$w`ClFQ3o*82tM3JIyfe-R7q!`xsfoiYjhtWE}gGR0w}TB}F44
zT6}58NRCQ)&r0j&0A|JI=G4BQ4TG9nqMpUGni}p)ycOK)-#Oxn{415eYxW5*y&4}o
z=waSj|0X?wr(e3D*haJN<lyx`aE91H!CCdv?2Y5&oyCjr;8>=MeoRc+31$~)278*#
zd0jl&-{SE31mme6tJf}*+i*_{IQ|Sydc8h36`3-}J?QADd{MEi>~A~}W&kh$t0^v?
z7P$;jkK%r^t}DTOb$Mhmxi|5Lw33CoLO~E4zw5|Sb5n`5=O@>XA=zqC;$N>s2K86s
zDM>aXD#5C58Xv*_MOu}qY+`y#ewo?muQ-!IgQYe>hk53+TgAy8HfO_c5bbh`+8-2Y
zmvGETl%L=#`RmRfvmd5Y^ZhjR;s_0Chvgp;zyns5Gzyu&7)DC3EIi!pbvom--TV3$
zW88%9k90Y+{rgpKVGVT$?5*@2bTtB<_v!!fz-*qx{gJb4LSm%N2ooVLoM?wFdSbh^
zz!${oV>Hz$`N_RnEt;CG08{pn*UL_)0uJG|qVJ=5evxZ5mLnk)VlpHH{bYwbrF=bi
zopdKPEOFsbyR{Hgt?h5N#~0?}+QbW%@OxDMBDhA^?P*^x&zkw#AYN-FU7kuOem`nw
z%Lv}!2|vYGE~$|2m`p3u<?8CalzXtNba{2=y%$&J<qMm#tQ4_ac8cFSQ5f*E9Mmeb
zHM7=GcJ#RabjQNGG3No&ANkuuakqGKZ6u0|Jr|`7^;Rc_0;EL?28QV|4UC7*O!_Y9
zPk!V{u#(I#w|k>@pZOx~-_9clb$?Uk!ttFm)N+{kG=I!4C%sv?bhAVAqSrT`HKCJ|
zGmi<YiF&TPrYnTYDuyTCsNJ0V9DhUik7HM^!Rs{5k6hdN|DjUM@cUQ8yQx?+Jr)B*
zT|C}cq<j=Rr;<r{ea25`ahz$Zd~D%LsDb4CqxV673?c`s5KA^?+SwgTqHkA(;!5+T
z-K>xFIZL(qpP$-wm0BGz{frcy<92mbp<SC!-`_t-IvqEC@!orqo9@QMfwN4rM>UeH
zLy#i-5S(?6S)aDt?#Sr_!cPoaH%A^YP?)OXAAkEm%kqIyvnuEA;vFOY%R8%1)CI1g
ze`L{YX9)ttJxiStE)Ulhlk4_A{B5utc=D1AUX0kAmf_|0V-!O6Q45i%tg63;|Jc8V
z27=Mk7tW;MM9?8u$?xEK9si>%aNJL2?y&x&3!lh-9=99ph#4>tvTxYRJfh3g=C0Rb
zyYqBB296wsnvep?A=>co(wwIwnFcre-->%g8a_=}_kTp=uYvbW`W+y;^4NOoU9pY%
zkr3><{LYz`;R04CJ+o`))sx9|dZHs)qlDeRQ@N;aSj5&)WKrNK63%(KEPYBlz+=Oc
zdvfYsqTnCfTfvKGsZ;HE_vMpn?XIR%O+UvOH(uF(zxL)B8O7u4iQ8XnD{?1X+FgRv
ztlymadj7o8AFI*9#V^$uBS?q5nhh5}u=>@vHMFVp`FND#WnC9s+%BR6DdKo8>kpR<
zmsl3m*vsSY?}RGOER-fV2(F~NsW}oMEBVcrW8+sN9Qb~hUARj)L+&lQ=6kTaJZtSs
zPckd+?4LJgmjiN5)FFw3^b(2Fm<Jbnr!EFnDGz!J49hjVJu^YS8^cUZLH<ka(!rWv
z8LS6Nch-oLe*@3FVt%P&XQ%d&eJC3MV{O-Fo7-j<=O5Qx%|AxK^I(!*uwbW?N?8JD
zm_-hK`LkeoB3z6;slZ6Gbfq??(ONlZxzXEtvVBjj7axxh`6fFd(GrtX&vJP-X=si*
z&77HXbLYt~RA9+Y8n3F*lEVy%3rSHBfy&B%O>UV~wC7E`&9f2kWtf8ClCj3`K6)Om
z+TI8M`V%6q0Bslfld{7L8LHloP<ZFJc-o}{N4BeeUB~^3-9<E}+#m0{Dcx0CKDs*Q
zd35_>_)geGW)gR>U?)9Ok~meYpOCTL+tMHz<g}E*j3LWrU#RSespwmsd%r$4!@T*>
zf9JX@a9u?EZ8g$$HpJ&xztj1izhVv-+)Onv;wGbz;aDiqb_p3=uKDrGWKwE*Qj!!v
z>WjfXUFKg_k#X^o80GZf9OqD<sk9{Fr%V2G_WGa5C`_*<x~$!7Zt^gi8%X7`Zk!bT
zIeBX5YJ?g>PWGxH>*BL8F(Db0E(R+@58g7!Jq#jz#_UNe-(G$bncr=tG;?0HZf6Ij
zP%sspzod-LLICcyg~XNowJJN8lqkN|2geC`4$ML2ioDy?<^a7oM#55dLLYtwJhw=7
zH;D<wl@KhGoQBJv`RFXDt?t!UxxL$0;VyxaeEq84T3hlUuQ-3E+O43?yBzqPIJv+I
z=XG0aHGpI-8J>3~&b=OKhD9bDPA5w7jM2M@eb_$H;fk#y=Z>v)Np;rg+&|DLR+Dge
zu9Vw=orH{P=qL&l6UsbB7QWtd@c3anL`K0bmk38E9x&coXM2yQNJf;LyEO^C5trdj
zdxW#eNo$zMt|YEcLCSFU=*(*<!gSMuZ^SaJ*4$_HD&De{J95Bz4L2T)Hjr?akb(ki
z%}o>1L2EfiwA=Ga_P3d&`21G<O-a242%-1}QsM&y`03#1>6X^UOMfmEhD(cy<LRXT
z9Xd)h3HGb_vf89io2mNqT0uE1ZAg!3s8W7RqNFH4bu4yI3?u28yNDwI0qE=0xky(U
zEhW|P@p|UEtbHFh=yQJnmb0Ly2)*WYvmt^hG{gBS#|~Bu1XtH|yn>}c%PuGTFv|F9
z?(Ly->4rKPSxe|7F;lym)>evooXlg;S#(ko)*-zU?j`un<Kmu^2(l<qb)02cGu_l>
zsc3mL?bZwD?FvzxV`J4YW?)gdQz@Zwe+b&S5n3Rgn|0Vpr|My4el#|d$7}u7Pp&KO
z`sux}?1{&fjr4<_4r{C~-8P>--{>Rkm{S34a`^)<C)$Y@SMU<sj^~#ia*Xx$r+(68
zLdF!t_(ZvEw{1FTxRG^RkX9JB3w(x5=`UW=hK!IO(V5~Z@RTrZ!#*o|dJYGF<ET9}
zaH@>M>UVZ(p1_ZNw#++D(g3MNvCDG;i=M`=jPKhuSCwbmC$?OoUv98;34UmL#mK00
zMS5^yg|@LS!nv=Db?1p%@Wg7B;1J|KgaGp8?s+%MnneVfzAfdPho2^LVm41_dIPjP
zj@_r|S<kT35_tj0f)|_fA{6Z$F0*nuI`}x_!TD>>7U~)5LKncopQ(QFR%|T2Y@QL#
zk{o!RcZ;;g_?vL3PQ~!|Bh*EdC%?|BLt{gTU!yYH1Fu4$!vM&Vs2Cbnmg|;rPwWyQ
zIkJ2v?40|!N;5k3iMKEhG#-$5wzI~$$<cMc>_OKJkbR(iDXErsD}@tFdKF(V|CzJT
zd|@S!_Ze?-<u-m1;+0t9vt?|kRfI>sCihjYxC!wkPMY6iAL%jmZ{aa!DP5Il2Zu&5
zNxOu-x(kycY#**)xcVEGU!PM6fUT)t{DkMk>PVew#SV0I!vO}Z;$|Wtqzyjew#MCF
zQRj(o@owe(=bXXL)u%`yv`0`|V9qBlc;g=Ote+eZuq#A`jo}ZzY2oRHUd_JU`2LM)
zq;!>zRAi`7^-1S7$4W-fjoN#%oO48frw>-2KWwyt788IX(o|F6u?V`M@}#54o^4oE
z3Vbc$V8B|7itavqlJs7yIuKASvC<^3I!AtCx6Q|pGvtMB22Mc$FNry1A9C)P&BiAl
zifq)#R7d8kBnR{H?i#&`oJ78YusYEGwttj<sHynZk}CX+T@LSg#s=`{uLQe?I{?E`
zo^UwhqS84ww2lr+?g8Q7?=3dN9a2+C3E1u!QO<0j{O3?|N8ByPC}aQ%$LnxOj&VLZ
z*2EW7ZzW4-Tyo}0TWaFFN#Xq&1_9eK6UzwikXC856nqO7{MBa2jSF4Ru4JU!=qvrX
zMEY4|q`NFy2b}yn!_NUioS6BQERL=qB#MB?)!gYIoecmg#Wv&hHB}x@mnQ0k;;qqN
z{E2H`lkEV+xMrWpB2(k=YL4)%<cQmFDlufn^dfC`b{#*d%Rccb{ygy#1+}{bb8?&0
z6(h6Pj)w{}2Q9r|J4CX#KT3_4^{o-=Bs|7od6rnynVcMIgvC89%stS(<%24Do@n}H
z{fK+jRm<7TL5fMcF#?pFRW)Qh`_WzK)S(<Y=T;XbUTYZn^piZG2C&i`1xn%%^+y9;
zSz75xPvZ;#uT}U$PC8H-RNT`1^TbqPmvQ?h50VvwF%{45=(;jEcQ>;R?4ZZXQ0iz-
z9mXY~HxuJVP!g&w<<XbVrATYeB8xX%hyf(PEamit^!gO+u)VzJBa%pw8a6Y!_W7{r
z{^74~HN}DL2hc)ZXhPEdKL7TJTk_iKgQg<}JJGrUFt_4ZDFRz$6dR$0LY|dzrhx+m
z6DsrHlS%a>9C|=TnZ}>wc&vF;o{=^U(A7sfi)W|MTN7Bw$7Y_<*?eNIsfjs9dM74K
zMXYDlh*!>{Ysgs=9+yu7D_}X4BjNX9dx&;Sg%E2af)!<+!zQ599v`=Im#Ox<k&}@>
z+JG|n^Qn}UU9it#0>t&F#ZU*&=zD8-bX)b1{E?fo@2Yo=ba%*YE9?3%7Oi$9Pf>(r
zX-6xY9D`*QlVek`0Q36{oUEVnQU#-YMK(fLXgRVp?7MeTig}8JcuXOk^OiVRnxe-(
zsRVaMfh#uhHi>T`Tqlo@a&RduI{!xHo)`qC-IyX2PHN6FvBT}cxz&0dtva%)0UXs&
zbtc{+x!ne4cx>-5!#<}*j&RSt9m2?^>SN%I2F&_gkpb|;3rXp>d&d#t-1;O)O)}a+
z%<!ds!_NCC#TF+?hvAzptZZ=6_7_~v8CTgAjYXcq!ix!hgkI$`7e63!I7?6F9&(&P
z+lN~PP$QBG2HlOhLv=Pc-qU5t(EW+NPEXpIR?;)1F>pS%Z}l6-^hS?JjR)-X)|=ps
z#P?L~<chM&WUrjPs-;rWjNX?nqgypluR`3r&Z2i{vq*&uJqK^+4QFq$#PtbUNFcA>
z>Ng^k8z)5>P25QleT~i)KtWwh2>s^Sl=GxZS~9=@B{Jto`#p!fFDLM@f4u>Y+4!P+
z^J~)TEWpw91>NMdT~uuccF>mCsl@%=3j8r7zvm#A2s~!Nn6Q2kEh~jwqBtoc#c}6%
zE`Y3xxh6JAt2;(~)paS<*e;#4VG0Z)n-jiI^Pf`1eJb54*aJD?gvlr=lY*%aS=Uhm
zG05Ty<-giUn}xU28QMzqg5q;A!67OExz=66S@5ma!rSPTMHz10O5N@aWORSJWaqSF
z#5T5;w3#+Qb6tI1k4I?>lSoVcx8{JTNBLHy&}gAL;l=l4MQQZHcPk-;Mz>jRKB6xY
zyTind_OKdWm@y?^3*MtXo8YC`|N7?frqZY%f}{<WkE;y6DG3E=c2?f8Pvcf5$I<Db
zfw=U9!axfyH&rxh*b;S7S<URwx18iBT_loO8Kxj@=ygjWzp3*Q$#(xF-mdVdb?g0}
z3QuYBz>dn2_A1PP7;nOhkjAiYN~)Cdv;?{l`(^M)_4XuGcFI2^xk>Q$4R^jQC|}U;
z_4M$43y$C4%bpUKoaQB6aSg6W6?|@puE-~>I#x1$iZ5Gz88nEn;V$BSiu>k1ekC<R
zdFM|4{`}SjZC)5Er0JBxdErm+7MSS}?h5m^<}-FTZ&ILN6B6%XR+P&urn8n5#E(xO
zM2~r)2#?WUd|3d0z?nr*)cpiy6iYl?_xm7*7_`NJb|?Vt%mf9`=hF9F_B^wLlCD6}
z9oduGeh2PR&HHX~_34dv+lJ4bkBMk=b`g0gB+faslo$7BCEO<`#dmH*iQQlbCc+D=
zQ_-o=e-!rlk}~p<S1-er3M~a!A4M4an0C@;TeE}1aF*l)%aE+Ig;Op;eNJSfIx1E)
z4-|mu4E7@_X5A$Squ^JWRa+%1HF=waYR@39YjRRZ1n%glYgC(YXS2>bC5G|zz>fQ#
zImQ2O>i1$=iqmh?w4KKW!RazE>k$FJYSAV}@Hp}Dxv@oPD(@xbU9v#Vg|VN~=km@u
zFH2aGa$G%%$Okz3!_XDwDDL?w6({*eaz-PFup4uj!4){Q;q#Yf6AZ1-qo1rXK;T>1
zU_xQDiJC&ygtK?!1~5B<o>`_l=rM5uBdqD^@L`#+Sv1of83}R<6tHvB4BjN*0colE
zb6Mtu=E)=MVdlj1qdp?8BdRPhLK8o}-ZM1VSWQ!mN33$fTc7D)KEU2QE6!otD7ZEF
z7PxkwO+%;tj6F*p;!A@AwBi-s9;-J1w72v4jf;9S&jFOZf1ngNjwHd*&!v)%Gs|x*
z7bV1NRbW+o+@3Eoin;=KsLX#<aFD#7vPMbY+HjJsz_;RwZ?X3`zr)eLAUWN6qQVDY
zHSlQ69}R%vr9APjKd<)!d3sU$DIUM@+AiOgVf{Sai{p&5G0b~^POi857_N=03Gd%i
z>T-FWcul%~O5zA3F_{WMg7xEEZP~x4IgmyEam3|c14vxDCzQFwJ+1yrks3=QpNIVC
z0{K*Grmye8M-L7@elXJU@g7wH>!9O{VWSH!WBw&h6W_|yg_vOB!VoNXQL?`Eux|=W
zitt!YEj-gno4yDk83iM?Xg<0gwt-VZq*!_iN+rdw_b1WG4CKX0VQ9-^uK(h~!80Eb
zDn6$9DOa5Ee8S!Fybg#^&!bizjkQpV1eKTEEPOwzT$j(H%UVt;ZZn-SpYHvAjr^cA
zf4c2ppzTXetm6|xD@v29HfhU;rTPvZfhQCnhrrD&IS;UhFhxE#7uVx6QxN1moOB)&
zKws!I<H8y*F!WNk0vJN3cIWH9d?B4@Srj(oV~2JhwHC=;UdUdUEb@8lwpsHabj#h{
zr!Ka7j#-T1K_&42eB%6k?|;9}ASK(k5SFv-seqCvextb0mt0=5&Zn+te=CAuPxgV_
zt}yTG;Pq0RR5JaXJA+i#lUOhQW=YDI&31wxKk~3v6pg4>#4QEw9xacIjcujH$TCu_
zc&@tk$CM{VkKc>Wf&)Bc2>~hd)CP(OM=9^m*WXthOg6N*6-KZi|G?3Iq1F1=$88Nq
zU9Ver(vx-FLvAPW7mN)31!Qe3@8|w2ZcY{s3XbT;F3)~N-u-nn;uoU%)gflfo=DRN
ze_+3k*PC{qxY3%Kc~*;txbU`(dXZ&gyhnX;S%u0)RB1*f#Y7+X#lv{KuT0}Z|9X6!
zi_hv+69pP2HB1eCp~D9sYmw}1s*-yJq&#JYN-M!9dr^_Mj4)7w?dtE~cz>}mrkb+s
zHXSR>iqg8aYuJa1b7cjl+eZ_)EPN80TNs8}9DoSJ%Dr1y@Plp$tL{finZ!Z_7^n>E
znp!d}I8pp<5d~{BxqU^=sY&|R)^FCTN`D7=h$aa^K)i1rB_(PuUs&SfN|sWr>mDjC
zJHPhG_aa292Xfg561*bEvo4h}-L9Cx4Bt7yp*s~=Zg`6XV8i(!;%$hwT?Bj3oi}Q4
z6}so;UF|n?g$<QvhKB2(t7o@+405t4zGeozrGhA)-(~f>XZ>rMqW5;%sj@%=0XV&!
zWWFlpcj|sLY7dGBhobP)1Tjlox4Hs?T$m&gI$ncUy=Cb%se9Pf=!gb4Bc;xm7_FMN
z1LT?Zy1?#Hm*^_z2>AG~sY%<+BWu%>n^m-@gTj-K9K$^ztm4O^_c7WpEwht#LF@O#
z6>}fpDB%U-$%aRdsq0CA;|Y^run>{RSb-X!8+fOrCDRw;f7Lp0;ocMntu%W3ETy3U
z)fbT#qcA;7mW*2kB%wo<UevFEMVZtM4(g}ghfI6`G-yN|?YFB0_sZO9OjO3`(^5Ev
z4K@}pMl9K;i{*-R_&ekZAGwVoyO8IyMsyo4DhA%RD&lr=K9z^245rHbV1|W6^xZNU
z5})%AMHNATtP5IZb*s~C#YQdML>0>Wy7;oZk+lcE&Cca^M4Gzb9s@TztYPo4qH;LT
zQ^s}KCMEo9Eg2gPMe}yQyVa(4z*GYAhcHR-hndDyYB-ET9rvvb*VnJfXkLz<O{~0o
zr+dS#)dZrrsFtC10(+P#5!#zo0*h<p6_e7-z069sG1UGS5>;!S2s#HV{%lINC3%<^
z+;NWSHcB6qG`B1)-5?>T>#=}g<;XrT7fR_%i%C2aKJW1$12+)`9mD*s`aslA`0`6v
zEPOT}wyLru&G5j%?OCm+o<QUUZK#$n7i~x6nV$U6t*WFtGi>0<8$t{jFI!8&&o|OM
zuD75C2E-WO<5&ZZFkYgaZ6jrGg{Skt=J1}&j0)ZrY;fE8iX%F`S0gg?FWDme22kXq
z9rOL{!|;f3-gnTjGgMktr|aI+!)|9lgqAPO+$ux7Lk|GLU;P)iDIBliB@|6t%fCK<
z8Vtuaw7KNC>mw+yhBF@YhT2Zu?r~>@J5jKsiloTlxj9&4qOh_f?z>brb<KmYbItS=
zgWbQaswU#<3LGV*trhT0nBfEKs7nK^Q*%FG=>^Dj!}n?pXP?Ced)09wy!6lTbrpL*
z=5QGVNLj;8%P_RTuWYw_ei;-#^E$mk8+TIeDp8Un-_JN#w?5A4@j`Pl)vu!t4Jp&x
z*E_y-l8WcYTEGcZ)8Y{zEItlB;h#loRe|Mm-FRX<W*BR?I#U8Pvm+#^IrcXzH1%&P
zfjr$F__g(1aNe#3kBh4`WRRXK+18fyJ;Vt9joO35FPNZwIZRFAf@1}i&~e(EXZ-rm
z_VvNNp@Yk^t`l;XmKmz>xGVzaHBFnf)vRYM;fuk2ETYGmUFFjOQBa#_jiK$p9{|S@
zd0Ye74e}9ycfng52aoIjvXt<{B)wyj>Y+VdD%-4urKt}9;<XIIV#)8i?+dGkm%^Z7
zts(sVbHj~leo9<@J|Ls~@$LygbFV5P=GtVenssn_&yLIC_4+p*W?w_v&nc=pL{Gdz
zVU_lEVQWfrK6b%yO*H(FMF*zfszI6KcHfm3IizNx8fru*tKUYn{0|CG;1qzbO*WXe
zls*V-xc5Q<J>OgDY_|9g`UeCl#J5S@{_2nNk>B$`flE9nkKfUiZXC}r?ErtM_l32c
z8*7EFt$zSWcM;+r>k^IO?`Mn?`rc~^3=+8jmbxxj@-82}#~!weXtyh&#APaHaqi&F
z$DdhE_w(N-wsIK)-*y6@=|n<kVgNR~EzZ~?vni0>jtO~Se*IEecDHvvIZKqg!`j%v
z{_zs_l6Q$@Dpb%i`}Mun#ZRSNpjVFRd63S~v!azatJEA_QZAl?)N@7nrkD~U1>Q_M
zZ`%LFs%K8-C0rxw)_Jcq()(aTm+D8GOg@u^pME!2|8v`5+0XllrukC6i5{eninm9l
z-0-QC8K_|Rk0P^ynxZqp?qKF?&BdPPctW!P=qox~px=BJN(YXFrTe>xg5=PV1Cs97
zjqw>~;^<*@*S-FADe*-Y*Pemt8$fEHxOH^$7!>dfTBWwm09|Twq8U#JlKM6MoqT==
z)yLe&1za(yG!&tyS;~IaKvyT?*`7zl>f<>3lM;K`uQg=kpgqWgJ;+EI9HPX@7goNQ
z-F6n7cjYxXL;F4J**&wFBi(S`7y7y+A^ULQq)NnqB=R%gU;p`h1Hl+qn7R=N%y*pd
z^HNeHOaY;?o`(~tklB(O8g;U*edo-`1_yijiY@Q<C=j>Hzy)U?!`a9!thbp%KjT@j
z$zydHo|c@qa$m;|<~-WC1n`__1?lLfhj(zuF5*>eE`tu_OvesI=UMZM_`c*4ARB<^
zO8x8<cakuajB#qrqt})Csnuz9G{fXjO>f#IU?dqEPgRhr9GZV;Hi!|}bdH2)9)|ma
zoQ_=qVL}DJ@xVQ<1H2+!J{u80)ML4OgvBN9oamI}i3^n*0=QPpcmCu-3=|%Oe?t)h
z1KI5(p@k>ZBp6Rm2Dd@Ttw?vhF&_}8UGHiFkyH>f{45H>;(~JLFP6&D$u(%FRE=|r
zM`-7hh_hAjtdSfB)U9D;e4WuNYTDL3s{K4D{1U|3OxB!9R^ANWa@I8-;I)t1iY>4C
z7VLxK^hl`5`q9uzFAZBUM|+>K6><`beFV6IHWABpaMQiy9~zhD5Bcazq&cWx;lRcF
ztarvYSkJ9Syw@KLqi|GDe3^c8EaNn5qDub{iTne8&}i#(WL)931q=Y>;YU05soOEI
zDrQ<O7t^(LlM1HZHoe4Liu+8JlEOY(@}VK$AEkrOJg@wCF9`L7a*uZX5>!EL=zg7?
zW1$`o1OQ{=-@~0K<B#e?w~G}6jq_O$Lx^;LH$GvAT5Xx!ZfE-Ton{p$s?*?G^oeTL
zsH+VskVhM%F)X#GT0rRo`Mj(D*H3RqAUMu=@X#OJd8p!SqWb(*Fcql3I~nygmkUuh
zWaIZoX;!hK%*C(Ym=S3WoNG78F~$!cpp<T^>npR<(a!c!8Cb!NB5Y#}rl%347lU5z
z78w+_k*d7ao<iZ@?0~FU{821y858o|R+Ari^1xGeZ+|T8vox57?5-d+GN~Jj8K&*Z
zaZ%+q3%4MV=EbKW*jy8xN7h>*+bWyfv>VS9(Hu5DaUI`Ro?^A=7o3jm|8!~|x<Hja
zWK+6R<zH4+Ue9wZx1^Zd!QPktt^8&AyU))mRTLrA*dVsjyr)uxJ`?$eak>#b&!8t-
z#0A&BpN-pAx2->~9Jm4OnaqinmMhy3w`?^YGA#yI$5V{VXvzD&zM@=$?$ROvcL@>w
zilBll4JTdCB_3Al@o3$*rr7;QeDrIchSCiM=9*ae?ji<J#`4x;->!R~3H5WQPpL#5
zL#>QeW|X#NxPiG5c!yGvoi9N*X%?!RAcs7j>lpIA;ELa$h63r<B#)Iw#D+Z*NI>e1
zH`c>6Qwg}7+7Nwb_Xg+ofs#~wk3&=tPYCRW)!~SU&;Zp|fLkh$UNYI1?d~~R@<Iw{
zK4tI)b)Zr|3dBeq(ptJF!_4Az(u~;sREk+Dez5gL7HL^@s*tf=pXxyUUHO0<bOi}9
z+tX2uUq76X!}pz#)LU7{PCam;u7H;Lb>c!pVe`3%%V#^k#hx6QZ}=3%dXTj(RA`or
zgm^Vl9uJ!$tri<2MNK3k_P6Ns{S`pD<JKuReW_C@!C#`84CN6H^4l@D2MjlFCj@du
z*yVQkt&(q*PGmt|;>f8TBN?3sjBfM84e?q%^b|scDdk6wZ1?C?hf^V9cj5_O*I5>8
zVFfExcF|xV@rXcP9QYpjWaC}xo*z`G31!#*kmglF3*7D>?5h7Yyyx^ds8;GK-Y{h4
zVt|=-b!yPqH<f16c<w#gZY;5k!?`?nqCm1v?@G^T%ES+<hfynuF;AUMx_=;1kR$Z@
zGaL-^!3PO-sLSUgJl(X~-Ol#(`j9FWOV72Eyiqq}MFiF4j4T^{&Bq3Gd!E0B`$!0`
zNV)JSH`%;~u8Jw*Z+jOl9YKJhgzux8X?^BWT@lWZbsuxE`Ov$ug|_hTv6ZlT&hW~g
zdlp%vx(e?5X(Wv@u5M~p>{o5&xw0304(!7VY^BTjBNfQ9k>o08Sr5`bTkURPdwO{&
zBcQwai%^E$o0jjfKTso){c@t(t(a1i&xt>}pG*~=w%NdhHnSYHdG+YEM8{$H15@w^
zUJr-cGO#MG#Ehclq{)KX3U`Jqc7$9uA#i#{rc`^xEr3TK$IWFdv=&zk=>2F6KWaoC
zY-j`k&+{a2beuvOEc{=5Gtn5^QP3d?#ni^M8TBaR#5L#1*WZsr$fpw|<^lyp{6-0>
zeF!*}dF`&_TgTJ=!B_(0EIzuI2Mk`z!Lt6Xb9k(W_k1#%rG0P2P$1|~MP<8#&v()N
zCk96y;XWedBqAdB(Dsk()vM(3>$hK<r_>fX1VFmUfJkL8)V~+P!F|lI;?XMogokUF
zHZ-XO<c^-19H&}oe8?Yh7E}gAG87ain<%&G7m1pMa2qJ86?Gl{5>!V=F6=t^W^Plg
zH!VJllen-H%rU+{z~>3KF@&=@`2_1jvwJWBJxh)d5LU@QB*aPS{jLR>U$q+<1D7`u
zl!?W8Ek}I*3V;Ov&$KK;c0qp(@KSAs6oY^Yk&!{l{$06Ph$ju|H(KBzt1Zox?i-Of
z5JX==5LwBi?`aDQMFOFJ=mUwS*xcN_!UF-@AMj27D=L#^KZib;zDh6v{FRuCfdZZd
zv|=Km4aPOx{PsWWo)ost-Asn}Kr!y2@@o(~;nE1J*|mTa=@$ReD*QsW9=hoaIKt}$
zM_1fsekhhs;^y#>Kr2?#SFc;`Gbb7|P&7C2tSagCI4f<QK(daHb^&omm?2k9VunMj
zKof9w?BzSVEXw;0l5KXJliII+z&Yf739CI@{%!|ro&6a&&4>u=eMr4<#$K5Z+1Lga
z<k*}rK#Ny9O?-C<i3kMv{(2B3H#8R@tq=Jp^@^e%`0EQzq%uK5P1lgl<Z5ny&_qo(
zDoLW$WDgr2F31Qy2SPO2rA$wOvG1970wk(;voq7zZ`Z3+j7x~HSD<-qn@Y75%>)ub
zyA}pEGa?j>LJCE%_|QU;@ZfZcatbAmGrbZdyn$}RTzdO4P)nQq{-OL*nFlpb!mvbW
zdhd_%R^0DrbIh3G^_QRO=dN_18cXdoyvvn_An-dK^3w&LM;F623ty9iVO2WwoBMsl
z(tp1|z9dhy+t<19IHvrGrmWZgZtqwOM4&TH=CW*pDk;b&sDN?&9AQ9%55o~H#JN1y
zlN+OKtBXcL#kwE^h)${Rr~LZf@gDHml=tO?B|!Y~I`msls79jZ*Ox%D+~mE6MRmr%
z8<mG~T56KVxg|&SCIjhHD`&5DqxSfoXBLP|2lNVr#y$|oz3_7kt~=ENOg0FbPD)HW
zBJ$)Pt-%0VEjK%LEyvoTT6(T4#79AX-RGDU_2MUS5T4GQ#!0zsq>vw!bvNpEjYWEd
z11`Hh-^xG2fN}+tctJSLb~xgf@Z4vs>;;=T)3sVD_k;9l;eG9A_7udn<7F`b6OL*v
zZBB$N=!9q(RTf%0ciJecuTP$an}p+`fWNQZvJXQ>!-IPo1rn>1O-|@GrTM=mi^qCo
zIAWXN2;kc>&~(}a)}fVoJnv{qCEv-73Bu-p635&3=!DdR>&ou!JPPF|Eyc>yawx(_
z^;!ezA60@F#xQ$3?cw(nqzA;m!~pqL0%9O)<^>_96lkCbgCIr0f@SI)EN29bI}Yl}
zV92f<w*$JUOvAmd=qWuH8*$-SAv7yHOyfgPmfwdNX8%3%LGHNNjO95MB2)plZb?47
z7b^r;0?h?khQdD@{w@O1M^)y7^y8<mzvU$RpzJ@Usrtz@@Ca%lpTYAxXkOdS8Vnd&
z&1@7Qj|VVrnIyD_lC+2ZARgeoeFHiTVV9w+IQ!s1Xmyb{Jr|Y;!fAkGcBeJez_IaR
zOvH;EE7HKu(V6eIt~~{{M2bU1&R*#75i<bqJM}k-L+Sgj5{a0bo}_8XGNQB&tlLMs
zz$1v!&1P2<xrV$Ra(a-rSc_3C2ABsyMGFg1li~a?z&fzktig3{hypQN0HChDO{V(O
zK$&d1P=*fd7TJgA4M>OHs){}GP{ZhFh``z>z2hj+a==*@Bi_^i<prMKa^*f$$s>C2
z0<XysA?bTT*_?ktm&LyG5PBC$(6~MYNntA#$87OO&eEq4qDpFho0;<o1|$Ffx0JK~
zFNC{61;EzS`9@2Y4k>9H>$=R2QImQ&YYbX0u4}OOd?S<>H11%3rLT6qdT#kM?!zVE
z%!yQ3&MN(|T8LNmF_p`sF%oZinr^z^F)1ru{Q)f&H$|OM#BX0GpNh6jFkG;^(@dum
zqzp=)gHZh56cP<an75xARIMTLD_|LB;zCqDsF+0Zzo!yp=_WMYmU82sd~J|D4h`#F
z#BC0K?_S3EUbSjLvsmQ^p|88ovTXVYPHw|H6NY@iKrb+`5h_Bt9nvD{hOw3!S%D{T
zHe+Qg)hY@~s70eq|K*P7B9uF)yR<Kg177Ah3B5HlAwkkg^Z`{)N5{BOqm_WKe04im
zU38j0jT6P8pUZC^ftK%Ii&><+f29d>c%c1Ui~MH{sE4EnAG-&`L)Pelw3+W?5=A}O
z3#T~7PNdrPGXetjI%u3jg{m1%4A6#msJiD82&1;cKvsS~t&V*Pmomb^DJcwv_Fvc?
zB4uy+Lm$c0#=_*@fUiKlBp4s<OKPT$QyhJr>Frv3*Ct-3RML#NFu4S!eyrd#0|bFo
zpnS6z`{Ap6mw?mqHuBEQRx~kqi0xJ;x@cDP>D+pPFcm&bm1xKJmvH2ER!j<wZKyV0
z!rY|l(UY~$TF+5!p$(D1oVW@N88_-L`X!Any2b_%Tm<#toW&bT^6*jKjzxE|yFol$
zQo971P*{~~fF%V*P~U@s2CkPk5j1myz5Vn_i3x6Fj)l6@x%ovxP0>1CS`4P@)lynU
zuhSU&I-(!Qev)Jy5GY(0zm3e^!Gd;3)k{%7KBDUj>@E)NEg<V6T8cq)N@2zzhyGL7
zg~<(|hIdsmm^;&Xm*fJ;NUXxgvu-V{Du5OPst`-ATz$vun@B8r7>xUAm5hmHH)b4L
zn*FUoL^Iad2~fVW8E~5p9IZPtzM<U8FX;);4lNZQKQbSzVf5=G;|tUj`UwS0<oH)%
zXN()&s`04!oeZIxsgTNkTA$){vx_Y49Z_fzP^vS9WUPZo(P{kQXxSa?RqM^Sg6)>N
z2wS2Ku|~TEKWYXWwU%omNq$iaUD_v%YSZB>y^b>@v{R@{3+|j-+3I^SwDCyC_lOW-
zC}B%BvSCI<5j8}<X~1m~7HvAnesaDWuU=kw-6*2@%-BhL2&6py;wM8rQc=;I$b<n!
z3Xld9KU3?NM(I!ubdM#rC)jEQP<$I|?hX{SJAj1d7%u+v5_Abh^b7+#g@|^7g_9+<
zPR6&bN%{t|CR`NEvn<?5%ZR&I%B4ayRGpt+Q#3ctV1<bIug2;(Z9vvc0`u=hG@lwf
zDGvd9%mYcY#P}Q3C4zF6{12sG?0oWPh6wp3UY3E)$u4wa+fKk*GS=F_M#XFk&3Vs9
z^fb^yhI8iMSV*)zp<HHx*T&%&D##BcNG!luguXbdn`SJ=<lN?{k7}F`N^PUyv4<0k
zs*V#7Ac7N1Gyd0=x4aakMH`{%53Wz{ybA<`@`cr@@Ija1$KQCs&$PNspfykv?Kq3_
z+8W%XA>p_rXq=}p;vu$kFt!t$rjRAZ^@nJjT|eqU>Qdqg-&KNueJSi$Q+%|^fOlo#
z{A^mU*Rbd>rvKdO*i$G4g2Euw?bIo~6f&FCQuoQNBJ-x`1mrJw33tfHX5+dFMs(xE
zB)^K75%;|s=xcG$E?mqIf;+LJ&3?9+tO<3OCTOabVQ9g`KnB}=ide$2<v9L>r$5eO
z9+C%m_$;NBXueI$Dy#Dp`_0iPas#bZ`QfWcWzT-0mi7w+xYLrxEf569Y7PMatS$AV
z%h14tHXi*(+&`|Y&j&dfX&8r-uvM=H+fp^21e-7*PghqeL&BvnPQYI>%6?4%>5dXX
zyeska*w{;lln=pr5~W4ysUi{S^rU@i5g;z))k!z`yw>30W~w`dW9fbeI6Or86;M6@
zEFVCL1u`vY-g7ivd#=UINb$W@wR?N^g2T8I=|;Fz=wB=kOlgXF_hjGvj49C6_kb?%
z3(-WRNqCF|c)42u-_=Y((NcS(eZ8jClrG~Q2BskdELT?9REx&YVL}D>$@xRH@$LQZ
zBO)7(8CGZC8UhC>F8cBuO1rlqyj&5yCU*HQv``?ZD18o+9Tww+u4v&@%Seb)GD&B5
zm(YQMKKCTJ#6Hy<=Yq6{`a69B#C9X$Gw}-2m|QjhL>|b;?_}=w`I8LX!EXFM>%2&L
z(W*wqj&h{s8bZnUGYQTMGG;j<<R5sr(dKssEJ?u&u_Lh3+Wy=D_FB&f8q8Aknzcoj
z=+Z#bp*rg@@og(a^(D`a*GOP~PdOiq>&v;9A{bMHD6WFEY3JIAy~)UrRbZz?@@hbD
ze;TR7ka)SNGf9h?&K0K7ipOZxl}nv>?z2J`BFyXovtG;+sb9HOi2G8Os8%*+2Y$H=
z!^xyUouR^0t;gVG;ukjl@*CA-4D38ljAYo%f0<rHMLWeq3Rn1ZL}>WK5ZCljYNOd5
zEP|b1+6Z`fscPtSGlu3scT|Q`4Rq@wn)i*J)bM?VML_5bS6l9k@zE(Dz2NON{{!(u
zRtzbX-<WU8Mw>RGccF$e84$HM4kFqoq<5JIom=du^I1TPxLiMw*UH<RDvUgL7crc|
zGkYuDx%tjHe{Fo<nhVG)!@u22gcbf9e&Hf21I9*OluM<?z9-r-G8SgNt)ufP46!(f
zBasP#+-gPNBLH3TdcRuijUx9JdZ~GFx`C}Z7rD|u7&QU1J{sOJC%ckifKSE{a%!S<
zt&y{Vj+H`bP$&axj@kI1R=AYPX&V~N=(6)yk#m5s%2R`f29FD^T(vf=F503^(<eg3
z!z0Zv9siY)q{4&YgLjGUmsWXAOE{#Ms!t)jH({pt3B8CixX8KNL|{c;Rfdelqys?z
zozG+m;m2B}_)V0<TOQKMQ4=GABxEJ6w79=L0c%V<0hA*+OeF7d8H6V9fX4@pzJ}vE
zLU-%7b*b%?au&~TvfG+QEvwVcEQ2)W2mE)GG06;H93302M>8x|*l*qYLdNn;;N8pg
z6H{*8Qs5tKfOUc%YmUO^vhl<2ePQs#<Z<x>`@HES7B16G(vLsZG18pv0$f+vuaN|6
zSv6|3e5r!{0S?&mZ<^}|)n_QZ@?XXiX0d(ZFIS*1{v(CxzvEskFs<Y<|Lj+ev#S3&
ze>uEFoijx3A4+AY>Hd$+eS$^?pqC;X?-b8Di<RJC8jG$yuCAQ_$J@`49f<4O{?s6x
z>!Fi-UIOFtuwqVYblCKTuK{dbVmr86+{wkgpdLKYqI1j3sw>g;x@&SS7e7plLgn=2
z^x<m6w}XBVdq32B`}XBbXVnl`5bE<VsL+on?Serhyc#zgKVya4e!Jk~GB6==Rl-tS
zy@%cv5F1EFjwjgfd@={9;}0C~<`Q~R`ZZo)N2m|wOx~-0;TwWhLW@>XnGItjC+H9c
z2U**Q_Ll(rJ4lCY(CwLgzX5+1HURt}fUtUK^_|5gulLhmy{=^Lk%r}fM-<u!YVd1E
z;EgiG-3OrdRzm1#F63x)a(+K2Qgr}C7f>z*FoI6m4NRW0(D3o$*?3-S+&#jooiWT8
zexQ+Yf#0@-00SUS@CHOlLyC|4gG7(P`#>xKnpQ!c(hIr$Zp=%X*OnPxFuUNa8hy_H
zJc^H}t{w45di4y5k4}w^C9qqnMlgpWz&(2ZmgZ1{=*4IqrqLMJM`#gu30KHJ?5jco
z(~=YwCQ=Wl?#;!Zi0G5+h$LGCd0E`P8bw4bCcgSn4`B0BnQyyy3AFMDJHPaV#a6eV
zAraUC9im;#)j<_&mrY#N-g_JdhV#ycU-loC;XnWlOxv2xvm28|B_X`sEx<i=zp${<
zL~!4O-o+ZJHOx*hk)gWp=Zi*ZgAy)op4&^*d@Av5LZ(#|?jL&$2*<s?0Dt78P^1#z
z?nig9HR~G-{Y=>_=;#N=APZ*$@#_rH!i&%Q<Wlb;G7$NMKaOoV2shBX3Zk!M32zv|
znIwaug-J~}r~T9Cj`6ZBwEWVo3Vy8^NzR5)6B3p~VO<7_si0V;&C`2{y|wxdxx;F0
z4zk<uo_14@&%|=W_64B%FkACYHecBo93!<WjCc0Die?}4lLBl6w_&Hek7;RX5H|Ss
zcuG@%V&lfZrov^c7t~e%7;e1GwE$fJ6Rix&JJiJAuLkJ0N)3C?!h{=gv=_2N3k`c<
z&=x)tm1bCj=fBY#X`yfkB+mE(uxL@7`yP%kJ>qPgFiiJK_~u397-=Yc+N8T&MT$-(
zqh>uU(+#t4I&GioM#F=qbc4|IiMBNb%bl|-2Dc}u;Tc<yDppvjq@e&KBX(Vw24P3_
zJ2l#o3mDizA84Ahv)_|KezJ?`NO`q;wiE~mMzJb)$-P97OY4hVlh^E-fPF23d6G|^
zj!fJ{I*L`X+xxjXg6<>qE6L&f0<Z2!k_S_;UqKlb^<CLgbSeUM5}^kepoEP>jeu>a
zTO#&>o5>rw%;rNDzEmdCzV!fcfy-Sc)3lFq#Uvds*%eOIrd^n=r;4*KW6480v4b6&
zDg1XFpP{*8&Z_Um(b#apX|fOP>a5S)JUX}pXAR|t#sY0KL`%=orzS`2*ku?swVa;!
zQt^lyyKaKE?WDv-Aemsu3U1*%g^eYQkbOMobEqm?$$t?G#fjCA@~;7(D4BP}h^h2Z
zIp%E;Bbq#VmW=mfKvSY%JvRa4C)!Aq_;cn66Oj%yEJyrQO={kqq#e;CLWYB(iLhj=
z)@!5_1N@yr?{+^7QIE&FmC@WIK&2<@`IB(^rwj+c{3ocV`>NN7lKm=PqUAQw+{RjA
zly?k>KYGjMZ<$RXDhn91qDmN`^%;oBWHiCKf;i-qDr-Ln0gr?rhhwi^WD64`X6Z@?
z+&Fcz+KpVQmtV|@@;PZ-5HVaxI9Hlt#8->w_Zt5~_cAa8>fn74N+mvL3(&~tBCQ0B
z4hP;~K3QFafx<@K(S8EBD)e9&^61!x!H8x_DvuL;i69Vgfm5;`QBMKn1PWiyV{P&j
zFVykeN(r%o?7p&5xN$7BHH>tVc!DjSH}7nNK2%JNs-KI-`y8?~jd82(fBCgN;c<uH
znGZ#Ewq(U6IpB0PoFCV`+n@m>!aTN>m9@OP_XJ6qf~yZC=r0EBd$lCF@^Iz}9QoO}
zr%xo#8~`E=3Aolzo!y00VHOf%Mtwp8Z_DnBC=NwN*oq7|a+f`OKEAVvV3;nB1Awyi
zHX_@n7LPDwf>o-bNz(*0gT5m1(?IMIY9PH)4SR^e;6m&Pkh|`K?4EK`@z0FBsk{+X
z1_dFTbJ{6p+Yis9B3AIRoG&oJf$%0*B;1Ns@SPa0gS<1MW8sIc>tBdH)dD353?wQz
zjZKjB%sBbH%BhQr&{20A`}(z6fC6fzDjLpC@sK9k`iEdrvsY~diWdrrMd=nWEhNBQ
zbYFzTw1S9BMI(8FG~|M-Pp*U+AP|C!EFPU5KSbs&Sythvar2JPnUk1*NiK<26rQ<r
znF8GTU=ef>zt*#oCLe(KXGGsHXcANYZN4A#Jw{r|V{Aei{TOrszxPi`6Ms?8Wb`|0
ztkDa+&4mRF&2w$Xmg}`5Efdrl`o!)?DX+0-J+S^?>7`RfUQW&qAM3$m{x#@os*q^+
z24)3@4n5TdGc3%M{`R6euK4>=7AYm|g<)eImIBTri@}1L+yWaLeH%9p%d=dBXjTSp
zJsBr1$pPHrDe;fST1J$2UZEMQc-XI-#S=RTx;~d+tr1-EJ-+Bx!1%bEN6JmHbePT~
z$^fl+!rk35giwo`{|64aC`(XrtHa!sz?PU{dHok}QxVcToB-94^Zr9ClG9H`$me1g
zOnj0)x2c$N|D$f6WIzK2cQUf7r!?+-hYwb?#hv~0t%_`3sJ)VbB-AYcB<cP=NL!U_
z6nYa$uz1S2L;Y+(7s4k1mX10o#8SPDt;6;>EGvC9U^|Q=G8~?G$Z#h1<u(CstMJ``
zeuEqVj{sBXj<Fj85?yn6;YXH@$HgDyx6-MIV$>2nxB^OFZFy!;Eg(p+hI6%D;u1A1
zu9nyUWu74Gvzw3MTBJzVUQ7}u%Ra4^x0DkVc^xhUCO9Wrv33V{o;jt)nJX!{QXb1^
zWX!VlS^wIz&nNCdLDK;1R)}ZzIvz$%?0ID}CwX){`;5eqJdhDy%C6%_Y344$h72f2
z9~i6_>E16IDg;6&CY>pV2t(j=32cCUX#}uh=kdKLh}5sK@ih(mnYYem4o1vAJoD!R
z3fG9BV)}i}fO-7mvGFX_tG({fPzZkW3OxVJxNIi0<cvOLIRS<9&GP|c?}9D&bk;`Y
z#*As`qn#ABLHRi|-fWhxx960^bLZxO*|kq+j-MnXn!*d5c+MC_U?BtbDRfbe=RbH%
zxEUk;`J%z$ozE21=U3KE59GcHP#&5rs`%(Eb{Klq0cc9H!*OCi@hzoNzczI*&E>=j
zZf^-oN>hoQ$PtMdKKQJ;aXT+h*$R{e{zXb>@4*Af&;tpK;RF>V7_iAKK9|3w(X>bM
z>}D5K&9N_@-q=ArpQ&Q4QcD18#PZo1Gi?E}b({Ign%Bo&l<YFFU&m;Zn8?m>E&vgl
z#S?GOatnCe16`Wt{C@j)ri8y~8G&L2RrBLPv0r?*8`cZ#V=aAE?h-s<1wXWdWPte`
z7BvLPY>@T$$K!<Ito@*rslVoYm^9k~Gl7+$ECuQ&eB4RJ%48l~8H8w}4O~^g$J|G6
zQOy`lc#0@~TdPm6V)w0s*pJ&hJZlHzcv6*CtarxpIl<x;gS=zr^#t9az=7$Vpo`l3
zK{u-9Y-C_X1=qR5CqssLo7@!n5kZaIlo~!R0RmjjCPs-L@Zp&SJH&-5@EkuuNMuJ3
zzQOny9^8YqKB!bC8sB-P={d;Oz2I{dPa_(>kbDk4teFyW_GmF+5>dnDYQc><vjgFG
zU}O9N?D1YP2&M&*3-k*D&Ep;~asoq<1%gNkvnWK>0ifBSd<%-zKJ2;ipafT6Y4he6
z8{Z?TY4NxO@HfvcHtPC&1o(zYMOSUkrMErn+AL>2BCa1@+Kw@_@f401y43W%PjJ#4
zQdl+`lb}WtYO*wKj41sosHNcy)(CDu;m(_K*zC)W!(?KHZQdOplRVUX`S`dxe4z)Q
zscqH=#oXT?(foPb4p@g6uJUJ#PP+T6D!@4wQmZz;J$XcO8N_fyzrDg^MAbyg>YIcN
z0u2L>N?nMML$i*YSMwC`DHt?tF&>nE$afH0Xv}rO<7cb(BUKP^nFjd2!}%b;5#ScJ
zXEBB}WuIUPV{QJ(<7lo2)6^%S*$a<ihlMCxnKCoxirJu}W|7B8M%#@sq}uRk|E-=W
zoI3~vDTp(DtmmK!MnMMwCPOQ{=UA8vu!#F~vt)S?d$AaAUb{0mWzUDRp;-Yg?YV)|
zt!)r#?mU*W9IX9AIZqz%hk=HncA6}YU3c|#74r@ID1Bd24*}r+38dp86(7qjTTq`g
zhp(WqQb(ZbGGgw+5K3h#bYom^-F=|*0?nN3ySNrvA&Cfj<5&i8!}#Asnc{V9u(X5;
zVRa_yG1B``Lt+l}Pdx?u6_x#*drBy5SsJvwDU&yMb_<QQ4(M(M3SH?y{e!Yy6=+(p
zg&xeD@!Aapa)wlA3xpo<DPAhu_0jD&$QtxGbG>%#K?;gE5DTw0KJ2wGR|<4r9TsOD
zj$!?YIu`%x2YtJm2wzuuZm{{SbQ2XCFt--_D)Po3V>8l258eqr*dl7kEi1W^D*lO2
zj1p>?T|^Z?x=xr+uaIp(OC$}`H|l&|_5)jRoXxX-?+~UyYFiS4SpM#rMYpuD4@T%b
zw?{4Q&|Gh#IGnNm)<px18{?|u=3uhH3akJ!cialQAW5<Xe<Mj`WR!|tJfYE1l?iP&
zkBFfa@ZyOu*fGB-E1A2MMX0&CMkDjWvK*+<U#5!vML!Kt=ZIwXQ)m<sxY0|++zoD{
zAT7m}liR;4LL_X95VB#B8z^p52DF9Fj8kRH`}vq?heBR#5QIG=nNN=F>CE;U_;dlA
ze(bl>JE7_G@+>`|ad3ux>p77P?TK+}kfZxR|IeZPNRZ<y>sz;3i8+HEhz>;`VF(nS
zfsS{=7i+5u2p>`o@EOgc5oJdR5E;*}<R2#tDUoCVv3xab%v<-`*Yk3P5-8`)|E!?0
z21z)5;cF|CG$+P`D?q5sn1Df3+=LRa-z?2n*oqwT<=8I+(D;kZtV(9u0^P-oNcozT
z<2KMfBtztKfD-$5Q0@eS#c&CJnCaN8@?V3n!$Zb!561Q%;z*ad0N;eTR8ZdfGfH_|
zgs)`hYanp>EEeIk>l&?;4|SxH`%k??awlFkD2J(!R<IF<Brqkn3zoU3sryGxj`JK$
zkStWYB_3K5xf3Bl28cf5BLz<1#CWw8TLI@D>Opb-gXjLU5ane@3y>|yZgBhL#Z{h{
zX|wX+Tbatv3*aXFE1O1jKS=W0m%k0PS@qH1(vvfLe-5@u1SakK+_XVD3RSIhw@pc_
z+;FYu@#F_crPee*w^QnXz0Ao_@sa#J(ClKsVoQTp+%s%1M6@Aku)%iL0xf#ehk6oy
zJ<zirY+8Si`8+>{NSe)r_Z4GnY3n)zj1V=C&e`8%fznQ<3|25V2;YH$&jbnmfa%n6
zMv8;-OX`LGU2((jbv;yOL@G)&cfvKA=l`OUlLWd&Y94+2ftl@1Laf{?XQ@+VAYAxc
zL&i++3SZ$7HMEx%-te(?uXx^W1RJyCh;?LAI>M)mI~ALBy<rBCIfe|$i-&w5-f!|9
z*oObSfRVy7_UkMP3))yNI(AUq+!;xSC1!v=MraV4YmSyt5(P)4a4vAhGnyW*K+SCk
zr(mP0>=7+|6ylR&eEs5OuHq~|p}vfs^tfm$^wkH_28eOKo1BP-;gCxO;SCO-d~|<Y
z*k}IU3>NqANqxKXNJLi5r6-g2xmkE)^RGE?(u^GZ(L{bFNFal59gbKut19#I!e{hO
zrlQs!6gK^jnfPI>5EVADd^v1Kwt&`x$q)S~YTLihv7=gIYTg~FH>i2cz<3i+q;TEu
z&*s96!8Wi59P|{pTXG=SOqo9;lT|&V-DNV`+BrM%TL{Gf6lr?@E_yh-1VwEHJ@Iq$
zRqt(@L-zvI{nyu79F>QHZ#Iv466sqP`c+?8Qcmjsu{|T1XVI}_`hHM0PJVDiLybkK
z-8<XCBtkqu2{Jso_+z-%Hz%4K(YI@WdOy%e4F22u`x*X}er^U{vS*idPiJOWX3Q>c
z+=7iMMP$LvSHTg4ZZd>6WfY&r3jYSNt$qyk{NEwOQP~Jum9c!4U>X=hpX+((`p+o=
zVhFZFD1pLfFz8lU__$dDsJ7(BE1h?i4#Sm{Fp=ro%n~~;q$OigQ8v}HaP%QtW4IZ-
zdLcy7T8=LZKo}0e7^qCHR)a$h96hH*Z(EnK8qzF2+I@Xm)D7Oel&s}{-THT_rQiry
z<{KiVZ3S&g$;3|MwqCiw+)T38t8b-^puC)zIQoS&v<XH~vm)t=#)GmreSM%63=*zD
zNzEQ8M*c+*z}OKm3jW5y;fv>3W4ki*T67*$wo&}OdsOIqL?G1oycW(KINaPLSx(hH
z3@wO%tbiT26)g+|^mDDmZ$*tTr>pH_D(iQ$^3vaCs3(KTz{v3v+A=0+p2Ae{)eTT@
zfb&Gg6`iHQ$kIiXc^J!3J(duLsoz1yJ0WLxDiUzr>`KsuJs!UXmm)O`Z?ivi9>Qqh
z+{7y7-k_O?t$a6GAd@TBV4XAkET`_sK^L1NR;17Nz{CA7;U)Orz%);hew6Ilg*x+t
zA!fz7P>?u7L6R*PdFeu;7NUWIZ&|?ReFAm#Tgo=lw+WEn{>H%2Cs(s&j(=_WaQ(+Q
z)nEqLws){?z8u{xpu|R8Dw|H^xBRajDZgwiEGI`iU77ya4Ua+nF-VGM3qIxe@7)3@
zbUca+1hQewu=bhHFCXDJ1JOrNh7~Z>>5BHfGcZyabVmHh-=~gF-3UIH(Z}1&c4QT3
zCZH@&jU2TI+(mo{LFcB`1*{*zh18Ch2@3B!_xr;KxngmyKQrp+%}Hg<EE`WUv7+p@
z=~;)D5Q(#qXz79W*}Z^2;9QKDmDT8n^@Ei1-cn~xG#>S1N%1C-3pKf+fMs;qj9BbK
z99+ZG;t`dIE-=8qcnG@lL+wk?9m=gvuP;dV@)uLkKBxRUV47m)GrjXB6cb~Gwcvwy
z^{*6xb9#Z~r~Qj5D=_>E@mvCCTty89>0MTVYh<<Y)~gn6+xbET7$2sFp6f#MQMd1!
zT9Ymlh$SCf&}}upd=Gm11h~zfh+7n7fyeo+&2Kg_D#@~<a<%3eQ~KYpkW7a<=*fKd
z?FWYbnmVlB6qOI$aT;u%j=4$&C7r$z3}@Mw>ztlj@LAl>aT%O<?z}d#x_zAT^yw!5
zKrdecXf|%WU_8%$nd*ux?iA)SHT6r%Ti*uQU#whkpDz<`^C$_PUwbI{|G2vDc&ghd
zUbib;eahA*Bb!p9tXo-0NcOIbkcec{CCR2pRH$q+v)9!W8JT6?%#5t;`JUh9O7EYI
z=RVJKp7We@o^!tE`|CD)esyBZZT7TT`JD4g9KLJ3w8iqx(&$WD$MX~Ye$m0s7{SLo
zNRG&x>dxGqHJhG~A8XH5C>J|?%Jq);f<sfNVe$LZQ8HmD918tp{28;W8qcYfGApw;
z9py>)-ifYv2}9UKk0WEQ<+^*&w(Zk<%P7?|djKTOvE8yDEQLb@6-eiJr}npOJc{h_
zvp<hNF;sscT|ilij<t$FvY_)p&ZZSBfn1MIfG~9M`vr!kD5J5*QOwcbZ(ns`eyw^L
zwerBtv~|+zW78*Y(r8o4o08eJids!rEwRC#t1%LHoIP?<22aC@9x=j1$i9%i5c?99
z!RG?>QSUE%Xw4d*AL+Ltse%{UJ?Gbv96cP$I>SBrY`87FJbf`*?>TftuhMZT64YA1
zRCldi!!^oIyxtikKCbmS^j%diQpZHj5=%$6JGxE8=tE(}=R#ED+Ul=AV#Q+5w6MXf
z*w|52i;YP}$UMbK9ixtcIm|)fgTk)wbpxS#PZBuD#G$78Xc3CcbaZcP!L`$nCGJC~
z{d~k5d5@BwZ=&~01cRs<T57m0t9xj4jH}>W5b4=)@-pF0Yx3FGb$cY67@n?{o=CU4
zHX{x<Fq=y2eR%1)9=3WFTrPP8lc=$%#Z=4O0UbdflE;o>IcCvYJW%usy_okRcjZ^Y
zQMDR2NM)P@nfnS+KEl36TNu7JXuALNx$aSehQ`LuB-PUq#Ap#tnGe_YIZ|I_tXt7R
zhO#7k)Ymk;)(+}U#rK5ue(<tO!bvB&J;rmquj95Tv8jEoe`UWWALr)W+{c{S<s0=c
zqaw=JGR%sUL~>lC0gP-;miALYcR!BiMgcx^#+p%BS9CBax!c;YLVP34BhEZN-+gAX
z*tFyo`sht_YmFgssHv$UJ1!FUWUCj&fkxjt=yCP3m$%)M-_N><B3(Cn^{%+W;>4&)
zKic^(VZ2d>XO)RbgcchPKEDu(ljn_wx(a13G1NL44P2^8iZmnL)hJ$@!KSlEOJAW|
zn00=13_Ah1&xAhn0q=G757M!e02eQPofOJCe>&H?yv^o@I-SA*4M{hTQt@?*NX-K#
zcd=Z1TIF%|AS3|7RNyw<m!YA>J)k-$nw!y`smvs*E-jgoSATQsZdq~UW?cuJ8hDS*
zt-hD?DCyPmulkh*<7HqxUpO^6&J<HpJkXDl^Q)Abu^P|${p*uyOKlD*x~PFdp^eOM
zhc&i37qS7#Ywz1@(q5R+u&A7aD@n^JBahzCtFmPK!19xOG2V%F>az0J;^M4k+cO(Z
zBDNWD_eC62C4eZ-6^ya6KQ0lo4aW$=&Mnw>SUGk9&=0lTHcubAh8cQWy3aYYZVI|h
z@Po|Z1;3io2S1iE$lv$VfWVabrO(A)Kq=QStBxL{nSIMS(AgXp<wWEM0%^y_qxLL#
z7vw232u+t2^nH7x(eR#<`bHM0l|L0>5*@{-vZVL@;)9qgmAhz`smn2~eJwKx<pVO-
z8)dmiV2|VyL-=a{_}WNhdLutyyc``%y$)=)Wzppf&Xg+P$H})z`{1O?SaN@qjyP@H
z;frL4pD(;8^cr3sQf`+_h!39z>!8DJglSc9t2+v66Qfj^owS{G>U6H5ce}Ik`9IZz
zzN8b@piDbmz&AAyGMe+Sxt{9xs}N1`Ru4|7pM!cEZh-QpSWy-p248k(NO#g7xv(**
zIr{K(C%Zn%%%l!Wk62(wPH#|CXF*e(REMF-9fxIOb5R)r9w|vfM_}GB=GCDyZ}{UA
zH*b+(<|6)4<#{7qVR_DC|3E|?9iXwjKveruSazansDBL)Ep{bkFp5gtml)1E?e*;P
zvAPZaNfD+@DBE*uml&Gy>HJLZYU$wX=&5i`Na3DD*8TItVI;?8clVNj&7Fs?O+{Y3
z3aVGGZe9nz%sb;9m3A<*V7o~9m)t*a1XV0X7|jPf4{_KN00>y=MGZd4l<O4hEizTB
zK0(q)6NbIwCPv>cXW~D2loHHL-ef}h^hPYKdB^QTmtw_HK1$=`BBPCDwV12HIwfWr
zPE|a#Bt!d$%yjHI^<8?tW0S~bc=g9|{S@A6z>;%Uqm@9h-nW!%6Y8mFlbDsu(k_tw
z*-IL%P3G)eWDREFI}Rr2ylF0I8Tt`y&TBBW`#DDRpin*GK#tk>6s)jjN;ZZF{D5WG
z)8Zy|+c5jmJ(+F0$wl7AxgLh_j0!B3&cpF<=qUEgKi^vjY)VIl45h|A$D+rMHh;ZN
z+Aas<uhFr+Cl@Wf1GGZ-6lRvz;jSzx=$XBQ8(0FHo=i|;S2=~t*DR-ZD&yvvJO0e)
z$(!sRQiSzZA=awXQs$C&XkD_~9mP~0qGCzIZaGE|E5s(FM1sZ-I2CZS&w&q+YP2s(
zHu(eH2*lZe`A+HX;qv7b4}Rl%KUewRudgfU8UHge56+%kQ#$&lUzOXhHqDFb8Wp4i
z))AQaRMkx{Y$+p|IJ;elUoalhZ#SY~#f?c453!bL1MOMkzO00hj-}xFcauS{-z3K*
zZe;(^RXlJ<bKKucUa2f#SO{q&uMEq5*8|Sb5w2m+r5EyW%()ql=Y|Srl<fuiozldG
z87N8iMjWLqSdhP}%{xz-yC;NO`K%0-r(T1!_w$dsqTbMJWjiQMWF@RlFXhesxP9{?
zZ|bifq<ff+Nt1e;y?VQvGB-Gs+tM33-U@KQWL{^2u*v9X-T8Z22?(UTQ#B=O^MIk1
z!X?2_f3To`w(WCeSW1HD5iCH-T5JMy?1jM8-MJG}IJ)9-yrqdd)3I)pk*T4V<hnT+
zpXS=BzUY0@ZpqAcW$9QXEtB>QNHiXWo3J<Diz4ij(Lk-QY1A3ATak_zepK<SLlz-s
zNJbaA6lEM*dU3`_Aiq^oF+t6Q0c;?KHuHfcb=q~xw+4jCLWjLKhUxc~$G@5Jrblur
z$hpRLAS!-&u)cq`o6k9^LxvHm03Ru|-ZS+6qDPs~iGmiaJrsnIGzGRz5tacascDWR
zb%cNJx_uM>&~7BMxI_1uxMjJfR$i4KxX*VWVGO4|3v_4ChXgJ96pCm{8v5yANMW6d
zGcF=R(qL_xVflW%%ixo;S`>Ir12|A;vQFjL=ZHb4bqz{Bu>$ArMri7?Wz<yLJQvE*
zGiABfE-`1wGYR?SVAiw4)uB8=F9329P2K^!jm;_U&7LdYOZ<t?1Iuw+w#;$}w<J}N
zRlA*U{<oKG%=nUO<B&rrZ6#Re2)bG;bQRw*>$z#ddBv5XrR)?ThXPXWofb2%61FH;
zAHKvCo|%0PG!P35MjbyS6U&FH6L5`PJ;E|Y33sUd&t+xpDsCvru3sGtN?$@>GjKt+
zZ(sImhoSbYG$x)AsxS*6rK$G9$Jo<k7CY+kp@Yp*XlcopZYu}+`O=d%rOfE)GIKH1
zta8z=+<7#A`KnE%nBGnFFjMA()b4spbQK5aQQ9Ksy-H3!q2=eV&2~qmCcPrv`8bx$
zwZ3Towz?qk3oS8AZC=$^xN;$@zqwriWGwf@w5}}%yS_U?HO6aon+%9ti0Z*rh`(;P
zQ!bi)q;5sII)>ZH*IVu$RswW+=2u|^z)CC()2B->8@^eaVP3c|Odb)Qo{l2r5!hJ?
z)}~FT<q<O`t-!Ac;AT*({>yfIfP)c2nDSaCkBN5cXRhYv{=A!3W`WFt+3N25c`DD~
zF#Ck^p^2y|CY}56_@>KzP(3&xfZ~9p)ljc}*^F1Wr0JjfM^7}gNO~cSZfhw$>>8JL
zVkKWgB1S&h8?Y~?a715?Z?UMD;w*u{sW#ueuN^TmUut_z(la)W7J>;TQP)MI@~bhv
z;_5AtOID9}hLu;b0`4RRjFhB^0}a<}d<)xwVb^~0@|8%kxrnUvYowjV9VPhhAC632
zg1~pYZ>-5ezyO7I<^X5Udz6Vr{+tn5!x5+MVuyt?vJ3P&A*A&_qWan{QFBu}82{^%
z2miWoC1JU)x5ijiWO2m_E3wfLZWAt+h6?IS(m#b-)D=lXn~?iX9w;d_@2IW3h=f$R
zQT`Fza0ZlG?`QnJ$e^nPZKl7zq-tMk`jfrKecZ5RxolaT@yN!lXJNp#YKR|jElJ~C
zf#AokXhe-Cml0CvrJz(JrQy7kfTx?v3!Nz$^6J)YHyRULxSCAGw-FctgbLLjd@IH6
zllH`soapJnvFIqZ3Nk=2WPtN?{@BL~;+$_T5gT!;Aupf9MT&%%e*jsoYgHTv68l#8
ze06T{aQ{}<$diAAlKNL5h}k+!?>xM4UUa^QC|whrDH-tU7IRzrp53bD`gh--tlS0X
zLtxWVd;i$S=snk|_K(0z!LpYIWz$(y+;Lz|n*RjBp7EiE!@nf2tn&D;^D{!F{s|tA
zeZ|K^ay|)u;lS=U3aLG>IIx5mc%7|WVP&G0#}f8bN2d*vF)w#TJQ06_4fG~b1i<|A
zDuh-lcShGHkeP$Vnm|Pq6}+sJ!NM-FA6g5<@*v(*w~k73zSMFz-=+Bap1(UrE-2x(
zsl?EpXrW_oZ2g~X!+G!+Vdj*5^^iB6Sddln;P1oBT_c}YTz*jTAvj&cbz-woof4hh
z%x>-zxDyVGxfxLsjuwX5ADIAj!^{Tbk8`au;NGGiSUd90rFI5dr@KlLe|`O!VY}lI
zt5shkb&Yyju9}DIzC{Cg^`3AC=hA!znwHwpv4y{|d*oKf-8<J&!i*cCHkL&jdE-4h
zZAT@3dM(<RR}ey1Nm=~<vFj?!yeLY_J9izXnJ2wF#%Bm3U8fcr?pyE!>U4d<uTZVQ
z#VqsRBgIyD<=o;S3X~oZxCyAMe3*9a)TA{<9DC-??&S_ady%|1F8uM={E7U9Fghdw
zubXOc%xQq}yW<V}C=(_~r~cjKeRP-B!m|$RX@bZsJWIy=d?=fBl1OSHO?LNS`$5+!
zIGXY|OV?l7GeL{knl7x_<Jr6jT9r1*&EH8vaHeu@ccl9zg>c4o+z1p9O>pg;hKHSC
z<lK^E!IAzdf8bj8poT*w-@OJ5<~T5?hTppqqa&RATt44g)z#@|1oRhiVitW|o_&T~
zwD`!El}A4ZpAVgRacf8hDsvu)I*#vOmBM{MBjI1&0g0(nNHYw;OaH?#KhjdUalA{)
zW65sp@_h?A(H%^`Bg1d@lfif?FqA7hd^`|^wPuu1s~ZuYD&14Nd{rm+@8tG4u|$lY
zxJS$5rPS&erP9S7PAp*@Z1Wi$_8qD<VCAkv#-GZ$p!Q{hciv2-2N=s)+|`lphs0rT
z9xrlg*+7|d;y4UrhF)L9SbfgopDC$k>vp-k^h2)ppu(#vPm&_5$r{!9>bteq`iXlF
z)Rqq1ooFhny5lKLA<dZiz+ca;Fp>Y5ZLe6NVPA!HiNhy*^Hzgt(h;2`+o`;7uPb%U
zi`70Ww#KwV;G3K$2W#g+nAn4+rFAr(4Yn))=+!L>X#`4!zh_%Tu}go+V&d#chsAP(
ziJYppxWDsp^3^vsO4#&8*p`1}>(*NGOW)xhFZHvFwB3+Qe0r}g+n!f5eeN~itvU1@
zff91U5O%x9@zaBnog)(*jB{5{=y<7R+nz@}xkjW=ESz@!Tio_gvv1C}-FDZ^;&sjn
zq0fPp@a8LyYh>D+_4Bv0!Ozg~LwTz;(<6dANGF<t8c%aSJ;kS^JoY#*NIrMC2e>}U
z!78p^e78m`uRw^f^U$f|6(23l6^v|ixu&Ta&$y0DfKUvqY7ji3{97XD?WmZO)OewN
zR~{r3ViIv@5v3WlsPMvi@@f8>aTUW5li^O1WZ#nAin6)<Rr_siS_ZSj**0$`3Aj0K
z#+XDZia1U}FtwfXvD|WWs6naBMsb-s=?R`WV(rYFDAV$%9f`9VsZ7S_S)PLlE_igY
z0EK!jvLZac94fXF=%b+-yFG5hazg^m2wYg<=R$&rQoH1tp#~~oy0#RR0FrtDM|K`^
zU9F5*Rli;qYLNAJs^?fu<yNr8RU+TW%169E2CJnXVwYxl0<)z#SLf|VfgztE{E;i0
zzQo`B%R_tP&A>qIXuB%0aI}cv&?)}XkSs-z3>6CT604@+*aZv(fWq?=utKNeL{4qn
zv!pjH52wmfb$FpqQ6-oOv5|=(uW(CpN*W4wBMej0chxr!@bmn?Lpg&x3OyX=2W#)V
zNSEDHNeW6sitt%MY)rW^FI?XGyY_y4L8qEgHcv@XZcgrrubxY+!G{X%))vy3Ikc_+
zPRnCcH*IMfd^gnE)oDnOw~eNOl^V%>Nk?*MbKpikt?2e;u{n%gKegwL>Ve9206v(!
zB5Zq6D{)wf)l__PguybJ6>=dm>17>_bP$kW`yydf?w)VoJ#3YoXBdxfSf1D-!~s`H
zbjp-v%|<vW+rLP=Wmp-2{Rjf$F)$iZS2U_k=MFUs>L^?~@!oHRMV^Qjrl3xGfS>6V
zsFWbcl-*t^TWG$qO`Dp63xt#TOI1mWFvCzMb6C`NaJ9|Pj4r*Xo^%@+7#weZd0j|e
zQYo?<E~AXtIURJ0AVk|M`>Qh*P;<2fr>5|sVsqeoHIgxX>$p|oY@_;*ZTC2aS}%Vb
zZBPBS4Pac5sS+^y7XLg2>!3V$k7iKzu;^6(YUj_GkzbOJEt)@)N*PJ%_{pH_xyom%
zMS5k*EbD*$No}VWVpF*dH^Pre%UPZFyQ`yBpE(F<Pi;w|f)xuB=@y2g$DW_!ntRH$
z@Ci_D>d1;%f<WIOSUBl~%X+rP=+spC!ewbu<WWZH#x>fGf=xo4UHBO`S^NEX`l~}n
z_)!c<knM<z*W|zrGD=b-!<L?~jifg1v?T@DY8Q-}aUY4p%Cbkl@Z<s}_XDJ+{I6I>
z9u=H;@5>~2Sa_;m^2T)QBf*l**_s(3ol-QqA~^7Dnzh>=LZW6XOe9Sb_-DQFRNj0Z
z$|lM3Jb2_(zLqWPK$08k7CQ<zE(baV^t`Li^|3);vA{leB{K)PnW(d}XddKD7HBVK
zvZDOwzWRxq_0_sT7{@TQ&73rnhX={i7W$M{ilj>vln{5R4(2=6*1lhZ1LvSoe$c71
zGQy=hF9*`ln(?PXp#Df)b*wY0ILNw2WR$Gj^1}lu&5V7<(y>!uOTz`T(7db@f3&4A
zl4gDKYXg)kJgV-0XXLkOernyfch<9eYI^xd_$|yAnxq8Srtk<)>M-TrOSS>pf_(0A
z&M#QlNGCXhj*gOI|D4IR{G^SkKs|$Q%T%c>HuKXJg!8gx(}`BhSG=dH*I7=X_Gb@m
z&prds=0Kp}y&w^+St{Ho7i$5FR8LKE<>Ah(oICN>jpuWKJ-jIuX1(Hwju>7$40PY!
z?_3GGTE}m>TOd`7Q{D&Lk6b3hYm^#ikpLdEPn#?q%qxS1AOij&`tM!1@xVok7N@!y
z#A3=iR6fGmgRM`waxqd(i=g>u?4+?VgX68AUJSP=lZp5-5GBviiTMt(>{^#}B>d%V
z+1YSJ#R+t}DniRsox0$*tKoTB4crA?IklIwwxsmh2Wm%;-gfOliB=?n{C6gGg7M&F
z*>AU9utLCPXg5Czfr2gR$esnKRi7CzT!jGT&deQk;-S3*c`yj1H}SA$+ODzE!E}(X
zO=azm*ts!|<pH)%PGW~#bcFq|otu^0zSm~~!ODsZ<BmJY!*}eOS9e|AvT!nzTzSWT
zM3^KI4l+p9UAN3lLrMC^Ka!$)l#&St?d{K->qjA8Jb_CSyxto8L;UU5xdIR)_%%zL
z43a?7Pj`lL;dmhaQGe-Yo0Nx#hnTV3zGC-3KXaSMFh58_OyMNF*Rl<moKq}MAnFYR
zqQW+}<2A@|wPQh$G<e+Wc5vazDqC57XQTcW9ihHJP;4E7|8U4Ds3vsDWZWZbHp@A*
zO*$Rj0Kaju*!@*T2|nSyrEN)oSGUjyW=f4!^7Eb>CoZ!d#e~&_u13>|@wV-5U{yH_
zhlgQQS5T*YT4bdbByxK~*FbmjX1Fs}V0{!Yrl14`oKDVjJ!3;0*5@JWNLqP)u!A!g
zzw#cGb=tBOaoE6Ul-^`s2s96`pWZ9f<NPvaS7bJqkyW*CcS9I)7zjetGm}(P9^qfx
z-Kv{By4$__W#dw6(~eDx^nvEP(@o2X%ctZP>-Y+!lzb|~u)}b6$(kz53{0S5-3P6E
zD)aTkX2lrBDThch<>5bO)8`bL_~T$<tE5Us!=WRmQQ`2sNmV<|apgEJXzT>y8hbB+
zSi#w=XPpABjP-@GgyGNU-0~H#8K^9UWYK(flZq7Eqe~m*wz3}7vppF#llx(%6Bujt
z68<>3jRZr|Tf7+1L`v2V$a_F!xo#Q|OKoq#{dkyC5rT}*Vxsf>seAa64LB>;KdS?+
z+HywUqO~i?+YS!Z&6y<Mc0XqvRRE)U$mreU$-49wT!S2J`g8?ujw3JI_-E&ANeAIa
zbx_jn*cA4e;2ebR#HGaYAl4x{PCSKc;`{T81%vlj$BUfKmGhkPd`_|sS?Kire`+#!
zSe1Qn)3!*9q5hG;2iYRqnGXi`xC5UJpN<P3oJ~(0*puvhrIJW`3L{nAa4~g@m%rmq
z8TLp;+RDtdpL>Ajf%>7QuaLqkKUCRK;m;Hed1Es?vs-8C(wR9Ibotm6{|?#bBh{+c
zS3)XJX@iOxU*w!fp_-3sI_TBZP->Uj#WY2#+o>5E&8A;CEn7jz2iXs=8C7P|!luHx
zUbClg9lQRyfbdwl1u~p3?9+PX8C=dPk;I{e$_-R)xm-U(CG~t?>P6#=ESF%WlOsom
zx1l`rm&o5sA4N=q7}ijJy`cqUf6j<d`9~<wQ{Zs!WGD5DBNtG<5VCL>V1H_A5(>Td
z>^&+(DSl>fb~w-L>tFe~pXyyyd>!i#$uHwH#!!CTNwBUBY0r{&P;{JFu|Ot5Tu-cE
z9O=DHab#k6D)9tNl<rn~^I>fWJMIIFp%sjsNaZ~S-gFmTBs4!nYjoZXLD)Z$xmcdy
zo2*_Viz|Z@)Z%B=MVZ5WiPsjntf`OGUE7#;BkP;DO-fnQBApZkduD$nadm>=OO=%!
zVi`kuHW!#Gkhw6S^B5MmovrrwLQ>+e+mZDzZNLMa9<er%T&q1vUG$y#qTIq{h*=eg
zo?BCSw3z|2xsQ&sKE^92=w05r%2)VHbOKc{#1ZO)GzVmA(U0JsT};vQ#IQ|t6-n)5
z0}<vBR*!WaxxBuydsqq_q%qkWvA=r2#Xb17>jJI3Hdv7UVc*iCPV%^pZQJf`yC4ny
zpLK$Zg)k{%R8!h_3z2k0n%>c}`A_7|b4+Wu7c$sR`8|i{59qL3A^LzUp=)0&GU?ZD
z2?<39`HgQNB4@ogn}v*#f&(R<H8-4fyq-iBoOM)Iw~(wc?S#|Y<`r|&5m2ic{Ry>4
zhIF4v_NX@qJ%zgiF0mmwT>d=;q`rsRyFTyz=7IymOt4gazwAny>>;blGe5Xo<8nQ1
z;gF)~QajlH`F!*jI6e;DGdN96c$n5i8srNchJufM`&k4FhImI@0ji8ocqGY#&{S6N
zo7E1*4bCH8h2!{6IxVR8w6t1HjJRF0$YiD&+9)VoMjw85LUca%neYnaIpoZDJJHHt
z0a4Zz`4%;xdh_3!xpnR=U$q`t)fx&4S?~P;)k?xY<8{*>P814UJmH{3(Z<_wG~^)|
z9ae8zQ+A}}5;mki(xWZLDPuuhNUB}DqEPHO(~<V<g3<Ryk=G}E#3|#DG_z@^w7xkK
zQHCI6+VXFx7qPLEj3Nb3rp4N|oLfhs9Z+K5Tg|vjEHrQ{r7;{|<xz8PHrEpztS0=C
z+nh3D9Je!cGne6q2S?ylSESvz*545$`@fBqQS&suJr4JVr*rosl2+Vj+<UC2L-GC9
z34f0>{Z;k9S)EYv5cBf7`J(qK$F5D(k;fbsiub6SPVJp}7(jXtTt?q|c9NyhX7BPf
z59vew<Xg^3jqoe-e1)7(+EA;cLdL67_)H1uq=GFxs)a^e_bx0#v~s3cY#Km}@eDAT
zl{uPG&8YXMaOmKJgN1AMznMK}{oax$+m1%uX%NlvDSkk0&>$v)MI8j9#>+XDg8AAh
zAv{$d!Zx>0?2~%#zCIF;ishL5MP1^c>N);;0B(jMRlT?IG+HXS%Llpx#ZUHCy1jp?
ze%3{%jkLgRsOs68y5p>}WhPa5q1zYF`Jq)|eHU|Wd(u<xbr;p0Iq~9`xIwe&W`K1M
zU-p>U^u-=8!|@Zk%T3f=IiL}dscd-<*DDyeD#KPGuP-x7dz$n_eMd3v+GIDGS!cSR
z#>;TI=aJm|J3i8sah#wR1~t-pR=Aj&0?GM~5bl-sqlP-a-2p$fAwqb&tx7aL+`HWK
zd0<z|iGTJ4pbA=7WIDDSYpOP`1`-taKFwaCl_*8FYZLzC@F-HWln=u?gM}JuR{YS+
z2sIr|&pJ$GgNON->&;{2n*kPucqyTaI0|wKxM(P0y@f&X{DF8@3;=rOtj6hxv(@Kj
z$lj#i+#D-qN!C<;r0fR*li``34*AX_nkZk$Npol%`>CNzASAn0_&i8MYT`w0{6|P=
z(`^v8KQMhk>t*PXF!C0@90&!V7MuPw|0GY$P05l|^B+QlSD@-b_M5@{uNV<yH4?UW
zc@f@t4~BO8(#k8sEza_!%x^<pKN!j5#+Q(&qWKo(-)#Y|M}Rm8uD;~~s4~NK)T}Lf
z$diPJw3L_fuE>V+%u;1dWlh9(k=#lEJVjqeCP*{YfwmzA5_=66=*ys3(9C#4cdqE=
z%Q+NM-^pD%OF}|!M|m(Mx&6kDCrWEV4lcU(pIt4RFPwPrpbOftW|qz#_^W|ND5>X;
zw~;ZcCN;bj`=yJ}kKiqNF+mL#$bzIFc411H9B<YVDD;oWZC)(MT)v#U@`~5cV6gx>
zs=v|`7yV;;{`@$Zf!?xzY#^%@$(tO*L9jBk685Xgu%`HgmX~}4RtR?VB}^ff2JJ4s
zAcPEBEgAm!&pc89ctYm!Q7o6Og8)YfZlP_9jM`bU^nFYG$Pihp#f$Z_e+Bmx4+=8t
zu5hRS4PE(xw6k#+S@yvoV`zP+K$UIhY5aQ9Zt%lDllbcTnCz$bGIWJU<1nx#Zl2I9
zNEkT4v(ytgB*Q|F%O7Mz*FVVu);SvQxyQ^H87B_NsYz$)Pv{27;$D2M^eTV_N+CZ9
zz2{n{9S*nee|fx*6k@PsuGUwj<y`9<vGgeFZf=YR4i2uDaDyrRS>s}n*RH=fZ(rq#
z^x$M{=~m&naY}tXE+AXhUkSF(84l_1T!i3xp_&U3yQDbJX;zYgCT#4{`X8M?|L6)`
zsxA&%@@I3uLlJfv>`{O^%@swYWMS%@v$MQl_D%NjCFvHDJ$j1TA?MCLzwJ5q3RKoV
zjM8b-aTUVyzEH83U{T<ODyK~`?voH+&?KFXTPL4^Z<Gq!G~W03+=B-xm6+X~f3h7L
z8vuuElIHjH8YZB-;mJ_V{^cHW(=PfPWn)sh<smn*EJIFE9P-G#?)p_SR2cUNoPBr+
z_8k>_J%p)>)-41kspI46*qS4oAa_Tck7*~Z>$cjk)q<LFZ|i;A&{dF6()^V2kUIf9
zW=tJ%iB$f~zCSp#Nk-`dJ(Aq3KqkwFDu8KBWfb-c1a}GsEI-L;9l;hwcBNGax?6qB
z!9|@<A<1K6{TYSGLqucssB85$78O}gCm{_P#p7g1#-Q<;@chT~t!4ZF*%<;p*vWkF
zM7&|U&ZqxL5o%|`#8Hr&!!#XKUGLRGQ`~1tTH&uI?666gw)FVKTxPP3n(H;leqSnU
z!c!#UB|sc?;%<QdKO0MO8^lg*7rn9=Tw5sdzm3fgHI17f2ki*Ymwz|LJi3>eD8(Ho
ztTEj}+qS9)^QHYE#3KWn^%+_IMpob&hVO?MCs93$6ZIL8Eywo3L30R(OrR(`j;(qU
zk8E5tk3+>yo>XU{HZba}U?9pK$tC<xi0;P*Mu@VPgzO`t1SAuffMn9W5Tz=I(E6zx
zt0js92^5@g_nG7gQ*&$UQcNsT+G(*nnH2xLL(ph~#3dr{i2qH7q^=S~Ec=jPrn#~4
z&_9P}Q__2*Z@Z}FSoeXM=6~mtiOo|>dGjQ@Oz*vcp{};<&@Ly^gcQp@SjdKb9}<!4
zfd^FT?JYO@Au92Va-U=2gHjVhrQlYde2q%4$^Gtkn5~B?Z_c-qFPl?E6%^|cqpa39
zsB(*j%+%~(SZr(6mL8#A*qlobTwLV|o0bl-qPky*sX~And43N$lkm}W#o1*VY=$04
zDf`slU<OBK5#zw<w6iwK<#*#WO2og3GE5B&L7X>@#z~x&oQSF08`-i|xyL*IoeAFR
zp=N}%LT1riO~mw`g4JcKON*Z+0|a5@OfIZWEWuss#%uZYo;P@?X%T$r1cStPnANzo
zPQJlClNm-UK+#dN;T;8U6h3Ol#T?=S#{))Q**|n8MO$d3OtZc|!H)lJs%pibxT&>?
zG+nQMHZ>OMZr`^L4hzyvR2_V(Tg3<H-WcKnKM!`%ygA=T{2&-|r6=%TpRv~Awe7kc
z9Rm@+brZ2tsSh1JF?^k3A|sZ<Q!{`c6#I8mKeh9vqj5O{221lp_!?GwKm>pqnqR%o
zaLH&gT3g#NH8jJ+c{Sw5Ay&gp4=HEbO%(c4lvnjM0Aox5PQa@x^MOvysKV#O`li6U
z{<|sUnJ~5Mx$vAiIV1Tk#$-CKWH101sMykOp#I!du3pp$bX|c;O+d?$DU#WsPIANA
z5GBDoE7*jDXqVu0Z!*v*tKd!-A2lPM?t+Zeo-H97n$huEmp<`$0sbaslOz8EdjYYA
zI(x6m&^;}*yVlZb(KliUKK!3efeZH~9`Bc~)6UQ&mJNYc_#4(9N*?6RpO(>F*}8V?
zi{QVTiq^I<B(4v6@)u~wDaFPiCWAj9^A$1QLX<inn^|>yDoOBMEb^`=3SH7;?vBLy
zd)OcFrmNDRnM5-@EwM6QU!MM|+E&+}iMM8wIEZM{Qb*^N9skpG@bc@j09=XhR{1$z
zon#}5qOME$!oQmS$=bY*DDx5C=&d0x$PYZm`k;=}NB$?jiFTXF1WY-G={LD_8Of7G
z-Rpi(ee%STm8g_3S^;rb?_N=Gzq(fkf2%rwv*4i=yX}UvdPfC+Ry>hY_ke1RZpWr4
zMPcR>niSc*tralyCs>gdJLEZf&sw1del|f(N@&Z^;sXx#3YA`gXup`FJm5PA>8B|^
zFglu6xK(@xKPb3tV>;>{DuEM%7jJkL&ovC!F$j$m$D0UD<puLh+n-5SkycMwe_ZSW
zr~9bX&Ql~{nvw(nR+T2InRDXK@_A6R;D09rHCvwy)a-6~Wi)mls9BX3!*MeDr}-{A
z2@Vz${xQ1qM);$l>t8d3$f^L}Yd20IxzkL+<KwD##R1vHtvf@aF5+Z>iILm#%DD!#
zqh>Y}$H5V%?&b^X6a<S(a@E_(7{?>Shh9Jsk~p}B@;kdKDK0=WK^fSJxWo*Az&gH{
zkAd$;!%fhlKO#e~RpfAMeTh#U96kvA4gT`*?{jWZ5|_C0GCXTZX7+Co5{sX5`*Q*j
zzTT2n$h}LOM}@V)At8_}B1LE|_`ek4xnV-w7}y)xe>MjBs$s%)hzmrRwV8?yjg`0P
zM4DtKd!rb{AV`2<^jMzAI|-UWt!Fe5h9hpwTCC{!|2CH7W^<mnvGJ#iD-ZQqNzItp
zn>c2r64Cj+5b)@K&i^#V^n-3Q2)T#Kl}f3aR)PR9_$Y?rA1M~x9d+;wu83@qvazt9
zcn~TH^zEQknOx`m5H`njqE>Z7fbj2R<G}zZLMFR@NbcI4|0v~VjEcp*Pu#P9&?(2e
z|2Nqkq*Vb_*x^nLW!JF=&P^~l4VjXCbR}_#PyqJ(M;8l{Rz^XJ<BiC3Yt$4J{}Hmp
zx5wW39fg#AXa4WBu5t}8L#Hnjc3b^Z1sP-xJnJA1VTQ~F0mJ5o>PL|CX8O_$mkH3T
zQ8R5C=z81A<Oc*4Sr_|ACGUqk5Kw3l0}7;)-lP;NvI+91;;>m*T8o<L2QPX>pYwdK
zk1@#|R*>y}-p1s#SQE7*e7*co$<;Unow)uuWyLHTeQnJt(_=F<TvGMlDoZsSoR@60
zd(MFSpZo5Y#bmnB3jAPYhNmb5!tj`0!OBHja2`R|b<h1XS<4|k8scOG?j2sldkvYX
z^yl_8z`?7_Ia5a*1sFcIyS~p!OT0|>Wb_3caa3nxx?daj)KL`+2oF>v<ZND|-OtRp
zXd9-7X24rOBWX5-gf@VC4Fzsi<#KI159m%H-s`_lEj;voR1+ry)5ZGFWC#FjYWkV*
zoZMi?;oK{Imtvbh9`ORfgmaYQ;v+3-f~}QEjpwAAi#)<Nix@3xJp_0hn%JFIC?)J6
zPt-_T<hXMLUiopUxLh%HD}<;AQf_<yIWi=0CrWV@(j>3%`jr4K4dl_(Pou|$L-1L|
zBWu+ZXG)P^C&d*M0!BKuCzs2!rbPa?t9w%2)hD$|GUr48JuA+^?#JeOyWA(C%0mCY
zExmo?A~Bx^$rz}4F#I#iM17jBP@sQ>V7l9Dng4AGNj^<zAGxv!rRmexA}TlSfI6Wz
z*^4-8)#&ql(hF8=R6LZOc<r6gObUSRrK~XXRvbbg9xvO@Xa6<$B9{ud8Vexv^U=kW
z+<Na29akd6BBw`KQywBM6O@v?#tLhYkqz2%$)p+ficVdO{PdB)lp$8YYLQs^44aHt
zQ~kpg-n3dCH%y32MBb`f&q^D>v#+h&wTT1A0cc_SzVgLpFO4_dcY9Z4Z<dRkXM%l3
zXemk0k#m?)fC;u}AD^EA+z{pm_oJgKcabnvQ{MG9Iw<-yy{krLRGCzd|DVPqSJoXS
zXyJqNsoAxDp&1z~14fW`nTQ5!^;b8*6#N$Xed5x^)LFrx?_7U9C!N;B&j3X)NNbS?
zh>92l!$&{&gC3eUT?jji7C3bK)`TyJAKu8j8um7j08D76rv>(o31^Sbe}r_6De=%6
z5IxL0iSp;NnfY!_7PD6<Udp-AaO(}5M6c$J1xM}#K_Z<(|6~_-vD&ovT_h%sJODm$
zcK`XPzo&+Dh7o5wpI}Hwv>ku5Xpov2Akdvpm`38dt@<dA<YvB{<N^;4CFFosHld>-
z58$x(+tZp*<IEU4m|U+xo)3_@<mS7~Nskdvs*bseK;jz9OQs{%{WLF_oVErEzE?!J
z52Vq!SHu!`|6_>h3QT%9h{M)QYQ~94UQ&<SK54kMBNdzv6o(9j2M+wZwTK{5k;Yh1
z$lK4lsfbn|>56H1B5OoLcGUX7KH?g^f4dbq7qKG624b>)J1P_%<Z!V1BuA0s*jRGt
zeyF;tBBhUHoojDO@UJ9tc3~pXP{dYWNDpBlJv|HX0J#8GaRCE68*QR~{5>-OaP2>T
z{wNOIwah<xNWOU+*#w$zAE7TkpoztnBjgc?P@$RDvL9)$GrLjAe#~m=SCxY|nzXbE
zvQIY;N103CnS@TC3Kt~K*_0nK^)xFv04cj=t4?ONe|7}O#P+T_pY(&^kp9hh8W5^3
z8=g8dZ9s6i=&rr+Wb2+Xn3mJ#{=DQxFk3`L6hg8sg=emTB36I67_b`>eGm-M6ie5V
z6bjP+wFP;|AS9Km>QEWJnTHH#n*R|n5(t9|07(>XO-cDzF`C><Q;|W;@SY(?9+61Y
zr*|kzhM0zt_35J0J3dviRR{MXO>Y8+XMZ63a=kq%`0jr>YJd-0-l=4_$^PS*t9y==
z^u$%70MYmb7;5G-EZ3+Dul6ZzW+dKG26W5^eLM0P|LJ_{dwbveB)MNj`afgLMej^P
z2KN8C@YBT!dk;Zj3II7<62@3#q=`ld<0FvHFTf@e&_Nl7v>El0(He;20)1MMA@gsR
zY^2y}H$qEDOqcZ(D!zZ|FD0JErt0;N=tP|dLXd?as5@6pc@kWhS_5gCFy6o0%djKA
zR2fMt+zJ)NO(Ex0F3Y-$a{^FHRFV>4d83C~?_1Jrn!<M!9RQ3amQ@gtHZke`2&~hE
zCzt9W>3)0JyCTsC%shk-shxYWN!1u>#sY|?A|JdbFd-fwv{+^gfZTA0SNHoKdyaQw
z?x1#ct_*XBB&d?Z3rs5qX?GN8YEfuWP54s(F}P;o!o9K(R@{9!WLkmf`c!D2$vm+G
z>X$WgEn6!j5BZ?Z)T4O)C9x>m_aIbk>(&O<1^2Un;Jbvm^&;e-k{mhKsG)@>^3yq{
zJ-TbM|C<M#-m~pc?nJN(TWTaM*~C2HNyegiuS31-r)3DIwJc0~RTKyQY#+>nlsj$o
zS+8!qqp;g>ZJaMm_EYJX3=p!nxgC)~QG(bx^u%9ksv9kRyR`G6BC3o!B}IyAY6FH3
z2Jqz1SIBnuK*UyJ27wwW8ODkMY;I?MY4E;Rb129PA^jO23^v~nfTnxVc?iG_olBAR
z;oXN;PhYuh@4;fMft20+=vDVK&=o-AMF7pZY05hM7x=JlnlSeT%Itd_yylRH7-?(L
zI2SWLvw%wWOv3wp#3C>8g}4njj8W{CJcU$p4ZoI^7X4;9fntChf2#bE_{+y}-2%?v
z_l90TEHA^z_Mr{4iT0!_$sP7q+yRHBzj}vg1W9@rz%`L??{N}Jv5t3t?)Z16W!o|3
z6R^C)Ip#NrMN=MDP^Zvy3a_sr`D0|z{7@J#Z_ADb5}pmsQ~(J+WTprRD~WPkMgrc9
zPzpAr8q)%+!$-u+E}td|P(>ft)*3f^V0H)@<z}f(6y6~a-f)xZQFU6;X8UZ2Cyx3m
zqFkWD8}7c7gb@6|_#Jv56E4?(WZJWI6Dsec>F^LhLvn$Z>k;*J`1aR|FaixgKr=TP
zHWQyIoQUm4-~^T)KKag8fE#Ougifl#B@;Co9OObxo>sC?j73H8s=AnyB>0YM84BMB
zp1|F)<;~CHo$v{w&54@I78{R+ULZhM<MlkhG?Hm*rYjitI)LB_+)aMaHCyi3N0Sr{
zeq_di=d~ZjGL&c@z@}P*R+MBc1TiGtb;R+?Mn{;_-<hlo9KS!le;Z)!!N<kQp9|oI
z%#0|qqqYd0gX5z6b96To@JWxbzf<#tYH$MSlzfm3AmWEokc3@xRTZRJYkXRxIJ1$=
znBc-YQmo4Y+1%RnFWQ6H*74I>CtQ2Cv4q@%1;R(vt|@LncC4Z++3U+z1D|$6&UW3E
zV8hW}1}mxwN9sSW$hp1*m_E<UJv|CFq){{_JY16jed}O%t2_u~XyJT{isNaL5aC%b
zw3MfKKGvTc(uBn(#>$)ZoO|%Gp2ALK45S@*f9KqM)T=2HhO@e>PNIwEAxWT_Mjm%Q
zHU%_F{Y_d)3JVhA@8=exY+Btv4t`fXsr2CbJ%R5tlLb9L9cGTYbNdpZ)ZW9dO>pXH
z$Wz$eH8Q$eT)5<R*+`yj4ALvB_IUHDp>iBCDJCzr=}SQumtQXK&em<6I%IG?u9D~2
zwf8ZpDlVJbdPQt{PNR!OpaM<IOiqa#)!2h_v9oi$f;Y#nr+`L%C@Jo}^HA}xb|4)T
zk)NcP=9pKV3?J*1GNbpYlVm7^zO~l_R{{3WzIXKvYwllgT^yc)t*-jyYT@_RxChH;
zL+>EcNY+s5IE!{a-X0O}&NFhuetsIq^83go(t&+M-#yeFWj|}T0zF!(S_c51=nV#*
zM^7(V{VX9cy!^P9F%Yy`Ds06kisQK3WldkK=&gZ)2x#SoKr#iyml96rK)v1YN!0ap
zXSa`bXWRaUtbUZskTJ9i@Tjn!6i#MX;to;Dg=tds4S#S5W`2u^&of!Qn2aPhw(6j2
z?Cf!~3I~hR4Qmr0f<kIo%~2O1s^-u>b@nsOuV0dl*54EDN&?urg`hSkA<=m|N;-iQ
z(^yb|ZMK@OIrGU-=YX5kaI)-<N>3~rj0c7Klk06Lsi>1IBh}w$AhCS0c=*-&M+kuN
zolYy)BkT03RJ=rEMi6mp2-5J~M>=O>j2ts#GP;N$ed8qJfIW;DN+uDJhBbgRbT6OQ
z3^(8AOZ^a<jG10m*(&N90i@LokcM6Pd5N9Vq<PL^0LpaN?xqF~5|%zU886Vu!}$s{
zSNVzs;r&*qa>@eqJ)pCI2<h7>%kZ$MEZxfi6JQop!vol%HjJ7f2HgX&l#j`|idPs!
ze>jx@t~YJ`dh57E7H{(-|IL)WvJv!TAN`(&f;U-WY9g;e4m@iRv?e8!@~_*7LY-~V
z%pT#ib|a$tHk>lx){_Fqql|JeyP%*mQ{*3mJqhx=!4P5n2%!>S8{z#igKz~r`pCFW
z7Yb>;xO=`LpSP{G%j{X-mKJR5XAh-B5K^%naO5Q~@BcLEwpHDesa!p#7b-rt9vlj8
zn~rE25pYL+0}J{}U9ao{1~FMd`PsUVE{QNMB_ov;DUN3LerL?F+>H|^f3kCgeu!4y
z0A^aCRbcVN|7;|;EeY=wf+jDD-<$Ppz$#uBS*sb1QYXBdl}s#FiZ^hcq<aXp6{a^m
zQ<u~U<k!ohXFiTDGBK^OHaq{79?@ETP1h#76<sf=8Vn(x3@ndFRo-09fB<PcQ@7*A
zt6-ecU9WG(cq-d*sh{1ek;#%5&hw}^b5n1b=|yvS_2RX=ZV+%;c*KZoJ*x9Yz!|c$
z^&slKND0Gh1Rkpj=M>J9Xw1Wxd801v;J9hNV&|!pclv+Pv1Djj>&4V$VIMq{A$U~W
z{+Y}1^EZIS*p@_lbx%Pl;tGFZ0m;xDUq>ueMzO8<`?%%h6tl^C0oFJk*`2!57d743
z*&}JEyXq^flihM<a*O}Q<8frrCn)H$X6PB5cDkYb`taQ2^kM?#eJGhw={ox+a!!oC
zgEM&9nLShaVA_u#z934pzSv#3X7VRbHSK^WYt(lyhV>#!9r3U_GW}PsB4~{P$MeM|
zfNA3GU{EE6uk8E;|H`Srk;c5>3q@m|oYa805x6<T5gm=-X{So#yt-!~XVSo%_wet|
z#-e7u2=6V*rstl2Uxyi6Aie=XYXdg}Apn44A>$H<7Sf?bfBcUn@3I|9p3r_p_u}&s
zX6a7f1!2Q6q)o0!hUqkp0OKnTU>AKUcR{mPnWp_jG0=9zXvKSzye0+9F|*b%!gZLH
z8JGpObwYUA3`xXPQ+*S4b)+@&*|_?l<#b3aX>LJN!-U=Z3nmlCg$);>#vFC)n~V|*
zf;*kq8RC8oVK=CqOWEz-`unk<a$3VXQb`C+U2t`otm1Q%>(El_;qC6CaastTv+9Y)
zwQzbQY$q-eSW}3Y^t}6VB>(4&8HLjAd_a`o3P21co1Iv{y`lnJLF~9WP6TFlQ;E&%
z_ns<`*s{B%w^-<G@Z6KM(69zQOyOfxfVW4M`H_mRbeIwW_P7d;5*#GJlMf4f1(2p2
zf=?p!wh?xKR4kd3B9PrdDDnI-OUP5`nz33i_+BwSEVcXxVD+3DH-D1empn*f^#*j#
z?v{)lxVQ!(K5rX+!`Akf7oYP6T&@;du8s|<52H7G7#bL!mbs-3o%F%}W(&5AVSI6`
zb92UMeC#*F>dD%>)&Bk-|Fjdm!Z-f$d8%YbfkgW}d0x*c(2zi&QoEU~AxrRea_Dz7
zEAEGQBSmqK{C$#vOh<Z60EZO`<HXD72Zvhp`_L3kaDU!z$4#RV)Jl*;o~{Mz+3t)B
z8C|TTdW70VqyAMH*+y5?mHfaI4Z+F>SW!4S8;%GYGIZYIA0gwpzthXp7Tn18V=*L;
z7DonnwY0*MF$gy7sJ?Rr9XOdpa_GgX|8u!6{B_y$@fuLB7^M}1tt~w|C=umfOs-rt
z5vvG+hE5>M0Td1RURDkLT4;s>%#W+!IKiR0Ot*^ph(_#MJgJ|SHxt-)2z2IS(=qz<
z*dlu-_$V0Cf!IiienbzQYITL(-4)hp-#E7RNgYvH3JD?f-WZ$aymiRHml4SD>*3zK
ztQK6jLw4%0!Q-WsL(89l$YA|c)&(iAPssZcv6ETOE^+Or@1bN(!(}wMwITSpBW8N~
zj^XNR`GC8(T-hYpZ6MxI&K~w8Ns?V4b7_9I((8sqA>@*t`7#;KqbZi9K$qRHEb2gV
z-mOvR4_%H(BSmw{rcDpYMqZQjPVfQjxkRRpXSV$xk^V{uF3ibL$(WMzN$A7tgZ4cL
z(^cOTZCXrjs^vRX;h~B3&bBcnGb>@df_I?_6>{lHywvjQ2$XcDq;jLjvF@Nk?nDo1
zp>f=q(8Jx<+9DSXp9nIr6SJ`}TyI8QgJYcAb8r=h)j??nuV{=pI87Y*Y;CTb+5$bq
z8_mrE$AFHhLax4J2+0(#OK2IO{z{zG@>)n4b-+D>ynGV85j(LNaeW*ueSu4xI&s+A
z)gO;38TBfmRW|^7W<STyYob+Y;HKOp&L;>tnchQkSGeDbl5A))Rnw}HN%yQIalGLC
zgjdr6EF8?=X#u5_5ZTfA6>c$QtHG~LMMXb&<8fl{JLB@FwixD^u`}UnxzNRpUjt0s
zoJYg_9`qw>gkEK$klkSsiTQkKsgRGHA>&oHZ@*$WmONv2B0U4ULmsycR}Sy<AvDUI
z3Q4pO8+8r7cMal`OU)w;H@iUT(RTrYMQqf4X=!-rW#u)Xeb5BOE4^k*gYW`$ie*5n
z?SxBvYx(82Dog-rx_v}a6W3Ab@WuFOs3*{|pW84_d04r*NN^5@buQ3lo3C6Z{(H(F
z`VxuD4DrMV_AbdrpN1A)NX3l}4JrL^P9Z8t#QMyXw0U(G_kJG`V$!@xl1~#EQjT#Y
zz?_i$4|m@25V(rgfMjB>TX@+6bbc4)KqN9|33FxeHfK*2xIyxstOz%l&^#WR%mGi#
zscHu7*Y&($ISh^$KEy_n<uP}v)ul?zmx=_G$A10Du*sokjswP*v#-k;T?t=bAbB3w
zc&&yNLB}o4%nft}?j2->-D9`(Tx^`2IhaUIfh=S=4wu2Fr|hWaS$gT6^#afcAi(60
ztuW-%5jWmp?I2QCGCgVgM17M>qlpXv0p;c=^6@d6rB64u2t5jOQrKlS96Q<a@#|wh
z6YloHi)CbVOg?*J^G1hh5!42K!9A<gJ!f3*YRlIRD=0Y!Jd45LY7Ps}QFA>5B+ei-
z*c_jKs;ayQ2q(k5C?E&fIGG~s?-8=$$a>Fiu^ZD163jDkT|0W9h1mlv%E}(<H30eI
z5X6Y9YBJ{vfXp6Q{M_sf<VwZsH@d6T-G_-0+LAPH255QOq|-=7AGJEPJ`flXMx_c9
z)yNP!6ym|MnBxw8&TA_Bl@m?LKVJ%7Td8O}TKOLSGguWjK7Wr3(9Ozbw!8W6g$kc=
z=Z3YBHmNvGd!Wf)zpGU|6N`R>!;v+f-7Zj@RI-1;XK95{!??rwF5ewP2zVgLj*-l0
zdb|qC_vB6NCIJsS57aYOyp9`Yn4O|>ANM-p@$|-!_oaJyPPja7*}-cHEF8GDaXYdY
z&0$3ka6R13x@jbJgttHBv|o5>PqfQfx#p+kB73%nBX0gUXbN;g-(8LMC!FGIr=fz6
zO~&wSQWd>Il}V&U7rvd1baqi5Rd_r74w{l5gKLre@!5j|ygO7j_3L=0=1Y;5lM|w}
zBaS5R-cJX)(fW_?B@eh}!Zm;rq@ba?jPyNV&}*^zD0;>ldjaj9-xo1cGSw*tHLnW_
z+`CAZ;1$9wb2TMR4tbtlTA%eV(ZU6zA7u-~VUAV!uwnQ_`}#hyU(n8y!-bF{O{j84
zpE|6gpPhn17-hg&V_x5(#tBh0m4yw%WlkP^Gu{Qb$gr1T*EY_EB904~r1bt6OQ2c<
zm-6XH1WbX61I$_LMXm@Md09ff|Kaq(kK+c0O(BXIR2zK`TrqgT!PO>lAmV^ddV%!~
zUWE;MUq15?Hpu8MniI`b?ouwcZ1-6#=t*4EJJNjY>^9JM0NrF((P?r<HMn?6bv<Au
zFoyWLnrFZnWx@o6O$VV0H&e3IDF&{=L@;Nb6ma#gGxdFOCUzIK`HX~TWU>OQ%rQ`;
zcU*_0f!7H7w=$wz%U!IY!`mr^dy~3~7L~h)y9|<&ijQU}O5jejTky-H(6*pP{Rwt#
zxG4k|pNovN1iH^!UTd7pCaFsd9_aG|LhXTsB|p~Hn*qMTAOot;kUYeP;y|A3c0<7E
za}ed(y$X$r3aXbjdAc4^JK7A?RFGGmA<`1MI2S!m%4GpA87OT>JgW_a8aI+78F{|L
zv)f?l&QGtz+3=!Io}~9dn5@y<<Zrk3B{Vb3h~gTwf`=tUqX74H8Dt&!$X)=~g8ABU
z`ep5D{BI9~nQNB*zlKQ4uZB=W#SLXCA=#Zo)myiLR}}ai1VmmOfSNEuTZp)TK`!d$
zS)?cPcgEb4qOX5v#v(nE2<hU)x2)P}@*wey)WlTuM|#wDR3My{Wm-lf<y#d<|4Aj=
z?YCL_@aDaa*4bcEOu&8wNf^}x+GE7?CvfYc9!A~^boIZ{RlE}wL6i1MJ8qTRtFBEk
zY8jK(ObeQ-PFTFXcI#H!6$G2c!IeM_yjMsp{@z#O9yS#X9q6-e$@aD9bK4`vUbLoQ
zoRP19A_@|_j65ikJ$f+i=YET+7Q4w=EV$_3NBco4k@wuUeL#za;K9A>PR=B*RgSh-
z=@{H5b@J&59y4APo>A7TP@Z3DFwBK=0Q?{~Ncqy$S!xtNZPJRZ%S7Y`>y^E$r9TEC
z0VF2*02Fakyd(i(y#n?-LHkHDp!~Uw+;;6VzSsq{MR|w85`)9zOD}+N->t+o7tx>f
z70;kn$7EjEnf{&~`K(_L-4oEAV+!_3_+pzK#asE<S>CakJ>(V2NXtp@q0c&M*kDrJ
z6sAU~A6h|@z!PV)R;Rn62krtDA0G<6AA+vdZEA9~T#vE8H9JO_cRvR#a;}iNI`YM1
z<Qn2ysG4Tw5<V;<93UNwI{(h96g%rbHdBYp3bbjE=6{p=a+5c*io+&lqz|Ae7)jQa
zm{oYU32N%g0KCl$jN|@YqmC#J>Iw4j8D;rgIsl*Xo;~ip5$92Jc_WOH^g`Fjq~d_D
zDV{5l1x^+rHOPsR@WGCNoPHg4E#qcif%d@fz;;<A<V=E80b3Ms+#vk|N7yv_&LeG#
z(2bl;uYM5d@(?0M?yrZ>0aIeGp+m5E4}JI&05x><FVvB8UvCW%J{Or9&Ct3+VA*(+
z5f2|Ax{(fZ+m%WLV*O$6vBORufd8%H%Feu`dxuHyUM_#6trwmdnoX_@3kPGIRG&mM
zlH-oT?H8tLe@*dL3F**)LdYSfDi{s0^t|+dXcB_vMkyY;`Te5OSY!S`;Y+ORcG^ro
zLL^p$+@SRQM4B5f@O5S@TvM@E)W(oTr4fr?U;dub@}1$i_0iA;zOm>cSajnTi4a({
z>F?>mCow$6P3=H<>2L8@AsG?E%kmIh)sfX88Gqd$y_9d|K}a$ahcCtsp>hS^76CEY
zCGi<5aml%$1kJil>e+arxtdYFqEuiyns3RRrRnDf3}m<gWWTNLjTCRy2;nBm`<;iG
zezkX*wSNobe-r0J^7A?@nPUXMMLBNHCStOjYIrad;G76;En0>e1)7a;#CBYHh^PBA
zc1z<Mu!gQ*1QkXiC0r#J!*WPl%+T2BtW-W32J)?P%Ecr2o;nHdxN)W)ozBYW^$$i+
zoP<nHstpjV@EC_-+$-x$^}0uUoS+{#9^tyY#Em`&xA^s`vIDMT+&n7)TWJjQbJ`@X
zrboCnbCXW<%%8rJ7sw|gLw5EamKXe{&dae#v<|0DT5lyVs8UKU(mz^-(mX_=O+^ZS
z)zS$yvggfos*U&85QKmU;Ze=7jRt4`1%5+8gZd}+jS}o{yBbX7k%LoB%SQqQBRENg
z0Uf~!FhXD5y(tiQO-sZTG*DJ5fvoIjqZMOikcJ!{;|DhKznOZFYx+vanFK@vl0_h5
zno6~i2`mGPW3Bo_9I&jaa7N+Te4ecJ^0?^eG04%SCS3rUP30x;0@>M=ob|^K1Orfy
z_*@}Z_Nrm+=Li346_w*av51h7GWNKf#66)bDP4?z^}v@fxcpi0gO$1V5eZT$v)%|Q
z#TrZM1+R{F0VU2&o5F+20BnVuUuAG)lIF&JJno8%poLU%k`v6ETi0eO9r&D-O6Kxf
zha8RqH>iV;NBXRlxk*y;Ubu!x`v}#fL==`6IEhab5LsNo<=s3}k`SId4OB=(tA)Le
z*7$9B&=rVSSIn3s>!0$R4&R0g139avJkg@0=K@AC%)ykyQT7*c@wYcQqS;Xn%Ec-8
zQ11E5WzS!->+|nIy+JPDoAN}u8<E7z9Z=3Pe@xA2k#|neLYx2ZZnxnUiW8Yc`N*V(
zXTL;<#7YMNxtRnAYTDxHHIxh`5$7Zh1060coxN;-o7CGK+YdOy>{6?SdnliHf?Ocb
z2~}J2Y}?AuX^DV)?m#T;87xhffRtTY=o_w(o~JTY(8isBKMrdKt@_xgpXetL`Um*5
zRKb0J$)=3LUPd9rK7=cmaYJi28t%2l9AHx4Ke(w`9QDnO{f!qf&uO8*sahkv!47Ci
zpMjWv@UR|6U1HF3GrEAId+<8J3iNr=X)nngZHG@c?-6cg;HU>IAt38d#VR0sz5sh>
zuReMMMTVJg3Vvmp)^-{=s{r$qgC7?4+qlE^#<&yui5}1lLAG1IBDlzGQTS4N>}R0a
zMEK-{H05rhqmCRieJu5RSq<0t6Y6{?U*C)-eSY9Z0Fp#!6y1M1WtQ6|kUI>7@prp8
zqzwUD2lVKGd>XKbQ$TY<##nioWGNFUp+_BWtkt9i<kK#%%i4Z)etSFRM2(Qtffeuw
zl$MYENp!w=b0DAASyg;*Ik25HdM9!LX^7<0Z=B1vtJ|_~-z=TeaVbF7`VFWfy{HW^
zKm#Yl=;^GSq+wB#?W#YBYZIYFnjt36rsJm}x%w3tMx(BXDIdYIFu>N;csP_GWI~WB
zWVHu_7J=pMfbOwP4p~1&#~UsD2?Z#!XagJTZydH@yS^ZWd&6^ZXwtxk?1T(UaXYaB
z4G2`+f#=tq_;%DKYG~JeLX)nAgZI7gOPj-ByL2GzFmJy27QLU#W+ZO)qtanu5VsqS
z-KkOijkMn$H1MzndVZ`;2QG-Bf<;kZsIbEmQa$mB&=HkHJcM$7ha{h$0z~{7{~pK!
zt=~U7G&uAVg$%sMEC=I`($}(qLV~#xD11cu6gXVZ6xB7Asg{0UV4F9G@@`N@lC@g-
znGHNVmpt<FCDLT)F+6j(q8J?;5=fE^f=HHB1E6T)o&W>|qnM|t6~g|<=hsfU4;Ti=
z>;2YWZ+;}E56)j40D83sxWpIp@3L~LlpsC4NRsDTVhAB|26)z1IOpgMc{oYwRzGUM
z-=$7we0Q=3;>}=(gS@XqYazPx1X(fgrG!y5u_1Ax-y!Mevq&tS{LqCoGcbcgy)q&9
z8kvE?qGRuHzcG9>5LD`7sb>$TN+yEK@rPk8a9#SB2AK3XLEqQoonc0Rheut0qlJSK
z1r#DR983;E_qz!gOCDVvUz$pOB;foQ#HLgXI0!dI>#+xS*1s~wQcnTk06TrDF_fK7
z7ApAb>TNc^enp@`0scD8NL7XV*sG{N4$6Xe58l?f1Vy-fs?-oKl2X`HL5+PJWA06r
z)>d9HRwWAI9uKIKdSQ_*TZnQj6t0mcsVf(yJHcdptr`kSf7Cy0d`Dv&?i$(bi;hl@
z`9ZH>Gw(!?xwol){Er)fmuRDg&xRtSQ2cQ!d!q0Iu8!X|^IqE~@4QMr0((F9j6nb)
z11;k11&han@QY5OE(T*Iap}?N2%Y4_H}-j4Zt$o+q+-ha3j9eSKp4KE^pB^qNuYfB
ztTsNk{EDht;ByEp)j?t@I@(S&Nt#A|pB(ldk3~!U0eifZ{=iwcapk}E-ZUKQHvAv1
zX%xeeEmXt^5k*w?Wm*+k+EBKH6k*7|HYJimDU!8SC1l^1P_l%QeI42NeP5pQno+;*
z|L=MC9MALOIl5onnVIkRTF&cSKIi8=uQlP^f%qsCG??Gw=t5BXgAXtFSP2mD_dw}A
zRw)l6Xd&&Cz%|`{yh7+x6;~cP?n5dOx_(i9A1y?3tk2<c+X}x$ZQzEjgSMRK1AVG#
z1P2($p>2*GVB7cl;AIs~aKxdM@k6@g$Zy}$gagED5WIwI#a^sS70jG%l?FIRVDLh<
zqUhz??o-hrm=an4pAN@A`Mf{=YSphXeKrXz`a8tiA~cq~tzPPK8lA_LVe7!~5!v&X
zLb(7O`JJq079w=ic5Bc?#cqGR60RRaFBAYrk1A%l>~GzjF5KQ2)=`oN4X6z`KHY(9
z!azX%+SX49j+G*AS-;fK{!hxW$6t9ud1&N-{CMfy%I^Yrm^kXzCo>@O;Hmkos7B9X
z4s*}juii??0De%0#3rwpg<mrP@w{ji^$!XyLxKHiYs;23?~AD~0)2G7`ULAz1ANq&
zjmtm=VO0b0TOO!a(!hf6;%4L;)v-Z~??=MBc%_tysJ=z&#hxIVSv0|;y2#obuh{>o
zD#xk8%zav`b+~^WCJ`+A<yze|>;#=WB0z78J=EW>I6nbspW88;Kka&?);7LA+Gy8Y
zBJ_+&krE(6l{|LE6Si(Os&JK;(6PD&S``Hu-nFQHJP&#OC8gHoO~2JzD+YQ%<{dIV
zHD<i}OPlOaug|jyHcu5cPb=3{6`zir)y<06VD6~t`JzRB=3wXXwO<zq(q5NO$%5YT
zQdjTOc??17Wt?te1uiPWDncr6#Q4IJDhws2AnhgR;(`}+RX=#SCFe#{G`Hu$X-|i6
z&$W1YfDJ&89Pk*9pAxGaf(--I>3#ZPkTE<ucsb9?pArmE!#L9}^FS0v_3ZUq{4E4L
zVq=v9A)E)Yq-W+oE3G=&ts)Y6ln_9YzVa)eR94jr#EK7Ebq+x)3MzCLts7RveoMY6
zX|Hl!y@zqEO^s?-(6X?eeq8?*Od=e*%k_pcSP9&cd0WIo<#_KNMbKA(IhyRbTmD-;
z^6+Uc3eP~uBxz^o>ozy(w<O$BVi(~F(rXRd=kl^^JIWzk8hnUT<c+sE(hEs<^FN)B
zmNAeLY|8Kzm@7?9$Z7a>mOL<eT9D~35O_FJCxE!3jmU)9sNC%#E70}q*}#P4o3%-k
zC_8#~IJSXPDiNzR4<J>YIUMCbu*xmmPerq0H0y;NNOUaK{)|?-_=CFI$7p}9$PVl{
zo8O*s0p7hj9!r$-6M76C(rMAFQ^tPm(hRr>($cq17C?-_cm8Yk0Jxf-7bX|IHw%Aa
zT>bXKXQyLG3mwy2L|^kbBFIDw9mdLj0(^?)Dcm07F>L+t=ZfgbjQB_UsEZ8>5}4cO
z`SG<GyWzbMx(^vd;j|q?WN#9PAgmoYygNn)q063QG9R8(q`h*aGCb904eVw*gBme~
z2~Jt`-DO!CYZqHS|F!ZF@Du)kQ8rlfc7Dyp$%2lTI!9_eZ*))EG@V={ju4hHsRE~u
z_yl$M)aR+7Mt{>GrF2+YET{|mwsk)Q0}Tt_)>j)%y_iX^=hAtWFF&$I0^dmoRkI}_
zR}b1rx?0rIKisYo4`H_oO#5_FrGTb0s&qm9O}+i)J~8G)<`zm?welYFuN95|+zsi@
zK4@~d&5dY&bwT^S{3w)%%a(T`*Mgc+L`XDr@o_sM$nBF4(a=)24Ybxpx|!)nN9p|R
z(`Va-Q9<?AIDR-!&<zh)PrS?s>Y3COh1<;KY;eRUvcqTAQVwNI*{pbfw+^$X5C`XS
ze)dfzz)i7D^@cw$>`I4tb*=3uC?M1UxvuZK;M_c_ng#r=_B_ATT13mn_SW5^4$P$L
zn9;lM{Q=;~A8S^=2yq&UX=(bnPe!YNuh02mna=2COjJj2I}pm@jGTLC`J1ozQw)4@
z)T{1O$*bcrp1<bkEh?uu%3<A^=HRN1aCLA*3{Zo;y1w;a=ixwHw2t_#UC*f^9QYvL
z!HXTM#-n+wgKy(M8?7pTO5uMMsP{<k2X-UFmn|DMUcM+KUd!8qp<`0H>AE|F3IAN+
zz{y}!UCEK$%X-AoT#gG#Sxc>%Ibt>i4UgO^!xda3t4fp_e#j)(yVOPQcMa~XIMpsI
z8h3#Yx;qH(iN<M@F<T=E7!28y*2h0Vcy{~Sj^<HA*Dqzusw_|Uo>}v7RCa!Jn$3Ct
z%!9@d|3q$CZWnIqf!Cu`+MJ+p>DOCkhzTv-Sx3sFuV|3XYbnP!=Nq+Dg*7qG=ALL<
ziwR%tB)%Ok=nz**k`+!bc%h$sHdJB)h&Jr-YaL<U&2a5thU37&ZUef;m7vLyZ;SHG
zaK|u`3gSHsdEo=JkvG>rXGL0lW<R)Fs|@*zW9Q+w3D4%Bo4q?Ttzqbg_lj{XgS^c=
z`H64Dy2sbLze6+Uri0cOn4jo&6h5nwl8RR~E&B@Byxqm7kar4uYtnY<ca%EMK5;#1
zvbf>6hlT2|g&YmG@inP%XVr1M^!Zq-8RY@5kL8c*l5&tABgkIuEteS34w)-@lK!`5
zF>YsvOzmT7p3PpWO|rVKr?-l&p?8m%u8v$?sGT#sNDpI3%DS;RZAA5Q*$IGJ`d|z%
zM0{`3c3td9D327GE&MujyC9jKyJA|NnR){>zIqe1Hfk~DeM~CY6l*Ye#6Ac0$5ddh
z_8#<oR1e|&S<+ZkinjlX(Z+JVBlnxfPHV(=+M|U77j%Wjye{Y3auBH?(0kH-7{8kB
z$3R;w5{=`qwmf<qt_6KrpC9rGSIR_Q%qNfRlZoJm<Od~J>mu;cZS=)Ts+rEJ34Wh_
z`BQ@@U;JRvAx~$SVPNA7X*EHF-sjB!TG_Ve5ra)pMwC>lRAdgn!CIWxbphWJGxRJ`
zDQ%*Z&><C+(5KiG(ObF`G{I$#YHvSuVNRejX<qJ)=|^>mqfAbAGdtM*oLiKOsgRnB
zP<3nTbaTJd#TgU4=6Uyv83P}E?8hZQD5lg1oblFHZO3jFoP=9F#$y?@RK002Jn<gO
z{GZ3xXq@<TjJ5mBEgB6;V0rBbZoak?LJ3>GXu#sn&^;#PVI{dPx*L7#Z~PF7Q&b@u
zWSJexd*cJ$wvo(}B5A#>x1Ot=5}7+A7&cX;@922Ivj61i9CT4d%+6?>qp(XGB!hji
zE3-8v$rmKInT|c3oJk#0JT1PocG=q3u!72-xZ4By))7Gu2pI$WtXYpjhs&-r1WwTq
zQ`Q5}3DYZPlb+1Nrp6E9_a&}RJQ>!v%zV1_cSB)y;p!jGU1`1>J`j_bGvdihb(O(E
z?4Rk;nHaz{5o4^b(nB6Rt{?-)W18$Fp~B?kLB5+1=ViF&F=nzjT^?x-mI{Re0a-=u
z<Rc&9?K<%GlFzKNq&b?x<lK>G@<Pc1k4eYlT%}en@E)d|I6_A;T-UYWcV6uZrYNSJ
z*l9b5nmVfpfx0++Dhw`}l*RynVq-zBsC&3<QKge*wqjG(p}Zz^>R9<;-sC%Hw+elT
zkd%rqFa621Ydticx(bb_j>$0H)x*18kSOmy_o)Oo`>VM%M`2<&ul(AJGcdZ0)?Cs9
z*))a~CZQ{_s*$o*yi2I$z?7xhTZHw)Hx~Su80mK0;vS)7J<T@pYnOD*2J>+p)@v{4
z#y*pKX0?*x8EoNwE5LsG>EtbE?l<0B0b)>wnMYhK^CDDW>@C`N&&i7Ynu>bn=~*#(
zXf3H-5Q5DLa8Qz6oVm}zK*M8I_~xPE`&*t6T*5^VO~h{YG<WcEc0;ogXE^4#yr1RL
z%Z%FjRugNHpfj`6U^0h<f$$c$4A(ado8zi-PBEff%>A2^dJ?Z6(~=r!3SVw`|6W66
z?v_~jR8f%l73-+2iz!Uh%j=;POW&(+(-%Zp?z07-v|!vLH4U2`m<zw2={e4?sYe=9
zJ6WE$hi2pbrC@<8HnUQpNKe77(u&QCrJ$uuGY{{pgNv7=f*N@tiaf(w?X4R3VuF_`
zxqwuc8xpV(`NS|7b-x~O<IBDr$#$6<nH*zpXv~?uw{Rm_k8`U92=cQgMh@q?QfT&#
z!(A;p&(vOxu4wy6KH`^upQiBkSzS5Zd(zEo)uWy4wBPUn$G<u0Z}ASxv)5~xJZuM7
zfq`)efv%~?@rOx7krvk&gP>)X*bcrGqsoZZR(<BmO}vy<BNgJjHt8rx8(;ktBGeeO
zT3w-wlk4V(E2|k`$;HndV!+;mM%2|!po^~L4+ziQwcg{NrZagejk4o-D-zK)>6Vy!
zlE&(zhwTjQ7=KrTyKuLAF-;0|!}~ZzTfBR$$80rXxv=~$kM#%N8;W<SFxD2eOI=Or
zai@|v=7`gS$HJ~bmjb*bXtxFgoZVr%I(R+TrbR5t(3Q=tn8@4-Hj7@oh@WcDcCtTB
zcK<<ha2c1kr&JMIQEjF*#QHlK&^}m4It-G|_M+kuKhyI9!R#xh`AZU=ruMxb<T4}*
z=kfd$N!Mf|u`Md%3?HQID%FX8|E9gn-H%?P1jx7`oiJ?#p|Nl{*|xcFODJIAz-|nf
z{~q5n>|3>$+K`eYM3ctd=5%a1lbyej-b-%$m<%5lTyZj36r8p#9qV1?4#Hqtxw5<1
zqCMQ*2?xTs`IFO?TPLW7ff-v^*1O;xb-~9(Y@btwv)Zta-@X!P{X<xS*N@kq@WP&9
z-<nOnJrr{JI0I%@EmyMTxmb6mfD~o;OhE)y<;jR3(RA8(cMGQCeqDY>e;ELtYWVRT
z(flsDb9&K>S7(=Nyw8~&x>60j`QBt_$9CQztfOw4Gil7^rq7kO>%*s+Q92-a2^)l8
zkCA~hUVb{!O9ih+8deKyd7H5__Q$?H5x=MtH?&Hr+g8j!Hgv1~{D6+(n9U~tg^|4A
zR`G8%i4ecr!QQ>7S~t&n_fWLMw=fz*KCOMr0b2RYMO;i9D89sr^Bu$8V&}#PhGWl5
ztUsKzHz@U6M+yfK?@l2W?h1TNm^1HcJsU4NCy{ujU;BL2Od^~4nZ+Ozv}pL9q^#7@
za|2A)EzJ9^?_Cw9MTU4)FdApJ6MWY@1;JmYIRfOHT@rU<IDSrrWm+EIGD%>fPMDYE
z8#eIXeBpdohgEg?KxHGSz2}YmY#1yHSaQ`@fj^)!0U7vYlMjyz;3V&DIw(iFz)wS6
zZr_4%NWXoM$vva&@XP<gst5o6LtEj=(pm)05gnYTAR+n@M!!|xQH|TAR%bV9y?whu
zrsqikvzv(&dj{7p_&HYH2=#m&e88xMTw{%FaoP1pkajsqceO|WXtGRSvjO6=Sg42A
zp~rMT`EZ|GUDmvnQ?--o3X#fiP;ox=BkKk(@9o=53&>Sct_d!yT>lce*n=Q<dFo%P
zAVj)f(5{_x=97Kc^GyNs51&|=zR5d{27#v|eS0t%|5mB~-iuopa^lvLrvy%-iw!`#
zJ+ptpMq0wz+1a-!j{m@kwlcW?$}k+VXbfuK&2LLRF}snQ6~AMV)xsACT+HcbBO~!D
zYU_T1cJ6ouawjM-fq^S6*}-8uw%W8`IOFF2sW?_q#h(uN!9q@I+tIEImki5CI7^m)
z2*Vgc?l1M!6>(0=`xb+`S%7Es*Xwv=CxpfVp5#4Scz}z)TvSbdR{SOHwsW}rWvXY?
zNY8b()wQOCLu;nNatb8kilGZ1vJl$v``pe6;0Q~w&}yjdkn9$YEiD7(Rxg>#Q~9>b
zo0sBQWwOzR1p3gIin#uiT)4g8+eOygYL=J8DijFoK)Sd0JZ7Gyp)F;%d|%nKq$JGq
zZ7#1~?l#=7oI({ORT6Q0E}^w9Evry_+)#1A)iq$KENSEmlz9=_VG|a5dH~=v;oax3
zyy=PM;cW`EUb;Kd?YK){w0)sE^UkbS&8>58{OD$9VB>h2WqQ4>$KMIy=eO|wL-b;n
z7-#0WgbV3fZbpJPH@(4K8@^sz9?nb+(Y_v!&U|^Tp-Uu=RakVaD`zq3UB>DE`Xi4|
zU-AT3cAzS5ZbE$>*+axKBF^+fiW<eCCh5_6seT>}m2JR1??jbBrR13-na|{I3H+ry
zx(;9JNed9kD`X`wIbH49OYw^KuX#nLY_tj)i!r!F`L`K_^V8S-9KMNK#94;JQGCq?
z9ztA99Hb%GNlJU?EI-#fV`wpaSK7LsWh9-l;Y1EOX^A$)?m)ZL^hNsHTY)vPbkt*)
z{|S)KF^%<>(v$E7F4_aBJlsEs9t^Px;tWw9w-<}MFGVp^?*DkKjQ?<QB+@o@8myC)
zXG{C)=3ujD&BEw@LU=h}JWNybFc8gpv}>pQjJ^qaFUII|h+>6|Y%Hnj3wo`$+#ZTA
zz5M}unW+x~t!Epex-U1;BIaNTD54#)<WYe2_Ktn|VP>o|<I4*TU`>fm@_IjOju9y$
z03B%_SZ=b4vI{jO@MA{f+)`h4r;5WFG2sV`%ba2aYQdi5AMf9ODsShb&r$mh?|s(9
zsge63jq2HVa!5C1t%6(0wamvnH$26eot@noCAkv-fC6nWntA4(f>1#s^6}-haxhy*
zldxO9><HTEt-7HzLUbq9VR+5d(4HjN;$2~*#6l8LUWHQ?d1gzUB!~h~A1yO*(VUOq
zCT(UAuT%W71S2eoc#V)j=s1TPpmvnUUm@ixJK%PBl5TtOW6sycd}|lq+e61E3G)aC
z7j>jq(F1PGxsR#Z%f(!JQFH4de0cbfOcLK0-<`WC`haMTX%3UbU7LGX<Sq{v_c;&z
zR2gW66?*#-1o;mAB_|Aa0gpWBHvwYz&5j8@8r)vl?&4(3qtXx86(faok%Zf%t*_7{
zuRQMrJ@M_Fm9<?{SdU+VPy2k~AsUat-G?9zc#h7ehcAqOpg(5Y-NzFz_i<;I?@sEC
zq}76??nQQeIEenE<FtAg9V^p{!WPb*vPK8;D5wNxwj)9iv8Y5_4QG$<!5w44ZuDQM
zOv<HqJ%3b;s#2J7ds<{}6nwRo$xs&9XLDBH>nvOq34@4(L0EsziA2#Vcj)xsTlTxR
zGM%~_CtIXtUg#f%=R!bcLF(5nnNCos5myi<ne`}D4<2?w=I#YZq#w!=6Qa$K#6T0m
zUvGnbZ}l6x9(Q_XS%vF6PhAF4k~faWK(nUmySy;T@WE>LL;p7!yY5{@57&mx%qw#S
z_tb`VPwW16TbcK%wzO}+Vd<M5{VaayC^gt~5gsEC)W^Qp@Ed-6am=YO_hvoU+=m!}
zDOuR7qhb(mLdR6N6226xs55=>llEJiH>-7KV&Na`JgDgM3#Pu25f}T?ARBHCdhXh%
z)1%7b$FT5l5)0U;C$vA{hU~ZDgxT*_QoepS9;^)A+633Wibx&2PYo8;MXTFtXNp_0
zf5|^$mwzAA$}-Y5SuX-8VJNI&C2kkoD&sFg%vi3T#wkHecd&9wxgzJ?>zDHx=O>R)
z1WMC}^wBHBv&r6u`v?qSFRQ3|zx<i;Z95^i0qs#C;!KH5JARY!8C&Rnq|jKFKJU_l
z{Rj$aX-|r|yuYY`vYH(h*cq-yW)}q;ZUuPCYx~~o*Ys8o+D{t8Q~m^B>oJBb$h*3g
zaN(tzl3r}a^q99;ZMhQFSkur*a_Jp(st9<YV8<^1@tW>-VQDD_s2L(npv9=F3kEZL
zvtU2HH-}r}cFP6rpHbPD+hf?CvU*cdJVR!k9M=(acwMXaI9*EE<FO>dHi@ob;fK&Q
z1WIWS-7M(E#6|2)SI@}k@T<RC!`Qw(GS%`$rV1tc7Z%y)e8U~A=t~7X7=h8*_<=t2
zgdqlTbWu(jxIEg5y1Kgv(GnPPc>vjCCyim@@i33`YWd)9oem8(qTYA}(M)r>A;2<w
zn>Lt!+CX1l>BBh_8UyQe0!5+ZPL&4)8=5!PJG95nU+?Ny$|oLG)>gI=d|QFmA({mP
zrbDALTWaEn$-^T0Rqb?QZ-vS!oH1Biyc`JT(1!;=zX(Q$Kj|xd<J=7%#pMMs))&<2
zj8SYscu2E3WdzsmaDR19r;D~-f86$A%v*qQh3<k-9K!8Y!`xv741?i8<jw@sUsdjX
zbMGyEq}Z&?RVXwF2@bex=^G#?zmz1{WeSze+S}Yy<R;%45nv@v_QFc0W{iV~o$AnR
zCh_8w_D<ZBTxr=<>*-k<IUlM<w}CPU=;t&PKJq5<p%@*COK&KjT`w5(7zPmygIMn;
zYKoy@foo&C1^Du}&HqU5Aj4TUUi$J3qozV>6iDz!;c8~|8^ceGsSjh6h(8_Ex!azS
zU+qK02jShY87JM1S@D6Sf}eYh`3&80VzfDFQ~mKH@eDn;d6A}z#$(7A2x5C&iVsQJ
zlE!qr0d!$AQCA59qjQMBS$O~!)SV<1tjIaP{hZUGj!)Z;D5UT%=brY4z503-FCR#5
zdsi==^F?f|txS7=DDy_}We9sfyCt4G479Ar8qwL=7R41|orb>m#=LEm+KE@~=daw_
zONmaIv09^s4#N#m((mB`a7O+1@pc1VOfm**<6k@Gh`~N$lWy_o`(l%S-%~-j5WLsO
zM0>X+*3*~KnS#6Nz<Czsc24_sZ3&aE#sy0KRYlFG9*`2I2v|fr0cJ@5o3b?6U5(rH
z`g6VzBeNFx?hy5{#vARaIrZ@Z>=#fBfW<Ib<+u9Ok1qnhsWvJ*+1cXJq~;m;OgizV
zWQ(u+65KrY3VX#WjOn6$U0x=-0xS+9qo8M=kC5{QE#$b&<@UKP;4-BP=p^K`9lpmm
znugI!f(|0Rg~_~tHb2l&F|$Cf+%ReBn_ofoILCD>J?#mZOK?v)__|LE;BHr+14{?Q
zl%;Iy;+;hjw+Zcl!A<Fbdg;|Nfbb88X;sc%l^*35>Bs@!?Xy~|gyfx2K}rrwD4<~O
zL9NxskdPvmyOVb`xOZ0_{fL^4b{&E9#ADAQupT3@1p-%aKHqcg)w#1U5ffl<ml{Ic
z+(2Q;@Z*^__kl?z3x)E*UB{5ZDHJ1R3Zf`u>H-X*%B~GUK!0>>c7O-u9~^gh`CFHW
zgOqjEcsMKNmaNC;F1gmcG1SQUIWDe@k#cu4I_qkD(v0)~gdOh*A~7Eu3I%LJz9<1A
z7Aq&H?5F+QJLdh~2AP-qwdu@gE54=@oO&MJcFJSlh;&!(wHxtf5go9dnk;avAMI-b
z(pKh{r}@SgowT&`v=V6o(!k<?E&(G^*6qa#X%KJ|k_dAuzbsUvMCZQmbL=-f=UN9=
zRU>mw5^dEM@P*I3eF4?deaVE@CP&-!U^Ze#a>b{*Wp~jmDNrE*o6yW~H`<T>wBXuw
zLlD_r^_cLFXcV?+6hTdRh)7wT`fHTBtYkzwJ{fzYIL)?%s~x1!zYBKLRy2zbmwi_v
zVk;sF+JhB5ai+6cFtAs<Kr=uoASAS{X|l4iJ*14Uj<Ba<HXCZXPbRO<6r{GPJ0(C$
znJ|JaEJ`xepD+PO*55so)yZw-<H*a_%rILFcm_ZxO(B<=S(L;69*=&vJob%ewyO1q
zR>7f;k=@#(6WH38A#)5kwS)u;7*O(xwAtBtONPZnbXsMdK}ZWH61fyOAV0dFK%;gA
z_J-P=;Q{g9Zkq=pJ*1a;a>j#m+#yZ$NZaD2FszafxHM-im9yk=4A<uRSArEXL#fZ#
zf^EHUk`wa8eNgnFV{@%l##yibo(yfySSjC1xxzxkshhB^eeVjub%^Oz>R1<YmUL*k
z*GeJhdCcb-<OFOv3F394HW;$ef~<2U^&bGv>9Q*o8PeUQmqM-{2x4m-rHsRYRJ$0`
zDm@b7Zz02$0nQFID8J|a$QK20Y=95MGUXW2G2K0ncU%3e7JVaYgwe?7wde4&^cI|K
zU8|}dI?cWWC#xT>B8Jn3m**9j3^i-4>(YD$cPATyK8h}Y$<T=A{e%nFwv%SHR%G(a
z4IgeIK~UUq!=$ACaeV+~9A^*$F&Zk-K-yD}nI2r>?w?{|2f6EH0=Mer<`=MJ5+n`|
zg=d4upoPT^&Ry2=0oO0mQK&+BT9<~r8RZ}Fj{1z|i@J_j&<}B-^FM~p$1Y%1WBvJ<
z^0rL&4K+{ZZD(I)y)kNaUCt>Svq)hJALS!P+mAxiz8e)~*#-M2d5CB4UY!vpfx1h8
z-ONd4h8rE8u+avza=|&zN$~xw1kM6jnbVD#CU)q6&B>C8Jc;0#7kn2U#V}URombW_
zsXyNc@i|1xe=;`UhOkTjbhrd|FDK#tXCAD<%2Xnt%wil3`RJR`wwP}_)T%`1B5t3<
zVA3^m4xCH2JzM$}-taXDMiTj600cgXqv3l>H^`O1$D_f84}N(h+EpzL#RM`_UKWcX
z%XWk7?RZ^<aOp&m#%$`)in;GHrTEYvG7*k?>`Ex~$Ok-L&wl>xsK7_f;KOhr#M~Er
zg8h3u&)2uZ(h=~wq&G8PdfEMnCsdAfy#KzMn0xJP+WxOs(O}YHFnNQ5E-)BoojmLB
zHy^gE7=Pa5H?}$h0b<#eo~@Ki#r&ZMfV*vmX$;@#?HKa&u0h6l`Lw(hb>#C1Li8xN
z`ymHfpePKzW95*c>y_<;S1w>ltMgstH#0@Mq>$P%;j3<NfNJPjxpe}3#L}<UqV3s2
zVWq}f(8)&;*qMXfaEY=r@@pIqspXrnSF>a~3~BU?KGkYFX*`JJ034$VOCBF<G1(D*
zKBg7pA7{S~qkEP6!eAclEs$U$-NK<%PDZ|tMEO-;EcCTvV64Bo#qO{ws)jdZhw!U+
zJhO<)>I@6*s=&4t<D?4K5@ZkqKfoiBUOxezpD7ChHh1rR)6Ief*u@dhY}04^B!TWs
zx{R~q8Rkx2Stc&-+w`m$`^9Q5`svw=sI|5bihNFPwe*5-(Jk3G-tgV~?lmix`>CYK
zAo;=PXJtu9<2X~YC$o=Zcj*0Kox4<P(H$z02EHTd1p+@`|CoTnwG<3^9Q?VdsrN<S
zD-5=>i8+ELa!6~~4$F9tuezy`WhME&=kPZF-TlxPf2y$)5Pt-uoPtAQdMg!-HVX$R
z{DogRu0M2*%7thdc6fgJp)koB_2~zMp@ePNLd(Sj>$%V)Cm&(RbiYiWN=O1aODY5>
znJvBxy8lF<!|c%C5m1@OSNb~b)h)=ZdGvnAy>7a29aLEtK=E6bM$Z*0SB*)(9ODTr
z)i6eFq3|0(`!fXMfMJ(}AvgP>7T9D{$4_TD&v}kCO!G*OpK#a|4D0)v34F&7`jb5c
zry-lb%SWDy3U{;);nv&jz}}4P3uub{IJDg=$dk<v6F)%yoc?p<=>g(=-m#bisyV3d
zoiA=ro5E-?9f!;r{ylKTPWIuLgWu;x(7h1n2%s}Dec;sN#Yxq^oQlidULhT4V&5wc
zYtVae=Gi`J`1u4eQ5W`n?EUI5*wZ$=?qOQN%VcZD^p3ts{&5O*W$r!rHri@S=)~o+
zU+tH-ZU1ReW8hal0=Y;?5B7V#s?YY30?`R3WbhU#Y2`^=>PqM0_yJ@^3ixtO&7ct}
zg9+G|CkZ5A)1NpJ4UrQVp_tsAA^J=ikOPbwi46Mk>In^u#zkbGb;(Zv*$T;cXYeu@
za2$)X4lYg<23Ghv2<~4UH9$5x5(h|29+<1HkRBEW4B0>iBKm2&D^BQ2hY7KdnKt?v
z@@2fyv>3)yoIjcxAFaxWpdh9g5>Xt+=ZnGl_n_IF&VzHD5-Z%U?+>XcH~Z4F&pYQM
z;&&qZs)2=EtEbKPmmGEBBSHDJm|6AQT`lG>1zC$MkWPtagekcbCfVVk;U}UKhYKuO
zH*GO`En0%#_jYA5)uPR|D1&vF#RG~wtY`}3KD8N6hY-z9@yyXMZw1xMw?i#6;v)vV
zYBShsTTOmmNcPB)jv#!->Dr;-p&tyG{Ozmd7n*nVSiQiZs6vqGX_E64O2>ZXQ0|D_
zeLHNrL;a)b92?A8g%_N8+%Y6P1=`r{&70d~`X@R+w3=?mjzl@M4lI}FNpLJ7Z6(91
zljr#TW2yGSC9%f@X|FpzYTei0;1C5<2IBs5qwij)P+ka-pNKD82Do<d>z;RSs+r^g
zRV^SGbnYpf^f@Wg-Uov`VUuAm-0jL8=cYL2gUIbO*i|IEjmY;nZczl^lXf}Ka;ZD=
z-R-zhzg^Y&GxtN-mpweox#gg^0XwntW480+B)ziJ<|E%X>+rS%Hf}z6{ag7_HUt??
zh=N9(#odF_P)L3K`Z5wF`RZo5%Wgx7i7-#ynH=SJU-JC!1rW$Ih0CYF6Y2u!d%i_9
z8u7<*jGaPD>g&*S8{tTsnpr~b1Si6j*EimA-;j-HBi4;4g2A}c%dn87VdUuP%X$}b
z&H<|t-D3I!hu+q<3-zoYoJ}4b>N5{;zIX2dJg6TY^jiDuHfB82OTt`M$&vlmqCLWf
zb%#2@emyW)HGly0e)8E<;IL@m_12wF?)e5#<}|au4luIXS{qw0<YbDWQ2rc5u<?a7
z`yfmInVGg%KA>X3-Y8^|g%Klle{mkX^k+7o8wX8QQ1)xz_S_L306TpHx_8pcA6#95
z(2TY>CJ;n0FbA~lgg`KUJ%*XiYo*-y#)$Almf^^u4oJ>CXdZibMenHV8%^3RNAL$a
zAW1t5`Sh97dPI^LhkQfaChhyV2El-^paWra+6xXu8HTJBRWy;_A-L`bBj(6<k0!|4
zeam<}>yXKO_c%Ocpe|1iyal%<7AMp3Ul41&3=M-Sv%gYDc!Y#3El+kT$+F^^u-*s4
zl>kg03Dh6YJ+lt3e3{GN*dlkkB)pd|1OQssdB1n+_Rh%r7lYH}{O&Q7UY}6w7!_Hm
z-@TqxMH6o!?OCxfThwT4o~)+`E2oZ^-+mQRZwEWLt}1f81$dysr|g?D9|{%=DESm&
zbT%(z$RdZ&A6yRSWt!8&hwt@FS$NRn|K{Ge6B{7d^&&t%D?h=h8yxVlewB_JBzg<=
zsE^l7Sdw*FKxn_Br0IyN5XhkI-hJ0@xa)AqY2e516o9f`9!%<m2<O{$F*|G@8*_uJ
zNj+qmw`<N0iz%L2x>N9(uPQRv{qnJ0uMVyGFik|mgX65Q?<T_g%oe*o9(9N$bm)-w
z2^d_QS_DUNe}vygDDF+i=x(o9N+%u#=p<m7f7}uCTreAghL%bT5=;+&2uussPgnp3
zCHT>#YDsml(k6}2p^6eli(uyfX$;NYz4sF25Lk6GJxfQ;+P94?O}~bMUw+U?E$0_Q
zu1K=sj-oU1KNJvjNp|e4SoVt*y<P@@xyCx~Kc93sC9=5Z0DNzr8I0(&RLjogns~Vp
zA8#HOsP_o~B20PJefHh3KKB3<(niGDb%+ySD<dyn6S{$vz`9j-<<|GXmG5AvS5466
z=-sTejJEIeC+h%1Tg<A$DGBbgbE}Q-vFr}>N~7R#?!bx}+#i9$tLQ1r;zfscNt>IK
zn?UJhxc!_pFkFaHP<D9ivC;@=x()r%)uxHw&z^Ryw^`i|FPvvWDiu^`XJq*cWZ!Kd
zqQ0l=3Mp=;7(zyc5h$qe6A-EsoC-$3V>ZaNwh6D%fm-dyTKJa3Q&CbkWBVODH8$o8
zjDcgVe?Y$}x2g`#nC3-T^&c)x$nQ|WSAVZv`MI<hp$Zspf%Ps!afthL%`E7yM5=**
z9ZKknIdFY$Y{oZarmLpFf;K0k?>ijVuU8U@$YOM$9LvgsA|?0-lP}<rBY>I=-oHg)
z1no9vpt~>y@bAvhf<pM}78=PN7Z=MqOCU|D&ZvaV`OtwOpUxbOTbkTmDQk^5#UuuJ
zoCHA<3qxBF(oCOerFWxwx4=oGlsRyIfgJjNf4Ukt8AHFqCjl837G{d~j?6Os&>J-~
zaHGm^u|ASn)GxlT;vn334iP+<*7%q+25?gr=^m|Da2bfPga08&Ox-S7>Vw4Rh(c2A
z&Y-$z`063NeEkGaj<Rj17+q77UByXbU;Q;4z6}&TrdUI!w+JFT)__AkodK;|+HBCF
z>2}9AhoaLlWbw`5QW;myl#2QfeqQN$jZK1_R{pmJ*_G#^=}t?Bt(7`+6loc_Z?t7?
z5J`$iK8}(Gq_Ysb$q6W0qsUegofAgD?$2(<xU*)MPk91j6$<IWq|o@|kVh883~r8h
zGaY9ofAM#3PRR8uP~$P&D*9rm)MOH9rnF3V5t$?M;$7s_2(n05XE{PrD#D&gnvJyY
z&X@RANK^G6J^O7G{Mi_!DTwV=&4T(4!i!0>EL*{kDjN1FlR0lmX)RTT<eyy&rH2SI
zSRij9^re>@t9}~aVmTH%&j=1$I#=>fNjfHJXqDnve=A~t<WtvKFjWzqqC>;jNW;0n
zY#f)PG6hL4MsPPOLxDMa(t)47Ilaws<Kbw2O#Q)d9xJ+ha>skmZ~Hv?2+$fDj;$-W
zEaXqS1sW|aUx9#d->QvWy*O~v+!dyY4@CHuL)~$dO@O+6>v%_nW1p&uRl-&PpLVhC
zjvWy{_g>+r11**W$YpMJXEy-&rq^b*bVZU1Zf03mH7b^_P%iz-griw*KM$q+aIk=g
zZ3meQ_WA2aN4l9Z%mzB(pxb=3_q1``8_FtukmSDC)x18(zP{^Fcf%3O<gX}Kchc!Y
z$vZWTQIxa*!Z`3k@;2^7zCt_JLDD)GoWNs>f)8Cov5-R^2O7t&>)ZQR+TEL_a$|2|
zo;xde7*AWrv~SJZuk&U{%@w~r#NJos5DkiUL<*n_0$u^E90ENG!HAKtg?wV30Gm9l
zI@M*MMXC;<XT9Fy9iYdf9UZ{-Zss^%Z;@RTzXRZ2db{@b`KRjwUhcGBN|bR-bx51K
za@mD)2mK$O8w@v+*3RBBcdDP~o}0(cSqAK3Ki&h|4`+Ys-m1_jlDo^9)cUR2qCUqN
zTw};$lwaC(;OIjjy4V%ggg$DILF`siCyH!h>Lh?AVoLfx*iO$O$~J%W*hnL-*PEi;
zvkC7mOkSB&w<~jf+(OHxaS4JYo)0d=z<c|8#c{vNCmH}SXMo&O66WhcDK?iu8)7r=
z1<@xUp~1uYPPKijLUSkmrjobNrte}1x#s1|AzCW$AiN+4wQsUnvh1UgvmpW+t<shI
zHQa{}$dN2cR(c_S_&P<TloH=60<UgAD-s+3f=E6&g-Ee-#m9+?99tom51AoE<AXT1
ze@I<ocN&}u(#f#n3NoW@z(+`oVg0Jpv2v|`$Msh2A$`pm5WW+T^AK(Pp>iL^iz)VL
zipiIpz6dgS^NnQ^=B`X_0CGpdN^{Q_`_C=wO(PspGA%cMK#Uw#&+Rl|9Crpo_DFzA
zUg!2F#grtEA#Cuhy@UsvFc-a-tB;}14VTyIy!Tb{w0d$gf+*DowQrAWxjY|l;hP#u
zsR7ux(DRZWWa#9?fQh6B5FdC}pBsivP@LBZ=~A}z83`cHTaq*!tG1o<w4%`vWKip%
zCqY_<!SNye4GF!t&>0WG>>Sz@hcw8tO{TuqXqP2-itT!z&-6AL5mGNEj@IN19qL4>
z6Otl`^>k<@CzySv>;f=t`H@c7Xf%Z3p{f+Vz}-+OcW^|&5W9RlG8Ba`{mj9g_R+2V
z#aKiQKuEM9JKV3?E(pSC8NzI9ft*r0e1io}?>f>ike?l!J_n%fxld5-eFzSv{-?9_
zM_2)^0mysv-ppC8yewc{`p3_hILP`Q6<`uA&`UB~Y1dvFMJFe#z)*^FIh;U46KN=2
zXm;sb6z47Exm^H5SypE83+Y8jFH5w?bqYJ(Gwln)>B&zFk!un>9Y2=?|6}rVt&rlu
z39h4aqdv#7ujI}*uC_oTTst?yZglb%4(An+m&mF3b+T=j1Jbd5si1ojN^{Wt(au}u
zu8#@=am)tzlniRoJ{SnLav*fmW>;e79{mUqF1MqUxS7~T$YhN@y%VD3J~VSOL|?Ne
z!6)cjIqf-3<j}?`e3V~|_<R>>Hq8rQmCF`5BjD+cbX?b4IY#cD`*e2m5!Sxj1#Hv3
zin5C{W39DgUOo_IH4g7Peoq%+prCsT)74fj>f(USX2A0%I2~;xU$RH*&$g|z>bnru
z$Ry+kBfp?yi8@%=;Jm^*eZ<VqXP$etz{w`RC^7X8`VZS6FhDzfCW1(ciPsB{+HZPK
zc&fEfzYWyhbj8vpNY$*qtJpazpm~Ty47kgvm0RbYl6}hc9uN>=$-BVSeaLab3B4@0
zU};Cq##+z(TY|jayEKJK&wq&_BzLT@mPRgy$6QWxA@?)8h#&&>a(0|8x)T`iEprgE
zBx1GUi90ZCTQXcKoS%p3W#*P4WDO7ZUBk-M6QD+z>8rsd?a3M9VjM2=-qvSeo`48;
zdhUHaz}|G}bh<Y>l8Lb^Lyn?+Gir#LF}-5?OG<0i6fBDC8{h;VlDTr%k_8qBm{`E3
zsY%~aoDFXvKwDBvxMprQLgS~@qhH1@1GPD!gU<Ik9k6|0kz)Y#*n6M{H2AhG`Mo>7
z<u+^NWXWTm_otb!{;=UxT*&E12_2Jt+ZYZ(RUhQ<a{<7C0)~kp4Fm&$z#uBu+0<g>
zKRlv8)uyKuJ<|L{cE7kNX^5tf?>5g<$u3VtXX%#6Ye4p>-=WvfeM4aNl8nP`a-<d6
zCa@;m-_^6$5CpvwQcqr^-KK_)d@OGtBmX@j*?l5W?oK`>yYvuwiFyE@Q*b+AkLI}l
zFnuDc1TWeOokNy+W>0Nff^_j}Ugr~Ht6qk4&CHu`<a?*1m=!o6Q_||-RMXjdV?zg|
zY+PJcHWa<lW8=2tJmUTtl`E2O3$)O@=v{oMP1$vXfRw^T<ghW)nS`rSOU~mwBKE<T
z^)TOYUNd?bew{o$E%Rlag739g?VEzVU%RponYU>*WLMr13mUoJw!P``+4TGKfXb~d
z_WuGW>X-k?4XtH+n`HKURH4(;tPzuc*1~aGBM&={+U0IJ1rFUMnh@0VBF_LX|G4_K
z$P-zk{Z=DbFeVNe<1GqjHzBqvprTH2!~vyNv@dU{eu2~Qp^eLeOsHXg`scYYV9Oq9
zAO~CW-Wju>2F6lO?$T#7j-?T3v*kV5bT|o)@>l&(>?ydyoNOZwio(xEi38O&(Vn{q
zBly9#PZ9ocnWdpV$#rgOP{j7fWlhxIiEBEdx**HF^EKJqj{H8Wy4D4tmgi=(^HFqR
z=0)1lMNuICK0VrVtX41CU5rYWS({8sJT4AdH{NIoxx?e_bJ{I0)miS1d*1Rmr$ye@
zDadHi8F`Hu(e|g&g?Np%;3Y~k1>dRAd6g7G;*B`eHUQih<c0r*U?V;*@Wk87l&I$9
z(tT<_hY2Afa5nhr^DM=w90heefXx`LeB??|JfH)w$V>8(G``f^Cx8bD!3;R8_p+@5
zp+_7X47B`a>IUFGkvi!Pq)I7D_DVHIm2RcpTiB(Fcl)0G`emk*2+cN%C?<d?x~TP_
zR(C>=2}RzFty02<X18BZct;h8_hIEEsrsCK<0Hyn&I0pKj!j_{`JKF2hXa<GW@Q}}
z>em=3;T_hN7vea>VVR_4Ce`&PDe~tF(Si#08r+-3bmC%kZ1&*tc~3;=5UupXQhBLm
z!o=~f$%A!yHIS+9zn$NOmJ33$CgN+U)MGHISHetIitgoJeq}C~jgiFwWnfE^6V%TG
zwC#O~3ku}_V^L11MaLyi*9vH80i$V&>m*Wn@W?I<U}`JC;Q-FwD+jv}Mzmrk0^q_u
zNr7AC@PUB^aI6w`EJg_^<t84255c0wLAx=JOxyNOugyJYC>d287{&AJS_9$Z69lB+
z0iwD)V{#I4aNsRoaHXM3%InD!7$581@CQ^>n?e>Iv_@HuF5OEDbvBSd)GeIk0#-Uw
zJE!UN_Ro||I-V+@{eE$Z^3n%j3l6+yLVX}6b`w9^qil=+z~htqsITCME1|i*|7?3&
z^(*-;iuUoxK{sxVrO=GJ)PagdryU@Zz~3t`c^JI`>RgHXMe~p#sAwhYP)Hw4neYne
zu8(e}w?*lJv2Biiu`9<vYwVz*j4Ea)rGA061=3?JTsLVb8gd@Czg#2kDAJJfD3^G!
z<#_M8O3xf>9rZaCWHI-)DTpza=!#ReUlitU3tfW|l5mAI##GzOp?L1yej!AGgoh~7
zLcM}31WnvN+b1zc5U2eFAjqPmohrzLi{spqEb0JwTqN%7T4O*NQ}{k+u1db+SA{9O
zsuQa4i#V4uROcX0=fydg15R_{G|jdswQbb8hAB-{NMi`GJY*T4`bPop7hY}xV|%nW
zt{82zZvn8Gt;3|FePWInP#Y^rux^!{FPq+^ecU!<%SKoy+ATmlh=(S|P_qbyNI<Ed
z2L_SYw)t-rl^@nlfI5C3kR1l<mvezUT)62(5#^M9f<u7QBKE_iAwQM<EM4KiWH4*^
zmU)Drg2g02C1DX%V#K$MS5xh&9&Bi5ok0(L`j*00-WVVwb~|~`5hPLTNMdv--I=qa
zM%Z?4KLU)PI1moZ8w76x&7=CK#~fJ4**<Tv2(ASR5Av}FUj80A^>tMW5Gxm+no+A4
zh`{o15#PE(+1+h8C%Yr_m6Dbe?c&ciCgjb)IO<LD1X%%uj5tvO!6{7P1BUz^2O*!s
zg;tr8$UXCNlmQ4mDTrPe4Y;tHr!4+>`l=P>q*mX6iA3r;LzW*vk7I~u33(y0+HE1j
z)S2LkkZ|HqbbggMOt`RFUy?Es>;hz^>IEgODepc5?P9X~z%`Sxr*eg2M2S_8KS8a5
z*!07)88oDu1@FMKj(8tEOIh!CSjb@)YWoy&+*M!3R<Kh>{S<mU%2-22>9y>>Mrtz*
zA;ea@reKL+R;)VYXGwi`js<v$v9e8K&!Ef_zFLX|S>Gk_P9Uoo<H9xJfz}$`)@YfL
z^u38vIvIY8Feh<(PUUoaWih4D3VUxCVqAoA)<+Z?mFS`qdXvBo`*T5v^EP_b!Y-yf
zoh^9==Td@BQZAn)RM8;J5|Z0_J4~t1pfy3&2;v!J%HSO_;L=!&d6J=EU}%1KDAl+#
zV?|@-dUKy7q}iv<jAV4yqOl<ngRDog6s0@Sl+LB9hY_9^$C`zu?!y6RR*$0)Sy<`y
zAe71Q>jQRyg5rHAz{=pqcMro+x+g(<3ysocCzI9I*@6^aK}D%aUG(t@-Hzv>QrS2?
zjm^&tjv&>-49k8D?s7va7%Gc;u16iPb35N87)rSUgOq@4kt9C?$33Etmh4Cw9o`C-
zE@P07;`K^L5&*pht^;se7HfkJC{YgP6t?h}%NOepBLgF{ZQ`G*(4-)n0f)%;tS|{_
z4yby8G=ZV+f*qiiHFD&~lq9s9C=>U0R_>py-1U>MkK9B>Fi26s5W5r2FH<l8Pde~!
z*dyD(g_d%na1MX40HyV~)8--wd{!5VXQ|Z!fk<w{IW*_cm>~xqwmHrnioHa+DFeh}
zp&rH+DjgvCBU6m#4#gWVJQk6+cJO`8t8jY_J7biGJ0>Rj3>v!;%?h~xkh|S8_36|E
zdS+leh+bCe6G)3=?+G(SzH|g=f!=kahz%@s*SQYxAonz9e|%daI_GBoZr!>={wI$f
zI_FFgZ(gKMPG3O=Hu@$8+|KO&U-UOzM1@f^nk_0FK$JzP+kzucfU^bPxeD@dEH=Xp
z{-KE{0W>(y8H>!^9oeuasA-QaKM|<w>W%VQi&q^<o7K-yY&{0zO12EBC4=#cW1F&@
zjwdXZq#AoZdO3OKIlLMYWsoqt474wBqAzp#p#T>iwgT)fGj7U`@d5(Sq@3Vc^~9z$
zszEi70@kt-StV=D3)njQL{1`^nsbDe_M9CPqX^hV{DEIzK6tKXAqJZo8<I*$*4EBd
z-{gF^K4j{lmMvO5;!gMtYyTYO9(DfROwVkL>pk}!-5<Ze*&oqWes>*7n&$8ZtIjuB
z#PUjhMv+HUORE5Bra|7vArybX9OYS!rM#}RX#A2lWkZ_y2h&#BJo6uKPH!i^+i?`g
zFfbo?2nq&S!=xy`5e9C1{YP>U=a*&q2Q~T^V3v4pQkc?+(zP488})=YopPp3oDMcf
z<>pmZ%0@eqh{4j};{yNaKxB>fL-eD3Owlew8P~;Ppw2ie$wC`ac>Q0DP59?LyUxcO
z3xHU3&HmKxf+xNGPynePgCsMLya4PA1jRzW9IB;6IOA{>v9O}i8Zn$$Y;*)BnO0-+
zg_rPGNN^yhrz^*`o<}dVnb8Ab`XH@)V1!AUk`%Mnb^6kcUs>Rg!$G)Wpnm%^LMnzR
z;E!t5iV>7d$a_@!t+||kDJ8ra#?^lar7t%O<V7r(#v%3ulx?AOMRQUwW7<f0V@Vc~
zs{Xp+g~Ddm(4YkDT>!#2AwG5Z*1%KZrm_csVjw9nMT+WY_ryW$JU_pM1Ht_NheERD
z1)D2lsagaW_``3$@rcIH6ovxDrAg+ut@@dB)$Gt52mK7HEk)tpUJA9v7XK0aH-Ij7
zSe@i<-j?Kqj_78RpLx|n&8>Dsjo!pleVA%mm_g`|>2W=$Y<CNWoMw|Cwp;^tE#%j$
zdO%b0Ot%Z3y!4!#nc!ed8F{ccsRMOmXh(VAjLp9d5<;^DmNqa_0G<@LTcQyU-{*&X
znb#~CmYp{tXn>RSVtI~@+STYQ0!v3!c0u|CMt$zmivKl8%S}U-mWuu6>vHhNuLjXT
zIDm4{G$?02p=5rC0*zuP&_?tQ_#!L<+sTS}Kw(kKv$e*R<ttr{2(AEJ8NjwK9udRF
z`Xs?T4J~G>qB;sY!Ls|+0m`t25$hhv*tjT<<#*vMuBh>X1QR5<h5;9^XjIHBpVW9M
z8%T?ME9@CKKdOoEZ7EjyDmLvv{3>MJ41h?!EnJlo*^FG43_$1GbQXr7jP$#k369#Z
zn;)fAok*_%<_8yz7JxZ#xrp|I&YB68fw?HdY|4TvsUgrDpS!blGt*^?j2=d$i1#hj
z$OA|JLE+<4w+0U<0D}?{7n_mdQpXbk5?%r84Ei~4O!+yPDr~30v%7cEnW`<jv4w0x
zHE9R#KXpF)q~yJp=P&Hu4G>ZRx{Zzo<Xz05pwUYALZ*fyC7}o7QBEbFg325uDB>i@
z|Kz1lR7v?S9y?i?0xT0mg+>Gdo;VNVe4i+-A>%fRQ~jS*3uw(_*x-@SRS4vfk0=&#
zcoBJG3wR>9O=4~nU%}%PnIK)!q`c?vdL(2q>X5+)V8ll^W|sV+Sr>-Fl-CP)c;kX3
z>wQWJO_t|PsXiPbdK1W=0%3xM@}R&tzyOD##$p->8rMWX93eH~cxt;&?t(QcyqQTZ
zyNV_T?-&J1aOv%)dJTA0goZ8ydj>H7_Mk~(0wguAQc}afVr+47IuabE`h}`UfxQ9#
znVGCL_0TlZ?P*Q!0MCixy;AyB{f*$#jGc#D7{X@(R{)*#sMRd+A?20O1`eX9Cx^dF
zQb({0DPhR_xq~g`?is87;uXbo!k`06wj%Y%vcYe#w|6w1cxcQ-U8Cq?n5n?VR2k|_
zNeGez;YEP(dcOQ8Zi9zzVR53!1CPA0&#iLiBzI2Wr<hm@q4+-$A}mS{hMXcF9`18?
ziul4{OzX}R9se#O6emJxm3XQ5J^-2%9{vp!{wP@MCvZ%)etbdJACih&Xaxtzb_(Gs
zK4)i(pE3X7)f6HT+tYzsmj#(qFo(7tR~jT?vtgG1Q(S`n4Q_aNmJjP3aXXKC4}EP;
z;2x45Js`<St2uK4WTQQh+%BJ;zXbeA$`1V%I>M7gNkoZ!09&P$7Dsgj^}+{dygKOk
zDM^X;3oAc>Yf(0R=u-CDZxJU+{QMDWS54?V3t>lq!E6AK9kPI;NauLq)p0xrhJ3OF
zDIBQB9=2%Ik5p*Wq8y=hq!Vz4cETmn)PcxAdP9qHPI#pnw6$XMANmD9zz0DO137o2
z?|k$Q>aztkwr&}XP&N(k|9S`3OSFt1I@qEma3KNsoCgq2_AW-1H{W=fF^O~#_+`76
z)voHymo3~DQO##;h6F46cAyj(_nh;mpza(A?@x?R)8<pH5<QuB_zG)f6Ya%|kKh9^
z^-@bifW3qQ>H6#<`OIiS8b!H)?}T{zs9K!zG$1xZjU$lJ-GLX4%v8yY&r>=GRDnpe
zvah#Ne6YQ}EhV!{?hTIOEw0C00|9+~S{d1PFoP`g02V+M$!c7c0SX7lK4+<<N&@_U
z1tstEL1~S~J2?Y4O21WKppDLQt&aYLIt(K7k;+|=7TENQ(eH9?fX@l6{|Sg=&YzEB
zzoC2dI<{;tihhX7pX-Aa_X7b5OyBFa=IhkLKc*8vZx-zyD5FFtw2$@hErY^#JSZcL
z%B1vg=SG5khEe6H=WyuksU1t{rd47sGRXk%bY(yJJslbd*+ot~e@%7HRK%DTn4gP`
z1J8U%UWg;0P2wr4#fWqUWuOQsLvjQlNVBZ2YW`}&+Ky<-!;W;;>V2W^2m|K1Mj{v^
zfc_UidnUY9N<SCJ)XW?B8gdi8cS`oSLAIf4#^Xm@t(NzW&%4$H>M-&rvz8vMc`hup
zjDF!+rWH^rOY8U@XV_Ps6m)qHMuCGiB&SuOdq6ux{-FC{1|+%4Q{)<c_m=Dczg&7h
zvZpW>p#(yPrq$;>4M>B{14%!@LOQ>9FG~VHSa)zuJE2ELZJfIqAk1Xng6@drGzx1H
zekgq$7+qT#JdvLZPbw2bICsmAvu(Qby<@}qgPa~({)&E<EYeztXIj#`c@gkWKxizk
z%W1C2SYau03Q@>7oDu)gPE;O(^r<99ZTJECjV<|NCNPSLP;U?Avpbpzz^TY(qh%ah
zo-S660=@RoqTL|PkqpSn^(#rpiJ=VRFE%F{RU@63^+)dnTwTKAB9zDTST!N0>2w<X
zujyl~TY=XH+=#_?4IUn-$w}Q5?3!}eAv^ZBmNkHwXPTv=d~NBk(-em2C^a4wX(<&s
z&@&P$p<^6>RX<Ivn=`V=bv1=o%yXgPt^KI?pb$81RSt^VsUipAFLKWFnw_bolz2^M
z)W(2)dG$f&;u`~3=v0vR^WAur38mJ1tiRqzq_vRdk?Kr^QdgxFTVpo^HJYb=d;)-z
zqk)nXj~dZwfQ#q6{OQU5bayVRqSZpd0Ix6KP-t;V<UQV(;hOX+lyeyBO<kQH$p6-+
zXjAmOmdsi9B<$>Q6vR=ElmR?(>P^~O51(Q@(=%!C0RUz{^X-|G;ldOn<F}mdIyw$U
zKzwi6rM^(Rp}9O;#J7bz(q1>?%U=0oMs5D@AVRmdvoGFfR=oCDCZSkRTo;@v#hI|H
zchw<9u{)&~h|1r=?@tfOXX1W04<Rvf22ib$rGB^QM?d9A1ps1EzRL+Jb|&T?93;CI
z16=@$SbePy(^9p-|7k_AFF0r&BXpsRCMLW0RKo!YxBTe`udBR8&-4kjLP;?=Z)PJd
zMy5C?pdgQi+s%(&VZa^r)SuCVRoR#_R^bKqI`g*f)PDV&YXWGBoa|p#)KVts+Ybko
zBk$0*NH$;-Eqke@l4TQM3R@R6tM+W=7JZiu>g&0TJviYZsjKJf9vIdWJx-7zqk6{<
z%x_0;ebTb~=T&d^W+>7*+zEM#>r>%g@|F7Hlo$ene^8ajG_kyE0$fUGXO}u^-j)XW
zwCb#dC5=84_Z2}sGmZsEa+P7QJlldExeCBiTFV4zzyiv&nnUhW6f~Vs9N{ctTutdn
zkFs8!e(ky7Ry;O!yULi>vRDk$40Xj`O|`90^qBdnAT#U=0{r4#?oyo6-^Yit1kelA
z5_*9O?_N8hR6Rk_<QcFwo$q~6iQw<eUi+U%$gNHKuofgzmy-I!e=qvCbbqAfpD_Fr
zhJV8FX9fNV!=I)2ry2eU!#`p8vjYEw;m=b1(+vNF;h!-4S%H7T@MkIhX@-Bo@J|^2
ztiV5E__GxMG{Zk(_$Lg1R^b0#VOTMAb+{gT+UCyb6h2`aD388Vz1~+~6Tkmmy$w6@
zAK%_&A$Dx{pXu{Zbs1MOtD`$^ZTNpc%N={yZySkofBL_{=#C(aM2lek0P5ECpXsc}
zSkrwaS`QZ;_}`yIZ3!eRW@?43CEEY`rIRYb+tq^S4K)Y-_b=yO-DH?8P0gb8OZv~N
z3Upxzx{LeJjU#_O3Pw{PNMn+r5nucIzkf!!cN+`z&T8_x_P;+-+>I}Cw~Z5}Qc(W>
zd@LA-P^WlmEyMHIAjVF@`UF|n|KC9J=~$DD^cf>cb>x2*h@^r0N{rHrRi!Xi{xkL*
z0en$zDr3!GZ&-u#-Odoa7rQR%Q=3-){rSHwLYx0@i_jVPe{hN#!h1rLJXZSCd6xex
zmn1n-`|6VYWRz99hcX;eGmh+_rC&;(tIhcyV{5d8-|{$uU0H7T99j7_++$4(N?^#y
z6}N3<By@a@^0Ah&8uMJg%_>_#-o|y?i0{GsjJ!q8Td2w0wbRgXk>Jf4z$m6?=<RAm
zKe+!Zu|D8IJ2kid`>1cT%2kvndTtvb2~-5&i<~$AuP206F)G|-s2?rBO0-NH|C;^J
z7YN=pJhtn%i5imDuRJ2l`}}?^MU@cu;*02@ihv;`p<tav3*-OI+tqJ=1s&r?voVlt
zBK;rzBh3*=#@^K<c$aHmS_j<%631(QU$jL%%qG(7cfxlj*tQb9gD4DWYT6f8u>*d_
zieDR-NycQ!7i|i4^p67h`_by&sE+%O0wLX4zwNJ4Rq}8e=Kih42!B6XdaZci_s&()
z{5>i;&+Bf}|5eg|Kl<N<|K5gwJB-2pEj<53`tO7G?+nv2{e4>gDXo86`kz_)W8(kW
z;s2jI9xDso0a2a{!^)oj@h}M;>K(I6p3uFJq($(ySdRG3-u&a~;rH?4i_|_e3jD`y
zrTBXn*KdoTc3fj`|K$P}c->@>O1u(6C9ePdzN_G?*0uNl{U_>+SRsTiex{FZJNWO1
z(QJX_i=KaOO8y^5@)S7stQHQG@}~b8ER5pcME>o_-(vJnwEmruzqQIgt@U3Gi&Xi)
zGxG0@{5vC*75L|(tQ8*or6vCPTK~M?zr=y*|C=+?;rW*Qw)l}Y9cCT;ck-C}(fGrc
GZv9`RA2Y%L

literal 0
HcmV?d00001

diff --git a/charts/jfrog/artifactory-ha/107.104.10/questions.yml b/charts/jfrog/artifactory-ha/107.104.10/questions.yml
new file mode 100644
index 0000000000..14e9024e6d
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/questions.yml
@@ -0,0 +1,424 @@
+questions:
+# Advance Settings
+- variable: artifactory.masterKey
+  default: "FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF"
+  description: "Artifactory master key. For security reasons, we strongly recommend you generate your own master key using this command: 'openssl rand -hex 32'"
+  type: string
+  label: Artifactory master key
+  group: "Security Settings"
+
+# Container Images
+- variable: defaultImage
+  default: true
+  description: "Use default Docker image"
+  label: Use Default Image
+  type: boolean
+  show_subquestion_if: false
+  group: "Container Images"
+  subquestions:
+  - variable: initContainerImage
+    default: "docker.bintray.io/alpine:3.12"
+    description: "Init image name"
+    type: string
+    label: Init image name
+  - variable: artifactory.image.repository
+    default: "docker.bintray.io/jfrog/artifactory-pro"
+    description: "Artifactory image name"
+    type: string
+    label: Artifactory Image Name
+  - variable: artifactory.image.version
+    default: "7.6.3"
+    description: "Artifactory image tag"
+    type: string
+    label: Artifactory Image Tag
+  - variable: nginx.image.repository
+    default: "docker.bintray.io/jfrog/nginx-artifactory-pro"
+    description: "Nginx image name"
+    type: string
+    label: Nginx Image Name
+  - variable: nginx.image.version
+    default: "7.6.3"
+    description: "Nginx image tag"
+    type: string
+    label: Nginx Image Tag
+  - variable: imagePullSecrets
+    description: "Image Pull Secret"
+    type: string
+    label: Image Pull Secret
+
+# Services and LoadBalancing Settings
+- variable: artifactory.node.replicaCount
+  default: "2"
+  description: "Number of Secondary Nodes"
+  type: string
+  label: Number of Secondary Nodes
+  show_subquestion_if: true
+  group: "Services and Load Balancing"
+- variable: ingress.enabled
+  default: false
+  description: "Expose app using Layer 7 Load Balancer - ingress"
+  type: boolean
+  label: Expose app using Layer 7 Load Balancer
+  show_subquestion_if: true
+  group: "Services and Load Balancing"
+  required: true
+  subquestions:
+  - variable: ingress.hosts[0]
+    default: "xip.io"
+    description: "Hostname to your artifactory installation"
+    type: hostname
+    required: true
+    label: Hostname
+
+# Nginx Settings
+- variable: nginx.enabled
+  default: true
+  description: "Enable nginx server"
+  type: boolean
+  label: Enable Nginx Server
+  group: "Services and Load Balancing"
+  required: true
+  show_if: "ingress.enabled=false"
+- variable: nginx.service.type
+  default: "LoadBalancer"
+  description: "Nginx service type"
+  type: enum
+  required: true
+  label: Nginx Service Type
+  show_if: "nginx.enabled=true&&ingress.enabled=false"
+  group: "Services and Load Balancing"
+  options:
+  - "ClusterIP"
+  - "NodePort"
+  - "LoadBalancer"
+- variable: nginx.service.loadBalancerIP
+  default: ""
+  description: "Provide Static IP to configure with Nginx"
+  type: string
+  label: Config Nginx LoadBalancer IP
+  show_if: "nginx.enabled=true&&nginx.service.type=LoadBalancer&&ingress.enabled=false"
+  group: "Services and Load Balancing"
+- variable: nginx.tlsSecretName
+  default: ""
+  description: "Provide SSL Secret name to configure with Nginx"
+  type: string
+  label: Config Nginx SSL Secret
+  show_if: "nginx.enabled=true&&ingress.enabled=false"
+  group: "Services and Load Balancing"
+- variable: nginx.customArtifactoryConfigMap
+  default: ""
+  description: "Provide configMap name to configure Nginx with custom `artifactory.conf`"
+  type: string
+  label: ConfigMap for Nginx Artifactory Config
+  show_if: "nginx.enabled=true&&ingress.enabled=false"
+  group: "Services and Load Balancing"
+
+# Artifactory Storage Settings
+- variable: artifactory.persistence.size
+  default: "50Gi"
+  description: "Artifactory persistent volume size"
+  type: string
+  label: Artifactory Persistent Volume Size
+  required: true
+  group: "Artifactory Storage"
+- variable: artifactory.persistence.type
+  default: "file-system"
+  description: "Artifactory persistent volume size"
+  type: enum
+  label: Artifactory Persistent Storage Type
+  required: true
+  options:
+    - "file-system"
+    - "nfs"
+    - "google-storage"
+    - "aws-s3"
+  group: "Artifactory Storage"
+
+#Storage Type Settings
+- variable: artifactory.persistence.nfs.ip
+  default: ""
+  type: string
+  group: "Artifactory Storage"
+  label: NFS Server IP
+  description: "NFS server IP"
+  show_if: "artifactory.persistence.type=nfs"
+- variable: artifactory.persistence.nfs.haDataMount
+  default: "/data"
+  type: string
+  label: NFS Data Directory
+  description: "NFS data directory"
+  group: "Artifactory Storage"
+  show_if: "artifactory.persistence.type=nfs"
+- variable: artifactory.persistence.nfs.haBackupMount
+  default: "/backup"
+  type: string
+  label: NFS Backup Directory
+  description: "NFS backup directory"
+  group: "Artifactory Storage"
+  show_if: "artifactory.persistence.type=nfs"
+- variable: artifactory.persistence.nfs.dataDir
+  default: "/var/opt/jfrog/artifactory-ha"
+  type: string
+  label: HA Data Directory
+  description: "HA data directory"
+  group: "Artifactory Storage"
+  show_if: "artifactory.persistence.type=nfs"
+- variable: artifactory.persistence.nfs.backupDir
+  default: "/var/opt/jfrog/artifactory-backup"
+  type: string
+  label: HA Backup Directory	
+  description: "HA backup directory	"
+  group: "Artifactory Storage"
+  show_if: "artifactory.persistence.type=nfs"
+- variable: artifactory.persistence.nfs.capacity
+  default: "200Gi"
+  type: string
+  label: NFS PVC Size	
+  description: "NFS PVC size	"
+  group: "Artifactory Storage"
+  show_if: "artifactory.persistence.type=nfs"
+
+#Google storage settings
+- variable: artifactory.persistence.googleStorage.bucketName
+  default: "artifactory-ha-gcp"
+  type: string
+  label: Google Storage Bucket Name	
+  description: "Google storage bucket name"
+  group: "Artifactory Storage"
+  show_if: "artifactory.persistence.type=google-storage"
+- variable: artifactory.persistence.googleStorage.identity
+  default: ""
+  type: string
+  label: Google Storage Service Account ID	
+  description: "Google Storage service account id"
+  group: "Artifactory Storage"
+  show_if: "artifactory.persistence.type=google-storage"
+- variable: artifactory.persistence.googleStorage.credential
+  default: ""
+  type: string
+  label: Google Storage Service Account Key	
+  description: "Google Storage service account key"
+  group: "Artifactory Storage"
+  show_if: "artifactory.persistence.type=google-storage"
+- variable: artifactory.persistence.googleStorage.path
+  default: "artifactory-ha/filestore"
+  type: string
+  label: Google Storage Path In Bucket	
+  description: "Google Storage path in bucket"
+  group: "Artifactory Storage"
+  show_if: "artifactory.persistence.type=google-storage"
+# awsS3 storage settings
+- variable: artifactory.persistence.awsS3.bucketName
+  default: "artifactory-ha-aws"
+  type: string
+  label: AWS S3 Bucket Name	
+  description: "AWS S3 bucket name"
+  group: "Artifactory Storage"
+  show_if: "artifactory.persistence.type=aws-s3"
+- variable: artifactory.persistence.awsS3.region
+  default: ""
+  type: string
+  label: AWS S3 Bucket Region	
+  description: "AWS S3 bucket region"
+  group: "Artifactory Storage"
+  show_if: "artifactory.persistence.type=aws-s3"
+- variable: artifactory.persistence.awsS3.identity
+  default: ""
+  type: string
+  label: AWS S3 AWS_ACCESS_KEY_ID
+  description: "AWS S3 AWS_ACCESS_KEY_ID"
+  group: "Artifactory Storage"
+  show_if: "artifactory.persistence.type=aws-s3"
+- variable: artifactory.persistence.awsS3.credential
+  default: ""
+  type: string
+  label: AWS S3 AWS_SECRET_ACCESS_KEY	
+  description: "AWS S3 AWS_SECRET_ACCESS_KEY"
+  group: "Artifactory Storage"
+  show_if: "artifactory.persistence.type=aws-s3"
+- variable: artifactory.persistence.awsS3.path
+  default: "artifactory-ha/filestore"
+  type: string
+  label: AWS S3 Path In Bucket	
+  description: "AWS S3 path in bucket"
+  group: "Artifactory Storage"
+  show_if: "artifactory.persistence.type=aws-s3"
+
+# Database Settings
+- variable: postgresql.enabled
+  default: true
+  description: "Enable PostgreSQL"
+  type: boolean
+  required: true
+  label: Enable PostgreSQL
+  group: "Database Settings"
+  show_subquestion_if: true
+  subquestions:
+  - variable: postgresql.postgresqlPassword
+    default: ""
+    description: "PostgreSQL password"
+    type: password
+    required: true
+    label: PostgreSQL Password
+    group: "Database Settings"
+    show_if: "postgresql.enabled=true"
+  - variable: postgresql.persistence.size
+    default: 20Gi
+    description: "PostgreSQL persistent volume size"
+    type: string
+    label: PostgreSQL Persistent Volume Size
+    show_if: "postgresql.enabled=true"
+  - variable: postgresql.persistence.storageClass
+    default: ""
+    description: "If undefined or null, uses the default StorageClass. Default to null"
+    type: storageclass
+    label: Default StorageClass for PostgreSQL
+    show_if: "postgresql.enabled=true"
+  - variable: postgresql.resources.requests.cpu
+    default: "200m"
+    description: "PostgreSQL initial cpu request"
+    type: string
+    label: PostgreSQL Initial CPU Request
+    show_if: "postgresql.enabled=true"
+  - variable: postgresql.resources.requests.memory
+    default: "500Mi"
+    description: "PostgreSQL initial memory request"
+    type: string
+    label: PostgreSQL Initial Memory Request
+    show_if: "postgresql.enabled=true"
+  - variable: postgresql.resources.limits.cpu
+    default: "1"
+    description: "PostgreSQL cpu limit"
+    type: string
+    label: PostgreSQL CPU Limit
+    show_if: "postgresql.enabled=true"
+  - variable: postgresql.resources.limits.memory
+    default: "1Gi"
+    description: "PostgreSQL memory limit"
+    type: string
+    label: PostgreSQL Memory Limit
+    show_if: "postgresql.enabled=true"
+- variable: database.type
+  default: "postgresql"
+  description: "xternal database type (postgresql, mysql, oracle or mssql)"
+  type: enum
+  required: true
+  label: External Database Type
+  group: "Database Settings"
+  show_if: "postgresql.enabled=false"
+  options:
+    - "postgresql"
+    - "mysql"
+    - "oracle"
+    - "mssql"
+- variable: database.url
+  default: ""
+  description: "External database URL. If you set the url, leave host and port empty"
+  type: string
+  label: External Database URL
+  group: "Database Settings"
+  show_if: "postgresql.enabled=false"
+- variable: database.host
+  default: ""
+  description: "External database hostname"
+  type: string
+  label: External Database Hostname
+  group: "Database Settings"
+  show_if: "postgresql.enabled=false"
+- variable: database.port
+  default: ""
+  description: "External database port"
+  type: string
+  label: External Database Port
+  group: "Database Settings"
+  show_if: "postgresql.enabled=false"
+- variable: database.user
+  default: ""
+  description: "External database username"
+  type: string
+  label: External Database Username
+  group: "Database Settings"
+  show_if: "postgresql.enabled=false"
+- variable: database.password
+  default: ""
+  description: "External database password"
+  type: password
+  label: External Database Password
+  group: "Database Settings"
+  show_if: "postgresql.enabled=false"
+
+# Advance Settings
+- variable: advancedOptions
+  default: false
+  description: "Show advanced configurations"
+  label: Show Advanced Configurations
+  type: boolean
+  show_subquestion_if: true
+  group: "Advanced Options"
+  subquestions:
+  - variable: artifactory.primary.resources.requests.cpu
+    default: "500m"
+    description: "Artifactory primary node initial cpu request"
+    type: string
+    label: Artifactory Primary Node Initial CPU Request
+  - variable: artifactory.primary.resources.requests.memory
+    default: "1Gi"
+    description: "Artifactory primary node initial memory request"
+    type: string
+    label: Artifactory Primary Node Initial Memory Request
+  - variable: artifactory.primary.javaOpts.xms
+    default: "1g"
+    description: "Artifactory primary node java Xms size"
+    type: string
+    label: Artifactory Primary Node Java Xms Size
+  - variable: artifactory.primary.resources.limits.cpu
+    default: "2"
+    description: "Artifactory primary node cpu limit"
+    type: string
+    label: Artifactory Primary Node CPU Limit
+  - variable: artifactory.primary.resources.limits.memory
+    default: "4Gi"
+    description: "Artifactory primary node memory limit"
+    type: string
+    label: Artifactory Primary Node Memory Limit
+  - variable: artifactory.primary.javaOpts.xmx
+    default: "4g"
+    description: "Artifactory primary node java Xmx size"
+    type: string
+    label: Artifactory Primary Node Java Xmx Size
+  - variable: artifactory.node.resources.requests.cpu
+    default: "500m"
+    description: "Artifactory member node initial cpu request"
+    type: string
+    label: Artifactory Member Node Initial CPU Request
+  - variable: artifactory.node.resources.requests.memory
+    default: "2Gi"
+    description: "Artifactory member node initial memory request"
+    type: string
+    label: Artifactory Member Node Initial Memory Request
+  - variable: artifactory.node.javaOpts.xms
+    default: "1g"
+    description: "Artifactory member node java Xms size"
+    type: string
+    label: Artifactory Member Node Java Xms Size
+  - variable: artifactory.node.resources.limits.cpu
+    default: "2"
+    description: "Artifactory member node cpu limit"
+    type: string
+    label: Artifactory Member Node CPU Limit
+  - variable: artifactory.node.resources.limits.memory
+    default: "4Gi"
+    description: "Artifactory member node memory limit"
+    type: string
+    label: Artifactory Member Node Memory Limit
+  - variable: artifactory.node.javaOpts.xmx
+    default: "4g"
+    description: "Artifactory member node java Xmx size"
+    type: string
+    label: Artifactory Member Node Java Xmx Size
+
+# Internal Settings
+- variable: installerInfo
+  default: '\{\"productId\": \"RancherHelm_artifactory-ha/7.17.5\", \"features\": \[\{\"featureId\": \"Partner/ACC-007246\"\}\]\}'
+  type: string
+  group: "Internal Settings (Do not modify)"
diff --git a/charts/jfrog/artifactory-ha/107.104.10/sizing/artifactory-2xlarge.yaml b/charts/jfrog/artifactory-ha/107.104.10/sizing/artifactory-2xlarge.yaml
new file mode 100644
index 0000000000..92953faec4
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/sizing/artifactory-2xlarge.yaml
@@ -0,0 +1,185 @@
+##############################################################################################
+# The 2xlarge sizing
+# This size is intended for very large organizations. It can be increased with adding replicas
+# [WARNING] Some of the configuration mentioned in this file are taken inside system.yaml
+# hence this configuration will be overridden when enabling systemYamlOverride
+##############################################################################################
+splitServicesToContainers: true
+artifactory:
+  primary:
+      # Enterprise and above licenses are required for setting replicaCount greater than 1.
+      # Count should be equal or above the total number of licenses available for artifactory.
+    replicaCount: 6
+
+    # Require multiple Artifactory pods to run on separate nodes
+    podAntiAffinity:
+      type: "hard"
+
+    resources:
+      requests:
+        cpu: "4"
+        memory: 20Gi
+      limits:
+        # cpu: "20"
+        memory: 24Gi
+
+    javaOpts:
+      other: >
+        -XX:InitialRAMPercentage=40
+        -XX:MaxRAMPercentage=70
+        -Dartifactory.async.corePoolSize=200
+        -Dartifactory.async.poolMaxQueueSize=100000
+        -Dartifactory.http.client.max.total.connections=150
+        -Dartifactory.http.client.max.connections.per.route=150
+        -Dartifactory.access.client.max.connections=200
+        -Dartifactory.metadata.event.operator.threads=5
+        -XX:MaxMetaspaceSize=512m
+        -Djdk.nio.maxCachedBufferSize=1048576
+        -XX:MaxDirectMemorySize=1024m
+
+  tomcat:
+    connector:
+      maxThreads: 800
+      extraConfig: 'acceptCount="1200" acceptorThreadCount="2" compression="off" connectionLinger="-1" connectionTimeout="120000" enableLookups="false"'
+
+  database:
+    maxOpenConnections: 200
+
+  extraEnvironmentVariables:
+    - name: MALLOC_ARENA_MAX
+      value: "16"
+    - name: SKIP_WAIT_FOR_EXTERNAL_DB
+      value: "true"
+
+router:
+  resources:
+    requests:
+      cpu: "2"
+      memory: 2Gi
+    limits:
+      # cpu: "12"
+      memory: 4Gi
+
+frontend:
+  resources:
+    requests:
+      cpu: "1"
+      memory: 500Mi
+    limits:
+      # cpu: "5"
+      memory: 1Gi
+
+metadata:
+  database:
+    maxOpenConnections: 200
+  resources:
+    requests:
+      cpu: "1"
+      memory: 500Mi
+    limits:
+      # cpu: "5"
+      memory: 2Gi
+
+onemodel:
+  resources:
+    requests:
+      cpu: 225m
+      memory: 180Mi
+    limits:
+      # cpu: "1"
+      memory: 250Mi
+
+event:
+  resources:
+    requests:
+      cpu: 200m
+      memory: 100Mi
+    limits:
+      # cpu: "1"
+      memory: 500Mi
+
+access:
+  tomcat:
+    connector:
+      maxThreads: 200
+  javaOpts:
+    other: >
+      -XX:InitialRAMPercentage=20
+      -XX:MaxRAMPercentage=60
+  database:
+    maxOpenConnections: 200
+  resources:
+    requests:
+      cpu: 1
+      memory: 2Gi
+    limits:
+      # cpu: 2
+      memory: 4Gi
+  extraEnvironmentVariables:
+    - name: MALLOC_ARENA_MAX
+      value: "16"
+    - name: SKIP_WAIT_FOR_EXTERNAL_DB
+      value: "true"
+
+observability:
+  resources:
+    requests:
+      cpu: 200m
+      memory: 100Mi
+    limits:
+      # cpu: "1"
+      memory: 500Mi
+
+jfconnect:
+  resources:
+    requests:
+      cpu: 100m
+      memory: 100Mi
+    limits:
+      # cpu: "1"
+      memory: 250Mi
+
+topology:
+  resources:
+    requests:
+      cpu: 100m
+      memory: 1000Mi
+    limits:
+      memory: 1500Mi
+  extraEnvironmentVariables:
+    - name: MALLOC_ARENA_MAX
+      value: "8"
+
+nginx:
+  replicaCount: 3
+  disableProxyBuffering: true
+  resources:
+    requests:
+      cpu: "4"
+      memory: "6Gi"
+    limits:
+      # cpu: "14"
+      memory: "8Gi"
+
+postgresql:
+  postgresqlExtendedConf:
+    maxConnections: "5000"
+  primary:
+    affinity:
+      # Require PostgreSQL pod to run on a different node than Artifactory pods
+      podAntiAffinity:
+        requiredDuringSchedulingIgnoredDuringExecution:
+          - labelSelector:
+              matchExpressions:
+                - key: app
+                  operator: In
+                  values:
+                    - artifactory
+            topologyKey: kubernetes.io/hostname
+  resources:
+    requests:
+      memory: 256Gi
+      cpu: "64"
+    limits:
+      memory: 256Gi
+      # cpu: "128"
diff --git a/charts/jfrog/artifactory-ha/107.104.10/sizing/artifactory-large.yaml b/charts/jfrog/artifactory-ha/107.104.10/sizing/artifactory-large.yaml
new file mode 100644
index 0000000000..e614248541
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/sizing/artifactory-large.yaml
@@ -0,0 +1,185 @@
+##############################################################################################
+# The large sizing
+# This size is intended for large organizations. It can be increased with adding replicas or moving to the large sizing
+# [WARNING] Some of the configuration mentioned in this file are taken inside system.yaml
+# hence this configuration will be overridden when enabling systemYamlOverride
+##############################################################################################
+splitServicesToContainers: true
+artifactory:
+  primary:
+    # Enterprise and above licenses are required for setting replicaCount greater than 1.
+    # Count should be equal or above the total number of licenses available for artifactory.
+    replicaCount: 3
+
+    # Require multiple Artifactory pods to run on separate nodes
+    podAntiAffinity:
+      type: "hard"
+
+    resources:
+      requests:
+        cpu: "2"
+        memory: 10Gi
+      limits:
+        # cpu: "14"
+        memory: 12Gi
+
+    javaOpts:
+      other: >
+        -XX:InitialRAMPercentage=40
+        -XX:MaxRAMPercentage=65
+        -Dartifactory.async.corePoolSize=80
+        -Dartifactory.async.poolMaxQueueSize=20000
+        -Dartifactory.http.client.max.total.connections=100
+        -Dartifactory.http.client.max.connections.per.route=100
+        -Dartifactory.access.client.max.connections=125
+        -Dartifactory.metadata.event.operator.threads=4
+        -XX:MaxMetaspaceSize=512m
+        -Djdk.nio.maxCachedBufferSize=524288
+        -XX:MaxDirectMemorySize=512m
+
+  tomcat:
+    connector:
+      maxThreads: 500
+      extraConfig: 'acceptCount="800" acceptorThreadCount="2" compression="off" connectionLinger="-1" connectionTimeout="120000" enableLookups="false"'
+
+  database:
+    maxOpenConnections: 100
+
+  extraEnvironmentVariables:
+    - name: MALLOC_ARENA_MAX
+      value: "8"
+    - name: SKIP_WAIT_FOR_EXTERNAL_DB
+      value: "true"
+
+access:
+  tomcat:
+    connector:
+      maxThreads: 125
+  javaOpts:
+    other: >
+      -XX:InitialRAMPercentage=20
+      -XX:MaxRAMPercentage=60
+  database:
+    maxOpenConnections: 100
+  resources:
+    requests:
+      cpu: 1
+      memory: 2Gi
+    limits:
+      # cpu: 2
+      memory: 3Gi
+  extraEnvironmentVariables:
+    - name: MALLOC_ARENA_MAX
+      value: "8"
+    - name: SKIP_WAIT_FOR_EXTERNAL_DB
+      value: "true"
+
+router:
+  resources:
+    requests:
+      cpu: 400m
+      memory: 800Mi
+    limits:
+      # cpu: "8"
+      memory: 2Gi
+
+frontend:
+  resources:
+    requests:
+      cpu: 200m
+      memory: 300Mi
+    limits:
+      # cpu: "3"
+      memory: 1Gi
+
+metadata:
+  database:
+    maxOpenConnections: 100
+  resources:
+    requests:
+      cpu: 200m
+      memory: 200Mi
+    limits:
+      # cpu: "4"
+      memory: 1Gi
+
+onemodel:
+  resources:
+    requests:
+      cpu: 200m
+      memory: 160Mi
+    limits:
+      # cpu: "1"
+      memory: 250Mi
+
+event:
+  resources:
+    requests:
+      cpu: 100m
+      memory: 50Mi
+    limits:
+      # cpu: 500m
+      memory: 250Mi
+
+observability:
+  resources:
+    requests:
+      cpu: 100m
+      memory: 50Mi
+    limits:
+      # cpu: 500m
+      memory: 250Mi
+
+jfconnect:
+  resources:
+    requests:
+      cpu: 50m
+      memory: 100Mi
+    limits:
+      # cpu: 500m
+      memory: 250Mi
+
+topology:
+  resources:
+    requests:
+      cpu: 100m
+      memory: 1000Mi
+    limits:
+      memory: 1500Mi
+  extraEnvironmentVariables:
+    - name: MALLOC_ARENA_MAX
+      value: "8"
+
+nginx:
+  replicaCount: 2
+  disableProxyBuffering: true
+  resources:
+    requests:
+      cpu: "1"
+      memory: "500Mi"
+    limits:
+      # cpu: "4"
+      memory: "1Gi"
+
+postgresql:
+  postgresqlExtendedConf:
+    maxConnections: "600"
+  primary:
+    affinity:
+      # Require PostgreSQL pod to run on a different node than Artifactory pods
+      podAntiAffinity:
+        requiredDuringSchedulingIgnoredDuringExecution:
+          - labelSelector:
+              matchExpressions:
+                - key: app
+                  operator: In
+                  values:
+                    - artifactory
+            topologyKey: kubernetes.io/hostname
+  resources:
+    requests:
+      memory: 64Gi
+      cpu: "16"
+    limits:
+      memory: 64Gi
+      # cpu: "32"
diff --git a/charts/jfrog/artifactory-ha/107.104.10/sizing/artifactory-medium.yaml b/charts/jfrog/artifactory-ha/107.104.10/sizing/artifactory-medium.yaml
new file mode 100644
index 0000000000..2ace23f00d
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/sizing/artifactory-medium.yaml
@@ -0,0 +1,185 @@
+####################################################################################
+# The medium sizing
+# This size is just 2 replicas of the small size. Vertical sizing of all services is not changed
+# [WARNING] Some of the configuration mentioned in this file are taken inside system.yaml
+# hence this configuration will be overridden when enabling systemYamlOverride
+####################################################################################
+splitServicesToContainers: true
+artifactory:
+  primary:
+    # Enterprise and above licenses are required for setting replicaCount greater than 1.
+    # Count should be equal or above the total number of licenses available for artifactory.
+    replicaCount: 2
+
+    # Require multiple Artifactory pods to run on separate nodes
+    podAntiAffinity:
+      type: "hard"
+
+    resources:
+      requests:
+        cpu: "1"
+        memory: 4Gi
+      limits:
+        # cpu: "10"
+        memory: 5Gi
+
+    javaOpts:
+      other: >
+        -XX:InitialRAMPercentage=40
+        -XX:MaxRAMPercentage=70
+        -Dartifactory.async.corePoolSize=40
+        -Dartifactory.async.poolMaxQueueSize=10000
+        -Dartifactory.http.client.max.total.connections=50
+        -Dartifactory.http.client.max.connections.per.route=50
+        -Dartifactory.access.client.max.connections=75
+        -Dartifactory.metadata.event.operator.threads=3
+        -XX:MaxMetaspaceSize=512m
+        -Djdk.nio.maxCachedBufferSize=262144
+        -XX:MaxDirectMemorySize=256m
+
+  tomcat:
+    connector:
+      maxThreads: 300
+      extraConfig: 'acceptCount="600" acceptorThreadCount="2" compression="off" connectionLinger="-1" connectionTimeout="120000" enableLookups="false"'
+
+  database:
+    maxOpenConnections: 50
+
+  extraEnvironmentVariables:
+    - name: MALLOC_ARENA_MAX
+      value: "2"
+    - name: SKIP_WAIT_FOR_EXTERNAL_DB
+      value: "true"
+
+router:
+  resources:
+    requests:
+      cpu: 200m
+      memory: 500Mi
+    limits:
+      # cpu: "2"
+      memory: 1Gi
+
+frontend:
+  resources:
+    requests:
+      cpu: 100m
+      memory: 150Mi
+    limits:
+      # cpu: "2"
+      memory: 250Mi
+
+metadata:
+  database:
+    maxOpenConnections: 50
+  resources:
+    requests:
+      cpu: 100m
+      memory: 200Mi
+    limits:
+      # cpu: "2"
+      memory: 1Gi
+
+onemodel:
+  resources:
+    requests:
+      cpu: 175m
+      memory: 140Mi
+    limits:
+      # cpu: "2"
+      memory: 1Gi
+
+event:
+  resources:
+    requests:
+      cpu: 100m
+      memory: 50Mi
+    limits:
+      # cpu: 500m
+      memory: 250Mi
+
+access:
+  tomcat:
+    connector:
+      maxThreads: 75
+  javaOpts:
+    other: >
+      -XX:InitialRAMPercentage=20
+      -XX:MaxRAMPercentage=60
+  database:
+    maxOpenConnections: 50
+  resources:
+    requests:
+      cpu: 1
+      memory: 1.5Gi
+    limits:
+      # cpu: 1.5
+      memory: 2Gi
+  extraEnvironmentVariables:
+    - name: MALLOC_ARENA_MAX
+      value: "2"
+    - name: SKIP_WAIT_FOR_EXTERNAL_DB
+      value: "true"
+
+observability:
+  resources:
+    requests:
+      cpu: 100m
+      memory: 50Mi
+    limits:
+      # cpu: 500m
+      memory: 250Mi
+
+jfconnect:
+  resources:
+    requests:
+      cpu: 50m
+      memory: 50Mi
+    limits:
+      # cpu: 500m
+      memory: 250Mi
+
+topology:
+  resources:
+    requests:
+      cpu: 100m
+      memory: 600Mi
+    limits:
+      memory: 900Mi
+  extraEnvironmentVariables:
+    - name: MALLOC_ARENA_MAX
+      value: "2"
+
+nginx:
+  replicaCount: 2
+  disableProxyBuffering: true
+  resources:
+    requests:
+      cpu: "100m"
+      memory: "100Mi"
+    limits:
+      # cpu: "2"
+      memory: "500Mi"
+
+postgresql:
+  postgresqlExtendedConf:
+    maxConnections: "200"
+  primary:
+    affinity:
+      # Require PostgreSQL pod to run on a different node than Artifactory pods
+      podAntiAffinity:
+        requiredDuringSchedulingIgnoredDuringExecution:
+          - labelSelector:
+              matchExpressions:
+                - key: app
+                  operator: In
+                  values:
+                    - artifactory
+            topologyKey: kubernetes.io/hostname
+  resources:
+    requests:
+      memory: 32Gi
+      cpu: "8"
+    limits:
+      memory: 32Gi
+      # cpu: "16"
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-ha/107.104.10/sizing/artifactory-small.yaml b/charts/jfrog/artifactory-ha/107.104.10/sizing/artifactory-small.yaml
new file mode 100644
index 0000000000..2900cb0801
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/sizing/artifactory-small.yaml
@@ -0,0 +1,184 @@
+##############################################################################################
+# The small sizing
+# This is the size recommended for running Artifactory for small teams
+# [WARNING] Some of the configuration mentioned in this file are taken inside system.yaml
+# hence this configuration will be overridden when enabling systemYamlOverride
+##############################################################################################
+splitServicesToContainers: true
+artifactory:
+  primary:
+    # Enterprise and above licenses are required for setting replicaCount greater than 1.
+    # Count should be equal or above the total number of licenses available for artifactory.
+    replicaCount: 1
+
+    # Require multiple Artifactory pods to run on separate nodes
+    podAntiAffinity:
+      type: "hard"
+
+    resources:
+      requests:
+        cpu: "1"
+        memory: 4Gi
+      limits:
+        # cpu: "10"
+        memory: 5Gi
+
+    javaOpts:
+      other: >
+        -XX:InitialRAMPercentage=40
+        -XX:MaxRAMPercentage=70
+        -Dartifactory.async.corePoolSize=40
+        -Dartifactory.async.poolMaxQueueSize=10000
+        -Dartifactory.http.client.max.total.connections=50
+        -Dartifactory.http.client.max.connections.per.route=50
+        -Dartifactory.access.client.max.connections=75
+        -Dartifactory.metadata.event.operator.threads=3
+        -XX:MaxMetaspaceSize=512m
+        -Djdk.nio.maxCachedBufferSize=262144
+        -XX:MaxDirectMemorySize=256m
+  tomcat:
+    connector:
+      maxThreads: 300
+      extraConfig: 'acceptCount="600" acceptorThreadCount="2" compression="off" connectionLinger="-1" connectionTimeout="120000" enableLookups="false"'
+
+  database:
+    maxOpenConnections: 50
+
+  extraEnvironmentVariables:
+    - name: MALLOC_ARENA_MAX
+      value: "2"
+    - name: SKIP_WAIT_FOR_EXTERNAL_DB
+      value: "true"
+
+router:
+  resources:
+    requests:
+      cpu: 200m
+      memory: 500Mi
+    limits:
+      # cpu: "2"
+      memory: 1Gi
+
+access:
+  tomcat:
+    connector:
+      maxThreads: 75
+  javaOpts:
+    other: >
+      -XX:InitialRAMPercentage=20
+      -XX:MaxRAMPercentage=60
+  database:
+    maxOpenConnections: 50
+  resources:
+    requests:
+      cpu: 500m
+      memory: 1.5Gi
+    limits:
+      # cpu: 1
+      memory: 2Gi
+  extraEnvironmentVariables:
+    - name: MALLOC_ARENA_MAX
+      value: "2"
+    - name: SKIP_WAIT_FOR_EXTERNAL_DB
+      value: "true"
+
+frontend:
+  resources:
+    requests:
+      cpu: 100m
+      memory: 150Mi
+    limits:
+      # cpu: "2"
+      memory: 250Mi
+
+metadata:
+  database:
+    maxOpenConnections: 50
+  resources:
+    requests:
+      cpu: 100m
+      memory: 200Mi
+    limits:
+      # cpu: "2"
+      memory: 1Gi
+
+onemodel:
+  resources:
+    requests:
+      cpu: 125m
+      memory: 120Mi
+    limits:
+      # cpu: "2"
+      memory: 1Gi
+
+event:
+  resources:
+    requests:
+      cpu: 100m
+      memory: 50Mi
+    limits:
+      # cpu: 500m
+      memory: 250Mi
+
+observability:
+  resources:
+    requests:
+      cpu: 100m
+      memory: 50Mi
+    limits:
+      # cpu: 500m
+      memory: 250Mi
+
+jfconnect:
+  resources:
+    requests:
+      cpu: 50m
+      memory: 50Mi
+    limits:
+      # cpu: 500m
+      memory: 250Mi
+
+topology:
+  resources:
+    requests:
+      cpu: 50m
+      memory: 600Mi
+    limits:
+      memory: 900Mi
+  extraEnvironmentVariables:
+    - name: MALLOC_ARENA_MAX
+      value: "2"
+
+nginx:
+  replicaCount: 1
+  disableProxyBuffering: true
+  resources:
+    requests:
+      cpu: "100m"
+      memory: "100Mi"
+    limits:
+      # cpu: "2"
+      memory: "500Mi"
+
+postgresql:
+  postgresqlExtendedConf:
+    maxConnections: "100"
+  primary:
+    affinity:
+      # Require PostgreSQL pod to run on a different node than Artifactory pods
+      podAntiAffinity:
+        requiredDuringSchedulingIgnoredDuringExecution:
+          - labelSelector:
+              matchExpressions:
+                - key: app
+                  operator: In
+                  values:
+                    - artifactory
+            topologyKey: kubernetes.io/hostname
+  resources:
+    requests:
+      memory: 16Gi
+      cpu: "4"
+    limits:
+      memory: 16Gi
+      # cpu: "10"
diff --git a/charts/jfrog/artifactory-ha/107.104.10/sizing/artifactory-xlarge.yaml b/charts/jfrog/artifactory-ha/107.104.10/sizing/artifactory-xlarge.yaml
new file mode 100644
index 0000000000..140a3903e7
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/sizing/artifactory-xlarge.yaml
@@ -0,0 +1,184 @@
+##############################################################################################
+# The xlarge sizing
+# This size is intended for very large organizations. It can be increased with adding replicas
+# [WARNING] Some of the configuration mentioned in this file are taken inside system.yaml
+# hence this configuration will be overridden when enabling systemYamlOverride
+##############################################################################################
+splitServicesToContainers: true
+artifactory:
+  primary:
+    # Enterprise and above licenses are required for setting replicaCount greater than 1.
+    # Count should be equal or above the total number of licenses available for artifactory.
+    replicaCount: 4
+
+    podAntiAffinity:
+      type: "hard"
+
+    resources:
+      requests:
+        cpu: "2"
+        memory: 14Gi
+      limits:
+        # cpu: "14"
+        memory: 16Gi
+
+    javaOpts:
+      other: >
+        -XX:InitialRAMPercentage=40
+        -XX:MaxRAMPercentage=65
+        -Dartifactory.async.corePoolSize=160
+        -Dartifactory.async.poolMaxQueueSize=50000
+        -Dartifactory.http.client.max.total.connections=150
+        -Dartifactory.http.client.max.connections.per.route=150
+        -Dartifactory.access.client.max.connections=150
+        -Dartifactory.metadata.event.operator.threads=5
+        -XX:MaxMetaspaceSize=512m
+        -Djdk.nio.maxCachedBufferSize=1048576
+        -XX:MaxDirectMemorySize=1024m
+  tomcat:
+    connector:
+      maxThreads: 600
+      extraConfig: 'acceptCount="1200" acceptorThreadCount="2" compression="off" connectionLinger="-1" connectionTimeout="120000" enableLookups="false"'
+
+  database:
+    maxOpenConnections: 150
+    # Require multiple Artifactory pods to run on separate nodes
+
+  extraEnvironmentVariables:
+    - name: MALLOC_ARENA_MAX
+      value: "16"
+    - name: SKIP_WAIT_FOR_EXTERNAL_DB
+      value: "true"
+
+access:
+  tomcat:
+    connector:
+      maxThreads: 150
+  javaOpts:
+    other: >
+      -XX:InitialRAMPercentage=20
+      -XX:MaxRAMPercentage=60
+  database:
+    maxOpenConnections: 150
+  resources:
+    requests:
+      cpu: 1
+      memory: 2Gi
+    limits:
+      # cpu: 2
+      memory: 4Gi
+  extraEnvironmentVariables:
+    - name: MALLOC_ARENA_MAX
+      value: "16"
+    - name: SKIP_WAIT_FOR_EXTERNAL_DB
+      value: "true"
+
+router:
+  resources:
+    requests:
+      cpu: 400m
+      memory: 1Gi
+    limits:
+      # cpu: "8"
+      memory: 2Gi
+
+frontend:
+  resources:
+    requests:
+      cpu: 200m
+      memory: 300Mi
+    limits:
+      # cpu: "3"
+      memory: 1Gi
+
+metadata:
+  database:
+    maxOpenConnections: 150
+  resources:
+    requests:
+      cpu: 200m
+      memory: 200Mi
+    limits:
+      # cpu: "4"
+      memory: 1Gi
+
+onemodel:
+  resources:
+    requests:
+      cpu: 250m
+      memory: 200Mi
+    limits:
+      # cpu: "4"
+      memory: 1Gi
+
+event:
+  resources:
+    requests:
+      cpu: 100m
+      memory: 50Mi
+    limits:
+      # cpu: 500m
+      memory: 250Mi
+
+observability:
+  resources:
+    requests:
+      cpu: 100m
+      memory: 50Mi
+    limits:
+      # cpu: 500m
+      memory: 250Mi
+
+jfconnect:
+  resources:
+    requests:
+      cpu: 50m
+      memory: 100Mi
+    limits:
+      # cpu: 500m
+      memory: 250Mi
+
+topology:
+  resources:
+    requests:
+      cpu: 100m
+      memory: 1000Mi
+    limits:
+      memory: 1500Mi
+  extraEnvironmentVariables:
+    - name: MALLOC_ARENA_MAX
+      value: "8"
+
+nginx:
+  replicaCount: 2
+  disableProxyBuffering: true
+  resources:
+    requests:
+      cpu: "4"
+      memory: "4Gi"
+    limits:
+      # cpu: "12"
+      memory: "8Gi"
+
+postgresql:
+  postgresqlExtendedConf:
+    maxConnections: "2000"
+  primary:
+    affinity:
+      # Require PostgreSQL pod to run on a different node than Artifactory pods
+      podAntiAffinity:
+        requiredDuringSchedulingIgnoredDuringExecution:
+          - labelSelector:
+              matchExpressions:
+                - key: app
+                  operator: In
+                  values:
+                    - artifactory
+            topologyKey: kubernetes.io/hostname
+  resources:
+    requests:
+      memory: 128Gi
+      cpu: "32"
+    limits:
+      memory: 128Gi
+      # cpu: "64"
diff --git a/charts/jfrog/artifactory-ha/107.104.10/sizing/artifactory-xsmall.yaml b/charts/jfrog/artifactory-ha/107.104.10/sizing/artifactory-xsmall.yaml
new file mode 100644
index 0000000000..f10e78b5df
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/sizing/artifactory-xsmall.yaml
@@ -0,0 +1,186 @@
+##############################################################################################
+
+# The xsmall sizing
+# This is the minimum size recommended for running Artifactory
+# [WARNING] Some of the configuration mentioned in this file are taken inside system.yaml
+# hence this configuration will be overridden when enabling systemYamlOverride
+##############################################################################################
+splitServicesToContainers: true
+artifactory:
+  primary:
+    # Enterprise and above licenses are required for setting replicaCount greater than 1.
+    # Count should be equal or above the total number of licenses available for artifactory.
+    replicaCount: 1
+
+    # Require multiple Artifactory pods to run on separate nodes
+    podAntiAffinity:
+      type: "hard"
+
+    resources:
+      requests:
+        cpu: "1"
+        memory: 3Gi
+      limits:
+        # cpu: "10"
+        memory: 4Gi
+
+    javaOpts:
+      other: >
+        -XX:InitialRAMPercentage=40
+        -XX:MaxRAMPercentage=70
+        -Dartifactory.async.corePoolSize=10
+        -Dartifactory.async.poolMaxQueueSize=2000
+        -Dartifactory.http.client.max.total.connections=20
+        -Dartifactory.http.client.max.connections.per.route=20
+        -Dartifactory.access.client.max.connections=15
+        -Dartifactory.metadata.event.operator.threads=2
+        -XX:MaxMetaspaceSize=400m
+        -XX:CompressedClassSpaceSize=96m
+        -Djdk.nio.maxCachedBufferSize=131072
+        -XX:MaxDirectMemorySize=128m
+  tomcat:
+    connector:
+      maxThreads: 50
+      extraConfig: 'acceptCount="200" acceptorThreadCount="2" compression="off" connectionLinger="-1" connectionTimeout="120000" enableLookups="false"'
+
+  database:
+    maxOpenConnections: 15
+
+  extraEnvironmentVariables:
+    - name: MALLOC_ARENA_MAX
+      value: "2"
+    - name: SKIP_WAIT_FOR_EXTERNAL_DB
+      value: "true"
+
+access:
+  tomcat:
+    connector:
+      maxThreads: 15
+  javaOpts:
+    other: >
+      -XX:InitialRAMPercentage=20
+      -XX:MaxRAMPercentage=60
+  database:
+    maxOpenConnections: 15
+  resources:
+    requests:
+      cpu: 500m
+      memory: 1.5Gi
+    limits:
+      # cpu: 1
+      memory: 2Gi
+  extraEnvironmentVariables:
+    - name: MALLOC_ARENA_MAX
+      value: "2"
+    - name: SKIP_WAIT_FOR_EXTERNAL_DB
+      value: "true"
+
+router:
+  resources:
+    requests:
+      cpu: 100m
+      memory: 200Mi
+    limits:
+      # cpu: "2"
+      memory: 1Gi
+
+frontend:
+  resources:
+    requests:
+      cpu: 50m
+      memory: 150Mi
+    limits:
+      # cpu: "2"
+      memory: 250Mi
+
+metadata:
+  database:
+    maxOpenConnections: 15
+  resources:
+    requests:
+      cpu: 50m
+      memory: 100Mi
+    limits:
+      # cpu: "2"
+      memory: 1Gi
+
+onemodel:
+  resources:
+    requests:
+      cpu: 125m
+      memory: 100Mi
+    limits:
+      # cpu: "2"
+      memory: 500Mi
+
+event:
+  resources:
+    requests:
+      cpu: 50m
+      memory: 50Mi
+    limits:
+      # cpu: 500m
+      memory: 250Mi
+
+observability:
+  resources:
+    requests:
+      cpu: 50m
+      memory: 50Mi
+    limits:
+      # cpu: 500m
+      memory: 250Mi
+
+jfconnect:
+  resources:
+    requests:
+      cpu: 50m
+      memory: 50Mi
+    limits:
+      # cpu: 500m
+      memory: 250Mi
+
+topology:
+  resources:
+    requests:
+      cpu: 50m
+      memory: 500Mi
+    limits:
+      memory: 800Mi
+  extraEnvironmentVariables:
+    - name: MALLOC_ARENA_MAX
+      value: "2"
+
+nginx:
+  replicaCount: 1
+  disableProxyBuffering: true
+  resources:
+    requests:
+      cpu: "50m"
+      memory: "50Mi"
+    limits:
+      # cpu: "1"
+      memory: "250Mi"
+
+postgresql:
+  postgresqlExtendedConf:
+    maxConnections: "50"
+  primary:
+    affinity:
+      # Require PostgreSQL pod to run on a different node than Artifactory pods
+      podAntiAffinity:
+        requiredDuringSchedulingIgnoredDuringExecution:
+          - labelSelector:
+              matchExpressions:
+                - key: app
+                  operator: In
+                  values:
+                    - artifactory
+            topologyKey: kubernetes.io/hostname
+  resources:
+    requests:
+      memory: 8Gi
+      cpu: "2"
+    limits:
+      memory: 8Gi
+      # cpu: "8"
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/NOTES.txt b/charts/jfrog/artifactory-ha/107.104.10/templates/NOTES.txt
new file mode 100644
index 0000000000..30dfab8b8a
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/NOTES.txt
@@ -0,0 +1,149 @@
+Congratulations. You have just deployed JFrog Artifactory HA!
+
+{{- if .Values.artifactory.masterKey }}
+{{- if and (not .Values.artifactory.masterKeySecretName) (eq .Values.artifactory.masterKey "FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF") }}
+
+
+***************************************** WARNING ******************************************
+* Your Artifactory master key is still set to the provided example:                        *
+* artifactory.masterKey=FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF   *
+*                                                                                          *
+* You should change this to your own generated key:                                        *
+* $ export MASTER_KEY=$(openssl rand -hex 32)                                              *
+* $ echo ${MASTER_KEY}                                                                     *
+*                                                                                          *
+* Pass the created master key to helm with '--set artifactory.masterKey=${MASTER_KEY}'     *
+*                                                                                          *
+* Alternatively, you can use a pre-existing secret with a key called master-key with       *
+* '--set artifactory.masterKeySecretName=${SECRET_NAME}'                                   *
+********************************************************************************************
+{{- end }}
+{{- end }}
+
+{{- if .Values.artifactory.joinKey }}
+{{- if eq .Values.artifactory.joinKey "EEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEE" }}
+
+
+***************************************** WARNING ******************************************
+* Your Artifactory join key is still set to the provided example:                          *
+* artifactory.joinKey=EEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEE                                     *
+*                                                                                          *
+* You should change this to your own generated key:                                        *
+* $ export JOIN_KEY=$(openssl rand -hex 32)                                                *
+* $ echo ${JOIN_KEY}                                                                       *
+*                                                                                          *
+* Pass the created master key to helm with '--set artifactory.joinKey=${JOIN_KEY}'         *
+*                                                                                          *
+********************************************************************************************
+{{- end }}
+{{- end }}
+
+
+{{- if .Values.artifactory.setSecurityContext }}
+****************************************** WARNING **********************************************
+* From chart version 107.84.x, `setSecurityContext` has been renamed to `podSecurityContext`,   *
+  please change your values.yaml before upgrade , For more Info , refer to 107.84.x changelog   *
+*************************************************************************************************
+{{- end }}
+
+{{- if and (or (or (or (or (or ( or ( or ( or (or (or ( or (or .Values.artifactory.masterKeySecretName .Values.global.masterKeySecretName) .Values.systemYamlOverride.existingSecret) (or .Values.artifactory.customCertificates.enabled .Values.global.customCertificates.enabled)) .Values.aws.licenseConfigSecretName) .Values.artifactory.persistence.customBinarystoreXmlSecret) .Values.access.customCertificatesSecretName) .Values.systemYamlOverride.existingSecret) .Values.artifactory.license.secret) .Values.artifactory.userPluginSecrets) (and .Values.artifactory.admin.secret .Values.artifactory.admin.dataKey)) (and .Values.artifactory.persistence.googleStorage.gcpServiceAccount.enabled .Values.artifactory.persistence.googleStorage.gcpServiceAccount.customSecretName)) (or .Values.artifactory.joinKeySecretName .Values.global.joinKeySecretName)) .Values.artifactory.unifiedSecretInstallation }}
+****************************************** WARNING **************************************************************************************************
+* The unifiedSecretInstallation flag is currently enabled, which creates the unified secret. The existing secrets will continue as separate secrets.*
+* Update the values.yaml with the existing secrets to add them to the unified secret.                                                               *
+*****************************************************************************************************************************************************
+{{- end }}
+
+{{- if .Values.postgresql.enabled }}
+
+DATABASE:
+To extract the database password, run the following
+export DB_PASSWORD=$(kubectl get --namespace {{ .Release.Namespace }} $(kubectl get secret --namespace {{ .Release.Namespace }} -o name | grep postgresql) -o jsonpath="{.data.postgresql-password}" | base64 --decode)
+echo ${DB_PASSWORD}
+{{- end }}
+
+SETUP:
+1. Get the Artifactory IP and URL
+
+   {{- if contains "NodePort" .Values.nginx.service.type }}
+   export NODE_PORT=$(kubectl get --namespace {{ .Release.Namespace }} -o jsonpath="{.spec.ports[0].nodePort}" services {{ template "artifactory-ha.nginx.fullname" . }})
+   export NODE_IP=$(kubectl get nodes --namespace {{ .Release.Namespace }} -o jsonpath="{.items[0].status.addresses[0].address}")
+   echo http://$NODE_IP:$NODE_PORT/
+
+   {{- else if contains "LoadBalancer" .Values.nginx.service.type }}
+   NOTE: It may take a few minutes for the LoadBalancer public IP to be available!
+
+   You can watch the status of the service by running 'kubectl get svc -w {{ template "artifactory-ha.nginx.fullname" . }}'
+   export SERVICE_IP=$(kubectl get svc --namespace {{ .Release.Namespace }} {{ template "artifactory-ha.nginx.fullname" . }} -o jsonpath='{.status.loadBalancer.ingress[0].ip}')
+   echo http://$SERVICE_IP/
+
+   {{- else if contains "ClusterIP" .Values.nginx.service.type }}
+   export POD_NAME=$(kubectl get pods --namespace {{ .Release.Namespace }} -l "component={{ .Values.nginx.name }}" -o jsonpath="{.items[0].metadata.name}")
+   kubectl port-forward --namespace {{ .Release.Namespace }} $POD_NAME 8080:80
+   echo http://127.0.0.1:8080
+
+   {{- end }}
+
+2. Open Artifactory in your browser
+   Default credential for Artifactory:
+   user:     admin
+   password: password
+
+   {{- if .Values.artifactory.license.secret }}
+
+3. Artifactory license(s) is deployed as a Kubernetes secret. This method is relevant for initial deployment only!
+   Updating the license should be done via Artifactory UI or REST API. If you want to keep managing the artifactory license using the same method, you can use artifactory.copyOnEveryStartup in values.yaml.
+
+   {{- else }}
+
+3. Add HA licenses to activate Artifactory HA through the Artifactory UI
+   NOTE: Each Artifactory node requires a valid license. See https://www.jfrog.com/confluence/display/RTF/HA+Installation+and+Setup for more details.
+
+   {{- end }}
+
+{{ if or .Values.artifactory.primary.javaOpts.jmx.enabled .Values.artifactory.node.javaOpts.jmx.enabled }}
+JMX configuration:
+{{- if not (contains "LoadBalancer"  .Values.artifactory.service.type) }}
+If you want to access JMX from you computer with jconsole, you should set ".Values.artifactory.service.type=LoadBalancer" !!!
+{{ end }}
+
+1. Get the Artifactory service IP:
+{{- if .Values.artifactory.primary.javaOpts.jmx.enabled }}
+export PRIMARY_SERVICE_IP=$(kubectl get svc --namespace {{ .Release.Namespace }} {{ template "artifactory-ha.primary.name" . }} -o jsonpath='{.status.loadBalancer.ingress[0].ip}')
+{{- end }}
+{{- if .Values.artifactory.node.javaOpts.jmx.enabled }}
+export MEMBER_SERVICE_IP=$(kubectl get svc --namespace {{ .Release.Namespace }} {{ template "artifactory-ha.fullname" . }} -o jsonpath='{.status.loadBalancer.ingress[0].ip}')
+{{- end }}
+
+2. Map the service name to the service IP in /etc/hosts:
+{{- if .Values.artifactory.primary.javaOpts.jmx.enabled }}
+sudo sh -c "echo \"${PRIMARY_SERVICE_IP}    {{ template "artifactory-ha.primary.name" . }}\" >> /etc/hosts"
+{{- end }}
+{{- if .Values.artifactory.node.javaOpts.jmx.enabled }}
+sudo sh -c "echo \"${MEMBER_SERVICE_IP}    {{ template "artifactory-ha.fullname" . }}\" >> /etc/hosts"
+{{- end }}
+
+3. Launch jconsole:
+{{- if .Values.artifactory.primary.javaOpts.jmx.enabled }}
+jconsole {{ template "artifactory-ha.primary.name" . }}:{{ .Values.artifactory.primary.javaOpts.jmx.port }}
+{{- end }}
+{{- if .Values.artifactory.node.javaOpts.jmx.enabled }}
+jconsole {{ template "artifactory-ha.fullname" . }}:{{ .Values.artifactory.node.javaOpts.jmx.port }}
+{{- end }}
+{{- end }}
+
+
+{{- if ge (.Values.artifactory.node.replicaCount | int) 1 }}
+***************************************** WARNING *****************************************************************************
+* Currently member node(s) are enabled, will be deprecated in upcoming releases                                              *
+* It is recommended to upgrade from primary-members to primary-only.                                                          *
+* It can be done by deploying the chart ( >=107.59.x) with the new values. Also, please refer to changelog of 107.59.x chart  *
+* More Info: https://jfrog.com/help/r/jfrog-installation-setup-documentation/cloud-native-high-availability                   *
+*******************************************************************************************************************************
+{{- end }}
+
+{{- if and .Values.nginx.enabled .Values.ingress.hosts }}
+***************************************** WARNING *****************************************************************************
+* when nginx is enabled , .Values.ingress.hosts will be deprecated in upcoming releases                                              *
+* It is recommended to use nginx.hosts instead ingress.hosts 
+*******************************************************************************************************************************
+{{- end }}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/_helpers.tpl b/charts/jfrog/artifactory-ha/107.104.10/templates/_helpers.tpl
new file mode 100644
index 0000000000..1e31d20a6d
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/_helpers.tpl
@@ -0,0 +1,682 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Expand the name of the chart.
+*/}}
+{{- define "artifactory-ha.name" -}}
+{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+The primary node name
+*/}}
+{{- define "artifactory-ha.primary.name" -}}
+{{- if .Values.nameOverride -}}
+{{- printf "%s-primary" .Values.nameOverride | trunc 63 | trimSuffix "-" -}}
+{{- else -}}
+{{- $name := .Release.Name | trunc 29 -}}
+{{- printf "%s-%s-primary" $name .Chart.Name | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+The member node name
+*/}}
+{{- define "artifactory-ha.node.name" -}}
+{{- if .Values.nameOverride -}}
+{{- printf "%s-member" .Values.nameOverride | trunc 63 | trimSuffix "-" -}}
+{{- else -}}
+{{- $name := .Release.Name | trunc 29 -}}
+{{- printf "%s-%s-member" $name .Chart.Name | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Expand the name nginx service.
+*/}}
+{{- define "artifactory-ha.nginx.name" -}}
+{{- default .Values.nginx.name .Values.nameOverride | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Create a default fully qualified app name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+If release name contains chart name it will be used as a full name.
+*/}}
+{{- define "artifactory-ha.fullname" -}}
+{{- if .Values.fullnameOverride -}}
+{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" -}}
+{{- else -}}
+{{- $name := default .Chart.Name .Values.nameOverride -}}
+{{- if contains $name .Release.Name -}}
+{{- .Release.Name | trunc 63 | trimSuffix "-" -}}
+{{- else -}}
+{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Create a default fully qualified app name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+If release name contains chart name it will be used as a full name.
+*/}}
+{{- define "artifactory-ha.nginx.fullname" -}}
+{{- if .Values.nginx.fullnameOverride -}}
+{{- .Values.nginx.fullnameOverride | trunc 63 | trimSuffix "-" -}}
+{{- else -}}
+{{- $name := default .Chart.Name .Values.nginx.name -}}
+{{- if contains $name .Release.Name -}}
+{{- .Release.Name | trunc 63 | trimSuffix "-" -}}
+{{- else -}}
+{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Create the name of the service account to use
+*/}}
+{{- define "artifactory-ha.serviceAccountName" -}}
+{{- if .Values.serviceAccount.create -}}
+{{ default (include "artifactory-ha.fullname" .) .Values.serviceAccount.name }}
+{{- else -}}
+{{ default "default" .Values.serviceAccount.name }}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Create chart name and version as used by the chart label.
+*/}}
+{{- define "artifactory-ha.chart" -}}
+{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Generate SSL certificates
+*/}}
+{{- define "artifactory-ha.gen-certs" -}}
+{{- $altNames := list ( printf "%s.%s" (include "artifactory-ha.fullname" .) .Release.Namespace ) ( printf "%s.%s.svc" (include "artifactory-ha.fullname" .) .Release.Namespace ) -}}
+{{- $ca := genCA "artifactory-ca" 365 -}}
+{{- $cert := genSignedCert ( include "artifactory-ha.fullname" . ) nil $altNames 365 $ca -}}
+tls.crt: {{ $cert.Cert | b64enc }}
+tls.key: {{ $cert.Key | b64enc }}
+{{- end -}}
+
+{{/*
+Scheme (http/https) based on Access or Router TLS enabled/disabled
+*/}}
+{{- define "artifactory-ha.scheme" -}}
+{{- if or .Values.access.accessConfig.security.tls .Values.router.tlsEnabled -}}
+{{- printf "%s" "https" -}}
+{{- else -}}
+{{- printf "%s" "http" -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve joinKey value
+*/}}
+{{- define "artifactory-ha.joinKey" -}}
+{{- if .Values.global.joinKey -}}
+{{- .Values.global.joinKey -}}
+{{- else if .Values.artifactory.joinKey -}}
+{{- .Values.artifactory.joinKey -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve jfConnectToken value
+*/}}
+{{- define "artifactory-ha.jfConnectToken" -}}
+{{- .Values.artifactory.jfConnectToken -}}
+{{- end -}}
+
+{{/*
+Resolve masterKey value
+*/}}
+{{- define "artifactory-ha.masterKey" -}}
+{{- if .Values.global.masterKey -}}
+{{- .Values.global.masterKey -}}
+{{- else if .Values.artifactory.masterKey -}}
+{{- .Values.artifactory.masterKey -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve joinKeySecretName value
+*/}}
+{{- define "artifactory-ha.joinKeySecretName" -}}
+{{- if .Values.global.joinKeySecretName -}}
+{{- .Values.global.joinKeySecretName -}}
+{{- else if .Values.artifactory.joinKeySecretName -}}
+{{- .Values.artifactory.joinKeySecretName -}}
+{{- else -}}
+{{ include "artifactory-ha.fullname" . }}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve jfConnectTokenSecretName value
+*/}}
+{{- define "artifactory-ha.jfConnectTokenSecretName" -}}
+{{- if .Values.artifactory.jfConnectTokenSecretName -}}
+{{- .Values.artifactory.jfConnectTokenSecretName -}}
+{{- else -}}
+{{ include "artifactory-ha.fullname" . }}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve masterKeySecretName value
+*/}}
+{{- define "artifactory-ha.masterKeySecretName" -}}
+{{- if .Values.global.masterKeySecretName -}}
+{{- .Values.global.masterKeySecretName -}}
+{{- else if .Values.artifactory.masterKeySecretName -}}
+{{- .Values.artifactory.masterKeySecretName -}}
+{{- else -}}
+{{ include "artifactory-ha.fullname" . }}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve imagePullSecrets value
+*/}}
+{{- define "artifactory-ha.imagePullSecrets" -}}
+{{- if .Values.global.imagePullSecrets }}
+imagePullSecrets:
+{{- range .Values.global.imagePullSecrets }}
+  - name: {{ . }}
+{{- end }}
+{{- else if .Values.imagePullSecrets }}
+imagePullSecrets:
+{{- range .Values.imagePullSecrets }}
+  - name: {{ . }}
+{{- end }}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve customInitContainersBegin value
+*/}}
+{{- define "artifactory-ha.customInitContainersBegin" -}}
+{{- if .Values.global.customInitContainersBegin -}}
+{{- .Values.global.customInitContainersBegin -}}
+{{- end -}}
+{{- if .Values.artifactory.customInitContainersBegin -}}
+{{- .Values.artifactory.customInitContainersBegin -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve customInitContainers value
+*/}}
+{{- define "artifactory-ha.customInitContainers" -}}
+{{- if .Values.global.customInitContainers -}}
+{{- .Values.global.customInitContainers -}}
+{{- end -}}
+{{- if .Values.artifactory.customInitContainers -}}
+{{- .Values.artifactory.customInitContainers -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve customVolumes value
+*/}}
+{{- define "artifactory-ha.customVolumes" -}}
+{{- if .Values.global.customVolumes -}}
+{{- .Values.global.customVolumes -}}
+{{- end -}}
+{{- if .Values.artifactory.customVolumes -}}
+{{- .Values.artifactory.customVolumes -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve unifiedCustomSecretVolumeName value
+*/}}
+{{- define "artifactory-ha.unifiedCustomSecretVolumeName" -}}
+{{- printf "%s-%s" (include "artifactory-ha.name" .) ("unified-secret-volume") | trunc 63 -}}
+{{- end -}}
+
+{{/*
+Check the Duplication of volume names for secrets. If unifiedSecretInstallation is enabled then the method is checking for volume names,
+if the volume exists in customVolume then an extra volume with the same name will not be getting added in unifiedSecretInstallation case.*/}}
+{{- define "artifactory-ha.checkDuplicateUnifiedCustomVolume" -}}
+{{- if or .Values.global.customVolumes .Values.artifactory.customVolumes -}}
+{{- $val := (tpl (include "artifactory-ha.customVolumes" .) .) | toJson -}}
+{{- contains (include "artifactory-ha.unifiedCustomSecretVolumeName" .) $val | toString -}}
+{{- else -}}
+{{- printf "%s" "false" -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve customVolumeMounts value
+*/}}
+{{- define "artifactory-ha.customVolumeMounts" -}}
+{{- if .Values.global.customVolumeMounts -}}
+{{- .Values.global.customVolumeMounts -}}
+{{- end -}}
+{{- if .Values.artifactory.customVolumeMounts -}}
+{{- .Values.artifactory.customVolumeMounts -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve customSidecarContainers value
+*/}}
+{{- define "artifactory-ha.customSidecarContainers" -}}
+{{- if .Values.global.customSidecarContainers -}}
+{{- .Values.global.customSidecarContainers -}}
+{{- end -}}
+{{- if .Values.artifactory.customSidecarContainers -}}
+{{- .Values.artifactory.customSidecarContainers -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return the proper artifactory chart image names
+*/}}
+{{- define "artifactory-ha.getImageInfoByValue" -}}
+{{- $dot := index . 0 }}
+{{- $indexReference := index . 1 }}
+{{- $registryName := index $dot.Values $indexReference "image" "registry" -}}
+{{- $repositoryName := index $dot.Values $indexReference "image" "repository" -}}
+{{- $tag := "" -}}
+{{- if and (eq $indexReference "artifactory") (hasKey $dot.Values "artifactoryService") }}
+    {{- if default false $dot.Values.artifactoryService.enabled }}
+        {{- $indexReference = "artifactoryService" -}}
+        {{- $tag = default $dot.Chart.Annotations.artifactoryServiceVersion (index $dot.Values $indexReference "image" "tag") | toString -}}
+        {{- $repositoryName = index $dot.Values $indexReference "image" "repository" -}}
+    {{- else -}}
+        {{- $tag = default $dot.Chart.AppVersion (index $dot.Values $indexReference "image" "tag") | toString -}}
+    {{- end -}}
+{{- else -}}
+    {{- $tag = default $dot.Chart.AppVersion (index $dot.Values $indexReference "image" "tag") | toString -}}
+{{- end -}}
+{{- if and (eq $indexReference "metadata") (hasKey $dot.Values.metadata "standaloneImageEnabled") }}
+    {{- if default false $dot.Values.metadata.standaloneImageEnabled }}
+        {{- $tag = default $dot.Chart.Annotations.metadataVersion (index $dot.Values $indexReference "image" "tag") | toString -}}
+    {{- end -}}
+{{- end -}}
+{{- if and (eq $indexReference "observability") (hasKey $dot.Values.observability "standaloneImageEnabled") }}
+    {{- if default false $dot.Values.observability.standaloneImageEnabled }}
+        {{- $tag = default $dot.Chart.Annotations.observabilityVersion (index $dot.Values $indexReference "image" "tag") | toString -}}
+    {{- end -}}
+{{- end -}}
+{{- if $dot.Values.global }}
+    {{- if and $dot.Values.splitServicesToContainers $dot.Values.global.versions.router (eq $indexReference "router") }}
+        {{- $tag = $dot.Values.global.versions.router | toString -}}
+    {{- end -}}
+    {{- if and $dot.Values.global.versions.initContainers (eq $indexReference "initContainers") }}
+        {{- $tag = $dot.Values.global.versions.initContainers | toString -}}
+    {{- end -}}
+    {{- if and $dot.Values.global.versions.rtfs (eq $indexReference "rtfs") }}
+    {{- $tag = $dot.Values.global.versions.rtfs | toString -}}
+    {{- end -}}
+    {{- if $dot.Values.global.versions.artifactory }}
+        {{- if or (eq $indexReference "artifactory") (eq $indexReference "metadata") (eq $indexReference "nginx") (eq $indexReference "observability") }}
+            {{- $tag = $dot.Values.global.versions.artifactory | toString -}}
+        {{- end -}}
+    {{- end -}}
+    {{- if $dot.Values.global.imageRegistry }}
+        {{- printf "%s/%s:%s" $dot.Values.global.imageRegistry $repositoryName $tag -}}
+    {{- else -}}
+        {{- printf "%s/%s:%s" $registryName $repositoryName $tag -}}
+    {{- end -}}
+{{- else -}}
+    {{- printf "%s/%s:%s" $registryName $repositoryName $tag -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return the proper artifactory app version
+*/}}
+{{- define "artifactory-ha.app.version" -}}
+{{- $tag := (splitList ":" ((include "artifactory-ha.getImageInfoByValue" (list . "artifactory" )))) | last | toString -}}
+{{- printf "%s" $tag -}}
+{{- end -}}
+
+{{/*
+Custom certificate copy command
+*/}}
+{{- define "artifactory-ha.copyCustomCerts" -}}
+echo "Copy custom certificates to {{ .Values.artifactory.persistence.mountPath }}/etc/security/keys/trusted";
+mkdir -p {{ .Values.artifactory.persistence.mountPath }}/etc/security/keys/trusted;
+for file in $(ls -1 /tmp/certs/* | grep -v .key | grep -v ":" | grep -v grep); do if [ -f "${file}" ]; then cp -v ${file} {{ .Values.artifactory.persistence.mountPath }}/etc/security/keys/trusted; fi done;
+if [ -f {{ .Values.artifactory.persistence.mountPath }}/etc/security/keys/trusted/tls.crt ]; then mv -v {{ .Values.artifactory.persistence.mountPath }}/etc/security/keys/trusted/tls.crt {{ .Values.artifactory.persistence.mountPath }}/etc/security/keys/trusted/ca.crt; fi;
+{{- end -}}
+
+{{/*
+Circle of trust certificates copy command
+*/}}
+{{- define "artifactory.copyCircleOfTrustCertsCerts" -}}
+echo "Copy circle of trust certificates to {{ .Values.artifactory.persistence.mountPath }}/etc/access/keys/trusted";
+mkdir -p {{ .Values.artifactory.persistence.mountPath }}/etc/access/keys/trusted;
+for file in $(ls -1 /tmp/circleoftrustcerts/* | grep -v .key | grep -v ":" | grep -v grep); do if [ -f "${file}" ]; then cp -v ${file} {{ .Values.artifactory.persistence.mountPath }}/etc/access/keys/trusted; fi done;
+{{- end -}}
+
+{{/*
+Resolve requiredServiceTypes value
+*/}}
+{{- define "artifactory-ha.router.requiredServiceTypes" -}}
+{{- $requiredTypes := "jfrt,jfac" -}}
+{{- if not .Values.access.enabled -}}
+  {{- $requiredTypes = "jfrt" -}}
+{{- end -}}
+{{- if .Values.observability.enabled -}}
+  {{- $requiredTypes = printf "%s,%s" $requiredTypes "jfob" -}}
+{{- end -}}
+{{- if .Values.metadata.enabled -}}
+  {{- $requiredTypes = printf "%s,%s" $requiredTypes "jfmd" -}}
+{{- end -}}
+{{- if .Values.event.enabled -}}
+  {{- $requiredTypes = printf "%s,%s" $requiredTypes "jfevt" -}}
+{{- end -}}
+{{- if .Values.frontend.enabled -}}
+  {{- $requiredTypes = printf "%s,%s" $requiredTypes "jffe" -}}
+{{- end -}}
+{{- if .Values.jfconnect.enabled -}}
+  {{- $requiredTypes = printf "%s,%s" $requiredTypes "jfcon" -}}
+{{- end -}}
+{{- if .Values.evidence.enabled -}}
+  {{- $requiredTypes = printf "%s,%s" $requiredTypes "jfevd" -}}
+{{- end -}}
+{{- if .Values.topology.enabled -}}
+  {{- $requiredTypes = printf "%s,%s" $requiredTypes "jftpl" -}}
+{{- end -}}
+{{- if .Values.mc.enabled -}}
+  {{- $requiredTypes = printf "%s,%s" $requiredTypes "jfmc" -}}
+{{- end -}}
+{{- if .Values.onemodel.enabled -}}
+  {{- $requiredTypes = printf "%s,%s" $requiredTypes "jfomr" -}}
+{{- end -}}
+{{- $requiredTypes -}}
+{{- end -}}
+
+{{/*
+nginx scheme (http/https)
+*/}}
+{{- define "nginx.scheme" -}}
+{{- if .Values.nginx.http.enabled -}}
+{{- printf "%s" "http" -}}
+{{- else -}}
+{{- printf "%s" "https" -}}
+{{- end -}}
+{{- end -}}
+
+
+{{/*
+nginx command
+*/}}
+{{- define "nginx.command" -}}
+{{- if .Values.nginx.customCommand }}
+{{  toYaml .Values.nginx.customCommand }}
+{{- end }}
+{{- end -}}
+
+{{/*
+nginx port (8080/8443) based on http/https enabled
+*/}}
+{{- define "nginx.port" -}}
+{{- if .Values.nginx.http.enabled -}}
+{{- .Values.nginx.http.internalPort -}}
+{{- else -}}
+{{- .Values.nginx.https.internalPort -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve customInitContainers value
+*/}}
+{{- define "artifactory.nginx.customInitContainers" -}}
+{{- if .Values.nginx.customInitContainers -}}
+{{- .Values.nginx.customInitContainers -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve customVolumes value
+*/}}
+{{- define "artifactory.nginx.customVolumes" -}}
+{{- if .Values.nginx.customVolumes -}}
+{{- .Values.nginx.customVolumes -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve customVolumeMounts nginx value
+*/}}
+{{- define "artifactory.nginx.customVolumeMounts" -}}
+{{- if .Values.nginx.customVolumeMounts -}}
+{{- .Values.nginx.customVolumeMounts -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve customSidecarContainers value
+*/}}
+{{- define "artifactory.nginx.customSidecarContainers" -}}
+{{- if .Values.nginx.customSidecarContainers -}}
+{{- .Values.nginx.customSidecarContainers -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve Artifactory pod primary node selector value
+*/}}
+{{- define "artifactory.nodeSelector" -}}
+nodeSelector:
+{{- if .Values.global.nodeSelector }}
+{{ toYaml .Values.global.nodeSelector | indent 2 }}
+{{- else if .Values.artifactory.primary.nodeSelector }}
+{{ toYaml .Values.artifactory.primary.nodeSelector | indent 2 }}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve Artifactory pod node nodeselector value
+*/}}
+{{- define "artifactory.node.nodeSelector" -}}
+nodeSelector:
+{{- if .Values.global.nodeSelector }}
+{{ toYaml .Values.global.nodeSelector | indent 2 }}
+{{- else if .Values.artifactory.node.nodeSelector }}
+{{ toYaml .Values.artifactory.node.nodeSelector | indent 2 }}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve Nginx pods node selector value
+*/}}
+{{- define "nginx.nodeSelector" -}}
+nodeSelector:
+{{- if .Values.global.nodeSelector }}
+{{ toYaml .Values.global.nodeSelector | indent 2 }}
+{{- else if .Values.nginx.nodeSelector }}
+{{ toYaml .Values.nginx.nodeSelector | indent 2 }}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Calculate the systemYaml from structured and unstructured text input
+*/}}
+{{- define "artifactory.finalSystemYaml" -}}
+{{ tpl (mergeOverwrite (include "artifactory.systemYaml" . | fromYaml) .Values.artifactory.extraSystemYaml | toYaml) . }}
+{{- end -}}
+
+{{/*
+Calculate the systemYaml from the unstructured text input
+*/}}
+{{- define "artifactory.systemYaml" -}}
+{{ include (print $.Template.BasePath "/_system-yaml-render.tpl") . }}
+{{- end -}}
+
+{{/*
+Metrics enabled
+*/}}
+{{- define "metrics.enabled" -}}
+  metrics:
+    enabled: true
+{{- end }}
+
+{{/*
+Resolve artifactory metrics
+*/}}
+{{- define "artifactory.metrics" -}}
+{{- if .Values.artifactory.openMetrics -}} 
+{{- if .Values.artifactory.openMetrics.enabled -}}
+{{ include "metrics.enabled" . }}
+{{- if .Values.artifactory.openMetrics.filebeat }}
+{{- if .Values.artifactory.openMetrics.filebeat.enabled }}
+{{ include "metrics.enabled" . }}
+    filebeat:
+{{ tpl (.Values.artifactory.openMetrics.filebeat | toYaml) . | indent 6 }}
+{{- end -}}
+{{- end -}}
+{{- end -}}
+{{- else if .Values.artifactory.metrics -}}
+{{- if .Values.artifactory.metrics.enabled -}}
+{{ include "metrics.enabled" . }}
+{{- if .Values.artifactory.metrics.filebeat }}
+{{- if .Values.artifactory.metrics.filebeat.enabled }}
+{{ include "metrics.enabled" . }}
+    filebeat:
+{{ tpl (.Values.artifactory.metrics.filebeat | toYaml) . | indent 6 }}
+{{- end -}}
+{{- end -}}
+{{- end -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve unified secret prepend release name
+*/}}
+{{- define "artifactory.unifiedSecretPrependReleaseName" -}}
+{{- if .Values.artifactory.unifiedSecretPrependReleaseName }}
+{{- printf "%s" (include "artifactory-ha.fullname" .) -}}
+{{- else }}
+{{- printf "%s" (include "artifactory-ha.name" .) -}}
+{{- end }}
+{{- end }}
+
+{{/*
+Resolve nginx hosts value
+*/}}
+{{- define "artifactory.nginx.hosts" -}}
+{{- if .Values.ingress.hosts }}
+{{- range .Values.ingress.hosts -}}
+  {{- if contains "." . -}}
+    {{ "" | indent 0 }} ~(?<repo>.+)\.{{ . }}
+  {{- end -}}
+{{- end -}}
+{{- else if .Values.nginx.hosts }}
+{{- range .Values.nginx.hosts -}}
+  {{- if contains "." . -}}
+    {{ "" | indent 0 }} ~(?<repo>.+)\.{{ . }}
+  {{- end -}}
+{{- end -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Create a default fully qualified grpc ingress name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+*/}}
+{{- define "artifactory.ingressGrpc.fullname" -}}
+{{- printf "%s-%s" (include "artifactory-ha.fullname" .) .Values.ingressGrpc.name | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Create a default fully qualified grpc service name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+*/}}
+{{- define "artifactory.serviceGrpc.fullname" -}}
+{{- printf "%s-%s" (include "artifactory-ha.fullname" .) .Values.artifactory.serviceGrpc.name | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Create a default fully qualified app name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+*/}}
+{{- define "rtfs.fullname" -}}
+{{- if .Values.fullnameOverride -}}
+{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" -}}
+{{- else -}}
+{{- $name := default .Chart.Name .Values.nameOverride -}}
+{{- if contains $name .Release.Name -}}
+{{- printf "%s-%s" (.Release.Name | trunc 63 | trimSuffix "-") .Values.rtfs.name -}}
+{{- else -}}
+{{- printf "%s-%s-%s" (.Release.Name | trunc 63 | trimSuffix "-") $name .Values.rtfs.name -}}
+{{- end -}}
+{{- end -}}
+{{- end -}}
+
+
+{{/*
+    Resolve jfrogUrl value
+*/}}
+{{- define "rtfs.jfrogUrl" -}}
+{{- if .Values.global.jfrogUrl -}}
+{{- .Values.global.jfrogUrl -}}
+{{- else if .Values.rtfs.jfrogUrl -}}
+{{- .Values.rtfs.jfrogUrl -}}
+{{- else -}}
+{{- printf "http://%s:8082" (include "artifactory-ha.fullname" .) -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve RTFS customSidecarContainers value
+*/}}
+{{- define "artifactory.rtfs.customSidecarContainers" -}}
+{{- if .Values.rtfs.customSidecarContainers -}}
+{{- .Values.rtfs.customSidecarContainers -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve RTFS customInitContainers value
+*/}}
+{{- define "artifactory.rtfs.customInitContainers" -}}
+{{- if .Values.rtfs.customInitContainers -}}
+{{- .Values.rtfs.customInitContainers -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve customVolumes value
+*/}}
+{{- define "artifactory.rtfs.customVolumes" -}}
+{{- if .Values.rtfs.customVolumes -}}
+{{- .Values.rtfs.customVolumes -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Rtfs command
+*/}}
+{{- define "rtfs.command" -}}
+{{- if .Values.rtfs.customCommand }}
+{{  toYaml .Values.rtfs.customCommand }}
+{{- end }}
+{{- end -}}
+
+{{/*
+Resolve customVolumeMounts rtfs value
+*/}}
+{{- define "artifactory.rtfs.customVolumeMounts" -}}
+{{- if .Values.rtfs.customVolumeMounts -}}
+{{- .Values.rtfs.customVolumeMounts -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve RTFS autoscalling metrics
+*/}}
+{{- define "rtfs.metrics" -}}
+{{- if .Values.rtfs.autoscaling.metrics -}}
+{{- .Values.rtfs.autoscaling.metrics -}}
+{{- end -}}
+{{- end -}}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/_system-yaml-render.tpl b/charts/jfrog/artifactory-ha/107.104.10/templates/_system-yaml-render.tpl
new file mode 100644
index 0000000000..deaa773ea9
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/_system-yaml-render.tpl
@@ -0,0 +1,5 @@
+{{- if .Values.artifactory.systemYaml -}}
+{{- tpl .Values.artifactory.systemYaml . -}}
+{{- else -}}
+{{ (tpl ( $.Files.Get "files/system.yaml" ) .) }}
+{{- end -}}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/additional-resources.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/additional-resources.yaml
new file mode 100644
index 0000000000..c4d06f08ad
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/additional-resources.yaml
@@ -0,0 +1,3 @@
+{{ if .Values.additionalResources }}
+{{ tpl .Values.additionalResources . }}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/admin-bootstrap-creds.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/admin-bootstrap-creds.yaml
new file mode 100644
index 0000000000..40d91f75e9
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/admin-bootstrap-creds.yaml
@@ -0,0 +1,15 @@
+{{- if not (and .Values.artifactory.admin.secret .Values.artifactory.admin.dataKey) }}
+{{- if and .Values.artifactory.admin.password (not .Values.artifactory.unifiedSecretInstallation) }}
+kind: Secret
+apiVersion: v1
+metadata:
+  name: {{ template "artifactory-ha.fullname" . }}-bootstrap-creds
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+data:
+  bootstrap.creds: {{ (printf "%s@%s=%s" .Values.artifactory.admin.username .Values.artifactory.admin.ip .Values.artifactory.admin.password) | b64enc }}
+{{- end }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-access-config.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-access-config.yaml
new file mode 100644
index 0000000000..0b96a337d4
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-access-config.yaml
@@ -0,0 +1,15 @@
+{{- if and .Values.access.accessConfig (not .Values.artifactory.unifiedSecretInstallation) }}
+apiVersion: v1
+kind: Secret
+metadata:
+  name: {{ template "artifactory-ha.fullname" . }}-access-config
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+type: Opaque
+stringData:
+  access.config.patch.yml: |
+{{ tpl (toYaml .Values.access.accessConfig) . | indent 4 }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-binarystore-secret.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-binarystore-secret.yaml
new file mode 100644
index 0000000000..6824fe90f8
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-binarystore-secret.yaml
@@ -0,0 +1,18 @@
+{{- if and (not .Values.artifactory.persistence.customBinarystoreXmlSecret) (not .Values.artifactory.unifiedSecretInstallation) }}
+kind: Secret
+apiVersion: v1
+metadata:
+  name: {{ template "artifactory-ha.fullname" . }}-binarystore
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+stringData:
+  binarystore.xml: |-
+{{- if .Values.artifactory.persistence.binarystoreXml }} 
+{{ tpl .Values.artifactory.persistence.binarystoreXml . | indent 4 }}
+{{- else }}
+{{ tpl ( .Files.Get "files/binarystore.xml" ) . | indent 4 }}
+{{- end }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-configmaps.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-configmaps.yaml
new file mode 100644
index 0000000000..1385bc5782
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-configmaps.yaml
@@ -0,0 +1,13 @@
+{{ if .Values.artifactory.configMaps }}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ template "artifactory-ha.fullname" . }}-configmaps
+  labels:
+    app: {{ template "artifactory-ha.fullname" . }}
+    chart: {{ .Chart.Name }}-{{ .Chart.Version }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+data:
+{{ tpl .Values.artifactory.configMaps . | indent 2 }}
+{{ end -}}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-custom-secrets.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-custom-secrets.yaml
new file mode 100644
index 0000000000..8065fe6865
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-custom-secrets.yaml
@@ -0,0 +1,19 @@
+{{- if and .Values.artifactory.customSecrets (not .Values.artifactory.unifiedSecretInstallation) }}
+{{- range .Values.artifactory.customSecrets }}
+---
+apiVersion: v1
+kind: Secret
+metadata:
+  name: {{ template "artifactory-ha.fullname" $ }}-{{ .name }}
+  labels:
+    app: "{{ template "artifactory-ha.name" $ }}"
+    chart: "{{ template "artifactory-ha.chart" $ }}"
+    component: "{{ $.Values.artifactory.name }}"
+    heritage: {{ $.Release.Service | quote }}
+    release: {{ $.Release.Name | quote }}
+type: Opaque
+stringData:
+  {{ .key }}: |
+{{ .data | indent 4 -}}
+{{- end -}}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-database-secrets.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-database-secrets.yaml
new file mode 100644
index 0000000000..6daf5db7bc
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-database-secrets.yaml
@@ -0,0 +1,24 @@
+{{- if and  (not .Values.database.secrets) (not .Values.postgresql.enabled) (not .Values.artifactory.unifiedSecretInstallation) }}
+{{- if or .Values.database.url .Values.database.user .Values.database.password }}
+apiVersion: v1
+kind: Secret
+metadata:
+  name: {{ template "artifactory-ha.fullname" . }}-database-creds
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+type: Opaque
+data:
+  {{- with .Values.database.url }}
+  db-url: {{ tpl . $ | b64enc | quote }}
+  {{- end }}
+  {{- with .Values.database.user }}
+  db-user: {{ tpl . $ | b64enc | quote }}
+  {{- end }}
+  {{- with .Values.database.password }}
+  db-password: {{ tpl . $ | b64enc | quote }}
+  {{- end }}
+{{- end }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-gcp-credentials-secret.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-gcp-credentials-secret.yaml
new file mode 100644
index 0000000000..d90769595b
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-gcp-credentials-secret.yaml
@@ -0,0 +1,16 @@
+{{- if not .Values.artifactory.persistence.googleStorage.gcpServiceAccount.customSecretName }}
+{{- if and (.Values.artifactory.persistence.googleStorage.gcpServiceAccount.enabled) (not .Values.artifactory.unifiedSecretInstallation) }}
+kind: Secret
+apiVersion: v1
+metadata:
+  name: {{ template "artifactory-ha.fullname" . }}-gcpcreds
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+stringData:
+  gcp.credentials.json: |-
+{{ tpl .Values.artifactory.persistence.googleStorage.gcpServiceAccount.config . | indent 4 }}
+{{- end }}
+{{- end }}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-installer-info.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-installer-info.yaml
new file mode 100644
index 0000000000..0dff9dc86f
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-installer-info.yaml
@@ -0,0 +1,16 @@
+kind: ConfigMap
+apiVersion: v1
+metadata:
+  name: {{ template "artifactory-ha.fullname" . }}-installer-info
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+data:
+  installer-info.json: |
+{{- if .Values.installerInfo -}}
+{{- tpl .Values.installerInfo . | nindent 4 -}}
+{{- else -}}
+{{ (tpl ( .Files.Get "files/installer-info.json" | nindent 4 ) .) }}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-license-secret.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-license-secret.yaml
new file mode 100644
index 0000000000..0018fa044b
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-license-secret.yaml
@@ -0,0 +1,16 @@
+{{ if and (not .Values.artifactory.unifiedSecretInstallation) (not .Values.artifactory.license.secret) }}
+{{- with .Values.artifactory.license.licenseKey }}
+apiVersion: v1
+kind: Secret
+metadata:
+  name: {{ template "artifactory-ha.fullname" $ }}-license
+  labels:
+    app: {{ template "artifactory-ha.name" $ }}
+    chart: {{ template "artifactory-ha.chart" $ }}
+    heritage: {{ $.Release.Service }}
+    release: {{ $.Release.Name }}
+type: Opaque
+data:
+  artifactory.lic: {{ . | b64enc | quote }}
+{{- end }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-migration-scripts.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-migration-scripts.yaml
new file mode 100644
index 0000000000..fe40f980fc
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-migration-scripts.yaml
@@ -0,0 +1,18 @@
+{{- if .Values.artifactory.migration.enabled }}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ template "artifactory-ha.fullname" . }}-migration-scripts
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+data:
+  migrate.sh: |
+{{ .Files.Get "files/migrate.sh" | indent 4 }}
+  migrationHelmInfo.yaml: |
+{{ .Files.Get "files/migrationHelmInfo.yaml" | indent 4 }}
+  migrationStatus.sh: |
+{{ .Files.Get "files/migrationStatus.sh" | indent 4 }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-networkpolicy.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-networkpolicy.yaml
new file mode 100644
index 0000000000..9924448f04
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-networkpolicy.yaml
@@ -0,0 +1,34 @@
+{{- range .Values.networkpolicy }}
+apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
+metadata:
+  name: {{ template "artifactory-ha.fullname" $ }}-{{ .name }}-networkpolicy
+  labels:
+    app: {{ template "artifactory-ha.name" $ }}
+    chart: {{ template "artifactory-ha.chart" $ }}
+    release: {{ $.Release.Name }}
+    heritage: {{ $.Release.Service }}
+spec:
+{{- if .podSelector }}
+  podSelector:
+{{ .podSelector | toYaml | trimSuffix "\n" | indent 4 -}}
+{{ else }}
+  podSelector: {}
+{{- end }}
+  policyTypes:
+  {{- if .ingress }}
+  - Ingress
+  {{- end }}
+  {{- if .egress }}
+  - Egress
+  {{- end }}
+{{- if .ingress }}
+  ingress:
+{{ .ingress | toYaml | trimSuffix "\n" | indent 2 -}}
+{{- end }}
+{{- if .egress }}
+  egress:
+{{ .egress | toYaml | trimSuffix "\n" | indent 2 -}}
+{{- end }}
+---
+{{- end -}}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-nfs-pvc.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-nfs-pvc.yaml
new file mode 100644
index 0000000000..6ed7d82f6b
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-nfs-pvc.yaml
@@ -0,0 +1,101 @@
+{{- if eq .Values.artifactory.persistence.type "nfs" }}
+### Artifactory HA data
+apiVersion: v1
+kind: PersistentVolume
+metadata:
+  name: {{ template "artifactory-ha.fullname" . }}-data-pv
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+    id: {{ template "artifactory-ha.name" . }}-data-pv
+    type: nfs-volume
+spec:
+  {{- if .Values.artifactory.persistence.nfs.mountOptions }}
+  mountOptions:
+{{ toYaml .Values.artifactory.persistence.nfs.mountOptions | indent 4 }}
+  {{- end }}
+  capacity:
+    storage: {{ .Values.artifactory.persistence.nfs.capacity }}
+  accessModes:
+  - ReadWriteOnce
+  persistentVolumeReclaimPolicy: Retain
+  nfs:
+    server: {{ .Values.artifactory.persistence.nfs.ip }}
+    path: "{{ .Values.artifactory.persistence.nfs.haDataMount }}"
+    readOnly: false
+---
+kind: PersistentVolumeClaim
+apiVersion: v1
+metadata:
+  name: {{ template "artifactory-ha.fullname" . }}-data-pvc
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+    type: nfs-volume
+spec:
+  accessModes:
+  - ReadWriteOnce
+  storageClassName: ""
+  resources:
+    requests:
+      storage: {{ .Values.artifactory.persistence.nfs.capacity }}
+  selector:
+    matchLabels:
+      id: {{ template "artifactory-ha.name" . }}-data-pv
+      app: {{ template "artifactory-ha.name" . }}
+      release: {{ .Release.Name }}
+---
+### Artifactory HA backup
+apiVersion: v1
+kind: PersistentVolume
+metadata:
+  name: {{ template "artifactory-ha.fullname" . }}-backup-pv
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+    id: {{ template "artifactory-ha.name" . }}-backup-pv
+    type: nfs-volume
+spec:
+  {{- if .Values.artifactory.persistence.nfs.mountOptions }}
+  mountOptions:
+{{ toYaml .Values.artifactory.persistence.nfs.mountOptions | indent 4 }}
+  {{- end }}
+  capacity:
+    storage: {{ .Values.artifactory.persistence.nfs.capacity }}
+  accessModes:
+  - ReadWriteOnce
+  persistentVolumeReclaimPolicy: Retain
+  nfs:
+    server: {{ .Values.artifactory.persistence.nfs.ip }}
+    path: "{{ .Values.artifactory.persistence.nfs.haBackupMount }}"
+    readOnly: false
+---
+kind: PersistentVolumeClaim
+apiVersion: v1
+metadata:
+  name: {{ template "artifactory-ha.fullname" . }}-backup-pvc
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+    type: nfs-volume
+spec:
+  accessModes:
+  - ReadWriteOnce
+  storageClassName: ""
+  resources:
+    requests:
+      storage: {{ .Values.artifactory.persistence.nfs.capacity }}
+  selector:
+    matchLabels:
+      id: {{ template "artifactory-ha.name" . }}-backup-pv
+      app: {{ template "artifactory-ha.name" . }}
+      release: {{ .Release.Name }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-node-pdb.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-node-pdb.yaml
new file mode 100644
index 0000000000..46c6dac21d
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-node-pdb.yaml
@@ -0,0 +1,26 @@
+{{- if gt (.Values.artifactory.node.replicaCount | int) 0  -}}
+{{- if .Values.artifactory.node.minAvailable -}}
+{{- if semverCompare "<v1.21.0-0" .Capabilities.KubeVersion.Version }}
+apiVersion: policy/v1beta1
+{{- else }}
+apiVersion: policy/v1
+{{- end }}
+kind: PodDisruptionBudget
+metadata:
+  name: {{ template "artifactory-ha.fullname" . }}-node
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    component: {{ .Values.artifactory.name }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+spec:
+  selector:
+    matchLabels:
+      component: {{ .Values.artifactory.name }}
+      app: {{ template "artifactory-ha.name" . }}
+      role: {{ template "artifactory-ha.node.name" . }}
+      release: {{ .Release.Name }}
+  minAvailable: {{ .Values.artifactory.node.minAvailable }}
+{{- end }}
+{{- end -}}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-node-statefulset.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-node-statefulset.yaml
new file mode 100644
index 0000000000..5da253e188
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-node-statefulset.yaml
@@ -0,0 +1,1695 @@
+{{- if gt (.Values.artifactory.node.replicaCount | int) 0  -}}
+apiVersion: apps/v1
+kind: StatefulSet
+metadata:
+  name: {{ template "artifactory-ha.node.name" . }}
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    component: {{ .Values.artifactory.name }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+{{- with .Values.artifactory.node.labels }}
+{{ toYaml . | indent 4 }}
+{{- end }}
+{{- with .Values.artifactory.statefulset.annotations }}
+  annotations:
+{{ toYaml . | indent 4 }}
+{{- end }}
+spec:
+  serviceName: {{ template "artifactory-ha.node.name" . }}
+  replicas: {{ .Values.artifactory.node.replicaCount }}
+  updateStrategy: {{- toYaml .Values.artifactory.node.updateStrategy | nindent 4}}
+  selector:
+    matchLabels:
+      app: {{ template "artifactory-ha.name" . }}
+      role: {{ template "artifactory-ha.node.name" . }}
+      release: {{ .Release.Name }}
+  template:
+    metadata:
+      labels:
+        app: {{ template "artifactory-ha.name" . }}
+        chart: {{ template "artifactory-ha.chart" . }}
+        role: {{ template "artifactory-ha.node.name" . }}
+        heritage: {{ .Release.Service }}
+        component: {{ .Values.artifactory.name }}
+        release: {{ .Release.Name }}
+        {{- with .Values.artifactory.node.labels }}
+{{ toYaml . | indent 8 }}
+        {{- end }}
+      annotations:
+      {{- if not .Values.artifactory.unifiedSecretInstallation }}
+        checksum/database-secrets: {{ include (print $.Template.BasePath "/artifactory-database-secrets.yaml") . | sha256sum }}
+        checksum/binarystore: {{ include (print $.Template.BasePath "/artifactory-binarystore-secret.yaml") . | sha256sum }}
+        checksum/systemyaml: {{ include (print $.Template.BasePath "/artifactory-system-yaml.yaml") . | sha256sum }}
+      {{- if .Values.artifactory.persistence.googleStorage.gcpServiceAccount.enabled }}
+        checksum/gcpcredentials: {{ include (print $.Template.BasePath "/artifactory-gcp-credentials-secret.yaml") . | sha256sum }}
+      {{- end }}
+      {{- else }}
+        checksum/artifactory-unified-secret: {{ include (print $.Template.BasePath "/artifactory-unified-secret.yaml") . | sha256sum }}
+      {{- end }}
+      {{- with .Values.artifactory.annotations }}
+{{ toYaml . | indent 8 }}
+      {{- end }}
+    spec:
+    {{- if .Values.artifactory.schedulerName }}
+      schedulerName: {{ .Values.artifactory.schedulerName | quote }}
+    {{- end }}
+    {{- if .Values.artifactory.priorityClass.existingPriorityClass }}
+      priorityClassName: {{ .Values.artifactory.priorityClass.existingPriorityClass }}
+    {{- else -}}
+      {{- if .Values.artifactory.priorityClass.create }}
+      priorityClassName: {{ default (include "artifactory-ha.fullname" .) .Values.artifactory.priorityClass.name }}
+      {{- end }}
+    {{- end }}
+      serviceAccountName: {{ template "artifactory-ha.serviceAccountName" . }}
+      terminationGracePeriodSeconds: {{ add .Values.artifactory.terminationGracePeriodSeconds 10 }}
+    {{- if or .Values.imagePullSecrets .Values.global.imagePullSecrets }}
+{{- include "artifactory-ha.imagePullSecrets" . | indent 6 }}
+    {{- end }}
+      {{- if .Values.artifactory.podSecurityContext.enabled }}
+      securityContext: {{- omit .Values.artifactory.podSecurityContext "enabled" | toYaml | nindent 8 }}
+      {{- end }}
+      {{- if .Values.artifactory.topologySpreadConstraints }}
+      topologySpreadConstraints:
+{{ tpl (toYaml .Values.artifactory.topologySpreadConstraints) . | indent 8 }}
+      {{- end }}
+      initContainers:
+    {{- if or .Values.artifactory.customInitContainersBegin .Values.global.customInitContainersBegin }}
+{{ tpl (include "artifactory-ha.customInitContainersBegin" .)  . | indent 6 }}
+    {{- end }}
+  {{- if .Values.artifactory.persistence.enabled }}
+    {{- if eq .Values.artifactory.persistence.type "file-system" }}
+      {{- if .Values.artifactory.persistence.fileSystem.existingSharedClaim.enabled }}
+      - name: "create-artifactory-data-dir"
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "initContainers") }}
+        imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+        - 'bash'
+        - '-c'
+        - >
+          mkdir -p {{ tpl .Values.artifactory.persistence.fileSystem.existingSharedClaim.dataDir . }};
+        resources:
+{{ toYaml .Values.initContainers.resources | indent 10 }}
+        volumeMounts:
+        - mountPath: {{ .Values.artifactory.persistence.mountPath | quote }}
+          name: volume
+      {{- end }}
+    {{- end }}
+      {{- if .Values.artifactory.deleteDBPropertiesOnStartup }}
+      - name: "delete-db-properties"
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "initContainers") }}
+        imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+        command:
+          - 'bash'
+          - '-c'
+          - 'rm -fv {{ .Values.artifactory.persistence.mountPath }}/etc/db.properties'
+        resources:
+{{ toYaml .Values.initContainers.resources | indent 10 }}
+        volumeMounts:
+          - mountPath: {{ .Values.artifactory.persistence.mountPath | quote }}
+            name: volume
+      {{- end }}
+    {{- end }}
+      {{- if and .Values.artifactory.node.waitForPrimaryStartup.enabled }}
+      - name: "wait-for-primary"
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "initContainers") }}
+        imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+        - 'bash'
+        - '-c'
+        - >
+          echo "Waiting for primary node to be ready...";
+          {{- if and .Values.artifactory.node.waitForPrimaryStartup.enabled .Values.artifactory.node.waitForPrimaryStartup.time }}
+          echo "Sleeping to allow time for primary node to come up";
+          sleep {{ .Values.artifactory.node.waitForPrimaryStartup.time }};
+          {{- else }}
+          ready=false;
+          while ! $ready; do echo Primary not ready. Waiting...;
+            timeout 2s bash -c "</dev/tcp/{{ template "artifactory-ha.primary.name" . }}/{{ .Values.artifactory.externalPort }}"; exit_status=$?;
+            if [[ $exit_status -eq 0 ]]; then ready=true; echo "Primary node ready!"; fi; sleep 3; 
+          done
+          {{- end }}
+        resources:
+{{ toYaml .Values.initContainers.resources | indent 10 }}
+        {{- end }}
+      - name: 'copy-system-configurations'
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "initContainers") }}
+        imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+        - '/bin/bash'
+        - '-c'
+        - >
+          if [[ -e "{{ .Values.artifactory.persistence.mountPath }}/etc/filebeat.yaml" ]]; then chmod 644 {{ .Values.artifactory.persistence.mountPath }}/etc/filebeat.yaml; fi;
+          echo "Copy system.yaml to {{ .Values.artifactory.persistence.mountPath }}/etc";
+          mkdir -p {{ .Values.artifactory.persistence.mountPath }}/etc;
+          mkdir -p {{ .Values.artifactory.persistence.mountPath }}/etc/access/keys/trusted;
+          {{- if .Values.systemYamlOverride.existingSecret }}
+          cp -fv /tmp/etc/{{ .Values.systemYamlOverride.dataKey }} {{ .Values.artifactory.persistence.mountPath }}/etc/system.yaml;
+          {{- else }}
+          cp -fv /tmp/etc/system.yaml {{ .Values.artifactory.persistence.mountPath }}/etc/system.yaml;
+          {{- end }}
+          echo "Copy binarystore.xml file";
+          mkdir -p {{ .Values.artifactory.persistence.mountPath }}/etc/artifactory;
+          cp -fv /tmp/etc/artifactory/binarystore.xml {{ .Values.artifactory.persistence.mountPath }}/etc/artifactory/binarystore.xml;
+          echo "Removing join.key file";
+          rm -fv {{ .Values.artifactory.persistence.mountPath }}/etc/security/join.key;
+        {{- if .Values.access.resetAccessCAKeys }}
+          echo "Resetting Access CA Keys - load from database";
+        {{- end }}
+        {{- if .Values.access.customCertificatesSecretName }}
+          echo "Load custom certificates from database";
+        {{- end }}
+        {{- if .Values.jfconnect.customCertificatesSecretName }}
+          echo "Load custom certificates from database";
+        {{- end }}
+        {{- if or .Values.artifactory.masterKey .Values.global.masterKey .Values.artifactory.masterKeySecretName .Values.global.masterKeySecretName }}
+          echo "Copy masterKey to {{ .Values.artifactory.persistence.mountPath }}/etc/security";
+          mkdir -p {{ .Values.artifactory.persistence.mountPath }}/etc/security;
+          echo -n ${ARTIFACTORY_MASTER_KEY} > {{ .Values.artifactory.persistence.mountPath }}/etc/security/master.key;
+        env:
+        - name: ARTIFACTORY_MASTER_KEY
+          valueFrom:
+            secretKeyRef:
+            {{- if or (not .Values.artifactory.unifiedSecretInstallation) (or .Values.artifactory.masterKeySecretName .Values.global.masterKeySecretName) }}
+              name: {{ include "artifactory-ha.masterKeySecretName" . }}
+            {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+            {{- end }}
+              key: master-key
+        {{- end }}
+        resources:
+{{ toYaml .Values.initContainers.resources | indent 10 }}
+        volumeMounts:
+        - name: volume
+          mountPath: {{ .Values.artifactory.persistence.mountPath | quote }}
+
+      ######################## SystemYaml #########################
+        {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.systemYamlOverride.existingSecret }}
+        - name: systemyaml
+        {{- else }}
+        - name: {{ include "artifactory-ha.unifiedCustomSecretVolumeName" . }}
+        {{- end }}
+          {{- if .Values.systemYamlOverride.existingSecret }}
+          mountPath: "/tmp/etc/{{.Values.systemYamlOverride.dataKey}}"
+          subPath: {{ .Values.systemYamlOverride.dataKey }}
+          {{- else }}
+          mountPath: "/tmp/etc/system.yaml"
+          subPath: system.yaml
+          {{- end }}
+
+        ######################## Binarystore  ##########################
+        {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.persistence.customBinarystoreXmlSecret }}
+        - name: binarystore-xml
+        {{- else }}
+        - name: {{ include "artifactory-ha.unifiedCustomSecretVolumeName" . }}
+        {{- end }}
+          mountPath: "/tmp/etc/artifactory/binarystore.xml"
+          subPath: binarystore.xml
+
+      ######################## CustomCertificates  ##########################
+      {{- if or .Values.artifactory.customCertificates.enabled .Values.global.customCertificates.enabled }}
+      - name: copy-custom-certificates
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "initContainers") }}
+        imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+
+        resources:
+{{ toYaml .Values.initContainers.resources | indent 10 }}
+        command:
+        - 'bash'
+        - '-c'
+        - >
+{{ include "artifactory-ha.copyCustomCerts" . | indent 10 }}
+        volumeMounts:
+          - name: volume
+            mountPath: {{ .Values.artifactory.persistence.mountPath }}
+          - name: ca-certs
+            mountPath: "/tmp/certs"
+      {{- end }}
+
+      {{- if .Values.artifactory.circleOfTrustCertificatesSecret }}
+      - name: copy-circle-of-trust-certificates
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "initContainers") }}
+        imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        resources:
+{{ toYaml .Values.initContainers.resources | indent 10 }}
+        command:
+        - 'bash'
+        - '-c'
+        - >
+{{ include "artifactory.copyCircleOfTrustCertsCerts" . | indent 10 }}
+        volumeMounts:
+          - name: volume
+            mountPath: {{ .Values.artifactory.persistence.mountPath }}
+          - name: circle-of-trust-certs
+            mountPath: "/tmp/circleoftrustcerts"
+      {{- end }}
+
+    {{- if .Values.waitForDatabase }}
+      {{- if or .Values.postgresql.enabled }}
+      - name: "wait-for-db"
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "initContainers") }}
+        imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+        command:
+        - /bin/bash
+        - -c
+        - |
+          echo "Waiting for postgresql to come up"
+          ready=false;
+          while ! $ready; do echo waiting;
+            timeout 2s bash -c "</dev/tcp/{{ .Release.Name }}-postgresql/{{ .Values.postgresql.service.port }}"; exit_status=$?;
+            if [[ $exit_status -eq 0 ]]; then ready=true; echo "database ok"; fi; sleep 1; 
+          done
+        resources:
+{{ toYaml .Values.initContainers.resources | indent 10 }}
+      {{- end }}
+    {{- end }}
+    {{- if or .Values.artifactory.customInitContainers .Values.global.customInitContainers }}
+{{ tpl (include "artifactory-ha.customInitContainers" .)  . | indent 6 }}
+    {{- end }}
+{{- if .Values.artifactory.migration.enabled }}
+      - name: 'migration-artifactory-ha'
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "artifactory") }}
+        imagePullPolicy: {{ .Values.artifactory.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+        - '/bin/bash'
+        - '-c'
+        - >
+          {{- if .Values.artifactory.migration.preStartCommand }}
+          echo "Running custom preStartCommand command";
+          {{ tpl .Values.artifactory.migration.preStartCommand . }};
+          {{- end }}
+          scriptsPath="/opt/jfrog/artifactory/app/bin";
+          mkdir -p $scriptsPath;
+          echo "Copy migration scripts and Run migration";
+          cp -fv /tmp/migrate.sh $scriptsPath/migrate.sh;
+          cp -fv /tmp/migrationHelmInfo.yaml $scriptsPath/migrationHelmInfo.yaml;
+          cp -fv /tmp/migrationStatus.sh $scriptsPath/migrationStatus.sh;
+          mkdir -p {{ .Values.artifactory.persistence.mountPath }}/log;
+          bash $scriptsPath/migrationStatus.sh {{ include "artifactory-ha.app.version" . }} {{ .Values.artifactory.migration.timeoutSeconds }} > >(tee {{ .Values.artifactory.persistence.mountPath }}/log/helm-migration.log) 2>&1;
+        resources:
+{{ toYaml .Values.artifactory.node.resources | indent 10 }}
+        env:
+      {{- if and (not .Values.waitForDatabase) (not .Values.postgresql.enabled) }}
+        - name: SKIP_WAIT_FOR_EXTERNAL_DB
+          value: "true"
+      {{- end }}
+      {{- if or .Values.database.secrets.user .Values.database.user }}
+        - name: JF_SHARED_DATABASE_USERNAME
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.user }}
+              name: {{ tpl .Values.database.secrets.user.name . }}
+              key: {{ tpl .Values.database.secrets.user.key . }}
+        {{- else if .Values.database.user }}
+            {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory-ha.fullname" . }}-database-creds
+            {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+            {{- end }}
+              key: db-user
+        {{- end }}
+      {{- end }}
+      {{ if or .Values.database.secrets.password .Values.database.password .Values.postgresql.enabled }}
+        - name: JF_SHARED_DATABASE_PASSWORD
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.password }}
+              name: {{ tpl .Values.database.secrets.password.name . }}
+              key: {{ tpl .Values.database.secrets.password.key . }}
+        {{- else if .Values.database.password }}
+            {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory-ha.fullname" . }}-database-creds
+            {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+            {{- end }}
+              key: db-password
+        {{- else if .Values.postgresql.enabled }}
+              name: {{ .Release.Name }}-postgresql
+              key: postgresql-password
+        {{- end }}
+      {{- end }}
+      {{- if or .Values.database.secrets.url .Values.database.url }}
+        - name: JF_SHARED_DATABASE_URL
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.url }}
+              name: {{ tpl .Values.database.secrets.url.name . }}
+              key: {{ tpl .Values.database.secrets.url.key . }}
+        {{- else if .Values.database.url }}
+            {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory-ha.fullname" . }}-database-creds
+            {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+            {{- end }}
+              key: db-url
+        {{- end }}
+      {{- end }}
+        - name: JF_SHARED_NODE_HAENABLED
+          value: "true"
+{{- with .Values.artifactory.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 8 }}
+{{- end }}
+        volumeMounts:
+        - name: migration-scripts
+          mountPath: "/tmp/migrate.sh"
+          subPath: migrate.sh
+        - name: migration-scripts
+          mountPath: "/tmp/migrationHelmInfo.yaml"
+          subPath: migrationHelmInfo.yaml
+        - name: migration-scripts
+          mountPath: "/tmp/migrationStatus.sh"
+          subPath: migrationStatus.sh
+        - name: volume
+          mountPath: "{{ .Values.artifactory.persistence.mountPath }}"
+  {{- if eq .Values.artifactory.persistence.type "file-system" }}
+    {{- if .Values.artifactory.persistence.fileSystem.existingSharedClaim.enabled }}
+      {{- range $sharedClaimNumber, $e := until (.Values.artifactory.persistence.fileSystem.existingSharedClaim.numberOfExistingClaims|int) }}
+        - name: artifactory-ha-data-{{ $sharedClaimNumber }}
+          mountPath: "{{ tpl $.Values.artifactory.persistence.fileSystem.existingSharedClaim.dataDir $ }}/filestore{{ $sharedClaimNumber }}"
+      {{- end }}
+        - name: artifactory-ha-backup
+          mountPath: "{{ $.Values.artifactory.persistence.fileSystem.existingSharedClaim.backupDir }}"
+    {{- end }}
+  {{- end }}
+  {{- if or .Values.artifactory.customVolumeMounts .Values.global.customVolumeMounts }}
+{{ tpl (include "artifactory-ha.customVolumeMounts" .) . | indent 8 }}
+  {{- end }}
+
+      ######################## Artifactory persistence nfs ##########################
+  {{- if eq .Values.artifactory.persistence.type "nfs" }}
+        - name: artifactory-ha-data
+          mountPath: "{{ .Values.artifactory.persistence.nfs.dataDir }}"
+        - name: artifactory-ha-backup
+          mountPath: "{{ .Values.artifactory.persistence.nfs.backupDir }}"
+  {{- else }}
+
+
+      ######################## Artifactory persistence binarystore Xml ##########################
+        {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.persistence.customBinarystoreXmlSecret }}
+        - name: binarystore-xml
+        {{- else }}
+        - name: {{ include "artifactory-ha.unifiedCustomSecretVolumeName" . }}
+        {{- end }}
+          mountPath: "/tmp/etc/artifactory/binarystore.xml"
+          subPath: binarystore.xml
+  {{- end }}
+
+      ######################## Artifactory persistence google storage ##########################
+  {{- if .Values.artifactory.persistence.googleStorage.gcpServiceAccount.enabled }}
+        {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.persistence.googleStorage.gcpServiceAccount.customSecretName }}
+        - name: gcpcreds-json
+        {{- else }}
+        - name: {{ include "artifactory-ha.unifiedCustomSecretVolumeName" . }}
+        {{- end }}
+          mountPath: "/artifactory_bootstrap/gcp.credentials.json"
+          subPath: gcp.credentials.json
+  {{- end }}
+
+{{- end }}
+      {{- if .Values.hostAliases }}
+      hostAliases:
+{{ toYaml .Values.hostAliases | indent 6 }}
+      {{- end }}
+      containers:
+    {{- if .Values.splitServicesToContainers }}
+      - name: {{ .Values.router.name }}
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "router") }}
+        imagePullPolicy: {{ .Values.router.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+          - '/bin/bash'
+          - '-c'
+          - >
+            exec /opt/jfrog/router/app/bin/entrypoint-router.sh
+        {{- with .Values.router.lifecycle }}
+        lifecycle:
+{{ toYaml . | indent 10 }}
+        {{- end }}
+        env:
+        - name: JF_ROUTER_TOPOLOGY_LOCAL_REQUIREDSERVICETYPES
+          value: {{ include "artifactory-ha.router.requiredServiceTypes" . }}
+{{- with .Values.router.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 8 }}
+{{- end }}
+        volumeMounts:
+        - name: volume
+          mountPath: {{ .Values.router.persistence.mountPath | quote }}
+{{- with .Values.router.customVolumeMounts }}
+{{ tpl . $ | indent 8 }}
+{{- end }}
+        resources:
+{{ toYaml .Values.router.resources | indent 10 }}
+      {{- if .Values.router.startupProbe.enabled }}
+        startupProbe:
+{{ tpl .Values.router.startupProbe.config . | indent 10 }}
+      {{- end }}
+{{- if .Values.router.readinessProbe.enabled }}
+        readinessProbe:
+{{ tpl .Values.router.readinessProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.router.livenessProbe.enabled }}
+        livenessProbe:
+{{ tpl .Values.router.livenessProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.frontend.enabled }}
+      - name: {{ .Values.frontend.name }}
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "artifactory") }}
+        imagePullPolicy: {{ .Values.artifactory.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+          - '/bin/bash'
+          - '-c'
+          - >
+            exec /opt/jfrog/artifactory/app/third-party/node/bin/node /opt/jfrog/artifactory/app/frontend/bin/server/dist/bundle.js /opt/jfrog/artifactory/app/frontend
+        {{- with .Values.frontend.lifecycle }}
+        lifecycle:
+{{ toYaml . | indent 10 }}
+        {{- end }}
+        env:
+        - name: JF_SHARED_NODE_ID
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name : JF_SHARED_NODE_HAENABLED
+          value: "true"
+{{- with .Values.frontend.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 8 }}
+{{- end }}
+        volumeMounts:
+      {{- if or .Values.artifactory.customVolumeMounts .Values.global.customVolumeMounts }}
+{{ tpl (include "artifactory-ha.customVolumeMounts" .) . | indent 8 }}
+      {{- end }}
+        - name: volume
+          mountPath: {{ .Values.artifactory.persistence.mountPath | quote }}
+        resources:
+{{ toYaml .Values.frontend.resources | indent 10 }}
+      {{- if .Values.frontend.startupProbe.enabled }}
+        startupProbe:
+{{ tpl .Values.frontend.startupProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.frontend.livenessProbe.enabled }}
+        livenessProbe:
+{{ tpl .Values.frontend.livenessProbe.config . | indent 10 }}
+      {{- end }}
+      {{- end }}
+      {{- if .Values.evidence.enabled }}
+      - name: {{ .Values.evidence.name }}
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "artifactory") }}
+        imagePullPolicy: {{ .Values.artifactory.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+        - '/bin/bash'
+        - '-c'
+        - >
+          exec /opt/jfrog/artifactory/app/evidence/bin/jf-evidence start
+        {{- with .Values.evidence.lifecycle }}
+        lifecycle:
+{{ toYaml . | indent 10 }}
+        {{- end }}
+        env:
+        - name: JF_SHARED_NODE_ID
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+      {{- if or .Values.database.secrets.user .Values.database.user }}
+        - name: JF_SHARED_DATABASE_USERNAME
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.user }}
+              name: {{ tpl .Values.database.secrets.user.name . }}
+              key: {{ tpl .Values.database.secrets.user.key . }}
+        {{- else if .Values.database.user }}
+              {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory-ha.fullname" . }}-database-creds
+              {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+              {{- end }}
+              key: db-user
+        {{- end }}
+      {{- end }}
+      {{ if or .Values.database.secrets.password .Values.database.password .Values.postgresql.enabled }}
+        - name: JF_SHARED_DATABASE_PASSWORD
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.password }}
+              name: {{ tpl .Values.database.secrets.password.name . }}
+              key: {{ tpl .Values.database.secrets.password.key . }}
+        {{- else if .Values.database.password }}
+              {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory-ha.fullname" . }}-database-creds
+              {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+              {{- end }}
+              key: db-password
+        {{- else if .Values.postgresql.enabled }}
+              name: {{ .Release.Name }}-postgresql
+              key: postgresql-password
+        {{- end }}
+      {{- end }}
+      {{- if or .Values.database.secrets.url .Values.database.url }}
+        - name: JF_SHARED_DATABASE_URL
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.url }}
+              name: {{ tpl .Values.database.secrets.url.name . }}
+              key: {{ tpl .Values.database.secrets.url.key . }}
+        {{- else if .Values.database.url }}
+              {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory-ha.fullname" . }}-database-creds
+              {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+              {{- end }}
+              key: db-url
+        {{- end }}
+      {{- end }}
+{{- with .Values.evidence.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 8 }}
+{{- end }}
+        ports:
+        - containerPort: {{ .Values.evidence.internalPort }}
+          name: http-evidence
+        - containerPort: {{ .Values.evidence.externalPort }}
+          name: grpc-evidence
+        volumeMounts:
+      {{- if or .Values.artifactory.customVolumeMounts .Values.global.customVolumeMounts }}
+{{ tpl (include "artifactory-ha.customVolumeMounts" .) . | indent 8 }}
+      {{- end }}
+        - name: volume
+          mountPath: {{ .Values.artifactory.persistence.mountPath | quote }}
+        resources:
+{{ toYaml .Values.evidence.resources | indent 10 }}
+      {{- if .Values.evidence.startupProbe.enabled }}
+        startupProbe:
+{{ tpl .Values.evidence.startupProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.evidence.livenessProbe.enabled }}
+        livenessProbe:
+{{ tpl .Values.evidence.livenessProbe.config . | indent 10 }}
+      {{- end }}
+      {{- end }}
+      {{- if .Values.metadata.enabled }}
+      - name: {{ .Values.metadata.name }}
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "metadata") }}
+        imagePullPolicy: {{ .Values.artifactory.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+          - '/bin/bash'
+          - '-c'
+          - >
+            exec /opt/jfrog/artifactory/app/metadata/bin/jf-metadata start
+        {{- with .Values.metadata.lifecycle }}
+        lifecycle:
+{{ toYaml . | indent 10 }}
+        {{- end }}
+        env:
+        - name: JF_SHARED_NODE_ID
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+      {{- if or .Values.database.secrets.user .Values.database.user }}
+        - name: JF_SHARED_DATABASE_USERNAME
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.user }}
+              name: {{ tpl .Values.database.secrets.user.name . }}
+              key: {{ tpl .Values.database.secrets.user.key . }}
+        {{- else if .Values.database.user }}
+            {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory-ha.fullname" . }}-database-creds
+            {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+            {{- end }}
+              key: db-user
+        {{- end }}
+      {{- end }}
+      {{ if or .Values.database.secrets.password .Values.database.password .Values.postgresql.enabled }}
+        - name: JF_SHARED_DATABASE_PASSWORD
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.password }}
+              name: {{ tpl .Values.database.secrets.password.name . }}
+              key: {{ tpl .Values.database.secrets.password.key . }}
+        {{- else if .Values.database.password }}
+            {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory-ha.fullname" . }}-database-creds
+            {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+            {{- end }}
+              key: db-password
+        {{- else if .Values.postgresql.enabled }}
+              name: {{ .Release.Name }}-postgresql
+              key: postgresql-password
+        {{- end }}
+      {{- end }}
+      {{- if or .Values.database.secrets.url .Values.database.url }}
+        - name: JF_SHARED_DATABASE_URL
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.url }}
+              name: {{ tpl .Values.database.secrets.url.name . }}
+              key: {{ tpl .Values.database.secrets.url.key . }}
+        {{- else if .Values.database.url }}
+            {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory-ha.fullname" . }}-database-creds
+            {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+            {{- end }}
+              key: db-url
+        {{- end }}
+      {{- end }}
+{{- with .Values.metadata.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 8 }}
+{{- end }}
+        volumeMounts:
+      {{- if or .Values.artifactory.customVolumeMounts .Values.global.customVolumeMounts }}
+{{ tpl (include "artifactory-ha.customVolumeMounts" .) . | indent 8 }}
+      {{- end }}
+        - name: volume
+          mountPath: {{ .Values.artifactory.persistence.mountPath | quote }}
+        resources:
+{{ toYaml .Values.metadata.resources | indent 10 }}
+      {{- if .Values.metadata.startupProbe.enabled }}
+        startupProbe:
+{{ tpl .Values.metadata.startupProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.metadata.livenessProbe.enabled }}
+        livenessProbe:
+{{ tpl .Values.metadata.livenessProbe.config . | indent 10 }}
+      {{- end }}
+      {{- end }}
+      {{- if .Values.onemodel.enabled }}
+      - name: {{ .Values.onemodel.name }}
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "artifactory") }}
+        imagePullPolicy: {{ .Values.artifactory.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+          - '/bin/bash'
+          - '-c'
+          - >
+            exec /opt/jfrog/artifactory/app/onemodel/bin/entrypoint-onemodel.sh start
+        {{- with .Values.onemodel.lifecycle }}
+        lifecycle:
+{{ toYaml . | indent 10 }}
+        {{- end }}
+        env:
+        - name: JF_SHARED_NODE_ID
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: JF_ONEMODEL_LISTENADDR
+          value: "0.0.0.0"
+{{- with .Values.onemodel.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 8 }}
+{{- end }}
+        volumeMounts:
+      {{- if or .Values.artifactory.customVolumeMounts .Values.global.customVolumeMounts }}
+{{ tpl (include "artifactory-ha.customVolumeMounts" .) . | indent 8 }}
+      {{- end }}
+        - name: volume
+          mountPath: {{ .Values.artifactory.persistence.mountPath | quote }}
+        resources:
+{{ toYaml .Values.onemodel.resources | indent 10 }}
+      {{- if .Values.onemodel.startupProbe.enabled }}
+        startupProbe:
+{{ tpl .Values.onemodel.startupProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.onemodel.livenessProbe.enabled }}
+        livenessProbe:
+{{ tpl .Values.onemodel.livenessProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.onemodel.readinessProbe.enabled }}
+        readinessProbe:
+{{ tpl .Values.onemodel.readinessProbe.config . | indent 10 }}
+      {{- end }}
+      {{- end }}
+      {{- if .Values.event.enabled }}
+      - name: {{ .Values.event.name }}
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "artifactory") }}
+        imagePullPolicy: {{ .Values.artifactory.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+          - '/bin/bash'
+          - '-c'
+          - >
+            exec /opt/jfrog/artifactory/app/event/bin/jf-event start
+        {{- with .Values.event.lifecycle }}
+        lifecycle:
+{{ toYaml . | indent 10 }}
+        {{- end }}
+        env:
+        - name: JF_SHARED_NODE_ID
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+{{- with .Values.event.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 8 }}
+{{- end }}
+        volumeMounts:
+      {{- if or .Values.artifactory.customVolumeMounts .Values.global.customVolumeMounts }}
+{{ tpl (include "artifactory-ha.customVolumeMounts" .) . | indent 8 }}
+      {{- end }}
+        - name: volume
+          mountPath: {{ .Values.artifactory.persistence.mountPath | quote }}
+        resources:
+{{ toYaml .Values.event.resources | indent 10 }}
+      {{- if .Values.event.startupProbe.enabled }}
+        startupProbe:
+{{ tpl .Values.event.startupProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.event.livenessProbe.enabled }}
+        livenessProbe:
+{{ tpl .Values.event.livenessProbe.config . | indent 10 }}
+      {{- end }}
+      {{- end }}
+      {{- if .Values.jfconnect.enabled }}
+      - name: {{ .Values.jfconnect.name }}
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "artifactory") }}
+        imagePullPolicy: {{ .Values.artifactory.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+          - '/bin/bash'
+          - '-c'
+          - >
+            exec /opt/jfrog/artifactory/app/jfconnect/bin/jf-connect start
+        {{- with .Values.jfconnect.lifecycle }}
+        lifecycle:
+{{ toYaml . | indent 10 }}
+        {{- end }}
+        env:
+        - name: JF_SHARED_NODE_ID
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+{{- with .Values.jfconnect.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 8 }}
+{{- end }}
+        volumeMounts:
+      {{- if or .Values.artifactory.customVolumeMounts .Values.global.customVolumeMounts }}
+{{ tpl (include "artifactory-ha.customVolumeMounts" .) . | indent 8 }}
+      {{- end }}
+        - name: volume
+          mountPath: {{ .Values.artifactory.persistence.mountPath | quote }}
+        resources:
+{{ toYaml .Values.jfconnect.resources | indent 10 }}
+      {{- if .Values.jfconnect.startupProbe.enabled }}
+        startupProbe:
+{{ tpl .Values.jfconnect.startupProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.jfconnect.livenessProbe.enabled }}
+        livenessProbe:
+{{ tpl .Values.jfconnect.livenessProbe.config . | indent 10 }}
+      {{- end }}
+      {{- end }}
+      {{- if .Values.topology.enabled }}
+      - name: {{ .Values.topology.name }}
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "artifactory") }}
+        imagePullPolicy: {{ .Values.artifactory.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+          - '/bin/bash'
+          - '-c'
+          - >
+            exec /opt/jfrog/artifactory/app/topology/bin/entrypoint-topology.sh
+        {{- with .Values.topology.lifecycle }}
+        lifecycle:
+{{ toYaml . | indent 10 }}
+        {{- end }}
+        env:
+        - name: JF_SHARED_NODE_ID
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+      {{- if or .Values.database.secrets.user .Values.database.user }}
+        - name: JF_SHARED_DATABASE_USERNAME
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.user }}
+              name: {{ tpl .Values.database.secrets.user.name . }}
+              key: {{ tpl .Values.database.secrets.user.key . }}
+        {{- else if .Values.database.user }}
+            {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory-ha.fullname" . }}-database-creds
+            {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+            {{- end }}
+              key: db-user
+        {{- end }}
+      {{- end }}
+      {{ if or .Values.database.secrets.password .Values.database.password .Values.postgresql.enabled }}
+        - name: JF_SHARED_DATABASE_PASSWORD
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.password }}
+              name: {{ tpl .Values.database.secrets.password.name . }}
+              key: {{ tpl .Values.database.secrets.password.key . }}
+        {{- else if .Values.database.password }}
+            {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory-ha.fullname" . }}-database-creds
+            {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+            {{- end }}
+              key: db-password
+        {{- else if .Values.postgresql.enabled }}
+              name: {{ .Release.Name }}-postgresql
+              key: postgresql-password
+        {{- end }}
+      {{- end }}
+      {{- if or .Values.database.secrets.url .Values.database.url }}
+        - name: JF_SHARED_DATABASE_URL
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.url }}
+              name: {{ tpl .Values.database.secrets.url.name . }}
+              key: {{ tpl .Values.database.secrets.url.key . }}
+        {{- else if .Values.database.url }}
+            {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory-ha.fullname" . }}-database-creds
+            {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+            {{- end }}
+              key: db-url
+        {{- end }}
+      {{- end }}
+{{- with .Values.topology.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 8 }}
+{{- end }}
+        ports:
+        - containerPort: {{ .Values.topology.internalPort }}
+          name: http-topology
+        volumeMounts:
+      {{- if or .Values.artifactory.customVolumeMounts .Values.global.customVolumeMounts }}
+{{ tpl (include "artifactory-ha.customVolumeMounts" .) . | indent 8 }}
+      {{- end }}
+        - name: volume
+          mountPath: {{ .Values.artifactory.persistence.mountPath | quote }}
+        resources:
+{{ toYaml .Values.topology.resources | indent 10 }}
+      {{- if .Values.topology.startupProbe.enabled }}
+        startupProbe:
+{{ tpl .Values.topology.startupProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.topology.readinessProbe.enabled }}
+        readinessProbe:
+{{ tpl .Values.topology.readinessProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.topology.livenessProbe.enabled }}
+        livenessProbe:
+{{ tpl .Values.topology.livenessProbe.config . | indent 10 }}
+      {{- end }}
+      {{- end }}
+      {{- if .Values.observability.enabled }}
+      - name: {{ .Values.observability.name }}
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "observability") }}
+        imagePullPolicy: {{ .Values.artifactory.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+          - '/bin/bash'
+          - '-c'
+          - >
+            exec /opt/jfrog/artifactory/app/observability/bin/jf-observability start
+        {{- with .Values.observability.lifecycle }}
+        lifecycle:
+{{ toYaml . | indent 10 }}
+        {{- end }}
+        env:
+        - name: JF_SHARED_NODE_ID
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+{{- with .Values.observability.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 8 }}
+{{- end }}
+        volumeMounts:
+      {{- if or .Values.artifactory.customVolumeMounts .Values.global.customVolumeMounts }}
+{{ tpl (include "artifactory-ha.customVolumeMounts" .) . | indent 8 }}
+      {{- end }}
+        - name: volume
+          mountPath: {{ .Values.artifactory.persistence.mountPath | quote }}
+        resources:
+{{ toYaml .Values.observability.resources | indent 10 }}
+      {{- if .Values.observability.startupProbe.enabled }}
+        startupProbe:
+{{ tpl .Values.observability.startupProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.observability.livenessProbe.enabled }}
+        livenessProbe:
+{{ tpl .Values.observability.livenessProbe.config . | indent 10 }}
+      {{- end }}
+      {{- end }}
+      {{- if and .Values.access.enabled (not (.Values.access.runOnArtifactoryTomcat | default false)) }}
+      - name: {{ .Values.access.name }}
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "artifactory") }}
+        imagePullPolicy: {{ .Values.artifactory.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+      {{- if .Values.access.resources }}
+        resources:
+{{ toYaml .Values.access.resources | indent 10 }}
+      {{- end }}
+        command:
+        - '/bin/bash'
+        - '-c'
+        - >
+          set -e;
+          {{- if .Values.access.preStartCommand }}
+          echo "Running custom preStartCommand command";
+          {{ tpl .Values.access.preStartCommand . }};
+          {{- end }}
+          exec /opt/jfrog/artifactory/app/access/bin/entrypoint-access.sh
+        {{- with .Values.access.lifecycle }}
+        lifecycle:
+{{ toYaml . | indent 10 }}
+        {{- end }}
+        env:
+      {{- if and (not .Values.waitForDatabase) (not .Values.postgresql.enabled) }}
+        - name: SKIP_WAIT_FOR_EXTERNAL_DB
+          value: "true"
+      {{- end }}
+      {{- if or .Values.database.secrets.user .Values.database.user }}
+        - name: JF_SHARED_DATABASE_USERNAME
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.user }}
+              name: {{ tpl .Values.database.secrets.user.name . }}
+              key: {{ tpl .Values.database.secrets.user.key . }}
+        {{- else if .Values.database.user }}
+              {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory-ha.fullname" . }}-database-creds
+              {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+              {{- end }}
+              key: db-user
+        {{- end }}
+      {{- end }}
+      {{ if or .Values.database.secrets.password .Values.database.password .Values.postgresql.enabled }}
+        - name: JF_SHARED_DATABASE_PASSWORD
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.password }}
+              name: {{ tpl .Values.database.secrets.password.name . }}
+              key: {{ tpl .Values.database.secrets.password.key . }}
+        {{- else if .Values.database.password }}
+              {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory-ha.fullname" . }}-database-creds
+              {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+              {{- end }}
+              key: db-password
+        {{- else if .Values.postgresql.enabled }}
+              name: {{ .Release.Name }}-postgresql
+              key: postgresql-password
+        {{- end }}
+      {{- end }}
+      {{- if or .Values.database.secrets.url .Values.database.url }}
+        - name: JF_SHARED_DATABASE_URL
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.url }}
+              name: {{ tpl .Values.database.secrets.url.name . }}
+              key: {{ tpl .Values.database.secrets.url.key . }}
+        {{- else if .Values.database.url }}
+              {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory-ha.fullname" . }}-database-creds
+              {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+              {{- end }}
+              key: db-url
+        {{- end }}
+      {{- end }}
+{{- with .Values.access.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 8 }}
+{{- end }}
+        volumeMounts:
+       {{- if .Values.artifactory.customPersistentVolumeClaim }}
+        - name: {{ .Values.artifactory.customPersistentVolumeClaim.name }}
+          mountPath: {{ .Values.artifactory.customPersistentVolumeClaim.mountPath }}
+       {{- end }}
+        {{- if .Values.artifactory.customPersistentPodVolumeClaim }}
+        - name: {{ .Values.artifactory.customPersistentPodVolumeClaim.name }}
+          mountPath: {{ .Values.artifactory.customPersistentPodVolumeClaim.mountPath }}
+        {{- end }}
+        {{- if .Values.aws.licenseConfigSecretName }}
+        - name: awsmp-product-license
+          mountPath: "/var/run/secrets/product-license"
+        {{- end }}
+        - name: volume
+          mountPath: "{{ .Values.artifactory.persistence.mountPath }}"
+
+      ######################## Artifactory persistence fs ##########################
+      {{- if eq .Values.artifactory.persistence.type "file-system" }}
+        {{- if .Values.artifactory.persistence.fileSystem.existingSharedClaim.enabled }}
+          {{- range $sharedClaimNumber, $e := until (.Values.artifactory.persistence.fileSystem.existingSharedClaim.numberOfExistingClaims|int) }}
+        - name: artifactory-ha-data-{{ $sharedClaimNumber }}
+          mountPath: "{{ tpl $.Values.artifactory.persistence.fileSystem.existingSharedClaim.dataDir $ }}/filestore{{ $sharedClaimNumber }}"
+          {{- end }}
+        - name: artifactory-ha-backup
+          mountPath: "{{ $.Values.artifactory.persistence.fileSystem.existingSharedClaim.backupDir }}"
+        {{- end }}
+      {{- end }}
+
+      ######################## Artifactory persistence nfs ##########################
+      {{- if eq .Values.artifactory.persistence.type "nfs" }}
+        - name: artifactory-ha-data
+          mountPath: "{{ .Values.artifactory.persistence.nfs.dataDir }}"
+        - name: artifactory-ha-backup
+          mountPath: "{{ .Values.artifactory.persistence.nfs.backupDir }}"
+      {{- else }}
+
+      ######################## Artifactory persistence binarystore Xml ##########################
+        {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.persistence.customBinarystoreXmlSecret }}
+        - name: binarystore-xml
+        {{- else }}
+        - name: {{ include "artifactory-ha.unifiedCustomSecretVolumeName" . }}
+        {{- end }}
+          mountPath: "/tmp/etc/artifactory/binarystore.xml"
+          subPath: binarystore.xml
+
+      ######################## Artifactory persistence google storage ##########################
+      {{- if .Values.artifactory.persistence.googleStorage.gcpServiceAccount.enabled }}
+        {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.persistence.googleStorage.gcpServiceAccount.customSecretName }}
+        - name: gcpcreds-json
+        {{- else }}
+        - name: {{ include "artifactory-ha.unifiedCustomSecretVolumeName" . }}
+        {{- end }}
+          mountPath: "/artifactory_bootstrap/gcp.credentials.json"
+          subPath: gcp.credentials.json
+      {{- end }}
+
+      ######################## Artifactory ConfigMap ##########################
+      {{- if .Values.artifactory.configMapName }}
+        - name: bootstrap-config
+          mountPath: "/bootstrap/"
+      {{- end }}
+
+      ######################## Artifactory license ##########################
+      {{- if or .Values.artifactory.license.secret .Values.artifactory.license.licenseKey }}
+        {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.license.secret }}
+        - name: artifactory-license
+        {{- else }}
+        - name: {{ include "artifactory-ha.unifiedCustomSecretVolumeName" . }}
+        {{- end }}
+          mountPath: "/artifactory_bootstrap/artifactory.cluster.license"
+          {{- if .Values.artifactory.license.secret }}
+          subPath: {{ .Values.artifactory.license.dataKey }}
+          {{- else if .Values.artifactory.license.licenseKey }}
+          subPath: artifactory.lic
+          {{- end }}
+      {{- end }}
+    {{- end }}
+      {{- if or .Values.artifactory.customVolumeMounts .Values.global.customVolumeMounts }}
+{{ tpl (include "artifactory-ha.customVolumeMounts" .) . | indent 8 }}
+      {{- end }}
+      {{- if .Values.access.startupProbe.enabled }}
+        startupProbe:
+{{ tpl .Values.access.startupProbe.config . | indent 10 }}
+        {{- end }}
+    {{- if semverCompare "<v1.20.0-0" .Capabilities.KubeVersion.Version }}   
+        {{- if .Values.access.readinessProbe.enabled }}
+        readinessProbe:
+{{ tpl .Values.access.readinessProbe.config . | indent 10 }}
+        {{- end }}
+    {{- end }}
+      {{- if .Values.access.livenessProbe.enabled }}
+        livenessProbe:
+{{ tpl .Values.access.livenessProbe.config . | indent 10 }}
+        {{- end }}
+      {{- end }}
+    {{- end }}
+      - name: {{ .Values.artifactory.name }}
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "artifactory") }}
+        imagePullPolicy: {{ .Values.artifactory.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+        - '/bin/bash'
+        - '-c'
+        - >
+          set -e;
+        {{- range .Values.artifactory.copyOnEveryStartup }}
+          {{- $targetPath := printf "%s/%s" $.Values.artifactory.persistence.mountPath .target }}
+          {{- $baseDirectory := regexFind ".*/" $targetPath }}
+          mkdir -p {{ $baseDirectory }};
+          cp -Lrf {{ .source }} {{ $.Values.artifactory.persistence.mountPath }}/{{ .target }};
+        {{- end }}
+        {{- if .Values.artifactory.preStartCommand }}
+          echo "Running custom preStartCommand command";
+          {{ tpl .Values.artifactory.preStartCommand . }};
+        {{- end }}
+        {{- with .Values.artifactory.node.preStartCommand }}
+          echo "Running member node specific custom preStartCommand command";
+          {{ tpl . $ }};
+        {{- end }}
+          exec /entrypoint-artifactory.sh
+        {{- with .Values.artifactory.lifecycle }}
+        lifecycle:
+{{ toYaml . | indent 10 }}
+        {{- end }}
+        env:
+      {{- if .Values.aws.license.enabled }}
+        - name: IS_AWS_LICENSE
+          value: "true"
+        - name: AWS_REGION
+          value: {{ .Values.aws.region | quote }}
+      {{- if .Values.aws.licenseConfigSecretName }}
+        - name: AWS_WEB_IDENTITY_REFRESH_TOKEN_FILE
+          value: "/var/run/secrets/product-license/license_token"
+        - name: AWS_ROLE_ARN
+          valueFrom:
+            secretKeyRef:
+              name: {{ .Values.aws.licenseConfigSecretName }}
+              key: iam_role
+      {{- end }}
+      {{- end }}
+      {{- if .Values.splitServicesToContainers }}
+        - name : JF_ROUTER_ENABLED
+          value: "true"
+        - name : JF_ROUTER_SERVICE_ENABLED
+          value: "false"
+        - name : JF_EVENT_ENABLED
+          value: "false"
+        - name : JF_METADATA_ENABLED
+          value: "false"
+        - name : JF_FRONTEND_ENABLED
+          value: "false"
+        - name: JF_FEDERATION_ENABLED
+          value: "false"
+        - name : JF_OBSERVABILITY_ENABLED
+          value: "false"
+        - name : JF_JFCONNECT_SERVICE_ENABLED
+          value: "false"
+        - name : JF_EVIDENCE_ENABLED
+          value: "false"
+        - name : JF_ONEMODEL_ENABLED
+          value: "false"
+        {{- if not (.Values.access.runOnArtifactoryTomcat | default false) }}
+        - name : JF_ACCESS_ENABLED
+          value: "false"
+        {{- end}}
+        - name: JF_TOPOLOGY_SPLIT_CONTAINER_ENABLED
+          value: "true"
+      {{- end }}
+      {{- if and (not .Values.waitForDatabase) (not .Values.postgresql.enabled) }}
+        - name: SKIP_WAIT_FOR_EXTERNAL_DB
+          value: "true"
+      {{- end }}
+      {{- if or .Values.database.secrets.user .Values.database.user }}
+        - name: JF_SHARED_DATABASE_USERNAME
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.user }}
+              name: {{ tpl .Values.database.secrets.user.name . }}
+              key: {{ tpl .Values.database.secrets.user.key . }}
+        {{- else if .Values.database.user }}
+            {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory-ha.fullname" . }}-database-creds
+            {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+            {{- end }}
+              key: db-user
+        {{- end }}
+      {{- end }}
+      {{ if or .Values.database.secrets.password .Values.database.password .Values.postgresql.enabled }}
+        - name: JF_SHARED_DATABASE_PASSWORD
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.password }}
+              name: {{ tpl .Values.database.secrets.password.name . }}
+              key: {{ tpl .Values.database.secrets.password.key . }}
+        {{- else if .Values.database.password }}
+            {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory-ha.fullname" . }}-database-creds
+            {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+            {{- end }}
+              key: db-password
+        {{- else if .Values.postgresql.enabled }}
+              name: {{ .Release.Name }}-postgresql
+              key: postgresql-password
+        {{- end }}
+      {{- end }}
+      {{- if or .Values.database.secrets.url .Values.database.url }}
+        - name: JF_SHARED_DATABASE_URL
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.url }}
+              name: {{ tpl .Values.database.secrets.url.name . }}
+              key: {{ tpl .Values.database.secrets.url.key . }}
+        {{- else if .Values.database.url }}
+            {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory-ha.fullname" . }}-database-creds
+            {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+            {{- end }}
+              key: db-url
+        {{- end }}
+      {{- end }}
+        - name: JF_SHARED_NODE_HAENABLED
+          value: "true"
+{{- with .Values.artifactory.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 8 }}
+{{- end }}
+        ports:
+        - containerPort: {{ .Values.artifactory.internalPort }}
+          name: http
+        - containerPort: {{ .Values.artifactory.internalArtifactoryPort }}
+          name: http-internal
+        {{- if .Values.artifactory.node.javaOpts.jmx.enabled }}
+        - containerPort: {{ .Values.artifactory.node.javaOpts.jmx.port }}
+          name: tcp-jmx
+        {{- end }}
+        {{- if .Values.artifactory.ssh.enabled }}
+        - containerPort: {{ .Values.artifactory.ssh.internalPort }}
+          name: tcp-ssh
+        {{- end }}
+        volumeMounts:
+       {{- if .Values.artifactory.customPersistentVolumeClaim }}
+        - name: {{ .Values.artifactory.customPersistentVolumeClaim.name }}
+          mountPath: {{ .Values.artifactory.customPersistentVolumeClaim.mountPath }}
+       {{- end }}
+        {{- if .Values.artifactory.customPersistentPodVolumeClaim }}
+        - name: {{ .Values.artifactory.customPersistentPodVolumeClaim.name }}
+          mountPath: {{ .Values.artifactory.customPersistentPodVolumeClaim.mountPath }}
+        {{- end }}
+        {{- if .Values.aws.licenseConfigSecretName }}
+        - name: awsmp-product-license
+          mountPath: "/var/run/secrets/product-license"
+        {{- end }}
+        - name: volume
+          mountPath: "{{ .Values.artifactory.persistence.mountPath }}"
+
+      ######################## Artifactory persistence fs ##########################
+      {{- if eq .Values.artifactory.persistence.type "file-system" }}
+        {{- if .Values.artifactory.persistence.fileSystem.existingSharedClaim.enabled }}
+          {{- range $sharedClaimNumber, $e := until (.Values.artifactory.persistence.fileSystem.existingSharedClaim.numberOfExistingClaims|int) }}
+        - name: artifactory-ha-data-{{ $sharedClaimNumber }}
+          mountPath: "{{ tpl $.Values.artifactory.persistence.fileSystem.existingSharedClaim.dataDir $ }}/filestore{{ $sharedClaimNumber }}"
+          {{- end }}
+        - name: artifactory-ha-backup
+          mountPath: "{{ $.Values.artifactory.persistence.fileSystem.existingSharedClaim.backupDir }}"
+        {{- end }}
+      {{- end }}
+
+      ######################## Artifactory persistence nfs ##########################
+      {{- if eq .Values.artifactory.persistence.type "nfs" }}
+        - name: artifactory-ha-data
+          mountPath: "{{ .Values.artifactory.persistence.nfs.dataDir }}"
+        - name: artifactory-ha-backup
+          mountPath: "{{ .Values.artifactory.persistence.nfs.backupDir }}"
+      {{- else }}
+
+      ######################## Artifactory persistence binarystore Xml ##########################
+        {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.persistence.customBinarystoreXmlSecret }}
+        - name: binarystore-xml
+        {{- else }}
+        - name: {{ include "artifactory-ha.unifiedCustomSecretVolumeName" . }}
+        {{- end }}
+          mountPath: "/tmp/etc/artifactory/binarystore.xml"
+          subPath: binarystore.xml
+
+      ######################## Artifactory persistence google storage ##########################
+      {{- if .Values.artifactory.persistence.googleStorage.gcpServiceAccount.enabled }}
+        {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.persistence.googleStorage.gcpServiceAccount.customSecretName }}
+        - name: gcpcreds-json
+        {{- else }}
+        - name: {{ include "artifactory-ha.unifiedCustomSecretVolumeName" . }}
+        {{- end }}
+          mountPath: "/artifactory_bootstrap/gcp.credentials.json"
+          subPath: gcp.credentials.json
+      {{- end }}
+
+      ######################## Artifactory ConfigMap ##########################
+      {{- if .Values.artifactory.configMapName }}
+        - name: bootstrap-config
+          mountPath: "/bootstrap/"
+      {{- end }}
+
+      ######################## Artifactory license ##########################
+      {{- if or .Values.artifactory.license.secret .Values.artifactory.license.licenseKey }}
+        {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.license.secret }}
+        - name: artifactory-license
+        {{- else }}
+        - name: {{ include "artifactory-ha.unifiedCustomSecretVolumeName" . }}
+        {{- end }}
+          mountPath: "/artifactory_bootstrap/artifactory.cluster.license"
+          {{- if .Values.artifactory.license.secret }}
+          subPath: {{ .Values.artifactory.license.dataKey }}
+          {{- else if .Values.artifactory.license.licenseKey }}
+          subPath: artifactory.lic
+          {{- end }}
+      {{- end }}
+    {{- end }}
+        - name: installer-info
+          mountPath: "/artifactory_bootstrap/info/installer-info.json"
+          subPath: installer-info.json
+      {{- if or .Values.artifactory.customVolumeMounts .Values.global.customVolumeMounts }}
+{{ tpl (include "artifactory-ha.customVolumeMounts" .) . | indent 8 }}
+      {{- end }}
+        resources:
+{{ toYaml .Values.artifactory.node.resources | indent 10 }}
+        {{- if .Values.artifactory.startupProbe.enabled }}
+        startupProbe:
+{{ tpl .Values.artifactory.startupProbe.config . | indent 10 }}
+        {{- end }}
+    {{- if and (not .Values.splitServicesToContainers) (semverCompare "<v1.20.0-0" .Capabilities.KubeVersion.Version) }}
+        {{- if .Values.artifactory.readinessProbe.enabled }}
+        readinessProbe:
+{{ tpl .Values.artifactory.readinessProbe.config . | indent 10 }}
+        {{- end }}
+    {{- end }}
+        {{- if .Values.artifactory.livenessProbe.enabled }}
+        livenessProbe:
+{{ tpl .Values.artifactory.livenessProbe.config . | indent 10 }}
+        {{- end }}
+      {{- $mountPath := .Values.artifactory.persistence.mountPath }}
+      {{- range .Values.artifactory.loggers }}
+      - name: {{ . | replace "_" "-" | replace "." "-" }}
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list $ "initContainers") }}
+        imagePullPolicy: {{ $.Values.initContainers.image.pullPolicy }}
+      {{- if $.Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit $.Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+          - 'sh'
+          - '-c'
+          - 'sh /scripts/tail-log.sh {{ $mountPath }}/log {{ . }}'
+        volumeMounts:
+        - name: volume
+          mountPath: {{ $mountPath }}
+        - name: tail-logger-script
+          mountPath: /scripts/tail-log.sh
+          subPath: tail-log.sh
+        resources:
+{{ toYaml $.Values.artifactory.loggersResources | indent 10 }}
+      {{- end }}
+      {{- if .Values.artifactory.catalinaLoggers }}
+      {{- range .Values.artifactory.catalinaLoggers }}
+      - name: {{ . | replace "_" "-" | replace "." "-" }}
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list $ "initContainers") }}
+        imagePullPolicy: {{ $.Values.initContainers.image.pullPolicy }}
+      {{- if $.Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit $.Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+        - 'sh'
+        - '-c'
+        - 'sh /scripts/tail-log.sh {{ $mountPath }}/log/tomcat {{ . }}'
+        volumeMounts:
+        - name: volume
+          mountPath: {{ $mountPath }}
+        - name: tail-logger-script
+          mountPath: /scripts/tail-log.sh
+          subPath: tail-log.sh
+        resources:
+{{ toYaml $.Values.artifactory.catalinaLoggersResources | indent 10 }}
+      {{- end }}
+      {{- end }}
+      {{- if .Values.filebeat.enabled }}
+      - name: {{ .Values.filebeat.name }}
+        image: "{{ .Values.filebeat.image.repository }}:{{ .Values.filebeat.image.version }}"
+        imagePullPolicy: {{ .Values.filebeat.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        args:
+        - "-e"
+        - "-E"
+        - "http.enabled=true"
+        env:
+{{- with .Values.filebeat.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 10 }}
+{{- end }}
+        volumeMounts:
+        - name: filebeat-config
+          mountPath: /usr/share/filebeat/filebeat.yml
+          readOnly: true
+          subPath: filebeat.yml
+        - name: volume
+          mountPath: "{{ .Values.artifactory.persistence.mountPath }}"
+        livenessProbe:
+{{ toYaml .Values.filebeat.livenessProbe | indent 10 }}
+        readinessProbe:
+{{ toYaml .Values.filebeat.readinessProbe | indent 10 }}
+        resources:
+{{ toYaml .Values.filebeat.resources | indent 10 }}
+      {{- end }}
+    {{- if or .Values.artifactory.customSidecarContainers .Values.global.customSidecarContainers }}
+{{ tpl (include "artifactory-ha.customSidecarContainers" .) . | indent 6 }}
+    {{- end }}
+    {{- if or .Values.artifactory.node.nodeSelector .Values.global.nodeSelector }}
+{{ tpl (include "artifactory.node.nodeSelector" .) . | indent 6 }}
+    {{- end }}
+    {{- if .Values.artifactory.node.affinity }}
+    {{- with .Values.artifactory.node.affinity }}
+      affinity:
+{{ toYaml . | indent 8 }}
+    {{- end }}
+    {{- else if eq .Values.artifactory.node.podAntiAffinity.type "soft" }}
+      affinity:
+        podAntiAffinity:
+          preferredDuringSchedulingIgnoredDuringExecution:
+          - weight: 100
+            podAffinityTerm:
+              topologyKey: {{ .Values.artifactory.node.podAntiAffinity.topologyKey }}
+              labelSelector:
+                matchLabels:
+                  app: {{ template "artifactory-ha.name" . }}
+                  release: {{ .Release.Name }}
+                  {{- if eq .Values.artifactory.service.pool "members" }}
+                  role: {{ template "artifactory-ha.node.name" . }}
+                  {{- end }}
+    {{- else if eq .Values.artifactory.node.podAntiAffinity.type "hard" }}
+      affinity:
+        podAntiAffinity:
+          requiredDuringSchedulingIgnoredDuringExecution:
+          - topologyKey: {{ .Values.artifactory.node.podAntiAffinity.topologyKey }}
+            labelSelector:
+              matchLabels:
+                app: {{ template "artifactory-ha.name" . }}
+                release: {{ .Release.Name }}
+                {{- if eq .Values.artifactory.service.pool "members" }}
+                role: {{ template "artifactory-ha.node.name" . }}
+                {{- end }}
+    {{- end }}
+    {{- with .Values.artifactory.node.tolerations }}
+      tolerations:
+{{ toYaml . | indent 8 }}
+    {{- end }}
+
+      volumes:
+      ########## External secrets ###########
+      {{- if or .Values.artifactory.customCertificates.enabled .Values.global.customCertificates.enabled }}
+      - name: ca-certs
+        secret:
+          secretName: {{ default .Values.global.customCertificates.certificateSecretName .Values.artifactory.customCertificates.certificateSecretName }}
+      {{- end }}
+
+      {{- if .Values.artifactory.circleOfTrustCertificatesSecret }}
+      - name: circle-of-trust-certs
+        secret:
+          secretName: {{ .Values.artifactory.circleOfTrustCertificatesSecret }}
+      {{- end }}
+
+      {{- if .Values.aws.licenseConfigSecretName }}
+      - name: awsmp-product-license
+        secret:
+          secretName: {{ .Values.aws.licenseConfigSecretName }}
+      {{- end }}
+      {{- if .Values.artifactory.persistence.customBinarystoreXmlSecret }}
+      - name: binarystore-xml
+        secret:
+          secretName: {{ .Values.artifactory.persistence.customBinarystoreXmlSecret }}
+      {{- end }}
+      {{- if .Values.systemYamlOverride.existingSecret }}
+      - name: systemyaml
+        secret:
+          secretName: {{ .Values.systemYamlOverride.existingSecret }}
+      {{- end }}
+      {{- if .Values.artifactory.license.secret }}
+      - name: artifactory-license
+        secret:
+          secretName: {{ .Values.artifactory.license.secret }}
+      {{- end }}
+
+      {{- if and .Values.artifactory.persistence.googleStorage.gcpServiceAccount.enabled .Values.artifactory.persistence.googleStorage.gcpServiceAccount.customSecretName }}
+      - name: gcpcreds-json
+        secret:
+          secretName: {{ .Values.artifactory.persistence.googleStorage.gcpServiceAccount.customSecretName }}
+      {{- end }}
+
+      ############ Config map, Volumes and Custom Volumes ##############
+      {{- if .Values.artifactory.migration.enabled }}
+      - name: migration-scripts
+        configMap:
+          name: {{ template "artifactory-ha.fullname" . }}-migration-scripts
+      {{- end }}
+      - name: installer-info
+        configMap:
+          name: {{ template "artifactory-ha.fullname" . }}-installer-info
+      {{- if .Values.artifactory.configMapName }}
+      - name: bootstrap-config
+        configMap:
+          name: {{ .Values.artifactory.configMapName }}
+      {{- end}}
+      {{- if or .Values.artifactory.loggers .Values.artifactory.catalinaLoggers }}
+      - name: tail-logger-script
+        configMap:
+          name: {{ template "artifactory-ha.fullname" . }}-logger
+      {{- end }}
+      {{- if .Values.artifactory.configMaps }}
+      - name: artifactory-configmaps
+        configMap:
+          name: {{ template "artifactory-ha.fullname" . }}-configmaps
+      {{- end }}
+
+      {{- if eq .Values.artifactory.persistence.type "file-system" }}
+        {{- if .Values.artifactory.persistence.fileSystem.existingSharedClaim.enabled }}
+          {{- range $sharedClaimNumber, $e := until (.Values.artifactory.persistence.fileSystem.existingSharedClaim.numberOfExistingClaims|int) }}
+      - name: artifactory-ha-data-{{ $sharedClaimNumber }}
+        persistentVolumeClaim:
+          claimName: {{ template "artifactory-ha.fullname" $ }}-data-pvc-{{ $sharedClaimNumber }}
+          {{- end }}
+      - name: artifactory-ha-backup
+        persistentVolumeClaim:
+          claimName: {{ template "artifactory-ha.fullname" $ }}-backup-pvc
+        {{- end }}
+      {{- end }}
+
+      {{- if eq .Values.artifactory.persistence.type "nfs" }}
+      - name: artifactory-ha-data
+        persistentVolumeClaim:
+          claimName: {{ template "artifactory-ha.fullname" . }}-data-pvc
+      - name: artifactory-ha-backup
+        persistentVolumeClaim:
+          claimName: {{ template "artifactory-ha.fullname" . }}-backup-pvc
+      {{- end }}
+
+      {{- if .Values.artifactory.customPersistentVolumeClaim }}
+      - name: {{ .Values.artifactory.customPersistentVolumeClaim.name }}
+        persistentVolumeClaim:
+          claimName: {{ .Values.artifactory.customPersistentVolumeClaim.name }}
+      {{- end }}
+      {{- if .Values.filebeat.enabled }}
+      - name: filebeat-config
+        configMap:
+          name: {{ template "artifactory-ha.fullname" . }}-filebeat-config
+      {{- end }}
+      {{- if and (or .Values.artifactory.customVolumes .Values.global.customVolumes) }}
+{{ tpl (include "artifactory-ha.customVolumes" .) . | indent 6 }}
+      {{- end }}
+  {{- if not .Values.artifactory.persistence.enabled }}
+      - name: volume
+        emptyDir:
+          sizeLimit: {{ .Values.artifactory.persistence.size }}
+  {{- end }}
+
+      #########  unifiedSecretInstallation ###########
+    {{- if and .Values.artifactory.unifiedSecretInstallation (eq (include "artifactory-ha.checkDuplicateUnifiedCustomVolume" .) "false" ) }}
+      - name: {{ include "artifactory-ha.unifiedCustomSecretVolumeName" . }}
+        secret:
+          secretName: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+
+    {{- else if not .Values.artifactory.unifiedSecretInstallation }}
+
+      ############ If single secret installation flag is disable ############
+      {{- if and .Values.artifactory.persistence.googleStorage.gcpServiceAccount.enabled (not .Values.artifactory.persistence.googleStorage.gcpServiceAccount.customSecretName) }}
+      - name: gcpcreds-json
+        secret:
+          secretName: {{ template "artifactory-ha.fullname" . }}-gcpcreds
+      {{- end }}
+      {{- if and .Values.artifactory.license.licenseKey (not .Values.artifactory.license.secret) }}
+      - name: artifactory-license
+        secret:
+          secretName: {{ template "artifactory-ha.fullname" . }}-license
+      {{- end }}
+
+      {{- if and (not .Values.systemYamlOverride.existingSecret) }}
+      - name: systemyaml
+        secret:
+          secretName:  {{ template "artifactory-ha.primary.name" . }}-system-yaml
+      {{- end }}
+
+      {{- if not .Values.artifactory.persistence.customBinarystoreXmlSecret }}
+      - name: binarystore-xml
+        secret:
+          secretName: {{ template "artifactory-ha.fullname" . }}-binarystore
+      {{- end }}
+    {{- end }}
+
+  volumeClaimTemplates:
+  {{- if .Values.artifactory.persistence.enabled }}
+  - metadata:
+      name: volume
+    {{- if not .Values.artifactory.node.persistence.existingClaim }}
+    spec:
+      {{- if .Values.artifactory.persistence.storageClassName }}
+      {{- if (eq "-" .Values.artifactory.persistence.storageClassName) }}
+      storageClassName: ""
+      {{- else }}
+      storageClassName: "{{ .Values.artifactory.persistence.storageClassName }}"
+      {{- end }}
+      {{- end }}
+      accessModes: [ "{{ .Values.artifactory.persistence.accessMode }}" ]
+      resources:
+        requests:
+          storage: {{ .Values.artifactory.persistence.size }}
+    {{- end }}
+  {{- end }}
+  {{- if .Values.artifactory.customPersistentPodVolumeClaim }}
+  - metadata:
+      name: {{ .Values.artifactory.customPersistentPodVolumeClaim.name }}
+    spec:
+    {{- if .Values.artifactory.customPersistentPodVolumeClaim.storageClassName }}
+      {{- if (eq "-" .Values.artifactory.customPersistentPodVolumeClaim.storageClassName) }}
+      storageClassName: ""
+      {{- else }}
+      storageClassName: "{{ .Values.artifactory.customPersistentPodVolumeClaim.storageClassName }}"
+      {{- end }}
+    {{- end }}
+      accessModes:
+     {{- range .Values.artifactory.customPersistentPodVolumeClaim.accessModes }}
+        - {{ . | quote }}
+     {{- end }}
+      resources:
+        requests:
+          storage: {{ .Values.artifactory.customPersistentPodVolumeClaim.size }}
+  {{- end }}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-primary-pdb.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-primary-pdb.yaml
new file mode 100644
index 0000000000..da1c70e693
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-primary-pdb.yaml
@@ -0,0 +1,24 @@
+{{- if .Values.artifactory.primary.minAvailable -}}
+{{- if semverCompare "<v1.21.0-0" .Capabilities.KubeVersion.Version }}
+apiVersion: policy/v1beta1
+{{- else }}
+apiVersion: policy/v1
+{{- end }}
+kind: PodDisruptionBudget
+metadata:
+  name: {{ template "artifactory-ha.fullname" . }}-primary
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    component: {{ .Values.artifactory.name }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+spec:
+  selector:
+    matchLabels:
+      component: {{ .Values.artifactory.name }}
+      app: {{ template "artifactory-ha.name" . }}
+      role: {{ template "artifactory-ha.primary.name" . }}
+      release: {{ .Release.Name }}
+  minAvailable: {{ .Values.artifactory.primary.minAvailable }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-primary-service.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-primary-service.yaml
new file mode 100644
index 0000000000..1bd2ebb8c6
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-primary-service.yaml
@@ -0,0 +1,61 @@
+{{- if gt (.Values.artifactory.primary.replicaCount | int) 0  -}}
+# Internal service for Artifactory primary node only!
+# Used by member nodes to check readiness of primary node before starting up
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ template "artifactory-ha.primary.name" . }}
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    component: {{ .Values.artifactory.name }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+    {{- with .Values.artifactory.primary.labels }}
+{{ toYaml . | indent 4 }}
+    {{- end }}
+{{- with .Values.artifactory.primary.annotations }}
+  annotations:
+{{ toYaml . | indent 4 }}
+{{- end }}
+spec:
+  # Statically setting service type to ClusterIP since this is an internal only service
+  type: ClusterIP
+  {{- if and (eq .Values.artifactory.service.type "ClusterIP") .Values.artifactory.service.clusterIP }}
+  clusterIP: {{ .Values.artifactory.service.clusterIP }}
+  {{- end }}
+  {{- if .Values.artifactory.service.ipFamilyPolicy }}
+  ipFamilyPolicy: {{ .Values.artifactory.service.ipFamilyPolicy }}
+  {{- end }}
+  {{- if not (empty .Values.artifactory.service.ipFamilies)}}
+  ipFamilies: {{- toYaml .Values.artifactory.service.ipFamilies | nindent 4 }}
+  {{- end }}
+  ports:
+  - port: {{ .Values.artifactory.externalPort }}
+    targetPort: {{ .Values.artifactory.internalPort }}
+    protocol: TCP
+    name: http-router
+  - port: {{ .Values.artifactory.externalArtifactoryPort }}
+    targetPort: {{ .Values.artifactory.internalArtifactoryPort }}
+    protocol: TCP
+    name: http-artifactory
+  {{- if .Values.artifactory.ssh.enabled }}
+  - port: {{ .Values.artifactory.ssh.externalPort }}
+    targetPort: {{ .Values.artifactory.ssh.internalPort }}
+    protocol: TCP
+    name: tcp-ssh
+  {{- end }}
+  {{- with .Values.artifactory.primary.javaOpts.jmx }}
+  {{- if .enabled }}
+  - port: {{ .port }}
+    targetPort: {{ .port }}
+    protocol: TCP
+    name: tcp-jmx
+  {{- end }}
+  {{- end }}
+  selector:
+    role: {{ template "artifactory-ha.primary.name" . }}
+    app: {{ template "artifactory-ha.name" . }}
+    component: "{{ .Values.artifactory.name }}"
+    release: {{ .Release.Name }}
+{{- end -}}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-primary-statefulset.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-primary-statefulset.yaml
new file mode 100644
index 0000000000..e9b3596a8b
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-primary-statefulset.yaml
@@ -0,0 +1,1884 @@
+apiVersion: apps/v1
+kind: StatefulSet
+metadata:
+  name: {{ template "artifactory-ha.primary.name" . }}
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    component: {{ .Values.artifactory.name }}
+    version: {{ include "artifactory-ha.app.version" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+{{- if and .Release.IsUpgrade .Values.postgresql.enabled }}
+    databaseUpgradeReady: {{ required "\n\n*********\nIMPORTANT: UPGRADE STOPPED to prevent data loss!\nReview CHANGELOG.md (https://github.com/jfrog/charts/blob/master/stable/artifactory-ha/CHANGELOG.md) \nNote: This applies only when you are using bundled postgresql (postgresql.enabled=true) \nIf you are upgrading from a chart version (< 107.79.x) that has postgresql.image.tag of 9.x or 10.x or 12.x or 13.x, make sure to set the current postgresql.image.tag to the same tag and databaseUpgradeReady=true \nOR \nIf you are upgrading from a chart version (>= 107.79.x), just set databaseUpgradeReady=true \n" .Values.databaseUpgradeReady | quote }}
+{{- end }}
+{{- if .Values.artifactory.postStartCommand }}
+    {{- fail ".Values.artifactory.postStartCommand is not supported and should be replaced with .Values.artifactory.lifecycle.postStart.exec.command" }}
+{{- end }}
+{{- if eq .Values.artifactory.persistence.type "aws-s3" }}
+    {{- fail "\nPersistence storage type 'aws-s3' is deprecated and is not supported and should be replaced with 'aws-s3-v3'" }}
+{{- end }}
+{{- if or .Values.artifactory.persistence.googleStorage.identity .Values.artifactory.persistence.googleStorage.credential }}
+    {{- fail "\nGCP Bucket Authentication with Identity and Credential is deprecated" }}
+{{- end }}
+{{- if (eq (.Values.artifactory.setSecurityContext | toString) "false" ) }}
+    {{- fail "\n You need to set security context at the pod level. .Values.artifactory.setSecurityContext is no longer supported. Replace it with .Values.artifactory.podSecurityContext" }}
+{{- end }}
+{{- if or .Values.artifactory.uid .Values.artifactory.gid }}
+{{- if or (not (eq (.Values.artifactory.uid | toString) "1030" )) (not (eq (.Values.artifactory.gid | toString) "1030" )) }}
+    {{- fail "\n .Values.artifactory.uid and .Values.artifactory.gid are no longer supported. You need to set these values at the pod security context level. Replace them with .Values.artifactory.podSecurityContext.runAsUser, .Values.artifactory.podSecurityContext.runAsGroup and .Values.artifactory.podSecurityContext.fsGroup" }}
+{{- end }}
+{{- end }}
+{{- if or .Values.artifactory.fsGroupChangePolicy .Values.artifactory.seLinuxOptions }}
+    {{- fail "\n .Values.artifactory.fsGroupChangePolicy and .Values.artifactory.seLinuxOptions are no longer supported. You need to set these values at the pod security context level. Replace them with .Values.artifactory.podSecurityContext.fsGroupChangePolicy and .Values.artifactory.podSecurityContext.seLinuxOptions" }}
+{{- end }}
+{{- if .Values.initContainerImage }}
+    {{- fail "\n .Values.initContainerImage is no longer supported. Replace it with .Values.initContainers.image.registry .Values.initContainers.image.repository and .Values.initContainers.image.tag" }}
+{{- end }}
+{{- if and (eq .Values.rtfs.enabled true) (ne .Values.database.type "postgresql") (not (empty .Values.database.type))}}
+    {{- fail "\n RTFS supports only PostgreSQL databases and is not compatible with other databases. If you are currently using a different database, disable RTFS." }}
+{{- end }}
+{{- with .Values.artifactory.primary.labels }}
+{{ toYaml . | indent 4 }}
+{{- end }}
+{{- with .Values.artifactory.statefulset.annotations }}
+  annotations:
+{{ toYaml . | indent 4 }}
+{{- end }}
+spec:
+  serviceName: {{ template "artifactory-ha.primary.name" . }}
+  replicas: {{ .Values.artifactory.primary.replicaCount }}
+  updateStrategy: {{- toYaml .Values.artifactory.primary.updateStrategy | nindent 4}}
+  selector:
+    matchLabels:
+      app: {{ template "artifactory-ha.name" . }}
+      role: {{ template "artifactory-ha.primary.name" . }}
+      release: {{ .Release.Name }}
+  template:
+    metadata:
+      labels:
+        app: {{ template "artifactory-ha.name" . }}
+        chart: {{ template "artifactory-ha.chart" . }}
+        role: {{ template "artifactory-ha.primary.name" . }}
+        component: {{ .Values.artifactory.name }}
+        heritage: {{ .Release.Service }}
+        release: {{ .Release.Name }}
+        {{- with .Values.artifactory.primary.labels }}
+{{ toYaml . | indent 8 }}
+        {{- end }}
+      annotations:
+      {{- if not .Values.artifactory.unifiedSecretInstallation }}
+        checksum/database-secrets: {{ include (print $.Template.BasePath "/artifactory-database-secrets.yaml") . | sha256sum }}
+        checksum/binarystore: {{ include (print $.Template.BasePath "/artifactory-binarystore-secret.yaml") . | sha256sum }}
+        checksum/systemyaml: {{ include (print $.Template.BasePath "/artifactory-system-yaml.yaml") . | sha256sum }}
+      {{- if .Values.access.accessConfig }}
+        checksum/access-config: {{ include (print $.Template.BasePath "/artifactory-access-config.yaml") . | sha256sum }}
+      {{- end }}
+      {{- if .Values.artifactory.persistence.googleStorage.gcpServiceAccount.enabled }}
+        checksum/gcpcredentials: {{ include (print $.Template.BasePath "/artifactory-gcp-credentials-secret.yaml") . | sha256sum }}
+      {{- end }}
+      {{- if not (and .Values.artifactory.admin.secret .Values.artifactory.admin.dataKey) }}
+        checksum/admin-creds: {{ include (print $.Template.BasePath "/admin-bootstrap-creds.yaml") . | sha256sum }}
+      {{- end }}
+      {{- else }}
+        checksum/artifactory-unified-secret: {{ include (print $.Template.BasePath "/artifactory-unified-secret.yaml") . | sha256sum }}
+      {{- end }}
+      {{- with .Values.artifactory.annotations }}
+{{ toYaml . | indent 8 }}
+      {{- end }}
+    spec:
+    {{- if .Values.artifactory.schedulerName }}
+      schedulerName: {{ .Values.artifactory.schedulerName | quote }}
+    {{- end }}
+    {{- if .Values.artifactory.priorityClass.existingPriorityClass }}
+      priorityClassName: {{ .Values.artifactory.priorityClass.existingPriorityClass }}
+    {{- else -}}
+      {{- if .Values.artifactory.priorityClass.create }}
+      priorityClassName: {{ default (include "artifactory-ha.fullname" .) .Values.artifactory.priorityClass.name }}
+      {{- end }}
+    {{- end }}
+      serviceAccountName: {{ template "artifactory-ha.serviceAccountName" . }}
+      terminationGracePeriodSeconds: {{ add .Values.artifactory.terminationGracePeriodSeconds 10 }}
+    {{- if or .Values.imagePullSecrets .Values.global.imagePullSecrets }}
+{{- include "artifactory-ha.imagePullSecrets" . | indent 6 }}
+    {{- end }}
+      {{- if .Values.artifactory.podSecurityContext.enabled }}
+      securityContext: {{- omit .Values.artifactory.podSecurityContext "enabled" | toYaml | nindent 8 }}
+      {{- end }}
+      {{- if .Values.artifactory.topologySpreadConstraints }}
+      topologySpreadConstraints:
+{{ tpl (toYaml .Values.artifactory.topologySpreadConstraints) . | indent 8 }}
+      {{- end }}
+      initContainers:
+    {{- if or .Values.artifactory.customInitContainersBegin .Values.global.customInitContainersBegin }}
+{{ tpl (include "artifactory-ha.customInitContainersBegin" .)  . | indent 6 }}
+    {{- end }}
+  {{- if .Values.artifactory.persistence.enabled }}
+    {{- if eq .Values.artifactory.persistence.type "file-system" }}
+      {{- if .Values.artifactory.persistence.fileSystem.existingSharedClaim.enabled }}
+      - name: "create-artifactory-data-dir"
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "initContainers") }}
+        imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        resources:
+{{ toYaml .Values.initContainers.resources | indent 10 }}
+        command:
+        - 'bash'
+        - '-c'
+        - >
+          mkdir -p {{ tpl .Values.artifactory.persistence.fileSystem.existingSharedClaim.dataDir . }};
+        volumeMounts:
+        - mountPath: {{ .Values.artifactory.persistence.mountPath | quote }}
+          name: volume
+      {{- end }}
+    {{- end }}
+      {{- if .Values.artifactory.deleteDBPropertiesOnStartup }}
+      - name: "delete-db-properties"
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "initContainers") }}
+        imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        resources:
+{{ toYaml .Values.initContainers.resources | indent 10 }}
+        command:
+        - 'bash'
+        - '-c'
+        - 'rm -fv {{ .Values.artifactory.persistence.mountPath }}/etc/db.properties'
+        volumeMounts:
+        - mountPath: {{ .Values.artifactory.persistence.mountPath | quote }}
+          name: volume
+      {{- end }}
+    {{- if or (and .Values.artifactory.admin.secret .Values.artifactory.admin.dataKey) .Values.artifactory.admin.password }}
+      - name: "access-bootstrap-creds"
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "initContainers") }}
+        imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        resources:
+{{ toYaml .Values.initContainers.resources | indent 10 }}
+        command:
+          - 'bash'
+          - '-c'
+          - >
+            echo "Preparing {{ .Values.artifactory.persistence.mountPath }}/etc/access/bootstrap.creds";
+            mkdir -p {{ .Values.artifactory.persistence.mountPath }}/etc/access;
+            cp -Lrf /tmp/access/bootstrap.creds {{ .Values.artifactory.persistence.mountPath }}/etc/access/bootstrap.creds;
+            chmod 600 {{ .Values.artifactory.persistence.mountPath }}/etc/access/bootstrap.creds;
+        volumeMounts:
+          - name: volume
+            mountPath: "{{ .Values.artifactory.persistence.mountPath }}"
+          {{- if or (not .Values.artifactory.unifiedSecretInstallation) (and .Values.artifactory.admin.secret .Values.artifactory.admin.dataKey) }}
+          - name: access-bootstrap-creds
+          {{- else }}
+          - name: {{ include "artifactory-ha.unifiedCustomSecretVolumeName" . }}
+          {{- end }}
+            mountPath: "/tmp/access/bootstrap.creds"
+            {{- if and .Values.artifactory.admin.secret .Values.artifactory.admin.dataKey }}
+            subPath: {{ .Values.artifactory.admin.dataKey }}
+            {{- else }}
+            subPath: bootstrap.creds
+            {{- end }}
+    {{- end }}
+  {{- end }}
+      - name: 'copy-system-configurations'
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "initContainers") }}
+        imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        resources:
+{{ toYaml .Values.initContainers.resources | indent 10 }}
+        command:
+        - '/bin/bash'
+        - '-c'
+        - >
+          if [[ -e "{{ .Values.artifactory.persistence.mountPath }}/etc/filebeat.yaml" ]]; then chmod 644 {{ .Values.artifactory.persistence.mountPath }}/etc/filebeat.yaml; fi;
+          echo "Copy system.yaml to {{ .Values.artifactory.persistence.mountPath }}/etc";
+          mkdir -p {{ .Values.artifactory.persistence.mountPath }}/etc;
+          mkdir -p {{ .Values.artifactory.persistence.mountPath }}/etc/access/keys/trusted;
+          {{- if .Values.systemYamlOverride.existingSecret }}
+          cp -fv /tmp/etc/{{ .Values.systemYamlOverride.dataKey }} {{ .Values.artifactory.persistence.mountPath }}/etc/system.yaml;
+          {{- else }}
+          cp -fv /tmp/etc/system.yaml {{ .Values.artifactory.persistence.mountPath }}/etc/system.yaml;
+          {{- end }}
+          echo "Copy binarystore.xml file";
+          mkdir -p {{ .Values.artifactory.persistence.mountPath }}/etc/artifactory;
+          cp -fv /tmp/etc/artifactory/binarystore.xml {{ .Values.artifactory.persistence.mountPath }}/etc/artifactory/binarystore.xml;
+        {{- if .Values.access.accessConfig }}
+          echo "Copy access.config.patch.yml to {{ .Values.artifactory.persistence.mountPath }}/etc/access";
+          mkdir -p {{ .Values.artifactory.persistence.mountPath }}/etc/access;
+          cp -fv /tmp/etc/access.config.patch.yml {{ .Values.artifactory.persistence.mountPath }}/etc/access/access.config.patch.yml;
+        {{- end }}
+        {{- if .Values.access.resetAccessCAKeys }}
+          echo "Resetting Access CA Keys";
+          mkdir -p {{ .Values.artifactory.persistence.mountPath }}/bootstrap/etc/access/keys;
+          touch {{ .Values.artifactory.persistence.mountPath }}/bootstrap/etc/access/keys/reset_ca_keys;
+        {{- end }}
+        {{- if .Values.access.customCertificatesSecretName }}
+          echo "Copying custom certificates to {{ .Values.artifactory.persistence.mountPath }}/bootstrap/etc/access/keys";
+          mkdir -p {{ .Values.artifactory.persistence.mountPath }}/bootstrap/etc/access/keys;
+          cp -fv /tmp/etc/tls.crt {{ .Values.artifactory.persistence.mountPath }}/bootstrap/etc/access/keys/ca.crt;
+          cp -fv /tmp/etc/tls.key {{ .Values.artifactory.persistence.mountPath }}/bootstrap/etc/access/keys/ca.private.key;
+        {{- end }}
+        {{- if .Values.jfconnect.customCertificatesSecretName }}
+          echo "Copying custom certificates to {{ .Values.artifactory.persistence.mountPath }}/bootstrap/jfconnect/etc/keys";
+          mkdir -p {{ .Values.artifactory.persistence.mountPath }}/bootstrap/jfconnect/etc/keys;
+          cp -fv /tmp/etc/tls.crt {{ .Values.artifactory.persistence.mountPath }}/bootstrap/jfconnect/etc/keys/;
+          cp -fv /tmp/etc/tls.cer {{ .Values.artifactory.persistence.mountPath }}/bootstrap/jfconnect/etc/keys/;
+          cp -fv /tmp/etc/tls.pem {{ .Values.artifactory.persistence.mountPath }}/bootstrap/jfconnect/etc/keys/;
+          cp -fv /tmp/etc/tls.key {{ .Values.artifactory.persistence.mountPath }}/bootstrap/jfconnect/etc/keys/;
+        {{- end }}
+        {{- if or .Values.artifactory.joinKey .Values.global.joinKey .Values.artifactory.joinKeySecretName .Values.global.joinKeySecretName }}
+          echo "Copy joinKey to {{ .Values.artifactory.persistence.mountPath }}/bootstrap/access/etc/security";
+          mkdir -p {{ .Values.artifactory.persistence.mountPath }}/bootstrap/access/etc/security;
+          echo -n ${ARTIFACTORY_JOIN_KEY} > {{ .Values.artifactory.persistence.mountPath }}/bootstrap/access/etc/security/join.key;
+        {{- end }}
+        {{- if or .Values.artifactory.jfConnectToken .Values.artifactory.jfConnectTokenSecretName }}
+          echo "Copy jfConnectToken to {{ .Values.artifactory.persistence.mountPath }}/bootstrap/jfconnect/registration_token";
+          mkdir -p {{ .Values.artifactory.persistence.mountPath }}/bootstrap/jfconnect/;
+          echo -n ${ARTIFACTORY_JFCONNECT_TOKEN} > {{ .Values.artifactory.persistence.mountPath }}/bootstrap/jfconnect/registration_token;
+        {{- end }}
+        {{- if or .Values.artifactory.masterKey .Values.global.masterKey .Values.artifactory.masterKeySecretName .Values.global.masterKeySecretName }}
+          echo "Copy masterKey to {{ .Values.artifactory.persistence.mountPath }}/etc/security";
+          mkdir -p {{ .Values.artifactory.persistence.mountPath }}/etc/security;
+          echo -n ${ARTIFACTORY_MASTER_KEY} > {{ .Values.artifactory.persistence.mountPath }}/etc/security/master.key;
+        {{- end }}
+        env:
+        {{- if or .Values.artifactory.joinKey .Values.global.joinKey .Values.artifactory.joinKeySecretName .Values.global.joinKeySecretName }}
+        - name: ARTIFACTORY_JOIN_KEY
+          valueFrom:
+            secretKeyRef:
+            {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.joinKeySecretName .Values.global.joinKeySecretName }}
+              name: {{ include "artifactory-ha.joinKeySecretName" . }}
+            {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+            {{- end }}
+              key: join-key
+        {{- end }}
+        {{- if or .Values.artifactory.jfConnectToken .Values.artifactory.jfConnectTokenSecretName }}
+        - name: ARTIFACTORY_JFCONNECT_TOKEN
+          valueFrom:
+            secretKeyRef:
+            {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.jfConnectTokenSecretName }}
+              name: {{ include "artifactory-ha.jfConnectTokenSecretName" . }}
+            {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+            {{- end }}
+              key: jfconnect-token
+        {{- end }}
+        {{- if or .Values.artifactory.masterKey .Values.global.masterKey .Values.artifactory.masterKeySecretName .Values.global.masterKeySecretName }}
+        - name: ARTIFACTORY_MASTER_KEY
+          valueFrom:
+            secretKeyRef:
+            {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.masterKeySecretName .Values.global.masterKeySecretName }}
+              name: {{ include "artifactory-ha.masterKeySecretName" . }}
+            {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+            {{- end }}
+              key: master-key
+        {{- end }}
+
+      ######################## Volume Mounts For copy-system-configurations ##########################
+        volumeMounts:
+        - name: volume
+          mountPath: {{ .Values.artifactory.persistence.mountPath | quote }}
+
+      ######################## SystemYaml ##########################
+        {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.systemYamlOverride.existingSecret }}
+        - name: systemyaml
+        {{- else }}
+        - name: {{ include "artifactory-ha.unifiedCustomSecretVolumeName" . }}
+        {{- end }}
+          {{- if .Values.systemYamlOverride.existingSecret }}
+          mountPath: "/tmp/etc/{{.Values.systemYamlOverride.dataKey}}"
+          subPath: {{ .Values.systemYamlOverride.dataKey }}
+          {{- else }}
+          mountPath: "/tmp/etc/system.yaml"
+          subPath: system.yaml
+          {{- end }}
+
+      ######################## Binarystore  ##########################
+        {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.persistence.customBinarystoreXmlSecret }}
+        - name: binarystore-xml
+        {{- else }}
+        - name: {{ include "artifactory-ha.unifiedCustomSecretVolumeName" . }}
+        {{- end }}
+          mountPath: "/tmp/etc/artifactory/binarystore.xml"
+          subPath: binarystore.xml
+
+      ######################## Access config  ##########################
+      {{- if .Values.access.accessConfig }}
+        {{- if not .Values.artifactory.unifiedSecretInstallation }}
+        - name: access-config
+        {{- else }}
+        - name: {{ include "artifactory-ha.unifiedCustomSecretVolumeName" . }}
+        {{- end }}
+          mountPath: "/tmp/etc/access.config.patch.yml"
+          subPath: access.config.patch.yml
+      {{- end }}
+
+      ######################## Access certs external secret  ##########################
+      {{- if .Values.access.customCertificatesSecretName }}
+        - name: access-certs
+          mountPath: "/tmp/etc/tls.crt"
+          subPath: tls.crt
+        - name: access-certs
+          mountPath: "/tmp/etc/tls.key"
+          subPath: tls.key
+      {{- end }}
+
+      {{- if .Values.jfconnect.customCertificatesSecretName }}
+        - name: jfconnect-certs
+          mountPath: "/tmp/etc/tls.crt"
+          subPath: tls.crt
+        - name: jfconnect-certs
+          mountPath: "/tmp/etc/tls.pem"
+          subPath: tls.pem
+        - name: jfconnect-certs
+          mountPath: "/tmp/etc/tls.cer"
+          subPath: tls.cer
+        - name: jfconnect-certs
+          mountPath: "/tmp/etc/tls.key"
+          subPath: tls.key
+      {{- end }}
+
+      {{- if or .Values.artifactory.customCertificates.enabled .Values.global.customCertificates.enabled }}
+      - name: copy-custom-certificates
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "initContainers") }}
+        imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        resources:
+{{ toYaml .Values.initContainers.resources | indent 10 }}
+        command:
+        - 'bash'
+        - '-c'
+        - >
+{{ include "artifactory-ha.copyCustomCerts" . | indent 10 }}
+        volumeMounts:
+          - name: volume
+            mountPath: {{ .Values.artifactory.persistence.mountPath }}
+          - name: ca-certs
+            mountPath: "/tmp/certs"
+      {{- end }}
+
+      {{- if .Values.artifactory.circleOfTrustCertificatesSecret }}
+      - name: copy-circle-of-trust-certificates
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "initContainers") }}
+        imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        resources:
+{{ toYaml .Values.initContainers.resources | indent 10 }}
+        command:
+        - 'bash'
+        - '-c'
+        - >
+{{ include "artifactory.copyCircleOfTrustCertsCerts" . | indent 10 }}
+        volumeMounts:
+          - name: volume
+            mountPath: {{ .Values.artifactory.persistence.mountPath }}
+          - name: circle-of-trust-certs
+            mountPath: "/tmp/circleoftrustcerts"
+      {{- end }}
+
+    {{- if .Values.waitForDatabase }}
+      {{- if or .Values.postgresql.enabled }}
+      - name: "wait-for-db"
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "initContainers") }}
+        imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+        - /bin/bash
+        - -c
+        - |
+          echo "Waiting for postgresql to come up"
+          ready=false;
+          while ! $ready; do echo waiting;
+            timeout 2s bash -c "</dev/tcp/{{ .Release.Name }}-postgresql/{{ .Values.postgresql.service.port }}"; exit_status=$?;
+            if [[ $exit_status -eq 0 ]]; then ready=true; echo "database ok"; fi; sleep 1;
+          done
+        resources:
+{{ toYaml .Values.initContainers.resources | indent 10 }}
+      {{- end }}
+    {{- end }}
+    {{- if or .Values.artifactory.customInitContainers .Values.global.customInitContainers }}
+{{ tpl (include "artifactory-ha.customInitContainers" .)  . | indent 6 }}
+    {{- end }}
+{{- if .Values.artifactory.migration.enabled }}
+      - name: 'migration-artifactory-ha'
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "artifactory") }}
+        imagePullPolicy: {{ .Values.artifactory.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        resources:
+{{ toYaml .Values.artifactory.primary.resources | indent 10 }}
+        command:
+        - '/bin/bash'
+        - '-c'
+        - >
+          {{- if .Values.artifactory.migration.preStartCommand }}
+          echo "Running custom preStartCommand command";
+          {{ tpl .Values.artifactory.migration.preStartCommand . }};
+          {{- end }}
+          scriptsPath="/opt/jfrog/artifactory/app/bin";
+          mkdir -p $scriptsPath;
+          echo "Copy migration scripts and Run migration";
+          cp -fv /tmp/migrate.sh $scriptsPath/migrate.sh;
+          cp -fv /tmp/migrationHelmInfo.yaml $scriptsPath/migrationHelmInfo.yaml;
+          cp -fv /tmp/migrationStatus.sh $scriptsPath/migrationStatus.sh;
+          mkdir -p {{ .Values.artifactory.persistence.mountPath }}/log;
+          bash $scriptsPath/migrationStatus.sh {{ include "artifactory-ha.app.version" . }} {{ .Values.artifactory.migration.timeoutSeconds }} > >(tee {{ .Values.artifactory.persistence.mountPath }}/log/helm-migration.log) 2>&1;
+        env:
+      {{- if and (not .Values.waitForDatabase)  (not .Values.postgresql.enabled) }}
+        - name: SKIP_WAIT_FOR_EXTERNAL_DB
+          value: "true"
+      {{- end }}
+      {{- if or .Values.database.secrets.user .Values.database.user }}
+        - name: JF_SHARED_DATABASE_USERNAME
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.user }}
+              name: {{ tpl .Values.database.secrets.user.name . }}
+              key: {{ tpl .Values.database.secrets.user.key . }}
+        {{- else if .Values.database.user }}
+            {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory-ha.fullname" . }}-database-creds
+            {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+            {{- end }}
+              key: db-user
+        {{- end }}
+      {{- end }}
+      {{ if or .Values.database.secrets.password .Values.database.password .Values.postgresql.enabled }}
+        - name: JF_SHARED_DATABASE_PASSWORD
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.password }}
+              name: {{ tpl .Values.database.secrets.password.name . }}
+              key: {{ tpl .Values.database.secrets.password.key . }}
+        {{- else if .Values.database.password }}
+            {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory-ha.fullname" . }}-database-creds
+            {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+            {{- end }}
+              key: db-password
+        {{- else if .Values.postgresql.enabled }}
+              name: {{ .Release.Name }}-postgresql
+              key: postgresql-password
+        {{- end }}
+      {{- end }}
+      {{- if or .Values.database.secrets.url .Values.database.url }}
+        - name: JF_SHARED_DATABASE_URL
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.url }}
+              name: {{ tpl .Values.database.secrets.url.name . }}
+              key: {{ tpl .Values.database.secrets.url.key . }}
+        {{- else if .Values.database.url }}
+            {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory-ha.fullname" . }}-database-creds
+            {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+            {{- end }}
+              key: db-url
+        {{- end }}
+      {{- end }}
+        - name: JF_SHARED_NODE_HAENABLED
+          value: "true"
+{{- with .Values.artifactory.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 8 }}
+{{- end }}
+        volumeMounts:
+        - name: migration-scripts
+          mountPath: "/tmp/migrate.sh"
+          subPath: migrate.sh
+        - name: migration-scripts
+          mountPath: "/tmp/migrationHelmInfo.yaml"
+          subPath: migrationHelmInfo.yaml
+        - name: migration-scripts
+          mountPath: "/tmp/migrationStatus.sh"
+          subPath: migrationStatus.sh
+        - name: volume
+          mountPath: "{{ .Values.artifactory.persistence.mountPath }}"
+
+      ######################## Artifactory persistence fs ##########################
+      {{- if eq .Values.artifactory.persistence.type "file-system" }}
+        {{- if .Values.artifactory.persistence.fileSystem.existingSharedClaim.enabled }}
+          {{- range $sharedClaimNumber, $e := until (.Values.artifactory.persistence.fileSystem.existingSharedClaim.numberOfExistingClaims|int) }}
+        - name: artifactory-ha-data-{{ $sharedClaimNumber }}
+          mountPath: "{{ tpl $.Values.artifactory.persistence.fileSystem.existingSharedClaim.dataDir $ }}/filestore{{ $sharedClaimNumber }}"
+          {{- end }}
+        - name: artifactory-ha-backup
+          mountPath: "{{ $.Values.artifactory.persistence.fileSystem.existingSharedClaim.backupDir }}"
+        {{- end }}
+      {{- end }}
+
+      ######################## CustomVolumeMounts ##########################
+      {{- if or .Values.artifactory.customVolumeMounts .Values.global.customVolumeMounts }}
+{{ tpl (include "artifactory-ha.customVolumeMounts" .) . | indent 8 }}
+      {{- end }}
+
+      ######################## Artifactory persistence nfs ##########################
+      {{- if eq .Values.artifactory.persistence.type "nfs" }}
+        - name: artifactory-ha-data
+          mountPath: "{{ .Values.artifactory.persistence.nfs.dataDir }}"
+        - name: artifactory-ha-backup
+          mountPath: "{{ .Values.artifactory.persistence.nfs.backupDir }}"
+      {{- else }}
+
+      ######################## Artifactory persistence binarystore Xml ##########################
+        {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.persistence.customBinarystoreXmlSecret }}
+        - name: binarystore-xml
+        {{- else }}
+        - name: {{ include "artifactory-ha.unifiedCustomSecretVolumeName" . }}
+        {{- end }}
+          mountPath: "/tmp/etc/artifactory/binarystore.xml"
+          subPath: binarystore.xml
+
+      ######################## Artifactory persistence google storage ##########################
+      {{- if .Values.artifactory.persistence.googleStorage.gcpServiceAccount.enabled }}
+        {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.persistence.googleStorage.gcpServiceAccount.customSecretName }}
+        - name: gcpcreds-json
+        {{- else }}
+        - name: {{ include "artifactory-ha.unifiedCustomSecretVolumeName" . }}
+        {{- end }}
+          mountPath: "/artifactory_bootstrap/gcp.credentials.json"
+          subPath: gcp.credentials.json
+      {{- end }}
+    {{- end }}
+
+{{- end }}
+
+      {{- if .Values.hostAliases }}
+      hostAliases:
+{{ toYaml .Values.hostAliases | indent 6 }}
+      {{- end }}
+      containers:
+    {{- if .Values.splitServicesToContainers }}
+      - name: {{ .Values.router.name }}
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "router") }}
+        imagePullPolicy: {{ .Values.router.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+          - '/bin/bash'
+          - '-c'
+          - >
+            exec /opt/jfrog/router/app/bin/entrypoint-router.sh;
+        {{- with .Values.router.lifecycle }}
+        lifecycle:
+{{ toYaml . | indent 10 }}
+        {{- end }}
+        env:
+        - name: JF_ROUTER_TOPOLOGY_LOCAL_REQUIREDSERVICETYPES
+          value: {{ include "artifactory-ha.router.requiredServiceTypes" . }}
+{{- with .Values.router.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 8 }}
+{{- end }}
+        volumeMounts:
+        - name: volume
+          mountPath: {{ .Values.router.persistence.mountPath | quote }}
+{{- with .Values.router.customVolumeMounts }}
+{{ tpl . $ | indent 8 }}
+{{- end }}
+        resources:
+{{ toYaml .Values.router.resources | indent 10 }}
+      {{- if .Values.router.startupProbe.enabled }}
+        startupProbe:
+{{ tpl .Values.router.startupProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.router.readinessProbe.enabled }}
+        readinessProbe:
+{{ tpl .Values.router.readinessProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.router.livenessProbe.enabled }}
+        livenessProbe:
+{{ tpl .Values.router.livenessProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.frontend.enabled }}
+      - name: {{ .Values.frontend.name }}
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "artifactory") }}
+        imagePullPolicy: {{ .Values.artifactory.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+          - '/bin/bash'
+          - '-c'
+          - >
+            exec /opt/jfrog/artifactory/app/third-party/node/bin/node /opt/jfrog/artifactory/app/frontend/bin/server/dist/bundle.js /opt/jfrog/artifactory/app/frontend
+        {{- with .Values.frontend.lifecycle }}
+        lifecycle:
+{{ toYaml . | indent 10 }}
+        {{- end }}
+        env:
+        - name: JF_SHARED_NODE_ID
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name : JF_SHARED_NODE_HAENABLED
+          value: "true"
+{{- with .Values.frontend.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 8 }}
+{{- end }}
+        volumeMounts:
+      {{- if or .Values.artifactory.customVolumeMounts .Values.global.customVolumeMounts }}
+{{ tpl (include "artifactory-ha.customVolumeMounts" .) . | indent 8 }}
+      {{- end }}
+        - name: volume
+          mountPath: {{ .Values.artifactory.persistence.mountPath | quote }}
+        resources:
+{{ toYaml .Values.frontend.resources | indent 10 }}
+      {{- if .Values.frontend.startupProbe.enabled }}
+        startupProbe:
+{{ tpl .Values.frontend.startupProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.frontend.livenessProbe.enabled }}
+        livenessProbe:
+{{ tpl .Values.frontend.livenessProbe.config . | indent 10 }}
+      {{- end }}
+      {{- end }}
+      {{- if .Values.evidence.enabled }}
+      - name: {{ .Values.evidence.name }}
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "artifactory") }}
+        imagePullPolicy: {{ .Values.artifactory.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+        - '/bin/bash'
+        - '-c'
+        - >
+          exec /opt/jfrog/artifactory/app/evidence/bin/jf-evidence start
+        {{- with .Values.evidence.lifecycle }}
+        lifecycle:
+{{ toYaml . | indent 10 }}
+        {{- end }}
+        env:
+        - name: JF_SHARED_NODE_ID
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+      {{- if or .Values.database.secrets.user .Values.database.user }}
+        - name: JF_SHARED_DATABASE_USERNAME
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.user }}
+              name: {{ tpl .Values.database.secrets.user.name . }}
+              key: {{ tpl .Values.database.secrets.user.key . }}
+        {{- else if .Values.database.user }}
+              {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory-ha.fullname" . }}-database-creds
+              {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+              {{- end }}
+              key: db-user
+        {{- end }}
+      {{- end }}
+      {{ if or .Values.database.secrets.password .Values.database.password .Values.postgresql.enabled }}
+        - name: JF_SHARED_DATABASE_PASSWORD
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.password }}
+              name: {{ tpl .Values.database.secrets.password.name . }}
+              key: {{ tpl .Values.database.secrets.password.key . }}
+        {{- else if .Values.database.password }}
+              {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory-ha.fullname" . }}-database-creds
+              {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+              {{- end }}
+              key: db-password
+        {{- else if .Values.postgresql.enabled }}
+              name: {{ .Release.Name }}-postgresql
+              key: postgresql-password
+        {{- end }}
+      {{- end }}
+      {{- if or .Values.database.secrets.url .Values.database.url }}
+        - name: JF_SHARED_DATABASE_URL
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.url }}
+              name: {{ tpl .Values.database.secrets.url.name . }}
+              key: {{ tpl .Values.database.secrets.url.key . }}
+        {{- else if .Values.database.url }}
+              {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory-ha.fullname" . }}-database-creds
+              {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+              {{- end }}
+              key: db-url
+        {{- end }}
+      {{- end }}
+{{- with .Values.evidence.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 8 }}
+{{- end }}
+        ports:
+        - containerPort: {{ .Values.evidence.internalPort }}
+          name: http-evidence
+        - containerPort: {{ .Values.evidence.externalPort }}
+          name: grpc-evidence
+        volumeMounts:
+      {{- if or .Values.artifactory.customVolumeMounts .Values.global.customVolumeMounts }}
+{{ tpl (include "artifactory-ha.customVolumeMounts" .) . | indent 8 }}
+      {{- end }}
+        - name: volume
+          mountPath: {{ .Values.artifactory.persistence.mountPath | quote }}
+        resources:
+{{ toYaml .Values.evidence.resources | indent 10 }}
+      {{- if .Values.evidence.startupProbe.enabled }}
+        startupProbe:
+{{ tpl .Values.evidence.startupProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.evidence.livenessProbe.enabled }}
+        livenessProbe:
+{{ tpl .Values.evidence.livenessProbe.config . | indent 10 }}
+      {{- end }}
+      {{- end }}
+      {{- if .Values.metadata.enabled }}
+      - name: {{ .Values.metadata.name }}
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "metadata") }}
+        imagePullPolicy: {{ .Values.artifactory.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+          - '/bin/bash'
+          - '-c'
+          {{- if default false .Values.metadata.standaloneImageEnabled }}
+          - exec /opt/jfrog/metadata/app/metadata/bin/jf-metadata
+          {{- else }}
+          - exec /opt/jfrog/artifactory/app/metadata/bin/jf-metadata start
+          {{- end }}
+        {{- with .Values.metadata.lifecycle }}
+        lifecycle:
+{{ toYaml . | indent 10 }}
+        {{- end }}
+        env:
+        - name: JF_SHARED_NODE_ID
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+      {{- if or .Values.database.secrets.user .Values.database.user }}
+        - name: JF_SHARED_DATABASE_USERNAME
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.user }}
+              name: {{ tpl .Values.database.secrets.user.name . }}
+              key: {{ tpl .Values.database.secrets.user.key . }}
+        {{- else if .Values.database.user }}
+            {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory-ha.fullname" . }}-database-creds
+            {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+            {{- end }}
+              key: db-user
+        {{- end }}
+      {{- end }}
+      {{ if or .Values.database.secrets.password .Values.database.password .Values.postgresql.enabled }}
+        - name: JF_SHARED_DATABASE_PASSWORD
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.password }}
+              name: {{ tpl .Values.database.secrets.password.name . }}
+              key: {{ tpl .Values.database.secrets.password.key . }}
+        {{- else if .Values.database.password }}
+            {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory-ha.fullname" . }}-database-creds
+            {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+            {{- end }}
+              key: db-password
+        {{- else if .Values.postgresql.enabled }}
+              name: {{ .Release.Name }}-postgresql
+              key: postgresql-password
+        {{- end }}
+      {{- end }}
+      {{- if or .Values.database.secrets.url .Values.database.url }}
+        - name: JF_SHARED_DATABASE_URL
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.url }}
+              name: {{ tpl .Values.database.secrets.url.name . }}
+              key: {{ tpl .Values.database.secrets.url.key . }}
+        {{- else if .Values.database.url }}
+            {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory-ha.fullname" . }}-database-creds
+            {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+            {{- end }}
+              key: db-url
+        {{- end }}
+      {{- end }}
+{{- with .Values.metadata.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 8 }}
+{{- end }}
+        volumeMounts:
+      {{- if or .Values.artifactory.customVolumeMounts .Values.global.customVolumeMounts }}
+{{ tpl (include "artifactory-ha.customVolumeMounts" .) . | indent 8 }}
+      {{- end }}
+        - name: volume
+          {{- if default false .Values.metadata.standaloneImageEnabled }}
+          mountPath: {{ .Values.metadata.persistence.mountPath | quote }}
+          {{- else }}
+          mountPath: {{ .Values.artifactory.persistence.mountPath | quote }}
+          {{- end }}
+        resources:
+{{ toYaml .Values.metadata.resources | indent 10 }}
+      {{- if .Values.metadata.startupProbe.enabled }}
+        startupProbe:
+{{ tpl .Values.metadata.startupProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.metadata.livenessProbe.enabled }}
+        livenessProbe:
+{{ tpl .Values.metadata.livenessProbe.config . | indent 10 }}
+      {{- end }}
+      {{- end }}
+      {{- if .Values.onemodel.enabled }}
+      - name: {{ .Values.onemodel.name }}
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "artifactory") }}
+        imagePullPolicy: {{ .Values.artifactory.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+          - '/bin/bash'
+          - '-c'
+          - >
+            exec /opt/jfrog/artifactory/app/onemodel/bin/entrypoint-onemodel.sh
+        {{- with .Values.onemodel.lifecycle }}
+        lifecycle:
+{{ toYaml . | indent 10 }}
+        {{- end }}
+        env:
+        - name: JF_SHARED_NODE_ID
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: JF_ONEMODEL_LISTENADDR
+          value: "0.0.0.0"
+{{- with .Values.onemodel.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 8 }}
+{{- end }}
+        volumeMounts:
+      {{- if or .Values.artifactory.customVolumeMounts .Values.global.customVolumeMounts }}
+{{ tpl (include "artifactory-ha.customVolumeMounts" .) . | indent 8 }}
+      {{- end }}
+        - name: volume
+          mountPath: {{ .Values.artifactory.persistence.mountPath | quote }}
+        resources:
+{{ toYaml .Values.onemodel.resources | indent 10 }}
+      {{- if .Values.onemodel.startupProbe.enabled }}
+        startupProbe:
+{{ tpl .Values.onemodel.startupProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.onemodel.livenessProbe.enabled }}
+        livenessProbe:
+{{ tpl .Values.onemodel.livenessProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.onemodel.readinessProbe.enabled }}
+        readinessProbe:
+{{ tpl .Values.onemodel.readinessProbe.config . | indent 10 }}
+      {{- end }}
+      {{- end }}
+      {{- if .Values.event.enabled }}
+      - name: {{ .Values.event.name }}
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "artifactory") }}
+        imagePullPolicy: {{ .Values.artifactory.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+          - '/bin/bash'
+          - '-c'
+          - >
+            exec /opt/jfrog/artifactory/app/event/bin/jf-event start
+        {{- with .Values.event.lifecycle }}
+        lifecycle:
+{{ toYaml . | indent 10 }}
+        {{- end }}
+        env:
+        - name: JF_SHARED_NODE_ID
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+{{- with .Values.event.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 8 }}
+{{- end }}
+        volumeMounts:
+      {{- if or .Values.artifactory.customVolumeMounts .Values.global.customVolumeMounts }}
+{{ tpl (include "artifactory-ha.customVolumeMounts" .) . | indent 8 }}
+      {{- end }}
+        - name: volume
+          mountPath: {{ .Values.artifactory.persistence.mountPath | quote }}
+        resources:
+{{ toYaml .Values.event.resources | indent 10 }}
+      {{- if .Values.event.startupProbe.enabled }}
+        startupProbe:
+{{ tpl .Values.event.startupProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.event.livenessProbe.enabled }}
+        livenessProbe:
+{{ tpl .Values.event.livenessProbe.config . | indent 10 }}
+      {{- end }}
+      {{- end }}
+      {{- if .Values.jfconnect.enabled }}
+      - name: {{ .Values.jfconnect.name }}
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "artifactory") }}
+        imagePullPolicy: {{ .Values.artifactory.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+          - '/bin/bash'
+          - '-c'
+          - >
+            exec /opt/jfrog/artifactory/app/jfconnect/bin/jf-connect start
+        {{- with .Values.jfconnect.lifecycle }}
+        lifecycle:
+{{ toYaml . | indent 10 }}
+        {{- end }}
+        env:
+        - name: JF_SHARED_NODE_ID
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+{{- with .Values.jfconnect.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 8 }}
+{{- end }}
+        volumeMounts:
+      {{- if or .Values.artifactory.customVolumeMounts .Values.global.customVolumeMounts }}
+{{ tpl (include "artifactory-ha.customVolumeMounts" .) . | indent 8 }}
+      {{- end }}
+        - name: volume
+          mountPath: {{ .Values.artifactory.persistence.mountPath | quote }}
+        resources:
+{{ toYaml .Values.jfconnect.resources | indent 10 }}
+      {{- if .Values.jfconnect.startupProbe.enabled }}
+        startupProbe:
+{{ tpl .Values.jfconnect.startupProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.jfconnect.livenessProbe.enabled }}
+        livenessProbe:
+{{ tpl .Values.jfconnect.livenessProbe.config . | indent 10 }}
+      {{- end }}
+      {{- end }}
+      {{- if .Values.topology.enabled }}
+      - name: {{ .Values.topology.name }}
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "artifactory") }}
+        imagePullPolicy: {{ .Values.artifactory.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+          - '/bin/bash'
+          - '-c'
+          - >
+            exec /opt/jfrog/artifactory/app/topology/bin/entrypoint-topology.sh
+        {{- with .Values.topology.lifecycle }}
+        lifecycle:
+{{ toYaml . | indent 10 }}
+        {{- end }}
+        env:
+        - name: JF_SHARED_NODE_ID
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+      {{- if or .Values.database.secrets.user .Values.database.user }}
+        - name: JF_SHARED_DATABASE_USERNAME
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.user }}
+              name: {{ tpl .Values.database.secrets.user.name . }}
+              key: {{ tpl .Values.database.secrets.user.key . }}
+        {{- else if .Values.database.user }}
+            {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory-ha.fullname" . }}-database-creds
+            {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+            {{- end }}
+              key: db-user
+        {{- end }}
+      {{- end }}
+      {{ if or .Values.database.secrets.password .Values.database.password .Values.postgresql.enabled }}
+        - name: JF_SHARED_DATABASE_PASSWORD
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.password }}
+              name: {{ tpl .Values.database.secrets.password.name . }}
+              key: {{ tpl .Values.database.secrets.password.key . }}
+        {{- else if .Values.database.password }}
+            {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory-ha.fullname" . }}-database-creds
+            {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+            {{- end }}
+              key: db-password
+        {{- else if .Values.postgresql.enabled }}
+              name: {{ .Release.Name }}-postgresql
+              key: postgresql-password
+        {{- end }}
+      {{- end }}
+      {{- if or .Values.database.secrets.url .Values.database.url }}
+        - name: JF_SHARED_DATABASE_URL
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.url }}
+              name: {{ tpl .Values.database.secrets.url.name . }}
+              key: {{ tpl .Values.database.secrets.url.key . }}
+        {{- else if .Values.database.url }}
+            {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory-ha.fullname" . }}-database-creds
+            {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+            {{- end }}
+              key: db-url
+        {{- end }}
+      {{- end }}
+{{- with .Values.topology.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 8 }}
+{{- end }}
+        ports:
+        - containerPort: {{ .Values.topology.internalPort }}
+          name: http-topology
+        volumeMounts:
+      {{- if or .Values.artifactory.customVolumeMounts .Values.global.customVolumeMounts }}
+{{ tpl (include "artifactory-ha.customVolumeMounts" .) . | indent 8 }}
+      {{- end }}
+        - name: volume
+          mountPath: {{ .Values.artifactory.persistence.mountPath | quote }}
+        resources:
+{{ toYaml .Values.topology.resources | indent 10 }}
+      {{- if .Values.topology.startupProbe.enabled }}
+        startupProbe:
+{{ tpl .Values.topology.startupProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.topology.readinessProbe.enabled }}
+        readinessProbe:
+{{ tpl .Values.topology.readinessProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.topology.livenessProbe.enabled }}
+        livenessProbe:
+{{ tpl .Values.topology.livenessProbe.config . | indent 10 }}
+      {{- end }}
+      {{- end }}
+      {{- if .Values.observability.enabled }}
+      - name: {{ .Values.observability.name }}
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "observability") }}
+        imagePullPolicy: {{ .Values.artifactory.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+          - '/bin/bash'
+          - '-c'
+          {{- if default false .Values.observability.standaloneImageEnabled }}
+          - exec /opt/jfrog/observability/app/bin/entrypoint-observability.sh
+          {{- else }}
+          - exec /opt/jfrog/artifactory/app/observability/bin/jf-observability start
+          {{- end }}
+        {{- with .Values.observability.lifecycle }}
+        lifecycle:
+{{ toYaml . | indent 10 }}
+        {{- end }}
+        env:
+        - name: JF_SHARED_NODE_ID
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+{{- with .Values.observability.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 8 }}
+{{- end }}
+        volumeMounts:
+      {{- if or .Values.artifactory.customVolumeMounts .Values.global.customVolumeMounts }}
+{{ tpl (include "artifactory-ha.customVolumeMounts" .) . | indent 8 }}
+      {{- end }}
+        - name: volume
+          {{- if default false .Values.observability.standaloneImageEnabled }}
+          mountPath: {{ .Values.observability.persistence.mountPath | quote }}
+          {{- else }}
+          mountPath: {{ .Values.artifactory.persistence.mountPath | quote }}
+          {{- end }}
+        resources:
+{{ toYaml .Values.observability.resources | indent 10 }}
+      {{- if .Values.observability.startupProbe.enabled }}
+        startupProbe:
+{{ tpl .Values.observability.startupProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.observability.livenessProbe.enabled }}
+        livenessProbe:
+{{ tpl .Values.observability.livenessProbe.config . | indent 10 }}
+      {{- end }}
+      {{- end }}
+      {{- if and .Values.access.enabled (not (.Values.access.runOnArtifactoryTomcat | default false)) }}
+      - name: {{ .Values.access.name }}
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "artifactory") }}
+        imagePullPolicy: {{ .Values.artifactory.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+      {{- if .Values.access.resources }}
+        resources:
+{{ toYaml .Values.access.resources | indent 10 }}
+      {{- end }}
+        command:
+        - '/bin/bash'
+        - '-c'
+        - >
+          set -e;
+          {{- if .Values.access.preStartCommand }}
+          echo "Running custom preStartCommand command";
+          {{ tpl .Values.access.preStartCommand . }};
+          {{- end }}
+          exec /opt/jfrog/artifactory/app/access/bin/entrypoint-access.sh
+        {{- with .Values.access.lifecycle }}
+        lifecycle:
+{{ toYaml . | indent 10 }}
+        {{- end }}
+        env:
+      {{- if and (not .Values.waitForDatabase) (not .Values.postgresql.enabled) }}
+        - name: SKIP_WAIT_FOR_EXTERNAL_DB
+          value: "true"
+      {{- end }}
+      {{- if or .Values.database.secrets.user .Values.database.user }}
+        - name: JF_SHARED_DATABASE_USERNAME
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.user }}
+              name: {{ tpl .Values.database.secrets.user.name . }}
+              key: {{ tpl .Values.database.secrets.user.key . }}
+        {{- else if .Values.database.user }}
+              {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory-ha.fullname" . }}-database-creds
+              {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+              {{- end }}
+              key: db-user
+        {{- end }}
+      {{- end }}
+      {{ if or .Values.database.secrets.password .Values.database.password .Values.postgresql.enabled }}
+        - name: JF_SHARED_DATABASE_PASSWORD
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.password }}
+              name: {{ tpl .Values.database.secrets.password.name . }}
+              key: {{ tpl .Values.database.secrets.password.key . }}
+        {{- else if .Values.database.password }}
+              {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory-ha.fullname" . }}-database-creds
+              {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+              {{- end }}
+              key: db-password
+        {{- else if .Values.postgresql.enabled }}
+              name: {{ .Release.Name }}-postgresql
+              key: postgresql-password
+        {{- end }}
+      {{- end }}
+      {{- if or .Values.database.secrets.url .Values.database.url }}
+        - name: JF_SHARED_DATABASE_URL
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.url }}
+              name: {{ tpl .Values.database.secrets.url.name . }}
+              key: {{ tpl .Values.database.secrets.url.key . }}
+        {{- else if .Values.database.url }}
+              {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory-ha.fullname" . }}-database-creds
+              {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+              {{- end }}
+              key: db-url
+        {{- end }}
+      {{- end }}
+{{- with .Values.access.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 8 }}
+{{- end }}
+        volumeMounts:
+       {{- if .Values.artifactory.customPersistentVolumeClaim }}
+        - name: {{ .Values.artifactory.customPersistentVolumeClaim.name }}
+          mountPath: {{ .Values.artifactory.customPersistentVolumeClaim.mountPath }}
+       {{- end }}
+        {{- if .Values.artifactory.customPersistentPodVolumeClaim }}
+        - name: {{ .Values.artifactory.customPersistentPodVolumeClaim.name }}
+          mountPath: {{ .Values.artifactory.customPersistentPodVolumeClaim.mountPath }}
+        {{- end }}
+        {{- if .Values.aws.licenseConfigSecretName }}
+        - name: awsmp-product-license
+          mountPath: "/var/run/secrets/product-license"
+        {{- end }}
+        - name: volume
+          mountPath: "{{ .Values.artifactory.persistence.mountPath }}"
+
+      ######################## Artifactory persistence fs ##########################
+      {{- if eq .Values.artifactory.persistence.type "file-system" }}
+        {{- if .Values.artifactory.persistence.fileSystem.existingSharedClaim.enabled }}
+          {{- range $sharedClaimNumber, $e := until (.Values.artifactory.persistence.fileSystem.existingSharedClaim.numberOfExistingClaims|int) }}
+        - name: artifactory-ha-data-{{ $sharedClaimNumber }}
+          mountPath: "{{ tpl $.Values.artifactory.persistence.fileSystem.existingSharedClaim.dataDir $ }}/filestore{{ $sharedClaimNumber }}"
+          {{- end }}
+        - name: artifactory-ha-backup
+          mountPath: "{{ $.Values.artifactory.persistence.fileSystem.existingSharedClaim.backupDir }}"
+        {{- end }}
+      {{- end }}
+
+      ######################## Artifactory persistence nfs ##########################
+      {{- if eq .Values.artifactory.persistence.type "nfs" }}
+        - name: artifactory-ha-data
+          mountPath: "{{ .Values.artifactory.persistence.nfs.dataDir }}"
+        - name: artifactory-ha-backup
+          mountPath: "{{ .Values.artifactory.persistence.nfs.backupDir }}"
+      {{- else }}
+
+      ######################## Artifactory persistence binarystore Xml ##########################
+        {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.persistence.customBinarystoreXmlSecret }}
+        - name: binarystore-xml
+        {{- else }}
+        - name: {{ include "artifactory-ha.unifiedCustomSecretVolumeName" . }}
+        {{- end }}
+          mountPath: "/tmp/etc/artifactory/binarystore.xml"
+          subPath: binarystore.xml
+
+      ######################## Artifactory persistence google storage ##########################
+      {{- if .Values.artifactory.persistence.googleStorage.gcpServiceAccount.enabled }}
+        {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.persistence.googleStorage.gcpServiceAccount.customSecretName }}
+        - name: gcpcreds-json
+        {{- else }}
+        - name: {{ include "artifactory-ha.unifiedCustomSecretVolumeName" . }}
+        {{- end }}
+          mountPath: "/artifactory_bootstrap/gcp.credentials.json"
+          subPath: gcp.credentials.json
+      {{- end }}
+
+
+      ######################## Artifactory license ##########################
+      {{- if or .Values.artifactory.license.secret .Values.artifactory.license.licenseKey }}
+        {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.license.secret }}
+        - name: artifactory-license
+        {{- else }}
+        - name: {{ include "artifactory-ha.unifiedCustomSecretVolumeName" . }}
+        {{- end }}
+          mountPath: "/artifactory_bootstrap/artifactory.cluster.license"
+          {{- if .Values.artifactory.license.secret }}
+          subPath: {{ .Values.artifactory.license.dataKey }}
+          {{- else if .Values.artifactory.license.licenseKey }}
+          subPath: artifactory.lic
+          {{- end }}
+      {{- end }}
+    {{- end }}
+      {{- if or .Values.artifactory.customVolumeMounts .Values.global.customVolumeMounts }}
+{{ tpl (include "artifactory-ha.customVolumeMounts" .) . | indent 8 }}
+      {{- end }}
+      {{- if .Values.access.startupProbe.enabled }}
+        startupProbe:
+{{ tpl .Values.access.startupProbe.config . | indent 10 }}
+        {{- end }}
+    {{- if semverCompare "<v1.20.0-0" .Capabilities.KubeVersion.Version }}   
+        {{- if .Values.access.readinessProbe.enabled }}
+        readinessProbe:
+{{ tpl .Values.access.readinessProbe.config . | indent 10 }}
+        {{- end }}
+    {{- end }}
+      {{- if .Values.access.livenessProbe.enabled }}
+        livenessProbe:
+{{ tpl .Values.access.livenessProbe.config . | indent 10 }}
+        {{- end }}
+      {{- end }}
+    {{- end }}
+      - name: {{ .Values.artifactory.name }}
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "artifactory") }}
+        imagePullPolicy: {{ .Values.artifactory.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+        - '/bin/bash'
+        - '-c'
+        - >
+          set -e;
+          if [ -d /artifactory_extra_conf ] && [ -d /artifactory_bootstrap ]; then
+            echo "Copying bootstrap config from /artifactory_extra_conf to /artifactory_bootstrap";
+            cp -Lrfv /artifactory_extra_conf/ /artifactory_bootstrap/;
+          fi;
+        {{- if .Values.artifactory.configMapName }}
+          echo "Copying bootstrap configs";
+          cp -Lrf /bootstrap/* /artifactory_bootstrap/;
+        {{- end }}
+        {{- if .Values.artifactory.userPluginSecrets }}
+          echo "Copying plugins";
+          cp -Lrf /tmp/plugin/*/* /artifactory_bootstrap/plugins;
+        {{- end }}
+        {{- range .Values.artifactory.copyOnEveryStartup }}
+          {{- $targetPath := printf "%s/%s" $.Values.artifactory.persistence.mountPath .target }}
+          {{- $baseDirectory := regexFind ".*/" $targetPath }}
+          mkdir -p {{ $baseDirectory }};
+          cp -Lrf {{ .source }} {{ $.Values.artifactory.persistence.mountPath }}/{{ .target }};
+        {{- end }}
+        {{- with .Values.artifactory.preStartCommand }}
+          echo "Running custom preStartCommand command";
+          {{ tpl . $ }};
+        {{- end }}
+        {{- with .Values.artifactory.primary.preStartCommand }}
+          echo "Running primary specific custom preStartCommand command";
+          {{ tpl . $ }};
+        {{- end }}
+          exec /entrypoint-artifactory.sh
+        {{- with .Values.artifactory.lifecycle }}
+        lifecycle:
+{{ toYaml . | indent 10 }}
+        {{- end }}
+        env:
+      {{- if .Values.aws.license.enabled }}
+        - name: IS_AWS_LICENSE
+          value: "true"
+        - name: AWS_REGION
+          value: {{ .Values.aws.region | quote }}
+      {{- if .Values.aws.licenseConfigSecretName }}
+        - name: AWS_WEB_IDENTITY_REFRESH_TOKEN_FILE
+          value: "/var/run/secrets/product-license/license_token"
+        - name: AWS_ROLE_ARN
+          valueFrom:
+            secretKeyRef:
+              name: {{ .Values.aws.licenseConfigSecretName }}
+              key: iam_role
+      {{- end }}
+      {{- end }}
+      {{- if .Values.splitServicesToContainers }}
+        - name : JF_ROUTER_ENABLED
+          value: "true"
+        - name : JF_ROUTER_SERVICE_ENABLED
+          value: "false"
+        - name : JF_EVENT_ENABLED
+          value: "false"
+        - name : JF_METADATA_ENABLED
+          value: "false"
+        - name : JF_FRONTEND_ENABLED
+          value: "false"
+        - name: JF_FEDERATION_ENABLED
+          value: "false"
+        - name : JF_OBSERVABILITY_ENABLED
+          value: "false"
+        - name : JF_JFCONNECT_SERVICE_ENABLED
+          value: "false"
+        - name : JF_EVIDENCE_ENABLED
+          value: "false"
+        - name : JF_ONEMODEL_ENABLED
+          value: "false"
+        {{- if not (.Values.access.runOnArtifactoryTomcat | default false) }}
+        - name : JF_ACCESS_ENABLED
+          value: "false"
+        {{- end}}
+        - name: JF_TOPOLOGY_SPLIT_CONTAINER_ENABLED
+          value: "true"
+      {{- end }}
+      {{- if and (not .Values.waitForDatabase) (not .Values.postgresql.enabled) }}
+        - name: SKIP_WAIT_FOR_EXTERNAL_DB
+          value: "true"
+      {{- end }}
+      {{- if or .Values.database.secrets.user .Values.database.user }}
+        - name: JF_SHARED_DATABASE_USERNAME
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.user }}
+              name: {{ tpl .Values.database.secrets.user.name . }}
+              key: {{ tpl .Values.database.secrets.user.key . }}
+        {{- else if .Values.database.user }}
+            {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory-ha.fullname" . }}-database-creds
+            {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+            {{- end }}
+              key: db-user
+        {{- end }}
+      {{- end }}
+      {{ if or .Values.database.secrets.password .Values.database.password .Values.postgresql.enabled }}
+        - name: JF_SHARED_DATABASE_PASSWORD
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.password }}
+              name: {{ tpl .Values.database.secrets.password.name . }}
+              key: {{ tpl .Values.database.secrets.password.key . }}
+        {{- else if .Values.database.password }}
+            {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory-ha.fullname" . }}-database-creds
+            {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+            {{- end }}
+              key: db-password
+        {{- else if .Values.postgresql.enabled }}
+              name: {{ .Release.Name }}-postgresql
+              key: postgresql-password
+        {{- end }}
+      {{- end }}
+      {{- if or .Values.database.secrets.url .Values.database.url }}
+        - name: JF_SHARED_DATABASE_URL
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.url }}
+              name: {{ tpl .Values.database.secrets.url.name . }}
+              key: {{ tpl .Values.database.secrets.url.key . }}
+        {{- else if .Values.database.url }}
+            {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory-ha.fullname" . }}-database-creds
+            {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+            {{- end }}
+              key: db-url
+        {{- end }}
+      {{- end }}
+        - name: JF_SHARED_NODE_HAENABLED
+          value: "true"
+{{- with .Values.artifactory.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 8 }}
+{{- end }}
+        ports:
+        - containerPort: {{ .Values.artifactory.internalPort }}
+          name: http
+        - containerPort: {{ .Values.artifactory.internalArtifactoryPort }}
+          name: http-internal
+        {{- if .Values.artifactory.primary.javaOpts.jmx.enabled }}
+        - containerPort: {{ .Values.artifactory.primary.javaOpts.jmx.port }}
+          name: tcp-jmx
+        {{- end }}
+        {{- if .Values.artifactory.ssh.enabled }}
+        - containerPort: {{ .Values.artifactory.ssh.internalPort }}
+          name: tcp-ssh
+        {{- end }}
+
+        volumeMounts:
+        {{- if .Values.artifactory.customPersistentVolumeClaim }}
+        - name: {{ .Values.artifactory.customPersistentVolumeClaim.name }}
+          mountPath: {{ .Values.artifactory.customPersistentVolumeClaim.mountPath }}
+        {{- end }}
+        {{- if .Values.artifactory.customPersistentPodVolumeClaim }}
+        - name: {{ .Values.artifactory.customPersistentPodVolumeClaim.name }}
+          mountPath: {{ .Values.artifactory.customPersistentPodVolumeClaim.mountPath }}
+        {{- end }}
+        {{- if .Values.aws.licenseConfigSecretName }}
+        - name: awsmp-product-license
+          mountPath: "/var/run/secrets/product-license"
+        {{- end }}
+        {{- if .Values.artifactory.userPluginSecrets }}
+        - name: bootstrap-plugins
+          mountPath: "/artifactory_bootstrap/plugins/"
+        {{- range .Values.artifactory.userPluginSecrets }}
+        - name: {{ tpl . $ }}
+          mountPath: "/tmp/plugin/{{ tpl . $ }}"
+        {{- end }}
+        {{- end }}
+        - name: volume
+          mountPath: "{{ .Values.artifactory.persistence.mountPath }}"
+
+      ######################## Artifactory persistence fs ##########################
+      {{- if eq .Values.artifactory.persistence.type "file-system" }}
+        {{- if .Values.artifactory.persistence.fileSystem.existingSharedClaim.enabled }}
+          {{- range $sharedClaimNumber, $e := until (.Values.artifactory.persistence.fileSystem.existingSharedClaim.numberOfExistingClaims|int) }}
+        - name: artifactory-ha-data-{{ $sharedClaimNumber }}
+          mountPath: "{{ tpl $.Values.artifactory.persistence.fileSystem.existingSharedClaim.dataDir $ }}/filestore{{ $sharedClaimNumber }}"
+          {{- end }}
+        - name: artifactory-ha-backup
+          mountPath: "{{ $.Values.artifactory.persistence.fileSystem.existingSharedClaim.backupDir }}"
+        {{- end }}
+      {{- end }}
+
+      ######################## Artifactory persistence nfs ##########################
+      {{- if eq .Values.artifactory.persistence.type "nfs" }}
+        - name: artifactory-ha-data
+          mountPath: "{{ .Values.artifactory.persistence.nfs.dataDir }}"
+        - name: artifactory-ha-backup
+          mountPath: "{{ .Values.artifactory.persistence.nfs.backupDir }}"
+      {{- else }}
+
+      ######################## Artifactory persistence binarystoreXml ##########################
+        {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.persistence.customBinarystoreXmlSecret }}
+        - name: binarystore-xml
+        {{- else }}
+        - name: {{ include "artifactory-ha.unifiedCustomSecretVolumeName" . }}
+        {{- end }}
+          mountPath: "/tmp/etc/artifactory/binarystore.xml"
+          subPath: binarystore.xml
+
+      ######################## Artifactory persistence googleStorage ##########################
+      {{- if .Values.artifactory.persistence.googleStorage.gcpServiceAccount.enabled }}
+        {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.persistence.googleStorage.gcpServiceAccount.customSecretName }}
+        - name: gcpcreds-json
+        {{- else }}
+        - name: {{ include "artifactory-ha.unifiedCustomSecretVolumeName" . }}
+        {{- end }}
+          mountPath: "/artifactory_bootstrap/gcp.credentials.json"
+          subPath: gcp.credentials.json
+        {{- end }}
+      {{- end }}
+
+      ######################## Artifactory configMapName ##########################
+      {{- if .Values.artifactory.configMapName }}
+        - name: bootstrap-config
+          mountPath: "/bootstrap/"
+      {{- end }}
+
+      ######################## Artifactory license ##########################
+      {{- if or .Values.artifactory.license.secret .Values.artifactory.license.licenseKey }}
+        {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.license.secret }}
+        - name: artifactory-license
+        {{- else }}
+        - name: {{ include "artifactory-ha.unifiedCustomSecretVolumeName" . }}
+        {{- end }}
+          mountPath: "/artifactory_bootstrap/artifactory.cluster.license"
+          {{- if .Values.artifactory.license.secret }}
+          subPath: {{ .Values.artifactory.license.dataKey }}
+          {{- else if .Values.artifactory.license.licenseKey }}
+          subPath: artifactory.lic
+          {{- end }}
+      {{- end }}
+
+        - name: installer-info
+          mountPath: "/artifactory_bootstrap/info/installer-info.json"
+          subPath: installer-info.json
+      {{- if or .Values.artifactory.customVolumeMounts .Values.global.customVolumeMounts }}
+{{ tpl (include "artifactory-ha.customVolumeMounts" .) . | indent 8 }}
+      {{- end }}
+        resources:
+{{ toYaml .Values.artifactory.primary.resources | indent 10 }}
+        {{- if .Values.artifactory.startupProbe.enabled }}
+        startupProbe:
+{{ tpl .Values.artifactory.startupProbe.config . | indent 10 }}
+        {{- end }}
+    {{- if and (not .Values.splitServicesToContainers) (semverCompare "<v1.20.0-0" .Capabilities.KubeVersion.Version) }}
+        {{- if .Values.artifactory.readinessProbe.enabled }}
+        readinessProbe:
+{{ tpl .Values.artifactory.readinessProbe.config . | indent 10 }}
+        {{- end }}
+    {{- end }}
+        {{- if .Values.artifactory.livenessProbe.enabled }}
+        livenessProbe:
+{{ tpl .Values.artifactory.livenessProbe.config . | indent 10 }}
+        {{- end }}
+      {{- $mountPath := .Values.artifactory.persistence.mountPath }}
+      {{- range .Values.artifactory.loggers }}
+      - name: {{ . | replace "_" "-" | replace "." "-" }}
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list $ "initContainers") }}
+        imagePullPolicy: {{ $.Values.initContainers.image.pullPolicy }}
+      {{- if $.Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit $.Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+          - 'sh'
+          - '-c'
+          - 'sh /scripts/tail-log.sh {{ $mountPath }}/log {{ . }}'
+        volumeMounts:
+        - name: volume
+          mountPath: {{ $mountPath }}
+        - name: tail-logger-script
+          mountPath: /scripts/tail-log.sh
+          subPath: tail-log.sh
+        resources:
+{{ toYaml $.Values.artifactory.loggersResources | indent 10 }}
+      {{- end }}
+      {{ if .Values.artifactory.catalinaLoggers }}
+      {{- range .Values.artifactory.catalinaLoggers }}
+      - name: {{ . | replace "_" "-" | replace "." "-" }}
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list $ "initContainers") }}
+        imagePullPolicy: {{ $.Values.initContainers.image.pullPolicy }}
+      {{- if $.Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit $.Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+        - 'sh'
+        - '-c'
+        - 'sh /scripts/tail-log.sh {{ $mountPath }}/log/tomcat {{ . }}'
+        volumeMounts:
+        - name: volume
+          mountPath: {{ $mountPath }}
+        - name: tail-logger-script
+          mountPath: /scripts/tail-log.sh
+          subPath: tail-log.sh
+        resources:
+{{ toYaml $.Values.artifactory.catalinaLoggersResources | indent 10 }}
+      {{- end }}
+      {{- end }}
+      {{- if .Values.filebeat.enabled }}
+      - name: {{ .Values.filebeat.name }}
+        image: "{{ .Values.filebeat.image.repository }}:{{ .Values.filebeat.image.version }}"
+        imagePullPolicy: {{ .Values.filebeat.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        args:
+        - "-e"
+        - "-E"
+        - "http.enabled=true"
+        env:
+{{- with .Values.filebeat.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 10 }}
+{{- end }}
+        volumeMounts:
+        - name: filebeat-config
+          mountPath: /usr/share/filebeat/filebeat.yml
+          readOnly: true
+          subPath: filebeat.yml
+        - name: volume
+          mountPath: "{{ .Values.artifactory.persistence.mountPath }}"
+        livenessProbe:
+{{ toYaml .Values.filebeat.livenessProbe | indent 10 }}
+        readinessProbe:
+{{ toYaml .Values.filebeat.readinessProbe | indent 10 }}
+        resources:
+{{ toYaml .Values.filebeat.resources | indent 10 }}
+      {{- end }}
+    {{- if or .Values.artifactory.customSidecarContainers .Values.global.customSidecarContainers }}
+{{ tpl (include "artifactory-ha.customSidecarContainers" .) . | indent 6 }}
+    {{- end }}
+    {{- if or .Values.artifactory.primary.nodeSelector .Values.global.nodeSelector }}
+{{ tpl (include "artifactory.nodeSelector" .) . | indent 6 }}
+    {{- end }}
+    {{- if .Values.artifactory.primary.affinity }}
+    {{- with .Values.artifactory.primary.affinity }}
+      affinity:
+{{ toYaml . | indent 8 }}
+    {{- end }}
+    {{- else if eq .Values.artifactory.primary.podAntiAffinity.type "soft" }}
+      affinity:
+        podAntiAffinity:
+          preferredDuringSchedulingIgnoredDuringExecution:
+          - weight: 100
+            podAffinityTerm:
+              topologyKey: {{ .Values.artifactory.primary.podAntiAffinity.topologyKey }}
+              labelSelector:
+                matchLabels:
+                  app: {{ template "artifactory-ha.name" . }}
+                  release: {{ .Release.Name }}
+    {{- else if eq .Values.artifactory.primary.podAntiAffinity.type "hard" }}
+      affinity:
+        podAntiAffinity:
+          requiredDuringSchedulingIgnoredDuringExecution:
+          - topologyKey: {{ .Values.artifactory.primary.podAntiAffinity.topologyKey }}
+            labelSelector:
+              matchLabels:
+                app: {{ template "artifactory-ha.name" . }}
+                release: {{ .Release.Name }}
+    {{- end }}
+    {{- with .Values.artifactory.primary.tolerations }}
+      tolerations:
+{{ toYaml . | indent 8 }}
+    {{- end }}
+      volumes:
+
+      ########## External secrets ###########
+
+      {{- if or .Values.artifactory.customCertificates.enabled .Values.global.customCertificates.enabled }}
+      - name: ca-certs
+        secret:
+          secretName: {{ default .Values.global.customCertificates.certificateSecretName .Values.artifactory.customCertificates.certificateSecretName }}
+      {{- end }}
+
+      {{- if .Values.artifactory.circleOfTrustCertificatesSecret }}
+      - name: circle-of-trust-certs
+        secret:
+          secretName: {{ .Values.artifactory.circleOfTrustCertificatesSecret }}
+      {{- end }}
+
+      {{- if .Values.aws.licenseConfigSecretName }}
+      - name: awsmp-product-license
+        secret:
+          secretName: {{ .Values.aws.licenseConfigSecretName }}
+      {{- end }}
+
+      {{- if .Values.artifactory.persistence.customBinarystoreXmlSecret }}
+      - name: binarystore-xml
+        secret:
+          secretName: {{ .Values.artifactory.persistence.customBinarystoreXmlSecret }}
+      {{- end }}
+      {{- if .Values.access.customCertificatesSecretName }}
+      - name: access-certs
+        secret:
+          secretName: {{ .Values.access.customCertificatesSecretName }}
+      {{- end }}
+      {{- if .Values.jfconnect.customCertificatesSecretName }}
+      - name: jfconnect-certs
+        secret:
+          secretName: {{ .Values.jfconnect.customCertificatesSecretName }}
+      {{- end }}
+      {{- if .Values.systemYamlOverride.existingSecret }}
+      - name: systemyaml
+        secret:
+          secretName: {{ .Values.systemYamlOverride.existingSecret }}
+      {{- end }}
+      {{- if .Values.artifactory.license.secret }}
+      - name: artifactory-license
+        secret:
+          secretName: {{ .Values.artifactory.license.secret }}
+      {{- end }}
+      {{- if and .Values.artifactory.admin.secret .Values.artifactory.admin.dataKey }}
+      - name: access-bootstrap-creds
+        secret:
+          secretName: {{ .Values.artifactory.admin.secret }}
+      {{- end }}
+      {{- if and .Values.artifactory.persistence.googleStorage.gcpServiceAccount.enabled .Values.artifactory.persistence.googleStorage.gcpServiceAccount.customSecretName }}
+      - name: gcpcreds-json
+        secret:
+          secretName: {{ .Values.artifactory.persistence.googleStorage.gcpServiceAccount.customSecretName }}
+      {{- end }}
+
+      ############ Config map, Volumes and Custom Volumes ##############
+      {{- if .Values.artifactory.userPluginSecrets }}
+      - name: bootstrap-plugins
+        emptyDir: {}
+      {{- range .Values.artifactory.userPluginSecrets }}
+      - name: {{ tpl . $ }}
+        secret:
+          secretName: {{ tpl . $ }}
+      {{- end }}
+      {{- end }}
+      {{- if .Values.artifactory.migration.enabled }}
+      - name: migration-scripts
+        configMap:
+          name: {{ template "artifactory-ha.fullname" . }}-migration-scripts
+      {{- end }}
+      - name: installer-info
+        configMap:
+          name: {{ template "artifactory-ha.fullname" . }}-installer-info
+      {{- if .Values.artifactory.configMapName }}
+      - name: bootstrap-config
+        configMap:
+          name: {{ .Values.artifactory.configMapName }}
+      {{- end}}
+      {{- if or .Values.artifactory.loggers .Values.artifactory.catalinaLoggers }}
+      - name: tail-logger-script
+        configMap:
+          name: {{ template "artifactory-ha.fullname" . }}-logger
+      {{- end }}
+      {{- if .Values.artifactory.configMaps }}
+      - name: artifactory-configmaps
+        configMap:
+          name: {{ template "artifactory-ha.fullname" . }}-configmaps
+      {{- end }}
+      {{- if eq .Values.artifactory.persistence.type "file-system" }}
+        {{- if .Values.artifactory.persistence.fileSystem.existingSharedClaim.enabled }}
+          {{- range $sharedClaimNumber, $e := until (.Values.artifactory.persistence.fileSystem.existingSharedClaim.numberOfExistingClaims|int) }}
+      - name: artifactory-ha-data-{{ $sharedClaimNumber }}
+        persistentVolumeClaim:
+          claimName: {{ template "artifactory-ha.fullname" $ }}-data-pvc-{{ $sharedClaimNumber }}
+          {{- end }}
+      - name: artifactory-ha-backup
+        persistentVolumeClaim:
+          claimName: {{ template "artifactory-ha.fullname" $ }}-backup-pvc
+        {{- end }}
+      {{- end }}
+      {{- if eq .Values.artifactory.persistence.type "nfs" }}
+      - name: artifactory-ha-data
+        persistentVolumeClaim:
+          claimName: {{ template "artifactory-ha.fullname" . }}-data-pvc
+      - name: artifactory-ha-backup
+        persistentVolumeClaim:
+          claimName: {{ template "artifactory-ha.fullname" . }}-backup-pvc
+      {{- end }}
+      {{- if .Values.artifactory.customPersistentVolumeClaim }}
+      - name: {{ .Values.artifactory.customPersistentVolumeClaim.name }}
+        persistentVolumeClaim:
+          claimName: {{ .Values.artifactory.customPersistentVolumeClaim.name }}
+      {{- end }}
+      {{- if .Values.filebeat.enabled }}
+      - name: filebeat-config
+        configMap:
+          name: {{ template "artifactory-ha.fullname" . }}-filebeat-config
+      {{- end }}
+      {{- if (or .Values.artifactory.customVolumes .Values.global.customVolumes) }}
+{{ tpl (include "artifactory-ha.customVolumes" .) . | indent 6 }}
+      {{- end }}
+  {{- if not .Values.artifactory.persistence.enabled }}
+      - name: volume
+        emptyDir:
+          sizeLimit: {{ .Values.artifactory.persistence.size }}
+  {{- end }}
+
+      #########  unifiedSecretInstallation ###########
+    {{- if and .Values.artifactory.unifiedSecretInstallation (eq (include "artifactory-ha.checkDuplicateUnifiedCustomVolume" .) "false" ) }}
+      - name: {{ include "artifactory-ha.unifiedCustomSecretVolumeName" . }}
+        secret:
+          secretName: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+
+    {{- else if not .Values.artifactory.unifiedSecretInstallation }}
+
+      ############ If single secret installation flag is disable ############
+      {{- if and .Values.artifactory.persistence.googleStorage.gcpServiceAccount.enabled (not .Values.artifactory.persistence.googleStorage.gcpServiceAccount.customSecretName) }}
+      - name: gcpcreds-json
+        secret:
+          secretName: {{ template "artifactory-ha.fullname" . }}-gcpcreds
+      {{- end }}
+      {{- if and .Values.artifactory.license.licenseKey (not .Values.artifactory.license.secret) }}
+      - name: artifactory-license
+        secret:
+          secretName: {{ template "artifactory-ha.fullname" . }}-license
+      {{- end }}
+      {{- if and .Values.artifactory.admin.password (and (not .Values.artifactory.admin.secret) (not .Values.artifactory.admin.dataKey)) }}
+      - name: access-bootstrap-creds
+        secret:
+          secretName: {{ template "artifactory-ha.fullname" . }}-bootstrap-creds
+      {{- end }}
+      {{- if and (not .Values.systemYamlOverride.existingSecret) }}
+      - name: systemyaml
+        secret:
+          secretName: {{ template "artifactory-ha.primary.name" . }}-system-yaml
+      {{- end }}
+      {{- if .Values.access.accessConfig }}
+      - name: access-config
+        secret:
+          secretName: {{ template "artifactory-ha.fullname" . }}-access-config
+      {{- end }}
+      {{- if not .Values.artifactory.persistence.customBinarystoreXmlSecret }}
+      - name: binarystore-xml
+        secret:
+          secretName: {{ template "artifactory-ha.fullname" . }}-binarystore
+      {{- end }}
+    {{- end }}
+
+  volumeClaimTemplates:
+  {{- if .Values.artifactory.persistence.enabled }}
+  - metadata:
+      name: volume
+    {{- if not .Values.artifactory.primary.persistence.existingClaim }}
+    spec:
+      {{- if .Values.artifactory.persistence.storageClassName }}
+      {{- if (eq "-" .Values.artifactory.persistence.storageClassName) }}
+      storageClassName: ""
+      {{- else }}
+      storageClassName: "{{ .Values.artifactory.persistence.storageClassName }}"
+      {{- end }}
+      {{- end }}
+      accessModes: [ "{{ .Values.artifactory.persistence.accessMode }}" ]
+      resources:
+        requests:
+          storage: {{ .Values.artifactory.persistence.size }}
+    {{- end }}
+  {{- end }}
+  {{- if .Values.artifactory.customPersistentPodVolumeClaim }}
+  - metadata:
+      name: {{ .Values.artifactory.customPersistentPodVolumeClaim.name }}
+    spec:
+    {{- if .Values.artifactory.customPersistentPodVolumeClaim.storageClassName }}
+      {{- if (eq "-" .Values.artifactory.customPersistentPodVolumeClaim.storageClassName) }}
+      storageClassName: ""
+      {{- else }}
+      storageClassName: "{{ .Values.artifactory.customPersistentPodVolumeClaim.storageClassName }}"
+      {{- end }}
+    {{- end }}
+      accessModes:
+     {{- range .Values.artifactory.customPersistentPodVolumeClaim.accessModes }}
+        - {{ . | quote }}
+     {{- end }}
+      resources:
+        requests:
+          storage: {{ .Values.artifactory.customPersistentPodVolumeClaim.size }}
+  {{- end }}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-priority-class.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-priority-class.yaml
new file mode 100644
index 0000000000..417ec5c067
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-priority-class.yaml
@@ -0,0 +1,9 @@
+{{- if .Values.artifactory.priorityClass.create }}
+apiVersion: scheduling.k8s.io/v1
+kind: PriorityClass
+metadata:
+  name: {{ default (include "artifactory-ha.fullname" .) .Values.artifactory.priorityClass.name }}
+value: {{ .Values.artifactory.priorityClass.value }}
+globalDefault: false
+description: "Artifactory priority class"
+{{- end }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-role.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-role.yaml
new file mode 100644
index 0000000000..c86bffddd9
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-role.yaml
@@ -0,0 +1,14 @@
+{{- if .Values.rbac.create }}
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    component: {{ .Values.artifactory.name }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+  name: {{ template "artifactory-ha.fullname" . }}
+rules:
+{{ toYaml .Values.rbac.role.rules }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-rolebinding.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-rolebinding.yaml
new file mode 100644
index 0000000000..4412870b1e
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-rolebinding.yaml
@@ -0,0 +1,19 @@
+{{- if .Values.rbac.create }}
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    component: {{ .Values.artifactory.name }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+  name: {{ template "artifactory-ha.fullname" . }}
+subjects:
+- kind: ServiceAccount
+  name: {{ template "artifactory-ha.serviceAccountName" . }}
+roleRef:
+  kind: Role
+  apiGroup: rbac.authorization.k8s.io
+  name: {{ template "artifactory-ha.fullname" . }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-secrets.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-secrets.yaml
new file mode 100644
index 0000000000..3a16c87eff
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-secrets.yaml
@@ -0,0 +1,30 @@
+{{- if not .Values.artifactory.unifiedSecretInstallation }}
+{{- if or .Values.artifactory.joinKey .Values.global.joinKey .Values.artifactory.jfConnectToken .Values.artifactory.masterKey .Values.global.masterKey }}
+apiVersion: v1
+kind: Secret
+metadata:
+  name: {{ template "artifactory-ha.fullname" . }}
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+type: Opaque
+data:
+  {{- if or .Values.artifactory.masterKey .Values.global.masterKey }}
+  {{- if not (or .Values.artifactory.masterKeySecretName .Values.global.masterKeySecretName) }}
+  master-key: {{ include "artifactory-ha.masterKey" . | b64enc | quote }}
+  {{- end }}
+  {{- end }}
+  {{- if or .Values.artifactory.joinKey .Values.global.joinKey }}
+  {{- if not (or .Values.artifactory.joinKeySecretName .Values.global.joinKeySecretName) }}
+  join-key: {{ include "artifactory-ha.joinKey" . | b64enc | quote }}
+  {{- end }}
+  {{- end }}
+  {{- if .Values.artifactory.jfConnectToken  }}
+  {{- if not .Values.artifactory.jfConnectTokenSecretName }}
+  jfconnect-token: {{ include "artifactory-ha.jfConnectToken" . | b64enc | quote }}
+  {{- end }}
+  {{- end }}
+{{- end }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-service-grpc.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-service-grpc.yaml
new file mode 100644
index 0000000000..a2f1b9233d
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-service-grpc.yaml
@@ -0,0 +1,49 @@
+{{- if .Values.ingressGrpc.enabled -}}
+# Service for GRPC communication.
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ template "artifactory.serviceGrpc.fullname" . }}
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    component: {{ .Values.artifactory.name }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+    {{- with .Values.artifactory.node.labels }}
+{{ toYaml .| indent 4 }}
+    {{- end }}
+{{- if .Values.artifactory.serviceGrpc.annotations }}
+  annotations:
+{{ toYaml .Values.artifactory.serviceGrpc.annotations | indent 4 }}
+{{- end }}
+spec:
+  {{- if .Values.artifactory.serviceGrpc.ipFamilyPolicy }}
+  ipFamilyPolicy: {{ .Values.artifactory.serviceGrpc.ipFamilyPolicy }}
+  {{- end }}
+  {{- if not (empty .Values.artifactory.serviceGrpc.ipFamilies)}}
+  ipFamilies: {{- toYaml .Values.artifactory.serviceGrpc.ipFamilies | nindent 4 }}
+  {{- end }}
+  type: {{ .Values.artifactory.serviceGrpc.type }}
+  {{- if and (eq .Values.artifactory.serviceGrpc.type "ClusterIP") .Values.artifactory.serviceGrpc.clusterIP }}
+  clusterIP: {{ .Values.artifactory.serviceGrpc.clusterIP }}
+  {{- end }}
+  {{- if .Values.artifactory.serviceGrpc.loadBalancerSourceRanges }}
+  loadBalancerSourceRanges:
+{{ toYaml .Values.artifactory.serviceGrpc.loadBalancerSourceRanges | indent 4 }}
+  {{- end }}
+  ports:
+  - port: {{ .Values.artifactory.externalPort }}
+    targetPort: {{ .Values.artifactory.internalPort }}
+    protocol: TCP
+    name: http-router
+  selector:
+{{- if eq (int .Values.artifactory.node.replicaCount) 0 }}
+    role: {{ template "artifactory-ha.primary.name" . }}
+{{- else if eq .Values.artifactory.serviceGrpc.pool "members" }}
+    role: {{ template "artifactory-ha.node.name" . }}
+{{- end }}
+    app: {{ template "artifactory-ha.name" . }}
+    component: "{{ .Values.artifactory.name }}"
+    release: {{ .Release.Name }}
+{{- end -}}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-service.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-service.yaml
new file mode 100644
index 0000000000..6b8f9a0bd4
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-service.yaml
@@ -0,0 +1,68 @@
+# Service for all Artifactory cluster nodes.
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ template "artifactory-ha.fullname" . }}
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    component: {{ .Values.artifactory.name }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+    {{- with .Values.artifactory.node.labels }}
+{{ toYaml .| indent 4 }}
+    {{- end }}
+{{- if .Values.artifactory.service.annotations }}
+  annotations:
+{{ toYaml .Values.artifactory.service.annotations | indent 4 }}
+{{- end }}
+spec:
+  {{- if .Values.artifactory.service.ipFamilyPolicy }}
+  ipFamilyPolicy: {{ .Values.artifactory.service.ipFamilyPolicy }}
+  {{- end }}
+  {{- if not (empty .Values.artifactory.service.ipFamilies)}}
+  ipFamilies: {{- toYaml .Values.artifactory.service.ipFamilies | nindent 4 }}
+  {{- end }}
+  type: {{ .Values.artifactory.service.type }}
+  {{- if and (eq .Values.artifactory.service.type "ClusterIP") .Values.artifactory.service.clusterIP }}
+  clusterIP: {{ .Values.artifactory.service.clusterIP }}
+  {{- end }}
+  {{- if .Values.artifactory.service.loadBalancerSourceRanges }}
+  loadBalancerSourceRanges:
+{{ toYaml .Values.artifactory.service.loadBalancerSourceRanges | indent 4 }}
+  {{- end }}
+  ports:
+  - port: {{ .Values.artifactory.externalPort }}
+    targetPort: {{ .Values.artifactory.internalPort }}
+    protocol: TCP
+    name: http-router
+  {{- if .Values.artifactory.ssh.enabled }}
+  - port: {{ .Values.artifactory.ssh.externalPort }}
+    targetPort: {{ .Values.artifactory.ssh.internalPort }}
+    protocol: TCP
+    name: tcp-ssh
+  {{- end }}
+  - port: {{ .Values.artifactory.externalArtifactoryPort }}
+    targetPort: {{ .Values.artifactory.internalArtifactoryPort }}
+    protocol: TCP
+    name: http-artifactory
+  {{- with .Values.artifactory.node.javaOpts.jmx }}
+  {{- if .enabled }}
+  - port: {{ .port }}
+    targetPort: {{ .port }}
+  {{- if $.Values.artifactory.service.nodePort }}
+    nodePort: {{ $.Values.artifactory.service.nodePort }}
+  {{- end }}
+    protocol: TCP
+    name: tcp-jmx
+  {{- end }}
+  {{- end }}
+  selector:
+{{- if eq (int .Values.artifactory.node.replicaCount) 0 }}
+    role: {{ template "artifactory-ha.primary.name" . }}
+{{- else if eq .Values.artifactory.service.pool "members" }}
+    role: {{ template "artifactory-ha.node.name" . }}
+{{- end }}
+    app: {{ template "artifactory-ha.name" . }}
+    component: "{{ .Values.artifactory.name }}"
+    release: {{ .Release.Name }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-serviceaccount.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-serviceaccount.yaml
new file mode 100644
index 0000000000..c6d345bb7b
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-serviceaccount.yaml
@@ -0,0 +1,17 @@
+{{- if .Values.serviceAccount.create }}
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+{{- with .Values.serviceAccount.annotations }}
+  annotations:
+{{ tpl (toYaml .) $ | indent 4 }}
+{{- end }}
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    component: {{ .Values.artifactory.name }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+  name: {{ template "artifactory-ha.serviceAccountName" . }}
+automountServiceAccountToken: {{ .Values.serviceAccount.automountServiceAccountToken }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-storage-pvc.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-storage-pvc.yaml
new file mode 100644
index 0000000000..e0bfa6b11f
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-storage-pvc.yaml
@@ -0,0 +1,27 @@
+{{ if .Values.artifactory.customPersistentVolumeClaim }}
+kind: PersistentVolumeClaim
+apiVersion: v1
+metadata:
+  name: {{ .Values.artifactory.customPersistentVolumeClaim.name }}
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    version: "{{ .Values.artifactory.version }}"
+    chart: {{ template "artifactory-ha.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+spec:
+  accessModes:
+  {{- range .Values.artifactory.customPersistentVolumeClaim.accessModes }}
+    - {{ . | quote }}
+  {{- end }}
+  {{- if .Values.artifactory.customPersistentVolumeClaim.storageClassName }}
+  {{- if (eq "-" .Values.artifactory.customPersistentVolumeClaim.storageClassName) }}
+  storageClassName: ""
+  {{- else }}
+  storageClassName: "{{ .Values.artifactory.customPersistentVolumeClaim.storageClassName }}"
+  {{- end }}
+  {{- end }}
+  resources:
+    requests:
+      storage: {{ .Values.artifactory.customPersistentVolumeClaim.size | quote }}
+{{ end -}}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-system-yaml.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-system-yaml.yaml
new file mode 100644
index 0000000000..9e0cb46fe7
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-system-yaml.yaml
@@ -0,0 +1,16 @@
+{{- if and (not .Values.systemYamlOverride.existingSecret) (not .Values.artifactory.unifiedSecretInstallation) }}
+apiVersion: v1
+kind: Secret
+metadata:
+  name: {{ template "artifactory-ha.primary.name" . }}-system-yaml
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    component: {{ .Values.artifactory.name }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+type: Opaque
+stringData:
+  system.yaml: |
+{{ include "artifactory.finalSystemYaml" . | nindent 4 }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-unified-secret.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-unified-secret.yaml
new file mode 100644
index 0000000000..d21045d992
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/artifactory-unified-secret.yaml
@@ -0,0 +1,96 @@
+{{- if .Values.artifactory.unifiedSecretInstallation }}
+apiVersion: v1
+kind: Secret
+metadata:
+  name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+  labels:
+    app: "{{ template "artifactory-ha.name" $ }}"
+    chart: "{{ template "artifactory-ha.chart" $ }}"
+    component: "{{ $.Values.artifactory.name }}"
+    heritage: {{ $.Release.Service | quote }}
+    release: {{ $.Release.Name | quote }}
+type: Opaque
+stringData:
+
+{{- if .Values.access.accessConfig }}
+  access.config.patch.yml: |
+{{ tpl (toYaml .Values.access.accessConfig) . | indent 4 }}
+{{- end }}
+
+{{- if not .Values.artifactory.persistence.customBinarystoreXmlSecret }}
+  binarystore.xml: |-
+{{- if .Values.artifactory.persistence.binarystoreXml }}
+{{ tpl .Values.artifactory.persistence.binarystoreXml . | indent 4 }}
+{{- else }}
+{{ tpl ( .Files.Get "files/binarystore.xml" ) . | indent 4 }}
+{{- end }}
+{{- end }}
+
+{{- if and (not .Values.systemYamlOverride.existingSecret) }}
+  system.yaml: |
+{{ include "artifactory.finalSystemYaml" . | nindent 4 }}
+{{- end }}
+
+{{- if .Values.artifactory.customSecrets }}
+{{- range .Values.artifactory.customSecrets }}
+  {{ .key }}: |
+{{ .data | indent 4 -}}
+{{- end }}
+{{- end }}
+
+{{- if not .Values.artifactory.persistence.googleStorage.gcpServiceAccount.customSecretName }}
+{{- if .Values.artifactory.persistence.googleStorage.gcpServiceAccount.enabled }}
+  gcp.credentials.json: |-
+{{ tpl .Values.artifactory.persistence.googleStorage.gcpServiceAccount.config . | indent 4 }}
+{{- end }}
+{{- end }}
+
+data:
+
+  {{- if and (not .Values.database.secrets) (not .Values.postgresql.enabled) }}
+  {{- if or .Values.database.url .Values.database.user .Values.database.password }}
+
+  {{- with .Values.database.url }}
+  db-url: {{ tpl . $ | b64enc | quote }}
+  {{- end }}
+  {{- with .Values.database.user }}
+  db-user: {{ tpl . $ | b64enc | quote }}
+  {{- end }}
+  {{- with .Values.database.password }}
+  db-password: {{ tpl . $ | b64enc | quote }}
+  {{- end }}
+
+  {{- end }}
+  {{- end }}
+
+  {{- if not (and .Values.artifactory.admin.secret .Values.artifactory.admin.dataKey) }}
+  {{- if .Values.artifactory.admin.password }}
+  bootstrap.creds: {{ (printf "%s@%s=%s" .Values.artifactory.admin.username .Values.artifactory.admin.ip .Values.artifactory.admin.password) | b64enc }}
+  {{- end }}
+  {{- end }}
+
+  {{- if not .Values.artifactory.license.secret }}
+  {{- with .Values.artifactory.license.licenseKey }}
+  artifactory.lic: {{ . | b64enc | quote }}
+  {{- end }}
+  {{- end }}
+
+  {{- if or .Values.artifactory.masterKey .Values.global.masterKey }}
+  {{- if not (or .Values.artifactory.masterKeySecretName .Values.global.masterKeySecretName) }}
+  master-key: {{ include "artifactory-ha.masterKey" . | b64enc | quote }}
+  {{- end }}
+  {{- end }}
+
+  {{- if or .Values.artifactory.joinKey .Values.global.joinKey }}
+  {{- if not (or .Values.artifactory.joinKeySecretName .Values.global.joinKeySecretName) }}
+  join-key: {{ include "artifactory-ha.joinKey" . | b64enc | quote }}
+  {{- end }}
+  {{- end }}
+
+  {{- if .Values.artifactory.jfConnectToken }}
+  {{- if not .Values.artifactory.jfConnectTokenSecretName }}
+  jfconnect-token: {{ include "artifactory-ha.jfConnectToken" . | b64enc | quote }}
+  {{- end }}
+  {{- end }}
+
+{{- end }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/filebeat-configmap.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/filebeat-configmap.yaml
new file mode 100644
index 0000000000..1686e83a1c
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/filebeat-configmap.yaml
@@ -0,0 +1,15 @@
+{{- if .Values.filebeat.enabled }}
+---
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ template "artifactory-ha.fullname" . }}-filebeat-config
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ .Chart.Name }}-{{ .Chart.Version }}
+    heritage: {{ .Release.Service | quote }}
+    release: {{ .Release.Name | quote }}
+data:
+  filebeat.yml: |
+{{ tpl .Values.filebeat.filebeatYml . | indent 4 }}
+{{- end -}}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/ingress-grpc.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/ingress-grpc.yaml
new file mode 100644
index 0000000000..7c80e3026d
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/ingress-grpc.yaml
@@ -0,0 +1,80 @@
+{{- if .Values.ingressGrpc.enabled -}}
+{{- $serviceName := include "artifactory.serviceGrpc.fullname" . -}}
+{{- $servicePort := .Values.artifactory.externalPort -}}
+{{- $ingressName := include "artifactory.ingressGrpc.fullname" . -}}
+{{- if .Capabilities.APIVersions.Has "networking.k8s.io/v1" }}
+apiVersion: networking.k8s.io/v1
+{{- else if .Capabilities.APIVersions.Has "networking.k8s.io/v1beta1" }}
+apiVersion: networking.k8s.io/v1beta1
+{{- else }}
+apiVersion: extensions/v1beta1
+{{- end }}
+kind: Ingress
+metadata:
+  name: {{ $ingressName }}
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    release: {{ .Release.Name }}
+    heritage: {{ .Release.Service }}
+{{- if .Values.ingressGrpc.labels }}
+{{ .Values.ingressGrpc.labels | toYaml | trimSuffix "\n"| indent 4 -}}
+{{- end}}
+{{- if .Values.ingressGrpc.annotations }}
+  annotations:
+{{ .Values.ingressGrpc.annotations | toYaml | trimSuffix "\n" | indent 4 -}}
+{{- end }}
+spec:
+  {{- if and .Values.ingressGrpc.className (semverCompare ">=1.18.0-0" .Capabilities.KubeVersion.GitVersion) }}
+  ingressClassName: {{ .Values.ingressGrpc.className }}
+  {{- end }}
+  {{- if .Values.ingressGrpc.defaultBackend.enabled }}
+    {{- if .Capabilities.APIVersions.Has "networking.k8s.io/v1" }}
+  defaultBackend:
+    service:
+      name: {{ $serviceName }}
+      port:
+        number: {{ $servicePort }}
+    {{- else }}
+  backend:
+    serviceName: {{ $serviceName }}
+    servicePort: {{ $servicePort }}
+    {{- end }}
+  {{- end }}
+  rules:
+{{- if .Values.ingressGrpc.hosts }}
+  {{- if .Capabilities.APIVersions.Has "networking.k8s.io/v1" }}
+    {{- range $host := .Values.ingressGrpc.hosts }}
+  - host: {{ $host | quote }}
+    http:
+      paths:
+        - path: {{ $.Values.ingressGrpc.grpcPath }}
+          pathType: {{ $.Values.ingressGrpc.pathType | default "ImplementationSpecific" }}
+          backend:
+            service:
+              name: {{ $serviceName }}
+              port:
+                number: {{ $servicePort }}
+    {{- end }}
+  {{- else }}
+    {{- range $host := .Values.ingressGrpc.hosts }}
+  - host: {{ $host | quote }}
+    http:
+      paths:
+        - path: {{ $.Values.ingressGrpc.grpcPath }}
+          backend:
+            serviceName: {{ $serviceName }}
+            servicePort: {{ $servicePort }}
+    {{- end }}
+  {{- end }}
+{{- end -}}
+  {{- with .Values.ingressGrpc.additionalRules }}
+{{ tpl . $ | indent 2 }}
+  {{- end }}
+
+  {{- if .Values.ingressGrpc.tls }}
+  tls:
+{{ toYaml .Values.ingressGrpc.tls | indent 4 }}
+  {{- end -}}
+
+{{- end -}}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/ingress.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/ingress.yaml
new file mode 100644
index 0000000000..125bbc56b3
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/ingress.yaml
@@ -0,0 +1,107 @@
+{{- if .Values.ingress.enabled -}}
+{{- $serviceName := include "artifactory-ha.fullname" . -}}
+{{- $servicePort := .Values.artifactory.externalPort -}}
+{{- $serviceRTFSName := include "rtfs.fullname" . -}}
+{{- $artifactoryServicePort := .Values.artifactory.externalArtifactoryPort -}}
+{{- $ingressName := default ( include "artifactory-ha.fullname" . ) .Values.ingress.name -}}
+{{- if .Capabilities.APIVersions.Has "networking.k8s.io/v1" }}
+apiVersion: networking.k8s.io/v1
+{{- else if .Capabilities.APIVersions.Has "networking.k8s.io/v1beta1" }}
+apiVersion: networking.k8s.io/v1beta1
+{{- else }}
+apiVersion: extensions/v1beta1
+{{- end }}
+kind: Ingress
+metadata:
+  name: {{ $ingressName }}
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    release: {{ .Release.Name }}
+    heritage: {{ .Release.Service }}
+{{- if .Values.ingress.labels }}
+{{ .Values.ingress.labels | toYaml | trimSuffix "\n"| indent 4 -}}
+{{- end}}
+{{- if .Values.ingress.annotations }}
+  annotations:
+{{ .Values.ingress.annotations | toYaml | trimSuffix "\n" | indent 4 -}}
+{{- end }}
+spec:
+  {{- if and .Values.ingress.className (semverCompare ">=1.18.0-0" .Capabilities.KubeVersion.GitVersion) }}
+  ingressClassName: {{ .Values.ingress.className }}
+  {{- end }}
+  {{- if .Values.ingress.defaultBackend.enabled }}
+    {{- if .Capabilities.APIVersions.Has "networking.k8s.io/v1" }}
+  defaultBackend:
+    service:
+      name: {{ $serviceName }}
+      port:
+        number: {{ $servicePort }}
+    {{- else }}
+  backend:
+    serviceName: {{ $serviceName }}
+    servicePort: {{ $servicePort }}
+    {{- end }}
+  {{- end }}
+  rules:
+{{- if .Values.ingress.hosts }}
+  {{- if .Capabilities.APIVersions.Has "networking.k8s.io/v1" }}
+    {{- range $host := .Values.ingress.hosts }}
+  - host: {{ $host | quote }}
+    http:
+      paths:
+        - path: {{ $.Values.ingress.routerPath }}
+          pathType: {{ $.Values.ingress.pathType | default "ImplementationSpecific" }}
+          backend:
+            service:
+              name: {{ $serviceName }}
+              port:
+                number: {{ $servicePort }}
+        {{- if not $.Values.ingress.disableRouterBypass }}
+        - path: {{ $.Values.ingress.artifactoryPath }}
+          pathType: {{ $.Values.ingress.pathType | default "ImplementationSpecific" }}
+          backend:
+            service:
+              name: {{ $serviceName }}
+              port:
+                number: {{ $artifactoryServicePort }}
+        {{- end }}
+        {{- if and $.Values.rtfs.enabled $.Values.ingress.enabled (not (regexMatch "^.*(oss|cpp-ce|jcr).*$" $.Values.artifactory.image.repository)) }}
+        - path: {{ $.Values.ingress.rtfsPath }}
+          pathType: {{ $.Values.ingress.pathType | default "ImplementationSpecific" }}
+          backend:
+            service:
+              name: {{ $serviceRTFSName }}
+              port:
+                name: http-router
+        {{- end }}
+    {{- end }}
+  {{- else }}
+    {{- range $host := .Values.ingress.hosts }}
+  - host: {{ $host | quote }}
+    http:
+      paths:
+        - path: {{ $.Values.ingress.routerPath }}
+          backend:
+            serviceName: {{ $serviceName }}
+            servicePort: {{ $servicePort }}
+        - path: {{ $.Values.ingress.artifactoryPath }}
+          backend:
+            serviceName: {{ $serviceName }}
+            servicePort: {{ $artifactoryServicePort }}
+    {{- end }}
+  {{- end }}
+{{- end -}}
+  {{- with .Values.ingress.additionalRules }}
+{{ tpl . $ | indent 2 }}
+  {{- end }}
+  {{- if .Values.ingress.tls }}
+  tls:
+{{ toYaml .Values.ingress.tls | indent 4 }}
+  {{- end -}}
+
+{{- if .Values.customIngress }}
+---
+{{ .Values.customIngress | toYaml | trimSuffix "\n" }}
+{{- end -}}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/logger-configmap.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/logger-configmap.yaml
new file mode 100644
index 0000000000..d3597905d9
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/logger-configmap.yaml
@@ -0,0 +1,63 @@
+{{- if or .Values.artifactory.loggers .Values.artifactory.catalinaLoggers }}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ template "artifactory-ha.fullname" . }}-logger
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+data:
+  tail-log.sh: |
+    #!/bin/sh
+
+    LOG_DIR=$1
+    LOG_NAME=$2
+    PID=
+
+    # Wait for log dir to appear
+    while [ ! -d ${LOG_DIR} ]; do
+      sleep 1
+    done
+
+    cd ${LOG_DIR}
+
+    LOG_PREFIX=$(echo ${LOG_NAME} | sed 's/.log$//g')
+
+    # Find the log to tail
+    LOG_FILE=$(ls -1t ./${LOG_PREFIX}.log 2>/dev/null)
+
+    # Wait for the log file
+    while [ -z "${LOG_FILE}" ]; do
+      sleep 1
+      LOG_FILE=$(ls -1t ./${LOG_PREFIX}.log 2>/dev/null)
+    done
+
+    echo "Log file ${LOG_FILE} is ready!"
+
+    # Get inode number
+    INODE_ID=$(ls -i ${LOG_FILE})
+
+    # echo "Tailing ${LOG_FILE}"
+    tail -F ${LOG_FILE} &
+    PID=$!
+
+    # Loop forever to see if a new log was created
+    while true; do
+      # Check inode number
+      NEW_INODE_ID=$(ls -i ${LOG_FILE})
+
+      # If inode number changed, this means log was rotated and need to start a new tail
+      if [ "${INODE_ID}" != "${NEW_INODE_ID}" ]; then
+        kill -9 ${PID} 2>/dev/null
+        INODE_ID="${NEW_INODE_ID}"
+
+        # Start a new tail
+        tail -F ${LOG_FILE} &
+        PID=$!
+      fi
+      sleep 1
+    done
+
+{{- end }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/nginx-artifactory-conf.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/nginx-artifactory-conf.yaml
new file mode 100644
index 0000000000..97ae5f27be
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/nginx-artifactory-conf.yaml
@@ -0,0 +1,18 @@
+{{- if and (not .Values.nginx.customArtifactoryConfigMap) .Values.nginx.enabled }}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ template "artifactory-ha.fullname" . }}-nginx-artifactory-conf
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+data:
+  artifactory.conf: |
+{{- if .Values.nginx.artifactoryConf }} 
+{{ tpl .Values.nginx.artifactoryConf . | indent 4 }}
+{{- else }}
+{{ tpl ( .Files.Get "files/nginx-artifactory-conf.yaml" ) . | indent 4 }}
+{{- end }}
+{{- end }}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/nginx-certificate-secret.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/nginx-certificate-secret.yaml
new file mode 100644
index 0000000000..29c77ad5a4
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/nginx-certificate-secret.yaml
@@ -0,0 +1,14 @@
+{{- if and (not .Values.nginx.tlsSecretName) .Values.nginx.enabled .Values.nginx.https.enabled }}
+apiVersion: v1
+kind: Secret
+type: kubernetes.io/tls
+metadata:
+  name: {{ template "artifactory-ha.fullname" . }}-nginx-certificate
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+data:
+{{ ( include "artifactory-ha.gen-certs" . ) | indent 2 }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/nginx-conf.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/nginx-conf.yaml
new file mode 100644
index 0000000000..4f0d65f25c
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/nginx-conf.yaml
@@ -0,0 +1,18 @@
+{{- if and (not .Values.nginx.customConfigMap) .Values.nginx.enabled }}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ template "artifactory-ha.fullname" . }}-nginx-conf
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+data:
+  nginx.conf: |
+{{- if .Values.nginx.mainConf }} 
+{{ tpl .Values.nginx.mainConf . | indent 4 }}
+{{- else }}
+{{ tpl ( .Files.Get "files/nginx-main-conf.yaml" ) . | indent 4 }}
+{{- end }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/nginx-deployment.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/nginx-deployment.yaml
new file mode 100644
index 0000000000..d43689b8cd
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/nginx-deployment.yaml
@@ -0,0 +1,221 @@
+{{- if .Values.nginx.enabled -}}
+{{- $serviceName := include "artifactory-ha.fullname" . -}}
+{{- $servicePort := .Values.artifactory.externalPort -}}
+apiVersion: apps/v1
+kind: {{ .Values.nginx.kind }}
+metadata:
+  name: {{ template "artifactory-ha.nginx.fullname" . }}
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+    component: {{ .Values.nginx.name }}
+{{- if .Values.nginx.labels }}
+{{ toYaml .Values.nginx.labels | indent 4 }}
+{{- end }}
+{{- with .Values.nginx.deployment.annotations }}
+  annotations:
+{{ toYaml . | indent 4 }}
+{{- end }}
+spec:
+{{- if ne .Values.nginx.kind "DaemonSet" }}
+  replicas: {{ .Values.nginx.replicaCount }}
+{{- end }}
+  selector:
+    matchLabels:
+      app: {{ template "artifactory-ha.name" . }}
+      release: {{ .Release.Name }}
+      component: {{ .Values.nginx.name }}
+  template:
+    metadata:
+      annotations:
+        checksum/nginx-conf: {{ include (print $.Template.BasePath "/nginx-conf.yaml") . | sha256sum }}
+        checksum/nginx-artifactory-conf: {{ include (print $.Template.BasePath "/nginx-artifactory-conf.yaml") . | sha256sum }}
+      {{- range $key, $value := .Values.nginx.annotations }}
+        {{ $key }}: {{ $value | quote }}
+      {{- end }}
+      labels:
+        app: {{ template "artifactory-ha.name" . }}
+        chart: {{ template "artifactory-ha.chart" . }}
+        component: {{ .Values.nginx.name }}
+        heritage: {{ .Release.Service }}
+        release: {{ .Release.Name }}
+{{- if .Values.nginx.labels }}
+{{ toYaml .Values.nginx.labels | indent 8 }}
+{{- end }}
+    spec:
+    {{- if .Values.nginx.podSecurityContext.enabled }}
+      securityContext: {{- omit .Values.nginx.podSecurityContext "enabled" | toYaml | nindent 8 }}
+    {{- end }}
+      serviceAccountName: {{ template "artifactory-ha.serviceAccountName" . }}
+      terminationGracePeriodSeconds: {{ .Values.nginx.terminationGracePeriodSeconds }}
+    {{- if or .Values.imagePullSecrets .Values.global.imagePullSecrets }}
+{{- include "artifactory-ha.imagePullSecrets" . | indent 6 }}
+    {{- end }}
+      {{- if .Values.nginx.priorityClassName }}
+      priorityClassName: {{ .Values.nginx.priorityClassName | quote }}
+      {{- end }}
+      {{- if .Values.nginx.topologySpreadConstraints }}
+      topologySpreadConstraints:
+{{ tpl (toYaml .Values.nginx.topologySpreadConstraints) . | indent 8 }}
+      {{- end }}
+      initContainers:
+        {{- if .Values.nginx.customInitContainers }}
+{{ tpl (include "artifactory.nginx.customInitContainers" .)  . | indent 6 }}
+        {{- end }}
+      - name: "setup"
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "initContainers") }}
+        imagePullPolicy: {{ .Values.initContainers.image.imagePullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+        - '/bin/sh'
+        - '-c'
+        - >
+          rm -rfv {{ .Values.nginx.persistence.mountPath }}/lost+found;
+          mkdir -p {{ .Values.nginx.persistence.mountPath }}/logs;
+        resources:
+          {{- toYaml .Values.initContainers.resources | nindent 10 }}
+        volumeMounts:
+        - mountPath: {{ .Values.nginx.persistence.mountPath | quote }}
+          name: nginx-volume
+      containers:
+      - name: {{ .Values.nginx.name }}
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list . "nginx") }}
+        imagePullPolicy: {{ .Values.nginx.image.pullPolicy }}
+        {{- if .Values.nginx.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.nginx.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+        {{- end }}
+        {{- if .Values.nginx.customCommand }}
+        command:
+{{- tpl (include "nginx.command" .) . | indent 10 }}
+        {{- end }}
+        ports:
+{{ if .Values.nginx.customPorts }}
+{{ toYaml .Values.nginx.customPorts | indent 8 }}
+{{ end }}
+        # DEPRECATION NOTE: The following is to maintain support for values pre 1.3.1 and
+        # will be cleaned up in a later version
+        {{- if .Values.nginx.http }}
+        {{- if .Values.nginx.http.enabled }}
+        - containerPort: {{ .Values.nginx.http.internalPort }}
+          name: http
+        {{- end }}
+        {{- else }} # DEPRECATED
+        - containerPort: {{ .Values.nginx.internalPortHttp }}
+          name: http-internal
+        {{- end }}
+        {{- if .Values.nginx.https }}
+        {{- if .Values.nginx.https.enabled }}
+        - containerPort: {{ .Values.nginx.https.internalPort }}
+          name: https
+        {{- end }}
+        {{- else }} # DEPRECATED
+        - containerPort: {{ .Values.nginx.internalPortHttps }}
+          name: https-internal
+        {{- end }}
+        {{- if .Values.artifactory.ssh.enabled }}
+        - containerPort: {{ .Values.nginx.ssh.internalPort }}
+          name: tcp-ssh
+        {{- end }}
+        {{- with .Values.nginx.lifecycle }}
+        lifecycle:
+{{ toYaml . | indent 10 }}
+        {{- end }}
+        volumeMounts:
+        - name: nginx-conf
+          mountPath: /etc/nginx/nginx.conf
+          subPath: nginx.conf
+        - name: nginx-artifactory-conf
+          mountPath: "{{ .Values.nginx.persistence.mountPath }}/conf.d/"
+        - name: nginx-volume
+          mountPath: {{ .Values.nginx.persistence.mountPath | quote }}
+        {{- if .Values.nginx.https.enabled }}
+        - name: ssl-certificates
+          mountPath: "{{ .Values.nginx.persistence.mountPath }}/ssl"
+        {{- end }}
+        {{- if .Values.nginx.customVolumeMounts }}
+{{ tpl (include "artifactory.nginx.customVolumeMounts" .) . | indent 8 }}
+        {{- end }}
+        resources:
+{{ toYaml .Values.nginx.resources | indent 10 }}
+        {{- if .Values.nginx.startupProbe.enabled }}
+        startupProbe:
+{{ tpl .Values.nginx.startupProbe.config . | indent 10 }}
+        {{- end }}
+        {{- if .Values.nginx.readinessProbe.enabled }}
+        readinessProbe:
+{{ tpl .Values.nginx.readinessProbe.config . | indent 10 }}
+        {{- end }}
+        {{- if .Values.nginx.livenessProbe.enabled }}
+        livenessProbe:
+{{ tpl .Values.nginx.livenessProbe.config . | indent 10 }}
+        {{- end }}
+      {{- $mountPath := .Values.nginx.persistence.mountPath }}
+      {{- range .Values.nginx.loggers }}
+      - name: {{ . | replace "_" "-" | replace "." "-" }}
+        image: {{ include "artifactory-ha.getImageInfoByValue" (list $ "initContainers") }}
+        imagePullPolicy: {{ $.Values.initContainers.image.pullPolicy }}
+        command:
+        - tail
+        args:
+        - '-F'
+        - '{{ $mountPath }}/logs/{{ . }}'
+        volumeMounts:
+        - name: nginx-volume
+          mountPath: {{ $mountPath }}
+        resources:
+{{ toYaml $.Values.nginx.loggersResources | indent 10 }}
+      {{- end }}
+        {{- if .Values.nginx.customSidecarContainers }}
+{{ tpl (include "artifactory.nginx.customSidecarContainers" .)  . | indent 6 }}
+        {{- end }}
+    {{- if or .Values.nginx.nodeSelector .Values.global.nodeSelector }}
+{{ tpl (include "nginx.nodeSelector" .) . | indent 6 }}
+    {{- end }}
+    {{- with .Values.nginx.affinity }}
+      affinity:
+{{ toYaml . | indent 8 }}
+    {{- end }}
+    {{- with .Values.nginx.tolerations }}
+      tolerations:
+{{ toYaml . | indent 8 }}
+    {{- end }}
+      volumes:
+        {{- if .Values.nginx.customVolumes }}
+{{ tpl (include "artifactory.nginx.customVolumes" .)  . | indent 6 }}
+        {{- end }}
+      - name: nginx-conf
+        configMap:
+        {{- if .Values.nginx.customConfigMap }}
+          name: {{ .Values.nginx.customConfigMap }}
+        {{- else }}
+          name: {{ template "artifactory-ha.fullname" . }}-nginx-conf
+        {{- end }}
+      - name: nginx-artifactory-conf
+        configMap:
+      {{- if .Values.nginx.customArtifactoryConfigMap }}
+          name: {{ .Values.nginx.customArtifactoryConfigMap }}
+      {{- else }}
+          name: {{ template "artifactory-ha.fullname" . }}-nginx-artifactory-conf
+      {{- end }}
+
+      - name: nginx-volume
+      {{- if .Values.nginx.persistence.enabled }}
+        persistentVolumeClaim:
+          claimName: {{ .Values.nginx.persistence.existingClaim | default (include "artifactory-ha.nginx.fullname" .) }}
+      {{- else }}
+        emptyDir: {}
+      {{- end }}
+      {{- if .Values.nginx.https.enabled }}
+      - name: ssl-certificates
+        secret:
+      {{- if .Values.nginx.tlsSecretName }}
+          secretName: {{ .Values.nginx.tlsSecretName }}
+      {{- else }}
+          secretName: {{ template "artifactory-ha.fullname" . }}-nginx-certificate
+      {{- end }}
+      {{- end }}
+{{- end }}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/nginx-pdb.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/nginx-pdb.yaml
new file mode 100644
index 0000000000..0aed993682
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/nginx-pdb.yaml
@@ -0,0 +1,23 @@
+{{- if .Values.nginx.enabled -}}
+{{- if semverCompare "<v1.21.0-0" .Capabilities.KubeVersion.Version }}
+apiVersion: policy/v1beta1
+{{- else }}
+apiVersion: policy/v1
+{{- end }}
+kind: PodDisruptionBudget
+metadata:
+  name: {{ template "artifactory-ha.nginx.fullname" . }}
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    component: {{ .Values.nginx.name }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+spec:
+  selector:
+    matchLabels:
+      component: {{ .Values.nginx.name }}
+      app: {{ template "artifactory-ha.name" . }}
+      release: {{ .Release.Name }}
+  minAvailable: {{ .Values.nginx.minAvailable }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/nginx-pvc.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/nginx-pvc.yaml
new file mode 100644
index 0000000000..0e573f3834
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/nginx-pvc.yaml
@@ -0,0 +1,26 @@
+{{- if and .Values.nginx.persistence.enabled (.Values.nginx.enabled) (eq (int .Values.nginx.replicaCount) 1) }}
+{{- if (not .Values.nginx.persistence.existingClaim) }}
+kind: PersistentVolumeClaim
+apiVersion: v1
+metadata:
+  name: {{ template "artifactory-ha.nginx.fullname" . }}
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    release: {{ .Release.Name }}
+    heritage: {{ .Release.Service }}
+spec:
+  accessModes:
+    - {{ .Values.nginx.persistence.accessMode | quote }}
+  resources:
+    requests:
+      storage: {{ .Values.nginx.persistence.size | quote }}
+{{- if .Values.nginx.persistence.storageClassName }}
+{{- if (eq "-" .Values.nginx.persistence.storageClassName) }}
+  storageClassName: ""
+{{- else }}
+  storageClassName: "{{ .Values.nginx.persistence.storageClassName }}"
+{{- end }}
+{{- end }}
+{{- end }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/nginx-scripts-conf.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/nginx-scripts-conf.yaml
new file mode 100644
index 0000000000..5338d5adc5
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/nginx-scripts-conf.yaml
@@ -0,0 +1,52 @@
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ template "artifactory-ha.fullname" . }}-nginx-scripts
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+data:
+  configreloader.sh: |
+    #!/bin/sh
+    ####
+    # A helper script to use inotifyd to reload nginx config
+    # upon configmap/ssl secrets changes.
+    #
+    # Synopsis: setup the nginx command via the values file
+    # as follows:
+    #
+    ####
+    # nginx:
+    #   customVolumes: |
+    #     - name: scripts
+    #       configMap:
+    #         name: {{ "{{" }} template "artifactory-ha.fullname" . {{ "}}" }}-nginx-scripts
+    #         defaultMode: 0500
+    #   customVolumeMounts: |
+    #     - name: scripts
+    #       mountPath: /var/opt/jfrog/nginx/scripts/
+    #   customCommand:
+    #     - /bin/sh
+    #     - -c
+    #     - |
+    #       # watch for configmap changes
+    #       /sbin/inotifyd /var/opt/jfrog/nginx/scripts/configreloader.sh {{ "{{" }} .Values.nginx.persistence.mountPath {{ "-}}" }}/conf.d:n &
+    #       {{ "{{" }} if .Values.nginx.https.enabled {{ "-}}" }}
+    #       # watch for tls secret changes
+    #       /sbin/inotifyd /var/opt/jfrog/nginx/scripts/configreloader.sh {{ "{{" }} .Values.nginx.persistence.mountPath {{ "-}}" }}/ssl:n &
+    #       {{ "{{" }} end {{ "-}}" }}
+    #       nginx -g 'daemon off;'
+    if [[ "$3" =~ data_tmp ]] && [ "$1" = "n" ]
+    then
+      # a symlink has changed in one of the watched folders
+      # lets verify the config
+      nginx -t -q
+      if [ $? -eq 0 ]
+      then
+        # config is valid, lets reload nginx config
+        nginx -q -s reload
+      fi
+    fi
+
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/nginx-service.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/nginx-service.yaml
new file mode 100644
index 0000000000..604831cfea
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/nginx-service.yaml
@@ -0,0 +1,94 @@
+{{- if .Values.nginx.enabled -}}
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ template "artifactory-ha.nginx.fullname" . }}
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+    component: {{ .Values.nginx.name }}
+  {{- if .Values.nginx.service.labels }}
+{{ toYaml .Values.nginx.service.labels | indent 4 }}
+  {{- end }}
+{{- if .Values.nginx.service.annotations }}
+  annotations:
+{{ toYaml .Values.nginx.service.annotations | indent 4 }}
+{{- end }}
+spec:
+  type: {{ .Values.nginx.service.type }}
+  {{- if and (eq .Values.nginx.service.type "ClusterIP") .Values.nginx.service.clusterIP }}
+  clusterIP: {{ .Values.nginx.service.clusterIP }}
+  {{- end }}
+  {{- if .Values.nginx.service.ipFamilyPolicy }}
+  ipFamilyPolicy: {{ .Values.nginx.service.ipFamilyPolicy }}
+  {{- end }}
+  {{- if not (empty .Values.nginx.service.ipFamilies)}}
+  ipFamilies: {{- toYaml .Values.nginx.service.ipFamilies | nindent 4 }}
+  {{- end }}
+{{- if eq .Values.nginx.service.type "LoadBalancer" }}
+  {{ if .Values.nginx.service.loadBalancerIP -}}
+  loadBalancerIP: {{ .Values.nginx.service.loadBalancerIP }}
+  {{ end -}}
+  {{- if .Values.nginx.service.externalTrafficPolicy }}
+  externalTrafficPolicy: {{ .Values.nginx.service.externalTrafficPolicy }}
+  {{- end }}
+{{- end }}
+{{- if .Values.nginx.service.loadBalancerSourceRanges }}
+  loadBalancerSourceRanges:
+{{ toYaml .Values.nginx.service.loadBalancerSourceRanges | indent 4 }}
+{{- end }}
+  ports:
+{{- if .Values.nginx.service.customPorts }}
+{{ toYaml .Values.nginx.service.customPorts | indent 2 }}
+{{ end }}
+  # DEPRECATION NOTE: The following is to maintain support for values pre 1.3.0 and
+  # will be cleaned up in a later verion
+  {{- if .Values.nginx.http }}
+  {{- if .Values.nginx.http.enabled }}
+  - port: {{ .Values.nginx.http.externalPort }}
+    targetPort: {{ .Values.nginx.http.internalPort }}
+    {{- if .Values.nginx.service.nodePort }}
+    nodePort: {{ .Values.nginx.service.nodePort }}
+    {{- end }}
+    protocol: TCP
+    name: http
+  {{- end }}
+  {{- else }} # DEPRECATED
+  - port: {{ .Values.nginx.externalPortHttp }}
+    targetPort: {{ .Values.nginx.internalPortHttp }}
+    protocol: TCP
+    name: http
+  {{- end }}
+  {{- if .Values.nginx.https }}
+  {{- if or .Values.nginx.https.enabled .Values.nginx.service.ssloffload }}
+  - port: {{ .Values.nginx.https.externalPort }}
+    {{- if and .Values.nginx.service.ssloffload (not .Values.nginx.service.ssloffloadForceHttps) }}
+    targetPort: {{ .Values.nginx.http.internalPort }}
+    {{- else }}
+    targetPort: {{ .Values.nginx.https.internalPort}}
+    {{- end }}
+    {{- if .Values.nginx.service.nodePort }}
+    nodePort: {{ .Values.nginx.service.nodePort }}
+    {{- end }}
+    protocol: TCP
+    name: https
+  {{- end }}
+  {{- else }} # DEPRECATED
+  - port: {{ .Values.nginx.externalPortHttps }}
+    targetPort: {{ .Values.nginx.internalPortHttps }}
+    protocol: TCP
+    name: https
+  {{- end }}
+  {{- if .Values.artifactory.ssh.enabled }}
+  - port: {{ .Values.nginx.ssh.externalPort }}
+    targetPort: {{ .Values.nginx.ssh.internalPort }}
+    protocol: TCP
+    name: tcp-ssh
+  {{- end }}
+  selector:
+    app: {{ template "artifactory-ha.name" . }}
+    component: {{ .Values.nginx.name }}
+    release: {{ .Release.Name }}
+{{- end }}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/rtfs-deployment.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/rtfs-deployment.yaml
new file mode 100644
index 0000000000..c5fb34e363
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/rtfs-deployment.yaml
@@ -0,0 +1,349 @@
+{{- if .Values.rtfs.enabled -}}
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: {{ include "rtfs.fullname" . }}
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+    component: {{ .Values.rtfs.name }}
+{{- if .Values.rtfs.deployment.labels }}
+{{ toYaml .Values.rtfs.deployment.labels | indent 4 }}
+{{- end }}
+{{- with .Values.rtfs.deployment.annotations }}
+  annotations:
+{{ toYaml . | indent 4 }}
+{{- end }}
+spec:
+  replicas: {{ .Values.rtfs.replicaCount }}
+  strategy:
+    type: "RollingUpdate"
+  selector:
+    matchLabels:
+      app: {{ template "artifactory-ha.name" . }}
+      release: {{ .Release.Name }}
+      component: {{ .Values.rtfs.name }}
+  template:
+    metadata:
+      annotations:
+      {{- if not .Values.artifactory.unifiedSecretInstallation }}
+        checksum/database-secrets: {{ include (print $.Template.BasePath "/artifactory-database-secrets.yaml") . | sha256sum }}
+        checksum/systemyaml: {{ include (print $.Template.BasePath "/artifactory-system-yaml.yaml") . | sha256sum }}
+      {{- else }}
+        checksum/artifactory-unified-secret: {{ include (print $.Template.BasePath "/artifactory-unified-secret.yaml") . | sha256sum }}
+      {{- end }}
+      {{- with .Values.rtfs.annotations }}
+{{ toYaml . | indent 8 }}
+      {{- end }}
+      labels:
+        app: {{ template "artifactory-ha.name" . }}
+        chart: {{ template "artifactory-ha.chart" . }}
+        component: {{ .Values.rtfs.name }}
+        heritage: {{ .Release.Service }}
+        release: {{ .Release.Name }}
+    spec:
+      {{- if or .Values.imagePullSecrets .Values.global.imagePullSecrets }}
+      {{- include "artifactory-ha.imagePullSecrets" . | indent 6 }}
+      {{- end }}
+      {{- if .Values.rtfs.podSecurityContext.enabled }}
+      securityContext: {{- omit .Values.rtfs.podSecurityContext "enabled" | toYaml | nindent 8 }}
+      {{- end }}
+      initContainers:
+        {{- if .Values.rtfs.customInitContainers }}
+{{ tpl (include "artifactory.rtfs.customInitContainers" .)  . | indent 8 }}
+        {{- end }}
+        - name: 'copy-configs'
+          image: {{ include "artifactory-ha.getImageInfoByValue" (list . "initContainers") }}
+          imagePullPolicy: {{ .Values.initContainers.image.pullPolicy | quote }}
+          {{- if .Values.rtfs.containerSecurityContext.enabled }}
+          securityContext: {{- omit .Values.rtfs.containerSecurityContext "enabled" | toYaml | nindent 12 }}
+          {{- end }}
+          {{- if .Values.initContainers.resources }}
+          resources:
+            {{- toYaml .Values.initContainers.resources | nindent 12 }}
+          {{- end }}
+          command:
+            - '/bin/bash'
+            - '-c'
+            - >
+              echo "Copy system.yaml to {{ .Values.rtfs.persistence.mountPath }}/etc";
+              mkdir -p {{ .Values.rtfs.persistence.mountPath }}/etc;
+              {{- if .Values.systemYamlOverride.existingSecret }}
+              cp -fv /tmp/etc/{{ .Values.systemYamlOverride.dataKey }} {{ .Values.rtfs.persistence.mountPath }}/etc/system.yaml;
+              {{- else }}
+              cp -fv /tmp/etc/system.yaml {{ .Values.rtfs.persistence.mountPath }}/etc/system.yaml;
+              {{- end }}
+              echo "Copying artifactory-federation properties to {{ .Values.rtfs.persistence.mountPath }}/etc";
+              mkdir -p {{ .Values.rtfs.persistence.mountPath }}/etc;
+              echo "Starting to copy files to artifactory-federation.properties";
+              found=false;
+              for file in /tmp/etc/properties/*; do
+                  if [ -f "$file" ]; then
+                      found=true;
+                      key=$(basename "$file");
+                      value=$(cat "$file");
+                      echo "Processing file: $file";
+                      echo "$key=$value" >> {{ .Values.rtfs.persistence.mountPath }}/etc/artifactory-federation.properties;
+                  fi;
+              done;
+              if [ "$found" = false ]; then
+                  echo "No matching files found, creating an empty artifactory-federation.properties file";
+                  touch {{ .Values.rtfs.persistence.mountPath }}/etc/artifactory-federation.properties;
+              fi
+          volumeMounts:
+            - name: data
+              mountPath: {{ .Values.rtfs.persistence.mountPath | quote }}
+            {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.systemYamlOverride.existingSecret }}
+            - name: systemyaml
+            {{- else }}
+            - name: {{ include "artifactory-ha.unifiedCustomSecretVolumeName" . }}
+            {{- end }}
+              {{- if .Values.systemYamlOverride.existingSecret }}
+              mountPath: "/tmp/etc/{{.Values.systemYamlOverride.dataKey }}"
+              subPath: {{ .Values.systemYamlOverride.dataKey }}
+              {{- else  }}
+              mountPath: "/tmp/etc/system.yaml"
+              subPath: "system.yaml"
+              {{- end }}
+            {{- if or .Values.rtfs.persistence.federationProperties .Values.rtfs.persistence.customFederationPropertiesConfig }}
+            - name: federationproperties
+              mountPath: /tmp/etc/properties
+            {{- end }}
+      containers:
+        - name: rtfs
+          image: {{ include "artifactory-ha.getImageInfoByValue" (list . "rtfs") }}
+          imagePullPolicy: {{ .Values.initContainers.image.pullPolicy | quote }}
+          {{- if .Values.rtfs.containerSecurityContext.enabled }}
+          securityContext: {{- omit .Values.rtfs.containerSecurityContext "enabled" | toYaml | nindent 12 }}
+          {{- end }}
+          volumeMounts:
+            - name: data
+              mountPath: {{ .Values.rtfs.persistence.mountPath | quote }}
+            {{- if .Values.rtfs.customVolumeMounts }}
+{{ tpl (include "artifactory.rtfs.customVolumeMounts" .) . | indent 12 }}
+            {{- end }}
+          env:
+            - name: JF_SHARED_NODE_ID
+              valueFrom:
+                fieldRef:
+                  fieldPath: metadata.name
+            {{- if .Values.rtfs.javaOpts }}
+            - name: EXTRA_JAVA_OPTS
+              value: {{ .Values.rtfs.javaOpts }}
+            {{- end }}
+          {{- if or .Values.database.secrets.user .Values.database.user }}
+            - name: JF_SHARED_DATABASE_USERNAME
+              valueFrom:
+                secretKeyRef:
+            {{- if .Values.database.secrets.user }}
+                  name: {{ tpl .Values.database.secrets.user.name . }}
+                  key: {{ tpl .Values.database.secrets.user.key . }}
+            {{- else if .Values.database.user }}
+                  {{- if not .Values.artifactory.unifiedSecretInstallation }}
+                  name: {{ template "artifactory-ha.fullname" . }}-database-creds
+                  {{- else }}
+                  name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+                  {{- end }}
+                  key: db-user
+            {{- end }}
+          {{- end }}
+          {{ if or .Values.database.secrets.password .Values.database.password .Values.postgresql.enabled }}
+            - name: JF_SHARED_DATABASE_PASSWORD
+              valueFrom:
+                secretKeyRef:
+            {{- if .Values.database.secrets.password }}
+                  name: {{ tpl .Values.database.secrets.password.name . }}
+                  key: {{ tpl .Values.database.secrets.password.key . }}
+            {{- else if .Values.database.password }}
+                  {{- if not .Values.artifactory.unifiedSecretInstallation }}
+                  name: {{ template "artifactory-ha.fullname" . }}-database-creds
+                  {{- else }}
+                  name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+                  {{- end }}
+                  key: db-password
+            {{- else if .Values.postgresql.enabled }}
+                  name: {{ .Release.Name }}-postgresql
+                  key: postgresql-password
+            {{- end }}
+          {{- end }}
+          {{- if or .Values.database.secrets.url .Values.database.url }}
+            - name: JF_SHARED_DATABASE_URL
+              valueFrom:
+                secretKeyRef:
+            {{- if .Values.database.secrets.url }}
+                  name: {{ tpl .Values.database.secrets.url.name . }}
+                  key: {{ tpl .Values.database.secrets.url.key . }}
+            {{- else if .Values.database.url }}
+                  {{- if not .Values.artifactory.unifiedSecretInstallation }}
+                  name: {{ template "artifactory-ha.fullname" . }}-database-creds
+                  {{- else }}
+                  name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+                  {{- end }}
+                  key: db-url
+            {{- end }}
+          {{- end }}
+            {{- if or .Values.artifactory.masterKey .Values.global.masterKey .Values.artifactory.masterKeySecretName .Values.global.masterKeySecretName }}
+            - name: JF_SHARED_SECURITY_MASTERKEY
+              valueFrom:
+                secretKeyRef:
+                {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.masterKeySecretName .Values.global.masterKeySecretName }}
+                  name: {{ include "artifactory-ha.masterKeySecretName" . }}
+                {{- else }}
+                  name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+                {{- end }}
+                  key: master-key
+            {{- end }}
+            {{- if or .Values.artifactory.joinKey .Values.global.joinKey .Values.artifactory.joinKeySecretName .Values.global.joinKeySecretName }}
+            - name: JF_SHARED_SECURITY_JOINKEY
+              valueFrom:
+                secretKeyRef:
+                {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.joinKeySecretName .Values.global.joinKeySecretName }}
+                  name: {{ include "artifactory-ha.joinKeySecretName" . }}
+                {{- else }}
+                  name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+                {{- end }}
+                  key: join-key
+            {{- end }}
+{{- with .Values.rtfs.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 12 }}
+{{- end }}
+          resources: {{- toYaml .Values.rtfs.resources | nindent 12 }}
+          {{- if .Values.rtfs.startupProbe.enabled }}
+          startupProbe:
+{{ tpl .Values.rtfs.startupProbe.config . | indent 12 }}
+          {{- end }}
+          {{- if .Values.rtfs.livenessProbe.enabled }}
+          livenessProbe:
+{{ tpl .Values.rtfs.livenessProbe.config . | indent 12 }}
+          {{- end }}
+          {{- if .Values.rtfs.readinessProbe.enabled }}
+          readinessProbe:
+{{ tpl .Values.rtfs.readinessProbe.config . | indent 12 }}
+          {{- end }}
+          {{- with .Values.rtfs.lifecycle }}
+          lifecycle:
+{{ toYaml . | indent 12 }}
+          {{- end }}
+        - name: router
+          image: {{ include "artifactory-ha.getImageInfoByValue" (list . "router") }}
+          imagePullPolicy: {{ .Values.router.image.imagePullPolicy }}
+          resources: {{- toYaml .Values.router.resources | nindent 12 }}
+          {{- if .Values.rtfs.containerSecurityContext.enabled }}
+          securityContext: {{- omit .Values.rtfs.containerSecurityContext "enabled" | toYaml | nindent 12 }}
+          {{- end }}
+          command:
+            - '/bin/bash'
+            - '-c'
+            - >
+              exec /opt/jfrog/router/app/bin/entrypoint-router.sh
+          env:
+            - name: JF_ROUTER_TOPOLOGY_LOCAL_REQUIREDSERVICETYPES
+              value: "jfrtfs"
+            - name: JF_SHARED_JFROGURL
+              value: {{ tpl (include "rtfs.jfrogUrl" .) . }}
+            {{- if or .Values.artifactory.masterKey .Values.global.masterKey .Values.artifactory.masterKeySecretName .Values.global.masterKeySecretName }}
+            - name: JF_SHARED_SECURITY_MASTERKEY
+              valueFrom:
+                secretKeyRef:
+                {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.masterKeySecretName .Values.global.masterKeySecretName }}
+                  name: {{ include "artifactory-ha.masterKeySecretName" . }}
+                {{- else }}
+                  name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+                {{- end }}
+                  key: master-key
+            {{- end }}
+            {{- if or .Values.artifactory.joinKey .Values.global.joinKey .Values.artifactory.joinKeySecretName .Values.global.joinKeySecretName }}
+            - name: JF_SHARED_SECURITY_JOINKEY
+              valueFrom:
+                secretKeyRef:
+                {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.joinKeySecretName .Values.global.joinKeySecretName }}
+                  name: {{ include "artifactory-ha.joinKeySecretName" . }}
+                {{- else }}
+                  name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+                {{- end }}
+                  key: join-key
+            {{- end }}
+{{- with .Values.router.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 12 }}
+{{- end }}
+          ports:
+            - name: http-router
+              containerPort: {{ .Values.router.internalPort }}
+          volumeMounts:
+            - name: data
+              mountPath: {{ .Values.router.persistence.mountPath | quote }}
+            {{- if .Values.router.extraVolumeMounts }}
+            {{- toYaml .Values.router.extraVolumeMounts | nindent 12 }}
+            {{- end }}
+            {{- if .Values.router.startupProbe.enabled }}
+          startupProbe:
+{{ tpl .Values.router.startupProbe.config . | indent 12 }}
+            {{- end }}
+            {{- if .Values.router.readinessProbe.enabled }}
+          readinessProbe:
+{{ tpl .Values.router.readinessProbe.config . | indent 12 }}
+            {{- end }}
+            {{- if .Values.router.livenessProbe.enabled }}
+          livenessProbe:
+{{ tpl .Values.router.livenessProbe.config . | indent 12 }}
+            {{- end }}
+            {{- with .Values.router.lifecycle }}
+          lifecycle:
+{{ toYaml . | indent 12 }}
+            {{- end }}
+        {{- if .Values.rtfs.customSidecarContainers }}
+{{ tpl (include "artifactory.rtfs.customSidecarContainers" .)  . | indent 8 }}
+        {{- end }}
+      volumes:
+        # system yaml
+        {{- if .Values.systemYamlOverride.existingSecret }}
+        - name: systemyaml
+          secret:
+            secretName: {{ .Values.systemYamlOverride.existingSecret }}
+        {{- end }}
+
+        #########  unifiedSecretInstallation ###########
+      {{- if and .Values.artifactory.unifiedSecretInstallation (eq (include "artifactory-ha.checkDuplicateUnifiedCustomVolume" .) "false" ) }}
+        - name: {{ include "artifactory-ha.unifiedCustomSecretVolumeName" . }}
+          secret:
+            secretName: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+      {{- else if not .Values.artifactory.unifiedSecretInstallation }}
+        {{- if not .Values.systemYamlOverride.existingSecret }}
+        - name: systemyaml
+          secret:
+            secretName: {{ template "artifactory-ha.primary.name" . }}-system-yaml
+        {{- end }}
+      {{- end }}
+        {{- if .Values.rtfs.customVolumes }}
+{{ tpl (include "artifactory.rtfs.customVolumes" .)  . | indent 8 }}
+        {{- end }}
+        - name: data
+          emptyDir: {}
+        {{- if and (.Values.rtfs.persistence.federationProperties) (not .Values.rtfs.persistence.customFederationPropertiesConfig) }}
+        - name: federationproperties
+          configMap:
+            name: {{ include "rtfs.fullname" . }}-properties
+        {{- end }}
+        {{- if .Values.rtfs.persistence.customFederationPropertiesConfig }}
+        - name: federationproperties
+          configMap:
+            name: {{ .Values.rtfs.persistence.customFederationPropertiesConfig }}
+        {{- end }}
+        {{- if .Values.rtfs.extraVolumes }}
+        {{- toYaml .Values.rtfs.extraVolumes | nindent 8 }}
+        {{- end }}
+      {{- with .Values.rtfs.nodeSelector }}
+      nodeSelector:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.rtfs.affinity }}
+      affinity:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.rtfs.tolerations }}
+      tolerations:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+{{- end }}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/rtfs-hpa.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/rtfs-hpa.yaml
new file mode 100644
index 0000000000..a8514c5a2d
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/rtfs-hpa.yaml
@@ -0,0 +1,32 @@
+{{- if .Values.rtfs.autoscaling.enabled }}
+  {{- if semverCompare ">=v1.23.0-0" .Capabilities.KubeVersion.Version }}
+apiVersion: autoscaling/v2
+  {{- else }}
+apiVersion: autoscaling/v2beta2
+  {{- end }}
+kind: HorizontalPodAutoscaler
+metadata:
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+  name: {{ template "rtfs.fullname" . }}
+spec:
+  scaleTargetRef:
+    apiVersion: apps/v1
+    kind: Deployment
+    name: {{ template "rtfs.fullname" . }}
+  minReplicas: {{ .Values.rtfs.autoscaling.minReplicas }}
+  maxReplicas: {{ .Values.rtfs.autoscaling.maxReplicas }}
+  metrics:
+    - type: Resource
+      resource:
+        name: cpu
+        target:
+          type: Utilization
+          averageUtilization: {{ .Values.rtfs.autoscaling.targetCPUUtilizationPercentage }}
+      {{- if .Values.rtfs.autoscaling.metrics }}
+{{ tpl (include "rtfs.metrics" .) . | indent 4 }}
+      {{- end }}
+{{- end }}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/rtfs-properties-configmap.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/rtfs-properties-configmap.yaml
new file mode 100644
index 0000000000..8cad47550a
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/rtfs-properties-configmap.yaml
@@ -0,0 +1,17 @@
+{{- if and (.Values.rtfs.persistence.federationProperties) (not .Values.rtfs.persistence.customFederationPropertiesConfig) .Values.rtfs.enabled }}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ include "rtfs.fullname" . }}-properties
+  namespace: {{ .Release.Namespace | quote }}
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    component: {{ .Values.rtfs.name }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+data:
+  {{- range $key, $value := .Values.rtfs.persistence.federationProperties }}
+    {{ $key }}: {{ tpl ($value | default "") . | quote }}
+    {{- end }}
+  {{- end }}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-ha/107.104.10/templates/rtfs-service.yaml b/charts/jfrog/artifactory-ha/107.104.10/templates/rtfs-service.yaml
new file mode 100644
index 0000000000..684c204401
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/templates/rtfs-service.yaml
@@ -0,0 +1,41 @@
+{{- if .Values.rtfs.enabled -}}
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ include "rtfs.fullname" . }}
+  labels:
+    app: {{ template "artifactory-ha.name" . }}
+    chart: {{ template "artifactory-ha.chart" . }}
+    component: {{ .Values.rtfs.name }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+{{- if .Values.rtfs.service.labels }}
+{{ toYaml .Values.rtfs.service.labels | indent 4 }}
+{{- end }}
+{{- with .Values.rtfs.service.annotations }}
+  annotations:
+{{ toYaml . | indent 4 }}
+{{- end }}
+spec:
+  type: {{ .Values.rtfs.service.type }}
+  {{- if eq .Values.rtfs.service.type "LoadBalancer" }}
+  {{- if not (empty .Values.rtfs.service.loadBalancerIP) }}
+  loadBalancerIP: {{ .Values.rtfs.service.loadBalancerIP }}
+  {{- end }}
+  {{- if .Values.rtfs.service.loadBalancerSourceRanges }}
+  loadBalancerSourceRanges: {{- toYaml .Values.rtfs.service.loadBalancerSourceRanges | nindent 4 }}
+  {{- end }}
+  {{- end }}
+  {{- if (or (eq .Values.rtfs.service.type "LoadBalancer") (eq .Values.rtfs.service.type "NodePort")) }}
+  externalTrafficPolicy: {{ .Values.rtfs.service.externalTrafficPolicy | quote }}
+  {{- end }}
+  ports:
+    - port: {{ .Values.router.externalPort }}
+      targetPort: {{ .Values.router.internalPort }}
+      protocol: TCP
+      name: http-router
+  selector:
+    app: {{ template "artifactory-ha.name" . }}
+    release: {{ .Release.Name }}
+    component: {{ .Values.rtfs.name }}
+{{- end }}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-ha/107.104.10/values.yaml b/charts/jfrog/artifactory-ha/107.104.10/values.yaml
new file mode 100644
index 0000000000..d7de2e7238
--- /dev/null
+++ b/charts/jfrog/artifactory-ha/107.104.10/values.yaml
@@ -0,0 +1,2133 @@
+## Default values for artifactory-ha.
+## This is a YAML-formatted file.
+## Beware when changing values here. You should know what you are doing!
+## Access the values with {{ .Values.key.subkey }}
+global:
+  # imageRegistry: releases-docker.jfrog.io
+  # imagePullSecrets:
+  #   - myRegistryKeySecretName
+  ## Chart.AppVersion can be overidden using global.versions.artifactory or .Values.artifactory.image.tag
+  ## Note: Order of preference is 1) global.versions 2) .Values.artifactory.image.tag 3) Chart.AppVersion
+  ## This applies also for nginx images (.Values.nginx.image.tag)
+  versions: {}
+  # artifactory:
+  # initContainers:
+  # rtfs:
+  # joinKey:
+  # masterKey:
+  # joinKeySecretName:
+  # masterKeySecretName:
+
+  ## Note: tags customInitContainersBegin,customInitContainers,customVolumes,customVolumeMounts,customSidecarContainers can be used both from global and application level simultaneously
+  # customInitContainersBegin: |
+
+  # customInitContainers: |
+
+  # customVolumes: |
+
+  # customVolumeMounts: |
+
+  # customSidecarContainers: |
+
+  ## certificates added to this secret will be copied to $JFROG_HOME/artifactory/var/etc/security/keys/trusted directory
+  customCertificates:
+    enabled: false
+    # certificateSecretName:
+  ## Applies to artifactory and nginx pods
+  nodeSelector: {}
+## String to partially override artifactory-ha.fullname template (will maintain the release name)
+# nameOverride:
+
+## String to fully override artifactory-ha.fullname template
+# fullnameOverride:
+
+# Init containers
+initContainers:
+  image:
+    registry: releases-docker.jfrog.io
+    repository: ubi9/ubi-minimal
+    tag: 9.5.1733767867
+    pullPolicy: IfNotPresent
+  resources:
+    requests:
+      memory: "50Mi"
+      cpu: "10m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+installer:
+  type:
+  platform:
+## The installerInfo is intentionally commented out and the previous content has been moved under `files/installer-info.json`
+## To override the content in `files/installer-info.json`, Uncomment the `installerInfo` and  add relevant data
+# installerInfo: '{}'
+
+# For supporting pulling from private registries
+# imagePullSecrets:
+#   - myRegistryKeySecretName
+
+## Artifactory systemYaml override
+## This is for advanced usecases where users wants to provide their own systemYaml for configuring artifactory
+## Refer: https://www.jfrog.com/confluence/display/JFROG/Artifactory+System+YAML
+## Note: This will override existing (default) .Values.artifactory.systemYaml in values.yaml
+## Alternatively, systemYaml can be overidden via customInitContainers using external sources like vaults, external repositories etc. Please refer customInitContainer section below for an example.
+## Note: Order of preference is 1) customInitContainers 2) systemYamlOverride existingSecret 3) default systemYaml in values.yaml
+systemYamlOverride:
+  ## You can use a pre-existing secret by specifying existingSecret
+  existingSecret:
+  ## The dataKey should be the name of the secret data key created.
+  dataKey:
+## Role Based Access Control
+## Ref: https://kubernetes.io/docs/admin/authorization/rbac/
+rbac:
+  create: false
+  role:
+    ## Rules to create. It follows the role specification
+    rules:
+      - apiGroups:
+          - ''
+        resources:
+          - services
+          - endpoints
+          - pods
+        verbs:
+          - get
+          - watch
+          - list
+## Service Account
+## Ref: https://kubernetes.io/docs/admin/service-accounts-admin/
+##
+serviceAccount:
+  create: false
+  ## The name of the ServiceAccount to use.
+  ## If not set and create is true, a name is generated using the fullname template
+  name:
+  annotations: {}
+  ## Explicitly mounts the  API token for the service account to the pods
+  automountServiceAccountToken: false
+ingress:
+  enabled: false
+  defaultBackend:
+    enabled: true
+  ## Used to create an Ingress record.
+  hosts: []
+  ## Useful in controllers where ImplementationSpecific is considered as a Regex Match and, not a Prefix match
+  pathType: ImplementationSpecific
+  routerPath: /
+  artifactoryPath: /artifactory/
+  rtfsPath: /artifactory/service/rtfs/
+  className: ""
+  annotations: {}
+  # kubernetes.io/tls-acme: "true"
+  # nginx.ingress.kubernetes.io/proxy-body-size: "0"
+  labels: {}
+  # traffic-type: external
+  # traffic-type: internal
+  tls: []
+  ## Secrets must be manually created in the namespace.
+  # - secretName: chart-example-tls
+  #   hosts:
+  #     - artifactory.domain.example
+
+  ## Additional ingress rules
+  additionalRules: []
+  ## This is an experimental feature, enabling this feature will route all traffic through the Router.
+  disableRouterBypass: false
+## Allows to add custom ingress
+customIngress: ""
+## There is a need to separate HTTP1.1 traffic from gRPC (HTTP2) to benefit
+## 1. Use the Nginx keepalive for HTTP1.1
+## 2. Keep gRPC over the HTTP2 connections only
+ingressGrpc:
+  enabled: false
+  name: grpc
+  defaultBackend:
+    enabled: true
+  ## Used to create an Ingress record.
+  hosts: []
+  ## Useful in controllers where ImplementationSpecific is considered as a Regex Match and, not a Prefix match
+  pathType: ImplementationSpecific
+  grpcPath: /com.jfrog
+  className: ""
+  ## For supporting GRPC protocol traffic sent to the backend it is necessary to change the backend protocol
+  ## Example: nginx.ingress.kubernetes.io/backend-protocol: GRPCS
+  annotations: {}
+  # kubernetes.io/tls-acme: "true"
+  # nginx.ingress.kubernetes.io/proxy-body-size: "0"
+  labels: {}
+  # traffic-type: external
+  # traffic-type: internal
+  tls: []
+  ## Secrets must be manually created in the namespace.
+  # - secretName: chart-example-tls
+  #   hosts:
+  #     - artifactory.domain.example
+
+  ## Additional ingress rules
+  additionalRules: []
+networkpolicy: []
+# Allows all ingress and egress
+# - name: artifactory
+#   podSelector:
+#     matchLabels:
+#       app: artifactory-ha
+#   egress:
+#   - {}
+#   ingress:
+#   - {}
+## Uncomment to allow only artifactory pods to communicate with postgresql (if postgresql.enabled is true)
+# - name: postgresql
+#   podSelector:
+#     matchLabels:
+#       app: postgresql
+#   ingress:
+#   - from:
+#     - podSelector:
+#         matchLabels:
+#           app: artifactory-ha
+
+## Database configurations
+## Use the wait-for-db init container. Set to false to skip
+waitForDatabase: true
+## Configuration values for the postgresql dependency
+## ref: https://github.com/bitnami/charts/blob/master/bitnami/postgresql/README.md
+##
+postgresql:
+  enabled: true
+  image:
+    registry: releases-docker.jfrog.io
+    repository: bitnami/postgresql
+    tag: 15.6.0-debian-11-r16
+  postgresqlUsername: artifactory
+  postgresqlPassword: ""
+  postgresqlDatabase: artifactory
+  postgresqlExtendedConf:
+    listenAddresses: "*"
+    maxConnections: "1500"
+  persistence:
+    enabled: true
+    size: 200Gi
+    # existingClaim:
+  service:
+    port: 5432
+  primary:
+    nodeSelector: {}
+    affinity: {}
+    tolerations: []
+  readReplicas:
+    nodeSelector: {}
+    affinity: {}
+    tolerations: []
+  resources: {}
+  securityContext:
+    enabled: true
+  containerSecurityContext:
+    enabled: true
+    # requests:
+    #   memory: "512Mi"
+    #   cpu: "100m"
+    # limits:
+    #   memory: "1Gi"
+    #   cpu: "500m"
+## If NOT using the PostgreSQL in this chart (postgresql.enabled=false),
+## you MUST specify custom database details here or Artifactory will NOT start
+database:
+  ## To run Artifactory with any database other than PostgreSQL allowNonPostgresql set to true.
+  allowNonPostgresql: false
+  type:
+  driver:
+  ## If you set the url, leave host and port empty
+  url:
+  ## If you would like this chart to create the secret containing the db
+  ## password, use these values
+  user:
+  password:
+  ## If you have existing Kubernetes secrets containing db credentials, use
+  ## these values
+  secrets: {}
+  # user:
+  #   name: "rds-artifactory"
+  #   key: "db-user"
+  # password:
+  #   name: "rds-artifactory"
+  #   key: "db-password"
+  # url:
+  #   name: "rds-artifactory"
+  #   key: "db-url"
+## You can use a pre-existing secret with keys license_token and iam_role by specifying licenseConfigSecretName
+## Example : Create a generic secret using `kubectl create secret generic <secret-name> --from-literal=license_token=${TOKEN} --from-literal=iam_role=${ROLE_ARN}`
+aws:
+  license:
+    enabled: false
+  licenseConfigSecretName:
+  region: us-east-1
+## Container Security Context
+## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container
+## @param containerSecurityContext.enabled Enabled containers' Security Context
+## @param containerSecurityContext.runAsNonRoot Set container's Security Context runAsNonRoot
+## @param containerSecurityContext.privileged Set container's Security Context privileged
+## @param containerSecurityContext.allowPrivilegeEscalation Set container's Security Context allowPrivilegeEscalation
+## @param containerSecurityContext.capabilities.drop List of capabilities to be dropped
+## @param containerSecurityContext.seccompProfile.type Set container's Security Context seccomp profile
+##
+containerSecurityContext:
+  enabled: true
+  runAsNonRoot: true
+  privileged: false
+  allowPrivilegeEscalation: false
+  seccompProfile:
+    type: RuntimeDefault
+  capabilities:
+    drop:
+      - ALL
+## The following router settings are to configure only when splitServicesToContainers set to true
+router:
+  name: router
+  image:
+    registry: releases-docker.jfrog.io
+    repository: jfrog/router
+    tag: 7.149.1
+    pullPolicy: IfNotPresent
+  serviceRegistry:
+    ## Service registry (Access) TLS verification skipped if enabled
+    insecure: false
+  internalPort: 8082
+  externalPort: 8082
+  tlsEnabled: false
+  ## Extra environment variables that can be used to tune router to your needs.
+  ## Uncomment and set value as needed
+  extraEnvironmentVariables:
+  # - name: MY_ENV_VAR
+  #   value: ""
+  resources: {}
+  # requests:
+  #   memory: "100Mi"
+  #   cpu: "100m"
+  # limits:
+  #   memory: "1Gi"
+  #   cpu: "1"
+
+  ## Add lifecycle hooks for router container
+  lifecycle:
+    ## From Artifactory versions 7.52.x, Wait for Artifactory to complete any open uploads or downloads before terminating
+    preStop:
+      exec:
+        command: ["sh", "-c", "while [[ $(curl --fail --silent --connect-timeout 2 http://localhost:8081/artifactory/api/v1/system/liveness) =~ OK ]]; do echo Artifactory is still alive; sleep 2; done"]
+        # postStart:
+        #   exec:
+        #     command: ["/bin/sh", "-c", "echo Hello from the postStart handler"]
+  ## Add custom volumesMounts
+  customVolumeMounts: |
+    # - name: custom-script
+    #   mountPath: /scripts/script.sh
+    #   subPath: script.sh
+  livenessProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl -s -k --fail --max-time {{ .Values.probes.timeoutSeconds }} {{ include "artifactory-ha.scheme" . }}://localhost:{{ .Values.router.internalPort }}/router/api/v1/system/liveness
+      initialDelaySeconds: {{ if semverCompare "<v1.20.0-0" .Capabilities.KubeVersion.Version }}180{{ else }}0{{ end }}
+      periodSeconds: 10
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      failureThreshold: 5
+      successThreshold: 1
+  readinessProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl -s -k --fail --max-time {{ .Values.probes.timeoutSeconds }} {{ include "artifactory-ha.scheme" . }}://localhost:{{ .Values.router.internalPort }}/router/api/v1/system/readiness
+      initialDelaySeconds: {{ if semverCompare "<v1.20.0-0" .Capabilities.KubeVersion.Version }}90{{ else }}0{{ end }}
+      periodSeconds: 10
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      failureThreshold: 5
+      successThreshold: 1
+  startupProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl -s -k --fail --max-time {{ .Values.probes.timeoutSeconds }} {{ include "artifactory-ha.scheme" . }}://localhost:{{ .Values.router.internalPort }}/router/api/v1/system/readiness
+      initialDelaySeconds: 10
+      failureThreshold: 90
+      periodSeconds: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+  persistence:
+    mountPath: "/var/opt/jfrog/router"
+## Artifactory
+artifactory:
+  name: artifactory-ha
+  ## Note that by default we use appVersion to get image tag/version
+
+  ## refer - https://www.jfrog.com/confluence/display/JFROG/Access+Federation#AccessFederation-EstablishingtheCircleofTrust
+  ## root certificates added will be copied to $JFROG_HOME/artifactory/var/etc/access/keys/trusted folder.
+  circleOfTrustCertificatesSecret:
+  ## unifiedSecretInstallation flag enables single unified secret holding all the artifactory-ha internal(chart) secrets, It won't be affecting external secrets.
+  ## Note: unifiedSecretInstallation flag is enabled by true by default from chart version 107.78.x, Users can switch to false to continue with the old way of secret creation.
+  unifiedSecretInstallation: true
+  ## unifiedSecretPrependReleaseName Set this flag to false if unifiedSecret should not be created with <release-name> prepended.
+  unifiedSecretPrependReleaseName: true
+  image:
+    registry: releases-docker.jfrog.io
+    repository: jfrog/artifactory-pro
+    # tag:
+    pullPolicy: IfNotPresent
+  ## ref: https://kubernetes.io/docs/tasks/administer-cluster/configure-multiple-schedulers/
+  schedulerName:
+  ## Create a priority class for the Artifactory pods or use an existing one
+  ## NOTE - Maximum allowed value of a user defined priority is 1000000000
+  priorityClass:
+    create: false
+    value: 1000000000
+    ## Override default name
+    # name:
+    ## Use an existing priority class
+    # existingPriorityClass:
+  ## Delete the db.properties file in ARTIFACTORY_HOME/etc/db.properties
+  deleteDBPropertiesOnStartup: true
+  database:
+    maxOpenConnections: 80
+  tomcat:
+    maintenanceConnector:
+      port: 8091
+    connector:
+      maxThreads: 200
+      sendReasonPhrase: false
+      extraConfig: 'acceptCount="400"'
+  ## certificates added to this secret will be copied to $JFROG_HOME/artifactory/var/etc/security/keys/trusted directory
+  customCertificates:
+    enabled: false
+    # certificateSecretName:
+  ## Support for metrics is only available for Artifactory 7.7.x (appVersions) and above.
+  ## To enable set `.Values.artifactory.metrics.enabled` to `true`
+  ## Note: Depricated `openMetrics` as part of 7.87.x and renamed to `metrics`
+  ## Refer - https://www.jfrog.com/confluence/display/JFROG/Open+Metrics
+  metrics:
+    enabled: false
+    ## Settings for pushing metrics to Insight - enable filebeat to true
+    filebeat:
+      enabled: false
+      log:
+        enabled: false
+        ## Log level for filebeat. Possible values: debug, info, warning, or error.
+        level: "info"
+      ## Elasticsearch details for filebeat to connect
+      elasticsearch:
+        url: "Elasticsearch url where JFrog Insight is installed For example, http://<ip_address>:8082"
+        username: ""
+        password: ""
+  ## Support for Cold Artifact Storage
+  ## set 'coldStorage.enabled' to 'true' only for Artifactory instance that you are designating as the Cold instance
+  ## Refer - https://jfrog.com/help/r/jfrog-platform-administration-documentation/setting-up-cold-artifact-storage
+  coldStorage:
+    enabled: false
+  ## Support for workers
+  ## set 'worker.enabled' to 'true' to enable artifactory addon that executes workers on artifactory events
+  worker:
+    enabled: false
+  ## This directory is intended for use with NFS eventual configuration for HA
+  ## When enabling this section, The system.yaml will include haDataDir section.
+  ## The location of Artifactory Data directory and Artifactory Filestore will be modified accordingly and will be shared among all nodes.
+  ## It's recommended to leave haDataDir disabled, and the default BinarystoreXml will set the Filestore location as configured in artifactory.persistence.nfs.dataDir.
+  haDataDir:
+    enabled: false
+    path:
+  haBackupDir:
+    enabled: false
+    path:
+  ## Files to copy to ARTIFACTORY_HOME/ on each Artifactory startup
+  ## Note : From 107.46.x chart versions, copyOnEveryStartup is not needed for binarystore.xml, it is always copied via initContainers
+  copyOnEveryStartup:
+  ## Absolute path
+  # - source: /artifactory_bootstrap/artifactory.cluster.license
+  ## Relative to ARTIFACTORY_HOME/
+  # target: etc/artifactory/
+
+  ## Sidecar containers for tailing Artifactory logs
+  loggers: []
+  # - access-audit.log
+  # - access-request.log
+  # - access-security-audit.log
+  # - access-service.log
+  # - artifactory-access.log
+  # - artifactory-event.log
+  # - artifactory-import-export.log
+  # - artifactory-request.log
+  # - artifactory-service.log
+  # - frontend-request.log
+  # - frontend-service.log
+  # - metadata-request.log
+  # - metadata-service.log
+  # - router-request.log
+  # - router-service.log
+  # - router-traefik.log
+  # - derby.log
+
+  ## Loggers containers resources
+  loggersResources: {}
+  # requests:
+  #   memory: "10Mi"
+  #   cpu: "10m"
+  # limits:
+  #   memory: "100Mi"
+  #   cpu: "50m"
+
+  ## Sidecar containers for tailing Tomcat (catalina) logs
+  catalinaLoggers: []
+  # - tomcat-catalina.log
+  # - tomcat-localhost.log
+
+  ## Tomcat (catalina) loggers resources
+  catalinaLoggersResources: {}
+  # requests:
+  #   memory: "10Mi"
+  #   cpu: "10m"
+  # limits:
+  #   memory: "100Mi"
+  #   cpu: "50m"
+
+  ## Migration support from 6.x to 7.x.
+  migration:
+    enabled: false
+    timeoutSeconds: 3600
+    ## Extra pre-start command in migration Init Container to install JDBC driver for MySql/MariaDb/Oracle
+    # preStartCommand: "mkdir -p /opt/jfrog/artifactory/var/bootstrap/artifactory/tomcat/lib; cd /opt/jfrog/artifactory/var/bootstrap/artifactory/tomcat/lib && curl -o /opt/jfrog/artifactory/var/bootstrap/artifactory/tomcat/lib/mysql-connector-java-5.1.41.jar https://repo1.maven.org/maven2/mysql/mysql-connector-java/5.1.41/mysql-connector-java-5.1.41.jar"
+  ## Add custom init containers execution before predefined init containers
+  customInitContainersBegin: |
+    # - name: "custom-setup"
+    #   image: {{ include "artifactory-ha.getImageInfoByValue" (list . "initContainers") }}
+    #   imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+    #   securityContext:
+    #     runAsNonRoot: true
+    #     allowPrivilegeEscalation: false
+    #     capabilities:
+    #       drop:
+    #         - NET_RAW
+    #   command:
+    #     - 'sh'
+    #     - '-c'
+    #     - 'touch {{ .Values.artifactory.persistence.mountPath }}/example-custom-setup'
+    #   volumeMounts:
+    #     - mountPath: "{{ .Values.artifactory.persistence.mountPath }}"
+    #       name: volume
+  ## Add custom init containers
+  ## Add custom init containers execution after predefined init containers
+  customInitContainers: |
+    # - name: "custom-systemyaml-setup"
+    #   image: {{ include "artifactory-ha.getImageInfoByValue" (list . "initContainers") }}
+    #   imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+    #   securityContext:
+    #     runAsNonRoot: true
+    #     allowPrivilegeEscalation: false
+    #     capabilities:
+    #       drop:
+    #         - NET_RAW
+    #   command:
+    #     - 'sh'
+    #     - '-c'
+    #     - 'curl -o {{ .Values.artifactory.persistence.mountPath }}/etc/system.yaml https://<repo-url>/systemyaml'
+    #   volumeMounts:
+    #     - mountPath: "{{ .Values.artifactory.persistence.mountPath }}"
+    #       name: volume
+  ## Add custom sidecar containers
+  ## - The provided example uses a custom volume (customVolumes)
+  ## - The provided example shows running container as root (id 0)
+  customSidecarContainers: |
+    # - name: "sidecar-list-etc"
+    #   image: {{ include "artifactory-ha.getImageInfoByValue" (list . "initContainers") }}
+    #   imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+    #   securityContext:
+    #     runAsNonRoot: true
+    #     allowPrivilegeEscalation: false
+    #     capabilities:
+    #       drop:
+    #         - NET_RAW
+    #   command:
+    #     - 'sh'
+    #     - '-c'
+    #     - 'sh /scripts/script.sh'
+    #   volumeMounts:
+    #     - mountPath: "{{ .Values.artifactory.persistence.mountPath }}"
+    #       name: volume
+    #     - mountPath: "/scripts/script.sh"
+    #       name: custom-script
+    #       subPath: script.sh
+    #   resources:
+    #     requests:
+    #       memory: "32Mi"
+    #       cpu: "50m"
+    #     limits:
+    #       memory: "128Mi"
+    #       cpu: "100m"
+  ## Add custom volumes
+  ## If .Values.artifactory.unifiedSecretInstallation is true then secret name should be '{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret'.
+  customVolumes: |
+    # - name: custom-script
+    #   configMap:
+    #     name: custom-script
+  ## Add custom volumesMounts
+  customVolumeMounts: |
+    # - name: custom-script
+    #   mountPath: "/scripts/script.sh"
+    #   subPath: script.sh
+    # - name: posthook-start
+    #   mountPath: "/scripts/posthoook-start.sh"
+    #   subPath: posthoook-start.sh
+    # - name: prehook-start
+    #   mountPath: "/scripts/prehook-start.sh"
+    #   subPath: prehook-start.sh
+  ## Add custom persistent volume mounts - Available to the entire namespace
+  customPersistentVolumeClaim: {}
+  # name:
+  # mountPath:
+  # accessModes:
+  #   - "-"
+  # size:
+  # storageClassName:
+
+  ## Artifactory HA requires a unique master key. Each Artifactory node must have the same master key!
+  ## You can generate one with the command: "openssl rand -hex 32"
+  ## Pass it to helm with '--set artifactory.masterKey=${MASTER_KEY}'
+  ## Alternatively, you can use a pre-existing secret with a key called master-key by specifying masterKeySecretName
+  ## IMPORTANT: You should NOT use the example masterKey for a production deployment!
+  ## IMPORTANT: This is a mandatory for fresh Install of 7.x (App version)
+  # masterKey: FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF
+  # masterKeySecretName:
+
+  ## Join Key to connect to other services to Artifactory.
+  ## IMPORTANT: Setting this value overrides the existing joinKey
+  ## IMPORTANT: You should NOT use the example joinKey for a production deployment!
+  # joinKey: EEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEE
+  ## Alternatively, you can use a pre-existing secret with a key called join-key by specifying joinKeySecretName
+  # joinKeySecretName:
+
+  ## Registration Token for JFConnect
+  # jfConnectToken:
+  ## Alternatively, you can use a pre-existing secret with a key called jfconnect-token by specifying jfConnectTokenSecretName
+  # jfConnectTokenSecretName:
+
+  ## Add custom secrets - secret per file
+  ## If .Values.artifactory.unifiedSecretInstallation is true then secret name should be '{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret' common to all secrets
+  customSecrets:
+  # - name: custom-secret
+  #   key: custom-secret.yaml
+  #   data: >
+  #     custom_secret_config:
+  #       parameter1: value1
+  #       parameter2: value2
+  # - name: custom-secret2
+  #   key: custom-secret2.config
+  #   data: |
+  #     here the custom secret 2 config
+
+  ## If false, all service console logs will not redirect to a common console.log
+  consoleLog: false
+  ## admin allows to set the password for the default admin user.
+  ## See: https://www.jfrog.com/confluence/display/JFROG/Users+and+Groups#UsersandGroups-RecreatingtheDefaultAdminUserrecreate
+  admin:
+    ip: "127.0.0.1"
+    username: "admin"
+    password:
+    secret:
+    dataKey:
+  ## Artifactory license.
+  license:
+    ## licenseKey is the license key in plain text. Use either this or the license.secret setting
+    licenseKey:
+    ## If artifactory.license.secret is passed, it will be mounted as
+    ## ARTIFACTORY_HOME/etc/artifactory.cluster.license and loaded at run time.
+    secret:
+    ## The dataKey should be the name of the secret data key created.
+    dataKey:
+  ## Create configMap with artifactory.config.import.xml and security.import.xml and pass name of configMap in following parameter
+  configMapName:
+  ## Add any list of configmaps to Artifactory
+  configMaps: |
+    # posthook-start.sh: |-
+    #   echo "This is a post start script"
+    # posthook-end.sh: |-
+    #   echo "This is a post end script"
+  ## List of secrets for Artifactory user plugins.
+  ## One Secret per plugin's files.
+  userPluginSecrets:
+  # - archive-old-artifacts
+  # - build-cleanup
+  # - webhook
+  # - '{{ template "my-chart.fullname" . }}'
+
+  ## Extra pre-start command to install JDBC driver for MySql/MariaDb/Oracle
+  # preStartCommand: "mkdir -p /opt/jfrog/artifactory/var/bootstrap/artifactory/tomcat/lib; cd /opt/jfrog/artifactory/var/bootstrap/artifactory/tomcat/lib && curl -o /opt/jfrog/artifactory/var/bootstrap/artifactory/tomcat/lib/mysql-connector-java-5.1.41.jar https://repo1.maven.org/maven2/mysql/mysql-connector-java/5.1.41/mysql-connector-java-5.1.41.jar"
+
+  ## Add lifecycle hooks for artifactory container
+  lifecycle: {}
+  # postStart:
+  #   exec:
+  #     command: ["/bin/sh", "-c", "echo Hello from the postStart handler"]
+  # preStop:
+  #   exec:
+  #     command: ["/bin/sh","-c","echo Hello from the preStop handler"]
+
+  ## Extra environment variables that can be used to tune Artifactory to your needs.
+  ## Uncomment and set value as needed
+  extraEnvironmentVariables:
+  # - name: SERVER_XML_ARTIFACTORY_PORT
+  #   value: "8081"
+  # - name: SERVER_XML_ARTIFACTORY_MAX_THREADS
+  #   value: "200"
+  # - name: SERVER_XML_ACCESS_MAX_THREADS
+  #   value: "50"
+  # - name: SERVER_XML_ARTIFACTORY_EXTRA_CONFIG
+  #   value: ""
+  # - name: SERVER_XML_ACCESS_EXTRA_CONFIG
+  #   value: ""
+  # - name: SERVER_XML_EXTRA_CONNECTOR
+  #   value: ""
+  # - name: DB_POOL_MAX_ACTIVE
+  #   value: "100"
+  # - name: DB_POOL_MAX_IDLE
+  #   value: "10"
+  # - name: MY_SECRET_ENV_VAR
+  #   valueFrom:
+  #     secretKeyRef:
+  #       name: my-secret-name
+  #       key: my-secret-key
+
+  ## System YAML entries now reside under files/system.yaml.
+  ## You can provide the specific values that you want to add or override under 'artifactory.extraSystemYaml'.
+  ## For example:
+  ## extraSystemYaml:
+  ##   shared:
+  ##     node:
+  ##       id: my-instance
+  ## The entries provided under 'artifactory.extraSystemYaml' are merged with files/system.yaml to create the final system.yaml.
+  ## If you have already provided system.yaml under, 'artifactory.systemYaml', the values in that entry take precedence over files/system.yaml
+  ## You can modify specific entries with your own value under `artifactory.extraSystemYaml`, The values under extraSystemYaml overrides the values under 'artifactory.systemYaml' and files/system.yaml
+  extraSystemYaml: {}
+  ## systemYaml is intentionally commented and the previous content has been moved under files/system.yaml.
+  ## You have to add the all entries of the system.yaml file here, and it overrides the values in files/system.yaml.
+  # systemYaml:
+
+  ## IMPORTANT: If overriding artifactory.internalPort:
+  ## DO NOT use port lower than 1024 as Artifactory runs as non-root and cannot bind to ports lower than 1024!
+  externalPort: 8082
+  internalPort: 8082
+  externalArtifactoryPort: 8081
+  internalArtifactoryPort: 8081
+  terminationGracePeriodSeconds: 30
+  ## Pod Security Context
+  ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/
+  ## @param artifactory.podSecurityContext.enabled Enable security context
+  ## @param artifactory.podSecurityContext.runAsNonRoot Set pod's Security Context runAsNonRoot
+  ## @param artifactory.podSecurityContext.runAsUser User ID for the pod
+  ## @param artifactory.podSecurityContext.runASGroup Group ID for the pod
+  ## @param artifactory.podSecurityContext.fsGroup Group ID for the pod
+  ##
+  podSecurityContext:
+    enabled: true
+    runAsNonRoot: true
+    runAsUser: 1030
+    runAsGroup: 1030
+    fsGroup: 1030
+    # fsGroupChangePolicy: "Always"
+    # seLinuxOptions: {}
+  ## The following settings are to configure the frequency of the liveness and startup probes.
+  livenessProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl -s -k --fail --max-time {{ .Values.probes.timeoutSeconds }} http://localhost:{{ .Values.artifactory.tomcat.maintenanceConnector.port }}/artifactory/api/v1/system/liveness
+      initialDelaySeconds: {{ if semverCompare "<v1.20.0-0" .Capabilities.KubeVersion.Version }}180{{ else }}0{{ end }}
+      periodSeconds: 10
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      failureThreshold: 5
+      successThreshold: 1
+  readinessProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl -s -k --fail --max-time {{ .Values.probes.timeoutSeconds }} http://localhost:{{ .Values.artifactory.tomcat.maintenanceConnector.port }}/artifactory/api/v1/system/readiness
+      initialDelaySeconds: {{ if semverCompare "<v1.20.0-0" .Capabilities.KubeVersion.Version }}90{{ else }}0{{ end }}
+      periodSeconds: 10
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      failureThreshold: 5
+      successThreshold: 1
+  startupProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl -s -k --fail --max-time {{ .Values.probes.timeoutSeconds }} http://localhost:{{ .Values.artifactory.tomcat.maintenanceConnector.port }}/artifactory/api/v1/system/readiness
+      initialDelaySeconds: {{ if semverCompare "<v1.20.0-0" .Capabilities.KubeVersion.Version }}30{{ else }}0{{ end }}
+      failureThreshold: 90
+      periodSeconds: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+  persistence:
+    enabled: true
+    local: false
+    redundancy: 3
+    mountPath: "/var/opt/jfrog/artifactory"
+    accessMode: ReadWriteOnce
+    size: 200Gi
+    ## Use a custom Secret to be mounted as your binarystore.xml
+    ## NOTE: This will ignore all settings below that make up binarystore.xml
+    customBinarystoreXmlSecret:
+    ## cache-fs binary provider configurations
+    ## Refer: https://jfrog.com/help/r/jfrog-installation-setup-documentation/cache-fs-template-configuration
+    maxCacheSize: 50000000000
+    cacheProviderDir: cache
+    # maxFileSizeLimit:
+    # skipDuringUpload:
+
+    ## artifactory data Persistent Volume Storage Class
+    ## If defined, storageClassName: <storageClass>
+    ## If set to "-", storageClassName: "", which disables dynamic provisioning
+    ## If undefined (the default) or set to null, no storageClassName spec is
+    ##   set, choosing the default provisioner.  (gp2 on AWS, standard on
+    ##   GKE, AWS & OpenStack)
+    ##
+    # storageClassName: "-"
+
+    ## Set the persistence storage type. This will apply the matching binarystore.xml to Artifactory config
+    ## Supported types are:
+    ## file-system (default)
+    ## nfs
+    ## google-storage
+    ## google-storage-v2
+    ## google-storage-v2-direct (Recommended for GCS - Google Cloud Storage)
+    ## aws-s3-v3
+    ## s3-storage-v3-direct (Recommended for AWS S3)
+    ## s3-storage-v3-archive
+    ## azure-blob
+    ## azure-blob-storage-direct
+    ## azure-blob-storage-v2-direct (Recommended for Azure Blob Storage)
+    type: file-system
+    ## Use binarystoreXml to provide a custom binarystore.xml
+    ## This is intentionally commented and below previous content of binarystoreXml is moved under files/binarystore.xml
+    ## binarystoreXml:
+
+    ## For artifactory.persistence.type file-system
+    fileSystem:
+      ## Need to have the following set
+      existingSharedClaim:
+        enabled: false
+        numberOfExistingClaims: 1
+        ## Should be a child directory of {{ .Values.artifactory.persistence.mountPath }}
+        dataDir: "{{ .Values.artifactory.persistence.mountPath }}/artifactory-data"
+        backupDir: "/var/opt/jfrog/artifactory-backup"
+        ## You may also use existing shared claims for the data and backup storage. This allows storage (NAS for example) to be used for Data and Backup dirs which are safe to share across multiple artifactory nodes.
+        ## You may specify numberOfExistingClaims to indicate how many of these existing shared claims to mount. (Default = 1)
+        ## Create PVCs with ReadWriteMany that match the naming convetions:
+        ##   {{ template "artifactory-ha.fullname" . }}-data-pvc-<claim-ordinal>
+        ##   {{ template "artifactory-ha.fullname" . }}-backup-pvc
+        ## Example (using numberOfExistingClaims: 2)
+        ##   myexample-data-pvc-0
+        ##   myexample-data-pvc-1
+        ##   myexample-backup-pvc
+        ## Note: While you need two PVC fronting two PVs, multiple PVs can be attached to the same storage in many cases allowing you to share an underlying drive.
+    ## For artifactory.persistence.type nfs
+    ## If using NFS as the shared storage, you must have a running NFS server that is accessible by your Kubernetes
+    ## cluster nodes.
+    ## Need to have the following set
+    nfs:
+      ## Must pass actual IP of NFS server with '--set For artifactory.persistence.nfs.ip=${NFS_IP}'
+      ip:
+      haDataMount: "/data"
+      haBackupMount: "/backup"
+      dataDir: "/var/opt/jfrog/artifactory-ha"
+      backupDir: "/var/opt/jfrog/artifactory-backup"
+      capacity: 200Gi
+      mountOptions: []
+    ## For artifactory.persistence.type google-storage, google-storage-v2, google-storage-v2-direct
+    googleStorage:
+      ## When using GCP buckets as your binary store (Available with enterprise license only)
+      gcpServiceAccount:
+        enabled: false
+        ## Use either an existing secret prepared in advance or put the config (replace the content) in the values
+        ## ref: https://github.com/jfrog/charts/blob/master/stable/artifactory-ha/README.md#google-storage
+        # customSecretName:
+        # config: |
+        #   {
+        #      "type": "service_account",
+        #      "project_id": "<project_id>",
+        #      "private_key_id": "?????",
+        #      "private_key": "-----BEGIN PRIVATE KEY-----\n????????==\n-----END PRIVATE KEY-----\n",
+        #      "client_email": "???@j<project_id>.iam.gserviceaccount.com",
+        #      "client_id": "???????",
+        #      "auth_uri": "https://accounts.google.com/o/oauth2/auth",
+        #      "token_uri": "https://oauth2.googleapis.com/token",
+        #      "auth_provider_x509_cert_url": "https://www.googleapis.com/oauth2/v1/certs",
+        #      "client_x509_cert_url": "https://www.googleapis.com/robot/v1....."
+        #   }
+      endpoint: commondatastorage.googleapis.com
+      httpsOnly: false
+      ## Set a unique bucket name
+      bucketName: "artifactory-ha-gcp"
+      ## GCP Bucket Authentication with Identity and Credential is deprecated.
+      ## identity:
+      ## credential:
+      path: "artifactory-ha/filestore"
+      bucketExists: false
+      useInstanceCredentials: false
+      enableSignedUrlRedirect: false
+      # signedUrlExpirySeconds: 30
+    ## For artifactory.persistence.type aws-s3-v3, s3-storage-v3-direct, s3-storage-v3-archive
+    awsS3V3:
+      testConnection: false
+      identity:
+      credential:
+      region:
+      bucketName: artifactory-aws
+      path: artifactory/filestore
+      endpoint:
+      port:
+      useHttp:
+      maxConnections: 50
+      connectionTimeout:
+      socketTimeout:
+      kmsServerSideEncryptionKeyId:
+      kmsKeyRegion:
+      kmsCryptoMode:
+      useInstanceCredentials: true
+      usePresigning: false
+      signatureExpirySeconds: 300
+      signedUrlExpirySeconds: 30
+      cloudFrontDomainName:
+      cloudFrontKeyPairId:
+      cloudFrontPrivateKey:
+      enableSignedUrlRedirect: false
+      enablePathStyleAccess: false
+      multiPartLimit:
+      multipartElementSize:
+    ## For artifactory.persistence.type azure-blob, azure-blob-storage-direct, azure-blob-storage-v2-direct
+    azureBlob:
+      accountName:
+      accountKey:
+      endpoint:
+      containerName:
+      multiPartLimit: 100000000
+      multipartElementSize: 50000000
+      testConnection: false
+  service:
+    name: artifactory
+    type: ClusterIP
+    ## @param service.ipFamilyPolicy Controller Service ipFamilyPolicy (optional, cloud specific)
+    ## This can be either SingleStack, PreferDualStack or RequireDualStack
+    ## ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/#services
+    ##
+    ipFamilyPolicy: ""
+    ## @param service.ipFamilies Controller Service ipFamilies (optional, cloud specific)
+    ## This can be either ["IPv4"], ["IPv6"], ["IPv4", "IPv6"] or ["IPv6", "IPv4"]
+    ## ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/#services
+    ##
+    ipFamilies: []
+    ## For supporting whitelist on the Artifactory service (useful if setting service.type=LoadBalancer)
+    ## Set this to a list of IP CIDR ranges
+    ## Example: loadBalancerSourceRanges: ['10.10.10.5/32', '10.11.10.5/32']
+    ## or pass from helm command line
+    ## Example: helm install ... --set nginx.service.loadBalancerSourceRanges='{10.10.10.5/32,10.11.10.5/32}'
+    loadBalancerSourceRanges: []
+    annotations: {}
+    ## Which nodes in the cluster should be in the external load balancer pool (have external traffic routed to them)
+    ## Supported pool values
+    ## members
+    ## all
+    pool: members
+    ## If the type is NodePort you can set a fixed port
+    # nodePort: 32082
+  serviceGrpc:
+    name: grpc
+    type: ClusterIP
+    ## @param service.ipFamilyPolicy Controller Service ipFamilyPolicy (optional, cloud specific)
+    ## This can be either SingleStack, PreferDualStack or RequireDualStack
+    ## ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/#services
+    ##
+    ipFamilyPolicy: ""
+    ## @param service.ipFamilies Controller Service ipFamilies (optional, cloud specific)
+    ## This can be either ["IPv4"], ["IPv6"], ["IPv4", "IPv6"] or ["IPv6", "IPv4"]
+    ## ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/#services
+    ##
+    ipFamilies: []
+    ## For supporting whitelist on the Artifactory service (useful if setting service.type=LoadBalancer)
+    ## Set this to a list of IP CIDR ranges
+    ## Example: loadBalancerSourceRanges: ['10.10.10.5/32', '10.11.10.5/32']
+    ## or pass from helm command line
+    ## Example: helm install ... --set nginx.service.loadBalancerSourceRanges='{10.10.10.5/32,10.11.10.5/32}'
+    loadBalancerSourceRanges: []
+    annotations: {}
+    ## Which nodes in the cluster should be in the external load balancer pool (have external traffic routed to them)
+    ## Supported pool values
+    ## members
+    ## all
+    pool: members
+    ## If the type is NodePort you can set a fixed port
+    # nodePort: 32082
+  statefulset:
+    annotations: {}
+  ssh:
+    enabled: false
+    internalPort: 1339
+    externalPort: 1339
+  annotations: {}
+  ## Spread Artifactory pods evenly across your nodes or some other topology
+  ## Note this applies to both the primary and replicas
+  topologySpreadConstraints: []
+  # - maxSkew: 1
+  #   topologyKey: kubernetes.io/hostname
+  #   whenUnsatisfiable: DoNotSchedule
+  #   labelSelector:
+  #     matchLabels:
+  #       app: '{{ template "artifactory-ha.name" . }}'
+  #       role: '{{ template "artifactory-ha.name" . }}'
+  #       release: "{{ .Release.Name }}"
+
+  ## Type specific configurations.
+  ## There is a difference between the primary and the member nodes.
+  ## Customising their resources and java parameters is done here.
+  primary:
+    name: artifactory-ha-primary
+    ## preStartCommand specific to the primary node, to be run after artifactory.preStartCommand
+    # preStartCommand:
+    labels: {}
+    annotations: {}
+    persistence:
+      ## Set existingClaim to true or false
+      ## If true, you must prepare a PVC with the name e.g `volume-myrelease-artifactory-ha-primary-0`
+      existingClaim: false
+    replicaCount: 3
+    # minAvailable: 1
+
+    updateStrategy:
+      type: RollingUpdate
+    ## Resources for the primary node
+    resources: {}
+    # requests:
+    #   memory: "1Gi"
+    #   cpu: "500m"
+    # limits:
+    #   memory: "2Gi"
+    #   cpu: "1"
+    ## The following Java options are passed to the java process running Artifactory primary node.
+    ## You should set them according to the resources set above
+    javaOpts:
+      # xms: "1g"
+      # xmx: "2g"
+      # corePoolSize: 24
+      jmx:
+        enabled: false
+        port: 9010
+        host:
+        ssl: false
+        # When authenticate is true, accessFile and passwordFile are required
+        authenticate: false
+        accessFile:
+        passwordFile:
+        # other: ""
+    nodeSelector: {}
+    tolerations: []
+    affinity: {}
+    ## Only used if "affinity" is empty
+    podAntiAffinity:
+      ## Valid values are "soft" or "hard"; any other value indicates no anti-affinity
+      type: "soft"
+      topologyKey: "kubernetes.io/hostname"
+  node:
+    name: artifactory-ha-member
+    ## preStartCommand specific to the member node, to be run after artifactory.preStartCommand
+    # preStartCommand:
+    labels: {}
+    persistence:
+      ## Set existingClaim to true or false
+      ## If true, you must prepare a PVC with the name e.g `volume-myrelease-artifactory-ha-member-0`
+      existingClaim: false
+    replicaCount: 0
+    updateStrategy:
+      type: RollingUpdate
+    minAvailable: 1
+    ## Resources for the member nodes
+    resources: {}
+    # requests:
+    #   memory: "1Gi"
+    #   cpu: "500m"
+    # limits:
+    #   memory: "2Gi"
+    #   cpu: "1"
+    ## The following Java options are passed to the java process running Artifactory member nodes.
+    ## You should set them according to the resources set above
+    javaOpts:
+      # xms: "1g"
+      # xmx: "2g"
+      # corePoolSize: 24
+      jmx:
+        enabled: false
+        port: 9010
+        host:
+        ssl: false
+        # When authenticate is true, accessFile and passwordFile are required
+        authenticate: false
+        accessFile:
+        passwordFile:
+        # other: ""
+    nodeSelector: {}
+    ## Wait for Artifactory primary
+    waitForPrimaryStartup:
+      enabled: true
+      ## Setting time will override the built in test and will just wait the set time
+      time:
+    tolerations: []
+    ## Complete specification of the "affinity" of the member nodes; if this is non-empty,
+    ## "podAntiAffinity" values are not used.
+    affinity: {}
+    ## Only used if "affinity" is empty
+    podAntiAffinity:
+      ## Valid values are "soft" or "hard"; any other value indicates no anti-affinity
+      type: "soft"
+      topologyKey: "kubernetes.io/hostname"
+frontend:
+  name: frontend
+  enabled: true
+  internalPort: 8070
+  ## Extra environment variables that can be used to tune frontend to your needs.
+  ## Uncomment and set value as needed
+  extraEnvironmentVariables:
+  # - name: MY_ENV_VAR
+  #   value: ""
+  resources: {}
+  # requests:
+  #   memory: "100Mi"
+  #   cpu: "100m"
+  # limits:
+  #   memory: "1Gi"
+  #   cpu: "1"
+  ## Session settings
+  session:
+    ## Time in minutes after which the frontend token will need to be refreshed
+    timeoutMinutes: '30'
+  ## Add lifecycle hooks for frontend container
+  lifecycle: {}
+  # postStart:
+  #   exec:
+  #     command: ["/bin/sh", "-c", "echo Hello from the postStart handler"]
+  # preStop:
+  #   exec:
+  #     command: ["/bin/sh","-c","echo Hello from the preStop handler"]
+
+  ## The following settings are to configure the frequency of the liveness and startup probes when splitServicesToContainers set to true
+  livenessProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl --fail --max-time {{ .Values.probes.timeoutSeconds }} http://localhost:{{ .Values.frontend.internalPort }}/api/v1/system/liveness
+      initialDelaySeconds: {{ if semverCompare "<v1.20.0-0" .Capabilities.KubeVersion.Version }}180{{ else }}0{{ end }}
+      failureThreshold: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      periodSeconds: 10
+      successThreshold: 1
+  startupProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl --fail --max-time {{ .Values.probes.timeoutSeconds }} http://localhost:{{ .Values.frontend.internalPort }}/api/v1/system/readiness
+      initialDelaySeconds: 30
+      failureThreshold: 90
+      periodSeconds: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+access:
+  name: access
+  enabled: true
+  ## Enable TLS by changing the tls entry (under the security section) in the access.config.yaml file.
+  ## ref: https://www.jfrog.com/confluence/display/JFROG/Managing+TLS+Certificates#ManagingTLSCertificates
+  ## When security.tls is set to true, JFrog Access will act as the Certificate Authority (CA) and sign the TLS certificates used by all the different JFrog Platform nodes.
+  ## This ensures that the node to node communication is done over TLS.
+  accessConfig:
+    security:
+      tls: false
+  ## You can use a pre-existing secret by specifying customCertificatesSecretName
+  ## Example : Create a tls secret using `kubectl create secret tls <secret-name> --cert=ca.crt --key=ca.private.key`
+  # customCertificatesSecretName:
+
+  ## When resetAccessCAKeys is true, Access will regenerate the CA certificate and matching private key
+  # resetAccessCAKeys: false
+  database:
+    maxOpenConnections: 80
+  tomcat:
+    connector:
+      maxThreads: 50
+      sendReasonPhrase: false
+      extraConfig: 'acceptCount="100"'
+  livenessProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl --fail --max-time {{ .Values.probes.timeoutSeconds }} http://localhost:8040/access/api/v1/system/liveness
+      initialDelaySeconds: {{ if semverCompare "<v1.20.0-0" .Capabilities.KubeVersion.Version }}30{{ else }}0{{ end }}
+      failureThreshold: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      periodSeconds: 10
+      successThreshold: 1
+  readinessProbe:
+    enabled: false
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl --fail --max-time {{ .Values.probes.timeoutSeconds }} http://localhost:8040/access/api/v1/system/readiness
+      initialDelaySeconds: 5
+      failureThreshold: 30
+      periodSeconds: 15
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+  startupProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl --fail --max-time {{ .Values.probes.timeoutSeconds }} http://localhost:8040/access/api/v1/system/readiness
+      initialDelaySeconds: 5
+      failureThreshold: 30
+      periodSeconds: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+  ## access container's resource requests and limits
+  ## ref: https://kubernetes.io/docs/user-guide/compute-resources/
+  ## We usually recommend not to specify default resources and to leave this as a conscious
+  ## choice for the user. This also increases chances charts run on environments with little
+  ## resources, such as Minikube. If you do want to specify resources, uncomment the following
+  ## lines, adjust them as necessary, and remove the curly braces after 'resources:'.
+  ## @param access.resources.limits The resources limits for access containers
+  ## @param access.resources.requests The requested resources for access containers
+  ##
+  resources: {}
+  # limits:
+  #   cpu: 1000m
+  #   memory: 2Gi
+  # requests:
+  #   cpu: 1000m
+  #   memory: 2Gi
+
+  javaOpts:
+  # other: ""
+
+  ## Extra environment variables that can be used to tune access to your needs.
+  ## Uncomment and set value as needed
+  extraEnvironmentVariables:
+  # - name: MY_ENV_VAR
+  #   value: ""
+evidence:
+  name: evidence
+  enabled: false
+  internalPort: 8051
+  externalPort: 8052
+  ## Extra environment variables that can be used to tune evidence to your needs.
+  ## Uncomment and set value as needed
+  extraEnvironmentVariables:
+  # - name: MY_ENV_VAR
+  #   value: ""
+  resources: {}
+  #  requests:
+  #    memory: "100Mi"
+  #    cpu: "100m"
+  #  limits:
+  #    memory: "1Gi"
+  #    cpu: "1"
+
+  # Add lifecycle hooks for evidence container
+  lifecycle: {}
+  # postStart:
+  #   exec:
+  #     command: ["/bin/sh", "-c", "echo Hello from the postStart handler"]
+  # preStop:
+  #   exec:
+  #     command: ["/bin/sh","-c","echo Hello from the preStop handler"]
+
+  ## The following settings are to configure the frequency of the liveness and startup probes when splitServicesToContainers set to true
+  livenessProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl --fail --max-time {{ .Values.probes.timeoutSeconds }} http://localhost:{{ .Values.evidence.internalPort }}/api/v1/system/liveness
+      initialDelaySeconds: {{ if semverCompare "<v1.20.0-0" .Capabilities.KubeVersion.Version }}180{{ else }}0{{ end }}
+      failureThreshold: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      periodSeconds: 10
+      successThreshold: 1
+  startupProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl --fail --max-time {{ .Values.probes.timeoutSeconds }} http://localhost:{{ .Values.evidence.internalPort }}/api/v1/system/readiness
+      initialDelaySeconds: 30
+      failureThreshold: 90
+      periodSeconds: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+metadata:
+  name: metadata
+  enabled: true
+  internalPort: 8086
+  ## Extra environment variables that can be used to tune metadata to your needs.
+  ## Uncomment and set value as needed
+  extraEnvironmentVariables:
+  # - name: MY_ENV_VAR
+  #   value: ""
+  image:
+    pullPolicy: IfNotPresent
+    registry: releases-docker.jfrog.io
+    repository: jfrog/artifactory-pro
+    # tag:
+  resources: {}
+  # requests:
+  #   memory: "100Mi"
+  #   cpu: "100m"
+  # limits:
+  #   memory: "1Gi"
+  #   cpu: "1"
+  database:
+    maxOpenConnections: 80
+  ## Add lifecycle hooks for metadata container
+  lifecycle: {}
+  # postStart:
+  #   exec:
+  #     command: ["/bin/sh", "-c", "echo Hello from the postStart handler"]
+  # preStop:
+  #   exec:
+  #     command: ["/bin/sh","-c","echo Hello from the preStop handler"]
+
+  ## The following settings are to configure the frequency of the liveness and startup probes when splitServicesToContainers set to true
+  livenessProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl --fail --max-time {{ .Values.probes.timeoutSeconds }} http://localhost:{{ .Values.metadata.internalPort }}/api/v1/system/liveness
+      initialDelaySeconds: {{ if semverCompare "<v1.20.0-0" .Capabilities.KubeVersion.Version }}180{{ else }}0{{ end }}
+      failureThreshold: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      periodSeconds: 10
+      successThreshold: 1
+  startupProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl --fail --max-time {{ .Values.probes.timeoutSeconds }} http://localhost:{{ .Values.metadata.internalPort }}/api/v1/system/readiness
+      initialDelaySeconds: 30
+      failureThreshold: 90
+      periodSeconds: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+event:
+  name: event
+  enabled: true
+  internalPort: 8061
+  ## WebHook handlers settings for event
+  webhooks: {}
+  # urlStrictPolicy: false
+
+  ## Extra environment variables that can be used to tune event to your needs.
+  ## Uncomment and set value as needed
+  extraEnvironmentVariables:
+  # - name: MY_ENV_VAR
+  #   value: ""
+  resources: {}
+  # requests:
+  #   memory: "100Mi"
+  #   cpu: "100m"
+  # limits:
+  #   memory: "1Gi"
+  #   cpu: "1"
+
+  ## Add lifecycle hooks for event container
+  lifecycle: {}
+  # postStart:
+  #   exec:
+  #     command: ["/bin/sh", "-c", "echo Hello from the postStart handler"]
+  # preStop:
+  #   exec:
+  #     command: ["/bin/sh","-c","echo Hello from the preStop handler"]
+
+  ## The following settings are to configure the frequency of the liveness and startup probes when splitServicesToContainers set to true
+  livenessProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl --fail --max-time {{ .Values.probes.timeoutSeconds }} http://localhost:{{ .Values.event.internalPort }}/api/v1/system/liveness
+      initialDelaySeconds: {{ if semverCompare "<v1.20.0-0" .Capabilities.KubeVersion.Version }}180{{ else }}0{{ end }}
+      failureThreshold: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      periodSeconds: 10
+      successThreshold: 1
+  startupProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl --fail --max-time {{ .Values.probes.timeoutSeconds }} http://localhost:{{ .Values.event.internalPort }}/api/v1/system/readiness
+      initialDelaySeconds: 30
+      failureThreshold: 90
+      periodSeconds: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+jfconnect:
+  name: jfconnect
+  enabled: true
+  internalPort: 8030
+  ## Extra environment variables that can be used to tune jfconnect to your needs.
+  ## Uncomment and set value as needed
+  extraEnvironmentVariables:
+  # - name: MY_ENV_VAR
+  #   value: ""
+  resources: {}
+  # requests:
+  #   memory: "100Mi"
+  #   cpu: "100m"
+  # limits:
+  #   memory: "1Gi"
+  #   cpu: "1"
+
+  ## Add lifecycle hooks for jfconnect container
+  lifecycle: {}
+  # postStart:
+  #   exec:
+  #     command: ["/bin/sh", "-c", "echo Hello from the postStart handler"]
+  # preStop:
+  #   exec:
+  #     command: ["/bin/sh","-c","echo Hello from the preStop handler"]
+
+  ## You can use a pre-existing secret by specifying customCertificatesSecretName
+  ## Example : Create a tls secret using `kubectl create secret tls <secret-name> --cert=tls.crt --key=tls.key`
+  # customCertificatesSecretName:
+
+  ## The following settings are to configure the frequency of the liveness and startup probes when splitServicesToContainers set to true
+  livenessProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl --fail --max-time {{ .Values.probes.timeoutSeconds }} http://localhost:{{ .Values.jfconnect.internalPort }}/api/v1/system/liveness
+      initialDelaySeconds: {{ if semverCompare "<v1.20.0-0" .Capabilities.KubeVersion.Version }}180{{ else }}0{{ end }}
+      failureThreshold: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      periodSeconds: 10
+      successThreshold: 1
+  startupProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl --fail --max-time {{ .Values.probes.timeoutSeconds }} http://localhost:{{ .Values.jfconnect.internalPort }}/api/v1/system/readiness
+      initialDelaySeconds: 30
+      failureThreshold: 90
+      periodSeconds: 5
+      timeoutSeconds: 5
+onemodel:
+  name: onemodel
+  enabled: true
+  # Apollo Router Yaml is used to configure one of the components of one model (Apollo Router)
+  # This allows you to change the port etc. for the Apollo Router
+  # This doesn't need to change for usual cases
+  apolloYaml:
+  # Example
+  # supergraph:
+  #     listen: 127.0.0.1:8079
+  internalPort: 8071
+  ## Extra environment variables that can be used to tune onemodel to your needs.
+  ## Uncomment and set value as needed
+  extraEnvironmentVariables:
+  # - name: MY_ENV_VAR
+  #   value: ""
+  resources: {}
+  # requests:
+  #   memory: "100Mi"
+  #   cpu: "100m"
+  # limits:
+  #   memory: "1Gi"
+  #   cpu: "1"
+
+  ## Add lifecycle hooks for onemodel container
+  lifecycle: {}
+  # postStart:
+  #   exec:
+  #     command: ["/bin/sh", "-c", "echo Hello from the postStart handler"]
+  # preStop:
+  #   exec:
+  #     command: ["/bin/sh","-c","echo Hello from the preStop handler"]
+
+  ## The following settings are to configure the frequency of the liveness and startup probes when splitServicesToContainers set to true
+  livenessProbe:
+    # By default, liveness will fail after 60 seconds of failing readiness (from system.yaml).
+    # Container will be restarted after 50 additional seconds.
+    enabled: true
+    config: |
+      httpGet:
+        path: /api/v1/system/liveness
+        port: {{ .Values.onemodel.internalPort }}
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      initialDelaySeconds: 10
+      periodSeconds: 10
+      failureThreshold: 5
+      successThreshold: 1
+  startupProbe:
+    enabled: true
+    config: |
+      httpGet:
+        path: api/v1/system/readiness
+        port: {{ .Values.onemodel.internalPort }}
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      initialDelaySeconds: 30
+      periodSeconds: 90
+      failureThreshold: 12
+      successThreshold: 1
+  readinessProbe:
+    enabled: true
+    config: |
+      httpGet:
+        path: api/v1/system/readiness
+        port: {{ .Values.onemodel.internalPort }}
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      initialDelaySeconds: 0
+      periodSeconds: 10
+      failureThreshold: 5
+      successThreshold: 1
+topology:
+  name: topology
+  enabled: true
+  internalPort: 8020
+  database:
+    maxOpenConnections: 80
+  javaOpts:
+  # other: ""
+
+  ## Extra environment variables that can be used to tune topology to your needs.
+  ## Uncomment and set value as needed
+  extraEnvironmentVariables:
+  # - name: MY_ENV_VAR
+  #   value: ""
+  resources: {}
+  #  requests:
+  #    memory: "100Mi"
+  #    cpu: "100m"
+  #  limits:
+  #    memory: "1Gi"
+  #    cpu: "1"
+
+  # Add lifecycle hooks for topology container
+  lifecycle: {}
+  # postStart:
+  #   exec:
+  #     command: ["/bin/sh", "-c", "echo Hello from the postStart handler"]
+  # preStop:
+  #   exec:
+  #     command: ["/bin/sh","-c","echo Hello from the preStop handler"]
+
+  ## The following settings are to configure the frequency of the liveness and startup probes when splitServicesToContainers set to true
+  livenessProbe:
+    enabled: true
+    config: |
+      httpGet:
+        path: /topology/api/v1/system/liveness
+        port: {{ .Values.topology.internalPort }}
+        scheme: HTTP
+      initialDelaySeconds: 10
+      failureThreshold: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      periodSeconds: 10
+      successThreshold: 1
+  readinessProbe:
+    enabled: true
+    config: |
+      httpGet:
+        path: /topology/api/v1/system/readiness
+        port: {{ .Values.topology.internalPort }}
+        scheme: HTTP
+      initialDelaySeconds: 5
+      failureThreshold: 30
+      periodSeconds: 15
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+  startupProbe:
+    enabled: true
+    config: |
+      httpGet:
+        path: /topology/api/v1/system/readiness
+        port: {{ .Values.topology.internalPort }}
+        scheme: HTTP
+      initialDelaySeconds: 3
+      failureThreshold: 90
+      periodSeconds: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+observability:
+  name: observability
+  enabled: true
+  internalPort: 8036
+  ## Extra environment variables that can be used to tune observability to your needs.
+  ## Uncomment and set value as needed
+  extraEnvironmentVariables:
+  # - name: MY_ENV_VAR
+  #   value: ""
+  image:
+    pullPolicy: IfNotPresent
+    registry: releases-docker.jfrog.io
+    repository: jfrog/artifactory-pro
+    # tag:
+  resources: {}
+  # requests:
+  #   memory: "100Mi"
+  #   cpu: "100m"
+  # limits:
+  #   memory: "1Gi"
+  #   cpu: "1"
+
+  ## Add lifecycle hooks for observability container
+  lifecycle: {}
+  # postStart:
+  #   exec:
+  #     command: ["/bin/sh", "-c", "echo Hello from the postStart handler"]
+  # preStop:
+  #   exec:
+  #     command: ["/bin/sh","-c","echo Hello from the preStop handler"]
+
+  ## The following settings are to configure the frequency of the liveness and startup probes when splitServicesToContainers set to true
+  livenessProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl --fail --max-time {{ .Values.probes.timeoutSeconds }} http://localhost:{{ .Values.observability.internalPort }}/api/v1/system/liveness
+      initialDelaySeconds: {{ if semverCompare "<v1.20.0-0" .Capabilities.KubeVersion.Version }}180{{ else }}0{{ end }}
+      failureThreshold: 5
+      timeoutSeconds: 5
+      periodSeconds: 10
+      successThreshold: 1
+  startupProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl --fail --max-time {{ .Values.probes.timeoutSeconds }} http://localhost:{{ .Values.observability.internalPort }}/api/v1/system/readiness
+      initialDelaySeconds: 30
+      failureThreshold: 90
+      periodSeconds: 5
+      timeoutSeconds: 5
+## MISSION_CONTROL
+mc:
+  enabled: false
+  database:
+    maxOpenConnections: 10
+  idgenerator:
+    maxOpenConnections: 2
+  tomcat:
+    connector:
+      maxThreads: 50
+      sendReasonPhrase: false
+      extraConfig: 'acceptCount="100"'
+## Nginx
+nginx:
+  enabled: true
+  kind: Deployment
+  name: nginx
+  labels: {}
+  hosts: []
+  replicaCount: 1
+  minAvailable: 0
+  podSecurityContext:
+    enabled: true
+    runAsUser: 104
+    runAsGroup: 107
+    fsGroup: 107
+  containerSecurityContext:
+    enabled: true
+    runAsNonRoot: true
+    privileged: false
+    readOnlyRootFilesystem: false
+    allowPrivilegeEscalation: false
+    capabilities:
+      drop: ["ALL"]
+    seccompProfile:
+      type: "RuntimeDefault"
+  annotations: {}
+  terminationGracePeriodSeconds: 30
+  disableProxyBuffering: false
+  ## singleStackIPv6Cluster flag, which manages the Nginx configuration to enable listening on IPv6 and proxy.
+  ## If .Values.nginx.service.ipFamilies and .Values.artifactory.service.ipFamilies is configured for only IPv6, users need to enable this flag.
+  singleStackIPv6Cluster: false
+  ## Note that by default we use appVersion to get image tag/version
+  image:
+    registry: releases-docker.jfrog.io
+    repository: jfrog/nginx-artifactory-pro
+    # tag:
+    pullPolicy: IfNotPresent
+  deployment:
+    annotations: {}
+  ## Priority Class name to be used in deployment if provided
+  priorityClassName:
+  ## Spread nginx pods evenly across your nodes or some other topology
+  topologySpreadConstraints: []
+  # - maxSkew: 1
+  #   topologyKey: kubernetes.io/hostname
+  #   whenUnsatisfiable: DoNotSchedule
+  #   labelSelector:
+  #     matchLabels:
+  #       app: '{{ template "artifactory-ha.name" . }}'
+  #       release: '{{ .Release.Name }}'
+  #       component: '{{ .Values.nginx.name }}'
+
+  ## Add lifecycle hooks for the nginx pods
+  ## For example, you can add a `preStop` hook that sends a SIGQUIT to nginx and wait for it to terminate gracefully
+  lifecycle: {}
+  # postStart:
+  #   exec:
+  #     command: ["/bin/sh", "-c", "echo Hello from the postStart handler > /var/opt/jfrog/nginx/message"]
+  # preStop:
+  #   exec:
+  #     command: ["/bin/sh","-c","nginx -s quit; while killall -0 nginx; do sleep 1; done"]
+
+  ## Sidecar containers for tailing Nginx logs
+  loggers: []
+  # - access.log
+  # - error.log
+
+  ## Loggers containers resources
+  loggersResources: {}
+  # requests:
+  #   memory: "64Mi"
+  #   cpu: "25m"
+  # limits:
+  #   memory: "128Mi"
+  #   cpu: "50m"
+
+  ## Logs options
+  logs:
+    stderr: false
+    stdout: false
+    level: warn
+  ## A list of custom ports to expose on the NGINX pod. Follows the conventional Kubernetes yaml syntax for container ports.
+  customPorts: []
+  # - containerPort: 8066
+  #   name: docker
+
+  ## The nginx main conf was moved to files/nginx-main-conf.yaml. This key is commented out to keep support for the old configuration
+  # mainConf: |
+
+  ## The nginx artifactory conf was moved to files/nginx-artifactory-conf.yaml. This key is commented out to keep support for the old configuration
+  # artifactoryConf: |
+  customInitContainers: ""
+  customSidecarContainers: ""
+  customVolumes: ""
+  customVolumeMounts: ""
+  customCommand:
+  ##  allows overwriting the command for the nginx container.
+  ##  defaults to [ 'nginx', '-g', 'daemon off;' ]
+
+  service:
+    ## For minikube, set this to NodePort, elsewhere use LoadBalancer
+    type: LoadBalancer
+    ssloffload: false
+    ## @param service.ssloffloadForceHttps Only enabled when service.ssloffload is set to True.
+    ## Force all requests from NGINX to the upstream server are over HTTPS, even when SSL offloading is enabled.
+    ## This is useful in environments where internal traffic must remain secure with https only.
+    ssloffloadForceHttps: false
+    ## @param service.ipFamilyPolicy Controller Service ipFamilyPolicy (optional, cloud specific)
+    ## This can be either SingleStack, PreferDualStack or RequireDualStack
+    ## ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/#services
+    ##
+    ipFamilyPolicy: ""
+    ## @param service.ipFamilies Controller Service ipFamilies (optional, cloud specific)
+    ## This can be either ["IPv4"], ["IPv6"], ["IPv4", "IPv6"] or ["IPv6", "IPv4"]
+    ## ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/#services
+    ##
+    ipFamilies: []
+    ## For supporting whitelist on the Nginx LoadBalancer service
+    ## Set this to a list of IP CIDR ranges
+    ## Example: loadBalancerSourceRanges: ['10.10.10.5/32', '10.11.10.5/32']
+    ## or pass from helm command line
+    ## Example: helm install ... --set nginx.service.loadBalancerSourceRanges='{10.10.10.5/32,10.11.10.5/32}'
+    loadBalancerSourceRanges: []
+    ## Provide static ip address
+    loadBalancerIP:
+    ## There are two available options: "Cluster" (default) and "Local".
+    externalTrafficPolicy: Cluster
+    labels: {}
+    # label-key: label-value
+    ## If the type is NodePort you can set a fixed port
+    # nodePort: 32082
+    ## A list of custom ports to be exposed on nginx service. Follows the conventional Kubernetes yaml syntax for service ports.
+    customPorts: []
+    # - port: 8066
+    #   targetPort: 8066
+    #   protocol: TCP
+    #   name: docker
+
+    annotations: {}
+  ## Renamed nginx internalPort 80,443 to 8080,8443 to support openshift
+  http:
+    enabled: true
+    externalPort: 80
+    internalPort: 8080
+  https:
+    enabled: true
+    externalPort: 443
+    internalPort: 8443
+  ## DEPRECATED: The following will be replaced by L1065-L1076 in a future release
+  # externalPortHttp: 80
+  # internalPortHttp: 8080
+  # externalPortHttps: 443
+  # internalPortHttps: 8443
+
+  ssh:
+    internalPort: 1339
+    externalPort: 1339
+  ## The following settings are to configure the frequency of the liveness and readiness probes.
+  livenessProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl -s -k --fail --max-time {{ .Values.probes.timeoutSeconds }} {{ include "nginx.scheme" . }}://localhost:{{ include "nginx.port" . }}/
+      initialDelaySeconds: {{ if semverCompare "<v1.20.0-0" .Capabilities.KubeVersion.Version }}180{{ else }}0{{ end }}
+      periodSeconds: 10
+      timeoutSeconds: 5
+      failureThreshold: 5
+      successThreshold: 1
+  readinessProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl -s -k --fail --max-time {{ .Values.probes.timeoutSeconds }} {{ include "nginx.scheme" . }}://localhost:{{ include "nginx.port" . }}/router/api/v1/system/readiness
+      initialDelaySeconds: {{ if semverCompare "<v1.20.0-0" .Capabilities.KubeVersion.Version }}90{{ else }}0{{ end }}
+      periodSeconds: 10
+      timeoutSeconds: 5
+      failureThreshold: 5
+      successThreshold: 1
+  startupProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl -s -k --fail --max-time {{ .Values.probes.timeoutSeconds }} {{ include "nginx.scheme" . }}://localhost:{{ include "nginx.port" . }}/router/api/v1/system/readiness
+      initialDelaySeconds: 3
+      failureThreshold: 90
+      periodSeconds: 5
+      timeoutSeconds: 5
+  ## The SSL secret that will be used by the Nginx pod
+  # tlsSecretName: chart-example-tls
+  ## Custom ConfigMap for nginx.conf
+  customConfigMap:
+  ## Custom ConfigMap for artifactory.conf
+  customArtifactoryConfigMap:
+  persistence:
+    mountPath: "/var/opt/jfrog/nginx"
+    enabled: false
+    ## A manually managed Persistent Volume and Claim
+    ## Requires persistence.enabled: true
+    ## If defined, PVC must be created manually before volume will be bound
+    # existingClaim:
+
+    accessMode: ReadWriteOnce
+    size: 5Gi
+    ## nginx data Persistent Volume Storage Class
+    ## If defined, storageClassName: <storageClass>
+    ## If set to "-", storageClassName: "", which disables dynamic provisioning
+    ## If undefined (the default) or set to null, no storageClassName spec is
+    ## set, choosing the default provisioner.  (gp2 on AWS, standard on
+    ## GKE, AWS & OpenStack)
+    ##
+    # storageClassName: "-"
+  resources: {}
+  # requests:
+  #   memory: "250Mi"
+  #   cpu: "100m"
+  # limits:
+  #   memory: "250Mi"
+  #   cpu: "500m"
+
+  nodeSelector: {}
+  tolerations: []
+  affinity: {}
+## Filebeat Sidecar container
+## The provided filebeat configuration is for Artifactory logs. It assumes you have a logstash installed and configured properly.
+filebeat:
+  enabled: false
+  name: artifactory-filebeat
+  image:
+    repository: "docker.elastic.co/beats/filebeat"
+    version: 7.16.2
+  logstashUrl: "logstash:5044"
+  terminationGracePeriod: 10
+  livenessProbe:
+    exec:
+      command:
+        - sh
+        - -c
+        - |
+          #!/usr/bin/env bash -e
+          curl --fail 127.0.0.1:5066
+    failureThreshold: 3
+    initialDelaySeconds: 10
+    periodSeconds: 10
+    timeoutSeconds: 5
+  readinessProbe:
+    exec:
+      command:
+        - sh
+        - -c
+        - |
+          #!/usr/bin/env bash -e
+          filebeat test output
+    failureThreshold: 3
+    initialDelaySeconds: 10
+    periodSeconds: 10
+    timeoutSeconds: 5
+  resources: {}
+  # requests:
+  #   memory: "100Mi"
+  #   cpu: "100m"
+  # limits:
+  #   memory: "100Mi"
+  #   cpu: "100m"
+
+  filebeatYml: |
+    logging.level: info
+    path.data: {{ .Values.artifactory.persistence.mountPath }}/log/filebeat
+    name: artifactory-filebeat
+    queue.spool:
+      file:
+        permissions: 0760
+    filebeat.inputs:
+    - type: log
+      enabled: true
+      close_eof: ${CLOSE:false}
+      paths:
+         - {{ .Values.artifactory.persistence.mountPath }}/log/*.log
+      fields:
+        service: "jfrt"
+        log_type: "artifactory"
+    output:
+      logstash:
+         hosts: ["{{ .Values.filebeat.logstashUrl }}"]
+  extraEnvironmentVariables: {}
+  # - name: MY_ENV_VAR
+  #   value: ""
+## RTFS deployment
+rtfs:
+  name: rtfs
+  enabled: false
+  image:
+    registry: releases-docker.jfrog.io
+    repository: jfrog/artifactory-federation
+    pullPolicy: IfNotPresent
+    tag: 1.4.18
+  jfrogUrl: ""
+  replicaCount: 1
+  internalRestPort: 8025
+  apiContext: artifactory/service/rtfs
+  persistence:
+    mountPath: "/var/opt/jfrog/federation"
+    federationProperties: {}
+  ## Apply horizontal pod auto scaling on distribution pods
+  ## Ref: https://kubernetes.io/docs/tasks/run-application/horizontal-pod-autoscale/
+  autoscaling:
+    enabled: false
+    minReplicas: 1
+    maxReplicas: 3
+    targetCPUUtilizationPercentage: 70
+    metrics: |
+      # - type: Resource
+      #   resource:
+      #     name: memory
+      #     target:
+      #       type: Utilization
+      #       averageUtilization: 75  # Target memory usage is 75% of the allocated memory per pod
+  ## @param federationProperties Configuration to be added to the config map, overriding Spring configuration.
+  ## @param customFederationPropertiesConfig Specifies the name of a custom configMap to use instead of the default one.
+  ## The name of the custom configMap will be initialized from the value of customFederationPropertiesConfig.
+  #  customFederationPropertiesConfig:
+  javaOpts: ""
+  service:
+    type: ClusterIP
+    restPort: 8025
+    grpcPort: 8026
+    ## @param service.loadBalancerSourceRanges Address(es) that are allowed when service is `LoadBalancer`
+    ## https://kubernetes.io/docs/tasks/access-application-cluster/configure-cloud-provider-firewall/#restrict-access-for-loadbalancer-service
+    ## e.g:
+    ## loadBalancerSourceRanges:
+    ## - 10.10.10.0/24
+    ##
+    loadBalancerSourceRanges: []
+    ## @param service.externalIPs Set the ExternalIPs
+    ##
+    externalIPs: []
+    ## @param service.externalTrafficPolicy Enable client source IP preservation
+    ## ref https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip
+    ##
+    externalTrafficPolicy: Cluster
+    ## @param service.loadBalancerIP Set the LoadBalancerIP
+    ##
+    loadBalancerIP: ""
+    ## @param service.labels Service labels. Evaluated as a template
+    labels: {}
+    ## @param service.annotations Service annotations. Evaluated as a template
+    ## Example:
+    ## annotations:
+    ##   service.beta.kubernetes.io/aws-load-balancer-internal: 0.0.0.0/0
+    annotations: {}
+  livenessProbe:
+    enabled: true
+    config: |
+      httpGet:
+        path: /{{ .Values.rtfs.apiContext }}/api/v1/system/liveness
+        port: {{ .Values.rtfs.internalRestPort }}
+        scheme: HTTP
+      initialDelaySeconds: 10
+      periodSeconds: 10
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      failureThreshold: 5
+      successThreshold: 1
+  readinessProbe:
+    enabled: true
+    config: |
+      httpGet:
+        path: /router/api/v1/system/readiness
+        port: {{ .Values.router.internalPort }}
+        scheme: HTTP
+      initialDelaySeconds: 10
+      periodSeconds: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      failureThreshold: 30
+      successThreshold: 1
+  startupProbe:
+    enabled: true
+    config: |
+      httpGet:
+        path: /{{ .Values.rtfs.apiContext }}/api/v1/system/readiness
+        port: {{ .Values.rtfs.internalRestPort }}
+        scheme: HTTP
+      initialDelaySeconds: 120
+      periodSeconds: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      failureThreshold: 30
+      successThreshold: 1
+  resources: {}
+  # We usually recommend not to specify default resources and to leave this as a conscious
+  # choice for the user. This also increases chances charts run on environments with little
+  # resources, such as Minikube. If you do want to specify resources, uncomment the following
+  # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
+  # limits:
+  #   cpu: 100m
+  #   memory: 128Mi
+  # requests:
+  #   cpu: 100m
+  #   memory: 128Mi
+
+  # Add lifecycle hooks for observability container
+  lifecycle: {}
+  # postStart:
+  #   exec:
+  #     command: ["/bin/sh", "-c", "echo Hello from the postStart handler"]
+  # preStop:
+  #   exec:
+  #     command: ["/bin/sh","-c","echo Hello from the preStop handler"]
+
+  annotations: {}
+  deployment:
+    annotations: {}
+    labels: {}
+  podSecurityContext:
+    enabled: true
+    runAsNonRoot: true
+    runAsUser: 1030
+    runAsGroup: 1030
+    fsGroup: 1030
+  containerSecurityContext:
+    enabled: true
+    runAsNonRoot: true
+    allowPrivilegeEscalation: false
+    seccompProfile:
+      type: RuntimeDefault
+    capabilities:
+      drop:
+        - ALL
+  nodeSelector: {}
+  tolerations: []
+  affinity: {}
+  customInitContainers: ""
+  customSidecarContainers: ""
+  customVolumes: ""
+  customVolumeMounts: ""
+  ## @param extraEnvironmentVariables that can be used to tune PDN Server to your needs.
+  ## Example:
+  ## extraEnvironmentVariables:
+  ##   - name: MY_ENV_VAR
+  ##     value: ""
+  extraEnvironmentVariables: []
+## Allows to add additional kubernetes resources
+## Use --- as a separator between multiple resources
+## For an example, refer - https://github.com/jfrog/log-analytics-prometheus/blob/master/helm/artifactory-ha-values.yaml
+additionalResources: ""
+## Adding entries to a Pod's /etc/hosts file
+## For an example, refer - https://kubernetes.io/docs/concepts/services-networking/add-entries-to-pod-etc-hosts-with-host-aliases
+hostAliases: []
+# - ip: "127.0.0.1"
+#   hostnames:
+#     - "foo.local"
+#     - "bar.local"
+# - ip: "10.1.2.3"
+#   hostnames:
+#     - "foo.remote"
+#     - "bar.remote"
+## Toggling this feature is seamless and requires helm upgrade
+## will enable all microservices to run in different containers in a single pod (by default it is true)
+splitServicesToContainers: true
+## Specify common probes parameters
+probes:
+  timeoutSeconds: 5
diff --git a/charts/jfrog/artifactory-ha/107.104.9/Chart.yaml b/charts/jfrog/artifactory-ha/107.104.9/Chart.yaml
index 5bb11cb76a..9b4f72dd82 100644
--- a/charts/jfrog/artifactory-ha/107.104.9/Chart.yaml
+++ b/charts/jfrog/artifactory-ha/107.104.9/Chart.yaml
@@ -2,7 +2,6 @@ annotations:
   artifactoryServiceVersion: 7.104.17
   catalog.cattle.io/certified: partner
   catalog.cattle.io/display-name: JFrog Artifactory HA
-  catalog.cattle.io/featured: "2"
   catalog.cattle.io/kube-version: '>= 1.19.0-0'
   catalog.cattle.io/release-name: artifactory-ha
   metadataVersion: 7.118.2
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/CHANGELOG.md b/charts/jfrog/artifactory-jcr/107.104.10/CHANGELOG.md
new file mode 100644
index 0000000000..a4fccae84b
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/CHANGELOG.md
@@ -0,0 +1,213 @@
+# JFrog Container Registry Chart Changelog
+All changes to this chart will be documented in this file.
+
+## [107.104.10] - Feb 14, 2024
+* Fixed an issue by disabling a pro-only service (Onemodel)
+* Updated federation key to rtfs in cpp, jcr and oss chart
+
+## [107.103.0] - Dec 5, 2024
+* Removed obsolete values [GH-1932](https://github.com/jfrog/charts/pull/1932)
+
+## [107.81.0] - Feb 20, 2024
+* Updated `artifactory.installerInfo` content
+
+## [107.80.0] - Feb 1, 2024
+* Updated README.md to create a namespace using `--create-namespace` as part of helm install
+
+## [107.74.0] - Nov 23, 2023
+* **IMPORTANT**
+* Added min kubeVersion ">= 1.19.0-0" in chart.yaml
+
+## [107.66.0] - Jul 20, 2023
+* Disabled federation services when splitServicesToContainers=true
+
+## [107.45.0] - Aug 25, 2022
+* Included event service as mandatory and remove the flag from values.yaml
+
+## [107.41.0] - Jul 22, 2022
+* Bumping chart version to align with app version
+* Disabled jfconnect and event services when splitServicesToContainers=true
+
+## [107.19.4] - May 27, 2021
+* Bumping chart version to align with app version
+* Update dependency Artifactory chart version to 107.19.4
+
+## [4.0.0] - Apr 22, 2021
+* **Breaking change:**
+* Increased default postgresql persistence  size to `200Gi` 
+* Update postgresql tag version to `13.2.0-debian-10-r55`
+* Update postgresql chart version to `10.3.18` in chart.yaml - [10.x Upgrade Notes](https://github.com/bitnami/charts/tree/master/bitnami/postgresql#to-1000)
+* If this is a new deployment or you already use an external database (`postgresql.enabled=false`), these changes **do not affect you**!
+* If this is an upgrade and you are using the default PostgreSQL (`postgresql.enabled=true`), you need to pass previous 9.x/10.x/12.x's postgresql.image.tag, previous postgresql.persistence.size and databaseUpgradeReady=true
+* **IMPORTANT**
+* This chart is only helm v3 compatible.
+* Update dependency Artifactory chart version to 12.0.0 (Artifactory 7.18.3)
+
+## [3.8.0] - Apr 5, 2021
+* **IMPORTANT**
+* Added `charts.jfrog.io` as default JFrog Helm repository
+* Update dependency Artifactory chart version to 11.13.0 (Artifactory 7.17.5)
+
+## [3.7.0] - Mar 31, 2021
+* Update dependency Artifactory chart version to 11.12.2 (Artifactory 7.17.4)
+
+## [3.6.0] - Mar 15, 2021
+* Update dependency Artifactory chart version to 11.10.0 (Artifactory 7.16.3)
+
+## [3.5.1] - Mar 03, 2021
+* Update dependency Artifactory chart version to 11.9.3 (Artifactory 7.15.4)
+
+## [3.5.0] - Feb 18, 2021
+* Update dependency Artifactory chart version to 11.9.0 (Artifactory 7.15.3)
+
+## [3.4.1] - Feb 08, 2021
+* Update dependency Artifactory chart version to 11.8.0 (Artifactory 7.12.8)
+
+## [3.4.0] - Jan 4, 2020
+* Update dependency Artifactory chart version to 11.7.4 (Artifactory 7.12.5)
+
+## [3.3.1] - Dec 1, 2020
+* Update dependency Artifactory chart version to 11.5.4 (Artifactory 7.11.5)
+
+## [3.3.0] - Nov 23, 2020
+* Update dependency Artifactory chart version to 11.5.2 (Artifactory 7.11.2)
+
+## [3.2.2] - Nov 9, 2020
+* Update dependency Artifactory chart version to 11.4.5 (Artifactory 7.10.6)
+
+## [3.2.1] - Nov 2, 2020
+* Update dependency Artifactory chart version to 11.4.4 (Artifactory 7.10.5)
+
+## [3.2.0] - Oct 19, 2020
+* Update dependency Artifactory chart version to 11.4.0 (Artifactory 7.10.2)
+
+## [3.1.0] - Sep 30, 2020
+* Update dependency Artifactory chart version to 11.1.0 (Artifactory 7.9.0)
+
+## [3.0.2] - Sep 23, 2020
+* Updates readme
+
+## [3.0.1] - Sep 15, 2020
+* Update dependency Artifactory chart version to 11.0.1 (Artifactory 7.7.8)
+
+## [3.0.0] - Sep 14, 2020
+* **Breaking change:** Added `image.registry` and changed `image.version` to `image.tag` for docker images
+* Update dependency Artifactory chart version to 11.0.0 (Artifactory 7.7.3)
+
+## [2.5.1] - Jul 29, 2020
+* Update dependency Artifactory chart version to 10.0.12 (Artifactory 7.6.3)
+
+## [2.5.0] - Jul 10, 2020
+* Update dependency Artifactory chart version to 10.0.3 (Artifactory 7.6.2)
+* **IMPORTANT**
+* Added ChartCenter Helm repository in README
+
+## [2.4.0] - Jun 30, 2020
+* Update dependency Artifactory chart version to 9.6.0 (Artifactory 7.6.1)
+
+## [2.3.1] - Jun 12, 2020
+* Update dependency Artifactory chart version to 9.5.2 (Artifactory 7.5.7)
+
+## [2.3.0] - Jun 1, 2020
+* Update dependency Artifactory chart version to 9.5.0 (Artifactory 7.5.5)
+
+## [2.2.5] - May 27, 2020
+* Update dependency Artifactory chart version to 9.4.9 (Artifactory 7.4.3)
+
+## [2.2.4] - May 20, 2020
+* Update dependency Artifactory chart version to 9.4.6 (Artifactory 7.4.3)
+
+## [2.2.3] - May 07, 2020
+* Update dependency Artifactory chart version to 9.4.5 (Artifactory 7.4.3)
+* Add `installerInfo` string format
+
+## [2.2.2] - Apr 28, 2020
+* Update dependency Artifactory chart version to 9.4.4 (Artifactory 7.4.3)
+
+## [2.2.1] - Apr 27, 2020
+* Update dependency Artifactory chart version to 9.4.3 (Artifactory 7.4.1)
+
+## [2.2.0] - Apr 14, 2020
+* Update dependency Artifactory chart version to 9.4.0 (Artifactory 7.4.1)
+
+## [2.2.0] - Apr 14, 2020
+* Update dependency Artifactory chart version to 9.4.0 (Artifactory 7.4.1)
+
+## [2.1.6] - Apr 13, 2020
+* Update dependency Artifactory chart version to 9.3.1 (Artifactory 7.3.2)
+
+## [2.1.5] - Apr 8, 2020
+* Update dependency Artifactory chart version to 9.2.8 (Artifactory 7.3.2)
+
+## [2.1.4] - Mar 30, 2020
+* Update dependency Artifactory chart version to 9.2.3 (Artifactory 7.3.2)
+
+## [2.1.3] - Mar 30, 2020
+* Update dependency Artifactory chart version to 9.2.1 (Artifactory 7.3.2)
+
+## [2.1.2] - Mar 26, 2020
+* Update dependency Artifactory chart version to 9.1.5 (Artifactory 7.3.2)
+
+## [2.1.1] - Mar 25, 2020
+* Update dependency Artifactory chart version to 9.1.4 (Artifactory 7.3.2)
+
+## [2.1.0] - Mar 23, 2020
+* Update dependency Artifactory chart version to 9.1.3 (Artifactory 7.3.2)
+
+## [2.0.13] - Mar 19, 2020
+* Update dependency Artifactory chart version to 9.0.28 (Artifactory 7.2.1)
+
+## [2.0.12] - Mar 17, 2020
+* Update dependency Artifactory chart version to 9.0.26 (Artifactory 7.2.1)
+
+## [2.0.11] - Mar 11, 2020
+* Unified charts public release
+
+## [2.0.10] - Mar 8, 2020
+* Update dependency Artifactory chart version to 9.0.20 (Artifactory 7.2.1)
+
+## [2.0.9] - Feb 26, 2020
+* Update dependency Artifactory chart version to 9.0.15 (Artifactory 7.2.1)
+
+## [2.0.0] - Feb 12, 2020
+* Update dependency Artifactory chart version to 9.0.0 (Artifactory 7.0.0)
+
+## [1.1.0] - Jan 19, 2020
+* Update dependency Artifactory chart version to 8.4.1 (Artifactory 6.17.0)
+
+## [1.1.1] - Feb 3, 2020
+* Update dependency Artifactory chart version to 8.4.4
+
+## [1.1.0] - Jan 19, 2020
+* Update dependency Artifactory chart version to 8.4.1 (Artifactory 6.17.0)
+
+## [1.0.1] - Dec 31, 2019
+* Update dependency Artifactory chart version to 8.3.5
+
+## [1.0.0] - Dec 23, 2019
+* Update dependency Artifactory chart version to 8.3.3
+
+## [0.2.1] - Dec 12, 2019
+* Update dependency Artifactory chart version to 8.3.1
+
+## [0.2.0] - Dec 1, 2019
+* Updated Artifactory version to 6.16.0
+
+## [0.1.5] - Nov 28, 2019
+* Update dependency Artifactory chart version to 8.2.6
+
+## [0.1.4] - Nov 20, 2019
+* Update Readme
+
+## [0.1.3] - Nov 20, 2019
+* Fix JCR logo url
+* Update dependency to Artifactory 8.2.2 chart
+
+## [0.1.2] - Nov 20, 2019
+* Update JCR logo
+
+## [0.1.1] - Nov 20, 2019
+* Add `appVersion` to Chart.yaml
+
+## [0.1.0] - Nov 20, 2019
+* Initial release of the JFrog Container Registry helm chart
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/Chart.yaml b/charts/jfrog/artifactory-jcr/107.104.10/Chart.yaml
new file mode 100644
index 0000000000..ea2353180f
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/Chart.yaml
@@ -0,0 +1,30 @@
+annotations:
+  catalog.cattle.io/certified: partner
+  catalog.cattle.io/display-name: JFrog Container Registry
+  catalog.cattle.io/kube-version: '>= 1.19.0-0'
+  catalog.cattle.io/release-name: artifactory-jcr
+apiVersion: v2
+appVersion: 7.104.10
+dependencies:
+- name: artifactory
+  repository: file://charts/artifactory
+  version: 107.104.10
+description: JFrog Container Registry
+home: https://jfrog.com/container-registry/
+icon: file://assets/icons/artifactory-jcr.png
+keywords:
+- artifactory
+- jfrog
+- container
+- registry
+- devops
+- jfrog-container-registry
+kubeVersion: '>= 1.19.0-0'
+maintainers:
+- email: helm@jfrog.com
+  name: Chart Maintainers at JFrog
+name: artifactory-jcr
+sources:
+- https://github.com/jfrog/charts
+type: application
+version: 107.104.10
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/LICENSE b/charts/jfrog/artifactory-jcr/107.104.10/LICENSE
new file mode 100644
index 0000000000..8dada3edaf
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/LICENSE
@@ -0,0 +1,201 @@
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   APPENDIX: How to apply the Apache License to your work.
+
+      To apply the Apache License to your work, attach the following
+      boilerplate notice, with the fields enclosed by brackets "{}"
+      replaced with your own identifying information. (Don't include
+      the brackets!)  The text should be enclosed in the appropriate
+      comment syntax for the file format. We also recommend that a
+      file or class name and description of purpose be included on the
+      same "printed page" as the copyright notice for easier
+      identification within third-party archives.
+
+   Copyright {yyyy} {name of copyright owner}
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/README.md b/charts/jfrog/artifactory-jcr/107.104.10/README.md
new file mode 100644
index 0000000000..c0051e61d1
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/README.md
@@ -0,0 +1,125 @@
+# JFrog Container Registry Helm Chart
+
+JFrog Container Registry is a free Artifactory edition with Docker and Helm repositories support.
+
+**Heads up: Our Helm Chart docs are moving to our main documentation site. For Artifactory installers, see [Installing Artifactory](https://www.jfrog.com/confluence/display/JFROG/Installing+Artifactory).**
+
+## Prerequisites Details
+
+* Kubernetes 1.19+
+
+## Chart Details
+This chart will do the following:
+
+* Deploy JFrog Container Registry
+* Deploy an optional Nginx server
+* Deploy an optional PostgreSQL Database
+* Optionally expose Artifactory with Ingress [Ingress documentation](https://kubernetes.io/docs/concepts/services-networking/ingress/)
+
+## Installing the Chart
+
+### Add JFrog Helm repository
+
+Before installing JFrog helm charts, you need to add the [JFrog helm repository](https://charts.jfrog.io) to your helm client.
+
+```bash
+helm repo add jfrog https://charts.jfrog.io
+helm repo update
+```
+
+### Install Chart
+To install the chart with the release name `jfrog-container-registry`:
+```bash
+helm upgrade --install jfrog-container-registry --set artifactory.postgresql.postgresqlPassword=<postgres_password> jfrog/artifactory-jcr --namespace artifactory-jcr --create-namespace
+```
+
+### Accessing JFrog Container Registry
+**NOTE:** If using artifactory or nginx service type `LoadBalancer`, it might take a few minutes for JFrog Container Registry's public IP to become available.
+
+### Updating JFrog Container Registry
+Once you have a new chart version, you can upgrade your deployment with
+```bash
+helm upgrade jfrog-container-registry jfrog/artifactory-jcr --namespace artifactory-jcr --create-namespace
+```
+
+### Special Upgrade Notes
+#### Artifactory upgrade from 6.x to 7.x (App Version)
+Arifactory 6.x to 7.x upgrade requires a one time migration process. This is done automatically on pod startup if needed.
+It's possible to configure the migration timeout with the following configuration in extreme cases. The provided default should be more than enough for completion of the migration.
+```yaml
+artifactory:
+  artifactory:
+    # Migration support from 6.x to 7.x
+    migration:
+      enabled: true
+      timeoutSeconds: 3600
+```
+* Note: If you are upgrading from 1.x to 3.x and above chart versions, please delete the existing statefulset of postgresql before upgrading the chart due to breaking changes in postgresql subchart.
+```bash
+kubectl delete statefulsets <OLD_RELEASE_NAME>-postgresql
+```
+* For more details about artifactory chart upgrades refer [here](https://github.com/jfrog/charts/blob/master/stable/artifactory/UPGRADE_NOTES.md)
+
+### Deleting JFrog Container Registry
+
+```bash                                                                                                                                                                 
+helm delete jfrog-container-registry --namespace artifactory-jcr                                                                                                                       
+```  
+
+This will delete your JFrog Container Registry deployment.<br>
+**NOTE:** You might have left behind persistent volumes. You should explicitly delete them with
+```bash
+kubectl delete pvc ...
+kubectl delete pv ...
+```
+
+## Database
+The JFrog Container Registry chart comes with PostgreSQL deployed by default.<br>
+For details on the PostgreSQL configuration or customising the database, Look at the options described in the [Artifactory helm chart](https://github.com/jfrog/charts/tree/master/stable/artifactory).
+
+### Ingress and TLS
+To get Helm to create an ingress object with a hostname, add these two lines to your Helm command:
+```bash
+helm upgrade --install jfrog-container-registry \
+  --set artifactory.nginx.enabled=false \
+  --set artifactory.ingress.enabled=true \
+  --set artifactory.ingress.hosts[0]="artifactory.company.com" \
+  --set artifactory.artifactory.service.type=NodePort \
+  jfrog/artifactory-jcr --namespace artifactory-jcr --create-namespace
+```
+
+To manually configure TLS, first create/retrieve a key & certificate pair for the address(es) you wish to protect. Then create a TLS secret in the namespace:
+
+```bash
+kubectl create secret tls artifactory-tls --cert=path/to/tls.cert --key=path/to/tls.key
+```
+
+Include the secret's name, along with the desired hostnames, in the Artifactory Ingress TLS section of your custom `values.yaml` file:
+
+```yaml
+artifactory:
+  artifactory:
+    ingress:
+      ## If true, Artifactory Ingress will be created
+      ##
+      enabled: true
+
+      ## Artifactory Ingress hostnames
+      ## Must be provided if Ingress is enabled
+      ##
+      hosts:
+        - jfrog-container-registry.domain.com
+      annotations:
+        kubernetes.io/tls-acme: "true"
+      ## Artifactory Ingress TLS configuration
+      ## Secrets must be manually created in the namespace
+      ##
+      tls:
+        - secretName: artifactory-tls
+          hosts:
+            - jfrog-container-registry.domain.com
+```
+
+## Useful links
+https://www.jfrog.com
+https://www.jfrog.com/confluence/
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/app-readme.md b/charts/jfrog/artifactory-jcr/107.104.10/app-readme.md
new file mode 100644
index 0000000000..9d9b7d85fc
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/app-readme.md
@@ -0,0 +1,18 @@
+# JFrog Container Registry Helm Chart
+
+Universal Repository Manager supporting all major packaging formats, build tools and CI servers.
+
+## Chart Details
+This chart will do the following:
+
+* Deploy JFrog Container Registry
+* Deploy an optional Nginx server
+* Optionally expose Artifactory with Ingress [Ingress documentation](https://kubernetes.io/docs/concepts/services-networking/ingress/)
+
+
+## Useful links
+Blog: [Herd Trust Into Your Rancher Labs Multi-Cloud Strategy with Artifactory](https://jfrog.com/blog/herd-trust-into-your-rancher-labs-multi-cloud-strategy-with-artifactory/)
+
+## Activate Your Artifactory Instance 
+Don't have a license? Please send an email to [rancher-jfrog-licenses@jfrog.com](mailto:rancher-jfrog-licenses@jfrog.com) to get it.
+
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/.helmignore b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/.helmignore
new file mode 100644
index 0000000000..b6e97f07fb
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/.helmignore
@@ -0,0 +1,24 @@
+# Patterns to ignore when building packages.
+# This supports shell glob matching, relative path matching, and
+# negation (prefixed with !). Only one pattern per line.
+.DS_Store
+# Common VCS dirs
+.git/
+.gitignore
+.bzr/
+.bzrignore
+.hg/
+.hgignore
+.svn/
+# Common backup files
+*.swp
+*.bak
+*.tmp
+*~
+# Various IDEs
+.project
+.idea/
+*.tmproj
+OWNERS
+
+tests/
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/CHANGELOG.md b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/CHANGELOG.md
new file mode 100644
index 0000000000..4f9f83626e
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/CHANGELOG.md
@@ -0,0 +1,1411 @@
+# JFrog Artifactory Chart Changelog
+All changes to this chart will be documented in this file.
+
+## [107.104.10] - Feb 17, 2025
+* Added new RTFS service
+* Added new Topology service
+* Added new Onemodel service
+* Added `artifactory.servicePrependReleaseName` support to prepend release name to fix mismatch between statefulSet and service
+* Added customVolumeMounts support for frontend,event,evidence,jfconnect,topology,observability containers
+* Added ingress and nginx routing support for rtfs service context
+* Added recommended sizing extraEnvironmentVariables for access container
+* Added default extra javaOpts support in system yaml for topology
+* Modified the RTFS chart and the topology probe values
+* Fixing secret based annotations for RTFS deployment
+* Fixed `shared` block in system.yaml to include all properties
+* Fixed RTFS jfrogUrl issue for platform chart
+* Fixed disabling onemodel using `onemodel.enabled=false`
+* Added a condition to enable onemodel only on pro chart
+* Removed unwanted database support from rtfs
+* Added hpa support for RTFS service
+
+## [107.102.0] - Nov 26, 2024
+* Remove the Xms and Xmx with InitialRAMPercentage and MaxRAMPercentage if they are available in extra_java_options
+
+## [107.98.0] - Nov 06, 2024
+* Add support for `extraEnvironmentVariables` on filebeat Sidecar [GH-1377](https://github.com/jfrog/charts/pull/1377)
+* Support for SSL offload HTTPS proto override in Nginx service (ClusterIP, LoadBalancer) layer. Introduced `nginx.service.ssloffloadForceHttps` field with boolean type. [GH-1906](https://github.com/jfrog/charts/pull/1906)
+* Enable Access workers integration when artifactory.worker.enabled is true
+* Added `signedUrlExpirySeconds` option to artifactory.persistence.type of `google-storage`, `google-storage-v2`, and `google-storage-v2-direct` [GH-1858](https://github.com/jfrog/charts/pull/1858)
+* Added support to bootstrap jfconnect custom certs to jfconnect trusted directory
+* Fixed the type of `.Values.artifactory.persistence.googleStorage.signedUrlExpirySeconds` in binarystore.xml from boolean to integer
+* Added support for modifying `pathType` in ingress
+
+## [107.96.0] - Sep 10, 2024
+* Merged Artifactory sizing templates to a single file per size
+
+## [107.94.0] - Aug 14, 2024
+* Fixed #Expose rtfs port only when it is enabled
+
+## [107.93.0] - Aug 9, 2024
+* Added support for worker via `artifactory.worker.enabled` flag
+* Fixed creation of duplicate objects in statefulSet
+
+## [107.92.0] - July 31, 2024
+* Updating the example link for downloading the DB driver
+* Adding dedicated ingress and service path for GRPC protocol
+
+## [107.91.0] - July 18, 2024
+* Remove X-JFrog-Override-Base-Url port when using default `443/80` ports
+
+## [107.90.0] - July 18, 2024
+* Fixed #adding colon in image registry which breaks deployment [GH-1892](https://github.com/jfrog/charts/pull/1892)
+* Added new `nginx.hosts` to use Nginx server_name directive instead of `ingress.hosts`
+* Added a deprecation notice of ingress.hosts when `ngnix.enabled` is true
+* Added new evidence service
+* Corrected database connection values based on sizing
+* **IMPORTANT**
+* Separate access from artifactory tomcat to run on its own dedicated tomcat
+  * With this change access will be running in its own dedicated container
+  * This will give the ability to control resources and java options specific to access
+    Can be done by passing the following,
+    `access.javaOpts.other`
+    `access.resources`
+    `access.extraEnvironmentVariables`
+* Added Binary Provider recommendations
+
+## [107.89.0] - June 7, 2024
+* Fix the indentation of the commented-out sections in the values.yaml file
+* Fixed sizing values by removing `JF_SHARED_NODE_HAENABLED` in xsmall/small configurations
+
+## [107.88.0] - May 29, 2024
+* **IMPORTANT**
+* Refactored `nginx.artifactoryConf` and `nginx.mainConf` configuration (moved to files/nginx-artifactory-conf.yaml  and files/nginx-main-conf.yaml instead of keys in values.yaml)
+
+## [107.87.0] - May 29, 2024
+* Renamed `.Values.artifactory.openMetrics` to `.Values.artifactory.metrics`
+
+## [107.85.0] - May 29, 2024
+* Changed `migration.enabled` to false by default. For 6.x to 7.x migration, this flag needs to be set to `true`
+
+## [107.84.0] - May 29, 2024
+* Added image section for `initContainers` instead of `initContainerImage`
+* Renamed `router.image.imagePullPolicy` to `router.image.pullPolicy`
+* Removed image section for `loggers`
+* Added support for `global.verisons.initContainers` to override `initContainers.image.tag`
+* Fixed an issue with extraSystemYaml merge
+* **IMPORTANT**
+* Renamed `artifactory.setSecurityContext` to `artifactory.podSecurityContext` 
+* Renamed `artifactory.uid` to `artifactory.podSecurityContext.runAsUser`
+* Renamed `artifactory.gid` to `artifactory.podSecurityContext.runAsGroup` and `artifactory.podSecurityContext.fsGroup`
+* Renamed `artifactory.fsGroupChangePolicy` to `artifactory.podSecurityContext.fsGroupChangePolicy`
+* Renamed `artifactory.seLinuxOptions` to `artifactory.podSecurityContext.seLinuxOptions`
+* Added flag `allowNonPostgresql` defaults to false
+* Update postgresql tag version to `15.6.0-debian-12-r5`
+* Added a check if `initContainerImage` exists
+* Fixed an issue to generate unified secret to support artifactory fullname [GH-1882](https://github.com/jfrog/charts/issues/1882)
+* Fixed an issue template render on loggers [GH-1883](https://github.com/jfrog/charts/issues/1883)
+* Fixed resource constraints for "setup" initContainer of nginx deployment [GH-962] (https://github.com/jfrog/charts/issues/962)
+* Added .Values.artifactory.unifiedSecretPrependReleaseName` for unified secret to prepend release name
+* Fixed maxCacheSize and cacheProviderDir mix up under azure-blob-storage-v2-direct template in binarystore.xml
+
+## [107.82.0] - Mar 04, 2024
+* Added `disableRouterBypass` flag as experimental feature, to disable the artifactoryPath /artifactory/ and route all traffic through the Router.
+* Removed Replicator service
+
+## [107.81.0] - Feb 20, 2024
+* **IMPORTANT**
+* Refactored systemYaml configuration (moved to files/system.yaml instead of key in values.yaml)
+* Added ability to provide `extraSystemYaml` configuration in values.yaml which will merge with the existing system yaml when `systemYamlOverride` is not given [GH-1848](https://github.com/jfrog/charts/pull/1848)
+* Added option to modify the new cache configs, maxFileSizeLimit and skipDuringUpload
+* Added IPV4/IPV6 Dualstack flag support for Artifactory and nginx service
+* Added `singleStackIPv6Cluster` flag, which manages the Nginx configuration to enable listening on IPv6 and proxying.
+* Fixing broken link for creating additional kubernetes resources. Refer [here](https://github.com/jfrog/log-analytics-prometheus/blob/master/helm/artifactory-values.yaml)
+* Refactored installerInfo configuration (moved to files/installer-info.json instead of key in values.yaml)
+
+## [107.80.0] - Feb 20, 2024
+* Updated README.md to create a namespace using `--create-namespace` as part of helm install
+
+## [107.79.0] - Feb 20, 2024
+* **IMPORTANT**
+* Added `unifiedSecretInstallation` flag which enables single unified secret holding all internal (chart) secrets to `true` by default
+* Added support for azure-blob-storage-v2-direct config
+* Added option to set Nginx to write access_log to container STDOUT
+* **Important change:**
+* Update postgresql tag version to `15.2.0-debian-11-r23`
+* If this is a new deployment or you already use an external database (`postgresql.enabled=false`), these changes **do not affect you**!
+* If this is an upgrade and you are using the default bundles PostgreSQL (`postgresql.enabled=true`), you need to pass previous 9.x/10.x/12.x/13.x's postgresql.image.tag, previous postgresql.persistence.size and databaseUpgradeReady=true
+
+## [107.77.0] - April 22, 2024
+* Removed integration service
+* Added recommended postgresql sizing configurations under sizing directory
+* Updated artifactory-federation (probes, port, embedded mode)
+* Fixed - Removed duplicate keys of the sizing yaml file
+* Fixing broken nginx port [GH-1860](https://github.com/jfrog/charts/issues/1860)
+* Added nginx.customCommand to use custom commands for the nginx container
+
+## [107.76.0] - Dec 13, 2023
+* Added connectionTimeout and socketTimeout paramaters under AWSS3 binarystore section
+* Reduced nginx startupProbe initialDelaySeconds
+
+## [107.74.0] - Nov 30, 2023
+* Added recommended sizing configurations under sizing directory, please refer [here](README.md/#apply-sizing-configurations-to-the-chart)
+* **IMPORTANT**
+* Added min kubeVersion ">= 1.19.0-0" in chart.yaml
+
+## [107.70.0] - Nov 30, 2023
+* Fixed - StatefulSet pod annotations changed from range to toYaml [GH-1828](https://github.com/jfrog/charts/issues/1828)
+* Fixed - Invalid format for awsS3V3 `multiPartLimit,multipartElementSize` in binarystore.xml.
+* Fixed - SecurityContext with runAsGroup in artifactory [GH-1838](https://github.com/jfrog/charts/issues/1838)
+* Added support for custom labels in the Nginx pods [GH-1836](https://github.com/jfrog/charts/pull/1836)
+* Added podSecurityContext and containerSecurityContext for nginx
+* Added support for nginx on openshift, set `podSecurityContext` and `containerSecurityContext` to false
+* Renamed nginx internalPort 80,443 to 8080,8443 to support openshift
+
+## [107.69.0] - Sep 18, 2023
+* Adjust rtfs context
+* Fixed - Metadata service does not respect customVolumeMounts for DB CAs [GH-1815](https://github.com/jfrog/charts/issues/1815)
+
+## [107.68.8] - Sep 18, 2023
+* Reverted - Enabled `unifiedSecretInstallation` by default [GH-1819](https://github.com/jfrog/charts/issues/1819)
+* Removed openshift condition check from NOTES.txt
+
+## [107.68.7] - Aug 28, 2023
+* Enabled `unifiedSecretInstallation` by default
+
+## [107.67.0] - Aug 28, 2023
+* Add 'extraJavaOpts' and 'port' values to federation service
+
+## [107.66.0] - Aug 28, 2023
+* Added federation service container in artifactory
+* Add rtfs service to ingress in artifactory
+
+## [107.64.0] - Aug 28, 2023
+* Added support to configure event.webhooks within generated system.yaml
+* Fixed an issue to generate ssl certificate should support artifactory fullname
+* Added binarystore.xml template to persistence storage type `nfs`. The default Filestore location configured according to artifactory.persistence.nfs.dataDir.
+* Added 'multiPartLimit' and 'multipartElementSize' parameters to awsS3V3 binary providers.
+* Increased default Artifactory Tomcat acceptCount config to 400
+* Fixed Illegal Strict-Transport-Security header in nginx config
+
+## [107.63.0] - Aug 28, 2023
+* Added support for Openshift by adding the securityContext in container level.
+* **IMPORTANT**
+* Disable securityContext in container and pod level to deploy postgres on openshift.
+* Fixed support for fsGroup in non openshift environemnt and runAsGroup in openshift environment.
+* Fixed - Helm Template Error when using artifactory.loggers [GH-1791](https://github.com/jfrog/charts/issues/1791)
+* Removed the nginx disable condition for openshift
+* Fixed jfconnect disabling as micro-service on splitcontainers [GH-1806](https://github.com/jfrog/charts/issues/1806)
+
+## [107.62.0] - Jun 5, 2023
+* Upgraded to autoscaling/v2
+* Added support for 'port' and 'useHttp' parameters for s3-storage-v3 binary provider [GH-1767](https://github.com/jfrog/charts/issues/1767)
+
+## [107.61.0] - May 31, 2023
+* Added new binary provider `google-storage-v2-direct`
+* Added missing parameter 'enableSignedUrlRedirect' to 'googleStorage'
+
+## [107.60.0] - May 31, 2023
+* Enabled `splitServicesToContainers` to true by default
+* Updated the recommended values for small, medium and large installations to support the 'splitServicesToContainers'
+
+## [107.59.0] - May 31, 2023
+* Fixed reference of `terminationGracePeriodSeconds`
+* Added Support for Cold Artifact Storage as part of the systemYaml configuration (disabled by default)
+* Added new binary provider `s3-storage-v3-archive`
+* Fixed jfconnect disabling as micro-service on non-splitcontainers
+* Fixed wrong cache-fs provider ID of cluster-s3-storage-v3 in the binarystore.xml [GH-1772](https://github.com/jfrog/charts/issues/1772)
+
+## [107.58.0] - Mar 23, 2023
+* Updated postgresql multi-arch tag version to `13.10.0-debian-11-r14`
+* Removed obselete remove-lost-found initContainer`
+* Added env JF_SHARED_NODE_HAENABLED under frontend when running in the container split mode 
+
+## [107.57.0] - Mar 02, 2023
+* Updated initContainerImage and logger image to `ubi9/ubi-minimal:9.1.0.1793`
+
+## [107.55.0] - Jan 31, 2023
+* Updated initContainerImage and logger image to `ubi9/ubi-minimal:9.1.0.1760`
+* Adding a custom preStop to Artifactory router for allowing graceful termination to complete
+
+## [107.53.0] - Jan 20, 2023
+* Updated initContainerImage and logger image to `ubi8/ubi-minimal:8.7.1049`
+
+## [107.50.0] - Jan 20, 2023
+* Updated postgresql tag version to `13.9.0-debian-11-11`
+* Fixed an issue for capabilities check of ingress
+* Updated jfrogUrl text path in migrate.sh file
+* Added a note that from 107.46.x chart versions, `copyOnEveryStartup` is not needed for binarystore.xml, it is always copied via initContainers. For more Info, Refer [GH-1723](https://github.com/jfrog/charts/issues/1723)
+
+## [107.49.0] - Jan 16, 2023
+* Added support for setting `seLinuxOptions` in `securityContext` [GH-1699](https://github.com/jfrog/charts/pull/1699)
+* Added option to enable/disable proxy_request_buffering and proxy_buffering_off [GH-1686](https://github.com/jfrog/charts/pull/1686)
+* Updated initContainerImage and logger image to `ubi8/ubi-minimal:8.7.1049`
+
+## [107.48.0] - Oct 27, 2022
+* Updated router version to `7.51.0`
+
+## [107.47.0] - Sep 29, 2022
+* Updated initContainerImage to `ubi8/ubi-minimal:8.6-941`
+* Added support for annotations for artifactory statefulset and nginx deployment [GH-1665](https://github.com/jfrog/charts/pull/1665)
+* Updated router version to `7.49.0`
+
+## [107.46.0] - Sep 14, 2022
+* **IMPORTANT**
+* Added support for lifecycle hooks for all containers, changed `artifactory.postStartCommand` to `.Values.artifactory.lifecycle.postStart.exec.command`
+* Updated initContainerImage to `ubi8/ubi-minimal:8.6-902`
+* Update nginx configuration to allow websocket requests when using pipelines
+* Fixed an issue to allow artifactory to make direct API calls to store  instead via jfconnect service when `splitServicesToContainers=true`
+* Refactor binarystore.xml configuration (moved to `files/binarystore.xml` instead of key in values.yaml)
+* Added new binary providers `cluster-s3-storage-v3`, `s3-storage-v3-direct`, `azure-blob-storage-direct`, `google-storage-v2`
+* Deprecated (removed) `aws-s3` binary provider [JetS3t library](https://www.jfrog.com/confluence/display/JFROG/Configuring+the+Filestore#ConfiguringtheFilestore-BinaryProvider)
+* Deprecated (removed) `google-storage` binary provider and force persistence storage type `google-storage` to work with `google-storage-v2` only
+* Copy binarystore.xml in init Container to fix existing persistence on file system in clear text
+* Removed obselete `.Values.artifactory.binarystore.enabled` key
+* Removed `newProbes.enabled`, default to new probes
+* Added nginx.customCommand using inotifyd to reload nginx's config upon ssl secret or configmap changes [GH-1640](https://github.com/jfrog/charts/pull/1640)
+
+## [107.43.0] - Aug 25, 2022
+* Added flag `artifactory.replicator.ingress.enabled` to enable/disable ingress for replicator
+* Updated initContainerImage to `ubi8/ubi-minimal:8.6-854`
+* Updated router version to `7.45.0`
+* Added flag `artifactory.schedulerName` to set for the pods the value of schedulerName field [GH-1606](https://github.com/jfrog/charts/issues/1606)
+* Enabled TLS based on access or router in values.yaml
+
+## [107.42.0] - Aug 25, 2022
+* Enabled database creds secret to use from unified secret
+* Updated router version to `7.42.0`
+* Fix duplicate volumes for userPluginSecrets [GH-1650] (https://github.com/jfrog/charts/issues/1650)
+* Added support to truncate (> 63 chars) for unifiedCustomSecretVolumeName
+
+## [107.41.0] - June 27, 2022
+* Added support for nginx.terminationGracePeriodSeconds [GH-1645](https://github.com/jfrog/charts/issues/1645)
+* Use an alternate command for `find` to copy custom certificates
+* Added support for circle of trust using `circleOfTrustCertificatesSecret` secret name [GH-1623](https://github.com/jfrog/charts/pull/1623)
+
+## [107.40.0] - June 16, 2022
+* Added support for PodDisruptionBudget [GH-1618](https://github.com/jfrog/charts/issues/1618)
+* From artifactory 7.38.x, joinKey can be retrived from Admin > User Management > Settings in UI
+* Allow templating for pod annotations [GH-1634](https://github.com/jfrog/charts/pull/1634)
+* Fixed `customPersistentPodVolumeClaim` name to `customPersistentVolumeClaim`
+* Added flags to control enable/disable infra services in splitServicesToContainers
+
+## [107.39.0] - May 31, 2022
+* Fix default `artifactory.async.corePoolSize` [GH-1612](https://github.com/jfrog/charts/issues/1612)
+* Added support of nginx annotations
+* Reduce startupProbe `initialDelaySeconds`
+* Align all liveness and readiness probes failureThreshold to `5` seconds
+* Added new flag `unifiedSecretInstallation` to enables single unified secret holding all the artifactory secrets
+* Updated router version to `7.38.0`
+* Add support for NFS config with directories `haBackupDir` and `haDataDir`
+* Fixed - disable jfconnect on oss/jcr/cpp flavours [GH-1630](https://github.com/jfrog/charts/issues/1630)
+
+## [107.38.0] - May 04, 2022
+* Added support for `global.nodeSelector` to artifactory and nginx pods
+* Updated router version to `7.36.1`
+* Added support for custom global probes timeout
+* Updated frontend container command
+* Added topologySpreadConstraints to artifactory and nginx, and add lifecycle hooks to nginx [GH-1596](https://github.com/jfrog/charts/pull/1596)
+* Added support of extraEnvironmentVariables for all infra services containers
+* Enabled the consumption (jfconnect) flag by default
+* Fix jfconnect disabling on non-splitcontainers
+
+## [107.37.0] - Mar 08, 2022
+* Added support for customPorts in nginx deployment
+* Bugfix - Wrong proxy_pass configurations for /artifactory/ in the default artifactory.conf
+* Added signedUrlExpirySeconds option to artifactory.persistence.type aws-S3-V3
+* Updated router version to `7.35.0`
+* Added useInstanceCredentials,enableSignedUrlRedirect option to google-storage-v2
+* Changed dependency charts repo to `charts.jfrog.io`
+
+## [107.36.0] - Mar 03, 2022
+* Remove pdn tracker which starts replicator service
+* Added silent option for curl probes
+* Added readiness health check for the artifactory container for k8s version < 1.20
+* Fix property file migration issue to system.yaml 6.x to 7.x
+
+## [107.35.0] - Feb 08, 2022
+* Updated router version to `7.32.1`
+
+## [107.33.0] - Jan 11, 2022
+* Add more user friendly support for anti-affinity
+* Pod anti-affinity is now enabled by default (soft rule)
+* Readme fixes
+* Added support for setting `fsGroupChangePolicy`
+* Added nginx customInitContainers, customVolumes, customSidecarContainers [GH-1565](https://github.com/jfrog/charts/pull/1565)
+* Updated router version to `7.30.0`
+
+## [107.32.0] - Dec 22, 2021
+* Updated logger image to `jfrog/ubi-minimal:8.5-204`
+* Added default `8091` as `artifactory.tomcat.maintenanceConnector.port` for probes check
+* Refactored probes to replace httpGet probes with basic exec + curl
+* Refactored `database-creds` secret to create only when database values are passed
+* Added new endpoints for probes `/artifactory/api/v1/system/liveness` and `/artifactory/api/v1/system/readiness`
+* Enabled `newProbes:true` by default to use these endpoints
+* Fix filebeat sidecar spool file permissions
+* Updated filebeat sidecar container to `7.16.2`
+
+## [107.31.0] - Dec 17, 2021
+* Added support for HorizontalPodAutoscaler apiVersion `autoscaling/v2beta2`
+* Remove integration service feature flag to make it mandatory service
+* Update postgresql tag version to `13.4.0-debian-10-r39`
+* Fixed `artifactory.resources` indentation in `migration-artifactory` init container [GH-1562](https://github.com/jfrog/charts/issues/1562)
+* Refactored `router.requiredServiceTypes` to support platform chart
+
+## [107.30.0] - Nov 30, 2021
+* Fixed incorrect permission for filebeat.yaml
+* Updated healthcheck (liveness/readiness) api for integration service
+* Disable readiness health check for the artifactory container when running in the container split mode
+* Ability to start replicator on enabling pdn tracker
+
+## [107.29.0] - Nov 26, 2021
+* Added integration service container in artifactory
+* Add support for Ingress Class Name in Ingress Spec [GH-1516](https://github.com/jfrog/charts/pull/1516)
+* Fixed chart values to use curl instead of wget [GH-1529](https://github.com/jfrog/charts/issues/1529)
+* Updated nginx config to allow websockets when pipelines is enabled
+* Moved router.topology.local.requireqservicetypes from system.yaml to router as environment variable
+* Added jfconnect in system.yaml
+* Updated artifactory container’s health probes to use artifactory api on rt-split
+* Updated initContainerImage to `jfrog/ubi-minimal:8.5-204`
+* Updated router version to `7.28.2`
+* Set Jfconnect enabled to `false` in the artifactory container when running in the container split mode
+
+## [107.28.0] - Nov 11, 2021
+* Added default values cpu and memeory in initContainers
+* Updated router version to `7.26.0`
+* Updated (`rbac.create` and `serviceAccount.create` to false by default) for least privileges
+* Fixed incorrect data type for `Values.router.serviceRegistry.insecure` in default values.yaml [GH-1514](https://github.com/jfrog/charts/pull/1514/files)
+* **IMPORTANT**
+* Changed init-container images from `alpine` to `ubi8/ubi-minimal`
+* Added support for AWS License Manager using `.Values.aws.licenseConfigSecretName`
+
+## [107.27.0] - Oct 6, 2021
+* **Breaking change**
+* Aligned probe structure (moved probes variables under config block)
+* Added support for new probes(set to false by default)
+* Bugfix - Invalid format for `multiPartLimit,multipartElementSize,maxCacheSize` in binarystore.xml [GH-1466](https://github.com/jfrog/charts/issues/1466)
+* Added missioncontrol container in artifactory
+* Dropped NET_RAW capability for the containers
+* Added resources to migration-artifactory init container
+* Added resources to all rt split containers
+* Updated router version to `7.25.1`
+* Added support for Ingress networking.k8s.io/v1/Ingress for k8s >=1.22 [GH-1487](https://github.com/jfrog/charts/pull/1487)
+* Added min kubeVersion ">= 1.14.0-0" in chart.yaml
+* Update alpine tag version to `3.14.2`
+* Update busybox tag version to `1.33.1`
+* Artifactory chart support for cluster license
+
+## [107.26.0] - Aug 23, 2021
+* Added Observability container (only when `splitServicesToContainers` is enabled)
+* Support for high availability (when replicaCount > 1)
+* Added min kubeVersion ">= 1.12.0-0" in chart.yaml
+
+## [107.25.0] - Aug 13, 2021
+* Updated readme of chart to point to wiki. Refer [Installing Artifactory](https://www.jfrog.com/confluence/display/JFROG/Installing+Artifactory)
+* Added startupProbe and livenessProbe for RT-split containers
+* Updated router version to 7.24.1
+* Added security hardening fixes
+* Enabled startup probes for k8s >= 1.20.x
+* Changed network policy to allow all ingress and egress traffic
+* Added Observability changes
+* Added support for global.versions.router (only when `splitServicesToContainers` is enabled)
+
+## [107.24.0] - July 27, 2021
+* Support global and product specific tags at the same time
+* Added support for artifactory containers split
+
+## [107.23.0] - July 8, 2021
+* Bug fix - logger sideCar picks up Wrong File in helm
+* Allow filebeat metrics configuration in values.yaml
+
+## [107.22.0] - July 6, 2021
+* Update alpine tag version to `3.14.0`
+* Added `nodePort` support to artifactory-service and nginx-service templates
+* Removed redundant `terminationGracePeriodSeconds` in statefulset
+* Increased `startupProbe.failureThreshold` time
+
+## [107.21.3] - July 2, 2021
+* Added ability to change sendreasonphrase value in server.xml via system yaml
+
+## [107.19.3] - May 20, 2021
+* Fix broken support for startupProbe for k8s < 1.18.x
+* Added support for `nameOverride` and `fullnameOverride` in values.yaml
+
+## [107.18.6] - April 29, 2021
+* Bumping chart version to align with app version
+* Add `securityContext` option on nginx container
+
+## [12.0.0] - April 22, 2021
+* **Breaking change:**
+* Increased default postgresql persistence  size to `200Gi` 
+* Update postgresql tag version to `13.2.0-debian-10-r55`
+* Update postgresql chart version to `10.3.18` in chart.yaml - [10.x Upgrade Notes](https://github.com/bitnami/charts/tree/master/bitnami/postgresql#to-1000)
+* If this is a new deployment or you already use an external database (`postgresql.enabled=false`), these changes **do not affect you**!
+* If this is an upgrade and you are using the default PostgreSQL (`postgresql.enabled=true`), you need to pass previous 9.x/10.x/12.x's postgresql.image.tag, previous postgresql.persistence.size and databaseUpgradeReady=true
+* **IMPORTANT**
+* This chart is only helm v3 compatible.
+* Fixed filebeat-configmap naming
+* Explicitly set ServiceAccount `automountServiceAccountToken` to 'true'
+* Update alpine tag version to `3.13.5`
+
+## [11.13.2] - April 15, 2021
+* Updated Artifactory version to 7.17.9 - [Release Notes](https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.17.9)
+
+## [11.13.1] - April 6, 2021
+* Updated Artifactory version to 7.17.6 - [Release Notes](https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.17.6)
+* Update alpine tag version to `3.13.4`
+
+## [11.13.0] - April 5, 2021
+* **IMPORTANT**
+* Added `charts.jfrog.io` as default JFrog Helm repository
+* Updated Artifactory version to 7.17.5 - [Release Notes](https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.17.5)
+
+## [11.12.2] - Mar 31, 2021
+* Updated Artifactory version to 7.17.4 - [Release Notes](https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.17.4)
+
+## [11.12.1] - Mar 30, 2021
+* Updated Artifactory version to 7.17.3
+* Add `timeoutSeconds` to all exec probes - Please refer [here](https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#configure-probes)
+
+## [11.12.0] - Mar 24, 2021
+* Updated Artifactory version to 7.17.2
+* Optimized startupProbe time
+
+## [11.11.0] - Mar 18, 2021
+* Add support to startupProbe
+
+## [11.10.0] - Mar 15, 2021
+* Updated Artifactory version to 7.16.3
+
+## [11.9.5] - Mar 09, 2021
+* Added HSTS header to nginx conf
+
+## [11.9.4] - Mar 9, 2021
+* Removed bintray URL references in the chart
+
+## [11.9.3] - Mar 04, 2021
+* Updated Artifactory version to 7.15.4 - [Release Notes](https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.15.4)
+
+## [11.9.2] - Mar 04, 2021
+* Fixed creation of nginx-certificate-secret when Nginx is disabled
+
+## [11.9.1] - Feb 19, 2021
+* Update busybox tag version to `1.32.1`
+
+## [11.9.0] - Feb 18, 2021
+* Updated Artifactory version to 7.15.3 - [Release Notes](https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.15.3)
+* Add option to specify update strategy for Artifactory statefulset
+
+## [11.8.1] - Feb 11, 2021
+* Exposed "multiPartLimit" and "multipartElementSize" for the Azure Blob Storage Binary Provider
+
+## [11.8.0] - Feb 08, 2021
+* Updated Artifactory version to 7.12.8 - [Release Notes](https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.12.8)
+* Support for custom certificates using secrets
+* **Important:** Switched docker images download from `docker.bintray.io` to `releases-docker.jfrog.io`
+* Update alpine tag version to `3.13.1`
+
+## [11.7.8] - Jan 25, 2021
+* Add support for hostAliases
+
+## [11.7.7] - Jan 11, 2021
+* Fix failures when using creds file for configurating google storage
+
+## [11.7.6] - Jan 11, 2021
+* Updated Artifactory version to 7.12.6 - [Release Notes](https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.12.6)
+
+## [11.7.5] - Jan 07, 2021
+* Added support for optional tracker dedicated ingress `.Values.artifactory.replicator.trackerIngress.enabled` (defaults to false)
+
+## [11.7.4] - Jan 04, 2021
+* Fixed gid support for statefulset
+
+## [11.7.3] - Dec 31, 2020
+* Added gid support for statefulset
+* Add setSecurityContext flag to allow securityContext block to be removed from artifactory statefulset
+
+## [11.7.2] - Dec 29, 2020
+* **Important:** Removed `.Values.metrics` and `.Values.fluentd` (Fluentd and Prometheus integrations)
+* Add support for creating additional kubernetes resources - [refer here](https://github.com/jfrog/log-analytics-prometheus/blob/master/artifactory-values.yaml)
+* Updated Artifactory version to 7.12.5
+
+## [11.7.1] - Dec 21, 2020
+* Updated Artifactory version to 7.12.3
+
+## [11.7.0] - Dec 18, 2020
+* Updated Artifactory version to 7.12.2
+* Added `.Values.artifactory.openMetrics.enabled`
+
+## [11.6.1] - Dec 11, 2020
+* Added configurable `.Values.global.versions.artifactory` in values.yaml
+
+## [11.6.0] - Dec 10, 2020
+* Update postgresql tag version to `12.5.0-debian-10-r25`
+* Fixed `artifactory.persistence.googleStorage.endpoint` from `storage.googleapis.com` to `commondatastorage.googleapis.com`
+* Updated chart maintainers email
+
+## [11.5.5] - Dec 4, 2020
+* **Important:** Renamed `.Values.systemYaml` to `.Values.systemYamlOverride`
+
+## [11.5.4] - Dec 1, 2020
+* Improve error message returned when attempting helm upgrade command
+
+## [11.5.3] - Nov 30, 2020
+* Updated Artifactory version to 7.11.5 - [Release Notes](https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.11)
+
+## [11.5.2] - Nov 23, 2020
+* Updated Artifactory version to 7.11.2 - [Release Notes](https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.11)
+* Updated port namings on services and pods to allow for istio protocol discovery
+* Change semverCompare checks to support hosted Kubernetes
+* Add flag to disable creation of ServiceMonitor when enabling prometheus metrics
+* Prevent the PostHook command to be executed if the user did not specify a command in the values file
+* Fix issue with tls file generation when nginx.https.enabled is false
+
+## [11.5.1] - Nov 19, 2020
+* Updated Artifactory version to 7.11.2
+* Bugfix - access.config.import.xml override Access Federation configurations
+
+## [11.5.0] - Nov 17, 2020
+* Updated Artifactory version to 7.11.1
+* Update alpine tag version to `3.12.1`
+
+## [11.4.6] - Nov 10, 2020
+* Pass system.yaml via external secret for advanced usecases
+* Added support for custom ingress
+* Bugfix - stateful set not picking up changes to database secrets
+
+## [11.4.5] - Nov 9, 2020
+* Updated Artifactory version to 7.10.6 - [Release Notes](https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.10.6)
+
+## [11.4.4] - Nov 2, 2020
+* Add enablePathStyleAccess property for aws-s3-v3 binary provider template
+
+## [11.4.3] - Nov 2, 2020
+* Updated Artifactory version to 7.10.5 - [Release Notes](https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.10.5)
+
+## [11.4.2] - Oct 22, 2020
+* Chown bug fix where Linux capability cannot chown all files causing log line warnings
+* Fix Frontend timeout linting issue
+
+## [11.4.1] - Oct 20, 2020
+* Add flag to disable prepare-custom-persistent-volume init container
+
+## [11.4.0] - Oct 19, 2020
+* Updated Artifactory version to 7.10.2 - [Release Notes](https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.10.2)
+
+## [11.3.2] - Oct 15, 2020
+* Add support to specify priorityClassName for nginx deployment
+
+## [11.3.1] - Oct 9, 2020
+* Add support for customInitContainersBegin
+
+## [11.3.0] - Oct 7, 2020
+* Updated Artifactory version to 7.9.1
+* **Breaking change:** Fix `storageClass` to correct `storageClassName` in values.yaml
+
+## [11.2.0] - Oct 5, 2020
+* Expose Prometheus metrics via a ServiceMonitor
+* Parse log files for metric data with Fluentd
+
+## [11.1.0] - Sep 30, 2020
+* Updated Artifactory version to 7.9.0 - [Release Notes](https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.9)
+* Added support for resources in init container
+
+## [11.0.11] - Sep 25, 2020
+* Update to use linux capability CAP_CHOWN instead of root base init container to avoid any use of root containers to pass Redhat security requirements
+
+## [11.0.10] - Sep 28, 2020
+* Setting chart coordinates in migitation yaml
+
+## [11.0.9] - Sep 25, 2020
+* Update filebeat version to `7.9.2`
+
+## [11.0.8] - Sep 24, 2020
+* Fixed broken issue - when setting `waitForDatabase: false` container startup still waits for DB
+
+## [11.0.7] - Sep 22, 2020
+* Readme updates
+
+## [11.0.6] - Sep 22, 2020
+* Fix lint issue in migitation yaml
+
+## [11.0.5] - Sep 22, 2020
+* Fix broken migitation yaml
+
+## [11.0.4] - Sep 21, 2020
+* Added mitigation yaml for Artifactory - [More info](https://github.com/jfrog/chartcenter/blob/master/docs/securitymitigationspec.md)
+
+## [11.0.3] - Sep 17, 2020
+* Added configurable session(UI) timeout in frontend microservice
+
+## [11.0.2] - Sep 17, 2020
+* Added proper required text to be shown while postgres upgrades
+
+## [11.0.1] - Sep 14, 2020
+* Updated Artifactory version to 7.7.8 - [Release Notes](https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.7.8)
+
+## [11.0.0] - Sep 2, 2020
+* **Breaking change:** Changed `imagePullSecrets`values from string to list.
+* **Breaking change:** Added `image.registry` and changed `image.version` to `image.tag` for docker images
+* Added support for global values
+* Updated maintainers in chart.yaml
+* Update postgresql tag version to `12.3.0-debian-10-r71`
+* Update postgresql chart version to `9.3.4` in requirements.yaml - [9.x Upgrade Notes](https://github.com/bitnami/charts/tree/master/bitnami/postgresql#900)
+* **IMPORTANT**
+* If this is a new deployment or you already use an external database (`postgresql.enabled=false`), these changes **do not affect you**!
+* If this is an upgrade and you are using the default PostgreSQL (`postgresql.enabled=true`), you need to pass previous 9.x/10.x's postgresql.image.tag and databaseUpgradeReady=true
+
+## [10.1.0] - Aug 13, 2020
+* Updated Artifactory version to 7.7.3 - [Release Notes](https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.7)
+
+## [10.0.15] - Aug 10, 2020
+* Added enableSignedUrlRedirect for persistent storage type aws-s3-v3.
+
+## [10.0.14] - Jul 31, 2020
+* Update the README section on Nginx SSL termination to reflect the actual YAML structure.
+
+## [10.0.13] - Jul 30, 2020
+* Added condition to disable the migration scripts.
+
+## [10.0.12] - Jul 28, 2020
+* Document Artifactory node affinity.
+
+## [10.0.11] - Jul 28, 2020
+* Added maxConnections for persistent storage type aws-s3-v3.
+
+## [10.0.10] - Jul 28, 2020
+* Bugfix / support for userPluginSecrets with Artifactory 7
+
+## [10.0.9] - Jul 27, 2020
+* Add tpl to external database secrets
+* Modified `scheme`  to `artifactory.scheme`
+
+## [10.0.8] - Jul 23, 2020
+* Added condition to disable the migration init container.
+
+## [10.0.7] - Jul 21, 2020
+* Updated Artifactory Chart to add node and primary labels to pods and service objects.
+
+## [10.0.6] - Jul 20, 2020
+* Support custom CA and certificates
+
+## [10.0.5] - Jul 13, 2020
+* Updated Artifactory version to 7.6.3 - https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.6.3
+* Fixed Mysql database jar path in `preStartCommand` in README
+
+## [10.0.4] - Jul 10, 2020
+* Move some postgresql values to where they should be according to the subchart
+
+## [10.0.3] - Jul 8, 2020
+* Set Artifactory access client connections to the same value as the access threads
+
+## [10.0.2] - Jul 6, 2020
+* Updated Artifactory version to 7.6.2
+* **IMPORTANT**
+* Added ChartCenter Helm repository in README
+
+## [10.0.1] - Jul 01, 2020
+* Add dedicated ingress object for Replicator service when enabled
+
+## [10.0.0] - Jun 30, 2020
+* Update postgresql tag version to `10.13.0-debian-10-r38`
+* Update alpine tag version to `3.12`
+* Update busybox tag version to `1.31.1`
+* **IMPORTANT**
+* If this is a new deployment or you already use an external database (`postgresql.enabled=false`), these changes **do not affect you**!
+* If this is an upgrade and you are using the default PostgreSQL (`postgresql.enabled=true`), you need to pass postgresql.image.tag=9.6.18-debian-10-r7 and databaseUpgradeReady=true
+
+## [9.6.0] - Jun 29, 2020
+* Updated Artifactory version to 7.6.1 - https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.6.1
+* Add tpl for external database secrets
+
+## [9.5.5] - Jun 25, 2020
+* Stop loading the Nginx stream module because it is now a core module
+
+## [9.5.4] - Jun 25, 2020
+* Notes.txt update - add --namespace parameter
+
+## [9.5.3] - Jun 11, 2020
+* Support list of custom secrets
+
+## [9.5.2] - Jun 12, 2020
+* Updated Artifactory version to 7.5.7 - https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.5.7
+
+## [9.5.1] - Jun 8, 2020
+* Readme update - configuring Artifactory with oracledb
+
+## [9.5.0] - Jun 1, 2020
+* Updated Artifactory version to 7.5.5 - https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes#ArtifactoryReleaseNotes-Artifactory7.5
+* Fixes bootstrap configMap permission issue
+* Update postgresql tag version to `9.6.18-debian-10-r7`
+
+## [9.4.9] - May 27, 2020
+* Added Tomcat maxThreads & acceptCount
+
+## [9.4.8] - May 25, 2020
+* Fixed postgresql README `image` Parameters
+
+## [9.4.7] - May 24, 2020
+* Fixed typo in README regarding migration timeout
+
+## [9.4.6] - May 19, 2020
+* Added metadata maxOpenConnections
+
+## [9.4.5] - May 07, 2020
+* Fix `installerInfo` string format
+
+## [9.4.4] - Apr 27, 2020
+* Updated Artifactory version to 7.4.3
+
+## [9.4.3] - Apr 26, 2020
+* Change order of the customInitContainers to run before the "migration-artifactory" initContainer.
+
+## [9.4.2] - Apr 24, 2020
+* Fix `artifactory.persistence.awsS3V3.useInstanceCredentials` incorrect conditional logic
+* Bump postgresql tag version to `9.6.17-debian-10-r72` in values.yaml
+
+## [9.4.1] - Apr 16, 2020
+* Custom volumes in migration init container.
+
+## [9.4.0] - Apr 14, 2020
+* Updated Artifactory version to 7.4.1
+
+## [9.3.1] - April 13, 2020
+* Update README with helm v3 commands
+
+## [9.3.0] - April 10, 2020
+* Use dependency charts from `https://charts.bitnami.com/bitnami`
+* Bump postgresql chart version to `8.7.3` in requirements.yaml
+* Bump postgresql tag version to `9.6.17-debian-10-r21` in values.yaml
+
+## [9.2.9] - Apr 8, 2020
+* Added recommended ingress annotation to avoid 413 errors
+
+## [9.2.8] - Apr 8, 2020
+* Moved migration scripts under `files` directory
+* Support preStartCommand in migration Init container as `artifactory.migration.preStartCommand`
+
+## [9.2.7] - Apr 6, 2020
+* Fix cache size (should be 5gb instead of 50gb since volume claim is only 20gb).
+
+## [9.2.6] - Apr 1, 2020
+* Support masterKey and joinKey as secrets
+
+## [9.2.5] - Apr 1, 2020
+* Fix readme use to `-hex 32` instead of `-hex 16`
+
+## [9.2.4] - Mar 31, 2020
+* Change the way the artifactory `command:` is set so it will properly pass a SIGTERM to java
+
+## [9.2.3] - Mar 29, 2020
+* Add Nginx log options: stderr as logfile and log level
+
+## [9.2.2] - Mar 30, 2020
+* Use the same defaulting mechanism used for the artifactory version used elsewhere in the chart
+
+## [9.2.1] - Mar 29, 2020
+* Fix loggers sidecars configurations to support new file system layout and new log names
+
+## [9.2.0] - Mar 29, 2020
+* Fix broken admin user bootstrap configuration
+* **Breaking change:** renamed `artifactory.accessAdmin` to `artifactory.admin`
+
+## [9.1.5] - Mar 26, 2020
+* Fix volumeClaimTemplate issue
+
+## [9.1.4] - Mar 25, 2020
+* Fix volume name used by filebeat container
+
+## [9.1.3] - Mar 24, 2020
+* Use `postgresqlExtendedConf` for setting custom PostgreSQL configuration (instead of `postgresqlConfiguration`)
+
+## [9.1.2] - Mar 22, 2020
+* Support for SSL offload in Nginx service(LoadBalancer) layer. Introduced `nginx.service.ssloffload` field with boolean type.
+
+## [9.1.1] - Mar 23, 2020
+* Moved installer info to values.yaml so it is fully customizable
+
+## [9.1.0] - Mar 23, 2020
+* Updated Artifactory version to 7.3.2
+
+## [9.0.29] - Mar 20, 2020
+* Add support for masterKey trim during 6.x to 7.x migration if 6.x masterKey is 32 hex (64 characters)
+
+## [9.0.28] - Mar 18, 2020
+* Increased Nginx proxy_buffers size
+
+## [9.0.27] - Mar 17, 2020
+* Changed all single quotes to double quotes in values files
+* useInstanceCredentials variable was declared in S3 settings but not used in chart. Now it is being used.
+
+## [9.0.26] - Mar 17, 2020
+* Fix rendering of Service Account annotations
+
+## [9.0.25] - Mar 16, 2020
+* Update Artifactory readme with extra ingress annotations needed for Artifactory to be set as SSO provider
+
+## [9.0.24] - Mar 16, 2020
+* Add Unsupported message from 6.18 to 7.2.x (migration)
+
+## [9.0.23] - Mar 12, 2020
+* Fix README.md rendering issue
+
+## [9.0.22] - Mar 11, 2020
+* Upgrade Docs update
+
+## [9.0.21] - Mar 11, 2020
+* Unified charts public release
+
+## [9.0.20] - Mar 6, 2020
+* Fix path to `/artifactory_bootstrap`
+* Add support for controlling the name of the ingress and allow to set more than one cname
+
+## [9.0.19] - Mar 4, 2020
+* Add support for disabling `consoleLog` in `system.yaml` file
+
+## [9.0.18] - Feb 28, 2020
+* Add support to process `valueFrom` for extraEnvironmentVariables
+
+## [9.0.17] - Feb 26, 2020
+* Fix join key secret naming
+
+## [9.0.16] - Feb 26, 2020
+* Store join key to secret
+
+## [9.0.15] - Feb 26, 2020
+* Updated Artifactory version to 7.2.1
+
+## [9.0.10] - Feb 07, 2020
+* Remove protection flag `databaseUpgradeReady` which was added to check internal postgres upgrade
+
+## [9.0.0] - Feb 07, 2020
+* Updated Artifactory version to 7.0.0
+
+## [8.4.8] - Feb 13, 2020
+* Add support for SSH authentication to Artifactory
+
+## [8.4.7] - Feb 11, 2020
+* Change Artifactory service port name to be hard-coded to `http` instead of using `{{ .Release.Name }}`
+
+## [8.4.6] - Feb 9, 2020
+* Add support for `tpl` in the `postStartCommand`
+
+## [8.4.5] - Feb 4, 2020
+* Support customisable Nginx kind
+
+## [8.4.4] - Feb 2, 2020
+* Add a comment stating that it is recommended to use an external PostgreSQL with a static password for production installations
+
+## [8.4.3] - Jan 30, 2020
+* Add the option to configure resources for the logger containers
+
+## [8.4.2] - Jan 26, 2020
+* Improve `database.user` and `database.password` logic in order to support more use cases and make the configuration less repetitive
+
+## [8.4.1] - Jan 19, 2020
+* Fix replicator port config in nginx replicator configmap
+
+## [8.4.0] - Jan 19, 2020
+* Updated Artifactory version to 6.17.0
+
+## [8.3.6] - Jan 16, 2020
+* Added example for external nginx-ingress
+
+## [8.3.5] - Dec 30, 2019
+* Fix for nginx probes failing when launched with http disabled
+
+## [8.3.4] - Dec 24, 2019
+* Better support for custom `artifactory.internalPort`
+
+## [8.3.3] - Dec 23, 2019
+* Mark empty map values with `{}`
+
+## [8.3.2] - Dec 16, 2019
+* Fix for toggling nginx service ports
+
+## [8.3.1] - Dec 12, 2019
+* Add support for toggling nginx service ports
+
+## [8.3.0] - Dec 1, 2019
+* Updated Artifactory version to 6.16.0
+
+## [8.2.6] - Nov 28, 2019
+* Add support for using existing PriorityClass
+
+## [8.2.5] - Nov 27, 2019
+* Add support for PriorityClass
+
+## [8.2.4] - Nov 21, 2019
+* Add an option to use a file system cache-fs with the file-system binarystore template
+
+## [8.2.3] - Nov 20, 2019
+* Update Artifactory Readme
+
+## [8.2.2] - Nov 20, 2019
+* Update Artfactory logo
+
+## [8.2.1] - Nov 18, 2019
+* Add the option to provide service account annotations (in order to support stuff like https://docs.aws.amazon.com/eks/latest/userguide/specify-service-account-role.html)
+
+## [8.2.0] - Nov 18, 2019
+* Updated Artifactory version to 6.15.0
+
+## [8.1.11] - Nov 17, 2019
+* Do not provide a default master key. Allow it to be auto generated by Artifactory on first startup
+
+## [8.1.10] - Nov 17, 2019
+* Fix creation of double slash in nginx artifactory configuration
+
+## [8.1.9] - Nov 14, 2019
+* Set explicit `postgresql.postgresqlPassword=""` to avoid helm v3 error
+
+## [8.1.8] - Nov 12, 2019
+* Updated Artifactory version to 6.14.1
+
+## [8.1.7] - Nov 9, 2019
+* Additional documentation for masterKey
+
+## [8.1.6] - Nov 10, 2019
+* Update PostgreSQL chart version to 7.0.1
+* Use formal PostgreSQL configuration format
+
+## [8.1.5] - Nov 8, 2019
+* Add support `artifactory.service.loadBalancerSourceRanges` for whitelisting when setting `artifactory.service.type=LoadBalancer`
+
+## [8.1.4] - Nov 6, 2019
+* Add support for any type of environment variable by using `extraEnvironmentVariables` as-is
+
+## [8.1.3] - Nov 6, 2019
+* Add nodeselector support for Postgresql
+
+## [8.1.2] - Nov 5, 2019
+* Add support for the aws-s3-v3 filestore, which adds support for pod IAM roles
+
+## [8.1.1] - Nov 4, 2019
+* When using `copyOnEveryStartup`, make sure that the target base directories are created before copying the files
+
+## [8.1.0] - Nov 3, 2019
+* Updated Artifactory version to 6.14.0
+
+## [8.0.1] - Nov 3, 2019
+* Make sure the artifactory pod exits when one of the pre-start stages fail
+
+## [8.0.0] - Oct 27, 2019
+**IMPORTANT - BREAKING CHANGES!**<br>
+**DOWNTIME MIGHT BE REQUIRED FOR AN UPGRADE!**
+* If this is a new deployment or you already use an external database (`postgresql.enabled=false`), these changes **do not affect you**!
+* If this is an upgrade and you are using the default PostgreSQL (`postgresql.enabled=true`), must use the upgrade instructions in [UPGRADE_NOTES.md](UPGRADE_NOTES.md)!
+* PostgreSQL sub chart was upgraded to version `6.5.x`. This version is **not backward compatible** with the old version (`0.9.5`)!
+* Note the following **PostgreSQL** Helm chart changes
+  * The chart configuration has changed! See [values.yaml](values.yaml) for the new keys used
+  * **PostgreSQL** is deployed as a StatefulSet
+  * See [PostgreSQL helm chart](https://hub.helm.sh/charts/stable/postgresql) for all available configurations
+
+## [7.18.3] - Oct 24, 2019
+* Change the preStartCommand to support templating
+
+## [7.18.2] - Oct 21, 2019
+* Add support for setting `artifactory.labels`
+* Add support for setting `nginx.labels`
+
+## [7.18.1] - Oct 10, 2019
+* Updated Artifactory version to 6.13.1
+
+## [7.18.0] - Oct 7, 2019
+* Updated Artifactory version to 6.13.0
+
+## [7.17.5] - Sep 24, 2019
+* Option to skip wait-for-db init container with '--set waitForDatabase=false'
+
+## [7.17.4] - Sep 11, 2019
+* Updated Artifactory version to 6.12.2
+
+## [7.17.3] - Sep 9, 2019
+* Updated Artifactory version to 6.12.1
+
+## [7.17.2] - Aug 22, 2019
+* Fix the nginx server_name directive used with ingress.hosts
+
+## [7.17.1] - Aug 21, 2019
+* Enable the Artifactory container's liveness and readiness probes
+
+## [7.17.0] - Aug 21, 2019
+* Updated Artifactory version to 6.12.0
+
+## [7.16.11] - Aug 14, 2019
+* Updated Artifactory version to 6.11.6
+
+## [7.16.10] - Aug 11, 2019
+* Fix Ingress routing and add an example
+
+## [7.16.9] - Aug 5, 2019
+* Do not mount `access/etc/bootstrap.creds` unless user specifies a custom password or secret (Access already generates a random password if not provided one)
+* If custom `bootstrap.creds` is provided (using keys or custom secret), prepare it with an init container so the temp file does not persist
+
+## [7.16.8] - Aug 4, 2019
+* Improve binarystore config
+    1. Convert to a secret
+    2. Move config to values.yaml
+    3. Support an external secret
+
+## [7.16.7] - Jul 29, 2019
+* Don't create the nginx configmaps when nginx.enabled is false
+
+## [7.16.6] - Jul 24, 2019
+* Simplify nginx setup and shorten initial wait for probes
+
+## [7.16.5] - Jul 22, 2019
+* Change Ingress API to be compatible with recent kubernetes versions
+
+## [7.16.4] - Jul 22, 2019
+* Updated Artifactory version to 6.11.3
+
+## [7.16.3] - Jul 11, 2019
+* Add ingress.hosts to the Nginx server_name directive when ingress is enabled to help with Docker repository sub domain configuration
+
+## [7.16.2] - Jul 3, 2019
+* Fix values key in reverse proxy example
+
+## [7.16.1] - Jul 1, 2019
+* Updated Artifactory version to 6.11.1
+
+## [7.16.0] - Jun 27, 2019
+* Update Artifactory version to 6.11 and add restart to Artifactory when bootstrap.creds file has been modified
+
+## [7.15.8] - Jun 27, 2019
+* Add the option for changing nginx config using values.yaml and remove outdated reverse proxy documentation
+
+## [7.15.6] - Jun 24, 2019
+* Update chart maintainers
+
+## [7.15.5] - Jun 24, 2019
+* Change Nginx to point to the artifactory externalPort
+
+## [7.15.4] - Jun 23, 2019
+* Add the option to provide an IP for the access-admin endpoints
+
+## [7.15.3] - Jun 23, 2019
+* Add values files for small, medium and large installations
+
+## [7.15.2] - Jun 20, 2019
+* Add missing terminationGracePeriodSeconds to values.yaml
+
+## [7.15.1] - Jun 19, 2019
+* Updated Artifactory version to 6.10.4
+
+## [7.15.0] - Jun 17, 2019
+* Use configmaps for nginx configuration and remove nginx postStart command
+
+## [7.14.8] - Jun 18, 2019
+* Add the option to provide additional ingress rules
+
+## [7.14.7] - Jun 14, 2019
+* Updated readme with improved external database setup example
+
+## [7.14.6] - Jun 11, 2019
+* Updated Artifactory version to 6.10.3
+* Updated installer-info template
+
+## [7.14.5] - Jun 6, 2019
+* Updated Google Cloud Storage API URL and https settings
+
+## [7.14.4] - Jun 5, 2019
+* Delete the db.properties file on Artifactory startup
+
+## [7.14.3] - Jun 3, 2019
+* Updated Artifactory version to 6.10.2
+
+## [7.14.2] - May 21, 2019
+* Updated Artifactory version to 6.10.1
+
+## [7.14.1] - May 19, 2019
+* Fix missing logger image tag
+
+## [7.14.0] - May 7, 2019
+* Updated Artifactory version to 6.10.0
+
+## [7.13.21] - May 5, 2019
+* Add support for setting `artifactory.async.corePoolSize`
+
+## [7.13.20] - May 2, 2019
+* Remove unused property `artifactory.releasebundle.feature.enabled`
+
+## [7.13.19] - May 1, 2019
+* Fix indentation issue with the replicator system property
+
+## [7.13.18] - Apr 30, 2019
+* Add support for JMX monitoring
+
+## [7.13.17] - Apr 25, 2019
+* Added support for `cacheProviderDir`
+
+## [7.13.16] - Apr 18, 2019
+* Changing API StatefulSet version to `v1` and permission fix for custom `artifactory.conf` for Nginx
+
+## [7.13.15] - Apr 16, 2019
+* Updated documentation for Reverse Proxy Configuration
+
+## [7.13.14] - Apr 15, 2019
+* Added support for `customVolumeMounts`
+
+## [7.13.13] - Aprl 12, 2019
+* Added support for `bucketExists` flag for googleStorage
+
+## [7.13.12] - Apr 11, 2019
+* Replace `curl` examples with `wget` due to the new base image
+
+## [7.13.11] - Aprl 07, 2019
+* Add support for providing the Artifactory license as a parameter
+
+## [7.13.10] - Apr 10, 2019
+* Updated Artifactory version to 6.9.1
+
+## [7.13.9] - Aprl 04, 2019
+* Add support for templated extraEnvironmentVariables
+
+## [7.13.8] - Aprl 07, 2019
+* Change network policy API group
+
+## [7.13.7] - Aprl 04, 2019
+* Bugfix for userPluginSecrets
+
+## [7.13.6] - Apr 4, 2019
+* Add information about upgrading Artifactory with auto-generated postgres password
+
+## [7.13.5] - Aprl 03, 2019
+* Added installer info
+
+## [7.13.4] - Aprl 03, 2019
+* Allow secret names for user plugins to contain template language
+
+## [7.13.3] - Apr 02, 2019
+* Allow NetworkPolicy configurations (defaults to allow all)
+
+## [7.13.2] - Aprl 01, 2019
+* Add support for user plugin secret
+
+## [7.13.1] - Mar 27, 2019
+* Add the option to copy a list of files to ARTIFACTORY_HOME on startup
+
+## [7.13.0] - Mar 26, 2019
+* Updated Artifactory version to 6.9.0
+
+## [7.12.18] - Mar 25, 2019
+* Add CI tests for persistence, ingress support and nginx
+
+## [7.12.17] - Mar 22, 2019
+* Add the option to change the default access-admin password
+
+## [7.12.16] - Mar 22, 2019
+* Added support for `<artifactory|nginx>.<readiness|liveness>Probe.path` to customise the paths used for health probes
+
+## [7.12.15] - Mar 21, 2019
+* Added support for `artifactory.customSidecarContainers` to create custom sidecar containers
+* Added support for `artifactory.customVolumes` to create custom volumes
+
+## [7.12.14] - Mar 21, 2019
+* Make ingress path configurable
+
+## [7.12.13] - Mar 19, 2019
+* Move the copy of bootstrap config from postStart to preStart
+
+## [7.12.12] - Mar 19, 2019
+* Fix existingClaim example
+
+## [7.12.11] - Mar 18, 2019
+* Add information about nginx persistence
+
+## [7.12.10] - Mar 15, 2019
+* Wait for nginx configuration file before using it
+
+## [7.12.9] - Mar 15, 2019
+* Revert securityContext changes since they were causing issues
+
+## [7.12.8] - Mar 15, 2019
+* Fix issue #247 (init container failing to run)
+
+## [7.12.7] - Mar 14, 2019
+* Updated Artifactory version to 6.8.7
+* Add support for Artifactory-CE for C++
+
+## [7.12.6] - Mar 13, 2019
+* Move securityContext to container level
+
+## [7.12.5] - Mar 11, 2019
+* Updated Artifactory version to 6.8.6
+
+## [7.12.4] - Mar 8, 2019
+* Fix existingClaim option
+
+## [7.12.3] - Mar 5, 2019
+* Updated Artifactory version to 6.8.4
+
+## [7.12.2] - Mar 4, 2019
+* Add support for catalina logs sidecars
+
+## [7.12.1] - Feb 27, 2019
+* Updated Artifactory version to 6.8.3
+
+## [7.12.0] - Feb 25, 2019
+* Add nginx support for tail sidecars
+
+## [7.11.1] - Feb 20, 2019
+* Added support for enterprise storage
+
+## [7.10.2] - Feb 19, 2019
+* Updated Artifactory version to 6.8.2
+
+## [7.10.1] - Feb 17, 2019
+* Updated Artifactory version to 6.8.1
+* Add example of `SERVER_XML_EXTRA_CONNECTOR` usage
+
+## [7.10.0] - Feb 15, 2019
+* Updated Artifactory version to 6.8.0
+
+## [7.9.6] - Feb 13, 2019
+* Updated Artifactory version to 6.7.3
+
+## [7.9.5] - Feb 12, 2019
+*  Add support for tail sidecars to view logs from k8s api
+
+## [7.9.4] - Feb 6, 2019
+* Fix support for customizing statefulset `terminationGracePeriodSeconds`
+
+## [7.9.3] - Feb 5, 2019
+* Add instructions on how to deploy Artifactory with embedded Derby database
+
+## [7.9.2] - Feb 5, 2019
+* Add support for customizing statefulset `terminationGracePeriodSeconds`
+
+## [7.9.1] - Feb 3, 2019
+* Updated Artifactory version to 6.7.2
+
+## [7.9.0] - Jan 23, 2019
+* Updated Artifactory version to 6.7.0
+
+## [7.8.9] - Jan 22, 2019
+* Added support for `artifactory.customInitContainers` to create custom init containers
+
+## [7.8.8] - Jan 17, 2019
+* Added support of values ingress.labels
+
+## [7.8.7] - Jan 16, 2019
+* Mount replicator.yaml (config) directly to /replicator_extra_conf
+
+## [7.8.6] - Jan 13, 2019
+* Fix documentation about nginx group id
+
+## [7.8.5] - Jan 13, 2019
+* Updated Artifactory version to 6.6.5
+
+## [7.8.4] - Jan 8, 2019
+* Make artifactory.replicator.publicUrl required when the replicator is enabled
+
+## [7.8.3] - Jan 1, 2019
+* Updated Artifactory version to 6.6.3
+* Add support for `artifactory.extraEnvironmentVariables` to pass more environment variables to Artifactory
+
+## [7.8.2] - Dec 28, 2018
+* Fix location `replicator.yaml` is copied to
+
+## [7.8.1] - Dec 27, 2018
+* Updated Artifactory version to 6.6.1
+
+## [7.8.0] - Dec 20, 2018
+* Updated Artifactory version to 6.6.0
+
+## [7.7.13] - Dec 17, 2018
+* Updated Artifactory version to 6.5.13
+
+## [7.7.12] - Dec 12, 2018
+* Fix documentation about Artifactory license setup using secret
+
+## [7.7.11] - Dec 10, 2018
+* Fix issue when using existing claim
+
+## [7.7.10] - Dec 5, 2018
+* Remove Distribution certificates creation.
+
+## [7.7.9] - Nov 30, 2018
+* Updated Artifactory version to 6.5.9
+
+## [7.7.8] - Nov 29, 2018
+* Updated postgresql version to 9.6.11
+
+## [7.7.7] - Nov 27, 2018
+* Updated Artifactory version to 6.5.8
+
+## [7.7.6] - Nov 19, 2018
+* Added support for configMap to use custom Reverse Proxy Configuration with Nginx
+
+## [7.7.5] - Nov 14, 2018
+* Fix location of `nodeSelector`, `affinity` and `tolerations`
+
+## [7.7.4] - Nov 14, 2018
+* Updated Artifactory version to 6.5.3
+
+## [7.7.3] - Nov 12, 2018
+* Support artifactory.preStartCommand for running command before entrypoint starts
+
+## [7.7.2] - Nov 7, 2018
+* Support database.url parameter (DB_URL)
+
+## [7.7.1] - Oct 29, 2018
+* Change probes port to 8040 (so they will not be blocked when all tomcat threads on 8081 are exhausted)
+
+## [7.7.0] - Oct 28, 2018
+* Update postgresql chart to version 0.9.5 to be able and use `postgresConfig` options
+
+## [7.6.8] - Oct 23, 2018
+* Fix providing external secret for database credentials
+
+## [7.6.7] - Oct 23, 2018
+* Allow user to configure externalTrafficPolicy for Loadbalancer
+
+## [7.6.6] - Oct 22, 2018
+* Updated ingress annotation support (with examples) to support docker registry v2
+
+## [7.6.5] - Oct 21, 2018
+* Updated Artifactory version to 6.5.2
+
+## [7.6.4] - Oct 19, 2018
+* Allow providing pre-existing secret containing master key
+* Allow arbitrary annotations on primary and member node pods
+* Enforce size limits when using local storage with `emptyDir`
+* Allow providing pre-existing secrets containing external database credentials
+
+## [7.6.3] - Oct 18, 2018
+* Updated Artifactory version to 6.5.1
+
+## [7.6.2] - Oct 17, 2018
+* Add Apache 2.0 license
+
+## [7.6.1] - Oct 11, 2018
+* Supports master-key in the secrets and stateful-set
+* Allows ingress default `backend` to be enabled or disabled (defaults to enabled)
+
+## [7.6.0] - Oct 11, 2018
+* Updated Artifactory version to 6.5.0
+
+## [7.5.4] - Oct 9, 2018
+* Quote ingress hosts to support wildcard names
+
+## [7.5.3] - Oct 4, 2018
+* Add PostgreSQL resources template
+
+## [7.5.2] - Oct 2, 2018
+* Add `helm repo add jfrog https://charts.jfrog.io` to README
+
+## [7.5.1] - Oct 2, 2018
+* Set Artifactory to 6.4.1
+
+## [7.5.0] - Sep 27, 2018
+* Set Artifactory to 6.4.0
+
+## [7.4.3] - Sep 26, 2018
+* Add ci/test-values.yaml
+
+## [7.4.2] - Sep 2, 2018
+* Updated Artifactory version to 6.3.2
+* Removed unused PVC
+
+## [7.4.0] - Aug 22, 2018
+* Added support to run as non root
+* Updated Artifactory version to 6.2.0
+
+## [7.3.0] - Aug 22, 2018
+* Enabled RBAC Support
+* Added support for PostStartCommand (To download Database JDBC connector)
+* Increased postgresql max_connections
+* Added support for `nginx.conf` ConfigMap
+* Updated Artifactory version to 6.1.0
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/Chart.lock b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/Chart.lock
new file mode 100644
index 0000000000..8064c323b5
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/Chart.lock
@@ -0,0 +1,6 @@
+dependencies:
+- name: postgresql
+  repository: https://charts.jfrog.io/
+  version: 10.3.18
+digest: sha256:404ce007353baaf92a6c5f24b249d5b336c232e5fd2c29f8a0e4d0095a09fd53
+generated: "2022-03-08T08:53:16.293311+05:30"
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/Chart.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/Chart.yaml
new file mode 100644
index 0000000000..2abc29463f
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/Chart.yaml
@@ -0,0 +1,24 @@
+apiVersion: v2
+appVersion: 7.104.10
+dependencies:
+- condition: postgresql.enabled
+  name: postgresql
+  repository: https://charts.jfrog.io/
+  version: 10.3.18
+description: Universal Repository Manager supporting all major packaging formats,
+  build tools and CI servers.
+home: https://www.jfrog.com/artifactory/
+icon: https://raw.githubusercontent.com/jfrog/charts/master/stable/artifactory/logo/artifactory-logo.png
+keywords:
+- artifactory
+- jfrog
+- devops
+kubeVersion: '>= 1.19.0-0'
+maintainers:
+- email: installers@jfrog.com
+  name: Chart Maintainers at JFrog
+name: artifactory
+sources:
+- https://github.com/jfrog/charts
+type: application
+version: 107.104.10
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/LICENSE b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/LICENSE
new file mode 100644
index 0000000000..8dada3edaf
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/LICENSE
@@ -0,0 +1,201 @@
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   APPENDIX: How to apply the Apache License to your work.
+
+      To apply the Apache License to your work, attach the following
+      boilerplate notice, with the fields enclosed by brackets "{}"
+      replaced with your own identifying information. (Don't include
+      the brackets!)  The text should be enclosed in the appropriate
+      comment syntax for the file format. We also recommend that a
+      file or class name and description of purpose be included on the
+      same "printed page" as the copyright notice for easier
+      identification within third-party archives.
+
+   Copyright {yyyy} {name of copyright owner}
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/README.md b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/README.md
new file mode 100644
index 0000000000..783101786a
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/README.md
@@ -0,0 +1,60 @@
+# JFrog Artifactory Helm Chart
+
+**IMPORTANT!** Our Helm Chart docs have moved to our main documentation site. Below you will find the basic instructions for installing, uninstalling, and deleting Artifactory. For all other information, refer to [Installing Artifactory](https://www.jfrog.com/confluence/display/JFROG/Installing+Artifactory#InstallingArtifactory-HelmInstallation).
+
+## Prerequisites
+* Kubernetes 1.19+
+* Artifactory Pro trial license [get one from here](https://www.jfrog.com/artifactory/free-trial/)
+
+## Chart Details
+This chart will do the following:
+
+* Deploy Artifactory-Pro/Artifactory-Edge (or OSS/CE if custom image is set)
+* Deploy a PostgreSQL database using the stable/postgresql chart (can be changed) **NOTE:** For production grade installations it is recommended to use an external PostgreSQL.
+* Deploy an optional Nginx server
+* Optionally expose Artifactory with Ingress [Ingress documentation](https://kubernetes.io/docs/concepts/services-networking/ingress/)
+
+## Installing the Chart
+
+### Add JFrog Helm repository
+
+Before installing JFrog helm charts, you need to add the [JFrog helm repository](https://charts.jfrog.io) to your helm client
+
+```bash
+helm repo add jfrog https://charts.jfrog.io
+helm repo update
+```
+
+### Install Chart
+To install the chart with the release name `artifactory`:
+```bash
+helm upgrade --install artifactory jfrog/artifactory --namespace artifactory --create-namespace
+```
+
+### Apply Sizing configurations to the Chart
+Note that sizings with more than one replica require an enterprise license for HA . Refer [here](https://jfrog.com/help/r/jfrog-installation-setup-documentation/high-availability)
+To apply the chart with recommended sizing configurations :
+For small configurations :
+```bash
+helm upgrade --install artifactory jfrog/artifactory -f sizing/artifactory-small.yaml --namespace artifactory --create-namespace
+```
+
+## Uninstalling Artifactory
+
+Uninstall is supported only on Helm v3 and on.
+
+Uninstall Artifactory using the following command.
+
+```bash
+helm uninstall artifactory && sleep 90 && kubectl delete pvc -l app=artifactory
+```
+
+## Deleting Artifactory
+
+**IMPORTANT:** Deleting Artifactory will also delete your data volumes and you will lose all of your data. You must back up all this information before deletion. You do not need to uninstall Artifactory before deleting it.
+
+To delete Artifactory use the following command.
+
+```bash
+helm delete artifactory --namespace artifactory
+```
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/.helmignore b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/.helmignore
new file mode 100644
index 0000000000..f0c1319444
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/.helmignore
@@ -0,0 +1,21 @@
+# Patterns to ignore when building packages.
+# This supports shell glob matching, relative path matching, and
+# negation (prefixed with !). Only one pattern per line.
+.DS_Store
+# Common VCS dirs
+.git/
+.gitignore
+.bzr/
+.bzrignore
+.hg/
+.hgignore
+.svn/
+# Common backup files
+*.swp
+*.bak
+*.tmp
+*~
+# Various IDEs
+.project
+.idea/
+*.tmproj
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/Chart.lock b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/Chart.lock
new file mode 100644
index 0000000000..3687f52df5
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/Chart.lock
@@ -0,0 +1,6 @@
+dependencies:
+- name: common
+  repository: https://charts.bitnami.com/bitnami
+  version: 1.4.2
+digest: sha256:dce0349883107e3ff103f4f17d3af4ad1ea3c7993551b1c28865867d3e53d37c
+generated: "2021-03-30T09:13:28.360322819Z"
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/Chart.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/Chart.yaml
new file mode 100644
index 0000000000..4b197b2071
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/Chart.yaml
@@ -0,0 +1,29 @@
+annotations:
+  category: Database
+apiVersion: v2
+appVersion: 11.11.0
+dependencies:
+- name: common
+  repository: https://charts.bitnami.com/bitnami
+  version: 1.x.x
+description: Chart for PostgreSQL, an object-relational database management system
+  (ORDBMS) with an emphasis on extensibility and on standards-compliance.
+home: https://github.com/bitnami/charts/tree/master/bitnami/postgresql
+icon: https://bitnami.com/assets/stacks/postgresql/img/postgresql-stack-220x234.png
+keywords:
+- postgresql
+- postgres
+- database
+- sql
+- replication
+- cluster
+maintainers:
+- email: containers@bitnami.com
+  name: Bitnami
+- email: cedric@desaintmartin.fr
+  name: desaintmartin
+name: postgresql
+sources:
+- https://github.com/bitnami/bitnami-docker-postgresql
+- https://www.postgresql.org/
+version: 10.3.18
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/README.md b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/README.md
new file mode 100644
index 0000000000..63d3605bb8
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/README.md
@@ -0,0 +1,770 @@
+# PostgreSQL
+
+[PostgreSQL](https://www.postgresql.org/) is an object-relational database management system (ORDBMS) with an emphasis on extensibility and on standards-compliance.
+
+For HA, please see [this repo](https://github.com/bitnami/charts/tree/master/bitnami/postgresql-ha)
+
+## TL;DR
+
+```console
+$ helm repo add bitnami https://charts.bitnami.com/bitnami
+$ helm install my-release bitnami/postgresql
+```
+
+## Introduction
+
+This chart bootstraps a [PostgreSQL](https://github.com/bitnami/bitnami-docker-postgresql) deployment on a [Kubernetes](http://kubernetes.io) cluster using the [Helm](https://helm.sh) package manager.
+
+Bitnami charts can be used with [Kubeapps](https://kubeapps.com/) for deployment and management of Helm Charts in clusters. This chart has been tested to work with NGINX Ingress, cert-manager, fluentd and Prometheus on top of the [BKPR](https://kubeprod.io/).
+
+## Prerequisites
+
+- Kubernetes 1.12+
+- Helm 3.1.0
+- PV provisioner support in the underlying infrastructure
+
+## Installing the Chart
+To install the chart with the release name `my-release`:
+
+```console
+$ helm install my-release bitnami/postgresql
+```
+
+The command deploys PostgreSQL on the Kubernetes cluster in the default configuration. The [Parameters](#parameters) section lists the parameters that can be configured during installation.
+
+> **Tip**: List all releases using `helm list`
+
+## Uninstalling the Chart
+
+To uninstall/delete the `my-release` deployment:
+
+```console
+$ helm delete my-release
+```
+
+The command removes all the Kubernetes components but PVC's associated with the chart and deletes the release.
+
+To delete the PVC's associated with `my-release`:
+
+```console
+$ kubectl delete pvc -l release=my-release
+```
+
+> **Note**: Deleting the PVC's will delete postgresql data as well. Please be cautious before doing it.
+
+## Parameters
+
+The following tables lists the configurable parameters of the PostgreSQL chart and their default values.
+
+| Parameter                                     | Description                                                                                                                                                                                                                                                                                                                                                                                                                                                                | Default                                                       |
+|-----------------------------------------------|----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|---------------------------------------------------------------|
+| `global.imageRegistry`                        | Global Docker Image registry                                                                                                                                                                                                                                                                                                                                                                                                                                               | `nil`                                                         |
+| `global.postgresql.postgresqlDatabase`        | PostgreSQL database (overrides `postgresqlDatabase`)                                                                                                                                                                                                                                                                                                                                                                                                                       | `nil`                                                         |
+| `global.postgresql.postgresqlUsername`        | PostgreSQL username (overrides `postgresqlUsername`)                                                                                                                                                                                                                                                                                                                                                                                                                       | `nil`                                                         |
+| `global.postgresql.existingSecret`            | Name of existing secret to use for PostgreSQL passwords (overrides `existingSecret`)                                                                                                                                                                                                                                                                                                                                                                                       | `nil`                                                         |
+| `global.postgresql.postgresqlPassword`        | PostgreSQL admin password (overrides `postgresqlPassword`)                                                                                                                                                                                                                                                                                                                                                                                                                 | `nil`                                                         |
+| `global.postgresql.servicePort`               | PostgreSQL port (overrides `service.port`)                                                                                                                                                                                                                                                                                                                                                                                                                                 | `nil`                                                         |
+| `global.postgresql.replicationPassword`       | Replication user password (overrides `replication.password`)                                                                                                                                                                                                                                                                                                                                                                                                               | `nil`                                                         |
+| `global.imagePullSecrets`                     | Global Docker registry secret names as an array                                                                                                                                                                                                                                                                                                                                                                                                                            | `[]` (does not add image pull secrets to deployed pods)       |
+| `global.storageClass`                         | Global storage class for dynamic provisioning                                                                                                                                                                                                                                                                                                                                                                                                                              | `nil`                                                         |
+| `image.registry`                              | PostgreSQL Image registry                                                                                                                                                                                                                                                                                                                                                                                                                                                  | `docker.io`                                                   |
+| `image.repository`                            | PostgreSQL Image name                                                                                                                                                                                                                                                                                                                                                                                                                                                      | `bitnami/postgresql`                                          |
+| `image.tag`                                   | PostgreSQL Image tag                                                                                                                                                                                                                                                                                                                                                                                                                                                       | `{TAG_NAME}`                                                  |
+| `image.pullPolicy`                            | PostgreSQL Image pull policy                                                                                                                                                                                                                                                                                                                                                                                                                                               | `IfNotPresent`                                                |
+| `image.pullSecrets`                           | Specify Image pull secrets                                                                                                                                                                                                                                                                                                                                                                                                                                                 | `nil` (does not add image pull secrets to deployed pods)      |
+| `image.debug`                                 | Specify if debug values should be set                                                                                                                                                                                                                                                                                                                                                                                                                                      | `false`                                                       |
+| `nameOverride`                                | String to partially override common.names.fullname template with a string (will prepend the release name)                                                                                                                                                                                                                                                                                                                                                                    | `nil`                                                         |
+| `fullnameOverride`                            | String to fully override common.names.fullname template with a string                                                                                                                                                                                                                                                                                                                                                                                                        | `nil`                                                         |
+| `volumePermissions.enabled`                   | Enable init container that changes volume permissions in the data directory (for cases where the default k8s `runAsUser` and `fsUser` values do not work)                                                                                                                                                                                                                                                                                                                  | `false`                                                       |
+| `volumePermissions.image.registry`            | Init container volume-permissions image registry                                                                                                                                                                                                                                                                                                                                                                                                                           | `docker.io`                                                   |
+| `volumePermissions.image.repository`          | Init container volume-permissions image name                                                                                                                                                                                                                                                                                                                                                                                                                               | `bitnami/bitnami-shell`                                       |
+| `volumePermissions.image.tag`                 | Init container volume-permissions image tag                                                                                                                                                                                                                                                                                                                                                                                                                                | `"10"`                                                        |
+| `volumePermissions.image.pullPolicy`          | Init container volume-permissions image pull policy                                                                                                                                                                                                                                                                                                                                                                                                                        | `Always`                                                      |
+| `volumePermissions.securityContext.*`         | Other container security context to be included as-is in the container spec                                                                                                                                                                                                                                                                                                                                                                                                | `{}`                                                          |
+| `volumePermissions.securityContext.runAsUser` | User ID for the init container (when facing issues in OpenShift or uid unknown, try value "auto")                                                                                                                                                                                                                                                                                                                                                                          | `0`                                                           |
+| `usePasswordFile`                             | Have the secrets mounted as a file instead of env vars                                                                                                                                                                                                                                                                                                                                                                                                                     | `false`                                                       |
+| `ldap.enabled`                                | Enable LDAP support                                                                                                                                                                                                                                                                                                                                                                                                                                                        | `false`                                                       |
+| `ldap.existingSecret`                         | Name of existing secret to use for LDAP passwords                                                                                                                                                                                                                                                                                                                                                                                                                          | `nil`                                                         |
+| `ldap.url`                                    | LDAP URL beginning in the form `ldap[s]://host[:port]/basedn[?[attribute][?[scope][?[filter]]]]`                                                                                                                                                                                                                                                                                                                                                                           | `nil`                                                         |
+| `ldap.server`                                 | IP address or name of the LDAP server.                                                                                                                                                                                                                                                                                                                                                                                                                                     | `nil`                                                         |
+| `ldap.port`                                   | Port number on the LDAP server to connect to                                                                                                                                                                                                                                                                                                                                                                                                                               | `nil`                                                         |
+| `ldap.scheme`                                 | Set to `ldaps` to use LDAPS.                                                                                                                                                                                                                                                                                                                                                                                                                                               | `nil`                                                         |
+| `ldap.tls`                                    | Set to `1` to use TLS encryption                                                                                                                                                                                                                                                                                                                                                                                                                                           | `nil`                                                         |
+| `ldap.prefix`                                 | String to prepend to the user name when forming the DN to bind                                                                                                                                                                                                                                                                                                                                                                                                             | `nil`                                                         |
+| `ldap.suffix`                                 | String to append to the user name when forming the DN to bind                                                                                                                                                                                                                                                                                                                                                                                                              | `nil`                                                         |
+| `ldap.search_attr`                            | Attribute to match against the user name in the search                                                                                                                                                                                                                                                                                                                                                                                                                      | `nil`                                                         |
+| `ldap.search_filter`                          | The search filter to use when doing search+bind authentication                                                                                                                                                                                                                                                                                                                                                                                                             | `nil`                                                         |
+| `ldap.baseDN`                                 | Root DN to begin the search for the user in                                                                                                                                                                                                                                                                                                                                                                                                                                | `nil`                                                         |
+| `ldap.bindDN`                                 | DN of user to bind to LDAP                                                                                                                                                                                                                                                                                                                                                                                                                                                 | `nil`                                                         |
+| `ldap.bind_password`                          | Password for the user to bind to LDAP                                                                                                                                                                                                                                                                                                                                                                                                                                      | `nil`                                                         |
+| `replication.enabled`                         | Enable replication                                                                                                                                                                                                                                                                                                                                                                                                                                                         | `false`                                                       |
+| `replication.user`                            | Replication user                                                                                                                                                                                                                                                                                                                                                                                                                                                           | `repl_user`                                                   |
+| `replication.password`                        | Replication user password                                                                                                                                                                                                                                                                                                                                                                                                                                                  | `repl_password`                                               |
+| `replication.readReplicas`                    | Number of read replicas replicas                                                                                                                                                                                                                                                                                                                                                                                                                                                  | `1`                                                           |
+| `replication.synchronousCommit`               | Set synchronous commit mode. Allowed values: `on`, `remote_apply`, `remote_write`, `local` and `off`                                                                                                                                                                                                                                                                                                                                                                       | `off`                                                         |
+| `replication.numSynchronousReplicas`          | Number of replicas that will have synchronous replication. Note: Cannot be greater than `replication.readReplicas`.                                                                                                                                                                                                                                                                                                                                                       | `0`                                                           |
+| `replication.applicationName`                 | Cluster application name. Useful for advanced replication settings                                                                                                                                                                                                                                                                                                                                                                                                         | `my_application`                                              |
+| `existingSecret`                              | Name of existing secret to use for PostgreSQL passwords. The secret has to contain the keys `postgresql-password` which is the password for `postgresqlUsername` when it is different of `postgres`, `postgresql-postgres-password` which will override `postgresqlPassword`, `postgresql-replication-password` which will override `replication.password` and `postgresql-ldap-password` which will be used to authenticate on LDAP. The value is evaluated as a template. | `nil`                                                         |
+| `postgresqlPostgresPassword`                  | PostgreSQL admin password (used when `postgresqlUsername` is not `postgres`, in which case`postgres` is the admin username).                                                                                                                                                                                                                                                                                                                                               | _random 10 character alphanumeric string_                     |
+| `postgresqlUsername`                          | PostgreSQL user (creates a non-admin user when `postgresqlUsername` is not `postgres`)                                                                                                                                                                                                                                                                                                                                                                                     | `postgres`                                                    |
+| `postgresqlPassword`                          | PostgreSQL user password                                                                                                                                                                                                                                                                                                                                                                                                                                                   | _random 10 character alphanumeric string_                     |
+| `postgresqlDatabase`                          | PostgreSQL database                                                                                                                                                                                                                                                                                                                                                                                                                                                        | `nil`                                                         |
+| `postgresqlDataDir`                           | PostgreSQL data dir folder                                                                                                                                                                                                                                                                                                                                                                                                                                                 | `/bitnami/postgresql` (same value as persistence.mountPath)   |
+| `extraEnv`                                    | Any extra environment variables you would like to pass on to the pod. The value is evaluated as a template.                                                                                                                                                                                                                                                                                                                                                                | `[]`                                                          |
+| `extraEnvVarsCM`                              | Name of a Config Map containing extra environment variables you would like to pass on to the pod. The value is evaluated as a template.                                                                                                                                                                                                                                                                                                                                    | `nil`                                                         |
+| `postgresqlInitdbArgs`                        | PostgreSQL initdb extra arguments                                                                                                                                                                                                                                                                                                                                                                                                                                          | `nil`                                                         |
+| `postgresqlInitdbWalDir`                      | PostgreSQL location for transaction log                                                                                                                                                                                                                                                                                                                                                                                                                                    | `nil`                                                         |
+| `postgresqlConfiguration`                     | Runtime Config Parameters                                                                                                                                                                                                                                                                                                                                                                                                                                                  | `nil`                                                         |
+| `postgresqlExtendedConf`                      | Extended Runtime Config Parameters (appended to main or default configuration)                                                                                                                                                                                                                                                                                                                                                                                             | `nil`                                                         |
+| `pgHbaConfiguration`                          | Content of pg_hba.conf                                                                                                                                                                                                                                                                                                                                                                                                                                                     | `nil (do not create pg_hba.conf)`                             |
+| `postgresqlSharedPreloadLibraries`            | Shared preload libraries (comma-separated list)                                                                                                                                                                                                                                                                                                                                                                                                                            | `pgaudit`                                                     |
+| `postgresqlMaxConnections`                    | Maximum total connections                                                                                                                                                                                                                                                                                                                                                                                                                                                  | `nil`                                                         |
+| `postgresqlPostgresConnectionLimit`           | Maximum total connections for the postgres user                                                                                                                                                                                                                                                                                                                                                                                                                            | `nil`                                                         |
+| `postgresqlDbUserConnectionLimit`             | Maximum total connections for the non-admin user                                                                                                                                                                                                                                                                                                                                                                                                                           | `nil`                                                         |
+| `postgresqlTcpKeepalivesInterval`             | TCP keepalives interval                                                                                                                                                                                                                                                                                                                                                                                                                                                    | `nil`                                                         |
+| `postgresqlTcpKeepalivesIdle`                 | TCP keepalives idle                                                                                                                                                                                                                                                                                                                                                                                                                                                        | `nil`                                                         |
+| `postgresqlTcpKeepalivesCount`                | TCP keepalives count                                                                                                                                                                                                                                                                                                                                                                                                                                                       | `nil`                                                         |
+| `postgresqlStatementTimeout`                  | Statement timeout                                                                                                                                                                                                                                                                                                                                                                                                                                                          | `nil`                                                         |
+| `postgresqlPghbaRemoveFilters`                | Comma-separated list of patterns to remove from the pg_hba.conf file                                                                                                                                                                                                                                                                                                                                                                                                       | `nil`                                                         |
+| `customStartupProbe`                          | Override default startup probe                                                                                                                                                                                                                                                                                                                                                                                                                                             | `nil`                                                         |
+| `customLivenessProbe`                         | Override default liveness probe                                                                                                                                                                                                                                                                                                                                                                                                                                            | `nil`                                                         |
+| `customReadinessProbe`                        | Override default readiness probe                                                                                                                                                                                                                                                                                                                                                                                                                                           | `nil`                                                         |
+| `audit.logHostname`                           | Add client hostnames to the log file                                                                                                                                                                                                                                                                                                                                                                                                                                       | `false`                                                       |
+| `audit.logConnections`                        | Add client log-in operations to the log file                                                                                                                                                                                                                                                                                                                                                                                                                               | `false`                                                       |
+| `audit.logDisconnections`                     | Add client log-outs operations to the log file                                                                                                                                                                                                                                                                                                                                                                                                                             | `false`                                                       |
+| `audit.pgAuditLog`                            | Add operations to log using the pgAudit extension                                                                                                                                                                                                                                                                                                                                                                                                                          | `nil`                                                         |
+| `audit.clientMinMessages`                     | Message log level to share with the user                                                                                                                                                                                                                                                                                                                                                                                                                                   | `nil`                                                         |
+| `audit.logLinePrefix`                         | Template string for the log line prefix                                                                                                                                                                                                                                                                                                                                                                                                                                    | `nil`                                                         |
+| `audit.logTimezone`                           | Timezone for the log timestamps                                                                                                                                                                                                                                                                                                                                                                                                                                            | `nil`                                                         |
+| `configurationConfigMap`                      | ConfigMap with the PostgreSQL configuration files (Note: Overrides `postgresqlConfiguration` and `pgHbaConfiguration`). The value is evaluated as a template.                                                                                                                                                                                                                                                                                                              | `nil`                                                         |
+| `extendedConfConfigMap`                       | ConfigMap with the extended PostgreSQL configuration files. The value is evaluated as a template.                                                                                                                                                                                                                                                                                                                                                                          | `nil`                                                         |
+| `initdbScripts`                               | Dictionary of initdb scripts                                                                                                                                                                                                                                                                                                                                                                                                                                               | `nil`                                                         |
+| `initdbUser`                                  | PostgreSQL user to execute the .sql and sql.gz scripts                                                                                                                                                                                                                                                                                                                                                                                                                     | `nil`                                                         |
+| `initdbPassword`                              | Password for the user specified in `initdbUser`                                                                                                                                                                                                                                                                                                                                                                                                                            | `nil`                                                         |
+| `initdbScriptsConfigMap`                      | ConfigMap with the initdb scripts (Note: Overrides `initdbScripts`). The value is evaluated as a template.                                                                                                                                                                                                                                                                                                                                                                 | `nil`                                                         |
+| `initdbScriptsSecret`                         | Secret with initdb scripts that contain sensitive information (Note: can be used with `initdbScriptsConfigMap` or `initdbScripts`). The value is evaluated as a template.                                                                                                                                                                                                                                                                                                  | `nil`                                                         |
+| `service.type`                                | Kubernetes Service type                                                                                                                                                                                                                                                                                                                                                                                                                                                    | `ClusterIP`                                                   |
+| `service.port`                                | PostgreSQL port                                                                                                                                                                                                                                                                                                                                                                                                                                                            | `5432`                                                        |
+| `service.nodePort`                            | Kubernetes Service nodePort                                                                                                                                                                                                                                                                                                                                                                                                                                                | `nil`                                                         |
+| `service.annotations`                         | Annotations for PostgreSQL service                                                                                                                                                                                                                                                                                                                                                                                                                                         | `{}` (evaluated as a template)                                |
+| `service.loadBalancerIP`                      | loadBalancerIP if service type is `LoadBalancer`                                                                                                                                                                                                                                                                                                                                                                                                                           | `nil`                                                         |
+| `service.loadBalancerSourceRanges`            | Address that are allowed when svc is LoadBalancer                                                                                                                                                                                                                                                                                                                                                                                                                          | `[]` (evaluated as a template)                                |
+| `schedulerName`                               | Name of the k8s scheduler (other than default)                                                                                                                                                                                                                                                                                                                                                                                                                             | `nil`                                                         |
+| `shmVolume.enabled`                           | Enable emptyDir volume for /dev/shm for primary and read replica(s) Pod(s)                                                                                                                                                                                                                                                                                                                                                                                                         | `true`                                                        |
+| `shmVolume.chmod.enabled`                     | Run at init chmod 777 of the /dev/shm (ignored if `volumePermissions.enabled` is `false`)                                                                                                                                                                                                                                                                                                                                                                                  | `true`                                                        |
+| `persistence.enabled`                         | Enable persistence using PVC                                                                                                                                                                                                                                                                                                                                                                                                                                               | `true`                                                        |
+| `persistence.existingClaim`                   | Provide an existing `PersistentVolumeClaim`, the value is evaluated as a template.                                                                                                                                                                                                                                                                                                                                                                                         | `nil`                                                         |
+| `persistence.mountPath`                       | Path to mount the volume at                                                                                                                                                                                                                                                                                                                                                                                                                                                | `/bitnami/postgresql`                                         |
+| `persistence.subPath`                         | Subdirectory of the volume to mount at                                                                                                                                                                                                                                                                                                                                                                                                                                     | `""`                                                          |
+| `persistence.storageClass`                    | PVC Storage Class for PostgreSQL volume                                                                                                                                                                                                                                                                                                                                                                                                                                    | `nil`                                                         |
+| `persistence.accessModes`                     | PVC Access Mode for PostgreSQL volume                                                                                                                                                                                                                                                                                                                                                                                                                                      | `[ReadWriteOnce]`                                             |
+| `persistence.size`                            | PVC Storage Request for PostgreSQL volume                                                                                                                                                                                                                                                                                                                                                                                                                                  | `8Gi`                                                         |
+| `persistence.annotations`                     | Annotations for the PVC                                                                                                                                                                                                                                                                                                                                                                                                                                                    | `{}`                                                          |
+| `persistence.selector`                        | Selector to match an existing Persistent Volume (this value is evaluated as a template)                                                                                                                                                                                                                                                                                                                                                                                    | `{}`                                                          |
+| `commonAnnotations`                           | Annotations to be added to all deployed resources (rendered as a template)                                                                                                                                                                                                                                                                                                                                                                                                 | `{}`                                                          |
+| `primary.podAffinityPreset`                   | PostgreSQL primary pod affinity preset. Ignored if `primary.affinity` is set. Allowed values: `soft` or `hard`            | `""`                                                         |
+| `primary.podAntiAffinityPreset`               | PostgreSQL primary pod anti-affinity preset. Ignored if `primary.affinity` is set. Allowed values: `soft` or `hard`       | `soft`                                                       |
+| `primary.nodeAffinityPreset.type`             | PostgreSQL primary node affinity preset type. Ignored if `primary.affinity` is set. Allowed values: `soft` or `hard`      | `""`                                                         |
+| `primary.nodeAffinityPreset.key`              | PostgreSQL primary node label key to match Ignored if `primary.affinity` is set.                                          | `""`                                                         |
+| `primary.nodeAffinityPreset.values`           | PostgreSQL primary node label values to match. Ignored if `primary.affinity` is set.                                      | `[]`                                                         |
+| `primary.affinity`                            | Affinity for PostgreSQL primary pods assignment                                                                           | `{}` (evaluated as a template)                               |
+| `primary.nodeSelector`                        | Node labels for PostgreSQL primary pods assignment                                                                        | `{}` (evaluated as a template)                               |
+| `primary.tolerations`                         | Tolerations for PostgreSQL primary pods assignment                                                                        | `[]` (evaluated as a template)                               |
+| `primary.anotations`                          | Map of annotations to add to the statefulset (postgresql primary)                                                                                                                                                                                                                                                                                                                                                                                                           | `{}`                                                          |
+| `primary.labels`                              | Map of labels to add to the statefulset (postgresql primary)                                                                                                                                                                                                                                                                                                                                                                                                                | `{}`                                                          |
+| `primary.podAnnotations`                      | Map of annotations to add to the pods (postgresql primary)                                                                                                                                                                                                                                                                                                                                                                                                                  | `{}`                                                          |
+| `primary.podLabels`                           | Map of labels to add to the pods (postgresql primary)                                                                                                                                                                                                                                                                                                                                                                                                                       | `{}`                                                          |
+| `primary.priorityClassName`                   | Priority Class to use for each pod (postgresql primary)                                                                                                                                                                                                                                                                                                                                                                                                                     | `nil`                                                         |
+| `primary.extraInitContainers`                 | Additional init containers to add to the pods (postgresql primary)                                                                                                                                                                                                                                                                                                                                                                                                          | `[]`                                                          |
+| `primary.extraVolumeMounts`                   | Additional volume mounts to add to the pods (postgresql primary)                                                                                                                                                                                                                                                                                                                                                                                                            | `[]`                                                          |
+| `primary.extraVolumes`                        | Additional volumes to add to the pods (postgresql primary)                                                                                                                                                                                                                                                                                                                                                                                                                  | `[]`                                                          |
+| `primary.sidecars`                            | Add additional containers to the pod                                                                                                                                                                                                                                                                                                                                                                                                                                        | `[]`                                                          |
+| `primary.service.type`                        | Allows using a different service type for primary                                                                                                                                                                                                                                                                                                                                                                                                                           | `nil`                                                         |
+| `primary.service.nodePort`                    | Allows using a different nodePort for primary                                                                                                                                                                                                                                                                                                                                                                                                                               | `nil`                                                         |
+| `primary.service.clusterIP`                   | Allows using a different clusterIP for primary                                                                                                                                                                                                                                                                                                                                                                                                                              | `nil`                                                         |
+| `primaryAsStandBy.enabled`                    | Whether to enable current cluster's primary as standby server of another cluster or not.                                                                                                                                                                                                                                                                                                                                                                                    | `false`                                                       |
+| `primaryAsStandBy.primaryHost`                | The Host of replication primary in the other cluster.                                                                                                                                                                                                                                                                                                                                                                                                                       | `nil`                                                         |
+| `primaryAsStandBy.primaryPort `               | The Port of replication primary in the other cluster.                                                                                                                                                                                                                                                                                                                                                                                                                       | `nil`                                                         |
+| `readReplicas.podAffinityPreset`              | PostgreSQL read only pod affinity preset. Ignored if `primary.affinity` is set. Allowed values: `soft` or `hard`            | `""`                                                         |
+| `readReplicas.podAntiAffinityPreset`          | PostgreSQL read only pod anti-affinity preset. Ignored if `primary.affinity` is set. Allowed values: `soft` or `hard`       | `soft`                                                       |
+| `readReplicas.nodeAffinityPreset.type`        | PostgreSQL read only node affinity preset type. Ignored if `primary.affinity` is set. Allowed values: `soft` or `hard`      | `""`                                                         |
+| `readReplicas.nodeAffinityPreset.key`         | PostgreSQL read only node label key to match Ignored if `primary.affinity` is set.                                          | `""`                                                         |
+| `readReplicas.nodeAffinityPreset.values`      | PostgreSQL read only node label values to match. Ignored if `primary.affinity` is set.                                      | `[]`                                                         |
+| `readReplicas.affinity`                       | Affinity for PostgreSQL read only pods assignment                                                                           | `{}` (evaluated as a template)                               |
+| `readReplicas.nodeSelector`                   | Node labels for PostgreSQL read only pods assignment                                                                        | `{}` (evaluated as a template)                               |
+| `readReplicas.anotations`                     | Map of annotations to add to the statefulsets (postgresql readReplicas)                                                                                                                                                                                                                                                                                                                                                                                                           | `{}`                                                          |
+| `readReplicas.resources`                      | CPU/Memory resource requests/limits override for readReplicass. Will fallback to `values.resources` if not defined.                                                                                                                                                                                                                                                                                                                                                               | `{}`                                                          |
+| `readReplicas.labels`                         | Map of labels to add to the statefulsets (postgresql readReplicas)                                                                                                                                                                                                                                                                                                                                                                                                                | `{}`                                                          |
+| `readReplicas.podAnnotations`                 | Map of annotations to add to the pods (postgresql readReplicas)                                                                                                                                                                                                                                                                                                                                                                                                                   | `{}`                                                          |
+| `readReplicas.podLabels`                      | Map of labels to add to the pods (postgresql readReplicas)                                                                                                                                                                                                                                                                                                                                                                                                                        | `{}`                                                          |
+| `readReplicas.priorityClassName`              | Priority Class to use for each pod (postgresql readReplicas)                                                                                                                                                                                                                                                                                                                                                                                                                      | `nil`                                                         |
+| `readReplicas.extraInitContainers`            | Additional init containers to add to the pods (postgresql readReplicas)                                                                                                                                                                                                                                                                                                                                                                                                           | `[]`                                                          |
+| `readReplicas.extraVolumeMounts`              | Additional volume mounts to add to the pods (postgresql readReplicas)                                                                                                                                                                                                                                                                                                                                                                                                             | `[]`                                                          |
+| `readReplicas.extraVolumes`                   | Additional volumes to add to the pods (postgresql readReplicas)                                                                                                                                                                                                                                                                                                                                                                                                                   | `[]`                                                          |
+| `readReplicas.sidecars`                       | Add additional containers to the pod                                                                                                                                                                                                                                                                                                                                                                                                                                              | `[]`                                                          |
+| `readReplicas.service.type`                   | Allows using a different service type for readReplicas                                                                                                                                                                                                                                                                                                                                                                                                                            | `nil`                                                         |
+| `readReplicas.service.nodePort`               | Allows using a different nodePort for readReplicas                                                                                                                                                                                                                                                                                                                                                                                                                                | `nil`                                                         |
+| `readReplicas.service.clusterIP`              | Allows using a different clusterIP for readReplicas                                                                                                                                                                                                                                                                                                                                                                                                                               | `nil`                                                         |
+| `readReplicas.persistence.enabled`            | Whether to enable readReplicas replicas persistence                                                                                                                                                                                                                                                                                                                                                                                                                               | `true`                                                        |
+| `terminationGracePeriodSeconds`               | Seconds the pod needs to terminate gracefully                                                                                                                                                                                                                                                                                                                                                                                                                              | `nil`                                                         |
+| `resources`                                   | CPU/Memory resource requests/limits                                                                                                                                                                                                                                                                                                                                                                                                                                        | Memory: `256Mi`, CPU: `250m`                                  |
+| `securityContext.*`                           | Other pod security context to be included as-is in the pod spec                                                                                                                                                                                                                                                                                                                                                                                                            | `{}`                                                          |
+| `securityContext.enabled`                     | Enable security context                                                                                                                                                                                                                                                                                                                                                                                                                                                    | `true`                                                        |
+| `securityContext.fsGroup`                     | Group ID for the pod                                                                                                                                                                                                                                                                                                                                                                                                                                                       | `1001`                                                        |
+| `containerSecurityContext.*`                  | Other container security context to be included as-is in the container spec                                                                                                                                                                                                                                                                                                                                                                                                | `{}`                                                          |
+| `containerSecurityContext.enabled`            | Enable container security context                                                                                                                                                                                                                                                                                                                                                                                                                                          | `true`                                                        |
+| `containerSecurityContext.runAsUser`          | User ID for the container                                                                                                                                                                                                                                                                                                                                                                                                                                                  | `1001`                                                        |
+| `serviceAccount.enabled`                      | Enable service account (Note: Service Account will only be automatically created if `serviceAccount.name` is not set)                                                                                                                                                                                                                                                                                                                                                      | `false`                                                       |
+| `serviceAccount.name`                         | Name of existing service account                                                                                                                                                                                                                                                                                                                                                                                                                                           | `nil`                                                         |
+| `networkPolicy.enabled`                       | Enable NetworkPolicy                                                                                                                                                                                                                                                                                                                                                                                                                                                       | `false`                                                       |
+| `networkPolicy.allowExternal`                 | Don't require client label for connections                                                                                                                                                                                                                                                                                                                                                                                                                                 | `true`                                                        |
+| `networkPolicy.explicitNamespacesSelector`    | A Kubernetes LabelSelector to explicitly select namespaces from which ingress traffic could be allowed                                                                                                                                                                                                                                                                                                                                                                     | `{}`                                                          |
+| `startupProbe.enabled`                        | Enable startupProbe                                                                          | `false`                                                       |
+| `startupProbe.initialDelaySeconds`            | Delay before liveness probe is initiated                                                     | 30                                                            |
+| `startupProbe.periodSeconds`                  | How often to perform the probe                                                               | 15                                                            |
+| `startupProbe.timeoutSeconds`                 | When the probe times                                                                         | 5                                                             |
+| `startupProbe.failureThreshold`               | Minimum consecutive failures for the probe to be considered failed after having succeeded.   | 10                                                            |
+| `startupProbe.successThreshold`               | Minimum consecutive successes for the probe to be considered successful after having failed. | 1                                                             |
+| `livenessProbe.enabled`                       | Enable livenessProbe                                                                         | `true`                                                        |
+| `livenessProbe.initialDelaySeconds`           | Delay before liveness probe is initiated                                                                                                                                                                                                                                                                                                                                                                                                                                   | 30                                                            |
+| `livenessProbe.periodSeconds`                 | How often to perform the probe                                                                                                                                                                                                                                                                                                                                                                                                                                             | 10                                                            |
+| `livenessProbe.timeoutSeconds`                | When the probe times out                                                                                                                                                                                                                                                                                                                                                                                                                                                   | 5                                                             |
+| `livenessProbe.failureThreshold`              | Minimum consecutive failures for the probe to be considered failed after having succeeded.                                                                                                                                                                                                                                                                                                                                                                                 | 6                                                             |
+| `livenessProbe.successThreshold`              | Minimum consecutive successes for the probe to be considered successful after having failed                                                                                                                                                                                                                                                                                                                                                                                | 1                                                             |
+| `readinessProbe.enabled`                      | Enable readinessProbe                                                                                                                                                                                                                                                                                                                                                                                                                                                      | `true`                                                        |
+| `readinessProbe.initialDelaySeconds`          | Delay before readiness probe is initiated                                                                                                                                                                                                                                                                                                                                                                                                                                  | 5                                                             |
+| `readinessProbe.periodSeconds`                | How often to perform the probe                                                                                                                                                                                                                                                                                                                                                                                                                                             | 10                                                            |
+| `readinessProbe.timeoutSeconds`               | When the probe times out                                                                                                                                                                                                                                                                                                                                                                                                                                                   | 5                                                             |
+| `readinessProbe.failureThreshold`             | Minimum consecutive failures for the probe to be considered failed after having succeeded.                                                                                                                                                                                                                                                                                                                                                                                 | 6                                                             |
+| `readinessProbe.successThreshold`             | Minimum consecutive successes for the probe to be considered successful after having failed                                                                                                                                                                                                                                                                                                                                                                                | 1                                                             |
+| `tls.enabled`                                 | Enable TLS traffic support                                                                                                                                                                                                                                                                                                                                                                                                                                                 | `false`                                                       |
+| `tls.preferServerCiphers`                     | Whether to use the server's TLS cipher preferences rather than the client's                                                                                                                                                                                                                                                                                                                                                                                                | `true`                                                        |
+| `tls.certificatesSecret`                      | Name of an existing secret that contains the certificates                                                                                                                                                                                                                                                                                                                                                                                                                  | `nil`                                                         |
+| `tls.certFilename`                            | Certificate filename                                                                                                                                                                                                                                                                                                                                                                                                                                                       | `""`                                                          |
+| `tls.certKeyFilename`                         | Certificate key filename                                                                                                                                                                                                                                                                                                                                                                                                                                                   | `""`                                                          |
+| `tls.certCAFilename`                          | CA Certificate filename. If provided, PostgreSQL will authenticate TLS/SSL clients by requesting them a certificate.                                                                                                                                                                                                                                                                                                                                                       | `nil`                                                         |
+| `tls.crlFilename`                             | File containing a Certificate Revocation List                                                                                                                                                                                                                                                                                                                                                                                                                              | `nil`                                                         |
+| `metrics.enabled`                             | Start a prometheus exporter                                                                                                                                                                                                                                                                                                                                                                                                                                                | `false`                                                       |
+| `metrics.service.type`                        | Kubernetes Service type                                                                                                                                                                                                                                                                                                                                                                                                                                                    | `ClusterIP`                                                   |
+| `service.clusterIP`                           | Static clusterIP or None for headless services                                                                                                                                                                                                                                                                                                                                                                                                                             | `nil`                                                         |
+| `metrics.service.annotations`                 | Additional annotations for metrics exporter pod                                                                                                                                                                                                                                                                                                                                                                                                                            | `{ prometheus.io/scrape: "true", prometheus.io/port: "9187"}` |
+| `metrics.service.loadBalancerIP`              | loadBalancerIP if redis metrics service type is `LoadBalancer`                                                                                                                                                                                                                                                                                                                                                                                                             | `nil`                                                         |
+| `metrics.serviceMonitor.enabled`              | Set this to `true` to create ServiceMonitor for Prometheus operator                                                                                                                                                                                                                                                                                                                                                                                                        | `false`                                                       |
+| `metrics.serviceMonitor.additionalLabels`     | Additional labels that can be used so ServiceMonitor will be discovered by Prometheus                                                                                                                                                                                                                                                                                                                                                                                      | `{}`                                                          |
+| `metrics.serviceMonitor.namespace`            | Optional namespace in which to create ServiceMonitor                                                                                                                                                                                                                                                                                                                                                                                                                       | `nil`                                                         |
+| `metrics.serviceMonitor.interval`             | Scrape interval. If not set, the Prometheus default scrape interval is used                                                                                                                                                                                                                                                                                                                                                                                                | `nil`                                                         |
+| `metrics.serviceMonitor.scrapeTimeout`        | Scrape timeout. If not set, the Prometheus default scrape timeout is used                                                                                                                                                                                                                                                                                                                                                                                                  | `nil`                                                         |
+| `metrics.prometheusRule.enabled`              | Set this to true to create prometheusRules for Prometheus operator                                                                                                                                                                                                                                                                                                                                                                                                         | `false`                                                       |
+| `metrics.prometheusRule.additionalLabels`     | Additional labels that can be used so prometheusRules will be discovered by Prometheus                                                                                                                                                                                                                                                                                                                                                                                     | `{}`                                                          |
+| `metrics.prometheusRule.namespace`            | namespace where prometheusRules resource should be created                                                                                                                                                                                                                                                                                                                                                                                                                 | the same namespace as postgresql                              |
+| `metrics.prometheusRule.rules`                | [rules](https://prometheus.io/docs/prometheus/latest/configuration/alerting_rules/) to be created, check values for an example.                                                                                                                                                                                                                                                                                                                                            | `[]`                                                          |
+| `metrics.image.registry`                      | PostgreSQL Exporter Image registry                                                                                                                                                                                                                                                                                                                                                                                                                                         | `docker.io`                                                   |
+| `metrics.image.repository`                    | PostgreSQL Exporter Image name                                                                                                                                                                                                                                                                                                                                                                                                                                             | `bitnami/postgres-exporter`                                   |
+| `metrics.image.tag`                           | PostgreSQL Exporter Image tag                                                                                                                                                                                                                                                                                                                                                                                                                                              | `{TAG_NAME}`                                                  |
+| `metrics.image.pullPolicy`                    | PostgreSQL Exporter Image pull policy                                                                                                                                                                                                                                                                                                                                                                                                                                      | `IfNotPresent`                                                |
+| `metrics.image.pullSecrets`                   | Specify Image pull secrets                                                                                                                                                                                                                                                                                                                                                                                                                                                 | `nil` (does not add image pull secrets to deployed pods)      |
+| `metrics.customMetrics`                       | Additional custom metrics                                                                                                                                                                                                                                                                                                                                                                                                                                                  | `nil`                                                         |
+| `metrics.extraEnvVars`                        | Extra environment variables to add to exporter                                                                                                                                                                                                                                                                                                                                                                                                                             | `{}` (evaluated as a template)                                |
+| `metrics.securityContext.*`                   | Other container security context to be included as-is in the container spec                                                                                                                                                                                                                                                                                                                                                                                                | `{}`                                                          |
+| `metrics.securityContext.enabled`             | Enable security context for metrics                                                                                                                                                                                                                                                                                                                                                                                                                                        | `false`                                                       |
+| `metrics.securityContext.runAsUser`           | User ID for the container for metrics                                                                                                                                                                                                                                                                                                                                                                                                                                      | `1001`                                                        |
+| `metrics.livenessProbe.initialDelaySeconds`   | Delay before liveness probe is initiated                                                                                                                                                                                                                                                                                                                                                                                                                                   | 30                                                            |
+| `metrics.livenessProbe.periodSeconds`         | How often to perform the probe                                                                                                                                                                                                                                                                                                                                                                                                                                             | 10                                                            |
+| `metrics.livenessProbe.timeoutSeconds`        | When the probe times out                                                                                                                                                                                                                                                                                                                                                                                                                                                   | 5                                                             |
+| `metrics.livenessProbe.failureThreshold`      | Minimum consecutive failures for the probe to be considered failed after having succeeded.                                                                                                                                                                                                                                                                                                                                                                                 | 6                                                             |
+| `metrics.livenessProbe.successThreshold`      | Minimum consecutive successes for the probe to be considered successful after having failed                                                                                                                                                                                                                                                                                                                                                                                | 1                                                             |
+| `metrics.readinessProbe.enabled`              | would you like a readinessProbe to be enabled                                                                                                                                                                                                                                                                                                                                                                                                                              | `true`                                                        |
+| `metrics.readinessProbe.initialDelaySeconds`  | Delay before liveness probe is initiated                                                                                                                                                                                                                                                                                                                                                                                                                                   | 5                                                             |
+| `metrics.readinessProbe.periodSeconds`        | How often to perform the probe                                                                                                                                                                                                                                                                                                                                                                                                                                             | 10                                                            |
+| `metrics.readinessProbe.timeoutSeconds`       | When the probe times out                                                                                                                                                                                                                                                                                                                                                                                                                                                   | 5                                                             |
+| `metrics.readinessProbe.failureThreshold`     | Minimum consecutive failures for the probe to be considered failed after having succeeded.                                                                                                                                                                                                                                                                                                                                                                                 | 6                                                             |
+| `metrics.readinessProbe.successThreshold`     | Minimum consecutive successes for the probe to be considered successful after having failed                                                                                                                                                                                                                                                                                                                                                                                | 1                                                             |
+| `updateStrategy`                              | Update strategy policy                                                                                                                                                                                                                                                                                                                                                                                                                                                     | `{type: "RollingUpdate"}`                                     |
+| `psp.create`                                  | Create Pod Security Policy                                                                                                                                                                                                                                                                                                                                                                                                                                                 | `false`                                                       |
+| `rbac.create`                                 | Create Role and RoleBinding (required for PSP to work)                                                                                                                                                                                                                                                                                                                                                                                                                     | `false`                                                       |
+| `extraDeploy`                                 | Array of extra objects to deploy with the release (evaluated as a template).                                                                                                                                                                                                                                                                                                                                                                                               | `nil`                                                         |
+
+Specify each parameter using the `--set key=value[,key=value]` argument to `helm install`. For example,
+
+```console
+$ helm install my-release \
+  --set postgresqlPassword=secretpassword,postgresqlDatabase=my-database \
+    bitnami/postgresql
+```
+
+The above command sets the PostgreSQL `postgres` account password to `secretpassword`. Additionally it creates a database named `my-database`.
+
+> NOTE: Once this chart is deployed, it is not possible to change the application's access credentials, such as usernames or passwords, using Helm. To change these application credentials after deployment, delete any persistent volumes (PVs) used by the chart and re-deploy it, or use the application's built-in administrative tools if available.
+
+Alternatively, a YAML file that specifies the values for the parameters can be provided while installing the chart. For example,
+
+```console
+$ helm install my-release -f values.yaml bitnami/postgresql
+```
+
+> **Tip**: You can use the default [values.yaml](values.yaml)
+
+## Configuration and installation details
+
+### [Rolling VS Immutable tags](https://docs.bitnami.com/containers/how-to/understand-rolling-tags-containers/)
+
+It is strongly recommended to use immutable tags in a production environment. This ensures your deployment does not change automatically if the same tag is updated with a different image.
+
+Bitnami will release a new chart updating its containers if a new version of the main container, significant changes, or critical vulnerabilities exist.
+
+### Customizing primary and read replica services in a replicated configuration
+
+At the top level, there is a service object which defines the services for both primary and readReplicas. For deeper customization, there are service objects for both the primary and read types individually. This allows you to override the values in the top level service object so that the primary and read can be of different service types and with different clusterIPs / nodePorts. Also in the case you want the primary and read to be of type nodePort, you will need to set the nodePorts to different values to prevent a collision. The values that are deeper in the primary.service or readReplicas.service objects will take precedence over the top level service object.
+
+### Change PostgreSQL version
+
+To modify the PostgreSQL version used in this chart you can specify a [valid image tag](https://hub.docker.com/r/bitnami/postgresql/tags/) using the `image.tag` parameter. For example, `image.tag=X.Y.Z`. This approach is also applicable to other images like exporters.
+
+### postgresql.conf / pg_hba.conf files as configMap
+
+This helm chart also supports to customize the whole configuration file.
+
+Add your custom file to "files/postgresql.conf" in your working directory. This file will be mounted as configMap to the containers and it will be used for configuring the PostgreSQL server.
+
+Alternatively, you can add additional PostgreSQL configuration parameters using the `postgresqlExtendedConf` parameter as a dict, using camelCase, e.g. {"sharedBuffers": "500MB"}. Alternatively, to replace the entire default configuration use `postgresqlConfiguration`.
+
+In addition to these options, you can also set an external ConfigMap with all the configuration files. This is done by setting the `configurationConfigMap` parameter. Note that this will override the two previous options.
+
+### Allow settings to be loaded from files other than the default `postgresql.conf`
+
+If you don't want to provide the whole PostgreSQL configuration file and only specify certain parameters, you can add your extended `.conf` files to "files/conf.d/" in your working directory.
+Those files will be mounted as configMap to the containers adding/overwriting the default configuration using the `include_dir` directive that allows settings to be loaded from files other than the default `postgresql.conf`.
+
+Alternatively, you can also set an external ConfigMap with all the extra configuration files. This is done by setting the `extendedConfConfigMap` parameter. Note that this will override the previous option.
+
+### Initialize a fresh instance
+
+The [Bitnami PostgreSQL](https://github.com/bitnami/bitnami-docker-postgresql) image allows you to use your custom scripts to initialize a fresh instance. In order to execute the scripts, they must be located inside the chart folder `files/docker-entrypoint-initdb.d` so they can be consumed as a ConfigMap.
+
+Alternatively, you can specify custom scripts using the `initdbScripts` parameter as dict.
+
+In addition to these options, you can also set an external ConfigMap with all the initialization scripts. This is done by setting the `initdbScriptsConfigMap` parameter. Note that this will override the two previous options. If your initialization scripts contain sensitive information such as credentials or passwords, you can use the `initdbScriptsSecret` parameter.
+
+The allowed extensions are `.sh`, `.sql` and `.sql.gz`.
+
+### Securing traffic using TLS
+
+TLS support can be enabled in the chart by specifying the `tls.` parameters while creating a release. The following parameters should be configured to properly enable the TLS support in the chart:
+
+- `tls.enabled`: Enable TLS support. Defaults to `false`
+- `tls.certificatesSecret`: Name of an existing secret that contains the certificates. No defaults.
+- `tls.certFilename`: Certificate filename. No defaults.
+- `tls.certKeyFilename`: Certificate key filename. No defaults.
+
+For example:
+
+* First, create the secret with the cetificates files:
+
+    ```console
+    kubectl create secret generic certificates-tls-secret --from-file=./cert.crt --from-file=./cert.key --from-file=./ca.crt
+    ```
+
+* Then, use the following parameters:
+
+    ```console
+    volumePermissions.enabled=true
+    tls.enabled=true
+    tls.certificatesSecret="certificates-tls-secret"
+    tls.certFilename="cert.crt"
+    tls.certKeyFilename="cert.key"
+    ```
+
+    > Note TLS and VolumePermissions: PostgreSQL requires certain permissions on sensitive files (such as certificate keys) to start up. Due to an on-going [issue](https://github.com/kubernetes/kubernetes/issues/57923) regarding kubernetes permissions and the use of `containerSecurityContext.runAsUser`, you must enable `volumePermissions` to ensure everything works as expected.
+
+### Sidecars
+
+If you need  additional containers to run within the same pod as PostgreSQL (e.g. an additional metrics or logging exporter), you can do so via the `sidecars` config parameter. Simply define your container according to the Kubernetes container spec.
+
+```yaml
+# For the PostgreSQL primary
+primary:
+  sidecars:
+  - name: your-image-name
+    image: your-image
+    imagePullPolicy: Always
+    ports:
+    - name: portname
+     containerPort: 1234
+# For the PostgreSQL replicas
+readReplicas:
+  sidecars:
+  - name: your-image-name
+    image: your-image
+    imagePullPolicy: Always
+    ports:
+    - name: portname
+     containerPort: 1234
+```
+
+### Metrics
+
+The chart optionally can start a metrics exporter for [prometheus](https://prometheus.io). The metrics endpoint (port 9187) is not exposed and it is expected that the metrics are collected from inside the k8s cluster using something similar as the described in the [example Prometheus scrape configuration](https://github.com/prometheus/prometheus/blob/master/documentation/examples/prometheus-kubernetes.yml).
+
+The exporter allows to create custom metrics from additional SQL queries. See the Chart's `values.yaml` for an example and consult the [exporters documentation](https://github.com/wrouesnel/postgres_exporter#adding-new-metrics-via-a-config-file) for more details.
+
+### Use of global variables
+
+In more complex scenarios, we may have the following tree of dependencies
+
+```
+                     +--------------+
+                     |              |
+        +------------+   Chart 1    +-----------+
+        |            |              |           |
+        |            --------+------+           |
+        |                    |                  |
+        |                    |                  |
+        |                    |                  |
+        |                    |                  |
+        v                    v                  v
++-------+------+    +--------+------+  +--------+------+
+|              |    |               |  |               |
+|  PostgreSQL  |    |  Sub-chart 1  |  |  Sub-chart 2  |
+|              |    |               |  |               |
++--------------+    +---------------+  +---------------+
+```
+
+The three charts below depend on the parent chart Chart 1. However, subcharts 1 and 2 may need to connect to PostgreSQL as well. In order to do so, subcharts 1 and 2 need to know the PostgreSQL credentials, so one option for deploying could be deploy Chart 1 with the following parameters:
+
+```
+postgresql.postgresqlPassword=testtest
+subchart1.postgresql.postgresqlPassword=testtest
+subchart2.postgresql.postgresqlPassword=testtest
+postgresql.postgresqlDatabase=db1
+subchart1.postgresql.postgresqlDatabase=db1
+subchart2.postgresql.postgresqlDatabase=db1
+```
+
+If the number of dependent sub-charts increases, installing the chart with parameters can become increasingly difficult. An alternative would be to set the credentials using global variables as follows:
+
+```
+global.postgresql.postgresqlPassword=testtest
+global.postgresql.postgresqlDatabase=db1
+```
+
+This way, the credentials will be available in all of the subcharts.
+
+## Persistence
+
+The [Bitnami PostgreSQL](https://github.com/bitnami/bitnami-docker-postgresql) image stores the PostgreSQL data and configurations at the `/bitnami/postgresql` path of the container.
+
+Persistent Volume Claims are used to keep the data across deployments. This is known to work in GCE, AWS, and minikube.
+See the [Parameters](#parameters) section to configure the PVC or to disable persistence.
+
+If you already have data in it, you will fail to sync to standby nodes for all commits, details can refer to [code](https://github.com/bitnami/bitnami-docker-postgresql/blob/8725fe1d7d30ebe8d9a16e9175d05f7ad9260c93/9.6/debian-9/rootfs/libpostgresql.sh#L518-L556). If you need to use those data, please covert them to sql and import after `helm install` finished.
+
+## NetworkPolicy
+
+To enable network policy for PostgreSQL, install [a networking plugin that implements the Kubernetes NetworkPolicy spec](https://kubernetes.io/docs/tasks/administer-cluster/declare-network-policy#before-you-begin), and set `networkPolicy.enabled` to `true`.
+
+For Kubernetes v1.5 & v1.6, you must also turn on NetworkPolicy by setting the DefaultDeny namespace annotation. Note: this will enforce policy for _all_ pods in the namespace:
+
+```console
+$ kubectl annotate namespace default "net.beta.kubernetes.io/network-policy={\"ingress\":{\"isolation\":\"DefaultDeny\"}}"
+```
+
+With NetworkPolicy enabled, traffic will be limited to just port 5432.
+
+For more precise policy, set `networkPolicy.allowExternal=false`. This will only allow pods with the generated client label to connect to PostgreSQL.
+This label will be displayed in the output of a successful install.
+
+## Differences between Bitnami PostgreSQL image and [Docker Official](https://hub.docker.com/_/postgres) image
+
+- The Docker Official PostgreSQL image does not support replication. If you pass any replication environment variable, this would be ignored. The only environment variables supported by the Docker Official image are POSTGRES_USER, POSTGRES_DB, POSTGRES_PASSWORD, POSTGRES_INITDB_ARGS, POSTGRES_INITDB_WALDIR and PGDATA. All the remaining environment variables are specific to the Bitnami PostgreSQL image.
+- The Bitnami PostgreSQL image is non-root by default. This requires that you run the pod with `securityContext` and updates the permissions of the volume with an `initContainer`. A key benefit of this configuration is that the pod follows security best practices and is prepared to run on Kubernetes distributions with hard security constraints like OpenShift.
+- For OpenShift, one may either define the runAsUser and fsGroup accordingly, or try this more dynamic option: volumePermissions.securityContext.runAsUser="auto",securityContext.enabled=false,containerSecurityContext.enabled=false,shmVolume.chmod.enabled=false
+
+### Deploy chart using Docker Official PostgreSQL Image
+
+From chart version 4.0.0, it is possible to use this chart with the Docker Official PostgreSQL image.
+Besides specifying the new Docker repository and tag, it is important to modify the PostgreSQL data directory and volume mount point. Basically, the PostgreSQL data dir cannot be the mount point directly, it has to be a subdirectory.
+
+```
+image.repository=postgres
+image.tag=10.6
+postgresqlDataDir=/data/pgdata
+persistence.mountPath=/data/
+```
+
+### Setting Pod's affinity
+
+This chart allows you to set your custom affinity using the `XXX.affinity` paremeter(s). Find more infomation about Pod's affinity in the [kubernetes documentation](https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity).
+
+As an alternative, you can use of the preset configurations for pod affinity, pod anti-affinity, and node affinity available at the [bitnami/common](https://github.com/bitnami/charts/tree/master/bitnami/common#affinities) chart. To do so, set the `XXX.podAffinityPreset`, `XXX.podAntiAffinityPreset`, or `XXX.nodeAffinityPreset` parameters.
+
+## Troubleshooting
+
+Find more information about how to deal with common errors related to Bitnami’s Helm charts in [this troubleshooting guide](https://docs.bitnami.com/general/how-to/troubleshoot-helm-chart-issues).
+
+## Upgrading
+
+It's necessary to specify the existing passwords while performing an upgrade to ensure the secrets are not updated with invalid randomly generated passwords. Remember to specify the existing values of the `postgresqlPassword` and `replication.password` parameters when upgrading the chart:
+
+```bash
+$ helm upgrade my-release bitnami/postgresql \
+    --set postgresqlPassword=[POSTGRESQL_PASSWORD] \
+    --set replication.password=[REPLICATION_PASSWORD]
+```
+
+> Note: you need to substitute the placeholders _[POSTGRESQL_PASSWORD]_, and _[REPLICATION_PASSWORD]_ with the values obtained from instructions in the installation notes.
+
+### To 10.0.0
+
+[On November 13, 2020, Helm v2 support was formally finished](https://github.com/helm/charts#status-of-the-project), this major version is the result of the required changes applied to the Helm Chart to be able to incorporate the different features added in Helm v3 and to be consistent with the Helm project itself regarding the Helm v2 EOL.
+
+**What changes were introduced in this major version?**
+
+- Previous versions of this Helm Chart use `apiVersion: v1` (installable by both Helm 2 and 3), this Helm Chart was updated to `apiVersion: v2` (installable by Helm 3 only). [Here](https://helm.sh/docs/topics/charts/#the-apiversion-field) you can find more information about the `apiVersion` field.
+- Move dependency information from the *requirements.yaml* to the *Chart.yaml*
+- After running `helm dependency update`, a *Chart.lock* file is generated containing the same structure used in the previous *requirements.lock*
+- The different fields present in the *Chart.yaml* file has been ordered alphabetically in a homogeneous way for all the Bitnami Helm Chart.
+
+**Considerations when upgrading to this version**
+
+- If you want to upgrade to this version using Helm v2, this scenario is not supported as this version doesn't support Helm v2 anymore
+- If you installed the previous version with Helm v2 and wants to upgrade to this version with Helm v3, please refer to the [official Helm documentation](https://helm.sh/docs/topics/v2_v3_migration/#migration-use-cases) about migrating from Helm v2 to v3
+
+**Useful links**
+
+- https://docs.bitnami.com/tutorials/resolve-helm2-helm3-post-migration-issues/
+- https://helm.sh/docs/topics/v2_v3_migration/
+- https://helm.sh/blog/migrate-from-helm-v2-to-helm-v3/
+
+#### Breaking changes
+
+- The term `master` has been replaced with `primary` and `slave` with `readReplicas` throughout the chart. Role names have changed from `master` and `slave` to `primary` and `read`.
+
+To upgrade to `10.0.0`, it should be done reusing the PVCs used to hold the PostgreSQL data on your previous release. To do so, follow the instructions below (the following example assumes that the release name is `postgresql`):
+
+> NOTE: Please, create a backup of your database before running any of those actions.
+
+Obtain the credentials and the names of the PVCs used to hold the PostgreSQL data on your current release:
+
+```console
+$ export POSTGRESQL_PASSWORD=$(kubectl get secret --namespace default postgresql -o jsonpath="{.data.postgresql-password}" | base64 --decode)
+$ export POSTGRESQL_PVC=$(kubectl get pvc -l app.kubernetes.io/instance=postgresql,role=master -o jsonpath="{.items[0].metadata.name}")
+```
+
+Delete the PostgreSQL statefulset. Notice the option `--cascade=false`:
+
+```console
+$ kubectl delete statefulsets.apps postgresql-postgresql --cascade=false
+```
+
+Now the upgrade works:
+
+```console
+$ helm upgrade postgresql bitnami/postgresql --set postgresqlPassword=$POSTGRESQL_PASSWORD --set persistence.existingClaim=$POSTGRESQL_PVC
+```
+
+You will have to delete the existing PostgreSQL pod and the new statefulset is going to create a new one
+
+```console
+$ kubectl delete pod postgresql-postgresql-0
+```
+
+Finally, you should see the lines below in PostgreSQL container logs:
+
+```console
+$ kubectl logs $(kubectl get pods -l app.kubernetes.io/instance=postgresql,app.kubernetes.io/name=postgresql,role=primary -o jsonpath="{.items[0].metadata.name}")
+...
+postgresql 08:05:12.59 INFO  ==> Deploying PostgreSQL with persisted data...
+...
+```
+
+### To 9.0.0
+
+In this version the chart was adapted to follow the Helm label best practices, see [PR 3021](https://github.com/bitnami/charts/pull/3021). That means the backward compatibility is not guarantee when upgrading the chart to this major version.
+
+As a workaround, you can delete the existing statefulset (using the `--cascade=false` flag pods are not deleted) before upgrade the chart. For example, this can be a valid workflow:
+
+- Deploy an old version (8.X.X)
+
+```console
+$ helm install postgresql bitnami/postgresql --version 8.10.14
+```
+
+- Old version is up and running
+
+```console
+$ helm ls
+NAME      	NAMESPACE	REVISION	UPDATED                                	STATUS  	CHART             	APP VERSION
+postgresql	default  	1       	2020-08-04 13:39:54.783480286 +0000 UTC	deployed	postgresql-8.10.14	11.8.0
+
+$ kubectl get pods
+NAME                      READY   STATUS    RESTARTS   AGE
+postgresql-postgresql-0   1/1     Running   0          76s
+```
+
+- The upgrade to the latest one (9.X.X) is going to fail
+
+```console
+$ helm upgrade postgresql bitnami/postgresql
+Error: UPGRADE FAILED: cannot patch "postgresql-postgresql" with kind StatefulSet: StatefulSet.apps "postgresql-postgresql" is invalid: spec: Forbidden: updates to statefulset spec for fields other than 'replicas', 'template', and 'updateStrategy' are forbidden
+```
+
+- Delete the statefulset
+
+```console
+$ kubectl delete statefulsets.apps --cascade=false postgresql-postgresql
+statefulset.apps "postgresql-postgresql" deleted
+```
+
+- Now the upgrade works
+
+```console
+$ helm upgrade postgresql bitnami/postgresql
+$ helm ls
+NAME      	NAMESPACE	REVISION	UPDATED                                	STATUS  	CHART           	APP VERSION
+postgresql	default  	3       	2020-08-04 13:42:08.020385884 +0000 UTC	deployed	postgresql-9.1.2	11.8.0
+```
+
+- We can kill the existing pod and the new statefulset is going to create a new one:
+
+```console
+$ kubectl delete pod postgresql-postgresql-0
+pod "postgresql-postgresql-0" deleted
+
+$ kubectl get pods
+NAME                      READY   STATUS    RESTARTS   AGE
+postgresql-postgresql-0   1/1     Running   0          19s
+```
+
+Please, note that without the `--cascade=false` both objects (statefulset and pod) are going to be removed and both objects will be deployed again with the `helm upgrade` command
+
+### To 8.0.0
+
+Prefixes the port names with their protocols to comply with Istio conventions.
+
+If you depend on the port names in your setup, make sure to update them to reflect this change.
+
+### To 7.1.0
+
+Adds support for LDAP configuration.
+
+### To 7.0.0
+
+Helm performs a lookup for the object based on its group (apps), version (v1), and kind (Deployment). Also known as its GroupVersionKind, or GVK. Changing the GVK is considered a compatibility breaker from Kubernetes' point of view, so you cannot "upgrade" those objects to the new GVK in-place. Earlier versions of Helm 3 did not perform the lookup correctly which has since been fixed to match the spec.
+
+In https://github.com/helm/charts/pull/17281 the `apiVersion` of the statefulset resources was updated to `apps/v1` in tune with the api's deprecated, resulting in compatibility breakage.
+
+This major version bump signifies this change.
+
+### To 6.5.7
+
+In this version, the chart will use PostgreSQL with the Postgis extension included. The version used with Postgresql version 10, 11 and 12 is Postgis 2.5. It has been compiled with the following dependencies:
+
+- protobuf
+- protobuf-c
+- json-c
+- geos
+- proj
+
+### To 5.0.0
+
+In this version, the **chart is using PostgreSQL 11 instead of PostgreSQL 10**. You can find the main difference and notable changes in the following links: [https://www.postgresql.org/about/news/1894/](https://www.postgresql.org/about/news/1894/) and [https://www.postgresql.org/about/featurematrix/](https://www.postgresql.org/about/featurematrix/).
+
+For major releases of PostgreSQL, the internal data storage format is subject to change, thus complicating upgrades, you can see some errors like the following one in the logs:
+
+```console
+Welcome to the Bitnami postgresql container
+Subscribe to project updates by watching https://github.com/bitnami/bitnami-docker-postgresql
+Submit issues and feature requests at https://github.com/bitnami/bitnami-docker-postgresql/issues
+Send us your feedback at containers@bitnami.com
+
+INFO  ==> ** Starting PostgreSQL setup **
+NFO  ==> Validating settings in POSTGRESQL_* env vars..
+INFO  ==> Initializing PostgreSQL database...
+INFO  ==> postgresql.conf file not detected. Generating it...
+INFO  ==> pg_hba.conf file not detected. Generating it...
+INFO  ==> Deploying PostgreSQL with persisted data...
+INFO  ==> Configuring replication parameters
+INFO  ==> Loading custom scripts...
+INFO  ==> Enabling remote connections
+INFO  ==> Stopping PostgreSQL...
+INFO  ==> ** PostgreSQL setup finished! **
+
+INFO  ==> ** Starting PostgreSQL **
+  [1] FATAL:  database files are incompatible with server
+  [1] DETAIL:  The data directory was initialized by PostgreSQL version 10, which is not compatible with this version 11.3.
+```
+
+In this case, you should migrate the data from the old chart to the new one following an approach similar to that described in [this section](https://www.postgresql.org/docs/current/upgrading.html#UPGRADING-VIA-PGDUMPALL) from the official documentation. Basically, create a database dump in the old chart, move and restore it in the new one.
+
+### To 4.0.0
+
+This chart will use by default the Bitnami PostgreSQL container starting from version `10.7.0-r68`. This version moves the initialization logic from node.js to bash. This new version of the chart requires setting the `POSTGRES_PASSWORD` in the slaves as well, in order to properly configure the `pg_hba.conf` file. Users from previous versions of the chart are advised to upgrade immediately.
+
+IMPORTANT: If you do not want to upgrade the chart version then make sure you use the `10.7.0-r68` version of the container. Otherwise, you will get this error
+
+```
+The POSTGRESQL_PASSWORD environment variable is empty or not set. Set the environment variable ALLOW_EMPTY_PASSWORD=yes to allow the container to be started with blank passwords. This is recommended only for development
+```
+
+### To 3.0.0
+
+This releases make it possible to specify different nodeSelector, affinity and tolerations for master and slave pods.
+It also fixes an issue with `postgresql.master.fullname` helper template not obeying fullnameOverride.
+
+#### Breaking changes
+
+- `affinty` has been renamed to `master.affinity` and `slave.affinity`.
+- `tolerations` has been renamed to `master.tolerations` and `slave.tolerations`.
+- `nodeSelector` has been renamed to `master.nodeSelector` and `slave.nodeSelector`.
+
+### To 2.0.0
+
+In order to upgrade from the `0.X.X` branch to `1.X.X`, you should follow the below steps:
+
+- Obtain the service name (`SERVICE_NAME`) and password (`OLD_PASSWORD`) of the existing postgresql chart. You can find the instructions to obtain the password in the NOTES.txt, the service name can be obtained by running
+
+```console
+$ kubectl get svc
+```
+
+- Install (not upgrade) the new version
+
+```console
+$ helm repo update
+$ helm install my-release bitnami/postgresql
+```
+
+- Connect to the new pod (you can obtain the name by running `kubectl get pods`):
+
+```console
+$ kubectl exec -it NAME bash
+```
+
+- Once logged in, create a dump file from the previous database using `pg_dump`, for that we should connect to the previous postgresql chart:
+
+```console
+$ pg_dump -h SERVICE_NAME -U postgres DATABASE_NAME > /tmp/backup.sql
+```
+
+After run above command you should be prompted for a password, this password is the previous chart password (`OLD_PASSWORD`).
+This operation could take some time depending on the database size.
+
+- Once you have the backup file, you can restore it with a command like the one below:
+
+```console
+$ psql -U postgres DATABASE_NAME < /tmp/backup.sql
+```
+
+In this case, you are accessing to the local postgresql, so the password should be the new one (you can find it in NOTES.txt).
+
+If you want to restore the database and the database schema does not exist, it is necessary to first follow the steps described below.
+
+```console
+$ psql -U postgres
+postgres=# drop database DATABASE_NAME;
+postgres=# create database DATABASE_NAME;
+postgres=# create user USER_NAME;
+postgres=# alter role USER_NAME with password 'BITNAMI_USER_PASSWORD';
+postgres=# grant all privileges on database DATABASE_NAME to USER_NAME;
+postgres=# alter database DATABASE_NAME owner to USER_NAME;
+```
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/.helmignore b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/.helmignore
new file mode 100644
index 0000000000..50af031725
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/.helmignore
@@ -0,0 +1,22 @@
+# Patterns to ignore when building packages.
+# This supports shell glob matching, relative path matching, and
+# negation (prefixed with !). Only one pattern per line.
+.DS_Store
+# Common VCS dirs
+.git/
+.gitignore
+.bzr/
+.bzrignore
+.hg/
+.hgignore
+.svn/
+# Common backup files
+*.swp
+*.bak
+*.tmp
+*~
+# Various IDEs
+.project
+.idea/
+*.tmproj
+.vscode/
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/Chart.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/Chart.yaml
new file mode 100644
index 0000000000..bcc3808d08
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/Chart.yaml
@@ -0,0 +1,23 @@
+annotations:
+  category: Infrastructure
+apiVersion: v2
+appVersion: 1.4.2
+description: A Library Helm Chart for grouping common logic between bitnami charts.
+  This chart is not deployable by itself.
+home: https://github.com/bitnami/charts/tree/master/bitnami/common
+icon: https://bitnami.com/downloads/logos/bitnami-mark.png
+keywords:
+- common
+- helper
+- template
+- function
+- bitnami
+maintainers:
+- email: containers@bitnami.com
+  name: Bitnami
+name: common
+sources:
+- https://github.com/bitnami/charts
+- http://www.bitnami.com/
+type: library
+version: 1.4.2
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/README.md b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/README.md
new file mode 100644
index 0000000000..7287cbb5fc
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/README.md
@@ -0,0 +1,322 @@
+# Bitnami Common Library Chart
+
+A [Helm Library Chart](https://helm.sh/docs/topics/library_charts/#helm) for grouping common logic between bitnami charts.
+
+## TL;DR
+
+```yaml
+dependencies:
+  - name: common
+    version: 0.x.x
+    repository: https://charts.bitnami.com/bitnami
+```
+
+```bash
+$ helm dependency update
+```
+
+```yaml
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ include "common.names.fullname" . }}
+data:
+  myvalue: "Hello World"
+```
+
+## Introduction
+
+This chart provides a common template helpers which can be used to develop new charts using [Helm](https://helm.sh) package manager.
+
+Bitnami charts can be used with [Kubeapps](https://kubeapps.com/) for deployment and management of Helm Charts in clusters. This Helm chart has been tested on top of [Bitnami Kubernetes Production Runtime](https://kubeprod.io/) (BKPR). Deploy BKPR to get automated TLS certificates, logging and monitoring for your applications.
+
+## Prerequisites
+
+- Kubernetes 1.12+
+- Helm 3.1.0
+
+## Parameters
+
+The following table lists the helpers available in the library which are scoped in different sections.
+
+### Affinities
+
+| Helper identifier             | Description                                          | Expected Input                                 |
+|-------------------------------|------------------------------------------------------|------------------------------------------------|
+| `common.affinities.node.soft` | Return a soft nodeAffinity definition                | `dict "key" "FOO" "values" (list "BAR" "BAZ")` |
+| `common.affinities.node.hard` | Return a hard nodeAffinity definition                | `dict "key" "FOO" "values" (list "BAR" "BAZ")` |
+| `common.affinities.pod.soft`  | Return a soft podAffinity/podAntiAffinity definition | `dict "component" "FOO" "context" $`           |
+| `common.affinities.pod.hard`  | Return a hard podAffinity/podAntiAffinity definition | `dict "component" "FOO" "context" $`           |
+
+### Capabilities
+
+| Helper identifier                            | Description                                                                                    | Expected Input    |
+|----------------------------------------------|------------------------------------------------------------------------------------------------|-------------------|
+| `common.capabilities.kubeVersion`            | Return the target Kubernetes version (using client default if .Values.kubeVersion is not set). | `.` Chart context |
+| `common.capabilities.deployment.apiVersion`  | Return the appropriate apiVersion for deployment.                                              | `.` Chart context |
+| `common.capabilities.statefulset.apiVersion` | Return the appropriate apiVersion for statefulset.                                             | `.` Chart context |
+| `common.capabilities.ingress.apiVersion`     | Return the appropriate apiVersion for ingress.                                                 | `.` Chart context |
+| `common.capabilities.rbac.apiVersion`        | Return the appropriate apiVersion for RBAC resources.                                          | `.` Chart context |
+| `common.capabilities.crd.apiVersion`         | Return the appropriate apiVersion for CRDs.                                                    | `.` Chart context |
+| `common.capabilities.supportsHelmVersion`    | Returns true if the used Helm version is 3.3+                                                  | `.` Chart context |
+
+### Errors
+
+| Helper identifier                       | Description                                                                                                                                                            | Expected Input                                                                      |
+|-----------------------------------------|------------------------------------------------------------------------------------------------------------------------------------------------------------------------|-------------------------------------------------------------------------------------|
+| `common.errors.upgrade.passwords.empty` | It will ensure required passwords are given when we are upgrading a chart. If `validationErrors` is not empty it will throw an error and will stop the upgrade action. | `dict "validationErrors" (list $validationError00 $validationError01)  "context" $` |
+
+### Images
+
+| Helper identifier           | Description                                          | Expected Input                                                                                          |
+|-----------------------------|------------------------------------------------------|---------------------------------------------------------------------------------------------------------|
+| `common.images.image`       | Return the proper and full image name                | `dict "imageRoot" .Values.path.to.the.image "global" $`, see [ImageRoot](#imageroot) for the structure. |
+| `common.images.pullSecrets` | Return the proper Docker Image Registry Secret Names | `dict "images" (list .Values.path.to.the.image1, .Values.path.to.the.image2) "global" .Values.global`   |
+
+### Ingress
+
+| Helper identifier        | Description                                                          | Expected Input                                                                                                                                                                   |
+|--------------------------|----------------------------------------------------------------------|----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
+| `common.ingress.backend` | Generate a proper Ingress backend entry depending on the API version | `dict "serviceName" "foo" "servicePort" "bar"`, see the [Ingress deprecation notice](https://kubernetes.io/blog/2019/07/18/api-deprecations-in-1-16/) for the syntax differences |
+
+### Labels
+
+| Helper identifier           | Description                                          | Expected Input    |
+|-----------------------------|------------------------------------------------------|-------------------|
+| `common.labels.standard`    | Return Kubernetes standard labels                    | `.` Chart context |
+| `common.labels.matchLabels` | Return the proper Docker Image Registry Secret Names | `.` Chart context |
+
+### Names
+
+| Helper identifier       | Description                                                | Expected Inpput   |
+|-------------------------|------------------------------------------------------------|-------------------|
+| `common.names.name`     | Expand the name of the chart or use `.Values.nameOverride` | `.` Chart context |
+| `common.names.fullname` | Create a default fully qualified app name.                 | `.` Chart context |
+| `common.names.chart`    | Chart name plus version                                    | `.` Chart context |
+
+### Secrets
+
+| Helper identifier         | Description                                                  | Expected Input                                                                                                                                                                                                                  |
+|---------------------------|--------------------------------------------------------------|---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
+| `common.secrets.name`     | Generate the name of the secret.                             | `dict "existingSecret" .Values.path.to.the.existingSecret "defaultNameSuffix" "mySuffix" "context" $` see [ExistingSecret](#existingsecret) for the structure.                                                                  |
+| `common.secrets.key`      | Generate secret key.                                         | `dict "existingSecret" .Values.path.to.the.existingSecret "key" "keyName"` see [ExistingSecret](#existingsecret) for the structure.                                                                                             |
+| `common.passwords.manage` | Generate secret password or retrieve one if already created. | `dict "secret" "secret-name" "key" "keyName" "providedValues" (list "path.to.password1" "path.to.password2") "length" 10 "strong" false "chartName" "chartName" "context" $`, length, strong and chartNAme fields are optional. |
+| `common.secrets.exists`   | Returns whether a previous generated secret already exists.  | `dict "secret" "secret-name" "context" $`                                                                                                                                                                                       |
+
+### Storage
+
+| Helper identifier             | Description                           | Expected Input                                                                                                      |
+|-------------------------------|---------------------------------------|---------------------------------------------------------------------------------------------------------------------|
+| `common.affinities.node.soft` | Return a soft nodeAffinity definition | `dict "persistence" .Values.path.to.the.persistence "global" $`, see [Persistence](#persistence) for the structure. |
+
+### TplValues
+
+| Helper identifier         | Description                            | Expected Input                                                                                                                                           |
+|---------------------------|----------------------------------------|----------------------------------------------------------------------------------------------------------------------------------------------------------|
+| `common.tplvalues.render` | Renders a value that contains template | `dict "value" .Values.path.to.the.Value "context" $`, value is the value should rendered as template, context frequently is the chart context `$` or `.` |
+
+### Utils
+
+| Helper identifier              | Description                                                                              | Expected Input                                                         |
+|--------------------------------|------------------------------------------------------------------------------------------|------------------------------------------------------------------------|
+| `common.utils.fieldToEnvVar`   | Build environment variable name given a field.                                           | `dict "field" "my-password"`                                           |
+| `common.utils.secret.getvalue` | Print instructions to get a secret value.                                                | `dict "secret" "secret-name" "field" "secret-value-field" "context" $` |
+| `common.utils.getValueFromKey` | Gets a value from `.Values` object given its key path                                    | `dict "key" "path.to.key" "context" $`                                 |
+| `common.utils.getKeyFromList`  | Returns first `.Values` key with a defined value or first of the list if all non-defined | `dict "keys" (list "path.to.key1" "path.to.key2") "context" $`         |
+
+### Validations
+
+| Helper identifier                                | Description                                                                                                                   | Expected Input                                                                                                                                                                                                                                                           |
+|--------------------------------------------------|-------------------------------------------------------------------------------------------------------------------------------|--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
+| `common.validations.values.single.empty`         | Validate a value must not be empty.                                                                                           | `dict "valueKey" "path.to.value" "secret" "secret.name" "field" "my-password" "subchart" "subchart" "context" $` secret, field and subchart are optional. In case they are given, the helper will generate a how to get instruction. See [ValidateValue](#validatevalue) |
+| `common.validations.values.multiple.empty`       | Validate a multiple values must not be empty. It returns a shared error for all the values.                                   | `dict "required" (list $validateValueConf00 $validateValueConf01) "context" $`. See [ValidateValue](#validatevalue)                                                                                                                                                      |
+| `common.validations.values.mariadb.passwords`    | This helper will ensure required password for MariaDB are not empty. It returns a shared error for all the values.            | `dict "secret" "mariadb-secret" "subchart" "true" "context" $` subchart field is optional and could be true or false it depends on where you will use mariadb chart and the helper.                                                                                      |
+| `common.validations.values.postgresql.passwords` | This helper will ensure required password for PostgreSQL are not empty. It returns a shared error for all the values.         | `dict "secret" "postgresql-secret" "subchart" "true" "context" $` subchart field is optional and could be true or false it depends on where you will use postgresql chart and the helper.                                                                                |
+| `common.validations.values.redis.passwords`      | This helper will ensure required password for Redis<sup>TM</sup> are not empty. It returns a shared error for all the values. | `dict "secret" "redis-secret" "subchart" "true" "context" $` subchart field is optional and could be true or false it depends on where you will use redis chart and the helper.                                                                                          |
+| `common.validations.values.cassandra.passwords`  | This helper will ensure required password for Cassandra are not empty. It returns a shared error for all the values.          | `dict "secret" "cassandra-secret" "subchart" "true" "context" $` subchart field is optional and could be true or false it depends on where you will use cassandra chart and the helper.                                                                                  |
+| `common.validations.values.mongodb.passwords`    | This helper will ensure required password for MongoDB&reg; are not empty. It returns a shared error for all the values.            | `dict "secret" "mongodb-secret" "subchart" "true" "context" $` subchart field is optional and could be true or false it depends on where you will use mongodb chart and the helper.                                                                                      |
+
+### Warnings
+
+| Helper identifier            | Description                      | Expected Input                                             |
+|------------------------------|----------------------------------|------------------------------------------------------------|
+| `common.warnings.rollingTag` | Warning about using rolling tag. | `ImageRoot` see [ImageRoot](#imageroot) for the structure. |
+
+## Special input schemas
+
+### ImageRoot
+
+```yaml
+registry:
+  type: string
+  description: Docker registry where the image is located
+  example: docker.io
+
+repository:
+  type: string
+  description: Repository and image name
+  example: bitnami/nginx
+
+tag:
+  type: string
+  description: image tag
+  example: 1.16.1-debian-10-r63
+
+pullPolicy:
+  type: string
+  description: Specify a imagePullPolicy. Defaults to 'Always' if image tag is 'latest', else set to 'IfNotPresent'
+
+pullSecrets:
+  type: array
+  items:
+    type: string
+  description: Optionally specify an array of imagePullSecrets.
+
+debug:
+  type: boolean
+  description: Set to true if you would like to see extra information on logs
+  example: false
+
+## An instance would be:
+# registry: docker.io
+# repository: bitnami/nginx
+# tag: 1.16.1-debian-10-r63
+# pullPolicy: IfNotPresent
+# debug: false
+```
+
+### Persistence
+
+```yaml
+enabled:
+  type: boolean
+  description: Whether enable persistence.
+  example: true
+
+storageClass:
+  type: string
+  description: Ghost data Persistent Volume Storage Class, If set to "-", storageClassName: "" which disables dynamic provisioning.
+  example: "-"
+
+accessMode:
+  type: string
+  description: Access mode for the Persistent Volume Storage.
+  example: ReadWriteOnce
+
+size:
+  type: string
+  description: Size the Persistent Volume Storage.
+  example: 8Gi
+
+path:
+  type: string
+  description: Path to be persisted.
+  example: /bitnami
+
+## An instance would be:
+# enabled: true
+# storageClass: "-"
+# accessMode: ReadWriteOnce
+# size: 8Gi
+# path: /bitnami
+```
+
+### ExistingSecret
+
+```yaml
+name:
+  type: string
+  description: Name of the existing secret.
+  example: mySecret
+keyMapping:
+  description: Mapping between the expected key name and the name of the key in the existing secret.
+  type: object
+
+## An instance would be:
+# name: mySecret
+# keyMapping:
+#   password: myPasswordKey
+```
+
+#### Example of use
+
+When we store sensitive data for a deployment in a secret, some times we want to give to users the possibility of using theirs existing secrets.
+
+```yaml
+# templates/secret.yaml
+---
+apiVersion: v1
+kind: Secret
+metadata:
+  name: {{ include "common.names.fullname" . }}
+  labels:
+    app: {{ include "common.names.fullname" . }}
+type: Opaque
+data:
+  password: {{ .Values.password | b64enc | quote }}
+
+# templates/dpl.yaml
+---
+...
+      env:
+        - name: PASSWORD
+          valueFrom:
+            secretKeyRef:
+              name: {{ include "common.secrets.name" (dict "existingSecret" .Values.existingSecret "context" $) }}
+              key: {{ include "common.secrets.key" (dict "existingSecret" .Values.existingSecret "key" "password") }}
+...
+
+# values.yaml
+---
+name: mySecret
+keyMapping:
+  password: myPasswordKey
+```
+
+### ValidateValue
+
+#### NOTES.txt
+
+```console
+{{- $validateValueConf00 := (dict "valueKey" "path.to.value00" "secret" "secretName" "field" "password-00") -}}
+{{- $validateValueConf01 := (dict "valueKey" "path.to.value01" "secret" "secretName" "field" "password-01") -}}
+
+{{ include "common.validations.values.multiple.empty" (dict "required" (list $validateValueConf00 $validateValueConf01) "context" $) }}
+```
+
+If we force those values to be empty we will see some alerts
+
+```console
+$ helm install test mychart --set path.to.value00="",path.to.value01=""
+    'path.to.value00' must not be empty, please add '--set path.to.value00=$PASSWORD_00' to the command. To get the current value:
+
+        export PASSWORD_00=$(kubectl get secret --namespace default secretName -o jsonpath="{.data.password-00}" | base64 --decode)
+
+    'path.to.value01' must not be empty, please add '--set path.to.value01=$PASSWORD_01' to the command. To get the current value:
+
+        export PASSWORD_01=$(kubectl get secret --namespace default secretName -o jsonpath="{.data.password-01}" | base64 --decode)
+```
+
+## Upgrading
+
+### To 1.0.0
+
+[On November 13, 2020, Helm v2 support was formally finished](https://github.com/helm/charts#status-of-the-project), this major version is the result of the required changes applied to the Helm Chart to be able to incorporate the different features added in Helm v3 and to be consistent with the Helm project itself regarding the Helm v2 EOL.
+
+**What changes were introduced in this major version?**
+
+- Previous versions of this Helm Chart use `apiVersion: v1` (installable by both Helm 2 and 3), this Helm Chart was updated to `apiVersion: v2` (installable by Helm 3 only). [Here](https://helm.sh/docs/topics/charts/#the-apiversion-field) you can find more information about the `apiVersion` field.
+- Use `type: library`. [Here](https://v3.helm.sh/docs/faq/#library-chart-support) you can find more information.
+- The different fields present in the *Chart.yaml* file has been ordered alphabetically in a homogeneous way for all the Bitnami Helm Charts
+
+**Considerations when upgrading to this version**
+
+- If you want to upgrade to this version from a previous one installed with Helm v3, you shouldn't face any issues
+- If you want to upgrade to this version using Helm v2, this scenario is not supported as this version doesn't support Helm v2 anymore
+- If you installed the previous version with Helm v2 and wants to upgrade to this version with Helm v3, please refer to the [official Helm documentation](https://helm.sh/docs/topics/v2_v3_migration/#migration-use-cases) about migrating from Helm v2 to v3
+
+**Useful links**
+
+- https://docs.bitnami.com/tutorials/resolve-helm2-helm3-post-migration-issues/
+- https://helm.sh/docs/topics/v2_v3_migration/
+- https://helm.sh/blog/migrate-from-helm-v2-to-helm-v3/
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_affinities.tpl b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_affinities.tpl
new file mode 100644
index 0000000000..493a6dc7e4
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_affinities.tpl
@@ -0,0 +1,94 @@
+{{/* vim: set filetype=mustache: */}}
+
+{{/*
+Return a soft nodeAffinity definition 
+{{ include "common.affinities.nodes.soft" (dict "key" "FOO" "values" (list "BAR" "BAZ")) -}}
+*/}}
+{{- define "common.affinities.nodes.soft" -}}
+preferredDuringSchedulingIgnoredDuringExecution:
+  - preference:
+      matchExpressions:
+        - key: {{ .key }}
+          operator: In
+          values:
+            {{- range .values }}
+            - {{ . }}
+            {{- end }}
+    weight: 1
+{{- end -}}
+
+{{/*
+Return a hard nodeAffinity definition
+{{ include "common.affinities.nodes.hard" (dict "key" "FOO" "values" (list "BAR" "BAZ")) -}}
+*/}}
+{{- define "common.affinities.nodes.hard" -}}
+requiredDuringSchedulingIgnoredDuringExecution:
+  nodeSelectorTerms:
+    - matchExpressions:
+        - key: {{ .key }}
+          operator: In
+          values:
+            {{- range .values }}
+            - {{ . }}
+            {{- end }}
+{{- end -}}
+
+{{/*
+Return a nodeAffinity definition
+{{ include "common.affinities.nodes" (dict "type" "soft" "key" "FOO" "values" (list "BAR" "BAZ")) -}}
+*/}}
+{{- define "common.affinities.nodes" -}}
+  {{- if eq .type "soft" }}
+    {{- include "common.affinities.nodes.soft" . -}}
+  {{- else if eq .type "hard" }}
+    {{- include "common.affinities.nodes.hard" . -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Return a soft podAffinity/podAntiAffinity definition
+{{ include "common.affinities.pods.soft" (dict "component" "FOO" "context" $) -}}
+*/}}
+{{- define "common.affinities.pods.soft" -}}
+{{- $component := default "" .component -}}
+preferredDuringSchedulingIgnoredDuringExecution:
+  - podAffinityTerm:
+      labelSelector:
+        matchLabels: {{- (include "common.labels.matchLabels" .context) | nindent 10 }}
+          {{- if not (empty $component) }}
+          {{ printf "app.kubernetes.io/component: %s" $component }}
+          {{- end }}
+      namespaces:
+        - {{ .context.Release.Namespace | quote }}
+      topologyKey: kubernetes.io/hostname
+    weight: 1
+{{- end -}}
+
+{{/*
+Return a hard podAffinity/podAntiAffinity definition
+{{ include "common.affinities.pods.hard" (dict "component" "FOO" "context" $) -}}
+*/}}
+{{- define "common.affinities.pods.hard" -}}
+{{- $component := default "" .component -}}
+requiredDuringSchedulingIgnoredDuringExecution:
+  - labelSelector:
+      matchLabels: {{- (include "common.labels.matchLabels" .context) | nindent 8 }}
+        {{- if not (empty $component) }}
+        {{ printf "app.kubernetes.io/component: %s" $component }}
+        {{- end }}
+    namespaces:
+      - {{ .context.Release.Namespace | quote }}
+    topologyKey: kubernetes.io/hostname
+{{- end -}}
+
+{{/*
+Return a podAffinity/podAntiAffinity definition
+{{ include "common.affinities.pods" (dict "type" "soft" "key" "FOO" "values" (list "BAR" "BAZ")) -}}
+*/}}
+{{- define "common.affinities.pods" -}}
+  {{- if eq .type "soft" }}
+    {{- include "common.affinities.pods.soft" . -}}
+  {{- else if eq .type "hard" }}
+    {{- include "common.affinities.pods.hard" . -}}
+  {{- end -}}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_capabilities.tpl b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_capabilities.tpl
new file mode 100644
index 0000000000..4dde56a38d
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_capabilities.tpl
@@ -0,0 +1,95 @@
+{{/* vim: set filetype=mustache: */}}
+
+{{/*
+Return the target Kubernetes version
+*/}}
+{{- define "common.capabilities.kubeVersion" -}}
+{{- if .Values.global }}
+    {{- if .Values.global.kubeVersion }}
+    {{- .Values.global.kubeVersion -}}
+    {{- else }}
+    {{- default .Capabilities.KubeVersion.Version .Values.kubeVersion -}}
+    {{- end -}}
+{{- else }}
+{{- default .Capabilities.KubeVersion.Version .Values.kubeVersion -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return the appropriate apiVersion for deployment.
+*/}}
+{{- define "common.capabilities.deployment.apiVersion" -}}
+{{- if semverCompare "<1.14-0" (include "common.capabilities.kubeVersion" .) -}}
+{{- print "extensions/v1beta1" -}}
+{{- else -}}
+{{- print "apps/v1" -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return the appropriate apiVersion for statefulset.
+*/}}
+{{- define "common.capabilities.statefulset.apiVersion" -}}
+{{- if semverCompare "<1.14-0" (include "common.capabilities.kubeVersion" .) -}}
+{{- print "apps/v1beta1" -}}
+{{- else -}}
+{{- print "apps/v1" -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return the appropriate apiVersion for ingress.
+*/}}
+{{- define "common.capabilities.ingress.apiVersion" -}}
+{{- if .Values.ingress -}}
+{{- if .Values.ingress.apiVersion -}}
+{{- .Values.ingress.apiVersion -}}
+{{- else if semverCompare "<1.14-0" (include "common.capabilities.kubeVersion" .) -}}
+{{- print "extensions/v1beta1" -}}
+{{- else if semverCompare "<1.19-0" (include "common.capabilities.kubeVersion" .) -}}
+{{- print "networking.k8s.io/v1beta1" -}}
+{{- else -}}
+{{- print "networking.k8s.io/v1" -}}
+{{- end }}
+{{- else if semverCompare "<1.14-0" (include "common.capabilities.kubeVersion" .) -}}
+{{- print "extensions/v1beta1" -}}
+{{- else if semverCompare "<1.19-0" (include "common.capabilities.kubeVersion" .) -}}
+{{- print "networking.k8s.io/v1beta1" -}}
+{{- else -}}
+{{- print "networking.k8s.io/v1" -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return the appropriate apiVersion for RBAC resources.
+*/}}
+{{- define "common.capabilities.rbac.apiVersion" -}}
+{{- if semverCompare "<1.17-0" (include "common.capabilities.kubeVersion" .) -}}
+{{- print "rbac.authorization.k8s.io/v1beta1" -}}
+{{- else -}}
+{{- print "rbac.authorization.k8s.io/v1" -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return the appropriate apiVersion for CRDs.
+*/}}
+{{- define "common.capabilities.crd.apiVersion" -}}
+{{- if semverCompare "<1.19-0" (include "common.capabilities.kubeVersion" .) -}}
+{{- print "apiextensions.k8s.io/v1beta1" -}}
+{{- else -}}
+{{- print "apiextensions.k8s.io/v1" -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Returns true if the used Helm version is 3.3+.
+A way to check the used Helm version was not introduced until version 3.3.0 with .Capabilities.HelmVersion, which contains an additional "{}}"  structure.
+This check is introduced as a regexMatch instead of {{ if .Capabilities.HelmVersion }} because checking for the key HelmVersion in <3.3 results in a "interface not found" error.
+**To be removed when the catalog's minimun Helm version is 3.3**
+*/}}
+{{- define "common.capabilities.supportsHelmVersion" -}}
+{{- if regexMatch "{(v[0-9])*[^}]*}}$" (.Capabilities | toString ) }}
+  {{- true -}}
+{{- end -}}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_errors.tpl b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_errors.tpl
new file mode 100644
index 0000000000..a79cc2e322
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_errors.tpl
@@ -0,0 +1,23 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Through error when upgrading using empty passwords values that must not be empty.
+
+Usage:
+{{- $validationError00 := include "common.validations.values.single.empty" (dict "valueKey" "path.to.password00" "secret" "secretName" "field" "password-00") -}}
+{{- $validationError01 := include "common.validations.values.single.empty" (dict "valueKey" "path.to.password01" "secret" "secretName" "field" "password-01") -}}
+{{ include "common.errors.upgrade.passwords.empty" (dict "validationErrors" (list $validationError00 $validationError01) "context" $) }}
+
+Required password params:
+  - validationErrors - String - Required. List of validation strings to be return, if it is empty it won't throw error.
+  - context - Context - Required. Parent context.
+*/}}
+{{- define "common.errors.upgrade.passwords.empty" -}}
+  {{- $validationErrors := join "" .validationErrors -}}
+  {{- if and $validationErrors .context.Release.IsUpgrade -}}
+    {{- $errorString := "\nPASSWORDS ERROR: You must provide your current passwords when upgrading the release." -}}
+    {{- $errorString = print $errorString "\n                 Note that even after reinstallation, old credentials may be needed as they may be kept in persistent volume claims." -}}
+    {{- $errorString = print $errorString "\n                 Further information can be obtained at https://docs.bitnami.com/general/how-to/troubleshoot-helm-chart-issues/#credential-errors-while-upgrading-chart-releases" -}}
+    {{- $errorString = print $errorString "\n%s" -}}
+    {{- printf $errorString $validationErrors | fail -}}
+  {{- end -}}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_images.tpl b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_images.tpl
new file mode 100644
index 0000000000..60f04fd6e2
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_images.tpl
@@ -0,0 +1,47 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Return the proper image name
+{{ include "common.images.image" ( dict "imageRoot" .Values.path.to.the.image "global" $) }}
+*/}}
+{{- define "common.images.image" -}}
+{{- $registryName := .imageRoot.registry -}}
+{{- $repositoryName := .imageRoot.repository -}}
+{{- $tag := .imageRoot.tag | toString -}}
+{{- if .global }}
+    {{- if .global.imageRegistry }}
+     {{- $registryName = .global.imageRegistry -}}
+    {{- end -}}
+{{- end -}}
+{{- if $registryName }}
+{{- printf "%s/%s:%s" $registryName $repositoryName $tag -}}
+{{- else -}}
+{{- printf "%s:%s" $repositoryName $tag -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return the proper Docker Image Registry Secret Names
+{{ include "common.images.pullSecrets" ( dict "images" (list .Values.path.to.the.image1, .Values.path.to.the.image2) "global" .Values.global) }}
+*/}}
+{{- define "common.images.pullSecrets" -}}
+  {{- $pullSecrets := list }}
+
+  {{- if .global }}
+    {{- range .global.imagePullSecrets -}}
+      {{- $pullSecrets = append $pullSecrets . -}}
+    {{- end -}}
+  {{- end -}}
+
+  {{- range .images -}}
+    {{- range .pullSecrets -}}
+      {{- $pullSecrets = append $pullSecrets . -}}
+    {{- end -}}
+  {{- end -}}
+
+  {{- if (not (empty $pullSecrets)) }}
+imagePullSecrets:
+    {{- range $pullSecrets }}
+  - name: {{ . }}
+    {{- end }}
+  {{- end }}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_ingress.tpl b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_ingress.tpl
new file mode 100644
index 0000000000..622ef50e3c
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_ingress.tpl
@@ -0,0 +1,42 @@
+{{/* vim: set filetype=mustache: */}}
+
+{{/*
+Generate backend entry that is compatible with all Kubernetes API versions.
+
+Usage:
+{{ include "common.ingress.backend" (dict "serviceName" "backendName" "servicePort" "backendPort" "context" $) }}
+
+Params:
+  - serviceName - String. Name of an existing service backend
+  - servicePort - String/Int. Port name (or number) of the service. It will be translated to different yaml depending if it is a string or an integer.
+  - context - Dict - Required. The context for the template evaluation.
+*/}}
+{{- define "common.ingress.backend" -}}
+{{- $apiVersion := (include "common.capabilities.ingress.apiVersion" .context) -}}
+{{- if or (eq $apiVersion "extensions/v1beta1") (eq $apiVersion "networking.k8s.io/v1beta1") -}}
+serviceName: {{ .serviceName }}
+servicePort: {{ .servicePort }}
+{{- else -}}
+service:
+  name: {{ .serviceName }}
+  port:
+    {{- if typeIs "string" .servicePort }}
+    name: {{ .servicePort }}
+    {{- else if typeIs "int" .servicePort }}
+    number: {{ .servicePort }}
+    {{- end }}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Print "true" if the API pathType field is supported
+Usage:
+{{ include "common.ingress.supportsPathType" . }}
+*/}}
+{{- define "common.ingress.supportsPathType" -}}
+{{- if (semverCompare "<1.18-0" (include "common.capabilities.kubeVersion" .)) -}}
+{{- print "false" -}}
+{{- else -}}
+{{- print "true" -}}
+{{- end -}}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_labels.tpl b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_labels.tpl
new file mode 100644
index 0000000000..252066c7e2
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_labels.tpl
@@ -0,0 +1,18 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Kubernetes standard labels
+*/}}
+{{- define "common.labels.standard" -}}
+app.kubernetes.io/name: {{ include "common.names.name" . }}
+helm.sh/chart: {{ include "common.names.chart" . }}
+app.kubernetes.io/instance: {{ .Release.Name }}
+app.kubernetes.io/managed-by: {{ .Release.Service }}
+{{- end -}}
+
+{{/*
+Labels to use on deploy.spec.selector.matchLabels and svc.spec.selector
+*/}}
+{{- define "common.labels.matchLabels" -}}
+app.kubernetes.io/name: {{ include "common.names.name" . }}
+app.kubernetes.io/instance: {{ .Release.Name }}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_names.tpl b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_names.tpl
new file mode 100644
index 0000000000..adf2a74f48
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_names.tpl
@@ -0,0 +1,32 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Expand the name of the chart.
+*/}}
+{{- define "common.names.name" -}}
+{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Create chart name and version as used by the chart label.
+*/}}
+{{- define "common.names.chart" -}}
+{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Create a default fully qualified app name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+If release name contains chart name it will be used as a full name.
+*/}}
+{{- define "common.names.fullname" -}}
+{{- if .Values.fullnameOverride -}}
+{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" -}}
+{{- else -}}
+{{- $name := default .Chart.Name .Values.nameOverride -}}
+{{- if contains $name .Release.Name -}}
+{{- .Release.Name | trunc 63 | trimSuffix "-" -}}
+{{- else -}}
+{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+{{- end -}}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_secrets.tpl b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_secrets.tpl
new file mode 100644
index 0000000000..60b84a7019
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_secrets.tpl
@@ -0,0 +1,129 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Generate secret name.
+
+Usage:
+{{ include "common.secrets.name" (dict "existingSecret" .Values.path.to.the.existingSecret "defaultNameSuffix" "mySuffix" "context" $) }}
+
+Params:
+  - existingSecret - ExistingSecret/String - Optional. The path to the existing secrets in the values.yaml given by the user
+    to be used instead of the default one. Allows for it to be of type String (just the secret name) for backwards compatibility.
+    +info: https://github.com/bitnami/charts/tree/master/bitnami/common#existingsecret
+  - defaultNameSuffix - String - Optional. It is used only if we have several secrets in the same deployment.
+  - context - Dict - Required. The context for the template evaluation.
+*/}}
+{{- define "common.secrets.name" -}}
+{{- $name := (include "common.names.fullname" .context) -}}
+
+{{- if .defaultNameSuffix -}}
+{{- $name = printf "%s-%s" $name .defaultNameSuffix | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{- with .existingSecret -}}
+{{- if not (typeIs "string" .) -}}
+{{- with .name -}}
+{{- $name = . -}}
+{{- end -}}
+{{- else -}}
+{{- $name = . -}}
+{{- end -}}
+{{- end -}}
+
+{{- printf "%s" $name -}}
+{{- end -}}
+
+{{/*
+Generate secret key.
+
+Usage:
+{{ include "common.secrets.key" (dict "existingSecret" .Values.path.to.the.existingSecret "key" "keyName") }}
+
+Params:
+  - existingSecret - ExistingSecret/String - Optional. The path to the existing secrets in the values.yaml given by the user
+    to be used instead of the default one. Allows for it to be of type String (just the secret name) for backwards compatibility.
+    +info: https://github.com/bitnami/charts/tree/master/bitnami/common#existingsecret
+  - key - String - Required. Name of the key in the secret.
+*/}}
+{{- define "common.secrets.key" -}}
+{{- $key := .key -}}
+
+{{- if .existingSecret -}}
+  {{- if not (typeIs "string" .existingSecret) -}}
+    {{- if .existingSecret.keyMapping -}}
+      {{- $key = index .existingSecret.keyMapping $.key -}}
+    {{- end -}}
+  {{- end }}
+{{- end -}}
+
+{{- printf "%s" $key -}}
+{{- end -}}
+
+{{/*
+Generate secret password or retrieve one if already created.
+
+Usage:
+{{ include "common.secrets.passwords.manage" (dict "secret" "secret-name" "key" "keyName" "providedValues" (list "path.to.password1" "path.to.password2") "length" 10 "strong" false "chartName" "chartName" "context" $) }}
+
+Params:
+  - secret - String - Required - Name of the 'Secret' resource where the password is stored.
+  - key - String - Required - Name of the key in the secret.
+  - providedValues - List<String> - Required - The path to the validating value in the values.yaml, e.g: "mysql.password". Will pick first parameter with a defined value.
+  - length - int - Optional - Length of the generated random password.
+  - strong - Boolean - Optional - Whether to add symbols to the generated random password.
+  - chartName - String - Optional - Name of the chart used when said chart is deployed as a subchart.
+  - context - Context - Required - Parent context.
+*/}}
+{{- define "common.secrets.passwords.manage" -}}
+
+{{- $password := "" }}
+{{- $subchart := "" }}
+{{- $chartName := default "" .chartName }}
+{{- $passwordLength := default 10 .length }}
+{{- $providedPasswordKey := include "common.utils.getKeyFromList" (dict "keys" .providedValues "context" $.context) }}
+{{- $providedPasswordValue := include "common.utils.getValueFromKey" (dict "key" $providedPasswordKey "context" $.context) }}
+{{- $secret := (lookup "v1" "Secret" $.context.Release.Namespace .secret) }}
+{{- if $secret }}
+  {{- if index $secret.data .key }}
+  {{- $password = index $secret.data .key }}
+  {{- end -}}
+{{- else if $providedPasswordValue }}
+  {{- $password = $providedPasswordValue | toString | b64enc | quote }}
+{{- else }}
+
+  {{- if .context.Values.enabled }}
+    {{- $subchart = $chartName }}
+  {{- end -}}
+
+  {{- $requiredPassword := dict "valueKey" $providedPasswordKey "secret" .secret "field" .key "subchart" $subchart "context" $.context -}}
+  {{- $requiredPasswordError := include "common.validations.values.single.empty" $requiredPassword -}}
+  {{- $passwordValidationErrors := list $requiredPasswordError -}}
+  {{- include "common.errors.upgrade.passwords.empty" (dict "validationErrors" $passwordValidationErrors "context" $.context) -}}
+  
+  {{- if .strong }}
+    {{- $subStr := list (lower (randAlpha 1)) (randNumeric 1) (upper (randAlpha 1)) | join "_" }}
+    {{- $password = randAscii $passwordLength }}
+    {{- $password = regexReplaceAllLiteral "\\W" $password "@" | substr 5 $passwordLength }}
+    {{- $password = printf "%s%s" $subStr $password | toString | shuffle | b64enc | quote }}
+  {{- else }}
+    {{- $password = randAlphaNum $passwordLength | b64enc | quote }}
+  {{- end }}
+{{- end -}}
+{{- printf "%s" $password -}}
+{{- end -}}
+
+{{/*
+Returns whether a previous generated secret already exists
+
+Usage:
+{{ include "common.secrets.exists" (dict "secret" "secret-name" "context" $) }}
+
+Params:
+  - secret - String - Required - Name of the 'Secret' resource where the password is stored.
+  - context - Context - Required - Parent context.
+*/}}
+{{- define "common.secrets.exists" -}}
+{{- $secret := (lookup "v1" "Secret" $.context.Release.Namespace .secret) }}
+{{- if $secret }}
+  {{- true -}}
+{{- end -}}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_storage.tpl b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_storage.tpl
new file mode 100644
index 0000000000..60e2a844f6
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_storage.tpl
@@ -0,0 +1,23 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Return  the proper Storage Class
+{{ include "common.storage.class" ( dict "persistence" .Values.path.to.the.persistence "global" $) }}
+*/}}
+{{- define "common.storage.class" -}}
+
+{{- $storageClass := .persistence.storageClass -}}
+{{- if .global -}}
+    {{- if .global.storageClass -}}
+        {{- $storageClass = .global.storageClass -}}
+    {{- end -}}
+{{- end -}}
+
+{{- if $storageClass -}}
+  {{- if (eq "-" $storageClass) -}}
+      {{- printf "storageClassName: \"\"" -}}
+  {{- else }}
+      {{- printf "storageClassName: %s" $storageClass -}}
+  {{- end -}}
+{{- end -}}
+
+{{- end -}}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_tplvalues.tpl b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_tplvalues.tpl
new file mode 100644
index 0000000000..2db166851b
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_tplvalues.tpl
@@ -0,0 +1,13 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Renders a value that contains template.
+Usage:
+{{ include "common.tplvalues.render" ( dict "value" .Values.path.to.the.Value "context" $) }}
+*/}}
+{{- define "common.tplvalues.render" -}}
+    {{- if typeIs "string" .value }}
+        {{- tpl .value .context }}
+    {{- else }}
+        {{- tpl (.value | toYaml) .context }}
+    {{- end }}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_utils.tpl b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_utils.tpl
new file mode 100644
index 0000000000..ea083a249f
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_utils.tpl
@@ -0,0 +1,62 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Print instructions to get a secret value.
+Usage:
+{{ include "common.utils.secret.getvalue" (dict "secret" "secret-name" "field" "secret-value-field" "context" $) }}
+*/}}
+{{- define "common.utils.secret.getvalue" -}}
+{{- $varname := include "common.utils.fieldToEnvVar" . -}}
+export {{ $varname }}=$(kubectl get secret --namespace {{ .context.Release.Namespace | quote }} {{ .secret }} -o jsonpath="{.data.{{ .field }}}" | base64 --decode)
+{{- end -}}
+
+{{/*
+Build env var name given a field
+Usage:
+{{ include "common.utils.fieldToEnvVar" dict "field" "my-password" }}
+*/}}
+{{- define "common.utils.fieldToEnvVar" -}}
+  {{- $fieldNameSplit := splitList "-" .field -}}
+  {{- $upperCaseFieldNameSplit := list -}}
+
+  {{- range $fieldNameSplit -}}
+    {{- $upperCaseFieldNameSplit = append $upperCaseFieldNameSplit ( upper . ) -}}
+  {{- end -}}
+
+  {{ join "_" $upperCaseFieldNameSplit }}
+{{- end -}}
+
+{{/*
+Gets a value from .Values given
+Usage:
+{{ include "common.utils.getValueFromKey" (dict "key" "path.to.key" "context" $) }}
+*/}}
+{{- define "common.utils.getValueFromKey" -}}
+{{- $splitKey := splitList "." .key -}}
+{{- $value := "" -}}
+{{- $latestObj := $.context.Values -}}
+{{- range $splitKey -}}
+  {{- if not $latestObj -}}
+    {{- printf "please review the entire path of '%s' exists in values" $.key | fail -}}
+  {{- end -}}
+  {{- $value = ( index $latestObj . ) -}}
+  {{- $latestObj = $value -}}
+{{- end -}}
+{{- printf "%v" (default "" $value) -}} 
+{{- end -}}
+
+{{/*
+Returns first .Values key with a defined value or first of the list if all non-defined
+Usage:
+{{ include "common.utils.getKeyFromList" (dict "keys" (list "path.to.key1" "path.to.key2") "context" $) }}
+*/}}
+{{- define "common.utils.getKeyFromList" -}}
+{{- $key := first .keys -}}
+{{- $reverseKeys := reverse .keys }}
+{{- range $reverseKeys }}
+  {{- $value := include "common.utils.getValueFromKey" (dict "key" . "context" $.context ) }}
+  {{- if $value -}}
+    {{- $key = . }}
+  {{- end -}}
+{{- end -}}
+{{- printf "%s" $key -}} 
+{{- end -}}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_warnings.tpl b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_warnings.tpl
new file mode 100644
index 0000000000..ae10fa41ee
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/_warnings.tpl
@@ -0,0 +1,14 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Warning about using rolling tag.
+Usage:
+{{ include "common.warnings.rollingTag" .Values.path.to.the.imageRoot }}
+*/}}
+{{- define "common.warnings.rollingTag" -}}
+
+{{- if and (contains "bitnami/" .repository) (not (.tag | toString | regexFind "-r\\d+$|sha256:")) }}
+WARNING: Rolling tag detected ({{ .repository }}:{{ .tag }}), please note that it is strongly recommended to avoid using rolling tags in a production environment.
++info https://docs.bitnami.com/containers/how-to/understand-rolling-tags-containers/
+{{- end }}
+
+{{- end -}}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/validations/_cassandra.tpl b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/validations/_cassandra.tpl
new file mode 100644
index 0000000000..8679ddffb1
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/validations/_cassandra.tpl
@@ -0,0 +1,72 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Validate Cassandra required passwords are not empty.
+
+Usage:
+{{ include "common.validations.values.cassandra.passwords" (dict "secret" "secretName" "subchart" false "context" $) }}
+Params:
+  - secret - String - Required. Name of the secret where Cassandra values are stored, e.g: "cassandra-passwords-secret"
+  - subchart - Boolean - Optional. Whether Cassandra is used as subchart or not. Default: false
+*/}}
+{{- define "common.validations.values.cassandra.passwords" -}}
+  {{- $existingSecret := include "common.cassandra.values.existingSecret" . -}}
+  {{- $enabled := include "common.cassandra.values.enabled" . -}}
+  {{- $dbUserPrefix := include "common.cassandra.values.key.dbUser" . -}}
+  {{- $valueKeyPassword := printf "%s.password" $dbUserPrefix -}}
+
+  {{- if and (not $existingSecret) (eq $enabled "true") -}}
+    {{- $requiredPasswords := list -}}
+
+    {{- $requiredPassword := dict "valueKey" $valueKeyPassword "secret" .secret "field" "cassandra-password" -}}
+    {{- $requiredPasswords = append $requiredPasswords $requiredPassword -}}
+
+    {{- include "common.validations.values.multiple.empty" (dict "required" $requiredPasswords "context" .context) -}}
+
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to get the right value for existingSecret.
+
+Usage:
+{{ include "common.cassandra.values.existingSecret" (dict "context" $) }}
+Params:
+  - subchart - Boolean - Optional. Whether Cassandra is used as subchart or not. Default: false
+*/}}
+{{- define "common.cassandra.values.existingSecret" -}}
+  {{- if .subchart -}}
+    {{- .context.Values.cassandra.dbUser.existingSecret | quote -}}
+  {{- else -}}
+    {{- .context.Values.dbUser.existingSecret | quote -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to get the right value for enabled cassandra.
+
+Usage:
+{{ include "common.cassandra.values.enabled" (dict "context" $) }}
+*/}}
+{{- define "common.cassandra.values.enabled" -}}
+  {{- if .subchart -}}
+    {{- printf "%v" .context.Values.cassandra.enabled -}}
+  {{- else -}}
+    {{- printf "%v" (not .context.Values.enabled) -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to get the right value for the key dbUser
+
+Usage:
+{{ include "common.cassandra.values.key.dbUser" (dict "subchart" "true" "context" $) }}
+Params:
+  - subchart - Boolean - Optional. Whether Cassandra is used as subchart or not. Default: false
+*/}}
+{{- define "common.cassandra.values.key.dbUser" -}}
+  {{- if .subchart -}}
+    cassandra.dbUser
+  {{- else -}}
+    dbUser
+  {{- end -}}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/validations/_mariadb.tpl b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/validations/_mariadb.tpl
new file mode 100644
index 0000000000..bb5ed7253d
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/validations/_mariadb.tpl
@@ -0,0 +1,103 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Validate MariaDB required passwords are not empty.
+
+Usage:
+{{ include "common.validations.values.mariadb.passwords" (dict "secret" "secretName" "subchart" false "context" $) }}
+Params:
+  - secret - String - Required. Name of the secret where MariaDB values are stored, e.g: "mysql-passwords-secret"
+  - subchart - Boolean - Optional. Whether MariaDB is used as subchart or not. Default: false
+*/}}
+{{- define "common.validations.values.mariadb.passwords" -}}
+  {{- $existingSecret := include "common.mariadb.values.auth.existingSecret" . -}}
+  {{- $enabled := include "common.mariadb.values.enabled" . -}}
+  {{- $architecture := include "common.mariadb.values.architecture" . -}}
+  {{- $authPrefix := include "common.mariadb.values.key.auth" . -}}
+  {{- $valueKeyRootPassword := printf "%s.rootPassword" $authPrefix -}}
+  {{- $valueKeyUsername := printf "%s.username" $authPrefix -}}
+  {{- $valueKeyPassword := printf "%s.password" $authPrefix -}}
+  {{- $valueKeyReplicationPassword := printf "%s.replicationPassword" $authPrefix -}}
+
+  {{- if and (not $existingSecret) (eq $enabled "true") -}}
+    {{- $requiredPasswords := list -}}
+
+    {{- $requiredRootPassword := dict "valueKey" $valueKeyRootPassword "secret" .secret "field" "mariadb-root-password" -}}
+    {{- $requiredPasswords = append $requiredPasswords $requiredRootPassword -}}
+
+    {{- $valueUsername := include "common.utils.getValueFromKey" (dict "key" $valueKeyUsername "context" .context) }}
+    {{- if not (empty $valueUsername) -}}
+        {{- $requiredPassword := dict "valueKey" $valueKeyPassword "secret" .secret "field" "mariadb-password" -}}
+        {{- $requiredPasswords = append $requiredPasswords $requiredPassword -}}
+    {{- end -}}
+
+    {{- if (eq $architecture "replication") -}}
+        {{- $requiredReplicationPassword := dict "valueKey" $valueKeyReplicationPassword "secret" .secret "field" "mariadb-replication-password" -}}
+        {{- $requiredPasswords = append $requiredPasswords $requiredReplicationPassword -}}
+    {{- end -}}
+
+    {{- include "common.validations.values.multiple.empty" (dict "required" $requiredPasswords "context" .context) -}}
+
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to get the right value for existingSecret.
+
+Usage:
+{{ include "common.mariadb.values.auth.existingSecret" (dict "context" $) }}
+Params:
+  - subchart - Boolean - Optional. Whether MariaDB is used as subchart or not. Default: false
+*/}}
+{{- define "common.mariadb.values.auth.existingSecret" -}}
+  {{- if .subchart -}}
+    {{- .context.Values.mariadb.auth.existingSecret | quote -}}
+  {{- else -}}
+    {{- .context.Values.auth.existingSecret | quote -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to get the right value for enabled mariadb.
+
+Usage:
+{{ include "common.mariadb.values.enabled" (dict "context" $) }}
+*/}}
+{{- define "common.mariadb.values.enabled" -}}
+  {{- if .subchart -}}
+    {{- printf "%v" .context.Values.mariadb.enabled -}}
+  {{- else -}}
+    {{- printf "%v" (not .context.Values.enabled) -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to get the right value for architecture
+
+Usage:
+{{ include "common.mariadb.values.architecture" (dict "subchart" "true" "context" $) }}
+Params:
+  - subchart - Boolean - Optional. Whether MariaDB is used as subchart or not. Default: false
+*/}}
+{{- define "common.mariadb.values.architecture" -}}
+  {{- if .subchart -}}
+    {{- .context.Values.mariadb.architecture -}}
+  {{- else -}}
+    {{- .context.Values.architecture -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to get the right value for the key auth
+
+Usage:
+{{ include "common.mariadb.values.key.auth" (dict "subchart" "true" "context" $) }}
+Params:
+  - subchart - Boolean - Optional. Whether MariaDB is used as subchart or not. Default: false
+*/}}
+{{- define "common.mariadb.values.key.auth" -}}
+  {{- if .subchart -}}
+    mariadb.auth
+  {{- else -}}
+    auth
+  {{- end -}}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/validations/_mongodb.tpl b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/validations/_mongodb.tpl
new file mode 100644
index 0000000000..7d5ecbccb4
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/validations/_mongodb.tpl
@@ -0,0 +1,108 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Validate MongoDB(R) required passwords are not empty.
+
+Usage:
+{{ include "common.validations.values.mongodb.passwords" (dict "secret" "secretName" "subchart" false "context" $) }}
+Params:
+  - secret - String - Required. Name of the secret where MongoDB(R) values are stored, e.g: "mongodb-passwords-secret"
+  - subchart - Boolean - Optional. Whether MongoDB(R) is used as subchart or not. Default: false
+*/}}
+{{- define "common.validations.values.mongodb.passwords" -}}
+  {{- $existingSecret := include "common.mongodb.values.auth.existingSecret" . -}}
+  {{- $enabled := include "common.mongodb.values.enabled" . -}}
+  {{- $authPrefix := include "common.mongodb.values.key.auth" . -}}
+  {{- $architecture := include "common.mongodb.values.architecture" . -}}
+  {{- $valueKeyRootPassword := printf "%s.rootPassword" $authPrefix -}}
+  {{- $valueKeyUsername := printf "%s.username" $authPrefix -}}
+  {{- $valueKeyDatabase := printf "%s.database" $authPrefix -}}
+  {{- $valueKeyPassword := printf "%s.password" $authPrefix -}}
+  {{- $valueKeyReplicaSetKey := printf "%s.replicaSetKey" $authPrefix -}}
+  {{- $valueKeyAuthEnabled := printf "%s.enabled" $authPrefix -}}
+
+  {{- $authEnabled := include "common.utils.getValueFromKey" (dict "key" $valueKeyAuthEnabled "context" .context) -}}
+
+  {{- if and (not $existingSecret) (eq $enabled "true") (eq $authEnabled "true") -}}
+    {{- $requiredPasswords := list -}}
+
+    {{- $requiredRootPassword := dict "valueKey" $valueKeyRootPassword "secret" .secret "field" "mongodb-root-password" -}}
+    {{- $requiredPasswords = append $requiredPasswords $requiredRootPassword -}}
+
+    {{- $valueUsername := include "common.utils.getValueFromKey" (dict "key" $valueKeyUsername "context" .context) }}
+    {{- $valueDatabase := include "common.utils.getValueFromKey" (dict "key" $valueKeyDatabase "context" .context) }}
+    {{- if and $valueUsername $valueDatabase -}}
+        {{- $requiredPassword := dict "valueKey" $valueKeyPassword "secret" .secret "field" "mongodb-password" -}}
+        {{- $requiredPasswords = append $requiredPasswords $requiredPassword -}}
+    {{- end -}}
+
+    {{- if (eq $architecture "replicaset") -}}
+        {{- $requiredReplicaSetKey := dict "valueKey" $valueKeyReplicaSetKey "secret" .secret "field" "mongodb-replica-set-key" -}}
+        {{- $requiredPasswords = append $requiredPasswords $requiredReplicaSetKey -}}
+    {{- end -}}
+
+    {{- include "common.validations.values.multiple.empty" (dict "required" $requiredPasswords "context" .context) -}}
+
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to get the right value for existingSecret.
+
+Usage:
+{{ include "common.mongodb.values.auth.existingSecret" (dict "context" $) }}
+Params:
+  - subchart - Boolean - Optional. Whether MongoDb is used as subchart or not. Default: false
+*/}}
+{{- define "common.mongodb.values.auth.existingSecret" -}}
+  {{- if .subchart -}}
+    {{- .context.Values.mongodb.auth.existingSecret | quote -}}
+  {{- else -}}
+    {{- .context.Values.auth.existingSecret | quote -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to get the right value for enabled mongodb.
+
+Usage:
+{{ include "common.mongodb.values.enabled" (dict "context" $) }}
+*/}}
+{{- define "common.mongodb.values.enabled" -}}
+  {{- if .subchart -}}
+    {{- printf "%v" .context.Values.mongodb.enabled -}}
+  {{- else -}}
+    {{- printf "%v" (not .context.Values.enabled) -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to get the right value for the key auth
+
+Usage:
+{{ include "common.mongodb.values.key.auth" (dict "subchart" "true" "context" $) }}
+Params:
+  - subchart - Boolean - Optional. Whether MongoDB(R) is used as subchart or not. Default: false
+*/}}
+{{- define "common.mongodb.values.key.auth" -}}
+  {{- if .subchart -}}
+    mongodb.auth
+  {{- else -}}
+    auth
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to get the right value for architecture
+
+Usage:
+{{ include "common.mongodb.values.architecture" (dict "subchart" "true" "context" $) }}
+Params:
+  - subchart - Boolean - Optional. Whether MariaDB is used as subchart or not. Default: false
+*/}}
+{{- define "common.mongodb.values.architecture" -}}
+  {{- if .subchart -}}
+    {{- .context.Values.mongodb.architecture -}}
+  {{- else -}}
+    {{- .context.Values.architecture -}}
+  {{- end -}}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/validations/_postgresql.tpl b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/validations/_postgresql.tpl
new file mode 100644
index 0000000000..992bcd3908
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/validations/_postgresql.tpl
@@ -0,0 +1,131 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Validate PostgreSQL required passwords are not empty.
+
+Usage:
+{{ include "common.validations.values.postgresql.passwords" (dict "secret" "secretName" "subchart" false "context" $) }}
+Params:
+  - secret - String - Required. Name of the secret where postgresql values are stored, e.g: "postgresql-passwords-secret"
+  - subchart - Boolean - Optional. Whether postgresql is used as subchart or not. Default: false
+*/}}
+{{- define "common.validations.values.postgresql.passwords" -}}
+  {{- $existingSecret := include "common.postgresql.values.existingSecret" . -}}
+  {{- $enabled := include "common.postgresql.values.enabled" . -}}
+  {{- $valueKeyPostgresqlPassword := include "common.postgresql.values.key.postgressPassword" . -}}
+  {{- $valueKeyPostgresqlReplicationEnabled := include "common.postgresql.values.key.replicationPassword" . -}}
+
+  {{- if and (not $existingSecret) (eq $enabled "true") -}}
+    {{- $requiredPasswords := list -}}
+
+    {{- $requiredPostgresqlPassword := dict "valueKey" $valueKeyPostgresqlPassword "secret" .secret "field" "postgresql-password" -}}
+    {{- $requiredPasswords = append $requiredPasswords $requiredPostgresqlPassword -}}
+
+    {{- $enabledReplication := include "common.postgresql.values.enabled.replication" . -}}
+    {{- if (eq $enabledReplication "true") -}}
+        {{- $requiredPostgresqlReplicationPassword := dict "valueKey" $valueKeyPostgresqlReplicationEnabled "secret" .secret "field" "postgresql-replication-password" -}}
+        {{- $requiredPasswords = append $requiredPasswords $requiredPostgresqlReplicationPassword -}}
+    {{- end -}}
+
+    {{- include "common.validations.values.multiple.empty" (dict "required" $requiredPasswords "context" .context) -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to decide whether evaluate global values.
+
+Usage:
+{{ include "common.postgresql.values.use.global" (dict "key" "key-of-global" "context" $) }}
+Params:
+  - key - String - Required. Field to be evaluated within global, e.g: "existingSecret"
+*/}}
+{{- define "common.postgresql.values.use.global" -}}
+  {{- if .context.Values.global -}}
+    {{- if .context.Values.global.postgresql -}}
+      {{- index .context.Values.global.postgresql .key | quote -}}
+    {{- end -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to get the right value for existingSecret.
+
+Usage:
+{{ include "common.postgresql.values.existingSecret" (dict "context" $) }}
+*/}}
+{{- define "common.postgresql.values.existingSecret" -}}
+  {{- $globalValue := include "common.postgresql.values.use.global" (dict "key" "existingSecret" "context" .context) -}}
+
+  {{- if .subchart -}}
+    {{- default (.context.Values.postgresql.existingSecret | quote) $globalValue -}}
+  {{- else -}}
+    {{- default (.context.Values.existingSecret | quote) $globalValue -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to get the right value for enabled postgresql.
+
+Usage:
+{{ include "common.postgresql.values.enabled" (dict "context" $) }}
+*/}}
+{{- define "common.postgresql.values.enabled" -}}
+  {{- if .subchart -}}
+    {{- printf "%v" .context.Values.postgresql.enabled -}}
+  {{- else -}}
+    {{- printf "%v" (not .context.Values.enabled) -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to get the right value for the key postgressPassword.
+
+Usage:
+{{ include "common.postgresql.values.key.postgressPassword" (dict "subchart" "true" "context" $) }}
+Params:
+  - subchart - Boolean - Optional. Whether postgresql is used as subchart or not. Default: false
+*/}}
+{{- define "common.postgresql.values.key.postgressPassword" -}}
+  {{- $globalValue := include "common.postgresql.values.use.global" (dict "key" "postgresqlUsername" "context" .context) -}}
+
+  {{- if not $globalValue -}}
+    {{- if .subchart -}}
+      postgresql.postgresqlPassword
+    {{- else -}}
+      postgresqlPassword
+    {{- end -}}
+  {{- else -}}
+    global.postgresql.postgresqlPassword
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to get the right value for enabled.replication.
+
+Usage:
+{{ include "common.postgresql.values.enabled.replication" (dict "subchart" "true" "context" $) }}
+Params:
+  - subchart - Boolean - Optional. Whether postgresql is used as subchart or not. Default: false
+*/}}
+{{- define "common.postgresql.values.enabled.replication" -}}
+  {{- if .subchart -}}
+    {{- printf "%v" .context.Values.postgresql.replication.enabled -}}
+  {{- else -}}
+    {{- printf "%v" .context.Values.replication.enabled -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to get the right value for the key replication.password.
+
+Usage:
+{{ include "common.postgresql.values.key.replicationPassword" (dict "subchart" "true" "context" $) }}
+Params:
+  - subchart - Boolean - Optional. Whether postgresql is used as subchart or not. Default: false
+*/}}
+{{- define "common.postgresql.values.key.replicationPassword" -}}
+  {{- if .subchart -}}
+    postgresql.replication.password
+  {{- else -}}
+    replication.password
+  {{- end -}}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/validations/_redis.tpl b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/validations/_redis.tpl
new file mode 100644
index 0000000000..3e2a47c039
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/validations/_redis.tpl
@@ -0,0 +1,72 @@
+
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Validate Redis(TM) required passwords are not empty.
+
+Usage:
+{{ include "common.validations.values.redis.passwords" (dict "secret" "secretName" "subchart" false "context" $) }}
+Params:
+  - secret - String - Required. Name of the secret where redis values are stored, e.g: "redis-passwords-secret"
+  - subchart - Boolean - Optional. Whether redis is used as subchart or not. Default: false
+*/}}
+{{- define "common.validations.values.redis.passwords" -}}
+  {{- $existingSecret := include "common.redis.values.existingSecret" . -}}
+  {{- $enabled := include "common.redis.values.enabled" . -}}
+  {{- $valueKeyPrefix := include "common.redis.values.keys.prefix" . -}}
+  {{- $valueKeyRedisPassword := printf "%s%s" $valueKeyPrefix "password" -}}
+  {{- $valueKeyRedisUsePassword := printf "%s%s" $valueKeyPrefix "usePassword" -}}
+
+  {{- if and (not $existingSecret) (eq $enabled "true") -}}
+    {{- $requiredPasswords := list -}}
+
+    {{- $usePassword := include "common.utils.getValueFromKey" (dict "key" $valueKeyRedisUsePassword "context" .context) -}}
+    {{- if eq $usePassword "true" -}}
+      {{- $requiredRedisPassword := dict "valueKey" $valueKeyRedisPassword "secret" .secret "field" "redis-password" -}}
+      {{- $requiredPasswords = append $requiredPasswords $requiredRedisPassword -}}
+    {{- end -}}
+
+    {{- include "common.validations.values.multiple.empty" (dict "required" $requiredPasswords "context" .context) -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Redis Auxiliary function to get the right value for existingSecret.
+
+Usage:
+{{ include "common.redis.values.existingSecret" (dict "context" $) }}
+Params:
+  - subchart - Boolean - Optional. Whether Redis(TM) is used as subchart or not. Default: false
+*/}}
+{{- define "common.redis.values.existingSecret" -}}
+  {{- if .subchart -}}
+    {{- .context.Values.redis.existingSecret | quote -}}
+  {{- else -}}
+    {{- .context.Values.existingSecret | quote -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to get the right value for enabled redis.
+
+Usage:
+{{ include "common.redis.values.enabled" (dict "context" $) }}
+*/}}
+{{- define "common.redis.values.enabled" -}}
+  {{- if .subchart -}}
+    {{- printf "%v" .context.Values.redis.enabled -}}
+  {{- else -}}
+    {{- printf "%v" (not .context.Values.enabled) -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Auxiliary function to get the right prefix path for the values
+
+Usage:
+{{ include "common.redis.values.key.prefix" (dict "subchart" "true" "context" $) }}
+Params:
+  - subchart - Boolean - Optional. Whether redis is used as subchart or not. Default: false
+*/}}
+{{- define "common.redis.values.keys.prefix" -}}
+  {{- if .subchart -}}redis.{{- else -}}{{- end -}}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/validations/_validations.tpl b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/validations/_validations.tpl
new file mode 100644
index 0000000000..9a814cf40d
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/templates/validations/_validations.tpl
@@ -0,0 +1,46 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Validate values must not be empty.
+
+Usage:
+{{- $validateValueConf00 := (dict "valueKey" "path.to.value" "secret" "secretName" "field" "password-00") -}}
+{{- $validateValueConf01 := (dict "valueKey" "path.to.value" "secret" "secretName" "field" "password-01") -}}
+{{ include "common.validations.values.empty" (dict "required" (list $validateValueConf00 $validateValueConf01) "context" $) }}
+
+Validate value params:
+  - valueKey - String - Required. The path to the validating value in the values.yaml, e.g: "mysql.password"
+  - secret - String - Optional. Name of the secret where the validating value is generated/stored, e.g: "mysql-passwords-secret"
+  - field - String - Optional. Name of the field in the secret data, e.g: "mysql-password"
+*/}}
+{{- define "common.validations.values.multiple.empty" -}}
+  {{- range .required -}}
+    {{- include "common.validations.values.single.empty" (dict "valueKey" .valueKey "secret" .secret "field" .field "context" $.context) -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Validate a value must not be empty.
+
+Usage:
+{{ include "common.validations.value.empty" (dict "valueKey" "mariadb.password" "secret" "secretName" "field" "my-password" "subchart" "subchart" "context" $) }}
+
+Validate value params:
+  - valueKey - String - Required. The path to the validating value in the values.yaml, e.g: "mysql.password"
+  - secret - String - Optional. Name of the secret where the validating value is generated/stored, e.g: "mysql-passwords-secret"
+  - field - String - Optional. Name of the field in the secret data, e.g: "mysql-password"
+  - subchart - String - Optional - Name of the subchart that the validated password is part of.
+*/}}
+{{- define "common.validations.values.single.empty" -}}
+  {{- $value := include "common.utils.getValueFromKey" (dict "key" .valueKey "context" .context) }}
+  {{- $subchart := ternary "" (printf "%s." .subchart) (empty .subchart) }}
+
+  {{- if not $value -}}
+    {{- $varname := "my-value" -}}
+    {{- $getCurrentValue := "" -}}
+    {{- if and .secret .field -}}
+      {{- $varname = include "common.utils.fieldToEnvVar" . -}}
+      {{- $getCurrentValue = printf " To get the current value:\n\n        %s\n" (include "common.utils.secret.getvalue" .) -}}
+    {{- end -}}
+    {{- printf "\n    '%s' must not be empty, please add '--set %s%s=$%s' to the command.%s" .valueKey $subchart .valueKey $varname $getCurrentValue -}}
+  {{- end -}}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/values.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/values.yaml
new file mode 100644
index 0000000000..9ecdc93f58
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/charts/common/values.yaml
@@ -0,0 +1,3 @@
+## bitnami/common
+## It is required by CI/CD tools and processes.
+exampleValue: common-chart
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/ci/commonAnnotations.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/ci/commonAnnotations.yaml
new file mode 100644
index 0000000000..97e18a4cc0
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/ci/commonAnnotations.yaml
@@ -0,0 +1,3 @@
+commonAnnotations:
+  helm.sh/hook: "\"pre-install, pre-upgrade\""
+  helm.sh/hook-weight: "-1"
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/ci/default-values.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/ci/default-values.yaml
new file mode 100644
index 0000000000..fc2ba605ad
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/ci/default-values.yaml
@@ -0,0 +1 @@
+# Leave this file empty to ensure that CI runs builds against the default configuration in values.yaml.
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/ci/shmvolume-disabled-values.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/ci/shmvolume-disabled-values.yaml
new file mode 100644
index 0000000000..347d3b40a8
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/ci/shmvolume-disabled-values.yaml
@@ -0,0 +1,2 @@
+shmVolume:
+  enabled: false
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/files/README.md b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/files/README.md
new file mode 100644
index 0000000000..1813a2feaa
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/files/README.md
@@ -0,0 +1 @@
+Copy here your postgresql.conf and/or pg_hba.conf files to use it as a config map.
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/files/conf.d/README.md b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/files/conf.d/README.md
new file mode 100644
index 0000000000..184c1875d5
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/files/conf.d/README.md
@@ -0,0 +1,4 @@
+If you don't want to provide the whole configuration file and only specify certain parameters, you can copy here your extended `.conf` files.
+These files will be injected as a config maps and add/overwrite the default configuration using the `include_dir` directive that allows settings to be loaded from files other than the default `postgresql.conf`.
+
+More info in the [bitnami-docker-postgresql README](https://github.com/bitnami/bitnami-docker-postgresql#configuration-file).
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/files/docker-entrypoint-initdb.d/README.md b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/files/docker-entrypoint-initdb.d/README.md
new file mode 100644
index 0000000000..cba38091e0
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/files/docker-entrypoint-initdb.d/README.md
@@ -0,0 +1,3 @@
+You can copy here your custom `.sh`, `.sql` or `.sql.gz` file so they are executed during the first boot of the image.
+
+More info in the [bitnami-docker-postgresql](https://github.com/bitnami/bitnami-docker-postgresql#initializing-a-new-instance) repository.
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/NOTES.txt b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/NOTES.txt
new file mode 100644
index 0000000000..4e98958c13
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/NOTES.txt
@@ -0,0 +1,59 @@
+** Please be patient while the chart is being deployed **
+
+PostgreSQL can be accessed via port {{ template "postgresql.port" . }} on the following DNS name from within your cluster:
+
+    {{ template "common.names.fullname" . }}.{{ .Release.Namespace }}.svc.cluster.local - Read/Write connection
+{{- if .Values.replication.enabled }}
+    {{ template "common.names.fullname" . }}-read.{{ .Release.Namespace }}.svc.cluster.local - Read only connection
+{{- end }}
+
+{{- if not (eq (include "postgresql.username" .) "postgres")  }}
+
+To get the password for "postgres" run:
+
+    export POSTGRES_ADMIN_PASSWORD=$(kubectl get secret --namespace {{ .Release.Namespace }} {{ template "postgresql.secretName" . }} -o jsonpath="{.data.postgresql-postgres-password}" | base64 --decode)
+{{- end }}
+
+To get the password for "{{ template "postgresql.username" . }}" run:
+
+    export POSTGRES_PASSWORD=$(kubectl get secret --namespace {{ .Release.Namespace }} {{ template "postgresql.secretName" . }} -o jsonpath="{.data.postgresql-password}" | base64 --decode)
+
+To connect to your database run the following command:
+
+    kubectl run {{ template "common.names.fullname" . }}-client --rm --tty -i --restart='Never' --namespace {{ .Release.Namespace }} --image {{ template "postgresql.image" . }} --env="PGPASSWORD=$POSTGRES_PASSWORD" {{- if and (.Values.networkPolicy.enabled) (not .Values.networkPolicy.allowExternal) }}
+   --labels="{{ template "common.names.fullname" . }}-client=true" {{- end }} --command -- psql --host {{ template "common.names.fullname" . }} -U {{ .Values.postgresqlUsername }} -d {{- if .Values.postgresqlDatabase }} {{ .Values.postgresqlDatabase }}{{- else }} postgres{{- end }} -p {{ template "postgresql.port" . }}
+
+{{ if and (.Values.networkPolicy.enabled) (not .Values.networkPolicy.allowExternal) }}
+Note: Since NetworkPolicy is enabled, only pods with label {{ template "common.names.fullname" . }}-client=true" will be able to connect to this PostgreSQL cluster.
+{{- end }}
+
+To connect to your database from outside the cluster execute the following commands:
+
+{{- if contains "NodePort" .Values.service.type }}
+
+    export NODE_IP=$(kubectl get nodes --namespace {{ .Release.Namespace }} -o jsonpath="{.items[0].status.addresses[0].address}")
+    export NODE_PORT=$(kubectl get --namespace {{ .Release.Namespace }} -o jsonpath="{.spec.ports[0].nodePort}" services {{ template "common.names.fullname" . }})
+    {{ if (include "postgresql.password" . )  }}PGPASSWORD="$POSTGRES_PASSWORD" {{ end }}psql --host $NODE_IP --port $NODE_PORT -U {{ .Values.postgresqlUsername }} -d {{- if .Values.postgresqlDatabase }} {{ .Values.postgresqlDatabase }}{{- else }} postgres{{- end }}
+
+{{- else if contains "LoadBalancer" .Values.service.type }}
+
+  NOTE: It may take a few minutes for the LoadBalancer IP to be available.
+        Watch the status with: 'kubectl get svc --namespace {{ .Release.Namespace }} -w {{ template "common.names.fullname" . }}'
+
+    export SERVICE_IP=$(kubectl get svc --namespace {{ .Release.Namespace }} {{ template "common.names.fullname" . }} --template "{{"{{ range (index .status.loadBalancer.ingress 0) }}{{.}}{{ end }}"}}")
+    {{ if (include "postgresql.password" . ) }}PGPASSWORD="$POSTGRES_PASSWORD" {{ end }}psql --host $SERVICE_IP --port {{ template "postgresql.port" . }} -U {{ .Values.postgresqlUsername }} -d {{- if .Values.postgresqlDatabase }} {{ .Values.postgresqlDatabase }}{{- else }} postgres{{- end }}
+
+{{- else if contains "ClusterIP" .Values.service.type }}
+
+    kubectl port-forward --namespace {{ .Release.Namespace }} svc/{{ template "common.names.fullname" . }} {{ template "postgresql.port" . }}:{{ template "postgresql.port" . }} &
+    {{ if (include "postgresql.password" . ) }}PGPASSWORD="$POSTGRES_PASSWORD" {{ end }}psql --host 127.0.0.1 -U {{ .Values.postgresqlUsername }} -d {{- if .Values.postgresqlDatabase }} {{ .Values.postgresqlDatabase }}{{- else }} postgres{{- end }} -p {{ template "postgresql.port" . }}
+
+{{- end }}
+
+{{- include "postgresql.validateValues" . -}}
+
+{{- include "common.warnings.rollingTag" .Values.image -}}
+
+{{- $passwordValidationErrors := include "common.validations.values.postgresql.passwords" (dict "secret" (include "common.names.fullname" .) "context" $) -}}
+
+{{- include "common.errors.upgrade.passwords.empty" (dict "validationErrors" (list $passwordValidationErrors) "context" $) -}}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/_helpers.tpl b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/_helpers.tpl
new file mode 100644
index 0000000000..1f98efe789
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/_helpers.tpl
@@ -0,0 +1,337 @@
+{{/* vim: set filetype=mustache: */}}
+
+{{/*
+Expand the name of the chart.
+*/}}
+{{- define "postgresql.name" -}}
+{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Create a default fully qualified app name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+*/}}
+{{- define "postgresql.primary.fullname" -}}
+{{- $name := default .Chart.Name .Values.nameOverride -}}
+{{- $fullname := default (printf "%s-%s" .Release.Name $name) .Values.fullnameOverride -}}
+{{- if .Values.replication.enabled -}}
+{{- printf "%s-%s" $fullname "primary" | trunc 63 | trimSuffix "-" -}}
+{{- else -}}
+{{- printf "%s" $fullname | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return the proper PostgreSQL image name
+*/}}
+{{- define "postgresql.image" -}}
+{{ include "common.images.image" (dict "imageRoot" .Values.image "global" .Values.global) }}
+{{- end -}}
+
+{{/*
+Return the proper PostgreSQL metrics image name
+*/}}
+{{- define "postgresql.metrics.image" -}}
+{{ include "common.images.image" (dict "imageRoot" .Values.metrics.image "global" .Values.global) }}
+{{- end -}}
+
+{{/*
+Return the proper image name (for the init container volume-permissions image)
+*/}}
+{{- define "postgresql.volumePermissions.image" -}}
+{{ include "common.images.image" (dict "imageRoot" .Values.volumePermissions.image "global" .Values.global) }}
+{{- end -}}
+
+{{/*
+Return the proper Docker Image Registry Secret Names
+*/}}
+{{- define "postgresql.imagePullSecrets" -}}
+{{ include "common.images.pullSecrets" (dict "images" (list .Values.image .Values.metrics.image .Values.volumePermissions.image) "global" .Values.global) }}
+{{- end -}}
+
+{{/*
+Return PostgreSQL postgres user password
+*/}}
+{{- define "postgresql.postgres.password" -}}
+{{- if .Values.global.postgresql.postgresqlPostgresPassword }}
+    {{- .Values.global.postgresql.postgresqlPostgresPassword -}}
+{{- else if .Values.postgresqlPostgresPassword -}}
+    {{- .Values.postgresqlPostgresPassword -}}
+{{- else -}}
+    {{- randAlphaNum 10 -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return PostgreSQL password
+*/}}
+{{- define "postgresql.password" -}}
+{{- if .Values.global.postgresql.postgresqlPassword }}
+    {{- .Values.global.postgresql.postgresqlPassword -}}
+{{- else if .Values.postgresqlPassword -}}
+    {{- .Values.postgresqlPassword -}}
+{{- else -}}
+    {{- randAlphaNum 10 -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return PostgreSQL replication password
+*/}}
+{{- define "postgresql.replication.password" -}}
+{{- if .Values.global.postgresql.replicationPassword }}
+    {{- .Values.global.postgresql.replicationPassword -}}
+{{- else if .Values.replication.password -}}
+    {{- .Values.replication.password -}}
+{{- else -}}
+    {{- randAlphaNum 10 -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return PostgreSQL username
+*/}}
+{{- define "postgresql.username" -}}
+{{- if .Values.global.postgresql.postgresqlUsername }}
+    {{- .Values.global.postgresql.postgresqlUsername -}}
+{{- else -}}
+    {{- .Values.postgresqlUsername -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return PostgreSQL replication username
+*/}}
+{{- define "postgresql.replication.username" -}}
+{{- if .Values.global.postgresql.replicationUser }}
+    {{- .Values.global.postgresql.replicationUser -}}
+{{- else -}}
+    {{- .Values.replication.user -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return PostgreSQL port
+*/}}
+{{- define "postgresql.port" -}}
+{{- if .Values.global.postgresql.servicePort }}
+    {{- .Values.global.postgresql.servicePort -}}
+{{- else -}}
+    {{- .Values.service.port -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return PostgreSQL created database
+*/}}
+{{- define "postgresql.database" -}}
+{{- if .Values.global.postgresql.postgresqlDatabase }}
+    {{- .Values.global.postgresql.postgresqlDatabase -}}
+{{- else if .Values.postgresqlDatabase -}}
+    {{- .Values.postgresqlDatabase -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Get the password secret.
+*/}}
+{{- define "postgresql.secretName" -}}
+{{- if .Values.global.postgresql.existingSecret }}
+    {{- printf "%s" (tpl .Values.global.postgresql.existingSecret $) -}}
+{{- else if .Values.existingSecret -}}
+    {{- printf "%s" (tpl .Values.existingSecret $) -}}
+{{- else -}}
+    {{- printf "%s" (include "common.names.fullname" .) -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return true if we should use an existingSecret.
+*/}}
+{{- define "postgresql.useExistingSecret" -}}
+{{- if or .Values.global.postgresql.existingSecret .Values.existingSecret -}}
+    {{- true -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return true if a secret object should be created
+*/}}
+{{- define "postgresql.createSecret" -}}
+{{- if not (include "postgresql.useExistingSecret" .) -}}
+    {{- true -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Get the configuration ConfigMap name.
+*/}}
+{{- define "postgresql.configurationCM" -}}
+{{- if .Values.configurationConfigMap -}}
+{{- printf "%s" (tpl .Values.configurationConfigMap $) -}}
+{{- else -}}
+{{- printf "%s-configuration" (include "common.names.fullname" .) -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Get the extended configuration ConfigMap name.
+*/}}
+{{- define "postgresql.extendedConfigurationCM" -}}
+{{- if .Values.extendedConfConfigMap -}}
+{{- printf "%s" (tpl .Values.extendedConfConfigMap $) -}}
+{{- else -}}
+{{- printf "%s-extended-configuration" (include "common.names.fullname" .) -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return true if a configmap should be mounted with PostgreSQL configuration
+*/}}
+{{- define "postgresql.mountConfigurationCM" -}}
+{{- if or (.Files.Glob "files/postgresql.conf") (.Files.Glob "files/pg_hba.conf") .Values.postgresqlConfiguration .Values.pgHbaConfiguration .Values.configurationConfigMap }}
+    {{- true -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Get the initialization scripts ConfigMap name.
+*/}}
+{{- define "postgresql.initdbScriptsCM" -}}
+{{- if .Values.initdbScriptsConfigMap -}}
+{{- printf "%s" (tpl .Values.initdbScriptsConfigMap $) -}}
+{{- else -}}
+{{- printf "%s-init-scripts" (include "common.names.fullname" .) -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Get the initialization scripts Secret name.
+*/}}
+{{- define "postgresql.initdbScriptsSecret" -}}
+{{- printf "%s" (tpl .Values.initdbScriptsSecret $) -}}
+{{- end -}}
+
+{{/*
+Get the metrics ConfigMap name.
+*/}}
+{{- define "postgresql.metricsCM" -}}
+{{- printf "%s-metrics" (include "common.names.fullname" .) -}}
+{{- end -}}
+
+{{/*
+Get the readiness probe command
+*/}}
+{{- define "postgresql.readinessProbeCommand" -}}
+- |
+{{- if (include "postgresql.database" .) }}
+  exec pg_isready -U {{ include "postgresql.username" . | quote }} -d "dbname={{ include "postgresql.database" . }} {{- if and .Values.tls.enabled .Values.tls.certCAFilename }} sslcert={{ include "postgresql.tlsCert" . }} sslkey={{ include "postgresql.tlsCertKey" . }}{{- end }}" -h 127.0.0.1 -p {{ template "postgresql.port" . }}
+{{- else }}
+  exec pg_isready -U {{ include "postgresql.username" . | quote }} {{- if and .Values.tls.enabled .Values.tls.certCAFilename }} -d "sslcert={{ include "postgresql.tlsCert" . }} sslkey={{ include "postgresql.tlsCertKey" . }}"{{- end }} -h 127.0.0.1 -p {{ template "postgresql.port" . }}
+{{- end }}
+{{- if contains "bitnami/" .Values.image.repository }}
+  [ -f /opt/bitnami/postgresql/tmp/.initialized ] || [ -f /bitnami/postgresql/.initialized ]
+{{- end -}}
+{{- end -}}
+
+{{/*
+Compile all warnings into a single message, and call fail.
+*/}}
+{{- define "postgresql.validateValues" -}}
+{{- $messages := list -}}
+{{- $messages := append $messages (include "postgresql.validateValues.ldapConfigurationMethod" .) -}}
+{{- $messages := append $messages (include "postgresql.validateValues.psp" .) -}}
+{{- $messages := append $messages (include "postgresql.validateValues.tls" .) -}}
+{{- $messages := without $messages "" -}}
+{{- $message := join "\n" $messages -}}
+
+{{- if $message -}}
+{{- printf "\nVALUES VALIDATION:\n%s" $message | fail -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Validate values of Postgresql - If ldap.url is used then you don't need the other settings for ldap
+*/}}
+{{- define "postgresql.validateValues.ldapConfigurationMethod" -}}
+{{- if and .Values.ldap.enabled (and (not (empty .Values.ldap.url)) (not (empty .Values.ldap.server))) }}
+postgresql: ldap.url, ldap.server
+    You cannot set both `ldap.url` and `ldap.server` at the same time.
+    Please provide a unique way to configure LDAP.
+    More info at https://www.postgresql.org/docs/current/auth-ldap.html
+{{- end -}}
+{{- end -}}
+
+{{/*
+Validate values of Postgresql - If PSP is enabled RBAC should be enabled too
+*/}}
+{{- define "postgresql.validateValues.psp" -}}
+{{- if and .Values.psp.create (not .Values.rbac.create) }}
+postgresql: psp.create, rbac.create
+    RBAC should be enabled if PSP is enabled in order for PSP to work.
+    More info at https://kubernetes.io/docs/concepts/policy/pod-security-policy/#authorizing-policies
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return the appropriate apiVersion for podsecuritypolicy.
+*/}}
+{{- define "podsecuritypolicy.apiVersion" -}}
+{{- if semverCompare "<1.10-0" .Capabilities.KubeVersion.GitVersion -}}
+{{- print "extensions/v1beta1" -}}
+{{- else -}}
+{{- print "policy/v1beta1" -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return the appropriate apiVersion for networkpolicy.
+*/}}
+{{- define "postgresql.networkPolicy.apiVersion" -}}
+{{- if semverCompare ">=1.4-0, <1.7-0" .Capabilities.KubeVersion.GitVersion -}}
+"extensions/v1beta1"
+{{- else if semverCompare "^1.7-0" .Capabilities.KubeVersion.GitVersion -}}
+"networking.k8s.io/v1"
+{{- end -}}
+{{- end -}}
+
+{{/*
+Validate values of Postgresql TLS - When TLS is enabled, so must be VolumePermissions
+*/}}
+{{- define "postgresql.validateValues.tls" -}}
+{{- if and .Values.tls.enabled (not .Values.volumePermissions.enabled) }}
+postgresql: tls.enabled, volumePermissions.enabled
+    When TLS is enabled you must enable volumePermissions as well to ensure certificates files have
+    the right permissions.
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return the path to the cert file.
+*/}}
+{{- define "postgresql.tlsCert" -}}
+{{- required "Certificate filename is required when TLS in enabled" .Values.tls.certFilename | printf "/opt/bitnami/postgresql/certs/%s" -}}
+{{- end -}}
+
+{{/*
+Return the path to the cert key file.
+*/}}
+{{- define "postgresql.tlsCertKey" -}}
+{{- required "Certificate Key filename is required when TLS in enabled" .Values.tls.certKeyFilename | printf "/opt/bitnami/postgresql/certs/%s" -}}
+{{- end -}}
+
+{{/*
+Return the path to the CA cert file.
+*/}}
+{{- define "postgresql.tlsCACert" -}}
+{{- printf "/opt/bitnami/postgresql/certs/%s" .Values.tls.certCAFilename -}}
+{{- end -}}
+
+{{/*
+Return the path to the CRL file.
+*/}}
+{{- define "postgresql.tlsCRL" -}}
+{{- if .Values.tls.crlFilename -}}
+{{- printf "/opt/bitnami/postgresql/certs/%s" .Values.tls.crlFilename -}}
+{{- end -}}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/configmap.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/configmap.yaml
new file mode 100644
index 0000000000..3a5ea18ae9
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/configmap.yaml
@@ -0,0 +1,31 @@
+{{ if and (or (.Files.Glob "files/postgresql.conf") (.Files.Glob "files/pg_hba.conf") .Values.postgresqlConfiguration .Values.pgHbaConfiguration) (not .Values.configurationConfigMap) }}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ template "common.names.fullname" . }}-configuration
+  labels:
+  {{- include "common.labels.standard" . | nindent 4 }}
+  {{- if .Values.commonAnnotations }}
+  annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
+  {{- end }}
+  namespace: {{ .Release.Namespace }}
+data:
+{{- if (.Files.Glob "files/postgresql.conf") }}
+{{ (.Files.Glob "files/postgresql.conf").AsConfig | indent 2 }}
+{{- else if .Values.postgresqlConfiguration }}
+  postgresql.conf: |
+{{- range $key, $value := default dict .Values.postgresqlConfiguration }}
+    {{- if kindIs "string" $value }}
+    {{ $key | snakecase }} = '{{ $value }}'
+    {{- else }}
+    {{ $key | snakecase }} = {{ $value }}
+    {{- end }}
+{{- end }}
+{{- end }}
+{{- if (.Files.Glob "files/pg_hba.conf") }}
+{{ (.Files.Glob "files/pg_hba.conf").AsConfig | indent 2 }}
+{{- else if .Values.pgHbaConfiguration }}
+  pg_hba.conf: |
+{{ .Values.pgHbaConfiguration | indent 4 }}
+{{- end }}
+{{ end }}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/extended-config-configmap.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/extended-config-configmap.yaml
new file mode 100644
index 0000000000..b0dad253b5
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/extended-config-configmap.yaml
@@ -0,0 +1,26 @@
+{{- if and (or (.Files.Glob "files/conf.d/*.conf") .Values.postgresqlExtendedConf) (not .Values.extendedConfConfigMap)}}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ template "common.names.fullname" . }}-extended-configuration
+  labels:
+  {{- include "common.labels.standard" . | nindent 4 }}
+  {{- if .Values.commonAnnotations }}
+  annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
+  {{- end }}
+  namespace: {{ .Release.Namespace }}
+data:
+{{- with .Files.Glob "files/conf.d/*.conf" }}
+{{ .AsConfig | indent 2 }}
+{{- end }}
+{{ with .Values.postgresqlExtendedConf }}
+  override.conf: |
+{{- range $key, $value := . }}
+    {{- if kindIs "string" $value }}
+    {{ $key | snakecase }} = '{{ $value }}'
+    {{- else }}
+    {{ $key | snakecase }} = {{ $value }}
+    {{- end }}
+{{- end }}
+{{- end }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/extra-list.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/extra-list.yaml
new file mode 100644
index 0000000000..9ac65f9e16
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/extra-list.yaml
@@ -0,0 +1,4 @@
+{{- range .Values.extraDeploy }}
+---
+{{ include "common.tplvalues.render" (dict "value" . "context" $) }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/initialization-configmap.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/initialization-configmap.yaml
new file mode 100644
index 0000000000..7796c67a93
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/initialization-configmap.yaml
@@ -0,0 +1,25 @@
+{{- if and (or (.Files.Glob "files/docker-entrypoint-initdb.d/*.{sh,sql,sql.gz}") .Values.initdbScripts) (not .Values.initdbScriptsConfigMap) }}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ template "common.names.fullname" . }}-init-scripts
+  labels:
+  {{- include "common.labels.standard" . | nindent 4 }}
+  {{- if .Values.commonAnnotations }}
+  annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
+  {{- end }}
+  namespace: {{ .Release.Namespace }}
+{{- with .Files.Glob "files/docker-entrypoint-initdb.d/*.sql.gz" }}
+binaryData:
+{{- range $path, $bytes := . }}
+  {{ base $path }}: {{ $.Files.Get $path | b64enc | quote }}
+{{- end }}
+{{- end }}
+data:
+{{- with .Files.Glob "files/docker-entrypoint-initdb.d/*.{sh,sql}" }}
+{{ .AsConfig | indent 2 }}
+{{- end }}
+{{- with .Values.initdbScripts }}
+{{ toYaml . | indent 2 }}
+{{- end }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/metrics-configmap.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/metrics-configmap.yaml
new file mode 100644
index 0000000000..fa539582bb
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/metrics-configmap.yaml
@@ -0,0 +1,14 @@
+{{- if and .Values.metrics.enabled .Values.metrics.customMetrics }}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ template "postgresql.metricsCM" . }}
+  labels:
+  {{- include "common.labels.standard" . | nindent 4 }}
+  {{- if .Values.commonAnnotations }}
+  annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
+  {{- end }}
+  namespace: {{ .Release.Namespace }}
+data:
+  custom-metrics.yaml: {{ toYaml .Values.metrics.customMetrics | quote }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/metrics-svc.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/metrics-svc.yaml
new file mode 100644
index 0000000000..af8b67e2ff
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/metrics-svc.yaml
@@ -0,0 +1,26 @@
+{{- if .Values.metrics.enabled }}
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ template "common.names.fullname" . }}-metrics
+  labels:
+  {{- include "common.labels.standard" . | nindent 4 }}
+  annotations:
+  {{- if .Values.commonAnnotations }}
+    {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
+  {{- end }}
+    {{- toYaml .Values.metrics.service.annotations | nindent 4 }}
+  namespace: {{ .Release.Namespace }}
+spec:
+  type: {{ .Values.metrics.service.type }}
+  {{- if and (eq .Values.metrics.service.type "LoadBalancer") .Values.metrics.service.loadBalancerIP }}
+  loadBalancerIP: {{ .Values.metrics.service.loadBalancerIP }}
+  {{- end }}
+  ports:
+    - name: http-metrics
+      port: 9187
+      targetPort: http-metrics
+  selector:
+  {{- include "common.labels.matchLabels" . | nindent 4 }}
+    role: primary
+{{- end }}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/networkpolicy.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/networkpolicy.yaml
new file mode 100644
index 0000000000..4f2740ea0c
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/networkpolicy.yaml
@@ -0,0 +1,39 @@
+{{- if .Values.networkPolicy.enabled }}
+kind: NetworkPolicy
+apiVersion: {{ template "postgresql.networkPolicy.apiVersion" . }}
+metadata:
+  name: {{ template "common.names.fullname" . }}
+  labels:
+  {{- include "common.labels.standard" . | nindent 4 }}
+  {{- if .Values.commonAnnotations }}
+  annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
+  {{- end }}
+  namespace: {{ .Release.Namespace }}
+spec:
+  podSelector:
+    matchLabels:
+    {{- include "common.labels.matchLabels" . | nindent 6 }}
+  ingress:
+    # Allow inbound connections
+    - ports:
+        - port: {{ template "postgresql.port" . }}
+      {{- if not .Values.networkPolicy.allowExternal }}
+      from:
+        - podSelector:
+            matchLabels:
+              {{ template "common.names.fullname" . }}-client: "true"
+          {{- if .Values.networkPolicy.explicitNamespacesSelector }}
+          namespaceSelector:
+{{ toYaml .Values.networkPolicy.explicitNamespacesSelector | indent 12 }}
+          {{- end }}
+        - podSelector:
+            matchLabels:
+            {{- include "common.labels.matchLabels" . | nindent 14 }}
+              role: read
+      {{- end }}
+    {{- if .Values.metrics.enabled }}
+    # Allow prometheus scrapes
+    - ports:
+        - port: 9187
+    {{- end }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/podsecuritypolicy.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/podsecuritypolicy.yaml
new file mode 100644
index 0000000000..0c49694fad
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/podsecuritypolicy.yaml
@@ -0,0 +1,38 @@
+{{- if .Values.psp.create }}
+apiVersion: {{ include "podsecuritypolicy.apiVersion" . }}
+kind: PodSecurityPolicy
+metadata:
+  name: {{ template "common.names.fullname" . }}
+  labels:
+  {{- include "common.labels.standard" . | nindent 4 }}
+  {{- if .Values.commonAnnotations }}
+  annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
+  {{- end }}
+  namespace: {{ .Release.Namespace }}
+spec:
+  privileged: false
+  volumes:
+    - 'configMap'
+    - 'secret'
+    - 'persistentVolumeClaim'
+    - 'emptyDir'
+    - 'projected'
+  hostNetwork: false
+  hostIPC: false
+  hostPID: false
+  runAsUser:
+    rule: 'RunAsAny'
+  seLinux:
+    rule: 'RunAsAny'
+  supplementalGroups:
+    rule: 'MustRunAs'
+    ranges:
+      - min: 1
+        max: 65535
+  fsGroup:
+    rule: 'MustRunAs'
+    ranges:
+      - min: 1
+        max: 65535
+  readOnlyRootFilesystem: false
+{{- end }}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/prometheusrule.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/prometheusrule.yaml
new file mode 100644
index 0000000000..d0f408c78f
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/prometheusrule.yaml
@@ -0,0 +1,23 @@
+{{- if and .Values.metrics.enabled .Values.metrics.prometheusRule.enabled }}
+apiVersion: monitoring.coreos.com/v1
+kind: PrometheusRule
+metadata:
+  name: {{ template "common.names.fullname" . }}
+{{- with .Values.metrics.prometheusRule.namespace }}
+  namespace: {{ . }}
+{{- end }}
+  labels:
+  {{- include "common.labels.standard" . | nindent 4 }}
+  {{- with .Values.metrics.prometheusRule.additionalLabels }}
+  {{- toYaml . | nindent 4 }}
+  {{- end }}
+  {{- if .Values.commonAnnotations }}
+  annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
+  {{- end }}
+spec:
+{{- with .Values.metrics.prometheusRule.rules }}
+  groups:
+    - name: {{ template "postgresql.name" $ }}
+      rules: {{ tpl (toYaml .) $ | nindent 8 }}
+{{- end }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/role.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/role.yaml
new file mode 100644
index 0000000000..017a5716b1
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/role.yaml
@@ -0,0 +1,20 @@
+{{- if .Values.rbac.create }}
+kind: Role
+apiVersion: {{ include "common.capabilities.rbac.apiVersion" . }}
+metadata:
+  name: {{ template "common.names.fullname" . }}
+  labels:
+  {{- include "common.labels.standard" . | nindent 4 }}
+  {{- if .Values.commonAnnotations }}
+  annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
+  {{- end }}
+  namespace: {{ .Release.Namespace }}
+rules:
+  {{- if .Values.psp.create }}
+  - apiGroups: ["extensions"]
+    resources: ["podsecuritypolicies"]
+    verbs: ["use"]
+    resourceNames:
+      - {{ template "common.names.fullname" . }}
+  {{- end }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/rolebinding.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/rolebinding.yaml
new file mode 100644
index 0000000000..189775a15a
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/rolebinding.yaml
@@ -0,0 +1,20 @@
+{{- if .Values.rbac.create }}
+kind: RoleBinding
+apiVersion: {{ include "common.capabilities.rbac.apiVersion" . }}
+metadata:
+  name: {{ template "common.names.fullname" . }}
+  labels:
+  {{- include "common.labels.standard" . | nindent 4 }}
+  {{- if .Values.commonAnnotations }}
+  annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
+  {{- end }}
+  namespace: {{ .Release.Namespace }}
+roleRef:
+  kind: Role
+  name: {{ template "common.names.fullname" . }}
+  apiGroup: rbac.authorization.k8s.io
+subjects:
+  - kind: ServiceAccount
+    name: {{ default (include "common.names.fullname" . ) .Values.serviceAccount.name }}
+    namespace: {{ .Release.Namespace }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/secrets.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/secrets.yaml
new file mode 100644
index 0000000000..d492cd593b
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/secrets.yaml
@@ -0,0 +1,24 @@
+{{- if (include "postgresql.createSecret" .) }}
+apiVersion: v1
+kind: Secret
+metadata:
+  name: {{ template "common.names.fullname" . }}
+  labels:
+  {{- include "common.labels.standard" . | nindent 4 }}
+  {{- if .Values.commonAnnotations }}
+  annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
+  {{- end }}
+  namespace: {{ .Release.Namespace }}
+type: Opaque
+data:
+  {{- if not (eq (include "postgresql.username" .) "postgres")  }}
+  postgresql-postgres-password: {{ include "postgresql.postgres.password" . | b64enc | quote }}
+  {{- end }}
+  postgresql-password: {{ include "postgresql.password" . | b64enc | quote }}
+  {{- if .Values.replication.enabled }}
+  postgresql-replication-password: {{ include "postgresql.replication.password" . | b64enc | quote }}
+  {{- end }}
+  {{- if (and .Values.ldap.enabled .Values.ldap.bind_password)}}
+  postgresql-ldap-password: {{ .Values.ldap.bind_password | b64enc | quote }}
+  {{- end }}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/serviceaccount.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/serviceaccount.yaml
new file mode 100644
index 0000000000..03f0f50e7d
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/serviceaccount.yaml
@@ -0,0 +1,12 @@
+{{- if and (.Values.serviceAccount.enabled) (not .Values.serviceAccount.name) }}
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  labels:
+  {{- include "common.labels.standard" . | nindent 4 }}
+  name: {{ template "common.names.fullname" . }}
+  {{- if .Values.commonAnnotations }}
+  annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
+  {{- end }}
+  namespace: {{ .Release.Namespace }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/servicemonitor.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/servicemonitor.yaml
new file mode 100644
index 0000000000..587ce85b87
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/servicemonitor.yaml
@@ -0,0 +1,33 @@
+{{- if and .Values.metrics.enabled .Values.metrics.serviceMonitor.enabled }}
+apiVersion: monitoring.coreos.com/v1
+kind: ServiceMonitor
+metadata:
+  name: {{ include "common.names.fullname" . }}
+  {{- if .Values.metrics.serviceMonitor.namespace }}
+  namespace: {{ .Values.metrics.serviceMonitor.namespace }}
+  {{- end }}
+  labels:
+  {{- include "common.labels.standard" . | nindent 4 }}
+    {{- if .Values.metrics.serviceMonitor.additionalLabels }}
+    {{- toYaml .Values.metrics.serviceMonitor.additionalLabels | nindent 4 }}
+    {{- end }}
+  {{- if .Values.commonAnnotations }}
+  annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
+  {{- end }}
+
+spec:
+  endpoints:
+    - port: http-metrics
+      {{- if .Values.metrics.serviceMonitor.interval }}
+      interval: {{ .Values.metrics.serviceMonitor.interval }}
+      {{- end }}
+      {{- if .Values.metrics.serviceMonitor.scrapeTimeout }}
+      scrapeTimeout: {{ .Values.metrics.serviceMonitor.scrapeTimeout }}
+      {{- end }}
+  namespaceSelector:
+    matchNames:
+      - {{ .Release.Namespace }}
+  selector:
+    matchLabels:
+    {{- include "common.labels.matchLabels" . | nindent 6 }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/statefulset-readreplicas.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/statefulset-readreplicas.yaml
new file mode 100644
index 0000000000..b038299bf6
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/statefulset-readreplicas.yaml
@@ -0,0 +1,411 @@
+{{- if .Values.replication.enabled }}
+{{- $readReplicasResources := coalesce .Values.readReplicas.resources .Values.resources -}}
+apiVersion: {{ include "common.capabilities.statefulset.apiVersion" . }}
+kind: StatefulSet
+metadata:
+  name: "{{ template "common.names.fullname" . }}-read"
+  labels: {{- include "common.labels.standard" . | nindent 4 }}
+    app.kubernetes.io/component: read
+{{- with .Values.readReplicas.labels }}
+{{ toYaml . | indent 4 }}
+{{- end }}
+  annotations:
+  {{- if .Values.commonAnnotations }}
+  {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
+  {{- end }}
+  {{- with .Values.readReplicas.annotations }}
+  {{- toYaml . | nindent 4 }}
+  {{- end }}
+  namespace: {{ .Release.Namespace }}
+spec:
+  serviceName: {{ template "common.names.fullname" . }}-headless
+  replicas: {{ .Values.replication.readReplicas }}
+  selector:
+    matchLabels:
+    {{- include "common.labels.matchLabels" . | nindent 6 }}
+      role: read
+  template:
+    metadata:
+      name: {{ template "common.names.fullname" . }}
+      labels:
+      {{- include "common.labels.standard" . | nindent 8 }}
+        app.kubernetes.io/component: read
+        role: read
+{{- with .Values.readReplicas.podLabels }}
+{{ toYaml . | indent 8 }}
+{{- end }}
+{{- with .Values.readReplicas.podAnnotations }}
+      annotations:
+{{ toYaml . | indent 8 }}
+{{- end }}
+    spec:
+      {{- if .Values.schedulerName }}
+      schedulerName: "{{ .Values.schedulerName }}"
+      {{- end }}
+{{- include "postgresql.imagePullSecrets" . | indent 6 }}
+      {{- if .Values.readReplicas.affinity }}
+      affinity: {{- include "common.tplvalues.render" (dict "value" .Values.readReplicas.affinity "context" $) | nindent 8 }}
+      {{- else }}
+      affinity:
+        podAffinity: {{- include "common.affinities.pods" (dict "type" .Values.readReplicas.podAffinityPreset "component" "read" "context" $) | nindent 10 }}
+        podAntiAffinity: {{- include "common.affinities.pods" (dict "type" .Values.readReplicas.podAntiAffinityPreset "component" "read" "context" $) | nindent 10 }}
+        nodeAffinity: {{- include "common.affinities.nodes" (dict "type" .Values.readReplicas.nodeAffinityPreset.type "key" .Values.readReplicas.nodeAffinityPreset.key "values" .Values.readReplicas.nodeAffinityPreset.values) | nindent 10 }}
+      {{- end }}
+      {{- if .Values.readReplicas.nodeSelector }}
+      nodeSelector: {{- include "common.tplvalues.render" (dict "value" .Values.readReplicas.nodeSelector "context" $) | nindent 8 }}
+      {{- end }}
+      {{- if .Values.readReplicas.tolerations }}
+      tolerations: {{- include "common.tplvalues.render" (dict "value" .Values.readReplicas.tolerations "context" $) | nindent 8 }}
+      {{- end }}
+      {{- if .Values.terminationGracePeriodSeconds }}
+      terminationGracePeriodSeconds: {{ .Values.terminationGracePeriodSeconds }}
+      {{- end }}
+      {{- if .Values.securityContext.enabled }}
+      securityContext: {{- omit .Values.securityContext "enabled" | toYaml | nindent 8 }}
+      {{- end }}
+      {{- if .Values.serviceAccount.enabled }}
+      serviceAccountName: {{ default (include "common.names.fullname" . ) .Values.serviceAccount.name}}
+      {{- end }}
+      {{- if or .Values.readReplicas.extraInitContainers (and .Values.volumePermissions.enabled (or .Values.persistence.enabled (and .Values.shmVolume.enabled .Values.shmVolume.chmod.enabled))) }}
+      initContainers:
+      {{- if and .Values.volumePermissions.enabled (or .Values.persistence.enabled (and .Values.shmVolume.enabled .Values.shmVolume.chmod.enabled) .Values.tls.enabled) }}
+        - name: init-chmod-data
+          image: {{ template "postgresql.volumePermissions.image" . }}
+          imagePullPolicy: {{ .Values.volumePermissions.image.pullPolicy | quote }}
+          {{- if .Values.resources }}
+          resources: {{- toYaml .Values.resources | nindent 12 }}
+          {{- end }}
+          command:
+            - /bin/sh
+            - -cx
+            - |
+              {{- if .Values.persistence.enabled }}
+              {{- if eq ( toString ( .Values.volumePermissions.securityContext.runAsUser )) "auto" }}
+              chown `id -u`:`id -G | cut -d " " -f2` {{ .Values.persistence.mountPath }}
+              {{- else }}
+              chown {{ .Values.containerSecurityContext.runAsUser }}:{{ .Values.securityContext.fsGroup }} {{ .Values.persistence.mountPath }}
+              {{- end }}
+              mkdir -p {{ .Values.persistence.mountPath }}/data {{- if (include "postgresql.mountConfigurationCM" .) }} {{ .Values.persistence.mountPath }}/conf {{- end }}
+              chmod 700 {{ .Values.persistence.mountPath }}/data {{- if (include "postgresql.mountConfigurationCM" .) }} {{ .Values.persistence.mountPath }}/conf {{- end }}
+              find {{ .Values.persistence.mountPath }} -mindepth 1 -maxdepth 1 {{- if not (include "postgresql.mountConfigurationCM" .) }} -not -name "conf" {{- end }} -not -name ".snapshot" -not -name "lost+found" | \
+              {{- if eq ( toString ( .Values.volumePermissions.securityContext.runAsUser )) "auto" }}
+                xargs chown -R `id -u`:`id -G | cut -d " " -f2`
+              {{- else }}
+                xargs chown -R {{ .Values.containerSecurityContext.runAsUser }}:{{ .Values.securityContext.fsGroup }}
+              {{- end }}
+              {{- end }}
+              {{- if and .Values.shmVolume.enabled .Values.shmVolume.chmod.enabled }}
+              chmod -R 777 /dev/shm
+              {{- end }}
+              {{- if .Values.tls.enabled }}
+              cp /tmp/certs/* /opt/bitnami/postgresql/certs/
+              {{- if eq ( toString ( .Values.volumePermissions.securityContext.runAsUser )) "auto" }}
+              chown -R `id -u`:`id -G | cut -d " " -f2` /opt/bitnami/postgresql/certs/
+              {{- else }}
+              chown -R {{ .Values.containerSecurityContext.runAsUser }}:{{ .Values.securityContext.fsGroup }} /opt/bitnami/postgresql/certs/
+              {{- end }}
+              chmod 600 {{ template "postgresql.tlsCertKey" . }}
+              {{- end }}
+          {{- if eq ( toString ( .Values.volumePermissions.securityContext.runAsUser )) "auto" }}
+          securityContext: {{- omit .Values.volumePermissions.securityContext "runAsUser" | toYaml | nindent 12 }}
+          {{- else }}
+          securityContext: {{- .Values.volumePermissions.securityContext | toYaml | nindent 12 }}
+          {{- end }}
+          volumeMounts:
+            {{ if .Values.persistence.enabled }}
+            - name: data
+              mountPath: {{ .Values.persistence.mountPath }}
+              subPath: {{ .Values.persistence.subPath }}
+            {{- end }}
+            {{- if .Values.shmVolume.enabled }}
+            - name: dshm
+              mountPath: /dev/shm
+            {{- end }}
+            {{- if .Values.tls.enabled }}
+            - name: raw-certificates
+              mountPath: /tmp/certs
+            - name: postgresql-certificates
+              mountPath: /opt/bitnami/postgresql/certs
+            {{- end }}
+      {{- end }}
+      {{- if .Values.readReplicas.extraInitContainers }}
+      {{- include "common.tplvalues.render" ( dict "value" .Values.readReplicas.extraInitContainers "context" $ ) | nindent 8 }}
+      {{- end }}
+      {{- end }}
+      {{- if .Values.readReplicas.priorityClassName }}
+      priorityClassName: {{ .Values.readReplicas.priorityClassName }}
+      {{- end }}
+      containers:
+        - name: {{ template "common.names.fullname" . }}
+          image: {{ template "postgresql.image" . }}
+          imagePullPolicy: "{{ .Values.image.pullPolicy }}"
+          {{- if $readReplicasResources }}
+          resources: {{- toYaml $readReplicasResources | nindent 12 }}
+          {{- end }}
+          {{- if .Values.containerSecurityContext.enabled }}
+          securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 12 }}
+          {{- end }}
+          env:
+            - name: BITNAMI_DEBUG
+              value: {{ ternary "true" "false" .Values.image.debug | quote }}
+            - name: POSTGRESQL_VOLUME_DIR
+              value: "{{ .Values.persistence.mountPath }}"
+            - name: POSTGRESQL_PORT_NUMBER
+              value: "{{ template "postgresql.port" . }}"
+            {{- if .Values.persistence.mountPath }}
+            - name: PGDATA
+              value: {{ .Values.postgresqlDataDir | quote }}
+            {{- end }}
+            - name: POSTGRES_REPLICATION_MODE
+              value: "slave"
+            - name: POSTGRES_REPLICATION_USER
+              value: {{ include "postgresql.replication.username" . | quote }}
+            {{- if .Values.usePasswordFile }}
+            - name: POSTGRES_REPLICATION_PASSWORD_FILE
+              value: "/opt/bitnami/postgresql/secrets/postgresql-replication-password"
+            {{- else }}
+            - name: POSTGRES_REPLICATION_PASSWORD
+              valueFrom:
+                secretKeyRef:
+                  name: {{ template "postgresql.secretName" . }}
+                  key: postgresql-replication-password
+            {{- end }}
+            - name: POSTGRES_CLUSTER_APP_NAME
+              value: {{ .Values.replication.applicationName }}
+            - name: POSTGRES_MASTER_HOST
+              value: {{ template "common.names.fullname" . }}
+            - name: POSTGRES_MASTER_PORT_NUMBER
+              value: {{ include "postgresql.port" . | quote }}
+            {{- if not (eq (include "postgresql.username" .) "postgres")  }}
+            {{- if .Values.usePasswordFile }}
+            - name: POSTGRES_POSTGRES_PASSWORD_FILE
+              value: "/opt/bitnami/postgresql/secrets/postgresql-postgres-password"
+            {{- else }}
+            - name: POSTGRES_POSTGRES_PASSWORD
+              valueFrom:
+                secretKeyRef:
+                  name: {{ template "postgresql.secretName" . }}
+                  key: postgresql-postgres-password
+            {{- end }}
+            {{- end }}
+            {{- if .Values.usePasswordFile }}
+            - name: POSTGRES_PASSWORD_FILE
+              value: "/opt/bitnami/postgresql/secrets/postgresql-password"
+            {{- else }}
+            - name: POSTGRES_PASSWORD
+              valueFrom:
+                secretKeyRef:
+                  name: {{ template "postgresql.secretName" . }}
+                  key: postgresql-password
+            {{- end }}
+            - name: POSTGRESQL_ENABLE_TLS
+              value: {{ ternary "yes" "no" .Values.tls.enabled | quote }}
+            {{- if .Values.tls.enabled }}
+            - name: POSTGRESQL_TLS_PREFER_SERVER_CIPHERS
+              value: {{ ternary "yes" "no" .Values.tls.preferServerCiphers | quote }}
+            - name: POSTGRESQL_TLS_CERT_FILE
+              value: {{ template "postgresql.tlsCert" . }}
+            - name: POSTGRESQL_TLS_KEY_FILE
+              value: {{ template "postgresql.tlsCertKey" . }}
+            {{- if .Values.tls.certCAFilename }}
+            - name: POSTGRESQL_TLS_CA_FILE
+              value: {{ template "postgresql.tlsCACert" . }}
+            {{- end }}
+            {{- if .Values.tls.crlFilename }}
+            - name: POSTGRESQL_TLS_CRL_FILE
+              value: {{ template "postgresql.tlsCRL" . }}
+            {{- end }}
+            {{- end }}
+            - name: POSTGRESQL_LOG_HOSTNAME
+              value: {{ .Values.audit.logHostname | quote }}
+            - name: POSTGRESQL_LOG_CONNECTIONS
+              value: {{ .Values.audit.logConnections | quote }}
+            - name: POSTGRESQL_LOG_DISCONNECTIONS
+              value: {{ .Values.audit.logDisconnections | quote }}
+            {{- if .Values.audit.logLinePrefix }}
+            - name: POSTGRESQL_LOG_LINE_PREFIX
+              value: {{ .Values.audit.logLinePrefix | quote }}
+            {{- end }}
+            {{- if .Values.audit.logTimezone }}
+            - name: POSTGRESQL_LOG_TIMEZONE
+              value: {{ .Values.audit.logTimezone | quote }}
+            {{- end }}
+            {{- if .Values.audit.pgAuditLog }}
+            - name: POSTGRESQL_PGAUDIT_LOG
+              value: {{ .Values.audit.pgAuditLog | quote }}
+            {{- end }}
+            - name: POSTGRESQL_PGAUDIT_LOG_CATALOG
+              value: {{ .Values.audit.pgAuditLogCatalog | quote }}
+            - name: POSTGRESQL_CLIENT_MIN_MESSAGES
+              value: {{ .Values.audit.clientMinMessages | quote }}
+            - name: POSTGRESQL_SHARED_PRELOAD_LIBRARIES
+              value: {{ .Values.postgresqlSharedPreloadLibraries | quote }}
+            {{- if .Values.postgresqlMaxConnections }}
+            - name: POSTGRESQL_MAX_CONNECTIONS
+              value: {{ .Values.postgresqlMaxConnections | quote }}
+            {{- end }}
+            {{- if .Values.postgresqlPostgresConnectionLimit }}
+            - name: POSTGRESQL_POSTGRES_CONNECTION_LIMIT
+              value: {{ .Values.postgresqlPostgresConnectionLimit | quote }}
+            {{- end }}
+            {{- if .Values.postgresqlDbUserConnectionLimit }}
+            - name: POSTGRESQL_USERNAME_CONNECTION_LIMIT
+              value: {{ .Values.postgresqlDbUserConnectionLimit | quote }}
+            {{- end }}
+            {{- if .Values.postgresqlTcpKeepalivesInterval }}
+            - name: POSTGRESQL_TCP_KEEPALIVES_INTERVAL
+              value: {{ .Values.postgresqlTcpKeepalivesInterval | quote }}
+            {{- end }}
+            {{- if .Values.postgresqlTcpKeepalivesIdle }}
+            - name: POSTGRESQL_TCP_KEEPALIVES_IDLE
+              value: {{ .Values.postgresqlTcpKeepalivesIdle | quote }}
+            {{- end }}
+            {{- if .Values.postgresqlStatementTimeout }}
+            - name: POSTGRESQL_STATEMENT_TIMEOUT
+              value: {{ .Values.postgresqlStatementTimeout | quote }}
+            {{- end }}
+            {{- if .Values.postgresqlTcpKeepalivesCount }}
+            - name: POSTGRESQL_TCP_KEEPALIVES_COUNT
+              value: {{ .Values.postgresqlTcpKeepalivesCount | quote }}
+            {{- end }}
+            {{- if .Values.postgresqlPghbaRemoveFilters }}
+            - name: POSTGRESQL_PGHBA_REMOVE_FILTERS
+              value: {{ .Values.postgresqlPghbaRemoveFilters | quote }}
+            {{- end }}
+          ports:
+            - name: tcp-postgresql
+              containerPort: {{ template "postgresql.port" . }}
+          {{- if .Values.livenessProbe.enabled }}
+          livenessProbe:
+            exec:
+              command:
+                - /bin/sh
+                - -c
+                {{- if (include "postgresql.database" .) }}
+                - exec pg_isready -U {{ include "postgresql.username" . | quote }} -d "dbname={{ include "postgresql.database" . }} {{- if and .Values.tls.enabled .Values.tls.certCAFilename }} sslcert={{ include "postgresql.tlsCert" . }} sslkey={{ include "postgresql.tlsCertKey" . }}{{- end }}" -h 127.0.0.1 -p {{ template "postgresql.port" . }}
+                {{- else }}
+                - exec pg_isready -U {{ include "postgresql.username" . | quote }} {{- if and .Values.tls.enabled .Values.tls.certCAFilename }} -d "sslcert={{ include "postgresql.tlsCert" . }} sslkey={{ include "postgresql.tlsCertKey" . }}"{{- end }} -h 127.0.0.1 -p {{ template "postgresql.port" . }}
+                {{- end }}
+            initialDelaySeconds: {{ .Values.livenessProbe.initialDelaySeconds }}
+            periodSeconds: {{ .Values.livenessProbe.periodSeconds }}
+            timeoutSeconds: {{ .Values.livenessProbe.timeoutSeconds }}
+            successThreshold: {{ .Values.livenessProbe.successThreshold }}
+            failureThreshold: {{ .Values.livenessProbe.failureThreshold }}
+          {{- else if .Values.customLivenessProbe }}
+          livenessProbe: {{- include "common.tplvalues.render" (dict "value" .Values.customLivenessProbe "context" $) | nindent 12 }}
+          {{- end }}
+          {{- if .Values.readinessProbe.enabled }}
+          readinessProbe:
+            exec:
+              command:
+                - /bin/sh
+                - -c
+                - -e
+                {{- include "postgresql.readinessProbeCommand" . | nindent 16 }}
+            initialDelaySeconds: {{ .Values.readinessProbe.initialDelaySeconds }}
+            periodSeconds: {{ .Values.readinessProbe.periodSeconds }}
+            timeoutSeconds: {{ .Values.readinessProbe.timeoutSeconds }}
+            successThreshold: {{ .Values.readinessProbe.successThreshold }}
+            failureThreshold: {{ .Values.readinessProbe.failureThreshold }}
+          {{- else if .Values.customReadinessProbe }}
+          readinessProbe: {{- include "common.tplvalues.render" (dict "value" .Values.customReadinessProbe "context" $) | nindent 12 }}
+          {{- end }}
+          volumeMounts:
+            {{- if .Values.usePasswordFile }}
+            - name: postgresql-password
+              mountPath: /opt/bitnami/postgresql/secrets/
+            {{- end }}
+            {{- if .Values.shmVolume.enabled }}
+            - name: dshm
+              mountPath: /dev/shm
+            {{- end }}
+            {{- if .Values.persistence.enabled }}
+            - name: data
+              mountPath: {{ .Values.persistence.mountPath }}
+              subPath: {{ .Values.persistence.subPath }}
+            {{ end }}
+            {{- if or (.Files.Glob "files/conf.d/*.conf") .Values.postgresqlExtendedConf .Values.extendedConfConfigMap }}
+            - name: postgresql-extended-config
+              mountPath: /bitnami/postgresql/conf/conf.d/
+            {{- end }}
+            {{- if or (.Files.Glob "files/postgresql.conf") (.Files.Glob "files/pg_hba.conf") .Values.postgresqlConfiguration .Values.pgHbaConfiguration .Values.configurationConfigMap }}
+            - name: postgresql-config
+              mountPath: /bitnami/postgresql/conf
+            {{- end }}
+            {{- if .Values.tls.enabled }}
+            - name: postgresql-certificates
+              mountPath: /opt/bitnami/postgresql/certs
+              readOnly: true
+            {{- end }}
+            {{- if .Values.readReplicas.extraVolumeMounts }}
+            {{- toYaml .Values.readReplicas.extraVolumeMounts | nindent 12 }}
+            {{- end }}
+{{- if .Values.readReplicas.sidecars }}
+{{- include "common.tplvalues.render" ( dict "value" .Values.readReplicas.sidecars "context" $ ) | nindent 8 }}
+{{- end }}
+      volumes:
+        {{- if .Values.usePasswordFile }}
+        - name: postgresql-password
+          secret:
+            secretName: {{ template "postgresql.secretName" . }}
+        {{- end }}
+        {{- if or (.Files.Glob "files/postgresql.conf") (.Files.Glob "files/pg_hba.conf") .Values.postgresqlConfiguration .Values.pgHbaConfiguration .Values.configurationConfigMap}}
+        - name: postgresql-config
+          configMap:
+            name: {{ template "postgresql.configurationCM" . }}
+        {{- end }}
+        {{- if or (.Files.Glob "files/conf.d/*.conf") .Values.postgresqlExtendedConf .Values.extendedConfConfigMap }}
+        - name: postgresql-extended-config
+          configMap:
+            name: {{ template "postgresql.extendedConfigurationCM" . }}
+        {{- end }}
+        {{- if  .Values.tls.enabled }}
+        - name: raw-certificates
+          secret:
+            secretName: {{ required "A secret containing TLS certificates is required when TLS is enabled" .Values.tls.certificatesSecret }}
+        - name: postgresql-certificates
+          emptyDir: {}
+        {{- end }}
+        {{- if .Values.shmVolume.enabled }}
+        - name: dshm
+          emptyDir:
+            medium: Memory
+            sizeLimit: 1Gi
+        {{- end }}
+        {{- if or (not .Values.persistence.enabled) (not .Values.readReplicas.persistence.enabled) }}
+        - name: data
+          emptyDir: {}
+        {{- end }}
+        {{- if .Values.readReplicas.extraVolumes }}
+        {{- toYaml .Values.readReplicas.extraVolumes | nindent 8 }}
+        {{- end }}
+  updateStrategy:
+    type: {{ .Values.updateStrategy.type }}
+    {{- if (eq "Recreate" .Values.updateStrategy.type) }}
+    rollingUpdate: null
+    {{- end }}
+{{- if and .Values.persistence.enabled .Values.readReplicas.persistence.enabled }}
+  volumeClaimTemplates:
+    - metadata:
+        name: data
+      {{- with .Values.persistence.annotations }}
+        annotations:
+        {{- range $key, $value := . }}
+          {{ $key }}: {{ $value }}
+        {{- end }}
+      {{- end }}
+      spec:
+        accessModes:
+        {{- range .Values.persistence.accessModes }}
+          - {{ . | quote }}
+        {{- end }}
+        resources:
+          requests:
+            storage: {{ .Values.persistence.size | quote }}
+        {{ include "common.storage.class" (dict "persistence" .Values.persistence "global" .Values.global) }}
+
+        {{- if .Values.persistence.selector }}
+        selector: {{- include "common.tplvalues.render" (dict "value" .Values.persistence.selector "context" $) | nindent 10 }}
+        {{- end -}}
+{{- end }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/statefulset.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/statefulset.yaml
new file mode 100644
index 0000000000..f8163fd99f
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/statefulset.yaml
@@ -0,0 +1,609 @@
+apiVersion: {{ include "common.capabilities.statefulset.apiVersion" . }}
+kind: StatefulSet
+metadata:
+  name: {{ template "postgresql.primary.fullname" . }}
+  labels: {{- include "common.labels.standard" . | nindent 4 }}
+    app.kubernetes.io/component: primary
+  {{- with .Values.primary.labels }}
+  {{- toYaml . | nindent 4 }}
+  {{- end }}
+  annotations:
+  {{- if .Values.commonAnnotations }}
+  {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
+  {{- end }}
+  {{- with .Values.primary.annotations }}
+  {{- toYaml . | nindent 4 }}
+  {{- end }}
+  namespace: {{ .Release.Namespace }}
+spec:
+  serviceName: {{ template "common.names.fullname" . }}-headless
+  replicas: 1
+  updateStrategy:
+    type: {{ .Values.updateStrategy.type }}
+    {{- if (eq "Recreate" .Values.updateStrategy.type) }}
+    rollingUpdate: null
+    {{- end }}
+  selector:
+    matchLabels:
+    {{- include "common.labels.matchLabels" . | nindent 6 }}
+      role: primary
+  template:
+    metadata:
+      name: {{ template "common.names.fullname" . }}
+      labels:
+      {{- include "common.labels.standard" . | nindent 8 }}
+        role: primary
+        app.kubernetes.io/component: primary
+      {{- with .Values.primary.podLabels }}
+      {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.primary.podAnnotations }}
+      annotations: {{- toYaml . | nindent 8 }}
+      {{- end }}
+    spec:
+      {{- if .Values.schedulerName }}
+      schedulerName: "{{ .Values.schedulerName }}"
+      {{- end }}
+{{- include "postgresql.imagePullSecrets" . | indent 6 }}
+      {{- if .Values.primary.affinity }}
+      affinity: {{- include "common.tplvalues.render" (dict "value" .Values.primary.affinity "context" $) | nindent 8 }}
+      {{- else }}
+      affinity:
+        podAffinity: {{- include "common.affinities.pods" (dict "type" .Values.primary.podAffinityPreset "component" "primary" "context" $) | nindent 10 }}
+        podAntiAffinity: {{- include "common.affinities.pods" (dict "type" .Values.primary.podAntiAffinityPreset "component" "primary" "context" $) | nindent 10 }}
+        nodeAffinity: {{- include "common.affinities.nodes" (dict "type" .Values.primary.nodeAffinityPreset.type "key" .Values.primary.nodeAffinityPreset.key "values" .Values.primary.nodeAffinityPreset.values) | nindent 10 }}
+      {{- end }}
+      {{- if .Values.primary.nodeSelector }}
+      nodeSelector: {{- include "common.tplvalues.render" (dict "value" .Values.primary.nodeSelector "context" $) | nindent 8 }}
+      {{- end }}
+      {{- if .Values.primary.tolerations }}
+      tolerations: {{- include "common.tplvalues.render" (dict "value" .Values.primary.tolerations "context" $) | nindent 8 }}
+      {{- end }}
+      {{- if .Values.terminationGracePeriodSeconds }}
+      terminationGracePeriodSeconds: {{ .Values.terminationGracePeriodSeconds }}
+      {{- end }}
+      {{- if .Values.securityContext.enabled }}
+      securityContext: {{- omit .Values.securityContext "enabled" | toYaml | nindent 8 }}
+      {{- end }}
+      {{- if .Values.serviceAccount.enabled }}
+      serviceAccountName: {{ default (include "common.names.fullname" . ) .Values.serviceAccount.name }}
+      {{- end }}
+      {{- if or .Values.primary.extraInitContainers (and .Values.volumePermissions.enabled (or .Values.persistence.enabled (and .Values.shmVolume.enabled .Values.shmVolume.chmod.enabled))) }}
+      initContainers:
+      {{- if and .Values.volumePermissions.enabled (or .Values.persistence.enabled (and .Values.shmVolume.enabled .Values.shmVolume.chmod.enabled) .Values.tls.enabled) }}
+        - name: init-chmod-data
+          image: {{ template "postgresql.volumePermissions.image" . }}
+          imagePullPolicy: {{ .Values.volumePermissions.image.pullPolicy | quote }}
+          {{- if .Values.resources }}
+          resources: {{- toYaml .Values.resources | nindent 12 }}
+          {{- end }}
+          command:
+            - /bin/sh
+            - -cx
+            - |
+              {{- if .Values.persistence.enabled }}
+              {{- if eq ( toString ( .Values.volumePermissions.securityContext.runAsUser )) "auto" }}
+              chown `id -u`:`id -G | cut -d " " -f2` {{ .Values.persistence.mountPath }}
+              {{- else }}
+              chown {{ .Values.containerSecurityContext.runAsUser }}:{{ .Values.securityContext.fsGroup }} {{ .Values.persistence.mountPath }}
+              {{- end }}
+              mkdir -p {{ .Values.persistence.mountPath }}/data {{- if (include "postgresql.mountConfigurationCM" .) }} {{ .Values.persistence.mountPath }}/conf {{- end }}
+              chmod 700 {{ .Values.persistence.mountPath }}/data {{- if (include "postgresql.mountConfigurationCM" .) }} {{ .Values.persistence.mountPath }}/conf {{- end }}
+              find {{ .Values.persistence.mountPath }} -mindepth 1 -maxdepth 1 {{- if not (include "postgresql.mountConfigurationCM" .) }} -not -name "conf" {{- end }} -not -name ".snapshot" -not -name "lost+found" | \
+              {{- if eq ( toString ( .Values.volumePermissions.securityContext.runAsUser )) "auto" }}
+                xargs chown -R `id -u`:`id -G | cut -d " " -f2`
+              {{- else }}
+                xargs chown -R {{ .Values.containerSecurityContext.runAsUser }}:{{ .Values.securityContext.fsGroup }}
+              {{- end }}
+              {{- end }}
+              {{- if and .Values.shmVolume.enabled .Values.shmVolume.chmod.enabled }}
+              chmod -R 777 /dev/shm
+              {{- end }}
+              {{- if .Values.tls.enabled }}
+              cp /tmp/certs/* /opt/bitnami/postgresql/certs/
+              {{- if eq ( toString ( .Values.volumePermissions.securityContext.runAsUser )) "auto" }}
+              chown -R `id -u`:`id -G | cut -d " " -f2` /opt/bitnami/postgresql/certs/
+              {{- else }}
+              chown -R {{ .Values.containerSecurityContext.runAsUser }}:{{ .Values.securityContext.fsGroup }} /opt/bitnami/postgresql/certs/
+              {{- end }}
+              chmod 600 {{ template "postgresql.tlsCertKey" . }}
+              {{- end }}
+          {{- if eq ( toString ( .Values.volumePermissions.securityContext.runAsUser )) "auto" }}
+          securityContext: {{- omit .Values.volumePermissions.securityContext "runAsUser" | toYaml | nindent 12 }}
+          {{- else }}
+          securityContext: {{- .Values.volumePermissions.securityContext | toYaml | nindent 12 }}
+          {{- end }}
+          volumeMounts:
+            {{- if .Values.persistence.enabled }}
+            - name: data
+              mountPath: {{ .Values.persistence.mountPath }}
+              subPath: {{ .Values.persistence.subPath }}
+            {{- end }}
+            {{- if .Values.shmVolume.enabled }}
+            - name: dshm
+              mountPath: /dev/shm
+            {{- end }}
+            {{- if .Values.tls.enabled }}
+            - name: raw-certificates
+              mountPath: /tmp/certs
+            - name: postgresql-certificates
+              mountPath: /opt/bitnami/postgresql/certs
+            {{- end }}
+      {{- end }}
+      {{- if .Values.primary.extraInitContainers }}
+      {{- include "common.tplvalues.render" ( dict "value" .Values.primary.extraInitContainers "context" $ ) | nindent 8 }}
+      {{- end }}
+      {{- end }}
+      {{- if .Values.primary.priorityClassName }}
+      priorityClassName: {{ .Values.primary.priorityClassName }}
+      {{- end }}
+      containers:
+        - name: {{ template "common.names.fullname" . }}
+          image: {{ template "postgresql.image" . }}
+          imagePullPolicy: "{{ .Values.image.pullPolicy }}"
+          {{- if .Values.resources }}
+          resources: {{- toYaml .Values.resources | nindent 12 }}
+          {{- end }}
+          {{- if .Values.containerSecurityContext.enabled }}
+          securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 12 }}
+          {{- end }}
+          env:
+            - name: BITNAMI_DEBUG
+              value: {{ ternary "true" "false" .Values.image.debug | quote }}
+            - name: POSTGRESQL_PORT_NUMBER
+              value: "{{ template "postgresql.port" . }}"
+            - name: POSTGRESQL_VOLUME_DIR
+              value: "{{ .Values.persistence.mountPath }}"
+            {{- if .Values.postgresqlInitdbArgs }}
+            - name: POSTGRES_INITDB_ARGS
+              value: {{ .Values.postgresqlInitdbArgs | quote }}
+            {{- end }}
+            {{- if .Values.postgresqlInitdbWalDir }}
+            - name: POSTGRES_INITDB_WALDIR
+              value: {{ .Values.postgresqlInitdbWalDir | quote }}
+            {{- end }}
+            {{- if .Values.initdbUser }}
+            - name: POSTGRESQL_INITSCRIPTS_USERNAME
+              value: {{ .Values.initdbUser }}
+            {{- end }}
+            {{- if .Values.initdbPassword }}
+            - name: POSTGRESQL_INITSCRIPTS_PASSWORD
+              value: {{ .Values.initdbPassword }}
+            {{- end }}
+            {{- if .Values.persistence.mountPath }}
+            - name: PGDATA
+              value: {{ .Values.postgresqlDataDir | quote }}
+            {{- end }}
+            {{- if .Values.primaryAsStandBy.enabled }}
+            - name: POSTGRES_MASTER_HOST
+              value: {{ .Values.primaryAsStandBy.primaryHost }}
+            - name: POSTGRES_MASTER_PORT_NUMBER
+              value: {{ .Values.primaryAsStandBy.primaryPort | quote }}
+            {{- end }}
+            {{- if or .Values.replication.enabled .Values.primaryAsStandBy.enabled }}
+            - name: POSTGRES_REPLICATION_MODE
+            {{- if .Values.primaryAsStandBy.enabled }}
+              value: "slave"
+            {{- else }}
+              value: "master"
+            {{- end }}
+            - name: POSTGRES_REPLICATION_USER
+              value: {{ include "postgresql.replication.username" . | quote }}
+            {{- if .Values.usePasswordFile }}
+            - name: POSTGRES_REPLICATION_PASSWORD_FILE
+              value: "/opt/bitnami/postgresql/secrets/postgresql-replication-password"
+            {{- else }}
+            - name: POSTGRES_REPLICATION_PASSWORD
+              valueFrom:
+                secretKeyRef:
+                  name: {{ template "postgresql.secretName" . }}
+                  key: postgresql-replication-password
+            {{- end }}
+            {{- if not (eq .Values.replication.synchronousCommit "off")}}
+            - name: POSTGRES_SYNCHRONOUS_COMMIT_MODE
+              value: {{ .Values.replication.synchronousCommit | quote }}
+            - name: POSTGRES_NUM_SYNCHRONOUS_REPLICAS
+              value: {{ .Values.replication.numSynchronousReplicas | quote }}
+            {{- end }}
+            - name: POSTGRES_CLUSTER_APP_NAME
+              value: {{ .Values.replication.applicationName }}
+            {{- end }}
+            {{- if not (eq (include "postgresql.username" .) "postgres")  }}
+            {{- if .Values.usePasswordFile }}
+            - name: POSTGRES_POSTGRES_PASSWORD_FILE
+              value: "/opt/bitnami/postgresql/secrets/postgresql-postgres-password"
+            {{- else }}
+            - name: POSTGRES_POSTGRES_PASSWORD
+              valueFrom:
+                secretKeyRef:
+                  name: {{ template "postgresql.secretName" . }}
+                  key: postgresql-postgres-password
+            {{- end }}
+            {{- end }}
+            - name: POSTGRES_USER
+              value: {{ include "postgresql.username" . | quote }}
+            {{- if .Values.usePasswordFile }}
+            - name: POSTGRES_PASSWORD_FILE
+              value: "/opt/bitnami/postgresql/secrets/postgresql-password"
+            {{- else }}
+            - name: POSTGRES_PASSWORD
+              valueFrom:
+                secretKeyRef:
+                  name: {{ template "postgresql.secretName" . }}
+                  key: postgresql-password
+            {{- end }}
+            {{- if (include "postgresql.database" .) }}
+            - name: POSTGRES_DB
+              value: {{ (include "postgresql.database" .) | quote }}
+            {{- end }}
+            {{- if .Values.extraEnv }}
+            {{- include "common.tplvalues.render" (dict "value" .Values.extraEnv "context" $) | nindent 12 }}
+            {{- end }}
+            - name: POSTGRESQL_ENABLE_LDAP
+              value: {{ ternary "yes" "no" .Values.ldap.enabled | quote }}
+            {{- if .Values.ldap.enabled }}
+            - name: POSTGRESQL_LDAP_SERVER
+              value: {{ .Values.ldap.server }}
+            - name: POSTGRESQL_LDAP_PORT
+              value: {{ .Values.ldap.port | quote }}
+            - name: POSTGRESQL_LDAP_SCHEME
+              value: {{ .Values.ldap.scheme }}
+            {{- if .Values.ldap.tls }}
+            - name: POSTGRESQL_LDAP_TLS
+              value: "1"
+            {{- end }}
+            - name: POSTGRESQL_LDAP_PREFIX
+              value: {{ .Values.ldap.prefix | quote }}
+            - name: POSTGRESQL_LDAP_SUFFIX
+              value: {{ .Values.ldap.suffix | quote }}
+            - name: POSTGRESQL_LDAP_BASE_DN
+              value: {{ .Values.ldap.baseDN }}
+            - name: POSTGRESQL_LDAP_BIND_DN
+              value: {{ .Values.ldap.bindDN }}
+            {{- if (not (empty .Values.ldap.bind_password)) }}
+            - name: POSTGRESQL_LDAP_BIND_PASSWORD
+              valueFrom:
+                secretKeyRef:
+                  name: {{ template "postgresql.secretName" . }}
+                  key: postgresql-ldap-password
+            {{- end}}
+            - name: POSTGRESQL_LDAP_SEARCH_ATTR
+              value: {{ .Values.ldap.search_attr }}
+            - name: POSTGRESQL_LDAP_SEARCH_FILTER
+              value: {{ .Values.ldap.search_filter }}
+            - name: POSTGRESQL_LDAP_URL
+              value: {{ .Values.ldap.url }}
+            {{- end}}
+            - name: POSTGRESQL_ENABLE_TLS
+              value: {{ ternary "yes" "no" .Values.tls.enabled | quote }}
+            {{- if .Values.tls.enabled }}
+            - name: POSTGRESQL_TLS_PREFER_SERVER_CIPHERS
+              value: {{ ternary "yes" "no" .Values.tls.preferServerCiphers | quote }}
+            - name: POSTGRESQL_TLS_CERT_FILE
+              value: {{ template "postgresql.tlsCert" . }}
+            - name: POSTGRESQL_TLS_KEY_FILE
+              value: {{ template "postgresql.tlsCertKey" . }}
+            {{- if .Values.tls.certCAFilename }}
+            - name: POSTGRESQL_TLS_CA_FILE
+              value: {{ template "postgresql.tlsCACert" . }}
+            {{- end }}
+            {{- if .Values.tls.crlFilename }}
+            - name: POSTGRESQL_TLS_CRL_FILE
+              value: {{ template "postgresql.tlsCRL" . }}
+            {{- end }}
+            {{- end }}
+            - name: POSTGRESQL_LOG_HOSTNAME
+              value: {{ .Values.audit.logHostname | quote }}
+            - name: POSTGRESQL_LOG_CONNECTIONS
+              value: {{ .Values.audit.logConnections | quote }}
+            - name: POSTGRESQL_LOG_DISCONNECTIONS
+              value: {{ .Values.audit.logDisconnections | quote }}
+            {{- if .Values.audit.logLinePrefix }}
+            - name: POSTGRESQL_LOG_LINE_PREFIX
+              value: {{ .Values.audit.logLinePrefix | quote }}
+            {{- end }}
+            {{- if .Values.audit.logTimezone }}
+            - name: POSTGRESQL_LOG_TIMEZONE
+              value: {{ .Values.audit.logTimezone | quote }}
+            {{- end }}
+            {{- if .Values.audit.pgAuditLog }}
+            - name: POSTGRESQL_PGAUDIT_LOG
+              value: {{ .Values.audit.pgAuditLog | quote }}
+            {{- end }}
+            - name: POSTGRESQL_PGAUDIT_LOG_CATALOG
+              value: {{ .Values.audit.pgAuditLogCatalog | quote }}
+            - name: POSTGRESQL_CLIENT_MIN_MESSAGES
+              value: {{ .Values.audit.clientMinMessages | quote }}
+            - name: POSTGRESQL_SHARED_PRELOAD_LIBRARIES
+              value: {{ .Values.postgresqlSharedPreloadLibraries | quote }}
+            {{- if .Values.postgresqlMaxConnections }}
+            - name: POSTGRESQL_MAX_CONNECTIONS
+              value: {{ .Values.postgresqlMaxConnections | quote }}
+            {{- end }}
+            {{- if .Values.postgresqlPostgresConnectionLimit }}
+            - name: POSTGRESQL_POSTGRES_CONNECTION_LIMIT
+              value: {{ .Values.postgresqlPostgresConnectionLimit | quote }}
+            {{- end }}
+            {{- if .Values.postgresqlDbUserConnectionLimit }}
+            - name: POSTGRESQL_USERNAME_CONNECTION_LIMIT
+              value: {{ .Values.postgresqlDbUserConnectionLimit | quote }}
+            {{- end }}
+            {{- if .Values.postgresqlTcpKeepalivesInterval }}
+            - name: POSTGRESQL_TCP_KEEPALIVES_INTERVAL
+              value: {{ .Values.postgresqlTcpKeepalivesInterval | quote }}
+            {{- end }}
+            {{- if .Values.postgresqlTcpKeepalivesIdle }}
+            - name: POSTGRESQL_TCP_KEEPALIVES_IDLE
+              value: {{ .Values.postgresqlTcpKeepalivesIdle | quote }}
+            {{- end }}
+            {{- if .Values.postgresqlStatementTimeout }}
+            - name: POSTGRESQL_STATEMENT_TIMEOUT
+              value: {{ .Values.postgresqlStatementTimeout | quote }}
+            {{- end }}
+            {{- if .Values.postgresqlTcpKeepalivesCount }}
+            - name: POSTGRESQL_TCP_KEEPALIVES_COUNT
+              value: {{ .Values.postgresqlTcpKeepalivesCount | quote }}
+            {{- end }}
+            {{- if .Values.postgresqlPghbaRemoveFilters }}
+            - name: POSTGRESQL_PGHBA_REMOVE_FILTERS
+              value: {{ .Values.postgresqlPghbaRemoveFilters | quote }}
+            {{- end }}
+          {{- if .Values.extraEnvVarsCM }}
+          envFrom:
+            - configMapRef:
+                name: {{ tpl .Values.extraEnvVarsCM . }}
+          {{- end }}
+          ports:
+            - name: tcp-postgresql
+              containerPort: {{ template "postgresql.port" . }}
+          {{- if .Values.startupProbe.enabled }}
+          startupProbe:
+            exec:
+              command:
+                - /bin/sh
+                - -c
+                {{- if (include "postgresql.database" .) }}
+                - exec pg_isready -U {{ include "postgresql.username" . | quote }} -d "dbname={{ include "postgresql.database" . }} {{- if and .Values.tls.enabled .Values.tls.certCAFilename }} sslcert={{ include "postgresql.tlsCert" . }} sslkey={{ include "postgresql.tlsCertKey" . }}{{- end }}" -h 127.0.0.1 -p {{ template "postgresql.port" . }}
+                {{- else }}
+                - exec pg_isready -U {{ include "postgresql.username" . | quote }} {{- if and .Values.tls.enabled .Values.tls.certCAFilename }} -d "sslcert={{ include "postgresql.tlsCert" . }} sslkey={{ include "postgresql.tlsCertKey" . }}"{{- end }} -h 127.0.0.1 -p {{ template "postgresql.port" . }}
+                {{- end }}
+            initialDelaySeconds: {{ .Values.startupProbe.initialDelaySeconds }}
+            periodSeconds: {{ .Values.startupProbe.periodSeconds }}
+            timeoutSeconds: {{ .Values.startupProbe.timeoutSeconds }}
+            successThreshold: {{ .Values.startupProbe.successThreshold }}
+            failureThreshold: {{ .Values.startupProbe.failureThreshold }}
+          {{- else if .Values.customStartupProbe }}
+          startupProbe: {{- include "common.tplvalues.render" (dict "value" .Values.customStartupProbe "context" $) | nindent 12 }}
+          {{- end }}
+          {{- if .Values.livenessProbe.enabled }}
+          livenessProbe:
+            exec:
+              command:
+                - /bin/sh
+                - -c
+                {{- if (include "postgresql.database" .) }}
+                - exec pg_isready -U {{ include "postgresql.username" . | quote }} -d "dbname={{ include "postgresql.database" . }} {{- if and .Values.tls.enabled .Values.tls.certCAFilename }} sslcert={{ include "postgresql.tlsCert" . }} sslkey={{ include "postgresql.tlsCertKey" . }}{{- end }}" -h 127.0.0.1 -p {{ template "postgresql.port" . }}
+                {{- else }}
+                - exec pg_isready -U {{ include "postgresql.username" . | quote }} {{- if and .Values.tls.enabled .Values.tls.certCAFilename }} -d "sslcert={{ include "postgresql.tlsCert" . }} sslkey={{ include "postgresql.tlsCertKey" . }}"{{- end }} -h 127.0.0.1 -p {{ template "postgresql.port" . }}
+                {{- end }}
+            initialDelaySeconds: {{ .Values.livenessProbe.initialDelaySeconds }}
+            periodSeconds: {{ .Values.livenessProbe.periodSeconds }}
+            timeoutSeconds: {{ .Values.livenessProbe.timeoutSeconds }}
+            successThreshold: {{ .Values.livenessProbe.successThreshold }}
+            failureThreshold: {{ .Values.livenessProbe.failureThreshold }}
+          {{- else if .Values.customLivenessProbe }}
+          livenessProbe: {{- include "common.tplvalues.render" (dict "value" .Values.customLivenessProbe "context" $) | nindent 12 }}
+          {{- end }}
+          {{- if .Values.readinessProbe.enabled }}
+          readinessProbe:
+            exec:
+              command:
+                - /bin/sh
+                - -c
+                - -e
+                {{- include "postgresql.readinessProbeCommand" . | nindent 16 }}
+            initialDelaySeconds: {{ .Values.readinessProbe.initialDelaySeconds }}
+            periodSeconds: {{ .Values.readinessProbe.periodSeconds }}
+            timeoutSeconds: {{ .Values.readinessProbe.timeoutSeconds }}
+            successThreshold: {{ .Values.readinessProbe.successThreshold }}
+            failureThreshold: {{ .Values.readinessProbe.failureThreshold }}
+          {{- else if .Values.customReadinessProbe }}
+          readinessProbe: {{- include "common.tplvalues.render" (dict "value" .Values.customReadinessProbe "context" $) | nindent 12 }}
+          {{- end }}
+          volumeMounts:
+            {{- if or (.Files.Glob "files/docker-entrypoint-initdb.d/*.{sh,sql,sql.gz}") .Values.initdbScriptsConfigMap .Values.initdbScripts }}
+            - name: custom-init-scripts
+              mountPath: /docker-entrypoint-initdb.d/
+            {{- end }}
+            {{- if .Values.initdbScriptsSecret }}
+            - name: custom-init-scripts-secret
+              mountPath: /docker-entrypoint-initdb.d/secret
+            {{- end }}
+            {{- if or (.Files.Glob "files/conf.d/*.conf") .Values.postgresqlExtendedConf .Values.extendedConfConfigMap }}
+            - name: postgresql-extended-config
+              mountPath: /bitnami/postgresql/conf/conf.d/
+            {{- end }}
+            {{- if .Values.usePasswordFile }}
+            - name: postgresql-password
+              mountPath: /opt/bitnami/postgresql/secrets/
+            {{- end }}
+            {{- if .Values.tls.enabled }}
+            - name: postgresql-certificates
+              mountPath: /opt/bitnami/postgresql/certs
+              readOnly: true
+            {{- end }}
+            {{- if .Values.shmVolume.enabled }}
+            - name: dshm
+              mountPath: /dev/shm
+            {{- end }}
+            {{- if .Values.persistence.enabled }}
+            - name: data
+              mountPath: {{ .Values.persistence.mountPath }}
+              subPath: {{ .Values.persistence.subPath }}
+            {{- end }}
+            {{- if or (.Files.Glob "files/postgresql.conf") (.Files.Glob "files/pg_hba.conf") .Values.postgresqlConfiguration .Values.pgHbaConfiguration .Values.configurationConfigMap }}
+            - name: postgresql-config
+              mountPath: /bitnami/postgresql/conf
+            {{- end }}
+            {{- if .Values.primary.extraVolumeMounts }}
+            {{- toYaml .Values.primary.extraVolumeMounts | nindent 12 }}
+            {{- end }}
+{{- if .Values.primary.sidecars }}
+{{- include "common.tplvalues.render" ( dict "value" .Values.primary.sidecars "context" $ ) | nindent 8 }}
+{{- end }}
+{{- if .Values.metrics.enabled }}
+        - name: metrics
+          image: {{ template "postgresql.metrics.image" . }}
+          imagePullPolicy: {{ .Values.metrics.image.pullPolicy | quote }}
+         {{- if .Values.metrics.securityContext.enabled }}
+          securityContext: {{- omit .Values.metrics.securityContext "enabled" | toYaml | nindent 12 }}
+        {{- end }}
+          env:
+            {{- $database := required "In order to enable metrics you need to specify a database (.Values.postgresqlDatabase or .Values.global.postgresql.postgresqlDatabase)" (include "postgresql.database" .) }}
+            {{- $sslmode := ternary "require" "disable" .Values.tls.enabled }}
+            {{- if and .Values.tls.enabled .Values.tls.certCAFilename }}
+            - name: DATA_SOURCE_NAME
+              value: {{ printf "host=127.0.0.1 port=%d user=%s sslmode=%s sslcert=%s sslkey=%s" (int (include "postgresql.port" .)) (include "postgresql.username" .) $sslmode (include "postgresql.tlsCert" .) (include "postgresql.tlsCertKey" .) }}
+            {{- else }}
+            - name: DATA_SOURCE_URI
+              value: {{ printf "127.0.0.1:%d/%s?sslmode=%s" (int (include "postgresql.port" .)) $database $sslmode }}
+            {{- end }}
+            {{- if .Values.usePasswordFile }}
+            - name: DATA_SOURCE_PASS_FILE
+              value: "/opt/bitnami/postgresql/secrets/postgresql-password"
+            {{- else }}
+            - name: DATA_SOURCE_PASS
+              valueFrom:
+                secretKeyRef:
+                  name: {{ template "postgresql.secretName" . }}
+                  key: postgresql-password
+            {{- end }}
+            - name: DATA_SOURCE_USER
+              value: {{ template "postgresql.username" . }}
+            {{- if .Values.metrics.extraEnvVars }}
+            {{- include "common.tplvalues.render" (dict "value" .Values.metrics.extraEnvVars "context" $) | nindent 12 }}
+            {{- end }}
+          {{- if .Values.livenessProbe.enabled }}
+          livenessProbe:
+            httpGet:
+              path: /
+              port: http-metrics
+            initialDelaySeconds: {{ .Values.metrics.livenessProbe.initialDelaySeconds }}
+            periodSeconds: {{ .Values.metrics.livenessProbe.periodSeconds }}
+            timeoutSeconds: {{ .Values.metrics.livenessProbe.timeoutSeconds }}
+            successThreshold: {{ .Values.metrics.livenessProbe.successThreshold }}
+            failureThreshold: {{ .Values.metrics.livenessProbe.failureThreshold }}
+          {{- end }}
+          {{- if .Values.readinessProbe.enabled }}
+          readinessProbe:
+            httpGet:
+              path: /
+              port: http-metrics
+            initialDelaySeconds: {{ .Values.metrics.readinessProbe.initialDelaySeconds }}
+            periodSeconds: {{ .Values.metrics.readinessProbe.periodSeconds }}
+            timeoutSeconds: {{ .Values.metrics.readinessProbe.timeoutSeconds }}
+            successThreshold: {{ .Values.metrics.readinessProbe.successThreshold }}
+            failureThreshold: {{ .Values.metrics.readinessProbe.failureThreshold }}
+          {{- end }}
+          volumeMounts:
+            {{- if .Values.usePasswordFile }}
+            - name: postgresql-password
+              mountPath: /opt/bitnami/postgresql/secrets/
+            {{- end }}
+            {{- if .Values.tls.enabled }}
+            - name: postgresql-certificates
+              mountPath: /opt/bitnami/postgresql/certs
+              readOnly: true
+            {{- end }}
+            {{- if .Values.metrics.customMetrics }}
+            - name: custom-metrics
+              mountPath: /conf
+              readOnly: true
+          args: ["--extend.query-path", "/conf/custom-metrics.yaml"]
+            {{- end }}
+          ports:
+            - name: http-metrics
+              containerPort: 9187
+          {{- if .Values.metrics.resources }}
+          resources: {{- toYaml .Values.metrics.resources | nindent 12 }}
+          {{- end }}
+{{- end }}
+      volumes:
+        {{- if or (.Files.Glob "files/postgresql.conf") (.Files.Glob "files/pg_hba.conf") .Values.postgresqlConfiguration .Values.pgHbaConfiguration .Values.configurationConfigMap}}
+        - name: postgresql-config
+          configMap:
+            name: {{ template "postgresql.configurationCM" . }}
+        {{- end }}
+        {{- if or (.Files.Glob "files/conf.d/*.conf") .Values.postgresqlExtendedConf .Values.extendedConfConfigMap }}
+        - name: postgresql-extended-config
+          configMap:
+            name: {{ template "postgresql.extendedConfigurationCM" . }}
+        {{- end }}
+        {{- if .Values.usePasswordFile }}
+        - name: postgresql-password
+          secret:
+            secretName: {{ template "postgresql.secretName" . }}
+        {{- end }}
+        {{- if  or (.Files.Glob "files/docker-entrypoint-initdb.d/*.{sh,sql,sql.gz}") .Values.initdbScriptsConfigMap .Values.initdbScripts }}
+        - name: custom-init-scripts
+          configMap:
+            name: {{ template "postgresql.initdbScriptsCM" . }}
+        {{- end }}
+        {{- if .Values.initdbScriptsSecret }}
+        - name: custom-init-scripts-secret
+          secret:
+            secretName: {{ template "postgresql.initdbScriptsSecret" . }}
+        {{- end }}
+        {{- if  .Values.tls.enabled }}
+        - name: raw-certificates
+          secret:
+            secretName: {{ required "A secret containing TLS certificates is required when TLS is enabled" .Values.tls.certificatesSecret }}
+        - name: postgresql-certificates
+          emptyDir: {}
+        {{- end }}
+        {{- if .Values.primary.extraVolumes }}
+        {{- toYaml .Values.primary.extraVolumes | nindent 8 }}
+        {{- end }}
+        {{- if and .Values.metrics.enabled .Values.metrics.customMetrics }}
+        - name: custom-metrics
+          configMap:
+            name: {{ template "postgresql.metricsCM" . }}
+        {{- end }}
+        {{- if .Values.shmVolume.enabled }}
+        - name: dshm
+          emptyDir:
+            medium: Memory
+            sizeLimit: 1Gi
+        {{- end }}
+{{- if and .Values.persistence.enabled .Values.persistence.existingClaim }}
+        - name: data
+          persistentVolumeClaim:
+{{- with .Values.persistence.existingClaim }}
+            claimName: {{ tpl . $ }}
+{{- end }}
+{{- else if not .Values.persistence.enabled }}
+        - name: data
+          emptyDir: {}
+{{- else if and .Values.persistence.enabled (not .Values.persistence.existingClaim) }}
+  volumeClaimTemplates:
+    - metadata:
+        name: data
+      {{- with .Values.persistence.annotations }}
+        annotations:
+        {{- range $key, $value := . }}
+          {{ $key }}: {{ $value }}
+        {{- end }}
+      {{- end }}
+      spec:
+        accessModes:
+        {{- range .Values.persistence.accessModes }}
+          - {{ . | quote }}
+        {{- end }}
+        resources:
+          requests:
+            storage: {{ .Values.persistence.size | quote }}
+        {{ include "common.storage.class" (dict "persistence" .Values.persistence "global" .Values.global) }}
+        {{- if .Values.persistence.selector }}
+        selector: {{- include "common.tplvalues.render" (dict "value" .Values.persistence.selector "context" $) | nindent 10 }}
+        {{- end -}}
+{{- end }}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/svc-headless.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/svc-headless.yaml
new file mode 100644
index 0000000000..6f5f3b9ee4
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/svc-headless.yaml
@@ -0,0 +1,28 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ template "common.names.fullname" . }}-headless
+  labels:
+  {{- include "common.labels.standard" . | nindent 4 }}
+  {{- if .Values.commonAnnotations }}
+  annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
+  {{- end }}
+    # Use this annotation in addition to the actual publishNotReadyAddresses
+    # field below because the annotation will stop being respected soon but the
+    # field is broken in some versions of Kubernetes:
+    # https://github.com/kubernetes/kubernetes/issues/58662
+    service.alpha.kubernetes.io/tolerate-unready-endpoints: "true"
+  namespace: {{ .Release.Namespace }}
+spec:
+  type: ClusterIP
+  clusterIP: None
+  # We want all pods in the StatefulSet to have their addresses published for
+  # the sake of the other Postgresql pods even before they're ready, since they
+  # have to be able to talk to each other in order to become ready.
+  publishNotReadyAddresses: true
+  ports:
+    - name: tcp-postgresql
+      port: {{ template "postgresql.port" . }}
+      targetPort: tcp-postgresql
+  selector:
+  {{- include "common.labels.matchLabels" . | nindent 4 }}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/svc-read.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/svc-read.yaml
new file mode 100644
index 0000000000..56195ea1e6
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/svc-read.yaml
@@ -0,0 +1,43 @@
+{{- if .Values.replication.enabled }}
+{{- $serviceAnnotations := coalesce .Values.readReplicas.service.annotations .Values.service.annotations -}}
+{{- $serviceType := coalesce .Values.readReplicas.service.type .Values.service.type -}}
+{{- $serviceLoadBalancerIP := coalesce .Values.readReplicas.service.loadBalancerIP .Values.service.loadBalancerIP -}}
+{{- $serviceLoadBalancerSourceRanges := coalesce .Values.readReplicas.service.loadBalancerSourceRanges .Values.service.loadBalancerSourceRanges -}}
+{{- $serviceClusterIP := coalesce .Values.readReplicas.service.clusterIP .Values.service.clusterIP -}}
+{{- $serviceNodePort := coalesce .Values.readReplicas.service.nodePort .Values.service.nodePort -}}
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ template "common.names.fullname" . }}-read
+  labels:
+  {{- include "common.labels.standard" . | nindent 4 }}
+  annotations:
+  {{- if .Values.commonAnnotations }}
+  {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
+  {{- end }}
+  {{- if $serviceAnnotations }}
+  {{- include "common.tplvalues.render" (dict "value" $serviceAnnotations "context" $) | nindent 4 }}
+  {{- end }}
+  namespace: {{ .Release.Namespace }}
+spec:
+  type: {{ $serviceType }}
+  {{- if and $serviceLoadBalancerIP (eq $serviceType "LoadBalancer") }}
+  loadBalancerIP: {{ $serviceLoadBalancerIP }}
+  {{- end }}
+  {{- if and (eq $serviceType "LoadBalancer") $serviceLoadBalancerSourceRanges }}
+  loadBalancerSourceRanges: {{- include "common.tplvalues.render" (dict "value" $serviceLoadBalancerSourceRanges "context" $) | nindent 4 }}
+  {{- end }}
+  {{- if and (eq $serviceType "ClusterIP") $serviceClusterIP }}
+  clusterIP: {{ $serviceClusterIP }}
+  {{- end }}
+  ports:
+    - name: tcp-postgresql
+      port:  {{ template "postgresql.port" . }}
+      targetPort: tcp-postgresql
+      {{- if $serviceNodePort }}
+      nodePort: {{ $serviceNodePort }}
+      {{- end }}
+  selector:
+  {{- include "common.labels.matchLabels" . | nindent 4 }}
+    role: read
+{{- end }}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/svc.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/svc.yaml
new file mode 100644
index 0000000000..a29431b6a4
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/templates/svc.yaml
@@ -0,0 +1,41 @@
+{{- $serviceAnnotations := coalesce .Values.primary.service.annotations .Values.service.annotations -}}
+{{- $serviceType := coalesce .Values.primary.service.type .Values.service.type -}}
+{{- $serviceLoadBalancerIP := coalesce .Values.primary.service.loadBalancerIP .Values.service.loadBalancerIP -}}
+{{- $serviceLoadBalancerSourceRanges := coalesce .Values.primary.service.loadBalancerSourceRanges .Values.service.loadBalancerSourceRanges -}}
+{{- $serviceClusterIP := coalesce .Values.primary.service.clusterIP .Values.service.clusterIP -}}
+{{- $serviceNodePort := coalesce .Values.primary.service.nodePort .Values.service.nodePort -}}
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ template "common.names.fullname" . }}
+  labels:
+  {{- include "common.labels.standard" . | nindent 4 }}
+  annotations:
+  {{- if .Values.commonAnnotations }}
+  {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
+  {{- end }}
+  {{- if $serviceAnnotations }}
+  {{- include "common.tplvalues.render" (dict "value" $serviceAnnotations "context" $) | nindent 4 }}
+  {{- end }}
+  namespace: {{ .Release.Namespace }}
+spec:
+  type: {{ $serviceType }}
+  {{- if and $serviceLoadBalancerIP (eq $serviceType "LoadBalancer") }}
+  loadBalancerIP: {{ $serviceLoadBalancerIP }}
+  {{- end }}
+  {{- if and (eq $serviceType "LoadBalancer") $serviceLoadBalancerSourceRanges }}
+  loadBalancerSourceRanges: {{- include "common.tplvalues.render" (dict "value" $serviceLoadBalancerSourceRanges "context" $) | nindent 4 }}
+  {{- end }}
+  {{- if and (eq $serviceType "ClusterIP") $serviceClusterIP }}
+  clusterIP: {{ $serviceClusterIP }}
+  {{- end }}
+  ports:
+    - name: tcp-postgresql
+      port: {{ template "postgresql.port" . }}
+      targetPort: tcp-postgresql
+      {{- if $serviceNodePort }}
+      nodePort: {{ $serviceNodePort }}
+      {{- end }}
+  selector:
+  {{- include "common.labels.matchLabels" . | nindent 4 }}
+    role: primary
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/values.schema.json b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/values.schema.json
new file mode 100644
index 0000000000..66a2a9dd06
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/values.schema.json
@@ -0,0 +1,103 @@
+{
+  "$schema": "http://json-schema.org/schema#",
+  "type": "object",
+  "properties": {
+    "postgresqlUsername": {
+      "type": "string",
+      "title": "Admin user",
+      "form": true
+    },
+    "postgresqlPassword": {
+      "type": "string",
+      "title": "Password",
+      "form": true
+    },
+    "persistence": {
+      "type": "object",
+      "properties": {
+        "size": {
+          "type": "string",
+          "title": "Persistent Volume Size",
+          "form": true,
+          "render": "slider",
+          "sliderMin": 1,
+          "sliderMax": 100,
+          "sliderUnit": "Gi"
+        }
+      }
+    },
+    "resources": {
+      "type": "object",
+      "title": "Required Resources",
+      "description": "Configure resource requests",
+      "form": true,
+      "properties": {
+        "requests": {
+          "type": "object",
+          "properties": {
+            "memory": {
+              "type": "string",
+              "form": true,
+              "render": "slider",
+              "title": "Memory Request",
+              "sliderMin": 10,
+              "sliderMax": 2048,
+              "sliderUnit": "Mi"
+            },
+            "cpu": {
+              "type": "string",
+              "form": true,
+              "render": "slider",
+              "title": "CPU Request",
+              "sliderMin": 10,
+              "sliderMax": 2000,
+              "sliderUnit": "m"
+            }
+          }
+        }
+      }
+    },
+    "replication": {
+      "type": "object",
+      "form": true,
+      "title": "Replication Details",
+      "properties": {
+        "enabled": {
+          "type": "boolean",
+          "title": "Enable Replication",
+          "form": true
+        },
+        "readReplicas": {
+          "type": "integer",
+          "title": "read Replicas",
+          "form": true,
+          "hidden": {
+            "value": false,
+            "path": "replication/enabled"
+          }
+        }
+      }
+    },
+    "volumePermissions": {
+      "type": "object",
+      "properties": {
+        "enabled": {
+          "type": "boolean",
+          "form": true,
+          "title": "Enable Init Containers",
+          "description": "Change the owner of the persist volume mountpoint to RunAsUser:fsGroup"
+        }
+      }
+    },
+    "metrics": {
+      "type": "object",
+      "properties": {
+        "enabled": {
+          "type": "boolean",
+          "title": "Configure metrics exporter",
+          "form": true
+        }
+      }
+    }
+  }
+}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/values.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/values.yaml
new file mode 100644
index 0000000000..82ce092344
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/charts/postgresql/values.yaml
@@ -0,0 +1,824 @@
+## Global Docker image parameters
+## Please, note that this will override the image parameters, including dependencies, configured to use the global value
+## Current available global Docker image parameters: imageRegistry and imagePullSecrets
+##
+global:
+  postgresql: {}
+#   imageRegistry: myRegistryName
+#   imagePullSecrets:
+#     - myRegistryKeySecretName
+#   storageClass: myStorageClass
+
+## Bitnami PostgreSQL image version
+## ref: https://hub.docker.com/r/bitnami/postgresql/tags/
+##
+image:
+  registry: docker.io
+  repository: bitnami/postgresql
+  tag: 11.11.0-debian-10-r71
+  ## Specify a imagePullPolicy
+  ## Defaults to 'Always' if image tag is 'latest', else set to 'IfNotPresent'
+  ## ref: http://kubernetes.io/docs/user-guide/images/#pre-pulling-images
+  ##
+  pullPolicy: IfNotPresent
+  ## Optionally specify an array of imagePullSecrets.
+  ## Secrets must be manually created in the namespace.
+  ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/
+  ##
+  # pullSecrets:
+  #   - myRegistryKeySecretName
+
+  ## Set to true if you would like to see extra information on logs
+  ## It turns BASH and/or NAMI debugging in the image
+  ##
+  debug: false
+
+## String to partially override common.names.fullname template (will maintain the release name)
+##
+# nameOverride:
+
+## String to fully override common.names.fullname template
+##
+# fullnameOverride:
+
+##
+## Init containers parameters:
+## volumePermissions: Change the owner of the persist volume mountpoint to RunAsUser:fsGroup
+##
+volumePermissions:
+  enabled: false
+  image:
+    registry: docker.io
+    repository: bitnami/bitnami-shell
+    tag: "10"
+    ## Specify a imagePullPolicy
+    ## Defaults to 'Always' if image tag is 'latest', else set to 'IfNotPresent'
+    ## ref: http://kubernetes.io/docs/user-guide/images/#pre-pulling-images
+    ##
+    pullPolicy: Always
+    ## Optionally specify an array of imagePullSecrets.
+    ## Secrets must be manually created in the namespace.
+    ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/
+    ##
+    # pullSecrets:
+    #   - myRegistryKeySecretName
+  ## Init container Security Context
+  ## Note: the chown of the data folder is done to securityContext.runAsUser
+  ## and not the below volumePermissions.securityContext.runAsUser
+  ## When runAsUser is set to special value "auto", init container will try to chwon the
+  ## data folder to autodetermined user&group, using commands: `id -u`:`id -G | cut -d" " -f2`
+  ## "auto" is especially useful for OpenShift which has scc with dynamic userids (and 0 is not allowed).
+  ## You may want to use this volumePermissions.securityContext.runAsUser="auto" in combination with
+  ## pod securityContext.enabled=false and shmVolume.chmod.enabled=false
+  ##
+  securityContext:
+    runAsUser: 0
+
+## Use an alternate scheduler, e.g. "stork".
+## ref: https://kubernetes.io/docs/tasks/administer-cluster/configure-multiple-schedulers/
+##
+# schedulerName:
+
+## Pod Security Context
+## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/
+##
+securityContext:
+  enabled: true
+  fsGroup: 1001
+
+## Container Security Context
+## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/
+##
+containerSecurityContext:
+  enabled: true
+  runAsUser: 1001
+
+## Pod Service Account
+## ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/
+##
+serviceAccount:
+  enabled: false
+  ## Name of an already existing service account. Setting this value disables the automatic service account creation.
+  # name:
+
+## Pod Security Policy
+## ref: https://kubernetes.io/docs/concepts/policy/pod-security-policy/
+##
+psp:
+  create: false
+
+## Creates role for ServiceAccount
+## Required for PSP
+##
+rbac:
+  create: false
+
+replication:
+  enabled: false
+  user: repl_user
+  password: repl_password
+  readReplicas: 1
+  ## Set synchronous commit mode: on, off, remote_apply, remote_write and local
+  ## ref: https://www.postgresql.org/docs/9.6/runtime-config-wal.html#GUC-WAL-LEVEL
+  synchronousCommit: 'off'
+  ## From the number of `readReplicas` defined above, set the number of those that will have synchronous replication
+  ## NOTE: It cannot be > readReplicas
+  numSynchronousReplicas: 0
+  ## Replication Cluster application name. Useful for defining multiple replication policies
+  ##
+  applicationName: my_application
+
+## PostgreSQL admin password (used when `postgresqlUsername` is not `postgres`)
+## ref: https://github.com/bitnami/bitnami-docker-postgresql/blob/master/README.md#creating-a-database-user-on-first-run (see note!)
+# postgresqlPostgresPassword:
+
+## PostgreSQL user (has superuser privileges if username is `postgres`)
+## ref: https://github.com/bitnami/bitnami-docker-postgresql/blob/master/README.md#setting-the-root-password-on-first-run
+##
+postgresqlUsername: postgres
+
+## PostgreSQL password
+## ref: https://github.com/bitnami/bitnami-docker-postgresql/blob/master/README.md#setting-the-root-password-on-first-run
+##
+# postgresqlPassword:
+
+## PostgreSQL password using existing secret
+## existingSecret: secret
+##
+
+## Mount PostgreSQL secret as a file instead of passing environment variable
+# usePasswordFile: false
+
+## Create a database
+## ref: https://github.com/bitnami/bitnami-docker-postgresql/blob/master/README.md#creating-a-database-on-first-run
+##
+# postgresqlDatabase:
+
+## PostgreSQL data dir
+## ref: https://github.com/bitnami/bitnami-docker-postgresql/blob/master/README.md
+##
+postgresqlDataDir: /bitnami/postgresql/data
+
+## An array to add extra environment variables
+## For example:
+## extraEnv:
+##   - name: FOO
+##     value: "bar"
+##
+# extraEnv:
+extraEnv: []
+
+## Name of a ConfigMap containing extra env vars
+##
+# extraEnvVarsCM:
+
+## Specify extra initdb args
+## ref: https://github.com/bitnami/bitnami-docker-postgresql/blob/master/README.md
+##
+# postgresqlInitdbArgs:
+
+## Specify a custom location for the PostgreSQL transaction log
+## ref: https://github.com/bitnami/bitnami-docker-postgresql/blob/master/README.md
+##
+# postgresqlInitdbWalDir:
+
+## PostgreSQL configuration
+## Specify runtime configuration parameters as a dict, using camelCase, e.g.
+## {"sharedBuffers": "500MB"}
+## Alternatively, you can put your postgresql.conf under the files/ directory
+## ref: https://www.postgresql.org/docs/current/static/runtime-config.html
+##
+# postgresqlConfiguration:
+
+## PostgreSQL extended configuration
+## As above, but _appended_ to the main configuration
+## Alternatively, you can put your *.conf under the files/conf.d/ directory
+## https://github.com/bitnami/bitnami-docker-postgresql#allow-settings-to-be-loaded-from-files-other-than-the-default-postgresqlconf
+##
+# postgresqlExtendedConf:
+
+## Configure current cluster's primary server to be the standby server in other cluster.
+## This will allow cross cluster replication and provide cross cluster high availability.
+## You will need to configure pgHbaConfiguration if you want to enable this feature with local cluster replication enabled.
+##
+primaryAsStandBy:
+  enabled: false
+  #  primaryHost:
+  #  primaryPort:
+
+## PostgreSQL client authentication configuration
+## Specify content for pg_hba.conf
+## Default: do not create pg_hba.conf
+## Alternatively, you can put your pg_hba.conf under the files/ directory
+# pgHbaConfiguration: |-
+#   local all all trust
+#   host all all localhost trust
+#   host mydatabase mysuser 192.168.0.0/24 md5
+
+## ConfigMap with PostgreSQL configuration
+## NOTE: This will override postgresqlConfiguration and pgHbaConfiguration
+# configurationConfigMap:
+
+## ConfigMap with PostgreSQL extended configuration
+# extendedConfConfigMap:
+
+## initdb scripts
+## Specify dictionary of scripts to be run at first boot
+## Alternatively, you can put your scripts under the files/docker-entrypoint-initdb.d directory
+##
+# initdbScripts:
+#   my_init_script.sh: |
+#      #!/bin/sh
+#      echo "Do something."
+
+## ConfigMap with scripts to be run at first boot
+## NOTE: This will override initdbScripts
+# initdbScriptsConfigMap:
+
+## Secret with scripts to be run at first boot (in case it contains sensitive information)
+## NOTE: This can work along initdbScripts or initdbScriptsConfigMap
+# initdbScriptsSecret:
+
+## Specify the PostgreSQL username and password to execute the initdb scripts
+# initdbUser:
+# initdbPassword:
+
+## Audit settings
+## https://github.com/bitnami/bitnami-docker-postgresql#auditing
+##
+audit:
+  ## Log client hostnames
+  ##
+  logHostname: false
+  ## Log connections to the server
+  ##
+  logConnections: false
+  ## Log disconnections
+  ##
+  logDisconnections: false
+  ## Operation to audit using pgAudit (default if not set)
+  ##
+  pgAuditLog: ""
+  ## Log catalog using pgAudit
+  ##
+  pgAuditLogCatalog: "off"
+  ## Log level for clients
+  ##
+  clientMinMessages: error
+  ## Template for log line prefix (default if not set)
+  ##
+  logLinePrefix: ""
+  ## Log timezone
+  ##
+  logTimezone: ""
+
+## Shared preload libraries
+##
+postgresqlSharedPreloadLibraries: "pgaudit"
+
+## Maximum total connections
+##
+postgresqlMaxConnections:
+
+## Maximum connections for the postgres user
+##
+postgresqlPostgresConnectionLimit:
+
+## Maximum connections for the created user
+##
+postgresqlDbUserConnectionLimit:
+
+## TCP keepalives interval
+##
+postgresqlTcpKeepalivesInterval:
+
+## TCP keepalives idle
+##
+postgresqlTcpKeepalivesIdle:
+
+## TCP keepalives count
+##
+postgresqlTcpKeepalivesCount:
+
+## Statement timeout
+##
+postgresqlStatementTimeout:
+
+## Remove pg_hba.conf lines with the following comma-separated patterns
+## (cannot be used with custom pg_hba.conf)
+##
+postgresqlPghbaRemoveFilters:
+
+## Optional duration in seconds the pod needs to terminate gracefully.
+## ref: https://kubernetes.io/docs/concepts/workloads/pods/pod/#termination-of-pods
+##
+# terminationGracePeriodSeconds: 30
+
+## LDAP configuration
+##
+ldap:
+  enabled: false
+  url: ''
+  server: ''
+  port: ''
+  prefix: ''
+  suffix: ''
+  baseDN: ''
+  bindDN: ''
+  bind_password:
+  search_attr: ''
+  search_filter: ''
+  scheme: ''
+  tls: {}
+
+## PostgreSQL service configuration
+##
+service:
+  ## PosgresSQL service type
+  ##
+  type: ClusterIP
+  # clusterIP: None
+  port: 5432
+
+  ## Specify the nodePort value for the LoadBalancer and NodePort service types.
+  ## ref: https://kubernetes.io/docs/concepts/services-networking/service/#type-nodeport
+  ##
+  # nodePort:
+
+  ## Provide any additional annotations which may be required. Evaluated as a template.
+  ##
+  annotations: {}
+  ## Set the LoadBalancer service type to internal only.
+  ## ref: https://kubernetes.io/docs/concepts/services-networking/service/#internal-load-balancer
+  ##
+  # loadBalancerIP:
+  ## Load Balancer sources. Evaluated as a template.
+  ## https://kubernetes.io/docs/tasks/access-application-cluster/configure-cloud-provider-firewall/#restrict-access-for-loadbalancer-service
+  ##
+  # loadBalancerSourceRanges:
+  # - 10.10.10.0/24
+
+## Start primary and read(s) pod(s) without limitations on shm memory.
+## By default docker and containerd (and possibly other container runtimes)
+## limit `/dev/shm` to `64M` (see e.g. the
+## [docker issue](https://github.com/docker-library/postgres/issues/416) and the
+## [containerd issue](https://github.com/containerd/containerd/issues/3654),
+## which could be not enough if PostgreSQL uses parallel workers heavily.
+##
+shmVolume:
+  ## Set `shmVolume.enabled` to `true` to mount a new tmpfs volume to remove
+  ## this limitation.
+  ##
+  enabled: true
+  ## Set to `true` to `chmod 777 /dev/shm` on a initContainer.
+  ## This option is ignored if `volumePermissions.enabled` is `false`
+  ##
+  chmod:
+    enabled: true
+
+## PostgreSQL data Persistent Volume Storage Class
+## If defined, storageClassName: <storageClass>
+## If set to "-", storageClassName: "", which disables dynamic provisioning
+## If undefined (the default) or set to null, no storageClassName spec is
+##   set, choosing the default provisioner.  (gp2 on AWS, standard on
+##   GKE, AWS & OpenStack)
+##
+persistence:
+  enabled: true
+  ## A manually managed Persistent Volume and Claim
+  ## If defined, PVC must be created manually before volume will be bound
+  ## The value is evaluated as a template, so, for example, the name can depend on .Release or .Chart
+  ##
+  # existingClaim:
+
+  ## The path the volume will be mounted at, useful when using different
+  ## PostgreSQL images.
+  ##
+  mountPath: /bitnami/postgresql
+
+  ## The subdirectory of the volume to mount to, useful in dev environments
+  ## and one PV for multiple services.
+  ##
+  subPath: ''
+
+  # storageClass: "-"
+  accessModes:
+    - ReadWriteOnce
+  size: 8Gi
+  annotations: {}
+  ## selector can be used to match an existing PersistentVolume
+  ## selector:
+  ##   matchLabels:
+  ##     app: my-app
+  selector: {}
+
+## updateStrategy for PostgreSQL StatefulSet and its reads StatefulSets
+## ref: https://kubernetes.io/docs/concepts/workloads/controllers/statefulset/#update-strategies
+##
+updateStrategy:
+  type: RollingUpdate
+
+##
+## PostgreSQL Primary parameters
+##
+primary:
+  ## PostgreSQL Primary pod affinity preset
+  ## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity
+  ## Allowed values: soft, hard
+  ##
+  podAffinityPreset: ""
+
+  ## PostgreSQL Primary pod anti-affinity preset
+  ## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity
+  ## Allowed values: soft, hard
+  ##
+  podAntiAffinityPreset: soft
+
+  ## PostgreSQL Primary node affinity preset
+  ## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#node-affinity
+  ## Allowed values: soft, hard
+  ##
+  nodeAffinityPreset:
+    ## Node affinity type
+    ## Allowed values: soft, hard
+    type: ""
+    ## Node label key to match
+    ## E.g.
+    ## key: "kubernetes.io/e2e-az-name"
+    ##
+    key: ""
+    ## Node label values to match
+    ## E.g.
+    ## values:
+    ##   - e2e-az1
+    ##   - e2e-az2
+    ##
+    values: []
+
+  ## Affinity for PostgreSQL primary pods assignment
+  ## ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity
+  ## Note: primary.podAffinityPreset, primary.podAntiAffinityPreset, and primary.nodeAffinityPreset will be ignored when it's set
+  ##
+  affinity: {}
+
+  ## Node labels for PostgreSQL primary pods assignment
+  ## ref: https://kubernetes.io/docs/user-guide/node-selection/
+  ##
+  nodeSelector: {}
+
+  ## Tolerations for PostgreSQL primary pods assignment
+  ## ref: https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/
+  ##
+  tolerations: []
+
+  labels: {}
+  annotations: {}
+  podLabels: {}
+  podAnnotations: {}
+  priorityClassName: ''
+  ## Extra init containers
+  ## Example
+  ##
+  ## extraInitContainers:
+  ##   - name: do-something
+  ##     image: busybox
+  ##     command: ['do', 'something']
+  ##
+  extraInitContainers: []
+
+  ## Additional PostgreSQL primary Volume mounts
+  ##
+  extraVolumeMounts: []
+  ## Additional PostgreSQL primary Volumes
+  ##
+  extraVolumes: []
+  ## Add sidecars to the pod
+  ##
+  ## For example:
+  ## sidecars:
+  ##   - name: your-image-name
+  ##     image: your-image
+  ##     imagePullPolicy: Always
+  ##     ports:
+  ##       - name: portname
+  ##         containerPort: 1234
+  ##
+  sidecars: []
+
+  ## Override the service configuration for primary
+  ##
+  service: {}
+  # type:
+  # nodePort:
+  # clusterIP:
+
+##
+## PostgreSQL read only replica parameters
+##
+readReplicas:
+  ## PostgreSQL read only pod affinity preset
+  ## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity
+  ## Allowed values: soft, hard
+  ##
+  podAffinityPreset: ""
+
+  ## PostgreSQL read only pod anti-affinity preset
+  ## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity
+  ## Allowed values: soft, hard
+  ##
+  podAntiAffinityPreset: soft
+
+  ## PostgreSQL read only node affinity preset
+  ## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#node-affinity
+  ## Allowed values: soft, hard
+  ##
+  nodeAffinityPreset:
+    ## Node affinity type
+    ## Allowed values: soft, hard
+    type: ""
+    ## Node label key to match
+    ## E.g.
+    ## key: "kubernetes.io/e2e-az-name"
+    ##
+    key: ""
+    ## Node label values to match
+    ## E.g.
+    ## values:
+    ##   - e2e-az1
+    ##   - e2e-az2
+    ##
+    values: []
+
+  ## Affinity for PostgreSQL read only pods assignment
+  ## ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity
+  ## Note: readReplicas.podAffinityPreset, readReplicas.podAntiAffinityPreset, and readReplicas.nodeAffinityPreset will be ignored when it's set
+  ##
+  affinity: {}
+
+  ## Node labels for PostgreSQL read only  pods assignment
+  ## ref: https://kubernetes.io/docs/user-guide/node-selection/
+  ##
+  nodeSelector: {}
+
+  ## Tolerations for PostgreSQL read only  pods assignment
+  ## ref: https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/
+  ##
+  tolerations: []
+  labels: {}
+  annotations: {}
+  podLabels: {}
+  podAnnotations: {}
+  priorityClassName: ''
+
+  ## Extra init containers
+  ## Example
+  ##
+  ## extraInitContainers:
+  ##   - name: do-something
+  ##     image: busybox
+  ##     command: ['do', 'something']
+  ##
+  extraInitContainers: []
+
+  ## Additional PostgreSQL read replicas Volume mounts
+  ##
+  extraVolumeMounts: []
+
+  ## Additional PostgreSQL read replicas Volumes
+  ##
+  extraVolumes: []
+
+  ## Add sidecars to the pod
+  ##
+  ## For example:
+  ## sidecars:
+  ##   - name: your-image-name
+  ##     image: your-image
+  ##     imagePullPolicy: Always
+  ##     ports:
+  ##       - name: portname
+  ##         containerPort: 1234
+  ##
+  sidecars: []
+
+  ## Override the service configuration for read
+  ##
+  service: {}
+  # type:
+  # nodePort:
+  # clusterIP:
+
+  ## Whether to enable PostgreSQL read replicas data Persistent
+  ##
+  persistence:
+    enabled: true
+
+  # Override the resource configuration for read replicas
+  resources: {}
+  # requests:
+  #   memory: 256Mi
+  #   cpu: 250m
+
+## Configure resource requests and limits
+## ref: http://kubernetes.io/docs/user-guide/compute-resources/
+##
+resources:
+  requests:
+    memory: 256Mi
+    cpu: 250m
+
+## Add annotations to all the deployed resources
+##
+commonAnnotations: {}
+
+networkPolicy:
+  ## Enable creation of NetworkPolicy resources. Only Ingress traffic is filtered for now.
+  ##
+  enabled: false
+
+  ## The Policy model to apply. When set to false, only pods with the correct
+  ## client label will have network access to the port PostgreSQL is listening
+  ## on. When true, PostgreSQL will accept connections from any source
+  ## (with the correct destination port).
+  ##
+  allowExternal: true
+
+  ## if explicitNamespacesSelector is missing or set to {}, only client Pods that are in the networkPolicy's namespace
+  ## and that match other criteria, the ones that have the good label, can reach the DB.
+  ## But sometimes, we want the DB to be accessible to clients from other namespaces, in this case, we can use this
+  ## LabelSelector to select these namespaces, note that the networkPolicy's namespace should also be explicitly added.
+  ##
+  ## Example:
+  ## explicitNamespacesSelector:
+  ##   matchLabels:
+  ##     role: frontend
+  ##   matchExpressions:
+  ##    - {key: role, operator: In, values: [frontend]}
+  ##
+  explicitNamespacesSelector: {}
+
+## Configure extra options for startup, liveness and readiness probes
+## ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/#configure-probes
+##
+startupProbe:
+  enabled: false
+  initialDelaySeconds: 30
+  periodSeconds: 15
+  timeoutSeconds: 5
+  failureThreshold: 10
+  successThreshold: 1
+
+livenessProbe:
+  enabled: true
+  initialDelaySeconds: 30
+  periodSeconds: 10
+  timeoutSeconds: 5
+  failureThreshold: 6
+  successThreshold: 1
+
+readinessProbe:
+  enabled: true
+  initialDelaySeconds: 5
+  periodSeconds: 10
+  timeoutSeconds: 5
+  failureThreshold: 6
+  successThreshold: 1
+
+## Custom Startup probe
+##
+customStartupProbe: {}
+
+## Custom Liveness probe
+##
+customLivenessProbe: {}
+
+## Custom Rediness probe
+##
+customReadinessProbe: {}
+
+##
+## TLS configuration
+##
+tls:
+  # Enable TLS traffic
+  enabled: false
+  #
+  # Whether to use the server's TLS cipher preferences rather than the client's.
+  preferServerCiphers: true
+  #
+  # Name of the Secret that contains the certificates
+  certificatesSecret: ''
+  #
+  # Certificate filename
+  certFilename: ''
+  #
+  # Certificate Key filename
+  certKeyFilename: ''
+  #
+  # CA Certificate filename
+  # If provided, PostgreSQL will authenticate TLS/SSL clients by requesting them a certificate
+  # ref: https://www.postgresql.org/docs/9.6/auth-methods.html
+  certCAFilename:
+  #
+  # File containing a Certificate Revocation List
+  crlFilename:
+
+## Configure metrics exporter
+##
+metrics:
+  enabled: false
+  # resources: {}
+  service:
+    type: ClusterIP
+    annotations:
+      prometheus.io/scrape: 'true'
+      prometheus.io/port: '9187'
+    loadBalancerIP:
+  serviceMonitor:
+    enabled: false
+    additionalLabels: {}
+    # namespace: monitoring
+    # interval: 30s
+    # scrapeTimeout: 10s
+  ## Custom PrometheusRule to be defined
+  ## The value is evaluated as a template, so, for example, the value can depend on .Release or .Chart
+  ## ref: https://github.com/coreos/prometheus-operator#customresourcedefinitions
+  ##
+  prometheusRule:
+    enabled: false
+    additionalLabels: {}
+    namespace: ''
+    ## These are just examples rules, please adapt them to your needs.
+    ## Make sure to constraint the rules to the current postgresql service.
+    ## rules:
+    ##   - alert: HugeReplicationLag
+    ##     expr: pg_replication_lag{service="{{ template "common.names.fullname" . }}-metrics"} / 3600 > 1
+    ##     for: 1m
+    ##     labels:
+    ##       severity: critical
+    ##     annotations:
+    ##       description: replication for {{ template "common.names.fullname" . }} PostgreSQL is lagging by {{ "{{ $value }}" }} hour(s).
+    ##       summary: PostgreSQL replication is lagging by {{ "{{ $value }}" }} hour(s).
+    ##
+    rules: []
+
+  image:
+    registry: docker.io
+    repository: bitnami/postgres-exporter
+    tag: 0.9.0-debian-10-r43
+    pullPolicy: IfNotPresent
+    ## Optionally specify an array of imagePullSecrets.
+    ## Secrets must be manually created in the namespace.
+    ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/
+    ##
+    # pullSecrets:
+    #   - myRegistryKeySecretName
+  ## Define additional custom metrics
+  ## ref: https://github.com/wrouesnel/postgres_exporter#adding-new-metrics-via-a-config-file
+  # customMetrics:
+  #   pg_database:
+  #     query: "SELECT d.datname AS name, CASE WHEN pg_catalog.has_database_privilege(d.datname, 'CONNECT') THEN pg_catalog.pg_database_size(d.datname) ELSE 0 END AS size_bytes FROM pg_catalog.pg_database d where datname not in ('template0', 'template1', 'postgres')"
+  #     metrics:
+  #       - name:
+  #           usage: "LABEL"
+  #           description: "Name of the database"
+  #       - size_bytes:
+  #           usage: "GAUGE"
+  #           description: "Size of the database in bytes"
+  #
+  ## An array to add extra env vars to configure postgres-exporter
+  ## see: https://github.com/wrouesnel/postgres_exporter#environment-variables
+  ## For example:
+  #  extraEnvVars:
+  #  - name: PG_EXPORTER_DISABLE_DEFAULT_METRICS
+  #    value: "true"
+  extraEnvVars: {}
+
+  ## Pod Security Context
+  ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/
+  ##
+  securityContext:
+    enabled: false
+    runAsUser: 1001
+  ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-probes/#configure-probes)
+  ## Configure extra options for liveness and readiness probes
+  ##
+  livenessProbe:
+    enabled: true
+    initialDelaySeconds: 5
+    periodSeconds: 10
+    timeoutSeconds: 5
+    failureThreshold: 6
+    successThreshold: 1
+
+  readinessProbe:
+    enabled: true
+    initialDelaySeconds: 5
+    periodSeconds: 10
+    timeoutSeconds: 5
+    failureThreshold: 6
+    successThreshold: 1
+
+## Array with extra yaml to deploy with the chart. Evaluated as a template
+##
+extraDeploy: []
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/access-tls-values.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/access-tls-values.yaml
new file mode 100644
index 0000000000..1a8c4698d2
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/access-tls-values.yaml
@@ -0,0 +1,24 @@
+databaseUpgradeReady: true
+# To Fix ct tool --reuse-values - PASSWORDS ERROR: you must provide your current passwords when upgrade the release
+postgresql:
+  postgresqlPassword: password
+  persistence:
+    enabled: false
+artifactory:
+  persistence:
+    enabled: false
+  resources:
+    requests:
+      memory: "4Gi"
+      cpu: "2"
+    limits:
+      memory: "6Gi"
+      cpu: "4"
+  javaOpts:
+    xms: "4g"
+    xmx: "4g"
+access:
+  accessConfig:
+    security:
+      tls: true
+  resetAccessCAKeys: true
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/default-values.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/default-values.yaml
new file mode 100644
index 0000000000..fc34693998
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/default-values.yaml
@@ -0,0 +1,21 @@
+# Leave this file empty to ensure that CI runs builds against the default configuration in values.yaml.
+databaseUpgradeReady: true
+
+# To Fix ct tool --reuse-values - PASSWORDS ERROR: you must provide your current passwords when upgrade the release
+postgresql:
+  postgresqlPassword: password
+  persistence:
+    enabled: false
+artifactory:
+  persistence:
+    enabled: false
+  resources:
+    requests:
+      memory: "4Gi"
+      cpu: "2"
+    limits:
+      memory: "6Gi"
+      cpu: "4"
+  javaOpts:
+    xms: "4g"
+    xmx: "4g"
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/derby-test-values.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/derby-test-values.yaml
new file mode 100644
index 0000000000..82ff485457
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/derby-test-values.yaml
@@ -0,0 +1,19 @@
+databaseUpgradeReady: true
+
+postgresql:
+  enabled: false
+artifactory:
+  podSecurityContext:
+    fsGroupChangePolicy: "OnRootMismatch"
+  persistence:
+    enabled: false
+  resources:
+    requests:
+      memory: "4Gi"
+      cpu: "2"
+    limits:
+      memory: "6Gi"
+      cpu: "4"
+  javaOpts:
+    xms: "4g"
+    xmx: "4g"
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/global-values.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/global-values.yaml
new file mode 100644
index 0000000000..33bbf04a20
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/global-values.yaml
@@ -0,0 +1,247 @@
+databaseUpgradeReady: true
+# To Fix ct tool --reuse-values - PASSWORDS ERROR: you must provide your current passwords when upgrade the release
+postgresql:
+  postgresqlPassword: password
+  persistence:
+    enabled: false
+artifactory:
+  persistence:
+    enabled: false
+  resources:
+    requests:
+      memory: "4Gi"
+      cpu: "2"
+    limits:
+      memory: "6Gi"
+      cpu: "4"
+  javaOpts:
+    xms: "4g"
+    xmx: "4g"
+  customInitContainersBegin: |
+   - name: "custom-init-begin-local"
+     image: {{ include "artifactory.getImageInfoByValue" (list . "initContainers") }}
+     imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+     command:
+       - 'sh'
+       - '-c'
+       - echo "running in local"
+     volumeMounts:
+       - mountPath: "{{ .Values.artifactory.persistence.mountPath }}"
+         name: artifactory-volume
+  customInitContainers: |
+   - name: "custom-init-local"
+     image: {{ include "artifactory.getImageInfoByValue" (list . "initContainers") }}
+     imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+     command:
+       - 'sh'
+       - '-c'
+       - echo "running in local"
+     volumeMounts:
+       - mountPath: "{{ .Values.artifactory.persistence.mountPath }}"
+         name: artifactory-volume
+  # Add custom volumes
+  customVolumes: |
+   - name: custom-script-local
+     emptyDir:
+       sizeLimit: 100Mi
+  # Add custom volumesMounts
+  customVolumeMounts: |
+   - name: custom-script-local
+     mountPath: "/scriptslocal"
+  # Add custom sidecar containers
+  customSidecarContainers: |
+   - name: "sidecar-list-local"
+     image: {{ include "artifactory.getImageInfoByValue" (list . "initContainers") }}
+     imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+     securityContext:
+       allowPrivilegeEscalation: false
+       capabilities:
+         drop:
+           - NET_RAW
+     command: ["sh","-c","echo 'Sidecar is running in local' >> /scriptslocal/sidecarlocal.txt; cat /scriptslocal/sidecarlocal.txt; while true; do sleep 30; done"]
+     volumeMounts:
+       - mountPath: "/scriptslocal"
+         name: custom-script-local
+     resources:
+       requests:
+         memory: "32Mi"
+         cpu: "50m"
+       limits:
+         memory: "128Mi"
+         cpu: "100m"
+
+global:
+  masterKey: FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF
+  joinKey: EEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEE
+  customInitContainersBegin: |
+   - name: "custom-init-begin-global"
+     image: {{ include "artifactory.getImageInfoByValue" (list . "initContainers") }}
+     imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+     command:
+       - 'sh'
+       - '-c'
+       - echo "running in global"
+     volumeMounts:
+       - mountPath: "{{ .Values.artifactory.persistence.mountPath }}"
+         name: artifactory-volume
+  customInitContainers: |
+   - name: "custom-init-global"
+     image: {{ include "artifactory.getImageInfoByValue" (list . "initContainers") }}
+     imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+     command:
+       - 'sh'
+       - '-c'
+       - echo "running in global"
+     volumeMounts:
+       - mountPath: "{{ .Values.artifactory.persistence.mountPath }}"
+         name: artifactory-volume
+  # Add custom volumes
+  customVolumes: |
+   - name: custom-script-global
+     emptyDir:
+       sizeLimit: 100Mi
+  # Add custom volumesMounts
+  customVolumeMounts: |
+   - name: custom-script-global
+     mountPath: "/scripts"
+  # Add custom sidecar containers
+  customSidecarContainers: |
+   - name: "sidecar-list-global"
+     image: {{ include "artifactory.getImageInfoByValue" (list . "initContainers") }}
+     imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+     securityContext:
+       allowPrivilegeEscalation: false
+       capabilities:
+         drop:
+           - NET_RAW
+     command: ["sh","-c","echo 'Sidecar is running in global' >> /scripts/sidecarglobal.txt; cat /scripts/sidecarglobal.txt; while true; do sleep 30; done"]
+     volumeMounts:
+       - mountPath: "/scripts"
+         name: custom-script-global
+     resources:
+       requests:
+         memory: "32Mi"
+         cpu: "50m"
+       limits:
+         memory: "128Mi"
+         cpu: "100m"
+
+nginx:
+  customInitContainers: |
+   - name: "custom-init-begin-nginx"
+     image: {{ include "artifactory.getImageInfoByValue" (list . "initContainers") }}
+     imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+     command:
+       - 'sh'
+       - '-c'
+       - echo "running in nginx"
+     volumeMounts:
+       - mountPath: "{{ .Values.artifactory.persistence.mountPath }}"
+         name: custom-script-local
+  customSidecarContainers: |
+   - name: "sidecar-list-nginx"
+     image: {{ include "artifactory.getImageInfoByValue" (list . "initContainers") }}
+     imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+     securityContext:
+       allowPrivilegeEscalation: false
+       capabilities:
+         drop:
+           - NET_RAW
+     command: ["sh","-c","echo 'Sidecar is running in local' >> /scriptslocal/sidecarlocal.txt; cat /scriptslocal/sidecarlocal.txt; while true; do sleep 30; done"]
+     volumeMounts:
+       - mountPath: "/scriptslocal"
+         name: custom-script-local
+     resources:
+       requests:
+         memory: "32Mi"
+         cpu: "50m"
+       limits:
+         memory: "128Mi"
+         cpu: "100m"
+  # Add custom volumes
+  customVolumes: |
+   - name: custom-script-local
+     emptyDir:
+       sizeLimit: 100Mi
+
+  artifactoryConf: |
+    {{- if .Values.nginx.https.enabled }}
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2 TLSv1.3;
+    ssl_certificate  {{ .Values.nginx.persistence.mountPath }}/ssl/tls.crt;
+    ssl_certificate_key  {{ .Values.nginx.persistence.mountPath }}/ssl/tls.key;
+    ssl_session_cache shared:SSL:1m;
+    ssl_prefer_server_ciphers   on;
+    {{- end }}
+    ## server configuration
+    server {
+      listen 8088;
+    {{- if .Values.nginx.internalPortHttps }}
+      listen {{ .Values.nginx.internalPortHttps }} ssl;
+    {{- else -}}
+      {{- if .Values.nginx.https.enabled }}
+      listen {{ .Values.nginx.https.internalPort }} ssl;
+      {{- end }}
+    {{- end }}
+    {{- if .Values.nginx.internalPortHttp }}
+      listen {{ .Values.nginx.internalPortHttp }};
+    {{- else -}}
+      {{- if .Values.nginx.http.enabled }}
+      listen {{ .Values.nginx.http.internalPort }};
+      {{- end }}
+    {{- end }}
+      server_name ~(?<repo>.+)\.{{ include "artifactory.fullname" . }} {{ include "artifactory.fullname" . }}
+      {{- range .Values.ingress.hosts -}}
+        {{- if contains "." . -}}
+          {{ "" | indent 0 }} ~(?<repo>.+)\.{{ . }}
+        {{- end -}}
+      {{- end -}};
+
+      if ($http_x_forwarded_proto = '') {
+        set $http_x_forwarded_proto  $scheme;
+      }
+      ## Application specific logs
+      ## access_log /var/log/nginx/artifactory-access.log timing;
+      ## error_log /var/log/nginx/artifactory-error.log;
+      rewrite ^/artifactory/?$ / redirect;
+      if ( $repo != "" ) {
+        rewrite ^/(v1|v2)/(.*) /artifactory/api/docker/$repo/$1/$2 break;
+      }
+      chunked_transfer_encoding on;
+      client_max_body_size 0;
+
+      location / {
+        proxy_read_timeout  900;
+        proxy_pass_header   Server;
+        proxy_cookie_path   ~*^/.* /;
+        proxy_pass          {{ include "artifactory.scheme" . }}://{{ include "artifactory.fullname" . }}:{{ .Values.artifactory.externalPort }}/;
+        {{- if .Values.nginx.service.ssloffload}}
+        proxy_set_header    X-JFrog-Override-Base-Url $http_x_forwarded_proto://$host;
+        {{- else }}
+        proxy_set_header    X-JFrog-Override-Base-Url $http_x_forwarded_proto://$host:$server_port;
+        proxy_set_header    X-Forwarded-Port  $server_port;
+        {{- end }}
+        proxy_set_header    X-Forwarded-Proto $http_x_forwarded_proto;
+        proxy_set_header    Host              $http_host;
+        proxy_set_header    X-Forwarded-For   $proxy_add_x_forwarded_for;
+        add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always;
+
+        location /artifactory/ {
+          if ( $request_uri ~ ^/artifactory/(.*)$ ) {
+            proxy_pass       {{ include "artifactory.scheme" . }}://{{ include "artifactory.fullname" . }}:{{ .Values.artifactory.externalArtifactoryPort }}/artifactory/$1;
+          }
+          proxy_pass         {{ include "artifactory.scheme" . }}://{{ include "artifactory.fullname" . }}:{{ .Values.artifactory.externalArtifactoryPort }}/artifactory/;
+        }
+      }
+    }
+
+  ## A list of custom ports to expose on the NGINX pod. Follows the conventional Kubernetes yaml syntax for container ports.
+  customPorts:
+  - containerPort: 8088
+    name: http2
+  service:
+    ## A list of custom ports to expose through the Ingress controller service. Follows the conventional Kubernetes yaml syntax for service ports.
+    customPorts:
+    - port: 8088
+      targetPort: 8088
+      protocol: TCP
+      name: http2
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/large-values.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/large-values.yaml
new file mode 100644
index 0000000000..94a485d6f4
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/large-values.yaml
@@ -0,0 +1,82 @@
+# Leave this file empty to ensure that CI runs builds against the default configuration in values.yaml.
+databaseUpgradeReady: true
+
+# To Fix ct tool --reuse-values - PASSWORDS ERROR: you must provide your current passwords when upgrade the release
+postgresql:
+  postgresqlPassword: password
+  persistence:
+    enabled: false
+artifactory:
+  persistence:
+    enabled: false
+  database:
+    maxOpenConnections: 150
+  tomcat:
+    connector:
+      maxThreads: 300
+  resources:
+    requests:
+      memory: "6Gi"
+      cpu: "2"
+    limits:
+      memory: "10Gi"
+      cpu: "8"
+  javaOpts:
+    xms: "8g"
+    xmx: "10g"
+access:
+  database:
+    maxOpenConnections: 150
+  tomcat:
+    connector:
+      maxThreads: 100
+router:
+  resources:
+    requests:
+      memory: "200Mi"
+      cpu: "200m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+frontend:
+  resources:
+    requests:
+      memory: "200Mi"
+      cpu: "200m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+metadata:
+  database:
+    maxOpenConnections: 150
+  resources:
+    requests:
+      memory: "200Mi"
+      cpu: "200m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+event:
+  resources:
+    requests:
+      memory: "200Mi"
+      cpu: "200m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+jfconnect:
+  resources:
+    requests:
+      memory: "200Mi"
+      cpu: "200m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+observability:
+  resources:
+    requests:
+      memory: "200Mi"
+      cpu: "200m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/loggers-values.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/loggers-values.yaml
new file mode 100644
index 0000000000..03c94be953
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/loggers-values.yaml
@@ -0,0 +1,43 @@
+# Leave this file empty to ensure that CI runs builds against the default configuration in values.yaml.
+databaseUpgradeReady: true
+
+# To Fix ct tool --reuse-values - PASSWORDS ERROR: you must provide your current passwords when upgrade the release
+postgresql:
+  postgresqlPassword: password
+  persistence:
+    enabled: false
+artifactory:
+  persistence:
+    enabled: false
+  resources:
+    requests:
+      memory: "4Gi"
+      cpu: "2"
+    limits:
+      memory: "6Gi"
+      cpu: "4"
+  javaOpts:
+    xms: "4g"
+    xmx: "4g"
+
+  loggers:
+  - access-audit.log
+  - access-request.log
+  - access-security-audit.log
+  - access-service.log
+  - artifactory-access.log
+  - artifactory-event.log
+  - artifactory-import-export.log
+  - artifactory-request.log
+  - artifactory-service.log
+  - frontend-request.log
+  - frontend-service.log
+  - metadata-request.log
+  - metadata-service.log
+  - router-request.log
+  - router-service.log
+  - router-traefik.log
+
+  catalinaLoggers:
+  - tomcat-catalina.log
+  - tomcat-localhost.log
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/medium-values.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/medium-values.yaml
new file mode 100644
index 0000000000..35044dc36d
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/medium-values.yaml
@@ -0,0 +1,82 @@
+# Leave this file empty to ensure that CI runs builds against the default configuration in values.yaml.
+databaseUpgradeReady: true
+
+# To Fix ct tool --reuse-values - PASSWORDS ERROR: you must provide your current passwords when upgrade the release
+postgresql:
+  postgresqlPassword: password
+  persistence:
+    enabled: false
+artifactory:
+  persistence:
+    enabled: false
+  database:
+    maxOpenConnections: 100
+  tomcat:
+    connector:
+      maxThreads: 200
+  resources:
+    requests:
+      memory: "4Gi"
+      cpu: "2"
+    limits:
+      memory: "8Gi"
+      cpu: "6"
+  javaOpts:
+    xms: "6g"
+    xmx: "8g"
+access:
+  database:
+    maxOpenConnections: 100
+  tomcat:
+    connector:
+      maxThreads: 50
+router:
+  resources:
+    requests:
+      memory: "200Mi"
+      cpu: "200m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+frontend:
+  resources:
+    requests:
+      memory: "200Mi"
+      cpu: "200m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+metadata:
+  database:
+    maxOpenConnections: 100
+  resources:
+    requests:
+      memory: "200Mi"
+      cpu: "200m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+event:
+  resources:
+    requests:
+      memory: "200Mi"
+      cpu: "200m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+jfconnect:
+  resources:
+    requests:
+      memory: "200Mi"
+      cpu: "200m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+observability:
+  resources:
+    requests:
+      memory: "200Mi"
+      cpu: "200m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/migration-disabled-values.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/migration-disabled-values.yaml
new file mode 100644
index 0000000000..092756fb65
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/migration-disabled-values.yaml
@@ -0,0 +1,21 @@
+databaseUpgradeReady: true
+# To Fix ct tool --reuse-values - PASSWORDS ERROR: you must provide your current passwords when upgrade the release
+postgresql:
+  postgresqlPassword: password
+  persistence:
+    enabled: false
+artifactory:
+  migration:
+    enabled: false
+  persistence:
+    enabled: false
+  resources:
+    requests:
+      memory: "4Gi"
+      cpu: "2"
+    limits:
+      memory: "6Gi"
+      cpu: "4"
+  javaOpts:
+    xms: "4g"
+    xmx: "4g"
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/nginx-autoreload-values.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/nginx-autoreload-values.yaml
new file mode 100644
index 0000000000..09616c5bf4
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/nginx-autoreload-values.yaml
@@ -0,0 +1,42 @@
+# Leave this file empty to ensure that CI runs builds against the default configuration in values.yaml.
+databaseUpgradeReady: true
+
+# To Fix ct tool --reuse-values - PASSWORDS ERROR: you must provide your current passwords when upgrade the release
+postgresql:
+  postgresqlPassword: password
+  persistence:
+    enabled: false
+artifactory:
+  persistence:
+    enabled: false
+  resources:
+    requests:
+      memory: "4Gi"
+      cpu: "2"
+    limits:
+      memory: "6Gi"
+      cpu: "4"
+  javaOpts:
+    xms: "4g"
+    xmx: "4g"
+
+nginx:
+  customVolumes: |
+    - name: scripts
+      configMap:
+        name: {{ template "artifactory.fullname" . }}-nginx-scripts
+        defaultMode: 0550
+  customVolumeMounts: |
+    - name: scripts
+      mountPath: /var/opt/jfrog/nginx/scripts/
+  customCommand:
+    - /bin/sh
+    - -c
+    - |
+      # watch for configmap changes
+      /sbin/inotifyd /var/opt/jfrog/nginx/scripts/configreloader.sh {{ .Values.nginx.persistence.mountPath -}}/conf.d:n &
+      {{ if .Values.nginx.https.enabled -}}
+      # watch for tls secret changes
+      /sbin/inotifyd /var/opt/jfrog/nginx/scripts/configreloader.sh {{ .Values.nginx.persistence.mountPath -}}/ssl:n &
+      {{ end -}}
+      nginx -g 'daemon off;'
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/rtsplit-values-access-tls-values.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/rtsplit-values-access-tls-values.yaml
new file mode 100644
index 0000000000..a38969a8ff
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/rtsplit-values-access-tls-values.yaml
@@ -0,0 +1,96 @@
+databaseUpgradeReady: true
+artifactory:
+  joinKey: EEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEE
+  masterKey: FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF
+  persistence:
+    enabled: false
+  resources:
+    requests:
+      memory: "4Gi"
+      cpu: "2"
+    limits:
+      memory: "6Gi"
+      cpu: "4"
+  javaOpts:
+    xms: "4g"
+    xmx: "4g"
+
+access:
+  accessConfig:
+    security:
+      tls: true
+  resetAccessCAKeys: true
+
+postgresql:
+  postgresqlPassword: password
+  postgresqlExtendedConf:
+    maxConnections: 102
+  persistence:
+    enabled: false
+
+rbac:
+  create: true
+serviceAccount:
+  create: true
+  automountServiceAccountToken: true
+
+ingress:
+  enabled: true
+  className: "testclass"
+  hosts:
+    - demonow.xyz
+nginx:
+  enabled: false
+jfconnect:
+  enabled: true
+  resources:
+    requests:
+      memory: "100Mi"
+      cpu: "100m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+mc:
+  enabled: true
+splitServicesToContainers: true
+
+router:
+  resources:
+    requests:
+      memory: "100Mi"
+      cpu: "100m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+frontend:
+  resources:
+    requests:
+      memory: "100Mi"
+      cpu: "100m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+metadata:
+  resources:
+    requests:
+      memory: "100Mi"
+      cpu: "100m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+event:
+  resources:
+    requests:
+      memory: "100Mi"
+      cpu: "100m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+observability:
+  resources:
+    requests:
+      memory: "100Mi"
+      cpu: "100m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/rtsplit-values.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/rtsplit-values.yaml
new file mode 100644
index 0000000000..057ae9bf36
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/rtsplit-values.yaml
@@ -0,0 +1,151 @@
+databaseUpgradeReady: true
+artifactory:
+  replicaCount: 1
+  joinKey: EEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEE
+  masterKey: FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF
+  persistence:
+    enabled: false
+  resources:
+    requests:
+      memory: "4Gi"
+      cpu: "2"
+    limits:
+      memory: "6Gi"
+      cpu: "4"
+  javaOpts:
+    xms: "4g"
+    xmx: "4g"
+
+  # Add lifecycle hooks for artifactory container
+  lifecycle:
+    postStart:
+      exec:
+        command: ["/bin/sh", "-c", "echo Hello from the artifactory postStart handler >> /tmp/message"]
+    preStop:
+      exec:
+        command: ["/bin/sh", "-c", "echo Hello from the artifactory postStart handler >> /tmp/message"]
+
+postgresql:
+  postgresqlPassword: password
+  postgresqlExtendedConf:
+    maxConnections: 100
+  persistence:
+    enabled: false
+
+rbac:
+  create: true
+serviceAccount:
+  create: true
+  automountServiceAccountToken: true
+
+ingress:
+  enabled: true
+  className: "testclass"
+  hosts:
+    - demonow.xyz
+nginx:
+  enabled: false
+jfconnect:
+  enabled: true
+  resources:
+    requests:
+      memory: "100Mi"
+      cpu: "100m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+  # Add lifecycle hooks for jfconect container
+  lifecycle:
+    postStart:
+      exec:
+        command: ["/bin/sh", "-c", "echo Hello from the jfconnect postStart handler >> /tmp/message"]
+    preStop:
+      exec:
+        command: ["/bin/sh", "-c", "echo Hello from the jfconnect postStart handler >> /tmp/message"]
+
+
+mc:
+  enabled: true
+splitServicesToContainers: true
+
+router:
+  resources:
+    requests:
+      memory: "100Mi"
+      cpu: "100m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+  # Add lifecycle hooks for router container
+  lifecycle:
+    postStart:
+      exec:
+        command: ["/bin/sh", "-c", "echo Hello from the router postStart handler >> /tmp/message"]
+    preStop:
+      exec:
+        command: ["/bin/sh", "-c", "echo Hello from the router postStart handler >> /tmp/message"]
+
+frontend:
+  resources:
+    requests:
+      memory: "100Mi"
+      cpu: "100m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+  # Add lifecycle hooks for frontend container
+  lifecycle:
+    postStart:
+      exec:
+        command: ["/bin/sh", "-c", "echo Hello from the frontend postStart handler >> /tmp/message"]
+    preStop:
+      exec:
+        command: ["/bin/sh", "-c", "echo Hello from the frontend postStart handler >> /tmp/message"]
+
+metadata:
+  resources:
+    requests:
+      memory: "100Mi"
+      cpu: "100m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+  lifecycle:
+    postStart:
+      exec:
+        command: ["/bin/sh", "-c", "echo Hello from the metadata postStart handler >> /tmp/message"]
+    preStop:
+      exec:
+        command: ["/bin/sh", "-c", "echo Hello from the metadata postStart handler >> /tmp/message"]
+
+event:
+  resources:
+    requests:
+      memory: "100Mi"
+      cpu: "100m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+  lifecycle:
+    postStart:
+      exec:
+        command: ["/bin/sh", "-c", "echo Hello from the event postStart handler >> /tmp/message"]
+    preStop:
+      exec:
+        command: ["/bin/sh", "-c", "echo Hello from the event postStart handler >> /tmp/message"]
+
+observability:
+  resources:
+    requests:
+      memory: "100Mi"
+      cpu: "100m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+  lifecycle:
+    postStart:
+      exec:
+        command: ["/bin/sh", "-c", "echo Hello from the observability postStart handler >> /tmp/message"]
+    preStop:
+      exec:
+        command: ["/bin/sh", "-c", "echo Hello from the observability postStart handler >> /tmp/message"]
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/small-values.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/small-values.yaml
new file mode 100644
index 0000000000..cd594e59ef
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/small-values.yaml
@@ -0,0 +1,85 @@
+# Leave this file empty to ensure that CI runs builds against the default configuration in values.yaml.
+databaseUpgradeReady: true
+
+# To Fix ct tool --reuse-values - PASSWORDS ERROR: you must provide your current passwords when upgrade the release
+postgresql:
+  postgresqlPassword: password
+  persistence:
+    enabled: false
+artifactory:
+  persistence:
+    enabled: false
+  database:
+    maxOpenConnections: 80
+  tomcat:
+    connector:
+      maxThreads: 200
+  resources:
+    requests:
+      memory: "4Gi"
+      cpu: "2"
+    limits:
+      memory: "6Gi"
+      cpu: "4"
+  javaOpts:
+    xms: "4g"
+    xmx: "6g"
+access:
+  database:
+    maxOpenConnections: 80
+  tomcat:
+    connector:
+      maxThreads: 50
+router:
+  resources:
+    requests:
+      memory: "100Mi"
+      cpu: "100m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+frontend:
+  resources:
+    requests:
+      memory: "100Mi"
+      cpu: "100m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+metadata:
+  database:
+    maxOpenConnections: 80
+  resources:
+    requests:
+      memory: "100Mi"
+      cpu: "100m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+event:
+  resources:
+    requests:
+      memory: "100Mi"
+      cpu: "100m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+jfconnect:
+  resources:
+    requests:
+      memory: "100Mi"
+      cpu: "100m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+observability:
+  resources:
+    requests:
+      memory: "100Mi"
+      cpu: "100m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+
+rtfs:
+  enabled: true
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/test-values.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/test-values.yaml
new file mode 100644
index 0000000000..d2beb0eff6
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/ci/test-values.yaml
@@ -0,0 +1,84 @@
+databaseUpgradeReady: true
+artifactory:
+  replicaCount: 3
+  joinKey: EEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEE
+  masterKey: FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF
+  unifiedSecretInstallation: false
+  metrics:
+    enabled: true
+  persistence:
+    enabled: false
+  resources:
+    requests:
+      memory: "4Gi"
+      cpu: "2"
+    limits:
+      memory: "6Gi"
+      cpu: "4"
+  javaOpts:
+    xms: "4g"
+    xmx: "4g"
+  statefulset:
+    annotations:
+      artifactory: test
+
+postgresql:
+  postgresqlPassword: password
+  postgresqlExtendedConf:
+    maxConnections: 100
+  persistence:
+    enabled: false
+
+rbac:
+  create: true
+serviceAccount:
+  create: true
+  automountServiceAccountToken: true
+
+ingress:
+  enabled: true
+  className: "testclass"
+  hosts:
+    - demonow.xyz
+nginx:
+  enabled: false
+
+jfconnect:
+  enabled: false
+
+autoscaling:
+  enabled: false
+  minReplicas: 1
+  maxReplicas: 3
+  targetCPUUtilizationPercentage: 70
+
+## filebeat sidecar
+filebeat:
+  enabled: true
+  filebeatYml: |
+    logging.level: info
+    path.data: {{ .Values.artifactory.persistence.mountPath }}/log/filebeat
+    name: artifactory-filebeat
+    queue.spool:
+      file:
+        permissions: 0760
+    filebeat.inputs:
+    - type: log
+      enabled: true
+      close_eof: ${CLOSE:false}
+      paths:
+         - {{ .Values.artifactory.persistence.mountPath }}/log/*.log
+      fields:
+        service: "jfrt"
+        log_type: "artifactory"
+    output.file:
+      path: "/tmp/filebeat"
+      filename: filebeat
+  readinessProbe:
+    exec:
+      command:
+        - sh
+        - -c
+        - |
+          #!/usr/bin/env bash -e
+          curl --fail 127.0.0.1:5066
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/files/binarystore.xml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/files/binarystore.xml
new file mode 100644
index 0000000000..8d71072e29
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/files/binarystore.xml
@@ -0,0 +1,429 @@
+{{- if eq .Values.artifactory.persistence.type "nfs" -}}
+<config version="2">
+    {{- if  (.Values.artifactory.persistence.maxCacheSize) }}
+    <chain> <!--template="file-system"-->
+        <provider id="cache-fs" type="cache-fs">
+            <provider id="file-system" type="file-system"/>
+        </provider>
+    </chain>
+    {{- else }}
+    <chain> <!--template="file-system"-->
+        <provider id="file-system" type="file-system"/>
+    </chain>
+    {{- end }}
+
+    {{- if .Values.artifactory.persistence.maxCacheSize }}
+    <provider id="cache-fs" type="cache-fs">
+        <maxCacheSize>{{ .Values.artifactory.persistence.maxCacheSize | int64 }}</maxCacheSize>
+        <cacheProviderDir>{{ .Values.artifactory.persistence.cacheProviderDir }}</cacheProviderDir>
+        {{- if .Values.artifactory.persistence.maxFileSizeLimit }}
+        <maxFileSizeLimit>{{.Values.artifactory.persistence.maxFileSizeLimit | int64}}</maxFileSizeLimit>
+        {{- end }}
+        {{- if .Values.artifactory.persistence.skipDuringUpload }}
+        <skipDuringUpload>{{.Values.artifactory.persistence.skipDuringUpload}}</skipDuringUpload>
+        {{- end }}
+    </provider>
+    {{- end }}
+
+    <provider id="file-system" type="file-system">
+        <fileStoreDir>{{ .Values.artifactory.persistence.nfs.dataDir }}/filestore</fileStoreDir>
+    </provider>
+</config>
+{{- end }}
+{{- if eq .Values.artifactory.persistence.type "file-system" -}}
+<!-- File system filestore -->
+<config version="v1">
+    <chain> <!--template="file-system"-->
+        {{- if .Values.artifactory.persistence.fileSystem.cache.enabled }}
+        <provider id="cache-fs" type="cache-fs">
+        {{- end }}
+            <provider id="file-system" type="file-system"/>
+        {{- if .Values.artifactory.persistence.fileSystem.cache.enabled }}
+        </provider>
+        {{- end }}
+    </chain>
+
+    {{- if .Values.artifactory.persistence.fileSystem.cache.enabled }}
+    <provider id="cache-fs" type="cache-fs">
+        <maxCacheSize>{{ .Values.artifactory.persistence.maxCacheSize | int64 }}</maxCacheSize>
+        <cacheProviderDir>{{ .Values.artifactory.persistence.cacheProviderDir }}</cacheProviderDir>
+        {{- if .Values.artifactory.persistence.maxFileSizeLimit }}
+        <maxFileSizeLimit>{{.Values.artifactory.persistence.maxFileSizeLimit | int64}}</maxFileSizeLimit>
+        {{- end }}
+        {{- if .Values.artifactory.persistence.skipDuringUpload }}
+        <skipDuringUpload>{{.Values.artifactory.persistence.skipDuringUpload}}</skipDuringUpload>
+        {{- end }}
+    </provider>
+    {{- end }}
+</config>
+{{- end }}
+{{- if eq .Values.artifactory.persistence.type "cluster-file-system" -}}
+<!-- Cluster File system filestore -->
+<config version="2">
+    <chain> <!--template="cluster-file-system"-->
+        <provider id="cache-fs" type="cache-fs">
+            <provider id="sharding-cluster" type="sharding-cluster">
+                <readBehavior>crossNetworkStrategy</readBehavior>
+                <writeBehavior>crossNetworkStrategy</writeBehavior>
+                <redundancy>{{ .Values.artifactory.persistence.redundancy }}</redundancy>
+                <lenientLimit>{{ .Values.artifactory.persistence.lenientLimit }}</lenientLimit>
+                <minSpareUploaderExecutor>2</minSpareUploaderExecutor>
+                <sub-provider id="state-aware" type="state-aware"/>
+                <dynamic-provider id="remote" type="remote"/>
+                <property name="zones" value="local,remote"/>
+            </provider>
+        </provider>
+    </chain>
+
+    <provider id="cache-fs" type="cache-fs">
+        <maxCacheSize>{{ .Values.artifactory.persistence.maxCacheSize | int64 }}</maxCacheSize>
+        <cacheProviderDir>{{ .Values.artifactory.persistence.cacheProviderDir }}</cacheProviderDir>
+        {{- if .Values.artifactory.persistence.maxFileSizeLimit }}
+        <maxFileSizeLimit>{{.Values.artifactory.persistence.maxFileSizeLimit | int64}}</maxFileSizeLimit>
+        {{- end }}
+        {{- if .Values.artifactory.persistence.skipDuringUpload }}
+        <skipDuringUpload>{{.Values.artifactory.persistence.skipDuringUpload}}</skipDuringUpload>
+        {{- end }}
+    </provider>
+
+    <!-- Shards add local file-system provider configuration -->
+    <provider id="state-aware" type="state-aware">
+        <fileStoreDir>shard-fs-1</fileStoreDir>
+        <zone>local</zone>
+    </provider>
+
+    <!-- Shards dynamic remote provider configuration -->
+    <provider id="remote" type="remote">
+        <checkPeriod>30</checkPeriod>
+        <serviceId>tester-remote1</serviceId>
+        <timeout>10000</timeout>
+        <zone>remote</zone>
+        <property name="header.remote.block" value="true"/>
+    </provider>
+</config>
+{{- end }}
+{{- if or (eq .Values.artifactory.persistence.type "google-storage") (eq .Values.artifactory.persistence.type "google-storage-v2") (eq .Values.artifactory.persistence.type "cluster-google-storage-v2") (eq .Values.artifactory.persistence.type "google-storage-v2-direct")  }}
+<!-- Google storage -->
+<config version="2">
+    {{- if or (eq .Values.artifactory.persistence.type "google-storage") (eq .Values.artifactory.persistence.type "google-storage-v2") }}
+    <chain> <!--template="google-storage-v2"-->
+        <provider id="cache-fs" type="cache-fs">
+            <provider id="eventual" type="eventual">
+                <provider id="retry" type="retry">
+                    <provider id="google-storage-v2" type="google-storage-v2"/>
+                </provider>
+            </provider>
+        </provider>
+    </chain>
+    {{- else if eq .Values.artifactory.persistence.type "cluster-google-storage-v2" }}
+    <chain> <!--template="cluster-google-storage-v2"-->
+        <provider id="cache-fs" type="cache-fs">
+            <provider id="sharding-cluster" type="sharding-cluster">
+                <readBehavior>crossNetworkStrategy</readBehavior>
+                <writeBehavior>crossNetworkStrategy</writeBehavior>
+                <redundancy>{{ .Values.artifactory.persistence.redundancy }}</redundancy>
+                <lenientLimit>{{ .Values.artifactory.persistence.lenientLimit }}</lenientLimit>
+                <minSpareUploaderExecutor>2</minSpareUploaderExecutor>
+                <sub-provider id="eventual-cluster" type="eventual-cluster">
+                    <provider id="retry" type="retry">
+                        <provider id="google-storage-v2" type="google-storage-v2"/>
+                    </provider>
+                </sub-provider>
+                <dynamic-provider id="remote" type="remote"/>
+                <property name="zones" value="local,remote"/>
+            </provider>
+        </provider>
+    </chain>
+    {{- else if eq .Values.artifactory.persistence.type "google-storage-v2-direct" }}
+    <chain>  <!--template="google-storage-v2-direct"-->
+        <provider id="cache-fs" type="cache-fs">
+            <provider id="google-storage-v2" type="google-storage-v2"/>
+        </provider>
+    </chain>
+    {{- end }}
+
+    <!-- Set max cache-fs size -->
+    <provider id="cache-fs" type="cache-fs">
+        <maxCacheSize>{{ .Values.artifactory.persistence.maxCacheSize | int64 }}</maxCacheSize>
+        <cacheProviderDir>{{ .Values.artifactory.persistence.cacheProviderDir }}</cacheProviderDir>
+        {{- if .Values.artifactory.persistence.maxFileSizeLimit }}
+        <maxFileSizeLimit>{{.Values.artifactory.persistence.maxFileSizeLimit | int64}}</maxFileSizeLimit>
+        {{- end }}
+        {{- if .Values.artifactory.persistence.skipDuringUpload }}
+        <skipDuringUpload>{{.Values.artifactory.persistence.skipDuringUpload}}</skipDuringUpload>
+        {{- end }}
+    </provider>
+
+    {{- if eq .Values.artifactory.persistence.type "cluster-google-storage-v2" }}
+    <provider id="eventual-cluster" type="eventual-cluster">
+        <zone>local</zone>
+    </provider>
+
+    <provider id="remote" type="remote">
+        <checkPeriod>30</checkPeriod>
+        <timeout>10000</timeout>
+        <zone>remote</zone>
+    </provider>
+    {{- end }}
+
+    <provider id="google-storage-v2" type="google-storage-v2">
+        {{- if .Values.artifactory.persistence.googleStorage.useInstanceCredentials }}
+        <useInstanceCredentials>true</useInstanceCredentials>
+        {{- else }}
+        <useInstanceCredentials>false</useInstanceCredentials>
+        {{- end }}
+        <enableSignedUrlRedirect>{{ .Values.artifactory.persistence.googleStorage.enableSignedUrlRedirect }}</enableSignedUrlRedirect>
+        <providerId>google-cloud-storage</providerId>
+        <endpoint>{{ .Values.artifactory.persistence.googleStorage.endpoint }}</endpoint>
+        <httpsOnly>{{ .Values.artifactory.persistence.googleStorage.httpsOnly }}</httpsOnly>
+        <bucketName>{{ .Values.artifactory.persistence.googleStorage.bucketName }}</bucketName>
+        <path>{{ .Values.artifactory.persistence.googleStorage.path }}</path>
+        <bucketExists>{{ .Values.artifactory.persistence.googleStorage.bucketExists }}</bucketExists>
+        {{- if .Values.artifactory.persistence.googleStorage.signedUrlExpirySeconds }}
+        <signedUrlExpirySeconds>{{ .Values.artifactory.persistence.googleStorage.signedUrlExpirySeconds | int64 }}</signedUrlExpirySeconds>
+        {{- end }}
+    </provider>
+</config>
+{{- end }}
+{{- if or (eq .Values.artifactory.persistence.type "aws-s3-v3") (eq .Values.artifactory.persistence.type "s3-storage-v3-direct") (eq .Values.artifactory.persistence.type "cluster-s3-storage-v3") (eq .Values.artifactory.persistence.type "s3-storage-v3-archive")  }}
+<!-- AWS S3 V3 -->
+<config version="2">
+    {{- if eq .Values.artifactory.persistence.type "aws-s3-v3" }}
+    <chain> <!--template="s3-storage-v3"-->
+        <provider id="cache-fs" type="cache-fs">
+            <provider id="eventual" type="eventual">
+                <provider id="retry" type="retry">
+                    <provider id="s3-storage-v3" type="s3-storage-v3"/>
+                </provider>
+            </provider>
+        </provider>
+    </chain>
+    {{- else if eq .Values.artifactory.persistence.type "s3-storage-v3-direct" }}
+    <chain> <!--template="s3-storage-v3-direct"-->
+        <provider id="cache-fs" type="cache-fs">
+            <provider id="s3-storage-v3" type="s3-storage-v3"/>
+        </provider>
+    </chain>
+    {{- else if eq .Values.artifactory.persistence.type "cluster-s3-storage-v3" }}
+    <chain> <!--template="cluster-s3-storage-v3"-->
+        <provider id="cache-fs" type="cache-fs">
+            <provider id="sharding-cluster-eventual-s3" type="sharding-cluster">
+                <sub-provider id="eventual-cluster-s3" type="eventual-cluster">
+                    <provider id="retry-s3" type="retry">
+                        <provider id="s3-storage-v3" type="s3-storage-v3"/>
+                    </provider>
+                </sub-provider>
+                <dynamic-provider id="remote-s3" type="remote"/>
+            </provider>
+        </provider>
+    </chain>
+    {{- else if eq .Values.artifactory.persistence.type "s3-storage-v3-archive" }}
+    <!-- s3-storage-v3 default chain based on AWS S3 client for archive purposes-->
+    <chain>   <!--template="s3-storage-v3-archive"-->
+        <provider id="s3-storage-v3-archive" type="s3-storage-v3-archive">
+            <provider id="s3-storage-v3" type="s3-storage-v3"/>
+        </provider>
+    </chain>
+    {{- end }}
+
+    {{- if or (eq .Values.artifactory.persistence.type "aws-s3-v3") (eq .Values.artifactory.persistence.type "s3-storage-v3-direct") (eq .Values.artifactory.persistence.type "cluster-s3-storage-v3") }}
+    <!-- Set max cache-fs size -->
+    <provider id="cache-fs" type="cache-fs">
+        <maxCacheSize>{{ .Values.artifactory.persistence.maxCacheSize | int64}}</maxCacheSize>
+        <cacheProviderDir>{{ .Values.artifactory.persistence.cacheProviderDir }}</cacheProviderDir>
+        {{- if .Values.artifactory.persistence.maxFileSizeLimit }}
+        <maxFileSizeLimit>{{.Values.artifactory.persistence.maxFileSizeLimit | int64}}</maxFileSizeLimit>
+        {{- end }}
+        {{- if .Values.artifactory.persistence.skipDuringUpload }}
+        <skipDuringUpload>{{.Values.artifactory.persistence.skipDuringUpload}}</skipDuringUpload>
+        {{- end }}
+    </provider>
+    {{- end }}
+
+    {{- if eq .Values.artifactory.persistence.type "cluster-s3-storage-v3" }}
+    <provider id="sharding-cluster-eventual-s3" type="sharding-cluster">
+        <readBehavior>crossNetworkStrategy</readBehavior>
+        <writeBehavior>crossNetworkStrategy</writeBehavior>
+        <redundancy>{{ .Values.artifactory.persistence.redundancy }}</redundancy>
+        <lenientLimit>{{ .Values.artifactory.persistence.lenientLimit }}</lenientLimit>
+        <property name="zones" value="local,remote"/>
+    </provider>
+
+    <provider id="remote-s3" type="remote">
+        <zone>remote</zone>
+    </provider>
+
+    <provider id="eventual-cluster-s3" type="eventual-cluster">
+        <zone>local</zone>
+    </provider>
+    {{- end }}
+
+    {{- with .Values.artifactory.persistence.awsS3V3 }}
+    <provider id="s3-storage-v3" type="s3-storage-v3">
+        <testConnection>{{ .testConnection }}</testConnection>
+        {{- if .identity }}
+        <identity>{{ .identity }}</identity>
+        {{- end }}
+        {{- if .credential }}
+        <credential>{{ .credential }}</credential>
+        {{- end }}
+        <region>{{ .region }}</region>
+        <bucketName>{{ .bucketName }}</bucketName>
+        <path>{{ .path }}</path>
+        <endpoint>{{ .endpoint }}</endpoint>
+        {{- with .port }}
+        <port>{{ . }}</port>
+        {{- end }}
+        {{- with .useHttp }}
+        <useHttp>{{ . }}</useHttp>
+        {{- end }}
+        {{- with .maxConnections }}
+        <maxConnections>{{ . }}</maxConnections>
+        {{- end }}
+        {{- with .connectionTimeout }}
+        <connectionTimeout>{{ . }}</connectionTimeout>
+        {{- end }}
+        {{- with .socketTimeout }}
+        <socketTimeout>{{ . }}</socketTimeout>
+        {{- end }}
+        {{- with .kmsServerSideEncryptionKeyId }}
+        <kmsServerSideEncryptionKeyId>{{ . }}</kmsServerSideEncryptionKeyId>
+        {{- end }}
+        {{- with .kmsKeyRegion }}
+        <kmsKeyRegion>{{ . }}</kmsKeyRegion>
+        {{- end }}
+        {{- with .kmsCryptoMode }}
+        <kmsCryptoMode>{{ . }}</kmsCryptoMode>
+        {{- end }}
+        {{- if .useInstanceCredentials }}
+        <useInstanceCredentials>true</useInstanceCredentials>
+        {{- else }}
+        <useInstanceCredentials>false</useInstanceCredentials>
+        {{- end }}
+        <usePresigning>{{ .usePresigning }}</usePresigning>
+        <signatureExpirySeconds>{{ .signatureExpirySeconds }}</signatureExpirySeconds>
+        <signedUrlExpirySeconds>{{ .signedUrlExpirySeconds }}</signedUrlExpirySeconds>
+        {{- with .cloudFrontDomainName }}
+        <cloudFrontDomainName>{{ . }}</cloudFrontDomainName>
+        {{- end }}
+        {{- with .cloudFrontKeyPairId }}
+        <cloudFrontKeyPairId>{{ . }}</cloudFrontKeyPairId>
+        {{- end }}
+        {{- with .cloudFrontPrivateKey }}
+        <cloudFrontPrivateKey>{{ . }}</cloudFrontPrivateKey>
+        {{- end }}
+        {{- with .enableSignedUrlRedirect }}
+        <enableSignedUrlRedirect>{{ . }}</enableSignedUrlRedirect>
+        {{- end }}
+        {{- with .enablePathStyleAccess }}
+        <enablePathStyleAccess>{{ . }}</enablePathStyleAccess>
+        {{- end }}
+        {{- with .multiPartLimit }}
+        <multiPartLimit>{{ . | int64 }}</multiPartLimit>
+        {{- end }}
+        {{- with .multipartElementSize }}
+        <multipartElementSize>{{ . | int64 }}</multipartElementSize>
+        {{- end }}
+    </provider>
+    {{- end }}
+</config>
+{{- end }}
+
+{{- if or (eq .Values.artifactory.persistence.type "azure-blob") (eq .Values.artifactory.persistence.type "azure-blob-storage-direct") (eq .Values.artifactory.persistence.type "cluster-azure-blob-storage") }}
+<!-- Azure Blob Storage -->
+<config version="2">
+    {{- if or (eq .Values.artifactory.persistence.type "azure-blob") }}
+    <chain> <!--template="azure-blob-storage"-->
+        <provider id="cache-fs" type="cache-fs">
+            <provider id="eventual" type="eventual">
+                <provider id="retry-azure-blob-storage" type="retry">
+                    <provider id="azure-blob-storage" type="azure-blob-storage"/>
+                </provider>
+            </provider>
+        </provider>
+    </chain>
+    {{- else if eq .Values.artifactory.persistence.type "azure-blob-storage-direct" }}
+    <chain> <!--template="azure-blob-storage-direct"-->
+        <provider id="cache-fs" type="cache-fs">
+            <provider id="azure-blob-storage" type="azure-blob-storage"/>
+        </provider>
+    </chain>
+    {{- else if eq .Values.artifactory.persistence.type "cluster-azure-blob-storage" }}
+    <chain> <!--template="cluster-azure-blob-storage"-->
+        <provider id="cache-fs" type="cache-fs">
+            <provider id="sharding-cluster" type="sharding-cluster">
+                <sub-provider id="eventual-cluster" type="eventual-cluster">
+                    <provider id="retry-azure-blob-storage" type="retry">
+                        <provider id="azure-blob-storage" type="azure-blob-storage"/>
+                    </provider>
+                </sub-provider>
+                <dynamic-provider id="remote" type="remote"/>
+            </provider>
+        </provider>
+    </chain>
+    {{- end }}
+
+    <!-- Set max cache-fs size -->
+    <provider id="cache-fs" type="cache-fs">
+        <maxCacheSize>{{ .Values.artifactory.persistence.maxCacheSize | int64 }}</maxCacheSize>
+        <cacheProviderDir>{{ .Values.artifactory.persistence.cacheProviderDir }}</cacheProviderDir>
+        {{- if .Values.artifactory.persistence.maxFileSizeLimit }}
+        <maxFileSizeLimit>{{.Values.artifactory.persistence.maxFileSizeLimit | int64}}</maxFileSizeLimit>
+        {{- end }}
+        {{- if .Values.artifactory.persistence.skipDuringUpload }}
+        <skipDuringUpload>{{.Values.artifactory.persistence.skipDuringUpload}}</skipDuringUpload>
+        {{- end }}
+    </provider>
+
+    {{- if eq .Values.artifactory.persistence.type "cluster-azure-blob-storage" }}
+    <!-- cluster eventual Azure Blob Storage Service default chain -->
+    <provider id="sharding-cluster" type="sharding-cluster">
+        <readBehavior>crossNetworkStrategy</readBehavior>
+        <writeBehavior>crossNetworkStrategy</writeBehavior>
+        <redundancy>{{ .Values.artifactory.persistence.redundancy }}</redundancy>
+        <lenientLimit>{{ .Values.artifactory.persistence.lenientLimit }}</lenientLimit>
+        <property name="zones" value="local,remote"/>
+    </provider>
+    <provider id="remote" type="remote">
+        <zone>remote</zone>
+    </provider>
+    <provider id="eventual-cluster" type="eventual-cluster">
+        <zone>local</zone>
+    </provider>
+    {{- end }}
+
+    <provider id="azure-blob-storage" type="azure-blob-storage">
+        <accountName>{{ .Values.artifactory.persistence.azureBlob.accountName }}</accountName>
+        <accountKey>{{ .Values.artifactory.persistence.azureBlob.accountKey }}</accountKey>
+        <endpoint>{{ .Values.artifactory.persistence.azureBlob.endpoint }}</endpoint>
+        <containerName>{{ .Values.artifactory.persistence.azureBlob.containerName }}</containerName>
+        <multiPartLimit>{{ .Values.artifactory.persistence.azureBlob.multiPartLimit | int64 }}</multiPartLimit>
+        <multipartElementSize>{{ .Values.artifactory.persistence.azureBlob.multipartElementSize | int64 }}</multipartElementSize>
+        <testConnection>{{ .Values.artifactory.persistence.azureBlob.testConnection }}</testConnection>
+    </provider>
+</config>
+{{- end }}
+{{- if eq .Values.artifactory.persistence.type "azure-blob-storage-v2-direct" -}}
+<config version="3">
+    <chain template="azure-blob-storage-v2-direct"/>
+    <provider type="cache-fs" id="cache-fs">
+        <maxCacheSize>{{ .Values.artifactory.persistence.maxCacheSize | int64 }}</maxCacheSize>
+        <cacheProviderDir>{{ .Values.artifactory.persistence.cacheProviderDir }}</cacheProviderDir>
+        {{- if .Values.artifactory.persistence.maxFileSizeLimit }}
+        <maxFileSizeLimit>{{.Values.artifactory.persistence.maxFileSizeLimit | int64}}</maxFileSizeLimit>
+        {{- end }}
+        {{- if .Values.artifactory.persistence.skipDuringUpload }}
+        <skipDuringUpload>{{.Values.artifactory.persistence.skipDuringUpload}}</skipDuringUpload>
+        {{- end }}
+    </provider>
+    <provider id="azure-blob-storage-v2" type="azure-blob-storage-v2">
+        <accountName>{{ .Values.artifactory.persistence.azureBlob.accountName }}</accountName>
+        <accountKey>{{ .Values.artifactory.persistence.azureBlob.accountKey }}</accountKey>
+        <endpoint>{{ .Values.artifactory.persistence.azureBlob.endpoint }}</endpoint>
+        <container>{{ .Values.artifactory.persistence.azureBlob.containerName }}</container> 
+        <multiPartLimit>{{ .Values.artifactory.persistence.azureBlob.multiPartLimit | int64 }}</multiPartLimit>
+        <multipartElementSize>{{ .Values.artifactory.persistence.azureBlob.multipartElementSize | int64 }}</multipartElementSize>
+        <testConnection>{{ .Values.artifactory.persistence.azureBlob.testConnection }}</testConnection>
+    </provider>   
+</config>
+{{- end }}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/files/installer-info.json b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/files/installer-info.json
new file mode 100644
index 0000000000..79f42ed16d
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/files/installer-info.json
@@ -0,0 +1,32 @@
+{
+    "productId": "Helm_artifactory/{{ .Chart.Version }}",
+    "features": [
+      {
+        "featureId": "Platform/{{ printf "%s-%s" "kubernetes" .Capabilities.KubeVersion.Version }}"
+      },
+      {
+        "featureId": "Database/{{ .Values.database.type }}"
+      },
+      {
+        "featureId": "PostgreSQL_Enabled/{{ .Values.postgresql.enabled }}"
+      },
+      {
+        "featureId": "Nginx_Enabled/{{ .Values.nginx.enabled }}"
+      },
+      {
+        "featureId": "ArtifactoryPersistence_Type/{{ .Values.artifactory.persistence.type }}"
+      },
+      {
+        "featureId": "SplitServicesToContainers_Enabled/{{ .Values.splitServicesToContainers }}"
+      },
+      {
+        "featureId": "UnifiedSecretInstallation_Enabled/{{ .Values.artifactory.unifiedSecretInstallation }}"
+      },
+      {
+        "featureId": "Filebeat_Enabled/{{ .Values.filebeat.enabled }}"
+      },
+      {
+        "featureId": "ReplicaCount/{{ .Values.artifactory.replicaCount }}"
+      }
+    ]
+}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/files/migrate.sh b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/files/migrate.sh
new file mode 100644
index 0000000000..ba44160f47
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/files/migrate.sh
@@ -0,0 +1,4311 @@
+#!/bin/bash
+
+# Flags
+FLAG_Y="y"
+FLAG_N="n"
+FLAGS_Y_N="$FLAG_Y $FLAG_N"
+FLAG_NOT_APPLICABLE="_NA_"
+
+CURRENT_VERSION=$1
+
+WRAPPER_SCRIPT_TYPE_RPMDEB="RPMDEB"
+WRAPPER_SCRIPT_TYPE_DOCKER_COMPOSE="DOCKERCOMPOSE"
+
+SENSITIVE_KEY_VALUE="__sensitive_key_hidden___"
+
+# Shared system keys
+SYS_KEY_SHARED_JFROGURL="shared.jfrogUrl"
+SYS_KEY_SHARED_SECURITY_JOINKEY="shared.security.joinKey"
+SYS_KEY_SHARED_SECURITY_MASTERKEY="shared.security.masterKey"
+
+SYS_KEY_SHARED_NODE_ID="shared.node.id"
+SYS_KEY_SHARED_JAVAHOME="shared.javaHome"
+
+SYS_KEY_SHARED_DATABASE_TYPE="shared.database.type"
+SYS_KEY_SHARED_DATABASE_TYPE_VALUE_POSTGRES="postgresql"
+SYS_KEY_SHARED_DATABASE_DRIVER="shared.database.driver"
+SYS_KEY_SHARED_DATABASE_URL="shared.database.url"
+SYS_KEY_SHARED_DATABASE_USERNAME="shared.database.username"
+SYS_KEY_SHARED_DATABASE_PASSWORD="shared.database.password"
+
+SYS_KEY_SHARED_ELASTICSEARCH_URL="shared.elasticsearch.url"
+SYS_KEY_SHARED_ELASTICSEARCH_USERNAME="shared.elasticsearch.username"
+SYS_KEY_SHARED_ELASTICSEARCH_PASSWORD="shared.elasticsearch.password"
+SYS_KEY_SHARED_ELASTICSEARCH_CLUSTERSETUP="shared.elasticsearch.clusterSetup"
+SYS_KEY_SHARED_ELASTICSEARCH_UNICASTFILE="shared.elasticsearch.unicastFile"
+SYS_KEY_SHARED_ELASTICSEARCH_CLUSTERSETUP_VALUE="YES"
+
+# Define this in product specific script. Should contain the path to unitcast file
+# File used by insight server to write cluster active nodes info. This will be read by elasticsearch
+#SYS_KEY_SHARED_ELASTICSEARCH_UNICASTFILE_VALUE=""
+
+SYS_KEY_RABBITMQ_ACTIVE_NODE_NAME="shared.rabbitMq.active.node.name"
+SYS_KEY_RABBITMQ_ACTIVE_NODE_IP="shared.rabbitMq.active.node.ip"
+
+# Filenames
+FILE_NAME_SYSTEM_YAML="system.yaml"
+FILE_NAME_JOIN_KEY="join.key"
+FILE_NAME_MASTER_KEY="master.key"
+FILE_NAME_INSTALLER_YAML="installer.yaml"
+
+# Global constants used in business logic
+NODE_TYPE_STANDALONE="standalone"
+NODE_TYPE_CLUSTER_NODE="node"
+NODE_TYPE_DATABASE="database"
+
+# External(isable) databases 
+DATABASE_POSTGRES="POSTGRES"
+DATABASE_ELASTICSEARCH="ELASTICSEARCH"
+DATABASE_RABBITMQ="RABBITMQ"
+
+POSTGRES_LABEL="PostgreSQL"
+ELASTICSEARCH_LABEL="Elasticsearch"
+RABBITMQ_LABEL="Rabbitmq"
+
+ARTIFACTORY_LABEL="Artifactory"
+JFMC_LABEL="Mission Control"
+DISTRIBUTION_LABEL="Distribution"
+XRAY_LABEL="Xray"
+
+POSTGRES_CONTAINER="postgres"
+ELASTICSEARCH_CONTAINER="elasticsearch"
+RABBITMQ_CONTAINER="rabbitmq"
+REDIS_CONTAINER="redis"
+
+#Adding a small timeout before a read ensures it is positioned correctly in the screen
+read_timeout=0.5
+
+# Options related to data directory location
+PROMPT_DATA_DIR_LOCATION="Installation Directory"
+KEY_DATA_DIR_LOCATION="installer.data_dir"
+
+SYS_KEY_SHARED_NODE_HAENABLED="shared.node.haEnabled"
+PROMPT_ADD_TO_CLUSTER="Are you adding an additional node to an existing product cluster?"
+KEY_ADD_TO_CLUSTER="installer.ha"
+VALID_VALUES_ADD_TO_CLUSTER="$FLAGS_Y_N"
+
+MESSAGE_POSTGRES_INSTALL="The installer can install a $POSTGRES_LABEL database, or you can connect to an existing compatible $POSTGRES_LABEL database\n(compatible databases: https://www.jfrog.com/confluence/display/JFROG/System+Requirements#SystemRequirements-RequirementsMatrix)"
+PROMPT_POSTGRES_INSTALL="Do you want to install $POSTGRES_LABEL?"
+KEY_POSTGRES_INSTALL="installer.install_postgresql"
+VALID_VALUES_POSTGRES_INSTALL="$FLAGS_Y_N"
+
+# Postgres connection details
+RPM_DEB_POSTGRES_HOME_DEFAULT="/var/opt/jfrog/postgres"
+RPM_DEB_MESSAGE_STANDALONE_POSTGRES_DATA="$POSTGRES_LABEL home will have data and its configuration"
+RPM_DEB_PROMPT_STANDALONE_POSTGRES_DATA="Type desired $POSTGRES_LABEL home location"
+RPM_DEB_KEY_STANDALONE_POSTGRES_DATA="installer.postgresql.home"
+
+MESSAGE_DATABASE_URL="Provide the database connection details"
+PROMPT_DATABASE_URL(){
+    local databaseURlExample=
+    case "$PRODUCT_NAME" in
+            $ARTIFACTORY_LABEL)
+                databaseURlExample="jdbc:postgresql://<IP_ADDRESS>:<PORT>/artifactory"
+            ;;
+            $JFMC_LABEL)
+                databaseURlExample="postgresql://<IP_ADDRESS>:<PORT>/mission_control?sslmode=disable"
+            ;;
+            $DISTRIBUTION_LABEL)
+                databaseURlExample="jdbc:postgresql://<IP_ADDRESS>:<PORT>/distribution?sslmode=disable"
+            ;;
+            $XRAY_LABEL)
+                databaseURlExample="postgres://<IP_ADDRESS>:<PORT>/xraydb?sslmode=disable"
+            ;;
+        esac
+    if [ -z "$databaseURlExample" ]; then
+        echo -n "$POSTGRES_LABEL URL" # For consistency with username and password
+        return
+    fi
+    echo -n "$POSTGRES_LABEL url. Example: [$databaseURlExample]"
+}
+REGEX_DATABASE_URL(){
+    local databaseURlExample=
+    case "$PRODUCT_NAME" in
+            $ARTIFACTORY_LABEL)
+                databaseURlExample="jdbc:postgresql://.*/artifactory.*"
+            ;;
+            $JFMC_LABEL)
+                databaseURlExample="postgresql://.*/mission_control.*"
+            ;;
+            $DISTRIBUTION_LABEL)
+                databaseURlExample="jdbc:postgresql://.*/distribution.*"
+            ;;
+            $XRAY_LABEL)
+                databaseURlExample="postgres://.*/xraydb.*"
+            ;;
+        esac
+    echo -n "^$databaseURlExample\$"
+}
+ERROR_MESSAGE_DATABASE_URL="Invalid $POSTGRES_LABEL URL"
+KEY_DATABASE_URL="$SYS_KEY_SHARED_DATABASE_URL"
+#NOTE: It is important to display the label. Since the message may be hidden if URL is known
+PROMPT_DATABASE_USERNAME="$POSTGRES_LABEL username"
+KEY_DATABASE_USERNAME="$SYS_KEY_SHARED_DATABASE_USERNAME"
+#NOTE: It is important to display the label. Since the message may be hidden if URL is known
+PROMPT_DATABASE_PASSWORD="$POSTGRES_LABEL password"
+KEY_DATABASE_PASSWORD="$SYS_KEY_SHARED_DATABASE_PASSWORD"
+IS_SENSITIVE_DATABASE_PASSWORD="$FLAG_Y"
+
+MESSAGE_STANDALONE_ELASTICSEARCH_INSTALL="The installer can install a $ELASTICSEARCH_LABEL database or you can connect to an existing compatible $ELASTICSEARCH_LABEL database"
+PROMPT_STANDALONE_ELASTICSEARCH_INSTALL="Do you want to install $ELASTICSEARCH_LABEL?"
+KEY_STANDALONE_ELASTICSEARCH_INSTALL="installer.install_elasticsearch"
+VALID_VALUES_STANDALONE_ELASTICSEARCH_INSTALL="$FLAGS_Y_N"
+
+# Elasticsearch connection details
+MESSAGE_ELASTICSEARCH_DETAILS="Provide the $ELASTICSEARCH_LABEL connection details"
+PROMPT_ELASTICSEARCH_URL="$ELASTICSEARCH_LABEL URL"
+KEY_ELASTICSEARCH_URL="$SYS_KEY_SHARED_ELASTICSEARCH_URL"
+
+PROMPT_ELASTICSEARCH_USERNAME="$ELASTICSEARCH_LABEL username"
+KEY_ELASTICSEARCH_USERNAME="$SYS_KEY_SHARED_ELASTICSEARCH_USERNAME"
+
+PROMPT_ELASTICSEARCH_PASSWORD="$ELASTICSEARCH_LABEL password"
+KEY_ELASTICSEARCH_PASSWORD="$SYS_KEY_SHARED_ELASTICSEARCH_PASSWORD"
+IS_SENSITIVE_ELASTICSEARCH_PASSWORD="$FLAG_Y"
+
+# Cluster related questions
+MESSAGE_CLUSTER_MASTER_KEY="Provide the cluster's master key. It can be found in the data directory of the first node under /etc/security/master.key"
+PROMPT_CLUSTER_MASTER_KEY="Master Key"
+KEY_CLUSTER_MASTER_KEY="$SYS_KEY_SHARED_SECURITY_MASTERKEY"
+IS_SENSITIVE_CLUSTER_MASTER_KEY="$FLAG_Y"
+
+MESSAGE_JOIN_KEY="The Join key is the secret key used to establish trust between services in the JFrog Platform.\n(You can copy the Join Key from Admin > User Management > Settings)"
+PROMPT_JOIN_KEY="Join Key"
+KEY_JOIN_KEY="$SYS_KEY_SHARED_SECURITY_JOINKEY"
+IS_SENSITIVE_JOIN_KEY="$FLAG_Y"
+REGEX_JOIN_KEY="^[a-zA-Z0-9]{16,}\$"
+ERROR_MESSAGE_JOIN_KEY="Invalid Join Key"
+
+# Rabbitmq related cluster information
+MESSAGE_RABBITMQ_ACTIVE_NODE_NAME="Provide an active ${RABBITMQ_LABEL} node name. Run the command [ hostname -s ] on any of the existing nodes in the product cluster to get this"
+PROMPT_RABBITMQ_ACTIVE_NODE_NAME="${RABBITMQ_LABEL} active node name"
+KEY_RABBITMQ_ACTIVE_NODE_NAME="$SYS_KEY_RABBITMQ_ACTIVE_NODE_NAME"
+
+# Rabbitmq related cluster information (necessary only for docker-compose)
+PROMPT_RABBITMQ_ACTIVE_NODE_IP="${RABBITMQ_LABEL} active node ip"
+KEY_RABBITMQ_ACTIVE_NODE_IP="$SYS_KEY_RABBITMQ_ACTIVE_NODE_IP"
+
+MESSAGE_JFROGURL(){
+    echo -e "The JFrog URL allows ${PRODUCT_NAME} to connect to a JFrog Platform Instance.\n(You can copy the JFrog URL from Administration > User Management > Settings > Connection details)"
+}
+PROMPT_JFROGURL="JFrog URL"
+KEY_JFROGURL="$SYS_KEY_SHARED_JFROGURL"
+REGEX_JFROGURL="^https?://.*:{0,}[0-9]{0,4}\$"
+ERROR_MESSAGE_JFROGURL="Invalid JFrog URL"
+
+
+# Set this to FLAG_Y on upgrade
+IS_UPGRADE="${FLAG_N}"
+
+# This belongs in JFMC but is the ONLY one that needs it so keeping it here for now. Can be made into a method and overridden if necessary
+MESSAGE_MULTIPLE_PG_SCHEME="Please setup $POSTGRES_LABEL with schema as described in https://www.jfrog.com/confluence/display/JFROG/Installing+Mission+Control"
+
+_getMethodOutputOrVariableValue() {
+    unset EFFECTIVE_MESSAGE
+    local keyToSearch=$1
+    local effectiveMessage=
+    local result="0"
+    # logSilly "Searching for method: [$keyToSearch]"
+    LC_ALL=C type "$keyToSearch" > /dev/null 2>&1 || result="$?"
+    if [[ "$result" == "0" ]]; then
+        # logSilly "Found method for [$keyToSearch]"
+        EFFECTIVE_MESSAGE="$($keyToSearch)"
+        return
+    fi
+    eval EFFECTIVE_MESSAGE=\${$keyToSearch}
+    if [ ! -z "$EFFECTIVE_MESSAGE" ]; then
+        return
+    fi
+    # logSilly "Didn't find method or variable for [$keyToSearch]"
+}
+
+
+# REF https://misc.flogisoft.com/bash/tip_colors_and_formatting
+cClear="\e[0m"
+cBlue="\e[38;5;69m"
+cRedDull="\e[1;31m"
+cYellow="\e[1;33m"
+cRedBright="\e[38;5;197m"
+cBold="\e[1m"
+
+
+_loggerGetModeRaw() {
+    local MODE="$1"
+    case $MODE in
+    INFO)
+        printf ""
+    ;;
+    DEBUG)
+        printf "%s" "[${MODE}] "
+    ;;
+    WARN)
+        printf "${cRedDull}%s%s${cClear}" "[" "${MODE}" "] "
+    ;;
+    ERROR)
+        printf "${cRedBright}%s%s${cClear}" "[" "${MODE}" "] "
+    ;;
+    esac
+}
+
+
+_loggerGetMode() {
+    local MODE="$1"
+    case $MODE in
+    INFO)
+        printf "${cBlue}%s%-5s%s${cClear}" "[" "${MODE}" "]"
+    ;;
+    DEBUG)
+        printf "%-7s" "[${MODE}]"
+    ;;
+    WARN)
+        printf "${cRedDull}%s%-5s%s${cClear}" "[" "${MODE}" "]"
+    ;;
+    ERROR)
+        printf "${cRedBright}%s%-5s%s${cClear}" "[" "${MODE}" "]"
+    ;;
+    esac
+}
+
+# Capitalises the first letter of the message
+_loggerGetMessage() {
+    local originalMessage="$*"
+    local firstChar=$(echo "${originalMessage:0:1}" | awk '{ print toupper($0) }')
+    local resetOfMessage="${originalMessage:1}"
+    echo "$firstChar$resetOfMessage"
+}
+
+# The spec also says content should be left-trimmed but this is not necessary in our case. We don't reach the limit.
+_loggerGetStackTrace() {
+    printf "%s%-30s%s" "[" "$1:$2" "]"
+}
+
+_loggerGetThread() {
+    printf "%s" "[main]"
+}
+
+_loggerGetServiceType() {
+    printf "%s%-5s%s" "[" "shell" "]"
+}
+
+#Trace ID is not applicable to scripts
+_loggerGetTraceID() {
+    printf "%s" "[]"
+}
+
+logRaw() {
+    echo ""
+    printf "$1"
+    echo ""
+}
+
+logBold(){
+    echo ""
+    printf "${cBold}$1${cClear}"
+    echo ""
+}
+
+# The date binary works differently based on whether it is GNU/BSD
+is_date_supported=0
+date --version > /dev/null 2>&1 || is_date_supported=1
+IS_GNU=$(echo $is_date_supported)
+
+_loggerGetTimestamp() {
+    if [ "${IS_GNU}" == "0" ]; then
+        echo -n $(date -u +%FT%T.%3NZ)
+    else
+        echo -n $(date -u +%FT%T.000Z)
+    fi
+}
+
+# https://www.shellscript.sh/tips/spinner/
+_spin()
+{
+    spinner="/|\\-/|\\-"
+    while :
+    do
+    for i in `seq 0 7`
+    do
+        echo -n "${spinner:$i:1}"
+        echo -en "\010"
+        sleep 1
+    done
+    done
+}
+
+showSpinner() {
+    # Start the Spinner:
+    _spin &
+    # Make a note of its Process ID (PID):
+    SPIN_PID=$!
+    # Kill the spinner on any signal, including our own exit.
+    trap "kill -9 $SPIN_PID" `seq 0 15` &> /dev/null || return 0
+}
+
+stopSpinner() {
+    local occurrences=$(ps -ef | grep -wc "${SPIN_PID}")
+    let "occurrences+=0"
+    # validate that it is present (2 since this search itself will show up in the results)
+    if [ $occurrences -gt 1 ]; then
+        kill -9 $SPIN_PID &>/dev/null || return 0
+        wait $SPIN_ID &>/dev/null
+    fi
+}
+
+_getEffectiveMessage(){
+    local MESSAGE="$1"
+    local MODE=${2-"INFO"}
+
+    if [ -z "$CONTEXT" ]; then
+        CONTEXT=$(caller)
+    fi
+
+    _EFFECTIVE_MESSAGE=
+    if [ -z "$LOG_BEHAVIOR_ADD_META" ]; then
+        _EFFECTIVE_MESSAGE="$(_loggerGetModeRaw $MODE)$(_loggerGetMessage $MESSAGE)"
+    else
+        local SERVICE_TYPE="script"
+        local TRACE_ID=""
+        local THREAD="main"
+        
+        local CONTEXT_LINE=$(echo "$CONTEXT" | awk '{print $1}')
+        local CONTEXT_FILE=$(echo "$CONTEXT" | awk -F"/" '{print $NF}')
+        
+        _EFFECTIVE_MESSAGE="$(_loggerGetTimestamp) $(_loggerGetServiceType) $(_loggerGetMode $MODE) $(_loggerGetTraceID) $(_loggerGetStackTrace $CONTEXT_FILE $CONTEXT_LINE) $(_loggerGetThread) - $(_loggerGetMessage $MESSAGE)"
+    fi
+    CONTEXT=
+}
+
+# Important - don't call any log method from this method. Will become an infinite loop. Use echo to debug
+_logToFile() {
+    local MODE=${1-"INFO"}
+    local targetFile="$LOG_BEHAVIOR_ADD_REDIRECTION"
+    # IF the file isn't passed, abort
+    if [ -z "$targetFile" ]; then
+        return
+    fi
+    # IF this is not being run in verbose mode and mode is debug or lower, abort
+    if [ "${VERBOSE_MODE}" != "$FLAG_Y" ] && [ "${VERBOSE_MODE}" != "true" ] && [ "${VERBOSE_MODE}" != "debug" ]; then
+        if [ "$MODE" == "DEBUG" ] || [ "$MODE" == "SILLY" ]; then
+            return
+        fi
+    fi
+
+    # Create the file if it doesn't exist
+    if [ ! -f "${targetFile}" ]; then
+        return
+        # touch $targetFile > /dev/null 2>&1 || true
+    fi
+    # # Make it readable
+    # chmod 640 $targetFile > /dev/null 2>&1 || true
+
+    # Log contents
+    printf "%s\n" "$_EFFECTIVE_MESSAGE" >> "$targetFile" || true
+}
+
+logger() {
+    if [ "$LOG_BEHAVIOR_ADD_NEW_LINE" == "$FLAG_Y" ]; then
+        echo ""
+    fi
+    _getEffectiveMessage "$@"
+    local MODE=${2-"INFO"}
+    printf "%s\n" "$_EFFECTIVE_MESSAGE"
+    _logToFile "$MODE"
+}
+
+logDebug(){
+    VERBOSE_MODE=${VERBOSE_MODE-"false"}
+    CONTEXT=$(caller)
+    if [ "${VERBOSE_MODE}" == "$FLAG_Y" ] || [ "${VERBOSE_MODE}" == "true" ] || [ "${VERBOSE_MODE}" == "debug" ];then
+        logger "$1" "DEBUG"
+    else
+        logger "$1" "DEBUG" >&6
+    fi
+    CONTEXT=
+}
+
+logSilly(){
+    VERBOSE_MODE=${VERBOSE_MODE-"false"}
+    CONTEXT=$(caller)
+    if [ "${VERBOSE_MODE}" == "silly" ];then
+        logger "$1" "DEBUG"
+    else
+        logger "$1" "DEBUG" >&6
+    fi
+    CONTEXT=
+}
+
+logError() {
+    CONTEXT=$(caller)
+    logger "$1" "ERROR"
+    CONTEXT=
+}
+
+errorExit () {
+    CONTEXT=$(caller)
+    logger "$1" "ERROR"
+    CONTEXT=
+    exit 1
+}
+
+warn () {
+    CONTEXT=$(caller)
+    logger "$1" "WARN"
+    CONTEXT=
+}
+
+note () {
+    CONTEXT=$(caller)
+    logger "$1" "NOTE"
+    CONTEXT=
+}
+
+bannerStart() {
+    title=$1
+    echo
+    echo -e "\033[1m${title}\033[0m"
+    echo
+}
+
+bannerSection() {
+    title=$1
+    echo
+    echo -e "******************************** ${title} ********************************"
+    echo
+}
+
+bannerSubSection() {
+    title=$1
+    echo
+    echo -e "************** ${title} *******************"
+    echo
+}
+
+bannerMessge() {
+    title=$1
+    echo
+    echo -e "********************************"
+    echo -e "${title}"
+    echo -e "********************************"
+    echo
+}
+
+setRed () {
+    local input="$1"
+    echo -e \\033[31m${input}\\033[0m
+}
+setGreen () {
+    local input="$1"
+    echo -e \\033[32m${input}\\033[0m
+}
+setYellow () {
+    local input="$1"
+    echo -e \\033[33m${input}\\033[0m
+}
+
+logger_addLinebreak () {
+    echo -e "---\n"
+}
+
+bannerImportant() {
+    title=$1
+    local bold="\033[1m"
+    local noColour="\033[0m"
+    echo
+    echo -e "${bold}######################################## IMPORTANT ########################################${noColour}"
+    echo -e "${bold}${title}${noColour}"
+    echo -e "${bold}###########################################################################################${noColour}"
+    echo
+}
+
+bannerEnd() {
+    #TODO pass a title and calculate length dynamically so that start and end look alike
+    echo
+    echo "*****************************************************************************"
+    echo
+}
+
+banner() {
+    title=$1
+    content=$2
+    bannerStart "${title}"
+    echo -e "$content"
+}
+
+# The logic below helps us redirect content we'd normally hide to the log file. 
+    #
+    # We have several commands which clutter the console with output and so use 
+    # `cmd > /dev/null` - this redirects the command's output to null.
+    # 
+    # However, the information we just hid maybe useful for support. Using the code pattern
+    # `cmd >&6` (instead of `cmd> >/dev/null` ), the command's output is hidden from the console 
+    # but redirected to the installation log file
+    # 
+
+#Default value of 6 is just null
+exec 6>>/dev/null
+redirectLogsToFile() {
+    echo ""
+    # local file=$1
+
+    # [ ! -z "${file}" ] || return 0
+
+    # local logDir=$(dirname "$file")
+
+    # if [ ! -f "${file}" ]; then
+    #     [ -d "${logDir}" ] || mkdir -p ${logDir} || \
+    #     ( echo "WARNING : Could not create parent directory (${logDir}) to redirect console log : ${file}" ; return 0 )
+    # fi
+
+    # #6 now points to the log file
+    # exec 6>>${file}
+    # #reference https://unix.stackexchange.com/questions/145651/using-exec-and-tee-to-redirect-logs-to-stdout-and-a-log-file-in-the-same-time
+    # exec 2>&1 > >(tee -a "${file}")
+}
+
+# Check if a give key contains any sensitive string as part of it
+# Based on the result, the caller can decide its value can be displayed or not
+#   Sample usage : isKeySensitive "${key}" && displayValue="******" || displayValue=${value}
+isKeySensitive(){
+    local key=$1
+    local sensitiveKeys="password|secret|key|token"
+    
+    if [ -z "${key}" ]; then
+        return 1
+    else
+        local lowercaseKey=$(echo "${key}" | tr '[:upper:]' '[:lower:]' 2>/dev/null)
+        [[ "${lowercaseKey}" =~ ${sensitiveKeys} ]] && return 0 || return 1
+    fi
+}
+
+getPrintableValueOfKey(){
+    local displayValue=
+    local key="$1"
+    if [ -z "$key" ]; then
+        # This is actually an incorrect usage of this method but any logging will cause unexpected content in the caller
+        echo -n ""
+        return
+    fi
+
+    local value="$2"
+    isKeySensitive "${key}" && displayValue="$SENSITIVE_KEY_VALUE" || displayValue="${value}"
+    echo -n $displayValue
+}
+
+_createConsoleLog(){
+    if [ -z "${JF_PRODUCT_HOME}" ]; then
+        return
+    fi
+    local targetFile="${JF_PRODUCT_HOME}/var/log/console.log"
+    mkdir -p "${JF_PRODUCT_HOME}/var/log" || true
+    if [ ! -f ${targetFile} ]; then
+        touch $targetFile > /dev/null 2>&1 || true
+    fi
+    chmod 640 $targetFile > /dev/null 2>&1 || true
+}
+
+# Output from application's logs are piped to this method. It checks a configuration variable to determine if content should be logged to 
+# the common console.log file
+redirectServiceLogsToFile() {
+
+    local result="0"
+    # check if the function getSystemValue exists
+    LC_ALL=C type getSystemValue > /dev/null 2>&1 || result="$?"
+    if [[ "$result" != "0" ]]; then
+        warn "Couldn't find the systemYamlHelper. Skipping log redirection"
+        return 0
+    fi
+
+    getSystemValue "shared.consoleLog" "NOT_SET"
+    if [[ "${YAML_VALUE}" == "false" ]]; then
+        logger "Redirection is set to false. Skipping log redirection"
+        return 0;
+    fi
+
+    if [ -z "${JF_PRODUCT_HOME}" ] || [ "${JF_PRODUCT_HOME}" == "" ]; then
+        warn "JF_PRODUCT_HOME is unavailable. Skipping log redirection"
+        return 0
+    fi
+
+    local targetFile="${JF_PRODUCT_HOME}/var/log/console.log"
+    
+    _createConsoleLog
+
+    while read -r line; do
+        printf '%s\n' "${line}" >> $targetFile || return 0 # Don't want to log anything - might clutter the screen
+    done
+}
+
+## Display environment variables starting with JF_ along with its value
+## Value of sensitive keys will be displayed as "******"
+##
+## Sample Display :
+##
+## ========================
+## JF Environment variables
+## ========================
+##
+## JF_SHARED_NODE_ID                   : locahost
+## JF_SHARED_JOINKEY                   : ******
+##
+##
+displayEnv() {
+    local JFEnv=$(printenv | grep ^JF_ 2>/dev/null)
+    local key=
+    local value=
+
+    if [ -z "${JFEnv}" ]; then
+        return
+    fi
+
+    cat << ENV_START_MESSAGE
+
+========================
+JF Environment variables
+========================
+ENV_START_MESSAGE
+
+    for entry in ${JFEnv}; do
+        key=$(echo "${entry}" | awk -F'=' '{print $1}')
+        value=$(echo "${entry}" | awk -F'=' '{print $2}')
+
+        isKeySensitive "${key}" && value="******" || value=${value}
+        
+        printf "\n%-35s%s" "${key}" " : ${value}"
+    done
+    echo;
+}
+
+_addLogRotateConfiguration() {
+    logDebug "Method ${FUNCNAME[0]}"
+    # mandatory inputs
+    local confFile="$1"
+    local logFile="$2"
+
+    # Method available in _ioOperations.sh
+    LC_ALL=C type io_setYQPath > /dev/null 2>&1 || return 1
+
+    io_setYQPath
+
+    # Method available in _systemYamlHelper.sh
+    LC_ALL=C type getSystemValue > /dev/null 2>&1 || return 1
+
+    local frequency="daily"
+    local archiveFolder="archived"
+
+    local compressLogFiles=
+    getSystemValue "shared.logging.rotation.compress" "true"
+    if [[ "${YAML_VALUE}" == "true" ]]; then
+        compressLogFiles="compress"
+    fi
+
+    getSystemValue "shared.logging.rotation.maxFiles" "10"
+    local noOfBackupFiles="${YAML_VALUE}"
+
+    getSystemValue "shared.logging.rotation.maxSizeMb" "25"
+    local sizeOfFile="${YAML_VALUE}M"
+
+    logDebug "Adding logrotate configuration for [$logFile] to [$confFile]"
+
+    # Add configuration to file
+    local confContent=$(cat << LOGROTATECONF
+$logFile {
+    $frequency
+    missingok
+    rotate $noOfBackupFiles
+    $compressLogFiles
+    notifempty
+    olddir $archiveFolder
+    dateext
+    extension .log
+    dateformat -%Y-%m-%d
+    size ${sizeOfFile}
+}
+LOGROTATECONF
+) 
+    echo "${confContent}" > ${confFile} || return 1
+}
+
+_operationIsBySameUser() {
+    local targetUser="$1"
+    local currentUserID=$(id -u)
+    local currentUserName=$(id -un)
+
+    if [ $currentUserID == $targetUser ] || [ $currentUserName == $targetUser ]; then
+        echo -n "yes"
+    else   
+        echo -n "no"
+    fi
+}
+
+_addCronJobForLogrotate() {
+    logDebug "Method ${FUNCNAME[0]}"
+    
+    # Abort if logrotate is not available
+    [ "$(io_commandExists 'crontab')" != "yes" ] && warn "cron is not available" && return 1
+
+    # mandatory inputs
+    local productHome="$1"
+    local confFile="$2"
+    local cronJobOwner="$3"
+
+    # We want to use our binary if possible. It may be more recent than the one in the OS
+    local logrotateBinary="$productHome/app/third-party/logrotate/logrotate"
+
+    if [ ! -f "$logrotateBinary" ]; then
+        logrotateBinary="logrotate"
+        [ "$(io_commandExists 'logrotate')" != "yes" ] && warn "logrotate is not available" && return 1
+    fi
+    local cmd="$logrotateBinary ${confFile} --state $productHome/var/etc/logrotate/logrotate-state" #--verbose
+
+    id -u $cronJobOwner > /dev/null 2>&1 || { warn "User $cronJobOwner does not exist. Aborting logrotate configuration" && return 1; }
+    
+    # Remove the existing line
+    removeLogRotation "$productHome" "$cronJobOwner" || true
+
+    # Run logrotate daily at 23:55 hours
+    local cronInterval="55 23 * * * $cmd"
+
+    local standaloneMode=$(_operationIsBySameUser "$cronJobOwner")
+
+    # If this is standalone mode, we cannot use -u - the user running this process may not have the necessary privileges
+    if [ "$standaloneMode" == "no" ]; then
+        (crontab -l -u $cronJobOwner 2>/dev/null; echo "$cronInterval") | crontab -u $cronJobOwner -
+    else
+        (crontab -l 2>/dev/null; echo "$cronInterval") | crontab -
+    fi
+}
+
+## Configure logrotate for a product
+## Failure conditions:
+## If logrotation could not be setup for some reason
+## Parameters:
+## $1: The product name
+## $2: The product home
+## Depends on global: none
+## Updates global: none
+## Returns: NA
+
+configureLogRotation() {
+    logDebug "Method ${FUNCNAME[0]}"
+
+    # mandatory inputs
+    local productName="$1"
+    if [ -z $productName ]; then
+        warn "Incorrect usage. A product name is necessary for configuring log rotation" && return 1
+    fi
+    
+    local productHome="$2"
+    if [ -z $productHome ]; then
+        warn "Incorrect usage. A product home folder is necessary for configuring log rotation" && return 1
+    fi
+
+    local logFile="${productHome}/var/log/console.log"
+    if [[ $(uname) == "Darwin" ]]; then
+        logger "Log rotation for [$logFile] has not been configured. Please setup manually"
+        return 0
+    fi
+    
+    local userID="$3"
+    if [ -z $userID ]; then
+        warn "Incorrect usage. A userID is necessary for configuring log rotation" && return 1
+    fi
+
+    local groupID=${4:-$userID}
+    local logConfigOwner=${5:-$userID}
+
+    logDebug "Configuring log rotation as user [$userID], group [$groupID], effective cron User [$logConfigOwner]"
+    
+    local errorMessage="Could not configure logrotate. Please configure log rotation of the file: [$logFile] manually"
+
+    local confFile="${productHome}/var/etc/logrotate/logrotate.conf"
+
+    # TODO move to recursive method
+    createDir "${productHome}" "$userID" "$groupID" || { warn "${errorMessage}" && return 1; }
+    createDir "${productHome}/var" "$userID" "$groupID" || { warn "${errorMessage}" && return 1; }
+    createDir "${productHome}/var/log" "$userID" "$groupID" || { warn "${errorMessage}" && return 1; }
+    createDir "${productHome}/var/log/archived" "$userID" "$groupID" || { warn "${errorMessage}" && return 1; }
+    
+    # TODO move to recursive method
+    createDir "${productHome}/var/etc"  "$userID" "$groupID" || { warn "${errorMessage}" && return 1; }
+    createDir "${productHome}/var/etc/logrotate" "$logConfigOwner" || { warn "${errorMessage}" && return 1; }
+
+    # conf file should be owned by the user running the script
+    createFile "${confFile}" "${logConfigOwner}" || { warn "Could not create configuration file [$confFile]" return 1; }
+
+    _addLogRotateConfiguration "${confFile}" "${logFile}" "$userID" "$groupID" || { warn "${errorMessage}" && return 1; }
+    _addCronJobForLogrotate "${productHome}" "${confFile}" "${logConfigOwner}" || { warn "${errorMessage}" && return 1; }
+}
+
+_pauseExecution() {
+    if [ "${VERBOSE_MODE}" == "debug" ]; then
+        
+        local breakPoint="$1"
+        if [ ! -z "$breakPoint" ]; then
+            printf "${cBlue}Breakpoint${cClear} [$breakPoint] "
+            echo ""
+        fi
+        printf "${cBlue}Press enter once you are ready to continue${cClear}"
+        read -s choice
+        echo ""
+    fi
+}
+
+# removeLogRotation "$productHome" "$cronJobOwner" || true
+removeLogRotation() {
+    logDebug "Method ${FUNCNAME[0]}"
+    if [[ $(uname) == "Darwin" ]]; then
+        logDebug "Not implemented for Darwin."
+        return 0
+    fi
+    local productHome="$1"
+    local cronJobOwner="$2"
+    local standaloneMode=$(_operationIsBySameUser "$cronJobOwner")
+
+    local confFile="${productHome}/var/etc/logrotate/logrotate.conf"
+    
+    if [ "$standaloneMode" == "no" ]; then
+        crontab -l -u $cronJobOwner 2>/dev/null | grep -v "$confFile" | crontab -u $cronJobOwner -
+    else
+        crontab -l 2>/dev/null | grep -v "$confFile" | crontab -
+    fi
+}
+
+# NOTE: This method does not check the configuration to see if redirection is necessary.
+# This is intentional. If we don't redirect, tomcat logs might get redirected to a folder/file
+# that does not exist, causing the service itself to not start
+setupTomcatRedirection() {
+    logDebug "Method ${FUNCNAME[0]}"
+    local consoleLog="${JF_PRODUCT_HOME}/var/log/console.log"
+    _createConsoleLog
+    export CATALINA_OUT="${consoleLog}"
+}
+
+setupScriptLogsRedirection() {
+    logDebug "Method ${FUNCNAME[0]}"
+    if [ -z "${JF_PRODUCT_HOME}" ]; then
+        logDebug "No JF_PRODUCT_HOME. Returning"
+        return
+    fi
+    # Create the console.log file if it is not already present
+    # _createConsoleLog || true
+    # # Ensure any logs (logger/logError/warn) also get redirected to the console.log
+    # # Using installer.log as a temparory fix. Please change this to console.log once INST-291 is fixed
+    export LOG_BEHAVIOR_ADD_REDIRECTION="${JF_PRODUCT_HOME}/var/log/console.log"
+    export LOG_BEHAVIOR_ADD_META="$FLAG_Y"
+}
+
+# Returns Y if this method is run inside a container
+isRunningInsideAContainer() {
+    local check1=$(grep -sq 'docker\|kubepods' /proc/1/cgroup; echo $?)
+    local check2=$(grep -sq 'containers' /proc/self/mountinfo; echo $?)
+    if [[ $check1 == 0 || $check2 == 0 || -f "/.dockerenv" ]]; then
+        echo -n "$FLAG_Y"
+    else
+        echo -n "$FLAG_N"
+    fi 
+}
+
+POSTGRES_USER=999
+NGINX_USER=104
+NGINX_GROUP=107
+ES_USER=1000
+REDIS_USER=999
+MONGO_USER=999
+RABBITMQ_USER=999
+LOG_FILE_PERMISSION=640
+PID_FILE_PERMISSION=644
+
+# Copy file
+copyFile(){
+    local source=$1
+    local target=$2
+    local mode=${3:-overwrite}
+    local enableVerbose=${4:-"${FLAG_N}"}
+    local verboseFlag=""
+
+    if [ ! -z "${enableVerbose}" ] && [ "${enableVerbose}" == "${FLAG_Y}" ]; then
+        verboseFlag="-v"
+    fi
+
+    if [[ ! ( $source && $target ) ]]; then
+        warn "Source and target is mandatory to copy file"
+        return 1
+    fi
+
+    if [[ -f "${target}" ]]; then
+        [[ "$mode" = "overwrite" ]] && ( cp ${verboseFlag} -f "$source" "$target" || errorExit "Unable to copy file, command : cp -f ${source} ${target}") || true
+    else
+        cp ${verboseFlag} -f "$source" "$target" || errorExit "Unable to copy file, command : cp -f ${source} ${target}"
+    fi
+}
+
+# Copy files recursively from given source directory to destination directory
+# This method wil copy but will NOT overwrite
+# Destination will be created if its not available
+copyFilesNoOverwrite(){
+    local src=$1
+    local dest=$2
+    local enableVerboseCopy="${3:-${FLAG_Y}}"
+
+    if [[ -z "${src}" || -z "${dest}" ]]; then
+        return
+    fi
+
+    if [ -d "${src}" ] && [ "$(ls -A ${src})" ]; then
+        local relativeFilePath=""
+        local targetFilePath=""
+
+        for file in $(find ${src} -type f 2>/dev/null) ; do
+            # Derive relative path and attach it to destination 
+            # Example : 
+            #       src=/extra_config
+            #       dest=/var/opt/jfrog/artifactory/etc
+            #       file=/extra_config/config.xml
+            #       relativeFilePath=config.xml
+            #       targetFilePath=/var/opt/jfrog/artifactory/etc/config.xml
+            relativeFilePath=${file/${src}/}
+            targetFilePath=${dest}${relativeFilePath}
+
+            createDir "$(dirname "$targetFilePath")"
+            copyFile "${file}" "${targetFilePath}" "no_overwrite" "${enableVerboseCopy}"
+        done
+    fi    
+}
+
+#    TODO : WINDOWS ?
+#  Check the max open files and open processes set on the system
+checkULimits () {
+    local minMaxOpenFiles=${1:-32000}
+    local minMaxOpenProcesses=${2:-1024}
+    local setValue=${3:-true}
+    local warningMsgForFiles=${4}
+    local warningMsgForProcesses=${5}
+
+    logger "Checking open files and processes limits"
+
+    local currentMaxOpenFiles=$(ulimit -n)
+    logger "Current max open files is $currentMaxOpenFiles"
+    if [ ${currentMaxOpenFiles} != "unlimited" ] && [ "$currentMaxOpenFiles" -lt "$minMaxOpenFiles" ]; then
+        if [ "${setValue}" ]; then
+            ulimit -n "${minMaxOpenFiles}" >/dev/null 2>&1 || warn "Max number of open files $currentMaxOpenFiles is low!"
+            [ -z "${warningMsgForFiles}" ] || warn "${warningMsgForFiles}"
+        else
+            errorExit "Max number of open files $currentMaxOpenFiles, is too low. Cannot run the application!"
+        fi
+    fi
+
+    local currentMaxOpenProcesses=$(ulimit -u)
+    logger "Current max open processes is $currentMaxOpenProcesses"
+    if [ "$currentMaxOpenProcesses" != "unlimited" ] && [ "$currentMaxOpenProcesses" -lt "$minMaxOpenProcesses" ]; then
+        if [ "${setValue}" ]; then
+            ulimit -u "${minMaxOpenProcesses}" >/dev/null 2>&1 || warn "Max number of open files $currentMaxOpenFiles is low!"
+            [ -z "${warningMsgForProcesses}" ] || warn "${warningMsgForProcesses}"
+        else
+            errorExit "Max number of open files $currentMaxOpenProcesses, is too low. Cannot run the application!"
+        fi
+    fi
+}
+
+createDirs() {
+    local appDataDir=$1
+    local serviceName=$2
+    local folders="backup bootstrap data etc logs work"
+
+    [ -z "${appDataDir}" ]  && errorExit "An application directory is mandatory to create its data structure"  || true
+    [ -z "${serviceName}" ] && errorExit "A service name is mandatory to create service data structure"         || true
+
+    for folder in ${folders}
+    do
+        folder=${appDataDir}/${folder}/${serviceName}
+        if [ ! -d "${folder}" ]; then
+            logger "Creating folder : ${folder}"
+            mkdir -p "${folder}" || errorExit "Failed to create ${folder}"
+        fi
+    done
+}
+
+
+testReadWritePermissions () {
+    local dir_to_check=$1
+    local error=false
+
+    [ -d ${dir_to_check} ] || errorExit "'${dir_to_check}' is not a directory"
+
+    local test_file=${dir_to_check}/test-permissions
+
+    # Write file
+    if echo test > ${test_file} 1> /dev/null 2>&1; then
+        # Write succeeded. Testing read...
+        if cat ${test_file} > /dev/null; then
+            rm -f ${test_file}
+        else
+            error=true
+        fi
+    else
+        error=true
+    fi
+
+    if [ ${error} == true ]; then
+        return 1
+    else
+        return 0
+    fi
+}
+
+# Test directory has read/write permissions for current user
+testDirectoryPermissions () {
+    local dir_to_check=$1
+    local error=false
+
+    [ -d ${dir_to_check}  ] || errorExit "'${dir_to_check}' is not a directory"
+
+    local u_id=$(id -u)
+    local id_str="id ${u_id}"
+
+    logger "Testing directory ${dir_to_check} has read/write permissions for user ${id_str}"
+
+    if ! testReadWritePermissions ${dir_to_check}; then
+        error=true
+    fi
+
+    if [ "${error}" == true ]; then
+        local stat_data=$(stat -Lc "Directory: %n, permissions: %a, owner: %U, group: %G" ${dir_to_check})
+        logger "###########################################################"
+        logger "${dir_to_check} DOES NOT have proper permissions for user ${id_str}"
+        logger "${stat_data}"
+        logger "Mounted directory must have read/write permissions for user ${id_str}"
+        logger "###########################################################"
+        errorExit "Directory ${dir_to_check} has bad permissions for user ${id_str}"
+    fi
+    logger "Permissions for ${dir_to_check} are good"
+}
+
+# Utility method to create a directory path recursively with chown feature as
+# Failure conditions:
+## Exits if unable to create a directory
+# Parameters:
+## $1: Root directory from where the path can be created
+## $2: List of recursive child directories separated by space
+## $3: user who should own the directory. Optional
+## $4: group who should own the directory. Optional
+# Depends on global: none
+# Updates global: none
+# Returns: NA
+#
+# Usage:
+# createRecursiveDir "/opt/jfrog/product/var" "bootstrap tomcat lib" "user_name" "group_name"
+createRecursiveDir(){
+    local rootDir=$1
+    local pathDirs=$2
+    local user=$3
+    local group=${4:-${user}}
+    local fullPath=
+
+    [ ! -z "${rootDir}" ] || return 0
+
+    createDir "${rootDir}" "${user}" "${group}"
+
+    [ ! -z "${pathDirs}" ] || return 0
+
+    fullPath=${rootDir}
+
+    for dir in ${pathDirs}; do
+        fullPath=${fullPath}/${dir}
+        createDir "${fullPath}" "${user}" "${group}"
+    done
+}
+
+# Utility method to create a directory
+# Failure conditions:
+## Exits if unable to create a directory
+# Parameters:
+## $1: directory to create
+## $2: user who should own the directory. Optional
+## $3: group who should own the directory. Optional
+# Depends on global: none
+# Updates global: none
+# Returns: NA
+
+createDir(){
+    local dirName="$1"
+    local printMessage=no
+    logSilly "Method ${FUNCNAME[0]} invoked with [$dirName]"
+    [ -z "${dirName}" ] && return
+    
+    logDebug "Attempting to create ${dirName}"
+    mkdir -p "${dirName}" || errorExit "Unable to create directory: [${dirName}]"
+    local userID="$2"
+    local groupID=${3:-$userID}
+
+    # If UID/GID is passed, chown the folder
+    if [ ! -z "$userID" ] && [ ! -z "$groupID" ]; then
+        # Earlier, this line would have returned 1 if it failed. Now it just warns. 
+        # This is intentional. Earlier, this line would NOT be reached if the folder already existed. 
+        # Since it will always come to this line and the script may be running as a non-root user, this method will just warn if
+        # setting permissions fails (so as to not affect any existing flows)
+        io_setOwnershipNonRecursive "$dirName" "$userID" "$groupID" || warn "Could not set owner of [$dirName] to [$userID:$groupID]"
+    fi
+    # logging message to print created dir with user and group
+    local logMessage=${4:-$printMessage}
+    if [[ "${logMessage}" == "yes" ]]; then
+        logger "Successfully created directory [${dirName}].  Owner: [${userID}:${groupID}]"
+    fi
+}
+
+removeSoftLinkAndCreateDir () {
+    local dirName="$1"
+    local userID="$2"
+    local groupID="$3"
+    local logMessage="$4"
+    removeSoftLink "${dirName}"
+    createDir "${dirName}" "${userID}" "${groupID}" "${logMessage}"
+}
+
+# Utility method to remove a soft link
+removeSoftLink () {
+    local dirName="$1"
+    if [[ -L "${dirName}" ]]; then
+        targetLink=$(readlink -f "${dirName}")
+        logger "Removing the symlink [${dirName}] pointing to [${targetLink}]"
+        rm -f "${dirName}"
+    fi
+}
+
+# Check Directory exist in the path
+checkDirExists () {
+    local directoryPath="$1"
+
+    [[ -d "${directoryPath}" ]] && echo -n "true" || echo -n "false"
+}
+
+
+# Utility method to create a file
+# Failure conditions:
+# Parameters:
+## $1: file to create
+# Depends on global: none
+# Updates global: none
+# Returns: NA
+
+createFile(){
+    local fileName="$1"
+    logSilly "Method ${FUNCNAME[0]} [$fileName]"
+    [ -f "${fileName}" ] && return 0
+    touch "${fileName}" || return 1
+
+    local userID="$2"
+    local groupID=${3:-$userID}
+
+    # If UID/GID is passed, chown the folder
+    if [ ! -z "$userID" ] && [ ! -z "$groupID" ]; then
+        io_setOwnership "$fileName" "$userID" "$groupID" || return 1
+    fi
+}
+
+# Check File exist in the filePath
+# IMPORTANT- DON'T ADD LOGGING to this method
+checkFileExists () {
+    local filePath="$1"
+
+    [[ -f "${filePath}" ]] && echo -n "true" || echo -n "false"
+}
+
+# Check for directories contains any (files or sub directories)
+# IMPORTANT- DON'T ADD LOGGING to this method
+checkDirContents () {
+    local directoryPath="$1"
+    if [[ "$(ls -1 "${directoryPath}" | wc -l)" -gt 0 ]]; then
+        echo -n "true"
+    else
+        echo -n "false"
+    fi
+}
+
+# Check contents exist in directory
+# IMPORTANT- DON'T ADD LOGGING to this method
+checkContentExists () {
+    local source="$1"
+
+    if [[ "$(checkDirContents "${source}")" != "true" ]]; then
+        echo -n "false"
+    else
+        echo -n "true"
+    fi
+}
+
+# Resolve the variable
+# IMPORTANT- DON'T ADD LOGGING to this method
+evalVariable () {
+    local output="$1"
+    local input="$2"
+
+    eval "${output}"=\${"${input}"}
+    eval echo \${"${output}"}
+}
+
+# Usage: if [ "$(io_commandExists 'curl')" == "yes" ]
+# IMPORTANT- DON'T ADD LOGGING to this method
+io_commandExists() {
+    local commandToExecute="$1"
+    hash "${commandToExecute}" 2>/dev/null
+    local rt=$?
+    if [ "$rt" == 0 ]; then echo -n "yes"; else echo -n "no"; fi
+}
+
+# Usage: if [ "$(io_curlExists)" != "yes" ]
+# IMPORTANT- DON'T ADD LOGGING to this method
+io_curlExists() {
+    io_commandExists "curl"
+}
+
+
+io_hasMatch() {
+    logSilly "Method ${FUNCNAME[0]}"
+    local result=0
+    logDebug "Executing [echo \"$1\" | grep \"$2\" >/dev/null 2>&1]"
+    echo "$1" | grep "$2" >/dev/null 2>&1 || result=1
+    return $result
+}
+
+# Utility method to check if the string passed (usually a connection url) corresponds to this machine itself
+# Failure conditions: None
+# Parameters:
+## $1: string to check against
+# Depends on global: none
+# Updates global: IS_LOCALHOST with value "yes/no"
+# Returns: NA
+
+io_getIsLocalhost() {
+    logSilly "Method ${FUNCNAME[0]}"
+    IS_LOCALHOST="$FLAG_N"
+    local inputString="$1"
+    logDebug "Parsing [$inputString] to check if we are dealing with this machine itself"
+
+    io_hasMatch "$inputString" "localhost" && {
+        logDebug "Found localhost. Returning [$FLAG_Y]"
+        IS_LOCALHOST="$FLAG_Y" && return;
+    } || logDebug "Did not find match for localhost"
+    
+    local hostIP=$(io_getPublicHostIP)
+    io_hasMatch "$inputString" "$hostIP" && {
+        logDebug "Found $hostIP. Returning [$FLAG_Y]"
+        IS_LOCALHOST="$FLAG_Y" && return;
+    } || logDebug "Did not find match for $hostIP"
+    
+    local hostID=$(io_getPublicHostID)
+    io_hasMatch "$inputString" "$hostID" && {
+        logDebug "Found $hostID. Returning [$FLAG_Y]"
+        IS_LOCALHOST="$FLAG_Y" && return;
+    } || logDebug "Did not find match for $hostID"
+    
+    local hostName=$(io_getPublicHostName)
+    io_hasMatch  "$inputString" "$hostName" && {
+        logDebug "Found $hostName. Returning [$FLAG_Y]"
+        IS_LOCALHOST="$FLAG_Y" && return;
+    } || logDebug "Did not find match for $hostName"
+    
+}
+
+# Usage: if [ "$(io_tarExists)" != "yes" ]
+# IMPORTANT- DON'T ADD LOGGING to this method
+io_tarExists() {
+    io_commandExists "tar"
+}
+
+# IMPORTANT- DON'T ADD LOGGING to this method
+io_getPublicHostIP() {
+    local OS_TYPE=$(uname)
+    local publicHostIP=
+    if [ "${OS_TYPE}" == "Darwin" ]; then
+        ipStatus=$(ifconfig en0 | grep "status" | awk '{print$2}')
+        if [ "${ipStatus}" == "active" ]; then
+            publicHostIP=$(ifconfig en0 | grep inet | grep -v inet6 | awk '{print $2}')
+        else
+            errorExit "Host IP could not be resolved!"
+        fi
+    elif [ "${OS_TYPE}" == "Linux" ]; then
+        publicHostIP=$(hostname -i 2>/dev/null || echo "127.0.0.1")
+    fi
+    publicHostIP=$(echo "${publicHostIP}" | awk '{print $1}')
+    echo -n "${publicHostIP}"
+}
+
+# Will return the short host name (up to the first dot)
+# IMPORTANT- DON'T ADD LOGGING to this method
+io_getPublicHostName() {
+    echo -n "$(hostname -s)"
+}
+
+# Will return the full host name (use this as much as possible)
+# IMPORTANT- DON'T ADD LOGGING to this method
+io_getPublicHostID() {
+    echo -n "$(hostname)"
+}
+
+# Utility method to backup a file
+# Failure conditions: NA
+# Parameters: filePath
+# Depends on global: none,
+# Updates global: none
+# Returns: NA
+io_backupFile() {
+    logSilly "Method ${FUNCNAME[0]}"
+    fileName="$1"
+    if [ ! -f "${filePath}" ]; then
+        logDebug "No file: [${filePath}] to backup"
+        return
+    fi
+    dateTime=$(date +"%Y-%m-%d-%H-%M-%S")
+    targetFileName="${fileName}.backup.${dateTime}"
+    yes | \cp -f "$fileName" "${targetFileName}"
+    logger "File [${fileName}] backedup as [${targetFileName}]"
+}
+
+# Reference https://stackoverflow.com/questions/4023830/how-to-compare-two-strings-in-dot-separated-version-format-in-bash/4025065#4025065
+is_number() {
+    case "$BASH_VERSION" in
+        3.1.*)
+            PATTERN='\^\[0-9\]+\$'
+            ;;
+        *)
+            PATTERN='^[0-9]+$'
+            ;;
+    esac
+
+    [[ "$1" =~ $PATTERN ]]
+}
+
+io_compareVersions() {
+    if [[ $# != 2 ]]
+    then
+        echo "Usage: min_version current minimum"
+        return
+    fi
+
+    A="${1%%.*}"
+    B="${2%%.*}"
+
+    if [[ "$A" != "$1" && "$B" != "$2" && "$A" == "$B" ]]
+    then
+        io_compareVersions "${1#*.}" "${2#*.}"
+    else
+        if is_number "$A" && is_number "$B"
+        then
+            if [[ "$A" -eq "$B" ]]; then
+                echo "0"
+            elif [[ "$A" -gt "$B" ]]; then
+                echo "1"
+            elif [[ "$A" -lt "$B" ]]; then
+                echo "-1"
+            fi
+        fi
+    fi
+}
+
+# Reference https://stackoverflow.com/questions/369758/how-to-trim-whitespace-from-a-bash-variable
+# Strip all leading and trailing spaces
+# IMPORTANT- DON'T ADD LOGGING to this method
+io_trim() {
+    local var="$1"
+    # remove leading whitespace characters
+    var="${var#"${var%%[![:space:]]*}"}"
+    # remove trailing whitespace characters
+    var="${var%"${var##*[![:space:]]}"}"
+    echo -n "$var"
+}
+
+# temporary function will be removing it ASAP
+# search for string and replace text in file
+replaceText_migration_hook () {
+    local regexString="$1"
+    local replaceText="$2"
+    local file="$3"
+
+    if [[ "$(checkFileExists "${file}")" != "true" ]]; then
+        return
+    fi
+    if [[ $(uname) == "Darwin" ]]; then
+        sed -i '' -e "s/${regexString}/${replaceText}/" "${file}" || warn "Failed to replace the text in ${file}"
+    else
+        sed -i -e "s/${regexString}/${replaceText}/" "${file}" || warn "Failed to replace the text in ${file}"
+    fi
+}
+
+# search for string and replace text in file
+replaceText () {
+    local regexString="$1"
+    local replaceText="$2"
+    local file="$3"
+
+    if [[ "$(checkFileExists "${file}")" != "true" ]]; then
+        return
+    fi
+    if [[ $(uname) == "Darwin" ]]; then
+        sed -i '' -e "s#${regexString}#${replaceText}#" "${file}" || warn "Failed to replace the text in ${file}"
+    else
+        sed -i -e "s#${regexString}#${replaceText}#" "${file}" || warn "Failed to replace the text in ${file}"
+        logDebug "Replaced [$regexString] with [$replaceText] in [$file]"
+    fi
+}
+
+# search for string and prepend text in file
+prependText () {
+    local regexString="$1"
+    local text="$2"
+    local file="$3"
+
+    if [[ "$(checkFileExists "${file}")" != "true" ]]; then
+        return
+    fi
+    if [[ $(uname) == "Darwin" ]]; then
+        sed -i '' -e '/'"${regexString}"'/i\'$'\n\\'"${text}"''$'\n' "${file}" || warn "Failed to prepend the text in ${file}"
+    else
+        sed -i -e '/'"${regexString}"'/i\'$'\n\\'"${text}"''$'\n' "${file}" || warn "Failed to prepend the text in ${file}"
+    fi
+}
+
+# add text to beginning of the file
+addText () {
+    local text="$1"
+    local file="$2"
+
+    if [[ "$(checkFileExists "${file}")" != "true" ]]; then
+        return
+    fi
+    if [[ $(uname) == "Darwin" ]]; then
+        sed -i '' -e '1s/^/'"${text}"'\'$'\n/' "${file}" || warn "Failed to add the text in ${file}"
+    else
+        sed -i -e '1s/^/'"${text}"'\'$'\n/' "${file}" || warn "Failed to add the text in ${file}"
+    fi
+}
+
+io_replaceString () {
+    local value="$1"
+    local firstString="$2"
+    local secondString="$3"
+    local separator=${4:-"/"}
+    local updateValue=
+    if [[ $(uname) == "Darwin" ]]; then
+        updateValue=$(echo "${value}" | sed "s${separator}${firstString}${separator}${secondString}${separator}")
+    else
+        updateValue=$(echo "${value}" | sed "s${separator}${firstString}${separator}${secondString}${separator}")
+    fi
+    echo -n "${updateValue}"
+}
+
+_findYQ() {
+    # logSilly "Method ${FUNCNAME[0]}" (Intentionally not logging. Does not add value)
+    local parentDir="$1"
+    if [ -z "$parentDir" ]; then
+        return
+    fi
+    logDebug "Executing command [find "${parentDir}" -name third-party -type d]"
+    local yq=$(find "${parentDir}" -name third-party -type d)
+    if [ -d "${yq}/yq" ]; then
+        export YQ_PATH="${yq}/yq"
+    fi
+}
+
+
+io_setYQPath() {
+    # logSilly "Method ${FUNCNAME[0]}" (Intentionally not logging. Does not add value)
+    if [ "$(io_commandExists 'yq')" == "yes" ]; then
+        return
+    fi
+    
+    if [ ! -z "${JF_PRODUCT_HOME}" ] && [ -d "${JF_PRODUCT_HOME}" ]; then
+        _findYQ "${JF_PRODUCT_HOME}"
+    fi
+    
+    if [ -z "${YQ_PATH}" ] && [ ! -z "${COMPOSE_HOME}" ] && [ -d "${COMPOSE_HOME}" ]; then
+        _findYQ "${COMPOSE_HOME}"
+    fi
+    # TODO We can remove this block after all the code is restructured.
+    if [ -z "${YQ_PATH}" ] && [ ! -z "${SCRIPT_HOME}" ] && [ -d "${SCRIPT_HOME}" ]; then
+        _findYQ "${SCRIPT_HOME}"
+    fi
+    
+}
+
+io_getLinuxDistribution() {
+    LINUX_DISTRIBUTION=
+
+    # Make sure running on Linux
+    [ $(uname -s) != "Linux" ] && return
+
+    # Find out what Linux distribution we are on
+
+    cat /etc/*-release | grep -i Red >/dev/null 2>&1 && LINUX_DISTRIBUTION=RedHat || true
+
+    # OS 6.x
+    cat /etc/issue.net | grep Red >/dev/null 2>&1 && LINUX_DISTRIBUTION=RedHat || true
+
+    # OS 7.x
+    cat /etc/*-release | grep -i centos >/dev/null 2>&1 && LINUX_DISTRIBUTION=CentOS && LINUX_DISTRIBUTION_VER="7" || true
+
+    # OS 8.x
+    grep -q -i "release 8" /etc/redhat-release >/dev/null 2>&1 && LINUX_DISTRIBUTION_VER="8" || true
+
+    # OS 7.x
+    grep -q -i "release 7" /etc/redhat-release >/dev/null 2>&1 && LINUX_DISTRIBUTION_VER="7" || true
+
+    # OS 6.x
+    grep -q -i "release 6" /etc/redhat-release >/dev/null 2>&1 && LINUX_DISTRIBUTION_VER="6" || true
+
+    cat /etc/*-release | grep -i Red | grep -i 'VERSION=7' >/dev/null 2>&1 && LINUX_DISTRIBUTION=RedHat && LINUX_DISTRIBUTION_VER="7" || true
+
+    cat /etc/*-release | grep -i debian >/dev/null 2>&1 && LINUX_DISTRIBUTION=Debian || true
+
+    cat /etc/*-release | grep -i ubuntu >/dev/null 2>&1 && LINUX_DISTRIBUTION=Ubuntu || true
+}
+
+## Utility method to check ownership of folders/files
+## Failure conditions:
+    ## If invoked with incorrect inputs - FATAL
+    ## If file is not owned by the user & group
+## Parameters:
+    ## user
+    ## group
+    ## folder to chown    
+## Globals: none
+## Returns: none
+## NOTE: The method does NOTHING if the OS is Mac
+io_checkOwner () {
+    logSilly "Method ${FUNCNAME[0]}"
+    local osType=$(uname)
+    
+    if [ "${osType}" != "Linux" ]; then
+        logDebug "Unsupported OS. Skipping check"
+        return 0
+    fi
+
+    local file_to_check=$1
+    local user_id_to_check=$2
+    
+
+    if [ -z "$user_id_to_check" ] || [ -z "$file_to_check" ]; then
+        errorExit "Invalid invocation of method. Missing mandatory inputs"
+    fi
+
+    local group_id_to_check=${3:-$user_id_to_check}
+    local check_user_name=${4:-"no"}
+
+    logDebug "Checking permissions on [$file_to_check] for user [$user_id_to_check] & group [$group_id_to_check]"
+
+    local stat=
+
+    if [ "${check_user_name}" == "yes" ]; then
+        stat=( $(stat -Lc "%U %G" ${file_to_check}) )
+    else
+        stat=( $(stat -Lc "%u %g" ${file_to_check}) )
+    fi
+
+    local user_id=${stat[0]}
+    local group_id=${stat[1]}
+
+    if [[ "${user_id}" != "${user_id_to_check}" ]] || [[ "${group_id}" != "${group_id_to_check}" ]] ; then
+        logDebug "Ownership mismatch. [${file_to_check}] is not owned by [${user_id_to_check}:${group_id_to_check}]"
+        return 1
+    else
+        return 0
+    fi
+}
+
+## Utility method to change ownership of a file/folder - NON recursive
+## Failure conditions:
+    ## If invoked with incorrect inputs - FATAL
+    ## If chown operation fails - returns 1
+## Parameters: 
+    ## user
+    ## group
+    ## file to chown    
+## Globals: none
+## Returns: none
+## NOTE: The method does NOTHING if the OS is Mac
+
+io_setOwnershipNonRecursive() {
+    
+    local osType=$(uname)
+    if [ "${osType}" != "Linux" ]; then
+        return
+    fi
+
+    local targetFile=$1
+    local user=$2
+
+    if [ -z "$user" ] || [ -z "$targetFile" ]; then
+        errorExit "Invalid invocation of method. Missing mandatory inputs"
+    fi
+
+    local group=${3:-$user}
+    logDebug "Method ${FUNCNAME[0]}. Executing [chown ${user}:${group} ${targetFile}]"
+    chown ${user}:${group} ${targetFile} || return 1
+}
+
+## Utility method to change ownership of a file. 
+## IMPORTANT 
+## If being called on a folder, should ONLY be called for fresh folders or may cause performance issues
+## Failure conditions:
+    ## If invoked with incorrect inputs - FATAL
+    ## If chown operation fails - returns 1
+## Parameters: 
+    ## user
+    ## group
+    ## file to chown    
+## Globals: none
+## Returns: none
+## NOTE: The method does NOTHING if the OS is Mac
+
+io_setOwnership() {
+    
+    local osType=$(uname)
+    if [ "${osType}" != "Linux" ]; then
+        return
+    fi
+
+    local targetFile=$1
+    local user=$2
+
+    if [ -z "$user" ] || [ -z "$targetFile" ]; then
+        errorExit "Invalid invocation of method. Missing mandatory inputs"
+    fi
+
+    local group=${3:-$user}
+    logDebug "Method ${FUNCNAME[0]}. Executing [chown -R ${user}:${group} ${targetFile}]"
+    chown -R ${user}:${group} ${targetFile} || return 1
+}
+
+## Utility method to create third party folder structure necessary for Postgres
+## Failure conditions:
+## If creation of directory or assigning permissions fails
+## Parameters: none
+## Globals:
+## POSTGRESQL_DATA_ROOT
+## Returns: none
+## NOTE: The method does NOTHING if the folder already exists
+io_createPostgresDir() {
+    logDebug "Method ${FUNCNAME[0]}"
+    [ -z "${POSTGRESQL_DATA_ROOT}" ] && return 0
+
+    logDebug "Property [${POSTGRESQL_DATA_ROOT}] exists. Proceeding"
+
+    createDir "${POSTGRESQL_DATA_ROOT}/data"
+    io_setOwnership  "${POSTGRESQL_DATA_ROOT}" "${POSTGRES_USER}" "${POSTGRES_USER}" || errorExit "Setting ownership of [${POSTGRESQL_DATA_ROOT}] to [${POSTGRES_USER}:${POSTGRES_USER}] failed"
+}
+
+## Utility method to create third party folder structure necessary for Nginx
+## Failure conditions:
+## If creation of directory or assigning permissions fails
+## Parameters: none
+## Globals:
+## NGINX_DATA_ROOT
+## Returns: none
+## NOTE: The method does NOTHING if the folder already exists
+io_createNginxDir() {
+    logDebug "Method ${FUNCNAME[0]}"
+    [ -z "${NGINX_DATA_ROOT}" ] && return 0
+
+    logDebug "Property [${NGINX_DATA_ROOT}] exists. Proceeding"
+
+    createDir "${NGINX_DATA_ROOT}"
+    io_setOwnership  "${NGINX_DATA_ROOT}" "${NGINX_USER}" "${NGINX_GROUP}" || errorExit "Setting ownership of [${NGINX_DATA_ROOT}] to [${NGINX_USER}:${NGINX_GROUP}] failed"
+}
+
+## Utility method to create third party folder structure necessary for ElasticSearch
+## Failure conditions:
+## If creation of directory or assigning permissions fails
+## Parameters: none
+## Globals:
+## ELASTIC_DATA_ROOT
+## Returns: none
+## NOTE: The method does NOTHING if the folder already exists
+io_createElasticSearchDir() {
+    logDebug "Method ${FUNCNAME[0]}"
+    [ -z "${ELASTIC_DATA_ROOT}" ] && return 0
+
+    logDebug "Property [${ELASTIC_DATA_ROOT}] exists. Proceeding"
+
+    createDir "${ELASTIC_DATA_ROOT}/data"
+    io_setOwnership  "${ELASTIC_DATA_ROOT}" "${ES_USER}" "${ES_USER}" || errorExit "Setting ownership of [${ELASTIC_DATA_ROOT}] to [${ES_USER}:${ES_USER}] failed"
+}
+
+## Utility method to create third party folder structure necessary for Redis
+## Failure conditions:
+## If creation of directory or assigning permissions fails
+## Parameters: none
+## Globals:
+## REDIS_DATA_ROOT
+## Returns: none
+## NOTE: The method does NOTHING if the folder already exists
+io_createRedisDir() {
+    logDebug "Method ${FUNCNAME[0]}"
+    [ -z "${REDIS_DATA_ROOT}" ] && return 0
+
+    logDebug "Property [${REDIS_DATA_ROOT}] exists. Proceeding"
+
+    createDir "${REDIS_DATA_ROOT}"
+    io_setOwnership  "${REDIS_DATA_ROOT}" "${REDIS_USER}" "${REDIS_USER}" || errorExit "Setting ownership of [${REDIS_DATA_ROOT}] to [${REDIS_USER}:${REDIS_USER}] failed"
+}
+
+## Utility method to create third party folder structure necessary for Mongo
+## Failure conditions:
+## If creation of directory or assigning permissions fails
+## Parameters: none
+## Globals:
+## MONGODB_DATA_ROOT
+## Returns: none
+## NOTE: The method does NOTHING if the folder already exists
+io_createMongoDir() {
+    logDebug "Method ${FUNCNAME[0]}"
+    [ -z "${MONGODB_DATA_ROOT}" ] && return 0
+
+    logDebug "Property [${MONGODB_DATA_ROOT}] exists. Proceeding"
+
+    createDir "${MONGODB_DATA_ROOT}/logs"
+    createDir "${MONGODB_DATA_ROOT}/configdb"
+    createDir "${MONGODB_DATA_ROOT}/db"
+    io_setOwnership  "${MONGODB_DATA_ROOT}" "${MONGO_USER}" "${MONGO_USER}" || errorExit "Setting ownership of [${MONGODB_DATA_ROOT}] to [${MONGO_USER}:${MONGO_USER}] failed"
+}
+
+## Utility method to create third party folder structure necessary for RabbitMQ
+## Failure conditions:
+## If creation of directory or assigning permissions fails
+## Parameters: none
+## Globals:
+## RABBITMQ_DATA_ROOT
+## Returns: none
+## NOTE: The method does NOTHING if the folder already exists
+io_createRabbitMQDir() {
+    logDebug "Method ${FUNCNAME[0]}"
+    [ -z "${RABBITMQ_DATA_ROOT}" ] && return 0
+
+    logDebug "Property [${RABBITMQ_DATA_ROOT}] exists. Proceeding"
+
+    createDir "${RABBITMQ_DATA_ROOT}"
+    io_setOwnership  "${RABBITMQ_DATA_ROOT}" "${RABBITMQ_USER}" "${RABBITMQ_USER}" || errorExit "Setting ownership of [${RABBITMQ_DATA_ROOT}] to [${RABBITMQ_USER}:${RABBITMQ_USER}] failed"
+}
+
+# Add or replace a property in provided properties file
+addOrReplaceProperty() {
+    local propertyName=$1
+    local propertyValue=$2
+    local propertiesPath=$3
+    local delimiter=${4:-"="}
+
+    # Return if any of the inputs are empty
+    [[ -z "$propertyName"   || "$propertyName"   == "" ]] && return
+    [[ -z "$propertyValue"  || "$propertyValue"  == "" ]] && return
+    [[ -z "$propertiesPath" || "$propertiesPath" == "" ]] && return
+
+    grep "^${propertyName}\s*${delimiter}.*$" ${propertiesPath} > /dev/null 2>&1
+    [ $? -ne 0 ] && echo -e "\n${propertyName}${delimiter}${propertyValue}" >> ${propertiesPath}
+    sed -i -e "s|^${propertyName}\s*${delimiter}.*$|${propertyName}${delimiter}${propertyValue}|g;" ${propertiesPath}
+}
+
+# Set property only if its not set
+io_setPropertyNoOverride(){
+    local propertyName=$1
+    local propertyValue=$2
+    local propertiesPath=$3
+
+    # Return if any of the inputs are empty
+    [[ -z "$propertyName"   || "$propertyName"   == "" ]] && return
+    [[ -z "$propertyValue"  || "$propertyValue"  == "" ]] && return
+    [[ -z "$propertiesPath" || "$propertiesPath" == "" ]] && return
+
+    grep "^${propertyName}:" ${propertiesPath} > /dev/null 2>&1
+    if [ $? -ne 0 ]; then
+        echo -e "${propertyName}: ${propertyValue}" >> ${propertiesPath} || warn "Setting property ${propertyName}: ${propertyValue} in [ ${propertiesPath} ] failed"
+    else
+        logger "Skipping update of property : ${propertyName}" >&6
+    fi
+}
+
+# Add a line to a file if it doesn't already exist
+addLine() {
+    local line_to_add=$1
+    local target_file=$2
+    logger "Trying to add line $1 to $2" >&6 2>&1
+    cat "$target_file" | grep -F "$line_to_add" -wq >&6 2>&1
+    if [ $? != 0  ]; then
+        logger "Line does not exist and will be added" >&6 2>&1
+        echo $line_to_add >> $target_file || errorExit "Could not update $target_file"
+    fi    
+}
+
+# Utility method to check if a value (first parameter) exists in an array (2nd parameter)
+# 1st parameter "value to find"
+# 2nd parameter "The array to search in. Please pass a string with each value separated by space"
+# Example: containsElement "y" "y Y n N"
+containsElement () {
+    local searchElement=$1
+    local searchArray=($2)
+    local found=1
+    for elementInIndex in "${searchArray[@]}";do
+    if [[ $elementInIndex == $searchElement ]]; then
+        found=0
+    fi
+    done
+    return $found
+}
+
+# Utility method to get user's choice
+# 1st parameter "what to ask the user"
+# 2nd parameter "what choices to accept, separated by spaces"
+# 3rd parameter "what is the default choice (to use if the user simply presses Enter)"
+# Example 'getUserChoice "Are you feeling lucky? Punk!" "y n Y N" "y"'
+getUserChoice(){
+    configureLogOutput
+    read_timeout=${read_timeout:-0.5}
+    local choice="na"
+    local text_to_display=$1
+    local choices=$2
+    local default_choice=$3
+    users_choice=
+
+    until containsElement "$choice" "$choices"; do
+        echo "";echo "";
+        sleep $read_timeout #This ensures correct placement of the question.
+        read -p  "$text_to_display :" choice
+        : ${choice:=$default_choice}
+    done
+    users_choice=$choice
+    echo -e "\n$text_to_display: $users_choice" >&6
+    sleep $read_timeout #This ensures correct logging
+}
+
+setFilePermission () {
+    local permission=$1
+    local file=$2
+    chmod "${permission}" "${file}" || warn "Setting permission ${permission} to file [ ${file} ] failed"
+}
+
+
+#setting required paths
+setAppDir (){
+    SCRIPT_DIR=$(dirname $0)
+    SCRIPT_HOME="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
+    APP_DIR="`cd "${SCRIPT_HOME}";pwd`"
+}
+
+ZIP_TYPE="zip"
+COMPOSE_TYPE="compose"
+HELM_TYPE="helm"
+RPM_TYPE="rpm"
+DEB_TYPE="debian"
+
+sourceScript () {
+    local file="$1"
+
+    [ ! -z "${file}" ] || errorExit "target file is not passed to source a file"
+
+    if [ ! -f "${file}" ]; then
+        errorExit "${file} file is not found"
+    else
+        source "${file}" || errorExit "Unable to source ${file}, please check if the user ${USER} has permissions to perform this action"
+    fi
+}
+# Source required helpers
+initHelpers () {
+    local systemYamlHelper="${APP_DIR}/systemYamlHelper.sh"
+    local thirdPartyDir=$(find ${APP_DIR}/.. -name third-party -type d)
+    export YQ_PATH="${thirdPartyDir}/yq"
+    LIBXML2_PATH="${thirdPartyDir}/libxml2/bin/xmllint"
+    export LD_LIBRARY_PATH="${thirdPartyDir}/libxml2/lib"
+    sourceScript "${systemYamlHelper}"
+}
+# Check migration info yaml file available in the path
+checkMigrationInfoYaml () {
+
+    if [[ -f "${APP_DIR}/migrationHelmInfo.yaml" ]]; then
+        MIGRATION_SYSTEM_YAML_INFO="${APP_DIR}/migrationHelmInfo.yaml"
+        INSTALLER="${HELM_TYPE}"
+    elif [[ -f "${APP_DIR}/migrationZipInfo.yaml" ]]; then
+        MIGRATION_SYSTEM_YAML_INFO="${APP_DIR}/migrationZipInfo.yaml"
+        INSTALLER="${ZIP_TYPE}"
+    elif [[ -f "${APP_DIR}/migrationRpmInfo.yaml" ]]; then
+        MIGRATION_SYSTEM_YAML_INFO="${APP_DIR}/migrationRpmInfo.yaml"
+        INSTALLER="${RPM_TYPE}"
+    elif [[ -f "${APP_DIR}/migrationDebInfo.yaml" ]]; then
+        MIGRATION_SYSTEM_YAML_INFO="${APP_DIR}/migrationDebInfo.yaml"
+        INSTALLER="${DEB_TYPE}"
+    elif [[ -f "${APP_DIR}/migrationComposeInfo.yaml" ]]; then
+        MIGRATION_SYSTEM_YAML_INFO="${APP_DIR}/migrationComposeInfo.yaml"
+        INSTALLER="${COMPOSE_TYPE}"
+    else
+        errorExit "File migration Info yaml does not exist in [${APP_DIR}]"
+    fi
+}
+
+retrieveYamlValue () {
+    local yamlPath="$1"
+    local value="$2"
+    local output="$3"
+    local message="$4"
+
+    [[ -z "${yamlPath}" ]] && errorExit "yamlPath is mandatory to get value from ${MIGRATION_SYSTEM_YAML_INFO}"
+
+    getYamlValue "${yamlPath}" "${MIGRATION_SYSTEM_YAML_INFO}" "false"
+    value="${YAML_VALUE}"
+    if [[ -z "${value}" ]]; then
+        if [[ "${output}" == "Warning" ]]; then
+            warn "Empty value for ${yamlPath} in [${MIGRATION_SYSTEM_YAML_INFO}]"
+        elif [[ "${output}" == "Skip" ]]; then
+            return
+        else
+            errorExit "${message}"
+        fi
+    fi
+}
+
+checkEnv () {
+    
+    if [[ "${INSTALLER}" == "${ZIP_TYPE}" ]]; then
+        # check Environment JF_PRODUCT_HOME is set before migration
+        NEW_DATA_DIR="$(evalVariable "NEW_DATA_DIR" "JF_PRODUCT_HOME")"
+        if [[ -z "${NEW_DATA_DIR}" ]]; then
+            errorExit "Environment variable JF_PRODUCT_HOME is not set, this is required to perform Migration"
+        fi
+        # appending var directory to $JF_PRODUCT_HOME
+        NEW_DATA_DIR="${NEW_DATA_DIR}/var"
+    elif [[ "${INSTALLER}" == "${HELM_TYPE}" ]]; then
+        getCustomDataDir_hook
+        NEW_DATA_DIR="${OLD_DATA_DIR}"
+        if [[ -z "${NEW_DATA_DIR}" ]] && [[  -z "${OLD_DATA_DIR}" ]]; then
+            errorExit "Could not find ${PROMPT_DATA_DIR_LOCATION} to perform Migration"
+        fi
+    else
+        # check Environment JF_ROOT_DATA_DIR is set before migration
+        OLD_DATA_DIR="$(evalVariable "OLD_DATA_DIR" "JF_ROOT_DATA_DIR")"
+        # check Environment JF_ROOT_DATA_DIR is set before migration
+        NEW_DATA_DIR="$(evalVariable "NEW_DATA_DIR" "JF_ROOT_DATA_DIR")"
+        if [[ -z "${NEW_DATA_DIR}" ]] && [[  -z "${OLD_DATA_DIR}" ]]; then
+            errorExit "Could not find ${PROMPT_DATA_DIR_LOCATION} to perform Migration"
+        fi
+            # appending var directory to $JF_PRODUCT_HOME
+            NEW_DATA_DIR="${NEW_DATA_DIR}/var"
+    fi
+    
+}
+
+getDataDir () {
+
+    if [[ "${INSTALLER}" == "${ZIP_TYPE}" || "${INSTALLER}" == "${COMPOSE_TYPE}"|| "${INSTALLER}" == "${HELM_TYPE}" ]]; then
+        checkEnv
+    else
+        getCustomDataDir_hook
+        NEW_DATA_DIR="`cd "${APP_DIR}"/../../;pwd`"
+        NEW_DATA_DIR="${NEW_DATA_DIR}/var"
+    fi
+}
+
+# Retrieve Product name from MIGRATION_SYSTEM_YAML_INFO
+getProduct () {
+    retrieveYamlValue "migration.product" "${YAML_VALUE}" "Fail" "Empty value under ${yamlPath} in [${MIGRATION_SYSTEM_YAML_INFO}]"
+    PRODUCT="${YAML_VALUE}"
+    PRODUCT=$(echo "${PRODUCT}" | tr '[:upper:]' '[:lower:]' 2>/dev/null)
+    if [[ "${PRODUCT}" != "artifactory" && "${PRODUCT}" != "distribution" && "${PRODUCT}" != "xray" ]]; then
+        errorExit "migration.product in [${MIGRATION_SYSTEM_YAML_INFO}] is not correct, please set based on product as ARTIFACTORY or DISTRIBUTION"
+    fi
+    if [[ "${INSTALLER}" == "${HELM_TYPE}" ]]; then
+        JF_USER="${PRODUCT}"
+    fi
+}
+# Compare product version with minProductVersion and maxProductVersion
+migrateCheckVersion () {
+    local productVersion="$1"
+    local minProductVersion="$2"
+    local maxProductVersion="$3"
+    local productVersion618="6.18.0"
+    local unSupportedProductVersions7=("7.2.0 7.2.1")
+
+    if [[ "$(io_compareVersions "${productVersion}" "${maxProductVersion}")" -eq 0 || "$(io_compareVersions "${productVersion}" "${maxProductVersion}")" -eq 1 ]]; then
+        logger "Migration not necessary. ${PRODUCT} is already ${productVersion}"
+        exit 11
+    elif [[ "$(io_compareVersions "${productVersion}" "${minProductVersion}")" -eq 0 || "$(io_compareVersions "${productVersion}" "${minProductVersion}")" -eq 1 ]]; then
+        if [[ ("$(io_compareVersions "${productVersion}" "${productVersion618}")" -eq 0 || "$(io_compareVersions "${productVersion}" "${productVersion618}")" -eq 1) && " ${unSupportedProductVersions7[@]} " =~ " ${CURRENT_VERSION} " ]]; then
+            touch /tmp/error;
+            errorExit "Current ${PRODUCT} version (${productVersion}) does not support migration to ${CURRENT_VERSION}"
+        else
+            bannerStart "Detected ${PRODUCT} ${productVersion}, initiating migration"
+        fi
+    else
+        logger "Current ${PRODUCT} ${productVersion} version is not supported for migration"
+        exit 1
+    fi
+}
+
+getProductVersion () {
+    local minProductVersion="$1"
+    local maxProductVersion="$2"
+    local newfilePath="$3"
+    local oldfilePath="$4"
+    local propertyInDocker="$5"
+    local property="$6"
+    local productVersion=
+    local status=
+
+    if [[ "$INSTALLER" == "${COMPOSE_TYPE}" ]]; then
+        if [[ -f "${oldfilePath}" ]]; then
+            if [[ "${PRODUCT}" == "artifactory" ]]; then
+                productVersion="$(readKey "${property}" "${oldfilePath}")"
+            else
+                productVersion="$(cat "${oldfilePath}")"
+            fi
+            status="success"
+        elif [[ -f "${newfilePath}" ]]; then
+            productVersion="$(readKey "${propertyInDocker}" "${newfilePath}")"
+            status="fail"
+        else
+            logger "File [${oldfilePath}] or [${newfilePath}] not found to get current version."
+            exit 0
+        fi
+    elif [[ "$INSTALLER" == "${HELM_TYPE}" ]]; then
+        if [[ -f "${oldfilePath}" ]]; then
+            if [[ "${PRODUCT}" == "artifactory" ]]; then
+                productVersion="$(readKey "${property}" "${oldfilePath}")"
+            else
+                productVersion="$(cat "${oldfilePath}")"
+            fi
+            status="success"
+        else
+            productVersion="${CURRENT_VERSION}"
+            [[ -z "${productVersion}" || "${productVersion}" == "" ]] && logger "${PRODUCT} CURRENT_VERSION is not set" && exit 0
+        fi
+    else
+        if [[ -f "${newfilePath}" ]]; then
+            productVersion="$(readKey "${property}" "${newfilePath}")"
+            status="fail"
+        elif [[ -f "${oldfilePath}" ]]; then
+            productVersion="$(readKey "${property}" "${oldfilePath}")"
+            status="success"
+        else
+            if [[ "${INSTALLER}" == "${ZIP_TYPE}" ]]; then
+                logger "File [${newfilePath}] not found to get current version."
+            else
+                logger "File [${oldfilePath}] or [${newfilePath}] not found to get current version."
+            fi
+            exit 0
+        fi
+    fi
+    if [[ -z "${productVersion}" || "${productVersion}" == "" ]]; then
+        [[ "${status}" == "success" ]] && logger "No version found in file [${oldfilePath}]."
+        [[ "${status}" == "fail" ]] && logger "No version found in file [${newfilePath}]."
+        exit 0
+    fi
+
+    migrateCheckVersion "${productVersion}" "${minProductVersion}" "${maxProductVersion}"
+}
+
+readKey () {
+    local property="$1"
+    local file="$2"
+    local version=
+
+    while IFS='=' read -r key value || [ -n "${key}" ];
+    do
+        [[ ! "${key}" =~ \#.* && ! -z "${key}" && ! -z "${value}" ]]
+        key="$(io_trim "${key}")"
+        if [[ "${key}" == "${property}" ]]; then
+            version="${value}" && check=true && break
+        else
+            check=false
+        fi
+    done < "${file}"
+    if [[ "${check}" == "false" ]]; then
+        return
+    fi
+    echo "${version}"
+}
+
+# create Log directory
+createLogDir () {
+    if [[ "${INSTALLER}" == "${DEB_TYPE}" || "${INSTALLER}" == "${RPM_TYPE}" ]]; then
+        getUserAndGroupFromFile
+        removeSoftLinkAndCreateDir "${NEW_DATA_DIR}/log" "${USER_TO_CHECK}" "${GROUP_TO_CHECK}"
+    fi
+}
+
+# Creating migration log file
+creationMigrateLog () {
+    local LOG_FILE_NAME="migration.log"
+    createLogDir
+    local MIGRATION_LOG_FILE="${NEW_DATA_DIR}/log/${LOG_FILE_NAME}"
+    if [[ "${INSTALLER}" == "${COMPOSE_TYPE}" || "${INSTALLER}" == "${HELM_TYPE}" ]]; then
+        MIGRATION_LOG_FILE="${SCRIPT_HOME}/${LOG_FILE_NAME}"
+    fi
+    touch "${MIGRATION_LOG_FILE}"
+    setFilePermission "${LOG_FILE_PERMISSION}" "${MIGRATION_LOG_FILE}"
+    exec &> >(tee -a "${MIGRATION_LOG_FILE}")   
+}
+# Set path where system.yaml should create
+setSystemYamlPath () {
+    SYSTEM_YAML_PATH="${NEW_DATA_DIR}/etc/system.yaml"
+    if [[ "${INSTALLER}" != "${HELM_TYPE}" ]]; then
+        logger "system.yaml will be created in path [${SYSTEM_YAML_PATH}]"
+    fi
+}
+# Create directory
+createDirectory () {
+    local directory="$1"
+    local output="$2"
+    local check=false
+    local message="Could not create directory ${directory}, please check if the user ${USER} has permissions to perform this action"
+    removeSoftLink "${directory}"
+    mkdir -p "${directory}" && check=true || check=false
+    if [[ "${check}" == "false" ]]; then
+        if [[ "${output}" == "Warning" ]]; then
+            warn "${message}"
+        else
+            errorExit "${message}"
+        fi
+    fi
+    setOwnershipBasedOnInstaller "${directory}"
+}
+
+setOwnershipBasedOnInstaller () {
+    local directory="$1"
+    if [[ "${INSTALLER}" == "${DEB_TYPE}" || "${INSTALLER}" == "${RPM_TYPE}" ]]; then
+        getUserAndGroupFromFile
+        chown -R ${USER_TO_CHECK}:${GROUP_TO_CHECK} "${directory}" || warn "Setting ownership on $directory failed"
+    elif [[ "${INSTALLER}" == "${COMPOSE_TYPE}" || "${INSTALLER}" == "${HELM_TYPE}" ]]; then
+        io_setOwnership "${directory}" "${JF_USER}" "${JF_USER}"
+    fi
+}
+
+getUserAndGroup () {
+    local file="$1"
+    read uid gid <<<$(stat -c '%U %G' ${file})
+    USER_TO_CHECK="${uid}"
+    GROUP_TO_CHECK="${gid}"
+}
+    
+# set ownership
+getUserAndGroupFromFile () {
+    case $PRODUCT in
+        artifactory)
+            getUserAndGroup "/etc/opt/jfrog/artifactory/artifactory.properties"
+        ;;
+        distribution)
+            getUserAndGroup "${OLD_DATA_DIR}/etc/versions.properties"
+        ;;
+        xray)
+            getUserAndGroup "${OLD_DATA_DIR}/security/master.key"
+        ;;
+        esac
+} 
+
+# creating required directories
+createRequiredDirs () {
+    bannerSubSection "CREATING REQUIRED DIRECTORIES"
+    if [[ "${INSTALLER}" == "${COMPOSE_TYPE}" || "${INSTALLER}" == "${HELM_TYPE}"  ]]; then
+        removeSoftLinkAndCreateDir "${NEW_DATA_DIR}/etc/security" "${JF_USER}" "${JF_USER}" "yes"
+        removeSoftLinkAndCreateDir "${NEW_DATA_DIR}/data" "${JF_USER}" "${JF_USER}" "yes"
+        removeSoftLinkAndCreateDir "${NEW_DATA_DIR}/log/archived" "${JF_USER}" "${JF_USER}" "yes"
+        removeSoftLinkAndCreateDir "${NEW_DATA_DIR}/work" "${JF_USER}" "${JF_USER}" "yes"
+        removeSoftLinkAndCreateDir "${NEW_DATA_DIR}/backup" "${JF_USER}" "${JF_USER}" "yes"
+        io_setOwnership "${NEW_DATA_DIR}" "${JF_USER}" "${JF_USER}"
+        if [[ "${INSTALLER}" == "${COMPOSE_TYPE}" ]]; then
+            removeSoftLinkAndCreateDir "${NEW_DATA_DIR}/data/postgres" "${POSTGRES_USER}" "${POSTGRES_USER}" "yes"
+        fi
+    elif [[ "${INSTALLER}" == "${DEB_TYPE}" || "${INSTALLER}" == "${RPM_TYPE}" ]]; then
+        getUserAndGroupFromFile
+        removeSoftLinkAndCreateDir "${NEW_DATA_DIR}/etc" "${USER_TO_CHECK}" "${GROUP_TO_CHECK}" "yes"
+        removeSoftLinkAndCreateDir "${NEW_DATA_DIR}/etc/security" "${USER_TO_CHECK}" "${GROUP_TO_CHECK}" "yes"
+        removeSoftLinkAndCreateDir "${NEW_DATA_DIR}/data" "${USER_TO_CHECK}" "${GROUP_TO_CHECK}" "yes"
+        removeSoftLinkAndCreateDir "${NEW_DATA_DIR}/log/archived" "${USER_TO_CHECK}" "${GROUP_TO_CHECK}" "yes"
+        removeSoftLinkAndCreateDir "${NEW_DATA_DIR}/work" "${USER_TO_CHECK}" "${GROUP_TO_CHECK}" "yes"
+        removeSoftLinkAndCreateDir "${NEW_DATA_DIR}/backup" "${USER_TO_CHECK}" "${GROUP_TO_CHECK}" "yes"
+    fi
+}
+
+# Check entry in map is format
+checkMapEntry () {
+    local entry="$1"
+
+    [[ "${entry}" != *"="* ]] && echo -n "false" || echo -n "true"
+}
+# Check value Empty and warn
+warnIfEmpty () {
+    local filePath="$1"
+    local yamlPath="$2"
+    local check=
+
+    if [[ -z "${filePath}" ]]; then
+        warn "Empty value in yamlpath [${yamlPath} in [${MIGRATION_SYSTEM_YAML_INFO}]"
+        check=false
+    else
+        check=true
+    fi
+    echo "${check}"
+}
+
+logCopyStatus () {
+    local status="$1"
+    local logMessage="$2"
+    local warnMessage="$3"
+
+    [[ "${status}" == "success"  ]] && logger "${logMessage}"
+    [[ "${status}" == "fail" ]] && warn "${warnMessage}"
+}
+# copy contents from source to destination
+copyCmd () {
+    local source="$1"
+    local target="$2"
+    local mode="$3"
+    local status=
+    
+    case $mode in
+        unique)
+            cp -up "${source}"/* "${target}"/ && status="success" || status="fail"
+            logCopyStatus "${status}" "Successfully copied directory contents from [${source}] to [${target}]" "Failed to copy directory contents from [${source}] to [${target}]"
+        ;;
+        specific)
+            cp -pf "${source}" "${target}"/ && status="success" || status="fail"
+            logCopyStatus "${status}" "Successfully copied file [${source}] to [${target}]" "Failed to copy file [${source}] to [${target}]"
+        ;;
+        patternFiles)
+            cp -pf "${source}"* "${target}"/ && status="success" || status="fail"
+            logCopyStatus "${status}" "Successfully copied files matching [${source}*] to [${target}]" "Failed to copy files matching [${source}*] to [${target}]"
+        ;;
+        full)
+            cp -prf "${source}"/* "${target}"/ && status="success" || status="fail"
+            logCopyStatus "${status}" "Successfully copied directory contents from [${source}] to [${target}]" "Failed to copy directory contents from [${source}] to [${target}]"
+        ;;
+    esac
+}
+# Check contents exist in source before copying
+copyOnContentExist () {
+    local source="$1"
+    local target="$2"
+    local mode="$3"
+
+    if [[ "$(checkContentExists "${source}")" == "true" ]]; then
+        copyCmd "${source}" "${target}" "${mode}"
+    else
+        logger "No contents to copy from [${source}]"
+    fi
+}
+
+# move source to destination
+moveCmd () {
+    local source="$1"
+    local target="$2"
+    local status=
+    
+    mv -f "${source}" "${target}" && status="success" || status="fail"
+    [[ "${status}" == "success" ]] && logger "Successfully moved directory [${source}] to [${target}]"
+    [[ "${status}" == "fail" ]] && warn "Failed to move directory [${source}] to [${target}]"
+}
+
+# symlink target to source
+symlinkCmd () {
+    local source="$1"
+    local target="$2"
+    local symlinkSubDir="$3"
+    local check=false
+    
+    if [[ "${symlinkSubDir}" == "subDir" ]]; then
+        ln -sf "${source}"/* "${target}" && check=true || check=false
+    else
+        ln -sf "${source}" "${target}"   && check=true || check=false
+    fi
+    
+    [[ "${check}" == "true"  ]] && logger "Successfully symlinked directory [${target}] to old [${source}]"
+    [[ "${check}" == "false" ]] && warn "Symlink operation failed"
+}
+# Check contents exist in source before symlinking
+symlinkOnExist () {
+    local source="$1"
+    local target="$2"
+    local symlinkSubDir="$3"
+
+    if [[ "$(checkContentExists "${source}")" == "true" ]]; then
+        if [[ "${symlinkSubDir}" == "subDir" ]]; then
+            symlinkCmd "${source}" "${target}" "subDir"
+        else
+            symlinkCmd "${source}" "${target}"
+        fi
+    else
+        logger "No contents to symlink from [${source}]"
+    fi
+}
+
+prependDir () {
+    local absolutePath="$1"
+    local fullPath="$2"
+    local sourcePath=
+
+    if [[ "${absolutePath}" = \/* ]]; then
+        sourcePath="${absolutePath}"
+    else
+        sourcePath="${fullPath}"
+    fi
+    echo "${sourcePath}"
+}
+
+getFirstEntry (){
+    local entry="$1"
+
+    [[ -z "${entry}" ]] && return
+    echo "${entry}" | awk -F"=" '{print $1}'
+}
+
+getSecondEntry () {
+    local entry="$1"
+
+    [[ -z "${entry}" ]] && return
+    echo "${entry}" | awk -F"=" '{print $2}'
+}
+# To get absolutePath
+pathResolver () {
+    local directoryPath="$1"
+    local dataDir=
+
+    if [[ "${INSTALLER}" == "${COMPOSE_TYPE}" ||  "${INSTALLER}" == "${HELM_TYPE}" ]]; then
+        retrieveYamlValue "migration.oldDataDir" "oldDataDir" "Warning"
+        dataDir="${YAML_VALUE}"
+        cd "${dataDir}"
+    else
+        cd "${OLD_DATA_DIR}"
+    fi
+    absoluteDir="`cd "${directoryPath}";pwd`"
+    echo "${absoluteDir}"
+}
+
+checkPathResolver () {
+    local value="$1"
+
+    if [[ "${value}" == \/* ]]; then
+        value="${value}"
+    else
+        value="$(pathResolver "${value}")"
+    fi
+    echo "${value}"
+}
+
+propertyMigrate () {
+    local entry="$1"
+    local filePath="$2"
+    local fileName="$3"
+    local check=false
+
+    local yamlPath="$(getFirstEntry "${entry}")"
+    local property="$(getSecondEntry "${entry}")"
+    if [[ -z "${property}" ]]; then
+        warn "Property is empty in map [${entry}] in the file [${MIGRATION_SYSTEM_YAML_INFO}]"
+        return
+    fi
+    if [[ -z "${yamlPath}" ]]; then
+        warn "yamlPath is empty for [${property}] in [${MIGRATION_SYSTEM_YAML_INFO}]"
+        return
+    fi
+    local keyValues=$(cat "${NEW_DATA_DIR}/${filePath}/${fileName}" | grep "^[^#]" | grep "[*=*]")
+    for i in ${keyValues}; do
+        key=$(echo "${i}" | awk -F"=" '{print $1}')
+        value=$(echo "${i}" | cut -f 2- -d '=')
+        [ -z "${key}" ] && continue
+        [ -z "${value}" ] && continue
+        if [[ "${key}" == "${property}" ]]; then
+            if [[ "${PRODUCT}" == "artifactory" ]]; then
+                value="$(migrateResolveDerbyPath "${key}" "${value}")"
+                value="$(migrateResolveHaDirPath "${key}" "${value}")"
+                if [[ "${INSTALLER}" != "${DOCKER_TYPE}" ]]; then 
+                    value="$(updatePostgresUrlString_Hook "${yamlPath}" "${value}")"
+                fi
+            fi
+            if [[ "${key}" == "context.url" ]]; then
+                local ip=$(echo "${value}" | awk -F/ '{print $3}' | sed 's/:.*//')
+                setSystemValue "shared.node.ip" "${ip}" "${SYSTEM_YAML_PATH}"
+                logger "Setting [shared.node.ip] with [${ip}] in system.yaml"
+            fi
+            setSystemValue "${yamlPath}" "${value}" "${SYSTEM_YAML_PATH}" && logger "Setting [${yamlPath}] with value of the property [${property}] in system.yaml" && check=true && break || check=false
+        fi
+    done
+    [[ "${check}" == "false" ]] && logger "Property [${property}] not found in file [${fileName}]"
+}
+
+setHaEnabled_hook () {
+    echo ""
+}
+
+migratePropertiesFiles () {
+    local fileList=
+    local filePath=
+    local fileName=
+    local map=
+    
+    retrieveYamlValue "migration.propertyFiles.files" "fileList" "Skip"
+    fileList="${YAML_VALUE}"
+    if [[ -z "${fileList}" ]]; then
+        return
+    fi
+    bannerSection "PROCESSING MIGRATION OF PROPERTY FILES"
+    for file in ${fileList};
+    do
+        bannerSubSection "Processing Migration of $file"
+        retrieveYamlValue "migration.propertyFiles.$file.filePath" "filePath" "Warning"
+        filePath="${YAML_VALUE}"
+        retrieveYamlValue "migration.propertyFiles.$file.fileName" "fileName" "Warning"
+        fileName="${YAML_VALUE}"
+        [[ -z "${filePath}" && -z "${fileName}" ]] && continue
+        if [[ "$(checkFileExists "${NEW_DATA_DIR}/${filePath}/${fileName}")" == "true" ]]; then
+            logger "File [${fileName}] found in path [${NEW_DATA_DIR}/${filePath}]"
+            # setting haEnabled with true only if ha-node.properties is present
+            setHaEnabled_hook "${filePath}"
+            retrieveYamlValue "migration.propertyFiles.$file.map" "map" "Warning"
+            map="${YAML_VALUE}"
+            [[ -z "${map}" ]] && continue
+            for entry in $map;
+            do
+                if [[ "$(checkMapEntry "${entry}")" == "true" ]]; then
+                    propertyMigrate "${entry}" "${filePath}" "${fileName}"
+                else
+                    warn "map entry [${entry}] in [${MIGRATION_SYSTEM_YAML_INFO}] is not in correct format, correct format i.e yamlPath=property"
+                fi
+            done
+        else
+            logger "File [${fileName}] was not found in path [${NEW_DATA_DIR}/${filePath}] to migrate"
+        fi
+    done
+}
+
+createTargetDir () {
+    local mountDir="$1"
+    local target="$2"
+
+    logger "Target directory not found [${mountDir}/${target}], creating it"
+    createDirectoryRecursive "${mountDir}" "${target}" "Warning"
+}
+
+createDirectoryRecursive () {
+    local mountDir="$1"
+    local target="$2"
+    local output="$3"
+    local check=false
+    local message="Could not create directory ${directory}, please check if the user ${USER} has permissions to perform this action"
+    removeSoftLink "${mountDir}/${target}"
+    local directory=$(echo "${target}" | tr '/' ' ' )
+    local targetDir="${mountDir}"
+    for dir in ${directory}; 
+    do
+        targetDir="${targetDir}/${dir}"
+        mkdir -p "${targetDir}" && check=true || check=false
+        setOwnershipBasedOnInstaller "${targetDir}"
+    done
+    if [[ "${check}" == "false" ]]; then
+        if [[ "${output}" == "Warning" ]]; then
+            warn "${message}"
+        else
+            errorExit "${message}"
+        fi
+    fi
+}
+
+copyOperation () {
+    local source="$1"
+    local target="$2"
+    local mode="$3"
+    local check=false
+    local targetDataDir=
+    local targetLink=
+    local date=
+
+    # prepend OLD_DATA_DIR only if source is relative path
+    source="$(prependDir "${source}" "${OLD_DATA_DIR}/${source}")"
+    if [[ "${INSTALLER}" == "${HELM_TYPE}" ]]; then
+        targetDataDir="${NEW_DATA_DIR}"
+    else
+        targetDataDir="`cd "${NEW_DATA_DIR}"/../;pwd`"
+    fi
+    copyLogMessage "${mode}"
+    #remove source if it is a symlink
+    if [[ -L "${source}" ]]; then
+        targetLink=$(readlink -f "${source}")
+        logger "Removing the symlink [${source}] pointing to [${targetLink}]"
+        rm -f "${source}"
+        source=${targetLink}
+    fi
+    if [[ "$(checkDirExists "${source}")" != "true" ]]; then
+        logger "Source [${source}] directory not found in path"
+        return
+    fi
+    if [[ "$(checkDirContents "${source}")" != "true" ]]; then
+        logger "No contents to copy from [${source}]"
+        return
+    fi
+    if [[ "$(checkDirExists "${targetDataDir}/${target}")" != "true" ]]; then
+        createTargetDir "${targetDataDir}" "${target}"
+    fi
+    copyOnContentExist "${source}" "${targetDataDir}/${target}" "${mode}"
+}
+
+copySpecificFiles () {
+    local source="$1"
+    local target="$2"
+    local mode="$3"
+    
+    # prepend OLD_DATA_DIR only if source is relative path
+    source="$(prependDir "${source}" "${OLD_DATA_DIR}/${source}")"
+    if [[ "${INSTALLER}" == "${HELM_TYPE}" ]]; then
+        targetDataDir="${NEW_DATA_DIR}"
+    else
+        targetDataDir="`cd "${NEW_DATA_DIR}"/../;pwd`"
+    fi
+    copyLogMessage "${mode}"
+    if [[ "$(checkFileExists "${source}")" != "true" ]]; then
+        logger "Source file [${source}] does not exist in path"
+        return
+    fi
+    if [[ "$(checkDirExists "${targetDataDir}/${target}")" != "true" ]]; then
+        createTargetDir "${targetDataDir}" "${target}"
+    fi
+    copyCmd "${source}" "${targetDataDir}/${target}" "${mode}"
+}
+
+copyPatternMatchingFiles () {
+    local source="$1"
+    local target="$2"
+    local mode="$3"
+    local sourcePath="${4}"
+
+    # prepend OLD_DATA_DIR only if source is relative path
+    sourcePath="$(prependDir "${sourcePath}" "${OLD_DATA_DIR}/${sourcePath}")"
+    if [[ "${INSTALLER}" == "${HELM_TYPE}" ]]; then
+        targetDataDir="${NEW_DATA_DIR}"
+    else
+        targetDataDir="`cd "${NEW_DATA_DIR}"/../;pwd`"
+    fi
+    copyLogMessage "${mode}"
+    if [[ "$(checkDirExists "${sourcePath}")" != "true" ]]; then
+        logger "Source [${sourcePath}] directory not found in path"
+        return
+    fi
+    if ls "${sourcePath}/${source}"* 1> /dev/null 2>&1; then
+        if [[ "$(checkDirExists "${targetDataDir}/${target}")" != "true" ]]; then
+            createTargetDir "${targetDataDir}" "${target}"
+        fi
+        copyCmd "${sourcePath}/${source}" "${targetDataDir}/${target}" "${mode}"
+    else
+        logger "Source file [${sourcePath}/${source}*] does not exist in path"
+    fi
+}
+
+copyLogMessage () {
+    local mode="$1"
+    case $mode in
+        specific)
+            logger "Copy file [${source}] to target [${targetDataDir}/${target}]"
+        ;;
+        patternFiles)
+            logger "Copy files matching [${sourcePath}/${source}*] to target [${targetDataDir}/${target}]"
+        ;;
+        full)
+            logger "Copy directory contents from source [${source}] to target [${targetDataDir}/${target}]"
+        ;;
+        unique)
+            logger "Copy directory contents from source [${source}] to target [${targetDataDir}/${target}]"
+        ;;
+    esac
+}
+
+copyBannerMessages () {
+    local mode="$1"
+    local textMode="$2"
+    case $mode in
+        specific)
+            bannerSection "COPY ${textMode} FILES"
+        ;;
+        patternFiles)
+            bannerSection "COPY MATCHING ${textMode}"
+        ;;
+        full)
+            bannerSection "COPY ${textMode} DIRECTORIES CONTENTS"
+        ;;
+        unique)
+            bannerSection "COPY ${textMode} DIRECTORIES CONTENTS"
+        ;;
+    esac
+}
+
+invokeCopyFunctions () {
+    local mode="$1"
+    local source="$2"
+    local target="$3"
+
+    case $mode in
+        specific)
+            copySpecificFiles "${source}" "${target}" "${mode}"
+        ;;
+        patternFiles)
+            retrieveYamlValue "migration.${copyFormat}.sourcePath" "map" "Warning"
+            local sourcePath="${YAML_VALUE}"
+            copyPatternMatchingFiles "${source}" "${target}" "${mode}" "${sourcePath}"
+        ;;
+        full)
+            copyOperation "${source}" "${target}" "${mode}"
+        ;;
+        unique)
+            copyOperation "${source}" "${target}" "${mode}"
+        ;;
+    esac
+}
+# Copies contents from source directory and target directory
+copyDataDirectories () {
+    local copyFormat="$1"
+    local mode="$2"
+    local map=
+    local source=
+    local target=
+    local textMode=
+    local targetDataDir=
+    local copyFormatValue=
+
+    retrieveYamlValue "migration.${copyFormat}" "${copyFormat}" "Skip"
+    copyFormatValue="${YAML_VALUE}"
+    if [[ -z "${copyFormatValue}" ]]; then
+        return
+    fi
+    textMode=$(echo "${mode}" | tr '[:lower:]' '[:upper:]' 2>/dev/null)
+    copyBannerMessages "${mode}" "${textMode}"
+    retrieveYamlValue "migration.${copyFormat}.map" "map" "Warning"
+    map="${YAML_VALUE}"
+    if [[ "${INSTALLER}" == "${HELM_TYPE}" ]]; then
+        targetDataDir="${NEW_DATA_DIR}"
+    else
+        targetDataDir="`cd "${NEW_DATA_DIR}"/../;pwd`"
+    fi
+    for entry in $map;
+    do
+        if [[ "$(checkMapEntry "${entry}")" == "true" ]]; then
+            source="$(getSecondEntry "${entry}")"
+            target="$(getFirstEntry "${entry}")"
+            [[ -z "${source}" ]] && warn "source value is empty for [${entry}] in [${MIGRATION_SYSTEM_YAML_INFO}]" && continue
+            [[ -z "${target}" ]] && warn "target value is empty for [${entry}] in [${MIGRATION_SYSTEM_YAML_INFO}]" && continue
+            invokeCopyFunctions "${mode}" "${source}" "${target}"
+        else
+            warn "map entry [${entry}] in [${MIGRATION_SYSTEM_YAML_INFO}] is not in correct format, correct format i.e target=source"
+        fi
+        echo "";
+    done
+}
+
+invokeMoveFunctions () {
+    local source="$1"
+    local target="$2"
+    local sourceDataDir=
+    local targetBasename=
+    # prepend OLD_DATA_DIR only if source is relative path
+    sourceDataDir=$(prependDir "${source}" "${OLD_DATA_DIR}/${source}")
+    targetBasename=$(dirname "${target}")
+    logger "Moving directory source [${sourceDataDir}] to target [${NEW_DATA_DIR}/${target}]"
+    if [[ "$(checkDirExists "${sourceDataDir}")" != "true" ]]; then
+        logger "Directory [${sourceDataDir}] not found in path to move"
+        return
+    fi
+    if [[ "$(checkDirExists "${NEW_DATA_DIR}/${targetBasename}")" != "true" ]]; then
+        createTargetDir "${NEW_DATA_DIR}" "${targetBasename}"
+        moveCmd "${sourceDataDir}" "${NEW_DATA_DIR}/${target}"
+    else
+        moveCmd "${sourceDataDir}" "${NEW_DATA_DIR}/tempDir"
+        moveCmd "${NEW_DATA_DIR}/tempDir" "${NEW_DATA_DIR}/${target}"
+    fi
+}
+
+# Move source directory and target directory
+moveDirectories () {
+    local moveDataDirectories=
+    local map=
+    local source=
+    local target=
+
+    retrieveYamlValue "migration.moveDirectories" "moveDirectories" "Skip"
+    moveDirectories="${YAML_VALUE}"
+    if [[ -z "${moveDirectories}" ]]; then
+        return
+    fi
+    bannerSection "MOVE DIRECTORIES"
+    retrieveYamlValue "migration.moveDirectories.map" "map" "Warning"
+    map="${YAML_VALUE}"
+    for entry in $map;
+    do
+        if [[ "$(checkMapEntry "${entry}")" == "true" ]]; then
+            source="$(getSecondEntry "${entry}")"
+            target="$(getFirstEntry "${entry}")"
+            [[ -z "${source}" ]] && warn "source value is empty for [${entry}] in [${MIGRATION_SYSTEM_YAML_INFO}]" && continue
+            [[ -z "${target}" ]] && warn "target value is empty for [${entry}] in [${MIGRATION_SYSTEM_YAML_INFO}]" && continue
+            invokeMoveFunctions "${source}" "${target}"
+        else
+            warn "map entry [${entry}] in [${MIGRATION_SYSTEM_YAML_INFO}] is not in correct format, correct format i.e target=source"
+        fi
+    echo "";
+    done
+}
+
+# Trim masterKey if its generated using hex 32 
+trimMasterKey () {
+    local masterKeyDir=/opt/jfrog/artifactory/var/etc/security
+    local oldMasterKey=$(<${masterKeyDir}/master.key)
+    local oldMasterKey_Length=$(echo ${#oldMasterKey})
+    local newMasterKey=
+    if [[ ${oldMasterKey_Length} -gt 32 ]]; then
+        bannerSection "TRIM MASTERKEY"
+        newMasterKey=$(echo ${oldMasterKey:0:32})
+        cp ${masterKeyDir}/master.key ${masterKeyDir}/backup_master.key
+        logger "Original masterKey is backed up : ${masterKeyDir}/backup_master.key"
+        rm -rf ${masterKeyDir}/master.key
+        echo ${newMasterKey} > ${masterKeyDir}/master.key
+        logger "masterKey is trimmed : ${masterKeyDir}/master.key"
+    fi
+}
+
+copyDirectories () {
+
+    copyDataDirectories "copyFiles" "full"
+    copyDataDirectories "copyUniqueFiles" "unique"
+    copyDataDirectories "copySpecificFiles" "specific"
+    copyDataDirectories "copyPatternMatchingFiles" "patternFiles"
+}
+
+symlinkDir () {
+    local source="$1"
+    local target="$2"
+    local targetDir=
+    local basename=
+    local targetParentDir=
+    
+    targetDir="$(dirname "${target}")"
+    if [[ "${targetDir}" == "${source}" ]]; then
+        # symlink the sub directories
+        createDirectory "${NEW_DATA_DIR}/${target}" "Warning"
+        if [[ "$(checkDirExists "${NEW_DATA_DIR}/${target}")" == "true" ]]; then
+            symlinkOnExist "${OLD_DATA_DIR}/${source}" "${NEW_DATA_DIR}/${target}" "subDir"
+            basename="$(basename "${target}")"
+            cd "${NEW_DATA_DIR}/${target}" && rm -f "${basename}"
+        fi
+    else
+        targetParentDir="$(dirname "${NEW_DATA_DIR}/${target}")"
+        createDirectory "${targetParentDir}" "Warning"
+        if [[ "$(checkDirExists "${targetParentDir}")" == "true" ]]; then
+            symlinkOnExist "${OLD_DATA_DIR}/${source}" "${NEW_DATA_DIR}/${target}"
+        fi
+    fi
+}
+
+symlinkOperation () {
+    local source="$1"
+    local target="$2"
+    local check=false
+    local targetLink=
+    local date=
+    
+    #   Check if source is a link and do symlink
+    if [[ -L "${OLD_DATA_DIR}/${source}" ]]; then
+        targetLink=$(readlink -f "${OLD_DATA_DIR}/${source}")
+        symlinkOnExist "${targetLink}" "${NEW_DATA_DIR}/${target}"
+    else
+        #  check if source is directory and do symlink
+        if [[ "$(checkDirExists "${OLD_DATA_DIR}/${source}")" != "true" ]]; then
+            logger "Source [${source}] directory not found in path to symlink"
+            return
+        fi
+        if [[ "$(checkDirContents "${OLD_DATA_DIR}/${source}")" != "true" ]]; then
+            logger "No contents found in [${OLD_DATA_DIR}/${source}] to symlink"
+            return
+        fi
+        if [[ "$(checkDirExists "${NEW_DATA_DIR}/${target}")" != "true" ]]; then
+            logger "Target directory [${NEW_DATA_DIR}/${target}] does not exist to create symlink, creating it"
+            symlinkDir "${source}" "${target}"
+        else
+            rm -rf "${NEW_DATA_DIR}/${target}" && check=true || check=false
+            [[ "${check}" == "false" ]] && warn "Failed to remove contents in [${NEW_DATA_DIR}/${target}/]"
+            symlinkDir "${source}" "${target}"
+        fi
+    fi
+}
+# Creates a symlink path - Source directory to which the symbolic link should point.
+symlinkDirectories () {
+    local linkFiles=
+    local map=
+    local source=
+    local target=
+
+    retrieveYamlValue "migration.linkFiles" "linkFiles" "Skip"
+    linkFiles="${YAML_VALUE}"
+    if [[ -z "${linkFiles}" ]]; then
+        return
+    fi
+    bannerSection "SYMLINK DIRECTORIES"
+    retrieveYamlValue "migration.linkFiles.map" "map" "Warning"
+    map="${YAML_VALUE}"
+    for entry in $map;
+    do
+        if [[ "$(checkMapEntry "${entry}")" == "true" ]]; then
+            source="$(getSecondEntry "${entry}")"
+            target="$(getFirstEntry "${entry}")"
+            logger "Symlink directory [${NEW_DATA_DIR}/${target}] to old [${OLD_DATA_DIR}/${source}]"
+            [[ -z "${source}" ]] && warn "source value is empty for [${entry}] in [${MIGRATION_SYSTEM_YAML_INFO}]" && continue
+            [[ -z "${target}" ]] && warn "target value is empty for [${entry}] in [${MIGRATION_SYSTEM_YAML_INFO}]" && continue
+            symlinkOperation "${source}" "${target}"
+        else
+            warn "map entry [${entry}] in [${MIGRATION_SYSTEM_YAML_INFO}] is not in correct format, correct format i.e target=source"
+        fi
+        echo "";
+    done
+}
+
+updateConnectionString () {
+    local yamlPath="$1"
+    local value="$2"
+    local mongoPath="shared.mongo.url"
+    local rabbitmqPath="shared.rabbitMq.url"
+    local postgresPath="shared.database.url"
+    local redisPath="shared.redis.connectionString"
+    local mongoConnectionString="mongo.connectionString"
+    local sourceKey=
+    local hostIp=$(io_getPublicHostIP)
+    local hostKey=
+    
+    if [[ "${INSTALLER}" == "${COMPOSE_TYPE}" || "${INSTALLER}" == "${HELM_TYPE}" ]]; then 
+    # Replace @postgres:,@mongodb:,@rabbitmq:,@redis: to @{hostIp}: (Compose Installer)
+        hostKey="@${hostIp}:"
+        case $yamlPath in
+            ${postgresPath})
+                sourceKey="@postgres:"
+                value=$(io_replaceString "${value}" "${sourceKey}" "${hostKey}")
+            ;;
+            ${mongoPath})
+                sourceKey="@mongodb:"
+                value=$(io_replaceString "${value}" "${sourceKey}" "${hostKey}")
+            ;;
+            ${rabbitmqPath})
+                sourceKey="@rabbitmq:"
+                value=$(io_replaceString "${value}" "${sourceKey}" "${hostKey}")
+            ;;
+            ${redisPath})
+                sourceKey="@redis:"
+                value=$(io_replaceString "${value}" "${sourceKey}" "${hostKey}")
+            ;;
+            ${mongoConnectionString})
+                sourceKey="@mongodb:"
+                value=$(io_replaceString "${value}" "${sourceKey}" "${hostKey}")
+            ;;
+        esac
+    fi
+    echo -n "${value}"
+}
+
+yamlMigrate () {
+    local entry="$1"
+    local sourceFile="$2"
+    local value=
+    local yamlPath=
+    local key=
+    yamlPath="$(getFirstEntry "${entry}")"
+    key="$(getSecondEntry "${entry}")"
+    if [[ -z "${key}" ]]; then
+        warn "key is empty in map [${entry}] in the file [${MIGRATION_SYSTEM_YAML_INFO}]"
+        return
+    fi
+    if [[ -z "${yamlPath}" ]]; then
+        warn "yamlPath is empty for [${key}] in [${MIGRATION_SYSTEM_YAML_INFO}]"
+        return
+    fi
+    getYamlValue "${key}" "${sourceFile}" "false"
+    value="${YAML_VALUE}"
+    if [[ ! -z "${value}" ]]; then
+        value=$(updateConnectionString "${yamlPath}" "${value}")
+    fi
+    if [[ -z "${value}" ]]; then
+        logger "No value for [${key}] in [${sourceFile}]"
+    else
+        setSystemValue "${yamlPath}" "${value}" "${SYSTEM_YAML_PATH}"
+        logger "Setting [${yamlPath}] with value of the key [${key}] in system.yaml"
+    fi
+}
+
+migrateYamlFile () {
+    local files=
+    local filePath=
+    local fileName=
+    local sourceFile=
+    local map=
+    retrieveYamlValue "migration.yaml.files" "files" "Skip"
+    files="${YAML_VALUE}"
+    if [[ -z "${files}" ]]; then
+        return
+    fi
+    bannerSection "MIGRATION OF YAML FILES"
+    for file in $files;
+    do
+        bannerSubSection "Processing Migration of $file"
+        retrieveYamlValue "migration.yaml.$file.filePath" "filePath" "Warning"
+        filePath="${YAML_VALUE}"
+        retrieveYamlValue "migration.yaml.$file.fileName" "fileName" "Warning"
+        fileName="${YAML_VALUE}"
+        [[ -z "${filePath}" && -z "${fileName}" ]] && continue
+        sourceFile="${NEW_DATA_DIR}/${filePath}/${fileName}"
+        if [[ "$(checkFileExists "${sourceFile}")" == "true" ]]; then
+            logger "File [${fileName}] found in path [${NEW_DATA_DIR}/${filePath}]"
+            retrieveYamlValue "migration.yaml.$file.map" "map" "Warning"
+            map="${YAML_VALUE}"
+            [[ -z "${map}" ]] && continue
+            for entry in $map;
+            do
+                if [[ "$(checkMapEntry "${entry}")" == "true" ]]; then
+                    yamlMigrate "${entry}" "${sourceFile}"
+                else
+                    warn "map entry [${entry}] in [${MIGRATION_SYSTEM_YAML_INFO}] is not in correct format, correct format i.e yamlPath=key"
+                fi
+            done
+        else
+            logger "File [${fileName}] is not found in path [${NEW_DATA_DIR}/${filePath}] to migrate"
+        fi
+    done
+}
+# updates the key and value in system.yaml
+updateYamlKeyValue () {
+    local entry="$1"
+    local value=
+    local yamlPath=
+    local key=
+
+    yamlPath="$(getFirstEntry "${entry}")"
+    value="$(getSecondEntry "${entry}")"
+    if [[ -z "${value}" ]]; then
+        warn "value is empty in map [${entry}] in the file [${MIGRATION_SYSTEM_YAML_INFO}]"
+        return
+    fi
+    if [[ -z "${yamlPath}" ]]; then
+        warn "yamlPath is empty for [${key}] in [${MIGRATION_SYSTEM_YAML_INFO}]"
+        return
+    fi
+    setSystemValue "${yamlPath}" "${value}" "${SYSTEM_YAML_PATH}"
+    logger "Setting [${yamlPath}] with value [${value}] in system.yaml"
+}
+
+updateSystemYamlFile () {
+    local updateYaml=
+    local map=
+
+    retrieveYamlValue "migration.updateSystemYaml" "updateYaml" "Skip"
+    updateSystemYaml="${YAML_VALUE}"
+    if [[ -z "${updateSystemYaml}" ]]; then
+        return
+    fi
+    bannerSection "UPDATE SYSTEM YAML FILE WITH KEY AND VALUES"
+    retrieveYamlValue "migration.updateSystemYaml.map" "map" "Warning"
+    map="${YAML_VALUE}"
+    if [[ -z "${map}" ]]; then
+        return
+    fi
+    for entry in $map;
+    do
+        if [[ "$(checkMapEntry "${entry}")" == "true" ]]; then
+            updateYamlKeyValue "${entry}"
+        else
+            warn "map entry [${entry}] in [${MIGRATION_SYSTEM_YAML_INFO}] is not in correct format, correct format i.e yamlPath=key"
+        fi
+    done
+}
+
+backupFiles_hook () {
+    logSilly "Method ${FUNCNAME[0]}"
+}
+
+backupDirectory () {
+    local backupDir="$1"
+    local dir="$2"
+    local targetDir="$3"
+    local effectiveUser=
+    local effectiveGroup=
+
+    if [[ "${dir}" = \/* ]]; then
+        dir=$(echo "${dir/\//}")
+    fi
+            
+    if [[ "${INSTALLER}" == "${COMPOSE_TYPE}" || "${INSTALLER}" == "${HELM_TYPE}" ]]; then 
+        effectiveUser="${JF_USER}"
+        effectiveGroup="${JF_USER}"
+    elif [[ "${INSTALLER}" == "${DEB_TYPE}" || "${INSTALLER}" == "${RPM_TYPE}" ]]; then
+        effectiveUser="${USER_TO_CHECK}" 
+        effectiveGroup="${GROUP_TO_CHECK}"
+    fi
+    
+    removeSoftLinkAndCreateDir "${backupDir}" "${effectiveUser}" "${effectiveGroup}" "yes"
+    local backupDirectory="${backupDir}/${PRODUCT}"
+    removeSoftLinkAndCreateDir "${backupDirectory}" "${effectiveUser}" "${effectiveGroup}" "yes"
+    removeSoftLinkAndCreateDir "${backupDirectory}/${dir}" "${effectiveUser}" "${effectiveGroup}" "yes"
+    local outputCheckDirExists="$(checkDirExists "${backupDirectory}/${dir}")"
+    if [[ "${outputCheckDirExists}" == "true" ]]; then
+        copyOnContentExist "${targetDir}" "${backupDirectory}/${dir}" "full"
+    fi
+}
+
+removeOldDirectory () {
+    local backupDir="$1"
+    local entry="$2"
+    local check=false
+    
+    # prepend OLD_DATA_DIR only if entry is relative path
+    local targetDir="$(prependDir "${entry}" "${OLD_DATA_DIR}/${entry}")"
+    local outputCheckDirExists="$(checkDirExists "${targetDir}")"
+    if [[ "${outputCheckDirExists}" != "true" ]]; then
+        logger "No [${targetDir}] directory found to delete"
+        echo "";
+        return
+    fi
+    backupDirectory "${backupDir}" "${entry}" "${targetDir}"
+    rm -rf  "${targetDir}" && check=true || check=false
+    [[ "${check}" == "true"  ]] && logger "Successfully removed directory [${targetDir}]"
+    [[ "${check}" == "false" ]] && warn "Failed to remove directory [${targetDir}]"
+    echo "";
+}
+
+cleanUpOldDataDirectories () {
+    local cleanUpOldDataDir=
+    local map=
+    local entry=
+
+    retrieveYamlValue "migration.cleanUpOldDataDir" "cleanUpOldDataDir" "Skip"
+    cleanUpOldDataDir="${YAML_VALUE}"
+    if [[ -z "${cleanUpOldDataDir}" ]]; then
+        return
+    fi
+    bannerSection "CLEAN UP OLD DATA DIRECTORIES"
+    retrieveYamlValue "migration.cleanUpOldDataDir.map" "map" "Warning"
+    map="${YAML_VALUE}"
+    [[ -z "${map}" ]] && continue
+    date="$(date +%Y%m%d%H%M)"
+    backupDir="${NEW_DATA_DIR}/backup/backup-${date}"
+    bannerImportant "****** Old data configurations are backedup in [${backupDir}] directory ******"
+    backupFiles_hook "${backupDir}/${PRODUCT}"
+    for entry in $map;
+    do
+        removeOldDirectory "${backupDir}" "${entry}"
+    done
+}
+
+backupFiles () {
+    local backupDir="$1"
+    local dir="$2"
+    local targetDir="$3"
+    local fileName="$4"
+    local effectiveUser=
+    local effectiveGroup=
+
+    if [[ "${dir}" = \/* ]]; then
+        dir=$(echo "${dir/\//}")
+    fi
+            
+    if [[ "${INSTALLER}" == "${COMPOSE_TYPE}" || "${INSTALLER}" == "${HELM_TYPE}" ]]; then 
+        effectiveUser="${JF_USER}"
+        effectiveGroup="${JF_USER}"
+    elif [[ "${INSTALLER}" == "${DEB_TYPE}" || "${INSTALLER}" == "${RPM_TYPE}" ]]; then
+        effectiveUser="${USER_TO_CHECK}" 
+        effectiveGroup="${GROUP_TO_CHECK}"
+    fi
+
+    removeSoftLinkAndCreateDir "${backupDir}" "${effectiveUser}" "${effectiveGroup}" "yes"
+    local backupDirectory="${backupDir}/${PRODUCT}"
+    removeSoftLinkAndCreateDir "${backupDirectory}" "${effectiveUser}" "${effectiveGroup}" "yes"
+    removeSoftLinkAndCreateDir "${backupDirectory}/${dir}" "${effectiveUser}" "${effectiveGroup}" "yes"
+    local outputCheckDirExists="$(checkDirExists "${backupDirectory}/${dir}")"
+    if [[ "${outputCheckDirExists}" == "true" ]]; then
+        copyCmd "${targetDir}/${fileName}" "${backupDirectory}/${dir}" "specific"
+    fi
+}
+
+removeOldFiles () {
+    local backupDir="$1"
+    local directoryName="$2"
+    local fileName="$3"
+    local check=false
+    
+    # prepend OLD_DATA_DIR only if entry is relative path
+    local targetDir="$(prependDir "${directoryName}" "${OLD_DATA_DIR}/${directoryName}")"
+    local outputCheckFileExists="$(checkFileExists "${targetDir}/${fileName}")"
+    if [[ "${outputCheckFileExists}" != "true" ]]; then
+        logger "No [${targetDir}/${fileName}] file found to delete"
+        return
+    fi
+    backupFiles "${backupDir}" "${directoryName}" "${targetDir}" "${fileName}"
+    rm -f  "${targetDir}/${fileName}" && check=true || check=false
+    [[ "${check}" == "true"  ]] && logger "Successfully removed file [${targetDir}/${fileName}]"
+    [[ "${check}" == "false" ]] && warn "Failed to remove file [${targetDir}/${fileName}]"
+    echo "";
+}
+
+cleanUpOldFiles () {
+    local cleanUpFiles=
+    local map=
+    local entry=
+
+    retrieveYamlValue "migration.cleanUpOldFiles" "cleanUpOldFiles" "Skip"
+    cleanUpOldFiles="${YAML_VALUE}"
+    if [[ -z "${cleanUpOldFiles}" ]]; then
+        return
+    fi
+    bannerSection "CLEAN UP OLD FILES"
+    retrieveYamlValue "migration.cleanUpOldFiles.map" "map" "Warning"
+    map="${YAML_VALUE}"
+    [[ -z "${map}" ]] && continue
+    date="$(date +%Y%m%d%H%M)"
+    backupDir="${NEW_DATA_DIR}/backup/backup-${date}"
+    bannerImportant "****** Old files are backedup in [${backupDir}] directory ******"
+    for entry in $map;
+    do  
+        local outputCheckMapEntry="$(checkMapEntry "${entry}")"
+        if [[ "${outputCheckMapEntry}" != "true" ]]; then
+            warn "map entry [${entry}] in [${MIGRATION_SYSTEM_YAML_INFO}] is not in correct format, correct format i.e directoryName=fileName"
+        fi
+        local fileName="$(getSecondEntry "${entry}")"
+        local directoryName="$(getFirstEntry "${entry}")"
+        [[ -z "${fileName}" ]] && warn "File name value is empty for [${entry}] in [${MIGRATION_SYSTEM_YAML_INFO}]" && continue
+        [[ -z "${directoryName}" ]] && warn "Directory name value is empty for [${entry}] in [${MIGRATION_SYSTEM_YAML_INFO}]" && continue
+        removeOldFiles "${backupDir}" "${directoryName}" "${fileName}"
+        echo "";
+    done 
+}
+
+startMigration () {
+    bannerSection "STARTING MIGRATION"
+}
+
+endMigration () {
+    bannerSection "MIGRATION COMPLETED SUCCESSFULLY"
+}
+
+initialize () {
+    setAppDir
+    _pauseExecution "setAppDir"
+    initHelpers
+    _pauseExecution "initHelpers"
+    checkMigrationInfoYaml
+    _pauseExecution "checkMigrationInfoYaml"
+    getProduct
+    _pauseExecution "getProduct"
+    getDataDir
+    _pauseExecution "getDataDir"
+}
+
+main () {
+    case $PRODUCT in
+        artifactory)
+            migrateArtifactory
+        ;;
+        distribution)
+            migrateDistribution
+        ;;
+        xray)
+            migrationXray
+        ;;
+    esac
+    exit 0
+}
+
+# Ensures meta data is logged
+LOG_BEHAVIOR_ADD_META="$FLAG_Y"
+
+
+migrateResolveDerbyPath () {
+    local key="$1"
+    local value="$2"
+
+    if [[ "${key}" == "url" && "${value}" == *"db.home"* ]]; then
+        if [[ "${INSTALLER}" == "${COMPOSE_TYPE}" ]]; then
+            derbyPath="/opt/jfrog/artifactory/var/data/artifactory/derby"
+            value=$(echo "${value}" | sed "s|{db.home}|$derbyPath|")
+        else
+            derbyPath="${NEW_DATA_DIR}/data/artifactory/derby"
+            value=$(echo "${value}" | sed "s|{db.home}|$derbyPath|")
+        fi
+    fi
+    echo "${value}"
+}
+
+migrateResolveHaDirPath () {
+    local key="$1"
+    local value="$2"
+
+    if [[ "${INSTALLER}" == "${RPM_TYPE}" || "${INSTALLER}" == "${COMPOSE_TYPE}" || "${INSTALLER}" == "${HELM_TYPE}" || "${INSTALLER}" == "${DEB_TYPE}" ]]; then
+        if [[ "${key}" == "artifactory.ha.data.dir" || "${key}" == "artifactory.ha.backup.dir" ]]; then
+            value=$(checkPathResolver "${value}")
+        fi
+    fi
+    echo "${value}"
+}
+updatePostgresUrlString_Hook () {
+    local yamlPath="$1"
+    local value="$2"
+    local hostIp=$(io_getPublicHostIP)
+    local sourceKey="//postgresql:"
+    if [[ "${yamlPath}" == "shared.database.url" ]]; then
+        value=$(io_replaceString "${value}" "${sourceKey}" "//${hostIp}:" "#")
+    fi
+    echo "${value}"
+}
+# Check Artifactory product version
+checkArtifactoryVersion () {
+    local minProductVersion="6.0.0"
+    local maxProductVersion="7.0.0"
+    local propertyInDocker="ARTIFACTORY_VERSION"
+    local property="artifactory.version"
+    
+    if [[ "${INSTALLER}" ==  "${COMPOSE_TYPE}" ]]; then
+        local newfilePath="${APP_DIR}/../.env"
+        local oldfilePath="${OLD_DATA_DIR}/etc/artifactory.properties"
+    elif [[ "${INSTALLER}" ==  "${HELM_TYPE}" ]]; then
+        local oldfilePath="${OLD_DATA_DIR}/etc/artifactory.properties"
+    elif [[ "${INSTALLER}" ==  "${ZIP_TYPE}" ]]; then
+        local newfilePath="${NEW_DATA_DIR}/etc/artifactory/artifactory.properties"
+        local oldfilePath="${OLD_DATA_DIR}/etc/artifactory.properties"
+    else
+        local newfilePath="${NEW_DATA_DIR}/etc/artifactory/artifactory.properties"
+        local oldfilePath="/etc/opt/jfrog/artifactory/artifactory.properties"
+    fi
+
+    getProductVersion "${minProductVersion}" "${maxProductVersion}" "${newfilePath}" "${oldfilePath}" "${propertyInDocker}" "${property}"
+}
+
+getCustomDataDir_hook () {
+    retrieveYamlValue "migration.oldDataDir" "oldDataDir" "Fail"
+    OLD_DATA_DIR="${YAML_VALUE}"
+}
+
+# Get protocol value of connector
+getXmlConnectorProtocol () {
+    local i="$1"
+    local filePath="$2"
+    local fileName="$3"
+    local protocolValue=$($LIBXML2_PATH --xpath '//Server/Service/Connector['$i']/@protocol' ${filePath}/${fileName} 2>/dev/null |awk -F"=" '{print $2}' | tr -d '"')
+    echo -e "${protocolValue}"
+}
+
+# Get all attributes of connector
+getXmlConnectorAttributes () {
+    local i="$1"
+    local filePath="$2"
+    local fileName="$3"
+    local connectorAttributes=$($LIBXML2_PATH --xpath '//Server/Service/Connector['$i']/@*' ${filePath}/${fileName} 2>/dev/null)
+    # strip leading and trailing spaces
+    connectorAttributes=$(io_trim "${connectorAttributes}")
+    echo "${connectorAttributes}"
+}
+
+# Get port value of connector
+getXmlConnectorPort () {
+    local i="$1"
+    local filePath="$2"
+    local fileName="$3"
+    local portValue=$($LIBXML2_PATH --xpath '//Server/Service/Connector['$i']/@port' ${filePath}/${fileName} 2>/dev/null | awk -F"=" '{print $2}' | tr -d '"')
+    echo -e "${portValue}"
+}
+
+# Get maxThreads value of connector
+getXmlConnectorMaxThreads () {
+    local i="$1"
+    local filePath="$2"
+    local fileName="$3"
+    local maxThreadValue=$($LIBXML2_PATH --xpath '//Server/Service/Connector['$i']/@maxThreads' ${filePath}/${fileName} 2>/dev/null | awk -F"=" '{print $2}' | tr -d '"')
+    echo -e "${maxThreadValue}"
+}
+# Get sendReasonPhrase value of connector
+getXmlConnectorSendReasonPhrase () {
+    local i="$1"
+    local filePath="$2"
+    local fileName="$3"
+    local sendReasonPhraseValue=$($LIBXML2_PATH --xpath '//Server/Service/Connector['$i']/@sendReasonPhrase' ${filePath}/${fileName} 2>/dev/null | awk -F"=" '{print $2}' | tr -d '"')
+    echo -e "${sendReasonPhraseValue}"
+}
+# Get relaxedPathChars value of connector
+getXmlConnectorRelaxedPathChars () {
+    local i="$1"
+    local filePath="$2"
+    local fileName="$3"
+    local relaxedPathCharsValue=$($LIBXML2_PATH --xpath '//Server/Service/Connector['$i']/@relaxedPathChars' ${filePath}/${fileName} 2>/dev/null | awk -F"=" '{print $2}' | tr -d '"')
+    # strip leading and trailing spaces
+    relaxedPathCharsValue=$(io_trim "${relaxedPathCharsValue}")
+    echo -e "${relaxedPathCharsValue}"
+}
+# Get relaxedQueryChars value of connector
+getXmlConnectorRelaxedQueryChars () {
+    local i="$1"
+    local filePath="$2"
+    local fileName="$3"
+    local relaxedQueryCharsValue=$($LIBXML2_PATH --xpath '//Server/Service/Connector['$i']/@relaxedQueryChars' ${filePath}/${fileName} 2>/dev/null | awk -F"=" '{print $2}' | tr -d '"')
+    # strip leading and trailing spaces
+    relaxedQueryCharsValue=$(io_trim "${relaxedQueryCharsValue}")
+    echo -e "${relaxedQueryCharsValue}"
+}
+
+# Updating system.yaml with Connector port 
+setConnectorPort () {
+    local yamlPath="$1"
+    local valuePort="$2"
+    local portYamlPath=
+    if [[ -z "${yamlPath}" ]]; then
+        return
+    fi
+    if [[ -z "${valuePort}" ]]; then
+        warn "port value is empty, could not migrate to system.yaml"
+        return
+    fi
+    ## Getting port yaml path from migration info yaml
+    retrieveYamlValue "${yamlPath}" portYamlPath "Warning"
+    portYamlPath="${YAML_VALUE}"
+    if [[ -z "${portYamlPath}" ]]; then
+        return
+    fi
+    setSystemValue "${portYamlPath}" "${valuePort}" "${SYSTEM_YAML_PATH}"
+    logger "Setting [${portYamlPath}] with value [${valuePort}] in system.yaml"
+}
+
+# Updating system.yaml with Connector maxThreads
+setConnectorMaxThread () {
+    local yamlPath="$1"
+    local threadValue="$2"
+    local maxThreadYamlPath=
+    if [[ -z "${yamlPath}" ]]; then
+        return
+    fi
+    if [[ -z  "${threadValue}" ]]; then
+        return
+    fi
+    ## Getting max Threads yaml path from migration info yaml
+    retrieveYamlValue "${yamlPath}" maxThreadYamlPath "Warning"
+    maxThreadYamlPath="${YAML_VALUE}"
+    if [[ -z "${maxThreadYamlPath}" ]]; then
+        return
+    fi
+    setSystemValue "${maxThreadYamlPath}" "${threadValue}" "${SYSTEM_YAML_PATH}"
+    logger "Setting [${maxThreadYamlPath}] with value [${threadValue}] in system.yaml"
+}
+
+# Updating system.yaml with Connector sendReasonPhrase
+setConnectorSendReasonPhrase () {
+    local yamlPath="$1"
+    local sendReasonPhraseValue="$2"
+    local sendReasonPhraseYamlPath=
+    if [[ -z "${yamlPath}" ]]; then
+        return
+    fi
+    if [[ -z  "${sendReasonPhraseValue}" ]]; then
+        return
+    fi
+    ## Getting sendReasonPhrase yaml path from migration info yaml
+    retrieveYamlValue "${yamlPath}" sendReasonPhraseYamlPath "Warning"
+    sendReasonPhraseYamlPath="${YAML_VALUE}"
+    if [[ -z "${sendReasonPhraseYamlPath}" ]]; then
+        return
+    fi
+    setSystemValue "${sendReasonPhraseYamlPath}" "${sendReasonPhraseValue}" "${SYSTEM_YAML_PATH}"
+    logger "Setting [${sendReasonPhraseYamlPath}] with value [${sendReasonPhraseValue}] in system.yaml"
+}
+
+# Updating system.yaml with Connector relaxedPathChars
+setConnectorRelaxedPathChars () {
+    local yamlPath="$1"
+    local relaxedPathCharsValue="$2"
+    local relaxedPathCharsYamlPath=
+    if [[ -z "${yamlPath}" ]]; then
+        return
+    fi
+    if [[ -z  "${relaxedPathCharsValue}" ]]; then
+        return
+    fi
+    ## Getting relaxedPathChars yaml path from migration info yaml
+    retrieveYamlValue "${yamlPath}" relaxedPathCharsYamlPath "Warning"
+    relaxedPathCharsYamlPath="${YAML_VALUE}"
+    if [[ -z "${relaxedPathCharsYamlPath}" ]]; then
+        return
+    fi
+    setSystemValue "${relaxedPathCharsYamlPath}" "${relaxedPathCharsValue}" "${SYSTEM_YAML_PATH}"
+    logger "Setting [${relaxedPathCharsYamlPath}] with value [${relaxedPathCharsValue}] in system.yaml"
+}
+
+# Updating system.yaml with Connector relaxedQueryChars
+setConnectorRelaxedQueryChars () {
+    local yamlPath="$1"
+    local relaxedQueryCharsValue="$2"
+    local relaxedQueryCharsYamlPath=
+    if [[ -z "${yamlPath}" ]]; then
+        return
+    fi
+    if [[ -z  "${relaxedQueryCharsValue}" ]]; then
+        return
+    fi
+    ## Getting relaxedQueryChars yaml path from migration info yaml
+    retrieveYamlValue "${yamlPath}" relaxedQueryCharsYamlPath "Warning"
+    relaxedQueryCharsYamlPath="${YAML_VALUE}"
+    if [[ -z "${relaxedQueryCharsYamlPath}" ]]; then
+        return
+    fi
+    setSystemValue "${relaxedQueryCharsYamlPath}" "${relaxedQueryCharsValue}" "${SYSTEM_YAML_PATH}"
+    logger "Setting [${relaxedQueryCharsYamlPath}] with value [${relaxedQueryCharsValue}] in system.yaml"
+}
+
+# Updating system.yaml with Connectors configurations
+setConnectorExtraConfig () {
+    local yamlPath="$1"
+    local connectorAttributes="$2"
+    local extraConfigPath=
+    if [[ -z "${yamlPath}" ]]; then
+        return
+    fi
+    if [[ -z "${connectorAttributes}" ]]; then
+        return
+    fi
+    ## Getting extraConfig yaml path from migration info yaml
+    retrieveYamlValue "${yamlPath}" extraConfig "Warning"
+    extraConfigPath="${YAML_VALUE}"
+    if [[ -z "${extraConfigPath}" ]]; then
+        return
+    fi
+    # strip leading and trailing spaces
+    connectorAttributes=$(io_trim "${connectorAttributes}")
+    setSystemValue "${extraConfigPath}" "${connectorAttributes}" "${SYSTEM_YAML_PATH}"
+    logger "Setting [${extraConfigPath}] with connector attributes in system.yaml"
+}
+
+# Updating system.yaml with extra Connectors
+setExtraConnector () {
+    local yamlPath="$1"
+    local extraConnector="$2"
+    local extraConnectorYamlPath=
+    if [[ -z "${yamlPath}" ]]; then
+        return
+    fi
+    if [[ -z "${extraConnector}" ]]; then
+        return
+    fi
+    ## Getting extraConnecotr yaml path from migration info yaml
+    retrieveYamlValue "${yamlPath}" extraConnectorYamlPath "Warning"
+    extraConnectorYamlPath="${YAML_VALUE}"
+    if [[ -z "${extraConnectorYamlPath}" ]]; then
+        return
+    fi
+    getYamlValue  "${extraConnectorYamlPath}"  "${SYSTEM_YAML_PATH}"  "false"
+    local connectorExtra="${YAML_VALUE}"
+    if [[ -z "${connectorExtra}" ]]; then
+        setSystemValue "${extraConnectorYamlPath}" "${extraConnector}" "${SYSTEM_YAML_PATH}"
+        logger "Setting [${extraConnectorYamlPath}] with extra connectors in system.yaml"
+    else    
+        setSystemValue "${extraConnectorYamlPath}" "\"${connectorExtra} ${extraConnector}\"" "${SYSTEM_YAML_PATH}"
+        logger "Setting [${extraConnectorYamlPath}] with extra connectors in system.yaml"
+    fi
+}
+
+# Migrate extra connectors to system.yaml
+migrateExtraConnectors () {
+    local filePath="$1"
+    local fileName="$2"
+    local connectorCount="$3"
+    local excludeDefaultPort="$4"
+    local i="$5"
+    local extraConfig= 
+    local extraConnector=
+    if [[ "${excludeDefaultPort}" == "yes" ]]; then
+        for ((i = 1 ; i <= "${connectorCount}" ; i++));
+        do  
+            local portValue=$(getXmlConnectorPort "$i" "${filePath}" "${fileName}")
+            [[ "${portValue}" != "${DEFAULT_ACCESS_PORT}" && "${portValue}" != "${DEFAULT_RT_PORT}" ]] || continue
+            extraConnector=$($LIBXML2_PATH --xpath '//Server/Service/Connector['$i']' ${filePath}/${fileName} 2>/dev/null)
+            setExtraConnector "${EXTRA_CONFIG_YAMLPATH}" "${extraConnector}" 
+        done
+    else
+        extraConnector=$($LIBXML2_PATH --xpath '//Server/Service/Connector['$i']' ${filePath}/${fileName} 2>/dev/null)
+        setExtraConnector "${EXTRA_CONFIG_YAMLPATH}" "${extraConnector}"
+    fi
+}
+
+# Migrate connector configurations
+migrateConnectorConfig () {
+    local i="$1"
+    local protocolType="$2"
+    local portValue="$3"
+    local connectorPortYamlPath="$4"
+    local connectorMaxThreadYamlPath="$5"
+    local connectorAttributesYamlPath="$6"
+    local filePath="$7"
+    local fileName="$8"
+    local connectorSendReasonPhraseYamlPath="$9"
+    local connectorRelaxedPathCharsYamlPath="${10}"
+    local connectorRelaxedQueryCharsYamlPath="${11}"
+    
+    # migrate port
+    setConnectorPort "${connectorPortYamlPath}" "${portValue}"
+    
+    # migrate maxThreads
+    local maxThreadValue=$(getXmlConnectorMaxThreads "$i" "${filePath}" "${fileName}")
+    setConnectorMaxThread "${connectorMaxThreadYamlPath}" "${maxThreadValue}"
+
+    # migrate sendReasonPhrase
+    local sendReasonPhraseValue=$(getXmlConnectorSendReasonPhrase "$i" "${filePath}" "${fileName}")
+    setConnectorSendReasonPhrase "${connectorSendReasonPhraseYamlPath}" "${sendReasonPhraseValue}"
+    
+    # migrate relaxedPathChars
+    local relaxedPathCharsValue=$(getXmlConnectorRelaxedPathChars "$i" "${filePath}" "${fileName}")
+    setConnectorRelaxedPathChars "${connectorRelaxedPathCharsYamlPath}" "\"${relaxedPathCharsValue}\""
+    # migrate relaxedQueryChars
+    local relaxedQueryCharsValue=$(getXmlConnectorRelaxedQueryChars "$i" "${filePath}" "${fileName}")
+    setConnectorRelaxedQueryChars "${connectorRelaxedQueryCharsYamlPath}" "\"${relaxedQueryCharsValue}\""
+
+    # migrate all attributes to extra config except port , maxThread , sendReasonPhrase ,relaxedPathChars and relaxedQueryChars
+    local connectorAttributes=$(getXmlConnectorAttributes "$i" "${filePath}" "${fileName}")
+    connectorAttributes=$(echo "${connectorAttributes}" | sed 's/port="'${portValue}'"//g' | sed 's/maxThreads="'${maxThreadValue}'"//g' | sed 's/sendReasonPhrase="'${sendReasonPhraseValue}'"//g' | sed 's/relaxedPathChars="\'${relaxedPathCharsValue}'\"//g' | sed 's/relaxedQueryChars="\'${relaxedQueryCharsValue}'\"//g')
+    # strip leading and trailing spaces
+    connectorAttributes=$(io_trim "${connectorAttributes}")
+    setConnectorExtraConfig "${connectorAttributesYamlPath}" "${connectorAttributes}"
+}
+
+# Check for default port 8040 and 8081 in connectors and migrate
+migrateConnectorPort () {
+    local filePath="$1"
+    local fileName="$2"
+    local connectorCount="$3"
+    local defaultPort="$4"
+    local connectorPortYamlPath="$5"
+    local connectorMaxThreadYamlPath="$6"
+    local connectorAttributesYamlPath="$7"
+    local connectorSendReasonPhraseYamlPath="$8"
+    local connectorRelaxedPathCharsYamlPath="$9"
+    local connectorRelaxedQueryCharsYamlPath="${10}"
+    local portYamlPath=
+    local maxThreadYamlPath=
+    local status=
+    for ((i = 1 ; i <= "${connectorCount}" ; i++));
+    do  
+        local portValue=$(getXmlConnectorPort "$i" "${filePath}" "${fileName}")
+        local protocolType=$(getXmlConnectorProtocol "$i" "${filePath}" "${fileName}")
+        [[ "${protocolType}" == *AJP* ]] && continue
+        [[ "${portValue}" != "${defaultPort}" ]] && continue
+        if [[ "${portValue}" == "${DEFAULT_RT_PORT}" ]]; then
+            RT_DEFAULTPORT_STATUS=success
+        else
+            AC_DEFAULTPORT_STATUS=success
+        fi
+        migrateConnectorConfig "${i}" "${protocolType}" "${portValue}" "${connectorPortYamlPath}" "${connectorMaxThreadYamlPath}" "${connectorAttributesYamlPath}" "${filePath}" "${fileName}" "${connectorSendReasonPhraseYamlPath}" "${connectorRelaxedPathCharsYamlPath}" "${connectorRelaxedQueryCharsYamlPath}"
+    done
+}
+
+# migrate to extra, connector having default port and protocol is AJP
+migrateDefaultPortIfAjp () {
+    local filePath="$1"
+    local fileName="$2"
+    local connectorCount="$3"
+    local defaultPort="$4"
+    
+    for ((i = 1 ; i <= "${connectorCount}" ; i++));
+    do  
+        local portValue=$(getXmlConnectorPort "$i" "${filePath}" "${fileName}")
+        local protocolType=$(getXmlConnectorProtocol "$i" "${filePath}" "${fileName}")
+        [[ "${protocolType}" != *AJP* ]] && continue
+        [[ "${portValue}" != "${defaultPort}" ]] && continue
+        migrateExtraConnectors "${filePath}" "${fileName}" "${connectorCount}" "no" "${i}"
+    done
+
+}
+
+# Comparing max threads in connectors
+compareMaxThreads () {
+    local firstConnectorMaxThread="$1"
+    local firstConnectorNode="$2"
+    local secondConnectorMaxThread="$3"
+    local secondConnectorNode="$4"
+    local filePath="$5"
+    local fileName="$6"
+
+    # choose higher maxThreads connector as Artifactory.
+    if [[ "${firstConnectorMaxThread}" -gt ${secondConnectorMaxThread} || "${firstConnectorMaxThread}" -eq ${secondConnectorMaxThread} ]]; then
+        # maxThread is higher in firstConnector,
+        # Taking firstConnector as Artifactory and SecondConnector as Access
+        # maxThread is equal in both connector,considering firstConnector as Artifactory and SecondConnector as Access
+        local rtPortValue=$(getXmlConnectorPort "${firstConnectorNode}" "${filePath}" "${fileName}")
+        migrateConnectorConfig "${firstConnectorNode}" "${protocolType}" "${rtPortValue}" "${RT_PORT_YAMLPATH}" "${RT_MAXTHREADS_YAMLPATH}" "${RT_EXTRACONFIG_YAMLPATH}" "${filePath}" "${fileName}" "${RT_SENDREASONPHRASE_YAMLPATH}" "${RT_RELAXEDPATHCHARS_YAMLPATH}" "${RT_RELAXEDQUERYCHARS_YAMLPATH}"
+        local acPortValue=$(getXmlConnectorPort "${secondConnectorNode}" "${filePath}" "${fileName}")
+        migrateConnectorConfig "${secondConnectorNode}" "${protocolType}" "${acPortValue}" "${AC_PORT_YAMLPATH}" "${AC_MAXTHREADS_YAMLPATH}" "${AC_EXTRACONFIG_YAMLPATH}" "${filePath}" "${fileName}" "${AC_SENDREASONPHRASE_YAMLPATH}"
+    else
+        # maxThread is higher in SecondConnector, 
+        # Taking SecondConnector as Artifactory and firstConnector as Access
+        local rtPortValue=$(getXmlConnectorPort "${secondConnectorNode}" "${filePath}" "${fileName}")
+        migrateConnectorConfig "${secondConnectorNode}" "${protocolType}" "${rtPortValue}" "${RT_PORT_YAMLPATH}" "${RT_MAXTHREADS_YAMLPATH}" "${RT_EXTRACONFIG_YAMLPATH}" "${filePath}" "${fileName}" "${RT_SENDREASONPHRASE_YAMLPATH}" "${RT_RELAXEDPATHCHARS_YAMLPATH}" "${RT_RELAXEDQUERYCHARS_YAMLPATH}"
+        local acPortValue=$(getXmlConnectorPort "${firstConnectorNode}" "${filePath}" "${fileName}")
+        migrateConnectorConfig "${firstConnectorNode}" "${protocolType}" "${acPortValue}" "${AC_PORT_YAMLPATH}" "${AC_MAXTHREADS_YAMLPATH}" "${AC_EXTRACONFIG_YAMLPATH}" "${filePath}" "${fileName}" "${AC_SENDREASONPHRASE_YAMLPATH}"
+    fi
+}
+
+# Check max threads exist to compare
+maxThreadsExistToCompare () {
+    local filePath="$1"
+    local fileName="$2"
+    local connectorCount="$3"
+    local firstConnectorMaxThread=
+    local secondConnectorMaxThread=
+    local firstConnectorNode=
+    local secondConnectorNode=
+    local status=success
+    local firstnode=fail
+
+    for ((i = 1 ; i <= "${connectorCount}" ; i++));
+        do 
+        local protocolType=$(getXmlConnectorProtocol "$i" "${filePath}" "${fileName}")
+        if [[ ${protocolType} == *AJP* ]]; then
+            # Migrate Connectors
+            migrateExtraConnectors "${filePath}" "${fileName}" "${connectorCount}" "no" "${i}"
+            continue
+        fi
+        # store maxthreads value of each connector
+        if [[ ${firstnode} == "fail" ]]; then
+            firstConnectorMaxThread=$(getXmlConnectorMaxThreads "${i}" "${filePath}" "${fileName}")
+            firstConnectorNode="${i}"
+            firstnode=success
+        else
+            secondConnectorMaxThread=$(getXmlConnectorMaxThreads "${i}" "${filePath}" "${fileName}")
+            secondConnectorNode="${i}"
+        fi
+    done
+    [[ -z "${firstConnectorMaxThread}" ]] && status=fail
+    [[ -z "${secondConnectorMaxThread}" ]] && status=fail
+    # maxThreads is set, now compare MaxThreads
+    if [[ "${status}" == "success" ]]; then
+        compareMaxThreads "${firstConnectorMaxThread}" "${firstConnectorNode}" "${secondConnectorMaxThread}" "${secondConnectorNode}" "${filePath}" "${fileName}"
+    else 
+        # Assume first connector is RT, maxThreads is not set in both connectors
+        local rtPortValue=$(getXmlConnectorPort "${firstConnectorNode}" "${filePath}" "${fileName}")
+        migrateConnectorConfig "${firstConnectorNode}" "${protocolType}" "${rtPortValue}" "${RT_PORT_YAMLPATH}" "${RT_MAXTHREADS_YAMLPATH}" "${RT_EXTRACONFIG_YAMLPATH}" "${filePath}" "${fileName}" "${RT_SENDREASONPHRASE_YAMLPATH}" "${RT_RELAXEDPATHCHARS_YAMLPATH}" "${RT_RELAXEDQUERYCHARS_YAMLPATH}"
+        local acPortValue=$(getXmlConnectorPort "${secondConnectorNode}" "${filePath}" "${fileName}")
+        migrateConnectorConfig "${secondConnectorNode}" "${protocolType}" "${acPortValue}" "${AC_PORT_YAMLPATH}" "${AC_MAXTHREADS_YAMLPATH}" "${AC_EXTRACONFIG_YAMLPATH}" "${filePath}" "${fileName}" "${AC_SENDREASONPHRASE_YAMLPATH}"
+    fi
+}
+
+migrateExtraBasedOnNonAjpCount () {
+    local nonAjpCount="$1"
+    local filePath="$2"
+    local fileName="$3"
+    local connectorCount="$4"
+    local i="$5"
+
+    local protocolType=$(getXmlConnectorProtocol "$i" "${filePath}" "${fileName}")
+    if [[ "${protocolType}" == *AJP* ]]; then
+        if [[ "${nonAjpCount}" -eq 1  ]]; then
+            # migrateExtraConnectors
+            migrateExtraConnectors "${filePath}" "${fileName}" "${connectorCount}" "no" "${i}"
+            continue
+        else
+            # migrateExtraConnectors
+            migrateExtraConnectors "${filePath}" "${fileName}" "${connectorCount}" "yes"
+            continue
+        fi
+    fi
+}
+
+# find RT and AC Connector
+findRtAndAcConnector () {
+    local filePath="$1"
+    local fileName="$2"
+    local connectorCount="$3"
+    local initialAjpCount=0
+    local nonAjpCount=0
+
+    # get the count of non AJP
+    for ((i = 1 ; i <= "${connectorCount}" ; i++));
+    do  
+        local portValue=$(getXmlConnectorPort "$i" "${filePath}" "${fileName}")
+        local protocolType=$(getXmlConnectorProtocol "$i" "${filePath}" "${fileName}")
+        [[ "${protocolType}" != *AJP* ]]  || continue
+        nonAjpCount=$((initialAjpCount+1))
+        initialAjpCount="${nonAjpCount}"
+    done
+    if [[ "${nonAjpCount}" -eq 1 ]]; then  
+        # Add the connector found as access and artifactory connectors
+        # Mark port as 8040 for access
+        for ((i = 1 ; i <= "${connectorCount}" ; i++))
+        do  
+            migrateExtraBasedOnNonAjpCount "${nonAjpCount}" "${filePath}" "${fileName}" "${connectorCount}"  "$i"
+            local portValue=$(getXmlConnectorPort "$i" "${filePath}" "${fileName}")
+            migrateConnectorConfig "$i" "${protocolType}" "${portValue}" "${RT_PORT_YAMLPATH}" "${RT_MAXTHREADS_YAMLPATH}" "${RT_EXTRACONFIG_YAMLPATH}" "${filePath}" "${fileName}" "${RT_SENDREASONPHRASE_YAMLPATH}" "${RT_RELAXEDPATHCHARS_YAMLPATH}" "${RT_RELAXEDQUERYCHARS_YAMLPATH}"
+            migrateConnectorConfig "$i" "${protocolType}" "${portValue}" "${AC_PORT_YAMLPATH}" "${AC_MAXTHREADS_YAMLPATH}" "${AC_EXTRACONFIG_YAMLPATH}" "${filePath}" "${fileName}" "${AC_SENDREASONPHRASE_YAMLPATH}"
+            setConnectorPort "${AC_PORT_YAMLPATH}" "${DEFAULT_ACCESS_PORT}"
+        done
+    elif [[ "${nonAjpCount}" -eq 2 ]]; then
+        # compare maxThreads in both connectors
+        maxThreadsExistToCompare "${filePath}" "${fileName}" "${connectorCount}"
+    elif [[ "${nonAjpCount}" -gt 2 ]]; then
+        # migrateExtraConnectors
+        migrateExtraConnectors "${filePath}" "${fileName}" "${connectorCount}" "yes"
+    elif [[ "${nonAjpCount}" -eq 0 ]]; then
+        # setting with default port in system.yaml
+        setConnectorPort "${RT_PORT_YAMLPATH}" "${DEFAULT_RT_PORT}"
+        setConnectorPort "${AC_PORT_YAMLPATH}" "${DEFAULT_ACCESS_PORT}"
+        # migrateExtraConnectors
+        migrateExtraConnectors "${filePath}" "${fileName}" "${connectorCount}" "yes"
+    fi
+}
+
+# get the count of non AJP
+getCountOfNonAjp () {
+    local port="$1"
+    local connectorCount="$2"
+    local filePath=$3
+    local fileName=$4
+    local initialNonAjpCount=0
+
+    for ((i = 1 ; i <= "${connectorCount}" ; i++));
+    do  
+        local portValue=$(getXmlConnectorPort "$i" "${filePath}" "${fileName}")
+        local protocolType=$(getXmlConnectorProtocol "$i" "${filePath}" "${fileName}")
+        [[ "${portValue}" != "${port}" ]] || continue
+        [[ "${protocolType}" != *AJP* ]]  || continue
+        local nonAjpCount=$((initialNonAjpCount+1))
+        initialNonAjpCount="${nonAjpCount}"
+    done
+    echo -e "${nonAjpCount}"
+}
+
+# Find for access connector
+findAcConnector () {
+    local filePath="$1"
+    local fileName="$2"
+    local connectorCount="$3"
+    
+    # get the count of non AJP 
+    local nonAjpCount=$(getCountOfNonAjp "${DEFAULT_RT_PORT}" "${connectorCount}" "${filePath}" "${fileName}")
+    if [[ "${nonAjpCount}" -eq 1 ]]; then
+        # Add the connector found as access connector and mark port as that of connector
+        for ((i = 1 ; i <= "${connectorCount}" ; i++))
+        do  
+            migrateExtraBasedOnNonAjpCount "${nonAjpCount}" "${filePath}" "${fileName}" "${connectorCount}" "$i"
+            local portValue=$(getXmlConnectorPort "$i" "${filePath}" "${fileName}")
+            if [[ "${portValue}" != "${DEFAULT_RT_PORT}" ]]; then
+                migrateConnectorConfig "$i" "${protocolType}" "${portValue}" "${AC_PORT_YAMLPATH}" "${AC_MAXTHREADS_YAMLPATH}" "${AC_EXTRACONFIG_YAMLPATH}" "${filePath}" "${fileName}" "${AC_SENDREASONPHRASE_YAMLPATH}"
+            fi   
+        done
+    elif [[ "${nonAjpCount}" -gt 1 ]]; then
+        # Take RT properties into access with 8040
+        for ((i = 1 ; i <= "${connectorCount}" ; i++))
+        do  
+            migrateExtraBasedOnNonAjpCount "${nonAjpCount}" "${filePath}" "${fileName}" "${connectorCount}" "$i"
+            local portValue=$(getXmlConnectorPort "$i" "${filePath}" "${fileName}")
+            if [[ "${portValue}" == "${DEFAULT_RT_PORT}" ]]; then
+                migrateConnectorConfig "$i" "${protocolType}" "${portValue}" "${AC_PORT_YAMLPATH}" "${AC_MAXTHREADS_YAMLPATH}" "${AC_EXTRACONFIG_YAMLPATH}" "${filePath}" "${fileName}" "${AC_SENDREASONPHRASE_YAMLPATH}"
+                setConnectorPort "${AC_PORT_YAMLPATH}" "${DEFAULT_ACCESS_PORT}"
+            fi
+        done
+    elif [[ "${nonAjpCount}" -eq 0 ]]; then 
+        # Add RT connector details as access connector and mark port as 8040  
+        migrateConnectorPort "${filePath}" "${fileName}" "${connectorCount}" "${DEFAULT_RT_PORT}" "${AC_PORT_YAMLPATH}" "${AC_MAXTHREADS_YAMLPATH}" "${AC_EXTRACONFIG_YAMLPATH}" "${AC_SENDREASONPHRASE_YAMLPATH}"
+        setConnectorPort "${AC_PORT_YAMLPATH}" "${DEFAULT_ACCESS_PORT}"
+        # migrateExtraConnectors
+        migrateExtraConnectors "${filePath}" "${fileName}" "${connectorCount}" "yes"
+    fi
+}
+
+# Find for artifactory connector
+findRtConnector () {
+    local filePath="$1"
+    local fileName="$2"
+    local connectorCount="$3"
+    
+    # get the count of non AJP 
+    local nonAjpCount=$(getCountOfNonAjp "${DEFAULT_ACCESS_PORT}" "${connectorCount}" "${filePath}" "${fileName}")
+    if [[ "${nonAjpCount}" -eq 1 ]]; then
+        # Add the connector found as RT connector
+        for ((i = 1 ; i <= "${connectorCount}" ; i++))
+        do  
+            migrateExtraBasedOnNonAjpCount "${nonAjpCount}" "${filePath}" "${fileName}" "${connectorCount}" "$i"
+            local portValue=$(getXmlConnectorPort "$i" "${filePath}" "${fileName}")
+            if [[ "${portValue}" != "${DEFAULT_ACCESS_PORT}" ]]; then
+                migrateConnectorConfig "$i" "${protocolType}" "${portValue}" "${RT_PORT_YAMLPATH}" "${RT_MAXTHREADS_YAMLPATH}" "${RT_EXTRACONFIG_YAMLPATH}" "${filePath}" "${fileName}" "${RT_SENDREASONPHRASE_YAMLPATH}" "${RT_RELAXEDPATHCHARS_YAMLPATH}" "${RT_RELAXEDQUERYCHARS_YAMLPATH}"
+            fi
+        done
+    elif [[ "${nonAjpCount}" -gt 1 ]]; then
+        # Take access properties into artifactory with 8081
+        for ((i = 1 ; i <= "${connectorCount}" ; i++))
+        do  
+            migrateExtraBasedOnNonAjpCount "${nonAjpCount}" "${filePath}" "${fileName}" "${connectorCount}" "$i"
+            local portValue=$(getXmlConnectorPort "$i" "${filePath}" "${fileName}")
+            if [[ "${portValue}" == "${DEFAULT_ACCESS_PORT}" ]]; then
+                migrateConnectorConfig "$i" "${protocolType}" "${portValue}" "${RT_PORT_YAMLPATH}" "${RT_MAXTHREADS_YAMLPATH}" "${RT_EXTRACONFIG_YAMLPATH}" "${filePath}" "${fileName}" "${RT_SENDREASONPHRASE_YAMLPATH}" "${RT_RELAXEDPATHCHARS_YAMLPATH}" "${RT_RELAXEDQUERYCHARS_YAMLPATH}"
+                setConnectorPort "${RT_PORT_YAMLPATH}" "${DEFAULT_RT_PORT}"
+            fi
+        done
+    elif [[ "${nonAjpCount}" -eq 0 ]]; then   
+        # Add access connector details as RT connector and mark as ${DEFAULT_RT_PORT}
+        migrateConnectorPort "${filePath}" "${fileName}" "${connectorCount}" "${DEFAULT_ACCESS_PORT}" "${RT_PORT_YAMLPATH}" "${RT_MAXTHREADS_YAMLPATH}" "${RT_EXTRACONFIG_YAMLPATH}" "${RT_SENDREASONPHRASE_YAMLPATH}" "${RT_RELAXEDPATHCHARS_YAMLPATH}" "${RT_RELAXEDQUERYCHARS_YAMLPATH}"
+        setConnectorPort "${RT_PORT_YAMLPATH}" "${DEFAULT_RT_PORT}"
+        # migrateExtraConnectors
+        migrateExtraConnectors "${filePath}" "${fileName}" "${connectorCount}" "yes"
+    fi
+}
+
+checkForTlsConnector () {
+    local filePath="$1"
+    local fileName="$2"
+    local connectorCount="$3"
+    for ((i = 1 ; i <= "${connectorCount}" ; i++))
+    do
+        local sslProtocolValue=$($LIBXML2_PATH --xpath '//Server/Service/Connector['$i']/@sslProtocol' ${filePath}/${fileName} 2>/dev/null | awk -F"=" '{print $2}' | tr -d '"')
+        if [[ "${sslProtocolValue}" == "TLS" ]]; then
+            bannerImportant "NOTE: Ignoring TLS connector during migration, modify the system yaml to enable TLS. Original server.xml is saved in path [${filePath}/${fileName}]"
+            TLS_CONNECTOR_EXISTS=${FLAG_Y}
+            continue
+        fi
+    done
+}
+
+# set custom tomcat server Listeners to system.yaml
+setListenerConnector () {
+    local filePath="$1"
+    local fileName="$2"
+    local listenerCount="$3"
+    for ((i = 1 ; i <= "${listenerCount}" ; i++))
+    do 
+        local listenerConnector=$($LIBXML2_PATH --xpath '//Server/Listener['$i']' ${filePath}/${fileName} 2>/dev/null)
+        local listenerClassName=$($LIBXML2_PATH --xpath '//Server/Listener['$i']/@className' ${filePath}/${fileName} 2>/dev/null | awk -F"=" '{print $2}' | tr -d '"')
+        if [[ "${listenerClassName}" == *Apr* ]]; then
+            setExtraConnector "${EXTRA_LISTENER_CONFIG_YAMLPATH}" "${listenerConnector}"
+        fi
+    done
+}
+# add custom tomcat server Listeners
+addTomcatServerListeners () {
+    local filePath="$1"
+    local fileName="$2"
+    local listenerCount="$3"
+    if [[ "${listenerCount}" == "0" ]]; then
+        logger "No listener connectors found in the [${filePath}/${fileName}],skipping migration of listener connectors"
+    else
+        setListenerConnector "${filePath}" "${fileName}" "${listenerCount}"
+        setSystemValue "${RT_TOMCAT_HTTPSCONNECTOR_ENABLED}" "true" "${SYSTEM_YAML_PATH}"
+        logger "Setting [${RT_TOMCAT_HTTPSCONNECTOR_ENABLED}] with value [true] in system.yaml"
+    fi
+}
+
+# server.xml migration operations
+xmlMigrateOperation () {
+    local filePath="$1"
+    local fileName="$2"
+    local connectorCount="$3"
+    local listenerCount="$4"
+    RT_DEFAULTPORT_STATUS=fail
+    AC_DEFAULTPORT_STATUS=fail
+    TLS_CONNECTOR_EXISTS=${FLAG_N}
+
+    # Check for connector with TLS , if found ignore migrating it
+    checkForTlsConnector "${filePath}" "${fileName}" "${connectorCount}"
+    if [[ "${TLS_CONNECTOR_EXISTS}" == "${FLAG_Y}" ]]; then
+        return
+    fi
+    addTomcatServerListeners "${filePath}" "${fileName}" "${listenerCount}"
+    # Migrate RT default port from connectors 
+    migrateConnectorPort "${filePath}" "${fileName}" "${connectorCount}" "${DEFAULT_RT_PORT}" "${RT_PORT_YAMLPATH}" "${RT_MAXTHREADS_YAMLPATH}" "${RT_EXTRACONFIG_YAMLPATH}" "${RT_SENDREASONPHRASE_YAMLPATH}" "${RT_RELAXEDPATHCHARS_YAMLPATH}" "${RT_RELAXEDQUERYCHARS_YAMLPATH}"
+    # Migrate to extra if RT default ports are AJP
+    migrateDefaultPortIfAjp "${filePath}" "${fileName}" "${connectorCount}" "${DEFAULT_RT_PORT}"
+    # Migrate AC default port from connectors
+    migrateConnectorPort "${filePath}" "${fileName}" "${connectorCount}" "${DEFAULT_ACCESS_PORT}" "${AC_PORT_YAMLPATH}" "${AC_MAXTHREADS_YAMLPATH}" "${AC_EXTRACONFIG_YAMLPATH}" "${AC_SENDREASONPHRASE_YAMLPATH}"
+    # Migrate to extra if access default ports are AJP
+    migrateDefaultPortIfAjp "${filePath}" "${fileName}" "${connectorCount}" "${DEFAULT_ACCESS_PORT}"
+
+    if [[ "${AC_DEFAULTPORT_STATUS}" == "success" && "${RT_DEFAULTPORT_STATUS}" == "success" ]]; then
+        # RT and AC default port found
+        logger "Artifactory 8081 and Access 8040 default port are found"
+        migrateExtraConnectors "${filePath}" "${fileName}" "${connectorCount}" "yes"
+    elif [[ "${AC_DEFAULTPORT_STATUS}" == "success" && "${RT_DEFAULTPORT_STATUS}" == "fail" ]]; then
+        # Only AC default port found,find RT connector
+        logger "Found Access default 8040 port"
+        findRtConnector "${filePath}" "${fileName}" "${connectorCount}"
+    elif [[ "${AC_DEFAULTPORT_STATUS}" == "fail" && "${RT_DEFAULTPORT_STATUS}" == "success" ]]; then
+        # Only RT default port found,find AC connector
+        logger "Found Artifactory default 8081 port"
+        findAcConnector "${filePath}" "${fileName}" "${connectorCount}"
+    elif [[ "${AC_DEFAULTPORT_STATUS}" == "fail" && "${RT_DEFAULTPORT_STATUS}" == "fail" ]]; then    
+        # RT and AC default port not found, find connector
+        logger "Artifactory 8081 and Access 8040 default port are not found"
+        findRtAndAcConnector "${filePath}" "${fileName}" "${connectorCount}"
+    fi
+}
+
+# get count of connectors
+getXmlConnectorCount () {
+    local filePath="$1"
+    local fileName="$2"
+    local count=$($LIBXML2_PATH --xpath 'count(/Server/Service/Connector)' ${filePath}/${fileName})
+    echo -e "${count}"
+}
+
+# get count of listener connectors
+getTomcatServerListenersCount () {
+    local filePath="$1"
+    local fileName="$2"
+    local count=$($LIBXML2_PATH --xpath 'count(/Server/Listener)' ${filePath}/${fileName})
+    echo -e "${count}"
+}
+
+# Migrate server.xml configuration to system.yaml
+migrateXmlFile () {
+    local xmlFiles=
+    local fileName=
+    local filePath=
+    local sourceFilePath=
+    DEFAULT_ACCESS_PORT="8040"
+    DEFAULT_RT_PORT="8081"
+    AC_PORT_YAMLPATH="migration.xmlFiles.serverXml.access.port"
+    AC_MAXTHREADS_YAMLPATH="migration.xmlFiles.serverXml.access.maxThreads"
+    AC_SENDREASONPHRASE_YAMLPATH="migration.xmlFiles.serverXml.access.sendReasonPhrase"
+    AC_EXTRACONFIG_YAMLPATH="migration.xmlFiles.serverXml.access.extraConfig"
+    RT_PORT_YAMLPATH="migration.xmlFiles.serverXml.artifactory.port"
+    RT_MAXTHREADS_YAMLPATH="migration.xmlFiles.serverXml.artifactory.maxThreads"
+    RT_SENDREASONPHRASE_YAMLPATH='migration.xmlFiles.serverXml.artifactory.sendReasonPhrase'
+    RT_RELAXEDPATHCHARS_YAMLPATH='migration.xmlFiles.serverXml.artifactory.relaxedPathChars'
+    RT_RELAXEDQUERYCHARS_YAMLPATH='migration.xmlFiles.serverXml.artifactory.relaxedQueryChars'
+    RT_EXTRACONFIG_YAMLPATH="migration.xmlFiles.serverXml.artifactory.extraConfig"
+    ROUTER_PORT_YAMLPATH="migration.xmlFiles.serverXml.router.port"
+    EXTRA_CONFIG_YAMLPATH="migration.xmlFiles.serverXml.extra.config"
+    EXTRA_LISTENER_CONFIG_YAMLPATH="migration.xmlFiles.serverXml.extra.listener"
+    RT_TOMCAT_HTTPSCONNECTOR_ENABLED="artifactory.tomcat.httpsConnector.enabled"
+
+    retrieveYamlValue "migration.xmlFiles" "xmlFiles" "Skip"
+    xmlFiles="${YAML_VALUE}"
+    if [[ -z "${xmlFiles}" ]]; then
+        return
+    fi
+    bannerSection "PROCESSING MIGRATION OF XML FILES"
+    retrieveYamlValue "migration.xmlFiles.serverXml.fileName" "fileName" "Warning"
+    fileName="${YAML_VALUE}"
+    if [[ -z "${fileName}" ]]; then
+        return
+    fi
+    bannerSubSection "Processing Migration of $fileName"
+    retrieveYamlValue "migration.xmlFiles.serverXml.filePath" "filePath" "Warning"
+    filePath="${YAML_VALUE}"
+    if [[ -z "${filePath}" ]]; then
+        return
+    fi
+    # prepend NEW_DATA_DIR only if filePath is relative path
+    sourceFilePath=$(prependDir "${filePath}" "${NEW_DATA_DIR}/${filePath}")
+    if [[ "$(checkFileExists "${sourceFilePath}/${fileName}")" == "true" ]]; then
+        logger "File [${fileName}] is found in path [${sourceFilePath}]"
+        local connectorCount=$(getXmlConnectorCount "${sourceFilePath}" "${fileName}")
+        if [[ "${connectorCount}" == "0" ]]; then
+            logger "No connectors found in the [${filePath}/${fileName}],skipping migration of xml configuration"
+            return
+        fi
+        local listenerCount=$(getTomcatServerListenersCount "${sourceFilePath}" "${fileName}")
+        xmlMigrateOperation "${sourceFilePath}" "${fileName}" "${connectorCount}" "${listenerCount}"
+    else
+        logger "File [${fileName}] is not found in path [${sourceFilePath}] to migrate"
+    fi   
+}
+
+compareArtifactoryUser () {
+    local property="$1"
+    local oldPropertyValue="$2"
+    local newPropertyValue="$3"
+    local yamlPath="$4"
+    local sourceFile="$5"
+
+    if [[ "${oldPropertyValue}" != "${newPropertyValue}" ]]; then
+        setSystemValue "${yamlPath}" "${oldPropertyValue}" "${SYSTEM_YAML_PATH}"
+        logger "Setting [${yamlPath}] with value of the property [${property}] in system.yaml"
+    else
+        logger "No change in property [${property}] value in [${sourceFile}] to migrate"
+    fi
+}
+
+migrateReplicator () {
+    local property="$1"
+    local oldPropertyValue="$2"
+    local yamlPath="$3"
+
+    setSystemValue "${yamlPath}" "${oldPropertyValue}" "${SYSTEM_YAML_PATH}"
+    logger "Setting [${yamlPath}] with value of the property [${property}] in system.yaml"
+}
+
+compareJavaOptions () {
+    local property="$1"
+    local oldPropertyValue="$2"
+    local newPropertyValue="$3"
+    local yamlPath="$4"
+    local sourceFile="$5"
+    local oldJavaOption=
+    local newJavaOption=
+    local extraJavaOption=
+    local check=false
+    local success=true
+    local status=true
+
+    oldJavaOption=$(echo "${oldPropertyValue}" | awk 'BEGIN{FS=OFS="\""}{for(i=2;i<NF;i+=2)gsub(/ /,"@",$i)}1')
+    newJavaOption=$(echo "${newPropertyValue}" | awk 'BEGIN{FS=OFS="\""}{for(i=2;i<NF;i+=2)gsub(/ /,"@",$i)}1')
+    for oldJavaOption in $oldPropertyValue;
+    do
+        for newJavaOption in $newPropertyValue;
+        do
+            if [[ "${oldJavaOption}" == "${newJavaOption}" ]]; then
+                check=true
+                break
+            else
+                check=false
+            fi
+        done
+        if [[ "${check}" == "false" ]]; then
+            oldJavaOption=$(echo "${oldJavaOption}" | tr -s "@" " ")
+            getYamlValue "${yamlPath}" "${SYSTEM_YAML_PATH}" "false"
+            extraJavaOption="${YAML_VALUE}"
+            success=false
+            if [[ -z "${extraJavaOption}" ]]; then
+                setSystemValue "${yamlPath}" "\"${oldJavaOption}\"" "${SYSTEM_YAML_PATH}" && status=false
+            else
+                [[ "${extraJavaOption}" != *"${oldJavaOption}"* ]] && setSystemValue "${yamlPath}" "\"${extraJavaOption} ${oldJavaOption}\"" "${SYSTEM_YAML_PATH}" || status=false
+            fi
+        fi
+    done
+    if [[ "${status}" == "false" ]]; then
+        getYamlValue "${yamlPath}" "${SYSTEM_YAML_PATH}" "false"
+        local extraOpts="${YAML_VALUE}"
+        logger "Setting [${yamlPath}] with value of the property [${property}] in system.yaml"
+    fi
+    [[ "${success}" == "true" && "${check}" == "true" ]] && logger "No change in property [JAVA_OPTIONS] value in [${sourceFile}] to migrate"
+}
+
+defaultPropertyMigrate () {
+    local entry="$1"
+    local sourceFile="$2"
+    local targetFile="$3"
+    local yamlPath=
+    local property=
+    local oldPropertyValue=
+    local newPropertyValue=
+    local check=false
+    
+    local targetDataDir=
+
+    local yamlPath=$(getFirstEntry "${entry}")
+    local property=$(getSecondEntry "${entry}")
+    if [[ -z "${property}" ]]; then
+        warn "Property is empty in map [${entry}] in the file [${MIGRATION_SYSTEM_YAML_INFO}]"
+        return
+    fi
+    if [[ -z "${yamlPath}" ]]; then
+        warn "yamlPath is empty for [${property}] in [${MIGRATION_SYSTEM_YAML_INFO}]"
+        return
+    fi
+    unset ${property}
+    source ${sourceFile}
+    oldPropertyValue=$(evalVariable "oldPropertyValue" "${property}")
+
+    unset ${property}
+    source ${targetFile}
+    if [[ "${property}" == "JAVA_OPTIONS" ]]; then
+        property="DEFAULT_JAVA_OPTIONS"
+    fi
+    newPropertyValue="$(evalVariable "newPropertyValue" "${property}")"
+
+    [[ -z "${oldPropertyValue}" ]] && logger "Property [${property}] not found in [${sourceFile}] to migrate" || check=true
+    if [[ "${check}" == "true" ]]; then
+        # migrate ARTIFACTORY_USER
+        [[ "${property}" == "ARTIFACTORY_USER" ]] && compareArtifactoryUser "${property}" "${oldPropertyValue}" "${newPropertyValue}" "${yamlPath}" "${sourceFile}"
+        # migrate JAVA_OPTIONS
+        [[ "${property}" == *"JAVA_OPTIONS"* ]] && compareJavaOptions "${property}" "${oldPropertyValue}" "${newPropertyValue}" "${yamlPath}" "${sourceFile}"
+        # migrate START_LOCAL_REPLICATOR
+        [[ "${property}" == "START_LOCAL_REPLICATOR" ]] && migrateReplicator "${property}" "${oldPropertyValue}" "${yamlPath}"
+    fi
+}
+
+migrateDefaultFile () {
+    local oldDefaultFilePath=
+    local newDefaultFilePath=
+    local oldfileName=
+    local newFileName=
+    local map=
+    local defaultFile=
+    local sourceFilePath=
+    local targetFilePath=
+    local sourceFile=
+    local targetFile=
+    
+    retrieveYamlValue "migration.defaultFile" "defaultFile" "Skip"
+    defaultFile="${YAML_VALUE}"
+    if [[ -z "${defaultFile}" ]]; then
+        return
+    fi
+    bannerSection "PROCESSING MIGRATION OF DEFAULTFILE"
+    retrieveYamlValue "migration.defaultFile.oldFile.defaultFilePath" "oldDefaultFilePath" "Warning"
+    oldDefaultFilePath="${YAML_VALUE}"
+    retrieveYamlValue "migration.defaultFile.oldFile.fileName" "oldFileName" "Warning"
+    oldFileName="${YAML_VALUE}"
+    if [[ "$(warnIfEmpty "${oldDefaultFilePath}" "migration.defaultFile.oldFile.defaultFilePath")" != "true" ]]; then
+        return
+    fi
+    if [[ "$(warnIfEmpty "${oldFileName}" "migration.defaultFile.oldFile.fileName")" != "true" ]]; then
+        return
+    fi
+    retrieveYamlValue "migration.defaultFile.newFile.defaultFilePath" "newDefaultFilePath" "Warning"
+    newDefaultFilePath="${YAML_VALUE}"
+    retrieveYamlValue "migration.defaultFile.newFile.fileName" "newfileName" "Warning"
+    newFileName="${YAML_VALUE}"
+    if [[ "$(warnIfEmpty "${newDefaultFilePath}" "migration.defaultFile.newFile.defaultFilePath")" != "true" ]]; then
+        return
+    fi
+    if [[ "$(warnIfEmpty "${newFileName}" "migration.defaultFile.newFile.fileName")" != "true" ]]; then
+        return
+    fi
+    # prepend NEW_DATA_DIR only if oldDefaultFilePath is relative path
+    sourceFilePath=$(prependDir "${oldDefaultFilePath}" ${NEW_DATA_DIR}/${oldDefaultFilePath})
+    sourceFile="${sourceFilePath}/${oldFileName}"
+    if [[ "$(checkFileExists "${sourceFile}")" != "true" ]]; then
+        logger "OldDefaultFile [${oldFileName}] not found in the path [${sourceFilePath}]"
+        return
+    fi
+    # path newDefaultFilePath will change based installer
+    if [[ "${INSTALLER}" == "${ZIP_TYPE}" ]]; then
+        targetFilePath="${APP_DIR}/../${newDefaultFilePath}"
+    else
+        targetDataDir="`cd "${NEW_DATA_DIR}"/../;pwd`"
+        targetFilePath="${targetDataDir}/${newDefaultFilePath}"
+    fi
+    targetFile="${targetFilePath}/${newFileName}"
+    if [[ "$(checkFileExists "${targetFile}")" != "true" ]]; then
+        logger "NewDefaultFile [${newFileName}] not found in the path [${sourceFilePath}]"
+        return
+    fi
+    logger "OldDefaultFile [${oldFileName}] found in the path [${sourceFilePath}]"
+    logger "NewDefaultFile [${newFileName}] found in the path [${targetFilePath}]"
+    retrieveYamlValue "migration.defaultFile.map" "map" "Warning"
+    map="${YAML_VALUE}"
+    [[ -z "${map}" ]] && continue
+    for entry in $map;
+    do
+        if [[ "$(checkMapEntry "${entry}")" == "true" ]]; then
+            defaultPropertyMigrate "${entry}" "${sourceFile}" "${targetFile}"
+        else
+            warn "map entry [${entry}] in [${MIGRATION_SYSTEM_YAML_INFO}] is not in correct format, correct format i.e yamlPath=property"
+        fi
+    done
+}
+
+# comment node.id in system.yaml
+# Add a commented Line above the node.id in system.yaml
+commentNodeId () {
+    local filePath=
+    local fileName=
+    local idKey=
+
+    retrieveYamlValue "migration.propertyFiles.haNodeProperty.filePath" "filePath" "Skip"
+    filePath="${YAML_VALUE}"
+    if [[ -z "${filePath}" ]]; then
+        return
+    fi
+    retrieveYamlValue "migration.propertyFiles.haNodeProperty.fileName" "fileName" "Skip"
+    fileName="${YAML_VALUE}"
+    if [[ -z "${fileName}" ]]; then
+        return
+    fi
+    if [[ "$(checkFileExists "${NEW_DATA_DIR}/${filePath}/${fileName}")" == "true" ]]; then
+        getYamlValue "shared.node" "${SYSTEM_YAML_PATH}" "false"
+        idKey=$(echo "${YAML_VALUE}" | grep "^id:")
+        local regexString="${idKey}"
+        local replaceText="#&"
+        replaceText_migration_hook "${regexString}" "${replaceText}" "${SYSTEM_YAML_PATH}"
+        local text="# NOTE: node.id can be automatically determined based on the current hostname or be set using the SHARED_NODE_ID environment variable. There is no need to explicitly specify it here."
+        prependText "${regexString}" "${text}" "${SYSTEM_YAML_PATH}"
+    fi
+}
+
+artifactoryInfoMessage () {
+
+    if [[ "${INSTALLER}" == "${COMPOSE_TYPE}" || "${INSTALLER}" == "${HELM_TYPE}" ]]; then
+        addText "# yamlFile was generated from db.properties and ha-node.properties config files." "${SYSTEM_YAML_PATH}"
+    else
+        addText "# yamlFile was generated from default file,db.properties and ha-node.properties config files." "${SYSTEM_YAML_PATH}"
+    fi
+
+}
+
+setHaEnabled_hook () {
+    local filePath="$1"
+    if [[ "$(checkFileExists "${NEW_DATA_DIR}/${filePath}/ha-node.properties")" == "true" ]]; then
+        setSystemValue "shared.node.haEnabled" "true" "${SYSTEM_YAML_PATH}"
+        logger "Setting [shared.node.haEnabled] with [true] in system.yaml"
+    fi
+}
+
+removeFileOperation () {
+    local backupDir="$1"
+    local file="$2"
+    if [[ "$(checkFileExists "${file}")" == "true" ]]; then
+        cp -pf "${file}" "${backupDir}" || warn "Failed to copy file [${file}] to ${backupDir}"
+        rm -f "${file}" || warn "Failed to remove file [${file}]"
+    else
+        logger "Source file [${file}] does not exist in path to backup and remove"
+    fi
+}
+
+_createBackupOfLogBackDir () {
+    local backupDir="$1"
+    local accessLogbackFile="${NEW_DATA_DIR}/etc/access/logback.xml"
+    local artiLogbackFile="${NEW_DATA_DIR}/etc/artifactory/logback.xml"
+    local effectiveUser=
+    local effectiveGroup=
+    if [[ "${INSTALLER}" == "${COMPOSE_TYPE}" || "${INSTALLER}" == "${HELM_TYPE}" ]]; then
+        effectiveUser="${JF_USER}"
+        effectiveGroup="${JF_USER}"
+    elif [[ "${INSTALLER}" == "${DEB_TYPE}" || "${INSTALLER}" == "${RPM_TYPE}" ]]; then
+        effectiveUser="${USER_TO_CHECK}" 
+        effectiveGroup="${GROUP_TO_CHECK}"
+    fi
+    removeSoftLinkAndCreateDir "${backupDir}/logbackXmlFiles" "${effectiveUser}" "${effectiveGroup}" "yes"
+    removeSoftLinkAndCreateDir "${backupDir}/logbackXmlFiles/access" "${effectiveUser}" "${effectiveGroup}" "yes" 
+    removeSoftLinkAndCreateDir "${backupDir}/logbackXmlFiles/artifactory" "${effectiveUser}" "${effectiveGroup}" "yes"
+    removeFileOperation "${backupDir}/logbackXmlFiles/access" "${accessLogbackFile}"
+    removeFileOperation "${backupDir}/logbackXmlFiles/artifactory" "${artiLogbackFile}"
+}
+
+backupFiles_hook () {
+    local backupDirectory="$1" 
+    _createBackupOfLogBackDir "${backupDirectory}"
+}
+
+migrateArtifactory () {
+    creationMigrateLog
+    _pauseExecution "creationMigrateLog"
+    checkArtifactoryVersion
+    _pauseExecution "checkArtifactoryVersion"
+    startMigration
+    _pauseExecution "startMigration"
+    setSystemYamlPath
+    _pauseExecution "setSystemYamlPath"
+    createRequiredDirs
+    _pauseExecution "createRequiredDirs"
+    symlinkDirectories
+    _pauseExecution "symlinkDirectories"
+    copyDirectories
+    _pauseExecution "copyDirectories"
+    moveDirectories
+    _pauseExecution "moveDirectories"
+    trimMasterKey
+    _pauseExecution "trimMasterKey"
+    migratePropertiesFiles
+    _pauseExecution "migratePropertiesFiles"
+    migrateXmlFile
+    _pauseExecution "migrateXmlFile"
+    migrateDefaultFile
+    _pauseExecution "migrateDefaultFile"
+    migrateYamlFile
+    _pauseExecution "migrateYamlFile"
+    updateSystemYamlFile
+    _pauseExecution "updateSystemYamlFile"
+    cleanUpOldDataDirectories
+    _pauseExecution "cleanUpOldDataDirectories"
+    cleanUpOldFiles
+    _pauseExecution "cleanUpOldFiles"
+    commentNodeId
+    _pauseExecution "commentNodeId"
+    artifactoryInfoMessage
+    _pauseExecution "artifactoryInfoMessage"
+    endMigration
+    _pauseExecution "endMigration"
+}
+
+initialize
+main
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/files/migrationHelmInfo.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/files/migrationHelmInfo.yaml
new file mode 100644
index 0000000000..016bea02d9
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/files/migrationHelmInfo.yaml
@@ -0,0 +1,27 @@
+migration:
+  product: ARTIFACTORY
+  oldDataDir: /var/opt/jfrog/artifactory
+  moveDirectories:
+    map:
+    # Note : $JF_ROOT_DATA_DIR will be prepended to the sourceDirectoryPath value only if relative path and $JF_ROOT_DATA_DIR/var will be prepended to the targetDirectoryPath value
+    # map should be in format example: targetDirectoryPath=sourceDirectoryPath
+      backup/access=access/backup
+      etc/access=access/etc
+      data/access=access/data
+      work/access=access/tmp
+      log/archived/access=access/logs
+      log/archived/artifactory=logs
+  linkFiles:
+    map:
+    # Note : $JF_ROOT_DATA_DIR will be prepended to the sourceDirectoryPath value only if relative path and $JF_ROOT_DATA_DIR will be prepended to the targetDirectoryPath value
+    # map should be in format example: targetDirectoryPath=sourceDirectoryPath
+      etc/artifactory=etc
+      backup/artifactory=backup
+      data/artifactory=data
+      support/artifactory=support
+  cleanUpOldDataDir:
+    # Note $JF_ROOT_DATA_DIR will be prepended to the map entry
+    map:
+      access
+      metadata
+      logs
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/files/migrationStatus.sh b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/files/migrationStatus.sh
new file mode 100644
index 0000000000..2ad7c9d31b
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/files/migrationStatus.sh
@@ -0,0 +1,44 @@
+#!/bin/bash
+
+statusCheck(){
+local retries=0
+# Max Timeout in seconds  default ~3600
+local maxTimeOutInSeconds=$1
+MaxRetries=$(( maxTimeOutInSeconds/10 ))
+# Wait for DB to start 
+sleep 30
+until [ "`curl -s -o /dev/null -w "%{http_code}" http://127.0.0.1:8082/router/api/v1/system/health`" == "200" ];
+do
+  echo Waiting for Artifactory to start --- sleeping for 10 seconds
+  if [[ ${retries} -eq ${MaxRetries} ]]
+  then 
+    echo Failed to start.
+    exit 1
+  fi
+  retries=$(( retries+1 ))
+  sleep 10
+done
+
+sleep 20
+echo "Artifactory started successfully...in Init Container"
+echo "Stopping artifactory in Init Container..."
+${scriptsPath}/artifactory.sh stop
+echo "Exiting Init Container..."
+
+}
+
+scriptsPath="/opt/jfrog/artifactory/app/bin"
+maxTimeOut=$2
+bash ${scriptsPath}/migrate.sh $1
+status=$?
+if [[ ${status} -eq 1 && -f /tmp/error ]]; then
+  echo "Migration is not supported ...Exiting Init Container"
+  exit 1
+elif [[ ${status} -eq 0 ]]; then
+  echo "Waiting for Artifactory to start in Init Container"
+  /entrypoint-artifactory.sh &
+  statusCheck ${maxTimeOut}
+else
+  echo "Migration not necessary...Exiting Init Container"
+  exit 0
+fi
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/files/nginx-artifactory-conf.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/files/nginx-artifactory-conf.yaml
new file mode 100644
index 0000000000..80613408c0
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/files/nginx-artifactory-conf.yaml
@@ -0,0 +1,114 @@
+{{- if .Values.nginx.https.enabled }}
+ssl_protocols TLSv1 TLSv1.1 TLSv1.2 TLSv1.3;
+ssl_certificate  {{ .Values.nginx.persistence.mountPath }}/ssl/tls.crt;
+ssl_certificate_key  {{ .Values.nginx.persistence.mountPath }}/ssl/tls.key;
+ssl_session_cache shared:SSL:1m;
+ssl_prefer_server_ciphers   on;
+{{- end }}
+## server configuration
+server {
+{{- if .Values.nginx.internalPortHttps }}
+{{- if .Values.nginx.singleStackIPv6Cluster }}
+listen [::]:{{ .Values.nginx.internalPortHttps }} ssl;
+{{- else -}}
+listen {{ .Values.nginx.internalPortHttps }} ssl;
+{{- end }}
+{{- else -}}
+{{- if .Values.nginx.https.enabled }}
+{{- if .Values.nginx.singleStackIPv6Cluster }}
+listen [::]:{{ .Values.nginx.https.internalPort }} ssl;
+{{- else -}}
+listen {{ .Values.nginx.https.internalPort }} ssl;
+{{- end }}
+{{- end }}
+{{- end }}
+{{- if .Values.nginx.internalPortHttp }}
+{{- if .Values.nginx.singleStackIPv6Cluster }}
+listen [::]:{{ .Values.nginx.internalPortHttp }};
+{{- else -}}
+listen {{ .Values.nginx.internalPortHttp }};
+{{- end }}
+{{- else -}}
+{{- if .Values.nginx.http.enabled }}
+{{- if .Values.nginx.singleStackIPv6Cluster }}
+listen [::]:{{ .Values.nginx.http.internalPort }};
+{{- else -}}
+listen {{ .Values.nginx.http.internalPort }};
+{{- end }}
+{{- end }}
+{{- end }}
+server_name ~(?<repo>.+)\.{{ include "artifactory.fullname" . }} {{ include "artifactory.fullname" . }}
+{{ tpl (include "artifactory.nginx.hosts" .) . }};
+
+if ($http_x_forwarded_proto = '') {
+  set $http_x_forwarded_proto  $scheme;
+}
+set $host_port {{ .Values.nginx.https.externalPort }};
+if ( $scheme = "http" ) {
+  set $host_port {{ .Values.nginx.http.externalPort }};
+}
+## Application specific logs
+## access_log /var/log/nginx/artifactory-access.log timing;
+## error_log /var/log/nginx/artifactory-error.log;
+rewrite ^/artifactory/?$ / redirect;
+if ( $repo != "" ) {
+  rewrite ^/(v1|v2)/(.*) /artifactory/api/docker/$repo/$1/$2 break;
+}
+chunked_transfer_encoding on;
+client_max_body_size 0;
+
+location / {
+  proxy_read_timeout  900;
+  proxy_pass_header   Server;
+  proxy_cookie_path   ~*^/.* /;
+  proxy_pass          {{ include "artifactory.scheme" . }}://{{ include "artifactory.fullname" . }}:{{ .Values.artifactory.externalPort }}/;
+  {{- if .Values.nginx.service.ssloffload}}
+  {{- if .Values.nginx.service.ssloffloadForceHttps}}
+  proxy_set_header    X-JFrog-Override-Base-Url https://$host;
+  proxy_set_header    X-Forwarded-Proto https;
+  {{- else }}
+  proxy_set_header    X-JFrog-Override-Base-Url $http_x_forwarded_proto://$host;
+  proxy_set_header    X-Forwarded-Proto $http_x_forwarded_proto;
+  {{- end }}
+  {{- else if or (eq (int .Values.nginx.https.internalPort) 80) (eq (int .Values.nginx.https.externalPort) 443)}}
+  proxy_set_header    X-JFrog-Override-Base-Url $http_x_forwarded_proto://$host;
+  proxy_set_header    X-Forwarded-Port  $server_port;
+  proxy_set_header    X-Forwarded-Proto $http_x_forwarded_proto;
+  {{- else }}
+  proxy_set_header    X-JFrog-Override-Base-Url $http_x_forwarded_proto://$host:$host_port;
+  proxy_set_header    X-Forwarded-Port  $server_port;
+  proxy_set_header    X-Forwarded-Proto $http_x_forwarded_proto;
+  {{- end }}
+  proxy_set_header    Host              $http_host;
+  proxy_set_header    X-Forwarded-For   $proxy_add_x_forwarded_for;
+  {{- if .Values.nginx.disableProxyBuffering}}
+  proxy_http_version 1.1;
+  proxy_request_buffering off;
+  proxy_buffering off;
+  {{- end }}
+  add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always;
+  location /artifactory/ {
+    {{- if .Values.rtfs.enabled }}
+    if ($request_uri ~ ^/artifactory/service/rtfs/(.*)$ ) {
+      proxy_pass       http://{{ include "artifactory.fullname" . }}:{{ .Values.artifactory.externalPort }}/artifactory/service/rtfs/$1;
+      break;
+    }
+    {{- end }}
+    if ( $request_uri ~ ^/artifactory/(.*)$ ) {
+      proxy_pass       http://{{ include "artifactory.fullname" . }}:{{ .Values.artifactory.externalArtifactoryPort }}/artifactory/$1;
+    }
+    proxy_pass         http://{{ include "artifactory.fullname" . }}:{{ .Values.artifactory.externalArtifactoryPort }}/artifactory/;
+  }
+  location /pipelines/ {
+    proxy_http_version 1.1;
+    proxy_set_header Upgrade $http_upgrade;
+    proxy_set_header Connection "upgrade";
+    proxy_set_header Host $http_host;
+    {{- if .Values.router.tlsEnabled }}
+    proxy_pass  https://{{ include "artifactory.fullname" . }}:{{ .Values.router.internalPort }};
+    {{- else }}
+    proxy_pass  http://{{ include "artifactory.fullname" . }}:{{ .Values.router.internalPort }};
+    {{- end }}
+  }
+}
+}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/files/nginx-main-conf.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/files/nginx-main-conf.yaml
new file mode 100644
index 0000000000..6ee7f98f9e
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/files/nginx-main-conf.yaml
@@ -0,0 +1,83 @@
+# Main Nginx configuration file
+worker_processes  4;
+
+{{- if .Values.nginx.logs.stderr }}
+error_log  stderr {{ .Values.nginx.logs.level }};
+{{- else -}}
+error_log  {{ .Values.nginx.persistence.mountPath }}/logs/error.log {{ .Values.nginx.logs.level }};
+{{- end }}
+pid        /var/run/nginx.pid;
+
+{{- if .Values.artifactory.ssh.enabled }}
+## SSH Server Configuration
+stream {
+  server {
+    {{- if .Values.nginx.singleStackIPv6Cluster }}
+    listen [::]:{{ .Values.nginx.ssh.internalPort }};
+    {{- else -}}
+    listen {{ .Values.nginx.ssh.internalPort }};
+    {{- end }}
+    proxy_pass {{ include "artifactory.fullname" . }}:{{ .Values.artifactory.ssh.externalPort }};
+  }
+}
+{{- end }}
+
+events {
+  worker_connections  1024;
+}
+
+http {
+  include       /etc/nginx/mime.types;
+  default_type  application/octet-stream;
+
+  variables_hash_max_size 1024;
+  variables_hash_bucket_size 64;
+  server_names_hash_max_size 4096;
+  server_names_hash_bucket_size 128;
+  types_hash_max_size 2048;
+  types_hash_bucket_size 64;
+  proxy_read_timeout 2400s;
+  client_header_timeout 2400s;
+  client_body_timeout 2400s;
+  proxy_connect_timeout 75s;
+  proxy_send_timeout 2400s;
+  proxy_buffer_size 128k;
+  proxy_buffers 40 128k;
+  proxy_busy_buffers_size 128k;
+  proxy_temp_file_write_size 250m;
+  proxy_http_version 1.1;
+  client_body_buffer_size 128k;
+
+  log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
+  '$status $body_bytes_sent "$http_referer" '
+  '"$http_user_agent" "$http_x_forwarded_for"';
+
+  log_format timing 'ip = $remote_addr '
+  'user = \"$remote_user\" '
+  'local_time = \"$time_local\" '
+  'host = $host '
+  'request = \"$request\" '
+  'status = $status '
+  'bytes = $body_bytes_sent '
+  'upstream = \"$upstream_addr\" '
+  'upstream_time = $upstream_response_time '
+  'request_time = $request_time '
+  'referer = \"$http_referer\" '
+  'UA = \"$http_user_agent\"';
+
+  {{- if .Values.nginx.logs.stdout }}
+  access_log /dev/stdout timing;
+  {{- else -}}
+  access_log {{ .Values.nginx.persistence.mountPath }}/logs/access.log timing;
+  {{- end }}
+
+  sendfile        on;
+  #tcp_nopush     on;
+
+  keepalive_timeout  65;
+
+  #gzip  on;
+
+  include /etc/nginx/conf.d/*.conf;
+
+}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/files/system.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/files/system.yaml
new file mode 100644
index 0000000000..ac876432eb
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/files/system.yaml
@@ -0,0 +1,186 @@
+router:
+  serviceRegistry:
+    insecure: {{ .Values.router.serviceRegistry.insecure }}
+shared:
+{{- if .Values.artifactory.coldStorage.enabled }}
+  jfrogColdStorage:
+    coldInstanceEnabled: true
+{{- end }}
+{{- if .Values.artifactory.worker.enabled }}
+  featureToggler:
+    worker: true
+{{- end }}
+{{- with include "artifactory.metrics" . }}
+  {{- . | nindent 2 }}
+{{- end }}
+  logging:
+    consoleLog:
+      enabled: {{ .Values.artifactory.consoleLog }}
+  extraJavaOpts: >
+    -Dartifactory.graceful.shutdown.max.request.duration.millis={{ mul .Values.artifactory.terminationGracePeriodSeconds 1000 }}
+    -Dartifactory.access.client.max.connections={{ .Values.access.tomcat.connector.maxThreads }}
+{{- if .Values.artifactory.worker.enabled }}
+    -Dartifactory.workers.addon.support=true
+{{- end }}
+  {{- with .Values.artifactory.javaOpts }}
+    {{- if .corePoolSize }}
+    -Dartifactory.async.corePoolSize={{ .corePoolSize }}
+    {{- end }}
+  {{- if .xms }}
+    -Xms{{ .xms }}
+  {{- end }}
+  {{- if .xmx }}
+    -Xmx{{ .xmx }}
+  {{- end }}
+  {{- if .jmx.enabled }}
+    -Dcom.sun.management.jmxremote
+    -Dcom.sun.management.jmxremote.port={{ .jmx.port }}
+    -Dcom.sun.management.jmxremote.rmi.port={{ .jmx.port }}
+    -Dcom.sun.management.jmxremote.ssl={{ .jmx.ssl }}
+  {{- if .jmx.host }}
+    -Djava.rmi.server.hostname={{ tpl .jmx.host $ }}
+  {{- else }}
+    -Djava.rmi.server.hostname={{ template "artifactory.fullname" $ }}
+  {{- end }}
+  {{- if .jmx.authenticate }}
+    -Dcom.sun.management.jmxremote.authenticate=true
+    -Dcom.sun.management.jmxremote.access.file={{ .jmx.accessFile }}
+    -Dcom.sun.management.jmxremote.password.file={{ .jmx.passwordFile }}
+  {{- else }}
+    -Dcom.sun.management.jmxremote.authenticate=false
+  {{- end }}
+  {{- end }}
+  {{- if .other }}
+    {{ .other }}
+  {{- end }}
+  {{- end }}
+  {{- if or .Values.database.type .Values.postgresql.enabled }}
+  database:
+    allowNonPostgresql: {{ .Values.database.allowNonPostgresql }}
+    {{- if .Values.postgresql.enabled }}
+    type: postgresql
+    url: "jdbc:postgresql://{{ .Release.Name }}-postgresql:{{ .Values.postgresql.service.port }}/{{ .Values.postgresql.postgresqlDatabase }}"
+    driver: org.postgresql.Driver
+    username: "{{ .Values.postgresql.postgresqlUsername }}"
+    {{- else }}
+    type: "{{ .Values.database.type }}"
+    driver: "{{ .Values.database.driver }}"
+    {{- end }}
+  {{- end }}
+artifactory:
+{{- if or .Values.artifactory.haDataDir.enabled .Values.artifactory.haBackupDir.enabled }}
+  node:
+  {{- if .Values.artifactory.haDataDir.path }}
+    haDataDir: {{ .Values.artifactory.haDataDir.path }}
+  {{- end }}
+  {{- if .Values.artifactory.haBackupDir.path }}
+    haBackupDir: {{ .Values.artifactory.haBackupDir.path }}
+  {{- end }}
+{{- end }}
+  database:
+    maxOpenConnections: {{ .Values.artifactory.database.maxOpenConnections }}
+  tomcat:
+    maintenanceConnector:
+      port: {{ .Values.artifactory.tomcat.maintenanceConnector.port }}
+    connector:
+      maxThreads: {{ .Values.artifactory.tomcat.connector.maxThreads }}
+      sendReasonPhrase: {{ .Values.artifactory.tomcat.connector.sendReasonPhrase }}
+      extraConfig: {{ .Values.artifactory.tomcat.connector.extraConfig }}
+frontend:
+  session:
+    timeMinutes: {{ .Values.frontend.session.timeoutMinutes | quote }}
+access:
+  runOnArtifactoryTomcat: {{ .Values.access.runOnArtifactoryTomcat | default false }}
+  database:
+    maxOpenConnections: {{ .Values.access.database.maxOpenConnections }}
+  {{- if not (.Values.access.runOnArtifactoryTomcat | default false) }}
+  extraJavaOpts: >
+  {{- if .Values.splitServicesToContainers }}
+    -XX:InitialRAMPercentage=20
+    -XX:MaxRAMPercentage=70
+  {{- end }}
+  {{- with .Values.access.javaOpts }}
+  {{- if .other }}
+    {{ .other }}
+  {{- end }}
+  {{- end }}
+  {{- end }}
+  tomcat:
+    connector:
+      maxThreads: {{ .Values.access.tomcat.connector.maxThreads }}
+      sendReasonPhrase: {{ .Values.access.tomcat.connector.sendReasonPhrase }}
+      extraConfig: {{ .Values.access.tomcat.connector.extraConfig }}
+{{- if .Values.artifactory.worker.enabled }}
+  worker:
+    enabled: true
+{{- end }}
+{{- if .Values.mc.enabled }}
+mc:
+  enabled: true
+  database:
+    maxOpenConnections: {{ .Values.mc.database.maxOpenConnections }}
+  idgenerator:
+    maxOpenConnections: {{ .Values.mc.idgenerator.maxOpenConnections }}
+  tomcat:
+    connector:
+      maxThreads: {{ .Values.mc.tomcat.connector.maxThreads }}
+      sendReasonPhrase: {{ .Values.mc.tomcat.connector.sendReasonPhrase }}
+      extraConfig: {{ .Values.mc.tomcat.connector.extraConfig }}
+{{- end }}
+metadata:
+  database:
+    maxOpenConnections: {{ .Values.metadata.database.maxOpenConnections }}
+{{- if and .Values.jfconnect.enabled  (not (regexMatch "^.*(oss|cpp-ce|jcr).*$" .Values.artifactory.image.repository)) }}
+jfconnect:
+  enabled: true
+{{- else }}
+jfconnect:
+  enabled: false
+jfconnect_service:
+  enabled: false
+{{- end }}
+
+onemodel:
+  enabled: {{ .Values.onemodel.enabled }}
+  {{- if .Values.onemodel.apolloYaml }}
+  apolloYaml:
+{{ toYaml .Values.onemodel.apolloYaml | nindent 6 }}
+  {{- end}}
+{{- if and .Values.rtfs.enabled (not (regexMatch "^.*(oss|cpp-ce|jcr).*$" .Values.artifactory.image.repository)) }}
+rtfs:
+  enabled: true
+{{- else }}
+rtfs:
+  enabled: false
+{{- end }}
+{{- if .Values.topology.enabled }}
+topology:
+  enabled: {{ .Values.topology.enabled }}
+  database:
+    maxOpenConnections: {{ .Values.topology.database.maxOpenConnections }}
+  port: {{ .Values.topology.internalPort }}
+  extraJavaOpts: >
+  {{- if .Values.splitServicesToContainers }}
+    -XX:InitialRAMPercentage=20
+    -XX:MaxRAMPercentage=70
+  {{- end }}
+  {{- with .Values.topology.javaOpts }}
+  {{- if .other }}
+    {{ .other }}
+  {{- end }}
+  {{- end }}
+{{- else }}
+topology:
+  enabled: {{ .Values.topology.enabled }}
+{{- end }}
+{{- if .Values.event.webhooks }}
+event:
+  webhooks: {{ toYaml .Values.event.webhooks | nindent 6 }}
+{{- end }}
+{{- if .Values.evidence.enabled }}
+evidence:
+  enabled: true
+{{- else }}
+evidence:
+  enabled: false
+{{- end }}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/logo/artifactory-logo.png b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/logo/artifactory-logo.png
new file mode 100644
index 0000000000000000000000000000000000000000..fe6c23c5a7f87edaf49f883ffa99d875073e2285
GIT binary patch
literal 82419
zcmeEu_ghri(zUjr(D-PRRRmf@LCGSLp;Zu&EGjt&2qIB(#vYX@K~O<57!VPVoP&~8
za#C_oa#AEp_-Z%Ky>q|&{t5Sod1eMU=j>CvcGap?t4@HLiX8R`cGs?5SOs~RE4y~>
z{R{m=fq|cdkh!+QzbNhGwH<ct;ysT3+3osL+IiQmySo%*&R=!iJ=5<ObFK3$|J<M<
zUDk<c<75Q`4H?{dna7-${ey3HkO|$cmI<z2zI?X&h>7qG?EbRjWh(<WCiwRYDoJm2
zt^DxzjXXCy<K<lB;HH1LX(lH=Z*FO(tlN7mwrsmXV@vMtuH6_i3LKvB@BbiFW3~;e
zXD#FZ`&YY&8XxV#|NW=``U}E0%tyONv{e7N&ELNx99B8-ANSw+g})x*Ft5Gw?*Du?
z>35t}4ga+$_{AeC&MH|I?!WK*&sE$M5&b`&jJMx?v#>sZ{GTuP=jz1$9Q*!{C(H0A
z?q?Lu+V%fg1YPua_}l;SWMVz}<6$-qhJP;Rk3H|6i9Py%JQ-JX_l(}RYRvy(5;fn5
zJ^#m(*%;M)gJQLI{r~#}%lT+$|9?FBf1B}N?(@IR_z!RY-^uu|v;4m>^&g?<e_`ss
z0_*>B#(!j>|0VGMf*k)#;Qx_$|A(gj3;+EO+Wtr4{ZD9%Prz_QhqAsNELo{;y5`4_
zuw}cRaYw`D`u*)%tMxjL=|SvvS;6`f%}9x*C7+7z+Y_TX`wS;4-qZTnuUB}S+?=`4
zd%rs&{&!j?(|&2scVl_&Ss#VB7af0Tm(=<6zw~k{xyUgct@_O&<YDxmb>LC}j>q;G
zQ}1lmB*QHmORQ{~liX9j0b%jSxwY1tXRj6x=x;`<&ANNPuSz02XSL3gbfwE@#>M8)
zVsOW%uu<R2g>lwsZ_7jVR8*{#_psMK@K?UEPVjrr`*pk1_j%ff1>GK<Hpw7&)jv6f
z^AS8WVCcb#od^=n(bD2>@3R@dppcchtQ7xl_LCaX-Q;UdQu#U0<sr3%DP6Z~Q>QJd
zomQWIOq-8iZEx=^R{tbN_Bx<<TgYX;qtlPUPfTCK(&XpZ_0Ye8-b*MOxHgYY?A|$(
zxD-NC3&UmEBqO?Vw)L7?mjS)4I`eVKg`r&U;T$7s`gHp*GnH@Vx82>h$H%tUZMh6q
zyI-w*=r-zRF>p>S7i$V&2>N5Ru(MEDy=e5``cuTn(o(Qm>v|g*tg75x9heBBV)Zf|
zo2`gicz%?jhDPXH$w`ClFQ3o*82tM3JIyfe-R7q!`xsfoiYjhtWE}gGR0w}TB}F44
zT6}58NRCQ)&r0j&0A|JI=G4BQ4TG9nqMpUGni}p)ycOK)-#Oxn{415eYxW5*y&4}o
z=waSj|0X?wr(e3D*haJN<lyx`aE91H!CCdv?2Y5&oyCjr;8>=MeoRc+31$~)278*#
zd0jl&-{SE31mme6tJf}*+i*_{IQ|Sydc8h36`3-}J?QADd{MEi>~A~}W&kh$t0^v?
z7P$;jkK%r^t}DTOb$Mhmxi|5Lw33CoLO~E4zw5|Sb5n`5=O@>XA=zqC;$N>s2K86s
zDM>aXD#5C58Xv*_MOu}qY+`y#ewo?muQ-!IgQYe>hk53+TgAy8HfO_c5bbh`+8-2Y
zmvGETl%L=#`RmRfvmd5Y^ZhjR;s_0Chvgp;zyns5Gzyu&7)DC3EIi!pbvom--TV3$
zW88%9k90Y+{rgpKVGVT$?5*@2bTtB<_v!!fz-*qx{gJb4LSm%N2ooVLoM?wFdSbh^
zz!${oV>Hz$`N_RnEt;CG08{pn*UL_)0uJG|qVJ=5evxZ5mLnk)VlpHH{bYwbrF=bi
zopdKPEOFsbyR{Hgt?h5N#~0?}+QbW%@OxDMBDhA^?P*^x&zkw#AYN-FU7kuOem`nw
z%Lv}!2|vYGE~$|2m`p3u<?8CalzXtNba{2=y%$&J<qMm#tQ4_ac8cFSQ5f*E9Mmeb
zHM7=GcJ#RabjQNGG3No&ANkuuakqGKZ6u0|Jr|`7^;Rc_0;EL?28QV|4UC7*O!_Y9
zPk!V{u#(I#w|k>@pZOx~-_9clb$?Uk!ttFm)N+{kG=I!4C%sv?bhAVAqSrT`HKCJ|
zGmi<YiF&TPrYnTYDuyTCsNJ0V9DhUik7HM^!Rs{5k6hdN|DjUM@cUQ8yQx?+Jr)B*
zT|C}cq<j=Rr;<r{ea25`ahz$Zd~D%LsDb4CqxV673?c`s5KA^?+SwgTqHkA(;!5+T
z-K>xFIZL(qpP$-wm0BGz{frcy<92mbp<SC!-`_t-IvqEC@!orqo9@QMfwN4rM>UeH
zLy#i-5S(?6S)aDt?#Sr_!cPoaH%A^YP?)OXAAkEm%kqIyvnuEA;vFOY%R8%1)CI1g
ze`L{YX9)ttJxiStE)Ulhlk4_A{B5utc=D1AUX0kAmf_|0V-!O6Q45i%tg63;|Jc8V
z27=Mk7tW;MM9?8u$?xEK9si>%aNJL2?y&x&3!lh-9=99ph#4>tvTxYRJfh3g=C0Rb
zyYqBB296wsnvep?A=>co(wwIwnFcre-->%g8a_=}_kTp=uYvbW`W+y;^4NOoU9pY%
zkr3><{LYz`;R04CJ+o`))sx9|dZHs)qlDeRQ@N;aSj5&)WKrNK63%(KEPYBlz+=Oc
zdvfYsqTnCfTfvKGsZ;HE_vMpn?XIR%O+UvOH(uF(zxL)B8O7u4iQ8XnD{?1X+FgRv
ztlymadj7o8AFI*9#V^$uBS?q5nhh5}u=>@vHMFVp`FND#WnC9s+%BR6DdKo8>kpR<
zmsl3m*vsSY?}RGOER-fV2(F~NsW}oMEBVcrW8+sN9Qb~hUARj)L+&lQ=6kTaJZtSs
zPckd+?4LJgmjiN5)FFw3^b(2Fm<Jbnr!EFnDGz!J49hjVJu^YS8^cUZLH<ka(!rWv
z8LS6Nch-oLe*@3FVt%P&XQ%d&eJC3MV{O-Fo7-j<=O5Qx%|AxK^I(!*uwbW?N?8JD
zm_-hK`LkeoB3z6;slZ6Gbfq??(ONlZxzXEtvVBjj7axxh`6fFd(GrtX&vJP-X=si*
z&77HXbLYt~RA9+Y8n3F*lEVy%3rSHBfy&B%O>UV~wC7E`&9f2kWtf8ClCj3`K6)Om
z+TI8M`V%6q0Bslfld{7L8LHloP<ZFJc-o}{N4BeeUB~^3-9<E}+#m0{Dcx0CKDs*Q
zd35_>_)geGW)gR>U?)9Ok~meYpOCTL+tMHz<g}E*j3LWrU#RSespwmsd%r$4!@T*>
zf9JX@a9u?EZ8g$$HpJ&xztj1izhVv-+)Onv;wGbz;aDiqb_p3=uKDrGWKwE*Qj!!v
z>WjfXUFKg_k#X^o80GZf9OqD<sk9{Fr%V2G_WGa5C`_*<x~$!7Zt^gi8%X7`Zk!bT
zIeBX5YJ?g>PWGxH>*BL8F(Db0E(R+@58g7!Jq#jz#_UNe-(G$bncr=tG;?0HZf6Ij
zP%sspzod-LLICcyg~XNowJJN8lqkN|2geC`4$ML2ioDy?<^a7oM#55dLLYtwJhw=7
zH;D<wl@KhGoQBJv`RFXDt?t!UxxL$0;VyxaeEq84T3hlUuQ-3E+O43?yBzqPIJv+I
z=XG0aHGpI-8J>3~&b=OKhD9bDPA5w7jM2M@eb_$H;fk#y=Z>v)Np;rg+&|DLR+Dge
zu9Vw=orH{P=qL&l6UsbB7QWtd@c3anL`K0bmk38E9x&coXM2yQNJf;LyEO^C5trdj
zdxW#eNo$zMt|YEcLCSFU=*(*<!gSMuZ^SaJ*4$_HD&De{J95Bz4L2T)Hjr?akb(ki
z%}o>1L2EfiwA=Ga_P3d&`21G<O-a242%-1}QsM&y`03#1>6X^UOMfmEhD(cy<LRXT
z9Xd)h3HGb_vf89io2mNqT0uE1ZAg!3s8W7RqNFH4bu4yI3?u28yNDwI0qE=0xky(U
zEhW|P@p|UEtbHFh=yQJnmb0Ly2)*WYvmt^hG{gBS#|~Bu1XtH|yn>}c%PuGTFv|F9
z?(Ly->4rKPSxe|7F;lym)>evooXlg;S#(ko)*-zU?j`un<Kmu^2(l<qb)02cGu_l>
zsc3mL?bZwD?FvzxV`J4YW?)gdQz@Zwe+b&S5n3Rgn|0Vpr|My4el#|d$7}u7Pp&KO
z`sux}?1{&fjr4<_4r{C~-8P>--{>Rkm{S34a`^)<C)$Y@SMU<sj^~#ia*Xx$r+(68
zLdF!t_(ZvEw{1FTxRG^RkX9JB3w(x5=`UW=hK!IO(V5~Z@RTrZ!#*o|dJYGF<ET9}
zaH@>M>UVZ(p1_ZNw#++D(g3MNvCDG;i=M`=jPKhuSCwbmC$?OoUv98;34UmL#mK00
zMS5^yg|@LS!nv=Db?1p%@Wg7B;1J|KgaGp8?s+%MnneVfzAfdPho2^LVm41_dIPjP
zj@_r|S<kT35_tj0f)|_fA{6Z$F0*nuI`}x_!TD>>7U~)5LKncopQ(QFR%|T2Y@QL#
zk{o!RcZ;;g_?vL3PQ~!|Bh*EdC%?|BLt{gTU!yYH1Fu4$!vM&Vs2Cbnmg|;rPwWyQ
zIkJ2v?40|!N;5k3iMKEhG#-$5wzI~$$<cMc>_OKJkbR(iDXErsD}@tFdKF(V|CzJT
zd|@S!_Ze?-<u-m1;+0t9vt?|kRfI>sCihjYxC!wkPMY6iAL%jmZ{aa!DP5Il2Zu&5
zNxOu-x(kycY#**)xcVEGU!PM6fUT)t{DkMk>PVew#SV0I!vO}Z;$|Wtqzyjew#MCF
zQRj(o@owe(=bXXL)u%`yv`0`|V9qBlc;g=Ote+eZuq#A`jo}ZzY2oRHUd_JU`2LM)
zq;!>zRAi`7^-1S7$4W-fjoN#%oO48frw>-2KWwyt788IX(o|F6u?V`M@}#54o^4oE
z3Vbc$V8B|7itavqlJs7yIuKASvC<^3I!AtCx6Q|pGvtMB22Mc$FNry1A9C)P&BiAl
zifq)#R7d8kBnR{H?i#&`oJ78YusYEGwttj<sHynZk}CX+T@LSg#s=`{uLQe?I{?E`
zo^UwhqS84ww2lr+?g8Q7?=3dN9a2+C3E1u!QO<0j{O3?|N8ByPC}aQ%$LnxOj&VLZ
z*2EW7ZzW4-Tyo}0TWaFFN#Xq&1_9eK6UzwikXC856nqO7{MBa2jSF4Ru4JU!=qvrX
zMEY4|q`NFy2b}yn!_NUioS6BQERL=qB#MB?)!gYIoecmg#Wv&hHB}x@mnQ0k;;qqN
z{E2H`lkEV+xMrWpB2(k=YL4)%<cQmFDlufn^dfC`b{#*d%Rccb{ygy#1+}{bb8?&0
z6(h6Pj)w{}2Q9r|J4CX#KT3_4^{o-=Bs|7od6rnynVcMIgvC89%stS(<%24Do@n}H
z{fK+jRm<7TL5fMcF#?pFRW)Qh`_WzK)S(<Y=T;XbUTYZn^piZG2C&i`1xn%%^+y9;
zSz75xPvZ;#uT}U$PC8H-RNT`1^TbqPmvQ?h50VvwF%{45=(;jEcQ>;R?4ZZXQ0iz-
z9mXY~HxuJVP!g&w<<XbVrATYeB8xX%hyf(PEamit^!gO+u)VzJBa%pw8a6Y!_W7{r
z{^74~HN}DL2hc)ZXhPEdKL7TJTk_iKgQg<}JJGrUFt_4ZDFRz$6dR$0LY|dzrhx+m
z6DsrHlS%a>9C|=TnZ}>wc&vF;o{=^U(A7sfi)W|MTN7Bw$7Y_<*?eNIsfjs9dM74K
zMXYDlh*!>{Ysgs=9+yu7D_}X4BjNX9dx&;Sg%E2af)!<+!zQ599v`=Im#Ox<k&}@>
z+JG|n^Qn}UU9it#0>t&F#ZU*&=zD8-bX)b1{E?fo@2Yo=ba%*YE9?3%7Oi$9Pf>(r
zX-6xY9D`*QlVek`0Q36{oUEVnQU#-YMK(fLXgRVp?7MeTig}8JcuXOk^OiVRnxe-(
zsRVaMfh#uhHi>T`Tqlo@a&RduI{!xHo)`qC-IyX2PHN6FvBT}cxz&0dtva%)0UXs&
zbtc{+x!ne4cx>-5!#<}*j&RSt9m2?^>SN%I2F&_gkpb|;3rXp>d&d#t-1;O)O)}a+
z%<!ds!_NCC#TF+?hvAzptZZ=6_7_~v8CTgAjYXcq!ix!hgkI$`7e63!I7?6F9&(&P
z+lN~PP$QBG2HlOhLv=Pc-qU5t(EW+NPEXpIR?;)1F>pS%Z}l6-^hS?JjR)-X)|=ps
z#P?L~<chM&WUrjPs-;rWjNX?nqgypluR`3r&Z2i{vq*&uJqK^+4QFq$#PtbUNFcA>
z>Ng^k8z)5>P25QleT~i)KtWwh2>s^Sl=GxZS~9=@B{Jto`#p!fFDLM@f4u>Y+4!P+
z^J~)TEWpw91>NMdT~uuccF>mCsl@%=3j8r7zvm#A2s~!Nn6Q2kEh~jwqBtoc#c}6%
zE`Y3xxh6JAt2;(~)paS<*e;#4VG0Z)n-jiI^Pf`1eJb54*aJD?gvlr=lY*%aS=Uhm
zG05Ty<-giUn}xU28QMzqg5q;A!67OExz=66S@5ma!rSPTMHz10O5N@aWORSJWaqSF
z#5T5;w3#+Qb6tI1k4I?>lSoVcx8{JTNBLHy&}gAL;l=l4MQQZHcPk-;Mz>jRKB6xY
zyTind_OKdWm@y?^3*MtXo8YC`|N7?frqZY%f}{<WkE;y6DG3E=c2?f8Pvcf5$I<Db
zfw=U9!axfyH&rxh*b;S7S<URwx18iBT_loO8Kxj@=ygjWzp3*Q$#(xF-mdVdb?g0}
z3QuYBz>dn2_A1PP7;nOhkjAiYN~)Cdv;?{l`(^M)_4XuGcFI2^xk>Q$4R^jQC|}U;
z_4M$43y$C4%bpUKoaQB6aSg6W6?|@puE-~>I#x1$iZ5Gz88nEn;V$BSiu>k1ekC<R
zdFM|4{`}SjZC)5Er0JBxdErm+7MSS}?h5m^<}-FTZ&ILN6B6%XR+P&urn8n5#E(xO
zM2~r)2#?WUd|3d0z?nr*)cpiy6iYl?_xm7*7_`NJb|?Vt%mf9`=hF9F_B^wLlCD6}
z9oduGeh2PR&HHX~_34dv+lJ4bkBMk=b`g0gB+faslo$7BCEO<`#dmH*iQQlbCc+D=
zQ_-o=e-!rlk}~p<S1-er3M~a!A4M4an0C@;TeE}1aF*l)%aE+Ig;Op;eNJSfIx1E)
z4-|mu4E7@_X5A$Squ^JWRa+%1HF=waYR@39YjRRZ1n%glYgC(YXS2>bC5G|zz>fQ#
zImQ2O>i1$=iqmh?w4KKW!RazE>k$FJYSAV}@Hp}Dxv@oPD(@xbU9v#Vg|VN~=km@u
zFH2aGa$G%%$Okz3!_XDwDDL?w6({*eaz-PFup4uj!4){Q;q#Yf6AZ1-qo1rXK;T>1
zU_xQDiJC&ygtK?!1~5B<o>`_l=rM5uBdqD^@L`#+Sv1of83}R<6tHvB4BjN*0colE
zb6Mtu=E)=MVdlj1qdp?8BdRPhLK8o}-ZM1VSWQ!mN33$fTc7D)KEU2QE6!otD7ZEF
z7PxkwO+%;tj6F*p;!A@AwBi-s9;-J1w72v4jf;9S&jFOZf1ngNjwHd*&!v)%Gs|x*
z7bV1NRbW+o+@3Eoin;=KsLX#<aFD#7vPMbY+HjJsz_;RwZ?X3`zr)eLAUWN6qQVDY
zHSlQ69}R%vr9APjKd<)!d3sU$DIUM@+AiOgVf{Sai{p&5G0b~^POi857_N=03Gd%i
z>T-FWcul%~O5zA3F_{WMg7xEEZP~x4IgmyEam3|c14vxDCzQFwJ+1yrks3=QpNIVC
z0{K*Grmye8M-L7@elXJU@g7wH>!9O{VWSH!WBw&h6W_|yg_vOB!VoNXQL?`Eux|=W
zitt!YEj-gno4yDk83iM?Xg<0gwt-VZq*!_iN+rdw_b1WG4CKX0VQ9-^uK(h~!80Eb
zDn6$9DOa5Ee8S!Fybg#^&!bizjkQpV1eKTEEPOwzT$j(H%UVt;ZZn-SpYHvAjr^cA
zf4c2ppzTXetm6|xD@v29HfhU;rTPvZfhQCnhrrD&IS;UhFhxE#7uVx6QxN1moOB)&
zKws!I<H8y*F!WNk0vJN3cIWH9d?B4@Srj(oV~2JhwHC=;UdUdUEb@8lwpsHabj#h{
zr!Ka7j#-T1K_&42eB%6k?|;9}ASK(k5SFv-seqCvextb0mt0=5&Zn+te=CAuPxgV_
zt}yTG;Pq0RR5JaXJA+i#lUOhQW=YDI&31wxKk~3v6pg4>#4QEw9xacIjcujH$TCu_
zc&@tk$CM{VkKc>Wf&)Bc2>~hd)CP(OM=9^m*WXthOg6N*6-KZi|G?3Iq1F1=$88Nq
zU9Ver(vx-FLvAPW7mN)31!Qe3@8|w2ZcY{s3XbT;F3)~N-u-nn;uoU%)gflfo=DRN
ze_+3k*PC{qxY3%Kc~*;txbU`(dXZ&gyhnX;S%u0)RB1*f#Y7+X#lv{KuT0}Z|9X6!
zi_hv+69pP2HB1eCp~D9sYmw}1s*-yJq&#JYN-M!9dr^_Mj4)7w?dtE~cz>}mrkb+s
zHXSR>iqg8aYuJa1b7cjl+eZ_)EPN80TNs8}9DoSJ%Dr1y@Plp$tL{finZ!Z_7^n>E
znp!d}I8pp<5d~{BxqU^=sY&|R)^FCTN`D7=h$aa^K)i1rB_(PuUs&SfN|sWr>mDjC
zJHPhG_aa292Xfg561*bEvo4h}-L9Cx4Bt7yp*s~=Zg`6XV8i(!;%$hwT?Bj3oi}Q4
z6}so;UF|n?g$<QvhKB2(t7o@+405t4zGeozrGhA)-(~f>XZ>rMqW5;%sj@%=0XV&!
zWWFlpcj|sLY7dGBhobP)1Tjlox4Hs?T$m&gI$ncUy=Cb%se9Pf=!gb4Bc;xm7_FMN
z1LT?Zy1?#Hm*^_z2>AG~sY%<+BWu%>n^m-@gTj-K9K$^ztm4O^_c7WpEwht#LF@O#
z6>}fpDB%U-$%aRdsq0CA;|Y^run>{RSb-X!8+fOrCDRw;f7Lp0;ocMntu%W3ETy3U
z)fbT#qcA;7mW*2kB%wo<UevFEMVZtM4(g}ghfI6`G-yN|?YFB0_sZO9OjO3`(^5Ev
z4K@}pMl9K;i{*-R_&ekZAGwVoyO8IyMsyo4DhA%RD&lr=K9z^245rHbV1|W6^xZNU
z5})%AMHNATtP5IZb*s~C#YQdML>0>Wy7;oZk+lcE&Cca^M4Gzb9s@TztYPo4qH;LT
zQ^s}KCMEo9Eg2gPMe}yQyVa(4z*GYAhcHR-hndDyYB-ET9rvvb*VnJfXkLz<O{~0o
zr+dS#)dZrrsFtC10(+P#5!#zo0*h<p6_e7-z069sG1UGS5>;!S2s#HV{%lINC3%<^
z+;NWSHcB6qG`B1)-5?>T>#=}g<;XrT7fR_%i%C2aKJW1$12+)`9mD*s`aslA`0`6v
zEPOT}wyLru&G5j%?OCm+o<QUUZK#$n7i~x6nV$U6t*WFtGi>0<8$t{jFI!8&&o|OM
zuD75C2E-WO<5&ZZFkYgaZ6jrGg{Skt=J1}&j0)ZrY;fE8iX%F`S0gg?FWDme22kXq
z9rOL{!|;f3-gnTjGgMktr|aI+!)|9lgqAPO+$ux7Lk|GLU;P)iDIBliB@|6t%fCK<
z8Vtuaw7KNC>mw+yhBF@YhT2Zu?r~>@J5jKsiloTlxj9&4qOh_f?z>brb<KmYbItS=
zgWbQaswU#<3LGV*trhT0nBfEKs7nK^Q*%FG=>^Dj!}n?pXP?Ced)09wy!6lTbrpL*
z=5QGVNLj;8%P_RTuWYw_ei;-#^E$mk8+TIeDp8Un-_JN#w?5A4@j`Pl)vu!t4Jp&x
z*E_y-l8WcYTEGcZ)8Y{zEItlB;h#loRe|Mm-FRX<W*BR?I#U8Pvm+#^IrcXzH1%&P
zfjr$F__g(1aNe#3kBh4`WRRXK+18fyJ;Vt9joO35FPNZwIZRFAf@1}i&~e(EXZ-rm
z_VvNNp@Yk^t`l;XmKmz>xGVzaHBFnf)vRYM;fuk2ETYGmUFFjOQBa#_jiK$p9{|S@
zd0Ye74e}9ycfng52aoIjvXt<{B)wyj>Y+VdD%-4urKt}9;<XIIV#)8i?+dGkm%^Z7
zts(sVbHj~leo9<@J|Ls~@$LygbFV5P=GtVenssn_&yLIC_4+p*W?w_v&nc=pL{Gdz
zVU_lEVQWfrK6b%yO*H(FMF*zfszI6KcHfm3IizNx8fru*tKUYn{0|CG;1qzbO*WXe
zls*V-xc5Q<J>OgDY_|9g`UeCl#J5S@{_2nNk>B$`flE9nkKfUiZXC}r?ErtM_l32c
z8*7EFt$zSWcM;+r>k^IO?`Mn?`rc~^3=+8jmbxxj@-82}#~!weXtyh&#APaHaqi&F
z$DdhE_w(N-wsIK)-*y6@=|n<kVgNR~EzZ~?vni0>jtO~Se*IEecDHvvIZKqg!`j%v
z{_zs_l6Q$@Dpb%i`}Mun#ZRSNpjVFRd63S~v!azatJEA_QZAl?)N@7nrkD~U1>Q_M
zZ`%LFs%K8-C0rxw)_Jcq()(aTm+D8GOg@u^pME!2|8v`5+0XllrukC6i5{eninm9l
z-0-QC8K_|Rk0P^ynxZqp?qKF?&BdPPctW!P=qox~px=BJN(YXFrTe>xg5=PV1Cs97
zjqw>~;^<*@*S-FADe*-Y*Pemt8$fEHxOH^$7!>dfTBWwm09|Twq8U#JlKM6MoqT==
z)yLe&1za(yG!&tyS;~IaKvyT?*`7zl>f<>3lM;K`uQg=kpgqWgJ;+EI9HPX@7goNQ
z-F6n7cjYxXL;F4J**&wFBi(S`7y7y+A^ULQq)NnqB=R%gU;p`h1Hl+qn7R=N%y*pd
z^HNeHOaY;?o`(~tklB(O8g;U*edo-`1_yijiY@Q<C=j>Hzy)U?!`a9!thbp%KjT@j
z$zydHo|c@qa$m;|<~-WC1n`__1?lLfhj(zuF5*>eE`tu_OvesI=UMZM_`c*4ARB<^
zO8x8<cakuajB#qrqt})Csnuz9G{fXjO>f#IU?dqEPgRhr9GZV;Hi!|}bdH2)9)|ma
zoQ_=qVL}DJ@xVQ<1H2+!J{u80)ML4OgvBN9oamI}i3^n*0=QPpcmCu-3=|%Oe?t)h
z1KI5(p@k>ZBp6Rm2Dd@Ttw?vhF&_}8UGHiFkyH>f{45H>;(~JLFP6&D$u(%FRE=|r
zM`-7hh_hAjtdSfB)U9D;e4WuNYTDL3s{K4D{1U|3OxB!9R^ANWa@I8-;I)t1iY>4C
z7VLxK^hl`5`q9uzFAZBUM|+>K6><`beFV6IHWABpaMQiy9~zhD5Bcazq&cWx;lRcF
ztarvYSkJ9Syw@KLqi|GDe3^c8EaNn5qDub{iTne8&}i#(WL)931q=Y>;YU05soOEI
zDrQ<O7t^(LlM1HZHoe4Liu+8JlEOY(@}VK$AEkrOJg@wCF9`L7a*uZX5>!EL=zg7?
zW1$`o1OQ{=-@~0K<B#e?w~G}6jq_O$Lx^;LH$GvAT5Xx!ZfE-Ton{p$s?*?G^oeTL
zsH+VskVhM%F)X#GT0rRo`Mj(D*H3RqAUMu=@X#OJd8p!SqWb(*Fcql3I~nygmkUuh
zWaIZoX;!hK%*C(Ym=S3WoNG78F~$!cpp<T^>npR<(a!c!8Cb!NB5Y#}rl%347lU5z
z78w+_k*d7ao<iZ@?0~FU{821y858o|R+Ari^1xGeZ+|T8vox57?5-d+GN~Jj8K&*Z
zaZ%+q3%4MV=EbKW*jy8xN7h>*+bWyfv>VS9(Hu5DaUI`Ro?^A=7o3jm|8!~|x<Hja
zWK+6R<zH4+Ue9wZx1^Zd!QPktt^8&AyU))mRTLrA*dVsjyr)uxJ`?$eak>#b&!8t-
z#0A&BpN-pAx2->~9Jm4OnaqinmMhy3w`?^YGA#yI$5V{VXvzD&zM@=$?$ROvcL@>w
zilBll4JTdCB_3Al@o3$*rr7;QeDrIchSCiM=9*ae?ji<J#`4x;->!R~3H5WQPpL#5
zL#>QeW|X#NxPiG5c!yGvoi9N*X%?!RAcs7j>lpIA;ELa$h63r<B#)Iw#D+Z*NI>e1
zH`c>6Qwg}7+7Nwb_Xg+ofs#~wk3&=tPYCRW)!~SU&;Zp|fLkh$UNYI1?d~~R@<Iw{
zK4tI)b)Zr|3dBeq(ptJF!_4Az(u~;sREk+Dez5gL7HL^@s*tf=pXxyUUHO0<bOi}9
z+tX2uUq76X!}pz#)LU7{PCam;u7H;Lb>c!pVe`3%%V#^k#hx6QZ}=3%dXTj(RA`or
zgm^Vl9uJ!$tri<2MNK3k_P6Ns{S`pD<JKuReW_C@!C#`84CN6H^4l@D2MjlFCj@du
z*yVQkt&(q*PGmt|;>f8TBN?3sjBfM84e?q%^b|scDdk6wZ1?C?hf^V9cj5_O*I5>8
zVFfExcF|xV@rXcP9QYpjWaC}xo*z`G31!#*kmglF3*7D>?5h7Yyyx^ds8;GK-Y{h4
zVt|=-b!yPqH<f16c<w#gZY;5k!?`?nqCm1v?@G^T%ES+<hfynuF;AUMx_=;1kR$Z@
zGaL-^!3PO-sLSUgJl(X~-Ol#(`j9FWOV72Eyiqq}MFiF4j4T^{&Bq3Gd!E0B`$!0`
zNV)JSH`%;~u8Jw*Z+jOl9YKJhgzux8X?^BWT@lWZbsuxE`Ov$ug|_hTv6ZlT&hW~g
zdlp%vx(e?5X(Wv@u5M~p>{o5&xw0304(!7VY^BTjBNfQ9k>o08Sr5`bTkURPdwO{&
zBcQwai%^E$o0jjfKTso){c@t(t(a1i&xt>}pG*~=w%NdhHnSYHdG+YEM8{$H15@w^
zUJr-cGO#MG#Ehclq{)KX3U`Jqc7$9uA#i#{rc`^xEr3TK$IWFdv=&zk=>2F6KWaoC
zY-j`k&+{a2beuvOEc{=5Gtn5^QP3d?#ni^M8TBaR#5L#1*WZsr$fpw|<^lyp{6-0>
zeF!*}dF`&_TgTJ=!B_(0EIzuI2Mk`z!Lt6Xb9k(W_k1#%rG0P2P$1|~MP<8#&v()N
zCk96y;XWedBqAdB(Dsk()vM(3>$hK<r_>fX1VFmUfJkL8)V~+P!F|lI;?XMogokUF
zHZ-XO<c^-19H&}oe8?Yh7E}gAG87ain<%&G7m1pMa2qJ86?Gl{5>!V=F6=t^W^Plg
zH!VJllen-H%rU+{z~>3KF@&=@`2_1jvwJWBJxh)d5LU@QB*aPS{jLR>U$q+<1D7`u
zl!?W8Ek}I*3V;Ov&$KK;c0qp(@KSAs6oY^Yk&!{l{$06Ph$ju|H(KBzt1Zox?i-Of
z5JX==5LwBi?`aDQMFOFJ=mUwS*xcN_!UF-@AMj27D=L#^KZib;zDh6v{FRuCfdZZd
zv|=Km4aPOx{PsWWo)ost-Asn}Kr!y2@@o(~;nE1J*|mTa=@$ReD*QsW9=hoaIKt}$
zM_1fsekhhs;^y#>Kr2?#SFc;`Gbb7|P&7C2tSagCI4f<QK(daHb^&omm?2k9VunMj
zKof9w?BzSVEXw;0l5KXJliII+z&Yf739CI@{%!|ro&6a&&4>u=eMr4<#$K5Z+1Lga
z<k*}rK#Ny9O?-C<i3kMv{(2B3H#8R@tq=Jp^@^e%`0EQzq%uK5P1lgl<Z5ny&_qo(
zDoLW$WDgr2F31Qy2SPO2rA$wOvG1970wk(;voq7zZ`Z3+j7x~HSD<-qn@Y75%>)ub
zyA}pEGa?j>LJCE%_|QU;@ZfZcatbAmGrbZdyn$}RTzdO4P)nQq{-OL*nFlpb!mvbW
zdhd_%R^0DrbIh3G^_QRO=dN_18cXdoyvvn_An-dK^3w&LM;F623ty9iVO2WwoBMsl
z(tp1|z9dhy+t<19IHvrGrmWZgZtqwOM4&TH=CW*pDk;b&sDN?&9AQ9%55o~H#JN1y
zlN+OKtBXcL#kwE^h)${Rr~LZf@gDHml=tO?B|!Y~I`msls79jZ*Ox%D+~mE6MRmr%
z8<mG~T56KVxg|&SCIjhHD`&5DqxSfoXBLP|2lNVr#y$|oz3_7kt~=ENOg0FbPD)HW
zBJ$)Pt-%0VEjK%LEyvoTT6(T4#79AX-RGDU_2MUS5T4GQ#!0zsq>vw!bvNpEjYWEd
z11`Hh-^xG2fN}+tctJSLb~xgf@Z4vs>;;=T)3sVD_k;9l;eG9A_7udn<7F`b6OL*v
zZBB$N=!9q(RTf%0ciJecuTP$an}p+`fWNQZvJXQ>!-IPo1rn>1O-|@GrTM=mi^qCo
zIAWXN2;kc>&~(}a)}fVoJnv{qCEv-73Bu-p635&3=!DdR>&ou!JPPF|Eyc>yawx(_
z^;!ezA60@F#xQ$3?cw(nqzA;m!~pqL0%9O)<^>_96lkCbgCIr0f@SI)EN29bI}Yl}
zV92f<w*$JUOvAmd=qWuH8*$-SAv7yHOyfgPmfwdNX8%3%LGHNNjO95MB2)plZb?47
z7b^r;0?h?khQdD@{w@O1M^)y7^y8<mzvU$RpzJ@Usrtz@@Ca%lpTYAxXkOdS8Vnd&
z&1@7Qj|VVrnIyD_lC+2ZARgeoeFHiTVV9w+IQ!s1Xmyb{Jr|Y;!fAkGcBeJez_IaR
zOvH;EE7HKu(V6eIt~~{{M2bU1&R*#75i<bqJM}k-L+Sgj5{a0bo}_8XGNQB&tlLMs
zz$1v!&1P2<xrV$Ra(a-rSc_3C2ABsyMGFg1li~a?z&fzktig3{hypQN0HChDO{V(O
zK$&d1P=*fd7TJgA4M>OHs){}GP{ZhFh``z>z2hj+a==*@Bi_^i<prMKa^*f$$s>C2
z0<XysA?bTT*_?ktm&LyG5PBC$(6~MYNntA#$87OO&eEq4qDpFho0;<o1|$Ffx0JK~
zFNC{61;EzS`9@2Y4k>9H>$=R2QImQ&YYbX0u4}OOd?S<>H11%3rLT6qdT#kM?!zVE
z%!yQ3&MN(|T8LNmF_p`sF%oZinr^z^F)1ru{Q)f&H$|OM#BX0GpNh6jFkG;^(@dum
zqzp=)gHZh56cP<an75xARIMTLD_|LB;zCqDsF+0Zzo!yp=_WMYmU82sd~J|D4h`#F
z#BC0K?_S3EUbSjLvsmQ^p|88ovTXVYPHw|H6NY@iKrb+`5h_Bt9nvD{hOw3!S%D{T
zHe+Qg)hY@~s70eq|K*P7B9uF)yR<Kg177Ah3B5HlAwkkg^Z`{)N5{BOqm_WKe04im
zU38j0jT6P8pUZC^ftK%Ii&><+f29d>c%c1Ui~MH{sE4EnAG-&`L)Pelw3+W?5=A}O
z3#T~7PNdrPGXetjI%u3jg{m1%4A6#msJiD82&1;cKvsS~t&V*Pmomb^DJcwv_Fvc?
zB4uy+Lm$c0#=_*@fUiKlBp4s<OKPT$QyhJr>Frv3*Ct-3RML#NFu4S!eyrd#0|bFo
zpnS6z`{Ap6mw?mqHuBEQRx~kqi0xJ;x@cDP>D+pPFcm&bm1xKJmvH2ER!j<wZKyV0
z!rY|l(UY~$TF+5!p$(D1oVW@N88_-L`X!Any2b_%Tm<#toW&bT^6*jKjzxE|yFol$
zQo971P*{~~fF%V*P~U@s2CkPk5j1myz5Vn_i3x6Fj)l6@x%ovxP0>1CS`4P@)lynU
zuhSU&I-(!Qev)Jy5GY(0zm3e^!Gd;3)k{%7KBDUj>@E)NEg<V6T8cq)N@2zzhyGL7
zg~<(|hIdsmm^;&Xm*fJ;NUXxgvu-V{Du5OPst`-ATz$vun@B8r7>xUAm5hmHH)b4L
zn*FUoL^Iad2~fVW8E~5p9IZPtzM<U8FX;);4lNZQKQbSzVf5=G;|tUj`UwS0<oH)%
zXN()&s`04!oeZIxsgTNkTA$){vx_Y49Z_fzP^vS9WUPZo(P{kQXxSa?RqM^Sg6)>N
z2wS2Ku|~TEKWYXWwU%omNq$iaUD_v%YSZB>y^b>@v{R@{3+|j-+3I^SwDCyC_lOW-
zC}B%BvSCI<5j8}<X~1m~7HvAnesaDWuU=kw-6*2@%-BhL2&6py;wM8rQc=;I$b<n!
z3Xld9KU3?NM(I!ubdM#rC)jEQP<$I|?hX{SJAj1d7%u+v5_Abh^b7+#g@|^7g_9+<
zPR6&bN%{t|CR`NEvn<?5%ZR&I%B4ayRGpt+Q#3ctV1<bIug2;(Z9vvc0`u=hG@lwf
zDGvd9%mYcY#P}Q3C4zF6{12sG?0oWPh6wp3UY3E)$u4wa+fKk*GS=F_M#XFk&3Vs9
z^fb^yhI8iMSV*)zp<HHx*T&%&D##BcNG!luguXbdn`SJ=<lN?{k7}F`N^PUyv4<0k
zs*V#7Ac7N1Gyd0=x4aakMH`{%53Wz{ybA<`@`cr@@Ija1$KQCs&$PNspfykv?Kq3_
z+8W%XA>p_rXq=}p;vu$kFt!t$rjRAZ^@nJjT|eqU>Qdqg-&KNueJSi$Q+%|^fOlo#
z{A^mU*Rbd>rvKdO*i$G4g2Euw?bIo~6f&FCQuoQNBJ-x`1mrJw33tfHX5+dFMs(xE
zB)^K75%;|s=xcG$E?mqIf;+LJ&3?9+tO<3OCTOabVQ9g`KnB}=ide$2<v9L>r$5eO
z9+C%m_$;NBXueI$Dy#Dp`_0iPas#bZ`QfWcWzT-0mi7w+xYLrxEf569Y7PMatS$AV
z%h14tHXi*(+&`|Y&j&dfX&8r-uvM=H+fp^21e-7*PghqeL&BvnPQYI>%6?4%>5dXX
zyeska*w{;lln=pr5~W4ysUi{S^rU@i5g;z))k!z`yw>30W~w`dW9fbeI6Or86;M6@
zEFVCL1u`vY-g7ivd#=UINb$W@wR?N^g2T8I=|;Fz=wB=kOlgXF_hjGvj49C6_kb?%
z3(-WRNqCF|c)42u-_=Y((NcS(eZ8jClrG~Q2BskdELT?9REx&YVL}D>$@xRH@$LQZ
zBO)7(8CGZC8UhC>F8cBuO1rlqyj&5yCU*HQv``?ZD18o+9Tww+u4v&@%Seb)GD&B5
zm(YQMKKCTJ#6Hy<=Yq6{`a69B#C9X$Gw}-2m|QjhL>|b;?_}=w`I8LX!EXFM>%2&L
z(W*wqj&h{s8bZnUGYQTMGG;j<<R5sr(dKssEJ?u&u_Lh3+Wy=D_FB&f8q8Aknzcoj
z=+Z#bp*rg@@og(a^(D`a*GOP~PdOiq>&v;9A{bMHD6WFEY3JIAy~)UrRbZz?@@hbD
ze;TR7ka)SNGf9h?&K0K7ipOZxl}nv>?z2J`BFyXovtG;+sb9HOi2G8Os8%*+2Y$H=
z!^xyUouR^0t;gVG;ukjl@*CA-4D38ljAYo%f0<rHMLWeq3Rn1ZL}>WK5ZCljYNOd5
zEP|b1+6Z`fscPtSGlu3scT|Q`4Rq@wn)i*J)bM?VML_5bS6l9k@zE(Dz2NON{{!(u
zRtzbX-<WU8Mw>RGccF$e84$HM4kFqoq<5JIom=du^I1TPxLiMw*UH<RDvUgL7crc|
zGkYuDx%tjHe{Fo<nhVG)!@u22gcbf9e&Hf21I9*OluM<?z9-r-G8SgNt)ufP46!(f
zBasP#+-gPNBLH3TdcRuijUx9JdZ~GFx`C}Z7rD|u7&QU1J{sOJC%ckifKSE{a%!S<
zt&y{Vj+H`bP$&axj@kI1R=AYPX&V~N=(6)yk#m5s%2R`f29FD^T(vf=F503^(<eg3
z!z0Zv9siY)q{4&YgLjGUmsWXAOE{#Ms!t)jH({pt3B8CixX8KNL|{c;Rfdelqys?z
zozG+m;m2B}_)V0<TOQKMQ4=GABxEJ6w79=L0c%V<0hA*+OeF7d8H6V9fX4@pzJ}vE
zLU-%7b*b%?au&~TvfG+QEvwVcEQ2)W2mE)GG06;H93302M>8x|*l*qYLdNn;;N8pg
z6H{*8Qs5tKfOUc%YmUO^vhl<2ePQs#<Z<x>`@HES7B16G(vLsZG18pv0$f+vuaN|6
zSv6|3e5r!{0S?&mZ<^}|)n_QZ@?XXiX0d(ZFIS*1{v(CxzvEskFs<Y<|Lj+ev#S3&
ze>uEFoijx3A4+AY>Hd$+eS$^?pqC;X?-b8Di<RJC8jG$yuCAQ_$J@`49f<4O{?s6x
z>!Fi-UIOFtuwqVYblCKTuK{dbVmr86+{wkgpdLKYqI1j3sw>g;x@&SS7e7plLgn=2
z^x<m6w}XBVdq32B`}XBbXVnl`5bE<VsL+on?Serhyc#zgKVya4e!Jk~GB6==Rl-tS
zy@%cv5F1EFjwjgfd@={9;}0C~<`Q~R`ZZo)N2m|wOx~-0;TwWhLW@>XnGItjC+H9c
z2U**Q_Ll(rJ4lCY(CwLgzX5+1HURt}fUtUK^_|5gulLhmy{=^Lk%r}fM-<u!YVd1E
z;EgiG-3OrdRzm1#F63x)a(+K2Qgr}C7f>z*FoI6m4NRW0(D3o$*?3-S+&#jooiWT8
zexQ+Yf#0@-00SUS@CHOlLyC|4gG7(P`#>xKnpQ!c(hIr$Zp=%X*OnPxFuUNa8hy_H
zJc^H}t{w45di4y5k4}w^C9qqnMlgpWz&(2ZmgZ1{=*4IqrqLMJM`#gu30KHJ?5jco
z(~=YwCQ=Wl?#;!Zi0G5+h$LGCd0E`P8bw4bCcgSn4`B0BnQyyy3AFMDJHPaV#a6eV
zAraUC9im;#)j<_&mrY#N-g_JdhV#ycU-loC;XnWlOxv2xvm28|B_X`sEx<i=zp${<
zL~!4O-o+ZJHOx*hk)gWp=Zi*ZgAy)op4&^*d@Av5LZ(#|?jL&$2*<s?0Dt78P^1#z
z?nig9HR~G-{Y=>_=;#N=APZ*$@#_rH!i&%Q<Wlb;G7$NMKaOoV2shBX3Zk!M32zv|
znIwaug-J~}r~T9Cj`6ZBwEWVo3Vy8^NzR5)6B3p~VO<7_si0V;&C`2{y|wxdxx;F0
z4zk<uo_14@&%|=W_64B%FkACYHecBo93!<WjCc0Die?}4lLBl6w_&Hek7;RX5H|Ss
zcuG@%V&lfZrov^c7t~e%7;e1GwE$fJ6Rix&JJiJAuLkJ0N)3C?!h{=gv=_2N3k`c<
z&=x)tm1bCj=fBY#X`yfkB+mE(uxL@7`yP%kJ>qPgFiiJK_~u397-=Yc+N8T&MT$-(
zqh>uU(+#t4I&GioM#F=qbc4|IiMBNb%bl|-2Dc}u;Tc<yDppvjq@e&KBX(Vw24P3_
zJ2l#o3mDizA84Ahv)_|KezJ?`NO`q;wiE~mMzJb)$-P97OY4hVlh^E-fPF23d6G|^
zj!fJ{I*L`X+xxjXg6<>qE6L&f0<Z2!k_S_;UqKlb^<CLgbSeUM5}^kepoEP>jeu>a
zTO#&>o5>rw%;rNDzEmdCzV!fcfy-Sc)3lFq#Uvds*%eOIrd^n=r;4*KW6480v4b6&
zDg1XFpP{*8&Z_Um(b#apX|fOP>a5S)JUX}pXAR|t#sY0KL`%=orzS`2*ku?swVa;!
zQt^lyyKaKE?WDv-Aemsu3U1*%g^eYQkbOMobEqm?$$t?G#fjCA@~;7(D4BP}h^h2Z
zIp%E;Bbq#VmW=mfKvSY%JvRa4C)!Aq_;cn66Oj%yEJyrQO={kqq#e;CLWYB(iLhj=
z)@!5_1N@yr?{+^7QIE&FmC@WIK&2<@`IB(^rwj+c{3ocV`>NN7lKm=PqUAQw+{RjA
zly?k>KYGjMZ<$RXDhn91qDmN`^%;oBWHiCKf;i-qDr-Ln0gr?rhhwi^WD64`X6Z@?
z+&Fcz+KpVQmtV|@@;PZ-5HVaxI9Hlt#8->w_Zt5~_cAa8>fn74N+mvL3(&~tBCQ0B
z4hP;~K3QFafx<@K(S8EBD)e9&^61!x!H8x_DvuL;i69Vgfm5;`QBMKn1PWiyV{P&j
zFVykeN(r%o?7p&5xN$7BHH>tVc!DjSH}7nNK2%JNs-KI-`y8?~jd82(fBCgN;c<uH
znGZ#Ewq(U6IpB0PoFCV`+n@m>!aTN>m9@OP_XJ6qf~yZC=r0EBd$lCF@^Iz}9QoO}
zr%xo#8~`E=3Aolzo!y00VHOf%Mtwp8Z_DnBC=NwN*oq7|a+f`OKEAVvV3;nB1Awyi
zHX_@n7LPDwf>o-bNz(*0gT5m1(?IMIY9PH)4SR^e;6m&Pkh|`K?4EK`@z0FBsk{+X
z1_dFTbJ{6p+Yis9B3AIRoG&oJf$%0*B;1Ns@SPa0gS<1MW8sIc>tBdH)dD353?wQz
zjZKjB%sBbH%BhQr&{20A`}(z6fC6fzDjLpC@sK9k`iEdrvsY~diWdrrMd=nWEhNBQ
zbYFzTw1S9BMI(8FG~|M-Pp*U+AP|C!EFPU5KSbs&Sythvar2JPnUk1*NiK<26rQ<r
znF8GTU=ef>zt*#oCLe(KXGGsHXcANYZN4A#Jw{r|V{Aei{TOrszxPi`6Ms?8Wb`|0
ztkDa+&4mRF&2w$Xmg}`5Efdrl`o!)?DX+0-J+S^?>7`RfUQW&qAM3$m{x#@os*q^+
z24)3@4n5TdGc3%M{`R6euK4>=7AYm|g<)eImIBTri@}1L+yWaLeH%9p%d=dBXjTSp
zJsBr1$pPHrDe;fST1J$2UZEMQc-XI-#S=RTx;~d+tr1-EJ-+Bx!1%bEN6JmHbePT~
z$^fl+!rk35giwo`{|64aC`(XrtHa!sz?PU{dHok}QxVcToB-94^Zr9ClG9H`$me1g
zOnj0)x2c$N|D$f6WIzK2cQUf7r!?+-hYwb?#hv~0t%_`3sJ)VbB-AYcB<cP=NL!U_
z6nYa$uz1S2L;Y+(7s4k1mX10o#8SPDt;6;>EGvC9U^|Q=G8~?G$Z#h1<u(CstMJ``
zeuEqVj{sBXj<Fj85?yn6;YXH@$HgDyx6-MIV$>2nxB^OFZFy!;Eg(p+hI6%D;u1A1
zu9nyUWu74Gvzw3MTBJzVUQ7}u%Ra4^x0DkVc^xhUCO9Wrv33V{o;jt)nJX!{QXb1^
zWX!VlS^wIz&nNCdLDK;1R)}ZzIvz$%?0ID}CwX){`;5eqJdhDy%C6%_Y344$h72f2
z9~i6_>E16IDg;6&CY>pV2t(j=32cCUX#}uh=kdKLh}5sK@ih(mnYYem4o1vAJoD!R
z3fG9BV)}i}fO-7mvGFX_tG({fPzZkW3OxVJxNIi0<cvOLIRS<9&GP|c?}9D&bk;`Y
z#*As`qn#ABLHRi|-fWhxx960^bLZxO*|kq+j-MnXn!*d5c+MC_U?BtbDRfbe=RbH%
zxEUk;`J%z$ozE21=U3KE59GcHP#&5rs`%(Eb{Klq0cc9H!*OCi@hzoNzczI*&E>=j
zZf^-oN>hoQ$PtMdKKQJ;aXT+h*$R{e{zXb>@4*Af&;tpK;RF>V7_iAKK9|3w(X>bM
z>}D5K&9N_@-q=ArpQ&Q4QcD18#PZo1Gi?E}b({Ign%Bo&l<YFFU&m;Zn8?m>E&vgl
z#S?GOatnCe16`Wt{C@j)ri8y~8G&L2RrBLPv0r?*8`cZ#V=aAE?h-s<1wXWdWPte`
z7BvLPY>@T$$K!<Ito@*rslVoYm^9k~Gl7+$ECuQ&eB4RJ%48l~8H8w}4O~^g$J|G6
zQOy`lc#0@~TdPm6V)w0s*pJ&hJZlHzcv6*CtarxpIl<x;gS=zr^#t9az=7$Vpo`l3
zK{u-9Y-C_X1=qR5CqssLo7@!n5kZaIlo~!R0RmjjCPs-L@Zp&SJH&-5@EkuuNMuJ3
zzQOny9^8YqKB!bC8sB-P={d;Oz2I{dPa_(>kbDk4teFyW_GmF+5>dnDYQc><vjgFG
zU}O9N?D1YP2&M&*3-k*D&Ep;~asoq<1%gNkvnWK>0ifBSd<%-zKJ2;ipafT6Y4he6
z8{Z?TY4NxO@HfvcHtPC&1o(zYMOSUkrMErn+AL>2BCa1@+Kw@_@f401y43W%PjJ#4
zQdl+`lb}WtYO*wKj41sosHNcy)(CDu;m(_K*zC)W!(?KHZQdOplRVUX`S`dxe4z)Q
zscqH=#oXT?(foPb4p@g6uJUJ#PP+T6D!@4wQmZz;J$XcO8N_fyzrDg^MAbyg>YIcN
z0u2L>N?nMML$i*YSMwC`DHt?tF&>nE$afH0Xv}rO<7cb(BUKP^nFjd2!}%b;5#ScJ
zXEBB}WuIUPV{QJ(<7lo2)6^%S*$a<ihlMCxnKCoxirJu}W|7B8M%#@sq}uRk|E-=W
zoI3~vDTp(DtmmK!MnMMwCPOQ{=UA8vu!#F~vt)S?d$AaAUb{0mWzUDRp;-Yg?YV)|
zt!)r#?mU*W9IX9AIZqz%hk=HncA6}YU3c|#74r@ID1Bd24*}r+38dp86(7qjTTq`g
zhp(WqQb(ZbGGgw+5K3h#bYom^-F=|*0?nN3ySNrvA&Cfj<5&i8!}#Asnc{V9u(X5;
zVRa_yG1B``Lt+l}Pdx?u6_x#*drBy5SsJvwDU&yMb_<QQ4(M(M3SH?y{e!Yy6=+(p
zg&xeD@!Aapa)wlA3xpo<DPAhu_0jD&$QtxGbG>%#K?;gE5DTw0KJ2wGR|<4r9TsOD
zj$!?YIu`%x2YtJm2wzuuZm{{SbQ2XCFt--_D)Po3V>8l258eqr*dl7kEi1W^D*lO2
zj1p>?T|^Z?x=xr+uaIp(OC$}`H|l&|_5)jRoXxX-?+~UyYFiS4SpM#rMYpuD4@T%b
zw?{4Q&|Gh#IGnNm)<px18{?|u=3uhH3akJ!cialQAW5<Xe<Mj`WR!|tJfYE1l?iP&
zkBFfa@ZyOu*fGB-E1A2MMX0&CMkDjWvK*+<U#5!vML!Kt=ZIwXQ)m<sxY0|++zoD{
zAT7m}liR;4LL_X95VB#B8z^p52DF9Fj8kRH`}vq?heBR#5QIG=nNN=F>CE;U_;dlA
ze(bl>JE7_G@+>`|ad3ux>p77P?TK+}kfZxR|IeZPNRZ<y>sz;3i8+HEhz>;`VF(nS
zfsS{=7i+5u2p>`o@EOgc5oJdR5E;*}<R2#tDUoCVv3xab%v<-`*Yk3P5-8`)|E!?0
z21z)5;cF|CG$+P`D?q5sn1Df3+=LRa-z?2n*oqwT<=8I+(D;kZtV(9u0^P-oNcozT
z<2KMfBtztKfD-$5Q0@eS#c&CJnCaN8@?V3n!$Zb!561Q%;z*ad0N;eTR8ZdfGfH_|
zgs)`hYanp>EEeIk>l&?;4|SxH`%k??awlFkD2J(!R<IF<Brqkn3zoU3sryGxj`JK$
zkStWYB_3K5xf3Bl28cf5BLz<1#CWw8TLI@D>Opb-gXjLU5ane@3y>|yZgBhL#Z{h{
zX|wX+Tbatv3*aXFE1O1jKS=W0m%k0PS@qH1(vvfLe-5@u1SakK+_XVD3RSIhw@pc_
z+;FYu@#F_crPee*w^QnXz0Ao_@sa#J(ClKsVoQTp+%s%1M6@Aku)%iL0xf#ehk6oy
zJ<zirY+8Si`8+>{NSe)r_Z4GnY3n)zj1V=C&e`8%fznQ<3|25V2;YH$&jbnmfa%n6
zMv8;-OX`LGU2((jbv;yOL@G)&cfvKA=l`OUlLWd&Y94+2ftl@1Laf{?XQ@+VAYAxc
zL&i++3SZ$7HMEx%-te(?uXx^W1RJyCh;?LAI>M)mI~ALBy<rBCIfe|$i-&w5-f!|9
z*oObSfRVy7_UkMP3))yNI(AUq+!;xSC1!v=MraV4YmSyt5(P)4a4vAhGnyW*K+SCk
zr(mP0>=7+|6ylR&eEs5OuHq~|p}vfs^tfm$^wkH_28eOKo1BP-;gCxO;SCO-d~|<Y
z*k}IU3>NqANqxKXNJLi5r6-g2xmkE)^RGE?(u^GZ(L{bFNFal59gbKut19#I!e{hO
zrlQs!6gK^jnfPI>5EVADd^v1Kwt&`x$q)S~YTLihv7=gIYTg~FH>i2cz<3i+q;TEu
z&*s96!8Wi59P|{pTXG=SOqo9;lT|&V-DNV`+BrM%TL{Gf6lr?@E_yh-1VwEHJ@Iq$
zRqt(@L-zvI{nyu79F>QHZ#Iv466sqP`c+?8Qcmjsu{|T1XVI}_`hHM0PJVDiLybkK
z-8<XCBtkqu2{Jso_+z-%Hz%4K(YI@WdOy%e4F22u`x*X}er^U{vS*idPiJOWX3Q>c
z+=7iMMP$LvSHTg4ZZd>6WfY&r3jYSNt$qyk{NEwOQP~Jum9c!4U>X=hpX+((`p+o=
zVhFZFD1pLfFz8lU__$dDsJ7(BE1h?i4#Sm{Fp=ro%n~~;q$OigQ8v}HaP%QtW4IZ-
zdLcy7T8=LZKo}0e7^qCHR)a$h96hH*Z(EnK8qzF2+I@Xm)D7Oel&s}{-THT_rQiry
z<{KiVZ3S&g$;3|MwqCiw+)T38t8b-^puC)zIQoS&v<XH~vm)t=#)GmreSM%63=*zD
zNzEQ8M*c+*z}OKm3jW5y;fv>3W4ki*T67*$wo&}OdsOIqL?G1oycW(KINaPLSx(hH
z3@wO%tbiT26)g+|^mDDmZ$*tTr>pH_D(iQ$^3vaCs3(KTz{v3v+A=0+p2Ae{)eTT@
zfb&Gg6`iHQ$kIiXc^J!3J(duLsoz1yJ0WLxDiUzr>`KsuJs!UXmm)O`Z?ivi9>Qqh
z+{7y7-k_O?t$a6GAd@TBV4XAkET`_sK^L1NR;17Nz{CA7;U)Orz%);hew6Ilg*x+t
zA!fz7P>?u7L6R*PdFeu;7NUWIZ&|?ReFAm#Tgo=lw+WEn{>H%2Cs(s&j(=_WaQ(+Q
z)nEqLws){?z8u{xpu|R8Dw|H^xBRajDZgwiEGI`iU77ya4Ua+nF-VGM3qIxe@7)3@
zbUca+1hQewu=bhHFCXDJ1JOrNh7~Z>>5BHfGcZyabVmHh-=~gF-3UIH(Z}1&c4QT3
zCZH@&jU2TI+(mo{LFcB`1*{*zh18Ch2@3B!_xr;KxngmyKQrp+%}Hg<EE`WUv7+p@
z=~;)D5Q(#qXz79W*}Z^2;9QKDmDT8n^@Ei1-cn~xG#>S1N%1C-3pKf+fMs;qj9BbK
z99+ZG;t`dIE-=8qcnG@lL+wk?9m=gvuP;dV@)uLkKBxRUV47m)GrjXB6cb~Gwcvwy
z^{*6xb9#Z~r~Qj5D=_>E@mvCCTty89>0MTVYh<<Y)~gn6+xbET7$2sFp6f#MQMd1!
zT9Ymlh$SCf&}}upd=Gm11h~zfh+7n7fyeo+&2Kg_D#@~<a<%3eQ~KYpkW7a<=*fKd
z?FWYbnmVlB6qOI$aT;u%j=4$&C7r$z3}@Mw>ztlj@LAl>aT%O<?z}d#x_zAT^yw!5
zKrdecXf|%WU_8%$nd*ux?iA)SHT6r%Ti*uQU#whkpDz<`^C$_PUwbI{|G2vDc&ghd
zUbib;eahA*Bb!p9tXo-0NcOIbkcec{CCR2pRH$q+v)9!W8JT6?%#5t;`JUh9O7EYI
z=RVJKp7We@o^!tE`|CD)esyBZZT7TT`JD4g9KLJ3w8iqx(&$WD$MX~Ye$m0s7{SLo
zNRG&x>dxGqHJhG~A8XH5C>J|?%Jq);f<sfNVe$LZQ8HmD918tp{28;W8qcYfGApw;
z9py>)-ifYv2}9UKk0WEQ<+^*&w(Zk<%P7?|djKTOvE8yDEQLb@6-eiJr}npOJc{h_
zvp<hNF;sscT|ilij<t$FvY_)p&ZZSBfn1MIfG~9M`vr!kD5J5*QOwcbZ(ns`eyw^L
zwerBtv~|+zW78*Y(r8o4o08eJids!rEwRC#t1%LHoIP?<22aC@9x=j1$i9%i5c?99
z!RG?>QSUE%Xw4d*AL+Ltse%{UJ?Gbv96cP$I>SBrY`87FJbf`*?>TftuhMZT64YA1
zRCldi!!^oIyxtikKCbmS^j%diQpZHj5=%$6JGxE8=tE(}=R#ED+Ul=AV#Q+5w6MXf
z*w|52i;YP}$UMbK9ixtcIm|)fgTk)wbpxS#PZBuD#G$78Xc3CcbaZcP!L`$nCGJC~
z{d~k5d5@BwZ=&~01cRs<T57m0t9xj4jH}>W5b4=)@-pF0Yx3FGb$cY67@n?{o=CU4
zHX{x<Fq=y2eR%1)9=3WFTrPP8lc=$%#Z=4O0UbdflE;o>IcCvYJW%usy_okRcjZ^Y
zQMDR2NM)P@nfnS+KEl36TNu7JXuALNx$aSehQ`LuB-PUq#Ap#tnGe_YIZ|I_tXt7R
zhO#7k)Ymk;)(+}U#rK5ue(<tO!bvB&J;rmquj95Tv8jEoe`UWWALr)W+{c{S<s0=c
zqaw=JGR%sUL~>lC0gP-;miALYcR!BiMgcx^#+p%BS9CBax!c;YLVP34BhEZN-+gAX
z*tFyo`sht_YmFgssHv$UJ1!FUWUCj&fkxjt=yCP3m$%)M-_N><B3(Cn^{%+W;>4&)
zKic^(VZ2d>XO)RbgcchPKEDu(ljn_wx(a13G1NL44P2^8iZmnL)hJ$@!KSlEOJAW|
zn00=13_Ah1&xAhn0q=G757M!e02eQPofOJCe>&H?yv^o@I-SA*4M{hTQt@?*NX-K#
zcd=Z1TIF%|AS3|7RNyw<m!YA>J)k-$nw!y`smvs*E-jgoSATQsZdq~UW?cuJ8hDS*
zt-hD?DCyPmulkh*<7HqxUpO^6&J<HpJkXDl^Q)Abu^P|${p*uyOKlD*x~PFdp^eOM
zhc&i37qS7#Ywz1@(q5R+u&A7aD@n^JBahzCtFmPK!19xOG2V%F>az0J;^M4k+cO(Z
zBDNWD_eC62C4eZ-6^ya6KQ0lo4aW$=&Mnw>SUGk9&=0lTHcubAh8cQWy3aYYZVI|h
z@Po|Z1;3io2S1iE$lv$VfWVabrO(A)Kq=QStBxL{nSIMS(AgXp<wWEM0%^y_qxLL#
z7vw232u+t2^nH7x(eR#<`bHM0l|L0>5*@{-vZVL@;)9qgmAhz`smn2~eJwKx<pVO-
z8)dmiV2|VyL-=a{_}WNhdLutyyc``%y$)=)Wzppf&Xg+P$H})z`{1O?SaN@qjyP@H
z;frL4pD(;8^cr3sQf`+_h!39z>!8DJglSc9t2+v66Qfj^owS{G>U6H5ce}Ik`9IZz
zzN8b@piDbmz&AAyGMe+Sxt{9xs}N1`Ru4|7pM!cEZh-QpSWy-p248k(NO#g7xv(**
zIr{K(C%Zn%%%l!Wk62(wPH#|CXF*e(REMF-9fxIOb5R)r9w|vfM_}GB=GCDyZ}{UA
zH*b+(<|6)4<#{7qVR_DC|3E|?9iXwjKveruSazansDBL)Ep{bkFp5gtml)1E?e*;P
zvAPZaNfD+@DBE*uml&Gy>HJLZYU$wX=&5i`Na3DD*8TItVI;?8clVNj&7Fs?O+{Y3
z3aVGGZe9nz%sb;9m3A<*V7o~9m)t*a1XV0X7|jPf4{_KN00>y=MGZd4l<O4hEizTB
zK0(q)6NbIwCPv>cXW~D2loHHL-ef}h^hPYKdB^QTmtw_HK1$=`BBPCDwV12HIwfWr
zPE|a#Bt!d$%yjHI^<8?tW0S~bc=g9|{S@A6z>;%Uqm@9h-nW!%6Y8mFlbDsu(k_tw
z*-IL%P3G)eWDREFI}Rr2ylF0I8Tt`y&TBBW`#DDRpin*GK#tk>6s)jjN;ZZF{D5WG
z)8Zy|+c5jmJ(+F0$wl7AxgLh_j0!B3&cpF<=qUEgKi^vjY)VIl45h|A$D+rMHh;ZN
z+Aas<uhFr+Cl@Wf1GGZ-6lRvz;jSzx=$XBQ8(0FHo=i|;S2=~t*DR-ZD&yvvJO0e)
z$(!sRQiSzZA=awXQs$C&XkD_~9mP~0qGCzIZaGE|E5s(FM1sZ-I2CZS&w&q+YP2s(
zHu(eH2*lZe`A+HX;qv7b4}Rl%KUewRudgfU8UHge56+%kQ#$&lUzOXhHqDFb8Wp4i
z))AQaRMkx{Y$+p|IJ;elUoalhZ#SY~#f?c453!bL1MOMkzO00hj-}xFcauS{-z3K*
zZe;(^RXlJ<bKKucUa2f#SO{q&uMEq5*8|Sb5w2m+r5EyW%()ql=Y|Srl<fuiozldG
z87N8iMjWLqSdhP}%{xz-yC;NO`K%0-r(T1!_w$dsqTbMJWjiQMWF@RlFXhesxP9{?
zZ|bifq<ff+Nt1e;y?VQvGB-Gs+tM33-U@KQWL{^2u*v9X-T8Z22?(UTQ#B=O^MIk1
z!X?2_f3To`w(WCeSW1HD5iCH-T5JMy?1jM8-MJG}IJ)9-yrqdd)3I)pk*T4V<hnT+
zpXS=BzUY0@ZpqAcW$9QXEtB>QNHiXWo3J<Diz4ij(Lk-QY1A3ATak_zepK<SLlz-s
zNJbaA6lEM*dU3`_Aiq^oF+t6Q0c;?KHuHfcb=q~xw+4jCLWjLKhUxc~$G@5Jrblur
z$hpRLAS!-&u)cq`o6k9^LxvHm03Ru|-ZS+6qDPs~iGmiaJrsnIGzGRz5tacascDWR
zb%cNJx_uM>&~7BMxI_1uxMjJfR$i4KxX*VWVGO4|3v_4ChXgJ96pCm{8v5yANMW6d
zGcF=R(qL_xVflW%%ixo;S`>Ir12|A;vQFjL=ZHb4bqz{Bu>$ArMri7?Wz<yLJQvE*
zGiABfE-`1wGYR?SVAiw4)uB8=F9329P2K^!jm;_U&7LdYOZ<t?1Iuw+w#;$}w<J}N
zRlA*U{<oKG%=nUO<B&rrZ6#Re2)bG;bQRw*>$z#ddBv5XrR)?ThXPXWofb2%61FH;
zAHKvCo|%0PG!P35MjbyS6U&FH6L5`PJ;E|Y33sUd&t+xpDsCvru3sGtN?$@>GjKt+
zZ(sImhoSbYG$x)AsxS*6rK$G9$Jo<k7CY+kp@Yp*XlcopZYu}+`O=d%rOfE)GIKH1
zta8z=+<7#A`KnE%nBGnFFjMA()b4spbQK5aQQ9Ksy-H3!q2=eV&2~qmCcPrv`8bx$
zwZ3Towz?qk3oS8AZC=$^xN;$@zqwriWGwf@w5}}%yS_U?HO6aon+%9ti0Z*rh`(;P
zQ!bi)q;5sII)>ZH*IVu$RswW+=2u|^z)CC()2B->8@^eaVP3c|Odb)Qo{l2r5!hJ?
z)}~FT<q<O`t-!Ac;AT*({>yfIfP)c2nDSaCkBN5cXRhYv{=A!3W`WFt+3N25c`DD~
zF#Ck^p^2y|CY}56_@>KzP(3&xfZ~9p)ljc}*^F1Wr0JjfM^7}gNO~cSZfhw$>>8JL
zVkKWgB1S&h8?Y~?a715?Z?UMD;w*u{sW#ueuN^TmUut_z(la)W7J>;TQP)MI@~bhv
z;_5AtOID9}hLu;b0`4RRjFhB^0}a<}d<)xwVb^~0@|8%kxrnUvYowjV9VPhhAC632
zg1~pYZ>-5ezyO7I<^X5Udz6Vr{+tn5!x5+MVuyt?vJ3P&A*A&_qWan{QFBu}82{^%
z2miWoC1JU)x5ijiWO2m_E3wfLZWAt+h6?IS(m#b-)D=lXn~?iX9w;d_@2IW3h=f$R
zQT`Fza0ZlG?`QnJ$e^nPZKl7zq-tMk`jfrKecZ5RxolaT@yN!lXJNp#YKR|jElJ~C
zf#AokXhe-Cml0CvrJz(JrQy7kfTx?v3!Nz$^6J)YHyRULxSCAGw-FctgbLLjd@IH6
zllH`soapJnvFIqZ3Nk=2WPtN?{@BL~;+$_T5gT!;Aupf9MT&%%e*jsoYgHTv68l#8
ze06T{aQ{}<$diAAlKNL5h}k+!?>xM4UUa^QC|whrDH-tU7IRzrp53bD`gh--tlS0X
zLtxWVd;i$S=snk|_K(0z!LpYIWz$(y+;Lz|n*RjBp7EiE!@nf2tn&D;^D{!F{s|tA
zeZ|K^ay|)u;lS=U3aLG>IIx5mc%7|WVP&G0#}f8bN2d*vF)w#TJQ06_4fG~b1i<|A
zDuh-lcShGHkeP$Vnm|Pq6}+sJ!NM-FA6g5<@*v(*w~k73zSMFz-=+Bap1(UrE-2x(
zsl?EpXrW_oZ2g~X!+G!+Vdj*5^^iB6Sddln;P1oBT_c}YTz*jTAvj&cbz-woof4hh
z%x>-zxDyVGxfxLsjuwX5ADIAj!^{Tbk8`au;NGGiSUd90rFI5dr@KlLe|`O!VY}lI
zt5shkb&Yyju9}DIzC{Cg^`3AC=hA!znwHwpv4y{|d*oKf-8<J&!i*cCHkL&jdE-4h
zZAT@3dM(<RR}ey1Nm=~<vFj?!yeLY_J9izXnJ2wF#%Bm3U8fcr?pyE!>U4d<uTZVQ
z#VqsRBgIyD<=o;S3X~oZxCyAMe3*9a)TA{<9DC-??&S_ady%|1F8uM={E7U9Fghdw
zubXOc%xQq}yW<V}C=(_~r~cjKeRP-B!m|$RX@bZsJWIy=d?=fBl1OSHO?LNS`$5+!
zIGXY|OV?l7GeL{knl7x_<Jr6jT9r1*&EH8vaHeu@ccl9zg>c4o+z1p9O>pg;hKHSC
z<lK^E!IAzdf8bj8poT*w-@OJ5<~T5?hTppqqa&RATt44g)z#@|1oRhiVitW|o_&T~
zwD`!El}A4ZpAVgRacf8hDsvu)I*#vOmBM{MBjI1&0g0(nNHYw;OaH?#KhjdUalA{)
zW65sp@_h?A(H%^`Bg1d@lfif?FqA7hd^`|^wPuu1s~ZuYD&14Nd{rm+@8tG4u|$lY
zxJS$5rPS&erP9S7PAp*@Z1Wi$_8qD<VCAkv#-GZ$p!Q{hciv2-2N=s)+|`lphs0rT
z9xrlg*+7|d;y4UrhF)L9SbfgopDC$k>vp-k^h2)ppu(#vPm&_5$r{!9>bteq`iXlF
z)Rqq1ooFhny5lKLA<dZiz+ca;Fp>Y5ZLe6NVPA!HiNhy*^Hzgt(h;2`+o`;7uPb%U
zi`70Ww#KwV;G3K$2W#g+nAn4+rFAr(4Yn))=+!L>X#`4!zh_%Tu}go+V&d#chsAP(
ziJYppxWDsp^3^vsO4#&8*p`1}>(*NGOW)xhFZHvFwB3+Qe0r}g+n!f5eeN~itvU1@
zff91U5O%x9@zaBnog)(*jB{5{=y<7R+nz@}xkjW=ESz@!Tio_gvv1C}-FDZ^;&sjn
zq0fPp@a8LyYh>D+_4Bv0!Ozg~LwTz;(<6dANGF<t8c%aSJ;kS^JoY#*NIrMC2e>}U
z!78p^e78m`uRw^f^U$f|6(23l6^v|ixu&Ta&$y0DfKUvqY7ji3{97XD?WmZO)OewN
zR~{r3ViIv@5v3WlsPMvi@@f8>aTUW5li^O1WZ#nAin6)<Rr_siS_ZSj**0$`3Aj0K
z#+XDZia1U}FtwfXvD|WWs6naBMsb-s=?R`WV(rYFDAV$%9f`9VsZ7S_S)PLlE_igY
z0EK!jvLZac94fXF=%b+-yFG5hazg^m2wYg<=R$&rQoH1tp#~~oy0#RR0FrtDM|K`^
zU9F5*Rli;qYLNAJs^?fu<yNr8RU+TW%169E2CJnXVwYxl0<)z#SLf|VfgztE{E;i0
zzQo`B%R_tP&A>qIXuB%0aI}cv&?)}XkSs-z3>6CT604@+*aZv(fWq?=utKNeL{4qn
zv!pjH52wmfb$FpqQ6-oOv5|=(uW(CpN*W4wBMej0chxr!@bmn?Lpg&x3OyX=2W#)V
zNSEDHNeW6sitt%MY)rW^FI?XGyY_y4L8qEgHcv@XZcgrrubxY+!G{X%))vy3Ikc_+
zPRnCcH*IMfd^gnE)oDnOw~eNOl^V%>Nk?*MbKpikt?2e;u{n%gKegwL>Ve9206v(!
zB5Zq6D{)wf)l__PguybJ6>=dm>17>_bP$kW`yydf?w)VoJ#3YoXBdxfSf1D-!~s`H
zbjp-v%|<vW+rLP=Wmp-2{Rjf$F)$iZS2U_k=MFUs>L^?~@!oHRMV^Qjrl3xGfS>6V
zsFWbcl-*t^TWG$qO`Dp63xt#TOI1mWFvCzMb6C`NaJ9|Pj4r*Xo^%@+7#weZd0j|e
zQYo?<E~AXtIURJ0AVk|M`>Qh*P;<2fr>5|sVsqeoHIgxX>$p|oY@_;*ZTC2aS}%Vb
zZBPBS4Pac5sS+^y7XLg2>!3V$k7iKzu;^6(YUj_GkzbOJEt)@)N*PJ%_{pH_xyom%
zMS5k*EbD*$No}VWVpF*dH^Pre%UPZFyQ`yBpE(F<Pi;w|f)xuB=@y2g$DW_!ntRH$
z@Ci_D>d1;%f<WIOSUBl~%X+rP=+spC!ewbu<WWZH#x>fGf=xo4UHBO`S^NEX`l~}n
z_)!c<knM<z*W|zrGD=b-!<L?~jifg1v?T@DY8Q-}aUY4p%Cbkl@Z<s}_XDJ+{I6I>
z9u=H;@5>~2Sa_;m^2T)QBf*l**_s(3ol-QqA~^7Dnzh>=LZW6XOe9Sb_-DQFRNj0Z
z$|lM3Jb2_(zLqWPK$08k7CQ<zE(baV^t`Li^|3);vA{leB{K)PnW(d}XddKD7HBVK
zvZDOwzWRxq_0_sT7{@TQ&73rnhX={i7W$M{ilj>vln{5R4(2=6*1lhZ1LvSoe$c71
zGQy=hF9*`ln(?PXp#Df)b*wY0ILNw2WR$Gj^1}lu&5V7<(y>!uOTz`T(7db@f3&4A
zl4gDKYXg)kJgV-0XXLkOernyfch<9eYI^xd_$|yAnxq8Srtk<)>M-TrOSS>pf_(0A
z&M#QlNGCXhj*gOI|D4IR{G^SkKs|$Q%T%c>HuKXJg!8gx(}`BhSG=dH*I7=X_Gb@m
z&prds=0Kp}y&w^+St{Ho7i$5FR8LKE<>Ah(oICN>jpuWKJ-jIuX1(Hwju>7$40PY!
z?_3GGTE}m>TOd`7Q{D&Lk6b3hYm^#ikpLdEPn#?q%qxS1AOij&`tM!1@xVok7N@!y
z#A3=iR6fGmgRM`waxqd(i=g>u?4+?VgX68AUJSP=lZp5-5GBviiTMt(>{^#}B>d%V
z+1YSJ#R+t}DniRsox0$*tKoTB4crA?IklIwwxsmh2Wm%;-gfOliB=?n{C6gGg7M&F
z*>AU9utLCPXg5Czfr2gR$esnKRi7CzT!jGT&deQk;-S3*c`yj1H}SA$+ODzE!E}(X
zO=azm*ts!|<pH)%PGW~#bcFq|otu^0zSm~~!ODsZ<BmJY!*}eOS9e|AvT!nzTzSWT
zM3^KI4l+p9UAN3lLrMC^Ka!$)l#&St?d{K->qjA8Jb_CSyxto8L;UU5xdIR)_%%zL
z43a?7Pj`lL;dmhaQGe-Yo0Nx#hnTV3zGC-3KXaSMFh58_OyMNF*Rl<moKq}MAnFYR
zqQW+}<2A@|wPQh$G<e+Wc5vazDqC57XQTcW9ihHJP;4E7|8U4Ds3vsDWZWZbHp@A*
zO*$Rj0Kaju*!@*T2|nSyrEN)oSGUjyW=f4!^7Eb>CoZ!d#e~&_u13>|@wV-5U{yH_
zhlgQQS5T*YT4bdbByxK~*FbmjX1Fs}V0{!Yrl14`oKDVjJ!3;0*5@JWNLqP)u!A!g
zzw#cGb=tBOaoE6Ul-^`s2s96`pWZ9f<NPvaS7bJqkyW*CcS9I)7zjetGm}(P9^qfx
z-Kv{By4$__W#dw6(~eDx^nvEP(@o2X%ctZP>-Y+!lzb|~u)}b6$(kz53{0S5-3P6E
zD)aTkX2lrBDThch<>5bO)8`bL_~T$<tE5Us!=WRmQQ`2sNmV<|apgEJXzT>y8hbB+
zSi#w=XPpABjP-@GgyGNU-0~H#8K^9UWYK(flZq7Eqe~m*wz3}7vppF#llx(%6Bujt
z68<>3jRZr|Tf7+1L`v2V$a_F!xo#Q|OKoq#{dkyC5rT}*Vxsf>seAa64LB>;KdS?+
z+HywUqO~i?+YS!Z&6y<Mc0XqvRRE)U$mreU$-49wT!S2J`g8?ujw3JI_-E&ANeAIa
zbx_jn*cA4e;2ebR#HGaYAl4x{PCSKc;`{T81%vlj$BUfKmGhkPd`_|sS?Kire`+#!
zSe1Qn)3!*9q5hG;2iYRqnGXi`xC5UJpN<P3oJ~(0*puvhrIJW`3L{nAa4~g@m%rmq
z8TLp;+RDtdpL>Ajf%>7QuaLqkKUCRK;m;Hed1Es?vs-8C(wR9Ibotm6{|?#bBh{+c
zS3)XJX@iOxU*w!fp_-3sI_TBZP->Uj#WY2#+o>5E&8A;CEn7jz2iXs=8C7P|!luHx
zUbClg9lQRyfbdwl1u~p3?9+PX8C=dPk;I{e$_-R)xm-U(CG~t?>P6#=ESF%WlOsom
zx1l`rm&o5sA4N=q7}ijJy`cqUf6j<d`9~<wQ{Zs!WGD5DBNtG<5VCL>V1H_A5(>Td
z>^&+(DSl>fb~w-L>tFe~pXyyyd>!i#$uHwH#!!CTNwBUBY0r{&P;{JFu|Ot5Tu-cE
z9O=DHab#k6D)9tNl<rn~^I>fWJMIIFp%sjsNaZ~S-gFmTBs4!nYjoZXLD)Z$xmcdy
zo2*_Viz|Z@)Z%B=MVZ5WiPsjntf`OGUE7#;BkP;DO-fnQBApZkduD$nadm>=OO=%!
zVi`kuHW!#Gkhw6S^B5MmovrrwLQ>+e+mZDzZNLMa9<er%T&q1vUG$y#qTIq{h*=eg
zo?BCSw3z|2xsQ&sKE^92=w05r%2)VHbOKc{#1ZO)GzVmA(U0JsT};vQ#IQ|t6-n)5
z0}<vBR*!WaxxBuydsqq_q%qkWvA=r2#Xb17>jJI3Hdv7UVc*iCPV%^pZQJf`yC4ny
zpLK$Zg)k{%R8!h_3z2k0n%>c}`A_7|b4+Wu7c$sR`8|i{59qL3A^LzUp=)0&GU?ZD
z2?<39`HgQNB4@ogn}v*#f&(R<H8-4fyq-iBoOM)Iw~(wc?S#|Y<`r|&5m2ic{Ry>4
zhIF4v_NX@qJ%zgiF0mmwT>d=;q`rsRyFTyz=7IymOt4gazwAny>>;blGe5Xo<8nQ1
z;gF)~QajlH`F!*jI6e;DGdN96c$n5i8srNchJufM`&k4FhImI@0ji8ocqGY#&{S6N
zo7E1*4bCH8h2!{6IxVR8w6t1HjJRF0$YiD&+9)VoMjw85LUca%neYnaIpoZDJJHHt
z0a4Zz`4%;xdh_3!xpnR=U$q`t)fx&4S?~P;)k?xY<8{*>P814UJmH{3(Z<_wG~^)|
z9ae8zQ+A}}5;mki(xWZLDPuuhNUB}DqEPHO(~<V<g3<Ryk=G}E#3|#DG_z@^w7xkK
zQHCI6+VXFx7qPLEj3Nb3rp4N|oLfhs9Z+K5Tg|vjEHrQ{r7;{|<xz8PHrEpztS0=C
z+nh3D9Je!cGne6q2S?ylSESvz*545$`@fBqQS&suJr4JVr*rosl2+Vj+<UC2L-GC9
z34f0>{Z;k9S)EYv5cBf7`J(qK$F5D(k;fbsiub6SPVJp}7(jXtTt?q|c9NyhX7BPf
z59vew<Xg^3jqoe-e1)7(+EA;cLdL67_)H1uq=GFxs)a^e_bx0#v~s3cY#Km}@eDAT
zl{uPG&8YXMaOmKJgN1AMznMK}{oax$+m1%uX%NlvDSkk0&>$v)MI8j9#>+XDg8AAh
zAv{$d!Zx>0?2~%#zCIF;ishL5MP1^c>N);;0B(jMRlT?IG+HXS%Llpx#ZUHCy1jp?
ze%3{%jkLgRsOs68y5p>}WhPa5q1zYF`Jq)|eHU|Wd(u<xbr;p0Iq~9`xIwe&W`K1M
zU-p>U^u-=8!|@Zk%T3f=IiL}dscd-<*DDyeD#KPGuP-x7dz$n_eMd3v+GIDGS!cSR
z#>;TI=aJm|J3i8sah#wR1~t-pR=Aj&0?GM~5bl-sqlP-a-2p$fAwqb&tx7aL+`HWK
zd0<z|iGTJ4pbA=7WIDDSYpOP`1`-taKFwaCl_*8FYZLzC@F-HWln=u?gM}JuR{YS+
z2sIr|&pJ$GgNON->&;{2n*kPucqyTaI0|wKxM(P0y@f&X{DF8@3;=rOtj6hxv(@Kj
z$lj#i+#D-qN!C<;r0fR*li``34*AX_nkZk$Npol%`>CNzASAn0_&i8MYT`w0{6|P=
z(`^v8KQMhk>t*PXF!C0@90&!V7MuPw|0GY$P05l|^B+QlSD@-b_M5@{uNV<yH4?UW
zc@f@t4~BO8(#k8sEza_!%x^<pKN!j5#+Q(&qWKo(-)#Y|M}Rm8uD;~~s4~NK)T}Lf
z$diPJw3L_fuE>V+%u;1dWlh9(k=#lEJVjqeCP*{YfwmzA5_=66=*ys3(9C#4cdqE=
z%Q+NM-^pD%OF}|!M|m(Mx&6kDCrWEV4lcU(pIt4RFPwPrpbOftW|qz#_^W|ND5>X;
zw~;ZcCN;bj`=yJ}kKiqNF+mL#$bzIFc411H9B<YVDD;oWZC)(MT)v#U@`~5cV6gx>
zs=v|`7yV;;{`@$Zf!?xzY#^%@$(tO*L9jBk685Xgu%`HgmX~}4RtR?VB}^ff2JJ4s
zAcPEBEgAm!&pc89ctYm!Q7o6Og8)YfZlP_9jM`bU^nFYG$Pihp#f$Z_e+Bmx4+=8t
zu5hRS4PE(xw6k#+S@yvoV`zP+K$UIhY5aQ9Zt%lDllbcTnCz$bGIWJU<1nx#Zl2I9
zNEkT4v(ytgB*Q|F%O7Mz*FVVu);SvQxyQ^H87B_NsYz$)Pv{27;$D2M^eTV_N+CZ9
zz2{n{9S*nee|fx*6k@PsuGUwj<y`9<vGgeFZf=YR4i2uDaDyrRS>s}n*RH=fZ(rq#
z^x$M{=~m&naY}tXE+AXhUkSF(84l_1T!i3xp_&U3yQDbJX;zYgCT#4{`X8M?|L6)`
zsxA&%@@I3uLlJfv>`{O^%@swYWMS%@v$MQl_D%NjCFvHDJ$j1TA?MCLzwJ5q3RKoV
zjM8b-aTUVyzEH83U{T<ODyK~`?voH+&?KFXTPL4^Z<Gq!G~W03+=B-xm6+X~f3h7L
z8vuuElIHjH8YZB-;mJ_V{^cHW(=PfPWn)sh<smn*EJIFE9P-G#?)p_SR2cUNoPBr+
z_8k>_J%p)>)-41kspI46*qS4oAa_Tck7*~Z>$cjk)q<LFZ|i;A&{dF6()^V2kUIf9
zW=tJ%iB$f~zCSp#Nk-`dJ(Aq3KqkwFDu8KBWfb-c1a}GsEI-L;9l;hwcBNGax?6qB
z!9|@<A<1K6{TYSGLqucssB85$78O}gCm{_P#p7g1#-Q<;@chT~t!4ZF*%<;p*vWkF
zM7&|U&ZqxL5o%|`#8Hr&!!#XKUGLRGQ`~1tTH&uI?666gw)FVKTxPP3n(H;leqSnU
z!c!#UB|sc?;%<QdKO0MO8^lg*7rn9=Tw5sdzm3fgHI17f2ki*Ymwz|LJi3>eD8(Ho
ztTEj}+qS9)^QHYE#3KWn^%+_IMpob&hVO?MCs93$6ZIL8Eywo3L30R(OrR(`j;(qU
zk8E5tk3+>yo>XU{HZba}U?9pK$tC<xi0;P*Mu@VPgzO`t1SAuffMn9W5Tz=I(E6zx
zt0js92^5@g_nG7gQ*&$UQcNsT+G(*nnH2xLL(ph~#3dr{i2qH7q^=S~Ec=jPrn#~4
z&_9P}Q__2*Z@Z}FSoeXM=6~mtiOo|>dGjQ@Oz*vcp{};<&@Ly^gcQp@SjdKb9}<!4
zfd^FT?JYO@Au92Va-U=2gHjVhrQlYde2q%4$^Gtkn5~B?Z_c-qFPl?E6%^|cqpa39
zsB(*j%+%~(SZr(6mL8#A*qlobTwLV|o0bl-qPky*sX~And43N$lkm}W#o1*VY=$04
zDf`slU<OBK5#zw<w6iwK<#*#WO2og3GE5B&L7X>@#z~x&oQSF08`-i|xyL*IoeAFR
zp=N}%LT1riO~mw`g4JcKON*Z+0|a5@OfIZWEWuss#%uZYo;P@?X%T$r1cStPnANzo
zPQJlClNm-UK+#dN;T;8U6h3Ol#T?=S#{))Q**|n8MO$d3OtZc|!H)lJs%pibxT&>?
zG+nQMHZ>OMZr`^L4hzyvR2_V(Tg3<H-WcKnKM!`%ygA=T{2&-|r6=%TpRv~Awe7kc
z9Rm@+brZ2tsSh1JF?^k3A|sZ<Q!{`c6#I8mKeh9vqj5O{221lp_!?GwKm>pqnqR%o
zaLH&gT3g#NH8jJ+c{Sw5Ay&gp4=HEbO%(c4lvnjM0Aox5PQa@x^MOvysKV#O`li6U
z{<|sUnJ~5Mx$vAiIV1Tk#$-CKWH101sMykOp#I!du3pp$bX|c;O+d?$DU#WsPIANA
z5GBDoE7*jDXqVu0Z!*v*tKd!-A2lPM?t+Zeo-H97n$huEmp<`$0sbaslOz8EdjYYA
zI(x6m&^;}*yVlZb(KliUKK!3efeZH~9`Bc~)6UQ&mJNYc_#4(9N*?6RpO(>F*}8V?
zi{QVTiq^I<B(4v6@)u~wDaFPiCWAj9^A$1QLX<inn^|>yDoOBMEb^`=3SH7;?vBLy
zd)OcFrmNDRnM5-@EwM6QU!MM|+E&+}iMM8wIEZM{Qb*^N9skpG@bc@j09=XhR{1$z
zon#}5qOME$!oQmS$=bY*DDx5C=&d0x$PYZm`k;=}NB$?jiFTXF1WY-G={LD_8Of7G
z-Rpi(ee%STm8g_3S^;rb?_N=Gzq(fkf2%rwv*4i=yX}UvdPfC+Ry>hY_ke1RZpWr4
zMPcR>niSc*tralyCs>gdJLEZf&sw1del|f(N@&Z^;sXx#3YA`gXup`FJm5PA>8B|^
zFglu6xK(@xKPb3tV>;>{DuEM%7jJkL&ovC!F$j$m$D0UD<puLh+n-5SkycMwe_ZSW
zr~9bX&Ql~{nvw(nR+T2InRDXK@_A6R;D09rHCvwy)a-6~Wi)mls9BX3!*MeDr}-{A
z2@Vz${xQ1qM);$l>t8d3$f^L}Yd20IxzkL+<KwD##R1vHtvf@aF5+Z>iILm#%DD!#
zqh>Y}$H5V%?&b^X6a<S(a@E_(7{?>Shh9Jsk~p}B@;kdKDK0=WK^fSJxWo*Az&gH{
zkAd$;!%fhlKO#e~RpfAMeTh#U96kvA4gT`*?{jWZ5|_C0GCXTZX7+Co5{sX5`*Q*j
zzTT2n$h}LOM}@V)At8_}B1LE|_`ek4xnV-w7}y)xe>MjBs$s%)hzmrRwV8?yjg`0P
zM4DtKd!rb{AV`2<^jMzAI|-UWt!Fe5h9hpwTCC{!|2CH7W^<mnvGJ#iD-ZQqNzItp
zn>c2r64Cj+5b)@K&i^#V^n-3Q2)T#Kl}f3aR)PR9_$Y?rA1M~x9d+;wu83@qvazt9
zcn~TH^zEQknOx`m5H`njqE>Z7fbj2R<G}zZLMFR@NbcI4|0v~VjEcp*Pu#P9&?(2e
z|2Nqkq*Vb_*x^nLW!JF=&P^~l4VjXCbR}_#PyqJ(M;8l{Rz^XJ<BiC3Yt$4J{}Hmp
zx5wW39fg#AXa4WBu5t}8L#Hnjc3b^Z1sP-xJnJA1VTQ~F0mJ5o>PL|CX8O_$mkH3T
zQ8R5C=z81A<Oc*4Sr_|ACGUqk5Kw3l0}7;)-lP;NvI+91;;>m*T8o<L2QPX>pYwdK
zk1@#|R*>y}-p1s#SQE7*e7*co$<;Unow)uuWyLHTeQnJt(_=F<TvGMlDoZsSoR@60
zd(MFSpZo5Y#bmnB3jAPYhNmb5!tj`0!OBHja2`R|b<h1XS<4|k8scOG?j2sldkvYX
z^yl_8z`?7_Ia5a*1sFcIyS~p!OT0|>Wb_3caa3nxx?daj)KL`+2oF>v<ZND|-OtRp
zXd9-7X24rOBWX5-gf@VC4Fzsi<#KI159m%H-s`_lEj;voR1+ry)5ZGFWC#FjYWkV*
zoZMi?;oK{Imtvbh9`ORfgmaYQ;v+3-f~}QEjpwAAi#)<Nix@3xJp_0hn%JFIC?)J6
zPt-_T<hXMLUiopUxLh%HD}<;AQf_<yIWi=0CrWV@(j>3%`jr4K4dl_(Pou|$L-1L|
zBWu+ZXG)P^C&d*M0!BKuCzs2!rbPa?t9w%2)hD$|GUr48JuA+^?#JeOyWA(C%0mCY
zExmo?A~Bx^$rz}4F#I#iM17jBP@sQ>V7l9Dng4AGNj^<zAGxv!rRmexA}TlSfI6Wz
z*^4-8)#&ql(hF8=R6LZOc<r6gObUSRrK~XXRvbbg9xvO@Xa6<$B9{ud8Vexv^U=kW
z+<Na29akd6BBw`KQywBM6O@v?#tLhYkqz2%$)p+ficVdO{PdB)lp$8YYLQs^44aHt
zQ~kpg-n3dCH%y32MBb`f&q^D>v#+h&wTT1A0cc_SzVgLpFO4_dcY9Z4Z<dRkXM%l3
zXemk0k#m?)fC;u}AD^EA+z{pm_oJgKcabnvQ{MG9Iw<-yy{krLRGCzd|DVPqSJoXS
zXyJqNsoAxDp&1z~14fW`nTQ5!^;b8*6#N$Xed5x^)LFrx?_7U9C!N;B&j3X)NNbS?
zh>92l!$&{&gC3eUT?jji7C3bK)`TyJAKu8j8um7j08D76rv>(o31^Sbe}r_6De=%6
z5IxL0iSp;NnfY!_7PD6<Udp-AaO(}5M6c$J1xM}#K_Z<(|6~_-vD&ovT_h%sJODm$
zcK`XPzo&+Dh7o5wpI}Hwv>ku5Xpov2Akdvpm`38dt@<dA<YvB{<N^;4CFFosHld>-
z58$x(+tZp*<IEU4m|U+xo)3_@<mS7~Nskdvs*bseK;jz9OQs{%{WLF_oVErEzE?!J
z52Vq!SHu!`|6_>h3QT%9h{M)QYQ~94UQ&<SK54kMBNdzv6o(9j2M+wZwTK{5k;Yh1
z$lK4lsfbn|>56H1B5OoLcGUX7KH?g^f4dbq7qKG624b>)J1P_%<Z!V1BuA0s*jRGt
zeyF;tBBhUHoojDO@UJ9tc3~pXP{dYWNDpBlJv|HX0J#8GaRCE68*QR~{5>-OaP2>T
z{wNOIwah<xNWOU+*#w$zAE7TkpoztnBjgc?P@$RDvL9)$GrLjAe#~m=SCxY|nzXbE
zvQIY;N103CnS@TC3Kt~K*_0nK^)xFv04cj=t4?ONe|7}O#P+T_pY(&^kp9hh8W5^3
z8=g8dZ9s6i=&rr+Wb2+Xn3mJ#{=DQxFk3`L6hg8sg=emTB36I67_b`>eGm-M6ie5V
z6bjP+wFP;|AS9Km>QEWJnTHH#n*R|n5(t9|07(>XO-cDzF`C><Q;|W;@SY(?9+61Y
zr*|kzhM0zt_35J0J3dviRR{MXO>Y8+XMZ63a=kq%`0jr>YJd-0-l=4_$^PS*t9y==
z^u$%70MYmb7;5G-EZ3+Dul6ZzW+dKG26W5^eLM0P|LJ_{dwbveB)MNj`afgLMej^P
z2KN8C@YBT!dk;Zj3II7<62@3#q=`ld<0FvHFTf@e&_Nl7v>El0(He;20)1MMA@gsR
zY^2y}H$qEDOqcZ(D!zZ|FD0JErt0;N=tP|dLXd?as5@6pc@kWhS_5gCFy6o0%djKA
zR2fMt+zJ)NO(Ex0F3Y-$a{^FHRFV>4d83C~?_1Jrn!<M!9RQ3amQ@gtHZke`2&~hE
zCzt9W>3)0JyCTsC%shk-shxYWN!1u>#sY|?A|JdbFd-fwv{+^gfZTA0SNHoKdyaQw
z?x1#ct_*XBB&d?Z3rs5qX?GN8YEfuWP54s(F}P;o!o9K(R@{9!WLkmf`c!D2$vm+G
z>X$WgEn6!j5BZ?Z)T4O)C9x>m_aIbk>(&O<1^2Un;Jbvm^&;e-k{mhKsG)@>^3yq{
zJ-TbM|C<M#-m~pc?nJN(TWTaM*~C2HNyegiuS31-r)3DIwJc0~RTKyQY#+>nlsj$o
zS+8!qqp;g>ZJaMm_EYJX3=p!nxgC)~QG(bx^u%9ksv9kRyR`G6BC3o!B}IyAY6FH3
z2Jqz1SIBnuK*UyJ27wwW8ODkMY;I?MY4E;Rb129PA^jO23^v~nfTnxVc?iG_olBAR
z;oXN;PhYuh@4;fMft20+=vDVK&=o-AMF7pZY05hM7x=JlnlSeT%Itd_yylRH7-?(L
zI2SWLvw%wWOv3wp#3C>8g}4njj8W{CJcU$p4ZoI^7X4;9fntChf2#bE_{+y}-2%?v
z_l90TEHA^z_Mr{4iT0!_$sP7q+yRHBzj}vg1W9@rz%`L??{N}Jv5t3t?)Z16W!o|3
z6R^C)Ip#NrMN=MDP^Zvy3a_sr`D0|z{7@J#Z_ADb5}pmsQ~(J+WTprRD~WPkMgrc9
zPzpAr8q)%+!$-u+E}td|P(>ft)*3f^V0H)@<z}f(6y6~a-f)xZQFU6;X8UZ2Cyx3m
zqFkWD8}7c7gb@6|_#Jv56E4?(WZJWI6Dsec>F^LhLvn$Z>k;*J`1aR|FaixgKr=TP
zHWQyIoQUm4-~^T)KKag8fE#Ougifl#B@;Co9OObxo>sC?j73H8s=AnyB>0YM84BMB
zp1|F)<;~CHo$v{w&54@I78{R+ULZhM<MlkhG?Hm*rYjitI)LB_+)aMaHCyi3N0Sr{
zeq_di=d~ZjGL&c@z@}P*R+MBc1TiGtb;R+?Mn{;_-<hlo9KS!le;Z)!!N<kQp9|oI
z%#0|qqqYd0gX5z6b96To@JWxbzf<#tYH$MSlzfm3AmWEokc3@xRTZRJYkXRxIJ1$=
znBc-YQmo4Y+1%RnFWQ6H*74I>CtQ2Cv4q@%1;R(vt|@LncC4Z++3U+z1D|$6&UW3E
zV8hW}1}mxwN9sSW$hp1*m_E<UJv|CFq){{_JY16jed}O%t2_u~XyJT{isNaL5aC%b
zw3MfKKGvTc(uBn(#>$)ZoO|%Gp2ALK45S@*f9KqM)T=2HhO@e>PNIwEAxWT_Mjm%Q
zHU%_F{Y_d)3JVhA@8=exY+Btv4t`fXsr2CbJ%R5tlLb9L9cGTYbNdpZ)ZW9dO>pXH
z$Wz$eH8Q$eT)5<R*+`yj4ALvB_IUHDp>iBCDJCzr=}SQumtQXK&em<6I%IG?u9D~2
zwf8ZpDlVJbdPQt{PNR!OpaM<IOiqa#)!2h_v9oi$f;Y#nr+`L%C@Jo}^HA}xb|4)T
zk)NcP=9pKV3?J*1GNbpYlVm7^zO~l_R{{3WzIXKvYwllgT^yc)t*-jyYT@_RxChH;
zL+>EcNY+s5IE!{a-X0O}&NFhuetsIq^83go(t&+M-#yeFWj|}T0zF!(S_c51=nV#*
zM^7(V{VX9cy!^P9F%Yy`Ds06kisQK3WldkK=&gZ)2x#SoKr#iyml96rK)v1YN!0ap
zXSa`bXWRaUtbUZskTJ9i@Tjn!6i#MX;to;Dg=tds4S#S5W`2u^&of!Qn2aPhw(6j2
z?Cf!~3I~hR4Qmr0f<kIo%~2O1s^-u>b@nsOuV0dl*54EDN&?urg`hSkA<=m|N;-iQ
z(^yb|ZMK@OIrGU-=YX5kaI)-<N>3~rj0c7Klk06Lsi>1IBh}w$AhCS0c=*-&M+kuN
zolYy)BkT03RJ=rEMi6mp2-5J~M>=O>j2ts#GP;N$ed8qJfIW;DN+uDJhBbgRbT6OQ
z3^(8AOZ^a<jG10m*(&N90i@LokcM6Pd5N9Vq<PL^0LpaN?xqF~5|%zU886Vu!}$s{
zSNVzs;r&*qa>@eqJ)pCI2<h7>%kZ$MEZxfi6JQop!vol%HjJ7f2HgX&l#j`|idPs!
ze>jx@t~YJ`dh57E7H{(-|IL)WvJv!TAN`(&f;U-WY9g;e4m@iRv?e8!@~_*7LY-~V
z%pT#ib|a$tHk>lx){_Fqql|JeyP%*mQ{*3mJqhx=!4P5n2%!>S8{z#igKz~r`pCFW
z7Yb>;xO=`LpSP{G%j{X-mKJR5XAh-B5K^%naO5Q~@BcLEwpHDesa!p#7b-rt9vlj8
zn~rE25pYL+0}J{}U9ao{1~FMd`PsUVE{QNMB_ov;DUN3LerL?F+>H|^f3kCgeu!4y
z0A^aCRbcVN|7;|;EeY=wf+jDD-<$Ppz$#uBS*sb1QYXBdl}s#FiZ^hcq<aXp6{a^m
zQ<u~U<k!ohXFiTDGBK^OHaq{79?@ETP1h#76<sf=8Vn(x3@ndFRo-09fB<PcQ@7*A
zt6-ecU9WG(cq-d*sh{1ek;#%5&hw}^b5n1b=|yvS_2RX=ZV+%;c*KZoJ*x9Yz!|c$
z^&slKND0Gh1Rkpj=M>J9Xw1Wxd801v;J9hNV&|!pclv+Pv1Djj>&4V$VIMq{A$U~W
z{+Y}1^EZIS*p@_lbx%Pl;tGFZ0m;xDUq>ueMzO8<`?%%h6tl^C0oFJk*`2!57d743
z*&}JEyXq^flihM<a*O}Q<8frrCn)H$X6PB5cDkYb`taQ2^kM?#eJGhw={ox+a!!oC
zgEM&9nLShaVA_u#z934pzSv#3X7VRbHSK^WYt(lyhV>#!9r3U_GW}PsB4~{P$MeM|
zfNA3GU{EE6uk8E;|H`Srk;c5>3q@m|oYa805x6<T5gm=-X{So#yt-!~XVSo%_wet|
z#-e7u2=6V*rstl2Uxyi6Aie=XYXdg}Apn44A>$H<7Sf?bfBcUn@3I|9p3r_p_u}&s
zX6a7f1!2Q6q)o0!hUqkp0OKnTU>AKUcR{mPnWp_jG0=9zXvKSzye0+9F|*b%!gZLH
z8JGpObwYUA3`xXPQ+*S4b)+@&*|_?l<#b3aX>LJN!-U=Z3nmlCg$);>#vFC)n~V|*
zf;*kq8RC8oVK=CqOWEz-`unk<a$3VXQb`C+U2t`otm1Q%>(El_;qC6CaastTv+9Y)
zwQzbQY$q-eSW}3Y^t}6VB>(4&8HLjAd_a`o3P21co1Iv{y`lnJLF~9WP6TFlQ;E&%
z_ns<`*s{B%w^-<G@Z6KM(69zQOyOfxfVW4M`H_mRbeIwW_P7d;5*#GJlMf4f1(2p2
zf=?p!wh?xKR4kd3B9PrdDDnI-OUP5`nz33i_+BwSEVcXxVD+3DH-D1empn*f^#*j#
z?v{)lxVQ!(K5rX+!`Akf7oYP6T&@;du8s|<52H7G7#bL!mbs-3o%F%}W(&5AVSI6`
zb92UMeC#*F>dD%>)&Bk-|Fjdm!Z-f$d8%YbfkgW}d0x*c(2zi&QoEU~AxrRea_Dz7
zEAEGQBSmqK{C$#vOh<Z60EZO`<HXD72Zvhp`_L3kaDU!z$4#RV)Jl*;o~{Mz+3t)B
z8C|TTdW70VqyAMH*+y5?mHfaI4Z+F>SW!4S8;%GYGIZYIA0gwpzthXp7Tn18V=*L;
z7DonnwY0*MF$gy7sJ?Rr9XOdpa_GgX|8u!6{B_y$@fuLB7^M}1tt~w|C=umfOs-rt
z5vvG+hE5>M0Td1RURDkLT4;s>%#W+!IKiR0Ot*^ph(_#MJgJ|SHxt-)2z2IS(=qz<
z*dlu-_$V0Cf!IiienbzQYITL(-4)hp-#E7RNgYvH3JD?f-WZ$aymiRHml4SD>*3zK
ztQK6jLw4%0!Q-WsL(89l$YA|c)&(iAPssZcv6ETOE^+Or@1bN(!(}wMwITSpBW8N~
zj^XNR`GC8(T-hYpZ6MxI&K~w8Ns?V4b7_9I((8sqA>@*t`7#;KqbZi9K$qRHEb2gV
z-mOvR4_%H(BSmw{rcDpYMqZQjPVfQjxkRRpXSV$xk^V{uF3ibL$(WMzN$A7tgZ4cL
z(^cOTZCXrjs^vRX;h~B3&bBcnGb>@df_I?_6>{lHywvjQ2$XcDq;jLjvF@Nk?nDo1
zp>f=q(8Jx<+9DSXp9nIr6SJ`}TyI8QgJYcAb8r=h)j??nuV{=pI87Y*Y;CTb+5$bq
z8_mrE$AFHhLax4J2+0(#OK2IO{z{zG@>)n4b-+D>ynGV85j(LNaeW*ueSu4xI&s+A
z)gO;38TBfmRW|^7W<STyYob+Y;HKOp&L;>tnchQkSGeDbl5A))Rnw}HN%yQIalGLC
zgjdr6EF8?=X#u5_5ZTfA6>c$QtHG~LMMXb&<8fl{JLB@FwixD^u`}UnxzNRpUjt0s
zoJYg_9`qw>gkEK$klkSsiTQkKsgRGHA>&oHZ@*$WmONv2B0U4ULmsycR}Sy<AvDUI
z3Q4pO8+8r7cMal`OU)w;H@iUT(RTrYMQqf4X=!-rW#u)Xeb5BOE4^k*gYW`$ie*5n
z?SxBvYx(82Dog-rx_v}a6W3Ab@WuFOs3*{|pW84_d04r*NN^5@buQ3lo3C6Z{(H(F
z`VxuD4DrMV_AbdrpN1A)NX3l}4JrL^P9Z8t#QMyXw0U(G_kJG`V$!@xl1~#EQjT#Y
zz?_i$4|m@25V(rgfMjB>TX@+6bbc4)KqN9|33FxeHfK*2xIyxstOz%l&^#WR%mGi#
zscHu7*Y&($ISh^$KEy_n<uP}v)ul?zmx=_G$A10Du*sokjswP*v#-k;T?t=bAbB3w
zc&&yNLB}o4%nft}?j2->-D9`(Tx^`2IhaUIfh=S=4wu2Fr|hWaS$gT6^#afcAi(60
ztuW-%5jWmp?I2QCGCgVgM17M>qlpXv0p;c=^6@d6rB64u2t5jOQrKlS96Q<a@#|wh
z6YloHi)CbVOg?*J^G1hh5!42K!9A<gJ!f3*YRlIRD=0Y!Jd45LY7Ps}QFA>5B+ei-
z*c_jKs;ayQ2q(k5C?E&fIGG~s?-8=$$a>Fiu^ZD163jDkT|0W9h1mlv%E}(<H30eI
z5X6Y9YBJ{vfXp6Q{M_sf<VwZsH@d6T-G_-0+LAPH255QOq|-=7AGJEPJ`flXMx_c9
z)yNP!6ym|MnBxw8&TA_Bl@m?LKVJ%7Td8O}TKOLSGguWjK7Wr3(9Ozbw!8W6g$kc=
z=Z3YBHmNvGd!Wf)zpGU|6N`R>!;v+f-7Zj@RI-1;XK95{!??rwF5ewP2zVgLj*-l0
zdb|qC_vB6NCIJsS57aYOyp9`Yn4O|>ANM-p@$|-!_oaJyPPja7*}-cHEF8GDaXYdY
z&0$3ka6R13x@jbJgttHBv|o5>PqfQfx#p+kB73%nBX0gUXbN;g-(8LMC!FGIr=fz6
zO~&wSQWd>Il}V&U7rvd1baqi5Rd_r74w{l5gKLre@!5j|ygO7j_3L=0=1Y;5lM|w}
zBaS5R-cJX)(fW_?B@eh}!Zm;rq@ba?jPyNV&}*^zD0;>ldjaj9-xo1cGSw*tHLnW_
z+`CAZ;1$9wb2TMR4tbtlTA%eV(ZU6zA7u-~VUAV!uwnQ_`}#hyU(n8y!-bF{O{j84
zpE|6gpPhn17-hg&V_x5(#tBh0m4yw%WlkP^Gu{Qb$gr1T*EY_EB904~r1bt6OQ2c<
zm-6XH1WbX61I$_LMXm@Md09ff|Kaq(kK+c0O(BXIR2zK`TrqgT!PO>lAmV^ddV%!~
zUWE;MUq15?Hpu8MniI`b?ouwcZ1-6#=t*4EJJNjY>^9JM0NrF((P?r<HMn?6bv<Au
zFoyWLnrFZnWx@o6O$VV0H&e3IDF&{=L@;Nb6ma#gGxdFOCUzIK`HX~TWU>OQ%rQ`;
zcU*_0f!7H7w=$wz%U!IY!`mr^dy~3~7L~h)y9|<&ijQU}O5jejTky-H(6*pP{Rwt#
zxG4k|pNovN1iH^!UTd7pCaFsd9_aG|LhXTsB|p~Hn*qMTAOot;kUYeP;y|A3c0<7E
za}ed(y$X$r3aXbjdAc4^JK7A?RFGGmA<`1MI2S!m%4GpA87OT>JgW_a8aI+78F{|L
zv)f?l&QGtz+3=!Io}~9dn5@y<<Zrk3B{Vb3h~gTwf`=tUqX74H8Dt&!$X)=~g8ABU
z`ep5D{BI9~nQNB*zlKQ4uZB=W#SLXCA=#Zo)myiLR}}ai1VmmOfSNEuTZp)TK`!d$
zS)?cPcgEb4qOX5v#v(nE2<hU)x2)P}@*wey)WlTuM|#wDR3My{Wm-lf<y#d<|4Aj=
z?YCL_@aDaa*4bcEOu&8wNf^}x+GE7?CvfYc9!A~^boIZ{RlE}wL6i1MJ8qTRtFBEk
zY8jK(ObeQ-PFTFXcI#H!6$G2c!IeM_yjMsp{@z#O9yS#X9q6-e$@aD9bK4`vUbLoQ
zoRP19A_@|_j65ikJ$f+i=YET+7Q4w=EV$_3NBco4k@wuUeL#za;K9A>PR=B*RgSh-
z=@{H5b@J&59y4APo>A7TP@Z3DFwBK=0Q?{~Ncqy$S!xtNZPJRZ%S7Y`>y^E$r9TEC
z0VF2*02Fakyd(i(y#n?-LHkHDp!~Uw+;;6VzSsq{MR|w85`)9zOD}+N->t+o7tx>f
z70;kn$7EjEnf{&~`K(_L-4oEAV+!_3_+pzK#asE<S>CakJ>(V2NXtp@q0c&M*kDrJ
z6sAU~A6h|@z!PV)R;Rn62krtDA0G<6AA+vdZEA9~T#vE8H9JO_cRvR#a;}iNI`YM1
z<Qn2ysG4Tw5<V;<93UNwI{(h96g%rbHdBYp3bbjE=6{p=a+5c*io+&lqz|Ae7)jQa
zm{oYU32N%g0KCl$jN|@YqmC#J>Iw4j8D;rgIsl*Xo;~ip5$92Jc_WOH^g`Fjq~d_D
zDV{5l1x^+rHOPsR@WGCNoPHg4E#qcif%d@fz;;<A<V=E80b3Ms+#vk|N7yv_&LeG#
z(2bl;uYM5d@(?0M?yrZ>0aIeGp+m5E4}JI&05x><FVvB8UvCW%J{Or9&Ct3+VA*(+
z5f2|Ax{(fZ+m%WLV*O$6vBORufd8%H%Feu`dxuHyUM_#6trwmdnoX_@3kPGIRG&mM
zlH-oT?H8tLe@*dL3F**)LdYSfDi{s0^t|+dXcB_vMkyY;`Te5OSY!S`;Y+ORcG^ro
zLL^p$+@SRQM4B5f@O5S@TvM@E)W(oTr4fr?U;dub@}1$i_0iA;zOm>cSajnTi4a({
z>F?>mCow$6P3=H<>2L8@AsG?E%kmIh)sfX88Gqd$y_9d|K}a$ahcCtsp>hS^76CEY
zCGi<5aml%$1kJil>e+arxtdYFqEuiyns3RRrRnDf3}m<gWWTNLjTCRy2;nBm`<;iG
zezkX*wSNobe-r0J^7A?@nPUXMMLBNHCStOjYIrad;G76;En0>e1)7a;#CBYHh^PBA
zc1z<Mu!gQ*1QkXiC0r#J!*WPl%+T2BtW-W32J)?P%Ecr2o;nHdxN)W)ozBYW^$$i+
zoP<nHstpjV@EC_-+$-x$^}0uUoS+{#9^tyY#Em`&xA^s`vIDMT+&n7)TWJjQbJ`@X
zrboCnbCXW<%%8rJ7sw|gLw5EamKXe{&dae#v<|0DT5lyVs8UKU(mz^-(mX_=O+^ZS
z)zS$yvggfos*U&85QKmU;Ze=7jRt4`1%5+8gZd}+jS}o{yBbX7k%LoB%SQqQBRENg
z0Uf~!FhXD5y(tiQO-sZTG*DJ5fvoIjqZMOikcJ!{;|DhKznOZFYx+vanFK@vl0_h5
zno6~i2`mGPW3Bo_9I&jaa7N+Te4ecJ^0?^eG04%SCS3rUP30x;0@>M=ob|^K1Orfy
z_*@}Z_Nrm+=Li346_w*av51h7GWNKf#66)bDP4?z^}v@fxcpi0gO$1V5eZT$v)%|Q
z#TrZM1+R{F0VU2&o5F+20BnVuUuAG)lIF&JJno8%poLU%k`v6ETi0eO9r&D-O6Kxf
zha8RqH>iV;NBXRlxk*y;Ubu!x`v}#fL==`6IEhab5LsNo<=s3}k`SId4OB=(tA)Le
z*7$9B&=rVSSIn3s>!0$R4&R0g139avJkg@0=K@AC%)ykyQT7*c@wYcQqS;Xn%Ec-8
zQ11E5WzS!->+|nIy+JPDoAN}u8<E7z9Z=3Pe@xA2k#|neLYx2ZZnxnUiW8Yc`N*V(
zXTL;<#7YMNxtRnAYTDxHHIxh`5$7Zh1060coxN;-o7CGK+YdOy>{6?SdnliHf?Ocb
z2~}J2Y}?AuX^DV)?m#T;87xhffRtTY=o_w(o~JTY(8isBKMrdKt@_xgpXetL`Um*5
zRKb0J$)=3LUPd9rK7=cmaYJi28t%2l9AHx4Ke(w`9QDnO{f!qf&uO8*sahkv!47Ci
zpMjWv@UR|6U1HF3GrEAId+<8J3iNr=X)nngZHG@c?-6cg;HU>IAt38d#VR0sz5sh>
zuReMMMTVJg3Vvmp)^-{=s{r$qgC7?4+qlE^#<&yui5}1lLAG1IBDlzGQTS4N>}R0a
zMEK-{H05rhqmCRieJu5RSq<0t6Y6{?U*C)-eSY9Z0Fp#!6y1M1WtQ6|kUI>7@prp8
zqzwUD2lVKGd>XKbQ$TY<##nioWGNFUp+_BWtkt9i<kK#%%i4Z)etSFRM2(Qtffeuw
zl$MYENp!w=b0DAASyg;*Ik25HdM9!LX^7<0Z=B1vtJ|_~-z=TeaVbF7`VFWfy{HW^
zKm#Yl=;^GSq+wB#?W#YBYZIYFnjt36rsJm}x%w3tMx(BXDIdYIFu>N;csP_GWI~WB
zWVHu_7J=pMfbOwP4p~1&#~UsD2?Z#!XagJTZydH@yS^ZWd&6^ZXwtxk?1T(UaXYaB
z4G2`+f#=tq_;%DKYG~JeLX)nAgZI7gOPj-ByL2GzFmJy27QLU#W+ZO)qtanu5VsqS
z-KkOijkMn$H1MzndVZ`;2QG-Bf<;kZsIbEmQa$mB&=HkHJcM$7ha{h$0z~{7{~pK!
zt=~U7G&uAVg$%sMEC=I`($}(qLV~#xD11cu6gXVZ6xB7Asg{0UV4F9G@@`N@lC@g-
znGHNVmpt<FCDLT)F+6j(q8J?;5=fE^f=HHB1E6T)o&W>|qnM|t6~g|<=hsfU4;Ti=
z>;2YWZ+;}E56)j40D83sxWpIp@3L~LlpsC4NRsDTVhAB|26)z1IOpgMc{oYwRzGUM
z-=$7we0Q=3;>}=(gS@XqYazPx1X(fgrG!y5u_1Ax-y!Mevq&tS{LqCoGcbcgy)q&9
z8kvE?qGRuHzcG9>5LD`7sb>$TN+yEK@rPk8a9#SB2AK3XLEqQoonc0Rheut0qlJSK
z1r#DR983;E_qz!gOCDVvUz$pOB;foQ#HLgXI0!dI>#+xS*1s~wQcnTk06TrDF_fK7
z7ApAb>TNc^enp@`0scD8NL7XV*sG{N4$6Xe58l?f1Vy-fs?-oKl2X`HL5+PJWA06r
z)>d9HRwWAI9uKIKdSQ_*TZnQj6t0mcsVf(yJHcdptr`kSf7Cy0d`Dv&?i$(bi;hl@
z`9ZH>Gw(!?xwol){Er)fmuRDg&xRtSQ2cQ!d!q0Iu8!X|^IqE~@4QMr0((F9j6nb)
z11;k11&han@QY5OE(T*Iap}?N2%Y4_H}-j4Zt$o+q+-ha3j9eSKp4KE^pB^qNuYfB
ztTsNk{EDht;ByEp)j?t@I@(S&Nt#A|pB(ldk3~!U0eifZ{=iwcapk}E-ZUKQHvAv1
zX%xeeEmXt^5k*w?Wm*+k+EBKH6k*7|HYJimDU!8SC1l^1P_l%QeI42NeP5pQno+;*
z|L=MC9MALOIl5onnVIkRTF&cSKIi8=uQlP^f%qsCG??Gw=t5BXgAXtFSP2mD_dw}A
zRw)l6Xd&&Cz%|`{yh7+x6;~cP?n5dOx_(i9A1y?3tk2<c+X}x$ZQzEjgSMRK1AVG#
z1P2($p>2*GVB7cl;AIs~aKxdM@k6@g$Zy}$gagED5WIwI#a^sS70jG%l?FIRVDLh<
zqUhz??o-hrm=an4pAN@A`Mf{=YSphXeKrXz`a8tiA~cq~tzPPK8lA_LVe7!~5!v&X
zLb(7O`JJq079w=ic5Bc?#cqGR60RRaFBAYrk1A%l>~GzjF5KQ2)=`oN4X6z`KHY(9
z!azX%+SX49j+G*AS-;fK{!hxW$6t9ud1&N-{CMfy%I^Yrm^kXzCo>@O;Hmkos7B9X
z4s*}juii??0De%0#3rwpg<mrP@w{ji^$!XyLxKHiYs;23?~AD~0)2G7`ULAz1ANq&
zjmtm=VO0b0TOO!a(!hf6;%4L;)v-Z~??=MBc%_tysJ=z&#hxIVSv0|;y2#obuh{>o
zD#xk8%zav`b+~^WCJ`+A<yze|>;#=WB0z78J=EW>I6nbspW88;Kka&?);7LA+Gy8Y
zBJ_+&krE(6l{|LE6Si(Os&JK;(6PD&S``Hu-nFQHJP&#OC8gHoO~2JzD+YQ%<{dIV
zHD<i}OPlOaug|jyHcu5cPb=3{6`zir)y<06VD6~t`JzRB=3wXXwO<zq(q5NO$%5YT
zQdjTOc??17Wt?te1uiPWDncr6#Q4IJDhws2AnhgR;(`}+RX=#SCFe#{G`Hu$X-|i6
z&$W1YfDJ&89Pk*9pAxGaf(--I>3#ZPkTE<ucsb9?pArmE!#L9}^FS0v_3ZUq{4E4L
zVq=v9A)E)Yq-W+oE3G=&ts)Y6ln_9YzVa)eR94jr#EK7Ebq+x)3MzCLts7RveoMY6
zX|Hl!y@zqEO^s?-(6X?eeq8?*Od=e*%k_pcSP9&cd0WIo<#_KNMbKA(IhyRbTmD-;
z^6+Uc3eP~uBxz^o>ozy(w<O$BVi(~F(rXRd=kl^^JIWzk8hnUT<c+sE(hEs<^FN)B
zmNAeLY|8Kzm@7?9$Z7a>mOL<eT9D~35O_FJCxE!3jmU)9sNC%#E70}q*}#P4o3%-k
zC_8#~IJSXPDiNzR4<J>YIUMCbu*xmmPerq0H0y;NNOUaK{)|?-_=CFI$7p}9$PVl{
zo8O*s0p7hj9!r$-6M76C(rMAFQ^tPm(hRr>($cq17C?-_cm8Yk0Jxf-7bX|IHw%Aa
zT>bXKXQyLG3mwy2L|^kbBFIDw9mdLj0(^?)Dcm07F>L+t=ZfgbjQB_UsEZ8>5}4cO
z`SG<GyWzbMx(^vd;j|q?WN#9PAgmoYygNn)q063QG9R8(q`h*aGCb904eVw*gBme~
z2~Jt`-DO!CYZqHS|F!ZF@Du)kQ8rlfc7Dyp$%2lTI!9_eZ*))EG@V={ju4hHsRE~u
z_yl$M)aR+7Mt{>GrF2+YET{|mwsk)Q0}Tt_)>j)%y_iX^=hAtWFF&$I0^dmoRkI}_
zR}b1rx?0rIKisYo4`H_oO#5_FrGTb0s&qm9O}+i)J~8G)<`zm?welYFuN95|+zsi@
zK4@~d&5dY&bwT^S{3w)%%a(T`*Mgc+L`XDr@o_sM$nBF4(a=)24Ybxpx|!)nN9p|R
z(`Va-Q9<?AIDR-!&<zh)PrS?s>Y3COh1<;KY;eRUvcqTAQVwNI*{pbfw+^$X5C`XS
ze)dfzz)i7D^@cw$>`I4tb*=3uC?M1UxvuZK;M_c_ng#r=_B_ATT13mn_SW5^4$P$L
zn9;lM{Q=;~A8S^=2yq&UX=(bnPe!YNuh02mna=2COjJj2I}pm@jGTLC`J1ozQw)4@
z)T{1O$*bcrp1<bkEh?uu%3<A^=HRN1aCLA*3{Zo;y1w;a=ixwHw2t_#UC*f^9QYvL
z!HXTM#-n+wgKy(M8?7pTO5uMMsP{<k2X-UFmn|DMUcM+KUd!8qp<`0H>AE|F3IAN+
zz{y}!UCEK$%X-AoT#gG#Sxc>%Ibt>i4UgO^!xda3t4fp_e#j)(yVOPQcMa~XIMpsI
z8h3#Yx;qH(iN<M@F<T=E7!28y*2h0Vcy{~Sj^<HA*Dqzusw_|Uo>}v7RCa!Jn$3Ct
z%!9@d|3q$CZWnIqf!Cu`+MJ+p>DOCkhzTv-Sx3sFuV|3XYbnP!=Nq+Dg*7qG=ALL<
ziwR%tB)%Ok=nz**k`+!bc%h$sHdJB)h&Jr-YaL<U&2a5thU37&ZUef;m7vLyZ;SHG
zaK|u`3gSHsdEo=JkvG>rXGL0lW<R)Fs|@*zW9Q+w3D4%Bo4q?Ttzqbg_lj{XgS^c=
z`H64Dy2sbLze6+Uri0cOn4jo&6h5nwl8RR~E&B@Byxqm7kar4uYtnY<ca%EMK5;#1
zvbf>6hlT2|g&YmG@inP%XVr1M^!Zq-8RY@5kL8c*l5&tABgkIuEteS34w)-@lK!`5
zF>YsvOzmT7p3PpWO|rVKr?-l&p?8m%u8v$?sGT#sNDpI3%DS;RZAA5Q*$IGJ`d|z%
zM0{`3c3td9D327GE&MujyC9jKyJA|NnR){>zIqe1Hfk~DeM~CY6l*Ye#6Ac0$5ddh
z_8#<oR1e|&S<+ZkinjlX(Z+JVBlnxfPHV(=+M|U77j%Wjye{Y3auBH?(0kH-7{8kB
z$3R;w5{=`qwmf<qt_6KrpC9rGSIR_Q%qNfRlZoJm<Od~J>mu;cZS=)Ts+rEJ34Wh_
z`BQ@@U;JRvAx~$SVPNA7X*EHF-sjB!TG_Ve5ra)pMwC>lRAdgn!CIWxbphWJGxRJ`
zDQ%*Z&><C+(5KiG(ObF`G{I$#YHvSuVNRejX<qJ)=|^>mqfAbAGdtM*oLiKOsgRnB
zP<3nTbaTJd#TgU4=6Uyv83P}E?8hZQD5lg1oblFHZO3jFoP=9F#$y?@RK002Jn<gO
z{GZ3xXq@<TjJ5mBEgB6;V0rBbZoak?LJ3>GXu#sn&^;#PVI{dPx*L7#Z~PF7Q&b@u
zWSJexd*cJ$wvo(}B5A#>x1Ot=5}7+A7&cX;@922Ivj61i9CT4d%+6?>qp(XGB!hji
zE3-8v$rmKInT|c3oJk#0JT1PocG=q3u!72-xZ4By))7Gu2pI$WtXYpjhs&-r1WwTq
zQ`Q5}3DYZPlb+1Nrp6E9_a&}RJQ>!v%zV1_cSB)y;p!jGU1`1>J`j_bGvdihb(O(E
z?4Rk;nHaz{5o4^b(nB6Rt{?-)W18$Fp~B?kLB5+1=ViF&F=nzjT^?x-mI{Re0a-=u
z<Rc&9?K<%GlFzKNq&b?x<lK>G@<Pc1k4eYlT%}en@E)d|I6_A;T-UYWcV6uZrYNSJ
z*l9b5nmVfpfx0++Dhw`}l*RynVq-zBsC&3<QKge*wqjG(p}Zz^>R9<;-sC%Hw+elT
zkd%rqFa621Ydticx(bb_j>$0H)x*18kSOmy_o)Oo`>VM%M`2<&ul(AJGcdZ0)?Cs9
z*))a~CZQ{_s*$o*yi2I$z?7xhTZHw)Hx~Su80mK0;vS)7J<T@pYnOD*2J>+p)@v{4
z#y*pKX0?*x8EoNwE5LsG>EtbE?l<0B0b)>wnMYhK^CDDW>@C`N&&i7Ynu>bn=~*#(
zXf3H-5Q5DLa8Qz6oVm}zK*M8I_~xPE`&*t6T*5^VO~h{YG<WcEc0;ogXE^4#yr1RL
z%Z%FjRugNHpfj`6U^0h<f$$c$4A(ado8zi-PBEff%>A2^dJ?Z6(~=r!3SVw`|6W66
z?v_~jR8f%l73-+2iz!Uh%j=;POW&(+(-%Zp?z07-v|!vLH4U2`m<zw2={e4?sYe=9
zJ6WE$hi2pbrC@<8HnUQpNKe77(u&QCrJ$uuGY{{pgNv7=f*N@tiaf(w?X4R3VuF_`
zxqwuc8xpV(`NS|7b-x~O<IBDr$#$6<nH*zpXv~?uw{Rm_k8`U92=cQgMh@q?QfT&#
z!(A;p&(vOxu4wy6KH`^upQiBkSzS5Zd(zEo)uWy4wBPUn$G<u0Z}ASxv)5~xJZuM7
zfq`)efv%~?@rOx7krvk&gP>)X*bcrGqsoZZR(<BmO}vy<BNgJjHt8rx8(;ktBGeeO
zT3w-wlk4V(E2|k`$;HndV!+;mM%2|!po^~L4+ziQwcg{NrZagejk4o-D-zK)>6Vy!
zlE&(zhwTjQ7=KrTyKuLAF-;0|!}~ZzTfBR$$80rXxv=~$kM#%N8;W<SFxD2eOI=Or
zai@|v=7`gS$HJ~bmjb*bXtxFgoZVr%I(R+TrbR5t(3Q=tn8@4-Hj7@oh@WcDcCtTB
zcK<<ha2c1kr&JMIQEjF*#QHlK&^}m4It-G|_M+kuKhyI9!R#xh`AZU=ruMxb<T4}*
z=kfd$N!Mf|u`Md%3?HQID%FX8|E9gn-H%?P1jx7`oiJ?#p|Nl{*|xcFODJIAz-|nf
z{~q5n>|3>$+K`eYM3ctd=5%a1lbyej-b-%$m<%5lTyZj36r8p#9qV1?4#Hqtxw5<1
zqCMQ*2?xTs`IFO?TPLW7ff-v^*1O;xb-~9(Y@btwv)Zta-@X!P{X<xS*N@kq@WP&9
z-<nOnJrr{JI0I%@EmyMTxmb6mfD~o;OhE)y<;jR3(RA8(cMGQCeqDY>e;ELtYWVRT
z(flsDb9&K>S7(=Nyw8~&x>60j`QBt_$9CQztfOw4Gil7^rq7kO>%*s+Q92-a2^)l8
zkCA~hUVb{!O9ih+8deKyd7H5__Q$?H5x=MtH?&Hr+g8j!Hgv1~{D6+(n9U~tg^|4A
zR`G8%i4ecr!QQ>7S~t&n_fWLMw=fz*KCOMr0b2RYMO;i9D89sr^Bu$8V&}#PhGWl5
ztUsKzHz@U6M+yfK?@l2W?h1TNm^1HcJsU4NCy{ujU;BL2Od^~4nZ+Ozv}pL9q^#7@
za|2A)EzJ9^?_Cw9MTU4)FdApJ6MWY@1;JmYIRfOHT@rU<IDSrrWm+EIGD%>fPMDYE
z8#eIXeBpdohgEg?KxHGSz2}YmY#1yHSaQ`@fj^)!0U7vYlMjyz;3V&DIw(iFz)wS6
zZr_4%NWXoM$vva&@XP<gst5o6LtEj=(pm)05gnYTAR+n@M!!|xQH|TAR%bV9y?whu
zrsqikvzv(&dj{7p_&HYH2=#m&e88xMTw{%FaoP1pkajsqceO|WXtGRSvjO6=Sg42A
zp~rMT`EZ|GUDmvnQ?--o3X#fiP;ox=BkKk(@9o=53&>Sct_d!yT>lce*n=Q<dFo%P
zAVj)f(5{_x=97Kc^GyNs51&|=zR5d{27#v|eS0t%|5mB~-iuopa^lvLrvy%-iw!`#
zJ+ptpMq0wz+1a-!j{m@kwlcW?$}k+VXbfuK&2LLRF}snQ6~AMV)xsACT+HcbBO~!D
zYU_T1cJ6ouawjM-fq^S6*}-8uw%W8`IOFF2sW?_q#h(uN!9q@I+tIEImki5CI7^m)
z2*Vgc?l1M!6>(0=`xb+`S%7Es*Xwv=CxpfVp5#4Scz}z)TvSbdR{SOHwsW}rWvXY?
zNY8b()wQOCLu;nNatb8kilGZ1vJl$v``pe6;0Q~w&}yjdkn9$YEiD7(Rxg>#Q~9>b
zo0sBQWwOzR1p3gIin#uiT)4g8+eOygYL=J8DijFoK)Sd0JZ7Gyp)F;%d|%nKq$JGq
zZ7#1~?l#=7oI({ORT6Q0E}^w9Evry_+)#1A)iq$KENSEmlz9=_VG|a5dH~=v;oax3
zyy=PM;cW`EUb;Kd?YK){w0)sE^UkbS&8>58{OD$9VB>h2WqQ4>$KMIy=eO|wL-b;n
z7-#0WgbV3fZbpJPH@(4K8@^sz9?nb+(Y_v!&U|^Tp-Uu=RakVaD`zq3UB>DE`Xi4|
zU-AT3cAzS5ZbE$>*+axKBF^+fiW<eCCh5_6seT>}m2JR1??jbBrR13-na|{I3H+ry
zx(;9JNed9kD`X`wIbH49OYw^KuX#nLY_tj)i!r!F`L`K_^V8S-9KMNK#94;JQGCq?
z9ztA99Hb%GNlJU?EI-#fV`wpaSK7LsWh9-l;Y1EOX^A$)?m)ZL^hNsHTY)vPbkt*)
z{|S)KF^%<>(v$E7F4_aBJlsEs9t^Px;tWw9w-<}MFGVp^?*DkKjQ?<QB+@o@8myC)
zXG{C)=3ujD&BEw@LU=h}JWNybFc8gpv}>pQjJ^qaFUII|h+>6|Y%Hnj3wo`$+#ZTA
zz5M}unW+x~t!Epex-U1;BIaNTD54#)<WYe2_Ktn|VP>o|<I4*TU`>fm@_IjOju9y$
z03B%_SZ=b4vI{jO@MA{f+)`h4r;5WFG2sV`%ba2aYQdi5AMf9ODsShb&r$mh?|s(9
zsge63jq2HVa!5C1t%6(0wamvnH$26eot@noCAkv-fC6nWntA4(f>1#s^6}-haxhy*
zldxO9><HTEt-7HzLUbq9VR+5d(4HjN;$2~*#6l8LUWHQ?d1gzUB!~h~A1yO*(VUOq
zCT(UAuT%W71S2eoc#V)j=s1TPpmvnUUm@ixJK%PBl5TtOW6sycd}|lq+e61E3G)aC
z7j>jq(F1PGxsR#Z%f(!JQFH4de0cbfOcLK0-<`WC`haMTX%3UbU7LGX<Sq{v_c;&z
zR2gW66?*#-1o;mAB_|Aa0gpWBHvwYz&5j8@8r)vl?&4(3qtXx86(faok%Zf%t*_7{
zuRQMrJ@M_Fm9<?{SdU+VPy2k~AsUat-G?9zc#h7ehcAqOpg(5Y-NzFz_i<;I?@sEC
zq}76??nQQeIEenE<FtAg9V^p{!WPb*vPK8;D5wNxwj)9iv8Y5_4QG$<!5w44ZuDQM
zOv<HqJ%3b;s#2J7ds<{}6nwRo$xs&9XLDBH>nvOq34@4(L0EsziA2#Vcj)xsTlTxR
zGM%~_CtIXtUg#f%=R!bcLF(5nnNCos5myi<ne`}D4<2?w=I#YZq#w!=6Qa$K#6T0m
zUvGnbZ}l6x9(Q_XS%vF6PhAF4k~faWK(nUmySy;T@WE>LL;p7!yY5{@57&mx%qw#S
z_tb`VPwW16TbcK%wzO}+Vd<M5{VaayC^gt~5gsEC)W^Qp@Ed-6am=YO_hvoU+=m!}
zDOuR7qhb(mLdR6N6226xs55=>llEJiH>-7KV&Na`JgDgM3#Pu25f}T?ARBHCdhXh%
z)1%7b$FT5l5)0U;C$vA{hU~ZDgxT*_QoepS9;^)A+633Wibx&2PYo8;MXTFtXNp_0
zf5|^$mwzAA$}-Y5SuX-8VJNI&C2kkoD&sFg%vi3T#wkHecd&9wxgzJ?>zDHx=O>R)
z1WMC}^wBHBv&r6u`v?qSFRQ3|zx<i;Z95^i0qs#C;!KH5JARY!8C&Rnq|jKFKJU_l
z{Rj$aX-|r|yuYY`vYH(h*cq-yW)}q;ZUuPCYx~~o*Ys8o+D{t8Q~m^B>oJBb$h*3g
zaN(tzl3r}a^q99;ZMhQFSkur*a_Jp(st9<YV8<^1@tW>-VQDD_s2L(npv9=F3kEZL
zvtU2HH-}r}cFP6rpHbPD+hf?CvU*cdJVR!k9M=(acwMXaI9*EE<FO>dHi@ob;fK&Q
z1WIWS-7M(E#6|2)SI@}k@T<RC!`Qw(GS%`$rV1tc7Z%y)e8U~A=t~7X7=h8*_<=t2
zgdqlTbWu(jxIEg5y1Kgv(GnPPc>vjCCyim@@i33`YWd)9oem8(qTYA}(M)r>A;2<w
zn>Lt!+CX1l>BBh_8UyQe0!5+ZPL&4)8=5!PJG95nU+?Ny$|oLG)>gI=d|QFmA({mP
zrbDALTWaEn$-^T0Rqb?QZ-vS!oH1Biyc`JT(1!;=zX(Q$Kj|xd<J=7%#pMMs))&<2
zj8SYscu2E3WdzsmaDR19r;D~-f86$A%v*qQh3<k-9K!8Y!`xv741?i8<jw@sUsdjX
zbMGyEq}Z&?RVXwF2@bex=^G#?zmz1{WeSze+S}Yy<R;%45nv@v_QFc0W{iV~o$AnR
zCh_8w_D<ZBTxr=<>*-k<IUlM<w}CPU=;t&PKJq5<p%@*COK&KjT`w5(7zPmygIMn;
zYKoy@foo&C1^Du}&HqU5Aj4TUUi$J3qozV>6iDz!;c8~|8^ceGsSjh6h(8_Ex!azS
zU+qK02jShY87JM1S@D6Sf}eYh`3&80VzfDFQ~mKH@eDn;d6A}z#$(7A2x5C&iVsQJ
zlE!qr0d!$AQCA59qjQMBS$O~!)SV<1tjIaP{hZUGj!)Z;D5UT%=brY4z503-FCR#5
zdsi==^F?f|txS7=DDy_}We9sfyCt4G479Ar8qwL=7R41|orb>m#=LEm+KE@~=daw_
zONmaIv09^s4#N#m((mB`a7O+1@pc1VOfm**<6k@Gh`~N$lWy_o`(l%S-%~-j5WLsO
zM0>X+*3*~KnS#6Nz<Czsc24_sZ3&aE#sy0KRYlFG9*`2I2v|fr0cJ@5o3b?6U5(rH
z`g6VzBeNFx?hy5{#vARaIrZ@Z>=#fBfW<Ib<+u9Ok1qnhsWvJ*+1cXJq~;m;OgizV
zWQ(u+65KrY3VX#WjOn6$U0x=-0xS+9qo8M=kC5{QE#$b&<@UKP;4-BP=p^K`9lpmm
znugI!f(|0Rg~_~tHb2l&F|$Cf+%ReBn_ofoILCD>J?#mZOK?v)__|LE;BHr+14{?Q
zl%;Iy;+;hjw+Zcl!A<Fbdg;|Nfbb88X;sc%l^*35>Bs@!?Xy~|gyfx2K}rrwD4<~O
zL9NxskdPvmyOVb`xOZ0_{fL^4b{&E9#ADAQupT3@1p-%aKHqcg)w#1U5ffl<ml{Ic
z+(2Q;@Z*^__kl?z3x)E*UB{5ZDHJ1R3Zf`u>H-X*%B~GUK!0>>c7O-u9~^gh`CFHW
zgOqjEcsMKNmaNC;F1gmcG1SQUIWDe@k#cu4I_qkD(v0)~gdOh*A~7Eu3I%LJz9<1A
z7Aq&H?5F+QJLdh~2AP-qwdu@gE54=@oO&MJcFJSlh;&!(wHxtf5go9dnk;avAMI-b
z(pKh{r}@SgowT&`v=V6o(!k<?E&(G^*6qa#X%KJ|k_dAuzbsUvMCZQmbL=-f=UN9=
zRU>mw5^dEM@P*I3eF4?deaVE@CP&-!U^Ze#a>b{*Wp~jmDNrE*o6yW~H`<T>wBXuw
zLlD_r^_cLFXcV?+6hTdRh)7wT`fHTBtYkzwJ{fzYIL)?%s~x1!zYBKLRy2zbmwi_v
zVk;sF+JhB5ai+6cFtAs<Kr=uoASAS{X|l4iJ*14Uj<Ba<HXCZXPbRO<6r{GPJ0(C$
znJ|JaEJ`xepD+PO*55so)yZw-<H*a_%rILFcm_ZxO(B<=S(L;69*=&vJob%ewyO1q
zR>7f;k=@#(6WH38A#)5kwS)u;7*O(xwAtBtONPZnbXsMdK}ZWH61fyOAV0dFK%;gA
z_J-P=;Q{g9Zkq=pJ*1a;a>j#m+#yZ$NZaD2FszafxHM-im9yk=4A<uRSArEXL#fZ#
zf^EHUk`wa8eNgnFV{@%l##yibo(yfySSjC1xxzxkshhB^eeVjub%^Oz>R1<YmUL*k
z*GeJhdCcb-<OFOv3F394HW;$ef~<2U^&bGv>9Q*o8PeUQmqM-{2x4m-rHsRYRJ$0`
zDm@b7Zz02$0nQFID8J|a$QK20Y=95MGUXW2G2K0ncU%3e7JVaYgwe?7wde4&^cI|K
zU8|}dI?cWWC#xT>B8Jn3m**9j3^i-4>(YD$cPATyK8h}Y$<T=A{e%nFwv%SHR%G(a
z4IgeIK~UUq!=$ACaeV+~9A^*$F&Zk-K-yD}nI2r>?w?{|2f6EH0=Mer<`=MJ5+n`|
zg=d4upoPT^&Ry2=0oO0mQK&+BT9<~r8RZ}Fj{1z|i@J_j&<}B-^FM~p$1Y%1WBvJ<
z^0rL&4K+{ZZD(I)y)kNaUCt>Svq)hJALS!P+mAxiz8e)~*#-M2d5CB4UY!vpfx1h8
z-ONd4h8rE8u+avza=|&zN$~xw1kM6jnbVD#CU)q6&B>C8Jc;0#7kn2U#V}URombW_
zsXyNc@i|1xe=;`UhOkTjbhrd|FDK#tXCAD<%2Xnt%wil3`RJR`wwP}_)T%`1B5t3<
zVA3^m4xCH2JzM$}-taXDMiTj600cgXqv3l>H^`O1$D_f84}N(h+EpzL#RM`_UKWcX
z%XWk7?RZ^<aOp&m#%$`)in;GHrTEYvG7*k?>`Ex~$Ok-L&wl>xsK7_f;KOhr#M~Er
zg8h3u&)2uZ(h=~wq&G8PdfEMnCsdAfy#KzMn0xJP+WxOs(O}YHFnNQ5E-)BoojmLB
zHy^gE7=Pa5H?}$h0b<#eo~@Ki#r&ZMfV*vmX$;@#?HKa&u0h6l`Lw(hb>#C1Li8xN
z`ymHfpePKzW95*c>y_<;S1w>ltMgstH#0@Mq>$P%;j3<NfNJPjxpe}3#L}<UqV3s2
zVWq}f(8)&;*qMXfaEY=r@@pIqspXrnSF>a~3~BU?KGkYFX*`JJ034$VOCBF<G1(D*
zKBg7pA7{S~qkEP6!eAclEs$U$-NK<%PDZ|tMEO-;EcCTvV64Bo#qO{ws)jdZhw!U+
zJhO<)>I@6*s=&4t<D?4K5@ZkqKfoiBUOxezpD7ChHh1rR)6Ief*u@dhY}04^B!TWs
zx{R~q8Rkx2Stc&-+w`m$`^9Q5`svw=sI|5bihNFPwe*5-(Jk3G-tgV~?lmix`>CYK
zAo;=PXJtu9<2X~YC$o=Zcj*0Kox4<P(H$z02EHTd1p+@`|CoTnwG<3^9Q?VdsrN<S
zD-5=>i8+ELa!6~~4$F9tuezy`WhME&=kPZF-TlxPf2y$)5Pt-uoPtAQdMg!-HVX$R
z{DogRu0M2*%7thdc6fgJp)koB_2~zMp@ePNLd(Sj>$%V)Cm&(RbiYiWN=O1aODY5>
znJvBxy8lF<!|c%C5m1@OSNb~b)h)=ZdGvnAy>7a29aLEtK=E6bM$Z*0SB*)(9ODTr
z)i6eFq3|0(`!fXMfMJ(}AvgP>7T9D{$4_TD&v}kCO!G*OpK#a|4D0)v34F&7`jb5c
zry-lb%SWDy3U{;);nv&jz}}4P3uub{IJDg=$dk<v6F)%yoc?p<=>g(=-m#bisyV3d
zoiA=ro5E-?9f!;r{ylKTPWIuLgWu;x(7h1n2%s}Dec;sN#Yxq^oQlidULhT4V&5wc
zYtVae=Gi`J`1u4eQ5W`n?EUI5*wZ$=?qOQN%VcZD^p3ts{&5O*W$r!rHri@S=)~o+
zU+tH-ZU1ReW8hal0=Y;?5B7V#s?YY30?`R3WbhU#Y2`^=>PqM0_yJ@^3ixtO&7ct}
zg9+G|CkZ5A)1NpJ4UrQVp_tsAA^J=ikOPbwi46Mk>In^u#zkbGb;(Zv*$T;cXYeu@
za2$)X4lYg<23Ghv2<~4UH9$5x5(h|29+<1HkRBEW4B0>iBKm2&D^BQ2hY7KdnKt?v
z@@2fyv>3)yoIjcxAFaxWpdh9g5>Xt+=ZnGl_n_IF&VzHD5-Z%U?+>XcH~Z4F&pYQM
z;&&qZs)2=EtEbKPmmGEBBSHDJm|6AQT`lG>1zC$MkWPtagekcbCfVVk;U}UKhYKuO
zH*GO`En0%#_jYA5)uPR|D1&vF#RG~wtY`}3KD8N6hY-z9@yyXMZw1xMw?i#6;v)vV
zYBShsTTOmmNcPB)jv#!->Dr;-p&tyG{Ozmd7n*nVSiQiZs6vqGX_E64O2>ZXQ0|D_
zeLHNrL;a)b92?A8g%_N8+%Y6P1=`r{&70d~`X@R+w3=?mjzl@M4lI}FNpLJ7Z6(91
zljr#TW2yGSC9%f@X|FpzYTei0;1C5<2IBs5qwij)P+ka-pNKD82Do<d>z;RSs+r^g
zRV^SGbnYpf^f@Wg-Uov`VUuAm-0jL8=cYL2gUIbO*i|IEjmY;nZczl^lXf}Ka;ZD=
z-R-zhzg^Y&GxtN-mpweox#gg^0XwntW480+B)ziJ<|E%X>+rS%Hf}z6{ag7_HUt??
zh=N9(#odF_P)L3K`Z5wF`RZo5%Wgx7i7-#ynH=SJU-JC!1rW$Ih0CYF6Y2u!d%i_9
z8u7<*jGaPD>g&*S8{tTsnpr~b1Si6j*EimA-;j-HBi4;4g2A}c%dn87VdUuP%X$}b
z&H<|t-D3I!hu+q<3-zoYoJ}4b>N5{;zIX2dJg6TY^jiDuHfB82OTt`M$&vlmqCLWf
zb%#2@emyW)HGly0e)8E<;IL@m_12wF?)e5#<}|au4luIXS{qw0<YbDWQ2rc5u<?a7
z`yfmInVGg%KA>X3-Y8^|g%Klle{mkX^k+7o8wX8QQ1)xz_S_L306TpHx_8pcA6#95
z(2TY>CJ;n0FbA~lgg`KUJ%*XiYo*-y#)$Almf^^u4oJ>CXdZibMenHV8%^3RNAL$a
zAW1t5`Sh97dPI^LhkQfaChhyV2El-^paWra+6xXu8HTJBRWy;_A-L`bBj(6<k0!|4
zeam<}>yXKO_c%Ocpe|1iyal%<7AMp3Ul41&3=M-Sv%gYDc!Y#3El+kT$+F^^u-*s4
zl>kg03Dh6YJ+lt3e3{GN*dlkkB)pd|1OQssdB1n+_Rh%r7lYH}{O&Q7UY}6w7!_Hm
z-@TqxMH6o!?OCxfThwT4o~)+`E2oZ^-+mQRZwEWLt}1f81$dysr|g?D9|{%=DESm&
zbT%(z$RdZ&A6yRSWt!8&hwt@FS$NRn|K{Ge6B{7d^&&t%D?h=h8yxVlewB_JBzg<=
zsE^l7Sdw*FKxn_Br0IyN5XhkI-hJ0@xa)AqY2e516o9f`9!%<m2<O{$F*|G@8*_uJ
zNj+qmw`<N0iz%L2x>N9(uPQRv{qnJ0uMVyGFik|mgX65Q?<T_g%oe*o9(9N$bm)-w
z2^d_QS_DUNe}vygDDF+i=x(o9N+%u#=p<m7f7}uCTreAghL%bT5=;+&2uussPgnp3
zCHT>#YDsml(k6}2p^6eli(uyfX$;NYz4sF25Lk6GJxfQ;+P94?O}~bMUw+U?E$0_Q
zu1K=sj-oU1KNJvjNp|e4SoVt*y<P@@xyCx~Kc93sC9=5Z0DNzr8I0(&RLjogns~Vp
zA8#HOsP_o~B20PJefHh3KKB3<(niGDb%+ySD<dyn6S{$vz`9j-<<|GXmG5AvS5466
z=-sTejJEIeC+h%1Tg<A$DGBbgbE}Q-vFr}>N~7R#?!bx}+#i9$tLQ1r;zfscNt>IK
zn?UJhxc!_pFkFaHP<D9ivC;@=x()r%)uxHw&z^Ryw^`i|FPvvWDiu^`XJq*cWZ!Kd
zqQ0l=3Mp=;7(zyc5h$qe6A-EsoC-$3V>ZaNwh6D%fm-dyTKJa3Q&CbkWBVODH8$o8
zjDcgVe?Y$}x2g`#nC3-T^&c)x$nQ|WSAVZv`MI<hp$Zspf%Ps!afthL%`E7yM5=**
z9ZKknIdFY$Y{oZarmLpFf;K0k?>ijVuU8U@$YOM$9LvgsA|?0-lP}<rBY>I=-oHg)
z1no9vpt~>y@bAvhf<pM}78=PN7Z=MqOCU|D&ZvaV`OtwOpUxbOTbkTmDQk^5#UuuJ
zoCHA<3qxBF(oCOerFWxwx4=oGlsRyIfgJjNf4Ukt8AHFqCjl837G{d~j?6Os&>J-~
zaHGm^u|ASn)GxlT;vn334iP+<*7%q+25?gr=^m|Da2bfPga08&Ox-S7>Vw4Rh(c2A
z&Y-$z`063NeEkGaj<Rj17+q77UByXbU;Q;4z6}&TrdUI!w+JFT)__AkodK;|+HBCF
z>2}9AhoaLlWbw`5QW;myl#2QfeqQN$jZK1_R{pmJ*_G#^=}t?Bt(7`+6loc_Z?t7?
z5J`$iK8}(Gq_Ysb$q6W0qsUegofAgD?$2(<xU*)MPk91j6$<IWq|o@|kVh883~r8h
zGaY9ofAM#3PRR8uP~$P&D*9rm)MOH9rnF3V5t$?M;$7s_2(n05XE{PrD#D&gnvJyY
z&X@RANK^G6J^O7G{Mi_!DTwV=&4T(4!i!0>EL*{kDjN1FlR0lmX)RTT<eyy&rH2SI
zSRij9^re>@t9}~aVmTH%&j=1$I#=>fNjfHJXqDnve=A~t<WtvKFjWzqqC>;jNW;0n
zY#f)PG6hL4MsPPOLxDMa(t)47Ilaws<Kbw2O#Q)d9xJ+ha>skmZ~Hv?2+$fDj;$-W
zEaXqS1sW|aUx9#d->QvWy*O~v+!dyY4@CHuL)~$dO@O+6>v%_nW1p&uRl-&PpLVhC
zjvWy{_g>+r11**W$YpMJXEy-&rq^b*bVZU1Zf03mH7b^_P%iz-griw*KM$q+aIk=g
zZ3meQ_WA2aN4l9Z%mzB(pxb=3_q1``8_FtukmSDC)x18(zP{^Fcf%3O<gX}Kchc!Y
z$vZWTQIxa*!Z`3k@;2^7zCt_JLDD)GoWNs>f)8Cov5-R^2O7t&>)ZQR+TEL_a$|2|
zo;xde7*AWrv~SJZuk&U{%@w~r#NJos5DkiUL<*n_0$u^E90ENG!HAKtg?wV30Gm9l
zI@M*MMXC;<XT9Fy9iYdf9UZ{-Zss^%Z;@RTzXRZ2db{@b`KRjwUhcGBN|bR-bx51K
za@mD)2mK$O8w@v+*3RBBcdDP~o}0(cSqAK3Ki&h|4`+Ys-m1_jlDo^9)cUR2qCUqN
zTw};$lwaC(;OIjjy4V%ggg$DILF`siCyH!h>Lh?AVoLfx*iO$O$~J%W*hnL-*PEi;
zvkC7mOkSB&w<~jf+(OHxaS4JYo)0d=z<c|8#c{vNCmH}SXMo&O66WhcDK?iu8)7r=
z1<@xUp~1uYPPKijLUSkmrjobNrte}1x#s1|AzCW$AiN+4wQsUnvh1UgvmpW+t<shI
zHQa{}$dN2cR(c_S_&P<TloH=60<UgAD-s+3f=E6&g-Ee-#m9+?99tom51AoE<AXT1
ze@I<ocN&}u(#f#n3NoW@z(+`oVg0Jpv2v|`$Msh2A$`pm5WW+T^AK(Pp>iL^iz)VL
zipiIpz6dgS^NnQ^=B`X_0CGpdN^{Q_`_C=wO(PspGA%cMK#Uw#&+Rl|9Crpo_DFzA
zUg!2F#grtEA#Cuhy@UsvFc-a-tB;}14VTyIy!Tb{w0d$gf+*DowQrAWxjY|l;hP#u
zsR7ux(DRZWWa#9?fQh6B5FdC}pBsivP@LBZ=~A}z83`cHTaq*!tG1o<w4%`vWKip%
zCqY_<!SNye4GF!t&>0WG>>Sz@hcw8tO{TuqXqP2-itT!z&-6AL5mGNEj@IN19qL4>
z6Otl`^>k<@CzySv>;f=t`H@c7Xf%Z3p{f+Vz}-+OcW^|&5W9RlG8Ba`{mj9g_R+2V
z#aKiQKuEM9JKV3?E(pSC8NzI9ft*r0e1io}?>f>ike?l!J_n%fxld5-eFzSv{-?9_
zM_2)^0mysv-ppC8yewc{`p3_hILP`Q6<`uA&`UB~Y1dvFMJFe#z)*^FIh;U46KN=2
zXm;sb6z47Exm^H5SypE83+Y8jFH5w?bqYJ(Gwln)>B&zFk!un>9Y2=?|6}rVt&rlu
z39h4aqdv#7ujI}*uC_oTTst?yZglb%4(An+m&mF3b+T=j1Jbd5si1ojN^{Wt(au}u
zu8#@=am)tzlniRoJ{SnLav*fmW>;e79{mUqF1MqUxS7~T$YhN@y%VD3J~VSOL|?Ne
z!6)cjIqf-3<j}?`e3V~|_<R>>Hq8rQmCF`5BjD+cbX?b4IY#cD`*e2m5!Sxj1#Hv3
zin5C{W39DgUOo_IH4g7Peoq%+prCsT)74fj>f(USX2A0%I2~;xU$RH*&$g|z>bnru
z$Ry+kBfp?yi8@%=;Jm^*eZ<VqXP$etz{w`RC^7X8`VZS6FhDzfCW1(ciPsB{+HZPK
zc&fEfzYWyhbj8vpNY$*qtJpazpm~Ty47kgvm0RbYl6}hc9uN>=$-BVSeaLab3B4@0
zU};Cq##+z(TY|jayEKJK&wq&_BzLT@mPRgy$6QWxA@?)8h#&&>a(0|8x)T`iEprgE
zBx1GUi90ZCTQXcKoS%p3W#*P4WDO7ZUBk-M6QD+z>8rsd?a3M9VjM2=-qvSeo`48;
zdhUHaz}|G}bh<Y>l8Lb^Lyn?+Gir#LF}-5?OG<0i6fBDC8{h;VlDTr%k_8qBm{`E3
zsY%~aoDFXvKwDBvxMprQLgS~@qhH1@1GPD!gU<Ik9k6|0kz)Y#*n6M{H2AhG`Mo>7
z<u+^NWXWTm_otb!{;=UxT*&E12_2Jt+ZYZ(RUhQ<a{<7C0)~kp4Fm&$z#uBu+0<g>
zKRlv8)uyKuJ<|L{cE7kNX^5tf?>5g<$u3VtXX%#6Ye4p>-=WvfeM4aNl8nP`a-<d6
zCa@;m-_^6$5CpvwQcqr^-KK_)d@OGtBmX@j*?l5W?oK`>yYvuwiFyE@Q*b+AkLI}l
zFnuDc1TWeOokNy+W>0Nff^_j}Ugr~Ht6qk4&CHu`<a?*1m=!o6Q_||-RMXjdV?zg|
zY+PJcHWa<lW8=2tJmUTtl`E2O3$)O@=v{oMP1$vXfRw^T<ghW)nS`rSOU~mwBKE<T
z^)TOYUNd?bew{o$E%Rlag739g?VEzVU%RponYU>*WLMr13mUoJw!P``+4TGKfXb~d
z_WuGW>X-k?4XtH+n`HKURH4(;tPzuc*1~aGBM&={+U0IJ1rFUMnh@0VBF_LX|G4_K
z$P-zk{Z=DbFeVNe<1GqjHzBqvprTH2!~vyNv@dU{eu2~Qp^eLeOsHXg`scYYV9Oq9
zAO~CW-Wju>2F6lO?$T#7j-?T3v*kV5bT|o)@>l&(>?ydyoNOZwio(xEi38O&(Vn{q
zBly9#PZ9ocnWdpV$#rgOP{j7fWlhxIiEBEdx**HF^EKJqj{H8Wy4D4tmgi=(^HFqR
z=0)1lMNuICK0VrVtX41CU5rYWS({8sJT4AdH{NIoxx?e_bJ{I0)miS1d*1Rmr$ye@
zDadHi8F`Hu(e|g&g?Np%;3Y~k1>dRAd6g7G;*B`eHUQih<c0r*U?V;*@Wk87l&I$9
z(tT<_hY2Afa5nhr^DM=w90heefXx`LeB??|JfH)w$V>8(G``f^Cx8bD!3;R8_p+@5
zp+_7X47B`a>IUFGkvi!Pq)I7D_DVHIm2RcpTiB(Fcl)0G`emk*2+cN%C?<d?x~TP_
zR(C>=2}RzFty02<X18BZct;h8_hIEEsrsCK<0Hyn&I0pKj!j_{`JKF2hXa<GW@Q}}
z>em=3;T_hN7vea>VVR_4Ce`&PDe~tF(Si#08r+-3bmC%kZ1&*tc~3;=5UupXQhBLm
z!o=~f$%A!yHIS+9zn$NOmJ33$CgN+U)MGHISHetIitgoJeq}C~jgiFwWnfE^6V%TG
zwC#O~3ku}_V^L11MaLyi*9vH80i$V&>m*Wn@W?I<U}`JC;Q-FwD+jv}Mzmrk0^q_u
zNr7AC@PUB^aI6w`EJg_^<t84255c0wLAx=JOxyNOugyJYC>d287{&AJS_9$Z69lB+
z0iwD)V{#I4aNsRoaHXM3%InD!7$581@CQ^>n?e>Iv_@HuF5OEDbvBSd)GeIk0#-Uw
zJE!UN_Ro||I-V+@{eE$Z^3n%j3l6+yLVX}6b`w9^qil=+z~htqsITCME1|i*|7?3&
z^(*-;iuUoxK{sxVrO=GJ)PagdryU@Zz~3t`c^JI`>RgHXMe~p#sAwhYP)Hw4neYne
zu8(e}w?*lJv2Biiu`9<vYwVz*j4Ea)rGA061=3?JTsLVb8gd@Czg#2kDAJJfD3^G!
z<#_M8O3xf>9rZaCWHI-)DTpza=!#ReUlitU3tfW|l5mAI##GzOp?L1yej!AGgoh~7
zLcM}31WnvN+b1zc5U2eFAjqPmohrzLi{spqEb0JwTqN%7T4O*NQ}{k+u1db+SA{9O
zsuQa4i#V4uROcX0=fydg15R_{G|jdswQbb8hAB-{NMi`GJY*T4`bPop7hY}xV|%nW
zt{82zZvn8Gt;3|FePWInP#Y^rux^!{FPq+^ecU!<%SKoy+ATmlh=(S|P_qbyNI<Ed
z2L_SYw)t-rl^@nlfI5C3kR1l<mvezUT)62(5#^M9f<u7QBKE_iAwQM<EM4KiWH4*^
zmU)Drg2g02C1DX%V#K$MS5xh&9&Bi5ok0(L`j*00-WVVwb~|~`5hPLTNMdv--I=qa
zM%Z?4KLU)PI1moZ8w76x&7=CK#~fJ4**<Tv2(ASR5Av}FUj80A^>tMW5Gxm+no+A4
zh`{o15#PE(+1+h8C%Yr_m6Dbe?c&ciCgjb)IO<LD1X%%uj5tvO!6{7P1BUz^2O*!s
zg;tr8$UXCNlmQ4mDTrPe4Y;tHr!4+>`l=P>q*mX6iA3r;LzW*vk7I~u33(y0+HE1j
z)S2LkkZ|HqbbggMOt`RFUy?Es>;hz^>IEgODepc5?P9X~z%`Sxr*eg2M2S_8KS8a5
z*!07)88oDu1@FMKj(8tEOIh!CSjb@)YWoy&+*M!3R<Kh>{S<mU%2-22>9y>>Mrtz*
zA;ea@reKL+R;)VYXGwi`js<v$v9e8K&!Ef_zFLX|S>Gk_P9Uoo<H9xJfz}$`)@YfL
z^u38vIvIY8Feh<(PUUoaWih4D3VUxCVqAoA)<+Z?mFS`qdXvBo`*T5v^EP_b!Y-yf
zoh^9==Td@BQZAn)RM8;J5|Z0_J4~t1pfy3&2;v!J%HSO_;L=!&d6J=EU}%1KDAl+#
zV?|@-dUKy7q}iv<jAV4yqOl<ngRDog6s0@Sl+LB9hY_9^$C`zu?!y6RR*$0)Sy<`y
zAe71Q>jQRyg5rHAz{=pqcMro+x+g(<3ysocCzI9I*@6^aK}D%aUG(t@-Hzv>QrS2?
zjm^&tjv&>-49k8D?s7va7%Gc;u16iPb35N87)rSUgOq@4kt9C?$33Etmh4Cw9o`C-
zE@P07;`K^L5&*pht^;se7HfkJC{YgP6t?h}%NOepBLgF{ZQ`G*(4-)n0f)%;tS|{_
z4yby8G=ZV+f*qiiHFD&~lq9s9C=>U0R_>py-1U>MkK9B>Fi26s5W5r2FH<l8Pde~!
z*dyD(g_d%na1MX40HyV~)8--wd{!5VXQ|Z!fk<w{IW*_cm>~xqwmHrnioHa+DFeh}
zp&rH+DjgvCBU6m#4#gWVJQk6+cJO`8t8jY_J7biGJ0>Rj3>v!;%?h~xkh|S8_36|E
zdS+leh+bCe6G)3=?+G(SzH|g=f!=kahz%@s*SQYxAonz9e|%daI_GBoZr!>={wI$f
zI_FFgZ(gKMPG3O=Hu@$8+|KO&U-UOzM1@f^nk_0FK$JzP+kzucfU^bPxeD@dEH=Xp
z{-KE{0W>(y8H>!^9oeuasA-QaKM|<w>W%VQi&q^<o7K-yY&{0zO12EBC4=#cW1F&@
zjwdXZq#AoZdO3OKIlLMYWsoqt474wBqAzp#p#T>iwgT)fGj7U`@d5(Sq@3Vc^~9z$
zszEi70@kt-StV=D3)njQL{1`^nsbDe_M9CPqX^hV{DEIzK6tKXAqJZo8<I*$*4EBd
z-{gF^K4j{lmMvO5;!gMtYyTYO9(DfROwVkL>pk}!-5<Ze*&oqWes>*7n&$8ZtIjuB
z#PUjhMv+HUORE5Bra|7vArybX9OYS!rM#}RX#A2lWkZ_y2h&#BJo6uKPH!i^+i?`g
zFfbo?2nq&S!=xy`5e9C1{YP>U=a*&q2Q~T^V3v4pQkc?+(zP488})=YopPp3oDMcf
z<>pmZ%0@eqh{4j};{yNaKxB>fL-eD3Owlew8P~;Ppw2ie$wC`ac>Q0DP59?LyUxcO
z3xHU3&HmKxf+xNGPynePgCsMLya4PA1jRzW9IB;6IOA{>v9O}i8Zn$$Y;*)BnO0-+
zg_rPGNN^yhrz^*`o<}dVnb8Ab`XH@)V1!AUk`%Mnb^6kcUs>Rg!$G)Wpnm%^LMnzR
z;E!t5iV>7d$a_@!t+||kDJ8ra#?^lar7t%O<V7r(#v%3ulx?AOMRQUwW7<f0V@Vc~
zs{Xp+g~Ddm(4YkDT>!#2AwG5Z*1%KZrm_csVjw9nMT+WY_ryW$JU_pM1Ht_NheERD
z1)D2lsagaW_``3$@rcIH6ovxDrAg+ut@@dB)$Gt52mK7HEk)tpUJA9v7XK0aH-Ij7
zSe@i<-j?Kqj_78RpLx|n&8>Dsjo!pleVA%mm_g`|>2W=$Y<CNWoMw|Cwp;^tE#%j$
zdO%b0Ot%Z3y!4!#nc!ed8F{ccsRMOmXh(VAjLp9d5<;^DmNqa_0G<@LTcQyU-{*&X
znb#~CmYp{tXn>RSVtI~@+STYQ0!v3!c0u|CMt$zmivKl8%S}U-mWuu6>vHhNuLjXT
zIDm4{G$?02p=5rC0*zuP&_?tQ_#!L<+sTS}Kw(kKv$e*R<ttr{2(AEJ8NjwK9udRF
z`Xs?T4J~G>qB;sY!Ls|+0m`t25$hhv*tjT<<#*vMuBh>X1QR5<h5;9^XjIHBpVW9M
z8%T?ME9@CKKdOoEZ7EjyDmLvv{3>MJ41h?!EnJlo*^FG43_$1GbQXr7jP$#k369#Z
zn;)fAok*_%<_8yz7JxZ#xrp|I&YB68fw?HdY|4TvsUgrDpS!blGt*^?j2=d$i1#hj
z$OA|JLE+<4w+0U<0D}?{7n_mdQpXbk5?%r84Ei~4O!+yPDr~30v%7cEnW`<jv4w0x
zHE9R#KXpF)q~yJp=P&Hu4G>ZRx{Zzo<Xz05pwUYALZ*fyC7}o7QBEbFg325uDB>i@
z|Kz1lR7v?S9y?i?0xT0mg+>Gdo;VNVe4i+-A>%fRQ~jS*3uw(_*x-@SRS4vfk0=&#
zcoBJG3wR>9O=4~nU%}%PnIK)!q`c?vdL(2q>X5+)V8ll^W|sV+Sr>-Fl-CP)c;kX3
z>wQWJO_t|PsXiPbdK1W=0%3xM@}R&tzyOD##$p->8rMWX93eH~cxt;&?t(QcyqQTZ
zyNV_T?-&J1aOv%)dJTA0goZ8ydj>H7_Mk~(0wguAQc}afVr+47IuabE`h}`UfxQ9#
znVGCL_0TlZ?P*Q!0MCixy;AyB{f*$#jGc#D7{X@(R{)*#sMRd+A?20O1`eX9Cx^dF
zQb({0DPhR_xq~g`?is87;uXbo!k`06wj%Y%vcYe#w|6w1cxcQ-U8Cq?n5n?VR2k|_
zNeGez;YEP(dcOQ8Zi9zzVR53!1CPA0&#iLiBzI2Wr<hm@q4+-$A}mS{hMXcF9`18?
ziul4{OzX}R9se#O6emJxm3XQ5J^-2%9{vp!{wP@MCvZ%)etbdJACih&Xaxtzb_(Gs
zK4)i(pE3X7)f6HT+tYzsmj#(qFo(7tR~jT?vtgG1Q(S`n4Q_aNmJjP3aXXKC4}EP;
z;2x45Js`<St2uK4WTQQh+%BJ;zXbeA$`1V%I>M7gNkoZ!09&P$7Dsgj^}+{dygKOk
zDM^X;3oAc>Yf(0R=u-CDZxJU+{QMDWS54?V3t>lq!E6AK9kPI;NauLq)p0xrhJ3OF
zDIBQB9=2%Ik5p*Wq8y=hq!Vz4cETmn)PcxAdP9qHPI#pnw6$XMANmD9zz0DO137o2
z?|k$Q>aztkwr&}XP&N(k|9S`3OSFt1I@qEma3KNsoCgq2_AW-1H{W=fF^O~#_+`76
z)voHymo3~DQO##;h6F46cAyj(_nh;mpza(A?@x?R)8<pH5<QuB_zG)f6Ya%|kKh9^
z^-@bifW3qQ>H6#<`OIiS8b!H)?}T{zs9K!zG$1xZjU$lJ-GLX4%v8yY&r>=GRDnpe
zvah#Ne6YQ}EhV!{?hTIOEw0C00|9+~S{d1PFoP`g02V+M$!c7c0SX7lK4+<<N&@_U
z1tstEL1~S~J2?Y4O21WKppDLQt&aYLIt(K7k;+|=7TENQ(eH9?fX@l6{|Sg=&YzEB
zzoC2dI<{;tihhX7pX-Aa_X7b5OyBFa=IhkLKc*8vZx-zyD5FFtw2$@hErY^#JSZcL
z%B1vg=SG5khEe6H=WyuksU1t{rd47sGRXk%bY(yJJslbd*+ot~e@%7HRK%DTn4gP`
z1J8U%UWg;0P2wr4#fWqUWuOQsLvjQlNVBZ2YW`}&+Ky<-!;W;;>V2W^2m|K1Mj{v^
zfc_UidnUY9N<SCJ)XW?B8gdi8cS`oSLAIf4#^Xm@t(NzW&%4$H>M-&rvz8vMc`hup
zjDF!+rWH^rOY8U@XV_Ps6m)qHMuCGiB&SuOdq6ux{-FC{1|+%4Q{)<c_m=Dczg&7h
zvZpW>p#(yPrq$;>4M>B{14%!@LOQ>9FG~VHSa)zuJE2ELZJfIqAk1Xng6@drGzx1H
zekgq$7+qT#JdvLZPbw2bICsmAvu(Qby<@}qgPa~({)&E<EYeztXIj#`c@gkWKxizk
z%W1C2SYau03Q@>7oDu)gPE;O(^r<99ZTJECjV<|NCNPSLP;U?Avpbpzz^TY(qh%ah
zo-S660=@RoqTL|PkqpSn^(#rpiJ=VRFE%F{RU@63^+)dnTwTKAB9zDTST!N0>2w<X
zujyl~TY=XH+=#_?4IUn-$w}Q5?3!}eAv^ZBmNkHwXPTv=d~NBk(-em2C^a4wX(<&s
z&@&P$p<^6>RX<Ivn=`V=bv1=o%yXgPt^KI?pb$81RSt^VsUipAFLKWFnw_bolz2^M
z)W(2)dG$f&;u`~3=v0vR^WAur38mJ1tiRqzq_vRdk?Kr^QdgxFTVpo^HJYb=d;)-z
zqk)nXj~dZwfQ#q6{OQU5bayVRqSZpd0Ix6KP-t;V<UQV(;hOX+lyeyBO<kQH$p6-+
zXjAmOmdsi9B<$>Q6vR=ElmR?(>P^~O51(Q@(=%!C0RUz{^X-|G;ldOn<F}mdIyw$U
zKzwi6rM^(Rp}9O;#J7bz(q1>?%U=0oMs5D@AVRmdvoGFfR=oCDCZSkRTo;@v#hI|H
zchw<9u{)&~h|1r=?@tfOXX1W04<Rvf22ib$rGB^QM?d9A1ps1EzRL+Jb|&T?93;CI
z16=@$SbePy(^9p-|7k_AFF0r&BXpsRCMLW0RKo!YxBTe`udBR8&-4kjLP;?=Z)PJd
zMy5C?pdgQi+s%(&VZa^r)SuCVRoR#_R^bKqI`g*f)PDV&YXWGBoa|p#)KVts+Ybko
zBk$0*NH$;-Eqke@l4TQM3R@R6tM+W=7JZiu>g&0TJviYZsjKJf9vIdWJx-7zqk6{<
z%x_0;ebTb~=T&d^W+>7*+zEM#>r>%g@|F7Hlo$ene^8ajG_kyE0$fUGXO}u^-j)XW
zwCb#dC5=84_Z2}sGmZsEa+P7QJlldExeCBiTFV4zzyiv&nnUhW6f~Vs9N{ctTutdn
zkFs8!e(ky7Ry;O!yULi>vRDk$40Xj`O|`90^qBdnAT#U=0{r4#?oyo6-^Yit1kelA
z5_*9O?_N8hR6Rk_<QcFwo$q~6iQw<eUi+U%$gNHKuofgzmy-I!e=qvCbbqAfpD_Fr
zhJV8FX9fNV!=I)2ry2eU!#`p8vjYEw;m=b1(+vNF;h!-4S%H7T@MkIhX@-Bo@J|^2
ztiV5E__GxMG{Zk(_$Lg1R^b0#VOTMAb+{gT+UCyb6h2`aD388Vz1~+~6Tkmmy$w6@
zAK%_&A$Dx{pXu{Zbs1MOtD`$^ZTNpc%N={yZySkofBL_{=#C(aM2lek0P5ECpXsc}
zSkrwaS`QZ;_}`yIZ3!eRW@?43CEEY`rIRYb+tq^S4K)Y-_b=yO-DH?8P0gb8OZv~N
z3Upxzx{LeJjU#_O3Pw{PNMn+r5nucIzkf!!cN+`z&T8_x_P;+-+>I}Cw~Z5}Qc(W>
zd@LA-P^WlmEyMHIAjVF@`UF|n|KC9J=~$DD^cf>cb>x2*h@^r0N{rHrRi!Xi{xkL*
z0en$zDr3!GZ&-u#-Odoa7rQR%Q=3-){rSHwLYx0@i_jVPe{hN#!h1rLJXZSCd6xex
zmn1n-`|6VYWRz99hcX;eGmh+_rC&;(tIhcyV{5d8-|{$uU0H7T99j7_++$4(N?^#y
z6}N3<By@a@^0Ah&8uMJg%_>_#-o|y?i0{GsjJ!q8Td2w0wbRgXk>Jf4z$m6?=<RAm
zKe+!Zu|D8IJ2kid`>1cT%2kvndTtvb2~-5&i<~$AuP206F)G|-s2?rBO0-NH|C;^J
z7YN=pJhtn%i5imDuRJ2l`}}?^MU@cu;*02@ihv;`p<tav3*-OI+tqJ=1s&r?voVlt
zBK;rzBh3*=#@^K<c$aHmS_j<%631(QU$jL%%qG(7cfxlj*tQb9gD4DWYT6f8u>*d_
zieDR-NycQ!7i|i4^p67h`_by&sE+%O0wLX4zwNJ4Rq}8e=Kih42!B6XdaZci_s&()
z{5>i;&+Bf}|5eg|Kl<N<|K5gwJB-2pEj<53`tO7G?+nv2{e4>gDXo86`kz_)W8(kW
z;s2jI9xDso0a2a{!^)oj@h}M;>K(I6p3uFJq($(ySdRG3-u&a~;rH?4i_|_e3jD`y
zrTBXn*KdoTc3fj`|K$P}c->@>O1u(6C9ePdzN_G?*0uNl{U_>+SRsTiex{FZJNWO1
z(QJX_i=KaOO8y^5@)S7stQHQG@}~b8ER5pcME>o_-(vJnwEmruzqQIgt@U3Gi&Xi)
zGxG0@{5vC*75L|(tQ8*or6vCPTK~M?zr=y*|C=+?;rW*Qw)l}Y9cCT;ck-C}(fGrc
GZv9`RA2Y%L

literal 0
HcmV?d00001

diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/sizing/artifactory-2xlarge.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/sizing/artifactory-2xlarge.yaml
new file mode 100644
index 0000000000..9fdf63e541
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/sizing/artifactory-2xlarge.yaml
@@ -0,0 +1,182 @@
+##############################################################################################
+# The 2xlarge sizing
+# This size is intended for very large organizations. It can be increased with adding replicas
+# [WARNING] Some of the configuration mentioned in this file are taken inside system.yaml
+# hence this configuration will be overridden when enabling systemYamlOverride
+##############################################################################################
+splitServicesToContainers: true
+artifactory:
+  # Enterprise and above licenses are required for setting replicaCount greater than 1.
+  # Count should be equal or above the total number of licenses available for artifactory.
+  replicaCount: 6
+
+  # Require multiple Artifactory pods to run on separate nodes
+  podAntiAffinity:
+    type: "hard"
+
+  resources:
+    requests:
+      cpu: "4"
+      memory: 20Gi
+    limits:
+      # cpu: "20"
+      memory: 24Gi
+
+  extraEnvironmentVariables:
+    - name: MALLOC_ARENA_MAX
+      value: "16"
+    - name: SKIP_WAIT_FOR_EXTERNAL_DB
+      value: "true"
+
+  javaOpts:
+    other: >
+      -XX:InitialRAMPercentage=40
+      -XX:MaxRAMPercentage=70
+      -Dartifactory.async.corePoolSize=200
+      -Dartifactory.async.poolMaxQueueSize=100000
+      -Dartifactory.http.client.max.total.connections=150
+      -Dartifactory.http.client.max.connections.per.route=150
+      -Dartifactory.access.client.max.connections=200
+      -Dartifactory.metadata.event.operator.threads=5
+      -XX:MaxMetaspaceSize=512m
+      -Djdk.nio.maxCachedBufferSize=1048576
+      -XX:MaxDirectMemorySize=1024m
+  tomcat:
+    connector:
+      maxThreads: 800
+      extraConfig: 'acceptCount="1200" acceptorThreadCount="2" compression="off" connectionLinger="-1" connectionTimeout="120000" enableLookups="false"'
+
+  database:
+    maxOpenConnections: 200
+
+access:
+  tomcat:
+    connector:
+      maxThreads: 200
+  javaOpts:
+    other: >
+      -XX:InitialRAMPercentage=20
+      -XX:MaxRAMPercentage=60
+  database:
+    maxOpenConnections: 200
+  resources:
+    requests:
+      cpu: 1
+      memory: 2Gi
+    limits:
+      # cpu: 2
+      memory: 4Gi
+  extraEnvironmentVariables:
+    - name: MALLOC_ARENA_MAX
+      value: "16"
+    - name: SKIP_WAIT_FOR_EXTERNAL_DB
+      value: "true"
+
+router:
+  resources:
+    requests:
+      cpu: "2"
+      memory: 2Gi
+    limits:
+      # cpu: "12"
+      memory: 4Gi
+
+frontend:
+  resources:
+    requests:
+      cpu: "1"
+      memory: 500Mi
+    limits:
+      # cpu: "5"
+      memory: 1Gi
+
+metadata:
+  database:
+    maxOpenConnections: 200
+  resources:
+    requests:
+      cpu: "1"
+      memory: 500Mi
+    limits:
+      # cpu: "5"
+      memory: 2Gi
+
+event:
+  resources:
+    requests:
+      cpu: 200m
+      memory: 100Mi
+    limits:
+      # cpu: "1"
+      memory: 500Mi
+
+observability:
+  resources:
+    requests:
+      cpu: 200m
+      memory: 100Mi
+    limits:
+      # cpu: "1"
+      memory: 500Mi
+
+jfconnect:
+  resources:
+    requests:
+      cpu: 100m
+      memory: 100Mi
+    limits:
+      # cpu: "1"
+      memory: 250Mi
+
+topology:
+  resources:
+    requests:
+      cpu: 100m
+      memory: 1000Mi
+    limits:
+      memory: 1500Mi
+  extraEnvironmentVariables:
+    - name: MALLOC_ARENA_MAX
+      value: "8"
+onemodel:
+  resources:
+    requests:
+      cpu: 225m
+      memory: 180Mi
+    limits:
+      # cpu: "1"
+      memory: 250Mi
+
+nginx:
+  replicaCount: 3
+  disableProxyBuffering: true
+  resources:
+    requests:
+      cpu: "4"
+      memory: "6Gi"
+    limits:
+      # cpu: "14"
+      memory: "8Gi"
+
+postgresql:
+  postgresqlExtendedConf:
+    maxConnections: "5000"
+  primary:
+    affinity:
+      # Require PostgreSQL pod to run on a different node than Artifactory pods
+      podAntiAffinity:
+        requiredDuringSchedulingIgnoredDuringExecution:
+          - labelSelector:
+              matchExpressions:
+                - key: app
+                  operator: In
+                  values:
+                    - artifactory
+            topologyKey: kubernetes.io/hostname
+  resources:
+    requests:
+      memory: 256Gi
+      cpu: "64"
+    limits:
+      memory: 256Gi
+      # cpu: "128"
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/sizing/artifactory-large.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/sizing/artifactory-large.yaml
new file mode 100644
index 0000000000..ee7a1146ff
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/sizing/artifactory-large.yaml
@@ -0,0 +1,184 @@
+##############################################################################################
+# The large sizing
+# This size is intended for large organizations. It can be increased with adding replicas or moving to the xlarge sizing
+# [WARNING] Some of the configuration mentioned in this file are taken inside system.yaml
+# hence this configuration will be overridden when enabling systemYamlOverride
+##############################################################################################
+splitServicesToContainers: true
+artifactory:
+  # Enterprise and above licenses are required for setting replicaCount greater than 1.
+  # Count should be equal or above the total number of licenses available for artifactory.
+  replicaCount: 3
+
+  # Require multiple Artifactory pods to run on separate nodes
+  podAntiAffinity:
+    type: "hard"
+
+  resources:
+    requests:
+      cpu: "2"
+      memory: 10Gi
+    limits:
+      # cpu: "14"
+      memory: 12Gi
+
+  javaOpts:
+    other: >
+      -XX:InitialRAMPercentage=40
+      -XX:MaxRAMPercentage=65
+      -Dartifactory.async.corePoolSize=80
+      -Dartifactory.async.poolMaxQueueSize=20000
+      -Dartifactory.http.client.max.total.connections=100
+      -Dartifactory.http.client.max.connections.per.route=100
+      -Dartifactory.access.client.max.connections=125
+      -Dartifactory.metadata.event.operator.threads=4
+      -XX:MaxMetaspaceSize=512m
+      -Djdk.nio.maxCachedBufferSize=524288
+      -XX:MaxDirectMemorySize=512m
+  tomcat:
+    connector:
+      maxThreads: 500
+      extraConfig: 'acceptCount="800" acceptorThreadCount="2" compression="off" connectionLinger="-1" connectionTimeout="120000" enableLookups="false"'
+
+  database:
+    maxOpenConnections: 100
+
+  extraEnvironmentVariables:
+    - name: MALLOC_ARENA_MAX
+      value: "8"
+    - name: SKIP_WAIT_FOR_EXTERNAL_DB
+      value: "true"
+
+access:
+  tomcat:
+    connector:
+      maxThreads: 125
+  javaOpts:
+    other: >
+      -XX:InitialRAMPercentage=20
+      -XX:MaxRAMPercentage=60
+  database:
+    maxOpenConnections: 100
+  resources:
+    requests:
+      cpu: 1
+      memory: 1.5Gi
+    limits:
+      # cpu: 1
+      memory: 2Gi
+  extraEnvironmentVariables:
+    - name: MALLOC_ARENA_MAX
+      value: "8"
+    - name: SKIP_WAIT_FOR_EXTERNAL_DB
+      value: "true"
+
+
+router:
+  resources:
+    requests:
+      cpu: 400m
+      memory: 800Mi
+    limits:
+      # cpu: "8"
+      memory: 2Gi
+
+frontend:
+  resources:
+    requests:
+      cpu: 200m
+      memory: 300Mi
+    limits:
+      # cpu: "3"
+      memory: 1Gi
+
+metadata:
+  database:
+    maxOpenConnections: 100
+  resources:
+    requests:
+      cpu: 200m
+      memory: 200Mi
+    limits:
+      # cpu: "4"
+      memory: 1Gi
+
+onemodel:
+  resources:
+    requests:
+      cpu: 200m
+      memory: 160Mi
+    limits:
+      # cpu: "1"
+      memory: 250Mi
+      
+event:
+  resources:
+    requests:
+      cpu: 100m
+      memory: 50Mi
+    limits:
+      # cpu: 500m
+      memory: 250Mi
+
+observability:
+  resources:
+    requests:
+      cpu: 100m
+      memory: 50Mi
+    limits:
+      # cpu: 500m
+      memory: 250Mi
+
+jfconnect:
+  resources:
+    requests:
+      cpu: 50m
+      memory: 100Mi
+    limits:
+      # cpu: 500m
+      memory: 250Mi
+
+topology:
+  resources:
+    requests:
+      cpu: 100m
+      memory: 1000Mi
+    limits:
+      memory: 1500Mi
+  extraEnvironmentVariables:
+    - name: MALLOC_ARENA_MAX
+      value: "8"
+
+nginx:
+  replicaCount: 2
+  disableProxyBuffering: true
+  resources:
+    requests:
+      cpu: "1"
+      memory: "500Mi"
+    limits:
+      # cpu: "4"
+      memory: "1Gi"
+
+postgresql:
+  postgresqlExtendedConf:
+    maxConnections: "600"
+  primary:
+    affinity:
+      # Require PostgreSQL pod to run on a different node than Artifactory pods
+      podAntiAffinity:
+        requiredDuringSchedulingIgnoredDuringExecution:
+          - labelSelector:
+              matchExpressions:
+                - key: app
+                  operator: In
+                  values:
+                    - artifactory
+            topologyKey: kubernetes.io/hostname
+  resources:
+    requests:
+      memory: 64Gi
+      cpu: "16"
+    limits:
+      memory: 64Gi
+      # cpu: "32"
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/sizing/artifactory-medium.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/sizing/artifactory-medium.yaml
new file mode 100644
index 0000000000..686ac92608
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/sizing/artifactory-medium.yaml
@@ -0,0 +1,183 @@
+##############################################################################################
+# The medium sizing
+# This size is just 2 replicas of the small size. Vertical sizing of all services is not changed
+# [WARNING] Some of the configuration mentioned in this file are taken inside system.yaml
+# hence this configuration will be overridden when enabling systemYamlOverride
+##############################################################################################
+splitServicesToContainers: true
+artifactory:
+  # Enterprise and above licenses are required for setting replicaCount greater than 1.
+  # Count should be equal or above the total number of licenses available for artifactory.
+  replicaCount: 2
+
+  # Require multiple Artifactory pods to run on separate nodes
+  podAntiAffinity:
+    type: "hard"
+
+  resources:
+    requests:
+      cpu: "1"
+      memory: 4Gi
+    limits:
+      # cpu: "10"
+      memory: 5Gi
+
+  javaOpts:
+    other: >
+      -XX:InitialRAMPercentage=40
+      -XX:MaxRAMPercentage=70
+      -Dartifactory.async.corePoolSize=40
+      -Dartifactory.async.poolMaxQueueSize=10000
+      -Dartifactory.http.client.max.total.connections=50
+      -Dartifactory.http.client.max.connections.per.route=50
+      -Dartifactory.access.client.max.connections=75
+      -Dartifactory.metadata.event.operator.threads=3
+      -XX:MaxMetaspaceSize=512m
+      -Djdk.nio.maxCachedBufferSize=262144
+      -XX:MaxDirectMemorySize=256m
+  tomcat:
+    connector:
+      maxThreads: 300
+      extraConfig: 'acceptCount="600" acceptorThreadCount="2" compression="off" connectionLinger="-1" connectionTimeout="120000" enableLookups="false"'
+
+  database:
+    maxOpenConnections: 50
+
+  extraEnvironmentVariables:
+    - name: MALLOC_ARENA_MAX
+      value: "2"
+    - name: SKIP_WAIT_FOR_EXTERNAL_DB
+      value: "true"
+
+access:
+  tomcat:
+    connector:
+      maxThreads: 75
+  javaOpts:
+    other: >
+      -XX:InitialRAMPercentage=20
+      -XX:MaxRAMPercentage=60
+  database:
+    maxOpenConnections: 50
+  resources:
+    requests:
+      cpu: 500m
+      memory: 1.5Gi
+    limits:
+      # cpu: 1
+      memory: 2Gi
+  extraEnvironmentVariables:
+    - name: MALLOC_ARENA_MAX
+      value: "2"
+    - name: SKIP_WAIT_FOR_EXTERNAL_DB
+      value: "true"
+      
+router:
+  resources:
+    requests:
+      cpu: 200m
+      memory: 500Mi
+    limits:
+      # cpu: "2"
+      memory: 1Gi
+
+frontend:
+  resources:
+    requests:
+      cpu: 100m
+      memory: 150Mi
+    limits:
+      # cpu: "2"
+      memory: 250Mi
+
+metadata:
+  database:
+    maxOpenConnections: 50
+  resources:
+    requests:
+      cpu: 100m
+      memory: 200Mi
+    limits:
+      # cpu: "2"
+      memory: 1Gi
+
+onemodel:
+  resources:
+    requests:
+      cpu: 175m
+      memory: 140Mi
+    limits:
+      # cpu: "2"
+      memory: 1Gi
+
+event:
+  resources:
+    requests:
+      cpu: 100m
+      memory: 50Mi
+    limits:
+      # cpu: 500m
+      memory: 250Mi
+
+observability:
+  resources:
+    requests:
+      cpu: 100m
+      memory: 50Mi
+    limits:
+      # cpu: 500m
+      memory: 250Mi
+
+jfconnect:
+  resources:
+    requests:
+      cpu: 50m
+      memory: 50Mi
+    limits:
+      # cpu: 500m
+      memory: 250Mi
+
+topology:
+  resources:
+    requests:
+      cpu: 100m
+      memory: 600Mi
+    limits:
+      memory: 900Mi
+  extraEnvironmentVariables:
+    - name: MALLOC_ARENA_MAX
+      value: "2"
+
+nginx:
+  replicaCount: 2
+  disableProxyBuffering: true
+  resources:
+    requests:
+      cpu: "100m"
+      memory: "100Mi"
+    limits:
+      # cpu: "2"
+      memory: "500Mi"
+
+postgresql:
+  postgresqlExtendedConf:
+    maxConnections: "200"
+  primary:
+    affinity:
+      # Require PostgreSQL pod to run on a different node than Artifactory pods
+      podAntiAffinity:
+        requiredDuringSchedulingIgnoredDuringExecution:
+          - labelSelector:
+              matchExpressions:
+                - key: app
+                  operator: In
+                  values:
+                    - artifactory
+            topologyKey: kubernetes.io/hostname
+  resources:
+    requests:
+      memory: 32Gi
+      cpu: "8"
+    limits:
+      memory: 32Gi
+      # cpu: "16"
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/sizing/artifactory-small.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/sizing/artifactory-small.yaml
new file mode 100644
index 0000000000..6d681f602a
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/sizing/artifactory-small.yaml
@@ -0,0 +1,183 @@
+##############################################################################################
+# The small sizing
+# This is the size recommended for running Artifactory for small teams
+# [WARNING] Some of the configuration mentioned in this file are taken inside system.yaml
+# hence this configuration will be overridden when enabling systemYamlOverride
+##############################################################################################
+splitServicesToContainers: true
+artifactory:
+  # Enterprise and above licenses are required for setting replicaCount greater than 1.
+  # Count should be equal or above the total number of licenses available for artifactory.
+  replicaCount: 1
+
+  # Require multiple Artifactory pods to run on separate nodes
+  podAntiAffinity:
+    type: "hard"
+
+  resources:
+    requests:
+      cpu: "1"
+      memory: 4Gi
+    limits:
+      # cpu: "10"
+      memory: 5Gi
+
+  javaOpts:
+    other: >
+      -XX:InitialRAMPercentage=40
+      -XX:MaxRAMPercentage=70
+      -Dartifactory.async.corePoolSize=40
+      -Dartifactory.async.poolMaxQueueSize=10000
+      -Dartifactory.http.client.max.total.connections=50
+      -Dartifactory.http.client.max.connections.per.route=50
+      -Dartifactory.access.client.max.connections=75
+      -Dartifactory.metadata.event.operator.threads=3
+      -XX:MaxMetaspaceSize=512m
+      -Djdk.nio.maxCachedBufferSize=262144
+      -XX:MaxDirectMemorySize=256m
+  tomcat:
+    connector:
+      maxThreads: 300
+      extraConfig: 'acceptCount="600" acceptorThreadCount="2" compression="off" connectionLinger="-1" connectionTimeout="120000" enableLookups="false"'
+
+  database:
+    maxOpenConnections: 50
+
+  extraEnvironmentVariables:
+    - name: MALLOC_ARENA_MAX
+      value: "2"
+    - name: SKIP_WAIT_FOR_EXTERNAL_DB
+      value: "true"
+
+access:
+  tomcat:
+    connector:
+      maxThreads: 75
+  javaOpts:
+    other: >
+      -XX:InitialRAMPercentage=20
+      -XX:MaxRAMPercentage=60
+  database:
+    maxOpenConnections: 50
+  resources:
+    requests:
+      cpu: 500m
+      memory: 1.5Gi
+    limits:
+      # cpu: 1
+      memory: 2Gi
+  extraEnvironmentVariables:
+    - name: MALLOC_ARENA_MAX
+      value: "2"
+    - name: SKIP_WAIT_FOR_EXTERNAL_DB
+      value: "true"
+
+router:
+  resources:
+    requests:
+      cpu: 200m
+      memory: 500Mi
+    limits:
+      # cpu: "2"
+      memory: 1Gi
+
+frontend:
+  resources:
+    requests:
+      cpu: 100m
+      memory: 150Mi
+    limits:
+      # cpu: "2"
+      memory: 250Mi
+
+metadata:
+  database:
+    maxOpenConnections: 50
+  resources:
+    requests:
+      cpu: 100m
+      memory: 200Mi
+    limits:
+      # cpu: "2"
+      memory: 1Gi
+
+onemodel:
+  resources:
+    requests:
+      cpu: 125m
+      memory: 120Mi
+    limits:
+      # cpu: "2"
+      memory: 1Gi
+
+event:
+  resources:
+    requests:
+      cpu: 100m
+      memory: 50Mi
+    limits:
+      # cpu: 500m
+      memory: 250Mi
+
+observability:
+  resources:
+    requests:
+      cpu: 100m
+      memory: 50Mi
+    limits:
+      # cpu: 500m
+      memory: 250Mi
+
+jfconnect:
+  resources:
+    requests:
+      cpu: 50m
+      memory: 50Mi
+    limits:
+      # cpu: 500m
+      memory: 250Mi
+
+topology:
+  resources:
+    requests:
+      cpu: 50m
+      memory: 600Mi
+    limits:
+      memory: 900Mi
+  extraEnvironmentVariables:
+    - name: MALLOC_ARENA_MAX
+      value: "2"
+
+nginx:
+  replicaCount: 1
+  disableProxyBuffering: true
+  resources:
+    requests:
+      cpu: "100m"
+      memory: "100Mi"
+    limits:
+      # cpu: "2"
+      memory: "500Mi"
+
+postgresql:
+  postgresqlExtendedConf:
+    maxConnections: "100"
+  primary:
+    affinity:
+      # Require PostgreSQL pod to run on a different node than Artifactory pods
+      podAntiAffinity:
+        requiredDuringSchedulingIgnoredDuringExecution:
+          - labelSelector:
+              matchExpressions:
+                - key: app
+                  operator: In
+                  values:
+                    - artifactory
+            topologyKey: kubernetes.io/hostname
+  resources:
+    requests:
+      memory: 16Gi
+      cpu: "4"
+    limits:
+      memory: 16Gi
+      # cpu: "10"
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/sizing/artifactory-xlarge.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/sizing/artifactory-xlarge.yaml
new file mode 100644
index 0000000000..7fd2601e29
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/sizing/artifactory-xlarge.yaml
@@ -0,0 +1,184 @@
+##############################################################################################
+# The xlarge sizing
+# This size is intended for very large organizations. It can be increased with adding replicas
+# [WARNING] Some of the configuration mentioned in this file are taken inside system.yaml
+# hence this configuration will be overridden when enabling systemYamlOverride
+##############################################################################################
+splitServicesToContainers: true
+artifactory:
+  # Enterprise and above licenses are required for setting replicaCount greater than 1.
+  # Count should be equal or above the total number of licenses available for artifactory.
+  replicaCount: 4
+
+  # Require multiple Artifactory pods to run on separate nodes
+  podAntiAffinity:
+    type: "hard"
+
+  resources:
+    requests:
+      cpu: "2"
+      memory: 14Gi
+    limits:
+      # cpu: "14"
+      memory: 16Gi
+
+  javaOpts:
+    other: >
+      -XX:InitialRAMPercentage=40
+      -XX:MaxRAMPercentage=65
+      -Dartifactory.async.corePoolSize=160
+      -Dartifactory.async.poolMaxQueueSize=50000
+      -Dartifactory.http.client.max.total.connections=150
+      -Dartifactory.http.client.max.connections.per.route=150
+      -Dartifactory.access.client.max.connections=150
+      -Dartifactory.metadata.event.operator.threads=5
+      -XX:MaxMetaspaceSize=512m
+      -Djdk.nio.maxCachedBufferSize=1048576
+      -XX:MaxDirectMemorySize=1024m
+  tomcat:
+    connector:
+      maxThreads: 600
+      extraConfig: 'acceptCount="1200" acceptorThreadCount="2" compression="off" connectionLinger="-1" connectionTimeout="120000" enableLookups="false"'
+
+  database:
+    maxOpenConnections: 150
+
+  extraEnvironmentVariables:
+    - name: MALLOC_ARENA_MAX
+      value: "16"
+    - name: SKIP_WAIT_FOR_EXTERNAL_DB
+      value: "true"
+
+access:
+  tomcat:
+    connector:
+      maxThreads: 150
+  javaOpts:
+    other: >
+      -XX:InitialRAMPercentage=20
+      -XX:MaxRAMPercentage=60
+  database:
+    maxOpenConnections: 150
+  resources:
+    requests:
+      cpu: 500m
+      memory: 2Gi
+    limits:
+      # cpu: 1
+      memory: 3Gi
+  extraEnvironmentVariables:
+    - name: MALLOC_ARENA_MAX
+      value: "16"
+    - name: SKIP_WAIT_FOR_EXTERNAL_DB
+      value: "true"
+
+
+router:
+  resources:
+    requests:
+      cpu: 400m
+      memory: 1Gi
+    limits:
+      # cpu: "8"
+      memory: 2Gi
+
+frontend:
+  resources:
+    requests:
+      cpu: 200m
+      memory: 300Mi
+    limits:
+      # cpu: "3"
+      memory: 1Gi
+
+metadata:
+  database:
+    maxOpenConnections: 150
+  resources:
+    requests:
+      cpu: 200m
+      memory: 200Mi
+    limits:
+      # cpu: "4"
+      memory: 1Gi
+
+onemodel:
+  resources:
+    requests:
+      cpu: 250m
+      memory: 200Mi
+    limits:
+      # cpu: "4"
+      memory: 1Gi
+
+event:
+  resources:
+    requests:
+      cpu: 100m
+      memory: 50Mi
+    limits:
+      # cpu: 500m
+      memory: 250Mi
+
+observability:
+  resources:
+    requests:
+      cpu: 100m
+      memory: 50Mi
+    limits:
+      # cpu: 500m
+      memory: 250Mi
+
+jfconnect:
+  resources:
+    requests:
+      cpu: 50m
+      memory: 100Mi
+    limits:
+      # cpu: 500m
+      memory: 250Mi
+
+topology:
+  resources:
+    requests:
+      cpu: 100m
+      memory: 1000Mi
+    limits:
+      memory: 1500Mi
+  extraEnvironmentVariables:
+    - name: MALLOC_ARENA_MAX
+      value: "8"
+
+nginx:
+  replicaCount: 2
+  disableProxyBuffering: true
+  resources:
+    requests:
+      cpu: "4"
+      memory: "4Gi"
+    limits:
+      # cpu: "12"
+      memory: "8Gi"
+
+postgresql:
+  postgresqlExtendedConf:
+    maxConnections: "2000"
+  primary:
+    affinity:
+      # Require PostgreSQL pod to run on a different node than Artifactory pods
+      podAntiAffinity:
+        requiredDuringSchedulingIgnoredDuringExecution:
+          - labelSelector:
+              matchExpressions:
+                - key: app
+                  operator: In
+                  values:
+                    - artifactory
+            topologyKey: kubernetes.io/hostname
+  resources:
+    requests:
+      memory: 128Gi
+      cpu: "32"
+    limits:
+      memory: 128Gi
+      # cpu: "64"
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/sizing/artifactory-xsmall.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/sizing/artifactory-xsmall.yaml
new file mode 100644
index 0000000000..640c06da62
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/sizing/artifactory-xsmall.yaml
@@ -0,0 +1,185 @@
+##############################################################################################
+# The xsmall sizing
+# This is the minimum size recommended for running Artifactory
+# [WARNING] Some of the configuration mentioned in this file are taken inside system.yaml
+# hence this configuration will be overridden when enabling systemYamlOverride
+##############################################################################################
+splitServicesToContainers: true
+artifactory:
+  # Enterprise and above licenses are required for setting replicaCount greater than 1.
+  # Count should be equal or above the total number of licenses available for artifactory.
+  replicaCount: 1
+
+  # Require multiple Artifactory pods to run on separate nodes
+  podAntiAffinity:
+    type: "hard"
+
+  resources:
+    requests:
+      cpu: "1"
+      memory: 3Gi
+    limits:
+      # cpu: "10"
+      memory: 4Gi
+
+  javaOpts:
+    other: >
+      -XX:InitialRAMPercentage=40
+      -XX:MaxRAMPercentage=70
+      -Dartifactory.async.corePoolSize=10
+      -Dartifactory.async.poolMaxQueueSize=2000
+      -Dartifactory.http.client.max.total.connections=20
+      -Dartifactory.http.client.max.connections.per.route=20
+      -Dartifactory.access.client.max.connections=15
+      -Dartifactory.metadata.event.operator.threads=2
+      -XX:MaxMetaspaceSize=400m
+      -XX:CompressedClassSpaceSize=96m
+      -Djdk.nio.maxCachedBufferSize=131072
+      -XX:MaxDirectMemorySize=128m
+  tomcat:
+    connector:
+      maxThreads: 50
+      extraConfig: 'acceptCount="200" acceptorThreadCount="2" compression="off" connectionLinger="-1" connectionTimeout="120000" enableLookups="false"'
+
+  database:
+    maxOpenConnections: 15
+
+  extraEnvironmentVariables:
+    - name: MALLOC_ARENA_MAX
+      value: "2"
+    - name: SKIP_WAIT_FOR_EXTERNAL_DB
+      value: "true"
+
+access:
+  tomcat:
+    connector:
+      maxThreads: 15
+  javaOpts:
+    other: >
+      -XX:InitialRAMPercentage=20
+      -XX:MaxRAMPercentage=60
+  database:
+    maxOpenConnections: 15
+  resources:
+    requests:
+      cpu: 500m
+      memory: 1.5Gi
+    limits:
+      # cpu: 1
+      memory: 2Gi
+  extraEnvironmentVariables:
+    - name: MALLOC_ARENA_MAX
+      value: "2"
+    - name: SKIP_WAIT_FOR_EXTERNAL_DB
+      value: "true"
+
+router:
+  resources:
+    requests:
+      cpu: 100m
+      memory: 200Mi
+    limits:
+      # cpu: "2"
+      memory: 1Gi
+
+frontend:
+  resources:
+    requests:
+      cpu: 50m
+      memory: 150Mi
+    limits:
+      # cpu: "2"
+      memory: 250Mi
+
+metadata:
+  database:
+    maxOpenConnections: 15
+  resources:
+    requests:
+      cpu: 50m
+      memory: 100Mi
+    limits:
+      # cpu: "2"
+      memory: 1Gi
+
+event:
+  resources:
+    requests:
+      cpu: 50m
+      memory: 50Mi
+    limits:
+      # cpu: 500m
+      memory: 250Mi
+
+onemodel:
+  resources:
+    requests:
+      cpu: 125m
+      memory: 100Mi
+    limits:
+      # cpu: "2"
+      memory: 500Mi
+
+observability:
+  resources:
+    requests:
+      cpu: 50m
+      memory: 50Mi
+    limits:
+      # cpu: 500m
+      memory: 250Mi
+
+jfconnect:
+  resources:
+    requests:
+      cpu: 50m
+      memory: 50Mi
+    limits:
+      # cpu: 500m
+      memory: 250Mi
+
+topology:
+  resources:
+    requests:
+      cpu: 50m
+      memory: 500Mi
+    limits:
+      memory: 800Mi
+  extraEnvironmentVariables:
+    - name: MALLOC_ARENA_MAX
+      value: "2"
+
+nginx:
+  replicaCount: 1
+  disableProxyBuffering: true
+  resources:
+    requests:
+      cpu: "50m"
+      memory: "50Mi"
+    limits:
+      # cpu: "1"
+      memory: "250Mi"
+
+postgresql:
+  postgresqlExtendedConf:
+    maxConnections: "50"
+  primary:
+    affinity:
+      # Require PostgreSQL pod to run on a different node than Artifactory pods
+      podAntiAffinity:
+        requiredDuringSchedulingIgnoredDuringExecution:
+          - labelSelector:
+              matchExpressions:
+                - key: app
+                  operator: In
+                  values:
+                    - artifactory
+            topologyKey: kubernetes.io/hostname
+  resources:
+    requests:
+      memory: 8Gi
+      cpu: "2"
+    limits:
+      memory: 8Gi
+      # cpu: "8"
+
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/NOTES.txt b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/NOTES.txt
new file mode 100644
index 0000000000..8ebf821a96
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/NOTES.txt
@@ -0,0 +1,106 @@
+Congratulations. You have just deployed JFrog Artifactory!
+{{- if .Values.artifactory.masterKey }}
+{{- if and (not .Values.artifactory.masterKeySecretName) (eq .Values.artifactory.masterKey "FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF") }}
+
+
+***************************************** WARNING ******************************************
+* Your Artifactory master key is still set to the provided example:                        *
+* artifactory.masterKey=FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF   *
+*                                                                                          *
+* You should change this to your own generated key:                                        *
+* $ export MASTER_KEY=$(openssl rand -hex 32)                                              *
+* $ echo ${MASTER_KEY}                                                                     *
+*                                                                                          *
+* Pass the created master key to helm with '--set artifactory.masterKey=${MASTER_KEY}'     *
+*                                                                                          *
+* Alternatively, you can use a pre-existing secret with a key called master-key with       *
+* '--set artifactory.masterKeySecretName=${SECRET_NAME}'                                   *
+********************************************************************************************
+{{- end }}
+{{- end }}
+
+{{- if .Values.artifactory.joinKey }}
+{{- if eq .Values.artifactory.joinKey "EEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEE" }}
+
+
+***************************************** WARNING ******************************************
+* Your Artifactory join key is still set to the provided example:                          *
+* artifactory.joinKey=EEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEE                                     *
+*                                                                                          *
+* You should change this to your own generated key:                                        *
+* $ export JOIN_KEY=$(openssl rand -hex 32)                                                *
+* $ echo ${JOIN_KEY}                                                                       *
+*                                                                                          *
+* Pass the created master key to helm with '--set artifactory.joinKey=${JOIN_KEY}'         *
+*                                                                                          *
+********************************************************************************************
+{{- end }}
+{{- end }}
+
+{{- if .Values.artifactory.setSecurityContext }}
+****************************************** WARNING **********************************************
+* From chart version 107.84.x, `setSecurityContext` has been renamed to `podSecurityContext`,   *
+  please change your values.yaml before upgrade , For more Info , refer to 107.84.x changelog   *
+*************************************************************************************************
+{{- end }}
+
+{{- if and (or (or (or (or (or ( or ( or ( or (or (or ( or (or .Values.artifactory.masterKeySecretName .Values.global.masterKeySecretName) .Values.systemYamlOverride.existingSecret) (or .Values.artifactory.customCertificates.enabled .Values.global.customCertificates.enabled)) .Values.aws.licenseConfigSecretName) .Values.artifactory.persistence.customBinarystoreXmlSecret) .Values.access.customCertificatesSecretName) .Values.systemYamlOverride.existingSecret) .Values.artifactory.license.secret) .Values.artifactory.userPluginSecrets) (and .Values.artifactory.admin.secret .Values.artifactory.admin.dataKey)) (and .Values.artifactory.persistence.googleStorage.gcpServiceAccount.enabled .Values.artifactory.persistence.googleStorage.gcpServiceAccount.customSecretName)) (or .Values.artifactory.joinKeySecretName .Values.global.joinKeySecretName)) .Values.artifactory.unifiedSecretInstallation }}
+****************************************** WARNING **************************************************************************************************
+* The unifiedSecretInstallation flag is currently enabled, which creates the unified secret. The existing secrets will continue as separate secrets.*
+* Update the values.yaml with the existing secrets to add them to the unified secret.                                                               *
+*****************************************************************************************************************************************************
+{{- end }}
+
+1. Get the Artifactory URL by running these commands:
+
+   {{- if .Values.ingress.enabled }}
+   {{- range .Values.ingress.hosts }}
+     http://{{ . }}
+   {{- end }}
+
+   {{- else if contains "NodePort" .Values.nginx.service.type }}
+   export NODE_PORT=$(kubectl get --namespace {{ .Release.Namespace }} -o jsonpath="{.spec.ports[0].nodePort}" services {{ template "artifactory.nginx.fullname" . }})
+   export NODE_IP=$(kubectl get nodes --namespace {{ .Release.Namespace }} -o jsonpath="{.items[0].status.addresses[0].address}")
+   echo http://$NODE_IP:$NODE_PORT/
+
+   {{- else if contains "LoadBalancer"  .Values.nginx.service.type }}
+
+   NOTE: It may take a few minutes for the LoadBalancer IP to be available.
+         You can watch the status of the service by running 'kubectl get svc --namespace {{ .Release.Namespace }} -w {{ template "artifactory.nginx.fullname" . }}'
+   export SERVICE_IP=$(kubectl get svc --namespace {{ .Release.Namespace }} {{ template "artifactory.nginx.fullname" . }} -o jsonpath='{.status.loadBalancer.ingress[0].ip}')
+   echo http://$SERVICE_IP/
+
+   {{- else if contains "ClusterIP" .Values.nginx.service.type }}
+   export POD_NAME=$(kubectl get pods --namespace {{ .Release.Namespace }} -l "component={{ .Values.nginx.name }}" -o jsonpath="{.items[0].metadata.name}")
+   echo http://127.0.0.1:{{ .Values.nginx.externalPortHttp }}
+   kubectl port-forward --namespace {{ .Release.Namespace }} $POD_NAME {{ .Values.nginx.externalPortHttp }}:{{ .Values.nginx.internalPortHttp }}
+
+   {{- end }}
+
+2. Open Artifactory in your browser
+   Default credential for Artifactory:
+   user: admin
+   password: password
+
+{{ if .Values.artifactory.javaOpts.jmx.enabled }}
+JMX configuration:
+{{- if not (contains "LoadBalancer"  .Values.artifactory.service.type) }}
+If you want to access JMX from you computer with jconsole, you should set ".Values.artifactory.service.type=LoadBalancer" !!!
+{{ end }}
+
+1. Get the Artifactory service IP:
+export SERVICE_IP=$(kubectl get svc --namespace {{ .Release.Namespace }} {{ template "artifactory.fullname" . }} -o jsonpath='{.status.loadBalancer.ingress[0].ip}')
+
+2. Map the service name to the service IP in /etc/hosts:
+sudo sh -c "echo \"${SERVICE_IP}    {{ template "artifactory.fullname" . }}\" >> /etc/hosts"
+
+3. Launch jconsole:
+jconsole {{ template "artifactory.fullname" . }}:{{ .Values.artifactory.javaOpts.jmx.port }}
+{{- end }}
+
+{{- if and .Values.nginx.enabled .Values.ingress.hosts }}
+***************************************** WARNING *****************************************************************************
+* when nginx is enabled , .Values.ingress.hosts will be deprecated in upcoming releases                                              *
+* It is recommended to use nginx.hosts instead ingress.hosts 
+*******************************************************************************************************************************
+{{- end }}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/_helpers.tpl b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/_helpers.tpl
new file mode 100644
index 0000000000..deee308e94
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/_helpers.tpl
@@ -0,0 +1,647 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Expand the name of the chart.
+*/}}
+{{- define "artifactory.name" -}}
+{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Expand the name nginx service.
+*/}}
+{{- define "artifactory.nginx.name" -}}
+{{- default .Chart.Name .Values.nginx.name .Values.nameOverride | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Create a default fully qualified app name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+*/}}
+{{- define "artifactory.fullname" -}}
+{{- if .Values.fullnameOverride -}}
+{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" -}}
+{{- else -}}
+{{- $name := default .Chart.Name .Values.nameOverride -}}
+{{- if contains $name .Release.Name -}}
+{{- .Release.Name | trunc 63 | trimSuffix "-" -}}
+{{- else -}}
+{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Create a default fully qualified nginx name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+*/}}
+{{- define "artifactory.nginx.fullname" -}}
+{{- $name := default .Chart.Name .Values.nameOverride -}}
+{{- printf "%s-%s-%s" .Release.Name $name .Values.nginx.name | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Create the name of the service account to use
+*/}}
+{{- define "artifactory.serviceAccountName" -}}
+{{- if .Values.serviceAccount.create -}}
+{{ default (include "artifactory.fullname" .) .Values.serviceAccount.name }}
+{{- else -}}
+{{ default "default" .Values.serviceAccount.name }}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Create chart name and version as used by the chart label.
+*/}}
+{{- define "artifactory.chart" -}}
+{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Generate SSL certificates
+*/}}
+{{- define "artifactory.gen-certs" -}}
+{{- $altNames := list ( printf "%s.%s" (include "artifactory.fullname" .) .Release.Namespace ) ( printf "%s.%s.svc" (include "artifactory.fullname" .) .Release.Namespace ) -}}
+{{- $ca := genCA "artifactory-ca" 365 -}}
+{{- $cert := genSignedCert ( include "artifactory.fullname" . ) nil $altNames 365 $ca -}}
+tls.crt: {{ $cert.Cert | b64enc }}
+tls.key: {{ $cert.Key | b64enc }}
+{{- end -}}
+
+{{/*
+Scheme (http/https) based on Access or Router TLS enabled/disabled
+*/}}
+{{- define "artifactory.scheme" -}}
+{{- if or .Values.access.accessConfig.security.tls .Values.router.tlsEnabled -}}
+{{- printf "%s" "https" -}}
+{{- else -}}
+{{- printf "%s" "http" -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve joinKey value
+*/}}
+{{- define "artifactory.joinKey" -}}
+{{- if .Values.global.joinKey -}}
+{{- .Values.global.joinKey -}}
+{{- else if .Values.artifactory.joinKey -}}
+{{- .Values.artifactory.joinKey -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve jfConnectToken value
+*/}}
+{{- define "artifactory.jfConnectToken" -}}
+{{- .Values.artifactory.jfConnectToken -}}
+{{- end -}}
+
+{{/*
+Resolve masterKey value
+*/}}
+{{- define "artifactory.masterKey" -}}
+{{- if .Values.global.masterKey -}}
+{{- .Values.global.masterKey -}}
+{{- else if .Values.artifactory.masterKey -}}
+{{- .Values.artifactory.masterKey -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve joinKeySecretName value
+*/}}
+{{- define "artifactory.joinKeySecretName" -}}
+{{- if .Values.global.joinKeySecretName -}}
+{{- .Values.global.joinKeySecretName -}}
+{{- else if .Values.artifactory.joinKeySecretName -}}
+{{- .Values.artifactory.joinKeySecretName -}}
+{{- else -}}
+{{ include "artifactory.fullname" . }}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve jfConnectTokenSecretName value
+*/}}
+{{- define "artifactory.jfConnectTokenSecretName" -}}
+{{- if .Values.artifactory.jfConnectTokenSecretName -}}
+{{- .Values.artifactory.jfConnectTokenSecretName -}}
+{{- else -}}
+{{ include "artifactory.fullname" . }}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve masterKeySecretName value
+*/}}
+{{- define "artifactory.masterKeySecretName" -}}
+{{- if .Values.global.masterKeySecretName -}}
+{{- .Values.global.masterKeySecretName -}}
+{{- else if .Values.artifactory.masterKeySecretName -}}
+{{- .Values.artifactory.masterKeySecretName -}}
+{{- else -}}
+{{ include "artifactory.fullname" . }}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve imagePullSecrets value
+*/}}
+{{- define "artifactory.imagePullSecrets" -}}
+{{- if .Values.global.imagePullSecrets }}
+imagePullSecrets:
+{{- range .Values.global.imagePullSecrets }}
+  - name: {{ . }}
+{{- end }}
+{{- else if .Values.imagePullSecrets }}
+imagePullSecrets:
+{{- range .Values.imagePullSecrets }}
+  - name: {{ . }}
+{{- end }}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve customInitContainersBegin value
+*/}}
+{{- define "artifactory.customInitContainersBegin" -}}
+{{- if .Values.global.customInitContainersBegin -}}
+{{- .Values.global.customInitContainersBegin -}}
+{{- end -}}
+{{- if .Values.artifactory.customInitContainersBegin -}}
+{{- .Values.artifactory.customInitContainersBegin -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve customInitContainers value
+*/}}
+{{- define "artifactory.customInitContainers" -}}
+{{- if .Values.global.customInitContainers -}}
+{{- .Values.global.customInitContainers -}}
+{{- end -}}
+{{- if .Values.artifactory.customInitContainers -}}
+{{- .Values.artifactory.customInitContainers -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve customVolumes value
+*/}}
+{{- define "artifactory.customVolumes" -}}
+{{- if .Values.global.customVolumes -}}
+{{- .Values.global.customVolumes -}}
+{{- end -}}
+{{- if .Values.artifactory.customVolumes -}}
+{{- .Values.artifactory.customVolumes -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve customVolumeMounts value
+*/}}
+{{- define "artifactory.customVolumeMounts" -}}
+{{- if .Values.global.customVolumeMounts -}}
+{{- .Values.global.customVolumeMounts -}}
+{{- end -}}
+{{- if .Values.artifactory.customVolumeMounts -}}
+{{- .Values.artifactory.customVolumeMounts -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve customSidecarContainers value
+*/}}
+{{- define "artifactory.customSidecarContainers" -}}
+{{- if .Values.global.customSidecarContainers -}}
+{{- .Values.global.customSidecarContainers -}}
+{{- end -}}
+{{- if .Values.artifactory.customSidecarContainers -}}
+{{- .Values.artifactory.customSidecarContainers -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return the proper artifactory chart image names
+*/}}
+{{- define "artifactory.getImageInfoByValue" -}}
+{{- $dot := index . 0 }}
+{{- $indexReference := index . 1 }}
+{{- $registryName := index $dot.Values $indexReference "image" "registry" -}}
+{{- $repositoryName := index $dot.Values $indexReference "image" "repository" -}}
+{{- $tag := default $dot.Chart.AppVersion (index $dot.Values $indexReference "image" "tag") | toString -}}
+{{- if $dot.Values.global }}
+    {{- if and $dot.Values.splitServicesToContainers $dot.Values.global.versions.router (eq $indexReference "router") }}
+    {{- $tag = $dot.Values.global.versions.router | toString -}}
+    {{- end -}}
+    {{- if and $dot.Values.global.versions.initContainers (eq $indexReference "initContainers") }}
+    {{- $tag = $dot.Values.global.versions.initContainers | toString -}}
+    {{- end -}}
+    {{- if and $dot.Values.global.versions.artifactory (or (eq $indexReference "artifactory") (eq $indexReference "nginx") ) }}
+    {{- $tag = $dot.Values.global.versions.artifactory | toString -}}
+    {{- end -}}
+    {{- if and $dot.Values.global.versions.rtfs (eq $indexReference "rtfs") }}
+    {{- $tag = $dot.Values.global.versions.rtfs | toString -}}
+    {{- end -}}
+    {{- if $dot.Values.global.imageRegistry }}
+        {{- printf "%s/%s:%s" $dot.Values.global.imageRegistry $repositoryName $tag -}}
+    {{- else -}}
+        {{- printf "%s/%s:%s" $registryName $repositoryName $tag -}}
+    {{- end -}}
+{{- else -}}
+    {{- printf "%s/%s:%s" $registryName $repositoryName $tag -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return the proper artifactory app version
+*/}}
+{{- define "artifactory.app.version" -}}
+{{- $tag := (splitList ":" ((include "artifactory.getImageInfoByValue" (list . "artifactory" )))) | last | toString -}}
+{{- printf "%s" $tag -}}
+{{- end -}}
+
+{{/*
+Custom certificate copy command
+*/}}
+{{- define "artifactory.copyCustomCerts" -}}
+echo "Copy custom certificates to {{ .Values.artifactory.persistence.mountPath }}/etc/security/keys/trusted";
+mkdir -p {{ .Values.artifactory.persistence.mountPath }}/etc/security/keys/trusted;
+for file in $(ls -1 /tmp/certs/* | grep -v .key | grep -v ":" | grep -v grep); do if [ -f "${file}" ]; then cp -v ${file} {{ .Values.artifactory.persistence.mountPath }}/etc/security/keys/trusted; fi done;
+if [ -f {{ .Values.artifactory.persistence.mountPath }}/etc/security/keys/trusted/tls.crt ]; then mv -v {{ .Values.artifactory.persistence.mountPath }}/etc/security/keys/trusted/tls.crt {{ .Values.artifactory.persistence.mountPath }}/etc/security/keys/trusted/ca.crt; fi;
+{{- end -}}
+
+{{/*
+Circle of trust certificates copy command
+*/}}
+{{- define "artifactory.copyCircleOfTrustCertsCerts" -}}
+echo "Copy circle of trust certificates to {{ .Values.artifactory.persistence.mountPath }}/etc/access/keys/trusted";
+mkdir -p {{ .Values.artifactory.persistence.mountPath }}/etc/access/keys/trusted;
+for file in $(ls -1 /tmp/circleoftrustcerts/* | grep -v .key | grep -v ":" | grep -v grep); do if [ -f "${file}" ]; then cp -v ${file} {{ .Values.artifactory.persistence.mountPath }}/etc/access/keys/trusted; fi done;
+{{- end -}}
+
+{{/*
+Resolve requiredServiceTypes value
+*/}}
+{{- define "artifactory.router.requiredServiceTypes" -}}
+{{- $requiredTypes := "jfrt,jfac" -}}
+{{- if not .Values.access.enabled -}}
+  {{- $requiredTypes = "jfrt" -}}
+{{- end -}}
+{{- if .Values.observability.enabled -}}
+  {{- $requiredTypes = printf "%s,%s" $requiredTypes "jfob" -}}
+{{- end -}}
+{{- if .Values.metadata.enabled -}}
+  {{- $requiredTypes = printf "%s,%s" $requiredTypes "jfmd" -}}
+{{- end -}}
+{{- if .Values.event.enabled -}}
+  {{- $requiredTypes = printf "%s,%s" $requiredTypes "jfevt" -}}
+{{- end -}}
+{{- if .Values.frontend.enabled -}}
+  {{- $requiredTypes = printf "%s,%s" $requiredTypes "jffe" -}}
+{{- end -}}
+{{- if .Values.jfconnect.enabled -}}
+  {{- $requiredTypes = printf "%s,%s" $requiredTypes "jfcon" -}}
+{{- end -}}
+{{- if .Values.evidence.enabled -}}
+  {{- $requiredTypes = printf "%s,%s" $requiredTypes "jfevd" -}}
+{{- end -}}
+{{- if .Values.topology.enabled -}}
+  {{- $requiredTypes = printf "%s,%s" $requiredTypes "jftpl" -}}
+{{- end -}}
+{{- if .Values.mc.enabled -}}
+  {{- $requiredTypes = printf "%s,%s" $requiredTypes "jfmc" -}}
+{{- end -}}
+{{- if .Values.onemodel.enabled -}}
+  {{- $requiredTypes = printf "%s,%s" $requiredTypes "jfomr" -}}
+{{- end -}}
+{{- $requiredTypes -}}
+{{- end -}}
+
+{{/*
+Check if the image is artifactory pro or not
+*/}}
+{{- define "artifactory.isImageProType" -}}
+{{- if not (regexMatch "^.*(oss|cpp-ce|jcr).*$" .Values.artifactory.image.repository) -}}
+{{ true }}
+{{- else -}}
+{{ false }}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Check if the artifactory is using derby database
+*/}}
+{{- define "artifactory.isUsingDerby" -}}
+{{- if and (eq (default "derby" .Values.database.type) "derby") (not .Values.postgresql.enabled) -}}
+{{ true }}
+{{- else -}}
+{{ false }}
+{{- end -}}
+{{- end -}}
+
+{{/*
+nginx scheme (http/https)
+*/}}
+{{- define "nginx.scheme" -}}
+{{- if .Values.nginx.http.enabled -}}
+{{- printf "%s" "http" -}}
+{{- else -}}
+{{- printf "%s" "https" -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+nginx command
+*/}}
+{{- define "nginx.command" -}}
+{{- if .Values.nginx.customCommand }}
+{{  toYaml .Values.nginx.customCommand }}
+{{- end }}
+{{- end -}}
+
+{{/*
+nginx port (8080/8443) based on http/https enabled
+*/}}
+{{- define "nginx.port" -}}
+{{- if .Values.nginx.http.enabled -}}
+{{- .Values.nginx.http.internalPort -}}
+{{- else -}}
+{{- .Values.nginx.https.internalPort -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve customInitContainers value
+*/}}
+{{- define "artifactory.nginx.customInitContainers" -}}
+{{- if .Values.nginx.customInitContainers -}}
+{{- .Values.nginx.customInitContainers -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve customVolumes value
+*/}}
+{{- define "artifactory.nginx.customVolumes" -}}
+{{- if .Values.nginx.customVolumes -}}
+{{- .Values.nginx.customVolumes -}}
+{{- end -}}
+{{- end -}}
+
+
+{{/*
+Resolve customVolumeMounts nginx value
+*/}}
+{{- define "artifactory.nginx.customVolumeMounts" -}}
+{{- if .Values.nginx.customVolumeMounts -}}
+{{- .Values.nginx.customVolumeMounts -}}
+{{- end -}}
+{{- end -}}
+
+
+{{/*
+Resolve customSidecarContainers value
+*/}}
+{{- define "artifactory.nginx.customSidecarContainers" -}}
+{{- if .Values.nginx.customSidecarContainers -}}
+{{- .Values.nginx.customSidecarContainers -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve Artifactory pod node selector value
+*/}}
+{{- define "artifactory.nodeSelector" -}}
+nodeSelector:
+{{- if .Values.global.nodeSelector }}
+{{ toYaml .Values.global.nodeSelector | indent 2 }}
+{{- else if .Values.artifactory.nodeSelector }}
+{{ toYaml .Values.artifactory.nodeSelector | indent 2 }}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve Nginx pods node selector value
+*/}}
+{{- define "nginx.nodeSelector" -}}
+nodeSelector:
+{{- if .Values.global.nodeSelector }}
+{{ toYaml .Values.global.nodeSelector | indent 2 }}
+{{- else if .Values.nginx.nodeSelector }}
+{{ toYaml .Values.nginx.nodeSelector | indent 2 }}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve unifiedCustomSecretVolumeName value
+*/}}
+{{- define "artifactory.unifiedCustomSecretVolumeName" -}}
+{{- printf "%s-%s" (include "artifactory.name" .) ("unified-secret-volume") | trunc 63 -}}
+{{- end -}}
+
+{{/*
+Check the Duplication of volume names for secrets. If unifiedSecretInstallation is enabled then the method is checking for volume names,
+if the volume exists in customVolume then an extra volume with the same name will not be getting added in unifiedSecretInstallation case.
+*/}}
+{{- define "artifactory.checkDuplicateUnifiedCustomVolume" -}}
+{{- if or .Values.global.customVolumes .Values.artifactory.customVolumes -}}
+{{- $val := (tpl (include "artifactory.customVolumes" .) .) | toJson -}}
+{{- contains (include "artifactory.unifiedCustomSecretVolumeName" .) $val | toString -}}
+{{- else -}}
+{{- printf "%s" "false" -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Calculate the systemYaml from structured and unstructured text input
+*/}}
+{{- define "artifactory.finalSystemYaml" -}}
+{{ tpl (mergeOverwrite (include "artifactory.systemYaml" . | fromYaml) .Values.artifactory.extraSystemYaml | toYaml) . }}
+{{- end -}}
+
+{{/*
+Calculate the systemYaml from the unstructured text input
+*/}}
+{{- define "artifactory.systemYaml" -}}
+{{ include (print $.Template.BasePath "/_system-yaml-render.tpl") . }}
+{{- end -}}
+
+{{/*
+Metrics enabled
+*/}}
+{{- define "metrics.enabled" -}}
+  metrics:
+    enabled: true
+{{- end }}
+
+{{/*
+Resolve unified secret prepend release name
+*/}}
+{{- define "artifactory.unifiedSecretPrependReleaseName" -}}
+{{- if .Values.artifactory.unifiedSecretPrependReleaseName }}
+{{- printf "%s" (include "artifactory.fullname" .) -}}
+{{- else }}
+{{- printf "%s" (include "artifactory.name" .) -}}
+{{- end }}
+{{- end }}
+
+{{/*
+Resolve Service prepend release name
+*/}}
+{{- define "artifactory.servicePrependReleaseName" -}}
+{{- if .Values.artifactory.servicePrependReleaseName }}
+{{- printf "%s" (include "artifactory.fullname" .) -}}
+{{- else }}
+{{- printf "%s" (include "artifactory.name" .) -}}
+{{- end }}
+{{- end }}
+
+{{/*
+Resolve artifactory metrics
+*/}}
+{{- define "artifactory.metrics" -}}
+{{- if .Values.artifactory.openMetrics -}} 
+{{- if .Values.artifactory.openMetrics.enabled -}}
+{{ include "metrics.enabled" . }}
+{{- if .Values.artifactory.openMetrics.filebeat }}
+{{- if .Values.artifactory.openMetrics.filebeat.enabled }}
+{{ include "metrics.enabled" . }}
+    filebeat:
+{{ tpl (.Values.artifactory.openMetrics.filebeat | toYaml) . | indent 6 }}
+{{- end -}}
+{{- end -}}
+{{- end -}}
+{{- else if .Values.artifactory.metrics -}}
+{{- if .Values.artifactory.metrics.enabled -}}
+{{ include "metrics.enabled" . }}
+{{- if .Values.artifactory.metrics.filebeat }}
+{{- if .Values.artifactory.metrics.filebeat.enabled }}
+{{ include "metrics.enabled" . }}
+    filebeat:
+{{ tpl (.Values.artifactory.metrics.filebeat | toYaml) . | indent 6 }}
+{{- end -}}
+{{- end -}}
+{{- end -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve nginx hosts value
+*/}}
+{{- define "artifactory.nginx.hosts" -}}
+{{- if .Values.ingress.hosts }}
+{{- range .Values.ingress.hosts -}}
+  {{- if contains "." . -}}
+    {{ "" | indent 0 }} ~(?<repo>.+)\.{{ . }}
+  {{- end -}}
+{{- end -}}
+{{- else if .Values.nginx.hosts }}
+{{- range .Values.nginx.hosts -}}
+  {{- if contains "." . -}}
+    {{ "" | indent 0 }} ~(?<repo>.+)\.{{ . }}
+  {{- end -}}
+{{- end -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Create a default fully qualified grpc ingress name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+*/}}
+{{- define "artifactory.ingressGrpc.fullname" -}}
+{{- printf "%s-%s" (include "artifactory.fullname" .) .Values.ingressGrpc.name | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Create a default fully qualified grpc service name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+*/}}
+{{- define "artifactory.serviceGrpc.fullname" -}}
+{{- printf "%s-%s" (include "artifactory.fullname" .) .Values.artifactory.serviceGrpc.name | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Create a default fully qualified app name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+*/}}
+{{- define "rtfs.fullname" -}}
+{{- if .Values.fullnameOverride -}}
+{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" -}}
+{{- else -}}
+{{- $name := default .Chart.Name .Values.nameOverride -}}
+{{- if contains $name .Release.Name -}}
+{{- printf "%s-%s" (.Release.Name | trunc 63 | trimSuffix "-") .Values.rtfs.name -}}
+{{- else -}}
+{{- printf "%s-%s-%s" (.Release.Name | trunc 63 | trimSuffix "-") $name .Values.rtfs.name -}}
+{{- end -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve customVolumes value
+*/}}
+{{- define "artifactory.rtfs.customVolumes" -}}
+{{- if .Values.rtfs.customVolumes -}}
+{{- .Values.rtfs.customVolumes -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Rtfs command
+*/}}
+{{- define "rtfs.command" -}}
+{{- if .Values.rtfs.customCommand }}
+{{  toYaml .Values.rtfs.customCommand }}
+{{- end }}
+{{- end -}}
+
+{{/*
+    Resolve jfrogUrl value
+*/}}
+{{- define "rtfs.jfrogUrl" -}}
+{{- if .Values.global.jfrogUrl -}}
+{{- .Values.global.jfrogUrl -}}
+{{- else if .Values.rtfs.jfrogUrl -}}
+{{- .Values.rtfs.jfrogUrl -}}
+{{- else -}}
+{{- printf "http://%s:8082" (include "artifactory.fullname" .) -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve customVolumeMounts rtfs value
+*/}}
+{{- define "artifactory.rtfs.customVolumeMounts" -}}
+{{- if .Values.rtfs.customVolumeMounts -}}
+{{- .Values.rtfs.customVolumeMounts -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve RTFS customSidecarContainers value
+*/}}
+{{- define "artifactory.rtfs.customSidecarContainers" -}}
+{{- if .Values.rtfs.customSidecarContainers -}}
+{{- .Values.rtfs.customSidecarContainers -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve RTFS customInitContainers value
+*/}}
+{{- define "artifactory.rtfs.customInitContainers" -}}
+{{- if .Values.rtfs.customInitContainers -}}
+{{- .Values.rtfs.customInitContainers -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Resolve RTFS autoscalling metrics
+*/}}
+{{- define "rtfs.metrics" -}}
+{{- if .Values.rtfs.autoscaling.metrics -}}
+{{- .Values.rtfs.autoscaling.metrics -}}
+{{- end -}}
+{{- end -}}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/_system-yaml-render.tpl b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/_system-yaml-render.tpl
new file mode 100644
index 0000000000..deaa773ea9
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/_system-yaml-render.tpl
@@ -0,0 +1,5 @@
+{{- if .Values.artifactory.systemYaml -}}
+{{- tpl .Values.artifactory.systemYaml . -}}
+{{- else -}}
+{{ (tpl ( $.Files.Get "files/system.yaml" ) .) }}
+{{- end -}}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/additional-resources.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/additional-resources.yaml
new file mode 100644
index 0000000000..c4d06f08ad
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/additional-resources.yaml
@@ -0,0 +1,3 @@
+{{ if .Values.additionalResources }}
+{{ tpl .Values.additionalResources . }}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/admin-bootstrap-creds.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/admin-bootstrap-creds.yaml
new file mode 100644
index 0000000000..eb2d613c6c
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/admin-bootstrap-creds.yaml
@@ -0,0 +1,15 @@
+{{- if not (and .Values.artifactory.admin.secret .Values.artifactory.admin.dataKey) }}
+{{- if and .Values.artifactory.admin.password (not .Values.artifactory.unifiedSecretInstallation) }}
+kind: Secret
+apiVersion: v1
+metadata:
+  name: {{ template "artifactory.fullname" . }}-bootstrap-creds
+  labels:
+    app: {{ template "artifactory.name" . }}
+    chart: {{ template "artifactory.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+data:
+  bootstrap.creds: {{ (printf "%s@%s=%s" .Values.artifactory.admin.username .Values.artifactory.admin.ip .Values.artifactory.admin.password) | b64enc }}
+{{- end }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-access-config.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-access-config.yaml
new file mode 100644
index 0000000000..4fcf85d94c
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-access-config.yaml
@@ -0,0 +1,15 @@
+{{- if and .Values.access.accessConfig (not .Values.artifactory.unifiedSecretInstallation) }}
+apiVersion: v1
+kind: Secret
+metadata:
+  name: {{ template "artifactory.fullname" . }}-access-config
+  labels:
+    app: {{ template "artifactory.name" . }}
+    chart: {{ template "artifactory.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+type: Opaque
+stringData:
+  access.config.patch.yml: |
+{{ tpl (toYaml .Values.access.accessConfig) . | indent 4 }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-binarystore-secret.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-binarystore-secret.yaml
new file mode 100644
index 0000000000..6b721dd4c7
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-binarystore-secret.yaml
@@ -0,0 +1,18 @@
+{{- if and (not .Values.artifactory.persistence.customBinarystoreXmlSecret) (not .Values.artifactory.unifiedSecretInstallation) }}
+kind: Secret
+apiVersion: v1
+metadata:
+  name: {{ template "artifactory.fullname" . }}-binarystore
+  labels:
+    app: {{ template "artifactory.name" . }}
+    chart: {{ template "artifactory.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+stringData:
+  binarystore.xml: |-
+{{- if .Values.artifactory.persistence.binarystoreXml }} 
+{{ tpl .Values.artifactory.persistence.binarystoreXml . | indent 4 }}
+{{- else }}
+{{ tpl ( .Files.Get "files/binarystore.xml" ) . | indent 4 }}
+{{- end }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-configmaps.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-configmaps.yaml
new file mode 100644
index 0000000000..359fa07d25
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-configmaps.yaml
@@ -0,0 +1,13 @@
+{{ if .Values.artifactory.configMaps }}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ template "artifactory.fullname" . }}-configmaps
+  labels:
+    app: {{ template "artifactory.fullname" . }}
+    chart: {{ .Chart.Name }}-{{ .Chart.Version }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+data:
+{{ tpl .Values.artifactory.configMaps . | indent 2 }}
+{{ end -}}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-custom-secrets.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-custom-secrets.yaml
new file mode 100644
index 0000000000..4b73e79fc3
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-custom-secrets.yaml
@@ -0,0 +1,19 @@
+{{- if and .Values.artifactory.customSecrets (not .Values.artifactory.unifiedSecretInstallation) }}
+{{- range .Values.artifactory.customSecrets }}
+---
+apiVersion: v1
+kind: Secret
+metadata:
+  name: {{ template "artifactory.fullname" $ }}-{{ .name }}
+  labels:
+    app: "{{ template "artifactory.name" $ }}"
+    chart: "{{ template "artifactory.chart" $ }}"
+    component: "{{ $.Values.artifactory.name }}"
+    heritage: {{ $.Release.Service | quote }}
+    release: {{ $.Release.Name | quote }}
+type: Opaque
+stringData:
+  {{ .key }}: |
+{{ .data | indent 4 -}}
+{{- end -}}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-database-secrets.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-database-secrets.yaml
new file mode 100644
index 0000000000..f98d422e95
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-database-secrets.yaml
@@ -0,0 +1,24 @@
+{{- if and  (not .Values.database.secrets) (not .Values.postgresql.enabled) (not .Values.artifactory.unifiedSecretInstallation) }}
+{{- if or .Values.database.url .Values.database.user .Values.database.password }}
+apiVersion: v1
+kind: Secret
+metadata:
+  name: {{ template "artifactory.fullname" . }}-database-creds
+  labels:
+    app: {{ template "artifactory.name" . }}
+    chart: {{ template "artifactory.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+type: Opaque
+data:
+  {{- with .Values.database.url }}
+  db-url: {{ tpl . $ | b64enc | quote }}
+  {{- end }}
+  {{- with .Values.database.user }}
+  db-user: {{ tpl . $ | b64enc | quote }}
+  {{- end }}
+  {{- with .Values.database.password }}
+  db-password: {{ tpl . $ | b64enc | quote }}
+  {{- end }}
+{{- end }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-gcp-credentials-secret.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-gcp-credentials-secret.yaml
new file mode 100644
index 0000000000..72dee6bb84
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-gcp-credentials-secret.yaml
@@ -0,0 +1,16 @@
+{{- if not .Values.artifactory.persistence.googleStorage.gcpServiceAccount.customSecretName }}
+{{- if and (.Values.artifactory.persistence.googleStorage.gcpServiceAccount.enabled) (not .Values.artifactory.unifiedSecretInstallation) }}
+kind: Secret
+apiVersion: v1
+metadata:
+  name: {{ template "artifactory.fullname" . }}-gcpcreds
+  labels:
+    app: {{ template "artifactory.name" . }}
+    chart: {{ template "artifactory.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+stringData:
+  gcp.credentials.json: |-
+{{ tpl .Values.artifactory.persistence.googleStorage.gcpServiceAccount.config . | indent 4 }}
+{{- end }}
+{{- end }}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-hpa.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-hpa.yaml
new file mode 100644
index 0000000000..01f8a9fb70
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-hpa.yaml
@@ -0,0 +1,29 @@
+{{- if .Values.autoscaling.enabled }}
+  {{- if semverCompare ">=v1.23.0-0" .Capabilities.KubeVersion.Version }}
+apiVersion: autoscaling/v2
+  {{- else }}
+apiVersion: autoscaling/v2beta2
+  {{- end }}
+kind: HorizontalPodAutoscaler
+metadata:
+  labels:
+    app: {{ template "artifactory.name" . }}
+    chart: {{ template "artifactory.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+  name: {{ template "artifactory.fullname" . }}
+spec:
+  scaleTargetRef:
+    apiVersion: apps/v1
+    kind: StatefulSet
+    name: {{ template "artifactory.fullname" . }}
+  minReplicas: {{ .Values.autoscaling.minReplicas }}
+  maxReplicas: {{ .Values.autoscaling.maxReplicas }}
+  metrics:
+    - type: Resource
+      resource:
+        name: cpu
+        target:
+          type: Utilization
+          averageUtilization: {{ .Values.autoscaling.targetCPUUtilizationPercentage }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-installer-info.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-installer-info.yaml
new file mode 100644
index 0000000000..cfb95b67d3
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-installer-info.yaml
@@ -0,0 +1,16 @@
+kind: ConfigMap
+apiVersion: v1
+metadata:
+  name: {{ template "artifactory.fullname" . }}-installer-info
+  labels:
+    app: {{ template "artifactory.name" . }}
+    chart: {{ template "artifactory.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+data:
+  installer-info.json: |
+{{- if .Values.installerInfo -}}
+{{- tpl .Values.installerInfo . | nindent 4 -}}
+{{- else -}}
+{{ (tpl ( .Files.Get "files/installer-info.json" | nindent 4 ) .) }}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-license-secret.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-license-secret.yaml
new file mode 100644
index 0000000000..dda7340338
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-license-secret.yaml
@@ -0,0 +1,16 @@
+{{ if and (not .Values.artifactory.unifiedSecretInstallation) (not .Values.artifactory.license.secret) }}
+{{- with .Values.artifactory.license.licenseKey }}
+apiVersion: v1
+kind: Secret
+metadata:
+  name: {{ template "artifactory.fullname" $ }}-license
+  labels:
+    app: {{ template "artifactory.name" $ }}
+    chart: {{ template "artifactory.chart" $ }}
+    heritage: {{ $.Release.Service }}
+    release: {{ $.Release.Name }}
+type: Opaque
+data:
+  artifactory.lic: {{ . | b64enc | quote }}
+{{- end }}
+{{- end }}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-migration-scripts.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-migration-scripts.yaml
new file mode 100644
index 0000000000..4b1ba40276
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-migration-scripts.yaml
@@ -0,0 +1,18 @@
+{{- if .Values.artifactory.migration.enabled }}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ template "artifactory.fullname" . }}-migration-scripts
+  labels:
+    app: {{ template "artifactory.name" . }}
+    chart: {{ template "artifactory.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+data:
+  migrate.sh: |
+{{ .Files.Get "files/migrate.sh" | indent 4 }}
+  migrationHelmInfo.yaml: |
+{{ .Files.Get "files/migrationHelmInfo.yaml" | indent 4 }}
+  migrationStatus.sh: |
+{{ .Files.Get "files/migrationStatus.sh" | indent 4 }}
+{{- end }}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-networkpolicy.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-networkpolicy.yaml
new file mode 100644
index 0000000000..d24203dc99
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-networkpolicy.yaml
@@ -0,0 +1,34 @@
+{{- range .Values.networkpolicy }}
+apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
+metadata:
+  name: {{ template "artifactory.fullname" $ }}-{{ .name }}-networkpolicy
+  labels:
+    app: {{ template "artifactory.name" $ }}
+    chart: {{ template "artifactory.chart" $ }}
+    release: {{ $.Release.Name }}
+    heritage: {{ $.Release.Service }}
+spec:
+{{- if .podSelector }}
+  podSelector:
+{{ .podSelector | toYaml | trimSuffix "\n" | indent 4 -}}
+{{ else }}
+  podSelector: {}
+{{- end }}
+  policyTypes:
+  {{- if .ingress }}
+  - Ingress
+  {{- end }}
+  {{- if .egress }}
+  - Egress
+  {{- end }}
+{{- if .ingress }}
+  ingress:
+{{ .ingress | toYaml | trimSuffix "\n" | indent 2 -}}
+{{- end }}
+{{- if .egress }}
+  egress:
+{{ .egress | toYaml | trimSuffix "\n" | indent 2 -}}
+{{- end }}
+---
+{{- end -}}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-nfs-pvc.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-nfs-pvc.yaml
new file mode 100644
index 0000000000..75d6d0c53d
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-nfs-pvc.yaml
@@ -0,0 +1,101 @@
+{{- if eq .Values.artifactory.persistence.type "nfs" }}
+### Artifactory HA data
+apiVersion: v1
+kind: PersistentVolume
+metadata:
+  name: {{ template "artifactory.fullname" . }}-data-pv
+  labels:
+    app: {{ template "artifactory.name" . }}
+    chart: {{ template "artifactory.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+    id: {{ template "artifactory.name" . }}-data-pv
+    type: nfs-volume
+spec:
+  {{- if .Values.artifactory.persistence.nfs.mountOptions }}
+  mountOptions:
+{{ toYaml .Values.artifactory.persistence.nfs.mountOptions | indent 4 }}
+  {{- end }}
+  capacity:
+    storage: {{ .Values.artifactory.persistence.nfs.capacity }}
+  accessModes:
+  - ReadWriteOnce
+  persistentVolumeReclaimPolicy: Retain
+  nfs:
+    server: {{ .Values.artifactory.persistence.nfs.ip }}
+    path: "{{ .Values.artifactory.persistence.nfs.haDataMount }}"
+    readOnly: false
+---
+kind: PersistentVolumeClaim
+apiVersion: v1
+metadata:
+  name: {{ template "artifactory.fullname" . }}-data-pvc
+  labels:
+    app: {{ template "artifactory.name" . }}
+    chart: {{ template "artifactory.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+    type: nfs-volume
+spec:
+  accessModes:
+  - ReadWriteOnce
+  storageClassName: ""
+  resources:
+    requests:
+      storage: {{ .Values.artifactory.persistence.nfs.capacity }}
+  selector:
+    matchLabels:
+      id: {{ template "artifactory.name" . }}-data-pv
+      app: {{ template "artifactory.name" . }}
+      release: {{ .Release.Name }}
+---
+### Artifactory HA backup
+apiVersion: v1
+kind: PersistentVolume
+metadata:
+  name: {{ template "artifactory.fullname" . }}-backup-pv
+  labels:
+    app: {{ template "artifactory.name" . }}
+    chart: {{ template "artifactory.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+    id: {{ template "artifactory.name" . }}-backup-pv
+    type: nfs-volume
+spec:
+  {{- if .Values.artifactory.persistence.nfs.mountOptions }}
+  mountOptions:
+{{ toYaml .Values.artifactory.persistence.nfs.mountOptions | indent 4 }}
+  {{- end }}
+  capacity:
+    storage: {{ .Values.artifactory.persistence.nfs.capacity }}
+  accessModes:
+  - ReadWriteOnce
+  persistentVolumeReclaimPolicy: Retain
+  nfs:
+    server: {{ .Values.artifactory.persistence.nfs.ip }}
+    path: "{{ .Values.artifactory.persistence.nfs.haBackupMount }}"
+    readOnly: false
+---
+kind: PersistentVolumeClaim
+apiVersion: v1
+metadata:
+  name: {{ template "artifactory.fullname" . }}-backup-pvc
+  labels:
+    app: {{ template "artifactory.name" . }}
+    chart: {{ template "artifactory.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+    type: nfs-volume
+spec:
+  accessModes:
+  - ReadWriteOnce
+  storageClassName: ""
+  resources:
+    requests:
+      storage: {{ .Values.artifactory.persistence.nfs.capacity }}
+  selector:
+    matchLabels:
+      id: {{ template "artifactory.name" . }}-backup-pv
+      app: {{ template "artifactory.name" . }}
+      release: {{ .Release.Name }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-pdb.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-pdb.yaml
new file mode 100644
index 0000000000..68876d23b0
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-pdb.yaml
@@ -0,0 +1,24 @@
+{{- if .Values.artifactory.minAvailable -}}
+{{- if semverCompare "<v1.21.0-0" .Capabilities.KubeVersion.Version }}
+apiVersion: policy/v1beta1
+{{- else }}
+apiVersion: policy/v1
+{{- end }}
+kind: PodDisruptionBudget
+metadata:
+  name: {{ template "artifactory.fullname" . }}
+  labels:
+    app: {{ template "artifactory.name" . }}
+    chart: {{ template "artifactory.chart" . }}
+    component: {{ .Values.artifactory.name }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+spec:
+  selector:
+    matchLabels:
+      component: {{ .Values.artifactory.name }}
+      app: {{ template "artifactory.name" . }}
+      role: {{ template "artifactory.name" . }}
+      release: {{ .Release.Name }}
+  minAvailable: {{ .Values.artifactory.minAvailable }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-priority-class.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-priority-class.yaml
new file mode 100644
index 0000000000..9eb94b35bf
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-priority-class.yaml
@@ -0,0 +1,9 @@
+{{- if .Values.artifactory.priorityClass.create }}
+apiVersion: scheduling.k8s.io/v1
+kind: PriorityClass
+metadata:
+  name: {{ default (include "artifactory.fullname" .) .Values.artifactory.priorityClass.name }}
+value: {{ .Values.artifactory.priorityClass.value }}
+globalDefault: false
+description: "Artifactory priority class"
+{{- end }}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-role.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-role.yaml
new file mode 100644
index 0000000000..db01f235f8
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-role.yaml
@@ -0,0 +1,14 @@
+{{- if .Values.rbac.create }}
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app: {{ template "artifactory.name" . }}
+    chart: {{ template "artifactory.chart" . }}
+    component: {{ .Values.artifactory.name }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+  name: {{ template "artifactory.fullname" . }}
+rules:
+{{ toYaml .Values.rbac.role.rules }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-rolebinding.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-rolebinding.yaml
new file mode 100644
index 0000000000..dfb42258ff
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-rolebinding.yaml
@@ -0,0 +1,19 @@
+{{- if .Values.rbac.create }}
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app: {{ template "artifactory.name" . }}
+    chart: {{ template "artifactory.chart" . }}
+    component: {{ .Values.artifactory.name }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+  name: {{ template "artifactory.fullname" . }}
+subjects:
+- kind: ServiceAccount
+  name: {{ template "artifactory.serviceAccountName" . }}
+roleRef:
+  kind: Role
+  apiGroup: rbac.authorization.k8s.io
+  name: {{ template "artifactory.fullname" . }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-secrets.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-secrets.yaml
new file mode 100644
index 0000000000..266d8e39aa
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-secrets.yaml
@@ -0,0 +1,30 @@
+{{- if not .Values.artifactory.unifiedSecretInstallation }}
+{{- if or .Values.artifactory.joinKey .Values.global.joinKey .Values.artifactory.jfConnectToken .Values.artifactory.masterKey .Values.global.masterKey }}
+apiVersion: v1
+kind: Secret
+metadata:
+  name: {{ template "artifactory.fullname" . }}
+  labels:
+    app: {{ template "artifactory.name" . }}
+    chart: {{ template "artifactory.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+type: Opaque
+data:
+  {{- if or .Values.artifactory.masterKey .Values.global.masterKey }}
+  {{- if not (or .Values.artifactory.masterKeySecretName .Values.global.masterKeySecretName) }}
+  master-key: {{ include "artifactory.masterKey" . | b64enc | quote }}
+  {{- end }}
+  {{- end }}
+  {{- if or .Values.artifactory.joinKey .Values.global.joinKey }}
+  {{- if not (or .Values.artifactory.joinKeySecretName .Values.global.joinKeySecretName) }}
+  join-key: {{ include "artifactory.joinKey" . | b64enc | quote }}
+  {{- end }}
+  {{- end }}
+  {{- if .Values.artifactory.jfConnectToken  }}
+  {{- if not (.Values.artifactory.jfConnectTokenSecretName) }}
+  jfconnect-token: {{ include "artifactory.jfConnectToken" . | b64enc | quote }}
+  {{- end }}
+  {{- end }}
+{{- end }}
+{{- end }}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-service-grpc.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-service-grpc.yaml
new file mode 100644
index 0000000000..b40e94c5f8
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-service-grpc.yaml
@@ -0,0 +1,44 @@
+{{- if .Values.ingressGrpc.enabled -}}
+# Service for GRPC communication.
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ template "artifactory.serviceGrpc.fullname" . }}
+  labels:
+    app: {{ template "artifactory.name" . }}
+    chart: {{ template "artifactory.chart" . }}
+    component: {{ .Values.artifactory.name }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+    {{- with .Values.artifactory.labels }}
+{{ toYaml . | indent 4 }}
+    {{- end }}
+{{- if .Values.artifactory.serviceGrpc.annotations }}
+  annotations:
+{{ toYaml .Values.artifactory.serviceGrpc.annotations | indent 4 }}
+{{- end }}
+spec:
+  {{- if .Values.artifactory.serviceGrpc.ipFamilyPolicy }}
+  ipFamilyPolicy: {{ .Values.artifactory.serviceGrpc.ipFamilyPolicy }}
+  {{- end }}
+  {{- if not (empty .Values.artifactory.serviceGrpc.ipFamilies)}}
+  ipFamilies: {{- toYaml .Values.artifactory.serviceGrpc.ipFamilies | nindent 4 }}
+  {{- end }}
+  type: {{ .Values.artifactory.serviceGrpc.type }}
+{{- if .Values.artifactory.serviceGrpc.loadBalancerSourceRanges }}
+  loadBalancerSourceRanges:
+{{ toYaml .Values.artifactory.serviceGrpc.loadBalancerSourceRanges | indent 4 }}
+{{- end }}
+  ports:
+  - port: {{ .Values.artifactory.externalPort }}
+    targetPort: {{ .Values.artifactory.internalPort }}
+    {{- if .Values.artifactory.nodePort }}
+    nodePort: {{ .Values.artifactory.nodePort }}
+    {{- end }}
+    protocol: TCP
+    name: http-router
+  selector:
+    app: {{ template "artifactory.name" . }}
+    component: "{{ .Values.artifactory.name }}"
+    release: {{ .Release.Name }}
+{{- end -}}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-service.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-service.yaml
new file mode 100644
index 0000000000..cf2d62b997
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-service.yaml
@@ -0,0 +1,59 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ template "artifactory.fullname" . }}
+  labels:
+    app: {{ template "artifactory.name" . }}
+    chart: {{ template "artifactory.chart" . }}
+    component: {{ .Values.artifactory.name }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+    {{- with .Values.artifactory.labels }}
+{{ toYaml . | indent 4 }}
+    {{- end }}
+{{- if .Values.artifactory.service.annotations }}
+  annotations:
+{{ toYaml .Values.artifactory.service.annotations | indent 4 }}
+{{- end }}
+spec:
+  {{- if .Values.artifactory.service.ipFamilyPolicy }}
+  ipFamilyPolicy: {{ .Values.artifactory.service.ipFamilyPolicy }}
+  {{- end }}
+  {{- if not (empty .Values.artifactory.service.ipFamilies)}}
+  ipFamilies: {{- toYaml .Values.artifactory.service.ipFamilies | nindent 4 }}
+  {{- end }}
+  type: {{ .Values.artifactory.service.type }}
+{{- if .Values.artifactory.service.loadBalancerSourceRanges }}
+  loadBalancerSourceRanges:
+{{ toYaml .Values.artifactory.service.loadBalancerSourceRanges | indent 4 }}
+{{- end }}
+  ports:
+  - port: {{ .Values.artifactory.externalPort }}
+    targetPort: {{ .Values.artifactory.internalPort }}
+    {{- if .Values.artifactory.nodePort }}
+    nodePort: {{ .Values.artifactory.nodePort }}
+    {{- end }}
+    protocol: TCP
+    name: http-router
+  - port: {{ .Values.artifactory.externalArtifactoryPort }}
+    targetPort: {{ .Values.artifactory.internalArtifactoryPort }}
+    protocol: TCP
+    name: http-artifactory
+  {{- if .Values.artifactory.ssh.enabled }}
+  - port: {{ .Values.artifactory.ssh.externalPort }}
+    targetPort: {{ .Values.artifactory.ssh.internalPort }}
+    protocol: TCP
+    name: tcp-ssh
+  {{- end }}
+  {{- with .Values.artifactory.javaOpts.jmx }}
+  {{- if .enabled }}
+  - port: {{ .port }}
+    targetPort: {{ .port }}
+    protocol: TCP
+    name: tcp-jmx
+  {{- end }}
+  {{- end }}
+  selector:
+    app: {{ template "artifactory.name" . }}
+    component: "{{ .Values.artifactory.name }}"
+    release: {{ .Release.Name }}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-serviceaccount.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-serviceaccount.yaml
new file mode 100644
index 0000000000..03cac128ab
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-serviceaccount.yaml
@@ -0,0 +1,17 @@
+{{- if .Values.serviceAccount.create }}
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+{{- with .Values.serviceAccount.annotations }}
+  annotations:
+{{ tpl (toYaml .) $ | indent 4 }}
+{{- end }}
+  labels:
+    app: {{ template "artifactory.name" . }}
+    chart: {{ template "artifactory.chart" . }}
+    component: {{ .Values.artifactory.name }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+  name: {{ template "artifactory.serviceAccountName" . }}
+automountServiceAccountToken: {{ .Values.serviceAccount.automountServiceAccountToken }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-statefulset.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-statefulset.yaml
new file mode 100644
index 0000000000..1275118cdb
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-statefulset.yaml
@@ -0,0 +1,1789 @@
+apiVersion: apps/v1
+kind: StatefulSet
+metadata:
+  name: {{ template "artifactory.fullname" . }}
+  labels:
+    app: {{ template "artifactory.name" . }}
+    chart: {{ template "artifactory.chart" . }}
+    component: {{ .Values.artifactory.name }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+    version: {{ include "artifactory.app.version" . }}
+{{- if and .Release.IsUpgrade .Values.postgresql.enabled }}
+    databaseUpgradeReady: {{ required "\n\n*********\nIMPORTANT: UPGRADE STOPPED to prevent data loss!\nReview CHANGELOG.md (https://github.com/jfrog/charts/blob/master/stable/artifactory/CHANGELOG.md) \nNote: This applies only when you are using bundled postgresql (postgresql.enabled=true) \nIf you are upgrading from a chart version (< 107.79.x) that has postgresql.image.tag of 9.x or 10.x or 12.x or 13.x, make sure to set the current postgresql.image.tag to the same tag and databaseUpgradeReady=true \nOR \nIf you are upgrading from a chart version (>= 107.79.x), just set databaseUpgradeReady=true \n" .Values.databaseUpgradeReady | quote }}
+{{- end }}
+{{- if and (eq (include "artifactory.isUsingDerby" .) "true") (gt (.Values.artifactory.replicaCount | int64) 1) }}
+    {{- fail "Derby database is not supported in HA mode" }}
+{{- end }}
+{{- if .Values.artifactory.postStartCommand }}
+    {{- fail ".Values.artifactory.postStartCommand is not supported and should be replaced with .Values.artifactory.lifecycle.postStart.exec.command" }}
+{{- end }}
+{{- if eq .Values.artifactory.persistence.type "aws-s3" }}
+    {{- fail "\nPersistence storage type 'aws-s3' is deprecated and is not supported and should be replaced with 'aws-s3-v3'" }}
+{{- end }}
+{{- if or .Values.artifactory.persistence.googleStorage.identity .Values.artifactory.persistence.googleStorage.credential }}
+    {{- fail "\nGCP Bucket Authentication with Identity and Credential is deprecated" }}
+{{- end }}
+{{- if (eq (.Values.artifactory.setSecurityContext | toString) "false" ) }}
+    {{- fail "\n You need to set security context at the pod level. .Values.artifactory.setSecurityContext is no longer supported. Replace it with .Values.artifactory.podSecurityContext" }}
+{{- end }}
+{{- if or .Values.artifactory.uid .Values.artifactory.gid }}
+{{- if or (not (eq (.Values.artifactory.uid | toString) "1030" )) (not (eq (.Values.artifactory.gid | toString) "1030" )) }}
+    {{- fail "\n .Values.artifactory.uid and .Values.artifactory.gid are no longer supported. You need to set these values at the pod security context level. Replace them with .Values.artifactory.podSecurityContext.runAsUser .Values.artifactory.podSecurityContext.runAsGroup and .Values.artifactory.podSecurityContext.fsGroup" }}
+{{- end }}
+{{- end }}
+{{- if or .Values.artifactory.fsGroupChangePolicy .Values.artifactory.seLinuxOptions }}
+    {{- fail "\n .Values.artifactory.fsGroupChangePolicy and .Values.artifactory.seLinuxOptions are no longer supported. You need to set these values at the pod security context level. Replace them with .Values.artifactory.podSecurityContext.fsGroupChangePolicy and .Values.artifactory.podSecurityContext.seLinuxOptions" }}
+{{- end }}
+{{- if .Values.initContainerImage }}
+    {{- fail "\n .Values.initContainerImage is no longer supported. Replace it with .Values.initContainers.image.registry .Values.initContainers.image.repository and .Values.initContainers.image.tag" }}
+{{- end }}
+{{- if and (eq .Values.rtfs.enabled true) (ne .Values.database.type "postgresql") (not (empty .Values.database.type))}}
+    {{- fail "\n RTFS supports only PostgreSQL databases and is not compatible with other databases. If you are currently using a different database, disable RTFS." }}
+{{- end }}
+{{- with .Values.artifactory.labels }}
+{{ toYaml . | indent 4 }}
+{{- end }}
+{{- with .Values.artifactory.statefulset.annotations }}
+  annotations:
+{{ toYaml . | indent 4 }}
+{{- end }}
+spec:
+  serviceName: {{ template "artifactory.servicePrependReleaseName" . }}
+  replicas: {{ .Values.artifactory.replicaCount }}
+  updateStrategy: {{- toYaml .Values.artifactory.updateStrategy | nindent 4 }}
+  selector:
+    matchLabels:
+      app: {{ template "artifactory.name" . }}
+      role: {{ template "artifactory.name" . }}
+      release: {{ .Release.Name }}
+  template:
+    metadata:
+      labels:
+        app: {{ template "artifactory.name" . }}
+        chart: {{ template "artifactory.chart" . }}
+        heritage: {{ .Release.Service }}
+        role: {{ template "artifactory.name" . }}
+        component: {{ .Values.artifactory.name }}
+        release: {{ .Release.Name }}
+        {{- with .Values.artifactory.labels }}
+{{ toYaml . | indent 8 }}
+        {{- end }}
+      annotations:
+      {{- if not .Values.artifactory.unifiedSecretInstallation }}
+        checksum/database-secrets: {{ include (print $.Template.BasePath "/artifactory-database-secrets.yaml") . | sha256sum }}
+        checksum/binarystore: {{ include (print $.Template.BasePath "/artifactory-binarystore-secret.yaml") . | sha256sum }}
+        checksum/systemyaml: {{ include (print $.Template.BasePath "/artifactory-system-yaml.yaml") . | sha256sum }}
+      {{- if .Values.access.accessConfig }}
+        checksum/access-config: {{ include (print $.Template.BasePath "/artifactory-access-config.yaml") . | sha256sum }}
+      {{- end }}
+      {{- if .Values.artifactory.persistence.googleStorage.gcpServiceAccount.enabled }}
+        checksum/gcpcredentials: {{ include (print $.Template.BasePath "/artifactory-gcp-credentials-secret.yaml") . | sha256sum }}
+      {{- end }}
+      {{- if not (and .Values.artifactory.admin.secret .Values.artifactory.admin.dataKey) }}
+        checksum/admin-creds: {{ include (print $.Template.BasePath "/admin-bootstrap-creds.yaml") . | sha256sum }}
+      {{- end }}
+      {{- else }}
+        checksum/artifactory-unified-secret: {{ include (print $.Template.BasePath "/artifactory-unified-secret.yaml") . | sha256sum }}
+      {{- end }}
+      {{- with .Values.artifactory.annotations }}
+{{ toYaml . | indent 8 }}
+      {{- end }}
+    spec:
+    {{- if .Values.artifactory.schedulerName }}
+      schedulerName: {{ .Values.artifactory.schedulerName | quote }}
+    {{- end }}
+    {{- if .Values.artifactory.priorityClass.existingPriorityClass }}
+      priorityClassName: {{ .Values.artifactory.priorityClass.existingPriorityClass }}
+    {{- else -}}
+      {{- if .Values.artifactory.priorityClass.create }}
+      priorityClassName: {{ default (include "artifactory.fullname" .) .Values.artifactory.priorityClass.name }}
+      {{- end }}
+    {{- end }}
+      serviceAccountName: {{ template "artifactory.serviceAccountName" . }}
+      terminationGracePeriodSeconds: {{ add .Values.artifactory.terminationGracePeriodSeconds 10 }}
+    {{- if or .Values.imagePullSecrets .Values.global.imagePullSecrets }}
+{{- include "artifactory.imagePullSecrets" . | indent 6 }}
+    {{- end }}
+      {{- if .Values.artifactory.podSecurityContext.enabled }}
+      securityContext: {{- omit .Values.artifactory.podSecurityContext "enabled" | toYaml | nindent 8 }}
+      {{- end }}
+      {{- if .Values.artifactory.topologySpreadConstraints }}
+      topologySpreadConstraints:
+{{ tpl (toYaml .Values.artifactory.topologySpreadConstraints) . | indent 8 }}
+      {{- end }}
+      initContainers:
+    {{- if or .Values.artifactory.customInitContainersBegin .Values.global.customInitContainersBegin }}
+{{ tpl (include "artifactory.customInitContainersBegin" .)  . | indent 6 }}
+    {{- end }}
+    {{- if .Values.artifactory.persistence.enabled }}
+    {{- if .Values.artifactory.deleteDBPropertiesOnStartup }}
+      - name: "delete-db-properties"
+        image: {{ include "artifactory.getImageInfoByValue" (list . "initContainers") }}
+        imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        resources:
+{{ toYaml .Values.initContainers.resources | indent 10 }}
+        command:
+          - 'bash'
+          - '-c'
+          - 'rm -fv {{ .Values.artifactory.persistence.mountPath }}/etc/db.properties'
+        volumeMounts:
+          - name: artifactory-volume
+            mountPath: "{{ .Values.artifactory.persistence.mountPath }}"
+    {{- end }}
+    {{- end }}
+    {{- if or (and .Values.artifactory.admin.secret .Values.artifactory.admin.dataKey) .Values.artifactory.admin.password }}
+      - name: "access-bootstrap-creds"
+        image: {{ include "artifactory.getImageInfoByValue" (list . "initContainers") }}
+        imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        resources:
+{{ toYaml .Values.initContainers.resources | indent 10 }}
+        command:
+          - 'bash'
+          - '-c'
+          - >
+            echo "Preparing {{ .Values.artifactory.persistence.mountPath }}/etc/access/bootstrap.creds";
+            mkdir -p {{ .Values.artifactory.persistence.mountPath }}/etc/access;
+            cp -Lrf /tmp/access/bootstrap.creds {{ .Values.artifactory.persistence.mountPath }}/etc/access/bootstrap.creds;
+            chmod 600 {{ .Values.artifactory.persistence.mountPath }}/etc/access/bootstrap.creds;
+        volumeMounts:
+          - name: artifactory-volume
+            mountPath: "{{ .Values.artifactory.persistence.mountPath }}"
+          {{- if or (not .Values.artifactory.unifiedSecretInstallation) (and .Values.artifactory.admin.secret .Values.artifactory.admin.dataKey) }}
+          - name: access-bootstrap-creds
+          {{- else }}
+          - name: {{ include "artifactory.unifiedCustomSecretVolumeName" . }}
+          {{- end }}
+            mountPath: "/tmp/access/bootstrap.creds"
+            {{- if and .Values.artifactory.admin.secret .Values.artifactory.admin.dataKey }}
+            subPath: {{ .Values.artifactory.admin.dataKey }}
+            {{- else }}
+            subPath: "bootstrap.creds"
+            {{- end }}
+    {{- end }}
+      - name: 'copy-system-configurations'
+        image: {{ include "artifactory.getImageInfoByValue" (list . "initContainers") }}
+        imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        resources:
+{{ toYaml .Values.initContainers.resources | indent 10 }}
+        command:
+        - '/bin/bash'
+        - '-c'
+        - >
+          if [[ -e "{{ .Values.artifactory.persistence.mountPath }}/etc/filebeat.yaml" ]]; then chmod 644 {{ .Values.artifactory.persistence.mountPath }}/etc/filebeat.yaml; fi;
+          echo "Copy system.yaml to {{ .Values.artifactory.persistence.mountPath }}/etc";
+          mkdir -p {{ .Values.artifactory.persistence.mountPath }}/etc;
+          mkdir -p {{ .Values.artifactory.persistence.mountPath }}/etc/access/keys/trusted;
+          {{- if .Values.systemYamlOverride.existingSecret }}
+          cp -fv /tmp/etc/{{ .Values.systemYamlOverride.dataKey }} {{ .Values.artifactory.persistence.mountPath }}/etc/system.yaml;
+          {{- else }}
+          cp -fv /tmp/etc/system.yaml {{ .Values.artifactory.persistence.mountPath }}/etc/system.yaml;
+          {{- end }}
+          echo "Copy binarystore.xml file";
+          mkdir -p {{ .Values.artifactory.persistence.mountPath }}/etc/artifactory;
+          cp -fv /tmp/etc/artifactory/binarystore.xml {{ .Values.artifactory.persistence.mountPath }}/etc/artifactory/binarystore.xml;
+        {{- if .Values.access.accessConfig }}
+          echo "Copy access.config.patch.yml to {{ .Values.artifactory.persistence.mountPath }}/etc/access";
+          mkdir -p {{ .Values.artifactory.persistence.mountPath }}/etc/access;
+          cp -fv /tmp/etc/access.config.patch.yml {{ .Values.artifactory.persistence.mountPath }}/etc/access/access.config.patch.yml;
+        {{- end }}
+        {{- if .Values.access.resetAccessCAKeys }}
+          echo "Resetting Access CA Keys";
+          mkdir -p {{ .Values.artifactory.persistence.mountPath }}/bootstrap/etc/access/keys;
+          touch {{ .Values.artifactory.persistence.mountPath }}/bootstrap/etc/access/keys/reset_ca_keys;
+        {{- end }}
+        {{- if .Values.access.customCertificatesSecretName }}
+          echo "Copying custom certificates to {{ .Values.artifactory.persistence.mountPath }}/bootstrap/etc/access/keys";
+          mkdir -p {{ .Values.artifactory.persistence.mountPath }}/bootstrap/etc/access/keys;
+          cp -fv /tmp/etc/tls.crt {{ .Values.artifactory.persistence.mountPath }}/bootstrap/etc/access/keys/ca.crt;
+          cp -fv /tmp/etc/tls.key {{ .Values.artifactory.persistence.mountPath }}/bootstrap/etc/access/keys/ca.private.key;
+        {{- end }}
+        {{- if .Values.jfconnect.customCertificatesSecretName }}
+          echo "Copying custom certificates to {{ .Values.artifactory.persistence.mountPath }}/bootstrap/jfconnect/etc/keys";
+          mkdir -p {{ .Values.artifactory.persistence.mountPath }}/bootstrap/jfconnect/etc/keys;
+          cp -fv /tmp/etc/tls.crt {{ .Values.artifactory.persistence.mountPath }}/bootstrap/jfconnect/etc/keys/;
+          cp -fv /tmp/etc/tls.cer {{ .Values.artifactory.persistence.mountPath }}/bootstrap/jfconnect/etc/keys/;
+          cp -fv /tmp/etc/tls.pem {{ .Values.artifactory.persistence.mountPath }}/bootstrap/jfconnect/etc/keys/;
+          cp -fv /tmp/etc/tls.key {{ .Values.artifactory.persistence.mountPath }}/bootstrap/jfconnect/etc/keys/;
+        {{- end }}
+        {{- if or .Values.artifactory.joinKey .Values.global.joinKey .Values.artifactory.joinKeySecretName .Values.global.joinKeySecretName }}
+          echo "Copy joinKey to {{ .Values.artifactory.persistence.mountPath }}/bootstrap/access/etc/security";
+          mkdir -p {{ .Values.artifactory.persistence.mountPath }}/bootstrap/access/etc/security;
+          echo -n ${ARTIFACTORY_JOIN_KEY} > {{ .Values.artifactory.persistence.mountPath }}/bootstrap/access/etc/security/join.key;
+        {{- end }}
+        {{- if or .Values.artifactory.jfConnectToken .Values.artifactory.jfConnectTokenSecretName }}
+          echo "Copy jfConnectToken to {{ .Values.artifactory.persistence.mountPath }}/bootstrap/jfconnect/registration_token";
+          mkdir -p {{ .Values.artifactory.persistence.mountPath }}/bootstrap/jfconnect/;
+          echo -n ${ARTIFACTORY_JFCONNECT_TOKEN} > {{ .Values.artifactory.persistence.mountPath }}/bootstrap/jfconnect/registration_token;
+        {{- end }}
+        {{- if or .Values.artifactory.masterKey .Values.global.masterKey .Values.artifactory.masterKeySecretName .Values.global.masterKeySecretName }}
+          echo "Copy masterKey to {{ .Values.artifactory.persistence.mountPath }}/etc/security";
+          mkdir -p {{ .Values.artifactory.persistence.mountPath }}/etc/security;
+          echo -n ${ARTIFACTORY_MASTER_KEY} > {{ .Values.artifactory.persistence.mountPath }}/etc/security/master.key;
+        {{- end }}
+        env:
+        {{- if or .Values.artifactory.joinKey .Values.global.joinKey .Values.artifactory.joinKeySecretName .Values.global.joinKeySecretName }}
+        - name: ARTIFACTORY_JOIN_KEY
+          valueFrom:
+            secretKeyRef:
+            {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.joinKeySecretName .Values.global.joinKeySecretName }}
+              name: {{ include "artifactory.joinKeySecretName" . }}
+            {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+            {{- end }}
+              key: join-key
+        {{- end }}
+        {{- if or .Values.artifactory.jfConnectToken .Values.artifactory.jfConnectSecretName }}
+        - name: ARTIFACTORY_JFCONNECT_TOKEN
+          valueFrom:
+            secretKeyRef:
+            {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.jfConnectTokenSecretName }}
+              name: {{ include "artifactory.jfConnectTokenSecretName" . }}
+            {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+            {{- end }}
+              key: jfconnect-token
+        {{- end }}
+        {{- if or .Values.artifactory.masterKey .Values.global.masterKey .Values.artifactory.masterKeySecretName .Values.global.masterKeySecretName }}
+        - name: ARTIFACTORY_MASTER_KEY
+          valueFrom:
+            secretKeyRef:
+            {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.masterKeySecretName .Values.global.masterKeySecretName }}
+              name: {{ include "artifactory.masterKeySecretName" . }}
+            {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+            {{- end }}
+              key: master-key
+        {{- end }}
+        volumeMounts:
+        - name: artifactory-volume
+          mountPath: {{ .Values.artifactory.persistence.mountPath | quote }}
+        {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.systemYamlOverride.existingSecret }}
+        - name: systemyaml
+        {{- else }}
+        - name: {{ include "artifactory.unifiedCustomSecretVolumeName" . }}
+        {{- end }}
+          {{- if .Values.systemYamlOverride.existingSecret }}
+          mountPath: "/tmp/etc/{{.Values.systemYamlOverride.dataKey}}"
+          subPath: {{ .Values.systemYamlOverride.dataKey }}
+          {{- else  }}
+          mountPath: "/tmp/etc/system.yaml"
+          subPath: "system.yaml"
+          {{- end }}
+
+        ######################## Binarystore  ##########################
+        {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.persistence.customBinarystoreXmlSecret }}
+        - name: binarystore-xml
+        {{- else }}
+        - name: {{ include "artifactory.unifiedCustomSecretVolumeName" . }}
+        {{- end }}
+          mountPath: "/tmp/etc/artifactory/binarystore.xml"
+          subPath: binarystore.xml
+
+        ######################## Access config  ##########################
+        {{- if .Values.access.accessConfig }}
+        {{- if not .Values.artifactory.unifiedSecretInstallation }}
+        - name: access-config
+        {{- else }}
+        - name: {{ include "artifactory.unifiedCustomSecretVolumeName" . }}
+        {{- end }}
+          mountPath: "/tmp/etc/access.config.patch.yml"
+          subPath: "access.config.patch.yml"
+        {{- end }}
+
+        ######################## Access certs external secret  ##########################
+        {{- if .Values.access.customCertificatesSecretName }}
+        - name: access-certs
+          mountPath: "/tmp/etc/tls.crt"
+          subPath: tls.crt
+        - name: access-certs
+          mountPath: "/tmp/etc/tls.key"
+          subPath: tls.key
+        {{- end }}
+
+        {{- if .Values.jfconnect.customCertificatesSecretName }}
+        - name: jfconnect-certs
+          mountPath: "/tmp/etc/tls.crt"
+          subPath: tls.crt
+        - name: jfconnect-certs
+          mountPath: "/tmp/etc/tls.pem"
+          subPath: tls.pem
+        - name: jfconnect-certs
+          mountPath: "/tmp/etc/tls.cer"
+          subPath: tls.cer
+        - name: jfconnect-certs
+          mountPath: "/tmp/etc/tls.key"
+          subPath: tls.key
+        {{- end }}
+
+      {{- if or .Values.artifactory.customCertificates.enabled .Values.global.customCertificates.enabled }}
+      - name: copy-custom-certificates
+        image: {{ include "artifactory.getImageInfoByValue" (list . "initContainers") }}
+        imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        resources:
+{{ toYaml .Values.initContainers.resources | indent 10 }}
+        command:
+        - 'bash'
+        - '-c'
+        - >
+{{ include "artifactory.copyCustomCerts" . | indent 10 }}
+        volumeMounts:
+          - name: artifactory-volume
+            mountPath: {{ .Values.artifactory.persistence.mountPath }}
+          - name: ca-certs
+            mountPath: "/tmp/certs"
+      {{- end }}
+
+      {{- if .Values.artifactory.circleOfTrustCertificatesSecret }}
+      - name: copy-circle-of-trust-certificates
+        image: {{ include "artifactory.getImageInfoByValue" (list . "initContainers") }}
+        imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        resources:
+{{ toYaml .Values.initContainers.resources | indent 10 }}
+        command:
+        - 'bash'
+        - '-c'
+        - >
+{{ include "artifactory.copyCircleOfTrustCertsCerts" . | indent 10 }}
+        volumeMounts:
+          - name: artifactory-volume
+            mountPath: {{ .Values.artifactory.persistence.mountPath }}
+          - name: circle-of-trust-certs
+            mountPath: "/tmp/circleoftrustcerts"
+      {{- end }}
+
+    {{- if .Values.waitForDatabase }}
+      {{- if .Values.postgresql.enabled }}
+      - name: "wait-for-db"
+        image: {{ include "artifactory.getImageInfoByValue" (list . "initContainers") }}
+        imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        resources:
+{{ toYaml .Values.initContainers.resources | indent 10 }}
+        command:
+        - /bin/bash
+        - -c
+        - |
+          echo "Waiting for postgresql to come up"
+          ready=false;
+          while ! $ready; do echo waiting;
+            timeout 2s bash -c "</dev/tcp/{{ .Release.Name }}-postgresql/{{ .Values.postgresql.service.port }}"; exit_status=$?;
+            if [[ $exit_status -eq 0 ]]; then ready=true; echo "database ok"; fi; sleep 1;
+          done
+      {{- end }}
+    {{- end }}
+    {{- if or .Values.artifactory.customInitContainers .Values.global.customInitContainers }}
+{{ tpl (include "artifactory.customInitContainers" .)  . | indent 6 }}
+    {{- end }}
+{{- if .Values.artifactory.migration.enabled }}
+      - name: 'migration-artifactory'
+        image: {{ include "artifactory.getImageInfoByValue" (list . "artifactory") }}
+        imagePullPolicy: {{ .Values.artifactory.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+      {{- if .Values.artifactory.resources }}
+        resources:
+{{ toYaml .Values.artifactory.resources | indent 10 }}
+      {{- end }}
+        command:
+        - '/bin/bash'
+        - '-c'
+        - >
+          {{- if .Values.artifactory.migration.preStartCommand }}
+          echo "Running custom preStartCommand command";
+          {{ tpl .Values.artifactory.migration.preStartCommand . }};
+          {{- end }}
+          scriptsPath="/opt/jfrog/artifactory/app/bin";
+          mkdir -p $scriptsPath;
+          echo "Copy migration scripts and Run migration";
+          cp -fv /tmp/migrate.sh $scriptsPath/migrate.sh;
+          cp -fv /tmp/migrationHelmInfo.yaml $scriptsPath/migrationHelmInfo.yaml;
+          cp -fv /tmp/migrationStatus.sh $scriptsPath/migrationStatus.sh;
+          mkdir -p {{ .Values.artifactory.persistence.mountPath }}/log;
+          bash $scriptsPath/migrationStatus.sh {{ include "artifactory.app.version" . }} {{ .Values.artifactory.migration.timeoutSeconds }} > >(tee {{ .Values.artifactory.persistence.mountPath }}/log/helm-migration.log) 2>&1;
+        env:
+      {{- if and (not .Values.waitForDatabase) (not .Values.postgresql.enabled) }}
+        - name: SKIP_WAIT_FOR_EXTERNAL_DB
+          value: "true"
+      {{- end }}
+      {{- if or .Values.database.secrets.user .Values.database.user }}
+        - name: JF_SHARED_DATABASE_USERNAME
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.user }}
+              name: {{ tpl .Values.database.secrets.user.name . }}
+              key: {{ tpl .Values.database.secrets.user.key . }}
+        {{- else if .Values.database.user }}
+              {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory.fullname" . }}-database-creds
+              {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+              {{- end }}
+              key: db-user
+        {{- end }}
+      {{- end }}
+      {{ if or .Values.database.secrets.password .Values.database.password .Values.postgresql.enabled }}
+        - name: JF_SHARED_DATABASE_PASSWORD
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.password }}
+              name: {{ tpl .Values.database.secrets.password.name . }}
+              key: {{ tpl .Values.database.secrets.password.key . }}
+        {{- else if .Values.database.password }}
+              {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory.fullname" . }}-database-creds
+              {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+              {{- end }}
+              key: db-password
+        {{- else if .Values.postgresql.enabled }}
+              name: {{ .Release.Name }}-postgresql
+              key: postgresql-password
+        {{- end }}
+      {{- end }}
+      {{- if or .Values.database.secrets.url .Values.database.url }}
+        - name: JF_SHARED_DATABASE_URL
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.url }}
+              name: {{ tpl .Values.database.secrets.url.name . }}
+              key: {{ tpl .Values.database.secrets.url.key . }}
+        {{- else if .Values.database.url }}
+              {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory.fullname" . }}-database-creds
+              {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+              {{- end }}
+              key: db-url
+        {{- end }}
+      {{- end }}
+{{- with .Values.artifactory.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 8 }}
+{{- end }}
+        volumeMounts:
+        - name: migration-scripts
+          mountPath: "/tmp/migrate.sh"
+          subPath: migrate.sh
+        - name: migration-scripts
+          mountPath: "/tmp/migrationHelmInfo.yaml"
+          subPath: migrationHelmInfo.yaml
+        - name: migration-scripts
+          mountPath: "/tmp/migrationStatus.sh"
+          subPath: migrationStatus.sh
+        - name: artifactory-volume
+          mountPath: {{ .Values.artifactory.persistence.mountPath | quote }}
+
+      ######################## Artifactory persistence nfs ##########################
+      {{- if eq .Values.artifactory.persistence.type "nfs" }}
+        - name: artifactory-data
+          mountPath: "{{ .Values.artifactory.persistence.nfs.dataDir }}"
+        - name: artifactory-backup
+          mountPath: "{{ .Values.artifactory.persistence.nfs.backupDir }}"
+      {{- else }}
+
+        ######################## Artifactory persistence binarystore Xml ##########################
+        {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.persistence.customBinarystoreXmlSecret }}
+        - name: binarystore-xml
+        {{- else }}
+        - name: {{ include "artifactory.unifiedCustomSecretVolumeName" . }}
+        {{- end }}
+          mountPath: "/tmp/etc/artifactory/binarystore.xml"
+          subPath: "binarystore.xml"
+
+      ######################## Artifactory persistence google storage ##########################
+      {{- if .Values.artifactory.persistence.googleStorage.gcpServiceAccount.enabled }}
+        {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.persistence.googleStorage.gcpServiceAccount.customSecretName }}
+        - name: gcpcreds-json
+        {{- else }}
+        - name: {{ include "artifactory.unifiedCustomSecretVolumeName" . }}
+        {{- end }}
+          mountPath: "/artifactory_bootstrap/gcp.credentials.json"
+          subPath: gcp.credentials.json
+        {{- end }}
+      {{- end }}
+
+      ######################## CustomVolumeMounts ##########################
+      {{- if or .Values.artifactory.customVolumeMounts .Values.global.customVolumeMounts }}
+{{ tpl (include "artifactory.customVolumeMounts" .) . | indent 8 }}
+      {{- end }}
+{{- end }}
+      {{- if .Values.hostAliases }}
+      hostAliases:
+{{ toYaml .Values.hostAliases | indent 6 }}
+      {{- end }}
+      containers:
+    {{- if .Values.splitServicesToContainers }}
+      - name: {{ .Values.router.name }}
+        image: {{ include "artifactory.getImageInfoByValue" (list . "router") }}
+        imagePullPolicy: {{ .Values.router.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+          - '/bin/bash'
+          - '-c'
+          - >
+            exec /opt/jfrog/router/app/bin/entrypoint-router.sh
+        {{- with .Values.router.lifecycle }}
+        lifecycle:
+{{ toYaml . | indent 10 }}
+        {{- end }}
+        env:
+        - name: JF_ROUTER_TOPOLOGY_LOCAL_REQUIREDSERVICETYPES
+          value: {{ include "artifactory.router.requiredServiceTypes" . }}
+{{- with .Values.router.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 8 }}
+{{- end }}
+        volumeMounts:
+        - name: artifactory-volume
+          mountPath: {{ .Values.router.persistence.mountPath | quote }}
+{{- with .Values.router.customVolumeMounts }}
+{{ tpl . $ | indent 8 }}
+{{- end }}
+        resources:
+{{ toYaml .Values.router.resources | indent 10 }}
+      {{- if .Values.router.startupProbe.enabled }}
+        startupProbe:
+{{ tpl .Values.router.startupProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.router.readinessProbe.enabled }}
+        readinessProbe:
+{{ tpl .Values.router.readinessProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.router.livenessProbe.enabled }}
+        livenessProbe:
+{{ tpl .Values.router.livenessProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.frontend.enabled }}
+      - name: {{ .Values.frontend.name }}
+        image: {{ include "artifactory.getImageInfoByValue" (list . "artifactory") }}
+        imagePullPolicy: {{ .Values.artifactory.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+          - '/bin/bash'
+          - '-c'
+          - >
+            exec /opt/jfrog/artifactory/app/third-party/node/bin/node /opt/jfrog/artifactory/app/frontend/bin/server/dist/bundle.js /opt/jfrog/artifactory/app/frontend
+        {{- with .Values.frontend.lifecycle }}
+        lifecycle:
+{{ toYaml . | indent 10 }}
+        {{- end }}
+        env:
+        - name: JF_SHARED_NODE_ID
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+      {{- if and (gt (.Values.artifactory.replicaCount | int64) 1) (eq (include "artifactory.isImageProType" .) "true") (eq (include "artifactory.isUsingDerby" .) "false") }}
+        - name : JF_SHARED_NODE_HAENABLED
+          value: "true"
+      {{- end }}
+{{- with .Values.frontend.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 8 }}
+{{- end }}   
+        volumeMounts:
+        {{- if or .Values.artifactory.customVolumeMounts .Values.global.customVolumeMounts }}
+{{ tpl (include "artifactory.customVolumeMounts" .) . | indent 8 }}
+        {{- end }}
+        - name: artifactory-volume
+          mountPath: {{ .Values.artifactory.persistence.mountPath | quote }}
+        resources:
+{{ toYaml .Values.frontend.resources | indent 10 }}
+      {{- if .Values.frontend.startupProbe.enabled }}
+        startupProbe:
+{{ tpl .Values.frontend.startupProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.frontend.livenessProbe.enabled }}
+        livenessProbe:
+{{ tpl .Values.frontend.livenessProbe.config . | indent 10 }}
+      {{- end }}
+      {{- end }}
+      {{- if .Values.evidence.enabled }}
+      - name: {{ .Values.evidence.name }}
+        image: {{ include "artifactory.getImageInfoByValue" (list . "artifactory") }}
+        imagePullPolicy: {{ .Values.artifactory.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+        - '/bin/bash'
+        - '-c'
+        - >
+          exec /opt/jfrog/artifactory/app/evidence/bin/jf-evidence start
+        {{- with .Values.evidence.lifecycle }}
+        lifecycle:
+{{ toYaml . | indent 10 }}
+        {{- end }}
+        env:
+        - name: JF_SHARED_NODE_ID
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+      {{- if or .Values.database.secrets.user .Values.database.user }}
+        - name: JF_SHARED_DATABASE_USERNAME
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.user }}
+              name: {{ tpl .Values.database.secrets.user.name . }}
+              key: {{ tpl .Values.database.secrets.user.key . }}
+        {{- else if .Values.database.user }}
+              {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory.fullname" . }}-database-creds
+              {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+              {{- end }}
+              key: db-user
+        {{- end }}
+      {{- end }}
+      {{ if or .Values.database.secrets.password .Values.database.password .Values.postgresql.enabled }}
+        - name: JF_SHARED_DATABASE_PASSWORD
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.password }}
+              name: {{ tpl .Values.database.secrets.password.name . }}
+              key: {{ tpl .Values.database.secrets.password.key . }}
+        {{- else if .Values.database.password }}
+              {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory.fullname" . }}-database-creds
+              {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+              {{- end }}
+              key: db-password
+        {{- else if .Values.postgresql.enabled }}
+              name: {{ .Release.Name }}-postgresql
+              key: postgresql-password
+        {{- end }}
+      {{- end }}
+      {{- if or .Values.database.secrets.url .Values.database.url }}
+        - name: JF_SHARED_DATABASE_URL
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.url }}
+              name: {{ tpl .Values.database.secrets.url.name . }}
+              key: {{ tpl .Values.database.secrets.url.key . }}
+        {{- else if .Values.database.url }}
+              {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory.fullname" . }}-database-creds
+              {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+              {{- end }}
+              key: db-url
+        {{- end }}
+      {{- end }}
+{{- with .Values.evidence.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 8 }}
+{{- end }}
+        ports:
+        - containerPort: {{ .Values.evidence.internalPort }}
+          name: http-evidence
+        - containerPort: {{ .Values.evidence.externalPort }}
+          name: grpc-evidence
+        volumeMounts:
+        {{- if or .Values.artifactory.customVolumeMounts .Values.global.customVolumeMounts }}
+{{ tpl (include "artifactory.customVolumeMounts" .) . | indent 8 }}
+        {{- end }}
+        - name: artifactory-volume
+          mountPath: {{ .Values.artifactory.persistence.mountPath | quote }}
+        resources:
+{{ toYaml .Values.evidence.resources | indent 10 }}
+      {{- if .Values.evidence.startupProbe.enabled }}
+        startupProbe:
+{{ tpl .Values.evidence.startupProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.evidence.livenessProbe.enabled }}
+        livenessProbe:
+{{ tpl .Values.evidence.livenessProbe.config . | indent 10 }}
+      {{- end }}
+      {{- end }}
+      {{- if .Values.metadata.enabled }}
+      - name: {{ .Values.metadata.name }}
+        image: {{ include "artifactory.getImageInfoByValue" (list . "artifactory") }}
+        imagePullPolicy: {{ .Values.artifactory.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+          - '/bin/bash'
+          - '-c'
+          - >
+            exec /opt/jfrog/artifactory/app/metadata/bin/jf-metadata start
+        {{- with .Values.metadata.lifecycle }}
+        lifecycle:
+{{ toYaml . | indent 10 }}
+        {{- end }}
+        env:
+        - name: JF_SHARED_NODE_ID
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+      {{- if or .Values.database.secrets.user .Values.database.user }}
+        - name: JF_SHARED_DATABASE_USERNAME
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.user }}
+              name: {{ tpl .Values.database.secrets.user.name . }}
+              key: {{ tpl .Values.database.secrets.user.key . }}
+        {{- else if .Values.database.user }}
+              {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory.fullname" . }}-database-creds
+              {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+              {{- end }}
+              key: db-user
+        {{- end }}
+      {{- end }}
+      {{ if or .Values.database.secrets.password .Values.database.password .Values.postgresql.enabled }}
+        - name: JF_SHARED_DATABASE_PASSWORD
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.password }}
+              name: {{ tpl .Values.database.secrets.password.name . }}
+              key: {{ tpl .Values.database.secrets.password.key . }}
+        {{- else if .Values.database.password }}
+              {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory.fullname" . }}-database-creds
+              {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+              {{- end }}
+              key: db-password
+        {{- else if .Values.postgresql.enabled }}
+              name: {{ .Release.Name }}-postgresql
+              key: postgresql-password
+        {{- end }}
+      {{- end }}
+      {{- if or .Values.database.secrets.url .Values.database.url }}
+        - name: JF_SHARED_DATABASE_URL
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.url }}
+              name: {{ tpl .Values.database.secrets.url.name . }}
+              key: {{ tpl .Values.database.secrets.url.key . }}
+        {{- else if .Values.database.url }}
+              {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory.fullname" . }}-database-creds
+              {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+              {{- end }}
+              key: db-url
+        {{- end }}
+      {{- end }}
+{{- with .Values.metadata.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 8 }}
+{{- end }}
+        volumeMounts:
+        {{- if or .Values.artifactory.customVolumeMounts .Values.global.customVolumeMounts }}
+{{ tpl (include "artifactory.customVolumeMounts" .) . | indent 8 }}
+        {{- end }}
+        - name: artifactory-volume
+          mountPath: {{ .Values.artifactory.persistence.mountPath | quote }}
+        resources:
+{{ toYaml .Values.metadata.resources | indent 10 }}
+      {{- if .Values.metadata.startupProbe.enabled }}
+        startupProbe:
+{{ tpl .Values.metadata.startupProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.metadata.livenessProbe.enabled }}
+        livenessProbe:
+{{ tpl .Values.metadata.livenessProbe.config . | indent 10 }}
+      {{- end }}
+      {{- end }}
+      {{- if and .Values.onemodel.enabled (not (regexMatch "^.*(oss|cpp-ce|jcr).*$" .Values.artifactory.image.repository)) }}
+      - name: {{ .Values.onemodel.name }}
+        image: {{ include "artifactory.getImageInfoByValue" (list . "artifactory") }}
+        imagePullPolicy: {{ .Values.artifactory.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+          - '/bin/bash'
+          - '-c'
+          - >
+            exec /opt/jfrog/artifactory/app/onemodel/bin/entrypoint-onemodel.sh
+        {{- with .Values.onemodel.lifecycle }}
+        lifecycle:
+{{ toYaml . | indent 10 }}
+        {{- end }}
+        env:
+        - name: JF_SHARED_NODE_ID
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: JF_ONEMODEL_LISTENADDR
+          value: "0.0.0.0"
+{{- with .Values.onemodel.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 8 }}
+{{- end }}
+        volumeMounts:
+        {{- if or .Values.artifactory.customVolumeMounts .Values.global.customVolumeMounts }}
+{{ tpl (include "artifactory.customVolumeMounts" .) . | indent 8 }}
+        {{- end }}
+        - name: artifactory-volume
+          mountPath: {{ .Values.artifactory.persistence.mountPath | quote }}
+        resources:
+{{ toYaml .Values.onemodel.resources | indent 10 }}
+      {{- if .Values.onemodel.startupProbe.enabled }}
+        startupProbe:
+{{ tpl .Values.onemodel.startupProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.onemodel.livenessProbe.enabled }}
+        livenessProbe:
+{{ tpl .Values.onemodel.livenessProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.onemodel.readinessProbe.enabled }}
+        readinessProbe:
+{{ tpl .Values.onemodel.readinessProbe.config . | indent 10 }}
+      {{- end }}
+      {{- end }}
+      {{- if .Values.event.enabled }}
+      - name: {{ .Values.event.name }}
+        image: {{ include "artifactory.getImageInfoByValue" (list . "artifactory") }}
+        imagePullPolicy: {{ .Values.artifactory.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+          - '/bin/bash'
+          - '-c'
+          - >
+            exec /opt/jfrog/artifactory/app/event/bin/jf-event start
+        {{- with .Values.event.lifecycle }}
+        lifecycle:
+{{ toYaml . | indent 10 }}
+        {{- end }}
+        env:
+        - name: JF_SHARED_NODE_ID
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+{{- with .Values.event.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 8 }}
+{{- end }}
+        volumeMounts:
+        {{- if or .Values.artifactory.customVolumeMounts .Values.global.customVolumeMounts }}
+{{ tpl (include "artifactory.customVolumeMounts" .) . | indent 8 }}
+        {{- end }}
+        - name: artifactory-volume
+          mountPath: {{ .Values.artifactory.persistence.mountPath | quote }}
+        resources:
+{{ toYaml .Values.event.resources | indent 10 }}
+      {{- if .Values.event.startupProbe.enabled }}
+        startupProbe:
+{{ tpl .Values.event.startupProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.event.livenessProbe.enabled }}
+        livenessProbe:
+{{ tpl .Values.event.livenessProbe.config . | indent 10 }}
+      {{- end }}
+      {{- end }}
+      {{- if and .Values.jfconnect.enabled (not (regexMatch "^.*(oss|cpp-ce|jcr).*$" .Values.artifactory.image.repository)) }}
+      - name: {{ .Values.jfconnect.name }}
+        image: {{ include "artifactory.getImageInfoByValue" (list . "artifactory") }}
+        imagePullPolicy: {{ .Values.artifactory.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+          - '/bin/bash'
+          - '-c'
+          - >
+            exec /opt/jfrog/artifactory/app/jfconnect/bin/jf-connect start
+        {{- with .Values.jfconnect.lifecycle }}
+        lifecycle:
+{{ toYaml . | indent 10 }}
+        {{- end }}
+        env:
+        - name: JF_SHARED_NODE_ID
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+{{- with .Values.jfconnect.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 8 }}
+{{- end }}
+        volumeMounts:
+        {{- if or .Values.artifactory.customVolumeMounts .Values.global.customVolumeMounts }}
+{{ tpl (include "artifactory.customVolumeMounts" .) . | indent 8 }}
+        {{- end }}
+        - name: artifactory-volume
+          mountPath: {{ .Values.artifactory.persistence.mountPath | quote }}
+        resources:
+{{ toYaml .Values.jfconnect.resources | indent 10 }}
+      {{- if .Values.jfconnect.startupProbe.enabled }}
+        startupProbe:
+{{ tpl .Values.jfconnect.startupProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.jfconnect.livenessProbe.enabled }}
+        livenessProbe:
+{{ tpl .Values.jfconnect.livenessProbe.config . | indent 10 }}
+      {{- end }}
+      {{- end }}
+      {{- if and .Values.access.enabled (not (.Values.access.runOnArtifactoryTomcat | default false)) }}
+      - name: {{ .Values.access.name }}
+        image: {{ include "artifactory.getImageInfoByValue" (list . "artifactory") }}
+        imagePullPolicy: {{ .Values.artifactory.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+      {{- if .Values.access.resources }}
+        resources:
+{{ toYaml .Values.access.resources | indent 10 }}
+      {{- end }}
+        command:
+        - '/bin/bash'
+        - '-c'
+        - >
+          set -e;
+          {{- if .Values.access.preStartCommand }}
+          echo "Running custom preStartCommand command";
+          {{ tpl .Values.access.preStartCommand . }};
+          {{- end }}
+          exec /opt/jfrog/artifactory/app/access/bin/entrypoint-access.sh
+        {{- with .Values.access.lifecycle }}
+        lifecycle:
+{{ toYaml . | indent 10 }}
+        {{- end }}
+        env:
+      {{- if and (gt (.Values.artifactory.replicaCount | int64) 1) (eq (include "artifactory.isImageProType" .) "true") (eq (include "artifactory.isUsingDerby" .) "false") }}
+        - name : JF_SHARED_NODE_HAENABLED
+          value: "true"
+      {{- end }}
+      {{- if and (not .Values.waitForDatabase) (not .Values.postgresql.enabled) }}
+        - name: SKIP_WAIT_FOR_EXTERNAL_DB
+          value: "true"
+      {{- end }}
+      {{- if or .Values.database.secrets.user .Values.database.user }}
+        - name: JF_SHARED_DATABASE_USERNAME
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.user }}
+              name: {{ tpl .Values.database.secrets.user.name . }}
+              key: {{ tpl .Values.database.secrets.user.key . }}
+        {{- else if .Values.database.user }}
+              {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory.fullname" . }}-database-creds
+              {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+              {{- end }}
+              key: db-user
+        {{- end }}
+      {{- end }}
+      {{ if or .Values.database.secrets.password .Values.database.password .Values.postgresql.enabled }}
+        - name: JF_SHARED_DATABASE_PASSWORD
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.password }}
+              name: {{ tpl .Values.database.secrets.password.name . }}
+              key: {{ tpl .Values.database.secrets.password.key . }}
+        {{- else if .Values.database.password }}
+              {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory.fullname" . }}-database-creds
+              {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+              {{- end }}
+              key: db-password
+        {{- else if .Values.postgresql.enabled }}
+              name: {{ .Release.Name }}-postgresql
+              key: postgresql-password
+        {{- end }}
+      {{- end }}
+      {{- if or .Values.database.secrets.url .Values.database.url }}
+        - name: JF_SHARED_DATABASE_URL
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.url }}
+              name: {{ tpl .Values.database.secrets.url.name . }}
+              key: {{ tpl .Values.database.secrets.url.key . }}
+        {{- else if .Values.database.url }}
+              {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory.fullname" . }}-database-creds
+              {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+              {{- end }}
+              key: db-url
+        {{- end }}
+      {{- end }}
+{{- with .Values.access.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 8 }}
+{{- end }}
+        volumeMounts:
+      {{- if .Values.artifactory.customPersistentVolumeClaim }}
+        - name: {{ .Values.artifactory.customPersistentVolumeClaim.name }}
+          mountPath: {{ .Values.artifactory.customPersistentVolumeClaim.mountPath }}
+      {{- end }}
+        - name: artifactory-volume
+          mountPath: {{ .Values.artifactory.persistence.mountPath | quote }}
+
+      ######################## Artifactory persistence nfs ##########################
+      {{- if eq .Values.artifactory.persistence.type "nfs" }}
+        - name: artifactory-data
+          mountPath: "{{ .Values.artifactory.persistence.nfs.dataDir }}"
+        - name: artifactory-backup
+          mountPath: "{{ .Values.artifactory.persistence.nfs.backupDir }}"
+      {{- else }}
+
+      ######################## Artifactory persistence googleStorage ##########################
+      {{- if .Values.artifactory.persistence.googleStorage.gcpServiceAccount.enabled }}
+        {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.persistence.googleStorage.gcpServiceAccount.customSecretName }}
+        - name: gcpcreds-json
+        {{- else }}
+        - name: {{ include "artifactory.unifiedCustomSecretVolumeName" . }}
+        {{- end }}
+          mountPath: "/artifactory_bootstrap/gcp.credentials.json"
+          subPath: gcp.credentials.json
+      {{- end }}
+      {{- end }}
+      {{- if or .Values.artifactory.customVolumeMounts .Values.global.customVolumeMounts }}
+{{ tpl (include "artifactory.customVolumeMounts" .) . | indent 8 }}
+      {{- end }}
+      {{- if .Values.access.startupProbe.enabled }}
+        startupProbe:
+{{ tpl .Values.access.startupProbe.config . | indent 10 }}
+        {{- end }}
+    {{- if semverCompare "<v1.20.0-0" .Capabilities.KubeVersion.Version }}   
+        {{- if .Values.access.readinessProbe.enabled }}
+        readinessProbe:
+{{ tpl .Values.access.readinessProbe.config . | indent 10 }}
+        {{- end }}
+    {{- end }}
+      {{- if .Values.access.livenessProbe.enabled }}
+        livenessProbe:
+{{ tpl .Values.access.livenessProbe.config . | indent 10 }}
+        {{- end }}
+      {{- end }}
+      {{- if .Values.topology.enabled }}
+      - name: {{ .Values.topology.name }}
+        image: {{ include "artifactory.getImageInfoByValue" (list . "artifactory") }}
+        imagePullPolicy: {{ .Values.artifactory.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+        - '/bin/bash'
+        - '-c'
+        - >
+          exec /opt/jfrog/artifactory/app/topology/bin/entrypoint-topology.sh
+        {{- with .Values.topology.lifecycle }}
+        lifecycle:
+{{ toYaml . | indent 10 }}
+        {{- end }}
+        env:
+        - name: JF_SHARED_NODE_ID
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+      {{- if or .Values.database.secrets.user .Values.database.user }}
+        - name: JF_SHARED_DATABASE_USERNAME
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.user }}
+              name: {{ tpl .Values.database.secrets.user.name . }}
+              key: {{ tpl .Values.database.secrets.user.key . }}
+        {{- else if .Values.database.user }}
+              {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory.fullname" . }}-database-creds
+              {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+              {{- end }}
+              key: db-user
+        {{- end }}
+      {{- end }}
+      {{ if or .Values.database.secrets.password .Values.database.password .Values.postgresql.enabled }}
+        - name: JF_SHARED_DATABASE_PASSWORD
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.password }}
+              name: {{ tpl .Values.database.secrets.password.name . }}
+              key: {{ tpl .Values.database.secrets.password.key . }}
+        {{- else if .Values.database.password }}
+              {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory.fullname" . }}-database-creds
+              {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+              {{- end }}
+              key: db-password
+        {{- else if .Values.postgresql.enabled }}
+              name: {{ .Release.Name }}-postgresql
+              key: postgresql-password
+        {{- end }}
+      {{- end }}
+      {{- if or .Values.database.secrets.url .Values.database.url }}
+        - name: JF_SHARED_DATABASE_URL
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.url }}
+              name: {{ tpl .Values.database.secrets.url.name . }}
+              key: {{ tpl .Values.database.secrets.url.key . }}
+        {{- else if .Values.database.url }}
+              {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory.fullname" . }}-database-creds
+              {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+              {{- end }}
+              key: db-url
+        {{- end }}
+      {{- end }}
+{{- with .Values.topology.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 8 }}
+{{- end }}
+        ports:
+        - containerPort: {{ .Values.topology.internalPort }}
+          name: http-topology
+        volumeMounts:
+        {{- if or .Values.artifactory.customVolumeMounts .Values.global.customVolumeMounts }}
+{{ tpl (include "artifactory.customVolumeMounts" .) . | indent 8 }}
+        {{- end }}
+        - name: artifactory-volume
+          mountPath: {{ .Values.artifactory.persistence.mountPath | quote }}
+        resources:
+{{ toYaml .Values.topology.resources | indent 10 }}
+      {{- if .Values.topology.startupProbe.enabled }}
+        startupProbe:
+{{ tpl .Values.topology.startupProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.topology.readinessProbe.enabled }}
+        readinessProbe:
+{{ tpl .Values.topology.readinessProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.topology.livenessProbe.enabled }}
+        livenessProbe:
+{{ tpl .Values.topology.livenessProbe.config . | indent 10 }}
+      {{- end }}
+      {{- end }}
+      {{- if .Values.observability.enabled }}
+      - name: {{ .Values.observability.name }}
+        image: {{ include "artifactory.getImageInfoByValue" (list . "artifactory") }}
+        imagePullPolicy: {{ .Values.artifactory.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+          - '/bin/bash'
+          - '-c'
+          - >
+            exec /opt/jfrog/artifactory/app/observability/bin/jf-observability start
+        {{- with .Values.observability.lifecycle }}
+        lifecycle:
+{{ toYaml . | indent 10 }}
+        {{- end }}
+        env:
+        - name: JF_SHARED_NODE_ID
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+{{- with .Values.observability.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 8 }}
+{{- end }}
+        volumeMounts:
+        {{- if or .Values.artifactory.customVolumeMounts .Values.global.customVolumeMounts }}
+{{ tpl (include "artifactory.customVolumeMounts" .) . | indent 8 }}
+        {{- end }}
+        - name: artifactory-volume
+          mountPath: {{ .Values.artifactory.persistence.mountPath | quote }}
+        resources:
+{{ toYaml .Values.observability.resources | indent 10 }}
+      {{- if .Values.observability.startupProbe.enabled }}
+        startupProbe:
+{{ tpl .Values.observability.startupProbe.config . | indent 10 }}
+      {{- end }}
+      {{- if .Values.observability.livenessProbe.enabled }}
+        livenessProbe:
+{{ tpl .Values.observability.livenessProbe.config . | indent 10 }}
+      {{- end }}
+      {{- end }}
+    {{- end }}
+
+      - name: {{ .Values.artifactory.name }}
+        image: {{ include "artifactory.getImageInfoByValue" (list . "artifactory") }}
+        imagePullPolicy: {{ .Values.artifactory.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+      {{- if .Values.artifactory.resources }}
+        resources:
+{{ toYaml .Values.artifactory.resources | indent 10 }}
+      {{- end }}
+        command:
+        - '/bin/bash'
+        - '-c'
+        - >
+          set -e;
+          if [ -d /artifactory_extra_conf ] && [ -d /artifactory_bootstrap ]; then
+            echo "Copying bootstrap config from /artifactory_extra_conf to /artifactory_bootstrap";
+            cp -Lrfv /artifactory_extra_conf/ /artifactory_bootstrap/;
+          fi;
+          {{- if .Values.artifactory.configMapName }}
+          echo "Copying bootstrap configs";
+          cp -Lrf /bootstrap/* /artifactory_bootstrap/;
+          {{- end }}
+          {{- if .Values.artifactory.userPluginSecrets }}
+          echo "Copying plugins";
+          cp -Lrf /tmp/plugin/*/* /artifactory_bootstrap/plugins;
+          {{- end }}
+          {{- range .Values.artifactory.copyOnEveryStartup }}
+          {{- $targetPath := printf "%s/%s" $.Values.artifactory.persistence.mountPath .target }}
+          {{- $baseDirectory := regexFind ".*/" $targetPath }}
+          mkdir -p {{ $baseDirectory }};
+          cp -Lrf {{ .source }} {{ $.Values.artifactory.persistence.mountPath }}/{{ .target }};
+          {{- end }}
+          {{- if .Values.artifactory.preStartCommand }}
+          echo "Running custom preStartCommand command";
+          {{ tpl .Values.artifactory.preStartCommand . }};
+          {{- end }}
+          exec /entrypoint-artifactory.sh
+        {{- with .Values.artifactory.lifecycle }}
+        lifecycle:
+{{ toYaml . | indent 10 }}
+        {{- end }}
+        env:
+      {{- if and (gt (.Values.artifactory.replicaCount | int64) 1) (eq (include "artifactory.isImageProType" .) "true") (eq (include "artifactory.isUsingDerby" .) "false") }}
+        - name : JF_SHARED_NODE_HAENABLED
+          value: "true"
+      {{- end }}
+      {{- if .Values.aws.license.enabled }}
+        - name: IS_AWS_LICENSE
+          value: "true"
+        - name: AWS_REGION
+          value: {{ .Values.aws.region | quote }}
+      {{- if .Values.aws.licenseConfigSecretName }}
+        - name: AWS_WEB_IDENTITY_REFRESH_TOKEN_FILE
+          value: "/var/run/secrets/product-license/license_token"
+        - name: AWS_ROLE_ARN
+          valueFrom:
+            secretKeyRef:
+              name: {{ .Values.aws.licenseConfigSecretName }}
+              key: iam_role
+      {{- end }}
+      {{- end }}
+      {{- if .Values.splitServicesToContainers }}
+        - name : JF_ROUTER_ENABLED
+          value: "true"
+        - name : JF_ROUTER_SERVICE_ENABLED
+          value: "false"
+        - name : JF_EVENT_ENABLED
+          value: "false"
+        - name : JF_METADATA_ENABLED
+          value: "false"
+        - name : JF_FRONTEND_ENABLED
+          value: "false"
+        - name: JF_FEDERATION_ENABLED
+          value: "false"
+        - name : JF_OBSERVABILITY_ENABLED
+          value: "false"
+        - name : JF_JFCONNECT_SERVICE_ENABLED
+          value: "false"
+        - name : JF_EVIDENCE_ENABLED
+          value: "false"
+        - name : JF_ONEMODEL_ENABLED
+          value: "false"
+        {{- if not (.Values.access.runOnArtifactoryTomcat | default false) }}
+        - name : JF_ACCESS_ENABLED
+          value: "false"
+        {{- end}}
+        - name: JF_TOPOLOGY_SPLIT_CONTAINER_ENABLED
+          value: "true"
+      {{- end}}
+      {{- if and (not .Values.waitForDatabase) (not .Values.postgresql.enabled) }}
+        - name: SKIP_WAIT_FOR_EXTERNAL_DB
+          value: "true"
+      {{- end }}
+      {{- if or .Values.database.secrets.user .Values.database.user }}
+        - name: JF_SHARED_DATABASE_USERNAME
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.user }}
+              name: {{ tpl .Values.database.secrets.user.name . }}
+              key: {{ tpl .Values.database.secrets.user.key . }}
+        {{- else if .Values.database.user }}
+              {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory.fullname" . }}-database-creds
+              {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+              {{- end }}
+              key: db-user
+        {{- end }}
+      {{- end }}
+      {{ if or .Values.database.secrets.password .Values.database.password .Values.postgresql.enabled }}
+        - name: JF_SHARED_DATABASE_PASSWORD
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.password }}
+              name: {{ tpl .Values.database.secrets.password.name . }}
+              key: {{ tpl .Values.database.secrets.password.key . }}
+        {{- else if .Values.database.password }}
+              {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory.fullname" . }}-database-creds
+              {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+              {{- end }}
+              key: db-password
+        {{- else if .Values.postgresql.enabled }}
+              name: {{ .Release.Name }}-postgresql
+              key: postgresql-password
+        {{- end }}
+      {{- end }}
+      {{- if or .Values.database.secrets.url .Values.database.url }}
+        - name: JF_SHARED_DATABASE_URL
+          valueFrom:
+            secretKeyRef:
+        {{- if .Values.database.secrets.url }}
+              name: {{ tpl .Values.database.secrets.url.name . }}
+              key: {{ tpl .Values.database.secrets.url.key . }}
+        {{- else if .Values.database.url }}
+              {{- if not .Values.artifactory.unifiedSecretInstallation }}
+              name: {{ template "artifactory.fullname" . }}-database-creds
+              {{- else }}
+              name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+              {{- end }}
+              key: db-url
+        {{- end }}
+      {{- end }}
+{{- with .Values.artifactory.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 8 }}
+{{- end }}
+        ports:
+        - containerPort: {{ .Values.artifactory.internalPort }}
+          name: http
+        - containerPort: {{ .Values.artifactory.internalArtifactoryPort }}
+          name: http-internal
+        {{- if .Values.artifactory.javaOpts.jmx.enabled }}
+        - containerPort: {{ .Values.artifactory.javaOpts.jmx.port }}
+          name: tcp-jmx
+        {{- end }}
+        {{- if .Values.artifactory.ssh.enabled }}
+        - containerPort: {{ .Values.artifactory.ssh.internalPort }}
+          name: tcp-ssh
+        {{- end }}
+        volumeMounts:
+      {{- if .Values.artifactory.customPersistentVolumeClaim }}
+        - name: {{ .Values.artifactory.customPersistentVolumeClaim.name }}
+          mountPath: {{ .Values.artifactory.customPersistentVolumeClaim.mountPath }}
+      {{- end }}
+      {{- if .Values.aws.licenseConfigSecretName }}
+        - name: awsmp-product-license
+          mountPath: "/var/run/secrets/product-license"
+      {{- end }}
+      {{- if .Values.artifactory.userPluginSecrets }}
+        - name: bootstrap-plugins
+          mountPath: "/artifactory_bootstrap/plugins/"
+      {{- range .Values.artifactory.userPluginSecrets }}
+        - name: {{ tpl . $ }}
+          mountPath: "/tmp/plugin/{{ tpl . $ }}"
+      {{- end }}
+      {{- end }}
+        - name: artifactory-volume
+          mountPath: {{ .Values.artifactory.persistence.mountPath | quote }}
+
+      ######################## Artifactory config map ##########################
+      {{- if .Values.artifactory.configMapName }}
+        - name: bootstrap-config
+          mountPath: "/bootstrap/"
+      {{- end }}
+
+      ######################## Artifactory persistence nfs ##########################
+      {{- if eq .Values.artifactory.persistence.type "nfs" }}
+        - name: artifactory-data
+          mountPath: "{{ .Values.artifactory.persistence.nfs.dataDir }}"
+        - name: artifactory-backup
+          mountPath: "{{ .Values.artifactory.persistence.nfs.backupDir }}"
+      {{- else }}
+
+      ######################## Artifactory persistence binarystoreXml ##########################
+        {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.persistence.customBinarystoreXmlSecret }}
+        - name: binarystore-xml
+        {{- else }}
+        - name: {{ include "artifactory.unifiedCustomSecretVolumeName" . }}
+        {{- end }}
+          mountPath: "/tmp/etc/artifactory/binarystore.xml"
+          subPath: binarystore.xml
+
+      ######################## Artifactory persistence googleStorage ##########################
+      {{- if .Values.artifactory.persistence.googleStorage.gcpServiceAccount.enabled }}
+        {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.persistence.googleStorage.gcpServiceAccount.customSecretName }}
+        - name: gcpcreds-json
+        {{- else }}
+        - name: {{ include "artifactory.unifiedCustomSecretVolumeName" . }}
+        {{- end }}
+          mountPath: "/artifactory_bootstrap/gcp.credentials.json"
+          subPath: gcp.credentials.json
+      {{- end }}
+      {{- end }}
+
+      ######################## Artifactory license ##########################
+      {{- if or .Values.artifactory.license.secret .Values.artifactory.license.licenseKey }}
+        {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.license.secret }}
+        - name: artifactory-license
+        {{- else }}
+        - name: {{ include "artifactory.unifiedCustomSecretVolumeName" . }}
+        {{- end }}
+          mountPath: "/artifactory_bootstrap/artifactory.cluster.license"
+          {{- if .Values.artifactory.license.secret }}
+          subPath: {{ .Values.artifactory.license.dataKey }}
+          {{- else if .Values.artifactory.license.licenseKey }}
+          subPath: artifactory.lic
+          {{- end }}
+      {{- end }}
+
+        - name: installer-info
+          mountPath: "/artifactory_bootstrap/info/installer-info.json"
+          subPath: installer-info.json
+      {{- if or .Values.artifactory.customVolumeMounts .Values.global.customVolumeMounts }}
+{{ tpl (include "artifactory.customVolumeMounts" .) . | indent 8 }}
+      {{- end }}
+      {{- if .Values.artifactory.startupProbe.enabled }}
+        startupProbe:
+{{ tpl .Values.artifactory.startupProbe.config . | indent 10 }}
+        {{- end }}
+    {{- if and (not .Values.splitServicesToContainers) (semverCompare "<v1.20.0-0" .Capabilities.KubeVersion.Version) }}   
+        {{- if .Values.artifactory.readinessProbe.enabled }}
+        readinessProbe:
+{{ tpl .Values.artifactory.readinessProbe.config . | indent 10 }}
+        {{- end }}
+    {{- end }}
+      {{- if .Values.artifactory.livenessProbe.enabled }}
+        livenessProbe:
+{{ tpl .Values.artifactory.livenessProbe.config . | indent 10 }}
+        {{- end }}
+      {{- $mountPath := .Values.artifactory.persistence.mountPath }}
+      {{- range .Values.artifactory.loggers }}
+      - name: {{ . | replace "_" "-" | replace "." "-" }}
+        image: {{ include "artifactory.getImageInfoByValue" (list $ "initContainers") }}
+        imagePullPolicy: {{ $.Values.initContainers.image.pullPolicy }}
+      {{- if $.Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit $.Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+        - 'sh'
+        - '-c'
+        - 'sh /scripts/tail-log.sh {{ $mountPath }}/log {{ . }}'
+        volumeMounts:
+        - name: artifactory-volume
+          mountPath: {{ $mountPath }}
+        - name: tail-logger-script
+          mountPath: /scripts/tail-log.sh
+          subPath: tail-log.sh
+        resources:
+{{ toYaml $.Values.artifactory.loggersResources | indent 10 }}
+      {{- end }}
+      {{ if .Values.artifactory.catalinaLoggers }}
+      {{- range .Values.artifactory.catalinaLoggers }}
+      - name: {{ . | replace "_" "-" | replace "." "-" }}
+        image: {{ include "artifactory.getImageInfoByValue" (list $ "initContainers") }}
+        imagePullPolicy: {{ $.Values.initContainers.image.pullPolicy }}
+      {{- if $.Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit $.Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+        - 'sh'
+        - '-c'
+        - 'sh /scripts/tail-log.sh {{ $mountPath }}/log/tomcat {{ . }}'
+        volumeMounts:
+        - name: artifactory-volume
+          mountPath: {{ $mountPath }}
+        - name: tail-logger-script
+          mountPath: /scripts/tail-log.sh
+          subPath: tail-log.sh
+        resources:
+{{ toYaml $.Values.artifactory.catalinaLoggersResources | indent 10 }}
+      {{- end }}
+      {{- end }}
+      {{- if .Values.filebeat.enabled }}
+      - name: {{ .Values.filebeat.name }}
+        image: "{{ .Values.filebeat.image.repository }}:{{ .Values.filebeat.image.version }}"
+        imagePullPolicy: {{ .Values.filebeat.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        args:
+        - "-e"
+        - "-E"
+        - "http.enabled=true"
+        env:
+{{- with .Values.filebeat.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 10 }}
+{{- end }}
+        volumeMounts:
+        - name: filebeat-config
+          mountPath: /usr/share/filebeat/filebeat.yml
+          readOnly: true
+          subPath: filebeat.yml
+        - name: artifactory-volume
+          mountPath: "{{ .Values.artifactory.persistence.mountPath }}"
+        livenessProbe:
+{{ toYaml .Values.filebeat.livenessProbe | indent 10 }}
+        readinessProbe:
+{{ toYaml .Values.filebeat.readinessProbe | indent 10 }}
+        resources:
+{{ toYaml .Values.filebeat.resources | indent 10 }}
+      {{- end }}
+    {{- if or .Values.artifactory.customSidecarContainers .Values.global.customSidecarContainers }}
+{{ tpl (include "artifactory.customSidecarContainers" .) . | indent 6 }}
+    {{- end }}
+    {{- if or .Values.artifactory.nodeSelector .Values.global.nodeSelector }}
+{{ tpl (include "artifactory.nodeSelector" .) . | indent 6 }}
+    {{- end }}
+    {{- if .Values.artifactory.affinity }}
+    {{- with .Values.artifactory.affinity }}
+      affinity:
+{{ toYaml . | indent 8 }}
+    {{- end }}
+    {{- else if eq .Values.artifactory.podAntiAffinity.type "soft" }}
+      affinity:
+        podAntiAffinity:
+          preferredDuringSchedulingIgnoredDuringExecution:
+            - weight: 100
+              podAffinityTerm:
+                topologyKey: {{ .Values.artifactory.podAntiAffinity.topologyKey }}
+                labelSelector:
+                  matchLabels:
+                    app: {{ template "artifactory.name" . }}
+                    release: {{ .Release.Name }}
+    {{- else if eq .Values.artifactory.podAntiAffinity.type "hard" }}
+      affinity:
+        podAntiAffinity:
+          requiredDuringSchedulingIgnoredDuringExecution:
+            - topologyKey: {{ .Values.artifactory.podAntiAffinity.topologyKey }}
+              labelSelector:
+                matchLabels:
+                  app: {{ template "artifactory.name" . }}
+                  release: {{ .Release.Name }}
+    {{- end }}
+    {{- with .Values.artifactory.tolerations }}
+      tolerations:
+{{ toYaml . | indent 8 }}
+    {{- end }}
+      volumes:
+      ########## External secrets ###########
+      # ca-certs secret
+      {{- if or .Values.artifactory.customCertificates.enabled .Values.global.customCertificates.enabled }}
+      - name: ca-certs
+        secret:
+          secretName: {{ default .Values.global.customCertificates.certificateSecretName .Values.artifactory.customCertificates.certificateSecretName }}
+      {{- end }}
+
+      {{- if .Values.artifactory.circleOfTrustCertificatesSecret }}
+      - name: circle-of-trust-certs
+        secret:
+          secretName: {{ .Values.artifactory.circleOfTrustCertificatesSecret }}
+      {{- end }}
+
+      # aws licence
+      {{- if .Values.aws.licenseConfigSecretName }}
+      - name: awsmp-product-license
+        secret:
+          secretName: {{ .Values.aws.licenseConfigSecretName }}
+      {{- end }}
+
+      # binarystore-xml secret
+      {{- if .Values.artifactory.persistence.customBinarystoreXmlSecret }}
+      - name: binarystore-xml
+        secret:
+          secretName: {{ .Values.artifactory.persistence.customBinarystoreXmlSecret }}
+      {{- end }}
+
+      # access-certs secrets
+      {{- if .Values.access.customCertificatesSecretName }}
+      - name: access-certs
+        secret:
+          secretName: {{ .Values.access.customCertificatesSecretName }}
+      {{- end }}
+
+      # jfconnect-certs secrets
+      {{- if .Values.jfconnect.customCertificatesSecretName }}
+      - name: jfconnect-certs
+        secret:
+          secretName: {{ .Values.jfconnect.customCertificatesSecretName }}
+      {{- end }}
+
+      # system yaml
+      {{- if .Values.systemYamlOverride.existingSecret }}
+      - name: systemyaml
+        secret:
+          secretName: {{ .Values.systemYamlOverride.existingSecret }}
+      {{- end }}
+
+      # artifactory license secrets
+      {{- if .Values.artifactory.license.secret }}
+      - name: artifactory-license
+        secret:
+          secretName: {{ .Values.artifactory.license.secret }}
+      {{- end }}
+      
+      # user Plugin Secrets
+      {{- if .Values.artifactory.userPluginSecrets }}
+      - name: bootstrap-plugins
+        emptyDir: {}
+      {{- range .Values.artifactory.userPluginSecrets }}
+      - name: {{ tpl . $ }}
+        secret:
+          secretName: {{ tpl . $ }}
+      {{- end }}
+      {{- end }}
+
+      # access bootstarp
+      {{- if and .Values.artifactory.admin.secret .Values.artifactory.admin.dataKey }}
+      - name: access-bootstrap-creds
+        secret:
+          secretName: {{ .Values.artifactory.admin.secret }}
+      {{- end }}
+
+      # gcpcreds secret
+      {{- if and .Values.artifactory.persistence.googleStorage.gcpServiceAccount.enabled .Values.artifactory.persistence.googleStorage.gcpServiceAccount.customSecretName }}
+      - name: gcpcreds-json
+        secret:
+          secretName: {{ .Values.artifactory.persistence.googleStorage.gcpServiceAccount.customSecretName }}
+      {{- end }}
+
+      ############ Config map, Volumes and Custom Volumes ##############
+    {{- if or .Values.artifactory.customVolumes .Values.global.customVolumes }}
+{{ tpl (include "artifactory.customVolumes" .) . | indent 6 }}
+    {{- end }}
+      {{- if .Values.artifactory.migration.enabled }}
+      - name: migration-scripts
+        configMap:
+          name: {{ template "artifactory.fullname" . }}-migration-scripts
+      {{- end }}
+      - name: installer-info
+        configMap:
+          name: {{ template "artifactory.fullname" . }}-installer-info
+      {{- if and .Values.artifactory.persistence.enabled .Values.artifactory.persistence.existingClaim }}
+      - name: artifactory-volume
+        persistentVolumeClaim:
+          claimName: {{ .Values.artifactory.persistence.existingClaim }}
+      {{- end }}
+      {{- if .Values.artifactory.configMapName }}
+      - name: bootstrap-config
+        configMap:
+          name: {{ .Values.artifactory.configMapName }}
+      {{- end}}
+      {{- if or .Values.artifactory.loggers .Values.artifactory.catalinaLoggers }}
+      - name: tail-logger-script
+        configMap:
+          name: {{ template "artifactory.fullname" . }}-logger
+      {{- end }}
+      {{- if .Values.artifactory.configMaps }}
+      - name: artifactory-configmaps
+        configMap:
+          name: {{ template "artifactory.fullname" . }}-configmaps
+      {{- end }}
+      {{- if eq .Values.artifactory.persistence.type "nfs" }}
+      - name: artifactory-data
+        persistentVolumeClaim:
+          claimName: {{ template "artifactory.fullname" . }}-data-pvc
+      - name: artifactory-backup
+        persistentVolumeClaim:
+          claimName: {{ template "artifactory.fullname" . }}-backup-pvc
+      {{- end }}
+      {{- if not .Values.artifactory.persistence.enabled }}
+      - name: artifactory-volume
+        emptyDir:
+          sizeLimit: {{ .Values.artifactory.persistence.size }}
+      {{- end }}
+      {{- if .Values.filebeat.enabled }}
+      - name: filebeat-config
+        configMap:
+          name: {{ template "artifactory.fullname" . }}-filebeat-config
+      {{- end }}
+  {{- if not .Values.artifactory.persistence.enabled }}
+      - name: volume
+        emptyDir:
+          sizeLimit: {{ .Values.artifactory.persistence.size }}
+  {{- end }}
+
+    #########  unifiedSecretInstallation ###########
+    {{- if and .Values.artifactory.unifiedSecretInstallation (eq (include "artifactory.checkDuplicateUnifiedCustomVolume" .) "false" ) }}
+      - name: {{ include "artifactory.unifiedCustomSecretVolumeName" . }}
+        secret:
+          secretName: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+
+    {{- else if not .Values.artifactory.unifiedSecretInstallation }}
+      ############ If single secret installation flag is disable ############
+      {{- if and .Values.artifactory.persistence.googleStorage.gcpServiceAccount.enabled (not .Values.artifactory.persistence.googleStorage.gcpServiceAccount.customSecretName) }}
+      - name: gcpcreds-json
+        secret:
+          secretName: {{ template "artifactory.fullname" . }}-gcpcreds
+      {{- end }}
+      {{- if and .Values.artifactory.license.licenseKey (not .Values.artifactory.license.secret) }}
+      - name: artifactory-license
+        secret:
+          secretName: {{ template "artifactory.fullname" . }}-license
+      {{- end }}
+      {{- if and .Values.artifactory.admin.password (and (not .Values.artifactory.admin.secret) (not .Values.artifactory.admin.dataKey)) }}
+      - name: access-bootstrap-creds
+        secret:
+          secretName: {{ template "artifactory.fullname" . }}-bootstrap-creds
+      {{- end }}
+      {{- if and (not .Values.systemYamlOverride.existingSecret) }}
+      - name: systemyaml
+        secret:
+          secretName: {{ printf "%s-%s" (include "artifactory.fullname" .) "systemyaml" }}
+      {{- end }}
+      {{- if .Values.access.accessConfig }}
+      - name: access-config
+        secret:
+          secretName: {{ template "artifactory.fullname" . }}-access-config
+      {{- end }}
+      {{- if not .Values.artifactory.persistence.customBinarystoreXmlSecret }}
+      - name: binarystore-xml
+        secret:
+          secretName: {{ template "artifactory.fullname" . }}-binarystore
+      {{- end }}
+    {{- end }}
+    ########## volumeClaimTemplates #######
+{{- if or (and .Values.artifactory.persistence.enabled (not .Values.artifactory.persistence.existingClaim)) .Values.artifactory.customPersistentVolumeClaim }}
+  volumeClaimTemplates:
+{{- end }}
+{{- with .Values.artifactory.persistence }}
+  {{- if and .enabled (not .existingClaim) }}
+  - metadata:
+      name: artifactory-volume
+    spec:
+      {{- if .storageClassName }}
+      {{- if (eq "-" .storageClassName) }}
+      storageClassName: ""
+      {{- else }}
+      storageClassName: "{{ .storageClassName }}"
+      {{- end }}
+      {{- end }}
+      accessModes: [ "{{ .accessMode }}" ]
+      resources:
+        requests:
+          storage: {{ .size }}
+  {{- end }}
+{{- end }}
+  {{- if .Values.artifactory.customPersistentVolumeClaim }}
+  - metadata:
+      name: {{ .Values.artifactory.customPersistentVolumeClaim.name }}
+    spec:
+    {{- if .Values.artifactory.customPersistentVolumeClaim.storageClassName }}
+      {{- if (eq "-" .Values.artifactory.customPersistentVolumeClaim.storageClassName) }}
+      storageClassName: ""
+      {{- else }}
+      storageClassName: "{{ .Values.artifactory.customPersistentVolumeClaim.storageClassName }}"
+      {{- end }}
+    {{- end }}
+      accessModes:
+     {{- range .Values.artifactory.customPersistentVolumeClaim.accessModes }}
+        - {{ . | quote }}
+     {{- end }}
+      resources:
+        requests:
+          storage: {{ .Values.artifactory.customPersistentVolumeClaim.size }}
+  {{- end }}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-system-yaml.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-system-yaml.yaml
new file mode 100644
index 0000000000..80974274d0
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-system-yaml.yaml
@@ -0,0 +1,16 @@
+{{- if and (not .Values.systemYamlOverride.existingSecret) (not .Values.artifactory.unifiedSecretInstallation) }}
+apiVersion: v1
+kind: Secret
+metadata:
+  name: {{ template "artifactory.fullname" . }}-systemyaml
+  labels:
+    app: {{ template "artifactory.name" . }}
+    chart: {{ template "artifactory.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+type: Opaque
+stringData:
+  system.yaml: |
+{{ include "artifactory.finalSystemYaml" . | nindent 4 }}
+{{- end }}
+
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-unified-secret.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-unified-secret.yaml
new file mode 100644
index 0000000000..bb6719b4e9
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/artifactory-unified-secret.yaml
@@ -0,0 +1,94 @@
+{{- if .Values.artifactory.unifiedSecretInstallation }}
+apiVersion: v1
+kind: Secret
+metadata:
+  name: {{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret
+  labels:
+    app: "{{ template "artifactory.name" $ }}"
+    chart: "{{ template "artifactory.chart" $ }}"
+    component: "{{ $.Values.artifactory.name }}"
+    heritage: {{ $.Release.Service | quote }}
+    release: {{ $.Release.Name | quote }}
+type: Opaque
+stringData:
+
+{{- if .Values.access.accessConfig }}
+  access.config.patch.yml: |
+{{ tpl (toYaml .Values.access.accessConfig) . | indent 4 }}
+{{- end }}
+
+{{- if not .Values.artifactory.persistence.customBinarystoreXmlSecret }}
+  binarystore.xml: |-
+{{- if .Values.artifactory.persistence.binarystoreXml }} 
+{{ tpl .Values.artifactory.persistence.binarystoreXml . | indent 4 }}
+{{- else }}
+{{ tpl ( .Files.Get "files/binarystore.xml" ) . | indent 4 }}
+{{- end }}
+{{- end }}
+
+{{- if and (not .Values.systemYamlOverride.existingSecret) }}
+  system.yaml: |
+{{ include "artifactory.finalSystemYaml" . | nindent 4 }}
+{{- end }}
+
+{{- if and .Values.artifactory.customSecrets }}
+{{- range .Values.artifactory.customSecrets }}
+  {{ .key }}: |
+{{ .data | indent 4 -}}
+{{- end }}
+{{- end }}
+
+{{- if not .Values.artifactory.persistence.googleStorage.gcpServiceAccount.customSecretName }}
+{{- if .Values.artifactory.persistence.googleStorage.gcpServiceAccount.enabled }}
+  gcp.credentials.json: |-
+{{ tpl .Values.artifactory.persistence.googleStorage.gcpServiceAccount.config . | indent 4 }}
+{{- end }}
+{{- end }}
+
+data:
+
+  {{- if and  (not .Values.database.secrets) (not .Values.postgresql.enabled) }}
+  {{- if or .Values.database.url .Values.database.user .Values.database.password }}
+
+  {{- with .Values.database.url }}
+  db-url: {{ tpl . $ | b64enc | quote }}
+  {{- end }}
+  {{- with .Values.database.user }}
+  db-user: {{ tpl . $ | b64enc | quote }}
+  {{- end }}
+  {{- with .Values.database.password }}
+  db-password: {{ tpl . $ | b64enc | quote }}
+  {{- end }}
+
+  {{- end }}
+  {{- end }}
+
+  {{- if not (and .Values.artifactory.admin.secret .Values.artifactory.admin.dataKey) }}
+  {{- if .Values.artifactory.admin.password }}
+  bootstrap.creds: {{ (printf "%s@%s=%s" .Values.artifactory.admin.username .Values.artifactory.admin.ip .Values.artifactory.admin.password) | b64enc }}
+  {{- end }}
+  {{- end }}
+
+  {{- if not .Values.artifactory.license.secret }}
+  {{- with .Values.artifactory.license.licenseKey }}
+  artifactory.lic: {{ . | b64enc | quote }}
+  {{- end }}
+  {{- end }}
+
+  {{- if or .Values.artifactory.masterKey .Values.global.masterKey }}
+  {{- if not (or .Values.artifactory.masterKeySecretName .Values.global.masterKeySecretName) }}
+  master-key: {{ include "artifactory.masterKey" . | b64enc | quote }}
+  {{- end }}
+  {{- end }}
+  {{- if or .Values.artifactory.joinKey .Values.global.joinKey }}
+  {{- if not (or .Values.artifactory.joinKeySecretName .Values.global.joinKeySecretName) }}
+  join-key: {{ include "artifactory.joinKey" . | b64enc | quote }}
+  {{- end }}
+  {{- end }}
+  {{- if .Values.artifactory.jfConnectToken }}
+  {{- if not .Values.artifactory.jfConnectTokenSecretName }}
+  jfconnect-token: {{ include "artifactory.jfConnectToken" . | b64enc | quote }}
+  {{- end }}
+  {{- end }}
+
+{{- end }}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/filebeat-configmap.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/filebeat-configmap.yaml
new file mode 100644
index 0000000000..382ad3df66
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/filebeat-configmap.yaml
@@ -0,0 +1,15 @@
+{{- if .Values.filebeat.enabled }}
+---
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ template "artifactory.fullname" . }}-filebeat-config
+  labels:
+    app: {{ template "artifactory.name" . }}
+    chart: {{ .Chart.Name }}-{{ .Chart.Version }}
+    heritage: {{ .Release.Service | quote }}
+    release: {{ .Release.Name | quote }}
+data:
+  filebeat.yml: |
+{{ tpl .Values.filebeat.filebeatYml . | indent 4 }}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/ingress-grpc.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/ingress-grpc.yaml
new file mode 100644
index 0000000000..bb0995fc25
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/ingress-grpc.yaml
@@ -0,0 +1,80 @@
+{{- if .Values.ingressGrpc.enabled -}}
+{{- $serviceName := include "artifactory.serviceGrpc.fullname" . -}}
+{{- $servicePort := .Values.artifactory.externalPort -}}
+{{- $ingressName := include "artifactory.ingressGrpc.fullname" . -}}
+{{- if .Capabilities.APIVersions.Has "networking.k8s.io/v1" }}
+apiVersion: networking.k8s.io/v1
+{{- else if .Capabilities.APIVersions.Has "networking.k8s.io/v1beta1" }}
+apiVersion: networking.k8s.io/v1beta1
+{{- else }}
+apiVersion: extensions/v1beta1
+{{- end }}
+kind: Ingress
+metadata:
+  name: {{ $ingressName }}
+  labels:
+    app: {{ template "artifactory.name" . }}
+    chart: {{ template "artifactory.chart" . }}
+    release: {{ .Release.Name }}
+    heritage: {{ .Release.Service }}
+{{- if .Values.ingressGrpc.labels }}
+{{ .Values.ingressGrpc.labels | toYaml | trimSuffix "\n"| indent 4 -}}
+{{- end}}
+{{- if .Values.ingressGrpc.annotations }}
+  annotations:
+{{ .Values.ingressGrpc.annotations | toYaml | trimSuffix "\n" | indent 4 -}}
+{{- end }}
+spec:
+  {{- if and .Values.ingressGrpc.className (semverCompare ">=1.18.0-0" .Capabilities.KubeVersion.GitVersion) }}
+  ingressClassName: {{ .Values.ingressGrpc.className }}
+  {{- end }}
+  {{- if .Values.ingressGrpc.defaultBackend.enabled }}
+    {{- if .Capabilities.APIVersions.Has "networking.k8s.io/v1" }}
+  defaultBackend:
+    service:
+      name: {{ $serviceName }}
+      port:
+        number: {{ $servicePort }}
+    {{- else }}
+  backend:
+    serviceName: {{ $serviceName }}
+    servicePort: {{ $servicePort }}
+    {{- end }}
+  {{- end }}
+  rules:
+{{- if .Values.ingressGrpc.hosts }}
+  {{- if .Capabilities.APIVersions.Has "networking.k8s.io/v1" }}
+    {{- range $host := .Values.ingressGrpc.hosts }}
+  - host: {{ $host | quote }}
+    http:
+      paths:
+        - path: {{ $.Values.ingressGrpc.grpcPath }}
+          pathType: {{ $.Values.ingressGrpc.pathType | default "ImplementationSpecific" }}
+          backend:
+            service:
+              name: {{ $serviceName }}
+              port:
+                number: {{ $servicePort }}
+    {{- end }}
+  {{- else }}
+    {{- range $host := .Values.ingressGrpc.hosts }}
+  - host: {{ $host | quote }}
+    http:
+      paths:
+        - path: {{ $.Values.ingressGrpc.grpcPath }}
+          backend:
+            serviceName: {{ $serviceName }}
+            servicePort: {{ $servicePort }}
+    {{- end }}
+  {{- end }}
+{{- end -}}
+  {{- with .Values.ingressGrpc.additionalRules }}
+{{ tpl . $ | indent 2 }}
+  {{- end }}
+
+  {{- if .Values.ingressGrpc.tls }}
+  tls:
+{{ toYaml .Values.ingressGrpc.tls | indent 4 }}
+  {{- end -}}
+
+{{- end -}}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/ingress.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/ingress.yaml
new file mode 100644
index 0000000000..7a3669161e
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/ingress.yaml
@@ -0,0 +1,110 @@
+{{- if .Values.ingress.enabled -}}
+{{- $serviceName := include "artifactory.fullname" . -}}
+{{- $servicePort := .Values.artifactory.externalPort -}}
+{{- $serviceRTFSName := include "rtfs.fullname" . -}}
+{{- $artifactoryServicePort := .Values.artifactory.externalArtifactoryPort -}}
+{{- $ingressName := default ( include "artifactory.fullname" . ) .Values.ingress.name -}}
+{{- if .Capabilities.APIVersions.Has "networking.k8s.io/v1" }}
+apiVersion: networking.k8s.io/v1
+{{- else if .Capabilities.APIVersions.Has "networking.k8s.io/v1beta1" }}
+apiVersion: networking.k8s.io/v1beta1
+{{- else }}
+apiVersion: extensions/v1beta1
+{{- end }}
+kind: Ingress
+metadata:
+  name: {{ $ingressName }}
+  labels:
+    app: {{ template "artifactory.name" . }}
+    chart: {{ template "artifactory.chart" . }}
+    release: {{ .Release.Name }}
+    heritage: {{ .Release.Service }}
+{{- if .Values.ingress.labels }}
+{{ .Values.ingress.labels | toYaml | trimSuffix "\n"| indent 4 -}}
+{{- end}}
+{{- if .Values.ingress.annotations }}
+  annotations:
+{{ .Values.ingress.annotations | toYaml | trimSuffix "\n" | indent 4 -}}
+{{- end }}
+spec:
+  {{- if and .Values.ingress.className (semverCompare ">=1.18.0-0" .Capabilities.KubeVersion.GitVersion) }}
+  ingressClassName: {{ .Values.ingress.className }}
+  {{- end }}
+  {{- if .Values.ingress.defaultBackend.enabled }}
+    {{- if .Capabilities.APIVersions.Has "networking.k8s.io/v1" }}
+  defaultBackend:
+    service:
+      name: {{ $serviceName }}
+      port:
+        number: {{ $servicePort }}
+    {{- else }}
+  backend:
+    serviceName: {{ $serviceName }}
+    servicePort: {{ $servicePort }}
+    {{- end }}
+  {{- end }}
+  rules:
+{{- if .Values.ingress.hosts }}
+  {{- if .Capabilities.APIVersions.Has "networking.k8s.io/v1" }}
+    {{- range $host := .Values.ingress.hosts }}
+  - host: {{ $host | quote }}
+    http:
+      paths:
+        - path: {{ $.Values.ingress.routerPath }}
+          pathType: {{ $.Values.ingress.pathType | default "ImplementationSpecific" }}
+          backend:
+            service:
+              name: {{ $serviceName }}
+              port:
+                number: {{ $servicePort }}
+        {{- if not $.Values.ingress.disableRouterBypass }}
+        - path: {{ $.Values.ingress.artifactoryPath }}
+          pathType: {{ $.Values.ingress.pathType | default "ImplementationSpecific" }}
+          backend:
+            service:
+              name: {{ $serviceName }}
+              port:
+                number: {{ $artifactoryServicePort }}
+        {{- end }}
+        {{- if and $.Values.rtfs.enabled $.Values.ingress.enabled (not (regexMatch "^.*(oss|cpp-ce|jcr).*$" $.Values.artifactory.image.repository)) }}
+        - path: {{ $.Values.ingress.rtfsPath }}
+          pathType: {{ $.Values.ingress.pathType | default "ImplementationSpecific" }}
+          backend:
+            service:
+              name: {{ $serviceRTFSName }}
+              port:
+                name: http-router
+        {{- end }}
+    {{- end }}
+  {{- else }}
+    {{- range $host := .Values.ingress.hosts }}
+  - host: {{ $host | quote }}
+    http:
+      paths:
+        - path: {{ $.Values.ingress.routerPath }}
+          backend:
+            serviceName: {{ $serviceName }}
+            servicePort: {{ $servicePort }}
+        {{- if not $.Values.ingress.disableRouterBypass }}
+        - path: {{ $.Values.ingress.artifactoryPath }}
+          backend:
+            serviceName: {{ $serviceName }}
+            servicePort: {{ $artifactoryServicePort }}
+        {{- end }}
+      {{- end }}
+  {{- end }}
+{{- end -}}
+  {{- with .Values.ingress.additionalRules }}
+{{ tpl . $ | indent 2 }}
+  {{- end }}
+
+  {{- if .Values.ingress.tls }}
+  tls:
+{{ toYaml .Values.ingress.tls | indent 4 }}
+  {{- end -}}
+
+{{- if .Values.customIngress }}
+---
+{{ .Values.customIngress | toYaml | trimSuffix "\n" }}
+{{- end -}}
+{{- end -}}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/logger-configmap.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/logger-configmap.yaml
new file mode 100644
index 0000000000..41a078b024
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/logger-configmap.yaml
@@ -0,0 +1,63 @@
+{{- if or .Values.artifactory.loggers .Values.artifactory.catalinaLoggers }}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ template "artifactory.fullname" . }}-logger
+  labels:
+    app: {{ template "artifactory.name" . }}
+    chart: {{ template "artifactory.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+data:
+  tail-log.sh: |
+    #!/bin/sh
+
+    LOG_DIR=$1
+    LOG_NAME=$2
+    PID=
+
+    # Wait for log dir to appear
+    while [ ! -d ${LOG_DIR} ]; do
+      sleep 1
+    done
+
+    cd ${LOG_DIR}
+
+    LOG_PREFIX=$(echo ${LOG_NAME} | sed 's/.log$//g')
+
+    # Find the log to tail
+    LOG_FILE=$(ls -1t ./${LOG_PREFIX}.log 2>/dev/null)
+
+    # Wait for the log file
+    while [ -z "${LOG_FILE}" ]; do
+      sleep 1
+      LOG_FILE=$(ls -1t ./${LOG_PREFIX}.log 2>/dev/null)
+    done
+
+    echo "Log file ${LOG_FILE} is ready!"
+
+    # Get inode number
+    INODE_ID=$(ls -i ${LOG_FILE})
+
+    # echo "Tailing ${LOG_FILE}"
+    tail -F ${LOG_FILE} &
+    PID=$!
+
+    # Loop forever to see if a new log was created
+    while true; do
+      # Check inode number
+      NEW_INODE_ID=$(ls -i ${LOG_FILE})
+
+      # If inode number changed, this means log was rotated and need to start a new tail
+      if [ "${INODE_ID}" != "${NEW_INODE_ID}" ]; then
+        kill -9 ${PID} 2>/dev/null
+        INODE_ID="${NEW_INODE_ID}"
+
+        # Start a new tail
+        tail -F ${LOG_FILE} &
+        PID=$!
+      fi
+      sleep 1
+    done
+
+{{- end }}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/nginx-artifactory-conf.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/nginx-artifactory-conf.yaml
new file mode 100644
index 0000000000..3434489943
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/nginx-artifactory-conf.yaml
@@ -0,0 +1,18 @@
+{{- if and (not .Values.nginx.customArtifactoryConfigMap) .Values.nginx.enabled }}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ template "artifactory.fullname" . }}-nginx-artifactory-conf
+  labels:
+    app: {{ template "artifactory.name" . }}
+    chart: {{ template "artifactory.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+data:
+  artifactory.conf: |
+{{- if .Values.nginx.artifactoryConf }} 
+{{ tpl .Values.nginx.artifactoryConf . | indent 4 }}
+{{- else }}
+{{ tpl ( .Files.Get "files/nginx-artifactory-conf.yaml" ) . | indent 4 }}
+{{- end }}
+{{- end }}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/nginx-certificate-secret.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/nginx-certificate-secret.yaml
new file mode 100644
index 0000000000..f13d401747
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/nginx-certificate-secret.yaml
@@ -0,0 +1,14 @@
+{{- if and (not .Values.nginx.tlsSecretName) .Values.nginx.enabled .Values.nginx.https.enabled }}
+apiVersion: v1
+kind: Secret
+type: kubernetes.io/tls
+metadata:
+  name: {{ template "artifactory.fullname" . }}-nginx-certificate
+  labels:
+    app: {{ template "artifactory.name" . }}
+    chart: {{ template "artifactory.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+data:
+{{ ( include "artifactory.gen-certs" . ) | indent 2 }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/nginx-conf.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/nginx-conf.yaml
new file mode 100644
index 0000000000..31219d58a9
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/nginx-conf.yaml
@@ -0,0 +1,18 @@
+{{- if and (not .Values.nginx.customConfigMap) .Values.nginx.enabled }}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ template "artifactory.fullname" . }}-nginx-conf
+  labels:
+    app: {{ template "artifactory.name" . }}
+    chart: {{ template "artifactory.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+data:
+  nginx.conf: |
+{{- if .Values.nginx.mainConf }} 
+{{ tpl .Values.nginx.mainConf . | indent 4 }}
+{{- else }}
+{{ tpl ( .Files.Get "files/nginx-main-conf.yaml" ) . | indent 4 }}
+{{- end }}
+{{- end }}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/nginx-deployment.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/nginx-deployment.yaml
new file mode 100644
index 0000000000..774bedccaf
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/nginx-deployment.yaml
@@ -0,0 +1,223 @@
+{{- if .Values.nginx.enabled -}}
+{{- $serviceName := include "artifactory.fullname" . -}}
+{{- $servicePort := .Values.artifactory.externalPort -}}
+apiVersion: apps/v1
+kind: {{ .Values.nginx.kind }}
+metadata:
+  name: {{ template "artifactory.nginx.fullname" . }}
+  labels:
+    app: {{ template "artifactory.name" . }}
+    chart: {{ template "artifactory.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+    component: {{ .Values.nginx.name }}
+{{- if .Values.nginx.labels }}
+{{ toYaml .Values.nginx.labels | indent 4 }}
+{{- end }}
+{{- with .Values.nginx.deployment.annotations }}
+  annotations:
+{{ toYaml . | indent 4 }}
+{{- end }}
+spec:
+{{- if eq .Values.nginx.kind "StatefulSet" }}
+  serviceName: {{ template "artifactory.nginx.fullname" . }}
+{{- end }}
+{{- if ne .Values.nginx.kind "DaemonSet" }}
+  replicas: {{ .Values.nginx.replicaCount }}
+{{- end }}
+  selector:
+    matchLabels:
+      app: {{ template "artifactory.name" . }}
+      release: {{ .Release.Name }}
+      component: {{ .Values.nginx.name }}
+  template:
+    metadata:
+      annotations:
+        checksum/nginx-conf: {{ include (print $.Template.BasePath "/nginx-conf.yaml") . | sha256sum }}
+        checksum/nginx-artifactory-conf: {{ include (print $.Template.BasePath "/nginx-artifactory-conf.yaml") . | sha256sum }}
+      {{- range $key, $value := .Values.nginx.annotations }}
+        {{ $key }}: {{ $value | quote }}
+      {{- end }}
+      labels:
+        app: {{ template "artifactory.name" . }}
+        chart: {{ template "artifactory.chart" . }}
+        component: {{ .Values.nginx.name }}
+        heritage: {{ .Release.Service }}
+        release: {{ .Release.Name }}
+{{- if .Values.nginx.labels }}
+{{ toYaml .Values.nginx.labels | indent 8 }}
+{{- end }}
+    spec:
+    {{- if .Values.nginx.podSecurityContext.enabled }}
+      securityContext: {{- omit .Values.nginx.podSecurityContext "enabled" | toYaml | nindent 8 }}
+    {{- end }}
+      serviceAccountName: {{ template "artifactory.serviceAccountName" . }}
+      terminationGracePeriodSeconds: {{ .Values.nginx.terminationGracePeriodSeconds }}
+    {{- if or .Values.imagePullSecrets .Values.global.imagePullSecrets }}
+{{- include "artifactory.imagePullSecrets" . | indent 6 }}
+    {{- end }}
+      {{- if .Values.nginx.priorityClassName }}
+      priorityClassName: {{ .Values.nginx.priorityClassName | quote }}
+      {{- end }}
+      {{- if .Values.nginx.topologySpreadConstraints }}
+      topologySpreadConstraints:
+{{ tpl (toYaml .Values.nginx.topologySpreadConstraints) . | indent 8 }}
+      {{- end }}
+      initContainers:
+        {{- if .Values.nginx.customInitContainers }}
+{{ tpl (include "artifactory.nginx.customInitContainers" .)  . | indent 6 }}
+        {{- end }}
+      - name: "setup"
+        image: {{ include "artifactory.getImageInfoByValue" (list . "initContainers") }}
+        imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+      {{- if .Values.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+      {{- end }}
+        command:
+        - '/bin/sh'
+        - '-c'
+        - >
+          rm -rfv {{ .Values.nginx.persistence.mountPath }}/lost+found;
+          mkdir -p {{ .Values.nginx.persistence.mountPath }}/logs;
+        resources:
+          {{- toYaml .Values.initContainers.resources | nindent 10 }}
+        volumeMounts:
+        - mountPath: {{ .Values.nginx.persistence.mountPath | quote }}
+          name: nginx-volume
+      containers:
+      - name: {{ .Values.nginx.name }}
+        image: {{ include "artifactory.getImageInfoByValue" (list . "nginx") }}
+        imagePullPolicy: {{ .Values.nginx.image.pullPolicy }}
+        {{- if .Values.nginx.containerSecurityContext.enabled }}
+        securityContext: {{- omit .Values.nginx.containerSecurityContext "enabled" | toYaml | nindent 10 }}
+        {{- end }}
+        {{- if .Values.nginx.customCommand }}
+        command:
+{{- tpl (include "nginx.command" .) . | indent 10 }}
+        {{- end }}
+        ports:
+{{ if .Values.nginx.customPorts }}
+{{ toYaml .Values.nginx.customPorts | indent 8 }}
+{{ end }}
+        # DEPRECATION NOTE: The following is to maintain support for values pre 1.3.1 and
+        # will be cleaned up in a later version
+        {{- if .Values.nginx.http }}
+        {{- if .Values.nginx.http.enabled }}
+        - containerPort: {{ .Values.nginx.http.internalPort }}
+          name: http
+        {{- end }}
+        {{- else }} # DEPRECATED
+        - containerPort: {{ .Values.nginx.internalPortHttp }}
+          name: http-internal
+        {{- end }}
+        {{- if .Values.nginx.https }}
+        {{- if .Values.nginx.https.enabled }}
+        - containerPort: {{ .Values.nginx.https.internalPort }}
+          name: https
+        {{- end }}
+        {{- else }} # DEPRECATED
+        - containerPort: {{ .Values.nginx.internalPortHttps }}
+          name: https-internal
+        {{- end }}
+        {{- if .Values.artifactory.ssh.enabled }}
+        - containerPort: {{ .Values.nginx.ssh.internalPort }}
+          name: tcp-ssh
+        {{- end }}
+        {{- with .Values.nginx.lifecycle }}
+        lifecycle:
+{{ toYaml . | indent 10 }}
+        {{- end }}
+        volumeMounts:
+        - name: nginx-conf
+          mountPath: /etc/nginx/nginx.conf
+          subPath: nginx.conf
+        - name: nginx-artifactory-conf
+          mountPath: "{{ .Values.nginx.persistence.mountPath }}/conf.d/"
+        - name: nginx-volume
+          mountPath: {{ .Values.nginx.persistence.mountPath | quote }}
+        {{- if .Values.nginx.https.enabled }}  
+        - name: ssl-certificates
+          mountPath: "{{ .Values.nginx.persistence.mountPath }}/ssl"
+        {{- end }}
+        {{- if .Values.nginx.customVolumeMounts }}
+{{ tpl (include "artifactory.nginx.customVolumeMounts" .) . | indent 8 }}
+        {{- end }}  
+        resources:
+{{ toYaml .Values.nginx.resources | indent 10 }}
+        {{- if .Values.nginx.startupProbe.enabled }}
+        startupProbe:
+{{ tpl .Values.nginx.startupProbe.config . | indent 10 }}
+        {{- end }}
+        {{- if .Values.nginx.readinessProbe.enabled }}
+        readinessProbe:
+{{ tpl .Values.nginx.readinessProbe.config . | indent 10 }}
+        {{- end }}
+        {{- if .Values.nginx.livenessProbe.enabled }}
+        livenessProbe:
+{{ tpl .Values.nginx.livenessProbe.config . | indent 10 }}
+        {{- end }}
+      {{- $mountPath := .Values.nginx.persistence.mountPath }}
+      {{- range .Values.nginx.loggers }}
+      - name: {{ . | replace "_" "-" | replace "." "-" }}
+        image: {{ include "artifactory.getImageInfoByValue" (list $ "initContainers") }}
+        imagePullPolicy: {{ $.Values.initContainers.image.pullPolicy }}
+        command:
+        - tail
+        args:
+        - '-F'
+        - '{{ $mountPath }}/logs/{{ . }}'
+        volumeMounts:
+        - name: nginx-volume
+          mountPath: {{ $mountPath }}
+        resources:
+{{ toYaml $.Values.nginx.loggersResources | indent 10 }}
+      {{- end }}
+        {{- if .Values.nginx.customSidecarContainers }}
+{{ tpl (include "artifactory.nginx.customSidecarContainers" .)  . | indent 6 }}
+        {{- end }}
+    {{- if or .Values.nginx.nodeSelector .Values.global.nodeSelector }}
+{{ tpl (include "nginx.nodeSelector" .) . | indent 6 }}
+    {{- end }}
+    {{- with .Values.nginx.affinity }}
+      affinity:
+{{ toYaml . | indent 8 }}
+    {{- end }}
+    {{- with .Values.nginx.tolerations }}
+      tolerations:
+{{ toYaml . | indent 8 }}
+    {{- end }}
+      volumes:
+        {{- if .Values.nginx.customVolumes }}
+{{ tpl (include "artifactory.nginx.customVolumes" .)  . | indent 6 }}
+        {{- end }}
+      - name: nginx-conf
+        configMap:
+        {{- if .Values.nginx.customConfigMap }}
+          name: {{ .Values.nginx.customConfigMap }}
+        {{- else }}
+          name: {{ template "artifactory.fullname" . }}-nginx-conf
+        {{- end }}
+      - name: nginx-artifactory-conf
+        configMap:
+      {{- if .Values.nginx.customArtifactoryConfigMap }}
+          name: {{ .Values.nginx.customArtifactoryConfigMap }}
+      {{- else }}
+          name: {{ template "artifactory.fullname" . }}-nginx-artifactory-conf
+      {{- end }}
+      - name: nginx-volume
+      {{- if .Values.nginx.persistence.enabled }}
+        persistentVolumeClaim:
+          claimName: {{ .Values.nginx.persistence.existingClaim | default (include "artifactory.nginx.fullname" .) }}
+      {{- else }}
+        emptyDir: {}
+      {{- end }}
+      {{- if .Values.nginx.https.enabled }}
+      - name: ssl-certificates
+        secret:
+      {{- if .Values.nginx.tlsSecretName }}
+          secretName: {{ .Values.nginx.tlsSecretName }}
+      {{- else }}
+          secretName: {{ template "artifactory.fullname" . }}-nginx-certificate
+      {{- end }}
+      {{- end }}
+{{- end }}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/nginx-pdb.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/nginx-pdb.yaml
new file mode 100644
index 0000000000..dff0c23a3e
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/nginx-pdb.yaml
@@ -0,0 +1,23 @@
+{{- if .Values.nginx.enabled -}}
+{{- if semverCompare "<v1.21.0-0" .Capabilities.KubeVersion.Version }}
+apiVersion: policy/v1beta1
+{{- else }}
+apiVersion: policy/v1
+{{- end }}
+kind: PodDisruptionBudget
+metadata:
+  name: {{ template "artifactory.nginx.fullname" . }}
+  labels:
+    app: {{ template "artifactory.name" . }}
+    chart: {{ template "artifactory.chart" . }}
+    component: {{ .Values.nginx.name }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+spec:
+  selector:
+    matchLabels:
+      component: {{ .Values.nginx.name }}
+      app: {{ template "artifactory.name" . }}
+      release: {{ .Release.Name }}
+  minAvailable: {{ .Values.nginx.minAvailable }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/nginx-pvc.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/nginx-pvc.yaml
new file mode 100644
index 0000000000..3394a0ade8
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/nginx-pvc.yaml
@@ -0,0 +1,26 @@
+{{- if and .Values.nginx.persistence.enabled (.Values.nginx.enabled ) }}
+{{- if (not .Values.nginx.persistence.existingClaim) }}
+kind: PersistentVolumeClaim
+apiVersion: v1
+metadata:
+  name: {{ template "artifactory.nginx.fullname" . }}
+  labels:
+    app: {{ template "artifactory.name" . }}
+    chart: {{ template "artifactory.chart" . }}
+    release: {{ .Release.Name }}
+    heritage: {{ .Release.Service }}
+spec:
+  accessModes:
+    - {{ .Values.nginx.persistence.accessMode | quote }}
+  resources:
+    requests:
+      storage: {{ .Values.nginx.persistence.size | quote }}
+{{- if .Values.nginx.persistence.storageClassName }}
+{{- if (eq "-" .Values.nginx.persistence.storageClassName) }}
+  storageClassName: ""
+{{- else }}
+  storageClassName: "{{ .Values.nginx.persistence.storageClassName }}"
+{{- end }}
+{{- end }}
+{{- end }}
+{{- end }}
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/nginx-scripts-conf.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/nginx-scripts-conf.yaml
new file mode 100644
index 0000000000..a69952785d
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/nginx-scripts-conf.yaml
@@ -0,0 +1,52 @@
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ template "artifactory.fullname" . }}-nginx-scripts
+  labels:
+    app: {{ template "artifactory.name" . }}
+    chart: {{ template "artifactory.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+data:
+  configreloader.sh: |
+    #!/bin/sh
+    ####
+    # A helper script to use inotifyd to reload nginx config
+    # upon configmap/ssl secrets changes.
+    #
+    # Synopsis: setup the nginx command via the values file
+    # as follows:
+    #
+    ####
+    # nginx:
+    #   customVolumes: |
+    #     - name: scripts
+    #       configMap:
+    #         name: {{ "{{" }} template "artifactory.fullname" . {{ "}}" }}-nginx-scripts
+    #         defaultMode: 0550
+    #   customVolumeMounts: |
+    #     - name: scripts
+    #       mountPath: /var/opt/jfrog/nginx/scripts/
+    #   customCommand:
+    #     - /bin/sh
+    #     - -c
+    #     - |
+    #       # watch for configmap changes
+    #       /sbin/inotifyd /var/opt/jfrog/nginx/scripts/configreloader.sh {{ "{{" }} .Values.nginx.persistence.mountPath {{ "-}}" }}/conf.d:n &
+    #       {{ "{{" }} if .Values.nginx.https.enabled {{ "-}}" }}
+    #       # watch for tls secret changes
+    #       /sbin/inotifyd /var/opt/jfrog/nginx/scripts/configreloader.sh {{ "{{" }} .Values.nginx.persistence.mountPath {{ "-}}" }}/ssl:n &
+    #       {{ "{{" }} end {{ "-}}" }}
+    #       nginx -g 'daemon off;'
+    if [[ "$3" =~ data_tmp ]] && [ "$1" = "n" ]
+    then
+      # a symlink has changed in one of the watched folders
+      # lets verify the config
+      nginx -t -q
+      if [ $? -eq 0 ]
+      then
+        # config is valid, lets reload nginx config
+        nginx -q -s reload
+      fi
+    fi
+
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/nginx-service.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/nginx-service.yaml
new file mode 100644
index 0000000000..29fb9132db
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/nginx-service.yaml
@@ -0,0 +1,88 @@
+{{- if .Values.nginx.enabled -}}
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ template "artifactory.nginx.fullname" . }}
+  labels:
+    app: {{ template "artifactory.name" . }}
+    chart: {{ template "artifactory.chart" . }}
+    component: {{ .Values.nginx.name }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+{{- if .Values.nginx.service.annotations }}
+  annotations:
+{{ toYaml .Values.nginx.service.annotations | indent 4 }}
+{{- end }}
+spec:
+  {{- if .Values.nginx.service.ipFamilyPolicy }}
+  ipFamilyPolicy: {{ .Values.nginx.service.ipFamilyPolicy }}
+  {{- end }}
+  {{- if not (empty .Values.nginx.service.ipFamilies)}}
+  ipFamilies: {{- toYaml .Values.nginx.service.ipFamilies | nindent 4 }}
+  {{- end }}
+  type: {{ .Values.nginx.service.type }}
+{{- if eq .Values.nginx.service.type "LoadBalancer" }}
+  {{ if .Values.nginx.service.loadBalancerIP -}}
+  loadBalancerIP: {{ .Values.nginx.service.loadBalancerIP }}
+  {{ end -}}
+  {{- if .Values.nginx.service.externalTrafficPolicy }}
+  externalTrafficPolicy: {{ .Values.nginx.service.externalTrafficPolicy }}
+  {{- end }}
+{{- end }}
+{{- if .Values.nginx.service.loadBalancerSourceRanges }}
+  loadBalancerSourceRanges:
+{{ toYaml .Values.nginx.service.loadBalancerSourceRanges | indent 4 }}
+{{- end }}
+  ports:
+{{- if .Values.nginx.service.customPorts }}
+{{ toYaml .Values.nginx.service.customPorts | indent 2 }}
+{{ end }}
+  # DEPRECATION NOTE: The following is to maintain support for values pre 1.3.0 and
+  # will be cleaned up in a later version
+  {{- if .Values.nginx.http }}
+  {{- if .Values.nginx.http.enabled }}
+  - port: {{ .Values.nginx.http.externalPort }}
+    targetPort: {{ .Values.nginx.http.internalPort }}
+    {{- if .Values.nginx.service.nodePort }}
+    nodePort: {{ .Values.nginx.service.nodePort }}
+    {{- end }}
+    protocol: TCP
+    name: http
+  {{- end }}
+  {{- else }} # DEPRECATED
+  - port: {{ .Values.nginx.externalPortHttp }}
+    targetPort: {{ .Values.nginx.internalPortHttp }}
+    protocol: TCP
+    name: http
+  {{- end }}
+  {{- if .Values.nginx.https }}
+  {{- if or .Values.nginx.https.enabled .Values.nginx.service.ssloffload }}
+  - port: {{ .Values.nginx.https.externalPort }}
+    {{- if and .Values.nginx.service.ssloffload (not .Values.nginx.service.ssloffloadForceHttps) }}
+    targetPort: {{ .Values.nginx.http.internalPort }}
+    {{- else }}
+    targetPort: {{ .Values.nginx.https.internalPort}}
+    {{- end }}
+    {{- if .Values.nginx.service.nodePort }}
+    nodePort: {{ .Values.nginx.service.nodePort }}
+    {{- end }}
+    protocol: TCP
+    name: https
+  {{- end }}
+  {{- else }} # DEPRECATED
+  - port: {{ .Values.nginx.externalPortHttps }}
+    targetPort: {{ .Values.nginx.internalPortHttps }}
+    protocol: TCP
+    name: https
+  {{- end }}
+  {{- if .Values.artifactory.ssh.enabled }}
+  - port: {{ .Values.nginx.ssh.externalPort }}
+    targetPort: {{ .Values.nginx.ssh.internalPort }}
+    protocol: TCP
+    name: tcp-ssh
+  {{- end }}
+  selector:
+    app: {{ template "artifactory.name" . }}
+    component: {{ .Values.nginx.name }}
+    release: {{ .Release.Name }}
+{{- end }}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/rtfs-deployment.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/rtfs-deployment.yaml
new file mode 100644
index 0000000000..ecd34d16e2
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/rtfs-deployment.yaml
@@ -0,0 +1,350 @@
+{{- if .Values.rtfs.enabled -}}
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: {{ include "rtfs.fullname" . }}
+  labels:
+    app: {{ template "artifactory.name" . }}
+    chart: {{ template "artifactory.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+    component: {{ .Values.rtfs.name }}
+{{- if .Values.rtfs.deployment.labels }}
+{{ toYaml .Values.rtfs.deployment.labels | indent 4 }}
+{{- end }}
+{{- with .Values.rtfs.deployment.annotations }}
+  annotations:
+{{ toYaml . | indent 4 }}
+{{- end }}
+spec:
+  replicas: {{ .Values.rtfs.replicaCount }}
+  strategy:
+    type: "RollingUpdate"
+  selector:
+    matchLabels:
+      app: {{ template "artifactory.name" . }}
+      release: {{ .Release.Name }}
+      component: {{ .Values.rtfs.name }}
+  template:
+    metadata:
+      annotations:
+      {{- if not .Values.artifactory.unifiedSecretInstallation }}
+        checksum/database-secrets: {{ include (print $.Template.BasePath "/artifactory-database-secrets.yaml") . | sha256sum }}
+        checksum/systemyaml: {{ include (print $.Template.BasePath "/artifactory-system-yaml.yaml") . | sha256sum }}
+      {{- else }}
+        checksum/artifactory-unified-secret: {{ include (print $.Template.BasePath "/artifactory-unified-secret.yaml") . | sha256sum }}
+      {{- end }}
+      {{- with .Values.rtfs.annotations }}
+{{ toYaml . | indent 8 }}
+      {{- end }}
+      labels:
+        app: {{ template "artifactory.name" . }}
+        chart: {{ template "artifactory.chart" . }}
+        component: {{ .Values.rtfs.name }}
+        heritage: {{ .Release.Service }}
+        release: {{ .Release.Name }}
+    spec:
+      {{- if or .Values.imagePullSecrets .Values.global.imagePullSecrets }}
+  {{- include "artifactory.imagePullSecrets" . | indent 6 }}
+      {{- end }}
+      {{- if .Values.rtfs.podSecurityContext.enabled }}
+      securityContext: {{- omit .Values.rtfs.podSecurityContext "enabled" | toYaml | nindent 8 }}
+      {{- end }}
+      initContainers:
+        {{- if .Values.rtfs.customInitContainers }}
+{{ tpl (include "artifactory.rtfs.customInitContainers" .)  . | indent 8 }}
+        {{- end }}
+        - name: 'copy-configs'
+          image: {{ include "artifactory.getImageInfoByValue" (list . "initContainers") }}
+          imagePullPolicy: {{ .Values.initContainers.image.pullPolicy | quote }}
+          {{- if .Values.rtfs.containerSecurityContext.enabled }}
+          securityContext: {{- omit .Values.rtfs.containerSecurityContext "enabled" | toYaml | nindent 12 }}
+          {{- end }}
+          {{- if .Values.initContainers.resources }}
+          resources: 
+            {{- toYaml .Values.initContainers.resources | nindent 12 }}
+          {{- end }}
+          command:
+            - '/bin/bash'
+            - '-c'
+            - >
+              echo "Copy system.yaml to {{ .Values.rtfs.persistence.mountPath }}/etc";
+              mkdir -p {{ .Values.rtfs.persistence.mountPath }}/etc;
+              {{- if .Values.systemYamlOverride.existingSecret }}
+              cp -fv /tmp/etc/{{ .Values.systemYamlOverride.dataKey }} {{ .Values.rtfs.persistence.mountPath }}/etc/system.yaml;
+              {{- else }}
+              cp -fv /tmp/etc/system.yaml {{ .Values.rtfs.persistence.mountPath }}/etc/system.yaml;
+              {{- end }}
+              echo "Copying artifactory-federation properties to {{ .Values.rtfs.persistence.mountPath }}/etc";
+              mkdir -p {{ .Values.rtfs.persistence.mountPath }}/etc;
+              echo "Starting to copy files to artifactory-federation.properties";
+              found=false;
+              for file in /tmp/etc/properties/*; do
+                  if [ -f "$file" ]; then
+                      found=true;
+                      key=$(basename "$file");
+                      value=$(cat "$file");
+                      echo "Processing file: $file";
+                      echo "$key=$value" >> {{ .Values.rtfs.persistence.mountPath }}/etc/artifactory-federation.properties;
+                  fi;
+              done;
+              if [ "$found" = false ]; then
+                  echo "No matching files found, creating an empty artifactory-federation.properties file";
+                  touch {{ .Values.rtfs.persistence.mountPath }}/etc/artifactory-federation.properties;
+              fi
+          volumeMounts:
+            - name: data
+              mountPath: {{ .Values.rtfs.persistence.mountPath | quote }}
+            {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.systemYamlOverride.existingSecret }}
+            - name: systemyaml
+            {{- else }}
+            - name: {{ include "artifactory.unifiedCustomSecretVolumeName" . }}
+            {{- end }}
+              {{- if .Values.systemYamlOverride.existingSecret }}
+              mountPath: "/tmp/etc/{{.Values.systemYamlOverride.dataKey }}"
+              subPath: {{ .Values.systemYamlOverride.dataKey }}
+              {{- else  }}
+              mountPath: "/tmp/etc/system.yaml"
+              subPath: "system.yaml"
+              {{- end }}
+            {{- if or .Values.rtfs.persistence.federationProperties .Values.rtfs.persistence.customFederationPropertiesConfig }}
+            - name: federationproperties
+              mountPath: /tmp/etc/properties
+            {{- end }}
+      containers:
+        - name: rtfs
+          image: {{ include "artifactory.getImageInfoByValue" (list . "rtfs") }}
+          imagePullPolicy: {{ .Values.initContainers.image.pullPolicy | quote }}
+          {{- if .Values.rtfs.containerSecurityContext.enabled }}
+          securityContext: {{- omit .Values.rtfs.containerSecurityContext "enabled" | toYaml | nindent 12 }}
+          {{- end }}
+          volumeMounts:
+            - name: data
+              mountPath: {{ .Values.rtfs.persistence.mountPath | quote }}
+            {{- if .Values.rtfs.customVolumeMounts }}
+{{ tpl (include "artifactory.rtfs.customVolumeMounts" .) . | indent 12 }}
+            {{- end }}
+          env:
+            - name: JF_SHARED_NODE_ID
+              valueFrom:
+                fieldRef:
+                  fieldPath: metadata.name
+            {{- if .Values.rtfs.javaOpts }}
+            - name: EXTRA_JAVA_OPTS
+              value: {{ .Values.rtfs.javaOpts }}
+            {{- end }}
+          {{- if or .Values.database.secrets.user .Values.database.user }}
+            - name: JF_SHARED_DATABASE_USERNAME
+              valueFrom:
+                secretKeyRef:
+            {{- if .Values.database.secrets.user }}
+                  name: {{ tpl .Values.database.secrets.user.name . }}
+                  key: {{ tpl .Values.database.secrets.user.key . }}
+            {{- else if .Values.database.user }}
+                  {{- if not .Values.artifactory.unifiedSecretInstallation }}
+                  name: {{ template "artifactory.fullname" . }}-database-creds
+                  {{- else }}
+                  name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+                  {{- end }}
+                  key: db-user
+            {{- end }}
+          {{- end }}
+          {{ if or .Values.database.secrets.password .Values.database.password .Values.postgresql.enabled }}
+            - name: JF_SHARED_DATABASE_PASSWORD
+              valueFrom:
+                secretKeyRef:
+            {{- if .Values.database.secrets.password }}
+                  name: {{ tpl .Values.database.secrets.password.name . }}
+                  key: {{ tpl .Values.database.secrets.password.key . }}
+            {{- else if .Values.database.password }}
+                  {{- if not .Values.artifactory.unifiedSecretInstallation }}
+                  name: {{ template "artifactory.fullname" . }}-database-creds
+                  {{- else }}
+                  name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+                  {{- end }}
+                  key: db-password
+            {{- else if .Values.postgresql.enabled }}
+                  name: {{ .Release.Name }}-postgresql
+                  key: postgresql-password
+            {{- end }}
+          {{- end }}
+          {{- if or .Values.database.secrets.url .Values.database.url }}
+            - name: JF_SHARED_DATABASE_URL
+              valueFrom:
+                secretKeyRef:
+            {{- if .Values.database.secrets.url }}
+                  name: {{ tpl .Values.database.secrets.url.name . }}
+                  key: {{ tpl .Values.database.secrets.url.key . }}
+            {{- else if .Values.database.url }}
+                  {{- if not .Values.artifactory.unifiedSecretInstallation }}
+                  name: {{ template "artifactory.fullname" . }}-database-creds
+                  {{- else }}
+                  name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+                  {{- end }}
+                  key: db-url
+            {{- end }}
+          {{- end }}
+            {{- if or .Values.artifactory.masterKey .Values.global.masterKey .Values.artifactory.masterKeySecretName .Values.global.masterKeySecretName }}
+            - name: JF_SHARED_SECURITY_MASTERKEY
+              valueFrom:
+                secretKeyRef:
+                {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.masterKeySecretName .Values.global.masterKeySecretName }}
+                  name: {{ include "artifactory.masterKeySecretName" . }}
+                {{- else }}
+                  name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+                {{- end }}
+                  key: master-key
+            {{- end }}
+            {{- if or .Values.artifactory.joinKey .Values.global.joinKey .Values.artifactory.joinKeySecretName .Values.global.joinKeySecretName }}
+            - name: JF_SHARED_SECURITY_JOINKEY
+              valueFrom:
+                secretKeyRef:
+                {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.joinKeySecretName .Values.global.joinKeySecretName }}
+                  name: {{ include "artifactory.joinKeySecretName" . }}
+                {{- else }}
+                  name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+                {{- end }}
+                  key: join-key
+            {{- end }}
+{{- with .Values.rtfs.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 12 }}
+{{- end }}
+          resources: {{- toYaml .Values.rtfs.resources | nindent 12 }}
+          {{- if .Values.rtfs.startupProbe.enabled }}
+          startupProbe:
+{{ tpl .Values.rtfs.startupProbe.config . | indent 12 }}
+          {{- end }}
+          {{- if .Values.rtfs.readinessProbe.enabled }}
+          readinessProbe:
+{{ tpl .Values.rtfs.readinessProbe.config . | indent 12 }}
+          {{- end }}
+          {{- if .Values.rtfs.livenessProbe.enabled }}
+          livenessProbe:
+{{ tpl .Values.rtfs.livenessProbe.config . | indent 12 }}
+          {{- end }}
+          {{- with .Values.rtfs.lifecycle }}
+          lifecycle:
+{{ toYaml . | indent 12 }}
+          {{- end }}
+        - name: router
+          image: {{ include "artifactory.getImageInfoByValue" (list . "router") }}
+          imagePullPolicy: {{ .Values.router.image.imagePullPolicy }}
+          resources: {{- toYaml .Values.router.resources | nindent 12 }}
+          {{- if .Values.rtfs.containerSecurityContext.enabled }}
+          securityContext: {{- omit .Values.rtfs.containerSecurityContext "enabled" | toYaml | nindent 12 }}
+          {{- end }}
+          command:
+            - '/bin/bash'
+            - '-c'
+            - >
+              exec /opt/jfrog/router/app/bin/entrypoint-router.sh
+          env:
+            - name: JF_ROUTER_TOPOLOGY_LOCAL_REQUIREDSERVICETYPES
+              value: "jfrtfs"
+            - name: JF_SHARED_JFROGURL
+              value: {{ tpl (include "rtfs.jfrogUrl" .) . }}
+            {{- if or .Values.artifactory.masterKey .Values.global.masterKey .Values.artifactory.masterKeySecretName .Values.global.masterKeySecretName }}
+            - name: JF_SHARED_SECURITY_MASTERKEY
+              valueFrom:
+                secretKeyRef:
+                {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.masterKeySecretName .Values.global.masterKeySecretName }}
+                  name: {{ include "artifactory.masterKeySecretName" . }}
+                {{- else }}
+                  name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+                {{- end }}
+                  key: master-key
+            {{- end }}
+            {{- if or .Values.artifactory.joinKey .Values.global.joinKey .Values.artifactory.joinKeySecretName .Values.global.joinKeySecretName }}
+            - name: JF_SHARED_SECURITY_JOINKEY
+              valueFrom:
+                secretKeyRef:
+                {{- if or (not .Values.artifactory.unifiedSecretInstallation) .Values.artifactory.joinKeySecretName .Values.global.joinKeySecretName }}
+                  name: {{ include "artifactory.joinKeySecretName" . }}
+                {{- else }}
+                  name: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+                {{- end }}
+                  key: join-key
+            {{- end }}
+{{- with .Values.router.extraEnvironmentVariables }}
+{{ tpl (toYaml .) $ | indent 12 }}
+{{- end }}
+          ports:
+            - name: http-router
+              containerPort: {{ .Values.router.internalPort }}
+          volumeMounts:
+            - name: data
+              mountPath: {{ .Values.router.persistence.mountPath | quote }}
+            {{- if .Values.router.extraVolumeMounts }}
+            {{- toYaml .Values.router.extraVolumeMounts | nindent 12 }}
+            {{- end }}
+            {{- if .Values.router.startupProbe.enabled }}
+          startupProbe:
+{{ tpl .Values.router.startupProbe.config . | indent 12 }}
+            {{- end }}
+            {{- if .Values.router.readinessProbe.enabled }}
+          readinessProbe: 
+{{ tpl .Values.router.readinessProbe.config . | indent 12 }}
+            {{- end }}
+            {{- if .Values.router.livenessProbe.enabled }}
+          livenessProbe: 
+{{ tpl .Values.router.livenessProbe.config . | indent 12 }}
+            {{- end }}
+            {{- with .Values.router.lifecycle }}
+          lifecycle:
+{{ toYaml . | indent 12 }}
+            {{- end }}
+        {{- if .Values.rtfs.customSidecarContainers }}
+{{ tpl (include "artifactory.rtfs.customSidecarContainers" .)  . | indent 8 }}
+        {{- end }}
+      volumes:
+        # system yaml
+        {{- if .Values.systemYamlOverride.existingSecret }}
+        - name: systemyaml
+          secret:
+            secretName: {{ .Values.systemYamlOverride.existingSecret }}
+        {{- end }}
+
+        #########  unifiedSecretInstallation ###########
+      {{- if and .Values.artifactory.unifiedSecretInstallation (eq (include "artifactory.checkDuplicateUnifiedCustomVolume" .) "false" ) }}
+        - name: {{ include "artifactory.unifiedCustomSecretVolumeName" . }}
+          secret:
+            secretName: "{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret"
+      {{- else if not .Values.artifactory.unifiedSecretInstallation }}
+        {{- if not .Values.systemYamlOverride.existingSecret }}
+        - name: systemyaml
+          secret:
+            secretName: {{ printf "%s-%s" (include "artifactory.fullname" .) "systemyaml" }}
+        {{- end }}
+      {{- end }}
+
+        {{- if .Values.rtfs.customVolumes }}
+{{ tpl (include "artifactory.rtfs.customVolumes" .)  . | indent 8 }}
+        {{- end }}
+        - name: data
+          emptyDir: {}
+        {{- if and (.Values.rtfs.persistence.federationProperties) (not .Values.rtfs.persistence.customFederationPropertiesConfig) }}
+        - name: federationproperties
+          configMap:
+            name: {{ include "rtfs.fullname" . }}-properties
+        {{- end }}
+        {{- if .Values.rtfs.persistence.customFederationPropertiesConfig }}
+        - name: federationproperties
+          configMap:
+            name: {{ .Values.rtfs.persistence.customFederationPropertiesConfig }}
+        {{- end }}
+        {{- if .Values.rtfs.extraVolumes }}
+        {{- toYaml .Values.rtfs.extraVolumes | nindent 8 }}
+        {{- end }}
+      {{- with .Values.rtfs.nodeSelector }}
+      nodeSelector:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.rtfs.affinity }}
+      affinity:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.rtfs.tolerations }}
+      tolerations:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+{{- end }}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/rtfs-hpa.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/rtfs-hpa.yaml
new file mode 100644
index 0000000000..fd8b0bcc84
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/rtfs-hpa.yaml
@@ -0,0 +1,32 @@
+{{- if .Values.rtfs.autoscaling.enabled }}
+  {{- if semverCompare ">=v1.23.0-0" .Capabilities.KubeVersion.Version }}
+apiVersion: autoscaling/v2
+  {{- else }}
+apiVersion: autoscaling/v2beta2
+  {{- end }}
+kind: HorizontalPodAutoscaler
+metadata:
+  labels:
+    app: {{ template "artifactory.fullname" . }}
+    chart: {{ template "artifactory.chart" . }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+  name: {{ template "rtfs.fullname" . }}
+spec:
+  scaleTargetRef:
+    apiVersion: apps/v1
+    kind: Deployment
+    name: {{ template "rtfs.fullname" . }}
+  minReplicas: {{ .Values.rtfs.autoscaling.minReplicas }}
+  maxReplicas: {{ .Values.rtfs.autoscaling.maxReplicas }}
+  metrics:
+    - type: Resource
+      resource:
+        name: cpu
+        target:
+          type: Utilization
+          averageUtilization: {{ .Values.rtfs.autoscaling.targetCPUUtilizationPercentage }}
+      {{- if .Values.rtfs.autoscaling.metrics }}
+{{ tpl (include "rtfs.metrics" .) . | indent 4 }}
+      {{- end }}
+{{- end }}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/rtfs-properties-configmap.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/rtfs-properties-configmap.yaml
new file mode 100644
index 0000000000..c75bec9f2b
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/rtfs-properties-configmap.yaml
@@ -0,0 +1,17 @@
+{{- if and (.Values.rtfs.persistence.federationProperties) (not .Values.rtfs.persistence.customFederationPropertiesConfig) .Values.rtfs.enabled }}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ include "rtfs.fullname" . }}-properties
+  namespace: {{ .Release.Namespace | quote }}
+  labels:
+    app: {{ template "artifactory.name" . }}
+    chart: {{ template "artifactory.chart" . }}
+    component: {{ .Values.rtfs.name }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+data:
+  {{- range $key, $value := .Values.rtfs.persistence.federationProperties }}
+    {{ $key }}: {{ tpl ($value | default "") . | quote }}
+    {{- end }}
+  {{- end }}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/rtfs-service.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/rtfs-service.yaml
new file mode 100644
index 0000000000..3d16053a63
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/templates/rtfs-service.yaml
@@ -0,0 +1,42 @@
+{{- if .Values.rtfs.enabled -}}
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ include "rtfs.fullname" . }}
+  labels:
+    app: {{ template "artifactory.name" . }}
+    chart: {{ template "artifactory.chart" . }}
+    component: {{ .Values.rtfs.name }}
+    heritage: {{ .Release.Service }}
+    release: {{ .Release.Name }}
+{{- if .Values.rtfs.service.labels }}
+{{ toYaml .Values.rtfs.service.labels | indent 4 }}
+{{- end }}
+{{- with .Values.rtfs.service.annotations }}
+  annotations:
+{{ toYaml . | indent 4 }}
+{{- end }}
+spec:
+  type: {{ .Values.rtfs.service.type }}
+  {{- if eq .Values.rtfs.service.type "LoadBalancer" }}
+  {{- if .Values.rtfs.service.loadBalancerIP }}
+  loadBalancerIP: {{ .Values.rtfs.service.loadBalancerIP }}
+  {{- end }}
+  {{- if .Values.rtfs.service.loadBalancerSourceRanges }}
+  loadBalancerSourceRanges:
+  {{- toYaml .Values.rtfs.service.loadBalancerSourceRanges | nindent 4 }}
+  {{- end }}
+  {{- end }}
+  {{- if (or (eq .Values.rtfs.service.type "LoadBalancer") (eq .Values.rtfs.service.type "NodePort")) }}
+  externalTrafficPolicy: {{ .Values.rtfs.service.externalTrafficPolicy | quote }}
+  {{- end }}
+  ports:
+    - port: {{ .Values.router.externalPort }}
+      targetPort: {{ .Values.router.internalPort }}
+      protocol: TCP
+      name: http-router
+  selector:
+    app: {{ template "artifactory.name" . }}
+    release: {{ .Release.Name }}
+    component: {{ .Values.rtfs.name }}
+{{- end }}
\ No newline at end of file
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/values.yaml b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/values.yaml
new file mode 100644
index 0000000000..b062296bb4
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/charts/artifactory/values.yaml
@@ -0,0 +1,2049 @@
+## Default values for artifactory.
+## This is a YAML-formatted file.
+## Beware when changing values here. You should know what you are doing!
+## Access the values with {{ .Values.key.subkey }}
+global:
+  # imageRegistry: releases-docker.jfrog.io
+  # imagePullSecrets:
+  #   - myRegistryKeySecretName
+  ## Chart.AppVersion can be overidden using global.versions.artifactory or .Values.artifactory.image.tag
+  ## Note: Order of preference is 1) global.versions 2) .Values.artifactory.image.tag 3) Chart.AppVersion
+  ## This applies also for nginx images (.Values.nginx.image.tag)
+  versions: {}
+  # artifactory:
+  # initContainers:
+  # rtfs:
+  # joinKey:
+  # masterKey:
+  # joinKeySecretName:
+  # masterKeySecretName:
+
+  ## Note: tags customInitContainersBegin,customInitContainers,customVolumes,customVolumeMounts,customSidecarContainers can be used both from global and application level simultaneously
+  # customInitContainersBegin: |
+
+  # customInitContainers: |
+
+  # customVolumes: |
+
+  # customVolumeMounts: |
+
+  # customSidecarContainers: |
+
+  ## certificates added to this secret will be copied to $JFROG_HOME/artifactory/var/etc/security/keys/trusted directory
+  customCertificates:
+    enabled: false
+    # certificateSecretName:
+  ## Applies to artifactory and nginx pods
+  nodeSelector: {}
+## String to partially override artifactory.fullname template (will maintain the release name)
+# nameOverride:
+
+## String to fully override artifactory.fullname template
+# fullnameOverride:
+
+## Init containers
+initContainers:
+  image:
+    registry: releases-docker.jfrog.io
+    repository: ubi9/ubi-minimal
+    tag: 9.5.1733767867
+    pullPolicy: IfNotPresent
+  resources:
+    requests:
+      memory: "50Mi"
+      cpu: "10m"
+    limits:
+      memory: "1Gi"
+      cpu: "1"
+installer:
+  type:
+  platform:
+## The installerInfo is intentionally commented out and the previous content has been moved under `files/installer-info.json`
+## To override the content in `files/installer-info.json`, Uncomment the `installerInfo` and  add relevant data
+# installerInfo: '{}'
+
+## For supporting pulling from private registries
+# imagePullSecrets:
+#   - myRegistryKeySecretName
+
+## Artifactory systemYaml override
+## This is for advanced usecases where users wants to provide their own systemYaml for configuring artifactory
+## Refer: https://www.jfrog.com/confluence/display/JFROG/Artifactory+System+YAML
+## Note: This will override existing (default) .Values.artifactory.systemYaml in values.yaml
+## Alternatively, systemYaml can be overidden via customInitContainers using external sources like vaults, external repositories etc. Please refer customInitContainer section below for an example.
+## Note: Order of preference is 1) customInitContainers 2) systemYamlOverride existingSecret 3) default systemYaml in values.yaml
+systemYamlOverride:
+  ## You can use a pre-existing secret by specifying existingSecret
+  existingSecret:
+  ## The dataKey should be the name of the secret data key created.
+  dataKey:
+## Role Based Access Control
+## Ref: https://kubernetes.io/docs/admin/authorization/rbac/
+rbac:
+  create: false
+  role:
+    ## Rules to create. It follows the role specification
+    rules:
+      - apiGroups:
+          - ''
+        resources:
+          - services
+          - endpoints
+          - pods
+        verbs:
+          - get
+          - watch
+          - list
+## Service Account
+## Ref: https://kubernetes.io/docs/admin/service-accounts-admin/
+serviceAccount:
+  create: false
+  ## The name of the ServiceAccount to use.
+  ## If not set and create is true, a name is generated using the fullname template
+  name:
+  ## Service Account annotations
+  annotations: {}
+  ## Explicitly mounts the API credentials for the Service Account
+  automountServiceAccountToken: false
+ingress:
+  enabled: false
+  defaultBackend:
+    enabled: true
+  ## Used to create an Ingress record.
+  hosts: []
+  ## Useful in controllers where ImplementationSpecific is considered as a Regex Match and, not a Prefix match
+  pathType: ImplementationSpecific
+  routerPath: /
+  artifactoryPath: /artifactory/
+  rtfsPath: /artifactory/service/rtfs/
+  className: ""
+  annotations: {}
+  # nginx.ingress.kubernetes.io/configuration-snippet: |
+  #   proxy_pass_header   Server;
+  #   proxy_set_header    X-JFrog-Override-Base-Url https://<artifactory-domain>;
+  # kubernetes.io/tls-acme: "true"
+  # nginx.ingress.kubernetes.io/proxy-body-size: "0"
+  labels: {}
+  # traffic-type: external
+  # traffic-type: internal
+  tls: []
+  ## Secrets must be manually created in the namespace.
+  # - secretName: chart-example-tls
+  #   hosts:
+  #     - artifactory.domain.example
+
+  ## Additional ingress rules
+  additionalRules: []
+  ## This is an experimental feature, enabling this feature will route all traffic through the Router.
+  disableRouterBypass: false
+## Allows to add custom ingress
+customIngress: ""
+## There is a need to separate HTTP1.1 traffic from gRPC (HTTP2) to benefit
+## 1. Use the Nginx keepalive for HTTP1.1
+## 2. Keep gRPC over the HTTP2 connections only
+ingressGrpc:
+  enabled: false
+  name: grpc
+  defaultBackend:
+    enabled: true
+  ## Used to create an Ingress record.
+  hosts: []
+  ## Useful in controllers where ImplementationSpecific is considered as a Regex Match and, not a Prefix match
+  pathType: ImplementationSpecific
+  grpcPath: /com.jfrog
+  className: ""
+  ## For supporting GRPC protocol traffic sent to the backend it is necessary to change the backend protocol
+  ## Example: nginx.ingress.kubernetes.io/backend-protocol: GRPCS
+  annotations: {}
+  # nginx.ingress.kubernetes.io/configuration-snippet: |
+  #   proxy_pass_header   Server;
+  #   proxy_set_header    X-JFrog-Override-Base-Url https://<artifactory-domain>;
+  # kubernetes.io/tls-acme: "true"
+  # nginx.ingress.kubernetes.io/proxy-body-size: "0"
+  labels: {}
+  # traffic-type: external
+  # traffic-type: internal
+  tls: []
+  ## Secrets must be manually created in the namespace.
+  # - secretName: chart-example-tls
+  #   hosts:
+  #     - artifactory.domain.example
+
+  ## Additional ingress rules
+  additionalRules: []
+networkpolicy: []
+## Allows all ingress and egress
+# - name: artifactory
+#   podSelector:
+#     matchLabels:
+#       app: artifactory
+#   egress:
+#   - {}
+#   ingress:
+#   - {}
+## Uncomment to allow only artifactory pods to communicate with postgresql (if postgresql.enabled is true)
+# - name: postgresql
+#   podSelector:
+#     matchLabels:
+#       app: postgresql
+#   ingress:
+#   - from:
+#     - podSelector:
+#         matchLabels:
+#           app: artifactory
+
+## Apply horizontal pod auto scaling on artifactory pods
+## Ref: https://kubernetes.io/docs/tasks/run-application/horizontal-pod-autoscale/
+autoscaling:
+  enabled: false
+  minReplicas: 1
+  maxReplicas: 3
+  targetCPUUtilizationPercentage: 70
+## You can use a pre-existing secret with keys license_token and iam_role by specifying licenseConfigSecretName
+## Example : Create a generic secret using `kubectl create secret generic <secret-name> --from-literal=license_token=${TOKEN} --from-literal=iam_role=${ROLE_ARN}`
+aws:
+  license:
+    enabled: false
+  licenseConfigSecretName:
+  region: us-east-1
+## Container Security Context
+## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container
+## @param containerSecurityContext.enabled Enabled containers' Security Context
+## @param containerSecurityContext.runAsNonRoot Set container's Security Context runAsNonRoot
+## @param containerSecurityContext.privileged Set container's Security Context privileged
+## @param containerSecurityContext.allowPrivilegeEscalation Set container's Security Context allowPrivilegeEscalation
+## @param containerSecurityContext.capabilities.drop List of capabilities to be dropped
+## @param containerSecurityContext.seccompProfile.type Set container's Security Context seccomp profile
+##
+containerSecurityContext:
+  enabled: true
+  runAsNonRoot: true
+  privileged: false
+  allowPrivilegeEscalation: false
+  seccompProfile:
+    type: RuntimeDefault
+  capabilities:
+    drop:
+      - ALL
+## The following router settings are to configure only when splitServicesToContainers set to true
+router:
+  name: router
+  image:
+    registry: releases-docker.jfrog.io
+    repository: jfrog/router
+    tag: 7.149.1
+    pullPolicy: IfNotPresent
+  serviceRegistry:
+    ## Service registry (Access) TLS verification skipped if enabled
+    insecure: false
+  internalPort: 8082
+  externalPort: 8082
+  tlsEnabled: false
+  ## Extra environment variables that can be used to tune router to your needs.
+  ## Uncomment and set value as needed
+  extraEnvironmentVariables:
+  # - name: MY_ENV_VAR
+  #   value: ""
+  resources: {}
+  #  requests:
+  #    memory: "100Mi"
+  #    cpu: "100m"
+  #  limits:
+  #    memory: "1Gi"
+  #    cpu: "1"
+
+  ## Add lifecycle hooks for router container
+  lifecycle:
+    ## From Artifactory versions 7.52.x, Wait for Artifactory to complete any open uploads or downloads before terminating
+    preStop:
+      exec:
+        command: ["sh", "-c", "while [[ $(curl --fail --silent --connect-timeout 2 http://localhost:8081/artifactory/api/v1/system/liveness) =~ OK ]]; do echo Artifactory is still alive; sleep 2; done"]
+        # postStart:
+        #   exec:
+        #     command: ["/bin/sh", "-c", "echo Hello from the postStart handler"]
+  ## Add custom volumesMounts
+  customVolumeMounts: |
+    # - name: custom-script
+    #   mountPath: /scripts/script.sh
+    #   subPath: script.sh
+  livenessProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl -s -k --fail --max-time {{ .Values.probes.timeoutSeconds }} {{ include "artifactory.scheme" . }}://localhost:{{ .Values.router.internalPort }}/router/api/v1/system/liveness
+      initialDelaySeconds: {{ if semverCompare "<v1.20.0-0" .Capabilities.KubeVersion.Version }}90{{ else }}0{{ end }}
+      periodSeconds: 10
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      failureThreshold: 5
+      successThreshold: 1
+  readinessProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl -s -k --fail --max-time {{ .Values.probes.timeoutSeconds }} {{ include "artifactory.scheme" . }}://localhost:{{ .Values.router.internalPort }}/router/api/v1/system/readiness
+      initialDelaySeconds: {{ if semverCompare "<v1.20.0-0" .Capabilities.KubeVersion.Version }}60{{ else }}0{{ end }}
+      periodSeconds: 10
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      failureThreshold: 5
+      successThreshold: 1
+  startupProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl -s -k --fail --max-time {{ .Values.probes.timeoutSeconds }} {{ include "artifactory.scheme" . }}://localhost:{{ .Values.router.internalPort }}/router/api/v1/system/readiness
+      initialDelaySeconds: 10
+      failureThreshold: 30
+      periodSeconds: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+  persistence:
+    mountPath: "/var/opt/jfrog/router"
+## Artifactory
+artifactory:
+  name: artifactory
+  ## refer - https://www.jfrog.com/confluence/display/JFROG/Access+Federation#AccessFederation-EstablishingtheCircleofTrust
+  ## root certificates added will be copied to $JFROG_HOME/artifactory/var/etc/access/keys/trusted folder.
+  circleOfTrustCertificatesSecret:
+  ## unifiedSecretInstallation flag enables single unified secret holding all the artifactory internal(chart) secrets, It won't be affecting external secrets.
+  ## Note: unifiedSecretInstallation flag is enabled by true by default from chart version 107.79.x, Users can switch to false to continue with the old way of secret creation.
+  unifiedSecretInstallation: true
+  ## unifiedSecretPrependReleaseName Set this flag to false if unifiedSecret should not be created with <release-name> prepended.
+  unifiedSecretPrependReleaseName: true
+  ## For HA installation, set this value > 1. This is only supported in Artifactory 7.25.x (appVersions) and above.
+  replicaCount: 1
+  # minAvailable: 1
+
+  ## Note that by default we use appVersion to get image tag/version
+  image:
+    registry: releases-docker.jfrog.io
+    repository: jfrog/artifactory-pro
+    # tag:
+    pullPolicy: IfNotPresent
+  labels: {}
+  updateStrategy:
+    type: RollingUpdate
+  ## ref: https://kubernetes.io/docs/tasks/administer-cluster/configure-multiple-schedulers/
+  schedulerName:
+  ## Create a priority class for the Artifactory pod or use an existing one
+  ## NOTE - Maximum allowed value of a user defined priority is 1000000000
+  priorityClass:
+    create: false
+    value: 1000000000
+    ## Override default name
+    # name:
+    ## Use an existing priority class
+    # existingPriorityClass:
+  ## Spread Artifactory pods evenly across your nodes or some other topology
+  topologySpreadConstraints: []
+  # - maxSkew: 1
+  #   topologyKey: kubernetes.io/hostname
+  #   whenUnsatisfiable: DoNotSchedule
+  #   labelSelector:
+  #     matchLabels:
+  #       app: '{{ template "artifactory.name" . }}'
+  #       role: '{{ template "artifactory.name" . }}'
+  #       release: "{{ .Release.Name }}"
+
+  ## Delete the db.properties file in ARTIFACTORY_HOME/etc/db.properties
+  deleteDBPropertiesOnStartup: true
+  ## certificates added to this secret will be copied to $JFROG_HOME/artifactory/var/etc/security/keys/trusted directory
+  customCertificates:
+    enabled: false
+    # certificateSecretName:
+  database:
+    maxOpenConnections: 80
+  tomcat:
+    maintenanceConnector:
+      port: 8091
+    connector:
+      maxThreads: 200
+      sendReasonPhrase: false
+      extraConfig: 'acceptCount="400"'
+  ## Support for metrics is only available for Artifactory 7.7.x (appVersions) and above.
+  ## To enable set `.Values.artifactory.metrics.enabled` to `true`
+  ## Note : Depricated openMetrics as part of 7.87.x and renamed to `metrics`
+  ## Refer - https://www.jfrog.com/confluence/display/JFROG/Open+Metrics
+  metrics:
+    enabled: false
+    ## Settings for pushing metrics to Insight - enable filebeat to true
+    filebeat:
+      enabled: false
+      log:
+        enabled: false
+        ## Log level for filebeat. Possible values: debug, info, warning, or error.
+        level: "info"
+      ## Elasticsearch details for filebeat to connect
+      elasticsearch:
+        url: "Elasticsearch url where JFrog Insight is installed For example, http://<ip_address>:8082"
+        username: ""
+        password: ""
+  ## Support for Cold Artifact Storage
+  ## set 'coldStorage.enabled' to 'true' only for Artifactory instance that you are designating as the Cold instance
+  ## Refer - https://jfrog.com/help/r/jfrog-platform-administration-documentation/setting-up-cold-artifact-storage
+  coldStorage:
+    enabled: false
+  ## Support for workers
+  ## set 'worker.enabled' to 'true' to enable artifactory addon that executes workers on artifactory events
+  worker:
+    enabled: false
+  ## Set servicePrependReleaseName to true  to prepend service release name in statefulset
+  servicePrependReleaseName: false
+  ## This directory is intended for use with NFS eventual configuration for HA
+  haDataDir:
+    enabled: false
+    path:
+  haBackupDir:
+    enabled: false
+    path:
+  ## Files to copy to ARTIFACTORY_HOME/ on each Artifactory startup
+  ## Note : From 107.46.x chart versions, copyOnEveryStartup is not needed for binarystore.xml, it is always copied via initContainers
+  copyOnEveryStartup:
+  ## Absolute path
+  # - source: /artifactory_bootstrap/artifactory.lic
+  ## Relative to ARTIFACTORY_HOME/
+  #   target: etc/artifactory/
+
+  ## Sidecar containers for tailing Artifactory logs
+  loggers: []
+  # - access-audit.log
+  # - access-request.log
+  # - access-security-audit.log
+  # - access-service.log
+  # - artifactory-access.log
+  # - artifactory-event.log
+  # - artifactory-import-export.log
+  # - artifactory-request.log
+  # - artifactory-service.log
+  # - frontend-request.log
+  # - frontend-service.log
+  # - metadata-request.log
+  # - metadata-service.log
+  # - router-request.log
+  # - router-service.log
+  # - router-traefik.log
+  # - derby.log
+
+  ## Loggers containers resources
+  loggersResources: {}
+  # requests:
+  #   memory: "10Mi"
+  #   cpu: "10m"
+  # limits:
+  #   memory: "100Mi"
+  #   cpu: "50m"
+
+  ## Sidecar containers for tailing Tomcat (catalina) logs
+  catalinaLoggers: []
+  # - tomcat-catalina.log
+  # - tomcat-localhost.log
+
+  ## Tomcat (catalina) loggers resources
+  catalinaLoggersResources: {}
+  # requests:
+  #   memory: "10Mi"
+  #   cpu: "10m"
+  # limits:
+  #   memory: "100Mi"
+  #   cpu: "50m"
+
+  ## Migration support from 6.x to 7.x
+  migration:
+    enabled: false
+    timeoutSeconds: 3600
+    ## Extra pre-start command in migration Init Container to install JDBC driver for MySql/MariaDb/Oracle
+    # preStartCommand: "mkdir -p /opt/jfrog/artifactory/var/bootstrap/artifactory/tomcat/lib; cd /opt/jfrog/artifactory/var/bootstrap/artifactory/tomcat/lib && curl -o /opt/jfrog/artifactory/var/bootstrap/artifactory/tomcat/lib/mysql-connector-java-5.1.41.jar https://repo1.maven.org/maven2/mysql/mysql-connector-java/5.1.41/mysql-connector-java-5.1.41.jar"
+  ## Add custom init containers execution before predefined init containers
+  customInitContainersBegin: |
+    # - name: "custom-setup"
+    #   image: {{ include "artifactory.getImageInfoByValue" (list . "initContainers") }}
+    #   imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+    #   securityContext:
+    #     runAsNonRoot: true
+    #     allowPrivilegeEscalation: false
+    #     capabilities:
+    #       drop:
+    #         - NET_RAW
+    #   command:
+    #     - 'sh'
+    #     - '-c'
+    #     - 'touch {{ .Values.artifactory.persistence.mountPath }}/example-custom-setup'
+    #   volumeMounts:
+    #     - mountPath: "{{ .Values.artifactory.persistence.mountPath }}"
+    #       name: artifactory-volume
+  ## Add custom init containers execution after predefined init containers
+  customInitContainers: |
+    # - name: "custom-systemyaml-setup"
+    #   image: {{ include "artifactory.getImageInfoByValue" (list . "initContainers") }}
+    #   imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+    #   securityContext:
+    #     runAsNonRoot: true
+    #     allowPrivilegeEscalation: false
+    #     capabilities:
+    #       drop:
+    #         - NET_RAW
+    #   command:
+    #     - 'sh'
+    #     - '-c'
+    #     - 'curl -o {{ .Values.artifactory.persistence.mountPath }}/etc/system.yaml https://<repo-url>/systemyaml'
+    #   volumeMounts:
+    #     - mountPath: "{{ .Values.artifactory.persistence.mountPath }}"
+    #       name: artifactory-volume
+  ## Add custom sidecar containers
+  ## - The provided example uses a custom volume (customVolumes)
+  customSidecarContainers: |
+    # - name: "sidecar-list-etc"
+    #   image: {{ include "artifactory.getImageInfoByValue" (list . "initContainers") }}
+    #   imagePullPolicy: {{ .Values.initContainers.image.pullPolicy }}
+    #   securityContext:
+    #     runAsNonRoot: true
+    #     allowPrivilegeEscalation: false
+    #     capabilities:
+    #       drop:
+    #         - NET_RAW
+    #   command:
+    #     - 'sh'
+    #     - '-c'
+    #     - 'sh /scripts/script.sh'
+    #   volumeMounts:
+    #     - mountPath: "{{ .Values.artifactory.persistence.mountPath }}"
+    #       name: artifactory-volume
+    #     - mountPath: "/scripts/script.sh"
+    #       name: custom-script
+    #       subPath: script.sh
+    #   resources:
+    #     requests:
+    #       memory: "32Mi"
+    #       cpu: "50m"
+    #     limits:
+    #       memory: "128Mi"
+    #       cpu: "100m"
+  ## Add custom volumes
+  ## If .Values.artifactory.unifiedSecretInstallation is true then secret name should be '{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret'
+  customVolumes: |
+    # - name: custom-script
+    #   configMap:
+    #     name: custom-script
+  ## Add custom volumesMounts
+  customVolumeMounts: |
+    # - name: custom-script
+    #   mountPath: "/scripts/script.sh"
+    #   subPath: script.sh
+    # - name: posthook-start
+    #   mountPath: "/scripts/posthoook-start.sh"
+    #   subPath: posthoook-start.sh
+    # - name: prehook-start
+    #   mountPath: "/scripts/prehook-start.sh"
+    #   subPath: prehook-start.sh
+  ## Add custom persistent volume mounts - Available to the entire namespace
+  customPersistentVolumeClaim: {}
+  # name:
+  # mountPath:
+  # accessModes:
+  #   - "-"
+  # size:
+  # storageClassName:
+
+  ## Artifactory license.
+  license:
+    ## licenseKey is the license key in plain text. Use either this or the license.secret setting
+    licenseKey:
+    ## If artifactory.license.secret is passed, it will be mounted as
+    ## ARTIFACTORY_HOME/etc/artifactory.lic and loaded at run time.
+    secret:
+    ## The dataKey should be the name of the secret data key created.
+    dataKey:
+  ## Create configMap with artifactory.config.import.xml and security.import.xml and pass name of configMap in following parameter
+  configMapName:
+  ## Add any list of configmaps to Artifactory
+  configMaps: |
+    # posthook-start.sh: |-
+    #   echo "This is a post start script"
+    # posthook-end.sh: |-
+    #   echo "This is a post end script"
+  ## List of secrets for Artifactory user plugins.
+  ## One Secret per plugin's files.
+  userPluginSecrets:
+  # - archive-old-artifacts
+  # - build-cleanup
+  # - webhook
+  # - '{{ template "my-chart.fullname" . }}'
+
+  ## Artifactory requires a unique master key.
+  ## You can generate one with the command: "openssl rand -hex 32"
+  ## An initial one is auto generated by Artifactory on first startup.
+  # masterKey: FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF
+  ## Alternatively, you can use a pre-existing secret with a key called master-key by specifying masterKeySecretName
+  # masterKeySecretName:
+
+  ## Join Key to connect other services to Artifactory
+  ## IMPORTANT: Setting this value overrides the existing joinKey
+  ## IMPORTANT: You should NOT use the example joinKey for a production deployment!
+  # joinKey: EEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEE
+  ## Alternatively, you can use a pre-existing secret with a key called join-key by specifying joinKeySecretName
+  # joinKeySecretName:
+
+  ## Registration Token for JFConnect
+  # jfConnectToken:
+  ## Alternatively, you can use a pre-existing secret with a key called jfconnect-token by specifying jfConnectTokenSecretName
+  # jfConnectTokenSecretName:
+
+  ## Add custom secrets - secret per file
+  ## If .Values.artifactory.unifiedSecretInstallation is true then secret name should be '{{ template "artifactory.unifiedSecretPrependReleaseName" . }}-unified-secret' common to all secrets
+  customSecrets:
+  #  - name: custom-secret
+  #    key: custom-secret.yaml
+  #    data: >
+  #      custom_secret_config:
+  #        parameter1: value1
+  #        parameter2: value2
+  #  - name: custom-secret2
+  #    key: custom-secret2.config
+  #    data: |
+  #      here the custom secret 2 config
+
+  ## If false, all service console logs will not redirect to a common console.log
+  consoleLog: false
+  ## admin allows to set the password for the default admin user.
+  ## See: https://www.jfrog.com/confluence/display/JFROG/Users+and+Groups#UsersandGroups-RecreatingtheDefaultAdminUserrecreate
+  admin:
+    ip: "127.0.0.1"
+    username: "admin"
+    password:
+    secret:
+    dataKey:
+  ## Extra pre-start command to install JDBC driver for MySql/MariaDb/Oracle
+  # preStartCommand: "mkdir -p /opt/jfrog/artifactory/var/bootstrap/artifactory/tomcat/lib; cd /opt/jfrog/artifactory/var/bootstrap/artifactory/tomcat/lib && curl -o /opt/jfrog/artifactory/var/bootstrap/artifactory/tomcat/lib/mysql-connector-java-5.1.41.jar https://repo1.maven.org/maven2/mysql/mysql-connector-java/5.1.41/mysql-connector-java-5.1.41.jar"
+
+  ## Add lifecycle hooks for artifactory container
+  lifecycle: {}
+  # postStart:
+  #   exec:
+  #     command: ["/bin/sh", "-c", "echo Hello from the postStart handler"]
+  # preStop:
+  #   exec:
+  #     command: ["/bin/sh","-c","echo Hello from the preStop handler"]
+
+  ## Extra environment variables that can be used to tune Artifactory to your needs.
+  ## Uncomment and set value as needed
+  extraEnvironmentVariables:
+  # - name: SERVER_XML_ARTIFACTORY_PORT
+  #   value: "8081"
+  # - name: SERVER_XML_ARTIFACTORY_MAX_THREADS
+  #   value: "200"
+  # - name: SERVER_XML_ACCESS_MAX_THREADS
+  #   value: "50"
+  # - name: SERVER_XML_ARTIFACTORY_EXTRA_CONFIG
+  #   value: ""
+  # - name: SERVER_XML_ACCESS_EXTRA_CONFIG
+  #   value: ""
+  # - name: SERVER_XML_EXTRA_CONNECTOR
+  #   value: ""
+  # - name: DB_POOL_MAX_ACTIVE
+  #   value: "100"
+  # - name: DB_POOL_MAX_IDLE
+  #   value: "10"
+  # - name: MY_SECRET_ENV_VAR
+  #   valueFrom:
+  #     secretKeyRef:
+  #       name: my-secret-name
+  #       key: my-secret-key
+
+  ## System YAML entries now reside under files/system.yaml.
+  ## You can provide the specific values that you want to add or override under 'artifactory.extraSystemYaml'.
+  ## For example:
+  ## extraSystemYaml:
+  ##   shared:
+  ##     node:
+  ##       id: my-instance
+  ## The entries provided under 'artifactory.extraSystemYaml' are merged with files/system.yaml to create the final system.yaml.
+  ## If you have already provided system.yaml under, 'artifactory.systemYaml', the values in that entry take precedence over files/system.yaml
+  ## You can modify specific entries with your own value under `artifactory.extraSystemYaml`, The values under extraSystemYaml overrides the values under 'artifactory.systemYaml' and files/system.yaml
+  extraSystemYaml: {}
+  ## systemYaml is intentionally commented and the previous content has been moved under files/system.yaml.
+  ## You have to add the all entries of the system.yaml file here, and it overrides the values in files/system.yaml.
+  # systemYaml:
+  annotations: {}
+  service:
+    name: artifactory
+    type: ClusterIP
+    ## @param service.ipFamilyPolicy Controller Service ipFamilyPolicy (optional, cloud specific)
+    ## This can be either SingleStack, PreferDualStack or RequireDualStack
+    ## ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/#services
+    ##
+    ipFamilyPolicy: ""
+    ## @param service.ipFamilies Controller Service ipFamilies (optional, cloud specific)
+    ## This can be either ["IPv4"], ["IPv6"], ["IPv4", "IPv6"] or ["IPv6", "IPv4"]
+    ## ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/#services
+    ##
+    ipFamilies: []
+    ## For supporting whitelist on the Artifactory service (useful if setting service.type=LoadBalancer)
+    ## Set this to a list of IP CIDR ranges
+    ## Example: loadBalancerSourceRanges: ['10.10.10.5/32', '10.11.10.5/32']
+    ## or pass from helm command line
+    ## Example: helm install ... --set nginx.service.loadBalancerSourceRanges='{10.10.10.5/32,10.11.10.5/32}'
+    loadBalancerSourceRanges: []
+    annotations: {}
+    ## If the type is NodePort you can set a fixed port
+    # nodePort: 32082
+  serviceGrpc:
+    name: grpc
+    type: ClusterIP
+    ## @param service.ipFamilyPolicy Controller Service ipFamilyPolicy (optional, cloud specific)
+    ## This can be either SingleStack, PreferDualStack or RequireDualStack
+    ## ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/#services
+    ##
+    ipFamilyPolicy: ""
+    ## @param service.ipFamilies Controller Service ipFamilies (optional, cloud specific)
+    ## This can be either ["IPv4"], ["IPv6"], ["IPv4", "IPv6"] or ["IPv6", "IPv4"]
+    ## ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/#services
+    ##
+    ipFamilies: []
+    ## For supporting whitelist on the Artifactory service (useful if setting service.type=LoadBalancer)
+    ## Set this to a list of IP CIDR ranges
+    ## Example: loadBalancerSourceRanges: ['10.10.10.5/32', '10.11.10.5/32']
+    ## or pass from helm command line
+    ## Example: helm install ... --set nginx.service.loadBalancerSourceRanges='{10.10.10.5/32,10.11.10.5/32}'
+    loadBalancerSourceRanges: []
+    annotations: {}
+    ## If the type is NodePort you can set a fixed port
+    # nodePort: 32082
+  statefulset:
+    annotations: {}
+  ## IMPORTANT: If overriding artifactory.internalPort:
+  ## DO NOT use port lower than 1024 as Artifactory runs as non-root and cannot bind to ports lower than 1024!
+  externalPort: 8082
+  internalPort: 8082
+  externalArtifactoryPort: 8081
+  internalArtifactoryPort: 8081
+  terminationGracePeriodSeconds: 30
+  ## Pod Security Context
+  ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/
+  ## @param artifactory.podSecurityContext.enabled Enable security context
+  ## @param artifactory.podSecurityContext.runAsNonRoot Set pod's Security Context runAsNonRoot
+  ## @param artifactory.podSecurityContext.runAsUser User ID for the pod
+  ## @param artifactory.podSecurityContext.runASGroup Group ID for the pod
+  ## @param artifactory.podSecurityContext.fsGroup Group ID for the pod
+  ##
+  podSecurityContext:
+    enabled: true
+    runAsNonRoot: true
+    runAsUser: 1030
+    runAsGroup: 1030
+    fsGroup: 1030
+    # fsGroupChangePolicy: "Always"
+    # seLinuxOptions: {}
+  livenessProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl -s -k --fail --max-time {{ .Values.probes.timeoutSeconds }} http://localhost:{{ .Values.artifactory.tomcat.maintenanceConnector.port }}/artifactory/api/v1/system/liveness
+      initialDelaySeconds: {{ if semverCompare "<v1.20.0-0" .Capabilities.KubeVersion.Version }}180{{ else }}0{{ end }}
+      periodSeconds: 10
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      failureThreshold: 5
+      successThreshold: 1
+  readinessProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl -s -k --fail --max-time {{ .Values.probes.timeoutSeconds }} http://localhost:{{ .Values.artifactory.tomcat.maintenanceConnector.port }}/artifactory/api/v1/system/readiness
+      initialDelaySeconds: {{ if semverCompare "<v1.20.0-0" .Capabilities.KubeVersion.Version }}90{{ else }}0{{ end }}
+      periodSeconds: 10
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      failureThreshold: 5
+      successThreshold: 1
+  startupProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl -s -k --fail --max-time {{ .Values.probes.timeoutSeconds }} http://localhost:{{ .Values.artifactory.tomcat.maintenanceConnector.port }}/artifactory/api/v1/system/readiness
+      initialDelaySeconds: 10
+      failureThreshold: 90
+      periodSeconds: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+  persistence:
+    mountPath: "/var/opt/jfrog/artifactory"
+    enabled: true
+    ## A manually managed Persistent Volume and Claim
+    ## Requires persistence.enabled: true
+    ## If defined, PVC must be created manually before volume will be bound
+    # existingClaim:
+
+    accessMode: ReadWriteOnce
+    ## Storage default size. Should be increased for production deployments.
+    size: 20Gi
+    ## Use a custom Secret to be mounted as your binarystore.xml
+    ## NOTE: This will ignore all settings below that make up binarystore.xml
+    customBinarystoreXmlSecret:
+    ## Redundancy required For HA deployments, with "cluster" persistence storage type
+    redundancy: 3
+    lenientLimit: 1
+    ## cache-fs binary provider configurations
+    ## Refer: https://jfrog.com/help/r/jfrog-installation-setup-documentation/cache-fs-template-configuration
+    maxCacheSize: 5000000000
+    cacheProviderDir: cache
+    ## maxFileSizeLimit:
+    ## skipDuringUpload:
+
+    ## Set the persistence storage type. This will apply the matching binarystore.xml to Artifactory config
+    ## Supported types are:
+    ## file-system (default)
+    ## cluster-file-system
+    ## nfs
+    ## google-storage
+    ## google-storage-v2
+    ## google-storage-v2-direct (Recommended for GCS - Google Cloud Storage)
+    ## cluster-google-storage-v2
+    ## aws-s3-v3
+    ## s3-storage-v3-direct (Recommended for AWS S3)
+    ## cluster-s3-storage-v3
+    ## s3-storage-v3-archive
+    ## azure-blob
+    ## azure-blob-storage-direct
+    ## azure-blob-storage-v2-direct (Recommended for Azure Blob Storage)
+    ## cluster-azure-blob-storage
+    type: file-system
+    ## Use binarystoreXml to provide a custom binarystore.xml
+    ## This is intentionally commented and below previous content of binarystoreXml is moved under files/binarystore.xml
+    ## binarystoreXml:
+
+    ## For artifactory.persistence.type nfs
+    ## If using NFS as the shared storage, you must have a running NFS server that is accessible by your Kubernetes
+    ## cluster nodes.
+    ## Need to have the following set
+    nfs:
+      ## Must pass actual IP of NFS server with '--set For artifactory.persistence.nfs.ip=${NFS_IP}'
+      ip:
+      haDataMount: "/data"
+      haBackupMount: "/backup"
+      dataDir: "/var/opt/jfrog/artifactory"
+      backupDir: "/var/opt/jfrog/artifactory-backup"
+      capacity: 200Gi
+    ## For artifactory.persistence.type file-system
+    fileSystem:
+      cache:
+        enabled: false
+    ## For artifactory.persistence.type google-storage, google-storage-v2, google-storage-v2-direct, cluster-google-storage-v2
+    googleStorage:
+      ## When using GCP buckets as your binary store
+      gcpServiceAccount:
+        enabled: false
+        ## Use either an existing secret prepared in advance or put the config (replace the content) in the values
+        ## ref: https://github.com/jfrog/charts/blob/master/stable/artifactory-ha/README.md#google-storage
+        # customSecretName:
+        # config: |
+        #   {
+        #      "type": "service_account",
+        #      "project_id": "<project_id>",
+        #      "private_key_id": "?????",
+        #      "private_key": "-----BEGIN PRIVATE KEY-----\n????????==\n-----END PRIVATE KEY-----\n",
+        #      "client_email": "???@j<project_id>.iam.gserviceaccount.com",
+        #      "client_id": "???????",
+        #      "auth_uri": "https://accounts.google.com/o/oauth2/auth",
+        #      "token_uri": "https://oauth2.googleapis.com/token",
+        #      "auth_provider_x509_cert_url": "https://www.googleapis.com/oauth2/v1/certs",
+        #      "client_x509_cert_url": "https://www.googleapis.com/robot/v1....."
+        #   }
+      endpoint: commondatastorage.googleapis.com
+      httpsOnly: false
+      ## Set a unique bucket name
+      bucketName: "artifactory-gcp"
+      ## GCP Bucket Authentication with Identity and Credential is deprecated.
+      ## identity:
+      ## credential:
+      path: "artifactory/filestore"
+      bucketExists: false
+      useInstanceCredentials: false
+      enableSignedUrlRedirect: false
+      # signedUrlExpirySeconds: 30
+    ## For artifactory.persistence.type aws-s3-v3, s3-storage-v3-direct, cluster-s3-storage-v3, s3-storage-v3-archive
+    awsS3V3:
+      testConnection: false
+      identity:
+      credential:
+      region:
+      bucketName: artifactory-aws
+      path: artifactory/filestore
+      endpoint:
+      port:
+      useHttp:
+      maxConnections: 50
+      connectionTimeout:
+      socketTimeout:
+      kmsServerSideEncryptionKeyId:
+      kmsKeyRegion:
+      kmsCryptoMode:
+      useInstanceCredentials: true
+      usePresigning: false
+      signatureExpirySeconds: 300
+      signedUrlExpirySeconds: 30
+      cloudFrontDomainName:
+      cloudFrontKeyPairId:
+      cloudFrontPrivateKey:
+      enableSignedUrlRedirect: false
+      enablePathStyleAccess: false
+      multiPartLimit:
+      multipartElementSize:
+    ## For artifactory.persistence.type azure-blob, azure-blob-storage-direct, cluster-azure-blob-storage, azure-blob-storage-v2-direct
+    azureBlob:
+      accountName:
+      accountKey:
+      endpoint:
+      containerName:
+      multiPartLimit: 100000000
+      multipartElementSize: 50000000
+      testConnection: false
+    ## artifactory data Persistent Volume Storage Class
+    ## If defined, storageClassName: <storageClass>
+    ## If set to "-", storageClassName: "", which disables dynamic provisioning
+    ## If undefined (the default) or set to null, no storageClassName spec is
+    ##   set, choosing the default provisioner.  (gp2 on AWS, standard on
+    ##   GKE, AWS & OpenStack)
+    ##
+    # storageClassName: "-"
+    ## Annotations for the Persistent Volume Claim
+    annotations: {}
+  ## Uncomment the following resources definitions or pass them from command line
+  ## to control the cpu and memory resources allocated by the Kubernetes cluster
+  resources: {}
+  # requests:
+  #   memory: "1Gi"
+  #   cpu: "500m"
+  # limits:
+  #   memory: "2Gi"
+  #   cpu: "1"
+  ## The following Java options are passed to the java process running Artifactory.
+  ## You should set them according to the resources set above
+  javaOpts:
+    # xms: "1g"
+    # xmx: "2g"
+    jmx:
+      enabled: false
+      port: 9010
+      host:
+      ssl: false
+      ## When authenticate is true, accessFile and passwordFile are required
+      authenticate: false
+      accessFile:
+      passwordFile:
+      # corePoolSize: 24
+      # other: ""
+  nodeSelector: {}
+  tolerations: []
+  affinity: {}
+  ## Only used if "affinity" is empty
+  podAntiAffinity:
+    ## Valid values are "soft" or "hard"; any other value indicates no anti-affinity
+    type: "soft"
+    topologyKey: "kubernetes.io/hostname"
+  ssh:
+    enabled: false
+    internalPort: 1339
+    externalPort: 1339
+frontend:
+  name: frontend
+  enabled: true
+  internalPort: 8070
+  ## Extra environment variables that can be used to tune frontend to your needs.
+  ## Uncomment and set value as needed
+  extraEnvironmentVariables:
+  # - name: MY_ENV_VAR
+  #   value: ""
+  resources: {}
+  # requests:
+  #   memory: "100Mi"
+  #   cpu: "100m"
+  # limits:
+  #   memory: "1Gi"
+  #   cpu: "1"
+
+  ## Add lifecycle hooks for frontend container
+  lifecycle: {}
+  # postStart:
+  #   exec:
+  #     command: ["/bin/sh", "-c", "echo Hello from the postStart handler"]
+  # preStop:
+  #   exec:
+  #     command: ["/bin/sh","-c","echo Hello from the preStop handler"]
+
+  ## Session settings
+  session:
+    ## Time in minutes after which the frontend token will need to be refreshed
+    timeoutMinutes: '30'
+  ## The following settings are to configure the frequency of the liveness and startup probes when splitServicesToContainers set to true
+  livenessProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl --fail --max-time {{ .Values.probes.timeoutSeconds }} http://localhost:{{ .Values.frontend.internalPort }}/api/v1/system/liveness
+      initialDelaySeconds: {{ if semverCompare "<v1.20.0-0" .Capabilities.KubeVersion.Version }}180{{ else }}0{{ end }}
+      failureThreshold: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      periodSeconds: 10
+      successThreshold: 1
+  startupProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl --fail --max-time {{ .Values.probes.timeoutSeconds }} http://localhost:{{ .Values.frontend.internalPort }}/api/v1/system/readiness
+      initialDelaySeconds: 30
+      failureThreshold: 90
+      periodSeconds: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+access:
+  name: access
+  enabled: true
+  ## Enable TLS by changing the tls entry (under the security section) in the access.config.yaml file.
+  ## ref: https://www.jfrog.com/confluence/display/JFROG/Managing+TLS+Certificates#ManagingTLSCertificates
+  ## When security.tls is set to true, JFrog Access will act as the Certificate Authority (CA) and sign the TLS certificates used by all the different JFrog Platform nodes.
+  ## This ensures that the node to node communication is done over TLS.
+  accessConfig:
+    security:
+      tls: false
+  ## You can use a pre-existing secret by specifying customCertificatesSecretName
+  ## Example : Create a tls secret using `kubectl create secret tls <secret-name> --cert=ca.crt --key=ca.private.key`
+  # customCertificatesSecretName:
+
+  ## When resetAccessCAKeys is true, Access will regenerate the CA certificate and matching private key
+  # resetAccessCAKeys: false
+  database:
+    maxOpenConnections: 80
+  tomcat:
+    connector:
+      maxThreads: 50
+      sendReasonPhrase: false
+      extraConfig: 'acceptCount="100"'
+  livenessProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl --fail --max-time {{ .Values.probes.timeoutSeconds }} http://localhost:8040/access/api/v1/system/liveness
+      initialDelaySeconds: {{ if semverCompare "<v1.20.0-0" .Capabilities.KubeVersion.Version }}30{{ else }}0{{ end }}
+      failureThreshold: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      periodSeconds: 10
+      successThreshold: 1
+  readinessProbe:
+    enabled: false
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl --fail --max-time {{ .Values.probes.timeoutSeconds }} http://localhost:8040/access/api/v1/system/readiness
+      initialDelaySeconds: 5
+      failureThreshold: 30
+      periodSeconds: 15
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+  startupProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl --fail --max-time {{ .Values.probes.timeoutSeconds }} http://localhost:8040/access/api/v1/system/readiness
+      initialDelaySeconds: 5
+      failureThreshold: 30
+      periodSeconds: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+  ## access container's resource requests and limits
+  ## ref: https://kubernetes.io/docs/user-guide/compute-resources/
+  ## We usually recommend not to specify default resources and to leave this as a conscious
+  ## choice for the user. This also increases chances charts run on environments with little
+  ## resources, such as Minikube. If you do want to specify resources, uncomment the following
+  ## lines, adjust them as necessary, and remove the curly braces after 'resources:'.
+  ## @param access.resources.limits The resources limits for access containers
+  ## @param access.resources.requests The requested resources for access containers
+  ##
+  resources: {}
+  # limits:
+  #   cpu: 1000m
+  #   memory: 2Gi
+  # requests:
+  #   cpu: 1000m
+  #   memory: 2Gi
+  javaOpts:
+  # other: ""
+
+  ## Extra environment variables that can be used to tune access to your needs.
+  ## Uncomment and set value as needed
+  extraEnvironmentVariables:
+  # - name: MY_ENV_VAR
+  #   value: ""
+metadata:
+  name: metadata
+  enabled: true
+  internalPort: 8086
+  database:
+    maxOpenConnections: 80
+  ## Extra environment variables that can be used to tune metadata to your needs.
+  ## Uncomment and set value as needed
+  extraEnvironmentVariables:
+  # - name: MY_ENV_VAR
+  #   value: ""
+  resources: {}
+  # requests:
+  #   memory: "100Mi"
+  #   cpu: "100m"
+  # limits:
+  #   memory: "1Gi"
+  #   cpu: "1"
+
+  ## Add lifecycle hooks for metadata container
+  lifecycle: {}
+  # postStart:
+  #   exec:
+  #     command: ["/bin/sh", "-c", "echo Hello from the postStart handler"]
+  # preStop:
+  #   exec:
+  #     command: ["/bin/sh","-c","echo Hello from the preStop handler"]
+
+  ## The following settings are to configure the frequency of the liveness and startup probes when splitServicesToContainers set to true
+  livenessProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl --fail --max-time {{ .Values.probes.timeoutSeconds }} http://localhost:{{ .Values.metadata.internalPort }}/api/v1/system/liveness
+      initialDelaySeconds: {{ if semverCompare "<v1.20.0-0" .Capabilities.KubeVersion.Version }}180{{ else }}0{{ end }}
+      failureThreshold: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      periodSeconds: 10
+      successThreshold: 1
+  startupProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl --fail --max-time {{ .Values.probes.timeoutSeconds }} http://localhost:{{ .Values.metadata.internalPort }}/api/v1/system/readiness
+      initialDelaySeconds: 30
+      failureThreshold: 90
+      periodSeconds: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+evidence:
+  name: evidence
+  enabled: false
+  internalPort: 8051
+  externalPort: 8052
+  ## Extra environment variables that can be used to tune evidence to your needs.
+  ## Uncomment and set value as needed
+  extraEnvironmentVariables:
+  # - name: MY_ENV_VAR
+  #   value: ""
+  resources: {}
+  #  requests:
+  #    memory: "100Mi"
+  #    cpu: "100m"
+  #  limits:
+  #    memory: "1Gi"
+  #    cpu: "1"
+
+  # Add lifecycle hooks for evidence container
+  lifecycle: {}
+  # postStart:
+  #   exec:
+  #     command: ["/bin/sh", "-c", "echo Hello from the postStart handler"]
+  # preStop:
+  #   exec:
+  #     command: ["/bin/sh","-c","echo Hello from the preStop handler"]
+
+  ## The following settings are to configure the frequency of the liveness and startup probes when splitServicesToContainers set to true
+  livenessProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl --fail --max-time {{ .Values.probes.timeoutSeconds }} http://localhost:{{ .Values.evidence.internalPort }}/api/v1/system/liveness
+      initialDelaySeconds: {{ if semverCompare "<v1.20.0-0" .Capabilities.KubeVersion.Version }}180{{ else }}0{{ end }}
+      failureThreshold: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      periodSeconds: 10
+      successThreshold: 1
+  startupProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl --fail --max-time {{ .Values.probes.timeoutSeconds }} http://localhost:{{ .Values.evidence.internalPort }}/api/v1/system/readiness
+      initialDelaySeconds: 30
+      failureThreshold: 90
+      periodSeconds: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+event:
+  name: event
+  enabled: true
+  internalPort: 8061
+  ## WebHook handlers settings for event
+  webhooks: {}
+  # urlStrictPolicy: false
+
+  ## Extra environment variables that can be used to tune event to your needs.
+  ## Uncomment and set value as needed
+  extraEnvironmentVariables:
+  # - name: MY_ENV_VAR
+  #   value: ""
+  resources: {}
+  # requests:
+  #   memory: "100Mi"
+  #   cpu: "100m"
+  # limits:
+  #   memory: "1Gi"
+  #   cpu: "1"
+
+  ## Add lifecycle hooks for event container
+  lifecycle: {}
+  # postStart:
+  #   exec:
+  #     command: ["/bin/sh", "-c", "echo Hello from the postStart handler"]
+  # preStop:
+  #   exec:
+  #     command: ["/bin/sh","-c","echo Hello from the preStop handler"]
+
+  ## The following settings are to configure the frequency of the liveness and startup probes when splitServicesToContainers set to true
+  livenessProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl --fail --max-time {{ .Values.probes.timeoutSeconds }} http://localhost:{{ .Values.event.internalPort }}/api/v1/system/liveness
+      initialDelaySeconds: {{ if semverCompare "<v1.20.0-0" .Capabilities.KubeVersion.Version }}180{{ else }}0{{ end }}
+      failureThreshold: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      periodSeconds: 10
+      successThreshold: 1
+  startupProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl --fail --max-time {{ .Values.probes.timeoutSeconds }} http://localhost:{{ .Values.event.internalPort }}/api/v1/system/readiness
+      initialDelaySeconds: 30
+      failureThreshold: 90
+      periodSeconds: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+jfconnect:
+  name: jfconnect
+  enabled: true
+  internalPort: 8030
+  ## Extra environment variables that can be used to tune jfconnect to your needs.
+  ## Uncomment and set value as needed
+  extraEnvironmentVariables:
+  # - name: MY_ENV_VAR
+  #   value: ""
+  resources: {}
+  # requests:
+  #   memory: "100Mi"
+  #   cpu: "100m"
+  # limits:
+  #   memory: "1Gi"
+  #   cpu: "1"
+
+  ## Add lifecycle hooks for jfconnect container
+  lifecycle: {}
+  # postStart:
+  #   exec:
+  #     command: ["/bin/sh", "-c", "echo Hello from the postStart handler"]
+  # preStop:
+  #   exec:
+  #     command: ["/bin/sh","-c","echo Hello from the preStop handler"]
+
+  ## You can use a pre-existing secret by specifying customCertificatesSecretName
+  ## Example : Create a tls secret using `kubectl create secret tls <secret-name> --cert=tls.crt --key=tls.key`
+  # customCertificatesSecretName:
+
+  ## The following settings are to configure the frequency of the liveness and startup probes when splitServicesToContainers set to true
+  livenessProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl --fail --max-time {{ .Values.probes.timeoutSeconds }} http://localhost:{{ .Values.jfconnect.internalPort }}/api/v1/system/liveness
+      initialDelaySeconds: {{ if semverCompare "<v1.20.0-0" .Capabilities.KubeVersion.Version }}180{{ else }}0{{ end }}
+      failureThreshold: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      periodSeconds: 10
+      successThreshold: 1
+  startupProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl --fail --max-time {{ .Values.probes.timeoutSeconds }} http://localhost:{{ .Values.jfconnect.internalPort }}/api/v1/system/readiness
+      initialDelaySeconds: 30
+      failureThreshold: 90
+      periodSeconds: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+onemodel:
+  name: onemodel
+  enabled: true
+  # Apollo Router Yaml is used to configure one of the components of one model (Apollo Router)
+  # This allows you to change the port etc. for the Apollo Router
+  # This doesn't need to change for usual cases
+  apolloYaml:
+  # Example
+  # supergraph:
+  #     listen: 127.0.0.1:8079
+
+  internalPort: 8071
+  ## Extra environment variables that can be used to tune onemodel to your needs.
+  ## Uncomment and set value as needed
+  extraEnvironmentVariables:
+  # - name: MY_ENV_VAR
+  #   value: ""
+  resources: {}
+  # requests:
+  #   memory: "100Mi"
+  #   cpu: "100m"
+  # limits:
+  #   memory: "1Gi"
+  #   cpu: "1"
+
+  ## Add lifecycle hooks for onemodel container
+  lifecycle: {}
+  # postStart:
+  #   exec:
+  #     command: ["/bin/sh", "-c", "echo Hello from the postStart handler"]
+  # preStop:
+  #   exec:
+  #     command: ["/bin/sh","-c","echo Hello from the preStop handler"]
+
+  ## The following settings are to configure the frequency of the liveness and startup probes when splitServicesToContainers set to true
+  livenessProbe:
+    # By default, liveness will fail after 60 seconds of failing readiness (from system.yaml).
+    # Container will be restarted after 50 additional seconds.
+    enabled: true
+    config: |
+      httpGet:
+        path: /api/v1/system/liveness
+        port: {{ .Values.onemodel.internalPort }}
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      initialDelaySeconds: 10
+      periodSeconds: 10
+      failureThreshold: 5
+      successThreshold: 1
+  startupProbe:
+    enabled: true
+    config: |
+      httpGet:
+        path: api/v1/system/readiness
+        port: {{ .Values.onemodel.internalPort }}
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      initialDelaySeconds: 30
+      periodSeconds: 10
+      failureThreshold: 12
+      successThreshold: 1
+  readinessProbe:
+    enabled: true
+    config: |
+      httpGet:
+        path: api/v1/system/readiness
+        port: {{ .Values.onemodel.internalPort }}
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      initialDelaySeconds: 0
+      periodSeconds: 10
+      failureThreshold: 5
+      successThreshold: 1
+topology:
+  name: topology
+  enabled: true
+  internalPort: 8020
+  database:
+    maxOpenConnections: 80
+  javaOpts:
+  # other: ""
+
+  ## Extra environment variables that can be used to tune topology to your needs.
+  ## Uncomment and set value as needed
+  extraEnvironmentVariables:
+  # - name: MY_ENV_VAR
+  #   value: ""
+  resources: {}
+  #  requests:
+  #    memory: "100Mi"
+  #    cpu: "100m"
+  #  limits:
+  #    memory: "1Gi"
+  #    cpu: "1"
+
+  # Add lifecycle hooks for topology container
+  lifecycle: {}
+  # postStart:
+  #   exec:
+  #     command: ["/bin/sh", "-c", "echo Hello from the postStart handler"]
+  # preStop:
+  #   exec:
+  #     command: ["/bin/sh","-c","echo Hello from the preStop handler"]
+
+  ## The following settings are to configure the frequency of the liveness and startup probes when splitServicesToContainers set to true
+  livenessProbe:
+    enabled: true
+    config: |
+      httpGet:
+        path: /topology/api/v1/system/liveness
+        port: {{ .Values.topology.internalPort }}
+        scheme: HTTP
+      initialDelaySeconds: 10
+      failureThreshold: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      periodSeconds: 10
+      successThreshold: 1
+  readinessProbe:
+    enabled: true
+    config: |
+      httpGet:
+        path: /topology/api/v1/system/readiness
+        port: {{ .Values.topology.internalPort }}
+        scheme: HTTP
+      initialDelaySeconds: 5
+      failureThreshold: 30
+      periodSeconds: 15
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+  startupProbe:
+    enabled: true
+    config: |
+      httpGet:
+        path: /topology/api/v1/system/readiness
+        port: {{ .Values.topology.internalPort }}
+        scheme: HTTP
+      initialDelaySeconds: 3
+      failureThreshold: 90
+      periodSeconds: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+observability:
+  name: observability
+  enabled: true
+  internalPort: 8036
+  ## Extra environment variables that can be used to tune observability to your needs.
+  ## Uncomment and set value as needed
+  extraEnvironmentVariables:
+  # - name: MY_ENV_VAR
+  #   value: ""
+  resources: {}
+  # requests:
+  #   memory: "100Mi"
+  #   cpu: "100m"
+  # limits:
+  #   memory: "1Gi"
+  #   cpu: "1"
+
+  ## Add lifecycle hooks for observability container
+  lifecycle: {}
+  # postStart:
+  #   exec:
+  #     command: ["/bin/sh", "-c", "echo Hello from the postStart handler"]
+  # preStop:
+  #   exec:
+  #     command: ["/bin/sh","-c","echo Hello from the preStop handler"]
+
+  ## The following settings are to configure the frequency of the liveness and startup probes when splitServicesToContainers set to true
+  livenessProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl --fail --max-time {{ .Values.probes.timeoutSeconds }} http://localhost:{{ .Values.observability.internalPort }}/api/v1/system/liveness
+      initialDelaySeconds: {{ if semverCompare "<v1.20.0-0" .Capabilities.KubeVersion.Version }}180{{ else }}0{{ end }}
+      failureThreshold: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      periodSeconds: 10
+      successThreshold: 1
+  startupProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl --fail --max-time {{ .Values.probes.timeoutSeconds }} http://localhost:{{ .Values.observability.internalPort }}/api/v1/system/readiness
+      initialDelaySeconds: 30
+      failureThreshold: 90
+      periodSeconds: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+## MISSION_CONTROL
+mc:
+  enabled: false
+  database:
+    maxOpenConnections: 10
+  idgenerator:
+    maxOpenConnections: 2
+  tomcat:
+    connector:
+      maxThreads: 50
+      sendReasonPhrase: false
+      extraConfig: 'acceptCount="100"'
+## Nginx
+nginx:
+  enabled: true
+  kind: Deployment
+  name: nginx
+  labels: {}
+  hosts: []
+  replicaCount: 1
+  minAvailable: 0
+  podSecurityContext:
+    enabled: true
+    runAsUser: 104
+    runAsGroup: 107
+    fsGroup: 107
+  containerSecurityContext:
+    enabled: true
+    runAsNonRoot: true
+    privileged: false
+    readOnlyRootFilesystem: false
+    allowPrivilegeEscalation: false
+    capabilities:
+      drop: ["ALL"]
+    seccompProfile:
+      type: "RuntimeDefault"
+  annotations: {}
+  terminationGracePeriodSeconds: 30
+  disableProxyBuffering: false
+  ## singleStackIPv6Cluster flag, which manages the Nginx configuration to enable listening on IPv6 and proxy.
+  ## If .Values.nginx.service.ipFamilies and .Values.artifactory.service.ipFamilies is configured for only IPv6, users need to enable this flag.
+  singleStackIPv6Cluster: false
+  deployment:
+    annotations: {}
+  ## Note that by default we use appVersion to get image tag/version
+  image:
+    registry: releases-docker.jfrog.io
+    repository: jfrog/nginx-artifactory-pro
+    # tag:
+    pullPolicy: IfNotPresent
+  ## Priority Class name to be used in deployment if provided
+  priorityClassName:
+  ## Spread nginx pods evenly across your nodes or some other topology
+  topologySpreadConstraints: []
+  # - maxSkew: 1
+  #   topologyKey: kubernetes.io/hostname
+  #   whenUnsatisfiable: DoNotSchedule
+  #   labelSelector:
+  #     matchLabels:
+  #       app: '{{ template "artifactory.name" . }}'
+  #       release: '{{ .Release.Name }}'
+  #       component: '{{ .Values.nginx.name }}'
+
+  ## Add lifecycle hooks for the nginx pods
+  ## For example, you can add a `preStop` hook that sends a SIGQUIT to nginx and wait for it to terminate gracefully
+  lifecycle: {}
+  # postStart:
+  #   exec:
+  #     command: ["/bin/sh", "-c", "echo Hello from the postStart handler > /var/opt/jfrog/nginx/message"]
+  # preStop:
+  #   exec:
+  #     command: ["/bin/sh","-c","nginx -s quit; while killall -0 nginx; do sleep 1; done"]
+
+  ## Sidecar containers for tailing Nginx logs
+  loggers: []
+  # - access.log
+  # - error.log
+
+  ## Loggers containers resources
+  loggersResources: {}
+  # requests:
+  #   memory: "64Mi"
+  #   cpu: "25m"
+  # limits:
+  #   memory: "128Mi"
+  #   cpu: "50m"
+
+  ## Logs options
+  logs:
+    stderr: false
+    stdout: false
+    level: warn
+  ## A list of custom ports to expose on the NGINX pod. Follows the conventional Kubernetes yaml syntax for container ports.
+  customPorts: []
+  # - containerPort: 8066
+  #   name: docker
+
+  ## The nginx main conf was moved to files/nginx-main-conf.yaml. This key is commented out to keep support for the old configuration
+  # mainConf: |
+
+  ## The nginx artifactory conf was moved to files/nginx-artifactory-conf.yaml. This key is commented out to keep support for the old configuration
+  # artifactoryConf: |
+  customInitContainers: ""
+  customSidecarContainers: ""
+  customVolumes: ""
+  customVolumeMounts: ""
+  customCommand:
+  ##  allows overwriting the command for the nginx container.
+  ##  defaults to [ 'nginx', '-g', 'daemon off;' ]
+
+  service:
+    ## For minikube, set this to NodePort, elsewhere use LoadBalancer
+    type: LoadBalancer
+    ssloffload: false
+    ## @param service.ssloffloadForceHttps Only enabled when service.ssloffload is set to True.
+    ## Force all requests from NGINX to the upstream server are over HTTPS, even when SSL offloading is enabled.
+    ## This is useful in environments where internal traffic must remain secure with https only.
+    ssloffloadForceHttps: false
+    ## @param service.ipFamilyPolicy Controller Service ipFamilyPolicy (optional, cloud specific)
+    ## This can be either SingleStack, PreferDualStack or RequireDualStack
+    ## ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/#services
+    ##
+    ipFamilyPolicy: ""
+    ## @param service.ipFamilies Controller Service ipFamilies (optional, cloud specific)
+    ## This can be either ["IPv4"], ["IPv6"], ["IPv4", "IPv6"] or ["IPv6", "IPv4"]
+    ## ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/#services
+    ##
+    ipFamilies: []
+    ## For supporting whitelist on the Nginx LoadBalancer service
+    ## Set this to a list of IP CIDR ranges
+    ## Example: loadBalancerSourceRanges: ['10.10.10.5/32', '10.11.10.5/32']
+    ## or pass from helm command line
+    ## Example: helm install ... --set nginx.service.loadBalancerSourceRanges='{10.10.10.5/32,10.11.10.5/32}'
+    loadBalancerSourceRanges: []
+    annotations: {}
+    ## Provide static ip address
+    loadBalancerIP:
+    ## There are two available options: "Cluster" (default) and "Local".
+    externalTrafficPolicy: Cluster
+    ## If the type is NodePort you can set a fixed port
+    # nodePort: 32082
+    ## A list of custom ports to be exposed on nginx service. Follows the conventional Kubernetes yaml syntax for service ports.
+    customPorts: []
+    # - port: 8066
+    #   targetPort: 8066
+    #   protocol: TCP
+    #   name: docker
+  ## Renamed nginx internalPort 80,443 to 8080,8443 to support openshift
+  http:
+    enabled: true
+    externalPort: 80
+    internalPort: 8080
+  https:
+    enabled: true
+    externalPort: 443
+    internalPort: 8443
+  ssh:
+    internalPort: 1339
+    externalPort: 1339
+  ## DEPRECATED: The following will be removed in a future release
+  # externalPortHttp: 8080
+  # internalPortHttp: 8080
+  # externalPortHttps: 8443
+  # internalPortHttps: 8443
+
+  ## The following settings are to configure the frequency of the liveness and readiness probes.
+  livenessProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl -s -k --fail --max-time {{ .Values.probes.timeoutSeconds }} {{ include "nginx.scheme" . }}://localhost:{{ include "nginx.port" . }}/
+      initialDelaySeconds: {{ if semverCompare "<v1.20.0-0" .Capabilities.KubeVersion.Version }}180{{ else }}0{{ end }}
+      periodSeconds: 10
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      failureThreshold: 5
+      successThreshold: 1
+  readinessProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl -s -k --fail --max-time {{ .Values.probes.timeoutSeconds }} {{ include "nginx.scheme" . }}://localhost:{{ include "nginx.port" . }}/router/api/v1/system/readiness
+      initialDelaySeconds: {{ if semverCompare "<v1.20.0-0" .Capabilities.KubeVersion.Version }}90{{ else }}0{{ end }}
+      periodSeconds: 10
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      failureThreshold: 5
+      successThreshold: 1
+  startupProbe:
+    enabled: true
+    config: |
+      exec:
+        command:
+          - sh
+          - -c
+          - curl -s -k --fail --max-time {{ .Values.probes.timeoutSeconds }} {{ include "nginx.scheme" . }}://localhost:{{ include "nginx.port" . }}/router/api/v1/system/readiness
+      initialDelaySeconds: 3
+      failureThreshold: 90
+      periodSeconds: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+  ## The SSL secret that will be used by the Nginx pod
+  # tlsSecretName: chart-example-tls
+  ## Custom ConfigMap for nginx.conf
+  customConfigMap:
+  ## Custom ConfigMap for artifactory-ha.conf
+  customArtifactoryConfigMap:
+  persistence:
+    mountPath: "/var/opt/jfrog/nginx"
+    enabled: false
+    ## A manually managed Persistent Volume and Claim
+    ## Requires persistence.enabled: true
+    ## If defined, PVC must be created manually before volume will be bound
+    # existingClaim:
+
+    accessMode: ReadWriteOnce
+    size: 5Gi
+    ## nginx data Persistent Volume Storage Class
+    ## If defined, storageClassName: <storageClass>
+    ## If set to "-", storageClassName: "", which disables dynamic provisioning
+    ## If undefined (the default) or set to null, no storageClassName spec is
+    ##   set, choosing the default provisioner.  (gp2 on AWS, standard on
+    ##   GKE, AWS & OpenStack)
+    ##
+    # storageClassName: "-"
+  resources: {}
+  # requests:
+  #   memory: "250Mi"
+  #   cpu: "100m"
+  # limits:
+  #   memory: "250Mi"
+  #   cpu: "500m"
+  nodeSelector: {}
+  tolerations: []
+  affinity: {}
+## Database configurations
+## Use the wait-for-db init container. Set to false to skip
+waitForDatabase: true
+## Configuration values for the PostgreSQL dependency sub-chart
+## ref: https://github.com/bitnami/charts/blob/master/bitnami/postgresql/README.md
+postgresql:
+  enabled: true
+  image:
+    registry: releases-docker.jfrog.io
+    repository: bitnami/postgresql
+    tag: 15.6.0-debian-11-r16
+  postgresqlUsername: artifactory
+  postgresqlPassword: ""
+  postgresqlDatabase: artifactory
+  postgresqlExtendedConf:
+    listenAddresses: "*"
+    maxConnections: "1500"
+  persistence:
+    enabled: true
+    size: 200Gi
+    # existingClaim:
+  service:
+    port: 5432
+  primary:
+    nodeSelector: {}
+    affinity: {}
+    tolerations: []
+  readReplicas:
+    nodeSelector: {}
+    affinity: {}
+    tolerations: []
+  resources: {}
+  securityContext:
+    enabled: true
+  containerSecurityContext:
+    enabled: true
+    # requests:
+    #   memory: "512Mi"
+    #   cpu: "100m"
+    # limits:
+    #   memory: "1Gi"
+    #   cpu: "500m"
+## If NOT using the PostgreSQL in this chart (postgresql.enabled=false),
+## specify custom database details here or leave empty and Artifactory will use embedded derby
+database:
+  ## To run Artifactory with any database other than PostgreSQL allowNonPostgresql set to true.
+  allowNonPostgresql: false
+  type:
+  driver:
+  ## If you set the url, leave host and port empty
+  url:
+  ## If you would like this chart to create the secret containing the db
+  ## password, use these values
+  user:
+  password:
+  ## If you have existing Kubernetes secrets containing db credentials, use
+  ## these values
+  secrets: {}
+  # user:
+  #   name: "rds-artifactory"
+  #   key: "db-user"
+  # password:
+  #   name: "rds-artifactory"
+  #   key: "db-password"
+  # url:
+  #   name: "rds-artifactory"
+  #   key: "db-url"
+## Filebeat Sidecar container
+## The provided filebeat configuration is for Artifactory logs. It assumes you have a logstash installed and configured properly.
+filebeat:
+  enabled: false
+  name: artifactory-filebeat
+  image:
+    repository: "docker.elastic.co/beats/filebeat"
+    version: 7.16.2
+  logstashUrl: "logstash:5044"
+  livenessProbe:
+    exec:
+      command:
+        - sh
+        - -c
+        - |
+          #!/usr/bin/env bash -e
+          curl --fail 127.0.0.1:5066
+    failureThreshold: 3
+    initialDelaySeconds: 10
+    periodSeconds: 10
+    timeoutSeconds: 5
+  readinessProbe:
+    exec:
+      command:
+        - sh
+        - -c
+        - |
+          #!/usr/bin/env bash -e
+          filebeat test output
+    failureThreshold: 3
+    initialDelaySeconds: 10
+    periodSeconds: 10
+    timeoutSeconds: 5
+  resources: {}
+  # requests:
+  #   memory: "100Mi"
+  #   cpu: "100m"
+  # limits:
+  #   memory: "100Mi"
+  #   cpu: "100m"
+
+  filebeatYml: |
+    logging.level: info
+    path.data: {{ .Values.artifactory.persistence.mountPath }}/log/filebeat
+    name: artifactory-filebeat
+    queue.spool:
+      file:
+        permissions: 0760
+    filebeat.inputs:
+    - type: log
+      enabled: true
+      close_eof: ${CLOSE:false}
+      paths:
+         - {{ .Values.artifactory.persistence.mountPath }}/log/*.log
+      fields:
+        service: "jfrt"
+        log_type: "artifactory"
+    output:
+      logstash:
+         hosts: ["{{ .Values.filebeat.logstashUrl }}"]
+  extraEnvironmentVariables: {}
+  #   - name: MY_ENV_VAR
+  #     value: "s"
+## RTFS deployment
+rtfs:
+  name: rtfs
+  enabled: false
+  image:
+    registry: releases-docker.jfrog.io
+    repository: jfrog/artifactory-federation
+    pullPolicy: IfNotPresent
+    tag: 1.4.18
+  jfrogUrl: ""
+  replicaCount: 1
+  internalRestPort: 8025
+  apiContext: artifactory/service/rtfs
+  persistence:
+    mountPath: "/var/opt/jfrog/federation"
+    federationProperties: {}
+  ## Apply horizontal pod auto scaling on distribution pods
+  ## Ref: https://kubernetes.io/docs/tasks/run-application/horizontal-pod-autoscale/
+  autoscaling:
+    enabled: false
+    minReplicas: 1
+    maxReplicas: 3
+    targetCPUUtilizationPercentage: 70
+    metrics: |
+      # - type: Resource
+      #   resource:
+      #     name: memory
+      #     target:
+      #       type: Utilization
+      #       averageUtilization: 75  # Target memory usage is 75% of the allocated memory per pod
+  ## @param federationProperties Configuration to be added to the config map, overriding Spring configuration.
+  ## @param customFederationPropertiesConfig Specifies the name of a custom configMap to use instead of the default one.
+  ## The name of the custom configMap will be initialized from the value of customFederationPropertiesConfig.
+  #  customFederationPropertiesConfig:
+  javaOpts: ""
+  service:
+    type: ClusterIP
+    restPort: 8025
+    grpcPort: 8026
+    ## @param service.loadBalancerSourceRanges Address(es) that are allowed when service is `LoadBalancer`
+    ## https://kubernetes.io/docs/tasks/access-application-cluster/configure-cloud-provider-firewall/#restrict-access-for-loadbalancer-service
+    ## e.g:
+    ## loadBalancerSourceRanges:
+    ## - 10.10.10.0/24
+    ##
+    loadBalancerSourceRanges: []
+    ## @param service.externalIPs Set the ExternalIPs
+    ##
+    externalIPs: []
+    ## @param service.externalTrafficPolicy Enable client source IP preservation
+    ## ref https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip
+    ##
+    externalTrafficPolicy: Cluster
+    ## @param service.loadBalancerIP Set the LoadBalancerIP
+    ##
+    loadBalancerIP: ""
+    ## @param service.labels Service labels. Evaluated as a template
+    labels: {}
+    ## @param service.annotations Service annotations. Evaluated as a template
+    ## Example:
+    ## annotations:
+    ##   service.beta.kubernetes.io/aws-load-balancer-internal: 0.0.0.0/0
+    annotations: {}
+  livenessProbe:
+    enabled: true
+    config: |
+      httpGet:
+        path: /{{ .Values.rtfs.apiContext }}/api/v1/system/liveness
+        port: {{ .Values.rtfs.internalRestPort }}
+        scheme: HTTP
+      initialDelaySeconds: 10
+      periodSeconds: 10
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      failureThreshold: 5
+      successThreshold: 1
+  readinessProbe:
+    enabled: true
+    config: |
+      httpGet:
+        path: /router/api/v1/system/readiness
+        port: {{ .Values.router.internalPort }}
+        scheme: HTTP
+      initialDelaySeconds: 10
+      periodSeconds: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      failureThreshold: 30
+      successThreshold: 1
+  startupProbe:
+    enabled: true
+    config: |
+      httpGet:
+        path: /{{ .Values.rtfs.apiContext }}/api/v1/system/readiness
+        port: {{ .Values.rtfs.internalRestPort }}
+        scheme: HTTP
+      initialDelaySeconds: 120
+      periodSeconds: 5
+      timeoutSeconds: {{ .Values.probes.timeoutSeconds }}
+      failureThreshold: 30
+      successThreshold: 1
+  resources: {}
+  # We usually recommend not to specify default resources and to leave this as a conscious
+  # choice for the user. This also increases chances charts run on environments with little
+  # resources, such as Minikube. If you do want to specify resources, uncomment the following
+  # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
+  # limits:
+  #   cpu: 100m
+  #   memory: 128Mi
+  # requests:
+  #   cpu: 100m
+  #   memory: 128Mi
+
+  # Add lifecycle hooks for observability container
+  lifecycle: {}
+  # postStart:
+  #   exec:
+  #     command: ["/bin/sh", "-c", "echo Hello from the postStart handler"]
+  # preStop:
+  #   exec:
+  #     command: ["/bin/sh","-c","echo Hello from the preStop handler"]
+
+  fullnameOverride: ""
+  annotations: {}
+  deployment:
+    annotations: {}
+    labels: {}
+  podSecurityContext:
+    enabled: true
+    runAsNonRoot: true
+    runAsUser: 1030
+    runAsGroup: 1030
+    fsGroup: 1030
+  containerSecurityContext:
+    enabled: true
+    runAsNonRoot: true
+    allowPrivilegeEscalation: false
+    seccompProfile:
+      type: RuntimeDefault
+    capabilities:
+      drop:
+        - ALL
+  nodeSelector: {}
+  tolerations: []
+  affinity: {}
+  customInitContainers: ""
+  customSidecarContainers: ""
+  customVolumes: ""
+  customVolumeMounts: ""
+  ## @param extraEnvironmentVariables that can be used to tune PDN Server to your needs.
+  ## Example:
+  ## extraEnvironmentVariables:
+  ##   - name: MY_ENV_VAR
+  ##     value: ""
+  extraEnvironmentVariables: []
+## Allows to add additional kubernetes resources
+## Use --- as a separator between multiple resources
+## For an example, refer - https://github.com/jfrog/log-analytics-prometheus/blob/master/helm/artifactory-values.yaml
+additionalResources: ""
+## Adding entries to a Pod's /etc/hosts file
+## For an example, refer - https://kubernetes.io/docs/concepts/services-networking/add-entries-to-pod-etc-hosts-with-host-aliases
+hostAliases: []
+# - ip: "127.0.0.1"
+#   hostnames:
+#     - "foo.local"
+#     - "bar.local"
+# - ip: "10.1.2.3"
+#   hostnames:
+#     - "foo.remote"
+#     - "bar.remote"
+
+## Toggling this feature is seamless and requires helm upgrade
+## will enable all microservices to run in different containers in a single pod (by default it is true)
+splitServicesToContainers: true
+## Specify common probes parameters
+probes:
+  timeoutSeconds: 5
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/ci/default-values.yaml b/charts/jfrog/artifactory-jcr/107.104.10/ci/default-values.yaml
new file mode 100644
index 0000000000..86355d3b3c
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/ci/default-values.yaml
@@ -0,0 +1,7 @@
+# Leave this file empty to ensure that CI runs builds against the default configuration in values.yaml.
+artifactory:
+  databaseUpgradeReady: true
+
+  # To Fix ct tool --reuse-values - PASSWORDS ERROR: you must provide your current passwords when upgrade the release
+  postgresql:
+    postgresqlPassword: password
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/logo/jcr-logo.png b/charts/jfrog/artifactory-jcr/107.104.10/logo/jcr-logo.png
new file mode 100644
index 0000000000000000000000000000000000000000..b1e312e3219a8e0bb1831976646260683f6d447f
GIT binary patch
literal 77047
zcmeEu_dk~X`+r?gTzW)GLWLyCDzdV!$V%CftRh(%8QFA|C@Lx=TSl^FD=V`1i0r-h
z-h7Yqy67IC_YdDc;Qrx$+~ho8<2a7jF`mcsb-t39l|)mc_wCz<mX^A%xNqOVXUKm<
zDEODR1h!4^KVow!HOqbb*cp)j_S;5_JlVJJ=|1V}*OYDdPj<P7Y2MBgneNd(w|{>L
zs`565gP#7J>&Y8Lu3FJ6p9={MZ@eR6rhE4C!NbP$dGEU&>Y}ow18#oyFE-O$^Ej#a
zIoPST+d*ihWFoLSIITrr$areGmfvB=MSEQYML<MGhk3eh|KENfKe4()ZmPZTKmJ7I
zc)=}==>NV#bdH_QO(yuxq5tvDPxF?443B>s`;+je`Kx0S|C}24x2Gp-ssFtu_=9)$
z)06Cvbx!}E^%9Yh6{{WiA2X9vk`*(`CLH+N-u9NR!)N?IX2$fRbh3ZGvi_Gqke4ur
z_0j)hW+@HKVSm1_NA|}3+bUl6CH!5gdr!O~dD%zK)UyA7{Oxiu_y3rg?(zQ18vQ@7
z{tuDRxuqT48~1NB|EG-qBdh<E@sBh3-^uttXZb%j^$&;mpPTwWj`hEo@%QNTUjYBV
zX~lm5{O^JHzijIN<aqz3w*T;||E0G7$jT7e{8wlEt&sVz==-}r-L;kfpQ4XW9W@nV
zvO#S#C3rV2;z?gbp7zad6^iX3`GvJI<DT{Lf*uaLd0%m_7dxQ=4rO9o?(RF&0X$Z#
ztDdrpJx}A(*w3tmm~HbKH1n4^&24cdt;PK?+ul(<Aw<1y@36L@y(DaCEdE7*IjQ1P
z?rcw}+v!j3>n+7?qAF~AJ`dvxwKNe^mp3t3HJu{1{d1oBcne#Ph{(@7VP>lflE&Rc
zb1gESXO0A@mKTV!Ke@G3mrv!VH&<62$3b);$E@_1Tx|~b>*?ZO1*8n<0nKk_wd-Om
zV)rOTOQm9ZQjlSB8EYjQog2%_;n6Uhe2z<pM@RBIx|)pT=g?cPcYMq0QJX7LJ=#(8
zVO^VlIYzCznLKVSH7;$3BQD5!=~$W>u|n6Oc&+%()xJs152CU*Uve^~(mqlB72V6w
zFZ<q7%-P`n#rq+)$p6LcyCmNX&(9{b3vKHw-5SdsF(aMMWj@!$N`r&s4Jg#pwpi*;
zUhXR>W+D(1r4+uz_jsb5abtM$OHX5GgU|4bPdt0WV;2DrXcUpWcn)@hl_Cu6peeSI
zD!x^}{k2annZs_qPpy?Se%tQRr#o?_G^w@Twr&FbTaVi;BYC#08@ko{YOUTS$rhjA
zOU*{}pPo$Gc-VanCmRnoGV-i9?y7a|{C!Q<Gp?lfU#JIZa!+q6Gs=7LzblOP)$hJ)
zS7<iUwX_|l%4C{&$HBbqXq_kX^1%q9-6dj#34WTdeUywu<c(z|cC9xl{&f38*6sYP
z`RJJ8&J)v0Pa<BH)p1?C^q|_SxJg%AYq7kiwSZ>&s;W{}cO-pk`l~qKUE}qB4ImDc
zY9cvqFc)G+if^~t@6L5s_6Tv0wDb*dR2!s6O?DG4#`A4uUO1qwvD#aXre*CG=wKS&
z&Tv}Q-doglu&$TqJLC~F2)}|_O0@3#yiIRn=e(WQcOg2j!Zeq+3?){!Jy^k?<tBH%
z_P2tj<pZ%#^=g4jv6O#=Z$bRBuaYqtH)^>T#-u6K?t9F(bxlxRb)My&B|?7Lw};vI
zvHNf9ckx@#8hg?vw=Xt$w7+;Wg<fkDeeJsEzI($^I(#Hp+^<&ZbdKF7+o5AFYFq0A
zX=Z4f{W9!<4Hng?tXuh$86|SBlh-7(Gc@|DM6>*3dH2kiDC#CaNvXsNN01W~r5GMr
z|8;COP$5WoyQ|3E^rP+L>NfAM{^IxQzgV6L;O>8ZJGrJqC^2bB{$dun_|e_NKol&B
zIc$TbD?khaYd~lewCtv@k^jBFWaFX6>HJG~{AR^t2;Q=oZ@Fscr}S>mF8!J<*Q~qu
z<_WD{FW&QFhC$x}L7argU`)(2)OVUpxz4+Dl@XH3G&`OHrL@jcbS5Z&l~B97^iM8#
z*XASg(u#ELj&%xNxwTh9)(Ze;HM5x;gh(WnBPGw-a>=hw>&|Q;_b(9{^`eL~s4ntR
z)yMWP2fMYG#{2Wqf&>Cn3#_U4U@<yX(67d=m>-CEFqDKvLNmp0x<i9p>gvCaShEbz
z>Y&t)j%wSLIyEJ4n=j4yPX~20HguNUDz5sIVZ1*E@SlFX9-?h2|3d6%Cooz!eb&RL
zH$EhsyD)xE{y28qw<ph~l$$ou&S`CXE%7wlSUcx!vE6OFl)xOOtWl<6hD}5qC+evp
z;jOmUFCpQT8`t*X6JsDqWha|vT<NXubJ5<J_WNe7FimkdaMvc}c|Zhhqt-W(!H9{E
z=d-$&NjiU<4sm~Ygp?LlX>SnWjH)1Z-Js9UTzxfrz4!C7n`@?I4en$hCg2EuZ6mOV
z7TFJ72MTQ>sXuvgrLoA}?KMAd&Tr8w0*eb|rspViChA%WvZl&EKbj#@mfKyr)K@rX
zB_ATMAe$e3R#+RUE@^5ja*n8v>RnE?<Y5oYE5fAHE`1X+p`lq0ar%i*?voBO?uK5h
zDbdTmZ`h$|<acj!>~ih$&<15L7}3#V?Cg(4KMA1bh+Jo^L^zGFzs#{Y-R1Y*M4M{w
z<(uHpIE9=%m_TtFu<RwJtT)d0e{A`CU1bVo{wYNqb*<O0!XG(h+}0BV?PDkRVn+BE
zP<n)g(Q8D6<Yat}_O|^k@4V{rD;7>Pl9hd-x4<4fw!N`+J2^=pTM%oa`C)I)V3^ZF
z_=lS$82u#r)T5-+--nvq^)+3j#ly;<lNK|1i(>EpqRh?PT=UH!A$d_dIjyfOyDKZ^
zXmFW6?dxZeBcntzY1XNkGsi(%eX_-7(D1_RGd|a!7G6fFzTFy|@fXao>IpV)DpfM;
z)55!0BC?lvz)a=_X|BSm8_&siq>n71UGnwY>vfZ6w|w_u6NnC<*(&y@6yh{nNnftb
zyfUTPEV`#BPtX$^*QX<(r=J((d+w@gF0?)8a^IL#SBW@bP0klx=zUqlS$B*po|N^K
zW!A&yy)7RD*Cl&yU<9Y5aE!5J)$7y0<mz&|lqh8b3~cv<91hdEG-#_7<VQNoJaag9
z3pvlY^T<HwR#mGJ>jS^EQI0ZOv9@oNKp;MIXDM&;Jjq2SO!#+{jT{a6^qTFL9G;Eu
zml^iF%Ob$tt(F2axL}n;k|2^kpQu-N1P;`+R-S{<epJp;A~_*v$K_j~bkk{r@%8Rv
zmc2-wbCj%j=;1{);x!GAe=+9gvnW24bu<48FaI+v8C|^twkoa`ads!BLMVjkgGz<`
z1NRPd1z6<!$G<Lui2F|v`M2~LzA6ZCP~EBIvUe#-B193)Uo;>39ky*Z#Pa>Esi%X#
z;UZp87*?>UI}h9WU={Mz*r}zU9`!ZF?DSe=qk9?zMCa&dXA>qKPM&OSX}cRJ<g2we
zp&l&O_l0H*j8Yzi5$k9eXAA4%GBF@;9ce#@p(DrA>()AfFQBif>tJuR-Ft24IP@Zj
zkg4lguxNLcJUH7BJ;ce6ojkuE#YmP7X$^Rxj3?=fMk|9g_%-gs`hYSOdFU(Y;mk-7
z6b;S&Ok|h|<%uGo9Q+2SUl#i#(uFKEB{#=ZQ)1b(5)nV*BL3m*bqR`AO15p*b`Wdh
zv)mtf9uvNZqMxJHUho=TF4cV^xqV~T>dO7V>eLsa@4^^9x5D$%oLXv$No!7Nt+SX5
zfdir=I!tX{+ffzP)7ASmPEUYr^doLQvQgxy_&@E2ql4WfIc3nk(l_3t%{}dS4f%T|
zdwo_!U6ZA$_BS)xZJT@vDg1ncvJlz6U*M*L>5j|Y+xq0Ylh&KR?W^yzRiwTjWWXnZ
zc!akd^EO_OnY-DwW$<$O8-ReVCbl|$wP;0dCct^<GG!jJ6>K{3VXB1zkwnLwOhdWh
z<#hCJ7IYSrAkH`D2Cf%-41LN(V1CU_gfu>%&P26+97J3wO|X7DczZHeJ6Sko(A9yr
zV9&mzp#JiICM}PG-6+zfEEv=TRXIDT{c2;%sb6A&<wt4s*2X?(GK)8wcy#NB>22aY
z4eCNWtIT6n0AAENb|>FuTglRNN?<<SM_ZG{3xuP2JlkSYPDE{^Y`x{%@8ywF8N6(w
zkOtB`vEmtc@jW^7@vHhXfsQNb^qRQ|OPny_1DSihUuFux_dc)L_|X2w$RDo>y82rX
zUwD7y2E*@dlm;`8g0ig#-yGwpXrah30%NZ~fCRU#t@libgWd|sI=Y)_1VC3z&l!zI
z=GUY&Ffu!t)Au~SY)h4tT`%tiG8#p8R7Bmv!c3Q=tx2oRM=j}Hvtj-Q+8>Rg2J^#E
z6OP|K;+(xss``3c;Yo7DZNwzHNd$#AK2v0nG-U^=9D^OfIUvJ=tv!?GxsIIN->umb
zh{O1DHGaiE`7VeZvdd{uX>OO&fH2=l@F2)L@&{pWRQ1*{F}9It(xj7W`ek#${A))I
z9vVV;#Dm4WYEUM|l%`8zl(|M&jbm2}`|$uA_7r;3@b_GMKNEp@NuEwCHTb3DCxy2o
zUa7OVKIRuZK~0XEM=A`K=42Uh7A9R3?G4-CIe^O6a3ee@{uE<@VmPmHN|>ruZFI8a
z$Zz#MCl&+E#t>9_GW_mMf$c(fXlriT7I-v$_<r*jCyYAJX5JL#%=JW>GN1K<UR|;*
zZbKL-$aJzF)%YWtF+YX8r=_;|aUXln*wcoibn={7btck}dB*dPmouHO?}~dg1jKFQ
z+znY3HWdwFX)92!@Xe-d1$(Xa^`{s?l+DdN#~-0odR=7`h!ubk%7b7>W?V*s1Vq=*
z%C}mKhEQ;5+_ifs=>Jm!IWdhSoA&L=CuTxUSG+5^gx?c33QSj;#2Bfc#7`JJGFzPp
z<URD}YRsa4q&=eQVAM)o_QSPpLh<e(<G1*UUdlnt>j|d0ydM=nVKDJ1@%L(9a%nKl
zh+c{U#F_A16lvWzQ>YUHgxr{S7sp%x``NS%N5M*ik^J^DR7DV#eOAboXJGL!HNt1g
zn~)^2yEG)G)68Kn8SL!<;h6=k62l%F87~=+xY96bk*`H3_rX+jLa4s{;F(0nF@uhG
zR;SsNceA%BEjU=~7ZmCCqmGg!@MkZEj;VegsZ_!xIkOo^SUtjvhI8Y&dP#2-Z$Ow8
zNPW8&=8a&5J`(rjir<cm^lU7Zgo@zO(5r+=kO5N(#K~A1)RW)@PUme6rrM$}zePYa
zcq{x<qOfD@1;>F4A(X*!xO~D4CvlY)_R5a^6}w>qs{`qZ2U{FcVJ#{n?ssw6%iWf2
zynM!SgS=G^PJp*FR)4rVXTji>94V?B(i&v8L2cO54nL15ihz^;lG)0Yy8BW)+?i;^
zrYx||6fp%~7X!Zei3RX2GQY>`i5c?1q@TUt7{Kd&MFo*2I~feme$Z}R!{uBLq<ZHS
zMm875&{Jj8b6X+1x>X0=u58l4Vbr7eVwULOG}h#=yjW465v_=rOt>csGT;Kooz2uU
z`c}JHRFn*?Eon_2y&v_C$m+z^GLy9p5b<<>MzB9poM0pfi*%D$c&FbEjz0W|7k6O=
zSRT{LoI337xc0poY&2N3U}WouN?i3ajn+`HUhZkh>*{V(*<|oIv1_k4Ay{&9YkDwZ
z=mt>kfyPj8O7*;pv0fpsoj@L;n?TNP?!CI|*R*9myBYD~4ai(rgw0@NC@0zlIwVb3
z={nN|Cj8%xL#7J8i%5`rBohwiciYKX#PcE}>4V_~-}=%A3X#A@Zwz-|iPbh^@5seD
zVG9Ox!=V7E^6X_KEvdck7$FJ=J-vtU!x$TH0!0HQQIDt-<i0sMR#(W7F`4}eGX^*|
zbw+-UdVSc3%z-4yI@#I79R|c?%mEmv3ZYUu=(T<SEBo(soGq^%vz_#$S>c&xZTl)M
zxofF*AiANYR){xi$A8;D7=Svcwr42fC{ET5ga=ieI64K>)9M527$OvQtHU1fT}}sz
zX+cQ!#@Lp(ek-bZ?ci1;v||jtk(FDpnzuHy@SN6anuzq?WfowS!B`cAggh7!C+4~A
z{J3jXdvNt)Lp@GH{5ZSInrHMfEpPdxoq=0kIO6S0AKQU<Ab88st8lnN)88lnW>6s3
z5b5)mS*hXQ{!uEotIyX+!61ySWWvx9q6Un&`xFi<Xr7~CMMQbR*07;?DbZcY{G}2S
zlwnT!n{eVTb7z2)euM&uOK80WEv^095QqPqJ-+(uqh*XK?XeE*FI(IMn0ye`TBvp;
zY~TU{-dqk6q2e3gII2ZOjd*M#pPRjNZM;(^odL~1ZhqgDuOYk?z0^Vjp@ZyqSIX9p
zfL6ar>YF(6lcg0F#?9P*w3#A5T3tflOo!KFGi>@xOiwQ{*=Q0b8yyFTlHP6oGRJEM
zlel%;W1$Ami@7gpL#nQ|YnD-9mi}>L@`v}MVo&^5C>ZJ<Q}x|$l<~qXgO12mfc|yY
zykVS|56B;9U9uPH+ypLoX+xR@s6)t$TB!bb!^c@$vA9>j^LjZw)-`F;D%0OJVoz8X
zYi(d4*jFr42)YPOsSf3hHiGTIE30?!&5qK_w(-P8m5GMzT1p963Wb;g4fq_@dy~Tj
zFC27ToQ4KS@vCA)A-T6^)sM|H*f+Rhjc8CF_E9X&eGY>2S@RUT9RSv3D>D2zaiS^A
zB6NEzWCm!VIRCieE^5LIi9r%UIg;NxptL80`2amCaQZR8grCF&RiM5qFQ)Fa{5Inv
zKCzpFgWn%y$#5Ri8->)v+ILsw+u6T1<2}CY*-HuQBc3a@!eeta9J{tP54Ke)a_AyV
zB7~}1sVjK0`GP5@b`Htq;85Si^7;ukH8uo?M#kO1Ep;DO7h*u!(^VF5Wa#uK>A7kB
zFY+mz6dfK%U&6g)eghlCw3HmHPCNFs6AwdT#=%-*!_E?t(|P9>F0a=hNRLk|j}~5K
zjU1Q4#}mNpq_=xx58<^E-hmvE4|WIkqxg@VgcKcWAK4u}U&NV%PiQ3sTvp%7ShMy>
zn;U+AsX(!+T0a~YwhtRh;u>>VP-Le&NxRXO5vRs-Z;Y*Jab^1pA(5N*OuHxL5uB8-
z;u(@iQPFZngU4}Goa$Sk;zg_lWX_hRzwb<k@(g|oC>FEWs*ETra+yiCUmD0Td$Dto
zcUx~hGj6u$_2~hXW_H2hf?Mvblg6Fa5j#bv6W-cwsk(%GbE;M~aZX+K(q5Xs9h1yz
zf2Emh`@8P=(5G`@x@@iQ>&@H<*keZ*8UlH*l7vw4^Raxu#g{=O<6R);5kwK>v&l1C
zA(#lnF8$G~H)09ilbsY?cV{@ixuV+F9wg&(43+#!U9z@Ii1ERFfRA5HCVb87>rj_(
zcUJ63*S9IolwWuz#3gFW3#H_JI+r{1&1S>h)^&?4Vs~4idY2wG{D5&Im=1efvt8O{
z*kSt%FUvm_0-X^S@@m=u?z3X8vNss(Ww6F&+O|Ef<F)UY?}Vx33mP?*(d((Z80fwH
z9kFgz-RF0p?}H6EFk=2LCgUDw<F>TA+70VfNA1;cZ4SG<5R3{z(#fsJw(sX9oetic
z#oIC===%80XXN1jeG7|(xZK|gaj^K`96wjjhK(-^*(rQ|zd(C_P=BI_q=!_~>0X5}
zt@Bt>espXe{W+_JCvr3yW63iKw)Bo})5{m0LvXm3HJkSlrs}@4e$!Y|hBEUo2h=r)
zc*&t|Wh{zQfK2Ipy}~FFE#Z7udV&UX+`=GA)oUYJvLKsYL)NQvb~{*8$>{APgE0fy
z4hjDy`yz((yr=GRTX&3_Q|9*6exHDfY&ltQU~r*73(^hqiNXEqUXQBRPsBOn&yE5Z
zmjsh+8v&7(SnoZ{spnkDH9vp7J4@`SPA51q3%F~3T7L;KcbNOkhll;nCSAXU(-s=R
z|At5!7mW;yu2TtH+s-V;7u77~3u!xx(ruv*#OL#xY<!%2<am)0x1BWvGSFv#<GK$!
zfM)F}=#6_k60;K_^@1RuoJiZ<(R_GzcB*_fo#0c)W8QJ)txJvzyabjm>MP4>3)A`c
z`%C;TV-FL%2A#{a$&4|2t_W@xG*X@iS@Md~qo)M@6hyR|Ya8n}LPxp9T3sLeUA3B&
z3k|gFfQ|r(jU1`m=4%_znv(M3kl~io8p013nEEQx`i_$M-wruF62~*1K;#-j+{!am
zQ&Or=hSxO>==xFhhl@xQC~U}Npl>g)eBpgHlANfH<*+B0V6r8o?0v+cU78(QVf5Hp
zzV;gHiBiax09`IHnb%WDw0vIUfm!u`s<$zsXOO0dU>>mMbXap!Q;aPVQB&q-#{ny^
ztYq}QYRN$+{N8S)`G<?fvPO2#4mfzP0;8=fDD13S&d|n)yJVZ&$X7R}j$!8^ntLk9
zkvt|Wct%+C%nucVm$)^DSHqe)<(^JMg!qPm^n*Q7kc)*<WV|{avs$kH@~(vG>b)f_
zBfz8L+9TA}SOiN=dm>A;Hff@CaM)VxQqo~!L9Ufrx6DZX->HZ3ICzvAob%x}1qh*C
z$B6Ei0m4*U&+VmXc^*M(gu#0?1c@Z^r+#uUZjFzmG%$!K^|H4$8=5IPJyaz5!6MV}
zq^t^o#LevN&!$d`K@9uwW)}`}xTXPMmi!IqDGBvCxTxhcE9jdNxZU2_v>~C5OImv*
zx#g$GZtFC3Cp;(b@mzNsZPIq}0WP<t<V{mko)ZTuTrsvuQmgBZZ?ibW@L_d`0^puj
zZ74&IOWxC)Dl-2tc2lE|ne!0pxkSjqVsJ-s)1|J_L_V4n6<OB$&W3dJy6P-{5toIi
zZT{a+4%4%s`V<PF<;JA-(HZYzh!!Cvwu<qYLE0gNqDPNu+exS-nKTC|U}uGXIK*f#
zfn!uTeWz1lRH|-WRay|0am#_pB+>T%j{^nNmZlO}40`%fy`hF;q&zcT`Wu{zxc$ph
z!?80AUJ`wZIg2t0Nla#Q78FzEzEKm5S*;yI;M_c8MO_E6vz~V%3GC0M^wr1B{`>_{
z=m;%6XO?P({13znq%_*6i{`z;`C~FZXc<kfvOC{+idiQtDroHC+NwOPS;x#RhPrR)
zl)5}s<KFt&MNIzwAc~$Y^s8>C3<)iobfl*K{O4xCHoshDVNEH|;w(neXec2e`=vOl
zqy%}D?7gWUda7OmA}s!w$E#fn3l(}?o^*Hh$+)<yAMr80F!2iWjsRjqAA0~&zq!4l
z)YtJ;df-N|ow~jRj^Zra?HVK+?!$h8_^KdR@Z(tdmqLKXgoG}MwVGYv;2z8|V|991
zk<Z^JP)pTy*5_95N$l*bcOCEM8YFCP4%D9=4=8J?5I76WB+V9j>#776?BeTPpm1x|
zYA6_(V=$}PlD0bcRM_t}2RuY@;?0@)9pXCm*`r<-rj6^ecfyl~>RkitAWTGPmy8*9
zpZVoSjO~ay+}@Kd(8nEbhqp{i&`d4U?^&Wj>G0URzE^Eo5Bl$lzl){Fb}r)B$({GL
zKIA`Q*mUUxD&{y~+kB31R~tA?z00DX%=o-2N;<XC#C^yw)FRJrx9&ARyZ>_Ms|TCG
z`><BT5PY3F2CFz9`$m)>N4qYvb#|09P&Q`Vj{kfLwY0<G^}T^XMJYR`^13v%X87&Y
z_4rRD3*(cCGmz2PeH7QF^LD__wnfi!%m!o&D?ErJC`z?+ShEz~@Y~RI-M<X^q@6}d
zaaz&@;8w~enI6bFIVtt2zU}#o5jMPcvw%Ggk`&GoKfv58eLD`&re1&Q^>-JJ64ePh
z=`}?5#gg<rd`5Mr|He6a736$|CA!QEOK&NqZe3(xK|x11<7?ih1W(lw{CE!Fc_wQD
zJczF|&Q`RGtVc<xuvb)S>DxL_b6L&=XIP3tcvB8~^@E(*qwsUFaktuB|LuWVj*ZNO
zr{H`SpO_8QMzD&!!JCN`Z1mmD^!w!Hp%``jiJ23^KE5(Xt^HK#1PhXlnk4(qFSe<V
zUOey3iJhft6n7}FecbmPe7R=#)ZLi?GNPQR(&BifOb=iD5pHAwQu|Ejm)DqTlr@|C
zbda<4`6SG7H3<NJoi|%j^)>gG<|bcS9wZ192rMeT4cMd}Rn}uoeNnp3L-+bZ11i|W
z*>I>kRuEFx`71%CqI66s0H|p$_x0b@a9~blMLDsoBcNG;K&iXe&EW?PGzYQANt#c!
z%`VT6h>dIdO=-pikU^_#9Sl$@*TYu=7v>w!!qTd4etEtRn@rGh`tD_`NxOjTarp;h
zgoq#fkYNT<DI*W6B^|7JRmoUKneY`$+c928p@-tVk=)7twrb;eDCYqJ&gNWDx`Y)Z
zVg1ded+*muszu(X+V{k+WmbZhH~gR@YCmrnn&qNf^%ApMI3K2(ZvhV6?-6NuB*fMj
zWt-zyIaB?7@hD*>9dzRld}Ajj<4eL=*XZ}Dvr&EfEpJ3jP$bDvOt=G7fig`lXQ`){
z90I7qi<Mr{e!QGOu(4nBflMzPhet+c%&nEp9Jrt-l>^Rx=vb5>>MN0}S?YrcPO%JW
zl1|=%@mVyVjf<xq<-Onlir<P^(<?Her{t|w8aD{0z-hj{@cal*>%%7sEO_YY95YCZ
zOtlG86>&O8han(7=#7qx#=b(kdakve5IJf}+~Zp^zzz8B_3-?RY3Sda5#BDkzCub}
z=ZzHXomvI_j1x-u9v8TCo$STx7dME0GS_!@ul}42;<D2G)I3O#L~Y}2yD6$!_3305
zf$n*460G@3Y0mc;L1>g&2%y<uX&wzCch$Z#Q_6JgR*el{v*MA>WDq4O_&P0mlVVjL
zjCzR15)*eq%emPkvO}Qb+jrO8Q1AliM*^v1OVM&0pN&K}st<EJ0RF&b^IC4?;%y3?
zz?h+(l*BrDl@Zfh<@Dw|1W!J(R`MHc-wGKioDe5?`_PGwGmuS0W1xI9@2P_>2HSeK
z*mElKQS}D>>R~yHoFcRbE-owr7T$W`iWxm7JPXz5e7RM5hgD4V=nb|c%<AiE^{UXN
z&8BWssctzs5)|9%nn)feM?eOS+wewYJR)|4q@FcFg&XH>|DuXQam91$?ojd3wr`FX
zbu#)?u0d#ag5fU57ikldm1kkHO*B?5bXE`AA6;Pztn@2{96WeN+|&x6sIY+KlbG!Q
zWD-X}_8;L2BM&AjuVsiI&9?7cW8ihHZ|;^)FNvZDgp4@_5GtmJJ&Hbg9uk~Pv+M6;
zpz(K@U7ZnsBqQKRdPu~=qp}ysLc>Sib_IMl8h84^D?2IhY1mTk9^cTxenNu&qlkUA
z*%eHKSL~j-pYF|ur99EuqcHkXKbGbKPV9WpD7HEL5@L(DPvM}+?X8QlbuGW1897`q
z@9@DwZ9AGqDs7_N&glIZJB#^6R_Pj(v1p+>Fx5tGYgB6jc@>p*F5n-?(H4UExkOgm
z0c~49%&*U0j^p&|{?d5~%aHj$oC)kq6z?xVdW9*G&Q*|7EzexZ>zsHvF-2N?YWfV}
zW78Q4To)ckRtCWf-(8T%WG7Ybpuq}!J{*{4e4{`9#v!QdW$r=sq)I8$4FFL0q)RTZ
z7}E1o?6K$5j{j|dFWX}w?8flSqfrF*470T!l$=(#!<)N_T=%heZYT4`mpBjuXnPM_
zusP)pG#jRB^2;64&LY@6lCwD0&<G>q`FWns&C{gxjX!3L0IhwZ`|k21750P8ZODqW
zgrO(en8+q{l+N22OIDhfJ9>2G^+b&+Kg&!Wgw2&JljTbmJbbtaJ4*}d-|3wN{)Pu5
z*>okXaD%sR)jsRxJ9L7C*28b-O78NsBmJFLRL2Cbh``MBnVFE>%PhFU=TfV7-FF<0
zyASIKsKC5XfrMnZAd3FEgI<HKTFyRs{W>IvbQG-_IsM}8JS%4&IUSjMp_^FznXP`e
z(5cV4EG!74<eVT6?^_BJAH*WbzJr5Wrnt9B;K5$6Ho6JT%T$Z;<k~YtP+w1%qi3?L
zGfz0p86fCd83kgoLQTn&Kej8?Q_s@95}2-B5kq!Xjx-`%ERC)cR9+wxrditDbV##k
zOs<_qA3n9THQU)yy6k4b&gpcFjw~LNeQ3z!1INVl+p38)7{t@MipLa@G9yUYIRA|w
zCIYx$Qw1S5sw%Q8zuMTK4W#dS$h0}*)D0_QL&PC6Q4;YAeN4|d+j%QN-Qf~Ptp`S`
zKl4nR?L2pH7CtUFfuwKBh4m9hNzplq&&Bd*=?z`i4(TGdwXdBL@M?)N$hh!gA2yp1
zBH#A6;Tr7io{5&EYELeDSdqg3k3FpDFSweK%wWpEPG`9$fUiLHK^DREM@|EvTQJ@c
z1@z}B#)j|+&y0)p+yKNvE90!;k}*o}pVl_&v&bl9<=!A1u@BM8s0$PT*E?9$CXR_D
zs@~5cNQ&KV8#M9l+t9wC`J@ui*Fq6Op4LPM+m@xS_5!=d>xAbXXPV*0h=(zfxr{Xk
zZk!{VKD1KZDbVC1np~7b;yPpJl)Ieh_jZ^(k-iJki11bv$#QkJp<+SO%xEs>7N|T_
z6{thW{%&|g6!Q%{_E;e4FS2q!jQ*#EoVAsx9c8T-nv|=c{-TxK)Qlsyp}U8rBRlg;
z2=IgFk~=9A4uZ)ybDo~7{fs-EYd}pIGLwDt67z~c^x#U-vqOr`2a|J?NIHe}>f;W0
z%B0&{K@Ng_Ku~lbWM{_hF@xO1dUqX56D!>-nTKKxxSG)C7Ur-jkNxRm<>{Dgz28-y
zXQUTieQ*E9ZeB7<`=)JEy8Jd*-gyc@8nMZQP`)}NZN(n6y<Q;5MVsT13of-j1)X(^
zORwB8;mxQQ93)UroUMtOG@6LO*cSED`U&3dvCnQcmU012NZp~^v{Zng4m7uplC4kv
z(Q3VwUq!m?tc;6fB=GkI!;gdIC^Anx$J7#ZYpe%d2}_7i^hB-PEU<uX5Wjjbf@WdO
z(9KybdHIWDG8fma9+!>kL6Qu}+y;$}i>1XDf)qpNQvni_5;Y|*tOXh&ZZwBRvLtw-
z#7Z}9;fVGry&2MwUPs{kSOP$-k8SsT@^p~mkV!0jb8O>`DZhN&?MPZg_jKMbLHS2j
z-jJ8a7jDFB-I{94Df-4t7W(3DtHq^cndWSG##{qCOG>Jn<#^S0k@Q=3{9>vV8cO@q
zCIS|n7nX5{l+K$NlHc>6rQZ=K($9LKU2cp>=fr(uzNAxB0)Wu15*<YXSa&5o0)M70
zICqseefE!5qH|37niCm&s!B2pceKKZKtN~djGkc*BVcy}pj2am4645_5U#5_uN41s
zfur*3ej+skj3vtsU7mC(NP;cu#t366Y#+3|%&cwsP?y?+53E)|O>E@nh&$`ej#U$2
z$}X@rN|umS`wfiEHb_}CWo|%DL&hABQF17TcD|*7z|hfi8636`r$YcaPGvtEf{%rv
zU<CFN!$JfR<acsyo~*LoHj?{E@q`>}P8l_OS;9-_rO|WlJ1By0>?zyzmFCG`KTL{m
zU93TIusMFAdo{6cv2p_uwUj$Z`t(9L8f8dv$I^TZ;P03<Rt*y-a$7jHP~SFvOKlbh
z{VNkeH(ywNryHoIvgsU43s*>Ta~64H??`wcMhT7S6HuN7RFV+?WJ-xP?V^Zu@flt)
z%Q&q{SKaPo64|ewB7t=G&!B-)X#qU6vaZPW`;~-6T%8Vl6W#b6xso1IQTK1c#1F0^
zu`a$eBy9eJ*^rYuT_^j<Jxh}lejll!K=M9|HIMu{i<y;SsoPw3{w1f#P9|LUF~T?M
zIL>^`6`>51w%dG<NkAP6Tt?HnC{)UQ_qBOl2n|mGT}kT%<Cbg~N1gy;d(ih7H2=ey
z@#HbeFG*_&L`})WcpJ<G$=K-%k(CEx#MHMEKOBnM308m6bKDjPi%?snX0|jVKBJk~
z)vM%%oT?p9125_2u^mg>(J25p6|+7b$G3&^!Od@+ctuP0QawB|Z3)2JCYPebqGUoq
z1^X7KbO*FDC6E(;mIQLein9KE;ra*tq<yax`x>&uwGIX1;f@jzFNM0Y13@aQ{A%i~
z2+4HS&$i671>}f@LDi<FWn~2E2<8T1k(jcG=1KwZS<Qb|coYKrZp!p`XyZ~8D{f!2
za?o>s0iL&juv>FZM@2T{7e8R#akpq+3@-L8jL0E2FaHP&9Mm4ZIr2jx2}G|yntxTl
za@>KT9^pI?9ajP`cJr3WQSf3zrKD*V?-OeUVvZbHIa;@9uOtYMq@D%9WpTYR=Cpn4
zS#wY}WSeSgn&UVU(r<9aUu&}G$ocXM6GD!yt1MPjQa!1*UIqdwa+qcwiELkA$E9iK
z7~nKD&tk?ul47W+H=w>G@@kiQNN<2Ar~c^>dXr*-Bv#COip$FWv`K7nnRfbeZ>nR$
zRfGWx>_{jrgrQ<H@VeGUy-Fh!R?&%4x`b@yC)7Tk_x;|yE36<WD(*#a;71|qWolEv
zr7$rNuusid6hNdVrA622-&CNf*N@p;S(-UtaB2}}^aS6S=-ehk{Z)^Z2Otm|5TVO|
zR#;VwYe64$HPB`7(G(TJ4oziASt>8>_<Z>FTA|OYuPdkR+M!NJ`(BNwwB<ksIb?Ac
z?Sb(p06MW*7$@^F{l?3bR7s11Z$8P8w0j~t5rqcei8>RhorWBjAsgUNsux**!nZ}t
z(O~fxo^A$Wv<T5JYJuAvx_xZ4oW;?y&8*m0ON;W;W9Sn>n-ypdq}0~3gYI!Yq&v__
zeiW<jzvTNF2N0LP0gLBVGNglDA-SWHbN4AbJH&fWPhaQ?QcgyCI@tFllUKh@9ie5T
zT?@HFn~@9={m1YYqc-(bJjbaF0N~SyO1y{$wZgv*r(FqSkDmfa%s6Oy(D^hq9SCEd
zo=iCNRA|*$ukS-FoW8lSdB;bl5<t$wCP12(D*Sw$son$&VCqt`AVbYa<-6A9GQGMC
zn@k%Atvno5S$Xl2W!dWNR#`deeZw=`BqY-u6Q~A$M5Sb_B4FUw7&><B=_PeUqgTQh
z%QV!pf5>Nhcp8gSBYkv>b1C2Ncbrz@@LI$8&41l7>FVIWYwCvM_yvG6^eozs-wM|U
zlCrzx&D9y7u(Oit-E1E?(Da6N4_m&2HZXLII53aH?rOWPTIHc`;86h^T`5)B2gfpe
z41T^p*e3F=0<Z<90NVPzxyjc)@0>OJY548uldaL05hjEe>R8s>-1PZs15zWyGpo>}
zG+FL#7Bsag1>XTQM34rj5;Psuu|P(AKit%BU`*0#2tlvCqiqSNG^qe2-*vmKO*YlQ
zR&xO9mH|{3^(c?o9f`?0pp6pFrc$b$Lg-b<ED%3V&(KubN?USQk;vymBOO>f3Ly5a
z0;euQs5IKHcSW|~qN5XEGD#g0WifO$5d5yxy=_Ne)`o5l0HZ$)r}gm}e+OP1wDLW<
z%I+eK46HI50tDhwg57g`yw;<|Nn<Q3m~n-v1=0swBcM5h)s)P#yJCb+CfH6Hj5W^^
zp1?JjbjUt_jlA0Vp7q6{$Z{EU55>#-Yg9-yCHm8B1@CwzgSS&K)@6{X&5*_!XoPWD
zjw*uzEvInLsfQ1jy8+i#wuAn{ynWGgrID#nzv&l|R}qW&i(`|2g4t1RwWjm?S&?Gd
zj@e{to9*!fGWnql_{_?d;BDq<yG2i$#wYhYazn30))EsN3VPN{A*fvVBuFAv4vQi>
z$2dFJo^@6v3x+^Af0>46iVKOFI7g9($-dnQ6ttksVx_?);BzWKOK`mPEeaU|pd?@?
z+>E*p{JDGG)3JT=C*FnKi7{H`V0TQ(h#dN8IIoI~@>2dD6!yS)3ypiOJXivl&amhw
zuA*pza`+>iygg(!V>L@sbdM2sBnK^==a}X(DrcZnypTJ8UU=dvE>D~!V(sF!fmZS7
z5&7u%UM;zyAw!WkOu9S;PI~c&7%M1o0L3qOtfM{Bbm8bpz+-GN-H-JvNpY)vh=s<F
z>BrGe=pN~cxvP%u_kM&1T;`C{Me1IldA;nrF_1usVuZ#{ERrr<;E%jr>Z|MWZMt`!
zye7{SXFtZMzE5bN7IpV=GNOQb)&O{tn)>x|q+Nu4jSxe4?pHFJTkQAJld6byWFBa#
zIIzq;ExhK4XS`fzCp*(VTiU4KXgTYV`yNVS3x?KmUTFlp#x#OFqh4glg<GLymTTtj
zxcO*^AP5*Rvm0yjLU9YILQ&9&SP{ro9Nk1vB)bc-IMz%f^8JgA!?9jKE&<N{k<$)Z
zH)QWKa0~$3?TLNwT}sL%91R94l!sHnWTs5iYx}P-7AJSl2i(R3XXND2xFd*HLop&%
zPJzw(?F;;NZ*pGG$~U__T2+!B(b7lM<xPnN42KkWj~_`RFHmj34GvSj^otx-m3+AM
zX~G_?YTS*87H{^t`0vQwsMXMAj|2}NV@BJNMzzR}SOgsz!INe)DqzHYB>fD70Kz5M
zX#YD9?{me0AV?9S{G8wh8(Dto`}dYDAFHw*oB5%A&au=vfv_0~ESSu{<SYXfQdc<Y
z^Mgq*=f}FX`<$j*{P*JsC;<Q*=!Nd<IyM>&j00}^eK#tIjnnlsgr*CO##>e_F6QC6
zMvjaCpq)IkbZkn2Tj;<J5cw0OaSN2!0IPf~lpzrwg@8+0vS++Q(|+-><k%_hY`ys|
zb9L@2lF49mNx)Ay7YtVLktU2$S=%~JZ3;Cl<hQ)Wt?~wNC0H(G)e;?7?L}P3h%$HW
zjWfY^Q_z<y2~kPJu^j+FML?2Z_twSNR|T&`W*T}C;#J}SxfY9G)Dt3~yZ4~v7~_|I
zllC5HS#9kNisP?ZX%S!X^PGIfSmf-<X+E#C3sg(cWwQPzt#Okk<SS(8bV!dhBA1#8
zU?E@y0MZ=tzNv|?iilSHaL>sbM$a<vEYNMnOL`q&pb1`Pmwv0_%MKLOE;VjD_#S8;
z7{-!ET@bMkV3(+g%nJYL!Jk)ZIlHyC9f2*R_E0+pr_xV_xm`^Ml|v{-F7u)z^MS%y
z*)D#RT~G`cXd@sNddS9IL%o7bdos(AkMT|B!JTuVtK_Y?c7vk~w7o>@Bsd0g%2LL|
zTC-Z5jPGvZux27FAp5lnaU`FYe}V-x(`W9~mHDLNE;|X6b>p_yrzo7^$s#!(DcJpB
zSwH6yk<Md0wJ-E>Y<2nTAcdosxy8Z5%qAqw{!HQweOlUSoy{SaEg;u#x%+_@a~;G%
zAhBnmFFRM4Hg9d<nB3bQaCD$&C0M?!$sh%R;#soLMvBm1x4YBo3>*p|*a1HM`2i#I
zb6kKrL9}z;X5eRj!<lzg0<-4s`E1q`I$F-9IF?!-0<DqPcM$u?0tRm8v(n7f-d)VU
z0=MIQOg}H-6KvUw<|#SLpQX1VgxLLUdavc@M2<x*4EQ55#`GeW+Kx4@5@MB!T}Lcm
z#8~;R<Z{(^bHrbDXxp}ny?fXL--owmJ7g9jNLMRn*(SNw-d~o8!I^bE7l@*+GuIO%
zO*pPj>ONxWyA{P%ggW?k-Px8?Q<_N~cgQi}#wf|Vq&=7Q<Xt64t{k?5R!dUNdsV!>
z?f^Mw>yUc^nN&<6w7F%Asq`OlYY2}AL;L8nrSum(d`o}@qVf07T1PwfUqug`7F<8%
zK>g&7D{dRW@7Kwm_OKJeDw4pxKwr0}n%_nU@nYggBJ<J%{1GRzQUX5XHe_460ykss
z=VJ3B>l<pu<}Hw&ywn7a;0F5Awhsw(rcMig@O87S`C@dEbGQ@CAjZ*z8Fv7Q;DG<`
zHt$)CkG!fF^B^TG!Kvdc-ph1>SzCKnc@q05hs%#5oqV5QgHk1l^4`qmM3%9e6L@0L
zqAc`q=OE)LwM>z%klIiU{kk^W-hC^?2B}>CaOct(FIg0CT;Q*I9rKz+VyAq~DwF5f
zFQiB=R7D&J+~zn@M=!w0fUb)-nRt{zgoGr73HZ}o({-K`6@B6he`;T2C6|(g2bDBc
z-;*kuBZ(K6ZtjW#ZWTgD4;Z8p7R|DCmv++UhtA##e~2^u9gyW_-PfZJak&|ww2hX|
zRAP+KH%^1Hfi>v_H@?PBCM-HeBPfvZbA%1plye44$*SQvJn}CZ<j~R8g-X>Mjt8mi
zY=8@qHD1_1e=}1Hzg7jXm<iJ$&P($Q4zJurbc$SfZLUyQQ*-00-8CfXx72!bu?a;_
zirz`M+uv07@jH#Yb<6w~31{BJ<4_cWzskRWu!5l>rz@Q8?>q_J)8Qbc-a5Q-XTweg
zQdjA*sl=||ziIGpQ$~x}yv{81{=wG98}n!(Q5R>#-meQk4Y$*r*E%&dm$!IeMqvJm
z{_%<gJ>*i~pL<(_m|jwu(2HBIbkl`^MxqO`p8pPy8=Pfi6>M-zW@VkY;Po=I_BvJ@
zQb=>Nd^0)MF#Ksx2DNA_tscP6lR(nJyQyR}R!2QB`PEE34A{3-A``&pLI!$;v_-9_
zR!If~>;3hb0gYh(TG5QF#RjhddgQKl#m$lEN*3?>Rig`aAAytVAguCM0YAwHqDjHK
zT+la*7A%tJZiRGPmh-eTpc6p+0&jCxd!Jj_S!|Y{5Y3vQ@dfuCsMJ0iO#9+*?z}(#
z+uYz6v>$xt`DiS)=@$h%E$AxNnt70z@Bl6Z`S(>Q*@qGU@fY3m?)6%5hL5g`*^rFg
zUBOcP2(lND{sdqStV0bv!}-o!D@jVVFDY?m84QZx8|nJe#8}_hAgJ?9Kfo#G%E$zQ
z&1p6zQ{%KCPmTqWk#>L2ri9<9qb^+FU<|k&f_uFbYGSIOOGCqoy}<wWJCALwvRs%M
zW3?K#prAUAtdI=u6(N1}!*N$)#8lr1>;QNA&+Lz2_TLXXZIzf(mU}sOu4o1x>j&D<
z*Ss_~YZlBkya#bbL1#Dlio0gs>ON=U){G=L3*J=V-5!3v@hRsxP{Q*J6-7p3;mQk8
z!fs8Wb2P+(SC44_8({bE?mlBkW-mHKs@lvx+0tx_Fh!xp1G#Nn;3-rl$t@Va%>*wa
ztbMVXj94x7F8?u_9CB`3K<pX$w#WN{GLZEo-N#603D>cu0?(*-@4e4QRV?t;;0|dQ
zl~E%ghQZ(A3Y3=WJEUxdU~&dQpU!ObmqwBPXeUL{CfFw)IyQ*waC@u57PRzRvK!ff
zn$|63^0KKZiV&h|#&BU{dh)>~{0Q$!TphSO!96z~(wSNT^OouQ_FgXe2rki$2Ko8O
zzD~8^xCH30?9C4+i0bk`Lg!_=_5FT4ZWl@ncV~DL)}KX@mbF9aOufC8p>H{;iOAL)
zi4nEuo6S?{$!hH(AAg(H7)4n6X!{%uiKs7L`ZrPBl00zF=XsP@d3$o_>ivL+cW}tP
zH#@xiZCH%^9g(2GjOj?EG>L1O_Vv`@!+7%DqQpJ87~SXjL7LW|!OR7&mdqG;{t7aj
z*FvnK9Kr8s7YvT8k$)`Ew;$AxU_7}E;04+XTh*8<50prFh&c>taWV2;mFzA7mM449
z;RzgIyVsItAjiUWBcRcpTr)IiEZ$j4*M{p(*Ha^QmvCIX7dVEDPET95)2DPjIMt|e
z72hP3xTyj*7we)5zq4pr9SQt`k>V%iZhdI+m>GYk(&u*Xo9H?yg5K@CKSoq%WH4=T
zapD~Q>O&<fq-qNUqrw-lz*Yh9N2r19;(RG`jRDw0%AS??a8494Kb+G>8i@(jK3BOo
z$j&I!ZWCXb|H#_Vr>)qa4~{B8oB1H#Q6bMFHp>reks&J`G>a1|lGi2JfGB#d@{Nmh
zPkQ{zy&-X?O|*%?1<@El!2#3*NbXY<D?ip;AV~3Ml<?kQxD`Cb$bpj+@?8){bse=e
znH#8Jl)vi?=-XRSNt^ROjsLM+z_{Vz=o78luBZvp#7XrA$vb}Dh1LTu3O#oz`@V5L
zz;6q`2IxzG8sU0Z`y_Jh)Rt3Bbiand6KL!UQgb_~zwr3`*ko{{i@nm2ca$7`v-2uv
z4oJ;!<E@|x;!lEaYU0d&S7>l@LcuZGn~sD)%e1~;MFgDZJ9oVb^bTA`4gr*YcYeIg
zkY+lZ=l8GVC4>nfS=F$hR~}>&;U8&%>N9Mj^vgfw0pNvBwqR}C<!CXw&a?!e*}%xe
z=$+D6PQ^^<rptA4d!z2EL=(v$UR8J!En<3q1QZ`be>!Wnj9^g7J)O^~=1%-WB6RW+
za4x9ktV8s%R05^qXZ#qiY|h?s0}nc4H+B*zYIvpKlsTvj%Witbosf#~e-FdGu}`Ni
z&Oht{G(v4eW#n&9!cxNBVclnn>}aqbh@k21!a!O@PQC5Km1GLY<Evcle+jS|tXxrm
z8(kGw2vkzY5kANtp|DItE~;ai@)OuetZ~W0-g+>LF#4$fzNb1Qx%q=*AB$66OP%3P
zE1+2v4oT^|_d<3hLU04%Lza+?P#rS35ui)-n%pBo$8_0jqWkUrt&=zeWba9$K_o;C
zRB)$r5+Upp+`!v|!RjR1Cn_(6e8Z<`e|A~|?J9~oMVST?xQQ<S(inc|?p2VIpTWLf
zLikUmb8-MWvw55va|2;^LET1Xspa?c_r~qu{Ndh4pPOItjPO6F24e=nDz9Nd3$=3s
z5Oda7AZi{!oNEhSZSC^Y_7wjBArua^DLEJs1h&&4e5rDVv<T82_(B3DIwUsW!HYlJ
z!~KBO0zAOJWTXbjqN`Qot)6E@#k+d}!9M+{+YI|J#dIQVFfQMNiagk2wnNDEiTUP)
z>|#i6(g__N`k6@JFLM783EWSHdi`l!MLEHC_GC`KoBUk|xDNV`?QAi=Y}<Vju1P|#
zS)@$j;}_&w(-uns3m;2FVTjV9ESpTmtH#s_`mv{O_#qmKZ{KbWuN-pZ=7adn@GIQr
z%_}x%x&q@FbuRriJ#u(<zdC@aBZTJd@2m)~$%L1vU)*6!j>5TkcmGEqQHZ|#D-`aI
z<A~))k1^juKDf|amxF_n{#pWt6md(g3p}WaBkZK4i#{O~GWSM*FC5`+y{r1q>FJWe
zICE<g9y7Af)>rqH+z3xUMld`X_<l8b?5_cFoAZGRQdQVNNMG$9ko8j2&Z2WuN58Ui
z9Lo5Ix&N)sdwUe(e75m8h4^7O*hcVS66y|`x7U_&h}ND({4H4CpugnM8dd&0?d%Z|
zL8B)?;Z(dC^lz7|27A*RYPCB^SR~m8sdUOqe&xYidGH;J!$~MSE#!|Xu%@86Z?}fg
z??|e<x%uaN6J8b<Kvx*9&6KP9AUDtc+9T#1NJ8p-`z22XGGVmMhR-$e>Q6eR7adPq
z0|T-o;AG+-Mc^&78OBx=5l7$rPzW?^og=j#0?RfkxgS60+$Q<60^AQ$DxkQ8<d%hV
z$jI(qMQ{O7p(q=`Nz*Zd+NOD66aGUh0DWEVtZ>@&gO1Gb^s+*B{{!>Tx9c;vhj6W!
zKZ_<q;Q7E<p89U$%^u0V&sthOq|Xco0j^p$<-vcq;V=LE0MzH7$FKBQjbL~x^rA3}
zN8#)oC3hCDpB}k2+$;S1k}H90#ln!Ely=S>NXg>FpuH%#*5@}J6cqhR6`w-<ksb4U
z;44Xa2UcVh0&c_LRp-II2_Kp9oAA{!|HroeR(U5A!mWj<JN(MkQ=3NBIZ!9NB#x8*
z^J%(^;O>>1Oj3l7-pO>)s%}#|S|)6#ep~K*p~GL>LUe&)2mh1vQR2CjB0@i7);UgL
zq67dVdxcsfE}8#Jb5aP|V~Q&(e;)nlYVP@Vu!sW)00F2)rGT&fzYg*qqu7uVY4M5Q
zjEpcDhrB1+>GQ9DxovW2#xWjFSYyTYLf(4_H$2oYp<ac%yoM8xYUV}d1^zByNWh+f
z(1>0JLOUDyzU(TnVgV<~(9DP@_q9}C;&a?TZ(x%UGd3OaeN2pe76CBX^f|S!2e;=V
zB>V63O6=Z3-rJ-sbg%^WzowPsm>uy=KF;Fdkr`4Y8Da^a0a%YF_@|<YHi5NLdlk9P
z3cPQ6Q4bzrmX<;m9%tKA8X~(_;r3*$0AVj8_{no&U!-xsf?G1&A?)dHbG~R;@Gr@I
z1y`&SU^p=O4dbBS0c=k%+{pe@VXfAd$^QyXIp8mcoITJf9Vob0Pk~$U$Z$`SiH+GG
zE5rYg17aSsw?`*Q!o^vt<0g(OK+S^28e9w!N?kes&tv4R4hCcz(^6=EJ_Y2e5b@<B
z%^G}6$iZy}m!$tWM;N*?IQysMl0Ge6@8z|e@!-EUvGqGSY_<v<MQFVP=^sttekjiX
z8)|JbHt#zAyD4P=l%3}VLHho3l605y3JzNNYuRKk;9(C#o^p0HatrC>vGi`Qt!=7S
zt9R{Hdy>W5J=}!D*KBgk2;Q>x#nPTuT)aaRF#JT3^m*5O=e>_r?2g_K!YC2ik=Q|F
zA(4H>bB(345c${+FW=U?e;jA%fRTbnaWP+&Nk_d9)wj*WC^UZIqoD$1A-}Y%A&K_D
zztk54NJPl{a*_zLkKY|`1cS9nY{AEcBJVIC#KWq8mTnL5>_lwv%8*Pi^szlDq{M&M
z)_)ZtwrQzq^|*vDbN>ih{sCy@-8F81aimRAJV1E%HF%4`$LiamC3dP@{}l7yCp~V&
z76R>oMTL&yz5ws7@mAp4k2PQP{O1m%fW7A*7%MLofbe*c+cmDRXg5KKC!DuJO#hxO
zgTL?tf1wu0mT{i`(x>4C9YV#UnU+AT0qTr&wI|QN9<GIl`Ge$($1)2wm6Bgxf)nBm
zt=1-!$N#p@y%VzSUkG2h!pj1v*gKR_yD;!y4o(($4FZJT+9T?{ze>C$Pli$GmG`x!
z0(MuvGJgrzqx#E+_P|%)%h*U0N%r`w-<boHUEgdzoYtfYG8@8`qkm)v*UaI%TxIe?
zDq7ieQwGGK;N}SFrimnvul4fYRo^{l!3n&+s^6{`vhJYz)<St@bE9xWLu7Bzx#jxg
zkD75m{0Wg>2o25|H*_aZ5A)s#co8ny{PXl7_xp6RKg_S{ITONtaEt<HED?<z6iI8E
zloEJy$Dh&PBYhLb_^vA?SJHox!exXag2WZEX&_8PYsfHEBjaC*-X3M<hRVH3KRE|l
zsgky$cww~vWP3C60hd4H5)C4ew<DH2<pWWtkcm_<{ap^p)57Si@Ao&P?``2h);&=G
zpz;nbQC#PA4pqk{O7bjozVTR|f;(}nSye@ae~pPek12w^xnjA)gt0cNxhGBDwgh2!
z79!0%8hOJm{>yK+A%KQ%sInR>@)4d-x-N}DS1z`%<mZmQ)2Vs(ZxJKlG!c`~IDK6k
zH)H#$MBW3Wv@bfWn<e`qx}O{l{fE`tUx2g67@nnnvv-U?YvnwwH;;ogTSS*DQRDAY
zfE0@p4qoN?>-^H_Q$|VXuyGHb8xwPdNRepS_3fO#L<df2y*v6dTALXOmATj*Ne1r7
z(+@vCv>%zebnM0%&a~>U)i=4S5?H4k)2olD=sq!ztEhIXIe2_9>I)sp;~Dx4*)<H|
z{&!p(g&WoCN**aIX)6l}4w@5MJ#{g4Ol=!>E#H!6tb6M6Hi;kYtq!{kk*!@s_w=@S
zZvpMjuc*i`fjz4wjFj6Y^?07=-_-d5DwtcfHQzmsXPa-Q2R5ZkujJcrc$^(cG(g6a
zVokZfGC;y}WF6PkA$!SMzjoQ_RhYXU)2033{s>ZX(+#k-wDG}KM{Y0BaC~2I60g&o
zLpJU$+v`{6tgyhKID`Bu?^>AuDR1n|3zhSip!?H#y(BkZ8LOSNrgfC`m4SHockBDH
z463}y($0Yo7I!d;$F<hA;A>AZj;B&Ke}c<6wlF^~N+=;ISsSv@qUv&Xqw+V3Ho&EF
z^j(9fdlF6pQt&*@#^rI`ePxgyeCt5)-WD-bJm-H7l|-Wx+Vam99SF~+9u^UjA20uf
zqaBVx{#zo{MuAYL(D3t^9Kn;1PoJJNMcvW5n^b5`>KI)#a?6V?OkiYZz2jz8-Z1X7
z9tUAbLc&J)o*gxqB)9pw6!8_Xw&}#&RAua^cg6ZO+hqrZd(<;aXlZx!_I7v$ZYdbI
zMQRIxWDJl`$Gj86-ui~zykQx#9zwHr*h{j|GD!zrb(*zyI5NX-GkOsTCRk)b>9CR$
zxL@)i9iZkT{~h4~cDSOVr50D1<*(iC?==&5Vyz-B+4rg$u4u+6!Ghvy4+cX0h4}<O
zf37859z(AEQ+%NGWk~@pkl}MCiuJ<s+sn<^3qdQ7nD^#;2=nEHHZSA4$kQO0nqc%~
zBeGx_W)7Cy_Zmvox?C_0LtzB@>5CDHBZ&y%mdpSyc#RC=0@NJ5gFb_P#0^)eOdT1L
zneX;`%CNuQx%X0~FK)#DgpgGUQZQh+U|9xo=1YhlD2)I2M2fx9V&7${Y-{30UOMR=
z#(J^awt~v{jMM-e5^w23a~9%H=z!Fi)YgRUDg{o)n*)O#;w04$_H^ZvF4y#`yJpKG
z+>_v{AS@ETDyLe%pcxB4e}Ms7fBz_y=mL>`Q<x7_B)sZUrj|h(RKdO7-DY<6iepN%
zT|DliZGoVrThoRUxNN6B>R*!$p(llMM>M&%lPc;~PE0PvbGP~lJod%yu^9GvLU26;
zQDh4oQEK5czfIvLa_4X1eD##Vh+ApuJJ-j|o+};tEcksT;F)BS6>g!(;(88!{e{~d
zWIq4c-4NPws#`|M@nx26O|6_Sn@uO)Qief>Y{C=<Z@{@Ff+V<IL{kP%!U`^%JI3F`
z9w^?BJ1zK?Tkh>cYPC#jg&z#6I46Gv+V#f6`%QpJ4m^8tn0a;o4>w&nJ*ACvc@~7z
z-Hr|%Va*izE1mpir>Ra~u<8G6K8iCZ(~%R@4^~qXMmEXk21-ACs^{XJ-i|5`j_En?
ztlpp&E$!J{UtHUfAD*)d>w1E-W>ffuzm{lOFbU#C_LY2vq{2^q&tvKwop{5_wHBDL
zhFn_T2MU)hn38bWU^yHiOK&8eV^?8YtnLIsXP_Fh5v0=QxD&o$6I|kQ(lu^2Xhl<H
zZ@vJS;#24_t`mvXg^131`q(1}L<3(n9WxBD#wyO!AHxdrZ3VH1ve;Pc`#o?gV};=d
zgzh-uI`jQtA*rXxAK44SYjY1A^OUi*byR%D%Oa&~^<LT)Ygq-Bi{%Ef3o1BQHVE#u
z#HBJG_Z12F+JY?li7-fI`XqC{a(ZDgN9T+*7d<wpbt_@?6$>s9AzxlRzgW1WgJ=NR
zWR<mS%FJa@XW4_fl4pd@8N=<Yw9_w4?dJ=9rZ&RZY`bsZmgxw~6b;)(J`wW&DEsbs
ztk?hllPJ+6q>N-Vkx&WQN>U+}l@S`USN85!G^|Q!SSbk^WoAo}WbeJQ$8EdK`}exu
zcjKJCozL(1<2=q?z2EQax?b07U9a)Hq*dX!3nzsbyA0~T*rK~nv-87zO{~-F>BbSp
zAeWZ|R;0lW0TG;BsGPBb)L}T|lsc#+%^>+p6q*S1pa^SQR9G9{W7gcAV9>`PZV`ns
zvKr`{XMW^P5T2ISf@d{osD-37VWgBhx{SOBrb>v$!-czKbwk7TtsK6ct)f>))ryo?
z!T*hN5Y@sWFbmK^_S;|y+5Lsf%b(5XjHO)1Stw|<27v+`_W^XJVa(cN41QN`f|19j
zJeGCA({rY{t-FO6X|EJ!_ZB}nS%Hh<?}w`*IZ5*U83r)vbNt20!E-5kb1#4e<ZuN2
z0y6ouulU}Y_i1x(rd`ZG2BU@69`%;4qj@kg7nE5uc7Beyl?OyxG42XK&6r`=tGY*W
z>-9SEp1U27B&}vJa_GRM5^iU>A{RFT>EiYpk2ZhszE~-`gQKW?{QN>(hox+Z8rt(b
zN^Fnc0TZ9UP12NiU>$KwN1nR^dA7iBZ!6=opTdEpe4as+Z(1hK(pB8xkhOCQl9gYV
z2;C;Y5fI9xp1h#G4pGzxUMaOdpEPw4mQ^f05w)4ZEqylnip%6e{W-F!a5gThFUDAv
z!&zX67i@`c*g<0r4Dfst%{{up_v<uwTF!S{leu*l?;or!pr2!FuX$Ktg4GO60w-RU
z98krQQ~c;SDaPG6k95eD2*P<QvQV0OkjceKe@&veSH5tN>$?m(9t;nS3@BFQ(7eEa
zCP@z3heG^Vt@cBvgucP_=sA5YMvD16{E<F;v=~whW<{|q2jbqHVT<?R6f52PJNKUH
zjHYpWF)1fMHySQ7jHmJ6zR&z46}GS&@a$N49tn!;J&<9IKdoT!Zm&4Uh0(!f4@YHd
z*H?_`c$zWdG3RxO^cV?I@yi%fgdY4s1%fiAP8X8qtKd5?WS26J;QHsxV#YNN4F<8d
zroH*GqRX(Ny~{^tPoNJV)4@2k<(!%7<qTuFj<BMBbHbG?;hj+yHnZ`>!-qtx!<vRM
zFb{NWI4#BW8WjKvBF(|ZVCn`9>tlv=d3<L&wdP!7y>83tIxSVL)#WqKB`qllrjjcj
z%8R8#Pr+VYqS<WAu-7ZjdTeyi$;Rf}n<nDpY2_?M?+#+?!`ZJooImB{m5hfDk`pAM
z|Bw^TaYFg+mW7l7XI=c085)^gGM{`e6rlHLk$IWBol1eRFCNBDT7OrRn!d13WNy~R
zbt;o(VdY?3Jw@V0NBtiZqy$Z2GW_JIE+R$%oW=7W9Npj!hH<&>gH#}wWv>Kd%HW0v
zDZz_jImsXC;;=N>2cX46$qZgh^}7O7cuJhC)p*R5Q2svs<#0LsTXEOE;l;_S)&<#i
zi7Beva+^}GjyGcp9`Rg#IQwCM&BHMO883%yQ<*S;gp&MoJ)EtWdU|I}r2@4&KT)9|
zKn=5Fw?NkjPSK`gLBna#qSTIeUZ-;%)Xqt^INI;-vJ{--vR!?qeUDaOx?Z;?HVTrF
z*z(Ok-K4X(*MGXxrM;Gd+Qo5D)>CrBHoip=5t>cxTn^PFoqHc%@nRoH!%D7B!OV`a
z?HuAgy-^)MB9C{0t@^5A5%MwG($iw_TVRyG7Jy*^#lbyN?|Oc$6#l>kO{R?Fl;^BZ
zUCwwKt!sx@8goj?STCL6Vc|SPqfetXgS~Mc+}Pm~a}17m0FuFsleFh7&Rx!MGSGGE
z7YHLL&V^?S=3O6}rccAWr%hYMVVFNi42>oA29V*3g2|Dw?J(v$wNZU)x^!&WWKKu(
zOTSyYD8GioiKYNG0JQ>aG?dPB{n&z;x=h$3SqV86&0wa4>Vn|*S#Y_MujR!&tI$rI
zFWc1+C}~bofPgy`as^XJA3;le5|>rc3S>%Xt_p4=)MSO<AzHD&`~bTYEMZ!QDNGgM
z&ie*ASi(bZBmAM(`goM>-L8GCE`w$rnJaTwT*?>fb;;Z9ho$V@UYZW}s7ayOeS}S2
z?!^t0kYC>b-}P}vHphOntn<qqDFP_Kdr9Gw&#4wymUX$Dt79>%m=8O2md5oH=2#*t
ziu2zr7zDy(HN-nGztqy<_*LnGuJ~!ak{}9RrgR3_A8C$PAfc~|6Le7!Kw26m_*MCM
zs_NaYSXS2p-#iD1-wtw;FS+=uRdcURocPR5IEHyoAHb=Llvp4^sU$Lt<BxaIY_Z+S
z<rQbrK007GpX{x>+%&|K$dKVOAu{?ngYV~Hbu_xVm>M*M={}CWV;r}+P*rTfgM~P=
zOX}Wi30rblNBpu;!Ikga&B!I;m8I8SYoe~xiyDwP4tV9yskuq^<&D_r1~Tz2;UW{r
zK3Uq9WwExot&B}&5x>UI2l|g)sPnr!>;ddRewpeKTjBBmj=%U8)*{<YxzTq!-?DDZ
zM@uU{&OjT`q<l9&ki$_631gJhhHbBjz|7m(SousdzhLKqNO(rpSN<)G{}|A#%?}y3
z%XA`Ntfz%=<|NKHE8LW$(71p>SJ%$y^O}8FV4xWwR!u7Q+k$Sx^#Duyt?el#-wQ|X
zXS+kvdpAFxo1SL4dX*~0a#&fo|LFsgP2CJTu;*qy;DibSg^j~<+m+$f^RG1pp6AoB
z6V9(?R-;a9%(TDq;ot>QMtr--PA}`N$R5wYeCqu#+@wMd_qz0piDZoYN8%}%HHH`@
zkIb>=9COB4i<Sv|N8zyhcwo>72N-W+SFQ8`_<s_P%Rm8KybKXXz0*S*<0yu8=knEy
zZcQs9OTbaN9-d*R<waHXjWAT>)VYg}@c+qcYSy1j(h?1io~W0m_6~m^-#2_5I|o++
zsS=nCvJjuW02bbr8?OcHH|f2g)l%!j=~g4{Rp-I0(@1nN;V1J&F&b$m7~}CdE@V++
zfaWn*<F%k|FQL99xM>b{Jr`R|dERozm+gtMm>NejzqD4F4>o!)c=XRQp4ihe0T7*V
zkRM)_ete2K^X|BtC6O_b>Wl=ojMMM}PjM_aEGipdh~}<S5fvir;V<!CYKA8}E5{3z
z*Xh(KZc?2$VKCipYPdTMW7kX&DBB9%IWVNilezr$sVM^Y;7E&iqIYoVFAVHAxtK;=
z%H_>D<&62mv;*JIov^S76u2y@QFcaUkRM}S4?ZTd7HX~5hd@H<itAX5UrfI@nw)e5
zvP!uDn#hSpUEx)GBg3j;<S3=2$OZT8p*TSpX4b9j9?!nay(w7Q1tqjJ=FPy?;P%2B
zid-!(_QEKNHGJ6(rDI33O1WbDg4=St@~Fd;Coz&CA|HHlo(qu-T*qf`Lgwg>q=6!6
z<jdWrsCU)oTS`HIad|`Li0f1sRn@g<HpBpiXd~hS>KNg*6)-c4)Sm7fm5lH$T_)a#
z+Il@>oLOI=8@n}WBonRRTrhd5k(4Z0atEb}0i(x*&P;XtxXlzYkqrkjM)z_j8P<$E
zol50%CU!rh<{TV0!>FLw4OF=M%yB&oMTPRtLI--i;9XDl2V}&&eExdv8vQLmI^+Q+
zVCOfE%EvIfgT^dCY>r^ywcu>m7I1z{hOf5NH!udfr1ZJOm$u{G%}=$gOT>BtDWP11
zT6}vH+8!wwZ{>)lXFd_^$cp+0Vll%Ji?NnWpU7C(CI}QjV8T!0L><PWaX{qwZPBRk
z&vHLHP^q~1=6{1t2uPnQFCw3%84VR(zGV!HV#$LzQ_<ebyGZf_Hs<|CBuJ>*epv2J
zffu|)b+g6%5Sjnz_Z1~vbga8-nS+IcC>79QUqb{BCRh3(%<%GwsLEq7y648&u|tfe
zA?K`f>-F*0VVO~5rN@CW;nU!7B^X&PqBWr_1AD#+nF4-7Lho90IcGNoW8qV+3yck^
zS6VYMH{d*cEK1>YD7^X@-ZZbaX+PQd7)HACj&ONDj-NN@^|S4<eGMT(4%MFrPQG~?
z<AoGzGdejh-kO0N7H-$&BaCZsD?qk|VWZUDWc_8X&Si93!a2Hj{fiGPwGhBGIpuah
zt+aPx=|IOQc^H(J`K8bYP;4K3j_oL>J8~eU!v7Sj@ZCiS<**i41S2lJA&v5P`!t48
zMIpK|;49abYNQ_J*EMwuv31OkXY6>yh{7BUx@$EtuLRBfvGq9wgRlV3?(nWxQIsU@
zK0t;RzvBw$8z0G&GuSo`qitk~@j~19-A&zF3DBtt!czD%{Nts99m9KX$Ic7ZT+5yX
zoiP0(X)Rg_tpkK5#<p%p$rPLrEW7!LszfhX>)zUQdtox&thwr^yVA^^@*KJb+fF(G
zN&&nxkO<$+3sXZIiEM2CbFLUe_<vPTTqMDpA*5LmxY-2uUVm$_$6mC04q#`#M(IbW
zQFaCN`GSS<Cz1w|a+!M}cS4CpJf`nX{ImA;;Y((OQ~R((w<avwr0Z-d>hw{Esp$-M
zsgpZ_pEI*>VEGgU_)7_}os$g^7d$k$Wk2SflKX*17TfF14`hx|1Of^vD)Z9;ZRlP_
zc=ezVV&vo<v)0+@Gg6oEUBP}l0{{q!Ciny<$Q<tplcj~&38VhzAwvW_!5d&|#6A@k
zCTR`|lp11}?pmTQW*Eh7V8zoLVo*`A1T4vEZwgEkm_VnXi?NE_+=Z|h7;V~<=3Xbk
zc>LK@Cp1dLzuLoO3$l)E{5vb_*I#rk3y0zsi_CUlVs?NIWb$}Qb`T6B3q-iL{aNH%
z7><la&PdKr``thrX_Q4TqFof?v%hdC>al-B2*nHo;OE}dQPrEU6fbVZ)*fbojsw_I
z*xKI4cCO*U+{M!nwG9-PNJSQu2Uex7pmRLJ1b#HA=rm^JC*0&$VSDS_lFJ^@Oi(q#
zI)@3MJ;xFmR!}_)FKkJwO;Yn0lsq|M(PKry=6b0vLqw&QpO7Eo&Kz7tjTR5+PVmW{
z7fO)?_yM`g_p4N+uz*-!V>us#S%|9R7a{XS^@W2mquH~zaCXHVf{oMvdJ0tt4nRD(
zVQpCYW)zx2L6|MaJNs;feV)mvu6Tq?OpkIDp2r+nbS|V8n-1PIs+nYUpodtG*L+6Z
z-#L!+@wHEbI8=dljz1f7S<B+hmZ09DoMe2rfq7};%A^7QOQUmj{3pv(j=Vb0fnFb;
zGuBM{tGlL7J_3g67q^u^*rS4s3}p&({q0^VjW}IxRX$$LxHMZee7(!GgQ#6yUvzOP
zbA9f^xVf&XE~`@c1rL7yoFnS^P}dHDVfKf1!n57s**!VT&Pti7OnlslpLjslRF6zw
z)?BHs_AYX3o*$EG8RNMYLWMbM^>C2?;HR=Nc;XQkgp+jPp4AfXuFVCSX_`Q|)EE2_
z6W)v=K@*g!AL}ddEt>fpffztJ+7eIJH%xpzN6*0dBNy^X4;c&hc%+)90!J9j=}Pw)
zlrJp$$h{_Lg^N0L4-A}Kb5ms}wm2viW3)@UoZ+)x1fnC0$2JC^)Y%wJS^usM*bn^Z
z>7qHB(J}|OeV2!+`<1*UWl0JMg`O@I^FU}Qh`z8llOL|a{r1W7t{$&eJP@<FO3uQi
zMt)czEc{-hC|=itWtr?emY8@6hA>Jv?As<7(Lm&2>+Zznu#UZ6!%xN=fzAC!yW@UZ
z^*sz1=36D0E0knST|q|ZX$mGW;nhQS>w>689_NqIXJO>uM<4T&x+X5Q_3g~ajIeBY
z<N_v;bwG}!o~?!Y;-z=HuD3B>&Nw~^|0M;*gRxQ{9e5$U(ju2wimi4rTx+xIy&+6D
ztHInp_^HFj?1w@B@5cDI6H<8+zhLjhJFjZI_gPYpCYH9i4};$(ATGLn6+?PXMeB=8
zed<`~=+EU{pd?jgm?2LiGzoY?<Bz<+o->hrjd-PKN_i=sU)SZ#G+iv#=zz>3wb-SD
z+C|ABkl=US;U&MD-%Fm{q{$ezy3SA1rU!x%%F*HXvDwB2yNga!Zp8{gwjx`&N#kFs
zL(@i}UJS2rZ~z`cd87fleHe1nK1jrPvc7|<TK##dnG>A$5>F?_RX)}y*Aw~v?|4W4
zxEnCum;SL5Y&?izd9pq4#&(|!gs5?cch@1de#n-LQG<GN#8i|T_>pmT)6ZFSkq+sK
zxf3szcj>??hC?Z%qC#alEjV);tYUe(Z|2S6y`^}F@gJOC+JceO7Ll_Yk@H`dC&-iV
z*}>sn-puX(9D!B57dWSVe_|Y%t)hJf|GYmML#25Qv1dlRauCSkKdXR&B7PkQCv2X1
zjve}|c(22~Me7h-ShvM;&H6k#CpWAF9w!QV{!;&bklv6#>W<syOOTl1>*?ZNsTYpV
zk^HX<^lu>)bggApIwNZ;VNl2mK%0k<QGE^75sY@Vus%-FKdQLaBKz%)K@;DA&F0K6
zGTFQB!-U=#O;e5+rWyIiX%?H2R9witMyFA~^*!ZE`ba;WMRjQ-uRmEbE7`yeKy#i<
zd=Ih#zT=I49H?ms7G(HJWnNJ&3IKMIg7i_wlrl5Y#42#&rWP{>0i+N8qX3%s@Py^?
z^ppU5(rg^{7Ly9Z91}sL(_S!uPOJK(PU{hJ>wl#s5EjyH;kwW{+`Z}hG*LKkB;|ii
z6GeD{niJ_ObMGy@#l%VDAvY_j=6{Yil^L!tE&__F+cUbDHS7x}edt)%Xav$1Ht<L3
zvtl8BdTMeA&2zaat9%vXtrV`$eKhe6*gCO&aU!FTM9<pYh@NKui=M~_^WlspXz6B6
zep$tP>g`iq*n7m0=N7A2VBS)>HEDrasZzeHAZSUXy#XSq(|Aco(SIjso?d$iwt+gJ
z*T%+Gu)-5T<Yb)D0`+qIkJ=NY=)HCOQ;eSaTKGGwm}dQmFt+bbGqYQ*Zhx1)r=Cf;
zzy7-M*Qw)2RZbyEZ2n)82uB0%o)QpzI8@TxJCG#tDU!tKf0xAdW-im82O!pW72~?W
zHYIY_uy+{Oq0)~=+`n_(Q5LBqE*w2?L8#Kl+P2s@d_e^)xG!kL^?V@vum33f>&=!R
z(|w5T8OVMyZuIEwXber{HA*<xb;1H~|5?>k7Nz6eg|OiugG2w{hjW2g2D85+Xtu+L
zRxwML<%CptZ6aM#zf<ri=l5Ac2#wLM?|;p*Va(w`&s*3AeAv8KM1V4uAgV<vEir45
zD49QND8nBA>~ZO$D`3!&=Jz;rMg!A`2pnwWE2tV8+dpc=2;W2~_Q1wt4_WkE#dtL4
zT0s+yAo<jNid3Q^`j|#^MH)(g5j0}$A2s4lp_Tk8c>%U(pb@*4j8;JwbxC`BY<c`T
zmYS6%+*lpn5X5*qL*IiN^Zd_lOv*%W1z)*?DcI{h)D@KfeVT6gdQWWka&4-dS3ynw
zrbAK~HG|u%>{c<&Ea8qYjGCo*an6BnkFbQ|4AK|n+MqAa{!w4hG!xL73R|85LpY1g
zb&?1zAQ3Y7Un1lJRVk$9btg=%W_gWAc45mydUzGg0(sWY*fhZnqFu!_yNaG*(_Cq7
zV_yZ6xfQ=^BE9z}kA-g_Fb=7RTI{@P`@dw!JN!uiX%`s7>HqsQm%_@XKp_E7H-+M<
z|2vcA+LV6qDSk!Ja_{y_Ud=8*?Gq*oQn>?PSFsDF;o!s|)xyXxF0l$GTdv?O!FErM
zF`H)<@5T1x%Si9_g>PO3IiH)Al2pXXD1PHA$a!t?3r0>TL5p97YGHT1q>7QV;_33M
zRglvk?{WkqXY{5prd2EtjO0~uA#f=m7kR?pXWjoXm~2CTbkmNqxZB|cfUn_HZb^`?
z>>??_eMkwiX8bQD7`i^qKwJn;<YO{f9-EX%rU3=wM)LocX~0WlbCT@yXv?-$7)-;f
zT-a;E_$J!_`Wm?O%{~p+FjosK=T9Hz|L?a{gv=CSE}_)IhuBrPlK8w)Ud%<yCBEOY
zit(gu7W1%qE<nN0YFt9Yf*5SPu&G+!)r{v@?2Mfu+UD)UR<XYDoZ)PYE**sNxt{-i
z_HcI`{6wOQd7b(y&Mdmg-S@EZ+@0rpSFt`~Pk{xAp49S^oBylhS!}i>?5`b+`O4+~
zNvrUcCC5J|lFnoW*)gk_XTOBReQda73s>vbt{4ns!We3pJVVn!`0oDM14*BN5+0Is
z{0+yw>&32BoQ>I=?R2rjDqfUutaY9=Vk{~PVTG9HzmJH8ZqS*UMaN}7+}Dg9KI%|x
z!%y>n9X^ts!%G~lL#Rl#g5USQA97c!pECkM?=>#?DJHMtEbi~;r@;F7Ar=+Eak{bo
z-_!rU1}PxT{uPVDB-U%QtRlFv)I#LNf*TD9+57%$a07x`z4l=N*gX09<_!ntxv?PH
z5DKD&Cc{qrYY;7wKkG0y9=op1wN<<~tme80dk>#A6E0JsWQ95NsKb6F1T?n4^&g%2
zN?+n^6}y4BILWqb^50G+aqJW3m{TCfTn2>>%Kzw?%Luy-FLc1GU?l2uo*nZ)OBxbg
zz&LXMe+`LwyeM$T-kc`BiohKdc7|i|MQY*ljsJa`xsDYz%rq!44WW)z#1}i99h9&*
zp@DdpXRZw?-Uo5^Z6CuL)!;l<{NCqw3ZxQH@?vGO+MClZYIdd$a_ZMtY!4o6)#Y8H
z$GL$BEj%~$B_{)m|9Fmx&Sehq1DUNns)G3ow*mfr?~S?<d1O?tU(UG3KbtqU*K09O
zR+o5cV}tq`Z@ME;bU{bHl>lKKh;_rUM3(x@PsjFGJn3I!<afo&A=VA=JxOk7a=k^0
zk*A>;`I!qK+W#6OZwS8lbYclq0za$M!G$fPfOR~iqdZv?fr0-uU_H#fpaubJh?k{V
zD^7Eh0@j+)KR_*}1D^E11gxEUYS@VtKK;=<({z@;npH)=mPFw|L)5@F;sDgC0P6f9
zJ~!aokuyJwy_ah=I<t!R65A&9uz3PdO8*O`bFN5WDvePHV&WbIzIy-YQB|>Yfbl1d
z2lYm)7|-9wPvO}_GnUuM!`Hj}{om}&{Xd2;7%K^m)*Ylo(&Ft|h65+}Am)*lM_HZq
zD68|Y??p4ZbM(-~-idF(Yig|`0fmbGigu~cX>}w!>ip;I(;8poHwdsj2ff~BE5)OC
z|1@f!#07!SeAqM#PHc$q+$b|q7|f}4*NAwM#Fd`Vc;ZwS`?sN-DSMv&(dG4X?mJLM
zPAYBO$7j@irrqCQL}IWWfby~#60r)uN^c{_*@b8KK7TmGFdw=#ocHhfI8EX6RG_>%
zA>-XzwbM;8LKwEw!mT~@ydKnv3GCGdB~bD~;QX2VX0+SV-?LM>sJuW8L{anL2}NkN
zFQnM!b>44t<8<}H&UZ;ZvSFeQm;062xA*o1W3NRZ<Qai-J5*zUkRDFBXr)6jVZ)cV
zX)j|6cile2_W0q!Z(tR9orTh_wv);&tKo<prKpetUw8}<hUOoxwoB_lkzea$@!Tg`
zo!Rd#cy>~kUikJd-ut>z$qE|iYz(C5stZh>{e?qOH9<wKL`9h8)3a&CFDWG5=jNH|
z6LzNMI<`>-^vz&Jv>cTvGtMZ1M;T^1(BM0ZUVip~cPXgiiq0o$%>-f#a<l)mRZxf7
z2`l#f3m*GR2D^l~8g{CBK{H1Z7Ue3yAKOE8TT;gcnJql;of)|mfd;EVj6qZIOc~Ix
z^8&nkC5EsKR{{!UuSI_-72r0$OS-dv|CI-!>_MVKx1)qCd7H7~I32*ZbKZKFAKr^F
zgZI)DRixen55MQsBOas>8gUc9@<H`W{j)i7iC2*pB>jjw-FLrXK&#meb9!m?I*JPZ
zN=V`DCyDLbB@fsxY>4`J>HSdl@RRqvx$9CezvU7V47nHR{=8`@&uZX5HB3u@2zq%S
z?ZwWu)+>9|vsJ(33QI064=Af(iOv+LN^dBN8A2)ZM6l609)<jr(@?cD{G^iXE`_9X
zgCl8}p)l&rKT?~WOla{D1a!M^Gpx;|LEJU~-I?mXZXc6YC&tQXAcKyDzPD7aq??pq
z!q=nDrb5*n`7xm5F<+U3yzp14dUtp&E-my32W`Hs|HgW8rC-yH)ey_|b;D!bWyfWK
zAqJ9Rb1Nc(;-FYneR&Tpo8G5ndwrku(@hJx2KbFqr{G3Fpi~R&x7oATZoom~P}$NN
zchUtXtpt+|BV@l{gG#Zv_W-B$E1D2r;4~Vs&G}WJhISa(KvP6bQ6CcE`XAG6)yYsD
zNcjAM&jximEq7>*$*P{-iS#o^B_Pmf6ZglXLXZd;BI4#bwYTv9%W~?<UEvu$Z%6_p
zJZC0&k<JNAoYTTT(_T4C4kS1a1Dzkz%tAustIVI!52crZ2fILWVrrBeCOXTz_r{@u
za#}8EgixO*AXqUR>S<|%TRCv3b*fFvQC|p$*i`oFB}Z@Vm62{!`gaGh91WD4#9beG
z3Kx?jn4*hQ^=7CX%IS*O^!}t)8u`!_;ht+Qd5+&Q!=iXWPr*BTp#=NcUqQh@#t0Bi
z?I+gCwg?)swdwT;KbhNwp$um2ehL)H%DXd9x>~Uk8rl-pT-5@u=78E8zQnw?76`qX
zbSP*wRuPwyY6}`{>1FGdo(dS`SlQUT^z3Os41*N~%ZB=7A{rts)xpJkypsr0q)n+$
zNw^f#w%dorUP`0r2nnz=9x=&fpQo_D`AF#A+PL`Ve*^;13s3oNCj;m79aeAyU0F_k
zU5!{b$Uc<95_K?x%gccK6J8k&ry@*w`Y*Es7xjSG)Y#tI)~ujfPkgN!az_9N9X2Er
zA=JTrT99YuvA5gj4`lQfVN_-19q&xjZ~JyOFt4whBAS(|zX378|0>UMW(VKF3St)f
zl$wgnh;W)&^qNgu)~v*Y?l`K1esW6`K5`#I@xeaz9|B=`s8_yg77h&4(|1-UX=pxb
z&n9*3=K8adu!xT_F{tjH9+b4=9f0%mfmyNyL;E)+>ez}h?V(y)c)%{p{1|;!I${(^
zm8Nt7Rr6wg)X(}Tc`nPEW+IdDtx1oH{gT368~0-^i{v^`DC5lR<&HWg#DKh`A#n+)
zWn;3b#nFRoPQp3*k(oBmzKoD1Q@Eb<<Zv%W1HD5qPRVOW8ra!;Ftx3Me4iMAmw5C}
zo?Z&bpIxr-WjW?}R89|aEeXsd!TDFdX=$x$O3&4(6iSfpSHh>w@2tcCgKnWy9JA*!
zL@soV>*@N;R3MjesLK;qUE2zZ9<Q@H<4~ZW(&wOxt;G|jO~vx~I@C=afC|0Vk7e06
zfA9|f(|lhVcik^S3He4hIc?d3ewJQB_&>o_ppFh!;s+~1-8SS-pa*6s2S$CVT4%nt
zTFG$n4^WCjTJ*)ux1?<7ze}2uUTK)``80F#mGQ=k#c1<A*y1fsVLs3vhM>@SVU$$E
z$C?|U)|L9;I$0a;15Q_`-!xeaK~db2AQCpdQ#mAfMg>p<!bYMNXm_}Q<mdNBm7fQ7
zfGP{!83^4E{Yg9>bCZ*8o8&+wDyLmThPpkVatM{JQo>7=%4cPsAr<-b+SZ&U^HHU&
zlIPidEB!$#R!0r7i>$wIIASy^AmTQUG)3fS8=q(kIw3ar@J>7n4iy7vT}z-r%b|qo
zPij#nl+TE8hv!x_H1FmU!BA_j_uMcdlI=W{|H%A0RF7Fte5j#jiAOsk9dQ^$(THA|
zAE_O%G|vt^5vFAVbb8^v{uW+X-|!cx?rRQ*3Qq{e-QFG%iE;EE7$9ilc~lxlx=Bwc
zSLO%%De2%qfz~N*>J{`BDk~S`&cZqavM5gbcO~eo41(sLkU}$Nl0n-NMf9$N?%`3l
z?ZXLBrlYMfb$*mc`PFeKs5+dytd^J)7;cZ1_`_XLWKqSIW#WFLSo@445OnYinOfK_
z@MAU`wm;P9jA3l(UEa>GKWA<3EZ=vo3G2E;UO!Lo$%r#BW-YAIWaiS#>^`_jx=i5{
z#5JO6aufR2pPI|DXk5;q#_ByOcLO)r5|7Vf7d(6ht154^F=^x*Y*&EwRKiy>^;TP*
z1eyuBCUA-R{Eu;(k*XS2iO@vj056*0PrdwH4t4Z?idD$Wi?Z*aA6=OI)Ssb=Xoyw2
zwH^;IC0&bL21<7`>)QQdBEXd2TC;hQ^P%F*c%>)nBP;4GTdYj@TJsL;<Vb-6EcNat
zX{3){!+j_X)mKi&nBDC<9je`H3$f2=`U7>dOOLhlyoJhRmyD~h3yIK@6vwJYF2YM3
zsJE4`>R|r6A1&gO)GjVnPZZtkg0mXZ#}-vqjAAfT)C{=?o;inz>u61=zQ2e0WoH;T
zax{sP)fN|AZ6%cabVMbr>sfA}@Y<KBnF6M94H-8ODn~pb2Xi)_g2sqCvi5>CLYh8R
z<9Ov7&N-dWv`;yUB1=4FH23GKkoV&u<AK^Vu!>=p3J!|7-CjHn4uQcCs<{Y-M3oB$
zCv>-EUz)N1$5^h83R+lC)<a~;L)N?zF#;mK9LzqLmk;Mu#RbQ<r=O(6@uBn4QDlho
z3`0S`2+C3TA`$om^Qvc+{$hS|qx$U9zQh&OkoHN*dnGMxFlr`Hm$w<~HpztzT3Ad<
z+lK5Wa-e3G|I#baK}#KQv;Y`>$b@xY$qY1UPnli#xhN<EZ1^H@^A%bYN-Pg=;?Ng{
zMLD|#s^?AR+qp|<2UmRd=M{f387I4l?F}l;4_3Owk5!cTz~pk-|JvX9-J>q!w=BpG
z5O9kKPDSyKNg4$T>?Kq=slmAhp}$6)f#2SKY-WbC8ymd1>st%`*$CG|D;}P*X`2s@
zddj~w2NTE+ke>jD?ao*q)nVjjF0RS<$N`PvR5jJUL}o7`klsZzaXo$U8!Ns{>HzAw
zxFPKg3+@f0Lbop9oZvUFs8h=Gtp~MPUR|)J$)Xv3DtaI)OztFqsND)%j@e>by-O<A
zq(qLoLWg_bkD#Lm2i7T(r{o?t0}M7ySJ^T}t(`d_QRd>3t{2R#w6vF)uYze!GvJ=o
zPSXeqAbJWooDD(Na`FrCcUSKVrd#zCc33P2ywIg`bDCIhoU1a8mG~}$$1yX!#*7th
z^+|AphVeBW#uC6APUO?GOJp==T47_mvh;cESN_8Lt!<gA_)bJBAY5trhGul4;sNT!
zAF)Y^-f&Rc`I?3qCp4{vN)j^FBoCZF+*=W)<{WK^?v-*y)rk)0e|5h8gNj^ay4sUf
zD{kl09a5EAt<)a9jludaso<?tLVkoGS{4)=sS~VTnDu&hH49aVE<Ty~n5Z>%-!S3<
zoZRXiLkF<N7eqgk&KNUlw5kClEFIB#bw7;a4)U<}<>UVBWvV&L_9pJzE}LSP%HTf0
zGE_s^52GW~G5GDtF5Ik^%amY7AD<R(ZN4bwDY^A2{~|O~#^szjjFHb3?5rS>HXQ@c
zQvhAlP%M`h<peXHF*o$2MPA<ZNcLjEyp@Sin%hjzcEWy=8a~PlHXzoD*aCDcG4N%m
z=R@V$!={4}UzK;<c>ML0S6xTUlxUS8lA&qTgxmEbVI5i!6KVzi=QzMjqK<lB8lh`@
zkr7uO-o?twy5XRREXIb&yU!E9u#DBH-+~R_>Rf4P&~-V(t~|9ofe)$_8~s;qcuHiL
zX@oZ1O~7oOF1&N2!hR15EasnsKe$QE#n*gq=-7O$lg58}={1dZ-gcRYsq{h5A1k{6
zx`e4hqXVn*;DFaI(`*~vuf4IM{C#~>omZRx`uPaxc&%Blo9=FC5gL4tG#WoVxigIL
zv+Ffie44kKA1ITzJD&a+I%y{^F$+AOh48$@$HpxfR*^pN=-%nZUk&0sQ;({eV?SBO
zvzmqaE>9O&T%EtlZ&Op=@k+hlHqr!R1*91&*WP#sYdjkWzxiogy?>lIZ_#Ezl1NqJ
zoRg^?c)&uC*t&e3#2IA34HA-fegRx;b@*s#T>{5irSuQ&5Q7zko=p}4mqi%^vR+h)
z^w_nY(z+n@@gg*aNa6BAAa17jxy1uFa8MTZ7=;4ALqh<A)Uk#3W|8#e@CQ{7xC)g~
zTMOkDFr&kZ)=eIm{39iI?zZ<VBafE}(Z^)ivb|=lE3wmj&I6LYacSPiQJXfY+a^ni
zG7~ith{3?FjssdR(LTDJ(&W6CU%s{_dXs`t@!A(p_;TNl1f27V-h^nvg*uVG1~l_w
zA3+3qT`0Tgy|pmay=bc)p+u~`rL@?_3?C}gW1%aak^Eu!IO^EssD!SqgfxMhZitr1
z(JwB}NuN`PkLfDKdD4zsP|&-I+I>8xaE1;&e)iFg^<&4`Gk#g{d!pJYc^3|9FB)iH
zx~(;9YPwRGGr%eZ-Doe|&dPYE-wT2-V_g>m(Rtlyl)ErWdUTHc8~{Bw7@RGopv!<x
zia>Fdg}Oc{N!@fvOdn%-<Y>A{c*bLxzk@)Es1TlgG0Gd&OCsV-re38IAB<UN2l7C$
zN<KF0^kKkiSVNWryQ1m1yAr`4Yr>IYc+?2r=8E==x%T=|a-lJ|cltE`wWA^80L7mh
zf3zriBSyVr;Mgw=nxf8i+5rGPSO54tGHmB3%bBm4nP;R95g)Zny^GWAf;^Ubn`-1G
z>@ldmSFaN}nhdXSA)Qh9qFrkda50DTVz%C-M8~163n73)B9fk?4|&$l1kxoh2t?#P
zThlKTk_n|Ps;badY20cnnB~^cJSO!tXHtpG-Xb?AA?|oOwoA~gP(F{{V$%&q*~y{S
z*@Ot+Sr$&cyd6i=wvspzPW61>64YM!2uKEE<g)~Rdwo0OGSXF8$4_VR-R3XQ2`w~{
zxv<>(6wf+!vysuC6UA~M`}F3=SO+vf`X|Dob1~Iu1#}N^EqB&MZ5o@^yw}lPNVm2P
zQ6iq-H(#)<OL<6=v{`60ZW?=AWR0)E@A01FX1#a2jGsANT=rvQUWO=o-24N9yX{cK
zJMrnJ*ihzK8_>{e$O4d;)-5uO;WAgE0Nr^SM~l<Q1KnfN#zB^+X>C>*KFQlS_A0eu
zJ##qLXUp*pc!+|=l^52AHAQ|lxJzY1kGcjjHQk0j*~YskOy?AUPh490xhs=zOB)K%
zVCQyMcXBPPm1Y685)$a!#WsTq+T5)vdM6)>CgSkyz45x1P|fm#Hz<)6T6UDa2^(RE
zC0UL}mVbaw!SbAh1PdK|8EQ5*s&q@JK5VcJ96&uOSeK#+VbB!22I?_#*1MG)@F&6W
z%il2><RGgUZ4n2m2N1FomUyABlJd||5*1PGqgRe%6qyuC`2DL>_oA<^Tfc~`_>N;+
z=V$bT>wgY~N@Zp`)ixr9vmG5{3W~FWqrp5x&7?Zf;+lpnMEf}3@%!yKV5|3~PlClm
z;VgE)E$Z7AF1qpyW`?hmF0$_-L_3x8BHKYlOg+LikUMVNqEdw524vOms)6uI>v@1w
zdV~$0Mxnt}_`N~0Jx3hc8TjH8>v||%tV-nKT*nnMCyWGEW<8fHikTx%BM#(v1XQS2
zx`2+5f8mONtA1cM7}H%yF|xbDK5f=Kz-W@IRk|lq3CY)ExB@;wQON~vH<pfw|34#b
zXKJ=@?mT7Yn(}gZ*yo8wqqT#5h)68v6n9g$F4UGmpIR0XS-!t;pUFbq>3yaKR3Hu$
zViK_vhfm1Zc~QHrJJ3CEY~fzQW&~=Fx&LUc@WNpj?{I<|6*r2#@NO!tPPGFt1RFzw
z-scCT-e1y#i0WJ5l)!UMg=+Mo9`r=^3(H4)$7yCyLQBQWm<96Uuuq~VLHVIbV&7mx
z<D$F7LIA^U{Xxye&Q|-4{+k*cJ`G^V0>2)ghKh;?&Xc8Ec8){SDFErb#6G+fy`GBs
z-66Cazosnxz3r4cCcl4d<*aw%JDd1W_r<(<Dyvh83f{>5MVyI!TsjL>$7opMnBNZ6
zoN1$>nxziKuSEx?U4O&kr5ymp*g)|xI7L2UN=6FRZ`k$g-^~;w&e|_fS&e40p!+L-
zd>4L{f&P7(oTj`TH_S#j9T^cjQ_9zPgvr2fA1Ng8lNc26Al0^@^NV|v%=?Gx;iKD@
z#<T7HeEg=(HZ%N&kA@QBvCOF_bh#~|6!ES{Y(0OLWzSc2&4sOh8ykK5z;|RO!>Ih}
zVq)@)qekR9{>Q>~7I#c~6`!Mq;9pcb3E>0zFD4TiWXSKb9shXzsOoU=3`=*nP7_vA
z`}5nl*T4?11J0>C0jiF6)k60Eb2m{9CLm%B%3USJBY)Bt?z=<&b4<WpDsd=tInJ$0
zRa&m&UUR%4=bzYY*wGx2J)ESjLwv&I&e!wPgq4=|>v|4(Ccoj0(+;3C$DT*Qsmh)8
z(dK99&Z)lZD;qX9?AQN(ncL6d?*r&d@LzQgdnrfQo1Kfk3adPPI+If-V6eO#R+v@#
zB<=KXjDyZjXI!1-XbBUsiL(;nu?7V!>?>}!cEn=#<`=;*IE3&AR5euMGu@d^=aX~o
zoj?M`Hkrzc?TGsahyBXxOz*Xv5AC1EK3i_VIpW)q_1pMcfwudK-juwhK>cn?#`SY&
zqRSjc`y`b7c}KGTzG1+_U<L)HJ3j-K5<YbKRc^oX%zi?hv((t3-#CW62yDLZXiruu
zrHxyyv_y=?y))_-y5~w$Ny_DyI2_<c2j|A@7+bQIIjM&E!a(lHnA7#yP)rIHUuk2R
zm9#(k0Q)h3I!G-ZG3>k8In)~-v-^;IZQlo90r|XjwOA<N*Nm%y$E%w(-ycAz9-LpI
z_i4<wiV)|Z@9x8^gx}!zDnUOca2qW?;uwz+>(D)QHRyF&M`Bj)Es?n2kUFozL0n%t
zUH<}h{^kmgz1mb`kn7fu8@<#YhjK5!IGp1?95{mMI_kT~z2t6J0Lt9yoyo_|R>pDs
zp3mYu{{AFr^S^)*ZtURN@h~5C>O{K4KGX+S)A4e{t_LS#f5RW91--y{dE>o1yOR3H
z$KW8Kj?K7S_pPwg)x+fqs-)X5evYscBzUL7QL4A(Zj+r2^u4feS$aJ_7i3gP?Xy4k
z<1>V=N+s4T7SlIo8_4u4snydzi5i%8O<$RUklDnwI8yrK7rR3=DA>2X=mACUyXh<3
zA7WzbAy`uPK<<suKS_aHi-b#-ErC162dLv>?|nUgSj?=*L>N3mAICT>{P=UWl%xi{
zG?^!4;TkUH_bg*$1*PogZhzUHiy;#HQhCxpyf88HAgQd3*w6dVB_qd;wc#d)hw-;3
z{ejQf*5u@*qNENgjgGX84bw-PvQ}nM(>c(P6l(psdp1Cc;iq4yhv|`hlyKC@JhS}9
zYr&kA^&g^^e-Labpe5}gbKlIw#wrOt?KQp1fp1&@P>a(}qC4_8$p{4habMnFDN=s<
zUpd{?PhAK~DU)Z+F}P}Tb-PIiN=*KZ-BH;=s#EsUVU14UT2xI{eJA$eC)AN#QIqud
zCxPv_pygkEeEd<nPrjl_V&ZOY`Q|?8txa+zT9^5J#SSLFzRm&Gov-ukqb>4)hQ}W!
zIW==?SL|s9VslP#(YAQwUt59bA$=2Qx9+W(>Kg<MpnU3lP-YqQtZjAP%7p?Fe`EP+
z=w}(eTk(vCuF-bfvu2&rY1VUfNh{E+kqIZ&J;A=eLAU0Yf+^&07_T7r;~AfVqxz1$
zCK1K#i3>wkfv#BG;@3=4(5a}sY3NNNnVXDu-sVh{D>H1F%-vLc`EOHz2}dANS|fA*
zGA)i}$tz>fy(aj;m`plx7}vFYv?vxka{T0YQe+4)G*XW0fe=HzN@MW$FFPBgrsIXQ
z>79N(hY{~0Y+vT9$zx=4eyvFh#v3$s$zOqxe)C+ft^C_0kR6gpt~X*Qw<Azlxh`18
zgzm>f*n@_OeWXxjKX&~7^~z~bD}e|02%gwXXp-p|E45gkd{VBH(InySVXf4kOo{!#
zAq3J}8A0Yz`4CH5qOw~4LW=^nV93>UIG_H;aB`pp{m3Td$$F@5+_I(fu5%6BtQZbK
z6I#y;XNrI99xWH3b*K~m3JiyM1WWfB7V%Ra_58SSal*{@D=D1+eAW=1xwz8HG<R7-
zPz<k5sUHd(g1TYj-wPf7P5=CCfoGD_tLSQjMqlR*nt9~q??;K*HUpomDqS%+#9y2J
z2%>{Lj!woE`z#S?)YfAf(Ywau7bOF2!-P<9^lx)90v0lIjc>n<a0pRL$8JN{El6g)
z`I$&}&;589!vg!l|JUf;?gP%timn@<@2{J;&IP;EQgbr<H}4Oj7okMuX<DXjB1;AD
z@wDMH=Q^$J-3`IZ+)${F1*?8-%wvEPFu$y$qu9xXlVvfOIe6=xiX6f$wc7FygZ}w7
zWejyn^T2W5Z(EpHS>HpkYj?6F6)KVeJJr8EHs?1Bjaov<ROHq6CYcViVw0vLRE`oe
z=f=anB<vdfhwChj1d5kEY4#}{p*9rH7(Szp%%u4>J5;stYYyNlf=PI4l_p<G!RFY7
zgRL8|*rcE8s6>;plv#z{8T@l`s7o!*sM$%8d%SFsk3IyxIbF~oF;%V1efyf(-{l`d
z4I!ZCMNGs}we*JD6>F|7nYmkY#km439>U;S{8GjGV>htLr~u4K+||lv(_@|eae2Fr
z3}@xLixbNBdKq9TreD%`A6>1$)Ho@KGE0jnP3F8wzW_quIyJU0|9M@3VKhu3)VfZU
z4_CnH&LarlM0(J%!b@8q73H0Nu^H_E3f1uYFzgsN0D#r!(4jMmz6*#EPL_ll-)~3z
zNr)f0VVZrG(DiaYc?(&?n<eea2Ry%FUE4rTZ<wq^o>Jj#XR>{0@Xp)s`a+`3pLB9%
z|E4g1B!ioG!-aivph_M*ow?Wvz+hr&W|=C}{}iJc*s`G~sb^TW65791%t_pOrzh8W
z)4HQ-{%(qIdG)owFATIGJE#daF3p?yapZQ}8&}4jSkQ(<(Gs9!PfkuwM|O<*pU-mu
zMhD-t!xr@v@ZBvG=#FV5?;3w5m%y{od=`UT{7D9cXAoyOplN<m&+zI1U_rjT#!dbT
z;41+3ii)aQ=%3&HH4iItHHo~#vXuH|e))p}y2R-*PQSHyEDrXIH#vZT_*zeHsXc_V
z*uQwIcK?I?`E=ql_J+!Li?U*W|Fq#-*t<`Kb()l@wnM^f{N-_xNBW7G{T_5u2|GRp
zCQ$xktC{5B#J%ah1^vLqPKaLZ;FssbFi2cad@lm{`Ry2xp%~A2CCt%92MrsMM}dq|
z0>!pioz2hZ$UVRsc+i}5<c0eWY#$`;50&osUzW_B>I%~4!K$BrG8<M5rYU;C>=Qkt
zYpH8`&#FoGr=<fxgK75LxZjQ&OAwjsKhIHlKfgYQ1p+qbbb`)wKJ+wzGj~Jf5wm|D
z`N;ReZam|7985oO6yPVM<Qb1?yx%n*7{$&qb5q$l<9H6~;_V;1_uVUgl3zt8v+Fj0
zh?JsEkO~q$>y#|r@2<^7O4HWmZyvrkSAtcL=fQWPYY$p=C4zV`k&Ao#n2aXRk_gR=
zyUU*MmxMm%gVBlmFly7PA-RXzpKH-~UXpcW;*~G)|K*9o02nOqwUE(corz>pE}inH
zlpGksg?dt<J#JRrib%Q_lG2BJ95Qe0VRL8X;C%!yC`Mz-ZoMfN1DhO0Sq%3gQJ=l=
z6k|p1O!&jFsr~IDgXT^~t|?U{kY`HrEk_Q!j6>e@i1<qegaUS>Mjb0YK{+QArdB)h
z6}e8x5Gb?Hym4=DO~;RSgtU=v!q5YFE`OngKG$Fop_dF9(DMbS5I+&B4lHi64}3jU
zAB})D6bN24hQ_5n?`jt_6eq3=$$f}v6=_=Z{&l^Ryp}_qcOf3T@sJfMwuFE^b=<QW
zc#>@KMdeTS&%CWzP;a*`sQi33r{PICrt|YBD6Yj5Lth+QOXlt{(qGK(fk)dWeGw!%
zvoF5oELonez3W;|DJ|{fN$VA+ldpMn52B5sJ*wAKFUv`zV0Gps@Az9!0|LJX9iM|B
zyp14?`95<zI`<+UVsW6@o-T|VEc@lVOD^5qmUut{+j4+U6Hl`)gPI7D-7gsi$U~uH
zhj2t@Tp#V}YdFQI_teg8my585;Bcp4jQ@>#JQm}z>Py&+ZTtOm5mSX9JH!?h{nk@a
zf@>tkyxt7U7Eq!H*^w=K>h_ESezA}xRf=rClw1cObYE-;GAAuNjy!F&#c3=gU6koC
zN9FwU(e++)dB$Y9m{w2)A&X_p>)S=SeVe2M<RV#)P&Y?T2^>_j(51UHU`(<R8sv8D
z%`*??qmOJpyenz)z4JSTrdJqgK$sXEMUCTRJF8gZUM+|{j3z3sHR!gla4DqEVvFhh
zP)+h|9G>K_JkLS3TkFEo(grA9pjePUdCnhwM7pzr?DCOdG8`?L@SEJ`C#lT1@(!=5
zukuQsk2A4!)C~Z}1`Fp3_;}A8Yn!928&MtCt7|405*8PPlGLkHYMU?PZWgWwbhS{w
z_%ceHl`|orxy&YdU!t@el&xLILH+{N-c<n_jVv4TF{f)|rOV5tYZnM$s>b-Ytl*@t
z;RIXM2`^%NL)%b}nV+rof#bI{l3V0Uxdg{c!P#4>RduCOZJ$-lFdOm%r>AA#c)<F+
zvGL}|`OxOs2&LXyiF;g0Q97v&tx(6x;+)nz5Yo~<2?BP}nY4HZ;J=;{f+%hy*?O;8
zTeq~FU8Yya!gZE#<w~(-2aL2Z9|U)T++5Sy^@@@zi!HgDxU>4Mn^1TK3wwkxQf;pf
znaAY=!i{36o5xLfUA@g3w>u%;J|GuXe)c_f>b+8-4DX7%6VfN;&tS>v1AyRcuDz2V
zfVc8zXk1G*(oP}NEJMR@mNi$>*f9lrk{g2wp1fq7NK@`w47<oJXN>tJh6rVdO1W01
zlw34VWEf1<c7tbI2tzsS?Aw@)n>=4)8Qa%tdgaRLgt8e$w%wvq`f*dqX|Xx&q}*g1
za`@9HPeW);{O#}qz^HBcHc_R6y7FPG`mULBlKB6GUO^GF+pJUJ`e!U^?wn-@;xXtr
zGiW(WHH%y@^3BIL%!>sQUv&vg!^Z5oYf{Ggk`CUj<+cRq1MuIg$JeGzj*7b9Dd-T;
z>K}cDq(=eH`NA6xTkNR3CCy2bIZ{5S>Xu-ZyNr)tT6*0<-|&&b9P^U~^70?@PAM@v
zC{8I=JhdOWAq7TgrK0*C+P}*4pnBxj$Hl8rnl>d*fa_N0l2TT^2yx|ZK;cx=K8nig
z{=(fO4>G&>%_7Bc<=c3RoV#|F>?>8YxB-+X5_nEQ`EpCfXpGch_lT4psGfV+K_5Js
znTB28Gp*4Hot;-L%h>fKa|aZpx??JW-}R!g?O^N{&Nq3J6bRJ4&p*&E+pafoB`jkS
z&&CRZ6+wmjRMFa35h>(uBLYD{0D64WO;xiSZR|AkfHz3V^U$5#l{A$<J6G<eJat=M
z%+27F!5%9kKESm^%CUo-!8~Np;Luf(l&>z6c?&|a)R?&u1g14U5nuI?BFJ3haj%O}
zjYYeC)A)d8NrPWA(mN4lWC%v9u0l4necE3Qzx_UnVVLD6O=D)h1eAS=A+JINm@Azb
z)#n!&aEWcsgP=rnH`QFm1S5imEHqDAZC!A$={Qb=h)QN8eJVGje>;l`%5t9!XDHyH
zVvb+a(l{vjm117@bR-l?f62B~!D`h;w>+Nzh6mTFKp@i*Za!F}ljABYmbeeQ5m5Sj
z*(U8kK>n-Xdi#|_oqhh#>_#ZHq3kVmcZyO#3YK=D9XO@ec~{q2w0|>U^hLwWVQ~wr
z!1)KBV$_DOO_uTrGSRM5$%Ix{8E5&dtF>72$BdrP)*SA{1usr_(-0;U&9YuhBS5rk
z-~p96wfIU`kcF~uyFWZ&)FIE1vj~YJr!ZgyAl{AqtK?uBb%>Se;(pc}vJL8`Ok2`z
z4+TtNP=*}ic|d+*;5d<-imuU_5H;18%iFM~Hka|MSQB0LeP`JxKqbRK>3&XoXosVs
z>GlB-?fr&zd!n#9!OsYc`nkChWE7#|t`3k<OB^=Fy9`_RXWIhGKu%dDDUO*>4%$L$
zP(8@)&1Ant`>gxBArpG0$EcDOmhlr5^fGm8_LzYq&5J<1+ibjr+x3PQZxiY2Fg}ro
zF9-}8;6)QBIpGUpQt|Cd#>OS1FR6e9zd;11H|)mp28GjlfWQmKKQ8=(l*zUZz%hl)
zQAq7{HYsLr!!zDp5Q>_Ydg12j(QqM$^Zn6v_F@MTQB}<vGK3Ic^ld_s3`c>SaR@X&
zoYT{sAA@*<Lr1dxy4(|wFs{?5wpkIXF7G&{IbS2>ycim;tUIg!(h14o9XN)0AEru$
z)J*=+C=aT(Uv|*6Uc*WhQ4$GN8vihZil!iEfPf;!+*ypuXqqT<+=p|OY!CAAla7CF
zFpbQ>Nl~(c6sR(B*Y@)~i72hgI5l||3+8XxS2@pbhLE_vuqQUP;Fr`smg|01AK3HK
z6r02Ms#v-KHORIM1PAMcEQiG2fbu&*anaV%#%!$L3(yGlCIr%ROo}=j)B3g^fxNz0
z-i`@^@+78jISxQ0LF?7p?Ay{@IEmZ#Q1v?M=pSo`r*yegBDZPdD7CE_7giT{k3OUK
zt*!!CjP)jVpeVj_k9D6rfONx;X!r&nespqLGMF0apE<K8n9r#Kz~OwP4kRKDfU@?@
zOw6qFB{y~b$B!r%R<JG1#`X1(PCg*Lmop?eG(Durapg2rmWF;D<8aPLfzMm=$EYwV
zzMl_)65X7+hm<sj1YMx!$LoX_Ri?uuOu7F^qHOTlWeIqp+e3Fzh6pYyhURHHhZxP1
z?lmLm;uvYhvPb-qcZq+f9fy5KknO}!A0o+K|45FLAEL5Zky(HgXz3bJkNgzo#8Be2
zbdh&KJvNVf(*1L1!y%z0>);U61*t)R4Se^AM=lim*B=$a`BoI7a`OV$atjVZIu$Bi
z-GOH_Y9<jU)4tZxtDBk&1IY86;%Sc#LNiKS-tIL>l%<hduc;eHZ>ZDR9#0KXXRC*s
zc8)`y)6OmU@>DR66{$;(+<eHX*}5&N-d`VdDA%?lx?5LZALbX6@Ket&ll$!$*Y#id
zcuCYRznC%feNTScm9HhiNMA&#;h<+M{LO-9h+N=lz7Q!hVr9E#qMR%8Kc%f<C;Hxu
z9*;PPtJ?Jf=-uO2Yeg=3pkEiT@>&`x^e}+WJNr?zn+HE{8FKs4X;Js*#h@1Da<A25
zl7lX$NWJ!G+m3N694I+4;>Csnn8)DF#4LlUZ1s&L{MbAsab?b7xd3;3#2+COqdO>E
z)g%3|75am#?4NaU12~}~1B+VWGRrNW;E;oA3Fe<uQE4xwp~)(s3mu#*-ndiFn4bTN
z`YNZ4F-T0x6jC>g@xA<T3N=alboK_?QQZT%p!Cb}sy4ouxiTXIn6Pr1t9NG4u6(KX
zpRc%*+IDvVrE|ZZ5a>_xjo&VIV;lV(7e?I|x&%(<p70zhG<gm$bd5!a*1V&Co*}{>
zF7wyFW99uCwK8mlIN!c)X=-s>3H7ew_w2@1E3yo7yP!eh&Fs_KBOo(FbPjGE^`OUF
zZbBV2)LPHayJ`)+-$c4w@F<wOqwAh;B-=o-X(JwiYgYN?4Gk_icEK$h9rJI~HW*kK
zAwK%N4^^idl(_}S=^TcOG*)K27{@A{j2f}f#*gCrhP{>Z_#8L~DphSN7#gH>aczoP
ziOpyplUv>lH7NPK{>$A^7|&+6hN4eG;%tfRYYYSV4it@e3(?Kcp4>A&;HL`Ok!hUk
z%}bgJ=YB6nc6mVu1Xg-Ox(E58u2-5kB|0xtq0@%1E}al!#WiH^pt0X?p;Up35npKm
zrsj^mCmEBm5X&?I2W{&`Z%ssMX9_4xLdncPsfG_}#7}$J;rbCHd|k8vrsSYB!CP|2
z4BbFtz6JZTRb#;04+!8`OiD2^k3Jo%$2`n!IoH=BCUvWrp7)hBCtDl1(g6)Ob4a!k
z)q1^<UU~@OI8iBD6oK<|Jffy5hfeXPZCNqB>d$B4$;uNr@CMw#W`*frf+u+j>C=4e
z!@}U7&LXtkBpi3JG@dN9!@?HfWjLQ!YlLpb4AbGr_Vs31YTHl&j@!P$`<>F|E?hvj
znk-hP_4;0<5h6u_i^2V5RVr%OkfNd2P{3IJY%wj#K;P4Lg(?p!xyRt_`7H5R4w%6R
zUQ~VAz<!)+WdwEIo4s$HCKZT*|NA8@d}xD$re5J#@v@lAxVr)2BdfuDk3c}~ha8k0
zqk<&g&3VA36eQFfcZ35{CeFKn0cj@b2o_K+!l!j)B0|Y{!m}1(%g^*bpb$N0)ZgEd
zHnmWLj1CoJ<2!>Z{ruBDOSI>-<T~M+6`>)y7YuHR+z5K!3{}b-J$2e~;1W(_*uCF}
zO}Dc-P@R>jS-5M^39HB3O@9HpCk+U9U)K=#5(K7eyrnwj?sH~s*pHPZ1%PT$JW=LM
znR2RA-6Vm^%}Y&3uG7PjGqEEzO_4E72NC==x>Bm)O~!|0?%aI2zHoE^qR#pH2y@iT
zAR3%%`)*-pWqdyP%=kA1)1|@`st&;({5r_Sq+8F3BF;I<fwEgbW;_3v1hW3t*&sOI
zowD3;ft29-ksjHQBBN*cZM+{ZDYf!I(~}iD(LnNHG-KQbsE+eM`9k+8Vq+GKlvtdo
zdnd7K8#mvZ(cYmiv5#&%KYrmfImJfBEtCx83}^4%IZjKr^>}3WwY@oW?aq5P!~`4~
zd~)@nLYIC0k`0~0<JMM@Ig$Qs-Nfv}y^?bw_{GIXBJ5+XVX8OVlm+jaSP^oQ{O@zx
zSU%YYTY+_P)R}+Ud?a3)aIY-?)bc|@Q}gaTp-F*cI|Xqwep3BotyV;oS!sH-OBn^%
z23&4gKX0>OTzl4yIg+z81N5#duF9hQEUkxs+m`N=v-@s%lHwuCC7Z6fV-8OX{G!Q$
zTq@dnOMTCmy>!1-2i(fnmyr^(lDGae$5n$BB0mHlbdSC6D7hq8(#&|#@ClcFcf*t6
zBO95VOD5|n*heCzFyj$QzA603_{Ub~i&mRAGrj8z6cy}f0p0^b>cB*1sN#h8+)v2A
zSMRA#m381bdj@s*kiMd;j@HCTNdo=g*!62rYK1eV`fB!MN%sXYXFN_pvzO>H;UD{+
z{|V+4(GuWN(lPuNH<=sxM8?N&U9~Cgs~1YL#+x>U5bAu_H#FbG4itQ3a%b3_><S`2
zB<?Q>WM{inTi2!<%$om<G@Evi#+k5q`@Q#*^2e#%PmcBDKX7gzJGtC9RKR+Xbpzh+
z6`BbZ<<}OGnG@_DEDQWb7gh1ks`GNDE>PI9E2A~7A!7&Mc#)C=Fx4;Mq~5r3$Fmod
z2~pni{}kVm_pUKitqU0O2qP{n;C8qcAt~<Eb+V4_?(+pbi{()>X{Z(LJMj5ys^c6I
zIQ1Zjz}AZHy)Lpf#qQ~o24f7t?Gx9E$SDu2=&h6w3j3{Od!M{c)@39cUu-92({T`)
z5*UCQTsRFqM{Zm-d1lA(?E4$v7<NbRby>W{Q$M1m*~}KF1CP~m&`OfeEq!3$?Ucsv
z(%i+oP0Y_U=J}uy$s6?r$re1_o<UwsJ1{cl;!@t`NqiJ;I3FxLGe0wFaK?sB>5965
zJbdWzF%I#-&!L^0bH2{7&kx$uB$#~ExuSq(!f_ThC&5lkYctnzj&Db9zM?rfZD3QA
zYu2hBG!mx#IX4zPHm$8!Q57U-Kx6adq)J4`xOe@SZu^v-^B!z9uhBhUJADsOkp(gw
zsjp%PI~p{gH1vv<JnZ6u&!cfXu0Bt;uOXwO$jr=o+A;6?*-D#Z^VSUGM$gjOuihD@
zOr(1XYatn~E_~YJIEMvJhI3Qv!RHo{Qi;#(Xfw<|Mi=EQN_DxpJK|r*0(<8_p%7xz
z9+uj_$5msa($1$XhkCzWoJ~Z_k&bu=*5gZB(ML*^GZ8b532Uwp1qQ?06jyLY!e$cL
zZ?7)~Z9pn}j>6AAjd<;olFXeRO<-`~=~t$#O^agQbm%iTq%FWDaFVZI-2C}G5?9|B
zQsHC%_-kzB3qs+<qF6?W%pIk>RL+r8hMdvsN?_JyU)-aPtED($u`o5LIf6$leM5RP
zOlEiU)raK!b|;OFzhXJz$~P0<Qzj*zxnuuno|G$3Pz8aLoZeg&D^a3fCwh4!dArV>
zCVpgBJ1Ow|5xD+Sve0InDY+24Q~$!b@UqVJPJ6_K7863vTHZAYY=sCFZjSnv|8j0>
zU$3Q@yTRf{avk0I4~x%+G0b&o4!Gk_JJMIcjEst*(Z<q@_#nKzv)E~mc9ToNv$*xQ
zwe|`+1Rp|4ilKe9W8Ln<8T?`;{X51dt2u`=?Hw?q&QXc(F(@3MQsA(~*>8H2Y4?$H
ziZHLU6|~dUzS)Twd_W&+v*e&Pzq0W8jaX=7GM$6bAU)gEXeD->HU$T%DdqeQ@@*VR
zcEm{&FWrzbnguFHhobnf7tJ@;mfQz^KgHpaBrNW+*X47=yg17mX6?{Tn=G(^y(*|8
z)hPPDqa5dOb<V-lEN<t7q{et&T1+`6^0_a3E|IxAcK?;)4e2LjT{Y*G)BHBFkJxUj
zI3>MKy|3$yF|hDARGX2N7rTpAMo)IwBXQH>@&DJ}SB6Eoeeo*7Ul@D@2~m+y52B=^
zfJlvjs3@S6NU4ByNeqpnpkjbQNMq0f0@5j1v_Z(w2-4ks*M0{*o^$5Q{c=Cthi?qC
z=Y7{+d&O_X-dj<2I)SHYCV4ijm0)N8?mO{5av!$L7qSUo+*IZy?TvP~xm$NTT=<T4
z^z%U?F2Pv;%su=?Dg}q?(LFg8b+XSw8$akAHv9PQje}eo4?c1a(V9Jrx4R{<wO2z<
zB<uM`gZF^BBKH9I&JC&y5OrB-PlZ;$Gt9PjHl7pgpH3cluk%q0EOFZa4H)7r1xH#l
zXBPyN^1Rr1Zc5ItE5?w(Lv+A=kb2M_VjsPLl}?+Cjb>7q5c^z8_vQ^G+c!~jlFzm>
zaX-w*&lI@M)Va<KxdwD=$(6RH%6hV*n|jc;0<YmUWxUEp#F2Nm5~L;VdkPJ*eQ>Rk
zOM`d2OL&$0^1eBuj?ak;mp)9{w9k)ehU>GkQX4?eIZGbaa(W(|coa!ue7CYDF?~Kj
zN3!Ed0CP6Z^XHPuU@}S4SIvRp;C?FVRHz=C)k!}|uAHoiPvYjjSw8kj4Rtirx<Yf;
z^jb#PB^kMqs$Km`fso&HaNn(S5$q|Wi9ShB?7!>ep^|#l9!43X#m^IKog!4#rpu$0
z!fb>`$cbcbX5i!Q2de)g#?zTgWlfpwlGWFFlvz~&(cR>0Kznnuj#}el#qBjjDQYne
z?fISot1h>lYC4RLhCv&Ie2=NKA`>z41(ecP48?V(%->ym!bXDj(%&DT847jm3Jo}w
zKKNG#;J+eS*6%h3<=@7+Xsd6RF0sTH)oT=tC{3^Rz-lQlPv~T7P?y^jd$%Z~B*b$2
z;&9y-9=L{eHaJ`GNkVFO5VX;k;s#_$W8?2-bDsD9;0cweoe7*QJmsJvY6JWL+l%U_
zn?=Fhezql!c;8y9FP!pq&+)dQQySGR?N4l^Wo7anuOTioe{aYTq_%bospjwW)N~9A
z6rJ3f);qXtR@jP?Fe~S(PiXp6Z{z#yY+gUeoV3R^|D5V9;cSj`osT!Jxp#x&b^K|n
zMqhJx_x5Qws-#eUxt_^47B5st@|9#uQ-iYXyeC25inh{h<ZSgA?(8qqycBzoc0*{5
zRh<uA^RRt{O+8u(xa$oth0$gyJ0}&cn96I^N!uLS7s9^XZ5d|8+Q?`C_u?!IzS6y8
zJw*C41#8(Qa6r}hbek4)a&Vr#ff2!|skzb^K#WdX^Ra#psbR_X5bvr0IXZ3Wg^sR7
z`uGAuFgZQlBMM8N{KZ+HidyC`>*wP$`f0;_ruomlt5CHsT`v*OV|BRBFvzlW16_6q
zZfOaij5JMp5&dznbDD)7hBhvFH!x#dG!HgtxMV~NEUq56D_>s&%}t!P%N_|@ZP~uG
zV|97gX5PJRY5j5^>^3XS&%w~Swl^VR4CO4eN{X%5jE}KSE7+0)gH51Ln^JIc*NgOM
ziYtqCb>|F%?lG#ZC%TsiJKN75aPb{<z{B$1!OPc|j)sH`J^frS@%jQW*>~~0LSx-g
z2S-D4itPZ@q^qv~h=9D498p|@LC8V$`3U!CumIg`OP9XAP0!DI;smMeZGxX2#zq?Z
zb?LcoUTfjk<o@gRJZbu%v(Z6pvmj$Ev}q?XS?r^uGQ=G$9Cs1#7IM1m5I=R>$kolV
z+;3<oNyL{*jro%rc*H6_VUOKSzO9-`)<i3%S<*A+_1BuKYq66csjJ|WbV9}z*dc+J
zrir#<cQG8N@e)4g$3<<)PUr>LWjuW7Vs&%5%O>v6v_yXwHZS?eDGQnE(g#H^($;eh
zn_IoJG+qG~$nD6n>tCcU+jOBNr;W5J;*I(aM(QMvQLFYJ2XcLf_82W|>;=bG{Nmw9
zD^BO>mkD8&w4qE}@;Xz5BJ8Su(rVBmyYYu$O3<3iOjK3sFO}qY740RKhs;SyOc(Iv
z8by@I7^+ZFchDhy3t^QVlpQ;uc!gS#PFrk3-{a!EX`asKlNdhW<^Zw|=ZmONY0|&p
zY@AH=*3c|sbSx|q|DZ>jsA9jZw7tT)RbxBRlO|v&Xuj2U2=`@n-dDR&Sex6G%W16c
z5#4YdLYhFDGqkMNhvc-tQ5$KSj3u26K+wICb^Vqv6BBOf%zX1|)ynmlZ5TMKt8g7J
zjPtaXYN{Bm^44&lxjrfGMX!Bep@Xq%s-vnqk&G5Pz%adIH=d&&W9sQSJUg+l9;a8b
zXW5RbJzPa!EWf$MNgz32SCslZ6D?uf_3GPWJGRR<+w=`9Y|b*NU~7@i5{lv=X_KFY
zZnLnvwvLJ0`UG)kI!8}y)V#EOOL~N6TVFd{Vb;tS(fNRI8`&{X=Ngr^qS1U0&E=30
z>CppR;Y;ZTL~A2&YY%VdA%_-ncSa`^BFj?}Om{vkD0+>v%4tw8Er;u9-2t&46?&bV
zFS@v>LqpBS_qn+_-MYSlx7%H^X)u9TKB}IDe`Mr-@@+{4RXbTRL9*TB0pk2~E<;;g
zp3<e3syK*ZR0kfPXqRTm0z>Ir#d!!ks!x*7^q`Ep!u28vx`9KfU6r*rt+u+HV(>jK
z3>x67B+;bO5$bS=9fdJ#h*v<l-@m!|jGBoBK+a&Le!+z?(uqN7wk-D=BR!p^iVy3|
zn3}$w4Z^EYZwx!M@5&FYX{GFf?%UxSn}tSl{blJ1Ph!hB%{j>^atxu!%um#GeuA$H
z^Ct`TF4F6D?pc0C4Z2MD6s+OE(X2c5?1eLx(GFyk?hpRp3~>t-jtH-9h#p~^wvh2y
z_!*t{y*iJ4!3?A0u=M`We4sO)-gC0ux7#gdq}FH5jB%!_W_epdd!n`3Z2WM?Px(k2
zD*lUXd9QmOnaM9`;ch=YdwMf17hX4;aPG&H_Ac^VRl)wmIaKA*vG6b!jEn&oRnQ%Y
z&A&>t9?#;c%5ei%ILIM?@31K}C~lxim=>bb>wp~q!Ab&NR)?%RGzeVHHn%t`WHINl
zmMR7?W|-oKRyguOg81+y;KC#A_qe+11*~gd({n}G629LfDRL$?RaqRReop&}lsi+~
zrPM0*Q`S_*$NVIB=*dNm2YWsy96`95TM3pn+)a&@s7+I>aj5`8U-cu@RdU=-)q7lJ
zEFofTx17l4+}pQv#GUxCV9~Te>7`ZowU*a|dx_v+L3}2c^2^ES8MF#QoG{ivHfHY6
zj>LeBM1o@8*SmL$vgx&3YP#FEX8MpOV%!E3AGD@bLY<%HaL(a?!Jy@`)ELWc<6gG1
z7xLB-M~EGJwdCvUc_+yoK9Ojzfwzvv0l@0T^_Rn+x+KeOB06J+qTOkuhxU9~^i4Ar
z*~1lu*2Iyp{)cdp%JLB<o!I)>xAW9QcKPLb(qcKiY?dFnVY(0XV9~!2-+|}Oz&je3
zJQOX=dllzP!$h3JHHl0;))R1YZBGhn-;|$1F#EA7Rt*IcpC^+Uf@Qd+p1drO_ayAH
zuI@C`@*Rw~Z+)}U;5CA>>mF?*(4PO5>1n2IpJ<72#tAsofl7~K%G;WE%w~A0x?oD$
zgoEv>)*bu|srPOjO`*={g7`<h7WUiMr~hK4b_cKeQL>R<BHE7(S+G84Zg%jLx-8!v
z9G~#SreCq5_iWs><UD)eo<n8o_QCfz8?>g+T$+DGkT-Yj|I*OfC%*8!rDZ(dqm-(>
zan35yNy2q1&qy*_V?}nPVTC5|l-`33c`ClKbeC-KV&Y>q1ykSM*5EqY<2G6)yI3qP
z`K!t7sSrFsEaBa#*eW*VCFkoYd{(}(5vQ7p&&q6T3MdWYkS`<0wQA7JsRqqtfWfkH
zb_7CxO5gjDh#>`C(KzYUqWTl=KYM2xJgpKfWm9Lhr!O@!&pgD>^mKidwr#yIIX)jf
zLAZ9$)s9W33Gy$+&Hs~qqcBI0nH_{XuVfwOc7~69JNMbnJGOr1bDjJiJ657k?IE(9
z`$BBVru-R>Rbu;@U2?=192VmQMTSh5T#r5+U@x<pCG)1oG~tjIuxgEQoZ4rEo_Z2)
z7YaNbQ}JXCk(17ov2%(}!!Pf~d6yEJIp2i}X4_$ojP^=Ma^xhQ_w{K^)wAn)N7R(u
zy##_k6mFNUlrOq4Bj`j0&*w_-RWjuA!7fXL&47?b?YF<O4%$;RBlCY4&uE`7RoI)Z
zA&>0$ZI{ygf-$dbK@|XMT(cMUX^YYn2lgC0E_wA^W4o>u;Y^QKSaa=})0?xLD%k3W
z^mHqaeRxHVYZZY9p*eBT6ThT%Y35d@Yg9rfkD;hpp?y<e$zW&k`mSPT&civ1ORY<N
zglzf&36hA}N6(SG=JhenO;+Cv)oqs#CS0K@kR4}Vk~}iR3z=RN>8gSKRqOS10@y<!
zj&Mztc(e#RXhx0PrPmf6D0bo1o4&{6>)Ukbub0<&5Bt_HGLGEBu^h5?waO}QjHq9n
z8<m)D+Sg~x+RA=5`2ul7x@Tm|!=$04|8WZ3BKLL6K|FrfH1i4_3ooN(&P0i3CR=X7
zdB>wv2n`<^O{f;yQnOIS4mkxgNvEu=649<3lDU$t(pi>eb&uM|EoGn1R*tYVdrnEK
z2&yAA5}IjiS|%T!O}42MK!5LK#eF))L;MiKMQ7IKxjLytTw%M2Q&Me<-mm9qP!|TV
z=GB2*4?3<vb4jPpS5vOSLu$l2eMz>V;D&{&;RwB%o4LGt%tICtJ(gEV?{Q6{y?tP|
z@|~YL+LA@EtpwQ55HiC~MJ>W|A<t!M@`a4nz%_+-C)%b%bK@SkpWzz`(|YNI(SoVE
z4ZgK~{wxK;dA)6<t&JaXn&YP(7Zhllo0<fD*Tr}8h3n0@>3Jr%lzzC6))w1!x5+{s
z%Kt}D>SKL$v+7um!r&~Or<8HqOLwJ;{AqE1_id@!Jh|PTN+uF5W}9hSX<8gFRSs}G
z32t%v;cuw4Xgrl!ATy;fJ1EA-r^zi<fFO@3*RGWU0d*DhGZB2QLmx3W57C;fPh4ZU
zm`znd_eOy7yniK|tNub1Lv@y@tKJwxg5I`5C*zreJ#{7Qjgmgmc3D$DwHY{Dr-z<R
zwkKU^e^l0PR=DHih6o$_=~BMS)5`j#RMTgBTfb&RiTer;W2s{Z8v)x6?Yh1IeLS;t
zuZ(r9$Dc0mapH-dx<Zr0J{mXDn=OB}c@tBPxO)B;&h`6E%10o6$k<MLEt{O2bxW!6
zR&}~ylc;`2z)x$!r;+2N<#5|!LiAGo^_1nUoH)&ajgcc)Xo@YDNq3DTa}JN?Mz1s!
zzC^n?6ZEbEbaTUUq%)zp_jG*sh8Fcw7u)VAUZ=JGEEnU(hm5tzi5<NqYF-k;oVg*S
zQG|!uq5YTv09@Kah>L5xjR)T5dah3l-FDFRA#cTwh2U=@d(ZR^+9!MUdO68RFTdT_
z?Xp{s{k)jCrKFDSqFV};`2D%2=Q?T5*0D}l4-f>1{UA5GykY=5{aI;S<>~cW`5i7t
zTT|I@>H!nY=<cPL`C$I^r(&6rewPE5^!pon-Mx4fUE3yOmK^(V>+k2k6gn`moBH(T
znYR^ISEn@V%a)WcUm=4XUU+sm9FDb?ssZP@p1Vb+{qAE8V^dUPB?{0$zH3^x-=lF+
zmyi)?jddfgAyNYbp%bh0qhpLsz|UAV)8BJ{+O_Qrq{F}fMB``d`sNn-`<>G#R{Co3
z9H3wJ_z6g77;x`%YrIf>O29TH9%W_>c8?6)IP&o@NhIqaKY80$C!7LNo*cus6CZg3
z=~s!{D-o^xd$DT=%Qn$Yn{H4NjvM7OCg-M5G7paRuri0V_*eM$GaZ9h9;6q$UNxv<
zrDi8+M<YFuY|MzVEfs|@0nvz6eUsomWa0sObLqU%meTsJ6h0NKr{6%BF?>$iZgDs#
zH@C{wew>_HypAt{*Wj#(0I-$ihyYJP<QyUKo2Hky7fX>m-b}mPYz!VmEzd8Q8O1J;
zZP)>+-rFY^(1VwDzrNb~6%t0l6Jr&f2&Z#vp#1;h<w=FG<}i<3(^(JfNBGD-Sdw_c
zrv+&9c!hWAPI;@qS#D1kBZR&_soLg4=hiCmIzA=v<O|Gvt)()8oxYM<`;&R`k;jR%
zk}<6Zf6{vk)t<q&23%vx%8RQu;}4f?uz&upKPC8I@doWXCJ0|Tz2syoOm@Uz+oet_
zwq@ApX{HlwUMWP_AoBvka2VqHz72hYP{-7|G&<CPY7^OpA#{ia{Qszg1!sq?6Fl>h
z(@>TcMAZq#j}0aF0XirwO7Y16Ftm{RjH~>T99F_$JbAS3=YG8n%N(&wfd_}No6ev)
z0TNB`C&i#pm`y9tcwo8CMo;m|=+(!Fo8&~T?!~!xUwksOlOp;MS#XgayyvbZ+My4r
z`;p2>jex~N0uR6HGzUqbRZs;xw$XmFfT#OfT&f^>U6f(#oOTrHvIv|G!~5EK__5Xf
z!Z&3JhitL(Nhiwk${JJ(gGu<BD-^t+{3B~<Dr)MrSU_j6IPXTlpFP37C37~fGr(y#
zRxD#>alAx2+qluHuYu=N!V25`K=$|AmqTP0n_2|Mu%tNdM!AFvN+u9hv49vwcc5SX
z$%LOPUDD|2qlBQUTQKXHNc@FE58S4O>mSUh^7TuPV{HR{v?%s<8+4IzG#SO92#C`z
znAC|%RnX*G#zT&-tq15i<EwJ2&LBb}JE+7T%oan6t2XOS5GLqgSMDLZ@@^6uCHw?l
z8%z&0esGKGpqC|Akv`x&KUx&NneYZI#G|*rmK^q$K{D3=o0&foH=|b33-)cfS)%Bs
zZ$2Sw2;nt`wV38R45U`%*ajZ|p@ALLOa$V5cFtg#$PR@g<flKSY8QIGOMGK*-w@xA
z)3K+?Kf%tk8$b;tcXsTvXza1>k9cY(rH_FO8k*uvWsiax`P+)y@7N6P$1Vs2ZQKvj
ze!uO?VMz1xe{QjvAn<$CK@tTgM1K}*FxpAmB-=GNIj`~4<r(?zAW+OrK$`EGv1)iz
zY;uv$E-lU=dwI|I;X5#99j2=Hog0{`JPT>B`sv_~=9RU418ZqAS#D0p`04m1$gOC7
zbjv>6f9wFlu0&lX6u%}5xWo^3wx1EYR7Mt0>MA&Hfw0k04C+Tk611TMhxdbMC2w=M
zEG)Q?hY93C?Y3vVnRzbO%@W%D=9tw2%Lp#0JU;9$#1<07W_hjfV1h>p+g&mqnq<wg
zndpwO<nV7&EA_+_8VCU0ndD0r2h)xBrB)x(v1|2Pn$%hAERL9K43Waq@qT_iTHmhT
zFEmAf+A+0$40GbK*GdFUxxn3&=>mWWH2dX_dnaz9JQa$!>T0^Py%>fiNax!V9>lGH
z{|D&kne(mRk&Iq1@~-*;nHChO$V}Hp60j#jt9x~p{STrj*P(>@Uz>i~7J>8AW;4=A
zXm(hS%oM!6$3@Rje=qy`LGm>;yREz5@dKzj=iPt%6h<QmG_)qD<;q@_zm9)PrNv<7
zYEZ|Ko=9hbC9XD6qXg^^afU&VrI{;Hb}O<Z05dZpc10m+5=P=pd@?6@;mkJd_)2G?
z&sH;X$LbbRp+dOOe`C`M6Yapv_fAz+&@t|j<Ce<5+*fxl^Fi*L?*3!RnC9t1`eg&{
zG!CKHy=*(su@T4!O+px5Tm4lMm=h_EVo@js+0Ia@3JVJ4V{7dC5+%uQN&au*XK9Pe
zirtm~({*hqi3BE9iCgOQB)|exqx03~cV3H(PR%(GjCHV*eyxUbaxf2g86F+AaK-}Z
zM5GLr1usKkN?-Tltwl2qji)VGHEk)bh!E3~Wmnxa7g~^y9T^2`0(U4U4J;*uuOa%;
z6o+}Eyk+ap@#Wr}FW4rlA_-iRc+_&S&H<GI<)@P9?eHT(cvt$|Wij}0NQ<Z=pSf)Q
zg<)PSg5Z;IHUv$gsFh|Y*lw~ZV6TzO(J8Fi4*fR>xM(yrihSqEW0#B?GuSpu@4P=h
z&qT69j}0jbV@?juc5~ep<DN!tKA}Dj9E_^lKaSL-m!_EahdZcxaTckr1v2uHkgoJ8
zbR}hcfi!=NZ227dVr3XA0g*wKcQsU98Dk@hhF(bOYA?jPd|>6=vnOH=F`T|hY=|F_
zSwB;e+Q{Rpr_rqN+~{Z@-9=<6kz1ZOE^mA9OZUUMVB<8{Asoxh&zbTMR-B}U=Gjc!
zn3Z-jD32i6z-E&#3P0N>^t#))TsT0=9U@(tq$GcE0K@~dO$TO4)(nUAj#$jtmtpU^
zjz0$i|D2R~0iMkIy}o6RbhkTctNZ9y^_SR%t6sDlf@P3D_0nY^cTAuHGUOJO-ERVi
zxt~L1UE-lT-4FG{q=)_)==cOkpOoKnAAqpwRdb<Khf}>W`CV&>9uPk-uDdOZX6Zs?
z4*Mu?vG61DN5R5UZ5-ry@Z9>uk%gWJp@kN3MQO4n{1|ot-etkuI&dP=u<jFg@s8YW
zZ!Gj-W$i!ETSbAWwZ&g%D@YxP8~GHhEAhmcjH7`4n$Q(l#Z*xaL_G{F0_iESc>Jms
zeF`c{-z75(=_vsH5%m&UqATnm0XyEz8%@E-*n35i>(!+*FDZj09?-hY55*fQ8kB5?
zEF)*XaYA|T7jgptaJ&y~o!S+h362v_qG~6`x0mb!D{W5fci>^>en>2uHgea8bRwAS
z7&jp?7qSuH)`O)k$X7$BPMR{&R$FhGAJQuj9gW{m*LfN=h?;1<E(`EgBjotcc1xiv
zx{*3VG8xX$)nrEw#Dq?uL3;j6!#ZK8xiJNdn*N37mLrCIbR8A$_ppVs!JDci2o%t-
zXjuS=@n=lp$R;?0t6>2Osq?t`dX~VRpJ%S)lc*TZ<eEUu6cC^E;YUuJ(2roPBDVoo
zOefw7AnmX~*#~fqqi1WinQ``;PRg~F{iJu#8F69X_$p~?@3#T;6ZFDmbVq!(&H`p(
z7F398E^M+8QoLqTH2h*24i0e#V}ZwEgG&DOKEsPKF}qjFSD=*89Upi+<P2)AsbvDN
z;E~1k4GL*{eY^7cU}0Y2VMQQ4HVi8YI5^&(^B@GR*lUX#z-U#qQ~;O<LDWF`<r31&
zs02Z;r6wlT%#nE)6rG9S8E3(o4O&^*e;_wbfJcMlM#`i8ao{cSCDa#v2c2yv+eZ9T
zj%&=L>a9I>F`)%jgP^`@@_lP%5&3=K*T6DNZc7vg*N4AM)y}Vfk5KLIytEE_QeGcc
za0c(o%}Q+K)!uKn*xxQW>=h>I|7$s*@0UNe0Xy<#J8>5;!voUHM@UBmmUXmB(J>lF
z;%SE>wDuWywaD2hDxV;ypg{fLgqeE0>oKG+wnXTdaIv5LhGcD>#tbARpvz!dDgSck
zhaEezsuxsaSKtoVLU1@9PoQxdIP+POibIFjXz=Mw&j3;5pj%$5&2{fh+>B=dSqGwO
zJxUGOmW?L;nq?noQhX!(0f3<Rt5oZKhv_3+XNPLoUnEZ9j$_<eukVpP5eMa0Lx-y>
z8-GboH%LynmJ<*9T!S?efFn+j+&z(~h`+QOwE1z7#%;F_NSjr)O5~^IrpXvF4*%L6
zc@j!Kf#&^ZPy=EwJ*ui^@`o2f+Q`LZao7Sl<X6;n)(z4<D7rNpJ`}u^eHuH&5CNV!
zw5jq(j}8)xHf?J4H$q$TW>S`R$u`G+D#`+C6u6~$vU|hCr_wXS%O&1s{F<r&cn8f4
zH54zNJRkWYK_9H2tlq*d28~1w?hZHF<IFQdZ`f}qc}Tl<NtLGgo<g1m>DP03<MVy&
z*ikuECn6Ja%^JdIg$3O@K75Jr-Mn+l9mpE9()!A}LuUcX=jqLdr%Ala$Bs4vDwSiw
z$bJ66kHVt3m0Wf;%G0LdX!F1^0)k7Oy#W~o33uCXP#QZg@#HCahZATh4*1Mx_jWrr
z+ZQx-gL<P-ILNhVipuvBaD=*Il>lS7(_Ckhl~T*$u?zBz@?0spSR){s_Med;t*RCz
zSu2m#FIz&*sGZ)%ND;Tdzm}?7$h!HC5}3o!uQ-^YK}BP}>5{`Qp2dUK#kcGj$0C$(
zbZ^3>L;xQ%GCIEN%a#{xAr`Ht9tv_D9M-_;<`Yh3Y5eH*IpRUiQp4-5)q(o7j<G99
ziDRGR@6f?&ZP3%qcPnP)y2G^a2)RmBlH#hKukx%sJ5SO|aEuLE31jixa2l|72kxL7
z`uU7J5xP%KSZ*KtK9HNl>26c~ZGG}z%Be+=a)sWLqn}bC^|n0fI7Z&zgCxZnWV<h}
z7i;m1JPeA#!9Oj8w14=_Vlou+{I;jYh85kWIjYDJp1IF`{B!<C2aWF6qRcBc2j2qZ
z=glWzor2I8Zq1e*)cBD>ckDZIZS7LUt&C7P2O|j~MjND_E`G`3?yRZWxWc@(RF6R7
z9=*k37x3aX8=Ev9cK#L-5lmP{8Mu=(&nq6IOvf_Rd`mta4IB(2JRf(w$sk+uOYq77
zfBH9j)WYXTb7JCc@mnW{K%-h9&gS72HLX4q3C$?2Va`9;6LhsxU8+W_rc!;cq2ZX^
z@}X_u$_LJPAtBzj=kwPLL#PmSv$=Z|eP6B+@H?kSM+G)wVJS}Bvztb^MLHKi={g1;
zWP!+zB@_-PB^=&LUePWbO3XTy-vQ{HYxcD^5Vv@NZimk{6_y^^v2Un?1}1-*J>P!2
z;Pf3eEDA<=U=u9j&Ick`x3KX;6p~x3B+4ewPyVnSvXRVYNsABtxxK)`84415no~8M
ziMt5f8@@*B7r*|^M^RWvQ_nQ)3}?T+uhT3V0VcSo5AZ_jj?2<LLgn3y08?BOl!wAY
z=Le$+Ef?|$-bMm`PNZ`PHGw2PMEB>0sPkbue1#sup%lyIyPMcsooz;6v>!OFA*QEX
zx&7m-uS~RhqHdta$%&2*Q$DAl<o&KC@d37i=sBOwKqPcuOd{Y1Ex&jpLN}Cdcr8sf
zM)<ox6kflf@KEB!M{{-_>yMrVN|m|G;EpO=B`lz;(u+g9?3Ytw`P)UH)3%^VB0Sq|
z!Ae7lYv{%DWQv}tYMFl1X*y5WsoZat3teAhP>&a+w|og1@-2d7iNfeXT|O^5A7Gy6
zJ>44ur%QKH{3)$lsLhNk#H}7ARXfh{lY#Rwgrzoy)(AH>4T7vfLNG4M!pvqqpWLZ{
zL}Uqix#vSXSCHoyK*P_(wqM`~ciws<`(t;L8w5zlOuw;TemH%97o*Jh3^ZL8KRHvv
zv5svpIDOt&VZyEKIwA@ao>~YC)iTAek~hiVpzfV+UY)mpxPYUe63o>+LV1PlZ0}D!
zy8qRd2<F>%xrQCG%Qvl+GND*e;9~6NXdoZt^6KvsWSjwu_3!Wt#LyD)1a82}N(Zct
z<5G#1neI}<b1rv}pW+1)OJk_hs#<?n@~g9L0V#o=>n)+4_O>-~q2bemW6)%gGulRi
zs*u<<t9|4>A3!la7#8;6{M9;a0<hy5it@B^%AanXuvpOl<PB|wJrFE!*fJjhWs_t<
zdp_F))Zpscw@>QSkEkdmPo>PW&4*3Fr5Bv<<0hw~;8C$~)P7Pyc*_ICUs_eUHn7kT
zEd*o=Jx$j?I&;@-W=k_f0bWKl0LQsI?KBt)vmU+^lnOdnGmp%I{{CXZ$yRM?$DX-*
zUdyc+5M7PDyN|DFXx8)(N9{gje&g$a`d5t!*wx#p{0<4sV;j?-+h0D}e^kW2Pa)YV
zX-V!*0u++0X$Oj@_aD1u-&YSlc3XIpmqciAMgEgy`fn~E_m|__>yraznXi4=Vdg$t
z&v(l!q~FU(&+{wFOVYM+k>geL-d}Bk7!99}wSD$px1$|b2x)M}v0RnH-4<Kj`Kabc
zmVH{K4jLE?FN=bAyR9c?J3muc*x2fkW;)!VqMuIKUU^Ij>yg5w<~?ZoU5otUzhAQ=
zPJcq<-!g{%5ecWSYNsS>klS2;SuXT5ycB#RWwz@Vy8b1a{{YO`!u)y(gzS(8zGr0d
z*9v3*{+4(JjQRTvUDT}m=SyJ3C;+h0R}WS;#Q*WF@+(;V?{)nDIzs|RaEF6E3QvFZ
zpJ!3u1-)TyboTmfgMUBo9}NGK1bhmt{uQlc>;DpsHUc}=ognuR{Ym*AfM6Qt{jB8l
z+Mi@FqKka1N#xcQvKv?-VRdm<7w3;q^Kae2Ou(w<tZL4xSzGlv#Q(=WXX?s@Gi%le
zJUMmzi0Z#g5`;~w;9wOTtRlBn<hF|3R*~Ck%(EJht^$J9Y{6<OhiVlNtO9~nK(Go3
z{=WnSZngA<c0GkN<o%_;bK9njv2%Cp7fwTh-JdjDR<BdyR0o|3zw_%TEl;cJUTSv3
z3#t$}3)jhVhps>K?2uhZr&IN)G`nR81Ih+msMP8m;?v0|j{F{Y^3oTxyK<<GVeW#H
z%QgS=`B0Q5QJ=ps8LaOOiFu~n@Z*)~VW#AM!oMkbd|@isfCvMqLc&j!3bFtF4I(yD
zjCimv|EeZb5R&r3dC%Ke#9Y++XNiM&d~-pxCOX(VD<J0l>++SJ)s><y+z86;@1N`x
z0OdaZ#2=+KT8(ja>i>KRcTiNa_hvNUReP^rf9mg!0`fCVnNJ!GnnfEzyHZ&n;b?6g
z1vVIun#Geh&=5|)&!NDEi;KZ#r(l+kbHY>;DY4<=Qn2|E7;qyvOg)YQ8{X6vUe)q}
zS%&KJs+&+?!@JEz(OPhhLDEz881+~RY)EH)JsSYK>G-3*mDXxfU_&;~YdSVG;N_QI
z|6U4gu)>*tFogb)vL4$TYLwVuy~(^x4hGycw!JGyi4EE`A+~f#8gfDn9#CR~_Wwfc
z)*@*L4!!D4fei=i-(C$XgnH64C-23}6xeW_tvEU?9|p{Cj=2~~fep3(ubsMK^H+I(
zNok!11vWH9z4kUj1M=SX26R(k13}RIC%N<9s<^h6f;2epH}BJgW|CA(tFrgm6r@2H
z7vfR{vkc7*v9qAW2HlMzt{-5){g4m`6AEm2Q(tm50^Mxh+Ok_$lL8ywvAv6qKsRqS
z)<x?+rND+s)|A<9IB}yqJ*~7}jRG5Hc~YoEz<d~zzE6~2Yxu45<Ui8sUKZ|FKN1c!
zO3eo!QKK*kkqa#RI~1TQ8DLTQY)>E@2l1!*Q4YaxOt>PtvhP{5MwJ2y_Y6~ZilB2K
zzSl^dra%JhV^^1R2ND*XgHOp(B0+Nt|1L=&!9lPxikkunLj3ynouK*Ui7y&zR49-T
z5|wgP1e)Uv>pr`d+5DFaooQm~r*wgYyt$xrqLfIuxSgMeA4pIitccq}fds__{q#=g
zkSLD}(X2gBfrNyvlq({z4b-rvBJVUM64GVV&&mJ^uFgT4Jd{Y#;^yZ?N1cf!RwOb~
zAi<K~V6qbwzdY(mL+v>VB;@j>-VlLZ35H)kEtFYP;6mmJ^>ds^7UrH_W~D@e_Fw#a
z;ZP>+%@!3Yv=m72NiY!Yg3H;<pWV}}Q>H*dxnb&a5p=uJ=XX*Hlt{={R9Bk=5++=p
zn$S=pL1zy?zY~x!CRmZah5`vm{D$^Xp!W*-Hyf%7GgJ~2|CCp#uxBV3dhwtEdBj=8
zR>ObY08_L3;qXOGLle;ZuS0qt(vk;N&G`Q*^AAU_XqudY0go;9s-6%i@G<YAx>gxX
z!Y?;)vdK)cmP9_g>9<=o$k$faE`|Y~A%W91I%5B#(1OY-IZ!PSPNf!VZZVV@Cn=_*
zvsV7B6a)!B^$&zny--74my8VsHVpA!os2@apQYP2ROeD)!<52Rn%!u?8=G0BMha|L
z4%YNC0Zj09Kx=JU(tp{YT=ZPi`xFd#Y_3K3#Noee@Oy2lu74M1$&#!7E|dZrSW?W@
z4Q{{y>Jar0eiYbX_$ov#2(=yLhqH?Opuh$%fl&V-beThTfWOFP3T)WRZ)6`0mO&v=
z|9wR!1vczgF!I`s2E4l5b*BEmY*4NuX-1g<X!zQvaU?B~0vkSeXvUp_0gp{JPCc=w
zz=k)@>Sm{rG~}q&Xj5WCx~sbRQ6vq)YIUlV*pL{Z76PC_C`^}C>>DLE2uAvckPkod
z7duCR4JQ1?lhI%r6rxn#SHj(W|4|AX1!EdsG~ngAuCw1Lu%Tt!#rGzF3BLBI5Yt{!
zU_;x^i>0Svz++<-?<aN?*pPKs-4?ZmvgD|CZl}bC?EC6=R7e_vRe!QjVnfmkH61rl
z{Ye+qo(+_qkn>R8p$mFm{H@N#F;k);=dn7W76zydE2oSnP?*KQ`HStWZ~=r`-jOcF
zY6^T9x_Gf`WseO_brJ<mzP)D>rEw8DReGoVq$DV;MQMUbx&|C~uF*C0l>JvX)NkF!
z?*<N>*%r6qpEd`ypU8(ATbnp+e|KvAcIKasLv!+}UH<=qykJ(84S`?&x%!s>@Y<Ly
z34+BEF?oqyw)zj-LLHAb)m<Z0kUPMBTP^tG_sLTKrQ08|b;u|CpRgW{GeAD+<)dG_
zy#6qDvFMK1vgZBRwyWQ>L4Od>K!Z}y!SmQXrvEg3YG{X3w&c&19e{t3_Ykff7J71m
z?_VYzMnocO%t!dx^vBCr-bZ$bC$S4Oey;-dhwADgAt78{Buo`oH3>5ztD1zF5d5mS
z!_4%mPr{tjs!zfY#42$3{~tJvER$07x2;*T#`E%$j{Z#n`!!wv##?u2v)Xqai~lbg
z9T8}|<)SP9uWNe|+`Ds~T}b5Rw*R8kYAVaDZhM3OV&2u4tg`E$G197Zt?J1i(cr3C
f`M<ZqMQe60(zA(kTqJ>kUvo-M@p#hFOE>-xWCTUi

literal 0
HcmV?d00001

diff --git a/charts/jfrog/artifactory-jcr/107.104.10/questions.yml b/charts/jfrog/artifactory-jcr/107.104.10/questions.yml
new file mode 100644
index 0000000000..9cde428709
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/questions.yml
@@ -0,0 +1,271 @@
+questions:
+# Advance Settings
+- variable: artifactory.artifactory.masterKey
+  default: "FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF"
+  description: "Artifactory master key. For security reasons, we strongly recommend you generate your own master key using this command: 'openssl rand -hex 32'"
+  type: string
+  label: Artifactory master key
+  group: "Security Settings"
+
+# Container Images
+- variable: defaultImage
+  default: true
+  description: "Use default Docker image"
+  label: Use Default Image
+  type: boolean
+  show_subquestion_if: false
+  group: "Container Images"
+  subquestions:
+  - variable: artifactory.artifactory.image.repository
+    default: "docker.bintray.io/jfrog/artifactory-jcr"
+    description: "JFrog Container Registry image name"
+    type: string
+    label: JFrog Container Registry Image Name
+  - variable: artifactory.artifactory.image.version
+    default: "7.6.3"
+    description: "JFrog Container Registry image tag"
+    type: string
+    label: JFrog Container Registry Image Tag
+  - variable: artifactory.imagePullSecrets
+    description: "Image Pull Secret"
+    type: string
+    label: Image Pull Secret
+
+# Services and LoadBalancing Settings
+- variable: artifactory.ingress.enabled
+  default: false
+  description: "Expose app using Layer 7 Load Balancer - ingress"
+  type: boolean
+  label: Expose app using Layer 7 Load Balancer
+  show_subquestion_if: true
+  group: "Services and Load Balancing"
+  required: true
+  subquestions:
+  - variable: artifactory.ingress.hosts[0]
+    default: "xip.io"
+    description: "Hostname to your artifactory installation"
+    type: hostname
+    required: true
+    label: Hostname
+
+# Nginx Settings
+- variable: artifactory.nginx.enabled
+  default: true
+  description: "Enable nginx server"
+  type: boolean
+  label: Enable Nginx Server
+  group: "Services and Load Balancing"
+  required: true
+  show_if: "artifactory.ingress.enabled=false"
+- variable: artifactory.nginx.service.type
+  default: "LoadBalancer"
+  description: "Nginx service type"
+  type: enum
+  required: true
+  label: Nginx Service Type
+  show_if: "artifactory.nginx.enabled=true&&artifactory.ingress.enabled=false"
+  group: "Services and Load Balancing"
+  options:
+  - "ClusterIP"
+  - "NodePort"
+  - "LoadBalancer"
+- variable: artifactory.nginx.service.loadBalancerIP
+  default: ""
+  description: "Provide Static IP to configure with Nginx"
+  type: string
+  label: Config Nginx LoadBalancer IP
+  show_if: "artifactory.nginx.enabled=true&&artifactory.nginx.service.type=LoadBalancer&&artifactory.ingress.enabled=false"
+  group: "Services and Load Balancing"
+- variable: artifactory.nginx.tlsSecretName
+  default: ""
+  description: "Provide SSL Secret name to configure with Nginx"
+  type: string
+  label: Config Nginx SSL Secret
+  show_if: "artifactory.nginx.enabled=true&&artifactory.ingress.enabled=false"
+  group: "Services and Load Balancing"
+- variable: artifactory.nginx.customArtifactoryConfigMap
+  default: ""
+  description: "Provide configMap name to configure Nginx with custom `artifactory.conf`"
+  type: string
+  label: ConfigMap for Nginx Artifactory Config
+  show_if: "artifactory.nginx.enabled=true&&artifactory.ingress.enabled=false"
+  group: "Services and Load Balancing"
+
+# Database Settings
+- variable: artifactory.postgresql.enabled
+  default: true
+  description: "Enable PostgreSQL"
+  type: boolean
+  required: true
+  label: Enable PostgreSQL
+  group: "Database Settings"
+  show_subquestion_if: true
+  subquestions:
+  - variable: artifactory.postgresql.postgresqlPassword
+    default: ""
+    description: "PostgreSQL password"
+    type: password
+    required: true
+    label: PostgreSQL Password
+    group: "Database Settings"
+    show_if: "artifactory.postgresql.enabled=true"
+  - variable: artifactory.postgresql.persistence.size
+    default: 20Gi
+    description: "PostgreSQL persistent volume size"
+    type: string
+    label: PostgreSQL Persistent Volume Size
+    show_if: "artifactory.postgresql.enabled=true"
+  - variable: artifactory.postgresql.persistence.storageClass
+    default: ""
+    description: "If undefined or null, uses the default StorageClass. Default to null"
+    type: storageclass
+    label: Default StorageClass for PostgreSQL
+    show_if: "artifactory.postgresql.enabled=true"
+  - variable: artifactory.postgresql.resources.requests.cpu
+    default: "200m"
+    description: "PostgreSQL initial cpu request"
+    type: string
+    label: PostgreSQL Initial CPU Request
+    show_if: "artifactory.postgresql.enabled=true"
+  - variable: artifactory.postgresql.resources.requests.memory
+    default: "500Mi"
+    description: "PostgreSQL initial memory request"
+    type: string
+    label: PostgreSQL Initial Memory Request
+    show_if: "artifactory.postgresql.enabled=true"
+  - variable: artifactory.postgresql.resources.limits.cpu
+    default: "1"
+    description: "PostgreSQL cpu limit"
+    type: string
+    label: PostgreSQL CPU Limit
+    show_if: "artifactory.postgresql.enabled=true"
+  - variable: artifactory.postgresql.resources.limits.memory
+    default: "1Gi"
+    description: "PostgreSQL memory limit"
+    type: string
+    label: PostgreSQL Memory Limit
+    show_if: "artifactory.postgresql.enabled=true"
+- variable: artifactory.database.type
+  default: "postgresql"
+  description: "xternal database type (postgresql, mysql, oracle or mssql)"
+  type: enum
+  required: true
+  label: External Database Type
+  group: "Database Settings"
+  show_if: "artifactory.postgresql.enabled=false"
+  options:
+    - "postgresql"
+    - "mysql"
+    - "oracle"
+    - "mssql"
+- variable: artifactory.database.url
+  default: ""
+  description: "External database URL. If you set the url, leave host and port empty"
+  type: string
+  label: External Database URL
+  group: "Database Settings"
+  show_if: "artifactory.postgresql.enabled=false"
+- variable: artifactory.database.host
+  default: ""
+  description: "External database hostname"
+  type: string
+  label: External Database Hostname
+  group: "Database Settings"
+  show_if: "artifactory.postgresql.enabled=false"
+- variable: artifactory.database.port
+  default: ""
+  description: "External database port"
+  type: string
+  label: External Database Port
+  group: "Database Settings"
+  show_if: "artifactory.postgresql.enabled=false"
+- variable: artifactory.database.user
+  default: ""
+  description: "External database username"
+  type: string
+  label: External Database Username
+  group: "Database Settings"
+  show_if: "artifactory.postgresql.enabled=false"
+- variable: artifactory.database.password
+  default: ""
+  description: "External database password"
+  type: password
+  label: External Database Password
+  group: "Database Settings"
+  show_if: "artifactory.postgresql.enabled=false"
+
+# Advance Settings
+- variable: artifactory.advancedOptions
+  default: false
+  description: "Show advanced configurations"
+  label: Show Advanced Configurations
+  type: boolean
+  show_subquestion_if: true
+  group: "Advanced Options"
+  subquestions:
+  - variable: artifactory.artifactory.primary.resources.requests.cpu
+    default: "500m"
+    description: "Artifactory primary node initial cpu request"
+    type: string
+    label: Artifactory Primary Node Initial CPU Request
+  - variable: artifactory.artifactory.primary.resources.requests.memory
+    default: "1Gi"
+    description: "Artifactory primary node initial memory request"
+    type: string
+    label: Artifactory Primary Node Initial Memory Request
+  - variable: artifactory.artifactory.primary.javaOpts.xms
+    default: "1g"
+    description: "Artifactory primary node java Xms size"
+    type: string
+    label: Artifactory Primary Node Java Xms Size
+  - variable: artifactory.artifactory.primary.resources.limits.cpu
+    default: "2"
+    description: "Artifactory primary node cpu limit"
+    type: string
+    label: Artifactory Primary Node CPU Limit
+  - variable: artifactory.artifactory.primary.resources.limits.memory
+    default: "4Gi"
+    description: "Artifactory primary node memory limit"
+    type: string
+    label: Artifactory Primary Node Memory Limit
+  - variable: artifactory.artifactory.primary.javaOpts.xmx
+    default: "4g"
+    description: "Artifactory primary node java Xmx size"
+    type: string
+    label: Artifactory Primary Node Java Xmx Size
+  - variable: artifactory.artifactory.node.resources.requests.cpu
+    default: "500m"
+    description: "Artifactory member node initial cpu request"
+    type: string
+    label: Artifactory Member Node Initial CPU Request
+  - variable: artifactory.artifactory.node.resources.requests.memory
+    default: "2Gi"
+    description: "Artifactory member node initial memory request"
+    type: string
+    label: Artifactory Member Node Initial Memory Request
+  - variable: artifactory.artifactory.node.javaOpts.xms
+    default: "1g"
+    description: "Artifactory member node java Xms size"
+    type: string
+    label: Artifactory Member Node Java Xms Size
+  - variable: artifactory.artifactory.node.resources.limits.cpu
+    default: "2"
+    description: "Artifactory member node cpu limit"
+    type: string
+    label: Artifactory Member Node CPU Limit
+  - variable: artifactory.artifactory.node.resources.limits.memory
+    default: "4Gi"
+    description: "Artifactory member node memory limit"
+    type: string
+    label: Artifactory Member Node Memory Limit
+  - variable: artifactory.artifactory.node.javaOpts.xmx
+    default: "4g"
+    description: "Artifactory member node java Xmx size"
+    type: string
+    label: Artifactory Member Node Java Xmx Size
+
+# Internal Settings
+- variable: installerInfo
+  default: '\{\"productId\": \"RancherHelm_artifactory-jcr/7.6.3\", \"features\": \[\{\"featureId\": \"Partner/ACC-007246\"\}\]\}'
+  type: string
+  group: "Internal Settings (Do not modify)"
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/templates/NOTES.txt b/charts/jfrog/artifactory-jcr/107.104.10/templates/NOTES.txt
new file mode 100644
index 0000000000..035bf84174
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/templates/NOTES.txt
@@ -0,0 +1 @@
+Congratulations. You have just deployed JFrog Container Registry!
diff --git a/charts/jfrog/artifactory-jcr/107.104.10/values.yaml b/charts/jfrog/artifactory-jcr/107.104.10/values.yaml
new file mode 100644
index 0000000000..da37a0d02e
--- /dev/null
+++ b/charts/jfrog/artifactory-jcr/107.104.10/values.yaml
@@ -0,0 +1,80 @@
+# Default values for artifactory-jcr.
+# This is a YAML-formatted file.
+
+# Beware when changing values here. You should know what you are doing!
+# Access the values with {{ .Values.key.subkey }}
+
+# This chart is based on the main artifactory chart with some customizations.
+# See all supported configuration keys in https://github.com/jfrog/charts/tree/master/stable/artifactory
+
+## All values are under the 'artifactory' sub chart.
+artifactory:
+
+  ## Artifactory
+  ## See full list of supported Artifactory options and documentation in artifactory chart: https://github.com/jfrog/charts/tree/master/stable/artifactory
+  artifactory:
+    ## Default tag is from the artifactory sub-chart in the requirements.yaml
+    image:
+      registry: releases-docker.jfrog.io
+      repository: jfrog/artifactory-jcr
+      # tag:
+
+    ## Uncomment the following resources definitions or pass them from command line
+    ## to control the cpu and memory resources allocated by the Kubernetes cluster
+    resources: {}
+    #  requests:
+    #    memory: "1Gi"
+    #    cpu: "500m"
+    #  limits:
+    #    memory: "4Gi"
+    #    cpu: "1"
+    ## The following Java options are passed to the java process running Artifactory.
+    ## You should set them according to the resources set above.
+    ## IMPORTANT: Make sure resources.limits.memory is at least 1G more than Xmx.
+    javaOpts: {}
+     # xms: "1g"
+     # xmx: "3g"
+     # other: ""
+
+  installer:
+    platform: jcr-helm
+
+  installerInfo: '{"productId":"Helm_artifactory-jcr/{{ .Chart.Version }}","features":[{"featureId":"Platform/{{ printf "%s-%s" "kubernetes" .Capabilities.KubeVersion.Version }}"},{"featureId":"Database/{{ .Values.database.type }}"},{"featureId":"PostgreSQL_Enabled/{{ .Values.postgresql.enabled }}"},{"featureId":"Nginx_Enabled/{{ .Values.nginx.enabled }}"},{"featureId":"ArtifactoryPersistence_Type/{{ .Values.artifactory.persistence.type }}"},{"featureId":"SplitServicesToContainers_Enabled/{{ .Values.splitServicesToContainers }}"},{"featureId":"UnifiedSecretInstallation_Enabled/{{ .Values.artifactory.unifiedSecretInstallation }}"},{"featureId":"Filebeat_Enabled/{{ .Values.filebeat.enabled }}"},{"featureId":"ReplicaCount/{{ .Values.artifactory.replicaCount }}"}]}'
+
+  ## Nginx
+  ## See full list of supported Nginx options and documentation in artifactory chart: https://github.com/jfrog/charts/tree/master/stable/artifactory
+  nginx:
+    enabled: true
+    tlsSecretName: ""
+    service:
+      type: LoadBalancer
+
+  ## Ingress
+  ## See full list of supported Ingress options and documentation in artifactory chart: https://github.com/jfrog/charts/tree/master/stable/artifactory
+  ingress:
+    enabled: false
+    tls:
+
+  ## PostgreSQL
+  ## See list of supported postgresql options and documentation in artifactory chart: https://github.com/jfrog/charts/tree/master/stable/artifactory
+  ## Configuration values for the PostgreSQL dependency sub-chart
+  ## ref: https://github.com/bitnami/charts/blob/master/bitnami/postgresql/README.md
+  postgresql:
+    enabled: true
+
+  ## This key is required for upgrades to protect old PostgreSQL chart's breaking changes.
+  databaseUpgradeReady: "yes"
+
+  ## If NOT using the PostgreSQL in this chart (artifactory.postgresql.enabled=false),
+  ## specify custom database details here or leave empty and Artifactory will use embedded derby.
+  ## See full list of database options and documentation in artifactory chart: https://github.com/jfrog/charts/tree/master/stable/artifactory
+  # database:
+
+  jfconnect:
+    enabled: false
+
+  rtfs:
+    enabled: false
+
+  onemodel:
+    enabled: false
\ No newline at end of file
diff --git a/charts/kasten/k10/7.5.301/Chart.yaml b/charts/kasten/k10/7.5.301/Chart.yaml
index a67b88252a..8fca20c7c4 100644
--- a/charts/kasten/k10/7.5.301/Chart.yaml
+++ b/charts/kasten/k10/7.5.301/Chart.yaml
@@ -1,7 +1,6 @@
 annotations:
   catalog.cattle.io/certified: partner
   catalog.cattle.io/display-name: K10
-  catalog.cattle.io/featured: "3"
   catalog.cattle.io/kube-version: '>= 1.17.0-0'
   catalog.cattle.io/release-name: k10
 apiVersion: v2
diff --git a/charts/kasten/k10/7.5.401/Chart.lock b/charts/kasten/k10/7.5.401/Chart.lock
new file mode 100644
index 0000000000..a598fb3bbb
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/Chart.lock
@@ -0,0 +1,6 @@
+dependencies:
+- name: prometheus
+  repository: ""
+  version: 26.1.0
+digest: sha256:9ed7fd751d9c9c3fd4d1c903f06c0e70f69cc34902b5b80b110a19e8fc78f5e5
+generated: "2025-02-25T22:02:34.381897768Z"
diff --git a/charts/kasten/k10/7.5.401/Chart.yaml b/charts/kasten/k10/7.5.401/Chart.yaml
new file mode 100644
index 0000000000..f25c89384e
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/Chart.yaml
@@ -0,0 +1,22 @@
+annotations:
+  catalog.cattle.io/certified: partner
+  catalog.cattle.io/display-name: K10
+  catalog.cattle.io/featured: "3"
+  catalog.cattle.io/kube-version: '>= 1.17.0-0'
+  catalog.cattle.io/release-name: k10
+apiVersion: v2
+appVersion: 7.5.4
+dependencies:
+- condition: prometheus.server.enabled
+  name: prometheus
+  repository: ""
+  version: 26.1.0
+description: Kasten’s K10 Data Management Platform
+home: https://kasten.io/
+icon: file://assets/icons/k10.png
+kubeVersion: '>= 1.17.0-0'
+maintainers:
+- email: contact@kasten.io
+  name: kastenIO
+name: k10
+version: 7.5.401
diff --git a/charts/kasten/k10/7.5.401/README.md b/charts/kasten/k10/7.5.401/README.md
new file mode 100644
index 0000000000..caf5925085
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/README.md
@@ -0,0 +1,342 @@
+# Kasten's K10 Helm chart.
+
+[Kasten's k10](https://docs.kasten.io/) is a data lifecycle management system for all your persistence.enabled
+container-based applications.
+
+## TL;DR;
+
+```console
+$ helm install kasten/k10 --name=k10 --namespace=kasten-io
+```
+Additionally, K10 images are available in Platform One's **Iron Bank** hardened container registry.
+To install using these images, follow the instructions found
+[here](https://docs.kasten.io/latest/install/ironbank.html).
+
+## Introduction
+
+This chart bootstraps Kasten's K10 platform on a [Kubernetes](http://kubernetes.io) cluster using
+the [Helm](https://helm.sh) package manager.
+
+## Prerequisites
+
+- Kubernetes 1.23 - 1.26
+
+## Installing the Chart
+
+To install the chart on a [GKE](https://cloud.google.com/container-engine/) cluster
+
+```console
+$ helm install kasten/k10 --name=k10 --namespace=kasten-io
+```
+
+To install the chart on an [AWS](https://aws.amazon.com/) [kops](https://github.com/kubernetes/kops)-created cluster
+
+```console
+$ helm install kasten/k10 --name=k10 --namespace=kasten-io --set secrets.awsAccessKeyId="${AWS_ACCESS_KEY_ID}" \
+                                                           --set secrets.awsSecretAccessKey="${AWS_SECRET_ACCESS_KEY}"
+```
+
+> **Tip**: List all releases using `helm list`
+
+## Uninstalling the Chart
+
+To uninstall/delete the `k10` application:
+
+```console
+$ helm delete k10 --purge
+```
+
+## Configuration
+
+The following table lists the configurable parameters of the K10
+chart and their default values.
+
+Parameter | Description | Default
+--- | --- | ---
+`eula.accept`| Whether to enable accept EULA before installation | `false`
+`eula.company` | Company name. Required field if EULA is accepted | `None`
+`eula.email` | Contact email. Required field if EULA is accepted | `None`
+`license` | License string obtained from Kasten | `None`
+`rbac.create` | Whether to enable RBAC with a specific cluster role and binding for K10 | `true`
+`scc.create` | Whether to create a SecurityContextConstraints for K10 ServiceAccounts | `false`
+`scc.priority` | Sets the SecurityContextConstraints priority | `15`
+`services.dashboardbff.hostNetwork` | Whether the dashboardbff Pods may use the node network | `false`
+`services.executor.hostNetwork` | Whether the executor Pods may use the node network | `false`
+`services.aggregatedapis.hostNetwork` | Whether the aggregatedapis Pods may use the node network | `false`
+`serviceAccount.create`| Specifies whether a ServiceAccount should be created | `true`
+`serviceAccount.name` | The name of the ServiceAccount to use. If not set, a name is derived using the release and chart names. | `None`
+`ingress.create` | Specifies whether the K10 dashboard should be exposed via ingress | `false`
+`ingress.name` | Optional name of the Ingress object for the K10 dashboard. If not set, the name is formed using the release name. | `{Release.Name}-ingress`
+`ingress.class` | Cluster ingress controller class: `nginx`, `GCE` | `None`
+`ingress.host` | FQDN (e.g., `k10.example.com`) for name-based virtual host | `None`
+`ingress.urlPath` | URL path for K10 Dashboard (e.g., `/k10`) | `Release.Name`
+`ingress.pathType` | Specifies the path type for the ingress resource | `ImplementationSpecific`
+`ingress.annotations` | Additional Ingress object annotations | `{}`
+`ingress.tls.enabled` | Configures a TLS use for `ingress.host` | `false`
+`ingress.tls.secretName` | Optional TLS secret name | `None`
+`ingress.defaultBackend.service.enabled` | Configures the default backend backed by a service for the K10 dashboard Ingress (mutually exclusive setting with `ingress.defaultBackend.resource.enabled`). | `false`
+`ingress.defaultBackend.service.name` | The name of a service referenced by the default backend (required if the service-backed default backend is used). | `None`
+`ingress.defaultBackend.service.port.name` | The port name of a service referenced by the default backend (mutually exclusive setting with port `number`, required if the service-backed default backend is used). | `None`
+`ingress.defaultBackend.service.port.number` | The port number of a service referenced by the default backend (mutually exclusive setting with port `name`, required if the service-backed default backend is used). | `None`
+`ingress.defaultBackend.resource.enabled` | Configures the default backend backed by a resource for the K10 dashboard Ingress (mutually exclusive setting with `ingress.defaultBackend.service.enabled`). | `false`
+`ingress.defaultBackend.resource.apiGroup` | Optional API group of a resource backing the default backend. | `''`
+`ingress.defaultBackend.resource.kind` | The type of a resource being referenced by the default backend (required if the resource default backend is used). | `None`
+`ingress.defaultBackend.resource.name` | The name of a resource being referenced by the default backend (required if the resource default backend is used). | `None`
+`global.persistence.size` | Default global size of volumes for K10 persistent services | `20Gi`
+`global.persistence.catalog.size` | Size of a volume for catalog service  | `global.persistence.size`
+`global.persistence.jobs.size` | Size of a volume for jobs service  | `global.persistence.size`
+`global.persistence.logging.size` | Size of a volume for logging service  | `global.persistence.size`
+`global.persistence.metering.size` | Size of a volume for metering service  | `global.persistence.size`
+`global.persistence.storageClass` | Specified StorageClassName will be used for PVCs | `None`
+`global.podLabels` | Configures custom labels to be set to all Kasten Pods | `None`
+`global.podAnnotations` | Configures custom annotations to be set to all Kasten Pods | `None`
+`global.airgapped.repository` | Specify the helm repository for offline (airgapped) installation | `''`
+`global.imagePullSecret` | Provide secret which contains docker config for private repository. Use `k10-ecr` when secrets.dockerConfigPath is used. | `''`
+`global.prometheus.external.host` | Provide external prometheus host name | `''`
+`global.prometheus.external.port` | Provide external prometheus port number | `''`
+`global.prometheus.external.baseURL` | Provide Base URL of external prometheus | `''`
+`global.network.enable_ipv6` | Enable `IPv6` support for K10 | `false`
+`google.workloadIdentityFederation.enabled` | Enable Google Workload Identity Federation for K10 | `false`
+`google.workloadIdentityFederation.idp.type` | Identity Provider type for Google Workload Identity Federation for K10 | `''`
+`google.workloadIdentityFederation.idp.aud` | Audience for whom the ID Token from Identity Provider is intended | `''`
+`secrets.awsAccessKeyId` | AWS access key ID (required for AWS deployment) | `None`
+`secrets.awsSecretAccessKey` | AWS access key secret | `None`
+`secrets.awsIamRole` | ARN of the AWS IAM role assumed by K10 to perform any AWS operation. | `None`
+`secrets.awsClientSecretName` | The secret that contains AWS access key ID, AWS access key secret and AWS IAM role for AWS | `None`
+`secrets.googleApiKey` | Non-default base64 encoded GCP Service Account key | `None`
+`secrets.googleProjectId` | Sets Google Project ID other than the one used in the GCP Service Account | `None`
+`secrets.azureTenantId` | Azure tenant ID (required for Azure deployment) | `None`
+`secrets.azureClientId` | Azure Service App ID | `None`
+`secrets.azureClientSecret` | Azure Service APP secret | `None`
+`secrets.azureClientSecretName` | The secret that contains ClientID, ClientSecret and TenantID for Azure | `None`
+`secrets.azureResourceGroup` | Resource Group name that was created for the Kubernetes cluster | `None`
+`secrets.azureSubscriptionID` | Subscription ID in your Azure tenant | `None`
+`secrets.azureResourceMgrEndpoint` | Resource management endpoint for the Azure Stack instance | `None`
+`secrets.azureADEndpoint` | Azure Active Directory login endpoint | `None`
+`secrets.azureADResourceID` | Azure Active Directory resource ID to obtain AD tokens | `None`
+`secrets.microsoftEntraIDEndpoint` | Microsoft Entra ID login endpoint | `None`
+`secrets.microsoftEntraIDResourceID` | Microsoft Entra ID resource ID to obtain AD tokens | `None`
+`secrets.azureCloudEnvID` | Azure Cloud Environment ID | `None`
+`secrets.vsphereEndpoint` | vSphere endpoint for login | `None`
+`secrets.vsphereUsername` | vSphere username for login | `None`
+`secrets.vspherePassword` | vSphere password for login | `None`
+`secrets.vsphereClientSecretName` | The secret that contains vSphere username, vSphere password and vSphere endpoint | `None`
+`secrets.dockerConfig` | Set base64 encoded docker config to use for image pull operations. Alternative to the ``secrets.dockerConfigPath`` | `None`
+`secrets.dockerConfigPath` | Use ``--set-file secrets.dockerConfigPath=path_to_docker_config.yaml`` to specify docker config for image pull. Will be overwritten if ``secrets.dockerConfig`` is set | `None`
+`cacertconfigmap.name` | Name of the ConfigMap that contains a certificate for a trusted root certificate authority | `None`
+`clusterName` | Cluster name for better logs visibility | `None`
+`metering.awsRegion` | Sets AWS_REGION for metering service | `None`
+`metering.mode` | Control license reporting (set to `airgap` for private-network installs) | `None`
+`metering.reportCollectionPeriod` | Sets metric report collection period (in seconds) | `1800`
+`metering.reportPushPeriod` | Sets metric report push period (in seconds) | `3600`
+`metering.promoID` | Sets K10 promotion ID from marketing campaigns | `None`
+`metering.awsMarketplace` | Sets AWS cloud metering license mode | `false`
+`metering.awsManagedLicense` | Sets AWS managed license mode | `false`
+`metering.redhatMarketplacePayg` | Sets Red Hat cloud metering license mode | `false`
+`metering.licenseConfigSecretName` | Sets AWS managed license config secret | `None`
+`externalGateway.create` | Configures an external gateway for K10 API services | `false`
+`externalGateway.annotations` | Standard annotations for the services | `None`
+`externalGateway.fqdn.name` | Domain name for the K10 API services | `None`
+`externalGateway.fqdn.type` | Supported gateway type: `route53-mapper` or `external-dns` | `None`
+`externalGateway.awsSSLCertARN` | ARN for the AWS ACM SSL certificate used in the K10 API server | `None`
+`auth.basicAuth.enabled` | Configures basic authentication for the K10 dashboard | `false`
+`auth.basicAuth.htpasswd` | A username and password pair separated by a colon character | `None`
+`auth.basicAuth.secretName` | Name of an existing Secret that contains a file generated with htpasswd | `None`
+`auth.k10AdminGroups` | A list of groups whose members are granted admin level access to K10's dashboard | `None`
+`auth.k10AdminUsers` | A list of users who are granted admin level access to K10's dashboard | `None`
+`auth.tokenAuth.enabled` | Configures token based authentication for the K10 dashboard | `false`
+`auth.oidcAuth.enabled` | Configures Open ID Connect based authentication for the K10 dashboard | `false`
+`auth.oidcAuth.providerURL` | URL for the OIDC Provider | `None`
+`auth.oidcAuth.redirectURL` | URL to the K10 gateway service | `None`
+`auth.oidcAuth.scopes` | Space separated OIDC scopes required for userinfo. Example: "profile email" | `None`
+`auth.oidcAuth.prompt` | The type of prompt to be used during authentication (none, consent, login or select_account) | `select_account`
+`auth.oidcAuth.clientID` | Client ID given by the OIDC provider for K10 | `None`
+`auth.oidcAuth.clientSecret` | Client secret given by the OIDC provider for K10 | `None`
+`auth.oidcAuth.clientSecretName` | The secret that contains the Client ID and Client secret given by the OIDC provider for K10 | `None`
+`auth.oidcAuth.usernameClaim` | The claim to be used as the username | `sub`
+`auth.oidcAuth.usernamePrefix` | Prefix that has to be used with the username obtained from the username claim | `None`
+`auth.oidcAuth.groupClaim` | Name of a custom OpenID Connect claim for specifying user groups | `None`
+`auth.oidcAuth.groupPrefix` | All groups will be prefixed with this value to prevent conflicts | `None`
+`auth.oidcAuth.sessionDuration` | Maximum OIDC session duration | `1h`
+`auth.oidcAuth.refreshTokenSupport` | Enable OIDC Refresh Token support | `false`
+`auth.openshift.enabled` | Enables access to the K10 dashboard by authenticating with the OpenShift OAuth server | `false`
+`auth.openshift.serviceAccount` | Name of the service account that represents an OAuth client | `None`
+`auth.openshift.clientSecret` | The token corresponding to the service account | `None`
+`auth.openshift.clientSecretName` | The secret that contains the token corresponding to the service account | `None`
+`auth.openshift.dashboardURL` | The URL used for accessing K10's dashboard | `None`
+`auth.openshift.openshiftURL` | The URL for accessing OpenShift's API server | `None`
+`auth.openshift.insecureCA` | To turn off SSL verification of connections to OpenShift | `false`
+`auth.openshift.useServiceAccountCA` | Set this to true to use the CA certificate corresponding to the Service Account ``auth.openshift.serviceAccount`` usually found at ``/var/run/secrets/kubernetes.io/serviceaccount/ca.crt`` | `false`
+`auth.openshift.caCertsAutoExtraction` | Set this to false to disable the OCP CA certificates automatic extraction to the K10 namespace | `true`
+`auth.ldap.enabled` | Configures Active Directory/LDAP based authentication for the K10 dashboard | `false`
+`auth.ldap.restartPod` | To force a restart of the authentication service Pod (useful when updating authentication config) | `false`
+`auth.ldap.dashboardURL` | The URL used for accessing K10's dashboard | `None`
+`auth.ldap.host` | Host and optional port of the AD/LDAP server in the form `host:port` | `None`
+`auth.ldap.insecureNoSSL` | Required if the AD/LDAP host is not using TLS | `false`
+`auth.ldap.insecureSkipVerifySSL` | To turn off SSL verification of connections to the AD/LDAP host | `false`
+`auth.ldap.startTLS` | When set to true, ldap:// is used to connect to the server followed by creation of a TLS session. When set to false, ldaps:// is used. | `false`
+`auth.ldap.bindDN` | The Distinguished Name(username) used for connecting to the AD/LDAP host | `None`
+`auth.ldap.bindPW` | The password corresponding to the `bindDN` for connecting to the AD/LDAP host | `None`
+`auth.ldap.bindPWSecretName` | The name of the secret that contains the password corresponding to the `bindDN` for connecting to the AD/LDAP host | `None`
+`auth.ldap.userSearch.baseDN` | The base Distinguished Name to start the AD/LDAP search from | `None`
+`auth.ldap.userSearch.filter` | Optional filter to apply when searching the directory | `None`
+`auth.ldap.userSearch.username` | Attribute used for comparing user entries when searching the directory | `None`
+`auth.ldap.userSearch.idAttr` | AD/LDAP attribute in a user's entry that should map to the user ID field in a token | `None`
+`auth.ldap.userSearch.emailAttr` | AD/LDAP attribute in a user's entry that should map to the email field in a token | `None`
+`auth.ldap.userSearch.nameAttr` | AD/LDAP attribute in a user's entry that should map to the name field in a token | `None`
+`auth.ldap.userSearch.preferredUsernameAttr` | AD/LDAP attribute in a user's entry that should map to the preferred_username field in a token | `None`
+`auth.ldap.groupSearch.baseDN` | The base Distinguished Name to start the AD/LDAP group search from | `None`
+`auth.ldap.groupSearch.filter` | Optional filter to apply when searching the directory for groups | `None`
+`auth.ldap.groupSearch.nameAttr` | The AD/LDAP attribute that represents a group's name in the directory | `None`
+`auth.ldap.groupSearch.userMatchers` | List of field pairs that are used to match a user to a group. | `None`
+`auth.ldap.groupSearch.userMatchers.userAttr` | Attribute in the user's entry that must match with the `groupAttr` while searching for groups | `None`
+`auth.ldap.groupSearch.userMatchers.groupAttr` | Attribute in the group's entry that must match with the `userAttr` while searching for groups | `None`
+`auth.groupAllowList` | A list of groups whose members are allowed access to K10's dashboard | `None`
+`services.securityContext` | Custom [security context](https://kubernetes.io/docs/tasks/configure-pod-container/security-context/) for K10 service containers | `{"runAsUser" : 1000, "fsGroup": 1000}`
+`services.securityContext.runAsUser` | User ID K10 service containers run as| `1000`
+`services.securityContext.runAsGroup` | Group ID K10 service containers run as| `1000`
+`services.securityContext.fsGroup` | FSGroup that owns K10 service container volumes | `1000`
+`siem.logging.cluster.enabled` | Whether to enable writing K10 audit event logs to stdout (standard output) | `true`
+`siem.logging.cloud.path` | Directory path for saving audit logs in a cloud object store | `k10audit/`
+`siem.logging.cloud.awsS3.enabled` | Whether to enable sending K10 audit event logs to AWS S3 | `true`
+`injectGenericVolumeBackupSidecar.enabled` | Enables injection of sidecar container required to perform Generic Volume Backup into workload Pods | `false`
+`injectGenericVolumeBackupSidecar.namespaceSelector.matchLabels` | Set of labels to select namespaces in which sidecar injection is enabled for workloads | `{}`
+`injectGenericVolumeBackupSidecar.objectSelector.matchLabels` | Set of labels to filter workload objects in which the sidecar is injected | `{}`
+`injectGenericVolumeBackupSidecar.webhookServer.port` | Port number on which the mutating webhook server accepts request | `8080`
+`gateway.resources.[requests\|limits].[cpu\|memory]` | Resource requests and limits for gateway Pod | `{}`
+`gateway.service.externalPort` | Specifies the gateway services external port | `80`
+`genericVolumeSnapshot.resources.[requests\|limits].[cpu\|memory]` | Specifies resource requests and limits for generic backup sidecar and all temporary Kasten worker Pods. Superseded by ActionPodSpec | `{}`
+`multicluster.enabled` | Choose whether to enable the multi-cluster system components and capabilities | `true`
+`multicluster.primary.create` | Choose whether to setup cluster as a multi-cluster primary | `false`
+`multicluster.primary.name` | Primary cluster name | `''`
+`multicluster.primary.ingressURL` | Primary cluster dashboard URL | `''`
+`prometheus.k10image.registry` | (optional) Set Prometheus image registry. | `gcr.io`
+`prometheus.k10image.repository` | (optional) Set Prometheus image repository. | `kasten-images`
+`prometheus.rbac.create` | (optional) Whether to create Prometheus RBAC configuration. Warning - this action will allow prometheus to scrape Pods in all k8s namespaces | `false`
+`prometheus.alertmanager.enabled` | DEPRECATED: (optional) Enable Prometheus `alertmanager` service | `false`
+`prometheus.alertmanager.serviceAccount.create` | DEPRECATED: (optional) Set true to create ServiceAccount for `alertmanager` | `false`
+`prometheus.networkPolicy.enabled` | DEPRECATED: (optional) Enable Prometheus `networkPolicy` | `false`
+`prometheus.prometheus-node-exporter.enabled` | DEPRECATED: (optional) Enable Prometheus `node-exporter` | `false`
+`prometheus.prometheus-node-exporter.serviceAccount.create` | DEPRECATED: (optional) Set true to create ServiceAccount for `prometheus-node-exporter` | `false`
+`prometheus.prometheus-pushgateway.enabled` | DEPRECATED: (optional) Enable Prometheus `pushgateway` | `false`
+`prometheus.prometheus-pushgateway.serviceAccount.create` | DEPRECATED: (optional) Set true to create ServiceAccount for `prometheus-pushgateway` | `false`
+`prometheus.scrapeCAdvisor` | DEPRECATED: (optional) Enable Prometheus ScrapeCAdvisor | `false`
+`prometheus.server.enabled` | (optional) If false, K10's Prometheus server will not be created, reducing the dashboard's functionality. | `true`
+`prometheus.server.securityContext.runAsUser` | (optional) Set security context `runAsUser` ID for Prometheus server Pod | `65534`
+`prometheus.server.securityContext.runAsNonRoot` | (optional) Enable security context `runAsNonRoot` for Prometheus server Pod | `true`
+`prometheus.server.securityContext.runAsGroup` | (optional) Set security context `runAsGroup` ID for Prometheus server Pod | `65534`
+`prometheus.server.securityContext.fsGroup` | (optional) Set security context `fsGroup` ID for Prometheus server Pod | `65534`
+`prometheus.server.retention` | (optional) K10 Prometheus data retention | `"30d"`
+`prometheus.server.strategy.rollingUpdate.maxSurge` | DEPRECATED: (optional) The number of Prometheus server Pods that can be created above the desired amount of Pods during an update | `"100%"`
+`prometheus.server.strategy.rollingUpdate.maxUnavailable` | DEPRECATED: (optional) The number of Prometheus server Pods that can be unavailable during the upgrade process | `"100%"`
+`prometheus.server.strategy.type` | DEPRECATED: (optional) Change default deployment strategy for Prometheus server | `"RollingUpdate"`
+`prometheus.server.persistentVolume.enabled` | DEPRECATED: (optional) If true, K10 Prometheus server will create a Persistent Volume Claim | `true`
+`prometheus.server.persistentVolume.size` | (optional) K10 Prometheus server data Persistent Volume size | `8Gi`
+`prometheus.server.persistentVolume.storageClass` | (optional) StorageClassName used to create Prometheus PVC. Setting this option overwrites global StorageClass value | `""`
+`prometheus.server.configMapOverrideName` | DEPRECATED: (optional) Prometheus configmap name to override default generated name| `k10-prometheus-config`
+`prometheus.server.fullnameOverride` | (optional) Prometheus deployment name to override default generated name| `prometheus-server`
+`prometheus.server.baseURL` | (optional) K10 Prometheus external url path at which the server can be accessed | `/k10/prometheus/`
+`prometheus.server.prefixURL` | (optional) K10 Prometheus prefix slug at which the server can be accessed | `/k10/prometheus/`
+`prometheus.server.serviceAccounts.server.create` | DEPRECATED: (optional) Set true to create ServiceAccount for Prometheus server service | `true`
+`resources.<deploymentName>.<containerName>.[requests\|limits].[cpu\|memory]` | Overwriting the default K10 [container resource requests and limits](https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/) | varies depending on the container
+`route.enabled` | Specifies whether the K10 dashboard should be exposed via route | `false`
+`route.host` | FQDN (e.g., `.k10.example.com`) for name-based virtual host | `""`
+`route.path` | URL path for K10 Dashboard (e.g., `/k10`) | `/`
+`route.annotations` | Additional Route object annotations | `{}`
+`route.labels` | Additional Route object labels | `{}`
+`route.tls.enabled` | Configures a TLS use for `route.host` | `false`
+`route.tls.insecureEdgeTerminationPolicy` | Specifies behavior for insecure scheme traffic | `Redirect`
+`route.tls.termination` | Specifies the TLS termination of the route | `edge`
+`limiter.executorReplicas` | Specifies the number of executor-svc Pods used to process Kasten jobs | 3
+`limiter.executorThreads` | Specifies the number of threads per executor-svc Pod used to process Kasten jobs | 8
+`limiter.workloadSnapshotsPerAction` | Per action limit of concurrent manifest data snapshots, based on workload (ex. Namespace, Deployment, StatefulSet, VirtualMachine) | 5
+`limiter.csiSnapshotsPerCluster` | Cluster-wide limit of concurrent CSI VolumeSnapshot creation requests | `10`
+`limiter.directSnapshotsPerCluster` | Cluster-wide limit of concurrent non-CSI snapshot creation requests | `10`
+`limiter.snapshotExportsPerAction` | Per action limit of concurrent volume export operations | `3`
+`limiter.snapshotExportsPerCluster` | Cluster-wide limit of concurrent volume export operations | `10`
+`limiter.genericVolumeBackupsPerCluster` | Cluster-wide limit of concurrent Generic Volume Backup operations | `10`
+`limiter.imageCopiesPerCluster` | Cluster-wide limit of concurrent ImageStream container image backup (i.e. copy from) and restore (i.e. copy to) operations | `10`
+`limiter.workloadRestoresPerAction` | Per action limit of concurrent manifest data restores, based on workload (ex. Namespace, Deployment, StatefulSet, VirtualMachine) | 3
+`limiter.csiSnapshotRestoresPerAction` | Per action limit of concurrent CSI volume provisioning requests when restoring from VolumeSnapshots | 3
+`limiter.volumeRestoresPerAction` | Per action limit of concurrent volume restore operations from an exported backup | 3
+`limiter.volumeRestoresPerCluster` | Cluster-wide limit of concurrent volume restore operations from exported backups | `10`
+`cluster.domainName` | Specifies the domain name of the cluster | `""`
+`timeout.blueprintBackup` | Specifies the timeout (in minutes) for Blueprint backup actions | `45`
+`timeout.blueprintRestore` | Specifies the timeout (in minutes) for Blueprint restore actions | `600`
+`timeout.blueprintDelete` | Specifies the timeout (in minutes) for Blueprint delete actions | `45`
+`timeout.blueprintHooks` | Specifies the timeout (in minutes) for Blueprint backupPrehook and backupPosthook actions | `20`
+`timeout.checkRepoPodReady` | Specifies the timeout (in minutes) for temporary worker Pods used to validate backup repository existence | `20`
+`timeout.statsPodReady` | Specifies the timeout (in minutes) for temporary worker Pods used to collect repository statistics | `20`
+`timeout.efsRestorePodReady` | Specifies the timeout (in minutes) for temporary worker Pods used for shareable volume restore operations | `45`
+`timeout.workerPodReady` | Specifies the timeout (in minutes) for all other temporary worker Pods used during Veeam Kasten operations | `15`
+`timeout.jobWait` | Specifies the timeout (in minutes) for completing execution of any child job, after which the parent job will be canceled. If no value is set, a default of 10 hours will be used | `None`
+`awsConfig.assumeRoleDuration` | Duration of a session token generated by AWS for an IAM role. The minimum value is 15 minutes and the maximum value is the maximum duration setting for that IAM role. For documentation about how to view and edit the maximum session duration for an IAM role see https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use.html#id_roles_use_view-role-max-session. The value accepts a number along with a single character ``m``(for minutes) or ``h`` (for hours)  Examples: 60m or 2h | `''`
+`awsConfig.efsBackupVaultName` | Specifies the AWS EFS backup vault name | `k10vault`
+`vmWare.taskTimeoutMin` | Specifies the timeout for VMWare operations | `60`
+`encryption.primaryKey.awsCmkKeyId` | Specifies the AWS CMK key ID for encrypting K10 Primary Key | `None`
+`garbagecollector.daemonPeriod` | Sets garbage collection period (in seconds) | `21600`
+`garbagecollector.keepMaxActions` | Sets maximum actions to keep | `1000`
+`garbagecollector.actions.enabled` | Enables action collectors | `false`
+`kubeVirtVMs.snapshot.unfreezeTimeout` | Defines the time duration within which the VMs must be unfrozen while backing them up. To know more about format [go doc](https://pkg.go.dev/time#ParseDuration) can be followed | `5m`
+`excludedApps` | Specifies a list of applications to be excluded from the dashboard & compliance considerations. Format should be a :ref:`YAML array<k10_compliance>` | `["kube-system", "kube-ingress", "kube-node-lease", "kube-public", "kube-rook-ceph"]`
+`workerPodMetricSidecar.enabled` | Enables a sidecar container for temporary worker Pods used to push Pod performance metrics to Prometheus | `true`
+`workerPodMetricSidecar.metricLifetime` | Specifies the period after which metrics for an individual worker Pod are removed from Prometheus | `2m`
+`workerPodMetricSidecar.pushGatewayInterval` | Specifies the frequency for pushing metrics into Prometheus | `30s`
+`workerPodMetricSidecar.resources.[requests\|limits].[cpu\|memory]` | Specifies resource requests and limits for the temporary worker Pod metric sidecar | `{}`
+`forceRootInBlueprintActions` | Forces any Pod created by a Blueprint to run as root user | `true`
+`defaultPriorityClassName` | Specifies the default [priority class](https://kubernetes.io/docs/concepts/scheduling-eviction/pod-priority-preemption/#priorityclass) name for all K10 deployments and ephemeral Pods | `None`
+`priorityClassName.<deploymentName>` | Overrides the default [priority class](https://kubernetes.io/docs/concepts/scheduling-eviction/pod-priority-preemption/#priorityclass) name for the specified deployment | `{}`
+`ephemeralPVCOverhead` | Set the percentage increase for the ephemeral Persistent Volume Claim's storage request, e.g. PVC size = (file raw size) * (1 + `ephemeralPVCOverhead`) | `0.1`
+`datastore.parallelUploads` | Specifies how many files can be uploaded in parallel to the data store | `8`
+`datastore.parallelDownloads` | Specifies how many files can be downloaded in parallel from the data store | `8`
+`datastore.parallelBlockUploads` | Specifies how many blocks can be uploaded in parallel to the data store | `8`
+`datastore.parallelBlockDownloads` | Specifies how many blocks can be downloaded in parallel from the data store | `8`
+`kastenDisasterRecovery.quickMode.enabled` | Enables K10 Quick Disaster Recovery | `false`
+`fips.enabled` | Specifies whether K10 should be run in the FIPS mode of operation | `false`
+`workerPodCRDs.enabled` | Specifies whether K10 should use `ActionPodSpec` for granular resource control of worker Pods | `false`
+`workerPodCRDs.resourcesRequests.maxCPU` | Max CPU which might be setup in `ActionPodSpec` | `''`
+`workerPodCRDs.resourcesRequests.maxMemory` | Max memory which might be setup in `ActionPodSpec` | `''`
+`workerPodCRDs.defaultActionPodSpec.name` | The name of `ActionPodSpec` that will be used by default for worker Pod resources. | `''`
+`workerPodCRDs.defaultActionPodSpec.namespace` | The namespace of `ActionPodSpec` that will be used by default for worker Pod resources. | `''`
+
+
+
+## Helm tips and tricks
+
+There is a way of setting values via a yaml file instead of using `--set`.
+First, copy/paste values into a file (e.g., my_values.yaml):
+
+```yaml
+secrets:
+  awsAccessKeyId: ${AWS_ACCESS_KEY_ID}
+  awsSecretAccessKey: ${AWS_SECRET_ACCESS_KEY}
+```
+
+and then run:
+
+```bash
+  envsubst < my_values.yaml > my_values_out.yaml && helm install k10 kasten/k10 -f my_values_out.yaml
+```
+
+To set a single value from a file, `--set-file` may be used over `--set`:
+
+```bash
+  helm install k10 kasten/k10  --set-file license=my_license.lic
+```
+
+
+To use non-default GCP ServiceAccount (SA) credentials, the credentials JSON file needs to be encoded into a base64
+string:
+
+```bash
+  sa_key=$(base64 -w0 sa-key.json)
+  helm install k10 kasten/k10 --namespace=kasten-io --set secrets.googleApiKey=$sa_key
+```
+
+If the Google Service Account belongs to a project other than the one in which the cluster
+is located, then the project's ID of the cluster must be also provided during the installation:
+
+```bash
+  sa_key=$(base64 -w0 sa-key.json)
+  helm install k10 kasten/k10 --namespace=kasten-io --set secrets.googleApiKey=$sa_key --set secrets.googleProjectId=<project-id>
+```
diff --git a/charts/kasten/k10/7.5.401/app-readme.md b/charts/kasten/k10/7.5.401/app-readme.md
new file mode 100644
index 0000000000..1b221891be
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/app-readme.md
@@ -0,0 +1,5 @@
+The K10 data management platform, purpose-built for Kubernetes, provides enterprise operations teams an easy-to-use, scalable, and secure system for backup/restore, disaster recovery, and mobility of Kubernetes applications.
+
+K10’s application-centric approach and deep integrations with relational and NoSQL databases, Kubernetes distributions, and all clouds provide teams the freedom of infrastructure choice without sacrificing operational simplicity. Policy-driven and extensible, K10 provides a native Kubernetes API and includes features such as full-spectrum consistency, database integrations, automatic application discovery, multi-cloud mobility, and a powerful web-based user interface.
+
+For more information, refer to the docs [https://docs.kasten.io/](https://docs.kasten.io/)
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/.helmignore b/charts/kasten/k10/7.5.401/charts/prometheus/.helmignore
new file mode 100644
index 0000000000..825c007791
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/.helmignore
@@ -0,0 +1,23 @@
+# Patterns to ignore when building packages.
+# This supports shell glob matching, relative path matching, and
+# negation (prefixed with !). Only one pattern per line.
+.DS_Store
+# Common VCS dirs
+.git/
+.gitignore
+.bzr/
+.bzrignore
+.hg/
+.hgignore
+.svn/
+# Common backup files
+*.swp
+*.bak
+*.tmp
+*~
+# Various IDEs
+.project
+.idea/
+*.tmproj
+
+OWNERS
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/Chart.lock b/charts/kasten/k10/7.5.401/charts/prometheus/Chart.lock
new file mode 100644
index 0000000000..76f0686d9e
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/Chart.lock
@@ -0,0 +1,15 @@
+dependencies:
+- name: alertmanager
+  repository: https://prometheus-community.github.io/helm-charts
+  version: 1.13.1
+- name: kube-state-metrics
+  repository: https://prometheus-community.github.io/helm-charts
+  version: 5.28.0
+- name: prometheus-node-exporter
+  repository: https://prometheus-community.github.io/helm-charts
+  version: 4.43.1
+- name: prometheus-pushgateway
+  repository: https://prometheus-community.github.io/helm-charts
+  version: 2.16.0
+digest: sha256:a6732d7d72e5ac83623517b0da7782493df63f9900ca6c2787a40872fd61333c
+generated: "2025-01-02T15:11:50.218607-05:00"
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/Chart.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/Chart.yaml
new file mode 100644
index 0000000000..7c877fd659
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/Chart.yaml
@@ -0,0 +1,53 @@
+annotations:
+  artifacthub.io/license: Apache-2.0
+  artifacthub.io/links: |
+    - name: Chart Source
+      url: https://github.com/prometheus-community/helm-charts
+    - name: Upstream Project
+      url: https://github.com/prometheus/prometheus
+apiVersion: v2
+appVersion: v3.1.0
+dependencies:
+- condition: alertmanager.enabled
+  name: alertmanager
+  repository: https://prometheus-community.github.io/helm-charts
+  version: 1.13.*
+- condition: kube-state-metrics.enabled
+  name: kube-state-metrics
+  repository: https://prometheus-community.github.io/helm-charts
+  version: 5.28.*
+- condition: prometheus-node-exporter.enabled
+  name: prometheus-node-exporter
+  repository: https://prometheus-community.github.io/helm-charts
+  version: 4.43.*
+- condition: prometheus-pushgateway.enabled
+  name: prometheus-pushgateway
+  repository: https://prometheus-community.github.io/helm-charts
+  version: 2.16.*
+description: Prometheus is a monitoring system and time series database.
+home: https://prometheus.io/
+icon: https://raw.githubusercontent.com/prometheus/prometheus.github.io/master/assets/prometheus_logo-cb55bb5c346.png
+keywords:
+- monitoring
+- prometheus
+kubeVersion: '>=1.19.0-0'
+maintainers:
+- email: gianrubio@gmail.com
+  name: gianrubio
+- email: zanhsieh@gmail.com
+  name: zanhsieh
+- email: miroslav.hadzhiev@gmail.com
+  name: Xtigyro
+- email: naseem@transit.app
+  name: naseemkullah
+- email: rootsandtrees@posteo.de
+  name: zeritti
+name: prometheus
+sources:
+- https://github.com/prometheus/alertmanager
+- https://github.com/prometheus/prometheus
+- https://github.com/prometheus/pushgateway
+- https://github.com/prometheus/node_exporter
+- https://github.com/kubernetes/kube-state-metrics
+type: application
+version: 26.1.0
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/OWNERS b/charts/kasten/k10/7.5.401/charts/prometheus/OWNERS
new file mode 100644
index 0000000000..0cfd95021c
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/OWNERS
@@ -0,0 +1,6 @@
+approvers:
+- mgoodness
+- gianrubio
+reviewers:
+- mgoodness
+- gianrubio
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/README.md b/charts/kasten/k10/7.5.401/charts/prometheus/README.md
new file mode 100644
index 0000000000..7dd51f4b44
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/README.md
@@ -0,0 +1,387 @@
+# Prometheus
+
+[Prometheus](https://prometheus.io/), a [Cloud Native Computing Foundation](https://cncf.io/) project, is a systems and service monitoring system. It collects metrics from configured targets at given intervals, evaluates rule expressions, displays the results, and can trigger alerts if some condition is observed to be true.
+
+This chart bootstraps a [Prometheus](https://prometheus.io/) deployment on a [Kubernetes](http://kubernetes.io) cluster using the [Helm](https://helm.sh) package manager.
+
+## Prerequisites
+
+- Kubernetes 1.19+
+- Helm 3.7+
+
+## Get Repository Info
+
+```console
+helm repo add prometheus-community https://prometheus-community.github.io/helm-charts
+helm repo update
+```
+
+_See [helm repository](https://helm.sh/docs/helm/helm_repo/) for command documentation._
+
+## Install Chart
+
+Starting with version 16.0, the Prometheus chart requires Helm 3.7+ in order to install successfully. Please check your `helm` release before installation.
+
+```console
+helm install [RELEASE_NAME] prometheus-community/prometheus
+```
+
+_See [configuration](#configuration) below._
+
+_See [helm install](https://helm.sh/docs/helm/helm_install/) for command documentation._
+
+## Dependencies
+
+By default this chart installs additional, dependent charts:
+
+- [alertmanager](https://github.com/prometheus-community/helm-charts/tree/main/charts/alertmanager)
+- [kube-state-metrics](https://github.com/prometheus-community/helm-charts/tree/main/charts/kube-state-metrics)
+- [prometheus-node-exporter](https://github.com/prometheus-community/helm-charts/tree/main/charts/prometheus-node-exporter)
+- [prometheus-pushgateway](https://github.com/walker-tom/helm-charts/tree/main/charts/prometheus-pushgateway)
+
+To disable the dependency during installation, set `alertmanager.enabled`, `kube-state-metrics.enabled`, `prometheus-node-exporter.enabled` and `prometheus-pushgateway.enabled` to `false`.
+
+_See [helm dependency](https://helm.sh/docs/helm/helm_dependency/) for command documentation._
+
+## Uninstall Chart
+
+```console
+helm uninstall [RELEASE_NAME]
+```
+
+This removes all the Kubernetes components associated with the chart and deletes the release.
+
+_See [helm uninstall](https://helm.sh/docs/helm/helm_uninstall/) for command documentation._
+
+## Updating values.schema.json
+
+A [`values.schema.json`](https://helm.sh/docs/topics/charts/#schema-files) file has been added to validate chart values. When `values.yaml` file has a structure change (i.e. add a new field, change value type, etc.), modify `values.schema.json` file manually or run `helm schema-gen values.yaml > values.schema.json` to ensure the schema is aligned with the latest values. Refer to [helm plugin `helm-schema-gen`](https://github.com/karuppiah7890/helm-schema-gen) for plugin installation instructions.
+
+## Upgrading Chart
+
+```console
+helm upgrade [RELEASE_NAME] prometheus-community/prometheus --install
+```
+
+_See [helm upgrade](https://helm.sh/docs/helm/helm_upgrade/) for command documentation._
+
+### To 26.0
+
+This release changes default version of promethues to v3.0.0, See official [migration guide](https://prometheus.io/docs/prometheus/latest/migration/#prometheus-3-0-migration-guide
+) and [release notes](https://github.com/prometheus/prometheus/releases/tag/v3.0.0) for more details.
+
+### To 25.0
+
+The `server.remoteRead[].url` and `server.remoteWrite[].url` fields now support templating. Allowing for `url` values such as `https://{{ .Release.Name }}.example.com`.
+
+Any entries in these which previously included `{{` or `}}` must be escaped with `{{ "{{" }}` and `{{ "}}" }}` respectively. Entries which did not previously include the template-like syntax will not be affected.
+
+### To 24.0
+
+Require Kubernetes 1.19+
+
+Release 1.0.0 of the _alertmanager_ replaced [configmap-reload](https://github.com/jimmidyson/configmap-reload) with [prometheus-config-reloader](https://github.com/prometheus-operator/prometheus-operator/tree/main/cmd/prometheus-config-reloader).
+Extra command-line arguments specified via `configmapReload.prometheus.extraArgs` are not compatible and will break with the new prometheus-config-reloader. Please, refer to the [sources](https://github.com/prometheus-operator/prometheus-operator/blob/main/cmd/prometheus-config-reloader/main.go) in order to make the appropriate adjustment to the extra command-line arguments.
+
+### To 23.0
+
+Release 5.0.0 of the _kube-state-metrics_ chart introduced a separation of the `image.repository` value in two distinct values:
+
+```console
+ image:
+   registry: registry.k8s.io
+   repository: kube-state-metrics/kube-state-metrics
+```
+
+If a custom values file or CLI flags set `kube-state.metrics.image.repository`, please, set the new values accordingly.
+
+If you are upgrading _prometheus-pushgateway_ with the chart and _prometheus-pushgateway_ has been deployed as a statefulset with a persistent volume, the statefulset must be deleted before upgrading the chart, e.g.:
+
+```bash
+kubectl delete sts -l app.kubernetes.io/name=prometheus-pushgateway -n monitoring --cascade=orphan
+```
+
+Users are advised to review changes in the corresponding chart releases before upgrading.
+
+### To 22.0
+
+The `app.kubernetes.io/version` label has been removed from the pod selector.
+
+Therefore, you must delete the previous StatefulSet or Deployment before upgrading. Performing this operation will cause **Prometheus to stop functioning** until the upgrade is complete.
+
+```console
+kubectl delete deploy,sts -l app.kubernetes.io/name=prometheus
+```
+
+### To 21.0
+
+The Kubernetes labels have been updated to follow [Helm 3 label and annotation best practices](https://helm.sh/docs/chart_best_practices/labels/).
+Specifically, labels mapping is listed below:
+
+| OLD                | NEW                          |
+|--------------------|------------------------------|
+|heritage            | app.kubernetes.io/managed-by |
+|chart               | helm.sh/chart                |
+|[container version] | app.kubernetes.io/version    |
+|app                 | app.kubernetes.io/name       |
+|release             | app.kubernetes.io/instance   |
+
+Therefore, depending on the way you've configured the chart, the previous StatefulSet or Deployment need to be deleted before upgrade.
+
+If `runAsStatefulSet: false` (this is the default):
+
+```console
+kubectl delete deploy -l app=prometheus
+```
+
+If `runAsStatefulSet: true`:
+
+```console
+kubectl delete sts -l app=prometheus
+```
+
+After that do the actual upgrade:
+
+```console
+helm upgrade -i prometheus prometheus-community/prometheus
+```
+
+### To 20.0
+
+The [configmap-reload](https://github.com/jimmidyson/configmap-reload) container was replaced by the [prometheus-config-reloader](https://github.com/prometheus-operator/prometheus-operator/tree/main/cmd/prometheus-config-reloader).
+Extra command-line arguments specified via configmapReload.prometheus.extraArgs are not compatible and will break with the new prometheus-config-reloader, refer to the [sources](https://github.com/prometheus-operator/prometheus-operator/blob/main/cmd/prometheus-config-reloader/main.go) in order to make the appropriate adjustment to the extra command-line arguments.
+
+### To 19.0
+
+Prometheus has been updated to version v2.40.5.
+
+Prometheus-pushgateway was updated to version 2.0.0 which adapted [Helm label and annotation best practices](https://helm.sh/docs/chart_best_practices/labels/).
+See the [upgrade docs of the prometheus-pushgateway chart](https://github.com/prometheus-community/helm-charts/tree/main/charts/prometheus-pushgateway#to-200) to see whats to do, before you upgrade Prometheus!
+
+The condition in Chart.yaml to disable kube-state-metrics has been changed from `kubeStateMetrics.enabled` to `kube-state-metrics.enabled`
+
+The Docker image tag is used from appVersion field in Chart.yaml by default.
+
+Unused subchart configs has been removed and subchart config is now on the bottom of the config file.
+
+If Prometheus is used as deployment the updatestrategy has been changed to "Recreate" by default, so Helm updates work out of the box.
+
+`.Values.server.extraTemplates` & `.Values.server.extraObjects` has been removed in favour of `.Values.extraManifests`, which can do the same.
+
+`.Values.server.enabled` has been removed as it's useless now that all components are created by subcharts.
+
+All files in `templates/server` directory has been moved to `templates` directory.
+
+```bash
+helm upgrade [RELEASE_NAME] prometheus-community/prometheus --version 19.0.0
+```
+
+### To 18.0
+
+Version 18.0.0 uses alertmanager service from the [alertmanager chart](https://github.com/prometheus-community/helm-charts/tree/main/charts/alertmanager). If you've made some config changes, please check the old `alertmanager` and the new `alertmanager` configuration section in values.yaml for differences.
+
+Note that the `configmapReload` section for `alertmanager` was moved out of dedicated section (`configmapReload.alertmanager`) to alertmanager embedded (`alertmanager.configmapReload`).
+
+Before you update, please scale down the `prometheus-server` deployment to `0` then perform upgrade:
+
+```bash
+# In 17.x
+kubectl scale deploy prometheus-server --replicas=0
+# Upgrade
+helm upgrade [RELEASE_NAME] prometheus-community/prometheus --version 18.0.0
+```
+
+### To 17.0
+
+Version 17.0.0 uses pushgateway service from the [prometheus-pushgateway chart](https://github.com/prometheus-community/helm-charts/tree/main/charts/prometheus-pushgateway). If you've made some config changes, please check the old `pushgateway` and the new `prometheus-pushgateway` configuration section in values.yaml for differences.
+
+Before you update, please scale down the `prometheus-server` deployment to `0` then perform upgrade:
+
+```bash
+# In 16.x
+kubectl scale deploy prometheus-server --replicas=0
+# Upgrade
+helm upgrade [RELEASE_NAME] prometheus-community/prometheus --version 17.0.0
+```
+
+### To 16.0
+
+Starting from version 16.0 embedded services (like alertmanager, node-exporter etc.) are moved out of Prometheus chart and the respecting charts from this repository are used as dependencies. Version 16.0.0 moves node-exporter service to [prometheus-node-exporter chart](https://github.com/prometheus-community/helm-charts/tree/main/charts/prometheus-node-exporter). If you've made some config changes, please check the old `nodeExporter` and the new `prometheus-node-exporter` configuration section in values.yaml for differences.
+
+Before you update, please scale down the `prometheus-server` deployment to `0` then perform upgrade:
+
+```bash
+# In 15.x
+kubectl scale deploy prometheus-server --replicas=0
+# Upgrade
+helm upgrade [RELEASE_NAME] prometheus-community/prometheus --version 16.0.0
+```
+
+### To 15.0
+
+Version 15.0.0 changes the relabeling config, aligning it with the [Prometheus community conventions](https://github.com/prometheus/prometheus/pull/9832). If you've made manual changes to the relabeling config, you have to adapt your changes.
+
+Before you update please execute the following command, to be able to update kube-state-metrics:
+
+```bash
+kubectl delete deployments.apps -l app.kubernetes.io/instance=prometheus,app.kubernetes.io/name=kube-state-metrics --cascade=orphan
+```
+
+### To 9.0
+
+Version 9.0 adds a new option to enable or disable the Prometheus Server. This supports the use case of running a Prometheus server in one k8s cluster and scraping exporters in another cluster while using the same chart for each deployment. To install the server `server.enabled` must be set to `true`.
+
+### To 5.0
+
+As of version 5.0, this chart uses Prometheus 2.x. This version of prometheus introduces a new data format and is not compatible with prometheus 1.x. It is recommended to install this as a new release, as updating existing releases will not work. See the [prometheus docs](https://prometheus.io/docs/prometheus/latest/migration/#storage) for instructions on retaining your old data.
+
+Prometheus version 2.x has made changes to alertmanager, storage and recording rules. Check out the migration guide [here](https://prometheus.io/docs/prometheus/2.0/migration/).
+
+Users of this chart will need to update their alerting rules to the new format before they can upgrade.
+
+### Example Migration
+
+Assuming you have an existing release of the prometheus chart, named `prometheus-old`. In order to update to prometheus 2.x while keeping your old data do the following:
+
+1. Update the `prometheus-old` release. Disable scraping on every component besides the prometheus server, similar to the configuration below:
+
+  ```yaml
+  alertmanager:
+    enabled: false
+  alertmanagerFiles:
+    alertmanager.yml: ""
+  kubeStateMetrics:
+    enabled: false
+  nodeExporter:
+    enabled: false
+  pushgateway:
+    enabled: false
+  server:
+    extraArgs:
+      storage.local.retention: 720h
+  serverFiles:
+    alerts: ""
+    prometheus.yml: ""
+    rules: ""
+  ```
+
+1. Deploy a new release of the chart with version 5.0+ using prometheus 2.x. In the values.yaml set the scrape config as usual, and also add the `prometheus-old` instance as a remote-read target.
+
+   ```yaml
+    prometheus.yml:
+      ...
+      remote_read:
+      - url: http://prometheus-old/api/v1/read
+      ...
+   ```
+
+   Old data will be available when you query the new prometheus instance.
+
+## Configuration
+
+See [Customizing the Chart Before Installing](https://helm.sh/docs/intro/using_helm/#customizing-the-chart-before-installing). To see all configurable options with detailed comments, visit the chart's [values.yaml](./values.yaml), or run these configuration commands:
+
+```console
+helm show values prometheus-community/prometheus
+```
+
+You may similarly use the above configuration commands on each chart [dependency](#dependencies) to see its configurations.
+
+### Scraping Pod Metrics via Annotations
+
+This chart uses a default configuration that causes prometheus to scrape a variety of kubernetes resource types, provided they have the correct annotations. In this section we describe how to configure pods to be scraped; for information on how other resource types can be scraped you can do a `helm template` to get the kubernetes resource definitions, and then reference the prometheus configuration in the ConfigMap against the prometheus documentation for [relabel_config](https://prometheus.io/docs/prometheus/latest/configuration/configuration/#relabel_config) and [kubernetes_sd_config](https://prometheus.io/docs/prometheus/latest/configuration/configuration/#kubernetes_sd_config).
+
+In order to get prometheus to scrape pods, you must add annotations to the pods as below:
+
+```yaml
+metadata:
+  annotations:
+    prometheus.io/scrape: "true"
+    prometheus.io/path: /metrics
+    prometheus.io/port: "8080"
+```
+
+You should adjust `prometheus.io/path` based on the URL that your pod serves metrics from. `prometheus.io/port` should be set to the port that your pod serves metrics from. Note that the values for `prometheus.io/scrape` and `prometheus.io/port` must be enclosed in double quotes.
+
+### Sharing Alerts Between Services
+
+Note that when [installing](#install-chart) or [upgrading](#upgrading-chart) you may use multiple values override files. This is particularly useful when you have alerts belonging to multiple services in the cluster. For example,
+
+```yaml
+# values.yaml
+# ...
+
+# service1-alert.yaml
+serverFiles:
+  alerts:
+    service1:
+      - alert: anAlert
+      # ...
+
+# service2-alert.yaml
+serverFiles:
+  alerts:
+    service2:
+      - alert: anAlert
+      # ...
+```
+
+```console
+helm install [RELEASE_NAME] prometheus-community/prometheus -f values.yaml -f service1-alert.yaml -f service2-alert.yaml
+```
+
+### RBAC Configuration
+
+Roles and RoleBindings resources will be created automatically for `server` service.
+
+To manually setup RBAC you need to set the parameter `rbac.create=false` and specify the service account to be used for each service by setting the parameters: `serviceAccounts.{{ component }}.create` to `false` and `serviceAccounts.{{ component }}.name` to the name of a pre-existing service account.
+
+> **Tip**: You can refer to the default `*-clusterrole.yaml` and `*-clusterrolebinding.yaml` files in [templates](templates/) to customize your own.
+
+### ConfigMap Files
+
+AlertManager is configured through [alertmanager.yml](https://prometheus.io/docs/alerting/configuration/). This file (and any others listed in `alertmanagerFiles`) will be mounted into the `alertmanager` pod.
+
+Prometheus is configured through [prometheus.yml](https://prometheus.io/docs/operating/configuration/). This file (and any others listed in `serverFiles`) will be mounted into the `server` pod.
+
+### Ingress TLS
+
+If your cluster allows automatic creation/retrieval of TLS certificates (e.g. [cert-manager](https://github.com/jetstack/cert-manager)), please refer to the documentation for that mechanism.
+
+To manually configure TLS, first create/retrieve a key & certificate pair for the address(es) you wish to protect. Then create a TLS secret in the namespace:
+
+```console
+kubectl create secret tls prometheus-server-tls --cert=path/to/tls.cert --key=path/to/tls.key
+```
+
+Include the secret's name, along with the desired hostnames, in the alertmanager/server Ingress TLS section of your custom `values.yaml` file:
+
+```yaml
+server:
+  ingress:
+    ## If true, Prometheus server Ingress will be created
+    ##
+    enabled: true
+
+    ## Prometheus server Ingress hostnames
+    ## Must be provided if Ingress is enabled
+    ##
+    hosts:
+      - prometheus.domain.com
+
+    ## Prometheus server Ingress TLS configuration
+    ## Secrets must be manually created in the namespace
+    ##
+    tls:
+      - secretName: prometheus-server-tls
+        hosts:
+          - prometheus.domain.com
+```
+
+### NetworkPolicy
+
+Enabling Network Policy for Prometheus will secure connections to Alert Manager and Kube State Metrics by only accepting connections from Prometheus Server. All inbound connections to Prometheus Server are still allowed.
+
+To enable network policy for Prometheus, install a networking plugin that implements the Kubernetes NetworkPolicy spec, and set `networkPolicy.enabled` to true.
+
+If NetworkPolicy is enabled for Prometheus' scrape targets, you may also need to manually create a networkpolicy which allows it.
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/.helmignore b/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/.helmignore
new file mode 100644
index 0000000000..7653e97e66
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/.helmignore
@@ -0,0 +1,25 @@
+# Patterns to ignore when building packages.
+# This supports shell glob matching, relative path matching, and
+# negation (prefixed with !). Only one pattern per line.
+.DS_Store
+# Common VCS dirs
+.git/
+.gitignore
+.bzr/
+.bzrignore
+.hg/
+.hgignore
+.svn/
+# Common backup files
+*.swp
+*.bak
+*.tmp
+*.orig
+*~
+# Various IDEs
+.project
+.idea/
+*.tmproj
+.vscode/
+
+unittests/
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/Chart.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/Chart.yaml
new file mode 100644
index 0000000000..df7c2a3986
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/Chart.yaml
@@ -0,0 +1,24 @@
+annotations:
+  artifacthub.io/license: Apache-2.0
+  artifacthub.io/links: |
+    - name: Chart Source
+      url: https://github.com/prometheus-community/helm-charts
+apiVersion: v2
+appVersion: v0.27.0
+description: The Alertmanager handles alerts sent by client applications such as the
+  Prometheus server.
+home: https://prometheus.io/
+icon: https://raw.githubusercontent.com/prometheus/prometheus.github.io/master/assets/prometheus_logo-cb55bb5c346.png
+keywords:
+- monitoring
+kubeVersion: '>=1.19.0-0'
+maintainers:
+- email: monotek23@gmail.com
+  name: monotek
+- email: naseem@transit.app
+  name: naseemkullah
+name: alertmanager
+sources:
+- https://github.com/prometheus/alertmanager
+type: application
+version: 1.13.1
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/README.md b/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/README.md
new file mode 100644
index 0000000000..d3f4df73a2
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/README.md
@@ -0,0 +1,62 @@
+# Alertmanager
+
+As per [prometheus.io documentation](https://prometheus.io/docs/alerting/latest/alertmanager/):
+> The Alertmanager handles alerts sent by client applications such as the
+> Prometheus server. It takes care of deduplicating, grouping, and routing them
+> to the correct receiver integration such as email, PagerDuty, or OpsGenie. It
+> also takes care of silencing and inhibition of alerts.
+
+## Prerequisites
+
+Kubernetes 1.14+
+
+## Get Repository Info
+
+```console
+helm repo add prometheus-community https://prometheus-community.github.io/helm-charts
+helm repo update
+```
+
+_See [`helm repo`](https://helm.sh/docs/helm/helm_repo/) for command documentation._
+
+## Install Chart
+
+```console
+helm install [RELEASE_NAME] prometheus-community/alertmanager
+```
+
+_See [configuration](#configuration) below._
+
+_See [helm install](https://helm.sh/docs/helm/helm_install/) for command documentation._
+
+## Uninstall Chart
+
+```console
+helm uninstall [RELEASE_NAME]
+```
+
+This removes all the Kubernetes components associated with the chart and deletes the release.
+
+_See [helm uninstall](https://helm.sh/docs/helm/helm_uninstall/) for command documentation._
+
+## Upgrading Chart
+
+```console
+helm upgrade [RELEASE_NAME] [CHART] --install
+```
+
+_See [helm upgrade](https://helm.sh/docs/helm/helm_upgrade/) for command documentation._
+
+### To 1.0
+
+The [configmap-reload](https://github.com/jimmidyson/configmap-reload) container was replaced by the [prometheus-config-reloader](https://github.com/prometheus-operator/prometheus-operator/tree/main/cmd/prometheus-config-reloader).
+Extra command-line arguments specified via configmapReload.prometheus.extraArgs are not compatible and will break with the new prometheus-config-reloader, refer to the [sources](https://github.com/prometheus-operator/prometheus-operator/blob/main/cmd/prometheus-config-reloader/main.go) in order to make the appropriate adjustment to the extea command-line arguments.
+The `networking.k8s.io/v1beta1` is no longer supported. use [`networking.k8s.io/v1`](https://kubernetes.io/docs/reference/using-api/deprecation-guide/#ingressclass-v122).
+
+## Configuration
+
+See [Customizing the Chart Before Installing](https://helm.sh/docs/intro/using_helm/#customizing-the-chart-before-installing). To see all configurable options with detailed comments, visit the chart's [values.yaml](./values.yaml), or run these configuration commands:
+
+```console
+helm show values prometheus-community/alertmanager
+```
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/ci/config-reload-values.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/ci/config-reload-values.yaml
new file mode 100644
index 0000000000..cba5de8e29
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/ci/config-reload-values.yaml
@@ -0,0 +1,2 @@
+configmapReload:
+  enabled: true
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/NOTES.txt b/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/NOTES.txt
new file mode 100644
index 0000000000..46ea5bee59
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/NOTES.txt
@@ -0,0 +1,21 @@
+1. Get the application URL by running these commands:
+{{- if .Values.ingress.enabled }}
+{{- range $host := .Values.ingress.hosts }}
+  {{- range .paths }}
+  http{{ if $.Values.ingress.tls }}s{{ end }}://{{ $host.host }}{{ .path }}
+  {{- end }}
+{{- end }}
+{{- else if contains "NodePort" .Values.service.type }}
+  export NODE_PORT=$(kubectl get --namespace {{ include "alertmanager.namespace" . }} -o jsonpath="{.spec.ports[0].nodePort}" services {{ include "alertmanager.fullname" . }})
+  export NODE_IP=$(kubectl get nodes --namespace {{ include "alertmanager.namespace" . }} -o jsonpath="{.items[0].status.addresses[0].address}")
+  echo http://$NODE_IP:$NODE_PORT
+{{- else if contains "LoadBalancer" .Values.service.type }}
+     NOTE: It may take a few minutes for the LoadBalancer IP to be available.
+           You can watch the status of by running 'kubectl get --namespace {{ include "alertmanager.namespace" . }} svc -w {{ include "alertmanager.fullname" . }}'
+  export SERVICE_IP=$(kubectl get svc --namespace {{ include "alertmanager.namespace" . }} {{ include "alertmanager.fullname" . }} --template "{{"{{ range (index .status.loadBalancer.ingress 0) }}{{.}}{{ end }}"}}")
+  echo http://$SERVICE_IP:{{ .Values.service.port }}
+{{- else if contains "ClusterIP" .Values.service.type }}
+  export POD_NAME=$(kubectl get pods --namespace {{ include "alertmanager.namespace" . }} -l "app.kubernetes.io/name={{ include "alertmanager.name" . }},app.kubernetes.io/instance={{ .Release.Name }}" -o jsonpath="{.items[0].metadata.name}")
+  echo "Visit http://127.0.0.1:{{ .Values.service.port }} to use your application"
+  kubectl --namespace {{ include "alertmanager.namespace" . }} port-forward $POD_NAME {{ .Values.service.port }}:80
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/_helpers.tpl b/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/_helpers.tpl
new file mode 100644
index 0000000000..827b6ee9f7
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/_helpers.tpl
@@ -0,0 +1,92 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Expand the name of the chart.
+*/}}
+{{- define "alertmanager.name" -}}
+{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{/*
+Create a default fully qualified app name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+If release name contains chart name it will be used as a full name.
+*/}}
+{{- define "alertmanager.fullname" -}}
+{{- if .Values.fullnameOverride }}
+{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" }}
+{{- else }}
+{{- $name := default .Chart.Name .Values.nameOverride }}
+{{- if contains $name .Release.Name }}
+{{- .Release.Name | trunc 63 | trimSuffix "-" }}
+{{- else }}
+{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" }}
+{{- end }}
+{{- end }}
+{{- end }}
+
+{{/*
+Create chart name and version as used by the chart label.
+*/}}
+{{- define "alertmanager.chart" -}}
+{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{/*
+Common labels
+*/}}
+{{- define "alertmanager.labels" -}}
+helm.sh/chart: {{ include "alertmanager.chart" . }}
+{{ include "alertmanager.selectorLabels" . }}
+{{- with .Chart.AppVersion }}
+app.kubernetes.io/version: {{ . | quote }}
+{{- end }}
+app.kubernetes.io/managed-by: {{ .Release.Service }}
+{{- end }}
+
+{{/*
+Selector labels
+*/}}
+{{- define "alertmanager.selectorLabels" -}}
+app.kubernetes.io/name: {{ include "alertmanager.name" . }}
+app.kubernetes.io/instance: {{ .Release.Name }}
+{{- end }}
+
+{{/*
+Create the name of the service account to use
+*/}}
+{{- define "alertmanager.serviceAccountName" -}}
+{{- if .Values.serviceAccount.create }}
+{{- default (include "alertmanager.fullname" .) .Values.serviceAccount.name }}
+{{- else }}
+{{- default "default" .Values.serviceAccount.name }}
+{{- end }}
+{{- end }}
+
+{{/*
+Define Ingress apiVersion
+*/}}
+{{- define "alertmanager.ingress.apiVersion" -}}
+{{- printf "networking.k8s.io/v1" }}
+{{- end }}
+
+{{/*
+Define Pdb apiVersion
+*/}}
+{{- define "alertmanager.pdb.apiVersion" -}}
+{{- if $.Capabilities.APIVersions.Has "policy/v1/PodDisruptionBudget" }}
+{{- printf "policy/v1" }}
+{{- else }}
+{{- printf "policy/v1beta1" }}
+{{- end }}
+{{- end }}
+
+{{/*
+Allow overriding alertmanager namespace
+*/}}
+{{- define "alertmanager.namespace" -}}
+{{- if .Values.namespaceOverride -}}
+{{- .Values.namespaceOverride -}}
+{{- else -}}
+{{- .Release.Namespace -}}
+{{- end -}}
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/configmap.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/configmap.yaml
new file mode 100644
index 0000000000..9e5882dc86
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/configmap.yaml
@@ -0,0 +1,21 @@
+{{- if .Values.config.enabled }}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ include "alertmanager.fullname" . }}
+  labels:
+    {{- include "alertmanager.labels" . | nindent 4 }}
+  {{- with .Values.configAnnotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  namespace: {{ include "alertmanager.namespace" . }}
+data:
+  alertmanager.yml: |
+  {{- $config := omit .Values.config "enabled" }}
+  {{- toYaml $config | default "{}" | nindent 4  }}
+  {{- range $key, $value := .Values.templates }}
+  {{ $key }}: |-
+    {{- $value | nindent 4 }}
+  {{- end }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/ingress.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/ingress.yaml
new file mode 100644
index 0000000000..e729a8ad3b
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/ingress.yaml
@@ -0,0 +1,44 @@
+{{- if .Values.ingress.enabled }}
+{{- $fullName := include "alertmanager.fullname" . }}
+{{- $svcPort := .Values.service.port }}
+apiVersion: {{ include "alertmanager.ingress.apiVersion" . }}
+kind: Ingress
+metadata:
+  name: {{ $fullName }}
+  labels:
+    {{- include "alertmanager.labels" . | nindent 4 }}
+  {{- with .Values.ingress.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  namespace: {{ include "alertmanager.namespace" . }}
+spec:
+  {{- if .Values.ingress.className }}
+  ingressClassName: {{ .Values.ingress.className }}
+  {{- end }}
+  {{- if .Values.ingress.tls }}
+  tls:
+    {{- range .Values.ingress.tls }}
+    - hosts:
+        {{- range .hosts }}
+        - {{ . | quote }}
+        {{- end }}
+      secretName: {{ .secretName }}
+    {{- end }}
+  {{- end }}
+  rules:
+    {{- range .Values.ingress.hosts }}
+    - host: {{ .host | quote }}
+      http:
+        paths:
+          {{- range .paths }}
+          - path: {{ .path }}
+            pathType: {{ .pathType }}
+            backend:
+              service:
+                name: {{ $fullName }}
+                port:
+                  number: {{ $svcPort }}
+          {{- end }}
+    {{- end }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/ingressperreplica.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/ingressperreplica.yaml
new file mode 100644
index 0000000000..6f5a023500
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/ingressperreplica.yaml
@@ -0,0 +1,56 @@
+{{- if and .Values.servicePerReplica.enabled .Values.ingressPerReplica.enabled }}
+{{- $pathType := .Values.ingressPerReplica.pathType  }}
+{{- $count := .Values.replicaCount | int -}}
+{{- $servicePort := .Values.service.port -}}
+{{- $ingressValues := .Values.ingressPerReplica -}}
+{{- $fullName := include "alertmanager.fullname" . }}
+apiVersion: v1
+kind: List
+metadata:
+  name: {{ $fullName }}-ingressperreplica
+  namespace: {{ include "alertmanager.namespace" . }}
+items:
+{{- range $i, $e := until $count }}
+  - kind: Ingress
+    apiVersion: {{ include "alertmanager.ingress.apiVersion" $ }}
+    metadata:
+      name: {{ $fullName }}-{{ $i }}
+      namespace: {{ include "alertmanager.namespace" $ }}
+      labels:
+      {{- include "alertmanager.labels" $ | nindent 8 }}
+      {{- if $ingressValues.labels }}
+{{ toYaml $ingressValues.labels | indent 8 }}
+      {{- end }}
+      {{- if $ingressValues.annotations }}
+      annotations:
+{{ toYaml $ingressValues.annotations | indent 8 }}
+      {{- end }}
+    spec:
+      {{- if $ingressValues.className }}
+      ingressClassName: {{ $ingressValues.className }}
+      {{- end }}
+      rules:
+        - host: {{ $ingressValues.hostPrefix }}-{{ $i }}.{{ $ingressValues.hostDomain }}
+          http:
+            paths:
+      {{- range $p := $ingressValues.paths }}
+              - path: {{ tpl $p $ }}
+                pathType: {{ $pathType }}
+                backend:
+                  service:
+                    name: {{ $fullName }}-{{ $i }}
+                    port:
+                      name: http
+      {{- end -}}
+      {{- if or $ingressValues.tlsSecretName $ingressValues.tlsSecretPerReplica.enabled }}
+      tls:
+        - hosts:
+            - {{ $ingressValues.hostPrefix }}-{{ $i }}.{{ $ingressValues.hostDomain }}
+          {{- if $ingressValues.tlsSecretPerReplica.enabled }}
+          secretName: {{ $ingressValues.tlsSecretPerReplica.prefix }}-{{ $i }}
+          {{- else }}
+          secretName: {{ $ingressValues.tlsSecretName }}
+          {{- end }}
+      {{- end }}
+{{- end -}}
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/pdb.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/pdb.yaml
new file mode 100644
index 0000000000..103e9ecde1
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/pdb.yaml
@@ -0,0 +1,14 @@
+{{- if .Values.podDisruptionBudget }}
+apiVersion: {{ include "alertmanager.pdb.apiVersion" . }}
+kind: PodDisruptionBudget
+metadata:
+  name: {{ include "alertmanager.fullname" . }}
+  labels:
+    {{- include "alertmanager.labels" . | nindent 4 }}
+  namespace: {{ include "alertmanager.namespace" . }}
+spec:
+  selector:
+    matchLabels:
+      {{- include "alertmanager.selectorLabels" . | nindent 6 }}
+  {{- toYaml .Values.podDisruptionBudget | nindent 2 }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/serviceaccount.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/serviceaccount.yaml
new file mode 100644
index 0000000000..bc9ccaaff9
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/serviceaccount.yaml
@@ -0,0 +1,14 @@
+{{- if .Values.serviceAccount.create }}
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: {{ include "alertmanager.serviceAccountName" . }}
+  labels:
+    {{- include "alertmanager.labels" . | nindent 4 }}
+  {{- with .Values.serviceAccount.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  namespace: {{ include "alertmanager.namespace" . }}
+automountServiceAccountToken: {{ .Values.automountServiceAccountToken }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/serviceperreplica.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/serviceperreplica.yaml
new file mode 100644
index 0000000000..faa75b3ba2
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/serviceperreplica.yaml
@@ -0,0 +1,44 @@
+{{- if and .Values.servicePerReplica.enabled }}
+{{- $count := .Values.replicaCount | int -}}
+{{- $serviceValues := .Values.servicePerReplica -}}
+apiVersion: v1
+kind: List
+metadata:
+  name: {{ include "alertmanager.fullname" . }}-serviceperreplica
+  namespace: {{ include "alertmanager.namespace" . }}
+items:
+{{- range $i, $e := until $count }}
+  - apiVersion: v1
+    kind: Service
+    metadata:
+      name: {{ include "alertmanager.fullname" $ }}-{{ $i }}
+      namespace: {{ include "alertmanager.namespace" $ }}
+      labels:
+        {{- include "alertmanager.labels" $ | nindent 8 }}
+      {{- if $serviceValues.annotations }}
+      annotations:
+{{ toYaml $serviceValues.annotations | indent 8 }}
+      {{- end }}
+    spec:
+      {{- if $serviceValues.clusterIP }}
+      clusterIP: {{ $serviceValues.clusterIP }}
+      {{- end }}
+      {{- if $serviceValues.loadBalancerSourceRanges }}
+      loadBalancerSourceRanges:
+      {{- range $cidr := $serviceValues.loadBalancerSourceRanges }}
+        - {{ $cidr }}
+      {{- end }}
+      {{- end }}
+      {{- if ne $serviceValues.type "ClusterIP" }}
+      externalTrafficPolicy: {{ $serviceValues.externalTrafficPolicy }}
+      {{- end }}
+      ports:
+        - name: http
+          port: {{ $.Values.service.port }}
+          targetPort: http
+      selector:
+        {{- include "alertmanager.selectorLabels" $ | nindent 8 }}
+        statefulset.kubernetes.io/pod-name: {{ include "alertmanager.fullname" $ }}-{{ $i }}
+      type: "{{ $serviceValues.type }}"
+{{- end }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/services.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/services.yaml
new file mode 100644
index 0000000000..eefb9ce161
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/services.yaml
@@ -0,0 +1,75 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ include "alertmanager.fullname" . }}
+  labels:
+    {{- include "alertmanager.labels" . | nindent 4 }}
+    {{- with .Values.service.labels }}
+    {{- toYaml . | nindent 4 }}
+    {{- end }}
+  {{- with .Values.service.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  namespace: {{ include "alertmanager.namespace" . }}
+spec:
+  {{- if .Values.service.ipDualStack.enabled }}
+  ipFamilies: {{ toYaml .Values.service.ipDualStack.ipFamilies | nindent 4 }}
+  ipFamilyPolicy: {{ .Values.service.ipDualStack.ipFamilyPolicy }}
+  {{- end }}
+  type: {{ .Values.service.type }}
+  {{- with .Values.service.loadBalancerIP }}
+  loadBalancerIP: {{ . }}
+  {{- end }}
+  {{- with .Values.service.loadBalancerSourceRanges }}
+  loadBalancerSourceRanges:
+  {{- range $cidr := . }}
+    - {{ $cidr }}
+  {{- end }}
+  {{- end }}
+  ports:
+    - port: {{ .Values.service.port }}
+      targetPort: http
+      protocol: TCP
+      name: http
+      {{- if (and (eq .Values.service.type "NodePort") .Values.service.nodePort) }}
+      nodePort: {{ .Values.service.nodePort }}
+      {{- end }}
+    {{- with .Values.service.extraPorts }}
+    {{- toYaml . | nindent 4 }}
+    {{- end }}
+  selector:
+    {{- include "alertmanager.selectorLabels" . | nindent 4 }}
+---
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ include "alertmanager.fullname" . }}-headless
+  labels:
+    {{- include "alertmanager.labels" . | nindent 4 }}
+    {{- with .Values.service.labels }}
+    {{- toYaml . | nindent 4 }}
+    {{- end }}
+  namespace: {{ include "alertmanager.namespace" . }}
+spec:
+  clusterIP: None
+  ports:
+    - port: {{ .Values.service.port }}
+      targetPort: http
+      protocol: TCP
+      name: http
+    {{- if or (gt (int .Values.replicaCount) 1) (.Values.additionalPeers) }}
+    - port: {{ .Values.service.clusterPort }}
+      targetPort: clusterpeer-tcp
+      protocol: TCP
+      name: cluster-tcp
+    - port: {{ .Values.service.clusterPort }}
+      targetPort: clusterpeer-udp
+      protocol: UDP
+      name: cluster-udp
+    {{- end }}
+    {{- with .Values.service.extraPorts }}
+    {{- toYaml . | nindent 4 }}
+    {{- end }}
+  selector:
+    {{- include "alertmanager.selectorLabels" . | nindent 4 }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/statefulset.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/statefulset.yaml
new file mode 100644
index 0000000000..6d973543ce
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/statefulset.yaml
@@ -0,0 +1,256 @@
+{{- $svcClusterPort := .Values.service.clusterPort }}
+apiVersion: apps/v1
+kind: StatefulSet
+metadata:
+  name: {{ include "alertmanager.fullname" . }}
+  labels:
+    {{- include "alertmanager.labels" . | nindent 4 }}
+  {{- with .Values.statefulSet.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  namespace: {{ include "alertmanager.namespace" . }}
+spec:
+  replicas: {{ .Values.replicaCount }}
+  minReadySeconds: {{ .Values.minReadySeconds }}
+  revisionHistoryLimit: {{ .Values.revisionHistoryLimit }}
+  selector:
+    matchLabels:
+      {{- include "alertmanager.selectorLabels" . | nindent 6 }}
+  serviceName: {{ include "alertmanager.fullname" . }}-headless
+  template:
+    metadata:
+      labels:
+        {{- include "alertmanager.selectorLabels" . | nindent 8 }}
+        {{- with .Values.podLabels }}
+        {{- toYaml . | nindent 8 }}
+        {{- end }}
+      annotations:
+        {{- if not .Values.configmapReload.enabled }}
+        checksum/config: {{ include (print $.Template.BasePath "/configmap.yaml") . | sha256sum }}
+        {{- end }}
+        {{- with .Values.podAnnotations }}
+        {{- toYaml . | nindent 8 }}
+        {{- end }}
+    spec:
+      automountServiceAccountToken: {{ .Values.automountServiceAccountToken }}
+      {{- with .Values.imagePullSecrets }}
+      imagePullSecrets:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      serviceAccountName: {{ include "alertmanager.serviceAccountName" . }}
+      {{- with .Values.dnsConfig }}
+      dnsConfig:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.hostAliases }}
+      hostAliases:
+      {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.nodeSelector }}
+      nodeSelector:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.schedulerName }}
+      schedulerName: {{ . }}
+      {{- end }}
+      {{- if or .Values.podAntiAffinity .Values.affinity }}
+      affinity:
+      {{- end }}
+        {{- with .Values.affinity }}
+        {{- toYaml . | nindent 8 }}
+        {{- end }}
+        {{- if eq .Values.podAntiAffinity "hard" }}
+        podAntiAffinity:
+          requiredDuringSchedulingIgnoredDuringExecution:
+            - topologyKey: {{ .Values.podAntiAffinityTopologyKey }}
+              labelSelector:
+                matchExpressions:
+                  - {key: app.kubernetes.io/name, operator: In, values: [{{ include "alertmanager.name" . }}]}
+        {{- else if eq .Values.podAntiAffinity "soft" }}
+        podAntiAffinity:
+          preferredDuringSchedulingIgnoredDuringExecution:
+            - weight: 100
+              podAffinityTerm:
+                topologyKey: {{ .Values.podAntiAffinityTopologyKey }}
+                labelSelector:
+                  matchExpressions:
+                    - {key: app.kubernetes.io/name, operator: In, values: [{{ include "alertmanager.name" . }}]}
+        {{- end }}
+      {{- with .Values.priorityClassName }}
+      priorityClassName: {{ . }}
+      {{- end }}
+      {{- with .Values.topologySpreadConstraints }}
+      topologySpreadConstraints:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.tolerations }}
+      tolerations:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      securityContext:
+        {{- toYaml .Values.podSecurityContext | nindent 8 }}
+      {{- with .Values.extraInitContainers }}
+      initContainers:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      containers:
+        {{- if .Values.configmapReload.enabled }}
+        - name: {{ .Chart.Name }}-{{ .Values.configmapReload.name }}
+          image: "{{ .Values.configmapReload.image.repository }}:{{ .Values.configmapReload.image.tag }}"
+          imagePullPolicy: "{{ .Values.configmapReload.image.pullPolicy }}"
+          {{- with .Values.configmapReload.extraEnv }}
+          env:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          args:
+            {{- if and (hasKey .Values.configmapReload.extraArgs "config-file" | not) (hasKey .Values.configmapReload.extraArgs "watched-dir" | not)  }}
+            - --watched-dir=/etc/alertmanager
+            {{- end }}
+            {{- if not (hasKey .Values.configmapReload.extraArgs "reload-url") }}
+            - --reload-url=http://127.0.0.1:9093/-/reload
+            {{- end }}
+            {{- range $key, $value := .Values.configmapReload.extraArgs }}
+            - --{{ $key }}={{ $value }}
+            {{- end }}
+          resources:
+            {{- toYaml .Values.configmapReload.resources | nindent 12 }}
+          {{- with .Values.configmapReload.containerPort }}
+          ports:
+            - containerPort: {{ . }}
+          {{- end }}
+          {{- with .Values.configmapReload.securityContext }}
+          securityContext:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          volumeMounts:
+            {{- if .Values.config.enabled }}
+            - name: config
+              mountPath: /etc/alertmanager
+            {{- end }}
+            {{- if .Values.configmapReload.extraVolumeMounts }}
+            {{- toYaml .Values.configmapReload.extraVolumeMounts | nindent 12 }}
+            {{- end }}
+        {{- end }}
+        - name: {{ .Chart.Name }}
+          securityContext:
+            {{- toYaml .Values.securityContext | nindent 12 }}
+          image: "{{ .Values.image.repository }}:{{ .Values.image.tag | default .Chart.AppVersion }}"
+          imagePullPolicy: {{ .Values.image.pullPolicy }}
+          env:
+            - name: POD_IP
+              valueFrom:
+                fieldRef:
+                  apiVersion: v1
+                  fieldPath: status.podIP
+            {{- if .Values.extraEnv }}
+            {{- toYaml .Values.extraEnv | nindent 12 }}
+            {{- end }}
+          {{- with .Values.command }}
+          command:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          args:
+            - --storage.path=/alertmanager
+            {{- if not (hasKey .Values.extraArgs "config.file") }}
+            - --config.file=/etc/alertmanager/alertmanager.yml
+            {{- end }}
+            {{- if or (gt (int .Values.replicaCount) 1) (.Values.additionalPeers) }}
+            - --cluster.advertise-address=[$(POD_IP)]:{{ $svcClusterPort }}
+            - --cluster.listen-address=0.0.0.0:{{ $svcClusterPort }}
+            {{- end }}
+            {{- if gt (int .Values.replicaCount) 1}}
+            {{- $fullName := include "alertmanager.fullname" . }}
+            {{- range $i := until (int .Values.replicaCount) }}
+            - --cluster.peer={{ $fullName }}-{{ $i }}.{{ $fullName }}-headless:{{ $svcClusterPort }}
+            {{- end }}
+            {{- end }}
+            {{- if .Values.additionalPeers }}
+            {{- range $item := .Values.additionalPeers }}
+            - --cluster.peer={{ $item }}
+            {{- end }}
+            {{- end }}
+            {{- range $key, $value := .Values.extraArgs }}
+            - --{{ $key }}={{ $value }}
+            {{- end }}
+            {{- if .Values.baseURL }}
+            - --web.external-url={{ .Values.baseURL }}
+            {{- end }}
+          ports:
+            - name: http
+              containerPort: 9093
+              protocol: TCP
+            {{- if or (gt (int .Values.replicaCount) 1) (.Values.additionalPeers) }}
+            - name: clusterpeer-tcp
+              containerPort: {{ $svcClusterPort }}
+              protocol: TCP
+            - name: clusterpeer-udp
+              containerPort: {{ $svcClusterPort }}
+              protocol: UDP
+            {{- end }}
+          livenessProbe:
+            {{- toYaml .Values.livenessProbe | nindent 12 }}
+          readinessProbe:
+            {{- toYaml .Values.readinessProbe | nindent 12 }}
+          resources:
+            {{- toYaml .Values.resources | nindent 12 }}
+          volumeMounts:
+            {{- if .Values.config.enabled }}
+            - name: config
+              mountPath: /etc/alertmanager
+            {{- end }}
+            {{- range .Values.extraSecretMounts }}
+            - name: {{ .name }}
+              mountPath: {{ .mountPath }}
+              subPath: {{ .subPath }}
+              readOnly: {{ .readOnly }}
+            {{- end }}
+            - name: storage
+              mountPath: /alertmanager
+            {{- if .Values.extraVolumeMounts }}
+            {{- toYaml .Values.extraVolumeMounts | nindent 12 }}
+            {{- end }}
+        {{- with .Values.extraContainers }}
+        {{- toYaml . | nindent 8 }}
+        {{- end }}
+      volumes:
+        {{- if .Values.config.enabled }}
+        - name: config
+          configMap:
+            name: {{ include "alertmanager.fullname" . }}
+        {{- end }}
+        {{- range .Values.extraSecretMounts }}
+        - name: {{ .name }}
+          secret:
+            secretName: {{ .secretName }}
+            {{- with .optional }}
+            optional: {{ . }}
+            {{- end }}
+        {{- end }}
+        {{- if .Values.extraVolumes }}
+        {{- toYaml .Values.extraVolumes | nindent 8 }}
+        {{- end }}
+      {{- if .Values.extraPodConfigs }}
+      {{- toYaml .Values.extraPodConfigs | nindent 6 }}
+      {{- end }}
+  {{- if .Values.persistence.enabled }}
+  volumeClaimTemplates:
+    - metadata:
+        name: storage
+      spec:
+        accessModes:
+          {{- toYaml .Values.persistence.accessModes | nindent 10 }}
+        resources:
+          requests:
+            storage: {{ .Values.persistence.size }}
+      {{- if .Values.persistence.storageClass }}
+      {{- if (eq "-" .Values.persistence.storageClass) }}
+        storageClassName: ""
+      {{- else }}
+        storageClassName: {{ .Values.persistence.storageClass }}
+      {{- end }}
+      {{- end }}
+  {{- else }}
+        - name: storage
+          emptyDir: {}
+  {{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/tests/test-connection.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/tests/test-connection.yaml
new file mode 100644
index 0000000000..410eba5bd8
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/tests/test-connection.yaml
@@ -0,0 +1,20 @@
+{{- if .Values.testFramework.enabled }}
+apiVersion: v1
+kind: Pod
+metadata:
+  name: "{{ include "alertmanager.fullname" . }}-test-connection"
+  labels:
+    {{- include "alertmanager.labels" . | nindent 4 }}
+  {{- with .Values.testFramework.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  namespace: {{ include "alertmanager.namespace" . }}
+spec:
+  containers:
+    - name: wget
+      image: busybox
+      command: ['wget']
+      args: ['{{ include "alertmanager.fullname" . }}:{{ .Values.service.port }}']
+  restartPolicy: Never
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/vpa.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/vpa.yaml
new file mode 100644
index 0000000000..53f70a28e3
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/templates/vpa.yaml
@@ -0,0 +1,26 @@
+{{- if .Values.verticalPodAutoscaler.enabled }}
+apiVersion: autoscaling.k8s.io/v1
+kind: VerticalPodAutoscaler
+metadata:
+  name: {{ include "alertmanager.fullname" . }}
+  namespace: {{ .Release.Namespace }}
+spec:
+  {{- if .Values.verticalPodAutoscaler.recommenders }}
+  recommenders:
+    {{- range .Values.verticalPodAutoscaler.recommenders }}
+    - name: {{ .name }}
+    {{- end }}
+  {{- end }}
+  targetRef:
+    apiVersion: apps/v1
+    kind: StatefulSet
+    name: {{ include "alertmanager.fullname" . }}
+  {{- if .Values.verticalPodAutoscaler.updatePolicy }}
+  updatePolicy:
+    {{- toYaml .Values.verticalPodAutoscaler.updatePolicy | nindent 4 }}
+  {{- end }}
+  {{- if .Values.verticalPodAutoscaler.resourcePolicy }}
+  resourcePolicy:
+    {{- toYaml .Values.verticalPodAutoscaler.resourcePolicy | nindent 4 }}
+  {{- end }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/values.schema.json b/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/values.schema.json
new file mode 100644
index 0000000000..d3be015cfd
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/values.schema.json
@@ -0,0 +1,946 @@
+{
+    "$schema": "http://json-schema.org/draft-07/schema",
+    "title": "alertmanager",
+    "description": "The Alertmanager handles alerts sent by client applications such as the Prometheus server.",
+    "type": "object",
+    "required": [
+        "replicaCount",
+        "image",
+        "serviceAccount",
+        "service",
+        "persistence",
+        "config"
+    ],
+    "definitions": {
+        "image": {
+            "description": "Container image parameters.",
+            "type": "object",
+            "required": ["repository"],
+            "additionalProperties": false,
+            "properties": {
+                "repository": {
+                    "description": "Image repository. Path to the image with registry(quay.io) or without(prometheus/alertmanager) for docker.io.",
+                    "type": "string"
+                },
+                "pullPolicy": {
+                    "description": "Image pull policy. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated.",
+                    "type": "string",
+                    "enum": [
+                        "Never",
+                        "IfNotPresent",
+                        "Always"
+                    ],
+                    "default": "IfNotPresent"
+                },
+                "tag": {
+                    "description": "Use chart appVersion by default.",
+                    "type": "string",
+                    "default": ""
+                }
+            }
+        },
+        "resources": {
+            "description": "Resource limits and requests for the Container.",
+            "type": "object",
+            "properties": {
+                "limits": {
+                    "description": "Resource limits for the Container.",
+                    "type": "object",
+                    "properties": {
+                        "cpu": {
+                            "description": "CPU request for the Container.",
+                            "type": "string"
+                        },
+                        "memory": {
+                            "description": "Memory request for the Container.",
+                            "type": "string"
+                        }
+                    }
+                },
+                "requests": {
+                    "description": "Resource requests for the Container.",
+                    "type": "object",
+                    "properties": {
+                        "cpu": {
+                            "description": "CPU request for the Container.",
+                            "type": "string"
+                        },
+                        "memory": {
+                            "description": "Memory request for the Container.",
+                            "type": "string"
+                        }
+                    }
+                }
+            }
+        },
+        "securityContext": {
+            "description": "Security context for the container.",
+            "type": "object",
+            "properties": {
+                "capabilities": {
+                    "description": "Specifies the capabilities to be dropped by the container.",
+                    "type": "object",
+                    "properties": {
+                        "drop": {
+                            "description": "List of capabilities to be dropped.",
+                            "type": "array",
+                            "items": {
+                                "type": "string"
+                            }
+                        }
+                    }
+                },
+                "readOnlyRootFilesystem": {
+                    "description": "Specifies whether the root file system should be mounted as read-only.",
+                    "type": "boolean"
+                },
+                "runAsUser": {
+                    "description": "Specifies the UID (User ID) to run the container as.",
+                    "type": "integer"
+                },
+                "runAsNonRoot": {
+                    "description": "Specifies whether to run the container as a non-root user.",
+                    "type": "boolean"
+                },
+                "runAsGroup": {
+                    "description": "Specifies the GID (Group ID) to run the container as.",
+                    "type": "integer"
+                }
+            }
+        },
+        "volumeMounts": {
+            "description": "List of volume mounts for the Container.",
+            "type": "array",
+            "items": {
+                "description": "Volume mounts for the Container.",
+                "type": "object",
+                "required": ["name", "mountPath"],
+                "properties": {
+                    "name": {
+                        "description": "The name of the volume to mount.",
+                        "type": "string"
+                    },
+                    "mountPath": {
+                        "description": "The mount path for the volume.",
+                        "type": "string"
+                    },
+                    "readOnly": {
+                        "description": "Specifies if the volume should be mounted in read-only mode.",
+                        "type": "boolean"
+                    }
+                }
+            }
+        },
+        "env": {
+            "description": "List of environment variables for the Container.",
+            "type": "array",
+            "items": {
+                "description": "Environment variables for the Container.",
+                "type": "object",
+                "required": ["name"],
+                "properties": {
+                    "name": {
+                        "description": "The name of the environment variable.",
+                        "type": "string"
+                    },
+                    "value": {
+                        "description": "The value of the environment variable.",
+                        "type": "string"
+                    }
+                }
+            }
+        },
+        "config": {
+            "description": "https://prometheus.io/docs/alerting/latest/configuration/",
+            "duration": {
+                "type": "string",
+                "pattern": "^((([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?|0)$"
+            },
+            "labelname": {
+                "type": "string",
+                "pattern": "^[a-zA-Z_][a-zA-Z0-9_]*$|^...$"
+            },
+            "route": {
+                "description": "Alert routing configuration.",
+                "type": "object",
+                "properties": {
+                    "receiver": {
+                        "description": "The default receiver to send alerts to.",
+                        "type": "string"
+                    },
+                    "group_by": {
+                        "description": "The labels by which incoming alerts are grouped together.",
+                        "type": "array",
+                        "items": {
+                            "type": "string",
+                            "$ref": "#/definitions/config/labelname"
+                        }
+                    },
+                    "continue": {
+                        "description": "Whether an alert should continue matching subsequent sibling nodes.",
+                        "type": "boolean",
+                        "default": false
+                    },
+                    "matchers": {
+                        "description": "A list of matchers that an alert has to fulfill to match the node.",
+                        "type": "array",
+                        "items": {
+                            "type": "string"
+                        }
+                    },
+                    "group_wait": {
+                        "description": "How long to initially wait to send a notification for a group of alerts.",
+                        "$ref": "#/definitions/config/duration"
+                    },
+                    "group_interval": {
+                        "description": "How long to wait before sending a notification about new alerts that are added to a group of alerts for which an initial notification has already been sent.",
+                        "$ref": "#/definitions/config/duration"
+                    },
+                    "repeat_interval": {
+                        "description": "How long to wait before sending a notification again if it has already been sent successfully for an alert.",
+                        "$ref": "#/definitions/config/duration"
+                    },
+                    "mute_time_intervals": {
+                        "description": "Times when the route should be muted.",
+                        "type": "array",
+                        "items": {
+                            "type": "string"
+                        }
+                    },
+                    "active_time_intervals": {
+                        "description": "Times when the route should be active.",
+                        "type": "array",
+                        "items": {
+                            "type": "string"
+                        }
+                    },
+                    "routes": {
+                        "description": "Zero or more child routes.",
+                        "type": "array",
+                        "items": {
+                            "type": "object",
+                            "$ref": "#/definitions/config/route"
+                        }
+                    }
+                }
+            }
+        }
+    },
+    "properties": {
+        "replicaCount": {
+            "description": "Number of desired pods.",
+            "type": "integer",
+            "default": 1,
+            "minimum": 0
+        },
+        "image": {
+            "description": "Container image parameters.",
+            "$ref": "#/definitions/image"
+        },
+        "baseURL": {
+            "description": "External URL where alertmanager is reachable.",
+            "type": "string",
+            "default": "",
+            "examples": [
+                "https://alertmanager.example.com"
+            ]
+        },
+        "extraArgs": {
+            "description": "Additional alertmanager container arguments. Use args without '--', only 'key: value' syntax.",
+            "type": "object",
+            "default": {}
+        },
+        "extraSecretMounts": {
+            "description": "Additional Alertmanager Secret mounts.",
+            "type": "array",
+            "default": [],
+            "items": {
+                "type": "object",
+                "required": ["name", "mountPath", "secretName"],
+                "properties": {
+                    "name": {
+                        "type": "string"
+                    },
+                    "mountPath": {
+                        "type": "string"
+                    },
+                    "subPath": {
+                        "type": "string",
+                        "default": ""
+                    },
+                    "secretName": {
+                        "type": "string"
+                    },
+                    "readOnly": {
+                        "type": "boolean",
+                        "default": false
+                    }
+                }
+            }
+        },
+        "imagePullSecrets": {
+            "description": "The property allows you to configure multiple image pull secrets.",
+            "type": "array",
+            "default": [],
+            "items": {
+                "type": "object",
+                "required": ["name"],
+                "properties": {
+                    "name": {
+                        "description": "Specifies the Secret name of the image pull secret.",
+                        "type": "string"
+                    }
+                }
+            }
+        },
+        "nameOverride": {
+            "description": "Override value for the name of the Helm chart.",
+            "type": "string",
+            "default": ""
+        },
+        "fullnameOverride": {
+            "description": "Override value for the fully qualified app name.",
+            "type": "string",
+            "default": ""
+        },
+        "namespaceOverride": {
+            "description": "Override deployment namespace.",
+            "type": "string",
+            "default": ""
+        },
+        "automountServiceAccountToken": {
+            "description": "Specifies whether to automatically mount the ServiceAccount token into the Pod's filesystem.",
+            "type": "boolean",
+            "default": true
+        },
+        "serviceAccount": {
+            "description": "Contains properties related to the service account configuration.",
+            "type": "object",
+            "required": ["create"],
+            "properties": {
+                "create": {
+                    "description": "Specifies whether a service account should be created.",
+                    "type": "boolean",
+                    "default": true
+                },
+                "annotations": {
+                    "description": "Annotations to add to the service account.",
+                    "type": "object",
+                    "default": {}
+                },
+                "name": {
+                    "description": "The name of the service account to use. If not set and create is true, a name is generated using the fullname template.",
+                    "type": "string",
+                    "default": ""
+                }
+            }
+        },
+        "schedulerName": {
+            "description": "Sets the schedulerName in the alertmanager pod.",
+            "type": "string",
+            "default": ""
+        },
+        "priorityClassName": {
+            "description": "Sets the priorityClassName in the alertmanager pod.",
+            "type": "string",
+            "default": ""
+        },
+        "podSecurityContext": {
+            "description": "Pod security context configuration.",
+            "type": "object",
+            "properties": {
+                "fsGroup": {
+                    "description": "The fsGroup value for the pod's security context.",
+                    "type": "integer",
+                    "default": 65534
+                },
+                "runAsUser": {
+                    "description": "The UID to run the pod's containers as.",
+                    "type": "integer"
+                },
+                "runAsGroup": {
+                    "description": "The GID to run the pod's containers as.",
+                    "type": "integer"
+                }
+            }
+        },
+        "dnsConfig": {
+            "description": "DNS configuration for the pod.",
+            "type": "object",
+            "properties": {
+                "nameservers": {
+                    "description": "List of DNS server IP addresses.",
+                    "type": "array",
+                    "items": {
+                        "type": "string"
+                    }
+                },
+                "searches": {
+                    "description": "List of DNS search domains.",
+                    "type": "array",
+                    "items": {
+                        "type": "string"
+                    }
+                },
+                "options": {
+                    "description": "List of DNS options.",
+                    "type": "array",
+                    "items": {
+                        "description": "DNS options.",
+                        "type": "object",
+                        "required": ["name"],
+                        "properties": {
+                            "name": {
+                                "description": "The name of the DNS option.",
+                                "type": "string"
+                            },
+                            "value": {
+                                "description": "The value of the DNS option.",
+                                "type": "string"
+                            }
+                        }
+                    }
+                }
+            }
+        },
+        "hostAliases": {
+            "description": "List of host aliases.",
+            "type": "array",
+            "items": {
+                "description": "Host aliases configuration.",
+                "type": "object",
+                "required": ["ip", "hostnames"],
+                "properties": {
+                    "ip": {
+                        "description": "IP address associated with the host alias.",
+                        "type": "string"
+                    },
+                    "hostnames": {
+                        "description": "List of hostnames associated with the IP address.",
+                        "type": "array",
+                        "items": {
+                            "type": "string"
+                        }
+                    }
+                }
+            }
+        },
+        "securityContext": {
+            "description": "Security context for the container.",
+            "$ref": "#/definitions/securityContext"
+        },
+        "additionalPeers": {
+            "description": "Additional peers for a alertmanager.",
+            "type": "array",
+            "items": {
+                "type": "string"
+            }
+        },
+        "extraInitContainers": {
+            "description": "Additional InitContainers to initialize the pod.",
+            "type": "array",
+            "default": [],
+            "items": {
+                "required": ["name", "image"],
+                "properties": {
+                    "name": {
+                        "description": "The name of the InitContainer.",
+                        "type": "string"
+                    },
+                    "image": {
+                        "description": "The container image to use for the InitContainer.",
+                        "type": "string"
+                    },
+                    "pullPolicy": {
+                        "description": "Image pull policy. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated.",
+                        "type": "string",
+                        "enum": [
+                            "Never",
+                            "IfNotPresent",
+                            "Always"
+                        ],
+                        "default": "IfNotPresent"
+                    },
+                    "command": {
+                        "description": "The command to run in the InitContainer.",
+                        "type": "array",
+                        "items": {
+                            "type": "string"
+                        }
+                    },
+                    "args": {
+                        "description": "Additional command arguments for the InitContainer.",
+                        "type": "array",
+                        "items": {
+                            "type": "string"
+                        }
+                    },
+                    "ports": {
+                        "description": "List of ports to expose from the container.",
+                        "type": "array",
+                        "items": {
+                            "type": "object"
+                        }
+                    },
+                    "env": {
+                        "description": "List of environment variables for the InitContainer.",
+                        "$ref": "#/definitions/env"
+                    },
+                    "envFrom": {
+                        "description": "List of sources to populate environment variables in the container.",
+                        "type": "array",
+                        "items": {
+                            "type": "object"
+                        }
+                    },
+                    "volumeMounts": {
+                        "description": "List of volume mounts for the InitContainer.",
+                        "$ref": "#/definitions/volumeMounts"
+                    },
+                    "resources": {
+                        "description": "Resource requirements for the InitContainer.",
+                        "$ref": "#/definitions/resources"
+                    },
+                    "securityContext": {
+                        "$ref": "#/definitions/securityContext",
+                        "description": "The security context for the InitContainer."
+                    }
+                }
+            }
+        },
+        "extraContainers": {
+            "description": "Additional containers to add to the stateful set.",
+            "type": "array",
+            "default": [],
+            "items": {
+                "required": ["name", "image"],
+                "properties": {
+                    "name": {
+                        "description": "The name of the InitContainer.",
+                        "type": "string"
+                    },
+                    "image": {
+                        "description": "The container image to use for the InitContainer.",
+                        "type": "string"
+                    },
+                    "pullPolicy": {
+                        "description": "Image pull policy. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated.",
+                        "type": "string",
+                        "enum": [
+                            "Never",
+                            "IfNotPresent",
+                            "Always"
+                        ],
+                        "default": "IfNotPresent"
+                    },
+                    "command": {
+                        "description": "The command to run in the InitContainer.",
+                        "type": "array",
+                        "items": {
+                            "type": "string"
+                        }
+                    },
+                    "args": {
+                        "description": "Additional command arguments for the InitContainer.",
+                        "type": "array",
+                        "items": {
+                            "type": "string"
+                        }
+                    },
+                    "ports": {
+                        "description": "List of ports to expose from the container.",
+                        "type": "array",
+                        "items": {
+                            "type": "object"
+                        }
+                    },
+                    "env": {
+                        "description": "List of environment variables for the InitContainer.",
+                        "$ref": "#/definitions/env"
+                    },
+                    "envFrom": {
+                        "description": "List of sources to populate environment variables in the container.",
+                        "type": "array",
+                        "items": {
+                            "type": "object"
+                        }
+                    },
+                    "volumeMounts": {
+                        "description": "List of volume mounts for the InitContainer.",
+                        "$ref": "#/definitions/volumeMounts"
+                    },
+                    "resources": {
+                        "description": "Resource requirements for the InitContainer.",
+                        "$ref": "#/definitions/resources"
+                    },
+                    "securityContext": {
+                        "$ref": "#/definitions/securityContext",
+                        "description": "The security context for the InitContainer."
+                    }
+                }
+            }
+        },
+        "resources": {
+            "description": "Resource limits and requests for the pod.",
+            "$ref": "#/definitions/resources"
+        },
+        "livenessProbe": {
+            "description": "Liveness probe configuration.",
+            "type": "object"
+        },
+        "readinessProbe": {
+            "description": "Readiness probe configuration.",
+            "type": "object"
+        },
+        "service": {
+            "description": "Service configuration.",
+            "type": "object",
+            "required": ["type", "port"],
+            "properties": {
+                "annotations": {
+                    "description": "Annotations to add to the service.",
+                    "type": "object"
+                },
+                "type": {
+                    "description": "Service type.",
+                    "type": "string"
+                },
+                "port": {
+                    "description": "Port number for the service.",
+                    "type": "integer"
+                },
+                "clusterPort": {
+                    "description": "Port number for the cluster.",
+                    "type": "integer"
+                },
+                "loadBalancerIP": {
+                    "description": "External IP to assign when the service type is LoadBalancer.",
+                    "type": "string"
+                },
+                "loadBalancerSourceRanges": {
+                    "description": "IP ranges to allow access to the loadBalancerIP.",
+                    "type": "array",
+                    "items": {
+                        "type": "string"
+                    }
+                },
+                "nodePort": {
+                    "description": "Specific nodePort to force when service type is NodePort.",
+                    "type": "integer"
+                }
+            }
+        },
+        "ingress": {
+            "description": "Ingress configuration.",
+            "type": "object",
+            "properties": {
+                "enabled": {
+                    "description": "Indicates if Ingress is enabled.",
+                    "type": "boolean"
+                },
+                "className": {
+                    "description": "Ingress class name.",
+                    "type": "string"
+                },
+                "annotations": {
+                    "description": "Annotations to add to the Ingress.",
+                    "type": "object"
+                },
+                "hosts": {
+                    "description": "Host and path configuration for the Ingress.",
+                    "type": "array",
+                    "items": {
+                        "type": "object",
+                        "properties": {
+                            "host": {
+                                "description": "Host name for the Ingress.",
+                                "type": "string"
+                            },
+                            "paths": {
+                                "description": "Path configuration for the Ingress.",
+                                "type": "array",
+                                "items": {
+                                    "type": "object",
+                                    "properties": {
+                                        "path": {
+                                            "description": "Path for the Ingress.",
+                                            "type": "string"
+                                        },
+                                        "pathType": {
+                                            "description": "Path type for the Ingress.",
+                                            "type": "string"
+                                        }
+                                    }
+                                }
+                            }
+                        }
+                    }
+                },
+                "tls": {
+                    "description": "TLS configuration for the Ingress.",
+                    "type": "array",
+                    "items": {
+                        "type": "object",
+                        "properties": {
+                            "secretName": {
+                                "description": "Name of the secret for TLS.",
+                                "type": "string"
+                            },
+                            "hosts": {
+                                "description": "Host names for the TLS configuration.",
+                                "type": "array",
+                                "items": {
+                                    "type": "string"
+                                }
+                            }
+                        }
+                    }
+                }
+            }
+        },
+        "nodeSelector": {
+            "description": "Node selector for pod assignment.",
+            "type": "object"
+        },
+        "tolerations": {
+            "description": "Tolerations for pod assignment.",
+            "type": "array"
+        },
+        "affinity": {
+            "description": "Affinity rules for pod assignment.",
+            "type": "object"
+        },
+        "podAntiAffinity": {
+            "description": "Pod anti-affinity configuration.",
+            "type": "string",
+            "enum": ["", "soft", "hard"],
+            "default": ""
+        },
+        "podAntiAffinityTopologyKey": {
+            "description": "Topology key to use for pod anti-affinity.",
+            "type": "string"
+        },
+        "topologySpreadConstraints": {
+            "description": "Topology spread constraints for pod assignment.",
+            "type": "array",
+            "items": {
+                "type": "object",
+                "required": ["maxSkew", "topologyKey", "whenUnsatisfiable", "labelSelector"],
+                "properties": {
+                    "maxSkew": {
+                        "type": "integer"
+                    },
+                    "topologyKey": {
+                        "type": "string"
+                    },
+                    "whenUnsatisfiable": {
+                        "type": "string",
+                        "enum": ["DoNotSchedule", "ScheduleAnyway"]
+                    },
+                    "labelSelector": {
+                        "type": "object",
+                        "required": ["matchLabels"],
+                        "properties": {
+                            "matchLabels": {
+                                "type": "object"
+                            }
+                        }
+                    }
+                }
+            }
+        },
+        "statefulSet": {
+            "description": "StatefulSet configuration for managing pods.",
+            "type": "object",
+            "properties": {
+                "annotations": {
+                    "type": "object"
+                }
+            }
+        },
+        "podAnnotations": {
+            "description": "Annotations to add to the pods.",
+            "type": "object"
+        },
+        "podLabels": {
+            "description": "Labels to add to the pods.",
+            "type": "object"
+        },
+        "podDisruptionBudget": {
+            "description": "Pod disruption budget configuration.",
+            "type": "object",
+            "properties": {
+                "maxUnavailable": {
+                    "type": "integer"
+                },
+                "minAvailable": {
+                    "type": "integer"
+                }
+            }
+        },
+        "command": {
+            "description": "The command to be executed in the container.",
+            "type": "array",
+            "items": {
+                "type": "string"
+            }
+        },
+        "persistence": {
+            "description": "Persistence configuration for storing data.",
+            "type": "object",
+            "required": ["enabled", "size"],
+            "properties": {
+                "enabled": {
+                    "type": "boolean"
+                },
+                "storageClass": {
+                    "type": "string"
+                },
+                "accessModes": {
+                    "type": "array",
+                    "items": {
+                        "type": "string"
+                    }
+                },
+                "size": {
+                    "type": "string"
+                }
+            }
+        },
+        "configAnnotations": {
+            "description": "Annotations to be added to the Alertmanager configuration.",
+            "type": "object"
+        },
+        "config": {
+            "description": "Alertmanager configuration.",
+            "type": "object",
+            "properties": {
+                "enabled": {
+                    "description": "Whether to create alermanager configmap or not.",
+                    "type": "boolean"
+                },
+                "global": {
+                    "description": "Global configuration options.",
+                    "type": "object"
+                },
+                "templates": {
+                    "description": "Alertmanager template files.",
+                    "type": "array",
+                    "items": {
+                        "type": "string"
+                    }
+                },
+                "receivers": {
+                    "description": "Alert receivers configuration.",
+                    "type": "array",
+                    "items": {
+                        "type": "object",
+                        "required": ["name"],
+                        "properties": {
+                            "name": {
+                                "description": "The unique name of the receiver.",
+                                "type": "string"
+                            }
+                        }
+                    }
+                },
+                "route": {
+                    "description": "Alert routing configuration.",
+                    "type": "object",
+                    "$ref": "#/definitions/config/route"
+                }
+            }
+        },
+        "configmapReload": {
+            "description": "Monitors ConfigMap changes and POSTs to a URL.",
+            "type": "object",
+            "properties": {
+                "enabled": {
+                    "description": "Specifies whether the configmap-reload container should be deployed.",
+                    "type": "boolean",
+                    "default": false
+                },
+                "name": {
+                    "description": "The name of the configmap-reload container.",
+                    "type": "string"
+                },
+                "image": {
+                    "description": "The container image for the configmap-reload container.",
+                    "$ref": "#/definitions/image"
+                },
+                "containerPort": {
+                    "description": "Port number for the configmap-reload container.",
+                    "type": "integer"
+                },
+                "resources": {
+                    "description": "Resource requests and limits for the configmap-reload container.",
+                    "$ref": "#/definitions/resources"
+                }
+            }
+        },
+        "templates": {
+            "description": "Custom templates used by Alertmanager.",
+            "type": "object"
+        },
+        "extraVolumeMounts": {
+            "description": "List of volume mounts for the Container.",
+            "$ref": "#/definitions/volumeMounts"
+        },
+        "extraVolumes": {
+            "description": "Additional volumes to be mounted in the Alertmanager pod.",
+            "type": "array",
+            "default": [],
+            "items": {
+                "type": "object",
+                "required": ["name"],
+                "properties": {
+                    "name": {
+                        "type": "string"
+                    }
+                }
+            }
+        },
+        "extraEnv": {
+            "description": "List of environment variables for the Container.",
+            "$ref": "#/definitions/env"
+        },
+        "testFramework": {
+            "description": "Configuration for the test Pod.",
+            "type": "object",
+            "properties": {
+                "enabled": {
+                    "description": "Specifies whether the test Pod is enabled.",
+                    "type": "boolean",
+                    "default": false
+                },
+                "annotations": {
+                    "description": "Annotations to be added to the test Pod.",
+                    "type": "object"
+                }
+            }
+        },
+        "verticalPodAutoscaler": {
+            "description": "Vertical Pod Autoscaling configuration.",
+            "type": "object",
+            "properties": {
+                "enabled": {
+                    "type": "boolean",
+                    "default": false
+                },
+                "recommenders": {
+                    "type": "array"
+                },
+                "updatePolicy": {
+                    "type": "object"
+                },
+                "resourcePolicy": {
+                    "type": "object"
+                }
+            }
+        },
+        "extraPodConfigs": {
+            "description": "Object to allow users to add additional Pod configuration like dnsPolicy or hostNetwork",
+            "type": "object"
+        }
+    }
+}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/values.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/values.yaml
new file mode 100644
index 0000000000..133f438c94
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/alertmanager/values.yaml
@@ -0,0 +1,404 @@
+# yaml-language-server: $schema=values.schema.json
+# Default values for alertmanager.
+# This is a YAML-formatted file.
+# Declare variables to be passed into your templates.
+
+replicaCount: 1
+
+# Number of old history to retain to allow rollback
+# Default Kubernetes value is set to 10
+revisionHistoryLimit: 10
+
+image:
+  repository: quay.io/prometheus/alertmanager
+  pullPolicy: IfNotPresent
+  # Overrides the image tag whose default is the chart appVersion.
+  tag: ""
+
+# Full external URL where alertmanager is reachable, used for backlinks.
+baseURL: ""
+
+extraArgs: {}
+
+## Additional Alertmanager Secret mounts
+# Defines additional mounts with secrets. Secrets must be manually created in the namespace.
+extraSecretMounts: []
+  # - name: secret-files
+  #   mountPath: /etc/secrets
+  #   subPath: ""
+  #   secretName: alertmanager-secret-files
+  #   readOnly: true
+
+imagePullSecrets: []
+nameOverride: ""
+fullnameOverride: ""
+## namespaceOverride overrides the namespace which the resources will be deployed in
+namespaceOverride: ""
+
+automountServiceAccountToken: true
+
+serviceAccount:
+  # Specifies whether a service account should be created
+  create: true
+  # Annotations to add to the service account
+  annotations: {}
+  # The name of the service account to use.
+  # If not set and create is true, a name is generated using the fullname template
+  name: ""
+
+# Sets priorityClassName in alertmanager pod
+priorityClassName: ""
+
+# Sets schedulerName in alertmanager pod
+schedulerName: ""
+
+podSecurityContext:
+  fsGroup: 65534
+dnsConfig: {}
+  # nameservers:
+  #   - 1.2.3.4
+  # searches:
+  #   - ns1.svc.cluster-domain.example
+  #   - my.dns.search.suffix
+  # options:
+  #   - name: ndots
+  #     value: "2"
+  #   - name: edns0
+hostAliases: []
+  # - ip: "127.0.0.1"
+  #   hostnames:
+  #   - "foo.local"
+  #   - "bar.local"
+  # - ip: "10.1.2.3"
+  #   hostnames:
+  #   - "foo.remote"
+  #   - "bar.remote"
+securityContext:
+  # capabilities:
+  #   drop:
+  #   - ALL
+  # readOnlyRootFilesystem: true
+  runAsUser: 65534
+  runAsNonRoot: true
+  runAsGroup: 65534
+
+additionalPeers: []
+
+## Additional InitContainers to initialize the pod
+##
+extraInitContainers: []
+
+## Additional containers to add to the stateful set. This will allow to setup sidecarContainers like a proxy to integrate
+## alertmanager with an external tool like teams that has not direct integration.
+##
+extraContainers: []
+
+livenessProbe:
+  httpGet:
+    path: /
+    port: http
+
+readinessProbe:
+  httpGet:
+    path: /
+    port: http
+
+service:
+  annotations: {}
+  labels: {}
+  type: ClusterIP
+  port: 9093
+  clusterPort: 9094
+  loadBalancerIP: ""  # Assign ext IP when Service type is LoadBalancer
+  loadBalancerSourceRanges: []  # Only allow access to loadBalancerIP from these IPs
+  # if you want to force a specific nodePort. Must be use with service.type=NodePort
+  # nodePort:
+
+  # Optionally specify extra list of additional ports exposed on both services
+  extraPorts: []
+
+  # ip dual stack
+  ipDualStack:
+    enabled: false
+    ipFamilies: ["IPv6", "IPv4"]
+    ipFamilyPolicy: "PreferDualStack"
+
+# Configuration for creating a separate Service for each statefulset Alertmanager replica
+#
+servicePerReplica:
+  enabled: false
+  annotations: {}
+
+  # Loadbalancer source IP ranges
+  # Only used if servicePerReplica.type is "LoadBalancer"
+  loadBalancerSourceRanges: []
+
+  # Denotes if this Service desires to route external traffic to node-local or cluster-wide endpoints
+  #
+  externalTrafficPolicy: Cluster
+
+  # Service type
+  #
+  type: ClusterIP
+
+ingress:
+  enabled: false
+  className: ""
+  annotations: {}
+    # kubernetes.io/ingress.class: nginx
+    # kubernetes.io/tls-acme: "true"
+  hosts:
+    - host: alertmanager.domain.com
+      paths:
+        - path: /
+          pathType: ImplementationSpecific
+  tls: []
+  #  - secretName: chart-example-tls
+  #    hosts:
+  #      - alertmanager.domain.com
+
+# Configuration for creating an Ingress that will map to each Alertmanager replica service
+# alertmanager.servicePerReplica must be enabled
+#
+ingressPerReplica:
+  enabled: false
+
+  # className for the ingresses
+  #
+  className: ""
+
+  annotations: {}
+  labels: {}
+
+  # Final form of the hostname for each per replica ingress is
+  # {{ ingressPerReplica.hostPrefix }}-{{ $replicaNumber }}.{{ ingressPerReplica.hostDomain }}
+  #
+  # Prefix for the per replica ingress that will have `-$replicaNumber`
+  # appended to the end
+  hostPrefix: "alertmanager"
+  # Domain that will be used for the per replica ingress
+  hostDomain: "domain.com"
+
+  # Paths to use for ingress rules
+  #
+  paths:
+    - /
+
+  # PathType for ingress rules
+  #
+  pathType: ImplementationSpecific
+
+  # Secret name containing the TLS certificate for alertmanager per replica ingress
+  # Secret must be manually created in the namespace
+  tlsSecretName: ""
+
+  # Separated secret for each per replica Ingress. Can be used together with cert-manager
+  #
+  tlsSecretPerReplica:
+    enabled: false
+    # Final form of the secret for each per replica ingress is
+    # {{ tlsSecretPerReplica.prefix }}-{{ $replicaNumber }}
+    #
+    prefix: "alertmanager"
+
+resources: {}
+  # We usually recommend not to specify default resources and to leave this as a conscious
+  # choice for the user. This also increases chances charts run on environments with little
+  # resources, such as Minikube. If you do want to specify resources, uncomment the following
+  # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
+  # limits:
+  #   cpu: 100m
+  #   memory: 128Mi
+  # requests:
+  #   cpu: 10m
+  #   memory: 32Mi
+
+nodeSelector: {}
+
+tolerations: []
+
+affinity: {}
+
+## Pod anti-affinity can prevent the scheduler from placing Alertmanager replicas on the same node.
+## The default value "soft" means that the scheduler should *prefer* to not schedule two replica pods onto the same node but no guarantee is provided.
+## The value "hard" means that the scheduler is *required* to not schedule two replica pods onto the same node.
+## The value "" will disable pod anti-affinity so that no anti-affinity rules will be configured.
+##
+podAntiAffinity: ""
+
+## If anti-affinity is enabled sets the topologyKey to use for anti-affinity.
+## This can be changed to, for example, failure-domain.beta.kubernetes.io/zone
+##
+podAntiAffinityTopologyKey: kubernetes.io/hostname
+
+## Topology spread constraints rely on node labels to identify the topology domain(s) that each Node is in.
+## Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/
+topologySpreadConstraints: []
+  # - maxSkew: 1
+  #   topologyKey: failure-domain.beta.kubernetes.io/zone
+  #   whenUnsatisfiable: DoNotSchedule
+  #   labelSelector:
+  #     matchLabels:
+  #       app.kubernetes.io/instance: alertmanager
+
+statefulSet:
+  annotations: {}
+
+## Minimum number of seconds for which a newly created pod should be ready without any of its container crashing for it to
+## be considered available. Defaults to 0 (pod will be considered available as soon as it is ready).
+## This is an alpha field from kubernetes 1.22 until 1.24 which requires enabling the StatefulSetMinReadySeconds
+## feature gate.
+## Ref: https://kubernetes.io/docs/concepts/workloads/controllers/statefulset/#minimum-ready-seconds
+minReadySeconds: 0
+
+podAnnotations: {}
+podLabels: {}
+
+# Ref: https://kubernetes.io/docs/tasks/run-application/configure-pdb/
+podDisruptionBudget: {}
+  # maxUnavailable: 1
+  # minAvailable: 1
+
+command: []
+
+persistence:
+  enabled: true
+  ## Persistent Volume Storage Class
+  ## If defined, storageClassName: <storageClass>
+  ## If set to "-", storageClassName: "", which disables dynamic provisioning
+  ## If undefined (the default) or set to null, no storageClassName spec is
+  ## set, choosing the default provisioner.
+  ##
+  # storageClass: "-"
+  accessModes:
+    - ReadWriteOnce
+  size: 50Mi
+
+configAnnotations: {}
+  ## For example if you want to provide private data from a secret vault
+  ## https://github.com/banzaicloud/bank-vaults/tree/main/charts/vault-secrets-webhook
+  ## P.s.: Add option `configMapMutation: true` for vault-secrets-webhook
+  # vault.security.banzaicloud.io/vault-role: "admin"
+  # vault.security.banzaicloud.io/vault-addr: "https://vault.vault.svc.cluster.local:8200"
+  # vault.security.banzaicloud.io/vault-skip-verify: "true"
+  # vault.security.banzaicloud.io/vault-path: "kubernetes"
+  ## Example for inject secret
+  # slack_api_url: '${vault:secret/data/slack-hook-alerts#URL}'
+
+config:
+  enabled: true
+  global: {}
+    # slack_api_url: ''
+
+  templates:
+    - '/etc/alertmanager/*.tmpl'
+
+  receivers:
+    - name: default-receiver
+      # slack_configs:
+      #  - channel: '@you'
+      #    send_resolved: true
+
+  route:
+    group_wait: 10s
+    group_interval: 5m
+    receiver: default-receiver
+    repeat_interval: 3h
+
+## Monitors ConfigMap changes and POSTs to a URL
+## Ref: https://github.com/prometheus-operator/prometheus-operator/tree/main/cmd/prometheus-config-reloader
+##
+configmapReload:
+  ## If false, the configmap-reload container will not be deployed
+  ##
+  enabled: false
+
+  ## configmap-reload container name
+  ##
+  name: configmap-reload
+
+  ## configmap-reload container image
+  ##
+  image:
+    repository: quay.io/prometheus-operator/prometheus-config-reloader
+    tag: v0.66.0
+    pullPolicy: IfNotPresent
+
+  # containerPort: 9533
+
+  ## configmap-reload resource requests and limits
+  ## Ref: http://kubernetes.io/docs/user-guide/compute-resources/
+  ##
+  resources: {}
+
+  extraArgs: {}
+
+  ## Optionally specify extra list of additional volumeMounts
+  extraVolumeMounts: []
+    # - name: extras
+    #   mountPath: /usr/share/extras
+    #   readOnly: true
+
+  ## Optionally specify extra environment variables to add to alertmanager container
+  extraEnv: []
+    # - name: FOO
+    #   value: BAR
+
+  securityContext: {}
+    # capabilities:
+    #   drop:
+    #   - ALL
+    # readOnlyRootFilesystem: true
+    # runAsUser: 65534
+    # runAsNonRoot: true
+    # runAsGroup: 65534
+
+templates: {}
+#   alertmanager.tmpl: |-
+
+## Optionally specify extra list of additional volumeMounts
+extraVolumeMounts: []
+  # - name: extras
+  #   mountPath: /usr/share/extras
+  #   readOnly: true
+
+## Optionally specify extra list of additional volumes
+extraVolumes: []
+  # - name: extras
+  #   emptyDir: {}
+
+## Optionally specify extra environment variables to add to alertmanager container
+extraEnv: []
+  # - name: FOO
+  #   value: BAR
+
+testFramework:
+  enabled: false
+  annotations:
+    "helm.sh/hook": test-success
+    # "helm.sh/hook-delete-policy": "before-hook-creation,hook-succeeded"
+
+# --- Vertical Pod Autoscaler
+verticalPodAutoscaler:
+  # -- Use VPA for alertmanager
+  enabled: false
+  # recommenders:
+  #   - name: 'alternative'
+  # updatePolicy:
+  #   updateMode: "Auto"
+  #   minReplicas: 1
+  # resourcePolicy:
+  #   containerPolicies:
+  #     - containerName: '*'
+  #       minAllowed:
+  #         cpu: 100m
+  #         memory: 128Mi
+  #       maxAllowed:
+  #         cpu: 1
+  #         memory: 500Mi
+  #       controlledResources: ["cpu", "memory"]
+
+# --- Extra Pod Configs
+extraPodConfigs: {}
+  # dnsPolicy: ClusterFirstWithHostNet
+  # hostNetwork: true
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/.helmignore b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/.helmignore
new file mode 100644
index 0000000000..f0c1319444
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/.helmignore
@@ -0,0 +1,21 @@
+# Patterns to ignore when building packages.
+# This supports shell glob matching, relative path matching, and
+# negation (prefixed with !). Only one pattern per line.
+.DS_Store
+# Common VCS dirs
+.git/
+.gitignore
+.bzr/
+.bzrignore
+.hg/
+.hgignore
+.svn/
+# Common backup files
+*.swp
+*.bak
+*.tmp
+*~
+# Various IDEs
+.project
+.idea/
+*.tmproj
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/Chart.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/Chart.yaml
new file mode 100644
index 0000000000..de2d9977fb
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/Chart.yaml
@@ -0,0 +1,26 @@
+annotations:
+  artifacthub.io/license: Apache-2.0
+  artifacthub.io/links: |
+    - name: Chart Source
+      url: https://github.com/prometheus-community/helm-charts
+apiVersion: v2
+appVersion: 2.14.0
+description: Install kube-state-metrics to generate and expose cluster-level metrics
+home: https://github.com/kubernetes/kube-state-metrics/
+keywords:
+- metric
+- monitoring
+- prometheus
+- kubernetes
+maintainers:
+- email: tariq.ibrahim@mulesoft.com
+  name: tariq1890
+- email: manuel@rueg.eu
+  name: mrueg
+- email: david@0xdc.me
+  name: dotdc
+name: kube-state-metrics
+sources:
+- https://github.com/kubernetes/kube-state-metrics/
+type: application
+version: 5.28.0
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/README.md b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/README.md
new file mode 100644
index 0000000000..843be89e69
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/README.md
@@ -0,0 +1,85 @@
+# kube-state-metrics Helm Chart
+
+Installs the [kube-state-metrics agent](https://github.com/kubernetes/kube-state-metrics).
+
+## Get Repository Info
+<!-- textlint-disable -->
+```console
+helm repo add prometheus-community https://prometheus-community.github.io/helm-charts
+helm repo update
+```
+
+_See [helm repo](https://helm.sh/docs/helm/helm_repo/) for command documentation._
+<!-- textlint-enable -->
+
+## Install Chart
+
+```console
+helm install [RELEASE_NAME] prometheus-community/kube-state-metrics [flags]
+```
+
+_See [configuration](#configuration) below._
+
+_See [helm install](https://helm.sh/docs/helm/helm_install/) for command documentation._
+
+## Uninstall Chart
+
+```console
+helm uninstall [RELEASE_NAME]
+```
+
+This removes all the Kubernetes components associated with the chart and deletes the release.
+
+_See [helm uninstall](https://helm.sh/docs/helm/helm_uninstall/) for command documentation._
+
+## Upgrading Chart
+
+```console
+helm upgrade [RELEASE_NAME] prometheus-community/kube-state-metrics [flags]
+```
+
+_See [helm upgrade](https://helm.sh/docs/helm/helm_upgrade/) for command documentation._
+
+### Migrating from stable/kube-state-metrics and kubernetes/kube-state-metrics
+
+You can upgrade in-place:
+
+1. [get repository info](#get-repository-info)
+1. [upgrade](#upgrading-chart) your existing release name using the new chart repository
+
+## Upgrading to v3.0.0
+
+v3.0.0 includes kube-state-metrics v2.0, see the [changelog](https://github.com/kubernetes/kube-state-metrics/blob/release-2.0/CHANGELOG.md) for major changes on the application-side.
+
+The upgraded chart now the following changes:
+
+* Dropped support for helm v2 (helm v3 or later is required)
+* collectors key was renamed to resources
+* namespace key was renamed to namespaces
+
+## Configuration
+
+See [Customizing the Chart Before Installing](https://helm.sh/docs/intro/using_helm/#customizing-the-chart-before-installing). To see all configurable options with detailed comments:
+
+```console
+helm show values prometheus-community/kube-state-metrics
+```
+
+### kube-rbac-proxy
+
+You can enable `kube-state-metrics` endpoint protection using `kube-rbac-proxy`. By setting `kubeRBACProxy.enabled: true`, this chart will deploy one RBAC proxy container per endpoint (metrics & telemetry).
+To authorize access, authenticate your requests (via a `ServiceAccount` for example) with a `ClusterRole` attached such as:
+
+```yaml
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  name: kube-state-metrics-read
+rules:
+  - apiGroups: [ "" ]
+    resources: ["services/kube-state-metrics"]
+    verbs:
+      - get
+```
+
+See [kube-rbac-proxy examples](https://github.com/brancz/kube-rbac-proxy/tree/master/examples/resource-attributes) for more details.
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/NOTES.txt b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/NOTES.txt
new file mode 100644
index 0000000000..3589c24ec3
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/NOTES.txt
@@ -0,0 +1,23 @@
+kube-state-metrics is a simple service that listens to the Kubernetes API server and generates metrics about the state of the objects.
+The exposed metrics can be found here:
+https://github.com/kubernetes/kube-state-metrics/blob/master/docs/README.md#exposed-metrics
+
+The metrics are exported on the HTTP endpoint /metrics on the listening port.
+In your case, {{ template "kube-state-metrics.fullname" . }}.{{ template "kube-state-metrics.namespace" . }}.svc.cluster.local:{{ .Values.service.port }}/metrics
+
+They are served either as plaintext or protobuf depending on the Accept header.
+They are designed to be consumed either by Prometheus itself or by a scraper that is compatible with scraping a Prometheus client endpoint.
+
+{{- if .Values.kubeRBACProxy.enabled}}
+
+kube-rbac-proxy endpoint protections is enabled:
+- Metrics endpoints are now HTTPS
+- Ensure that the client authenticates the requests (e.g. via service account) with the following role permissions:
+```
+rules:
+  - apiGroups: [ "" ]
+    resources: ["services/{{ template "kube-state-metrics.fullname" . }}"]
+    verbs:
+      - get
+```
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/_helpers.tpl b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/_helpers.tpl
new file mode 100644
index 0000000000..3dd326da4e
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/_helpers.tpl
@@ -0,0 +1,156 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Expand the name of the chart.
+*/}}
+{{- define "kube-state-metrics.name" -}}
+{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Create a default fully qualified app name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+If release name contains chart name it will be used as a full name.
+*/}}
+{{- define "kube-state-metrics.fullname" -}}
+{{- if .Values.fullnameOverride -}}
+{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" -}}
+{{- else -}}
+{{- $name := default .Chart.Name .Values.nameOverride -}}
+{{- if contains $name .Release.Name -}}
+{{- .Release.Name | trunc 63 | trimSuffix "-" -}}
+{{- else -}}
+{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Create the name of the service account to use
+*/}}
+{{- define "kube-state-metrics.serviceAccountName" -}}
+{{- if .Values.serviceAccount.create -}}
+    {{ default (include "kube-state-metrics.fullname" .) .Values.serviceAccount.name }}
+{{- else -}}
+    {{ default "default" .Values.serviceAccount.name }}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Allow the release namespace to be overridden for multi-namespace deployments in combined charts
+*/}}
+{{- define "kube-state-metrics.namespace" -}}
+  {{- if .Values.namespaceOverride -}}
+    {{- .Values.namespaceOverride -}}
+  {{- else -}}
+    {{- .Release.Namespace -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Create chart name and version as used by the chart label.
+*/}}
+{{- define "kube-state-metrics.chart" -}}
+{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Generate basic labels
+*/}}
+{{- define "kube-state-metrics.labels" }}
+helm.sh/chart: {{ template "kube-state-metrics.chart" . }}
+app.kubernetes.io/managed-by: {{ .Release.Service }}
+app.kubernetes.io/component: metrics
+app.kubernetes.io/part-of: {{ template "kube-state-metrics.name" . }}
+{{- include "kube-state-metrics.selectorLabels" . }}
+{{- if .Chart.AppVersion }}
+app.kubernetes.io/version: {{ .Chart.AppVersion | quote }}
+{{- end }}
+{{- if .Values.customLabels }}
+{{ tpl (toYaml .Values.customLabels) . }}
+{{- end }}
+{{- if .Values.releaseLabel }}
+release: {{ .Release.Name }}
+{{- end }}
+{{- end }}
+
+{{/*
+Selector labels
+*/}}
+{{- define "kube-state-metrics.selectorLabels" }}
+{{- if .Values.selectorOverride }}
+{{ toYaml .Values.selectorOverride }}
+{{- else }}
+app.kubernetes.io/name: {{ include "kube-state-metrics.name" . }}
+app.kubernetes.io/instance: {{ .Release.Name }}
+{{- end }}
+{{- end }}
+
+{{/* Sets default scrape limits for servicemonitor */}}
+{{- define "servicemonitor.scrapeLimits" -}}
+{{- with .sampleLimit }}
+sampleLimit: {{ . }}
+{{- end }}
+{{- with .targetLimit }}
+targetLimit: {{ . }}
+{{- end }}
+{{- with .labelLimit }}
+labelLimit: {{ . }}
+{{- end }}
+{{- with .labelNameLengthLimit }}
+labelNameLengthLimit: {{ . }}
+{{- end }}
+{{- with .labelValueLengthLimit }}
+labelValueLengthLimit: {{ . }}
+{{- end }}
+{{- end -}}
+
+{{/*
+Formats imagePullSecrets. Input is (dict "Values" .Values "imagePullSecrets" .{specific imagePullSecrets})
+*/}}
+{{- define "kube-state-metrics.imagePullSecrets" -}}
+{{- range (concat .Values.global.imagePullSecrets .imagePullSecrets) }}
+  {{- if eq (typeOf .) "map[string]interface {}" }}
+- {{ toYaml . | trim }}
+  {{- else }}
+- name: {{ . }}
+  {{- end }}
+{{- end }}
+{{- end -}}
+
+{{/*
+The image to use for kube-state-metrics
+*/}}
+{{- define "kube-state-metrics.image" -}}
+{{- if .Values.image.sha }}
+{{- if .Values.global.imageRegistry }}
+{{- printf "%s/%s:%s@%s" .Values.global.imageRegistry .Values.image.repository (default (printf "v%s" .Chart.AppVersion) .Values.image.tag) .Values.image.sha }}
+{{- else }}
+{{- printf "%s/%s:%s@%s" .Values.image.registry .Values.image.repository (default (printf "v%s" .Chart.AppVersion) .Values.image.tag) .Values.image.sha }}
+{{- end }}
+{{- else }}
+{{- if .Values.global.imageRegistry }}
+{{- printf "%s/%s:%s" .Values.global.imageRegistry .Values.image.repository (default (printf "v%s" .Chart.AppVersion) .Values.image.tag) }}
+{{- else }}
+{{- printf "%s/%s:%s" .Values.image.registry .Values.image.repository (default (printf "v%s" .Chart.AppVersion) .Values.image.tag) }}
+{{- end }}
+{{- end }}
+{{- end }}
+
+{{/*
+The image to use for kubeRBACProxy
+*/}}
+{{- define "kubeRBACProxy.image" -}}
+{{- if .Values.kubeRBACProxy.image.sha }}
+{{- if .Values.global.imageRegistry }}
+{{- printf "%s/%s:%s@%s" .Values.global.imageRegistry .Values.kubeRBACProxy.image.repository (default (printf "v%s" .Chart.AppVersion) .Values.kubeRBACProxy.image.tag) .Values.kubeRBACProxy.image.sha }}
+{{- else }}
+{{- printf "%s/%s:%s@%s" .Values.kubeRBACProxy.image.registry .Values.kubeRBACProxy.image.repository (default (printf "v%s" .Chart.AppVersion) .Values.kubeRBACProxy.image.tag) .Values.kubeRBACProxy.image.sha }}
+{{- end }}
+{{- else }}
+{{- if .Values.global.imageRegistry }}
+{{- printf "%s/%s:%s" .Values.global.imageRegistry .Values.kubeRBACProxy.image.repository (default (printf "v%s" .Chart.AppVersion) .Values.kubeRBACProxy.image.tag) }}
+{{- else }}
+{{- printf "%s/%s:%s" .Values.kubeRBACProxy.image.registry .Values.kubeRBACProxy.image.repository (default (printf "v%s" .Chart.AppVersion) .Values.kubeRBACProxy.image.tag) }}
+{{- end }}
+{{- end }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/ciliumnetworkpolicy.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/ciliumnetworkpolicy.yaml
new file mode 100644
index 0000000000..025cd47a88
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/ciliumnetworkpolicy.yaml
@@ -0,0 +1,33 @@
+{{- if and .Values.networkPolicy.enabled (eq .Values.networkPolicy.flavor "cilium") }}
+apiVersion: cilium.io/v2
+kind: CiliumNetworkPolicy
+metadata:
+  {{- if .Values.annotations }}
+  annotations:
+    {{ toYaml .Values.annotations | nindent 4 }}
+  {{- end }}
+  labels:
+    {{- include "kube-state-metrics.labels" . | indent 4 }}
+  name: {{ template "kube-state-metrics.fullname" . }}
+  namespace: {{ template "kube-state-metrics.namespace" . }}
+spec:
+  endpointSelector:
+    matchLabels:
+      {{- include "kube-state-metrics.selectorLabels" . | indent 6 }}
+  egress:
+    {{- if and .Values.networkPolicy.cilium .Values.networkPolicy.cilium.kubeApiServerSelector }}
+      {{ toYaml .Values.networkPolicy.cilium.kubeApiServerSelector | nindent 6 }}
+    {{- else }}
+    - toEntities:
+      - kube-apiserver
+    {{- end }}
+  ingress:
+  - toPorts:
+    - ports:
+      - port: {{ .Values.service.port | quote }}
+        protocol: TCP
+      {{- if .Values.selfMonitor.enabled }}
+      - port: {{ .Values.selfMonitor.telemetryPort | default 8081 | quote }}
+        protocol: TCP
+      {{ end }}
+{{ end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/clusterrolebinding.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/clusterrolebinding.yaml
new file mode 100644
index 0000000000..cf9f628d04
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/clusterrolebinding.yaml
@@ -0,0 +1,20 @@
+{{- if and .Values.rbac.create .Values.rbac.useClusterRole -}}
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    {{- include "kube-state-metrics.labels" . | indent 4 }}
+  name: {{ template "kube-state-metrics.fullname" . }}
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+{{- if .Values.rbac.useExistingRole }}
+  name: {{ .Values.rbac.useExistingRole }}
+{{- else }}
+  name: {{ template "kube-state-metrics.fullname" . }}
+{{- end }}
+subjects:
+- kind: ServiceAccount
+  name: {{ template "kube-state-metrics.serviceAccountName" . }}
+  namespace: {{ template "kube-state-metrics.namespace" . }}
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/crs-configmap.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/crs-configmap.yaml
new file mode 100644
index 0000000000..d38a75a51d
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/crs-configmap.yaml
@@ -0,0 +1,16 @@
+{{- if .Values.customResourceState.enabled}}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ template "kube-state-metrics.fullname" . }}-customresourcestate-config
+  namespace: {{ template "kube-state-metrics.namespace" . }}
+  labels:
+    {{- include "kube-state-metrics.labels" . | indent 4 }}
+  {{- if .Values.annotations }}
+  annotations:
+    {{ toYaml .Values.annotations | nindent 4 }}
+  {{- end }}
+data:
+  config.yaml: |
+    {{- toYaml .Values.customResourceState.config | nindent 4 }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/deployment.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/deployment.yaml
new file mode 100644
index 0000000000..bc93d42b71
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/deployment.yaml
@@ -0,0 +1,344 @@
+apiVersion: apps/v1
+{{- if .Values.autosharding.enabled }}
+kind: StatefulSet
+{{- else }}
+kind: Deployment
+{{- end }}
+metadata:
+  name: {{ template "kube-state-metrics.fullname" . }}
+  namespace: {{ template "kube-state-metrics.namespace" . }}
+  labels:
+    {{- include "kube-state-metrics.labels" . | indent 4 }}
+  {{- if .Values.annotations }}
+  annotations:
+{{ toYaml .Values.annotations | indent 4 }}
+  {{- end }}
+spec:
+  selector:
+    matchLabels:
+      {{- include "kube-state-metrics.selectorLabels" . | indent 6 }}
+  replicas: {{ .Values.replicas }}
+  {{- if not .Values.autosharding.enabled }}
+  strategy:
+    type: {{ .Values.updateStrategy | default "RollingUpdate" }}
+  {{- end }}
+  revisionHistoryLimit: {{ .Values.revisionHistoryLimit }}
+  {{- if .Values.autosharding.enabled }}
+  serviceName: {{ template "kube-state-metrics.fullname" . }}
+  volumeClaimTemplates: []
+  {{- end }}
+  template:
+    metadata:
+      labels:
+        {{- include "kube-state-metrics.labels" . | indent 8 }}
+        {{- with .Values.podLabels }}
+        {{- toYaml . | nindent 8 }}
+        {{- end }}
+      {{- if .Values.podAnnotations }}
+      annotations:
+      {{ toYaml .Values.podAnnotations | nindent 8 }}
+      {{- end }}
+    spec:
+      automountServiceAccountToken: {{ .Values.automountServiceAccountToken }}
+      hostNetwork: {{ .Values.hostNetwork }}
+      serviceAccountName: {{ template "kube-state-metrics.serviceAccountName" . }}
+      {{- if .Values.securityContext.enabled }}
+      securityContext: {{- omit .Values.securityContext "enabled" | toYaml | nindent 8 }}
+      {{- end }}
+    {{- if .Values.priorityClassName }}
+      priorityClassName: {{ .Values.priorityClassName }}
+    {{- end }}
+      {{- with .Values.initContainers }}
+      initContainers:
+      {{- toYaml . | nindent 6 }}
+      {{- end }}
+      containers:
+      {{- $servicePort := ternary 9090 (.Values.service.port | default 8080) .Values.kubeRBACProxy.enabled}}
+      {{- $telemetryPort := ternary 9091 (.Values.selfMonitor.telemetryPort | default 8081) .Values.kubeRBACProxy.enabled}}
+      - name: {{ template "kube-state-metrics.name" . }}
+        {{- if  .Values.autosharding.enabled }}
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        {{- if .Values.env }}
+        {{- toYaml .Values.env | nindent 8 }}
+        {{- end }}
+        {{ else }}
+        {{- if .Values.env }}
+        env:
+        {{- toYaml .Values.env | nindent 8 }}
+        {{- end }}
+        {{- end }}
+        args:
+        {{-  if .Values.extraArgs  }}
+        {{- .Values.extraArgs | toYaml | nindent 8 }}
+        {{-  end  }}
+        - --port={{ $servicePort }}
+        {{-  if .Values.collectors  }}
+        - --resources={{ .Values.collectors | join "," }}
+        {{-  end  }}
+        {{- if .Values.metricLabelsAllowlist }}
+        - --metric-labels-allowlist={{ .Values.metricLabelsAllowlist | join "," }}
+        {{- end }}
+        {{- if .Values.metricAnnotationsAllowList }}
+        - --metric-annotations-allowlist={{ .Values.metricAnnotationsAllowList | join "," }}
+        {{- end }}
+        {{- if .Values.metricAllowlist }}
+        - --metric-allowlist={{ .Values.metricAllowlist | join "," }}
+        {{- end }}
+        {{- if .Values.metricDenylist }}
+        - --metric-denylist={{ .Values.metricDenylist | join "," }}
+        {{- end }}
+        {{- $namespaces := list }}
+        {{- if .Values.namespaces }}
+        {{- range $ns := join "," .Values.namespaces | split "," }}
+        {{- $namespaces = append $namespaces (tpl $ns $) }}
+        {{- end }}
+        {{- end }}
+        {{- if .Values.releaseNamespace }}
+        {{- $namespaces = append $namespaces ( include "kube-state-metrics.namespace" . ) }}
+        {{- end }}
+        {{- if $namespaces }}
+        - --namespaces={{ $namespaces | mustUniq | join "," }}
+        {{- end }}
+        {{- if .Values.namespacesDenylist }}
+        - --namespaces-denylist={{ tpl (.Values.namespacesDenylist | join ",") $ }}
+        {{- end }}
+        {{- if .Values.autosharding.enabled }}
+        - --pod=$(POD_NAME)
+        - --pod-namespace=$(POD_NAMESPACE)
+        {{- end }}
+        {{- if .Values.kubeconfig.enabled }}
+        - --kubeconfig=/opt/k8s/.kube/config
+        {{- end }}
+        {{- if .Values.kubeRBACProxy.enabled }}
+        - --telemetry-host=127.0.0.1
+        - --telemetry-port={{ $telemetryPort }}
+        {{- else }}
+        {{- if .Values.selfMonitor.telemetryHost }}
+        - --telemetry-host={{ .Values.selfMonitor.telemetryHost }}
+        {{- end }}
+        {{- if .Values.selfMonitor.telemetryPort }}
+        - --telemetry-port={{ $telemetryPort }}
+        {{- end }}
+        {{- end }}
+        {{- if .Values.customResourceState.enabled }}
+        - --custom-resource-state-config-file=/etc/customresourcestate/config.yaml
+        {{- end }}
+        {{- if or (.Values.kubeconfig.enabled) (.Values.customResourceState.enabled) (.Values.volumeMounts) }}
+        volumeMounts:
+        {{- if .Values.kubeconfig.enabled }}
+        - name: kubeconfig
+          mountPath: /opt/k8s/.kube/
+          readOnly: true
+        {{- end }}
+        {{- if .Values.customResourceState.enabled }}
+        - name: customresourcestate-config
+          mountPath: /etc/customresourcestate
+          readOnly: true
+        {{- end }}
+        {{- if .Values.volumeMounts }}
+{{ toYaml .Values.volumeMounts | indent 8 }}
+        {{- end }}
+        {{- end }}
+        imagePullPolicy: {{ .Values.image.pullPolicy }}
+        image: {{ include "kube-state-metrics.image" . }}
+        {{- if eq .Values.kubeRBACProxy.enabled false }}
+        ports:
+        - containerPort: {{ .Values.service.port | default 8080}}
+          name: "http"
+        {{- if .Values.selfMonitor.enabled }}
+        - containerPort: {{ $telemetryPort }}
+          name: "metrics"
+        {{- end }}
+        {{- end }}
+        {{- if .Values.startupProbe.enabled }}
+        startupProbe:
+          failureThreshold: {{ .Values.startupProbe.failureThreshold }}
+          httpGet:
+            {{- if .Values.hostNetwork }}
+            host: 127.0.0.1
+            {{- end }}
+            httpHeaders:
+            {{- range $_, $header := .Values.startupProbe.httpGet.httpHeaders }}
+            - name: {{ $header.name }}
+              value: {{ $header.value }}
+            {{- end }}
+            path: /healthz
+            port: {{ $servicePort }}
+            scheme: {{ upper .Values.startupProbe.httpGet.scheme }}
+          initialDelaySeconds: {{ .Values.startupProbe.initialDelaySeconds }}
+          periodSeconds: {{ .Values.startupProbe.periodSeconds }}
+          successThreshold: {{ .Values.startupProbe.successThreshold }}
+          timeoutSeconds: {{ .Values.startupProbe.timeoutSeconds }}
+        {{- end }}
+        livenessProbe:
+          failureThreshold: {{ .Values.livenessProbe.failureThreshold }}
+          httpGet:
+            {{- if .Values.hostNetwork }}
+            host: 127.0.0.1
+            {{- end }}
+            httpHeaders:
+            {{- range $_, $header := .Values.livenessProbe.httpGet.httpHeaders }}
+            - name: {{ $header.name }}
+              value: {{ $header.value }}
+            {{- end }}
+            path: /livez
+            port: {{ $servicePort }}
+            scheme: {{ upper .Values.livenessProbe.httpGet.scheme }}
+          initialDelaySeconds: {{ .Values.livenessProbe.initialDelaySeconds }}
+          periodSeconds: {{ .Values.livenessProbe.periodSeconds }}
+          successThreshold: {{ .Values.livenessProbe.successThreshold }}
+          timeoutSeconds: {{ .Values.livenessProbe.timeoutSeconds }}
+        readinessProbe:
+          failureThreshold: {{ .Values.readinessProbe.failureThreshold }}
+          httpGet:
+            {{- if .Values.hostNetwork }}
+            host: 127.0.0.1
+            {{- end }}
+            httpHeaders:
+            {{- range $_, $header := .Values.readinessProbe.httpGet.httpHeaders }}
+            - name: {{ $header.name }}
+              value: {{ $header.value }}
+            {{- end }}
+            path: /readyz
+            port: {{ $telemetryPort }}
+            scheme: {{ upper .Values.readinessProbe.httpGet.scheme }}
+          initialDelaySeconds: {{ .Values.readinessProbe.initialDelaySeconds }}
+          periodSeconds: {{ .Values.readinessProbe.periodSeconds }}
+          successThreshold: {{ .Values.readinessProbe.successThreshold }}
+          timeoutSeconds: {{ .Values.readinessProbe.timeoutSeconds }}
+        resources:
+{{ toYaml .Values.resources | indent 10 }}
+{{- if .Values.containerSecurityContext }}
+        securityContext:
+{{ toYaml .Values.containerSecurityContext | indent 10 }}
+{{- end }}
+        {{-  if .Values.kubeRBACProxy.enabled  }}
+      - name: kube-rbac-proxy-http
+        args:
+        {{-  if .Values.kubeRBACProxy.extraArgs  }}
+        {{- .Values.kubeRBACProxy.extraArgs | toYaml | nindent 8 }}
+        {{-  end  }}
+        - --secure-listen-address=:{{ .Values.service.port | default 8080}}
+        - --upstream=http://127.0.0.1:{{ $servicePort }}/
+        - --proxy-endpoints-port=8888
+        - --config-file=/etc/kube-rbac-proxy-config/config-file.yaml
+        volumeMounts:
+          - name: kube-rbac-proxy-config
+            mountPath: /etc/kube-rbac-proxy-config
+          {{- with .Values.kubeRBACProxy.volumeMounts }}
+          {{- toYaml . | nindent 10 }}
+          {{- end }}
+        imagePullPolicy: {{ .Values.kubeRBACProxy.image.pullPolicy }}
+        image: {{ include "kubeRBACProxy.image" . }}
+        ports:
+          - containerPort: {{ .Values.service.port | default 8080}}
+            name: "http"
+          - containerPort: 8888
+            name: "http-healthz"
+        readinessProbe:
+          httpGet:
+            scheme: HTTPS
+            port: 8888
+            path: healthz
+          initialDelaySeconds: 5
+          timeoutSeconds: 5
+        {{- if .Values.kubeRBACProxy.resources }}
+        resources:
+{{ toYaml .Values.kubeRBACProxy.resources | indent 10 }}
+{{- end }}
+{{- if .Values.kubeRBACProxy.containerSecurityContext }}
+        securityContext:
+{{ toYaml .Values.kubeRBACProxy.containerSecurityContext | indent 10 }}
+{{- end }}
+      {{-  if .Values.selfMonitor.enabled  }}
+      - name: kube-rbac-proxy-telemetry
+        args:
+        {{-  if .Values.kubeRBACProxy.extraArgs  }}
+        {{- .Values.kubeRBACProxy.extraArgs | toYaml | nindent 8 }}
+        {{-  end  }}
+        - --secure-listen-address=:{{ .Values.selfMonitor.telemetryPort | default 8081 }}
+        - --upstream=http://127.0.0.1:{{ $telemetryPort }}/
+        - --proxy-endpoints-port=8889
+        - --config-file=/etc/kube-rbac-proxy-config/config-file.yaml
+        volumeMounts:
+          - name: kube-rbac-proxy-config
+            mountPath: /etc/kube-rbac-proxy-config
+          {{- with .Values.kubeRBACProxy.volumeMounts }}
+          {{- toYaml . | nindent 10 }}
+          {{- end }}
+        imagePullPolicy: {{ .Values.kubeRBACProxy.image.pullPolicy }}
+        image: {{ include "kubeRBACProxy.image" . }}
+        ports:
+          - containerPort: {{ .Values.selfMonitor.telemetryPort | default 8081 }}
+            name: "metrics"
+          - containerPort: 8889
+            name: "metrics-healthz"
+        readinessProbe:
+          httpGet:
+            scheme: HTTPS
+            port: 8889
+            path: healthz
+          initialDelaySeconds: 5
+          timeoutSeconds: 5
+        {{- if .Values.kubeRBACProxy.resources }}
+        resources:
+{{ toYaml .Values.kubeRBACProxy.resources | indent 10 }}
+{{- end }}
+{{- if .Values.kubeRBACProxy.containerSecurityContext }}
+        securityContext:
+{{ toYaml .Values.kubeRBACProxy.containerSecurityContext | indent 10 }}
+{{- end }}
+      {{- end }}
+      {{- end }}
+      {{- with .Values.containers }}
+      {{- toYaml . | nindent 6 }}
+      {{- end }}
+{{- if or .Values.imagePullSecrets .Values.global.imagePullSecrets }}
+      imagePullSecrets:
+        {{- include "kube-state-metrics.imagePullSecrets" (dict "Values" .Values "imagePullSecrets" .Values.imagePullSecrets) | indent 8 }}
+      {{- end }}
+      {{- if .Values.affinity }}
+      affinity:
+{{ toYaml .Values.affinity | indent 8 }}
+      {{- end }}
+      {{- with .Values.nodeSelector }}
+      nodeSelector:
+{{ tpl (toYaml .) $ | indent 8 }}
+      {{- end }}
+      {{- with .Values.tolerations }}
+      tolerations:
+{{ tpl (toYaml .) $ | indent 8 }}
+      {{- end }}
+      {{- if .Values.topologySpreadConstraints }}
+      topologySpreadConstraints:
+{{ toYaml .Values.topologySpreadConstraints | indent 8 }}
+      {{- end }}
+      {{- if or (.Values.kubeconfig.enabled) (.Values.customResourceState.enabled) (.Values.volumes) (.Values.kubeRBACProxy.enabled) }}
+      volumes:
+      {{- if .Values.kubeconfig.enabled}}
+        - name: kubeconfig
+          secret:
+            secretName: {{ template "kube-state-metrics.fullname" . }}-kubeconfig
+      {{- end }}
+      {{- if .Values.kubeRBACProxy.enabled}}
+        - name: kube-rbac-proxy-config
+          configMap:
+            name: {{ template "kube-state-metrics.fullname" . }}-rbac-config
+      {{- end }}
+      {{- if .Values.customResourceState.enabled}}
+        - name: customresourcestate-config
+          configMap:
+            name: {{ template "kube-state-metrics.fullname" . }}-customresourcestate-config
+      {{- end }}
+      {{- if .Values.volumes }}
+{{ toYaml .Values.volumes | indent 8 }}
+      {{- end }}
+      {{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/extra-manifests.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/extra-manifests.yaml
new file mode 100644
index 0000000000..567f7bf329
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/extra-manifests.yaml
@@ -0,0 +1,4 @@
+{{ range .Values.extraManifests }}
+---
+{{ tpl (toYaml .) $ }}
+{{ end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/kubeconfig-secret.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/kubeconfig-secret.yaml
new file mode 100644
index 0000000000..6af0084502
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/kubeconfig-secret.yaml
@@ -0,0 +1,12 @@
+{{- if .Values.kubeconfig.enabled -}}
+apiVersion: v1
+kind: Secret
+metadata:
+  name: {{ template "kube-state-metrics.fullname" . }}-kubeconfig
+  namespace: {{ template "kube-state-metrics.namespace" . }}
+  labels:
+    {{- include "kube-state-metrics.labels" . | indent 4 }}
+type: Opaque
+data:
+  config: '{{ .Values.kubeconfig.secret }}'
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/networkpolicy.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/networkpolicy.yaml
new file mode 100644
index 0000000000..309b38ec54
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/networkpolicy.yaml
@@ -0,0 +1,43 @@
+{{- if and .Values.networkPolicy.enabled (eq .Values.networkPolicy.flavor "kubernetes") }}
+kind: NetworkPolicy
+apiVersion: networking.k8s.io/v1
+metadata:
+  {{- if .Values.annotations }}
+  annotations:
+    {{ toYaml .Values.annotations | nindent 4 }}
+  {{- end }}
+  labels:
+    {{- include "kube-state-metrics.labels" . | indent 4 }}
+  name: {{ template "kube-state-metrics.fullname" . }}
+  namespace: {{ template "kube-state-metrics.namespace" . }}
+spec:
+  {{- if .Values.networkPolicy.egress }}
+  ## Deny all egress by default
+  egress:
+    {{- toYaml .Values.networkPolicy.egress | nindent 4 }}
+  {{- end }}
+  ingress:
+  {{- if .Values.networkPolicy.ingress }}
+    {{- toYaml .Values.networkPolicy.ingress | nindent 4 }}
+  {{- else }}
+    ## Allow ingress on default ports by default
+  - ports:
+    - port: {{ .Values.service.port | default 8080 }}
+      protocol: TCP
+    {{- if .Values.selfMonitor.enabled }}
+    {{- $telemetryPort := ternary 9091 (.Values.selfMonitor.telemetryPort | default 8081) .Values.kubeRBACProxy.enabled}}
+    - port: {{ $telemetryPort }}
+      protocol: TCP
+    {{- end }}
+  {{- end }}
+  podSelector:
+    {{- if .Values.networkPolicy.podSelector }}
+    {{- toYaml .Values.networkPolicy.podSelector | nindent 4 }}
+    {{- else }}
+    matchLabels:
+      {{- include "kube-state-metrics.selectorLabels" . | indent 6 }}
+    {{- end }}
+  policyTypes:
+    - Ingress
+    - Egress
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/pdb.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/pdb.yaml
new file mode 100644
index 0000000000..3771b511de
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/pdb.yaml
@@ -0,0 +1,18 @@
+{{- if .Values.podDisruptionBudget -}}
+{{ if $.Capabilities.APIVersions.Has "policy/v1/PodDisruptionBudget" -}}
+apiVersion: policy/v1
+{{- else -}}
+apiVersion: policy/v1beta1
+{{- end }}
+kind: PodDisruptionBudget
+metadata:
+  name: {{ template "kube-state-metrics.fullname" . }}
+  namespace: {{ template "kube-state-metrics.namespace" . }}
+  labels:
+    {{- include "kube-state-metrics.labels" . | indent 4 }}
+spec:
+  selector:
+    matchLabels:
+      app.kubernetes.io/name: {{ template "kube-state-metrics.name" . }}
+{{ toYaml .Values.podDisruptionBudget | indent 2 }}
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/podsecuritypolicy.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/podsecuritypolicy.yaml
new file mode 100644
index 0000000000..8905e113e8
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/podsecuritypolicy.yaml
@@ -0,0 +1,39 @@
+{{- if and .Values.podSecurityPolicy.enabled (.Capabilities.APIVersions.Has "policy/v1beta1/PodSecurityPolicy") }}
+apiVersion: policy/v1beta1
+kind: PodSecurityPolicy
+metadata:
+  name: {{ template "kube-state-metrics.fullname" . }}
+  labels:
+    {{- include "kube-state-metrics.labels" . | indent 4 }}
+{{- if .Values.podSecurityPolicy.annotations }}
+  annotations:
+{{ toYaml .Values.podSecurityPolicy.annotations | indent 4 }}
+{{- end }}
+spec:
+  privileged: false
+  volumes:
+    - 'secret'
+{{- if .Values.podSecurityPolicy.additionalVolumes }}
+{{ toYaml .Values.podSecurityPolicy.additionalVolumes | indent 4 }}
+{{- end }}
+  hostNetwork: false
+  hostIPC: false
+  hostPID: false
+  runAsUser:
+    rule: 'MustRunAsNonRoot'
+  seLinux:
+    rule: 'RunAsAny'
+  supplementalGroups:
+    rule: 'MustRunAs'
+    ranges:
+      # Forbid adding the root group.
+      - min: 1
+        max: 65535
+  fsGroup:
+    rule: 'MustRunAs'
+    ranges:
+      # Forbid adding the root group.
+      - min: 1
+        max: 65535
+  readOnlyRootFilesystem: false
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/psp-clusterrole.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/psp-clusterrole.yaml
new file mode 100644
index 0000000000..654e4a3d57
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/psp-clusterrole.yaml
@@ -0,0 +1,19 @@
+{{- if and .Values.podSecurityPolicy.enabled (.Capabilities.APIVersions.Has "policy/v1beta1/PodSecurityPolicy") }}
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    {{- include "kube-state-metrics.labels" . | indent 4 }}
+  name: psp-{{ template "kube-state-metrics.fullname" . }}
+rules:
+{{- $kubeTargetVersion := default .Capabilities.KubeVersion.GitVersion .Values.kubeTargetVersionOverride }}
+{{- if semverCompare "> 1.15.0-0" $kubeTargetVersion }}
+- apiGroups: ['policy']
+{{- else }}
+- apiGroups: ['extensions']
+{{- end }}
+  resources: ['podsecuritypolicies']
+  verbs:     ['use']
+  resourceNames:
+  - {{ template "kube-state-metrics.fullname" . }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/psp-clusterrolebinding.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/psp-clusterrolebinding.yaml
new file mode 100644
index 0000000000..5b62a18bdf
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/psp-clusterrolebinding.yaml
@@ -0,0 +1,16 @@
+{{- if and .Values.podSecurityPolicy.enabled (.Capabilities.APIVersions.Has "policy/v1beta1/PodSecurityPolicy") }}
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    {{- include "kube-state-metrics.labels" . | indent 4 }}
+  name: psp-{{ template "kube-state-metrics.fullname" . }}
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: psp-{{ template "kube-state-metrics.fullname" . }}
+subjects:
+  - kind: ServiceAccount
+    name: {{ template "kube-state-metrics.serviceAccountName" . }}
+    namespace: {{ template "kube-state-metrics.namespace" . }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/rbac-configmap.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/rbac-configmap.yaml
new file mode 100644
index 0000000000..671dc9d660
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/rbac-configmap.yaml
@@ -0,0 +1,22 @@
+{{- if .Values.kubeRBACProxy.enabled}}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ template "kube-state-metrics.fullname" . }}-rbac-config
+  namespace: {{ template "kube-state-metrics.namespace" . }}
+  labels:
+    {{- include "kube-state-metrics.labels" . | indent 4 }}
+  {{- if .Values.annotations }}
+  annotations:
+    {{ toYaml .Values.annotations | nindent 4 }}
+  {{- end }}
+data:
+  config-file.yaml: |+
+    authorization:
+      resourceAttributes:
+        namespace: {{ template "kube-state-metrics.namespace" . }}
+        apiVersion: v1
+        resource: services
+        subresource: {{ template "kube-state-metrics.fullname" . }}
+        name: {{ template "kube-state-metrics.fullname" . }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/role.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/role.yaml
new file mode 100644
index 0000000000..d33687f2d1
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/role.yaml
@@ -0,0 +1,212 @@
+{{- if and (eq .Values.rbac.create true) (not .Values.rbac.useExistingRole) -}}
+{{- range (ternary (join "," .Values.namespaces | split "," ) (list "") (eq $.Values.rbac.useClusterRole false)) }}
+---
+apiVersion: rbac.authorization.k8s.io/v1
+{{- if eq $.Values.rbac.useClusterRole false }}
+kind: Role
+{{- else }}
+kind: ClusterRole
+{{- end }}
+metadata:
+  labels:
+    {{- include "kube-state-metrics.labels" $ | indent 4 }}
+  name: {{ template "kube-state-metrics.fullname" $ }}
+{{- if eq $.Values.rbac.useClusterRole false }}
+  namespace: {{ . }}
+{{- end }}
+rules:
+{{ if has "certificatesigningrequests" $.Values.collectors }}
+- apiGroups: ["certificates.k8s.io"]
+  resources:
+  - certificatesigningrequests
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "configmaps" $.Values.collectors }}
+- apiGroups: [""]
+  resources:
+  - configmaps
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "cronjobs" $.Values.collectors }}
+- apiGroups: ["batch"]
+  resources:
+  - cronjobs
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "daemonsets" $.Values.collectors }}
+- apiGroups: ["extensions", "apps"]
+  resources:
+  - daemonsets
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "deployments" $.Values.collectors }}
+- apiGroups: ["extensions", "apps"]
+  resources:
+  - deployments
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "endpoints" $.Values.collectors }}
+- apiGroups: [""]
+  resources:
+  - endpoints
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "endpointslices" $.Values.collectors }}
+- apiGroups: ["discovery.k8s.io"]
+  resources:
+  - endpointslices
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "horizontalpodautoscalers" $.Values.collectors }}
+- apiGroups: ["autoscaling"]
+  resources:
+  - horizontalpodautoscalers
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "ingresses" $.Values.collectors }}
+- apiGroups: ["extensions", "networking.k8s.io"]
+  resources:
+  - ingresses
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "jobs" $.Values.collectors }}
+- apiGroups: ["batch"]
+  resources:
+  - jobs
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "leases" $.Values.collectors }}
+- apiGroups: ["coordination.k8s.io"]
+  resources:
+  - leases
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "limitranges" $.Values.collectors }}
+- apiGroups: [""]
+  resources:
+  - limitranges
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "mutatingwebhookconfigurations" $.Values.collectors }}
+- apiGroups: ["admissionregistration.k8s.io"]
+  resources:
+    - mutatingwebhookconfigurations
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "namespaces" $.Values.collectors }}
+- apiGroups: [""]
+  resources:
+  - namespaces
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "networkpolicies" $.Values.collectors }}
+- apiGroups: ["networking.k8s.io"]
+  resources:
+  - networkpolicies
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "nodes" $.Values.collectors }}
+- apiGroups: [""]
+  resources:
+  - nodes
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "persistentvolumeclaims" $.Values.collectors }}
+- apiGroups: [""]
+  resources:
+  - persistentvolumeclaims
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "persistentvolumes" $.Values.collectors }}
+- apiGroups: [""]
+  resources:
+  - persistentvolumes
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "poddisruptionbudgets" $.Values.collectors }}
+- apiGroups: ["policy"]
+  resources:
+    - poddisruptionbudgets
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "pods" $.Values.collectors }}
+- apiGroups: [""]
+  resources:
+  - pods
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "replicasets" $.Values.collectors }}
+- apiGroups: ["extensions", "apps"]
+  resources:
+  - replicasets
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "replicationcontrollers" $.Values.collectors }}
+- apiGroups: [""]
+  resources:
+  - replicationcontrollers
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "resourcequotas" $.Values.collectors }}
+- apiGroups: [""]
+  resources:
+  - resourcequotas
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "secrets" $.Values.collectors }}
+- apiGroups: [""]
+  resources:
+  - secrets
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "services" $.Values.collectors }}
+- apiGroups: [""]
+  resources:
+  - services
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "statefulsets" $.Values.collectors }}
+- apiGroups: ["apps"]
+  resources:
+  - statefulsets
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "storageclasses" $.Values.collectors }}
+- apiGroups: ["storage.k8s.io"]
+  resources:
+    - storageclasses
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "validatingwebhookconfigurations" $.Values.collectors }}
+- apiGroups: ["admissionregistration.k8s.io"]
+  resources:
+    - validatingwebhookconfigurations
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "volumeattachments" $.Values.collectors }}
+- apiGroups: ["storage.k8s.io"]
+  resources:
+    - volumeattachments
+  verbs: ["list", "watch"]
+{{ end -}}
+{{-  if $.Values.kubeRBACProxy.enabled  }}
+- apiGroups: ["authentication.k8s.io"]
+  resources:
+    - tokenreviews
+  verbs: ["create"]
+- apiGroups: ["authorization.k8s.io"]
+  resources:
+    - subjectaccessreviews
+  verbs: ["create"]
+{{- end }}
+{{- if $.Values.customResourceState.enabled }}
+- apiGroups: ["apiextensions.k8s.io"]
+  resources:
+    - customresourcedefinitions
+  verbs: ["list", "watch"]
+{{- end }}
+{{ if $.Values.rbac.extraRules }}
+{{ toYaml $.Values.rbac.extraRules }}
+{{ end }}
+{{- end -}}
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/rolebinding.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/rolebinding.yaml
new file mode 100644
index 0000000000..330651b73f
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/rolebinding.yaml
@@ -0,0 +1,24 @@
+{{- if and (eq  .Values.rbac.create true) (eq .Values.rbac.useClusterRole false) -}}
+{{- range (join "," $.Values.namespaces) | split "," }}
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    {{- include "kube-state-metrics.labels" $ | indent 4 }}
+  name: {{ template "kube-state-metrics.fullname" $ }}
+  namespace: {{ . }}
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+{{- if (not $.Values.rbac.useExistingRole) }}
+  name: {{ template "kube-state-metrics.fullname" $ }}
+{{- else }}
+  name: {{ $.Values.rbac.useExistingRole }}
+{{- end }}
+subjects:
+- kind: ServiceAccount
+  name: {{ template "kube-state-metrics.serviceAccountName" $ }}
+  namespace: {{ template "kube-state-metrics.namespace" $ }}
+{{- end -}}
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/service.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/service.yaml
new file mode 100644
index 0000000000..90c235148f
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/service.yaml
@@ -0,0 +1,53 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ template "kube-state-metrics.fullname" . }}
+  namespace: {{ template "kube-state-metrics.namespace" . }}
+  labels:
+    {{- include "kube-state-metrics.labels" . | indent 4 }}
+  annotations:
+    {{- if .Values.prometheusScrape }}
+    prometheus.io/scrape: '{{ .Values.prometheusScrape }}'
+    {{- end }}
+    {{- if .Values.service.annotations }}
+    {{- toYaml .Values.service.annotations | nindent 4 }}
+    {{- end }}
+spec:
+  type: "{{ .Values.service.type }}"
+  {{- if .Values.service.ipDualStack.enabled }}
+  ipFamilies: {{ toYaml .Values.service.ipDualStack.ipFamilies | nindent 4 }}
+  ipFamilyPolicy: {{ .Values.service.ipDualStack.ipFamilyPolicy }}
+  {{- end }}
+  ports:
+  - name: "http"
+    protocol: TCP
+    port: {{ .Values.service.port | default 8080}}
+  {{- if .Values.service.nodePort }}
+    nodePort: {{ .Values.service.nodePort }}
+  {{- end }}
+    targetPort: {{ .Values.service.port | default 8080}}
+  {{ if .Values.selfMonitor.enabled }}
+  - name: "metrics"
+    protocol: TCP
+    port: {{ .Values.selfMonitor.telemetryPort | default 8081 }}
+    targetPort: {{ .Values.selfMonitor.telemetryPort | default 8081 }}
+  {{- if .Values.selfMonitor.telemetryNodePort }}
+    nodePort: {{ .Values.selfMonitor.telemetryNodePort }}
+  {{- end }}
+  {{ end }}
+{{- if .Values.service.loadBalancerIP }}
+  loadBalancerIP: "{{ .Values.service.loadBalancerIP }}"
+{{- end }}
+{{- if .Values.service.loadBalancerSourceRanges }}
+  loadBalancerSourceRanges:
+  {{- range $cidr := .Values.service.loadBalancerSourceRanges }}
+    - {{ $cidr }}
+  {{- end }}
+{{- end }}
+{{- if .Values.autosharding.enabled }}
+  clusterIP: None
+{{- else if .Values.service.clusterIP }}
+  clusterIP: "{{ .Values.service.clusterIP }}"
+{{- end }}
+  selector:
+    {{- include "kube-state-metrics.selectorLabels" . | indent 4 }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/serviceaccount.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/serviceaccount.yaml
new file mode 100644
index 0000000000..c302bc7ca0
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/serviceaccount.yaml
@@ -0,0 +1,18 @@
+{{- if .Values.serviceAccount.create -}}
+apiVersion: v1
+kind: ServiceAccount
+automountServiceAccountToken: {{ .Values.serviceAccount.automountServiceAccountToken }}
+metadata:
+  labels:
+    {{- include "kube-state-metrics.labels" . | indent 4 }}
+  name: {{ template "kube-state-metrics.serviceAccountName" . }}
+  namespace: {{ template "kube-state-metrics.namespace" . }}
+{{- if .Values.serviceAccount.annotations }}
+  annotations:
+{{ toYaml .Values.serviceAccount.annotations | indent 4 }}
+{{- end }}
+{{- if or .Values.serviceAccount.imagePullSecrets .Values.global.imagePullSecrets }}
+imagePullSecrets:
+  {{- include "kube-state-metrics.imagePullSecrets" (dict "Values" .Values "imagePullSecrets" .Values.serviceAccount.imagePullSecrets) | indent 2 }}
+{{- end }}
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/servicemonitor.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/servicemonitor.yaml
new file mode 100644
index 0000000000..99d7fa9246
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/servicemonitor.yaml
@@ -0,0 +1,120 @@
+{{- if .Values.prometheus.monitor.enabled }}
+apiVersion: monitoring.coreos.com/v1
+kind: ServiceMonitor
+metadata:
+  name: {{ template "kube-state-metrics.fullname" . }}
+  namespace: {{ template "kube-state-metrics.namespace" . }}
+  labels:
+    {{- include "kube-state-metrics.labels" . | indent 4 }}
+  {{- with .Values.prometheus.monitor.additionalLabels }}
+    {{- tpl (toYaml . | nindent 4) $ }}
+  {{- end }}
+  {{- with .Values.prometheus.monitor.annotations }}
+  annotations:
+    {{- tpl (toYaml . | nindent 4) $ }}
+  {{- end }}
+spec:
+  jobLabel: {{ default "app.kubernetes.io/name" .Values.prometheus.monitor.jobLabel }}
+  {{- with .Values.prometheus.monitor.targetLabels }}
+  targetLabels:
+    {{- toYaml . | trim | nindent 4 }}
+  {{- end }}
+  {{- with .Values.prometheus.monitor.podTargetLabels }}
+  podTargetLabels:
+    {{- toYaml . | trim | nindent 4 }}
+  {{- end }}
+  {{- include "servicemonitor.scrapeLimits" .Values.prometheus.monitor | indent 2 }}
+  {{- if .Values.prometheus.monitor.namespaceSelector }}
+  namespaceSelector:
+    matchNames:
+    {{- with .Values.prometheus.monitor.namespaceSelector }}
+      {{- toYaml . | nindent 6 }}
+    {{- end }}
+  {{- end }}
+  selector:
+    matchLabels:
+    {{- with .Values.prometheus.monitor.selectorOverride }}
+      {{- toYaml . | nindent 6 }}
+    {{- else }}
+      {{- include "kube-state-metrics.selectorLabels" . | indent 6 }}
+    {{- end }}
+  endpoints:
+    - port: http
+    {{- if or .Values.prometheus.monitor.http.interval .Values.prometheus.monitor.interval }}
+      interval: {{ .Values.prometheus.monitor.http.interval | default .Values.prometheus.monitor.interval }}
+    {{- end }}
+    {{- if or .Values.prometheus.monitor.http.scrapeTimeout .Values.prometheus.monitor.scrapeTimeout }}
+      scrapeTimeout: {{ .Values.prometheus.monitor.http.scrapeTimeout | default .Values.prometheus.monitor.scrapeTimeout }}
+    {{- end }}
+    {{- if or .Values.prometheus.monitor.http.proxyUrl .Values.prometheus.monitor.proxyUrl }}
+      proxyUrl: {{ .Values.prometheus.monitor.http.proxyUrl | default .Values.prometheus.monitor.proxyUrl }}
+    {{- end }}
+    {{- if or .Values.prometheus.monitor.http.enableHttp2 .Values.prometheus.monitor.enableHttp2 }}
+      enableHttp2: {{ .Values.prometheus.monitor.http.enableHttp2 | default .Values.prometheus.monitor.enableHttp2 }}
+    {{- end }}
+    {{- if or .Values.prometheus.monitor.http.honorLabels .Values.prometheus.monitor.honorLabels }}
+      honorLabels: true
+    {{- end }}
+    {{- if or .Values.prometheus.monitor.http.metricRelabelings .Values.prometheus.monitor.metricRelabelings }}
+      metricRelabelings:
+        {{- toYaml (.Values.prometheus.monitor.http.metricRelabelings | default .Values.prometheus.monitor.metricRelabelings) | nindent 8 }}
+    {{- end }}
+    {{- if or .Values.prometheus.monitor.http.relabelings .Values.prometheus.monitor.relabelings }}
+      relabelings:
+        {{- toYaml (.Values.prometheus.monitor.http.relabelings | default .Values.prometheus.monitor.relabelings) | nindent 8 }}
+    {{- end }}
+    {{- if or .Values.prometheus.monitor.http.scheme .Values.prometheus.monitor.scheme }}
+      scheme: {{ .Values.prometheus.monitor.http.scheme | default .Values.prometheus.monitor.scheme }}
+    {{- end }}
+    {{- if or .Values.prometheus.monitor.http.tlsConfig .Values.prometheus.monitor.tlsConfig }}
+      tlsConfig:
+        {{- toYaml (.Values.prometheus.monitor.http.tlsConfig | default .Values.prometheus.monitor.tlsConfig) | nindent 8 }}
+    {{- end }}
+    {{- if or .Values.prometheus.monitor.http.bearerTokenFile .Values.prometheus.monitor.bearerTokenFile }}
+      bearerTokenFile: {{ .Values.prometheus.monitor.http.bearerTokenFile | default .Values.prometheus.monitor.bearerTokenFile }}
+    {{- end }}
+    {{- with (.Values.prometheus.monitor.http.bearerTokenSecret | default .Values.prometheus.monitor.bearerTokenSecret) }}
+      bearerTokenSecret:
+        {{- toYaml . | nindent 8 }}
+    {{- end }}
+  {{- if .Values.selfMonitor.enabled }}
+    - port: metrics
+    {{- if or .Values.prometheus.monitor.metrics.interval .Values.prometheus.monitor.interval }}
+      interval: {{ .Values.prometheus.monitor.metrics.interval | default .Values.prometheus.monitor.interval }}
+    {{- end }}
+    {{- if or .Values.prometheus.monitor.metrics.scrapeTimeout .Values.prometheus.monitor.scrapeTimeout }}
+      scrapeTimeout: {{ .Values.prometheus.monitor.metrics.scrapeTimeout | default .Values.prometheus.monitor.scrapeTimeout }}
+    {{- end }}
+    {{- if or .Values.prometheus.monitor.metrics.proxyUrl .Values.prometheus.monitor.proxyUrl }}
+      proxyUrl: {{ .Values.prometheus.monitor.metrics.proxyUrl | default .Values.prometheus.monitor.proxyUrl }}
+    {{- end }}
+    {{- if or .Values.prometheus.monitor.metrics.enableHttp2 .Values.prometheus.monitor.enableHttp2 }}
+      enableHttp2: {{ .Values.prometheus.monitor.metrics.enableHttp2 | default .Values.prometheus.monitor.enableHttp2 }}
+    {{- end }}
+    {{- if or .Values.prometheus.monitor.metrics.honorLabels .Values.prometheus.monitor.honorLabels }}
+      honorLabels: true
+    {{- end }}
+    {{- if or .Values.prometheus.monitor.metrics.metricRelabelings .Values.prometheus.monitor.metricRelabelings }}
+      metricRelabelings:
+        {{- toYaml (.Values.prometheus.monitor.metrics.metricRelabelings | default .Values.prometheus.monitor.metricRelabelings) | nindent 8 }}
+    {{- end }}
+    {{- if or .Values.prometheus.monitor.metrics.relabelings .Values.prometheus.monitor.relabelings }}
+      relabelings:
+        {{- toYaml (.Values.prometheus.monitor.metrics.relabelings | default .Values.prometheus.monitor.relabelings) | nindent 8 }}
+    {{- end }}
+    {{- if or .Values.prometheus.monitor.metrics.scheme .Values.prometheus.monitor.scheme }}
+      scheme: {{ .Values.prometheus.monitor.metrics.scheme | default .Values.prometheus.monitor.scheme }}
+    {{- end }}
+    {{- if or .Values.prometheus.monitor.metrics.tlsConfig .Values.prometheus.monitor.tlsConfig }}
+      tlsConfig:
+        {{- toYaml (.Values.prometheus.monitor.metrics.tlsConfig | default .Values.prometheus.monitor.tlsConfig) | nindent 8 }}
+    {{- end }}
+    {{- if or .Values.prometheus.monitor.metrics.bearerTokenFile .Values.prometheus.monitor.bearerTokenFile }}
+      bearerTokenFile: {{ .Values.prometheus.monitor.metrics.bearerTokenFile | default .Values.prometheus.monitor.bearerTokenFile }}
+    {{- end }}
+    {{- with (.Values.prometheus.monitor.metrics.bearerTokenSecret | default .Values.prometheus.monitor.bearerTokenSecret) }}
+      bearerTokenSecret:
+        {{- toYaml . | nindent 8 }}
+    {{- end }}
+  {{- end }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/stsdiscovery-role.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/stsdiscovery-role.yaml
new file mode 100644
index 0000000000..489de147c1
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/stsdiscovery-role.yaml
@@ -0,0 +1,26 @@
+{{- if and .Values.autosharding.enabled .Values.rbac.create -}}
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  name: stsdiscovery-{{ template "kube-state-metrics.fullname" . }}
+  namespace: {{ template "kube-state-metrics.namespace" . }}
+  labels:
+    {{- include "kube-state-metrics.labels" . | indent 4 }}
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - pods
+  verbs:
+  - get
+- apiGroups:
+  - apps
+  resourceNames:
+  - {{ template "kube-state-metrics.fullname" . }}
+  resources:
+  - statefulsets
+  verbs:
+  - get
+  - list
+  - watch
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/stsdiscovery-rolebinding.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/stsdiscovery-rolebinding.yaml
new file mode 100644
index 0000000000..73b37a4f64
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/stsdiscovery-rolebinding.yaml
@@ -0,0 +1,17 @@
+{{- if and .Values.autosharding.enabled .Values.rbac.create -}}
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  name: stsdiscovery-{{ template "kube-state-metrics.fullname" . }}
+  namespace: {{ template "kube-state-metrics.namespace" . }}
+  labels:
+    {{- include "kube-state-metrics.labels" . | indent 4 }}
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: stsdiscovery-{{ template "kube-state-metrics.fullname" . }}
+subjects:
+  - kind: ServiceAccount
+    name: {{ template "kube-state-metrics.serviceAccountName" . }}
+    namespace: {{ template "kube-state-metrics.namespace" . }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/verticalpodautoscaler.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/verticalpodautoscaler.yaml
new file mode 100644
index 0000000000..f46305b517
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/templates/verticalpodautoscaler.yaml
@@ -0,0 +1,44 @@
+{{- if and (.Capabilities.APIVersions.Has "autoscaling.k8s.io/v1") (.Values.verticalPodAutoscaler.enabled) }}
+apiVersion: autoscaling.k8s.io/v1
+kind: VerticalPodAutoscaler
+metadata:
+  name: {{ template "kube-state-metrics.fullname" . }}
+  namespace: {{ template "kube-state-metrics.namespace" . }}
+  labels:
+    {{- include "kube-state-metrics.labels" . | indent 4 }}
+spec:
+  {{- with .Values.verticalPodAutoscaler.recommenders }}
+  recommenders:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  resourcePolicy:
+    containerPolicies:
+    - containerName: {{ template "kube-state-metrics.name" . }}
+      {{- with .Values.verticalPodAutoscaler.controlledResources }}
+      controlledResources:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- if .Values.verticalPodAutoscaler.controlledValues }}
+      controlledValues: {{ .Values.verticalPodAutoscaler.controlledValues }}
+      {{- end }}
+      {{- if .Values.verticalPodAutoscaler.maxAllowed }}
+      maxAllowed:
+        {{ toYaml .Values.verticalPodAutoscaler.maxAllowed | nindent 8 }}
+      {{- end }}
+      {{- if .Values.verticalPodAutoscaler.minAllowed }}
+      minAllowed:
+        {{ toYaml .Values.verticalPodAutoscaler.minAllowed | nindent 8 }}
+      {{- end }}
+  targetRef:
+    apiVersion: apps/v1
+    {{- if .Values.autosharding.enabled }}
+    kind: StatefulSet
+    {{- else }}
+    kind: Deployment
+    {{- end }}
+    name:  {{ template "kube-state-metrics.fullname" . }}
+  {{- with .Values.verticalPodAutoscaler.updatePolicy }}
+  updatePolicy:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/values.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/values.yaml
new file mode 100644
index 0000000000..948eb58726
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/kube-state-metrics/values.yaml
@@ -0,0 +1,549 @@
+# Default values for kube-state-metrics.
+prometheusScrape: true
+image:
+  registry: registry.k8s.io
+  repository: kube-state-metrics/kube-state-metrics
+  # If unset use v + .Charts.appVersion
+  tag: ""
+  sha: ""
+  pullPolicy: IfNotPresent
+
+imagePullSecrets: []
+# - name: "image-pull-secret"
+
+global:
+  # To help compatibility with other charts which use global.imagePullSecrets.
+  # Allow either an array of {name: pullSecret} maps (k8s-style), or an array of strings (more common helm-style).
+  # global:
+  #   imagePullSecrets:
+  #   - name: pullSecret1
+  #   - name: pullSecret2
+  # or
+  # global:
+  #   imagePullSecrets:
+  #   - pullSecret1
+  #   - pullSecret2
+  imagePullSecrets: []
+  #
+  # Allow parent charts to override registry hostname
+  imageRegistry: ""
+
+# If set to true, this will deploy kube-state-metrics as a StatefulSet and the data
+# will be automatically sharded across <.Values.replicas> pods using the built-in
+# autodiscovery feature: https://github.com/kubernetes/kube-state-metrics#automated-sharding
+# This is an experimental feature and there are no stability guarantees.
+autosharding:
+  enabled: false
+
+replicas: 1
+
+# Change the deployment strategy when autosharding is disabled.
+# ref: https://kubernetes.io/docs/concepts/workloads/controllers/deployment/#strategy
+# The default is "RollingUpdate" as per Kubernetes defaults.
+# During a release, 'RollingUpdate' can lead to two running instances for a short period of time while 'Recreate' can create a small gap in data.
+# updateStrategy: Recreate
+
+# Number of old history to retain to allow rollback
+# Default Kubernetes value is set to 10
+revisionHistoryLimit: 10
+
+# List of additional cli arguments to configure kube-state-metrics
+# for example: --enable-gzip-encoding, --log-file, etc.
+# all the possible args can be found here: https://github.com/kubernetes/kube-state-metrics/blob/master/docs/cli-arguments.md
+extraArgs: []
+
+# If false then the user will opt out of automounting API credentials.
+automountServiceAccountToken: true
+
+service:
+  port: 8080
+  # Default to clusterIP for backward compatibility
+  type: ClusterIP
+  ipDualStack:
+    enabled: false
+    ipFamilies: ["IPv6", "IPv4"]
+    ipFamilyPolicy: "PreferDualStack"
+  nodePort: 0
+  loadBalancerIP: ""
+  # Only allow access to the loadBalancerIP from these IPs
+  loadBalancerSourceRanges: []
+  clusterIP: ""
+  annotations: {}
+
+## Additional labels to add to all resources
+customLabels: {}
+  # app: kube-state-metrics
+
+## Override selector labels
+selectorOverride: {}
+
+## set to true to add the release label so scraping of the servicemonitor with kube-prometheus-stack works out of the box
+releaseLabel: false
+
+hostNetwork: false
+
+rbac:
+  # If true, create & use RBAC resources
+  create: true
+
+  # Set to a rolename to use existing role - skipping role creating - but still doing serviceaccount and rolebinding to it, rolename set here.
+  # useExistingRole: your-existing-role
+
+  # If set to false - Run without Cluteradmin privs needed - ONLY works if namespace is also set (if useExistingRole is set this name is used as ClusterRole or Role to bind to)
+  useClusterRole: true
+
+  # Add permissions for CustomResources' apiGroups in Role/ClusterRole. Should be used in conjunction with Custom Resource State Metrics configuration
+  # Example:
+  # - apiGroups: ["monitoring.coreos.com"]
+  #   resources: ["prometheuses"]
+  #   verbs: ["list", "watch"]
+  extraRules: []
+
+# Configure kube-rbac-proxy. When enabled, creates one kube-rbac-proxy container per exposed HTTP endpoint (metrics and telemetry if enabled).
+# The requests are served through the same service but requests are then HTTPS.
+kubeRBACProxy:
+  enabled: false
+  image:
+    registry: quay.io
+    repository: brancz/kube-rbac-proxy
+    tag: v0.18.2
+    sha: ""
+    pullPolicy: IfNotPresent
+
+  # List of additional cli arguments to configure kube-rbac-prxy
+  # for example: --tls-cipher-suites, --log-file, etc.
+  # all the possible args can be found here: https://github.com/brancz/kube-rbac-proxy#usage
+  extraArgs: []
+
+  ## Specify security settings for a Container
+  ## Allows overrides and additional options compared to (Pod) securityContext
+  ## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container
+  containerSecurityContext:
+    readOnlyRootFilesystem: true
+    allowPrivilegeEscalation: false
+    capabilities:
+      drop:
+      - ALL
+
+  resources: {}
+    # We usually recommend not to specify default resources and to leave this as a conscious
+    # choice for the user. This also increases chances charts run on environments with little
+    # resources, such as Minikube. If you do want to specify resources, uncomment the following
+    # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
+    # limits:
+    #  cpu: 100m
+    #  memory: 64Mi
+    # requests:
+    #  cpu: 10m
+    #  memory: 32Mi
+
+  ## volumeMounts enables mounting custom volumes in rbac-proxy containers
+  ## Useful for TLS certificates and keys
+  volumeMounts: []
+    # - mountPath: /etc/tls
+    #   name: kube-rbac-proxy-tls
+    #   readOnly: true
+
+serviceAccount:
+  # Specifies whether a ServiceAccount should be created, require rbac true
+  create: true
+  # The name of the ServiceAccount to use.
+  # If not set and create is true, a name is generated using the fullname template
+  name:
+  # Reference to one or more secrets to be used when pulling images
+  # ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/
+  imagePullSecrets: []
+  # ServiceAccount annotations.
+  # Use case: AWS EKS IAM roles for service accounts
+  # ref: https://docs.aws.amazon.com/eks/latest/userguide/specify-service-account-role.html
+  annotations: {}
+  # If false then the user will opt out of automounting API credentials.
+  automountServiceAccountToken: true
+
+# Additional Environment variables
+env: {}
+  # - name: GOMAXPROCS
+  #   valueFrom:
+  #     resourceFieldRef:
+  #       resource: limits.cpu
+
+prometheus:
+  monitor:
+    enabled: false
+    annotations: {}
+    additionalLabels: {}
+    namespace: ""
+    namespaceSelector: []
+    jobLabel: ""
+    targetLabels: []
+    podTargetLabels: []
+    ## SampleLimit defines per-scrape limit on number of scraped samples that will be accepted.
+    ##
+    sampleLimit: 0
+
+    ## TargetLimit defines a limit on the number of scraped targets that will be accepted.
+    ##
+    targetLimit: 0
+
+    ## Per-scrape limit on number of labels that will be accepted for a sample. Only valid in Prometheus versions 2.27.0 and newer.
+    ##
+    labelLimit: 0
+
+    ## Per-scrape limit on length of labels name that will be accepted for a sample. Only valid in Prometheus versions 2.27.0 and newer.
+    ##
+    labelNameLengthLimit: 0
+
+    ## Per-scrape limit on length of labels value that will be accepted for a sample. Only valid in Prometheus versions 2.27.0 and newer.
+    ##
+    labelValueLengthLimit: 0
+    selectorOverride: {}
+
+    ## kube-state-metrics endpoint
+    http:
+      interval: ""
+      scrapeTimeout: ""
+      proxyUrl: ""
+      ## Whether to enable HTTP2 for servicemonitor
+      enableHttp2: false
+      honorLabels: false
+      metricRelabelings: []
+      relabelings: []
+      scheme: ""
+      ## File to read bearer token for scraping targets
+      bearerTokenFile: ""
+      ## Secret to mount to read bearer token for scraping targets. The secret needs
+      ## to be in the same namespace as the service monitor and accessible by the
+      ## Prometheus Operator
+      bearerTokenSecret: {}
+        # name: secret-name
+        # key:  key-name
+      tlsConfig: {}
+
+    ## selfMonitor endpoint
+    metrics:
+      interval: ""
+      scrapeTimeout: ""
+      proxyUrl: ""
+      ## Whether to enable HTTP2 for servicemonitor
+      enableHttp2: false
+      honorLabels: false
+      metricRelabelings: []
+      relabelings: []
+      scheme: ""
+      ## File to read bearer token for scraping targets
+      bearerTokenFile: ""
+      ## Secret to mount to read bearer token for scraping targets. The secret needs
+      ## to be in the same namespace as the service monitor and accessible by the
+      ## Prometheus Operator
+      bearerTokenSecret: {}
+        # name: secret-name
+        # key:  key-name
+      tlsConfig: {}
+
+## Specify if a Pod Security Policy for kube-state-metrics must be created
+## Ref: https://kubernetes.io/docs/concepts/policy/pod-security-policy/
+##
+podSecurityPolicy:
+  enabled: false
+  annotations: {}
+    ## Specify pod annotations
+    ## Ref: https://kubernetes.io/docs/concepts/policy/pod-security-policy/#apparmor
+    ## Ref: https://kubernetes.io/docs/concepts/policy/pod-security-policy/#seccomp
+    ## Ref: https://kubernetes.io/docs/concepts/policy/pod-security-policy/#sysctl
+    ##
+    # seccomp.security.alpha.kubernetes.io/allowedProfileNames: '*'
+    # seccomp.security.alpha.kubernetes.io/defaultProfileName: 'docker/default'
+    # apparmor.security.beta.kubernetes.io/defaultProfileName: 'runtime/default'
+
+  additionalVolumes: []
+
+## Configure network policy for kube-state-metrics
+networkPolicy:
+  enabled: false
+  # networkPolicy.flavor -- Flavor of the network policy to use.
+  # Can be:
+  # * kubernetes for networking.k8s.io/v1/NetworkPolicy
+  # * cilium     for cilium.io/v2/CiliumNetworkPolicy
+  flavor: kubernetes
+
+  ## Configure the cilium network policy kube-apiserver selector
+  # cilium:
+    # kubeApiServerSelector:
+      # - toEntities:
+      #   - kube-apiserver
+
+  # egress:
+  # - {}
+  # ingress:
+  # - {}
+  # podSelector:
+  #   matchLabels:
+  #     app.kubernetes.io/name: kube-state-metrics
+
+securityContext:
+  enabled: true
+  runAsGroup: 65534
+  runAsUser: 65534
+  fsGroup: 65534
+  runAsNonRoot: true
+  seccompProfile:
+    type: RuntimeDefault
+
+## Specify security settings for a Container
+## Allows overrides and additional options compared to (Pod) securityContext
+## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container
+containerSecurityContext:
+  readOnlyRootFilesystem: true
+  allowPrivilegeEscalation: false
+  capabilities:
+    drop:
+    - ALL
+
+## Node labels for pod assignment
+## Ref: https://kubernetes.io/docs/user-guide/node-selection/
+nodeSelector: {}
+
+## Affinity settings for pod assignment
+## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/
+affinity: {}
+
+## Tolerations for pod assignment
+## Ref: https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/
+tolerations: []
+
+## Topology spread constraints for pod assignment
+## Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/
+topologySpreadConstraints: []
+
+# Annotations to be added to the deployment/statefulset
+annotations: {}
+
+# Annotations to be added to the pod
+podAnnotations: {}
+
+# Labels to be added to the pod
+podLabels: {}
+
+## Assign a PriorityClassName to pods if set
+# priorityClassName: ""
+
+# Ref: https://kubernetes.io/docs/tasks/run-application/configure-pdb/
+podDisruptionBudget: {}
+
+# Comma-separated list of metrics to be exposed.
+# This list comprises of exact metric names and/or regex patterns.
+# The allowlist and denylist are mutually exclusive.
+metricAllowlist: []
+
+# Comma-separated list of metrics not to be enabled.
+# This list comprises of exact metric names and/or regex patterns.
+# The allowlist and denylist are mutually exclusive.
+metricDenylist: []
+
+# Comma-separated list of additional Kubernetes label keys that will be used in the resource's
+# labels metric. By default the metric contains only name and namespace labels.
+# To include additional labels, provide a list of resource names in their plural form and Kubernetes
+# label keys you would like to allow for them (Example: '=namespaces=[k8s-label-1,k8s-label-n,...],pods=[app],...)'.
+# A single '*' can be provided per resource instead to allow any labels, but that has
+# severe performance implications (Example: '=pods=[*]').
+metricLabelsAllowlist: []
+  # - namespaces=[k8s-label-1,k8s-label-n]
+
+# Comma-separated list of Kubernetes annotations keys that will be used in the resource'
+# labels metric. By default the metric contains only name and namespace labels.
+# To include additional annotations provide a list of resource names in their plural form and Kubernetes
+# annotation keys you would like to allow for them (Example: '=namespaces=[kubernetes.io/team,...],pods=[kubernetes.io/team],...)'.
+# A single '*' can be provided per resource instead to allow any annotations, but that has
+# severe performance implications (Example: '=pods=[*]').
+metricAnnotationsAllowList: []
+  # - pods=[k8s-annotation-1,k8s-annotation-n]
+
+# Available collectors for kube-state-metrics.
+# By default, all available resources are enabled, comment out to disable.
+collectors:
+  - certificatesigningrequests
+  - configmaps
+  - cronjobs
+  - daemonsets
+  - deployments
+  - endpoints
+  - horizontalpodautoscalers
+  - ingresses
+  - jobs
+  - leases
+  - limitranges
+  - mutatingwebhookconfigurations
+  - namespaces
+  - networkpolicies
+  - nodes
+  - persistentvolumeclaims
+  - persistentvolumes
+  - poddisruptionbudgets
+  - pods
+  - replicasets
+  - replicationcontrollers
+  - resourcequotas
+  - secrets
+  - services
+  - statefulsets
+  - storageclasses
+  - validatingwebhookconfigurations
+  - volumeattachments
+
+# Enabling kubeconfig will pass the --kubeconfig argument to the container
+kubeconfig:
+  enabled: false
+  # base64 encoded kube-config file
+  secret:
+
+# Enabling support for customResourceState, will create a configMap including your config that will be read from kube-state-metrics
+customResourceState:
+  enabled: false
+  # Add (Cluster)Role permissions to list/watch the customResources defined in the config to rbac.extraRules
+  config: {}
+
+# Enable only the release namespace for collecting resources. By default all namespaces are collected.
+# If releaseNamespace and namespaces are both set a merged list will be collected.
+releaseNamespace: false
+
+# Comma-separated list(string) or yaml list of namespaces to be enabled for collecting resources. By default all namespaces are collected.
+namespaces: ""
+
+# Comma-separated list of namespaces not to be enabled. If namespaces and namespaces-denylist are both set,
+# only namespaces that are excluded in namespaces-denylist will be used.
+namespacesDenylist: ""
+
+## Override the deployment namespace
+##
+namespaceOverride: ""
+
+resources: {}
+  # We usually recommend not to specify default resources and to leave this as a conscious
+  # choice for the user. This also increases chances charts run on environments with little
+  # resources, such as Minikube. If you do want to specify resources, uncomment the following
+  # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
+  # limits:
+  #  cpu: 100m
+  #  memory: 64Mi
+  # requests:
+  #  cpu: 10m
+  #  memory: 32Mi
+
+## Provide a k8s version to define apiGroups for podSecurityPolicy Cluster Role.
+## For example: kubeTargetVersionOverride: 1.14.9
+##
+kubeTargetVersionOverride: ""
+
+# Enable self metrics configuration for service and Service Monitor
+# Default values for telemetry configuration can be overridden
+# If you set telemetryNodePort, you must also set service.type to NodePort
+selfMonitor:
+  enabled: false
+  # telemetryHost: 0.0.0.0
+  # telemetryPort: 8081
+  # telemetryNodePort: 0
+
+# Enable vertical pod autoscaler support for kube-state-metrics
+verticalPodAutoscaler:
+  enabled: false
+
+  # Recommender responsible for generating recommendation for the object.
+  # List should be empty (then the default recommender will generate the recommendation)
+  # or contain exactly one recommender.
+  # recommenders: []
+  # - name: custom-recommender-performance
+
+  # List of resources that the vertical pod autoscaler can control. Defaults to cpu and memory
+  controlledResources: []
+  # Specifies which resource values should be controlled: RequestsOnly or RequestsAndLimits.
+  # controlledValues: RequestsAndLimits
+
+  # Define the max allowed resources for the pod
+  maxAllowed: {}
+  # cpu: 200m
+  # memory: 100Mi
+  # Define the min allowed resources for the pod
+  minAllowed: {}
+  # cpu: 200m
+  # memory: 100Mi
+
+  # updatePolicy:
+    # Specifies minimal number of replicas which need to be alive for VPA Updater to attempt pod eviction
+    # minReplicas: 1
+    # Specifies whether recommended updates are applied when a Pod is started and whether recommended updates
+    # are applied during the life of a Pod. Possible values are "Off", "Initial", "Recreate", and "Auto".
+    # updateMode: Auto
+
+# volumeMounts are used to add custom volume mounts to deployment.
+# See example below
+volumeMounts: []
+#  - mountPath: /etc/config
+#    name: config-volume
+
+# volumes are used to add custom volumes to deployment
+# See example below
+volumes: []
+#  - configMap:
+#      name: cm-for-volume
+#    name: config-volume
+
+# Extra manifests to deploy as an array
+extraManifests: []
+  # - apiVersion: v1
+  #   kind: ConfigMap
+  #   metadata:
+  #   labels:
+  #     name: prometheus-extra
+  #   data:
+  #     extra-data: "value"
+
+## Containers allows injecting additional containers.
+containers: []
+  # - name: crd-init
+  #   image: kiwigrid/k8s-sidecar:latest
+
+## InitContainers allows injecting additional initContainers.
+initContainers: []
+  # - name: crd-sidecar
+  #   image: kiwigrid/k8s-sidecar:latest
+
+## Settings for startup, liveness and readiness probes
+## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/
+##
+
+## Startup probe can optionally be enabled.
+##
+startupProbe:
+  enabled: false
+  failureThreshold: 3
+  httpGet:
+    httpHeaders: []
+    scheme: http
+  initialDelaySeconds: 0
+  periodSeconds: 10
+  successThreshold: 1
+  timeoutSeconds: 5
+
+## Liveness probe
+##
+livenessProbe:
+  failureThreshold: 3
+  httpGet:
+    httpHeaders: []
+    scheme: http
+  initialDelaySeconds: 5
+  periodSeconds: 10
+  successThreshold: 1
+  timeoutSeconds: 5
+
+## Readiness probe
+##
+readinessProbe:
+  failureThreshold: 3
+  httpGet:
+    httpHeaders: []
+    scheme: http
+  initialDelaySeconds: 5
+  periodSeconds: 10
+  successThreshold: 1
+  timeoutSeconds: 5
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/.helmignore b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/.helmignore
new file mode 100644
index 0000000000..f0c1319444
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/.helmignore
@@ -0,0 +1,21 @@
+# Patterns to ignore when building packages.
+# This supports shell glob matching, relative path matching, and
+# negation (prefixed with !). Only one pattern per line.
+.DS_Store
+# Common VCS dirs
+.git/
+.gitignore
+.bzr/
+.bzrignore
+.hg/
+.hgignore
+.svn/
+# Common backup files
+*.swp
+*.bak
+*.tmp
+*~
+# Various IDEs
+.project
+.idea/
+*.tmproj
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/Chart.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/Chart.yaml
new file mode 100644
index 0000000000..7e3399e62c
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/Chart.yaml
@@ -0,0 +1,25 @@
+annotations:
+  artifacthub.io/license: Apache-2.0
+  artifacthub.io/links: |
+    - name: Chart Source
+      url: https://github.com/prometheus-community/helm-charts
+apiVersion: v2
+appVersion: 1.8.2
+description: A Helm chart for prometheus node-exporter
+home: https://github.com/prometheus/node_exporter/
+keywords:
+- node-exporter
+- prometheus
+- exporter
+maintainers:
+- email: gianrubio@gmail.com
+  name: gianrubio
+- email: zanhsieh@gmail.com
+  name: zanhsieh
+- email: rootsandtrees@posteo.de
+  name: zeritti
+name: prometheus-node-exporter
+sources:
+- https://github.com/prometheus/node_exporter/
+type: application
+version: 4.43.1
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/README.md b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/README.md
new file mode 100644
index 0000000000..ef83844102
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/README.md
@@ -0,0 +1,96 @@
+# Prometheus Node Exporter
+
+Prometheus exporter for hardware and OS metrics exposed by *NIX kernels, written in Go with pluggable metric collectors.
+
+This chart bootstraps a Prometheus [Node Exporter](http://github.com/prometheus/node_exporter) daemonset on a [Kubernetes](http://kubernetes.io) cluster using the [Helm](https://helm.sh) package manager.
+
+## Get Repository Info
+<!-- textlint-disable terminology -->
+```console
+helm repo add prometheus-community https://prometheus-community.github.io/helm-charts
+helm repo update
+```
+
+_See [helm repo](https://helm.sh/docs/helm/helm_repo/) for command documentation._
+<!-- textlint-enable -->
+## Install Chart
+
+```console
+helm install [RELEASE_NAME] prometheus-community/prometheus-node-exporter
+```
+
+_See [configuration](#configuring) below._
+
+_See [helm install](https://helm.sh/docs/helm/helm_install/) for command documentation._
+
+## Uninstall Chart
+
+```console
+helm uninstall [RELEASE_NAME]
+```
+
+This removes all the Kubernetes components associated with the chart and deletes the release.
+
+_See [helm uninstall](https://helm.sh/docs/helm/helm_uninstall/) for command documentation._
+
+## Upgrading Chart
+
+```console
+helm upgrade [RELEASE_NAME] prometheus-community/prometheus-node-exporter --install
+```
+
+_See [helm upgrade](https://helm.sh/docs/helm/helm_upgrade/) for command documentation._
+
+### 3.x to 4.x
+
+Starting from version 4.0.0, the `node exporter` chart is using the [Kubernetes recommended labels](https://kubernetes.io/docs/concepts/overview/working-with-objects/common-labels/). Therefore you have to delete the daemonset before you upgrade.
+
+```console
+kubectl delete daemonset -l app=prometheus-node-exporter
+helm upgrade -i prometheus-node-exporter prometheus-community/prometheus-node-exporter
+```
+
+If you use your own custom [ServiceMonitor](https://github.com/prometheus-operator/prometheus-operator/blob/main/Documentation/api.md#servicemonitor) or [PodMonitor](https://github.com/prometheus-operator/prometheus-operator/blob/main/Documentation/api.md#podmonitor), please ensure to upgrade their `selector` fields accordingly to the new labels.
+
+### From 2.x to 3.x
+
+Change the following:
+
+```yaml
+hostRootFsMount: true
+```
+
+to:
+
+```yaml
+hostRootFsMount:
+  enabled: true
+  mountPropagation: HostToContainer
+```
+
+## Configuring
+
+See [Customizing the Chart Before Installing](https://helm.sh/docs/intro/using_helm/#customizing-the-chart-before-installing). To see all configurable options with detailed comments, visit the chart's [values.yaml](./values.yaml), or run these configuration commands:
+
+```console
+helm show values prometheus-community/prometheus-node-exporter
+```
+
+### kube-rbac-proxy
+
+You can enable `prometheus-node-exporter` endpoint protection using `kube-rbac-proxy`. By setting `kubeRBACProxy.enabled: true`, this chart will deploy a RBAC proxy container protecting the node-exporter endpoint.
+To authorize access, authenticate your requests (via a `ServiceAccount` for example) with a `ClusterRole` attached such as:
+
+```yaml
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  name: prometheus-node-exporter-read
+rules:
+  - apiGroups: [ "" ]
+    resources: ["services/node-exporter-prometheus-node-exporter"]
+    verbs:
+      - get
+```
+
+See [kube-rbac-proxy examples](https://github.com/brancz/kube-rbac-proxy/tree/master/examples/resource-attributes) for more details.
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/NOTES.txt b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/NOTES.txt
new file mode 100644
index 0000000000..db8584def8
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/NOTES.txt
@@ -0,0 +1,29 @@
+1. Get the application URL by running these commands:
+{{- if contains "NodePort" .Values.service.type }}
+  export NODE_PORT=$(kubectl get --namespace {{ template "prometheus-node-exporter.namespace" . }} -o jsonpath="{.spec.ports[0].nodePort}" services {{ template "prometheus-node-exporter.fullname" . }})
+  export NODE_IP=$(kubectl get nodes --namespace {{ template "prometheus-node-exporter.namespace" . }} -o jsonpath="{.items[0].status.addresses[0].address}")
+  echo http://$NODE_IP:$NODE_PORT
+{{- else if contains "LoadBalancer" .Values.service.type }}
+     NOTE: It may take a few minutes for the LoadBalancer IP to be available.
+           You can watch the status of by running 'kubectl get svc -w {{ template "prometheus-node-exporter.fullname" . }}'
+  export SERVICE_IP=$(kubectl get svc --namespace {{ template "prometheus-node-exporter.namespace" . }} {{ template "prometheus-node-exporter.fullname" . }} -o jsonpath='{.status.loadBalancer.ingress[0].ip}')
+  echo http://$SERVICE_IP:{{ .Values.service.port }}
+{{- else if contains "ClusterIP" .Values.service.type }}
+  export POD_NAME=$(kubectl get pods --namespace {{ template "prometheus-node-exporter.namespace" . }} -l "app.kubernetes.io/name={{ template "prometheus-node-exporter.name" . }},app.kubernetes.io/instance={{ .Release.Name }}" -o jsonpath="{.items[0].metadata.name}")
+  echo "Visit http://127.0.0.1:9100 to use your application"
+  kubectl port-forward --namespace {{ template "prometheus-node-exporter.namespace" . }} $POD_NAME 9100
+{{- end }}
+
+{{- if .Values.kubeRBACProxy.enabled}}
+
+kube-rbac-proxy endpoint protections is enabled:
+- Metrics endpoints is now HTTPS
+- Ensure that the client authenticates the requests (e.g. via service account) with the following role permissions:
+```
+rules:
+  - apiGroups: [ "" ]
+    resources: ["services/{{ template "prometheus-node-exporter.fullname" . }}"]
+    verbs:
+      - get
+```
+{{- end }}
\ No newline at end of file
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/_helpers.tpl b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/_helpers.tpl
new file mode 100644
index 0000000000..890c487a8f
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/_helpers.tpl
@@ -0,0 +1,237 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Expand the name of the chart.
+*/}}
+{{- define "prometheus-node-exporter.name" -}}
+{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{/*
+Create a default fully qualified app name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+If release name contains chart name it will be used as a full name.
+*/}}
+{{- define "prometheus-node-exporter.fullname" -}}
+{{- if .Values.fullnameOverride }}
+{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" }}
+{{- else }}
+{{- $name := default .Chart.Name .Values.nameOverride }}
+{{- if contains $name .Release.Name }}
+{{- .Release.Name | trunc 63 | trimSuffix "-" }}
+{{- else }}
+{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" }}
+{{- end }}
+{{- end }}
+{{- end }}
+
+{{/*
+Create chart name and version as used by the chart label.
+*/}}
+{{- define "prometheus-node-exporter.chart" -}}
+{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{/*
+Common labels
+*/}}
+{{- define "prometheus-node-exporter.labels" -}}
+helm.sh/chart: {{ include "prometheus-node-exporter.chart" . }}
+app.kubernetes.io/managed-by: {{ .Release.Service }}
+app.kubernetes.io/component: metrics
+app.kubernetes.io/part-of: {{ include "prometheus-node-exporter.name" . }}
+{{ include "prometheus-node-exporter.selectorLabels" . }}
+{{- with .Chart.AppVersion }}
+app.kubernetes.io/version: {{ . | quote }}
+{{- end }}
+{{- with .Values.commonLabels }}
+{{ tpl (toYaml .) $ }}
+{{- end }}
+{{- if .Values.releaseLabel }}
+release: {{ .Release.Name }}
+{{- end }}
+{{- end }}
+
+{{/*
+Selector labels
+*/}}
+{{- define "prometheus-node-exporter.selectorLabels" -}}
+app.kubernetes.io/name: {{ include "prometheus-node-exporter.name" . }}
+app.kubernetes.io/instance: {{ .Release.Name }}
+{{- end }}
+
+
+{{/*
+Create the name of the service account to use
+*/}}
+{{- define "prometheus-node-exporter.serviceAccountName" -}}
+{{- if .Values.serviceAccount.create }}
+{{- default (include "prometheus-node-exporter.fullname" .) .Values.serviceAccount.name }}
+{{- else }}
+{{- default "default" .Values.serviceAccount.name }}
+{{- end }}
+{{- end }}
+
+{{/*
+The image to use
+*/}}
+{{- define "prometheus-node-exporter.image" -}}
+{{- if .Values.image.sha }}
+{{- fail "image.sha forbidden. Use image.digest instead" }}
+{{- else if .Values.image.digest }}
+{{- if .Values.global.imageRegistry }}
+{{- printf "%s/%s:%s@%s" .Values.global.imageRegistry .Values.image.repository (default (printf "v%s" .Chart.AppVersion) .Values.image.tag) .Values.image.digest }}
+{{- else }}
+{{- printf "%s/%s:%s@%s" .Values.image.registry .Values.image.repository (default (printf "v%s" .Chart.AppVersion) .Values.image.tag) .Values.image.digest }}
+{{- end }}
+{{- else }}
+{{- if .Values.global.imageRegistry }}
+{{- printf "%s/%s:%s" .Values.global.imageRegistry .Values.image.repository (default (printf "v%s" .Chart.AppVersion) .Values.image.tag) }}
+{{- else }}
+{{- printf "%s/%s:%s" .Values.image.registry .Values.image.repository (default (printf "v%s" .Chart.AppVersion) .Values.image.tag) }}
+{{- end }}
+{{- end }}
+{{- end }}
+
+{{/*
+Allow the release namespace to be overridden for multi-namespace deployments in combined charts
+*/}}
+{{- define "prometheus-node-exporter.namespace" -}}
+{{- if .Values.namespaceOverride }}
+{{- .Values.namespaceOverride }}
+{{- else }}
+{{- .Release.Namespace }}
+{{- end }}
+{{- end }}
+
+{{/*
+Create the namespace name of the service monitor
+*/}}
+{{- define "prometheus-node-exporter.monitor-namespace" -}}
+{{- if .Values.namespaceOverride }}
+{{- .Values.namespaceOverride }}
+{{- else }}
+{{- if .Values.prometheus.monitor.namespace }}
+{{- .Values.prometheus.monitor.namespace }}
+{{- else }}
+{{- .Release.Namespace }}
+{{- end }}
+{{- end }}
+{{- end }}
+
+{{/* Sets default scrape limits for servicemonitor */}}
+{{- define "servicemonitor.scrapeLimits" -}}
+{{- with .sampleLimit }}
+sampleLimit: {{ . }}
+{{- end }}
+{{- with .targetLimit }}
+targetLimit: {{ . }}
+{{- end }}
+{{- with .labelLimit }}
+labelLimit: {{ . }}
+{{- end }}
+{{- with .labelNameLengthLimit }}
+labelNameLengthLimit: {{ . }}
+{{- end }}
+{{- with .labelValueLengthLimit }}
+labelValueLengthLimit: {{ . }}
+{{- end }}
+{{- end }}
+
+{{/*
+Formats imagePullSecrets. Input is (dict "Values" .Values "imagePullSecrets" .{specific imagePullSecrets})
+*/}}
+{{- define "prometheus-node-exporter.imagePullSecrets" -}}
+{{- range (concat .Values.global.imagePullSecrets .imagePullSecrets) }}
+  {{- if eq (typeOf .) "map[string]interface {}" }}
+- {{ toYaml . | trim }}
+  {{- else }}
+- name: {{ . }}
+  {{- end }}
+{{- end }}
+{{- end -}}
+
+{{/*
+Create the namespace name of the pod monitor
+*/}}
+{{- define "prometheus-node-exporter.podmonitor-namespace" -}}
+{{- if .Values.namespaceOverride }}
+{{- .Values.namespaceOverride }}
+{{- else }}
+{{- if .Values.prometheus.podMonitor.namespace }}
+{{- .Values.prometheus.podMonitor.namespace }}
+{{- else }}
+{{- .Release.Namespace }}
+{{- end }}
+{{- end }}
+{{- end }}
+
+{{/* Sets default scrape limits for podmonitor */}}
+{{- define "podmonitor.scrapeLimits" -}}
+{{- with .sampleLimit }}
+sampleLimit: {{ . }}
+{{- end }}
+{{- with .targetLimit }}
+targetLimit: {{ . }}
+{{- end }}
+{{- with .labelLimit }}
+labelLimit: {{ . }}
+{{- end }}
+{{- with .labelNameLengthLimit }}
+labelNameLengthLimit: {{ . }}
+{{- end }}
+{{- with .labelValueLengthLimit }}
+labelValueLengthLimit: {{ . }}
+{{- end }}
+{{- end }}
+
+{{/* Sets sidecar volumeMounts */}}
+{{- define "prometheus-node-exporter.sidecarVolumeMounts" -}}
+{{- range $_, $mount := $.Values.sidecarVolumeMount }}
+- name: {{ $mount.name }}
+  mountPath: {{ $mount.mountPath }}
+  readOnly: {{ $mount.readOnly }}
+{{- end }}
+{{- range $_, $mount := $.Values.sidecarHostVolumeMounts }}
+- name: {{ $mount.name }}
+  mountPath: {{ $mount.mountPath }}
+  readOnly: {{ $mount.readOnly }}
+{{- if $mount.mountPropagation }}
+  mountPropagation: {{ $mount.mountPropagation }}
+{{- end }}
+{{- end }}
+{{- end }}
+
+{{/*
+The default node affinity to exclude 
+- AWS Fargate 
+- Azure virtual nodes
+*/}}
+{{- define "prometheus-node-exporter.defaultAffinity" -}}
+nodeAffinity:
+  requiredDuringSchedulingIgnoredDuringExecution:
+    nodeSelectorTerms:
+    - matchExpressions:
+      - key: eks.amazonaws.com/compute-type
+        operator: NotIn
+        values:
+        - fargate
+      - key: type
+        operator: NotIn
+        values:
+        - virtual-kubelet
+{{- end -}}
+{{- define "prometheus-node-exporter.mergedAffinities" -}}
+{{- $defaultAffinity := include "prometheus-node-exporter.defaultAffinity" . | fromYaml -}}
+{{- with .Values.affinity -}}
+  {{- if .nodeAffinity -}}
+    {{- $_ := set $defaultAffinity "nodeAffinity" (mergeOverwrite $defaultAffinity.nodeAffinity .nodeAffinity) -}}
+  {{- end -}}
+  {{- if .podAffinity -}}
+    {{- $_ := set $defaultAffinity "podAffinity" .podAffinity -}}
+  {{- end -}}
+  {{- if .podAntiAffinity -}}
+    {{- $_ := set $defaultAffinity "podAntiAffinity" .podAntiAffinity -}}
+  {{- end -}}
+{{- end -}}
+{{- toYaml $defaultAffinity -}}
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/clusterrole.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/clusterrole.yaml
new file mode 100644
index 0000000000..c256dba73d
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/clusterrole.yaml
@@ -0,0 +1,19 @@
+{{- if and (eq .Values.rbac.create true) (eq .Values.kubeRBACProxy.enabled true) -}}
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  name: {{ include "prometheus-node-exporter.fullname" . }}
+  labels:
+    {{- include "prometheus-node-exporter.labels" . | nindent 4 }}
+rules:
+  {{-  if $.Values.kubeRBACProxy.enabled  }}
+  - apiGroups: [ "authentication.k8s.io" ]
+    resources:
+      - tokenreviews
+    verbs: [ "create" ]
+  - apiGroups: [ "authorization.k8s.io" ]
+    resources:
+      - subjectaccessreviews
+    verbs: [ "create" ]
+  {{- end }}
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/clusterrolebinding.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/clusterrolebinding.yaml
new file mode 100644
index 0000000000..653305ad9e
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/clusterrolebinding.yaml
@@ -0,0 +1,20 @@
+{{- if and (eq .Values.rbac.create true) (eq .Values.kubeRBACProxy.enabled true) -}}
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    {{- include "prometheus-node-exporter.labels" . | nindent 4 }}
+  name: {{ template "prometheus-node-exporter.fullname" . }}
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+{{- if .Values.rbac.useExistingRole }}
+  name: {{ .Values.rbac.useExistingRole }}
+{{- else }}
+  name: {{ template "prometheus-node-exporter.fullname" . }}
+{{- end }}
+subjects:
+- kind: ServiceAccount
+  name: {{ template "prometheus-node-exporter.serviceAccountName" . }}
+  namespace: {{ template "prometheus-node-exporter.namespace" . }}
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/daemonset.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/daemonset.yaml
new file mode 100644
index 0000000000..e3ac2f1843
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/daemonset.yaml
@@ -0,0 +1,348 @@
+apiVersion: apps/v1
+kind: DaemonSet
+metadata:
+  name: {{ include "prometheus-node-exporter.fullname" . }}
+  namespace: {{ include "prometheus-node-exporter.namespace" . }}
+  labels:
+    {{- include "prometheus-node-exporter.labels" . | nindent 4 }}
+  {{- with .Values.daemonsetAnnotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+spec:
+  selector:
+    matchLabels:
+      {{- include "prometheus-node-exporter.selectorLabels" . | nindent 6 }}
+  revisionHistoryLimit: {{ .Values.revisionHistoryLimit }}
+  {{- with .Values.updateStrategy }}
+  updateStrategy:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  template:
+    metadata:
+      {{- with .Values.podAnnotations }}
+      annotations:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      labels:
+        {{- include "prometheus-node-exporter.labels" . | nindent 8 }}
+        {{- with .Values.podLabels }}
+        {{- tpl (toYaml .) $ | nindent 8 }}
+        {{- end }}
+    spec:
+      automountServiceAccountToken: {{ ternary true false (or .Values.serviceAccount.automountServiceAccountToken .Values.kubeRBACProxy.enabled) }}
+      {{- with .Values.securityContext }}
+      securityContext:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.priorityClassName }}
+      priorityClassName: {{ . }}
+      {{- end }}
+      {{- with .Values.extraInitContainers }}
+      initContainers:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      serviceAccountName: {{ include "prometheus-node-exporter.serviceAccountName" . }}
+      {{- with .Values.terminationGracePeriodSeconds }}
+      terminationGracePeriodSeconds: {{ . }}
+      {{- end }}
+      containers:
+        {{- $servicePort := ternary .Values.kubeRBACProxy.port .Values.service.port .Values.kubeRBACProxy.enabled }}
+        - name: node-exporter
+          image: {{ include "prometheus-node-exporter.image" . }}
+          imagePullPolicy: {{ .Values.image.pullPolicy }}
+          args:
+            - --path.procfs=/host/proc
+            - --path.sysfs=/host/sys
+            {{- if .Values.hostRootFsMount.enabled }}
+            - --path.rootfs=/host/root
+            {{- if semverCompare ">=1.4.0-0" (coalesce .Values.version .Values.image.tag .Chart.AppVersion) }}
+            - --path.udev.data=/host/root/run/udev/data
+            {{- end }}
+            {{- end }}
+            - --web.listen-address=[$(HOST_IP)]:{{ $servicePort }}
+            {{- with .Values.extraArgs }}
+            {{- toYaml . | nindent 12 }}
+            {{- end }}
+          {{- with .Values.containerSecurityContext }}
+          securityContext:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          env:
+            - name: HOST_IP
+              {{- if .Values.kubeRBACProxy.enabled }}
+              value: 127.0.0.1
+              {{- else if .Values.service.listenOnAllInterfaces }}
+              value: 0.0.0.0
+              {{- else }}
+              valueFrom:
+                fieldRef:
+                  apiVersion: v1
+                  fieldPath: status.hostIP
+              {{- end }}
+            {{- range $key, $value := .Values.env }}
+            - name: {{ $key }}
+              value: {{ $value | quote }}
+            {{- end }}
+          {{- if eq .Values.kubeRBACProxy.enabled false }}
+          ports:
+            - name: {{ .Values.service.portName }}
+              containerPort: {{ .Values.service.port }}
+              protocol: TCP
+          {{- end }}
+          livenessProbe:
+            failureThreshold: {{ .Values.livenessProbe.failureThreshold }}
+            httpGet:
+              {{- if .Values.kubeRBACProxy.enabled }}
+              host: 127.0.0.1
+              {{- end }}
+              httpHeaders:
+              {{- range $_, $header := .Values.livenessProbe.httpGet.httpHeaders }}
+              - name: {{ $header.name }}
+                value: {{ $header.value }}
+              {{- end }}
+              path: /
+              port: {{ $servicePort }}
+              scheme: {{ upper .Values.livenessProbe.httpGet.scheme }}
+            initialDelaySeconds: {{ .Values.livenessProbe.initialDelaySeconds }}
+            periodSeconds: {{ .Values.livenessProbe.periodSeconds }}
+            successThreshold: {{ .Values.livenessProbe.successThreshold }}
+            timeoutSeconds: {{ .Values.livenessProbe.timeoutSeconds }}
+          readinessProbe:
+            failureThreshold: {{ .Values.readinessProbe.failureThreshold }}
+            httpGet:
+              {{- if .Values.kubeRBACProxy.enabled }}
+              host: 127.0.0.1
+              {{- end }}
+              httpHeaders:
+              {{- range $_, $header := .Values.readinessProbe.httpGet.httpHeaders }}
+              - name: {{ $header.name }}
+                value: {{ $header.value }}
+              {{- end }}
+              path: /
+              port: {{ $servicePort }}
+              scheme: {{ upper .Values.readinessProbe.httpGet.scheme }}
+            initialDelaySeconds: {{ .Values.readinessProbe.initialDelaySeconds }}
+            periodSeconds: {{ .Values.readinessProbe.periodSeconds }}
+            successThreshold: {{ .Values.readinessProbe.successThreshold }}
+            timeoutSeconds: {{ .Values.readinessProbe.timeoutSeconds }}
+          {{- with .Values.resources }}
+          resources:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          {{- if .Values.terminationMessageParams.enabled }}
+          {{- with .Values.terminationMessageParams }}
+          terminationMessagePath: {{ .terminationMessagePath }}
+          terminationMessagePolicy: {{ .terminationMessagePolicy }}
+          {{- end }}
+          {{- end }}
+          volumeMounts:
+            - name: proc
+              mountPath: /host/proc
+              {{- with .Values.hostProcFsMount.mountPropagation }}
+              mountPropagation: {{ . }}
+              {{- end }}
+              readOnly:  true
+            - name: sys
+              mountPath: /host/sys
+              {{- with .Values.hostSysFsMount.mountPropagation }}
+              mountPropagation: {{ . }}
+              {{- end }}
+              readOnly: true
+            {{- if .Values.hostRootFsMount.enabled }}
+            - name: root
+              mountPath: /host/root
+              {{- with .Values.hostRootFsMount.mountPropagation }}
+              mountPropagation: {{ . }}
+              {{- end }}
+              readOnly: true
+            {{- end }}
+            {{- range $_, $mount := .Values.extraHostVolumeMounts }}
+            - name: {{ $mount.name }}
+              mountPath: {{ $mount.mountPath }}
+              readOnly: {{ $mount.readOnly }}
+              {{- with $mount.mountPropagation }}
+              mountPropagation: {{ . }}
+              {{- end }}
+            {{- end }}
+            {{- range $_, $mount := .Values.sidecarVolumeMount }}
+            - name: {{ $mount.name }}
+              mountPath: {{ $mount.mountPath }}
+              readOnly: true
+            {{- end }}
+            {{- range $_, $mount := .Values.configmaps }}
+            - name: {{ $mount.name }}
+              mountPath: {{ $mount.mountPath }}
+            {{- end }}
+            {{- range $_, $mount := .Values.secrets }}
+            - name: {{ .name }}
+              mountPath: {{ .mountPath }}
+            {{- end }}
+            {{- with .Values.extraVolumeMounts }}
+              {{- toYaml . | nindent 12 }}
+            {{- end }}
+        {{- range .Values.sidecars }}
+          {{- $overwrites := dict "volumeMounts" (concat (include "prometheus-node-exporter.sidecarVolumeMounts" $ | fromYamlArray) (.volumeMounts | default list) | default list) }}
+          {{- $defaults := dict "image" (include "prometheus-node-exporter.image" $) "securityContext" $.Values.containerSecurityContext "imagePullPolicy" $.Values.image.pullPolicy }}
+        - {{- toYaml (merge $overwrites . $defaults) | nindent 10 }}
+        {{- end }}
+        {{-  if .Values.kubeRBACProxy.enabled  }}
+        - name: kube-rbac-proxy
+          args:
+            {{-  if .Values.kubeRBACProxy.extraArgs  }}
+            {{- .Values.kubeRBACProxy.extraArgs | toYaml | nindent 12 }}
+            {{-  end  }}
+            - --secure-listen-address=:{{ .Values.service.port}}
+            - --upstream=http://127.0.0.1:{{ $servicePort }}/
+            - --proxy-endpoints-port={{ .Values.kubeRBACProxy.proxyEndpointsPort }}
+            - --config-file=/etc/kube-rbac-proxy-config/config-file.yaml
+            {{- if and .Values.kubeRBACProxy.tls.enabled .Values.tlsSecret.enabled }}
+            - --tls-cert-file=/tls/private/{{ .Values.tlsSecret.certItem }}
+            - --tls-private-key-file=/tls/private/{{ .Values.tlsSecret.keyItem }}
+            {{- if and .Values.kubeRBACProxy.tls.tlsClientAuth .Values.tlsSecret.caItem }}
+            - --client-ca-file=/tls/private/{{ .Values.tlsSecret.caItem }}
+            {{- end }}
+            {{- end }}
+          volumeMounts:
+            - name: kube-rbac-proxy-config
+              mountPath: /etc/kube-rbac-proxy-config
+            {{- if and .Values.kubeRBACProxy.tls.enabled .Values.tlsSecret.enabled }}
+            - name: {{ tpl .Values.tlsSecret.volumeName . | quote }}
+              mountPath: /tls/private
+              readOnly: true
+            {{- end }}
+            {{- with .Values.kubeRBACProxy.extraVolumeMounts }}
+            {{- toYaml . | nindent 12 }}
+            {{- end }}
+          imagePullPolicy: {{ .Values.kubeRBACProxy.image.pullPolicy }}
+          {{- if .Values.kubeRBACProxy.image.sha }}
+          image: "{{ .Values.global.imageRegistry | default .Values.kubeRBACProxy.image.registry}}/{{ .Values.kubeRBACProxy.image.repository }}:{{ .Values.kubeRBACProxy.image.tag }}@sha256:{{ .Values.kubeRBACProxy.image.sha }}"
+          {{- else }}
+          image: "{{ .Values.global.imageRegistry | default .Values.kubeRBACProxy.image.registry}}/{{ .Values.kubeRBACProxy.image.repository }}:{{ .Values.kubeRBACProxy.image.tag }}"
+          {{- end }}
+          ports:
+            - containerPort: {{ .Values.service.port}}
+              name: {{ .Values.kubeRBACProxy.portName }}
+              {{- if .Values.kubeRBACProxy.enableHostPort }}
+              hostPort: {{ .Values.service.port }}
+              {{- end }}
+            - containerPort: {{ .Values.kubeRBACProxy.proxyEndpointsPort }}
+              {{- if .Values.kubeRBACProxy.enableProxyEndpointsHostPort }}
+              hostPort: {{ .Values.kubeRBACProxy.proxyEndpointsPort }}
+              {{- end }}
+              name: "http-healthz"
+          readinessProbe:
+            httpGet:
+              scheme: HTTPS
+              port: {{ .Values.kubeRBACProxy.proxyEndpointsPort }}
+              path: healthz
+            initialDelaySeconds: 5
+            timeoutSeconds: 5
+          {{- if .Values.kubeRBACProxy.resources }}
+          resources:
+          {{- toYaml .Values.kubeRBACProxy.resources | nindent 12 }}
+          {{- end }}
+          {{- if .Values.terminationMessageParams.enabled }}
+          {{- with .Values.terminationMessageParams }}
+          terminationMessagePath: {{ .terminationMessagePath }}
+          terminationMessagePolicy: {{ .terminationMessagePolicy }}
+          {{- end }}
+          {{- end }}
+          {{- with .Values.kubeRBACProxy.env }}
+          env:
+            {{- range $key, $value := $.Values.kubeRBACProxy.env }}
+            - name: {{ $key }}
+              value: {{ $value | quote }}
+            {{- end }}
+          {{- end }}
+          {{- if .Values.kubeRBACProxy.containerSecurityContext }}
+          securityContext:
+          {{ toYaml .Values.kubeRBACProxy.containerSecurityContext | nindent 12 }}
+        {{- end }}
+        {{- end }}
+      {{- if or .Values.imagePullSecrets .Values.global.imagePullSecrets }}
+      imagePullSecrets:
+        {{- include "prometheus-node-exporter.imagePullSecrets" (dict "Values" .Values "imagePullSecrets" .Values.imagePullSecrets) | indent 8 }}
+      {{- end }}
+      hostNetwork: {{ .Values.hostNetwork }}
+      hostPID: {{ .Values.hostPID }}
+      hostIPC: {{ .Values.hostIPC }}
+      affinity:
+        {{- include "prometheus-node-exporter.mergedAffinities" . | nindent 8 }}
+      {{- with .Values.dnsConfig }}
+      dnsConfig:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.nodeSelector }}
+      nodeSelector:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.restartPolicy }}
+      restartPolicy: {{ . }}
+      {{- end }}
+      {{- with .Values.tolerations }}
+      tolerations:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      volumes:
+        - name: proc
+          hostPath:
+            path: /proc
+        - name: sys
+          hostPath:
+            path: /sys
+        {{- if .Values.hostRootFsMount.enabled }}
+        - name: root
+          hostPath:
+            path: /
+        {{- end }}
+        {{- range $_, $mount := .Values.extraHostVolumeMounts }}
+        - name: {{ $mount.name }}
+          hostPath:
+            path: {{ $mount.hostPath }}
+            {{- with $mount.type }}
+            type: {{ . }}
+            {{- end }}
+        {{- end }}
+        {{- range $_, $mount := .Values.sidecarVolumeMount }}
+        - name: {{ $mount.name }}
+          emptyDir:
+            medium: Memory
+        {{- end }}
+        {{- range $_, $mount := .Values.sidecarHostVolumeMounts }}
+        - name: {{ $mount.name }}
+          hostPath:
+            path: {{ $mount.hostPath }}
+        {{- end }}
+        {{- range $_, $mount := .Values.configmaps }}
+        - name: {{ $mount.name }}
+          configMap:
+            name: {{ $mount.name }}
+        {{- end }}
+        {{- range $_, $mount := .Values.secrets }}
+        - name: {{ $mount.name }}
+          secret:
+            secretName: {{ $mount.name }}
+        {{- end }}
+        {{- if .Values.kubeRBACProxy.enabled }}
+        - name: kube-rbac-proxy-config
+          configMap:
+            name: {{ template "prometheus-node-exporter.fullname" . }}-rbac-config
+        {{- end }}
+        {{- if .Values.tlsSecret.enabled }}
+        - name: {{ tpl .Values.tlsSecret.volumeName . | quote }}
+          secret:
+            secretName: {{ tpl .Values.tlsSecret.secretName . | quote }}
+            items:
+              - key: {{ required "Value tlsSecret.certItem must be set." .Values.tlsSecret.certItem | quote }}
+                path: {{ .Values.tlsSecret.certItem | quote }}
+              - key: {{ required "Value tlsSecret.keyItem must be set." .Values.tlsSecret.keyItem | quote }}
+                path: {{ .Values.tlsSecret.keyItem | quote }}
+              {{- if .Values.tlsSecret.caItem }}
+              - key: {{ .Values.tlsSecret.caItem | quote }}
+                path: {{ .Values.tlsSecret.caItem | quote }}
+              {{- end }}
+        {{- end }}
+        {{- with .Values.extraVolumes }}
+        {{- toYaml . | nindent 8 }}
+        {{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/endpoints.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/endpoints.yaml
new file mode 100644
index 0000000000..45eeb8d966
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/endpoints.yaml
@@ -0,0 +1,18 @@
+{{- if .Values.endpoints }}
+apiVersion: v1
+kind: Endpoints
+metadata:
+  name: {{ include "prometheus-node-exporter.fullname" . }}
+  namespace: {{ include "prometheus-node-exporter.namespace" . }}
+  labels:
+    {{- include "prometheus-node-exporter.labels" . | nindent 4 }}
+subsets:
+  - addresses:
+      {{- range .Values.endpoints }}
+      - ip: {{ . }}
+      {{- end }}
+    ports:
+      - name: {{ .Values.service.portName }}
+        port: 9100
+        protocol: TCP
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/extra-manifests.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/extra-manifests.yaml
new file mode 100644
index 0000000000..2b21b71062
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/extra-manifests.yaml
@@ -0,0 +1,4 @@
+{{ range .Values.extraManifests }}
+---
+{{ tpl . $ }}
+{{ end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/networkpolicy.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/networkpolicy.yaml
new file mode 100644
index 0000000000..ee40902102
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/networkpolicy.yaml
@@ -0,0 +1,27 @@
+{{- if .Values.networkPolicy.enabled }}
+apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
+metadata:
+  name: {{ include "prometheus-node-exporter.fullname" . }}
+  namespace: {{ include "prometheus-node-exporter.namespace" . }}
+  labels:
+    {{- include "prometheus-node-exporter.labels" $ | nindent 4 }}
+  {{- with .Values.service.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+spec:
+  ingress:
+    {{- if .Values.networkPolicy.ingress }}
+      {{- toYaml .Values.networkPolicy.ingress | nindent 4 }}
+    {{- else }}
+    - ports:
+      - port: {{ .Values.service.port }}
+    {{- end }}
+  policyTypes:
+    - Egress
+    - Ingress
+  podSelector:
+    matchLabels:
+      {{- include "prometheus-node-exporter.selectorLabels" . | nindent 6 }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/podmonitor.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/podmonitor.yaml
new file mode 100644
index 0000000000..f88da6a34e
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/podmonitor.yaml
@@ -0,0 +1,91 @@
+{{- if .Values.prometheus.podMonitor.enabled }}
+apiVersion: {{ .Values.prometheus.podMonitor.apiVersion | default "monitoring.coreos.com/v1" }}
+kind: PodMonitor
+metadata:
+  name: {{ include "prometheus-node-exporter.fullname" . }}
+  namespace: {{ include "prometheus-node-exporter.podmonitor-namespace" . }}
+  labels:
+    {{- include "prometheus-node-exporter.labels" . | nindent 4 }}
+    {{- with .Values.prometheus.podMonitor.additionalLabels }}
+    {{- toYaml . | nindent 4 }}
+    {{- end }}
+spec:
+  jobLabel: {{ default "app.kubernetes.io/name" .Values.prometheus.podMonitor.jobLabel }}
+  {{- include "podmonitor.scrapeLimits" .Values.prometheus.podMonitor | nindent 2 }}
+  selector:
+    matchLabels:
+    {{- with .Values.prometheus.podMonitor.selectorOverride }}
+      {{- toYaml . | nindent 6 }}
+    {{- else }}
+      {{- include "prometheus-node-exporter.selectorLabels" . | nindent 6 }}
+    {{- end }}
+  namespaceSelector:
+    matchNames:
+      - {{ include "prometheus-node-exporter.namespace" . }}
+  {{- with .Values.prometheus.podMonitor.attachMetadata }}
+  attachMetadata:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  {{- with .Values.prometheus.podMonitor.podTargetLabels }}
+  podTargetLabels:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  podMetricsEndpoints:
+    - port: {{ .Values.service.portName }}
+      {{- with .Values.prometheus.podMonitor.scheme }}
+      scheme: {{ . }}
+      {{- end }}
+      {{- with .Values.prometheus.podMonitor.path }}
+      path: {{ . }}
+      {{- end }}
+      {{- with .Values.prometheus.podMonitor.basicAuth }}
+      basicAuth:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.prometheus.podMonitor.bearerTokenSecret }}
+      bearerTokenSecret:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.prometheus.podMonitor.tlsConfig }}
+      tlsConfig:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.prometheus.podMonitor.authorization }}
+      authorization:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.prometheus.podMonitor.oauth2 }}
+      oauth2:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.prometheus.podMonitor.proxyUrl }}
+      proxyUrl: {{ . }}
+      {{- end }}
+      {{- with .Values.prometheus.podMonitor.interval }}
+      interval: {{ . }}
+      {{- end }}
+      {{- with .Values.prometheus.podMonitor.honorTimestamps }}
+      honorTimestamps: {{ . }}
+      {{- end }}
+      {{- with .Values.prometheus.podMonitor.honorLabels }}
+      honorLabels: {{ . }}
+      {{- end }}
+      {{- with .Values.prometheus.podMonitor.scrapeTimeout }}
+      scrapeTimeout: {{ . }}
+      {{- end }}
+      {{- with .Values.prometheus.podMonitor.relabelings }}
+      relabelings:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.prometheus.podMonitor.metricRelabelings }}
+      metricRelabelings:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      enableHttp2: {{ default false .Values.prometheus.podMonitor.enableHttp2 }}
+      filterRunning: {{ default true .Values.prometheus.podMonitor.filterRunning }}
+      followRedirects: {{ default false .Values.prometheus.podMonitor.followRedirects }}
+      {{- with .Values.prometheus.podMonitor.params }}
+      params:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/psp-clusterrole.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/psp-clusterrole.yaml
new file mode 100644
index 0000000000..8957317243
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/psp-clusterrole.yaml
@@ -0,0 +1,14 @@
+{{- if and .Values.rbac.create .Values.rbac.pspEnabled (.Capabilities.APIVersions.Has "policy/v1beta1/PodSecurityPolicy") }}
+kind: ClusterRole
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  name: psp-{{ include "prometheus-node-exporter.fullname" . }}
+  labels: 
+    {{- include "prometheus-node-exporter.labels" . | nindent 4 }}
+rules:
+- apiGroups: ['extensions']
+  resources: ['podsecuritypolicies']
+  verbs:     ['use']
+  resourceNames:
+    - {{ include "prometheus-node-exporter.fullname" . }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/psp-clusterrolebinding.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/psp-clusterrolebinding.yaml
new file mode 100644
index 0000000000..333370173b
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/psp-clusterrolebinding.yaml
@@ -0,0 +1,16 @@
+{{- if and .Values.rbac.create .Values.rbac.pspEnabled (.Capabilities.APIVersions.Has "policy/v1beta1/PodSecurityPolicy") }}
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  name: psp-{{ include "prometheus-node-exporter.fullname" . }}
+  labels:
+    {{- include "prometheus-node-exporter.labels" . | nindent 4 }}
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: psp-{{ include "prometheus-node-exporter.fullname" . }}
+subjects:
+  - kind: ServiceAccount
+    name: {{ include "prometheus-node-exporter.fullname" . }}
+    namespace: {{ include "prometheus-node-exporter.namespace" . }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/psp.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/psp.yaml
new file mode 100644
index 0000000000..4896c84daa
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/psp.yaml
@@ -0,0 +1,49 @@
+{{- if and .Values.rbac.create .Values.rbac.pspEnabled (.Capabilities.APIVersions.Has "policy/v1beta1/PodSecurityPolicy") }}
+apiVersion: policy/v1beta1
+kind: PodSecurityPolicy
+metadata:
+  name: {{ include "prometheus-node-exporter.fullname" . }}
+  namespace: {{ include "prometheus-node-exporter.namespace" . }}
+  labels:
+    {{- include "prometheus-node-exporter.labels" . | nindent 4 }}
+  {{- with .Values.rbac.pspAnnotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+spec:
+  privileged: false
+  # Allow core volume types.
+  volumes:
+    - 'configMap'
+    - 'emptyDir'
+    - 'projected'
+    - 'secret'
+    - 'downwardAPI'
+    - 'persistentVolumeClaim'
+    - 'hostPath'
+  hostNetwork: true
+  hostIPC: false
+  hostPID: true
+  hostPorts:
+    - min: 0
+      max: 65535
+  runAsUser:
+    # Permits the container to run with root privileges as well.
+    rule: 'RunAsAny'
+  seLinux:
+    # This policy assumes the nodes are using AppArmor rather than SELinux.
+    rule: 'RunAsAny'
+  supplementalGroups:
+    rule: 'MustRunAs'
+    ranges:
+      # Allow adding the root group.
+      - min: 0
+        max: 65535
+  fsGroup:
+    rule: 'MustRunAs'
+    ranges:
+      # Allow adding the root group.
+      - min: 0
+        max: 65535
+  readOnlyRootFilesystem: false
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/rbac-configmap.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/rbac-configmap.yaml
new file mode 100644
index 0000000000..814e110337
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/rbac-configmap.yaml
@@ -0,0 +1,16 @@
+{{- if .Values.kubeRBACProxy.enabled}}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ template "prometheus-node-exporter.fullname" . }}-rbac-config
+  namespace: {{ include "prometheus-node-exporter.namespace" . }}
+data:
+  config-file.yaml: |+
+    authorization:
+      resourceAttributes:
+        namespace: {{ template "prometheus-node-exporter.namespace" . }}
+        apiVersion: v1
+        resource: services
+        subresource: {{ template "prometheus-node-exporter.fullname" . }}
+        name: {{ template "prometheus-node-exporter.fullname" . }}
+{{- end }}
\ No newline at end of file
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/service.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/service.yaml
new file mode 100644
index 0000000000..abaa31b7f6
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/service.yaml
@@ -0,0 +1,38 @@
+{{- if .Values.service.enabled }}
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ include "prometheus-node-exporter.fullname" . }}
+  namespace: {{ include "prometheus-node-exporter.namespace" . }}
+  labels:
+    {{- include "prometheus-node-exporter.labels" $ | nindent 4 }}
+    {{- with .Values.service.labels }}
+    {{- toYaml . | nindent 4 }}
+    {{- end }}
+  {{- with .Values.service.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+spec:
+{{- if .Values.service.ipDualStack.enabled }}
+  ipFamilies: {{ toYaml .Values.service.ipDualStack.ipFamilies | nindent 4 }}
+  ipFamilyPolicy: {{ .Values.service.ipDualStack.ipFamilyPolicy }}
+{{- end }}
+{{- if .Values.service.externalTrafficPolicy }}
+  externalTrafficPolicy: {{ .Values.service.externalTrafficPolicy }}
+{{- end }}
+  type: {{ .Values.service.type }}
+{{- if and (eq .Values.service.type "ClusterIP") .Values.service.clusterIP }}
+  clusterIP: "{{ .Values.service.clusterIP }}"
+{{- end }}
+  ports:
+    - port: {{ .Values.service.servicePort | default .Values.service.port }}
+      {{- if ( and (eq .Values.service.type "NodePort" ) (not (empty .Values.service.nodePort)) ) }}
+      nodePort: {{ .Values.service.nodePort }}
+      {{- end }}
+      targetPort: {{ .Values.service.targetPort }}
+      protocol: TCP
+      name: {{ .Values.service.portName }}
+  selector:
+    {{- include "prometheus-node-exporter.selectorLabels" . | nindent 4 }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/serviceaccount.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/serviceaccount.yaml
new file mode 100644
index 0000000000..462b0cda4b
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/serviceaccount.yaml
@@ -0,0 +1,18 @@
+{{- if and .Values.rbac.create .Values.serviceAccount.create -}}
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: {{ include "prometheus-node-exporter.serviceAccountName" . }}
+  namespace: {{ include "prometheus-node-exporter.namespace" . }}
+  labels: 
+    {{- include "prometheus-node-exporter.labels" . | nindent 4 }}
+  {{- with .Values.serviceAccount.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+automountServiceAccountToken: {{ .Values.serviceAccount.automountServiceAccountToken }}
+{{- if or .Values.serviceAccount.imagePullSecrets .Values.global.imagePullSecrets }}
+imagePullSecrets:
+  {{- include "prometheus-node-exporter.imagePullSecrets" (dict "Values" .Values "imagePullSecrets" .Values.serviceAccount.imagePullSecrets) | indent 2 }}
+{{- end }}
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/servicemonitor.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/servicemonitor.yaml
new file mode 100644
index 0000000000..96ec1af5a4
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/servicemonitor.yaml
@@ -0,0 +1,65 @@
+{{- if .Values.prometheus.monitor.enabled }}
+apiVersion: {{ .Values.prometheus.monitor.apiVersion | default "monitoring.coreos.com/v1" }}
+kind: ServiceMonitor
+metadata:
+  name: {{ include "prometheus-node-exporter.fullname" . }}
+  namespace: {{ include "prometheus-node-exporter.monitor-namespace" . }}
+  labels:
+    {{- include "prometheus-node-exporter.labels" . | nindent 4 }}
+    {{- with .Values.prometheus.monitor.additionalLabels }}
+    {{- toYaml . | nindent 4 }}
+    {{- end }}
+spec:
+  jobLabel: {{ default "app.kubernetes.io/name" .Values.prometheus.monitor.jobLabel }}
+  {{- include "servicemonitor.scrapeLimits" .Values.prometheus.monitor | nindent 2 }}
+  {{- with .Values.prometheus.monitor.podTargetLabels }}
+  podTargetLabels:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  {{- with .Values.prometheus.monitor.targetLabels }}
+  targetLabels:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  selector:
+    matchLabels:
+    {{- with .Values.prometheus.monitor.selectorOverride }}
+      {{- toYaml . | nindent 6 }}
+    {{- else }}
+      {{- include "prometheus-node-exporter.selectorLabels" . | nindent 6 }}
+    {{- end }}
+  {{- with .Values.prometheus.monitor.attachMetadata }}
+  attachMetadata:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  endpoints:
+    - port: {{ .Values.service.portName }}
+      scheme: {{ .Values.prometheus.monitor.scheme }}
+      {{- with .Values.prometheus.monitor.basicAuth }}
+      basicAuth:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.prometheus.monitor.bearerTokenFile }}
+      bearerTokenFile: {{ . }}
+      {{- end }}
+      {{- with .Values.prometheus.monitor.tlsConfig }}
+      tlsConfig:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.prometheus.monitor.proxyUrl }}
+      proxyUrl: {{ . }}
+      {{- end }}
+      {{- with .Values.prometheus.monitor.interval }}
+      interval: {{ . }}
+      {{- end }}
+      {{- with .Values.prometheus.monitor.scrapeTimeout }}
+      scrapeTimeout: {{ . }}
+      {{- end }}
+      {{- with .Values.prometheus.monitor.relabelings }}
+      relabelings:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.prometheus.monitor.metricRelabelings }}
+      metricRelabelings:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/verticalpodautoscaler.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/verticalpodautoscaler.yaml
new file mode 100644
index 0000000000..2c2705f872
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/templates/verticalpodautoscaler.yaml
@@ -0,0 +1,40 @@
+{{- if and (.Capabilities.APIVersions.Has "autoscaling.k8s.io/v1") (.Values.verticalPodAutoscaler.enabled) }}
+apiVersion: autoscaling.k8s.io/v1
+kind: VerticalPodAutoscaler
+metadata:
+  name: {{ include "prometheus-node-exporter.fullname" . }}
+  namespace: {{ include "prometheus-node-exporter.namespace" . }}
+  labels:
+    {{- include "prometheus-node-exporter.labels" . | nindent 4 }}
+spec:
+  {{- with .Values.verticalPodAutoscaler.recommenders }}
+  recommenders:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  resourcePolicy:
+    containerPolicies:
+    - containerName: node-exporter
+      {{- with .Values.verticalPodAutoscaler.controlledResources }}
+      controlledResources:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.verticalPodAutoscaler.controlledValues }}
+      controlledValues: {{ . }}
+      {{- end }}
+      {{- with .Values.verticalPodAutoscaler.maxAllowed }}
+      maxAllowed:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.verticalPodAutoscaler.minAllowed }}
+      minAllowed:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+  targetRef:
+    apiVersion: apps/v1
+    kind: DaemonSet
+    name: {{ include "prometheus-node-exporter.fullname" . }}
+  {{- with .Values.verticalPodAutoscaler.updatePolicy }}
+  updatePolicy:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/values.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/values.yaml
new file mode 100644
index 0000000000..c63448699e
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-node-exporter/values.yaml
@@ -0,0 +1,618 @@
+# Default values for prometheus-node-exporter.
+# This is a YAML-formatted file.
+# Declare variables to be passed into your templates.
+image:
+  registry: quay.io
+  repository: prometheus/node-exporter
+  # Overrides the image tag whose default is {{ printf "v%s" .Chart.AppVersion }}
+  tag: ""
+  pullPolicy: IfNotPresent
+  digest: ""
+
+imagePullSecrets: []
+# - name: "image-pull-secret"
+nameOverride: ""
+fullnameOverride: ""
+
+# Number of old history to retain to allow rollback
+# Default Kubernetes value is set to 10
+revisionHistoryLimit: 10
+
+global:
+  # To help compatibility with other charts which use global.imagePullSecrets.
+  # Allow either an array of {name: pullSecret} maps (k8s-style), or an array of strings (more common helm-style).
+  # global:
+  #   imagePullSecrets:
+  #   - name: pullSecret1
+  #   - name: pullSecret2
+  # or
+  # global:
+  #   imagePullSecrets:
+  #   - pullSecret1
+  #   - pullSecret2
+  imagePullSecrets: []
+  #
+  # Allow parent charts to override registry hostname
+  imageRegistry: ""
+
+# Configure kube-rbac-proxy. When enabled, creates a kube-rbac-proxy to protect the node-exporter http endpoint.
+# The requests are served through the same service but requests are HTTPS.
+kubeRBACProxy:
+  enabled: false
+  ## Set environment variables as name/value pairs
+  env: {}
+    # VARIABLE: value
+  image:
+    registry: quay.io
+    repository: brancz/kube-rbac-proxy
+    tag: v0.18.2
+    sha: ""
+    pullPolicy: IfNotPresent
+
+  # List of additional cli arguments to configure kube-rbac-proxy
+  # for example: --tls-cipher-suites, --log-file, etc.
+  # all the possible args can be found here: https://github.com/brancz/kube-rbac-proxy#usage
+  extraArgs: []
+
+  ## Specify security settings for a Container
+  ## Allows overrides and additional options compared to (Pod) securityContext
+  ## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container
+  containerSecurityContext: {}
+
+  # Specify the port used for the Node exporter container (upstream port)
+  port: 8100
+  # Specify the name of the container port
+  portName: http
+  # Configure a hostPort. If true, hostPort will be enabled in the container and set to service.port.
+  enableHostPort: false
+
+  # Configure Proxy Endpoints Port
+  # This is the port being probed for readiness
+  proxyEndpointsPort: 8888
+  # Configure a hostPort. If true, hostPort will be enabled in the container and set to proxyEndpointsPort.
+  enableProxyEndpointsHostPort: false
+
+  resources: {}
+    # We usually recommend not to specify default resources and to leave this as a conscious
+    # choice for the user. This also increases chances charts run on environments with little
+    # resources, such as Minikube. If you do want to specify resources, uncomment the following
+    # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
+    # limits:
+    #  cpu: 100m
+    #  memory: 64Mi
+    # requests:
+    #  cpu: 10m
+    #  memory: 32Mi
+
+  ## Additional volume mounts in the kube-rbac-proxy container
+  ## See extraVolumes below
+  extraVolumeMounts: []
+    # - name: extra-volume
+    #   mountPath: /extra
+    #   readOnly: true
+
+  ## tls enables using TLS resources from a volume on secret referred to in tlsSecret below.
+  ## When enabling tlsClientAuth, client CA certificate must be set in tlsSecret.caItem.
+  ## Ref. https://github.com/brancz/kube-rbac-proxy/issues/187
+  tls:
+    enabled: false
+    tlsClientAuth: false
+
+## tlsSecret refers to an existing secret holding TLS items: client CA certificate, private key and certificate.
+## secretName and volumeName can be templated.
+## If enabled, volume volumeName gets created on secret secretName.
+## The volume's resources will be used by kube-rbac-proxy if kubeRBACProxy.tls.enabled is set.
+tlsSecret:
+  enabled: false
+  ## Key with client CA certificate (optional)
+  caItem: ""
+  ## Key with certificate
+  certItem: tls.crt
+  ## Key with private key
+  keyItem: tls.key
+  ## Name of an existing secret
+  secretName: prometheus-node-exporter-tls
+  ## Name of the volume to be created
+  volumeName: prometheus-node-exporter-tls
+
+## Service configuration
+service:
+  ## Creating a service is enabled by default
+  enabled: true
+
+  ## Service type
+  type: ClusterIP
+  ## IP address for type ClusterIP
+  clusterIP: ""
+  ## Default service port. Sets the port of the exposed container as well (NE or kubeRBACProxy).
+  ## Use "servicePort" below if changing the service port only is desired.
+  port: 9100
+  ## Service port. Use this field if you wish to set a different service port
+  ## without changing the container port ("port" above).
+  servicePort: ""
+  ## Targeted port in the pod. Must refer to an open container port ("port" or "portName").
+  ## (IntOrString)
+  targetPort: 9100
+  ## Name of the service port. Sets the port name of the main container (NE) as well.
+  portName: metrics
+  ## Port number for service type NodePort
+  nodePort: null
+
+  ## If true, node exporter will listen on all interfaces
+  listenOnAllInterfaces: true
+
+  ## Additional annotations and labels for the service
+  annotations:
+    prometheus.io/scrape: "true"
+  labels: {}
+
+  ## Dual stack settings for the service
+  ## https://kubernetes.io/docs/concepts/services-networking/dual-stack/#services
+  ipDualStack:
+    enabled: false
+    ipFamilies: ["IPv6", "IPv4"]
+    ipFamilyPolicy: "PreferDualStack"
+
+  ## External traffic policy setting (Cluster, Local)
+  externalTrafficPolicy: ""
+
+# Set a NetworkPolicy with:
+# ingress only on service.port or custom policy
+# no egress permitted
+networkPolicy:
+  enabled: false
+
+  # ingress:
+  # - {}
+
+# Additional environment variables that will be passed to the daemonset
+env: {}
+##  env:
+##    VARIABLE: value
+
+prometheus:
+  monitor:
+    enabled: false
+    additionalLabels: {}
+    namespace: ""
+
+    jobLabel: ""
+
+    # List of pod labels to add to node exporter metrics
+    # https://github.com/prometheus-operator/prometheus-operator/blob/main/Documentation/api.md#servicemonitor
+    podTargetLabels: []
+
+    # List of target labels to add to node exporter metrics
+    # https://github.com/prometheus-operator/prometheus-operator/blob/main/Documentation/api.md#servicemonitor
+    targetLabels: []
+
+    scheme: http
+    basicAuth: {}
+    bearerTokenFile:
+    tlsConfig: {}
+
+    ## proxyUrl: URL of a proxy that should be used for scraping.
+    ##
+    proxyUrl: ""
+
+    ## Override serviceMonitor selector
+    ##
+    selectorOverride: {}
+
+    ## Attach node metadata to discovered targets. Requires Prometheus v2.35.0 and above.
+    ##
+    attachMetadata:
+      node: false
+
+    relabelings: []
+    metricRelabelings: []
+    interval: ""
+    scrapeTimeout: 10s
+    ## prometheus.monitor.apiVersion ApiVersion for the serviceMonitor Resource(defaults to "monitoring.coreos.com/v1")
+    apiVersion: ""
+
+    ## SampleLimit defines per-scrape limit on number of scraped samples that will be accepted.
+    ##
+    sampleLimit: 0
+
+    ## TargetLimit defines a limit on the number of scraped targets that will be accepted.
+    ##
+    targetLimit: 0
+
+    ## Per-scrape limit on number of labels that will be accepted for a sample. Only valid in Prometheus versions 2.27.0 and newer.
+    ##
+    labelLimit: 0
+
+    ## Per-scrape limit on length of labels name that will be accepted for a sample. Only valid in Prometheus versions 2.27.0 and newer.
+    ##
+    labelNameLengthLimit: 0
+
+    ## Per-scrape limit on length of labels value that will be accepted for a sample. Only valid in Prometheus versions 2.27.0 and newer.
+    ##
+    labelValueLengthLimit: 0
+
+  # PodMonitor defines monitoring for a set of pods.
+  # ref. https://github.com/prometheus-operator/prometheus-operator/blob/main/Documentation/api.md#monitoring.coreos.com/v1.PodMonitor
+  # Using a PodMonitor may be preferred in some environments where there is very large number
+  # of Node Exporter endpoints (1000+) behind a single service.
+  # The PodMonitor is disabled by default. When switching from ServiceMonitor to PodMonitor,
+  # the time series resulting from the configuration through PodMonitor may have different labels.
+  # For instance, there will not be the service label any longer which might
+  # affect PromQL queries selecting that label.
+  podMonitor:
+    enabled: false
+    # Namespace in which to deploy the pod monitor. Defaults to the release namespace.
+    namespace: ""
+    # Additional labels, e.g. setting a label for pod monitor selector as set in prometheus
+    additionalLabels: {}
+    #  release: kube-prometheus-stack
+    # PodTargetLabels transfers labels of the Kubernetes Pod onto the target.
+    podTargetLabels: []
+    # apiVersion defaults to monitoring.coreos.com/v1.
+    apiVersion: ""
+    # Override pod selector to select pod objects.
+    selectorOverride: {}
+    # Attach node metadata to discovered targets. Requires Prometheus v2.35.0 and above.
+    attachMetadata:
+      node: false
+    # The label to use to retrieve the job name from. Defaults to label app.kubernetes.io/name.
+    jobLabel: ""
+
+    # Scheme/protocol to use for scraping.
+    scheme: "http"
+    # Path to scrape metrics at.
+    path: "/metrics"
+
+    # BasicAuth allow an endpoint to authenticate over basic authentication.
+    # More info: https://prometheus.io/docs/operating/configuration/#endpoint
+    basicAuth: {}
+    # Secret to mount to read bearer token for scraping targets.
+    # The secret needs to be in the same namespace as the pod monitor and accessible by the Prometheus Operator.
+    # https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.24/#secretkeyselector-v1-core
+    bearerTokenSecret: {}
+    # TLS configuration to use when scraping the endpoint.
+    tlsConfig: {}
+    # Authorization section for this endpoint.
+    # https://github.com/prometheus-operator/prometheus-operator/blob/main/Documentation/api.md#monitoring.coreos.com/v1.SafeAuthorization
+    authorization: {}
+    # OAuth2 for the URL. Only valid in Prometheus versions 2.27.0 and newer.
+    # https://github.com/prometheus-operator/prometheus-operator/blob/main/Documentation/api.md#monitoring.coreos.com/v1.OAuth2
+    oauth2: {}
+
+    # ProxyURL eg http://proxyserver:2195. Directs scrapes through proxy to this endpoint.
+    proxyUrl: ""
+    # Interval at which endpoints should be scraped. If not specified Prometheus’ global scrape interval is used.
+    interval: ""
+    # Timeout after which the scrape is ended. If not specified, the Prometheus global scrape interval is used.
+    scrapeTimeout: ""
+    # HonorTimestamps controls whether Prometheus respects the timestamps present in scraped data.
+    honorTimestamps: true
+    # HonorLabels chooses the metric’s labels on collisions with target labels.
+    honorLabels: true
+    # Whether to enable HTTP2. Default false.
+    enableHttp2: ""
+    # Drop pods that are not running. (Failed, Succeeded).
+    # Enabled by default. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle/#pod-phase
+    filterRunning: ""
+    # FollowRedirects configures whether scrape requests follow HTTP 3xx redirects. Default false.
+    followRedirects: ""
+    # Optional HTTP URL parameters
+    params: {}
+
+    # RelabelConfigs to apply to samples before scraping. Prometheus Operator automatically adds
+    # relabelings for a few standard Kubernetes fields. The original scrape job’s name
+    # is available via the __tmp_prometheus_job_name label.
+    # More info: https://prometheus.io/docs/prometheus/latest/configuration/configuration/#relabel_config
+    relabelings: []
+    # MetricRelabelConfigs to apply to samples before ingestion.
+    metricRelabelings: []
+
+    # SampleLimit defines per-scrape limit on number of scraped samples that will be accepted.
+    sampleLimit: 0
+    # TargetLimit defines a limit on the number of scraped targets that will be accepted.
+    targetLimit: 0
+    # Per-scrape limit on number of labels that will be accepted for a sample.
+    # Only valid in Prometheus versions 2.27.0 and newer.
+    labelLimit: 0
+    # Per-scrape limit on length of labels name that will be accepted for a sample.
+    # Only valid in Prometheus versions 2.27.0 and newer.
+    labelNameLengthLimit: 0
+    # Per-scrape limit on length of labels value that will be accepted for a sample.
+    # Only valid in Prometheus versions 2.27.0 and newer.
+    labelValueLengthLimit: 0
+
+## Customize the updateStrategy if set
+updateStrategy:
+  type: RollingUpdate
+  rollingUpdate:
+    maxUnavailable: 1
+
+resources: {}
+  # We usually recommend not to specify default resources and to leave this as a conscious
+  # choice for the user. This also increases chances charts run on environments with little
+  # resources, such as Minikube. If you do want to specify resources, uncomment the following
+  # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
+  # limits:
+  #   cpu: 200m
+  #   memory: 50Mi
+  # requests:
+  #   cpu: 100m
+  #   memory: 30Mi
+
+# Specify the container restart policy passed to the Node Export container
+# Possible Values: Always (default)|OnFailure|Never
+restartPolicy: null
+
+serviceAccount:
+  # Specifies whether a ServiceAccount should be created
+  create: true
+  # The name of the ServiceAccount to use.
+  # If not set and create is true, a name is generated using the fullname template
+  name:
+  annotations: {}
+  imagePullSecrets: []
+  automountServiceAccountToken: false
+
+securityContext:
+  fsGroup: 65534
+  runAsGroup: 65534
+  runAsNonRoot: true
+  runAsUser: 65534
+
+containerSecurityContext:
+  readOnlyRootFilesystem: true
+  # capabilities:
+  #   add:
+  #   - SYS_TIME
+
+rbac:
+  ## If true, create & use RBAC resources
+  ##
+  create: true
+  ## If true, create & use Pod Security Policy resources
+  ## https://kubernetes.io/docs/concepts/policy/pod-security-policy/
+  pspEnabled: true
+  pspAnnotations: {}
+
+# for deployments that have node_exporter deployed outside of the cluster, list
+# their addresses here
+endpoints: []
+
+# Expose the service to the host network
+hostNetwork: true
+
+# Share the host process ID namespace
+hostPID: true
+
+# Share the host ipc namespace
+hostIPC: false
+
+# Mount the node's root file system (/) at /host/root in the container
+hostRootFsMount:
+  enabled: true
+  # Defines how new mounts in existing mounts on the node or in the container
+  # are propagated to the container or node, respectively. Possible values are
+  # None, HostToContainer, and Bidirectional. If this field is omitted, then
+  # None is used. More information on:
+  # https://kubernetes.io/docs/concepts/storage/volumes/#mount-propagation
+  mountPropagation: HostToContainer
+
+# Mount the node's proc file system (/proc) at /host/proc in the container
+hostProcFsMount:
+  # Possible values are None, HostToContainer, and Bidirectional
+  mountPropagation: ""
+
+# Mount the node's sys file system (/sys) at /host/sys in the container
+hostSysFsMount:
+  # Possible values are None, HostToContainer, and Bidirectional
+  mountPropagation: ""
+
+## Assign a group of affinity scheduling rules
+## The default nodeAffinity excludes Fargate nodes and virtual kubelets from scheduling
+## unless overriden by hard node affinity set in the field.
+affinity: {}
+#   nodeAffinity:
+#     requiredDuringSchedulingIgnoredDuringExecution:
+#       nodeSelectorTerms:
+#         - matchFields:
+#             - key: metadata.name
+#               operator: In
+#               values:
+#                 - target-host-name
+
+# Annotations to be added to node exporter pods
+podAnnotations:
+  # Fix for very slow GKE cluster upgrades
+  cluster-autoscaler.kubernetes.io/safe-to-evict: "true"
+
+# Extra labels to add to node exporter pods (can be templated)
+podLabels: {}
+
+## Extra labels to attach to all resources (can be templated)
+commonLabels: {}
+
+# Annotations to be added to node exporter daemonset
+daemonsetAnnotations: {}
+
+## set to true to add the release label so scraping of the servicemonitor with kube-prometheus-stack works out of the box
+releaseLabel: false
+
+# Custom DNS configuration to be added to prometheus-node-exporter pods
+dnsConfig: {}
+# nameservers:
+#   - 1.2.3.4
+# searches:
+#   - ns1.svc.cluster-domain.example
+#   - my.dns.search.suffix
+# options:
+#   - name: ndots
+#     value: "2"
+#   - name: edns0
+
+## Assign a nodeSelector if operating a hybrid cluster
+##
+nodeSelector:
+  kubernetes.io/os: linux
+  #  kubernetes.io/arch: amd64
+
+# Specify grace period for graceful termination of pods. Defaults to 30 if null or not specified
+terminationGracePeriodSeconds: null
+
+tolerations:
+  - effect: NoSchedule
+    operator: Exists
+
+# Enable or disable container termination message settings
+# https://kubernetes.io/docs/tasks/debug/debug-application/determine-reason-pod-failure/
+terminationMessageParams:
+  enabled: false
+  # If enabled, specify the path for termination messages
+  terminationMessagePath: /dev/termination-log
+  # If enabled, specify the policy for termination messages
+  terminationMessagePolicy: File
+
+
+## Assign a PriorityClassName to pods if set
+# priorityClassName: ""
+
+## Additional container arguments
+##
+extraArgs: []
+#   - --collector.diskstats.ignored-devices=^(ram|loop|fd|(h|s|v)d[a-z]|nvme\\d+n\\d+p)\\d+$
+#   - --collector.textfile.directory=/run/prometheus
+
+## Additional mounts from the host to node-exporter container
+##
+extraHostVolumeMounts: []
+#  - name: <mountName>
+#    hostPath: <hostPath>
+#    https://kubernetes.io/docs/concepts/storage/volumes/#hostpath-volume-types
+#    type: "" (Default)|DirectoryOrCreate|Directory|FileOrCreate|File|Socket|CharDevice|BlockDevice
+#    mountPath: <mountPath>
+#    readOnly: true|false
+#    mountPropagation: None|HostToContainer|Bidirectional
+
+## Additional configmaps to be mounted.
+##
+configmaps: []
+# - name: <configMapName>
+#   mountPath: <mountPath>
+
+secrets: []
+# - name: <secretName>
+#   mountPath: <mountPatch>
+
+## Override the deployment namespace
+##
+namespaceOverride: ""
+
+## Additional containers for export metrics to text file; fields image,imagePullPolicy,securityContext take default value from main container
+##
+sidecars: []
+#  - name: nvidia-dcgm-exporter
+#    image: nvidia/dcgm-exporter:1.4.3
+#    volumeMounts:
+#     - name: tmp
+#       mountPath: /tmp
+
+## Volume for sidecar containers
+##
+sidecarVolumeMount: []
+#  - name: collector-textfiles
+#    mountPath: /run/prometheus
+#    readOnly: false
+
+## Additional mounts from the host to sidecar containers
+##
+sidecarHostVolumeMounts: []
+#  - name: <mountName>
+#    hostPath: <hostPath>
+#    mountPath: <mountPath>
+#    readOnly: true|false
+#    mountPropagation: None|HostToContainer|Bidirectional
+
+## Additional InitContainers to initialize the pod
+##
+extraInitContainers: []
+
+## Liveness probe
+##
+livenessProbe:
+  failureThreshold: 3
+  httpGet:
+    httpHeaders: []
+    scheme: http
+  initialDelaySeconds: 0
+  periodSeconds: 10
+  successThreshold: 1
+  timeoutSeconds: 1
+
+## Readiness probe
+##
+readinessProbe:
+  failureThreshold: 3
+  httpGet:
+    httpHeaders: []
+    scheme: http
+  initialDelaySeconds: 0
+  periodSeconds: 10
+  successThreshold: 1
+  timeoutSeconds: 1
+
+# Enable vertical pod autoscaler support for prometheus-node-exporter
+verticalPodAutoscaler:
+  enabled: false
+
+  # Recommender responsible for generating recommendation for the object.
+  # List should be empty (then the default recommender will generate the recommendation)
+  # or contain exactly one recommender.
+  # recommenders:
+  # - name: custom-recommender-performance
+
+  # List of resources that the vertical pod autoscaler can control. Defaults to cpu and memory
+  controlledResources: []
+  # Specifies which resource values should be controlled: RequestsOnly or RequestsAndLimits.
+  # controlledValues: RequestsAndLimits
+
+  # Define the max allowed resources for the pod
+  maxAllowed: {}
+  # cpu: 200m
+  # memory: 100Mi
+  # Define the min allowed resources for the pod
+  minAllowed: {}
+  # cpu: 200m
+  # memory: 100Mi
+
+  # updatePolicy:
+    # Specifies minimal number of replicas which need to be alive for VPA Updater to attempt pod eviction
+    # minReplicas: 1
+    # Specifies whether recommended updates are applied when a Pod is started and whether recommended updates
+    # are applied during the life of a Pod. Possible values are "Off", "Initial", "Recreate", and "Auto".
+    # updateMode: Auto
+
+# Extra manifests to deploy as an array
+extraManifests: []
+  # - |
+  #   apiVersion: v1
+  #   kind: ConfigMap
+  #   metadata:
+  #     name: prometheus-extra
+  #   data:
+  #     extra-data: "value"
+
+## Extra volumes to become available in the pod
+extraVolumes: []
+  # - name: extra-volume
+  #   secret:
+  #     defaultMode: 420
+  #     optional: false
+  #     secretName: node-exporter-secret
+
+## Extra volume mounts in the node-exporter container
+extraVolumeMounts: []
+  # - name: extra-volume
+  #   mountPath: /extra
+  #   readOnly: true
+
+# Override version of app, required if image.tag is defined and does not follow semver
+version: ""
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/.helmignore b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/.helmignore
new file mode 100644
index 0000000000..e90c9f6d23
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/.helmignore
@@ -0,0 +1,24 @@
+# Patterns to ignore when building packages.
+# This supports shell glob matching, relative path matching, and
+# negation (prefixed with !). Only one pattern per line.
+.DS_Store
+# Common VCS dirs
+.git/
+.gitignore
+.bzr/
+.bzrignore
+.hg/
+.hgignore
+.svn/
+# Common backup files
+*.swp
+*.bak
+*.tmp
+*~
+# Various IDEs
+.project
+.idea/
+*.tmproj
+
+# OWNERS file for Kubernetes
+OWNERS
\ No newline at end of file
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/Chart.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/Chart.yaml
new file mode 100644
index 0000000000..c9f97c31fd
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/Chart.yaml
@@ -0,0 +1,24 @@
+annotations:
+  artifacthub.io/license: Apache-2.0
+  artifacthub.io/links: |
+    - name: Chart Source
+      url: https://github.com/prometheus-community/helm-charts
+apiVersion: v2
+appVersion: v1.10.0
+description: A Helm chart for prometheus pushgateway
+home: https://github.com/prometheus/pushgateway
+keywords:
+- pushgateway
+- prometheus
+maintainers:
+- email: gianrubio@gmail.com
+  name: gianrubio
+- email: christian.staude@staffbase.com
+  name: cstaud
+- email: rootsandtrees@posteo.de
+  name: zeritti
+name: prometheus-pushgateway
+sources:
+- https://github.com/prometheus/pushgateway
+type: application
+version: 2.16.0
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/README.md b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/README.md
new file mode 100644
index 0000000000..cc6645fdf9
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/README.md
@@ -0,0 +1,88 @@
+# Prometheus Pushgateway
+
+This chart bootstraps a Prometheus [Pushgateway](http://github.com/prometheus/pushgateway) deployment on a [Kubernetes](http://kubernetes.io) cluster using the [Helm](https://helm.sh) package manager.
+
+An optional prometheus `ServiceMonitor` can be enabled, should you wish to use this gateway with [Prometheus Operator](https://github.com/coreos/prometheus-operator).
+
+## Get Repository Info
+<!-- textlint-disable terminology -->
+```console
+helm repo add prometheus-community https://prometheus-community.github.io/helm-charts
+helm repo update
+```
+
+_See [helm repo](https://helm.sh/docs/helm/helm_repo/) for command documentation._
+<!-- textlint-enable -->
+## Install Chart
+
+```console
+helm install [RELEASE_NAME] prometheus-community/prometheus-pushgateway
+```
+
+_See [configuration](#configuration) below._
+
+_See [helm install](https://helm.sh/docs/helm/helm_install/) for command documentation._
+
+## Uninstall Chart
+
+```console
+helm uninstall [RELEASE_NAME]
+```
+
+This removes all the Kubernetes components associated with the chart and deletes the release.
+
+_See [helm uninstall](https://helm.sh/docs/helm/helm_uninstall/) for command documentation._
+
+## Upgrading Chart
+
+```console
+helm upgrade [RELEASE_NAME] prometheus-community/prometheus-pushgateway --install
+```
+
+_See [helm upgrade](https://helm.sh/docs/helm/helm_upgrade/) for command documentation._
+
+### To 2.0.0
+
+Chart API version has been upgraded to v2 so Helm 3 is needed from now on.
+
+Docker image tag is used from Chart.yaml appVersion field by default now.
+
+Version 2.0.0 also adapted [Helm label and annotation best practices](https://helm.sh/docs/chart_best_practices/labels/). Specifically, labels mapping is listed below:
+
+```console
+OLD                 => NEW
+----------------------------------------
+heritage            => app.kubernetes.io/managed-by
+chart               => helm.sh/chart
+[container version] => app.kubernetes.io/version
+app                 => app.kubernetes.io/name
+release             => app.kubernetes.io/instance
+```
+
+Therefore, depending on the way you've configured the chart, the previous StatefulSet or Deployment need to be deleted before upgrade.
+
+If `runAsStatefulSet: false` (this is the default):
+
+```console
+kubectl delete deploy -l app=prometheus-pushgateway
+```
+
+If `runAsStatefulSet: true`:
+
+```console
+kubectl delete sts -l app=prometheus-pushgateway
+```
+
+After that do the actual upgrade:
+
+```console
+helm upgrade -i prometheus-pushgateway prometheus-community/prometheus-pushgateway
+```
+
+## Configuration
+
+See [Customizing the Chart Before Installing](https://helm.sh/docs/intro/using_helm/#customizing-the-chart-before-installing). To see all configurable options with detailed comments, visit the chart's [values.yaml](./values.yaml), or run these configuration commands:
+
+```console
+helm show values prometheus-community/prometheus-pushgateway
+```
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/NOTES.txt b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/NOTES.txt
new file mode 100644
index 0000000000..263b1d8d49
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/NOTES.txt
@@ -0,0 +1,19 @@
+1. Get the application URL by running these commands:
+{{- if .Values.ingress.enabled }}
+{{- range .Values.ingress.hosts }}
+  http{{ if $.Values.ingress.tls }}s{{ end }}://{{ . }}{{ $.Values.ingress.path }}
+{{- end }}
+{{- else if contains "NodePort" .Values.service.type }}
+  export NODE_PORT=$(kubectl get --namespace {{ template "prometheus-pushgateway.namespace" . }} -o jsonpath="{.spec.ports[0].nodePort}" services {{ template "prometheus-pushgateway.fullname" . }})
+  export NODE_IP=$(kubectl get nodes --namespace {{ template "prometheus-pushgateway.namespace" . }} -o jsonpath="{.items[0].status.addresses[0].address}")
+  echo http://$NODE_IP:$NODE_PORT
+{{- else if contains "LoadBalancer" .Values.service.type }}
+     NOTE: It may take a few minutes for the LoadBalancer IP to be available.
+           You can watch the status of by running 'kubectl get svc -w {{ template "prometheus-pushgateway.fullname" . }}'
+  export SERVICE_IP=$(kubectl get svc --namespace {{ template "prometheus-pushgateway.namespace" . }} {{ template "prometheus-pushgateway.fullname" . }} -o jsonpath='{.status.loadBalancer.ingress[0].ip}')
+  echo http://$SERVICE_IP:{{ .Values.service.port }}
+{{- else if contains "ClusterIP" .Values.service.type }}
+  export POD_NAME=$(kubectl get pods --namespace {{ template "prometheus-pushgateway.namespace" . }} -l "app.kubernetes.io/name={{ template "prometheus-pushgateway.name" . }},app.kubernetes.io/instance={{ .Release.Name }}" -o jsonpath="{.items[0].metadata.name}")
+  kubectl port-forward $POD_NAME 9091
+  echo "Visit http://127.0.0.1:9091 to use your application"
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/_helpers.tpl b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/_helpers.tpl
new file mode 100644
index 0000000000..2d1f84056a
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/_helpers.tpl
@@ -0,0 +1,307 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Expand the name of the chart.
+*/}}
+{{- define "prometheus-pushgateway.name" -}}
+{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{/*
+Namespace to set on the resources
+*/}}
+{{- define "prometheus-pushgateway.namespace" -}}
+  {{- if .Values.namespaceOverride -}}
+    {{- .Values.namespaceOverride -}}
+  {{- else -}}
+    {{- .Release.Namespace -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Create a default fully qualified app name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+If release name contains chart name it will be used as a full name.
+*/}}
+{{- define "prometheus-pushgateway.fullname" -}}
+{{- if .Values.fullnameOverride }}
+{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" }}
+{{- else }}
+{{- $name := default .Chart.Name .Values.nameOverride }}
+{{- if contains $name .Release.Name }}
+{{- .Release.Name | trunc 63 | trimSuffix "-" }}
+{{- else }}
+{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" }}
+{{- end }}
+{{- end }}
+{{- end }}
+
+{{/*
+Create chart name and version as used by the chart label.
+*/}}
+{{- define "prometheus-pushgateway.chart" -}}
+{{ printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{/*
+Create the name of the service account to use
+*/}}
+{{- define "prometheus-pushgateway.serviceAccountName" -}}
+{{- if .Values.serviceAccount.create }}
+{{- default (include "prometheus-pushgateway.fullname" .) .Values.serviceAccount.name }}
+{{- else }}
+{{- default "default" .Values.serviceAccount.name }}
+{{- end }}
+{{- end }}
+
+{{/*
+Create default labels
+*/}}
+{{- define "prometheus-pushgateway.defaultLabels" -}}
+helm.sh/chart: {{ include "prometheus-pushgateway.chart" . }}
+{{ include "prometheus-pushgateway.selectorLabels" . }}
+{{- if .Chart.AppVersion }}
+app.kubernetes.io/version: {{ .Chart.AppVersion | quote }}
+{{- end }}
+app.kubernetes.io/managed-by: {{ .Release.Service }}
+{{- with .Values.podLabels }}
+{{ toYaml . }}
+{{- end }}
+{{- end }}
+
+{{/*
+Selector labels
+*/}}
+{{- define "prometheus-pushgateway.selectorLabels" -}}
+app.kubernetes.io/name: {{ include "prometheus-pushgateway.name" . }}
+app.kubernetes.io/instance: {{ .Release.Name }}
+{{- end }}
+
+{{/*
+Return the appropriate apiVersion for networkpolicy.
+*/}}
+{{- define "prometheus-pushgateway.networkPolicy.apiVersion" -}}
+{{- if semverCompare ">=1.4-0, <1.7-0" .Capabilities.KubeVersion.GitVersion }}
+{{- print "extensions/v1beta1" }}
+{{- else if semverCompare "^1.7-0" .Capabilities.KubeVersion.GitVersion }}
+{{- print "networking.k8s.io/v1" }}
+{{- end }}
+{{- end }}
+
+{{/*
+Define PDB apiVersion
+*/}}
+{{- define "prometheus-pushgateway.pdb.apiVersion" -}}
+{{- if $.Capabilities.APIVersions.Has "policy/v1/PodDisruptionBudget" }}
+{{- print "policy/v1" }}
+{{- else }}
+{{- print "policy/v1beta1" }}
+{{- end }}
+{{- end }}
+
+{{/*
+Define Ingress apiVersion
+*/}}
+{{- define "prometheus-pushgateway.ingress.apiVersion" -}}
+{{- if semverCompare ">=1.19-0" .Capabilities.KubeVersion.GitVersion }}
+{{- print "networking.k8s.io/v1" }}
+{{- else if semverCompare ">=1.14-0" .Capabilities.KubeVersion.GitVersion }}
+{{- print "networking.k8s.io/v1beta1" }}
+{{- else }}
+{{- print "extensions/v1beta1" }}
+{{- end }}
+{{- end }}
+
+{{/*
+Define webConfiguration
+*/}}
+{{- define "prometheus-pushgateway.webConfiguration" -}}
+basic_auth_users:
+{{- range $k, $v := .Values.webConfiguration.basicAuthUsers }}
+  {{ $k }}: {{ htpasswd "" $v | trimPrefix ":"}}
+{{- end }}
+{{- end }}
+
+{{/*
+Define Authorization
+*/}}
+{{- define "prometheus-pushgateway.Authorization" -}}
+{{- $users := keys .Values.webConfiguration.basicAuthUsers }}
+{{- $user := first $users }}
+{{- $password := index .Values.webConfiguration.basicAuthUsers $user }}
+{{- $user }}:{{ $password }}
+{{- end }}
+
+{{/*
+Returns pod spec
+*/}}
+{{- define "prometheus-pushgateway.podSpec" -}}
+serviceAccountName: {{ include "prometheus-pushgateway.serviceAccountName" . }}
+automountServiceAccountToken: {{ .Values.automountServiceAccountToken }}
+{{- with .Values.priorityClassName }}
+priorityClassName: {{ . | quote }}
+{{- end }}
+{{- with .Values.hostAliases }}
+hostAliases:
+{{- toYaml . | nindent 2 }}
+{{- end }}
+{{- with .Values.imagePullSecrets }}
+imagePullSecrets:
+  {{- toYaml . | nindent 2 }}
+{{- end }}
+{{- with .Values.extraInitContainers }}
+initContainers:
+  {{- toYaml . | nindent 2 }}
+{{- end }}
+containers:
+  {{- with .Values.extraContainers }}
+  {{- toYaml . | nindent 2 }}
+  {{- end }}
+  - name: pushgateway
+    image: "{{ .Values.image.repository }}:{{ .Values.image.tag | default .Chart.AppVersion }}"
+    imagePullPolicy: {{ .Values.image.pullPolicy }}
+    {{- with .Values.extraVars }}
+    env:
+      {{- toYaml . | nindent 6 }}
+    {{- end }}
+    {{- if or .Values.extraArgs .Values.webConfiguration }}
+    args:
+    {{- with .Values.extraArgs }}
+      {{- toYaml . | nindent 6 }}
+    {{- end }}
+    {{- if .Values.webConfiguration }}
+      - --web.config.file=/etc/config/web-config.yaml
+    {{- end }}
+    {{- end }}
+    ports:
+      - name: metrics
+        containerPort: 9091
+        protocol: TCP
+    {{- if .Values.liveness.enabled }}
+    {{- $livenessCommon := omit .Values.liveness.probe "httpGet" }}
+    livenessProbe:
+    {{- with .Values.liveness.probe }}
+      httpGet:
+        path: {{ .httpGet.path }}
+        port: {{ .httpGet.port }}
+        {{- if or .httpGet.httpHeaders $.Values.webConfiguration.basicAuthUsers }}
+        httpHeaders:
+        {{- if $.Values.webConfiguration.basicAuthUsers }}
+          - name: Authorization
+            value: Basic {{ include "prometheus-pushgateway.Authorization" $ | b64enc }}
+        {{- end }}
+        {{- with .httpGet.httpHeaders }}
+          {{- toYaml . | nindent 10 }}
+        {{- end }}
+        {{- end }}
+        {{- toYaml $livenessCommon | nindent 6 }}
+      {{- end }}
+    {{- end }}
+    {{- if .Values.readiness.enabled }}
+    {{- $readinessCommon := omit .Values.readiness.probe "httpGet" }}
+    readinessProbe:
+    {{- with .Values.readiness.probe }}
+      httpGet:
+        path: {{ .httpGet.path }}
+        port: {{ .httpGet.port }}
+        {{- if or .httpGet.httpHeaders $.Values.webConfiguration.basicAuthUsers }}
+        httpHeaders:
+        {{- if $.Values.webConfiguration.basicAuthUsers }}
+          - name: Authorization
+            value: Basic {{ include "prometheus-pushgateway.Authorization" $ | b64enc }}
+        {{- end }}
+        {{- with .httpGet.httpHeaders }}
+          {{- toYaml . | nindent 10 }}
+        {{- end }}
+        {{- end }}
+        {{- toYaml $readinessCommon | nindent 6 }}
+      {{- end }}
+    {{- end }}
+    {{- with .Values.resources }}
+    resources:
+      {{- toYaml . | nindent 6 }}
+    {{- end }}
+    {{- with .Values.containerSecurityContext }}
+    securityContext:
+      {{- toYaml . | nindent 6 }}
+    {{- end }}
+    {{- with .Values.lifecycle }}
+    lifecycle: {{ toYaml . | nindent 6 }}
+    {{- end }}
+    volumeMounts:
+      - name: storage-volume
+        mountPath: "{{ .Values.persistentVolume.mountPath }}"
+        subPath: "{{ .Values.persistentVolume.subPath }}"
+      {{- if .Values.webConfiguration }}
+      - name: web-config
+        mountPath: "/etc/config"
+      {{- end }}
+      {{- with .Values.extraVolumeMounts }}
+      {{- toYaml . | nindent 6 }}
+      {{- end }}
+{{- with .Values.nodeSelector }}
+nodeSelector:
+  {{- toYaml . | nindent 2 }}
+{{- end }}
+{{- with .Values.tolerations }}
+tolerations:
+  {{- toYaml . | nindent 2 }}
+{{- end }}
+{{- if or .Values.podAntiAffinity .Values.affinity }}
+affinity:
+{{- end }}
+  {{- with .Values.affinity }}
+  {{- toYaml . | nindent 2 }}
+  {{- end }}
+  {{- if eq .Values.podAntiAffinity "hard" }}
+  podAntiAffinity:
+    requiredDuringSchedulingIgnoredDuringExecution:
+      - topologyKey: {{ .Values.podAntiAffinityTopologyKey }}
+        labelSelector:
+          matchExpressions:
+            - {key: app.kubernetes.io/name, operator: In, values: [{{ include "prometheus-pushgateway.name" . }}]}
+  {{- else if eq .Values.podAntiAffinity "soft" }}
+  podAntiAffinity:
+    preferredDuringSchedulingIgnoredDuringExecution:
+      - weight: 100
+        podAffinityTerm:
+          topologyKey: {{ .Values.podAntiAffinityTopologyKey }}
+          labelSelector:
+            matchExpressions:
+              - {key: app.kubernetes.io/name, operator: In, values: [{{ include "prometheus-pushgateway.name" . }}]}
+  {{- end }}
+{{- with .Values.topologySpreadConstraints }}
+topologySpreadConstraints:
+  {{- toYaml . | nindent 2 }}
+{{- end }}
+{{- with .Values.securityContext }}
+securityContext:
+  {{- toYaml . | nindent 2 }}
+{{- end }}
+volumes:
+  {{- $storageVolumeAsPVCTemplate := and .Values.runAsStatefulSet .Values.persistentVolume.enabled -}}
+  {{- if not $storageVolumeAsPVCTemplate }}
+  - name: storage-volume
+  {{- if .Values.persistentVolume.enabled }}
+    persistentVolumeClaim:
+      claimName: {{ if .Values.persistentVolume.existingClaim }}{{ .Values.persistentVolume.existingClaim }}{{- else }}{{ include "prometheus-pushgateway.fullname" . }}{{- end }}
+  {{- else }}
+    emptyDir: {}
+  {{- end }}
+  {{- if .Values.webConfiguration }}
+  - name: web-config
+    secret:
+      secretName: {{ include "prometheus-pushgateway.fullname" . }}
+  {{- end }}
+  {{- end }}
+  {{- if .Values.extraVolumes }}
+  {{- toYaml .Values.extraVolumes  | nindent 2 }}
+  {{- else if $storageVolumeAsPVCTemplate }}
+  {{- if .Values.webConfiguration }}
+  - name: web-config
+    secret:
+      secretName: {{ include "prometheus-pushgateway.fullname" . }}
+  {{- else }}
+  []
+  {{- end }}
+  {{- end }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/deployment.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/deployment.yaml
new file mode 100644
index 0000000000..5fab383f28
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/deployment.yaml
@@ -0,0 +1,31 @@
+{{- if not .Values.runAsStatefulSet }}
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    {{- include "prometheus-pushgateway.defaultLabels" . | nindent 4 }}
+  name: {{ include "prometheus-pushgateway.fullname" . }}
+  namespace: {{ template "prometheus-pushgateway.namespace" . }}
+spec:
+  replicas: {{ .Values.replicaCount }}
+  {{- with .Values.strategy }}
+  strategy:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  selector:
+    matchLabels:
+      {{- include "prometheus-pushgateway.selectorLabels" . | nindent 6 }}
+  template:
+    metadata:
+      {{- with .Values.podAnnotations }}
+      annotations:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      labels:
+        {{- include "prometheus-pushgateway.defaultLabels" . | nindent 8 }}
+        {{- if ( .Values.global | default dict ).azMarketPlace }}
+        azure-extensions-usage-release-identifier: {{.Release.Name}}
+        {{- end }}
+    spec:
+      {{- include "prometheus-pushgateway.podSpec" . | nindent 6 }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/extra-manifests.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/extra-manifests.yaml
new file mode 100644
index 0000000000..bafee95185
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/extra-manifests.yaml
@@ -0,0 +1,8 @@
+{{- range .Values.extraManifests }}
+---
+  {{- if typeIs "string" . }}
+    {{- tpl . $ }}
+  {{- else }}
+    {{- tpl (. | toYaml | nindent 0) $ }}
+  {{- end }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/ingress.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/ingress.yaml
new file mode 100644
index 0000000000..237ac4a121
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/ingress.yaml
@@ -0,0 +1,50 @@
+{{- if .Values.ingress.enabled }}
+{{- $serviceName := include "prometheus-pushgateway.fullname" . }}
+{{- $servicePort := .Values.service.port }}
+{{- $ingressPath := .Values.ingress.path }}
+{{- $ingressClassName := .Values.ingress.className }}
+{{- $ingressPathType := .Values.ingress.pathType }}
+{{- $extraPaths := .Values.ingress.extraPaths }}
+apiVersion: {{ include "prometheus-pushgateway.ingress.apiVersion" . }}
+kind: Ingress
+metadata:
+  {{- with .Values.ingress.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  labels:
+    {{- include "prometheus-pushgateway.defaultLabels" . | nindent 4 }}
+  name: {{ include "prometheus-pushgateway.fullname" . }}
+  namespace: {{ template "prometheus-pushgateway.namespace" . }}
+spec:
+  {{- if semverCompare ">=1.19-0" .Capabilities.KubeVersion.GitVersion }}
+  ingressClassName: {{ $ingressClassName }}
+  {{- end }}
+  rules:
+    {{- range $host := .Values.ingress.hosts }}
+    - host: {{ $host }}
+      http:
+        paths:
+          {{- with $extraPaths }}
+          {{- toYaml . | nindent 10 }}
+          {{- end }}
+          - path: {{ $ingressPath }}
+            {{- if semverCompare ">=1.19-0" $.Capabilities.KubeVersion.GitVersion }}
+            pathType: {{ $ingressPathType }}
+            {{- end }}
+            backend:
+              {{- if semverCompare ">=1.19-0" $.Capabilities.KubeVersion.GitVersion }}
+              service:
+                name: {{ $serviceName }}
+                port:
+                  number: {{ $servicePort }}
+              {{- else }}
+              serviceName: {{ $serviceName }}
+              servicePort: {{ $servicePort }}
+              {{- end }}
+    {{- end -}}
+  {{- with .Values.ingress.tls }}
+  tls:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/networkpolicy.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/networkpolicy.yaml
new file mode 100644
index 0000000000..d3b8019e3f
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/networkpolicy.yaml
@@ -0,0 +1,26 @@
+{{- if .Values.networkPolicy }}
+apiVersion: {{ include "prometheus-pushgateway.networkPolicy.apiVersion" . }}
+kind: NetworkPolicy
+metadata:
+  labels:
+    {{- include "prometheus-pushgateway.defaultLabels" . | nindent 4 }}
+  {{- if .Values.networkPolicy.customSelectors }}
+  name: ingress-allow-customselector-{{ template "prometheus-pushgateway.name" . }}
+  {{- else if .Values.networkPolicy.allowAll }}
+  name: ingress-allow-all-{{ template "prometheus-pushgateway.name" . }}
+  {{- else -}}
+  {{- fail "One of `allowAll` or `customSelectors` must be specified." }}
+  {{- end }}
+  namespace: {{ template "prometheus-pushgateway.namespace" . }}
+spec:
+  podSelector:
+    matchLabels:
+      {{- include "prometheus-pushgateway.selectorLabels" . | nindent 6 }}
+  ingress:
+    - ports:
+      - port: {{ .Values.service.targetPort }}
+      {{- with .Values.networkPolicy.customSelectors }}
+      from:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/pdb.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/pdb.yaml
new file mode 100644
index 0000000000..6051133c68
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/pdb.yaml
@@ -0,0 +1,14 @@
+{{- if .Values.podDisruptionBudget }}
+apiVersion: {{ include "prometheus-pushgateway.pdb.apiVersion" . }}
+kind: PodDisruptionBudget
+metadata:
+  labels:
+    {{- include "prometheus-pushgateway.defaultLabels" . | nindent 4 }}
+  name: {{ include "prometheus-pushgateway.fullname" . }}
+  namespace: {{ template "prometheus-pushgateway.namespace" . }}
+spec:
+  selector:
+    matchLabels:
+      {{- include "prometheus-pushgateway.selectorLabels" . | nindent 6 }}
+  {{- toYaml .Values.podDisruptionBudget | nindent 2 }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/pushgateway-pvc.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/pushgateway-pvc.yaml
new file mode 100644
index 0000000000..d2a85f4242
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/pushgateway-pvc.yaml
@@ -0,0 +1,29 @@
+{{- if and (not .Values.runAsStatefulSet) .Values.persistentVolume.enabled (not .Values.persistentVolume.existingClaim) }}
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  {{- with .Values.persistentVolume.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  labels:
+    {{- include "prometheus-pushgateway.defaultLabels" . | nindent 4 }}
+    {{- with .Values.persistentVolumeLabels }}
+    {{- toYaml . | nindent 4 }}
+    {{- end }}
+  name: {{ include "prometheus-pushgateway.fullname" . }}
+  namespace: {{ template "prometheus-pushgateway.namespace" . }}
+spec:
+  accessModes:
+    {{- toYaml .Values.persistentVolume.accessModes | nindent 4 }}
+  {{- if .Values.persistentVolume.storageClass }}
+  {{- if (eq "-" .Values.persistentVolume.storageClass) }}
+  storageClassName: ""
+  {{- else }}
+  storageClassName: "{{ .Values.persistentVolume.storageClass }}"
+  {{- end }}
+  {{- end }}
+  resources:
+    requests:
+      storage: "{{ .Values.persistentVolume.size }}"
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/secret.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/secret.yaml
new file mode 100644
index 0000000000..a8142d1389
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/secret.yaml
@@ -0,0 +1,10 @@
+{{- if .Values.webConfiguration }}
+apiVersion: v1
+kind: Secret
+metadata:
+  name: {{ include "prometheus-pushgateway.fullname" . }}
+  labels:
+    {{- include "prometheus-pushgateway.defaultLabels" . | nindent 4 }}
+data:
+  web-config.yaml: {{ include "prometheus-pushgateway.webConfiguration" . | b64enc}}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/service.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/service.yaml
new file mode 100644
index 0000000000..15029f7e30
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/service.yaml
@@ -0,0 +1,45 @@
+{{- $stsNoHeadlessSvcTypes := list "LoadBalancer" "NodePort" -}}
+apiVersion: v1
+kind: Service
+metadata:
+  {{- with .Values.serviceAnnotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  labels:
+    {{- include "prometheus-pushgateway.defaultLabels" . | nindent 4 }}
+    {{- with .Values.serviceLabels }}
+    {{- toYaml . | nindent 4 }}
+    {{- end }}
+  name: {{ include "prometheus-pushgateway.fullname" . }}
+  namespace: {{ template "prometheus-pushgateway.namespace" . }}
+spec:
+  {{- if .Values.service.clusterIP }}
+  clusterIP: {{ .Values.service.clusterIP }}
+  {{ else if and .Values.runAsStatefulSet (not (has .Values.service.type $stsNoHeadlessSvcTypes)) }}
+  clusterIP: None # Headless service
+  {{- end }}
+  {{- if .Values.service.ipDualStack.enabled }}
+  ipFamilies: {{ toYaml .Values.service.ipDualStack.ipFamilies | nindent 4 }}
+  ipFamilyPolicy: {{ .Values.service.ipDualStack.ipFamilyPolicy }}
+  {{- end }}
+  type: {{ .Values.service.type }}
+  {{- with .Values.service.loadBalancerIP }}
+  loadBalancerIP: {{ . }}
+  {{- end }}
+  {{- if .Values.service.loadBalancerSourceRanges }}
+  loadBalancerSourceRanges:
+  {{- range $cidr := .Values.service.loadBalancerSourceRanges }}
+    - {{ $cidr }}
+  {{- end }}
+  {{- end }}
+  ports:
+    - port: {{ .Values.service.port }}
+      targetPort: {{ .Values.service.targetPort }}
+      {{- if and (eq .Values.service.type "NodePort") .Values.service.nodePort }}
+      nodePort: {{ .Values.service.nodePort }}
+      {{- end }}
+      protocol: TCP
+      name: {{ .Values.service.portName }}
+  selector:
+    {{- include "prometheus-pushgateway.selectorLabels" . | nindent 4 }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/serviceaccount.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/serviceaccount.yaml
new file mode 100644
index 0000000000..88f1470480
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/serviceaccount.yaml
@@ -0,0 +1,17 @@
+{{- if .Values.serviceAccount.create }}
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  {{- with .Values.serviceAccount.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  labels:
+    {{- include "prometheus-pushgateway.defaultLabels" . | nindent 4 }}
+    {{- with .Values.serviceAccountLabels }}
+    {{- toYaml . | nindent 4 }}
+    {{- end }}
+  name: {{ include "prometheus-pushgateway.serviceAccountName" . }}
+  namespace: {{ template "prometheus-pushgateway.namespace" . }}
+automountServiceAccountToken: {{ .Values.automountServiceAccountToken }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/servicemonitor.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/servicemonitor.yaml
new file mode 100644
index 0000000000..ae173199b3
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/servicemonitor.yaml
@@ -0,0 +1,51 @@
+{{- if .Values.serviceMonitor.enabled }}
+apiVersion: monitoring.coreos.com/v1
+kind: ServiceMonitor
+metadata:
+  labels:
+    {{- include "prometheus-pushgateway.defaultLabels" . | nindent 4 }}
+    {{- if .Values.serviceMonitor.additionalLabels }}
+    {{- toYaml .Values.serviceMonitor.additionalLabels | nindent 4 }}
+    {{- end }}
+  name: {{ include "prometheus-pushgateway.fullname" .  }}
+  {{- if .Values.serviceMonitor.namespace }}
+  namespace: {{ .Values.serviceMonitor.namespace }}
+  {{- else }}
+  namespace: {{ template "prometheus-pushgateway.namespace" . }}
+  {{- end }}
+spec:
+  endpoints:
+  - port: {{ .Values.service.portName }}
+    {{- with .Values.serviceMonitor.interval }}
+    interval: {{ . }}
+    {{- end }}
+    {{- with .Values.serviceMonitor.scheme }}
+    scheme: {{ . }}
+    {{- end }}
+    {{- with .Values.serviceMonitor.bearerTokenFile }}
+    bearerTokenFile: {{ . }}
+    {{- end }}
+    {{- with .Values.serviceMonitor.tlsConfig }}
+    tlsConfig:
+      {{- toYaml .| nindent 6 }}
+    {{- end }}
+    {{- with .Values.serviceMonitor.scrapeTimeout }}
+    scrapeTimeout: {{ . }}
+    {{- end }}
+    path: {{ .Values.serviceMonitor.telemetryPath }}
+    honorLabels: {{ .Values.serviceMonitor.honorLabels }}
+    {{- with .Values.serviceMonitor.metricRelabelings }}
+    metricRelabelings:
+      {{- tpl (toYaml . | nindent 6) $ }}
+    {{- end }}
+    {{- with .Values.serviceMonitor.relabelings }}
+    relabelings:
+      {{- toYaml . | nindent 6 }}
+    {{- end }}
+  namespaceSelector:
+    matchNames:
+      - {{ template "prometheus-pushgateway.namespace" . }}
+  selector:
+    matchLabels:
+      {{- include "prometheus-pushgateway.selectorLabels" . | nindent 6 }}
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/statefulset.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/statefulset.yaml
new file mode 100644
index 0000000000..8d486a306f
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/templates/statefulset.yaml
@@ -0,0 +1,49 @@
+{{- if .Values.runAsStatefulSet }}
+apiVersion: apps/v1
+kind: StatefulSet
+metadata:
+  labels:
+    {{- include "prometheus-pushgateway.defaultLabels" . | nindent 4 }}
+  name: {{ include "prometheus-pushgateway.fullname" . }}
+  namespace: {{ template "prometheus-pushgateway.namespace" . }}
+spec:
+  replicas: {{ .Values.replicaCount }}
+  serviceName: {{ include "prometheus-pushgateway.fullname" . }}
+  selector:
+    matchLabels:
+      {{- include "prometheus-pushgateway.selectorLabels" . | nindent 6 }}
+  template:
+    metadata:
+      {{- with .Values.podAnnotations }}
+      annotations:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      labels:
+        {{- include "prometheus-pushgateway.defaultLabels" . | nindent 8 }}
+    spec:
+      {{- include "prometheus-pushgateway.podSpec" . | nindent 6 }}
+  {{- if .Values.persistentVolume.enabled }}
+  volumeClaimTemplates:
+    - metadata:
+        {{- with .Values.persistentVolume.annotations }}
+        annotations:
+          {{- toYaml . | nindent 10 }}
+        {{- end }}
+        labels:
+          {{- include "prometheus-pushgateway.defaultLabels" . | nindent 10 }}
+        name: storage-volume
+      spec:
+        accessModes:
+          {{ toYaml .Values.persistentVolume.accessModes }}
+      {{- if .Values.persistentVolume.storageClass }}
+      {{- if (eq "-" .Values.persistentVolume.storageClass) }}
+        storageClassName: ""
+      {{- else }}
+        storageClassName: "{{ .Values.persistentVolume.storageClass }}"
+      {{- end }}
+      {{- end }}
+        resources:
+          requests:
+            storage: "{{ .Values.persistentVolume.size }}"
+  {{- end }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/values.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/values.yaml
new file mode 100644
index 0000000000..4bc5e14628
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/charts/prometheus-pushgateway/values.yaml
@@ -0,0 +1,377 @@
+# Default values for prometheus-pushgateway.
+# This is a YAML-formatted file.
+# Declare variables to be passed into your templates.
+
+# Provide a name in place of prometheus-pushgateway for `app:` labels
+nameOverride: ""
+
+# Provide a name to substitute for the full names of resources
+fullnameOverride: ""
+
+# Provide a namespace to substitude for the namespace on resources
+namespaceOverride: ""
+
+image:
+  repository: quay.io/prometheus/pushgateway
+  # if not set appVersion field from Chart.yaml is used
+  tag: ""
+  pullPolicy: IfNotPresent
+
+# Optional pod imagePullSecrets
+imagePullSecrets: []
+
+service:
+  type: ClusterIP
+  port: 9091
+  targetPort: 9091
+  # nodePort: 32100
+  portName: http
+
+  # Optional - Can be used for headless if value is "None"
+  clusterIP: ""
+
+  ipDualStack:
+    enabled: false
+    ipFamilies: ["IPv6", "IPv4"]
+    ipFamilyPolicy: "PreferDualStack"
+
+  loadBalancerIP: ""
+  loadBalancerSourceRanges: []
+
+# Whether to automatically mount a service account token into the pod
+automountServiceAccountToken: true
+
+# Optional pod annotations
+podAnnotations: {}
+
+# Optional pod labels
+podLabels: {}
+
+# Optional service annotations
+serviceAnnotations: {}
+
+# Optional service labels
+serviceLabels: {}
+
+# Optional serviceAccount labels
+serviceAccountLabels: {}
+
+# Optional persistentVolume labels
+persistentVolumeLabels: {}
+
+# Optional additional environment variables
+extraVars: []
+
+## Additional pushgateway container arguments
+##
+## example:
+## extraArgs:
+##  - --persistence.file=/data/pushgateway.data
+##  - --persistence.interval=5m
+extraArgs: []
+
+## Additional InitContainers to initialize the pod
+##
+extraInitContainers: []
+
+# Optional additional containers (sidecar)
+extraContainers: []
+  # - name: oAuth2-proxy
+  #   args:
+  #     - -https-address=:9092
+  #     - -upstream=http://localhost:9091
+  #     - -skip-auth-regex=^/metrics
+  #     - -openshift-delegate-urls={"/":{"group":"monitoring.coreos.com","resource":"prometheuses","verb":"get"}}
+  #   image: openshift/oauth-proxy:v1.1.0
+  #   ports:
+  #       - containerPort: 9092
+  #         name: proxy
+  #   resources:
+  #       limits:
+  #         memory: 16Mi
+  #       requests:
+  #         memory: 4Mi
+  #         cpu: 20m
+  #   volumeMounts:
+  #     - mountPath: /etc/prometheus/secrets/pushgateway-tls
+  #       name: secret-pushgateway-tls
+
+resources: {}
+  # We usually recommend not to specify default resources and to leave this as a conscious
+  # choice for the user. This also increases chances charts run on environments with little
+  # resources, such as Minikube. If you do want to specify resources, uncomment the following
+  # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
+  # limits:
+  #   cpu: 200m
+  #   memory: 50Mi
+  # requests:
+  #   cpu: 100m
+  #   memory: 30Mi
+
+# -- Sets web configuration
+# To enable basic authentication, provide basicAuthUsers as a map
+webConfiguration: {}
+  # basicAuthUsers:
+  #   username: password
+
+liveness:
+  enabled: true
+  probe:
+    httpGet:
+      path: /-/healthy
+      port: 9091
+    initialDelaySeconds: 10
+    timeoutSeconds: 10
+
+readiness:
+  enabled: true
+  probe:
+    httpGet:
+      path: /-/ready
+      port: 9091
+    initialDelaySeconds: 10
+    timeoutSeconds: 10
+
+serviceAccount:
+  # Specifies whether a ServiceAccount should be created
+  create: true
+  # The name of the ServiceAccount to use.
+  # If not set and create is true, a name is generated using the fullname template
+  name:
+
+## Configure ingress resource that allow you to access the
+## pushgateway installation. Set up the URL
+## ref: http://kubernetes.io/docs/user-guide/ingress/
+##
+ingress:
+  ## Enable Ingress.
+  ##
+  enabled: false
+  # AWS ALB requires path of /*
+  className: ""
+  path: /
+  pathType: ImplementationSpecific
+
+  ## Extra paths to prepend to every host configuration. This is useful when working with annotation based services.
+  extraPaths: []
+  # - path: /*
+  #   backend:
+  #     serviceName: ssl-redirect
+  #     servicePort: use-annotation
+
+  ## Annotations.
+  ##
+  # annotations:
+  #   kubernetes.io/ingress.class: nginx
+  #   kubernetes.io/tls-acme: 'true'
+
+  ## Hostnames.
+  ## Must be provided if Ingress is enabled.
+  ##
+  # hosts:
+  #   - pushgateway.domain.com
+
+  ## TLS configuration.
+  ## Secrets must be manually created in the namespace.
+  ##
+  # tls:
+  #   - secretName: pushgateway-tls
+  #     hosts:
+  #       - pushgateway.domain.com
+
+tolerations: []
+  # - effect: NoSchedule
+  #   operator: Exists
+
+## Node labels for pushgateway pod assignment
+## Ref: https://kubernetes.io/docs/user-guide/node-selection/
+##
+nodeSelector: {}
+
+replicaCount: 1
+
+hostAliases: []
+  # - ip: "127.0.0.1"
+  #   hostnames:
+  #   - "foo.local"
+  #   - "bar.local"
+  # - ip: "10.1.2.3"
+  #   hostnames:
+  #   - "foo.remote"
+  #   - "bar.remote"
+
+## When running more than one replica alongside with persistence, different volumes are needed
+## per replica, since sharing a `persistence.file` across replicas does not keep metrics synced.
+## For this purpose, you can enable the `runAsStatefulSet` to deploy the pushgateway as a
+## StatefulSet instead of as a Deployment.
+runAsStatefulSet: false
+
+## Security context to be added to push-gateway pods
+##
+securityContext:
+  fsGroup: 65534
+  runAsUser: 65534
+  runAsNonRoot: true
+
+## Security context to be added to push-gateway containers
+## Having a separate variable as securityContext differs for pods and containers.
+containerSecurityContext: {}
+#  allowPrivilegeEscalation: false
+#  readOnlyRootFilesystem: true
+#  runAsUser: 65534
+#  runAsNonRoot: true
+
+## Affinity for pod assignment
+## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity
+affinity: {}
+
+## Pod anti-affinity can prevent the scheduler from placing pushgateway replicas on the same node.
+## The value "soft" means that the scheduler should *prefer* to not schedule two replica pods onto the same node but no guarantee is provided.
+## The value "hard" means that the scheduler is *required* to not schedule two replica pods onto the same node.
+## The default value "" will disable pod anti-affinity so that no anti-affinity rules will be configured (unless set in `affinity`).
+##
+podAntiAffinity: ""
+
+## If anti-affinity is enabled sets the topologyKey to use for anti-affinity.
+## This can be changed to, for example, failure-domain.beta.kubernetes.io/zone
+##
+podAntiAffinityTopologyKey: kubernetes.io/hostname
+
+## Topology spread constraints for pods
+## Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/
+topologySpreadConstraints: []
+
+# Enable this if you're using https://github.com/coreos/prometheus-operator
+serviceMonitor:
+  enabled: false
+  namespace: monitoring
+
+  # telemetryPath: HTTP resource path from which to fetch metrics.
+  # Telemetry path, default /metrics, has to be prefixed accordingly if pushgateway sets a route prefix at start-up.
+  #
+  telemetryPath: "/metrics"
+
+  # Fallback to the prometheus default unless specified
+  # interval: 10s
+
+  ## scheme: HTTP scheme to use for scraping. Can be used with `tlsConfig` for example if using istio mTLS.
+  # scheme: ""
+
+  ## tlsConfig: TLS configuration to use when scraping the endpoint. For example if using istio mTLS.
+  ## Of type: https://github.com/coreos/prometheus-operator/blob/master/Documentation/api.md#tlsconfig
+  # tlsConfig: {}
+
+  # bearerTokenFile:
+  # Fallback to the prometheus default unless specified
+  # scrapeTimeout: 30s
+
+  ## Used to pass Labels that are used by the Prometheus installed in your cluster to select Service Monitors to work with
+  ## ref: https://github.com/coreos/prometheus-operator/blob/master/Documentation/api.md#prometheusspec
+  additionalLabels: {}
+
+  # Retain the job and instance labels of the metrics pushed to the Pushgateway
+  # [Scraping Pushgateway](https://github.com/prometheus/pushgateway#configure-the-pushgateway-as-a-target-to-scrape)
+  honorLabels: true
+
+  ## Metric relabel configs to apply to samples before ingestion.
+  ## [Metric Relabeling](https://prometheus.io/docs/prometheus/latest/configuration/configuration/#metric_relabel_configs)
+  metricRelabelings: []
+  # - action: keep
+  #   regex: 'kube_(daemonset|deployment|pod|namespace|node|statefulset).+'
+  #   sourceLabels: [__name__]
+
+  ## Relabel configs to apply to samples before ingestion.
+  ## [Relabeling](https://prometheus.io/docs/prometheus/latest/configuration/configuration/#relabel_config)
+  relabelings: []
+  # - sourceLabels: [__meta_kubernetes_pod_node_name]
+  #   separator: ;
+  #   regex: ^(.*)$
+  #   targetLabel: nodename
+  #   replacement: $1
+  #   action: replace
+
+# The values to set in the PodDisruptionBudget spec (minAvailable/maxUnavailable)
+# If not set then a PodDisruptionBudget will not be created
+podDisruptionBudget: {}
+
+priorityClassName:
+
+# Deployment Strategy type
+strategy:
+  type: Recreate
+
+persistentVolume:
+  ## If true, pushgateway will create/use a Persistent Volume Claim
+  ## If false, use emptyDir
+  ##
+  enabled: false
+
+  ## pushgateway data Persistent Volume access modes
+  ## Must match those of existing PV or dynamic provisioner
+  ## Ref: http://kubernetes.io/docs/user-guide/persistent-volumes/
+  ##
+  accessModes:
+    - ReadWriteOnce
+
+  ## pushgateway data Persistent Volume Claim annotations
+  ##
+  annotations: {}
+
+  ## pushgateway data Persistent Volume existing claim name
+  ## Requires pushgateway.persistentVolume.enabled: true
+  ## If defined, PVC must be created manually before volume will be bound
+  existingClaim: ""
+
+  ## pushgateway data Persistent Volume mount root path
+  ##
+  mountPath: /data
+
+  ## pushgateway data Persistent Volume size
+  ##
+  size: 2Gi
+
+  ## pushgateway data Persistent Volume Storage Class
+  ## If defined, storageClassName: <storageClass>
+  ## If set to "-", storageClassName: "", which disables dynamic provisioning
+  ## If undefined (the default) or set to null, no storageClassName spec is
+  ##   set, choosing the default provisioner.  (gp2 on AWS, standard on
+  ##   GKE, AWS & OpenStack)
+  ##
+  # storageClass: "-"
+
+  ## Subdirectory of pushgateway data Persistent Volume to mount
+  ## Useful if the volume's root directory is not empty
+  ##
+  subPath: ""
+
+extraVolumes: []
+  # - name: extra
+  #   emptyDir: {}
+extraVolumeMounts: []
+  # - name: extra
+  #   mountPath: /usr/share/extras
+  #   readOnly: true
+
+# Configuration for clusters with restrictive network policies in place:
+# - allowAll allows access to the PushGateway from any namespace
+# - customSelector is a list of pod/namespaceSelectors to allow access from
+# These options are mutually exclusive and the latter will take precedence.
+networkPolicy: {}
+  # allowAll: true
+  # customSelectors:
+  #   - namespaceSelector:
+  #       matchLabels:
+  #         type: admin
+  #   - podSelector:
+  #       matchLabels:
+  #         app: myapp
+
+# Array of extra K8s objects to deploy (evaluated as a template)
+# The value can hold an array of strings as well as objects
+extraManifests: []
+
+# Lifecycle hooks configuration
+lifecycle: {}
+#  preStop:
+#    exec:
+#      command: ["/bin/sh", "-c", "sleep 30"]
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/templates/NOTES.txt b/charts/kasten/k10/7.5.401/charts/prometheus/templates/NOTES.txt
new file mode 100644
index 0000000000..12e4acc5bf
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/templates/NOTES.txt
@@ -0,0 +1,113 @@
+The Prometheus server can be accessed via port {{ .Values.server.service.servicePort }} on the following DNS name from within your cluster:
+{{ template "prometheus.server.fullname" . }}.{{ .Release.Namespace }}.svc.cluster.local
+
+{{ if .Values.server.ingress.enabled -}}
+From outside the cluster, the server URL(s) are:
+{{- range .Values.server.ingress.hosts }}
+http://{{ tpl . $ }}
+{{- end }}
+{{- else }}
+Get the Prometheus server URL by running these commands in the same shell:
+{{- if contains "NodePort" .Values.server.service.type }}
+  export NODE_PORT=$(kubectl get --namespace {{ .Release.Namespace }} -o jsonpath="{.spec.ports[0].nodePort}" services {{ template "prometheus.server.fullname" . }})
+  export NODE_IP=$(kubectl get nodes --namespace {{ .Release.Namespace }} -o jsonpath="{.items[0].status.addresses[0].address}")
+  echo http://$NODE_IP:$NODE_PORT
+{{- else if contains "LoadBalancer" .Values.server.service.type }}
+  NOTE: It may take a few minutes for the LoadBalancer IP to be available.
+        You can watch the status of by running 'kubectl get svc --namespace {{ .Release.Namespace }} -w {{ template "prometheus.server.fullname" . }}'
+
+  export SERVICE_IP=$(kubectl get svc --namespace {{ .Release.Namespace }} {{ template "prometheus.server.fullname" . }} -o jsonpath='{.status.loadBalancer.ingress[0].ip}')
+  echo http://$SERVICE_IP:{{ .Values.server.service.servicePort }}
+{{- else if contains "ClusterIP"  .Values.server.service.type }}
+  export POD_NAME=$(kubectl get pods --namespace {{ .Release.Namespace }} -l "app.kubernetes.io/name={{ include "prometheus.name" . }},app.kubernetes.io/instance={{ .Release.Name }}" -o jsonpath="{.items[0].metadata.name}")
+  kubectl --namespace {{ .Release.Namespace }} port-forward $POD_NAME 9090
+{{- end }}
+
+
+{{- if .Values.server.persistentVolume.enabled }}
+{{- else }}
+#################################################################################
+######   WARNING: Persistence is disabled!!! You will lose your data when   #####
+######            the Server pod is terminated.                             #####
+#################################################################################
+{{- end }}
+{{- end }}
+
+{{ if .Values.alertmanager.enabled }}
+The Prometheus alertmanager can be accessed via port {{ .Values.alertmanager.service.port }} on the following DNS name from within your cluster:
+{{ template "prometheus.alertmanager.fullname" . }}.{{ .Release.Namespace }}.svc.cluster.local
+
+{{ if .Values.alertmanager.ingress.enabled -}}
+From outside the cluster, the alertmanager URL(s) are:
+{{- range .Values.alertmanager.ingress.hosts }}
+http://{{ . }}
+{{- end }}
+{{- else }}
+Get the Alertmanager URL by running these commands in the same shell:
+{{- if contains "NodePort" .Values.alertmanager.service.type }}
+  export NODE_PORT=$(kubectl get --namespace {{ .Release.Namespace }} -o jsonpath="{.spec.ports[0].nodePort}" services {{ template "prometheus.alertmanager.fullname" . }})
+  export NODE_IP=$(kubectl get nodes --namespace {{ .Release.Namespace }} -o jsonpath="{.items[0].status.addresses[0].address}")
+  echo http://$NODE_IP:$NODE_PORT
+{{- else if contains "LoadBalancer" .Values.alertmanager.service.type }}
+  NOTE: It may take a few minutes for the LoadBalancer IP to be available.
+        You can watch the status of by running 'kubectl get svc --namespace {{ .Release.Namespace }} -w {{ template "prometheus.alertmanager.fullname" . }}'
+
+  export SERVICE_IP=$(kubectl get svc --namespace {{ .Release.Namespace }} {{ template "prometheus.alertmanager.fullname" . }} -o jsonpath='{.status.loadBalancer.ingress[0].ip}')
+  echo http://$SERVICE_IP:{{ .Values.alertmanager.service.servicePort }}
+{{- else if contains "ClusterIP"  .Values.alertmanager.service.type }}
+  export POD_NAME=$(kubectl get pods --namespace {{ .Release.Namespace }} -l "app.kubernetes.io/name={{ include "alertmanager.name" .Subcharts.alertmanager }},app.kubernetes.io/instance={{ .Release.Name }}" -o jsonpath="{.items[0].metadata.name}")
+  kubectl --namespace {{ .Release.Namespace }} port-forward $POD_NAME 9093
+{{- end }}
+{{- end }}
+
+{{- if .Values.alertmanager.persistence.enabled }}
+{{- else }}
+#################################################################################
+######   WARNING: Persistence is disabled!!! You will lose your data when   #####
+######            the AlertManager pod is terminated.                       #####
+#################################################################################
+{{- end }}
+{{- end }}
+
+{{- if (index .Values "prometheus-node-exporter" "enabled") }}
+#################################################################################
+######   WARNING: Pod Security Policy has been disabled by default since    #####
+######            it deprecated after k8s 1.25+. use                        #####
+######            (index .Values "prometheus-node-exporter" "rbac"          #####
+###### .          "pspEnabled") with (index .Values                         #####
+######            "prometheus-node-exporter" "rbac" "pspAnnotations")       #####
+######            in case you still need it.                                #####
+#################################################################################
+{{- end }}
+
+{{ if (index .Values "prometheus-pushgateway" "enabled") }}
+The Prometheus PushGateway can be accessed via port {{ index .Values "prometheus-pushgateway" "service" "port" }} on the following DNS name from within your cluster:
+{{ include "prometheus-pushgateway.fullname" (index .Subcharts "prometheus-pushgateway") }}.{{ .Release.Namespace }}.svc.cluster.local
+
+{{ if (index .Values "prometheus-pushgateway" "ingress" "enabled") -}}
+From outside the cluster, the pushgateway URL(s) are:
+{{- range (index .Values "prometheus-pushgateway" "ingress" "hosts") }}
+http://{{ . }}
+{{- end }}
+{{- else }}
+Get the PushGateway URL by running these commands in the same shell:
+{{- $pushgateway_svc_type := index .Values "prometheus-pushgateway" "service" "type" -}}
+{{- if contains "NodePort" $pushgateway_svc_type }}
+  export NODE_PORT=$(kubectl get --namespace {{ .Release.Namespace }} -o jsonpath="{.spec.ports[0].nodePort}" services {{ include "prometheus-pushgateway.fullname" (index .Subcharts "prometheus-pushgateway") }})
+  export NODE_IP=$(kubectl get nodes --namespace {{ .Release.Namespace }} -o jsonpath="{.items[0].status.addresses[0].address}")
+  echo http://$NODE_IP:$NODE_PORT
+{{- else if contains "LoadBalancer" $pushgateway_svc_type }}
+  NOTE: It may take a few minutes for the LoadBalancer IP to be available.
+        You can watch the status of by running 'kubectl get svc --namespace {{ .Release.Namespace }} -w {{ include "prometheus-pushgateway.fullname" (index .Subcharts "prometheus-pushgateway") }}'
+
+  export SERVICE_IP=$(kubectl get svc --namespace {{ .Release.Namespace }} {{ include "prometheus-pushgateway.fullname" (index .Subcharts "prometheus-pushgateway") }} -o jsonpath='{.status.loadBalancer.ingress[0].ip}')
+  echo http://$SERVICE_IP:{{ index .Values "prometheus-pushgateway" "service" "port" }}
+{{- else if contains "ClusterIP" $pushgateway_svc_type }}
+  export POD_NAME=$(kubectl get pods --namespace {{ .Release.Namespace }} -l "app={{ include "prometheus.name" (index .Subcharts "prometheus-pushgateway") }},component=pushgateway" -o jsonpath="{.items[0].metadata.name}")
+  kubectl --namespace {{ .Release.Namespace }} port-forward $POD_NAME 9091
+{{- end }}
+{{- end }}
+{{- end }}
+
+For more information on running Prometheus, visit:
+https://prometheus.io/
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/templates/_helpers.tpl b/charts/kasten/k10/7.5.401/charts/prometheus/templates/_helpers.tpl
new file mode 100644
index 0000000000..6704be2751
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/templates/_helpers.tpl
@@ -0,0 +1,237 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Expand the name of the chart.
+*/}}
+{{- define "prometheus.name" -}}
+{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Create chart name and version as used by the chart label.
+*/}}
+{{- define "prometheus.chart" -}}
+{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Create labels for prometheus
+*/}}
+{{- define "prometheus.common.matchLabels" -}}
+app.kubernetes.io/name: {{ include "prometheus.name" . }}
+app.kubernetes.io/instance: {{ .Release.Name }}
+{{- end -}}
+
+{{/*
+Create unified labels for prometheus components
+*/}}
+{{- define "prometheus.common.metaLabels" -}}
+app.kubernetes.io/version: {{ .Chart.AppVersion }}
+helm.sh/chart: {{ include "prometheus.chart" . }}
+app.kubernetes.io/part-of: {{ include "prometheus.name" . }}
+{{- with .Values.commonMetaLabels}}
+{{ toYaml . }}
+{{- end }}
+{{- end -}}
+
+{{- define "prometheus.server.labels" -}}
+{{ include "prometheus.server.matchLabels" . }}
+{{ include "prometheus.common.metaLabels" . }}
+{{- end -}}
+
+{{- define "prometheus.server.matchLabels" -}}
+app.kubernetes.io/component: {{ .Values.server.name }}
+{{ include "prometheus.common.matchLabels" . }}
+{{- end -}}
+
+{{/*
+Create a default fully qualified app name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+*/}}
+{{- define "prometheus.fullname" -}}
+{{- if .Values.fullnameOverride -}}
+{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" -}}
+{{- else -}}
+{{- $name := default .Chart.Name .Values.nameOverride -}}
+{{- if contains $name .Release.Name -}}
+{{- .Release.Name | trunc 63 | trimSuffix "-" -}}
+{{- else -}}
+{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Create a fully qualified ClusterRole name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+*/}}
+{{- define "prometheus.clusterRoleName" -}}
+{{- if .Values.server.clusterRoleNameOverride -}}
+{{ .Values.server.clusterRoleNameOverride | trunc 63 | trimSuffix "-" }}
+{{- else -}}
+{{ include "prometheus.server.fullname" . }}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Create a fully qualified alertmanager name for communicating and check to ensure that `alertmanager` exists before trying to use it with the user via NOTES.txt
+*/}}
+{{- define "prometheus.alertmanager.fullname" -}}
+{{- if .Subcharts.alertmanager -}}
+{{- template "alertmanager.fullname" .Subcharts.alertmanager -}}
+{{- else -}}
+{{- "alertmanager not found" -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Create a fully qualified Prometheus server name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+*/}}
+{{- define "prometheus.server.fullname" -}}
+{{- if .Values.server.fullnameOverride -}}
+{{- .Values.server.fullnameOverride | trunc 63 | trimSuffix "-" -}}
+{{- else -}}
+{{- $name := default .Chart.Name .Values.nameOverride -}}
+{{- if contains $name .Release.Name -}}
+{{- printf "%s-%s" .Release.Name .Values.server.name | trunc 63 | trimSuffix "-" -}}
+{{- else -}}
+{{- printf "%s-%s-%s" .Release.Name $name .Values.server.name | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Get KubeVersion removing pre-release information.
+*/}}
+{{- define "prometheus.kubeVersion" -}}
+  {{- default .Capabilities.KubeVersion.Version (regexFind "v[0-9]+\\.[0-9]+\\.[0-9]+" .Capabilities.KubeVersion.Version) -}}
+{{- end -}}
+
+{{/*
+Return the appropriate apiVersion for deployment.
+*/}}
+{{- define "prometheus.deployment.apiVersion" -}}
+{{- print "apps/v1" -}}
+{{- end -}}
+
+{{/*
+Return the appropriate apiVersion for networkpolicy.
+*/}}
+{{- define "prometheus.networkPolicy.apiVersion" -}}
+{{- print "networking.k8s.io/v1" -}}
+{{- end -}}
+
+{{/*
+Return the appropriate apiVersion for poddisruptionbudget.
+*/}}
+{{- define "prometheus.podDisruptionBudget.apiVersion" -}}
+{{- if .Capabilities.APIVersions.Has "policy/v1" }}
+{{- print "policy/v1" -}}
+{{- else -}}
+{{- print "policy/v1beta1" -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return the appropriate apiVersion for rbac.
+*/}}
+{{- define "rbac.apiVersion" -}}
+{{- if .Capabilities.APIVersions.Has "rbac.authorization.k8s.io/v1" }}
+{{- print "rbac.authorization.k8s.io/v1" -}}
+{{- else -}}
+{{- print "rbac.authorization.k8s.io/v1beta1" -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return the appropriate apiVersion for ingress.
+*/}}
+{{- define "ingress.apiVersion" -}}
+  {{- if and (.Capabilities.APIVersions.Has "networking.k8s.io/v1") (semverCompare ">= 1.19.x" (include "prometheus.kubeVersion" .)) -}}
+      {{- print "networking.k8s.io/v1" -}}
+  {{- else if .Capabilities.APIVersions.Has "networking.k8s.io/v1beta1" -}}
+    {{- print "networking.k8s.io/v1beta1" -}}
+  {{- else -}}
+    {{- print "extensions/v1beta1" -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Return if ingress is stable.
+*/}}
+{{- define "ingress.isStable" -}}
+  {{- eq (include "ingress.apiVersion" .) "networking.k8s.io/v1" -}}
+{{- end -}}
+
+{{/*
+Return if ingress supports ingressClassName.
+*/}}
+{{- define "ingress.supportsIngressClassName" -}}
+  {{- or (eq (include "ingress.isStable" .) "true") (and (eq (include "ingress.apiVersion" .) "networking.k8s.io/v1beta1") (semverCompare ">= 1.18.x" (include "prometheus.kubeVersion" .))) -}}
+{{- end -}}
+
+{{/*
+Return if ingress supports pathType.
+*/}}
+{{- define "ingress.supportsPathType" -}}
+  {{- or (eq (include "ingress.isStable" .) "true") (and (eq (include "ingress.apiVersion" .) "networking.k8s.io/v1beta1") (semverCompare ">= 1.18.x" (include "prometheus.kubeVersion" .))) -}}
+{{- end -}}
+
+{{/*
+Create the name of the service account to use for the server component
+*/}}
+{{- define "prometheus.serviceAccountName.server" -}}
+{{- if .Values.serviceAccounts.server.create -}}
+    {{ default (include "prometheus.server.fullname" .) .Values.serviceAccounts.server.name }}
+{{- else -}}
+    {{ default "default" .Values.serviceAccounts.server.name }}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Define the prometheus.namespace template if set with forceNamespace or .Release.Namespace is set
+*/}}
+{{- define "prometheus.namespace" -}}
+  {{- default .Release.Namespace .Values.forceNamespace -}}
+{{- end }}
+
+{{/*
+Define template prometheus.namespaces producing a list of namespaces to monitor
+*/}}
+{{- define "prometheus.namespaces" -}}
+{{- $namespaces := list }}
+{{- if and .Values.rbac.create .Values.server.useExistingClusterRoleName }}
+  {{- if .Values.server.namespaces -}}
+    {{- range $ns := join "," .Values.server.namespaces | split "," }}
+      {{- $namespaces = append $namespaces (tpl $ns $) }}
+    {{- end -}}
+  {{- end -}}
+  {{- if .Values.server.releaseNamespace -}}
+    {{- $namespaces = append $namespaces (include "prometheus.namespace" .) }}
+  {{- end -}}
+{{- end -}}
+{{ mustToJson $namespaces }}
+{{- end -}}
+
+{{/*
+Define prometheus.server.remoteWrite producing a list of remoteWrite configurations with URL templating
+*/}}
+{{- define "prometheus.server.remoteWrite" -}}
+{{- $remoteWrites := list }}
+{{- range $remoteWrite := .Values.server.remoteWrite }}
+  {{- $remoteWrites = tpl $remoteWrite.url $ | set $remoteWrite "url" | append $remoteWrites }}
+{{- end -}}
+{{ toYaml $remoteWrites }}
+{{- end -}}
+
+{{/*
+Define prometheus.server.remoteRead producing a list of remoteRead configurations with URL templating
+*/}}
+{{- define "prometheus.server.remoteRead" -}}
+{{- $remoteReads := list }}
+{{- range $remoteRead := .Values.server.remoteRead }}
+  {{- $remoteReads = tpl $remoteRead.url $ | set $remoteRead "url" | append $remoteReads }}
+{{- end -}}
+{{ toYaml $remoteReads }}
+{{- end -}}
+
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/templates/clusterrole.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/templates/clusterrole.yaml
new file mode 100644
index 0000000000..25e3cec45d
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/templates/clusterrole.yaml
@@ -0,0 +1,56 @@
+{{- if and .Values.rbac.create (empty .Values.server.useExistingClusterRoleName) -}}
+apiVersion: {{ template "rbac.apiVersion" . }}
+kind: ClusterRole
+metadata:
+  labels:
+    {{- include "prometheus.server.labels" . | nindent 4 }}
+  name: {{ include "prometheus.clusterRoleName" . }}
+rules:
+{{- if and .Values.podSecurityPolicy.enabled (.Capabilities.APIVersions.Has "policy/v1beta1/PodSecurityPolicy") }}
+  - apiGroups:
+    - extensions
+    resources:
+    - podsecuritypolicies
+    verbs:
+    - use
+    resourceNames:
+    - {{ template "prometheus.server.fullname" . }}
+{{- end }}
+  - apiGroups:
+      - ""
+    resources:
+      - nodes
+      - nodes/proxy
+      - nodes/metrics
+      - services
+      - endpoints
+      - pods
+      - ingresses
+      - configmaps
+    verbs:
+      - get
+      - list
+      - watch
+  - apiGroups:
+      - "extensions"
+      - "networking.k8s.io"
+    resources:
+      - ingresses/status
+      - ingresses
+    verbs:
+      - get
+      - list
+      - watch
+  - apiGroups:
+      - "discovery.k8s.io"
+    resources:
+      - endpointslices
+    verbs:
+      - get
+      - list
+      - watch
+  - nonResourceURLs:
+      - "/metrics"
+    verbs:
+      - get
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/templates/clusterrolebinding.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/templates/clusterrolebinding.yaml
new file mode 100644
index 0000000000..28f4bda776
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/templates/clusterrolebinding.yaml
@@ -0,0 +1,16 @@
+{{- if and .Values.rbac.create (empty .Values.server.namespaces) (empty .Values.server.useExistingClusterRoleName) -}}
+apiVersion: {{ template "rbac.apiVersion" . }}
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    {{- include "prometheus.server.labels" . | nindent 4 }}
+  name: {{ include "prometheus.clusterRoleName" . }}
+subjects:
+  - kind: ServiceAccount
+    name: {{ template "prometheus.serviceAccountName.server" . }}
+    namespace: {{ include "prometheus.namespace" . }}
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: {{ include "prometheus.clusterRoleName" . }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/templates/cm.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/templates/cm.yaml
new file mode 100644
index 0000000000..8713bd1ea2
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/templates/cm.yaml
@@ -0,0 +1,103 @@
+{{- if (empty .Values.server.configMapOverrideName) -}}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+{{- with .Values.server.configMapAnnotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+{{- end }}
+  labels:
+    {{- include "prometheus.server.labels" . | nindent 4 }}
+    {{- with .Values.server.extraConfigmapLabels }}
+    {{- toYaml . | nindent 4 }}
+    {{- end }}
+  name: {{ template "prometheus.server.fullname" . }}
+  namespace: {{ include "prometheus.namespace" . }}
+data:
+  allow-snippet-annotations: "false"
+{{- $root := . -}}
+{{- range $key, $value := .Values.ruleFiles }}
+  {{ $key }}: {{- toYaml $value | indent 2 }}
+{{- end }}
+{{- range $key, $value := .Values.serverFiles }}
+  {{ $key }}: |
+{{- if eq $key "prometheus.yml" }}
+    global:
+{{ $root.Values.server.global | toYaml | trimSuffix "\n" | indent 6 }}
+{{- if $root.Values.server.remoteWrite }}
+    remote_write:
+{{- include "prometheus.server.remoteWrite" $root | nindent 4 }}
+{{- end }}
+{{- if $root.Values.server.remoteRead }}
+    remote_read:
+{{- include "prometheus.server.remoteRead" $root | nindent 4 }}
+{{- end }}
+{{- if or $root.Values.server.tsdb $root.Values.server.exemplars }}
+    storage:
+{{- if $root.Values.server.tsdb }}
+      tsdb:
+{{ $root.Values.server.tsdb | toYaml | indent 8 }}
+{{- end }}
+{{- if $root.Values.server.exemplars }}
+      exemplars:
+{{ $root.Values.server.exemplars | toYaml | indent 8 }}
+{{- end }}
+{{- end }}
+{{- if $root.Values.scrapeConfigFiles }}
+    scrape_config_files:
+{{ toYaml $root.Values.scrapeConfigFiles | indent 4 }}
+{{- end }}
+{{- end }}
+{{- if eq $key "alerts" }}
+{{- if and (not (empty $value)) (empty $value.groups) }}
+    groups:
+{{- range $ruleKey, $ruleValue := $value }}
+    - name: {{ $ruleKey -}}.rules
+      rules:
+{{ $ruleValue | toYaml | trimSuffix "\n" | indent 6 }}
+{{- end }}
+{{- else }}
+{{ toYaml $value | indent 4 }}
+{{- end }}
+{{- else }}
+{{ toYaml $value | default "{}" | indent 4 }}
+{{- end }}
+{{- if eq $key "prometheus.yml" -}}
+{{- if $root.Values.extraScrapeConfigs }}
+{{ tpl $root.Values.extraScrapeConfigs $root | indent 4 }}
+{{- end -}}
+{{- if or ($root.Values.alertmanager.enabled) ($root.Values.server.alertmanagers) }}
+    alerting:
+{{- if $root.Values.alertRelabelConfigs }}
+{{ $root.Values.alertRelabelConfigs | toYaml  | trimSuffix "\n" | indent 6 }}
+{{- end }}
+      alertmanagers:
+{{- if $root.Values.server.alertmanagers }}
+{{ toYaml $root.Values.server.alertmanagers | indent 8 }}
+{{- else }}
+      - kubernetes_sd_configs:
+          - role: pod
+        tls_config:
+          ca_file: /var/run/secrets/kubernetes.io/serviceaccount/ca.crt
+        bearer_token_file: /var/run/secrets/kubernetes.io/serviceaccount/token
+        {{- if $root.Values.alertmanager.prefixURL }}
+        path_prefix: {{ $root.Values.alertmanager.prefixURL }}
+        {{- end }}
+        relabel_configs:
+        - source_labels: [__meta_kubernetes_namespace]
+          regex: {{ $root.Release.Namespace }}
+          action: keep
+        - source_labels: [__meta_kubernetes_pod_label_app_kubernetes_io_instance]
+          regex: {{ $root.Release.Name }}
+          action: keep
+        - source_labels: [__meta_kubernetes_pod_label_app_kubernetes_io_name]
+          regex: {{ default "alertmanager" $root.Values.alertmanager.nameOverride | trunc 63 | trimSuffix "-" }}
+          action: keep
+        - source_labels: [__meta_kubernetes_pod_container_port_number]
+          regex: "9093"
+          action: keep
+{{- end -}}
+{{- end -}}
+{{- end -}}
+{{- end -}}
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/templates/deploy.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/templates/deploy.yaml
new file mode 100644
index 0000000000..f0ccb1492b
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/templates/deploy.yaml
@@ -0,0 +1,412 @@
+{{- if not .Values.server.statefulSet.enabled -}}
+apiVersion: {{ template "prometheus.deployment.apiVersion" . }}
+kind: Deployment
+metadata:
+{{- if .Values.server.deploymentAnnotations }}
+  annotations:
+    {{ toYaml .Values.server.deploymentAnnotations | nindent 4 }}
+{{- end }}
+  labels:
+    {{- include "prometheus.server.labels" . | nindent 4 }}
+  name: {{ template "prometheus.server.fullname" . }}
+  namespace: {{ include "prometheus.namespace" . }}
+spec:
+  selector:
+    matchLabels:
+      {{- include "prometheus.server.matchLabels" . | nindent 6 }}
+  replicas: {{ .Values.server.replicaCount }}
+  revisionHistoryLimit: {{ .Values.server.revisionHistoryLimit }}
+  {{- if .Values.server.strategy }}
+  strategy:
+{{ toYaml .Values.server.strategy | trim | indent 4 }}
+    {{ if eq .Values.server.strategy.type "Recreate" }}rollingUpdate: null{{ end }}
+{{- end }}
+  template:
+    metadata:
+    {{- if .Values.server.podAnnotations }}
+      annotations:
+        {{ toYaml .Values.server.podAnnotations | nindent 8 }}
+    {{- end }}
+      labels:
+        {{- include "prometheus.server.labels" . | nindent 8 }}
+        {{- if .Values.server.podLabels}}
+        {{ toYaml .Values.server.podLabels | nindent 8 }}
+        {{- end}}
+        {{- if ( .Values.global | default dict ).azMarketPlace }}
+        azure-extensions-usage-release-identifier: {{.Release.Name}}
+        {{- end }}
+    spec:
+{{- if .Values.server.priorityClassName }}
+      priorityClassName: "{{ .Values.server.priorityClassName }}"
+{{- end }}
+{{- if .Values.server.schedulerName }}
+      schedulerName: "{{ .Values.server.schedulerName }}"
+{{- end }}
+{{- if semverCompare ">=1.13-0" .Capabilities.KubeVersion.GitVersion }}
+      {{- if or (.Values.server.enableServiceLinks) (eq (.Values.server.enableServiceLinks | toString) "<nil>") }}
+      enableServiceLinks: true
+      {{- else }}
+      enableServiceLinks: false
+      {{- end }}
+{{- end }}
+      serviceAccountName: {{ template "prometheus.serviceAccountName.server" . }}
+{{- if kindIs "bool" .Values.server.automountServiceAccountToken }}
+      automountServiceAccountToken: {{ .Values.server.automountServiceAccountToken }}
+{{- end }}
+      {{- if .Values.server.extraInitContainers }}
+      initContainers:
+{{ toYaml .Values.server.extraInitContainers | indent 8 }}
+      {{- end }}
+      containers:
+        {{- if .Values.configmapReload.prometheus.enabled }}
+        - name: {{ template "prometheus.name" . }}-{{ .Values.server.name }}-{{ .Values.configmapReload.prometheus.name }}
+          {{- if .Values.configmapReload.prometheus.image.digest }}
+          image: "{{ .Values.configmapReload.prometheus.image.repository }}@{{ .Values.configmapReload.prometheus.image.digest }}"
+          {{- else }}
+          image: "{{ .Values.configmapReload.prometheus.image.repository }}:{{ .Values.configmapReload.prometheus.image.tag }}"
+          {{- end }}
+          imagePullPolicy: "{{ .Values.configmapReload.prometheus.image.pullPolicy }}"
+          {{- with .Values.configmapReload.prometheus.containerSecurityContext }}
+          securityContext:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          args:
+            - --watched-dir=/etc/config
+          {{- $default_url := "http://127.0.0.1:9090/-/reload" }}
+          {{- with .Values.server.prefixURL }}
+          {{- $default_url = printf "http://127.0.0.1:9090%s/-/reload" . }}
+          {{- end }}
+          {{- if .Values.configmapReload.prometheus.containerPort }}
+            - --listen-address=0.0.0.0:{{ .Values.configmapReload.prometheus.containerPort }}
+          {{- end }}
+            - --reload-url={{ default $default_url .Values.configmapReload.reloadUrl }}
+          {{- range $key, $value := .Values.configmapReload.prometheus.extraArgs }}
+            {{- if $value }}
+            - --{{ $key }}={{ $value }}
+            {{- else }}
+            - --{{ $key }}
+            {{- end }}
+          {{- end }}
+          {{- range .Values.configmapReload.prometheus.extraVolumeDirs }}
+            - --watched-dir={{ . }}
+          {{- end }}
+          {{- with .Values.configmapReload.env }}
+          env:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          {{- if .Values.configmapReload.prometheus.containerPort }}
+          ports:
+            - containerPort: {{ .Values.configmapReload.prometheus.containerPort }}
+              {{- if .Values.configmapReload.prometheus.containerPortName }}
+              name: {{ .Values.configmapReload.prometheus.containerPortName }}
+              {{- end }}
+          {{- end }}
+          {{- with .Values.configmapReload.prometheus.livenessProbe }}
+          livenessProbe:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          {{- with .Values.configmapReload.prometheus.readinessProbe }}
+          readinessProbe:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          {{- if .Values.configmapReload.prometheus.startupProbe.enabled }}
+          {{- $startupProbe := omit .Values.configmapReload.prometheus.startupProbe "enabled" }}
+          startupProbe:
+            {{- toYaml $startupProbe | nindent 12 }}
+          {{- end }}
+          {{- with .Values.configmapReload.prometheus.resources }}
+          resources:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          volumeMounts:
+            - name: config-volume
+              mountPath: /etc/config
+              readOnly: true
+          {{- range .Values.configmapReload.prometheus.extraConfigmapMounts }}
+            - name: {{ $.Values.configmapReload.prometheus.name }}-{{ .name }}
+              mountPath: {{ .mountPath }}
+              subPath: {{ .subPath }}
+              readOnly: {{ .readOnly }}
+          {{- end }}
+          {{- with .Values.configmapReload.prometheus.extraVolumeMounts }}
+            {{ toYaml . | nindent 12 }}
+          {{- end }}
+        {{- end }}
+
+        - name: {{ template "prometheus.name" . }}-{{ .Values.server.name }}
+          {{- if .Values.server.image.digest }}
+          image: "{{ .Values.server.image.repository }}@{{ .Values.server.image.digest }}"
+          {{- else }}
+          image: "{{ .Values.server.image.repository }}:{{ .Values.server.image.tag | default .Chart.AppVersion}}"
+          {{- end }}
+          imagePullPolicy: "{{ .Values.server.image.pullPolicy }}"
+          {{- with .Values.server.command }}
+          command:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          {{- if .Values.server.env }}
+          env:
+{{ toYaml .Values.server.env | indent 12}}
+          {{- end }}
+          args:
+        {{- if .Values.server.defaultFlagsOverride }}
+        {{ toYaml .Values.server.defaultFlagsOverride | nindent 12}}
+        {{- else }}
+          {{- if .Values.server.retention }}
+            - --storage.tsdb.retention.time={{ .Values.server.retention }}
+          {{- end }}
+          {{- if .Values.server.retentionSize }}
+            - --storage.tsdb.retention.size={{ .Values.server.retentionSize }}
+          {{- end }}
+            - --config.file={{ .Values.server.configPath }}
+            {{- if .Values.server.storagePath }}
+            - --storage.tsdb.path={{ .Values.server.storagePath }}
+            {{- else }}
+            - --storage.tsdb.path={{ .Values.server.persistentVolume.mountPath }}
+            {{- end }}
+            - --web.console.libraries=/etc/prometheus/console_libraries
+            - --web.console.templates=/etc/prometheus/consoles
+          {{- range .Values.server.extraFlags }}
+            - --{{ . }}
+          {{- end }}
+          {{- range $key, $value := .Values.server.extraArgs }}
+            {{- if $value }}
+            - --{{ $key }}={{ $value }}
+            {{- else }}
+            - --{{ $key }}
+            {{- end }}
+          {{- end }}
+          {{- if .Values.server.prefixURL }}
+            - --web.route-prefix={{ .Values.server.prefixURL }}
+          {{- end }}
+          {{- if .Values.server.baseURL }}
+            - --web.external-url={{ .Values.server.baseURL }}
+          {{- end }}
+        {{- end }}
+          ports:
+            - containerPort: 9090
+          {{- if .Values.server.portName }}
+              name: {{ .Values.server.portName }}
+          {{- end }}
+          {{- if .Values.server.hostPort }}
+              hostPort: {{ .Values.server.hostPort }}
+          {{- end }}
+          readinessProbe:
+            {{- if not .Values.server.tcpSocketProbeEnabled }}
+            httpGet:
+              path: {{ .Values.server.prefixURL }}/-/ready
+              port: 9090
+              scheme: {{ .Values.server.probeScheme }}
+              {{- with .Values.server.probeHeaders }}
+              httpHeaders:
+{{- toYaml . | nindent 14 }}
+              {{- end }}
+            {{- else }}
+            tcpSocket:
+              port: 9090
+            {{- end }}
+            initialDelaySeconds: {{ .Values.server.readinessProbeInitialDelay }}
+            periodSeconds: {{ .Values.server.readinessProbePeriodSeconds }}
+            timeoutSeconds: {{ .Values.server.readinessProbeTimeout }}
+            failureThreshold: {{ .Values.server.readinessProbeFailureThreshold }}
+            successThreshold: {{ .Values.server.readinessProbeSuccessThreshold }}
+          livenessProbe:
+            {{- if not .Values.server.tcpSocketProbeEnabled }}
+            httpGet:
+              path: {{ .Values.server.prefixURL }}/-/healthy
+              port: 9090
+              scheme: {{ .Values.server.probeScheme }}
+              {{- with .Values.server.probeHeaders }}
+              httpHeaders:
+{{- toYaml . | nindent 14 }}
+              {{- end }}
+            {{- else }}
+            tcpSocket:
+              port: 9090
+            {{- end }}
+            initialDelaySeconds: {{ .Values.server.livenessProbeInitialDelay }}
+            periodSeconds: {{ .Values.server.livenessProbePeriodSeconds }}
+            timeoutSeconds: {{ .Values.server.livenessProbeTimeout }}
+            failureThreshold: {{ .Values.server.livenessProbeFailureThreshold }}
+            successThreshold: {{ .Values.server.livenessProbeSuccessThreshold }}
+          {{- if .Values.server.startupProbe.enabled }}
+          startupProbe:
+            {{- if not .Values.server.tcpSocketProbeEnabled }}
+            httpGet:
+              path: {{ .Values.server.prefixURL }}/-/healthy
+              port: 9090
+              scheme: {{ .Values.server.probeScheme }}
+              {{- if .Values.server.probeHeaders }}
+              httpHeaders:
+              {{- range .Values.server.probeHeaders}}
+              - name: {{ .name }}
+                value: {{ .value }}
+              {{- end }}
+              {{- end }}
+            {{- else }}
+            tcpSocket:
+              port: 9090
+            {{- end }}
+            failureThreshold: {{ .Values.server.startupProbe.failureThreshold }}
+            periodSeconds: {{ .Values.server.startupProbe.periodSeconds }}
+            timeoutSeconds: {{ .Values.server.startupProbe.timeoutSeconds }}
+          {{- end }}
+          {{- with .Values.server.resources }}
+          resources:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          volumeMounts:
+            - name: config-volume
+              mountPath: /etc/config
+            - name: storage-volume
+              mountPath: {{ .Values.server.persistentVolume.mountPath }}
+              subPath: "{{ .Values.server.persistentVolume.subPath }}"
+          {{- range .Values.server.extraHostPathMounts }}
+            - name: {{ .name }}
+              mountPath: {{ .mountPath }}
+              subPath: {{ .subPath }}
+              readOnly: {{ .readOnly }}
+          {{- end }}
+          {{- range .Values.server.extraConfigmapMounts }}
+            - name: {{ $.Values.server.name }}-{{ .name }}
+              mountPath: {{ .mountPath }}
+              subPath: {{ .subPath }}
+              readOnly: {{ .readOnly }}
+          {{- end }}
+          {{- range .Values.server.extraSecretMounts }}
+            - name: {{ .name }}
+              mountPath: {{ .mountPath }}
+              subPath: {{ .subPath }}
+              readOnly: {{ .readOnly }}
+          {{- end }}
+          {{- if .Values.server.extraVolumeMounts }}
+            {{ toYaml .Values.server.extraVolumeMounts | nindent 12 }}
+          {{- end }}
+          {{- with .Values.server.containerSecurityContext }}
+          securityContext:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+      {{- if .Values.server.sidecarContainers }}
+        {{- range $name, $spec :=  .Values.server.sidecarContainers }}
+        - name: {{ $name }}
+          {{- if kindIs "string" $spec }}
+            {{- tpl $spec $ | nindent 10 }}
+          {{- else }}
+            {{- toYaml $spec | nindent 10 }}
+          {{- end }}
+        {{- end }}
+      {{- end }}
+    {{- if .Values.server.hostNetwork }}
+      hostNetwork: true
+      dnsPolicy: ClusterFirstWithHostNet
+    {{- else }}
+      dnsPolicy: {{ .Values.server.dnsPolicy }}
+    {{- end }}
+    {{- if .Values.imagePullSecrets }}
+      imagePullSecrets:
+{{ toYaml .Values.imagePullSecrets | indent 8 }}
+    {{- end }}
+    {{- if .Values.server.nodeSelector }}
+      nodeSelector:
+{{ toYaml .Values.server.nodeSelector | indent 8 }}
+    {{- end }}
+    {{- if .Values.server.hostAliases }}
+      hostAliases:
+{{ toYaml .Values.server.hostAliases | indent 8 }}
+    {{- end }}
+    {{- if .Values.server.dnsConfig }}
+      dnsConfig:
+{{ toYaml .Values.server.dnsConfig | indent 8 }}
+    {{- end }}
+    {{- with .Values.server.securityContext }}
+      securityContext:
+        {{- toYaml . | nindent 8 }}
+    {{- end }}
+    {{- if .Values.server.tolerations }}
+      tolerations:
+{{ toYaml .Values.server.tolerations | indent 8 }}
+    {{- end }}
+    {{- if or .Values.server.affinity .Values.server.podAntiAffinity }}
+      affinity:
+    {{- end }}
+      {{- with .Values.server.affinity }}
+      {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- if eq .Values.server.podAntiAffinity "hard" }}
+        podAntiAffinity:
+          requiredDuringSchedulingIgnoredDuringExecution:
+            - topologyKey: {{ .Values.server.podAntiAffinityTopologyKey }}
+              labelSelector:
+                matchExpressions:
+                  - {key: app.kubernetes.io/name, operator: In, values: [{{ template "prometheus.name" . }}]}
+      {{- else if eq .Values.server.podAntiAffinity "soft" }}
+        podAntiAffinity:
+          preferredDuringSchedulingIgnoredDuringExecution:
+            - weight: 100
+              podAffinityTerm:
+                topologyKey: {{ .Values.server.podAntiAffinityTopologyKey }}
+                labelSelector:
+                  matchExpressions:
+                    - {key: app.kubernetes.io/name, operator: In, values: [{{ template "prometheus.name" . }}]}
+      {{- end }}
+    {{- with .Values.server.topologySpreadConstraints }}
+      topologySpreadConstraints:
+        {{- toYaml . | nindent 8 }}
+    {{- end }}
+      terminationGracePeriodSeconds: {{ .Values.server.terminationGracePeriodSeconds }}
+      volumes:
+        - name: config-volume
+        {{- if empty .Values.server.configFromSecret }}
+          configMap:
+            name: {{ if .Values.server.configMapOverrideName }}{{ .Release.Name }}-{{ .Values.server.configMapOverrideName }}{{- else }}{{ template "prometheus.server.fullname" . }}{{- end }}
+        {{- else }}
+          secret:
+            secretName: {{ .Values.server.configFromSecret }}
+        {{- end }}
+      {{- range .Values.server.extraHostPathMounts }}
+        - name: {{ .name }}
+          hostPath:
+            path: {{ .hostPath }}
+      {{- end }}
+      {{- range .Values.configmapReload.prometheus.extraConfigmapMounts }}
+        - name: {{ $.Values.configmapReload.prometheus.name }}-{{ .name }}
+          configMap:
+            name: {{ .configMap }}
+      {{- end }}
+      {{- range .Values.server.extraConfigmapMounts }}
+        - name: {{ $.Values.server.name }}-{{ .name }}
+          configMap:
+            name: {{ .configMap }}
+      {{- end }}
+      {{- range .Values.server.extraSecretMounts }}
+        - name: {{ .name }}
+          secret:
+            secretName: {{ .secretName }}
+            {{- with .optional }}
+            optional: {{ . }}
+            {{- end }}
+      {{- end }}
+      {{- range .Values.configmapReload.prometheus.extraConfigmapMounts }}
+        - name: {{ .name }}
+          configMap:
+            name: {{ .configMap }}
+            {{- with .optional }}
+            optional: {{ . }}
+            {{- end }}
+      {{- end }}
+{{- if .Values.server.extraVolumes }}
+{{ toYaml .Values.server.extraVolumes | indent 8}}
+{{- end }}
+        - name: storage-volume
+        {{- if .Values.server.persistentVolume.enabled }}
+          persistentVolumeClaim:
+            claimName: {{ if .Values.server.persistentVolume.existingClaim }}{{ .Values.server.persistentVolume.existingClaim }}{{- else }}{{ template "prometheus.server.fullname" . }}{{- end }}
+        {{- else }}
+          emptyDir:
+          {{- if .Values.server.emptyDir.sizeLimit }}
+            sizeLimit: {{ .Values.server.emptyDir.sizeLimit }}
+          {{- else }}
+            {}
+          {{- end -}}
+        {{- end -}}
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/templates/extra-manifests.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/templates/extra-manifests.yaml
new file mode 100644
index 0000000000..2b21b71062
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/templates/extra-manifests.yaml
@@ -0,0 +1,4 @@
+{{ range .Values.extraManifests }}
+---
+{{ tpl . $ }}
+{{ end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/templates/headless-svc.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/templates/headless-svc.yaml
new file mode 100644
index 0000000000..df9db99147
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/templates/headless-svc.yaml
@@ -0,0 +1,35 @@
+{{- if .Values.server.statefulSet.enabled -}}
+apiVersion: v1
+kind: Service
+metadata:
+{{- if .Values.server.statefulSet.headless.annotations }}
+  annotations:
+{{ toYaml .Values.server.statefulSet.headless.annotations | indent 4 }}
+{{- end }}
+  labels:
+    {{- include "prometheus.server.labels" . | nindent 4 }}
+{{- if .Values.server.statefulSet.headless.labels }}
+{{ toYaml .Values.server.statefulSet.headless.labels | indent 4 }}
+{{- end }}
+  name: {{ template "prometheus.server.fullname" . }}-headless
+  namespace: {{ include "prometheus.namespace" . }}
+spec:
+  clusterIP: None
+  ports:
+    - name: http
+      port: {{ .Values.server.statefulSet.headless.servicePort }}
+      protocol: TCP
+      targetPort: 9090
+    {{- if .Values.server.statefulSet.headless.gRPC.enabled }}
+    - name: grpc
+      port: {{ .Values.server.statefulSet.headless.gRPC.servicePort }}
+      protocol: TCP
+      targetPort: 10901
+    {{- if .Values.server.statefulSet.headless.gRPC.nodePort }}
+      nodePort: {{ .Values.server.statefulSet.headless.gRPC.nodePort }}
+    {{- end }}
+    {{- end }}
+
+  selector:
+    {{- include "prometheus.server.matchLabels" . | nindent 4 }}
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/templates/ingress.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/templates/ingress.yaml
new file mode 100644
index 0000000000..21675846e3
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/templates/ingress.yaml
@@ -0,0 +1,57 @@
+{{- if .Values.server.ingress.enabled -}}
+{{- $ingressApiIsStable := eq (include "ingress.isStable" .) "true" -}}
+{{- $ingressSupportsIngressClassName := eq (include "ingress.supportsIngressClassName" .) "true" -}}
+{{- $ingressSupportsPathType := eq (include "ingress.supportsPathType" .) "true" -}}
+{{- $releaseName := .Release.Name -}}
+{{- $serviceName := include "prometheus.server.fullname" . }}
+{{- $servicePort := .Values.server.ingress.servicePort | default .Values.server.service.servicePort -}}
+{{- $ingressPath := .Values.server.ingress.path -}}
+{{- $ingressPathType := .Values.server.ingress.pathType -}}
+{{- $extraPaths := .Values.server.ingress.extraPaths -}}
+apiVersion: {{ template "ingress.apiVersion" . }}
+kind: Ingress
+metadata:
+{{- if .Values.server.ingress.annotations }}
+  annotations:
+{{ toYaml .Values.server.ingress.annotations | indent 4 }}
+{{- end }}
+  labels:
+    {{- include "prometheus.server.labels" . | nindent 4 }}
+{{- range $key, $value := .Values.server.ingress.extraLabels }}
+    {{ $key }}: {{ $value }}
+{{- end }}
+  name: {{ template "prometheus.server.fullname" . }}
+  namespace: {{ include "prometheus.namespace" . }}
+spec:
+  {{- if and $ingressSupportsIngressClassName .Values.server.ingress.ingressClassName }}
+  ingressClassName: {{ .Values.server.ingress.ingressClassName }}
+  {{- end }}
+  rules:
+  {{- range .Values.server.ingress.hosts }}
+    {{- $url := splitList "/" . }}
+    - host: {{ tpl (first $url) $ }}
+      http:
+        paths:
+{{ if $extraPaths }}
+{{ tpl (toYaml $extraPaths | indent 10) $ }}
+{{- end }}
+          - path: {{ tpl ($ingressPath) $ }}
+            {{- if $ingressSupportsPathType }}
+            pathType: {{ $ingressPathType }}
+            {{- end }}
+            backend:
+              {{- if $ingressApiIsStable }}
+              service:
+                name: {{ $serviceName }}
+                port:
+                  number: {{ $servicePort }}
+              {{- else }}
+              serviceName: {{ $serviceName }}
+              servicePort: {{ $servicePort }}
+              {{- end }}
+  {{- end -}}
+{{- if .Values.server.ingress.tls }}
+  tls:
+{{ tpl (toYaml .Values.server.ingress.tls | indent 4) $ }}
+  {{- end -}}
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/templates/network-policy.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/templates/network-policy.yaml
new file mode 100644
index 0000000000..3254ffc04f
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/templates/network-policy.yaml
@@ -0,0 +1,16 @@
+{{- if .Values.networkPolicy.enabled }}
+apiVersion: {{ template "prometheus.networkPolicy.apiVersion" . }}
+kind: NetworkPolicy
+metadata:
+  name: {{ template "prometheus.server.fullname" . }}
+  namespace: {{ include "prometheus.namespace" . }}
+  labels:
+    {{- include "prometheus.server.labels" . | nindent 4 }}
+spec:
+  podSelector:
+    matchLabels:
+      {{- include "prometheus.server.matchLabels" . | nindent 6 }}
+  ingress:
+    - ports:
+      - port: 9090
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/templates/pdb.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/templates/pdb.yaml
new file mode 100644
index 0000000000..fffbdc62fc
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/templates/pdb.yaml
@@ -0,0 +1,26 @@
+{{- if .Values.server.podDisruptionBudget.enabled }}
+{{- $pdbSpec := omit .Values.server.podDisruptionBudget "enabled" }}
+apiVersion: {{ template "prometheus.podDisruptionBudget.apiVersion" . }}
+kind: PodDisruptionBudget
+metadata:
+  name: {{ template "prometheus.server.fullname" . }}
+  namespace: {{ include "prometheus.namespace" . }}
+  labels:
+    {{- include "prometheus.server.labels" . | nindent 4 }}
+spec:
+  selector:
+    matchLabels:
+      {{- include "prometheus.server.matchLabels" . | nindent 6 }}
+  {{- if not (or (hasKey $pdbSpec "minAvailable") (hasKey $pdbSpec "maxUnavailable")) }}
+  maxUnavailable: 1
+  {{- end }}
+  {{- if hasKey $pdbSpec "minAvailable" }}
+  minAvailable: {{ $pdbSpec.minAvailable }}
+  {{- end }}
+  {{- if hasKey $pdbSpec "maxUnavailable" }}
+  maxUnavailable: {{ $pdbSpec.maxUnavailable }}
+  {{- end }}
+  {{- if hasKey $pdbSpec "unhealthyPodEvictionPolicy" }}
+  unhealthyPodEvictionPolicy: {{ $pdbSpec.unhealthyPodEvictionPolicy }}
+  {{- end }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/templates/psp.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/templates/psp.yaml
new file mode 100644
index 0000000000..5776e25410
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/templates/psp.yaml
@@ -0,0 +1,53 @@
+{{- if and .Values.rbac.create .Values.podSecurityPolicy.enabled }}
+{{- if .Capabilities.APIVersions.Has "policy/v1beta1/PodSecurityPolicy" }}
+apiVersion: policy/v1beta1
+kind: PodSecurityPolicy
+metadata:
+  name: {{ template "prometheus.server.fullname" . }}
+  labels:
+    {{- include "prometheus.server.labels" . | nindent 4 }}
+  {{- with .Values.server.podSecurityPolicy.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+spec:
+  privileged: false
+  allowPrivilegeEscalation: false
+  allowedCapabilities:
+    - 'CHOWN'
+  volumes:
+    - 'configMap'
+    - 'persistentVolumeClaim'
+    - 'emptyDir'
+    - 'secret'
+    - 'hostPath'
+  allowedHostPaths:
+    - pathPrefix: /etc
+      readOnly: true
+    - pathPrefix: {{ .Values.server.persistentVolume.mountPath }}
+  {{- range .Values.server.extraHostPathMounts }}
+    - pathPrefix: {{ .hostPath }}
+      readOnly: {{ .readOnly }}
+  {{- end }}
+  hostNetwork: false
+  hostPID: false
+  hostIPC: false
+  runAsUser:
+    rule: 'RunAsAny'
+  seLinux:
+    rule: 'RunAsAny'
+  supplementalGroups:
+    rule: 'MustRunAs'
+    ranges:
+      # Forbid adding the root group.
+      - min: 1
+        max: 65535
+  fsGroup:
+    rule: 'MustRunAs'
+    ranges:
+      # Forbid adding the root group.
+      - min: 1
+        max: 65535
+  readOnlyRootFilesystem: false
+{{- end }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/templates/pvc.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/templates/pvc.yaml
new file mode 100644
index 0000000000..a9dc4fce08
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/templates/pvc.yaml
@@ -0,0 +1,43 @@
+{{- if not .Values.server.statefulSet.enabled -}}
+{{- if .Values.server.persistentVolume.enabled -}}
+{{- if not .Values.server.persistentVolume.existingClaim -}}
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  {{- if .Values.server.persistentVolume.annotations }}
+  annotations:
+{{ toYaml .Values.server.persistentVolume.annotations | indent 4 }}
+  {{- end }}
+  labels:
+    {{- include "prometheus.server.labels" . | nindent 4 }}
+    {{- with .Values.server.persistentVolume.labels }}
+       {{- toYaml . | nindent 4 }}
+    {{- end }}
+  name: {{ template "prometheus.server.fullname" . }}
+  namespace: {{ include "prometheus.namespace" . }}
+spec:
+  accessModes:
+{{ toYaml .Values.server.persistentVolume.accessModes | indent 4 }}
+{{- if .Values.server.persistentVolume.storageClass }}
+{{- if (eq "-" .Values.server.persistentVolume.storageClass) }}
+  storageClassName: ""
+{{- else }}
+  storageClassName: "{{ .Values.server.persistentVolume.storageClass }}"
+{{- end }}
+{{- end }}
+{{- if .Values.server.persistentVolume.volumeBindingMode }}
+  volumeBindingMode: "{{ .Values.server.persistentVolume.volumeBindingMode }}"
+{{- end }}
+  resources:
+    requests:
+      storage: "{{ .Values.server.persistentVolume.size }}"
+{{- if .Values.server.persistentVolume.selector }}
+  selector:
+  {{- toYaml .Values.server.persistentVolume.selector | nindent 4 }}
+{{- end -}}
+{{- if .Values.server.persistentVolume.volumeName }}
+  volumeName: "{{ .Values.server.persistentVolume.volumeName }}"
+{{- end -}}
+{{- end -}}
+{{- end -}}
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/templates/rolebinding.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/templates/rolebinding.yaml
new file mode 100644
index 0000000000..721b38816a
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/templates/rolebinding.yaml
@@ -0,0 +1,18 @@
+{{- range include "prometheus.namespaces" . | fromJsonArray }}
+---
+apiVersion: {{ template "rbac.apiVersion" $ }}
+kind: RoleBinding
+metadata:
+  labels:
+    {{- include "prometheus.server.labels" $ | nindent 4 }}
+  name: {{ template "prometheus.server.fullname" $ }}
+  namespace: {{ . }}
+subjects:
+  - kind: ServiceAccount
+    name: {{ template "prometheus.serviceAccountName.server" $ }}
+    namespace: {{ include "prometheus.namespace" $ }}
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: {{ $.Values.server.useExistingClusterRoleName }}
+{{ end -}}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/templates/service.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/templates/service.yaml
new file mode 100644
index 0000000000..069f3270d8
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/templates/service.yaml
@@ -0,0 +1,63 @@
+{{- if .Values.server.service.enabled -}}
+apiVersion: v1
+kind: Service
+metadata:
+{{- if .Values.server.service.annotations }}
+  annotations:
+{{ toYaml .Values.server.service.annotations | indent 4 }}
+{{- end }}
+  labels:
+    {{- include "prometheus.server.labels" . | nindent 4 }}
+{{- if .Values.server.service.labels }}
+{{ toYaml .Values.server.service.labels | indent 4 }}
+{{- end }}
+  name: {{ template "prometheus.server.fullname" . }}
+  namespace: {{ include "prometheus.namespace" . }}
+spec:
+{{- if .Values.server.service.clusterIP }}
+  clusterIP: {{ .Values.server.service.clusterIP }}
+{{- end }}
+{{- if .Values.server.service.externalIPs }}
+  externalIPs:
+{{ toYaml .Values.server.service.externalIPs | indent 4 }}
+{{- end }}
+{{- if .Values.server.service.loadBalancerIP }}
+  loadBalancerIP: {{ .Values.server.service.loadBalancerIP }}
+{{- end }}
+{{- if .Values.server.service.loadBalancerSourceRanges }}
+  loadBalancerSourceRanges:
+  {{- range $cidr := .Values.server.service.loadBalancerSourceRanges }}
+    - {{ $cidr }}
+  {{- end }}
+{{- end }}
+  ports:
+    - name: http
+      port: {{ .Values.server.service.servicePort }}
+      protocol: TCP
+      targetPort: 9090
+    {{- if .Values.server.service.nodePort }}
+      nodePort: {{ .Values.server.service.nodePort }}
+    {{- end }}
+    {{- if .Values.server.service.gRPC.enabled }}
+    - name: grpc
+      port: {{ .Values.server.service.gRPC.servicePort }}
+      protocol: TCP
+      targetPort: 10901
+    {{- if .Values.server.service.gRPC.nodePort }}
+      nodePort: {{ .Values.server.service.gRPC.nodePort }}
+    {{- end }}
+    {{- end }}
+{{- if .Values.server.service.additionalPorts }}
+{{ toYaml .Values.server.service.additionalPorts | indent 4 }}
+{{- end }}
+  selector:
+  {{- if and .Values.server.statefulSet.enabled .Values.server.service.statefulsetReplica.enabled }}
+    statefulset.kubernetes.io/pod-name: {{ template "prometheus.server.fullname" . }}-{{ .Values.server.service.statefulsetReplica.replica }}
+  {{- else -}}
+    {{- include "prometheus.server.matchLabels" . | nindent 4 }}
+{{- if .Values.server.service.sessionAffinity }}
+  sessionAffinity: {{ .Values.server.service.sessionAffinity }}
+{{- end }}
+  {{- end }}
+  type: "{{ .Values.server.service.type }}"
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/templates/serviceaccount.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/templates/serviceaccount.yaml
new file mode 100644
index 0000000000..6d5ab0c7d9
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/templates/serviceaccount.yaml
@@ -0,0 +1,16 @@
+{{- if .Values.serviceAccounts.server.create }}
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  labels:
+    {{- include "prometheus.server.labels" . | nindent 4 }}
+  name: {{ template "prometheus.serviceAccountName.server" . }}
+  namespace: {{ include "prometheus.namespace" . }}
+  annotations:
+{{ toYaml .Values.serviceAccounts.server.annotations | indent 4 }}
+{{- if kindIs "bool" .Values.server.automountServiceAccountToken }}
+automountServiceAccountToken: {{ .Values.server.automountServiceAccountToken }}
+{{- else if kindIs "bool" .Values.serviceAccounts.server.automountServiceAccountToken }}
+automountServiceAccountToken: {{ .Values.serviceAccounts.server.automountServiceAccountToken }}
+{{- end }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/templates/sts.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/templates/sts.yaml
new file mode 100644
index 0000000000..6200555df1
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/templates/sts.yaml
@@ -0,0 +1,436 @@
+{{- if .Values.server.statefulSet.enabled -}}
+apiVersion: apps/v1
+kind: StatefulSet
+metadata:
+{{- if .Values.server.statefulSet.annotations }}
+  annotations:
+    {{ toYaml .Values.server.statefulSet.annotations | nindent 4 }}
+{{- end }}
+  labels:
+    {{- include "prometheus.server.labels" . | nindent 4 }}
+    {{- if .Values.server.statefulSet.labels}}
+    {{ toYaml .Values.server.statefulSet.labels | nindent 4 }}
+    {{- end}}
+  name: {{ template "prometheus.server.fullname" . }}
+  namespace: {{ include "prometheus.namespace" . }}
+spec:
+  {{- if semverCompare ">= 1.27.x" (include "prometheus.kubeVersion" .) }}
+  persistentVolumeClaimRetentionPolicy:
+    whenDeleted: {{ ternary "Delete" "Retain" .Values.server.statefulSet.pvcDeleteOnStsDelete }}
+    whenScaled: {{ ternary "Delete" "Retain" .Values.server.statefulSet.pvcDeleteOnStsScale }}
+  {{- end }}
+  serviceName: {{ template "prometheus.server.fullname" . }}-headless
+  selector:
+    matchLabels:
+      {{- include "prometheus.server.matchLabels" . | nindent 6 }}
+  replicas: {{ .Values.server.replicaCount }}
+  revisionHistoryLimit: {{ .Values.server.revisionHistoryLimit }}
+  podManagementPolicy: {{ .Values.server.statefulSet.podManagementPolicy }}
+  template:
+    metadata:
+    {{- if .Values.server.podAnnotations }}
+      annotations:
+        {{ toYaml .Values.server.podAnnotations | nindent 8 }}
+    {{- end }}
+      labels:
+        {{- include "prometheus.server.labels" . | nindent 8 }}
+        {{- if .Values.server.podLabels}}
+        {{ toYaml .Values.server.podLabels | nindent 8 }}
+        {{- end}}
+    spec:
+{{- if .Values.server.priorityClassName }}
+      priorityClassName: "{{ .Values.server.priorityClassName }}"
+{{- end }}
+{{- if .Values.server.schedulerName }}
+      schedulerName: "{{ .Values.server.schedulerName }}"
+{{- end }}
+{{- if semverCompare ">=1.13-0" .Capabilities.KubeVersion.GitVersion }}
+      {{- if or (.Values.server.enableServiceLinks) (eq (.Values.server.enableServiceLinks | toString) "<nil>") }}
+      enableServiceLinks: true
+      {{- else }}
+      enableServiceLinks: false
+      {{- end }}
+{{- end }}
+      serviceAccountName: {{ template "prometheus.serviceAccountName.server" . }}
+{{- if kindIs "bool" .Values.server.automountServiceAccountToken }}
+      automountServiceAccountToken: {{ .Values.server.automountServiceAccountToken }}
+{{- end }}
+      {{- if .Values.server.extraInitContainers }}
+      initContainers:
+{{ toYaml .Values.server.extraInitContainers | indent 8 }}
+      {{- end }}
+      containers:
+        {{- if .Values.configmapReload.prometheus.enabled }}
+        - name: {{ template "prometheus.name" . }}-{{ .Values.server.name }}-{{ .Values.configmapReload.prometheus.name }}
+          {{- if .Values.configmapReload.prometheus.image.digest }}
+          image: "{{ .Values.configmapReload.prometheus.image.repository }}@{{ .Values.configmapReload.prometheus.image.digest }}"
+          {{- else }}
+          image: "{{ .Values.configmapReload.prometheus.image.repository }}:{{ .Values.configmapReload.prometheus.image.tag }}"
+          {{- end }}
+          imagePullPolicy: "{{ .Values.configmapReload.prometheus.image.pullPolicy }}"
+          {{- with .Values.configmapReload.prometheus.containerSecurityContext }}
+          securityContext:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          args:
+            - --watched-dir=/etc/config
+          {{- $default_url := "http://127.0.0.1:9090/-/reload" }}
+          {{- with .Values.server.prefixURL }}
+          {{- $default_url = printf "http://127.0.0.1:9090%s/-/reload" . }}
+          {{- end }}
+          {{- if .Values.configmapReload.prometheus.containerPort }}
+            - --listen-address=0.0.0.0:{{ .Values.configmapReload.prometheus.containerPort }}
+          {{- end }}
+            - --reload-url={{ default $default_url .Values.configmapReload.reloadUrl }}
+          {{- range $key, $value := .Values.configmapReload.prometheus.extraArgs }}
+            {{- if $value }}
+            - --{{ $key }}={{ $value }}
+            {{- else }}
+            - --{{ $key }}
+            {{- end }}
+          {{- end }}
+          {{- range .Values.configmapReload.prometheus.extraVolumeDirs }}
+            - --watched-dir={{ . }}
+          {{- end }}
+          {{- with .Values.configmapReload.env }}
+          env:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          {{- if .Values.configmapReload.prometheus.containerPort }}
+          ports:
+            - containerPort: {{ .Values.configmapReload.prometheus.containerPort }}
+              {{- if .Values.configmapReload.prometheus.containerPortName }}
+              name: {{ .Values.configmapReload.prometheus.containerPortName }}
+              {{- end }}
+          {{- end }}
+          {{- with .Values.configmapReload.prometheus.livenessProbe }}
+          livenessProbe:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          {{- with .Values.configmapReload.prometheus.readinessProbe }}
+          readinessProbe:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          {{- if .Values.configmapReload.prometheus.startupProbe }}
+          {{- $startupProbe := omit .Values.configmapReload.prometheus.startupProbe "enabled" }}
+          startupProbe:
+            {{- toYaml $startupProbe | nindent 12 }}
+          {{- end }}
+          {{- with .Values.configmapReload.prometheus.resources }}
+          resources:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          volumeMounts:
+            - name: config-volume
+              mountPath: /etc/config
+              readOnly: true
+          {{- with .Values.configmapReload.prometheus.extraVolumeMounts }}
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          {{- range .Values.configmapReload.prometheus.extraConfigmapMounts }}
+            - name: {{ $.Values.configmapReload.prometheus.name }}-{{ .name }}
+              mountPath: {{ .mountPath }}
+              subPath: {{ .subPath }}
+              readOnly: {{ .readOnly }}
+          {{- end }}
+        {{- end }}
+
+        - name: {{ template "prometheus.name" . }}-{{ .Values.server.name }}
+          {{- if .Values.server.image.digest }}
+          image: "{{ .Values.server.image.repository }}@{{ .Values.server.image.digest }}"
+          {{- else }}
+          image: "{{ .Values.server.image.repository }}:{{ .Values.server.image.tag | default .Chart.AppVersion }}"
+          {{- end }}
+          imagePullPolicy: "{{ .Values.server.image.pullPolicy }}"
+          {{- with .Values.server.command }}
+          command:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          {{- if .Values.server.env }}
+          env:
+{{ toYaml .Values.server.env | indent 12}}
+          {{- end }}
+          args:
+        {{- if .Values.server.defaultFlagsOverride }}
+        {{ toYaml .Values.server.defaultFlagsOverride | nindent 12}}
+        {{- else }}
+          {{- if .Values.server.prefixURL }}
+            - --web.route-prefix={{ .Values.server.prefixURL }}
+          {{- end }}
+          {{- if .Values.server.retention }}
+            - --storage.tsdb.retention.time={{ .Values.server.retention }}
+          {{- end }}
+          {{- if .Values.server.retentionSize }}
+            - --storage.tsdb.retention.size={{ .Values.server.retentionSize }}
+          {{- end }}
+            - --config.file={{ .Values.server.configPath }}
+          {{- if .Values.server.storagePath }}
+            - --storage.tsdb.path={{ .Values.server.storagePath }}
+          {{- else }}
+            - --storage.tsdb.path={{ .Values.server.persistentVolume.mountPath }}
+          {{- end }}
+            - --web.console.libraries=/etc/prometheus/console_libraries
+            - --web.console.templates=/etc/prometheus/consoles
+          {{- range .Values.server.extraFlags }}
+            - --{{ . }}
+          {{- end }}
+          {{- range $key, $value := .Values.server.extraArgs }}
+            {{- if $value }}
+            - --{{ $key }}={{ $value }}
+            {{- else }}
+            - --{{ $key }}
+            {{- end }}
+          {{- end }}
+          {{- if .Values.server.baseURL }}
+            - --web.external-url={{ .Values.server.baseURL }}
+          {{- end }}
+        {{- end }}
+          ports:
+            - containerPort: 9090
+          {{- if .Values.server.portName }}
+              name: {{ .Values.server.portName }}
+          {{- end }}
+          {{- if .Values.server.hostPort }}
+              hostPort: {{ .Values.server.hostPort }}
+          {{- end }}
+          readinessProbe:
+            {{- if not .Values.server.tcpSocketProbeEnabled }}
+            httpGet:
+              path: {{ .Values.server.prefixURL }}/-/ready
+              port: 9090
+              scheme: {{ .Values.server.probeScheme }}
+              {{- with .Values.server.probeHeaders }}
+              httpHeaders:
+{{- toYaml . | nindent 14 }}
+              {{- end }}
+            {{- else }}
+            tcpSocket:
+              port: 9090
+            {{- end }}
+            initialDelaySeconds: {{ .Values.server.readinessProbeInitialDelay }}
+            periodSeconds: {{ .Values.server.readinessProbePeriodSeconds }}
+            timeoutSeconds: {{ .Values.server.readinessProbeTimeout }}
+            failureThreshold: {{ .Values.server.readinessProbeFailureThreshold }}
+            successThreshold: {{ .Values.server.readinessProbeSuccessThreshold }}
+          livenessProbe:
+            {{- if not .Values.server.tcpSocketProbeEnabled }}
+            httpGet:
+              path: {{ .Values.server.prefixURL }}/-/healthy
+              port: 9090
+              scheme: {{ .Values.server.probeScheme }}
+              {{- with .Values.server.probeHeaders }}
+              httpHeaders:
+{{- toYaml . | nindent 14 }}
+              {{- end }}
+            {{- else }}
+            tcpSocket:
+              port: 9090
+            {{- end }}
+            initialDelaySeconds: {{ .Values.server.livenessProbeInitialDelay }}
+            periodSeconds: {{ .Values.server.livenessProbePeriodSeconds }}
+            timeoutSeconds: {{ .Values.server.livenessProbeTimeout }}
+            failureThreshold: {{ .Values.server.livenessProbeFailureThreshold }}
+            successThreshold: {{ .Values.server.livenessProbeSuccessThreshold }}
+          {{- if .Values.server.startupProbe.enabled }}
+          startupProbe:
+            {{- if not .Values.server.tcpSocketProbeEnabled }}
+            httpGet:
+              path: {{ .Values.server.prefixURL }}/-/healthy
+              port: 9090
+              scheme: {{ .Values.server.probeScheme }}
+              {{- if .Values.server.probeHeaders }}
+              httpHeaders:
+              {{- range .Values.server.probeHeaders}}
+              - name: {{ .name }}
+                value: {{ .value }}
+              {{- end }}
+              {{- end }}
+            {{- else }}
+            tcpSocket:
+              port: 9090
+            {{- end }}
+            failureThreshold: {{ .Values.server.startupProbe.failureThreshold }}
+            periodSeconds: {{ .Values.server.startupProbe.periodSeconds }}
+            timeoutSeconds: {{ .Values.server.startupProbe.timeoutSeconds }}
+          {{- end }}
+          {{- with .Values.server.resources }}
+          resources:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          volumeMounts:
+            - name: config-volume
+              mountPath: /etc/config
+            - name: {{ ternary .Values.server.persistentVolume.statefulSetNameOverride "storage-volume" (and .Values.server.persistentVolume.enabled (not (empty .Values.server.persistentVolume.statefulSetNameOverride))) }}
+              mountPath: {{ .Values.server.persistentVolume.mountPath }}
+              subPath: "{{ .Values.server.persistentVolume.subPath }}"
+          {{- range .Values.server.extraHostPathMounts }}
+            - name: {{ .name }}
+              mountPath: {{ .mountPath }}
+              subPath: {{ .subPath }}
+              readOnly: {{ .readOnly }}
+          {{- end }}
+          {{- range .Values.server.extraConfigmapMounts }}
+            - name: {{ $.Values.server.name }}-{{ .name }}
+              mountPath: {{ .mountPath }}
+              subPath: {{ .subPath }}
+              readOnly: {{ .readOnly }}
+          {{- end }}
+          {{- range .Values.server.extraSecretMounts }}
+            - name: {{ .name }}
+              mountPath: {{ .mountPath }}
+              subPath: {{ .subPath }}
+              readOnly: {{ .readOnly }}
+          {{- end }}
+          {{- if .Values.server.extraVolumeMounts }}
+          {{ toYaml .Values.server.extraVolumeMounts | nindent 12 }}
+          {{- end }}
+          {{- with .Values.server.containerSecurityContext }}
+          securityContext:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+    {{- if .Values.server.sidecarContainers }}
+      {{- range $name, $spec :=  .Values.server.sidecarContainers }}
+        - name: {{ $name }}
+          {{- if kindIs "string" $spec }}
+            {{- tpl $spec $ | nindent 10 }}
+          {{- else }}
+            {{- toYaml $spec | nindent 10 }}
+          {{- end }}
+      {{- end }}
+    {{- end }}
+      hostNetwork: {{ .Values.server.hostNetwork }}
+    {{- if .Values.server.dnsPolicy }}
+      dnsPolicy: {{ .Values.server.dnsPolicy }}
+    {{- end }}
+    {{- if .Values.imagePullSecrets }}
+      imagePullSecrets:
+{{ toYaml .Values.imagePullSecrets | indent 8 }}
+    {{- end }}
+    {{- if .Values.server.nodeSelector }}
+      nodeSelector:
+{{ toYaml .Values.server.nodeSelector | indent 8 }}
+    {{- end }}
+    {{- if .Values.server.hostAliases }}
+      hostAliases:
+{{ toYaml .Values.server.hostAliases | indent 8 }}
+    {{- end }}
+    {{- if .Values.server.dnsConfig }}
+      dnsConfig:
+{{ toYaml .Values.server.dnsConfig | indent 8 }}
+    {{- end }}
+    {{- with .Values.server.securityContext }}
+      securityContext:
+        {{- toYaml . | nindent 8 }}
+    {{- end }}
+    {{- if .Values.server.tolerations }}
+      tolerations:
+{{ toYaml .Values.server.tolerations | indent 8 }}
+    {{- end }}
+    {{- if or .Values.server.affinity .Values.server.podAntiAffinity }}
+      affinity:
+    {{- end }}
+      {{- with .Values.server.affinity }}
+      {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- if eq .Values.server.podAntiAffinity "hard" }}
+        podAntiAffinity:
+          requiredDuringSchedulingIgnoredDuringExecution:
+            - topologyKey: {{ .Values.server.podAntiAffinityTopologyKey }}
+              labelSelector:
+                matchExpressions:
+                  - {key: app.kubernetes.io/name, operator: In, values: [{{ template "prometheus.name" . }}]}
+      {{- else if eq .Values.server.podAntiAffinity "soft" }}
+        podAntiAffinity:
+          preferredDuringSchedulingIgnoredDuringExecution:
+            - weight: 100
+              podAffinityTerm:
+                topologyKey: {{ .Values.server.podAntiAffinityTopologyKey }}
+                labelSelector:
+                  matchExpressions:
+                    - {key: app.kubernetes.io/name, operator: In, values: [{{ template "prometheus.name" . }}]}
+      {{- end }}
+    {{- with .Values.server.topologySpreadConstraints }}
+      topologySpreadConstraints:
+        {{- toYaml . | nindent 8 }}
+    {{- end }}
+      terminationGracePeriodSeconds: {{ .Values.server.terminationGracePeriodSeconds }}
+      volumes:
+        - name: config-volume
+        {{- if empty .Values.server.configFromSecret }}
+          configMap:
+            name: {{ if .Values.server.configMapOverrideName }}{{ .Release.Name }}-{{ .Values.server.configMapOverrideName }}{{- else }}{{ template "prometheus.server.fullname" . }}{{- end }}
+        {{- else }}
+          secret:
+            secretName: {{ .Values.server.configFromSecret }}
+        {{- end }}
+      {{- range .Values.server.extraHostPathMounts }}
+        - name: {{ .name }}
+          hostPath:
+            path: {{ .hostPath }}
+      {{- end }}
+      {{- range .Values.configmapReload.prometheus.extraConfigmapMounts }}
+        - name: {{ $.Values.configmapReload.prometheus.name }}-{{ .name }}
+          configMap:
+            name: {{ .configMap }}
+      {{- end }}
+      {{- range .Values.server.extraConfigmapMounts }}
+        - name: {{ $.Values.server.name }}-{{ .name }}
+          configMap:
+            name: {{ .configMap }}
+      {{- end }}
+      {{- range .Values.server.extraSecretMounts }}
+        - name: {{ .name }}
+          secret:
+            secretName: {{ .secretName }}
+            {{- with .optional }}
+            optional: {{ . }}
+            {{- end }}
+      {{- end }}
+      {{- range .Values.configmapReload.prometheus.extraConfigmapMounts }}
+        - name: {{ .name }}
+          configMap:
+            name: {{ .configMap }}
+            {{- with .optional }}
+            optional: {{ . }}
+            {{- end }}
+      {{- end }}
+{{- if .Values.server.extraVolumes }}
+{{ toYaml .Values.server.extraVolumes | indent 8}}
+{{- end }}
+{{- if .Values.server.persistentVolume.enabled }}
+  volumeClaimTemplates:
+    - apiVersion: v1
+      kind: PersistentVolumeClaim
+      metadata:
+        name: {{ .Values.server.persistentVolume.statefulSetNameOverride | default "storage-volume" }}
+        {{- if .Values.server.persistentVolume.annotations }}
+        annotations:
+{{ toYaml .Values.server.persistentVolume.annotations | indent 10 }}
+        {{- end }}
+        {{- if .Values.server.persistentVolume.labels }}
+        labels:
+{{ toYaml .Values.server.persistentVolume.labels | indent 10 }}
+        {{- end }}
+      spec:
+        accessModes:
+{{ toYaml .Values.server.persistentVolume.accessModes | indent 10 }}
+        resources:
+          requests:
+            storage: "{{ .Values.server.persistentVolume.size }}"
+      {{- if .Values.server.persistentVolume.storageClass }}
+      {{- if (eq "-" .Values.server.persistentVolume.storageClass) }}
+        storageClassName: ""
+      {{- else }}
+        storageClassName: "{{ .Values.server.persistentVolume.storageClass }}"
+      {{- end }}
+      {{- end }}
+{{- else }}
+        - name: storage-volume
+          emptyDir:
+          {{- if .Values.server.emptyDir.sizeLimit }}
+            sizeLimit: {{ .Values.server.emptyDir.sizeLimit }}
+          {{- else }}
+            {}
+          {{- end -}}
+{{- end }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/templates/vpa.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/templates/vpa.yaml
new file mode 100644
index 0000000000..cd07ad8b7d
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/templates/vpa.yaml
@@ -0,0 +1,26 @@
+{{- if .Values.server.verticalAutoscaler.enabled -}}
+{{- if .Capabilities.APIVersions.Has "autoscaling.k8s.io/v1/VerticalPodAutoscaler" }}
+apiVersion: autoscaling.k8s.io/v1
+{{- else }}
+apiVersion: autoscaling.k8s.io/v1beta2
+{{- end }}
+kind: VerticalPodAutoscaler
+metadata:
+  name: {{ template "prometheus.server.fullname" . }}-vpa
+  namespace: {{ include "prometheus.namespace" . }}
+  labels:
+    {{- include "prometheus.server.labels" . | nindent 4 }}
+spec:
+  targetRef:
+    apiVersion: "apps/v1"
+{{- if .Values.server.statefulSet.enabled }}
+    kind: StatefulSet
+{{- else }}
+    kind: Deployment
+{{- end }}
+    name: {{ template "prometheus.server.fullname" . }}
+  updatePolicy:
+    updateMode: {{ .Values.server.verticalAutoscaler.updateMode | default "Off" | quote }}
+  resourcePolicy:
+    containerPolicies: {{ .Values.server.verticalAutoscaler.containerPolicies | default list | toYaml | trim | nindent 4 }}
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/values.schema.json b/charts/kasten/k10/7.5.401/charts/prometheus/values.schema.json
new file mode 100644
index 0000000000..b2d8af26c3
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/values.schema.json
@@ -0,0 +1,752 @@
+{
+    "$schema": "http://json-schema.org/schema#",
+    "type": "object",
+    "properties": {
+        "alertRelabelConfigs": {
+            "type": "object"
+        },
+        "alertmanager": {
+            "type": "object",
+            "properties": {
+                "enabled": {
+                    "type": "boolean"
+                },
+                "persistence": {
+                    "type": "object",
+                    "properties": {
+                        "size": {
+                            "type": "string"
+                        }
+                    }
+                },
+                "podSecurityContext": {
+                    "type": "object",
+                    "properties": {
+                        "fsGroup": {
+                            "type": "integer"
+                        },
+                        "runAsGroup": {
+                            "type": "integer"
+                        },
+                        "runAsNonRoot": {
+                            "type": "boolean"
+                        },
+                        "runAsUser": {
+                            "type": "integer"
+                        }
+                    }
+                }
+            }
+        },
+        "configmapReload": {
+            "type": "object",
+            "properties": {
+                "env": {
+                    "type": "array"
+                },
+                "prometheus": {
+                    "type": "object",
+                    "properties": {
+                        "containerSecurityContext": {
+                            "type": "object"
+                        },
+                        "enabled": {
+                            "type": "boolean"
+                        },
+                        "extraArgs": {
+                            "type": "object"
+                        },
+                        "extraConfigmapMounts": {
+                            "type": "array"
+                        },
+                        "extraVolumeDirs": {
+                            "type": "array"
+                        },
+                        "extraVolumeMounts": {
+                            "type": "array"
+                        },
+                        "image": {
+                            "type": "object",
+                            "properties": {
+                                "digest": {
+                                    "type": "string"
+                                },
+                                "pullPolicy": {
+                                    "type": "string"
+                                },
+                                "repository": {
+                                    "type": "string"
+                                },
+                                "tag": {
+                                    "type": "string"
+                                }
+                            }
+                        },
+                        "name": {
+                            "type": "string"
+                        },
+                        "resources": {
+                            "type": "object"
+                        }
+                    }
+                },
+                "reloadUrl": {
+                    "type": "string"
+                }
+            }
+        },
+        "extraManifests": {
+            "type": "array"
+        },
+        "extraScrapeConfigs": {
+            "type": "string"
+        },
+        "forceNamespace": {
+            "type": "string"
+        },
+        "imagePullSecrets": {
+            "type": "array"
+        },
+        "kube-state-metrics": {
+            "type": "object",
+            "properties": {
+                "enabled": {
+                    "type": "boolean"
+                }
+            }
+        },
+        "networkPolicy": {
+            "type": "object",
+            "properties": {
+                "enabled": {
+                    "type": "boolean"
+                }
+            }
+        },
+        "podSecurityPolicy": {
+            "type": "object",
+            "properties": {
+                "enabled": {
+                    "type": "boolean"
+                }
+            }
+        },
+        "prometheus-node-exporter": {
+            "type": "object",
+            "properties": {
+                "containerSecurityContext": {
+                    "type": "object",
+                    "properties": {
+                        "allowPrivilegeEscalation": {
+                            "type": "boolean"
+                        }
+                    }
+                },
+                "enabled": {
+                    "type": "boolean"
+                },
+                "rbac": {
+                    "type": "object",
+                    "properties": {
+                        "pspEnabled": {
+                            "type": "boolean"
+                        }
+                    }
+                }
+            }
+        },
+        "prometheus-pushgateway": {
+            "type": "object",
+            "properties": {
+                "enabled": {
+                    "type": "boolean"
+                },
+                "serviceAnnotations": {
+                    "type": "object",
+                    "properties": {
+                        "prometheus.io/probe": {
+                            "type": "string"
+                        }
+                    }
+                }
+            }
+        },
+        "rbac": {
+            "type": "object",
+            "properties": {
+                "create": {
+                    "type": "boolean"
+                }
+            }
+        },
+        "ruleFiles": {
+            "type": "object"
+        },
+        "server": {
+            "type": "object",
+            "properties": {
+                "affinity": {
+                    "type": "object"
+                },
+                "alertmanagers": {
+                    "type": "array"
+                },
+                "baseURL": {
+                    "type": "string"
+                },
+                "clusterRoleNameOverride": {
+                    "type": "string"
+                },
+                "command": {
+                    "type": "array"
+                },
+                "configMapAnnotations": {
+                    "type": "object"
+                },
+                "configMapOverrideName": {
+                    "type": "string"
+                },
+                "configPath": {
+                    "type": "string"
+                },
+                "containerSecurityContext": {
+                    "type": "object"
+                },
+                "defaultFlagsOverride": {
+                    "type": "array"
+                },
+                "deploymentAnnotations": {
+                    "type": "object"
+                },
+                "dnsConfig": {
+                    "type": "object"
+                },
+                "dnsPolicy": {
+                    "type": "string"
+                },
+                "emptyDir": {
+                    "type": "object",
+                    "properties": {
+                        "sizeLimit": {
+                            "type": "string"
+                        }
+                    }
+                },
+                "enableServiceLinks": {
+                    "type": "boolean"
+                },
+                "env": {
+                    "type": "array"
+                },
+                "exemplars": {
+                    "type": "object"
+                },
+                "extraArgs": {
+                    "type": "object"
+                },
+                "extraConfigmapLabels": {
+                    "type": "object"
+                },
+                "extraConfigmapMounts": {
+                    "type": "array"
+                },
+                "extraFlags": {
+                    "type": "array",
+                    "items": {
+                        "type": "string"
+                    }
+                },
+                "extraHostPathMounts": {
+                    "type": "array"
+                },
+                "extraInitContainers": {
+                    "type": "array"
+                },
+                "extraSecretMounts": {
+                    "type": "array"
+                },
+                "extraVolumeMounts": {
+                    "type": "array"
+                },
+                "extraVolumes": {
+                    "type": "array"
+                },
+                "fullnameOverride": {
+                    "type": "string"
+                },
+                "global": {
+                    "type": "object",
+                    "properties": {
+                        "evaluation_interval": {
+                            "type": "string"
+                        },
+                        "scrape_interval": {
+                            "type": "string"
+                        },
+                        "scrape_timeout": {
+                            "type": "string"
+                        }
+                    }
+                },
+                "hostAliases": {
+                    "type": "array"
+                },
+                "hostNetwork": {
+                    "type": "boolean"
+                },
+                "image": {
+                    "type": "object",
+                    "properties": {
+                        "digest": {
+                            "type": "string"
+                        },
+                        "pullPolicy": {
+                            "type": "string"
+                        },
+                        "repository": {
+                            "type": "string"
+                        },
+                        "tag": {
+                            "type": "string"
+                        }
+                    }
+                },
+                "ingress": {
+                    "type": "object",
+                    "properties": {
+                        "annotations": {
+                            "type": "object"
+                        },
+                        "enabled": {
+                            "type": "boolean"
+                        },
+                        "extraLabels": {
+                            "type": "object"
+                        },
+                        "extraPaths": {
+                            "type": "array"
+                        },
+                        "hosts": {
+                            "type": "array"
+                        },
+                        "path": {
+                            "type": "string"
+                        },
+                        "pathType": {
+                            "type": "string"
+                        },
+                        "tls": {
+                            "type": "array"
+                        }
+                    }
+                },
+                "livenessProbeFailureThreshold": {
+                    "type": "integer"
+                },
+                "livenessProbeInitialDelay": {
+                    "type": "integer"
+                },
+                "livenessProbePeriodSeconds": {
+                    "type": "integer"
+                },
+                "livenessProbeSuccessThreshold": {
+                    "type": "integer"
+                },
+                "livenessProbeTimeout": {
+                    "type": "integer"
+                },
+                "name": {
+                    "type": "string"
+                },
+                "nodeSelector": {
+                    "type": "object"
+                },
+                "persistentVolume": {
+                    "type": "object",
+                    "properties": {
+                        "accessModes": {
+                            "type": "array",
+                            "items": {
+                                "type": "string"
+                            }
+                        },
+                        "annotations": {
+                            "type": "object"
+                        },
+                        "enabled": {
+                            "type": "boolean"
+                        },
+                        "existingClaim": {
+                            "type": "string"
+                        },
+                        "labels": {
+                            "type": "object"
+                        },
+                        "mountPath": {
+                            "type": "string"
+                        },
+                        "size": {
+                            "type": "string"
+                        },
+                        "statefulSetNameOverride": {
+                            "type": "string"
+                        },
+                        "subPath": {
+                            "type": "string"
+                        }
+                    }
+                },
+                "podAnnotations": {
+                    "type": "object"
+                },
+                "podAntiAffinity": {
+                    "type": "string",
+                    "enum": ["", "soft", "hard"],
+                    "default": ""
+                },
+                "podAntiAffinityTopologyKey": {
+                    "type": "string"
+                },
+                "podDisruptionBudget": {
+                    "type": "object",
+                    "properties": {
+                        "enabled": {
+                            "type": "boolean"
+                        },
+                        "maxUnavailable": {
+                            "type": [
+                                "string",
+                                "integer"
+                            ]
+                        }
+                    }
+                },
+                "podLabels": {
+                    "type": "object"
+                },
+                "podSecurityPolicy": {
+                    "type": "object",
+                    "properties": {
+                        "annotations": {
+                            "type": "object"
+                        }
+                    }
+                },
+                "portName": {
+                    "type": "string"
+                },
+                "prefixURL": {
+                    "type": "string"
+                },
+                "priorityClassName": {
+                    "type": "string"
+                },
+                "probeHeaders": {
+                    "type": "array"
+                },
+                "probeScheme": {
+                    "type": "string"
+                },
+                "readinessProbeFailureThreshold": {
+                    "type": "integer"
+                },
+                "readinessProbeInitialDelay": {
+                    "type": "integer"
+                },
+                "readinessProbePeriodSeconds": {
+                    "type": "integer"
+                },
+                "readinessProbeSuccessThreshold": {
+                    "type": "integer"
+                },
+                "readinessProbeTimeout": {
+                    "type": "integer"
+                },
+                "releaseNamespace": {
+                    "type": "boolean"
+                },
+                "remoteRead": {
+                    "type": "array"
+                },
+                "remoteWrite": {
+                    "type": "array"
+                },
+                "replicaCount": {
+                    "type": "integer"
+                },
+                "resources": {
+                    "type": "object"
+                },
+                "retention": {
+                    "type": "string"
+                },
+                "retentionSize": {
+                    "type": "string"
+                },
+                "revisionHistoryLimit": {
+                    "type": "integer"
+                },
+                "securityContext": {
+                    "type": "object",
+                    "properties": {
+                        "fsGroup": {
+                            "type": "integer"
+                        },
+                        "runAsGroup": {
+                            "type": "integer"
+                        },
+                        "runAsNonRoot": {
+                            "type": "boolean"
+                        },
+                        "runAsUser": {
+                            "type": "integer"
+                        }
+                    }
+                },
+                "service": {
+                    "type": "object",
+                    "properties": {
+                        "additionalPorts": {
+                            "type": "array"
+                        },
+                        "annotations": {
+                            "type": "object"
+                        },
+                        "clusterIP": {
+                            "type": "string"
+                        },
+                        "enabled": {
+                            "type": "boolean"
+                        },
+                        "externalIPs": {
+                            "type": "array"
+                        },
+                        "gRPC": {
+                            "type": "object",
+                            "properties": {
+                                "enabled": {
+                                    "type": "boolean"
+                                },
+                                "servicePort": {
+                                    "type": "integer"
+                                }
+                            }
+                        },
+                        "labels": {
+                            "type": "object"
+                        },
+                        "loadBalancerIP": {
+                            "type": "string"
+                        },
+                        "loadBalancerSourceRanges": {
+                            "type": "array"
+                        },
+                        "servicePort": {
+                            "type": "integer"
+                        },
+                        "sessionAffinity": {
+                            "type": "string"
+                        },
+                        "statefulsetReplica": {
+                            "type": "object",
+                            "properties": {
+                                "enabled": {
+                                    "type": "boolean"
+                                },
+                                "replica": {
+                                    "type": "integer"
+                                }
+                            }
+                        },
+                        "type": {
+                            "type": "string"
+                        }
+                    }
+                },
+                "sidecarContainers": {
+                    "type": "object"
+                },
+                "sidecarTemplateValues": {
+                    "type": "object"
+                },
+                "startupProbe": {
+                    "type": "object",
+                    "properties": {
+                        "enabled": {
+                            "type": "boolean"
+                        },
+                        "failureThreshold": {
+                            "type": "integer"
+                        },
+                        "periodSeconds": {
+                            "type": "integer"
+                        },
+                        "timeoutSeconds": {
+                            "type": "integer"
+                        }
+                    }
+                },
+                "statefulSet": {
+                    "type": "object",
+                    "properties": {
+                        "annotations": {
+                            "type": "object"
+                        },
+                        "enabled": {
+                            "type": "boolean"
+                        },
+                        "headless": {
+                            "type": "object",
+                            "properties": {
+                                "annotations": {
+                                    "type": "object"
+                                },
+                                "gRPC": {
+                                    "type": "object",
+                                    "properties": {
+                                        "enabled": {
+                                            "type": "boolean"
+                                        },
+                                        "servicePort": {
+                                            "type": "integer"
+                                        }
+                                    }
+                                },
+                                "labels": {
+                                    "type": "object"
+                                },
+                                "servicePort": {
+                                    "type": "integer"
+                                }
+                            }
+                        },
+                        "labels": {
+                            "type": "object"
+                        },
+                        "podManagementPolicy": {
+                            "type": "string"
+                        },
+                        "pvcDeleteOnStsDelete": {
+                            "type": "boolean"
+                        },
+                        "pvcDeleteOnStsScale": {
+                            "type": "boolean"
+                        }
+                    }
+                },
+                "storagePath": {
+                    "type": "string"
+                },
+                "strategy": {
+                    "type": "object",
+                    "properties": {
+                        "type": {
+                            "type": "string"
+                        }
+                    }
+                },
+                "tcpSocketProbeEnabled": {
+                    "type": "boolean"
+                },
+                "terminationGracePeriodSeconds": {
+                    "type": "integer"
+                },
+                "tolerations": {
+                    "type": "array"
+                },
+                "topologySpreadConstraints": {
+                    "type": "array"
+                },
+                "tsdb": {
+                    "type": "object"
+                },
+                "verticalAutoscaler": {
+                    "type": "object",
+                    "properties": {
+                        "enabled": {
+                            "type": "boolean"
+                        }
+                    }
+                }
+            }
+        },
+        "scrapeConfigFiles": {
+            "type": "array"
+        },
+        "serverFiles": {
+            "type": "object",
+            "properties": {
+                "alerting_rules.yml": {
+                    "type": "object"
+                },
+                "alerts": {
+                    "type": "object"
+                },
+                "prometheus.yml": {
+                    "type": "object",
+                    "properties": {
+                        "rule_files": {
+                            "type": "array",
+                            "items": {
+                                "type": "string"
+                            }
+                        },
+                        "scrape_configs": {
+                            "type": "array",
+                            "items": {
+                                "type": "object",
+                                "properties": {
+                                    "job_name": {
+                                        "type": "string"
+                                    },
+                                    "static_configs": {
+                                        "type": "array",
+                                        "items": {
+                                            "type": "object",
+                                            "properties": {
+                                                "targets": {
+                                                    "type": "array",
+                                                    "items": {
+                                                        "type": "string"
+                                                    }
+                                                }
+                                            }
+                                        }
+                                    }
+                                }
+                            }
+                        }
+                    }
+                },
+                "recording_rules.yml": {
+                    "type": "object"
+                },
+                "rules": {
+                    "type": "object"
+                }
+            }
+        },
+        "serviceAccounts": {
+            "type": "object",
+            "properties": {
+                "server": {
+                    "type": "object",
+                    "properties": {
+                        "annotations": {
+                            "type": "object"
+                        },
+                        "create": {
+                            "type": "boolean"
+                        },
+                        "name": {
+                            "type": "string"
+                        },
+                        "automountServiceAccountToken": {
+                            "type": "boolean"
+                        }
+                    }
+                }
+            }
+        }
+    }
+}
diff --git a/charts/kasten/k10/7.5.401/charts/prometheus/values.yaml b/charts/kasten/k10/7.5.401/charts/prometheus/values.yaml
new file mode 100644
index 0000000000..a9bc875b2b
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/charts/prometheus/values.yaml
@@ -0,0 +1,1315 @@
+# yaml-language-server: $schema=values.schema.json
+# Default values for prometheus.
+# This is a YAML-formatted file.
+# Declare variables to be passed into your templates.
+
+rbac:
+  create: true
+
+podSecurityPolicy:
+  enabled: false
+
+imagePullSecrets: []
+# - name: "image-pull-secret"
+
+## Define serviceAccount names for components. Defaults to component's fully qualified name.
+##
+serviceAccounts:
+  server:
+    create: true
+    name: ""
+    annotations: {}
+
+    ## Opt out of automounting Kubernetes API credentials.
+    ## It will be overriden by server.automountServiceAccountToken value, if set.
+    # automountServiceAccountToken: false
+
+## Additional labels to attach to all resources
+commonMetaLabels: {}
+
+## Monitors ConfigMap changes and POSTs to a URL
+## Ref: https://github.com/prometheus-operator/prometheus-operator/tree/main/cmd/prometheus-config-reloader
+##
+configmapReload:
+  ## URL for configmap-reload to use for reloads
+  ##
+  reloadUrl: ""
+
+  ## env sets environment variables to pass to the container. Can be set as name/value pairs,
+  ## read from secrets or configmaps.
+  env: []
+    # - name: SOMEVAR
+    #   value: somevalue
+    # - name: PASSWORD
+    #   valueFrom:
+    #     secretKeyRef:
+    #       name: mysecret
+    #       key: password
+    #       optional: false
+
+  prometheus:
+    ## If false, the configmap-reload container will not be deployed
+    ##
+    enabled: true
+
+    ## configmap-reload container name
+    ##
+    name: configmap-reload
+
+    ## configmap-reload container image
+    ##
+    image:
+      repository: quay.io/prometheus-operator/prometheus-config-reloader
+      tag: v0.79.0
+      # When digest is set to a non-empty value, images will be pulled by digest (regardless of tag value).
+      digest: ""
+      pullPolicy: IfNotPresent
+
+    ## config-reloader's container port and port name for probes and metrics
+    containerPort: 8080
+    containerPortName: metrics
+
+    ## Additional configmap-reload container arguments
+    ## Set to null for argumentless flags
+    ##
+    extraArgs: {}
+
+    ## Additional configmap-reload volume directories
+    ##
+    extraVolumeDirs: []
+
+    ## Additional configmap-reload volume mounts
+    ##
+    extraVolumeMounts: []
+
+    ## Additional configmap-reload mounts
+    ##
+    extraConfigmapMounts: []
+      # - name: prometheus-alerts
+      #   mountPath: /etc/alerts.d
+      #   subPath: ""
+      #   configMap: prometheus-alerts
+      #   readOnly: true
+
+    ## Security context to be added to configmap-reload container
+    containerSecurityContext: {}
+
+    ## Settings for Prometheus reloader's readiness, liveness and startup probes
+    ## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/
+    ##
+
+    livenessProbe:
+      httpGet:
+        path: /healthz
+        port: metrics
+        scheme: HTTP
+      periodSeconds: 10
+      initialDelaySeconds: 2
+
+    readinessProbe:
+      httpGet:
+        path: /healthz
+        port: metrics
+        scheme: HTTP
+      periodSeconds: 10
+
+    startupProbe:
+      enabled: false
+      httpGet:
+        path: /healthz
+        port: metrics
+        scheme: HTTP
+      periodSeconds: 10
+
+    ## configmap-reload resource requests and limits
+    ## Ref: http://kubernetes.io/docs/user-guide/compute-resources/
+    ##
+    resources:
+      requests:
+         cpu: 10m
+         memory: 50Mi
+
+server:
+  ## Prometheus server container name
+  ##
+  name: server
+
+  ## Opt out of automounting Kubernetes API credentials.
+  ## If set it will override serviceAccounts.server.automountServiceAccountToken value for ServiceAccount.
+  # automountServiceAccountToken: false
+
+  ## Use a ClusterRole (and ClusterRoleBinding)
+  ## - If set to false - we define a RoleBinding in the defined namespaces ONLY
+  ##
+  ## NB: because we need a Role with nonResourceURL's ("/metrics") - you must get someone with Cluster-admin privileges to define this role for you, before running with this setting enabled.
+  ##     This makes prometheus work - for users who do not have ClusterAdmin privs, but wants prometheus to operate on their own namespaces, instead of clusterwide.
+  ##
+  ## You MUST also set namespaces to the ones you have access to and want monitored by Prometheus.
+  ##
+  # useExistingClusterRoleName: nameofclusterrole
+
+  ## If set it will override prometheus.server.fullname value for ClusterRole and ClusterRoleBinding
+  ##
+  clusterRoleNameOverride: ""
+
+  # Enable only the release namespace for monitoring. By default all namespaces are monitored.
+  # If releaseNamespace and namespaces are both set a merged list will be monitored.
+  releaseNamespace: false
+
+  ## namespaces to monitor (instead of monitoring all - clusterwide). Needed if you want to run without Cluster-admin privileges.
+  # namespaces:
+  #   - yournamespace
+
+  # sidecarContainers - add more containers to prometheus server
+  # Key/Value where Key is the sidecar `- name: <Key>`
+  # Example:
+  #   sidecarContainers:
+  #      webserver:
+  #        image: nginx
+  # OR for adding OAuth authentication to Prometheus
+  #   sidecarContainers:
+  #     oauth-proxy:
+  #       image: quay.io/oauth2-proxy/oauth2-proxy:v7.1.2
+  #       args:
+  #       - --upstream=http://127.0.0.1:9090
+  #       - --http-address=0.0.0.0:8081
+  #       - ...
+  #       ports:
+  #       - containerPort: 8081
+  #         name: oauth-proxy
+  #         protocol: TCP
+  #       resources: {}
+  sidecarContainers: {}
+
+  # sidecarTemplateValues - context to be used in template for sidecarContainers
+  # Example:
+  #   sidecarTemplateValues: *your-custom-globals
+  #   sidecarContainers:
+  #     webserver: |-
+  #       {{ include "webserver-container-template" . }}
+  # Template for `webserver-container-template` might looks like this:
+  #   image: "{{ .Values.server.sidecarTemplateValues.repository }}:{{ .Values.server.sidecarTemplateValues.tag }}"
+  #   ...
+  #
+  sidecarTemplateValues: {}
+
+  ## Prometheus server container image
+  ##
+  image:
+    repository: quay.io/prometheus/prometheus
+    # if not set appVersion field from Chart.yaml is used
+    tag: ""
+    # When digest is set to a non-empty value, images will be pulled by digest (regardless of tag value).
+    digest: ""
+    pullPolicy: IfNotPresent
+
+  ## Prometheus server command
+  ##
+  command: []
+
+  ## prometheus server priorityClassName
+  ##
+  priorityClassName: ""
+
+  ## EnableServiceLinks indicates whether information about services should be injected
+  ## into pod's environment variables, matching the syntax of Docker links.
+  ## WARNING: the field is unsupported and will be skipped in K8s prior to v1.13.0.
+  ##
+  enableServiceLinks: true
+
+  ## The URL prefix at which the container can be accessed. Useful in the case the '-web.external-url' includes a slug
+  ## so that the various internal URLs are still able to access as they are in the default case.
+  ## (Optional)
+  prefixURL: ""
+
+  ## External URL which can access prometheus
+  ## Maybe same with Ingress host name
+  baseURL: ""
+
+  ## Additional server container environment variables
+  ##
+  ## You specify this manually like you would a raw deployment manifest.
+  ## This means you can bind in environment variables from secrets.
+  ##
+  ## e.g. static environment variable:
+  ##  - name: DEMO_GREETING
+  ##    value: "Hello from the environment"
+  ##
+  ## e.g. secret environment variable:
+  ## - name: USERNAME
+  ##   valueFrom:
+  ##     secretKeyRef:
+  ##       name: mysecret
+  ##       key: username
+  env: []
+
+  # List of flags to override default parameters, e.g:
+  # - --enable-feature=agent
+  # - --storage.agent.retention.max-time=30m
+  # - --config.file=/etc/config/prometheus.yml
+  defaultFlagsOverride: []
+
+  extraFlags:
+    - web.enable-lifecycle
+    ## web.enable-admin-api flag controls access to the administrative HTTP API which includes functionality such as
+    ## deleting time series. This is disabled by default.
+    # - web.enable-admin-api
+    ##
+    ## storage.tsdb.no-lockfile flag controls BD locking
+    # - storage.tsdb.no-lockfile
+    ##
+    ## storage.tsdb.wal-compression flag enables compression of the write-ahead log (WAL)
+    # - storage.tsdb.wal-compression
+
+  ## Path to a configuration file on prometheus server container FS
+  configPath: /etc/config/prometheus.yml
+
+  ### The data directory used by prometheus to set --storage.tsdb.path
+  ### When empty server.persistentVolume.mountPath is used instead
+  storagePath: ""
+
+  global:
+    ## How frequently to scrape targets by default
+    ##
+    scrape_interval: 1m
+    ## How long until a scrape request times out
+    ##
+    scrape_timeout: 10s
+    ## How frequently to evaluate rules
+    ##
+    evaluation_interval: 1m
+  ## https://prometheus.io/docs/prometheus/latest/configuration/configuration/#remote_write
+  ##
+  remoteWrite: []
+  ## https://prometheus.io/docs/prometheus/latest/configuration/configuration/#remote_read
+  ##
+  remoteRead: []
+
+  ## https://prometheus.io/docs/prometheus/latest/configuration/configuration/#tsdb
+  ##
+  tsdb: {}
+    # out_of_order_time_window: 0s
+
+  ## https://prometheus.io/docs/prometheus/latest/configuration/configuration/#exemplars
+  ## Must be enabled via --enable-feature=exemplar-storage
+  ##
+  exemplars: {}
+    # max_exemplars: 100000
+
+  ## Custom HTTP headers for Liveness/Readiness/Startup Probe
+  ##
+  ## Useful for providing HTTP Basic Auth to healthchecks
+  probeHeaders: []
+    # - name: "Authorization"
+    #   value: "Bearer ABCDEabcde12345"
+
+  ## Additional Prometheus server container arguments
+  ## Set to null for argumentless flags
+  ##
+  extraArgs: {}
+    # web.enable-remote-write-receiver: null
+
+  ## Additional InitContainers to initialize the pod
+  ##
+  extraInitContainers: []
+
+  ## Additional Prometheus server Volume mounts
+  ##
+  extraVolumeMounts: []
+
+  ## Additional Prometheus server Volumes
+  ##
+  extraVolumes: []
+
+  ## Additional Prometheus server hostPath mounts
+  ##
+  extraHostPathMounts: []
+    # - name: certs-dir
+    #   mountPath: /etc/kubernetes/certs
+    #   subPath: ""
+    #   hostPath: /etc/kubernetes/certs
+    #   readOnly: true
+
+  extraConfigmapMounts: []
+    # - name: certs-configmap
+    #   mountPath: /prometheus
+    #   subPath: ""
+    #   configMap: certs-configmap
+    #   readOnly: true
+
+  ## Additional Prometheus server Secret mounts
+  # Defines additional mounts with secrets. Secrets must be manually created in the namespace.
+  extraSecretMounts: []
+    # - name: secret-files
+    #   mountPath: /etc/secrets
+    #   subPath: ""
+    #   secretName: prom-secret-files
+    #   readOnly: true
+
+  ## ConfigMap override where fullname is {{.Release.Name}}-{{.Values.server.configMapOverrideName}}
+  ## Defining configMapOverrideName will cause templates/server-configmap.yaml
+  ## to NOT generate a ConfigMap resource
+  ##
+  configMapOverrideName: ""
+
+  ## Extra labels for Prometheus server ConfigMap (ConfigMap that holds serverFiles)
+  extraConfigmapLabels: {}
+
+  ## Override the prometheus.server.fullname for all objects related to the Prometheus server
+  fullnameOverride: ""
+
+  ingress:
+    ## If true, Prometheus server Ingress will be created
+    ##
+    enabled: false
+
+    # For Kubernetes >= 1.18 you should specify the ingress-controller via the field ingressClassName
+    # See https://kubernetes.io/blog/2020/04/02/improvements-to-the-ingress-api-in-kubernetes-1.18/#specifying-the-class-of-an-ingress
+    # ingressClassName: nginx
+
+    ## Prometheus server Ingress annotations
+    ##
+    annotations: {}
+    #   kubernetes.io/ingress.class: nginx
+    #   kubernetes.io/tls-acme: 'true'
+
+    ## Prometheus server Ingress additional labels
+    ##
+    extraLabels: {}
+
+    ## Redirect ingress to an additional defined port on the service
+    # servicePort: 8081
+
+    ## Prometheus server Ingress hostnames with optional path (passed through tpl)
+    ## Must be provided if Ingress is enabled
+    ##
+    hosts: []
+    #   - prometheus.domain.com
+    #   - domain.com/prometheus
+
+    path: /
+
+    # pathType is only for k8s >= 1.18
+    pathType: Prefix
+
+    ## Extra paths to prepend to every host configuration. This is useful when working with annotation based services. (passed through tpl)
+    extraPaths: []
+    # - path: /*
+    #   backend:
+    #     serviceName: ssl-redirect
+    #     servicePort: use-annotation
+
+    ## Prometheus server Ingress TLS configuration (hosts passed through tpl)
+    ## Secrets must be manually created in the namespace
+    ##
+    tls: []
+    #   - secretName: prometheus-server-tls
+    #     hosts:
+    #       - prometheus.domain.com
+
+  ## Server Deployment Strategy type
+  strategy:
+    type: Recreate
+
+  ## hostAliases allows adding entries to /etc/hosts inside the containers
+  hostAliases: []
+  #   - ip: "127.0.0.1"
+  #     hostnames:
+  #       - "example.com"
+
+  ## Node tolerations for server scheduling to nodes with taints
+  ## Ref: https://kubernetes.io/docs/concepts/scheduling-eviction/taint-and-toleration/
+  ##
+  tolerations: []
+    # - key: "key"
+    #   operator: "Equal|Exists"
+    #   value: "value"
+    #   effect: "NoSchedule|PreferNoSchedule|NoExecute(1.6 only)"
+
+  ## Node labels for Prometheus server pod assignment
+  ## Ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/
+  ##
+  nodeSelector: {}
+
+  ## Pod affinity
+  ##
+  affinity: {}
+
+  ## Pod anti-affinity can prevent the scheduler from placing Prometheus server replicas on the same node.
+  ## The value "soft" means that the scheduler should *prefer* to not schedule two replica pods onto the same node but no guarantee is provided.
+  ## The value "hard" means that the scheduler is *required* to not schedule two replica pods onto the same node.
+  ## The default value "" will disable pod anti-affinity so that no anti-affinity rules will be configured (unless set in `server.affinity`).
+  ##
+  podAntiAffinity: ""
+
+  ## If anti-affinity is enabled sets the topologyKey to use for anti-affinity.
+  ## This can be changed to, for example, failure-domain.beta.kubernetes.io/zone
+  ##
+  podAntiAffinityTopologyKey: kubernetes.io/hostname
+
+  ## Pod topology spread constraints
+  ## ref. https://kubernetes.io/docs/concepts/scheduling-eviction/topology-spread-constraints/
+  topologySpreadConstraints: []
+
+  ## PodDisruptionBudget settings
+  ## ref: https://kubernetes.io/docs/concepts/workloads/pods/disruptions/
+  ##
+  podDisruptionBudget:
+    enabled: false
+    # maxUnavailable: 1
+    # minAvailable: 1
+    ## unhealthyPodEvictionPolicy is available since 1.27.0 (beta)
+    ## https://kubernetes.io/docs/tasks/run-application/configure-pdb/#unhealthy-pod-eviction-policy
+    # unhealthyPodEvictionPolicy: IfHealthyBudget
+
+  ## Use an alternate scheduler, e.g. "stork".
+  ## ref: https://kubernetes.io/docs/tasks/administer-cluster/configure-multiple-schedulers/
+  ##
+  # schedulerName:
+
+  persistentVolume:
+    ## If true, Prometheus server will create/use a Persistent Volume Claim
+    ## If false, use emptyDir
+    ##
+    enabled: true
+
+    ## If set it will override the name of the created persistent volume claim
+    ## generated by the stateful set.
+    ##
+    statefulSetNameOverride: ""
+
+    ## Prometheus server data Persistent Volume access modes
+    ## Must match those of existing PV or dynamic provisioner
+    ## Ref: http://kubernetes.io/docs/user-guide/persistent-volumes/
+    ##
+    accessModes:
+      - ReadWriteOnce
+
+    ## Prometheus server data Persistent Volume labels
+    ##
+    labels: {}
+
+    ## Prometheus server data Persistent Volume annotations
+    ##
+    annotations: {}
+
+    ## Prometheus server data Persistent Volume existing claim name
+    ## Requires server.persistentVolume.enabled: true
+    ## If defined, PVC must be created manually before volume will be bound
+    existingClaim: ""
+
+    ## Prometheus server data Persistent Volume mount root path
+    ##
+    mountPath: /data
+
+    ## Prometheus server data Persistent Volume size
+    ##
+    size: 8Gi
+
+    ## Prometheus server data Persistent Volume Storage Class
+    ## If defined, storageClassName: <storageClass>
+    ## If set to "-", storageClassName: "", which disables dynamic provisioning
+    ## If undefined (the default) or set to null, no storageClassName spec is
+    ##   set, choosing the default provisioner.  (gp2 on AWS, standard on
+    ##   GKE, AWS & OpenStack)
+    ##
+    # storageClass: "-"
+
+    ## Prometheus server data Persistent Volume Binding Mode
+    ## If defined, volumeBindingMode: <volumeBindingMode>
+    ## If undefined (the default) or set to null, no volumeBindingMode spec is
+    ##   set, choosing the default mode.
+    ##
+    # volumeBindingMode: ""
+
+    ## Subdirectory of Prometheus server data Persistent Volume to mount
+    ## Useful if the volume's root directory is not empty
+    ##
+    subPath: ""
+
+    ## Persistent Volume Claim Selector
+    ## Useful if Persistent Volumes have been provisioned in advance
+    ## Ref: https://kubernetes.io/docs/concepts/storage/persistent-volumes/#selector
+    ##
+    # selector:
+    #  matchLabels:
+    #    release: "stable"
+    #  matchExpressions:
+    #    - { key: environment, operator: In, values: [ dev ] }
+
+    ## Persistent Volume Name
+    ## Useful if Persistent Volumes have been provisioned in advance and you want to use a specific one
+    ##
+    # volumeName: ""
+
+  emptyDir:
+    ## Prometheus server emptyDir volume size limit
+    ##
+    sizeLimit: ""
+
+  ## Annotations to be added to Prometheus server pods
+  ##
+  podAnnotations: {}
+    # iam.amazonaws.com/role: prometheus
+
+  ## Labels to be added to Prometheus server pods
+  ##
+  podLabels: {}
+
+  ## Prometheus AlertManager configuration
+  ##
+  alertmanagers: []
+
+  ## Specify if a Pod Security Policy for node-exporter must be created
+  ## Ref: https://kubernetes.io/docs/concepts/policy/pod-security-policy/
+  ##
+  podSecurityPolicy:
+    annotations: {}
+      ## Specify pod annotations
+      ## Ref: https://kubernetes.io/docs/concepts/policy/pod-security-policy/#apparmor
+      ## Ref: https://kubernetes.io/docs/concepts/policy/pod-security-policy/#seccomp
+      ## Ref: https://kubernetes.io/docs/concepts/policy/pod-security-policy/#sysctl
+      ##
+      # seccomp.security.alpha.kubernetes.io/allowedProfileNames: '*'
+      # seccomp.security.alpha.kubernetes.io/defaultProfileName: 'docker/default'
+      # apparmor.security.beta.kubernetes.io/defaultProfileName: 'runtime/default'
+
+  ## Use a StatefulSet if replicaCount needs to be greater than 1 (see below)
+  ##
+  replicaCount: 1
+
+  ## Number of old history to retain to allow rollback
+  ## Default Kubernetes value is set to 10
+  ##
+  revisionHistoryLimit: 10
+
+  ## Annotations to be added to ConfigMap
+  ##
+  configMapAnnotations: {}
+
+  ## Annotations to be added to deployment
+  ##
+  deploymentAnnotations: {}
+
+  statefulSet:
+    ## If true, use a statefulset instead of a deployment for pod management.
+    ## This allows to scale replicas to more than 1 pod
+    ##
+    enabled: false
+
+    annotations: {}
+    labels: {}
+    podManagementPolicy: OrderedReady
+
+    ## Alertmanager headless service to use for the statefulset
+    ##
+    headless:
+      annotations: {}
+      labels: {}
+      servicePort: 80
+      ## Enable gRPC port on service to allow auto discovery with thanos-querier
+      gRPC:
+        enabled: false
+        servicePort: 10901
+        # nodePort: 10901
+
+    ## Statefulset's persistent volume claim retention policy
+    ## pvcDeleteOnStsDelete and pvcDeleteOnStsScale determine whether
+    ## statefulset's PVCs are deleted (true) or retained (false) on scaling down
+    ## and deleting statefulset, respectively. Requires 1.27.0+.
+    ## Ref: https://kubernetes.io/docs/concepts/workloads/controllers/statefulset/#persistentvolumeclaim-retention
+    ##
+    pvcDeleteOnStsDelete: false
+    pvcDeleteOnStsScale: false
+
+  ## Prometheus server readiness and liveness probe initial delay and timeout
+  ## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/
+  ##
+  tcpSocketProbeEnabled: false
+  probeScheme: HTTP
+  readinessProbeInitialDelay: 30
+  readinessProbePeriodSeconds: 5
+  readinessProbeTimeout: 4
+  readinessProbeFailureThreshold: 3
+  readinessProbeSuccessThreshold: 1
+  livenessProbeInitialDelay: 30
+  livenessProbePeriodSeconds: 15
+  livenessProbeTimeout: 10
+  livenessProbeFailureThreshold: 3
+  livenessProbeSuccessThreshold: 1
+  startupProbe:
+    enabled: false
+    periodSeconds: 5
+    failureThreshold: 30
+    timeoutSeconds: 10
+
+  ## Prometheus server resource requests and limits
+  ## Ref: http://kubernetes.io/docs/user-guide/compute-resources/
+  ##
+  resources:
+    requests:
+      cpu: 20m
+      memory: 200Mi
+    # limits:
+    #   cpu: 500m
+    #   memory: 512Mi
+    # requests:
+    #   cpu: 500m
+    #   memory: 512Mi
+
+  # Required for use in managed kubernetes clusters (such as AWS EKS) with custom CNI (such as calico),
+  # because control-plane managed by AWS cannot communicate with pods' IP CIDR and admission webhooks are not working
+  ##
+  hostNetwork: false
+
+  # When hostNetwork is enabled, this will set to ClusterFirstWithHostNet automatically
+  dnsPolicy: ClusterFirst
+
+  # Use hostPort
+  # hostPort: 9090
+
+  # Use portName
+  portName: ""
+
+  ## Vertical Pod Autoscaler config
+  ## Ref: https://github.com/kubernetes/autoscaler/tree/master/vertical-pod-autoscaler
+  verticalAutoscaler:
+    ## If true a VPA object will be created for the controller (either StatefulSet or Deployemnt, based on above configs)
+    enabled: false
+    # updateMode: "Auto"
+    # containerPolicies:
+    # - containerName: 'prometheus-server'
+
+  # Custom DNS configuration to be added to prometheus server pods
+  dnsConfig: {}
+    # nameservers:
+    #   - 1.2.3.4
+    # searches:
+    #   - ns1.svc.cluster-domain.example
+    #   - my.dns.search.suffix
+    # options:
+    #   - name: ndots
+    #     value: "2"
+  #   - name: edns0
+
+  ## Security context to be added to server pods
+  ##
+  securityContext:
+    runAsUser: 65534
+    runAsNonRoot: true
+    runAsGroup: 65534
+    fsGroup: 65534
+
+  ## Security context to be added to server container
+  ##
+  containerSecurityContext: {}
+
+  service:
+    ## If false, no Service will be created for the Prometheus server
+    ##
+    enabled: true
+
+    annotations: {}
+    labels: {}
+    clusterIP: ""
+
+    ## List of IP addresses at which the Prometheus server service is available
+    ## Ref: https://kubernetes.io/docs/concepts/services-networking/service/#external-ips
+    ##
+    externalIPs: []
+
+    loadBalancerIP: ""
+    loadBalancerSourceRanges: []
+    servicePort: 80
+    sessionAffinity: None
+    type: ClusterIP
+
+    ## Enable gRPC port on service to allow auto discovery with thanos-querier
+    gRPC:
+      enabled: false
+      servicePort: 10901
+      # nodePort: 10901
+
+    ## If using a statefulSet (statefulSet.enabled=true), configure the
+    ## service to connect to a specific replica to have a consistent view
+    ## of the data.
+    statefulsetReplica:
+      enabled: false
+      replica: 0
+
+    ## Additional port to define in the Service
+    additionalPorts: []
+    # additionalPorts:
+    # - name: authenticated
+    #   port: 8081
+    #   targetPort: 8081
+
+  ## Prometheus server pod termination grace period
+  ##
+  terminationGracePeriodSeconds: 300
+
+  ## Prometheus data retention period (default if not specified is 15 days)
+  ##
+  retention: "15d"
+
+  ## Prometheus' data retention size. Supported units: B, KB, MB, GB, TB, PB, EB.
+  ##
+  retentionSize: ""
+
+## Prometheus server ConfigMap entries for rule files (allow prometheus labels interpolation)
+ruleFiles: {}
+
+## Prometheus server ConfigMap entries for scrape_config_files
+## (allows scrape configs defined in additional files)
+##
+scrapeConfigFiles: []
+
+## Prometheus server ConfigMap entries
+##
+serverFiles:
+  ## Alerts configuration
+  ## Ref: https://prometheus.io/docs/prometheus/latest/configuration/alerting_rules/
+  alerting_rules.yml: {}
+  # groups:
+  #   - name: Instances
+  #     rules:
+  #       - alert: InstanceDown
+  #         expr: up == 0
+  #         for: 5m
+  #         labels:
+  #           severity: page
+  #         annotations:
+  #           description: '{{ $labels.instance }} of job {{ $labels.job }} has been down for more than 5 minutes.'
+  #           summary: 'Instance {{ $labels.instance }} down'
+  ## DEPRECATED DEFAULT VALUE, unless explicitly naming your files, please use alerting_rules.yml
+  alerts: {}
+
+  ## Records configuration
+  ## Ref: https://prometheus.io/docs/prometheus/latest/configuration/recording_rules/
+  recording_rules.yml: {}
+  ## DEPRECATED DEFAULT VALUE, unless explicitly naming your files, please use recording_rules.yml
+  rules: {}
+
+  prometheus.yml:
+    rule_files:
+      - /etc/config/recording_rules.yml
+      - /etc/config/alerting_rules.yml
+    ## Below two files are DEPRECATED will be removed from this default values file
+      - /etc/config/rules
+      - /etc/config/alerts
+
+    scrape_configs:
+      - job_name: prometheus
+        static_configs:
+          - targets:
+            - localhost:9090
+
+      # A scrape configuration for running Prometheus on a Kubernetes cluster.
+      # This uses separate scrape configs for cluster components (i.e. API server, node)
+      # and services to allow each to use different authentication configs.
+      #
+      # Kubernetes labels will be added as Prometheus labels on metrics via the
+      # `labelmap` relabeling action.
+
+      # Scrape config for API servers.
+      #
+      # Kubernetes exposes API servers as endpoints to the default/kubernetes
+      # service so this uses `endpoints` role and uses relabelling to only keep
+      # the endpoints associated with the default/kubernetes service using the
+      # default named port `https`. This works for single API server deployments as
+      # well as HA API server deployments.
+      - job_name: 'kubernetes-apiservers'
+
+        kubernetes_sd_configs:
+          - role: endpoints
+
+        # Default to scraping over https. If required, just disable this or change to
+        # `http`.
+        scheme: https
+
+        # This TLS & bearer token file config is used to connect to the actual scrape
+        # endpoints for cluster components. This is separate to discovery auth
+        # configuration because discovery & scraping are two separate concerns in
+        # Prometheus. The discovery auth config is automatic if Prometheus runs inside
+        # the cluster. Otherwise, more config options have to be provided within the
+        # <kubernetes_sd_config>.
+        tls_config:
+          ca_file: /var/run/secrets/kubernetes.io/serviceaccount/ca.crt
+          # If your node certificates are self-signed or use a different CA to the
+          # master CA, then disable certificate verification below. Note that
+          # certificate verification is an integral part of a secure infrastructure
+          # so this should only be disabled in a controlled environment. You can
+          # disable certificate verification by uncommenting the line below.
+          #
+          insecure_skip_verify: true
+        bearer_token_file: /var/run/secrets/kubernetes.io/serviceaccount/token
+
+        # Keep only the default/kubernetes service endpoints for the https port. This
+        # will add targets for each API server which Kubernetes adds an endpoint to
+        # the default/kubernetes service.
+        relabel_configs:
+          - source_labels: [__meta_kubernetes_namespace, __meta_kubernetes_service_name, __meta_kubernetes_endpoint_port_name]
+            action: keep
+            regex: default;kubernetes;https
+
+      - job_name: 'kubernetes-nodes'
+
+        # Default to scraping over https. If required, just disable this or change to
+        # `http`.
+        scheme: https
+
+        # This TLS & bearer token file config is used to connect to the actual scrape
+        # endpoints for cluster components. This is separate to discovery auth
+        # configuration because discovery & scraping are two separate concerns in
+        # Prometheus. The discovery auth config is automatic if Prometheus runs inside
+        # the cluster. Otherwise, more config options have to be provided within the
+        # <kubernetes_sd_config>.
+        tls_config:
+          ca_file: /var/run/secrets/kubernetes.io/serviceaccount/ca.crt
+          # If your node certificates are self-signed or use a different CA to the
+          # master CA, then disable certificate verification below. Note that
+          # certificate verification is an integral part of a secure infrastructure
+          # so this should only be disabled in a controlled environment. You can
+          # disable certificate verification by uncommenting the line below.
+          #
+          insecure_skip_verify: true
+        bearer_token_file: /var/run/secrets/kubernetes.io/serviceaccount/token
+
+        kubernetes_sd_configs:
+          - role: node
+
+        relabel_configs:
+          - action: labelmap
+            regex: __meta_kubernetes_node_label_(.+)
+          - target_label: __address__
+            replacement: kubernetes.default.svc:443
+          - source_labels: [__meta_kubernetes_node_name]
+            regex: (.+)
+            target_label: __metrics_path__
+            replacement: /api/v1/nodes/$1/proxy/metrics
+
+
+      - job_name: 'kubernetes-nodes-cadvisor'
+
+        # Default to scraping over https. If required, just disable this or change to
+        # `http`.
+        scheme: https
+
+        # This TLS & bearer token file config is used to connect to the actual scrape
+        # endpoints for cluster components. This is separate to discovery auth
+        # configuration because discovery & scraping are two separate concerns in
+        # Prometheus. The discovery auth config is automatic if Prometheus runs inside
+        # the cluster. Otherwise, more config options have to be provided within the
+        # <kubernetes_sd_config>.
+        tls_config:
+          ca_file: /var/run/secrets/kubernetes.io/serviceaccount/ca.crt
+          # If your node certificates are self-signed or use a different CA to the
+          # master CA, then disable certificate verification below. Note that
+          # certificate verification is an integral part of a secure infrastructure
+          # so this should only be disabled in a controlled environment. You can
+          # disable certificate verification by uncommenting the line below.
+          #
+          insecure_skip_verify: true
+        bearer_token_file: /var/run/secrets/kubernetes.io/serviceaccount/token
+
+        kubernetes_sd_configs:
+          - role: node
+
+        # This configuration will work only on kubelet 1.7.3+
+        # As the scrape endpoints for cAdvisor have changed
+        # if you are using older version you need to change the replacement to
+        # replacement: /api/v1/nodes/$1:4194/proxy/metrics
+        # more info here https://github.com/coreos/prometheus-operator/issues/633
+        relabel_configs:
+          - action: labelmap
+            regex: __meta_kubernetes_node_label_(.+)
+          - target_label: __address__
+            replacement: kubernetes.default.svc:443
+          - source_labels: [__meta_kubernetes_node_name]
+            regex: (.+)
+            target_label: __metrics_path__
+            replacement: /api/v1/nodes/$1/proxy/metrics/cadvisor
+
+        # Metric relabel configs to apply to samples before ingestion.
+        # [Metric Relabeling](https://prometheus.io/docs/prometheus/latest/configuration/configuration/#metric_relabel_configs)
+        # metric_relabel_configs:
+        # - action: labeldrop
+        #   regex: (kubernetes_io_hostname|failure_domain_beta_kubernetes_io_region|beta_kubernetes_io_os|beta_kubernetes_io_arch|beta_kubernetes_io_instance_type|failure_domain_beta_kubernetes_io_zone)
+
+      # Scrape config for service endpoints.
+      #
+      # The relabeling allows the actual service scrape endpoint to be configured
+      # via the following annotations:
+      #
+      # * `prometheus.io/scrape`: Only scrape services that have a value of
+      # `true`, except if `prometheus.io/scrape-slow` is set to `true` as well.
+      # * `prometheus.io/scheme`: If the metrics endpoint is secured then you will need
+      # to set this to `https` & most likely set the `tls_config` of the scrape config.
+      # * `prometheus.io/path`: If the metrics path is not `/metrics` override this.
+      # * `prometheus.io/port`: If the metrics are exposed on a different port to the
+      # service then set this appropriately.
+      # * `prometheus.io/param_<parameter>`: If the metrics endpoint uses parameters
+      # then you can set any parameter
+      - job_name: 'kubernetes-service-endpoints'
+        honor_labels: true
+
+        kubernetes_sd_configs:
+          - role: endpoints
+
+        relabel_configs:
+          - source_labels: [__meta_kubernetes_service_annotation_prometheus_io_scrape]
+            action: keep
+            regex: true
+          - source_labels: [__meta_kubernetes_service_annotation_prometheus_io_scrape_slow]
+            action: drop
+            regex: true
+          - source_labels: [__meta_kubernetes_service_annotation_prometheus_io_scheme]
+            action: replace
+            target_label: __scheme__
+            regex: (https?)
+          - source_labels: [__meta_kubernetes_service_annotation_prometheus_io_path]
+            action: replace
+            target_label: __metrics_path__
+            regex: (.+)
+          - source_labels: [__address__, __meta_kubernetes_service_annotation_prometheus_io_port]
+            action: replace
+            target_label: __address__
+            regex: (.+?)(?::\d+)?;(\d+)
+            replacement: $1:$2
+          - action: labelmap
+            regex: __meta_kubernetes_service_annotation_prometheus_io_param_(.+)
+            replacement: __param_$1
+          - action: labelmap
+            regex: __meta_kubernetes_service_label_(.+)
+          - source_labels: [__meta_kubernetes_namespace]
+            action: replace
+            target_label: namespace
+          - source_labels: [__meta_kubernetes_service_name]
+            action: replace
+            target_label: service
+          - source_labels: [__meta_kubernetes_pod_node_name]
+            action: replace
+            target_label: node
+
+      # Scrape config for slow service endpoints; same as above, but with a larger
+      # timeout and a larger interval
+      #
+      # The relabeling allows the actual service scrape endpoint to be configured
+      # via the following annotations:
+      #
+      # * `prometheus.io/scrape-slow`: Only scrape services that have a value of `true`
+      # * `prometheus.io/scheme`: If the metrics endpoint is secured then you will need
+      # to set this to `https` & most likely set the `tls_config` of the scrape config.
+      # * `prometheus.io/path`: If the metrics path is not `/metrics` override this.
+      # * `prometheus.io/port`: If the metrics are exposed on a different port to the
+      # service then set this appropriately.
+      # * `prometheus.io/param_<parameter>`: If the metrics endpoint uses parameters
+      # then you can set any parameter
+      - job_name: 'kubernetes-service-endpoints-slow'
+        honor_labels: true
+
+        scrape_interval: 5m
+        scrape_timeout: 30s
+
+        kubernetes_sd_configs:
+          - role: endpoints
+
+        relabel_configs:
+          - source_labels: [__meta_kubernetes_service_annotation_prometheus_io_scrape_slow]
+            action: keep
+            regex: true
+          - source_labels: [__meta_kubernetes_service_annotation_prometheus_io_scheme]
+            action: replace
+            target_label: __scheme__
+            regex: (https?)
+          - source_labels: [__meta_kubernetes_service_annotation_prometheus_io_path]
+            action: replace
+            target_label: __metrics_path__
+            regex: (.+)
+          - source_labels: [__address__, __meta_kubernetes_service_annotation_prometheus_io_port]
+            action: replace
+            target_label: __address__
+            regex: (.+?)(?::\d+)?;(\d+)
+            replacement: $1:$2
+          - action: labelmap
+            regex: __meta_kubernetes_service_annotation_prometheus_io_param_(.+)
+            replacement: __param_$1
+          - action: labelmap
+            regex: __meta_kubernetes_service_label_(.+)
+          - source_labels: [__meta_kubernetes_namespace]
+            action: replace
+            target_label: namespace
+          - source_labels: [__meta_kubernetes_service_name]
+            action: replace
+            target_label: service
+          - source_labels: [__meta_kubernetes_pod_node_name]
+            action: replace
+            target_label: node
+
+      - job_name: 'prometheus-pushgateway'
+        honor_labels: true
+
+        kubernetes_sd_configs:
+          - role: service
+
+        relabel_configs:
+          - source_labels: [__meta_kubernetes_service_annotation_prometheus_io_probe]
+            action: keep
+            regex: pushgateway
+
+      # Example scrape config for probing services via the Blackbox Exporter.
+      #
+      # The relabeling allows the actual service scrape endpoint to be configured
+      # via the following annotations:
+      #
+      # * `prometheus.io/probe`: Only probe services that have a value of `true`
+      - job_name: 'kubernetes-services'
+        honor_labels: true
+
+        metrics_path: /probe
+        params:
+          module: [http_2xx]
+
+        kubernetes_sd_configs:
+          - role: service
+
+        relabel_configs:
+          - source_labels: [__meta_kubernetes_service_annotation_prometheus_io_probe]
+            action: keep
+            regex: true
+          - source_labels: [__address__]
+            target_label: __param_target
+          - target_label: __address__
+            replacement: blackbox
+          - source_labels: [__param_target]
+            target_label: instance
+          - action: labelmap
+            regex: __meta_kubernetes_service_label_(.+)
+          - source_labels: [__meta_kubernetes_namespace]
+            target_label: namespace
+          - source_labels: [__meta_kubernetes_service_name]
+            target_label: service
+
+      # Example scrape config for pods
+      #
+      # The relabeling allows the actual pod scrape endpoint to be configured via the
+      # following annotations:
+      #
+      # * `prometheus.io/scrape`: Only scrape pods that have a value of `true`,
+      # except if `prometheus.io/scrape-slow` is set to `true` as well.
+      # * `prometheus.io/scheme`: If the metrics endpoint is secured then you will need
+      # to set this to `https` & most likely set the `tls_config` of the scrape config.
+      # * `prometheus.io/path`: If the metrics path is not `/metrics` override this.
+      # * `prometheus.io/port`: Scrape the pod on the indicated port instead of the default of `9102`.
+      - job_name: 'kubernetes-pods'
+        honor_labels: true
+
+        kubernetes_sd_configs:
+          - role: pod
+
+        relabel_configs:
+          - source_labels: [__meta_kubernetes_pod_annotation_prometheus_io_scrape]
+            action: keep
+            regex: true
+          - source_labels: [__meta_kubernetes_pod_annotation_prometheus_io_scrape_slow]
+            action: drop
+            regex: true
+          - source_labels: [__meta_kubernetes_pod_annotation_prometheus_io_scheme]
+            action: replace
+            regex: (https?)
+            target_label: __scheme__
+          - source_labels: [__meta_kubernetes_pod_annotation_prometheus_io_path]
+            action: replace
+            target_label: __metrics_path__
+            regex: (.+)
+          - source_labels: [__meta_kubernetes_pod_annotation_prometheus_io_port, __meta_kubernetes_pod_ip]
+            action: replace
+            regex: (\d+);(([A-Fa-f0-9]{1,4}::?){1,7}[A-Fa-f0-9]{1,4})
+            replacement: '[$2]:$1'
+            target_label: __address__
+          - source_labels: [__meta_kubernetes_pod_annotation_prometheus_io_port, __meta_kubernetes_pod_ip]
+            action: replace
+            regex: (\d+);((([0-9]+?)(\.|$)){4})
+            replacement: $2:$1
+            target_label: __address__
+          - action: labelmap
+            regex: __meta_kubernetes_pod_annotation_prometheus_io_param_(.+)
+            replacement: __param_$1
+          - action: labelmap
+            regex: __meta_kubernetes_pod_label_(.+)
+          - source_labels: [__meta_kubernetes_namespace]
+            action: replace
+            target_label: namespace
+          - source_labels: [__meta_kubernetes_pod_name]
+            action: replace
+            target_label: pod
+          - source_labels: [__meta_kubernetes_pod_phase]
+            regex: Pending|Succeeded|Failed|Completed
+            action: drop
+          - source_labels: [__meta_kubernetes_pod_node_name]
+            action: replace
+            target_label: node
+
+      # Example Scrape config for pods which should be scraped slower. An useful example
+      # would be stackriver-exporter which queries an API on every scrape of the pod
+      #
+      # The relabeling allows the actual pod scrape endpoint to be configured via the
+      # following annotations:
+      #
+      # * `prometheus.io/scrape-slow`: Only scrape pods that have a value of `true`
+      # * `prometheus.io/scheme`: If the metrics endpoint is secured then you will need
+      # to set this to `https` & most likely set the `tls_config` of the scrape config.
+      # * `prometheus.io/path`: If the metrics path is not `/metrics` override this.
+      # * `prometheus.io/port`: Scrape the pod on the indicated port instead of the default of `9102`.
+      - job_name: 'kubernetes-pods-slow'
+        honor_labels: true
+
+        scrape_interval: 5m
+        scrape_timeout: 30s
+
+        kubernetes_sd_configs:
+          - role: pod
+
+        relabel_configs:
+          - source_labels: [__meta_kubernetes_pod_annotation_prometheus_io_scrape_slow]
+            action: keep
+            regex: true
+          - source_labels: [__meta_kubernetes_pod_annotation_prometheus_io_scheme]
+            action: replace
+            regex: (https?)
+            target_label: __scheme__
+          - source_labels: [__meta_kubernetes_pod_annotation_prometheus_io_path]
+            action: replace
+            target_label: __metrics_path__
+            regex: (.+)
+          - source_labels: [__meta_kubernetes_pod_annotation_prometheus_io_port, __meta_kubernetes_pod_ip]
+            action: replace
+            regex: (\d+);(([A-Fa-f0-9]{1,4}::?){1,7}[A-Fa-f0-9]{1,4})
+            replacement: '[$2]:$1'
+            target_label: __address__
+          - source_labels: [__meta_kubernetes_pod_annotation_prometheus_io_port, __meta_kubernetes_pod_ip]
+            action: replace
+            regex: (\d+);((([0-9]+?)(\.|$)){4})
+            replacement: $2:$1
+            target_label: __address__
+          - action: labelmap
+            regex: __meta_kubernetes_pod_annotation_prometheus_io_param_(.+)
+            replacement: __param_$1
+          - action: labelmap
+            regex: __meta_kubernetes_pod_label_(.+)
+          - source_labels: [__meta_kubernetes_namespace]
+            action: replace
+            target_label: namespace
+          - source_labels: [__meta_kubernetes_pod_name]
+            action: replace
+            target_label: pod
+          - source_labels: [__meta_kubernetes_pod_phase]
+            regex: Pending|Succeeded|Failed|Completed
+            action: drop
+          - source_labels: [__meta_kubernetes_pod_node_name]
+            action: replace
+            target_label: node
+
+# adds additional scrape configs to prometheus.yml
+# must be a string so you have to add a | after extraScrapeConfigs:
+# example adds prometheus-blackbox-exporter scrape config
+extraScrapeConfigs: ""
+  # - job_name: 'prometheus-blackbox-exporter'
+  #   metrics_path: /probe
+  #   params:
+  #     module: [http_2xx]
+  #   static_configs:
+  #     - targets:
+  #       - https://example.com
+  #   relabel_configs:
+  #     - source_labels: [__address__]
+  #       target_label: __param_target
+  #     - source_labels: [__param_target]
+  #       target_label: instance
+  #     - target_label: __address__
+  #       replacement: prometheus-blackbox-exporter:9115
+
+# Adds option to add alert_relabel_configs to avoid duplicate alerts in alertmanager
+# useful in H/A prometheus with different external labels but the same alerts
+alertRelabelConfigs: {}
+  # alert_relabel_configs:
+  # - source_labels: [dc]
+  #   regex: (.+)\d+
+  #   target_label: dc
+
+networkPolicy:
+  ## Enable creation of NetworkPolicy resources.
+  ##
+  ## Customized for K10
+  enabled: true
+
+# Force namespace of namespaced resources
+forceNamespace: ""
+
+# Extra manifests to deploy as an array
+extraManifests: []
+  # - |
+  #   apiVersion: v1
+  #   kind: ConfigMap
+  #   metadata:
+  #   labels:
+  #     name: prometheus-extra
+  #   data:
+  #     extra-data: "value"
+
+# Configuration of subcharts defined in Chart.yaml
+
+## alertmanager sub-chart configurable values
+## Please see https://github.com/prometheus-community/helm-charts/tree/main/charts/alertmanager
+##
+alertmanager:
+  ## If false, alertmanager will not be installed
+  ##
+  ## Customized for K10
+  enabled: false
+
+  persistence:
+    size: 2Gi
+
+  podSecurityContext:
+    runAsUser: 65534
+    runAsNonRoot: true
+    runAsGroup: 65534
+    fsGroup: 65534
+
+## kube-state-metrics sub-chart configurable values
+## Please see https://github.com/prometheus-community/helm-charts/tree/main/charts/kube-state-metrics
+##
+kube-state-metrics:
+  ## If false, kube-state-metrics sub-chart will not be installed
+  ##
+  ## Customized for K10
+  enabled: false
+
+## prometheus-node-exporter sub-chart configurable values
+## Please see https://github.com/prometheus-community/helm-charts/tree/main/charts/prometheus-node-exporter
+##
+prometheus-node-exporter:
+  ## If false, node-exporter will not be installed
+  ##
+  ## Customized for K10
+  enabled: false
+
+  rbac:
+    pspEnabled: false
+
+  containerSecurityContext:
+    allowPrivilegeEscalation: false
+
+## prometheus-pushgateway sub-chart configurable values
+## Please see https://github.com/prometheus-community/helm-charts/tree/main/charts/prometheus-pushgateway
+##
+prometheus-pushgateway:
+  ## If false, pushgateway will not be installed
+  ##
+  ## Customized for K10
+  enabled: false
+
+  # Optional service annotations
+  serviceAnnotations:
+    prometheus.io/probe: pushgateway
diff --git a/charts/kasten/k10/7.5.401/config.json b/charts/kasten/k10/7.5.401/config.json
new file mode 100644
index 0000000000..e69de29bb2
diff --git a/charts/kasten/k10/7.5.401/eula.txt b/charts/kasten/k10/7.5.401/eula.txt
new file mode 100644
index 0000000000..19f9fc0763
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/eula.txt
@@ -0,0 +1,459 @@
+KASTEN END USER LICENSE AGREEMENT
+
+This End User License Agreement is a binding agreement between Kasten, Inc., a
+Delaware Corporation ("Kasten"), and you ("Licensee"), and establishes the terms
+under which Licensee may use the Software and Documentation (as defined below),
+including without limitation terms and conditions relating to license grant,
+intellectual property rights, disclaimers /exclusions / limitations of warranty,
+indemnity and liability, governing law and limitation periods. All components
+collectively are referred to herein as the "Agreement."
+
+LICENSEE ACKNOWLEDGES IT HAS HAD THE OPPORTUNITY TO REVIEW THE AGREEMENT, PRIOR
+TO ACCEPTANCE OF THIS AGREEMENT. LICENSEE'S ACCEPTANCE OF THIS AGREEMENT IS
+EVIDENCED BY LICENSEE'S DOWNLOADING, COPYING, INSTALLING  OR USING THE KASTEN
+SOFTWARE. IF YOU ARE ACTING ON BEHALF OF A COMPANY, YOU REPRESENT THAT YOU ARE
+AUTHORIZED TO BIND THE COMPANY. IF YOU DO NOT AGREE TO ALL TERMS OF THIS
+AGREEMENT, DO NOT DOWNLOAD, COPY, INSTALL, OR USE THE SOFTWARE, AND PERMANENTLY
+DELETE THE SOFTWARE.
+
+1. DEFINITIONS
+
+1.1 "Authorized Persons" means trained technical employees and contractors of
+Licensee who are subject to a written agreement with Licensee that includes use
+and confidentiality restrictions that are at least as protective as those set
+forth in this Agreement.
+
+1.2 "Authorized Reseller" means a distributor or reseller, including cloud
+computing platform providers, authorized by Kasten to resell licenses to the
+Software through the channel through or in the territory in which Licensee is
+purchasing.
+
+1.3 "Confidential Information" means all non-public information disclosed in
+written, oral or visual form by either party to the other.  Confidential
+Information may include, but is not limited to, services, pricing information,
+computer programs, source code, names and expertise of employees and
+consultants, know-how, and other technical, business, financial and product
+development information.  "Confidential Information" does not include any
+information that the receiving party can demonstrate by its written records (1)
+was rightfully known to it without obligation of confidentiality prior to its
+disclosure hereunder by the disclosing party; (2) is or becomes publicly known
+through no wrongful act of the receiving party; (3) has been rightfully received
+without obligation of confidentiality from a third party authorized to make such
+a disclosure; or (4) is independently developed by the receiving party without
+reference to confidential information disclosed hereunder.
+
+1.4 "Documentation" means any administration guides, installation and user
+guides, and release notes that are provided by Kasten to Licensee with the
+Software.
+
+1.5  "Intellectual Property Rights" means patents, design patents, copyrights,
+trademarks, Confidential Information, know-how, trade secrets, moral rights, and
+any other intellectual property rights recognized in any country or jurisdiction
+in the world.
+
+1.6 "Node" means a single physical or virtual computing machine recognizable by
+the Software as a unique device. Nodes must be owned or leased by Licensee or an
+entity controlled by, controlling or under common control with Licensee.
+
+1.7 "Edition" means a unique identifier for each distinct product that is made
+available by Kasten and that can be licensed, including summary information
+regarding any associated functionality, features, or restrictions specific to
+the Edition.
+
+1.8 "Open Source Software" means software delivered to Licensee hereunder that
+is subject to the provisions of any open source license agreement.
+
+1.9 "Purchase Agreement" means a separate commercial agreement, if applicable,
+between Kasten and the Licensee that contains the terms for the licensing of a
+specific Edition of the Software.
+
+1.10 "Software" means any and all software product Editions licensed to Licensee
+under this Agreement, all as developed by Kasten and delivered to Licensee
+hereunder. Software also includes any Updates provided by Kasten to Licensee.
+For the avoidance of doubt, the definition of Software shall exclude any
+Third-Party Software and Open Source Software.
+
+1.11 "Third-Party Software" means certain software Kasten licenses from third
+parties and provides to Licensee with the Software, which may include Open
+Source Software.
+
+1.12 "Update" means a revision of the Software that Kasten makes available to
+customers at no additional cost. The Update includes, if and when applicable and
+available, bug fix patches, maintenance release, minor release, or new major
+releases. Updates are limited only to the Software licensed by Licensee, and
+specifically exclude new product offerings, features, options or functionality
+of the Software that Kasten may choose to license separately, or for an
+additional fee.
+
+1.13 "Use" means to install activate the processing capabilities of the
+Software, load, execute, access, employ the Software, or display information
+resulting from such capabilities.
+
+
+2. LICENSE GRANT AND RESTRICTIONS
+
+2.1 Enterprise License.  Subject to Licensee"s compliance with the terms and
+conditions of this Agreement (including any additional restrictions on
+Licensee"s use of the Software set forth in the Purchase Agreement, if one
+exists, between Licensee and Kasten), Kasten grants to Licensee a non-exclusive,
+non-transferable (except in connection with a permitted assignment of this
+Agreement under Section 14.10 (Assignment), non-sublicensable, limited term
+license to install and use the Software, in object code form only, solely for
+Licensee"s use, unless terminated in accordance with Section 4 (Term and
+Termination).
+
+2.2 Starter License.  This section shall only apply when the Licensee licenses
+Starter Edition of the Software. The license granted herein is for a maximum of
+5 Nodes and for a period of 12 months from the date of the Software release that
+embeds the specific license instance. Updating to a newer Software (minor or
+major) release will always extend the validity of the license by 12 months. If
+the Licensee wishes to upgrade to an Enterprise License instead, the Licensee
+will have to enter into a Purchase Agreement with Kasten which will supersede
+this Agreement. The Licensee is required to provide accurate email and company
+information, if representing a company, when accepting this Agreement. Under no
+circumstances will a Starter License be construed to mean that the Licensee is
+authorized to distribute the Software to any third party for any reason
+whatsoever.
+
+2.3 Evaluation License.  This section shall only apply when the Licensee has
+licensed the Software for an initial evaluation period. The license granted
+herein is valid only one time 30 days, starting from date of installation,
+unless otherwise explicitly designated by Kasten ("Evaluation Period"). Under
+this license the Software can only be used for evaluation purposes. Under no
+circumstances will an Evaluation License be construed to mean that the Licensee
+is authorized to distribute the Software to any third party for any reason
+whatsoever. If the Licensee wishes to upgrade to an Enterprise License instead,
+the Licensee will have to enter into a Purchase Agreement with Kasten which will
+supersede this Agreement.. If the Licensee does not wish to upgrade to an
+Enterprise License   at the end of the Evaluation Period the Licensee"s rights
+under the Agreement shall terminate, and the Licensee shall delete all Kasten
+Software.
+
+2.4 License Restrictions.  Except to the extent permitted under this Agreement,
+Licensee will not nor will Licensee allow any third party to:  (i) copy, modify,
+adapt, translate or otherwise create derivative works of the Software or the
+Documentation; (ii) reverse engineer, decompile, disassemble or otherwise
+attempt to discover the source code of the Software; (iii) rent, lease, sell,
+assign or otherwise transfer rights in or to the Software or Documentation; (iv)
+remove any proprietary notices or labels from the Software or Documentation; (v)
+publicly disseminate performance information or analysis (including, without
+limitation, benchmarks) relating to the Software. Licensee will comply with all
+applicable laws and regulations in Licensee"s use of and access to the Software
+and Documentation.
+
+2.5 Responsibility for Use.  The Software and Documentation may be used only by
+Authorized Persons and in conformance with this Agreement.  Licensee shall be
+responsible for the proper use and protection of the Software and Documentation
+and is responsible for: (i) installing, managing, operating, and physically
+controlling the Software and the results obtained from using the Software; (ii)
+using the Software within the operating environment specified in the
+Documentation; and; (iii) establishing and maintaining such recovery and data
+protection and security procedures as necessary for Licensee's service and
+operation and/or as may be specified by Kasten from time to time.
+
+2.6 United States Government Users.  The Software licensed under this Agreement
+is "commercial computer software" as that term is described in DFAR
+252.227-7014(a)(1). If acquired by or on behalf of a civilian agency, the U.S.
+Government acquires this commercial computer software and/or commercial computer
+software documentation subject to the terms and this Agreement as specified in
+48 C.F.R. 12.212 (Computer Software) and 12.211 (Technical Data) of the Federal
+Acquisition Regulations ("FAR") and its successors. If acquired by or on behalf
+of any agency within the Department of Defense ("DOD"), the U.S. Government
+acquires this commercial computer software and/or commercial computer software
+documentation subject to the terms of this Agreement as specified in 48 C.F.R.
+227.7202 of the DOD FAR Supplement and its successors.
+
+
+3. SUPPORT
+
+3.1          During the Term (as defined below) and subject to Licensee’s compliance 
+with the terms and conditions of this Agreement, Licensee may submit queries and 
+requests for support for Enterprise Licenses by submitting Service Requests via Veeam 
+Support Portal (https://my.veeam.com). Support is not provided for Starter and Evaluation 
+Licenses.  Licensee shall be entitled to the support service-level agreement specified 
+in the relevant order form or purchase order (“Order Form”) between Licensee and the 
+Reseller and as set forth in Kasten’s Support Policy, a copy of which can be found 
+at https://www.kasten.io/support-services-policy. Licensee shall also be permitted to 
+download and install all Updates released by Kasten during the Term and made generally 
+available to users of the Software. Software versions with all updates and upgrades 
+installed is supported for six months from the date of release of that version. 
+
+3.2          Starter Edition Support.  If the Licensee has licensed Starter Edition of 
+the Software, you will have access to the Kasten K10 Support Community 
+(https://community.veeam.com/groups/kasten-k10-support-92), but Kasten cannot guarantee 
+a service level of any sort. Should a higher level of support be needed, Licensee has 
+the option to consider entering into a Purchase Agreement with Kasten for licensing a 
+different Edition of the Software.
+
+
+
+4. TERM AND TERMINATION
+
+4.1 Term. The term of this Agreement, except for Starter and Evaluation
+Licenses, shall commence on the Effective Date and shall, unless terminated
+earlier in accordance with the provisions of Section 4.2 below, remain in force
+for the Subscription Period as set forth in the applicable Order Form(s) (the
+"Term"). The parties may extend the Term of this Agreement beyond the
+Subscription Period by executing additional Order Form(s) and Licensee"s payment
+of additional licensing fees. The term of this Agreement for the Starter and
+Evaluation Licenses will coincide with the term for Starter Edition (as stated
+in section 2.2) and the term for Evaluation Period (as stated in section 2.3),
+respectively
+
+4.2 Termination.  Either party may immediately terminate this
+Agreement and the licenses granted hereunder if the other party (1) becomes
+insolvent and"becomes unwilling or unable to meet its obligations under this
+Agreement, (2) files a petition in bankruptcy, (3) is subject to the filing of
+an involuntary petition for bankruptcy which is not rescinded within a period of
+forty-five (45) days, (4) fails to cure a material breach of any material term
+or condition of this Agreement within thirty (30) days of receipt of written
+notice specifying such breach, or (5) materially breaches its obligations of
+confidentiality hereunder.
+
+4.3 Effects of Termination. Upon expiration or
+termination of this Agreement for any reason, (i) any amounts owed to Kasten
+under this Agreement will be immediately due and payable; (ii) all licensed
+rights granted in this Agreement will immediately cease; and (iii) Licensee will
+promptly discontinue all use of the Software and Documentation and return to
+Kasten any Kasten Confidential Information in Licensee"s possession or control.
+
+4.4 Survival.  The following Sections of this Agreement will remain in effect
+following the expiration or termination of these General Terms for any reason:
+4.3 (Effects of Termination), 4.4 (Survival), 5 (Third Party Software) 5
+(Confidentiality), 9 (Ownership), 10.2 (Third-Party Software), 10.3 (Warranty
+Disclaimer), 11 (Limitations of Liability), 12.2 (Exceptions to Kasten
+Obligation), 13 (Export) and 14 (General).
+
+
+5. THIRD PARTY AND OPEN SOURCE SOFTWARE Certain Third-Party Software or Open
+Source Software (Kasten can provide a list upon request) that may be provided
+with the Software may be subject to various other terms and conditions imposed
+by the licensors of such Third-Party Software or Open Source Software.  The
+terms of Licensee"s use of the Third-Party Software or Open Source Software is
+subject to and governed by the respective Third-Party Software and Open Source
+licenses, except that this Section 5 (Third-Party Software), Section 10.2 (Third
+Party Software), 10.3 (Warranty Disclaimer), Section 11 (Limitations of
+Liability), and Section 14 (General) of this Agreement also govern Licensee"s
+use of the Third-Party Software.  To the extent applicable to Licensee"s use of
+such Third-Party Software and Open Source, Licensee agrees to comply with the
+terms and conditions contained in all such Third-Party Software and Open Source
+licenses.
+
+
+6. CONFIDENTIALITY Neither party will use any Confidential Information of the
+other party except as expressly permitted by this Agreement or as expressly
+authorized in writing by the disclosing party.  The receiving party shall use
+the same degree of care to protect the disclosing party"s Confidential
+Information as it uses to protect its own Confidential Information of like
+nature, but in no circumstances less than a commercially reasonable standard of
+care.  The receiving party may not disclose the disclosing party"s Confidential
+Information to any person or entity other than to (i) (a) Authorized Persons in
+the case the receiving party is Licensee, and (b) Kasten"s employees and
+contractors in the case the receiving party is Kasten, and (ii) who need access
+to such Confidential Information solely for the purpose of fulfilling that
+party"s obligations or exercising that party"s rights hereunder.  The foregoing
+obligations will not restrict the receiving party from disclosing Confidential
+Information of the disclosing party: (1) pursuant to the order or requirement of
+a court, administrative agency, or other governmental body, provided that the
+receiving party required to make such a disclosure gives reasonable notice to
+the disclosing party prior to such disclosure; and (2) on a confidential basis
+to its legal and financial advisors.  Kasten may identify Licensee in its
+customer lists in online and print marketing materials.
+
+
+7. FEES Fees for Enterprise License shall be set forth in separate Order Form(s)
+attached to a Purchase Agreement, between the Licensee and Kasten.
+
+If Licensee has obtained the Software through an Authorized Reseller, fees for
+licensing shall be invoiced directly by the Authorized Reseller.
+
+If no Purchase Agreement exists, during the term of this Agreement,  Kasten
+shall license the Starter Edition only and no other Edition of the Software
+"at no charge" to Licensee.
+
+
+8. USAGE DATA Kasten may collect, accumulate, and aggregate certain usage
+statistics in order to analyze usage of the Software, make improvements, and
+potentially develop new products. Kasten may use aggregated anonymized data for
+any purpose that Kasten, at its own discretion, may consider appropriate.
+
+
+9. OWNERSHIP As between Kasten and Licensee, all right, title and interest in
+the Software, Documentation and any other Kasten materials furnished or made
+available hereunder, all modifications and enhancements thereof, and all
+suggestions, ideas and feedback proposed by Licensee regarding the Software and
+Documentation, including all copyright rights, patent rights and other
+Intellectual Property Rights in each of the foregoing, belong to and are
+retained solely by Kasten or Kasten"s licensors and providers, as applicable.
+Licensee hereby does and will irrevocably assign to Kasten all evaluations,
+ideas, feedback and suggestions made by Licensee to Kasten regarding the
+Software and Documentation (collectively, "Feedback") and all Intellectual
+Property Rights in and to the Feedback.  Except as expressly provided herein, no
+licenses of any kind are granted hereunder, whether by implication, estoppel, or
+otherwise.
+
+
+10. LIMITED WARRANTY AND DISCLAIMERS
+
+10.1 Limited Warranty.  Kasten warrants for a period of thirty (30) days from
+the Effective Date that the Software will materially conform to Kasten"s
+then-current Documentation (the "Warranty Period") when properly installed on a
+computer for which a license is granted hereunder. Licensee"s exclusive remedy
+for a breach of this Section 10.1 is that Kasten shall, at its option, use
+commercially reasonable efforts to correct  or replace the Software, or refund
+all or a portion of the fees paid by Licensee pursuant to the Purchase
+Agreement. Kasten, in its sole discretion, may revise this limited warranty from
+time to time.
+
+10.2 Third-Party Software.  Except as expressly set forth in this Agreement,
+Third-Party Software (including any Open Source Software) are provided on an
+"as-is" basis at the sole risk of Licensee. Notwithstanding any language to the
+contrary in this Agreement, Kasten makes no express or implied warranties of any
+kind with respect to Third-Party Software provided to Licensee and shall not be
+liable for any damages regarding the use or operation of the Third-Party
+Software furnished under this Agreement.  Any and all express or implied
+warranties, if any, arising from the license of Third-Party Software shall be
+those warranties running from the third party manufacturer or licensor to
+Licensee.
+
+10.3 Warranty Disclaimer.  EXCEPT FOR THE LIMITED WARRANTY PROVIDED ABOVE,
+KASTEN AND ITS SUPPLIERS MAKE NO WARRANTY OF ANY KIND, WHETHER EXPRESS, IMPLIED,
+STATUTORY OR OTHERWISE, RELATING TO THE SOFTWARE OR TO KASTEN"S MAINTENANCE,
+PROFESSIONAL OR OTHER SERVICES.  KASTEN SPECIFICALLY DISCLAIMS ALL IMPLIED
+WARRANTIES OF DESIGN, MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, TITLE
+AND NON-INFRINGEMENT. KASTEN AND ITS SUPPLIERS AND LICENSORS DO NOT WARRANT OR
+REPRESENT THAT THE SOFTWARE WILL BE FREE FROM BUGS OR THAT ITS USE WILL BE
+UNINTERRUPTED OR ERROR-FREE. THIS DISCLAIMER SHALL APPLY NOTWITHSTANDING THE
+FAILURE OF THE ESSENTIAL PURPOSE OF ANY LIMITED REMEDY PROVIDED HEREIN. EXCEPT
+AS STATED ABOVE, KASTEN AND ITS SUPPLIERS PROVIDE THE SOFTWARE ON AN "AS IS"
+BASIS.  KASTEN  PROVIDES NO WARRANTIES WITH RESPECT TO THIRD PARTY SOFTWARE AND
+OPEN SOURCE SOFTWARE.
+
+
+11. LIMITATIONS OF LIABILITY
+
+11.1 EXCLUSION OF CERTAIN DAMAGES.  EXCEPT FOR BREACHES OF SECTION 6
+(CONFIDENTIALITY) OR SECTION 9 (OWNERSHIP),  IN NO EVENT WILL EITHER PARTY BE
+LIABLE FOR ANY INDIRECT, CONSEQUENTIAL, EXEMPLARY, SPECIAL, INCIDENTAL OR
+RELIANCE DAMAGES, INCLUDING ANY LOST DATA, LOSS OF USE AND LOST PROFITS, ARISING
+FROM OR RELATING TO THIS AGREEMENT, THE SOFTWARE OR DOCUMENTATION, EVEN IF SUCH
+PARTY KNEW OR SHOULD HAVE KNOWN OF THE POSSIBILITY OF, OR COULD REASONABLY HAVE
+PREVENTED, SUCH DAMAGES.
+
+11.2 LIMITATION OF DAMAGES.  EXCEPT FOR THE BREACHES OF SECTION 6
+(CONFIDENTIALITY) OR SECTION 9 (OWNERSHIP), EACH PARTY"S TOTAL CUMULATIVE
+LIABILITY ARISING FROM OR RELATED TO THIS AGREEMENT OR THE SOFTWARE,
+DOCUMENTATION, OR SERVICES PROVIDED BY KASTEN, WILL NOT EXCEED THE AMOUNT OF
+FEES PAID OR PAYABLE BY LICENSEE FOR THE SOFTWARE, DOCUMENTATION OR SERVICES
+GIVING RISE TO THE CLAIM IN THE TWELVE (12) MONTHS FOLLOWING THE EFFECTIVE DATE.
+LICENSEE AGREES THAT KASTEN"S SUPPLIERS AND LICENSORS WILL HAVE NO LIABILITY OF
+ANY KIND UNDER OR AS A RESULT OF THIS AGREEMENT. IN THE CASE OF KASTEN"S
+INDEMNIFICATION OBLIGATIONS, KASTEN"S CUMULATIVE LIABILITY UNDER THIS AGREEMENT
+SHALL BE LIMITED TO THE SUM OF THE LICENSE FEES PAID OR PAYABLE BY LICENSEE FOR
+THE SOFTWARE, DOCUMENTATION OR SERVICES GIVING RISE TO THE CLAIM IN THE TWELVE
+(12) MONTHS FOLLOWING THE EFFECTIVE DATE.
+
+11.3 THIRD PARTY SOFTWARE.  NOTWITHSTANDING ANY LANGUAGE TO THE CONTRARY IN THIS
+AGREEMENT, KASTEN SHALL NOT BE LIABLE FOR ANY DAMAGES REGARDING THE USE OR
+OPERATION OF ANY THIRD-PARTY SOFTWARE FURNISHED UNDER THIS AGREEMENT.
+
+11.4 LIMITATION OF ACTIONS.  IN NO EVENT MAY LICENSEE BRING ANY CAUSE OF ACTION
+RELATED TO THIS AGREEMENT MORE THAN ONE (1) YEAR AFTER THE OCCURRENCE OF THE
+EVENT GIVING RISE TO THE LIABILITY.
+
+
+12. EXPORT
+The Software, Documentation and related technical data may be subject
+to U.S. export control laws, including without limitation the U.S. Export
+Administration Act and its associated regulations, and may be subject to export
+or import regulations in other countries. Licensee shall comply with all such
+regulations and agrees to obtain all necessary licenses to export, re-export, or
+import the Software, Documentation and related technical data.
+
+
+13. GENERAL
+
+13.1 No Agency. Kasten and Licensee each acknowledge and agree that the
+relationship established by this Agreement is that of independent contractors,
+and nothing contained in this Agreement shall be construed to: (1) give either
+party the power to direct or control the daytoday activities of the other; (2)
+deem the parties to be acting as partners, joint venturers, coowners or
+otherwise as participants in a joint undertaking; or (3) permit either party or
+any of either party"s officers, directors, employees, agents or representatives
+to create or assume any obligation on behalf of or for the account of the other
+party for any purpose whatsoever.
+
+13.2 Compliance with Laws.  Each party agrees to comply with all applicable
+laws, regulations, and ordinances relating to their performance hereunder.
+Without limiting the foregoing, Licensee warrants and covenants that it will
+comply with all then current laws and regulations of the United States and other
+jurisdictions relating or applicable to Licensee"s use of the Software and
+Documentation including, without limitation, those concerning Intellectual
+Property Rights, invasion of privacy, defamation, and the import and export of
+Software and Documentation.
+
+13.3 Force Majeure.  Except for the duty to pay money, neither party shall be
+liable hereunder by reason of any failure or delay in the performance of its
+obligations hereunder on account of strikes, riots, fires, flood, storm,
+explosions, acts of God, war, governmental action, earthquakes, or any other
+cause which is beyond the reasonable control of such party.
+
+13.4 Governing Law; Venue and Jurisdiction.  This Agreement shall be interpreted
+according to the laws of the State of California without regard to or
+application of choiceoflaw rules or principles.  The parties expressly agree
+that the United Nations Convention on Contracts for the International Sale of
+Goods and the Uniform Computer Information Transactions Act will not apply.  Any
+legal action or proceeding arising under this Agreement will be brought
+exclusively in the federal or state courts located in Santa Clara County,
+California and the parties hereby consent to the personal jurisdiction and venue
+therein.
+
+13.5 Injunctive Relief.  The parties agree that monetary damages would not be an
+adequate remedy for the breach of certain provisions of this Agreement,
+including, without limitation, all provisions concerning infringement,
+confidentiality and nondisclosure, or limitation on permitted use of the
+Software or Documentation.  The parties further agree that, in the event of such
+breach, injunctive relief would be necessary to prevent irreparable injury.
+Accordingly, either party shall have the right to seek injunctive relief or
+similar equitable remedies to enforce such party's rights under the pertinent
+provisions of this Agreement, without limiting its right to pursue any other
+legal remedies available to it.
+
+13.6 Entire Agreement and Waiver.  This Agreement and any exhibits  hereto shall
+constitute the entire agreement and contains all terms and conditions between
+Kasten and Licensee with respect to the subject matter hereof and all prior
+agreements, representations, and statement with respect to such subject matter
+are superseded hereby.  This Agreement may be changed only by written agreement
+signed by both Kasten and Licensee.  No failure of either party to exercise or
+enforce any of its rights under this Agreement shall act as a waiver of
+subsequent breaches; and the waiver of any breach shall not act as a waiver of
+subsequent breaches.
+
+13.7 Severability.  In the event any provision of this Agreement is held by a
+court or other tribunal of competent jurisdiction to be unenforceable, that
+provision will be enforced to the maximum extent permissible under applicable
+law and the other provisions of this Agreement will remain in full force and
+effect.  The parties further agree that in the event such provision is an
+essential part of this Agreement, they will begin negotiations for a suitable
+replacement provision.
+
+13.8 Counterparts.  This Agreement may be executed in any number of
+counterparts, each of which, when so executed and delivered (including by
+facsimile), shall be deemed an original, and all of which shall constitute one
+and the same agreement.
+
+13.9 Binding Effect.  This Agreement shall be binding upon and shall inure to
+the benefit of the respective parties hereto, their respective successors and
+permitted assigns.
+
+13.10 Assignment.  Neither party may, without the prior written consent of the
+other party (which shall not be unreasonably withheld), assign this Agreement,
+in whole or in part, either voluntarily or by operation of law, and any attempt
+to do so shall be a material default of this Agreement and shall be void.
+Notwithstanding the foregoing, Kasten  may assign its rights and benefits and
+delegate its duties and obligations under this Agreement without the consent of
+Licensee in connection with a merger, reorganization or sale of all or
+substantially all relevant assets of the assigning party; in each case provided
+that such successor assumes the assigning party"s obligations under this
+Agreement.
+
diff --git a/charts/kasten/k10/7.5.401/files/favicon.png b/charts/kasten/k10/7.5.401/files/favicon.png
new file mode 100644
index 0000000000000000000000000000000000000000..fb617ce12c6949ed2dd1bec208c179644bcec0d4
GIT binary patch
literal 1802
zcmY*adt8!d8-9^Q;U~4MX*yHXJYWfUAO(S@qG@7bGxIP_4N#l{pHRT^D`su#Je8*P
z)jUsR^SG>~RHnI>c|c94qVrIzB^}VzOi6TLef53s^LwBBdhYvruIstqKb|*(x_>Vm
zW(orU0PgQcKB$Qp?W+&b%!hTB(=-9ZJ-F8ksFRr~Gz%&{)SnR;2smi4KA;0K1i)H~
zW&mkSV8c2F09#E20B|YjW3^Q0LlsjB{)n~2`_H@#H6mfm;80#@AO(MvorH>^v192d
zK@vwx00;uS1}4#YF$h6YB8!U`5Uti3cn#L3(N>6c3hyhTRcIg;;muB_Bd{n}6vm1K
zLm&`@WEum1knH<@yJkhSis$h-cr=>N=cD*8D0Xrj+6jllp)t;AXJ<zZ!;vdw@nQsy
zEUxuCk^kzD>D;5qOb(C9W+Ak?F|q7pJffAA*673Y?wmX(<D(Oc`@StrgJ^99?S#Uh
zKWJ;V60}+Tfn+9K<E+&uIT6;G|Cf93LqKcI|K~98I$h6dS|z~<=ntQb1f$%s3j+XM
zus_)|I9~T<Xhh;x`c_gLW9((5Ywbw-8OcpVx>E=lC6DR@JYxrwGA?Yh`eb0}ft~q6
zS-<gQtI=nkXYK5j5GPB&0a#@%JR$MtO{AavbkU-W2S&%nWT#eEldiw$mPJXs{-Ssk
zao2ir+*R%>@*H1iGV44=Z|xFY0HMKAkSj8vYM_RRZ#kFlhRKW%GYVP4jgFbD><&8I
zv^XWN3}J45EHCNcSEWmiz#JQ&b_X2DY7W>@rOIn$xI_AF1rucFE!8<*l-JhgP|zUu
z+v2>;RYq7)Qz|9=2ic-oiBNT<WOU7I`YrL{ly^RN!2notTMIa|W#Z3)+Oiw7Ig5RQ
z9noLj5N>`YySLfGuu*-<w7RI?ElhXn*N%nr2?+7Arp)EJP~3s=J<a!RDlDz(-9KYF
zSJ<A;CT^-EXsLL42|ThrI}{O~XZB0sT*0eq{lCRy<^Ie&pzoKS=g&oMW4;k(=41~J
z4KWO&sv<eZ<z}bvvsavgVh$B5pXj(K7{2mEk<6O=HCZUSJe1b*%tXIVh07`4+Km&n
zJ?{!B!`{kkNUdzCaaX_fc*wyhq9jVw(VC07in)w|BdqYDjfTSfKGmb?y6F8jSEbls
zznbu9VcEDe%R!tIEc<FXnd^zpPl+A&x!^MW$EDeC9qh*8y+~0xb2Mvo@)0J>{BD{G
zZ`#7`+d>_8F5q}{&U~MZ3}zw|pk|7l4gHa4YjiMY7q8V@-1>riyq$4w9JQ$$Ns6tq
zxd-``i1XUF(Zhxs5>eTjYk5i4=>QP3)TGI-P};Tjlnsrg>Ob|`j%;5zFDWN%Z%y}>
zY-2O{QzLFqHcH_=D4@)S!_(U(fBl~u1%3WwFcSoL%=~ti|K!Gg=!?<&BiS1cWo-Ue
zp`<5vcckA#0?*<~V+R9zV$)}H3(GPURF7yqh^aJg<5$e=A_Gg=tKXdR^>+X-8i@05
z-W|YKG@-|>d@Rl0EXk!sWgcb=S=69-eXoeAWmDQo`1zqnC%X~N=Q=;%4Jswh+Z*A5
z_QLU|!F?nmyQ=b@PNZ>RYn00lH7DvV?U|jj4cUb+==2H!O$R1Yl8wWsOWOscs1$Bw
zfc<=a`~uD1BPLFG({Y3AcZa2KGL47TpB~`fk?V@~uPwJt!HuqMf)rtIAKWE$l-m4I
z-8}Vmw4&_^O#!OXE6P{?)(Ar|cJ$gmhpaFSa!;`8Pg<|Un<-(>JS+8#5^g`R6}5@=
zzO<c$;B-0SqhI`ncx`U9*7G;ee@iSW%<d_%A$Bl@L<#k2#CGYAdJ()<8;l`Tel_TF
z!Gs##j?FI1oz0jJA$Xhk{;_9gz(n1uK*A9tf9J+U4+`O>v3hZ|;|;hDWxNbDT~90D
zl9pZ@$4O0bmu6AVD3Q&bJ}tfmgsRiZViC;Sy?NhWUV}}+6_;d(vWq`)XZE-`>^laO
zJaBz=d5^@Wk`L}45!R+%ABk{HD(>Tmhm)Y6qZt&F7+WRS-7>Rl^~aR?HcHXO0`D7-
z|2?nnC98m0i_>!5t;H_a{jzpHtzcD`KaNE9%mjUU_f3WQ!tf#S@TpG-m{oq%DKX5c
z`Ra+*XdEGM1-sL%7~UOCaiTAM7Ylh*66f)}w|=c*El=@R!izK=A4n%&O>e+nGDg0%
tn7HN~o~pnSpxO)Prh(w&4OH~a8i>le=(TeuS4aD2@%PzJuJejc{Re;E|Hl9T

literal 0
HcmV?d00001

diff --git a/charts/kasten/k10/7.5.401/files/kasten-logo.svg b/charts/kasten/k10/7.5.401/files/kasten-logo.svg
new file mode 100644
index 0000000000..0d0ef14eee
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/files/kasten-logo.svg
@@ -0,0 +1,24 @@
+<svg viewBox="0 0 986 215" version="1.1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink">
+  <defs></defs>
+  <g id="Page-1" stroke="none" stroke-width="1" fill="none" fill-rule="evenodd">
+    <g id="color_logo">
+      <g id="Group">
+        <path d="M40,214.3 L4.6,214.3 C2.2,214.3 0.2,212.3 0.2,209.9 L0.2,5 C0.2,2.6 2.2,0.6 4.6,0.6 L40,0.6 C42.4,0.6 44.4,2.6 44.4,5 L44.4,209.9 C44.4,212.3 42.4,214.3 40,214.3 Z" id="Shape" fill="#446CA9" fill-rule="nonzero"></path>
+        <g transform="translate(48.000000, 1.000000)" id="Shape">
+          <polygon points="85.3 44.9 86.3 46.7 83.8 48.1 83.1 46.9 48.2 107.3 83.3 168 83.8 167.1 86.3 168.5 85.7 169.6 156.2 169.6 191.5 108.5 188.9 108.5 188.9 105.6 191.3 105.6 156.3 44.9"></polygon>
+          <path d="M156.3,44.9 L191.3,105.5 L240,105.5 C239.8,102.5 238.9,99.6 237.4,96.9 L187.8,10.9 C184.1,4.5 177.3,0.6 170,0.6 L70.7,0.6 C67.5,0.6 64.5,1.4 61.7,2.7 L85.4,44.8 L156.3,44.8 L156.3,44.9 Z" fill="#46A8C6" fill-rule="nonzero"></path>
+          <path d="M156.2,169.6 L85.7,169.6 L61.6,211.7 C64.4,213 67.4,213.8 70.6,213.8 L169.9,213.8 C177.3,213.8 184,209.9 187.7,203.5 L237.3,117.5 C238.9,114.7 239.8,111.6 240,108.4 L191.5,108.4 L156.2,169.6 Z" fill="#46A8C6" fill-rule="nonzero"></path>
+          <path d="M48.2,107.3 L83,47 L59,4.4 C56.5,6.1 54.3,8.4 52.7,11.1 L3.1,97.1 C-0.6,103.5 -0.6,111.3 3.1,117.7 L52.7,203.7 C54.3,206.4 56.5,208.7 59,210.4 L83.2,168.1 L48.2,107.3 Z" fill="#446CA9" fill-rule="nonzero"></path>
+        </g>
+        <g transform="translate(359.000000, 31.000000)" id="Shape" fill-rule="nonzero" fill="#4D72A5">
+          <path d="M83.7688716,146.134353 C85.8762646,148.504099 84.559144,149.294014 82.7151751,149.294014 L69.807393,149.294014 C67.7,149.294014 66.6463035,148.504099 64.5389105,146.134353 L15.0151751,99.0027326 L15.0151751,146.134353 C15.0151751,148.504099 14.2249027,149.294014 11.8540856,149.294014 L3.16108949,149.294014 C0.790272374,149.294014 -5.68434189e-14,148.504099 -5.68434189e-14,146.134353 L-5.68434189e-14,3.68627196 C-5.68434189e-14,1.3165257 0.790272374,0.52661028 3.16108949,0.52661028 L11.8540856,0.52661028 C14.4883268,0.52661028 15.0151751,1.3165257 15.0151751,3.68627196 L15.0151751,91.8934938 L61.9046693,50.0279766 C64.0120623,47.6582303 65.0657588,46.8683149 67.1731518,46.8683149 L79.8175097,46.8683149 C81.9249027,46.8683149 82.451751,48.4481457 80.8712062,50.0279766 L30.5571984,94.7898504 L83.7688716,146.134353 Z"></path>
+          <path d="M113.545914,58.1904359 L111.96537,52.1344177 C111.438521,50.0279766 111.96537,48.974756 114.336187,48.1848406 C116.707004,47.6582303 133.566148,44.4985686 149.108171,44.4985686 C183.089883,44.4985686 192.309728,59.5069616 192.309728,92.9467144 L192.309728,146.134353 C192.309728,148.504099 191.519455,149.294014 189.412062,149.294014 L183.616732,149.294014 C182.036187,149.294014 181.245914,148.504099 180.719066,146.134353 L179.928794,132.442485 C174.396887,139.815029 161.225681,151.663761 139.361479,151.663761 C119.868093,151.663761 103.535798,139.815029 103.535798,118.224008 C103.535798,96.1063761 120.131518,85.5741705 144.893385,85.5741705 C155.693774,85.5741705 167.284436,88.470527 177.557977,92.6834092 C177.557977,67.1428107 170.182101,57.9271308 148.844747,57.9271308 C135.936965,57.9271308 125.4,59.7702668 117.7607,61.0867925 C114.863035,61.6134027 114.336187,60.5601822 113.545914,58.1904359 Z M118.287549,117.960703 C118.287549,130.599349 127.243969,139.551724 143.839689,139.551724 C157.801167,139.551724 170.972374,130.072739 177.294553,120.593754 L177.294553,103.742225 C167.021012,99.5293429 159.118288,96.3696812 147.527626,96.3696812 C128.297665,96.6329863 118.287549,104.268835 118.287549,117.960703 Z"></path>
+          <path d="M283.835409,120.593754 C283.835409,111.641379 273.825292,107.165192 255.385603,104.532141 C235.36537,101.899089 216.135409,97.1595966 216.135409,76.0951854 C216.135409,56.8739102 231.150584,44.4985686 254.858755,44.4985686 C265.39572,44.4985686 279.357198,47.13162 293.318677,55.8206897 C295.689494,57.1372154 295.42607,58.4537411 294.372374,60.296877 L291.738132,65.0363696 C290.684436,67.1428107 289.630739,68.1960312 287.259922,66.3528953 C276.459533,59.7702668 268.556809,56.6106051 255.649027,56.6106051 C238.789883,56.6106051 230.360311,63.983149 230.360311,75.0419649 C230.360311,86.1007807 240.370428,88.2072219 258.810117,90.8402733 C278.83035,93.7366298 298.060311,100.055953 298.060311,119.803839 C298.060311,138.498504 282.781712,151.663761 256.702724,151.663761 C245.902335,151.663761 230.096887,148.767404 215.081712,138.761809 C213.237743,137.445283 213.237743,136.655368 214.554864,134.285621 L217.452529,129.282824 C218.506226,127.176383 219.559922,126.123162 221.930739,127.966298 C230.88716,134.285621 242.741245,139.288419 255.912451,139.288419 C275.932685,139.288419 283.835409,130.862655 283.835409,120.593754 Z"></path>
+          <path d="M368.297276,151.663761 C341.69144,151.663761 331.681323,134.812232 331.681323,106.901887 L331.681323,59.2436565 L321.671206,59.2436565 C319.300389,59.2436565 318.510117,58.4537411 318.510117,56.0839948 L318.510117,50.0279766 C318.510117,47.3949252 319.300389,46.8683149 321.671206,46.8683149 L331.681323,46.8683149 L331.681323,26.0672088 C331.681323,23.6974626 332.208171,22.9075472 334.578988,22.9075472 L343.535409,22.9075472 C345.906226,22.9075472 346.696498,23.6974626 346.696498,26.0672088 L346.696498,46.8683149 L383.312451,46.8683149 C385.419844,46.8683149 386.210117,47.3949252 386.210117,50.0279766 L386.210117,56.0839948 C386.210117,58.4537411 385.683268,59.2436565 383.312451,59.2436565 L346.696498,59.2436565 L346.696498,105.585361 C346.696498,129.282824 353.808949,137.971893 369.877821,137.971893 C375.409728,137.971893 378.834241,137.445283 383.8393,134.812232 C386.473541,133.495706 387.000389,133.495706 387.790661,136.392062 L389.107782,142.974691 C389.63463,145.081132 389.63463,145.871047 387.790661,146.924268 C379.624514,151.663761 370.931518,151.663761 368.297276,151.663761 Z"></path>
+          <path d="M502.126848,132.969096 C503.443969,134.812232 503.443969,135.865452 502.126848,137.445283 C492.64358,146.660963 476.311284,151.663761 461.296109,151.663761 C430.738911,151.663761 407.294163,127.702993 407.294163,98.2128172 C407.294163,68.7226415 430.738911,44.4985686 460.242412,44.4985686 C491.853307,44.4985686 510.029572,70.0391672 510.029572,100.055953 C510.029572,102.425699 509.502724,103.215615 506.868482,103.215615 L422.572763,103.215615 C423.889883,121.91028 441.275875,138.235198 461.559533,138.235198 C471.56965,138.235198 483.68716,135.075537 493.170428,128.229603 C495.277821,126.913077 496.068093,126.649772 497.912062,128.492908 L502.126848,132.969096 Z M494.750973,92.9467144 C493.9607,74.7786597 480.789494,57.1372154 460.242412,57.1372154 C439.431907,57.1372154 424.153307,74.7786597 423.626459,92.9467144 L494.750973,92.9467144 Z"></path>
+          <path d="M552.187549,67.9327261 C556.402335,59.7702668 566.9393,44.2352635 586.696109,44.2352635 C608.296887,44.2352635 626.736576,57.4005205 626.736576,89.5237476 L626.736576,145.871047 C626.736576,148.240794 625.946304,149.030709 623.575486,149.030709 L614.619066,149.030709 C612.511673,149.030709 611.457977,148.240794 611.457977,145.871047 L611.457977,93.7366298 C611.457977,69.7758621 599.340467,57.9271308 583.008171,57.9271308 C565.358755,57.9271308 554.031518,74.7786597 554.031518,95.0531555 L554.031518,145.871047 C554.031518,148.240794 553.241245,149.030709 550.870428,149.030709 L541.914008,149.030709 C539.806615,149.030709 539.016342,148.240794 539.016342,145.871047 L539.016342,95.8430709 L539.016342,49.7646714 C539.016342,47.3949252 539.806615,46.6050098 541.914008,46.6050098 L546.919066,46.6050098 C548.499611,46.6050098 549.289883,47.3949252 550.34358,49.7646714 L552.187549,67.9327261 Z"></path>
+        </g>
+      </g>
+    </g>
+  </g>
+</svg>
diff --git a/charts/kasten/k10/7.5.401/files/styles.css b/charts/kasten/k10/7.5.401/files/styles.css
new file mode 100644
index 0000000000..2d92057119
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/files/styles.css
@@ -0,0 +1,113 @@
+.theme-body {
+  background-color: #efefef;
+  color: #333;
+  font-family: 'Source Sans Pro', Helvetica, sans-serif;
+}
+
+.theme-navbar {
+  background-color: #fff;
+  box-shadow: 0 2px 2px rgba(0, 0, 0, 0.2);
+  color: #333;
+  font-size: 13px;
+  font-weight: 100;
+  height: 46px;
+  overflow: hidden;
+  padding: 0 10px;
+}
+
+.theme-navbar__logo-wrap {
+  display: inline-block;
+  height: 100%;
+  overflow: hidden;
+  padding: 10px 15px;
+  width: 300px;
+}
+
+.theme-navbar__logo {
+  height: 100%;
+  max-height: 25px;
+}
+
+.theme-heading {
+  font-size: 20px;
+  font-weight: 500;
+  margin-bottom: 10px;
+  margin-top: 0;
+}
+
+.theme-panel {
+  background-color: #fff;
+  box-shadow: 0 5px 15px rgba(0, 0, 0, 0.5);
+  padding: 30px;
+}
+
+.theme-btn-provider {
+  background-color: #fff;
+  color: #333;
+  min-width: 250px;
+}
+
+.theme-btn-provider:hover {
+  color: #999;
+}
+
+.theme-btn--primary {
+  background-color: #333;
+  border: none;
+  color: #fff;
+  min-width: 200px;
+  padding: 6px 12px;
+}
+
+.theme-btn--primary:hover {
+  background-color: #666;
+  color: #fff;
+}
+
+.theme-btn--success {
+  background-color: #2FC98E;
+  color: #fff;
+  width: 250px;
+}
+
+.theme-btn--success:hover {
+  background-color: #49E3A8;
+}
+
+.theme-form-row {
+  display: block;
+  margin: 20px auto;
+}
+
+.theme-form-input {
+  border-radius: 4px;
+  border: 1px solid #CCC;
+  box-shadow: inset 0 1px 1px rgba(0, 0, 0, 0.075);
+  color: #666;
+  display: block;
+  font-size: 14px;
+  height: 36px;
+  line-height: 1.42857143;
+  margin: auto;
+  padding: 6px 12px;
+  width: 250px;
+}
+
+.theme-form-input:focus,
+.theme-form-input:active {
+  border-color: #66AFE9;
+  outline: none;
+}
+
+.theme-form-label {
+  font-size: 13px;
+  font-weight: 600;
+  margin: 4px auto;
+  position: relative;
+  text-align: left;
+  width: 250px;
+}
+
+.theme-link-back {
+  margin-top: 4px;
+}
diff --git a/charts/kasten/k10/7.5.401/grafana/dashboards/default/default.json b/charts/kasten/k10/7.5.401/grafana/dashboards/default/default.json
new file mode 100644
index 0000000000..3837b25e45
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/grafana/dashboards/default/default.json
@@ -0,0 +1,6337 @@
+{
+  "annotations": {
+    "list": [
+      {
+        "builtIn": 1,
+        "datasource": "-- Grafana --",
+        "enable": true,
+        "hide": true,
+        "iconColor": "rgba(0, 211, 255, 1)",
+        "name": "Annotations & Alerts",
+        "target": {
+          "limit": 100,
+          "matchAny": false,
+          "tags": [],
+          "type": "dashboard"
+        },
+        "type": "dashboard"
+      }
+    ]
+  },
+  "editable": true,
+  "fiscalYearStartMonth": 0,
+  "graphTooltip": 0,
+  "id": 12,
+  "links": [],
+  "liveNow": false,
+  "panels": [
+    {
+      "collapsed": false,
+      "datasource": "Prometheus",
+      "gridPos": {
+        "h": 1,
+        "w": 24,
+        "x": 0,
+        "y": 0
+      },
+      "id": 53,
+      "panels": [],
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "refId": "A"
+        }
+      ],
+      "title": "K10 System Resource Usage",
+      "type": "row"
+    },
+    {
+      "datasource": "Prometheus",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "palette-classic"
+          },
+          "custom": {
+            "axisCenteredZero": false,
+            "axisColorMode": "text",
+            "axisLabel": "",
+            "axisPlacement": "auto",
+            "barAlignment": 0,
+            "drawStyle": "line",
+            "fillOpacity": 0,
+            "gradientMode": "none",
+            "hideFrom": {
+              "legend": false,
+              "tooltip": false,
+              "viz": false
+            },
+            "lineInterpolation": "linear",
+            "lineWidth": 1,
+            "pointSize": 5,
+            "scaleDistribution": {
+              "type": "linear"
+            },
+            "showPoints": "auto",
+            "spanNulls": false,
+            "stacking": {
+              "group": "A",
+              "mode": "none"
+            },
+            "thresholdsStyle": {
+              "mode": "off"
+            }
+          },
+          "mappings": [],
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "green",
+                "value": null
+              },
+              {
+                "color": "red",
+                "value": 80
+              }
+            ]
+          }
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 8,
+        "w": 12,
+        "x": 0,
+        "y": 1
+      },
+      "id": 55,
+      "options": {
+        "legend": {
+          "calcs": [],
+          "displayMode": "list",
+          "placement": "bottom",
+          "showLegend": true
+        },
+        "tooltip": {
+          "mode": "single",
+          "sort": "none"
+        }
+      },
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "editorMode": "builder",
+          "expr": "sum(rate(process_cpu_seconds_total[5m]))",
+          "legendFormat": "Total CPU seconds",
+          "range": true,
+          "refId": "A"
+        }
+      ],
+      "title": "K10 CPU total seconds ",
+      "type": "timeseries"
+    },
+    {
+      "datasource": "Prometheus",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "palette-classic"
+          },
+          "custom": {
+            "axisCenteredZero": false,
+            "axisColorMode": "text",
+            "axisLabel": "",
+            "axisPlacement": "auto",
+            "barAlignment": 0,
+            "drawStyle": "line",
+            "fillOpacity": 0,
+            "gradientMode": "none",
+            "hideFrom": {
+              "legend": false,
+              "tooltip": false,
+              "viz": false
+            },
+            "lineInterpolation": "linear",
+            "lineWidth": 1,
+            "pointSize": 5,
+            "scaleDistribution": {
+              "type": "linear"
+            },
+            "showPoints": "auto",
+            "spanNulls": false,
+            "stacking": {
+              "group": "A",
+              "mode": "none"
+            },
+            "thresholdsStyle": {
+              "mode": "off"
+            }
+          },
+          "mappings": [],
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "green",
+                "value": null
+              },
+              {
+                "color": "red",
+                "value": 80
+              }
+            ]
+          },
+          "unit": "decbytes"
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 8,
+        "w": 12,
+        "x": 12,
+        "y": 1
+      },
+      "id": 57,
+      "options": {
+        "legend": {
+          "calcs": [],
+          "displayMode": "list",
+          "placement": "bottom",
+          "showLegend": true
+        },
+        "tooltip": {
+          "mode": "single",
+          "sort": "none"
+        }
+      },
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "editorMode": "builder",
+          "expr": "sum(process_resident_memory_bytes)",
+          "hide": false,
+          "legendFormat": "Total memory consumption",
+          "range": true,
+          "refId": "C"
+        }
+      ],
+      "title": "K10 total memory consumption",
+      "type": "timeseries"
+    },
+    {
+      "datasource": "Prometheus",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "palette-classic"
+          },
+          "custom": {
+            "axisCenteredZero": false,
+            "axisColorMode": "text",
+            "axisLabel": "",
+            "axisPlacement": "auto",
+            "barAlignment": 0,
+            "drawStyle": "line",
+            "fillOpacity": 0,
+            "gradientMode": "none",
+            "hideFrom": {
+              "legend": false,
+              "tooltip": false,
+              "viz": false
+            },
+            "lineInterpolation": "linear",
+            "lineWidth": 1,
+            "pointSize": 5,
+            "scaleDistribution": {
+              "type": "linear"
+            },
+            "showPoints": "auto",
+            "spanNulls": false,
+            "stacking": {
+              "group": "A",
+              "mode": "none"
+            },
+            "thresholdsStyle": {
+              "mode": "off"
+            }
+          },
+          "mappings": [],
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "green",
+                "value": null
+              },
+              {
+                "color": "red",
+                "value": 80
+              }
+            ]
+          }
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 8,
+        "w": 12,
+        "x": 0,
+        "y": 9
+      },
+      "id": 81,
+      "options": {
+        "legend": {
+          "calcs": [],
+          "displayMode": "list",
+          "placement": "bottom",
+          "showLegend": true
+        },
+        "tooltip": {
+          "mode": "single",
+          "sort": "none"
+        }
+      },
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "editorMode": "builder",
+          "expr": "rate(process_cpu_seconds_total{job=\"httpServiceDiscovery\"}[5m])",
+          "legendFormat": "{{service}}",
+          "range": true,
+          "refId": "A"
+        },
+        {
+          "datasource": "Prometheus",
+          "editorMode": "builder",
+          "expr": "sum(rate(process_cpu_seconds_total{job=\"k10-pods\"}[5m]))",
+          "hide": false,
+          "legendFormat": "executor",
+          "range": true,
+          "refId": "B"
+        },
+        {
+          "datasource": "Prometheus",
+          "editorMode": "builder",
+          "expr": "sum(rate(process_cpu_seconds_total{job=\"pushAggregator\"}[5m]))",
+          "hide": false,
+          "legendFormat": "ephemeral pods",
+          "range": true,
+          "refId": "C"
+        },
+        {
+          "datasource": "Prometheus",
+          "editorMode": "builder",
+          "expr": "sum(rate(process_cpu_seconds_total{job=\"prometheus\"}[5m]))",
+          "hide": false,
+          "legendFormat": "prometheus",
+          "range": true,
+          "refId": "D"
+        }
+      ],
+      "title": "CPU total seconds per service",
+      "type": "timeseries"
+    },
+    {
+      "datasource": "Prometheus",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "palette-classic"
+          },
+          "custom": {
+            "axisCenteredZero": false,
+            "axisColorMode": "text",
+            "axisLabel": "",
+            "axisPlacement": "auto",
+            "barAlignment": 0,
+            "drawStyle": "line",
+            "fillOpacity": 0,
+            "gradientMode": "none",
+            "hideFrom": {
+              "legend": false,
+              "tooltip": false,
+              "viz": false
+            },
+            "lineInterpolation": "linear",
+            "lineWidth": 1,
+            "pointSize": 5,
+            "scaleDistribution": {
+              "type": "linear"
+            },
+            "showPoints": "auto",
+            "spanNulls": false,
+            "stacking": {
+              "group": "A",
+              "mode": "none"
+            },
+            "thresholdsStyle": {
+              "mode": "off"
+            }
+          },
+          "mappings": [],
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "green",
+                "value": null
+              },
+              {
+                "color": "red",
+                "value": 80
+              }
+            ]
+          },
+          "unit": "decbytes"
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 8,
+        "w": 12,
+        "x": 12,
+        "y": 9
+      },
+      "id": 82,
+      "options": {
+        "legend": {
+          "calcs": [],
+          "displayMode": "list",
+          "placement": "bottom",
+          "showLegend": true
+        },
+        "tooltip": {
+          "mode": "single",
+          "sort": "none"
+        }
+      },
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "editorMode": "builder",
+          "expr": "sum(process_resident_memory_bytes{job=\"pushAggregator\"})",
+          "hide": false,
+          "legendFormat": "ephemeral pods",
+          "range": true,
+          "refId": "C"
+        },
+        {
+          "datasource": "Prometheus",
+          "editorMode": "builder",
+          "expr": "process_resident_memory_bytes{job=\"httpServiceDiscovery\"}",
+          "hide": false,
+          "legendFormat": "{{service}}",
+          "range": true,
+          "refId": "A"
+        },
+        {
+          "datasource": "Prometheus",
+          "editorMode": "builder",
+          "expr": "sum(process_resident_memory_bytes{job=\"k10-pods\"})",
+          "hide": false,
+          "legendFormat": "executor",
+          "range": true,
+          "refId": "B"
+        },
+        {
+          "datasource": "Prometheus",
+          "editorMode": "builder",
+          "expr": "sum(process_resident_memory_bytes{job=\"prometheus\"})",
+          "hide": false,
+          "legendFormat": "prometheus",
+          "range": true,
+          "refId": "D"
+        }
+      ],
+      "title": "Memory consumption by service",
+      "type": "timeseries"
+    },
+    {
+      "collapsed": false,
+      "datasource": "Prometheus",
+      "gridPos": {
+        "h": 1,
+        "w": 24,
+        "x": 0,
+        "y": 17
+      },
+      "id": 18,
+      "panels": [],
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "refId": "A"
+        }
+      ],
+      "title": "Applications",
+      "type": "row"
+    },
+    {
+      "datasource": "Prometheus",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "mappings": [],
+          "noValue": "0",
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "yellow",
+                "value": null
+              },
+              {
+                "color": "green",
+                "value": 1
+              }
+            ]
+          }
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 7,
+        "w": 5,
+        "x": 0,
+        "y": 18
+      },
+      "id": 24,
+      "interval": "1m",
+      "options": {
+        "colorMode": "value",
+        "graphMode": "none",
+        "justifyMode": "auto",
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": [
+            "last"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "text": {},
+        "textMode": "auto"
+      },
+      "pluginVersion": "9.1.5",
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "exemplar": false,
+          "expr": "sum(round(increase(action_backup_ended_overall{cluster=\"$cluster\", state=\"succeeded\"}[$__range])))",
+          "hide": false,
+          "interval": "",
+          "legendFormat": "",
+          "refId": "B"
+        }
+      ],
+      "title": "Backups Completed",
+      "type": "stat"
+    },
+    {
+      "datasource": "Prometheus",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "mappings": [
+            {
+              "options": {
+                "0": {
+                  "index": 0,
+                  "text": "-"
+                }
+              },
+              "type": "value"
+            }
+          ],
+          "noValue": "-",
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "text",
+                "value": null
+              },
+              {
+                "color": "red",
+                "value": 1
+              }
+            ]
+          }
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 7,
+        "w": 3,
+        "x": 5,
+        "y": 18
+      },
+      "id": 33,
+      "interval": "1m",
+      "options": {
+        "colorMode": "value",
+        "graphMode": "none",
+        "justifyMode": "auto",
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": [
+            "last"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "text": {},
+        "textMode": "auto"
+      },
+      "pluginVersion": "9.1.5",
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "exemplar": false,
+          "expr": "sum(round(increase(action_backup_ended_overall{cluster=\"$cluster\", state=~\"failed|cancelled\"}[$__range])))",
+          "hide": false,
+          "interval": "",
+          "legendFormat": "",
+          "refId": "B"
+        }
+      ],
+      "title": "Backups Failed",
+      "type": "stat"
+    },
+    {
+      "datasource": "Prometheus",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "mappings": [
+            {
+              "options": {
+                "0": {
+                  "index": 0,
+                  "text": "-"
+                }
+              },
+              "type": "value"
+            }
+          ],
+          "noValue": "-",
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "text",
+                "value": null
+              },
+              {
+                "color": "#EAB839",
+                "value": 1
+              }
+            ]
+          }
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 7,
+        "w": 3,
+        "x": 8,
+        "y": 18
+      },
+      "id": 34,
+      "interval": "1m",
+      "options": {
+        "colorMode": "value",
+        "graphMode": "none",
+        "justifyMode": "auto",
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": [
+            "last"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "text": {},
+        "textMode": "auto"
+      },
+      "pluginVersion": "9.1.5",
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "exemplar": false,
+          "expr": "sum(round(increase(action_backup_skipped_overall{cluster=\"$cluster\"}[$__range])))",
+          "hide": false,
+          "interval": "",
+          "legendFormat": "",
+          "refId": "B"
+        }
+      ],
+      "title": "Backups Skipped",
+      "type": "stat"
+    },
+    {
+      "datasource": "Prometheus",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "mappings": [
+            {
+              "options": {
+                "0": {
+                  "index": 0,
+                  "text": "-"
+                }
+              },
+              "type": "value"
+            }
+          ],
+          "noValue": "-",
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "text",
+                "value": null
+              },
+              {
+                "color": "green",
+                "value": 1
+              }
+            ]
+          }
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 7,
+        "w": 5,
+        "x": 13,
+        "y": 18
+      },
+      "id": 35,
+      "interval": "1m",
+      "options": {
+        "colorMode": "value",
+        "graphMode": "none",
+        "justifyMode": "auto",
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": [
+            "last"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "text": {},
+        "textMode": "auto"
+      },
+      "pluginVersion": "9.1.5",
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "exemplar": false,
+          "expr": "sum(round(increase(action_restore_ended_overall{cluster=\"$cluster\", state=\"succeeded\"}[$__range])))",
+          "hide": false,
+          "interval": "",
+          "legendFormat": "",
+          "refId": "B"
+        }
+      ],
+      "title": "Restores Completed",
+      "type": "stat"
+    },
+    {
+      "datasource": "Prometheus",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "mappings": [
+            {
+              "options": {
+                "0": {
+                  "index": 0,
+                  "text": "-"
+                }
+              },
+              "type": "value"
+            }
+          ],
+          "noValue": "-",
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "text",
+                "value": null
+              },
+              {
+                "color": "red",
+                "value": 1
+              }
+            ]
+          }
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 7,
+        "w": 3,
+        "x": 18,
+        "y": 18
+      },
+      "id": 36,
+      "interval": "1m",
+      "options": {
+        "colorMode": "value",
+        "graphMode": "none",
+        "justifyMode": "auto",
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": [
+            "last"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "text": {},
+        "textMode": "auto"
+      },
+      "pluginVersion": "9.1.5",
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "exemplar": false,
+          "expr": "sum(round(increase(action_restore_ended_overall{cluster=\"$cluster\", state=~\"failed|cancelled\"}[$__range])))",
+          "hide": false,
+          "interval": "",
+          "legendFormat": "",
+          "refId": "B"
+        }
+      ],
+      "title": "Restores Failed",
+      "type": "stat"
+    },
+    {
+      "datasource": "Prometheus",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "mappings": [
+            {
+              "options": {
+                "0": {
+                  "index": 0,
+                  "text": "-"
+                }
+              },
+              "type": "value"
+            }
+          ],
+          "noValue": "-",
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "text",
+                "value": null
+              },
+              {
+                "color": "#EAB839",
+                "value": 1
+              }
+            ]
+          }
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 7,
+        "w": 3,
+        "x": 21,
+        "y": 18
+      },
+      "id": 23,
+      "interval": "1m",
+      "options": {
+        "colorMode": "value",
+        "graphMode": "none",
+        "justifyMode": "auto",
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": [
+            "last"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "text": {},
+        "textMode": "auto"
+      },
+      "pluginVersion": "9.1.5",
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "exemplar": false,
+          "expr": "sum(round(increase(action_restore_skipped_overall{cluster=\"$cluster\"}[$__range])))",
+          "hide": false,
+          "interval": "",
+          "legendFormat": "",
+          "refId": "B"
+        }
+      ],
+      "title": "Restores Skipped",
+      "type": "stat"
+    },
+    {
+      "collapsed": false,
+      "datasource": "Prometheus",
+      "gridPos": {
+        "h": 1,
+        "w": 24,
+        "x": 0,
+        "y": 25
+      },
+      "id": 16,
+      "panels": [],
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "refId": "A"
+        }
+      ],
+      "title": "Cluster",
+      "type": "row"
+    },
+    {
+      "datasource": "Prometheus",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "mappings": [],
+          "noValue": "0",
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "yellow",
+                "value": null
+              },
+              {
+                "color": "green",
+                "value": 1
+              }
+            ]
+          }
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 7,
+        "w": 5,
+        "x": 0,
+        "y": 26
+      },
+      "id": 10,
+      "interval": "1m",
+      "options": {
+        "colorMode": "value",
+        "graphMode": "none",
+        "justifyMode": "auto",
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": [
+            "last"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "text": {},
+        "textMode": "auto"
+      },
+      "pluginVersion": "9.1.5",
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "exemplar": false,
+          "expr": "sum(round(increase(action_backup_cluster_ended_overall{cluster=\"$cluster\", state=\"succeeded\"}[$__range])))",
+          "hide": false,
+          "interval": "",
+          "legendFormat": "",
+          "refId": "B"
+        }
+      ],
+      "title": "Cluster Backups Completed",
+      "type": "stat"
+    },
+    {
+      "datasource": "Prometheus",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "mappings": [
+            {
+              "options": {
+                "0": {
+                  "index": 0,
+                  "text": "-"
+                }
+              },
+              "type": "value"
+            }
+          ],
+          "noValue": "-",
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "text",
+                "value": null
+              },
+              {
+                "color": "red",
+                "value": 1
+              }
+            ]
+          }
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 7,
+        "w": 3,
+        "x": 5,
+        "y": 26
+      },
+      "id": 19,
+      "interval": "1m",
+      "options": {
+        "colorMode": "value",
+        "graphMode": "none",
+        "justifyMode": "auto",
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": [
+            "last"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "text": {},
+        "textMode": "auto"
+      },
+      "pluginVersion": "9.1.5",
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "exemplar": false,
+          "expr": "sum(round(increase(action_backup_cluster_ended_overall{cluster=\"$cluster\", state=~\"failed|cancelled\"}[$__range])))",
+          "hide": false,
+          "interval": "",
+          "legendFormat": "",
+          "refId": "B"
+        }
+      ],
+      "title": "Cluster Backups Failed",
+      "type": "stat"
+    },
+    {
+      "datasource": "Prometheus",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "mappings": [
+            {
+              "options": {
+                "0": {
+                  "index": 0,
+                  "text": "-"
+                }
+              },
+              "type": "value"
+            }
+          ],
+          "noValue": "-",
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "text",
+                "value": null
+              },
+              {
+                "color": "#EAB839",
+                "value": 1
+              }
+            ]
+          }
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 7,
+        "w": 3,
+        "x": 8,
+        "y": 26
+      },
+      "id": 28,
+      "interval": "1m",
+      "options": {
+        "colorMode": "value",
+        "graphMode": "none",
+        "justifyMode": "auto",
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": [
+            "last"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "text": {},
+        "textMode": "auto"
+      },
+      "pluginVersion": "9.1.5",
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "exemplar": false,
+          "expr": "sum(round(increase(action_backup_cluster_skipped_overall{cluster=\"$cluster\"}[$__range])))",
+          "hide": false,
+          "interval": "",
+          "legendFormat": "",
+          "refId": "B"
+        }
+      ],
+      "title": "Cluster Backups Skipped",
+      "type": "stat"
+    },
+    {
+      "datasource": "Prometheus",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "mappings": [
+            {
+              "options": {
+                "0": {
+                  "index": 0,
+                  "text": "-"
+                }
+              },
+              "type": "value"
+            }
+          ],
+          "noValue": "-",
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "text",
+                "value": null
+              },
+              {
+                "color": "green",
+                "value": 1
+              }
+            ]
+          }
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 7,
+        "w": 5,
+        "x": 13,
+        "y": 26
+      },
+      "id": 21,
+      "interval": "1m",
+      "options": {
+        "colorMode": "value",
+        "graphMode": "none",
+        "justifyMode": "auto",
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": [
+            "last"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "text": {},
+        "textMode": "auto"
+      },
+      "pluginVersion": "9.1.5",
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "exemplar": false,
+          "expr": "sum(round(increase(action_restore_cluster_ended_overall{cluster=\"$cluster\", state=\"succeeded\"}[$__range])))",
+          "hide": false,
+          "interval": "",
+          "legendFormat": "",
+          "refId": "B"
+        }
+      ],
+      "title": "Cluster Restores Completed",
+      "type": "stat"
+    },
+    {
+      "datasource": "Prometheus",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "mappings": [
+            {
+              "options": {
+                "0": {
+                  "index": 0,
+                  "text": "-"
+                }
+              },
+              "type": "value"
+            }
+          ],
+          "noValue": "-",
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "text",
+                "value": null
+              },
+              {
+                "color": "red",
+                "value": 1
+              }
+            ]
+          }
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 7,
+        "w": 3,
+        "x": 18,
+        "y": 26
+      },
+      "id": 22,
+      "interval": "1m",
+      "options": {
+        "colorMode": "value",
+        "graphMode": "none",
+        "justifyMode": "auto",
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": [
+            "last"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "text": {},
+        "textMode": "auto"
+      },
+      "pluginVersion": "9.1.5",
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "exemplar": false,
+          "expr": "sum(round(increase(action_restore_cluster_ended_overall{cluster=\"$cluster\", state=~\"failed|cancelled\"}[$__range])))",
+          "hide": false,
+          "interval": "",
+          "legendFormat": "",
+          "refId": "B"
+        }
+      ],
+      "title": "Cluster Restores Failed",
+      "type": "stat"
+    },
+    {
+      "datasource": "Prometheus",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "mappings": [
+            {
+              "options": {
+                "0": {
+                  "index": 0,
+                  "text": "-"
+                }
+              },
+              "type": "value"
+            }
+          ],
+          "noValue": "-",
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "text",
+                "value": null
+              },
+              {
+                "color": "#EAB839",
+                "value": 1
+              }
+            ]
+          }
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 7,
+        "w": 3,
+        "x": 21,
+        "y": 26
+      },
+      "id": 25,
+      "interval": "1m",
+      "options": {
+        "colorMode": "value",
+        "graphMode": "none",
+        "justifyMode": "auto",
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": [
+            "last"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "text": {},
+        "textMode": "auto"
+      },
+      "pluginVersion": "9.1.5",
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "exemplar": false,
+          "expr": "sum(round(increase(action_restore_cluster_skipped_overall{cluster=\"$cluster\"}[$__range])))",
+          "hide": false,
+          "interval": "",
+          "legendFormat": "",
+          "refId": "B"
+        }
+      ],
+      "title": "Cluster Restores Skipped",
+      "type": "stat"
+    },
+    {
+      "collapsed": false,
+      "datasource": "Prometheus",
+      "gridPos": {
+        "h": 1,
+        "w": 24,
+        "x": 0,
+        "y": 33
+      },
+      "id": 31,
+      "panels": [],
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "refId": "A"
+        }
+      ],
+      "title": "Backup Exports",
+      "type": "row"
+    },
+    {
+      "datasource": "Prometheus",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "mappings": [],
+          "noValue": "0",
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "text",
+                "value": null
+              },
+              {
+                "color": "green",
+                "value": 1
+              }
+            ]
+          }
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 6,
+        "w": 5,
+        "x": 0,
+        "y": 34
+      },
+      "id": 38,
+      "interval": "1m",
+      "options": {
+        "colorMode": "value",
+        "graphMode": "none",
+        "justifyMode": "auto",
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": [
+            "last"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "text": {},
+        "textMode": "auto"
+      },
+      "pluginVersion": "9.1.5",
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "exemplar": false,
+          "expr": "sum(round(increase(action_export_ended_overall{cluster=\"$cluster\", state=\"succeeded\"}[$__range])))",
+          "hide": false,
+          "interval": "",
+          "legendFormat": "",
+          "refId": "B"
+        }
+      ],
+      "title": "Exports Completed",
+      "type": "stat"
+    },
+    {
+      "datasource": "Prometheus",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "mappings": [
+            {
+              "options": {
+                "0": {
+                  "index": 0,
+                  "text": "-"
+                }
+              },
+              "type": "value"
+            }
+          ],
+          "noValue": "-",
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "text",
+                "value": null
+              },
+              {
+                "color": "red",
+                "value": 1
+              }
+            ]
+          }
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 6,
+        "w": 3,
+        "x": 5,
+        "y": 34
+      },
+      "id": 29,
+      "interval": "1m",
+      "options": {
+        "colorMode": "value",
+        "graphMode": "none",
+        "justifyMode": "auto",
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": [
+            "last"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "text": {},
+        "textMode": "auto"
+      },
+      "pluginVersion": "9.1.5",
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "exemplar": false,
+          "expr": "sum(round(increase(action_export_ended_overall{cluster=\"$cluster\", state=~\"failed|cancelled\"}[$__range])))",
+          "hide": false,
+          "interval": "",
+          "legendFormat": "",
+          "refId": "B"
+        }
+      ],
+      "title": "Exports Failed",
+      "type": "stat"
+    },
+    {
+      "datasource": "Prometheus",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "mappings": [
+            {
+              "options": {
+                "0": {
+                  "index": 0,
+                  "text": "-"
+                }
+              },
+              "type": "value"
+            }
+          ],
+          "noValue": "-",
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "text",
+                "value": null
+              },
+              {
+                "color": "#EAB839",
+                "value": 1
+              }
+            ]
+          }
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 6,
+        "w": 3,
+        "x": 8,
+        "y": 34
+      },
+      "id": 20,
+      "interval": "1m",
+      "options": {
+        "colorMode": "value",
+        "graphMode": "none",
+        "justifyMode": "auto",
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": [
+            "last"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "text": {},
+        "textMode": "auto"
+      },
+      "pluginVersion": "9.1.5",
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "exemplar": false,
+          "expr": "sum(round(increase(action_export_skipped_overall{cluster=\"$cluster\"}[$__range])))",
+          "hide": false,
+          "interval": "",
+          "legendFormat": "",
+          "refId": "B"
+        }
+      ],
+      "title": "Exports Skipped",
+      "type": "stat"
+    },
+    {
+      "datasource": "Prometheus",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "mappings": [],
+          "noValue": "0",
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "text",
+                "value": null
+              },
+              {
+                "color": "green",
+                "value": 1
+              }
+            ]
+          }
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 6,
+        "w": 5,
+        "x": 13,
+        "y": 34
+      },
+      "id": 27,
+      "interval": "1m",
+      "options": {
+        "colorMode": "value",
+        "graphMode": "none",
+        "justifyMode": "auto",
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": [
+            "last"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "text": {},
+        "textMode": "auto"
+      },
+      "pluginVersion": "9.1.5",
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "exemplar": false,
+          "expr": "sum(round(increase(action_import_ended_overall{cluster=\"$cluster\", state=\"succeeded\"}[$__range])))",
+          "hide": false,
+          "interval": "",
+          "legendFormat": "",
+          "refId": "B"
+        }
+      ],
+      "title": "Imports Completed",
+      "type": "stat"
+    },
+    {
+      "datasource": "Prometheus",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "mappings": [
+            {
+              "options": {
+                "0": {
+                  "index": 0,
+                  "text": "-"
+                }
+              },
+              "type": "value"
+            }
+          ],
+          "noValue": "-",
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "text",
+                "value": null
+              },
+              {
+                "color": "red",
+                "value": 1
+              }
+            ]
+          }
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 6,
+        "w": 3,
+        "x": 18,
+        "y": 34
+      },
+      "id": 39,
+      "interval": "1m",
+      "options": {
+        "colorMode": "value",
+        "graphMode": "none",
+        "justifyMode": "auto",
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": [
+            "last"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "text": {},
+        "textMode": "auto"
+      },
+      "pluginVersion": "9.1.5",
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "exemplar": false,
+          "expr": "sum(round(increase(action_import_ended_overall{cluster=\"$cluster\", state=~\"failed|cancelled\"}[$__range])))",
+          "hide": false,
+          "interval": "",
+          "legendFormat": "",
+          "refId": "B"
+        }
+      ],
+      "title": "Imports Failed",
+      "type": "stat"
+    },
+    {
+      "datasource": "Prometheus",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "mappings": [
+            {
+              "options": {
+                "0": {
+                  "index": 0,
+                  "text": "-"
+                }
+              },
+              "type": "value"
+            }
+          ],
+          "noValue": "-",
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "text",
+                "value": null
+              },
+              {
+                "color": "#EAB839",
+                "value": 1
+              }
+            ]
+          }
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 6,
+        "w": 3,
+        "x": 21,
+        "y": 34
+      },
+      "id": 37,
+      "interval": "1m",
+      "options": {
+        "colorMode": "value",
+        "graphMode": "none",
+        "justifyMode": "auto",
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": [
+            "last"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "text": {},
+        "textMode": "auto"
+      },
+      "pluginVersion": "9.1.5",
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "exemplar": false,
+          "expr": "sum(round(increase(action_import_skipped_overall{cluster=\"$cluster\"}[$__range])))",
+          "hide": false,
+          "interval": "",
+          "legendFormat": "",
+          "refId": "B"
+        }
+      ],
+      "title": "Imports Skipped",
+      "type": "stat"
+    },
+    {
+      "collapsed": false,
+      "datasource": "Prometheus",
+      "gridPos": {
+        "h": 1,
+        "w": 24,
+        "x": 0,
+        "y": 40
+      },
+      "id": 14,
+      "panels": [],
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "refId": "A"
+        }
+      ],
+      "title": "System",
+      "type": "row"
+    },
+    {
+      "datasource": "Prometheus",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "mappings": [
+            {
+              "options": {
+                "0": {
+                  "index": 0,
+                  "text": "-"
+                }
+              },
+              "type": "value"
+            }
+          ],
+          "noValue": "-",
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "text",
+                "value": null
+              },
+              {
+                "color": "green",
+                "value": 1
+              }
+            ]
+          },
+          "unit": "runs"
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 6,
+        "w": 3,
+        "x": 0,
+        "y": 41
+      },
+      "id": 12,
+      "interval": "1m",
+      "options": {
+        "colorMode": "value",
+        "graphMode": "none",
+        "justifyMode": "auto",
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": [
+            "last"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "text": {},
+        "textMode": "auto"
+      },
+      "pluginVersion": "9.1.5",
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "exemplar": false,
+          "expr": "sum(round(increase(action_run_ended_overall{cluster=\"$cluster\", state=\"succeeded\"}[$__range])))",
+          "format": "time_series",
+          "interval": "",
+          "legendFormat": "",
+          "queryType": "randomWalk",
+          "refId": "A"
+        }
+      ],
+      "title": "Policy Runs",
+      "type": "stat"
+    },
+    {
+      "datasource": "Prometheus",
+      "description": "",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "mappings": [
+            {
+              "options": {
+                "0": {
+                  "index": 0,
+                  "text": "-"
+                }
+              },
+              "type": "value"
+            }
+          ],
+          "noValue": "-",
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "text",
+                "value": null
+              },
+              {
+                "color": "yellow",
+                "value": 1
+              }
+            ]
+          },
+          "unit": "runs"
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 6,
+        "w": 3,
+        "x": 3,
+        "y": 41
+      },
+      "id": 40,
+      "interval": "1m",
+      "options": {
+        "colorMode": "value",
+        "graphMode": "none",
+        "justifyMode": "auto",
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": [
+            "last"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "text": {},
+        "textMode": "auto"
+      },
+      "pluginVersion": "9.1.5",
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "exemplar": false,
+          "expr": "sum(round(increase(action_run_skipped_overall{cluster=\"$cluster\"}[$__range])))",
+          "format": "time_series",
+          "interval": "",
+          "legendFormat": "",
+          "queryType": "randomWalk",
+          "refId": "A"
+        }
+      ],
+      "title": "Policy Runs Skipped",
+      "type": "stat"
+    },
+    {
+      "datasource": "Prometheus",
+      "description": "",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "mappings": [],
+          "noValue": "-",
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "#ccccdc",
+                "value": null
+              }
+            ]
+          },
+          "unit": "bytes"
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 6,
+        "w": 3,
+        "x": 6,
+        "y": 41
+      },
+      "id": 6,
+      "options": {
+        "colorMode": "value",
+        "graphMode": "area",
+        "justifyMode": "auto",
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": [
+            "lastNotNull"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "text": {},
+        "textMode": "auto"
+      },
+      "pluginVersion": "9.1.5",
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "exemplar": true,
+          "expr": "catalog_persistent_volume_disk_space_used_bytes{cluster=\"$cluster\"}",
+          "interval": "",
+          "legendFormat": "",
+          "queryType": "randomWalk",
+          "refId": "A"
+        }
+      ],
+      "title": "Catalog Volume Used",
+      "type": "stat"
+    },
+    {
+      "datasource": "Prometheus",
+      "description": "",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "mappings": [],
+          "max": 100,
+          "min": 0,
+          "noValue": "-",
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "green",
+                "value": null
+              },
+              {
+                "color": "yellow",
+                "value": 70
+              },
+              {
+                "color": "orange",
+                "value": 80
+              },
+              {
+                "color": "red",
+                "value": 90
+              }
+            ]
+          },
+          "unit": "percent"
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 6,
+        "w": 3,
+        "x": 9,
+        "y": 41
+      },
+      "id": 2,
+      "options": {
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": [
+            "lastNotNull"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "showThresholdLabels": false,
+        "showThresholdMarkers": true,
+        "text": {}
+      },
+      "pluginVersion": "9.1.5",
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "exemplar": true,
+          "expr": "100-catalog_persistent_volume_free_space_percent{cluster=\"$cluster\"}",
+          "interval": "",
+          "legendFormat": "",
+          "queryType": "randomWalk",
+          "refId": "A"
+        }
+      ],
+      "title": "Catalog Volume Used Space",
+      "type": "gauge"
+    },
+    {
+      "datasource": "Prometheus",
+      "description": "",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "mappings": [],
+          "noValue": "-",
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "#ccccdc",
+                "value": null
+              }
+            ]
+          },
+          "unit": "bytes"
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 6,
+        "w": 3,
+        "x": 12,
+        "y": 41
+      },
+      "id": 8,
+      "options": {
+        "colorMode": "value",
+        "graphMode": "area",
+        "justifyMode": "auto",
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": [
+            "lastNotNull"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "text": {},
+        "textMode": "auto"
+      },
+      "pluginVersion": "9.1.5",
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "exemplar": true,
+          "expr": "jobs_persistent_volume_disk_space_used_bytes{cluster=\"$cluster\"}",
+          "interval": "",
+          "legendFormat": "",
+          "queryType": "randomWalk",
+          "refId": "A"
+        }
+      ],
+      "title": "Jobs Volume Used",
+      "type": "stat"
+    },
+    {
+      "datasource": "Prometheus",
+      "description": "",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "mappings": [],
+          "max": 100,
+          "min": 0,
+          "noValue": "-",
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "green",
+                "value": null
+              },
+              {
+                "color": "yellow",
+                "value": 70
+              },
+              {
+                "color": "orange",
+                "value": 80
+              },
+              {
+                "color": "red",
+                "value": 90
+              }
+            ]
+          },
+          "unit": "percent"
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 6,
+        "w": 3,
+        "x": 15,
+        "y": 41
+      },
+      "id": 4,
+      "options": {
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": [
+            "lastNotNull"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "showThresholdLabels": false,
+        "showThresholdMarkers": true,
+        "text": {}
+      },
+      "pluginVersion": "9.1.5",
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "exemplar": true,
+          "expr": "100-jobs_persistent_volume_free_space_percent{cluster=\"$cluster\"}",
+          "interval": "",
+          "legendFormat": "",
+          "queryType": "randomWalk",
+          "refId": "A"
+        }
+      ],
+      "title": "Jobs Volume Used Space",
+      "type": "gauge"
+    },
+    {
+      "datasource": "Prometheus",
+      "description": "",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "mappings": [],
+          "noValue": "-",
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "#ccccdc",
+                "value": null
+              }
+            ]
+          },
+          "unit": "bytes"
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 6,
+        "w": 3,
+        "x": 18,
+        "y": 41
+      },
+      "id": 7,
+      "options": {
+        "colorMode": "value",
+        "graphMode": "area",
+        "justifyMode": "auto",
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": [
+            "lastNotNull"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "text": {},
+        "textMode": "auto"
+      },
+      "pluginVersion": "9.1.5",
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "exemplar": true,
+          "expr": "logging_persistent_volume_disk_space_used_bytes{cluster=\"$cluster\"}",
+          "interval": "",
+          "legendFormat": "",
+          "queryType": "randomWalk",
+          "refId": "A"
+        }
+      ],
+      "title": "Logging Volume Used",
+      "type": "stat"
+    },
+    {
+      "datasource": "Prometheus",
+      "description": "",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "mappings": [],
+          "max": 100,
+          "min": 0,
+          "noValue": "-",
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "green",
+                "value": null
+              },
+              {
+                "color": "yellow",
+                "value": 70
+              },
+              {
+                "color": "orange",
+                "value": 80
+              },
+              {
+                "color": "red",
+                "value": 90
+              }
+            ]
+          },
+          "unit": "percent"
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 6,
+        "w": 3,
+        "x": 21,
+        "y": 41
+      },
+      "id": 3,
+      "options": {
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": [
+            "lastNotNull"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "showThresholdLabels": false,
+        "showThresholdMarkers": true,
+        "text": {}
+      },
+      "pluginVersion": "9.1.5",
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "exemplar": true,
+          "expr": "100-logging_persistent_volume_free_space_percent{cluster=\"$cluster\"}",
+          "interval": "",
+          "legendFormat": "",
+          "queryType": "randomWalk",
+          "refId": "A"
+        }
+      ],
+      "title": "Logging Volume Used Space",
+      "type": "gauge"
+    },
+    {
+      "datasource": "Prometheus",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "mappings": [],
+          "noValue": "0",
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "text",
+                "value": null
+              },
+              {
+                "color": "green",
+                "value": 1
+              }
+            ]
+          }
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 6,
+        "w": 3,
+        "x": 0,
+        "y": 47
+      },
+      "id": 41,
+      "interval": "1m",
+      "options": {
+        "colorMode": "value",
+        "graphMode": "none",
+        "justifyMode": "auto",
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": [
+            "last"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "text": {},
+        "textMode": "auto"
+      },
+      "pluginVersion": "9.1.5",
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "exemplar": false,
+          "expr": "compliance_count{state=\"Compliant\"}",
+          "hide": false,
+          "interval": "",
+          "legendFormat": "",
+          "refId": "B"
+        }
+      ],
+      "title": "Compliant Applications",
+      "type": "stat"
+    },
+    {
+      "datasource": "Prometheus",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "mappings": [],
+          "noValue": "0",
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "green",
+                "value": null
+              },
+              {
+                "color": "red",
+                "value": 1
+              }
+            ]
+          }
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 6,
+        "w": 3,
+        "x": 3,
+        "y": 47
+      },
+      "id": 42,
+      "interval": "1m",
+      "options": {
+        "colorMode": "value",
+        "graphMode": "none",
+        "justifyMode": "auto",
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": [
+            "last"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "text": {},
+        "textMode": "auto"
+      },
+      "pluginVersion": "9.1.5",
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "exemplar": false,
+          "expr": "compliance_count{state=\"NotCompliant\"}",
+          "hide": false,
+          "interval": "",
+          "legendFormat": "",
+          "refId": "B"
+        }
+      ],
+      "title": "Non-Compliant Applications",
+      "type": "stat"
+    },
+    {
+      "datasource": "Prometheus",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "mappings": [],
+          "noValue": "0",
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "green",
+                "value": null
+              },
+              {
+                "color": "red",
+                "value": 1
+              }
+            ]
+          }
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 6,
+        "w": 3,
+        "x": 6,
+        "y": 47
+      },
+      "id": 43,
+      "interval": "1m",
+      "options": {
+        "colorMode": "value",
+        "graphMode": "none",
+        "justifyMode": "auto",
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": [
+            "last"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "text": {},
+        "textMode": "auto"
+      },
+      "pluginVersion": "9.1.5",
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "exemplar": false,
+          "expr": "compliance_count{state=\"Unmanaged\"}",
+          "hide": false,
+          "interval": "",
+          "legendFormat": "",
+          "refId": "B"
+        }
+      ],
+      "title": "Unmanaged Applications",
+      "type": "stat"
+    },
+    {
+      "datasource": "Prometheus",
+      "description": "",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "mappings": [],
+          "noValue": "-",
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "#ccccdc",
+                "value": null
+              }
+            ]
+          },
+          "unit": "bytes"
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 6,
+        "w": 3,
+        "x": 12,
+        "y": 47
+      },
+      "id": 44,
+      "options": {
+        "colorMode": "value",
+        "graphMode": "area",
+        "justifyMode": "auto",
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": [
+            "lastNotNull"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "text": {},
+        "textMode": "auto"
+      },
+      "pluginVersion": "9.1.5",
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "exemplar": true,
+          "expr": "snapshot_storage_size_bytes{cluster=\"$cluster\", type=\"physical\"}",
+          "interval": "",
+          "legendFormat": "",
+          "queryType": "randomWalk",
+          "refId": "A"
+        }
+      ],
+      "title": "Snapshot Size (Physical)",
+      "type": "stat"
+    },
+    {
+      "datasource": "Prometheus",
+      "description": "",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "mappings": [],
+          "noValue": "-",
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "#ccccdc",
+                "value": null
+              }
+            ]
+          },
+          "unit": "bytes"
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 6,
+        "w": 3,
+        "x": 15,
+        "y": 47
+      },
+      "id": 45,
+      "options": {
+        "colorMode": "value",
+        "graphMode": "area",
+        "justifyMode": "auto",
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": [
+            "lastNotNull"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "text": {},
+        "textMode": "auto"
+      },
+      "pluginVersion": "9.1.5",
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "exemplar": true,
+          "expr": "snapshot_storage_size_bytes{cluster=\"$cluster\", type=\"logical\"}",
+          "interval": "",
+          "legendFormat": "",
+          "queryType": "randomWalk",
+          "refId": "A"
+        }
+      ],
+      "title": "Snapshot Size (Logical)",
+      "type": "stat"
+    },
+    {
+      "datasource": "Prometheus",
+      "description": "",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "mappings": [],
+          "noValue": "-",
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "#ccccdc",
+                "value": null
+              }
+            ]
+          },
+          "unit": "bytes"
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 6,
+        "w": 3,
+        "x": 18,
+        "y": 47
+      },
+      "id": 46,
+      "options": {
+        "colorMode": "value",
+        "graphMode": "area",
+        "justifyMode": "auto",
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": [
+            "lastNotNull"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "text": {},
+        "textMode": "auto"
+      },
+      "pluginVersion": "9.1.5",
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "exemplar": true,
+          "expr": "export_storage_size_bytes{cluster=\"$cluster\", type=\"physical\"}",
+          "interval": "",
+          "legendFormat": "",
+          "queryType": "randomWalk",
+          "refId": "A"
+        }
+      ],
+      "title": "Export Size (Physical)",
+      "type": "stat"
+    },
+    {
+      "datasource": "Prometheus",
+      "description": "",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "mappings": [],
+          "noValue": "-",
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "#ccccdc",
+                "value": null
+              }
+            ]
+          },
+          "unit": "bytes"
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 6,
+        "w": 3,
+        "x": 21,
+        "y": 47
+      },
+      "id": 47,
+      "options": {
+        "colorMode": "value",
+        "graphMode": "area",
+        "justifyMode": "auto",
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": [
+            "lastNotNull"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "text": {},
+        "textMode": "auto"
+      },
+      "pluginVersion": "9.1.5",
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "exemplar": true,
+          "expr": "export_storage_size_bytes{cluster=\"$cluster\", type=\"logical\"}",
+          "interval": "",
+          "legendFormat": "",
+          "queryType": "randomWalk",
+          "refId": "A"
+        }
+      ],
+      "title": "Export Size (Logical)",
+      "type": "stat"
+    },
+    {
+      "collapsed": true,
+      "datasource": "Prometheus",
+      "gridPos": {
+        "h": 1,
+        "w": 24,
+        "x": 0,
+        "y": 53
+      },
+      "id": 49,
+      "panels": [
+        {
+          "datasource": "Prometheus",
+          "fieldConfig": {
+            "defaults": {
+              "color": {
+                "fixedColor": "red",
+                "mode": "palette-classic"
+              },
+              "custom": {
+                "axisCenteredZero": false,
+                "axisColorMode": "text",
+                "axisLabel": "",
+                "axisPlacement": "auto",
+                "barAlignment": 0,
+                "drawStyle": "line",
+                "fillOpacity": 0,
+                "gradientMode": "none",
+                "hideFrom": {
+                  "legend": false,
+                  "tooltip": false,
+                  "viz": false
+                },
+                "lineInterpolation": "linear",
+                "lineWidth": 1,
+                "pointSize": 5,
+                "scaleDistribution": {
+                  "type": "linear"
+                },
+                "showPoints": "auto",
+                "spanNulls": false,
+                "stacking": {
+                  "group": "A",
+                  "mode": "none"
+                },
+                "thresholdsStyle": {
+                  "mode": "off"
+                }
+              },
+              "mappings": [],
+              "thresholds": {
+                "mode": "absolute",
+                "steps": [
+                  {
+                    "color": "green",
+                    "value": null
+                  },
+                  {
+                    "color": "red",
+                    "value": 80
+                  }
+                ]
+              }
+            },
+            "overrides": [
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "Worker Count"
+                },
+                "properties": [
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "dark-red",
+                      "mode": "fixed"
+                    }
+                  }
+                ]
+              }
+            ]
+          },
+          "gridPos": {
+            "h": 7,
+            "w": 12,
+            "x": 0,
+            "y": 54
+          },
+          "id": 57,
+          "interval": "5s",
+          "options": {
+            "legend": {
+              "calcs": [],
+              "displayMode": "list",
+              "placement": "bottom",
+              "showLegend": true
+            },
+            "tooltip": {
+              "mode": "single",
+              "sort": "none"
+            }
+          },
+          "targets": [
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "expr": "sum(exec_executor_worker_count)",
+              "legendFormat": "Worker Count",
+              "range": true,
+              "refId": "A"
+            },
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "expr": "sum(exec_active_job_count) OR on() vector(0)",
+              "hide": false,
+              "legendFormat": "Worker Load",
+              "range": true,
+              "refId": "B"
+            }
+          ],
+          "title": "Executor Worker Load",
+          "type": "timeseries"
+        },
+        {
+          "datasource": "Prometheus",
+          "description": "",
+          "fieldConfig": {
+            "defaults": {
+              "color": {
+                "mode": "palette-classic"
+              },
+              "custom": {
+                "axisCenteredZero": false,
+                "axisColorMode": "text",
+                "axisLabel": "",
+                "axisPlacement": "auto",
+                "barAlignment": 0,
+                "drawStyle": "line",
+                "fillOpacity": 0,
+                "gradientMode": "none",
+                "hideFrom": {
+                  "legend": false,
+                  "tooltip": false,
+                  "viz": false
+                },
+                "lineInterpolation": "linear",
+                "lineStyle": {
+                  "fill": "solid"
+                },
+                "lineWidth": 1,
+                "pointSize": 5,
+                "scaleDistribution": {
+                  "type": "linear"
+                },
+                "showPoints": "auto",
+                "spanNulls": false,
+                "stacking": {
+                  "group": "A",
+                  "mode": "none"
+                },
+                "thresholdsStyle": {
+                  "mode": "off"
+                }
+              },
+              "mappings": [],
+              "thresholds": {
+                "mode": "absolute",
+                "steps": [
+                  {
+                    "color": "green",
+                    "value": null
+                  },
+                  {
+                    "color": "red",
+                    "value": 80
+                  }
+                ]
+              },
+              "unit": "s"
+            },
+            "overrides": []
+          },
+          "gridPos": {
+            "h": 7,
+            "w": 12,
+            "x": 12,
+            "y": 54
+          },
+          "id": 68,
+          "options": {
+            "legend": {
+              "calcs": [],
+              "displayMode": "list",
+              "placement": "bottom",
+              "showLegend": true
+            },
+            "tooltip": {
+              "mode": "single",
+              "sort": "none"
+            }
+          },
+          "targets": [
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "expr": "sum(rate(action_backup_duration_seconds_sum_overall[5m])) / sum(rate(action_backup_ended_overall[5m]))",
+              "hide": false,
+              "legendFormat": "Backup",
+              "range": true,
+              "refId": "A"
+            },
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "expr": "sum(rate(action_backup_cluster_duration_seconds_overall_sum[5m])) / sum(rate(action_backup_cluster_ended_overall[5m]))",
+              "hide": false,
+              "legendFormat": "Backup Cluster",
+              "range": true,
+              "refId": "B"
+            },
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "expr": "sum(rate(action_export_duration_seconds_sum_overall[5m])) / sum(rate(action_export_ended_overall[5m]))",
+              "hide": false,
+              "legendFormat": "Export",
+              "range": true,
+              "refId": "C"
+            },
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "expr": "sum(rate(action_import_duration_seconds_sum_overall[5m])) / sum(rate(action_import_ended_overall[5m]))",
+              "hide": false,
+              "legendFormat": "Import",
+              "range": true,
+              "refId": "D"
+            },
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "expr": "sum(rate(action_report_duration_seconds_sum_overall[5m])) / sum(rate(action_report_ended_overall[5m]))",
+              "hide": false,
+              "legendFormat": "Report",
+              "range": true,
+              "refId": "E"
+            },
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "expr": "sum(rate(action_retire_duration_seconds_sum_overall[5m])) / sum(rate(action_retire_ended_overall[5m]))",
+              "hide": false,
+              "legendFormat": "Retire",
+              "range": true,
+              "refId": "F"
+            },
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "expr": "sum(rate(action_restore_duration_seconds_sum_overall[5m])) / sum(rate(action_restore_ended_overall[5m]))",
+              "hide": false,
+              "legendFormat": "Restore",
+              "range": true,
+              "refId": "G"
+            },
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "expr": "sum(rate(action_restore_cluster_duration_seconds_sum_overall[5m])) / sum(rate(action_restore_cluster_ended_overall[5m]))",
+              "hide": false,
+              "legendFormat": "Restore Cluster",
+              "range": true,
+              "refId": "H"
+            }
+          ],
+          "title": "Average Action Duration",
+          "type": "timeseries"
+        },
+        {
+          "datasource": "Prometheus",
+          "description": "",
+          "fieldConfig": {
+            "defaults": {
+              "color": {
+                "mode": "palette-classic"
+              },
+              "custom": {
+                "axisCenteredZero": false,
+                "axisColorMode": "text",
+                "axisLabel": "",
+                "axisPlacement": "auto",
+                "axisSoftMax": 0,
+                "axisSoftMin": 0,
+                "barAlignment": 0,
+                "drawStyle": "line",
+                "fillOpacity": 0,
+                "gradientMode": "none",
+                "hideFrom": {
+                  "legend": false,
+                  "tooltip": false,
+                  "viz": false
+                },
+                "lineInterpolation": "linear",
+                "lineWidth": 1,
+                "pointSize": 5,
+                "scaleDistribution": {
+                  "type": "linear"
+                },
+                "showPoints": "auto",
+                "spanNulls": false,
+                "stacking": {
+                  "group": "A",
+                  "mode": "none"
+                },
+                "thresholdsStyle": {
+                  "mode": "off"
+                }
+              },
+              "decimals": 0,
+              "mappings": [],
+              "thresholds": {
+                "mode": "absolute",
+                "steps": [
+                  {
+                    "color": "green",
+                    "value": null
+                  },
+                  {
+                    "color": "red",
+                    "value": 80
+                  }
+                ]
+              },
+              "unit": "none"
+            },
+            "overrides": [
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "succeeded"
+                },
+                "properties": [
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "semi-dark-green",
+                      "mode": "fixed"
+                    }
+                  }
+                ]
+              },
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "failed"
+                },
+                "properties": [
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "semi-dark-red",
+                      "mode": "fixed"
+                    }
+                  }
+                ]
+              },
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "cancelled"
+                },
+                "properties": [
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "semi-dark-orange",
+                      "mode": "fixed"
+                    }
+                  }
+                ]
+              },
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "skipped"
+                },
+                "properties": [
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "semi-dark-blue",
+                      "mode": "fixed"
+                    }
+                  }
+                ]
+              }
+            ]
+          },
+          "gridPos": {
+            "h": 7,
+            "w": 6,
+            "x": 0,
+            "y": 61
+          },
+          "id": 74,
+          "options": {
+            "legend": {
+              "calcs": [],
+              "displayMode": "list",
+              "placement": "bottom",
+              "showLegend": true
+            },
+            "tooltip": {
+              "mode": "single",
+              "sort": "none"
+            }
+          },
+          "targets": [
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "expr": "sum(round(increase(action_backup_ended_overall[1m:10s]))) by (state)",
+              "hide": false,
+              "legendFormat": "__auto",
+              "range": true,
+              "refId": "A"
+            }
+          ],
+          "title": "Finished Backups",
+          "transformations": [],
+          "type": "timeseries"
+        },
+        {
+          "datasource": "Prometheus",
+          "description": "",
+          "fieldConfig": {
+            "defaults": {
+              "color": {
+                "mode": "palette-classic"
+              },
+              "custom": {
+                "axisCenteredZero": false,
+                "axisColorMode": "text",
+                "axisLabel": "",
+                "axisPlacement": "auto",
+                "axisSoftMax": 0,
+                "axisSoftMin": 0,
+                "barAlignment": 0,
+                "drawStyle": "line",
+                "fillOpacity": 0,
+                "gradientMode": "none",
+                "hideFrom": {
+                  "legend": false,
+                  "tooltip": false,
+                  "viz": false
+                },
+                "lineInterpolation": "linear",
+                "lineWidth": 1,
+                "pointSize": 5,
+                "scaleDistribution": {
+                  "type": "linear"
+                },
+                "showPoints": "auto",
+                "spanNulls": false,
+                "stacking": {
+                  "group": "A",
+                  "mode": "none"
+                },
+                "thresholdsStyle": {
+                  "mode": "off"
+                }
+              },
+              "decimals": 0,
+              "mappings": [],
+              "thresholds": {
+                "mode": "absolute",
+                "steps": [
+                  {
+                    "color": "green",
+                    "value": null
+                  },
+                  {
+                    "color": "red",
+                    "value": 80
+                  }
+                ]
+              },
+              "unit": "none"
+            },
+            "overrides": [
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "succeeded"
+                },
+                "properties": [
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "semi-dark-green",
+                      "mode": "fixed"
+                    }
+                  }
+                ]
+              },
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "failed"
+                },
+                "properties": [
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "semi-dark-red",
+                      "mode": "fixed"
+                    }
+                  }
+                ]
+              },
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "cancelled"
+                },
+                "properties": [
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "semi-dark-orange",
+                      "mode": "fixed"
+                    }
+                  }
+                ]
+              },
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "skipped"
+                },
+                "properties": [
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "semi-dark-blue",
+                      "mode": "fixed"
+                    }
+                  }
+                ]
+              }
+            ]
+          },
+          "gridPos": {
+            "h": 7,
+            "w": 6,
+            "x": 6,
+            "y": 61
+          },
+          "id": 69,
+          "options": {
+            "legend": {
+              "calcs": [],
+              "displayMode": "list",
+              "placement": "bottom",
+              "showLegend": true
+            },
+            "tooltip": {
+              "mode": "single",
+              "sort": "none"
+            }
+          },
+          "targets": [
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "expr": "sum(round(increase(action_backup_cluster_ended_overall[1m:10s]))) by (state)",
+              "hide": false,
+              "legendFormat": "__auto",
+              "range": true,
+              "refId": "A"
+            }
+          ],
+          "title": "Finished Cluster Backups",
+          "transformations": [],
+          "type": "timeseries"
+        },
+        {
+          "datasource": "Prometheus",
+          "description": "",
+          "fieldConfig": {
+            "defaults": {
+              "color": {
+                "mode": "palette-classic"
+              },
+              "custom": {
+                "axisCenteredZero": false,
+                "axisColorMode": "text",
+                "axisLabel": "",
+                "axisPlacement": "auto",
+                "axisSoftMax": 0,
+                "axisSoftMin": 0,
+                "barAlignment": 0,
+                "drawStyle": "line",
+                "fillOpacity": 0,
+                "gradientMode": "none",
+                "hideFrom": {
+                  "legend": false,
+                  "tooltip": false,
+                  "viz": false
+                },
+                "lineInterpolation": "linear",
+                "lineWidth": 1,
+                "pointSize": 5,
+                "scaleDistribution": {
+                  "type": "linear"
+                },
+                "showPoints": "auto",
+                "spanNulls": false,
+                "stacking": {
+                  "group": "A",
+                  "mode": "none"
+                },
+                "thresholdsStyle": {
+                  "mode": "off"
+                }
+              },
+              "decimals": 0,
+              "mappings": [],
+              "thresholds": {
+                "mode": "absolute",
+                "steps": [
+                  {
+                    "color": "green",
+                    "value": null
+                  },
+                  {
+                    "color": "red",
+                    "value": 80
+                  }
+                ]
+              },
+              "unit": "none"
+            },
+            "overrides": [
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "succeeded"
+                },
+                "properties": [
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "semi-dark-green",
+                      "mode": "fixed"
+                    }
+                  }
+                ]
+              },
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "failed"
+                },
+                "properties": [
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "semi-dark-red",
+                      "mode": "fixed"
+                    }
+                  }
+                ]
+              },
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "cancelled"
+                },
+                "properties": [
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "semi-dark-orange",
+                      "mode": "fixed"
+                    }
+                  }
+                ]
+              },
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "skipped"
+                },
+                "properties": [
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "semi-dark-blue",
+                      "mode": "fixed"
+                    }
+                  }
+                ]
+              }
+            ]
+          },
+          "gridPos": {
+            "h": 7,
+            "w": 6,
+            "x": 12,
+            "y": 61
+          },
+          "id": 75,
+          "options": {
+            "legend": {
+              "calcs": [],
+              "displayMode": "list",
+              "placement": "bottom",
+              "showLegend": true
+            },
+            "tooltip": {
+              "mode": "single",
+              "sort": "none"
+            }
+          },
+          "targets": [
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "expr": "sum(round(increase(action_export_ended_overall[1m:10s]))) by (state)",
+              "hide": false,
+              "legendFormat": "__auto",
+              "range": true,
+              "refId": "A"
+            }
+          ],
+          "title": "Finished Exports",
+          "transformations": [],
+          "type": "timeseries"
+        },
+        {
+          "datasource": "Prometheus",
+          "description": "",
+          "fieldConfig": {
+            "defaults": {
+              "color": {
+                "mode": "palette-classic"
+              },
+              "custom": {
+                "axisCenteredZero": false,
+                "axisColorMode": "text",
+                "axisLabel": "",
+                "axisPlacement": "auto",
+                "axisSoftMax": 0,
+                "axisSoftMin": 0,
+                "barAlignment": 0,
+                "drawStyle": "line",
+                "fillOpacity": 0,
+                "gradientMode": "none",
+                "hideFrom": {
+                  "legend": false,
+                  "tooltip": false,
+                  "viz": false
+                },
+                "lineInterpolation": "linear",
+                "lineWidth": 1,
+                "pointSize": 5,
+                "scaleDistribution": {
+                  "type": "linear"
+                },
+                "showPoints": "auto",
+                "spanNulls": false,
+                "stacking": {
+                  "group": "A",
+                  "mode": "none"
+                },
+                "thresholdsStyle": {
+                  "mode": "off"
+                }
+              },
+              "decimals": 0,
+              "mappings": [],
+              "thresholds": {
+                "mode": "absolute",
+                "steps": [
+                  {
+                    "color": "green",
+                    "value": null
+                  },
+                  {
+                    "color": "red",
+                    "value": 80
+                  }
+                ]
+              },
+              "unit": "none"
+            },
+            "overrides": [
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "succeeded"
+                },
+                "properties": [
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "semi-dark-green",
+                      "mode": "fixed"
+                    }
+                  }
+                ]
+              },
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "failed"
+                },
+                "properties": [
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "semi-dark-red",
+                      "mode": "fixed"
+                    }
+                  }
+                ]
+              },
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "cancelled"
+                },
+                "properties": [
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "semi-dark-orange",
+                      "mode": "fixed"
+                    }
+                  }
+                ]
+              },
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "skipped"
+                },
+                "properties": [
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "semi-dark-blue",
+                      "mode": "fixed"
+                    }
+                  }
+                ]
+              }
+            ]
+          },
+          "gridPos": {
+            "h": 7,
+            "w": 6,
+            "x": 18,
+            "y": 61
+          },
+          "id": 76,
+          "options": {
+            "legend": {
+              "calcs": [],
+              "displayMode": "list",
+              "placement": "bottom",
+              "showLegend": true
+            },
+            "tooltip": {
+              "mode": "single",
+              "sort": "none"
+            }
+          },
+          "targets": [
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "expr": "sum(round(increase(action_import_ended_overall[1m:10s]))) by (state)",
+              "hide": false,
+              "legendFormat": "__auto",
+              "range": true,
+              "refId": "A"
+            }
+          ],
+          "title": "Finished Imports",
+          "transformations": [],
+          "type": "timeseries"
+        },
+        {
+          "datasource": "Prometheus",
+          "description": "",
+          "fieldConfig": {
+            "defaults": {
+              "color": {
+                "mode": "palette-classic"
+              },
+              "custom": {
+                "axisCenteredZero": false,
+                "axisColorMode": "text",
+                "axisLabel": "",
+                "axisPlacement": "auto",
+                "axisSoftMax": 0,
+                "axisSoftMin": 0,
+                "barAlignment": 0,
+                "drawStyle": "line",
+                "fillOpacity": 0,
+                "gradientMode": "none",
+                "hideFrom": {
+                  "legend": false,
+                  "tooltip": false,
+                  "viz": false
+                },
+                "lineInterpolation": "linear",
+                "lineWidth": 1,
+                "pointSize": 5,
+                "scaleDistribution": {
+                  "type": "linear"
+                },
+                "showPoints": "auto",
+                "spanNulls": false,
+                "stacking": {
+                  "group": "A",
+                  "mode": "none"
+                },
+                "thresholdsStyle": {
+                  "mode": "off"
+                }
+              },
+              "decimals": 0,
+              "mappings": [],
+              "thresholds": {
+                "mode": "absolute",
+                "steps": [
+                  {
+                    "color": "green",
+                    "value": null
+                  },
+                  {
+                    "color": "red",
+                    "value": 80
+                  }
+                ]
+              },
+              "unit": "none"
+            },
+            "overrides": [
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "succeeded"
+                },
+                "properties": [
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "semi-dark-green",
+                      "mode": "fixed"
+                    }
+                  }
+                ]
+              },
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "failed"
+                },
+                "properties": [
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "semi-dark-red",
+                      "mode": "fixed"
+                    }
+                  }
+                ]
+              },
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "cancelled"
+                },
+                "properties": [
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "semi-dark-orange",
+                      "mode": "fixed"
+                    }
+                  }
+                ]
+              },
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "skipped"
+                },
+                "properties": [
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "semi-dark-blue",
+                      "mode": "fixed"
+                    }
+                  }
+                ]
+              }
+            ]
+          },
+          "gridPos": {
+            "h": 7,
+            "w": 6,
+            "x": 0,
+            "y": 68
+          },
+          "id": 77,
+          "options": {
+            "legend": {
+              "calcs": [],
+              "displayMode": "list",
+              "placement": "bottom",
+              "showLegend": true
+            },
+            "tooltip": {
+              "mode": "single",
+              "sort": "none"
+            }
+          },
+          "targets": [
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "expr": "sum(round(increase(action_report_ended_overall[1m:10s]))) by (state)",
+              "hide": false,
+              "legendFormat": "__auto",
+              "range": true,
+              "refId": "A"
+            }
+          ],
+          "title": "Finished Reports",
+          "transformations": [],
+          "type": "timeseries"
+        },
+        {
+          "datasource": "Prometheus",
+          "description": "",
+          "fieldConfig": {
+            "defaults": {
+              "color": {
+                "mode": "palette-classic"
+              },
+              "custom": {
+                "axisCenteredZero": false,
+                "axisColorMode": "text",
+                "axisLabel": "",
+                "axisPlacement": "auto",
+                "axisSoftMax": 0,
+                "axisSoftMin": 0,
+                "barAlignment": 0,
+                "drawStyle": "line",
+                "fillOpacity": 0,
+                "gradientMode": "none",
+                "hideFrom": {
+                  "legend": false,
+                  "tooltip": false,
+                  "viz": false
+                },
+                "lineInterpolation": "linear",
+                "lineWidth": 1,
+                "pointSize": 5,
+                "scaleDistribution": {
+                  "type": "linear"
+                },
+                "showPoints": "auto",
+                "spanNulls": false,
+                "stacking": {
+                  "group": "A",
+                  "mode": "none"
+                },
+                "thresholdsStyle": {
+                  "mode": "off"
+                }
+              },
+              "decimals": 0,
+              "mappings": [],
+              "thresholds": {
+                "mode": "absolute",
+                "steps": [
+                  {
+                    "color": "green",
+                    "value": null
+                  },
+                  {
+                    "color": "red",
+                    "value": 80
+                  }
+                ]
+              },
+              "unit": "none"
+            },
+            "overrides": [
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "succeeded"
+                },
+                "properties": [
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "semi-dark-green",
+                      "mode": "fixed"
+                    }
+                  }
+                ]
+              },
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "failed"
+                },
+                "properties": [
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "semi-dark-red",
+                      "mode": "fixed"
+                    }
+                  }
+                ]
+              },
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "cancelled"
+                },
+                "properties": [
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "semi-dark-orange",
+                      "mode": "fixed"
+                    }
+                  }
+                ]
+              },
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "skipped"
+                },
+                "properties": [
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "semi-dark-blue",
+                      "mode": "fixed"
+                    }
+                  }
+                ]
+              }
+            ]
+          },
+          "gridPos": {
+            "h": 7,
+            "w": 6,
+            "x": 6,
+            "y": 68
+          },
+          "id": 79,
+          "options": {
+            "legend": {
+              "calcs": [],
+              "displayMode": "list",
+              "placement": "bottom",
+              "showLegend": true
+            },
+            "tooltip": {
+              "mode": "single",
+              "sort": "none"
+            }
+          },
+          "targets": [
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "expr": "sum(round(increase(action_retire_ended_overall[1m:10s]))) by (state)",
+              "hide": false,
+              "legendFormat": "__auto",
+              "range": true,
+              "refId": "A"
+            }
+          ],
+          "title": "Finished Retires",
+          "transformations": [],
+          "type": "timeseries"
+        },
+        {
+          "datasource": "Prometheus",
+          "description": "",
+          "fieldConfig": {
+            "defaults": {
+              "color": {
+                "mode": "palette-classic"
+              },
+              "custom": {
+                "axisCenteredZero": false,
+                "axisColorMode": "text",
+                "axisLabel": "",
+                "axisPlacement": "auto",
+                "axisSoftMax": 0,
+                "axisSoftMin": 0,
+                "barAlignment": 0,
+                "drawStyle": "line",
+                "fillOpacity": 0,
+                "gradientMode": "none",
+                "hideFrom": {
+                  "legend": false,
+                  "tooltip": false,
+                  "viz": false
+                },
+                "lineInterpolation": "linear",
+                "lineWidth": 1,
+                "pointSize": 5,
+                "scaleDistribution": {
+                  "type": "linear"
+                },
+                "showPoints": "auto",
+                "spanNulls": false,
+                "stacking": {
+                  "group": "A",
+                  "mode": "none"
+                },
+                "thresholdsStyle": {
+                  "mode": "off"
+                }
+              },
+              "decimals": 0,
+              "mappings": [],
+              "thresholds": {
+                "mode": "absolute",
+                "steps": [
+                  {
+                    "color": "green",
+                    "value": null
+                  },
+                  {
+                    "color": "red",
+                    "value": 80
+                  }
+                ]
+              },
+              "unit": "none"
+            },
+            "overrides": [
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "succeeded"
+                },
+                "properties": [
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "semi-dark-green",
+                      "mode": "fixed"
+                    }
+                  }
+                ]
+              },
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "failed"
+                },
+                "properties": [
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "semi-dark-red",
+                      "mode": "fixed"
+                    }
+                  }
+                ]
+              },
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "cancelled"
+                },
+                "properties": [
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "semi-dark-orange",
+                      "mode": "fixed"
+                    }
+                  }
+                ]
+              },
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "skipped"
+                },
+                "properties": [
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "semi-dark-blue",
+                      "mode": "fixed"
+                    }
+                  }
+                ]
+              }
+            ]
+          },
+          "gridPos": {
+            "h": 7,
+            "w": 6,
+            "x": 12,
+            "y": 68
+          },
+          "id": 80,
+          "options": {
+            "legend": {
+              "calcs": [],
+              "displayMode": "list",
+              "placement": "bottom",
+              "showLegend": true
+            },
+            "tooltip": {
+              "mode": "single",
+              "sort": "none"
+            }
+          },
+          "targets": [
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "expr": "sum(round(increase(action_restore_ended_overall[1m:10s]))) by (state)",
+              "hide": false,
+              "legendFormat": "__auto",
+              "range": true,
+              "refId": "A"
+            }
+          ],
+          "title": "Finished Restores",
+          "transformations": [],
+          "type": "timeseries"
+        },
+        {
+          "datasource": "Prometheus",
+          "description": "",
+          "fieldConfig": {
+            "defaults": {
+              "color": {
+                "mode": "palette-classic"
+              },
+              "custom": {
+                "axisCenteredZero": false,
+                "axisColorMode": "text",
+                "axisLabel": "",
+                "axisPlacement": "auto",
+                "axisSoftMax": 0,
+                "axisSoftMin": 0,
+                "barAlignment": 0,
+                "drawStyle": "line",
+                "fillOpacity": 0,
+                "gradientMode": "none",
+                "hideFrom": {
+                  "legend": false,
+                  "tooltip": false,
+                  "viz": false
+                },
+                "lineInterpolation": "linear",
+                "lineWidth": 1,
+                "pointSize": 5,
+                "scaleDistribution": {
+                  "type": "linear"
+                },
+                "showPoints": "auto",
+                "spanNulls": false,
+                "stacking": {
+                  "group": "A",
+                  "mode": "none"
+                },
+                "thresholdsStyle": {
+                  "mode": "off"
+                }
+              },
+              "decimals": 0,
+              "mappings": [],
+              "thresholds": {
+                "mode": "absolute",
+                "steps": [
+                  {
+                    "color": "green",
+                    "value": null
+                  },
+                  {
+                    "color": "red",
+                    "value": 80
+                  }
+                ]
+              },
+              "unit": "none"
+            },
+            "overrides": [
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "succeeded"
+                },
+                "properties": [
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "semi-dark-green",
+                      "mode": "fixed"
+                    }
+                  }
+                ]
+              },
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "failed"
+                },
+                "properties": [
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "semi-dark-red",
+                      "mode": "fixed"
+                    }
+                  }
+                ]
+              },
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "cancelled"
+                },
+                "properties": [
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "semi-dark-orange",
+                      "mode": "fixed"
+                    }
+                  }
+                ]
+              },
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "skipped"
+                },
+                "properties": [
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "semi-dark-blue",
+                      "mode": "fixed"
+                    }
+                  }
+                ]
+              }
+            ]
+          },
+          "gridPos": {
+            "h": 7,
+            "w": 6,
+            "x": 18,
+            "y": 68
+          },
+          "id": 78,
+          "options": {
+            "legend": {
+              "calcs": [],
+              "displayMode": "list",
+              "placement": "bottom",
+              "showLegend": true
+            },
+            "tooltip": {
+              "mode": "single",
+              "sort": "none"
+            }
+          },
+          "targets": [
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "expr": "sum(round(increase(action_restore_cluster_ended_overall[1m:10s]))) by (state)",
+              "hide": false,
+              "legendFormat": "__auto",
+              "range": true,
+              "refId": "A"
+            }
+          ],
+          "title": "Finished Cluster Restores",
+          "transformations": [],
+          "type": "timeseries"
+        },
+        {
+          "datasource": "Prometheus",
+          "fieldConfig": {
+            "defaults": {
+              "color": {
+                "mode": "palette-classic"
+              },
+              "custom": {
+                "axisCenteredZero": false,
+                "axisColorMode": "text",
+                "axisLabel": "",
+                "axisPlacement": "auto",
+                "barAlignment": 0,
+                "drawStyle": "line",
+                "fillOpacity": 0,
+                "gradientMode": "none",
+                "hideFrom": {
+                  "legend": false,
+                  "tooltip": false,
+                  "viz": false
+                },
+                "lineInterpolation": "linear",
+                "lineWidth": 1,
+                "pointSize": 5,
+                "scaleDistribution": {
+                  "type": "linear"
+                },
+                "showPoints": "auto",
+                "spanNulls": false,
+                "stacking": {
+                  "group": "A",
+                  "mode": "none"
+                },
+                "thresholdsStyle": {
+                  "mode": "off"
+                }
+              },
+              "mappings": [],
+              "thresholds": {
+                "mode": "absolute",
+                "steps": [
+                  {
+                    "color": "green",
+                    "value": null
+                  },
+                  {
+                    "color": "red",
+                    "value": 80
+                  }
+                ]
+              },
+              "unit": "s"
+            },
+            "overrides": []
+          },
+          "gridPos": {
+            "h": 7,
+            "w": 24,
+            "x": 0,
+            "y": 75
+          },
+          "id": 63,
+          "options": {
+            "legend": {
+              "calcs": [],
+              "displayMode": "list",
+              "placement": "bottom",
+              "showLegend": true
+            },
+            "tooltip": {
+              "mode": "single",
+              "sort": "none"
+            }
+          },
+          "targets": [
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "expr": "sum(rate(limiter_request_seconds_sum{stage=\"hold\"}[5m])) by (operation) / sum(rate(limiter_request_seconds_count{stage=\"hold\"}[5m])) by (operation) ",
+              "legendFormat": "__auto",
+              "range": true,
+              "refId": "A"
+            }
+          ],
+          "title": "Rate Limiter - avg operation duration",
+          "type": "timeseries"
+        },
+        {
+          "datasource": "Prometheus",
+          "fieldConfig": {
+            "defaults": {
+              "color": {
+                "fixedColor": "red",
+                "mode": "palette-classic"
+              },
+              "custom": {
+                "axisCenteredZero": false,
+                "axisColorMode": "text",
+                "axisLabel": "",
+                "axisPlacement": "auto",
+                "barAlignment": 0,
+                "drawStyle": "line",
+                "fillOpacity": 0,
+                "gradientMode": "none",
+                "hideFrom": {
+                  "legend": false,
+                  "tooltip": false,
+                  "viz": false
+                },
+                "lineInterpolation": "linear",
+                "lineWidth": 1,
+                "pointSize": 5,
+                "scaleDistribution": {
+                  "type": "linear"
+                },
+                "showPoints": "auto",
+                "spanNulls": false,
+                "stacking": {
+                  "group": "A",
+                  "mode": "none"
+                },
+                "thresholdsStyle": {
+                  "mode": "off"
+                }
+              },
+              "mappings": [],
+              "thresholds": {
+                "mode": "absolute",
+                "steps": [
+                  {
+                    "color": "green",
+                    "value": null
+                  },
+                  {
+                    "color": "red",
+                    "value": 80
+                  }
+                ]
+              }
+            },
+            "overrides": [
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "Limit"
+                },
+                "properties": [
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "dark-red",
+                      "mode": "fixed"
+                    }
+                  }
+                ]
+              },
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "inflight"
+                },
+                "properties": [
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "green",
+                      "mode": "fixed"
+                    }
+                  }
+                ]
+              },
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "pending"
+                },
+                "properties": [
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "yellow",
+                      "mode": "fixed"
+                    }
+                  }
+                ]
+              }
+            ]
+          },
+          "gridPos": {
+            "h": 7,
+            "w": 4.8,
+            "x": 0,
+            "y": 82
+          },
+          "id": 51,
+          "maxPerRow": 6,
+          "options": {
+            "legend": {
+              "calcs": [],
+              "displayMode": "list",
+              "placement": "bottom",
+              "showLegend": true
+            },
+            "tooltip": {
+              "mode": "single",
+              "sort": "none"
+            }
+          },
+          "repeat": "operation",
+          "repeatDirection": "h",
+          "targets": [
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "expr": "limiter_inflight_count{operation=\"$operation\"}",
+              "legendFormat": "Inflight",
+              "range": true,
+              "refId": "A"
+            },
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "expr": "limiter_pending_count{operation=\"$operation\"}",
+              "hide": false,
+              "legendFormat": "Pending",
+              "range": true,
+              "refId": "B"
+            },
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "expr": "limiter_inflight_limit_value{operation=\"$operation\"}",
+              "hide": false,
+              "legendFormat": "Limit",
+              "range": true,
+              "refId": "C"
+            }
+          ],
+          "title": "Rate Limiter - $operation",
+          "type": "timeseries"
+        }
+      ],
+      "targets": [
+        {
+          "datasource": "Prometheus",
+          "refId": "A"
+        }
+      ],
+      "title": "Execution Control",
+      "type": "row"
+    },
+    {
+      "collapsed": true,
+      "gridPos": {
+        "h": 1,
+        "w": 24,
+        "x": 0,
+        "y": 54
+      },
+      "id": 84,
+      "panels": [
+        {
+          "datasource": "Prometheus",
+          "fieldConfig": {
+            "defaults": {
+              "color": {
+                "mode": "palette-classic"
+              },
+              "custom": {
+                "axisCenteredZero": false,
+                "axisColorMode": "text",
+                "axisLabel": "",
+                "axisPlacement": "auto",
+                "barAlignment": 0,
+                "drawStyle": "line",
+                "fillOpacity": 0,
+                "gradientMode": "none",
+                "hideFrom": {
+                  "legend": false,
+                  "tooltip": false,
+                  "viz": false
+                },
+                "lineInterpolation": "linear",
+                "lineWidth": 1,
+                "pointSize": 5,
+                "scaleDistribution": {
+                  "type": "linear"
+                },
+                "showPoints": "auto",
+                "spanNulls": true,
+                "stacking": {
+                  "group": "A",
+                  "mode": "none"
+                },
+                "thresholdsStyle": {
+                  "mode": "off"
+                }
+              },
+              "mappings": [],
+              "thresholds": {
+                "mode": "absolute",
+                "steps": [
+                  {
+                    "color": "green",
+                    "value": null
+                  },
+                  {
+                    "color": "red",
+                    "value": 80
+                  }
+                ]
+              },
+              "unit": "percentunit"
+            },
+            "overrides": []
+          },
+          "gridPos": {
+            "h": 8,
+            "w": 12,
+            "x": 0,
+            "y": 55
+          },
+          "id": 86,
+          "options": {
+            "legend": {
+              "calcs": [],
+              "displayMode": "list",
+              "placement": "bottom",
+              "showLegend": true
+            },
+            "tooltip": {
+              "mode": "single",
+              "sort": "none"
+            }
+          },
+          "targets": [
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "expr": "sum(increase(action_export_transferred_bytes[5m:30s]))/sum((increase(action_export_processed_bytes[5m:30s])>0))",
+              "legendFormat": "Transferred/Processed across all actions",
+              "range": true,
+              "refId": "A"
+            }
+          ],
+          "title": "Transferred/Processed Ratio",
+          "type": "timeseries"
+        },
+        {
+          "datasource": "Prometheus",
+          "fieldConfig": {
+            "defaults": {
+              "color": {
+                "mode": "palette-classic"
+              },
+              "custom": {
+                "axisCenteredZero": false,
+                "axisColorMode": "text",
+                "axisLabel": "",
+                "axisPlacement": "auto",
+                "barAlignment": 0,
+                "drawStyle": "line",
+                "fillOpacity": 0,
+                "gradientMode": "none",
+                "hideFrom": {
+                  "legend": false,
+                  "tooltip": false,
+                  "viz": false
+                },
+                "lineInterpolation": "linear",
+                "lineWidth": 1,
+                "pointSize": 5,
+                "scaleDistribution": {
+                  "type": "linear"
+                },
+                "showPoints": "auto",
+                "spanNulls": true,
+                "stacking": {
+                  "group": "A",
+                  "mode": "none"
+                },
+                "thresholdsStyle": {
+                  "mode": "off"
+                }
+              },
+              "mappings": [],
+              "thresholds": {
+                "mode": "absolute",
+                "steps": [
+                  {
+                    "color": "green",
+                    "value": null
+                  },
+                  {
+                    "color": "red",
+                    "value": 80
+                  }
+                ]
+              },
+              "unit": "percentunit"
+            },
+            "overrides": []
+          },
+          "gridPos": {
+            "h": 8,
+            "w": 12,
+            "x": 12,
+            "y": 55
+          },
+          "id": 88,
+          "options": {
+            "legend": {
+              "calcs": [],
+              "displayMode": "list",
+              "placement": "bottom",
+              "showLegend": true
+            },
+            "tooltip": {
+              "mode": "single",
+              "sort": "none"
+            }
+          },
+          "targets": [
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "expr": "(increase(action_export_transferred_bytes[5m:30s])/(increase(action_export_processed_bytes[5m:30s])>0))",
+              "legendFormat": "{{policy}}:{{app}}",
+              "range": true,
+              "refId": "A"
+            }
+          ],
+          "title": "Transferred/Processed Ratio per policy:app",
+          "type": "timeseries"
+        },
+        {
+          "datasource": "Prometheus",
+          "fieldConfig": {
+            "defaults": {
+              "color": {
+                "mode": "palette-classic"
+              },
+              "custom": {
+                "axisCenteredZero": false,
+                "axisColorMode": "text",
+                "axisLabel": "",
+                "axisPlacement": "auto",
+                "barAlignment": 0,
+                "drawStyle": "line",
+                "fillOpacity": 0,
+                "gradientMode": "none",
+                "hideFrom": {
+                  "legend": false,
+                  "tooltip": false,
+                  "viz": false
+                },
+                "lineInterpolation": "linear",
+                "lineWidth": 1,
+                "pointSize": 5,
+                "scaleDistribution": {
+                  "type": "linear"
+                },
+                "showPoints": "auto",
+                "spanNulls": true,
+                "stacking": {
+                  "group": "A",
+                  "mode": "none"
+                },
+                "thresholdsStyle": {
+                  "mode": "off"
+                }
+              },
+              "mappings": [ ],
+              "thresholds": {
+                "mode": "absolute",
+                "steps": [
+                  {
+                    "color": "green",
+                    "value": null
+                  },
+                  {
+                    "color": "red",
+                    "value": 80
+                  }
+                ]
+              },
+              "unit": "bytes"
+            },
+            "overrides": [ ]
+          },
+          "gridPos": {
+            "h": 8,
+            "w": 12,
+            "x": 0,
+            "y": 63
+          },
+          "id": 89,
+          "options": {
+            "legend": {
+              "calcs": [ ],
+              "displayMode": "list",
+              "placement": "bottom",
+              "showLegend": true
+            },
+            "tooltip": {
+              "mode": "single",
+              "sort": "none"
+            }
+          },
+          "targets": [
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "expr": "increase(action_export_transferred_bytes[5m:30s]) > 0",
+              "legendFormat": "{{policy}}:{{app}}",
+              "range": true,
+              "refId": "A"
+            }
+          ],
+          "title": "Transferred bytes per policy:app",
+          "type": "timeseries"
+        },
+        {
+          "datasource": "Prometheus",
+          "fieldConfig": {
+            "defaults": {
+              "color": {
+                "mode": "palette-classic"
+              },
+              "custom": {
+                "axisCenteredZero": false,
+                "axisColorMode": "text",
+                "axisLabel": "",
+                "axisPlacement": "auto",
+                "barAlignment": 0,
+                "drawStyle": "line",
+                "fillOpacity": 0,
+                "gradientMode": "none",
+                "hideFrom": {
+                  "legend": false,
+                  "tooltip": false,
+                  "viz": false
+                },
+                "lineInterpolation": "linear",
+                "lineWidth": 1,
+                "pointSize": 5,
+                "scaleDistribution": {
+                  "type": "linear"
+                },
+                "showPoints": "auto",
+                "spanNulls": true,
+                "stacking": {
+                  "group": "A",
+                  "mode": "none"
+                },
+                "thresholdsStyle": {
+                  "mode": "off"
+                }
+              },
+              "mappings": [ ],
+              "thresholds": {
+                "mode": "absolute",
+                "steps": [
+                  {
+                    "color": "green",
+                    "value": null
+                  },
+                  {
+                    "color": "red",
+                    "value": 80
+                  }
+                ]
+              },
+              "unit": "bytes"
+            },
+            "overrides": [ ]
+          },
+          "gridPos": {
+            "h": 8,
+            "w": 12,
+            "x": 12,
+            "y": 63
+          },
+          "id": 90,
+          "options": {
+            "legend": {
+              "calcs": [ ],
+              "displayMode": "list",
+              "placement": "bottom",
+              "showLegend": true
+            },
+            "tooltip": {
+              "mode": "single",
+              "sort": "none"
+            }
+          },
+          "targets": [
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "expr": "increase(action_export_processed_bytes[5m:30s]) > 0",
+              "legendFormat": "{{policy}}:{{app}}",
+              "range": true,
+              "refId": "A"
+            }
+          ],
+          "title": "Processed bytes per policy:app",
+          "type": "timeseries"
+        }
+      ],
+      "title": "Data reduction",
+      "type": "row"
+    },
+    {
+      "collapsed": true,
+      "gridPos": {
+        "h": 1,
+        "w": 24,
+        "x": 0,
+        "y": 55
+      },
+      "id": 1013,
+      "panels": [
+        {
+          "datasource": "Prometheus",
+          "description": "",
+          "fieldConfig": {
+            "defaults": {
+              "color": {
+                "mode": "palette-classic"
+              },
+              "custom": {
+                "axisBorderShow": false,
+                "axisCenteredZero": false,
+                "axisColorMode": "text",
+                "axisPlacement": "left",
+                "barAlignment": 0,
+                "drawStyle": "points",
+                "fillOpacity": 0,
+                "gradientMode": "none",
+                "hideFrom": {
+                  "legend": false,
+                  "tooltip": false,
+                  "viz": false
+                },
+                "insertNulls": false,
+                "lineInterpolation": "stepAfter",
+                "lineWidth": 1,
+                "pointSize": 4,
+                "scaleDistribution": {
+                  "log": 2,
+                  "type": "log"
+                },
+                "showPoints": "auto",
+                "spanNulls": false,
+                "stacking": {
+                  "group": "A",
+                  "mode": "none"
+                },
+                "thresholdsStyle": {
+                  "mode": "off"
+                }
+              },
+              "mappings": [],
+              "min": 0,
+              "thresholds": {
+                "mode": "absolute",
+                "steps": [
+                  {
+                    "color": "green",
+                    "value": null
+                  },
+                  {
+                    "color": "red",
+                    "value": 80
+                  }
+                ]
+              },
+              "unit": "s",
+              "unitScale": true
+            },
+            "overrides": [
+              {
+                "matcher": {
+                  "id": "byRegexp",
+                  "options": "/#.*/"
+                },
+                "properties": [
+                  {
+                    "id": "unit",
+                    "value": "none"
+                  },
+                  {
+                    "id": "custom.axisPlacement",
+                    "value": "right"
+                  },
+                  {
+                    "id": "decimals",
+                    "value": 0
+                  },
+                  {
+                    "id": "custom.scaleDistribution",
+                    "value": {
+                      "type": "linear"
+                    }
+                  },
+                  {
+                    "id": "custom.drawStyle",
+                    "value": "line"
+                  },
+                  {
+                    "id": "custom.lineInterpolation",
+                    "value": "stepAfter"
+                  },
+                  {
+                    "id": "custom.showPoints",
+                    "value": "never"
+                  },
+                  {
+                    "id": "custom.axisSoftMin",
+                    "value": 0
+                  },
+                  {
+                    "id": "custom.axisLabel",
+                    "value": "# volumes"
+                  }
+                ]
+              },
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "#Volumes"
+                },
+                "properties": [
+                  {
+                    "id": "displayName",
+                    "value": "# Volumes Under Transfer"
+                  },
+                  {
+                    "id": "custom.lineStyle",
+                    "value": {
+                      "fill": "solid"
+                    }
+                  },
+                  {
+                    "id": "custom.lineWidth",
+                    "value": 0.4
+                  },
+                  {
+                    "id": "custom.lineInterpolation",
+                    "value": "stepAfter"
+                  }
+                ]
+              },
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "#UploadSessionVolumes"
+                },
+                "properties": [
+                  {
+                    "id": "displayName",
+                    "value": "# VBR Session Volumes"
+                  },
+                  {
+                    "id": "custom.lineWidth",
+                    "value": 0
+                  },
+                  {
+                    "id": "custom.fillOpacity",
+                    "value": 25
+                  },
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "dark-blue",
+                      "mode": "shades"
+                    }
+                  }
+                ]
+              }
+            ]
+          },
+          "gridPos": {
+            "h": 8,
+            "w": 12,
+            "x": 0,
+            "y": 8
+          },
+          "id": 1006,
+          "options": {
+            "legend": {
+              "calcs": [],
+              "displayMode": "list",
+              "placement": "bottom",
+              "showLegend": true
+            },
+            "tooltip": {
+              "mode": "single",
+              "sort": "none"
+            }
+          },
+          "targets": [
+            {
+              "datasource": "Prometheus",
+              "disableTextWrap": false,
+              "editorMode": "code",
+              "expr": "sum (max_over_time(data_operation_volume_count{}[2m]))",
+              "fullMetaSearch": false,
+              "includeNullMetadata": true,
+              "instant": false,
+              "legendFormat": "#Volumes",
+              "range": true,
+              "refId": "VOLUME_COUNT",
+              "useBackend": false
+            },
+            {
+              "datasource": "Prometheus",
+              "disableTextWrap": false,
+              "editorMode": "code",
+              "expr": "sum by (repo_type) (max_over_time(data_upload_session_volume_count{repo_type=\"VBR\"}[2m]))",
+              "fullMetaSearch": false,
+              "hide": false,
+              "includeNullMetadata": true,
+              "instant": false,
+              "legendFormat": "#UploadSessionVolumes",
+              "range": true,
+              "refId": "VBR_SESSION_COUNT",
+              "useBackend": false
+            },
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "expr": "sum by (data_format,operation,storage_class,repo_name) (rate(data_operation_normalized_duration_sum{}[2m])) / sum by (data_format,operation,storage_class,repo_name) (rate(data_operation_normalized_duration_count{}[2m]))",
+              "hide": false,
+              "instant": false,
+              "legendFormat": "{{operation}} {{storage_class}}/{{repo_name}} ({{data_format}})",
+              "range": true,
+              "refId": "NORMALIZED_DURATION_BY_STORAGE_CLASS_LOC"
+            }
+          ],
+          "title": "Normalized operation duration by storage class, location and data format (time/MiB)",
+          "type": "timeseries"
+        },
+        {
+          "datasource": "Prometheus",
+          "description": "",
+          "fieldConfig": {
+            "defaults": {
+              "color": {
+                "mode": "palette-classic"
+              },
+              "custom": {
+                "axisBorderShow": false,
+                "axisCenteredZero": false,
+                "axisColorMode": "text",
+                "axisLabel": "",
+                "axisPlacement": "left",
+                "barAlignment": 0,
+                "drawStyle": "points",
+                "fillOpacity": 0,
+                "gradientMode": "none",
+                "hideFrom": {
+                  "legend": false,
+                  "tooltip": false,
+                  "viz": false
+                },
+                "insertNulls": false,
+                "lineInterpolation": "stepAfter",
+                "lineWidth": 1,
+                "pointSize": 4,
+                "scaleDistribution": {
+                  "log": 2,
+                  "type": "log"
+                },
+                "showPoints": "auto",
+                "spanNulls": false,
+                "stacking": {
+                  "group": "A",
+                  "mode": "none"
+                },
+                "thresholdsStyle": {
+                  "mode": "off"
+                }
+              },
+              "mappings": [],
+              "min": 0,
+              "thresholds": {
+                "mode": "absolute",
+                "steps": [
+                  {
+                    "color": "green",
+                    "value": null
+                  },
+                  {
+                    "color": "red",
+                    "value": 80
+                  }
+                ]
+              },
+              "unit": "s",
+              "unitScale": true
+            },
+            "overrides": [
+              {
+                "matcher": {
+                  "id": "byRegexp",
+                  "options": "/#.*/"
+                },
+                "properties": [
+                  {
+                    "id": "unit",
+                    "value": "none"
+                  },
+                  {
+                    "id": "custom.axisPlacement",
+                    "value": "right"
+                  },
+                  {
+                    "id": "decimals",
+                    "value": 0
+                  },
+                  {
+                    "id": "custom.scaleDistribution",
+                    "value": {
+                      "type": "linear"
+                    }
+                  },
+                  {
+                    "id": "custom.drawStyle",
+                    "value": "line"
+                  },
+                  {
+                    "id": "custom.lineInterpolation",
+                    "value": "stepAfter"
+                  },
+                  {
+                    "id": "custom.showPoints",
+                    "value": "never"
+                  },
+                  {
+                    "id": "custom.axisSoftMin",
+                    "value": 0
+                  },
+                  {
+                    "id": "custom.axisLabel",
+                    "value": "# volumes"
+                  }
+                ]
+              },
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "#Volumes"
+                },
+                "properties": [
+                  {
+                    "id": "displayName",
+                    "value": "# Volumes Under Transfer"
+                  },
+                  {
+                    "id": "custom.lineStyle",
+                    "value": {
+                      "fill": "solid"
+                    }
+                  },
+                  {
+                    "id": "custom.lineWidth",
+                    "value": 0.4
+                  },
+                  {
+                    "id": "custom.lineInterpolation",
+                    "value": "stepAfter"
+                  }
+                ]
+              },
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "#UploadSessionVolumes"
+                },
+                "properties": [
+                  {
+                    "id": "displayName",
+                    "value": "# VBR Session Volumes"
+                  },
+                  {
+                    "id": "custom.lineWidth",
+                    "value": 0
+                  },
+                  {
+                    "id": "custom.fillOpacity",
+                    "value": 25
+                  },
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "dark-blue",
+                      "mode": "shades"
+                    }
+                  }
+                ]
+              }
+            ]
+          },
+          "gridPos": {
+            "h": 8,
+            "w": 12,
+            "x": 12,
+            "y": 8
+          },
+          "id": 1012,
+          "options": {
+            "legend": {
+              "calcs": [],
+              "displayMode": "list",
+              "placement": "bottom",
+              "showLegend": true
+            },
+            "tooltip": {
+              "mode": "single",
+              "sort": "none"
+            }
+          },
+          "targets": [
+            {
+              "datasource": "Prometheus",
+              "disableTextWrap": false,
+              "editorMode": "code",
+              "expr": "sum (max_over_time(data_operation_volume_count{}[2m]))",
+              "fullMetaSearch": false,
+              "includeNullMetadata": true,
+              "instant": false,
+              "legendFormat": "#Volumes",
+              "range": true,
+              "refId": "VOLUME_COUNT",
+              "useBackend": false
+            },
+            {
+              "datasource": "Prometheus",
+              "disableTextWrap": false,
+              "editorMode": "code",
+              "expr": "sum by (repo_type) (max_over_time(data_upload_session_volume_count{repo_type=\"VBR\"}[2m]))",
+              "fullMetaSearch": false,
+              "hide": false,
+              "includeNullMetadata": true,
+              "instant": false,
+              "legendFormat": "#UploadSessionVolumes",
+              "range": true,
+              "refId": "VBR_SESSION_COUNT",
+              "useBackend": false
+            },
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "expr": "sum by (data_format,operation,namespace,pvc_name) (rate(data_operation_duration_sum{}[2m])) / sum by (data_format,operation,namespace,pvc_name) (rate(data_operation_duration_count{}[2m]))",
+              "hide": false,
+              "instant": false,
+              "legendFormat": "{{operation}} {{namespace}}/{{pvc_name}} ({{data_format}})",
+              "range": true,
+              "refId": "DURATION_BY_PVC"
+            }
+          ],
+          "title": "Operation duration by pvc and data format",
+          "type": "timeseries"
+        },
+        {
+          "datasource": "Prometheus",
+          "description": "",
+          "fieldConfig": {
+            "defaults": {
+              "color": {
+                "mode": "palette-classic"
+              },
+              "custom": {
+                "axisBorderShow": false,
+                "axisCenteredZero": false,
+                "axisColorMode": "text",
+                "axisLabel": "",
+                "axisPlacement": "left",
+                "barAlignment": 0,
+                "drawStyle": "points",
+                "fillOpacity": 0,
+                "gradientMode": "none",
+                "hideFrom": {
+                  "legend": false,
+                  "tooltip": false,
+                  "viz": false
+                },
+                "insertNulls": false,
+                "lineInterpolation": "stepAfter",
+                "lineWidth": 1,
+                "pointSize": 4,
+                "scaleDistribution": {
+                  "log": 2,
+                  "type": "log"
+                },
+                "showPoints": "auto",
+                "spanNulls": false,
+                "stacking": {
+                  "group": "A",
+                  "mode": "none"
+                },
+                "thresholdsStyle": {
+                  "mode": "off"
+                }
+              },
+              "mappings": [],
+              "thresholds": {
+                "mode": "absolute",
+                "steps": [
+                  {
+                    "color": "green",
+                    "value": null
+                  },
+                  {
+                    "color": "red",
+                    "value": 80
+                  }
+                ]
+              },
+              "unit": "binBps",
+              "unitScale": true
+            },
+            "overrides": [
+              {
+                "matcher": {
+                  "id": "byRegexp",
+                  "options": "/#.*/"
+                },
+                "properties": [
+                  {
+                    "id": "unit",
+                    "value": "none"
+                  },
+                  {
+                    "id": "custom.axisPlacement",
+                    "value": "right"
+                  },
+                  {
+                    "id": "decimals",
+                    "value": 0
+                  },
+                  {
+                    "id": "custom.scaleDistribution",
+                    "value": {
+                      "type": "linear"
+                    }
+                  },
+                  {
+                    "id": "custom.drawStyle",
+                    "value": "line"
+                  },
+                  {
+                    "id": "custom.lineInterpolation",
+                    "value": "stepAfter"
+                  },
+                  {
+                    "id": "custom.showPoints",
+                    "value": "never"
+                  },
+                  {
+                    "id": "custom.axisSoftMin",
+                    "value": 0
+                  },
+                  {
+                    "id": "custom.axisLabel",
+                    "value": "# volumes"
+                  }
+                ]
+              },
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "#Volumes"
+                },
+                "properties": [
+                  {
+                    "id": "displayName",
+                    "value": "# Volumes Under Transfer"
+                  },
+                  {
+                    "id": "custom.lineStyle",
+                    "value": {
+                      "fill": "solid"
+                    }
+                  },
+                  {
+                    "id": "custom.lineWidth",
+                    "value": 0.4
+                  },
+                  {
+                    "id": "custom.lineInterpolation",
+                    "value": "stepAfter"
+                  }
+                ]
+              },
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "#UploadSessionVolumes"
+                },
+                "properties": [
+                  {
+                    "id": "displayName",
+                    "value": "# VBR Session Volumes"
+                  },
+                  {
+                    "id": "custom.lineWidth",
+                    "value": 0
+                  },
+                  {
+                    "id": "custom.fillOpacity",
+                    "value": 25
+                  },
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "dark-blue",
+                      "mode": "shades"
+                    }
+                  }
+                ]
+              }
+            ]
+          },
+          "gridPos": {
+            "h": 8,
+            "w": 12,
+            "x": 0,
+            "y": 16
+          },
+          "id": 1011,
+          "options": {
+            "legend": {
+              "calcs": [],
+              "displayMode": "list",
+              "placement": "bottom",
+              "showLegend": true
+            },
+            "tooltip": {
+              "mode": "single",
+              "sort": "none"
+            }
+          },
+          "targets": [
+            {
+              "datasource": "Prometheus",
+              "disableTextWrap": false,
+              "editorMode": "code",
+              "expr": "sum (max_over_time(data_operation_volume_count{}[2m]))",
+              "fullMetaSearch": false,
+              "hide": false,
+              "includeNullMetadata": true,
+              "instant": false,
+              "legendFormat": "#Volumes",
+              "range": true,
+              "refId": "VOLUME_COUNT",
+              "useBackend": false
+            },
+            {
+              "datasource": "Prometheus",
+              "disableTextWrap": false,
+              "editorMode": "code",
+              "expr": "sum by (repo_type) (max_over_time(data_upload_session_volume_count{repo_type=\"VBR\"}[2m]))",
+              "fullMetaSearch": false,
+              "hide": false,
+              "includeNullMetadata": true,
+              "instant": false,
+              "legendFormat": "#UploadSessionVolumes",
+              "range": true,
+              "refId": "VBR_SESSION_COUNT",
+              "useBackend": false
+            },
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "expr": "avg by (data_format, operation, storage_class, repo_name) (rate(data_operation_bytes{}[$__rate_interval]))",
+              "hide": false,
+              "instant": false,
+              "legendFormat": "{{operation}} {{storage_class}}/{{repo_name}} ({{data_format}})",
+              "range": true,
+              "refId": "RATE_BY_STORAGE_CLASS"
+            }
+          ],
+          "title": "Operation transfer rate by storage class, location and data format",
+          "type": "timeseries"
+        },
+        {
+          "datasource": "Prometheus",
+          "description": "",
+          "fieldConfig": {
+            "defaults": {
+              "color": {
+                "mode": "palette-classic"
+              },
+              "custom": {
+                "axisBorderShow": false,
+                "axisCenteredZero": false,
+                "axisColorMode": "text",
+                "axisLabel": "",
+                "axisPlacement": "left",
+                "barAlignment": 0,
+                "drawStyle": "points",
+                "fillOpacity": 0,
+                "gradientMode": "none",
+                "hideFrom": {
+                  "legend": false,
+                  "tooltip": false,
+                  "viz": false
+                },
+                "insertNulls": false,
+                "lineInterpolation": "stepAfter",
+                "lineWidth": 1,
+                "pointSize": 4,
+                "scaleDistribution": {
+                  "log": 2,
+                  "type": "log"
+                },
+                "showPoints": "auto",
+                "spanNulls": false,
+                "stacking": {
+                  "group": "A",
+                  "mode": "none"
+                },
+                "thresholdsStyle": {
+                  "mode": "off"
+                }
+              },
+              "mappings": [],
+              "thresholds": {
+                "mode": "absolute",
+                "steps": [
+                  {
+                    "color": "green",
+                    "value": null
+                  },
+                  {
+                    "color": "red",
+                    "value": 80
+                  }
+                ]
+              },
+              "unit": "binBps",
+              "unitScale": true
+            },
+            "overrides": [
+              {
+                "matcher": {
+                  "id": "byRegexp",
+                  "options": "/#.*/"
+                },
+                "properties": [
+                  {
+                    "id": "unit",
+                    "value": "none"
+                  },
+                  {
+                    "id": "custom.axisPlacement",
+                    "value": "right"
+                  },
+                  {
+                    "id": "decimals",
+                    "value": 0
+                  },
+                  {
+                    "id": "custom.scaleDistribution",
+                    "value": {
+                      "type": "linear"
+                    }
+                  },
+                  {
+                    "id": "custom.drawStyle",
+                    "value": "line"
+                  },
+                  {
+                    "id": "custom.lineInterpolation",
+                    "value": "stepAfter"
+                  },
+                  {
+                    "id": "custom.showPoints",
+                    "value": "never"
+                  },
+                  {
+                    "id": "custom.axisSoftMin",
+                    "value": 0
+                  },
+                  {
+                    "id": "custom.axisLabel",
+                    "value": "# volumes"
+                  }
+                ]
+              },
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "#Volumes"
+                },
+                "properties": [
+                  {
+                    "id": "displayName",
+                    "value": "# Volumes Under Transfer"
+                  },
+                  {
+                    "id": "custom.lineStyle",
+                    "value": {
+                      "fill": "solid"
+                    }
+                  },
+                  {
+                    "id": "custom.lineWidth",
+                    "value": 0.4
+                  },
+                  {
+                    "id": "custom.lineInterpolation",
+                    "value": "stepAfter"
+                  }
+                ]
+              },
+              {
+                "matcher": {
+                  "id": "byName",
+                  "options": "#UploadSessionVolumes"
+                },
+                "properties": [
+                  {
+                    "id": "displayName",
+                    "value": "# VBR Session Volumes"
+                  },
+                  {
+                    "id": "custom.lineWidth",
+                    "value": 0
+                  },
+                  {
+                    "id": "custom.fillOpacity",
+                    "value": 25
+                  },
+                  {
+                    "id": "color",
+                    "value": {
+                      "fixedColor": "dark-blue",
+                      "mode": "shades"
+                    }
+                  }
+                ]
+              }
+            ]
+          },
+          "gridPos": {
+            "h": 8,
+            "w": 12,
+            "x": 12,
+            "y": 16
+          },
+          "id": 1004,
+          "options": {
+            "legend": {
+              "calcs": [],
+              "displayMode": "list",
+              "placement": "bottom",
+              "showLegend": true
+            },
+            "tooltip": {
+              "mode": "single",
+              "sort": "none"
+            }
+          },
+          "targets": [
+            {
+              "datasource": "Prometheus",
+              "disableTextWrap": false,
+              "editorMode": "code",
+              "expr": "sum (max_over_time(data_operation_volume_count{}[2m]))",
+              "fullMetaSearch": false,
+              "hide": false,
+              "includeNullMetadata": true,
+              "instant": false,
+              "legendFormat": "#Volumes",
+              "range": true,
+              "refId": "VOLUME_COUNT",
+              "useBackend": false
+            },
+            {
+              "datasource": "Prometheus",
+              "disableTextWrap": false,
+              "editorMode": "code",
+              "expr": "sum by (repo_type) (max_over_time(data_upload_session_volume_count{repo_type=\"VBR\"}[2m]))",
+              "fullMetaSearch": false,
+              "hide": false,
+              "includeNullMetadata": true,
+              "instant": false,
+              "legendFormat": "#UploadSessionVolumes",
+              "range": true,
+              "refId": "VBR_SESSION_COUNT",
+              "useBackend": false
+            },
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "expr": "avg by (data_format, operation, namespace, pvc_name) (rate(data_operation_bytes{}[$__rate_interval]))",
+              "hide": false,
+              "instant": false,
+              "legendFormat": "{{operation}} {{namespace}}/{{pvc_name}} ({{data_format}})",
+              "range": true,
+              "refId": "RATE_BY_PVC"
+            }
+          ],
+          "title": "Operation transfer rate by pvc and data format",
+          "type": "timeseries"
+        }
+      ],
+      "title": "Data transfer operations",
+      "type": "row"
+    },
+    {
+      "collapsed": true,
+      "gridPos": {
+        "h": 1,
+        "w": 24,
+        "x": 0,
+        "y": 56
+      },
+      "id": 1016,
+      "panels": [
+        {
+          "datasource": "Prometheus",
+          "description": "",
+          "fieldConfig": {
+            "defaults": {
+              "color": {
+                "mode": "thresholds"
+              },
+              "mappings": [],
+              "thresholds": {
+                "mode": "absolute",
+                "steps": [
+                  {
+                    "color": "text",
+                    "value": null
+                  }
+                ]
+              },
+              "unit": "bytes"
+            },
+            "overrides": []
+          },
+          "gridPos": {
+            "h": 5,
+            "w": 4,
+            "x": 0,
+            "y": 57
+          },
+          "id": 1031,
+          "options": {
+            "colorMode": "value",
+            "graphMode": "area",
+            "justifyMode": "auto",
+            "orientation": "auto",
+            "percentChangeColorMode": "standard",
+            "reduceOptions": {
+              "calcs": [
+                "lastNotNull"
+              ],
+              "fields": "",
+              "values": false
+            },
+            "showPercentChange": false,
+            "textMode": "auto",
+            "wideLayout": true
+          },
+          "pluginVersion": "11.1.5",
+          "targets": [
+            {
+              "datasource": "Prometheus",
+              "disableTextWrap": false,
+              "editorMode": "code",
+              "exemplar": false,
+              "expr": "repository_data_pruned_bytes > 0",
+              "format": "time_series",
+              "fullMetaSearch": false,
+              "includeNullMetadata": true,
+              "instant": false,
+              "interval": "",
+              "legendFormat": "__auto",
+              "range": true,
+              "refId": "A",
+              "useBackend": false
+            }
+          ],
+          "title": "Recently recovered storage",
+          "transformations": [
+            {
+              "id": "reduce",
+              "options": {
+                "includeTimeField": false,
+                "mode": "reduceFields",
+                "reducers": [
+                  "lastNotNull"
+                ]
+              }
+            },
+            {
+              "id": "merge",
+              "options": {}
+            },
+            {
+              "id": "reduce",
+              "options": {
+                "includeTimeField": false,
+                "mode": "reduceFields",
+                "reducers": [
+                  "sum"
+                ]
+              }
+            }
+          ],
+          "type": "stat"
+        },
+        {
+          "datasource": "Prometheus",
+          "description": "",
+          "fieldConfig": {
+            "defaults": {
+              "color": {
+                "mode": "palette-classic"
+              },
+              "mappings": [],
+              "thresholds": {
+                "mode": "absolute",
+                "steps": [
+                  {
+                    "color": "green",
+                    "value": null
+                  }
+                ]
+              },
+              "unit": "bytes"
+            },
+            "overrides": []
+          },
+          "gridPos": {
+            "h": 5,
+            "w": 8,
+            "x": 4,
+            "y": 57
+          },
+          "id": 1025,
+          "options": {
+            "displayMode": "basic",
+            "maxVizHeight": 300,
+            "minVizHeight": 16,
+            "minVizWidth": 8,
+            "namePlacement": "auto",
+            "orientation": "auto",
+            "reduceOptions": {
+              "calcs": [
+                "lastNotNull"
+              ],
+              "fields": "",
+              "values": false
+            },
+            "showUnfilled": true,
+            "sizing": "auto",
+            "valueMode": "text"
+          },
+          "pluginVersion": "11.1.5",
+          "targets": [
+            {
+              "datasource": "Prometheus",
+              "disableTextWrap": false,
+              "editorMode": "code",
+              "exemplar": false,
+              "expr": "sum by(namespace) (repository_data_pruned_bytes{namespace!=\"kasten-io\"} > 0)",
+              "format": "time_series",
+              "fullMetaSearch": false,
+              "includeNullMetadata": true,
+              "instant": false,
+              "interval": "",
+              "legendFormat": "__auto",
+              "range": true,
+              "refId": "A",
+              "useBackend": false
+            },
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "expr": "sum(repository_data_pruned_bytes{namespace=\"kasten-io\"} > 0)",
+              "hide": false,
+              "instant": false,
+              "legendFormat": "metadata",
+              "range": true,
+              "refId": "B"
+            }
+          ],
+          "title": "Recently recovered storage per app",
+          "type": "bargauge"
+        },
+        {
+          "datasource": "Prometheus",
+          "fieldConfig": {
+            "defaults": {
+              "color": {
+                "mode": "thresholds"
+              },
+              "mappings": [],
+              "thresholds": {
+                "mode": "absolute",
+                "steps": [
+                  {
+                    "color": "text",
+                    "value": null
+                  }
+                ]
+              },
+              "unit": "bytes"
+            },
+            "overrides": []
+          },
+          "gridPos": {
+            "h": 5,
+            "w": 4,
+            "x": 12,
+            "y": 57
+          },
+          "id": 1015,
+          "options": {
+            "colorMode": "value",
+            "graphMode": "area",
+            "justifyMode": "auto",
+            "orientation": "auto",
+            "percentChangeColorMode": "standard",
+            "reduceOptions": {
+              "calcs": [
+                "lastNotNull"
+              ],
+              "fields": "",
+              "values": false
+            },
+            "showPercentChange": false,
+            "textMode": "auto",
+            "wideLayout": true
+          },
+          "pluginVersion": "11.1.5",
+          "targets": [
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "expr": "sum(repository_data_pruned_bytes_total)",
+              "instant": false,
+              "legendFormat": "__auto",
+              "range": true,
+              "refId": "A"
+            }
+          ],
+          "title": "Total recovered storage",
+          "transformations": [
+            {
+              "id": "reduce",
+              "options": {
+                "includeTimeField": false,
+                "mode": "reduceFields",
+                "reducers": [
+                  "lastNotNull"
+                ]
+              }
+            }
+          ],
+          "type": "stat"
+        },
+        {
+          "datasource": "Prometheus",
+          "description": "",
+          "fieldConfig": {
+            "defaults": {
+              "color": {
+                "mode": "palette-classic"
+              },
+              "mappings": [],
+              "thresholds": {
+                "mode": "absolute",
+                "steps": [
+                  {
+                    "color": "green",
+                    "value": null
+                  },
+                  {
+                    "color": "red",
+                    "value": 80
+                  }
+                ]
+              },
+              "unit": "bytes"
+            },
+            "overrides": []
+          },
+          "gridPos": {
+            "h": 5,
+            "w": 8,
+            "x": 16,
+            "y": 57
+          },
+          "id": 1018,
+          "options": {
+            "displayMode": "basic",
+            "maxVizHeight": 300,
+            "minVizHeight": 16,
+            "minVizWidth": 8,
+            "namePlacement": "auto",
+            "orientation": "auto",
+            "reduceOptions": {
+              "calcs": [
+                "lastNotNull"
+              ],
+              "fields": "",
+              "values": false
+            },
+            "showUnfilled": true,
+            "sizing": "auto",
+            "valueMode": "text"
+          },
+          "pluginVersion": "11.1.5",
+          "targets": [
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "exemplar": false,
+              "expr": "repository_data_pruned_bytes_total{namespace!=\"kasten-io\"} > 0",
+              "format": "time_series",
+              "instant": false,
+              "interval": "",
+              "legendFormat": "{{namespace}}",
+              "range": true,
+              "refId": "A"
+            },
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "expr": "sum(repository_data_pruned_bytes_total{namespace=\"kasten-io\"} > 0)",
+              "hide": false,
+              "instant": false,
+              "legendFormat": "metadata",
+              "range": true,
+              "refId": "B"
+            }
+          ],
+          "title": "Total recovered storage per app",
+          "type": "bargauge"
+        },
+        {
+          "datasource": "Prometheus",
+          "description": "",
+          "fieldConfig": {
+            "defaults": {
+              "color": {
+                "mode": "thresholds"
+              },
+              "mappings": [],
+              "thresholds": {
+                "mode": "absolute",
+                "steps": [
+                  {
+                    "color": "text",
+                    "value": null
+                  }
+                ]
+              },
+              "unit": "bytes"
+            },
+            "overrides": []
+          },
+          "gridPos": {
+            "h": 5,
+            "w": 4,
+            "x": 0,
+            "y": 62
+          },
+          "id": 1017,
+          "options": {
+            "colorMode": "value",
+            "graphMode": "area",
+            "justifyMode": "auto",
+            "orientation": "auto",
+            "percentChangeColorMode": "standard",
+            "reduceOptions": {
+              "calcs": [
+                "lastNotNull"
+              ],
+              "fields": "",
+              "values": false
+            },
+            "showPercentChange": false,
+            "textMode": "auto",
+            "wideLayout": true
+          },
+          "pluginVersion": "11.1.5",
+          "targets": [
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "expr": "sum(repository_data_scheduled_for_pruning_bytes)",
+              "instant": false,
+              "legendFormat": "__auto",
+              "range": true,
+              "refId": "A"
+            }
+          ],
+          "title": "Expired data marked for deletion",
+          "transformations": [
+            {
+              "id": "reduce",
+              "options": {
+                "includeTimeField": false,
+                "mode": "reduceFields",
+                "reducers": [
+                  "lastNotNull"
+                ]
+              }
+            }
+          ],
+          "type": "stat"
+        },
+        {
+          "datasource": "Prometheus",
+          "fieldConfig": {
+            "defaults": {
+              "color": {
+                "mode": "palette-classic"
+              },
+              "mappings": [],
+              "thresholds": {
+                "mode": "absolute",
+                "steps": [
+                  {
+                    "color": "green",
+                    "value": null
+                  }
+                ]
+              },
+              "unit": "bytes"
+            },
+            "overrides": []
+          },
+          "gridPos": {
+            "h": 5,
+            "w": 8,
+            "x": 4,
+            "y": 62
+          },
+          "id": 1019,
+          "options": {
+            "displayMode": "basic",
+            "maxVizHeight": 300,
+            "minVizHeight": 16,
+            "minVizWidth": 8,
+            "namePlacement": "auto",
+            "orientation": "auto",
+            "reduceOptions": {
+              "calcs": [
+                "lastNotNull"
+              ],
+              "fields": "",
+              "values": false
+            },
+            "showUnfilled": true,
+            "sizing": "auto",
+            "valueMode": "text"
+          },
+          "pluginVersion": "11.1.5",
+          "targets": [
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "expr": "repository_data_scheduled_for_pruning_bytes{namespace!=\"kasten-io\"} > 0",
+              "instant": false,
+              "legendFormat": "{{namespace}}",
+              "range": true,
+              "refId": "A"
+            },
+            {
+              "datasource": "Prometheus",
+              "editorMode": "code",
+              "expr": "sum(repository_data_scheduled_for_pruning_bytes{namespace=\"kasten-io\"} > 0)",
+              "hide": false,
+              "instant": false,
+              "legendFormat": "metadata",
+              "range": true,
+              "refId": "B"
+            }
+          ],
+          "title": "Expired data marked for deletion per app",
+          "type": "bargauge"
+        }
+      ],
+      "title": "Backup Export Maintenance",
+      "type": "row"
+    }
+  ],
+  "schemaVersion": 39,
+  "style": "dark",
+  "tags": [],
+  "templating": {
+    "list": [
+      {
+        "hide": 2,
+        "label": "Cluster",
+        "name": "cluster",
+        "query": "",
+        "skipUrlSync": false,
+        "type": "constant"
+      },
+      {
+        "current": {
+          "selected": false,
+          "text": "All",
+          "value": "$__all"
+        },
+        "datasource": "Prometheus",
+        "definition": "limiter_pending_count",
+        "description": "",
+        "hide": 2,
+        "includeAll": true,
+        "label": "operation",
+        "multi": false,
+        "name": "operation",
+        "options": [],
+        "query": {
+          "query": "limiter_pending_count",
+          "refId": "StandardVariableQuery"
+        },
+        "refresh": 1,
+        "regex": "/operation=\\\"([\\w]+)\\\"/",
+        "skipUrlSync": false,
+        "sort": 0,
+        "type": "query"
+      }
+    ]
+  },
+  "time": {
+    "from": "now-24h",
+    "to": "now"
+  },
+  "timepicker": {},
+  "timezone": "",
+  "title": "K10 Dashboard",
+  "uid": "8Ebb3xS7k",
+  "version": 3
+}
\ No newline at end of file
diff --git a/charts/kasten/k10/7.5.401/license b/charts/kasten/k10/7.5.401/license
new file mode 100644
index 0000000000..fb23dbb826
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/license
@@ -0,0 +1 @@
+Y3VzdG9tZXJOYW1lOiBzdGFydGVyLWxpY2Vuc2UKZGF0ZUVuZDogJzIxMDAtMDEtMDFUMDA6MDA6MDAuMDAwWicKZGF0ZVN0YXJ0OiAnMjAyMC0wMS0wMVQwMDowMDowMC4wMDBaJwpmZWF0dXJlczogbnVsbAppZDogc3RhcnRlci00ZjE4NDJjMC0wNzQ1LTQxYTUtYWFhNy1hMDFkNzQ4YjFjMzAKcHJvZHVjdDogSzEwCnJlc3RyaWN0aW9uczoKICBub2RlczogJzEwJwpzZXJ2aWNlQWNjb3VudEtleTogbnVsbAp2ZXJzaW9uOiB2MS4wLjAKc2lnbmF0dXJlOiBqT1N5NDNQZG5ZMFVCZitValhOdU1oUEFSb1J2ZkpzWElQWnhBWFNCaGpKbUwxNlNodi8vVzgyV2NMeGZJM25NZTA0TThtRU03eThPcnArQks1ekxpeFd3clpncmZSbTBEaWlELyttRjR5U3l1Rko0QW1neHV6NDhQTmdnU1VyWUM3S1FVcFYxSEJZV1ZaNm9udEJDeE1rVWtkaDVqdzZJdWMzN3lDaktIYy92bWZaenBzTVhybmxUdGhha2RjVVk0azNyVHJDa3VDcnFUMkpjM1o1amFGalZSZW1Zd1NBVXpkRldNazdQdkp3eHVFdE5rNitPV0pCVERQbnNYdldKdjdNc3NneDBJTmdtNUlJWDRVeEVhQWI4QXpTNkMyQ21XQzlhWURFTDg1aEFpeWhONXUwU0tQczA3ZXB0R1VHYmc3cWtPUVN0d0NhcDFKUURvbDVDT0E9PQo=
diff --git a/charts/kasten/k10/7.5.401/questions.yaml b/charts/kasten/k10/7.5.401/questions.yaml
new file mode 100644
index 0000000000..713fcb1162
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/questions.yaml
@@ -0,0 +1,295 @@
+questions:
+# ========================
+# SECRETS And Configuration
+# ========================
+
+### AWS Configuration
+
+- variable: secrets.awsAccessKeyId
+  description: "AWS access key ID (required for AWS deployment)"
+  type: password
+  label: AWS Access Key ID
+  required: false
+  group: "AWS Configuration"
+
+- variable: secrets.awsSecretAccessKey
+  description: "AWS access key secret (required for AWS deployment)"
+  type: password
+  label: AWS Secret Access Key
+  required: false
+  group: "AWS Configuration"
+
+- variable: secrets.awsIamRole
+  description: "ARN of the AWS IAM role assumed by K10 to perform any AWS operation."
+  type: string
+  label: ARN of the AWS IAM role
+  required: false
+  group: "AWS Configuration"
+
+- variable: awsConfig.assumeRoleDuration
+  description: "Duration of a session token generated by AWS for an IAM role"
+  type: string
+  label: Role Duration
+  required: false
+  default: ""
+  group: "AWS Configuration"
+
+- variable: awsConfig.efsBackupVaultName
+  description: "Specifies the AWS EFS backup vault name"
+  type: string
+  label: EFS Backup Vault Name
+  required: false
+  default: "k10vault"
+  group: "AWS Configuration"
+
+### Google Cloud Configuration
+
+- variable: secrets.googleApiKey
+  description: "Required If cluster is deployed on Google Cloud"
+  type: multiline
+  label: Non-default base64 encoded GCP Service Account key file
+  required: false
+  group: "GoogleApi Configuration"
+
+### Azure Configuration
+
+- variable: secrets.azureTenantId
+  description: "Azure tenant ID (required for Azure deployment)"
+  type: string
+  label: Tenant ID
+  required: false
+  group: "Azure Configuration"
+
+- variable: secrets.azureClientId
+  description: "Azure Service App ID"
+  type: password
+  label: Service App ID
+  required: false
+  group: "Azure Configuration"
+
+- variable: secrets.azureClientSecret
+  description: "Azure Service App secret"
+  type: password
+  label: Service App secret
+  required: false
+  group: "Azure Configuration"
+
+- variable: secrets.azureResourceGroup
+  description: "Resource Group name that was created for the Kubernetes cluster"
+  type: string
+  label: Resource Group
+  required: false
+  group: "Azure Configuration"
+
+- variable: secrets.azureSubscriptionID
+  description: "Subscription ID in your Azure tenant"
+  type: string
+  label: Subscription ID
+  required: false
+  group: "Azure Configuration"
+
+- variable: secrets.azureResourceMgrEndpoint
+  description: "Resource management endpoint for the Azure Stack instance"
+  type: string
+  label: Resource management endpoint
+  required: false
+  group: "Azure Configuration"
+
+- variable: secrets.azureADEndpoint
+  description: "Azure Active Directory login endpoint"
+  type: string
+  label: Active Directory login endpoint
+  required: false
+  group: "Azure Configuration"
+
+- variable: secrets.azureADResourceID
+  description: "Azure Active Directory resource ID to obtain AD tokens"
+  type: string
+  label: Active Directory resource ID
+  required: false
+  group: "Azure Configuration"
+
+# ========================
+# Authentication
+# ========================
+ 
+- variable: auth.basicAuth.enabled
+  description: "Configures basic authentication for the K10 dashboard"
+  type: boolean
+  label: Enable Basic Authentication
+  required: false
+  group: "Authentication"
+  show_subquestion_if: true
+  subquestions:
+  - variable: auth.basicAuth.htpasswd
+    description: "A username and password pair separated by a colon character"
+    type: password
+    label: Authentication Details (htpasswd)
+  - variable: auth.basicAuth.secretName
+    description: "Name of an existing Secret that contains a file generated with htpasswd"
+    type: string
+    label: Secret Name
+
+- variable: auth.tokenAuth.enabled
+  description: "Configures token based authentication for the K10 dashboard"
+  type: boolean
+  label: Enable Token Based Authentication
+  required: false
+  group: "Authentication"
+
+- variable: auth.oidcAuth.enabled
+  description: "Configures Open ID Connect based authentication for the K10 dashboard"
+  type: boolean
+  label: Enable OpenID Connect Based Authentication
+  required: false
+  group: "Authentication"
+  show_subquestion_if: true
+  subquestions:
+  - variable: auth.oidcAuth.providerURL
+    description: "URL for the OIDC Provider"
+    type: string
+    label: OIDC Provider URL
+  - variable: auth.oidcAuth.redirectURL
+    description: "URL for the K10 gateway Provider"
+    type: string
+    label: OIDC Redirect URL
+  - variable: auth.oidcAuth.scopes
+    description: "Space separated OIDC scopes required for userinfo. Example: `profile email`"
+    type: string
+    label: OIDC scopes
+  - variable: auth.oidcAuth.prompt
+    description: "The type of prompt to be used during authentication (none, consent, login, or select_account)"
+    type: enum
+    options:
+      - none
+      - consent
+      - login
+      - select_account
+    default: none
+    label: The type of prompt to be used during authentication (none, consent, login, or select_account)
+  - variable: auth.oidcAuth.clientID
+    description: "Client ID given by the OIDC provider for K10"
+    type: password
+    label: OIDC Client ID 
+  - variable: auth.oidcAuth.clientSecret
+    description: "Client secret given by the OIDC provider for K10"
+    type: password
+    label: OIDC Client Secret
+  - variable: auth.oidcAuth.usernameClaim
+    description: "The claim to be used as the username"
+    type: string
+    label: OIDC UserName Claim
+  - variable: auth.oidcAuth.usernamePrefix
+    description: "Prefix that has to be used with the username obtained from the username claim"
+    type: string
+    label: OIDC UserName Prefix
+  - variable: auth.oidcAuth.groupClaim
+    description: "Name of a custom OpenID Connect claim for specifying user groups"
+    type: string
+    label: OIDC group Claim
+  - variable: auth.oidcAuth.groupPrefix
+    description: "All groups will be prefixed with this value to prevent conflicts"
+    type: string
+    label: OIDC group Prefix
+
+# ========================
+# External Gateway
+# ========================
+
+- variable: externalGateway.create
+  description: "Configures an external gateway for K10 API services"
+  type: boolean
+  label: Create External Gateway
+  required: false
+  group: "External Gateway"
+  show_subquestion_if: true
+  subquestions:
+  - variable: externalGateway.annotations
+    description: "Standard annotations for the services"
+    type: multiline
+    default: ""
+    label: Annotation
+  - variable: externalGateway.fqdn.name
+    description: "Domain name for the K10 API services"
+    type: string
+    label: Domain Name
+  - variable: externalGateway.fqdn.type
+    description: "Supported gateway type: `route53-mapper` or `external-dns`"
+    type: string
+    label: Gateway Type route53-mapper or external-dns
+  - variable: externalGateway.awsSSLCertARN
+    description: "ARN for the AWS ACM SSL certificate used in the K10 API server"
+    type: multiline
+    label: ARN for the AWS ACM SSL certificate
+
+# ========================
+# Storage Management
+# ========================
+
+- variable: global.persistence.storageClass
+  label: StorageClass Name
+  description: "Specifies StorageClass Name to be used for PVCs"
+  type: string
+  required: false
+  default: ""
+  group: "Storage Management"
+
+- variable: prometheus.server.persistentVolume.storageClass
+  type: string
+  label: StorageClass Name for Prometheus PVC
+  description: "StorageClassName used to create Prometheus PVC. Setting this option overwrites global StorageClass value"
+  default: ""
+  required: false
+  group: "Storage Management"
+
+- variable: prometheus.server.persistentVolume.enabled
+  type: boolean
+  label: Enable PVC for Prometheus server
+  description: "If true, K10 Prometheus server will create a Persistent Volume Claim"
+  default: true
+  required: false
+  group: "Storage Management"
+
+- variable: global.persistence.enabled
+  type: boolean
+  label: Storage Enabled
+  description: "If true, K10 will use Persistent Volume Claim"
+  default: true
+  required: false
+  group: "Storage Management"
+
+# ========================
+# Service Account
+# ======================== 
+
+- variable: serviceAccount.name
+  description: "Name of a service account in the target namespace that has cluster-admin permissions. This is needed for the K10 to be able to protect cluster resources."
+  type: string
+  label: Service Account Name
+  required: false
+  group: "Service Account"
+
+# ========================
+# License
+# ========================
+
+- variable: license
+  description: "License string obtained from Kasten"
+  type: multiline
+  label: License String
+  group: "License"
+- variable: eula.accept
+  description: "Whether to enable accept EULA before installation"
+  type: boolean
+  label: Enable accept EULA before installation
+  group: "License"
+  show_subquestion_if: true
+  subquestions:
+  - variable: eula.company
+    description: "Company name. Required field if EULA is accepted"
+    type: string
+    label: Company Name
+  - variable: eula.email
+    description: "Contact email. Required field if EULA is accepted"
+    type: string
+    label: Contact Email
diff --git a/charts/kasten/k10/7.5.401/templates/NOTES.txt b/charts/kasten/k10/7.5.401/templates/NOTES.txt
new file mode 100644
index 0000000000..9d36f1f12d
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/NOTES.txt
@@ -0,0 +1,215 @@
+Thank you for installing Kasten’s K10 Data Management Platform {{ .Chart.Version }}!
+{{- if .Values.fips.enabled }}
+
+You are operating in FIPS mode.
+{{- end }}
+
+Documentation can be found at https://docs.kasten.io/.
+
+How to access the K10 Dashboard:
+
+{{- if .Values.ingress.create }}
+
+You are using the system's default ingress controller. Please ask your
+administrator for instructions on how to access the cluster.
+
+WebUI location:  https://{{ default "Your ingress endpoint" .Values.ingress.host }}/{{ default .Release.Name .Values.ingress.urlPath }}
+
+In addition,
+{{- end }}
+
+{{- if .Values.route.enabled }}
+WebUI location: https://{{ default "k10-route endpoint" .Values.route.host}}/{{ default .Release.Name .Values.route.path }}/
+
+In addition,
+{{- end }}
+
+{{- if .Values.externalGateway.create }}
+{{- if .Values.externalGateway.fqdn.name }}
+
+The K10 Dashboard is accessible via {{ if or .Values.secrets.tlsSecret .Values.externalGateway.awsSSLCertARN }}https{{ else }}http{{ end }}://{{ .Values.externalGateway.fqdn.name }}/{{ .Release.Name }}/#/
+
+In addition,
+{{- else }}
+
+The K10 Dashboard is accessible via a LoadBalancer. Find the service's EXTERNAL IP using:
+  `kubectl get svc gateway-ext --namespace {{ .Release.Namespace }} -o wide`
+And use it in following URL
+ `http://SERVICE_EXTERNAL_IP/{{ .Release.Name }}/#/`
+
+In addition,
+{{- end }}
+{{- end }}
+
+To establish a connection to it use the following `kubectl` command:
+
+`kubectl --namespace {{ .Release.Namespace }} port-forward service/gateway 8080:{{ .Values.gateway.service.externalPort }}`
+
+The Kasten dashboard will be available at: `http{{ if or .Values.secrets.tlsSecret .Values.externalGateway.awsSSLCertARN }}s{{ end }}://127.0.0.1:8080/{{ .Release.Name }}/#/`
+{{ if and ( .Values.metering.awsManagedLicense )  ( not .Values.metering.licenseConfigSecretName ) }}
+
+IAM Role created during installation need to have permissions that allow K10 to
+perform operations on EBS and, if needed, EFS and S3. Please create a policy
+with required permissions, and use the commands below to attach the policy to
+the service account.
+
+`ROLE_NAME=$(kubectl get serviceaccount {{ .Values.serviceAccount.name }} -n {{ .Release.Namespace }} -ojsonpath="{.metadata.annotations['eks\.amazonaws\.com/role-arn']}" | awk -F '/' '{ print $(NF) }')`
+`aws iam attach-role-policy --role-name "${ROLE_NAME}" --policy-arn <POLICY NAME>`
+
+Refer to `https://docs.kasten.io/latest/install/aws-containers-anywhere/aws-containers-anywhere.html#attaching-permissions-for-eks-installations`
+for more information.
+
+{{ end }}
+
+{{- if .Values.restore }}
+{{- if or (empty .Values.restore.copyImagePullSecrets) (.Values.restore.copyImagePullSecrets) }}
+--------------------
+Removal warning: The helm field `restore.copyImagePullSecrets` has been removed in version 6.0.12. K10 no longer copies the `imagePullSecret` to the application namespace.
+--------------------
+{{- end }}
+{{- end }}
+
+{{- if or (not (empty .Values.garbagecollector.importRunActions)) (not (empty .Values.garbagecollector.backupRunActions)) (not (empty .Values.garbagecollector.retireActions)) }}
+Deprecation warning: The `garbagecollector.importRunActions`, `garbagecollector.backupRunActions`, `garbagecollector.retireActions`
+blocks within the helm chart values have been replaced with `garbagecollector.actions`.
+{{- end }}
+
+{{- if .Values.secrets.azureADEndpoint  }}
+--------------------
+Deprecation warning: The helm field `secret.azureADEndpoint` is deprecated and will be removed in upcoming release, we recommend you to use correct respective field, i.e., `secrets.microsoftEntraIDEndpoint`.
+--------------------
+{{- end }}
+
+
+{{- if .Values.secrets.azureADResourceID  }}
+--------------------
+Deprecation warning: The helm field `secret.azureADResourceID` is deprecated and will be removed in upcoming release, we recommend you to use correct respective field, i.e., `secrets.microsoftEntraIDResourceID`
+--------------------
+{{- end }}
+
+{{- if or .Values.kanisterPodCustomLabels .Values.kanisterPodCustomAnnotations }}
+--------------------
+Deprecation warning: The Helm values `kanisterPodCustomLabels` and `kanisterPodCustomAnnotations` are deprecated and will be removed in an upcoming release. Please use `global.podLabels` and `global.podAnnotations` to set labels and annotations to all the Kasten pods globally.
+--------------------
+{{- end }}
+
+{{- if gt (int .Values.executorReplicas) 0 }}
+--------------------
+Deprecation warning: The Helm value 'executorReplicas' is deprecated and will be removed in an upcoming release. Please use 'limiter.executorReplicas' instead.
+--------------------
+{{- end }}
+{{- if .Values.injectKanisterSidecar.enabled }}
+--------------------
+Deprecation warning: The Helm value 'injectKanisterSidecar.enabled' is deprecated and will be removed in an upcoming release. Please use 'injectGenericVolumeBackupSidecar.enabled' instead.
+--------------------
+{{- end }}
+{{- if .Values.kanisterPodMetricSidecar.enabled }}
+--------------------
+Deprecation warning: The Helm value 'kanisterPodMetricSidecar.enabled' is deprecated and will be removed in an upcoming release. Please use 'workerPodMetricSidecar.enabled' instead.
+--------------------
+{{- end }}
+{{- if gt (int .Values.services.executor.workerCount) 0 }}
+--------------------
+Deprecation warning: The Helm value 'services.executor.workerCount' is deprecated and will be removed in an upcoming release. Please use 'limiter.executorThreads' instead.
+--------------------
+{{- end }}
+{{- if gt (int .Values.services.executor.maxConcurrentRestoreCsiSnapshots) 0 }}
+--------------------
+Deprecation warning: The Helm value 'services.executor.maxConcurrentRestoreCsiSnapshots' is deprecated and will be removed in an upcoming release. Please use 'limiter.csiSnapshotRestoresPerAction' instead.
+--------------------
+{{- end }}
+{{- if gt (int .Values.services.executor.maxConcurrentRestoreGenericVolumeSnapshots) 0 }}
+--------------------
+Deprecation warning: The Helm value 'services.executor.maxConcurrentRestoreGenericVolumeSnapshots' is deprecated and will be removed in an upcoming release. Please use 'limiter.volumeRestoresPerAction' instead.
+--------------------
+{{- end }}
+{{- if gt (int .Values.services.executor.maxConcurrentRestoreWorkloads) 0 }}
+--------------------
+Deprecation warning: The Helm value 'services.executor.maxConcurrentRestoreWorkloads' is deprecated and will be removed in an upcoming release. Please use 'limiter.workloadRestoresPerAction' instead.
+--------------------
+{{- end }}
+{{- if gt (int .Values.kanister.backupTimeout) 0 }}
+--------------------
+Deprecation warning: The Helm value 'kanister.backupTimeout' is deprecated and will be removed in an upcoming release. Please use 'timeout.blueprintBackup' instead.
+--------------------
+{{- end }}
+{{- if gt (int .Values.kanister.restoreTimeout) 0 }}
+--------------------
+Deprecation warning: The Helm value 'kanister.restoreTimeout' is deprecated and will be removed in an upcoming release. Please use 'timeout.blueprintRestore' instead.
+--------------------
+{{- end }}
+{{- if gt (int .Values.kanister.deleteTimeout) 0 }}
+--------------------
+Deprecation warning: The Helm value 'kanister.deleteTimeout' is deprecated and will be removed in an upcoming release. Please use 'timeout.blueprintDelete' instead.
+--------------------
+{{- end }}
+{{- if gt (int .Values.kanister.hookTimeout) 0 }}
+--------------------
+Deprecation warning: The Helm value 'kanister.hookTimeout' is deprecated and will be removed in an upcoming release. Please use 'timeout.blueprintHooks' instead.
+--------------------
+{{- end }}
+{{- if gt (int .Values.kanister.checkRepoTimeout) 0 }}
+--------------------
+Deprecation warning: The Helm value 'kanister.checkRepoTimeout' is deprecated and will be removed in an upcoming release. Please use 'timeout.checkRepoPodReady' instead.
+--------------------
+{{- end }}
+{{- if gt (int .Values.kanister.statsTimeout) 0 }}
+--------------------
+Deprecation warning: The Helm value 'kanister.statsTimeout' is deprecated and will be removed in an upcoming release. Please use 'timeout.statsPodReady' instead.
+--------------------
+{{- end }}
+{{- if gt (int .Values.kanister.efsPostRestoreTimeout) 0 }}
+--------------------
+Deprecation warning: The Helm value 'kanister.efsPostRestoreTimeout' is deprecated and will be removed in an upcoming release. Please use 'timeout.efsRestorePodReady' instead.
+--------------------
+{{- end }}
+{{- if gt (int .Values.kanister.podReadyWaitTimeout) 0 }}
+--------------------
+Deprecation warning: The Helm value 'kanister.podReadyWaitTimeout' is deprecated and will be removed in an upcoming release. Please use 'timeout.workerPodReady' instead.
+--------------------
+{{- end }}
+{{- if gt (int .Values.limiter.concurrentSnapConversions) 0 }}
+--------------------
+Deprecation warning: The Helm value 'limiter.concurrentSnapConversions' is deprecated and will be removed in an upcoming release. Please use 'limiter.snapshotExportsPerAction' instead.
+--------------------
+{{- end }}
+{{- if gt (int .Values.limiter.genericVolumeSnapshots) 0 }}
+--------------------
+Deprecation warning: The Helm value 'limiter.genericVolumeSnapshots' is deprecated and will be removed in an upcoming release. Please use 'limiter.genericVolumeBackupsPerCluster' instead.
+--------------------
+{{- end }}
+{{- if gt (int .Values.limiter.genericVolumeCopies) 0 }}
+--------------------
+Deprecation warning: The Helm value 'limiter.genericVolumeCopies' is deprecated and will be removed in an upcoming release. Please use 'limiter.snapshotExportsPerCluster' instead.
+--------------------
+{{- end }}
+{{- if gt (int .Values.limiter.genericVolumeRestores) 0 }}
+--------------------
+Deprecation warning: The Helm value 'limiter.genericVolumeRestores' is deprecated and will be removed in an upcoming release. Please use 'limiter.volumeRestoresPerCluster' instead.
+--------------------
+{{- end }}
+{{- if gt (int .Values.limiter.csiSnapshots) 0 }}
+--------------------
+Deprecation warning: The Helm value 'limiter.csiSnapshots' is deprecated and will be removed in an upcoming release. Please use 'limiter.csiSnapshotsPerCluster' instead.
+--------------------
+{{- end }}
+{{- if gt (int .Values.limiter.providerSnapshots) 0 }}
+--------------------
+Deprecation warning: The Helm value 'limiter.providerSnapshots' is deprecated and will be removed in an upcoming release. Please use 'limiter.directSnapshotsPerCluster' instead.
+--------------------
+{{- end }}
+{{- if gt (int .Values.limiter.imageCopies) 0 }}
+--------------------
+Deprecation warning: The Helm value 'limiter.imageCopies' is deprecated and will be removed in an upcoming release. Please use 'limiter.imageCopiesPerCluster' instead.
+--------------------
+{{- end }}
+{{- if and .Values.maxJobWaitDuration (not (empty .Values.maxJobWaitDuration)) }}
+--------------------
+Deprecation warning: The Helm value 'maxJobWaitDuration' is deprecated and will be removed in an upcoming release. Please use 'timeout.jobWait' instead.
+--------------------
+{{- end }}
+{{- if .Values.forceRootInKanisterHooks }}
+--------------------
+Deprecation warning: The Helm value 'forceRootInKanisterHooks' is deprecated and will be removed in an upcoming release. Please use 'forceRootInBlueprintActions' instead.
+--------------------
+{{- end }}
\ No newline at end of file
diff --git a/charts/kasten/k10/7.5.401/templates/_definitions.tpl b/charts/kasten/k10/7.5.401/templates/_definitions.tpl
new file mode 100644
index 0000000000..b5d7b79a8f
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/_definitions.tpl
@@ -0,0 +1,259 @@
+{{/* Code generated automatically. DO NOT EDIT. */}}
+{{/* K10 services can be disabled by customers via helm value based feature flags.
+Therefore, fetching of a list or yaml with service names should be done with the get.enabled* helper functions.
+For example, the k10.restServices list can be fetched with get.enabledRestServices */}}
+{{- define "k10.additionalServices" -}}frontend kanister{{- end -}}
+{{- define "k10.restServices" -}}auth bloblifecyclemanager catalog controllermanager crypto dashboardbff events executor garbagecollector jobs logging metering repositories state vbrintegrationapi{{- end -}}
+{{- define "k10.services" -}}aggregatedapis gateway{{- end -}}
+{{- define "k10.exposedServices" -}}auth dashboardbff vbrintegrationapi{{- end -}}
+{{- define "k10.statelessServices" -}}aggregatedapis auth bloblifecyclemanager controllermanager crypto dashboardbff events executor garbagecollector repositories gateway state vbrintegrationapi{{- end -}}
+{{- define "k10.colocatedServices" -}}
+bloblifecyclemanager:
+  port: 8001
+  primary: crypto
+events:
+  port: 8001
+  primary: state
+garbagecollector:
+  port: 8002
+  primary: crypto
+repositories:
+  port: 8003
+  primary: crypto
+vbrintegrationapi:
+  port: 8001
+  primary: dashboardbff
+{{- end -}}
+{{- define "k10.colocatedServiceLookup" -}}
+crypto:
+- bloblifecyclemanager
+- garbagecollector
+- repositories
+dashboardbff:
+- vbrintegrationapi
+state:
+- events
+{{- end -}}
+{{- define "k10.aggregatedAPIs" -}}actions apps repositories vault dr{{- end -}}
+{{- define "k10.configAPIs" -}}config{{- end -}}
+{{- define "k10.profiles" -}}profiles{{- end -}}
+{{- define "k10.policies" -}}policies{{- end -}}
+{{- define "k10.policypresets" -}}policypresets{{- end -}}
+{{- define "k10.transformsets" -}}transformsets{{- end -}}
+{{- define "k10.blueprintbindings" -}}blueprintbindings{{- end -}}
+{{- define "k10.auditconfigs" -}}auditconfigs{{- end -}}
+{{- define "k10.storagesecuritycontexts" -}}storagesecuritycontexts{{- end -}}
+{{- define "k10.storagesecuritycontextbindings" -}}storagesecuritycontextbindings{{- end -}}
+{{- define "k10.reportingAPIs" -}}reporting{{- end -}}
+{{- define "k10.distAPIs" -}}dist{{- end -}}
+{{- define "k10.actionsAPIs" -}}actions{{- end -}}
+{{- define "k10.backupActions" -}}backupactions{{- end -}}
+{{- define "k10.backupActionsDetails" -}}backupactions/details{{- end -}}
+{{- define "k10.reportActions" -}}reportactions{{- end -}}
+{{- define "k10.reportActionsDetails" -}}reportactions/details{{- end -}}
+{{- define "k10.storageRepositories" -}}storagerepositories{{- end -}}
+{{- define "k10.restoreActions" -}}restoreactions{{- end -}}
+{{- define "k10.restoreActionsDetails" -}}restoreactions/details{{- end -}}
+{{- define "k10.importActions" -}}importactions{{- end -}}
+{{- define "k10.importActionsDetails" -}}importactions/details{{- end -}}
+{{- define "k10.exportActions" -}}exportactions{{- end -}}
+{{- define "k10.exportActionsDetails" -}}exportactions/details{{- end -}}
+{{- define "k10.retireActions" -}}retireactions{{- end -}}
+{{- define "k10.runActions" -}}runactions{{- end -}}
+{{- define "k10.runActionsDetails" -}}runactions/details{{- end -}}
+{{- define "k10.backupClusterActions" -}}backupclusteractions{{- end -}}
+{{- define "k10.backupClusterActionsDetails" -}}backupclusteractions/details{{- end -}}
+{{- define "k10.restoreClusterActions" -}}restoreclusteractions{{- end -}}
+{{- define "k10.restoreClusterActionsDetails" -}}restoreclusteractions/details{{- end -}}
+{{- define "k10.cancelActions" -}}cancelactions{{- end -}}
+{{- define "k10.upgradeActions" -}}upgradeactions{{- end -}}
+{{- define "k10.appsAPIs" -}}apps{{- end -}}
+{{- define "k10.restorePoints" -}}restorepoints{{- end -}}
+{{- define "k10.restorePointsDetails" -}}restorepoints/details{{- end -}}
+{{- define "k10.clusterRestorePoints" -}}clusterrestorepoints{{- end -}}
+{{- define "k10.clusterRestorePointsDetails" -}}clusterrestorepoints/details{{- end -}}
+{{- define "k10.applications" -}}applications{{- end -}}
+{{- define "k10.applicationsDetails" -}}applications/details{{- end -}}
+{{- define "k10.vaultAPIs" -}}vault{{- end -}}
+{{- define "k10.passkey" -}}passkeys{{- end -}}
+{{- define "k10.authAPIs" -}}auth{{- end -}}
+{{- define "k10.defaultK10LimiterSnapshotExportsPerAction" -}}3{{- end -}}
+{{- define "k10.defaultK10LimiterWorkloadSnapshotsPerAction" -}}5{{- end -}}
+{{- define "k10.defaultK10DataStoreParallelUpload" -}}8{{- end -}}
+{{- define "k10.defaultK10DataStoreGeneralContentCacheSizeMB" -}}0{{- end -}}
+{{- define "k10.defaultK10DataStoreGeneralMetadataCacheSizeMB" -}}500{{- end -}}
+{{- define "k10.defaultK10DataStoreTotalCacheSizeLimitMB" -}}1500{{- end -}}
+{{- define "k10.defaultK10DataStoreRestoreContentCacheSizeMB" -}}500{{- end -}}
+{{- define "k10.defaultK10DataStoreRestoreMetadataCacheSizeMB" -}}500{{- end -}}
+{{- define "k10.defaultK10BackupBufferFileHeadroomFactor" -}}1.1{{- end -}}
+{{- define "k10.defaultK10LimiterGenericVolumeBackupsPerCluster" -}}10{{- end -}}
+{{- define "k10.defaultK10LimiterSnapshotExportsPerCluster" -}}10{{- end -}}
+{{- define "k10.defaultK10LimiterVolumeRestoresPerCluster" -}}10{{- end -}}
+{{- define "k10.defaultK10LimiterCsiSnapshotsPerCluster" -}}10{{- end -}}
+{{- define "k10.defaultK10LimiterImageCopiesPerCluster" -}}10{{- end -}}
+{{- define "k10.defaultK10LimiterDirectSnapshotsPerCluster" -}}10{{- end -}}
+{{- define "k10.defaultK10GCDaemonPeriod" -}}21600{{- end -}}
+{{- define "k10.defaultK10GCKeepMaxActions" -}}1000{{- end -}}
+{{- define "k10.defaultK10GCActionsEnabled" -}}false{{- end -}}
+{{- define "k10.defaultK10LimiterExecutorThreads" -}}8{{- end -}}
+{{- define "k10.defaultK10LimiterCsiSnapshotRestoresPerAction" -}}3{{- end -}}
+{{- define "k10.defaultK10LimiterVolumeRestoresPerAction" -}}3{{- end -}}
+{{- define "k10.defaultK10LimiterWorkloadRestoresPerAction" -}}3{{- end -}}
+{{- define "k10.defaultAssumeRoleDuration" -}}60m{{- end -}}
+{{- define "k10.defaultK10TimeoutBlueprintBackup" -}}45{{- end -}}
+{{- define "k10.defaultK10TimeoutBlueprintRestore" -}}600{{- end -}}
+{{- define "k10.defaultK10TimeoutBlueprintDelete" -}}45{{- end -}}
+{{- define "k10.defaultK10TimeoutBlueprintHooks" -}}20{{- end -}}
+{{- define "k10.defaultK10TimeoutCheckRepoPodReady" -}}20{{- end -}}
+{{- define "k10.defaultK10TimeoutStatsPodReady" -}}20{{- end -}}
+{{- define "k10.defaultK10TimeoutEFSRestorePodReady" -}}45{{- end -}}
+{{- define "k10.cloudProviders" -}}aws google azure{{- end -}}
+{{- define "k10.serviceResources" -}}
+aggregatedapis-svc:
+  aggregatedapis-svc:
+    requests:
+      cpu: 90m
+      memory: 180Mi
+auth-svc:
+  auth-svc:
+    requests:
+      cpu: 3m
+      memory: 120Mi
+catalog-svc:
+  catalog-svc:
+    requests:
+      cpu: 6m
+      memory: 150Mi
+  kanister-sidecar:
+    limits:
+      cpu: 1200m
+      memory: 800Mi
+    requests:
+      cpu: 100m
+      memory: 800Mi
+  schema-upgrade-check:
+    requests:
+      cpu: 6m
+      memory: 150Mi
+  upgrade-init:
+    requests:
+      cpu: 5m
+      memory: 20Mi
+controllermanager-svc:
+  controllermanager-svc:
+    requests:
+      cpu: 9m
+      memory: 160Mi
+crypto-svc:
+  bloblifecyclemanager-svc:
+    requests:
+      cpu: 3m
+      memory: 120Mi
+  crypto-svc:
+    requests:
+      cpu: 3m
+      memory: 120Mi
+  garbagecollector-svc:
+    requests:
+      cpu: 3m
+      memory: 130Mi
+  repositories-svc:
+    requests:
+      cpu: 3m
+      memory: 130Mi
+dashboardbff-svc:
+  dashboardbff-svc:
+    requests:
+      cpu: 9m
+      memory: 170Mi
+  vbrintegrationapi-svc:
+    requests:
+      cpu: 3m
+      memory: 120Mi
+executor-svc:
+  executor-svc:
+    requests:
+      cpu: 3m
+      memory: 160Mi
+  tools:
+    requests:
+      cpu: 1m
+      memory: 2Mi
+frontend-svc:
+  frontend-svc:
+    requests:
+      cpu: 1m
+      memory: 40Mi
+jobs-svc:
+  jobs-svc:
+    requests:
+      cpu: 3m
+      memory: 120Mi
+  upgrade-init:
+    requests:
+      cpu: 5m
+      memory: 20Mi
+kanister-svc:
+  kanister-svc:
+    requests:
+      cpu: 3m
+      memory: 100Mi
+logging-svc:
+  logging-svc:
+    requests:
+      cpu: 3m
+      memory: 120Mi
+  upgrade-init:
+    requests:
+      cpu: 5m
+      memory: 20Mi
+metering-svc:
+  metering-svc:
+    requests:
+      cpu: 12m
+      memory: 170Mi
+  upgrade-init:
+    requests:
+      cpu: 5m
+      memory: 20Mi
+state-svc:
+  events-svc:
+    requests:
+      cpu: 3m
+      memory: 120Mi
+  state-svc:
+    requests:
+      cpu: 3m
+      memory: 130Mi
+{{- end -}}
+{{- define "k10.multiClusterVersion" -}}2.5{{- end -}}
+{{- define "k10.mcExternalPort" -}}18000{{- end -}}
+{{- define "k10.defaultKubeVirtVMsUnfreezeTimeout" -}}5m{{- end -}}
+{{- define "k10.aggAuditPolicyFile" -}}agg-audit-policy.yaml{{- end -}}
+{{- define "k10.siemAuditLogFilePath" -}}-{{- end -}}
+{{- define "k10.siemAuditLogFileSize" -}}100{{- end -}}
+{{- define "k10.kanisterToolsImageTag" -}}0.113.0{{- end -}}
+{{- define "k10.disabledServicesEnvVar" -}}K10_DISABLED_SERVICES{{- end -}}
+{{- define "k10.openShiftClientSecretEnvVar" -}}K10_OPENSHIFT_CLIENT_SECRET{{- end -}}
+{{- define "k10.defaultK10DefaultPriorityClassName" -}}{{- end -}}
+{{- define "k10.dexServiceAccountName" -}}k10-dex-k10-sa{{- end -}}
+{{- define "k10.defaultCACertConfigMapName" -}}custom-ca-bundle-store{{- end -}}
+{{- define "k10.openShiftConsolePluginName" -}}console-plugin{{- end -}}
+{{- define "k10.openShiftConsolePluginCRName" -}}veeam-kasten-console-plugin{{- end -}}
+{{- define "k10.openShiftConsolePluginImageName" -}}ocpconsoleplugin{{- end -}}
+{{- define "k10.gatewayPrefixVarName" -}}PREFIX_PATH{{- end -}}
+{{- define "k10.gatewayGrafanaSvcVarName" -}}GRAFANA_SVC_NAME{{- end -}}
+{{- define "k10.gatewayRequestHeadersVarName" -}}EXTAUTH_REQUEST_HEADERS{{- end -}}
+{{- define "k10.gatewayAuthHeadersVarName" -}}EXTAUTH_AUTH_HEADERS{{- end -}}
+{{- define "k10.gatewayPortVarName" -}}PORT{{- end -}}
+{{- define "k10.gatewayEnableDex" -}}ENABLE_DEX{{- end -}}
+{{- define "k10.gatewayTLSCertFile" -}}TLS_CRT_FILE{{- end -}}
+{{- define "k10.gatewayTLSKeyFile" -}}TLS_KEY_FILE{{- end -}}
+{{- define "k10.azureClientIDEnvVar" -}}AZURE_CLIENT_ID{{- end -}}
+{{- define "k10.azureTenantIDEnvVar" -}}AZURE_TENANT_ID{{- end -}}
+{{- define "k10.azureClientSecretEnvVar" -}}AZURE_CLIENT_SECRET{{- end -}}
+{{- define "k10.oidcSecretName" -}}k10-oidc-auth{{- end -}}
+{{- define "k10.oidcCustomerSecretName" -}}k10-oidc-auth-creds{{- end -}}
+{{- define "k10.secretsDir" -}}/var/run/secrets/kasten.io{{- end -}}
+{{- define "k10.sccNameEnvVar" -}}K10_SCC_NAME{{- end -}}
+{{- define "k10.fluentbitEndpointEnvVar" -}}FLUENTBIT_ENDPOINT{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/templates/_helpers.tpl b/charts/kasten/k10/7.5.401/templates/_helpers.tpl
new file mode 100644
index 0000000000..8739b88799
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/_helpers.tpl
@@ -0,0 +1,1563 @@
+{{/* Returns a string of the disabled K10 services */}}
+{{- define "get.disabledServices" -}}
+  {{/* Append services to this list based on helm values */}}
+  {{- $disabledServices := list -}}
+
+  {{- if eq .Values.logging.internal false -}}
+    {{- $disabledServices = append $disabledServices "logging" -}}
+  {{- end -}}
+
+  {{- $disabledServices | join " " -}}
+{{- end -}}
+
+{{/* Removes disabled service names from the provided string of service names */}}
+{{- define "removeDisabledServicesFromList" -}}
+  {{- $disabledServices := include "get.disabledServices" .main | splitList " " -}}
+  {{- $services := .list | splitList " " -}}
+
+  {{- range $disabledServices -}}
+    {{- $services = without $services . -}}
+  {{- end -}}
+
+  {{- $services | join " " -}}
+{{- end -}}
+
+{{/* Removes keys with disabled service names from the provided YAML string */}}
+{{- define "removeDisabledServicesFromYaml" -}}
+  {{- $disabledServices := include "get.disabledServices" .main | splitList " " -}}
+  {{- $services := .yaml | fromYaml -}}
+
+  {{- range $disabledServices -}}
+    {{- $services =  unset $services . -}}
+  {{- end -}}
+
+  {{- if gt (len $services) 0 -}}
+    {{- $services | toYaml | trim | nindent 0}}
+  {{- else -}}
+    {{- print "" -}}
+  {{- end -}}
+{{- end -}}
+
+{{/* Returns k10.additionalServices string with disabled services removed */}}
+{{- define "get.enabledAdditionalServices" -}}
+  {{- $list := include "k10.additionalServices" . -}}
+  {{- dict "main" . "list" $list | include "removeDisabledServicesFromList" -}}
+{{- end -}}
+
+{{/* Returns k10.restServices string with disabled services removed */}}
+{{- define "get.enabledRestServices" -}}
+  {{- $list := include "k10.restServices" . -}}
+  {{- dict "main" . "list" $list | include "removeDisabledServicesFromList" -}}
+{{- end -}}
+
+{{/* Returns k10.services string with disabled services removed */}}
+{{- define "get.enabledServices" -}}
+  {{- $list := include "k10.services" . -}}
+  {{- dict "main" . "list" $list | include "removeDisabledServicesFromList" -}}
+{{- end -}}
+
+{{/* Returns k10.exposedServices string with disabled services removed */}}
+{{- define "get.enabledExposedServices" -}}
+  {{- $list := include "k10.exposedServices" . -}}
+  {{- dict "main" . "list" $list | include "removeDisabledServicesFromList" -}}
+{{- end -}}
+
+{{/* Returns k10.statelessServices string with disabled services removed */}}
+{{- define "get.enabledStatelessServices" -}}
+  {{- $list := include "k10.statelessServices" . -}}
+  {{- dict "main" . "list" $list | include "removeDisabledServicesFromList" -}}
+{{- end -}}
+
+{{/* Returns k10.colocatedServices string with disabled services removed */}}
+{{- define "get.enabledColocatedServices" -}}
+  {{- $yaml := include "k10.colocatedServices" . -}}
+  {{- dict "main" . "yaml" $yaml | include "removeDisabledServicesFromYaml" -}}
+{{- end -}}
+
+{{/* Returns YAML of primary services mapped to their secondary services */}}
+{{/* The content will only have services which are not disabled */}}
+{{- define "get.enabledColocatedServiceLookup" -}}
+  {{- $colocatedServicesLookup := include "k10.colocatedServiceLookup" . | fromYaml -}}
+  {{- $disabledServices := include "get.disabledServices" . | splitList " " -}}
+  {{- $filteredLookup := dict -}}
+
+  {{/* construct filtered lookup */}}
+  {{- range $primaryService, $secondaryServices := $colocatedServicesLookup -}}
+    {{/* proceed only if primary service is enabled */}}
+    {{- if not (has $primaryService $disabledServices) -}}
+      {{/* filter out secondary services */}}
+      {{- range $disabledServices -}}
+        {{- $secondaryServices = without $secondaryServices . -}}
+      {{- end -}}
+      {{/* add entry for primary service only if secondary services exist */}}
+      {{- if gt (len $secondaryServices) 0 -}}
+        {{- $filteredLookup = set $filteredLookup $primaryService $secondaryServices -}}
+      {{- end -}}
+    {{- end -}}
+  {{- end -}}
+
+  {{/* return filtered lookup */}}
+  {{- if gt (len $filteredLookup) 0 -}}
+    {{- $filteredLookup | toYaml | trim | nindent 0 -}}
+  {{- else -}}
+    {{- print "" -}}
+  {{- end -}}
+{{- end -}}
+
+{{- define "k10.capabilities" -}}
+  {{- /* Internal capabilities enabled by other Helm values are added here */ -}}
+  {{- $internal_capabilities := list "" -}}
+
+  {{- /* Multi-cluster */ -}}
+  {{- if eq .Values.multicluster.enabled true -}}
+    {{- $internal_capabilities = append $internal_capabilities "mc" -}}
+  {{- end -}}
+
+  {{- /* FIPS */ -}}
+  {{- if .Values.fips.enabled -}}
+    {{- $internal_capabilities = append $internal_capabilities "fips.strict" -}}
+    {{- $internal_capabilities = append $internal_capabilities "crypto.k10.v2" -}}
+    {{- $internal_capabilities = append $internal_capabilities "crypto.storagerepository.v2" -}}
+    {{- $internal_capabilities = append $internal_capabilities "crypto.vbr.v2" -}}
+  {{- end -}}
+
+  {{- concat $internal_capabilities (.Values.capabilities | default list) | join " " -}}
+{{- end -}}
+
+{{- define "k10.capabilities_mask" -}}
+  {{- /* Internal capabilities masked by other Helm values are added here */ -}}
+  {{- $internal_capabilities_mask := list -}}
+
+  {{- /* Multi-cluster */ -}}
+  {{- if eq .Values.multicluster.enabled false -}}
+    {{- $internal_capabilities_mask = append $internal_capabilities_mask "mc" -}}
+  {{- end -}}
+
+  {{- concat $internal_capabilities_mask (.Values.capabilitiesMask | default list) | join " " -}}
+{{- end -}}
+
+{{/*
+  k10.capability checks whether a given capability is enabled
+
+  For example:
+
+    include "k10.capability" (. | merge (dict "capability" "SOME.CAPABILITY"))
+*/}}
+{{- define "k10.capability" -}}
+  {{- $capabilities := dict -}}
+  {{- range $capability := include "k10.capabilities" . | splitList " " -}}
+    {{- $_ := set $capabilities $capability "enabled" -}}
+  {{- end -}}
+  {{- range $capability := include "k10.capabilities_mask" . | splitList " " -}}
+    {{- $_ := unset $capabilities $capability -}}
+  {{- end -}}
+
+  {{- index $capabilities .capability | default "" -}}
+{{- end -}}
+
+{{/* Check if VAPs and VAP bindings for checking permissions for basic users at 
+the Kubernetes control plane level need to be created. 
+Returns "true" if the Kubernetes version in the cluster supports VAP 
+(assumption is 1.28 and 1.29) and if the K10 capability for allowing the VAP creation 
+is enabled.*/}}
+{{- define "vap.check" -}}
+  {{- if and (.Capabilities.APIVersions.Has "admissionregistration.k8s.io/v1beta1/ValidatingAdmissionPolicy") (include "k10.capability" (. | merge (dict "capability" "vap.kasten.policy.permissions"))) -}}
+    {{- print true -}}
+  {{- else -}}
+    {{- print false -}}
+  {{- end -}}
+{{- end -}}
+
+{{/* Check if basic auth is needed */}}
+{{- define "basicauth.check" -}}
+  {{- if .Values.auth.basicAuth.enabled }}
+    {{- print true }}
+  {{- end -}} {{/* End of check for auth.basicAuth.enabled */}}
+{{- end -}}
+
+{{/*
+Check if trusted root CA certificate related configmap settings
+have been configured
+*/}}
+{{- define "check.cacertconfigmap" -}}
+{{- if .Values.cacertconfigmap.name -}}
+{{- print true -}}
+{{- else -}}
+{{- print false -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Check if OCP CA certificates automatic extraction is enabled
+*/}}
+{{- define "k10.ocpcacertsautoextraction" -}}
+  {{- if and .Values.auth.openshift.enabled .Values.auth.openshift.caCertsAutoExtraction -}}
+    {{- true -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Get the name of the CA certificate related configmap
+*/}}
+{{- define "k10.cacertconfigmapname" -}}
+  {{- if eq (include "check.cacertconfigmap" .) "true" -}}
+    {{- .Values.cacertconfigmap.name -}}
+  {{- else if (include "k10.ocpcacertsautoextraction" .) -}}
+    {{- include "k10.defaultCACertConfigMapName" . -}}
+  {{- end -}}
+{{- end -}}
+
+{{- define "k10.sccAnnotations" -}}
+  {{- if .Values.scc.create -}}
+    {{- dict "openshift.io/required-scc" (printf "%s-scc" .Release.Name) | toYaml -}}
+  {{- end -}}
+{{- end -}}
+
+{{/* Merging common pod labels for deployments with specific order of priority 
+to prevent overwriting of required labels. Certain site-specific required labels 
+are passed into the context as a dict at the caller site. */}}
+{{- define "k10.deploymentPodLabels" -}}
+  {{- (merge (dict) (.requiredLabels) (include "k10.azMarketPlace.billingIdentifier" . | fromYaml) (include "helm.labels" . | fromYaml) (include "k10.globalPodLabels" . | fromYaml)) | toYaml -}}
+{{- end -}}
+
+{{/* Merging common pod annotations for deployments with specific order of 
+priority to prevent overwriting of required annotations. Certain site-specific 
+required annotations are passed into the context as a dict at the caller site. */}}
+{{- define "k10.deploymentPodAnnotations" -}}
+  {{- (merge (dict) (.requiredAnnotations) (dict "checksum/config" (include (print .Template.BasePath "/k10-config.yaml") . | sha256sum)) (dict "checksum/secret" (include (print .Template.BasePath "/secrets.yaml") . | sha256sum)) (include "k10.sccAnnotations" . | fromYaml) (include "k10.globalPodAnnotations" . | fromYaml)) | toYaml -}}
+{{- end -}}
+
+{{/* Custom pod labels applied globally to all pods */}}
+{{- define "k10.globalPodLabels" -}}
+  {{ include "k10.validateGlobalAndKanisterLabelsAnnotations" . }}
+  {{- with .Values.global.podLabels -}}
+    {{- toYaml . -}}
+  {{- end -}}
+{{- end -}}
+
+{{/* Custom pod labels applied globally to all pods in a json format */}}
+{{- define "k10.globalPodLabelsJson" -}}
+  {{- if .Values.global.podLabels -}}
+    {{- toJson .Values.global.podLabels -}}
+  {{- end -}}
+{{- end -}}
+
+{{/* Custom pod annotations applied globally to all pods */}}
+{{- define "k10.globalPodAnnotations" -}}
+  {{ include "k10.validateGlobalAndKanisterLabelsAnnotations" . }}
+  {{- with .Values.global.podAnnotations -}}
+    {{- toYaml . -}}
+  {{- end -}}
+{{- end -}}
+
+{{/* Custom pod annotations applied globally to all pods in a json format */}}
+{{- define "k10.globalPodAnnotationsJson" -}}
+  {{- if .Values.global.podAnnotations -}}
+    {{- toJson .Values.global.podAnnotations -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Validate and fail if the labels/annotations are configured at global level (global.podLabels)
+as well as kanister helm field level (kanisterPodCustomLabels)
+*/}}
+{{- define "k10.validateGlobalAndKanisterLabelsAnnotations" -}}
+  {{- if and .Values.global.podAnnotations .Values.kanisterPodCustomAnnotations -}}
+    {{- fail "The `kanisterPodCustomAnnotations` field has been deprecated and cannot be used simultaneously with `global.podAnnotations`. Please use `global.podAnnotations` to set annotations to all the Kasten pods globally." }}
+  {{- end -}}
+  {{- if and .Values.global.podLabels .Values.kanisterPodCustomLabels -}}
+    {{- fail "The `kanisterPodCustomLabels` field has been deprecated and cannot be used simultaneously with `global.podLabels`. Please use `global.podLabels` to set labels to all the Kasten pods globally." }}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Check if the auth options are implemented using Dex
+*/}}
+{{- define "check.dexAuth" -}}
+{{- if or .Values.auth.openshift.enabled .Values.auth.ldap.enabled -}}
+{{- print true -}}
+{{- end -}}
+{{- end -}}
+
+{{/* Check the only 1 auth is specified */}}
+{{- define "singleAuth.check" -}}
+{{- $count := dict "count" (int 0) -}}
+{{- $authList := list .Values.auth.basicAuth.enabled .Values.auth.tokenAuth.enabled .Values.auth.oidcAuth.enabled .Values.auth.openshift.enabled .Values.auth.ldap.enabled -}}
+{{- range $i, $val := $authList }}
+{{ if $val }}
+{{ $c := add1 $count.count | set $count "count" }}
+{{ if gt $count.count 1 }}
+{{- fail "Multiple auth types were selected. Only one type can be enabled." }}
+{{ end }}
+{{ end }}
+{{- end }}
+{{- end -}}{{/* Check the only 1 auth is specified */}}
+
+{{/* Check if Auth is enabled */}}
+{{- define "authEnabled.check" -}}
+{{- $count := dict "count" (int 0) -}}
+{{- $authList := list .Values.auth.basicAuth.enabled .Values.auth.tokenAuth.enabled .Values.auth.oidcAuth.enabled .Values.auth.openshift.enabled .Values.auth.ldap.enabled -}}
+{{- range $i, $val := $authList }}
+{{ if $val }}
+{{ $c := add1 $count.count | set $count "count" }}
+{{ end }}
+{{- end }}
+{{- if eq $count.count 0}}
+  {{- fail "Auth is required to expose access to K10." }}
+{{- end }}
+{{- end -}}{{/*end of check  */}}
+
+{{/* Return ingress class name annotation */}}
+{{- define "ingressClassAnnotation" -}}
+{{- if .Values.ingress.class -}}
+kubernetes.io/ingress.class: {{ .Values.ingress.class | quote }}
+{{- end -}}
+{{- end -}}
+
+{{/* Return ingress class name in spec */}}
+{{- define "specIngressClassName" -}}
+{{- if and .Values.ingress.class (semverCompare ">= 1.27-0" .Capabilities.KubeVersion.Version) -}}
+ingressClassName: {{ .Values.ingress.class }}
+{{- end -}}
+{{- end -}}
+
+{{/* Helm required labels */}}
+{{- define "helm.labels" -}}
+heritage: {{ .Release.Service }}
+helm.sh/chart: {{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }}
+app.kubernetes.io/name: {{ .Chart.Name }}
+app.kubernetes.io/instance: {{ .Release.Name }}
+app.kubernetes.io/managed-by: {{ .Release.Service }}
+{{ include "k10.common.matchLabels" . }}
+{{- end -}}
+
+{{- define "k10.common.matchLabels" -}}
+app: {{ .Chart.Name }}
+release: {{ .Release.Name }}
+{{- end -}}
+
+{{- define "k10.defaultRBACLabels" -}}
+k10.kasten.io/default-rbac-object: "true"
+{{- end -}}
+
+{{/* Expand the name of the chart. */}}
+{{- define "name" -}}
+{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Create a default fully qualified app name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+*/}}
+{{- define "fullname" -}}
+{{- $name := default .Chart.Name .Values.nameOverride -}}
+{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Create the name of the service account to use
+*/}}
+{{- define "serviceAccountName" -}}
+{{- if and .Values.metering.awsMarketplace ( not .Values.serviceAccount.name ) -}}
+    {{ print "k10-metering" }}
+{{- else if .Values.serviceAccount.create -}}
+    {{ default (include "fullname" .) .Values.serviceAccount.name }}
+{{- else -}}
+    {{ default "default" .Values.serviceAccount.name }}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Create the name of the metering service account to use
+*/}}
+{{- define "meteringServiceAccountName" -}}
+{{- if and .Values.metering.awsManagedLicense ( not .Values.serviceAccount.name ) ( not .Values.metering.serviceAccount.name )  ( not .Values.metering.licenseConfigSecretName ) -}}
+    {{ print "k10-metering" }}
+{{- else -}}
+    {{ default (include "serviceAccountName" .) .Values.metering.serviceAccount.name }}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Prints annotations based on .Values.fqdn.type
+*/}}
+{{- define "dnsAnnotations" -}}
+{{- if .Values.externalGateway.fqdn.name -}}
+{{- if eq "route53-mapper" ( default "" .Values.externalGateway.fqdn.type) }}
+domainName: {{ .Values.externalGateway.fqdn.name | quote }}
+{{- end }}
+{{- if eq "external-dns" (default "" .Values.externalGateway.fqdn.type) }}
+external-dns.alpha.kubernetes.io/hostname: {{ .Values.externalGateway.fqdn.name | quote }}
+{{- end }}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Prometheus scrape config template for k10 services
+*/}}
+{{- define "k10.prometheusScrape" -}}
+{{- $cluster_domain := "" -}}
+{{- with .main.Values.cluster.domainName -}}
+  {{- $cluster_domain = printf ".%s" . -}}
+{{- end -}}
+- job_name: {{ .k10service }}
+  metrics_path: /metrics
+  {{- if eq "aggregatedapis" .k10service }}
+  scheme: https
+  tls_config:
+    insecure_skip_verify: true
+  bearer_token_file: /var/run/secrets/kubernetes.io/serviceaccount/token
+  {{- else }}
+  scheme: http
+  {{- end }}
+  static_configs:
+    - targets:
+      {{- if eq "aggregatedapis" .k10service }}
+      - {{ .k10service }}-svc.{{ .main.Release.Namespace }}.svc{{ $cluster_domain }}:443
+      {{- else }}
+      {{- $service := default .k10service (index (include "get.enabledColocatedServices" . | fromYaml) .k10service).primary }}
+      {{- $port := default .main.Values.service.externalPort (index (include "get.enabledColocatedServices" . | fromYaml) .k10service).port }}
+      - {{ $service }}-svc.{{ .main.Release.Namespace }}.svc{{ $cluster_domain }}:{{ $port }}
+      {{- end }}
+      labels:
+        application: {{ .main.Release.Name }}
+        service: {{ .k10service }}
+{{- end -}}
+
+{{/*
+Prometheus scrape config template for k10 services
+*/}}
+{{- define "k10.prometheusTargetConfig" -}}
+{{- $cluster_domain := "" -}}
+{{- with .main.Values.cluster.domainName -}}
+  {{- $cluster_domain = printf ".%s" . -}}
+{{- end -}}
+- service: {{ .k10service }}
+  metricsPath: /metrics
+  {{- if eq "aggregatedapis" .k10service }}
+  scheme: https
+  tls_config:
+    insecure_skip_verify: true
+  bearer_token_file: /var/run/secrets/kubernetes.io/serviceaccount/token
+  {{- else }}
+  scheme: http
+  {{- end }}
+  {{- $serviceFqdn := "" }}
+  {{- $servicePort := "" }}
+  {{- if eq "aggregatedapis" .k10service -}}
+    {{- $serviceFqdn = printf "%s-svc.%s.svc%s" .k10service .main.Release.Namespace $cluster_domain -}}
+    {{- $servicePort = "443" -}}
+  {{- else -}}
+    {{- $service := default .k10service (index (include "get.enabledColocatedServices" .main | fromYaml) .k10service).primary -}}
+    {{- $port := default .main.Values.service.externalPort (index (include "get.enabledColocatedServices" .main | fromYaml) .k10service).port | toString -}}
+    {{- $serviceFqdn = printf "%s-svc.%s.svc%s" $service .main.Release.Namespace $cluster_domain -}}
+    {{- $servicePort = $port -}}
+  {{- end }}
+  fqdn: {{ $serviceFqdn }}
+  port: {{ $servicePort }}
+  application: {{ .main.Release.Name }}
+{{- end -}}
+
+{{/*
+Expands the name of the Prometheus chart. It is equivalent to what the
+"prometheus.name" template does. It is needed because the referenced values in a
+template are relative to where/when the template is called from, and not where
+the template is defined at. This means that the value of .Chart.Name and
+.Values.nameOverride are different depending on whether the template is called
+from within the Prometheus chart or the K10 chart.
+*/}}
+{{- define "k10.prometheus.name" -}}
+{{- default "prometheus" .Values.prometheus.nameOverride | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Expands the name of the Prometheus service created to expose the prometheus server.
+*/}}
+{{- define "k10.prometheus.service.name" -}}
+{{- default (printf "%s-%s-%s" .Release.Name "prometheus" .Values.prometheus.server.name) .Values.prometheus.server.fullnameOverride }}
+{{- end -}}
+
+{{/*
+Checks if EULA is accepted via cmd
+Enforces eula.company and eula.email as required fields
+returns configMap fields
+*/}}
+{{- define "k10.eula.fields" -}}
+{{- if .Values.eula.accept -}}
+accepted: "true"
+company: {{ required "eula.company is required field if eula is accepted" .Values.eula.company }}
+email: {{ required "eula.email is required field if eula is accepted" .Values.eula.email }}
+{{- else -}}
+accepted: ""
+company: ""
+email: ""
+{{- end }}
+{{- end -}}
+
+{{/*
+Helper to determine the API Domain
+*/}}
+{{- define "apiDomain" -}}
+{{- if .Values.useNamespacedAPI -}}
+kio.{{- replace "-" "." .Release.Namespace -}}
+{{- else -}}
+kio.kasten.io
+{{- end -}}
+{{- end -}}
+
+{{/*
+Get dex image, if user wants to
+install certified version of upstream
+images or not
+*/}}
+
+{{- define "get.dexImage" }}
+  {{- (get .Values.global.images (include "dex.dexImageName" .)) | default (include "dex.dexImage" .)  }}
+{{- end }}
+
+{{- define "dex.dexImage" -}}
+  {{- printf "%s:%s" (include "dex.dexImageRepo" .) (include "dex.dexImageTag" .) }}
+{{- end -}}
+
+{{- define "dex.dexImageRepo" -}}
+  {{- if .Values.global.airgapped.repository }}
+    {{- printf "%s/%s" .Values.global.airgapped.repository (include "dex.dexImageName" .) }}
+  {{- else if .Values.global.azMarketPlace }}
+    {{- printf "%s/%s" .Values.global.azure.images.dex.registry .Values.global.azure.images.dex.image }}
+  {{- else }}
+    {{- printf "%s/%s" .Values.global.image.registry (include "dex.dexImageName" .) }}
+  {{- end }}
+{{- end -}}
+
+{{- define "dex.dexImageName" -}}
+  {{- printf "dex" }}
+{{- end -}}
+
+{{- define "dex.dexImageTag" -}}
+ {{- if .Values.global.azMarketPlace }}
+    {{- print .Values.global.azure.images.dex.tag }}
+ {{- else }}
+  {{- .Values.global.image.tag | default .Chart.AppVersion }}
+ {{- end -}}
+{{- end -}}
+
+{{/*
+  Get dex frontend directory (in the dex image)
+*/}}
+{{- define "k10.dexFrontendDir" -}}
+  {{- $dexImageDict := default $.Values.dexImage dict }}
+  {{- index $dexImageDict "frontendDir" | default "/srv/dex/web" }}
+{{- end -}}
+
+{{/*
+Get the k10tools image.
+*/}}
+{{- define "k10.k10ToolsImage" -}}
+  {{- (get .Values.global.images (include "k10.k10ToolsImageName" .)) | default (include "k10.k10ToolsDefaultImage" .) -}}
+{{- end -}}
+
+{{- define "k10.k10ToolsDefaultImage" -}}
+  {{- printf "%s:%s" (include "k10.k10ToolsImageRepo" .) (include "k10.k10ToolsImageTag" .) -}}
+{{- end -}}
+
+{{- define "k10.k10ToolsImageRepo" -}}
+  {{- if .Values.global.airgapped.repository -}}
+    {{- printf "%s/%s" .Values.global.airgapped.repository (include "k10.k10ToolsImageName" .) -}}
+  {{- else if .Values.global.azMarketPlace -}}
+    {{- printf "%s/%s" .Values.global.azure.images.k10tools.registry .Values.global.azure.images.k10tools.image -}}
+  {{- else -}}
+    {{- printf "%s/%s" .Values.global.image.registry (include "k10.k10ToolsImageName" .) -}}
+  {{- end -}}
+{{- end -}}
+
+{{- define "k10.k10ToolsImageName" -}}
+  {{- print "k10tools" -}}
+{{- end -}}
+
+{{- define "k10.k10ToolsImageTag" -}}
+  {{- if .Values.global.azMarketPlace -}}
+    {{- print .Values.global.azure.images.k10tools.tag -}}
+  {{- else -}}
+    {{- include "get.k10ImageTag" . -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Get the ocpconsoleplugin image.
+*/}}
+{{- define "k10.ocpConsolePluginImage" -}}
+  {{- (get .Values.global.images (include "k10.openShiftConsolePluginImageName" .)) | default (include "k10.ocpConsolePluginDefaultImage" .) -}}
+{{- end -}}
+
+{{- define "k10.ocpConsolePluginDefaultImage" -}}
+  {{- printf "%s:%s" (include "k10.ocpConsolePluginImageRepo" .) (include "get.k10ImageTag" .) -}}
+{{- end -}}
+
+{{- define "k10.ocpConsolePluginImageRepo" -}}
+  {{- if .Values.global.airgapped.repository -}}
+    {{- printf "%s/%s" .Values.global.airgapped.repository (include "k10.openShiftConsolePluginImageName" .) -}}
+  {{- else -}}
+    {{- printf "%s/%s" .Values.global.image.registry (include "k10.openShiftConsolePluginImageName" .) -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Get the datamover image.
+*/}}
+{{- define "get.datamoverImage" }}
+  {{- (get .Values.global.images (include "k10.datamoverImageName" .)) | default (include "k10.datamoverImage" .)  }}
+{{- end }}
+
+{{- define "k10.datamoverImage" -}}
+  {{- printf "%s:%s" (include "k10.datamoverImageRepo" .) (include "k10.datamoverImageTag" .) }}
+{{- end -}}
+
+{{- define "k10.datamoverImageRepo" -}}
+  {{- if .Values.global.airgapped.repository }}
+    {{- printf "%s/%s" .Values.global.airgapped.repository (include "k10.datamoverImageName" .) }}
+  {{- else if .Values.global.azMarketPlace }}
+    {{- printf "%s/%s" .Values.global.azure.images.datamover.registry .Values.global.azure.images.datamover.image }}
+  {{- else }}
+    {{- printf "%s/%s" .Values.global.image.registry (include "k10.datamoverImageName" .) }}
+  {{- end }}
+{{- end -}}
+
+{{- define "k10.datamoverImageName" -}}
+  {{- printf "datamover" }}
+{{- end -}}
+
+{{- define "k10.datamoverImageTag" -}}
+  {{- if .Values.global.azMarketPlace }}
+    {{- print .Values.global.azure.images.datamover.tag }}
+  {{- else }}
+    {{- include "get.k10ImageTag" . }}
+  {{- end }}
+{{- end -}}
+
+{{/*
+Get the metric-sidecar image.
+*/}}
+{{- define "get.metricSidecarImage" }}
+  {{- (get .Values.global.images (include "k10.metricSidecarImageName" .)) | default (include "k10.metricSidecarImage" .)  }}
+{{- end }}
+
+{{- define "k10.metricSidecarImage" -}}
+  {{- printf "%s:%s" (include "k10.metricSidecarImageRepo" .) (include "k10.metricSidecarImageTag" .) }}
+{{- end -}}
+
+{{- define "k10.metricSidecarImageRepo" -}}
+  {{- if .Values.global.airgapped.repository }}
+    {{- printf "%s/%s" .Values.global.airgapped.repository (include "k10.metricSidecarImageName" .) }}
+  {{- else if .Values.global.azMarketPlace }}
+    {{- printf "%s/%s" (.Values.global.azure.images.metricsidecar.registry) (.Values.global.azure.images.metricsidecar.image) }}
+  {{- else }}
+    {{- printf "%s/%s" .Values.global.image.registry (include "k10.metricSidecarImageName" .) }}
+  {{- end }}
+{{- end -}}
+
+{{- define "k10.metricSidecarImageName" -}}
+  {{- printf "metric-sidecar" }}
+{{- end -}}
+
+{{- define "k10.metricSidecarImageTag" -}}
+  {{- if .Values.global.azMarketPlace }}
+    {{- print .Values.global.azure.images.metricsidecar.tag }}
+  {{- else }}
+    {{- include "get.k10ImageTag" . }}
+  {{- end }}
+{{- end -}}
+
+{{/*
+Check if AWS creds are specified
+*/}}
+{{- define "check.awscreds" -}}
+{{- if or .Values.secrets.awsAccessKeyId .Values.secrets.awsSecretAccessKey -}}
+{{- print true -}}
+{{- end -}}
+{{- end -}}
+
+{{- define "check.awsSecretName" -}}
+{{- if .Values.secrets.awsClientSecretName -}}
+{{- print true -}}
+{{- end -}}
+{{- end -}}
+
+{{- define "check.azureFederatedIdentity" -}}
+{{- if and .Values.azure.useFederatedIdentity .Values.secrets.azureClientId -}}
+{{- print true -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Check if Azure MSI with Default ID is specified
+*/}}
+{{- define "check.azureMSIWithDefaultID" -}}
+{{- if .Values.azure.useDefaultMSI -}}
+{{- print true -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Check if Azure MSI with a specific Client ID is specified
+*/}}
+{{- define "check.azureMSIWithClientID" -}}
+{{- if and (not (or .Values.secrets.azureClientSecret .Values.secrets.azureTenantId)) .Values.secrets.azureClientId -}}
+{{- print true -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Check if Azure ClientSecret creds are specified
+*/}}
+{{- define "check.azureClientSecretCreds" -}}
+{{- if and (and .Values.secrets.azureTenantId .Values.secrets.azureClientId) .Values.secrets.azureClientSecret -}}
+{{- print true -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Checks and enforces only 1 set of azure creds is specified
+*/}}
+{{- define "enforce.singleazurecreds" -}}
+{{- if and (eq (include "check.azureFederatedIdentity" .) "true") (eq (include "check.azureMSIWithDefaultID" .) "true") -}}
+{{- fail "useDefaultMSI is set to true, but FederatedIdentity is also set to true. Please choose one." -}}
+{{- end -}}
+{{- if and (eq (include "check.azureMSIWithClientID" .) "true") (eq (include "check.azureMSIWithDefaultID" .) "true") -}}
+{{- fail "useDefaultMSI is set to true, but an additional ClientID is also provided. Please choose one." -}}
+{{- end -}}
+{{ if and ( or (eq (include "check.azureClientSecretCreds" .) "true") (eq (include "check.azuresecret" .) "true" )) (or (eq (include "check.azureMSIWithClientID" .) "true") (eq (include "check.azureMSIWithDefaultID" .) "true")) }}
+{{- fail "Both Azure ClientSecret and Managed Identity creds are available, but only one is allowed. Please choose one." }}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Get the kanister-tools image.
+*/}}
+{{- define "get.kanisterToolsImage" -}}
+  {{- (get .Values.global.images (include "kan.kanisterToolsImageName" .)) | default (include "kan.kanisterToolsImage" .)  }}
+{{- end }}
+
+{{- define "kan.kanisterToolsImage" -}}
+  {{- printf "%s:%s" (include "kan.kanisterToolsImageRepo" .) (include "kan.kanisterToolsImageTag" .) }}
+{{- end -}}
+
+{{- define "kan.kanisterToolsImageRepo" -}}
+  {{- if .Values.global.airgapped.repository }}
+    {{- printf "%s/%s" .Values.global.airgapped.repository (include "kan.kanisterToolsImageName" .) }}
+  {{- else if .Values.global.azMarketPlace }}
+    {{- printf "%s/%s" .Values.global.azure.images.kanistertools.registry .Values.global.azure.images.kanistertools.image }}
+  {{- else }}
+    {{- printf "%s/%s" .Values.global.image.registry (include "kan.kanisterToolsImageName" .) }}
+  {{- end }}
+{{- end -}}
+
+{{- define "kan.kanisterToolsImageName" -}}
+  {{- printf "kanister-tools" }}
+{{- end -}}
+
+{{- define "kan.kanisterToolsImageTag" -}}
+ {{- if .Values.global.azMarketPlace }}
+    {{- print .Values.global.azure.images.kanistertools.tag }}
+  {{- else }}
+    {{- include "get.k10ImageTag" . }}
+  {{- end }}
+{{- end -}}
+
+{{/*
+Check if Google Workload Identity Federation is enabled
+*/}}
+{{- define "check.gwifenabled" -}}
+{{- if .Values.google.workloadIdentityFederation.enabled -}}
+{{- print true -}}
+{{- end -}}
+{{- end -}}
+
+
+{{/*
+Check if Google Workload Identity Federation Identity Provider is set
+*/}}
+{{- define "check.gwifidptype" -}}
+{{- if .Values.google.workloadIdentityFederation.idp.type -}}
+{{- print true -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Fail if Google Workload Identity Federation is enabled but no Identity Provider is set
+*/}}
+{{- define "validate.gwif.idp.type" -}}
+{{- if and (eq (include "check.gwifenabled" .) "true") (ne (include "check.gwifidptype" .) "true") -}}
+  {{- fail "Google Workload Federation is enabled but helm flag for idp type is missing. Please set helm value google.workloadIdentityFederation.idp.type" -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Check if K8S Bound Service Account Token (aka Projected Service Account Token) is needed,
+which is when GWIF is enabled and the IdP is kubernetes
+*/}}
+{{- define "check.projectSAToken" -}}
+{{- if and (eq (include "check.gwifenabled" .) "true") (eq .Values.google.workloadIdentityFederation.idp.type "kubernetes") -}}
+{{- print true -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Check if the audience that the bound service account token is intended for is set
+*/}}
+{{- define "check.gwifidpaud" -}}
+{{- if .Values.google.workloadIdentityFederation.idp.aud -}}
+{{- print true -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Fail if Service Account token projection is expected but no indented Audience is set
+*/}}
+{{- define "validate.gwif.idp.aud" -}}
+{{- if and (eq (include "check.projectSAToken" .) "true") (ne (include "check.gwifidpaud" .) "true") -}}
+  {{- fail "Kubernetes is set as the Identity Provider but an intended Audience is missing. Please set helm value google.workloadIdentityFederation.idp.aud" -}}
+{{- end -}}
+{{- end -}}
+
+
+{{/*
+Check if Google creds are specified
+*/}}
+{{- define "check.googlecreds" -}}
+{{- if .Values.secrets.googleApiKey -}}
+  {{- if eq (include "check.isBase64" .Values.secrets.googleApiKey) "false" -}}
+    {{- fail "secrets.googleApiKey must be base64 encoded" -}}
+  {{- end -}}
+  {{- print true -}}
+{{- end -}}
+{{- end -}}
+
+{{- define "check.googleCredsSecret" -}}
+{{- if .Values.secrets.googleClientSecretName -}}
+    {{- print true -}}
+{{- end -}}
+{{- end -}}
+
+{{- define "check.googleCredsOrSecret" -}}
+{{- if or (eq (include "check.googlecreds" .) "true") (eq (include "check.googleCredsSecret" .) "true")}}
+    {{- print true -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Check if Google Project ID is not set without Google API Key
+*/}}
+{{- define "check.googleproject" -}}
+{{- if .Values.secrets.googleProjectId -}}
+  {{- if not .Values.secrets.googleApiKey -}}
+    {{- print false -}}
+  {{- else -}}
+    {{- print true -}}
+  {{- end -}}
+{{- else -}}
+  {{- print true -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Check if Azure creds are specified
+*/}}
+{{- define "check.azurecreds" -}}
+{{- if or (eq (include "check.azureClientSecretCreds" .) "true") ( or (eq (include "check.azureMSIWithClientID" .) "true") (eq (include "check.azureMSIWithDefaultID" .) "true")) -}}
+{{- print true -}}
+{{- end -}}
+{{- end -}}
+
+{{- define "check.azuresecret" -}}
+{{- if .Values.secrets.azureClientSecretName }}
+{{- print true -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Check if Vsphere creds are specified
+*/}}
+{{- define "check.vspherecreds" -}}
+{{- if or (or .Values.secrets.vsphereEndpoint .Values.secrets.vsphereUsername) .Values.secrets.vspherePassword -}}
+{{- print true -}}
+{{- end -}}
+{{- end -}}
+
+{{- define "check.vsphereClientSecret" -}}
+{{- if .Values.secrets.vsphereClientSecretName -}}
+{{- print true -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Check if Vault token secret creds are specified
+*/}}
+{{- define "check.vaulttokenauth" -}}
+{{- if .Values.vault.secretName -}}
+{{- print true -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Check if K8s role is specified
+*/}}
+{{- define "check.vaultk8sauth" -}}
+{{- if .Values.vault.role -}}
+{{- print true -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Check if Vault creds for token or k8s auth are specified
+*/}}
+{{- define "check.vaultcreds" -}}
+{{- if or (eq (include "check.vaulttokenauth" .) "true") (eq (include "check.vaultk8sauth" .) "true") -}}
+{{- print true -}}
+{{- end -}}
+{{- end -}}
+
+
+{{/*
+Checks and enforces only 1 set of cloud creds is specified
+*/}}
+{{- define "enforce.singlecloudcreds" -}}
+{{- $count := dict "count" (int 0) -}}
+{{- $main := . -}}
+{{- range $ind, $cloud_provider := include "k10.cloudProviders" . | splitList " " }}
+{{ if eq (include (printf "check.%screds" $cloud_provider) $main) "true" }}
+{{ $c := add1 $count.count | set $count "count" }}
+{{ if gt $count.count 1 }}
+{{- fail "Credentials for different cloud providers were provided but only one is allowed. Please verify your .secrets.* values." }}
+{{ end }}
+{{ end }}
+{{- end }}
+{{- end -}}
+
+{{/*
+Converts .Values.features into k10-features: map[string]: "value"
+*/}}
+{{- define "k10.features" -}}
+{{ range $n, $v := .Values.features }}
+{{ $n }}: {{ $v | quote -}}
+{{ end }}
+{{- end -}}
+
+{{/*
+Checks if string is base64 encoded
+*/}}
+{{- define "check.isBase64" -}}
+{{- not (. | b64dec | contains "illegal base64 data") -}}
+{{- end -}}
+
+{{/*
+Returns a license base64 either from file or from values
+or prints it for awsmarketplace or awsManagedLicense
+*/}}
+{{- define "k10.getlicense" -}}
+{{- if .Values.metering.awsMarketplace -}}
+  {{- print "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" -}}
+{{- else if or ( .Values.metering.awsManagedLicense ) ( .Values.metering.licenseConfigSecretName ) -}}
+  {{- print "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" -}}
+{{- else -}}
+  {{- $license := .Values.license -}}
+  {{- if eq (include "check.isBase64" $license) "false" -}}
+    {{- $license = $license | b64enc -}}
+  {{- end -}}
+  {{- print (default (.Files.Get "license") $license) -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Returns resource usage given a pod name and container name
+*/}}
+{{- define "k10.resource.request" -}}
+{{- $resourceDefaultList := (include "k10.serviceResources" .main | fromYaml) }}
+{{- $podName := .k10_service_pod_name }}
+{{- $containerName := .k10_service_container_name }}
+{{- $resourceValue := "" }}
+{{- if (hasKey $resourceDefaultList $podName) }}
+    {{- $resourceValue = index (index $resourceDefaultList $podName) $containerName }}
+{{- end }}
+{{- if (hasKey .main.Values.resources $podName) }}
+  {{- if (hasKey (index .main.Values.resources $podName) $containerName) }}
+    {{- $resourceValue = index (index .main.Values.resources $podName) $containerName }}
+  {{- end }}
+{{- end }}
+{{- /* If no resource usage value was provided, do not include the resources section */}}
+{{- /* This allows users to set unlimited resources by providing a service key that is empty (e.g. `--set resources.<service>=`) */}}
+{{- if $resourceValue }}
+resources:
+{{- $resourceValue | toYaml | trim | nindent 2 }}
+{{- else if eq .main.Release.Namespace "default" }}
+resources:
+  requests:
+    cpu: "0.01"
+{{- end }}
+{{- end -}}
+
+{{/*
+Adds priorityClassName field according to helm values.
+*/}}
+{{- define "k10.priorityClassName" }}
+{{- $deploymentName := .k10_deployment_name }}
+{{- $defaultPriorityClassName := default "" .main.Values.defaultPriorityClassName }}
+{{- $priorityClassName := $defaultPriorityClassName }}
+
+{{- if and (hasKey .main.Values "priorityClassName") (hasKey .main.Values.priorityClassName $deploymentName) }}
+  {{- $priorityClassName = index .main.Values.priorityClassName $deploymentName }}
+{{- end -}}
+
+{{- if $priorityClassName }}
+priorityClassName: {{ $priorityClassName }}
+{{- end }}
+
+{{- end }}{{/* define "k10.priorityClassName" */}}
+
+{{- define "kanisterToolsResources" }}
+{{- if .Values.genericVolumeSnapshot.resources.requests.memory }}
+KanisterToolsMemoryRequests: {{ .Values.genericVolumeSnapshot.resources.requests.memory | quote }}
+{{- end }}
+{{- if .Values.genericVolumeSnapshot.resources.requests.cpu }}
+KanisterToolsCPURequests: {{ .Values.genericVolumeSnapshot.resources.requests.cpu | quote }}
+{{- end }}
+{{- if .Values.genericVolumeSnapshot.resources.limits.memory }}
+KanisterToolsMemoryLimits: {{ .Values.genericVolumeSnapshot.resources.limits.memory | quote }}
+{{- end }}
+{{- if .Values.genericVolumeSnapshot.resources.limits.cpu }}
+KanisterToolsCPULimits: {{ .Values.genericVolumeSnapshot.resources.limits.cpu | quote }}
+{{- end }}
+{{- end }}
+
+{{- define "workerPodMetricSidecarResources" }}
+{{- if not (quote .Values.workerPodMetricSidecar.resources.requests.memory | empty) }}
+WorkerPodMetricSidecarMemoryRequest: {{ .Values.workerPodMetricSidecar.resources.requests.memory | quote }}
+{{- else if not (quote .Values.kanisterPodMetricSidecar.resources.requests.memory | empty) }}
+WorkerPodMetricSidecarMemoryRequest: {{ .Values.kanisterPodMetricSidecar.resources.requests.memory | quote }}
+{{- end }}
+{{- if not (quote .Values.workerPodMetricSidecar.resources.requests.cpu | empty) }}
+WorkerPodMetricSidecarCPURequest: {{ .Values.workerPodMetricSidecar.resources.requests.cpu | quote }}
+{{- else if not (quote .Values.kanisterPodMetricSidecar.resources.requests.cpu | empty) }}
+WorkerPodMetricSidecarCPURequest: {{ .Values.kanisterPodMetricSidecar.resources.requests.cpu | quote }}
+{{- end }}
+{{- if not (quote .Values.workerPodMetricSidecar.resources.limits.memory | empty) }}
+WorkerPodMetricSidecarMemoryLimit: {{ .Values.workerPodMetricSidecar.resources.limits.memory | quote }}
+{{- else if not (quote .Values.kanisterPodMetricSidecar.resources.limits.memory | empty) }}
+WorkerPodMetricSidecarMemoryLimit: {{ .Values.kanisterPodMetricSidecar.resources.limits.memory | quote }}
+{{- end }}
+{{- if not (quote .Values.workerPodMetricSidecar.resources.limits.cpu | empty) }}
+WorkerPodMetricSidecarCPULimit: {{ .Values.workerPodMetricSidecar.resources.limits.cpu | quote }}
+{{- else if not (quote .Values.kanisterPodMetricSidecar.resources.limits.cpu | empty) }}
+WorkerPodMetricSidecarCPULimit: {{ .Values.kanisterPodMetricSidecar.resources.limits.cpu | quote }}
+{{- end }}
+{{- end }}
+
+{{- define "workerPodResourcesCRD" }}
+{{- if .Values.workerPodCRDs.resourcesRequests.maxMemory }}
+workerPodMaxMemoryRequest: {{ .Values.workerPodCRDs.resourcesRequests.maxMemory | quote }}
+{{- end }}
+{{- if .Values.workerPodCRDs.resourcesRequests.maxCPU }}
+workerPodMaxCPURequest: {{ .Values.workerPodCRDs.resourcesRequests.maxCPU | quote }}
+{{- end }}
+{{- if .Values.workerPodCRDs.defaultActionPodSpec }}
+workerPodDefaultAPSName: {{ .Values.workerPodCRDs.defaultActionPodSpec | quote }}
+{{- end }}
+{{- end }}
+
+{{- define "get.kanisterPodCustomLabels" -}}
+{{- if .Values.kanisterPodCustomLabels }}
+KanisterPodCustomLabels: {{ .Values.kanisterPodCustomLabels | quote }}
+{{- end }}
+{{- end }}
+
+{{- define "get.gvsActivationToken" }}
+{{- if .Values.genericStorageBackup.token }}
+GVSActivationToken: {{ .Values.genericStorageBackup.token | quote }}
+{{- end }}
+{{- end }}
+
+{{- define "get.kanisterPodCustomAnnotations" -}}
+{{- if .Values.kanisterPodCustomAnnotations }}
+KanisterPodCustomAnnotations: {{ .Values.kanisterPodCustomAnnotations | quote }}
+{{- end }}
+{{- end }}
+
+{{/*
+Lookup and return only enabled colocated services
+*/}}
+{{- define "get.enabledColocatedSvcList" -}}
+{{- $enabledColocatedSvcList := dict }}
+{{- $colocatedList := include "get.enabledColocatedServiceLookup" . | fromYaml }}
+{{- range $primary, $secondaryList := $colocatedList }}
+  {{- $enabledSecondarySvcList := list }}
+  {{- range $skip, $secondary := $secondaryList }}
+    {{- if or (not (hasKey $.Values.optionalColocatedServices $secondary)) ((index $.Values.optionalColocatedServices $secondary).enabled) }}
+      {{- $enabledSecondarySvcList = append $enabledSecondarySvcList $secondary }}
+    {{- end }}
+  {{- end }}
+  {{- if gt (len $enabledSecondarySvcList) 0 }}
+    {{- $enabledColocatedSvcList = set $enabledColocatedSvcList $primary $enabledSecondarySvcList }}
+  {{- end }}
+{{- end }}
+{{- $enabledColocatedSvcList | toYaml | trim | nindent 0}}
+{{- end -}}
+
+{{- define "get.serviceContainersInPod" -}}
+{{- $podService := .k10_service_pod }}
+{{- $colocatedList := include "get.enabledColocatedServices" .main | fromYaml }}
+{{- $colocatedLookupByPod := include "get.enabledColocatedSvcList" .main | fromYaml }}
+{{- $containerList := list $podService }}
+{{- if hasKey $colocatedLookupByPod $podService }}
+  {{- $containerList = concat $containerList (index $colocatedLookupByPod $podService)}}
+{{- end }}
+{{- $containerList | join " " }}
+{{- end -}}
+
+{{- define "get.statefulRestServicesInPod" -}}
+{{- $statefulRestSvcsInPod := list }}
+{{- $podService := .k10_service_pod }}
+{{- $containerList := (dict "main" .main "k10_service_pod" $podService | include "get.serviceContainersInPod" | splitList " ") }}
+{{- if .main.Values.global.persistence.enabled }}
+  {{- range $skip, $containerInPod := $containerList }}
+    {{- $isRestService := has $containerInPod (include "get.enabledRestServices" $.main | splitList " ") }}
+    {{- $isStatelessService := has $containerInPod (include "get.enabledStatelessServices" $.main | splitList " ") }}
+    {{- if and $isRestService (not $isStatelessService) }}
+      {{- $statefulRestSvcsInPod = append $statefulRestSvcsInPod $containerInPod }}
+    {{- end }}
+  {{- end }}
+{{- end }}
+{{- $statefulRestSvcsInPod | join " " }}
+{{- end -}}
+
+{{- define "k10.prefixPath" -}}
+  {{- if .Values.route.enabled -}}
+    /{{ .Values.route.path | default .Release.Name | trimPrefix "/" | trimSuffix "/" }}
+  {{- else if .Values.ingress.create -}}
+    /{{ .Values.ingress.urlPath | default .Release.Name | trimPrefix "/" | trimSuffix "/" }}
+  {{- else -}}
+    /{{ .Release.Name }}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Check if encryption keys are specified
+*/}}
+{{- define "check.primaryKey" -}}
+{{- if (or .Values.encryption.primaryKey.awsCmkKeyId .Values.encryption.primaryKey.vaultTransitKeyName) -}}
+{{- print true -}}
+{{- end -}}
+{{- end -}}
+
+{{- define "check.validateImagePullSecrets" -}}
+    {{/* Validate image pull secrets if a custom Docker config is provided */}}
+    {{- if (or .Values.secrets.dockerConfig .Values.secrets.dockerConfigPath ) -}}
+	{{- if (and .Values.prometheus.server.enabled (not .Values.global.imagePullSecret) (not .Values.prometheus.imagePullSecrets)) -}}
+	    {{ fail "A custom Docker config was provided, but Prometheus is not configured to use it. Please check that global.imagePullSecret is set correctly." }}
+	{{- end -}}
+    {{- end -}}
+{{- end -}}
+
+{{- define "k10.imagePullSecrets" }}
+{{- $imagePullSecrets := list .Values.global.imagePullSecret }}{{/* May be empty, but the compact below will handle that */}}
+{{- if (or .Values.secrets.dockerConfig .Values.secrets.dockerConfigPath) }}
+  {{- $imagePullSecrets = concat $imagePullSecrets (list "k10-ecr") }}
+{{- end }}
+{{- $imagePullSecrets = $imagePullSecrets | compact | uniq }}
+
+{{- if $imagePullSecrets }}
+imagePullSecrets:
+  {{- range $imagePullSecrets }}
+  {{/* Check if the name is not empty string */}}
+  - name: {{ . }}
+  {{- end }}
+{{- end }}
+{{- end }}
+
+{{/*
+k10.imagePullSecretNames gets us just the secret names that are going be used
+as imagePullSecrets in the k10 services.
+*/}}
+{{- define "k10.imagePullSecretNames" }}
+{{- $pullSecretsSpec := (include "k10.imagePullSecrets" . ) | fromYaml }}
+{{- if $pullSecretsSpec }}
+  {{- range $pullSecretsSpec.imagePullSecrets }}
+    {{- $secretName := . }}
+    {{- printf "%s " ( $secretName.name) }}
+  {{- end}}
+{{- end}}
+{{- end }}
+
+{{/*
+Below helper template functions are referred from chart
+https://github.com/prometheus-community/helm-charts/blob/main/charts/prometheus/templates/_helpers.tpl
+*/}}
+
+{{/*
+Return kubernetes version
+*/}}
+{{- define "k10.kubeVersion" -}}
+  {{- default .Capabilities.KubeVersion.Version (regexFind "v[0-9]+\\.[0-9]+\\.[0-9]+" .Capabilities.KubeVersion.Version) -}}
+{{- end -}}
+
+{{/*
+Return the appropriate apiVersion for ingress.
+*/}}
+{{- define "ingress.apiVersion" -}}
+  {{- if and (.Capabilities.APIVersions.Has "networking.k8s.io/v1") (semverCompare ">= 1.19.x" (include "k10.kubeVersion" .)) -}}
+      {{- print "networking.k8s.io/v1" -}}
+  {{- else if .Capabilities.APIVersions.Has "extensions/v1beta1" -}}
+    {{- print "extensions/v1beta1" -}}
+  {{- else -}}
+    {{- print "networking.k8s.io/v1beta1" -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Is ingress part of stable APIVersion.
+*/}}
+{{- define "ingress.isStable" -}}
+  {{- eq (include "ingress.apiVersion" .) "networking.k8s.io/v1" -}}
+{{- end -}}
+
+{{/*
+Check if `ingress.defaultBackend` is properly formatted when specified.
+*/}}
+{{- define "check.ingress.defaultBackend" -}}
+  {{- if .Values.ingress.defaultBackend -}}
+    {{- if and .Values.ingress.defaultBackend.service.enabled .Values.ingress.defaultBackend.resource.enabled -}}
+      {{- fail "Both `service` and `resource` cannot be enabled in the `ingress.defaultBackend`. Provide only one." -}}
+    {{- end -}}
+    {{- if .Values.ingress.defaultBackend.service.enabled -}}
+      {{- if and (not .Values.ingress.defaultBackend.service.port.name) (not .Values.ingress.defaultBackend.service.port.number) -}}
+        {{- fail "Provide either `name` or `number` in the `ingress.defaultBackend.service.port`." -}}
+      {{- end -}}
+      {{- if and .Values.ingress.defaultBackend.service.port.name .Values.ingress.defaultBackend.service.port.number -}}
+        {{- fail "Both `name` and `number` cannot be specified in the `ingress.defaultBackend.service.port`. Provide only one." -}}
+      {{- end -}}
+    {{- end -}}
+  {{- end -}}
+{{- end -}}
+
+{{- define "check.validatePrometheusConfig" -}}
+    {{if and ( and .Values.global.prometheus.external.host .Values.global.prometheus.external.port) .Values.prometheus.server.enabled}}
+        {{ fail "Both internal and external Prometheus configs are not allowed at same time"}}
+    {{- end -}}
+{{- end -}}
+
+{{/*
+Defines unique ID to be assigned to all the K10 ambassador resources.
+This will ensure that the K10's ambassador does not conflict with any other ambassador instances
+running in the same cluster.
+*/}}
+{{- define "k10.ambassadorId" -}}
+"kasten.io/k10"
+{{- end -}}
+
+{{/* Check that image.values are not set. */}}
+{{- define "image.values.check" -}}
+  {{- if not (empty .main.Values.image) }}
+
+    {{- $registry := .main.Values.image.registry }}
+    {{- $repository := .main.Values.image.repository }}
+    {{- if or $registry $repository }}
+      {{- $registry = coalesce $registry "gcr.io" }}
+      {{- $repository = coalesce $repository "kasten-images" }}
+
+      {{- $oldCombinedRegistry := "" }}
+      {{- if hasPrefix $registry $repository }}
+        {{- $oldCombinedRegistry = $repository }}
+      {{- else }}
+        {{- $oldCombinedRegistry = printf "%s/%s" $registry $repository }}
+      {{- end }}
+
+      {{- if ne $oldCombinedRegistry .main.Values.global.image.registry }}
+        {{- fail "Setting image.registry and image.repository is no longer supported use global.image.registry instead" }}
+      {{- end }}
+    {{- end }}
+
+    {{- $tag := .main.Values.image.tag }}
+    {{- if $tag }}
+      {{- if ne $tag .main.Values.global.image.tag }}
+        {{- fail "Setting image.tag is no longer supported use global.image.tag instead" }}
+      {{- end }}
+    {{- end }}
+
+    {{- $pullPolicy := .main.Values.image.pullPolicy }}
+    {{- if $pullPolicy }}
+      {{- if ne $pullPolicy .main.Values.global.image.pullPolicy }}
+        {{- fail "Setting image.pullPolicy is no longer supported use global.image.pullPolicy instead" }}
+      {{- end }}
+    {{- end }}
+
+  {{- end }}
+{{- end -}}
+
+{{/* Used to verify if Ironbank is enabled */}}
+{{- define "ironbank.enabled" -}}
+  {{- if (.Values.global.ironbank | default dict).enabled -}}
+    {{- print true -}}
+  {{- end -}}
+{{- end -}}
+
+{{/* Get the K10 image tag. Fails if not set correctly */}}
+{{- define "get.k10ImageTag" -}}
+  {{- $imageTag := coalesce .Values.global.image.tag (include "k10.imageTag" .) }}
+  {{- if not $imageTag }}
+      {{- fail "global.image.tag must be set because helm chart does not include a default tag." }}
+  {{- else }}
+      {{- $imageTag }}
+  {{- end }}
+{{- end -}}
+
+{{- define "get.initImage" -}}
+  {{- (get .Values.global.images (include "init.ImageName" .)) | default (include "init.Image" .)  }}
+{{- end -}}
+
+{{- define "init.Image" -}}
+  {{- printf "%s:%s" (include "init.ImageRepo" .) (include "get.k10ImageTag" .) }}
+{{- end -}}
+
+{{- define "init.ImageRepo" -}}
+  {{- if .Values.global.airgapped.repository }}
+    {{- printf "%s/%s" .Values.global.airgapped.repository (include "init.ImageName" .) }}
+  {{- else if .main.Values.global.azMarketPlace }}
+    {{- printf "%s/%s" .Values.global.azure.images.init.registry .Values.global.azure.images.init.image }}
+  {{- else }}
+    {{- printf "%s/%s" .Values.global.image.registry (include "init.ImageName" .) }}
+  {{- end }}
+{{- end -}}
+
+{{- define "init.ImageName" -}}
+  {{- printf "init" }}
+{{- end -}}
+
+{{- define "k10.splitImage" -}}
+  {{- $split_repo_tag_and_hash := .image | splitList "@" -}}
+  {{- $split_repo_and_tag := $split_repo_tag_and_hash | first | splitList ":" -}}
+  {{- $repo := $split_repo_and_tag | first -}}
+
+  {{- /* Error if there are extra pieces we don't understand in the image */ -}}
+  {{- $split_repo_tag_and_hash_len := $split_repo_tag_and_hash | len -}}
+  {{- $split_repo_and_tag_len := $split_repo_and_tag | len -}}
+  {{- if or (gt $split_repo_tag_and_hash_len 2) (gt $split_repo_and_tag_len 2) -}}
+    {{- fail (printf "Unsupported image format: %q (%s)" .image .path) -}}
+  {{- end -}}
+
+  {{- $digest := $split_repo_tag_and_hash | rest | first -}}
+  {{- $tag := $split_repo_and_tag | rest | first -}}
+
+  {{- $sha := "" -}}
+  {{- if $digest -}}
+    {{- if not ($digest | hasPrefix "sha256:") -}}
+      {{- fail (printf "Unsupported image ...@hash type: %q (%s)" .image .path) -}}
+    {{- end -}}
+    {{- $sha = $digest | trimPrefix "sha256:" }}
+  {{- end -}}
+
+  {{- /* Split out the registry if the first component of the repo contains a "." */ -}}
+  {{- $registry := "" }}
+  {{- $split_repo := $repo | splitList "/" -}}
+  {{- if first $split_repo | contains "." -}}
+    {{- $registry = first $split_repo -}}
+    {{- $split_repo = rest $split_repo -}}
+  {{- end -}}
+  {{- $repo = $split_repo | join "/" -}}
+
+  {{-
+    (dict
+      "registry" $registry
+      "repository" $repo
+      "tag" ($tag | default "")
+      "digest" ($digest | default "")
+      "sha" ($sha | default "")
+    ) | toJson
+  -}}
+{{- end -}}
+
+{{/* Fail if Ironbank is enabled and images we don't support are turned on  */}}
+{{- define "k10.fail.ironbankRHMarketplace" -}}
+  {{- if and (include "ironbank.enabled" .) (.Values.global.rhMarketPlace) -}}
+    {{- fail "global.ironbank.enabled and global.rhMarketPlace cannot both be enabled at the same time" -}}
+  {{- end -}}
+{{- end -}}
+
+{{/* Fail if Ironbank is enabled and images we don't support are turned on  */}}
+{{- define "k10.fail.ironbankGrafana" -}}
+  {{- if (include "ironbank.enabled" .) -}}
+    {{- range $key, $value := .Values.grafana.sidecar -}}
+      {{/*
+        https://go.dev/doc/go1.18: the "and" used to evaluate all conditions and not terminate early
+        if a predicate was met, so we must have the below as their own conditional for any customers
+        used go version < 1.18.
+       */}}
+      {{- if kindIs "map" $value -}}
+        {{- if hasKey $value "enabled" -}}
+          {{- if $value.enabled -}}
+            {{- fail (printf "Ironbank deployment does not support grafana sidecar %s" $key) -}}
+          {{- end -}}
+        {{- end -}}
+      {{- end -}}
+    {{- end -}}
+  {{- end -}}
+{{- end -}}
+
+{{/* Fail if Ironbank is enabled and images we don't support are turned on  */}}
+{{- define "k10.fail.ironbankPrometheus" -}}
+  {{- if (include "ironbank.enabled" .) -}}
+    {{- $prometheusDict := pick .Values.prometheus "alertmanager" "kube-state-metrics" "prometheus-node-exporter" "prometheus-pushgateway" -}}
+    {{- range $key, $value := $prometheusDict -}}
+      {{/*
+        https://go.dev/doc/go1.18: the "and" used to evaluate all conditions and not terminate early
+        if a predicate was met, so we must have the below as their own conditional for any customers
+        used go version < 1.18.
+       */}}
+      {{- if kindIs "map" $value -}}
+        {{- if hasKey $value "enabled" -}}
+          {{- if $value.enabled -}}
+            {{- fail (printf "Ironbank deployment does not support prometheus %s" $key) -}}
+          {{- end -}}
+        {{- end -}}
+      {{- end -}}
+    {{- end -}}
+  {{- end -}}
+{{- end -}}
+
+{{/* Fail if FIPS is enabled and Prometheus is turned on  */}}
+{{- define "k10.fail.fipsPrometheus" -}}
+  {{- if and (.Values.fips.enabled) (.Values.prometheus.server.enabled) -}}
+    {{- fail "fips.enabled and prometheus.server.enabled cannot both be enabled at the same time" -}}
+  {{- end -}}
+{{- end -}}
+
+{{/* Check to see whether SIEM logging is enabled */}}
+{{- define "k10.siemEnabled" -}}
+  {{- if or .Values.siem.logging.cluster.enabled .Values.siem.logging.cloud.awsS3.enabled -}}
+    {{- true -}}
+  {{- end -}}
+{{- end -}}
+
+{{/* Determine if logging should go to filepath instead of stdout */}}
+{{- define "k10.siemLoggingClusterFile" -}}
+  {{- if .Values.siem.logging.cluster.enabled -}}
+    {{- if (.Values.siem.logging.cluster.file | default dict).enabled -}}
+      {{- .Values.siem.logging.cluster.file.path | default "" -}}
+    {{- end -}}
+  {{- end -}}
+{{- end -}}
+
+{{/* Determine if a max file size should be used */}}
+{{- define "k10.siemLoggingClusterFileSize" -}}
+  {{- if .Values.siem.logging.cluster.enabled -}}
+    {{- if (.Values.siem.logging.cluster.file | default dict).enabled -}}
+      {{- .Values.siem.logging.cluster.file.size | default "" -}}
+    {{- end -}}
+  {{- end -}}
+{{- end -}}
+
+{{/* Returns a generated name for the OpenShift Service Account secret */}}
+{{- define "get.openshiftServiceAccountSecretName" -}}
+  {{ printf "%s-k10-secret" (include "get.openshiftServiceAccountName" .) | quote }}
+{{- end -}}
+
+{{/*
+Returns a generated name for the OpenShift Service Account if a service account name
+is not configuredby the user using the helm value auth.openshift.serviceAccount
+*/}}
+{{- define "get.openshiftServiceAccountName" -}}
+  {{ default (include "k10.dexServiceAccountName" .) .Values.auth.openshift.serviceAccount}}
+{{- end -}}
+
+{{/*
+Returns the required environment variables to enforce FIPS mode using
+the Microsoft Go toolchain and Red Hat's OpenSSL.
+*/}}
+{{- define "k10.enforceFIPSEnvironmentVariables" }}
+- name: GOFIPS
+  value: "1"
+- name: OPENSSL_FORCE_FIPS_MODE
+  value: "1"
+{{- if .Values.fips.disable_ems }}
+- name: KASTEN_CRYPTO_POLICY
+  value: disable_ems
+{{- end }}
+{{- end }}
+
+{{/*
+Returns a billing identifier label to be added to workloads for azure marketplace offer
+*/}}
+{{- define "k10.azMarketPlace.billingIdentifier" -}}
+  {{- if .Values.global.azMarketPlace -}}
+    azure-extensions-usage-release-identifier: {{.Release.Name}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Returns the externally configured grafana URL
+*/}}
+{{- define "k10.grafanaUrl" -}}
+  {{- if (.Values.grafana.external.url) }}
+    {{- .Values.grafana.external.url }}
+  {{- end }}
+{{- end }}
+
+{{/* Fail if internal logging is enabled and fluentbit endpoint is specified, otherwise return the fluentbit endpoint even if its empty  */}}
+{{- define "k10.fluentbitEndpoint" -}}
+  {{- if and (.Values.logging.fluentbit_endpoint) (.Values.logging.internal) -}}
+    {{- fail "logging.fluentbit_endpoint cannot be set if logging.internal is true" -}}
+  {{- end -}}
+  {{ .Values.logging.fluentbit_endpoint }}  
+{{- end -}}
+
+{{/*
+Returns the name of the K10 OpenShift Console Plugin ConfigMap
+*/}}
+{{- define "k10.openShiftConsolePluginConfigMapName" -}}
+  {{- printf "%s-config" (include "k10.openShiftConsolePluginName" .) -}}
+{{- end -}}
+
+{{/*
+Returns the name of the K10 OpenShift Console Plugin TLS certificate
+*/}}
+{{- define "k10.openShiftConsolePluginTLSCertName" -}}
+  {{- printf "%s-tls-cert" (include "k10.openShiftConsolePluginName" .) -}}
+{{- end -}}
+
+{{/*
+Returns the name of the K10 OpenShift Console Plugin Proxy
+*/}}
+{{- define "k10.openShiftConsolePluginProxyName" -}}
+  {{- printf "%s-proxy" (include "k10.openShiftConsolePluginName" .) -}}
+{{- end -}}
+
+{{/*
+Returns the name of the K10 OpenShift Console Plugin Proxy ConfigMap
+*/}}
+{{- define "k10.openShiftConsolePluginProxyConfigMapName" -}}
+  {{- printf "%s-config" (include "k10.openShiftConsolePluginProxyName" .) -}}
+{{- end -}}
+
+{{/*
+Return the name of the K10 OpenShift Console Plugin Proxy TLS certificate
+*/}}
+{{- define "k10.openShiftConsolePluginProxyTLSCertName" -}}
+  {{- printf "%s-tls-cert" (include "k10.openShiftConsolePluginProxyName" .) -}}
+{{- end -}}
+
+{{/*
+Returns true if release is being installed to the OpenShift cluster
+*/}}
+{{- define "k10.isOpenShift" -}}
+  {{- $isOpenShift := "false" -}}
+
+  {{- if .Capabilities.APIVersions -}}
+    {{- if .Capabilities.APIVersions.Has "console.openshift.io/v1" -}}
+      {{- $isOpenShift = "true" -}}
+    {{- end -}}
+  {{- end -}}
+
+  {{/* We consider that K10 is being installed to OpenShift if .Values.scc.create is true */}}
+  {{- if .Values.scc.create -}}
+    {{- $isOpenShift = "true" -}}
+  {{- end -}}
+
+  {{- print $isOpenShift -}}
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/templates/_k10_container.tpl b/charts/kasten/k10/7.5.401/templates/_k10_container.tpl
new file mode 100644
index 0000000000..a00e88be81
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/_k10_container.tpl
@@ -0,0 +1,1161 @@
+{{- define "k10-containers" }}
+{{- $pod := .k10_pod }}
+{{- with .main }}
+{{- $main_context := . }}
+{{- $colocatedList := include "get.enabledColocatedServices" . | fromYaml }}
+{{- $containerList := (dict "main" $main_context "k10_service_pod" $pod | include "get.serviceContainersInPod" | splitList " ") }}
+      containers:
+{{- range $skip, $container := $containerList }}
+  {{- $port := default $main_context.Values.service.externalPort (index $colocatedList $container).port }}
+  {{- $serviceStateful := has $container (dict "main" $main_context "k10_service_pod" $pod | include "get.statefulRestServicesInPod" | splitList " ") }}
+  {{- dict "main" $main_context "k10_pod" $pod "k10_container" $container "externalPort" $port "stateful" $serviceStateful | include "k10-container" }}
+{{- end }}
+{{- end }}{{/* with .main */}}
+{{- end }}{{/* define "k10-containers" */}}
+
+{{- define "k10-container" }}
+{{- $pod := .k10_pod }}
+{{- $service := .k10_container }}
+{{- $externalPort := .externalPort }}
+{{- with .main }}
+      - name: {{ $service }}-svc
+        {{- dict "main" . "k10_service" $service | include "serviceImage" | indent 8 }}
+        imagePullPolicy: {{ .Values.global.image.pullPolicy }}
+{{- if eq $service "aggregatedapis" }}
+        args:
+        - "--secure-port={{ .Values.service.aggregatedApiPort }}"
+        - "--cert-dir=/tmp/apiserver.local.config/certificates/"
+        {{- if include "k10.siemEnabled" . }}
+        - "--audit-policy-file=/etc/kubernetes/{{ include "k10.aggAuditPolicyFile" .}}"
+        {{/* SIEM cloud logging */}}
+        - "--enable-k10-audit-cloud-aws-s3={{ .Values.siem.logging.cloud.awsS3.enabled }}"
+        - "--audit-cloud-path={{ .Values.siem.logging.cloud.path }}"
+        {{/* SIEM cluster logging */}}
+        - "--enable-k10-audit-cluster={{ .Values.siem.logging.cluster.enabled }}"
+        - "--audit-log-file={{ include "k10.siemLoggingClusterFile" . | default (include "k10.siemAuditLogFilePath" .) }}"
+        - "--audit-log-file-size={{ include "k10.siemLoggingClusterFileSize" . | default (include "k10.siemAuditLogFileSize" .) }}"
+        {{- end }}
+{{- if .Values.useNamespacedAPI }}
+        - "--k10-api-domain={{  template "apiDomain" . }}"
+{{- end }}{{/* .Values.useNamespacedAPI */}}
+{{/*
+We need this explicit conversion because installation using operator hub was failing
+stating that types are not same for the equality check
+*/}}
+{{- else if not (eq (int .Values.service.externalPort) (int $externalPort) ) }}
+        args:
+          - "--port={{ $externalPort }}"
+          - "--host=0.0.0.0"
+{{- end }}{{/* eq $service "aggregatedapis" */}}
+{{- $podName := (printf "%s-svc" $pod) }}
+{{- $containerName := (printf "%s-svc" $service) }}
+{{- dict "main" . "k10_service_pod_name" $podName "k10_service_container_name" $containerName  | include "k10.resource.request" | indent 8}}
+        ports:
+{{- if eq $service "aggregatedapis" }}
+        - containerPort: {{ .Values.service.aggregatedApiPort }}
+{{- else }}
+        - containerPort: {{ $externalPort }}
+  {{- if eq $service "controllermanager" }}
+        - containerPort: {{ include "k10.mcExternalPort" nil }}
+  {{- end }}
+{{- end }}
+{{- if eq $service "logging" }}
+        - containerPort: 24224
+          protocol: TCP
+        - containerPort: 24225
+          protocol: TCP
+{{- end }}
+        securityContext:
+            allowPrivilegeEscalation: false
+            readOnlyRootFilesystem: false
+            capabilities:
+                drop: ["ALL"]
+        livenessProbe:
+{{- if eq $service "aggregatedapis" }}
+          tcpSocket:
+            port: {{ .Values.service.aggregatedApiPort }}
+          timeoutSeconds: 5
+{{- else }}
+          httpGet:
+            path: /v0/healthz
+            port: {{ $externalPort }}
+          timeoutSeconds: 1
+{{- end }}
+          initialDelaySeconds: 300
+{{- if ne $service "aggregatedapis" }}
+        readinessProbe:
+          httpGet:
+            path: /v0/healthz
+            port: {{ $externalPort }}
+          initialDelaySeconds: 3
+{{- end }}
+        env:
+{{- if eq $service "dashboardbff" }}
+          - name: {{ include "k10.disabledServicesEnvVar" . }}
+            value: {{ include "get.disabledServices" . | quote }}
+{{- end -}}
+{{- if list "dashboardbff" "executor" "garbagecollector" "controllermanager" "kanister" | has $service}}
+{{- if not (eq (include "check.googleproject" . ) "true") -}}
+    {{- fail "secrets.googleApiKey field is required when using secrets.googleProjectId" -}}
+{{- end -}}
+{{- $gkeSecret := default "google-secret" .Values.secrets.googleClientSecretName }}
+{{- $gkeProjectId := "kasten-gke-project" }}
+{{- $gkeApiKey :=  "/var/run/secrets/kasten.io/kasten-gke-sa.json"}}
+{{- if eq (include "check.googleCredsSecret" .) "true" }}
+    {{- $gkeProjectId = "google-project-id" }}
+    {{- $gkeApiKey =  "/var/run/secrets/kasten.io/google-api-key" }}
+{{- end }}
+{{- if eq (include "check.googleCredsOrSecret" .) "true" }}
+          - name: GOOGLE_APPLICATION_CREDENTIALS
+            value: {{ $gkeApiKey }}
+{{- end }}
+{{- if eq (include "check.googleCredsOrSecret" .) "true"  }}
+          - name: projectID
+            valueFrom:
+              secretKeyRef:
+                name: {{ $gkeSecret }}
+                key: {{ $gkeProjectId }}
+                optional: true
+{{- end }}
+{{- end }}
+{{- if list "dashboardbff" "executor" "garbagecollector" "controllermanager" "kanister" | has $service}}
+{{- if or  (eq (include "check.azuresecret" .) "true") (eq (include "check.azurecreds" .) "true" )  }}
+{{- if eq (include "check.azuresecret" .) "true" }}
+          - name: {{ include "k10.azureClientIDEnvVar" . }}
+            valueFrom:
+              secretKeyRef:
+                name: {{ .Values.secrets.azureClientSecretName }}
+                key: azure_client_id
+          - name: {{ include "k10.azureTenantIDEnvVar" . }}
+            valueFrom:
+              secretKeyRef:
+                name: {{ .Values.secrets.azureClientSecretName }}
+                key: azure_tenant_id
+          - name: {{ include "k10.azureClientSecretEnvVar" . }}
+            valueFrom:
+             secretKeyRef:
+               name: {{ .Values.secrets.azureClientSecretName }}
+               key: azure_client_secret
+{{- else }}
+{{- if and (or (eq (include "check.azureMSIWithClientID" .) "true") (eq (include "check.azureClientSecretCreds" .) "true")) (not (eq (include "check.azureFederatedIdentity" . ) "true")) }}
+          - name: {{ include "k10.azureClientIDEnvVar" . }}
+            valueFrom:
+              secretKeyRef:
+                name: azure-creds
+                key: azure_client_id
+{{- end }}
+{{- if eq (include "check.azureClientSecretCreds" .) "true" }}
+          - name: {{ include "k10.azureTenantIDEnvVar" . }}
+            valueFrom:
+              secretKeyRef:
+                name: azure-creds
+                key: azure_tenant_id
+          - name: {{ include "k10.azureClientSecretEnvVar" . }}
+            valueFrom:
+              secretKeyRef:
+                name: azure-creds
+                key: azure_client_secret
+{{- end }}
+{{- end }}
+{{- if .Values.secrets.azureResourceGroup }}
+          - name: AZURE_RESOURCE_GROUP
+            valueFrom:
+              secretKeyRef:
+                name: azure-creds
+                key: azure_resource_group
+{{- end }}
+{{- if .Values.secrets.azureSubscriptionID }}
+          - name: AZURE_SUBSCRIPTION_ID
+            valueFrom:
+              secretKeyRef:
+                name: azure-creds
+                key: azure_subscription_id
+{{- end }}
+{{- if .Values.secrets.azureResourceMgrEndpoint }}
+          - name: AZURE_RESOURCE_MANAGER_ENDPOINT
+            valueFrom:
+              secretKeyRef:
+                name: azure-creds
+                key: azure_resource_manager_endpoint
+{{- end }}
+{{- if or .Values.secrets.azureADEndpoint .Values.secrets.microsoftEntraIDEndpoint }}
+          - name: AZURE_AD_ENDPOINT
+            valueFrom:
+              secretKeyRef:
+                name: azure-creds
+                key: entra_id_endpoint
+{{- end }}
+{{- if or .Values.secrets.azureADResourceID .Values.secrets.microsoftEntraIDResourceID }}
+          - name: AZURE_AD_RESOURCE
+            valueFrom:
+              secretKeyRef:
+                name: azure-creds
+                key: entra_id_resource_id
+{{- end }}
+{{- if .Values.secrets.azureCloudEnvID }}
+          - name: AZURE_CLOUD_ENV_ID
+            valueFrom:
+              secretKeyRef:
+                name: azure-creds
+                key: azure_cloud_env_id
+{{- end }}
+{{- if  eq (include "check.azureMSIWithDefaultID" .) "true" }}
+          - name: USE_AZURE_DEFAULT_MSI
+            value: "{{ .Values.azure.useDefaultMSI }}"
+{{- end }}
+{{- if eq (include "check.azureFederatedIdentity" .) "true" }}
+          - name: USE_AZURE_FEDERATED_IDENTITY
+            value: "{{ .Values.azure.useFederatedIdentity }}"
+{{- end }}
+{{- end }}
+{{- end }}
+
+{{- /*
+There are 3 valid states of the secret provided by customer:
+1. Only role set
+2. Both aws_access_key_id and aws_secret_access_key are set
+3. All of role, aws_access_key_id and aws_secret_access_key are set.
+*/}}
+{{- if eq (include "check.awsSecretName" .) "true"  }}
+    {{- $customerSecret := (lookup "v1" "Secret" .Release.Namespace .Values.secrets.awsClientSecretName )}}
+    {{- if $customerSecret }}
+        {{- if and (not $customerSecret.data.role) (not $customerSecret.data.aws_access_key_id) (not $customerSecret.data.aws_secret_access_key) }}
+                {{ fail "Provided secret must contain at least AWS IAM Role or AWS access key ID together with AWS secret access key"}}
+        {{- end }}
+        {{- if not (or (and $customerSecret.data.aws_access_key_id $customerSecret.data.aws_secret_access_key) (and (not $customerSecret.data.aws_access_key_id) (not $customerSecret.data.aws_secret_access_key))) }}
+            {{ fail "Provided secret lacks aws_access_key_id or aws_secret_access_key" }}
+        {{- end }}
+    {{- end }}
+{{- end }}
+{{- if list "dashboardbff" "executor" "garbagecollector" "controllermanager" "metering" "kanister" | has $service}}
+{{- $awsSecretName := default "aws-creds" .Values.secrets.awsClientSecretName }}
+          - name: AWS_ACCESS_KEY_ID
+            valueFrom:
+              secretKeyRef:
+                name: {{ $awsSecretName }}
+                key: aws_access_key_id
+                optional: true
+          - name: AWS_SECRET_ACCESS_KEY
+            valueFrom:
+              secretKeyRef:
+                name: {{ $awsSecretName }}
+                key: aws_secret_access_key
+                optional: true
+          - name: K10_AWS_IAM_ROLE
+            valueFrom:
+              secretKeyRef:
+                name: {{ $awsSecretName }}
+                key: role
+                optional: true
+{{- end }}
+{{- if list "controllermanager" "executor" "catalog" | has $service}}
+{{- if eq (include "check.gwifenabled" .) "true"}}
+          - name: GOOGLE_WORKLOAD_IDENTITY_FEDERATION_ENABLED
+            value: "true"
+{{- if eq (include "check.gwifidptype" .) "true"}}
+          - name: GOOGLE_WORKLOAD_IDENTITY_FEDERATION_IDP
+            value: {{ .Values.google.workloadIdentityFederation.idp.type }}
+{{- end }}
+{{- if eq (include "check.gwifidpaud" .) "true"}}
+          - name: GOOGLE_WORKLOAD_IDENTITY_FEDERATION_AUD
+            value: {{ .Values.google.workloadIdentityFederation.idp.aud }}
+{{- end }}
+{{- end }} {{/* if eq (include "check.gwifenabled" .) "true" */}}
+{{- end }} {{/* list "controllermanager" "executor" "catalog" | has $service */}}
+{{- if or (eq $service "crypto") (eq $service "executor") (eq $service "dashboardbff") (eq $service "repositories") (eq $service "aggregatedapis") }}
+{{- if eq (include "check.vaultcreds" .) "true" }}
+          - name: VAULT_ADDR
+            value: {{ .Values.vault.address }}
+{{- if eq (include "check.vaultk8sauth" .) "true" }}
+          - name: VAULT_AUTH_ROLE
+            value: {{ .Values.vault.role }}
+          - name: VAULT_K8S_SERVICE_ACCOUNT_TOKEN_PATH
+            value: {{ .Values.vault.serviceAccountTokenPath }}
+{{- end }}
+{{- if (eq (include "check.vaulttokenauth" .) "true") }}
+          - name: VAULT_TOKEN
+            valueFrom:
+              secretKeyRef:
+                name: {{.Values.vault.secretName }}
+                key: vault_token
+{{- end }}
+{{- end }}
+{{- end }}
+{{- if list "dashboardbff" "executor" "garbagecollector" "controllermanager" | has $service}}
+{{- if or (eq (include "check.vspherecreds" .) "true") (eq (include "check.vsphereClientSecret" .) "true") }}
+{{- $vsphereSecretName := default "vsphere-creds" .Values.secrets.vsphereClientSecretName }}
+          - name: VSPHERE_ENDPOINT
+            valueFrom:
+              secretKeyRef:
+                name: {{ $vsphereSecretName }}
+                key: vsphere_endpoint
+          - name: VSPHERE_USERNAME
+            valueFrom:
+              secretKeyRef:
+                name: {{ $vsphereSecretName }}
+                key: vsphere_username
+          - name: VSPHERE_PASSWORD
+            valueFrom:
+              secretKeyRef:
+                name: {{ $vsphereSecretName }}
+                key: vsphere_password
+{{- end }}
+{{- end }}
+          - name: VERSION
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: version
+          - name: {{ include "k10.fluentbitEndpointEnvVar" . }}
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: fluentbitEndpoint
+                optional: true
+{{- if .Values.clusterName }}
+          - name: CLUSTER_NAME
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: clustername
+{{- end }}
+{{- if .Values.fips.enabled }}
+          {{- include "k10.enforceFIPSEnvironmentVariables" . | indent 10 }}
+{{- end }}
+          {{- with $capabilities := include "k10.capabilities" . }}
+          - name: K10_CAPABILITIES
+            value: {{ $capabilities | quote }}
+          {{- end }}
+          {{- with $capabilities_mask := include "k10.capabilities_mask" . }}
+          - name: K10_CAPABILITIES_MASK
+            value: {{ $capabilities_mask | quote }}
+          {{- end }}
+          - name: K10_HOST_SVC
+            value: {{ $pod }}
+{{- if eq $service "auth" }}
+          - name: PREFIX_PATH
+            value: {{ include "k10.prefixPath" . }}
+{{- end }}
+{{- if eq $service "controllermanager" }}
+          - name: K10_STATEFUL
+            value: "{{ .Values.global.persistence.enabled }}"
+{{- if .Values.workerPodCRDs.resourcesRequests.maxMemory }}
+          - name: EPHEMERAL_POD_MAX_MEMORY_REQUESTS
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: workerPodMaxMemoryRequest
+{{- end }}
+{{- if .Values.workerPodCRDs.resourcesRequests.maxCPU }}                
+          - name: EPHEMERAL_POD_MAX_CPU_REQUESTS
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: workerPodMaxCPURequest         
+{{- end }} 
+{{- end }}
+{{- if eq $service "executor" }}
+          - name: KUBEVIRT_VM_UNFREEZE_TIMEOUT
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: kubeVirtVMsUnFreezeTimeout
+{{- end }}
+{{- if eq $service "executor" }}
+          - name: QUICK_DISASTER_RECOVERY_ENABLED
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: quickDisasterRecoveryEnabled
+{{- end }}
+{{- if or (eq $service "executor") (eq $service "controllermanager") (eq $service "aggregatedapis") }}
+{{- if or  .Values.global.imagePullSecret (or .Values.secrets.dockerConfig .Values.secrets.dockerConfigPath)  }}
+          - name: IMAGE_PULL_SECRET_NAMES
+            value: {{  (trimSuffix " " (include "k10.imagePullSecretNames" .)) | toJson }}
+{{- end }}
+{{- end }}
+          - name: MODEL_STORE_DIR
+{{- if or (eq $service "state") (not .Values.global.persistence.enabled) }}
+            value: "/tmp/k10store"
+{{- else }}
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: modelstoredirname
+{{- end }}
+{{- if or (eq $service "kanister") (eq $service "executor")}}
+          - name: DATA_MOVER_IMAGE
+            value: {{ include "get.datamoverImage" . }}        
+{{- end }}
+{{- if or (eq $service "kanister") (eq $service "executor")}}
+          - name: DATA_STORE_LOG_LEVEL
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: DataStoreLogLevel
+          - name: DATA_STORE_FILE_LOG_LEVEL
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: DataStoreFileLogLevel
+{{- end }}
+          - name: LOG_LEVEL
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: loglevel
+{{- if .Values.kanisterPodCustomLabels }}
+          - name: KANISTER_POD_CUSTOM_LABELS
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: KanisterPodCustomLabels
+{{- end }}
+{{- if .Values.kanisterPodCustomAnnotations }}
+          - name: KANISTER_POD_CUSTOM_ANNOTATIONS
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: KanisterPodCustomAnnotations
+{{- end }}
+          - name: POD_NAMESPACE
+            valueFrom:
+              fieldRef:
+                fieldPath: metadata.namespace
+          - name: K10_LIMITER_SNAPSHOT_EXPORTS_PER_ACTION
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: K10LimiterSnapshotExportsPerAction
+          - name: K10_LIMITER_WORKLOAD_SNAPSHOTS_PER_ACTION
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: K10LimiterWorkloadSnapshotsPerAction
+          - name: K10_DATA_STORE_PARALLEL_UPLOAD
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: k10DataStoreParallelUpload
+          - name: K10_DATA_STORE_PARALLEL_DOWNLOAD
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: k10DataStoreParallelDownload
+          - name: K10_DATA_STORE_PARALLEL_BLOCK_UPLOAD
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: k10DataStoreParallelBlockUpload
+          - name: K10_DATA_STORE_PARALLEL_BLOCK_DOWNLOAD
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: k10DataStoreParallelBlockDownload
+          - name: K10_DATA_STORE_ESTIMATION_TYPE
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: k10DataStoreEstimationType
+          - name: K10_DATA_STORE_ADAPTIVE_ESTIMATION_THRESHOLD
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: k10DataStoreAdaptiveEstimationThreshold
+          - name: K10_DATA_STORE_GENERAL_CONTENT_CACHE_SIZE_MB
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: k10DataStoreGeneralContentCacheSizeMB
+          - name: K10_DATA_STORE_GENERAL_METADATA_CACHE_SIZE_MB
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: k10DataStoreGeneralMetadataCacheSizeMB
+          - name: K10_DATA_STORE_TOTAL_CACHE_SIZE_LIMIT_MB
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: k10DataStoreTotalCacheSizeLimitMB
+          - name: K10_DATA_STORE_RESTORE_CONTENT_CACHE_SIZE_MB
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: k10DataStoreRestoreContentCacheSizeMB
+          - name: K10_DATA_STORE_RESTORE_METADATA_CACHE_SIZE_MB
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: k10DataStoreRestoreMetadataCacheSizeMB
+          - name: K10_LIMITER_GENERIC_VOLUME_BACKUPS_PER_CLUSTER
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: K10LimiterGenericVolumeBackupsPerCluster
+          - name: K10_LIMITER_SNAPSHOT_EXPORTS_PER_CLUSTER
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: K10LimiterSnapshotExportsPerCluster
+          - name: K10_LIMITER_VOLUME_RESTORES_PER_CLUSTER
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: K10LimiterVolumeRestoresPerCluster
+          - name: K10_LIMITER_CSI_SNAPSHOTS_PER_CLUSTER
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: K10LimiterCsiSnapshotsPerCluster
+          - name: K10_LIMITER_DIRECT_SNAPSHOTS_PER_CLUSTER
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: K10LimiterDirectSnapshotsPerCluster
+          - name: K10_LIMITER_IMAGE_COPIES_PER_CLUSTER
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: K10LimiterImageCopiesPerCluster
+          - name: K10_EPHEMERAL_PVC_OVERHEAD
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: K10EphemeralPVCOverhead
+          - name: K10_PERSISTENCE_STORAGE_CLASS
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: K10PersistenceStorageClass
+          - name: AWS_ASSUME_ROLE_DURATION
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: AWSAssumeRoleDuration
+{{- if (list "kanister" "executor" "repositories" | has $service) }}
+          - name: K10_DATA_STORE_DISABLE_COMPRESSION
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: k10DataStoreDisableCompression
+
+          - name: K10_KANISTER_POD_METRICS_IMAGE
+            value: {{ include "get.metricSidecarImage" . }}
+
+          - name: TIMEOUT_WORKER_POD_READY
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: K10TimeoutWorkerPodReady
+
+          - name: WORKER_POD_METRIC_SIDECAR_ENABLED
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: WorkerPodMetricSidecarEnabled
+          - name: WORKER_POD_METRIC_SIDECAR_METRICS_INTERVAL
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: WorkerPodPushgatewayMetricsInterval
+        {{- if or (not (quote .Values.workerPodMetricSidecar.resources.requests.memory | empty)) (not (quote .Values.kanisterPodMetricSidecar.resources.requests.memory | empty)) }}
+          - name: K10_WORKER_POD_METRIC_SIDECAR_MEMORY_REQUEST
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: WorkerPodMetricSidecarMemoryRequest
+        {{- end }}
+        {{- if or (not (quote .Values.workerPodMetricSidecar.resources.requests.cpu | empty)) (not (quote .Values.kanisterPodMetricSidecar.resources.requests.cpu | empty)) }}
+          - name: K10_WORKER_POD_METRIC_SIDECAR_CPU_REQUEST
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: WorkerPodMetricSidecarCPURequest
+        {{- end }}
+        {{- if or (not (quote .Values.workerPodMetricSidecar.resources.limits.memory | empty)) (not (quote .Values.kanisterPodMetricSidecar.resources.limits.memory | empty)) }}
+          - name: K10_WORKER_POD_METRIC_SIDECAR_MEMORY_LIMIT
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: WorkerPodMetricSidecarMemoryLimit
+        {{- end }}
+        {{- if or (not (quote .Values.workerPodMetricSidecar.resources.limits.cpu | empty)) (not (quote .Values.kanisterPodMetricSidecar.resources.limits.cpu | empty)) }}
+          - name: K10_WORKER_POD_METRIC_SIDECAR_CPU_LIMIT
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: WorkerPodMetricSidecarCPULimit
+        {{- end }}
+        {{- if .Values.scc.create }}
+          - name: {{ include "k10.sccNameEnvVar" . }}
+            value: {{ .Release.Name }}-scc
+        {{- end }}
+        {{- if .Values.workerPodCRDs.enabled }}
+          - name: K10_EPHEMERAL_POD_SPECS_CR_ENABLED
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: workerPodResourcesCRDEnabled 
+            {{- if .Values.workerPodCRDs.defaultActionPodSpec }}          
+          - name: K10_DEFAULT_ACTION_POD_SPEC_NAME
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: workerPodDefaultAPSName
+            {{- end }}  
+        {{- end }}           
+{{- end }}
+{{- if (list "kanister" "executor" "repositories" "crypto" "dashboardbff" "aggregatedapis" | has $service) }}
+          {{- if .Values.global.podLabels }}
+          - name: K10_CUSTOM_POD_LABELS
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: K10CustomPodLabels
+          {{- end }}
+          {{- if .Values.global.podAnnotations }}
+          - name: K10_CUSTOM_POD_ANNOTATIONS
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: K10CustomPodAnnotations
+          {{- end }}
+{{- end }}
+{{- if (list "dashboardbff" "catalog" "executor" "crypto" | has $service) }}
+    {{- if .Values.metering.mode }}
+          - name: K10REPORTMODE
+            value: {{ .Values.metering.mode }}
+    {{- end }}
+{{- end }}
+{{- if eq $service "garbagecollector" }}
+          - name: K10_GC_DAEMON_PERIOD
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: K10GCDaemonPeriod
+          - name: K10_GC_KEEP_MAX_ACTIONS
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: K10GCKeepMaxActions
+          - name: K10_GC_ACTIONS_ENABLED
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: K10GCActionsEnabled
+{{- end }}
+{{- if (eq $service "executor") }}
+          - name: K10_LIMITER_EXECUTOR_THREADS
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: K10LimiterExecutorThreads
+          - name: K10_LIMITER_CSI_SNAPSHOT_RESTORES_PER_ACTION
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: K10LimiterCsiSnapshotRestoresPerAction
+          - name: K10_LIMITER_VOLUME_RESTORES_PER_ACTION
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: K10LimiterVolumeRestoresPerAction
+          - name: K10_LIMITER_WORKLOAD_RESTORES_PER_ACTION
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: K10LimiterWorkloadRestoresPerAction
+          - name: K10_TIMEOUT_BLUEPRINT_BACKUP
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: K10TimeoutBlueprintBackup
+          - name: K10_TIMEOUT_BLUEPRINT_RESTORE
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: K10TimeoutBlueprintRestore
+          - name: K10_TIMEOUT_BLUEPRINT_DELETE
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: K10TimeoutBlueprintDelete
+          - name: K10_TIMEOUT_BLUEPRINT_HOOKS
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: K10TimeoutBlueprintHooks
+          - name: K10_TIMEOUT_CHECK_REPO_POD_READY
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: K10TimeoutCheckRepoPodReady
+          - name: K10_TIMEOUT_STATS_POD_READY
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: K10TimeoutStatsPodReady
+          - name: K10_TIMEOUT_EFS_RESTORE_POD_READY
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: K10TimeoutEFSRestorePodReady
+          - name: KANISTER_MANAGED_DATA_SERVICES_BLUEPRINTS_ENABLED
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: KanisterManagedDataServicesBlueprintsEnabled
+{{- if or .Values.maxJobWaitDuration .Values.timeout.jobWait }}
+          - name: K10_TIMEOUT_JOB_WAIT
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: K10TimeoutJobWait
+{{- end }}
+          - name: K10_FORCE_ROOT_IN_BLUEPRINT_ACTIONS
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: K10ForceRootInBlueprintActions
+{{- end }}
+{{- if and (eq $service "executor") (.Values.awsConfig.efsBackupVaultName) }}
+          - name: EFS_BACKUP_VAULT_NAME
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: efsBackupVaultName
+{{- end }}
+{{- if and (eq $service "executor") (.Values.genericStorageBackup.token) }}
+          - name: K10_GVS_ACTIVATION_TOKEN
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: GVSActivationToken
+{{- end }}
+{{- if and (eq $service "executor") (.Values.genericStorageBackup.overridepubkey) }}
+          - name: OVERRIDE_GVS_TOKEN_VERIFICATION_KEY
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: overridePublicKeyForGVS
+{{- end }}
+{{- if and (eq $service "executor") (.Values.vmWare.taskTimeoutMin) }}
+          - name: VMWARE_GOM_TIMEOUT_MIN
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: vmWareTaskTimeoutMin
+{{- end }}
+{{- if .Values.useNamespacedAPI }}
+          - name: K10_API_DOMAIN
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: apiDomain
+{{- end }}
+{{- if .Values.jaeger.enabled }}
+          - name: JAEGER_AGENT_HOST
+            value: {{ .Values.jaeger.agentDNS }}
+{{- end }}
+{{- if .Values.auth.tokenAuth.enabled }}
+          - name: TOKEN_AUTH
+            valueFrom:
+              secretKeyRef:
+                name: k10-token-auth
+                key: auth
+{{- end }}
+          - name: KANISTER_TOOLS
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: KanisterToolsImage
+{{- with (include "k10.cacertconfigmapname" .) }}
+          - name: CACERT_CONFIGMAP_NAME
+            value: {{ . }}
+{{- end }}
+          - name: K10_RELEASE_NAME
+            value: {{ .Release.Name }}
+          - name: KANISTER_FUNCTION_VERSION
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: kanisterFunctionVersion
+{{- if and (eq $service "controllermanager") (or .Values.injectGenericVolumeBackupSidecar.enabled .Values.injectKanisterSidecar.enabled) }}
+          - name: K10_MUTATING_WEBHOOK_ENABLED
+            value: "true"
+          - name: K10_MUTATING_WEBHOOK_TLS_CERT_DIR
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: K10MutatingWebhookTLSCertDir
+          - name: K10_MUTATING_WEBHOOK_PORT
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: K10MutatingWebhookPort
+{{- end }}
+{{- if (list "controllermanager" "kanister" "executor" "dashboardbff" "repositories" | has $service) }}
+          - name: K10_DEFAULT_PRIORITY_CLASS_NAME
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: K10DefaultPriorityClassName
+{{- if .Values.genericVolumeSnapshot.resources.requests.memory }}
+          - name: KANISTER_TOOLS_MEMORY_REQUESTS
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: KanisterToolsMemoryRequests
+{{- end }}
+{{- if .Values.genericVolumeSnapshot.resources.requests.cpu }}
+          - name: KANISTER_TOOLS_CPU_REQUESTS
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: KanisterToolsCPURequests
+{{- end }}
+{{- if .Values.genericVolumeSnapshot.resources.limits.memory }}
+          - name: KANISTER_TOOLS_MEMORY_LIMITS
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: KanisterToolsMemoryLimits
+{{- end }}
+{{- if .Values.genericVolumeSnapshot.resources.limits.cpu }}
+          - name: KANISTER_TOOLS_CPU_LIMITS
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: KanisterToolsCPULimits
+{{- end }}
+{{- end }}
+{{- if (list "dashboardbff" "controllermanager" "executor" | has $service) }}
+    {{- if .Values.prometheus.server.enabled }}
+          - name: K10_PROMETHEUS_HOST
+            value: {{ include "k10.prometheus.service.name" . }}-exp
+          - name: K10_PROMETHEUS_PORT
+            value: {{ .Values.prometheus.server.service.servicePort | quote }}
+          - name: K10_PROMETHEUS_BASE_URL
+            value: {{ .Values.prometheus.server.baseURL }}
+    {{- else -}}
+        {{- if and .Values.global.prometheus.external.host .Values.global.prometheus.external.port}}
+          - name: K10_PROMETHEUS_HOST
+            value: {{ .Values.global.prometheus.external.host }}
+          - name: K10_PROMETHEUS_PORT
+            value: {{ .Values.global.prometheus.external.port | quote }}
+          - name: K10_PROMETHEUS_BASE_URL
+            value: {{ .Values.global.prometheus.external.baseURL }}
+        {{- end -}}
+    {{- end }}
+        {{- if (.Values.grafana.external.url) }}
+          - name: GRAFANA_URL
+            value: {{ include "k10.grafanaUrl" . }}
+        {{- end }}
+{{- end }}
+{{- if eq $service "dashboardbff" }}
+    {{- if ne .Values.global.persistence.diskSpaceAlertPercent nil }}
+          - name: K10_DISK_SPACE_ALERT_PERCENT
+            value: {{ .Values.global.persistence.diskSpaceAlertPercent | quote }}
+    {{- end -}}
+{{- end -}}
+{{- if eq $service "controllermanager" }}
+    {{- if .Values.multicluster.primary.create }}
+        {{- if not .Values.multicluster.enabled }}
+            {{- fail "Cannot setup cluster as primary without enabling feature with multicluster.enabled=true" -}}
+        {{- end }}
+        {{- if not .Values.multicluster.primary.name }}
+            {{- fail "Cannot setup cluster as primary without setting cluster name with multicluster.primary.name" -}}
+        {{- end }}
+        {{- if not .Values.multicluster.primary.ingressURL }}
+            {{- fail "Cannot setup cluster as primary without providing an ingress with multicluster.primary.ingressURL" -}}
+        {{- end }}
+          - name: K10_MC_CREATE_PRIMARY
+            value: "true"
+          - name: K10_MC_PRIMARY_NAME
+            value: {{ .Values.multicluster.primary.name | quote }}
+          - name: K10_MC_PRIMARY_INGRESS_URL
+            value: {{ .Values.multicluster.primary.ingressURL | quote }}
+    {{- end }}
+{{- end -}}
+{{- if or $.stateful (or (eq (include "check.googleCredsOrSecret" .) "true") (eq $service "auth" "logging")) }}
+        volumeMounts:
+{{- else if  or (or (eq (include "basicauth.check" .) "true") (or .Values.auth.oidcAuth.enabled (eq (include "check.dexAuth" .) "true"))) .Values.features }}
+        volumeMounts:
+{{- else if and (eq $service "controllermanager") (or .Values.injectGenericVolumeBackupSidecar.enabled .Values.injectKanisterSidecar.enabled) }}
+        volumeMounts:
+{{- else if or (eq (include "check.cacertconfigmap" .) "true") (include "k10.ocpcacertsautoextraction" .) }}
+        volumeMounts:
+{{- else if eq $service "frontend" }}
+        volumeMounts:
+{{- else if and (list "controllermanager" "executor" | has $pod) (eq (include "check.projectSAToken" .) "true")}}
+        volumeMounts:
+{{- else if and (eq $service "aggregatedapis") (include "k10.siemEnabled" .) }}
+        volumeMounts:
+{{- end }}
+{{- if $.stateful }}
+        - name: {{ $service }}-persistent-storage
+          mountPath: {{ .Values.global.persistence.mountPath | quote }}
+{{- end }}
+{{- if .Values.features }}
+        - name: k10-features
+          mountPath: "/mnt/k10-features"
+{{- end }}
+{{- if eq $service "logging" }}
+        - name: logging-configmap-storage
+          mountPath: "/mnt/conf"
+{{- end }}
+{{- if eq $service "executor" }}
+        - name: datastore-cache-vol
+          mountPath: "/tmp"
+{{- end }}
+{{- if and (eq $service "controllermanager") (or .Values.injectGenericVolumeBackupSidecar.enabled .Values.injectKanisterSidecar.enabled) }}
+        - name: mutating-webhook-certs
+          mountPath: /etc/ssl/certs/webhook
+          readOnly: true
+{{- end }}
+{{- if list "dashboardbff" "auth" "controllermanager" | has $service}}
+{{- if eq (include "basicauth.check" .) "true" }}
+        - name: k10-basic-auth
+          mountPath: "/var/run/secrets/kasten.io/k10-basic-auth"
+          readOnly: true
+{{- end }}
+{{- if (or .Values.auth.oidcAuth.enabled (eq (include "check.dexAuth" .) "true")) }}
+        - name: {{ include "k10.oidcSecretName" .}}
+          mountPath: {{ printf "%s/%s" (include "k10.secretsDir" .) (include "k10.oidcSecretName" .) }}
+          readOnly: true
+{{- if .Values.auth.oidcAuth.clientSecretName }}
+        - name: {{ include "k10.oidcCustomerSecretName" .}}
+          mountPath: {{ printf "%s/%s" (include "k10.secretsDir" .) (include "k10.oidcCustomerSecretName" .) }}
+          readOnly: true
+{{- end }}
+{{- end }}
+{{- end }}
+{{- if eq (include "check.googleCredsOrSecret" .) "true"}}
+        - name: service-account
+          mountPath: {{ include "k10.secretsDir" .}}
+{{- end }}
+{{- if and (list "controllermanager" "executor" | has $pod) (eq (include "check.projectSAToken" .) "true")}}
+        - name: bound-sa-token
+          mountPath: "/var/run/secrets/kasten.io/serviceaccount/GWIF"
+          readOnly: true
+{{- end }}
+{{- with (include "k10.cacertconfigmapname" .) }}
+        - name: {{ . }}
+          mountPath: "/etc/ssl/certs/custom-ca-bundle.pem"
+          subPath: custom-ca-bundle.pem
+{{- end }}
+{{- if eq $service "frontend" }}
+        - name: frontend-config
+          mountPath: /etc/nginx/nginx.conf
+          subPath: nginx.conf
+          readOnly: true
+        - name: frontend-config
+          mountPath: /etc/nginx/conf.d/frontend.conf
+          subPath: frontend.conf
+          readOnly: true
+{{- end}}
+{{- if and (eq $service "aggregatedapis") (include "k10.siemEnabled" .) }}
+        - name: aggauditpolicy-config
+          mountPath: /etc/kubernetes/{{ include "k10.aggAuditPolicyFile" .}}
+          subPath: {{ include "k10.aggAuditPolicyFile" .}}
+          readOnly: true
+{{- end}}
+{{- if and (eq $service "catalog") $.stateful }}
+      - name: kanister-sidecar
+        image: {{ include "get.kanisterToolsImage" .}}
+        imagePullPolicy: {{ .Values.kanisterToolsImage.pullPolicy }}
+{{- dict "main" . "k10_service_pod_name" $podName "k10_service_container_name" "kanister-sidecar"  | include "k10.resource.request" | indent 8}}
+        env:
+          {{- with $capabilities := include "k10.capabilities" . }}
+          - name: K10_CAPABILITIES
+            value: {{ $capabilities | quote }}
+          {{- end }}
+          {{- with $capabilities_mask := include "k10.capabilities_mask" . }}
+          - name: K10_CAPABILITIES_MASK
+            value: {{ $capabilities_mask | quote }}
+          {{- end }}
+{{- if .Values.fips.enabled }}
+          {{- include "k10.enforceFIPSEnvironmentVariables" . | nindent 10 }}
+{{- end }}
+        volumeMounts:
+        - name: {{ $service }}-persistent-storage
+          mountPath: {{ .Values.global.persistence.mountPath | quote }}
+{{- with (include "k10.cacertconfigmapname" .) }}
+        - name: {{ . }}
+          mountPath: "/etc/ssl/certs/custom-ca-bundle.pem"
+          subPath: custom-ca-bundle.pem
+{{- end }}
+{{- if eq (include "check.projectSAToken" .) "true" }}
+        - name: bound-sa-token
+          mountPath: "/var/run/secrets/kasten.io/serviceaccount/GWIF"
+          readOnly: true
+{{- end }}
+{{- end }} {{/* and (eq $service "catalog") $.stateful */}}
+{{- if and ( eq $service "auth" ) ( eq (include "check.dexAuth" .) "true" ) }}
+      - name: dex
+        image: {{ include "get.dexImage" . }}
+{{- if .Values.auth.ldap.enabled }}
+        command: ["/usr/local/bin/dex", "serve", "/dex-config/config.yaml"]
+{{- if .Values.fips.enabled }}
+        env:
+          {{- include "k10.enforceFIPSEnvironmentVariables" . | nindent 10 }}
+{{- end }}
+{{- else if .Values.auth.openshift.enabled }}
+        {{- /*
+        In the case of OpenShift, a template config is used instead of a plain config for Dex.
+        It requires a different command to be processed correctly.
+        */}}
+        command: ["/usr/local/bin/docker-entrypoint", "dex", "serve", "/etc/dex/cfg/config.yaml"]
+        env:
+          - name: {{ include "k10.openShiftClientSecretEnvVar" . }}
+{{- if and (not .Values.auth.openshift.clientSecretName) (not .Values.auth.openshift.clientSecret) }}
+            valueFrom:
+              secretKeyRef:
+                name: {{ include "get.openshiftServiceAccountSecretName" . }}
+                key: token
+{{- else if .Values.auth.openshift.clientSecretName }}
+            valueFrom:
+              secretKeyRef:
+                name: {{ .Values.auth.openshift.clientSecretName }}
+                key: token
+{{- else }}
+            value: {{ .Values.auth.openshift.clientSecret }}
+{{- end }}
+{{- if .Values.fips.enabled }}
+          {{- include "k10.enforceFIPSEnvironmentVariables" . | indent 10 }}
+{{- end }}
+{{- end }}
+        ports:
+        - name: http
+          containerPort: 8080
+        volumeMounts:
+{{- if .Values.auth.ldap.enabled }}
+        - name: dex-config
+          mountPath: /dex-config
+        - name: k10-logos-dex
+          mountPath: {{ include "k10.dexFrontendDir" . }}/themes/custom/
+{{- else }}
+        - name: config
+          mountPath: /etc/dex/cfg
+{{- end }}
+{{- with (include "k10.cacertconfigmapname" .) }}
+        - name: {{ . }}
+          mountPath: "/etc/ssl/certs/custom-ca-bundle.pem"
+          subPath: custom-ca-bundle.pem
+{{- end }}
+{{- end }} {{/* end of dex check */}}
+{{- end }}{{/* with .main */}}
+{{- end }}{{/* define "k10-container" */}}
+
+{{- define "k10-init-container-header" }}
+{{- $pod := .k10_pod }}
+{{- with .main }}
+{{- $main_context := . }}
+{{- $containerList := (dict "main" $main_context "k10_service_pod" $pod | include "get.serviceContainersInPod" | splitList " ") }}
+{{- $needsInitContainersHeader := false }}
+{{- range $skip, $service := $containerList }}
+{{- $serviceStateful := has $service (dict "main" $main_context "k10_service_pod" $pod | include "get.statefulRestServicesInPod" | splitList " ") }}
+  {{- if and ( eq $service "auth" ) $main_context.Values.auth.ldap.enabled }}
+    {{- $needsInitContainersHeader = true }}
+  {{- else if $serviceStateful }}
+    {{- $needsInitContainersHeader = true }}
+  {{- end }}{{/* initContainers header needed check */}}
+{{- end }}{{/* range $skip, $service := $containerList */}}
+{{- if $needsInitContainersHeader }}
+      initContainers:
+{{- end }}
+{{- end }}{{/* with .main */}}
+{{- end }}{{/* define "k10-init-container-header" */}}
+
+{{- define "k10-init-container" }}
+{{- $pod := .k10_pod }}
+{{- $podName := (printf "%s-svc" $pod) }}
+{{- with .main }}
+{{- $main_context := . }}
+{{- $containerList := (dict "main" $main_context "k10_service_pod" $pod | include "get.serviceContainersInPod" | splitList " ") }}
+{{- range $skip, $service := $containerList }}
+{{- $serviceStateful := has $service (dict "main" $main_context "k10_service_pod" $pod | include "get.statefulRestServicesInPod" | splitList " ") }}
+{{- if and ( eq $service "auth" ) $main_context.Values.auth.ldap.enabled }}
+      - name: dex-init
+        command:
+        - /dex/dexconfigmerge
+        args:
+        - --config-path=/etc/dex/cfg/config.yaml
+        - --secret-path=/var/run/secrets/kasten.io/bind-secret/bindPW
+        - --new-config-path=/dex-config/config.yaml
+        - --secret-field=bindPW
+        {{- dict "main" $main_context "k10_service" $service | include "serviceImage" | indent 8 }}
+        {{- dict "main" $main_context "k10_service_pod_name" $podName "k10_service_container_name" "dex-init" | include "k10.resource.request" | indent 8}}
+        volumeMounts:
+        - mountPath: /etc/dex/cfg
+          name: config
+        - mountPath: /dex-config
+          name: dex-config
+        - name: bind-secret
+          mountPath: "/var/run/secrets/kasten.io/bind-secret"
+          readOnly: true
+{{- else if $serviceStateful }}
+      - name: upgrade-init
+        securityContext:
+            capabilities:
+                add:
+                - FOWNER
+                - CHOWN
+            runAsUser: 1000
+            allowPrivilegeEscalation: false
+        {{- dict "main" $main_context "k10_service" "upgrade" | include "serviceImage" | indent 8 }}
+        imagePullPolicy: {{ $main_context.Values.global.image.pullPolicy }}
+        {{- dict "main" $main_context "k10_service_pod_name" $podName "k10_service_container_name" "upgrade-init" | include "k10.resource.request" | indent 8}}
+        env:
+          - name: MODEL_STORE_DIR
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: modelstoredirname
+        volumeMounts:
+        - name: {{ $service }}-persistent-storage
+          mountPath: {{ $main_context.Values.global.persistence.mountPath | quote }}
+{{- if eq $service "catalog" }}
+      - name: schema-upgrade-check
+        {{- dict "main" $main_context "k10_service" $service | include "serviceImage" | indent 8 }}
+        imagePullPolicy: {{ $main_context.Values.global.image.pullPolicy }}
+        {{- dict "main" $main_context "k10_service_pod_name" $podName "k10_service_container_name" "schema-upgrade-check" | include "k10.resource.request" | indent 8}}
+        env:
+{{- if $main_context.Values.clusterName }}
+          - name: CLUSTER_NAME
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: clustername
+{{- end }}
+          - name: INIT_CONTAINER
+            value: "true"
+          - name: K10_RELEASE_NAME
+            value: {{ $main_context.Release.Name }}
+          - name: LOG_LEVEL
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: loglevel
+          - name: MODEL_STORE_DIR
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: modelstoredirname
+          - name: POD_NAMESPACE
+            valueFrom:
+              fieldRef:
+                fieldPath: metadata.namespace
+          - name: VERSION
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: version
+        volumeMounts:
+        - name: {{ $service }}-persistent-storage
+          mountPath: {{ $main_context.Values.global.persistence.mountPath | quote }}
+{{- end }}{{/* eq $service "catalog" */}}
+{{- end }}{{/* initContainers definitions */}}
+{{- end }}{{/* range $skip, $service := $containerList */}}
+{{- end }}{{/* with .main */}}
+{{- end }}{{/* define "k10-init-container" */}}
diff --git a/charts/kasten/k10/7.5.401/templates/_k10_image_tag.tpl b/charts/kasten/k10/7.5.401/templates/_k10_image_tag.tpl
new file mode 100644
index 0000000000..560b678604
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/_k10_image_tag.tpl
@@ -0,0 +1 @@
+{{- define "k10.imageTag" -}}7.5.4{{- end -}}
\ No newline at end of file
diff --git a/charts/kasten/k10/7.5.401/templates/_k10_metering.tpl b/charts/kasten/k10/7.5.401/templates/_k10_metering.tpl
new file mode 100644
index 0000000000..6dfb6a4165
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/_k10_metering.tpl
@@ -0,0 +1,352 @@
+{{/* Generate service spec */}}
+{{/* because of https://github.com/GoogleCloudPlatform/marketplace-k8s-app-tools/issues/165
+we have to start using .Values.reportingSecret instead
+of correct version .Values.metering.reportingSecret */}}
+{{- define "k10-metering" }}
+{{ $service := .k10_service }}
+{{- $podName := (printf "%s-svc" $service) }}
+{{ $main := .main }}
+{{- with .main }}
+{{- $servicePort := .Values.service.externalPort -}}
+{{- $optionalServices := .Values.optionalColocatedServices -}}
+{{- $rbac := .Values.prometheus.rbac.create -}}
+{{- if $.stateful }}
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  namespace: {{ .Release.Namespace }}
+  name: {{ $service }}-pv-claim
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+    component: {{ $service }}
+spec:
+  accessModes:
+    - ReadWriteOnce
+  resources:
+    requests:
+      storage: {{ default .Values.global.persistence.size (index .Values.global.persistence $service "size") }}
+{{- if .Values.global.persistence.storageClass }}
+  {{- if (eq "-" .Values.global.persistence.storageClass) }}
+  storageClassName: ""
+  {{- else }}
+  storageClassName: "{{ .Values.global.persistence.storageClass }}"
+  {{- end }}
+{{- end }}
+---
+{{- end }}{{/* if $.stateful */}}
+{{ $service_list := include "get.enabledRestServices" . | splitList " " }}
+kind: ConfigMap
+apiVersion: v1
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+  namespace: {{ .Release.Namespace }}
+  name: {{ include "fullname" . }}-metering-config
+data:
+  config: |
+{{- if .Values.metering.reportingKey }}
+    identities:
+    - name: gcp
+      gcp:
+        encodedServiceAccountKey: {{ .Values.metering.reportingKey }}
+{{- end }}
+    metrics:
+    - name: node_time
+      type: int
+      passthrough: {}
+      endpoints:
+      - name: on_disk
+{{- if .Values.metering.reportingKey }}
+      - name: servicecontrol
+{{- end }}
+    endpoints:
+    - name: on_disk
+      disk:
+{{- if .Values.global.persistence.enabled }}
+        reportDir: /var/reports/ubbagent/reports
+{{- else }}
+        reportDir: /tmp/reports/ubbagent/reports
+{{- end }}
+        expireSeconds: 3600
+{{- if .Values.metering.reportingKey }}
+    - name: servicecontrol
+      servicecontrol:
+        identity: gcp
+        serviceName: kasten-k10.mp-kasten-public.appspot.com
+        consumerId: {{ .Values.metering.consumerId }}
+{{- end }}
+  prometheusTargets: |
+{{- range $service_list }}
+{{- if or (not (hasKey $optionalServices .)) (index $optionalServices .).enabled }}
+{{- if not (eq . "executor") }}
+{{ $tmpcontx := dict "main" $main "k10service" . -}}
+{{ include "k10.prometheusTargetConfig" $tmpcontx | trim | indent 4 -}}
+{{- end }}
+{{- end }}
+{{- end }}
+{{- range include "get.enabledServices" . | splitList " " }}
+{{- if (or (ne . "aggregatedapis") ($rbac)) }}
+{{ $tmpcontx := dict "main" $main "k10service" . -}}
+{{ include "k10.prometheusTargetConfig" $tmpcontx | indent 4 -}}
+{{- end }}
+{{- end }}
+{{- range include "get.enabledAdditionalServices" . | splitList " " }}
+{{- if not (eq . "frontend") }}
+{{ $tmpcontx := dict "main" $main "k10service" . -}}
+{{ include "k10.prometheusTargetConfig" $tmpcontx | indent 4 -}}
+{{- end }}
+{{- end }}
+
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  namespace: {{ .Release.Namespace }}
+  name: {{ $service }}-svc
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+    component: {{ $service }}
+spec:
+  replicas: {{ $.replicas }}
+  strategy:
+    type: Recreate
+  selector:
+    matchLabels:
+{{ include "k10.common.matchLabels" . | indent 6 }}
+      component: {{ $service }}
+      run: {{ $service }}-svc
+  template:
+    metadata:
+      annotations:
+        {{- include "k10.deploymentPodAnnotations" . | nindent 8 }}
+      labels:
+        {{- with merge (dict "requiredLabels" (dict "component" $service "run" (printf "%s-svc" $service) )) . }}
+          {{- include "k10.deploymentPodLabels" . | nindent 8 }}
+        {{- end }}
+    spec:
+      securityContext:
+{{ toYaml .Values.services.securityContext | indent 8 }}
+      serviceAccountName: {{ template "meteringServiceAccountName" . }}
+      {{- dict "main" . "k10_deployment_name" $podName | include "k10.priorityClassName" | indent 6}}
+      {{- include "k10.imagePullSecrets" . | indent 6 }}
+{{- if $.stateful }}
+      initContainers:
+      - name: upgrade-init
+        securityContext:
+            capabilities:
+                add:
+                - FOWNER
+                - CHOWN
+            runAsUser: 1000
+            allowPrivilegeEscalation: false
+        {{- dict "main" . "k10_service" "upgrade" | include "serviceImage" | indent 8 }}
+        imagePullPolicy: {{ .Values.global.image.pullPolicy }}
+        {{- dict "main" . "k10_service_pod_name" $podName "k10_service_container_name" "upgrade-init" | include "k10.resource.request" | indent 8}}
+        env:
+          - name: MODEL_STORE_DIR
+            value: /var/reports/
+        volumeMounts:
+        - name: {{ $service }}-persistent-storage
+          mountPath: /var/reports/
+{{- end }}
+      containers:
+      - name: {{ $service }}-svc
+        {{- dict "main" . "k10_service" $service | include "serviceImage" | indent 8 }}
+        imagePullPolicy: {{ .Values.global.image.pullPolicy }}
+{{- $containerName := (printf "%s-svc" $service) }}
+{{- dict "main" . "k10_service_pod_name" $podName "k10_service_container_name" $containerName  | include "k10.resource.request" | indent 8}}
+        ports:
+        - containerPort: {{ .Values.service.externalPort }}
+        livenessProbe:
+          httpGet:
+            path: /v0/healthz
+            port: {{ .Values.service.externalPort }}
+          initialDelaySeconds: 90
+          timeoutSeconds: 1
+        env:
+          - name: VERSION
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: version
+          - name: {{ include "k10.fluentbitEndpointEnvVar" . }}
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: fluentbitEndpoint
+                optional: true
+          - name: KANISTER_TOOLS
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: KanisterToolsImage
+{{- if .Values.clusterName }}
+          - name: CLUSTER_NAME
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: clustername
+{{- end }}
+{{- if .Values.fips.enabled }}
+          {{- include "k10.enforceFIPSEnvironmentVariables" . | indent 10 }}
+{{- end }}
+          {{- with $capabilities := include "k10.capabilities" . }}
+          - name: K10_CAPABILITIES
+            value: {{ $capabilities | quote }}
+          {{- end }}
+          {{- with $capabilities_mask := include "k10.capabilities_mask" . }}
+          - name: K10_CAPABILITIES_MASK
+            value: {{ $capabilities_mask | quote }}
+          {{- end }}
+          - name: K10_HOST_SVC
+            value: {{ $service }}
+          - name: LOG_LEVEL
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: loglevel
+          - name: POD_NAMESPACE
+            valueFrom:
+              fieldRef:
+                fieldPath: metadata.namespace
+{{- if .Values.useNamespacedAPI }}
+          - name: K10_API_DOMAIN
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: apiDomain
+{{- end }}
+          - name: AGENT_CONFIG_FILE
+            value: /var/ubbagent/config.yaml
+          - name: AGENT_STATE_DIR
+{{- if .Values.global.persistence.enabled }}
+            value: "/var/reports/ubbagent"
+{{- else }}
+            value: "/tmp/reports/ubbagent"
+          - name: K10SYNCSTATUSDIR
+            value: "/tmp/reports/k10"
+          - name: GRACE_PERIOD_STORE
+            value: /tmp/reports/clustergraceperiod
+          - name: NODE_USAGE_STORE
+            value: /tmp/reports/node_usage_history
+{{- end }}
+{{- if .Values.metering.awsRegion }}
+          - name: AWS_REGION
+            value: {{ .Values.metering.awsRegion }}
+{{- end }}
+{{- if .Values.metering.mode }}
+          - name: K10REPORTMODE
+            value: {{ .Values.metering.mode }}
+{{- end }}
+{{- if .Values.metering.reportCollectionPeriod }}
+          - name: K10_REPORT_COLLECTION_PERIOD
+            value: {{ .Values.metering.reportCollectionPeriod  | quote }}
+{{- end }}
+{{- if .Values.metering.reportPushPeriod }}
+          - name: K10_REPORT_PUSH_PERIOD
+            value: {{ .Values.metering.reportPushPeriod | quote }}
+{{- end }}
+{{- if .Values.metering.promoID }}
+          - name: K10_PROMOTION_ID
+            value: {{ .Values.metering.promoID }}
+{{- end }}
+
+{{- if .Values.prometheus.server.enabled }}
+          - name: K10_PROMETHEUS_HOST
+            value: {{ include "k10.prometheus.service.name" . }}-exp
+          - name: K10_PROMETHEUS_PORT
+            value: {{ .Values.prometheus.server.service.servicePort | quote }}
+          - name: K10_PROMETHEUS_BASE_URL
+            value: {{ .Values.prometheus.server.baseURL }}
+{{- else -}}
+    {{- if and .Values.global.prometheus.external.host .Values.global.prometheus.external.port}}
+          - name: K10_PROMETHEUS_HOST
+            value: {{ .Values.global.prometheus.external.host }}
+          - name: K10_PROMETHEUS_PORT
+            value: {{ .Values.global.prometheus.external.port | quote }}
+          - name: K10_PROMETHEUS_BASE_URL
+            value: {{ .Values.global.prometheus.external.baseURL }}
+    {{- end -}}
+{{- end }}
+{{- if or .Values.workerPodMetricSidecar.enabled .Values.kanisterPodMetricSidecar.enabled }}
+          - name: WORKER_POD_METRIC_SIDECAR_ENABLED
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: WorkerPodMetricSidecarEnabled
+          - name: WORKER_POD_METRIC_SIDECAR_METRIC_LIFETIME
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: WorkerPodMetricSidecarMetricLifetime
+          - name: WORKER_POD_METRIC_SIDECAR_METRICS_INTERVAL
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: WorkerPodPushgatewayMetricsInterval
+{{- end }}
+{{- if .Values.reportingSecret }}
+          - name: AGENT_CONSUMER_ID
+            valueFrom:
+              secretKeyRef:
+                name: {{ .Values.reportingSecret }}
+                key: consumer-id
+          - name: AGENT_REPORTING_KEY
+            valueFrom:
+              secretKeyRef:
+                name: {{ .Values.reportingSecret }}
+                key: reporting-key
+          - name: K10_RELEASE_NAME
+            value: {{ .Release.Name }}
+{{- end }}
+{{- if .Values.metering.licenseConfigSecretName }}
+          - name: AWS_WEB_IDENTITY_REFRESH_TOKEN_FILE
+            value: "/var/run/secrets/product-license/license_token"
+          - name: AWS_ROLE_ARN
+            valueFrom:
+              secretKeyRef:
+                name: {{ .Values.metering.licenseConfigSecretName }}
+                key: iam_role
+{{- end }}
+        volumeMounts:
+        - name: meter-config
+          mountPath: /var/ubbagent
+{{- if $.stateful }}
+        - name: {{ $service }}-persistent-storage
+          mountPath: /var/reports/
+{{- end }}
+{{- if .Values.metering.licenseConfigSecretName }}
+        - name: awsmp-product-license
+          mountPath: "/var/run/secrets/product-license"
+{{- end }}
+{{- if .Values.features }}
+        - name: k10-features
+          mountPath: "/mnt/k10-features"
+{{- end }}
+      volumes:
+        - name: meter-config
+          configMap:
+            name: {{ include "fullname" . }}-metering-config
+            items:
+            - key: config
+              path: config.yaml
+            - key: prometheusTargets
+              path: prometheusTargets.yaml
+{{- if .Values.features }}
+        - name: k10-features
+          configMap:
+            name: k10-features
+{{- end }}
+{{- if $.stateful }}
+        - name: {{ $service }}-persistent-storage
+          persistentVolumeClaim:
+            claimName: {{ $service }}-pv-claim
+{{- end }}
+{{- if .Values.metering.licenseConfigSecretName }}
+        - name: awsmp-product-license
+          secret:
+            secretName: {{ .Values.metering.licenseConfigSecretName }}
+{{- end }}
+---
+{{- end }}{{/* with .main */}}
+{{- end }}{{/* define "k10-metering" */}}
diff --git a/charts/kasten/k10/7.5.401/templates/_k10_serviceimage.tpl b/charts/kasten/k10/7.5.401/templates/_k10_serviceimage.tpl
new file mode 100644
index 0000000000..9a333d92ce
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/_k10_serviceimage.tpl
@@ -0,0 +1,50 @@
+{{/*
+Helper to get k10 service image
+The details on how these image are being generated
+is in below issue
+https://kasten.atlassian.net/browse/K10-4036
+*/}}
+{{- define "serviceImage" -}}
+{{/*
+we are maintaining the field .Values.global.images to override it when
+we install the chart for red hat marketplace. If we dont
+have the value specified use earlier flow, if it is, use the
+value that is specified.
+*/}}
+{{- include "image.values.check" . -}}
+{{- if not .main.Values.global.rhMarketPlace }}
+{{- $serviceImage := "" -}}
+{{- $tagFromDefs := "" -}}
+{{- if .main.Values.global.airgapped.repository }}
+{{- $serviceImage = (include "get.k10ImageTag" .main) | print .main.Values.global.airgapped.repository "/" .k10_service ":" }}
+{{- else if .main.Values.global.azMarketPlace }}
+{{- $az_image := (get .main.Values.global.azure.images .k10_service) }}
+{{- $serviceImage = print $az_image.registry "/" $az_image.image  ":"  $az_image.tag }}
+{{- else }}
+{{- $serviceImage = (include "get.k10ImageTag" .main)  | print .main.Values.global.image.registry "/" .k10_service ":" }}
+{{- end }}{{/* if .main.Values.global.airgapped.repository */}}
+{{- $serviceImageKey := print (replace "-" "" .k10_service) "Image" }}
+{{- if eq $serviceImageKey "dexImage" }}
+{{- $tagFromDefs = (include "dex.dexImageTag" .) }}
+{{- end }}{{/* if eq $serviceImageKey "dexImage" */}}
+{{- if index .main.Values $serviceImageKey }}
+{{- $service_values := index .main.Values $serviceImageKey }}
+{{- if .main.Values.global.airgapped.repository }}
+{{ $valuesImage := (splitList "/" (index $service_values "image")) }}
+{{- if $tagFromDefs }}
+image: {{ printf "%s/%s:k10-%s" .main.Values.global.airgapped.repository (index $valuesImage (sub (len $valuesImage) 1) ) $tagFromDefs -}}
+{{- end }}
+{{- else }}{{/* .main.Values.global.airgapped.repository */}}
+{{- if $tagFromDefs }}
+image: {{ printf "%s:%s" (index $service_values "image") $tagFromDefs }}
+{{- else }}
+image: {{ index $service_values "image" }}
+{{- end }}
+{{- end }}{{/* .main.Values.global.airgapped.repository */}}
+{{- else }}
+image: {{ $serviceImage }}
+{{- end -}}{{/* index .main.Values $serviceImageKey */}}
+{{- else }}
+image: {{ printf "%s" (get .main.Values.global.images .k10_service) }}
+{{- end }}{{/* if not .main.Values.images.executor */}}
+{{- end -}}{{/* define "serviceImage" */}}
diff --git a/charts/kasten/k10/7.5.401/templates/_k10_template.tpl b/charts/kasten/k10/7.5.401/templates/_k10_template.tpl
new file mode 100644
index 0000000000..9d0916054c
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/_k10_template.tpl
@@ -0,0 +1,249 @@
+{{/* Generate service spec */}}
+{{- define "k10-default" }}
+{{- $service := .k10_service }}
+{{- $deploymentName := (printf "%s-svc" $service) }}
+{{- with .main }}
+{{- $main_context := . }}
+{{- range $skip, $statefulContainer := compact (dict "main" $main_context "k10_service_pod" $service | include "get.statefulRestServicesInPod" | splitList " ") }}
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  namespace: {{ $main_context.Release.Namespace }}
+  name: {{ $statefulContainer }}-pv-claim
+  labels:
+{{ include "helm.labels" $main_context | indent 4 }}
+    component: {{ $statefulContainer }}
+spec:
+  accessModes:
+    - ReadWriteOnce
+  resources:
+    requests:
+      storage: {{ index (index $main_context.Values.global.persistence $statefulContainer | default dict) "size" | default $main_context.Values.global.persistence.size }}
+{{- if $main_context.Values.global.persistence.storageClass }}
+  {{- if (eq "-" $main_context.Values.global.persistence.storageClass) }}
+  storageClassName: ""
+  {{- else }}
+  storageClassName: "{{ $main_context.Values.global.persistence.storageClass }}"
+  {{- end }}
+{{- end }}
+---
+{{- end }}{{/* if $.stateful */}}
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  namespace: {{ .Release.Namespace }}
+  name: {{ $deploymentName }}
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+    component: {{ $service }}
+spec:
+  replicas: {{ $.replicas }}
+  strategy:
+    type: Recreate
+  selector:
+    matchLabels:
+{{ include "k10.common.matchLabels" . | indent 6 }}
+      component: {{ $service }}
+      run: {{ $deploymentName }}
+  template:
+    metadata:
+      annotations:
+{{-
+$requiredAnnotations := (dict
+  "run" $deploymentName
+  "checksum/frontend-nginx-config" (include (print .Template.BasePath "/frontend-nginx-configmap.yaml") . | sha256sum)
+)
+-}}
+{{- if .Values.auth.ldap.restartPod -}}
+  {{- $_ := set $requiredAnnotations "rollme" (randAlphaNum 5) -}}
+{{- end -}}
+        {{- with merge (dict "requiredAnnotations" $requiredAnnotations) . }}
+          {{- include "k10.deploymentPodAnnotations" . | nindent 8 }}
+        {{- end }}
+      labels:
+{{-
+$requiredLabels := (dict
+  "component" $service
+  "run" $deploymentName
+)
+-}}
+{{- if list "executor" "controllermanager" | has $service}}
+  {{- if eq (include "check.azureFederatedIdentity" .) "true" }}
+        azure.workload.identity/use: "true"
+  {{- end }}
+{{- end }}
+        {{- with merge (dict "requiredLabels" $requiredLabels) . }}
+          {{- include "k10.deploymentPodLabels" . | nindent 8 }}
+        {{- end }}
+    spec:
+{{- if eq $service "executor" }}
+{{- if .Values.services.executor.hostNetwork }}
+      hostNetwork: true
+{{- end }}{{/* .Values.services.executor.hostNetwork */}}
+{{- end }}{{/* eq $service "executor" */}}
+{{- if eq $service "aggregatedapis" }}
+{{- if .Values.services.aggregatedapis.hostNetwork }}
+      hostNetwork: true
+{{- end }}{{/* .Values.services.aggregatedapis.hostNetwork */}}
+{{- end }}{{/* eq $service "aggregatedapis" */}}
+{{- if eq $service "dashboardbff" }}
+{{- if .Values.services.dashboardbff.hostNetwork }}
+      hostNetwork: true
+{{- end }}{{/* .Values.services.dashboardbff.hostNetwork */}}
+{{- end }}{{/* eq $service "dashboardbff" */}}
+      securityContext:
+{{ toYaml .Values.services.securityContext | indent 8 }}
+      serviceAccountName: {{ template "serviceAccountName" . }}
+      {{- dict "main" . "k10_deployment_name" $deploymentName | include "k10.priorityClassName" | indent 6}}
+      {{- include "k10.imagePullSecrets" . | indent 6 }}
+{{- /* initContainers: */}}
+{{- (dict "main" . "k10_pod" $service | include "k10-init-container-header") }}
+{{- (dict "main" . "k10_pod" $service | include "k10-init-container") }}
+{{- /* containers: */}}
+{{- (dict "main" . "k10_pod" $service | include "k10-containers") }}
+{{- /* volumes: */}}
+{{- (dict "main" . "k10_pod" $service | include "k10-deployment-volumes-header") }}
+{{- (dict "main" . "k10_pod" $service | include "k10-deployment-volumes") }}
+---
+{{- end }}{{/* with .main */}}
+{{- end }}{{/* define "k10-default" */}}
+
+{{- define "k10-deployment-volumes-header" }}
+{{- $pod := .k10_pod }}
+{{- with .main }}
+{{- $main_context := . }}
+{{- $containerList := (dict "main" $main_context "k10_service_pod" $pod | include "get.serviceContainersInPod" | splitList " ") }}
+{{- $needsVolumesHeader := false }}
+{{- range $skip, $service := $containerList }}
+  {{- $serviceStateful := has $service (dict "main" $main_context "k10_service_pod" $pod | include "get.statefulRestServicesInPod" | splitList " ") }}
+  {{- if or $serviceStateful (or (eq (include "check.googlecreds" $main_context) "true") (eq $service "auth" "logging")) }}
+    {{- $needsVolumesHeader = true }}
+  {{- else if or (or (eq (include "basicauth.check" $main_context) "true") (or $main_context.Values.auth.oidcAuth.enabled (eq (include "check.dexAuth" $main_context) "true"))) $main_context.Values.features }}
+    {{- $needsVolumesHeader = true }}
+  {{- else if and (eq $service "controllermanager") (or $main_context.Values.injectGenericVolumeBackupSidecar.enabled $main_context.Values.injectKanisterSidecar.enabled) }}
+    {{- $needsVolumesHeader = true }}
+  {{- else if or (eq (include "check.cacertconfigmap" $main_context) "true") (include "k10.ocpcacertsautoextraction" $main_context) }}
+    {{- $needsVolumesHeader = true }}
+  {{- else if and ( eq $service "auth" ) ( eq (include "check.dexAuth" $main_context) "true" ) }}
+    {{- $needsVolumesHeader = true }}
+  {{- else if eq $service "frontend" }}
+    {{- $needsVolumesHeader = true }}
+  {{- else if and (list "controllermanager" "executor" "catalog" | has $pod) (eq (include "check.projectSAToken" $main_context) "true")}}
+    {{- $needsVolumesHeader = true }}
+  {{- else if and (eq $service "aggregatedapis") (include "k10.siemEnabled" $main_context) }}
+    {{- $needsVolumesHeader = true }}
+  {{- end }}{{/* volumes header needed check */}}
+{{- end }}{{/* range $skip, $service := $containerList */}}
+{{- if $needsVolumesHeader }}
+      volumes:
+{{- end }}
+{{- end }}{{/* with .main */}}
+{{- end }}{{/* define "k10-init-container-header" */}}
+
+{{- define "k10-deployment-volumes" }}
+{{- $pod := .k10_pod }}
+{{- with .main }}
+{{- if .Values.features }}
+      - name: k10-features
+        configMap:
+          name: k10-features
+{{- end }}
+{{- if list "executor" | has $pod}}
+      - name: datastore-cache-vol
+        emptyDir: {}
+{{- end }}
+{{- if list "dashboardbff" "auth" "controllermanager" | has $pod}}
+{{- if eq (include "basicauth.check" .) "true" }}
+      - name: k10-basic-auth
+        secret:
+          secretName: {{ default "k10-basic-auth" .Values.auth.basicAuth.secretName }}
+{{- end }}
+{{- if .Values.auth.oidcAuth.enabled }}
+      - name: {{ include "k10.oidcSecretName" .}}
+        secret:
+          secretName: {{ default (include "k10.oidcSecretName" .) .Values.auth.oidcAuth.secretName }}
+{{- if .Values.auth.oidcAuth.clientSecretName }}
+      - name: {{ include "k10.oidcCustomerSecretName" . }}
+        secret:
+          secretName: {{ .Values.auth.oidcAuth.clientSecretName }}
+{{- end }}
+{{- end }}
+{{- if .Values.auth.openshift.enabled }}
+      - name: {{ include "k10.oidcSecretName" .}}
+        secret:
+          secretName: {{ default (include "k10.oidcSecretName" .) .Values.auth.openshift.secretName }}
+{{- end }}
+{{- if .Values.auth.ldap.enabled }}
+      - name: {{ include "k10.oidcSecretName" .}}
+        secret:
+          secretName: {{ default (include "k10.oidcSecretName" .) .Values.auth.ldap.secretName }}
+      - name: k10-logos-dex
+        configMap:
+          name: k10-logos-dex
+{{- end }}
+{{- end }}
+{{- range $skip, $statefulContainer := compact (dict "main" . "k10_service_pod" $pod | include "get.statefulRestServicesInPod" | splitList " ") }}
+      - name: {{ $statefulContainer }}-persistent-storage
+        persistentVolumeClaim:
+          claimName: {{ $statefulContainer }}-pv-claim
+{{- end }}
+{{- if eq (include "check.googleCredsOrSecret" .) "true"  }}
+{{- $gkeSecret := default "google-secret" .Values.secrets.googleClientSecretName }}
+      - name: service-account
+        secret:
+          secretName: {{ $gkeSecret }}
+{{- end }}
+{{- if and (list "controllermanager" "executor" "catalog" | has $pod) (eq (include "check.projectSAToken" .) "true")}}
+      - name: bound-sa-token
+        projected:
+            sources:
+            - serviceAccountToken:
+{{- if eq (include "check.gwifidpaud" .) "true" }}
+                audience:  {{ .Values.google.workloadIdentityFederation.idp.aud }}
+{{- end }}
+                expirationSeconds: 3600
+                path: token
+{{- end }}
+{{- with (include "k10.cacertconfigmapname" .) }}
+      - name: {{ . }}
+        configMap:
+          name: {{ . }}
+{{- end }}
+{{- if eq $pod "frontend" }}
+      - name: frontend-config
+        configMap:
+          name: frontend-config
+{{- end }}
+{{- if and (eq $pod "aggregatedapis") (include "k10.siemEnabled" .) }}
+      - name: aggauditpolicy-config
+        configMap:
+          name: aggauditpolicy-config
+{{- end }}
+{{- $containersInThisPod := (dict "main" . "k10_service_pod" $pod | include "get.serviceContainersInPod" | splitList " ") }}
+{{- if has "logging" $containersInThisPod }}
+      - name: logging-configmap-storage
+        configMap:
+          name: fluentbit-configmap
+{{- end }}
+{{- if and (has "controllermanager" $containersInThisPod) (or .Values.injectGenericVolumeBackupSidecar.enabled .Values.injectKanisterSidecar.enabled) }}
+      - name: mutating-webhook-certs
+        secret:
+          secretName: controllermanager-certs
+{{- end }}
+{{- if and ( has "auth" $containersInThisPod) ( eq (include "check.dexAuth" .) "true" ) }}
+      - name: config
+        configMap:
+          name: k10-dex
+          items:
+          - key: config.yaml
+            path: config.yaml
+{{- if .Values.auth.ldap.enabled }}
+      - name: dex-config
+        emptyDir: {}
+      - name: bind-secret
+        secret:
+          secretName: {{ default "k10-dex" .Values.auth.ldap.bindPWSecretName }}
+{{- end }}
+{{- end }}
+{{- end }}{{/* with .main */}}
+{{- end }}{{/* define "k10-init-container-header" */}}
diff --git a/charts/kasten/k10/7.5.401/templates/_prometheus.tpl b/charts/kasten/k10/7.5.401/templates/_prometheus.tpl
new file mode 100644
index 0000000000..a49a8363f6
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/_prometheus.tpl
@@ -0,0 +1,29 @@
+{{/*** MATCH LABELS ***
+  NOTE: The match labels here (`app` and `release`) are divergent from
+  the match labels set by the upstream chart. This is intentional since a
+  Deployment's `spec.selector` is immutable and K10 has already been shipped
+  with these values.
+
+  A change to these selector labels will mean that all customers must manually
+  delete the Prometheus Deployment before upgrading, which is a situation we don't
+  want for our customers.
+
+  Instead, the `app.kubernetes.io/name` and `app.kubernetes.io/instance` labels
+  are included in the `prometheus.commonMetaLabels` in:
+  `helm/k10/templates/{values}/prometheus/charts/{charts}/values/prometheus_values.tpl`.
+*/}}
+{{- define "prometheus.common.matchLabels" -}}
+app: {{ include "prometheus.name" . }}
+release: {{ .Release.Name }}
+{{- end -}}
+
+{{- define "prometheus.server.labels" -}}
+{{ include "prometheus.server.matchLabels" . }}
+{{ include "prometheus.common.metaLabels" . }}
+app.kubernetes.io/component: {{ .Values.server.name }}
+{{- end -}}
+
+{{- define "prometheus.server.matchLabels" -}}
+component: {{ .Values.server.name | quote }}
+{{ include "prometheus.common.matchLabels" . }}
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/templates/aggregatedaudit-policy.yaml b/charts/kasten/k10/7.5.401/templates/aggregatedaudit-policy.yaml
new file mode 100644
index 0000000000..ef7f03c6c2
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/aggregatedaudit-policy.yaml
@@ -0,0 +1,34 @@
+{{- if include "k10.siemEnabled" . -}}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+  name: aggauditpolicy-config
+  namespace: {{ .Release.Namespace }}
+data:
+  {{ include "k10.aggAuditPolicyFile" .}}: |
+    apiVersion: audit.k8s.io/v1
+    kind: Policy
+    omitStages:
+    - "RequestReceived"
+    rules:
+    - level: RequestResponse
+      resources:
+      - group: "actions.kio.kasten.io"
+        resources: ["backupactions", "cancelactions", "exportactions", "importactions", "restoreactions", "retireactions", "runactions"]
+      - group: "apps.kio.kasten.io"
+        resources: ["applications", "clusterrestorepoints", "restorepoints", "restorepointcontents"]
+      - group: "repositories.kio.kasten.io"
+        resources: ["storagerepositories"]
+      - group: "vault.kio.kasten.io"
+        resources: ["passkeys"]
+      verbs: ["create", "update", "patch", "delete", "get"]
+    - level: None
+      nonResourceURLs:
+        - /healthz*
+        - /version
+        - /openapi/v2*
+        - /openapi/v3*
+        - /timeout*
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/templates/apiservice.yaml b/charts/kasten/k10/7.5.401/templates/apiservice.yaml
new file mode 100644
index 0000000000..1811df48a8
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/apiservice.yaml
@@ -0,0 +1,25 @@
+{{/* Template to generate the aggregated APIService/Service objects */}}
+{{- if .Values.apiservices.deployed -}}
+{{- $main := . -}}
+{{- $container_port := .Values.service.internalPort -}}
+{{- $namespace := .Release.Namespace -}}
+{{- range include "k10.aggregatedAPIs" . | splitList " " -}}
+---
+apiVersion: apiregistration.k8s.io/v1
+kind: APIService
+metadata:
+  name: v1alpha1.{{ . }}.{{ template "apiDomain" $main }}
+  labels:
+    apiserver: "true"
+{{ include "helm.labels" $ | indent 4 }}
+spec:
+  version: v1alpha1
+  group: {{ . }}.{{ template "apiDomain" $main }}
+  groupPriorityMinimum: 2000
+  service:
+    namespace: {{$namespace}}
+    name: aggregatedapis-svc
+  versionPriority: 10
+  insecureSkipTLSVerify: true
+{{ end }}
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/templates/daemonsets.yaml b/charts/kasten/k10/7.5.401/templates/daemonsets.yaml
new file mode 100644
index 0000000000..b8c50b505f
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/daemonsets.yaml
@@ -0,0 +1,26 @@
+{{- if .Values.metering.redhatMarketplacePayg }}
+apiVersion: apps/v1
+kind: DaemonSet
+metadata:
+  namespace: {{ .Release.Namespace }}
+  name: k10-rhmp-paygo
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+    component: paygo
+spec:
+  selector:
+    matchLabels:
+{{ include "k10.common.matchLabels" . | indent 6 }}
+      component: paygo
+  template:
+    metadata:
+      labels:
+{{ include "helm.labels" . | indent 8 }}
+        component: paygo
+    spec:
+      containers:
+        - name: paygo
+          image:  {{ .Values.global.images.paygo_daemonset }}
+          command: [ "sleep" ]
+          args: [ "36500d" ]
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/templates/deployments.yaml b/charts/kasten/k10/7.5.401/templates/deployments.yaml
new file mode 100644
index 0000000000..8159536bb4
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/deployments.yaml
@@ -0,0 +1,41 @@
+{{/*
+Generates deployment specs for K10 services and other services such as
+"frontend" and "kanister".
+*/}}
+{{- include "singleAuth.check" . -}}
+{{- $main_context := . -}}
+{{- $stateless_services := include "get.enabledStatelessServices" . | splitList " " -}}
+{{- $colocated_services := include "get.enabledColocatedServices" . | fromYaml -}}
+{{ $service_list := include "get.enabledRestServices" . | splitList " " }}
+{{- range $skip, $k10_service := $service_list }}
+  {{ if not (hasKey $colocated_services $k10_service ) }}
+    {{/* Set $stateful for stateful services when .Values.global.persistence.enabled is true */}}
+    {{- $stateful := and $.Values.global.persistence.enabled (not (has $k10_service $stateless_services)) -}}
+    {{/* Use `limiter.executorReplicas` (with back-compatibility with already deprecated
+    `executorReplicas`) Helm parameter to configure number of replicas for service. In case of missing
+     `limiter.{servicename}Replicas` Helm parameter will be set `1`.
+     See also function `replicasFieldForService` in go/src/kasten.io/k10/kio/tools/restorectl/servicescaler/config.go.*/}}
+    {{- $replicas := index $.Values (printf "%sReplicas" $k10_service) -}}
+    {{- if eq $replicas nil -}}
+      {{- $replicas = index $.Values.limiter (printf "%sReplicas" $k10_service) -}}
+      {{- if eq $replicas nil -}}
+        {{- $replicas = 1 -}}
+      {{- end -}}
+    {{- end -}}
+    {{ $tmp_contx := dict "main" $main_context "k10_service" $k10_service "stateful" $stateful "replicas" $replicas }}
+    {{ if eq $k10_service "metering" }}
+      {{- include "k10-metering" $tmp_contx -}}
+    {{ else }}
+      {{- include "k10-default" $tmp_contx -}}
+    {{ end }}
+  {{ end }}{{/* if not (hasKey $colocated_services $k10_service ) */}}
+{{- end }}
+{{/*
+Generate deployment specs for additional services. These are stateless and have
+1 replica.
+*/}}
+{{- range $skip, $k10_service := concat (include "get.enabledServices" . | splitList " ") (include "get.enabledAdditionalServices" . | splitList " ") }}
+  {{- if eq $k10_service "gateway" -}}{{- continue -}}{{- end -}}
+  {{ $tmp_contx := dict "main" $main_context "k10_service" $k10_service "stateful" false "replicas" 1 }}
+  {{- include "k10-default" $tmp_contx -}}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/templates/fluentbit-configmap.yaml b/charts/kasten/k10/7.5.401/templates/fluentbit-configmap.yaml
new file mode 100644
index 0000000000..71cecb9668
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/fluentbit-configmap.yaml
@@ -0,0 +1,34 @@
+kind: ConfigMap
+apiVersion: v1
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+  namespace: {{ .Release.Namespace }}
+  name: fluentbit-configmap
+data:
+  fluentbit.conf: |
+    [SERVICE]
+        HTTP_Server On
+        HTTP_Listen 0.0.0.0
+        HTTP_PORT 24225
+
+    [INPUT]
+        Name tcp
+        Listen 0.0.0.0
+        Port 24224
+
+    [OUTPUT]
+        Name stdout
+        Match *
+
+    [OUTPUT]
+        Name file
+        Match *
+        File {{ .Values.global.persistence.mountPath }}/k10.log
+  logrotate.conf: |
+    {{ .Values.global.persistence.mountPath }}/k10.log {
+      create
+      missingok
+      rotate 6
+      size 1G
+    }
diff --git a/charts/kasten/k10/7.5.401/templates/frontend-nginx-configmap.yaml b/charts/kasten/k10/7.5.401/templates/frontend-nginx-configmap.yaml
new file mode 100644
index 0000000000..93d17b3a17
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/frontend-nginx-configmap.yaml
@@ -0,0 +1,50 @@
+kind: ConfigMap
+apiVersion: v1
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+  namespace: {{ .Release.Namespace }}
+  name: frontend-config
+data:
+  frontend.conf: |
+    server {
+        listen {{ .Values.service.externalPort }} default_server;
+    {{- if .Values.global.network.enable_ipv6 }}
+        listen [::]:{{ .Values.service.externalPort }} default_server;
+    {{- end }}
+        server_name localhost;
+
+        gzip on;
+        # serves *.gz files (when present) instead of dynamic compression
+        gzip_static on;
+
+        root /frontend;
+        index index.html;
+
+        location / {
+            try_files $uri $uri/ =404;
+        }
+    }
+  nginx.conf: |
+    #user nginx; # this directive is ignored if we use a non-root user in Dockerfile
+    worker_processes 4;
+
+    error_log stderr warn;
+    pid /var/run/nginx/nginx.pid;
+
+    events {
+        worker_connections 1024;
+    }
+
+    http {
+        include /etc/nginx/mime.types;
+        default_type application/octet-stream;
+        access_log /dev/stdout;
+        sendfile on;
+        keepalive_timeout 650;
+
+        # turn off nginx version in responses
+        server_tokens off;
+
+        include /etc/nginx/conf.d/*.conf;
+    }
diff --git a/charts/kasten/k10/7.5.401/templates/gateway-ext.yaml b/charts/kasten/k10/7.5.401/templates/gateway-ext.yaml
new file mode 100644
index 0000000000..26ac26544f
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/gateway-ext.yaml
@@ -0,0 +1,36 @@
+{{/* Externally exposed service for gateway endpoint. */}}
+{{- $container_port := .Values.service.internalPort -}}
+{{- if .Values.externalGateway.create -}}
+{{- include "authEnabled.check" . -}}
+apiVersion: v1
+kind: Service
+metadata:
+  namespace: {{ $.Release.Namespace }}
+  name: gateway-ext
+  labels:
+    service: gateway
+    {{- if eq "route53-mapper" (default " " .Values.externalGateway.fqdn.type) }}
+    dns: route53
+    {{- end }}
+{{ include "helm.labels" . | indent 4 }}
+  annotations:
+    {{- if .Values.externalGateway.annotations }}
+{{ toYaml .Values.externalGateway.annotations | indent 4 }}
+    {{- end }}
+{{ include "dnsAnnotations" . | indent 4 }}
+    {{- if .Values.externalGateway.awsSSLCertARN }}
+    service.beta.kubernetes.io/aws-load-balancer-ssl-cert: {{ .Values.externalGateway.awsSSLCertARN }}
+    service.beta.kubernetes.io/aws-load-balancer-ssl-ports: https
+    {{- if .Values.externalGateway.awsSecurityGroup }}
+    service.beta.kubernetes.io/aws-load-balancer-extra-security-groups: {{ .Values.externalGateway.awsSecurityGroup }}
+    {{- end }}
+    {{- end }}
+spec:
+  type: LoadBalancer
+  ports:
+  - name: https
+    port: {{ if or .Values.secrets.tlsSecret .Values.externalGateway.awsSSLCertARN }}443{{ else }}80{{ end }}
+    targetPort: {{ $container_port }}
+  selector:
+    service: gateway
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/templates/gateway.yaml b/charts/kasten/k10/7.5.401/templates/gateway.yaml
new file mode 100644
index 0000000000..aa879bd306
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/gateway.yaml
@@ -0,0 +1,107 @@
+{{- $container_port := .Values.gateway.service.internalPort | default 8000 -}}
+{{- $service_port := .Values.gateway.service.externalPort -}}
+---
+apiVersion: v1
+kind: Service
+metadata:
+  namespace: {{ $.Release.Namespace }}
+  labels:
+    service: gateway
+{{ include "helm.labels" . | indent 4 }}
+  name: gateway
+spec:
+  ports:
+  - name: http
+    port: {{ $service_port }}
+    targetPort: {{ $container_port }}
+  selector:
+    service: gateway
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  namespace: {{ $.Release.Namespace }}
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+    component: gateway
+  name: gateway
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      service: gateway
+  template:
+    metadata:
+      annotations:
+        {{- include "k10.deploymentPodAnnotations" . | nindent 8 }}
+      labels:
+        {{- with merge (dict "requiredLabels" (dict "component" "gateway" "service" "gateway")) . }}
+          {{- include "k10.deploymentPodLabels" . | nindent 8 }}
+        {{- end }}
+    spec:
+      serviceAccountName: {{ template "serviceAccountName" . }}
+      {{- dict "main" . "k10_deployment_name" "gateway" | include "k10.priorityClassName" | indent 6}}
+      {{- include "k10.imagePullSecrets" . | indent 6 }}
+      containers:
+      - name: gateway
+        {{- dict "main" . "k10_service" "gateway" | include "serviceImage" | indent 8 }}
+        {{- if .Values.secrets.tlsSecret }}
+        volumeMounts:
+          - name: tls-volume
+            mountPath: "/etc/tls"
+            readOnly: true
+        {{- end }}
+        resources:
+          limits:
+            cpu: {{ .Values.gateway.resources.limits.cpu | quote }}
+            memory: {{ .Values.gateway.resources.limits.memory | quote }}
+          requests:
+            cpu: {{ .Values.gateway.resources.requests.cpu | quote }}
+            memory: {{ .Values.gateway.resources.requests.memory | quote }}
+        env:
+          - name: LOG_LEVEL
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: loglevel
+          - name: VERSION
+            valueFrom:
+              configMapKeyRef:
+                name: k10-config
+                key: version
+{{- if .Values.fips.enabled }}
+          {{- include "k10.enforceFIPSEnvironmentVariables" . | indent 10 }}
+{{- end }}
+          {{- with $capabilities := include "k10.capabilities" . }}
+          - name: K10_CAPABILITIES
+            value: {{ $capabilities | quote }}
+          {{- end }}
+          {{- with $capabilities_mask := include "k10.capabilities_mask" . }}
+          - name: K10_CAPABILITIES_MASK
+            value: {{ $capabilities_mask | quote }}
+          {{- end }}
+          {{- if eq (include "check.dexAuth" .) "true" }}
+          - name: {{ include "k10.gatewayEnableDex" . }}
+            value: "true"
+          {{- end }}
+        envFrom:
+        - configMapRef:
+            name: k10-gateway
+        livenessProbe:
+          httpGet:
+            path: /healthz
+            port: {{ $container_port }}
+            scheme: HTTP{{ if .Values.secrets.tlsSecret }}S{{ end }}
+          initialDelaySeconds: 5
+        readinessProbe:
+          httpGet:
+            path: /healthz
+            port: {{ $container_port }}
+            scheme: HTTP{{ if .Values.secrets.tlsSecret }}S{{ end }}
+      restartPolicy: Always
+      {{- if .Values.secrets.tlsSecret }}
+      volumes:
+        - name: tls-volume
+          secret:
+            secretName: {{ .Values.secrets.tlsSecret }}
+      {{- end }}
diff --git a/charts/kasten/k10/7.5.401/templates/ingress.yaml b/charts/kasten/k10/7.5.401/templates/ingress.yaml
new file mode 100644
index 0000000000..5a98d3bae8
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/ingress.yaml
@@ -0,0 +1,73 @@
+{{- $ingressApiIsStable := eq (include "ingress.isStable" .) "true" -}}
+{{- $service_port := .Values.gateway.service.externalPort -}}
+{{ if .Values.ingress.create }}
+{{ include "authEnabled.check" . }}
+{{ include "check.ingress.defaultBackend" . }}
+apiVersion: {{ template "ingress.apiVersion" . }}
+kind: Ingress
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+  namespace: {{ .Release.Namespace }}
+  name: {{ .Values.ingress.name | default (printf "%s-ingress" .Release.Name) }}
+  annotations:
+{{ include "ingressClassAnnotation" . | indent 4 }}
+    {{- if .Values.secrets.tlsSecret }}
+    nginx.ingress.kubernetes.io/secure-backends: "true"
+    nginx.ingress.kubernetes.io/backend-protocol: HTTPS
+    {{- end }}
+    {{- if .Values.ingress.annotations }}
+{{ toYaml .Values.ingress.annotations | indent 4 }}
+    {{- end }}
+spec:
+{{ include "specIngressClassName" . | indent 2 }}
+{{ with .Values.ingress.defaultBackend }}
+  {{- if or .service.enabled .resource.enabled }}
+  defaultBackend:
+    {{- with .service }}
+    {{- if .enabled }}
+    service:
+      name: {{ required "`name` is required in the `ingress.defaultBackend.service`." .name }}
+      port:
+        {{- if .port.name }}
+        name: {{ .port.name }}
+        {{- else if .port.number }}
+        number: {{ .port.number }}
+        {{- end }}
+    {{- end }}
+    {{- end }}
+    {{- with .resource }}
+    {{- if .enabled }}
+    resource:
+      apiGroup: {{ .apiGroup }}
+      name: {{ required "`name` is required in the `ingress.defaultBackend.resource`." .name }}
+      kind: {{ required "`kind` is required in the `ingress.defaultBackend.resource`." .kind }}
+    {{- end }}
+    {{- end }}
+  {{- end }}
+{{- end }}
+{{- if .Values.ingress.tls.enabled }}
+  tls:
+  - hosts:
+    - {{ required "ingress.host value is required for TLS configuration" .Values.ingress.host }}
+    secretName: {{ .Values.ingress.tls.secretName }}
+{{- end }}
+  rules:
+  - http:
+      paths:
+        - path: /{{ default .Release.Name .Values.ingress.urlPath | trimPrefix "/" | trimSuffix "/" }}/
+          pathType: {{ default "ImplementationSpecific" .Values.ingress.pathType }}
+          backend:
+            {{- if $ingressApiIsStable }}
+            service:
+              name: gateway
+              port:
+                number: {{ $service_port }}
+            {{- else }}
+            serviceName: gateway
+            servicePort: {{ $service_port }}
+            {{- end }}
+    {{- if .Values.ingress.host }}
+    host: {{ .Values.ingress.host }}
+    {{- end }}
+{{ end }}
diff --git a/charts/kasten/k10/7.5.401/templates/k10-config.yaml b/charts/kasten/k10/7.5.401/templates/k10-config.yaml
new file mode 100644
index 0000000000..af31659e82
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/k10-config.yaml
@@ -0,0 +1,365 @@
+kind: ConfigMap
+apiVersion: v1
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+  namespace: {{ .Release.Namespace }}
+  name: k10-config
+data:
+  DataStoreLogLevel: {{ default "error" | quote }}
+  DataStoreFileLogLevel: {{ default "" | quote }}
+  loglevel: {{ .Values.logLevel | quote }}
+  {{- if .Values.clusterName }}
+  clustername: {{ quote .Values.clusterName }}
+  {{- end }}
+  version: {{ .Chart.AppVersion }}
+  {{- $capabilities := include "k10.capabilities" . | splitList " " }}
+  {{- $capabilities_mask := include "k10.capabilities_mask" . | splitList " " }}
+  {{- if and ( has "mc" $capabilities ) ( not ( has "mc" $capabilities_mask ) ) }}
+  multiClusterVersion: {{ include "k10.multiClusterVersion" . | quote }}
+  {{- end }}
+  modelstoredirname: "//mnt/k10state/kasten-io/"
+  apiDomain: {{ include "apiDomain" . }}
+  k10DataStoreDisableCompression: "false"
+  k10DataStoreParallelUpload: {{ .Values.datastore.parallelUploads | quote }}
+  k10DataStoreParallelDownload: {{ .Values.datastore.parallelDownloads | quote }}
+  k10DataStoreParallelBlockUpload: {{ .Values.datastore.parallelBlockUploads | quote }}
+  k10DataStoreParallelBlockDownload: {{ .Values.datastore.parallelBlockDownloads | quote }}
+  k10DataStoreEstimationType: {{ .Values.datastore.estimationType | quote }}
+  k10DataStoreAdaptiveEstimationThreshold: {{ .Values.datastore.adaptiveEstimationThreshold | quote }}
+  k10DataStoreGeneralContentCacheSizeMB: {{ include "k10.defaultK10DataStoreGeneralContentCacheSizeMB" . | quote }}
+  k10DataStoreGeneralMetadataCacheSizeMB: {{ include "k10.defaultK10DataStoreGeneralMetadataCacheSizeMB" . | quote }}
+  k10DataStoreTotalCacheSizeLimitMB : {{ include "k10.defaultK10DataStoreTotalCacheSizeLimitMB" . | quote }}
+  k10DataStoreRestoreContentCacheSizeMB: {{ include "k10.defaultK10DataStoreRestoreContentCacheSizeMB" . | quote }}
+  k10DataStoreRestoreMetadataCacheSizeMB: {{ include "k10.defaultK10DataStoreRestoreMetadataCacheSizeMB" . | quote }}
+  K10BackupBufferFileHeadroomFactor: {{ include "k10.defaultK10BackupBufferFileHeadroomFactor" . | quote }}
+  AWSAssumeRoleDuration: {{ default (include "k10.defaultAssumeRoleDuration" .) .Values.awsConfig.assumeRoleDuration | quote }}
+  {{- if gt (int .Values.kanister.backupTimeout) 0 }}
+  K10TimeoutBlueprintBackup: {{ default (include "k10.defaultK10TimeoutBlueprintBackup" .) .Values.kanister.backupTimeout | quote }}
+  {{- else }}
+  K10TimeoutBlueprintBackup: {{ default (include "k10.defaultK10TimeoutBlueprintBackup" .) .Values.timeout.blueprintBackup | quote }}
+  {{- end }}
+  {{- if gt (int .Values.kanister.restoreTimeout) 0 }}
+  K10TimeoutBlueprintRestore: {{ default (include "k10.defaultK10TimeoutBlueprintRestore" .) .Values.kanister.restoreTimeout | quote }}
+  {{- else }}
+  K10TimeoutBlueprintRestore: {{ default (include "k10.defaultK10TimeoutBlueprintRestore" .) .Values.timeout.blueprintRestore | quote }}
+  {{- end }}
+  {{- if gt (int .Values.kanister.deleteTimeout) 0 }}
+  K10TimeoutBlueprintDelete: {{ default (include "k10.defaultK10TimeoutBlueprintDelete" .) .Values.kanister.deleteTimeout | quote }}
+  {{- else }}
+  K10TimeoutBlueprintDelete: {{ default (include "k10.defaultK10TimeoutBlueprintDelete" .) .Values.timeout.blueprintDelete | quote }}
+  {{- end }}
+  {{- if gt (int .Values.kanister.hookTimeout) 0 }}
+  K10TimeoutBlueprintHooks: {{ default (include "k10.defaultK10TimeoutBlueprintHooks" .) .Values.kanister.hookTimeout | quote }}
+  {{- else }}
+  K10TimeoutBlueprintHooks: {{ default (include "k10.defaultK10TimeoutBlueprintHooks" .) .Values.timeout.blueprintHooks | quote }}
+  {{- end }}
+  {{- if gt (int .Values.kanister.checkRepoTimeout) 0 }}
+  K10TimeoutCheckRepoPodReady: {{ default (include "k10.defaultK10TimeoutCheckRepoPodReady" .) .Values.kanister.checkRepoTimeout | quote }}
+  {{- else }}
+  K10TimeoutCheckRepoPodReady: {{ default (include "k10.defaultK10TimeoutCheckRepoPodReady" .) .Values.timeout.checkRepoPodReady | quote }}
+  {{- end }}
+  {{- if gt (int .Values.kanister.statsTimeout) 0 }}
+  K10TimeoutStatsPodReady: {{ default (include "k10.defaultK10TimeoutStatsPodReady" .) .Values.kanister.statsTimeout | quote }}
+  {{- else }}
+  K10TimeoutStatsPodReady: {{ default (include "k10.defaultK10TimeoutStatsPodReady" .) .Values.timeout.statsPodReady | quote }}
+  {{- end }}
+  {{- if gt (int .Values.kanister.efsPostRestoreTimeout) 0 }}
+  K10TimeoutEFSRestorePodReady: {{ default (include "k10.defaultK10TimeoutEFSRestorePodReady" .) .Values.kanister.efsPostRestoreTimeout | quote }}
+  {{- else }}
+  K10TimeoutEFSRestorePodReady: {{ default (include "k10.defaultK10TimeoutEFSRestorePodReady" .) .Values.timeout.efsRestorePodReady | quote }}
+  {{- end }}
+  {{- if gt (int .Values.kanister.podReadyWaitTimeout) 0 }}
+  K10TimeoutWorkerPodReady: {{ .Values.kanister.podReadyWaitTimeout | quote }}
+  {{- else }}
+  K10TimeoutWorkerPodReady: {{ .Values.timeout.workerPodReady | quote }}
+  {{- end }}
+
+  KanisterManagedDataServicesBlueprintsEnabled: {{ .Values.kanister.managedDataServicesBlueprintsEnabled | quote }}
+
+  WorkerPodMetricSidecarEnabled: {{ default .Values.kanisterPodMetricSidecar.enabled .Values.workerPodMetricSidecar.enabled | quote }}
+  WorkerPodMetricSidecarMetricLifetime: {{ default .Values.kanisterPodMetricSidecar.metricLifetime .Values.workerPodMetricSidecar.metricLifetime | quote }}
+  WorkerPodPushgatewayMetricsInterval: {{ default .Values.kanisterPodMetricSidecar.pushGatewayInterval .Values.workerPodMetricSidecar.pushGatewayInterval | quote }}
+{{- include "workerPodMetricSidecarResources" . | indent 2 }}
+  KanisterToolsImage: {{ include "get.kanisterToolsImage" . | quote }}
+
+  K10MutatingWebhookTLSCertDir: "/etc/ssl/certs/webhook"
+  {{- if .Values.injectGenericVolumeBackupSidecar.enabled }}
+  K10MutatingWebhookPort: {{ default 8080 .Values.injectGenericVolumeBackupSidecar.webhookServer.port | quote }}
+  {{- else }}
+  K10MutatingWebhookPort: {{ default 8080 .Values.injectKanisterSidecar.webhookServer.port | quote }}
+  {{- end }}
+
+  {{- if gt (int .Values.limiter.concurrentSnapConversions) 0 }}
+  K10LimiterSnapshotExportsPerAction: {{ default (include "k10.defaultK10LimiterSnapshotExportsPerAction" .) .Values.limiter.concurrentSnapConversions | quote }}
+  {{- else }}
+  K10LimiterSnapshotExportsPerAction: {{ default (include "k10.defaultK10LimiterSnapshotExportsPerAction" .) .Values.limiter.snapshotExportsPerAction | quote }}
+  {{- end }}
+  {{- if gt (int .Values.limiter.genericVolumeSnapshots) 0 }}
+  K10LimiterGenericVolumeBackupsPerCluster: {{ default (include "k10.defaultK10LimiterGenericVolumeBackupsPerCluster" .) .Values.limiter.genericVolumeSnapshots | quote }}
+  {{- else }}
+  K10LimiterGenericVolumeBackupsPerCluster: {{ default (include "k10.defaultK10LimiterGenericVolumeBackupsPerCluster" .) .Values.limiter.genericVolumeBackupsPerCluster | quote }}
+  {{- end }}
+  {{- if gt (int .Values.limiter.genericVolumeCopies) 0 }}
+  K10LimiterSnapshotExportsPerCluster: {{ default (include "k10.defaultK10LimiterSnapshotExportsPerCluster" .) .Values.limiter.genericVolumeCopies | quote }}
+  {{- else }}
+  K10LimiterSnapshotExportsPerCluster: {{ default (include "k10.defaultK10LimiterSnapshotExportsPerCluster" .) .Values.limiter.snapshotExportsPerCluster | quote }}
+  {{- end }}
+  {{- if gt (int .Values.limiter.genericVolumeRestores) 0 }}
+  K10LimiterVolumeRestoresPerCluster: {{ default (include "k10.defaultK10LimiterVolumeRestoresPerCluster" .) .Values.limiter.genericVolumeRestores | quote }}
+  {{- else }}
+  K10LimiterVolumeRestoresPerCluster: {{ default (include "k10.defaultK10LimiterVolumeRestoresPerCluster" .) .Values.limiter.volumeRestoresPerCluster | quote }}
+  {{- end }}
+  {{- if gt (int .Values.limiter.csiSnapshots) 0 }}
+  K10LimiterCsiSnapshotsPerCluster: {{ default (include "k10.defaultK10LimiterCsiSnapshotsPerCluster" .) .Values.limiter.csiSnapshots | quote }}
+  {{- else }}
+  K10LimiterCsiSnapshotsPerCluster: {{ default (include "k10.defaultK10LimiterCsiSnapshotsPerCluster" .) .Values.limiter.csiSnapshotsPerCluster | quote }}
+  {{- end }}
+  {{- if gt (int .Values.limiter.providerSnapshots) 0 }}
+  K10LimiterDirectSnapshotsPerCluster: {{ default (include "k10.defaultK10LimiterDirectSnapshotsPerCluster" .) .Values.limiter.providerSnapshots | quote }}
+  {{- else }}
+  K10LimiterDirectSnapshotsPerCluster: {{ default (include "k10.defaultK10LimiterDirectSnapshotsPerCluster" .) .Values.limiter.directSnapshotsPerCluster | quote }}
+  {{- end }}
+  {{- if gt (int .Values.limiter.imageCopies) 0 }}
+  K10LimiterImageCopiesPerCluster: {{ default (include "k10.defaultK10LimiterImageCopiesPerCluster" .) .Values.limiter.imageCopies | quote }}
+  {{- else }}
+  K10LimiterImageCopiesPerCluster: {{ default (include "k10.defaultK10LimiterImageCopiesPerCluster" .) .Values.limiter.imageCopiesPerCluster | quote }}
+  {{- end }}
+  K10LimiterWorkloadSnapshotsPerAction: {{ default (include "k10.defaultK10LimiterWorkloadSnapshotsPerAction" .) .Values.limiter.workloadSnapshotsPerAction | quote }}
+  {{- if gt (int .Values.services.executor.workerCount) 0 }}
+  K10LimiterExecutorThreads: {{ default (include "k10.defaultK10LimiterExecutorThreads" .) .Values.services.executor.workerCount | quote }}
+  {{- else }}
+  K10LimiterExecutorThreads: {{ default (include "k10.defaultK10LimiterExecutorThreads" .) .Values.limiter.executorThreads | quote }}
+  {{- end }}
+  {{- if gt (int .Values.services.executor.maxConcurrentRestoreCsiSnapshots) 0 }}
+  K10LimiterCsiSnapshotRestoresPerAction: {{ default (include "k10.defaultK10LimiterCsiSnapshotRestoresPerAction" .) .Values.services.executor.maxConcurrentRestoreCsiSnapshots | quote }}
+  {{- else }}
+  K10LimiterCsiSnapshotRestoresPerAction: {{ default (include "k10.defaultK10LimiterCsiSnapshotRestoresPerAction" .) .Values.limiter.csiSnapshotRestoresPerAction | quote }}
+  {{- end }}
+  {{- if gt (int .Values.services.executor.maxConcurrentRestoreGenericVolumeSnapshots) 0 }}
+  K10LimiterVolumeRestoresPerAction: {{ default (include "k10.defaultK10LimiterVolumeRestoresPerAction" .) .Values.services.executor.maxConcurrentRestoreGenericVolumeSnapshots | quote }}
+  {{- else }}
+  K10LimiterVolumeRestoresPerAction: {{ default (include "k10.defaultK10LimiterVolumeRestoresPerAction" .) .Values.limiter.volumeRestoresPerAction | quote }}
+  {{- end }}
+  {{- if gt (int .Values.services.executor.maxConcurrentRestoreWorkloads) 0 }}
+  K10LimiterWorkloadRestoresPerAction: {{ default (include "k10.defaultK10LimiterWorkloadRestoresPerAction" .) .Values.services.executor.maxConcurrentRestoreWorkloads | quote }}
+  {{- else }}
+  K10LimiterWorkloadRestoresPerAction: {{ default (include "k10.defaultK10LimiterWorkloadRestoresPerAction" .) .Values.limiter.workloadRestoresPerAction | quote }}
+  {{- end }}
+
+  K10GCDaemonPeriod: {{ default (include "k10.defaultK10GCDaemonPeriod" .) .Values.garbagecollector.daemonPeriod | quote }}
+  K10GCKeepMaxActions: {{ default (include "k10.defaultK10GCKeepMaxActions" .) .Values.garbagecollector.keepMaxActions | quote }}
+  K10GCActionsEnabled: {{ default (include "k10.defaultK10GCActionsEnabled" .) .Values.garbagecollector.actions.enabled | quote }}
+
+  K10EphemeralPVCOverhead: {{ .Values.ephemeralPVCOverhead | quote }}
+
+  K10PersistenceStorageClass: {{ .Values.global.persistence.storageClass | quote }}
+
+  K10DefaultPriorityClassName: {{ default (include "k10.defaultK10DefaultPriorityClassName" .) .Values.defaultPriorityClassName | quote }}
+  {{- if .Values.global.podLabels }}
+  K10CustomPodLabels: {{ include "k10.globalPodLabelsJson" . | quote }}
+  {{- end }}
+  {{- if .Values.global.podAnnotations }}
+  K10CustomPodAnnotations: {{ include "k10.globalPodAnnotationsJson" . | quote }}
+  {{- end }}
+
+  kubeVirtVMsUnFreezeTimeout: {{ default (include "k10.defaultKubeVirtVMsUnfreezeTimeout" .) .Values.kubeVirtVMs.snapshot.unfreezeTimeout | quote }}
+
+  {{- if and .Values.maxJobWaitDuration (not (empty .Values.maxJobWaitDuration)) }}
+  K10TimeoutJobWait: {{ .Values.maxJobWaitDuration | quote }}
+  {{- else }}
+  K10TimeoutJobWait: {{ .Values.timeout.jobWait | quote }}
+  {{- end }}
+
+  quickDisasterRecoveryEnabled: {{ .Values.kastenDisasterRecovery.quickMode.enabled | quote }}
+
+  {{- if .Values.forceRootInKanisterHooks }}
+  K10ForceRootInBlueprintActions: {{ .Values.forceRootInKanisterHooks| quote }}
+  {{- else }}
+  K10ForceRootInBlueprintActions: {{ .Values.forceRootInBlueprintActions | quote }}
+  {{- end }}
+
+  workerPodResourcesCRDEnabled: {{ .Values.workerPodCRDs.enabled | quote }}
+{{- include "workerPodResourcesCRD" . | indent 2 }}
+
+  {{- if .Values.awsConfig.efsBackupVaultName }}
+  efsBackupVaultName: {{ quote .Values.awsConfig.efsBackupVaultName }}
+  {{- end }}
+
+  {{- if .Values.excludedApps }}
+  excludedApps: '{{ join "," .Values.excludedApps }}'
+  {{- end }}
+
+  {{- if .Values.vmWare.taskTimeoutMin }}
+  vmWareTaskTimeoutMin: {{ quote .Values.vmWare.taskTimeoutMin }}
+  {{- end }}
+
+{{- include "get.kanisterPodCustomLabels" . | indent 2}}
+{{- include "get.kanisterPodCustomAnnotations" . | indent 2}}
+
+  {{- if .Values.kanisterFunctionVersion }}
+  kanisterFunctionVersion: {{ .Values.kanisterFunctionVersion | quote }}
+  {{- else }}
+  kanisterFunctionVersion: {{ quote "v1.0.0-alpha" }}
+  {{- end }}
+{{- include "kanisterToolsResources" . | indent 2 }}
+{{- include "get.gvsActivationToken" . | indent 2 }}
+
+  {{- if .Values.genericStorageBackup.overridepubkey }}
+  overridePublicKeyForGVS: {{ .Values.genericStorageBackup.overridepubkey | quote }}
+  {{- end }}
+
+  {{- with (include "k10.fluentbitEndpoint" .) }}
+  fluentbitEndpoint: {{ . | quote }}
+  {{- end }}
+
+{{ if .Values.features }}
+---
+kind: ConfigMap
+apiVersion: v1
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+  namespace: {{ .Release.Namespace }}
+  name: k10-features
+data:
+{{ include "k10.features" . | indent 2}}
+{{ end }}
+{{ if .Values.auth.openshift.enabled }}
+---
+kind: ConfigMap
+apiVersion: v1
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+  name: k10-dex
+  namespace: {{ .Release.Namespace }}
+data:
+  config.yaml: |
+    issuer: {{ printf "%s/dex" (trimSuffix "/" .Values.auth.openshift.dashboardURL) }}
+    storage:
+      type: memory
+    web:
+      http: 0.0.0.0:8080
+    logger:
+      level: info
+      format: text
+    connectors:
+    - type: openshift
+      id: openshift
+      name: OpenShift
+      config:
+        issuer: {{ .Values.auth.openshift.openshiftURL }}
+        clientID: {{ printf "system:serviceaccount:%s:%s" .Release.Namespace (include "get.openshiftServiceAccountName" .) }}
+        clientSecret: {{ printf "{{ getenv \"%s\" }}" (include "k10.openShiftClientSecretEnvVar" . ) }}
+        redirectURI: {{ printf "%s/dex/callback" (trimSuffix "/" .Values.auth.openshift.dashboardURL) }}
+        insecureCA: {{ .Values.auth.openshift.insecureCA }}
+{{- if and (eq (include "check.cacertconfigmap" .) "false") .Values.auth.openshift.useServiceAccountCA }}
+        rootCA: /var/run/secrets/kubernetes.io/serviceaccount/ca.crt
+{{- end }}
+    oauth2:
+      skipApprovalScreen: true
+    staticClients:
+    - name: 'K10'
+      id: kasten
+      secret: kastensecret
+      redirectURIs:
+      - {{ printf "%s/auth-svc/v0/oidc/redirect" (trimSuffix "/" .Values.auth.openshift.dashboardURL) }}
+{{ end }}
+{{ if .Values.auth.ldap.enabled }}
+---
+kind: ConfigMap
+apiVersion: v1
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+  name: k10-dex
+  namespace: {{ .Release.Namespace }}
+data:
+  config.yaml: |
+    issuer: {{ printf "%s/dex" (trimSuffix "/" .Values.auth.ldap.dashboardURL) }}
+    storage:
+      type: memory
+    web:
+      http: 0.0.0.0:8080
+    frontend:
+      dir: {{ include "k10.dexFrontendDir" . }}
+      theme: custom
+      logoURL: theme/kasten-logo.svg
+    logger:
+      level: info
+      format: text
+    connectors:
+    - type: ldap
+      id: ldap
+      name: LDAP
+      config:
+        host: {{ .Values.auth.ldap.host }}
+        insecureNoSSL: {{ .Values.auth.ldap.insecureNoSSL }}
+        insecureSkipVerify: {{ .Values.auth.ldap.insecureSkipVerifySSL }}
+        startTLS: {{ .Values.auth.ldap.startTLS }}
+        bindDN: {{ .Values.auth.ldap.bindDN }}
+        bindPW: BIND_PASSWORD_PLACEHOLDER
+        userSearch:
+          baseDN: {{ .Values.auth.ldap.userSearch.baseDN }}
+          filter: {{ .Values.auth.ldap.userSearch.filter }}
+          username: {{ .Values.auth.ldap.userSearch.username }}
+          idAttr: {{ .Values.auth.ldap.userSearch.idAttr }}
+          emailAttr: {{ .Values.auth.ldap.userSearch.emailAttr }}
+          nameAttr: {{ .Values.auth.ldap.userSearch.nameAttr }}
+          preferredUsernameAttr: {{ .Values.auth.ldap.userSearch.preferredUsernameAttr }}
+        groupSearch:
+          baseDN: {{ .Values.auth.ldap.groupSearch.baseDN }}
+          filter: {{ .Values.auth.ldap.groupSearch.filter }}
+          nameAttr: {{ .Values.auth.ldap.groupSearch.nameAttr }}
+{{- with .Values.auth.ldap.groupSearch.userMatchers }}
+          userMatchers:
+{{ toYaml . | indent 10 }}
+{{- end }}
+    oauth2:
+      skipApprovalScreen: true
+    staticClients:
+    - name: 'K10'
+      id: kasten
+      secret: kastensecret
+      redirectURIs:
+      - {{ printf "%s/auth-svc/v0/oidc/redirect" (trimSuffix "/" .Values.auth.ldap.dashboardURL) }}
+---
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: k10-logos-dex
+  namespace: {{ .Release.Namespace }}
+binaryData:
+  {{- $files := .Files }}
+  {{- range tuple "files/favicon.png" "files/kasten-logo.svg" "files/styles.css" }}
+  {{ trimPrefix "files/" . }}: |-
+    {{ $files.Get . | b64enc }}
+  {{- end }}
+{{ end }}
+---
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: k10-gateway
+  namespace: {{ .Release.Namespace }}
+data:
+  {{ include "k10.gatewayPrefixVarName" . }}: {{ include "k10.prefixPath" . }}
+  {{ include "k10.gatewayGrafanaSvcVarName" . }}: {{ printf "%s-grafana" .Release.Name }}
+
+  {{- if .Values.gateway.requestHeaders }}
+  {{ include "k10.gatewayRequestHeadersVarName" .}}: {{ (.Values.gateway.requestHeaders | default list) | join " " }}
+  {{- end }}
+
+  {{- if .Values.gateway.authHeaders }}
+  {{ include "k10.gatewayAuthHeadersVarName" .}}: {{ (.Values.gateway.authHeaders | default list) | join " " }}
+  {{- end }}
+
+  {{- if .Values.gateway.service.internalPort }}
+  {{ include "k10.gatewayPortVarName" .}}: {{ .Values.gateway.service.internalPort | quote }}
+  {{- end }}
+
+  {{- if .Values.secrets.tlsSecret }}
+  {{ include "k10.gatewayTLSCertFile" . }}: /etc/tls/tls.crt
+  {{ include "k10.gatewayTLSKeyFile" . }}: /etc/tls/tls.key
+  {{- end }}
diff --git a/charts/kasten/k10/7.5.401/templates/k10-eula.yaml b/charts/kasten/k10/7.5.401/templates/k10-eula.yaml
new file mode 100644
index 0000000000..21e251d6c8
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/k10-eula.yaml
@@ -0,0 +1,21 @@
+kind: ConfigMap
+apiVersion: v1
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+  namespace: {{ .Release.Namespace }}
+  name: k10-eula
+data:
+  text: {{ .Files.Get "eula.txt" | quote }}
+---
+{{ if .Values.eula.accept }}
+kind: ConfigMap
+apiVersion: v1
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+  namespace: {{ .Release.Namespace }}
+  name: k10-eula-info
+data:
+{{ include "k10.eula.fields"  . | indent 2 }}
+{{ end }}
diff --git a/charts/kasten/k10/7.5.401/templates/k10-scc.yaml b/charts/kasten/k10/7.5.401/templates/k10-scc.yaml
new file mode 100644
index 0000000000..12a449f6fa
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/k10-scc.yaml
@@ -0,0 +1,46 @@
+{{- if .Values.scc.create }}
+kind: SecurityContextConstraints
+apiVersion: security.openshift.io/v1
+metadata:
+  name:  {{ .Release.Name }}-scc
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+allowHostDirVolumePlugin: false
+allowHostIPC: false
+allowHostNetwork: false
+allowHostPID: false
+allowHostPorts: false
+allowPrivilegeEscalation: false
+allowPrivilegedContainer: false
+allowedCapabilities:
+  - CHOWN
+  - FOWNER
+  - DAC_OVERRIDE
+defaultAddCapabilities:
+  - CHOWN
+  - FOWNER
+  - DAC_OVERRIDE
+fsGroup:
+  type: RunAsAny
+priority: {{ .Values.scc.priority }}
+readOnlyRootFilesystem: false
+requiredDropCapabilities:
+  - ALL
+runAsUser:
+  type: RunAsAny
+seLinuxContext:
+  type: RunAsAny
+supplementalGroups:
+  type: RunAsAny
+seccompProfiles:
+  - runtime/default
+users:
+  - system:serviceaccount:{{.Release.Namespace}}:{{ template "serviceAccountName" . }}
+volumes:
+  - configMap
+  - downwardAPI
+  - emptyDir
+  - persistentVolumeClaim
+  - projected
+  - secret
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/templates/kopia-tls-certs.yaml b/charts/kasten/k10/7.5.401/templates/kopia-tls-certs.yaml
new file mode 100644
index 0000000000..ac0635f51c
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/kopia-tls-certs.yaml
@@ -0,0 +1,33 @@
+# alternate names of the services. This renders to: [ component-svc.namespace, component-svc.namespace.svc ]
+{{- $altNamesKopia := list ( printf "%s-svc.%s" "data-mover" .Release.Namespace ) ( printf "%s-svc.%s.svc" "data-mover" .Release.Namespace ) }}
+# generate ca cert with 365 days of validity
+{{- $caKopia := genCA ( printf "%s-svc-ca" "data-mover" ) 365 }}
+# generate cert with CN="component-svc", SAN=$altNames and with 365 days of validity
+{{- $certKopia := genSignedCert ( printf "%s-svc" "data-mover" ) nil $altNamesKopia 365 $caKopia }}
+apiVersion: v1
+kind: Secret
+type: Opaque
+metadata:
+  name: kopia-tls-cert
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+{{- if .Values.global.rhMarketPlace }}
+  annotations:
+    "helm.sh/hook": "pre-install"
+{{- end }}
+data:
+  tls.crt: {{ $certKopia.Cert | b64enc }}
+---
+apiVersion: v1
+kind: Secret
+type: Opaque
+metadata:
+  name: kopia-tls-key
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+{{- if .Values.global.rhMarketPlace }}
+  annotations:
+    "helm.sh/hook": "pre-install"
+{{- end }}
+data:
+  tls.key: {{ $certKopia.Key | b64enc }}
diff --git a/charts/kasten/k10/7.5.401/templates/license.yaml b/charts/kasten/k10/7.5.401/templates/license.yaml
new file mode 100644
index 0000000000..f409fb7e51
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/license.yaml
@@ -0,0 +1,25 @@
+{{- if not ( or ( .Values.license ) ( .Values.metering.awsMarketplace ) ( .Values.metering.awsManagedLicense ) ( .Values.metering.licenseConfigSecretName ) ) }}
+{{- if .Files.Get "triallicense" }}
+apiVersion: v1
+kind: Secret
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+  namespace: {{ .Release.Namespace }}
+  name: k10-trial-license
+type: Opaque
+data:
+  license: {{ print (.Files.Get "triallicense") }}
+{{- end }}
+{{- end }}
+---
+apiVersion: v1
+kind: Secret
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+  namespace: {{ .Release.Namespace }}
+  name: k10-license
+type: Opaque
+data:
+  license: {{ include "k10.getlicense" . }}
diff --git a/charts/kasten/k10/7.5.401/templates/mc.yaml b/charts/kasten/k10/7.5.401/templates/mc.yaml
new file mode 100644
index 0000000000..2c23f94ae5
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/mc.yaml
@@ -0,0 +1,6 @@
+{{- if not .Values.multicluster.enabled -}}
+  {{- $clusterInfo := lookup "v1" "Secret" .Release.Namespace "mc-cluster-info" -}}
+  {{- if $clusterInfo -}}
+    {{- fail "WARNING: Multi-cluster features must remain enabled as long as this cluster is connected to a multi-cluster system.\nEither disconnect this cluster from the multi-cluster system or use multicluster.enabled=true to enable multi-cluster features." -}}
+  {{- end -}}
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/templates/mutatingwebhook.yaml b/charts/kasten/k10/7.5.401/templates/mutatingwebhook.yaml
new file mode 100644
index 0000000000..5f86b25920
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/mutatingwebhook.yaml
@@ -0,0 +1,78 @@
+{{- if or .Values.injectGenericVolumeBackupSidecar.enabled .Values.injectKanisterSidecar.enabled -}}
+# alternate names of the services. This renders to: [ component-svc.namespace, component-svc.namespace.svc ]
+{{- $altNames := list ( printf "%s-svc.%s" "controllermanager" .Release.Namespace ) ( printf "%s-svc.%s.svc" "controllermanager" .Release.Namespace ) }}
+# generate ca cert with 365 days of validity
+{{- $ca := genCA ( printf "%s-svc-ca" "controllermanager" ) 365 }}
+# generate cert with CN="component-svc", SAN=$altNames and with 365 days of validity
+{{- $cert := genSignedCert ( printf "%s-svc" "controllermanager" ) nil $altNames 365 $ca }}
+apiVersion: v1
+kind: Secret
+type: kubernetes.io/tls
+metadata:
+  name: controllermanager-certs
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+{{/*
+This resource uses the Helm-generated CA/Cert. In case of installation to OpenShift,
+it should be moved to Helm hook to avoid an upgrade loop in the OpenShift operator.
+*/}}
+{{- if .Values.scc.create }}
+  annotations:
+    "helm.sh/hook": "pre-install,pre-upgrade"
+{{- end }}
+data:
+  tls.crt: {{ $cert.Cert | b64enc }}
+  tls.key: {{ $cert.Key | b64enc }}
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: MutatingWebhookConfiguration
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+{{/*
+This resource uses the Helm-generated CA/Cert. In case of installation to OpenShift,
+it should be moved to Helm hook to avoid an upgrade loop in the OpenShift operator.
+*/}}
+{{- if .Values.scc.create }}
+  annotations:
+    "helm.sh/hook": "pre-install,pre-upgrade"
+{{- end }}
+  namespace: {{ .Release.Namespace }}
+  name: k10-sidecar-injector
+webhooks:
+- name: k10-sidecar-injector.kasten.io
+  admissionReviewVersions: ["v1", "v1beta1"]
+  failurePolicy: Ignore
+  sideEffects: None
+  clientConfig:
+    service:
+      name: controllermanager-svc
+      namespace: {{ .Release.Namespace }}
+      path: "/k10/mutate"
+      port: 443
+    caBundle: {{ b64enc $ca.Cert }}
+  rules:
+    - operations: ["CREATE", "UPDATE"]
+      apiGroups: ["*"]
+      apiVersions: ["v1"]
+      resources: ["deployments", "statefulsets", "deploymentconfigs"]
+{{- if .Values.injectGenericVolumeBackupSidecar.enabled }}
+  {{- if .Values.injectGenericVolumeBackupSidecar.namespaceSelector }}
+  namespaceSelector:
+  {{- toYaml .Values.injectGenericVolumeBackupSidecar.namespaceSelector | nindent 4 }}
+  {{- end }}
+  {{- if .Values.injectGenericVolumeBackupSidecar.objectSelector }}
+  objectSelector:
+  {{- toYaml .Values.injectGenericVolumeBackupSidecar.objectSelector | nindent 4 }}
+  {{- end }}
+{{- else if .Values.injectKanisterSidecar.enabled }}
+  {{- if .Values.injectKanisterSidecar.namespaceSelector }}
+  namespaceSelector:
+  {{- toYaml .Values.injectKanisterSidecar.namespaceSelector | nindent 4 }}
+  {{- end }}
+  {{- if .Values.injectKanisterSidecar.objectSelector }}
+  objectSelector:
+  {{- toYaml .Values.injectKanisterSidecar.objectSelector | nindent 4 }}
+  {{- end }}
+{{- end }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/templates/networkpolicy.yaml b/charts/kasten/k10/7.5.401/templates/networkpolicy.yaml
new file mode 100644
index 0000000000..98ac8d7dff
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/networkpolicy.yaml
@@ -0,0 +1,273 @@
+{{- $mutating_webhook_port := default 8080 (default .Values.injectKanisterSidecar.webhookServer.port .Values.injectGenericVolumeBackupSidecar.webhookServer.port) -}}
+{{- if .Values.networkPolicy.create }}
+apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
+metadata:
+  name: default-deny
+  namespace: {{ .Release.Namespace }}
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+spec:
+  podSelector: {}
+  policyTypes:
+  - Ingress
+{{- if eq (include "k10.isOpenShift" .) "true" }}
+---
+kind: NetworkPolicy
+apiVersion: networking.k8s.io/v1
+metadata:
+  name: allow-openshift-console-access
+  namespace: {{ .Release.Namespace }}
+spec:
+  podSelector:
+    matchLabels:
+      release: {{ .Release.Name }}
+  ingress:
+  - from:
+    - namespaceSelector:
+        matchLabels:
+          kubernetes.io/metadata.name: openshift-console
+{{- end }}
+---
+kind: NetworkPolicy
+apiVersion: networking.k8s.io/v1
+metadata:
+  name: access-k10-services
+  namespace: {{ .Release.Namespace }}
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+spec:
+  podSelector:
+    matchLabels:
+      release: {{ .Release.Name }}
+  ingress:
+    - from:
+        - podSelector:
+            matchLabels:
+              access-k10-services: allowed
+      ports:
+        - protocol: TCP
+          port: {{ .Values.service.internalPort }}
+---
+kind: NetworkPolicy
+apiVersion: networking.k8s.io/v1
+metadata:
+  name: cross-services-allow
+  namespace: {{ .Release.Namespace }}
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+spec:
+  podSelector:
+    matchLabels:
+      release: {{ .Release.Name }}
+  ingress:
+    - from:
+      - podSelector:
+          matchLabels:
+            release: {{ .Release.Name }}
+      ports:
+        - protocol: TCP
+          port: {{ .Values.service.internalPort }}
+---
+{{/* TODO: Consider a flag to turn this off. */}}
+kind: NetworkPolicy
+apiVersion: networking.k8s.io/v1
+metadata:
+  name: allow-gateway-to-mc-external
+  namespace: {{ .Release.Namespace }}
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+spec:
+  podSelector:
+    matchLabels:
+      component: controllermanager
+      release: {{ .Release.Name }}
+  ingress:
+    - from:
+      - podSelector:
+          matchLabels:
+            service: gateway
+            release: {{ .Release.Name }}
+      ports:
+        - protocol: TCP
+          port: {{ include "k10.mcExternalPort" nil }}
+{{- if .Values.logging.internal }}
+---
+kind: NetworkPolicy
+apiVersion: networking.k8s.io/v1
+metadata:
+  name: logging-allow-internal
+  namespace: {{ .Release.Namespace }}
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+spec:
+  podSelector:
+    matchLabels:
+      release: {{ .Release.Name }}
+      run: logging-svc
+  ingress:
+    - from:
+      - podSelector:
+          matchLabels:
+            release: {{ .Release.Name }}
+      ports:
+        # Logging input port
+        - protocol: TCP
+          port: 24224
+        - protocol: TCP
+          port: 24225
+{{- end }}
+---
+kind: NetworkPolicy
+apiVersion: networking.k8s.io/v1
+metadata:
+  name: allow-external
+  namespace: {{ .Release.Namespace }}
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+spec:
+  podSelector:
+    matchLabels:
+      service: gateway
+      release: {{ .Release.Name }}
+  ingress:
+  - from:
+    ports:
+    - protocol: TCP
+      port: {{ .Values.gateway.service.internalPort | default 8000 }}
+---
+kind: NetworkPolicy
+apiVersion: networking.k8s.io/v1
+metadata:
+  name: allow-all-api
+  namespace: {{ .Release.Namespace }}
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+spec:
+  podSelector:
+    matchLabels:
+      run: aggregatedapis-svc
+      release: {{ .Release.Name }}
+  ingress:
+  - from:
+    ports:
+    - protocol: TCP
+      port: {{ .Values.service.aggregatedApiPort }}
+{{- if or .Values.workerPodMetricSidecar.enabled .Values.kanisterPodMetricSidecar.enabled }}
+---
+kind: NetworkPolicy
+apiVersion: networking.k8s.io/v1
+metadata:
+  name: allow-metrics-kanister-pods
+  namespace: {{ .Release.Namespace }}
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+spec:
+  podSelector:
+    matchLabels:
+      release: {{ .Release.Name }}
+      run: metering-svc
+  ingress:
+  - from:
+    - podSelector:
+        matchLabels:
+          createdBy: kanister
+    ports:
+    - protocol: TCP
+      port: {{ .Values.service.internalPort }}
+{{- end -}}
+{{- if or .Values.injectGenericVolumeBackupSidecar.enabled .Values.injectKanisterSidecar.enabled }}
+---
+kind: NetworkPolicy
+apiVersion: networking.k8s.io/v1
+metadata:
+  name: allow-mutating-webhook
+  namespace: {{ .Release.Namespace }}
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+spec:
+  podSelector:
+    matchLabels:
+      release: {{ .Release.Name }}
+      run: controllermanager-svc
+  ingress:
+  - from:
+    ports:
+    - protocol: TCP
+      port: {{ $mutating_webhook_port }}
+{{- end -}}
+{{- if eq (include "check.dexAuth" .) "true" }}
+---
+kind: NetworkPolicy
+apiVersion: networking.k8s.io/v1
+metadata:
+  name: gateway-dex-allow
+  namespace: {{ .Release.Namespace }}
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+spec:
+  podSelector:
+    matchLabels:
+      release: {{ .Release.Name }}
+      run: auth-svc
+  ingress:
+  - from:
+    - podSelector:
+        matchLabels:
+          service: gateway
+          release: {{ .Release.Name }}
+    ports:
+    - protocol: TCP
+      port: 8080
+---
+kind: NetworkPolicy
+apiVersion: networking.k8s.io/v1
+metadata:
+  name: auth-dex-allow
+  namespace: {{ .Release.Namespace }}
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+spec:
+  podSelector:
+    matchLabels:
+      release: {{ .Release.Name }}
+      run: auth-svc
+  ingress:
+  - from:
+    - podSelector:
+        matchLabels:
+          run: auth-svc
+          release: {{ .Release.Name }}
+    ports:
+    - protocol: TCP
+      port: 8080
+{{- end -}}
+{{- $mainCtx := . }}
+{{- $colocatedList := include "get.enabledColocatedSvcList" . | fromYaml }}
+{{- range $primary, $secondaryList := $colocatedList }}
+---
+kind: NetworkPolicy
+apiVersion: networking.k8s.io/v1
+metadata:
+  name: {{ $primary }}-svc-allow-secondary-services
+  namespace: {{ $mainCtx.Release.Namespace }}
+  labels:
+{{ include "helm.labels" $mainCtx | indent 4 }}
+spec:
+  podSelector:
+    matchLabels:
+      release: {{ $mainCtx.Release.Name }}
+      run: {{ $primary }}-svc
+  ingress:
+  - from:
+    - podSelector:
+        matchLabels:
+          release: {{ $mainCtx.Release.Name }}
+    ports:
+  {{- range $skip, $secondary := $secondaryList }}
+  {{- $colocConfig := index (include "get.enabledColocatedServices" $mainCtx | fromYaml) $secondary }}
+    - protocol: TCP
+      port: {{ $colocConfig.port }}
+  {{- end -}}
+{{- end -}}
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/templates/ocp-ca-cert-extract-hook.yaml b/charts/kasten/k10/7.5.401/templates/ocp-ca-cert-extract-hook.yaml
new file mode 100644
index 0000000000..73f39bb9c1
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/ocp-ca-cert-extract-hook.yaml
@@ -0,0 +1,218 @@
+{{- if (include "k10.ocpcacertsautoextraction" .) -}}
+{{- if or .Values.secrets.dockerConfig .Values.secrets.dockerConfigPath }}
+---
+apiVersion: v1
+kind: Secret
+metadata:
+  annotations:
+    "helm.sh/hook": pre-install,pre-upgrade
+    "helm.sh/hook-weight": "1"
+    "helm.sh/hook-delete-policy": before-hook-creation,hook-succeeded,hook-failed
+  name: {{ .Release.Name }}-extract-ocp-ca-cert-dockerconfig
+  namespace: {{ .Release.Namespace }}
+type: kubernetes.io/dockerconfigjson
+data:
+  .dockerconfigjson: {{ or .Values.secrets.dockerConfig ( .Values.secrets.dockerConfigPath | b64enc ) }}
+{{- end }}
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    "helm.sh/hook": pre-install,pre-upgrade
+    "helm.sh/hook-weight": "1"
+    "helm.sh/hook-delete-policy": before-hook-creation,hook-succeeded,hook-failed
+  name: {{ .Release.Name }}-ocp-ca-cert-extractor
+  namespace: {{ .Release.Namespace }}
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    "helm.sh/hook": pre-install,pre-upgrade
+    "helm.sh/hook-weight": "1"
+    "helm.sh/hook-delete-policy": before-hook-creation,hook-succeeded,hook-failed
+  name: openshift-cluster-config-reader
+rules:
+  - apiGroups: ["config.openshift.io"]
+    resources: ["proxies", "apiservers"]
+    verbs: ["get", "list"]
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    "helm.sh/hook": pre-install,pre-upgrade
+    "helm.sh/hook-weight": "1"
+    "helm.sh/hook-delete-policy": before-hook-creation,hook-succeeded,hook-failed
+  name: openshift-config-reader
+  namespace: openshift-config
+rules:
+  - apiGroups: [""]
+    resources: ["configmaps", "secrets"]
+    verbs: ["get", "list"]
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    "helm.sh/hook": pre-install,pre-upgrade
+    "helm.sh/hook-weight": "1"
+    "helm.sh/hook-delete-policy": before-hook-creation,hook-succeeded,hook-failed
+  name: openshift-ingress-operator-reader
+  namespace: openshift-ingress-operator
+rules:
+  - apiGroups: [""]
+    resources: ["secrets"]
+    verbs: ["get", "list"]
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    "helm.sh/hook": pre-install,pre-upgrade
+    "helm.sh/hook-weight": "1"
+    "helm.sh/hook-delete-policy": before-hook-creation,hook-succeeded,hook-failed
+  name: openshift-kube-apiserver-reader
+  namespace: openshift-kube-apiserver
+rules:
+  - apiGroups: [""]
+    resources: ["secrets"]
+    verbs: ["get", "list"]
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    "helm.sh/hook": pre-install,pre-upgrade
+    "helm.sh/hook-weight": "1"
+    "helm.sh/hook-delete-policy": before-hook-creation,hook-succeeded,hook-failed
+  name: {{ .Release.Namespace }}-configmaps-editor
+  namespace: {{ .Release.Namespace }}
+rules:
+  - apiGroups: [""]
+    resources: ["configmaps"]
+    verbs: ["create", "get", "list", "watch", "patch", "update"]
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    "helm.sh/hook": pre-install,pre-upgrade
+    "helm.sh/hook-weight": "2"
+    "helm.sh/hook-delete-policy": before-hook-creation,hook-succeeded,hook-failed
+  name: read-openshift-cluster-config
+subjects:
+  - kind: ServiceAccount
+    name: {{ .Release.Name }}-ocp-ca-cert-extractor
+    namespace: {{ .Release.Namespace }}
+roleRef:
+  kind: ClusterRole
+  name: openshift-cluster-config-reader
+  apiGroup: rbac.authorization.k8s.io
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    "helm.sh/hook": pre-install,pre-upgrade
+    "helm.sh/hook-weight": "2"
+    "helm.sh/hook-delete-policy": before-hook-creation,hook-succeeded,hook-failed
+  name: read-openshift-config
+  namespace: openshift-config
+subjects:
+  - kind: ServiceAccount
+    name: {{ .Release.Name }}-ocp-ca-cert-extractor
+    namespace: {{ .Release.Namespace }}
+roleRef:
+  kind: Role
+  name: openshift-config-reader
+  apiGroup: rbac.authorization.k8s.io
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    "helm.sh/hook": pre-install,pre-upgrade
+    "helm.sh/hook-weight": "2"
+    "helm.sh/hook-delete-policy": before-hook-creation,hook-succeeded,hook-failed
+  name: read-openshift-ingress-operator
+  namespace: openshift-ingress-operator
+subjects:
+  - kind: ServiceAccount
+    name: {{ .Release.Name }}-ocp-ca-cert-extractor
+    namespace: {{ .Release.Namespace }}
+roleRef:
+  kind: Role
+  name: openshift-ingress-operator-reader
+  apiGroup: rbac.authorization.k8s.io
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    "helm.sh/hook": pre-install,pre-upgrade
+    "helm.sh/hook-weight": "2"
+    "helm.sh/hook-delete-policy": before-hook-creation,hook-succeeded,hook-failed
+  name: read-openshift-kube-apiserver
+  namespace: openshift-kube-apiserver
+subjects:
+  - kind: ServiceAccount
+    name: {{ .Release.Name }}-ocp-ca-cert-extractor
+    namespace: {{ .Release.Namespace }}
+roleRef:
+  kind: Role
+  name: openshift-kube-apiserver-reader
+  apiGroup: rbac.authorization.k8s.io
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    "helm.sh/hook": pre-install,pre-upgrade
+    "helm.sh/hook-weight": "2"
+    "helm.sh/hook-delete-policy": before-hook-creation,hook-succeeded,hook-failed
+  name: edit-{{ .Release.Namespace }}-configmaps
+  namespace: {{ .Release.Namespace }}
+subjects:
+  - kind: ServiceAccount
+    name: {{ .Release.Name }}-ocp-ca-cert-extractor
+    namespace: {{ .Release.Namespace }}
+roleRef:
+  kind: Role
+  name: {{ .Release.Namespace }}-configmaps-editor
+  apiGroup: rbac.authorization.k8s.io
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  name: {{ .Release.Name }}-extract-ocp-ca-cert-job
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+  annotations:
+    "helm.sh/hook": pre-install,pre-upgrade
+    "helm.sh/hook-delete-policy": before-hook-creation,hook-succeeded,hook-failed
+    "helm.sh/hook-weight": "3"
+spec:
+  template:
+    metadata:
+      name: {{ .Release.Name }}-extract-ocp-ca-cert-job
+      labels:
+{{ include "helm.labels" . | indent 8 }}
+    spec:
+      restartPolicy: Never
+      serviceAccountName: {{ .Release.Name }}-ocp-ca-cert-extractor
+      containers:
+      - name: {{ .Release.Name }}-extract-ocp-ca-cert-job
+        image: {{ include "k10.k10ToolsImage" . }}
+        command: ["./k10tools", "openshift", "extract-certificates"]
+        args: ["-n", "{{ .Release.Namespace }}", "--release-name", "{{ .Release.Name }}", "--ca-cert-configmap-name", "{{ .Values.cacertconfigmap.name }}"]
+      {{- if or .Values.secrets.dockerConfig .Values.secrets.dockerConfigPath }}
+      imagePullSecrets:
+      - name: {{ .Release.Name }}-extract-ocp-ca-cert-dockerconfig
+      {{- else if .Values.global.imagePullSecret }}
+      imagePullSecrets:
+      - name: {{ .Values.global.imagePullSecret }}
+      {{- end }}
+  backoffLimit: 0
+{{ end }}
diff --git a/charts/kasten/k10/7.5.401/templates/ocp-consoleplugin.yaml b/charts/kasten/k10/7.5.401/templates/ocp-consoleplugin.yaml
new file mode 100644
index 0000000000..d14f537870
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/ocp-consoleplugin.yaml
@@ -0,0 +1,27 @@
+{{- if eq (include "k10.isOpenShift" .) "true" -}}
+apiVersion: console.openshift.io/v1
+kind: ConsolePlugin
+metadata:
+  name: {{ template "k10.openShiftConsolePluginCRName" . }}
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+    component: {{ template "k10.openShiftConsolePluginName" . }}
+spec:
+  displayName: Veeam Kasten Plugin
+  backend:
+    type: Service
+    service:
+      name: {{ template "k10.openShiftConsolePluginName" . }}
+      namespace: {{ .Release.Namespace }}
+      port: 9443
+      basePath: /
+  proxy:
+    - alias: dashboardbff
+      authorization: UserToken
+      endpoint:
+        service:
+          name: {{ template "k10.openShiftConsolePluginProxyName" . }}
+          namespace: {{ .Release.Namespace }}
+          port: 443
+        type: Service
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/templates/ocp-plugin-configmap.yaml b/charts/kasten/k10/7.5.401/templates/ocp-plugin-configmap.yaml
new file mode 100644
index 0000000000..1fc0582710
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/ocp-plugin-configmap.yaml
@@ -0,0 +1,28 @@
+{{- if eq (include "k10.isOpenShift" .) "true" -}}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ include "k10.openShiftConsolePluginConfigMapName" . }}
+  namespace: {{ .Release.Namespace }}
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+    component: {{ template "k10.openShiftConsolePluginName" . }}
+data:
+  nginx.conf: |
+    pid /var/run/nginx/nginx.pid;
+    error_log /dev/stdout info;
+    events {}
+    http {
+      access_log         /dev/stdout;
+      include            /etc/nginx/mime.types;
+      default_type       application/octet-stream;
+      keepalive_timeout  65;
+      server {
+        listen              9443 ssl;
+        listen              [::]:9443 ssl;
+        ssl_certificate     /var/cert/tls.crt;
+        ssl_certificate_key /var/cert/tls.key;
+        root                /ocpconsoleplugin;
+      }
+    }
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/templates/ocp-plugin-deployment.yaml b/charts/kasten/k10/7.5.401/templates/ocp-plugin-deployment.yaml
new file mode 100644
index 0000000000..c33c263804
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/ocp-plugin-deployment.yaml
@@ -0,0 +1,74 @@
+{{- if eq (include "k10.isOpenShift" .) "true" -}}
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: {{ template "k10.openShiftConsolePluginName" . }}
+  namespace: {{ .Release.Namespace }}
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+    component: {{ template "k10.openShiftConsolePluginName" . }}
+    app.openshift.io/runtime-namespace: {{ .Release.Namespace }}
+spec:
+  replicas: 2
+  selector:
+    matchLabels:
+{{ include "k10.common.matchLabels" . | indent 6 }}
+      component: {{ template "k10.openShiftConsolePluginName" . }}
+  template:
+    metadata:
+    {{- if .Values.scc.create }}
+      annotations:
+        openshift.io/required-scc: {{ .Release.Name }}-scc
+    {{- end }}
+      labels:
+{{ include "k10.common.matchLabels" . | indent 8 }}
+        component: {{ template "k10.openShiftConsolePluginName" . }}
+    spec:
+      containers:
+        - name: {{ template "k10.openShiftConsolePluginName" . }}
+          image: {{ include "k10.ocpConsolePluginImage" . }}
+          ports:
+            - containerPort: 9443
+              protocol: TCP
+          imagePullPolicy: Always
+          securityContext:
+            allowPrivilegeEscalation: false
+            readOnlyRootFilesystem: false
+            capabilities:
+              drop: ["ALL"]
+          resources:
+            requests:
+              cpu: 10m
+              memory: 50Mi
+          volumeMounts:
+            - name: {{ template "k10.openShiftConsolePluginTLSCertName" . }}
+              readOnly: true
+              mountPath: /var/cert
+            - name: {{ template "k10.openShiftConsolePluginConfigMapName" . }}
+              readOnly: true
+              mountPath: /etc/nginx/nginx.conf
+              subPath: nginx.conf
+      volumes:
+        - name: {{ template "k10.openShiftConsolePluginTLSCertName" . }}
+          secret:
+            secretName: {{ template "k10.openShiftConsolePluginTLSCertName" . }}
+            defaultMode: 420
+        - name: {{ template "k10.openShiftConsolePluginConfigMapName" . }}
+          configMap:
+            name: {{ template "k10.openShiftConsolePluginConfigMapName" . }}
+            defaultMode: 420
+      restartPolicy: Always
+      dnsPolicy: ClusterFirst
+      securityContext:
+        fsGroup: 1000
+        runAsNonRoot: true
+        runAsUser: 1000
+        seccompProfile:
+          type: RuntimeDefault
+      serviceAccountName: {{ template "serviceAccountName" . }}
+  strategy:
+    type: RollingUpdate
+    rollingUpdate:
+      maxUnavailable: 25%
+      maxSurge: 25%
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/templates/ocp-plugin-proxy-configmap.yaml b/charts/kasten/k10/7.5.401/templates/ocp-plugin-proxy-configmap.yaml
new file mode 100644
index 0000000000..3276a32654
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/ocp-plugin-proxy-configmap.yaml
@@ -0,0 +1,36 @@
+{{- if eq (include "k10.isOpenShift" .) "true" -}}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ template "k10.openShiftConsolePluginProxyConfigMapName" . }}
+  namespace: {{ .Release.Namespace }}
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+    component: {{ template "k10.openShiftConsolePluginProxyName" . }}
+data:
+  nginx.conf: |
+    pid /var/run/nginx/nginx.pid;
+    error_log /dev/stdout info;
+    events {
+        worker_connections 1024;
+    }
+    http {
+        access_log /dev/stdout;
+        server {
+            listen 8080;
+            server_name {{ template "k10.openShiftConsolePluginProxyName" . }}.dashboardbff;
+            location / {
+                proxy_pass http://dashboardbff-svc.{{ .Release.Namespace }}:8000;
+            }
+        }
+        server {
+            listen 9443 ssl;
+            server_name {{ template "k10.openShiftConsolePluginProxyName" . }}.dashboardbff;
+            ssl_certificate /etc/nginx/ssl/tls.crt;
+            ssl_certificate_key /etc/nginx/ssl/tls.key;
+            location / {
+                proxy_pass http://dashboardbff-svc.{{ .Release.Namespace }}:8000;
+            }
+        }
+    }
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/templates/ocp-plugin-proxy-deployment.yaml b/charts/kasten/k10/7.5.401/templates/ocp-plugin-proxy-deployment.yaml
new file mode 100644
index 0000000000..931b6cc694
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/ocp-plugin-proxy-deployment.yaml
@@ -0,0 +1,67 @@
+{{- if eq (include "k10.isOpenShift" .) "true" -}}
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: {{ template "k10.openShiftConsolePluginProxyName" . }}
+  namespace: {{ .Release.Namespace }}
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+    component: {{ template "k10.openShiftConsolePluginProxyName" . }}
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+{{ include "k10.common.matchLabels" . | indent 6 }}
+      component: {{ template "k10.openShiftConsolePluginProxyName" . }}
+  template:
+    metadata:
+    {{- if .Values.scc.create }}
+      annotations:
+        openshift.io/required-scc: {{ .Release.Name }}-scc
+    {{- end }}
+      labels:
+{{ include "k10.common.matchLabels" . | indent 8 }}
+        component: {{ template "k10.openShiftConsolePluginProxyName" . }}
+    spec:
+      containers:
+        - image: {{ include "k10.ocpConsolePluginImage" . }}
+          imagePullPolicy: Always
+          securityContext:
+            allowPrivilegeEscalation: false
+            readOnlyRootFilesystem: false
+            capabilities:
+              drop: ["ALL"]
+          name: nginx
+          ports:
+            - containerPort: 8080
+              name: http
+              protocol: TCP
+            - containerPort: 9443
+              name: https
+              protocol: TCP
+          resources:
+            requests:
+              cpu: 10m
+              memory: 50Mi
+          volumeMounts:
+            - mountPath: /etc/nginx
+              name: {{ template "k10.openShiftConsolePluginProxyConfigMapName" . }}
+            - mountPath: /etc/nginx/ssl
+              name: {{ template "k10.openShiftConsolePluginProxyTLSCertName" . }}
+      volumes:
+        - name: {{ template "k10.openShiftConsolePluginProxyConfigMapName" . }}
+          configMap:
+            defaultMode: 420
+            name: {{ template "k10.openShiftConsolePluginProxyConfigMapName" . }}
+        - name: {{ template "k10.openShiftConsolePluginProxyTLSCertName" . }}
+          secret:
+            defaultMode: 420
+            secretName: {{ template "k10.openShiftConsolePluginProxyTLSCertName" . }}
+      securityContext:
+        fsGroup: 1000
+        runAsNonRoot: true
+        runAsUser: 1000
+        seccompProfile:
+          type: RuntimeDefault
+      serviceAccountName: {{ template "serviceAccountName" . }}
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/templates/ocp-plugin-proxy-service.yaml b/charts/kasten/k10/7.5.401/templates/ocp-plugin-proxy-service.yaml
new file mode 100644
index 0000000000..c608e65137
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/ocp-plugin-proxy-service.yaml
@@ -0,0 +1,25 @@
+{{- if eq (include "k10.isOpenShift" .) "true" -}}
+apiVersion: v1
+kind: Service
+metadata:
+  annotations:
+    service.beta.openshift.io/serving-cert-secret-name: {{ template "k10.openShiftConsolePluginProxyTLSCertName" . }}
+  name: {{ template "k10.openShiftConsolePluginProxyName" . }}
+  namespace: {{ .Release.Namespace }}
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+    component: {{ template "k10.openShiftConsolePluginProxyName" . }}
+spec:
+  selector:
+{{ include "k10.common.matchLabels" . | indent 4 }}
+    component: {{ template "k10.openShiftConsolePluginProxyName" . }}
+  ports:
+    - name: http
+      port: 80
+      protocol: TCP
+      targetPort: http
+    - name: https
+      port: 443
+      protocol: TCP
+      targetPort: https
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/templates/ocp-plugin-service.yaml b/charts/kasten/k10/7.5.401/templates/ocp-plugin-service.yaml
new file mode 100644
index 0000000000..460c6b4ec9
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/ocp-plugin-service.yaml
@@ -0,0 +1,23 @@
+{{- if eq (include "k10.isOpenShift" .) "true" -}}
+apiVersion: v1
+kind: Service
+metadata:
+  annotations:
+    service.alpha.openshift.io/serving-cert-secret-name: {{ template "k10.openShiftConsolePluginTLSCertName" . }}
+  name: {{ template "k10.openShiftConsolePluginName" . }}
+  namespace: {{ .Release.Namespace }}
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+    component: {{ template "k10.openShiftConsolePluginName" . }}
+spec:
+  ports:
+    - name: tcp
+      protocol: TCP
+      port: 9443
+      targetPort: 9443
+  selector:
+{{ include "k10.common.matchLabels" . | indent 4 }}
+    component: {{ template "k10.openShiftConsolePluginName" . }}
+  type: ClusterIP
+  sessionAffinity: None
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/templates/prometheus-configmap.yaml b/charts/kasten/k10/7.5.401/templates/prometheus-configmap.yaml
new file mode 100644
index 0000000000..0c07738a57
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/prometheus-configmap.yaml
@@ -0,0 +1,75 @@
+{{ include "check.validatePrometheusConfig" .}}
+{{- if .Values.prometheus.server.enabled -}}
+{{- $cluster_domain := "" -}}
+{{- with .Values.cluster.domainName -}}
+  {{- $cluster_domain = printf ".%s" . -}}
+{{- end -}}
+{{- $rbac := .Values.prometheus.rbac.create -}}
+kind: ConfigMap
+apiVersion: v1
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+  namespace: {{ .Release.Namespace }}
+  name: {{ .Release.Name }}-{{ .Values.prometheus.server.configMapOverrideName }}
+data:
+  prometheus.yml: |
+    global:
+      scrape_interval: 1m
+      scrape_timeout: 10s
+      evaluation_interval: 1m
+    scrape_configs:
+      - job_name: httpServiceDiscovery
+        http_sd_configs:
+          - url: {{ printf "http://metering-svc.%s.svc%s:8000/v0/listScrapeTargets" .Release.Namespace $cluster_domain }}
+{{- if or .Values.workerPodMetricSidecar.enabled .Values.kanisterPodMetricSidecar.enabled }}
+      - job_name: pushAggregator
+        honor_timestamps: true
+        metrics_path: /v0/push-metric-agg/metrics
+        static_configs:
+          - targets:
+              - {{ printf "metering-svc.%s.svc%s:8000" .Release.Namespace $cluster_domain }}
+{{- end -}}
+{{- if .Values.prometheus.scrapeCAdvisor }}
+      - job_name: 'kubernetes-cadvisor'
+        scheme: https
+        tls_config:
+          ca_file: /var/run/secrets/kubernetes.io/serviceaccount/ca.crt
+        bearer_token_file: /var/run/secrets/kubernetes.io/serviceaccount/token
+        kubernetes_sd_configs:
+        - role: node
+        relabel_configs:
+        - action: labelmap
+          regex: __meta_kubernetes_node_label_(.+)
+        - target_label: __address__
+          replacement: kubernetes.default.svc:443
+        - source_labels: [__meta_kubernetes_node_name]
+          regex: (.+)
+          target_label: __metrics_path__
+          replacement: /api/v1/nodes/${1}/proxy/metrics/cadvisor
+{{- end}}
+      - job_name: prometheus
+        metrics_path: {{ .Values.prometheus.server.baseURL }}metrics
+        static_configs:
+          - targets:
+              - "localhost:9090"
+            labels:
+              app: prometheus
+              component: server
+      - job_name: k10-pods
+        scheme: http
+        metrics_path: /metrics
+        kubernetes_sd_configs:
+          - role: pod
+            namespaces:
+              own_namespace: true
+            selectors:
+              - role: pod
+                label: "component=executor"
+        relabel_configs:
+          - action: labelmap
+            regex: __meta_kubernetes_pod_label_(.+)
+          - source_labels: [__meta_kubernetes_pod_container_port_number]
+            action: keep
+            regex: 8\d{3}
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/templates/prometheus-scc.yaml b/charts/kasten/k10/7.5.401/templates/prometheus-scc.yaml
new file mode 100644
index 0000000000..4d039ef00e
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/prometheus-scc.yaml
@@ -0,0 +1,41 @@
+{{- if .Values.scc.create }}
+kind: SecurityContextConstraints
+apiVersion: security.openshift.io/v1
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+  name: {{ .Release.Name }}-prometheus-server
+allowPrivilegedContainer: false
+allowHostNetwork: false
+allowHostDirVolumePlugin: true
+allowHostPorts: true
+allowHostPID: false
+allowHostIPC: false
+readOnlyRootFilesystem: false
+requiredDropCapabilities:
+- CHOWN
+- KILL
+- MKNOD
+- SETUID
+- SETGID
+defaultAddCapabilities: []
+allowedCapabilities: []
+priority: 0
+runAsUser:
+  type: MustRunAsNonRoot
+seLinuxContext:
+  type: RunAsAny
+fsGroup:
+  type: RunAsAny
+supplementalGroups:
+  type: RunAsAny
+volumes:
+- configMap
+- downwardAPI
+- emptyDir
+- persistentVolumeClaim
+- projected
+- secret
+users:
+  - system:serviceaccount:{{.Release.Namespace}}:prometheus-server
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/templates/prometheus-service.yaml b/charts/kasten/k10/7.5.401/templates/prometheus-service.yaml
new file mode 100644
index 0000000000..03cea0cc48
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/prometheus-service.yaml
@@ -0,0 +1,25 @@
+{{/* Template to generate service spec for v0 rest services */}}
+{{- if .Values.prometheus.server.enabled -}}
+{{- $postfix := default .Release.Name .Values.ingress.urlPath -}}
+{{- $os_postfix := default .Release.Name .Values.route.path -}}
+{{- $service_port := .Values.prometheus.server.service.servicePort -}}
+apiVersion: v1
+kind: Service
+metadata:
+  namespace: {{ .Release.Namespace }}
+  name: {{ include "k10.prometheus.service.name" . }}-exp
+  labels:
+{{ include "helm.labels" $ | indent 4 }}
+    component: {{ include "k10.prometheus.service.name" . }}
+    run: {{ include "k10.prometheus.service.name" . }}
+spec:
+  ports:
+  - name: http
+    protocol: TCP
+    port: {{ $service_port }}
+    targetPort: 9090
+  selector:
+    app: {{ include "k10.prometheus.name" . }}
+    component: {{ .Values.prometheus.server.name }}
+    release: {{ .Release.Name }}
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/templates/rbac.yaml b/charts/kasten/k10/7.5.401/templates/rbac.yaml
new file mode 100644
index 0000000000..2c2c12b5b7
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/rbac.yaml
@@ -0,0 +1,386 @@
+{{- $main := . -}}
+{{- $apiDomain := include "apiDomain" . -}}
+
+{{- $actionsAPIs    := splitList " " (include "k10.actionsAPIs" .) -}}
+{{- $aggregatedAPIs := splitList " " (include "k10.aggregatedAPIs" .) -}}
+{{- $appsAPIs       := splitList " " (include "k10.appsAPIs" .) -}}
+{{- $authAPIs       := splitList " " (include "k10.authAPIs" .) -}}
+{{- $configAPIs     := splitList " " (include "k10.configAPIs" .) -}}
+{{- $distAPIs       := splitList " " (include "k10.distAPIs" .) -}}
+{{- $reportingAPIs  := splitList " " (include "k10.reportingAPIs" .) -}}
+{{- $isVapApplicable := include "vap.check" . -}}
+
+{{- if .Values.rbac.create }}
+kind: ClusterRoleBinding
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+  name: {{ .Release.Namespace }}-{{ template "serviceAccountName" . }}-cluster-admin
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: cluster-admin
+subjects:
+- kind: ServiceAccount
+  name: {{ template "serviceAccountName" . }}
+  namespace: {{ .Release.Namespace }}
+{{- if not ( eq (include "meteringServiceAccountName" .) (include "serviceAccountName" .) )}}
+- kind: ServiceAccount
+  name: {{ template "meteringServiceAccountName" . }}
+  namespace: {{ .Release.Namespace }}
+{{- end }}
+---
+kind: ClusterRole
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+{{ include "k10.defaultRBACLabels" . | indent 4 }}
+  name: {{ .Release.Name }}-admin
+rules:
+- apiGroups:
+{{- range sortAlpha (concat $aggregatedAPIs $configAPIs $reportingAPIs) }}
+  - {{ . }}.{{ $apiDomain }}
+{{- end }}
+  resources:
+  - "*"
+  verbs:
+  - "*"
+- apiGroups:
+  - cr.kanister.io
+  resources:
+  - '*'
+  verbs:
+  - '*'
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - create
+  - get
+  - list
+---
+kind: Role
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+{{ include "k10.defaultRBACLabels" . | indent 4 }}
+  name: {{ .Release.Name }}-ns-admin
+  namespace: {{ .Release.Namespace }}
+rules:
+- apiGroups:
+  - "apps"
+  resources:
+  - deployments
+  verbs:
+  - get
+  - update
+  - watch
+  - list
+- apiGroups:
+  - ""
+  resources:
+  - pods
+  verbs:
+  - get
+  - create
+  - delete
+  - list
+- apiGroups:
+  - "apik10.kasten.io"
+  resources:
+  - k10s
+  verbs:
+  - list
+  - patch
+- apiGroups:
+  - ""
+  resources:
+  - persistentvolumeclaims
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - create
+  - delete
+  - get
+  - list
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+  - delete
+  - get
+  - list
+  - update
+- apiGroups:
+  - "batch"
+  resources:
+  - jobs
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - create
+  - get
+  - delete
+- apiGroups:
+  - "networking.k8s.io"
+  resources:
+  - networkpolicies
+  verbs:
+  - get
+  - create
+  - list
+  - delete
+- apiGroups:
+  - ""
+  resources:
+  - endpoints
+  verbs:
+  - list
+  - get
+---
+kind: ClusterRole
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+{{ include "k10.defaultRBACLabels" . | indent 4 }}
+  name: {{ .Release.Name }}-mc-admin
+rules:
+- apiGroups:
+{{- range sortAlpha (concat $authAPIs $configAPIs $distAPIs) }}
+  - {{ . }}.{{ $apiDomain }}
+{{- end }}
+  resources:
+  - "*"
+  verbs:
+  - "*"
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - "*"
+---
+kind: ClusterRole
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+{{ include "k10.defaultRBACLabels" . | indent 4 }}
+  name: {{ .Release.Name }}-basic
+rules:
+- apiGroups:
+{{- range sortAlpha $actionsAPIs }}
+  - {{ . }}.{{ $apiDomain }}
+{{- end }}
+  resources:
+  - {{ include "k10.backupActions" $main}}
+  - {{ include "k10.backupActionsDetails" $main}}
+  - {{ include "k10.restoreActions" $main}}
+  - {{ include "k10.restoreActionsDetails" $main}}
+  - {{ include "k10.exportActions" $main}}
+  - {{ include "k10.exportActionsDetails" $main}}
+  - {{ include "k10.cancelActions" $main}}
+  - {{ include "k10.runActions" $main}}
+  - {{ include "k10.runActionsDetails" $main}}
+{{- if eq $isVapApplicable "true" }}
+  - {{ include "k10.importActions" $main}}
+  - {{ include "k10.importActionsDetails" $main}}
+{{- end }}
+  verbs:
+   - "*"
+- apiGroups:
+{{- range sortAlpha $appsAPIs }}
+  - {{ . }}.{{ $apiDomain }}
+{{- end }}
+  resources:
+  - {{ include "k10.restorePoints" $main}}
+  - {{ include "k10.restorePointsDetails" $main}}
+  - {{ include "k10.applications" $main}}
+  - {{ include "k10.applicationsDetails" $main}}
+  verbs:
+  - "*"
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+{{- range sortAlpha $configAPIs }}
+  - {{ . }}.{{ $apiDomain }}
+{{- end }}
+  resources:
+  - {{ include "k10.policies" $main}}
+  verbs:
+  - "*"
+---
+kind: ClusterRole
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+{{ include "k10.defaultRBACLabels" . | indent 4 }}
+  name: {{ .Release.Name }}-config-view
+rules:
+- apiGroups:
+{{- range sortAlpha $configAPIs }}
+  - {{ . }}.{{ $apiDomain }}
+{{- end }}
+  resources:
+  - {{ include "k10.auditconfigs" $main}}
+  - {{ include "k10.profiles" $main}}
+  - {{ include "k10.policies" $main}}
+  - {{ include "k10.policypresets" $main}}
+  - {{ include "k10.transformsets" $main}}
+  - {{ include "k10.blueprintbindings" $main}}
+  - {{ include "k10.storagesecuritycontexts" $main}}
+  - {{ include "k10.storagesecuritycontextbindings" $main}}
+  verbs:
+  - get
+  - list
+---
+kind: ClusterRoleBinding
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+  name: {{ .Release.Namespace }}-{{ template "serviceAccountName" . }}-admin
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name:  {{ .Release.Name }}-admin
+subjects:
+- apiGroup: rbac.authorization.k8s.io
+  kind: Group
+  name: k10:admins
+{{- range .Values.auth.k10AdminUsers }}
+- apiGroup: rbac.authorization.k8s.io
+  kind: User
+  name: {{ . }}
+{{- end }}
+{{- range default .Values.auth.groupAllowList .Values.auth.k10AdminGroups }}
+- apiGroup: rbac.authorization.k8s.io
+  kind: Group
+  name: {{ . }}
+{{- end }}
+---
+kind: RoleBinding
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+  name: {{ .Release.Namespace }}-{{ template "serviceAccountName" . }}-ns-admin
+  namespace: {{ .Release.Namespace }}
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name:  {{ .Release.Name }}-ns-admin
+subjects:
+- apiGroup: rbac.authorization.k8s.io
+  kind: Group
+  name: k10:admins
+{{- range .Values.auth.k10AdminUsers }}
+- apiGroup: rbac.authorization.k8s.io
+  kind: User
+  name: {{ . }}
+{{- end }}
+{{- range default .Values.auth.groupAllowList .Values.auth.k10AdminGroups }}
+- apiGroup: rbac.authorization.k8s.io
+  kind: Group
+  name: {{ . }}
+{{- end }}
+---
+kind: ClusterRoleBinding
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+  name: {{ .Release.Namespace }}-{{ template "serviceAccountName" . }}-mc-admin
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name:  {{ .Release.Name }}-mc-admin
+subjects:
+  - apiGroup: rbac.authorization.k8s.io
+    kind: Group
+    name: k10:admins
+{{- range .Values.auth.k10AdminUsers }}
+  - apiGroup: rbac.authorization.k8s.io
+    kind: User
+    name: {{ . }}
+{{- end }}
+{{- range default .Values.auth.groupAllowList .Values.auth.k10AdminGroups }}
+  - apiGroup: rbac.authorization.k8s.io
+    kind: Group
+    name: {{ . }}
+{{- end }}
+{{- end }}
+{{- if and .Values.rbac.create (not .Values.prometheus.rbac.create) }}
+---
+kind: Role
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+{{ include "k10.defaultRBACLabels" . | indent 4 }}
+  name: {{ .Release.Name }}-prometheus-server
+  namespace: {{ .Release.Namespace }}
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  - nodes/proxy
+  - nodes/metrics
+  - services
+  - endpoints
+  - pods
+  - ingresses
+  - configmaps
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - extensions
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+---
+kind: RoleBinding
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+  name: {{ .Release.Namespace }}-{{ template "serviceAccountName" . }}-prometheus-server
+  namespace: {{ .Release.Namespace }}
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name:  {{ .Release.Name }}-prometheus-server
+subjects:
+  - kind: ServiceAccount
+    name: prometheus-server
+    namespace: {{ .Release.Namespace }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/templates/route.yaml b/charts/kasten/k10/7.5.401/templates/route.yaml
new file mode 100644
index 0000000000..1ecd244bed
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/route.yaml
@@ -0,0 +1,36 @@
+{{- $route := .Values.route -}}
+{{- if $route.enabled -}}
+{{ include "authEnabled.check" . }}
+apiVersion: route.openshift.io/v1
+kind: Route
+metadata:
+  name: {{ .Release.Name }}-route
+  {{- with $route.annotations }}
+  namespace: {{ .Release.Namespace }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+    {{- with $route.labels }}
+    {{- toYaml . | nindent 4 }}
+    {{- end }}
+spec:
+  host: {{ $route.host }}
+  path: /{{ default .Release.Name $route.path | trimPrefix "/" | trimSuffix "/" }}/
+  port:
+    targetPort: http
+  to:
+    kind: Service
+    name: gateway
+    weight: 100
+  {{- if $route.tls.enabled }}
+  tls:
+    {{- if $route.tls.insecureEdgeTerminationPolicy }}
+    insecureEdgeTerminationPolicy: {{ $route.tls.insecureEdgeTerminationPolicy }}
+    {{- end }}
+    {{- if $route.tls.termination }}
+    termination: {{ $route.tls.termination }}
+    {{- end }}
+  {{- end }}
+{{- end -}}
diff --git a/charts/kasten/k10/7.5.401/templates/secrets.yaml b/charts/kasten/k10/7.5.401/templates/secrets.yaml
new file mode 100644
index 0000000000..0a040e2c0b
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/secrets.yaml
@@ -0,0 +1,257 @@
+{{- include "enforce.singlecloudcreds" . -}}
+{{- include "enforce.singleazurecreds" . -}}
+{{- include "check.validateImagePullSecrets" . -}}
+{{- if and (eq (include "check.awscreds" . ) "true") (not (eq (include "check.awsSecretName" . ) "true")) }}
+apiVersion: v1
+kind: Secret
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+  namespace: {{ .Release.Namespace }}
+  name: aws-creds
+type: Opaque
+data:
+  aws_access_key_id: {{ required "secrets.awsAccessKeyId field is required!" .Values.secrets.awsAccessKeyId | b64enc | quote }}
+  aws_secret_access_key: {{ required "secrets.awsSecretAccessKey field is required!" .Values.secrets.awsSecretAccessKey | b64enc | quote }}
+{{- if .Values.secrets.awsIamRole }}
+  role: {{ .Values.secrets.awsIamRole | trim | b64enc | quote }}
+{{- end }}
+{{- end }}
+{{- if or .Values.secrets.dockerConfig .Values.secrets.dockerConfigPath }}
+---
+apiVersion: v1
+kind: Secret
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+  namespace: {{ .Release.Namespace }}
+  name: k10-ecr
+type: kubernetes.io/dockerconfigjson
+data:
+  .dockerconfigjson: {{ or .Values.secrets.dockerConfig ( .Values.secrets.dockerConfigPath | b64enc ) }}
+{{- end }}
+{{- if and (eq (include "check.googlecreds" .) "true") ( not (eq (include "check.googleCredsSecret" .) "true")) }}
+---
+apiVersion: v1
+kind: Secret
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+  namespace: {{ .Release.Namespace }}
+  name: google-secret
+type: Opaque
+data:
+  kasten-gke-sa.json: {{ .Values.secrets.googleApiKey }}
+{{- if eq (include "check.googleproject" .) "true" }}
+  kasten-gke-project: {{ .Values.secrets.googleProjectId | b64enc }}
+{{- end }}
+{{- end }}
+{{- if eq (include "check.azurecreds" .) "true" }}
+---
+apiVersion: v1
+kind: Secret
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+  namespace: {{ .Release.Namespace }}
+  name: azure-creds
+type: Opaque
+data:
+  {{- if not (eq (include "check.azuresecret" .) "true" ) }}
+  {{- if or (eq (include "check.azureMSIWithClientID" .) "true") (eq (include "check.azureClientSecretCreds" .) "true") }}
+  azure_client_id: {{ required "secrets.azureClientId field is required!" .Values.secrets.azureClientId | b64enc | quote }}
+  {{- end }}
+  {{- if eq (include "check.azureClientSecretCreds" .) "true" }}
+  azure_tenant_id: {{ required "secrets.azureTenantId field is required!" .Values.secrets.azureTenantId | b64enc | quote }}
+  azure_client_secret: {{ required "secrets.azureClientSecret field is required!" .Values.secrets.azureClientSecret | b64enc | quote }}
+  {{- end }}
+  {{- end }}
+  azure_resource_group: {{ default "" .Values.secrets.azureResourceGroup | b64enc | quote }}
+  azure_subscription_id: {{ default "" .Values.secrets.azureSubscriptionID | b64enc | quote }}
+  azure_resource_manager_endpoint: {{ default "" .Values.secrets.azureResourceMgrEndpoint | b64enc | quote }}
+  entra_id_endpoint: {{ default "" (default .Values.secrets.azureADEndpoint .Values.secrets.microsoftEntraIDEndpoint) | b64enc | quote }}
+  entra_id_resource_id: {{ default "" (default .Values.secrets.azureADResourceID .Values.secrets.microsoftEntraIDResourceID) | b64enc | quote }}
+  azure_cloud_env_id: {{ default "" .Values.secrets.azureCloudEnvID | b64enc | quote }}
+{{- end }}
+{{- if and (eq (include "check.vspherecreds" .) "true") (not (eq (include "check.vsphereClientSecret" . ) "true")) }}
+---
+apiVersion: v1
+kind: Secret
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+  namespace: {{ .Release.Namespace }}
+  name: vsphere-creds
+type: Opaque
+data:
+  vsphere_endpoint: {{ required "secrets.vsphereEndpoint field is required!" .Values.secrets.vsphereEndpoint | b64enc | quote }}
+  vsphere_username: {{ required "secrets.vsphereUsername field is required!" .Values.secrets.vsphereUsername | b64enc | quote }}
+  vsphere_password: {{ required "secrets.vspherePassword field is required!" .Values.secrets.vspherePassword | b64enc | quote }}
+{{- end }}
+{{- if and (eq (include "basicauth.check" .) "true") (not .Values.auth.basicAuth.secretName) }}
+---
+apiVersion: v1
+kind: Secret
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+  name: k10-basic-auth
+  namespace: {{ .Release.Namespace }}
+data:
+  auth: {{ required "auth.basicAuth.htpasswd field is required!" .Values.auth.basicAuth.htpasswd | b64enc | quote}}
+type: Opaque
+{{- end }}
+{{- if .Values.auth.tokenAuth.enabled }}
+---
+apiVersion: v1
+kind: Secret
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+  name: k10-token-auth
+  namespace: {{ .Release.Namespace }}
+data:
+  auth: {{ "true" | b64enc | quote}}
+type: Opaque
+{{- end }}
+{{- if and .Values.auth.oidcAuth.enabled (not .Values.auth.oidcAuth.secretName) }}
+---
+apiVersion: v1
+kind: Secret
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+  name: {{ include "k10.oidcSecretName" .}}
+  namespace: {{ .Release.Namespace }}
+data:
+  provider-url: {{ required "auth.oidcAuth.providerURL field is required!" .Values.auth.oidcAuth.providerURL | b64enc | quote }}
+  redirect-url: {{ required "auth.oidcAuth.redirectURL field is required!" .Values.auth.oidcAuth.redirectURL | b64enc | quote }}
+{{- if not .Values.auth.oidcAuth.clientSecretName }}
+  client-id: {{ required "auth.oidcAuth.clientID field is required!" .Values.auth.oidcAuth.clientID | b64enc | quote }}
+  client-secret: {{ required "auth.oidcAuth.clientSecret field is required!" .Values.auth.oidcAuth.clientSecret | b64enc | quote }}
+{{- end }}
+  scopes: {{ required "auth.oidcAuth.scopes field is required!" .Values.auth.oidcAuth.scopes | b64enc | quote }}
+  prompt: {{ default "select_account" .Values.auth.oidcAuth.prompt | b64enc | quote }}
+  usernameClaim: {{ default "sub" .Values.auth.oidcAuth.usernameClaim | b64enc | quote }}
+  usernamePrefix: {{ default "" .Values.auth.oidcAuth.usernamePrefix | b64enc | quote }}
+  groupClaim: {{ default "" .Values.auth.oidcAuth.groupClaim | b64enc | quote }}
+  groupPrefix: {{ default "" .Values.auth.oidcAuth.groupPrefix | b64enc | quote }}
+  sessionDuration: {{ default "1h" .Values.auth.oidcAuth.sessionDuration | b64enc | quote }}
+{{- if .Values.auth.oidcAuth.refreshTokenSupport }}
+  refreshTokenSupport: {{ "true" | b64enc | quote }}
+{{- else }}
+  refreshTokenSupport: {{ "false" | b64enc | quote }}
+{{ end }}
+stringData:
+  groupAllowList: |-
+{{- range $.Values.auth.groupAllowList }}
+    {{ . -}}
+{{ end }}
+  logout-url: {{ default "" .Values.auth.oidcAuth.logoutURL | b64enc | quote }}
+type: Opaque
+{{- end }}
+{{- if and (.Values.auth.openshift.enabled) (and (not .Values.auth.openshift.clientSecretName) (not .Values.auth.openshift.clientSecret)) }}
+---
+apiVersion: v1
+kind: Secret
+type: kubernetes.io/service-account-token
+metadata:
+  name: {{ include "get.openshiftServiceAccountSecretName" . }}
+  annotations:
+    kubernetes.io/service-account.name: {{ include "get.openshiftServiceAccountName" . | quote }}
+{{- end }}
+{{- if and (.Values.auth.openshift.enabled) (not .Values.auth.openshift.secretName) }}
+{{ $dashboardURL := required "auth.openshift.dashboardURL field is required!" .Values.auth.openshift.dashboardURL }}
+{{ $redirectURL := trimSuffix "/" (trimSuffix (default .Release.Name .Values.ingress.urlPath) (trimSuffix "/" $dashboardURL)) | b64enc | quote }}
+{{- if .Values.route.enabled }}
+{{ $redirectURL := trimSuffix "/" (trimSuffix (default .Release.Name .Values.route.path) (trimSuffix "/" $dashboardURL)) | b64enc | quote }}
+{{- end }}
+---
+apiVersion: v1
+kind: Secret
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+  name: {{ include "k10.oidcSecretName" .}}
+  namespace: {{ .Release.Namespace }}
+data:
+  provider-url: {{ printf "%s/dex" (trimSuffix "/" $dashboardURL) | b64enc | quote }}
+  redirect-url: {{ $redirectURL }}
+  client-id: {{ (printf "kasten") | b64enc | quote }}
+  client-secret: {{ (printf "kastensecret") | b64enc | quote }}
+  scopes: {{ (printf "groups profile email") | b64enc | quote }}
+  prompt: {{ (printf "select_account") | b64enc | quote }}
+  usernameClaim: {{ default "email" .Values.auth.openshift.usernameClaim | b64enc | quote }}
+  usernamePrefix: {{ default "" .Values.auth.openshift.usernamePrefix | b64enc | quote }}
+  groupClaim: {{ default "groups" .Values.auth.openshift.groupClaim | b64enc | quote }}
+  groupPrefix: {{ default "" .Values.auth.openshift.groupPrefix | b64enc | quote }}
+stringData:
+  groupAllowList: |-
+{{- range $.Values.auth.groupAllowList }}
+    {{ . -}}
+{{ end }}
+type: Opaque
+{{- end }}
+{{- if and .Values.auth.ldap.enabled (not .Values.auth.ldap.secretName) }}
+---
+apiVersion: v1
+kind: Secret
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+  name: {{ include "k10.oidcSecretName" .}}
+  namespace: {{ .Release.Namespace }}
+data:
+  provider-url: {{ required "auth.ldap.dashboardURL field is required!" (printf "%s/dex"  (trimSuffix "/" .Values.auth.ldap.dashboardURL)) | b64enc | quote }}
+  {{- if .Values.route.enabled  }}
+  redirect-url: {{ required "auth.ldap.dashboardURL field is required!" (trimSuffix "/" (trimSuffix (default .Release.Name .Values.route.path) (trimSuffix "/" .Values.auth.ldap.dashboardURL))) | b64enc | quote }}
+  {{- else }}
+  redirect-url: {{ required "auth.ldap.dashboardURL field is required!" (trimSuffix "/" (trimSuffix (default .Release.Name .Values.ingress.urlPath) (trimSuffix "/" .Values.auth.ldap.dashboardURL))) | b64enc | quote }}
+  {{- end }}
+  client-id: {{ (printf "kasten") | b64enc | quote }}
+  client-secret: {{ (printf "kastensecret") | b64enc | quote }}
+  scopes: {{ (printf "groups profile email") | b64enc | quote }}
+  prompt: {{ (printf "select_account") | b64enc | quote }}
+  usernameClaim: {{ default "email" .Values.auth.ldap.usernameClaim | b64enc | quote }}
+  usernamePrefix: {{ default "" .Values.auth.ldap.usernamePrefix | b64enc | quote }}
+  groupClaim: {{ default "groups" .Values.auth.ldap.groupClaim | b64enc | quote }}
+  groupPrefix: {{ default "" .Values.auth.ldap.groupPrefix | b64enc | quote }}
+stringData:
+  groupAllowList: |-
+{{- range $.Values.auth.groupAllowList }}
+    {{ . -}}
+{{ end }}
+type: Opaque
+{{- end }}
+{{- if and .Values.auth.ldap.enabled (not .Values.auth.ldap.bindPWSecretName) }}
+---
+apiVersion: v1
+kind: Secret
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+  name: k10-dex
+  namespace: {{ .Release.Namespace }}
+data:
+  bindPW: {{ required "auth.ldap.bindPW field is required!" .Values.auth.ldap.bindPW | b64enc | quote }}
+type: Opaque
+{{- end }}
+{{- if eq (include "check.primaryKey" . ) "true" }}
+---
+apiVersion: v1
+kind: Secret
+metadata:
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+  name: k10-encryption-primary-key
+  namespace: {{ .Release.Namespace }}
+data:
+  {{- if .Values.encryption.primaryKey.awsCmkKeyId  }}
+  awscmkkeyid: {{ default "" .Values.encryption.primaryKey.awsCmkKeyId | trim | b64enc | quote }}
+  {{- end }}
+  {{- if .Values.encryption.primaryKey.vaultTransitKeyName  }}
+  vaulttransitkeyname: {{ default "" .Values.encryption.primaryKey.vaultTransitKeyName | trim | b64enc | quote }}
+  vaulttransitpath: {{ default "transit" .Values.encryption.primaryKey.vaultTransitPath | trim | b64enc | quote }}
+  {{- end }}
+type: Opaque
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/templates/secure_deployment.tpl b/charts/kasten/k10/7.5.401/templates/secure_deployment.tpl
new file mode 100644
index 0000000000..a3126d8d93
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/secure_deployment.tpl
@@ -0,0 +1,16 @@
+{{/*
+This file is used to fail the helm deployment if certain values are set which are
+not compatible with a secure deployment.
+
+A secure deployment is defined as one of the following:
+- Iron Bank
+- FIPS
+*/}}
+
+{{/* Iron Bank */}}
+{{- include "k10.fail.ironbankGrafana" . -}}
+{{- include "k10.fail.ironbankPrometheus" . -}}
+{{- include "k10.fail.ironbankRHMarketplace" . -}}
+
+{{/* FIPS */}}
+{{- include "k10.fail.fipsPrometheus" . -}}
diff --git a/charts/kasten/k10/7.5.401/templates/serviceaccount.yaml b/charts/kasten/k10/7.5.401/templates/serviceaccount.yaml
new file mode 100644
index 0000000000..d24d91e16a
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/serviceaccount.yaml
@@ -0,0 +1,48 @@
+{{- if and .Values.serviceAccount.create ( not .Values.metering.awsMarketplace ) }}
+kind: ServiceAccount
+apiVersion: v1
+metadata:
+{{- if .Values.secrets.awsIamRole }}
+  annotations:
+    eks.amazonaws.com/role-arn: {{ .Values.secrets.awsIamRole }}
+{{- end }}
+{{- if eq (include "check.azureFederatedIdentity" .) "true" }}
+  annotations:
+    azure.workload.identity/client-id: {{ .Values.secrets.azureClientId | quote }}
+{{- end }}
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+  name: {{ template "serviceAccountName" . }}
+  namespace: {{ .Release.Namespace }}
+{{- end }}
+{{- if and (not ( eq (include "meteringServiceAccountName" .) (include "serviceAccountName" .))) ( not .Values.metering.awsManagedLicense ) .Values.metering.serviceAccount.create }}
+---
+kind: ServiceAccount
+apiVersion: v1
+metadata:
+{{- if .Values.metering.awsMarketPlaceIamRole }}
+  annotations:
+    eks.amazonaws.com/role-arn: {{ .Values.metering.awsMarketPlaceIamRole }}
+{{- end }}
+  labels:
+{{ include "helm.labels" . | indent 4 }}
+  name: {{ template "meteringServiceAccountName" . }}
+  namespace: {{ .Release.Namespace }}
+{{- end }}
+{{- if and (.Values.auth.openshift.enabled) (not .Values.auth.openshift.serviceAccount) }}
+{{- if or (.Values.auth.openshift.clientSecret) (.Values.auth.openshift.clientSecretName) }}
+  {{ fail "auth.openshift.serviceAccount is required when auth.openshift.clientSecret or auth.openshift.clientSecretName is used "}}
+{{- end }}
+---
+kind: ServiceAccount
+apiVersion: v1
+metadata:
+  name: {{ include "k10.dexServiceAccountName" . }}
+  namespace: {{ .Release.Namespace }}
+  annotations:
+    {{- $dashboardURL := (trimSuffix "/" (required "auth.openshift.dashboardURL field is required" .Values.auth.openshift.dashboardURL)) -}}
+    {{- if (not (hasSuffix .Release.Name $dashboardURL)) }}
+      {{ fail "auth.openshift.dashboardURL should end with the K10's release name" }}
+    {{- end }}
+    serviceaccounts.openshift.io/oauth-redirecturi.dex: {{ printf "%s/dex/callback" $dashboardURL }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/templates/v0services.yaml b/charts/kasten/k10/7.5.401/templates/v0services.yaml
new file mode 100644
index 0000000000..3b882c1630
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/v0services.yaml
@@ -0,0 +1,120 @@
+{{/* Template to generate service spec for v0 rest services */}}
+{{- $container_port := .Values.service.internalPort -}}
+{{- $service_port := .Values.service.externalPort -}}
+{{- $aggregated_api_port := .Values.service.aggregatedApiPort -}}
+{{- $postfix := default .Release.Name .Values.ingress.urlPath -}}
+{{- $colocated_services := include "get.enabledColocatedServices" . | fromYaml -}}
+{{- $exposed_services := include "get.enabledExposedServices" . | splitList " " -}}
+{{- $os_postfix := default .Release.Name .Values.route.path -}}
+{{- $main_context := . -}}
+{{ $service_list := append (include "get.enabledRestServices" . | splitList " ") "frontend" }}
+{{- range $service_list }}
+  {{- $exposed_service := (has . $exposed_services) }}
+  {{- $mc_exposed_service := (eq . "controllermanager") }}
+  {{ if not (hasKey $colocated_services . ) }}
+apiVersion: v1
+kind: Service
+metadata:
+  namespace: {{ $.Release.Namespace }}
+  name: {{ . }}-svc
+  labels:
+{{ include "helm.labels" $ | indent 4 }}
+    component: {{ . }}
+    run: {{ . }}-svc
+spec:
+  ports:
+  - name: http
+    protocol: TCP
+    port: {{ $service_port }}
+    targetPort: {{ $container_port }}
+  {{- if and (eq . "controllermanager") (or $.Values.injectGenericVolumeBackupSidecar.enabled $.Values.injectKanisterSidecar.enabled) }}
+  - name: https
+    protocol: TCP
+    port: 443
+    targetPort: {{ default 8080 (default $.Values.injectKanisterSidecar.webhookServer.port $.Values.injectGenericVolumeBackupSidecar.webhookServer.port) }}
+  {{- end }}
+{{- $colocatedList := include "get.enabledColocatedSvcList" $main_context | fromYaml }}
+{{- range $skip, $secondary := index $colocatedList . }}
+  {{- $colocConfig := index (include "get.enabledColocatedServices" $main_context | fromYaml) $secondary }}
+  - name: {{ $secondary }}
+    protocol: TCP
+    port: {{ $colocConfig.port }}
+    targetPort: {{ $colocConfig.port }}
+{{- end }}
+{{- if eq . "logging" }}
+  - name: logging
+    protocol: TCP
+    port: 24224
+    targetPort: 24224
+  - name: logging-metrics
+    protocol: TCP
+    port: 24225
+    targetPort: 24225
+{{- end }}
+{{- if eq . "controllermanager" }}
+  - name: mc-http
+    protocol: TCP
+    port: {{ include "k10.mcExternalPort" nil }}
+    targetPort: {{ include "k10.mcExternalPort" nil }}
+{{- end }}
+  selector:
+    run: {{ . }}-svc
+---
+  {{ end }}{{/* if not (hasKey $colocated_services $k10_service ) */}}
+{{ end -}}{{/* range append (include "get.enabledRestServices" . | splitList " ") "frontend" */}}
+{{- range append (include "get.enabledServices" . | splitList " ") "kanister" }}
+{{- if eq . "gateway" -}}{{- continue -}}{{- end -}}
+apiVersion: v1
+kind: Service
+metadata:
+  namespace: {{ $.Release.Namespace }}
+  name: {{ . }}-svc
+  labels:
+{{ include "helm.labels" $ | indent 4 }}
+    component: {{ . }}
+    run: {{ . }}-svc
+spec:
+  ports:
+  {{- if eq . "aggregatedapis" }}
+  - name: http
+    port: 443
+    protocol: TCP
+    targetPort: {{ $aggregated_api_port }}
+  {{- else }}
+  - name: http
+    protocol: TCP
+    port: {{ $service_port }}
+    targetPort: {{ $container_port }}
+  {{- end }}
+{{- $colocatedList := include "get.enabledColocatedSvcList" $main_context | fromYaml }}
+{{- range $skip, $secondary := index $colocatedList . }}
+  {{- $colocConfig := index (include "get.enabledColocatedServices" . | fromYaml) $secondary }}
+  - name: {{ $secondary }}
+    protocol: TCP
+    port: {{ $colocConfig.port }}
+    targetPort: {{ $colocConfig.port }}
+{{- end }}
+  selector:
+    run: {{ . }}-svc
+---
+{{ end -}}
+{{- if eq (include "check.dexAuth" .) "true" }}
+apiVersion: v1
+kind: Service
+metadata:
+  name: dex
+  namespace: {{ $.Release.Namespace }}
+  labels:
+{{ include "helm.labels" $ | indent 4 }}
+    component: dex
+    run: auth-svc
+spec:
+  ports:
+  - name: http
+    port: {{ $service_port }}
+    protocol: TCP
+    targetPort: 8080
+  selector:
+    run: auth-svc
+  type: ClusterIP
+{{ end -}}
diff --git a/charts/kasten/k10/7.5.401/templates/vap.yaml b/charts/kasten/k10/7.5.401/templates/vap.yaml
new file mode 100644
index 0000000000..f9d0b08252
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/vap.yaml
@@ -0,0 +1,151 @@
+{{- $isVapApplicable := include "vap.check" . -}}
+---
+{{- if eq $isVapApplicable "true" }}
+apiVersion: admissionregistration.k8s.io/v1beta1
+kind: ValidatingAdmissionPolicy
+metadata:
+  name: "kasten.policy.permissions"
+spec:
+  failurePolicy: Fail
+  matchConstraints:
+    resourceRules:
+      - apiGroups:   ["config.kio.kasten.io"]
+        apiVersions: ["v1alpha1"]
+        operations:  ["CREATE", "UPDATE"]
+        resources:   ["policies"]
+  validations:
+    {{/* The CEL expressions below are specific checks for restore parameters
+    allowed to be defined for a basic user, specifically the following:
+    1) Target namespace - It should be defined compulsorily for a basic user and
+    should be equal to the policy namespace
+    2) RestoreClusterResources - It should be set to false if defined.*/}}
+    - expression: "object.spec.actions.filter(x, x.action == 'restore').all(r, has(r.restoreParameters.targetNamespace) && r.restoreParameters.targetNamespace == object.metadata.namespace)"
+      message: "target namespace is a required field in the restore action and must be the same as the policy namespace"
+    - expression: "object.spec.actions.filter(x, x.action == 'restore').all(r, !has(r.restoreParameters.restoreClusterResources) || r.restoreParameters.restoreClusterResources == false)"
+      message: "user is not allowed to restore cluster resources. RestoreClusterResources under restore action should be set to false"
+    {{/* For export, import, backup and restore actions, the CEL expression checks
+    if the user has permissions to 'get' the 'profile' resource, which is
+    referenced under 'actionParameters' in the Policy spec. Since profile
+    is optional, expression first checks if profile is defined. For backup,
+    since backupParameters are optional, expression first checks that they exist.*/}}
+    - expression: "object.spec.actions.filter(x, x.action == 'export').all(e, !has(e.exportParameters.profile) || authorizer.group('config.kio.kasten.io').resource('profiles').namespace(e.exportParameters.profile.namespace).name(e.exportParameters.profile.name).check('get').allowed())"
+      message: "user does not have permission to access profile specified in export action"
+    - expression: "object.spec.actions.filter(x, x.action == 'import').all(i, !has(i.importParameters.profile) || authorizer.group('config.kio.kasten.io').resource('profiles').namespace(i.importParameters.profile.namespace).name(i.importParameters.profile.name).check('get').allowed())"
+      message: "user does not have permission to access profile specified in import action"
+    - expression: "object.spec.actions.filter(x, x.action == 'backup').all(b, !has(b.backupParameters) || !has(b.backupParameters.profile) || authorizer.group('config.kio.kasten.io').resource('profiles').namespace(b.backupParameters.profile.namespace).name(b.backupParameters.profile.name).check('get').allowed())"
+      message: "user does not have permission to access profile specified in backup action"
+    - expression: "object.spec.actions.filter(x, x.action == 'restore').all(r, !has(r.restoreParameters.profile) || authorizer.group('config.kio.kasten.io').resource('profiles').namespace(r.restoreParameters.profile.namespace).name(r.restoreParameters.profile.name).check('get').allowed())"
+      message: "user does not have permission to access profile specified in restore action"
+    {{/* If it is an export action, the CEL expression checks if the user has
+    permissions to 'get' the 'blockModeProfile' resource, which is referenced
+    under 'exportParameters' in the Policy spec. Since blockModeProfile is optional,
+    expression first checks if blockModeProfile is defined.*/}}
+    - expression: "object.spec.actions.filter(x, x.action == 'export').all(e, !has(e.exportParameters.blockModeProfile) || authorizer.group('config.kio.kasten.io').resource('profiles').namespace(e.exportParameters.blockModeProfile.namespace).name(e.exportParameters.blockModeProfile.name).check('get').allowed())"
+      message: "user does not have permission to access block mode profile specified in export action"
+    {{/* If it is an restore action, the CEL expression checks if the user has
+    permissions to 'get' the 'artifactOverrideProfile' resource, which is referenced
+    under 'restoreParameters' in the Policy spec. Since artifactOverrideProfile is optional,
+    expression first checks if trtifactOverrideProfile is defined.*/}}
+    - expression: "object.spec.actions.filter(x, x.action == 'restore').all(r, !has(r.restoreParameters.artifactOverrideProfile) || authorizer.group('config.kio.kasten.io').resource('profiles').namespace(r.restoreParameters.artifactOverrideProfile.namespace).name(r.restoreParameters.artifactOverrideProfile.name).check('get').allowed())"
+      message: "user does not have permission to access artifactOverrideProfile specified in restore action"
+    {{/* // TODO: https://kasten.atlassian.net/browse/K10-27480
+    This blocks creation of restore actions which refer ONLY inline transforms
+    in the same transform object. This will still allow restore actions which
+    refer to inline AND transformRef in the same transform object. This is a
+    rare case and policy validation will fail eventually for such policies.*/}}
+    {{/* If it is a restore action, the CEL expression checks if the user has
+    specified inline transforms. If restore paramaters have transforms, the CEL
+    checks if the transform object has transformSetRef set. This ensures that
+    transforms with ONLY inline transforms are rejected. Since transforms
+    parameter is optional, expression first checks if transforms are defined.*/}}
+    - expression: "object.spec.actions.filter(x, x.action == 'restore').all(r, !has(r.restoreParameters.transforms) || r.restoreParameters.transforms.all(t, has(t.transformSetRef)))"
+      message: "user does not have permission to create the inline transformSet specified in restore action"
+    {{/* If it is a restore action, the CEL expression checks if the user has
+    permissions to 'get' the transform resource which is referenced
+    under 'restoreParameters' in the Policy spec. Since transforms are optional,
+    expression first checks if transforms are defined. If transforms are defined,
+    a transformSetRef is mandatory.*/}}
+    - expression: "object.spec.actions.filter(x, x.action == 'restore').all(r, !has(r.restoreParameters.transforms) || r.restoreParameters.transforms.all(t, has(t.transformSetRef) && authorizer.group('config.kio.kasten.io').resource('transformsets').namespace(t.transformSetRef.namespace).name(t.transformSetRef.name).check('get').allowed()))"
+      message: "user does not have permission to access transformSet specified in restore action"
+    {{/* The CEL expressions below checks if the user has 'get' access to the
+    blueprint referenced under 'hooks' in the 'restoreParameters' during a
+    restore action. Since hooks are optional, each expression first checks if
+    hooks are defined and in turn if it is an onSuccess, onFailure or preHook
+    respectively before checking the blueprint 'get' permissions.*/}}
+    - expression: {{printf "object.spec.actions.filter(x, x.action == 'restore').all(r, !has(r.restoreParameters.hooks) || !has(r.restoreParameters.hooks.preHook) || authorizer.group('cr.kanister.io').resource('blueprints').namespace('%s').name(r.restoreParameters.hooks.preHook.blueprint).check('get').allowed())" .Release.Namespace}}
+      message: "user does not have permission to access blueprint specified in the pre-action hook specified in the restore action"
+    - expression: {{printf "object.spec.actions.filter(x, x.action == 'restore').all(r, !has(r.restoreParameters.hooks) || !has(r.restoreParameters.hooks.onSuccess) || authorizer.group('cr.kanister.io').resource('blueprints').namespace('%s').name(r.restoreParameters.hooks.onSuccess.blueprint).check('get').allowed())" .Release.Namespace}}
+      message: "user does not have permission to access blueprint specified in the onSuccess hook specified in the restore action"
+    - expression: {{printf "object.spec.actions.filter(x, x.action == 'restore').all(r, !has(r.restoreParameters.hooks) || !has(r.restoreParameters.hooks.onFailure) || authorizer.group('cr.kanister.io').resource('blueprints').namespace('%s').name(r.restoreParameters.hooks.onFailure.blueprint).check('get').allowed())" .Release.Namespace}}
+      message: "user does not have permission to access blueprint specified in the onFailure hook specified in the restore action"
+    {{/* The CEL expressions below checks if the user has 'get' access to the
+    blueprint referenced under 'hooks' in the 'backupParameters' during a
+    restore action. Since hooks are optional, each expression first checks if
+    hooks are defined and in turn if it is an onSuccess, onFailure or preHook
+    respectively before checking the blueprint 'get' permissions. For backup,
+    since backupParameters are optional, expression first checks that they exist.*/}}
+    - expression: {{printf "object.spec.actions.filter(x, x.action == 'backup').all(b,!has(b.backupParameters) ||  !has(b.backupParameters.hooks) || !has(b.backupParameters.hooks.preHook) || authorizer.group('cr.kanister.io').resource('blueprints').namespace('%s').name(b.backupParameters.hooks.preHook.blueprint).check('get').allowed())" .Release.Namespace}}
+      message: "user does not have permission to access blueprint specified in the pre-action hook specified in the backup action"
+    - expression: {{printf "object.spec.actions.filter(x, x.action == 'backup').all(b, !has(b.backupParameters) || !has(b.backupParameters.hooks) || !has(b.backupParameters.hooks.onSuccess) || authorizer.group('cr.kanister.io').resource('blueprints').namespace('%s').name(b.backupParameters.hooks.onSuccess.blueprint).check('get').allowed())" .Release.Namespace}}
+      message: "user does not have permission to access blueprint specified in the onSuccess hook specified in the backup action"
+    - expression: {{printf "object.spec.actions.filter(x, x.action == 'backup').all(b, !has(b.backupParameters) || !has(b.backupParameters.hooks) || !has(b.backupParameters.hooks.onFailure) || authorizer.group('cr.kanister.io').resource('blueprints').namespace('%s').name(b.backupParameters.hooks.onFailure.blueprint).check('get').allowed())" .Release.Namespace}}
+      message: "user does not have permission to access blueprint specified in the onFailure hook specified in the backup action"
+    {{/* The CEL expressions below checks if the user has 'get' access to the
+    blueprint referenced under 'hooks' in the 'exportParameters' during a
+    restore action. Since hooks are optional, each expression first checks if
+    hooks are defined and in turn if it is an onSuccess, onFailure or preHook
+    respectively before checking the blueprint 'get' permissions.*/}}
+    - expression: {{printf "object.spec.actions.filter(x, x.action == 'export').all(e, !has(e.exportParameters.hooks) || !has(e.exportParameters.hooks.preHook) || authorizer.group('cr.kanister.io').resource('blueprints').namespace('%s').name(e.exportParameters.hooks.preHook.blueprint).check('get').allowed())" .Release.Namespace}}
+      message: "user does not have permission to access blueprint specified in the pre-action hook specified in the export action"
+    - expression: {{printf "object.spec.actions.filter(x, x.action == 'export').all(e, !has(e.exportParameters.hooks) || !has(e.exportParameters.hooks.onSuccess) || authorizer.group('cr.kanister.io').resource('blueprints').namespace('%s').name(e.exportParameters.hooks.onSuccess.blueprint).check('get').allowed())" .Release.Namespace}}
+      message: "user does not have permission to access blueprint specified in the onSuccess hook specified in the export action"
+    - expression: {{printf "object.spec.actions.filter(x, x.action == 'export').all(e, !has(e.exportParameters.hooks) || !has(e.exportParameters.hooks.onFailure) || authorizer.group('cr.kanister.io').resource('blueprints').namespace('%s').name(e.exportParameters.hooks.onFailure.blueprint).check('get').allowed())" .Release.Namespace}}
+      message: "user does not have permission to access blueprint specified in the onFailure hook specified in the export action"
+    {{/*The CEL expressions below check if the user has 'get' access to the
+    optional field - ActionPodSpec referenced in the policy under the respective
+    actions - backup, export, import and restore. For backup, since backupParameters
+    are optional, expression first checks that they exist.*/}}
+    - expression: "object.spec.actions.filter(x, x.action == 'backup').all(b, !has(b.backupParameters) || !has(b.backupParameters.actionPodSpec) || authorizer.group('config.kio.kasten.io').resource('actionpodspecs').namespace(b.backupParameters.actionPodSpec.namespace).name(b.backupParameters.actionPodSpec.name).check('get').allowed())"
+      message: "user does not have permission to access ActionPodSpec specified in the backup action"
+    - expression: "object.spec.actions.filter(x, x.action == 'export').all(e, !has(e.exportParameters.actionPodSpec) || authorizer.group('config.kio.kasten.io').resource('actionpodspecs').namespace(e.exportParameters.actionPodSpec.namespace).name(e.exportParameters.actionPodSpec.name).check('get').allowed())"
+      message: "user does not have permission to access ActionPodSpec specified in the export action"
+    - expression: "object.spec.actions.filter(x, x.action == 'import').all(i, !has(i.importParameters.actionPodSpec) || authorizer.group('config.kio.kasten.io').resource('actionpodspecs').namespace(i.importParameters.actionPodSpec.namespace).name(i.importParameters.actionPodSpec.name).check('get').allowed())"
+      message: "user does not have permission to access ActionPodSpec specified in the import action"
+    - expression: "object.spec.actions.filter(x, x.action == 'restore').all(r, !has(r.restoreParameters.actionPodSpec) || authorizer.group('config.kio.kasten.io').resource('actionpodspecs').namespace(r.restoreParameters.actionPodSpec.namespace).name(r.restoreParameters.actionPodSpec.name).check('get').allowed())"
+      message: "user does not have permission to access ActionPodSpec specified in the restore action"
+    {{/* For all policies, the CEL expression checks if the user has permissions
+    to 'get' the 'policy preset' resource, which is referenced in the Policy spec.
+    Since presetRef is optional, expression first checks if presetRef is defined.*/}}
+    - expression: "!has(object.spec.presetRef) ||  authorizer.group('config.kio.kasten.io').resource('policypresets').namespace(object.spec.presetRef.namespace).name(object.spec.presetRef.name).check('get').allowed()"
+      message: "user does not have permission to access policy preset specified in policy spec"
+    {{/* For export and import actions, the CEL expression checks
+    if the user has permissions to 'get' the 'migrationToken' secret, which is
+    referenced under 'actionParameters' in the Policy spec. Since migrationToken
+    is optional, expression first checks if migrationToken is defined.*/}}
+    - expression: "object.spec.actions.filter(x, x.action == 'export').all(e, !has(e.exportParameters.migrationToken) || authorizer.group('').resource('secrets').namespace(e.exportParameters.migrationToken.namespace).name(e.exportParameters.migrationToken.name).check('get').allowed())"
+      message: "user does not have permission to access migration token specified in export action"
+    - expression: "object.spec.actions.filter(x, x.action == 'import').all(i, !has(i.importParameters.migrationToken) || authorizer.group('').resource('secrets').namespace(i.importParameters.migrationToken.namespace).name(i.importParameters.migrationToken.name).check('get').allowed())"
+      message: "user does not have permission to access migration token specified in import action"
+    {{/*The CEL expression checks if user has 'get' access to the optional field
+    imageRepoProfile in the backup action, if the field has been defined. For backup,
+    since backupParameters are option, expression first checks that they exist.*/}}
+    - expression: "object.spec.actions.filter(x, x.action == 'backup').all(b, !has(b.backupParameters) || !has(b.backupParameters.imageRepoProfile) || authorizer.group('config.kio.kasten.io').resource('profiles').namespace(b.backupParameters.imageRepoProfile.namespace).name(b.backupParameters.imageRepoProfile.name).check('get').allowed())"
+      message: "user does not have access to ImageRepoProfile specified in the backup action"
+{{- end }}
+---
+{{- if eq $isVapApplicable "true" }}
+apiVersion: admissionregistration.k8s.io/v1beta1
+kind: ValidatingAdmissionPolicyBinding
+metadata:
+  name: "kasten.policy.permissions.binding"
+spec:
+  policyName: "kasten.policy.permissions"
+  validationActions: [Deny]
+  matchResources:
+    namespaceSelector:
+      matchExpressions:
+        - key: kubernetes.io/metadata.name
+          operator: NotIn
+          values:
+            - {{ $.Release.Namespace }}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/templates/workloadIdentityFederation.tpl b/charts/kasten/k10/7.5.401/templates/workloadIdentityFederation.tpl
new file mode 100644
index 0000000000..75296e98b0
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/workloadIdentityFederation.tpl
@@ -0,0 +1,10 @@
+{{/*
+This file is used to fail the helm deployment if Workload Identity settings are not
+compatible.
+*/}}
+{{- include "validate.gwif.idp.type" . -}}
+{{- include "validate.gwif.idp.aud" . -}}
+
+
+
+
diff --git a/charts/kasten/k10/7.5.401/templates/{values}/prometheus/charts/{charts}/values/prometheus_values.tpl b/charts/kasten/k10/7.5.401/templates/{values}/prometheus/charts/{charts}/values/prometheus_values.tpl
new file mode 100644
index 0000000000..fbf1f2ef60
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/templates/{values}/prometheus/charts/{charts}/values/prometheus_values.tpl
@@ -0,0 +1,186 @@
+{{/*
+  With some of K10's features being provided by external Helm charts, those Helm
+  charts need to be configured to work with K10.
+
+  Unfortunately, some of the values needed to configure the subcharts aren't
+  accessible to the subcharts (only global.* and chart_name.* are accessible).
+
+  This means the values need to be duplicated, making the configuration of K10
+  quite cumbersome for users (the same setting has to be provided in multiple
+  places, making it easy to misconfigure one thing or another).
+
+  Alternatively, the subchart's templates could be customized to read global.*
+  values instead. However, this means upgrading the subchart is quite burdensome
+  since the customizations have to be re-applied to the upgraded chart. This is
+  even less tenable with the frequency with which chart updates are needed.
+
+  With this in mind, this template was specially crafted to be able to read K10
+  values and update the values that will be passed to the subchart.
+
+  ---
+
+  To accomplish this, Helm's template parsing and rendering order is exploited.
+
+  Helm allows parent charts to override templates in subcharts. This is done by
+  parsing templates with lower precedence first (templates that are more deeply
+  nested than others). This allows templates with higher precedence to redefine
+  templates with lower precedence.
+
+  Helm also renders templates in this same order. This template exploits this
+  ordering in order to set subchart values before the subchart's templates are
+  rendered, having the same effect as the user setting the values.
+
+  WARNING: The name and directory structure of this template was carefully
+  selected to ensure that it is rendered before other templates!
+*/}}
+
+{{- if .Values.prometheus.server.enabled }}
+{{- $prometheus_scoped_values := (dict "Chart" (dict "Name" "prometheus") "Release" .Release "Values" .Values.prometheus) -}}
+
+{{- $prometheus_name := (include "prometheus.name" $prometheus_scoped_values) -}}
+{{- $prometheus_prefix := "/k10/prometheus/" -}}
+{{- $release_name := .Release.Name -}}
+
+{{- /*** PROMETHEUS LABELS ***/ -}}
+{{- $_ := mergeOverwrite .Values.prometheus
+  (dict
+    "commonMetaLabels" (dict
+      "app.kubernetes.io/name" $prometheus_name
+      "app.kubernetes.io/instance" $release_name
+    )
+  )
+-}}
+
+{{- /*** PROMETHEUS SERVER OVERRIDES ***/ -}}
+{{- $fullnameOverride := .Values.prometheus.server.fullnameOverride | default "prometheus-server" -}}
+{{- $clusterRoleNameOverride := .Values.prometheus.server.clusterRoleNameOverride | default (printf "%s-%s" .Release.Name $fullnameOverride) -}}
+
+{{- /* Merge global pod labels with any prometheus-specific labels, where the latter is of highest priority */ -}}
+{{- $podLabels := merge (dict) (.Values.prometheus.server.podLabels | default dict) (.Values.global.podLabels) -}}
+
+{{- /* Merge global pod labels with any prometheus-specific annotations, where the latter is of highest priority */ -}}
+{{- $podAnnotations := merge (dict) (.Values.prometheus.server.podAnnotations | default dict) (.Values.global.podAnnotations) -}}
+{{- if .Values.scc.create -}}
+  {{- $podAnnotations = merge (dict "openshift.io/required-scc" (printf "%s-prometheus-server" .Release.Name)) $podAnnotations -}}
+{{- end -}}
+{{- $_ := mergeOverwrite .Values.prometheus.server
+  (dict
+    "baseURL" (.Values.prometheus.server.baseURL | default $prometheus_prefix)
+    "prefixURL" (.Values.prometheus.server.prefixURL | default $prometheus_prefix | trimSuffix "/")
+
+    "clusterRoleNameOverride" $clusterRoleNameOverride
+    "configMapOverrideName" "k10-prometheus-config"
+    "fullnameOverride" $fullnameOverride
+    "podLabels" $podLabels
+    "podAnnotations" $podAnnotations
+  )
+-}}
+
+{{- /*** K10 PROMETHEUS CONFIGMAP-RELOAD IMAGE ***
+    - global.airgapped.repository
+    - global.image.registry
+    - global.image.tag
+    - global.images.configmap-reload
+*/ -}}
+{{- $prometheus_configmap_reload_image := (dict
+    "registry" (.Values.global.airgapped.repository | default .Values.global.image.registry)
+    "repository" "configmap-reload"
+    "tag" (include "get.k10ImageTag" $)
+) -}}
+
+{{- if (index .Values.global.images "configmap-reload") -}}
+  {{- $prometheus_configmap_reload_image = (
+        include "k10.splitImage" (dict
+          "image" (index .Values.global.images "configmap-reload")
+          "path" "global.images.configmap-reload"
+        )
+      ) | fromJson
+  -}}
+{{- end -}}
+
+{{- if .Values.global.azMarketPlace -}}
+  {{- $prometheus_configmap_reload_image = (dict
+      "registry" .Values.global.azure.images.configmapreload.registry
+      "repository" .Values.global.azure.images.configmapreload.image
+      "tag" .Values.global.azure.images.configmapreload.tag
+      )
+  -}}
+{{- end -}}
+
+{{- $_ := mergeOverwrite .Values.prometheus.configmapReload.prometheus.image
+  (dict
+    "repository" (list $prometheus_configmap_reload_image.registry $prometheus_configmap_reload_image.repository | compact | join "/")
+    "tag" $prometheus_configmap_reload_image.tag
+    "digest" $prometheus_configmap_reload_image.digest
+  )
+-}}
+
+{{- /*** K10 PROMETHEUS SERVER IMAGE ***
+    - global.airgapped.repository
+    - global.image.registry
+    - global.image.tag
+    - global.images.prometheus
+*/ -}}
+{{- $prometheus_server_image := (dict
+    "registry" (.Values.global.airgapped.repository | default .Values.global.image.registry)
+    "repository" "prometheus"
+    "tag" (include "get.k10ImageTag" $)
+) -}}
+{{- if .Values.global.images.prometheus -}}
+  {{- $prometheus_server_image = (
+        include "k10.splitImage" (dict
+          "image" .Values.global.images.prometheus
+          "path" "global.images.prometheus"
+        )
+      ) | fromJson
+  -}}
+{{- end -}}
+
+{{- if .Values.global.azMarketPlace -}}
+  {{- $prometheus_server_image = ( dict
+            "registry" .Values.global.azure.images.prometheus.registry
+            "repository" .Values.global.azure.images.prometheus.image
+            "tag" .Values.global.azure.images.prometheus.tag
+      )
+  -}}
+{{- end -}}
+
+{{- $_ := mergeOverwrite .Values.prometheus.server.image
+  (dict
+    "repository" (list $prometheus_server_image.registry $prometheus_server_image.repository | compact | join "/")
+    "tag" $prometheus_server_image.tag
+    "digest" $prometheus_server_image.digest
+  )
+-}}
+
+{{- /*** K10 IMAGE PULL SECRETS ***
+    - secrets.dockerConfig
+    - secrets.dockerConfigPath
+    - global.imagePullSecret
+*/ -}}
+{{- $image_pull_secret_names := list -}}
+{{- if .Values.global.imagePullSecret -}}
+  {{- $image_pull_secret_names = append $image_pull_secret_names .Values.global.imagePullSecret -}}
+{{- end -}}
+{{- if (or .Values.secrets.dockerConfig .Values.secrets.dockerConfigPath) -}}
+  {{ $image_pull_secret_names = append $image_pull_secret_names "k10-ecr" -}}
+{{- end -}}
+{{- $image_pull_secret_names = $image_pull_secret_names | compact | uniq -}}
+
+{{- if $image_pull_secret_names -}}
+  {{- $image_pull_secrets := .Values.prometheus.imagePullSecrets | default list -}}
+  {{- range $name := $image_pull_secret_names -}}
+    {{- $image_pull_secrets = append $image_pull_secrets (dict "name" $name) -}}
+  {{- end -}}
+  {{- $_ := set .Values.prometheus "imagePullSecrets" $image_pull_secrets -}}
+{{- end -}}
+
+{{- /*** K10 PERSISTENCE ***
+    - global.persistence.storageClass
+*/ -}}
+{{- $_ := mergeOverwrite .Values.prometheus.server.persistentVolume
+  (dict
+    "storageClass" (.Values.prometheus.server.persistentVolume.storageClass | default .Values.global.persistence.storageClass)
+  )
+-}}
+{{- end }}
diff --git a/charts/kasten/k10/7.5.401/triallicense b/charts/kasten/k10/7.5.401/triallicense
new file mode 100644
index 0000000000..cfe6dd46bf
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/triallicense
@@ -0,0 +1 @@
+Y3VzdG9tZXJOYW1lOiB0cmlhbHN0YXJ0ZXItbGljZW5zZQpkYXRlRW5kOiAnMjEwMC0wMS0wMVQwMDowMDowMC4wMDBaJwpkYXRlU3RhcnQ6ICcyMDIwLTAxLTAxVDAwOjAwOjAwLjAwMFonCmZlYXR1cmVzOgogIHRyaWFsOiBudWxsCmlkOiB0cmlhbC0wOWY4MzE5Zi0xODBmLTRhOTAtOTE3My1kOTJiNzZmMTgzNWUKcHJvZHVjdDogSzEwCnJlc3RyaWN0aW9uczoKICBub2RlczogNTAwCnNlcnZpY2VBY2NvdW50S2V5OiBudWxsCnZlcnNpb246IHYxLjAuMApzaWduYXR1cmU6IEYxbnVLUFV5STJtbDJGMmV1VHdGOXNZRTZMVU5rQ3ZiR2tTV1ZkT0ZqdERCb1B6SjUyVWFsVkFmRjVmQUxpcm5BcVhkcERnYi9YcnpxSEYrTE0xS2pEMVdXUFd0ZUdXNFc1anBPSFN0T296Y0c5M0pUUHF5M2l6TVk3RmczZVFLYTZzWDhBdnFwOXArWXVBMWNwTENlQ2dsR2dnOTVzSUFmYmRMMTBmV2d2RmR6QUt4dUZLN2psRzVtbG1CRVF5R0hrYWdoZFIrVGxzeUNTNEFkbXVBOEZodVUwZnRBdXN0b1M3R2JKd1BuTFI3STFZY1Q4OW8wU2xRZEJ2Yjg2QzdKbm1OdnY0aHhiSUo5TTJvWGJPSnQ4ZnBNcjhNWFR6YWRMTWJzSndhZ3VBVHlNUWF2cExHNXRPb0U2ZE1uMVlFVDZLdWZiYy9NdThVRDVYYXlDYTdkZz09Cg==
diff --git a/charts/kasten/k10/7.5.401/values.schema.json b/charts/kasten/k10/7.5.401/values.schema.json
new file mode 100644
index 0000000000..b89a08e36f
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/values.schema.json
@@ -0,0 +1,3124 @@
+{
+  "$schema": "https://json-schema.org/draft/2019-09/schema",
+  "type": "object",
+  "properties": {
+    "rbac": {
+      "type": "object",
+      "title": "RBAC configuration",
+      "description": "Create RBAC seetings",
+      "properties": {
+        "create": {
+          "title": "Enable RBAC creation",
+          "description": "Toggle RBAC resource creation",
+          "type": "boolean",
+          "default": true
+        }
+      }
+    },
+    "serviceAccount": {
+      "type": "object",
+      "title": "ServiceAccount details",
+      "description": "Configure ServiceAccount",
+      "properties": {
+        "create": {
+          "type": "boolean",
+          "default": true,
+          "title": "Create a ServiceAccount",
+          "description": "Specifies whether a ServiceAccount should be created"
+        },
+        "name": {
+          "type": "string",
+          "default": "",
+          "title": "The name of the ServiceAccount",
+          "description": "The name of the ServiceAccount to use. If not set and create is true, a name is derived using the release and chart names"
+        }
+      }
+    },
+    "scc": {
+      "type": "object",
+      "title": "Security Context Constraints details",
+      "description": "Configure Security Context Constraints",
+      "properties": {
+        "create": {
+          "type": "boolean",
+          "default": false,
+          "title": "Create K10 SSC",
+          "description": "Whether to create a SecurityContextConstraints for K10 ServiceAccounts"
+        },
+        "priority": {
+          "type": "integer",
+          "default": 0,
+          "title": "SCC priority",
+          "description": "Sets the SecurityContextConstraints priority"
+        }
+      }
+    },
+    "networkPolicy": {
+      "type": "object",
+      "title": "NetworkPolicy details",
+      "description": "Configure NetworkPolicy",
+      "properties": {
+        "create": {
+          "type": "boolean",
+          "default": true,
+          "title": "Create NetworkPolicies",
+          "description": "Whether to create NetworkPolicies for the K10 services"
+        }
+      }
+    },
+    "global": {
+      "type": "object",
+      "title": "Global settings",
+      "properties": {
+        "image": {
+          "type": "object",
+          "title": "K10 image configurations",
+          "description": "Change K10 image settings",
+          "properties": {
+            "registry": {
+              "type": "string",
+              "default": "gcr.io/kasten-images",
+              "title": "K10 image registry",
+              "description": "Change default K10 image registry"
+            },
+            "tag": {
+              "type": "string",
+              "default": "",
+              "title": "K10 image tag",
+              "description": "Change default K10 tag"
+            },
+            "pullPolicy": {
+              "type": "string",
+              "default": "Always",
+              "title": "Container images pullPolicy",
+              "description": "Change default pullPolicy for all the images",
+              "enum": [
+                "IfNotPresent",
+                "Always",
+                "Never"
+              ]
+            }
+          }
+        },
+        "airgapped": {
+          "type": "object",
+          "title": "Airgapped offline installation",
+          "description": "Configure Airgapped offline installation",
+          "properties": {
+            "repository": {
+              "type": "string",
+              "default": "",
+              "title": "helm repository",
+              "description": "The helm repository for offline (airgapped) installation"
+            }
+          }
+        },
+        "persistence": {
+          "type": "object",
+          "title": "Persistent Volume global details",
+          "description": "Configure global settings for Persistent Volume",
+          "properties": {
+            "mountPath": {
+              "type": "string",
+              "default": "/mnt/k10state",
+              "title": "Persistent Volume global mount path",
+              "description": "Change default path for Persistent Volume mount"
+            },
+            "enabled": {
+              "type": "boolean",
+              "default": true,
+              "title": "Enable Persistent Volume",
+              "description": "Create Persistent Volumes"
+            },
+            "storageClass": {
+              "type": "string",
+              "default": "",
+              "title": "Persistent Volume global Storageclass",
+              "description": "If set to '-', dynamic provisioning is disabled. If undefined (the default) or set to null, the default provisioner is used. (e.g gp2 on AWS, standard on GKE, AWS & OpenStack)"
+            },
+            "accessMode": {
+              "type": "string",
+              "default": "ReadWriteOnce",
+              "title": "Persistent Volume global AccessMode",
+              "description": "Change default AccessMode for Persistent Volumes",
+              "enum": [
+                "ReadWriteOnce",
+                "ReadOnlyMany",
+                "ReadWriteMany"
+              ]
+            },
+            "size": {
+              "type": "string",
+              "default": "20Gi",
+              "title": "Persistent Volume size",
+              "description": "Change default size for Persistent Volumes"
+            },
+            "metering": {
+              "type": "object",
+              "title": "Metering service Persistent Volume details",
+              "description": "Configure Persistence Volume for metering service",
+              "properties": {
+                "size": {
+                  "type": "string",
+                  "default": "2Gi",
+                  "title": "Metering service Persistent Volume size",
+                  "description": "If not set, global.persistence.size is used"
+                }
+              }
+            },
+            "catalog": {
+              "type": "object",
+              "title": "Catalog service Persistent Volume details",
+              "description": "Configure Persistence Volume for catalog service",
+              "properties": {
+                "size": {
+                  "type": "string",
+                  "default": "",
+                  "title": "Catalog service Persistent Volume size",
+                  "description": "If not set, global.persistence.size is used."
+                }
+              }
+            },
+            "jobs": {
+              "type": "object",
+              "title": "Jobs service Persistent Volume details",
+              "description": "Configure Persistence Volume for jobs service",
+              "properties": {
+                "size": {
+                  "type": "string",
+                  "default": "",
+                  "title": "Jobs service Persistent Volume size",
+                  "description": "If not set, global.persistence.size is used."
+                }
+              }
+            },
+            "logging": {
+              "type": "object",
+              "title": "Logging service Persistent Volume details",
+              "description": "Configure Persistence Volume for logging service",
+              "properties": {
+                "size": {
+                  "type": "string",
+                  "default": "",
+                  "title": "Logging service Persistent Volume size",
+                  "description": "If not set, global.persistence.size is used."
+                }
+              }
+            }
+          }
+        },
+        "podLabels": {
+          "type": "object",
+          "default": {},
+          "title": "Custom labels to be set to all Kasten Pods",
+          "description": "Configures custom Pod labels to be set to all Kasten Pods.",
+          "examples": [
+            {
+              "foo": "bar"
+            }
+          ]
+        },
+        "podAnnotations": {
+          "type": "object",
+          "default": {},
+          "title": "Custom annotations to be set to all Kasten Pods",
+          "description": "Configures custom Pod annotations to be set to all Kasten Pods.",
+          "examples": [
+            {
+              "foo": "bar"
+            }
+          ]
+        },
+        "rhMarketPlace": {
+          "type": "boolean",
+          "default": false,
+          "title": "RedHat marketplace config",
+          "description": "Set it to true while generating helm operator"
+        },
+        "images": {
+          "type": "object",
+          "title": "Global image settings",
+          "properties": {
+            "aggregatedapis": {
+              "type": "string",
+              "default": "",
+              "title": "Aggregatedapis service container image",
+              "description": "Used for packaging RedHat Operator. Setting this flag along with global.rhMarketPlace=true overrides the default image name. This flag is only for internal purposes. If not set, the image name is formed with '(global.airgapped.repository)|(global.image.registry)/<service-name>:(Chart.AppVersion)|(image.tag)'"
+            },
+            "auth": {
+              "type": "string",
+              "default": "",
+              "title": "Auth service container image",
+              "description": "Used for packaging RedHat Operator. Setting this flag along with global.rhMarketPlace=true overrides the default image name. This flag is only for internal purposes. If not set, the image name is formed with '(global.airgapped.repository)|(global.image.registry)/<service-name>:(Chart.AppVersion)|(image.tag)'"
+            },
+            "bloblifecyclemanager": {
+              "type": "string",
+              "default": "",
+              "title": "Bloblifecyclemanager service container image",
+              "description": "Used for packaging RedHat Operator. Setting this flag along with global.rhMarketPlace=true overrides the default image name. This flag is only for internal purposes. If not set, the image name is formed with '(global.airgapped.repository)|(global.image.registry)/<service-name>:(Chart.AppVersion)|(image.tag)'"
+            },
+            "catalog": {
+              "type": "string",
+              "default": "",
+              "title": "Catalog service container image",
+              "description": "Used for packaging RedHat Operator. Setting this flag along with global.rhMarketPlace=true overrides the default image name. This flag is only for internal purposes. If not set, the image name is formed with '(global.airgapped.repository)|(global.image.registry)/<service-name>:(Chart.AppVersion)|(image.tag)'"
+            },
+            "configmap-reload": {
+              "type": "string",
+              "title": "Configmap-reload service container image",
+              "default": "",
+              "description": "Used for packaging RedHat Operator. Setting this flag along with global.rhMarketPlace=true overrides the default image name. This flag is only for internal purposes."
+            },
+            "controllermanager": {
+              "type": "string",
+              "default": "",
+              "title": "Controllermanager service container image",
+              "description": "Used for packaging RedHat Operator. Setting this flag along with global.rhMarketPlace=true overrides the default image name. This flag is only for internal purposes. If not set, the image name is formed with '(global.airgapped.repository)|(global.image.registry)/<service-name>:(Chart.AppVersion)|(image.tag)'"
+            },
+            "crypto": {
+              "type": "string",
+              "default": "",
+              "title": "Crypto service container image",
+              "description": "Used for packaging RedHat Operator. Setting this flag along with global.rhMarketPlace=true overrides the default image name. This flag is only for internal purposes. If not set, the image name is formed with '(global.airgapped.repository)|(global.image.registry)/<service-name>:(Chart.AppVersion)|(image.tag)'"
+            },
+            "dashboardbff": {
+              "type": "string",
+              "default": "",
+              "title": "Dashboardbff service container image",
+              "description": "Used for packaging RedHat Operator. Setting this flag along with global.rhMarketPlace=true overrides the default image name. This flag is only for internal purposes. If not set, the image name is formed with '(global.airgapped.repository)|(global.image.registry)/<service-name>:(Chart.AppVersion)|(image.tag)'"
+            },
+            "datamover": {
+              "type": "string",
+              "default": "",
+              "title": "Datamover service container image",
+              "description": "Used for packaging RedHat Operator. Setting this flag along with global.rhMarketPlace=true overrides the default image name. This flag is only for internal purposes."
+            },
+            "dex": {
+              "type": "string",
+              "default": "",
+              "title": "Dex service container image",
+              "description": "Used for packaging RedHat Operator. Setting this flag along with global.rhMarketPlace=true overrides the default image name. This flag is only for internal purposes."
+            },
+            "events": {
+              "type": "string",
+              "default": "",
+              "title": "Events service container image",
+              "description": "Used for packaging RedHat Operator. Setting this flag along with global.rhMarketPlace=true overrides the default image name. This flag is only for internal purposes. If not set, the image name is formed with '(global.airgapped.repository)|(global.image.registry)/<service-name>:(Chart.AppVersion)|(image.tag)'"
+            },
+            "executor": {
+              "type": "string",
+              "default": "",
+              "title": "Executor service container image",
+              "description": "Used for packaging RedHat Operator. Setting this flag along with global.rhMarketPlace=true overrides the default image name. This flag is only for internal purposes. If not set, the image name is formed with '(global.airgapped.repository)|(global.image.registry)/<service-name>:(Chart.AppVersion)|(image.tag)'"
+            },
+            "frontend": {
+              "type": "string",
+              "default": "",
+              "title": "Frontend service container image",
+              "description": "Used for packaging RedHat Operator. Setting this flag along with global.rhMarketPlace=true overrides the default image name. This flag is only for internal purposes. If not set, the image name is formed with '(global.airgapped.repository)|(global.image.registry)/<service-name>:(Chart.AppVersion)|(image.tag)'"
+            },
+            "gateway": {
+              "type": "string",
+              "default": "",
+              "title": "Gateway service container image",
+              "description": "Used for packaging RedHat Operator. Setting this flag along with global.rhMarketPlace=true overrides the default image name. This flag is only for internal purposes. If not set, the image name is formed with '(global.airgapped.repository)|(global.image.registry)/<service-name>:(Chart.AppVersion)|(image.tag)'"
+            },
+            "init": {
+              "type": "string",
+              "title": "Generic init container image",
+              "default": "",
+              "description": "Used for packaging RedHat Operator. Setting this flag along with global.rhMarketPlace=true overrides the default image name. This flag is only for internal purposes."
+            },
+            "jobs": {
+              "type": "string",
+              "default": "",
+              "title": "Jobs service container image",
+              "description": "Used for packaging RedHat Operator. Setting this flag along with global.rhMarketPlace=true overrides the default image name. This flag is only for internal purposes. If not set, the image name is formed with '(global.airgapped.repository)|(global.image.registry)/<service-name>:(Chart.AppVersion)|(image.tag)'"
+            },
+            "kanister-tools": {
+              "type": "string",
+              "default": "",
+              "title": "Kanister-tools service container image",
+              "description": "Kanister-tools service container image contains set of tools, required for all kanister related operations. It is used for debug, troubleshooting, primer purposes as well"
+            },
+            "kanister": {
+              "type": "string",
+              "default": "",
+              "title": "Kanister service container image",
+              "description": "Used for packaging RedHat Operator. Setting this flag along with global.rhMarketPlace=true overrides the default image name. This flag is only for internal purposes. If not set, the image name is formed with '(global.airgapped.repository)|(global.image.registry)/<service-name>:(Chart.AppVersion)|(image.tag)'"
+            },
+            "k10tools": {
+              "type": "string",
+              "default": "",
+              "title": "k10tools service container image",
+              "description": "Used for packaging RedHat Operator. Setting this flag along with global.rhMarketPlace=true overrides the default image name. This flag is only for internal purposes. If not set, the image name is formed with '(global.airgapped.repository)|(global.image.registry)/<service-name>:(Chart.AppVersion)|(image.tag)'"
+            },
+            "logging": {
+              "type": "string",
+              "default": "",
+              "title": "Logging service container image",
+              "description": "Used for packaging RedHat Operator. Setting this flag along with global.rhMarketPlace=true overrides the default image name. This flag is only for internal purposes. If not set, the image name is formed with '(global.airgapped.repository)|(global.image.registry)/<service-name>:(Chart.AppVersion)|(image.tag)'"
+            },
+            "metering": {
+              "type": "string",
+              "default": "",
+              "title": "Metering service container image",
+              "description": "Used for packaging RedHat Operator. Setting this flag along with global.rhMarketPlace=true overrides the default image name. This flag is only for internal purposes. If not set, the image name is formed with '(global.airgapped.repository)|(global.image.registry)/<service-name>:(Chart.AppVersion)|(image.tag)'"
+            },
+            "ocpconsoleplugin": {
+              "type": "string",
+              "default": "",
+              "title": "OpenShift Console Plugin container image",
+              "description": "Used for packaging RedHat Operator. Setting this flag along with global.rhMarketPlace=true overrides the default image name. This flag is only for internal purposes. If not set, the image name is formed with '(global.airgapped.repository)|(global.image.registry)/<service-name>:(Chart.AppVersion)|(image.tag)'"
+            },
+            "paygo_daemonset": {
+              "type": "string",
+              "default": "",
+              "title": "Paygo_daemonset service container image",
+              "description": "Used for packaging RedHat Operator. Setting this flag along with global.rhMarketPlace=true overrides the default image name. This flag is only for internal purposes."
+            },
+            "prometheus": {
+              "type": "string",
+              "default": "",
+              "title": "Prometheus service container image",
+              "description": "Used for packaging RedHat Operator. Setting this flag along with global.rhMarketPlace=true overrides the default image name. This flag is only for internal purposes."
+            },
+            "repositories": {
+              "type": "string",
+              "default": "",
+              "title": "Repositories service container image",
+              "description": "Used for packaging RedHat Operator. Setting this flag along with global.rhMarketPlace=true overrides the default image name. This flag is only for internal purposes. If not set, the image name is formed with '(global.airgapped.repository)|(global.image.registry)/<service-name>:(Chart.AppVersion)|(image.tag)'"
+            },
+            "state": {
+              "type": "string",
+              "default": "",
+              "title": "State service container image",
+              "description": "Used for packaging RedHat Operator. Setting this flag along with global.rhMarketPlace=true overrides the default image name. This flag is only for internal purposes. If not set, the image name is formed with '(global.airgapped.repository)|(global.image.registry)/<service-name>:(Chart.AppVersion)|(image.tag)'"
+            },
+            "upgrade": {
+              "type": "string",
+              "default": "",
+              "title": "Upgrade service container image",
+              "description": "Used for packaging RedHat Operator. Setting this flag along with global.rhMarketPlace=true overrides the default image name. This flag is only for internal purposes. If not set, the image name is formed with '(global.airgapped.repository)|(global.image.registry)/<service-name>:(Chart.AppVersion)|(image.tag)'"
+            },
+            "vbrintegrationapi": {
+              "type": "string",
+              "default": "",
+              "title": "Vbrintegrationapi service container image",
+              "description": "Used for packaging RedHat Operator. Setting this flag along with global.rhMarketPlace=true overrides the default image name. This flag is only for internal purposes."
+            },
+            "garbagecollector": {
+              "type": "string",
+              "default": "",
+              "title": "Garbagecollector service container image",
+              "description": "Used for packaging RedHat Operator. Setting this flag along with global.rhMarketPlace=true overrides the default image name. This flag is only for internal purposes."
+            },
+            "metric-sidecar": {
+              "type": "string",
+              "default": "",
+              "title": "Metric-sidecar service container image",
+              "description": "Used for packaging RedHat Operator. Setting this flag along with global.rhMarketPlace=true overrides the default image name. This flag is only for internal purposes."
+            }
+          }
+        },
+        "imagePullSecret": {
+          "type": "string",
+          "default": "",
+          "title": "Container image pull secret",
+          "description": "Secret which contains docker config for private repository. Use `k10-ecr` when secrets.dockerConfigPath is used."
+        },
+        "prometheus": {
+          "type": "object",
+          "title": "Prometheus settings",
+          "description": "Global prometheus settings",
+          "properties": {
+            "external": {
+              "type": "object",
+              "title": "External prometheus settings",
+              "description": "Configure prometheus",
+              "properties": {
+                "host": {
+                  "type": "string",
+                  "default": "",
+                  "title": "External prometheus host name",
+                  "description": "Set prometheus host name"
+                },
+                "port": {
+                  "type": "string",
+                  "default": "",
+                  "title": "External prometheus port number",
+                  "description": "Set prometheus port number"
+                },
+                "baseURL": {
+                  "type": "string",
+                  "default": "",
+                  "title": "External prometheus baseURL",
+                  "description": "Set prometheus baseURL"
+                }
+              }
+            }
+          }
+        },
+        "network": {
+          "type": "object",
+          "title": "Network settings",
+          "description": "Global network settings",
+          "properties": {
+            "enable_ipv6": {
+              "type": "boolean",
+              "default": false,
+              "title": "Enable ipv6",
+              "description": "Set true to enable ipv6"
+            }
+          }
+        }
+      }
+    },
+    "route": {
+      "type": "object",
+      "title": "OpenShift route configuration",
+      "description": "Configure OpenShift Route",
+      "properties": {
+        "enabled": {
+          "type": "boolean",
+          "default": false,
+          "title": "Exposed dashboard via route",
+          "description": "Whether the K10 dashboard should be exposed via route"
+        },
+        "host": {
+          "type": "string",
+          "default": "",
+          "title": "Host name",
+          "description": "Set Host name for the route"
+        },
+        "path": {
+          "type": "string",
+          "default": "",
+          "title": "Route path",
+          "description": "Set Path for the route"
+        },
+        "annotations": {
+          "type": "object",
+          "default": {},
+          "title": "Route annotations",
+          "description": "Set annotations for the route",
+          "examples": [
+            {
+              "kubernetes.io/tls-acme": "true",
+              "haproxy.router.openshift.io/disable_cookies": "true",
+              "haproxy.router.openshift.io/balance": "roundrobin"
+            }
+          ]
+        },
+        "labels": {
+          "type": "object",
+          "default": {},
+          "title": "Route label",
+          "description": "Set Labels for the route resource",
+          "examples": [
+            {
+              "foo": "bar"
+            }
+          ]
+        },
+        "tls": {
+          "type": "object",
+          "title": "Route TLS configuration",
+          "description": "Set TLS configuration for the route",
+          "properties": {
+            "enabled": {
+              "type": "boolean",
+              "default": false,
+              "title": "Enable TLS",
+              "description": "Whether to enable TLS"
+            },
+            "insecureEdgeTerminationPolicy": {
+              "type": "string",
+              "default": "Redirect",
+              "title": "Route Termination Policy",
+              "description": "What to do in case of an insecure traffic edge termination",
+              "enum": [
+                "None",
+                "Allow",
+                "Redirect",
+                ""
+              ]
+            },
+            "termination": {
+              "type": "string",
+              "default": "edge",
+              "title": "Termination Schema",
+              "description": "Set termination Schema",
+              "enum": [
+                "edge",
+                "passthrough",
+                "reencrypt"
+              ]
+            }
+          }
+        }
+      }
+    },
+    "dexImage": {
+      "type": "object",
+      "title": "Dex image config",
+      "description": "Specify Dex image config",
+      "properties": {
+        "registry": {
+          "type": "string",
+          "default": "ghcr.io",
+          "title": "Dex image registry",
+          "description": "Change default image registry for Dex images"
+        },
+        "repository": {
+          "type": "string",
+          "default": "dexidp",
+          "title": "Dex image repository",
+          "description": "Change default image repository for Dex images"
+        },
+        "image": {
+          "type": "string",
+          "default": "dex",
+          "title": "Dex image name",
+          "description": "Change default image name for Dex images"
+        }
+      }
+    },
+    "kanisterToolsImage": {
+      "type": "object",
+      "title": "kanister tools image config",
+      "description": "Set kanister tools image config",
+      "properties": {
+        "registry": {
+          "type": "string",
+          "default": "ghcr.io",
+          "title": "kanister-tools image registry",
+          "description": "Change default image registry for kanister-tools images"
+        },
+        "repository": {
+          "type": "string",
+          "default": "kanisterio",
+          "title": "kanister-tools image repository",
+          "description": "Change default image repository for kanister-tools images"
+        },
+        "image": {
+          "type": "string",
+          "default": "kanister-tools",
+          "title": "Kanister tools image name",
+          "description": "Change default image name for kanister-tools images"
+        },
+        "pullPolicy": {
+          "type": "string",
+          "default": "Always",
+          "title": "Kanister tools image pullPolicy",
+          "description": "Change kanister-tools image pullPolicy",
+          "enum": [
+            "IfNotPresent",
+            "Always",
+            "Never"
+          ]
+        }
+      }
+    },
+    "ingress": {
+      "type": "object",
+      "title": "Ingress configuration",
+      "description": "Add ingress resource configuration",
+      "properties": {
+        "annotations": {
+          "type": "object",
+          "default": {},
+          "title": "Ingress annotations",
+          "description": "Add optional annotations to the Ingress resource"
+        },
+        "create": {
+          "type": "boolean",
+          "default": false,
+          "title": "Expose dashboard via ingress",
+          "description": "whether the K10 dashboard should be exposed via ingress"
+        },
+        "tls": {
+          "type": "object",
+          "title": "TLS configuration for ingress",
+          "description": "Set TLS configuration for ingress",
+          "properties": {
+            "enabled": {
+              "type": "boolean",
+              "default": false,
+              "title": "Enable TLS",
+              "description": "Configures a TLS use for ingress.host"
+            },
+            "secretName": {
+              "type": "string",
+              "default": "",
+              "title": "Optional TLS secret name",
+              "description": "Specifies the name of the secret to configure ingress.tls[].secretName"
+            }
+          }
+        },
+        "name": {
+          "type": "string",
+          "default": "",
+          "title": "Ingress name",
+          "description": "Optional name of the Ingress object for the K10 dashboard."
+        },
+        "class": {
+          "type": "string",
+          "default": "",
+          "title": "Ingress controller class",
+          "description": "Cluster ingress controller class: nginx, GCE"
+        },
+        "host": {
+          "type": "string",
+          "default": "",
+          "title": "Ingress host name",
+          "description": "FQDN for name-based virtual host",
+          "examples": [
+            "/k10.example.com"
+          ]
+        },
+        "urlPath": {
+          "type": "string",
+          "default": "",
+          "title": "Ingress URL path",
+          "description": "URL path for K10 Dashboard",
+          "examples": [
+            "/k10"
+          ]
+        },
+        "pathType": {
+          "type": "string",
+          "default": "ImplementationSpecific",
+          "title": "Ingress path type",
+          "description": "Set the path type for the ingress resource",
+          "enum": [
+            "Exact",
+            "Prefix",
+            "ImplementationSpecific"
+          ]
+        },
+        "defaultBackend": {
+          "type": "object",
+          "title": "Ingress default backend",
+          "description": "Optional default backend for the Ingress object.",
+          "properties": {
+            "service": {
+              "type": "object",
+              "title": "Ingress default backend service",
+              "description": "A service referenced by the default backend (mutually exclusive with `resource`).",
+              "properties": {
+                "enabled": {
+                  "type": "boolean",
+                  "default": false,
+                  "title": "Enable service default backend.",
+                  "description": "Enable the default backend backed by a service."
+                },
+                "name": {
+                  "type": "string",
+                  "default": "",
+                  "title": "Service name",
+                  "description": "Name of a service referenced by the default backend."
+                },
+                "port": {
+                  "type": "object",
+                  "title": "Service port",
+                  "description": "A port of a service referenced by the default backend.",
+                  "properties": {
+                    "name": {
+                      "type": "string",
+                      "default": "",
+                      "title": "Port name",
+                      "description": "Port name of a service referenced by the default backend (mutually exclusive with `number`)."
+                    },
+                    "number": {
+                      "type": "integer",
+                      "default": 0,
+                      "title": "Port number",
+                      "description": "Port number of a service referenced by the default backend (mutually exclusive with `name`)."
+                    }
+                  }
+                }
+              }
+            },
+            "resource": {
+              "type": "object",
+              "title": "Ingress default backend resource",
+              "description": "A resource referenced by the default backend (mutually exclusive with `service`).",
+              "properties": {
+                "enabled": {
+                  "type": "boolean",
+                  "default": false,
+                  "title": "Enable resource default backend.",
+                  "description": "Enable the default backend backed by a resource."
+                },
+                "apiGroup": {
+                  "type": "string",
+                  "default": "",
+                  "title": "Resource API group",
+                  "description": "Optional API group of a resource referenced by the default backend.",
+                  "examples": [
+                    "k8s.example.com"
+                  ]
+                },
+                "kind": {
+                  "type": "string",
+                  "default": "",
+                  "title": "Resource kind",
+                  "description": "Type of a resource referenced by the default backend.",
+                  "examples": [
+                    "StorageBucket"
+                  ]
+                },
+                "name": {
+                  "type": "string",
+                  "default": "",
+                  "title": "Resource name",
+                  "description": "Name of a resource referenced by the default backend."
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "eula": {
+      "type": "object",
+      "title": "EULA configuration",
+      "properties": {
+        "accept": {
+          "type": "boolean",
+          "default": false,
+          "title": "Enable accept EULA before installation",
+          "description": "An End-User license agreement (EULA) is a legal agreement that grants a user a license to use an application or software. Users must consent to the EULA before purchasing, installing, or downloading an application or software owned by the service provider."
+        }
+      }
+    },
+    "license": {
+      "type": "string",
+      "default": "",
+      "title": "License from Kasten",
+      "description": "Add license string obtained from Kasten"
+    },
+    "cluster": {
+      "type": "object",
+      "title": "Cluster configuration",
+      "description": "Set cluster configuration",
+      "properties": {
+        "domainName": {
+          "type": "string",
+          "default": "",
+          "title": "Domain name of the cluster",
+          "description": "Set domain name of the cluster"
+        }
+      }
+    },
+    "multicluster": {
+      "type": "object",
+      "title": "Multi-cluster configuration",
+      "description": "Configure the multi-cluster system",
+      "properties": {
+        "enabled": {
+          "type": "boolean",
+          "default": true,
+          "title": "Enable the multi-cluster system",
+          "description": "Choose whether to enable the multi-cluster system components and capabilities"
+        },
+        "primary": {
+          "type": "object",
+          "title": "Multi-cluster primary configuration",
+          "description": "Configure multi-cluster primary",
+          "properties": {
+            "create": {
+              "type": "boolean",
+              "default": false,
+              "title": "Setup cluster as a multi-cluster primary",
+              "description": "Choose whether to setup cluster as a multi-cluster primary"
+            },
+            "name": {
+              "type": "string",
+              "default": "",
+              "title": "Primary cluster name",
+              "description": "Choose the cluster name for multi-cluster primary"
+            },
+            "ingressURL": {
+              "type": "string",
+              "default": "",
+              "title": "Primary cluster dashboard URL",
+              "description": "Choose the dashboard URL for the multi-cluster primary; e.g. https://cluster-name.domain/k10"
+            }
+          }
+        }
+      }
+    },
+    "prometheus": {
+      "type": "object",
+      "title": "Internal Prometheus configuration",
+      "description": "Configure internal Prometheus",
+      "properties": {
+        "rbac": {
+          "type": "object",
+          "title": "Prometheus rbac",
+          "description": "Configure Prometheus rbac resources",
+          "properties": {
+            "create": {
+              "type": "boolean",
+              "default": false,
+              "title": "Enable Prometheus rbac. Warning - cluster wide permissions",
+              "description": "Choose whether to create Prometheus RBAC configuration. Warning: Enabling this action will allow Prometheus permission to scrape Pods in all K8s namespaces."
+            }
+          }
+        },
+        "server": {
+          "type": "object",
+          "title": "Prometheus Server",
+          "description": "Configure Prometheus Server",
+          "properties": {
+            "enabled": {
+              "type": "boolean",
+              "default": true,
+              "title": "Enable Prometheus server",
+              "description": "Create Prometheus server"
+            },
+            "securityContext": {
+              "type": "object",
+              "title": "Prometheus server securityContext",
+              "description": "Configure Prometheus server securityContext",
+              "properties": {
+                "runAsUser": {
+                  "type": "integer",
+                  "default": 65534,
+                  "title": "runAsUser ID",
+                  "description": "Set securityContext runAsUser ID"
+                },
+                "runAsNonRoot": {
+                  "type": "boolean",
+                  "default": true,
+                  "title": "Enable runAsNonRoot",
+                  "description": "Enable securityContext runAsNonRoot"
+                },
+                "runAsGroup": {
+                  "type": "integer",
+                  "default": 65534,
+                  "title": "runAsGroup ID",
+                  "description": "Set securityContext runAsGroup ID"
+                },
+                "fsGroup": {
+                  "type": "integer",
+                  "default": 65534,
+                  "title": "fsGroup ID",
+                  "description": "Set securityContext fsGroup ID"
+                }
+              }
+            },
+            "retention": {
+              "type": "string",
+              "default": "30d",
+              "title": "Prometheus retention",
+              "description": "Set retention period for Prometheus"
+            },
+            "persistentVolume": {
+              "type": "object",
+              "title": "Prometheus persistent volume",
+              "description": "Configure Prometheus persistent volume",
+              "properties": {
+                "storageClass": {
+                  "type": "string",
+                  "default": "",
+                  "title": "StorageClassName used to create Prometheus PVC",
+                  "description": "Setting this option overwrites global StorageClass value"
+                },
+                "size": {
+                  "type": "string",
+                  "title": "Volume Size",
+                  "description": "Size of embedded Prometheus server volume for storing Veeam Kasten metrics",
+                  "default": "8Gi"
+                }
+              }
+            },
+            "fullnameOverride": {
+              "type": "string",
+              "default": "prometheus-server",
+              "title": "Prometheus server deployment name",
+              "description": "Override default Prometheus server deployment name"
+            },
+            "baseURL": {
+              "type": "string",
+              "default": "/k10/prometheus/",
+              "title": "Prometheus external url path",
+              "description": "Prometheus external url path at which the server can be accessed"
+            },
+            "prefixURL": {
+              "type": "string",
+              "default": "/k10/prometheus",
+              "title": "Prometheus prefix slug",
+              "description": "Prometheus prefix slug at which the server can be accessed"
+            }
+          }
+        }
+      }
+    },
+    "jaeger": {
+      "type": "object",
+      "title": "Jaeger configuration",
+      "description": "Jaeger tracing settings",
+      "properties": {
+        "enabled": {
+          "type": "boolean",
+          "default": false,
+          "title": "Enable Jaeger tracing",
+          "description": "Set true to enable Jaeger tracing"
+        },
+        "agentDNS": {
+          "type": "string",
+          "default": "",
+          "title": "Jaeger agentDNS",
+          "description": "Set agentDNS for Jaeger tracing"
+        }
+      }
+    },
+    "service": {
+      "type": "object",
+      "title": "K10 K8s services config",
+      "properties": {
+        "externalPort": {
+          "type": "integer",
+          "default": 8000,
+          "title": "externalPort for K10 services",
+          "description": "Override default 8000 externalPort for K10 services"
+        },
+        "internalPort": {
+          "type": "integer",
+          "default": 8000,
+          "title": "internalPort for K10 services",
+          "description": "Override default 8000 internalPort for K10 services"
+        },
+        "aggregatedApiPort": {
+          "type": "integer",
+          "default": 10250,
+          "title": "aggregatedApiPort for aggapi service",
+          "description": "Override default 10250 port for aggapi service"
+        }
+      }
+    },
+    "secrets": {
+      "type": "object",
+      "title": "K10 secrets",
+      "description": "K10 secrets configuration",
+      "properties": {
+        "awsAccessKeyId": {
+          "type": "string",
+          "default": "",
+          "title": "AWS access key ID",
+          "description": "Set AWS access key ID required for AWS deployment"
+        },
+        "awsSecretAccessKey": {
+          "type": "string",
+          "default": "",
+          "title": "AWS secret access key",
+          "description": "Set AWS access key secret"
+        },
+        "awsIamRole": {
+          "type": "string",
+          "default": "",
+          "title": "AWS IAM Role",
+          "description": "ARN of the AWS IAM role assumed by K10 to perform any AWS operation"
+        },
+        "awsClientSecretName": {
+          "type": "string",
+          "default": "",
+          "title": "Secret with AWS credentials and/or IAM Role",
+          "description": "Specify a Secret directly instead of having to provide awsAccessKeyId, awsSecretAccessKey and awsIamRole"
+        },
+        "googleApiKey": {
+          "type": "string",
+          "default": "",
+          "title": "Google API Key",
+          "description": "Non-default base64 encoded GCP Service Account key"
+        },
+        "googleProjectId": {
+          "type": "string",
+          "default": "",
+          "title": "Google Project ID",
+          "description": "Set Google Project ID other than the one in the GCP Service Account"
+        },
+        "googleClientSecretName": {
+          "type": "string",
+          "default": "",
+          "title": "Secret with Google credentials",
+          "description": "Specify a Secret directly instead of having to provide googleApiKey and googleProjectId"
+        },
+        "tlsSecret": {
+          "type": "string",
+          "default": "",
+          "title": "K8s TLS secret name contains for k10 Gateway service",
+          "description": "Specify a Secret directly instead of having to provide both the cert and key. This reduces the security risk a bit by not caching the certs and keys in the bash history."
+        },
+        "dockerConfig": {
+          "type": "string",
+          "default": "",
+          "title": "Docker config",
+          "description": "base64 representation of your Docker credentials to pull docker images from a private registry"
+        },
+        "dockerConfigPath": {
+          "type": "string",
+          "default": "",
+          "title": "Docker config path",
+          "description": "Path to Docker config file to create secret from"
+        },
+        "azureTenantId": {
+          "type": "string",
+          "default": "",
+          "title": "Azure tenant ID",
+          "description": "Azure tenant ID required for Azure deployment"
+        },
+        "azureClientId": {
+          "type": "string",
+          "default": "",
+          "title": "Azure client ID",
+          "description": "Azure Service App ID"
+        },
+        "azureClientSecret": {
+          "type": "string",
+          "default": "",
+          "title": "Azure client Secret",
+          "description": "Azure Service APP secret"
+        },
+        "azureClientSecretName": {
+          "type": "string",
+          "default": "",
+          "title": "Secret with Azure credentials",
+          "description": "Specify a Secret directly instead of having to provide azureClientId, azureTenantId and azureClientSecret"
+        },
+        "azureResourceGroup": {
+          "type": "string",
+          "default": "",
+          "title": "Azure resource group",
+          "description": "Resource Group name that was created for the Kubernetes cluster"
+        },
+        "azureSubscriptionID": {
+          "type": "string",
+          "default": "",
+          "title": "Azure subscription ID",
+          "description": "Subscription ID in your Azure tenant"
+        },
+        "azureResourceMgrEndpoint": {
+          "type": "string",
+          "default": "",
+          "title": "Azure resource manager endpoint",
+          "description": "Resource management endpoint for the Azure Stack instance"
+        },
+        "azureADEndpoint": {
+          "type": "string",
+          "default": "",
+          "title": "Azure AD endpoint",
+          "description": "Azure Active Directory login endpoint"
+        },
+        "azureADResourceID": {
+          "type": "string",
+          "default": "",
+          "title": "Azure Active Directory resource ID",
+          "description": "Azure Active Directory resource ID to obtain AD tokens"
+        },
+        "microsoftEntraIDEndpoint": {
+          "type": "string",
+          "default": "",
+          "title": "Microsoft Entra ID endpoint",
+          "description": "Microsoft Entra ID login endpoint"
+        },
+        "microsoftEntraIDResourceID": {
+          "type": "string",
+          "default": "",
+          "title": "Microsoft Entra ID resource ID",
+          "description": "Microsoft Entra ID resource ID to obtain AD tokens"
+        },
+        "azureCloudEnvID": {
+          "type": "string",
+          "default": "",
+          "title": "Azure Cloud Environment ID",
+          "description": "Azure Cloud Environment ID"
+        },
+        "vsphereEndpoint": {
+          "type": "string",
+          "default": "",
+          "title": "vSphere endpoint",
+          "description": "vSphere endpoint for login"
+        },
+        "vsphereUsername": {
+          "type": "string",
+          "default": "",
+          "title": "",
+          "description": ""
+        },
+        "vspherePassword": {
+          "type": "string",
+          "default": "",
+          "title": "vSphere password",
+          "description": "vSphere password for login"
+        },
+        "vsphereClientSecretName": {
+          "type": "string",
+          "default": "",
+          "title": "Secret with vSphere credentials",
+          "description": "Specify a Secret directly instead of having to provide vsphereUsername, vspherePassword and vspherePassword"
+        }
+      }
+    },
+    "metering": {
+      "type": "object",
+      "title": "Metering service config",
+      "description": "Metering service settings",
+      "properties": {
+        "reportingKey": {
+          "type": "string",
+          "default": "",
+          "title": "Reporting key",
+          "description": "Base64 encoded reporting key"
+        },
+        "consumerId": {
+          "type": "string",
+          "default": "",
+          "title": "Consumer ID",
+          "description": "Consumer ID in the format project:<project_id>"
+        },
+        "awsRegion": {
+          "type": "string",
+          "default": "",
+          "title": "AWS Region",
+          "description": "Set AWS_REGION for metering service"
+        },
+        "awsMarketPlaceIamRole": {
+          "type": "string",
+          "default": "",
+          "title": "AWS Marketplace IAM Role",
+          "description": "Set AWS marketplace IAM Role"
+        },
+        "awsMarketplace": {
+          "type": "boolean",
+          "default": false,
+          "title": "AWS Marketplace",
+          "description": "Set AWS cloud metering license mode"
+        },
+        "awsManagedLicense": {
+          "type": "boolean",
+          "default": false,
+          "title": "AWS managed license",
+          "description": "Set AWS managed license mode"
+        },
+        "licenseConfigSecretName": {
+          "type": "string",
+          "default": "",
+          "title": "License config secret name",
+          "description": "AWS managed license config secret"
+        },
+        "serviceAccount": {
+          "type": "object",
+          "title": "Metering service serviceAccount",
+          "description": "Configuration for metering service serviceAccount",
+          "properties": {
+            "create": {
+              "type": "boolean",
+              "default": false,
+              "title": "Create metering service serviceAccount",
+              "description": "Create metering service serviceAccount"
+            },
+            "name": {
+              "type": "string",
+              "default": "",
+              "title": "Metering ServiceAccount name",
+              "description": "Set name for metering ServiceAccount"
+            }
+          }
+        },
+        "mode": {
+          "type": "string",
+          "default": "",
+          "title": "Control license reporting",
+          "description": "Set to `airgap` for private-network installs"
+        },
+        "redhatMarketplacePayg": {
+          "type": "boolean",
+          "default": false,
+          "title": "Red Hat cloud metering",
+          "description": "Set Red Hat cloud metering license mode"
+        },
+        "reportCollectionPeriod": {
+          "type": "integer",
+          "default": 1800,
+          "title": "Report collection period",
+          "description": "Metric report collection period (in seconds)"
+        },
+        "reportPushPeriod": {
+          "type": "integer",
+          "default": 3600,
+          "title": "Report push period",
+          "description": "Metric report push period (in seconds)"
+        },
+        "promoID": {
+          "type": "string",
+          "default": "",
+          "title": "K10 promotion ID",
+          "description": "K10 promotion ID from marketing campaigns"
+        }
+      }
+    },
+    "clusterName": {
+      "type": "string",
+      "default": "",
+      "title": "Cluster name",
+      "description": "Cluster name for better logs visibility"
+    },
+    "logLevel": {
+      "type": "string",
+      "default": "info",
+      "title": "Log level",
+      "description": "Change default log level"
+    },
+    "externalGateway": {
+      "type": "object",
+      "title": "External gateway",
+      "description": "Configure external gateway for K10 API services",
+      "properties": {
+        "create": {
+          "type": "boolean",
+          "default": false,
+          "title": "Enable external gateway",
+          "description": "Create external gateway service"
+        },
+        "annotations": {
+          "type": "object",
+          "title": "The annotations Schema",
+          "default": {},
+          "description": "Standard annotations for the services"
+        },
+        "fqdn": {
+          "type": "object",
+          "title": "Host and domain name for the K10 API services",
+          "description": "Configure host and domain name for the K10 API services",
+          "properties": {
+            "name": {
+              "type": "string",
+              "default": "",
+              "title": "Domain name for the K10 API services",
+              "description": "Domain name for the K10 API services"
+            },
+            "type": {
+              "type": "string",
+              "default": "",
+              "title": "Gateway type",
+              "description": "Supported gateway type: route53-mapper or external-dns",
+              "enum": ["", "route53-mapper", "external-dns"]
+            }
+          }
+        },
+        "awsSSLCertARN": {
+          "type": "string",
+          "default": "",
+          "title": "AWS SSL Cert ARN",
+          "description": "ARN for the AWS ACM SSL certificate used in the K10 API server"
+        }
+      }
+    },
+    "auth": {
+      "type": "object",
+      "title": "Authentication settings",
+      "description": "Configure K10 dashboard authentication",
+      "properties": {
+        "groupAllowList": {
+          "type": "array",
+          "default": [],
+          "items": {
+            "type": "string"
+          },
+          "title": "List of groups allowed to access K10 dashboard",
+          "description": "A list of groups whose members are allowed access to K10's dashboard",
+          "examples": [
+            [
+              "group1",
+              "group2"
+            ]
+          ]
+        },
+        "basicAuth": {
+          "type": "object",
+          "title": "Basic authentication for the K10 dashboard",
+          "description": "Configure basic authentication for the K10 dashboard",
+          "properties": {
+            "enabled": {
+              "title": "Enable basic authentication",
+              "description": "Enables basic authentication to the K10 dashboard that allows users to login with username and password",
+              "type": "boolean",
+              "default": false
+            },
+            "secretName": {
+              "type": "string",
+              "default": "",
+              "title": "Secret with basic auth creds",
+              "description": "Name of an existing Secret that contains a file generated with htpasswd"
+            },
+            "htpasswd": {
+              "type": "string",
+              "default": "",
+              "title": "Basic authentication creds",
+              "description": "A username and password pair separated by a colon character"
+            }
+          }
+        },
+        "tokenAuth": {
+          "type": "object",
+          "title": "Token based authentication",
+          "description": "Configuration for Token based authentication for the K10 dashboard",
+          "properties": {
+            "enabled": {
+              "type": "boolean",
+              "default": false,
+              "title": "Enable token based authentication",
+              "description": "Enable token based authentication to access K10 dashboard"
+            }
+          }
+        },
+        "oidcAuth": {
+          "type": "object",
+          "default": {},
+          "title": "Open ID Connect based authentication",
+          "description": "Configuration for Open ID Connect based authentication for the K10 dashboard",
+          "properties": {
+            "enabled": {
+              "type": "boolean",
+              "default": false,
+              "title": "Enable Open ID Connect based authentication",
+              "description": "Enable Open ID Connect based authentication to access K10 dashboard"
+            },
+            "providerURL": {
+              "type": "string",
+              "default": "",
+              "title": "OIDC Provider URL",
+              "description": "URL for the OIDC Provider"
+            },
+            "redirectURL": {
+              "type": "string",
+              "default": "",
+              "title": "K10 gateway service URL",
+              "description": "URL to the K10 gateway service"
+            },
+            "scopes": {
+              "type": "string",
+              "default": "",
+              "title": "OIDC scopes",
+              "description": "Space separated OIDC scopes required for userinfo",
+              "examples": [
+                "profile email"
+              ]
+            },
+            "prompt": {
+              "type": "string",
+              "title": "OIDC prompt type",
+              "description": "The type of prompt to be used during authentication",
+              "default": "select_account",
+              "enum": [
+                "none",
+                "consent",
+                "login",
+                "select_account"
+              ]
+            },
+            "clientID": {
+              "type": "string",
+              "default": "",
+              "title": "OIDC client ID",
+              "description": "Client ID given by the OIDC provider"
+            },
+            "clientSecret": {
+              "type": "string",
+              "default": "",
+              "title": "OIDC client secret",
+              "description": "Client secret given by the OIDC provider"
+            },
+            "clientSecretName": {
+              "type": "string",
+              "default": "",
+              "title": "Reference to secret",
+              "description": "Secret containing OIDC client ID and OIDC client secret"
+            },
+            "usernameClaim": {
+              "type": "string",
+              "default": "",
+              "title": "OIDC username claim",
+              "description": "The claim to be used as the username"
+            },
+            "usernamePrefix": {
+              "type": "string",
+              "default": "",
+              "title": "OIDC username prefix",
+              "description": "Prefix that has to be used with the username obtained from the username claim"
+            },
+            "groupClaim": {
+              "type": "string",
+              "default": "",
+              "title": "OIDC group claim",
+              "description": "Name of a custom OpenID Connect claim for specifying user groups"
+            },
+            "groupPrefix": {
+              "type": "string",
+              "default": "",
+              "title": "OIDC group prefix",
+              "description": "All groups will be prefixed with this value to prevent conflicts"
+            },
+            "logoutURL": {
+              "type": "string",
+              "default": "",
+              "title": "OIDC logout endpoint",
+              "description": "URL to your OIDC provider's logout endpoint"
+            },
+            "secretName": {
+              "type": "string",
+              "default": "",
+              "title": "OIDC config based existing secret",
+              "description": "Must include providerURL, redirectURL, scopes, clientID/secret and logoutURL"
+            },
+            "sessionDuration": {
+              "type": "string",
+              "default": "1h",
+              "title": "OIDC session duration",
+              "description": "Maximum OIDC session duration. Default value is 1 hour"
+            },
+            "refreshTokenSupport": {
+              "type": "boolean",
+              "default": false,
+              "title": "OIDC Refresh Token support",
+              "description": "Enable OIDC Refresh Token support. Disabled by default."
+            }
+          }
+        },
+        "openshift": {
+          "type": "object",
+          "title": "OpenShift OAuth server based authentication",
+          "description": "OpenShift OAuth server based authentication for K10 dashboard",
+          "properties": {
+            "enabled": {
+              "type": "boolean",
+              "default": false,
+              "title": "Enable OpenShift OAuth server based authentication",
+              "description": "Enable OpenShift OAuth server based authentication to access K10 dashboard"
+            },
+            "serviceAccount": {
+              "type": "string",
+              "default": "",
+              "title": "Service account that represents an OAuth client",
+              "description": "Name of the service account that represents an OAuth client"
+            },
+            "clientSecret": {
+              "type": "string",
+              "default": "",
+              "title": "Service account token",
+              "description": "The token corresponding to the service account"
+            },
+            "clientSecretName": {
+              "type": "string",
+              "default": "",
+              "title": "Service account token secret",
+              "description": "The secret that contains the token corresponding to the service account"
+            },
+            "dashboardURL": {
+              "type": "string",
+              "default": "",
+              "title": "K10 dashboard URL",
+              "description": "The URL used for accessing K10's dashboard"
+            },
+            "openshiftURL": {
+              "type": "string",
+              "default": "",
+              "title": "OpenShift URL",
+              "description": "The URL for accessing OpenShift's API server"
+            },
+            "insecureCA": {
+              "type": "boolean",
+              "default": false,
+              "title": "Disable SSL verification of connections to OpenShift",
+              "description": "Set true to turn off SSL verification of connections to OpenShift"
+            },
+            "useServiceAccountCA": {
+              "type": "boolean",
+              "default": false,
+              "title": "use the CA certificate corresponding to the Service Account",
+              "description": "Usually found at ``/var/run/secrets/kubernetes.io/serviceaccount/ca.crt``"
+            },
+            "secretName": {
+              "type": "string",
+              "default": "",
+              "title": "The Kubernetes Secret that contains OIDC settings",
+              "description": "Specify Kubernetes Secret that contains OIDC settings"
+            },
+            "usernameClaim": {
+              "type": "string",
+              "default": "email",
+              "title": "Username claim",
+              "description": "The claim to be used as the username"
+            },
+            "usernamePrefix": {
+              "type": "string",
+              "default": "",
+              "title": "Username prefix",
+              "description": "Prefix that has to be used with the username obtained from the username claim"
+            },
+            "groupnameClaim": {
+              "type": "string",
+              "default": "groups",
+              "title": "custom OpenID Connect claim name for specifying user groups",
+              "description": "Name of a custom OpenID Connect claim for specifying user groups"
+            },
+            "groupnamePrefix": {
+              "type": "string",
+              "default": "",
+              "title": "User group name prefix",
+              "description": "Prefix for user group name"
+            },
+            "caCertsAutoExtraction": {
+              "type": "boolean",
+              "default": true,
+              "title": "Enable the OCP CA certificates automatic extraction",
+              "description": "Enable the OCP CA certificates automatic extraction to the K10 namespace"
+            }
+          }
+        },
+        "ldap": {
+          "type": "object",
+          "title": "Active Directory/LDAP based authentication ",
+          "description": "Active Directory/LDAP based authentication for the K10 dashboard",
+          "properties": {
+            "enabled": {
+              "type": "boolean",
+              "default": false,
+              "title": "Enable Active Directory/LDAP based authentication",
+              "description": "Enable Active Directory/LDAP based authentication to access K10 dashboard"
+            },
+            "restartPod": {
+              "type": "boolean",
+              "default": false,
+              "title": "force a restart of the authentication service Pod",
+              "description": "force a restart of the authentication service Pod (useful when updating authentication config)"
+            },
+            "dashboardURL": {
+              "type": "string",
+              "default": "",
+              "title": "K10 dashboard URL",
+              "description": "The URL used for accessing K10's dashboard"
+            },
+            "host": {
+              "type": "string",
+              "default": "",
+              "title": "Host and port of the AD/LDAP server",
+              "description": "Host and optional port of the AD/LDAP server in the form `host:port`"
+            },
+            "insecureNoSSL": {
+              "type": "boolean",
+              "default": false,
+              "title": "Insecure AD/LDAP host",
+              "description": "Set if the AD/LDAP host is not using TLS"
+            },
+            "insecureSkipVerifySSL": {
+              "type": "boolean",
+              "default": false,
+              "title": "Skip SSL verification of connections to the AD/LDAP host",
+              "description": "Turn off SSL verification of connections to the AD/LDAP host"
+            },
+            "startTLS": {
+              "type": "boolean",
+              "default": false,
+              "title": "TLS protocol",
+              "description": "When set to true, ldap:// is used to connect to the server followed by creation of a TLS session. When set to false, ldaps:// is used."
+            },
+            "bindDN": {
+              "type": "string",
+              "default": "",
+              "title": "Username for connecting to the AD/LDAP host",
+              "description": "The Distinguished Name(username) used for connecting to the AD/LDAP host"
+            },
+            "bindPW": {
+              "type": "string",
+              "default": "",
+              "title": "The password for `bindDN`",
+              "description": "The password corresponding to the `bindDN` for connecting to the AD/LDAP host"
+            },
+            "bindPWSecretName": {
+              "type": "string",
+              "default": "",
+              "title": "Secret name containing the password",
+              "description": "Secret name containing the password corresponding to the `bindDN` for connecting to the AD/LDAP host"
+            },
+            "userSearch": {
+              "type": "object",
+              "title": "User search config",
+              "description": "AD/LDAP user search config",
+              "properties": {
+                "baseDN": {
+                  "type": "string",
+                  "default": "",
+                  "title": "The base username to start the AD/LDAP search from",
+                  "description": "The base Distinguished Name to start the AD/LDAP search from"
+                },
+                "filter": {
+                  "type": "string",
+                  "default": "",
+                  "title": "filter to apply when searching",
+                  "description": "Optional filter to apply when searching the directory"
+                },
+                "username": {
+                  "type": "string",
+                  "default": "",
+                  "title": "Username to search in the directory",
+                  "description": "Attribute used for comparing user entries when searching the directory"
+                },
+                "idAttr": {
+                  "type": "string",
+                  "default": "",
+                  "title": "Attribute in a user's entry that should map to the user ID field in a token",
+                  "description": "AD/LDAP attribute in a user's entry that should map to the user ID field in a token"
+                },
+                "emailAttr": {
+                  "type": "string",
+                  "default": "",
+                  "title": "Attribute in a user's entry that should map to the email field in a token",
+                  "description": "AD/LDAP attribute in a user's entry that should map to the email field in a token"
+                },
+                "nameAttr": {
+                  "type": "string",
+                  "default": "",
+                  "title": "Attribute in a user's entry that should map to the name field in a token",
+                  "description": "Attribute in a user's entry that should map to the name field in a token"
+                },
+                "preferredUsernameAttr": {
+                  "type": "string",
+                  "default": "",
+                  "title": "Attribute in a user's entry that should map to the preferred_username field in a token",
+                  "description": "AD/LDAP attribute in a user's entry that should map to the preferred_username field in a token"
+                }
+              }
+            },
+            "groupSearch": {
+              "type": "object",
+              "title": "AD/LDAP group search config",
+              "description": "AD/LDAP group search config",
+              "properties": {
+                "baseDN": {
+                  "type": "string",
+                  "default": "",
+                  "title": "The base Distinguished Name",
+                  "description": "The base Distinguished Name to start the AD/LDAP group search from"
+                },
+                "filter": {
+                  "type": "string",
+                  "default": "",
+                  "title": "Search filter",
+                  "description": "filter to apply when searching the directory for groups"
+                },
+                "userMatchers": {
+                  "type": "array",
+                  "items": {
+                    "type": "object",
+                    "properties": {
+                      "userAttr": {
+                        "type": "string",
+                        "default": "",
+                        "title": "Attribute in the user's entry",
+                        "description": "Attribute in the user's entry that must match the groupAttr when searching for groups"
+                      },
+                      "groupAttr": {
+                        "type": "string",
+                        "default": "",
+                        "title": "Attribute in the group's entry",
+                        "description": "Attribute in the group's entry that must match the userAttr when searching for groups"
+                      }
+                    }
+                  },
+                  "default": [],
+                  "title": "List of field pairs that are used to match a user to a group",
+                  "description": "List of field pairs that are used to match a user to a group"
+                },
+                "nameAttr": {
+                  "type": "string",
+                  "default": "",
+                  "title": "Attribute that represents a group's name in the directory",
+                  "description": "The AD/LDAP attribute that represents a group's name in the directory"
+                }
+              }
+            },
+            "secretName": {
+              "type": "string",
+              "default": "",
+              "title": "The Kubernetes Secret with OIDC settings",
+              "description": "The Kubernetes Secret that contains OIDC settings"
+            },
+            "usernameClaim": {
+              "type": "string",
+              "default": "email",
+              "title": "Username claim",
+              "description": "The claim to be used as the username"
+            },
+            "usernamePrefix": {
+              "type": "string",
+              "default": "",
+              "title": "Username prefix",
+              "description": "Prefix that has to be used with the username obtained from the username claim"
+            },
+            "groupnameClaim": {
+              "type": "string",
+              "default": "groups",
+              "title": "Name of a custom OpenID Connect claim for specifying user groups",
+              "description": "Name of a custom OpenID Connect claim for specifying user groups"
+            },
+            "groupnamePrefix": {
+              "type": "string",
+              "default": "",
+              "title": "Group name prefix",
+              "description": "Prefix for user group name"
+            }
+          }
+        },
+        "k10AdminUsers": {
+          "type": "array",
+          "items": {
+            "type": "string"
+          },
+          "default": [],
+          "title": "Admin users list",
+          "description": "A list of users who are granted admin level access to K10's dashboard"
+        },
+        "k10AdminGroups": {
+          "type": "array",
+          "items": {
+            "type": "string"
+          },
+          "default": [],
+          "title": "Admin groups list",
+          "description": "A list of groups whose members are granted admin level access to K10's dashboard"
+        }
+      }
+    },
+    "optionalColocatedServices": {
+      "type": "object",
+      "title": "Optional Colocated services config",
+      "description": "Settings to enable optional colocated services",
+      "properties": {
+        "vbrintegrationapi": {
+          "title": "VBRIntegratipnAPI service",
+          "description": "Settings for VBRIntegratipnAPI service",
+          "type": "object",
+          "properties": {
+            "enabled": {
+              "title": "Enable VBRIntegratipnAPI service",
+              "description": "Set true to enable VBRIntegratipnAPI service",
+              "type": "boolean",
+              "default": true
+            }
+          }
+        }
+      }
+    },
+    "cacertconfigmap": {
+      "type": "object",
+      "title": "CA Certificate ConfigMap",
+      "description": "ConfigMap containing a certificate for a trusted root certificate authority",
+      "properties": {
+        "name": {
+          "title": "Name of the configmap",
+          "description": "Name of the K8s ConfigMap containing a certificate for a trusted root certificate authority",
+          "type": "string",
+          "default": ""
+        }
+      }
+    },
+    "apiservices": {
+      "type": "object",
+      "title": "Skip APIService objects creation",
+      "describe": "Skip APIService objects creation if already exists",
+      "properties": {
+        "deployed": {
+          "type": "boolean",
+          "default": true,
+          "title": "Whether APIService object are deployed",
+          "description": "Set true if APIService objects exists. Setting false will recreate the objects"
+        }
+      }
+    },
+    "injectKanisterSidecar": {
+      "type": "object",
+      "deprecated": true,
+      "title": "Deprecated: Kanister sidecar injection for workload Pods",
+      "description": "Deprecated. Use 'injectGenericVolumeBackupSidecar' parameter instead",
+      "properties": {
+        "enabled": {
+          "type": "boolean",
+          "default": false,
+          "title": "Enable Kanister sidecar injection for workload Pods",
+          "description": "Set true to enable Kanister sidecar injection for workload Pods"
+        },
+        "namespaceSelector": {
+          "type": "object",
+          "title": "namespaceSelector config",
+          "description": "Configure namespaceSelector for namespace containing the workloads to inject Kansiter Sidecar",
+          "properties": {
+            "matchLabels": {
+              "type": "object",
+              "default": {},
+              "title": "namespaceSelector matchLabels",
+              "description": "Set of labels to select namespaces in which sidecar injection is enabled for workloads"
+            }
+          }
+        },
+        "objectSelector": {
+          "type": "object",
+          "title": "objectSelector config",
+          "description": "Configure objectSelector for the workloads to inject Kansiter Sidecar",
+          "properties": {
+            "matchLabels": {
+              "type": "object",
+              "default": {},
+              "title": "objectSelector matchLabels",
+              "description": "Set of labels to filter workload objects in which the sidecar is injected"
+            }
+          }
+        },
+        "webhookServer": {
+          "type": "object",
+          "title": "Sidecar injector webhook server",
+          "description": "Configure sidecar injector webhook server",
+          "properties": {
+            "port": {
+              "type": "integer",
+              "default": 8080,
+              "title": "Mutating webhook server port number",
+              "description": "Port number on which the mutating webhook server accepts request"
+            }
+          }
+        }
+      }
+    },
+    "injectGenericVolumeBackupSidecar": {
+      "type": "object",
+      "title": "Generic Volume Backup sidecar injection for workload Pods",
+      "description": "Configure Generic Volume Backup sidecar injection for workload Pods",
+      "properties": {
+        "enabled": {
+          "type": "boolean",
+          "default": false,
+          "title": "Enables injection of sidecar container required to perform Generic Volume Backup into workload Pods",
+          "description": "Enables injection of sidecar container required to perform Generic Volume Backup into workload Pods"
+        },
+        "namespaceSelector": {
+          "type": "object",
+          "title": "namespaceSelector config",
+          "description": "Configure namespaceSelector for namespace containing the workloads to inject Generic Volume Backup Sidecar",
+          "properties": {
+            "matchLabels": {
+              "type": "object",
+              "default": {},
+              "title": "namespaceSelector matchLabels",
+              "description": "Set of labels to select namespaces in which sidecar injection is enabled for workloads"
+            }
+          }
+        },
+        "objectSelector": {
+          "type": "object",
+          "title": "objectSelector config",
+          "description": "Configure objectSelector for the workloads to inject Generic Volume Backup Sidecar",
+          "properties": {
+            "matchLabels": {
+              "type": "object",
+              "default": {},
+              "title": "objectSelector matchLabels",
+              "description": "Set of labels to filter workload objects in which the sidecar is injected"
+            }
+          }
+        },
+        "webhookServer": {
+          "type": "object",
+          "title": "Sidecar injector webhook server",
+          "description": "Configure sidecar injector webhook server",
+          "properties": {
+            "port": {
+              "type": "integer",
+              "default": 8080,
+              "title": "Mutating webhook server port number",
+              "description": "Port number on which the mutating webhook server accepts request"
+            }
+          }
+        }
+      }
+    },
+    "kanisterPodCustomLabels": {
+      "type": "string",
+      "default": "",
+      "title": "Kanister Pod custom labels",
+      "description": "Custom labels for Pods managed by Kanister"
+    },
+    "kanisterPodCustomAnnotations": {
+      "type": "string",
+      "default": "",
+      "title": "Kanister Pod custom annotations",
+      "description": "Custom annotations added to Pods managed by Kanister"
+    },
+    "features": {
+      "type": "object",
+      "title": "Feature flags",
+      "description": "Feature flags to be set by K10",
+      "properties": {
+        "backgroundMaintenanceRun": {
+          "type": "boolean",
+          "default": true,
+          "title": "Background maintenance feature",
+          "description": "Enable background maintenance runs by the repositories service"
+        }
+      }
+    },
+    "kanisterPodMetricSidecar": {
+      "type": "object",
+      "deprecated": true,
+      "title": "Deprecated: Metric sidecar for ephemeral Pods",
+      "description": "Deprecated. Use 'workerPodMetricSidecar' parameter instead",
+      "properties": {
+        "enabled": {
+          "type": "boolean",
+          "default": false,
+          "title": "Enable sidecar container",
+          "description": "Enable sidecar container for gathering metrics from ephemeral Pods"
+        },
+        "metricLifetime": {
+          "type": "string",
+          "default": "2m",
+          "title": "The period we check if there are metrics which should be removed",
+          "description": "The period we check if there are metrics which should be removed"
+        },
+        "pushGatewayInterval": {
+          "type": "string",
+          "default": "30s",
+          "title": "Pushgateway metrics interval",
+          "description": "The interval of sending metrics into the Pushgateway"
+        },
+        "resources": {
+          "type": "object",
+          "title": "Kanister Pod metric sidecar resource config",
+          "description": "Configure resource requests and limits for kanister Pod metric sidecar",
+          "properties": {
+            "requests": {
+              "type": "object",
+              "title": "Kanister Pod metric sidecar resource requests",
+              "description": "Kanister Pod metric sidecar resource requests configuration",
+              "properties": {
+                "memory": {
+                  "type": "string",
+                  "default": "",
+                  "title": "Kanister Pod metric sidecar memory request",
+                  "description": "Kanister Pod metric sidecar memory request",
+                  "examples": [
+                    "1Gi"
+                  ]
+                },
+                "cpu": {
+                  "type": "string",
+                  "default": "",
+                  "title": "Kanister Pod metric sidecars cpu request",
+                  "description": "Kanister Pod metric sidecars cpu request",
+                  "examples": [
+                    "1"
+                  ]
+                }
+              }
+            },
+            "limits": {
+              "type": "object",
+              "title": "Kanister Pod metric sidecar resource limits",
+              "description": "Kanister Pod metric sidecar resource limits configuration",
+              "properties": {
+                "memory": {
+                  "type": "string",
+                  "default": "",
+                  "title": "Kanister Pod metric sidecars memory limit",
+                  "description": "Kanister Pod metric sidecars memory limit",
+                  "examples": [
+                    "1Gi"
+                  ]
+                },
+                "cpu": {
+                  "type": "string",
+                  "default": "",
+                  "title": "Kanister Pod metric sidecars cpu limit",
+                  "description": "Kanister Pod metric sidecars cpu limit",
+                  "examples": [
+                    "1"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "workerPodMetricSidecar": {
+      "type": "object",
+      "title": "Metric sidecar for ephemeral Pods",
+      "description": "Sidecar container for gathering metrics from ephemeral Pods",
+      "properties": {
+        "enabled": {
+          "type": "boolean",
+          "default": true,
+          "title": "Enables a sidecar container for temporary worker Pods used to push Pod performance metrics to Prometheus",
+          "description": "Enables a sidecar container for temporary worker Pods used to push Pod performance metrics to Prometheus"
+        },
+        "metricLifetime": {
+          "type": "string",
+          "default": "2m",
+          "title": "Specifies the period after which metrics for an individual worker Pod are removed from Prometheus ",
+          "description": "Specifies the period after which metrics for an individual worker Pod are removed from Prometheus "
+        },
+        "pushGatewayInterval": {
+          "type": "string",
+          "default": "30s",
+          "title": "Specifies the frequency for pushing metrics into Prometheus",
+          "description": "Specifies the frequency for pushing metrics into Prometheus"
+        },
+        "resources": {
+          "type": "object",
+          "title": "Specifies resource requests and limits for the temporary worker Pod metric sidecar",
+          "description": "Specifies resource requests and limits for the temporary worker Pod metric sidecar",
+          "properties": {
+            "requests": {
+              "type": "object",
+              "title": "Specifies resource requests for the temporary worker Pod metric sidecar",
+              "description": "Specifies resource requests for the temporary worker Pod metric sidecar",
+              "properties": {
+                "memory": {
+                  "type": "string",
+                  "default": "",
+                  "title": "Temporary worker Pod metric sidecar memory request",
+                  "description": "Temporary worker Pod metric sidecar memory request",
+                  "examples": [
+                    "1Gi"
+                  ]
+                },
+                "cpu": {
+                  "type": "string",
+                  "default": "",
+                  "title": "Temporary worker Pod metric sidecars cpu request",
+                  "description": "Temporary worker Pod metric sidecars cpu request",
+                  "examples": [
+                    "1"
+                  ]
+                }
+              }
+            },
+            "limits": {
+              "type": "object",
+              "title": "Specifies resource limits for the temporary worker Pod metric sidecar",
+              "description": "Specifies resource limits for the temporary worker Pod metric sidecar",
+              "properties": {
+                "memory": {
+                  "type": "string",
+                  "default": "",
+                  "title": "Temporary worker Pod metric sidecars memory limit",
+                  "description": "Temporary worker Pod metric sidecars memory limit",
+                  "examples": [
+                    "1Gi"
+                  ]
+                },
+                "cpu": {
+                  "type": "string",
+                  "default": "",
+                  "title": "Temporary worker Pod metric sidecars cpu limit",
+                  "description": "Temporary worker Pod metric sidecars cpu limit",
+                  "examples": [
+                    "1"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "genericStorageBackup": {
+      "type": "object",
+      "title": "Generic Storage backup activation config",
+      "properties": {
+        "token": {
+          "type": "string",
+          "title": "Generic volume snapshot activation token",
+          "description": "Token to enable generic volume snapshot",
+          "default": ""
+        }
+      }
+    },
+    "genericVolumeSnapshot": {
+      "type": "object",
+      "title": "Generic Volume Snapshot restore Pods config",
+      "description": "Specifies resource requests and limits for generic backup sidecar and all temporary Kasten worker Pods. Superseded by ActionPodSpec",
+      "properties": {
+        "resources": {
+          "type": "object",
+          "title": "Generic Volume Snapshot restore Pod resource config",
+          "description": "Specifies resource requests for generic backup sidecar and all temporary Kasten worker Pods. Superseded by ActionPodSpec",
+          "properties": {
+            "requests": {
+              "type": "object",
+              "title": "Generic Volume Snapshot resource requests",
+              "description": "Generic Volume Snapshot resource requests configuration",
+              "properties": {
+                "memory": {
+                  "type": "string",
+                  "default": "",
+                  "title": "Generic Volume Snapshot restore Pods memory request",
+                  "description": "Generic Volume Snapshot restore Pods memory request",
+                  "examples": [
+                    "1Gi"
+                  ]
+                },
+                "cpu": {
+                  "type": "string",
+                  "default": "",
+                  "title": "Generic Volume Snapshot restore Pods cpu request",
+                  "description": "Generic Volume Snapshot restore Pods cpu request",
+                  "examples": [
+                    "1"
+                  ]
+                }
+              }
+            },
+            "limits": {
+              "type": "object",
+              "title": "Generic Volume Snapshot resource limits",
+              "description": "Specifies resource limits for generic backup sidecar and all temporary Kasten worker Pods. Superseded by ActionPodSpec",
+              "properties": {
+                "memory": {
+                  "type": "string",
+                  "default": "",
+                  "title": "Generic Volume Snapshot restore Pods memory limit",
+                  "description": "Generic Volume Snapshot restore Pods memory limit",
+                  "examples": [
+                    "1Gi"
+                  ]
+                },
+                "cpu": {
+                  "type": "string",
+                  "default": "",
+                  "title": "Generic Volume Snapshot restore Pods cpu limit",
+                  "description": "Generic Volume Snapshot restore Pods cpu limit",
+                  "examples": [
+                    "1"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "garbagecollector": {
+      "type": "object",
+      "title": "garbage collection",
+      "description": "Configure garbage collection settings",
+      "properties": {
+        "daemonPeriod": {
+          "type": "integer",
+          "default": 21600,
+          "title": "Garbage collection period",
+          "description": "Set garbage collection period (in seconds)"
+        },
+        "keepMaxActions": {
+          "type": "integer",
+          "default": 1000,
+          "title": "Max actions to keep",
+          "description": "Sets maximum actions to keep"
+        },
+        "actions": {
+          "type": "object",
+          "title": "action collectors config",
+          "description": "Configure action garbage collectors",
+          "properties": {
+            "enabled": {
+              "type": "boolean",
+              "default": false,
+              "title": "Enable action collectors",
+              "description": "Set true to enable action collectors"
+            }
+          }
+        }
+      }
+    },
+    "resources": {
+      "type": "object",
+      "default": {},
+      "title": "K10 Pods resource config",
+      "description": "Resource management for K10 Pods"
+    },
+    "datastore": {
+      "type": "object",
+      "properties": {
+        "parallelUploads": {
+          "type": "integer",
+          "default": 8,
+          "title": "Parallelism for data store uploads",
+          "description": "Specifies how many files can be uploaded in parallel to the data store"
+        },
+        "parallelDownloads": {
+          "type": "integer",
+          "default": 8,
+          "title": "Parallelism for data store downloads",
+          "description": "Specifies how many files can be downloaded in parallel from the data store"
+        },
+        "parallelBlockUploads": {
+          "type": "integer",
+          "default": 8,
+          "title": "Parallelism for data store block mode uploads",
+          "description": "Specifies how many blocks can be uploaded in parallel to the data store"
+        },
+        "parallelBlockDownloads": {
+          "type": "integer",
+          "default": 8,
+          "title": "Parallelism for block mode data store downloads",
+          "description": "Specifies how many blocks can be downloaded in parallel from the data store"
+        },
+        "estimationType": {
+          "type": "string",
+          "default": "adaptive",
+          "title": "Estimation Method for Data Store Uploads",
+          "description": "Specifies the method of estimation to be used when uploading to the data store"
+        },
+        "adaptiveEstimationThreshold": {
+          "type": "integer",
+          "default": 300000,
+          "title": "Adaptive Estimation Threshold for Data Store Uploads",
+          "description": "Specifies the threshold for the adaptive estimation method when uploading to the data store"
+        }
+      }
+    },
+    "defaultPriorityClassName": {
+      "type": "string",
+      "default": "",
+      "title": "Default priorityClassName",
+      "description": "Set the default priorityClassName for all K10 Pods"
+    },
+    "priorityClassName": {
+      "type": "object",
+      "default": {},
+      "title": "K10 Pods priorityClassName config",
+      "description": "Set priorityClassName for specific K10 Pods"
+    },
+    "services": {
+      "type": "object",
+      "title": "K10 services config",
+      "description": "Settings for K10 services",
+      "properties": {
+        "executor": {
+          "type": "object",
+          "title": "executor service config",
+          "description": "Configuration for K10 executor service",
+          "properties": {
+            "hostNetwork": {
+              "type": "boolean",
+              "default": false,
+              "title": "Enable node network usage",
+              "description": "Whether the executor Pods may use the node network"
+            },
+            "workerCount": {
+              "type": "integer",
+              "default": -1,
+              "deprecated": true,
+              "title": "Deprecated: Executor workers count",
+              "description": "Deprecated. Use 'limiter.executorThreads' parameter instead"
+            },
+            "maxConcurrentRestoreCsiSnapshots": {
+              "type": "integer",
+              "default": -1,
+              "deprecated": true,
+              "title": "Deprecated: Concurrent restore CSI snapshots operations",
+              "description": "Deprecated. Use 'limiter.csiSnapshotRestoresPerAction' parameter instead"
+            },
+            "maxConcurrentRestoreGenericVolumeSnapshots": {
+              "type": "integer",
+              "default": -1,
+              "deprecated": true,
+              "title": "Deprecated: Concurrent restore generic volume snapshots operations",
+              "description": "Deprecated. Use 'limiter.volumeRestoresPerAction' parameter instead"
+            },
+            "maxConcurrentRestoreWorkloads": {
+              "type": "integer",
+              "default": -1,
+              "deprecated": true,
+              "title": "Deprecated: Concurrent restore workloads operations",
+              "description": "Deprecated. Use 'limiter.workloadRestoresPerAction' parameter instead"
+            }
+          }
+        },
+        "dashboardbff": {
+          "type": "object",
+          "title": "dashboardbff service config",
+          "properties": {
+            "hostNetwork": {
+              "type": "boolean",
+              "default": false,
+              "title": "Enable node network usage",
+              "description": "Whether the dashboardbff Pods may use the node network"
+            }
+          }
+        },
+        "securityContext": {
+          "type": "object",
+          "title": "securityContext for K10 service containers",
+          "description": "Custom securityContext for K10 service containers",
+          "properties": {
+            "runAsUser": {
+              "type": "integer",
+              "default": 1000,
+              "title": "runAsUser ID",
+              "description": "User ID K10 service containers run as"
+            },
+            "fsGroup": {
+              "type": "integer",
+              "default": 1000,
+              "title": "FSGroup ID",
+              "description": "FSGroup that owns K10 service container volumes"
+            },
+            "runAsNonRoot": {
+              "type": "boolean",
+              "default": true,
+              "title": "RunAsNonRoot",
+              "description": "Indicates that K10 service containers should run as non-root user."
+            },
+            "seccompProfile": {
+              "type": "object",
+              "title": "Seccomp Profile object",
+              "description": "Sets the Seccomp profile for K10 service containers",
+              "properties": {
+                "type": {
+                  "type": "string",
+                  "default": "RuntimeDefault",
+                  "title": "Seccomp profile type",
+                  "description": "Sets the Seccomp profile type for K10 service containers"
+                }
+              }
+            }
+          }
+        },
+        "aggregatedapis": {
+          "type": "object",
+          "title": "K10 aggregatedapis service config",
+          "properties": {
+            "hostNetwork": {
+              "type": "boolean",
+              "default": false,
+              "title": "Enable node network usage",
+              "description": "Whether the aggregatedapis Pods may use the node network"
+            }
+          }
+        }
+      }
+    },
+    "siem": {
+      "type": "object",
+      "title": "siem",
+      "description": "siem settings",
+      "properties": {
+        "logging": {
+          "type": "object",
+          "title": "logging",
+          "description": "siem logging settings",
+          "properties": {
+            "cluster": {
+              "type": "object",
+              "title": "cluster",
+              "description": "In-cluster agent log slurping settings",
+              "properties": {
+                "enabled": {
+                  "type": "boolean",
+                  "default": true,
+                  "title": "Enable in-cluster agent-based audit logging",
+                  "description": "Enabled in-cluster agent-based audit logging for K10 events"
+                }
+              }
+            },
+            "cloud": {
+              "type": "object",
+              "title": "cloud",
+              "description": "siem cloud logging settings",
+              "properties": {
+                "path": {
+                  "type": "string",
+                  "default": "k10audit/",
+                  "title": "Directory path in cloud object storage for saving logs",
+                  "description": "Directory path in cloud object storage for saving logs when writing K10 events"
+                },
+                "awsS3": {
+                  "type": "object",
+                  "title": "awsS3",
+                  "description": "AWS S3 log slurping settings",
+                  "properties": {
+                    "enabled": {
+                      "type": "boolean",
+                      "default": true,
+                      "title": "Enable AWS S3 audit logging",
+                      "description": "Enable AWS S3 audit logging for K10 events"
+                    }
+                  }
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "limiter": {
+      "type": "object",
+      "title": "Limiter",
+      "description": "Limits set on several operations",
+      "properties": {
+        "concurrentSnapConversions": {
+          "type": "integer",
+          "default": -1,
+          "deprecated": true,
+          "title": "Deprecated: Concurrent snapshot conversions",
+          "description": "Deprecated. Use 'limiter.snapshotExportsPerAction' parameter instead"
+        },
+        "snapshotExportsPerAction": {
+          "type": "integer",
+          "default": 3,
+          "title": "Per action limit of concurrent volume export operations",
+          "description": "Per action limit of concurrent volume export operations"
+        },
+        "genericVolumeSnapshots": {
+          "type": "integer",
+          "default": -1,
+          "deprecated": true,
+          "title": "Deprecated: Concurrent generic volume snapshot creation",
+          "description": "Deprecated. Use 'limiter.genericVolumeBackupsPerCluster' parameter instead."
+        },
+        "genericVolumeBackupsPerCluster": {
+          "type": "integer",
+          "default": 10,
+          "title": "Cluster-wide limit of concurrent Generic Volume Backup operations",
+          "description": "Cluster-wide limit of concurrent Generic Volume Backup operations"
+        },
+        "genericVolumeCopies": {
+          "type": "integer",
+          "default": -1,
+          "deprecated": true,
+          "title": "Deprecated: Concurrent generic volume snapshot copy",
+          "description": "Deprecated. Use 'limiter.snapshotExportsPerCluster' parameter instead"
+        },
+        "snapshotExportsPerCluster": {
+          "type": "integer",
+          "default": 10,
+          "title": "Cluster-wide limit of concurrent volume export operations",
+          "description": "Cluster-wide limit of concurrent volume export operations"
+        },
+        "genericVolumeRestores": {
+          "type": "integer",
+          "default": -1,
+          "deprecated": true,
+          "title": "Deprecated: Concurrent generic volume snapshot restore",
+          "description": "Deprecated. Use 'limiter.volumeRestoresPerCluster' parameter instead"
+        },
+        "volumeRestoresPerCluster": {
+          "type": "integer",
+          "default": 10,
+          "title": "Cluster-wide limit of concurrent volume restore operations",
+          "description": "Cluster-wide limit of concurrent volume restore operations from exported backups"
+        },
+        "csiSnapshots": {
+          "type": "integer",
+          "default": -1,
+          "deprecated": true,
+          "title": "Deprecated: Concurrent CSI snapshot create",
+          "description": "Deprecated. Use 'limiter.csiSnapshotsPerCluster' parameter instead"
+        },
+        "csiSnapshotsPerCluster": {
+          "type": "integer",
+          "default": 10,
+          "title": "Cluster-wide limit of concurrent CSI VolumeSnapshot creation requests",
+          "description": "Cluster-wide limit of concurrent CSI VolumeSnapshot creation requests"
+        },
+        "providerSnapshots": {
+          "type": "integer",
+          "default": -1,
+          "deprecated": true,
+          "title": "Deprecated: Concurrent cloud provider create",
+          "description": "Deprecated. Use 'limiter.directSnapshotsPerCluster' parameter instead"
+        },
+        "directSnapshotsPerCluster": {
+          "type": "integer",
+          "default": 10,
+          "title": "Cluster-wide limit of concurrent non-CSI snapshot creation requests",
+          "description": "Cluster-wide limit of concurrent non-CSI snapshot creation requests"
+        },
+        "imageCopies": {
+          "type": "integer",
+          "default": -1,
+          "deprecated": true,
+          "title": "Deprecated: Concurrent image copy",
+          "description": "Deprecated. Use 'limiter.imageCopiesPerCluster' parameter instead"
+        },
+        "imageCopiesPerCluster": {
+          "type": "integer",
+          "default": 10,
+          "title": "Cluster-wide limit of concurrent ImageStream container image operations",
+          "description": "Cluster-wide limit of concurrent ImageStream container image backup (i.e. copy from) and restore (i.e. copy to) operations"
+        },
+        "executorReplicas": {
+          "type": "integer",
+          "default": 3,
+          "title": "Number of executor service Pod replicas",
+          "description": "Specifies the number of executor-svc Pods used to process Kasten jobs"
+        },
+        "executorThreads": {
+          "type": "integer",
+          "default": 8,
+          "title": "Executor threads count",
+          "description": "Specifies the number of threads per executor-svc Pod used to process Kasten jobs"
+        },
+        "workloadRestoresPerAction": {
+          "type": "integer",
+          "default": 3,
+          "title": "Per action limit of concurrent manifest data restores, based on workload",
+          "description": "Per action limit of concurrent manifest data restores, based on workload (ex. Namespace, Deployment, StatefulSet, VirtualMachine)"
+        },
+        "csiSnapshotRestoresPerAction": {
+          "type": "integer",
+          "default": 3,
+          "title": "Per action limit of concurrent CSI volume provisioning requests",
+          "description": "Per action limit of concurrent CSI volume provisioning requests when restoring from VolumeSnapshots"
+        },
+        "volumeRestoresPerAction": {
+          "type": "integer",
+          "default": 3,
+          "title": "Per action limit of concurrent volume restore operations",
+          "description": "Per action limit of concurrent volume restore operations from an exported backup"
+        },
+        "workloadSnapshotsPerAction": {
+          "type": "integer",
+          "default": 5,
+          "title": "Per action limit of concurrent manifest data snapshots, based on workload",
+          "description": "Per action limit of concurrent manifest data snapshots, based on workload (ex. Namespace, Deployment, StatefulSet, VirtualMachine)"
+        }
+      }
+    },
+    "gateway": {
+      "type": "object",
+      "title": "Gateway config",
+      "description": "Configure Gateway service",
+      "properties": {
+        "service": {
+          "type": "object",
+          "title": "gateway service config",
+          "properties": {
+            "externalPort": {
+              "type": "integer",
+              "default": 80,
+              "title": "externalPort for the gateway service",
+              "description": "Override default 80 externalPort for the gateway service"
+            }
+          }
+        },
+        "resources": {
+          "type": "object",
+          "title": "Gateway Pod resource config",
+          "description": "Configure resource request and limits by Gateway Pod",
+          "properties": {
+            "requests": {
+              "type": "object",
+              "title": "Gateway resource requests",
+              "description": "Gateway resource requests configuration",
+              "properties": {
+                "memory": {
+                  "type": "string",
+                  "default": "300Mi",
+                  "title": "Gateway Pod memory request",
+                  "description": "Gateway Pod memory request",
+                  "examples": [
+                    "1Gi"
+                  ]
+                },
+                "cpu": {
+                  "type": "string",
+                  "default": "200m",
+                  "title": "Gateway Pod cpu request",
+                  "description": "Gateway Pod cpu request",
+                  "examples": [
+                    "1"
+                  ]
+                }
+              }
+            },
+            "limits": {
+              "type": "object",
+              "title": "Gateway resource limits",
+              "description": "Gateway resource limits configuration",
+              "properties": {
+                "memory": {
+                  "type": "string",
+                  "default": "1Gi",
+                  "title": "Gateway Pod memory limit",
+                  "description": "Gateway Pod memory limit",
+                  "examples": [
+                    "1Gi"
+                  ]
+                },
+                "cpu": {
+                  "type": "string",
+                  "default": "1000m",
+                  "title": "Gateway Pod cpu limit",
+                  "description": "Gateway Pod cpu limit",
+                  "examples": [
+                    "1"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "kanister": {
+      "type": "object",
+      "title": "Kanister config",
+      "description": "Configuration for Kanister service",
+      "properties": {
+        "backupTimeout": {
+          "type": "integer",
+          "default": -1,
+          "deprecated": true,
+          "title": "Deprecated: Timeout on Kanister backup operations",
+          "description": "Deprecated. Use 'timeout.blueprintBackup' parameter instead"
+        },
+        "restoreTimeout": {
+          "type": "integer",
+          "default": -1,
+          "deprecated": true,
+          "title": "Deprecated: Timeout for Kanister restore operations",
+          "description": "Deprecated. Use 'timeout.blueprintRestore' parameter instead"
+        },
+        "deleteTimeout": {
+          "type": "integer",
+          "default": -1,
+          "deprecated": true,
+          "title": "Deprecated: Timeout for Kanister delete operations",
+          "description": "Deprecated. Use 'timeout.blueprintDelete' parameter instead"
+        },
+        "hookTimeout": {
+          "type": "integer",
+          "default": -1,
+          "deprecated": true,
+          "title": "Deprecated: Timeout for Kanister pre-hook and post-hook operations",
+          "description": "Deprecated. Use 'timeout.blueprintHooks' parameter instead"
+        },
+        "checkRepoTimeout": {
+          "type": "integer",
+          "default": -1,
+          "deprecated": true,
+          "title": "Deprecated: Timeout for Kanister checkRepo operations",
+          "description": "Deprecated. Use 'timeout.checkRepoPodReady' parameter instead"
+        },
+        "statsTimeout": {
+          "type": "integer",
+          "default": -1,
+          "deprecated": true,
+          "title": "Deprecated: Timeout for Kanister stats operations",
+          "description": "Deprecated. Use 'timeout.statsPodReady' parameter instead"
+        },
+        "efsPostRestoreTimeout": {
+          "type": "integer",
+          "default": -1,
+          "deprecated": true,
+          "title": "Deprecated: Timeout for Kanister efsPostRestore operations",
+          "description": "Deprecated. Use 'timeout.efsRestorePodReady' parameter instead"
+        },
+        "podReadyWaitTimeout": {
+          "type": "integer",
+          "default": -1,
+          "deprecated": true,
+          "title": "Deprecated: Timeout for Kanister tooling Pods to be ready",
+          "description": "Deprecated. Use 'timeout.workerPodReady' parameter instead"
+        },
+        "managedDataServicesBlueprintsEnabled": {
+          "type": "boolean",
+          "default": true,
+          "title": "Enable built-in Kanister Blueprints for data services",
+          "description": "Whether to enable built-in Kanister Blueprints for data services such as Crunchy Data Postgres Operator and K8ssandra"
+        }
+      }
+    },
+    "timeout": {
+      "type": "object",
+      "title": "Timeouts config",
+      "description": "Configuration of timeouts",
+      "properties": {
+        "blueprintBackup": {
+          "type": "integer",
+          "default": 45,
+          "title": "Specifies the timeout (in minutes) for Blueprint backup actions",
+          "description": "Specifies the timeout (in minutes) for Blueprint backup actions"
+        },
+        "blueprintRestore": {
+          "type": "integer",
+          "default": 600,
+          "title": "Specifies the timeout (in minutes) for Blueprint restore actions",
+          "description": "Specifies the timeout (in minutes) for Blueprint restore actions"
+        },
+        "blueprintDelete": {
+          "type": "integer",
+          "default": 45,
+          "title": "Specifies the timeout (in minutes) for Blueprint delete actions",
+          "description": "Specifies the timeout (in minutes) for Blueprint delete actions"
+        },
+        "blueprintHooks": {
+          "type": "integer",
+          "default": 20,
+          "title": "Specifies the timeout (in minutes) for Blueprint backupPrehook and backupPosthook actions",
+          "description": "Specifies the timeout (in minutes) for Blueprint backupPrehook and backupPosthook actions"
+        },
+        "checkRepoPodReady": {
+          "type": "integer",
+          "default": 20,
+          "title": "Specifies the timeout (in minutes) for temporary worker Pods used to validate backup repository existence",
+          "description": "Specifies the timeout (in minutes) for temporary worker Pods used to validate backup repository existence"
+        },
+        "statsPodReady": {
+          "type": "integer",
+          "default": 20,
+          "title": "Specifies the timeout (in minutes) for temporary worker Pods used to collect repository statistics",
+          "description": "Specifies the timeout (in minutes) for temporary worker Pods used to collect repository statistics"
+        },
+        "efsRestorePodReady": {
+          "type": "integer",
+          "default": 45,
+          "title": "Specifies the timeout (in minutes) for temporary worker Pods used for shareable volume restore operations",
+          "description": "Specifies the timeout (in minutes) for temporary worker Pods used for shareable volume restore operations"
+        },
+        "workerPodReady": {
+          "type": "integer",
+          "default": 15,
+          "title": "Specifies the timeout (in minutes) for all other temporary worker Pods used during Veeam Kasten review comments fixedoperations",
+          "description": "Specifies the timeout (in minutes) for all other temporary worker Pods used during Veeam Kasten operations"
+        },
+        "jobWait": {
+          "type": "string",
+          "default": "",
+          "title": "Specifies the timeout (in minutes) for completing execution of any child job, after which the parent job will be canceled",
+          "description": "Specifies the timeout (in minutes) for completing execution of any child job, after which the parent job will be canceled. If no value is set, a default of 10 hours will be used"
+        }
+      }
+    },
+    "awsConfig": {
+      "type": "object",
+      "title": "AWS config",
+      "description": "AWS config",
+      "properties": {
+        "assumeRoleDuration": {
+          "type": "string",
+          "default": "",
+          "title": "Duration of a session token generated by AWS for an IAM role",
+          "description": "The minimum value is 15 minutes, and the maximum value is determined by the maximum session duration setting for that IAM role. For documentation on how to view and edit the maximum session duration for an IAM role, refer to https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use.html#id_roles_use_view-role-max-session. The value accepts a number followed by a single character, 'm' (for minutes) or 'h' (for hours). Examples include: 60m or 2h"
+        },
+        "efsBackupVaultName": {
+          "type": "string",
+          "default": "k10vault",
+          "title": "the AWS EFS backup vault name",
+          "description": "Set the AWS EFS backup vault name"
+        }
+      }
+    },
+    "azure": {
+      "type": "object",
+      "title": "Azure config",
+      "description": "Azure config",
+      "properties": {
+        "useDefaultMSI": {
+          "type": "boolean",
+          "default": false,
+          "title": "Use the default Managed Identity",
+          "description": "Set to true - profile does not need a secret, Default Managed Identity will be used"
+        },
+        "useFederatedIdentity": {
+          "type": "boolean",
+          "default": false,
+          "title": "Use the Federated Identity",
+          "description": "Set to true - injected Federated Identity will be used"
+        }
+      }
+    },
+    "google": {
+      "type": "object",
+      "title": "Google config",
+      "description": "Google auth config",
+      "properties": {
+        "workloadIdentityFederation": {
+          "type": "object",
+          "title": "Google Workload Identity Federation config",
+          "description": "config for Google Workload Identity Federation",
+          "properties": {
+            "enabled": {
+              "type": "boolean",
+              "default": false,
+              "title": "Enable Google Workload Identity Federation (GWIF) for K10",
+              "description": "Set to true - Google Workload Identity Federation is enabled for K10"
+            },
+            "idp": {
+              "type": "object",
+              "title": "Identity Provider config",
+              "description": "Identity Provider config",
+              "properties": {
+                "type": {
+                  "type": "string",
+                  "default": "",
+                  "title": "Type of the Identity Provider for GWIF",
+                  "description": "Set the type of IdP for GWIF"
+                },
+                "aud": {
+                  "type": "string",
+                  "default": "",
+                  "title": "The audience that ID token is intended for",
+                  "description": "Set the name of the audience that ID token is intended for"
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "grafana": {
+      "type": "object",
+      "title": "Grafana config",
+      "description": "Settings for Grafana service",
+      "properties": {
+        "external": {
+          "type": "object",
+          "title": "Configuration related to externally installed Grafana instance",
+          "description": "If Grafana instance that gets installed with K10 is disabled using grafana.enabled=false, this field can be used to configure externally installed Grafana instance.",
+          "properties": {
+            "url": {
+              "type": "string",
+              "default": "",
+              "title": "URL of externally installed Grafana instance",
+              "description": "If Grafana instance that gets installed with K10 is disabled using grafana.enabled=false, this field can be used to specify URL of externally installed Grafana instance."
+            }
+          }
+        }
+      }
+    },
+    "encryption": {
+      "type": "object",
+      "title": "Encryption config",
+      "description": "Encryption config",
+      "properties": {
+        "primaryKey": {
+          "type": "object",
+          "title": "primaryKey for encrypting of K10 primary key",
+          "description": "primaryKey is used for enabling encryption of K10 primary key",
+          "properties": {
+            "awsCmkKeyId": {
+              "type": "string",
+              "default": "",
+              "title": "The AWS CMK key ID for encrypting K10 Primary Key",
+              "description": "Ensures AWS CMK is used for encrypting K10 primary key"
+            },
+            "vaultTransitKeyName": {
+              "type": "string",
+              "default": "",
+              "title": "Vault transit Key Name",
+              "description": "Vault Transit key name for Vault integration"
+            },
+            "vaultTransitPath": {
+              "type": "string",
+              "default": "",
+              "title": "Vault transit path",
+              "description": "Vault transit path for Vault integration"
+            }
+          }
+        }
+      }
+    },
+    "vmWare": {
+      "type": "object",
+      "title": "VMWare integration config",
+      "properties": {
+        "taskTimeoutMin": {
+          "type": "integer",
+          "default": 60,
+          "title": "the timeout for VMWare operations",
+          "description": "the timeout for VMWare operations in minutes"
+        }
+      }
+    },
+    "vault": {
+      "type": "object",
+      "title": "Vault config",
+      "description": "Vault integration configuration",
+      "properties": {
+        "secretName": {
+          "type": "string",
+          "default": "",
+          "title": "Vault secret name",
+          "description": "Vault secret name"
+        },
+        "address": {
+          "type": "string",
+          "default": "http://vault.vault.svc:8200",
+          "title": "Vault address",
+          "description": "Specify Vault endpoint"
+        },
+        "role": {
+          "type": "string",
+          "default": "",
+          "title": "Vault Service Account Role",
+          "description": "Role that was bound to the service account name and namespace from cluster"
+        },
+        "serviceAccountTokenPath": {
+          "type": "string",
+          "default": "",
+          "title": "Token path for Vault Service Account Role",
+          "description": "Default: '/var/run/secrets/kubernetes.io/serviceaccount/token'"
+        }
+      }
+    },
+    "kubeVirtVMs": {
+      "type": "object",
+      "properties": {
+        "snapshot": {
+          "type": "object",
+          "properties": {
+            "unfreezeTimeout": {
+              "type": "string",
+              "title": "Unfreeze timeout for Virtual Machines",
+              "description": "Time within which K10 is expected to complete the Virtual Machine's backup and thaw the Virtual Machine.",
+              "default": "5m"
+            }
+          }
+        }
+      }
+    },
+    "excludedApps": {
+      "type": "array",
+      "items": {
+        "type": "string"
+      },
+      "default": [
+        "kube-system",
+        "kube-ingress",
+        "kube-node-lease",
+        "kube-public",
+        "kube-rook-ceph"
+      ],
+      "title": "List of applications to be excluded",
+      "description": "List of applications to be excluded from the dashboard & compliance considerations"
+    },
+    "logging": {
+      "type": "object",
+      "properties": {
+        "internal": {
+          "title": "Enable internal logging service",
+          "description": "Enable use of internal logging service",
+          "type": "boolean",
+          "default": true
+        },
+        "fluentbit_endpoint": {
+          "title": "Use external fluentbit endpoint",
+          "description": "Specify a fluentbit endpoint to collect logs, cannot be used with the internal logging service (logging.internal=true)",
+          "type": "string",
+          "default": ""
+        }
+      }
+    },
+    "maxJobWaitDuration": {
+      "type": "string",
+      "default": "",
+      "deprecated": true,
+      "title": "Deprecated: Maximum duration for jobs in minutes",
+      "description": "Deprecated. Use 'timeout.jobWait' parameter instead"
+    },
+    "forceRootInKanisterHooks": {
+      "type": "boolean",
+      "default": false,
+      "deprecated": true,
+      "title": "Deprecated: Run Kanister Hooks as root",
+      "description": "Deprecated. Use 'forceRootInBlueprintActions' parameter instead"
+    },
+    "forceRootInBlueprintActions": {
+      "type": "boolean",
+      "default": true,
+      "title": "Run Kanister Blueprints as root",
+      "description": "Forces any Pod created by a Blueprint to run as root user"
+    },
+    "ephemeralPVCOverhead": {
+      "type": "string",
+      "default": "0.1",
+      "title": "Storage overhead for ephemeral PVCs",
+      "description": "Set the percentage increase for the ephemeral Persistent Volume Claim's storage request, e.g. pvc size = (file raw size) * (1 + `ephemeralPVCOverhead`)"
+    },
+    "kastenDisasterRecovery": {
+      "type": "object",
+      "properties": {
+        "quickMode": {
+          "type": "object",
+          "properties": {
+            "enabled": {
+              "type": "boolean",
+              "default": false,
+              "description": "Enables K10 Quick Disaster Recovery feature, with ability to restore necessary K10 resources and exported restore points of applications.",
+              "title": "Enable K10 Quick Disaster Recovery."
+            }
+          }
+        }
+      }
+    },
+    "fips": {
+      "type": "object",
+      "properties": {
+        "enabled": {
+          "type": "boolean",
+          "default": false,
+          "description": "Enables K10 FIPS (Federal Information Processing Standard) mode of operation.",
+          "title": "Enable K10 FIPS mode of operation."
+        }
+      }
+    },
+    "workerPodCRDs": {
+      "type": "object",
+      "properties": {
+        "enabled": {
+          "type": "boolean",
+          "default": false,
+          "title": "Enable ActionPodSpec and ActionPodSpecBinding CRDs",
+          "description": "Enables the use of ActionPodSpec and ActionPodSpecBinding for granular resource configuration of temporary Pods associated with Kasten Actions"
+        },
+        "resourcesRequests": {
+          "type": "object",
+          "title": "Maximum resource requests",
+          "description": "Specifies the cluster-wide, maximum values for resource requests which may be used in any ActionPodSpec",
+          "properties": {
+            "maxMemory": {
+              "type": "string",
+              "default": "",
+              "title": "Maximum memory request",
+              "description": "Specifies the cluster-wide, maximum value for memory resource requests which may be used in any ActionPodSpec",
+              "examples": [
+                "1Gi"
+              ]
+            },
+            "maxCPU": {
+              "type": "string",
+              "default": "",
+              "title": "Maximum cpu request",
+              "description": "Specifies the cluster-wide, maximum value for CPU resource requests which may be used in any ActionPodSpec",
+              "examples": [
+                "1"
+              ]
+            }
+          }
+        },
+        "defaultActionPodSpec": {
+          "type": "string",
+          "default": "",
+          "title": "Default ActionPodSpec name",
+          "description": "The name of ActionPodSpec that will be used by default for worker Pod resources. if empty, the default APS is omitted"
+        }
+      }
+    }
+  }
+}
diff --git a/charts/kasten/k10/7.5.401/values.yaml b/charts/kasten/k10/7.5.401/values.yaml
new file mode 100644
index 0000000000..f2a3316968
--- /dev/null
+++ b/charts/kasten/k10/7.5.401/values.yaml
@@ -0,0 +1,600 @@
+#file: noinspection ComposeUnknownKeys,ComposeUnknownValues
+# Default values for k10.
+# This is a YAML-formatted file.
+# Declare variables to be passed into your templates.
+
+rbac:
+  create: true
+serviceAccount:
+  # Specifies whether a ServiceAccount should be created
+  create: true
+  # The name of the ServiceAccount to use.
+  # If not set and create is true, a name is derived using the release and chart names.
+  name: ""
+
+scc:
+  create: false
+  priority: 0
+
+networkPolicy:
+  create: true
+
+global:
+  # These are the default values for picking k10 images. They can be overridden
+  # to specify a particular registy and tag.
+  image:
+    registry: gcr.io/kasten-images
+    tag: ''
+    pullPolicy: Always
+  airgapped:
+    repository: ''
+  persistence:
+    mountPath: "/mnt/k10state"
+    enabled: true
+    ## If defined, storageClassName: <storageClass>
+    ## If set to "-", storageClassName: "", which disables dynamic provisioning
+    ## If undefined (the default) or set to null, no storageClassName spec is
+    ##   set, choosing the default provisioner.  (gp2 on AWS, standard on
+    ##   GKE, AWS & OpenStack)
+    ##
+    storageClass: ""
+    accessMode: ReadWriteOnce
+    size: 20Gi
+    metering:
+      size: 2Gi
+    catalog:
+      size: ""
+    jobs:
+      size: ""
+    logging:
+      size: ""
+  podLabels: {}
+  podAnnotations: {}
+  ## Set it to true while generating helm operator
+  rhMarketPlace: false
+  ## these values should not be provided us, these are to be used by
+  ## red hat marketplace
+  images:
+    aggregatedapis: ''
+    auth: ''
+    bloblifecyclemanager: ''
+    catalog: ''
+    configmap-reload: ''
+    controllermanager: ''
+    crypto: ''
+    dashboardbff: ''
+    datamover: ''
+    dex: ''
+    events: ''
+    executor: ''
+    frontend: ''
+    gateway: ''
+    init: ''
+    jobs: ''
+    kanister-tools: ''
+    kanister: ''
+    k10tools: ''
+    logging: ''
+    metering: ''
+    ocpconsoleplugin: ''
+    paygo_daemonset: ''
+    prometheus: ''
+    repositories: ''
+    state: ''
+    upgrade: ''
+    vbrintegrationapi: ''
+    garbagecollector: ''
+    metric-sidecar: ''
+  imagePullSecret: ''
+  prometheus:
+    external:
+      host: '' #FQDN of prometheus-service
+      port: ''
+      baseURL: ''
+  network:
+    enable_ipv6: false
+
+## OpenShift route configuration.
+route:
+  enabled: false
+  # Host name for the route
+  host: ""
+  # Default path for the route
+  path: ""
+
+  annotations: {}
+    # kubernetes.io/tls-acme: "true"
+    # haproxy.router.openshift.io/disable_cookies: "true"
+    # haproxy.router.openshift.io/balance: roundrobin
+
+  labels: {}
+    # key: value
+
+  # TLS configuration
+  tls:
+    enabled: false
+    # What to do in case of an insecure traffic edge termination
+    insecureEdgeTerminationPolicy: "Redirect"
+    # Where this TLS configuration should terminate
+    termination: "edge"
+
+dexImage:
+  registry: ghcr.io
+  repository: dexidp
+  image: dex
+
+kanisterToolsImage:
+  registry: ghcr.io
+  repository: kanisterio
+  image: kanister-tools
+  pullPolicy: Always
+
+ingress:
+  create: false
+  annotations: {}
+  name: ""
+  tls:
+    enabled: false
+    secretName: "" #TLS secret name
+  class: "" #Ingress controller type
+  host: "" #ingress object host name
+  urlPath: "" #url path for k10 gateway
+  pathType: "ImplementationSpecific"
+  defaultBackend:
+    service:
+      enabled: false
+      name: ""
+      port:
+        name: ""
+        number: 0
+    resource:
+      enabled: false
+      apiGroup: ""
+      kind: ""
+      name: ""
+
+eula:
+  accept: false #true value if EULA accepted
+
+license: "" #base64 encoded string provided by Kasten
+
+cluster:
+  domainName: ""
+
+multicluster:
+  enabled: true
+  primary:
+    create: false
+    name: ""
+    ingressURL: ""
+
+prometheus:
+  rbac:
+    create: false
+  server:
+    # UID and groupid are from prometheus helm chart
+    enabled: true
+    securityContext:
+      runAsUser: 65534
+      runAsNonRoot: true
+      runAsGroup: 65534
+      fsGroup: 65534
+    retention: 30d
+    persistentVolume:
+      storageClass: ""
+      size: 8Gi
+    fullnameOverride: prometheus-server
+    baseURL: /k10/prometheus/
+    prefixURL: /k10/prometheus
+
+jaeger:
+  enabled: false
+  agentDNS: ""
+
+service:
+  externalPort: 8000
+  internalPort: 8000
+  aggregatedApiPort: 10250
+
+secrets:
+  awsAccessKeyId: ''
+  awsSecretAccessKey: ''
+  awsIamRole: ''
+  awsClientSecretName: ''
+  googleApiKey: ''
+  googleProjectId: ''
+  googleClientSecretName: ''
+  dockerConfig: ''
+  dockerConfigPath: ''
+  azureTenantId: ''
+  azureClientId: ''
+  azureClientSecret: ''
+  azureClientSecretName: ''
+  azureResourceGroup: ''
+  azureSubscriptionID: ''
+  azureResourceMgrEndpoint: ''
+  azureADEndpoint: ''
+  azureADResourceID: ''
+  microsoftEntraIDEndpoint: ''
+  microsoftEntraIDResourceID: ''
+  azureCloudEnvID: ''
+  tlsSecret: ''
+  vsphereEndpoint: ''
+  vsphereUsername: ''
+  vspherePassword: ''
+  vsphereClientSecretName: ''
+
+metering:
+  reportingKey: "" #[base64-encoded key]
+  consumerId: "" #project:<project_id>
+  awsRegion: ''
+  awsMarketPlaceIamRole: ''
+  awsMarketplace: false # AWS cloud metering license mode
+  awsManagedLicense: false # AWS managed license mode
+  licenseConfigSecretName: '' # AWS managed license config secret for non-eks clusters
+  serviceAccount:
+    create: false
+    name: ""
+  mode: '' # controls metric and license reporting (set to `airgap` for private-network installs)
+  redhatMarketplacePayg: false # Redhat cloud metering license mode
+  reportCollectionPeriod: 1800 # metric report collection period in seconds
+  reportPushPeriod: 3600 # metric report push period in seconds
+  promoID: '' # sets the K10 promotion ID
+
+clusterName: ''
+
+logLevel: info
+
+externalGateway:
+  create: false
+  # Any standard service annotations
+  annotations: {}
+  # Host and domain name for the K10 API server
+  fqdn:
+    name: ""
+    #Supported types route53-mapper, external-dns
+    type: ""
+  # ARN for the AWS ACM SSL certificate used in the K10 API server (load balancer)
+  awsSSLCertARN: ''
+
+auth:
+  groupAllowList: []
+#  - "group1"
+#  - "group2"
+  basicAuth:
+    enabled: false
+    secretName: "" #htpasswd based existing secret
+    htpasswd: "" #htpasswd string, which will be used for basic auth
+  tokenAuth:
+    enabled: false
+  oidcAuth:
+    enabled: false
+    providerURL: "" #URL to your OIDC provider
+    redirectURL: "" #URL to the K10 gateway service
+    scopes: "" #Space separated OIDC scopes required for userinfo. Example: "profile email"
+    prompt: "select_account" #The prompt type to be requested with the OIDC provider. Default is select_account.
+    clientID: "" #ClientID given by the OIDC provider for K10
+    clientSecret: "" #ClientSecret given by the OIDC provider for K10
+    clientSecretName: "" #The Kubernetes Secret that contains ClientID and ClientSecret given by the OIDC provider for K10
+    usernameClaim: "" #Claim to be used as the username
+    usernamePrefix: "" #Prefix that has to be used with the username obtained from the username claim
+    groupClaim: "" #Name of a custom OpenID Connect claim for specifying user groups
+    groupPrefix: "" #All groups will be prefixed with this value to prevent conflicts.
+    logoutURL: "" #URL to your OIDC provider's logout endpoint
+    #OIDC config based existing secret.
+    #Must include providerURL, redirectURL, scopes, clientID/secret and logoutURL.
+    secretName: ""
+    sessionDuration: "1h" #Maximum OIDC session duration. Default value is 1 hour
+    refreshTokenSupport: false #Enable Refresh Token support. Disabled by default
+  openshift:
+    enabled: false
+    serviceAccount: "" #service account used as the OAuth client
+    clientSecret: "" #The token from the service account
+    clientSecretName: "" #The secret with the token from the service account
+    dashboardURL: "" #The URL for accessing K10's dashboard
+    openshiftURL: "" #The URL of the Openshift API server
+    insecureCA: false
+    useServiceAccountCA: false
+    secretName: "" # The Kubernetes Secret that contains OIDC settings
+    usernameClaim: "email"
+    usernamePrefix: ""
+    groupnameClaim: "groups"
+    groupnamePrefix: ""
+    caCertsAutoExtraction: true # Configures if K10 should automatically extract CA certificates from the OCP cluster.
+  ldap:
+    enabled: false
+    restartPod: false # Enable this value to force a restart of the authentication service pod
+    dashboardURL: "" #The URL for accessing K10's dashboard
+    host: ""
+    insecureNoSSL: false
+    insecureSkipVerifySSL: false
+    startTLS: false
+    bindDN: ""
+    bindPW: ""
+    bindPWSecretName: ""
+    userSearch:
+      baseDN: ""
+      filter: ""
+      username: ""
+      idAttr: ""
+      emailAttr: ""
+      nameAttr: ""
+      preferredUsernameAttr: ""
+    groupSearch:
+      baseDN: ""
+      filter: ""
+      userMatchers: []
+#      - userAttr:
+#        groupAttr:
+      nameAttr: ""
+    secretName: "" # The Kubernetes Secret that contains OIDC settings
+    usernameClaim: "email"
+    usernamePrefix: ""
+    groupnameClaim: "groups"
+    groupnamePrefix: ""
+  k10AdminUsers: []
+  k10AdminGroups: []
+
+optionalColocatedServices:
+  vbrintegrationapi:
+    enabled: true
+
+cacertconfigmap:
+  name: "" #Name of the configmap
+
+apiservices:
+  deployed: true # If false APIService objects will not be deployed
+
+# Deprecated. Use 'injectGenericVolumeBackupSidecar' parameter instead.
+injectKanisterSidecar:
+  enabled: false
+  namespaceSelector:
+    matchLabels: {}
+  # Set objectSelector to filter workloads
+  objectSelector:
+    matchLabels: {}
+  webhookServer:
+    port: 8080  # should not conflict with config server port (8000)
+
+injectGenericVolumeBackupSidecar:
+  enabled: false
+  namespaceSelector:
+    matchLabels: {}
+  # Set objectSelector to filter workloads
+  objectSelector:
+    matchLabels: {}
+  webhookServer:
+    port: 8080  # should not conflict with config server port (8000)
+
+genericStorageBackup:
+  token: ""
+
+kanisterPodCustomLabels : ""
+
+kanisterPodCustomAnnotations : ""
+
+features:
+  backgroundMaintenanceRun: true # Key must be deleted to deactivate. Setting to false will not work.
+
+# Deprecated. Use 'workerPodMetricSidecar' parameter instead.
+kanisterPodMetricSidecar:
+  enabled: false
+  metricLifetime: "2m"
+  pushGatewayInterval: "30s"
+  resources:
+    requests:
+      memory: ""
+      cpu: ""
+    limits:
+      memory: ""
+      cpu: ""
+
+workerPodMetricSidecar:
+  enabled: true
+  metricLifetime: "2m"
+  pushGatewayInterval: "30s"
+  resources:
+    requests:
+      memory: ""
+      cpu: ""
+    limits:
+      memory: ""
+      cpu: ""
+
+genericVolumeSnapshot:
+  resources:
+    requests:
+      memory: ""
+      cpu: ""
+    limits:
+      memory: ""
+      cpu: ""
+
+garbagecollector:
+  daemonPeriod: 21600
+  keepMaxActions: 1000
+  actions:
+    enabled: false
+
+resources: {}
+
+defaultPriorityClassName: ""
+priorityClassName: {}
+
+services:
+  executor:
+    hostNetwork: false
+    # Deprecated. Use 'limiter.executorThreads' parameter instead.
+    workerCount: -1
+    # Deprecated. Use 'limiter.csiSnapshotRestoresPerAction' parameter instead.
+    maxConcurrentRestoreCsiSnapshots: -1
+    # Deprecated. Use 'limiter.volumeRestoresPerAction' parameter instead.
+    maxConcurrentRestoreGenericVolumeSnapshots: -1
+    # Deprecated. Use 'limiter.workloadRestoresPerAction' parameter instead.
+    maxConcurrentRestoreWorkloads: -1
+  dashboardbff:
+    hostNetwork: false
+  securityContext:
+    runAsUser: 1000 # Will override any USER instruction that a container image set for running the entrypoint and command.
+    fsGroup: 1000
+    runAsNonRoot: true
+    seccompProfile:
+      type: RuntimeDefault
+  aggregatedapis:
+    hostNetwork: false
+
+siem:
+  logging:
+    cluster:
+      enabled: true
+    cloud:
+      path: k10audit/
+      awsS3:
+        enabled: true
+
+limiter:
+  # Deprecated. Use 'limiter.snapshotExportsPerAction' parameter instead.
+  concurrentSnapConversions: -1
+  snapshotExportsPerAction: 3
+  # Deprecated. Use 'limiter.genericVolumeBackupsPerCluster' parameter instead.
+  genericVolumeSnapshots: -1
+  genericVolumeBackupsPerCluster: 10
+  # Deprecated. Use 'limiter.snapshotExportsPerCluster' parameter instead.
+  genericVolumeCopies: -1
+  snapshotExportsPerCluster: 10
+  # Deprecated. Use 'limiter.volumeRestoresPerCluster' parameter instead.
+  genericVolumeRestores: -1
+  volumeRestoresPerCluster: 10
+  # Deprecated. Use 'limiter.csiSnapshotsPerCluster' parameter instead.
+  csiSnapshots: -1
+  csiSnapshotsPerCluster: 10
+  # Deprecated. Use 'limiter.directSnapshotsPerCluster' parameter instead.
+  providerSnapshots: -1
+  directSnapshotsPerCluster: 10
+  # Deprecated. Use 'limiter.imageCopiesPerCluster' parameter instead.
+  imageCopies: -1
+  imageCopiesPerCluster: 10
+  executorReplicas: 3
+  executorThreads: 8
+  workloadRestoresPerAction: 3
+  csiSnapshotRestoresPerAction: 3
+  volumeRestoresPerAction: 3
+  workloadSnapshotsPerAction: 5
+
+gateway:
+  service:
+    externalPort: 80
+  resources:
+    requests:
+      memory: 300Mi
+      cpu: 200m
+    limits:
+      memory: 1Gi
+      cpu: 1000m
+
+kanister:
+  # Deprecated. Use 'timeout.blueprintBackup' parameter instead.
+  backupTimeout: -1
+  # Deprecated. Use 'timeout.blueprintRestore' parameter instead.
+  restoreTimeout: -1
+  # Deprecated. Use 'timeout.blueprintDelete' parameter instead.
+  deleteTimeout: -1
+  # Deprecated. Use 'timeout.blueprintHooks' parameter instead.
+  hookTimeout: -1
+  # Deprecated. Use 'timeout.checkRepoPodReady' parameter instead.
+  checkRepoTimeout: -1
+  # Deprecated. Use 'timeout.statsPodReady' parameter instead.
+  statsTimeout: -1
+  # Deprecated. Use 'timeout.efsRestorePodReady' parameter instead.
+  efsPostRestoreTimeout: -1
+  # Deprecated. Use 'timeout.workerPodReady' parameter instead.
+  podReadyWaitTimeout: -1
+  managedDataServicesBlueprintsEnabled: true
+
+timeout:
+  blueprintBackup: 45
+  blueprintRestore: 600
+  blueprintDelete: 45
+  blueprintHooks: 20
+  checkRepoPodReady: 20
+  statsPodReady: 20
+  efsRestorePodReady: 45
+  workerPodReady: 15
+  jobWait: ""
+
+awsConfig:
+  assumeRoleDuration: ""
+  efsBackupVaultName: "k10vault"
+
+excludedApps: ["kube-system", "kube-ingress", "kube-node-lease", "kube-public", "kube-rook-ceph"]
+
+grafana:
+  external:
+    url: "" # can be used to configure the URL of externally installed Grafana instance. If it's provided, grafana.enabled must be false.
+
+encryption:
+  primaryKey: # primaryKey is used for enabling encryption of K10 primary key
+    awsCmkKeyId: '' # Ensures AWS CMK is used for encrypting K10 primary key
+    vaultTransitKeyName: ''
+    vaultTransitPath: ''
+
+vmWare:
+  taskTimeoutMin: 60
+
+azure:
+  useDefaultMSI: false
+  useFederatedIdentity: false
+
+google:
+  workloadIdentityFederation:
+    enabled: false
+    idp:
+      type: ""
+      aud: ""
+
+vault:
+  role: ""                                             # Role that was bound to the service account name and namespace from cluster
+  serviceAccountTokenPath: ""                          # This will default to /var/run/secrets/kubernetes.io/serviceaccount/token within the code if left blank
+  address: "http://vault.vault.svc:8200"               # Address for dev mode in cluster vault server in vault namespace
+  secretName: ""                                       # Ensures backward compatibility for now. We can remove once we tell all customers this is deprecated.
+  # This is how the token can be passed into default if K8S auth mode fails for whatever reason.
+
+kubeVirtVMs:
+  snapshot:
+    unfreezeTimeout: "5m"
+
+logging:
+  internal: true
+  # Used to set an external fluentbit endpoint. 'logging.internal' must be set to false.
+  fluentbit_endpoint: ""
+
+# Deprecated. Use 'timeout.jobWait' parameter instead.
+maxJobWaitDuration: ""
+
+# Deprecated. Use 'forceRootInBlueprintActions' parameter instead.
+forceRootInKanisterHooks: false
+forceRootInBlueprintActions: true
+
+ephemeralPVCOverhead: "0.1"
+
+datastore:
+  parallelUploads: 8
+  parallelDownloads: 8
+  parallelBlockUploads: 8
+  parallelBlockDownloads: 8
+  estimationType: adaptive
+  adaptiveEstimationThreshold: 300000
+
+kastenDisasterRecovery:
+  quickMode:
+    enabled: false
+
+fips:
+  enabled: false
+
+workerPodCRDs:
+  enabled: false
+  resourcesRequests:
+    maxCPU: ""
+    maxMemory: ""
+  defaultActionPodSpec: ""
diff --git a/index.yaml b/index.yaml
index 5d6d06a59b..df9fe239b3 100644
--- a/index.yaml
+++ b/index.yaml
@@ -370,7 +370,7 @@ entries:
     version: 0.9.0
   artifactory-ha:
   - annotations:
-      artifactoryServiceVersion: 7.104.17
+      artifactoryServiceVersion: 7.104.18
       catalog.cattle.io/certified: partner
       catalog.cattle.io/display-name: JFrog Artifactory HA
       catalog.cattle.io/featured: "2"
@@ -379,6 +379,42 @@ entries:
       metadataVersion: 7.118.2
       observabilityVersion: 1.31.11
     apiVersion: v2
+    appVersion: 7.104.10
+    created: "2025-02-26T00:02:04.136871562Z"
+    dependencies:
+    - condition: postgresql.enabled
+      name: postgresql
+      repository: https://charts.jfrog.io/
+      version: 10.3.18
+    description: Universal Repository Manager supporting all major packaging formats,
+      build tools and CI servers.
+    digest: 5b86854bb004a07e5d3ca0ec7dabc2b8284b7857e05aed79869c6caa36b6d265
+    home: https://www.jfrog.com/artifactory/
+    icon: file://assets/icons/artifactory-ha.png
+    keywords:
+    - artifactory
+    - jfrog
+    - devops
+    kubeVersion: '>= 1.19.0-0'
+    maintainers:
+    - email: installers@jfrog.com
+      name: Chart Maintainers at JFrog
+    name: artifactory-ha
+    sources:
+    - https://github.com/jfrog/charts
+    type: application
+    urls:
+    - assets/jfrog/artifactory-ha-107.104.10.tgz
+    version: 107.104.10
+  - annotations:
+      artifactoryServiceVersion: 7.104.17
+      catalog.cattle.io/certified: partner
+      catalog.cattle.io/display-name: JFrog Artifactory HA
+      catalog.cattle.io/kube-version: '>= 1.19.0-0'
+      catalog.cattle.io/release-name: artifactory-ha
+      metadataVersion: 7.118.2
+      observabilityVersion: 1.31.11
+    apiVersion: v2
     appVersion: 7.104.9
     created: "2025-02-22T00:01:59.700509257Z"
     dependencies:
@@ -388,7 +424,7 @@ entries:
       version: 10.3.18
     description: Universal Repository Manager supporting all major packaging formats,
       build tools and CI servers.
-    digest: f02585062c47f1d7822896ce2ed42cca7850bff9e26c558336c876f10c8ddd3a
+    digest: d31946e40835701210341c43a214f4de826eb64d457d06361dfe80e2ca05f1ef
     home: https://www.jfrog.com/artifactory/
     icon: file://assets/icons/artifactory-ha.png
     keywords:
@@ -2271,6 +2307,40 @@ entries:
     - assets/jfrog/artifactory-ha-107.55.14.tgz
     version: 107.55.14
   artifactory-jcr:
+  - annotations:
+      catalog.cattle.io/certified: partner
+      catalog.cattle.io/display-name: JFrog Container Registry
+      catalog.cattle.io/kube-version: '>= 1.19.0-0'
+      catalog.cattle.io/release-name: artifactory-jcr
+    apiVersion: v2
+    appVersion: 7.104.10
+    created: "2025-02-26T00:02:04.602977176Z"
+    dependencies:
+    - name: artifactory
+      repository: file://charts/artifactory
+      version: 107.104.10
+    description: JFrog Container Registry
+    digest: 91cb8a1a342c50d9c76be1ec0f38dae5ca9f2f85c47c8a456d04e7a2ec22e334
+    home: https://jfrog.com/container-registry/
+    icon: file://assets/icons/artifactory-jcr.png
+    keywords:
+    - artifactory
+    - jfrog
+    - container
+    - registry
+    - devops
+    - jfrog-container-registry
+    kubeVersion: '>= 1.19.0-0'
+    maintainers:
+    - email: helm@jfrog.com
+      name: Chart Maintainers at JFrog
+    name: artifactory-jcr
+    sources:
+    - https://github.com/jfrog/charts
+    type: application
+    urls:
+    - assets/jfrog/artifactory-jcr-107.104.10.tgz
+    version: 107.104.10
   - annotations:
       catalog.cattle.io/certified: partner
       catalog.cattle.io/display-name: JFrog Container Registry
@@ -5342,6 +5412,38 @@ entries:
     - assets/cerbos/cerbos-0.37.0.tgz
     version: 0.37.0
   cf-runtime:
+  - annotations:
+      artifacthub.io/changes: |
+        - kind: security
+          description: "updated fs-ops with security fixes"
+      artifacthub.io/containsSecurityUpdates: "true"
+      catalog.cattle.io/certified: partner
+      catalog.cattle.io/display-name: Codefresh
+      catalog.cattle.io/kube-version: '>=1.18-0'
+      catalog.cattle.io/release-name: cf-runtime
+    apiVersion: v2
+    created: "2025-02-26T00:02:03.144426893Z"
+    dependencies:
+    - name: cf-common
+      repository: oci://quay.io/codefresh/charts
+      version: 0.21.0
+    description: A Helm chart for Codefresh Runner
+    digest: 15dd3b9ac4677391b52f3f0802124df97415853fec33efa15458fd7a7bb67a5c
+    home: https://codefresh.io/
+    icon: file://assets/icons/cf-runtime.png
+    keywords:
+    - codefresh
+    - runner
+    kubeVersion: '>=1.18-0'
+    maintainers:
+    - name: codefresh
+      url: https://codefresh-io.github.io/
+    name: cf-runtime
+    sources:
+    - https://github.com/codefresh-io/venona
+    urls:
+    - assets/codefresh/cf-runtime-7.5.5.tgz
+    version: 7.5.5
   - annotations:
       artifacthub.io/changes: |
         - kind: security
@@ -19270,6 +19372,49 @@ entries:
     - assets/hpe/hpe-csi-info-metrics-1.0.2.tgz
     version: 1.0.2
   instana-agent:
+  - annotations:
+      artifacthub.io/links: |
+        - name: Instana website
+          url: https://www.ibm.com/products/instana
+        - name: Instana Helm charts
+          url: https://github.com/instana/helm-charts
+      catalog.cattle.io/certified: partner
+      catalog.cattle.io/display-name: Instana Agent
+      catalog.cattle.io/kube-version: '>=1.21-0'
+      catalog.cattle.io/release-name: instana-agent
+    apiVersion: v2
+    appVersion: 1.290.0
+    created: "2025-02-26T00:02:04.101653275Z"
+    description: Instana Agent for Kubernetes
+    digest: f594bdca1decae30a169f5a298ee592867cd3295e0280e65c6f2caa1f45aec46
+    home: https://www.instana.com/
+    icon: file://assets/icons/instana-agent.png
+    kubeVersion: '>=1.21-0'
+    maintainers:
+    - email: felix.marx@ibm.com
+      name: FelixMarxIBM
+    - email: henning.treu@ibm.com
+      name: htreu
+    - email: konrad.ohms@de.ibm.com
+      name: Konrad-Ohms
+    - email: fredrik.gundersen@ibm.com
+      name: FredrikAtIBM
+    - email: jefiyamj@ibm.com
+      name: Jefiya-MJ
+    - email: milica.cvrkota@ibm.com
+      name: Milica-Cvrkota-IBM
+    - email: Nagaraj.Kandoor@ibm.com
+      name: nagaraj-kandoor
+    - email: Vineeth.Soman@ibm.com
+      name: vineethsoman03
+    - email: Rashmi.Swamy@ibm.com
+      name: rashmiswamyibm
+    name: instana-agent
+    sources:
+    - https://github.com/instana/instana-agent-docker
+    urls:
+    - assets/instana/instana-agent-2.0.13.tgz
+    version: 2.0.13
   - annotations:
       artifacthub.io/links: |
         - name: Instana website
@@ -20881,6 +21026,31 @@ entries:
       catalog.cattle.io/kube-version: '>= 1.17.0-0'
       catalog.cattle.io/release-name: k10
     apiVersion: v2
+    appVersion: 7.5.4
+    created: "2025-02-26T00:02:05.744422349Z"
+    dependencies:
+    - condition: prometheus.server.enabled
+      name: prometheus
+      repository: ""
+      version: 26.1.0
+    description: Kasten’s K10 Data Management Platform
+    digest: 1aa76ce6f23f0794195aae7bcbea85b646e6b7b4af621e0ef60080038b1e6bcd
+    home: https://kasten.io/
+    icon: file://assets/icons/k10.png
+    kubeVersion: '>= 1.17.0-0'
+    maintainers:
+    - email: contact@kasten.io
+      name: kastenIO
+    name: k10
+    urls:
+    - assets/kasten/k10-7.5.401.tgz
+    version: 7.5.401
+  - annotations:
+      catalog.cattle.io/certified: partner
+      catalog.cattle.io/display-name: K10
+      catalog.cattle.io/kube-version: '>= 1.17.0-0'
+      catalog.cattle.io/release-name: k10
+    apiVersion: v2
     appVersion: 7.5.3
     created: "2025-02-07T00:02:02.733545017Z"
     dependencies:
@@ -20889,7 +21059,7 @@ entries:
       repository: ""
       version: 26.1.0
     description: Kasten’s K10 Data Management Platform
-    digest: 17b48d6d7f116c27789561e002942e9619f1359f6cd34e998221004c4be66fb1
+    digest: 549a672b2fc9096da4fc5575aa66038fc5b389aaced584c576680edbb112c832
     home: https://kasten.io/
     icon: file://assets/icons/k10.png
     kubeVersion: '>= 1.17.0-0'
@@ -51661,4 +51831,4 @@ entries:
     urls:
     - assets/netfoundry/ziti-host-1.5.1.tgz
     version: 1.5.1
-generated: "2025-02-25T00:01:54.130021304Z"
+generated: "2025-02-26T00:02:02.355703615Z"